From 67bdce8d96e6848c9f267986e8bc46f8a1bf5225 Mon Sep 17 00:00:00 2001
From: Jonathan S <gereeter@gmail.com>
Date: Sun, 15 Jun 2014 22:03:35 -0500
Subject: [PATCH] Add a RefCell-free way to make cycles in Rc and Arc

---
 src/liballoc/arc.rs | 79 +++++++++++++++++++++++++++++++++++---
 src/liballoc/rc.rs  | 93 ++++++++++++++++++++++++++++++++++++++++++++-
 2 files changed, 165 insertions(+), 7 deletions(-)

diff --git a/src/liballoc/arc.rs b/src/liballoc/arc.rs
index a8eb4b3407eb7..9fa907645060c 100644
--- a/src/liballoc/arc.rs
+++ b/src/liballoc/arc.rs
@@ -90,6 +90,37 @@ impl<T: Share + Send> Arc<T> {
         Arc { _ptr: unsafe { mem::transmute(x) } }
     }
 
+    /// Construct a new atomically reference-counted box storing the value returned
+    /// by the given closure. The weak reference will be inactive during construction
+    /// to preserve safety, but will point to the returned value when construction
+    /// is complete.
+    #[inline]
+    #[experimental]
+    pub fn new_cyclic(op: |Weak<T>| -> T) -> Arc<T> {
+        let ptr = unsafe {
+            // The strong count must be initially set to zero to prevent the closure
+            // from upgrading the weak pointer. However, the weak count must cover
+            // both the weak pointer passed to the closure and the final strong reference
+            // to prevent the closure from dropping the pointer and freeing the memory.
+            mem::transmute(box ArcInner {
+                data: mem::uninitialized::<T>(),
+                strong: atomics::AtomicUint::new(0),
+                weak: atomics::AtomicUint::new(2)
+            })
+        };
+
+        let val = op(Weak { _ptr: ptr });
+
+        unsafe {
+            ptr::write(&mut (*ptr).data, val);
+            // The closure can't have changed the strong count, so we can safely set it.
+            // We need to use release so that any upgrade calls see the write of the data.
+            (*ptr).strong.store(1, atomics::Release);
+        }
+
+        Arc { _ptr: ptr }
+    }
+
     #[inline]
     fn inner<'a>(&'a self) -> &'a ArcInner<T> {
         // This unsafety is ok because while this arc is alive we're guaranteed
@@ -278,7 +309,7 @@ mod tests {
     use super::{Arc, Weak};
     use sync::Mutex;
 
-    struct Canary(*mut atomics::AtomicUint);
+    struct Canary(*atomics::AtomicUint);
 
     impl Drop for Canary
     {
@@ -404,20 +435,58 @@ mod tests {
 
     #[test]
     fn drop_arc() {
-        let mut canary = atomics::AtomicUint::new(0);
-        let x = Arc::new(Canary(&mut canary as *mut atomics::AtomicUint));
+        let canary = atomics::AtomicUint::new(0);
+        let x = Arc::new(Canary(&canary as *atomics::AtomicUint));
         drop(x);
         assert!(canary.load(atomics::Acquire) == 1);
     }
 
     #[test]
     fn drop_arc_weak() {
-        let mut canary = atomics::AtomicUint::new(0);
-        let arc = Arc::new(Canary(&mut canary as *mut atomics::AtomicUint));
+        let canary = atomics::AtomicUint::new(0);
+        let arc = Arc::new(Canary(&canary as *atomics::AtomicUint));
         let arc_weak = arc.downgrade();
         assert!(canary.load(atomics::Acquire) == 0);
         drop(arc);
         assert!(canary.load(atomics::Acquire) == 1);
         drop(arc_weak);
     }
+
+    #[test]
+    fn test_acyclic_cyclic() {
+        let canary = atomics::AtomicUint::new(0);
+        let arc = Arc::new_cyclic(|weak| {
+            assert_eq!(canary.load(atomics::Relaxed), 0);
+            drop(weak);
+            assert_eq!(canary.load(atomics::Relaxed), 0);
+            Canary(&canary as *atomics::AtomicUint)
+        });
+        assert_eq!(canary.load(atomics::Relaxed), 0);
+        drop(arc);
+        assert_eq!(canary.load(atomics::Relaxed), 1);
+    }
+
+    struct Cycle {
+        weak: Weak<Cycle>,
+        canary: Canary
+    }
+
+    #[test]
+    fn test_collected_cyclic() {
+        let canary = atomics::AtomicUint::new(0);
+        let arc = Arc::new_cyclic(|weak| {
+            assert_eq!(canary.load(atomics::Relaxed), 0);
+            Cycle { weak: weak, canary: Canary(&canary as *atomics::AtomicUint) }
+        });
+        assert_eq!(canary.load(atomics::Relaxed), 0);
+        drop(arc);
+        assert_eq!(canary.load(atomics::Relaxed), 1);
+    }
+
+    #[test]
+    fn test_uninitialized_cyclic() {
+        let _ = Arc::new_cyclic(|weak| {
+            assert!(weak.upgrade().is_none());
+        });
+    }
 }
diff --git a/src/liballoc/rc.rs b/src/liballoc/rc.rs
index 416a6ad2d8b7a..e2a5084104db2 100644
--- a/src/liballoc/rc.rs
+++ b/src/liballoc/rc.rs
@@ -23,7 +23,7 @@ pointers, and then storing the parent pointers as `Weak` pointers.
 
 */
 
-use core::mem::transmute;
+use core::mem::{transmute, uninitialized};
 use core::cell::Cell;
 use core::clone::Clone;
 use core::cmp::{PartialEq, PartialOrd, Eq, Ord, Ordering};
@@ -73,6 +73,44 @@ impl<T> Rc<T> {
             }
         }
     }
+
+    /// Construct a new reference-counted box storing the value returned by the
+    /// given closure. The weak reference will be inactive during construction
+    /// to preserve safety, but will point to the returned value when construction
+    /// is complete.
+    #[inline]
+    #[experimental]
+    pub fn new_cyclic(op: |Weak<T>| -> T) -> Rc<T> {
+        let ptr = unsafe {
+            // The strong count must be initially set to zero to prevent the closure
+            // from upgrading the weak pointer. However, the weak count must cover
+            // both the weak pointer passed to the closure and the final strong reference
+            // to prevent the closure from dropping the pointer and freeing the memory.
+            transmute(box RcBox {
+                value: uninitialized::<T>(),
+                strong: Cell::new(0),
+                weak: Cell::new(2)
+            })
+        };
+
+        let val = op(Weak {
+            _ptr: ptr,
+            _nosend: marker::NoSend,
+            _noshare: marker::NoShare
+        });
+
+        unsafe {
+            ptr::write(&mut (*ptr).value, val);
+            // The closure can't have changed the strong count, so we can safely set it.
+            (*ptr).strong.set(1);
+        }
+
+        Rc {
+            _ptr: ptr,
+            _nosend: marker::NoSend,
+            _noshare: marker::NoShare
+        }
+    }
 }
 
 impl<T> Rc<T> {
@@ -269,9 +307,10 @@ impl<T> RcBoxPtr<T> for Weak<T> {
 #[allow(experimental)]
 mod tests {
     use super::{Rc, Weak};
-    use std::cell::RefCell;
+    use std::cell::{Cell, RefCell};
     use std::option::{Option, Some, None};
     use std::mem::drop;
+    use std::ops::Drop;
     use std::clone::Clone;
 
     #[test]
@@ -399,4 +438,54 @@ mod tests {
         assert!(cow1_weak.upgrade().is_none());
     }
 
+    struct Canary<'a> {
+        count: &'a Cell<uint>
+    }
+
+    // This isn't unsafe in any way, but as described in #14889, #14377, and #13853,
+    // we need #[unsafe_destructor] to not ICE.
+    #[unsafe_destructor]
+    impl<'a> Drop for Canary<'a> {
+        fn drop(&mut self) {
+            self.count.set(self.count.get() + 1);
+        }
+    }
+
+    #[test]
+    fn test_acyclic_cyclic() {
+        let canary = Cell::new(0);
+        let rc = Rc::new_cyclic(|weak| {
+            assert_eq!(canary.get(), 0);
+            drop(weak);
+            assert_eq!(canary.get(), 0);
+            Canary { count: &canary }
+        });
+        assert_eq!(canary.get(), 0);
+        drop(rc);
+        assert_eq!(canary.get(), 1);
+    }
+
+    struct Cycle<'a> {
+        weak: Weak<Cycle<'a>>,
+        canary: Canary<'a>
+    }
+
+    #[test]
+    fn test_collected_cyclic() {
+        let canary = Cell::new(0);
+        let rc = Rc::new_cyclic(|weak| {
+            assert_eq!(canary.get(), 0);
+            Cycle { weak: weak, canary: Canary { count: &canary } }
+        });
+        assert_eq!(canary.get(), 0);
+        drop(rc);
+        assert_eq!(canary.get(), 1);
+    }
+
+    #[test]
+    fn test_uninitialized_cyclic() {
+        let _ = Rc::new_cyclic(|weak| {
+            assert!(weak.upgrade().is_none());
+        });
+    }
 }