Initial UnsafePinned implementation [Part 1: Libs]
#137043
Conversation
rustbot
added
S-waiting-on-review
Sky9x
changed the title
UnsafePinned impl [Part 1: Libs]UnsafePinned implementation [Part 1: Libs]
Sky9x
force-pushed
the
unsafe-pinned-pt1-libs
branch
from
e823a89 to
97308a2
Compare
tests/ui/rfcs/rfc-3467-unsafe-pinned/unsafe-pinned-hides-niche.rs
Outdated
Show resolved
Hide resolved
tests/ui/rfcs/rfc-3467-unsafe-pinned/unsafe-pinned-hides-niche.rs
Outdated
Show resolved
Hide resolved
tests/ui/rfcs/rfc-3467-unsafe-pinned/unsafe-pinned-hides-niche.rs
Outdated
Show resolved
Hide resolved
|
Cc @rust-lang/libs-api, this unstably adds the interfaces from the accepted RFC https://rust-lang.github.io/rfcs/3467-unsafe-pinned.html. |
Sky9x
force-pushed
the
unsafe-pinned-pt1-libs
branch
2 times, most recently
from
24af599 to
9ec74c7
Compare
This comment has been minimized.
This comment has been minimized.
Sky9x
force-pushed
the
unsafe-pinned-pt1-libs
branch
from
9ec74c7 to
74efc47
Compare
This comment has been minimized.
This comment has been minimized.
Sky9x
force-pushed
the
unsafe-pinned-pt1-libs
branch
from
74efc47 to
c42e42c
Compare
|
☔ The latest upstream changes (presumably #138366) made this pull request unmergeable. Please resolve the merge conflicts. |
There was a problem hiding this comment.
This API appears to match RFC 3467 so I think it is good to go. The docs could probably use elaboration at some point, but that should be fine to defer until the feature is fully available.
r=me with one doc request and conflicts resolved.
Cc @WaffleLapkin @RalfJung if you have anything else.
|
compiler changes LGTM. |
|
@rustbot author for #137043 (review) |
rustbot
removed
the
S-waiting-on-review
|
Reminder, once the PR becomes ready for a review, use |
rustbot
added
the
S-waiting-on-author
Rollup of 11 pull requests Successful merges: - rust-lang#137043 (Initial `UnsafePinned` implementation [Part 1: Libs]) - rust-lang#138962 (Expect an array when expected and acutal types are both arrays during cast) - rust-lang#139001 (add `naked_functions_rustic_abi` feature gate) - rust-lang#139379 (Use delayed bug for normalization errors in drop elaboration) - rust-lang#139582 (Various coercion cleanups) - rust-lang#139628 (Suggest remove redundant `$()?` around `vis`) - rust-lang#139644 (Micro-optimize `InstSimplify`'s `simplify_primitive_clone`) - rust-lang#139671 (Proc macro span API redesign: Replace proc_macro::SourceFile by Span::{file, local_file}) - rust-lang#139674 (In `rustc_mir_transform`, iterate over index newtypes instead of ints) - rust-lang#139740 (Convert `tests/ui/lint/dead-code/self-assign.rs` to a known-bug test) - rust-lang#139741 (fix smir's run! doc and import) r? `@ghost` `@rustbot` modify labels: rollup
Rollup of 10 pull requests Successful merges: - rust-lang#137043 (Initial `UnsafePinned` implementation [Part 1: Libs]) - rust-lang#138962 (Expect an array when expected and acutal types are both arrays during cast) - rust-lang#139001 (add `naked_functions_rustic_abi` feature gate) - rust-lang#139379 (Use delayed bug for normalization errors in drop elaboration) - rust-lang#139582 (Various coercion cleanups) - rust-lang#139628 (Suggest remove redundant `$()?` around `vis`) - rust-lang#139644 (Micro-optimize `InstSimplify`'s `simplify_primitive_clone`) - rust-lang#139674 (In `rustc_mir_transform`, iterate over index newtypes instead of ints) - rust-lang#139740 (Convert `tests/ui/lint/dead-code/self-assign.rs` to a known-bug test) - rust-lang#139741 (fix smir's run! doc and import) r? `@ghost` `@rustbot` modify labels: rollup
Rollup merge of rust-lang#137043 - Sky9x:unsafe-pinned-pt1-libs, r=tgross35,RalfJung,WaffleLapkin Initial `UnsafePinned` implementation [Part 1: Libs] Initial libs changes necessary to unblock further work on [RFC 3467](https://rust-lang.github.io/rfcs/3467-unsafe-pinned.html). Tracking issue: rust-lang#125735 This PR is split off from rust-lang#136964, and includes just the libs changes: - `UnsafePinned` struct - private `UnsafeUnpin` structural auto trait - Lang items for both - Compiler changes necessary to block niches on `UnsafePinned` This PR does not change codegen, miri, the existing `!Unpin` hack, or anything else. That work is to be split into later PRs. --- cc ``@RalfJung`` ``@Noratrieb`` ``@rustbot`` label F-unsafe_pinned T-libs-api
|
@Sky9x I've sent a RFC version for including part of this API in the linux kernel, please let me know if you want me to include a Co-Developed-By tag (or something else) to be included? Also are you alright with relicensing as GPL v2 or should the Apache & MIT license be kept? Link: https://lore.kernel.org/rust-for-linux/[email protected]/ |
`UnsafePinned<T>` is useful for cases where a value might be shared with C code but not directly used by it. In particular this is added for storing additional data in the `MiscDeviceRegistration` which will be shared between `fops->open` and the containing struct. Similar to `Opaque` but guarantees that the value is always initialized and that the inner value is dropped when `UnsafePinned` is dropped. This was originally proposed for the IRQ abstractions [0] and is also useful for other where the inner data may be aliased, but is always valid and automatic `Drop` is desired. Since then the `UnsafePinned` type was added to upstream Rust [1] as a unstable feature, therefore this patch implements the subset required for additional data in `MiscDeviceRegistration` on older rust versions and using the upstream type on new rust versions which include this feature. Some differences to the upstream type definition are required in the kernel implementation, because upstream type uses some compiler changes to opt out of certain optimizations, this is documented in a comment on the `UnsafePinned` type. The documentation on is based on the upstream rust documentation with minor modifications. Link: https://lore.kernel.org/rust-for-linux/CAH5fLgiOASgjoYKFz6kWwzLaH07DqP2ph+3YyCDh2+gYqGpABA@mail.gmail.com [0] Link: rust-lang/rust#137043 [1] Suggested-by: Alice Ryhl <[email protected]> Signed-off-by: Christian Schrefl <[email protected]>
`UnsafePinned<T>` is useful for cases where a value might be shared with C code but not directly used by it. In particular this is added for storing additional data in the `MiscDeviceRegistration` which will be shared between `fops->open` and the containing struct. Similar to `Opaque` but guarantees that the value is always initialized and that the inner value is dropped when `UnsafePinned` is dropped. This was originally proposed for the IRQ abstractions [0] and is also useful for other where the inner data may be aliased, but is always valid and automatic `Drop` is desired. Since then the `UnsafePinned` type was added to upstream Rust [1] as a unstable feature, therefore this patch implements the subset required for additional data in `MiscDeviceRegistration` on older rust versions and using the upstream type on new rust versions which include this feature. Some differences to the upstream type definition are required in the kernel implementation, because upstream type uses some compiler changes to opt out of certain optimizations, this is documented in a comment on the `UnsafePinned` type. The documentation on is based on the upstream rust documentation with minor modifications. Link: https://lore.kernel.org/rust-for-linux/CAH5fLgiOASgjoYKFz6kWwzLaH07DqP2ph+3YyCDh2+gYqGpABA@mail.gmail.com [0] Link: rust-lang/rust#137043 [1] Suggested-by: Alice Ryhl <[email protected]> Signed-off-by: Christian Schrefl <[email protected]>
|
@onestacked please note that this type doesn't do anything yet. the language part that allows aliasing of mutable references isn't implemented yet. |
|
The plan is to only use the Rust |
|
It is always nice to test the new feature works before it gets stabilized, so the patch is useful :) |
Sure? My git email is
OK with relicensing as GPLv2.
Your polyfill with
The existing |
Keep in mind, if the code maintained on the kernel side does not preserve the MIT/Apache 2.0 license, then any changes or improvements made to that code (by others) cannot be propagated back to Rust (as those changes will only be GPLv2 licensed). |
I'm ok licensing it however, but yeah maybe MIT/Apache is better |
|
Alright I'll keep it then. |
Thanks! If @onestacked is adding you as a Co-developed-by/Signed-off-by, then please make sure you are OK with the DCO: https://docs.kernel.org/process/submitting-patches.html#developer-s-certificate-of-origin-1-1 |
Also probably best to keep it licensed as |
…ompiler-errors Re-remove `AdtFlags::IS_ANONYMOUS` Removed in rust-lang#138296. I accidentally re-added it in rust-lang#137043 while resolving merge conflicts. This PR re-removes it. r? `@compiler-errors` (sorry)
|
The existing !Unpin hacks in place should prevent miscompliations. Miri currently disables protectors when retagging such types, so it won't be able to catch any violations. That being said, you can use the wrapper in its current state for writing code (and I have), it just may not be optimized as well or checked by miri.
Miri disables retagging entirely for these types, not just protectors.
And it uses the same logic for this as codegen, so if Miri does not complain there should be no miscompilations. (Unless someone changed one of those checks and forgot to change the other...)
We'll make first Miri and then codegen stricter some time after this lands.
|
…ompiler-errors Re-remove `AdtFlags::IS_ANONYMOUS` Removed in rust-lang#138296. I accidentally re-added it in rust-lang#137043 while resolving merge conflicts. This PR re-removes it. r? ``@compiler-errors`` (sorry)
…ross35,RalfJung,WaffleLapkin Initial `UnsafePinned` implementation [Part 1: Libs] Initial libs changes necessary to unblock further work on [RFC 3467](https://rust-lang.github.io/rfcs/3467-unsafe-pinned.html). Tracking issue: rust-lang#125735 This PR is split off from rust-lang#136964, and includes just the libs changes: - `UnsafePinned` struct - private `UnsafeUnpin` structural auto trait - Lang items for both - Compiler changes necessary to block niches on `UnsafePinned` This PR does not change codegen, miri, the existing `!Unpin` hack, or anything else. That work is to be split into later PRs. --- cc ``@RalfJung`` ``@Noratrieb`` ``@rustbot`` label F-unsafe_pinned T-libs-api
Rollup merge of rust-lang#140025 - Sky9x:re-remove-adtflags-anon, r=compiler-errors Re-remove `AdtFlags::IS_ANONYMOUS` Removed in rust-lang#138296. I accidentally re-added it in rust-lang#137043 while resolving merge conflicts. This PR re-removes it. r? ``@compiler-errors`` (sorry)
Initial libs changes necessary to unblock further work on RFC 3467.
Tracking issue: #125735
This PR is split off from #136964, and includes just the libs changes:
UnsafePinnedstructUnsafeUnpinstructural auto traitUnsafePinnedThis PR does not change codegen, miri, the existing
!Unpinhack, or anything else. That work is to be split into later PRs.cc @RalfJung @Noratrieb
@rustbot label F-unsafe_pinned T-libs-api