scbuf 0.1.1

scbuf (sync circular buffer) is a Send and Sync, lock-free circular buffer implementation.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343

//! # scbuf
//!
//! `scbuf` (sync circular buffer) is a [`Send`] and [`Sync`], lock-free circular
//! buffer implementation.  
//!
//! In the single-producer, single-consumer scenario, it relies solely on atomics
//! for synchronization. See [`new_scbuf`] for multiple-producer/consumer usage.

use std::{
    alloc,
    cmp::min,
    mem,
    num::Wrapping,
    ptr::NonNull,
    sync::{
        atomic::{AtomicUsize, Ordering},
        Arc,
    },
    vec::Drain,
};

struct Cbuf<T> {
    buf: NonNull<T>,
    cap: usize,
    msk: usize,
    w_idx: AtomicUsize,
    r_idx: AtomicUsize,
}
// Flagless, zero-waste circular buffer. Read more about the buffer layout at
// https://www.snellman.net/blog/archive/2016-12-13-ring-buffers/
//
// TLDR:
// We mask the indices only when indexing the buffer array, otherwise we increment
// indefinitely. Overflow of the index integer will wrap nicely around the buffer
// size, since it is a power of two. As long as the buffer size is less than the
// usize::MAX (asserted in `capacity.is_power_of_two()` below), w_idx - r_idx =
// number of items in the buffer.
impl<T> Cbuf<T> {
    fn new(capacity: usize) -> Cbuf<T> {
        if !capacity.is_power_of_two() {
            panic!("capacity not a power of two")
        }
        let buf = if mem::size_of::<T>() == 0 {
            NonNull::dangling()
        } else {
            let layout = alloc::Layout::array::<T>(capacity).unwrap();
            unsafe { NonNull::new(alloc::alloc(layout) as *mut T).unwrap() }
        };

        Cbuf {
            buf: buf,
            cap: capacity,
            msk: capacity - 1, // 0 not a power of two, so capacity always > 0
            w_idx: AtomicUsize::new(0),
            r_idx: AtomicUsize::new(0),
        }
    }
}

impl<T> Drop for Cbuf<T> {
    fn drop(&mut self) {
        if mem::size_of::<T>() == 0 {
            return;
        }
        // Fine to use relaxed, since from now on there are no endpoints holding
        // on this buffer.
        let mut r_idx = Wrapping(self.r_idx.load(Ordering::Relaxed));
        let w_idx = Wrapping(self.w_idx.load(Ordering::Relaxed));

        while r_idx != w_idx {
            unsafe {
                // If ri != wi, there were more items moved in than moved out. Since
                // from now on no endpoints hold any reference to this buffer, we
                // may safely drop any remaining items.
                self.buf.as_ptr().add(r_idx.0 & self.msk).drop_in_place();
            }
            r_idx += 1;
        }

        unsafe {
            let layout = alloc::Layout::array::<T>(self.cap).unwrap();
            alloc::dealloc(self.buf.as_ptr() as *mut u8, layout)
        }
    }
}

/// Producer endpoint for inserting data into the circular buffer.
/// See [`ProdEnd::push()`] and [`ProdEnd::write()`].
pub struct ProdEnd<T> {
    cbuf: Arc<Cbuf<T>>,
}
/// Consumer endpoint for retrieving data from the circular buffer.
/// See [`ConsEnd::pop()`] and [`ConsEnd::read()`].
pub struct ConsEnd<T> {
    cbuf: Arc<Cbuf<T>>,
}

/// Creates a new circular buffer with the given `capacity` and returns one consumer
/// and one producer endpoint.  
///
/// The endpoints are [`Send`] and [`Sync`], so it is safe to use them in a multi-threaded
/// scenario. They rely solely on atomic operations for synchronization (lock-free).
/// An endpoint can be further shared across multiple threads (multiple producers/consumers)
/// by wrapping it into an [`Arc<Mutex<>>`]. This way, consumers will block other
/// consumers (and producers other producers), but producers are still lock-free
/// w.r. to consumers.
///
/// The `capacity` must be a power of two and leq [`isize::MAX`]` + 1`.
///
/// Dropping both endpoints will drop the underlying buffer storage and any items
/// left inside.
///
///
/// # Panics
/// Will panic if `capacity` is not a power of two (zero included), or greater
/// than [`isize::MAX`]` + 1`.
///
/// # Examples
/// ```
/// use scbuf;
/// use std::{sync::{Arc, Mutex}, thread};
///
/// let (prod_ep, mut cons_ep) = scbuf::new_scbuf(2);
///
/// let prod_ep1 = Arc::new(Mutex::new(prod_ep));
/// let prod_ep2 = Arc::clone(&prod_ep1);
/// let producer_1 = thread::spawn(move || prod_ep1.lock().unwrap().push('a'));
/// let producer_2 = thread::spawn(move || prod_ep2.lock().unwrap().push('b'));
///
/// let mut data = Vec::with_capacity(2);
/// while data.len() < 2 {
///     cons_ep.read(&mut data);
/// }
///
/// producer_1.join().unwrap();
/// producer_2.join().unwrap();
///
/// assert!(data == ['a', 'b'] || data == ['b', 'a']);
/// ```
pub fn new_scbuf<T>(capacity: usize) -> (ProdEnd<T>, ConsEnd<T>) {
    let cbuf = Arc::new(Cbuf::<T>::new(capacity));

    (
        ProdEnd {
            cbuf: Arc::clone(&cbuf),
        },
        ConsEnd {
            cbuf: Arc::clone(&cbuf),
        },
    )
}

impl<T> ProdEnd<T> {
    fn space(&self) -> (usize, Wrapping<usize>) {
        let cbuf = self.cbuf.as_ref();
        // OK to use relaxed for w_idx, since there either is exactly one thread
        // writing, or other sync mechanism will enforce the ordering.
        let w_idx = Wrapping(cbuf.w_idx.load(Ordering::Relaxed));
        // OK to use relaxed for r_idx, since writes are not speculated -> no item
        // will be committed to the buffer before r_idx will have been evaluated.
        let r_idx = Wrapping(cbuf.r_idx.load(Ordering::Relaxed));

        (cbuf.cap - (w_idx - r_idx).0, w_idx)
    }

    /// Moves a single item of into the circular buffer. Returns [`None`] on success,
    /// [`Some<T>`] containing the item if the buffer was full.
    ///
    /// # Examples
    ///
    /// ```
    /// use scbuf;
    ///
    /// let (mut prod_ep, _) = scbuf::new_scbuf(1);
    /// assert_eq!(prod_ep.push('a'), None);
    /// assert_eq!(prod_ep.push('b'), Some('b'));
    ///
    /// ```
    // Must be mutable, otherwise:
    // - one could send multiple references to different threads -> racy.
    // - would be covariant: we could push &'a T in a ProdEnd<&'static T>.
    pub fn push(&mut self, item: T) -> Option<T> {
        let cbuf = self.cbuf.as_ref();

        let (space, w_idx) = self.space();
        if space == 0 {
            return Some(item);
        }

        unsafe {
            // Safe to write: if space > 0, then some data items were moved out
            // of the buffer. This is ensured by the control dependency on 'space',
            // paired with the release semantics of ConsEnd::pop().
            cbuf.buf.as_ptr().add(w_idx.0 & cbuf.msk).write(item);
        }

        cbuf.w_idx.store((w_idx + Wrapping(1)).0, Ordering::Release);

        None
    }
    /// Moves n elements from `data` into the buffer, where n is the minimum of
    /// `data.len()` and the space available in the buffer. [`Drain`] is used instead
    /// of [`Vec`] to avoid possibly unnecessary shift of items in the original
    /// vector, should it not be drained completely.
    ///
    /// # Examples
    ///
    /// ```
    /// use scbuf;
    ///
    /// let (mut prod_ep, _) = scbuf::new_scbuf(2);
    /// let mut data = vec!['a', 'b', 'c'];
    /// let mut drain = data.drain(..);
    ///
    /// prod_ep.write(&mut drain);
    /// // we can pop the leftover directly from `drain` without having it shifted
    /// // into the first position of `data`
    /// assert_eq!(drain.next(), Some('c'));
    /// ```
    pub fn write(&mut self, data: &mut Drain<'_, T>) {
        let cbuf = self.cbuf.as_ref();
        let (space, mut w_idx) = self.space();

        for item in data.take(min(space, data.len())) {
            unsafe {
                // see ProdEnd<T>::push()
                cbuf.buf.as_ptr().add(w_idx.0 & cbuf.msk).write(item);
            }
            w_idx += 1;
        }

        cbuf.w_idx.store(w_idx.0, Ordering::Release);
    }
}

impl<T> ConsEnd<T> {
    fn fill(&self) -> (usize, Wrapping<usize>) {
        let cbuf = self.cbuf.as_ref();
        // OK to use relaxed for r_idx, since there either is exactly one thread
        // reading, or other sync mechanism will enforce the ordering.
        let r_idx = Wrapping(cbuf.r_idx.load(Ordering::Relaxed));
        let w_idx = Wrapping(cbuf.w_idx.load(Ordering::Acquire));

        ((w_idx - r_idx).0, r_idx)
    }

    /// Pops one item from the circular buffer. Returns [`None`] if the buffer was
    /// empty.
    ///
    /// # Examples
    ///
    /// ```
    /// use scbuf;
    /// use std::thread;
    ///
    /// let (mut prod_ep, mut cons_ep) = scbuf::new_scbuf(2);
    ///
    /// prod_ep.push("data");
    ///
    /// thread::spawn(move || {
    ///     assert_eq!(cons_ep.pop(), Some("data"));
    ///     assert_eq!(cons_ep.pop(), None);
    /// });
    ///
    /// ```
    // Must be mutable, otherwise one could send multiple references to different
    // threads -> racy.
    pub fn pop(&mut self) -> Option<T> {
        let cbuf = self.cbuf.as_ref();

        let (fill, r_idx) = self.fill();
        if fill == 0 {
            return None;
        }

        let item = unsafe {
            // Safe to read: if fill > 0, then some data items were moved to the
            // buffer. This is ensured by the acquire semantics in Self::fill()
            // paired with the release semantics of ProdEnd::push().
            cbuf.buf.as_ptr().add(r_idx.0 & cbuf.msk).read()
        };

        cbuf.r_idx.store((r_idx + Wrapping(1)).0, Ordering::Release);

        Some(item)
    }

    /// Reads n items from the buffer into `data`, where n is the minimum of the
    /// available space in `data` (`data.capacity() - data.len()`) and the number
    /// of items available in the buffer.
    ///
    /// # Examples
    ///
    /// ```
    /// use scbuf;
    /// use std::thread;
    ///
    /// let (mut prod_ep, mut cons_ep) = scbuf::new_scbuf(4);
    ///
    /// prod_ep.write(&mut vec![101, 102, 103].drain(..));
    ///
    /// let mut cons_buf = Vec::with_capacity(1);
    ///
    /// cons_ep.read(&mut cons_buf);
    /// assert_eq!(cons_buf, [101]);
    /// cons_ep.read(&mut cons_buf);
    /// assert_eq!(cons_buf, [101]);
    ///
    /// let mut cons_buf = Vec::with_capacity(2);
    ///
    /// cons_ep.read(&mut cons_buf);
    /// assert_eq!(cons_buf, [102, 103]);
    /// ```
    pub fn read(&mut self, data: &mut Vec<T>) {
        let cbuf = self.cbuf.as_ref();
        let (fill, mut r_idx) = self.fill();

        for _ in 0..min(fill, data.capacity() - data.len()) {
            data.push(unsafe {
                // see ConsEnd<T>::pop()
                cbuf.buf.as_ptr().add(r_idx.0 & cbuf.msk).read()
            });
            r_idx += 1;
        }

        cbuf.r_idx.store(r_idx.0, Ordering::Release);
    }
}

impl<T> Iterator for ConsEnd<T> {
    type Item = T;

    fn next(&mut self) -> Option<Self::Item> {
        self.pop()
    }
}

// NonNull is not Send and Sync, but we use atomics for synchronization
unsafe impl<T> Send for Cbuf<T> {}
unsafe impl<T> Sync for Cbuf<T> {}

#[cfg(test)]
mod tests;