require naked functions to be unsafe again

jyn514 · jyn514 · commit 07cf3b4f109d · 2023-06-26T16:27:16.000Z
they dereference raw pointers, so the caller needs to make sure the
pointer is valid.

note that this requires changing `maybe_use_optimized_c_shim` to support
unsafe functions.
diff --git a/src/aarch64.rs b/src/aarch64.rs
@@ -131,7 +131,7 @@ macro_rules! compare_and_swap {
         intrinsics! {
             #[maybe_use_optimized_c_shim]
             #[naked]
-            pub extern "C" fn $name (
+            pub unsafe extern "C" fn $name (
                 expected: int_ty!($bytes), desired: int_ty!($bytes), ptr: *mut int_ty!($bytes)
             ) -> int_ty!($bytes) {
                 // We can't use `AtomicI8::compare_and_swap`; we *are* compare_and_swap.
@@ -162,7 +162,7 @@ macro_rules! compare_and_swap_i128 {
         intrinsics! {
             #[maybe_use_optimized_c_shim]
             #[naked]
-            pub extern "C" fn $name (
+            pub unsafe extern "C" fn $name (
                 expected: i128, desired: i128, ptr: *mut i128
             ) -> i128 {
                 unsafe { core::arch::asm! {
@@ -192,7 +192,7 @@ macro_rules! swap {
         intrinsics! {
             #[maybe_use_optimized_c_shim]
             #[naked]
-            pub extern "C" fn $name (
+            pub unsafe extern "C" fn $name (
                 left: int_ty!($bytes), right_ptr: *mut int_ty!($bytes)
             ) -> int_ty!($bytes) {
                 unsafe { core::arch::asm! {
@@ -218,7 +218,7 @@ macro_rules! fetch_op {
         intrinsics! {
             #[maybe_use_optimized_c_shim]
             #[naked]
-            pub extern "C" fn $name (
+            pub unsafe extern "C" fn $name (
                 val: int_ty!($bytes), ptr: *mut int_ty!($bytes)
             ) -> int_ty!($bytes) {
                 unsafe { core::arch::asm! {
diff --git a/src/macros.rs b/src/macros.rs
@@ -204,15 +204,15 @@ macro_rules! intrinsics {
     (
         #[maybe_use_optimized_c_shim]
         $(#[$($attr:tt)*])*
-        pub extern $abi:tt fn $name:ident( $($argname:ident:  $ty:ty),* ) $(-> $ret:ty)? {
+        pub $(unsafe $(@ $empty:tt)? )? extern $abi:tt fn $name:ident( $($argname:ident:  $ty:ty),* ) $(-> $ret:ty)? {
             $($body:tt)*
         }
 
         $($rest:tt)*
     ) => (
         #[cfg($name = "optimized-c")]
         #[cfg_attr(feature = "weak-intrinsics", linkage = "weak")]
-        pub extern $abi fn $name( $($argname: $ty),* ) $(-> $ret)? {
+        pub $(unsafe $($empty)? )? extern $abi fn $name( $($argname: $ty),* ) $(-> $ret)? {
             extern $abi {
                 fn $name($($argname: $ty),*) $(-> $ret)?;
             }
@@ -224,7 +224,7 @@ macro_rules! intrinsics {
         #[cfg(not($name = "optimized-c"))]
         intrinsics! {
             $(#[$($attr)*])*
-            pub extern $abi fn $name( $($argname: $ty),* ) $(-> $ret)? {
+            pub $(unsafe $($empty)? )? extern $abi fn $name( $($argname: $ty),* ) $(-> $ret)? {
                 $($body)*
             }
         }
@@ -419,7 +419,7 @@ macro_rules! intrinsics {
     (
         #[naked]
         $(#[$($attr:tt)*])*
-        pub $(unsafe)? extern $abi:tt fn $name:ident( $($argname:ident:  $ty:ty),* ) $(-> $ret:ty)? {
+        pub unsafe extern $abi:tt fn $name:ident( $($argname:ident:  $ty:ty),* ) $(-> $ret:ty)? {
             $($body:tt)*
         }
 

Original file line number	Diff line number	Diff line change
`@@ -204,15 +204,15 @@ macro_rules! intrinsics {`
`204`	`204`	`(`
`205`	`205`	`#[maybe_use_optimized_c_shim]`
`206`	`206`	`$(#[$($attr:tt)])`
`207`		`- pub extern $abi:tt fn $name:ident( $($argname:ident: $ty:ty),* ) $(-> $ret:ty)? {`
	`207`	`+ pub $(unsafe $(@ $empty:tt)? )? extern $abi:tt fn $name:ident( $($argname:ident: $ty:ty),* ) $(-> $ret:ty)? {`
`208`	`208`	`$($body:tt)*`
`209`	`209`	`}`
`210`	`210`
`211`	`211`	`$($rest:tt)*`
`212`	`212`	`) => (`
`213`	`213`	`#[cfg($name = "optimized-c")]`
`214`	`214`	`#[cfg_attr(feature = "weak-intrinsics", linkage = "weak")]`
`215`		`- pub extern $abi fn $name( $($argname: $ty),* ) $(-> $ret)? {`
	`215`	`+ pub $(unsafe $($empty)? )? extern $abi fn $name( $($argname: $ty),* ) $(-> $ret)? {`
`216`	`216`	`extern $abi {`
`217`	`217`	`fn $name($($argname: $ty),*) $(-> $ret)?;`
`218`	`218`	`}`
`@@ -224,7 +224,7 @@ macro_rules! intrinsics {`
`224`	`224`	`#[cfg(not($name = "optimized-c"))]`
`225`	`225`	`intrinsics! {`
`226`	`226`	`$(#[$($attr)])`
`227`		`- pub extern $abi fn $name( $($argname: $ty),* ) $(-> $ret)? {`
	`227`	`+ pub $(unsafe $($empty)? )? extern $abi fn $name( $($argname: $ty),* ) $(-> $ret)? {`
`228`	`228`	`$($body)*`
`229`	`229`	`}`
`230`	`230`	`}`
`@@ -419,7 +419,7 @@ macro_rules! intrinsics {`
`419`	`419`	`(`
`420`	`420`	`#[naked]`
`421`	`421`	`$(#[$($attr:tt)])`
`422`		`- pub $(unsafe)? extern $abi:tt fn $name:ident( $($argname:ident: $ty:ty),* ) $(-> $ret:ty)? {`
	`422`	`+ pub unsafe extern $abi:tt fn $name:ident( $($argname:ident: $ty:ty),* ) $(-> $ret:ty)? {`
`423`	`423`	`$($body:tt)*`
`424`	`424`	`}`
`425`	`425`