我目前正在研究 FFI 库的安全绑定,这是我遇到的问题的最小实现。
fn test_weird_thing() {
use std::sync::Mutex;
struct WeirdThing<'a> {
vec: Mutex<Vec<i32>>,
callback_runner: &'a CallbackRunner,
}
// Hypothetical FFI Struct///
struct CallbackRunner {
callback: extern "C" fn(*const Mutex<Vec<i32>>),
data: *const Mutex<Vec<i32>>,
}
impl CallbackRunner {
extern "C" fn default_callback(_vec: *const Mutex<Vec<i32>>) {}
fn new() -> Self {
CallbackRunner {
callback: Self::default_callback,
data: std::ptr::null(),
}
}
fn set_callback(
&mut self, callback: extern "C" fn(*const Mutex<Vec<i32>>),
data: *const Mutex<Vec<i32>>
) {
self.data = data;
self.callback = callback;
}
fn run(&self) {
(self.callback)(self.data);
}
}
/////////////////////////////
impl<'a> WeirdThing<'a> {
fn new(runner: &'a mut CallbackRunner) -> Self {
let vec = Mutex::new(Vec::new());
runner.set_callback(Self::callback, &vec as *const Mutex<Vec<i32>>);
WeirdThing { vec, callback_runner: runner }
}
extern "C" fn callback(vec: *const Mutex<Vec<i32>>) {
let vec = unsafe { &*vec };
let mut vec = vec.lock().unwrap();
vec.push(1);
}
fn do_thing(&self) -> Vec<i32> {
self.callback_runner.run();
self.vec.lock().unwrap().clone()
}
}
let mut runner = CallbackRunner::new();
let thing = WeirdThing::new(&mut runner);
debug!("Thing: {:?}", thing.do_thing());
}
我认为当
thing.vecrunner.run()thing我该如何解释这种行为?
thingveccallback_runner.data由于您正在取消引用悬空指针,因此您的代码包含 UB,幸运的是您遇到了错误,而不是在某个时候出现静默失败。
要解决这个问题,您必须确保在创建指向它的指针后,
vecBox