2020-10-18 18:17:49 -07:00
|
|
|
|
//! A UTF-8–encoded, growable string.
|
2015-12-01 13:39:48 -05:00
|
|
|
|
//!
|
2020-10-18 18:17:49 -07:00
|
|
|
|
//! This module contains the [`String`] type, the [`ToString`] trait for
|
|
|
|
|
|
//! converting to strings, and several error types that may result from
|
|
|
|
|
|
//! working with [`String`]s.
|
2015-12-01 13:39:48 -05:00
|
|
|
|
//!
|
2016-01-07 14:54:17 -05:00
|
|
|
|
//! # Examples
|
|
|
|
|
|
//!
|
2016-10-10 18:15:55 +02:00
|
|
|
|
//! There are multiple ways to create a new [`String`] from a string literal:
|
2016-01-07 14:54:17 -05:00
|
|
|
|
//!
|
2016-09-21 17:07:45 +02:00
|
|
|
|
//! ```
|
2016-01-07 14:54:17 -05:00
|
|
|
|
//! let s = "Hello".to_string();
|
|
|
|
|
|
//!
|
|
|
|
|
|
//! let s = String::from("world");
|
|
|
|
|
|
//! let s: String = "also this".into();
|
|
|
|
|
|
//! ```
|
|
|
|
|
|
//!
|
2016-10-10 18:15:55 +02:00
|
|
|
|
//! You can create a new [`String`] from an existing one by concatenating with
|
2016-01-07 14:54:17 -05:00
|
|
|
|
//! `+`:
|
|
|
|
|
|
//!
|
2016-09-21 17:07:45 +02:00
|
|
|
|
//! ```
|
2016-01-07 14:54:17 -05:00
|
|
|
|
//! let s = "Hello".to_string();
|
|
|
|
|
|
//!
|
|
|
|
|
|
//! let message = s + " world!";
|
|
|
|
|
|
//! ```
|
|
|
|
|
|
//!
|
2017-08-18 17:17:46 +02:00
|
|
|
|
//! If you have a vector of valid UTF-8 bytes, you can make a [`String`] out of
|
2016-01-07 14:54:17 -05:00
|
|
|
|
//! it. You can do the reverse too.
|
|
|
|
|
|
//!
|
2016-09-21 17:07:45 +02:00
|
|
|
|
//! ```
|
2016-01-07 14:54:17 -05:00
|
|
|
|
//! let sparkle_heart = vec![240, 159, 146, 150];
|
|
|
|
|
|
//!
|
|
|
|
|
|
//! // We know these bytes are valid, so we'll use `unwrap()`.
|
|
|
|
|
|
//! let sparkle_heart = String::from_utf8(sparkle_heart).unwrap();
|
|
|
|
|
|
//!
|
|
|
|
|
|
//! assert_eq!("💖", sparkle_heart);
|
|
|
|
|
|
//!
|
|
|
|
|
|
//! let bytes = sparkle_heart.into_bytes();
|
|
|
|
|
|
//!
|
|
|
|
|
|
//! assert_eq!(bytes, [240, 159, 146, 150]);
|
|
|
|
|
|
//! ```
|
2014-04-02 16:54:22 -07:00
|
|
|
|
|
2015-01-23 21:48:20 -08:00
|
|
|
|
#![stable(feature = "rust1", since = "1.0.0")]
|
2014-12-28 10:29:56 -08:00
|
|
|
|
|
2022-07-29 18:54:47 +00:00
|
|
|
|
use core::error::Error;
|
2019-02-03 08:27:44 +01:00
|
|
|
|
use core::fmt;
|
|
|
|
|
|
use core::hash;
|
alloc: Add unstable Cfg feature `no-global_oom_handling`
For certain sorts of systems, programming, it's deemed essential that
all allocation failures be explicitly handled where they occur. For
example, see Linus Torvald's opinion in [1]. Merely not calling global
panic handlers, or always `try_reserving` first (for vectors), is not
deemed good enough, because the mere presence of the global OOM handlers
is burdens static analysis.
One option for these projects to use rust would just be to skip `alloc`,
rolling their own allocation abstractions. But this would, in my
opinion be a real shame. `alloc` has a few `try_*` methods already, and
we could easily have more. Features like custom allocator support also
demonstrate and existing to support diverse use-cases with the same
abstractions.
A natural way to add such a feature flag would a Cargo feature, but
there are currently uncertainties around how std library crate's Cargo
features may or not be stable, so to avoid any risk of stabilizing by
mistake we are going with a more low-level "raw cfg" token, which
cannot be interacted with via Cargo alone.
Note also that since there is no notion of "default cfg tokens" outside
of Cargo features, we have to invert the condition from
`global_oom_handling` to to `not(no_global_oom_handling)`. This breaks
the monotonicity that would be important for a Cargo feature (i.e.
turning on more features should never break compatibility), but it
doesn't matter for raw cfg tokens which are not intended to be
"constraint solved" by Cargo or anything else.
To support this use-case we create a new feature, "global-oom-handling",
on by default, and put the global OOM handler infra and everything else
it that depends on it behind it. By default, nothing is changed, but
users concerned about global handling can make sure it is disabled, and
be confident that all OOM handling is local and explicit.
For this first iteration, non-flat collections are outright disabled.
`Vec` and `String` don't yet have `try_*` allocation methods, but are
kept anyways since they can be oom-safely created "from parts", and we
hope to add those `try_` methods in the future.
[1]: https://lore.kernel.org/lkml/CAHk-=wh_sNLoz84AUUzuqXEsYH35u=8HV3vK-jbRbJ_B-JjGrg@mail.gmail.com/
2021-04-16 20:18:04 -04:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
2022-08-09 02:14:43 +02:00
|
|
|
|
use core::iter::from_fn;
|
|
|
|
|
|
use core::iter::FusedIterator;
|
alloc: Add unstable Cfg feature `no-global_oom_handling`
For certain sorts of systems, programming, it's deemed essential that
all allocation failures be explicitly handled where they occur. For
example, see Linus Torvald's opinion in [1]. Merely not calling global
panic handlers, or always `try_reserving` first (for vectors), is not
deemed good enough, because the mere presence of the global OOM handlers
is burdens static analysis.
One option for these projects to use rust would just be to skip `alloc`,
rolling their own allocation abstractions. But this would, in my
opinion be a real shame. `alloc` has a few `try_*` methods already, and
we could easily have more. Features like custom allocator support also
demonstrate and existing to support diverse use-cases with the same
abstractions.
A natural way to add such a feature flag would a Cargo feature, but
there are currently uncertainties around how std library crate's Cargo
features may or not be stable, so to avoid any risk of stabilizing by
mistake we are going with a more low-level "raw cfg" token, which
cannot be interacted with via Cargo alone.
Note also that since there is no notion of "default cfg tokens" outside
of Cargo features, we have to invert the condition from
`global_oom_handling` to to `not(no_global_oom_handling)`. This breaks
the monotonicity that would be important for a Cargo feature (i.e.
turning on more features should never break compatibility), but it
doesn't matter for raw cfg tokens which are not intended to be
"constraint solved" by Cargo or anything else.
To support this use-case we create a new feature, "global-oom-handling",
on by default, and put the global OOM handler infra and everything else
it that depends on it behind it. By default, nothing is changed, but
users concerned about global handling can make sure it is disabled, and
be confident that all OOM handling is local and explicit.
For this first iteration, non-flat collections are outright disabled.
`Vec` and `String` don't yet have `try_*` allocation methods, but are
kept anyways since they can be oom-safely created "from parts", and we
hope to add those `try_` methods in the future.
[1]: https://lore.kernel.org/lkml/CAHk-=wh_sNLoz84AUUzuqXEsYH35u=8HV3vK-jbRbJ_B-JjGrg@mail.gmail.com/
2021-04-16 20:18:04 -04:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
|
|
|
|
|
use core::ops::Add;
|
|
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
|
|
|
|
|
use core::ops::AddAssign;
|
|
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
2019-02-03 08:27:44 +01:00
|
|
|
|
use core::ops::Bound::{Excluded, Included, Unbounded};
|
2024-01-23 19:00:10 -07:00
|
|
|
|
use core::ops::{self, Range, RangeBounds};
|
2019-02-03 08:27:44 +01:00
|
|
|
|
use core::ptr;
|
2021-02-01 21:20:44 -05:00
|
|
|
|
use core::slice;
|
alloc: Add unstable Cfg feature `no-global_oom_handling`
For certain sorts of systems, programming, it's deemed essential that
all allocation failures be explicitly handled where they occur. For
example, see Linus Torvald's opinion in [1]. Merely not calling global
panic handlers, or always `try_reserving` first (for vectors), is not
deemed good enough, because the mere presence of the global OOM handlers
is burdens static analysis.
One option for these projects to use rust would just be to skip `alloc`,
rolling their own allocation abstractions. But this would, in my
opinion be a real shame. `alloc` has a few `try_*` methods already, and
we could easily have more. Features like custom allocator support also
demonstrate and existing to support diverse use-cases with the same
abstractions.
A natural way to add such a feature flag would a Cargo feature, but
there are currently uncertainties around how std library crate's Cargo
features may or not be stable, so to avoid any risk of stabilizing by
mistake we are going with a more low-level "raw cfg" token, which
cannot be interacted with via Cargo alone.
Note also that since there is no notion of "default cfg tokens" outside
of Cargo features, we have to invert the condition from
`global_oom_handling` to to `not(no_global_oom_handling)`. This breaks
the monotonicity that would be important for a Cargo feature (i.e.
turning on more features should never break compatibility), but it
doesn't matter for raw cfg tokens which are not intended to be
"constraint solved" by Cargo or anything else.
To support this use-case we create a new feature, "global-oom-handling",
on by default, and put the global OOM handler infra and everything else
it that depends on it behind it. By default, nothing is changed, but
users concerned about global handling can make sure it is disabled, and
be confident that all OOM handling is local and explicit.
For this first iteration, non-flat collections are outright disabled.
`Vec` and `String` don't yet have `try_*` allocation methods, but are
kept anyways since they can be oom-safely created "from parts", and we
hope to add those `try_` methods in the future.
[1]: https://lore.kernel.org/lkml/CAHk-=wh_sNLoz84AUUzuqXEsYH35u=8HV3vK-jbRbJ_B-JjGrg@mail.gmail.com/
2021-04-16 20:18:04 -04:00
|
|
|
|
use core::str::pattern::Pattern;
|
2022-08-20 12:49:20 -04:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
|
|
|
|
|
use core::str::Utf8Chunks;
|
std: Recreate a `collections` module
As with the previous commit with `librand`, this commit shuffles around some
`collections` code. The new state of the world is similar to that of librand:
* The libcollections crate now only depends on libcore and liballoc.
* The standard library has a new module, `std::collections`. All functionality
of libcollections is reexported through this module.
I would like to stress that this change is purely cosmetic. There are very few
alterations to these primitives.
There are a number of notable points about the new organization:
* std::{str, slice, string, vec} all moved to libcollections. There is no reason
that these primitives shouldn't be necessarily usable in a freestanding
context that has allocation. These are all reexported in their usual places in
the standard library.
* The `hashmap`, and transitively the `lru_cache`, modules no longer reside in
`libcollections`, but rather in libstd. The reason for this is because the
`HashMap::new` contructor requires access to the OSRng for initially seeding
the hash map. Beyond this requirement, there is no reason that the hashmap
could not move to libcollections.
I do, however, have a plan to move the hash map to the collections module. The
`HashMap::new` function could be altered to require that the `H` hasher
parameter ascribe to the `Default` trait, allowing the entire `hashmap` module
to live in libcollections. The key idea would be that the default hasher would
be different in libstd. Something along the lines of:
// src/libstd/collections/mod.rs
pub type HashMap<K, V, H = RandomizedSipHasher> =
core_collections::HashMap<K, V, H>;
This is not possible today because you cannot invoke static methods through
type aliases. If we modified the compiler, however, to allow invocation of
static methods through type aliases, then this type definition would
essentially be switching the default hasher from `SipHasher` in libcollections
to a libstd-defined `RandomizedSipHasher` type. This type's `Default`
implementation would randomly seed the `SipHasher` instance, and otherwise
perform the same as `SipHasher`.
This future state doesn't seem incredibly far off, but until that time comes,
the hashmap module will live in libstd to not compromise on functionality.
* In preparation for the hashmap moving to libcollections, the `hash` module has
moved from libstd to libcollections. A previously snapshotted commit enables a
distinct `Writer` trait to live in the `hash` module which `Hash`
implementations are now parameterized over.
Due to using a custom trait, the `SipHasher` implementation has lost its
specialized methods for writing integers. These can be re-added
backwards-compatibly in the future via default methods if necessary, but the
FNV hashing should satisfy much of the need for speedier hashing.
A list of breaking changes:
* HashMap::{get, get_mut} no longer fails with the key formatted into the error
message with `{:?}`, instead, a generic message is printed. With backtraces,
it should still be not-too-hard to track down errors.
* The HashMap, HashSet, and LruCache types are now available through
std::collections instead of the collections crate.
* Manual implementations of hash should be parameterized over `hash::Writer`
instead of just `Writer`.
[breaking-change]
2014-05-29 18:50:12 -07:00
|
|
|
|
|
alloc: Add unstable Cfg feature `no-global_oom_handling`
For certain sorts of systems, programming, it's deemed essential that
all allocation failures be explicitly handled where they occur. For
example, see Linus Torvald's opinion in [1]. Merely not calling global
panic handlers, or always `try_reserving` first (for vectors), is not
deemed good enough, because the mere presence of the global OOM handlers
is burdens static analysis.
One option for these projects to use rust would just be to skip `alloc`,
rolling their own allocation abstractions. But this would, in my
opinion be a real shame. `alloc` has a few `try_*` methods already, and
we could easily have more. Features like custom allocator support also
demonstrate and existing to support diverse use-cases with the same
abstractions.
A natural way to add such a feature flag would a Cargo feature, but
there are currently uncertainties around how std library crate's Cargo
features may or not be stable, so to avoid any risk of stabilizing by
mistake we are going with a more low-level "raw cfg" token, which
cannot be interacted with via Cargo alone.
Note also that since there is no notion of "default cfg tokens" outside
of Cargo features, we have to invert the condition from
`global_oom_handling` to to `not(no_global_oom_handling)`. This breaks
the monotonicity that would be important for a Cargo feature (i.e.
turning on more features should never break compatibility), but it
doesn't matter for raw cfg tokens which are not intended to be
"constraint solved" by Cargo or anything else.
To support this use-case we create a new feature, "global-oom-handling",
on by default, and put the global OOM handler infra and everything else
it that depends on it behind it. By default, nothing is changed, but
users concerned about global handling can make sure it is disabled, and
be confident that all OOM handling is local and explicit.
For this first iteration, non-flat collections are outright disabled.
`Vec` and `String` don't yet have `try_*` allocation methods, but are
kept anyways since they can be oom-safely created "from parts", and we
hope to add those `try_` methods in the future.
[1]: https://lore.kernel.org/lkml/CAHk-=wh_sNLoz84AUUzuqXEsYH35u=8HV3vK-jbRbJ_B-JjGrg@mail.gmail.com/
2021-04-16 20:18:04 -04:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
2019-02-03 08:27:44 +01:00
|
|
|
|
use crate::borrow::{Cow, ToOwned};
|
|
|
|
|
|
use crate::boxed::Box;
|
2019-06-12 20:02:01 +02:00
|
|
|
|
use crate::collections::TryReserveError;
|
2022-10-19 19:07:45 -07:00
|
|
|
|
use crate::str::{self, from_utf8_unchecked_mut, Chars, Utf8Error};
|
alloc: Add unstable Cfg feature `no-global_oom_handling`
For certain sorts of systems, programming, it's deemed essential that
all allocation failures be explicitly handled where they occur. For
example, see Linus Torvald's opinion in [1]. Merely not calling global
panic handlers, or always `try_reserving` first (for vectors), is not
deemed good enough, because the mere presence of the global OOM handlers
is burdens static analysis.
One option for these projects to use rust would just be to skip `alloc`,
rolling their own allocation abstractions. But this would, in my
opinion be a real shame. `alloc` has a few `try_*` methods already, and
we could easily have more. Features like custom allocator support also
demonstrate and existing to support diverse use-cases with the same
abstractions.
A natural way to add such a feature flag would a Cargo feature, but
there are currently uncertainties around how std library crate's Cargo
features may or not be stable, so to avoid any risk of stabilizing by
mistake we are going with a more low-level "raw cfg" token, which
cannot be interacted with via Cargo alone.
Note also that since there is no notion of "default cfg tokens" outside
of Cargo features, we have to invert the condition from
`global_oom_handling` to to `not(no_global_oom_handling)`. This breaks
the monotonicity that would be important for a Cargo feature (i.e.
turning on more features should never break compatibility), but it
doesn't matter for raw cfg tokens which are not intended to be
"constraint solved" by Cargo or anything else.
To support this use-case we create a new feature, "global-oom-handling",
on by default, and put the global OOM handler infra and everything else
it that depends on it behind it. By default, nothing is changed, but
users concerned about global handling can make sure it is disabled, and
be confident that all OOM handling is local and explicit.
For this first iteration, non-flat collections are outright disabled.
`Vec` and `String` don't yet have `try_*` allocation methods, but are
kept anyways since they can be oom-safely created "from parts", and we
hope to add those `try_` methods in the future.
[1]: https://lore.kernel.org/lkml/CAHk-=wh_sNLoz84AUUzuqXEsYH35u=8HV3vK-jbRbJ_B-JjGrg@mail.gmail.com/
2021-04-16 20:18:04 -04:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
|
|
|
|
|
use crate::str::{from_boxed_utf8_unchecked, FromStr};
|
2019-02-03 08:27:44 +01:00
|
|
|
|
use crate::vec::Vec;
|
2014-04-02 16:54:22 -07:00
|
|
|
|
|
2020-10-18 18:17:49 -07:00
|
|
|
|
/// A UTF-8–encoded, growable string.
|
2015-12-01 13:39:48 -05:00
|
|
|
|
///
|
2024-04-01 00:04:57 +03:00
|
|
|
|
/// `String` is the most common string type. It has ownership over the contents
|
|
|
|
|
|
/// of the string, stored in a heap-allocated buffer (see [Representation](#representation)).
|
|
|
|
|
|
/// It is closely related to its borrowed counterpart, the primitive [`str`].
|
2015-12-01 13:39:48 -05:00
|
|
|
|
///
|
|
|
|
|
|
/// # Examples
|
|
|
|
|
|
///
|
Apply 16 commits (squashed)
----------
Fix spacing for links inside code blocks, and improve link tooltips in alloc::fmt
----------
Fix spacing for links inside code blocks, and improve link tooltips in alloc::{rc, sync}
----------
Fix spacing for links inside code blocks, and improve link tooltips in alloc::string
----------
Fix spacing for links inside code blocks in alloc::vec
----------
Fix spacing for links inside code blocks in core::option
----------
Fix spacing for links inside code blocks, and improve a few link tooltips in core::result
----------
Fix spacing for links inside code blocks in core::{iter::{self, iterator}, stream::stream, poll}
----------
Fix spacing for links inside code blocks, and improve a few link tooltips in std::{fs, path}
----------
Fix spacing for links inside code blocks in std::{collections, time}
----------
Fix spacing for links inside code blocks in and make formatting of `&str`-like types consistent in std::ffi::{c_str, os_str}
----------
Fix spacing for links inside code blocks, and improve link tooltips in std::ffi
----------
Fix spacing for links inside code blocks, and improve a few link tooltips
in std::{io::{self, buffered::{bufreader, bufwriter}, cursor, util}, net::{self, addr}}
----------
Fix typo in link to `into` for `OsString` docs
----------
Remove tooltips that will probably become redundant in the future
----------
Apply suggestions from code review
Replacing `…std/primitive.reference.html` paths with just `reference`
Co-authored-by: Joshua Nelson <github@jyn.dev>
----------
Also replace `…std/primitive.reference.html` paths with just `reference` in `core::pin`
2021-08-25 11:45:08 +02:00
|
|
|
|
/// You can create a `String` from [a literal string][`&str`] with [`String::from`]:
|
2015-12-01 13:39:48 -05:00
|
|
|
|
///
|
2020-07-18 10:14:00 -07:00
|
|
|
|
/// [`String::from`]: From::from
|
|
|
|
|
|
///
|
2015-12-01 13:39:48 -05:00
|
|
|
|
/// ```
|
|
|
|
|
|
/// let hello = String::from("Hello, world!");
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
///
|
2017-03-12 14:04:52 -04:00
|
|
|
|
/// You can append a [`char`] to a `String` with the [`push`] method, and
|
|
|
|
|
|
/// append a [`&str`] with the [`push_str`] method:
|
2015-12-01 13:39:48 -05:00
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
/// let mut hello = String::from("Hello, ");
|
|
|
|
|
|
///
|
|
|
|
|
|
/// hello.push('w');
|
|
|
|
|
|
/// hello.push_str("orld!");
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
///
|
2020-07-18 10:14:00 -07:00
|
|
|
|
/// [`push`]: String::push
|
|
|
|
|
|
/// [`push_str`]: String::push_str
|
2015-12-01 13:39:48 -05:00
|
|
|
|
///
|
|
|
|
|
|
/// If you have a vector of UTF-8 bytes, you can create a `String` from it with
|
2017-03-12 14:04:52 -04:00
|
|
|
|
/// the [`from_utf8`] method:
|
2015-12-01 13:39:48 -05:00
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
/// // some bytes, in a vector
|
|
|
|
|
|
/// let sparkle_heart = vec![240, 159, 146, 150];
|
|
|
|
|
|
///
|
|
|
|
|
|
/// // We know these bytes are valid, so we'll use `unwrap()`.
|
|
|
|
|
|
/// let sparkle_heart = String::from_utf8(sparkle_heart).unwrap();
|
|
|
|
|
|
///
|
|
|
|
|
|
/// assert_eq!("💖", sparkle_heart);
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
///
|
2020-07-18 10:14:00 -07:00
|
|
|
|
/// [`from_utf8`]: String::from_utf8
|
2015-12-01 13:39:48 -05:00
|
|
|
|
///
|
|
|
|
|
|
/// # UTF-8
|
|
|
|
|
|
///
|
2022-03-09 21:43:04 -05:00
|
|
|
|
/// `String`s are always valid UTF-8. If you need a non-UTF-8 string, consider
|
|
|
|
|
|
/// [`OsString`]. It is similar, but without the UTF-8 constraint. Because UTF-8
|
|
|
|
|
|
/// is a variable width encoding, `String`s are typically smaller than an array of
|
|
|
|
|
|
/// the same `chars`:
|
|
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
/// use std::mem;
|
|
|
|
|
|
///
|
|
|
|
|
|
/// // `s` is ASCII which represents each `char` as one byte
|
|
|
|
|
|
/// let s = "hello";
|
|
|
|
|
|
/// assert_eq!(s.len(), 5);
|
|
|
|
|
|
///
|
|
|
|
|
|
/// // A `char` array with the same contents would be longer because
|
|
|
|
|
|
/// // every `char` is four bytes
|
|
|
|
|
|
/// let s = ['h', 'e', 'l', 'l', 'o'];
|
|
|
|
|
|
/// let size: usize = s.into_iter().map(|c| mem::size_of_val(&c)).sum();
|
|
|
|
|
|
/// assert_eq!(size, 20);
|
|
|
|
|
|
///
|
|
|
|
|
|
/// // However, for non-ASCII strings, the difference will be smaller
|
|
|
|
|
|
/// // and sometimes they are the same
|
|
|
|
|
|
/// let s = "💖💖💖💖💖";
|
|
|
|
|
|
/// assert_eq!(s.len(), 20);
|
|
|
|
|
|
///
|
|
|
|
|
|
/// let s = ['💖', '💖', '💖', '💖', '💖'];
|
|
|
|
|
|
/// let size: usize = s.into_iter().map(|c| mem::size_of_val(&c)).sum();
|
|
|
|
|
|
/// assert_eq!(size, 20);
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
///
|
|
|
|
|
|
/// This raises interesting questions as to how `s[i]` should work.
|
|
|
|
|
|
/// What should `i` be here? Several options include byte indices and
|
|
|
|
|
|
/// `char` indices but, because of UTF-8 encoding, only byte indices
|
|
|
|
|
|
/// would provide constant time indexing. Getting the `i`th `char`, for
|
|
|
|
|
|
/// example, is available using [`chars`]:
|
|
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
/// let s = "hello";
|
|
|
|
|
|
/// let third_character = s.chars().nth(2);
|
|
|
|
|
|
/// assert_eq!(third_character, Some('l'));
|
|
|
|
|
|
///
|
|
|
|
|
|
/// let s = "💖💖💖💖💖";
|
|
|
|
|
|
/// let third_character = s.chars().nth(2);
|
|
|
|
|
|
/// assert_eq!(third_character, Some('💖'));
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
///
|
|
|
|
|
|
/// Next, what should `s[i]` return? Because indexing returns a reference
|
|
|
|
|
|
/// to underlying data it could be `&u8`, `&[u8]`, or something else similar.
|
|
|
|
|
|
/// Since we're only providing one index, `&u8` makes the most sense but that
|
|
|
|
|
|
/// might not be what the user expects and can be explicitly achieved with
|
|
|
|
|
|
/// [`as_bytes()`]:
|
|
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
/// // The first byte is 104 - the byte value of `'h'`
|
|
|
|
|
|
/// let s = "hello";
|
|
|
|
|
|
/// assert_eq!(s.as_bytes()[0], 104);
|
|
|
|
|
|
/// // or
|
|
|
|
|
|
/// assert_eq!(s.as_bytes()[0], b'h');
|
|
|
|
|
|
///
|
|
|
|
|
|
/// // The first byte is 240 which isn't obviously useful
|
|
|
|
|
|
/// let s = "💖💖💖💖💖";
|
|
|
|
|
|
/// assert_eq!(s.as_bytes()[0], 240);
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
///
|
|
|
|
|
|
/// Due to these ambiguities/restrictions, indexing with a `usize` is simply
|
|
|
|
|
|
/// forbidden:
|
2015-12-01 13:39:48 -05:00
|
|
|
|
///
|
2017-06-20 15:15:16 +08:00
|
|
|
|
/// ```compile_fail,E0277
|
2015-12-01 13:39:48 -05:00
|
|
|
|
/// let s = "hello";
|
|
|
|
|
|
///
|
2022-03-09 21:43:04 -05:00
|
|
|
|
/// // The following will not compile!
|
|
|
|
|
|
/// println!("The first letter of s is {}", s[0]);
|
2015-12-01 13:39:48 -05:00
|
|
|
|
/// ```
|
|
|
|
|
|
///
|
2022-03-09 21:43:04 -05:00
|
|
|
|
/// It is more clear, however, how `&s[i..j]` should work (that is,
|
|
|
|
|
|
/// indexing with a range). It should accept byte indices (to be constant-time)
|
|
|
|
|
|
/// and return a `&str` which is UTF-8 encoded. This is also called "string slicing".
|
|
|
|
|
|
/// Note this will panic if the byte indices provided are not character
|
|
|
|
|
|
/// boundaries - see [`is_char_boundary`] for more details. See the implementations
|
|
|
|
|
|
/// for [`SliceIndex<str>`] for more details on string slicing. For a non-panicking
|
|
|
|
|
|
/// version of string slicing, see [`get`].
|
|
|
|
|
|
///
|
Apply 16 commits (squashed)
----------
Fix spacing for links inside code blocks, and improve link tooltips in alloc::fmt
----------
Fix spacing for links inside code blocks, and improve link tooltips in alloc::{rc, sync}
----------
Fix spacing for links inside code blocks, and improve link tooltips in alloc::string
----------
Fix spacing for links inside code blocks in alloc::vec
----------
Fix spacing for links inside code blocks in core::option
----------
Fix spacing for links inside code blocks, and improve a few link tooltips in core::result
----------
Fix spacing for links inside code blocks in core::{iter::{self, iterator}, stream::stream, poll}
----------
Fix spacing for links inside code blocks, and improve a few link tooltips in std::{fs, path}
----------
Fix spacing for links inside code blocks in std::{collections, time}
----------
Fix spacing for links inside code blocks in and make formatting of `&str`-like types consistent in std::ffi::{c_str, os_str}
----------
Fix spacing for links inside code blocks, and improve link tooltips in std::ffi
----------
Fix spacing for links inside code blocks, and improve a few link tooltips
in std::{io::{self, buffered::{bufreader, bufwriter}, cursor, util}, net::{self, addr}}
----------
Fix typo in link to `into` for `OsString` docs
----------
Remove tooltips that will probably become redundant in the future
----------
Apply suggestions from code review
Replacing `…std/primitive.reference.html` paths with just `reference`
Co-authored-by: Joshua Nelson <github@jyn.dev>
----------
Also replace `…std/primitive.reference.html` paths with just `reference` in `core::pin`
2021-08-25 11:45:08 +02:00
|
|
|
|
/// [`OsString`]: ../../std/ffi/struct.OsString.html "ffi::OsString"
|
2022-03-09 21:43:04 -05:00
|
|
|
|
/// [`SliceIndex<str>`]: core::slice::SliceIndex
|
|
|
|
|
|
/// [`as_bytes()`]: str::as_bytes
|
|
|
|
|
|
/// [`get`]: str::get
|
|
|
|
|
|
/// [`is_char_boundary`]: str::is_char_boundary
|
2015-12-01 13:39:48 -05:00
|
|
|
|
///
|
2022-03-09 21:43:04 -05:00
|
|
|
|
/// The [`bytes`] and [`chars`] methods return iterators over the bytes and
|
|
|
|
|
|
/// codepoints of the string, respectively. To iterate over codepoints along
|
|
|
|
|
|
/// with byte indices, use [`char_indices`].
|
2015-12-01 13:39:48 -05:00
|
|
|
|
///
|
2020-07-18 10:14:00 -07:00
|
|
|
|
/// [`bytes`]: str::bytes
|
|
|
|
|
|
/// [`chars`]: str::chars
|
2022-03-09 21:43:04 -05:00
|
|
|
|
/// [`char_indices`]: str::char_indices
|
2015-12-01 13:39:48 -05:00
|
|
|
|
///
|
|
|
|
|
|
/// # Deref
|
|
|
|
|
|
///
|
Apply 16 commits (squashed)
----------
Fix spacing for links inside code blocks, and improve link tooltips in alloc::fmt
----------
Fix spacing for links inside code blocks, and improve link tooltips in alloc::{rc, sync}
----------
Fix spacing for links inside code blocks, and improve link tooltips in alloc::string
----------
Fix spacing for links inside code blocks in alloc::vec
----------
Fix spacing for links inside code blocks in core::option
----------
Fix spacing for links inside code blocks, and improve a few link tooltips in core::result
----------
Fix spacing for links inside code blocks in core::{iter::{self, iterator}, stream::stream, poll}
----------
Fix spacing for links inside code blocks, and improve a few link tooltips in std::{fs, path}
----------
Fix spacing for links inside code blocks in std::{collections, time}
----------
Fix spacing for links inside code blocks in and make formatting of `&str`-like types consistent in std::ffi::{c_str, os_str}
----------
Fix spacing for links inside code blocks, and improve link tooltips in std::ffi
----------
Fix spacing for links inside code blocks, and improve a few link tooltips
in std::{io::{self, buffered::{bufreader, bufwriter}, cursor, util}, net::{self, addr}}
----------
Fix typo in link to `into` for `OsString` docs
----------
Remove tooltips that will probably become redundant in the future
----------
Apply suggestions from code review
Replacing `…std/primitive.reference.html` paths with just `reference`
Co-authored-by: Joshua Nelson <github@jyn.dev>
----------
Also replace `…std/primitive.reference.html` paths with just `reference` in `core::pin`
2021-08-25 11:45:08 +02:00
|
|
|
|
/// `String` implements <code>[Deref]<Target = [str]></code>, and so inherits all of [`str`]'s
|
2017-08-04 12:25:05 -04:00
|
|
|
|
/// methods. In addition, this means that you can pass a `String` to a
|
2015-12-01 13:39:48 -05:00
|
|
|
|
/// function which takes a [`&str`] by using an ampersand (`&`):
|
|
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
/// fn takes_str(s: &str) { }
|
|
|
|
|
|
///
|
|
|
|
|
|
/// let s = String::from("Hello");
|
|
|
|
|
|
///
|
|
|
|
|
|
/// takes_str(&s);
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
///
|
|
|
|
|
|
/// This will create a [`&str`] from the `String` and pass it in. This
|
|
|
|
|
|
/// conversion is very inexpensive, and so generally, functions will accept
|
2017-08-04 12:25:05 -04:00
|
|
|
|
/// [`&str`]s as arguments unless they need a `String` for some specific
|
|
|
|
|
|
/// reason.
|
2015-12-01 13:39:48 -05:00
|
|
|
|
///
|
2017-08-07 13:56:20 -04:00
|
|
|
|
/// In certain cases Rust doesn't have enough information to make this
|
2017-08-18 17:17:46 +02:00
|
|
|
|
/// conversion, known as [`Deref`] coercion. In the following example a string
|
|
|
|
|
|
/// slice [`&'a str`][`&str`] implements the trait `TraitExample`, and the function
|
2017-08-07 13:56:20 -04:00
|
|
|
|
/// `example_func` takes anything that implements the trait. In this case Rust
|
|
|
|
|
|
/// would need to make two implicit conversions, which Rust doesn't have the
|
|
|
|
|
|
/// means to do. For that reason, the following example will not compile.
|
2017-08-04 12:25:05 -04:00
|
|
|
|
///
|
|
|
|
|
|
/// ```compile_fail,E0277
|
|
|
|
|
|
/// trait TraitExample {}
|
|
|
|
|
|
///
|
|
|
|
|
|
/// impl<'a> TraitExample for &'a str {}
|
|
|
|
|
|
///
|
|
|
|
|
|
/// fn example_func<A: TraitExample>(example_arg: A) {}
|
|
|
|
|
|
///
|
2019-10-01 11:55:46 +00:00
|
|
|
|
/// let example_string = String::from("example_string");
|
|
|
|
|
|
/// example_func(&example_string);
|
2017-08-04 12:25:05 -04:00
|
|
|
|
/// ```
|
|
|
|
|
|
///
|
2017-08-08 14:57:34 -04:00
|
|
|
|
/// There are two options that would work instead. The first would be to
|
|
|
|
|
|
/// change the line `example_func(&example_string);` to
|
2017-08-18 17:17:46 +02:00
|
|
|
|
/// `example_func(example_string.as_str());`, using the method [`as_str()`]
|
2017-08-08 14:57:34 -04:00
|
|
|
|
/// to explicitly extract the string slice containing the string. The second
|
|
|
|
|
|
/// way changes `example_func(&example_string);` to
|
|
|
|
|
|
/// `example_func(&*example_string);`. In this case we are dereferencing a
|
Apply 16 commits (squashed)
----------
Fix spacing for links inside code blocks, and improve link tooltips in alloc::fmt
----------
Fix spacing for links inside code blocks, and improve link tooltips in alloc::{rc, sync}
----------
Fix spacing for links inside code blocks, and improve link tooltips in alloc::string
----------
Fix spacing for links inside code blocks in alloc::vec
----------
Fix spacing for links inside code blocks in core::option
----------
Fix spacing for links inside code blocks, and improve a few link tooltips in core::result
----------
Fix spacing for links inside code blocks in core::{iter::{self, iterator}, stream::stream, poll}
----------
Fix spacing for links inside code blocks, and improve a few link tooltips in std::{fs, path}
----------
Fix spacing for links inside code blocks in std::{collections, time}
----------
Fix spacing for links inside code blocks in and make formatting of `&str`-like types consistent in std::ffi::{c_str, os_str}
----------
Fix spacing for links inside code blocks, and improve link tooltips in std::ffi
----------
Fix spacing for links inside code blocks, and improve a few link tooltips
in std::{io::{self, buffered::{bufreader, bufwriter}, cursor, util}, net::{self, addr}}
----------
Fix typo in link to `into` for `OsString` docs
----------
Remove tooltips that will probably become redundant in the future
----------
Apply suggestions from code review
Replacing `…std/primitive.reference.html` paths with just `reference`
Co-authored-by: Joshua Nelson <github@jyn.dev>
----------
Also replace `…std/primitive.reference.html` paths with just `reference` in `core::pin`
2021-08-25 11:45:08 +02:00
|
|
|
|
/// `String` to a [`str`], then referencing the [`str`] back to
|
2017-08-18 17:17:46 +02:00
|
|
|
|
/// [`&str`]. The second way is more idiomatic, however both work to do the
|
|
|
|
|
|
/// conversion explicitly rather than relying on the implicit conversion.
|
2015-12-01 13:39:48 -05:00
|
|
|
|
///
|
|
|
|
|
|
/// # Representation
|
|
|
|
|
|
///
|
|
|
|
|
|
/// A `String` is made up of three components: a pointer to some bytes, a
|
2024-03-24 12:20:39 -07:00
|
|
|
|
/// length, and a capacity. The pointer points to the internal buffer which `String`
|
|
|
|
|
|
/// uses to store its data. The length is the number of bytes currently stored
|
2015-12-01 13:39:48 -05:00
|
|
|
|
/// in the buffer, and the capacity is the size of the buffer in bytes. As such,
|
|
|
|
|
|
/// the length will always be less than or equal to the capacity.
|
|
|
|
|
|
///
|
|
|
|
|
|
/// This buffer is always stored on the heap.
|
|
|
|
|
|
///
|
2017-03-12 14:04:52 -04:00
|
|
|
|
/// You can look at these with the [`as_ptr`], [`len`], and [`capacity`]
|
2015-12-01 13:39:48 -05:00
|
|
|
|
/// methods:
|
|
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
/// use std::mem;
|
|
|
|
|
|
///
|
2019-10-22 15:40:22 -04:00
|
|
|
|
/// let story = String::from("Once upon a time...");
|
|
|
|
|
|
///
|
2019-10-22 12:48:52 -04:00
|
|
|
|
// FIXME Update this when vec_into_raw_parts is stabilized
|
2019-10-22 15:40:22 -04:00
|
|
|
|
/// // Prevent automatically dropping the String's data
|
|
|
|
|
|
/// let mut story = mem::ManuallyDrop::new(story);
|
2015-12-01 13:39:48 -05:00
|
|
|
|
///
|
2019-10-22 13:54:09 -04:00
|
|
|
|
/// let ptr = story.as_mut_ptr();
|
2015-12-01 13:39:48 -05:00
|
|
|
|
/// let len = story.len();
|
|
|
|
|
|
/// let capacity = story.capacity();
|
|
|
|
|
|
///
|
2016-05-12 21:49:14 +02:00
|
|
|
|
/// // story has nineteen bytes
|
2015-12-01 13:39:48 -05:00
|
|
|
|
/// assert_eq!(19, len);
|
|
|
|
|
|
///
|
|
|
|
|
|
/// // We can re-build a String out of ptr, len, and capacity. This is all
|
2016-02-09 11:52:39 -05:00
|
|
|
|
/// // unsafe because we are responsible for making sure the components are
|
2015-12-01 13:39:48 -05:00
|
|
|
|
/// // valid:
|
2019-10-22 13:54:09 -04:00
|
|
|
|
/// let s = unsafe { String::from_raw_parts(ptr, len, capacity) } ;
|
2015-12-01 13:39:48 -05:00
|
|
|
|
///
|
|
|
|
|
|
/// assert_eq!(String::from("Once upon a time..."), s);
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
///
|
2020-07-18 10:14:00 -07:00
|
|
|
|
/// [`as_ptr`]: str::as_ptr
|
|
|
|
|
|
/// [`len`]: String::len
|
|
|
|
|
|
/// [`capacity`]: String::capacity
|
2015-12-01 13:39:48 -05:00
|
|
|
|
///
|
|
|
|
|
|
/// If a `String` has enough capacity, adding elements to it will not
|
|
|
|
|
|
/// re-allocate. For example, consider this program:
|
|
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
/// let mut s = String::new();
|
|
|
|
|
|
///
|
|
|
|
|
|
/// println!("{}", s.capacity());
|
|
|
|
|
|
///
|
|
|
|
|
|
/// for _ in 0..5 {
|
|
|
|
|
|
/// s.push_str("hello");
|
|
|
|
|
|
/// println!("{}", s.capacity());
|
|
|
|
|
|
/// }
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
///
|
|
|
|
|
|
/// This will output the following:
|
|
|
|
|
|
///
|
|
|
|
|
|
/// ```text
|
|
|
|
|
|
/// 0
|
2022-06-30 21:10:28 +08:00
|
|
|
|
/// 8
|
|
|
|
|
|
/// 16
|
|
|
|
|
|
/// 16
|
|
|
|
|
|
/// 32
|
|
|
|
|
|
/// 32
|
2015-12-01 13:39:48 -05:00
|
|
|
|
/// ```
|
|
|
|
|
|
///
|
|
|
|
|
|
/// At first, we have no memory allocated at all, but as we append to the
|
|
|
|
|
|
/// string, it increases its capacity appropriately. If we instead use the
|
2017-03-12 14:04:52 -04:00
|
|
|
|
/// [`with_capacity`] method to allocate the correct capacity initially:
|
2015-12-01 13:39:48 -05:00
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
/// let mut s = String::with_capacity(25);
|
|
|
|
|
|
///
|
|
|
|
|
|
/// println!("{}", s.capacity());
|
|
|
|
|
|
///
|
|
|
|
|
|
/// for _ in 0..5 {
|
|
|
|
|
|
/// s.push_str("hello");
|
|
|
|
|
|
/// println!("{}", s.capacity());
|
|
|
|
|
|
/// }
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
///
|
2020-07-18 10:14:00 -07:00
|
|
|
|
/// [`with_capacity`]: String::with_capacity
|
2015-12-01 13:39:48 -05:00
|
|
|
|
///
|
|
|
|
|
|
/// We end up with a different output:
|
|
|
|
|
|
///
|
|
|
|
|
|
/// ```text
|
|
|
|
|
|
/// 25
|
|
|
|
|
|
/// 25
|
|
|
|
|
|
/// 25
|
|
|
|
|
|
/// 25
|
|
|
|
|
|
/// 25
|
|
|
|
|
|
/// 25
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
///
|
|
|
|
|
|
/// Here, there's no need to allocate more memory inside the loop.
|
2017-08-18 17:17:46 +02:00
|
|
|
|
///
|
Apply 16 commits (squashed)
----------
Fix spacing for links inside code blocks, and improve link tooltips in alloc::fmt
----------
Fix spacing for links inside code blocks, and improve link tooltips in alloc::{rc, sync}
----------
Fix spacing for links inside code blocks, and improve link tooltips in alloc::string
----------
Fix spacing for links inside code blocks in alloc::vec
----------
Fix spacing for links inside code blocks in core::option
----------
Fix spacing for links inside code blocks, and improve a few link tooltips in core::result
----------
Fix spacing for links inside code blocks in core::{iter::{self, iterator}, stream::stream, poll}
----------
Fix spacing for links inside code blocks, and improve a few link tooltips in std::{fs, path}
----------
Fix spacing for links inside code blocks in std::{collections, time}
----------
Fix spacing for links inside code blocks in and make formatting of `&str`-like types consistent in std::ffi::{c_str, os_str}
----------
Fix spacing for links inside code blocks, and improve link tooltips in std::ffi
----------
Fix spacing for links inside code blocks, and improve a few link tooltips
in std::{io::{self, buffered::{bufreader, bufwriter}, cursor, util}, net::{self, addr}}
----------
Fix typo in link to `into` for `OsString` docs
----------
Remove tooltips that will probably become redundant in the future
----------
Apply suggestions from code review
Replacing `…std/primitive.reference.html` paths with just `reference`
Co-authored-by: Joshua Nelson <github@jyn.dev>
----------
Also replace `…std/primitive.reference.html` paths with just `reference` in `core::pin`
2021-08-25 11:45:08 +02:00
|
|
|
|
/// [str]: prim@str "str"
|
|
|
|
|
|
/// [`str`]: prim@str "str"
|
|
|
|
|
|
/// [`&str`]: prim@str "&str"
|
|
|
|
|
|
/// [Deref]: core::ops::Deref "ops::Deref"
|
|
|
|
|
|
/// [`Deref`]: core::ops::Deref "ops::Deref"
|
2020-07-18 10:14:00 -07:00
|
|
|
|
/// [`as_str()`]: String::as_str
|
2023-04-05 20:58:21 +02:00
|
|
|
|
#[derive(PartialEq, PartialOrd, Eq, Ord)]
|
2015-01-23 21:48:20 -08:00
|
|
|
|
#[stable(feature = "rust1", since = "1.0.0")]
|
2022-12-15 09:52:32 +01:00
|
|
|
|
#[cfg_attr(not(test), lang = "String")]
|
2014-05-22 16:57:53 -07:00
|
|
|
|
pub struct String {
|
2014-04-02 16:54:22 -07:00
|
|
|
|
vec: Vec<u8>,
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2015-11-30 15:48:28 -05:00
|
|
|
|
/// A possible error value when converting a `String` from a UTF-8 byte vector.
|
|
|
|
|
|
///
|
2017-03-12 14:04:52 -04:00
|
|
|
|
/// This type is the error type for the [`from_utf8`] method on [`String`]. It
|
2015-11-30 15:48:28 -05:00
|
|
|
|
/// is designed in such a way to carefully avoid reallocations: the
|
2017-03-12 14:04:52 -04:00
|
|
|
|
/// [`into_bytes`] method will give back the byte vector that was used in the
|
2015-11-30 15:48:28 -05:00
|
|
|
|
/// conversion attempt.
|
|
|
|
|
|
///
|
2020-07-18 10:14:00 -07:00
|
|
|
|
/// [`from_utf8`]: String::from_utf8
|
|
|
|
|
|
/// [`into_bytes`]: FromUtf8Error::into_bytes
|
2015-11-30 15:48:28 -05:00
|
|
|
|
///
|
|
|
|
|
|
/// The [`Utf8Error`] type provided by [`std::str`] represents an error that may
|
|
|
|
|
|
/// occur when converting a slice of [`u8`]s to a [`&str`]. In this sense, it's
|
|
|
|
|
|
/// an analogue to `FromUtf8Error`, and you can get one from a `FromUtf8Error`
|
2017-03-12 14:04:52 -04:00
|
|
|
|
/// through the [`utf8_error`] method.
|
2015-11-30 15:48:28 -05:00
|
|
|
|
///
|
Apply 16 commits (squashed)
----------
Fix spacing for links inside code blocks, and improve link tooltips in alloc::fmt
----------
Fix spacing for links inside code blocks, and improve link tooltips in alloc::{rc, sync}
----------
Fix spacing for links inside code blocks, and improve link tooltips in alloc::string
----------
Fix spacing for links inside code blocks in alloc::vec
----------
Fix spacing for links inside code blocks in core::option
----------
Fix spacing for links inside code blocks, and improve a few link tooltips in core::result
----------
Fix spacing for links inside code blocks in core::{iter::{self, iterator}, stream::stream, poll}
----------
Fix spacing for links inside code blocks, and improve a few link tooltips in std::{fs, path}
----------
Fix spacing for links inside code blocks in std::{collections, time}
----------
Fix spacing for links inside code blocks in and make formatting of `&str`-like types consistent in std::ffi::{c_str, os_str}
----------
Fix spacing for links inside code blocks, and improve link tooltips in std::ffi
----------
Fix spacing for links inside code blocks, and improve a few link tooltips
in std::{io::{self, buffered::{bufreader, bufwriter}, cursor, util}, net::{self, addr}}
----------
Fix typo in link to `into` for `OsString` docs
----------
Remove tooltips that will probably become redundant in the future
----------
Apply suggestions from code review
Replacing `…std/primitive.reference.html` paths with just `reference`
Co-authored-by: Joshua Nelson <github@jyn.dev>
----------
Also replace `…std/primitive.reference.html` paths with just `reference` in `core::pin`
2021-08-25 11:45:08 +02:00
|
|
|
|
/// [`Utf8Error`]: str::Utf8Error "std::str::Utf8Error"
|
|
|
|
|
|
/// [`std::str`]: core::str "std::str"
|
|
|
|
|
|
/// [`&str`]: prim@str "&str"
|
|
|
|
|
|
/// [`utf8_error`]: FromUtf8Error::utf8_error
|
2015-11-30 15:48:28 -05:00
|
|
|
|
///
|
|
|
|
|
|
/// # Examples
|
|
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
/// // some invalid bytes, in a vector
|
|
|
|
|
|
/// let bytes = vec![0, 159];
|
|
|
|
|
|
///
|
|
|
|
|
|
/// let value = String::from_utf8(bytes);
|
|
|
|
|
|
///
|
|
|
|
|
|
/// assert!(value.is_err());
|
|
|
|
|
|
/// assert_eq!(vec![0, 159], value.unwrap_err().into_bytes());
|
|
|
|
|
|
/// ```
|
2015-01-23 21:48:20 -08:00
|
|
|
|
#[stable(feature = "rust1", since = "1.0.0")]
|
alloc: Add unstable Cfg feature `no-global_oom_handling`
For certain sorts of systems, programming, it's deemed essential that
all allocation failures be explicitly handled where they occur. For
example, see Linus Torvald's opinion in [1]. Merely not calling global
panic handlers, or always `try_reserving` first (for vectors), is not
deemed good enough, because the mere presence of the global OOM handlers
is burdens static analysis.
One option for these projects to use rust would just be to skip `alloc`,
rolling their own allocation abstractions. But this would, in my
opinion be a real shame. `alloc` has a few `try_*` methods already, and
we could easily have more. Features like custom allocator support also
demonstrate and existing to support diverse use-cases with the same
abstractions.
A natural way to add such a feature flag would a Cargo feature, but
there are currently uncertainties around how std library crate's Cargo
features may or not be stable, so to avoid any risk of stabilizing by
mistake we are going with a more low-level "raw cfg" token, which
cannot be interacted with via Cargo alone.
Note also that since there is no notion of "default cfg tokens" outside
of Cargo features, we have to invert the condition from
`global_oom_handling` to to `not(no_global_oom_handling)`. This breaks
the monotonicity that would be important for a Cargo feature (i.e.
turning on more features should never break compatibility), but it
doesn't matter for raw cfg tokens which are not intended to be
"constraint solved" by Cargo or anything else.
To support this use-case we create a new feature, "global-oom-handling",
on by default, and put the global OOM handler infra and everything else
it that depends on it behind it. By default, nothing is changed, but
users concerned about global handling can make sure it is disabled, and
be confident that all OOM handling is local and explicit.
For this first iteration, non-flat collections are outright disabled.
`Vec` and `String` don't yet have `try_*` allocation methods, but are
kept anyways since they can be oom-safely created "from parts", and we
hope to add those `try_` methods in the future.
[1]: https://lore.kernel.org/lkml/CAHk-=wh_sNLoz84AUUzuqXEsYH35u=8HV3vK-jbRbJ_B-JjGrg@mail.gmail.com/
2021-04-16 20:18:04 -04:00
|
|
|
|
#[cfg_attr(not(no_global_oom_handling), derive(Clone))]
|
|
|
|
|
|
#[derive(Debug, PartialEq, Eq)]
|
2014-12-28 10:29:56 -08:00
|
|
|
|
pub struct FromUtf8Error {
|
|
|
|
|
|
bytes: Vec<u8>,
|
|
|
|
|
|
error: Utf8Error,
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2015-11-30 15:48:28 -05:00
|
|
|
|
/// A possible error value when converting a `String` from a UTF-16 byte slice.
|
|
|
|
|
|
///
|
2017-03-12 14:04:52 -04:00
|
|
|
|
/// This type is the error type for the [`from_utf16`] method on [`String`].
|
2015-11-30 15:48:28 -05:00
|
|
|
|
///
|
2020-07-18 10:14:00 -07:00
|
|
|
|
/// [`from_utf16`]: String::from_utf16
|
2015-11-30 15:48:28 -05:00
|
|
|
|
///
|
2023-08-02 11:17:57 +02:00
|
|
|
|
/// # Examples
|
2015-11-30 15:48:28 -05:00
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
/// // 𝄞mu<invalid>ic
|
|
|
|
|
|
/// let v = &[0xD834, 0xDD1E, 0x006d, 0x0075,
|
|
|
|
|
|
/// 0xD800, 0x0069, 0x0063];
|
|
|
|
|
|
///
|
|
|
|
|
|
/// assert!(String::from_utf16(v).is_err());
|
|
|
|
|
|
/// ```
|
2015-01-23 21:48:20 -08:00
|
|
|
|
#[stable(feature = "rust1", since = "1.0.0")]
|
2015-01-28 08:34:18 -05:00
|
|
|
|
#[derive(Debug)]
|
2014-12-28 10:29:56 -08:00
|
|
|
|
pub struct FromUtf16Error(());
|
|
|
|
|
|
|
2014-05-22 16:57:53 -07:00
|
|
|
|
impl String {
|
2015-12-01 16:07:53 -05:00
|
|
|
|
/// Creates a new empty `String`.
|
|
|
|
|
|
///
|
|
|
|
|
|
/// Given that the `String` is empty, this will not allocate any initial
|
|
|
|
|
|
/// buffer. While that means that this initial operation is very
|
2018-02-22 14:21:54 -05:00
|
|
|
|
/// inexpensive, it may cause excessive allocation later when you add
|
2015-12-01 16:07:53 -05:00
|
|
|
|
/// data. If you have an idea of how much data the `String` will hold,
|
2017-03-12 14:04:52 -04:00
|
|
|
|
/// consider the [`with_capacity`] method to prevent excessive
|
2015-12-01 16:07:53 -05:00
|
|
|
|
/// re-allocation.
|
|
|
|
|
|
///
|
2020-07-18 10:14:00 -07:00
|
|
|
|
/// [`with_capacity`]: String::with_capacity
|
2014-07-27 12:40:39 +02:00
|
|
|
|
///
|
2014-12-08 23:28:07 -06:00
|
|
|
|
/// # Examples
|
2014-07-27 12:40:39 +02:00
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
2015-12-01 16:07:53 -05:00
|
|
|
|
/// let s = String::new();
|
2014-07-27 12:40:39 +02:00
|
|
|
|
/// ```
|
2014-04-02 16:54:22 -07:00
|
|
|
|
#[inline]
|
2021-03-12 13:45:13 +00:00
|
|
|
|
#[rustc_const_stable(feature = "const_string_new", since = "1.39.0")]
|
2015-01-23 21:48:20 -08:00
|
|
|
|
#[stable(feature = "rust1", since = "1.0.0")]
|
2021-10-10 01:50:06 -04:00
|
|
|
|
#[must_use]
|
2018-05-05 16:34:43 +08:00
|
|
|
|
pub const fn new() -> String {
|
2015-11-24 11:23:48 +13:00
|
|
|
|
String { vec: Vec::new() }
|
2014-04-02 16:54:22 -07:00
|
|
|
|
}
|
|
|
|
|
|
|
2022-04-09 16:42:26 +01:00
|
|
|
|
/// Creates a new empty `String` with at least the specified capacity.
|
2015-12-01 16:07:53 -05:00
|
|
|
|
///
|
|
|
|
|
|
/// `String`s have an internal buffer to hold their data. The capacity is
|
2017-03-12 14:04:52 -04:00
|
|
|
|
/// the length of that buffer, and can be queried with the [`capacity`]
|
2015-12-01 16:07:53 -05:00
|
|
|
|
/// method. This method creates an empty `String`, but one with an initial
|
2022-04-09 16:42:26 +01:00
|
|
|
|
/// buffer that can hold at least `capacity` bytes. This is useful when you
|
|
|
|
|
|
/// may be appending a bunch of data to the `String`, reducing the number of
|
2015-12-01 16:07:53 -05:00
|
|
|
|
/// reallocations it needs to do.
|
|
|
|
|
|
///
|
2020-07-18 10:14:00 -07:00
|
|
|
|
/// [`capacity`]: String::capacity
|
2015-12-01 16:07:53 -05:00
|
|
|
|
///
|
|
|
|
|
|
/// If the given capacity is `0`, no allocation will occur, and this method
|
2017-03-12 14:04:52 -04:00
|
|
|
|
/// is identical to the [`new`] method.
|
2015-12-01 16:07:53 -05:00
|
|
|
|
///
|
2020-07-18 10:14:00 -07:00
|
|
|
|
/// [`new`]: String::new
|
2014-07-27 12:40:39 +02:00
|
|
|
|
///
|
2014-12-08 23:28:07 -06:00
|
|
|
|
/// # Examples
|
2014-07-27 12:40:39 +02:00
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
/// let mut s = String::with_capacity(10);
|
2015-11-03 14:49:33 +00:00
|
|
|
|
///
|
|
|
|
|
|
/// // The String contains no chars, even though it has capacity for more
|
|
|
|
|
|
/// assert_eq!(s.len(), 0);
|
|
|
|
|
|
///
|
|
|
|
|
|
/// // These are all done without reallocating...
|
|
|
|
|
|
/// let cap = s.capacity();
|
2018-10-27 14:33:07 +08:00
|
|
|
|
/// for _ in 0..10 {
|
2015-11-03 14:49:33 +00:00
|
|
|
|
/// s.push('a');
|
|
|
|
|
|
/// }
|
|
|
|
|
|
///
|
|
|
|
|
|
/// assert_eq!(s.capacity(), cap);
|
|
|
|
|
|
///
|
2020-03-05 20:20:02 +01:00
|
|
|
|
/// // ...but this may make the string reallocate
|
2015-11-03 14:49:33 +00:00
|
|
|
|
/// s.push('a');
|
2014-07-27 12:40:39 +02:00
|
|
|
|
/// ```
|
alloc: Add unstable Cfg feature `no-global_oom_handling`
For certain sorts of systems, programming, it's deemed essential that
all allocation failures be explicitly handled where they occur. For
example, see Linus Torvald's opinion in [1]. Merely not calling global
panic handlers, or always `try_reserving` first (for vectors), is not
deemed good enough, because the mere presence of the global OOM handlers
is burdens static analysis.
One option for these projects to use rust would just be to skip `alloc`,
rolling their own allocation abstractions. But this would, in my
opinion be a real shame. `alloc` has a few `try_*` methods already, and
we could easily have more. Features like custom allocator support also
demonstrate and existing to support diverse use-cases with the same
abstractions.
A natural way to add such a feature flag would a Cargo feature, but
there are currently uncertainties around how std library crate's Cargo
features may or not be stable, so to avoid any risk of stabilizing by
mistake we are going with a more low-level "raw cfg" token, which
cannot be interacted with via Cargo alone.
Note also that since there is no notion of "default cfg tokens" outside
of Cargo features, we have to invert the condition from
`global_oom_handling` to to `not(no_global_oom_handling)`. This breaks
the monotonicity that would be important for a Cargo feature (i.e.
turning on more features should never break compatibility), but it
doesn't matter for raw cfg tokens which are not intended to be
"constraint solved" by Cargo or anything else.
To support this use-case we create a new feature, "global-oom-handling",
on by default, and put the global OOM handler infra and everything else
it that depends on it behind it. By default, nothing is changed, but
users concerned about global handling can make sure it is disabled, and
be confident that all OOM handling is local and explicit.
For this first iteration, non-flat collections are outright disabled.
`Vec` and `String` don't yet have `try_*` allocation methods, but are
kept anyways since they can be oom-safely created "from parts", and we
hope to add those `try_` methods in the future.
[1]: https://lore.kernel.org/lkml/CAHk-=wh_sNLoz84AUUzuqXEsYH35u=8HV3vK-jbRbJ_B-JjGrg@mail.gmail.com/
2021-04-16 20:18:04 -04:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
2014-04-02 16:54:22 -07:00
|
|
|
|
#[inline]
|
2015-01-23 21:48:20 -08:00
|
|
|
|
#[stable(feature = "rust1", since = "1.0.0")]
|
2021-10-10 01:50:06 -04:00
|
|
|
|
#[must_use]
|
2015-02-04 21:17:19 -05:00
|
|
|
|
pub fn with_capacity(capacity: usize) -> String {
|
2015-11-24 11:23:48 +13:00
|
|
|
|
String { vec: Vec::with_capacity(capacity) }
|
2014-04-02 16:54:22 -07:00
|
|
|
|
}
|
|
|
|
|
|
|
2024-01-30 16:08:57 +00:00
|
|
|
|
/// Creates a new empty `String` with at least the specified capacity.
|
|
|
|
|
|
///
|
|
|
|
|
|
/// # Errors
|
|
|
|
|
|
///
|
|
|
|
|
|
/// Returns [`Err`] if the capacity exceeds `isize::MAX` bytes,
|
|
|
|
|
|
/// or if the memory allocator reports failure.
|
|
|
|
|
|
///
|
|
|
|
|
|
#[inline]
|
|
|
|
|
|
#[unstable(feature = "try_with_capacity", issue = "91913")]
|
|
|
|
|
|
pub fn try_with_capacity(capacity: usize) -> Result<String, TryReserveError> {
|
|
|
|
|
|
Ok(String { vec: Vec::try_with_capacity(capacity)? })
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2015-03-18 09:36:18 -07:00
|
|
|
|
// HACK(japaric): with cfg(test) the inherent `[T]::to_vec` method, which is
|
|
|
|
|
|
// required for this method definition, is not available. Since we don't
|
|
|
|
|
|
// require this method for testing purposes, I'll just stub it
|
2015-03-13 19:44:02 -05:00
|
|
|
|
// NB see the slice::hack module in slice.rs for more information
|
2015-03-11 19:44:02 -05:00
|
|
|
|
#[inline]
|
|
|
|
|
|
#[cfg(test)]
|
2015-03-13 19:44:02 -05:00
|
|
|
|
pub fn from_str(_: &str) -> String {
|
|
|
|
|
|
panic!("not available with cfg(test)");
|
2015-03-11 19:44:02 -05:00
|
|
|
|
}
|
|
|
|
|
|
|
2015-10-02 14:36:02 -04:00
|
|
|
|
/// Converts a vector of bytes to a `String`.
|
|
|
|
|
|
///
|
2019-09-24 15:25:24 +02:00
|
|
|
|
/// A string ([`String`]) is made of bytes ([`u8`]), and a vector of bytes
|
2015-12-01 16:07:53 -05:00
|
|
|
|
/// ([`Vec<u8>`]) is made of bytes, so this function converts between the
|
2015-10-02 14:36:02 -04:00
|
|
|
|
/// two. Not all byte slices are valid `String`s, however: `String`
|
|
|
|
|
|
/// requires that it is valid UTF-8. `from_utf8()` checks to ensure that
|
|
|
|
|
|
/// the bytes are valid UTF-8, and then does the conversion.
|
|
|
|
|
|
///
|
|
|
|
|
|
/// If you are sure that the byte slice is valid UTF-8, and you don't want
|
|
|
|
|
|
/// to incur the overhead of the validity check, there is an unsafe version
|
2017-03-12 14:04:52 -04:00
|
|
|
|
/// of this function, [`from_utf8_unchecked`], which has the same behavior
|
2015-12-01 16:07:53 -05:00
|
|
|
|
/// but skips the check.
|
2015-10-02 14:36:02 -04:00
|
|
|
|
///
|
|
|
|
|
|
/// This method will take care to not copy the vector, for efficiency's
|
|
|
|
|
|
/// sake.
|
|
|
|
|
|
///
|
2017-08-18 17:17:46 +02:00
|
|
|
|
/// If you need a [`&str`] instead of a `String`, consider
|
2017-03-12 14:04:52 -04:00
|
|
|
|
/// [`str::from_utf8`].
|
2015-10-02 14:36:02 -04:00
|
|
|
|
///
|
2019-09-24 15:25:24 +02:00
|
|
|
|
/// The inverse of this method is [`into_bytes`].
|
2017-03-03 01:24:19 -05:00
|
|
|
|
///
|
2016-02-01 21:41:29 -05:00
|
|
|
|
/// # Errors
|
std: Stabilize the std::str module
This commit starts out by consolidating all `str` extension traits into one
`StrExt` trait to be included in the prelude. This means that
`UnicodeStrPrelude`, `StrPrelude`, and `StrAllocating` have all been merged into
one `StrExt` exported by the standard library. Some functionality is currently
duplicated with the `StrExt` present in libcore.
This commit also currently avoids any methods which require any form of pattern
to operate. These functions will be stabilized via a separate RFC.
Next, stability of methods and structures are as follows:
Stable
* from_utf8_unchecked
* CowString - after moving to std::string
* StrExt::as_bytes
* StrExt::as_ptr
* StrExt::bytes/Bytes - also made a struct instead of a typedef
* StrExt::char_indices/CharIndices - CharOffsets was renamed
* StrExt::chars/Chars
* StrExt::is_empty
* StrExt::len
* StrExt::lines/Lines
* StrExt::lines_any/LinesAny
* StrExt::slice_unchecked
* StrExt::trim
* StrExt::trim_left
* StrExt::trim_right
* StrExt::words/Words - also made a struct instead of a typedef
Unstable
* from_utf8 - the error type was changed to a `Result`, but the error type has
yet to prove itself
* from_c_str - this function will be handled by the c_str RFC
* FromStr - this trait will have an associated error type eventually
* StrExt::escape_default - needs iterators at least, unsure if it should make
the cut
* StrExt::escape_unicode - needs iterators at least, unsure if it should make
the cut
* StrExt::slice_chars - this function has yet to prove itself
* StrExt::slice_shift_char - awaiting conventions about slicing and shifting
* StrExt::graphemes/Graphemes - this functionality may only be in libunicode
* StrExt::grapheme_indices/GraphemeIndices - this functionality may only be in
libunicode
* StrExt::width - this functionality may only be in libunicode
* StrExt::utf16_units - this functionality may only be in libunicode
* StrExt::nfd_chars - this functionality may only be in libunicode
* StrExt::nfkd_chars - this functionality may only be in libunicode
* StrExt::nfc_chars - this functionality may only be in libunicode
* StrExt::nfkc_chars - this functionality may only be in libunicode
* StrExt::is_char_boundary - naming is uncertain with container conventions
* StrExt::char_range_at - naming is uncertain with container conventions
* StrExt::char_range_at_reverse - naming is uncertain with container conventions
* StrExt::char_at - naming is uncertain with container conventions
* StrExt::char_at_reverse - naming is uncertain with container conventions
* StrVector::concat - this functionality may be replaced with iterators, but
it's not certain at this time
* StrVector::connect - as with concat, may be deprecated in favor of iterators
Deprecated
* StrAllocating and UnicodeStrPrelude have been merged into StrExit
* eq_slice - compiler implementation detail
* from_str - use the inherent parse() method
* is_utf8 - call from_utf8 instead
* replace - call the method instead
* truncate_utf16_at_nul - this is an implementation detail of windows and does
not need to be exposed.
* utf8_char_width - moved to libunicode
* utf16_items - moved to libunicode
* is_utf16 - moved to libunicode
* Utf16Items - moved to libunicode
* Utf16Item - moved to libunicode
* Utf16Encoder - moved to libunicode
* AnyLines - renamed to LinesAny and made a struct
* SendStr - use CowString<'static> instead
* str::raw - all functionality is deprecated
* StrExt::into_string - call to_string() instead
* StrExt::repeat - use iterators instead
* StrExt::char_len - use .chars().count() instead
* StrExt::is_alphanumeric - use .chars().all(..)
* StrExt::is_whitespace - use .chars().all(..)
Pending deprecation -- while slicing syntax is being worked out, these methods
are all #[unstable]
* Str - while currently used for generic programming, this trait will be
replaced with one of [], deref coercions, or a generic conversion trait.
* StrExt::slice - use slicing syntax instead
* StrExt::slice_to - use slicing syntax instead
* StrExt::slice_from - use slicing syntax instead
* StrExt::lev_distance - deprecated with no replacement
Awaiting stabilization due to patterns and/or matching
* StrExt::contains
* StrExt::contains_char
* StrExt::split
* StrExt::splitn
* StrExt::split_terminator
* StrExt::rsplitn
* StrExt::match_indices
* StrExt::split_str
* StrExt::starts_with
* StrExt::ends_with
* StrExt::trim_chars
* StrExt::trim_left_chars
* StrExt::trim_right_chars
* StrExt::find
* StrExt::rfind
* StrExt::find_str
* StrExt::subslice_offset
2014-12-10 09:02:31 -08:00
|
|
|
|
///
|
2017-08-18 17:17:46 +02:00
|
|
|
|
/// Returns [`Err`] if the slice is not UTF-8 with a description as to why the
|
2015-10-02 14:36:02 -04:00
|
|
|
|
/// provided bytes are not UTF-8. The vector you moved in is also included.
|
2014-06-30 16:41:30 +02:00
|
|
|
|
///
|
2014-12-08 23:28:07 -06:00
|
|
|
|
/// # Examples
|
2014-06-30 16:41:30 +02:00
|
|
|
|
///
|
2015-10-02 14:36:02 -04:00
|
|
|
|
/// Basic usage:
|
|
|
|
|
|
///
|
2015-03-12 22:42:38 -04:00
|
|
|
|
/// ```
|
2015-10-02 14:36:02 -04:00
|
|
|
|
/// // some bytes, in a vector
|
|
|
|
|
|
/// let sparkle_heart = vec![240, 159, 146, 150];
|
|
|
|
|
|
///
|
2015-12-01 13:39:48 -05:00
|
|
|
|
/// // We know these bytes are valid, so we'll use `unwrap()`.
|
2015-10-02 14:36:02 -04:00
|
|
|
|
/// let sparkle_heart = String::from_utf8(sparkle_heart).unwrap();
|
|
|
|
|
|
///
|
|
|
|
|
|
/// assert_eq!("💖", sparkle_heart);
|
2014-06-30 16:41:30 +02:00
|
|
|
|
/// ```
|
2015-10-02 14:36:02 -04:00
|
|
|
|
///
|
|
|
|
|
|
/// Incorrect bytes:
|
|
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
/// // some invalid bytes, in a vector
|
|
|
|
|
|
/// let sparkle_heart = vec![0, 159, 146, 150];
|
|
|
|
|
|
///
|
|
|
|
|
|
/// assert!(String::from_utf8(sparkle_heart).is_err());
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
///
|
2015-12-01 16:07:53 -05:00
|
|
|
|
/// See the docs for [`FromUtf8Error`] for more details on what you can do
|
|
|
|
|
|
/// with this error.
|
2015-10-02 14:36:02 -04:00
|
|
|
|
///
|
2020-07-18 10:14:00 -07:00
|
|
|
|
/// [`from_utf8_unchecked`]: String::from_utf8_unchecked
|
Apply 16 commits (squashed)
----------
Fix spacing for links inside code blocks, and improve link tooltips in alloc::fmt
----------
Fix spacing for links inside code blocks, and improve link tooltips in alloc::{rc, sync}
----------
Fix spacing for links inside code blocks, and improve link tooltips in alloc::string
----------
Fix spacing for links inside code blocks in alloc::vec
----------
Fix spacing for links inside code blocks in core::option
----------
Fix spacing for links inside code blocks, and improve a few link tooltips in core::result
----------
Fix spacing for links inside code blocks in core::{iter::{self, iterator}, stream::stream, poll}
----------
Fix spacing for links inside code blocks, and improve a few link tooltips in std::{fs, path}
----------
Fix spacing for links inside code blocks in std::{collections, time}
----------
Fix spacing for links inside code blocks in and make formatting of `&str`-like types consistent in std::ffi::{c_str, os_str}
----------
Fix spacing for links inside code blocks, and improve link tooltips in std::ffi
----------
Fix spacing for links inside code blocks, and improve a few link tooltips
in std::{io::{self, buffered::{bufreader, bufwriter}, cursor, util}, net::{self, addr}}
----------
Fix typo in link to `into` for `OsString` docs
----------
Remove tooltips that will probably become redundant in the future
----------
Apply suggestions from code review
Replacing `…std/primitive.reference.html` paths with just `reference`
Co-authored-by: Joshua Nelson <github@jyn.dev>
----------
Also replace `…std/primitive.reference.html` paths with just `reference` in `core::pin`
2021-08-25 11:45:08 +02:00
|
|
|
|
/// [`Vec<u8>`]: crate::vec::Vec "Vec"
|
|
|
|
|
|
/// [`&str`]: prim@str "&str"
|
2020-07-18 10:14:00 -07:00
|
|
|
|
/// [`into_bytes`]: String::into_bytes
|
2014-04-10 20:55:34 +10:00
|
|
|
|
#[inline]
|
2015-01-23 21:48:20 -08:00
|
|
|
|
#[stable(feature = "rust1", since = "1.0.0")]
|
2014-12-28 10:29:56 -08:00
|
|
|
|
pub fn from_utf8(vec: Vec<u8>) -> Result<String, FromUtf8Error> {
|
2015-02-01 21:53:25 -05:00
|
|
|
|
match str::from_utf8(&vec) {
|
2018-11-06 15:05:44 -05:00
|
|
|
|
Ok(..) => Ok(String { vec }),
|
2015-11-24 11:23:48 +13:00
|
|
|
|
Err(e) => Err(FromUtf8Error { bytes: vec, error: e }),
|
2014-04-10 20:55:34 +10:00
|
|
|
|
}
|
|
|
|
|
|
}
|
2014-07-10 18:21:16 +02:00
|
|
|
|
|
2016-02-08 17:10:55 -05:00
|
|
|
|
/// Converts a slice of bytes to a string, including invalid characters.
|
2015-10-02 14:36:02 -04:00
|
|
|
|
///
|
2016-02-08 17:10:55 -05:00
|
|
|
|
/// Strings are made of bytes ([`u8`]), and a slice of bytes
|
|
|
|
|
|
/// ([`&[u8]`][byteslice]) is made of bytes, so this function converts
|
|
|
|
|
|
/// between the two. Not all byte slices are valid strings, however: strings
|
|
|
|
|
|
/// are required to be valid UTF-8. During this conversion,
|
2015-12-01 16:07:53 -05:00
|
|
|
|
/// `from_utf8_lossy()` will replace any invalid UTF-8 sequences with
|
2018-08-11 14:09:59 -04:00
|
|
|
|
/// [`U+FFFD REPLACEMENT CHARACTER`][U+FFFD], which looks like this: <20>
|
2015-10-02 14:36:02 -04:00
|
|
|
|
///
|
2020-12-19 08:23:59 -05:00
|
|
|
|
/// [byteslice]: prim@slice
|
2020-07-18 10:14:00 -07:00
|
|
|
|
/// [U+FFFD]: core::char::REPLACEMENT_CHARACTER
|
2015-12-01 16:07:53 -05:00
|
|
|
|
///
|
2015-10-02 14:36:02 -04:00
|
|
|
|
/// If you are sure that the byte slice is valid UTF-8, and you don't want
|
|
|
|
|
|
/// to incur the overhead of the conversion, there is an unsafe version
|
2017-03-12 14:04:52 -04:00
|
|
|
|
/// of this function, [`from_utf8_unchecked`], which has the same behavior
|
2015-12-01 16:07:53 -05:00
|
|
|
|
/// but skips the checks.
|
2015-10-02 14:36:02 -04:00
|
|
|
|
///
|
2020-07-18 10:14:00 -07:00
|
|
|
|
/// [`from_utf8_unchecked`]: String::from_utf8_unchecked
|
2015-10-02 14:36:02 -04:00
|
|
|
|
///
|
2016-02-08 17:10:55 -05:00
|
|
|
|
/// This function returns a [`Cow<'a, str>`]. If our byte slice is invalid
|
|
|
|
|
|
/// UTF-8, then we need to insert the replacement characters, which will
|
|
|
|
|
|
/// change the size of the string, and hence, require a `String`. But if
|
|
|
|
|
|
/// it's already valid UTF-8, we don't need a new allocation. This return
|
|
|
|
|
|
/// type allows us to handle both cases.
|
2015-10-02 14:36:02 -04:00
|
|
|
|
///
|
Apply 16 commits (squashed)
----------
Fix spacing for links inside code blocks, and improve link tooltips in alloc::fmt
----------
Fix spacing for links inside code blocks, and improve link tooltips in alloc::{rc, sync}
----------
Fix spacing for links inside code blocks, and improve link tooltips in alloc::string
----------
Fix spacing for links inside code blocks in alloc::vec
----------
Fix spacing for links inside code blocks in core::option
----------
Fix spacing for links inside code blocks, and improve a few link tooltips in core::result
----------
Fix spacing for links inside code blocks in core::{iter::{self, iterator}, stream::stream, poll}
----------
Fix spacing for links inside code blocks, and improve a few link tooltips in std::{fs, path}
----------
Fix spacing for links inside code blocks in std::{collections, time}
----------
Fix spacing for links inside code blocks in and make formatting of `&str`-like types consistent in std::ffi::{c_str, os_str}
----------
Fix spacing for links inside code blocks, and improve link tooltips in std::ffi
----------
Fix spacing for links inside code blocks, and improve a few link tooltips
in std::{io::{self, buffered::{bufreader, bufwriter}, cursor, util}, net::{self, addr}}
----------
Fix typo in link to `into` for `OsString` docs
----------
Remove tooltips that will probably become redundant in the future
----------
Apply suggestions from code review
Replacing `…std/primitive.reference.html` paths with just `reference`
Co-authored-by: Joshua Nelson <github@jyn.dev>
----------
Also replace `…std/primitive.reference.html` paths with just `reference` in `core::pin`
2021-08-25 11:45:08 +02:00
|
|
|
|
/// [`Cow<'a, str>`]: crate::borrow::Cow "borrow::Cow"
|
2014-07-10 18:21:16 +02:00
|
|
|
|
///
|
2014-12-08 23:28:07 -06:00
|
|
|
|
/// # Examples
|
2014-07-10 18:21:16 +02:00
|
|
|
|
///
|
2015-10-02 14:36:02 -04:00
|
|
|
|
/// Basic usage:
|
|
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
/// // some bytes, in a vector
|
|
|
|
|
|
/// let sparkle_heart = vec![240, 159, 146, 150];
|
|
|
|
|
|
///
|
2016-02-08 17:10:55 -05:00
|
|
|
|
/// let sparkle_heart = String::from_utf8_lossy(&sparkle_heart);
|
2015-10-02 14:36:02 -04:00
|
|
|
|
///
|
|
|
|
|
|
/// assert_eq!("💖", sparkle_heart);
|
2015-03-12 22:42:38 -04:00
|
|
|
|
/// ```
|
2015-10-02 14:36:02 -04:00
|
|
|
|
///
|
|
|
|
|
|
/// Incorrect bytes:
|
|
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
/// // some invalid bytes
|
2014-07-10 18:21:16 +02:00
|
|
|
|
/// let input = b"Hello \xF0\x90\x80World";
|
2014-07-04 22:38:13 +02:00
|
|
|
|
/// let output = String::from_utf8_lossy(input);
|
2015-10-02 14:36:02 -04:00
|
|
|
|
///
|
|
|
|
|
|
/// assert_eq!("Hello <20>World", output);
|
2014-07-10 18:21:16 +02:00
|
|
|
|
/// ```
|
2021-10-12 19:09:24 -04:00
|
|
|
|
#[must_use]
|
alloc: Add unstable Cfg feature `no-global_oom_handling`
For certain sorts of systems, programming, it's deemed essential that
all allocation failures be explicitly handled where they occur. For
example, see Linus Torvald's opinion in [1]. Merely not calling global
panic handlers, or always `try_reserving` first (for vectors), is not
deemed good enough, because the mere presence of the global OOM handlers
is burdens static analysis.
One option for these projects to use rust would just be to skip `alloc`,
rolling their own allocation abstractions. But this would, in my
opinion be a real shame. `alloc` has a few `try_*` methods already, and
we could easily have more. Features like custom allocator support also
demonstrate and existing to support diverse use-cases with the same
abstractions.
A natural way to add such a feature flag would a Cargo feature, but
there are currently uncertainties around how std library crate's Cargo
features may or not be stable, so to avoid any risk of stabilizing by
mistake we are going with a more low-level "raw cfg" token, which
cannot be interacted with via Cargo alone.
Note also that since there is no notion of "default cfg tokens" outside
of Cargo features, we have to invert the condition from
`global_oom_handling` to to `not(no_global_oom_handling)`. This breaks
the monotonicity that would be important for a Cargo feature (i.e.
turning on more features should never break compatibility), but it
doesn't matter for raw cfg tokens which are not intended to be
"constraint solved" by Cargo or anything else.
To support this use-case we create a new feature, "global-oom-handling",
on by default, and put the global OOM handler infra and everything else
it that depends on it behind it. By default, nothing is changed, but
users concerned about global handling can make sure it is disabled, and
be confident that all OOM handling is local and explicit.
For this first iteration, non-flat collections are outright disabled.
`Vec` and `String` don't yet have `try_*` allocation methods, but are
kept anyways since they can be oom-safely created "from parts", and we
hope to add those `try_` methods in the future.
[1]: https://lore.kernel.org/lkml/CAHk-=wh_sNLoz84AUUzuqXEsYH35u=8HV3vK-jbRbJ_B-JjGrg@mail.gmail.com/
2021-04-16 20:18:04 -04:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
2015-01-23 21:48:20 -08:00
|
|
|
|
#[stable(feature = "rust1", since = "1.0.0")]
|
2019-06-25 19:43:18 +02:00
|
|
|
|
pub fn from_utf8_lossy(v: &[u8]) -> Cow<'_, str> {
|
2022-08-20 12:49:20 -04:00
|
|
|
|
let mut iter = Utf8Chunks::new(v);
|
2014-07-10 18:21:16 +02:00
|
|
|
|
|
2021-11-25 18:27:36 -08:00
|
|
|
|
let first_valid = if let Some(chunk) = iter.next() {
|
2022-08-20 12:49:20 -04:00
|
|
|
|
let valid = chunk.valid();
|
|
|
|
|
|
if chunk.invalid().is_empty() {
|
2021-11-25 18:27:36 -08:00
|
|
|
|
debug_assert_eq!(valid.len(), v.len());
|
2017-06-12 20:07:54 +03:00
|
|
|
|
return Cow::Borrowed(valid);
|
|
|
|
|
|
}
|
2021-11-25 18:27:36 -08:00
|
|
|
|
valid
|
2017-06-12 20:07:54 +03:00
|
|
|
|
} else {
|
|
|
|
|
|
return Cow::Borrowed("");
|
|
|
|
|
|
};
|
2014-07-10 18:21:16 +02:00
|
|
|
|
|
2018-12-04 12:46:10 +01:00
|
|
|
|
const REPLACEMENT: &str = "\u{FFFD}";
|
2014-07-10 18:21:16 +02:00
|
|
|
|
|
2017-06-12 20:07:54 +03:00
|
|
|
|
let mut res = String::with_capacity(v.len());
|
|
|
|
|
|
res.push_str(first_valid);
|
2021-11-25 18:27:36 -08:00
|
|
|
|
res.push_str(REPLACEMENT);
|
2014-07-10 18:21:16 +02:00
|
|
|
|
|
2022-08-20 12:49:20 -04:00
|
|
|
|
for chunk in iter {
|
|
|
|
|
|
res.push_str(chunk.valid());
|
|
|
|
|
|
if !chunk.invalid().is_empty() {
|
2017-06-12 20:07:54 +03:00
|
|
|
|
res.push_str(REPLACEMENT);
|
2014-07-10 18:21:16 +02:00
|
|
|
|
}
|
|
|
|
|
|
}
|
2017-06-12 20:07:54 +03:00
|
|
|
|
|
std: Stabilize the std::str module
This commit starts out by consolidating all `str` extension traits into one
`StrExt` trait to be included in the prelude. This means that
`UnicodeStrPrelude`, `StrPrelude`, and `StrAllocating` have all been merged into
one `StrExt` exported by the standard library. Some functionality is currently
duplicated with the `StrExt` present in libcore.
This commit also currently avoids any methods which require any form of pattern
to operate. These functions will be stabilized via a separate RFC.
Next, stability of methods and structures are as follows:
Stable
* from_utf8_unchecked
* CowString - after moving to std::string
* StrExt::as_bytes
* StrExt::as_ptr
* StrExt::bytes/Bytes - also made a struct instead of a typedef
* StrExt::char_indices/CharIndices - CharOffsets was renamed
* StrExt::chars/Chars
* StrExt::is_empty
* StrExt::len
* StrExt::lines/Lines
* StrExt::lines_any/LinesAny
* StrExt::slice_unchecked
* StrExt::trim
* StrExt::trim_left
* StrExt::trim_right
* StrExt::words/Words - also made a struct instead of a typedef
Unstable
* from_utf8 - the error type was changed to a `Result`, but the error type has
yet to prove itself
* from_c_str - this function will be handled by the c_str RFC
* FromStr - this trait will have an associated error type eventually
* StrExt::escape_default - needs iterators at least, unsure if it should make
the cut
* StrExt::escape_unicode - needs iterators at least, unsure if it should make
the cut
* StrExt::slice_chars - this function has yet to prove itself
* StrExt::slice_shift_char - awaiting conventions about slicing and shifting
* StrExt::graphemes/Graphemes - this functionality may only be in libunicode
* StrExt::grapheme_indices/GraphemeIndices - this functionality may only be in
libunicode
* StrExt::width - this functionality may only be in libunicode
* StrExt::utf16_units - this functionality may only be in libunicode
* StrExt::nfd_chars - this functionality may only be in libunicode
* StrExt::nfkd_chars - this functionality may only be in libunicode
* StrExt::nfc_chars - this functionality may only be in libunicode
* StrExt::nfkc_chars - this functionality may only be in libunicode
* StrExt::is_char_boundary - naming is uncertain with container conventions
* StrExt::char_range_at - naming is uncertain with container conventions
* StrExt::char_range_at_reverse - naming is uncertain with container conventions
* StrExt::char_at - naming is uncertain with container conventions
* StrExt::char_at_reverse - naming is uncertain with container conventions
* StrVector::concat - this functionality may be replaced with iterators, but
it's not certain at this time
* StrVector::connect - as with concat, may be deprecated in favor of iterators
Deprecated
* StrAllocating and UnicodeStrPrelude have been merged into StrExit
* eq_slice - compiler implementation detail
* from_str - use the inherent parse() method
* is_utf8 - call from_utf8 instead
* replace - call the method instead
* truncate_utf16_at_nul - this is an implementation detail of windows and does
not need to be exposed.
* utf8_char_width - moved to libunicode
* utf16_items - moved to libunicode
* is_utf16 - moved to libunicode
* Utf16Items - moved to libunicode
* Utf16Item - moved to libunicode
* Utf16Encoder - moved to libunicode
* AnyLines - renamed to LinesAny and made a struct
* SendStr - use CowString<'static> instead
* str::raw - all functionality is deprecated
* StrExt::into_string - call to_string() instead
* StrExt::repeat - use iterators instead
* StrExt::char_len - use .chars().count() instead
* StrExt::is_alphanumeric - use .chars().all(..)
* StrExt::is_whitespace - use .chars().all(..)
Pending deprecation -- while slicing syntax is being worked out, these methods
are all #[unstable]
* Str - while currently used for generic programming, this trait will be
replaced with one of [], deref coercions, or a generic conversion trait.
* StrExt::slice - use slicing syntax instead
* StrExt::slice_to - use slicing syntax instead
* StrExt::slice_from - use slicing syntax instead
* StrExt::lev_distance - deprecated with no replacement
Awaiting stabilization due to patterns and/or matching
* StrExt::contains
* StrExt::contains_char
* StrExt::split
* StrExt::splitn
* StrExt::split_terminator
* StrExt::rsplitn
* StrExt::match_indices
* StrExt::split_str
* StrExt::starts_with
* StrExt::ends_with
* StrExt::trim_chars
* StrExt::trim_left_chars
* StrExt::trim_right_chars
* StrExt::find
* StrExt::rfind
* StrExt::find_str
* StrExt::subslice_offset
2014-12-10 09:02:31 -08:00
|
|
|
|
Cow::Owned(res)
|
2014-07-10 18:21:16 +02:00
|
|
|
|
}
|
|
|
|
|
|
|
2020-10-18 18:17:49 -07:00
|
|
|
|
/// Decode a UTF-16–encoded vector `v` into a `String`, returning [`Err`]
|
2014-07-10 17:43:03 +02:00
|
|
|
|
/// if `v` contains any invalid data.
|
|
|
|
|
|
///
|
2014-12-08 23:28:07 -06:00
|
|
|
|
/// # Examples
|
2014-07-10 17:43:03 +02:00
|
|
|
|
///
|
2015-03-12 22:42:38 -04:00
|
|
|
|
/// ```
|
2014-07-04 22:38:13 +02:00
|
|
|
|
/// // 𝄞music
|
2015-11-30 15:48:28 -05:00
|
|
|
|
/// let v = &[0xD834, 0xDD1E, 0x006d, 0x0075,
|
|
|
|
|
|
/// 0x0073, 0x0069, 0x0063];
|
2015-12-01 16:07:53 -05:00
|
|
|
|
/// assert_eq!(String::from("𝄞music"),
|
|
|
|
|
|
/// String::from_utf16(v).unwrap());
|
2014-07-10 17:43:03 +02:00
|
|
|
|
///
|
2014-07-04 22:38:13 +02:00
|
|
|
|
/// // 𝄞mu<invalid>ic
|
2015-11-30 15:48:28 -05:00
|
|
|
|
/// let v = &[0xD834, 0xDD1E, 0x006d, 0x0075,
|
|
|
|
|
|
/// 0xD800, 0x0069, 0x0063];
|
2014-12-28 10:29:56 -08:00
|
|
|
|
/// assert!(String::from_utf16(v).is_err());
|
2014-07-10 17:43:03 +02:00
|
|
|
|
/// ```
|
alloc: Add unstable Cfg feature `no-global_oom_handling`
For certain sorts of systems, programming, it's deemed essential that
all allocation failures be explicitly handled where they occur. For
example, see Linus Torvald's opinion in [1]. Merely not calling global
panic handlers, or always `try_reserving` first (for vectors), is not
deemed good enough, because the mere presence of the global OOM handlers
is burdens static analysis.
One option for these projects to use rust would just be to skip `alloc`,
rolling their own allocation abstractions. But this would, in my
opinion be a real shame. `alloc` has a few `try_*` methods already, and
we could easily have more. Features like custom allocator support also
demonstrate and existing to support diverse use-cases with the same
abstractions.
A natural way to add such a feature flag would a Cargo feature, but
there are currently uncertainties around how std library crate's Cargo
features may or not be stable, so to avoid any risk of stabilizing by
mistake we are going with a more low-level "raw cfg" token, which
cannot be interacted with via Cargo alone.
Note also that since there is no notion of "default cfg tokens" outside
of Cargo features, we have to invert the condition from
`global_oom_handling` to to `not(no_global_oom_handling)`. This breaks
the monotonicity that would be important for a Cargo feature (i.e.
turning on more features should never break compatibility), but it
doesn't matter for raw cfg tokens which are not intended to be
"constraint solved" by Cargo or anything else.
To support this use-case we create a new feature, "global-oom-handling",
on by default, and put the global OOM handler infra and everything else
it that depends on it behind it. By default, nothing is changed, but
users concerned about global handling can make sure it is disabled, and
be confident that all OOM handling is local and explicit.
For this first iteration, non-flat collections are outright disabled.
`Vec` and `String` don't yet have `try_*` allocation methods, but are
kept anyways since they can be oom-safely created "from parts", and we
hope to add those `try_` methods in the future.
[1]: https://lore.kernel.org/lkml/CAHk-=wh_sNLoz84AUUzuqXEsYH35u=8HV3vK-jbRbJ_B-JjGrg@mail.gmail.com/
2021-04-16 20:18:04 -04:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
2015-01-23 21:48:20 -08:00
|
|
|
|
#[stable(feature = "rust1", since = "1.0.0")]
|
2014-12-28 10:29:56 -08:00
|
|
|
|
pub fn from_utf16(v: &[u16]) -> Result<String, FromUtf16Error> {
|
2018-11-21 10:17:54 +01:00
|
|
|
|
// This isn't done via collect::<Result<_, _>>() for performance reasons.
|
|
|
|
|
|
// FIXME: the function can be simplified again when #48994 is closed.
|
2018-10-31 10:22:22 +01:00
|
|
|
|
let mut ret = String::with_capacity(v.len());
|
2023-01-14 11:48:43 +01:00
|
|
|
|
for c in char::decode_utf16(v.iter().cloned()) {
|
2018-10-31 10:22:22 +01:00
|
|
|
|
if let Ok(c) = c {
|
|
|
|
|
|
ret.push(c);
|
|
|
|
|
|
} else {
|
|
|
|
|
|
return Err(FromUtf16Error(()));
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
Ok(ret)
|
2014-07-10 17:43:03 +02:00
|
|
|
|
}
|
2014-07-10 18:21:16 +02:00
|
|
|
|
|
2020-10-18 18:17:49 -07:00
|
|
|
|
/// Decode a UTF-16–encoded slice `v` into a `String`, replacing
|
2018-08-11 14:09:59 -04:00
|
|
|
|
/// invalid data with [the replacement character (`U+FFFD`)][U+FFFD].
|
2014-07-10 17:53:51 +02:00
|
|
|
|
///
|
2017-09-14 15:34:31 -04:00
|
|
|
|
/// Unlike [`from_utf8_lossy`] which returns a [`Cow<'a, str>`],
|
|
|
|
|
|
/// `from_utf16_lossy` returns a `String` since the UTF-16 to UTF-8
|
|
|
|
|
|
/// conversion requires a memory allocation.
|
|
|
|
|
|
///
|
2020-07-18 10:14:00 -07:00
|
|
|
|
/// [`from_utf8_lossy`]: String::from_utf8_lossy
|
Apply 16 commits (squashed)
----------
Fix spacing for links inside code blocks, and improve link tooltips in alloc::fmt
----------
Fix spacing for links inside code blocks, and improve link tooltips in alloc::{rc, sync}
----------
Fix spacing for links inside code blocks, and improve link tooltips in alloc::string
----------
Fix spacing for links inside code blocks in alloc::vec
----------
Fix spacing for links inside code blocks in core::option
----------
Fix spacing for links inside code blocks, and improve a few link tooltips in core::result
----------
Fix spacing for links inside code blocks in core::{iter::{self, iterator}, stream::stream, poll}
----------
Fix spacing for links inside code blocks, and improve a few link tooltips in std::{fs, path}
----------
Fix spacing for links inside code blocks in std::{collections, time}
----------
Fix spacing for links inside code blocks in and make formatting of `&str`-like types consistent in std::ffi::{c_str, os_str}
----------
Fix spacing for links inside code blocks, and improve link tooltips in std::ffi
----------
Fix spacing for links inside code blocks, and improve a few link tooltips
in std::{io::{self, buffered::{bufreader, bufwriter}, cursor, util}, net::{self, addr}}
----------
Fix typo in link to `into` for `OsString` docs
----------
Remove tooltips that will probably become redundant in the future
----------
Apply suggestions from code review
Replacing `…std/primitive.reference.html` paths with just `reference`
Co-authored-by: Joshua Nelson <github@jyn.dev>
----------
Also replace `…std/primitive.reference.html` paths with just `reference` in `core::pin`
2021-08-25 11:45:08 +02:00
|
|
|
|
/// [`Cow<'a, str>`]: crate::borrow::Cow "borrow::Cow"
|
2020-07-18 10:14:00 -07:00
|
|
|
|
/// [U+FFFD]: core::char::REPLACEMENT_CHARACTER
|
2017-09-14 15:34:31 -04:00
|
|
|
|
///
|
2014-12-08 23:28:07 -06:00
|
|
|
|
/// # Examples
|
|
|
|
|
|
///
|
2015-03-12 22:42:38 -04:00
|
|
|
|
/// ```
|
2014-07-04 22:38:13 +02:00
|
|
|
|
/// // 𝄞mus<invalid>ic<invalid>
|
2014-11-17 21:39:01 +13:00
|
|
|
|
/// let v = &[0xD834, 0xDD1E, 0x006d, 0x0075,
|
|
|
|
|
|
/// 0x0073, 0xDD1E, 0x0069, 0x0063,
|
|
|
|
|
|
/// 0xD834];
|
2014-07-10 17:53:51 +02:00
|
|
|
|
///
|
2015-12-01 16:07:53 -05:00
|
|
|
|
/// assert_eq!(String::from("𝄞mus\u{FFFD}ic\u{FFFD}"),
|
|
|
|
|
|
/// String::from_utf16_lossy(v));
|
2014-07-10 17:53:51 +02:00
|
|
|
|
/// ```
|
alloc: Add unstable Cfg feature `no-global_oom_handling`
For certain sorts of systems, programming, it's deemed essential that
all allocation failures be explicitly handled where they occur. For
example, see Linus Torvald's opinion in [1]. Merely not calling global
panic handlers, or always `try_reserving` first (for vectors), is not
deemed good enough, because the mere presence of the global OOM handlers
is burdens static analysis.
One option for these projects to use rust would just be to skip `alloc`,
rolling their own allocation abstractions. But this would, in my
opinion be a real shame. `alloc` has a few `try_*` methods already, and
we could easily have more. Features like custom allocator support also
demonstrate and existing to support diverse use-cases with the same
abstractions.
A natural way to add such a feature flag would a Cargo feature, but
there are currently uncertainties around how std library crate's Cargo
features may or not be stable, so to avoid any risk of stabilizing by
mistake we are going with a more low-level "raw cfg" token, which
cannot be interacted with via Cargo alone.
Note also that since there is no notion of "default cfg tokens" outside
of Cargo features, we have to invert the condition from
`global_oom_handling` to to `not(no_global_oom_handling)`. This breaks
the monotonicity that would be important for a Cargo feature (i.e.
turning on more features should never break compatibility), but it
doesn't matter for raw cfg tokens which are not intended to be
"constraint solved" by Cargo or anything else.
To support this use-case we create a new feature, "global-oom-handling",
on by default, and put the global OOM handler infra and everything else
it that depends on it behind it. By default, nothing is changed, but
users concerned about global handling can make sure it is disabled, and
be confident that all OOM handling is local and explicit.
For this first iteration, non-flat collections are outright disabled.
`Vec` and `String` don't yet have `try_*` allocation methods, but are
kept anyways since they can be oom-safely created "from parts", and we
hope to add those `try_` methods in the future.
[1]: https://lore.kernel.org/lkml/CAHk-=wh_sNLoz84AUUzuqXEsYH35u=8HV3vK-jbRbJ_B-JjGrg@mail.gmail.com/
2021-04-16 20:18:04 -04:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
2021-10-12 19:09:24 -04:00
|
|
|
|
#[must_use]
|
2015-01-10 11:07:14 +01:00
|
|
|
|
#[inline]
|
2015-01-23 21:48:20 -08:00
|
|
|
|
#[stable(feature = "rust1", since = "1.0.0")]
|
2014-07-10 17:53:51 +02:00
|
|
|
|
pub fn from_utf16_lossy(v: &[u16]) -> String {
|
2023-01-14 11:48:43 +01:00
|
|
|
|
char::decode_utf16(v.iter().cloned())
|
|
|
|
|
|
.map(|r| r.unwrap_or(char::REPLACEMENT_CHARACTER))
|
|
|
|
|
|
.collect()
|
2014-07-10 17:53:51 +02:00
|
|
|
|
}
|
2014-07-04 22:18:11 +02:00
|
|
|
|
|
2022-04-12 02:43:35 -05:00
|
|
|
|
/// Decode a UTF-16LE–encoded vector `v` into a `String`, returning [`Err`]
|
|
|
|
|
|
/// if `v` contains any invalid data.
|
|
|
|
|
|
///
|
|
|
|
|
|
/// # Examples
|
|
|
|
|
|
///
|
|
|
|
|
|
/// Basic usage:
|
|
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
/// #![feature(str_from_utf16_endian)]
|
|
|
|
|
|
/// // 𝄞music
|
|
|
|
|
|
/// let v = &[0x34, 0xD8, 0x1E, 0xDD, 0x6d, 0x00, 0x75, 0x00,
|
|
|
|
|
|
/// 0x73, 0x00, 0x69, 0x00, 0x63, 0x00];
|
|
|
|
|
|
/// assert_eq!(String::from("𝄞music"),
|
|
|
|
|
|
/// String::from_utf16le(v).unwrap());
|
|
|
|
|
|
///
|
|
|
|
|
|
/// // 𝄞mu<invalid>ic
|
|
|
|
|
|
/// let v = &[0x34, 0xD8, 0x1E, 0xDD, 0x6d, 0x00, 0x75, 0x00,
|
|
|
|
|
|
/// 0x00, 0xD8, 0x69, 0x00, 0x63, 0x00];
|
|
|
|
|
|
/// assert!(String::from_utf16le(v).is_err());
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
2023-09-28 23:44:39 -04:00
|
|
|
|
#[unstable(feature = "str_from_utf16_endian", issue = "116258")]
|
2022-04-12 02:43:35 -05:00
|
|
|
|
pub fn from_utf16le(v: &[u8]) -> Result<String, FromUtf16Error> {
|
|
|
|
|
|
if v.len() % 2 != 0 {
|
|
|
|
|
|
return Err(FromUtf16Error(()));
|
|
|
|
|
|
}
|
|
|
|
|
|
match (cfg!(target_endian = "little"), unsafe { v.align_to::<u16>() }) {
|
2023-09-28 23:18:55 -04:00
|
|
|
|
(true, ([], v, [])) => Self::from_utf16(v),
|
2023-09-29 00:04:57 -04:00
|
|
|
|
_ => char::decode_utf16(v.array_chunks::<2>().copied().map(u16::from_le_bytes))
|
2022-04-12 02:43:35 -05:00
|
|
|
|
.collect::<Result<_, _>>()
|
|
|
|
|
|
.map_err(|_| FromUtf16Error(())),
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
/// Decode a UTF-16LE–encoded slice `v` into a `String`, replacing
|
|
|
|
|
|
/// invalid data with [the replacement character (`U+FFFD`)][U+FFFD].
|
|
|
|
|
|
///
|
|
|
|
|
|
/// Unlike [`from_utf8_lossy`] which returns a [`Cow<'a, str>`],
|
|
|
|
|
|
/// `from_utf16le_lossy` returns a `String` since the UTF-16 to UTF-8
|
|
|
|
|
|
/// conversion requires a memory allocation.
|
|
|
|
|
|
///
|
|
|
|
|
|
/// [`from_utf8_lossy`]: String::from_utf8_lossy
|
|
|
|
|
|
/// [`Cow<'a, str>`]: crate::borrow::Cow "borrow::Cow"
|
|
|
|
|
|
/// [U+FFFD]: core::char::REPLACEMENT_CHARACTER
|
|
|
|
|
|
///
|
|
|
|
|
|
/// # Examples
|
|
|
|
|
|
///
|
|
|
|
|
|
/// Basic usage:
|
|
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
/// #![feature(str_from_utf16_endian)]
|
|
|
|
|
|
/// // 𝄞mus<invalid>ic<invalid>
|
|
|
|
|
|
/// let v = &[0x34, 0xD8, 0x1E, 0xDD, 0x6d, 0x00, 0x75, 0x00,
|
|
|
|
|
|
/// 0x73, 0x00, 0x1E, 0xDD, 0x69, 0x00, 0x63, 0x00,
|
|
|
|
|
|
/// 0x34, 0xD8];
|
|
|
|
|
|
///
|
|
|
|
|
|
/// assert_eq!(String::from("𝄞mus\u{FFFD}ic\u{FFFD}"),
|
|
|
|
|
|
/// String::from_utf16le_lossy(v));
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
2023-09-28 23:44:39 -04:00
|
|
|
|
#[unstable(feature = "str_from_utf16_endian", issue = "116258")]
|
2022-04-12 02:43:35 -05:00
|
|
|
|
pub fn from_utf16le_lossy(v: &[u8]) -> String {
|
|
|
|
|
|
match (cfg!(target_endian = "little"), unsafe { v.align_to::<u16>() }) {
|
2023-09-28 23:18:55 -04:00
|
|
|
|
(true, ([], v, [])) => Self::from_utf16_lossy(v),
|
|
|
|
|
|
(true, ([], v, [_remainder])) => Self::from_utf16_lossy(v) + "\u{FFFD}",
|
2022-04-12 02:43:35 -05:00
|
|
|
|
_ => {
|
|
|
|
|
|
let mut iter = v.array_chunks::<2>();
|
2023-09-29 00:04:57 -04:00
|
|
|
|
let string = char::decode_utf16(iter.by_ref().copied().map(u16::from_le_bytes))
|
|
|
|
|
|
.map(|r| r.unwrap_or(char::REPLACEMENT_CHARACTER))
|
2022-04-12 02:43:35 -05:00
|
|
|
|
.collect();
|
|
|
|
|
|
if iter.remainder().is_empty() { string } else { string + "\u{FFFD}" }
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
/// Decode a UTF-16BE–encoded vector `v` into a `String`, returning [`Err`]
|
|
|
|
|
|
/// if `v` contains any invalid data.
|
|
|
|
|
|
///
|
|
|
|
|
|
/// # Examples
|
|
|
|
|
|
///
|
|
|
|
|
|
/// Basic usage:
|
|
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
/// #![feature(str_from_utf16_endian)]
|
|
|
|
|
|
/// // 𝄞music
|
|
|
|
|
|
/// let v = &[0xD8, 0x34, 0xDD, 0x1E, 0x00, 0x6d, 0x00, 0x75,
|
|
|
|
|
|
/// 0x00, 0x73, 0x00, 0x69, 0x00, 0x63];
|
|
|
|
|
|
/// assert_eq!(String::from("𝄞music"),
|
|
|
|
|
|
/// String::from_utf16be(v).unwrap());
|
|
|
|
|
|
///
|
|
|
|
|
|
/// // 𝄞mu<invalid>ic
|
|
|
|
|
|
/// let v = &[0xD8, 0x34, 0xDD, 0x1E, 0x00, 0x6d, 0x00, 0x75,
|
|
|
|
|
|
/// 0xD8, 0x00, 0x00, 0x69, 0x00, 0x63];
|
|
|
|
|
|
/// assert!(String::from_utf16be(v).is_err());
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
2023-09-28 23:44:39 -04:00
|
|
|
|
#[unstable(feature = "str_from_utf16_endian", issue = "116258")]
|
2022-04-12 02:43:35 -05:00
|
|
|
|
pub fn from_utf16be(v: &[u8]) -> Result<String, FromUtf16Error> {
|
|
|
|
|
|
if v.len() % 2 != 0 {
|
|
|
|
|
|
return Err(FromUtf16Error(()));
|
|
|
|
|
|
}
|
|
|
|
|
|
match (cfg!(target_endian = "big"), unsafe { v.align_to::<u16>() }) {
|
2023-09-28 23:18:55 -04:00
|
|
|
|
(true, ([], v, [])) => Self::from_utf16(v),
|
2023-09-29 00:04:57 -04:00
|
|
|
|
_ => char::decode_utf16(v.array_chunks::<2>().copied().map(u16::from_be_bytes))
|
2022-04-12 02:43:35 -05:00
|
|
|
|
.collect::<Result<_, _>>()
|
|
|
|
|
|
.map_err(|_| FromUtf16Error(())),
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
/// Decode a UTF-16BE–encoded slice `v` into a `String`, replacing
|
|
|
|
|
|
/// invalid data with [the replacement character (`U+FFFD`)][U+FFFD].
|
|
|
|
|
|
///
|
|
|
|
|
|
/// Unlike [`from_utf8_lossy`] which returns a [`Cow<'a, str>`],
|
|
|
|
|
|
/// `from_utf16le_lossy` returns a `String` since the UTF-16 to UTF-8
|
|
|
|
|
|
/// conversion requires a memory allocation.
|
|
|
|
|
|
///
|
|
|
|
|
|
/// [`from_utf8_lossy`]: String::from_utf8_lossy
|
|
|
|
|
|
/// [`Cow<'a, str>`]: crate::borrow::Cow "borrow::Cow"
|
|
|
|
|
|
/// [U+FFFD]: core::char::REPLACEMENT_CHARACTER
|
|
|
|
|
|
///
|
|
|
|
|
|
/// # Examples
|
|
|
|
|
|
///
|
|
|
|
|
|
/// Basic usage:
|
|
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
/// #![feature(str_from_utf16_endian)]
|
|
|
|
|
|
/// // 𝄞mus<invalid>ic<invalid>
|
|
|
|
|
|
/// let v = &[0xD8, 0x34, 0xDD, 0x1E, 0x00, 0x6d, 0x00, 0x75,
|
|
|
|
|
|
/// 0x00, 0x73, 0xDD, 0x1E, 0x00, 0x69, 0x00, 0x63,
|
|
|
|
|
|
/// 0xD8, 0x34];
|
|
|
|
|
|
///
|
|
|
|
|
|
/// assert_eq!(String::from("𝄞mus\u{FFFD}ic\u{FFFD}"),
|
|
|
|
|
|
/// String::from_utf16be_lossy(v));
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
2023-09-28 23:44:39 -04:00
|
|
|
|
#[unstable(feature = "str_from_utf16_endian", issue = "116258")]
|
2022-04-12 02:43:35 -05:00
|
|
|
|
pub fn from_utf16be_lossy(v: &[u8]) -> String {
|
|
|
|
|
|
match (cfg!(target_endian = "big"), unsafe { v.align_to::<u16>() }) {
|
2023-09-28 23:18:55 -04:00
|
|
|
|
(true, ([], v, [])) => Self::from_utf16_lossy(v),
|
|
|
|
|
|
(true, ([], v, [_remainder])) => Self::from_utf16_lossy(v) + "\u{FFFD}",
|
2022-04-12 02:43:35 -05:00
|
|
|
|
_ => {
|
|
|
|
|
|
let mut iter = v.array_chunks::<2>();
|
2023-09-29 00:04:57 -04:00
|
|
|
|
let string = char::decode_utf16(iter.by_ref().copied().map(u16::from_be_bytes))
|
|
|
|
|
|
.map(|r| r.unwrap_or(char::REPLACEMENT_CHARACTER))
|
2022-04-12 02:43:35 -05:00
|
|
|
|
.collect();
|
|
|
|
|
|
if iter.remainder().is_empty() { string } else { string + "\u{FFFD}" }
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2024-02-26 19:31:51 +00:00
|
|
|
|
/// Decomposes a `String` into its raw components: `(pointer, length, capacity)`.
|
2019-10-22 12:48:52 -04:00
|
|
|
|
///
|
|
|
|
|
|
/// Returns the raw pointer to the underlying data, the length of
|
|
|
|
|
|
/// the string (in bytes), and the allocated capacity of the data
|
|
|
|
|
|
/// (in bytes). These are the same arguments in the same order as
|
|
|
|
|
|
/// the arguments to [`from_raw_parts`].
|
|
|
|
|
|
///
|
|
|
|
|
|
/// After calling this function, the caller is responsible for the
|
|
|
|
|
|
/// memory previously managed by the `String`. The only way to do
|
|
|
|
|
|
/// this is to convert the raw pointer, length, and capacity back
|
|
|
|
|
|
/// into a `String` with the [`from_raw_parts`] function, allowing
|
|
|
|
|
|
/// the destructor to perform the cleanup.
|
|
|
|
|
|
///
|
2020-07-18 10:14:00 -07:00
|
|
|
|
/// [`from_raw_parts`]: String::from_raw_parts
|
2019-10-22 12:48:52 -04:00
|
|
|
|
///
|
|
|
|
|
|
/// # Examples
|
|
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
/// #![feature(vec_into_raw_parts)]
|
|
|
|
|
|
/// let s = String::from("hello");
|
|
|
|
|
|
///
|
|
|
|
|
|
/// let (ptr, len, cap) = s.into_raw_parts();
|
|
|
|
|
|
///
|
|
|
|
|
|
/// let rebuilt = unsafe { String::from_raw_parts(ptr, len, cap) };
|
|
|
|
|
|
/// assert_eq!(rebuilt, "hello");
|
|
|
|
|
|
/// ```
|
2021-10-10 19:50:52 -04:00
|
|
|
|
#[must_use = "`self` will be dropped if the result is not used"]
|
2019-10-22 12:48:52 -04:00
|
|
|
|
#[unstable(feature = "vec_into_raw_parts", reason = "new API", issue = "65816")]
|
|
|
|
|
|
pub fn into_raw_parts(self) -> (*mut u8, usize, usize) {
|
|
|
|
|
|
self.vec.into_raw_parts()
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2024-02-26 19:24:49 +00:00
|
|
|
|
/// Creates a new `String` from a pointer, a length and a capacity.
|
2014-11-20 10:11:15 -08:00
|
|
|
|
///
|
2015-10-23 11:42:14 -04:00
|
|
|
|
/// # Safety
|
2015-03-10 22:47:08 -04:00
|
|
|
|
///
|
2015-12-01 16:07:53 -05:00
|
|
|
|
/// This is highly unsafe, due to the number of invariants that aren't
|
|
|
|
|
|
/// checked:
|
2015-07-02 13:00:58 -04:00
|
|
|
|
///
|
2020-07-25 14:04:56 +02:00
|
|
|
|
/// * The memory at `buf` needs to have been previously allocated by the
|
2019-11-05 09:57:52 +01:00
|
|
|
|
/// same allocator the standard library uses, with a required alignment of exactly 1.
|
2015-12-01 16:07:53 -05:00
|
|
|
|
/// * `length` needs to be less than or equal to `capacity`.
|
|
|
|
|
|
/// * `capacity` needs to be the correct value.
|
2020-07-25 14:06:32 +02:00
|
|
|
|
/// * The first `length` bytes at `buf` need to be valid UTF-8.
|
2015-12-01 16:07:53 -05:00
|
|
|
|
///
|
|
|
|
|
|
/// Violating these may cause problems like corrupting the allocator's
|
2022-04-19 21:12:55 +01:00
|
|
|
|
/// internal data structures. For example, it is normally **not** safe to
|
|
|
|
|
|
/// build a `String` from a pointer to a C `char` array containing UTF-8
|
|
|
|
|
|
/// _unless_ you are certain that array was originally allocated by the
|
|
|
|
|
|
/// Rust standard library's allocator.
|
2015-12-01 16:07:53 -05:00
|
|
|
|
///
|
2020-07-25 14:04:56 +02:00
|
|
|
|
/// The ownership of `buf` is effectively transferred to the
|
2016-07-17 10:52:59 -04:00
|
|
|
|
/// `String` which may then deallocate, reallocate or change the
|
|
|
|
|
|
/// contents of memory pointed to by the pointer at will. Ensure
|
|
|
|
|
|
/// that nothing else uses the pointer after calling this
|
|
|
|
|
|
/// function.
|
|
|
|
|
|
///
|
2015-12-01 16:07:53 -05:00
|
|
|
|
/// # Examples
|
|
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
/// use std::mem;
|
|
|
|
|
|
///
|
|
|
|
|
|
/// unsafe {
|
2019-10-22 15:40:22 -04:00
|
|
|
|
/// let s = String::from("hello");
|
|
|
|
|
|
///
|
2019-10-22 12:48:52 -04:00
|
|
|
|
// FIXME Update this when vec_into_raw_parts is stabilized
|
2019-10-22 15:40:22 -04:00
|
|
|
|
/// // Prevent automatically dropping the String's data
|
|
|
|
|
|
/// let mut s = mem::ManuallyDrop::new(s);
|
|
|
|
|
|
///
|
2019-10-22 13:54:09 -04:00
|
|
|
|
/// let ptr = s.as_mut_ptr();
|
2015-12-01 16:07:53 -05:00
|
|
|
|
/// let len = s.len();
|
|
|
|
|
|
/// let capacity = s.capacity();
|
|
|
|
|
|
///
|
2019-10-22 13:54:09 -04:00
|
|
|
|
/// let s = String::from_raw_parts(ptr, len, capacity);
|
2015-12-01 16:07:53 -05:00
|
|
|
|
///
|
|
|
|
|
|
/// assert_eq!(String::from("hello"), s);
|
|
|
|
|
|
/// }
|
|
|
|
|
|
/// ```
|
2014-11-20 10:11:15 -08:00
|
|
|
|
#[inline]
|
2015-01-23 21:48:20 -08:00
|
|
|
|
#[stable(feature = "rust1", since = "1.0.0")]
|
2015-02-04 21:17:19 -05:00
|
|
|
|
pub unsafe fn from_raw_parts(buf: *mut u8, length: usize, capacity: usize) -> String {
|
2020-05-28 23:27:00 +02:00
|
|
|
|
unsafe { String { vec: Vec::from_raw_parts(buf, length, capacity) } }
|
2014-11-20 10:11:15 -08:00
|
|
|
|
}
|
|
|
|
|
|
|
2015-10-02 14:36:02 -04:00
|
|
|
|
/// Converts a vector of bytes to a `String` without checking that the
|
|
|
|
|
|
/// string contains valid UTF-8.
|
|
|
|
|
|
///
|
2017-03-12 14:04:52 -04:00
|
|
|
|
/// See the safe version, [`from_utf8`], for more details.
|
2015-10-02 14:36:02 -04:00
|
|
|
|
///
|
2020-07-18 10:14:00 -07:00
|
|
|
|
/// [`from_utf8`]: String::from_utf8
|
2015-10-02 14:36:02 -04:00
|
|
|
|
///
|
2015-10-23 11:42:14 -04:00
|
|
|
|
/// # Safety
|
2015-10-02 14:36:02 -04:00
|
|
|
|
///
|
2015-12-01 16:07:53 -05:00
|
|
|
|
/// This function is unsafe because it does not check that the bytes passed
|
|
|
|
|
|
/// to it are valid UTF-8. If this constraint is violated, it may cause
|
|
|
|
|
|
/// memory unsafety issues with future users of the `String`, as the rest of
|
|
|
|
|
|
/// the standard library assumes that `String`s are valid UTF-8.
|
2015-10-02 14:36:02 -04:00
|
|
|
|
///
|
|
|
|
|
|
/// # Examples
|
|
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
/// // some bytes, in a vector
|
|
|
|
|
|
/// let sparkle_heart = vec![240, 159, 146, 150];
|
|
|
|
|
|
///
|
|
|
|
|
|
/// let sparkle_heart = unsafe {
|
|
|
|
|
|
/// String::from_utf8_unchecked(sparkle_heart)
|
|
|
|
|
|
/// };
|
|
|
|
|
|
///
|
|
|
|
|
|
/// assert_eq!("💖", sparkle_heart);
|
|
|
|
|
|
/// ```
|
2014-11-20 10:11:15 -08:00
|
|
|
|
#[inline]
|
2021-10-10 18:22:40 -04:00
|
|
|
|
#[must_use]
|
2015-01-23 21:48:20 -08:00
|
|
|
|
#[stable(feature = "rust1", since = "1.0.0")]
|
2014-11-20 10:11:15 -08:00
|
|
|
|
pub unsafe fn from_utf8_unchecked(bytes: Vec<u8>) -> String {
|
|
|
|
|
|
String { vec: bytes }
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2015-12-01 16:07:53 -05:00
|
|
|
|
/// Converts a `String` into a byte vector.
|
|
|
|
|
|
///
|
|
|
|
|
|
/// This consumes the `String`, so we do not need to copy its contents.
|
2014-07-27 12:40:39 +02:00
|
|
|
|
///
|
2014-12-08 23:28:07 -06:00
|
|
|
|
/// # Examples
|
2014-07-27 12:40:39 +02:00
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
2015-05-19 03:33:17 +02:00
|
|
|
|
/// let s = String::from("hello");
|
2014-07-27 12:40:39 +02:00
|
|
|
|
/// let bytes = s.into_bytes();
|
2015-12-01 16:07:53 -05:00
|
|
|
|
///
|
|
|
|
|
|
/// assert_eq!(&[104, 101, 108, 108, 111][..], &bytes[..]);
|
2014-07-27 12:40:39 +02:00
|
|
|
|
/// ```
|
2014-04-10 20:55:34 +10:00
|
|
|
|
#[inline]
|
2021-10-10 19:50:52 -04:00
|
|
|
|
#[must_use = "`self` will be dropped if the result is not used"]
|
2015-01-23 21:48:20 -08:00
|
|
|
|
#[stable(feature = "rust1", since = "1.0.0")]
|
2014-04-10 20:55:34 +10:00
|
|
|
|
pub fn into_bytes(self) -> Vec<u8> {
|
|
|
|
|
|
self.vec
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2018-08-22 08:06:39 +02:00
|
|
|
|
/// Extracts a string slice containing the entire `String`.
|
2017-09-09 09:05:54 +01:00
|
|
|
|
///
|
|
|
|
|
|
/// # Examples
|
|
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
/// let s = String::from("foo");
|
|
|
|
|
|
///
|
|
|
|
|
|
/// assert_eq!("foo", s.as_str());
|
|
|
|
|
|
/// ```
|
2015-03-30 15:15:27 -07:00
|
|
|
|
#[inline]
|
2021-10-11 13:57:38 -04:00
|
|
|
|
#[must_use]
|
2016-01-15 10:07:52 -08:00
|
|
|
|
#[stable(feature = "string_as_str", since = "1.7.0")]
|
2015-03-30 15:15:27 -07:00
|
|
|
|
pub fn as_str(&self) -> &str {
|
|
|
|
|
|
self
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2017-09-09 13:08:26 +01:00
|
|
|
|
/// Converts a `String` into a mutable string slice.
|
|
|
|
|
|
///
|
|
|
|
|
|
/// # Examples
|
|
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
/// let mut s = String::from("foobar");
|
|
|
|
|
|
/// let s_mut_str = s.as_mut_str();
|
|
|
|
|
|
///
|
|
|
|
|
|
/// s_mut_str.make_ascii_uppercase();
|
|
|
|
|
|
///
|
|
|
|
|
|
/// assert_eq!("FOOBAR", s_mut_str);
|
|
|
|
|
|
/// ```
|
2016-01-15 10:07:52 -08:00
|
|
|
|
#[inline]
|
2021-10-11 13:57:38 -04:00
|
|
|
|
#[must_use]
|
2016-01-15 10:07:52 -08:00
|
|
|
|
#[stable(feature = "string_as_str", since = "1.7.0")]
|
|
|
|
|
|
pub fn as_mut_str(&mut self) -> &mut str {
|
|
|
|
|
|
self
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2015-12-01 16:07:53 -05:00
|
|
|
|
/// Appends a given string slice onto the end of this `String`.
|
2014-07-27 12:40:39 +02:00
|
|
|
|
///
|
2014-12-08 23:28:07 -06:00
|
|
|
|
/// # Examples
|
2014-07-27 12:40:39 +02:00
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
2015-05-19 03:33:17 +02:00
|
|
|
|
/// let mut s = String::from("foo");
|
2015-12-01 16:07:53 -05:00
|
|
|
|
///
|
2014-07-27 12:40:39 +02:00
|
|
|
|
/// s.push_str("bar");
|
2015-12-01 16:07:53 -05:00
|
|
|
|
///
|
|
|
|
|
|
/// assert_eq!("foobar", s);
|
2014-07-27 12:40:39 +02:00
|
|
|
|
/// ```
|
alloc: Add unstable Cfg feature `no-global_oom_handling`
For certain sorts of systems, programming, it's deemed essential that
all allocation failures be explicitly handled where they occur. For
example, see Linus Torvald's opinion in [1]. Merely not calling global
panic handlers, or always `try_reserving` first (for vectors), is not
deemed good enough, because the mere presence of the global OOM handlers
is burdens static analysis.
One option for these projects to use rust would just be to skip `alloc`,
rolling their own allocation abstractions. But this would, in my
opinion be a real shame. `alloc` has a few `try_*` methods already, and
we could easily have more. Features like custom allocator support also
demonstrate and existing to support diverse use-cases with the same
abstractions.
A natural way to add such a feature flag would a Cargo feature, but
there are currently uncertainties around how std library crate's Cargo
features may or not be stable, so to avoid any risk of stabilizing by
mistake we are going with a more low-level "raw cfg" token, which
cannot be interacted with via Cargo alone.
Note also that since there is no notion of "default cfg tokens" outside
of Cargo features, we have to invert the condition from
`global_oom_handling` to to `not(no_global_oom_handling)`. This breaks
the monotonicity that would be important for a Cargo feature (i.e.
turning on more features should never break compatibility), but it
doesn't matter for raw cfg tokens which are not intended to be
"constraint solved" by Cargo or anything else.
To support this use-case we create a new feature, "global-oom-handling",
on by default, and put the global OOM handler infra and everything else
it that depends on it behind it. By default, nothing is changed, but
users concerned about global handling can make sure it is disabled, and
be confident that all OOM handling is local and explicit.
For this first iteration, non-flat collections are outright disabled.
`Vec` and `String` don't yet have `try_*` allocation methods, but are
kept anyways since they can be oom-safely created "from parts", and we
hope to add those `try_` methods in the future.
[1]: https://lore.kernel.org/lkml/CAHk-=wh_sNLoz84AUUzuqXEsYH35u=8HV3vK-jbRbJ_B-JjGrg@mail.gmail.com/
2021-04-16 20:18:04 -04:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
2014-04-02 16:54:22 -07:00
|
|
|
|
#[inline]
|
2015-01-23 21:48:20 -08:00
|
|
|
|
#[stable(feature = "rust1", since = "1.0.0")]
|
2024-02-07 05:13:06 +00:00
|
|
|
|
#[rustc_confusables("append", "push")]
|
2014-04-02 16:54:22 -07:00
|
|
|
|
pub fn push_str(&mut self, string: &str) {
|
2015-12-02 17:31:49 -08:00
|
|
|
|
self.vec.extend_from_slice(string.as_bytes())
|
2014-04-02 16:54:22 -07:00
|
|
|
|
}
|
|
|
|
|
|
|
2021-05-29 10:36:30 +03:00
|
|
|
|
/// Copies elements from `src` range to the end of the string.
|
|
|
|
|
|
///
|
2023-02-07 21:32:11 +01:00
|
|
|
|
/// # Panics
|
2021-05-29 10:36:30 +03:00
|
|
|
|
///
|
|
|
|
|
|
/// Panics if the starting point or end point do not lie on a [`char`]
|
|
|
|
|
|
/// boundary, or if they're out of bounds.
|
|
|
|
|
|
///
|
2023-02-07 21:32:11 +01:00
|
|
|
|
/// # Examples
|
2021-05-29 10:36:30 +03:00
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
/// #![feature(string_extend_from_within)]
|
|
|
|
|
|
/// let mut string = String::from("abcde");
|
|
|
|
|
|
///
|
|
|
|
|
|
/// string.extend_from_within(2..);
|
|
|
|
|
|
/// assert_eq!(string, "abcdecde");
|
|
|
|
|
|
///
|
|
|
|
|
|
/// string.extend_from_within(..2);
|
|
|
|
|
|
/// assert_eq!(string, "abcdecdeab");
|
|
|
|
|
|
///
|
|
|
|
|
|
/// string.extend_from_within(4..8);
|
|
|
|
|
|
/// assert_eq!(string, "abcdecdeabecde");
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
2022-10-31 12:01:20 -04:00
|
|
|
|
#[unstable(feature = "string_extend_from_within", issue = "103806")]
|
2021-05-29 10:36:30 +03:00
|
|
|
|
pub fn extend_from_within<R>(&mut self, src: R)
|
|
|
|
|
|
where
|
|
|
|
|
|
R: RangeBounds<usize>,
|
|
|
|
|
|
{
|
|
|
|
|
|
let src @ Range { start, end } = slice::range(src, ..self.len());
|
|
|
|
|
|
|
|
|
|
|
|
assert!(self.is_char_boundary(start));
|
|
|
|
|
|
assert!(self.is_char_boundary(end));
|
|
|
|
|
|
|
|
|
|
|
|
self.vec.extend_from_within(src);
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2015-12-01 16:07:53 -05:00
|
|
|
|
/// Returns this `String`'s capacity, in bytes.
|
collections: Stabilize String
# Rationale
When dealing with strings, many functions deal with either a `char` (unicode
codepoint) or a byte (utf-8 encoding related). There is often an inconsistent
way in which methods are referred to as to whether they contain "byte", "char",
or nothing in their name. There are also issues open to rename *all* methods to
reflect that they operate on utf8 encodings or bytes (e.g. utf8_len() or
byte_len()).
The current state of String seems to largely be what is desired, so this PR
proposes the following rationale for methods dealing with bytes or characters:
> When constructing a string, the input encoding *must* be mentioned (e.g.
> from_utf8). This makes it clear what exactly the input type is expected to be
> in terms of encoding.
>
> When a method operates on anything related to an *index* within the string
> such as length, capacity, position, etc, the method *implicitly* operates on
> bytes. It is an understood fact that String is a utf-8 encoded string, and
> burdening all methods with "bytes" would be redundant.
>
> When a method operates on the *contents* of a string, such as push() or pop(),
> then "char" is the default type. A String can loosely be thought of as being a
> collection of unicode codepoints, but not all collection-related operations
> make sense because some can be woefully inefficient.
# Method stabilization
The following methods have been marked #[stable]
* The String type itself
* String::new
* String::with_capacity
* String::from_utf16_lossy
* String::into_bytes
* String::as_bytes
* String::len
* String::clear
* String::as_slice
The following methods have been marked #[unstable]
* String::from_utf8 - The error type in the returned `Result` may change to
provide a nicer message when it's `unwrap()`'d
* String::from_utf8_lossy - The returned `MaybeOwned` type still needs
stabilization
* String::from_utf16 - The return type may change to become a `Result` which
includes more contextual information like where the error
occurred.
* String::from_chars - This is equivalent to iter().collect(), but currently not
as ergonomic.
* String::from_char - This method is the equivalent of Vec::from_elem, and has
been marked #[unstable] becuase it can be seen as a
duplicate of iterator-based functionality as well as
possibly being renamed.
* String::push_str - This *can* be emulated with .extend(foo.chars()), but is
less efficient because of decoding/encoding. Due to the
desire to minimize API surface this may be able to be
removed in the future for something possibly generic with
no loss in performance.
* String::grow - This is a duplicate of iterator-based functionality, which may
become more ergonomic in the future.
* String::capacity - This function was just added.
* String::push - This function was just added.
* String::pop - This function was just added.
* String::truncate - The failure conventions around String methods and byte
indices isn't totally clear at this time, so the failure
semantics and return value of this method are subject to
change.
* String::as_mut_vec - the naming of this method may change.
* string::raw::* - these functions are all waiting on [an RFC][2]
[2]: https://github.com/rust-lang/rfcs/pull/240
The following method have been marked #[experimental]
* String::from_str - This function only exists as it's more efficient than
to_string(), but having a less ergonomic function for
performance reasons isn't the greatest reason to keep it
around. Like Vec::push_all, this has been marked
experimental for now.
The following methods have been #[deprecated]
* String::append - This method has been deprecated to remain consistent with the
deprecation of Vec::append. While convenient, it is one of
the only functional-style apis on String, and requires more
though as to whether it belongs as a first-class method or
now (and how it relates to other collections).
* String::from_byte - This is fairly rare functionality and can be emulated with
str::from_utf8 plus an assert plus a call to to_string().
Additionally, String::from_char could possibly be used.
* String::byte_capacity - Renamed to String::capacity due to the rationale
above.
* String::push_char - Renamed to String::push due to the rationale above.
* String::pop_char - Renamed to String::pop due to the rationale above.
* String::push_bytes - There are a number of `unsafe` functions on the `String`
type which allow bypassing utf-8 checks. These have all
been deprecated in favor of calling `.as_mut_vec()` and
then operating directly on the vector returned. These
methods were deprecated because naming them with relation
to other methods was difficult to rationalize and it's
arguably more composable to call .as_mut_vec().
* String::as_mut_bytes - See push_bytes
* String::push_byte - See push_bytes
* String::pop_byte - See push_bytes
* String::shift_byte - See push_bytes
# Reservation methods
This commit does not yet touch the methods for reserving bytes. The methods on
Vec have also not yet been modified. These methods are discussed in the upcoming
[Collections reform RFC][1]
[1]: https://github.com/aturon/rfcs/blob/collections-conventions/active/0000-collections-conventions.md#implicit-growth
2014-09-22 07:12:10 -07:00
|
|
|
|
///
|
2014-12-08 23:28:07 -06:00
|
|
|
|
/// # Examples
|
collections: Stabilize String
# Rationale
When dealing with strings, many functions deal with either a `char` (unicode
codepoint) or a byte (utf-8 encoding related). There is often an inconsistent
way in which methods are referred to as to whether they contain "byte", "char",
or nothing in their name. There are also issues open to rename *all* methods to
reflect that they operate on utf8 encodings or bytes (e.g. utf8_len() or
byte_len()).
The current state of String seems to largely be what is desired, so this PR
proposes the following rationale for methods dealing with bytes or characters:
> When constructing a string, the input encoding *must* be mentioned (e.g.
> from_utf8). This makes it clear what exactly the input type is expected to be
> in terms of encoding.
>
> When a method operates on anything related to an *index* within the string
> such as length, capacity, position, etc, the method *implicitly* operates on
> bytes. It is an understood fact that String is a utf-8 encoded string, and
> burdening all methods with "bytes" would be redundant.
>
> When a method operates on the *contents* of a string, such as push() or pop(),
> then "char" is the default type. A String can loosely be thought of as being a
> collection of unicode codepoints, but not all collection-related operations
> make sense because some can be woefully inefficient.
# Method stabilization
The following methods have been marked #[stable]
* The String type itself
* String::new
* String::with_capacity
* String::from_utf16_lossy
* String::into_bytes
* String::as_bytes
* String::len
* String::clear
* String::as_slice
The following methods have been marked #[unstable]
* String::from_utf8 - The error type in the returned `Result` may change to
provide a nicer message when it's `unwrap()`'d
* String::from_utf8_lossy - The returned `MaybeOwned` type still needs
stabilization
* String::from_utf16 - The return type may change to become a `Result` which
includes more contextual information like where the error
occurred.
* String::from_chars - This is equivalent to iter().collect(), but currently not
as ergonomic.
* String::from_char - This method is the equivalent of Vec::from_elem, and has
been marked #[unstable] becuase it can be seen as a
duplicate of iterator-based functionality as well as
possibly being renamed.
* String::push_str - This *can* be emulated with .extend(foo.chars()), but is
less efficient because of decoding/encoding. Due to the
desire to minimize API surface this may be able to be
removed in the future for something possibly generic with
no loss in performance.
* String::grow - This is a duplicate of iterator-based functionality, which may
become more ergonomic in the future.
* String::capacity - This function was just added.
* String::push - This function was just added.
* String::pop - This function was just added.
* String::truncate - The failure conventions around String methods and byte
indices isn't totally clear at this time, so the failure
semantics and return value of this method are subject to
change.
* String::as_mut_vec - the naming of this method may change.
* string::raw::* - these functions are all waiting on [an RFC][2]
[2]: https://github.com/rust-lang/rfcs/pull/240
The following method have been marked #[experimental]
* String::from_str - This function only exists as it's more efficient than
to_string(), but having a less ergonomic function for
performance reasons isn't the greatest reason to keep it
around. Like Vec::push_all, this has been marked
experimental for now.
The following methods have been #[deprecated]
* String::append - This method has been deprecated to remain consistent with the
deprecation of Vec::append. While convenient, it is one of
the only functional-style apis on String, and requires more
though as to whether it belongs as a first-class method or
now (and how it relates to other collections).
* String::from_byte - This is fairly rare functionality and can be emulated with
str::from_utf8 plus an assert plus a call to to_string().
Additionally, String::from_char could possibly be used.
* String::byte_capacity - Renamed to String::capacity due to the rationale
above.
* String::push_char - Renamed to String::push due to the rationale above.
* String::pop_char - Renamed to String::pop due to the rationale above.
* String::push_bytes - There are a number of `unsafe` functions on the `String`
type which allow bypassing utf-8 checks. These have all
been deprecated in favor of calling `.as_mut_vec()` and
then operating directly on the vector returned. These
methods were deprecated because naming them with relation
to other methods was difficult to rationalize and it's
arguably more composable to call .as_mut_vec().
* String::as_mut_bytes - See push_bytes
* String::push_byte - See push_bytes
* String::pop_byte - See push_bytes
* String::shift_byte - See push_bytes
# Reservation methods
This commit does not yet touch the methods for reserving bytes. The methods on
Vec have also not yet been modified. These methods are discussed in the upcoming
[Collections reform RFC][1]
[1]: https://github.com/aturon/rfcs/blob/collections-conventions/active/0000-collections-conventions.md#implicit-growth
2014-09-22 07:12:10 -07:00
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
/// let s = String::with_capacity(10);
|
2015-12-01 16:07:53 -05:00
|
|
|
|
///
|
2014-09-22 08:28:35 -07:00
|
|
|
|
/// assert!(s.capacity() >= 10);
|
collections: Stabilize String
# Rationale
When dealing with strings, many functions deal with either a `char` (unicode
codepoint) or a byte (utf-8 encoding related). There is often an inconsistent
way in which methods are referred to as to whether they contain "byte", "char",
or nothing in their name. There are also issues open to rename *all* methods to
reflect that they operate on utf8 encodings or bytes (e.g. utf8_len() or
byte_len()).
The current state of String seems to largely be what is desired, so this PR
proposes the following rationale for methods dealing with bytes or characters:
> When constructing a string, the input encoding *must* be mentioned (e.g.
> from_utf8). This makes it clear what exactly the input type is expected to be
> in terms of encoding.
>
> When a method operates on anything related to an *index* within the string
> such as length, capacity, position, etc, the method *implicitly* operates on
> bytes. It is an understood fact that String is a utf-8 encoded string, and
> burdening all methods with "bytes" would be redundant.
>
> When a method operates on the *contents* of a string, such as push() or pop(),
> then "char" is the default type. A String can loosely be thought of as being a
> collection of unicode codepoints, but not all collection-related operations
> make sense because some can be woefully inefficient.
# Method stabilization
The following methods have been marked #[stable]
* The String type itself
* String::new
* String::with_capacity
* String::from_utf16_lossy
* String::into_bytes
* String::as_bytes
* String::len
* String::clear
* String::as_slice
The following methods have been marked #[unstable]
* String::from_utf8 - The error type in the returned `Result` may change to
provide a nicer message when it's `unwrap()`'d
* String::from_utf8_lossy - The returned `MaybeOwned` type still needs
stabilization
* String::from_utf16 - The return type may change to become a `Result` which
includes more contextual information like where the error
occurred.
* String::from_chars - This is equivalent to iter().collect(), but currently not
as ergonomic.
* String::from_char - This method is the equivalent of Vec::from_elem, and has
been marked #[unstable] becuase it can be seen as a
duplicate of iterator-based functionality as well as
possibly being renamed.
* String::push_str - This *can* be emulated with .extend(foo.chars()), but is
less efficient because of decoding/encoding. Due to the
desire to minimize API surface this may be able to be
removed in the future for something possibly generic with
no loss in performance.
* String::grow - This is a duplicate of iterator-based functionality, which may
become more ergonomic in the future.
* String::capacity - This function was just added.
* String::push - This function was just added.
* String::pop - This function was just added.
* String::truncate - The failure conventions around String methods and byte
indices isn't totally clear at this time, so the failure
semantics and return value of this method are subject to
change.
* String::as_mut_vec - the naming of this method may change.
* string::raw::* - these functions are all waiting on [an RFC][2]
[2]: https://github.com/rust-lang/rfcs/pull/240
The following method have been marked #[experimental]
* String::from_str - This function only exists as it's more efficient than
to_string(), but having a less ergonomic function for
performance reasons isn't the greatest reason to keep it
around. Like Vec::push_all, this has been marked
experimental for now.
The following methods have been #[deprecated]
* String::append - This method has been deprecated to remain consistent with the
deprecation of Vec::append. While convenient, it is one of
the only functional-style apis on String, and requires more
though as to whether it belongs as a first-class method or
now (and how it relates to other collections).
* String::from_byte - This is fairly rare functionality and can be emulated with
str::from_utf8 plus an assert plus a call to to_string().
Additionally, String::from_char could possibly be used.
* String::byte_capacity - Renamed to String::capacity due to the rationale
above.
* String::push_char - Renamed to String::push due to the rationale above.
* String::pop_char - Renamed to String::pop due to the rationale above.
* String::push_bytes - There are a number of `unsafe` functions on the `String`
type which allow bypassing utf-8 checks. These have all
been deprecated in favor of calling `.as_mut_vec()` and
then operating directly on the vector returned. These
methods were deprecated because naming them with relation
to other methods was difficult to rationalize and it's
arguably more composable to call .as_mut_vec().
* String::as_mut_bytes - See push_bytes
* String::push_byte - See push_bytes
* String::pop_byte - See push_bytes
* String::shift_byte - See push_bytes
# Reservation methods
This commit does not yet touch the methods for reserving bytes. The methods on
Vec have also not yet been modified. These methods are discussed in the upcoming
[Collections reform RFC][1]
[1]: https://github.com/aturon/rfcs/blob/collections-conventions/active/0000-collections-conventions.md#implicit-growth
2014-09-22 07:12:10 -07:00
|
|
|
|
/// ```
|
|
|
|
|
|
#[inline]
|
2021-10-14 19:56:53 -04:00
|
|
|
|
#[must_use]
|
2015-01-23 21:48:20 -08:00
|
|
|
|
#[stable(feature = "rust1", since = "1.0.0")]
|
2015-02-04 21:17:19 -05:00
|
|
|
|
pub fn capacity(&self) -> usize {
|
collections: Stabilize String
# Rationale
When dealing with strings, many functions deal with either a `char` (unicode
codepoint) or a byte (utf-8 encoding related). There is often an inconsistent
way in which methods are referred to as to whether they contain "byte", "char",
or nothing in their name. There are also issues open to rename *all* methods to
reflect that they operate on utf8 encodings or bytes (e.g. utf8_len() or
byte_len()).
The current state of String seems to largely be what is desired, so this PR
proposes the following rationale for methods dealing with bytes or characters:
> When constructing a string, the input encoding *must* be mentioned (e.g.
> from_utf8). This makes it clear what exactly the input type is expected to be
> in terms of encoding.
>
> When a method operates on anything related to an *index* within the string
> such as length, capacity, position, etc, the method *implicitly* operates on
> bytes. It is an understood fact that String is a utf-8 encoded string, and
> burdening all methods with "bytes" would be redundant.
>
> When a method operates on the *contents* of a string, such as push() or pop(),
> then "char" is the default type. A String can loosely be thought of as being a
> collection of unicode codepoints, but not all collection-related operations
> make sense because some can be woefully inefficient.
# Method stabilization
The following methods have been marked #[stable]
* The String type itself
* String::new
* String::with_capacity
* String::from_utf16_lossy
* String::into_bytes
* String::as_bytes
* String::len
* String::clear
* String::as_slice
The following methods have been marked #[unstable]
* String::from_utf8 - The error type in the returned `Result` may change to
provide a nicer message when it's `unwrap()`'d
* String::from_utf8_lossy - The returned `MaybeOwned` type still needs
stabilization
* String::from_utf16 - The return type may change to become a `Result` which
includes more contextual information like where the error
occurred.
* String::from_chars - This is equivalent to iter().collect(), but currently not
as ergonomic.
* String::from_char - This method is the equivalent of Vec::from_elem, and has
been marked #[unstable] becuase it can be seen as a
duplicate of iterator-based functionality as well as
possibly being renamed.
* String::push_str - This *can* be emulated with .extend(foo.chars()), but is
less efficient because of decoding/encoding. Due to the
desire to minimize API surface this may be able to be
removed in the future for something possibly generic with
no loss in performance.
* String::grow - This is a duplicate of iterator-based functionality, which may
become more ergonomic in the future.
* String::capacity - This function was just added.
* String::push - This function was just added.
* String::pop - This function was just added.
* String::truncate - The failure conventions around String methods and byte
indices isn't totally clear at this time, so the failure
semantics and return value of this method are subject to
change.
* String::as_mut_vec - the naming of this method may change.
* string::raw::* - these functions are all waiting on [an RFC][2]
[2]: https://github.com/rust-lang/rfcs/pull/240
The following method have been marked #[experimental]
* String::from_str - This function only exists as it's more efficient than
to_string(), but having a less ergonomic function for
performance reasons isn't the greatest reason to keep it
around. Like Vec::push_all, this has been marked
experimental for now.
The following methods have been #[deprecated]
* String::append - This method has been deprecated to remain consistent with the
deprecation of Vec::append. While convenient, it is one of
the only functional-style apis on String, and requires more
though as to whether it belongs as a first-class method or
now (and how it relates to other collections).
* String::from_byte - This is fairly rare functionality and can be emulated with
str::from_utf8 plus an assert plus a call to to_string().
Additionally, String::from_char could possibly be used.
* String::byte_capacity - Renamed to String::capacity due to the rationale
above.
* String::push_char - Renamed to String::push due to the rationale above.
* String::pop_char - Renamed to String::pop due to the rationale above.
* String::push_bytes - There are a number of `unsafe` functions on the `String`
type which allow bypassing utf-8 checks. These have all
been deprecated in favor of calling `.as_mut_vec()` and
then operating directly on the vector returned. These
methods were deprecated because naming them with relation
to other methods was difficult to rationalize and it's
arguably more composable to call .as_mut_vec().
* String::as_mut_bytes - See push_bytes
* String::push_byte - See push_bytes
* String::pop_byte - See push_bytes
* String::shift_byte - See push_bytes
# Reservation methods
This commit does not yet touch the methods for reserving bytes. The methods on
Vec have also not yet been modified. These methods are discussed in the upcoming
[Collections reform RFC][1]
[1]: https://github.com/aturon/rfcs/blob/collections-conventions/active/0000-collections-conventions.md#implicit-growth
2014-09-22 07:12:10 -07:00
|
|
|
|
self.vec.capacity()
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2022-04-09 16:42:26 +01:00
|
|
|
|
/// Reserves capacity for at least `additional` bytes more than the
|
|
|
|
|
|
/// current length. The allocator may reserve more space to speculatively
|
|
|
|
|
|
/// avoid frequent allocations. After calling `reserve`,
|
|
|
|
|
|
/// capacity will be greater than or equal to `self.len() + additional`.
|
|
|
|
|
|
/// Does nothing if capacity is already sufficient.
|
2015-12-01 16:07:53 -05:00
|
|
|
|
///
|
2014-11-06 12:24:47 -05:00
|
|
|
|
/// # Panics
|
|
|
|
|
|
///
|
2017-08-18 17:17:46 +02:00
|
|
|
|
/// Panics if the new capacity overflows [`usize`].
|
|
|
|
|
|
///
|
2014-12-08 23:28:07 -06:00
|
|
|
|
/// # Examples
|
2014-07-27 12:40:39 +02:00
|
|
|
|
///
|
2015-12-01 16:07:53 -05:00
|
|
|
|
/// Basic usage:
|
|
|
|
|
|
///
|
2014-07-27 12:40:39 +02:00
|
|
|
|
/// ```
|
|
|
|
|
|
/// let mut s = String::new();
|
2015-12-01 16:07:53 -05:00
|
|
|
|
///
|
2014-07-27 12:40:39 +02:00
|
|
|
|
/// s.reserve(10);
|
2015-12-01 16:07:53 -05:00
|
|
|
|
///
|
2014-09-22 08:28:35 -07:00
|
|
|
|
/// assert!(s.capacity() >= 10);
|
2014-07-27 12:40:39 +02:00
|
|
|
|
/// ```
|
2015-12-01 16:07:53 -05:00
|
|
|
|
///
|
2021-07-23 19:14:28 -04:00
|
|
|
|
/// This might not actually increase the capacity:
|
2015-12-01 16:07:53 -05:00
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
/// let mut s = String::with_capacity(10);
|
|
|
|
|
|
/// s.push('a');
|
|
|
|
|
|
/// s.push('b');
|
|
|
|
|
|
///
|
2022-04-09 16:42:26 +01:00
|
|
|
|
/// // s now has a length of 2 and a capacity of at least 10
|
|
|
|
|
|
/// let capacity = s.capacity();
|
2015-12-01 16:07:53 -05:00
|
|
|
|
/// assert_eq!(2, s.len());
|
2022-04-09 16:42:26 +01:00
|
|
|
|
/// assert!(capacity >= 10);
|
2015-12-01 16:07:53 -05:00
|
|
|
|
///
|
2022-04-09 16:42:26 +01:00
|
|
|
|
/// // Since we already have at least an extra 8 capacity, calling this...
|
2015-12-01 16:07:53 -05:00
|
|
|
|
/// s.reserve(8);
|
|
|
|
|
|
///
|
|
|
|
|
|
/// // ... doesn't actually increase.
|
2022-04-09 16:42:26 +01:00
|
|
|
|
/// assert_eq!(capacity, s.capacity());
|
2015-12-01 16:07:53 -05:00
|
|
|
|
/// ```
|
alloc: Add unstable Cfg feature `no-global_oom_handling`
For certain sorts of systems, programming, it's deemed essential that
all allocation failures be explicitly handled where they occur. For
example, see Linus Torvald's opinion in [1]. Merely not calling global
panic handlers, or always `try_reserving` first (for vectors), is not
deemed good enough, because the mere presence of the global OOM handlers
is burdens static analysis.
One option for these projects to use rust would just be to skip `alloc`,
rolling their own allocation abstractions. But this would, in my
opinion be a real shame. `alloc` has a few `try_*` methods already, and
we could easily have more. Features like custom allocator support also
demonstrate and existing to support diverse use-cases with the same
abstractions.
A natural way to add such a feature flag would a Cargo feature, but
there are currently uncertainties around how std library crate's Cargo
features may or not be stable, so to avoid any risk of stabilizing by
mistake we are going with a more low-level "raw cfg" token, which
cannot be interacted with via Cargo alone.
Note also that since there is no notion of "default cfg tokens" outside
of Cargo features, we have to invert the condition from
`global_oom_handling` to to `not(no_global_oom_handling)`. This breaks
the monotonicity that would be important for a Cargo feature (i.e.
turning on more features should never break compatibility), but it
doesn't matter for raw cfg tokens which are not intended to be
"constraint solved" by Cargo or anything else.
To support this use-case we create a new feature, "global-oom-handling",
on by default, and put the global OOM handler infra and everything else
it that depends on it behind it. By default, nothing is changed, but
users concerned about global handling can make sure it is disabled, and
be confident that all OOM handling is local and explicit.
For this first iteration, non-flat collections are outright disabled.
`Vec` and `String` don't yet have `try_*` allocation methods, but are
kept anyways since they can be oom-safely created "from parts", and we
hope to add those `try_` methods in the future.
[1]: https://lore.kernel.org/lkml/CAHk-=wh_sNLoz84AUUzuqXEsYH35u=8HV3vK-jbRbJ_B-JjGrg@mail.gmail.com/
2021-04-16 20:18:04 -04:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
2014-04-02 16:54:22 -07:00
|
|
|
|
#[inline]
|
2015-01-23 21:48:20 -08:00
|
|
|
|
#[stable(feature = "rust1", since = "1.0.0")]
|
2015-02-04 21:17:19 -05:00
|
|
|
|
pub fn reserve(&mut self, additional: usize) {
|
2014-11-06 12:24:47 -05:00
|
|
|
|
self.vec.reserve(additional)
|
2014-04-02 16:54:22 -07:00
|
|
|
|
}
|
|
|
|
|
|
|
2022-04-09 16:42:26 +01:00
|
|
|
|
/// Reserves the minimum capacity for at least `additional` bytes more than
|
|
|
|
|
|
/// the current length. Unlike [`reserve`], this will not
|
|
|
|
|
|
/// deliberately over-allocate to speculatively avoid frequent allocations.
|
|
|
|
|
|
/// After calling `reserve_exact`, capacity will be greater than or equal to
|
|
|
|
|
|
/// `self.len() + additional`. Does nothing if the capacity is already
|
|
|
|
|
|
/// sufficient.
|
2015-12-01 16:07:53 -05:00
|
|
|
|
///
|
2020-07-18 10:14:00 -07:00
|
|
|
|
/// [`reserve`]: String::reserve
|
2014-11-06 12:24:47 -05:00
|
|
|
|
///
|
|
|
|
|
|
/// # Panics
|
|
|
|
|
|
///
|
2022-04-09 16:42:26 +01:00
|
|
|
|
/// Panics if the new capacity overflows [`usize`].
|
2014-07-27 12:40:39 +02:00
|
|
|
|
///
|
2014-12-08 23:28:07 -06:00
|
|
|
|
/// # Examples
|
2014-07-27 12:40:39 +02:00
|
|
|
|
///
|
2015-12-01 16:07:53 -05:00
|
|
|
|
/// Basic usage:
|
|
|
|
|
|
///
|
2014-07-27 12:40:39 +02:00
|
|
|
|
/// ```
|
|
|
|
|
|
/// let mut s = String::new();
|
2015-12-01 16:07:53 -05:00
|
|
|
|
///
|
2015-05-16 20:59:20 -03:00
|
|
|
|
/// s.reserve_exact(10);
|
2015-12-01 16:07:53 -05:00
|
|
|
|
///
|
2014-11-06 12:24:47 -05:00
|
|
|
|
/// assert!(s.capacity() >= 10);
|
2014-07-27 12:40:39 +02:00
|
|
|
|
/// ```
|
2015-12-01 16:07:53 -05:00
|
|
|
|
///
|
2021-07-23 19:14:28 -04:00
|
|
|
|
/// This might not actually increase the capacity:
|
2015-12-01 16:07:53 -05:00
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
/// let mut s = String::with_capacity(10);
|
|
|
|
|
|
/// s.push('a');
|
|
|
|
|
|
/// s.push('b');
|
|
|
|
|
|
///
|
2022-04-09 16:42:26 +01:00
|
|
|
|
/// // s now has a length of 2 and a capacity of at least 10
|
|
|
|
|
|
/// let capacity = s.capacity();
|
2015-12-01 16:07:53 -05:00
|
|
|
|
/// assert_eq!(2, s.len());
|
2022-04-09 16:42:26 +01:00
|
|
|
|
/// assert!(capacity >= 10);
|
2015-12-01 16:07:53 -05:00
|
|
|
|
///
|
2022-04-09 16:42:26 +01:00
|
|
|
|
/// // Since we already have at least an extra 8 capacity, calling this...
|
2015-12-01 16:07:53 -05:00
|
|
|
|
/// s.reserve_exact(8);
|
|
|
|
|
|
///
|
|
|
|
|
|
/// // ... doesn't actually increase.
|
2022-04-09 16:42:26 +01:00
|
|
|
|
/// assert_eq!(capacity, s.capacity());
|
2015-12-01 16:07:53 -05:00
|
|
|
|
/// ```
|
alloc: Add unstable Cfg feature `no-global_oom_handling`
For certain sorts of systems, programming, it's deemed essential that
all allocation failures be explicitly handled where they occur. For
example, see Linus Torvald's opinion in [1]. Merely not calling global
panic handlers, or always `try_reserving` first (for vectors), is not
deemed good enough, because the mere presence of the global OOM handlers
is burdens static analysis.
One option for these projects to use rust would just be to skip `alloc`,
rolling their own allocation abstractions. But this would, in my
opinion be a real shame. `alloc` has a few `try_*` methods already, and
we could easily have more. Features like custom allocator support also
demonstrate and existing to support diverse use-cases with the same
abstractions.
A natural way to add such a feature flag would a Cargo feature, but
there are currently uncertainties around how std library crate's Cargo
features may or not be stable, so to avoid any risk of stabilizing by
mistake we are going with a more low-level "raw cfg" token, which
cannot be interacted with via Cargo alone.
Note also that since there is no notion of "default cfg tokens" outside
of Cargo features, we have to invert the condition from
`global_oom_handling` to to `not(no_global_oom_handling)`. This breaks
the monotonicity that would be important for a Cargo feature (i.e.
turning on more features should never break compatibility), but it
doesn't matter for raw cfg tokens which are not intended to be
"constraint solved" by Cargo or anything else.
To support this use-case we create a new feature, "global-oom-handling",
on by default, and put the global OOM handler infra and everything else
it that depends on it behind it. By default, nothing is changed, but
users concerned about global handling can make sure it is disabled, and
be confident that all OOM handling is local and explicit.
For this first iteration, non-flat collections are outright disabled.
`Vec` and `String` don't yet have `try_*` allocation methods, but are
kept anyways since they can be oom-safely created "from parts", and we
hope to add those `try_` methods in the future.
[1]: https://lore.kernel.org/lkml/CAHk-=wh_sNLoz84AUUzuqXEsYH35u=8HV3vK-jbRbJ_B-JjGrg@mail.gmail.com/
2021-04-16 20:18:04 -04:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
2014-04-02 16:54:22 -07:00
|
|
|
|
#[inline]
|
2015-01-23 21:48:20 -08:00
|
|
|
|
#[stable(feature = "rust1", since = "1.0.0")]
|
2015-02-04 21:17:19 -05:00
|
|
|
|
pub fn reserve_exact(&mut self, additional: usize) {
|
2014-11-06 12:24:47 -05:00
|
|
|
|
self.vec.reserve_exact(additional)
|
2014-04-02 16:54:22 -07:00
|
|
|
|
}
|
|
|
|
|
|
|
2022-04-09 16:42:26 +01:00
|
|
|
|
/// Tries to reserve capacity for at least `additional` bytes more than the
|
|
|
|
|
|
/// current length. The allocator may reserve more space to speculatively
|
|
|
|
|
|
/// avoid frequent allocations. After calling `try_reserve`, capacity will be
|
|
|
|
|
|
/// greater than or equal to `self.len() + additional` if it returns
|
2022-08-10 01:51:38 +09:00
|
|
|
|
/// `Ok(())`. Does nothing if capacity is already sufficient. This method
|
|
|
|
|
|
/// preserves the contents even if an error occurs.
|
2018-03-08 14:36:43 +00:00
|
|
|
|
///
|
|
|
|
|
|
/// # Errors
|
|
|
|
|
|
///
|
|
|
|
|
|
/// If the capacity overflows, or the allocator reports a failure, then an error
|
|
|
|
|
|
/// is returned.
|
|
|
|
|
|
///
|
|
|
|
|
|
/// # Examples
|
|
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
2019-06-12 20:02:01 +02:00
|
|
|
|
/// use std::collections::TryReserveError;
|
2018-03-08 14:36:43 +00:00
|
|
|
|
///
|
2019-06-12 20:02:01 +02:00
|
|
|
|
/// fn process_data(data: &str) -> Result<String, TryReserveError> {
|
2018-03-08 14:36:43 +00:00
|
|
|
|
/// let mut output = String::new();
|
|
|
|
|
|
///
|
|
|
|
|
|
/// // Pre-reserve the memory, exiting if we can't
|
|
|
|
|
|
/// output.try_reserve(data.len())?;
|
|
|
|
|
|
///
|
|
|
|
|
|
/// // Now we know this can't OOM in the middle of our complex work
|
|
|
|
|
|
/// output.push_str(data);
|
|
|
|
|
|
///
|
|
|
|
|
|
/// Ok(output)
|
|
|
|
|
|
/// }
|
|
|
|
|
|
/// # process_data("rust").expect("why is the test harness OOMing on 4 bytes?");
|
|
|
|
|
|
/// ```
|
2021-08-29 23:21:33 +01:00
|
|
|
|
#[stable(feature = "try_reserve", since = "1.57.0")]
|
2019-06-12 20:02:01 +02:00
|
|
|
|
pub fn try_reserve(&mut self, additional: usize) -> Result<(), TryReserveError> {
|
2018-03-08 14:36:43 +00:00
|
|
|
|
self.vec.try_reserve(additional)
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2022-04-09 16:42:26 +01:00
|
|
|
|
/// Tries to reserve the minimum capacity for at least `additional` bytes
|
|
|
|
|
|
/// more than the current length. Unlike [`try_reserve`], this will not
|
|
|
|
|
|
/// deliberately over-allocate to speculatively avoid frequent allocations.
|
|
|
|
|
|
/// After calling `try_reserve_exact`, capacity will be greater than or
|
|
|
|
|
|
/// equal to `self.len() + additional` if it returns `Ok(())`.
|
2018-03-08 14:36:43 +00:00
|
|
|
|
/// Does nothing if the capacity is already sufficient.
|
|
|
|
|
|
///
|
|
|
|
|
|
/// Note that the allocator may give the collection more space than it
|
2019-02-09 22:16:58 +00:00
|
|
|
|
/// requests. Therefore, capacity can not be relied upon to be precisely
|
2021-12-05 14:19:44 +08:00
|
|
|
|
/// minimal. Prefer [`try_reserve`] if future insertions are expected.
|
2021-08-05 04:22:14 +02:00
|
|
|
|
///
|
2021-12-05 14:19:44 +08:00
|
|
|
|
/// [`try_reserve`]: String::try_reserve
|
2018-03-08 14:36:43 +00:00
|
|
|
|
///
|
|
|
|
|
|
/// # Errors
|
|
|
|
|
|
///
|
|
|
|
|
|
/// If the capacity overflows, or the allocator reports a failure, then an error
|
|
|
|
|
|
/// is returned.
|
|
|
|
|
|
///
|
|
|
|
|
|
/// # Examples
|
|
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
2019-06-12 20:02:01 +02:00
|
|
|
|
/// use std::collections::TryReserveError;
|
2018-03-08 14:36:43 +00:00
|
|
|
|
///
|
2019-06-12 20:02:01 +02:00
|
|
|
|
/// fn process_data(data: &str) -> Result<String, TryReserveError> {
|
2018-03-08 14:36:43 +00:00
|
|
|
|
/// let mut output = String::new();
|
|
|
|
|
|
///
|
|
|
|
|
|
/// // Pre-reserve the memory, exiting if we can't
|
2021-12-29 13:22:35 +08:00
|
|
|
|
/// output.try_reserve_exact(data.len())?;
|
2018-03-08 14:36:43 +00:00
|
|
|
|
///
|
|
|
|
|
|
/// // Now we know this can't OOM in the middle of our complex work
|
|
|
|
|
|
/// output.push_str(data);
|
|
|
|
|
|
///
|
|
|
|
|
|
/// Ok(output)
|
|
|
|
|
|
/// }
|
|
|
|
|
|
/// # process_data("rust").expect("why is the test harness OOMing on 4 bytes?");
|
|
|
|
|
|
/// ```
|
2021-08-29 23:21:33 +01:00
|
|
|
|
#[stable(feature = "try_reserve", since = "1.57.0")]
|
2019-06-12 20:02:01 +02:00
|
|
|
|
pub fn try_reserve_exact(&mut self, additional: usize) -> Result<(), TryReserveError> {
|
2018-03-08 14:36:43 +00:00
|
|
|
|
self.vec.try_reserve_exact(additional)
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2015-12-01 16:07:53 -05:00
|
|
|
|
/// Shrinks the capacity of this `String` to match its length.
|
2014-07-27 12:40:39 +02:00
|
|
|
|
///
|
2014-12-08 23:28:07 -06:00
|
|
|
|
/// # Examples
|
2014-07-27 12:40:39 +02:00
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
2015-05-19 03:33:17 +02:00
|
|
|
|
/// let mut s = String::from("foo");
|
2015-12-01 16:07:53 -05:00
|
|
|
|
///
|
2014-07-27 12:40:39 +02:00
|
|
|
|
/// s.reserve(100);
|
2014-09-22 08:28:35 -07:00
|
|
|
|
/// assert!(s.capacity() >= 100);
|
2015-12-01 16:07:53 -05:00
|
|
|
|
///
|
2014-07-27 12:40:39 +02:00
|
|
|
|
/// s.shrink_to_fit();
|
2015-12-01 16:07:53 -05:00
|
|
|
|
/// assert_eq!(3, s.capacity());
|
2014-07-27 12:40:39 +02:00
|
|
|
|
/// ```
|
alloc: Add unstable Cfg feature `no-global_oom_handling`
For certain sorts of systems, programming, it's deemed essential that
all allocation failures be explicitly handled where they occur. For
example, see Linus Torvald's opinion in [1]. Merely not calling global
panic handlers, or always `try_reserving` first (for vectors), is not
deemed good enough, because the mere presence of the global OOM handlers
is burdens static analysis.
One option for these projects to use rust would just be to skip `alloc`,
rolling their own allocation abstractions. But this would, in my
opinion be a real shame. `alloc` has a few `try_*` methods already, and
we could easily have more. Features like custom allocator support also
demonstrate and existing to support diverse use-cases with the same
abstractions.
A natural way to add such a feature flag would a Cargo feature, but
there are currently uncertainties around how std library crate's Cargo
features may or not be stable, so to avoid any risk of stabilizing by
mistake we are going with a more low-level "raw cfg" token, which
cannot be interacted with via Cargo alone.
Note also that since there is no notion of "default cfg tokens" outside
of Cargo features, we have to invert the condition from
`global_oom_handling` to to `not(no_global_oom_handling)`. This breaks
the monotonicity that would be important for a Cargo feature (i.e.
turning on more features should never break compatibility), but it
doesn't matter for raw cfg tokens which are not intended to be
"constraint solved" by Cargo or anything else.
To support this use-case we create a new feature, "global-oom-handling",
on by default, and put the global OOM handler infra and everything else
it that depends on it behind it. By default, nothing is changed, but
users concerned about global handling can make sure it is disabled, and
be confident that all OOM handling is local and explicit.
For this first iteration, non-flat collections are outright disabled.
`Vec` and `String` don't yet have `try_*` allocation methods, but are
kept anyways since they can be oom-safely created "from parts", and we
hope to add those `try_` methods in the future.
[1]: https://lore.kernel.org/lkml/CAHk-=wh_sNLoz84AUUzuqXEsYH35u=8HV3vK-jbRbJ_B-JjGrg@mail.gmail.com/
2021-04-16 20:18:04 -04:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
2014-04-02 16:54:22 -07:00
|
|
|
|
#[inline]
|
2015-01-23 21:48:20 -08:00
|
|
|
|
#[stable(feature = "rust1", since = "1.0.0")]
|
2014-04-02 16:54:22 -07:00
|
|
|
|
pub fn shrink_to_fit(&mut self) {
|
|
|
|
|
|
self.vec.shrink_to_fit()
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2018-03-26 23:24:31 +01:00
|
|
|
|
/// Shrinks the capacity of this `String` with a lower bound.
|
|
|
|
|
|
///
|
|
|
|
|
|
/// The capacity will remain at least as large as both the length
|
|
|
|
|
|
/// and the supplied value.
|
|
|
|
|
|
///
|
2021-01-24 13:29:39 +01:00
|
|
|
|
/// If the current capacity is less than the lower limit, this is a no-op.
|
2018-03-26 23:24:31 +01:00
|
|
|
|
///
|
|
|
|
|
|
/// # Examples
|
|
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
/// let mut s = String::from("foo");
|
|
|
|
|
|
///
|
|
|
|
|
|
/// s.reserve(100);
|
|
|
|
|
|
/// assert!(s.capacity() >= 100);
|
|
|
|
|
|
///
|
|
|
|
|
|
/// s.shrink_to(10);
|
|
|
|
|
|
/// assert!(s.capacity() >= 10);
|
|
|
|
|
|
/// s.shrink_to(0);
|
|
|
|
|
|
/// assert!(s.capacity() >= 3);
|
|
|
|
|
|
/// ```
|
alloc: Add unstable Cfg feature `no-global_oom_handling`
For certain sorts of systems, programming, it's deemed essential that
all allocation failures be explicitly handled where they occur. For
example, see Linus Torvald's opinion in [1]. Merely not calling global
panic handlers, or always `try_reserving` first (for vectors), is not
deemed good enough, because the mere presence of the global OOM handlers
is burdens static analysis.
One option for these projects to use rust would just be to skip `alloc`,
rolling their own allocation abstractions. But this would, in my
opinion be a real shame. `alloc` has a few `try_*` methods already, and
we could easily have more. Features like custom allocator support also
demonstrate and existing to support diverse use-cases with the same
abstractions.
A natural way to add such a feature flag would a Cargo feature, but
there are currently uncertainties around how std library crate's Cargo
features may or not be stable, so to avoid any risk of stabilizing by
mistake we are going with a more low-level "raw cfg" token, which
cannot be interacted with via Cargo alone.
Note also that since there is no notion of "default cfg tokens" outside
of Cargo features, we have to invert the condition from
`global_oom_handling` to to `not(no_global_oom_handling)`. This breaks
the monotonicity that would be important for a Cargo feature (i.e.
turning on more features should never break compatibility), but it
doesn't matter for raw cfg tokens which are not intended to be
"constraint solved" by Cargo or anything else.
To support this use-case we create a new feature, "global-oom-handling",
on by default, and put the global OOM handler infra and everything else
it that depends on it behind it. By default, nothing is changed, but
users concerned about global handling can make sure it is disabled, and
be confident that all OOM handling is local and explicit.
For this first iteration, non-flat collections are outright disabled.
`Vec` and `String` don't yet have `try_*` allocation methods, but are
kept anyways since they can be oom-safely created "from parts", and we
hope to add those `try_` methods in the future.
[1]: https://lore.kernel.org/lkml/CAHk-=wh_sNLoz84AUUzuqXEsYH35u=8HV3vK-jbRbJ_B-JjGrg@mail.gmail.com/
2021-04-16 20:18:04 -04:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
2018-03-26 23:24:31 +01:00
|
|
|
|
#[inline]
|
2021-08-08 11:36:53 -07:00
|
|
|
|
#[stable(feature = "shrink_to", since = "1.56.0")]
|
2018-03-26 23:24:31 +01:00
|
|
|
|
pub fn shrink_to(&mut self, min_capacity: usize) {
|
|
|
|
|
|
self.vec.shrink_to(min_capacity)
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2017-08-18 17:17:46 +02:00
|
|
|
|
/// Appends the given [`char`] to the end of this `String`.
|
|
|
|
|
|
///
|
2014-12-08 23:28:07 -06:00
|
|
|
|
/// # Examples
|
2014-07-27 12:40:39 +02:00
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
2015-05-19 03:33:17 +02:00
|
|
|
|
/// let mut s = String::from("abc");
|
2015-12-01 16:07:53 -05:00
|
|
|
|
///
|
collections: Stabilize String
# Rationale
When dealing with strings, many functions deal with either a `char` (unicode
codepoint) or a byte (utf-8 encoding related). There is often an inconsistent
way in which methods are referred to as to whether they contain "byte", "char",
or nothing in their name. There are also issues open to rename *all* methods to
reflect that they operate on utf8 encodings or bytes (e.g. utf8_len() or
byte_len()).
The current state of String seems to largely be what is desired, so this PR
proposes the following rationale for methods dealing with bytes or characters:
> When constructing a string, the input encoding *must* be mentioned (e.g.
> from_utf8). This makes it clear what exactly the input type is expected to be
> in terms of encoding.
>
> When a method operates on anything related to an *index* within the string
> such as length, capacity, position, etc, the method *implicitly* operates on
> bytes. It is an understood fact that String is a utf-8 encoded string, and
> burdening all methods with "bytes" would be redundant.
>
> When a method operates on the *contents* of a string, such as push() or pop(),
> then "char" is the default type. A String can loosely be thought of as being a
> collection of unicode codepoints, but not all collection-related operations
> make sense because some can be woefully inefficient.
# Method stabilization
The following methods have been marked #[stable]
* The String type itself
* String::new
* String::with_capacity
* String::from_utf16_lossy
* String::into_bytes
* String::as_bytes
* String::len
* String::clear
* String::as_slice
The following methods have been marked #[unstable]
* String::from_utf8 - The error type in the returned `Result` may change to
provide a nicer message when it's `unwrap()`'d
* String::from_utf8_lossy - The returned `MaybeOwned` type still needs
stabilization
* String::from_utf16 - The return type may change to become a `Result` which
includes more contextual information like where the error
occurred.
* String::from_chars - This is equivalent to iter().collect(), but currently not
as ergonomic.
* String::from_char - This method is the equivalent of Vec::from_elem, and has
been marked #[unstable] becuase it can be seen as a
duplicate of iterator-based functionality as well as
possibly being renamed.
* String::push_str - This *can* be emulated with .extend(foo.chars()), but is
less efficient because of decoding/encoding. Due to the
desire to minimize API surface this may be able to be
removed in the future for something possibly generic with
no loss in performance.
* String::grow - This is a duplicate of iterator-based functionality, which may
become more ergonomic in the future.
* String::capacity - This function was just added.
* String::push - This function was just added.
* String::pop - This function was just added.
* String::truncate - The failure conventions around String methods and byte
indices isn't totally clear at this time, so the failure
semantics and return value of this method are subject to
change.
* String::as_mut_vec - the naming of this method may change.
* string::raw::* - these functions are all waiting on [an RFC][2]
[2]: https://github.com/rust-lang/rfcs/pull/240
The following method have been marked #[experimental]
* String::from_str - This function only exists as it's more efficient than
to_string(), but having a less ergonomic function for
performance reasons isn't the greatest reason to keep it
around. Like Vec::push_all, this has been marked
experimental for now.
The following methods have been #[deprecated]
* String::append - This method has been deprecated to remain consistent with the
deprecation of Vec::append. While convenient, it is one of
the only functional-style apis on String, and requires more
though as to whether it belongs as a first-class method or
now (and how it relates to other collections).
* String::from_byte - This is fairly rare functionality and can be emulated with
str::from_utf8 plus an assert plus a call to to_string().
Additionally, String::from_char could possibly be used.
* String::byte_capacity - Renamed to String::capacity due to the rationale
above.
* String::push_char - Renamed to String::push due to the rationale above.
* String::pop_char - Renamed to String::pop due to the rationale above.
* String::push_bytes - There are a number of `unsafe` functions on the `String`
type which allow bypassing utf-8 checks. These have all
been deprecated in favor of calling `.as_mut_vec()` and
then operating directly on the vector returned. These
methods were deprecated because naming them with relation
to other methods was difficult to rationalize and it's
arguably more composable to call .as_mut_vec().
* String::as_mut_bytes - See push_bytes
* String::push_byte - See push_bytes
* String::pop_byte - See push_bytes
* String::shift_byte - See push_bytes
# Reservation methods
This commit does not yet touch the methods for reserving bytes. The methods on
Vec have also not yet been modified. These methods are discussed in the upcoming
[Collections reform RFC][1]
[1]: https://github.com/aturon/rfcs/blob/collections-conventions/active/0000-collections-conventions.md#implicit-growth
2014-09-22 07:12:10 -07:00
|
|
|
|
/// s.push('1');
|
|
|
|
|
|
/// s.push('2');
|
|
|
|
|
|
/// s.push('3');
|
2015-12-01 16:07:53 -05:00
|
|
|
|
///
|
|
|
|
|
|
/// assert_eq!("abc123", s);
|
2014-07-27 12:40:39 +02:00
|
|
|
|
/// ```
|
alloc: Add unstable Cfg feature `no-global_oom_handling`
For certain sorts of systems, programming, it's deemed essential that
all allocation failures be explicitly handled where they occur. For
example, see Linus Torvald's opinion in [1]. Merely not calling global
panic handlers, or always `try_reserving` first (for vectors), is not
deemed good enough, because the mere presence of the global OOM handlers
is burdens static analysis.
One option for these projects to use rust would just be to skip `alloc`,
rolling their own allocation abstractions. But this would, in my
opinion be a real shame. `alloc` has a few `try_*` methods already, and
we could easily have more. Features like custom allocator support also
demonstrate and existing to support diverse use-cases with the same
abstractions.
A natural way to add such a feature flag would a Cargo feature, but
there are currently uncertainties around how std library crate's Cargo
features may or not be stable, so to avoid any risk of stabilizing by
mistake we are going with a more low-level "raw cfg" token, which
cannot be interacted with via Cargo alone.
Note also that since there is no notion of "default cfg tokens" outside
of Cargo features, we have to invert the condition from
`global_oom_handling` to to `not(no_global_oom_handling)`. This breaks
the monotonicity that would be important for a Cargo feature (i.e.
turning on more features should never break compatibility), but it
doesn't matter for raw cfg tokens which are not intended to be
"constraint solved" by Cargo or anything else.
To support this use-case we create a new feature, "global-oom-handling",
on by default, and put the global OOM handler infra and everything else
it that depends on it behind it. By default, nothing is changed, but
users concerned about global handling can make sure it is disabled, and
be confident that all OOM handling is local and explicit.
For this first iteration, non-flat collections are outright disabled.
`Vec` and `String` don't yet have `try_*` allocation methods, but are
kept anyways since they can be oom-safely created "from parts", and we
hope to add those `try_` methods in the future.
[1]: https://lore.kernel.org/lkml/CAHk-=wh_sNLoz84AUUzuqXEsYH35u=8HV3vK-jbRbJ_B-JjGrg@mail.gmail.com/
2021-04-16 20:18:04 -04:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
2014-04-02 16:54:22 -07:00
|
|
|
|
#[inline]
|
2015-01-23 21:48:20 -08:00
|
|
|
|
#[stable(feature = "rust1", since = "1.0.0")]
|
collections: Stabilize String
# Rationale
When dealing with strings, many functions deal with either a `char` (unicode
codepoint) or a byte (utf-8 encoding related). There is often an inconsistent
way in which methods are referred to as to whether they contain "byte", "char",
or nothing in their name. There are also issues open to rename *all* methods to
reflect that they operate on utf8 encodings or bytes (e.g. utf8_len() or
byte_len()).
The current state of String seems to largely be what is desired, so this PR
proposes the following rationale for methods dealing with bytes or characters:
> When constructing a string, the input encoding *must* be mentioned (e.g.
> from_utf8). This makes it clear what exactly the input type is expected to be
> in terms of encoding.
>
> When a method operates on anything related to an *index* within the string
> such as length, capacity, position, etc, the method *implicitly* operates on
> bytes. It is an understood fact that String is a utf-8 encoded string, and
> burdening all methods with "bytes" would be redundant.
>
> When a method operates on the *contents* of a string, such as push() or pop(),
> then "char" is the default type. A String can loosely be thought of as being a
> collection of unicode codepoints, but not all collection-related operations
> make sense because some can be woefully inefficient.
# Method stabilization
The following methods have been marked #[stable]
* The String type itself
* String::new
* String::with_capacity
* String::from_utf16_lossy
* String::into_bytes
* String::as_bytes
* String::len
* String::clear
* String::as_slice
The following methods have been marked #[unstable]
* String::from_utf8 - The error type in the returned `Result` may change to
provide a nicer message when it's `unwrap()`'d
* String::from_utf8_lossy - The returned `MaybeOwned` type still needs
stabilization
* String::from_utf16 - The return type may change to become a `Result` which
includes more contextual information like where the error
occurred.
* String::from_chars - This is equivalent to iter().collect(), but currently not
as ergonomic.
* String::from_char - This method is the equivalent of Vec::from_elem, and has
been marked #[unstable] becuase it can be seen as a
duplicate of iterator-based functionality as well as
possibly being renamed.
* String::push_str - This *can* be emulated with .extend(foo.chars()), but is
less efficient because of decoding/encoding. Due to the
desire to minimize API surface this may be able to be
removed in the future for something possibly generic with
no loss in performance.
* String::grow - This is a duplicate of iterator-based functionality, which may
become more ergonomic in the future.
* String::capacity - This function was just added.
* String::push - This function was just added.
* String::pop - This function was just added.
* String::truncate - The failure conventions around String methods and byte
indices isn't totally clear at this time, so the failure
semantics and return value of this method are subject to
change.
* String::as_mut_vec - the naming of this method may change.
* string::raw::* - these functions are all waiting on [an RFC][2]
[2]: https://github.com/rust-lang/rfcs/pull/240
The following method have been marked #[experimental]
* String::from_str - This function only exists as it's more efficient than
to_string(), but having a less ergonomic function for
performance reasons isn't the greatest reason to keep it
around. Like Vec::push_all, this has been marked
experimental for now.
The following methods have been #[deprecated]
* String::append - This method has been deprecated to remain consistent with the
deprecation of Vec::append. While convenient, it is one of
the only functional-style apis on String, and requires more
though as to whether it belongs as a first-class method or
now (and how it relates to other collections).
* String::from_byte - This is fairly rare functionality and can be emulated with
str::from_utf8 plus an assert plus a call to to_string().
Additionally, String::from_char could possibly be used.
* String::byte_capacity - Renamed to String::capacity due to the rationale
above.
* String::push_char - Renamed to String::push due to the rationale above.
* String::pop_char - Renamed to String::pop due to the rationale above.
* String::push_bytes - There are a number of `unsafe` functions on the `String`
type which allow bypassing utf-8 checks. These have all
been deprecated in favor of calling `.as_mut_vec()` and
then operating directly on the vector returned. These
methods were deprecated because naming them with relation
to other methods was difficult to rationalize and it's
arguably more composable to call .as_mut_vec().
* String::as_mut_bytes - See push_bytes
* String::push_byte - See push_bytes
* String::pop_byte - See push_bytes
* String::shift_byte - See push_bytes
# Reservation methods
This commit does not yet touch the methods for reserving bytes. The methods on
Vec have also not yet been modified. These methods are discussed in the upcoming
[Collections reform RFC][1]
[1]: https://github.com/aturon/rfcs/blob/collections-conventions/active/0000-collections-conventions.md#implicit-growth
2014-09-22 07:12:10 -07:00
|
|
|
|
pub fn push(&mut self, ch: char) {
|
2015-06-10 02:03:56 +02:00
|
|
|
|
match ch.len_utf8() {
|
|
|
|
|
|
1 => self.vec.push(ch as u8),
|
2016-12-20 09:54:00 +05:30
|
|
|
|
_ => self.vec.extend_from_slice(ch.encode_utf8(&mut [0; 4]).as_bytes()),
|
2014-04-02 16:54:22 -07:00
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2015-12-01 16:07:53 -05:00
|
|
|
|
/// Returns a byte slice of this `String`'s contents.
|
2014-07-27 12:40:39 +02:00
|
|
|
|
///
|
2017-03-03 01:24:19 -05:00
|
|
|
|
/// The inverse of this method is [`from_utf8`].
|
|
|
|
|
|
///
|
2020-07-18 10:14:00 -07:00
|
|
|
|
/// [`from_utf8`]: String::from_utf8
|
2017-03-03 01:24:19 -05:00
|
|
|
|
///
|
2014-12-08 23:28:07 -06:00
|
|
|
|
/// # Examples
|
2014-07-27 12:40:39 +02:00
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
2015-05-19 03:33:17 +02:00
|
|
|
|
/// let s = String::from("hello");
|
2015-12-01 16:07:53 -05:00
|
|
|
|
///
|
|
|
|
|
|
/// assert_eq!(&[104, 101, 108, 108, 111], s.as_bytes());
|
2014-07-27 12:40:39 +02:00
|
|
|
|
/// ```
|
2014-04-02 16:54:22 -07:00
|
|
|
|
#[inline]
|
2021-10-11 13:57:38 -04:00
|
|
|
|
#[must_use]
|
2015-01-23 21:48:20 -08:00
|
|
|
|
#[stable(feature = "rust1", since = "1.0.0")]
|
2015-02-05 13:48:20 -05:00
|
|
|
|
pub fn as_bytes(&self) -> &[u8] {
|
2015-02-01 21:53:25 -05:00
|
|
|
|
&self.vec
|
2014-04-02 16:54:22 -07:00
|
|
|
|
}
|
|
|
|
|
|
|
2015-12-01 16:07:53 -05:00
|
|
|
|
/// Shortens this `String` to the specified length.
|
2014-07-27 12:40:39 +02:00
|
|
|
|
///
|
2016-04-14 16:56:59 -07:00
|
|
|
|
/// If `new_len` is greater than the string's current length, this has no
|
|
|
|
|
|
/// effect.
|
|
|
|
|
|
///
|
2017-02-11 20:29:29 +11:00
|
|
|
|
/// Note that this method has no effect on the allocated capacity
|
|
|
|
|
|
/// of the string
|
|
|
|
|
|
///
|
2014-11-12 03:36:09 +09:00
|
|
|
|
/// # Panics
|
2014-07-27 12:40:39 +02:00
|
|
|
|
///
|
2016-04-14 16:56:59 -07:00
|
|
|
|
/// Panics if `new_len` does not lie on a [`char`] boundary.
|
2015-12-01 16:07:53 -05:00
|
|
|
|
///
|
2014-12-08 23:28:07 -06:00
|
|
|
|
/// # Examples
|
2014-07-27 12:40:39 +02:00
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
2015-05-19 03:33:17 +02:00
|
|
|
|
/// let mut s = String::from("hello");
|
2015-12-01 16:07:53 -05:00
|
|
|
|
///
|
2014-07-27 12:40:39 +02:00
|
|
|
|
/// s.truncate(2);
|
2015-12-01 16:07:53 -05:00
|
|
|
|
///
|
|
|
|
|
|
/// assert_eq!("he", s);
|
2014-07-27 12:40:39 +02:00
|
|
|
|
/// ```
|
2014-04-02 16:54:22 -07:00
|
|
|
|
#[inline]
|
2015-01-23 21:48:20 -08:00
|
|
|
|
#[stable(feature = "rust1", since = "1.0.0")]
|
2015-02-04 21:17:19 -05:00
|
|
|
|
pub fn truncate(&mut self, new_len: usize) {
|
2016-04-14 16:56:59 -07:00
|
|
|
|
if new_len <= self.len() {
|
|
|
|
|
|
assert!(self.is_char_boundary(new_len));
|
|
|
|
|
|
self.vec.truncate(new_len)
|
|
|
|
|
|
}
|
2014-04-02 16:54:22 -07:00
|
|
|
|
}
|
|
|
|
|
|
|
2014-07-27 12:40:39 +02:00
|
|
|
|
/// Removes the last character from the string buffer and returns it.
|
2015-12-01 16:07:53 -05:00
|
|
|
|
///
|
2017-08-18 17:17:46 +02:00
|
|
|
|
/// Returns [`None`] if this `String` is empty.
|
|
|
|
|
|
///
|
2014-12-08 23:28:07 -06:00
|
|
|
|
/// # Examples
|
2014-07-27 12:40:39 +02:00
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
2023-07-21 23:40:55 +02:00
|
|
|
|
/// let mut s = String::from("abč");
|
2015-12-01 16:07:53 -05:00
|
|
|
|
///
|
2023-07-21 23:40:55 +02:00
|
|
|
|
/// assert_eq!(s.pop(), Some('č'));
|
|
|
|
|
|
/// assert_eq!(s.pop(), Some('b'));
|
|
|
|
|
|
/// assert_eq!(s.pop(), Some('a'));
|
2015-12-01 16:07:53 -05:00
|
|
|
|
///
|
collections: Stabilize String
# Rationale
When dealing with strings, many functions deal with either a `char` (unicode
codepoint) or a byte (utf-8 encoding related). There is often an inconsistent
way in which methods are referred to as to whether they contain "byte", "char",
or nothing in their name. There are also issues open to rename *all* methods to
reflect that they operate on utf8 encodings or bytes (e.g. utf8_len() or
byte_len()).
The current state of String seems to largely be what is desired, so this PR
proposes the following rationale for methods dealing with bytes or characters:
> When constructing a string, the input encoding *must* be mentioned (e.g.
> from_utf8). This makes it clear what exactly the input type is expected to be
> in terms of encoding.
>
> When a method operates on anything related to an *index* within the string
> such as length, capacity, position, etc, the method *implicitly* operates on
> bytes. It is an understood fact that String is a utf-8 encoded string, and
> burdening all methods with "bytes" would be redundant.
>
> When a method operates on the *contents* of a string, such as push() or pop(),
> then "char" is the default type. A String can loosely be thought of as being a
> collection of unicode codepoints, but not all collection-related operations
> make sense because some can be woefully inefficient.
# Method stabilization
The following methods have been marked #[stable]
* The String type itself
* String::new
* String::with_capacity
* String::from_utf16_lossy
* String::into_bytes
* String::as_bytes
* String::len
* String::clear
* String::as_slice
The following methods have been marked #[unstable]
* String::from_utf8 - The error type in the returned `Result` may change to
provide a nicer message when it's `unwrap()`'d
* String::from_utf8_lossy - The returned `MaybeOwned` type still needs
stabilization
* String::from_utf16 - The return type may change to become a `Result` which
includes more contextual information like where the error
occurred.
* String::from_chars - This is equivalent to iter().collect(), but currently not
as ergonomic.
* String::from_char - This method is the equivalent of Vec::from_elem, and has
been marked #[unstable] becuase it can be seen as a
duplicate of iterator-based functionality as well as
possibly being renamed.
* String::push_str - This *can* be emulated with .extend(foo.chars()), but is
less efficient because of decoding/encoding. Due to the
desire to minimize API surface this may be able to be
removed in the future for something possibly generic with
no loss in performance.
* String::grow - This is a duplicate of iterator-based functionality, which may
become more ergonomic in the future.
* String::capacity - This function was just added.
* String::push - This function was just added.
* String::pop - This function was just added.
* String::truncate - The failure conventions around String methods and byte
indices isn't totally clear at this time, so the failure
semantics and return value of this method are subject to
change.
* String::as_mut_vec - the naming of this method may change.
* string::raw::* - these functions are all waiting on [an RFC][2]
[2]: https://github.com/rust-lang/rfcs/pull/240
The following method have been marked #[experimental]
* String::from_str - This function only exists as it's more efficient than
to_string(), but having a less ergonomic function for
performance reasons isn't the greatest reason to keep it
around. Like Vec::push_all, this has been marked
experimental for now.
The following methods have been #[deprecated]
* String::append - This method has been deprecated to remain consistent with the
deprecation of Vec::append. While convenient, it is one of
the only functional-style apis on String, and requires more
though as to whether it belongs as a first-class method or
now (and how it relates to other collections).
* String::from_byte - This is fairly rare functionality and can be emulated with
str::from_utf8 plus an assert plus a call to to_string().
Additionally, String::from_char could possibly be used.
* String::byte_capacity - Renamed to String::capacity due to the rationale
above.
* String::push_char - Renamed to String::push due to the rationale above.
* String::pop_char - Renamed to String::pop due to the rationale above.
* String::push_bytes - There are a number of `unsafe` functions on the `String`
type which allow bypassing utf-8 checks. These have all
been deprecated in favor of calling `.as_mut_vec()` and
then operating directly on the vector returned. These
methods were deprecated because naming them with relation
to other methods was difficult to rationalize and it's
arguably more composable to call .as_mut_vec().
* String::as_mut_bytes - See push_bytes
* String::push_byte - See push_bytes
* String::pop_byte - See push_bytes
* String::shift_byte - See push_bytes
# Reservation methods
This commit does not yet touch the methods for reserving bytes. The methods on
Vec have also not yet been modified. These methods are discussed in the upcoming
[Collections reform RFC][1]
[1]: https://github.com/aturon/rfcs/blob/collections-conventions/active/0000-collections-conventions.md#implicit-growth
2014-09-22 07:12:10 -07:00
|
|
|
|
/// assert_eq!(s.pop(), None);
|
2014-07-27 12:40:39 +02:00
|
|
|
|
/// ```
|
2014-05-08 21:42:40 +01:00
|
|
|
|
#[inline]
|
2015-01-23 21:48:20 -08:00
|
|
|
|
#[stable(feature = "rust1", since = "1.0.0")]
|
collections: Stabilize String
# Rationale
When dealing with strings, many functions deal with either a `char` (unicode
codepoint) or a byte (utf-8 encoding related). There is often an inconsistent
way in which methods are referred to as to whether they contain "byte", "char",
or nothing in their name. There are also issues open to rename *all* methods to
reflect that they operate on utf8 encodings or bytes (e.g. utf8_len() or
byte_len()).
The current state of String seems to largely be what is desired, so this PR
proposes the following rationale for methods dealing with bytes or characters:
> When constructing a string, the input encoding *must* be mentioned (e.g.
> from_utf8). This makes it clear what exactly the input type is expected to be
> in terms of encoding.
>
> When a method operates on anything related to an *index* within the string
> such as length, capacity, position, etc, the method *implicitly* operates on
> bytes. It is an understood fact that String is a utf-8 encoded string, and
> burdening all methods with "bytes" would be redundant.
>
> When a method operates on the *contents* of a string, such as push() or pop(),
> then "char" is the default type. A String can loosely be thought of as being a
> collection of unicode codepoints, but not all collection-related operations
> make sense because some can be woefully inefficient.
# Method stabilization
The following methods have been marked #[stable]
* The String type itself
* String::new
* String::with_capacity
* String::from_utf16_lossy
* String::into_bytes
* String::as_bytes
* String::len
* String::clear
* String::as_slice
The following methods have been marked #[unstable]
* String::from_utf8 - The error type in the returned `Result` may change to
provide a nicer message when it's `unwrap()`'d
* String::from_utf8_lossy - The returned `MaybeOwned` type still needs
stabilization
* String::from_utf16 - The return type may change to become a `Result` which
includes more contextual information like where the error
occurred.
* String::from_chars - This is equivalent to iter().collect(), but currently not
as ergonomic.
* String::from_char - This method is the equivalent of Vec::from_elem, and has
been marked #[unstable] becuase it can be seen as a
duplicate of iterator-based functionality as well as
possibly being renamed.
* String::push_str - This *can* be emulated with .extend(foo.chars()), but is
less efficient because of decoding/encoding. Due to the
desire to minimize API surface this may be able to be
removed in the future for something possibly generic with
no loss in performance.
* String::grow - This is a duplicate of iterator-based functionality, which may
become more ergonomic in the future.
* String::capacity - This function was just added.
* String::push - This function was just added.
* String::pop - This function was just added.
* String::truncate - The failure conventions around String methods and byte
indices isn't totally clear at this time, so the failure
semantics and return value of this method are subject to
change.
* String::as_mut_vec - the naming of this method may change.
* string::raw::* - these functions are all waiting on [an RFC][2]
[2]: https://github.com/rust-lang/rfcs/pull/240
The following method have been marked #[experimental]
* String::from_str - This function only exists as it's more efficient than
to_string(), but having a less ergonomic function for
performance reasons isn't the greatest reason to keep it
around. Like Vec::push_all, this has been marked
experimental for now.
The following methods have been #[deprecated]
* String::append - This method has been deprecated to remain consistent with the
deprecation of Vec::append. While convenient, it is one of
the only functional-style apis on String, and requires more
though as to whether it belongs as a first-class method or
now (and how it relates to other collections).
* String::from_byte - This is fairly rare functionality and can be emulated with
str::from_utf8 plus an assert plus a call to to_string().
Additionally, String::from_char could possibly be used.
* String::byte_capacity - Renamed to String::capacity due to the rationale
above.
* String::push_char - Renamed to String::push due to the rationale above.
* String::pop_char - Renamed to String::pop due to the rationale above.
* String::push_bytes - There are a number of `unsafe` functions on the `String`
type which allow bypassing utf-8 checks. These have all
been deprecated in favor of calling `.as_mut_vec()` and
then operating directly on the vector returned. These
methods were deprecated because naming them with relation
to other methods was difficult to rationalize and it's
arguably more composable to call .as_mut_vec().
* String::as_mut_bytes - See push_bytes
* String::push_byte - See push_bytes
* String::pop_byte - See push_bytes
* String::shift_byte - See push_bytes
# Reservation methods
This commit does not yet touch the methods for reserving bytes. The methods on
Vec have also not yet been modified. These methods are discussed in the upcoming
[Collections reform RFC][1]
[1]: https://github.com/aturon/rfcs/blob/collections-conventions/active/0000-collections-conventions.md#implicit-growth
2014-09-22 07:12:10 -07:00
|
|
|
|
pub fn pop(&mut self) -> Option<char> {
|
2017-12-08 17:32:04 -08:00
|
|
|
|
let ch = self.chars().rev().next()?;
|
2016-04-07 10:42:53 -07:00
|
|
|
|
let newlen = self.len() - ch.len_utf8();
|
2014-05-08 21:42:40 +01:00
|
|
|
|
unsafe {
|
2016-04-07 10:42:53 -07:00
|
|
|
|
self.vec.set_len(newlen);
|
2014-05-08 21:42:40 +01:00
|
|
|
|
}
|
|
|
|
|
|
Some(ch)
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2017-08-18 17:17:46 +02:00
|
|
|
|
/// Removes a [`char`] from this `String` at a byte position and returns it.
|
2014-05-08 21:42:40 +01:00
|
|
|
|
///
|
2020-07-03 12:13:01 -07:00
|
|
|
|
/// This is an *O*(*n*) operation, as it requires copying every element in the
|
2014-09-22 08:24:14 -07:00
|
|
|
|
/// buffer.
|
|
|
|
|
|
///
|
2014-10-09 15:17:22 -04:00
|
|
|
|
/// # Panics
|
2014-09-22 08:24:14 -07:00
|
|
|
|
///
|
2016-01-02 22:36:50 +01:00
|
|
|
|
/// Panics if `idx` is larger than or equal to the `String`'s length,
|
|
|
|
|
|
/// or if it does not lie on a [`char`] boundary.
|
2015-12-01 16:07:53 -05:00
|
|
|
|
///
|
2014-12-08 23:28:07 -06:00
|
|
|
|
/// # Examples
|
2014-07-27 12:40:39 +02:00
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
2023-07-21 23:40:55 +02:00
|
|
|
|
/// let mut s = String::from("abç");
|
2015-12-01 16:07:53 -05:00
|
|
|
|
///
|
2023-07-21 23:40:55 +02:00
|
|
|
|
/// assert_eq!(s.remove(0), 'a');
|
|
|
|
|
|
/// assert_eq!(s.remove(1), 'ç');
|
|
|
|
|
|
/// assert_eq!(s.remove(0), 'b');
|
2014-07-27 12:40:39 +02:00
|
|
|
|
/// ```
|
2015-01-10 11:07:14 +01:00
|
|
|
|
#[inline]
|
2015-01-23 21:48:20 -08:00
|
|
|
|
#[stable(feature = "rust1", since = "1.0.0")]
|
2024-02-07 02:35:49 +00:00
|
|
|
|
#[rustc_confusables("delete", "take")]
|
2015-02-04 21:17:19 -05:00
|
|
|
|
pub fn remove(&mut self, idx: usize) -> char {
|
2016-04-07 10:42:53 -07:00
|
|
|
|
let ch = match self[idx..].chars().next() {
|
|
|
|
|
|
Some(ch) => ch,
|
|
|
|
|
|
None => panic!("cannot remove a char from the end of a string"),
|
|
|
|
|
|
};
|
2014-04-02 16:54:22 -07:00
|
|
|
|
|
2015-03-10 16:29:02 -07:00
|
|
|
|
let next = idx + ch.len_utf8();
|
2016-04-07 10:42:53 -07:00
|
|
|
|
let len = self.len();
|
2014-05-08 21:42:40 +01:00
|
|
|
|
unsafe {
|
2018-08-19 22:16:22 -04:00
|
|
|
|
ptr::copy(self.vec.as_ptr().add(next), self.vec.as_mut_ptr().add(idx), len - next);
|
2014-09-22 08:24:14 -07:00
|
|
|
|
self.vec.set_len(len - (next - idx));
|
2014-05-08 21:42:40 +01:00
|
|
|
|
}
|
2014-12-28 10:29:56 -08:00
|
|
|
|
ch
|
2014-04-02 16:54:22 -07:00
|
|
|
|
}
|
2014-04-12 22:44:31 +10:00
|
|
|
|
|
2021-03-05 11:27:58 -05:00
|
|
|
|
/// Remove all matches of pattern `pat` in the `String`.
|
|
|
|
|
|
///
|
|
|
|
|
|
/// # Examples
|
|
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
/// #![feature(string_remove_matches)]
|
|
|
|
|
|
/// let mut s = String::from("Trees are not green, the sky is not blue.");
|
|
|
|
|
|
/// s.remove_matches("not ");
|
|
|
|
|
|
/// assert_eq!("Trees are green, the sky is blue.", s);
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
///
|
|
|
|
|
|
/// Matches will be detected and removed iteratively, so in cases where
|
|
|
|
|
|
/// patterns overlap, only the first pattern will be removed:
|
|
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
/// #![feature(string_remove_matches)]
|
|
|
|
|
|
/// let mut s = String::from("banana");
|
|
|
|
|
|
/// s.remove_matches("ana");
|
|
|
|
|
|
/// assert_eq!("bna", s);
|
|
|
|
|
|
/// ```
|
alloc: Add unstable Cfg feature `no-global_oom_handling`
For certain sorts of systems, programming, it's deemed essential that
all allocation failures be explicitly handled where they occur. For
example, see Linus Torvald's opinion in [1]. Merely not calling global
panic handlers, or always `try_reserving` first (for vectors), is not
deemed good enough, because the mere presence of the global OOM handlers
is burdens static analysis.
One option for these projects to use rust would just be to skip `alloc`,
rolling their own allocation abstractions. But this would, in my
opinion be a real shame. `alloc` has a few `try_*` methods already, and
we could easily have more. Features like custom allocator support also
demonstrate and existing to support diverse use-cases with the same
abstractions.
A natural way to add such a feature flag would a Cargo feature, but
there are currently uncertainties around how std library crate's Cargo
features may or not be stable, so to avoid any risk of stabilizing by
mistake we are going with a more low-level "raw cfg" token, which
cannot be interacted with via Cargo alone.
Note also that since there is no notion of "default cfg tokens" outside
of Cargo features, we have to invert the condition from
`global_oom_handling` to to `not(no_global_oom_handling)`. This breaks
the monotonicity that would be important for a Cargo feature (i.e.
turning on more features should never break compatibility), but it
doesn't matter for raw cfg tokens which are not intended to be
"constraint solved" by Cargo or anything else.
To support this use-case we create a new feature, "global-oom-handling",
on by default, and put the global OOM handler infra and everything else
it that depends on it behind it. By default, nothing is changed, but
users concerned about global handling can make sure it is disabled, and
be confident that all OOM handling is local and explicit.
For this first iteration, non-flat collections are outright disabled.
`Vec` and `String` don't yet have `try_*` allocation methods, but are
kept anyways since they can be oom-safely created "from parts", and we
hope to add those `try_` methods in the future.
[1]: https://lore.kernel.org/lkml/CAHk-=wh_sNLoz84AUUzuqXEsYH35u=8HV3vK-jbRbJ_B-JjGrg@mail.gmail.com/
2021-04-16 20:18:04 -04:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
2021-03-05 11:27:58 -05:00
|
|
|
|
#[unstable(feature = "string_remove_matches", reason = "new API", issue = "72826")]
|
|
|
|
|
|
pub fn remove_matches<'a, P>(&'a mut self, pat: P)
|
|
|
|
|
|
where
|
|
|
|
|
|
P: for<'x> Pattern<'x>,
|
|
|
|
|
|
{
|
|
|
|
|
|
use core::str::pattern::Searcher;
|
|
|
|
|
|
|
2021-03-26 10:39:42 -04:00
|
|
|
|
let rejections = {
|
2021-03-05 11:27:58 -05:00
|
|
|
|
let mut searcher = pat.into_searcher(self);
|
2021-03-26 10:39:42 -04:00
|
|
|
|
// Per Searcher::next:
|
|
|
|
|
|
//
|
|
|
|
|
|
// A Match result needs to contain the whole matched pattern,
|
|
|
|
|
|
// however Reject results may be split up into arbitrary many
|
|
|
|
|
|
// adjacent fragments. Both ranges may have zero length.
|
|
|
|
|
|
//
|
|
|
|
|
|
// In practice the implementation of Searcher::next_match tends to
|
|
|
|
|
|
// be more efficient, so we use it here and do some work to invert
|
|
|
|
|
|
// matches into rejections since that's what we want to copy below.
|
|
|
|
|
|
let mut front = 0;
|
|
|
|
|
|
let rejections: Vec<_> = from_fn(|| {
|
|
|
|
|
|
let (start, end) = searcher.next_match()?;
|
|
|
|
|
|
let prev_front = front;
|
|
|
|
|
|
front = end;
|
|
|
|
|
|
Some((prev_front, start))
|
|
|
|
|
|
})
|
|
|
|
|
|
.collect();
|
|
|
|
|
|
rejections.into_iter().chain(core::iter::once((front, self.len())))
|
2021-03-05 11:27:58 -05:00
|
|
|
|
};
|
|
|
|
|
|
|
2021-03-26 10:39:42 -04:00
|
|
|
|
let mut len = 0;
|
|
|
|
|
|
let ptr = self.vec.as_mut_ptr();
|
2021-03-05 11:27:58 -05:00
|
|
|
|
|
2021-03-26 10:39:42 -04:00
|
|
|
|
for (start, end) in rejections {
|
|
|
|
|
|
let count = end - start;
|
|
|
|
|
|
if start != len {
|
|
|
|
|
|
// SAFETY: per Searcher::next:
|
|
|
|
|
|
//
|
|
|
|
|
|
// The stream of Match and Reject values up to a Done will
|
|
|
|
|
|
// contain index ranges that are adjacent, non-overlapping,
|
|
|
|
|
|
// covering the whole haystack, and laying on utf8
|
|
|
|
|
|
// boundaries.
|
|
|
|
|
|
unsafe {
|
|
|
|
|
|
ptr::copy(ptr.add(start), ptr.add(len), count);
|
|
|
|
|
|
}
|
2021-03-05 11:27:58 -05:00
|
|
|
|
}
|
2021-03-26 10:39:42 -04:00
|
|
|
|
len += count;
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
unsafe {
|
|
|
|
|
|
self.vec.set_len(len);
|
2021-03-05 11:27:58 -05:00
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2017-07-26 15:09:32 -07:00
|
|
|
|
/// Retains only the characters specified by the predicate.
|
|
|
|
|
|
///
|
|
|
|
|
|
/// In other words, remove all characters `c` such that `f(c)` returns `false`.
|
2019-04-29 18:32:05 -07:00
|
|
|
|
/// This method operates in place, visiting each character exactly once in the
|
|
|
|
|
|
/// original order, and preserves the order of the retained characters.
|
2017-07-26 15:09:32 -07:00
|
|
|
|
///
|
|
|
|
|
|
/// # Examples
|
|
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
/// let mut s = String::from("f_o_ob_ar");
|
|
|
|
|
|
///
|
|
|
|
|
|
/// s.retain(|c| c != '_');
|
|
|
|
|
|
///
|
|
|
|
|
|
/// assert_eq!(s, "foobar");
|
|
|
|
|
|
/// ```
|
2019-05-10 18:01:50 -07:00
|
|
|
|
///
|
2021-07-28 16:35:59 -07:00
|
|
|
|
/// Because the elements are visited exactly once in the original order,
|
|
|
|
|
|
/// external state may be used to decide which elements to keep.
|
2019-05-10 18:01:50 -07:00
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
/// let mut s = String::from("abcde");
|
|
|
|
|
|
/// let keep = [false, true, true, false, true];
|
2021-07-28 16:35:59 -07:00
|
|
|
|
/// let mut iter = keep.iter();
|
|
|
|
|
|
/// s.retain(|_| *iter.next().unwrap());
|
2019-05-10 18:01:50 -07:00
|
|
|
|
/// assert_eq!(s, "bce");
|
|
|
|
|
|
/// ```
|
2017-07-26 15:09:32 -07:00
|
|
|
|
#[inline]
|
2018-03-21 10:47:03 -07:00
|
|
|
|
#[stable(feature = "string_retain", since = "1.26.0")]
|
2017-07-26 15:09:32 -07:00
|
|
|
|
pub fn retain<F>(&mut self, mut f: F)
|
|
|
|
|
|
where
|
|
|
|
|
|
F: FnMut(char) -> bool,
|
|
|
|
|
|
{
|
2021-02-26 15:44:35 +01:00
|
|
|
|
struct SetLenOnDrop<'a> {
|
|
|
|
|
|
s: &'a mut String,
|
|
|
|
|
|
idx: usize,
|
|
|
|
|
|
del_bytes: usize,
|
|
|
|
|
|
}
|
2017-07-26 15:09:32 -07:00
|
|
|
|
|
2021-02-26 15:44:35 +01:00
|
|
|
|
impl<'a> Drop for SetLenOnDrop<'a> {
|
|
|
|
|
|
fn drop(&mut self) {
|
|
|
|
|
|
let new_len = self.idx - self.del_bytes;
|
|
|
|
|
|
debug_assert!(new_len <= self.s.len());
|
|
|
|
|
|
unsafe { self.s.vec.set_len(new_len) };
|
|
|
|
|
|
}
|
2020-10-28 18:52:45 +01:00
|
|
|
|
}
|
|
|
|
|
|
|
2021-02-26 15:44:35 +01:00
|
|
|
|
let len = self.len();
|
|
|
|
|
|
let mut guard = SetLenOnDrop { s: self, idx: 0, del_bytes: 0 };
|
|
|
|
|
|
|
|
|
|
|
|
while guard.idx < len {
|
2022-05-01 19:25:14 +02:00
|
|
|
|
let ch =
|
|
|
|
|
|
// SAFETY: `guard.idx` is positive-or-zero and less that len so the `get_unchecked`
|
|
|
|
|
|
// is in bound. `self` is valid UTF-8 like string and the returned slice starts at
|
|
|
|
|
|
// a unicode code point so the `Chars` always return one character.
|
|
|
|
|
|
unsafe { guard.s.get_unchecked(guard.idx..len).chars().next().unwrap_unchecked() };
|
2017-07-26 15:09:32 -07:00
|
|
|
|
let ch_len = ch.len_utf8();
|
|
|
|
|
|
|
|
|
|
|
|
if !f(ch) {
|
2021-02-26 15:44:35 +01:00
|
|
|
|
guard.del_bytes += ch_len;
|
|
|
|
|
|
} else if guard.del_bytes > 0 {
|
2022-05-01 19:25:14 +02:00
|
|
|
|
// SAFETY: `guard.idx` is in bound and `guard.del_bytes` represent the number of
|
|
|
|
|
|
// bytes that are erased from the string so the resulting `guard.idx -
|
|
|
|
|
|
// guard.del_bytes` always represent a valid unicode code point.
|
|
|
|
|
|
//
|
|
|
|
|
|
// `guard.del_bytes` >= `ch.len_utf8()`, so taking a slice with `ch.len_utf8()` len
|
|
|
|
|
|
// is safe.
|
|
|
|
|
|
ch.encode_utf8(unsafe {
|
|
|
|
|
|
crate::slice::from_raw_parts_mut(
|
|
|
|
|
|
guard.s.as_mut_ptr().add(guard.idx - guard.del_bytes),
|
|
|
|
|
|
ch.len_utf8(),
|
|
|
|
|
|
)
|
|
|
|
|
|
});
|
2017-07-26 15:09:32 -07:00
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
// Point idx to the next char
|
2021-02-26 15:44:35 +01:00
|
|
|
|
guard.idx += ch_len;
|
2017-07-26 15:09:32 -07:00
|
|
|
|
}
|
|
|
|
|
|
|
2021-02-26 15:44:35 +01:00
|
|
|
|
drop(guard);
|
2017-07-26 15:09:32 -07:00
|
|
|
|
}
|
|
|
|
|
|
|
2015-12-01 16:07:53 -05:00
|
|
|
|
/// Inserts a character into this `String` at a byte position.
|
2014-09-22 08:24:14 -07:00
|
|
|
|
///
|
2020-07-03 12:13:01 -07:00
|
|
|
|
/// This is an *O*(*n*) operation as it requires copying every element in the
|
2014-09-22 08:24:14 -07:00
|
|
|
|
/// buffer.
|
|
|
|
|
|
///
|
2014-10-09 15:17:22 -04:00
|
|
|
|
/// # Panics
|
2014-09-22 08:24:14 -07:00
|
|
|
|
///
|
2015-12-01 16:07:53 -05:00
|
|
|
|
/// Panics if `idx` is larger than the `String`'s length, or if it does not
|
|
|
|
|
|
/// lie on a [`char`] boundary.
|
|
|
|
|
|
///
|
|
|
|
|
|
/// # Examples
|
|
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
/// let mut s = String::with_capacity(3);
|
|
|
|
|
|
///
|
|
|
|
|
|
/// s.insert(0, 'f');
|
|
|
|
|
|
/// s.insert(1, 'o');
|
|
|
|
|
|
/// s.insert(2, 'o');
|
|
|
|
|
|
///
|
|
|
|
|
|
/// assert_eq!("foo", s);
|
|
|
|
|
|
/// ```
|
alloc: Add unstable Cfg feature `no-global_oom_handling`
For certain sorts of systems, programming, it's deemed essential that
all allocation failures be explicitly handled where they occur. For
example, see Linus Torvald's opinion in [1]. Merely not calling global
panic handlers, or always `try_reserving` first (for vectors), is not
deemed good enough, because the mere presence of the global OOM handlers
is burdens static analysis.
One option for these projects to use rust would just be to skip `alloc`,
rolling their own allocation abstractions. But this would, in my
opinion be a real shame. `alloc` has a few `try_*` methods already, and
we could easily have more. Features like custom allocator support also
demonstrate and existing to support diverse use-cases with the same
abstractions.
A natural way to add such a feature flag would a Cargo feature, but
there are currently uncertainties around how std library crate's Cargo
features may or not be stable, so to avoid any risk of stabilizing by
mistake we are going with a more low-level "raw cfg" token, which
cannot be interacted with via Cargo alone.
Note also that since there is no notion of "default cfg tokens" outside
of Cargo features, we have to invert the condition from
`global_oom_handling` to to `not(no_global_oom_handling)`. This breaks
the monotonicity that would be important for a Cargo feature (i.e.
turning on more features should never break compatibility), but it
doesn't matter for raw cfg tokens which are not intended to be
"constraint solved" by Cargo or anything else.
To support this use-case we create a new feature, "global-oom-handling",
on by default, and put the global OOM handler infra and everything else
it that depends on it behind it. By default, nothing is changed, but
users concerned about global handling can make sure it is disabled, and
be confident that all OOM handling is local and explicit.
For this first iteration, non-flat collections are outright disabled.
`Vec` and `String` don't yet have `try_*` allocation methods, but are
kept anyways since they can be oom-safely created "from parts", and we
hope to add those `try_` methods in the future.
[1]: https://lore.kernel.org/lkml/CAHk-=wh_sNLoz84AUUzuqXEsYH35u=8HV3vK-jbRbJ_B-JjGrg@mail.gmail.com/
2021-04-16 20:18:04 -04:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
2015-01-10 11:07:14 +01:00
|
|
|
|
#[inline]
|
2015-01-23 21:48:20 -08:00
|
|
|
|
#[stable(feature = "rust1", since = "1.0.0")]
|
2024-02-07 02:35:49 +00:00
|
|
|
|
#[rustc_confusables("set")]
|
2015-02-04 21:17:19 -05:00
|
|
|
|
pub fn insert(&mut self, idx: usize, ch: char) {
|
2014-11-27 11:45:50 -05:00
|
|
|
|
assert!(self.is_char_boundary(idx));
|
2016-09-08 13:54:39 +02:00
|
|
|
|
let mut bits = [0; 4];
|
|
|
|
|
|
let bits = ch.encode_utf8(&mut bits).as_bytes();
|
2016-07-11 15:06:28 -07:00
|
|
|
|
|
|
|
|
|
|
unsafe {
|
2016-09-08 13:54:39 +02:00
|
|
|
|
self.insert_bytes(idx, bits);
|
2016-07-11 15:06:28 -07:00
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
alloc: Add unstable Cfg feature `no-global_oom_handling`
For certain sorts of systems, programming, it's deemed essential that
all allocation failures be explicitly handled where they occur. For
example, see Linus Torvald's opinion in [1]. Merely not calling global
panic handlers, or always `try_reserving` first (for vectors), is not
deemed good enough, because the mere presence of the global OOM handlers
is burdens static analysis.
One option for these projects to use rust would just be to skip `alloc`,
rolling their own allocation abstractions. But this would, in my
opinion be a real shame. `alloc` has a few `try_*` methods already, and
we could easily have more. Features like custom allocator support also
demonstrate and existing to support diverse use-cases with the same
abstractions.
A natural way to add such a feature flag would a Cargo feature, but
there are currently uncertainties around how std library crate's Cargo
features may or not be stable, so to avoid any risk of stabilizing by
mistake we are going with a more low-level "raw cfg" token, which
cannot be interacted with via Cargo alone.
Note also that since there is no notion of "default cfg tokens" outside
of Cargo features, we have to invert the condition from
`global_oom_handling` to to `not(no_global_oom_handling)`. This breaks
the monotonicity that would be important for a Cargo feature (i.e.
turning on more features should never break compatibility), but it
doesn't matter for raw cfg tokens which are not intended to be
"constraint solved" by Cargo or anything else.
To support this use-case we create a new feature, "global-oom-handling",
on by default, and put the global OOM handler infra and everything else
it that depends on it behind it. By default, nothing is changed, but
users concerned about global handling can make sure it is disabled, and
be confident that all OOM handling is local and explicit.
For this first iteration, non-flat collections are outright disabled.
`Vec` and `String` don't yet have `try_*` allocation methods, but are
kept anyways since they can be oom-safely created "from parts", and we
hope to add those `try_` methods in the future.
[1]: https://lore.kernel.org/lkml/CAHk-=wh_sNLoz84AUUzuqXEsYH35u=8HV3vK-jbRbJ_B-JjGrg@mail.gmail.com/
2021-04-16 20:18:04 -04:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
2016-07-11 15:06:28 -07:00
|
|
|
|
unsafe fn insert_bytes(&mut self, idx: usize, bytes: &[u8]) {
|
|
|
|
|
|
let len = self.len();
|
|
|
|
|
|
let amt = bytes.len();
|
2016-03-11 11:01:46 -08:00
|
|
|
|
self.vec.reserve(amt);
|
2014-09-22 08:24:14 -07:00
|
|
|
|
|
2020-05-28 23:27:00 +02:00
|
|
|
|
unsafe {
|
|
|
|
|
|
ptr::copy(self.vec.as_ptr().add(idx), self.vec.as_mut_ptr().add(idx + amt), len - idx);
|
2021-06-18 15:14:22 +02:00
|
|
|
|
ptr::copy_nonoverlapping(bytes.as_ptr(), self.vec.as_mut_ptr().add(idx), amt);
|
2020-05-28 23:27:00 +02:00
|
|
|
|
self.vec.set_len(len + amt);
|
|
|
|
|
|
}
|
2016-07-11 15:06:28 -07:00
|
|
|
|
}
|
|
|
|
|
|
|
2016-08-11 20:41:04 +02:00
|
|
|
|
/// Inserts a string slice into this `String` at a byte position.
|
2016-07-11 15:06:28 -07:00
|
|
|
|
///
|
2020-07-03 12:13:01 -07:00
|
|
|
|
/// This is an *O*(*n*) operation as it requires copying every element in the
|
2016-07-11 15:06:28 -07:00
|
|
|
|
/// buffer.
|
|
|
|
|
|
///
|
|
|
|
|
|
/// # Panics
|
|
|
|
|
|
///
|
|
|
|
|
|
/// Panics if `idx` is larger than the `String`'s length, or if it does not
|
|
|
|
|
|
/// lie on a [`char`] boundary.
|
|
|
|
|
|
///
|
|
|
|
|
|
/// # Examples
|
|
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
/// let mut s = String::from("bar");
|
|
|
|
|
|
///
|
|
|
|
|
|
/// s.insert_str(0, "foo");
|
|
|
|
|
|
///
|
|
|
|
|
|
/// assert_eq!("foobar", s);
|
|
|
|
|
|
/// ```
|
alloc: Add unstable Cfg feature `no-global_oom_handling`
For certain sorts of systems, programming, it's deemed essential that
all allocation failures be explicitly handled where they occur. For
example, see Linus Torvald's opinion in [1]. Merely not calling global
panic handlers, or always `try_reserving` first (for vectors), is not
deemed good enough, because the mere presence of the global OOM handlers
is burdens static analysis.
One option for these projects to use rust would just be to skip `alloc`,
rolling their own allocation abstractions. But this would, in my
opinion be a real shame. `alloc` has a few `try_*` methods already, and
we could easily have more. Features like custom allocator support also
demonstrate and existing to support diverse use-cases with the same
abstractions.
A natural way to add such a feature flag would a Cargo feature, but
there are currently uncertainties around how std library crate's Cargo
features may or not be stable, so to avoid any risk of stabilizing by
mistake we are going with a more low-level "raw cfg" token, which
cannot be interacted with via Cargo alone.
Note also that since there is no notion of "default cfg tokens" outside
of Cargo features, we have to invert the condition from
`global_oom_handling` to to `not(no_global_oom_handling)`. This breaks
the monotonicity that would be important for a Cargo feature (i.e.
turning on more features should never break compatibility), but it
doesn't matter for raw cfg tokens which are not intended to be
"constraint solved" by Cargo or anything else.
To support this use-case we create a new feature, "global-oom-handling",
on by default, and put the global OOM handler infra and everything else
it that depends on it behind it. By default, nothing is changed, but
users concerned about global handling can make sure it is disabled, and
be confident that all OOM handling is local and explicit.
For this first iteration, non-flat collections are outright disabled.
`Vec` and `String` don't yet have `try_*` allocation methods, but are
kept anyways since they can be oom-safely created "from parts", and we
hope to add those `try_` methods in the future.
[1]: https://lore.kernel.org/lkml/CAHk-=wh_sNLoz84AUUzuqXEsYH35u=8HV3vK-jbRbJ_B-JjGrg@mail.gmail.com/
2021-04-16 20:18:04 -04:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
2016-07-11 15:06:28 -07:00
|
|
|
|
#[inline]
|
2017-01-25 15:37:20 -08:00
|
|
|
|
#[stable(feature = "insert_str", since = "1.16.0")]
|
2016-07-11 15:06:28 -07:00
|
|
|
|
pub fn insert_str(&mut self, idx: usize, string: &str) {
|
|
|
|
|
|
assert!(self.is_char_boundary(idx));
|
|
|
|
|
|
|
2014-09-22 08:24:14 -07:00
|
|
|
|
unsafe {
|
2016-07-11 15:06:28 -07:00
|
|
|
|
self.insert_bytes(idx, string.as_bytes());
|
2014-09-22 08:24:14 -07:00
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2015-12-01 16:07:53 -05:00
|
|
|
|
/// Returns a mutable reference to the contents of this `String`.
|
2014-04-12 22:44:31 +10:00
|
|
|
|
///
|
2015-12-01 16:07:53 -05:00
|
|
|
|
/// # Safety
|
|
|
|
|
|
///
|
2021-10-25 18:42:22 -07:00
|
|
|
|
/// This function is unsafe because the returned `&mut Vec` allows writing
|
|
|
|
|
|
/// bytes which are not valid UTF-8. If this constraint is violated, using
|
|
|
|
|
|
/// the original `String` after dropping the `&mut Vec` may violate memory
|
|
|
|
|
|
/// safety, as the rest of the standard library assumes that `String`s are
|
|
|
|
|
|
/// valid UTF-8.
|
2014-07-27 12:40:39 +02:00
|
|
|
|
///
|
2014-12-08 23:28:07 -06:00
|
|
|
|
/// # Examples
|
2014-07-27 12:40:39 +02:00
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
2015-05-19 03:33:17 +02:00
|
|
|
|
/// let mut s = String::from("hello");
|
2015-12-01 16:07:53 -05:00
|
|
|
|
///
|
2014-07-27 12:40:39 +02:00
|
|
|
|
/// unsafe {
|
|
|
|
|
|
/// let vec = s.as_mut_vec();
|
2015-12-01 16:07:53 -05:00
|
|
|
|
/// assert_eq!(&[104, 101, 108, 108, 111][..], &vec[..]);
|
|
|
|
|
|
///
|
2014-07-27 12:40:39 +02:00
|
|
|
|
/// vec.reverse();
|
|
|
|
|
|
/// }
|
2015-03-07 22:30:12 -08:00
|
|
|
|
/// assert_eq!(s, "olleh");
|
2014-07-27 12:40:39 +02:00
|
|
|
|
/// ```
|
2015-01-10 11:07:14 +01:00
|
|
|
|
#[inline]
|
2015-01-23 21:48:20 -08:00
|
|
|
|
#[stable(feature = "rust1", since = "1.0.0")]
|
2015-02-05 13:48:20 -05:00
|
|
|
|
pub unsafe fn as_mut_vec(&mut self) -> &mut Vec<u8> {
|
2014-04-12 22:44:31 +10:00
|
|
|
|
&mut self.vec
|
|
|
|
|
|
}
|
2014-04-02 16:54:22 -07:00
|
|
|
|
|
2019-11-01 19:42:33 -07:00
|
|
|
|
/// Returns the length of this `String`, in bytes, not [`char`]s or
|
2021-07-23 19:14:28 -04:00
|
|
|
|
/// graphemes. In other words, it might not be what a human considers the
|
2019-11-01 19:42:33 -07:00
|
|
|
|
/// length of the string.
|
2014-10-30 13:43:24 -07:00
|
|
|
|
///
|
2014-12-08 23:28:07 -06:00
|
|
|
|
/// # Examples
|
2014-10-30 13:43:24 -07:00
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
2015-12-01 16:07:53 -05:00
|
|
|
|
/// let a = String::from("foo");
|
2014-10-30 13:43:24 -07:00
|
|
|
|
/// assert_eq!(a.len(), 3);
|
2019-11-01 19:42:33 -07:00
|
|
|
|
///
|
|
|
|
|
|
/// let fancy_f = String::from("ƒoo");
|
|
|
|
|
|
/// assert_eq!(fancy_f.len(), 4);
|
|
|
|
|
|
/// assert_eq!(fancy_f.chars().count(), 3);
|
2014-10-30 13:43:24 -07:00
|
|
|
|
/// ```
|
2014-04-02 16:54:22 -07:00
|
|
|
|
#[inline]
|
2021-10-11 16:15:50 -04:00
|
|
|
|
#[must_use]
|
2015-01-23 21:48:20 -08:00
|
|
|
|
#[stable(feature = "rust1", since = "1.0.0")]
|
2024-02-07 02:35:49 +00:00
|
|
|
|
#[rustc_confusables("length", "size")]
|
2015-11-24 11:23:48 +13:00
|
|
|
|
pub fn len(&self) -> usize {
|
|
|
|
|
|
self.vec.len()
|
|
|
|
|
|
}
|
2014-04-02 16:54:22 -07:00
|
|
|
|
|
2019-02-09 22:16:58 +00:00
|
|
|
|
/// Returns `true` if this `String` has a length of zero, and `false` otherwise.
|
2014-10-30 13:43:24 -07:00
|
|
|
|
///
|
2014-12-08 23:28:07 -06:00
|
|
|
|
/// # Examples
|
2014-10-30 13:43:24 -07:00
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
/// let mut v = String::new();
|
|
|
|
|
|
/// assert!(v.is_empty());
|
2015-12-01 16:07:53 -05:00
|
|
|
|
///
|
2014-10-30 13:43:24 -07:00
|
|
|
|
/// v.push('a');
|
|
|
|
|
|
/// assert!(!v.is_empty());
|
|
|
|
|
|
/// ```
|
2015-01-10 11:07:14 +01:00
|
|
|
|
#[inline]
|
2021-10-11 16:15:50 -04:00
|
|
|
|
#[must_use]
|
2015-01-23 21:48:20 -08:00
|
|
|
|
#[stable(feature = "rust1", since = "1.0.0")]
|
2015-11-24 11:23:48 +13:00
|
|
|
|
pub fn is_empty(&self) -> bool {
|
|
|
|
|
|
self.len() == 0
|
|
|
|
|
|
}
|
2014-10-30 13:43:24 -07:00
|
|
|
|
|
2020-12-09 13:17:54 -05:00
|
|
|
|
/// Splits the string into two at the given byte index.
|
2016-11-28 13:54:55 -05:00
|
|
|
|
///
|
2017-02-16 22:49:46 -08:00
|
|
|
|
/// Returns a newly allocated `String`. `self` contains bytes `[0, at)`, and
|
|
|
|
|
|
/// the returned `String` contains bytes `[at, len)`. `at` must be on the
|
|
|
|
|
|
/// boundary of a UTF-8 code point.
|
2016-11-28 13:54:55 -05:00
|
|
|
|
///
|
2017-02-16 22:49:46 -08:00
|
|
|
|
/// Note that the capacity of `self` does not change.
|
2016-11-28 13:54:55 -05:00
|
|
|
|
///
|
|
|
|
|
|
/// # Panics
|
|
|
|
|
|
///
|
2017-02-16 22:49:46 -08:00
|
|
|
|
/// Panics if `at` is not on a `UTF-8` code point boundary, or if it is beyond the last
|
2016-11-28 13:54:55 -05:00
|
|
|
|
/// code point of the string.
|
|
|
|
|
|
///
|
|
|
|
|
|
/// # Examples
|
|
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
/// # fn main() {
|
|
|
|
|
|
/// let mut hello = String::from("Hello, World!");
|
|
|
|
|
|
/// let world = hello.split_off(7);
|
|
|
|
|
|
/// assert_eq!(hello, "Hello, ");
|
|
|
|
|
|
/// assert_eq!(world, "World!");
|
|
|
|
|
|
/// # }
|
|
|
|
|
|
/// ```
|
alloc: Add unstable Cfg feature `no-global_oom_handling`
For certain sorts of systems, programming, it's deemed essential that
all allocation failures be explicitly handled where they occur. For
example, see Linus Torvald's opinion in [1]. Merely not calling global
panic handlers, or always `try_reserving` first (for vectors), is not
deemed good enough, because the mere presence of the global OOM handlers
is burdens static analysis.
One option for these projects to use rust would just be to skip `alloc`,
rolling their own allocation abstractions. But this would, in my
opinion be a real shame. `alloc` has a few `try_*` methods already, and
we could easily have more. Features like custom allocator support also
demonstrate and existing to support diverse use-cases with the same
abstractions.
A natural way to add such a feature flag would a Cargo feature, but
there are currently uncertainties around how std library crate's Cargo
features may or not be stable, so to avoid any risk of stabilizing by
mistake we are going with a more low-level "raw cfg" token, which
cannot be interacted with via Cargo alone.
Note also that since there is no notion of "default cfg tokens" outside
of Cargo features, we have to invert the condition from
`global_oom_handling` to to `not(no_global_oom_handling)`. This breaks
the monotonicity that would be important for a Cargo feature (i.e.
turning on more features should never break compatibility), but it
doesn't matter for raw cfg tokens which are not intended to be
"constraint solved" by Cargo or anything else.
To support this use-case we create a new feature, "global-oom-handling",
on by default, and put the global OOM handler infra and everything else
it that depends on it behind it. By default, nothing is changed, but
users concerned about global handling can make sure it is disabled, and
be confident that all OOM handling is local and explicit.
For this first iteration, non-flat collections are outright disabled.
`Vec` and `String` don't yet have `try_*` allocation methods, but are
kept anyways since they can be oom-safely created "from parts", and we
hope to add those `try_` methods in the future.
[1]: https://lore.kernel.org/lkml/CAHk-=wh_sNLoz84AUUzuqXEsYH35u=8HV3vK-jbRbJ_B-JjGrg@mail.gmail.com/
2021-04-16 20:18:04 -04:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
2016-11-28 13:54:55 -05:00
|
|
|
|
#[inline]
|
2017-01-25 15:37:20 -08:00
|
|
|
|
#[stable(feature = "string_split_off", since = "1.16.0")]
|
2020-03-24 13:33:35 +00:00
|
|
|
|
#[must_use = "use `.truncate()` if you don't need the other half"]
|
2017-02-16 22:49:46 -08:00
|
|
|
|
pub fn split_off(&mut self, at: usize) -> String {
|
|
|
|
|
|
assert!(self.is_char_boundary(at));
|
|
|
|
|
|
let other = self.vec.split_off(at);
|
2016-11-28 13:54:55 -05:00
|
|
|
|
unsafe { String::from_utf8_unchecked(other) }
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2015-12-01 16:07:53 -05:00
|
|
|
|
/// Truncates this `String`, removing all contents.
|
|
|
|
|
|
///
|
|
|
|
|
|
/// While this means the `String` will have a length of zero, it does not
|
|
|
|
|
|
/// touch its capacity.
|
2014-10-30 13:43:24 -07:00
|
|
|
|
///
|
2014-12-08 23:28:07 -06:00
|
|
|
|
/// # Examples
|
2014-10-30 13:43:24 -07:00
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
2015-12-01 16:07:53 -05:00
|
|
|
|
/// let mut s = String::from("foo");
|
|
|
|
|
|
///
|
2014-10-30 13:43:24 -07:00
|
|
|
|
/// s.clear();
|
2015-12-01 16:07:53 -05:00
|
|
|
|
///
|
2014-10-30 13:43:24 -07:00
|
|
|
|
/// assert!(s.is_empty());
|
2015-12-01 16:07:53 -05:00
|
|
|
|
/// assert_eq!(0, s.len());
|
|
|
|
|
|
/// assert_eq!(3, s.capacity());
|
2014-10-30 13:43:24 -07:00
|
|
|
|
/// ```
|
2014-05-11 03:49:09 -07:00
|
|
|
|
#[inline]
|
2015-01-23 21:48:20 -08:00
|
|
|
|
#[stable(feature = "rust1", since = "1.0.0")]
|
2014-10-30 13:43:24 -07:00
|
|
|
|
pub fn clear(&mut self) {
|
2014-05-11 03:49:09 -07:00
|
|
|
|
self.vec.clear()
|
|
|
|
|
|
}
|
2015-05-01 15:34:25 +02:00
|
|
|
|
|
2022-01-14 20:28:04 +01:00
|
|
|
|
/// Removes the specified range from the string in bulk, returning all
|
|
|
|
|
|
/// removed characters as an iterator.
|
2015-12-09 00:04:54 +02:00
|
|
|
|
///
|
2022-01-14 20:28:04 +01:00
|
|
|
|
/// The returned iterator keeps a mutable borrow on the string to optimize
|
|
|
|
|
|
/// its implementation.
|
2015-05-01 15:34:25 +02:00
|
|
|
|
///
|
|
|
|
|
|
/// # Panics
|
|
|
|
|
|
///
|
2015-12-01 16:07:53 -05:00
|
|
|
|
/// Panics if the starting point or end point do not lie on a [`char`]
|
|
|
|
|
|
/// boundary, or if they're out of bounds.
|
|
|
|
|
|
///
|
2022-01-14 20:28:04 +01:00
|
|
|
|
/// # Leaking
|
|
|
|
|
|
///
|
|
|
|
|
|
/// If the returned iterator goes out of scope without being dropped (due to
|
|
|
|
|
|
/// [`core::mem::forget`], for example), the string may still contain a copy
|
|
|
|
|
|
/// of any drained characters, or may have lost characters arbitrarily,
|
|
|
|
|
|
/// including characters outside the range.
|
|
|
|
|
|
///
|
2015-05-01 15:34:25 +02:00
|
|
|
|
/// # Examples
|
|
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
/// let mut s = String::from("α is alpha, β is beta");
|
|
|
|
|
|
/// let beta_offset = s.find('β').unwrap_or(s.len());
|
|
|
|
|
|
///
|
|
|
|
|
|
/// // Remove the range up until the β from the string
|
|
|
|
|
|
/// let t: String = s.drain(..beta_offset).collect();
|
|
|
|
|
|
/// assert_eq!(t, "α is alpha, ");
|
|
|
|
|
|
/// assert_eq!(s, "β is beta");
|
|
|
|
|
|
///
|
2022-01-14 20:28:04 +01:00
|
|
|
|
/// // A full range clears the string, like `clear()` does
|
2015-05-01 15:34:25 +02:00
|
|
|
|
/// s.drain(..);
|
|
|
|
|
|
/// assert_eq!(s, "");
|
|
|
|
|
|
/// ```
|
2015-12-02 17:31:49 -08:00
|
|
|
|
#[stable(feature = "drain", since = "1.6.0")]
|
2019-02-02 12:48:12 +01:00
|
|
|
|
pub fn drain<R>(&mut self, range: R) -> Drain<'_>
|
2018-03-19 09:26:29 +01:00
|
|
|
|
where
|
|
|
|
|
|
R: RangeBounds<usize>,
|
2015-11-24 11:23:48 +13:00
|
|
|
|
{
|
2015-05-01 15:34:25 +02:00
|
|
|
|
// Memory safety
|
|
|
|
|
|
//
|
|
|
|
|
|
// The String version of Drain does not have the memory safety issues
|
|
|
|
|
|
// of the vector version. The data is just plain bytes.
|
|
|
|
|
|
// Because the range removal happens in Drop, if the Drain iterator is leaked,
|
|
|
|
|
|
// the removal will not happen.
|
2021-02-01 21:20:44 -05:00
|
|
|
|
let Range { start, end } = slice::range(range, ..self.len());
|
2020-08-16 21:47:12 -04:00
|
|
|
|
assert!(self.is_char_boundary(start));
|
|
|
|
|
|
assert!(self.is_char_boundary(end));
|
2015-05-01 15:34:25 +02:00
|
|
|
|
|
|
|
|
|
|
// Take out two simultaneous borrows. The &mut String won't be accessed
|
|
|
|
|
|
// until iteration is over, in Drop.
|
|
|
|
|
|
let self_ptr = self as *mut _;
|
2021-02-01 21:20:44 -05:00
|
|
|
|
// SAFETY: `slice::range` and `is_char_boundary` do the appropriate bounds checks.
|
2020-08-16 21:47:12 -04:00
|
|
|
|
let chars_iter = unsafe { self.get_unchecked(start..end) }.chars();
|
2015-05-01 15:34:25 +02:00
|
|
|
|
|
|
|
|
|
|
Drain { start, end, iter: chars_iter, string: self_ptr }
|
|
|
|
|
|
}
|
2015-07-10 00:04:06 -07:00
|
|
|
|
|
2018-04-01 22:50:22 -06:00
|
|
|
|
/// Removes the specified range in the string,
|
2017-08-22 15:24:25 -05:00
|
|
|
|
/// and replaces it with the given string.
|
|
|
|
|
|
/// The given string doesn't need to be the same length as the range.
|
2017-04-08 15:55:53 -05:00
|
|
|
|
///
|
|
|
|
|
|
/// # Panics
|
|
|
|
|
|
///
|
|
|
|
|
|
/// Panics if the starting point or end point do not lie on a [`char`]
|
|
|
|
|
|
/// boundary, or if they're out of bounds.
|
|
|
|
|
|
///
|
|
|
|
|
|
/// # Examples
|
|
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
/// let mut s = String::from("α is alpha, β is beta");
|
|
|
|
|
|
/// let beta_offset = s.find('β').unwrap_or(s.len());
|
|
|
|
|
|
///
|
|
|
|
|
|
/// // Replace the range up until the β from the string
|
2018-04-01 22:50:22 -06:00
|
|
|
|
/// s.replace_range(..beta_offset, "Α is capital alpha; ");
|
2017-04-08 15:55:53 -05:00
|
|
|
|
/// assert_eq!(s, "Α is capital alpha; β is beta");
|
|
|
|
|
|
/// ```
|
alloc: Add unstable Cfg feature `no-global_oom_handling`
For certain sorts of systems, programming, it's deemed essential that
all allocation failures be explicitly handled where they occur. For
example, see Linus Torvald's opinion in [1]. Merely not calling global
panic handlers, or always `try_reserving` first (for vectors), is not
deemed good enough, because the mere presence of the global OOM handlers
is burdens static analysis.
One option for these projects to use rust would just be to skip `alloc`,
rolling their own allocation abstractions. But this would, in my
opinion be a real shame. `alloc` has a few `try_*` methods already, and
we could easily have more. Features like custom allocator support also
demonstrate and existing to support diverse use-cases with the same
abstractions.
A natural way to add such a feature flag would a Cargo feature, but
there are currently uncertainties around how std library crate's Cargo
features may or not be stable, so to avoid any risk of stabilizing by
mistake we are going with a more low-level "raw cfg" token, which
cannot be interacted with via Cargo alone.
Note also that since there is no notion of "default cfg tokens" outside
of Cargo features, we have to invert the condition from
`global_oom_handling` to to `not(no_global_oom_handling)`. This breaks
the monotonicity that would be important for a Cargo feature (i.e.
turning on more features should never break compatibility), but it
doesn't matter for raw cfg tokens which are not intended to be
"constraint solved" by Cargo or anything else.
To support this use-case we create a new feature, "global-oom-handling",
on by default, and put the global OOM handler infra and everything else
it that depends on it behind it. By default, nothing is changed, but
users concerned about global handling can make sure it is disabled, and
be confident that all OOM handling is local and explicit.
For this first iteration, non-flat collections are outright disabled.
`Vec` and `String` don't yet have `try_*` allocation methods, but are
kept anyways since they can be oom-safely created "from parts", and we
hope to add those `try_` methods in the future.
[1]: https://lore.kernel.org/lkml/CAHk-=wh_sNLoz84AUUzuqXEsYH35u=8HV3vK-jbRbJ_B-JjGrg@mail.gmail.com/
2021-04-16 20:18:04 -04:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
2018-04-01 22:50:22 -06:00
|
|
|
|
#[stable(feature = "splice", since = "1.27.0")]
|
|
|
|
|
|
pub fn replace_range<R>(&mut self, range: R, replace_with: &str)
|
2018-03-19 09:26:29 +01:00
|
|
|
|
where
|
|
|
|
|
|
R: RangeBounds<usize>,
|
2017-04-08 15:55:53 -05:00
|
|
|
|
{
|
|
|
|
|
|
// Memory safety
|
|
|
|
|
|
//
|
2018-04-01 22:50:22 -06:00
|
|
|
|
// Replace_range does not have the memory safety issues of a vector Splice.
|
2017-04-08 15:55:53 -05:00
|
|
|
|
// of the vector version. The data is just plain bytes.
|
2017-08-22 15:24:25 -05:00
|
|
|
|
|
2021-01-18 22:14:38 -05:00
|
|
|
|
// WARNING: Inlining this variable would be unsound (#81138)
|
|
|
|
|
|
let start = range.start_bound();
|
|
|
|
|
|
match start {
|
2017-08-22 15:24:25 -05:00
|
|
|
|
Included(&n) => assert!(self.is_char_boundary(n)),
|
|
|
|
|
|
Excluded(&n) => assert!(self.is_char_boundary(n + 1)),
|
|
|
|
|
|
Unbounded => {}
|
2017-04-08 16:12:58 -05:00
|
|
|
|
};
|
2021-01-18 22:14:38 -05:00
|
|
|
|
// WARNING: Inlining this variable would be unsound (#81138)
|
|
|
|
|
|
let end = range.end_bound();
|
|
|
|
|
|
match end {
|
2017-08-22 15:24:25 -05:00
|
|
|
|
Included(&n) => assert!(self.is_char_boundary(n + 1)),
|
|
|
|
|
|
Excluded(&n) => assert!(self.is_char_boundary(n)),
|
|
|
|
|
|
Unbounded => {}
|
2017-04-08 16:12:58 -05:00
|
|
|
|
};
|
2017-04-08 15:55:53 -05:00
|
|
|
|
|
2021-01-18 22:14:38 -05:00
|
|
|
|
// Using `range` again would be unsound (#81138)
|
|
|
|
|
|
// We assume the bounds reported by `range` remain the same, but
|
|
|
|
|
|
// an adversarial implementation could change between calls
|
|
|
|
|
|
unsafe { self.as_mut_vec() }.splice((start, end), replace_with.bytes());
|
2017-04-08 15:55:53 -05:00
|
|
|
|
}
|
|
|
|
|
|
|
Apply 16 commits (squashed)
----------
Fix spacing for links inside code blocks, and improve link tooltips in alloc::fmt
----------
Fix spacing for links inside code blocks, and improve link tooltips in alloc::{rc, sync}
----------
Fix spacing for links inside code blocks, and improve link tooltips in alloc::string
----------
Fix spacing for links inside code blocks in alloc::vec
----------
Fix spacing for links inside code blocks in core::option
----------
Fix spacing for links inside code blocks, and improve a few link tooltips in core::result
----------
Fix spacing for links inside code blocks in core::{iter::{self, iterator}, stream::stream, poll}
----------
Fix spacing for links inside code blocks, and improve a few link tooltips in std::{fs, path}
----------
Fix spacing for links inside code blocks in std::{collections, time}
----------
Fix spacing for links inside code blocks in and make formatting of `&str`-like types consistent in std::ffi::{c_str, os_str}
----------
Fix spacing for links inside code blocks, and improve link tooltips in std::ffi
----------
Fix spacing for links inside code blocks, and improve a few link tooltips
in std::{io::{self, buffered::{bufreader, bufwriter}, cursor, util}, net::{self, addr}}
----------
Fix typo in link to `into` for `OsString` docs
----------
Remove tooltips that will probably become redundant in the future
----------
Apply suggestions from code review
Replacing `…std/primitive.reference.html` paths with just `reference`
Co-authored-by: Joshua Nelson <github@jyn.dev>
----------
Also replace `…std/primitive.reference.html` paths with just `reference` in `core::pin`
2021-08-25 11:45:08 +02:00
|
|
|
|
/// Converts this `String` into a <code>[Box]<[str]></code>.
|
2015-12-01 16:07:53 -05:00
|
|
|
|
///
|
|
|
|
|
|
/// This will drop any excess capacity.
|
2015-07-10 00:04:06 -07:00
|
|
|
|
///
|
Apply 16 commits (squashed)
----------
Fix spacing for links inside code blocks, and improve link tooltips in alloc::fmt
----------
Fix spacing for links inside code blocks, and improve link tooltips in alloc::{rc, sync}
----------
Fix spacing for links inside code blocks, and improve link tooltips in alloc::string
----------
Fix spacing for links inside code blocks in alloc::vec
----------
Fix spacing for links inside code blocks in core::option
----------
Fix spacing for links inside code blocks, and improve a few link tooltips in core::result
----------
Fix spacing for links inside code blocks in core::{iter::{self, iterator}, stream::stream, poll}
----------
Fix spacing for links inside code blocks, and improve a few link tooltips in std::{fs, path}
----------
Fix spacing for links inside code blocks in std::{collections, time}
----------
Fix spacing for links inside code blocks in and make formatting of `&str`-like types consistent in std::ffi::{c_str, os_str}
----------
Fix spacing for links inside code blocks, and improve link tooltips in std::ffi
----------
Fix spacing for links inside code blocks, and improve a few link tooltips
in std::{io::{self, buffered::{bufreader, bufwriter}, cursor, util}, net::{self, addr}}
----------
Fix typo in link to `into` for `OsString` docs
----------
Remove tooltips that will probably become redundant in the future
----------
Apply suggestions from code review
Replacing `…std/primitive.reference.html` paths with just `reference`
Co-authored-by: Joshua Nelson <github@jyn.dev>
----------
Also replace `…std/primitive.reference.html` paths with just `reference` in `core::pin`
2021-08-25 11:45:08 +02:00
|
|
|
|
/// [str]: prim@str "str"
|
2020-08-22 16:26:01 -04:00
|
|
|
|
///
|
2015-12-01 16:07:53 -05:00
|
|
|
|
/// # Examples
|
|
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
/// let s = String::from("hello");
|
|
|
|
|
|
///
|
|
|
|
|
|
/// let b = s.into_boxed_str();
|
|
|
|
|
|
/// ```
|
alloc: Add unstable Cfg feature `no-global_oom_handling`
For certain sorts of systems, programming, it's deemed essential that
all allocation failures be explicitly handled where they occur. For
example, see Linus Torvald's opinion in [1]. Merely not calling global
panic handlers, or always `try_reserving` first (for vectors), is not
deemed good enough, because the mere presence of the global OOM handlers
is burdens static analysis.
One option for these projects to use rust would just be to skip `alloc`,
rolling their own allocation abstractions. But this would, in my
opinion be a real shame. `alloc` has a few `try_*` methods already, and
we could easily have more. Features like custom allocator support also
demonstrate and existing to support diverse use-cases with the same
abstractions.
A natural way to add such a feature flag would a Cargo feature, but
there are currently uncertainties around how std library crate's Cargo
features may or not be stable, so to avoid any risk of stabilizing by
mistake we are going with a more low-level "raw cfg" token, which
cannot be interacted with via Cargo alone.
Note also that since there is no notion of "default cfg tokens" outside
of Cargo features, we have to invert the condition from
`global_oom_handling` to to `not(no_global_oom_handling)`. This breaks
the monotonicity that would be important for a Cargo feature (i.e.
turning on more features should never break compatibility), but it
doesn't matter for raw cfg tokens which are not intended to be
"constraint solved" by Cargo or anything else.
To support this use-case we create a new feature, "global-oom-handling",
on by default, and put the global OOM handler infra and everything else
it that depends on it behind it. By default, nothing is changed, but
users concerned about global handling can make sure it is disabled, and
be confident that all OOM handling is local and explicit.
For this first iteration, non-flat collections are outright disabled.
`Vec` and `String` don't yet have `try_*` allocation methods, but are
kept anyways since they can be oom-safely created "from parts", and we
hope to add those `try_` methods in the future.
[1]: https://lore.kernel.org/lkml/CAHk-=wh_sNLoz84AUUzuqXEsYH35u=8HV3vK-jbRbJ_B-JjGrg@mail.gmail.com/
2021-04-16 20:18:04 -04:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
2015-09-10 13:26:44 -07:00
|
|
|
|
#[stable(feature = "box_str", since = "1.4.0")]
|
2021-10-10 19:50:52 -04:00
|
|
|
|
#[must_use = "`self` will be dropped if the result is not used"]
|
2018-03-31 23:19:02 +02:00
|
|
|
|
#[inline]
|
2015-08-13 14:02:00 +02:00
|
|
|
|
pub fn into_boxed_str(self) -> Box<str> {
|
2015-07-10 00:04:06 -07:00
|
|
|
|
let slice = self.vec.into_boxed_slice();
|
2017-06-13 15:52:59 -07:00
|
|
|
|
unsafe { from_boxed_utf8_unchecked(slice) }
|
2015-07-10 00:04:06 -07:00
|
|
|
|
}
|
2022-10-19 19:15:58 -07:00
|
|
|
|
|
|
|
|
|
|
/// Consumes and leaks the `String`, returning a mutable reference to the contents,
|
2023-05-16 13:39:17 -07:00
|
|
|
|
/// `&'a mut str`.
|
2022-10-19 19:15:58 -07:00
|
|
|
|
///
|
2023-03-31 13:39:27 +02:00
|
|
|
|
/// The caller has free choice over the returned lifetime, including `'static`. Indeed,
|
|
|
|
|
|
/// this function is ideally used for data that lives for the remainder of the program's life,
|
|
|
|
|
|
/// as dropping the returned reference will cause a memory leak.
|
2022-10-19 19:15:58 -07:00
|
|
|
|
///
|
|
|
|
|
|
/// It does not reallocate or shrink the `String`,
|
|
|
|
|
|
/// so the leaked allocation may include unused capacity that is not part
|
2023-03-31 13:39:27 +02:00
|
|
|
|
/// of the returned slice. If you don't want that, call [`into_boxed_str`],
|
|
|
|
|
|
/// and then [`Box::leak`].
|
|
|
|
|
|
///
|
|
|
|
|
|
/// [`into_boxed_str`]: Self::into_boxed_str
|
2022-10-19 19:15:58 -07:00
|
|
|
|
///
|
|
|
|
|
|
/// # Examples
|
|
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
/// let x = String::from("bucket");
|
|
|
|
|
|
/// let static_ref: &'static mut str = x.leak();
|
|
|
|
|
|
/// assert_eq!(static_ref, "bucket");
|
|
|
|
|
|
/// ```
|
2023-07-10 10:41:13 -04:00
|
|
|
|
#[stable(feature = "string_leak", since = "1.72.0")]
|
2022-10-19 19:15:58 -07:00
|
|
|
|
#[inline]
|
2023-05-16 13:39:17 -07:00
|
|
|
|
pub fn leak<'a>(self) -> &'a mut str {
|
2022-10-19 19:15:58 -07:00
|
|
|
|
let slice = self.vec.leak();
|
|
|
|
|
|
unsafe { from_utf8_unchecked_mut(slice) }
|
|
|
|
|
|
}
|
2014-05-11 03:49:09 -07:00
|
|
|
|
}
|
|
|
|
|
|
|
2014-12-28 10:29:56 -08:00
|
|
|
|
impl FromUtf8Error {
|
2017-03-06 09:03:31 +03:00
|
|
|
|
/// Returns a slice of [`u8`]s bytes that were attempted to convert to a `String`.
|
|
|
|
|
|
///
|
|
|
|
|
|
/// # Examples
|
|
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
/// // some invalid bytes, in a vector
|
|
|
|
|
|
/// let bytes = vec![0, 159];
|
|
|
|
|
|
///
|
|
|
|
|
|
/// let value = String::from_utf8(bytes);
|
|
|
|
|
|
///
|
|
|
|
|
|
/// assert_eq!(&[0, 159], value.unwrap_err().as_bytes());
|
|
|
|
|
|
/// ```
|
2021-10-11 13:57:38 -04:00
|
|
|
|
#[must_use]
|
2018-03-17 21:41:14 +00:00
|
|
|
|
#[stable(feature = "from_utf8_error_as_bytes", since = "1.26.0")]
|
2017-03-06 09:03:31 +03:00
|
|
|
|
pub fn as_bytes(&self) -> &[u8] {
|
|
|
|
|
|
&self.bytes[..]
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2015-11-30 15:48:28 -05:00
|
|
|
|
/// Returns the bytes that were attempted to convert to a `String`.
|
|
|
|
|
|
///
|
|
|
|
|
|
/// This method is carefully constructed to avoid allocation. It will
|
|
|
|
|
|
/// consume the error, moving out the bytes, so that a copy of the bytes
|
|
|
|
|
|
/// does not need to be made.
|
|
|
|
|
|
///
|
|
|
|
|
|
/// # Examples
|
|
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
/// // some invalid bytes, in a vector
|
|
|
|
|
|
/// let bytes = vec![0, 159];
|
|
|
|
|
|
///
|
|
|
|
|
|
/// let value = String::from_utf8(bytes);
|
|
|
|
|
|
///
|
|
|
|
|
|
/// assert_eq!(vec![0, 159], value.unwrap_err().into_bytes());
|
|
|
|
|
|
/// ```
|
2021-10-10 19:50:52 -04:00
|
|
|
|
#[must_use = "`self` will be dropped if the result is not used"]
|
2015-01-23 21:48:20 -08:00
|
|
|
|
#[stable(feature = "rust1", since = "1.0.0")]
|
2015-11-24 11:23:48 +13:00
|
|
|
|
pub fn into_bytes(self) -> Vec<u8> {
|
|
|
|
|
|
self.bytes
|
|
|
|
|
|
}
|
2014-12-28 10:29:56 -08:00
|
|
|
|
|
2015-11-30 15:48:28 -05:00
|
|
|
|
/// Fetch a `Utf8Error` to get more details about the conversion failure.
|
|
|
|
|
|
///
|
|
|
|
|
|
/// The [`Utf8Error`] type provided by [`std::str`] represents an error that may
|
|
|
|
|
|
/// occur when converting a slice of [`u8`]s to a [`&str`]. In this sense, it's
|
|
|
|
|
|
/// an analogue to `FromUtf8Error`. See its documentation for more details
|
|
|
|
|
|
/// on using it.
|
|
|
|
|
|
///
|
Apply 16 commits (squashed)
----------
Fix spacing for links inside code blocks, and improve link tooltips in alloc::fmt
----------
Fix spacing for links inside code blocks, and improve link tooltips in alloc::{rc, sync}
----------
Fix spacing for links inside code blocks, and improve link tooltips in alloc::string
----------
Fix spacing for links inside code blocks in alloc::vec
----------
Fix spacing for links inside code blocks in core::option
----------
Fix spacing for links inside code blocks, and improve a few link tooltips in core::result
----------
Fix spacing for links inside code blocks in core::{iter::{self, iterator}, stream::stream, poll}
----------
Fix spacing for links inside code blocks, and improve a few link tooltips in std::{fs, path}
----------
Fix spacing for links inside code blocks in std::{collections, time}
----------
Fix spacing for links inside code blocks in and make formatting of `&str`-like types consistent in std::ffi::{c_str, os_str}
----------
Fix spacing for links inside code blocks, and improve link tooltips in std::ffi
----------
Fix spacing for links inside code blocks, and improve a few link tooltips
in std::{io::{self, buffered::{bufreader, bufwriter}, cursor, util}, net::{self, addr}}
----------
Fix typo in link to `into` for `OsString` docs
----------
Remove tooltips that will probably become redundant in the future
----------
Apply suggestions from code review
Replacing `…std/primitive.reference.html` paths with just `reference`
Co-authored-by: Joshua Nelson <github@jyn.dev>
----------
Also replace `…std/primitive.reference.html` paths with just `reference` in `core::pin`
2021-08-25 11:45:08 +02:00
|
|
|
|
/// [`std::str`]: core::str "std::str"
|
|
|
|
|
|
/// [`&str`]: prim@str "&str"
|
2015-11-30 15:48:28 -05:00
|
|
|
|
///
|
|
|
|
|
|
/// # Examples
|
|
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
/// // some invalid bytes, in a vector
|
|
|
|
|
|
/// let bytes = vec![0, 159];
|
|
|
|
|
|
///
|
|
|
|
|
|
/// let error = String::from_utf8(bytes).unwrap_err().utf8_error();
|
|
|
|
|
|
///
|
|
|
|
|
|
/// // the first byte is invalid here
|
|
|
|
|
|
/// assert_eq!(1, error.valid_up_to());
|
|
|
|
|
|
/// ```
|
2021-10-14 19:56:53 -04:00
|
|
|
|
#[must_use]
|
2015-01-23 21:48:20 -08:00
|
|
|
|
#[stable(feature = "rust1", since = "1.0.0")]
|
2015-11-24 11:23:48 +13:00
|
|
|
|
pub fn utf8_error(&self) -> Utf8Error {
|
|
|
|
|
|
self.error
|
|
|
|
|
|
}
|
2014-12-28 10:29:56 -08:00
|
|
|
|
}
|
|
|
|
|
|
|
2015-01-24 09:15:42 -08:00
|
|
|
|
#[stable(feature = "rust1", since = "1.0.0")]
|
2015-01-20 15:45:07 -08:00
|
|
|
|
impl fmt::Display for FromUtf8Error {
|
2019-02-02 12:48:12 +01:00
|
|
|
|
fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
|
2015-01-20 15:45:07 -08:00
|
|
|
|
fmt::Display::fmt(&self.error, f)
|
2014-12-20 00:09:35 -08:00
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2015-01-24 09:15:42 -08:00
|
|
|
|
#[stable(feature = "rust1", since = "1.0.0")]
|
2015-01-20 15:45:07 -08:00
|
|
|
|
impl fmt::Display for FromUtf16Error {
|
2019-02-02 12:48:12 +01:00
|
|
|
|
fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
|
2015-01-20 15:45:07 -08:00
|
|
|
|
fmt::Display::fmt("invalid utf-16: lone surrogate found", f)
|
2014-12-20 00:09:35 -08:00
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2022-07-29 18:54:47 +00:00
|
|
|
|
#[stable(feature = "rust1", since = "1.0.0")]
|
|
|
|
|
|
impl Error for FromUtf8Error {
|
|
|
|
|
|
#[allow(deprecated)]
|
|
|
|
|
|
fn description(&self) -> &str {
|
|
|
|
|
|
"invalid utf-8"
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
#[stable(feature = "rust1", since = "1.0.0")]
|
|
|
|
|
|
impl Error for FromUtf16Error {
|
|
|
|
|
|
#[allow(deprecated)]
|
|
|
|
|
|
fn description(&self) -> &str {
|
|
|
|
|
|
"invalid utf-16"
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
alloc: Add unstable Cfg feature `no-global_oom_handling`
For certain sorts of systems, programming, it's deemed essential that
all allocation failures be explicitly handled where they occur. For
example, see Linus Torvald's opinion in [1]. Merely not calling global
panic handlers, or always `try_reserving` first (for vectors), is not
deemed good enough, because the mere presence of the global OOM handlers
is burdens static analysis.
One option for these projects to use rust would just be to skip `alloc`,
rolling their own allocation abstractions. But this would, in my
opinion be a real shame. `alloc` has a few `try_*` methods already, and
we could easily have more. Features like custom allocator support also
demonstrate and existing to support diverse use-cases with the same
abstractions.
A natural way to add such a feature flag would a Cargo feature, but
there are currently uncertainties around how std library crate's Cargo
features may or not be stable, so to avoid any risk of stabilizing by
mistake we are going with a more low-level "raw cfg" token, which
cannot be interacted with via Cargo alone.
Note also that since there is no notion of "default cfg tokens" outside
of Cargo features, we have to invert the condition from
`global_oom_handling` to to `not(no_global_oom_handling)`. This breaks
the monotonicity that would be important for a Cargo feature (i.e.
turning on more features should never break compatibility), but it
doesn't matter for raw cfg tokens which are not intended to be
"constraint solved" by Cargo or anything else.
To support this use-case we create a new feature, "global-oom-handling",
on by default, and put the global OOM handler infra and everything else
it that depends on it behind it. By default, nothing is changed, but
users concerned about global handling can make sure it is disabled, and
be confident that all OOM handling is local and explicit.
For this first iteration, non-flat collections are outright disabled.
`Vec` and `String` don't yet have `try_*` allocation methods, but are
kept anyways since they can be oom-safely created "from parts", and we
hope to add those `try_` methods in the future.
[1]: https://lore.kernel.org/lkml/CAHk-=wh_sNLoz84AUUzuqXEsYH35u=8HV3vK-jbRbJ_B-JjGrg@mail.gmail.com/
2021-04-16 20:18:04 -04:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
2015-09-23 08:49:50 -04:00
|
|
|
|
#[stable(feature = "rust1", since = "1.0.0")]
|
|
|
|
|
|
impl Clone for String {
|
|
|
|
|
|
fn clone(&self) -> Self {
|
|
|
|
|
|
String { vec: self.vec.clone() }
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2024-03-08 12:27:24 -06:00
|
|
|
|
/// Clones the contents of `source` into `self`.
|
|
|
|
|
|
///
|
|
|
|
|
|
/// This method is preferred over simply assigning `source.clone()` to `self`,
|
|
|
|
|
|
/// as it avoids reallocation if possible.
|
2015-09-23 08:49:50 -04:00
|
|
|
|
fn clone_from(&mut self, source: &Self) {
|
|
|
|
|
|
self.vec.clone_from(&source.vec);
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
alloc: Add unstable Cfg feature `no-global_oom_handling`
For certain sorts of systems, programming, it's deemed essential that
all allocation failures be explicitly handled where they occur. For
example, see Linus Torvald's opinion in [1]. Merely not calling global
panic handlers, or always `try_reserving` first (for vectors), is not
deemed good enough, because the mere presence of the global OOM handlers
is burdens static analysis.
One option for these projects to use rust would just be to skip `alloc`,
rolling their own allocation abstractions. But this would, in my
opinion be a real shame. `alloc` has a few `try_*` methods already, and
we could easily have more. Features like custom allocator support also
demonstrate and existing to support diverse use-cases with the same
abstractions.
A natural way to add such a feature flag would a Cargo feature, but
there are currently uncertainties around how std library crate's Cargo
features may or not be stable, so to avoid any risk of stabilizing by
mistake we are going with a more low-level "raw cfg" token, which
cannot be interacted with via Cargo alone.
Note also that since there is no notion of "default cfg tokens" outside
of Cargo features, we have to invert the condition from
`global_oom_handling` to to `not(no_global_oom_handling)`. This breaks
the monotonicity that would be important for a Cargo feature (i.e.
turning on more features should never break compatibility), but it
doesn't matter for raw cfg tokens which are not intended to be
"constraint solved" by Cargo or anything else.
To support this use-case we create a new feature, "global-oom-handling",
on by default, and put the global OOM handler infra and everything else
it that depends on it behind it. By default, nothing is changed, but
users concerned about global handling can make sure it is disabled, and
be confident that all OOM handling is local and explicit.
For this first iteration, non-flat collections are outright disabled.
`Vec` and `String` don't yet have `try_*` allocation methods, but are
kept anyways since they can be oom-safely created "from parts", and we
hope to add those `try_` methods in the future.
[1]: https://lore.kernel.org/lkml/CAHk-=wh_sNLoz84AUUzuqXEsYH35u=8HV3vK-jbRbJ_B-JjGrg@mail.gmail.com/
2021-04-16 20:18:04 -04:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
2015-01-23 21:48:20 -08:00
|
|
|
|
#[stable(feature = "rust1", since = "1.0.0")]
|
2014-05-22 16:57:53 -07:00
|
|
|
|
impl FromIterator<char> for String {
|
2016-03-28 13:55:47 -04:00
|
|
|
|
fn from_iter<I: IntoIterator<Item = char>>(iter: I) -> String {
|
2014-05-22 16:57:53 -07:00
|
|
|
|
let mut buf = String::new();
|
2016-03-28 13:55:47 -04:00
|
|
|
|
buf.extend(iter);
|
2014-04-02 16:54:22 -07:00
|
|
|
|
buf
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
alloc: Add unstable Cfg feature `no-global_oom_handling`
For certain sorts of systems, programming, it's deemed essential that
all allocation failures be explicitly handled where they occur. For
example, see Linus Torvald's opinion in [1]. Merely not calling global
panic handlers, or always `try_reserving` first (for vectors), is not
deemed good enough, because the mere presence of the global OOM handlers
is burdens static analysis.
One option for these projects to use rust would just be to skip `alloc`,
rolling their own allocation abstractions. But this would, in my
opinion be a real shame. `alloc` has a few `try_*` methods already, and
we could easily have more. Features like custom allocator support also
demonstrate and existing to support diverse use-cases with the same
abstractions.
A natural way to add such a feature flag would a Cargo feature, but
there are currently uncertainties around how std library crate's Cargo
features may or not be stable, so to avoid any risk of stabilizing by
mistake we are going with a more low-level "raw cfg" token, which
cannot be interacted with via Cargo alone.
Note also that since there is no notion of "default cfg tokens" outside
of Cargo features, we have to invert the condition from
`global_oom_handling` to to `not(no_global_oom_handling)`. This breaks
the monotonicity that would be important for a Cargo feature (i.e.
turning on more features should never break compatibility), but it
doesn't matter for raw cfg tokens which are not intended to be
"constraint solved" by Cargo or anything else.
To support this use-case we create a new feature, "global-oom-handling",
on by default, and put the global OOM handler infra and everything else
it that depends on it behind it. By default, nothing is changed, but
users concerned about global handling can make sure it is disabled, and
be confident that all OOM handling is local and explicit.
For this first iteration, non-flat collections are outright disabled.
`Vec` and `String` don't yet have `try_*` allocation methods, but are
kept anyways since they can be oom-safely created "from parts", and we
hope to add those `try_` methods in the future.
[1]: https://lore.kernel.org/lkml/CAHk-=wh_sNLoz84AUUzuqXEsYH35u=8HV3vK-jbRbJ_B-JjGrg@mail.gmail.com/
2021-04-16 20:18:04 -04:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
2017-02-22 00:06:40 -08:00
|
|
|
|
#[stable(feature = "string_from_iter_by_ref", since = "1.17.0")]
|
|
|
|
|
|
impl<'a> FromIterator<&'a char> for String {
|
|
|
|
|
|
fn from_iter<I: IntoIterator<Item = &'a char>>(iter: I) -> String {
|
|
|
|
|
|
let mut buf = String::new();
|
|
|
|
|
|
buf.extend(iter);
|
|
|
|
|
|
buf
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
alloc: Add unstable Cfg feature `no-global_oom_handling`
For certain sorts of systems, programming, it's deemed essential that
all allocation failures be explicitly handled where they occur. For
example, see Linus Torvald's opinion in [1]. Merely not calling global
panic handlers, or always `try_reserving` first (for vectors), is not
deemed good enough, because the mere presence of the global OOM handlers
is burdens static analysis.
One option for these projects to use rust would just be to skip `alloc`,
rolling their own allocation abstractions. But this would, in my
opinion be a real shame. `alloc` has a few `try_*` methods already, and
we could easily have more. Features like custom allocator support also
demonstrate and existing to support diverse use-cases with the same
abstractions.
A natural way to add such a feature flag would a Cargo feature, but
there are currently uncertainties around how std library crate's Cargo
features may or not be stable, so to avoid any risk of stabilizing by
mistake we are going with a more low-level "raw cfg" token, which
cannot be interacted with via Cargo alone.
Note also that since there is no notion of "default cfg tokens" outside
of Cargo features, we have to invert the condition from
`global_oom_handling` to to `not(no_global_oom_handling)`. This breaks
the monotonicity that would be important for a Cargo feature (i.e.
turning on more features should never break compatibility), but it
doesn't matter for raw cfg tokens which are not intended to be
"constraint solved" by Cargo or anything else.
To support this use-case we create a new feature, "global-oom-handling",
on by default, and put the global OOM handler infra and everything else
it that depends on it behind it. By default, nothing is changed, but
users concerned about global handling can make sure it is disabled, and
be confident that all OOM handling is local and explicit.
For this first iteration, non-flat collections are outright disabled.
`Vec` and `String` don't yet have `try_*` allocation methods, but are
kept anyways since they can be oom-safely created "from parts", and we
hope to add those `try_` methods in the future.
[1]: https://lore.kernel.org/lkml/CAHk-=wh_sNLoz84AUUzuqXEsYH35u=8HV3vK-jbRbJ_B-JjGrg@mail.gmail.com/
2021-04-16 20:18:04 -04:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
2015-01-23 21:48:20 -08:00
|
|
|
|
#[stable(feature = "rust1", since = "1.0.0")]
|
2014-12-07 21:32:00 +01:00
|
|
|
|
impl<'a> FromIterator<&'a str> for String {
|
2016-03-28 13:55:47 -04:00
|
|
|
|
fn from_iter<I: IntoIterator<Item = &'a str>>(iter: I) -> String {
|
2014-12-07 21:32:00 +01:00
|
|
|
|
let mut buf = String::new();
|
2016-03-28 13:55:47 -04:00
|
|
|
|
buf.extend(iter);
|
2015-08-27 08:47:08 -07:00
|
|
|
|
buf
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
alloc: Add unstable Cfg feature `no-global_oom_handling`
For certain sorts of systems, programming, it's deemed essential that
all allocation failures be explicitly handled where they occur. For
example, see Linus Torvald's opinion in [1]. Merely not calling global
panic handlers, or always `try_reserving` first (for vectors), is not
deemed good enough, because the mere presence of the global OOM handlers
is burdens static analysis.
One option for these projects to use rust would just be to skip `alloc`,
rolling their own allocation abstractions. But this would, in my
opinion be a real shame. `alloc` has a few `try_*` methods already, and
we could easily have more. Features like custom allocator support also
demonstrate and existing to support diverse use-cases with the same
abstractions.
A natural way to add such a feature flag would a Cargo feature, but
there are currently uncertainties around how std library crate's Cargo
features may or not be stable, so to avoid any risk of stabilizing by
mistake we are going with a more low-level "raw cfg" token, which
cannot be interacted with via Cargo alone.
Note also that since there is no notion of "default cfg tokens" outside
of Cargo features, we have to invert the condition from
`global_oom_handling` to to `not(no_global_oom_handling)`. This breaks
the monotonicity that would be important for a Cargo feature (i.e.
turning on more features should never break compatibility), but it
doesn't matter for raw cfg tokens which are not intended to be
"constraint solved" by Cargo or anything else.
To support this use-case we create a new feature, "global-oom-handling",
on by default, and put the global OOM handler infra and everything else
it that depends on it behind it. By default, nothing is changed, but
users concerned about global handling can make sure it is disabled, and
be confident that all OOM handling is local and explicit.
For this first iteration, non-flat collections are outright disabled.
`Vec` and `String` don't yet have `try_*` allocation methods, but are
kept anyways since they can be oom-safely created "from parts", and we
hope to add those `try_` methods in the future.
[1]: https://lore.kernel.org/lkml/CAHk-=wh_sNLoz84AUUzuqXEsYH35u=8HV3vK-jbRbJ_B-JjGrg@mail.gmail.com/
2021-04-16 20:18:04 -04:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
2015-08-27 08:47:08 -07:00
|
|
|
|
#[stable(feature = "extend_string", since = "1.4.0")]
|
|
|
|
|
|
impl FromIterator<String> for String {
|
2016-03-28 13:55:47 -04:00
|
|
|
|
fn from_iter<I: IntoIterator<Item = String>>(iter: I) -> String {
|
2018-12-05 15:11:32 -08:00
|
|
|
|
let mut iterator = iter.into_iter();
|
2018-12-05 14:37:38 -08:00
|
|
|
|
|
2018-12-05 17:46:03 -08:00
|
|
|
|
// Because we're iterating over `String`s, we can avoid at least
|
|
|
|
|
|
// one allocation by getting the first string from the iterator
|
|
|
|
|
|
// and appending to it all the subsequent strings.
|
2018-12-05 14:37:38 -08:00
|
|
|
|
match iterator.next() {
|
|
|
|
|
|
None => String::new(),
|
2018-12-05 15:11:32 -08:00
|
|
|
|
Some(mut buf) => {
|
2018-12-05 14:37:38 -08:00
|
|
|
|
buf.extend(iterator);
|
|
|
|
|
|
buf
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
2014-12-07 21:32:00 +01:00
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
alloc: Add unstable Cfg feature `no-global_oom_handling`
For certain sorts of systems, programming, it's deemed essential that
all allocation failures be explicitly handled where they occur. For
example, see Linus Torvald's opinion in [1]. Merely not calling global
panic handlers, or always `try_reserving` first (for vectors), is not
deemed good enough, because the mere presence of the global OOM handlers
is burdens static analysis.
One option for these projects to use rust would just be to skip `alloc`,
rolling their own allocation abstractions. But this would, in my
opinion be a real shame. `alloc` has a few `try_*` methods already, and
we could easily have more. Features like custom allocator support also
demonstrate and existing to support diverse use-cases with the same
abstractions.
A natural way to add such a feature flag would a Cargo feature, but
there are currently uncertainties around how std library crate's Cargo
features may or not be stable, so to avoid any risk of stabilizing by
mistake we are going with a more low-level "raw cfg" token, which
cannot be interacted with via Cargo alone.
Note also that since there is no notion of "default cfg tokens" outside
of Cargo features, we have to invert the condition from
`global_oom_handling` to to `not(no_global_oom_handling)`. This breaks
the monotonicity that would be important for a Cargo feature (i.e.
turning on more features should never break compatibility), but it
doesn't matter for raw cfg tokens which are not intended to be
"constraint solved" by Cargo or anything else.
To support this use-case we create a new feature, "global-oom-handling",
on by default, and put the global OOM handler infra and everything else
it that depends on it behind it. By default, nothing is changed, but
users concerned about global handling can make sure it is disabled, and
be confident that all OOM handling is local and explicit.
For this first iteration, non-flat collections are outright disabled.
`Vec` and `String` don't yet have `try_*` allocation methods, but are
kept anyways since they can be oom-safely created "from parts", and we
hope to add those `try_` methods in the future.
[1]: https://lore.kernel.org/lkml/CAHk-=wh_sNLoz84AUUzuqXEsYH35u=8HV3vK-jbRbJ_B-JjGrg@mail.gmail.com/
2021-04-16 20:18:04 -04:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
2020-05-27 19:59:44 +02:00
|
|
|
|
#[stable(feature = "box_str2", since = "1.45.0")]
|
|
|
|
|
|
impl FromIterator<Box<str>> for String {
|
|
|
|
|
|
fn from_iter<I: IntoIterator<Item = Box<str>>>(iter: I) -> String {
|
|
|
|
|
|
let mut buf = String::new();
|
|
|
|
|
|
buf.extend(iter);
|
|
|
|
|
|
buf
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
alloc: Add unstable Cfg feature `no-global_oom_handling`
For certain sorts of systems, programming, it's deemed essential that
all allocation failures be explicitly handled where they occur. For
example, see Linus Torvald's opinion in [1]. Merely not calling global
panic handlers, or always `try_reserving` first (for vectors), is not
deemed good enough, because the mere presence of the global OOM handlers
is burdens static analysis.
One option for these projects to use rust would just be to skip `alloc`,
rolling their own allocation abstractions. But this would, in my
opinion be a real shame. `alloc` has a few `try_*` methods already, and
we could easily have more. Features like custom allocator support also
demonstrate and existing to support diverse use-cases with the same
abstractions.
A natural way to add such a feature flag would a Cargo feature, but
there are currently uncertainties around how std library crate's Cargo
features may or not be stable, so to avoid any risk of stabilizing by
mistake we are going with a more low-level "raw cfg" token, which
cannot be interacted with via Cargo alone.
Note also that since there is no notion of "default cfg tokens" outside
of Cargo features, we have to invert the condition from
`global_oom_handling` to to `not(no_global_oom_handling)`. This breaks
the monotonicity that would be important for a Cargo feature (i.e.
turning on more features should never break compatibility), but it
doesn't matter for raw cfg tokens which are not intended to be
"constraint solved" by Cargo or anything else.
To support this use-case we create a new feature, "global-oom-handling",
on by default, and put the global OOM handler infra and everything else
it that depends on it behind it. By default, nothing is changed, but
users concerned about global handling can make sure it is disabled, and
be confident that all OOM handling is local and explicit.
For this first iteration, non-flat collections are outright disabled.
`Vec` and `String` don't yet have `try_*` allocation methods, but are
kept anyways since they can be oom-safely created "from parts", and we
hope to add those `try_` methods in the future.
[1]: https://lore.kernel.org/lkml/CAHk-=wh_sNLoz84AUUzuqXEsYH35u=8HV3vK-jbRbJ_B-JjGrg@mail.gmail.com/
2021-04-16 20:18:04 -04:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
2017-04-21 13:25:48 -04:00
|
|
|
|
#[stable(feature = "herd_cows", since = "1.19.0")]
|
|
|
|
|
|
impl<'a> FromIterator<Cow<'a, str>> for String {
|
|
|
|
|
|
fn from_iter<I: IntoIterator<Item = Cow<'a, str>>>(iter: I) -> String {
|
2018-12-05 15:11:32 -08:00
|
|
|
|
let mut iterator = iter.into_iter();
|
2018-12-05 14:37:38 -08:00
|
|
|
|
|
2018-12-05 17:46:03 -08:00
|
|
|
|
// Because we're iterating over CoWs, we can (potentially) avoid at least
|
|
|
|
|
|
// one allocation by getting the first item and appending to it all the
|
|
|
|
|
|
// subsequent items.
|
2018-12-05 14:37:38 -08:00
|
|
|
|
match iterator.next() {
|
|
|
|
|
|
None => String::new(),
|
|
|
|
|
|
Some(cow) => {
|
2018-12-05 15:11:32 -08:00
|
|
|
|
let mut buf = cow.into_owned();
|
2018-12-05 14:37:38 -08:00
|
|
|
|
buf.extend(iterator);
|
|
|
|
|
|
buf
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
2017-04-21 13:25:48 -04:00
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
alloc: Add unstable Cfg feature `no-global_oom_handling`
For certain sorts of systems, programming, it's deemed essential that
all allocation failures be explicitly handled where they occur. For
example, see Linus Torvald's opinion in [1]. Merely not calling global
panic handlers, or always `try_reserving` first (for vectors), is not
deemed good enough, because the mere presence of the global OOM handlers
is burdens static analysis.
One option for these projects to use rust would just be to skip `alloc`,
rolling their own allocation abstractions. But this would, in my
opinion be a real shame. `alloc` has a few `try_*` methods already, and
we could easily have more. Features like custom allocator support also
demonstrate and existing to support diverse use-cases with the same
abstractions.
A natural way to add such a feature flag would a Cargo feature, but
there are currently uncertainties around how std library crate's Cargo
features may or not be stable, so to avoid any risk of stabilizing by
mistake we are going with a more low-level "raw cfg" token, which
cannot be interacted with via Cargo alone.
Note also that since there is no notion of "default cfg tokens" outside
of Cargo features, we have to invert the condition from
`global_oom_handling` to to `not(no_global_oom_handling)`. This breaks
the monotonicity that would be important for a Cargo feature (i.e.
turning on more features should never break compatibility), but it
doesn't matter for raw cfg tokens which are not intended to be
"constraint solved" by Cargo or anything else.
To support this use-case we create a new feature, "global-oom-handling",
on by default, and put the global OOM handler infra and everything else
it that depends on it behind it. By default, nothing is changed, but
users concerned about global handling can make sure it is disabled, and
be confident that all OOM handling is local and explicit.
For this first iteration, non-flat collections are outright disabled.
`Vec` and `String` don't yet have `try_*` allocation methods, but are
kept anyways since they can be oom-safely created "from parts", and we
hope to add those `try_` methods in the future.
[1]: https://lore.kernel.org/lkml/CAHk-=wh_sNLoz84AUUzuqXEsYH35u=8HV3vK-jbRbJ_B-JjGrg@mail.gmail.com/
2021-04-16 20:18:04 -04:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
2015-04-30 15:24:39 -07:00
|
|
|
|
#[stable(feature = "rust1", since = "1.0.0")]
|
2014-11-08 01:39:39 +01:00
|
|
|
|
impl Extend<char> for String {
|
2016-03-28 13:55:47 -04:00
|
|
|
|
fn extend<I: IntoIterator<Item = char>>(&mut self, iter: I) {
|
|
|
|
|
|
let iterator = iter.into_iter();
|
2014-12-07 21:31:24 +01:00
|
|
|
|
let (lower_bound, _) = iterator.size_hint();
|
|
|
|
|
|
self.reserve(lower_bound);
|
2018-12-05 14:37:38 -08:00
|
|
|
|
iterator.for_each(move |c| self.push(c));
|
2014-04-02 16:54:22 -07:00
|
|
|
|
}
|
2020-05-12 20:09:55 -07:00
|
|
|
|
|
|
|
|
|
|
#[inline]
|
|
|
|
|
|
fn extend_one(&mut self, c: char) {
|
|
|
|
|
|
self.push(c);
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
#[inline]
|
|
|
|
|
|
fn extend_reserve(&mut self, additional: usize) {
|
|
|
|
|
|
self.reserve(additional);
|
|
|
|
|
|
}
|
2014-04-02 16:54:22 -07:00
|
|
|
|
}
|
|
|
|
|
|
|
alloc: Add unstable Cfg feature `no-global_oom_handling`
For certain sorts of systems, programming, it's deemed essential that
all allocation failures be explicitly handled where they occur. For
example, see Linus Torvald's opinion in [1]. Merely not calling global
panic handlers, or always `try_reserving` first (for vectors), is not
deemed good enough, because the mere presence of the global OOM handlers
is burdens static analysis.
One option for these projects to use rust would just be to skip `alloc`,
rolling their own allocation abstractions. But this would, in my
opinion be a real shame. `alloc` has a few `try_*` methods already, and
we could easily have more. Features like custom allocator support also
demonstrate and existing to support diverse use-cases with the same
abstractions.
A natural way to add such a feature flag would a Cargo feature, but
there are currently uncertainties around how std library crate's Cargo
features may or not be stable, so to avoid any risk of stabilizing by
mistake we are going with a more low-level "raw cfg" token, which
cannot be interacted with via Cargo alone.
Note also that since there is no notion of "default cfg tokens" outside
of Cargo features, we have to invert the condition from
`global_oom_handling` to to `not(no_global_oom_handling)`. This breaks
the monotonicity that would be important for a Cargo feature (i.e.
turning on more features should never break compatibility), but it
doesn't matter for raw cfg tokens which are not intended to be
"constraint solved" by Cargo or anything else.
To support this use-case we create a new feature, "global-oom-handling",
on by default, and put the global OOM handler infra and everything else
it that depends on it behind it. By default, nothing is changed, but
users concerned about global handling can make sure it is disabled, and
be confident that all OOM handling is local and explicit.
For this first iteration, non-flat collections are outright disabled.
`Vec` and `String` don't yet have `try_*` allocation methods, but are
kept anyways since they can be oom-safely created "from parts", and we
hope to add those `try_` methods in the future.
[1]: https://lore.kernel.org/lkml/CAHk-=wh_sNLoz84AUUzuqXEsYH35u=8HV3vK-jbRbJ_B-JjGrg@mail.gmail.com/
2021-04-16 20:18:04 -04:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
2015-06-03 12:38:42 +02:00
|
|
|
|
#[stable(feature = "extend_ref", since = "1.2.0")]
|
|
|
|
|
|
impl<'a> Extend<&'a char> for String {
|
2016-03-28 13:55:47 -04:00
|
|
|
|
fn extend<I: IntoIterator<Item = &'a char>>(&mut self, iter: I) {
|
|
|
|
|
|
self.extend(iter.into_iter().cloned());
|
2015-06-03 12:38:42 +02:00
|
|
|
|
}
|
2020-05-12 20:09:55 -07:00
|
|
|
|
|
|
|
|
|
|
#[inline]
|
|
|
|
|
|
fn extend_one(&mut self, &c: &'a char) {
|
|
|
|
|
|
self.push(c);
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
#[inline]
|
|
|
|
|
|
fn extend_reserve(&mut self, additional: usize) {
|
|
|
|
|
|
self.reserve(additional);
|
|
|
|
|
|
}
|
2015-06-03 12:38:42 +02:00
|
|
|
|
}
|
|
|
|
|
|
|
alloc: Add unstable Cfg feature `no-global_oom_handling`
For certain sorts of systems, programming, it's deemed essential that
all allocation failures be explicitly handled where they occur. For
example, see Linus Torvald's opinion in [1]. Merely not calling global
panic handlers, or always `try_reserving` first (for vectors), is not
deemed good enough, because the mere presence of the global OOM handlers
is burdens static analysis.
One option for these projects to use rust would just be to skip `alloc`,
rolling their own allocation abstractions. But this would, in my
opinion be a real shame. `alloc` has a few `try_*` methods already, and
we could easily have more. Features like custom allocator support also
demonstrate and existing to support diverse use-cases with the same
abstractions.
A natural way to add such a feature flag would a Cargo feature, but
there are currently uncertainties around how std library crate's Cargo
features may or not be stable, so to avoid any risk of stabilizing by
mistake we are going with a more low-level "raw cfg" token, which
cannot be interacted with via Cargo alone.
Note also that since there is no notion of "default cfg tokens" outside
of Cargo features, we have to invert the condition from
`global_oom_handling` to to `not(no_global_oom_handling)`. This breaks
the monotonicity that would be important for a Cargo feature (i.e.
turning on more features should never break compatibility), but it
doesn't matter for raw cfg tokens which are not intended to be
"constraint solved" by Cargo or anything else.
To support this use-case we create a new feature, "global-oom-handling",
on by default, and put the global OOM handler infra and everything else
it that depends on it behind it. By default, nothing is changed, but
users concerned about global handling can make sure it is disabled, and
be confident that all OOM handling is local and explicit.
For this first iteration, non-flat collections are outright disabled.
`Vec` and `String` don't yet have `try_*` allocation methods, but are
kept anyways since they can be oom-safely created "from parts", and we
hope to add those `try_` methods in the future.
[1]: https://lore.kernel.org/lkml/CAHk-=wh_sNLoz84AUUzuqXEsYH35u=8HV3vK-jbRbJ_B-JjGrg@mail.gmail.com/
2021-04-16 20:18:04 -04:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
2015-04-30 15:24:39 -07:00
|
|
|
|
#[stable(feature = "rust1", since = "1.0.0")]
|
2014-12-07 21:32:00 +01:00
|
|
|
|
impl<'a> Extend<&'a str> for String {
|
2016-03-28 13:55:47 -04:00
|
|
|
|
fn extend<I: IntoIterator<Item = &'a str>>(&mut self, iter: I) {
|
2018-12-05 14:37:38 -08:00
|
|
|
|
iter.into_iter().for_each(move |s| self.push_str(s));
|
2014-12-07 21:32:00 +01:00
|
|
|
|
}
|
2020-05-12 20:09:55 -07:00
|
|
|
|
|
|
|
|
|
|
#[inline]
|
|
|
|
|
|
fn extend_one(&mut self, s: &'a str) {
|
|
|
|
|
|
self.push_str(s);
|
|
|
|
|
|
}
|
2014-12-07 21:32:00 +01:00
|
|
|
|
}
|
|
|
|
|
|
|
alloc: Add unstable Cfg feature `no-global_oom_handling`
For certain sorts of systems, programming, it's deemed essential that
all allocation failures be explicitly handled where they occur. For
example, see Linus Torvald's opinion in [1]. Merely not calling global
panic handlers, or always `try_reserving` first (for vectors), is not
deemed good enough, because the mere presence of the global OOM handlers
is burdens static analysis.
One option for these projects to use rust would just be to skip `alloc`,
rolling their own allocation abstractions. But this would, in my
opinion be a real shame. `alloc` has a few `try_*` methods already, and
we could easily have more. Features like custom allocator support also
demonstrate and existing to support diverse use-cases with the same
abstractions.
A natural way to add such a feature flag would a Cargo feature, but
there are currently uncertainties around how std library crate's Cargo
features may or not be stable, so to avoid any risk of stabilizing by
mistake we are going with a more low-level "raw cfg" token, which
cannot be interacted with via Cargo alone.
Note also that since there is no notion of "default cfg tokens" outside
of Cargo features, we have to invert the condition from
`global_oom_handling` to to `not(no_global_oom_handling)`. This breaks
the monotonicity that would be important for a Cargo feature (i.e.
turning on more features should never break compatibility), but it
doesn't matter for raw cfg tokens which are not intended to be
"constraint solved" by Cargo or anything else.
To support this use-case we create a new feature, "global-oom-handling",
on by default, and put the global OOM handler infra and everything else
it that depends on it behind it. By default, nothing is changed, but
users concerned about global handling can make sure it is disabled, and
be confident that all OOM handling is local and explicit.
For this first iteration, non-flat collections are outright disabled.
`Vec` and `String` don't yet have `try_*` allocation methods, but are
kept anyways since they can be oom-safely created "from parts", and we
hope to add those `try_` methods in the future.
[1]: https://lore.kernel.org/lkml/CAHk-=wh_sNLoz84AUUzuqXEsYH35u=8HV3vK-jbRbJ_B-JjGrg@mail.gmail.com/
2021-04-16 20:18:04 -04:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
2020-05-27 19:59:44 +02:00
|
|
|
|
#[stable(feature = "box_str2", since = "1.45.0")]
|
|
|
|
|
|
impl Extend<Box<str>> for String {
|
|
|
|
|
|
fn extend<I: IntoIterator<Item = Box<str>>>(&mut self, iter: I) {
|
|
|
|
|
|
iter.into_iter().for_each(move |s| self.push_str(&s));
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
alloc: Add unstable Cfg feature `no-global_oom_handling`
For certain sorts of systems, programming, it's deemed essential that
all allocation failures be explicitly handled where they occur. For
example, see Linus Torvald's opinion in [1]. Merely not calling global
panic handlers, or always `try_reserving` first (for vectors), is not
deemed good enough, because the mere presence of the global OOM handlers
is burdens static analysis.
One option for these projects to use rust would just be to skip `alloc`,
rolling their own allocation abstractions. But this would, in my
opinion be a real shame. `alloc` has a few `try_*` methods already, and
we could easily have more. Features like custom allocator support also
demonstrate and existing to support diverse use-cases with the same
abstractions.
A natural way to add such a feature flag would a Cargo feature, but
there are currently uncertainties around how std library crate's Cargo
features may or not be stable, so to avoid any risk of stabilizing by
mistake we are going with a more low-level "raw cfg" token, which
cannot be interacted with via Cargo alone.
Note also that since there is no notion of "default cfg tokens" outside
of Cargo features, we have to invert the condition from
`global_oom_handling` to to `not(no_global_oom_handling)`. This breaks
the monotonicity that would be important for a Cargo feature (i.e.
turning on more features should never break compatibility), but it
doesn't matter for raw cfg tokens which are not intended to be
"constraint solved" by Cargo or anything else.
To support this use-case we create a new feature, "global-oom-handling",
on by default, and put the global OOM handler infra and everything else
it that depends on it behind it. By default, nothing is changed, but
users concerned about global handling can make sure it is disabled, and
be confident that all OOM handling is local and explicit.
For this first iteration, non-flat collections are outright disabled.
`Vec` and `String` don't yet have `try_*` allocation methods, but are
kept anyways since they can be oom-safely created "from parts", and we
hope to add those `try_` methods in the future.
[1]: https://lore.kernel.org/lkml/CAHk-=wh_sNLoz84AUUzuqXEsYH35u=8HV3vK-jbRbJ_B-JjGrg@mail.gmail.com/
2021-04-16 20:18:04 -04:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
2015-08-27 08:47:08 -07:00
|
|
|
|
#[stable(feature = "extend_string", since = "1.4.0")]
|
|
|
|
|
|
impl Extend<String> for String {
|
2016-03-28 13:55:47 -04:00
|
|
|
|
fn extend<I: IntoIterator<Item = String>>(&mut self, iter: I) {
|
2018-12-05 14:37:38 -08:00
|
|
|
|
iter.into_iter().for_each(move |s| self.push_str(&s));
|
2015-08-27 08:47:08 -07:00
|
|
|
|
}
|
2020-05-12 20:09:55 -07:00
|
|
|
|
|
|
|
|
|
|
#[inline]
|
|
|
|
|
|
fn extend_one(&mut self, s: String) {
|
|
|
|
|
|
self.push_str(&s);
|
|
|
|
|
|
}
|
2015-08-27 08:47:08 -07:00
|
|
|
|
}
|
|
|
|
|
|
|
alloc: Add unstable Cfg feature `no-global_oom_handling`
For certain sorts of systems, programming, it's deemed essential that
all allocation failures be explicitly handled where they occur. For
example, see Linus Torvald's opinion in [1]. Merely not calling global
panic handlers, or always `try_reserving` first (for vectors), is not
deemed good enough, because the mere presence of the global OOM handlers
is burdens static analysis.
One option for these projects to use rust would just be to skip `alloc`,
rolling their own allocation abstractions. But this would, in my
opinion be a real shame. `alloc` has a few `try_*` methods already, and
we could easily have more. Features like custom allocator support also
demonstrate and existing to support diverse use-cases with the same
abstractions.
A natural way to add such a feature flag would a Cargo feature, but
there are currently uncertainties around how std library crate's Cargo
features may or not be stable, so to avoid any risk of stabilizing by
mistake we are going with a more low-level "raw cfg" token, which
cannot be interacted with via Cargo alone.
Note also that since there is no notion of "default cfg tokens" outside
of Cargo features, we have to invert the condition from
`global_oom_handling` to to `not(no_global_oom_handling)`. This breaks
the monotonicity that would be important for a Cargo feature (i.e.
turning on more features should never break compatibility), but it
doesn't matter for raw cfg tokens which are not intended to be
"constraint solved" by Cargo or anything else.
To support this use-case we create a new feature, "global-oom-handling",
on by default, and put the global OOM handler infra and everything else
it that depends on it behind it. By default, nothing is changed, but
users concerned about global handling can make sure it is disabled, and
be confident that all OOM handling is local and explicit.
For this first iteration, non-flat collections are outright disabled.
`Vec` and `String` don't yet have `try_*` allocation methods, but are
kept anyways since they can be oom-safely created "from parts", and we
hope to add those `try_` methods in the future.
[1]: https://lore.kernel.org/lkml/CAHk-=wh_sNLoz84AUUzuqXEsYH35u=8HV3vK-jbRbJ_B-JjGrg@mail.gmail.com/
2021-04-16 20:18:04 -04:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
2017-04-21 13:25:48 -04:00
|
|
|
|
#[stable(feature = "herd_cows", since = "1.19.0")]
|
|
|
|
|
|
impl<'a> Extend<Cow<'a, str>> for String {
|
|
|
|
|
|
fn extend<I: IntoIterator<Item = Cow<'a, str>>>(&mut self, iter: I) {
|
2018-12-05 14:37:38 -08:00
|
|
|
|
iter.into_iter().for_each(move |s| self.push_str(&s));
|
2017-04-21 13:25:48 -04:00
|
|
|
|
}
|
2020-05-12 20:09:55 -07:00
|
|
|
|
|
|
|
|
|
|
#[inline]
|
|
|
|
|
|
fn extend_one(&mut self, s: Cow<'a, str>) {
|
|
|
|
|
|
self.push_str(&s);
|
|
|
|
|
|
}
|
2017-04-21 13:25:48 -04:00
|
|
|
|
}
|
|
|
|
|
|
|
2020-04-13 22:24:58 +08:00
|
|
|
|
/// A convenience impl that delegates to the impl for `&str`.
|
2020-04-13 22:25:15 +08:00
|
|
|
|
///
|
|
|
|
|
|
/// # Examples
|
|
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
/// assert_eq!(String::from("Hello world").find("world"), Some(6));
|
|
|
|
|
|
/// ```
|
2015-11-16 19:54:28 +03:00
|
|
|
|
#[unstable(
|
|
|
|
|
|
feature = "pattern",
|
|
|
|
|
|
reason = "API not fully fleshed out and ready to be stabilized",
|
|
|
|
|
|
issue = "27721"
|
|
|
|
|
|
)]
|
2015-03-21 06:02:56 -04:00
|
|
|
|
impl<'a, 'b> Pattern<'a> for &'b String {
|
|
|
|
|
|
type Searcher = <&'b str as Pattern<'a>>::Searcher;
|
|
|
|
|
|
|
|
|
|
|
|
fn into_searcher(self, haystack: &'a str) -> <&'b str as Pattern<'a>>::Searcher {
|
|
|
|
|
|
self[..].into_searcher(haystack)
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
#[inline]
|
|
|
|
|
|
fn is_contained_in(self, haystack: &'a str) -> bool {
|
|
|
|
|
|
self[..].is_contained_in(haystack)
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
#[inline]
|
|
|
|
|
|
fn is_prefix_of(self, haystack: &'a str) -> bool {
|
|
|
|
|
|
self[..].is_prefix_of(haystack)
|
|
|
|
|
|
}
|
2020-03-06 15:11:24 -05:00
|
|
|
|
|
|
|
|
|
|
#[inline]
|
|
|
|
|
|
fn strip_prefix_of(self, haystack: &'a str) -> Option<&'a str> {
|
|
|
|
|
|
self[..].strip_prefix_of(haystack)
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
#[inline]
|
|
|
|
|
|
fn is_suffix_of(self, haystack: &'a str) -> bool {
|
|
|
|
|
|
self[..].is_suffix_of(haystack)
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
#[inline]
|
|
|
|
|
|
fn strip_suffix_of(self, haystack: &'a str) -> Option<&'a str> {
|
|
|
|
|
|
self[..].strip_suffix_of(haystack)
|
|
|
|
|
|
}
|
2015-03-21 06:02:56 -04:00
|
|
|
|
}
|
|
|
|
|
|
|
2014-11-21 00:14:05 -05:00
|
|
|
|
macro_rules! impl_eq {
|
|
|
|
|
|
($lhs:ty, $rhs: ty) => {
|
2015-01-23 21:48:20 -08:00
|
|
|
|
#[stable(feature = "rust1", since = "1.0.0")]
|
2019-07-23 22:17:27 +03:00
|
|
|
|
#[allow(unused_lifetimes)]
|
2015-11-03 04:54:32 +00:00
|
|
|
|
impl<'a, 'b> PartialEq<$rhs> for $lhs {
|
2014-11-21 00:14:05 -05:00
|
|
|
|
#[inline]
|
2015-04-02 18:50:09 +03:00
|
|
|
|
fn eq(&self, other: &$rhs) -> bool {
|
|
|
|
|
|
PartialEq::eq(&self[..], &other[..])
|
|
|
|
|
|
}
|
2014-11-21 00:14:05 -05:00
|
|
|
|
#[inline]
|
2015-04-02 18:50:09 +03:00
|
|
|
|
fn ne(&self, other: &$rhs) -> bool {
|
|
|
|
|
|
PartialEq::ne(&self[..], &other[..])
|
|
|
|
|
|
}
|
2014-11-21 00:14:05 -05:00
|
|
|
|
}
|
|
|
|
|
|
|
2015-01-23 21:48:20 -08:00
|
|
|
|
#[stable(feature = "rust1", since = "1.0.0")]
|
2019-07-23 22:17:27 +03:00
|
|
|
|
#[allow(unused_lifetimes)]
|
2015-11-03 04:54:32 +00:00
|
|
|
|
impl<'a, 'b> PartialEq<$lhs> for $rhs {
|
2014-11-21 00:14:05 -05:00
|
|
|
|
#[inline]
|
2015-04-02 18:50:09 +03:00
|
|
|
|
fn eq(&self, other: &$lhs) -> bool {
|
|
|
|
|
|
PartialEq::eq(&self[..], &other[..])
|
|
|
|
|
|
}
|
2014-11-21 00:14:05 -05:00
|
|
|
|
#[inline]
|
2015-04-02 18:50:09 +03:00
|
|
|
|
fn ne(&self, other: &$lhs) -> bool {
|
|
|
|
|
|
PartialEq::ne(&self[..], &other[..])
|
|
|
|
|
|
}
|
2014-11-21 00:14:05 -05:00
|
|
|
|
}
|
|
|
|
|
|
};
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2015-04-02 18:51:14 +03:00
|
|
|
|
impl_eq! { String, str }
|
2014-11-14 09:18:10 -08:00
|
|
|
|
impl_eq! { String, &'a str }
|
alloc: Add unstable Cfg feature `no-global_oom_handling`
For certain sorts of systems, programming, it's deemed essential that
all allocation failures be explicitly handled where they occur. For
example, see Linus Torvald's opinion in [1]. Merely not calling global
panic handlers, or always `try_reserving` first (for vectors), is not
deemed good enough, because the mere presence of the global OOM handlers
is burdens static analysis.
One option for these projects to use rust would just be to skip `alloc`,
rolling their own allocation abstractions. But this would, in my
opinion be a real shame. `alloc` has a few `try_*` methods already, and
we could easily have more. Features like custom allocator support also
demonstrate and existing to support diverse use-cases with the same
abstractions.
A natural way to add such a feature flag would a Cargo feature, but
there are currently uncertainties around how std library crate's Cargo
features may or not be stable, so to avoid any risk of stabilizing by
mistake we are going with a more low-level "raw cfg" token, which
cannot be interacted with via Cargo alone.
Note also that since there is no notion of "default cfg tokens" outside
of Cargo features, we have to invert the condition from
`global_oom_handling` to to `not(no_global_oom_handling)`. This breaks
the monotonicity that would be important for a Cargo feature (i.e.
turning on more features should never break compatibility), but it
doesn't matter for raw cfg tokens which are not intended to be
"constraint solved" by Cargo or anything else.
To support this use-case we create a new feature, "global-oom-handling",
on by default, and put the global OOM handler infra and everything else
it that depends on it behind it. By default, nothing is changed, but
users concerned about global handling can make sure it is disabled, and
be confident that all OOM handling is local and explicit.
For this first iteration, non-flat collections are outright disabled.
`Vec` and `String` don't yet have `try_*` allocation methods, but are
kept anyways since they can be oom-safely created "from parts", and we
hope to add those `try_` methods in the future.
[1]: https://lore.kernel.org/lkml/CAHk-=wh_sNLoz84AUUzuqXEsYH35u=8HV3vK-jbRbJ_B-JjGrg@mail.gmail.com/
2021-04-16 20:18:04 -04:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
2015-04-02 18:51:14 +03:00
|
|
|
|
impl_eq! { Cow<'a, str>, str }
|
alloc: Add unstable Cfg feature `no-global_oom_handling`
For certain sorts of systems, programming, it's deemed essential that
all allocation failures be explicitly handled where they occur. For
example, see Linus Torvald's opinion in [1]. Merely not calling global
panic handlers, or always `try_reserving` first (for vectors), is not
deemed good enough, because the mere presence of the global OOM handlers
is burdens static analysis.
One option for these projects to use rust would just be to skip `alloc`,
rolling their own allocation abstractions. But this would, in my
opinion be a real shame. `alloc` has a few `try_*` methods already, and
we could easily have more. Features like custom allocator support also
demonstrate and existing to support diverse use-cases with the same
abstractions.
A natural way to add such a feature flag would a Cargo feature, but
there are currently uncertainties around how std library crate's Cargo
features may or not be stable, so to avoid any risk of stabilizing by
mistake we are going with a more low-level "raw cfg" token, which
cannot be interacted with via Cargo alone.
Note also that since there is no notion of "default cfg tokens" outside
of Cargo features, we have to invert the condition from
`global_oom_handling` to to `not(no_global_oom_handling)`. This breaks
the monotonicity that would be important for a Cargo feature (i.e.
turning on more features should never break compatibility), but it
doesn't matter for raw cfg tokens which are not intended to be
"constraint solved" by Cargo or anything else.
To support this use-case we create a new feature, "global-oom-handling",
on by default, and put the global OOM handler infra and everything else
it that depends on it behind it. By default, nothing is changed, but
users concerned about global handling can make sure it is disabled, and
be confident that all OOM handling is local and explicit.
For this first iteration, non-flat collections are outright disabled.
`Vec` and `String` don't yet have `try_*` allocation methods, but are
kept anyways since they can be oom-safely created "from parts", and we
hope to add those `try_` methods in the future.
[1]: https://lore.kernel.org/lkml/CAHk-=wh_sNLoz84AUUzuqXEsYH35u=8HV3vK-jbRbJ_B-JjGrg@mail.gmail.com/
2021-04-16 20:18:04 -04:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
2015-11-03 04:54:32 +00:00
|
|
|
|
impl_eq! { Cow<'a, str>, &'b str }
|
alloc: Add unstable Cfg feature `no-global_oom_handling`
For certain sorts of systems, programming, it's deemed essential that
all allocation failures be explicitly handled where they occur. For
example, see Linus Torvald's opinion in [1]. Merely not calling global
panic handlers, or always `try_reserving` first (for vectors), is not
deemed good enough, because the mere presence of the global OOM handlers
is burdens static analysis.
One option for these projects to use rust would just be to skip `alloc`,
rolling their own allocation abstractions. But this would, in my
opinion be a real shame. `alloc` has a few `try_*` methods already, and
we could easily have more. Features like custom allocator support also
demonstrate and existing to support diverse use-cases with the same
abstractions.
A natural way to add such a feature flag would a Cargo feature, but
there are currently uncertainties around how std library crate's Cargo
features may or not be stable, so to avoid any risk of stabilizing by
mistake we are going with a more low-level "raw cfg" token, which
cannot be interacted with via Cargo alone.
Note also that since there is no notion of "default cfg tokens" outside
of Cargo features, we have to invert the condition from
`global_oom_handling` to to `not(no_global_oom_handling)`. This breaks
the monotonicity that would be important for a Cargo feature (i.e.
turning on more features should never break compatibility), but it
doesn't matter for raw cfg tokens which are not intended to be
"constraint solved" by Cargo or anything else.
To support this use-case we create a new feature, "global-oom-handling",
on by default, and put the global OOM handler infra and everything else
it that depends on it behind it. By default, nothing is changed, but
users concerned about global handling can make sure it is disabled, and
be confident that all OOM handling is local and explicit.
For this first iteration, non-flat collections are outright disabled.
`Vec` and `String` don't yet have `try_*` allocation methods, but are
kept anyways since they can be oom-safely created "from parts", and we
hope to add those `try_` methods in the future.
[1]: https://lore.kernel.org/lkml/CAHk-=wh_sNLoz84AUUzuqXEsYH35u=8HV3vK-jbRbJ_B-JjGrg@mail.gmail.com/
2021-04-16 20:18:04 -04:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
2015-02-11 23:16:32 -08:00
|
|
|
|
impl_eq! { Cow<'a, str>, String }
|
2014-11-21 00:14:05 -05:00
|
|
|
|
|
2015-01-23 21:48:20 -08:00
|
|
|
|
#[stable(feature = "rust1", since = "1.0.0")]
|
2023-04-16 06:49:27 +00:00
|
|
|
|
impl Default for String {
|
2016-09-11 17:00:09 +05:30
|
|
|
|
/// Creates an empty `String`.
|
2015-01-10 11:07:14 +01:00
|
|
|
|
#[inline]
|
2014-05-22 16:57:53 -07:00
|
|
|
|
fn default() -> String {
|
|
|
|
|
|
String::new()
|
2014-05-19 23:19:56 -07:00
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2015-01-23 21:48:20 -08:00
|
|
|
|
#[stable(feature = "rust1", since = "1.0.0")]
|
2015-01-20 15:45:07 -08:00
|
|
|
|
impl fmt::Display for String {
|
2015-01-10 11:07:14 +01:00
|
|
|
|
#[inline]
|
2019-02-02 12:48:12 +01:00
|
|
|
|
fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
|
2015-01-20 15:45:07 -08:00
|
|
|
|
fmt::Display::fmt(&**self, f)
|
2014-12-20 00:09:35 -08:00
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2015-01-24 09:15:42 -08:00
|
|
|
|
#[stable(feature = "rust1", since = "1.0.0")]
|
2015-01-20 15:45:07 -08:00
|
|
|
|
impl fmt::Debug for String {
|
2015-01-10 11:07:14 +01:00
|
|
|
|
#[inline]
|
2019-02-02 12:48:12 +01:00
|
|
|
|
fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
|
2015-01-20 15:45:07 -08:00
|
|
|
|
fmt::Debug::fmt(&**self, f)
|
2014-04-02 16:54:22 -07:00
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2015-02-17 20:48:07 -08:00
|
|
|
|
#[stable(feature = "rust1", since = "1.0.0")]
|
|
|
|
|
|
impl hash::Hash for String {
|
|
|
|
|
|
#[inline]
|
|
|
|
|
|
fn hash<H: hash::Hasher>(&self, hasher: &mut H) {
|
|
|
|
|
|
(**self).hash(hasher)
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
2014-04-02 16:54:22 -07:00
|
|
|
|
|
2017-02-16 09:18:18 -08:00
|
|
|
|
/// Implements the `+` operator for concatenating two strings.
|
|
|
|
|
|
///
|
|
|
|
|
|
/// This consumes the `String` on the left-hand side and re-uses its buffer (growing it if
|
|
|
|
|
|
/// necessary). This is done to avoid allocating a new `String` and copying the entire contents on
|
2020-07-03 12:13:01 -07:00
|
|
|
|
/// every operation, which would lead to *O*(*n*^2) running time when building an *n*-byte string by
|
2017-02-16 09:18:18 -08:00
|
|
|
|
/// repeated concatenation.
|
|
|
|
|
|
///
|
|
|
|
|
|
/// The string on the right-hand side is only borrowed; its contents are copied into the returned
|
|
|
|
|
|
/// `String`.
|
|
|
|
|
|
///
|
|
|
|
|
|
/// # Examples
|
|
|
|
|
|
///
|
|
|
|
|
|
/// Concatenating two `String`s takes the first by value and borrows the second:
|
|
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
/// let a = String::from("hello");
|
|
|
|
|
|
/// let b = String::from(" world");
|
|
|
|
|
|
/// let c = a + &b;
|
|
|
|
|
|
/// // `a` is moved and can no longer be used here.
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
///
|
|
|
|
|
|
/// If you want to keep using the first `String`, you can clone it and append to the clone instead:
|
|
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
/// let a = String::from("hello");
|
|
|
|
|
|
/// let b = String::from(" world");
|
|
|
|
|
|
/// let c = a.clone() + &b;
|
|
|
|
|
|
/// // `a` is still valid here.
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
///
|
|
|
|
|
|
/// Concatenating `&str` slices can be done by converting the first to a `String`:
|
|
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
/// let a = "hello";
|
|
|
|
|
|
/// let b = " world";
|
|
|
|
|
|
/// let c = a.to_string() + b;
|
|
|
|
|
|
/// ```
|
alloc: Add unstable Cfg feature `no-global_oom_handling`
For certain sorts of systems, programming, it's deemed essential that
all allocation failures be explicitly handled where they occur. For
example, see Linus Torvald's opinion in [1]. Merely not calling global
panic handlers, or always `try_reserving` first (for vectors), is not
deemed good enough, because the mere presence of the global OOM handlers
is burdens static analysis.
One option for these projects to use rust would just be to skip `alloc`,
rolling their own allocation abstractions. But this would, in my
opinion be a real shame. `alloc` has a few `try_*` methods already, and
we could easily have more. Features like custom allocator support also
demonstrate and existing to support diverse use-cases with the same
abstractions.
A natural way to add such a feature flag would a Cargo feature, but
there are currently uncertainties around how std library crate's Cargo
features may or not be stable, so to avoid any risk of stabilizing by
mistake we are going with a more low-level "raw cfg" token, which
cannot be interacted with via Cargo alone.
Note also that since there is no notion of "default cfg tokens" outside
of Cargo features, we have to invert the condition from
`global_oom_handling` to to `not(no_global_oom_handling)`. This breaks
the monotonicity that would be important for a Cargo feature (i.e.
turning on more features should never break compatibility), but it
doesn't matter for raw cfg tokens which are not intended to be
"constraint solved" by Cargo or anything else.
To support this use-case we create a new feature, "global-oom-handling",
on by default, and put the global OOM handler infra and everything else
it that depends on it behind it. By default, nothing is changed, but
users concerned about global handling can make sure it is disabled, and
be confident that all OOM handling is local and explicit.
For this first iteration, non-flat collections are outright disabled.
`Vec` and `String` don't yet have `try_*` allocation methods, but are
kept anyways since they can be oom-safely created "from parts", and we
hope to add those `try_` methods in the future.
[1]: https://lore.kernel.org/lkml/CAHk-=wh_sNLoz84AUUzuqXEsYH35u=8HV3vK-jbRbJ_B-JjGrg@mail.gmail.com/
2021-04-16 20:18:04 -04:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
2015-04-30 15:24:39 -07:00
|
|
|
|
#[stable(feature = "rust1", since = "1.0.0")]
|
2019-02-02 12:23:15 +01:00
|
|
|
|
impl Add<&str> for String {
|
2014-12-31 15:45:13 -05:00
|
|
|
|
type Output = String;
|
|
|
|
|
|
|
2015-01-10 11:07:14 +01:00
|
|
|
|
#[inline]
|
2014-12-01 14:08:56 -05:00
|
|
|
|
fn add(mut self, other: &str) -> String {
|
|
|
|
|
|
self.push_str(other);
|
|
|
|
|
|
self
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2017-02-16 09:18:18 -08:00
|
|
|
|
/// Implements the `+=` operator for appending to a `String`.
|
|
|
|
|
|
///
|
2018-07-01 18:51:39 +02:00
|
|
|
|
/// This has the same behavior as the [`push_str`][String::push_str] method.
|
alloc: Add unstable Cfg feature `no-global_oom_handling`
For certain sorts of systems, programming, it's deemed essential that
all allocation failures be explicitly handled where they occur. For
example, see Linus Torvald's opinion in [1]. Merely not calling global
panic handlers, or always `try_reserving` first (for vectors), is not
deemed good enough, because the mere presence of the global OOM handlers
is burdens static analysis.
One option for these projects to use rust would just be to skip `alloc`,
rolling their own allocation abstractions. But this would, in my
opinion be a real shame. `alloc` has a few `try_*` methods already, and
we could easily have more. Features like custom allocator support also
demonstrate and existing to support diverse use-cases with the same
abstractions.
A natural way to add such a feature flag would a Cargo feature, but
there are currently uncertainties around how std library crate's Cargo
features may or not be stable, so to avoid any risk of stabilizing by
mistake we are going with a more low-level "raw cfg" token, which
cannot be interacted with via Cargo alone.
Note also that since there is no notion of "default cfg tokens" outside
of Cargo features, we have to invert the condition from
`global_oom_handling` to to `not(no_global_oom_handling)`. This breaks
the monotonicity that would be important for a Cargo feature (i.e.
turning on more features should never break compatibility), but it
doesn't matter for raw cfg tokens which are not intended to be
"constraint solved" by Cargo or anything else.
To support this use-case we create a new feature, "global-oom-handling",
on by default, and put the global OOM handler infra and everything else
it that depends on it behind it. By default, nothing is changed, but
users concerned about global handling can make sure it is disabled, and
be confident that all OOM handling is local and explicit.
For this first iteration, non-flat collections are outright disabled.
`Vec` and `String` don't yet have `try_*` allocation methods, but are
kept anyways since they can be oom-safely created "from parts", and we
hope to add those `try_` methods in the future.
[1]: https://lore.kernel.org/lkml/CAHk-=wh_sNLoz84AUUzuqXEsYH35u=8HV3vK-jbRbJ_B-JjGrg@mail.gmail.com/
2021-04-16 20:18:04 -04:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
2016-07-18 14:27:17 -04:00
|
|
|
|
#[stable(feature = "stringaddassign", since = "1.12.0")]
|
2019-02-02 12:23:15 +01:00
|
|
|
|
impl AddAssign<&str> for String {
|
2016-07-17 11:31:44 -04:00
|
|
|
|
#[inline]
|
|
|
|
|
|
fn add_assign(&mut self, other: &str) {
|
|
|
|
|
|
self.push_str(other);
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2015-01-24 09:15:42 -08:00
|
|
|
|
#[stable(feature = "rust1", since = "1.0.0")]
|
2024-01-23 19:00:10 -07:00
|
|
|
|
impl<I> ops::Index<I> for String
|
|
|
|
|
|
where
|
|
|
|
|
|
I: slice::SliceIndex<str>,
|
|
|
|
|
|
{
|
|
|
|
|
|
type Output = I::Output;
|
2015-03-21 19:33:27 -04:00
|
|
|
|
|
|
|
|
|
|
#[inline]
|
2024-01-23 19:00:10 -07:00
|
|
|
|
fn index(&self, index: I) -> &I::Output {
|
|
|
|
|
|
index.index(self.as_str())
|
2015-03-21 19:33:27 -04:00
|
|
|
|
}
|
2014-12-31 20:20:40 +13:00
|
|
|
|
}
|
2015-03-21 19:33:27 -04:00
|
|
|
|
|
2015-01-24 09:15:42 -08:00
|
|
|
|
#[stable(feature = "rust1", since = "1.0.0")]
|
2024-01-23 19:00:10 -07:00
|
|
|
|
impl<I> ops::IndexMut<I> for String
|
|
|
|
|
|
where
|
|
|
|
|
|
I: slice::SliceIndex<str>,
|
|
|
|
|
|
{
|
2016-01-28 11:20:48 -05:00
|
|
|
|
#[inline]
|
2024-01-23 19:00:10 -07:00
|
|
|
|
fn index_mut(&mut self, index: I) -> &mut I::Output {
|
|
|
|
|
|
index.index_mut(self.as_mut_str())
|
2016-01-28 11:20:48 -05:00
|
|
|
|
}
|
|
|
|
|
|
}
|
2015-06-15 18:33:21 +02:00
|
|
|
|
|
2015-01-23 21:48:20 -08:00
|
|
|
|
#[stable(feature = "rust1", since = "1.0.0")]
|
2015-01-01 14:53:20 -05:00
|
|
|
|
impl ops::Deref for String {
|
|
|
|
|
|
type Target = str;
|
|
|
|
|
|
|
2015-01-10 11:07:14 +01:00
|
|
|
|
#[inline]
|
2015-02-05 13:48:20 -05:00
|
|
|
|
fn deref(&self) -> &str {
|
2015-07-24 03:04:55 +02:00
|
|
|
|
unsafe { str::from_utf8_unchecked(&self.vec) }
|
std: Stabilize the std::str module
This commit starts out by consolidating all `str` extension traits into one
`StrExt` trait to be included in the prelude. This means that
`UnicodeStrPrelude`, `StrPrelude`, and `StrAllocating` have all been merged into
one `StrExt` exported by the standard library. Some functionality is currently
duplicated with the `StrExt` present in libcore.
This commit also currently avoids any methods which require any form of pattern
to operate. These functions will be stabilized via a separate RFC.
Next, stability of methods and structures are as follows:
Stable
* from_utf8_unchecked
* CowString - after moving to std::string
* StrExt::as_bytes
* StrExt::as_ptr
* StrExt::bytes/Bytes - also made a struct instead of a typedef
* StrExt::char_indices/CharIndices - CharOffsets was renamed
* StrExt::chars/Chars
* StrExt::is_empty
* StrExt::len
* StrExt::lines/Lines
* StrExt::lines_any/LinesAny
* StrExt::slice_unchecked
* StrExt::trim
* StrExt::trim_left
* StrExt::trim_right
* StrExt::words/Words - also made a struct instead of a typedef
Unstable
* from_utf8 - the error type was changed to a `Result`, but the error type has
yet to prove itself
* from_c_str - this function will be handled by the c_str RFC
* FromStr - this trait will have an associated error type eventually
* StrExt::escape_default - needs iterators at least, unsure if it should make
the cut
* StrExt::escape_unicode - needs iterators at least, unsure if it should make
the cut
* StrExt::slice_chars - this function has yet to prove itself
* StrExt::slice_shift_char - awaiting conventions about slicing and shifting
* StrExt::graphemes/Graphemes - this functionality may only be in libunicode
* StrExt::grapheme_indices/GraphemeIndices - this functionality may only be in
libunicode
* StrExt::width - this functionality may only be in libunicode
* StrExt::utf16_units - this functionality may only be in libunicode
* StrExt::nfd_chars - this functionality may only be in libunicode
* StrExt::nfkd_chars - this functionality may only be in libunicode
* StrExt::nfc_chars - this functionality may only be in libunicode
* StrExt::nfkc_chars - this functionality may only be in libunicode
* StrExt::is_char_boundary - naming is uncertain with container conventions
* StrExt::char_range_at - naming is uncertain with container conventions
* StrExt::char_range_at_reverse - naming is uncertain with container conventions
* StrExt::char_at - naming is uncertain with container conventions
* StrExt::char_at_reverse - naming is uncertain with container conventions
* StrVector::concat - this functionality may be replaced with iterators, but
it's not certain at this time
* StrVector::connect - as with concat, may be deprecated in favor of iterators
Deprecated
* StrAllocating and UnicodeStrPrelude have been merged into StrExit
* eq_slice - compiler implementation detail
* from_str - use the inherent parse() method
* is_utf8 - call from_utf8 instead
* replace - call the method instead
* truncate_utf16_at_nul - this is an implementation detail of windows and does
not need to be exposed.
* utf8_char_width - moved to libunicode
* utf16_items - moved to libunicode
* is_utf16 - moved to libunicode
* Utf16Items - moved to libunicode
* Utf16Item - moved to libunicode
* Utf16Encoder - moved to libunicode
* AnyLines - renamed to LinesAny and made a struct
* SendStr - use CowString<'static> instead
* str::raw - all functionality is deprecated
* StrExt::into_string - call to_string() instead
* StrExt::repeat - use iterators instead
* StrExt::char_len - use .chars().count() instead
* StrExt::is_alphanumeric - use .chars().all(..)
* StrExt::is_whitespace - use .chars().all(..)
Pending deprecation -- while slicing syntax is being worked out, these methods
are all #[unstable]
* Str - while currently used for generic programming, this trait will be
replaced with one of [], deref coercions, or a generic conversion trait.
* StrExt::slice - use slicing syntax instead
* StrExt::slice_to - use slicing syntax instead
* StrExt::slice_from - use slicing syntax instead
* StrExt::lev_distance - deprecated with no replacement
Awaiting stabilization due to patterns and/or matching
* StrExt::contains
* StrExt::contains_char
* StrExt::split
* StrExt::splitn
* StrExt::split_terminator
* StrExt::rsplitn
* StrExt::match_indices
* StrExt::split_str
* StrExt::starts_with
* StrExt::ends_with
* StrExt::trim_chars
* StrExt::trim_left_chars
* StrExt::trim_right_chars
* StrExt::find
* StrExt::rfind
* StrExt::find_str
* StrExt::subslice_offset
2014-12-10 09:02:31 -08:00
|
|
|
|
}
|
2014-10-29 15:26:29 -07:00
|
|
|
|
}
|
|
|
|
|
|
|
2024-03-21 14:37:43 -04:00
|
|
|
|
#[unstable(feature = "deref_pure_trait", issue = "87121")]
|
|
|
|
|
|
unsafe impl ops::DerefPure for String {}
|
|
|
|
|
|
|
2017-05-20 08:38:39 +01:00
|
|
|
|
#[stable(feature = "derefmut_for_string", since = "1.3.0")]
|
2015-06-12 10:29:23 +02:00
|
|
|
|
impl ops::DerefMut for String {
|
|
|
|
|
|
#[inline]
|
|
|
|
|
|
fn deref_mut(&mut self) -> &mut str {
|
2017-03-10 12:10:26 -05:00
|
|
|
|
unsafe { str::from_utf8_unchecked_mut(&mut *self.vec) }
|
2015-06-12 10:29:23 +02:00
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2020-02-19 16:37:58 -05:00
|
|
|
|
/// A type alias for [`Infallible`].
|
2015-11-30 14:47:14 -05:00
|
|
|
|
///
|
2020-02-19 16:37:58 -05:00
|
|
|
|
/// This alias exists for backwards compatibility, and may be eventually deprecated.
|
2015-11-30 14:47:14 -05:00
|
|
|
|
///
|
Apply 16 commits (squashed)
----------
Fix spacing for links inside code blocks, and improve link tooltips in alloc::fmt
----------
Fix spacing for links inside code blocks, and improve link tooltips in alloc::{rc, sync}
----------
Fix spacing for links inside code blocks, and improve link tooltips in alloc::string
----------
Fix spacing for links inside code blocks in alloc::vec
----------
Fix spacing for links inside code blocks in core::option
----------
Fix spacing for links inside code blocks, and improve a few link tooltips in core::result
----------
Fix spacing for links inside code blocks in core::{iter::{self, iterator}, stream::stream, poll}
----------
Fix spacing for links inside code blocks, and improve a few link tooltips in std::{fs, path}
----------
Fix spacing for links inside code blocks in std::{collections, time}
----------
Fix spacing for links inside code blocks in and make formatting of `&str`-like types consistent in std::ffi::{c_str, os_str}
----------
Fix spacing for links inside code blocks, and improve link tooltips in std::ffi
----------
Fix spacing for links inside code blocks, and improve a few link tooltips
in std::{io::{self, buffered::{bufreader, bufwriter}, cursor, util}, net::{self, addr}}
----------
Fix typo in link to `into` for `OsString` docs
----------
Remove tooltips that will probably become redundant in the future
----------
Apply suggestions from code review
Replacing `…std/primitive.reference.html` paths with just `reference`
Co-authored-by: Joshua Nelson <github@jyn.dev>
----------
Also replace `…std/primitive.reference.html` paths with just `reference` in `core::pin`
2021-08-25 11:45:08 +02:00
|
|
|
|
/// [`Infallible`]: core::convert::Infallible "convert::Infallible"
|
std: Stabilize library APIs for 1.5
This commit stabilizes and deprecates library APIs whose FCP has closed in the
last cycle, specifically:
Stabilized APIs:
* `fs::canonicalize`
* `Path::{metadata, symlink_metadata, canonicalize, read_link, read_dir, exists,
is_file, is_dir}` - all moved to inherent methods from the `PathExt` trait.
* `Formatter::fill`
* `Formatter::width`
* `Formatter::precision`
* `Formatter::sign_plus`
* `Formatter::sign_minus`
* `Formatter::alternate`
* `Formatter::sign_aware_zero_pad`
* `string::ParseError`
* `Utf8Error::valid_up_to`
* `Iterator::{cmp, partial_cmp, eq, ne, lt, le, gt, ge}`
* `<[T]>::split_{first,last}{,_mut}`
* `Condvar::wait_timeout` - note that `wait_timeout_ms` is not yet deprecated
but will be once 1.5 is released.
* `str::{R,}MatchIndices`
* `str::{r,}match_indices`
* `char::from_u32_unchecked`
* `VecDeque::insert`
* `VecDeque::shrink_to_fit`
* `VecDeque::as_slices`
* `VecDeque::as_mut_slices`
* `VecDeque::swap_remove_front` - (renamed from `swap_front_remove`)
* `VecDeque::swap_remove_back` - (renamed from `swap_back_remove`)
* `Vec::resize`
* `str::slice_mut_unchecked`
* `FileTypeExt`
* `FileTypeExt::{is_block_device, is_char_device, is_fifo, is_socket}`
* `BinaryHeap::from` - `from_vec` deprecated in favor of this
* `BinaryHeap::into_vec` - plus a `Into` impl
* `BinaryHeap::into_sorted_vec`
Deprecated APIs
* `slice::ref_slice`
* `slice::mut_ref_slice`
* `iter::{range_inclusive, RangeInclusive}`
* `std::dynamic_lib`
Closes #27706
Closes #27725
cc #27726 (align not stabilized yet)
Closes #27734
Closes #27737
Closes #27742
Closes #27743
Closes #27772
Closes #27774
Closes #27777
Closes #27781
cc #27788 (a few remaining methods though)
Closes #27790
Closes #27793
Closes #27796
Closes #27810
cc #28147 (not all parts stabilized)
2015-10-22 16:28:45 -07:00
|
|
|
|
#[stable(feature = "str_parse_error", since = "1.5.0")]
|
2019-02-08 14:54:22 +01:00
|
|
|
|
pub type ParseError = core::convert::Infallible;
|
2015-04-30 15:24:39 -07:00
|
|
|
|
|
alloc: Add unstable Cfg feature `no-global_oom_handling`
For certain sorts of systems, programming, it's deemed essential that
all allocation failures be explicitly handled where they occur. For
example, see Linus Torvald's opinion in [1]. Merely not calling global
panic handlers, or always `try_reserving` first (for vectors), is not
deemed good enough, because the mere presence of the global OOM handlers
is burdens static analysis.
One option for these projects to use rust would just be to skip `alloc`,
rolling their own allocation abstractions. But this would, in my
opinion be a real shame. `alloc` has a few `try_*` methods already, and
we could easily have more. Features like custom allocator support also
demonstrate and existing to support diverse use-cases with the same
abstractions.
A natural way to add such a feature flag would a Cargo feature, but
there are currently uncertainties around how std library crate's Cargo
features may or not be stable, so to avoid any risk of stabilizing by
mistake we are going with a more low-level "raw cfg" token, which
cannot be interacted with via Cargo alone.
Note also that since there is no notion of "default cfg tokens" outside
of Cargo features, we have to invert the condition from
`global_oom_handling` to to `not(no_global_oom_handling)`. This breaks
the monotonicity that would be important for a Cargo feature (i.e.
turning on more features should never break compatibility), but it
doesn't matter for raw cfg tokens which are not intended to be
"constraint solved" by Cargo or anything else.
To support this use-case we create a new feature, "global-oom-handling",
on by default, and put the global OOM handler infra and everything else
it that depends on it behind it. By default, nothing is changed, but
users concerned about global handling can make sure it is disabled, and
be confident that all OOM handling is local and explicit.
For this first iteration, non-flat collections are outright disabled.
`Vec` and `String` don't yet have `try_*` allocation methods, but are
kept anyways since they can be oom-safely created "from parts", and we
hope to add those `try_` methods in the future.
[1]: https://lore.kernel.org/lkml/CAHk-=wh_sNLoz84AUUzuqXEsYH35u=8HV3vK-jbRbJ_B-JjGrg@mail.gmail.com/
2021-04-16 20:18:04 -04:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
2015-04-30 15:24:39 -07:00
|
|
|
|
#[stable(feature = "rust1", since = "1.0.0")]
|
2014-11-15 15:52:00 +11:00
|
|
|
|
impl FromStr for String {
|
2019-02-08 14:54:22 +01:00
|
|
|
|
type Err = core::convert::Infallible;
|
2014-11-15 15:52:00 +11:00
|
|
|
|
#[inline]
|
2020-02-19 16:37:58 -05:00
|
|
|
|
fn from_str(s: &str) -> Result<String, Self::Err> {
|
2015-06-08 16:55:35 +02:00
|
|
|
|
Ok(String::from(s))
|
2014-11-15 15:52:00 +11:00
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2015-11-30 14:36:03 -05:00
|
|
|
|
/// A trait for converting a value to a `String`.
|
|
|
|
|
|
///
|
|
|
|
|
|
/// This trait is automatically implemented for any type which implements the
|
|
|
|
|
|
/// [`Display`] trait. As such, `ToString` shouldn't be implemented directly:
|
|
|
|
|
|
/// [`Display`] should be implemented instead, and you get the `ToString`
|
|
|
|
|
|
/// implementation for free.
|
|
|
|
|
|
///
|
2020-07-18 10:14:00 -07:00
|
|
|
|
/// [`Display`]: fmt::Display
|
2021-02-16 02:32:21 +00:00
|
|
|
|
#[cfg_attr(not(test), rustc_diagnostic_item = "ToString")]
|
std: Stabilize the std::fmt module
This commit performs a final stabilization pass over the std::fmt module,
marking all necessary APIs as stable. One of the more interesting aspects of
this module is that it exposes a good deal of its runtime representation to the
outside world in order for `format_args!` to be able to construct the format
strings. Instead of hacking the compiler to assume that these items are stable,
this commit instead lays out a story for the stabilization and evolution of
these APIs.
There are three primary details used by the `format_args!` macro:
1. `Arguments` - an opaque package of a "compiled format string". This structure
is passed around and the `write` function is the source of truth for
transforming a compiled format string into a string at runtime. This must be
able to be constructed in stable code.
2. `Argument` - an opaque structure representing an argument to a format string.
This is *almost* a trait object as it's just a pointer/function pair, but due
to the function originating from one of many traits, it's not actually a
trait object. Like `Arguments`, this must be constructed from stable code.
3. `fmt::rt` - this module contains the runtime type definitions primarily for
the `rt::Argument` structure. Whenever an argument is formatted with
nonstandard flags, a corresponding `rt::Argument` is generated describing how
the argument is being formatted. This can be used to construct an
`Arguments`.
The primary interface to `std::fmt` is the `Arguments` structure, and as such
this type name is stabilize as-is today. It is expected for libraries to pass
around an `Arguments` structure to represent a pending formatted computation.
The remaining portions are largely "cruft" which would rather not be stabilized,
but due to the stability checks they must be. As a result, almost all pieces
have been renamed to represent that they are "version 1" of the formatting
representation. The theory is that at a later date if we change the
representation of these types we can add new definitions called "version 2" and
corresponding constructors for `Arguments`.
One of the other remaining large questions about the fmt module were how the
pending I/O reform would affect the signatures of methods in the module. Due to
[RFC 526][rfc], however, the writers of fmt are now incompatible with the
writers of io, so this question has largely been solved. As a result the
interfaces are largely stabilized as-is today.
[rfc]: https://github.com/rust-lang/rfcs/blob/master/text/0526-fmt-text-writer.md
Specifically, the following changes were made:
* The contents of `fmt::rt` were all moved under `fmt::rt::v1`
* `fmt::rt` is stable
* `fmt::rt::v1` is stable
* `Error` is stable
* `Writer` is stable
* `Writer::write_str` is stable
* `Writer::write_fmt` is stable
* `Formatter` is stable
* `Argument` has been renamed to `ArgumentV1` and is stable
* `ArgumentV1::new` is stable
* `ArgumentV1::from_uint` is stable
* `Arguments::new_v1` is stable (renamed from `new`)
* `Arguments::new_v1_formatted` is stable (renamed from `with_placeholders`)
* All formatting traits are now stable, as well as the `fmt` method.
* `fmt::write` is stable
* `fmt::format` is stable
* `Formatter::pad_integral` is stable
* `Formatter::pad` is stable
* `Formatter::write_str` is stable
* `Formatter::write_fmt` is stable
* Some assorted top level items which were only used by `format_args!` were
removed in favor of static functions on `ArgumentV1` as well.
* The formatting-flag-accessing methods remain unstable
Within the contents of the `fmt::rt::v1` module, the following actions were
taken:
* Reexports of all enum variants were removed
* All prefixes on enum variants were removed
* A few miscellaneous enum variants were renamed
* Otherwise all structs, fields, and variants were marked stable.
In addition to these actions in the `std::fmt` module, many implementations of
`Show` and `String` were stabilized as well.
In some other modules:
* `ToString` is now stable
* `ToString::to_string` is now stable
* `Vec` no longer implements `fmt::Writer` (this has moved to `String`)
This is a breaking change due to all of the changes to the `fmt::rt` module, but
this likely will not have much impact on existing programs.
Closes #20661
[breaking-change]
2015-01-13 15:42:53 -08:00
|
|
|
|
#[stable(feature = "rust1", since = "1.0.0")]
|
2014-11-16 12:38:03 +11:00
|
|
|
|
pub trait ToString {
|
2015-11-30 14:36:03 -05:00
|
|
|
|
/// Converts the given value to a `String`.
|
|
|
|
|
|
///
|
|
|
|
|
|
/// # Examples
|
|
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
/// let i = 5;
|
|
|
|
|
|
/// let five = String::from("5");
|
|
|
|
|
|
///
|
|
|
|
|
|
/// assert_eq!(five, i.to_string());
|
|
|
|
|
|
/// ```
|
type error method suggestions use whitelisted identity-like conversions
Previously, on a type mismatch (and if this wasn't preëmpted by a
higher-priority suggestion), we would look for argumentless methods
returning the expected type, and list them in a `help` note.
This had two major shortcomings. Firstly, a lot of the suggestions didn't
really make sense (if you used a &str where a String was expected,
`.to_ascii_uppercase()` is probably not the solution you were hoping
for). Secondly, we weren't generating suggestions from the most useful
traits!
We address the first problem with an internal
`#[rustc_conversion_suggestion]` attribute meant to mark methods that keep
the "same value" in the relevant sense, just converting the type. We
address the second problem by making `FnCtxt.probe_for_return_type` pass
the `ProbeScope::AllTraits` to `probe_op`: this would seem to be safe
because grep reveals no other callers of `probe_for_return_type`.
Also, structured suggestions are preferred (because they're pretty, but
also for RLS and friends).
Also also, we make the E0055 autoderef recursion limit error use the
one-time-diagnostics set, because we can potentially hit the limit a lot
during probing. (Without this,
test/ui/did_you_mean/recursion_limit_deref.rs would report "aborting due to
51 errors").
Unfortunately, the trait probing is still not all one would hope for: at a
minimum, we don't know how to rule out `into()` in cases where it wouldn't
actually work, and we don't know how to rule in `.to_owned()` where it
would. Issues #46459 and #46460 have been filed and are ref'd in a FIXME.
This is hoped to resolve #42929, #44672, and #45777.
2017-11-19 11:25:35 -08:00
|
|
|
|
#[rustc_conversion_suggestion]
|
std: Stabilize the std::fmt module
This commit performs a final stabilization pass over the std::fmt module,
marking all necessary APIs as stable. One of the more interesting aspects of
this module is that it exposes a good deal of its runtime representation to the
outside world in order for `format_args!` to be able to construct the format
strings. Instead of hacking the compiler to assume that these items are stable,
this commit instead lays out a story for the stabilization and evolution of
these APIs.
There are three primary details used by the `format_args!` macro:
1. `Arguments` - an opaque package of a "compiled format string". This structure
is passed around and the `write` function is the source of truth for
transforming a compiled format string into a string at runtime. This must be
able to be constructed in stable code.
2. `Argument` - an opaque structure representing an argument to a format string.
This is *almost* a trait object as it's just a pointer/function pair, but due
to the function originating from one of many traits, it's not actually a
trait object. Like `Arguments`, this must be constructed from stable code.
3. `fmt::rt` - this module contains the runtime type definitions primarily for
the `rt::Argument` structure. Whenever an argument is formatted with
nonstandard flags, a corresponding `rt::Argument` is generated describing how
the argument is being formatted. This can be used to construct an
`Arguments`.
The primary interface to `std::fmt` is the `Arguments` structure, and as such
this type name is stabilize as-is today. It is expected for libraries to pass
around an `Arguments` structure to represent a pending formatted computation.
The remaining portions are largely "cruft" which would rather not be stabilized,
but due to the stability checks they must be. As a result, almost all pieces
have been renamed to represent that they are "version 1" of the formatting
representation. The theory is that at a later date if we change the
representation of these types we can add new definitions called "version 2" and
corresponding constructors for `Arguments`.
One of the other remaining large questions about the fmt module were how the
pending I/O reform would affect the signatures of methods in the module. Due to
[RFC 526][rfc], however, the writers of fmt are now incompatible with the
writers of io, so this question has largely been solved. As a result the
interfaces are largely stabilized as-is today.
[rfc]: https://github.com/rust-lang/rfcs/blob/master/text/0526-fmt-text-writer.md
Specifically, the following changes were made:
* The contents of `fmt::rt` were all moved under `fmt::rt::v1`
* `fmt::rt` is stable
* `fmt::rt::v1` is stable
* `Error` is stable
* `Writer` is stable
* `Writer::write_str` is stable
* `Writer::write_fmt` is stable
* `Formatter` is stable
* `Argument` has been renamed to `ArgumentV1` and is stable
* `ArgumentV1::new` is stable
* `ArgumentV1::from_uint` is stable
* `Arguments::new_v1` is stable (renamed from `new`)
* `Arguments::new_v1_formatted` is stable (renamed from `with_placeholders`)
* All formatting traits are now stable, as well as the `fmt` method.
* `fmt::write` is stable
* `fmt::format` is stable
* `Formatter::pad_integral` is stable
* `Formatter::pad` is stable
* `Formatter::write_str` is stable
* `Formatter::write_fmt` is stable
* Some assorted top level items which were only used by `format_args!` were
removed in favor of static functions on `ArgumentV1` as well.
* The formatting-flag-accessing methods remain unstable
Within the contents of the `fmt::rt::v1` module, the following actions were
taken:
* Reexports of all enum variants were removed
* All prefixes on enum variants were removed
* A few miscellaneous enum variants were renamed
* Otherwise all structs, fields, and variants were marked stable.
In addition to these actions in the `std::fmt` module, many implementations of
`Show` and `String` were stabilized as well.
In some other modules:
* `ToString` is now stable
* `ToString::to_string` is now stable
* `Vec` no longer implements `fmt::Writer` (this has moved to `String`)
This is a breaking change due to all of the changes to the `fmt::rt` module, but
this likely will not have much impact on existing programs.
Closes #20661
[breaking-change]
2015-01-13 15:42:53 -08:00
|
|
|
|
#[stable(feature = "rust1", since = "1.0.0")]
|
2023-09-26 23:56:38 -04:00
|
|
|
|
#[cfg_attr(not(test), rustc_diagnostic_item = "to_string_method")]
|
2014-11-16 12:38:03 +11:00
|
|
|
|
fn to_string(&self) -> String;
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2017-02-26 19:42:11 +01:00
|
|
|
|
/// # Panics
|
|
|
|
|
|
///
|
|
|
|
|
|
/// In this implementation, the `to_string` method panics
|
|
|
|
|
|
/// if the `Display` implementation returns an error.
|
|
|
|
|
|
/// This indicates an incorrect `Display` implementation
|
|
|
|
|
|
/// since `fmt::Write for String` never returns an error itself.
|
alloc: Add unstable Cfg feature `no-global_oom_handling`
For certain sorts of systems, programming, it's deemed essential that
all allocation failures be explicitly handled where they occur. For
example, see Linus Torvald's opinion in [1]. Merely not calling global
panic handlers, or always `try_reserving` first (for vectors), is not
deemed good enough, because the mere presence of the global OOM handlers
is burdens static analysis.
One option for these projects to use rust would just be to skip `alloc`,
rolling their own allocation abstractions. But this would, in my
opinion be a real shame. `alloc` has a few `try_*` methods already, and
we could easily have more. Features like custom allocator support also
demonstrate and existing to support diverse use-cases with the same
abstractions.
A natural way to add such a feature flag would a Cargo feature, but
there are currently uncertainties around how std library crate's Cargo
features may or not be stable, so to avoid any risk of stabilizing by
mistake we are going with a more low-level "raw cfg" token, which
cannot be interacted with via Cargo alone.
Note also that since there is no notion of "default cfg tokens" outside
of Cargo features, we have to invert the condition from
`global_oom_handling` to to `not(no_global_oom_handling)`. This breaks
the monotonicity that would be important for a Cargo feature (i.e.
turning on more features should never break compatibility), but it
doesn't matter for raw cfg tokens which are not intended to be
"constraint solved" by Cargo or anything else.
To support this use-case we create a new feature, "global-oom-handling",
on by default, and put the global OOM handler infra and everything else
it that depends on it behind it. By default, nothing is changed, but
users concerned about global handling can make sure it is disabled, and
be confident that all OOM handling is local and explicit.
For this first iteration, non-flat collections are outright disabled.
`Vec` and `String` don't yet have `try_*` allocation methods, but are
kept anyways since they can be oom-safely created "from parts", and we
hope to add those `try_` methods in the future.
[1]: https://lore.kernel.org/lkml/CAHk-=wh_sNLoz84AUUzuqXEsYH35u=8HV3vK-jbRbJ_B-JjGrg@mail.gmail.com/
2021-04-16 20:18:04 -04:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
std: Stabilize the std::fmt module
This commit performs a final stabilization pass over the std::fmt module,
marking all necessary APIs as stable. One of the more interesting aspects of
this module is that it exposes a good deal of its runtime representation to the
outside world in order for `format_args!` to be able to construct the format
strings. Instead of hacking the compiler to assume that these items are stable,
this commit instead lays out a story for the stabilization and evolution of
these APIs.
There are three primary details used by the `format_args!` macro:
1. `Arguments` - an opaque package of a "compiled format string". This structure
is passed around and the `write` function is the source of truth for
transforming a compiled format string into a string at runtime. This must be
able to be constructed in stable code.
2. `Argument` - an opaque structure representing an argument to a format string.
This is *almost* a trait object as it's just a pointer/function pair, but due
to the function originating from one of many traits, it's not actually a
trait object. Like `Arguments`, this must be constructed from stable code.
3. `fmt::rt` - this module contains the runtime type definitions primarily for
the `rt::Argument` structure. Whenever an argument is formatted with
nonstandard flags, a corresponding `rt::Argument` is generated describing how
the argument is being formatted. This can be used to construct an
`Arguments`.
The primary interface to `std::fmt` is the `Arguments` structure, and as such
this type name is stabilize as-is today. It is expected for libraries to pass
around an `Arguments` structure to represent a pending formatted computation.
The remaining portions are largely "cruft" which would rather not be stabilized,
but due to the stability checks they must be. As a result, almost all pieces
have been renamed to represent that they are "version 1" of the formatting
representation. The theory is that at a later date if we change the
representation of these types we can add new definitions called "version 2" and
corresponding constructors for `Arguments`.
One of the other remaining large questions about the fmt module were how the
pending I/O reform would affect the signatures of methods in the module. Due to
[RFC 526][rfc], however, the writers of fmt are now incompatible with the
writers of io, so this question has largely been solved. As a result the
interfaces are largely stabilized as-is today.
[rfc]: https://github.com/rust-lang/rfcs/blob/master/text/0526-fmt-text-writer.md
Specifically, the following changes were made:
* The contents of `fmt::rt` were all moved under `fmt::rt::v1`
* `fmt::rt` is stable
* `fmt::rt::v1` is stable
* `Error` is stable
* `Writer` is stable
* `Writer::write_str` is stable
* `Writer::write_fmt` is stable
* `Formatter` is stable
* `Argument` has been renamed to `ArgumentV1` and is stable
* `ArgumentV1::new` is stable
* `ArgumentV1::from_uint` is stable
* `Arguments::new_v1` is stable (renamed from `new`)
* `Arguments::new_v1_formatted` is stable (renamed from `with_placeholders`)
* All formatting traits are now stable, as well as the `fmt` method.
* `fmt::write` is stable
* `fmt::format` is stable
* `Formatter::pad_integral` is stable
* `Formatter::pad` is stable
* `Formatter::write_str` is stable
* `Formatter::write_fmt` is stable
* Some assorted top level items which were only used by `format_args!` were
removed in favor of static functions on `ArgumentV1` as well.
* The formatting-flag-accessing methods remain unstable
Within the contents of the `fmt::rt::v1` module, the following actions were
taken:
* Reexports of all enum variants were removed
* All prefixes on enum variants were removed
* A few miscellaneous enum variants were renamed
* Otherwise all structs, fields, and variants were marked stable.
In addition to these actions in the `std::fmt` module, many implementations of
`Show` and `String` were stabilized as well.
In some other modules:
* `ToString` is now stable
* `ToString::to_string` is now stable
* `Vec` no longer implements `fmt::Writer` (this has moved to `String`)
This is a breaking change due to all of the changes to the `fmt::rt` module, but
this likely will not have much impact on existing programs.
Closes #20661
[breaking-change]
2015-01-13 15:42:53 -08:00
|
|
|
|
#[stable(feature = "rust1", since = "1.0.0")]
|
2015-01-20 15:45:07 -08:00
|
|
|
|
impl<T: fmt::Display + ?Sized> ToString for T {
|
2020-07-29 07:38:06 +00:00
|
|
|
|
// A common guideline is to not inline generic functions. However,
|
2020-10-18 18:17:49 -07:00
|
|
|
|
// removing `#[inline]` from this method causes non-negligible regressions.
|
|
|
|
|
|
// See <https://github.com/rust-lang/rust/pull/74852>, the last attempt
|
|
|
|
|
|
// to try to remove it.
|
2015-01-10 11:07:14 +01:00
|
|
|
|
#[inline]
|
2016-03-22 19:29:56 -07:00
|
|
|
|
default fn to_string(&self) -> String {
|
2014-12-20 00:09:35 -08:00
|
|
|
|
let mut buf = String::new();
|
2021-05-16 21:31:18 -04:00
|
|
|
|
let mut formatter = core::fmt::Formatter::new(&mut buf);
|
|
|
|
|
|
// Bypass format_args!() to avoid write_str with zero-length strs
|
|
|
|
|
|
fmt::Display::fmt(self, &mut formatter)
|
2018-12-09 14:10:20 -07:00
|
|
|
|
.expect("a Display implementation returned an error unexpectedly");
|
2014-12-20 00:09:35 -08:00
|
|
|
|
buf
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2023-07-24 23:37:35 +09:00
|
|
|
|
#[doc(hidden)]
|
2023-04-29 14:45:36 -07:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
|
|
|
|
|
#[unstable(feature = "ascii_char", issue = "110998")]
|
|
|
|
|
|
impl ToString for core::ascii::Char {
|
|
|
|
|
|
#[inline]
|
|
|
|
|
|
fn to_string(&self) -> String {
|
|
|
|
|
|
self.as_str().to_owned()
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2023-07-24 23:37:35 +09:00
|
|
|
|
#[doc(hidden)]
|
alloc: Add unstable Cfg feature `no-global_oom_handling`
For certain sorts of systems, programming, it's deemed essential that
all allocation failures be explicitly handled where they occur. For
example, see Linus Torvald's opinion in [1]. Merely not calling global
panic handlers, or always `try_reserving` first (for vectors), is not
deemed good enough, because the mere presence of the global OOM handlers
is burdens static analysis.
One option for these projects to use rust would just be to skip `alloc`,
rolling their own allocation abstractions. But this would, in my
opinion be a real shame. `alloc` has a few `try_*` methods already, and
we could easily have more. Features like custom allocator support also
demonstrate and existing to support diverse use-cases with the same
abstractions.
A natural way to add such a feature flag would a Cargo feature, but
there are currently uncertainties around how std library crate's Cargo
features may or not be stable, so to avoid any risk of stabilizing by
mistake we are going with a more low-level "raw cfg" token, which
cannot be interacted with via Cargo alone.
Note also that since there is no notion of "default cfg tokens" outside
of Cargo features, we have to invert the condition from
`global_oom_handling` to to `not(no_global_oom_handling)`. This breaks
the monotonicity that would be important for a Cargo feature (i.e.
turning on more features should never break compatibility), but it
doesn't matter for raw cfg tokens which are not intended to be
"constraint solved" by Cargo or anything else.
To support this use-case we create a new feature, "global-oom-handling",
on by default, and put the global OOM handler infra and everything else
it that depends on it behind it. By default, nothing is changed, but
users concerned about global handling can make sure it is disabled, and
be confident that all OOM handling is local and explicit.
For this first iteration, non-flat collections are outright disabled.
`Vec` and `String` don't yet have `try_*` allocation methods, but are
kept anyways since they can be oom-safely created "from parts", and we
hope to add those `try_` methods in the future.
[1]: https://lore.kernel.org/lkml/CAHk-=wh_sNLoz84AUUzuqXEsYH35u=8HV3vK-jbRbJ_B-JjGrg@mail.gmail.com/
2021-04-16 20:18:04 -04:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
2020-06-18 02:54:35 +00:00
|
|
|
|
#[stable(feature = "char_to_string_specialization", since = "1.46.0")]
|
|
|
|
|
|
impl ToString for char {
|
|
|
|
|
|
#[inline]
|
|
|
|
|
|
fn to_string(&self) -> String {
|
|
|
|
|
|
String::from(self.encode_utf8(&mut [0; 4]))
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2023-07-24 23:37:35 +09:00
|
|
|
|
#[doc(hidden)]
|
2023-01-09 22:21:21 +13:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
2023-01-24 08:40:09 -05:00
|
|
|
|
#[stable(feature = "bool_to_string_specialization", since = "1.68.0")]
|
2023-01-09 22:21:21 +13:00
|
|
|
|
impl ToString for bool {
|
|
|
|
|
|
#[inline]
|
|
|
|
|
|
fn to_string(&self) -> String {
|
|
|
|
|
|
String::from(if *self { "true" } else { "false" })
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2023-07-24 23:37:35 +09:00
|
|
|
|
#[doc(hidden)]
|
alloc: Add unstable Cfg feature `no-global_oom_handling`
For certain sorts of systems, programming, it's deemed essential that
all allocation failures be explicitly handled where they occur. For
example, see Linus Torvald's opinion in [1]. Merely not calling global
panic handlers, or always `try_reserving` first (for vectors), is not
deemed good enough, because the mere presence of the global OOM handlers
is burdens static analysis.
One option for these projects to use rust would just be to skip `alloc`,
rolling their own allocation abstractions. But this would, in my
opinion be a real shame. `alloc` has a few `try_*` methods already, and
we could easily have more. Features like custom allocator support also
demonstrate and existing to support diverse use-cases with the same
abstractions.
A natural way to add such a feature flag would a Cargo feature, but
there are currently uncertainties around how std library crate's Cargo
features may or not be stable, so to avoid any risk of stabilizing by
mistake we are going with a more low-level "raw cfg" token, which
cannot be interacted with via Cargo alone.
Note also that since there is no notion of "default cfg tokens" outside
of Cargo features, we have to invert the condition from
`global_oom_handling` to to `not(no_global_oom_handling)`. This breaks
the monotonicity that would be important for a Cargo feature (i.e.
turning on more features should never break compatibility), but it
doesn't matter for raw cfg tokens which are not intended to be
"constraint solved" by Cargo or anything else.
To support this use-case we create a new feature, "global-oom-handling",
on by default, and put the global OOM handler infra and everything else
it that depends on it behind it. By default, nothing is changed, but
users concerned about global handling can make sure it is disabled, and
be confident that all OOM handling is local and explicit.
For this first iteration, non-flat collections are outright disabled.
`Vec` and `String` don't yet have `try_*` allocation methods, but are
kept anyways since they can be oom-safely created "from parts", and we
hope to add those `try_` methods in the future.
[1]: https://lore.kernel.org/lkml/CAHk-=wh_sNLoz84AUUzuqXEsYH35u=8HV3vK-jbRbJ_B-JjGrg@mail.gmail.com/
2021-04-16 20:18:04 -04:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
2021-05-03 13:00:34 +02:00
|
|
|
|
#[stable(feature = "u8_to_string_specialization", since = "1.54.0")]
|
2021-02-26 23:04:42 +00:00
|
|
|
|
impl ToString for u8 {
|
|
|
|
|
|
#[inline]
|
|
|
|
|
|
fn to_string(&self) -> String {
|
2021-03-08 22:35:37 +00:00
|
|
|
|
let mut buf = String::with_capacity(3);
|
2021-02-26 23:04:42 +00:00
|
|
|
|
let mut n = *self;
|
2021-03-08 22:35:37 +00:00
|
|
|
|
if n >= 10 {
|
|
|
|
|
|
if n >= 100 {
|
|
|
|
|
|
buf.push((b'0' + n / 100) as char);
|
|
|
|
|
|
n %= 100;
|
|
|
|
|
|
}
|
|
|
|
|
|
buf.push((b'0' + n / 10) as char);
|
2021-02-26 23:04:42 +00:00
|
|
|
|
n %= 10;
|
2021-03-08 22:35:37 +00:00
|
|
|
|
}
|
|
|
|
|
|
buf.push((b'0' + n) as char);
|
|
|
|
|
|
buf
|
2021-02-26 23:04:42 +00:00
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2023-07-24 23:37:35 +09:00
|
|
|
|
#[doc(hidden)]
|
alloc: Add unstable Cfg feature `no-global_oom_handling`
For certain sorts of systems, programming, it's deemed essential that
all allocation failures be explicitly handled where they occur. For
example, see Linus Torvald's opinion in [1]. Merely not calling global
panic handlers, or always `try_reserving` first (for vectors), is not
deemed good enough, because the mere presence of the global OOM handlers
is burdens static analysis.
One option for these projects to use rust would just be to skip `alloc`,
rolling their own allocation abstractions. But this would, in my
opinion be a real shame. `alloc` has a few `try_*` methods already, and
we could easily have more. Features like custom allocator support also
demonstrate and existing to support diverse use-cases with the same
abstractions.
A natural way to add such a feature flag would a Cargo feature, but
there are currently uncertainties around how std library crate's Cargo
features may or not be stable, so to avoid any risk of stabilizing by
mistake we are going with a more low-level "raw cfg" token, which
cannot be interacted with via Cargo alone.
Note also that since there is no notion of "default cfg tokens" outside
of Cargo features, we have to invert the condition from
`global_oom_handling` to to `not(no_global_oom_handling)`. This breaks
the monotonicity that would be important for a Cargo feature (i.e.
turning on more features should never break compatibility), but it
doesn't matter for raw cfg tokens which are not intended to be
"constraint solved" by Cargo or anything else.
To support this use-case we create a new feature, "global-oom-handling",
on by default, and put the global OOM handler infra and everything else
it that depends on it behind it. By default, nothing is changed, but
users concerned about global handling can make sure it is disabled, and
be confident that all OOM handling is local and explicit.
For this first iteration, non-flat collections are outright disabled.
`Vec` and `String` don't yet have `try_*` allocation methods, but are
kept anyways since they can be oom-safely created "from parts", and we
hope to add those `try_` methods in the future.
[1]: https://lore.kernel.org/lkml/CAHk-=wh_sNLoz84AUUzuqXEsYH35u=8HV3vK-jbRbJ_B-JjGrg@mail.gmail.com/
2021-04-16 20:18:04 -04:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
2021-05-03 13:00:34 +02:00
|
|
|
|
#[stable(feature = "i8_to_string_specialization", since = "1.54.0")]
|
2021-03-04 07:04:21 +00:00
|
|
|
|
impl ToString for i8 {
|
|
|
|
|
|
#[inline]
|
|
|
|
|
|
fn to_string(&self) -> String {
|
2021-03-08 22:35:37 +00:00
|
|
|
|
let mut buf = String::with_capacity(4);
|
2021-03-08 20:51:27 +00:00
|
|
|
|
if self.is_negative() {
|
2021-03-08 22:35:37 +00:00
|
|
|
|
buf.push('-');
|
2021-03-08 20:51:27 +00:00
|
|
|
|
}
|
|
|
|
|
|
let mut n = self.unsigned_abs();
|
2021-03-04 07:04:21 +00:00
|
|
|
|
if n >= 10 {
|
|
|
|
|
|
if n >= 100 {
|
2021-03-08 22:35:37 +00:00
|
|
|
|
buf.push('1');
|
2021-03-04 07:04:21 +00:00
|
|
|
|
n -= 100;
|
|
|
|
|
|
}
|
2021-03-08 22:35:37 +00:00
|
|
|
|
buf.push((b'0' + n / 10) as char);
|
2021-03-07 22:08:22 +00:00
|
|
|
|
n %= 10;
|
2021-03-04 07:04:21 +00:00
|
|
|
|
}
|
2021-03-08 22:35:37 +00:00
|
|
|
|
buf.push((b'0' + n) as char);
|
|
|
|
|
|
buf
|
2021-03-04 07:04:21 +00:00
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2023-07-24 23:37:35 +09:00
|
|
|
|
#[doc(hidden)]
|
alloc: Add unstable Cfg feature `no-global_oom_handling`
For certain sorts of systems, programming, it's deemed essential that
all allocation failures be explicitly handled where they occur. For
example, see Linus Torvald's opinion in [1]. Merely not calling global
panic handlers, or always `try_reserving` first (for vectors), is not
deemed good enough, because the mere presence of the global OOM handlers
is burdens static analysis.
One option for these projects to use rust would just be to skip `alloc`,
rolling their own allocation abstractions. But this would, in my
opinion be a real shame. `alloc` has a few `try_*` methods already, and
we could easily have more. Features like custom allocator support also
demonstrate and existing to support diverse use-cases with the same
abstractions.
A natural way to add such a feature flag would a Cargo feature, but
there are currently uncertainties around how std library crate's Cargo
features may or not be stable, so to avoid any risk of stabilizing by
mistake we are going with a more low-level "raw cfg" token, which
cannot be interacted with via Cargo alone.
Note also that since there is no notion of "default cfg tokens" outside
of Cargo features, we have to invert the condition from
`global_oom_handling` to to `not(no_global_oom_handling)`. This breaks
the monotonicity that would be important for a Cargo feature (i.e.
turning on more features should never break compatibility), but it
doesn't matter for raw cfg tokens which are not intended to be
"constraint solved" by Cargo or anything else.
To support this use-case we create a new feature, "global-oom-handling",
on by default, and put the global OOM handler infra and everything else
it that depends on it behind it. By default, nothing is changed, but
users concerned about global handling can make sure it is disabled, and
be confident that all OOM handling is local and explicit.
For this first iteration, non-flat collections are outright disabled.
`Vec` and `String` don't yet have `try_*` allocation methods, but are
kept anyways since they can be oom-safely created "from parts", and we
hope to add those `try_` methods in the future.
[1]: https://lore.kernel.org/lkml/CAHk-=wh_sNLoz84AUUzuqXEsYH35u=8HV3vK-jbRbJ_B-JjGrg@mail.gmail.com/
2021-04-16 20:18:04 -04:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
2016-03-22 19:29:56 -07:00
|
|
|
|
#[stable(feature = "str_to_string_specialization", since = "1.9.0")]
|
|
|
|
|
|
impl ToString for str {
|
|
|
|
|
|
#[inline]
|
|
|
|
|
|
fn to_string(&self) -> String {
|
|
|
|
|
|
String::from(self)
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2023-07-24 23:37:35 +09:00
|
|
|
|
#[doc(hidden)]
|
alloc: Add unstable Cfg feature `no-global_oom_handling`
For certain sorts of systems, programming, it's deemed essential that
all allocation failures be explicitly handled where they occur. For
example, see Linus Torvald's opinion in [1]. Merely not calling global
panic handlers, or always `try_reserving` first (for vectors), is not
deemed good enough, because the mere presence of the global OOM handlers
is burdens static analysis.
One option for these projects to use rust would just be to skip `alloc`,
rolling their own allocation abstractions. But this would, in my
opinion be a real shame. `alloc` has a few `try_*` methods already, and
we could easily have more. Features like custom allocator support also
demonstrate and existing to support diverse use-cases with the same
abstractions.
A natural way to add such a feature flag would a Cargo feature, but
there are currently uncertainties around how std library crate's Cargo
features may or not be stable, so to avoid any risk of stabilizing by
mistake we are going with a more low-level "raw cfg" token, which
cannot be interacted with via Cargo alone.
Note also that since there is no notion of "default cfg tokens" outside
of Cargo features, we have to invert the condition from
`global_oom_handling` to to `not(no_global_oom_handling)`. This breaks
the monotonicity that would be important for a Cargo feature (i.e.
turning on more features should never break compatibility), but it
doesn't matter for raw cfg tokens which are not intended to be
"constraint solved" by Cargo or anything else.
To support this use-case we create a new feature, "global-oom-handling",
on by default, and put the global OOM handler infra and everything else
it that depends on it behind it. By default, nothing is changed, but
users concerned about global handling can make sure it is disabled, and
be confident that all OOM handling is local and explicit.
For this first iteration, non-flat collections are outright disabled.
`Vec` and `String` don't yet have `try_*` allocation methods, but are
kept anyways since they can be oom-safely created "from parts", and we
hope to add those `try_` methods in the future.
[1]: https://lore.kernel.org/lkml/CAHk-=wh_sNLoz84AUUzuqXEsYH35u=8HV3vK-jbRbJ_B-JjGrg@mail.gmail.com/
2021-04-16 20:18:04 -04:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
2017-02-01 11:54:36 +08:00
|
|
|
|
#[stable(feature = "cow_str_to_string_specialization", since = "1.17.0")]
|
2019-02-02 12:23:15 +01:00
|
|
|
|
impl ToString for Cow<'_, str> {
|
2017-02-01 11:54:36 +08:00
|
|
|
|
#[inline]
|
|
|
|
|
|
fn to_string(&self) -> String {
|
|
|
|
|
|
self[..].to_owned()
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2023-07-24 23:37:35 +09:00
|
|
|
|
#[doc(hidden)]
|
alloc: Add unstable Cfg feature `no-global_oom_handling`
For certain sorts of systems, programming, it's deemed essential that
all allocation failures be explicitly handled where they occur. For
example, see Linus Torvald's opinion in [1]. Merely not calling global
panic handlers, or always `try_reserving` first (for vectors), is not
deemed good enough, because the mere presence of the global OOM handlers
is burdens static analysis.
One option for these projects to use rust would just be to skip `alloc`,
rolling their own allocation abstractions. But this would, in my
opinion be a real shame. `alloc` has a few `try_*` methods already, and
we could easily have more. Features like custom allocator support also
demonstrate and existing to support diverse use-cases with the same
abstractions.
A natural way to add such a feature flag would a Cargo feature, but
there are currently uncertainties around how std library crate's Cargo
features may or not be stable, so to avoid any risk of stabilizing by
mistake we are going with a more low-level "raw cfg" token, which
cannot be interacted with via Cargo alone.
Note also that since there is no notion of "default cfg tokens" outside
of Cargo features, we have to invert the condition from
`global_oom_handling` to to `not(no_global_oom_handling)`. This breaks
the monotonicity that would be important for a Cargo feature (i.e.
turning on more features should never break compatibility), but it
doesn't matter for raw cfg tokens which are not intended to be
"constraint solved" by Cargo or anything else.
To support this use-case we create a new feature, "global-oom-handling",
on by default, and put the global OOM handler infra and everything else
it that depends on it behind it. By default, nothing is changed, but
users concerned about global handling can make sure it is disabled, and
be confident that all OOM handling is local and explicit.
For this first iteration, non-flat collections are outright disabled.
`Vec` and `String` don't yet have `try_*` allocation methods, but are
kept anyways since they can be oom-safely created "from parts", and we
hope to add those `try_` methods in the future.
[1]: https://lore.kernel.org/lkml/CAHk-=wh_sNLoz84AUUzuqXEsYH35u=8HV3vK-jbRbJ_B-JjGrg@mail.gmail.com/
2021-04-16 20:18:04 -04:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
2017-02-01 11:54:36 +08:00
|
|
|
|
#[stable(feature = "string_to_string_specialization", since = "1.17.0")]
|
|
|
|
|
|
impl ToString for String {
|
|
|
|
|
|
#[inline]
|
|
|
|
|
|
fn to_string(&self) -> String {
|
|
|
|
|
|
self.to_owned()
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2023-07-24 23:37:35 +09:00
|
|
|
|
#[doc(hidden)]
|
2023-05-04 00:43:17 +02:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
2023-05-29 10:33:37 -04:00
|
|
|
|
#[stable(feature = "fmt_arguments_to_string_specialization", since = "1.71.0")]
|
2023-05-04 00:43:17 +02:00
|
|
|
|
impl ToString for fmt::Arguments<'_> {
|
|
|
|
|
|
#[inline]
|
|
|
|
|
|
fn to_string(&self) -> String {
|
|
|
|
|
|
crate::fmt::format(*self)
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2015-03-18 09:14:54 -07:00
|
|
|
|
#[stable(feature = "rust1", since = "1.0.0")]
|
|
|
|
|
|
impl AsRef<str> for String {
|
2015-05-10 14:06:41 +02:00
|
|
|
|
#[inline]
|
2015-03-18 09:14:54 -07:00
|
|
|
|
fn as_ref(&self) -> &str {
|
|
|
|
|
|
self
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2020-02-01 22:19:28 +01:00
|
|
|
|
#[stable(feature = "string_as_mut", since = "1.43.0")]
|
|
|
|
|
|
impl AsMut<str> for String {
|
|
|
|
|
|
#[inline]
|
|
|
|
|
|
fn as_mut(&mut self) -> &mut str {
|
|
|
|
|
|
self
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2015-05-06 15:53:53 -07:00
|
|
|
|
#[stable(feature = "rust1", since = "1.0.0")]
|
|
|
|
|
|
impl AsRef<[u8]> for String {
|
|
|
|
|
|
#[inline]
|
|
|
|
|
|
fn as_ref(&self) -> &[u8] {
|
|
|
|
|
|
self.as_bytes()
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
alloc: Add unstable Cfg feature `no-global_oom_handling`
For certain sorts of systems, programming, it's deemed essential that
all allocation failures be explicitly handled where they occur. For
example, see Linus Torvald's opinion in [1]. Merely not calling global
panic handlers, or always `try_reserving` first (for vectors), is not
deemed good enough, because the mere presence of the global OOM handlers
is burdens static analysis.
One option for these projects to use rust would just be to skip `alloc`,
rolling their own allocation abstractions. But this would, in my
opinion be a real shame. `alloc` has a few `try_*` methods already, and
we could easily have more. Features like custom allocator support also
demonstrate and existing to support diverse use-cases with the same
abstractions.
A natural way to add such a feature flag would a Cargo feature, but
there are currently uncertainties around how std library crate's Cargo
features may or not be stable, so to avoid any risk of stabilizing by
mistake we are going with a more low-level "raw cfg" token, which
cannot be interacted with via Cargo alone.
Note also that since there is no notion of "default cfg tokens" outside
of Cargo features, we have to invert the condition from
`global_oom_handling` to to `not(no_global_oom_handling)`. This breaks
the monotonicity that would be important for a Cargo feature (i.e.
turning on more features should never break compatibility), but it
doesn't matter for raw cfg tokens which are not intended to be
"constraint solved" by Cargo or anything else.
To support this use-case we create a new feature, "global-oom-handling",
on by default, and put the global OOM handler infra and everything else
it that depends on it behind it. By default, nothing is changed, but
users concerned about global handling can make sure it is disabled, and
be confident that all OOM handling is local and explicit.
For this first iteration, non-flat collections are outright disabled.
`Vec` and `String` don't yet have `try_*` allocation methods, but are
kept anyways since they can be oom-safely created "from parts", and we
hope to add those `try_` methods in the future.
[1]: https://lore.kernel.org/lkml/CAHk-=wh_sNLoz84AUUzuqXEsYH35u=8HV3vK-jbRbJ_B-JjGrg@mail.gmail.com/
2021-04-16 20:18:04 -04:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
2015-03-18 09:14:54 -07:00
|
|
|
|
#[stable(feature = "rust1", since = "1.0.0")]
|
2019-03-09 19:10:28 -08:00
|
|
|
|
impl From<&str> for String {
|
2021-05-26 08:24:06 +00:00
|
|
|
|
/// Converts a `&str` into a [`String`].
|
|
|
|
|
|
///
|
|
|
|
|
|
/// The result is allocated on the heap.
|
2018-08-29 12:30:54 +02:00
|
|
|
|
#[inline]
|
2019-03-09 19:10:28 -08:00
|
|
|
|
fn from(s: &str) -> String {
|
2016-03-10 21:15:29 +01:00
|
|
|
|
s.to_owned()
|
2015-03-18 09:14:54 -07:00
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
alloc: Add unstable Cfg feature `no-global_oom_handling`
For certain sorts of systems, programming, it's deemed essential that
all allocation failures be explicitly handled where they occur. For
example, see Linus Torvald's opinion in [1]. Merely not calling global
panic handlers, or always `try_reserving` first (for vectors), is not
deemed good enough, because the mere presence of the global OOM handlers
is burdens static analysis.
One option for these projects to use rust would just be to skip `alloc`,
rolling their own allocation abstractions. But this would, in my
opinion be a real shame. `alloc` has a few `try_*` methods already, and
we could easily have more. Features like custom allocator support also
demonstrate and existing to support diverse use-cases with the same
abstractions.
A natural way to add such a feature flag would a Cargo feature, but
there are currently uncertainties around how std library crate's Cargo
features may or not be stable, so to avoid any risk of stabilizing by
mistake we are going with a more low-level "raw cfg" token, which
cannot be interacted with via Cargo alone.
Note also that since there is no notion of "default cfg tokens" outside
of Cargo features, we have to invert the condition from
`global_oom_handling` to to `not(no_global_oom_handling)`. This breaks
the monotonicity that would be important for a Cargo feature (i.e.
turning on more features should never break compatibility), but it
doesn't matter for raw cfg tokens which are not intended to be
"constraint solved" by Cargo or anything else.
To support this use-case we create a new feature, "global-oom-handling",
on by default, and put the global OOM handler infra and everything else
it that depends on it behind it. By default, nothing is changed, but
users concerned about global handling can make sure it is disabled, and
be confident that all OOM handling is local and explicit.
For this first iteration, non-flat collections are outright disabled.
`Vec` and `String` don't yet have `try_*` allocation methods, but are
kept anyways since they can be oom-safely created "from parts", and we
hope to add those `try_` methods in the future.
[1]: https://lore.kernel.org/lkml/CAHk-=wh_sNLoz84AUUzuqXEsYH35u=8HV3vK-jbRbJ_B-JjGrg@mail.gmail.com/
2021-04-16 20:18:04 -04:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
2020-03-10 18:45:08 -07:00
|
|
|
|
#[stable(feature = "from_mut_str_for_string", since = "1.44.0")]
|
2020-03-02 21:17:58 -08:00
|
|
|
|
impl From<&mut str> for String {
|
2021-05-26 08:24:06 +00:00
|
|
|
|
/// Converts a `&mut str` into a [`String`].
|
2020-03-10 18:47:19 -07:00
|
|
|
|
///
|
|
|
|
|
|
/// The result is allocated on the heap.
|
2020-03-02 21:17:58 -08:00
|
|
|
|
#[inline]
|
|
|
|
|
|
fn from(s: &mut str) -> String {
|
|
|
|
|
|
s.to_owned()
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
alloc: Add unstable Cfg feature `no-global_oom_handling`
For certain sorts of systems, programming, it's deemed essential that
all allocation failures be explicitly handled where they occur. For
example, see Linus Torvald's opinion in [1]. Merely not calling global
panic handlers, or always `try_reserving` first (for vectors), is not
deemed good enough, because the mere presence of the global OOM handlers
is burdens static analysis.
One option for these projects to use rust would just be to skip `alloc`,
rolling their own allocation abstractions. But this would, in my
opinion be a real shame. `alloc` has a few `try_*` methods already, and
we could easily have more. Features like custom allocator support also
demonstrate and existing to support diverse use-cases with the same
abstractions.
A natural way to add such a feature flag would a Cargo feature, but
there are currently uncertainties around how std library crate's Cargo
features may or not be stable, so to avoid any risk of stabilizing by
mistake we are going with a more low-level "raw cfg" token, which
cannot be interacted with via Cargo alone.
Note also that since there is no notion of "default cfg tokens" outside
of Cargo features, we have to invert the condition from
`global_oom_handling` to to `not(no_global_oom_handling)`. This breaks
the monotonicity that would be important for a Cargo feature (i.e.
turning on more features should never break compatibility), but it
doesn't matter for raw cfg tokens which are not intended to be
"constraint solved" by Cargo or anything else.
To support this use-case we create a new feature, "global-oom-handling",
on by default, and put the global OOM handler infra and everything else
it that depends on it behind it. By default, nothing is changed, but
users concerned about global handling can make sure it is disabled, and
be confident that all OOM handling is local and explicit.
For this first iteration, non-flat collections are outright disabled.
`Vec` and `String` don't yet have `try_*` allocation methods, but are
kept anyways since they can be oom-safely created "from parts", and we
hope to add those `try_` methods in the future.
[1]: https://lore.kernel.org/lkml/CAHk-=wh_sNLoz84AUUzuqXEsYH35u=8HV3vK-jbRbJ_B-JjGrg@mail.gmail.com/
2021-04-16 20:18:04 -04:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
2019-04-09 13:40:21 -07:00
|
|
|
|
#[stable(feature = "from_ref_string", since = "1.35.0")]
|
|
|
|
|
|
impl From<&String> for String {
|
2021-05-26 08:24:06 +00:00
|
|
|
|
/// Converts a `&String` into a [`String`].
|
|
|
|
|
|
///
|
|
|
|
|
|
/// This clones `s` and returns the clone.
|
2019-04-09 13:40:21 -07:00
|
|
|
|
#[inline]
|
|
|
|
|
|
fn from(s: &String) -> String {
|
|
|
|
|
|
s.clone()
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2022-10-28 16:48:00 -07:00
|
|
|
|
// note: test pulls in std, which causes errors here
|
2017-02-13 20:37:42 -05:00
|
|
|
|
#[cfg(not(test))]
|
2017-05-20 08:38:39 +01:00
|
|
|
|
#[stable(feature = "string_from_box", since = "1.18.0")]
|
2017-02-13 20:37:42 -05:00
|
|
|
|
impl From<Box<str>> for String {
|
2021-05-26 08:24:06 +00:00
|
|
|
|
/// Converts the given boxed `str` slice to a [`String`].
|
2018-11-11 15:08:28 +01:00
|
|
|
|
/// It is notable that the `str` slice is owned.
|
2018-11-10 10:23:11 +01:00
|
|
|
|
///
|
|
|
|
|
|
/// # Examples
|
|
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
2018-11-11 20:11:25 +01:00
|
|
|
|
/// let s1: String = String::from("hello world");
|
|
|
|
|
|
/// let s2: Box<str> = s1.into_boxed_str();
|
|
|
|
|
|
/// let s3: String = String::from(s2);
|
2018-11-10 10:23:11 +01:00
|
|
|
|
///
|
|
|
|
|
|
/// assert_eq!("hello world", s3)
|
|
|
|
|
|
/// ```
|
2017-02-13 20:37:42 -05:00
|
|
|
|
fn from(s: Box<str>) -> String {
|
|
|
|
|
|
s.into_string()
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
alloc: Add unstable Cfg feature `no-global_oom_handling`
For certain sorts of systems, programming, it's deemed essential that
all allocation failures be explicitly handled where they occur. For
example, see Linus Torvald's opinion in [1]. Merely not calling global
panic handlers, or always `try_reserving` first (for vectors), is not
deemed good enough, because the mere presence of the global OOM handlers
is burdens static analysis.
One option for these projects to use rust would just be to skip `alloc`,
rolling their own allocation abstractions. But this would, in my
opinion be a real shame. `alloc` has a few `try_*` methods already, and
we could easily have more. Features like custom allocator support also
demonstrate and existing to support diverse use-cases with the same
abstractions.
A natural way to add such a feature flag would a Cargo feature, but
there are currently uncertainties around how std library crate's Cargo
features may or not be stable, so to avoid any risk of stabilizing by
mistake we are going with a more low-level "raw cfg" token, which
cannot be interacted with via Cargo alone.
Note also that since there is no notion of "default cfg tokens" outside
of Cargo features, we have to invert the condition from
`global_oom_handling` to to `not(no_global_oom_handling)`. This breaks
the monotonicity that would be important for a Cargo feature (i.e.
turning on more features should never break compatibility), but it
doesn't matter for raw cfg tokens which are not intended to be
"constraint solved" by Cargo or anything else.
To support this use-case we create a new feature, "global-oom-handling",
on by default, and put the global OOM handler infra and everything else
it that depends on it behind it. By default, nothing is changed, but
users concerned about global handling can make sure it is disabled, and
be confident that all OOM handling is local and explicit.
For this first iteration, non-flat collections are outright disabled.
`Vec` and `String` don't yet have `try_*` allocation methods, but are
kept anyways since they can be oom-safely created "from parts", and we
hope to add those `try_` methods in the future.
[1]: https://lore.kernel.org/lkml/CAHk-=wh_sNLoz84AUUzuqXEsYH35u=8HV3vK-jbRbJ_B-JjGrg@mail.gmail.com/
2021-04-16 20:18:04 -04:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
2017-06-13 00:08:37 +01:00
|
|
|
|
#[stable(feature = "box_from_str", since = "1.20.0")]
|
2017-05-20 15:40:53 -04:00
|
|
|
|
impl From<String> for Box<str> {
|
2021-05-26 08:24:06 +00:00
|
|
|
|
/// Converts the given [`String`] to a boxed `str` slice that is owned.
|
2018-11-11 15:08:28 +01:00
|
|
|
|
///
|
|
|
|
|
|
/// # Examples
|
|
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
2018-11-11 20:11:25 +01:00
|
|
|
|
/// let s1: String = String::from("hello world");
|
|
|
|
|
|
/// let s2: Box<str> = Box::from(s1);
|
|
|
|
|
|
/// let s3: String = String::from(s2);
|
2018-11-11 15:08:28 +01:00
|
|
|
|
///
|
|
|
|
|
|
/// assert_eq!("hello world", s3)
|
|
|
|
|
|
/// ```
|
2017-05-20 15:40:53 -04:00
|
|
|
|
fn from(s: String) -> Box<str> {
|
|
|
|
|
|
s.into_boxed_str()
|
2017-02-13 20:37:42 -05:00
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
alloc: Add unstable Cfg feature `no-global_oom_handling`
For certain sorts of systems, programming, it's deemed essential that
all allocation failures be explicitly handled where they occur. For
example, see Linus Torvald's opinion in [1]. Merely not calling global
panic handlers, or always `try_reserving` first (for vectors), is not
deemed good enough, because the mere presence of the global OOM handlers
is burdens static analysis.
One option for these projects to use rust would just be to skip `alloc`,
rolling their own allocation abstractions. But this would, in my
opinion be a real shame. `alloc` has a few `try_*` methods already, and
we could easily have more. Features like custom allocator support also
demonstrate and existing to support diverse use-cases with the same
abstractions.
A natural way to add such a feature flag would a Cargo feature, but
there are currently uncertainties around how std library crate's Cargo
features may or not be stable, so to avoid any risk of stabilizing by
mistake we are going with a more low-level "raw cfg" token, which
cannot be interacted with via Cargo alone.
Note also that since there is no notion of "default cfg tokens" outside
of Cargo features, we have to invert the condition from
`global_oom_handling` to to `not(no_global_oom_handling)`. This breaks
the monotonicity that would be important for a Cargo feature (i.e.
turning on more features should never break compatibility), but it
doesn't matter for raw cfg tokens which are not intended to be
"constraint solved" by Cargo or anything else.
To support this use-case we create a new feature, "global-oom-handling",
on by default, and put the global OOM handler infra and everything else
it that depends on it behind it. By default, nothing is changed, but
users concerned about global handling can make sure it is disabled, and
be confident that all OOM handling is local and explicit.
For this first iteration, non-flat collections are outright disabled.
`Vec` and `String` don't yet have `try_*` allocation methods, but are
kept anyways since they can be oom-safely created "from parts", and we
hope to add those `try_` methods in the future.
[1]: https://lore.kernel.org/lkml/CAHk-=wh_sNLoz84AUUzuqXEsYH35u=8HV3vK-jbRbJ_B-JjGrg@mail.gmail.com/
2021-04-16 20:18:04 -04:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
Implement `From<Cow<str>> for String` and `From<Cow<[T]>> for Vec<T>`.
Motivation: the `selectors` crate is generic over a string type,
in order to support all of `String`, `string_cache::Atom`, and
`gecko_string_cache::Atom`. Multiple trait bounds are used
for the various operations done with these strings.
One of these operations is creating a string (as efficiently as possible,
re-using an existing memory allocation if possible) from `Cow<str>`.
The `std::convert::From` trait seems natural for this, but
the relevant implementation was missing before this PR.
To work around this I’ve added a `FromCowStr` trait in `selectors`,
but with trait coherence that means one of `selectors` or `string_cache`
needs to depend on the other to implement this trait.
Using a trait from `std` would solve this.
The `Vec<T>` implementation is just added for consistency.
I also tried a more general
`impl<'a, O, B: ?Sized + ToOwned<Owned=O>> From<Cow<'a, B>> for O`,
but (the compiler thinks?) it conflicts with `From<T> for T` the impl
(after moving all of `collections::borrow` into `core::borrow`
to work around trait coherence).
2016-10-21 16:51:59 +02:00
|
|
|
|
#[stable(feature = "string_from_cow_str", since = "1.14.0")]
|
|
|
|
|
|
impl<'a> From<Cow<'a, str>> for String {
|
2021-05-26 08:24:06 +00:00
|
|
|
|
/// Converts a clone-on-write string to an owned
|
|
|
|
|
|
/// instance of [`String`].
|
|
|
|
|
|
///
|
|
|
|
|
|
/// This extracts the owned string,
|
|
|
|
|
|
/// clones the string if it is not already owned.
|
|
|
|
|
|
///
|
|
|
|
|
|
/// # Example
|
|
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
/// # use std::borrow::Cow;
|
|
|
|
|
|
/// // If the string is not owned...
|
2023-05-07 00:12:29 +03:00
|
|
|
|
/// let cow: Cow<'_, str> = Cow::Borrowed("eggplant");
|
2021-05-26 08:24:06 +00:00
|
|
|
|
/// // It will allocate on the heap and copy the string.
|
|
|
|
|
|
/// let owned: String = String::from(cow);
|
|
|
|
|
|
/// assert_eq!(&owned[..], "eggplant");
|
|
|
|
|
|
/// ```
|
Implement `From<Cow<str>> for String` and `From<Cow<[T]>> for Vec<T>`.
Motivation: the `selectors` crate is generic over a string type,
in order to support all of `String`, `string_cache::Atom`, and
`gecko_string_cache::Atom`. Multiple trait bounds are used
for the various operations done with these strings.
One of these operations is creating a string (as efficiently as possible,
re-using an existing memory allocation if possible) from `Cow<str>`.
The `std::convert::From` trait seems natural for this, but
the relevant implementation was missing before this PR.
To work around this I’ve added a `FromCowStr` trait in `selectors`,
but with trait coherence that means one of `selectors` or `string_cache`
needs to depend on the other to implement this trait.
Using a trait from `std` would solve this.
The `Vec<T>` implementation is just added for consistency.
I also tried a more general
`impl<'a, O, B: ?Sized + ToOwned<Owned=O>> From<Cow<'a, B>> for O`,
but (the compiler thinks?) it conflicts with `From<T> for T` the impl
(after moving all of `collections::borrow` into `core::borrow`
to work around trait coherence).
2016-10-21 16:51:59 +02:00
|
|
|
|
fn from(s: Cow<'a, str>) -> String {
|
|
|
|
|
|
s.into_owned()
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
alloc: Add unstable Cfg feature `no-global_oom_handling`
For certain sorts of systems, programming, it's deemed essential that
all allocation failures be explicitly handled where they occur. For
example, see Linus Torvald's opinion in [1]. Merely not calling global
panic handlers, or always `try_reserving` first (for vectors), is not
deemed good enough, because the mere presence of the global OOM handlers
is burdens static analysis.
One option for these projects to use rust would just be to skip `alloc`,
rolling their own allocation abstractions. But this would, in my
opinion be a real shame. `alloc` has a few `try_*` methods already, and
we could easily have more. Features like custom allocator support also
demonstrate and existing to support diverse use-cases with the same
abstractions.
A natural way to add such a feature flag would a Cargo feature, but
there are currently uncertainties around how std library crate's Cargo
features may or not be stable, so to avoid any risk of stabilizing by
mistake we are going with a more low-level "raw cfg" token, which
cannot be interacted with via Cargo alone.
Note also that since there is no notion of "default cfg tokens" outside
of Cargo features, we have to invert the condition from
`global_oom_handling` to to `not(no_global_oom_handling)`. This breaks
the monotonicity that would be important for a Cargo feature (i.e.
turning on more features should never break compatibility), but it
doesn't matter for raw cfg tokens which are not intended to be
"constraint solved" by Cargo or anything else.
To support this use-case we create a new feature, "global-oom-handling",
on by default, and put the global OOM handler infra and everything else
it that depends on it behind it. By default, nothing is changed, but
users concerned about global handling can make sure it is disabled, and
be confident that all OOM handling is local and explicit.
For this first iteration, non-flat collections are outright disabled.
`Vec` and `String` don't yet have `try_*` allocation methods, but are
kept anyways since they can be oom-safely created "from parts", and we
hope to add those `try_` methods in the future.
[1]: https://lore.kernel.org/lkml/CAHk-=wh_sNLoz84AUUzuqXEsYH35u=8HV3vK-jbRbJ_B-JjGrg@mail.gmail.com/
2021-04-16 20:18:04 -04:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
2015-03-30 12:07:16 -07:00
|
|
|
|
#[stable(feature = "rust1", since = "1.0.0")]
|
|
|
|
|
|
impl<'a> From<&'a str> for Cow<'a, str> {
|
2021-05-26 08:24:06 +00:00
|
|
|
|
/// Converts a string slice into a [`Borrowed`] variant.
|
2021-03-02 16:37:50 -07:00
|
|
|
|
/// No heap allocation is performed, and the string
|
|
|
|
|
|
/// is not copied.
|
|
|
|
|
|
///
|
|
|
|
|
|
/// # Example
|
|
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
/// # use std::borrow::Cow;
|
|
|
|
|
|
/// assert_eq!(Cow::from("eggplant"), Cow::Borrowed("eggplant"));
|
|
|
|
|
|
/// ```
|
2021-05-26 08:24:06 +00:00
|
|
|
|
///
|
Apply 16 commits (squashed)
----------
Fix spacing for links inside code blocks, and improve link tooltips in alloc::fmt
----------
Fix spacing for links inside code blocks, and improve link tooltips in alloc::{rc, sync}
----------
Fix spacing for links inside code blocks, and improve link tooltips in alloc::string
----------
Fix spacing for links inside code blocks in alloc::vec
----------
Fix spacing for links inside code blocks in core::option
----------
Fix spacing for links inside code blocks, and improve a few link tooltips in core::result
----------
Fix spacing for links inside code blocks in core::{iter::{self, iterator}, stream::stream, poll}
----------
Fix spacing for links inside code blocks, and improve a few link tooltips in std::{fs, path}
----------
Fix spacing for links inside code blocks in std::{collections, time}
----------
Fix spacing for links inside code blocks in and make formatting of `&str`-like types consistent in std::ffi::{c_str, os_str}
----------
Fix spacing for links inside code blocks, and improve link tooltips in std::ffi
----------
Fix spacing for links inside code blocks, and improve a few link tooltips
in std::{io::{self, buffered::{bufreader, bufwriter}, cursor, util}, net::{self, addr}}
----------
Fix typo in link to `into` for `OsString` docs
----------
Remove tooltips that will probably become redundant in the future
----------
Apply suggestions from code review
Replacing `…std/primitive.reference.html` paths with just `reference`
Co-authored-by: Joshua Nelson <github@jyn.dev>
----------
Also replace `…std/primitive.reference.html` paths with just `reference` in `core::pin`
2021-08-25 11:45:08 +02:00
|
|
|
|
/// [`Borrowed`]: crate::borrow::Cow::Borrowed "borrow::Cow::Borrowed"
|
2015-03-30 12:07:16 -07:00
|
|
|
|
#[inline]
|
|
|
|
|
|
fn from(s: &'a str) -> Cow<'a, str> {
|
|
|
|
|
|
Cow::Borrowed(s)
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
alloc: Add unstable Cfg feature `no-global_oom_handling`
For certain sorts of systems, programming, it's deemed essential that
all allocation failures be explicitly handled where they occur. For
example, see Linus Torvald's opinion in [1]. Merely not calling global
panic handlers, or always `try_reserving` first (for vectors), is not
deemed good enough, because the mere presence of the global OOM handlers
is burdens static analysis.
One option for these projects to use rust would just be to skip `alloc`,
rolling their own allocation abstractions. But this would, in my
opinion be a real shame. `alloc` has a few `try_*` methods already, and
we could easily have more. Features like custom allocator support also
demonstrate and existing to support diverse use-cases with the same
abstractions.
A natural way to add such a feature flag would a Cargo feature, but
there are currently uncertainties around how std library crate's Cargo
features may or not be stable, so to avoid any risk of stabilizing by
mistake we are going with a more low-level "raw cfg" token, which
cannot be interacted with via Cargo alone.
Note also that since there is no notion of "default cfg tokens" outside
of Cargo features, we have to invert the condition from
`global_oom_handling` to to `not(no_global_oom_handling)`. This breaks
the monotonicity that would be important for a Cargo feature (i.e.
turning on more features should never break compatibility), but it
doesn't matter for raw cfg tokens which are not intended to be
"constraint solved" by Cargo or anything else.
To support this use-case we create a new feature, "global-oom-handling",
on by default, and put the global OOM handler infra and everything else
it that depends on it behind it. By default, nothing is changed, but
users concerned about global handling can make sure it is disabled, and
be confident that all OOM handling is local and explicit.
For this first iteration, non-flat collections are outright disabled.
`Vec` and `String` don't yet have `try_*` allocation methods, but are
kept anyways since they can be oom-safely created "from parts", and we
hope to add those `try_` methods in the future.
[1]: https://lore.kernel.org/lkml/CAHk-=wh_sNLoz84AUUzuqXEsYH35u=8HV3vK-jbRbJ_B-JjGrg@mail.gmail.com/
2021-04-16 20:18:04 -04:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
2015-03-30 12:07:16 -07:00
|
|
|
|
#[stable(feature = "rust1", since = "1.0.0")]
|
|
|
|
|
|
impl<'a> From<String> for Cow<'a, str> {
|
2021-05-26 08:24:06 +00:00
|
|
|
|
/// Converts a [`String`] into an [`Owned`] variant.
|
2021-03-02 16:37:50 -07:00
|
|
|
|
/// No heap allocation is performed, and the string
|
|
|
|
|
|
/// is not copied.
|
|
|
|
|
|
///
|
|
|
|
|
|
/// # Example
|
|
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
/// # use std::borrow::Cow;
|
|
|
|
|
|
/// let s = "eggplant".to_string();
|
|
|
|
|
|
/// let s2 = "eggplant".to_string();
|
|
|
|
|
|
/// assert_eq!(Cow::from(s), Cow::<'static, str>::Owned(s2));
|
|
|
|
|
|
/// ```
|
2021-05-26 08:24:06 +00:00
|
|
|
|
///
|
Apply 16 commits (squashed)
----------
Fix spacing for links inside code blocks, and improve link tooltips in alloc::fmt
----------
Fix spacing for links inside code blocks, and improve link tooltips in alloc::{rc, sync}
----------
Fix spacing for links inside code blocks, and improve link tooltips in alloc::string
----------
Fix spacing for links inside code blocks in alloc::vec
----------
Fix spacing for links inside code blocks in core::option
----------
Fix spacing for links inside code blocks, and improve a few link tooltips in core::result
----------
Fix spacing for links inside code blocks in core::{iter::{self, iterator}, stream::stream, poll}
----------
Fix spacing for links inside code blocks, and improve a few link tooltips in std::{fs, path}
----------
Fix spacing for links inside code blocks in std::{collections, time}
----------
Fix spacing for links inside code blocks in and make formatting of `&str`-like types consistent in std::ffi::{c_str, os_str}
----------
Fix spacing for links inside code blocks, and improve link tooltips in std::ffi
----------
Fix spacing for links inside code blocks, and improve a few link tooltips
in std::{io::{self, buffered::{bufreader, bufwriter}, cursor, util}, net::{self, addr}}
----------
Fix typo in link to `into` for `OsString` docs
----------
Remove tooltips that will probably become redundant in the future
----------
Apply suggestions from code review
Replacing `…std/primitive.reference.html` paths with just `reference`
Co-authored-by: Joshua Nelson <github@jyn.dev>
----------
Also replace `…std/primitive.reference.html` paths with just `reference` in `core::pin`
2021-08-25 11:45:08 +02:00
|
|
|
|
/// [`Owned`]: crate::borrow::Cow::Owned "borrow::Cow::Owned"
|
2015-03-30 12:07:16 -07:00
|
|
|
|
#[inline]
|
|
|
|
|
|
fn from(s: String) -> Cow<'a, str> {
|
|
|
|
|
|
Cow::Owned(s)
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
alloc: Add unstable Cfg feature `no-global_oom_handling`
For certain sorts of systems, programming, it's deemed essential that
all allocation failures be explicitly handled where they occur. For
example, see Linus Torvald's opinion in [1]. Merely not calling global
panic handlers, or always `try_reserving` first (for vectors), is not
deemed good enough, because the mere presence of the global OOM handlers
is burdens static analysis.
One option for these projects to use rust would just be to skip `alloc`,
rolling their own allocation abstractions. But this would, in my
opinion be a real shame. `alloc` has a few `try_*` methods already, and
we could easily have more. Features like custom allocator support also
demonstrate and existing to support diverse use-cases with the same
abstractions.
A natural way to add such a feature flag would a Cargo feature, but
there are currently uncertainties around how std library crate's Cargo
features may or not be stable, so to avoid any risk of stabilizing by
mistake we are going with a more low-level "raw cfg" token, which
cannot be interacted with via Cargo alone.
Note also that since there is no notion of "default cfg tokens" outside
of Cargo features, we have to invert the condition from
`global_oom_handling` to to `not(no_global_oom_handling)`. This breaks
the monotonicity that would be important for a Cargo feature (i.e.
turning on more features should never break compatibility), but it
doesn't matter for raw cfg tokens which are not intended to be
"constraint solved" by Cargo or anything else.
To support this use-case we create a new feature, "global-oom-handling",
on by default, and put the global OOM handler infra and everything else
it that depends on it behind it. By default, nothing is changed, but
users concerned about global handling can make sure it is disabled, and
be confident that all OOM handling is local and explicit.
For this first iteration, non-flat collections are outright disabled.
`Vec` and `String` don't yet have `try_*` allocation methods, but are
kept anyways since they can be oom-safely created "from parts", and we
hope to add those `try_` methods in the future.
[1]: https://lore.kernel.org/lkml/CAHk-=wh_sNLoz84AUUzuqXEsYH35u=8HV3vK-jbRbJ_B-JjGrg@mail.gmail.com/
2021-04-16 20:18:04 -04:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
2018-05-09 07:23:02 +01:00
|
|
|
|
#[stable(feature = "cow_from_string_ref", since = "1.28.0")]
|
2018-04-22 22:57:52 +01:00
|
|
|
|
impl<'a> From<&'a String> for Cow<'a, str> {
|
2021-05-26 08:24:06 +00:00
|
|
|
|
/// Converts a [`String`] reference into a [`Borrowed`] variant.
|
2021-03-02 16:37:50 -07:00
|
|
|
|
/// No heap allocation is performed, and the string
|
|
|
|
|
|
/// is not copied.
|
|
|
|
|
|
///
|
|
|
|
|
|
/// # Example
|
|
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
/// # use std::borrow::Cow;
|
|
|
|
|
|
/// let s = "eggplant".to_string();
|
|
|
|
|
|
/// assert_eq!(Cow::from(&s), Cow::Borrowed("eggplant"));
|
|
|
|
|
|
/// ```
|
2021-05-26 08:24:06 +00:00
|
|
|
|
///
|
Apply 16 commits (squashed)
----------
Fix spacing for links inside code blocks, and improve link tooltips in alloc::fmt
----------
Fix spacing for links inside code blocks, and improve link tooltips in alloc::{rc, sync}
----------
Fix spacing for links inside code blocks, and improve link tooltips in alloc::string
----------
Fix spacing for links inside code blocks in alloc::vec
----------
Fix spacing for links inside code blocks in core::option
----------
Fix spacing for links inside code blocks, and improve a few link tooltips in core::result
----------
Fix spacing for links inside code blocks in core::{iter::{self, iterator}, stream::stream, poll}
----------
Fix spacing for links inside code blocks, and improve a few link tooltips in std::{fs, path}
----------
Fix spacing for links inside code blocks in std::{collections, time}
----------
Fix spacing for links inside code blocks in and make formatting of `&str`-like types consistent in std::ffi::{c_str, os_str}
----------
Fix spacing for links inside code blocks, and improve link tooltips in std::ffi
----------
Fix spacing for links inside code blocks, and improve a few link tooltips
in std::{io::{self, buffered::{bufreader, bufwriter}, cursor, util}, net::{self, addr}}
----------
Fix typo in link to `into` for `OsString` docs
----------
Remove tooltips that will probably become redundant in the future
----------
Apply suggestions from code review
Replacing `…std/primitive.reference.html` paths with just `reference`
Co-authored-by: Joshua Nelson <github@jyn.dev>
----------
Also replace `…std/primitive.reference.html` paths with just `reference` in `core::pin`
2021-08-25 11:45:08 +02:00
|
|
|
|
/// [`Borrowed`]: crate::borrow::Cow::Borrowed "borrow::Cow::Borrowed"
|
2018-04-22 22:57:52 +01:00
|
|
|
|
#[inline]
|
|
|
|
|
|
fn from(s: &'a String) -> Cow<'a, str> {
|
|
|
|
|
|
Cow::Borrowed(s.as_str())
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
alloc: Add unstable Cfg feature `no-global_oom_handling`
For certain sorts of systems, programming, it's deemed essential that
all allocation failures be explicitly handled where they occur. For
example, see Linus Torvald's opinion in [1]. Merely not calling global
panic handlers, or always `try_reserving` first (for vectors), is not
deemed good enough, because the mere presence of the global OOM handlers
is burdens static analysis.
One option for these projects to use rust would just be to skip `alloc`,
rolling their own allocation abstractions. But this would, in my
opinion be a real shame. `alloc` has a few `try_*` methods already, and
we could easily have more. Features like custom allocator support also
demonstrate and existing to support diverse use-cases with the same
abstractions.
A natural way to add such a feature flag would a Cargo feature, but
there are currently uncertainties around how std library crate's Cargo
features may or not be stable, so to avoid any risk of stabilizing by
mistake we are going with a more low-level "raw cfg" token, which
cannot be interacted with via Cargo alone.
Note also that since there is no notion of "default cfg tokens" outside
of Cargo features, we have to invert the condition from
`global_oom_handling` to to `not(no_global_oom_handling)`. This breaks
the monotonicity that would be important for a Cargo feature (i.e.
turning on more features should never break compatibility), but it
doesn't matter for raw cfg tokens which are not intended to be
"constraint solved" by Cargo or anything else.
To support this use-case we create a new feature, "global-oom-handling",
on by default, and put the global OOM handler infra and everything else
it that depends on it behind it. By default, nothing is changed, but
users concerned about global handling can make sure it is disabled, and
be confident that all OOM handling is local and explicit.
For this first iteration, non-flat collections are outright disabled.
`Vec` and `String` don't yet have `try_*` allocation methods, but are
kept anyways since they can be oom-safely created "from parts", and we
hope to add those `try_` methods in the future.
[1]: https://lore.kernel.org/lkml/CAHk-=wh_sNLoz84AUUzuqXEsYH35u=8HV3vK-jbRbJ_B-JjGrg@mail.gmail.com/
2021-04-16 20:18:04 -04:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
2016-07-26 21:16:46 -07:00
|
|
|
|
#[stable(feature = "cow_str_from_iter", since = "1.12.0")]
|
|
|
|
|
|
impl<'a> FromIterator<char> for Cow<'a, str> {
|
|
|
|
|
|
fn from_iter<I: IntoIterator<Item = char>>(it: I) -> Cow<'a, str> {
|
|
|
|
|
|
Cow::Owned(FromIterator::from_iter(it))
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
alloc: Add unstable Cfg feature `no-global_oom_handling`
For certain sorts of systems, programming, it's deemed essential that
all allocation failures be explicitly handled where they occur. For
example, see Linus Torvald's opinion in [1]. Merely not calling global
panic handlers, or always `try_reserving` first (for vectors), is not
deemed good enough, because the mere presence of the global OOM handlers
is burdens static analysis.
One option for these projects to use rust would just be to skip `alloc`,
rolling their own allocation abstractions. But this would, in my
opinion be a real shame. `alloc` has a few `try_*` methods already, and
we could easily have more. Features like custom allocator support also
demonstrate and existing to support diverse use-cases with the same
abstractions.
A natural way to add such a feature flag would a Cargo feature, but
there are currently uncertainties around how std library crate's Cargo
features may or not be stable, so to avoid any risk of stabilizing by
mistake we are going with a more low-level "raw cfg" token, which
cannot be interacted with via Cargo alone.
Note also that since there is no notion of "default cfg tokens" outside
of Cargo features, we have to invert the condition from
`global_oom_handling` to to `not(no_global_oom_handling)`. This breaks
the monotonicity that would be important for a Cargo feature (i.e.
turning on more features should never break compatibility), but it
doesn't matter for raw cfg tokens which are not intended to be
"constraint solved" by Cargo or anything else.
To support this use-case we create a new feature, "global-oom-handling",
on by default, and put the global OOM handler infra and everything else
it that depends on it behind it. By default, nothing is changed, but
users concerned about global handling can make sure it is disabled, and
be confident that all OOM handling is local and explicit.
For this first iteration, non-flat collections are outright disabled.
`Vec` and `String` don't yet have `try_*` allocation methods, but are
kept anyways since they can be oom-safely created "from parts", and we
hope to add those `try_` methods in the future.
[1]: https://lore.kernel.org/lkml/CAHk-=wh_sNLoz84AUUzuqXEsYH35u=8HV3vK-jbRbJ_B-JjGrg@mail.gmail.com/
2021-04-16 20:18:04 -04:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
2016-07-26 21:16:46 -07:00
|
|
|
|
#[stable(feature = "cow_str_from_iter", since = "1.12.0")]
|
|
|
|
|
|
impl<'a, 'b> FromIterator<&'b str> for Cow<'a, str> {
|
|
|
|
|
|
fn from_iter<I: IntoIterator<Item = &'b str>>(it: I) -> Cow<'a, str> {
|
|
|
|
|
|
Cow::Owned(FromIterator::from_iter(it))
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
alloc: Add unstable Cfg feature `no-global_oom_handling`
For certain sorts of systems, programming, it's deemed essential that
all allocation failures be explicitly handled where they occur. For
example, see Linus Torvald's opinion in [1]. Merely not calling global
panic handlers, or always `try_reserving` first (for vectors), is not
deemed good enough, because the mere presence of the global OOM handlers
is burdens static analysis.
One option for these projects to use rust would just be to skip `alloc`,
rolling their own allocation abstractions. But this would, in my
opinion be a real shame. `alloc` has a few `try_*` methods already, and
we could easily have more. Features like custom allocator support also
demonstrate and existing to support diverse use-cases with the same
abstractions.
A natural way to add such a feature flag would a Cargo feature, but
there are currently uncertainties around how std library crate's Cargo
features may or not be stable, so to avoid any risk of stabilizing by
mistake we are going with a more low-level "raw cfg" token, which
cannot be interacted with via Cargo alone.
Note also that since there is no notion of "default cfg tokens" outside
of Cargo features, we have to invert the condition from
`global_oom_handling` to to `not(no_global_oom_handling)`. This breaks
the monotonicity that would be important for a Cargo feature (i.e.
turning on more features should never break compatibility), but it
doesn't matter for raw cfg tokens which are not intended to be
"constraint solved" by Cargo or anything else.
To support this use-case we create a new feature, "global-oom-handling",
on by default, and put the global OOM handler infra and everything else
it that depends on it behind it. By default, nothing is changed, but
users concerned about global handling can make sure it is disabled, and
be confident that all OOM handling is local and explicit.
For this first iteration, non-flat collections are outright disabled.
`Vec` and `String` don't yet have `try_*` allocation methods, but are
kept anyways since they can be oom-safely created "from parts", and we
hope to add those `try_` methods in the future.
[1]: https://lore.kernel.org/lkml/CAHk-=wh_sNLoz84AUUzuqXEsYH35u=8HV3vK-jbRbJ_B-JjGrg@mail.gmail.com/
2021-04-16 20:18:04 -04:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
2016-07-26 21:16:46 -07:00
|
|
|
|
#[stable(feature = "cow_str_from_iter", since = "1.12.0")]
|
|
|
|
|
|
impl<'a> FromIterator<String> for Cow<'a, str> {
|
|
|
|
|
|
fn from_iter<I: IntoIterator<Item = String>>(it: I) -> Cow<'a, str> {
|
|
|
|
|
|
Cow::Owned(FromIterator::from_iter(it))
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2016-11-04 15:54:08 -02:00
|
|
|
|
#[stable(feature = "from_string_for_vec_u8", since = "1.14.0")]
|
|
|
|
|
|
impl From<String> for Vec<u8> {
|
2021-05-26 08:24:06 +00:00
|
|
|
|
/// Converts the given [`String`] to a vector [`Vec`] that holds values of type [`u8`].
|
2018-11-11 15:08:28 +01:00
|
|
|
|
///
|
|
|
|
|
|
/// # Examples
|
|
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
/// let s1 = String::from("hello world");
|
|
|
|
|
|
/// let v1 = Vec::from(s1);
|
2018-11-11 16:58:00 +01:00
|
|
|
|
///
|
2018-11-11 15:08:28 +01:00
|
|
|
|
/// for b in v1 {
|
2022-02-12 23:16:17 +04:00
|
|
|
|
/// println!("{b}");
|
2018-11-11 15:08:28 +01:00
|
|
|
|
/// }
|
|
|
|
|
|
/// ```
|
2016-12-20 09:54:00 +05:30
|
|
|
|
fn from(string: String) -> Vec<u8> {
|
2016-11-04 15:54:08 -02:00
|
|
|
|
string.into_bytes()
|
2015-03-18 09:14:54 -07:00
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
alloc: Add unstable Cfg feature `no-global_oom_handling`
For certain sorts of systems, programming, it's deemed essential that
all allocation failures be explicitly handled where they occur. For
example, see Linus Torvald's opinion in [1]. Merely not calling global
panic handlers, or always `try_reserving` first (for vectors), is not
deemed good enough, because the mere presence of the global OOM handlers
is burdens static analysis.
One option for these projects to use rust would just be to skip `alloc`,
rolling their own allocation abstractions. But this would, in my
opinion be a real shame. `alloc` has a few `try_*` methods already, and
we could easily have more. Features like custom allocator support also
demonstrate and existing to support diverse use-cases with the same
abstractions.
A natural way to add such a feature flag would a Cargo feature, but
there are currently uncertainties around how std library crate's Cargo
features may or not be stable, so to avoid any risk of stabilizing by
mistake we are going with a more low-level "raw cfg" token, which
cannot be interacted with via Cargo alone.
Note also that since there is no notion of "default cfg tokens" outside
of Cargo features, we have to invert the condition from
`global_oom_handling` to to `not(no_global_oom_handling)`. This breaks
the monotonicity that would be important for a Cargo feature (i.e.
turning on more features should never break compatibility), but it
doesn't matter for raw cfg tokens which are not intended to be
"constraint solved" by Cargo or anything else.
To support this use-case we create a new feature, "global-oom-handling",
on by default, and put the global OOM handler infra and everything else
it that depends on it behind it. By default, nothing is changed, but
users concerned about global handling can make sure it is disabled, and
be confident that all OOM handling is local and explicit.
For this first iteration, non-flat collections are outright disabled.
`Vec` and `String` don't yet have `try_*` allocation methods, but are
kept anyways since they can be oom-safely created "from parts", and we
hope to add those `try_` methods in the future.
[1]: https://lore.kernel.org/lkml/CAHk-=wh_sNLoz84AUUzuqXEsYH35u=8HV3vK-jbRbJ_B-JjGrg@mail.gmail.com/
2021-04-16 20:18:04 -04:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
std: Stabilize the std::fmt module
This commit performs a final stabilization pass over the std::fmt module,
marking all necessary APIs as stable. One of the more interesting aspects of
this module is that it exposes a good deal of its runtime representation to the
outside world in order for `format_args!` to be able to construct the format
strings. Instead of hacking the compiler to assume that these items are stable,
this commit instead lays out a story for the stabilization and evolution of
these APIs.
There are three primary details used by the `format_args!` macro:
1. `Arguments` - an opaque package of a "compiled format string". This structure
is passed around and the `write` function is the source of truth for
transforming a compiled format string into a string at runtime. This must be
able to be constructed in stable code.
2. `Argument` - an opaque structure representing an argument to a format string.
This is *almost* a trait object as it's just a pointer/function pair, but due
to the function originating from one of many traits, it's not actually a
trait object. Like `Arguments`, this must be constructed from stable code.
3. `fmt::rt` - this module contains the runtime type definitions primarily for
the `rt::Argument` structure. Whenever an argument is formatted with
nonstandard flags, a corresponding `rt::Argument` is generated describing how
the argument is being formatted. This can be used to construct an
`Arguments`.
The primary interface to `std::fmt` is the `Arguments` structure, and as such
this type name is stabilize as-is today. It is expected for libraries to pass
around an `Arguments` structure to represent a pending formatted computation.
The remaining portions are largely "cruft" which would rather not be stabilized,
but due to the stability checks they must be. As a result, almost all pieces
have been renamed to represent that they are "version 1" of the formatting
representation. The theory is that at a later date if we change the
representation of these types we can add new definitions called "version 2" and
corresponding constructors for `Arguments`.
One of the other remaining large questions about the fmt module were how the
pending I/O reform would affect the signatures of methods in the module. Due to
[RFC 526][rfc], however, the writers of fmt are now incompatible with the
writers of io, so this question has largely been solved. As a result the
interfaces are largely stabilized as-is today.
[rfc]: https://github.com/rust-lang/rfcs/blob/master/text/0526-fmt-text-writer.md
Specifically, the following changes were made:
* The contents of `fmt::rt` were all moved under `fmt::rt::v1`
* `fmt::rt` is stable
* `fmt::rt::v1` is stable
* `Error` is stable
* `Writer` is stable
* `Writer::write_str` is stable
* `Writer::write_fmt` is stable
* `Formatter` is stable
* `Argument` has been renamed to `ArgumentV1` and is stable
* `ArgumentV1::new` is stable
* `ArgumentV1::from_uint` is stable
* `Arguments::new_v1` is stable (renamed from `new`)
* `Arguments::new_v1_formatted` is stable (renamed from `with_placeholders`)
* All formatting traits are now stable, as well as the `fmt` method.
* `fmt::write` is stable
* `fmt::format` is stable
* `Formatter::pad_integral` is stable
* `Formatter::pad` is stable
* `Formatter::write_str` is stable
* `Formatter::write_fmt` is stable
* Some assorted top level items which were only used by `format_args!` were
removed in favor of static functions on `ArgumentV1` as well.
* The formatting-flag-accessing methods remain unstable
Within the contents of the `fmt::rt::v1` module, the following actions were
taken:
* Reexports of all enum variants were removed
* All prefixes on enum variants were removed
* A few miscellaneous enum variants were renamed
* Otherwise all structs, fields, and variants were marked stable.
In addition to these actions in the `std::fmt` module, many implementations of
`Show` and `String` were stabilized as well.
In some other modules:
* `ToString` is now stable
* `ToString::to_string` is now stable
* `Vec` no longer implements `fmt::Writer` (this has moved to `String`)
This is a breaking change due to all of the changes to the `fmt::rt` module, but
this likely will not have much impact on existing programs.
Closes #20661
[breaking-change]
2015-01-13 15:42:53 -08:00
|
|
|
|
#[stable(feature = "rust1", since = "1.0.0")]
|
2015-02-14 12:56:32 +13:00
|
|
|
|
impl fmt::Write for String {
|
2015-01-10 11:07:14 +01:00
|
|
|
|
#[inline]
|
2014-12-12 10:59:41 -08:00
|
|
|
|
fn write_str(&mut self, s: &str) -> fmt::Result {
|
|
|
|
|
|
self.push_str(s);
|
|
|
|
|
|
Ok(())
|
|
|
|
|
|
}
|
2015-04-21 14:51:28 +02:00
|
|
|
|
|
|
|
|
|
|
#[inline]
|
|
|
|
|
|
fn write_char(&mut self, c: char) -> fmt::Result {
|
|
|
|
|
|
self.push(c);
|
|
|
|
|
|
Ok(())
|
|
|
|
|
|
}
|
2014-12-12 10:59:41 -08:00
|
|
|
|
}
|
2015-05-01 15:34:25 +02:00
|
|
|
|
|
|
|
|
|
|
/// A draining iterator for `String`.
|
2016-02-09 12:02:55 -05:00
|
|
|
|
///
|
2017-03-12 14:04:52 -04:00
|
|
|
|
/// This struct is created by the [`drain`] method on [`String`]. See its
|
2016-02-09 12:02:55 -05:00
|
|
|
|
/// documentation for more.
|
|
|
|
|
|
///
|
2020-07-18 10:14:00 -07:00
|
|
|
|
/// [`drain`]: String::drain
|
2015-12-02 17:31:49 -08:00
|
|
|
|
#[stable(feature = "drain", since = "1.6.0")]
|
2015-05-01 15:34:25 +02:00
|
|
|
|
pub struct Drain<'a> {
|
|
|
|
|
|
/// Will be used as &'a mut String in the destructor
|
|
|
|
|
|
string: *mut String,
|
|
|
|
|
|
/// Start of part to remove
|
|
|
|
|
|
start: usize,
|
|
|
|
|
|
/// End of part to remove
|
|
|
|
|
|
end: usize,
|
|
|
|
|
|
/// Current remaining range to remove
|
|
|
|
|
|
iter: Chars<'a>,
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2017-01-21 00:33:38 +01:00
|
|
|
|
#[stable(feature = "collection_debug", since = "1.17.0")]
|
2019-02-02 12:23:15 +01:00
|
|
|
|
impl fmt::Debug for Drain<'_> {
|
2019-02-02 12:48:12 +01:00
|
|
|
|
fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
|
2020-09-09 17:40:44 +02:00
|
|
|
|
f.debug_tuple("Drain").field(&self.as_str()).finish()
|
2017-01-11 23:12:49 +01:00
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2015-12-02 17:31:49 -08:00
|
|
|
|
#[stable(feature = "drain", since = "1.6.0")]
|
2019-02-02 12:23:15 +01:00
|
|
|
|
unsafe impl Sync for Drain<'_> {}
|
2015-12-02 17:31:49 -08:00
|
|
|
|
#[stable(feature = "drain", since = "1.6.0")]
|
2019-02-02 12:23:15 +01:00
|
|
|
|
unsafe impl Send for Drain<'_> {}
|
2015-05-01 15:34:25 +02:00
|
|
|
|
|
2015-12-02 17:31:49 -08:00
|
|
|
|
#[stable(feature = "drain", since = "1.6.0")]
|
2019-02-02 12:23:15 +01:00
|
|
|
|
impl Drop for Drain<'_> {
|
2015-05-01 15:34:25 +02:00
|
|
|
|
fn drop(&mut self) {
|
|
|
|
|
|
unsafe {
|
|
|
|
|
|
// Use Vec::drain. "Reaffirm" the bounds checks to avoid
|
|
|
|
|
|
// panic code being inserted again.
|
|
|
|
|
|
let self_vec = (*self.string).as_mut_vec();
|
|
|
|
|
|
if self.start <= self.end && self.end <= self_vec.len() {
|
|
|
|
|
|
self_vec.drain(self.start..self.end);
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2020-09-09 17:40:15 +02:00
|
|
|
|
impl<'a> Drain<'a> {
|
|
|
|
|
|
/// Returns the remaining (sub)string of this iterator as a slice.
|
|
|
|
|
|
///
|
|
|
|
|
|
/// # Examples
|
|
|
|
|
|
///
|
|
|
|
|
|
/// ```
|
|
|
|
|
|
/// let mut s = String::from("abc");
|
|
|
|
|
|
/// let mut drain = s.drain(..);
|
|
|
|
|
|
/// assert_eq!(drain.as_str(), "abc");
|
|
|
|
|
|
/// let _ = drain.next().unwrap();
|
|
|
|
|
|
/// assert_eq!(drain.as_str(), "bc");
|
|
|
|
|
|
/// ```
|
2021-10-11 13:57:38 -04:00
|
|
|
|
#[must_use]
|
2021-07-04 14:23:43 +09:00
|
|
|
|
#[stable(feature = "string_drain_as_str", since = "1.55.0")]
|
2020-09-09 17:40:15 +02:00
|
|
|
|
pub fn as_str(&self) -> &str {
|
|
|
|
|
|
self.iter.as_str()
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2021-07-04 14:23:43 +09:00
|
|
|
|
#[stable(feature = "string_drain_as_str", since = "1.55.0")]
|
|
|
|
|
|
impl<'a> AsRef<str> for Drain<'a> {
|
|
|
|
|
|
fn as_ref(&self) -> &str {
|
|
|
|
|
|
self.as_str()
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
#[stable(feature = "string_drain_as_str", since = "1.55.0")]
|
|
|
|
|
|
impl<'a> AsRef<[u8]> for Drain<'a> {
|
|
|
|
|
|
fn as_ref(&self) -> &[u8] {
|
|
|
|
|
|
self.as_str().as_bytes()
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
2020-09-09 17:59:43 +02:00
|
|
|
|
|
2015-12-02 17:31:49 -08:00
|
|
|
|
#[stable(feature = "drain", since = "1.6.0")]
|
2019-02-02 12:23:15 +01:00
|
|
|
|
impl Iterator for Drain<'_> {
|
2015-05-01 15:34:25 +02:00
|
|
|
|
type Item = char;
|
|
|
|
|
|
|
|
|
|
|
|
#[inline]
|
|
|
|
|
|
fn next(&mut self) -> Option<char> {
|
|
|
|
|
|
self.iter.next()
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
fn size_hint(&self) -> (usize, Option<usize>) {
|
|
|
|
|
|
self.iter.size_hint()
|
|
|
|
|
|
}
|
When possible without changing semantics, implement Iterator::last in terms of DoubleEndedIterator::next_back for types in liballoc and libcore.
Provided that the iterator has finite length and does not trigger user-provided code, this is safe.
What follows is a full list of the DoubleEndedIterators in liballoc/libcore and whether this optimization is safe, and if not, why not.
src/liballoc/boxed.rs
Box: Pass through to avoid defeating optimization of the underlying DoubleIterator implementation. This has no correctness impact.
src/liballoc/collections/binary_heap.rs
Iter: Pass through to avoid defeating optimizations on slice::Iter
IntoIter: Not safe, changes Drop order
Drain: Not safe, changes Drop order
src/liballoc/collections/btree/map.rs
Iter: Safe to call next_back, invokes no user defined code.
IterMut: ditto
IntoIter: Not safe, changes Drop order
Keys: Safe to call next_back, invokes no user defined code.
Values: ditto
ValuesMut: ditto
Range: ditto
RangeMut: ditto
src/liballoc/collections/btree/set.rs
Iter: Safe to call next_back, invokes no user defined code.
IntoIter: Not safe, changes Drop order
Range: Safe to call next_back, invokes no user defined code.
src/liballoc/collections/linked_list.rs
Iter: Safe to call next_back, invokes no user defined code.
IterMut: ditto
IntoIter: Not safe, changes Drop order
src/liballoc/collections/vec_deque.rs
Iter: Safe to call next_back, invokes no user defined code.
IterMut: ditto
IntoIter: Not safe, changes Drop order
Drain: ditto
src/liballoc/string.rs
Drain: Safe because return type is a primitive (char)
src/liballoc/vec.rs
IntoIter: Not safe, changes Drop order
Drain: ditto
Splice: ditto
src/libcore/ascii.rs
EscapeDefault: Safe because return type is a primitive (u8)
src/libcore/iter/adapters/chain.rs
Chain: Not safe, invokes user defined code (Iterator impl)
src/libcore/iter/adapters/flatten.rs
FlatMap: Not safe, invokes user defined code (Iterator impl)
Flatten: ditto
FlattenCompat: ditto
src/libcore/iter/adapters/mod.rs
Rev: Not safe, invokes user defined code (Iterator impl)
Copied: ditto
Cloned: Not safe, invokes user defined code (Iterator impl and T::clone)
Map: Not safe, invokes user defined code (Iterator impl + closure)
Filter: ditto
FilterMap: ditto
Enumerate: Not safe, invokes user defined code (Iterator impl)
Skip: ditto
Fuse: ditto
Inspect: ditto
src/libcore/iter/adapters/zip.rs
Zip: Not safe, invokes user defined code (Iterator impl)
src/libcore/iter/range.rs
ops::Range: Not safe, changes Drop order, but ALREADY HAS SPECIALIZATION
ops::RangeInclusive: ditto
src/libcore/iter/sources.rs
Repeat: Not safe, calling last should iloop.
Empty: No point, iterator is at most one item long.
Once: ditto
OnceWith: ditto
src/libcore/option.rs
Item: No point, iterator is at most one item long.
Iter: ditto
IterMut: ditto
IntoIter: ditto
src/libcore/result.rs
Iter: No point, iterator is at most one item long
IterMut: ditto
IntoIter: ditto
src/libcore/slice/mod.rs
Split: Not safe, invokes user defined closure
SplitMut: ditto
RSplit: ditto
RSplitMut: ditto
Windows: Safe, already has specialization
Chunks: ditto
ChunksMut: ditto
ChunksExact: ditto
ChunksExactMut: ditto
RChunks: ditto
RChunksMut: ditto
RChunksExact: ditto
RChunksExactMut: ditto
src/libcore/str/mod.rs
Chars: Safe, already has specialization
CharIndices: ditto
Bytes: ditto
Lines: Safe to call next_back, invokes no user defined code.
LinesAny: Deprecated
Everything that is generic over P: Pattern: Not safe because Pattern invokes user defined code.
SplitWhitespace: Safe to call next_back, invokes no user defined code.
SplitAsciiWhitespace: ditto
2019-07-02 13:45:29 -07:00
|
|
|
|
|
|
|
|
|
|
#[inline]
|
|
|
|
|
|
fn last(mut self) -> Option<char> {
|
|
|
|
|
|
self.next_back()
|
|
|
|
|
|
}
|
2015-05-01 15:34:25 +02:00
|
|
|
|
}
|
|
|
|
|
|
|
2015-12-02 17:31:49 -08:00
|
|
|
|
#[stable(feature = "drain", since = "1.6.0")]
|
2019-02-02 12:23:15 +01:00
|
|
|
|
impl DoubleEndedIterator for Drain<'_> {
|
2015-05-01 15:34:25 +02:00
|
|
|
|
#[inline]
|
|
|
|
|
|
fn next_back(&mut self) -> Option<char> {
|
|
|
|
|
|
self.iter.next_back()
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
2016-08-13 14:42:36 -04:00
|
|
|
|
|
2018-03-03 14:15:28 +01:00
|
|
|
|
#[stable(feature = "fused", since = "1.26.0")]
|
2019-02-02 12:23:15 +01:00
|
|
|
|
impl FusedIterator for Drain<'_> {}
|
2020-06-18 01:36:43 +02:00
|
|
|
|
|
alloc: Add unstable Cfg feature `no-global_oom_handling`
For certain sorts of systems, programming, it's deemed essential that
all allocation failures be explicitly handled where they occur. For
example, see Linus Torvald's opinion in [1]. Merely not calling global
panic handlers, or always `try_reserving` first (for vectors), is not
deemed good enough, because the mere presence of the global OOM handlers
is burdens static analysis.
One option for these projects to use rust would just be to skip `alloc`,
rolling their own allocation abstractions. But this would, in my
opinion be a real shame. `alloc` has a few `try_*` methods already, and
we could easily have more. Features like custom allocator support also
demonstrate and existing to support diverse use-cases with the same
abstractions.
A natural way to add such a feature flag would a Cargo feature, but
there are currently uncertainties around how std library crate's Cargo
features may or not be stable, so to avoid any risk of stabilizing by
mistake we are going with a more low-level "raw cfg" token, which
cannot be interacted with via Cargo alone.
Note also that since there is no notion of "default cfg tokens" outside
of Cargo features, we have to invert the condition from
`global_oom_handling` to to `not(no_global_oom_handling)`. This breaks
the monotonicity that would be important for a Cargo feature (i.e.
turning on more features should never break compatibility), but it
doesn't matter for raw cfg tokens which are not intended to be
"constraint solved" by Cargo or anything else.
To support this use-case we create a new feature, "global-oom-handling",
on by default, and put the global OOM handler infra and everything else
it that depends on it behind it. By default, nothing is changed, but
users concerned about global handling can make sure it is disabled, and
be confident that all OOM handling is local and explicit.
For this first iteration, non-flat collections are outright disabled.
`Vec` and `String` don't yet have `try_*` allocation methods, but are
kept anyways since they can be oom-safely created "from parts", and we
hope to add those `try_` methods in the future.
[1]: https://lore.kernel.org/lkml/CAHk-=wh_sNLoz84AUUzuqXEsYH35u=8HV3vK-jbRbJ_B-JjGrg@mail.gmail.com/
2021-04-16 20:18:04 -04:00
|
|
|
|
#[cfg(not(no_global_oom_handling))]
|
2020-06-18 01:36:43 +02:00
|
|
|
|
#[stable(feature = "from_char_for_string", since = "1.46.0")]
|
|
|
|
|
|
impl From<char> for String {
|
2021-05-26 08:24:06 +00:00
|
|
|
|
/// Allocates an owned [`String`] from a single character.
|
|
|
|
|
|
///
|
|
|
|
|
|
/// # Example
|
|
|
|
|
|
/// ```rust
|
|
|
|
|
|
/// let c: char = 'a';
|
|
|
|
|
|
/// let s: String = String::from(c);
|
|
|
|
|
|
/// assert_eq!("a", &s[..]);
|
|
|
|
|
|
/// ```
|
2020-06-18 01:36:43 +02:00
|
|
|
|
#[inline]
|
|
|
|
|
|
fn from(c: char) -> Self {
|
|
|
|
|
|
c.to_string()
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|