btree/node.rs: pub fn dormant should be marked as unsafe
#136255
Labels
C-cleanup
Category: PRs that clean code up or issues documenting cleanup.
needs-triage
This issue may need triage. Remove it if it has been sufficiently triaged.
T-libs
Relevant to the library team, which will review and decide on the PR/issue.
Comments
rustbot
added
the
needs-triage
fmease
added
the
T-libs
|
In fact, should a dormant NodeRef be a NodeRef at all? Are there any operations at all that a client should be able to perform on a dormant NodeRef, other than awakening it? Would it not make more sense to introduce an entirely separate struct DormantNodeRef instead? That way, the A related issue, by the way, is that the discussion of the possible values for BorrowType in the doc comment for NodeRef currently does not mention DormantMut. |
lolbinarycat
added
the
C-cleanup
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
This issue is about the "public" API of module
alloc/src/collections/btree/node.rs. (The module itself is not public.)I don't know how serious people are about pursuing strong static typing for this API, but depending on that, I think both
dormantfunctions (on NodeRef and on Handle) should be marked asunsafe: the very existence of a dormant NodeRef/Handle is unsafe because it can be turned into aNodeRef<Immut<'a>, ...>using non-unsafemethodreborrowand then inspected arbitrarily, which may cause races, aliasing rules violations, etc. with concurrent use of aNodeRef<Mut<'a>, ...>existing at the same time.The text was updated successfully, but these errors were encountered: