veccell 0.4.0

Provides VecCell, a variant of Vec with interior mutability.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267

use super::*;
use std::ops::RangeBounds;

// `'self`: lifetime of `Self`

/// Wraps a borrowed reference from a [`VecCell`].
///
/// When an instance of `VecRef` is created, the immutable borrow counter of its parent [`VecCell`] is incremented.
/// Once that instance is [`Drop`ped](Drop), the immutable borrow counter is decremented.
///
/// This type implements [`Deref`], and this is the main way to access the contained value:
///
/// ```
/// # use veccell::*;
/// let mut vec: VecCell<usize> = VecCell::new();
/// vec.push(2);
/// vec.push(15);
///
/// let vec_ref: VecRef<usize> = vec.borrow(0).unwrap();
///
/// let value: usize = *vec_ref; // equivalent to `vec_ref.deref()`
///
/// assert_eq!(value, 2);
/// ```
#[derive(Clone)]
pub struct VecRef<'a, T: ?Sized> {
    borrows: VecRefBorrow<'a>,
    value: &'a T,
}

impl<'a, T: ?Sized> VecRef<'a, T> {
    /// # Guarantees
    ///
    /// If `Some(self)` is returned, then:
    /// - no mutable reference exist to `*self`
    /// - `∀ t: min('a, 'self)`, no new mutable reference can be made to `*self` during `'t`
    pub(crate) fn new(vec: &'a VecCell<T>, index: usize) -> Option<Self>
    where
        T: Sized
    {
        if vec.mut_borrow.get() == Some(index) {
            // `vec[index]` is already borrowed mutably, return None
            return None
        }

        if index >= vec.len() {
            return None
        }

        Some(Self {
            borrows: VecRefBorrow::new(&vec.borrows)?,
            value: unsafe {
                // SAFETY: there are no mutable borrows of vec.inner[index] (from vec.mut_borrow == None)
                vec.get_unchecked(index)
            }
        })
    }

    pub(crate) fn from_range<R: RangeBounds<usize>>(vec: &'a VecCell<T>, range: R) -> Option<VecRef<'a, [T]>>
    where
        T: Sized
    {
        use std::mem::{size_of, align_of};

        match vec.mut_borrow() {
            Some(index) => {
                if range.contains(&index) {
                    // There is a mutable borrow to an index within the range, return None
                    return None;
                }
            },
            None => {}
        }

        let low = range.start_bound().cloned();
        let high = range.end_bound().cloned();

        let range: &[UnsafeCell<T>] = &vec.inner[(low, high)];
        let range: &[T] = unsafe {
            let ptr: *const UnsafeCell<T> = range.as_ptr();
            let len = range.len();

            assert!(ptr as *const () == UnsafeCell::raw_get(ptr) as *const ());
            assert!(size_of::<UnsafeCell<T>>() == size_of::<T>());
            assert!(align_of::<UnsafeCell<T>>() == align_of::<T>());

            // SAFETY:
            // - ptr is a valid pointer
            // - there are no mutable reference to any element within (low, high)
            // - ptr == old(ptr), since UnsafeCell has repr(transparent) (also asserted)
            let ptr: *mut T = UnsafeCell::raw_get(ptr);
            let ptr = ptr as *const T;

            // SAFETY:
            // - `ptr` is a valid pointer
            // - `ptr` points to an array of `len` elements of type `UnsafeCell<T>`
            // - UnsafeCell has repr(transparent)
            // - size_of(UnsafeCell<T>) == size_of(T)
            // - align_of(UnsafeCell<T>) == align_of(T)
            // - thus, [UnsafeCell<T>] and [T] have the same representation in memory
            // - thus, ptr points to an array of `len` elements of type `T`
            // - there are no mutable reference to any element of `slice`
            let slice: &[T] = std::slice::from_raw_parts(ptr, len);

            slice
        };

        Some(VecRef {
            borrows: VecRefBorrow::new(&vec.borrows)?,
            value: range,
        })
    }

    fn from(value: &'a T, borrows: VecRefBorrow<'a>) -> Self {
        Self {
            borrows,
            value
        }
    }

    /// Transforms a `VecRef<'_, T>` into a `VecRef<'_, U>` from a function that maps `&T` to `&U`.
    ///
    /// This function does not use `self` and must be called explicitly via `VecRef::map(value, function)`.
    ///
    /// # Examples
    ///
    /// This function comes in hand when you need to return a reference to a value in a [`VecCell`] from within a function/scope.
    /// For instance, the following is disallowed:
    ///
    /// ```compile_fail
    /// # use veccell::*;
    /// fn return_favorite_value<'a>(array: &'a VecCell<Vec<u8>>) -> &'a u8 {
    ///     &array.get(42).unwrap().get()[7]
    /// }
    /// ```
    ///
    /// Instead, you would write it as follows:
    ///
    /// ```
    /// # use veccell::*;
    /// fn return_favorite_value<'a>(array: &'a VecCell<Vec<u8>>) -> VecRef<'a, u8> {
    ///     VecRef::map(array.borrow(42).unwrap(), |vec| &vec[7])
    /// }
    /// ```
    pub fn map<'b, U: ?Sized, F>(original: VecRef<'b, T>, f: F) -> VecRef<'b, U>
    where
        F: FnOnce(&T) -> &U
    {
        VecRef::from(f(original.value), original.borrows.clone())
        // original is dropped here
    }

    /// Variant of [`VecRef::map`], where the callback (`f`) may fail.
    ///
    /// `f` must return a [`Result`]; if it returns `Ok(x)`, then `try_map` returns `Ok(VecRef(x))`.
    /// Otherwise, it returns `Err(err)`.
    ///
    /// # Example
    ///
    /// ```
    /// # use veccell::*;
    /// let vec: VecCell<Option<usize>> = VecCell::from(vec![Some(3), None]);
    ///
    /// let ref_number: VecRef<Option<usize>> = vec.borrow(0).unwrap();
    /// // Note: VecRef::try_map uses `Result`s, but we need `Option`s, so we convert to and from them
    /// let ref_number: Option<VecRef<usize>> = VecRef::try_map(
    ///     ref_number,
    ///     |option| option.as_ref().ok_or(())
    /// ).ok();
    /// assert!(ref_number.is_some());
    ///
    /// let ref_none = vec.borrow(1).unwrap();
    /// let ref_none = VecRef::try_map(ref_none, |option| option.as_ref().ok_or(())).ok();
    /// assert!(ref_none.is_none());
    /// ```
    pub fn try_map<'b, U: ?Sized, F, E>(original: VecRef<'b, T>, f: F) -> Result<VecRef<'b, U>, E>
    where
        F: FnOnce(&T) -> Result<&U, E>
    {
        Ok(VecRef::from(f(original.value)?, original.borrows.clone()))
    }
}

impl<'a, T: Sized> VecRef<'a, [T]> {
    /// Returns an immutable borrow to the `index`-th element of the array.
    /// Returns `None` if `index` is out of bounds.
    ///
    /// This method is only available for `VecRef<[T]>`.
    ///
    /// # Example
    ///
    /// ```
    /// # use veccell::*;
    /// let mut vec: VecCell<usize> = VecCell::with_capacity(10);
    /// for x in 0..10 {
    ///     vec.push(x);
    /// }
    ///
    /// let range = vec.borrow_range(2..5).unwrap();
    /// assert_eq!(range.len(), 3);
    /// let elem = range.borrow(2).unwrap(); // Corresponds to element 4 of `vec`
    /// assert_eq!(elem, 4);
    /// ```
    pub fn borrow(&self, index: usize) -> Option<VecRef<'a, T>> {
        Some(VecRef::from(self.value.get(index)?, self.borrows.clone()))
    }
}

impl<'a, T: ?Sized> Deref for VecRef<'a, T> {
    type Target = T;

    /// Dereferences the [`VecRef`], returning a reference to the borrowed value.
    ///
    /// This cannot fail, as the borrowed value is already immutably borrowed.
    fn deref(&self) -> &Self::Target {
        self.value
    }
}

impl<'a, T: Debug + ?Sized> Debug for VecRef<'a, T> {
    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
        f.debug_tuple("VecRef")
            .field(&self.value)
            .finish()
    }
}

impl<'a, T: Display + ?Sized> Display for VecRef<'a, T> {
    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
        <T as Display>::fmt(&self.value, f)
    }
}

impl<'a, T: PartialEq + ?Sized> PartialEq for VecRef<'a, T> {
    fn eq(&self, other: &Self) -> bool {
        self.value == other.value
    }
}

impl<'a, T: PartialEq + ?Sized> PartialEq<T> for VecRef<'a, T> {
    fn eq(&self, other: &T) -> bool {
        self.value == other
    }
}

struct VecRefBorrow<'a>(&'a Cell<usize>);

impl<'a> VecRefBorrow<'a> {
    fn new(cell: &'a Cell<usize>) -> Option<Self> {
        cell.set(cell.get().checked_add(1)?);
        Some(Self(cell))
    }
}

impl<'a> Clone for VecRefBorrow<'a> {
    fn clone(&self) -> Self {
        VecRefBorrow::new(&self.0).expect("Error creating a new VecRef: integer overflow")
    }
}

impl<'a> Drop for VecRefBorrow<'a> {
    #[inline]
    fn drop(&mut self) {
        debug_assert!(self.0.get() > 0, "Borrow count was null yet there was still a borrow!");
        self.0.set(self.0.get() - 1);
    }
}