caplog 0.2.0

Capture log messages for testing
Documentation 
use std::cell::UnsafeCell;
use std::collections::LinkedList;
use std::mem::MaybeUninit;
use std::sync::{
    atomic::{AtomicU32, Ordering},
    Arc, RwLock,
};

const CHUNK_SIZE: usize = 128;

/// StableList provides a List type that allows for an arbitrary number of simultaneous lockless
/// readers and with a single locking writer. Readers are never interrupted by a writer.
///
/// In order to provide this guarantee, the list will never delete an item or move its location in
/// memory. Items can only be deleted by dropping all copies of the list.
#[derive(Clone, Debug)]
pub struct StableList<T>(Arc<StableListInner<T>>);

impl<T> StableList<T> {
    pub fn new() -> Self {
        Self(Arc::new(StableListInner::new()))
    }

    #[cfg(test)]
    /// Provide an iterator for the entire list.
    ///
    /// Iterator will return items after returning None if additional items have been pushed to
    /// list in between.
    ///
    /// Iterator is created and operated via lockless operations.
    pub fn iter(&self) -> StableListIterator<T> {
        StableListIterator {
            idx: 0,
            end_idx: None,
            chunk: std::ptr::null(),
            list: self,
        }
    }

    /// Provides an iterator for the specified range, end is not exclusive.
    ///
    /// In the case that `start` or `end` are out of bounds, `next` will return `None` until they
    /// are valid indices into the list. Iterator will resume just like the unbounded iterator
    /// returned by `iter`.
    pub fn bounded_iter(&self, start: usize, end: Option<usize>) -> StableListIterator<T> {
        StableListIterator {
            idx: start,
            end_idx: end,
            chunk: std::ptr::null(),
            list: self,
        }
    }

    //
    // passthrough functions
    //

    /// Push new item onto back of list.
    pub fn push(&self, item: T) {
        self.0.push(item)
    }

    #[cfg(test)]
    /// Get single item from list.
    ///
    /// This will acquire a lock, for lockless reading use the `iter` function.
    pub fn get(&self, idx: usize) -> Option<&T> {
        self.0.get(idx)
    }

    /// Returns current length of the list.
    pub fn len(&self) -> usize {
        self.0.len()
    }
}

#[derive(Debug)]
struct StableListInner<T> {
    list_lock: RwLock<LinkedList<*const [UnsafeCell<MaybeUninit<T>>; CHUNK_SIZE]>>,

    /// Index just past the last initialized item in the StableList
    ///
    /// The item pointed to by this idx is uninitialized or may not exist.
    last_global_idx: AtomicU32,
}

// TODO Document
unsafe impl<T> Send for StableListInner<T> where T: Send {}
unsafe impl<T> Sync for StableListInner<T> {}

impl<T> StableListInner<T> {
    fn new() -> Self {
        let list: LinkedList<*const _> = LinkedList::new();
        StableListInner {
            list_lock: RwLock::new(list),
            last_global_idx: AtomicU32::new(0),
        }
    }

    fn push(&self, item: T) {
        let mut list = match self.list_lock.write() {
            Ok(lock) => lock,
            Err(_) => panic!("StableList's internal mutex has been poisoned"),
        };
        // make sure to get the most recent value, don't move this before the lock
        let global_idx = self.last_global_idx.load(Ordering::SeqCst) as usize;
        if global_idx == u32::MAX as usize {
            panic!("list is full, cannot index past 2^32");
        }
        if global_idx % CHUNK_SIZE == 0 {
            // we have all full blocks and have to add a new one
            // Safety: We are telling the compiler to assume initialization of the MaybeUninit values
            // *not* the T inside them. MaybeUninit requires no initialization.
            #[allow(clippy::uninit_assumed_init)]
            let block: [UnsafeCell<MaybeUninit<T>>; CHUNK_SIZE] =
                unsafe { MaybeUninit::uninit().assume_init() };
            list.push_back(Box::into_raw(Box::new(block)));
        }
        let last_block = list
            .iter_mut()
            .last()
            .expect("no block in list even though we tried to add one");
        // Safety: value pointed to by global_idx has not yet been initialized but it safe to write
        // to uninitialized memory. And it is not visible to anyone obeying promises of
        // `get_chunk`, so it is safe to write to it with this exclusive access.
        unsafe { *(**last_block)[global_idx % CHUNK_SIZE].get() = MaybeUninit::new(item) };
        // Safety: only modify last_global_idx while we have the lock
        self.last_global_idx.fetch_add(1, Ordering::SeqCst);
    }

    /// Returns list length
    fn len(&self) -> usize {
        self.last_global_idx.load(Ordering::SeqCst) as usize
    }

    unsafe fn get_chunk(
        &self,
        idx: usize,
    ) -> Option<*const [UnsafeCell<MaybeUninit<T>>; CHUNK_SIZE]> {
        match self.list_lock.read() {
            Ok(lock) => lock.iter().nth(idx).copied(),
            Err(_) => panic!("StableList's internal mutex has been poisoned"),
        }
    }

    #[cfg(test)]
    fn get(&self, idx: usize) -> Option<&T> {
        if idx < self.last_global_idx.load(Ordering::SeqCst) as usize {
            let list = match self.list_lock.read() {
                Ok(lock) => lock,
                Err(_) => panic!("StableList's internal mutex has been poisoned"),
            };
            // Safety: All values before last_global_idx are guaranteed to be initialized
            list.iter()
                .nth(idx / CHUNK_SIZE)
                .map(|ch| unsafe { unwrap_value(&(&**ch)[idx % CHUNK_SIZE]) })
        } else {
            None
        }
    }
}

// Call to convert a value wrapped in UnsafeCell<MaybeUninit<T>> to T
//
// # Safety
// Caller must guarantee that the location pointed to by cell is initialized.
// Caller must also guarantee that value will not be modified while this reference is alive.
//
// Failure to provide the above guarantees will result in Undefined Behavior.
unsafe fn unwrap_value<T>(cell: &UnsafeCell<MaybeUninit<T>>) -> &T {
    &*cell.get().as_ref().unwrap().as_ptr().as_ref().unwrap()
}

// TODO impl Drop for StableList, by default dropping MaybeUninit does nothing resulting in the
// internal values leaking if they are heap allocated

#[derive(Debug)]
pub struct StableListIterator<'a, T> {
    /// The index in `list` of the last value returned.
    idx: usize,
    /// The index after the last value to return, if None iterator is unbounded.
    end_idx: Option<usize>,
    /// Currently cached chunk, current index should be inside it.
    ///
    /// Will be null if no items have been returned from this iterator yet.
    chunk: *const [UnsafeCell<MaybeUninit<T>>; CHUNK_SIZE],
    list: &'a StableList<T>,
}

impl<'a, T> Iterator for StableListIterator<'a, T> {
    type Item = &'a T;

    fn next(&mut self) -> Option<Self::Item> {
        if self.chunk.is_null() {
            // we have not handed out any values yet
            if self.idx > self.list.len() {
                // list is not yet long enough to provide a value
                return None;
            }
            match unsafe { self.list.0.get_chunk((self.idx) / CHUNK_SIZE) } {
                Some(next_chunk) => self.chunk = next_chunk,
                None => return None,
            }
            // TODO safety
            return Some(unsafe { unwrap_value(&(&*self.chunk)[self.idx % CHUNK_SIZE]) });
        }
        if let Some(end_idx) = self.end_idx {
            if self.idx + 1 == end_idx {
                // reached end of bounds
                return None;
            }
        }
        if self.idx + 1 == self.list.len() {
            // no values to return right now
            return None;
        }

        if self.idx % CHUNK_SIZE + 1 == CHUNK_SIZE {
            // this would be a lot simpler if LinkedList exposed a way to hold a reference to a
            // node, the proposed cursor API might be what is necessary: https://github.com/rust-lang/rust/issues/58533
            // TODO safety
            match unsafe { self.list.0.get_chunk(self.idx / CHUNK_SIZE + 1) } {
                None => return None,
                Some(chunk) => {
                    self.chunk = chunk;
                }
            }
        }
        self.idx += 1;
        Some(unsafe { unwrap_value(&(&*self.chunk)[self.idx % CHUNK_SIZE]) })
    }
}

#[cfg(test)]
mod test {
    use super::*;

    #[test]
    /// Test that an item pushed into StableList can then be retrieved via `get` and the iterator
    fn push_and_check_single_item() {
        let list = StableList::new();
        assert_eq!(list.get(0), None);
        list.push(1002);
        assert_eq!(list.get(0), Some(&1002));
        assert_eq!(list.iter().next(), Some(&1002));
    }

    #[test]
    fn push_and_check_full_chunk() {
        let list = StableList::new();
        assert_eq!(list.get(0), None);
        for i in 0..CHUNK_SIZE {
            list.push(100 + i);
        }
        for i in 0..CHUNK_SIZE {
            assert_eq!(list.get(i), Some(&(100 + i)));
        }
    }

    #[test]
    fn push_and_check_multiple_chunks() {
        let list = StableList::new();
        assert_eq!(list.get(0), None);
        for i in 0..(CHUNK_SIZE * 2) {
            list.push(100 + i);
        }
        for i in 0..(CHUNK_SIZE * 2) {
            assert_eq!(list.get(i), Some(&(100 + i)));
        }
    }

    #[test]
    /// Test that populating the list then iterating over it works
    fn populate_and_iterate_simple() {
        let list = StableList::new();
        let iter = list.iter();
        let arb_values = CHUNK_SIZE * 2 + 1;
        for i in 0..(arb_values) {
            list.push(i * 10);
        }
        assert_eq!(list.len(), arb_values);
        let mut values_found = 0;
        for (exp, val) in (0..).zip(iter) {
            assert_eq!(exp * 10, *val);
            values_found += 1;
        }
        assert_eq!(values_found, arb_values);
    }

    #[test]
    /// Test that iterator will return values again after returning None if new values are added to
    /// base list
    fn iterator_resumption() {
        let list = StableList::new();
        let mut iter = list.iter();
        assert_eq!(list.len(), 0);
        assert_eq!(iter.next(), None);
        list.push(1000);
        assert_eq!(list.len(), 1);
        assert_eq!(iter.next(), Some(&1000));
    }

    #[test]
    /// Test that handing out multiple iterators at the same time works.
    fn multiple_iterators() {
        let list = StableList::<i32>::new();
        let mut iter_1 = list.iter();
        let mut iter_2 = list.iter();
        for i in 100..200 {
            list.push(i);
            let a = iter_1.next();
            let b = iter_2.next();
            assert_eq!(Some(&i), a);
            assert_eq!(Some(&i), b);
        }
    }

    #[test]
    /// Test that iterator can be bounded and retain resumption
    fn bounded_iterator_resumption() {
        let list = StableList::new();
        let mut iter = list.bounded_iter(0, Some(5));
        assert_eq!(iter.next(), None);
        for i in 1000..1010 {
            list.push(i);
        }
        assert_eq!(list.len(), 10);
        for i in 1000..1005 {
            assert_eq!(iter.next(), Some(&i));
        }
        assert_eq!(iter.next(), None);
    }

    #[test]
    /// Test that iterator can be started from a non-zero index
    fn bounded_iterator_non_zero_start() {
        let list = StableList::new();
        let mut iter = list.bounded_iter(5, None);
        assert_eq!(iter.next(), None);
        for i in 1000..1010 {
            list.push(i);
        }
        for i in 1005..1010 {
            assert_eq!(iter.next(), Some(&i));
        }
        assert_eq!(iter.next(), None);
    }

    #[test]
    /// Test that iterators started around BLOCK_SIZE doesn't encounter edge cases
    fn bounded_iterator_boundary_start() {
        let list = StableList::new();
        for i in 0..(CHUNK_SIZE * 2) {
            list.push(i * 2);
        }
        let expected = ((CHUNK_SIZE - 1)..=(CHUNK_SIZE + 1))
            .map(|v| v * 2)
            .collect::<Vec<usize>>();
        let lower_iter = list.bounded_iter(CHUNK_SIZE - 1, None);
        let middle_iter = list.bounded_iter(CHUNK_SIZE, None);
        let mut upper_iter = list.bounded_iter(CHUNK_SIZE + 1, None);
        assert_eq!(
            expected,
            lower_iter.take(3).copied().collect::<Vec<usize>>()
        );
        assert_eq!(
            expected[1..],
            middle_iter.take(2).copied().collect::<Vec<usize>>()
        );
        assert_eq!(expected.get(2), upper_iter.next());
    }
}