Be more cautious about drain drops

cuviper · cuviper · commit 98077fe07c82 · 2023-03-02T09:07:47.000-08:00
This makes a greater effort to ensure that in all cases where either `DrainProducer` or `SliceDrain` will drop data, there are no references left pointing to that memory. It's not actually clear that this would be a problem anyway, as long as there's nothing accessing that zombie data, but it's not too much trouble to avoid it. Fixes rayon-rs#1029.
diff --git a/src/array.rs b/src/array.rs
@@ -78,7 +78,8 @@ impl<T: Send, const N: usize> IndexedParallelIterator for IntoIter<T, N> {
         unsafe {
             // Drain every item, and then the local array can just fall out of scope.
             let mut array = ManuallyDrop::new(self.array);
-            callback.callback(DrainProducer::new(&mut *array))
+            let producer = DrainProducer::new(array.as_mut_slice());
+            callback.callback(producer)
         }
     }
 }
diff --git a/src/vec.rs b/src/vec.rs
@@ -225,8 +225,9 @@ impl<'data, T: 'data + Send> Producer for DrainProducer<'data, T> {
 
 impl<'data, T: 'data + Send> Drop for DrainProducer<'data, T> {
     fn drop(&mut self) {
-        // use `Drop for [T]`
-        unsafe { ptr::drop_in_place(self.slice) };
+        // extract the slice so we can use `Drop for [T]`
+        let slice_ptr = mem::take(&mut self.slice).as_mut_ptr();
+        unsafe { ptr::drop_in_place(slice_ptr) };
     }
 }
 
@@ -276,7 +277,9 @@ impl<'data, T: 'data> iter::FusedIterator for SliceDrain<'data, T> {}
 impl<'data, T: 'data> Drop for SliceDrain<'data, T> {
     fn drop(&mut self) {
         // extract the iterator so we can use `Drop for [T]`
-        let iter = mem::replace(&mut self.iter, [].iter_mut());
-        unsafe { ptr::drop_in_place(iter.into_slice()) };
+        let slice_ptr = mem::replace(&mut self.iter, [].iter_mut())
+            .into_slice()
+            .as_mut_ptr();
+        unsafe { ptr::drop_in_place(slice_ptr) };
     }
 }

Original file line number	Diff line number	Diff line change
`@@ -78,7 +78,8 @@ impl<T: Send, const N: usize> IndexedParallelIterator for IntoIter<T, N> {`
`78`	`78`	`unsafe {`
`79`	`79`	`// Drain every item, and then the local array can just fall out of scope.`
`80`	`80`	`let mut array = ManuallyDrop::new(self.array);`
`81`		`- callback.callback(DrainProducer::new(&mut *array))`
	`81`	`+ let producer = DrainProducer::new(array.as_mut_slice());`
	`82`	`+ callback.callback(producer)`
`82`	`83`	`}`
`83`	`84`	`}`
`84`	`85`	`}`
Original file line number	Diff line number	Diff line change
`@@ -225,8 +225,9 @@ impl<'data, T: 'data + Send> Producer for DrainProducer<'data, T> {`
`225`	`225`
`226`	`226`	`impl<'data, T: 'data + Send> Drop for DrainProducer<'data, T> {`
`227`	`227`	`fn drop(&mut self) {`
`228`		- // use `Drop for [T]`
`229`		`- unsafe { ptr::drop_in_place(self.slice) };`
	`228`	+ // extract the slice so we can use `Drop for [T]`
	`229`	`+ let slice_ptr = mem::take(&mut self.slice).as_mut_ptr();`
	`230`	`+ unsafe { ptr::drop_in_place(slice_ptr) };`
`230`	`231`	`}`
`231`	`232`	`}`
`232`	`233`
`@@ -276,7 +277,9 @@ impl<'data, T: 'data> iter::FusedIterator for SliceDrain<'data, T> {}`
`276`	`277`	`impl<'data, T: 'data> Drop for SliceDrain<'data, T> {`
`277`	`278`	`fn drop(&mut self) {`
`278`	`279`	// extract the iterator so we can use `Drop for [T]`
`279`		`- let iter = mem::replace(&mut self.iter, [].iter_mut());`
`280`		`- unsafe { ptr::drop_in_place(iter.into_slice()) };`
	`280`	`+ let slice_ptr = mem::replace(&mut self.iter, [].iter_mut())`
	`281`	`+ .into_slice()`
	`282`	`+ .as_mut_ptr();`
	`283`	`+ unsafe { ptr::drop_in_place(slice_ptr) };`
`281`	`284`	`}`
`282`	`285`	`}`