mathieu/os-rust
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

fix safe-transmute handling of enums

Browse source
This commit is contained in:
Ralf Jung 2024-11-30 19:33:23 +01:00
parent a36652c274
commit 611a99188e
7 changed files with 74 additions and 63 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

6
compiler/rustc_abi/src/lib.rs
View file

@ -1505,7 +1505,11 @@ impl BackendRepr {
#[cfg_attr(feature = "nightly", derive(HashStable_Generic))] #[cfg_attr(feature = "nightly", derive(HashStable_Generic))]
pub enum Variants<FieldIdx: Idx, VariantIdx: Idx> { pub enum Variants<FieldIdx: Idx, VariantIdx: Idx> {
/// Single enum variants, structs/tuples, unions, and all non-ADTs. /// Single enum variants, structs/tuples, unions, and all non-ADTs.
Single { index: VariantIdx }, Single {
/// Always 0 for non-enums/generators.
/// For enums without a variant, this is an invalid index!
index: VariantIdx,
},
/// Enum-likes with more than one variant: each variant comes with /// Enum-likes with more than one variant: each variant comes with
/// a *discriminant* (usually the same as the variant index but the user can /// a *discriminant* (usually the same as the variant index but the user can

2
compiler/rustc_const_eval/src/interpret/discriminant.rs
View file

@ -70,7 +70,7 @@ impl<'tcx, M: Machine<'tcx>> InterpCx<'tcx, M> {
if ty.is_enum() { if ty.is_enum() {
// Hilariously, `Single` is used even for 0-variant enums. // Hilariously, `Single` is used even for 0-variant enums.
// (See https://github.com/rust-lang/rust/issues/89765). // (See https://github.com/rust-lang/rust/issues/89765).
if matches!(ty.kind(), ty::Adt(def, ..) if def.variants().is_empty()) { if ty.ty_adt_def().unwrap().variants().is_empty() {
throw_ub!(UninhabitedEnumVariantRead(index)) throw_ub!(UninhabitedEnumVariantRead(index))
} }
// For consistency with `write_discriminant`, and to make sure that // For consistency with `write_discriminant`, and to make sure that

2
compiler/rustc_middle/src/query/mod.rs
View file

@ -1086,6 +1086,8 @@ rustc_queries! {
} }
/// Computes the tag (if any) for a given type and variant. /// Computes the tag (if any) for a given type and variant.
/// `None` means that the variant doesn't need a tag (because it is niched).
/// Will panic for uninhabited variants.
query tag_for_variant( query tag_for_variant(
key: (Ty<'tcx>, abi::VariantIdx) key: (Ty<'tcx>, abi::VariantIdx)
) -> Option<ty::ScalarInt> { ) -> Option<ty::ScalarInt> {

57
compiler/rustc_transmute/src/layout/tree.rs
View file

@ -319,38 +319,35 @@ pub(crate) mod rustc {
) -> Result<Self, Err> { ) -> Result<Self, Err> {
assert!(def.is_enum()); assert!(def.is_enum());
// Computes the variant of a given index. // Computes the layout of a variant.
let layout_of_variant = |index, encoding: Option<TagEncoding<VariantIdx>>| { let layout_of_variant =
let tag = cx.tcx().tag_for_variant((cx.tcx().erase_regions(ty), index)); |index, encoding: Option<TagEncoding<VariantIdx>>| -> Result<Self, Err> {
let variant_def = Def::Variant(def.variant(index)); let variant_layout = ty_variant(cx, (ty, layout), index);
let variant_layout = ty_variant(cx, (ty, layout), index); if variant_layout.is_uninhabited() {
Self::from_variant( return Ok(Self::uninhabited());
variant_def, }
tag.map(|tag| (tag, index, encoding.unwrap())), let tag = cx.tcx().tag_for_variant((cx.tcx().erase_regions(ty), index));
(ty, variant_layout), let variant_def = Def::Variant(def.variant(index));
layout.size, Self::from_variant(
cx, variant_def,
) tag.map(|tag| (tag, index, encoding.unwrap())),
}; (ty, variant_layout),
layout.size,
cx,
)
};
// We consider three kinds of enums, each demanding a different
// treatment of their layout computation:
// 1. enums that are uninhabited ZSTs
// 2. enums that delegate their layout to a variant
// 3. enums with multiple variants
match layout.variants() { match layout.variants() {
Variants::Single { .. } if layout.is_uninhabited() && layout.size == Size::ZERO => {
// The layout representation of uninhabited, ZST enums is
// defined to be like that of the `!` type, as opposed of a
// typical enum. Consequently, they cannot be descended into
// as if they typical enums. We therefore special-case this
// scenario and simply return an uninhabited `Tree`.
Ok(Self::uninhabited())
}
Variants::Single { index } => { Variants::Single { index } => {
// `Variants::Single` on enums with variants denotes that // Hilariously, `Single` is used even for 0-variant enums;
// the enum delegates its layout to the variant at `index`. // `index` is just junk in that case.
layout_of_variant(*index, None) if ty.ty_adt_def().unwrap().variants().is_empty() {
Ok(Self::uninhabited())
} else {
// `Variants::Single` on enums with variants denotes that
// the enum delegates its layout to the variant at `index`.
layout_of_variant(*index, None)
}
} }
Variants::Multiple { tag, tag_encoding, tag_field, .. } => { Variants::Multiple { tag, tag_encoding, tag_field, .. } => {
// `Variants::Multiple` denotes an enum with multiple // `Variants::Multiple` denotes an enum with multiple
@ -369,7 +366,7 @@ pub(crate) mod rustc {
}, },
)?; )?;
return Ok(Self::def(Def::Adt(def)).then(variants)); Ok(Self::def(Def::Adt(def)).then(variants))
} }
} }
} }

30
tests/crashes/126267.rs
View file

@ -1,30 +0,0 @@
//@ known-bug: rust-lang/rust#126267
#![feature(transmutability)]
#![crate_type = "lib"]
pub enum ApiError {}
pub struct TokioError {
b: bool,
}
pub enum Error {
Api { source: ApiError },
Ethereum,
Tokio { source: TokioError },
}
mod assert {
use std::mem::TransmuteFrom;
pub fn is_transmutable<Src, Dst>()
where
Dst: TransmuteFrom<Src>, // safety is NOT assumed
{
}
}
fn test() {
struct Src;
type Dst = Error;
assert::is_transmutable::<Src, Dst>();
}

16
tests/ui/transmutability/uninhabited.rs
View file

@ -91,3 +91,19 @@ fn distant_void() {
assert::is_maybe_transmutable::<DistantVoid, &'static Void>(); assert::is_maybe_transmutable::<DistantVoid, &'static Void>();
assert::is_maybe_transmutable::<u128, DistantVoid>(); //~ ERROR: cannot be safely transmuted assert::is_maybe_transmutable::<u128, DistantVoid>(); //~ ERROR: cannot be safely transmuted
} }
fn issue_126267() {
pub enum ApiError {}
pub struct TokioError {
b: bool,
}
pub enum Error {
Api { source: ApiError }, // this variant is uninhabited
Ethereum,
Tokio { source: TokioError },
}
struct Src;
type Dst = Error;
assert::is_maybe_transmutable::<Src, Dst>(); //~ERROR: cannot be safely transmuted
}

24
tests/ui/transmutability/uninhabited.stderr
View file

@ -110,7 +110,29 @@ LL | | }
LL | | }> LL | | }>
| |__________^ required by this bound in `is_maybe_transmutable` | |__________^ required by this bound in `is_maybe_transmutable`
error: aborting due to 7 previous errors error[E0277]: `Src` cannot be safely transmuted into `issue_126267::Error`
--> $DIR/uninhabited.rs:108:42
|
LL | assert::is_maybe_transmutable::<Src, Dst>();
| ^^^ the size of `Src` is smaller than the size of `issue_126267::Error`
|
note: required by a bound in `is_maybe_transmutable`
--> $DIR/uninhabited.rs:10:14
|
LL | pub fn is_maybe_transmutable<Src, Dst>()
| --------------------- required by a bound in this function
LL | where
LL | Dst: TransmuteFrom<Src, {
| ______________^
LL | | Assume {
LL | | alignment: true,
LL | | lifetimes: true,
... |
LL | | }
LL | | }>
| |__________^ required by this bound in `is_maybe_transmutable`
error: aborting due to 8 previous errors
Some errors have detailed explanations: E0080, E0277. Some errors have detailed explanations: E0080, E0277.
For more information about an error, try `rustc --explain E0080`. For more information about an error, try `rustc --explain E0080`.