Less as * in library/core

scottmcm · scottmcm · commit 6c65e34a64ae · 2023-03-18T09:46:31.000-07:00
`cast`/`cast_const`/`cast_mut` have been stable and const-stable for a while, so let's use them instead of `as`, for clarity about what the cast is doing and to emphasize `as` casts doing anything else. After all, if it had existed back then, using `.cast::<T>()` instead of `as *mut T` would have helped catch the soundness bug back in <https://blog.rust-lang.org/2017/02/09/Rust-1.15.1.html#whats-in-1151-stable>. I'm working on a lint to enforce this, which is how I found all these cases :) Old zulip conversation about moving things off `as` where feasible: <https://rust-lang.zulipchat.com/#narrow/stream/219381-t-libs/topic/Adding.20methods.20as.20more.20specific.20versions.20of.20.60as.60/near/238374585>.
diff --git a/library/core/src/array/mod.rs b/library/core/src/array/mod.rs
@@ -253,7 +253,7 @@ impl<'a, T, const N: usize> TryFrom<&'a [T]> for &'a [T; N] {
 
     fn try_from(slice: &[T]) -> Result<&[T; N], TryFromSliceError> {
         if slice.len() == N {
-            let ptr = slice.as_ptr() as *const [T; N];
+            let ptr = slice.as_ptr().cast::<[T; N]>();
             // SAFETY: ok because we just checked that the length fits
             unsafe { Ok(&*ptr) }
         } else {
@@ -280,7 +280,7 @@ impl<'a, T, const N: usize> TryFrom<&'a mut [T]> for &'a mut [T; N] {
 
     fn try_from(slice: &mut [T]) -> Result<&mut [T; N], TryFromSliceError> {
         if slice.len() == N {
-            let ptr = slice.as_mut_ptr() as *mut [T; N];
+            let ptr = slice.as_mut_ptr().cast::<[T; N]>();
             // SAFETY: ok because we just checked that the length fits
             unsafe { Ok(&mut *ptr) }
         } else {
diff --git a/library/core/src/cell.rs b/library/core/src/cell.rs
@@ -624,7 +624,7 @@ impl<T, const N: usize> Cell<[T; N]> {
     #[unstable(feature = "as_array_of_cells", issue = "88248")]
     pub fn as_array_of_cells(&self) -> &[Cell<T>; N] {
         // SAFETY: `Cell<T>` has the same memory layout as `T`.
-        unsafe { &*(self as *const Cell<[T; N]> as *const [Cell<T>; N]) }
+        unsafe { &*ptr::from_ref(self).cast::<[Cell<T>; N]>() }
     }
 }
 
diff --git a/library/core/src/hash/mod.rs b/library/core/src/hash/mod.rs
@@ -835,7 +835,7 @@ mod impls {
                 #[inline]
                 fn hash_slice<H: ~const Hasher>(data: &[$ty], state: &mut H) {
                     let newlen = mem::size_of_val(data);
-                    let ptr = data.as_ptr() as *const u8;
+                    let ptr = data.as_ptr().cast::<u8>();
                     // SAFETY: `ptr` is valid and aligned, as this macro is only used
                     // for numeric primitives which have no padding. The new slice only
                     // spans across `data` and is never mutated, and its total size is the
diff --git a/library/core/src/iter/adapters/copied.rs b/library/core/src/iter/adapters/copied.rs
@@ -223,7 +223,7 @@ where
             unsafe {
                 ptr::copy_nonoverlapping(
                     self.as_ref().as_ptr(),
-                    raw_array.as_mut_ptr() as *mut T,
+                    raw_array.as_mut_ptr().cast::<T>(),
                     len,
                 );
                 let _ = self.advance_by(len);
@@ -234,7 +234,7 @@ where
         // SAFETY: `len` is larger than the array size. Copy a fixed amount here to fully initialize
         // the array.
         unsafe {
-            ptr::copy_nonoverlapping(self.as_ref().as_ptr(), raw_array.as_mut_ptr() as *mut T, N);
+            ptr::copy_nonoverlapping(self.as_ref().as_ptr(), raw_array.as_mut_ptr().cast::<T>(), N);
             let _ = self.advance_by(N);
             Ok(MaybeUninit::array_assume_init(raw_array))
         }
diff --git a/library/core/src/mem/maybe_uninit.rs b/library/core/src/mem/maybe_uninit.rs
@@ -527,7 +527,8 @@ impl<T> MaybeUninit<T> {
     #[inline(always)]
     pub const fn as_ptr(&self) -> *const T {
         // `MaybeUninit` and `ManuallyDrop` are both `repr(transparent)` so we can cast the pointer.
-        self as *const _ as *const T
+        // FIXME: consider `ptr::from_ref` once that's const-stable
+        ptr::addr_of!(*self).cast::<T>()
     }
 
     /// Gets a mutable pointer to the contained value. Reading from this pointer or turning it
@@ -566,7 +567,7 @@ impl<T> MaybeUninit<T> {
     #[inline(always)]
     pub const fn as_mut_ptr(&mut self) -> *mut T {
         // `MaybeUninit` and `ManuallyDrop` are both `repr(transparent)` so we can cast the pointer.
-        self as *mut _ as *mut T
+        ptr::from_mut(self).cast::<T>()
     }
 
     /// Extracts the value from the `MaybeUninit<T>` container. This is a great way
@@ -947,7 +948,7 @@ impl<T> MaybeUninit<T> {
         // And thus the conversion is safe
         let ret = unsafe {
             intrinsics::assert_inhabited::<[T; N]>();
-            (&array as *const _ as *const [T; N]).read()
+            ptr::from_ref(&array).cast::<[T; N]>().read()
         };
 
         // FIXME: required to avoid `~const Destruct` bound
@@ -1002,15 +1003,15 @@ impl<T> MaybeUninit<T> {
     #[rustc_const_unstable(feature = "maybe_uninit_slice", issue = "63569")]
     #[inline(always)]
     pub const fn slice_as_ptr(this: &[MaybeUninit<T>]) -> *const T {
-        this.as_ptr() as *const T
+        this.as_ptr().cast::<T>()
     }
 
     /// Gets a mutable pointer to the first element of the array.
     #[unstable(feature = "maybe_uninit_slice", issue = "63569")]
     #[rustc_const_unstable(feature = "maybe_uninit_slice", issue = "63569")]
     #[inline(always)]
     pub const fn slice_as_mut_ptr(this: &mut [MaybeUninit<T>]) -> *mut T {
-        this.as_mut_ptr() as *mut T
+        this.as_mut_ptr().cast::<T>()
     }
 
     /// Copies the elements from `src` to `this`, returning a mutable reference to the now initialized contents of `this`.
@@ -1182,7 +1183,7 @@ impl<T> MaybeUninit<T> {
     pub fn as_bytes(&self) -> &[MaybeUninit<u8>] {
         // SAFETY: MaybeUninit<u8> is always valid, even for padding bytes
         unsafe {
-            slice::from_raw_parts(self.as_ptr() as *const MaybeUninit<u8>, mem::size_of::<T>())
+            slice::from_raw_parts(self.as_ptr().cast::<MaybeUninit<u8>>(), mem::size_of::<T>())
         }
     }
 
@@ -1214,7 +1215,7 @@ impl<T> MaybeUninit<T> {
         // SAFETY: MaybeUninit<u8> is always valid, even for padding bytes
         unsafe {
             slice::from_raw_parts_mut(
-                self.as_mut_ptr() as *mut MaybeUninit<u8>,
+                self.as_mut_ptr().cast::<MaybeUninit<u8>>(),
                 mem::size_of::<T>(),
             )
         }
@@ -1244,7 +1245,7 @@ impl<T> MaybeUninit<T> {
         // SAFETY: MaybeUninit<u8> is always valid, even for padding bytes
         unsafe {
             slice::from_raw_parts(
-                this.as_ptr() as *const MaybeUninit<u8>,
+                this.as_ptr().cast::<MaybeUninit<u8>>(),
                 this.len() * mem::size_of::<T>(),
             )
         }
@@ -1277,7 +1278,7 @@ impl<T> MaybeUninit<T> {
         // SAFETY: MaybeUninit<u8> is always valid, even for padding bytes
         unsafe {
             slice::from_raw_parts_mut(
-                this.as_mut_ptr() as *mut MaybeUninit<u8>,
+                this.as_mut_ptr().cast::<MaybeUninit<u8>>(),
                 this.len() * mem::size_of::<T>(),
             )
         }
diff --git a/library/core/src/mem/mod.rs b/library/core/src/mem/mod.rs
@@ -1054,12 +1054,12 @@ pub const unsafe fn transmute_copy<Src, Dst>(src: &Src) -> Dst {
     if align_of::<Dst>() > align_of::<Src>() {
         // SAFETY: `src` is a reference which is guaranteed to be valid for reads.
         // The caller must guarantee that the actual transmutation is safe.
-        unsafe { ptr::read_unaligned(src as *const Src as *const Dst) }
+        unsafe { ptr::from_ref(src).cast::<Dst>().read_unaligned() }
     } else {
         // SAFETY: `src` is a reference which is guaranteed to be valid for reads.
         // We just checked that `src as *const Dst` was properly aligned.
         // The caller must guarantee that the actual transmutation is safe.
-        unsafe { ptr::read(src as *const Src as *const Dst) }
+        unsafe { ptr::from_ref(src).cast::<Dst>().read() }
     }
 }
 
diff --git a/library/core/src/ptr/const_ptr.rs b/library/core/src/ptr/const_ptr.rs
@@ -48,7 +48,7 @@ impl<T: ?Sized> *const T {
         }
 
         // SAFETY: The two versions are equivalent at runtime.
-        unsafe { const_eval_select((self as *const u8,), const_impl, runtime_impl) }
+        unsafe { const_eval_select((self.cast::<u8>(),), const_impl, runtime_impl) }
     }
 
     /// Casts to a pointer of another type.
@@ -95,7 +95,7 @@ impl<T: ?Sized> *const T {
     where
         U: ?Sized,
     {
-        from_raw_parts::<U>(self as *const (), metadata(meta))
+        from_raw_parts::<U>(self.cast::<()>(), metadata(meta))
     }
 
     /// Changes constness without changing the type.
@@ -400,7 +400,7 @@ impl<T: ?Sized> *const T {
     {
         // SAFETY: the caller must guarantee that `self` meets all the
         // requirements for a reference.
-        if self.is_null() { None } else { Some(unsafe { &*(self as *const MaybeUninit<T>) }) }
+        if self.is_null() { None } else { Some(unsafe { &*self.cast::<MaybeUninit<T>>() }) }
     }
 
     /// Calculates the offset from a pointer.
@@ -822,7 +822,7 @@ impl<T: ?Sized> *const T {
     where
         T: Sized,
     {
-        match intrinsics::ptr_guaranteed_cmp(self as _, other as _) {
+        match intrinsics::ptr_guaranteed_cmp(self, other) {
             2 => None,
             other => Some(other == 1),
         }
diff --git a/library/core/src/ptr/mod.rs b/library/core/src/ptr/mod.rs
@@ -1278,7 +1278,7 @@ pub const unsafe fn read_unaligned<T>(src: *const T) -> T {
     // Also, since we just wrote a valid value into `tmp`, it is guaranteed
     // to be properly initialized.
     unsafe {
-        copy_nonoverlapping(src as *const u8, tmp.as_mut_ptr() as *mut u8, mem::size_of::<T>());
+        copy_nonoverlapping(src.cast::<u8>(), tmp.as_mut_ptr().cast::<u8>(), mem::size_of::<T>());
         tmp.assume_init()
     }
 }
@@ -1473,7 +1473,7 @@ pub const unsafe fn write_unaligned<T>(dst: *mut T, src: T) {
     // `dst` cannot overlap `src` because the caller has mutable access
     // to `dst` while `src` is owned by this function.
     unsafe {
-        copy_nonoverlapping(&src as *const T as *const u8, dst as *mut u8, mem::size_of::<T>());
+        copy_nonoverlapping(addr_of!(src).cast::<u8>(), dst.cast::<u8>(), mem::size_of::<T>());
         // We are calling the intrinsic directly to avoid function calls in the generated code.
         intrinsics::forget(src);
     }
diff --git a/library/core/src/ptr/mut_ptr.rs b/library/core/src/ptr/mut_ptr.rs
@@ -412,7 +412,7 @@ impl<T: ?Sized> *mut T {
     {
         // SAFETY: the caller must guarantee that `self` meets all the
         // requirements for a reference.
-        if self.is_null() { None } else { Some(unsafe { &*(self as *const MaybeUninit<T>) }) }
+        unsafe { self.cast_const().as_uninit_ref() }
     }
 
     /// Calculates the offset from a pointer.
@@ -476,7 +476,7 @@ impl<T: ?Sized> *mut T {
         // SAFETY: the caller must uphold the safety contract for `offset`.
         // The obtained pointer is valid for writes since the caller must
         // guarantee that it points to the same allocated object as `self`.
-        unsafe { intrinsics::offset(self, count) as *mut T }
+        unsafe { intrinsics::offset(self, count).cast_mut() }
     }
 
     /// Calculates the offset from a pointer in bytes.
@@ -555,7 +555,7 @@ impl<T: ?Sized> *mut T {
         T: Sized,
     {
         // SAFETY: the `arith_offset` intrinsic has no prerequisites to be called.
-        unsafe { intrinsics::arith_offset(self, count) as *mut T }
+        unsafe { intrinsics::arith_offset(self, count).cast_mut() }
     }
 
     /// Calculates the offset from a pointer in bytes using wrapping arithmetic.
@@ -717,7 +717,7 @@ impl<T: ?Sized> *mut T {
     {
         // SAFETY: the caller must guarantee that `self` meets all the
         // requirements for a reference.
-        if self.is_null() { None } else { Some(unsafe { &mut *(self as *mut MaybeUninit<T>) }) }
+        if self.is_null() { None } else { Some(unsafe { &mut *self.cast::<MaybeUninit<T>>() }) }
     }
 
     /// Returns whether two pointers are guaranteed to be equal.
@@ -744,7 +744,7 @@ impl<T: ?Sized> *mut T {
     where
         T: Sized,
     {
-        (self as *const T).guaranteed_eq(other as _)
+        self.cast_const().guaranteed_eq(other.cast_const())
     }
 
     /// Returns whether two pointers are guaranteed to be inequal.
@@ -771,7 +771,7 @@ impl<T: ?Sized> *mut T {
     where
         T: Sized,
     {
-        (self as *const T).guaranteed_ne(other as _)
+        self.cast_const().guaranteed_ne(other.cast_const())
     }
 
     /// Calculates the distance between two pointers. The returned value is in
@@ -864,7 +864,7 @@ impl<T: ?Sized> *mut T {
         T: Sized,
     {
         // SAFETY: the caller must uphold the safety contract for `offset_from`.
-        unsafe { (self as *const T).offset_from(origin) }
+        unsafe { self.cast_const().offset_from(origin) }
     }
 
     /// Calculates the distance between two pointers. The returned value is in
@@ -955,7 +955,7 @@ impl<T: ?Sized> *mut T {
         T: Sized,
     {
         // SAFETY: the caller must uphold the safety contract for `sub_ptr`.
-        unsafe { (self as *const T).sub_ptr(origin) }
+        unsafe { self.cast_const().sub_ptr(origin) }
     }
 
     /// Calculates the offset from a pointer (convenience for `.offset(count as isize)`).
diff --git a/library/core/src/slice/ascii.rs b/library/core/src/slice/ascii.rs
@@ -271,7 +271,7 @@ fn is_ascii(s: &[u8]) -> bool {
 
     let start = s.as_ptr();
     // SAFETY: We verify `len < USIZE_SIZE` above.
-    let first_word = unsafe { (start as *const usize).read_unaligned() };
+    let first_word = unsafe { start.cast::<usize>().read_unaligned() };
 
     if contains_nonascii(first_word) {
         return false;
@@ -283,7 +283,7 @@ fn is_ascii(s: &[u8]) -> bool {
 
     // SAFETY: word_ptr is the (properly aligned) usize ptr we use to read the
     // middle chunk of the slice.
-    let mut word_ptr = unsafe { start.add(offset_to_aligned) as *const usize };
+    let mut word_ptr = unsafe { start.add(offset_to_aligned).cast::<usize>() };
 
     // `byte_pos` is the byte index of `word_ptr`, used for loop end checks.
     let mut byte_pos = offset_to_aligned;
@@ -322,7 +322,7 @@ fn is_ascii(s: &[u8]) -> bool {
     debug_assert!(byte_pos <= len && len - byte_pos <= USIZE_SIZE);
 
     // SAFETY: This relies on `len >= USIZE_SIZE`, which we check at the start.
-    let last_word = unsafe { (start.add(len - USIZE_SIZE) as *const usize).read_unaligned() };
+    let last_word = unsafe { start.add(len - USIZE_SIZE).cast::<usize>().read_unaligned() };
 
     !contains_nonascii(last_word)
 }
diff --git a/library/core/src/slice/cmp.rs b/library/core/src/slice/cmp.rs
@@ -88,7 +88,7 @@ where
         // The two slices have been checked to have the same size above.
         unsafe {
             let size = mem::size_of_val(self);
-            memcmp(self.as_ptr() as *const u8, other.as_ptr() as *const u8, size) == 0
+            memcmp(self.as_ptr().cast::<u8>(), other.as_ptr().cast::<u8>(), size) == 0
         }
     }
 }
@@ -231,7 +231,7 @@ impl SliceContains for i8 {
         // as `*const u8` is safe. The `x.as_ptr()` comes from a reference and is thus guaranteed
         // to be valid for reads for the length of the slice `x.len()`, which cannot be larger
         // than `isize::MAX`. The returned slice is never mutated.
-        let bytes: &[u8] = unsafe { from_raw_parts(x.as_ptr() as *const u8, x.len()) };
+        let bytes: &[u8] = unsafe { from_raw_parts(x.as_ptr().cast::<u8>(), x.len()) };
         memchr::memchr(byte, bytes).is_some()
     }
 }
diff --git a/library/core/src/slice/iter.rs b/library/core/src/slice/iter.rs
@@ -90,7 +90,7 @@ impl<'a, T> Iter<'a, T> {
             let end =
                 if T::IS_ZST { ptr.wrapping_byte_add(slice.len()) } else { ptr.add(slice.len()) };
 
-            Self { ptr: NonNull::new_unchecked(ptr as *mut T), end, _marker: PhantomData }
+            Self { ptr: NonNull::new_unchecked(ptr.cast_mut()), end, _marker: PhantomData }
         }
     }
 
diff --git a/library/core/src/slice/mod.rs b/library/core/src/slice/mod.rs
@@ -1800,7 +1800,7 @@ impl<T> [T] {
     pub fn split_array_ref<const N: usize>(&self) -> (&[T; N], &[T]) {
         let (a, b) = self.split_at(N);
         // SAFETY: a points to [T; N]? Yes it's [T] of length N (checked by split_at)
-        unsafe { (&*(a.as_ptr() as *const [T; N]), b) }
+        unsafe { (&*a.as_ptr().cast::<[T; N]>(), b) }
     }
 
     /// Divides one mutable slice into an array and a remainder slice at an index.
@@ -1833,7 +1833,7 @@ impl<T> [T] {
     pub fn split_array_mut<const N: usize>(&mut self) -> (&mut [T; N], &mut [T]) {
         let (a, b) = self.split_at_mut(N);
         // SAFETY: a points to [T; N]? Yes it's [T] of length N (checked by split_at_mut)
-        unsafe { (&mut *(a.as_mut_ptr() as *mut [T; N]), b) }
+        unsafe { (&mut *a.as_mut_ptr().cast::<[T; N]>(), b) }
     }
 
     /// Divides one slice into an array and a remainder slice at an index from
@@ -1879,7 +1879,7 @@ impl<T> [T] {
         assert!(N <= self.len());
         let (a, b) = self.split_at(self.len() - N);
         // SAFETY: b points to [T; N]? Yes it's [T] of length N (checked by split_at)
-        unsafe { (a, &*(b.as_ptr() as *const [T; N])) }
+        unsafe { (a, &*b.as_ptr().cast::<[T; N]>()) }
     }
 
     /// Divides one mutable slice into an array and a remainder slice at an
@@ -1913,7 +1913,7 @@ impl<T> [T] {
         assert!(N <= self.len());
         let (a, b) = self.split_at_mut(self.len() - N);
         // SAFETY: b points to [T; N]? Yes it's [T] of length N (checked by split_at_mut)
-        unsafe { (a, &mut *(b.as_mut_ptr() as *mut [T; N])) }
+        unsafe { (a, &mut *b.as_mut_ptr().cast::<[T; N]>()) }
     }
 
     /// Returns an iterator over subslices separated by elements that match
@@ -3582,7 +3582,7 @@ impl<T> [T] {
             unsafe {
                 (
                     left,
-                    from_raw_parts(rest.as_ptr() as *const U, us_len),
+                    from_raw_parts(rest.as_ptr().cast::<U>(), us_len),
                     from_raw_parts(rest.as_ptr().add(rest.len() - ts_len), ts_len),
                 )
             }
@@ -3652,7 +3652,7 @@ impl<T> [T] {
             unsafe {
                 (
                     left,
-                    from_raw_parts_mut(mut_ptr as *mut U, us_len),
+                    from_raw_parts_mut(mut_ptr.cast::<U>(), us_len),
                     from_raw_parts_mut(mut_ptr.add(rest_len - ts_len), ts_len),
                 )
             }
diff --git a/library/core/src/slice/rotate.rs b/library/core/src/slice/rotate.rs
@@ -162,7 +162,7 @@ pub unsafe fn ptr_rotate<T>(mut left: usize, mut mid: *mut T, mut right: usize)
             // Algorithm 2
             // The `[T; 0]` here is to ensure this is appropriately aligned for T
             let mut rawarray = MaybeUninit::<(BufType, [T; 0])>::uninit();
-            let buf = rawarray.as_mut_ptr() as *mut T;
+            let buf = rawarray.as_mut_ptr().cast::<T>();
             // SAFETY: `mid-left <= mid-left+right < mid+right`
             let dim = unsafe { mid.sub(left).add(right) };
             if left <= right {
diff --git a/library/core/src/str/pattern.rs b/library/core/src/str/pattern.rs
diff --git a/library/core/src/str/validations.rs b/library/core/src/str/validations.rs
diff --git a/library/core/src/sync/atomic.rs b/library/core/src/sync/atomic.rs

Original file line number	Diff line number	Diff line change
`@@ -624,7 +624,7 @@ impl<T, const N: usize> Cell<[T; N]> {`
`624`	`624`	`#[unstable(feature = "as_array_of_cells", issue = "88248")]`
`625`	`625`	`pub fn as_array_of_cells(&self) -> &[Cell<T>; N] {`
`626`	`626`	// SAFETY: `Cell<T>` has the same memory layout as `T`.
`627`		`- unsafe { &(self as const Cell<[T; N]> as *const [Cell<T>; N]) }`
	`627`	`+ unsafe { &*ptr::from_ref(self).cast::<[Cell<T>; N]>() }`
`628`	`628`	`}`
`629`	`629`	`}`
`630`	`630`
Original file line number	Diff line number	Diff line change
`@@ -1054,12 +1054,12 @@ pub const unsafe fn transmute_copy<Src, Dst>(src: &Src) -> Dst {`
`1054`	`1054`	`if align_of::<Dst>() > align_of::<Src>() {`
`1055`	`1055`	// SAFETY: `src` is a reference which is guaranteed to be valid for reads.
`1056`	`1056`	`// The caller must guarantee that the actual transmutation is safe.`
`1057`		`- unsafe { ptr::read_unaligned(src as const Src as const Dst) }`
	`1057`	`+ unsafe { ptr::from_ref(src).cast::<Dst>().read_unaligned() }`
`1058`	`1058`	`} else {`
`1059`	`1059`	// SAFETY: `src` is a reference which is guaranteed to be valid for reads.
`1060`	`1060`	// We just checked that `src as *const Dst` was properly aligned.
`1061`	`1061`	`// The caller must guarantee that the actual transmutation is safe.`
`1062`		`- unsafe { ptr::read(src as const Src as const Dst) }`
	`1062`	`+ unsafe { ptr::from_ref(src).cast::<Dst>().read() }`
`1063`	`1063`	`}`
`1064`	`1064`	`}`
`1065`	`1065`
Original file line number	Diff line number	Diff line change
`@@ -48,7 +48,7 @@ impl<T: ?Sized> *const T {`
`48`	`48`	`}`
`49`	`49`
`50`	`50`	`// SAFETY: The two versions are equivalent at runtime.`
`51`		`- unsafe { const_eval_select((self as *const u8,), const_impl, runtime_impl) }`
	`51`	`+ unsafe { const_eval_select((self.cast::<u8>(),), const_impl, runtime_impl) }`
`52`	`52`	`}`
`53`	`53`
`54`	`54`	`/// Casts to a pointer of another type.`
`@@ -95,7 +95,7 @@ impl<T: ?Sized> *const T {`
`95`	`95`	`where`
`96`	`96`	`U: ?Sized,`
`97`	`97`	`{`
`98`		`- from_raw_parts::<U>(self as *const (), metadata(meta))`
	`98`	`+ from_raw_parts::<U>(self.cast::<()>(), metadata(meta))`
`99`	`99`	`}`
`100`	`100`
`101`	`101`	`/// Changes constness without changing the type.`
`@@ -400,7 +400,7 @@ impl<T: ?Sized> *const T {`
`400`	`400`	`{`
`401`	`401`	// SAFETY: the caller must guarantee that `self` meets all the
`402`	`402`	`// requirements for a reference.`
`403`		`- if self.is_null() { None } else { Some(unsafe { &(self as const MaybeUninit<T>) }) }`
	`403`	`+ if self.is_null() { None } else { Some(unsafe { &*self.cast::<MaybeUninit<T>>() }) }`
`404`	`404`	`}`
`405`	`405`
`406`	`406`	`/// Calculates the offset from a pointer.`
`@@ -822,7 +822,7 @@ impl<T: ?Sized> *const T {`
`822`	`822`	`where`
`823`	`823`	`T: Sized,`
`824`	`824`	`{`
`825`		`- match intrinsics::ptr_guaranteed_cmp(self as _, other as _) {`
	`825`	`+ match intrinsics::ptr_guaranteed_cmp(self, other) {`
`826`	`826`	`2 => None,`
`827`	`827`	`other => Some(other == 1),`
`828`	`828`	`}`
Original file line number	Diff line number	Diff line change
`@@ -1278,7 +1278,7 @@ pub const unsafe fn read_unaligned<T>(src: *const T) -> T {`
`1278`	`1278`	// Also, since we just wrote a valid value into `tmp`, it is guaranteed
`1279`	`1279`	`// to be properly initialized.`
`1280`	`1280`	`unsafe {`
`1281`		`- copy_nonoverlapping(src as const u8, tmp.as_mut_ptr() as mut u8, mem::size_of::<T>());`
	`1281`	`+ copy_nonoverlapping(src.cast::<u8>(), tmp.as_mut_ptr().cast::<u8>(), mem::size_of::<T>());`
`1282`	`1282`	`tmp.assume_init()`
`1283`	`1283`	`}`
`1284`	`1284`	`}`
`@@ -1473,7 +1473,7 @@ pub const unsafe fn write_unaligned<T>(dst: *mut T, src: T) {`
`1473`	`1473`	// `dst` cannot overlap `src` because the caller has mutable access
`1474`	`1474`	// to `dst` while `src` is owned by this function.
`1475`	`1475`	`unsafe {`
`1476`		`- copy_nonoverlapping(&src as const T as const u8, dst as *mut u8, mem::size_of::<T>());`
	`1476`	`+ copy_nonoverlapping(addr_of!(src).cast::<u8>(), dst.cast::<u8>(), mem::size_of::<T>());`
`1477`	`1477`	`// We are calling the intrinsic directly to avoid function calls in the generated code.`
`1478`	`1478`	`intrinsics::forget(src);`
`1479`	`1479`	`}`
Original file line number	Diff line number	Diff line change
`@@ -412,7 +412,7 @@ impl<T: ?Sized> *mut T {`
`412`	`412`	`{`
`413`	`413`	// SAFETY: the caller must guarantee that `self` meets all the
`414`	`414`	`// requirements for a reference.`
`415`		`- if self.is_null() { None } else { Some(unsafe { &(self as const MaybeUninit<T>) }) }`
	`415`	`+ unsafe { self.cast_const().as_uninit_ref() }`
`416`	`416`	`}`
`417`	`417`
`418`	`418`	`/// Calculates the offset from a pointer.`
`@@ -476,7 +476,7 @@ impl<T: ?Sized> *mut T {`
`476`	`476`	// SAFETY: the caller must uphold the safety contract for `offset`.
`477`	`477`	`// The obtained pointer is valid for writes since the caller must`
`478`	`478`	// guarantee that it points to the same allocated object as `self`.
`479`		`- unsafe { intrinsics::offset(self, count) as *mut T }`
	`479`	`+ unsafe { intrinsics::offset(self, count).cast_mut() }`
`480`	`480`	`}`
`481`	`481`
`482`	`482`	`/// Calculates the offset from a pointer in bytes.`
`@@ -555,7 +555,7 @@ impl<T: ?Sized> *mut T {`
`555`	`555`	`T: Sized,`
`556`	`556`	`{`
`557`	`557`	// SAFETY: the `arith_offset` intrinsic has no prerequisites to be called.
`558`		`- unsafe { intrinsics::arith_offset(self, count) as *mut T }`
	`558`	`+ unsafe { intrinsics::arith_offset(self, count).cast_mut() }`
`559`	`559`	`}`
`560`	`560`
`561`	`561`	`/// Calculates the offset from a pointer in bytes using wrapping arithmetic.`
`@@ -717,7 +717,7 @@ impl<T: ?Sized> *mut T {`
`717`	`717`	`{`
`718`	`718`	// SAFETY: the caller must guarantee that `self` meets all the
`719`	`719`	`// requirements for a reference.`
`720`		`- if self.is_null() { None } else { Some(unsafe { &mut (self as mut MaybeUninit<T>) }) }`
	`720`	`+ if self.is_null() { None } else { Some(unsafe { &mut *self.cast::<MaybeUninit<T>>() }) }`
`721`	`721`	`}`
`722`	`722`
`723`	`723`	`/// Returns whether two pointers are guaranteed to be equal.`
`@@ -744,7 +744,7 @@ impl<T: ?Sized> *mut T {`
`744`	`744`	`where`
`745`	`745`	`T: Sized,`
`746`	`746`	`{`
`747`		`- (self as *const T).guaranteed_eq(other as _)`
	`747`	`+ self.cast_const().guaranteed_eq(other.cast_const())`
`748`	`748`	`}`
`749`	`749`
`750`	`750`	`/// Returns whether two pointers are guaranteed to be inequal.`
`@@ -771,7 +771,7 @@ impl<T: ?Sized> *mut T {`
`771`	`771`	`where`
`772`	`772`	`T: Sized,`
`773`	`773`	`{`
`774`		`- (self as *const T).guaranteed_ne(other as _)`
	`774`	`+ self.cast_const().guaranteed_ne(other.cast_const())`
`775`	`775`	`}`
`776`	`776`
`777`	`777`	`/// Calculates the distance between two pointers. The returned value is in`
`@@ -864,7 +864,7 @@ impl<T: ?Sized> *mut T {`
`864`	`864`	`T: Sized,`
`865`	`865`	`{`
`866`	`866`	// SAFETY: the caller must uphold the safety contract for `offset_from`.
`867`		`- unsafe { (self as *const T).offset_from(origin) }`
	`867`	`+ unsafe { self.cast_const().offset_from(origin) }`
`868`	`868`	`}`
`869`	`869`
`870`	`870`	`/// Calculates the distance between two pointers. The returned value is in`
`@@ -955,7 +955,7 @@ impl<T: ?Sized> *mut T {`
`955`	`955`	`T: Sized,`
`956`	`956`	`{`
`957`	`957`	// SAFETY: the caller must uphold the safety contract for `sub_ptr`.
`958`		`- unsafe { (self as *const T).sub_ptr(origin) }`
	`958`	`+ unsafe { self.cast_const().sub_ptr(origin) }`
`959`	`959`	`}`
`960`	`960`
`961`	`961`	/// Calculates the offset from a pointer (convenience for `.offset(count as isize)`).
Original file line number	Diff line number	Diff line change
`@@ -88,7 +88,7 @@ where`
`88`	`88`	`// The two slices have been checked to have the same size above.`
`89`	`89`	`unsafe {`
`90`	`90`	`let size = mem::size_of_val(self);`
`91`		`- memcmp(self.as_ptr() as const u8, other.as_ptr() as const u8, size) == 0`
	`91`	`+ memcmp(self.as_ptr().cast::<u8>(), other.as_ptr().cast::<u8>(), size) == 0`
`92`	`92`	`}`
`93`	`93`	`}`
`94`	`94`	`}`
`@@ -231,7 +231,7 @@ impl SliceContains for i8 {`
`231`	`231`	// as `*const u8` is safe. The `x.as_ptr()` comes from a reference and is thus guaranteed
`232`	`232`	// to be valid for reads for the length of the slice `x.len()`, which cannot be larger
`233`	`233`	// than `isize::MAX`. The returned slice is never mutated.
`234`		`- let bytes: &[u8] = unsafe { from_raw_parts(x.as_ptr() as *const u8, x.len()) };`
	`234`	`+ let bytes: &[u8] = unsafe { from_raw_parts(x.as_ptr().cast::<u8>(), x.len()) };`
`235`	`235`	`memchr::memchr(byte, bytes).is_some()`
`236`	`236`	`}`
`237`	`237`	`}`
Original file line number	Diff line number	Diff line change
`@@ -90,7 +90,7 @@ impl<'a, T> Iter<'a, T> {`
`90`	`90`	`let end =`
`91`	`91`	`if T::IS_ZST { ptr.wrapping_byte_add(slice.len()) } else { ptr.add(slice.len()) };`
`92`	`92`
`93`		`- Self { ptr: NonNull::new_unchecked(ptr as *mut T), end, _marker: PhantomData }`
	`93`	`+ Self { ptr: NonNull::new_unchecked(ptr.cast_mut()), end, _marker: PhantomData }`
`94`	`94`	`}`
`95`	`95`	`}`
`96`	`96`
Original file line number	Diff line number	Diff line change
`@@ -1800,7 +1800,7 @@ impl<T> [T] {`
`1800`	`1800`	`pub fn split_array_ref<const N: usize>(&self) -> (&[T; N], &[T]) {`
`1801`	`1801`	`let (a, b) = self.split_at(N);`
`1802`	`1802`	`// SAFETY: a points to [T; N]? Yes it's [T] of length N (checked by split_at)`
`1803`		`- unsafe { (&(a.as_ptr() as const [T; N]), b) }`
	`1803`	`+ unsafe { (&*a.as_ptr().cast::<[T; N]>(), b) }`
`1804`	`1804`	`}`
`1805`	`1805`
`1806`	`1806`	`/// Divides one mutable slice into an array and a remainder slice at an index.`
`@@ -1833,7 +1833,7 @@ impl<T> [T] {`
`1833`	`1833`	`pub fn split_array_mut<const N: usize>(&mut self) -> (&mut [T; N], &mut [T]) {`
`1834`	`1834`	`let (a, b) = self.split_at_mut(N);`
`1835`	`1835`	`// SAFETY: a points to [T; N]? Yes it's [T] of length N (checked by split_at_mut)`
`1836`		`- unsafe { (&mut (a.as_mut_ptr() as mut [T; N]), b) }`
	`1836`	`+ unsafe { (&mut *a.as_mut_ptr().cast::<[T; N]>(), b) }`
`1837`	`1837`	`}`
`1838`	`1838`
`1839`	`1839`	`/// Divides one slice into an array and a remainder slice at an index from`
`@@ -1879,7 +1879,7 @@ impl<T> [T] {`
`1879`	`1879`	`assert!(N <= self.len());`
`1880`	`1880`	`let (a, b) = self.split_at(self.len() - N);`
`1881`	`1881`	`// SAFETY: b points to [T; N]? Yes it's [T] of length N (checked by split_at)`
`1882`		`- unsafe { (a, &(b.as_ptr() as const [T; N])) }`
	`1882`	`+ unsafe { (a, &*b.as_ptr().cast::<[T; N]>()) }`
`1883`	`1883`	`}`
`1884`	`1884`
`1885`	`1885`	`/// Divides one mutable slice into an array and a remainder slice at an`
`@@ -1913,7 +1913,7 @@ impl<T> [T] {`
`1913`	`1913`	`assert!(N <= self.len());`
`1914`	`1914`	`let (a, b) = self.split_at_mut(self.len() - N);`
`1915`	`1915`	`// SAFETY: b points to [T; N]? Yes it's [T] of length N (checked by split_at_mut)`
`1916`		`- unsafe { (a, &mut (b.as_mut_ptr() as mut [T; N])) }`
	`1916`	`+ unsafe { (a, &mut *b.as_mut_ptr().cast::<[T; N]>()) }`
`1917`	`1917`	`}`
`1918`	`1918`
`1919`	`1919`	`/// Returns an iterator over subslices separated by elements that match`
`@@ -3582,7 +3582,7 @@ impl<T> [T] {`
`3582`	`3582`	`unsafe {`
`3583`	`3583`	`(`
`3584`	`3584`	`left,`
`3585`		`- from_raw_parts(rest.as_ptr() as *const U, us_len),`
	`3585`	`+ from_raw_parts(rest.as_ptr().cast::<U>(), us_len),`
`3586`	`3586`	`from_raw_parts(rest.as_ptr().add(rest.len() - ts_len), ts_len),`
`3587`	`3587`	`)`
`3588`	`3588`	`}`
`@@ -3652,7 +3652,7 @@ impl<T> [T] {`
`3652`	`3652`	`unsafe {`
`3653`	`3653`	`(`
`3654`	`3654`	`left,`
`3655`		`- from_raw_parts_mut(mut_ptr as *mut U, us_len),`
	`3655`	`+ from_raw_parts_mut(mut_ptr.cast::<U>(), us_len),`
`3656`	`3656`	`from_raw_parts_mut(mut_ptr.add(rest_len - ts_len), ts_len),`
`3657`	`3657`	`)`
`3658`	`3658`	`}`