Sound inplace owned update function

antonWetzel · November 7, 2023, 1:20pm

Problem

// this code is not allowed
self.data = self.data;

// case where an owned value is required, because data is not clone (or copy)
self.data = match self.data {
    Data::One(v) => v.transform_into_two(),
    Data::Two(v) => v.transform_into_one(),
};

Solution?

fn update_value<T>(value: &mut T, update: impl FnOnce(T) -> T) {
    unsafe {
        let v = std::ptr::read(value);
        let v = update(v);
        std::ptr::write(value, v);
    }
}

update_value(&mut self.data ,|data| match data {
    Data::One(v) => v.transform_into_two(),
    Data::Two(v) => v.transform_into_one(),
});

Questions

Is this sound?
Is there a standard library function to solve the problem?

zirconium-n · November 7, 2023, 1:24pm

It is sound only if update never panics, since Rust type system can't constraint that, the function as-is is not sound.

No. But you can look into replace_with.

antonWetzel · November 7, 2023, 1:32pm

Thanks for the quick answer.

kornel · November 7, 2023, 5:46pm

There is a safe version of your ptr::read/write solution:

system · February 5, 2024, 5:46pm

This topic was automatically closed 90 days after the last reply. We invite you to open a new topic if you have further questions or comments.

Topic		Replies	Views
Update a non-Copy value through a mutable reference with a function that takes ownership help	18	401	October 11, 2023
Why Rust doesn't support move mutable value away then move other back in place help	17	1043	December 16, 2021
Function/method/idiom for in-place substitution using previous value help	32	2161	January 12, 2023
`Cell`-like primitive that lets me temporarily take ownership via reference help	8	323	November 18, 2023
Mem::replace not mentioned in "The Book"	9	1192	December 10, 2021

Sound inplace owned update function

Problem

Solution?

Questions

Related Topics