Rollup merge of #97707 - Nilstrieb:data-structures-ub, r=cjgillot

matthiaskrgr · web-flow · commit 01453219de55 · 2022-06-04T23:42:02.000+02:00
Improve soundness of rustc_data_structures

Make it runnable in miri by adding some ignores and changing N in miri. Also fix a stacked borrows issue in sip128.
diff --git a/compiler/rustc_data_structures/src/base_n/tests.rs b/compiler/rustc_data_structures/src/base_n/tests.rs
@@ -15,7 +15,9 @@ fn test_encode() {
         test(u64::MAX as u128, base);
         test(u128::MAX, base);
 
-        for i in 0..1_000 {
+        const N: u128 = if cfg!(miri) { 10 } else { 1000 };
+
+        for i in 0..N {
             test(i * 983, base);
         }
     }
diff --git a/compiler/rustc_data_structures/src/graph/scc/tests.rs b/compiler/rustc_data_structures/src/graph/scc/tests.rs
@@ -156,7 +156,10 @@ fn test_deep_linear() {
     v
     …
      */
+    #[cfg(not(miri))]
     const NR_NODES: usize = 1 << 14;
+    #[cfg(miri)]
+    const NR_NODES: usize = 1 << 3;
     let mut nodes = vec![];
     for i in 1..NR_NODES {
         nodes.push((i - 1, i));
diff --git a/compiler/rustc_data_structures/src/owning_ref/tests.rs b/compiler/rustc_data_structures/src/owning_ref/tests.rs
@@ -1,3 +1,5 @@
+// FIXME: owning_ref is not sound under stacked borrows. Preferably, get rid of it.
+#[cfg(not(miri))]
 mod owning_ref {
     use super::super::OwningRef;
     use super::super::{BoxRef, Erased, ErasedBoxRef, RcRef};
@@ -361,6 +363,8 @@ mod owning_handle {
     }
 }
 
+// FIXME: owning_ref is not sound under stacked borrows. Preferably, get rid of it.
+#[cfg(not(miri))]
 mod owning_ref_mut {
     use super::super::BoxRef;
     use super::super::{BoxRefMut, Erased, ErasedBoxRefMut, OwningRefMut};
diff --git a/compiler/rustc_data_structures/src/sip128.rs b/compiler/rustc_data_structures/src/sip128.rs
@@ -255,8 +255,9 @@ impl SipHasher128 {
         // elements from spill (at most LEN - 1 bytes could have overflowed
         // into the spill). The memcpy call is optimized away because the size
         // is known. And the whole copy is optimized away for LEN == 1.
+        let dst = self.buf.as_mut_ptr() as *mut u8;
         let src = self.buf.get_unchecked(BUFFER_SPILL_INDEX) as *const _ as *const u8;
-        ptr::copy_nonoverlapping(src, self.buf.as_mut_ptr() as *mut u8, LEN - 1);
+        ptr::copy_nonoverlapping(src, dst, LEN - 1);
 
         // This function should only be called when the write fills the buffer.
         // Therefore, when LEN == 1, the new `self.nbuf` must be zero.

Original file line number	Diff line number	Diff line change
`@@ -15,7 +15,9 @@ fn test_encode() {`
`15`	`15`	`test(u64::MAX as u128, base);`
`16`	`16`	`test(u128::MAX, base);`
`17`	`17`
`18`		`- for i in 0..1_000 {`
	`18`	`+ const N: u128 = if cfg!(miri) { 10 } else { 1000 };`
	`19`	`+`
	`20`	`+ for i in 0..N {`
`19`	`21`	`test(i * 983, base);`
`20`	`22`	`}`
`21`	`23`	`}`
Original file line number	Diff line number	Diff line change
`@@ -1,3 +1,5 @@`
	`1`	`+// FIXME: owning_ref is not sound under stacked borrows. Preferably, get rid of it.`
	`2`	`+#[cfg(not(miri))]`
`1`	`3`	`mod owning_ref {`
`2`	`4`	`use super::super::OwningRef;`
`3`	`5`	`use super::super::{BoxRef, Erased, ErasedBoxRef, RcRef};`
`@@ -361,6 +363,8 @@ mod owning_handle {`
`361`	`363`	`}`
`362`	`364`	`}`
`363`	`365`
	`366`	`+// FIXME: owning_ref is not sound under stacked borrows. Preferably, get rid of it.`
	`367`	`+#[cfg(not(miri))]`
`364`	`368`	`mod owning_ref_mut {`
`365`	`369`	`use super::super::BoxRef;`
`366`	`370`	`use super::super::{BoxRefMut, Erased, ErasedBoxRefMut, OwningRefMut};`