Non-naive implementation of VecDeque.append

[Pazzaz]

Replaces the old, simple implementation with a more manual (and unsafe 😱) one. I've added 1 more test and verified that it covers all 6 code paths in the function.

This new implementation was about 60% faster than the old naive one when I tried benchmarking it.

[rust-highfive]

r? @shepmaster

(rust_highfive has picked a reviewer for you, use r? to override)

[shepmaster]

when I tried benchmarking it.

Which benchmarks did you use? Are there some existing or did you write your own? If you wrote new ones, it seems like those should be added (but I'm not 100% sure on that).

Either way, it'd be good to see the benchmarks (and the raw data) to check that they are valid.

[shepmaster]

.map(|&x| x) -> .cloned()

[shepmaster]

Check what? Tests are a form of documentation. All tests "check" something, that's rather their purpose.

[shepmaster]

"advanced" isn't really a great descriptor. What makes it advanced?

[shepmaster]

This type of argument list is about at the top of the list for "easiest to pass the wrong arguments". There's a huge mass of arguments, subtly intertwined, all of the same type.

Instead, WDYT about

#[derive(Debug, Default)]
struct SomeUsefulName {
    a_push_back: usize,
    a_pop_back: usize,
    b_push_back: usize,
    b_pop_back: usize,
    a_push_front: usize,
    a_pop_front: usize,
    b_push_front: usize,
    b_pop_front: usize
}

check(SomeUsefulName { a_push, a_pop, b_push, b_pop, ..SomeUsefulName::default()});

[shepmaster]

Why 17. Preferably there's a constant with an evocative name.

[shepmaster]

Maybe even 0..=SOME_CONSTANT if 16 happens to be the reason...

[shepmaster]

Reading this the first time, I assumed you mathed wrong. Having the number 4 and then the number 3 made me think that there would be 7 cases. On rereading it, I see my mistake. I don't have a suggestion for how to reword, but maybe someone will.

[shepmaster]

That being said, what benefit does the math in this comment bring?

[shepmaster]

Not a fan of the _1, _2, _3 suffixes. How do I know to use _1 vs _2? It's nice that there's a picture, but it's a shame that the code cannot stand on its own without it, especially knowing how code and comments frequently diverge.

[shepmaster]

I'm missing why this part needs to be unsafe. Can't we build slices and use [T]::copy_from_slice?

[shepmaster]

Ah, because T doesn't necessarily implement Copy, of course. However, it feels odd to "reimplement" a half-slice on top of a slice due to the i1 / i2.

i1 and i2 are actually... offsets(?) into src and dst respectively? Those should be renamed to at least have src and dst in there.

[shepmaster]

Pure speculation, but I wonder if there could be a method to encapsulate this logic, something along the lines of

fn source_parts(&self) -> (&[T], &[T]); // might exist as `as_slices`
unsafe fn destination_parts(&mut self) -> (&mut [T], &mut [T]);

This code will still need to exist and handle the same cases to minimize the copies.

[shepmaster]

Presumably, until this point we are in a Bad State where a given element actually exists twice, once in both collections, right? I believe that means the panic safety of this function needs to be documented to help prevent the next person to touching it from shooting themselves in the foot.

[shepmaster]

and verified that it covers all 6 code paths in the function

If that's important, there should be comments in the test showcasing which part(s) of the test exercise which conditions to avoid losing that coverage.

[Pazzaz]

OK, I've pushed some changes that address most things you commented on. Instead of working with offsets in append, slices are now used to make it easier to understand and less error-prone. (thanks for the idea with "destination parts")
The test was also reworked entirely to make it cover more cases.

Which benchmarks did you use?

This one. I didn't use the standard bench harness as the VecDeques have to be cloned in the loop and that would force the bench to measure .clone() too.

[pietroalbini]

Ping from triage @shepmaster! This PR needs your review.

[shepmaster]

Thanks for putting up with my feedback! Now that I've done what I can, I'll pass it off to a better member of the team to actually make a decision!

r? @SimonSapin

[SimonSapin]

I’ll need more time than I have right now to properly review the code (especially because unsafe). But in the meantime: it’d be nice to have the benchmark included in the PR. Try adding it as-is (with a main() function and no #[bench] attribute) to src/liballoc/benches/vec_deque_append.rs, then in src/liballoc/Cargo.toml you should find this section:

[[bench]]
name = "collectionsbenches"
path = "../liballoc/benches/lib.rs"

Below it, add this:

[[bench]]
name = "vec_deque_append_bench"
path = "../liballoc/benches/vec_deque_append.rs"
harness = false

(harness = false is what makes the file be compiled as a "normal" executable rather than with the built in bench / test harness.)

Then you should be able to run it with something like ./x.py bench src/liballoc --test-args "--bench vec_deque_append"

@rust-lang/infra Is there any automation that parses the ouptut of ./x.py bench and would be thrown off by a non-standard-harness benchmark like this?

[Mark-Simulacrum]

Nothing today parses the benchmark output.

[Pazzaz]

@SimonSapin The benchmark has been added. The only changes I did were to make it more similar to the default bench harness (use the median instead of the mean and force the use of nanoseconds).

[SimonSapin]

This is worth a comment explaining why using ring_slices with the arguments swapped provides the desired behavior.

[SimonSapin]

So this is like [T]::copy_from_slice but without T: Copy? Then it is up to callers to be careful to not "duplicate" items and have for example some heap memory be double-freed.

… in fact this code ends up calling other.clear() which will incorrectly drop the items that have just been copied. Instead it should probably do something like other.tail = 0; other.head = 0 or other.tail = other.head.

Consider modifying the test to have not just T = usize, but a type with a Drop impl that does something non-trivial, ideally detect double drops. Perhaps T = Box<usize> is enough, if you can verify that CI runs tests with ASAN.

[Pazzaz]

A new test that checks for double drops similar to the Vec tests has been added.

[SimonSapin]

This took me a while to figure out.

The wording of the comment above suggests that “dst is contiguous” is a property of dst alone (namely that the pair of empty/unused slices are in fact one), similar to “src is contiguous”.

However the definition of this dst_contiguous value is not that. Instead, it is “we will only need to write into a contiguous portion of dst”. This does not match the comment or the name of the variable. Consider rewording both.

[SimonSapin]

With clear() replaced per above comment there is no need to delay the write to self.head, since there is no arbitrary destructor code being called, only shallow copies (moves). Inlining it in each 6 cases might be clearer. (The reset of other can also be moved before the copies.)

[Pazzaz]

The assignment of self.head and the reset of other both need to be done after dst and src are retrieved and the borrow checker complains if I do the assignments while they are in scope as self and other are borrowed.

[bors]

💔 Test failed - status-travis

[rust-highfive]

Your PR failed on Travis (raw log). Through arcane magic we have determined that the following fragments from the build log may contain information about the problem.

Click to expand the log.

I'm a bot! I can only do what humans tell me to, so if this was not helpful or you have suggestions for improvements, please ping or otherwise contact @TimNN. (Feature Requests)

[kennytm]

@bors retry

[bors]

⌛ Testing commit b063bd4 with merge 4ceb23dfca0457fb399a72b3f7526b54a83b7476...

[bors]

💔 Test failed - status-travis

[rust-highfive]

The job x86_64-gnu-aux of your PR failed on Travis (raw log). Through arcane magic we have determined that the following fragments from the build log may contain information about the problem.

Click to expand the log.

[01:47:50] 
[01:47:50] testing https://github.com/BurntSushi/xsv
[01:47:51] Initialized empty Git repository in /checkout/obj/build/ct/xsv/.git/
[01:47:51] fatal: Could not parse object '66956b6bfd62d6ac767a6b6499c982eae20a2c9f'.
[01:48:11] fatal: unable to access 'https://github.com/BurntSushi/xsv/': Could not resolve host: github.com
[01:48:11] thread 'main' panicked at 'assertion failed: status.success()', tools/cargotest/main.rs:128:13
[01:48:11] 
[01:48:11] 
[01:48:11] command did not execute successfully: "/checkout/obj/build/x86_64-unknown-linux-gnu/stage0-tools-bin/cargotest" "/checkout/obj/build/x86_64-unknown-linux-gnu/stage0/bin/cargo" "/checkout/obj/build/ct"
[01:48:11] expected success, got: exit code: 101
[01:48:11] expected success, got: exit code: 101
[01:48:11] 
[01:48:11] 
[01:48:11] failed to run: /checkout/obj/build/bootstrap/debug/bootstrap test src/test/pretty src/test/run-pass/pretty src/test/run-fail/pretty src/test/run-pass-valgrind/pretty src/test/run-pass-fulldeps/pretty src/test/run-fail-fulldeps/pretty src/tools/cargo src/tools/cargotest
[01:48:11] Build completed unsuccessfully in 0:45:19
[01:48:11] make: *** [check-aux] Error 1
[01:48:11] Makefile:60: recipe for target 'check-aux' failed

The command "stamp sh -x -c "$RUN_SCRIPT"" exited with 2.
travis_time:start:00497e4e
$ date && (curl -fs --head https://google.com | grep ^Date: | sed 's/Date: //g' || true)
---
travis_time:end:1a5fffba:start=1534574918091265952,finish=1534574918097774891,duration=6508939
travis_fold:end:after_failure.3
travis_fold:start:after_failure.4
travis_time:start:0743de88
$ ln -s . checkout && for CORE in obj/cores/core.*; do EXE=$(echo $CORE | sed 's|obj/cores/core\.[0-9]*\.!checkout!\(.*\)|\1|;y|!|/|'); if [ -f "$EXE" ]; then printf travis_fold":start:crashlog\n\033[31;1m%s\033[0m\n" "$CORE"; gdb -q -c "$CORE" "$EXE" -iex 'set auto-load off' -iex 'dir src/' -iex 'set sysroot .' -ex bt -ex q; echo travis_fold":"end:crashlog; fi; done || true
travis_fold:end:after_failure.4
travis_fold:start:after_failure.5
travis_time:start:02594940
travis_time:start:02594940
$ cat ./obj/build/x86_64-unknown-linux-gnu/native/asan/build/lib/asan/clang_rt.asan-dynamic-i386.vers || true
cat: ./obj/build/x86_64-unknown-linux-gnu/native/asan/build/lib/asan/clang_rt.asan-dynamic-i386.vers: No such file or directory
travis_fold:end:after_failure.5
travis_fold:start:after_failure.6
travis_time:start:14a46a05
$ dmesg | grep -i kill

I'm a bot! I can only do what humans tell me to, so if this was not helpful or you have suggestions for improvements, please ping or otherwise contact @TimNN. (Feature Requests)

[pietroalbini]

@bors retry travis-ci/travis-ci#9696

[bors]

⌛ Testing commit b063bd4 with merge d5b6b95...

[bors]

☀️ Test successful - status-appveyor, status-travis
Approved by: SimonSapin
Pushing d5b6b95 to master...