fix(safety): improve docs for unsafe C functions

stiers1109 · Aug 19, 2023 · c332066 · c332066
1 parent ffae7d6
commit c332066
Show file tree

Hide file tree

Showing 2 changed files with 126 additions and 18 deletions.
diff --git a/highlight/src/c_lib.rs b/highlight/src/c_lib.rs
@@ -47,11  47,11 @@ pub unsafe extern "C" fn ts_highlighter_new(
     let highlight_names = slice::from_raw_parts(highlight_names, highlight_count as usize);
     let attribute_strings = slice::from_raw_parts(attribute_strings, highlight_count as usize);
     let highlight_names = highlight_names
-        .into_iter()
         .iter()
         .map(|s| CStr::from_ptr(*s).to_string_lossy().to_string())
         .collect::<Vec<_>>();
     let attribute_strings = attribute_strings
-        .into_iter()
         .iter()
         .map(|s| CStr::from_ptr(*s).to_bytes())
         .collect();
     let carriage_return_index = highlight_names.iter().position(|s| s == "carriage-return");
@@ -65,9  65,14 @@ pub unsafe extern "C" fn ts_highlighter_new(
 
 /// Add a language to a [`TSHighlighter`] instance.
 ///
 /// Returns an [`ErrorCode`] indicating whether the language was added successfully or not.
 ///
 /// # Safety
 ///
-/// The caller must ensure that any `*const c_char` parameters are valid for the lifetime of
 /// `this` must be non-null and must be a valid pointer to a [`TSHighlighter`] instance
 /// created by [`ts_highlighter_new`].
 ///
 /// The caller must ensure that any `*const c_char` (C-style string) parameters are valid for the lifetime of
 /// the [`TSHighlighter`] instance, and are non-null.
 #[no_mangle]
 pub unsafe extern "C" fn ts_highlighter_add_language(
@@ -119,7  124,7 @@ pub unsafe extern "C" fn ts_highlighter_add_language(
             ""
         };
 
-        let lang = unsafe { CStr::from_ptr(language_name) }
         let lang = CStr::from_ptr(language_name)
             .to_str()
             .or(Err(ErrorCode::InvalidLanguageName))?;
 
@@ -152,32  157,60 @@ pub extern "C" fn ts_highlight_buffer_new() -> *mut TSHighlightBuffer {
     }))
 }
 
-/// Deleteis a [`TSHighlighter`] instance.
 /// Deletes a [`TSHighlighter`] instance.
 ///
 /// # Safety
 ///
-/// `this` must be non-null.
 /// `this` must be non-null and must be a valid pointer to a [`TSHighlighter`] instance
 /// created by [`ts_highlighter_new`].
 ///
 /// It cannot be used after this function is called.
 #[no_mangle]
 pub unsafe extern "C" fn ts_highlighter_delete(this: *mut TSHighlighter) {
     drop(Box::from_raw(this))
 }
 
-/// Deleteis a [`TSHighlightBuffer`] instance.
 /// Deletes a [`TSHighlightBuffer`] instance.
 ///
 /// # Safety
 ///
-/// `this` must be non-null.
 /// `this` must be non-null and must be a valid pointer to a [`TSHighlightBuffer`] instance
 /// created by [`ts_highlight_buffer_new`]
 ///
 /// It cannot be used after this function is called.
 #[no_mangle]
 pub unsafe extern "C" fn ts_highlight_buffer_delete(this: *mut TSHighlightBuffer) {
     drop(Box::from_raw(this))
 }
 
 /// Get the HTML content of a [`TSHighlightBuffer`] instance as a raw pointer.
 ///
 /// # Safety
 ///
 /// `this` must be non-null and must be a valid pointer to a [`TSHighlightBuffer`] instance
 /// created by [`ts_highlight_buffer_new`].
 ///
 /// The returned pointer, a C-style string, must not outlive the [`TSHighlightBuffer`] instance, else the
 /// data will point to garbage.
 ///
 /// To get the length of the HTML content, use [`ts_highlight_buffer_len`].
 #[no_mangle]
 pub unsafe extern "C" fn ts_highlight_buffer_content(this: *const TSHighlightBuffer) -> *const u8 {
     let this = unwrap_ptr(this);
     this.renderer.html.as_slice().as_ptr()
 }
 
 /// Get the line offsets of a [`TSHighlightBuffer`] instance as a C-style array.
 ///
 /// # Safety
 ///
 /// `this` must be non-null and must be a valid pointer to a [`TSHighlightBuffer`] instance
 /// created by [`ts_highlight_buffer_new`].
 ///
 /// The returned pointer, a C-style array of [`u32`]s, must not outlive the [`TSHighlightBuffer`] instance, else the
 /// data will point to garbage.
 ///
 /// To get the length of the array, use [`ts_highlight_buffer_line_count`].
 #[no_mangle]
 pub unsafe extern "C" fn ts_highlight_buffer_line_offsets(
     this: *const TSHighlightBuffer,
@@ -186,12  219,24 @@ pub unsafe extern "C" fn ts_highlight_buffer_line_offsets(
     this.renderer.line_offsets.as_slice().as_ptr()
 }
 
 /// Get the length of the HTML content of a [`TSHighlightBuffer`] instance.
 ///
 /// # Safety
 ///
 /// `this` must be non-null and must be a valid pointer to a [`TSHighlightBuffer`] instance
 /// created by [`ts_highlight_buffer_new`].
 #[no_mangle]
 pub unsafe extern "C" fn ts_highlight_buffer_len(this: *const TSHighlightBuffer) -> u32 {
     let this = unwrap_ptr(this);
     this.renderer.html.len() as u32
 }
 
 /// Get the number of lines in a [`TSHighlightBuffer`] instance.
 ///
 /// # Safety
 ///
 /// `this` must be non-null and must be a valid pointer to a [`TSHighlightBuffer`] instance
 /// created by [`ts_highlight_buffer_new`].
 #[no_mangle]
 pub unsafe extern "C" fn ts_highlight_buffer_line_count(this: *const TSHighlightBuffer) -> u32 {
     let this = unwrap_ptr(this);
@@ -202,8  247,10 @@ pub unsafe extern "C" fn ts_highlight_buffer_line_count(this: *const TSHighlight
 ///
 /// # Safety
 ///
-/// The caller must ensure that `scope_name`, `source_code`, and `cancellation_flag` are valid for
 /// The caller must ensure that `scope_name`, `source_code`, `output`, and `cancellation_flag` are valid for
 /// the lifetime of the [`TSHighlighter`] instance, and are non-null.
 ///
 /// `this` must be a non-null pointer to a [`TSHighlighter`] instance created by [`ts_highlighter_new`]
 #[no_mangle]
 pub unsafe extern "C" fn ts_highlighter_highlight(
     this: *const TSHighlighter,

diff --git a/tags/src/c_lib.rs b/tags/src/c_lib.rs
@@ -70,17  70,23 @@ pub extern "C" fn ts_tagger_new() -> *mut TSTagger {
 ///
 /// # Safety
 ///
-/// `this` must be non-null
 /// `this` must be non-null and a valid pointer to a [`TSTagger`] instance.
 #[no_mangle]
 pub unsafe extern "C" fn ts_tagger_delete(this: *mut TSTagger) {
     drop(Box::from_raw(this))
 }
 
 /// Add a language to a TSTagger.
 ///
 /// Returns a [`TSTagsError`] indicating whether the operation was successful or not.
 ///
 /// # Safety
 ///
-/// `this` must be non-null
 /// `this` must be non-null and a valid pointer to a [`TSTagger`] instance.
 /// `scope_name` must be non-null and a valid pointer to a null-terminated string.
 /// `tags_query` and `locals_query` must be non-null and valid pointers to strings.
 ///
 /// The caller must ensure that the lengths of `tags_query` and `locals_query` are correct.
 #[no_mangle]
 pub unsafe extern "C" fn ts_tagger_add_language(
     this: *mut TSTagger,
@@ -94,7  100,7 @@ pub unsafe extern "C" fn ts_tagger_add_language(
     let tagger = unwrap_mut_ptr(this);
     let scope_name = unwrap(CStr::from_ptr(scope_name).to_str());
     let tags_query = slice::from_raw_parts(tags_query, tags_query_len as usize);
-    let locals_query = if locals_query != std::ptr::null() {
     let locals_query = if !locals_query.is_null() {
         slice::from_raw_parts(locals_query, locals_query_len as usize)
     } else {
         &[]
@@ -121,11  127,17 @@ pub unsafe extern "C" fn ts_tagger_add_language(
     }
 }
 
-/// Tag some source code.
 /// Tags some source code.
 ///
 /// Returns a [`TSTagsError`] indicating whether the operation was successful or not.
 ///
 /// # Safety
 ///
-/// `this` must be non-null
 /// `this` must be a non-null valid pointer to a [`TSTagger`] instance.
 /// `scope_name` must be a non-null valid pointer to a null-terminated string.
 /// `source_code` must be a non-null valid pointer to a slice of bytes.
 /// `output` must be a non-null valid pointer to a [`TSTagsBuffer`] instance.
 /// `cancellation_flag` must be a non-null valid pointer to an [`AtomicUsize`] instance.
 #[no_mangle]
 pub unsafe extern "C" fn ts_tagger_tag(
     this: *mut TSTagger,
@@ -220,36  232,75 @@ pub extern "C" fn ts_tags_buffer_new() -> *mut TSTagsBuffer {
 ///
 /// # Safety
 ///
-/// `this` must be non-null
 /// `this` must be non-null and a valid pointer to a [`TSTagsBuffer`] instance created by
 /// [`ts_tags_buffer_new`].
 #[no_mangle]
 pub unsafe extern "C" fn ts_tags_buffer_delete(this: *mut TSTagsBuffer) {
     drop(Box::from_raw(this))
 }
 
 /// Get the tags from a TSTagsBuffer.
 ///
 /// # Safety
 ///
 /// `this` must be non-null and a valid pointer to a [`TSTagsBuffer`] instance created by
 /// [`ts_tags_buffer_new`].
 ///
 /// The caller must ensure that the returned pointer is not used after the [`TSTagsBuffer`]
 /// is deleted with [`ts_tags_buffer_delete`], else the data will point to garbage.
 #[no_mangle]
 pub unsafe extern "C" fn ts_tags_buffer_tags(this: *const TSTagsBuffer) -> *const TSTag {
     let buffer = unwrap_ptr(this);
     buffer.tags.as_ptr()
 }
 
 /// Get the number of tags in a TSTagsBuffer.
 ///
 /// # Safety
 ///
 /// `this` must be non-null and a valid pointer to a [`TSTagsBuffer`] instance.
 #[no_mangle]
 pub unsafe extern "C" fn ts_tags_buffer_tags_len(this: *const TSTagsBuffer) -> u32 {
     let buffer = unwrap_ptr(this);
     buffer.tags.len() as u32
 }
 
 /// Get the documentation strings from a TSTagsBuffer.
 ///
 /// # Safety
 ///
 /// `this` must be non-null and a valid pointer to a [`TSTagsBuffer`] instance created by
 /// [`ts_tags_buffer_new`].
 ///
 /// The caller must ensure that the returned pointer is not used after the [`TSTagsBuffer`]
 /// is deleted with [`ts_tags_buffer_delete`], else the data will point to garbage.
 ///
 /// The returned pointer points to a C-style string.
 /// To get the length of the string, use [`ts_tags_buffer_docs_len`].
 #[no_mangle]
 pub unsafe extern "C" fn ts_tags_buffer_docs(this: *const TSTagsBuffer) -> *const c_char {
     let buffer = unwrap_ptr(this);
     buffer.docs.as_ptr() as *const c_char
 }
 
 /// Get the length of the documentation strings in a TSTagsBuffer.
 ///
 /// # Safety
 ///
 /// `this` must be non-null and a valid pointer to a [`TSTagsBuffer`] instance created by
 /// [`ts_tags_buffer_new`].
 #[no_mangle]
 pub unsafe extern "C" fn ts_tags_buffer_docs_len(this: *const TSTagsBuffer) -> u32 {
     let buffer = unwrap_ptr(this);
     buffer.docs.len() as u32
 }
 
 /// Get whether or not a TSTagsBuffer contains any parse errors.
 ///
 /// # Safety
 ///
 /// `this` must be non-null and a valid pointer to a [`TSTagsBuffer`] instance created by
 /// [`ts_tags_buffer_new`].
 #[no_mangle]
 pub unsafe extern "C" fn ts_tags_buffer_found_parse_error(this: *const TSTagsBuffer) -> bool {
     let buffer = unwrap_ptr(this);
@@ -258,9  309,19 @@ pub unsafe extern "C" fn ts_tags_buffer_found_parse_error(this: *const TSTagsBuf
 
 /// Get the syntax kinds for a given scope name.
 ///
 /// Returns a pointer to a null-terminated array of null-terminated strings.
 ///
 /// # Safety
 ///
-/// `this` must be non-null
 /// `this` must be non-null and a valid pointer to a [`TSTagger`] instance created by
 /// [`ts_tagger_new`].
 /// `scope_name` must be non-null and a valid pointer to a null-terminated string.
 /// `len` must be non-null and a valid pointer to a `u32`.
 ///
 /// The caller must ensure that the returned pointer is not used after the [`TSTagger`]
 /// is deleted with [`ts_tagger_delete`], else the data will point to garbage.
 ///
 /// The returned pointer points to a C-style string array.
 #[no_mangle]
 pub unsafe extern "C" fn ts_tagger_syntax_kinds_for_scope_name(
     this: *mut TSTagger,
@@ -280,14  341,14 @@ pub unsafe extern "C" fn ts_tagger_syntax_kinds_for_scope_name(
 }
 
 unsafe fn unwrap_ptr<'a, T>(result: *const T) -> &'a T {
-    unsafe { result.as_ref() }.unwrap_or_else(|| {
     result.as_ref().unwrap_or_else(|| {
         eprintln!("{}:{} - pointer must not be null", file!(), line!());
         abort();
     })
 }
 
 unsafe fn unwrap_mut_ptr<'a, T>(result: *mut T) -> &'a mut T {
-    unsafe { result.as_mut() }.unwrap_or_else(|| {
     result.as_mut().unwrap_or_else(|| {
         eprintln!("{}:{} - pointer must not be null", file!(), line!());
         abort();
     })