-
Notifications
You must be signed in to change notification settings - Fork 11.9k
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
[libc++] Add support for bounded iterators in std::array
This patch introduces a new kind of bounded iterator that knows the size of its valid range at compile-time, as in std::array. This allows computing the end of the range from the start of the range (and the size) instead of storing the size (or the end of the range) in the iterator. The iterator wrapper is otherwise identical in design to the existing __bounded_iter. Since this requires changing the type of the iterators returned by std::array, this new bounded iterator is controlled by an ABI flag. As a drive-by, centralize the tests for std::array::operator[] and add missing tests for OOB operator[] on non-empty arrays. Fixes #70864
- Loading branch information
Showing
13 changed files
with
565 additions
and
51 deletions.
There are no files selected for viewing
9 changes: 8 additions & 1 deletion
9
libcxx/cmake/caches/Generic-hardening-mode-fast-with-abi-breaks.cmake
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -1,2 +1,9 @@ | ||
| set(LIBCXX_HARDENING_MODE "fast" CACHE STRING "") | ||
| set(LIBCXX_ABI_DEFINES "_LIBCPP_ABI_BOUNDED_ITERATORS;_LIBCPP_ABI_BOUNDED_ITERATORS_IN_STRING;_LIBCPP_ABI_BOUNDED_ITERATORS_IN_VECTOR;_LIBCPP_ABI_BOUNDED_UNIQUE_PTR" CACHE STRING "") | ||
| set(_defines | ||
| _LIBCPP_ABI_BOUNDED_ITERATORS | ||
| _LIBCPP_ABI_BOUNDED_ITERATORS_IN_STRING | ||
| _LIBCPP_ABI_BOUNDED_ITERATORS_IN_VECTOR | ||
| _LIBCPP_ABI_BOUNDED_UNIQUE_PTR | ||
| _LIBCPP_ABI_BOUNDED_ITERATORS_IN_STD_ARRAY | ||
| ) | ||
| set(LIBCXX_ABI_DEFINES "${_defines}" CACHE STRING "") |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,268 @@ | ||
| // -*- C++ -*- | ||
| //===----------------------------------------------------------------------===// | ||
| // | ||
| // Part of the LLVM Project, under the Apache License v2.0 with LLVM Exceptions. | ||
| // See https://llvm.org/LICENSE.txt for license information. | ||
| // SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception | ||
| // | ||
| //===----------------------------------------------------------------------===// | ||
|
|
||
| #ifndef _LIBCPP___ITERATOR_STATIC_BOUNDED_ITER_H | ||
| #define _LIBCPP___ITERATOR_STATIC_BOUNDED_ITER_H | ||
|
|
||
| #include <__assert> | ||
| #include <__compare/ordering.h> | ||
| #include <__compare/three_way_comparable.h> | ||
| #include <__config> | ||
| #include <__cstddef/size_t.h> | ||
| #include <__iterator/iterator_traits.h> | ||
| #include <__memory/pointer_traits.h> | ||
| #include <__type_traits/enable_if.h> | ||
| #include <__type_traits/integral_constant.h> | ||
| #include <__type_traits/is_convertible.h> | ||
| #include <__utility/move.h> | ||
|
|
||
| #if !defined(_LIBCPP_HAS_NO_PRAGMA_SYSTEM_HEADER) | ||
| # pragma GCC system_header | ||
| #endif | ||
|
|
||
| _LIBCPP_PUSH_MACROS | ||
| #include <__undef_macros> | ||
|
|
||
| _LIBCPP_BEGIN_NAMESPACE_STD | ||
|
|
||
| // Iterator wrapper that carries the valid range it is allowed to access, but where | ||
| // the size of that range is known at compile-time. | ||
| // | ||
| // This is an iterator wrapper for contiguous iterators that points within a range | ||
| // whose size is known at compile-time. This is very similar to `__bounded_iter`, | ||
| // except that we don't have to store the end of the range in physical memory since | ||
| // it can be computed from the start of the range. | ||
| // | ||
| // The operations on which this iterator wrapper traps are the same as `__bounded_iter`. | ||
| template <class _Iterator, size_t _Size, class = __enable_if_t< __libcpp_is_contiguous_iterator<_Iterator>::value> > | ||
| struct __static_bounded_iter { | ||
| using value_type = typename iterator_traits<_Iterator>::value_type; | ||
| using difference_type = typename iterator_traits<_Iterator>::difference_type; | ||
| using pointer = typename iterator_traits<_Iterator>::pointer; | ||
| using reference = typename iterator_traits<_Iterator>::reference; | ||
| using iterator_category = typename iterator_traits<_Iterator>::iterator_category; | ||
| #if _LIBCPP_STD_VER >= 20 | ||
| using iterator_concept = contiguous_iterator_tag; | ||
| #endif | ||
|
|
||
| // Create a singular iterator. | ||
| // | ||
| // Such an iterator points past the end of an empty range, so it is not dereferenceable. | ||
| // Operations like comparison and assignment are valid. | ||
| _LIBCPP_HIDE_FROM_ABI __static_bounded_iter() = default; | ||
|
|
||
| _LIBCPP_HIDE_FROM_ABI __static_bounded_iter(__static_bounded_iter const&) = default; | ||
| _LIBCPP_HIDE_FROM_ABI __static_bounded_iter(__static_bounded_iter&&) = default; | ||
|
|
||
| template <class _OtherIterator, __enable_if_t<is_convertible<_OtherIterator, _Iterator>::value, int> = 0> | ||
| _LIBCPP_HIDE_FROM_ABI _LIBCPP_CONSTEXPR | ||
| __static_bounded_iter(__static_bounded_iter<_OtherIterator, _Size> const& __other) _NOEXCEPT | ||
| : __current_(__other.__current_), | ||
| __begin_(__other.__begin_) {} | ||
|
|
||
| // Assign a bounded iterator to another one, rebinding the bounds of the iterator as well. | ||
| _LIBCPP_HIDE_FROM_ABI __static_bounded_iter& operator=(__static_bounded_iter const&) = default; | ||
| _LIBCPP_HIDE_FROM_ABI __static_bounded_iter& operator=(__static_bounded_iter&&) = default; | ||
|
|
||
| private: | ||
| // Create an iterator wrapping the given iterator, and whose bounds are described | ||
| // by the provided [begin, begin + _Size] range. | ||
| _LIBCPP_HIDE_FROM_ABI | ||
| _LIBCPP_CONSTEXPR_SINCE_CXX14 explicit __static_bounded_iter(_Iterator __current, _Iterator __begin) | ||
| : __current_(__current), __begin_(__begin) { | ||
| _LIBCPP_ASSERT_INTERNAL( | ||
| __begin <= __current, "__static_bounded_iter(current, begin): current and begin are inconsistent"); | ||
| _LIBCPP_ASSERT_INTERNAL( | ||
| __current <= __end(), "__static_bounded_iter(current, begin): current and (begin + Size) are inconsistent"); | ||
| } | ||
|
|
||
| template <size_t _Sz, class _It> | ||
| friend _LIBCPP_CONSTEXPR __static_bounded_iter<_It, _Sz> __make_static_bounded_iter(_It, _It); | ||
|
|
||
| public: | ||
| // Dereference and indexing operations. | ||
| _LIBCPP_HIDE_FROM_ABI _LIBCPP_CONSTEXPR_SINCE_CXX14 reference operator*() const _NOEXCEPT { | ||
| _LIBCPP_ASSERT_VALID_ELEMENT_ACCESS( | ||
| __current_ != __end(), "__static_bounded_iter::operator*: Attempt to dereference an iterator at the end"); | ||
| return *__current_; | ||
| } | ||
|
|
||
| _LIBCPP_HIDE_FROM_ABI _LIBCPP_CONSTEXPR_SINCE_CXX14 pointer operator->() const _NOEXCEPT { | ||
| _LIBCPP_ASSERT_VALID_ELEMENT_ACCESS( | ||
| __current_ != __end(), "__static_bounded_iter::operator->: Attempt to dereference an iterator at the end"); | ||
| return std::__to_address(__current_); | ||
| } | ||
|
|
||
| _LIBCPP_HIDE_FROM_ABI _LIBCPP_CONSTEXPR_SINCE_CXX14 reference operator[](difference_type __n) const _NOEXCEPT { | ||
| _LIBCPP_ASSERT_VALID_ELEMENT_ACCESS( | ||
| __n >= __begin_ - __current_, "__static_bounded_iter::operator[]: Attempt to index an iterator past the start"); | ||
| _LIBCPP_ASSERT_VALID_ELEMENT_ACCESS( | ||
| __n < __end() - __current_, | ||
| "__static_bounded_iter::operator[]: Attempt to index an iterator at or past the end"); | ||
| return __current_[__n]; | ||
| } | ||
|
|
||
| // Arithmetic operations. | ||
| // | ||
| // These operations check that the iterator remains within `[begin, end]`. | ||
| _LIBCPP_HIDE_FROM_ABI _LIBCPP_CONSTEXPR_SINCE_CXX14 __static_bounded_iter& operator++() _NOEXCEPT { | ||
| _LIBCPP_ASSERT_VALID_ELEMENT_ACCESS( | ||
| __current_ != __end(), "__static_bounded_iter::operator++: Attempt to advance an iterator past the end"); | ||
| ++__current_; | ||
| return *this; | ||
| } | ||
| _LIBCPP_HIDE_FROM_ABI _LIBCPP_CONSTEXPR_SINCE_CXX14 __static_bounded_iter operator++(int) _NOEXCEPT { | ||
| __static_bounded_iter __tmp(*this); | ||
| ++*this; | ||
| return __tmp; | ||
| } | ||
|
|
||
| _LIBCPP_HIDE_FROM_ABI _LIBCPP_CONSTEXPR_SINCE_CXX14 __static_bounded_iter& operator--() _NOEXCEPT { | ||
| _LIBCPP_ASSERT_VALID_ELEMENT_ACCESS( | ||
| __current_ != __begin_, "__static_bounded_iter::operator--: Attempt to rewind an iterator past the start"); | ||
| --__current_; | ||
| return *this; | ||
| } | ||
| _LIBCPP_HIDE_FROM_ABI _LIBCPP_CONSTEXPR_SINCE_CXX14 __static_bounded_iter operator--(int) _NOEXCEPT { | ||
| __static_bounded_iter __tmp(*this); | ||
| --*this; | ||
| return __tmp; | ||
| } | ||
|
|
||
| _LIBCPP_HIDE_FROM_ABI _LIBCPP_CONSTEXPR_SINCE_CXX14 __static_bounded_iter& operator+=(difference_type __n) _NOEXCEPT { | ||
| _LIBCPP_ASSERT_VALID_ELEMENT_ACCESS( | ||
| __n >= __begin_ - __current_, | ||
| "__static_bounded_iter::operator+=: Attempt to rewind an iterator past the start"); | ||
| _LIBCPP_ASSERT_VALID_ELEMENT_ACCESS( | ||
| __n <= __end() - __current_, "__static_bounded_iter::operator+=: Attempt to advance an iterator past the end"); | ||
| __current_ += __n; | ||
| return *this; | ||
| } | ||
| _LIBCPP_HIDE_FROM_ABI _LIBCPP_CONSTEXPR_SINCE_CXX14 friend __static_bounded_iter | ||
| operator+(__static_bounded_iter const& __self, difference_type __n) _NOEXCEPT { | ||
| __static_bounded_iter __tmp(__self); | ||
| __tmp += __n; | ||
| return __tmp; | ||
| } | ||
| _LIBCPP_HIDE_FROM_ABI _LIBCPP_CONSTEXPR_SINCE_CXX14 friend __static_bounded_iter | ||
| operator+(difference_type __n, __static_bounded_iter const& __self) _NOEXCEPT { | ||
| __static_bounded_iter __tmp(__self); | ||
| __tmp += __n; | ||
| return __tmp; | ||
| } | ||
|
|
||
| _LIBCPP_HIDE_FROM_ABI _LIBCPP_CONSTEXPR_SINCE_CXX14 __static_bounded_iter& operator-=(difference_type __n) _NOEXCEPT { | ||
| _LIBCPP_ASSERT_VALID_ELEMENT_ACCESS( | ||
| __n <= __current_ - __begin_, | ||
| "__static_bounded_iter::operator-=: Attempt to rewind an iterator past the start"); | ||
| _LIBCPP_ASSERT_VALID_ELEMENT_ACCESS( | ||
| __n >= __current_ - __end(), "__static_bounded_iter::operator-=: Attempt to advance an iterator past the end"); | ||
| __current_ -= __n; | ||
| return *this; | ||
| } | ||
| _LIBCPP_HIDE_FROM_ABI _LIBCPP_CONSTEXPR_SINCE_CXX14 friend __static_bounded_iter | ||
| operator-(__static_bounded_iter const& __self, difference_type __n) _NOEXCEPT { | ||
| __static_bounded_iter __tmp(__self); | ||
| __tmp -= __n; | ||
| return __tmp; | ||
| } | ||
| _LIBCPP_HIDE_FROM_ABI _LIBCPP_CONSTEXPR_SINCE_CXX14 friend difference_type | ||
| operator-(__static_bounded_iter const& __x, __static_bounded_iter const& __y) _NOEXCEPT { | ||
| return __x.__current_ - __y.__current_; | ||
| } | ||
|
|
||
| // Comparison operations. | ||
| // | ||
| // These operations do not check whether the iterators are within their bounds. | ||
| // The valid range for each iterator is also not considered as part of the comparison, | ||
| // i.e. two iterators pointing to the same location will be considered equal even | ||
| // if they have different validity ranges. | ||
| _LIBCPP_HIDE_FROM_ABI _LIBCPP_CONSTEXPR friend bool | ||
| operator==(__static_bounded_iter const& __x, __static_bounded_iter const& __y) _NOEXCEPT { | ||
| return __x.__current_ == __y.__current_; | ||
| } | ||
|
|
||
| #if _LIBCPP_STD_VER <= 17 | ||
| _LIBCPP_HIDE_FROM_ABI _LIBCPP_CONSTEXPR friend bool | ||
| operator!=(__static_bounded_iter const& __x, __static_bounded_iter const& __y) _NOEXCEPT { | ||
| return __x.__current_ != __y.__current_; | ||
| } | ||
|
|
||
| _LIBCPP_HIDE_FROM_ABI _LIBCPP_CONSTEXPR friend bool | ||
| operator<(__static_bounded_iter const& __x, __static_bounded_iter const& __y) _NOEXCEPT { | ||
| return __x.__current_ < __y.__current_; | ||
| } | ||
| _LIBCPP_HIDE_FROM_ABI _LIBCPP_CONSTEXPR friend bool | ||
| operator>(__static_bounded_iter const& __x, __static_bounded_iter const& __y) _NOEXCEPT { | ||
| return __x.__current_ > __y.__current_; | ||
| } | ||
| _LIBCPP_HIDE_FROM_ABI _LIBCPP_CONSTEXPR friend bool | ||
| operator<=(__static_bounded_iter const& __x, __static_bounded_iter const& __y) _NOEXCEPT { | ||
| return __x.__current_ <= __y.__current_; | ||
| } | ||
| _LIBCPP_HIDE_FROM_ABI _LIBCPP_CONSTEXPR friend bool | ||
| operator>=(__static_bounded_iter const& __x, __static_bounded_iter const& __y) _NOEXCEPT { | ||
| return __x.__current_ >= __y.__current_; | ||
| } | ||
|
|
||
| #else | ||
| _LIBCPP_HIDE_FROM_ABI constexpr friend strong_ordering | ||
| operator<=>(__static_bounded_iter const& __x, __static_bounded_iter const& __y) noexcept { | ||
| if constexpr (three_way_comparable<_Iterator, strong_ordering>) { | ||
| return __x.__current_ <=> __y.__current_; | ||
| } else { | ||
| if (__x.__current_ < __y.__current_) | ||
| return strong_ordering::less; | ||
|
|
||
| if (__x.__current_ == __y.__current_) | ||
| return strong_ordering::equal; | ||
|
|
||
| return strong_ordering::greater; | ||
| } | ||
| } | ||
| #endif // _LIBCPP_STD_VER >= 20 | ||
|
|
||
| private: | ||
| template <class> | ||
| friend struct pointer_traits; | ||
| template <class, size_t, class> | ||
| friend struct __static_bounded_iter; | ||
| _Iterator __current_; // current iterator | ||
| _Iterator __begin_; // start of the valid range, which is [__begin_, __begin_ + _Size) | ||
|
|
||
| _LIBCPP_HIDE_FROM_ABI _LIBCPP_CONSTEXPR _Iterator __end() const _NOEXCEPT { return __begin_ + _Size; } | ||
| }; | ||
|
|
||
| template <size_t _Size, class _It> | ||
| _LIBCPP_HIDE_FROM_ABI _LIBCPP_CONSTEXPR __static_bounded_iter<_It, _Size> | ||
| __make_static_bounded_iter(_It __it, _It __begin) { | ||
| return __static_bounded_iter<_It, _Size>(std::move(__it), std::move(__begin)); | ||
| } | ||
|
|
||
| #if _LIBCPP_STD_VER <= 17 | ||
| template <class _Iterator, size_t _Size> | ||
| struct __libcpp_is_contiguous_iterator<__static_bounded_iter<_Iterator, _Size> > : true_type {}; | ||
| #endif | ||
|
|
||
| template <class _Iterator, size_t _Size> | ||
| struct pointer_traits<__static_bounded_iter<_Iterator, _Size> > { | ||
| using pointer = __static_bounded_iter<_Iterator, _Size>; | ||
| using element_type = typename pointer_traits<_Iterator>::element_type; | ||
| using difference_type = typename pointer_traits<_Iterator>::difference_type; | ||
|
|
||
| _LIBCPP_HIDE_FROM_ABI _LIBCPP_CONSTEXPR static element_type* to_address(pointer __it) _NOEXCEPT { | ||
| return std::__to_address(__it.__current_); | ||
| } | ||
| }; | ||
|
|
||
| _LIBCPP_END_NAMESPACE_STD | ||
|
|
||
| _LIBCPP_POP_MACROS | ||
|
|
||
| #endif // _LIBCPP___ITERATOR_STATIC_BOUNDED_ITER_H |
Oops, something went wrong.