bytesbuf 0.4.2

Types for creating and manipulating byte sequences.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159

// Copyright (c) Microsoft Corporation.
// Licensed under the MIT License.

use std::num::NonZero;

use crate::BytesBuf;
use crate::mem::testing::std_alloc_block;
use crate::mem::{BlockSize, Memory};

/// A memory provider that delegates 1:1 to the Rust global allocator.
///
/// This is meant for test scenarios where the minimal set of memory provider
/// functionality is desired, to establish maximally controlled conditions.
///
/// # Performance
///
/// For general-purpose public use, the [`GlobalPool`][1] should be used instead,
/// as it is geared for actual efficiency - this here is just a simple passthrough implementation.
///
/// # Examples
///
/// Reserving memory returns exactly the requested capacity:
///
/// ```
/// use bytesbuf::BytesView;
/// use bytesbuf::mem::Memory;
/// use bytesbuf::mem::testing::TransparentMemory;
///
/// let memory = TransparentMemory::new();
///
/// // Capacity exactly matches the requested amount.
/// let buf = memory.reserve(100);
/// assert_eq!(buf.capacity(), 100);
///
/// // The resulting byte sequence uses a single contiguous slice.
/// let data = BytesView::copied_from_slice(b"Hello, world!", &memory);
/// assert_eq!(data.first_slice().len(), 13); // Entire content in one slice.
/// ```
///
/// [1]: crate::mem::GlobalPool
#[derive(Clone, Debug, Default)]
pub struct TransparentMemory {
    // We may add more fields later, so this is a placeholder to ensure we do not empty-type this.
    _placeholder: (),
}

impl TransparentMemory {
    /// Creates a new instance of the memory provider.
    #[must_use]
    pub const fn new() -> Self {
        Self { _placeholder: () }
    }

    /// Reserves exactly `min_bytes` bytes of memory capacity.
    ///
    /// The memory reservation request will always be fulfilled, obtaining more memory from the
    /// operating system if necessary.
    ///
    /// # Zero-sized reservations
    ///
    /// Reserving zero bytes of memory is a valid operation and will return a [`BytesBuf`]
    /// with zero bytes of capacity.
    ///
    /// # Panics
    ///
    /// May panic if the operating system runs out of memory.
    #[must_use]
    #[expect(clippy::unused_self, reason = "for potential future functionality enrichment")]
    pub fn reserve(&self, len: usize) -> crate::BytesBuf {
        reserve(len)
    }
}

impl Memory for TransparentMemory {
    #[cfg_attr(test, mutants::skip)] // Trivial forwarder.
    fn reserve(&self, min_bytes: usize) -> crate::BytesBuf {
        self.reserve(min_bytes)
    }
}

fn reserve(min_bytes: usize) -> crate::BytesBuf {
    let Some(min_bytes) = NonZero::new(min_bytes) else {
        return BytesBuf::default();
    };

    let block_count = min_bytes.get().div_ceil(BlockSize::MAX as usize);
    let mut bytes_remaining = min_bytes.get();

    let mut blocks = Vec::with_capacity(block_count);

    for _ in 0..block_count {
        #[expect(
            clippy::cast_possible_truncation,
            reason = "the usize never contains a value outside bounds of BlockSize - guarded by min()"
        )]
        let bytes_in_block = NonZero::new(bytes_remaining.min(BlockSize::MAX as usize) as BlockSize)
            .expect("ran out of bytes before calculated block count - the math must be wrong");

        bytes_remaining = bytes_remaining
            .checked_sub(bytes_in_block.get() as usize)
            .expect("negative bytes remaining - algorithm error");

        blocks.push(std_alloc_block::allocate(bytes_in_block));
    }

    BytesBuf::from_blocks(blocks)
}

#[cfg_attr(coverage_nightly, coverage(off))]
#[cfg(test)]
mod tests {
    use static_assertions::assert_impl_all;

    use super::*;
    use crate::mem::MemoryShared;

    assert_impl_all!(TransparentMemory: MemoryShared);

    #[test]
    fn smoke_test() {
        let memory = TransparentMemory::new();

        let mut buf = memory.reserve(0);
        assert_eq!(buf.len(), 0);
        assert_eq!(buf.capacity(), 0);

        buf = memory.reserve(1313);

        assert_eq!(buf.capacity(), 1313);

        buf.put_byte_repeated(3, 1313);

        let data = buf.consume_all();

        assert_eq!(data.len(), 1313);
        assert_eq!(data.first_slice().len(), 1313);
    }

    #[test]
    fn giant_allocation() {
        // This test requires at least 5 GB of memory to run. The publishing pipeline runs on a system
        // where this may not be available, so we skip this test in that environment.
        #[cfg(all(not(miri), any(target_os = "linux", target_os = "windows")))]
        if crate::testing::system_memory() < 10_000_000_000 {
            eprintln!("Skipping giant allocation test due to insufficient memory.");
            return;
        }

        // This is a giant allocation that does not fit into one memory block.

        let memory = TransparentMemory::new();
        let buf = memory.reserve(5_000_000_000);

        assert_eq!(buf.capacity(), 5_000_000_000);

        // NB! We cannot simply check the first chunk length because there is no guarantee on which
        // order a BytesBuf consumes its blocks in - the first might not be u32::MAX here!
    }
}