Closed
Description
Progress
- Add
Src: FromBytesbound totry_transmute_mut! - Release new crate version (0.8.16)
- Add
Self: IntoBytesbound toTryFromBytes::*mut*- For why this is required, consider that a
MaybeUninit<u8>isTryFromBytes, but permits writing uninitialized bytes that would invalidated the shadowedsrcreference.
- For why this is required, consider that a
- Release new crate version (0.8.18)
- Do deeper surgery to make
try_cast_or_pmesound andTryFromBytes::*mut*sound
Original text
Using zerocopy 0.8.13:
use zerocopy::{TryFromBytes, IntoBytes, KnownLayout, Immutable, try_transmute_mut};
#[derive(TryFromBytes, IntoBytes, KnownLayout, Immutable)]
struct T {
f: bool,
}
fn main() {
let mut t = T { f: false };
let slice: &mut [u8; 1] = try_transmute_mut!(&mut t).unwrap();
slice[0] = u8::MAX;
println!("f: {}", t.f);
}
cargo +nightly miri run caught an UB:
error: Undefined Behavior: constructing invalid value: encountered 0xff, but expected a boolean
--> /home/zeling/.rustup/toolchains/nightly-x86_64-unknown-linux-gnu/lib/rustlib/src/rust/library/core/src/fmt/mod.rs:2682:25
|
2682 | Display::fmt(if *self { "true" } else { "false" }, f)
| ^^^^^ constructing invalid value: encountered 0xff, but expected a boolean
|
= help: this indicates a bug in the program: it performed an invalid operation, and caused Undefined Behavior
= help: see https://doc.rust-lang.org/nightly/reference/behavior-considered-undefined.html for further information
= note: BACKTRACE:
....
|
13 | println!("f: {}", t.f);
| ^^^^^^^^^^^^^^^^^^^^^^
= note: this error originates in the macro `println` (in Nightly builds, run with -Z macro-backtrace for more info)
note: some details are omitted, run with `MIRIFLAGS=-Zmiri-backtrace=full` for a verbose backtrace
error: aborting due to 1 previous error
try_transmute_mut may not be a safe API that can be exposed because it only does validation when creating the reference but the user is free to write whatever bit pattern to the created reference.
Metadata
Metadata
Assignees
Labels
No labels