simple-left-right 0.2.3

Lockfree, realtime safe and copy-free Synchronisation
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243

// SPDX-FileCopyrightText: 2025 Lucas Baumann
// SPDX-FileCopyrightText: Lucas Baumann
//
// SPDX-License-Identifier: Apache-2.0
// SPDX-License-Identifier: MIT

use core::{
    cell::UnsafeCell,
    mem::MaybeUninit,
    ptr::NonNull,
    sync::atomic::{self, AtomicU8, Ordering},
};

use alloc::boxed::Box;

#[derive(Clone, Copy, Debug)]
#[repr(u8)]
pub(crate) enum Ptr {
    Value1 = 0,
    Value2 = 0b1000,
}

impl Ptr {
    pub(crate) fn switch(&mut self) {
        *self = match *self {
            Ptr::Value1 => Self::Value2,
            Ptr::Value2 => Self::Value1,
        };
    }
}

#[repr(transparent)]
#[derive(Debug, Clone, Copy)]
struct State(u8);

impl State {
    /// - Read Ptr: Value 1,
    /// - No Read
    /// - Unique
    const INITIAL: u8 = 0b0000;

    const VALUE1_READ: u8 = 0b0010;
    const VALUE2_READ: u8 = 0b0100;
    const READ_MASK: u8 = 0b0110;
    const NOREAD_MASK: u8 = 0b1001;
    const UNIQUE_MASK: u8 = 0b0001;
    const INV_UNIQUE_MASK: u8 = 0b1110;
    const READ_PTR_MASK: u8 = 0b1000;
    const INV_READ_PTR: u8 = 0b0111;

    // only does debug tests that state is valid
    // could be turned into assert_uncheckeds as they are still checkd in debug
    fn new(value: u8) -> Self {
        debug_assert!(
            (value & Self::READ_MASK).count_ones() <= 1,
            "max 1 read. value: {value:b}"
        );
        debug_assert!(
            value & 0b1111_0000 == 0,
            "only lower 4 bits used. value: {value:b}"
        );
        Self(value)
    }

    fn is_unique(self) -> bool {
        self.0 & Self::UNIQUE_MASK == 0
    }

    fn read_ptr(self) -> Ptr {
        // mask out everything except the read ptr
        if self.0 & Self::READ_PTR_MASK == 0 {
            Ptr::Value1
        } else {
            Ptr::Value2
        }
    }

    fn with_read(self, ptr: Ptr) -> Self {
        debug_assert_eq!(self.0 & Self::READ_MASK, 0, "No read currently");
        let mask = match ptr {
            Ptr::Value1 => Self::VALUE1_READ,
            Ptr::Value2 => Self::VALUE2_READ,
        };

        Self(self.0 | mask)
    }

    fn can_write(self, ptr: Ptr) -> bool {
        #[expect(
            clippy::match_like_matches_macro,
            reason = "i think it's more readable like this"
        )]
        match (self.0 & Self::READ_MASK, ptr) {
            (Self::VALUE1_READ, Ptr::Value1) => false,
            (Self::VALUE2_READ, Ptr::Value2) => false,
            _ => true,
        }
    }
}

#[derive(Debug)]
pub(crate) struct Shared<T> {
    pub(crate) value_1: UnsafeCell<T>,
    pub(crate) value_2: UnsafeCell<T>,
    /// ### Bits from low to high
    /// | bit | meaning |
    /// |---|---|
    /// | 0 | 0: unique, 1: second object exists |
    /// | 1 | is value 1 being read |
    /// | 2 | is value 2 being read |
    /// | 3 | which value should be read next (0: value 1, 1: value 2) |
    ///
    /// This mixed use doesn't lead to more contention because there are only two threads max.
    state: AtomicU8,
}

impl<T> Shared<T> {
    pub(crate) fn lock_read(&self) -> &UnsafeCell<T> {
        // fetch update loop could be replaced with:
        // - set read state to both
        // - read read ptr
        // - set read state to only that
        // this would need to be synchronized correctly and is probably not faster than this
        let result = self
            .state
            .fetch_update(Ordering::Relaxed, Ordering::Acquire, |value| {
                let state = State::new(value);
                let ptr = state.read_ptr();
                Some(state.with_read(ptr).0)
            });
        // SAFETY: fetch_update closure always returns Some, so the result is alwyays Ok
        let result = unsafe { result.unwrap_unchecked() };
        // result is the previous value, so the read_state isn't set, only the read_ptr
        let ptr = State::new(result).read_ptr();
        self.get_value(ptr)
    }

    pub(crate) fn release_read_lock(&self) {
        self.state.fetch_and(State::NOREAD_MASK, Ordering::Release);
    }

    /// tries to get the write lock to the ptr.
    pub(crate) fn lock_write(&self, ptr: Ptr) -> Result<(), ()> {
        let state = State::new(self.state.load(Ordering::Relaxed));
        if state.can_write(ptr) {
            // only need to synchronize with another thread when locking was successfull
            atomic::fence(Ordering::Acquire);
            Ok(())
        } else {
            Err(())
        }
    }

    /// Releases the read lock
    pub(crate) fn set_read_ptr(&self, ptr: Ptr) {
        let value = match ptr {
            Ptr::Value1 => self.state.fetch_and(State::INV_READ_PTR, Ordering::Release),
            Ptr::Value2 => self.state.fetch_or(State::READ_PTR_MASK, Ordering::Release),
        };
        State::new(value);
    }

    pub(crate) fn new(value: T, second_value: fn(&T) -> T) -> (NonNull<Self>, Ptr) {
        // make sure that the first value gets dropped if the constructor of the second panics
        struct DropGuard<T>(*mut T);
        impl<T> Drop for DropGuard<T> {
            fn drop(&mut self) {
                unsafe { self.0.drop_in_place() }
            }
        }

        let mut this: Box<MaybeUninit<Self>> = Box::new_uninit();
        let this_ptr = this.as_mut_ptr();
        let this = unsafe {
            let state_ptr = &raw mut (*this_ptr).state;
            let value_1_ptr = UnsafeCell::raw_get(&raw mut (*this_ptr).value_1);
            let value_2_ptr = UnsafeCell::raw_get(&raw mut (*this_ptr).value_2);

            state_ptr.write(AtomicU8::new(State::INITIAL));
            value_1_ptr.write(value);
            let guard = DropGuard(value_1_ptr);
            value_2_ptr.write(second_value(&*value_1_ptr));
            // after this nothing can panic, so nothing can leak the value
            core::mem::forget(guard);
            this.assume_init()
        };
        // SAFETY: Box is valid, so not Null
        (
            unsafe { NonNull::new_unchecked(Box::into_raw(this)) },
            Ptr::Value2,
        )
    }

    pub(crate) fn get_value(&self, ptr: Ptr) -> &UnsafeCell<T> {
        match ptr {
            Ptr::Value1 => &self.value_1,
            Ptr::Value2 => &self.value_2,
        }
    }

    /// SAFETY: needs to have synchronized shared access to the ptr.
    /// If the access is not unique T needs to be Sync
    pub(crate) unsafe fn get_value_ref(&self, ptr: Ptr) -> &T {
        // SAFETY: requirements on the function make it safe
        unsafe { &*self.get_value(ptr).get() }
    }

    /// If self is unique increase the count and returns true.
    /// Otherwise returns false.
    ///
    /// If this returns true another smart pointer has to be created otherwise memory will be leaked
    pub(crate) unsafe fn set_shared(&self) {
        self.state.fetch_or(State::UNIQUE_MASK, Ordering::Relaxed);
    }

    pub(crate) fn is_unique(&self) -> bool {
        State::new(self.state.load(Ordering::Acquire)).is_unique()
    }

    /// SAFETY: this needs to be valid. this can't be used after this function anymore.
    pub(crate) unsafe fn drop(this: NonNull<Self>) {
        // SAFETY: function SAFETY precondition
        let old_state = unsafe { this.as_ref() }
            .state
            .fetch_and(State::INV_UNIQUE_MASK, Ordering::Release);

        if State::new(old_state).is_unique() {
            // see std Arc
            atomic::fence(Ordering::Acquire);

            drop(Box::from_raw(this.as_ptr()));
        }
    }
}

/// SAFETY: same as `SyncUnsafeCell`. Synchronisation done by Reader and Writer
///
/// Isn't actually needed for the library as the public types have their own Send & Sync impls
/// which are needed as they have a ptr to Shared.
/// Clarifies that multithreaded refs are fine.
///
/// Send is autoimplemented, because `UnsafeCell` is Send if T: Send
unsafe impl<T: Sync> Sync for Shared<T> {}