yannbolliger
commented
3 years ago This is now finished, CI will pass once the latest stainless-noxt is published.
@gsps @romac please review. 🙏
Closed yannbolliger closed 3 years ago
yannbolliger
commented
3 years ago This is now finished, CI will pass once the latest stainless-noxt is published.
@gsps @romac please review. 🙏
yannbolliger
commented
3 years ago Closing in favour of #164. Most of the changes here are contained there.
This PR is the result of many discussions with @romac @gsps @vkuncak. There was also great support by @jad-hamza on the Stainless side of things, thanks!
The PR brings the mutability support of
rust-stainlesscloser to Rust's semantics by dropping thevarannotation on fields.Closes #157. Closes #99 because now, all fields can be mutated with
mutat binding. This is a big step for #92 and brings us closer to #140.Theory The safety of what we do in this PR, mainly on this single line change is guaranteed by the following theoretical argument:
freshCopyat our own riskBorrowKind::Shared), it’s aliasable and we can therefore safelyfreshCopyit.There are 3 other places, where
freshCopyis/was introduced:For function parameters that are taken by-value. It's safe to
freshCopythem because the by-value/move semantics guarantee that they are owned i.e. there are no other references to them.Return values are
freshCopy'd to avoid aliasing. This is safe (currently) because we only support returning by-value or by shared, immutable reference.stainless::Mapis a special case. In order to get support for mutable value types, we needed to refactor the map extraction. Behind the immutable Rust interface that resides inlibstainlessthe map is now extracted asMutableMap. To combat aliasing, theinsertandremovemethod now consumeself. This allows on the extraction side, to extract for examplelet b = a.insert(0, 1);as the following in Scala: