Merge pull request #4 from steffahn/sound_rooted_interface_idea

luketpeterson · web-flow · commit dfe77041735f · 2024-12-29T20:22:50.000-07:00
Sound rooted interface idea
diff --git a/Cargo.toml b/Cargo.toml
@@ -11,10 +11,16 @@ keywords = ["traversal", "tree", "backtacking", "stack", "cursor"]
 categories = ["no-std", "algorithms", "data-structures", "rust-patterns"]
 
 [dependencies]
+maybe-dangling = { version = "0.1.1", optional = true}
+stable_deref_trait = { version = "1.2.0", default-features = false, optional = true, features = ["alloc"] }
 
 [features]
-default = ["alloc"]
-alloc = []
+default = ["std"]
+# Enables the `MutCursorVec` and `MutCursorRootedVec` APIs.
+alloc = ["dep:maybe-dangling", "dep:stable_deref_trait"]
+# Enables `std` support for `StableDeref`, so you use std-only stable pointers
+# without needing to depend on `stable_deref_trait` yourself.
+std = ["alloc", "stable_deref_trait/std"]
 
 [package.metadata.docs.rs]
 all-features = true
diff --git a/README.md b/README.md
@@ -3,9 +3,9 @@
 
 This crate provides types to safely store mutable references to parent nodes, for backtracking during traversal of tree & graph structures.
 
-[MutCursor] is more efficient because it avoids dynamic allocation, while [MutCursorVec] provides for an arbitrarily deep stack.
+[`MutCursor`] is more efficient because it avoids dynamic allocation, while [`MutCursorVec`] provides for an arbitrarily deep stack.
 
-[MutCursorRootedVec] supports mutable references to a separate root type and a different leaf type.  In the future I may generalize this pattern to be more flexible.  **WARNING** `MutCursorRootedVec` is unsound when the root object owns the memory it references!
+[`MutCursorRootedVec`] supports mutable references to a separate root type and a different leaf type.  In the future I may generalize this pattern to be more flexible.
 
 ## Usage
 ```rust
@@ -49,15 +49,15 @@ impl TreeNode {
 
 This crate basically does the same thing as [generic-cursors](https://crates.io/crates/generic-cursors). However, there are several reasons to choose this crate:
 
-1. The fixed-size stack used by [MutCursor] has lower overhead than a [Vec](https://doc.rust-lang.org/std/vec/struct.Vec.html), and can be used in a `no_std` environment where dynamic allocation may be unavailable.
+1. The fixed-size stack used by [`MutCursor`] has lower overhead than a [`Vec`], and can be used in a `no_std` environment where dynamic allocation may be unavailable.
 
-2. The [MutCursor::try_map_into_mut] API enables some paterns that would be otherwise impossible.
+2. The [`MutCursor::try_map_into_mut`] API enables some patterns that would be otherwise impossible.
 
 ## Safety Thesis
 
-Each `&mut` reference stored by a [MutCursor] mutably borrows the reference beneath it in the stack.  The stack root takes a mutable (and therefore exclusive) borrow of the node itself.  Therefore the stack's [top](MutCursor::top) is an exclusive borrow.
+Each `&mut` reference stored by a [`MutCursor`] mutably borrows the reference beneath it in the stack.  The stack root takes a mutable (and therefore exclusive) borrow of the node itself.  Therefore the stack's [`top`] is an exclusive borrow.
 
-You can imagine unrolling tree traversal into something like the code below, but this isn't amenable to looping.  In essence each `level` variable is preserved, but inaccessible because the level above is mutably borrowing it.  The [MutCursor] object contains all the `level` variables but only provides access to the [top](MutCursor::top)
+You can imagine unrolling tree traversal into something like the code below, but this isn't amenable to looping.  In essence each `level` variable is preserved, but inaccessible because the level above is mutably borrowing it.  The [`MutCursor`] object contains all the `level` variables but only provides access to the [`top`].
 
 ```rust ignore
 let level_1 = &mut root;
@@ -76,12 +76,19 @@ let level_1 = &mut root;
 
 #### Macro to define cursor types
 
-In the current design of [MutCursorRootedVec], there is a predefined pattern prescribing where `RootT` and `NodeT` types may exist on the stack.  However, we may find it necessary in the future to support more than two types, in a more flexible pattern.  It seems that a macro to define a bespoke cursor type is the best solutuion.
+In the current design of [`MutCursorRootedVec`], there is a predefined pattern prescribing where `RootT` and `NodeT` types may exist on the stack.  However, we may find it necessary in the future to support more than two types, in a more flexible pattern.  It seems that a macro to define a bespoke cursor type is the best solutuion.
 
 #### Internal enum for multiple-type support at runtime
 
-For ultimate flexibility, we would want all the references to be stored by the stack as in an enum over the possible reference types.  However, if ther user provided an enum as a type parameter to a cursor type, the result result would be double-indirection.  Therefore the enum behavior would need to be internal to the MutCursor.  Deriving a MutCursor from a user's enum type feels like a friendly way to define the types a cursor type is capable of storing.
+For ultimate flexibility, we would want all the references to be stored by the stack as in an enum over the possible reference types.  However, if the user provided an enum as a type parameter to a cursor type, the result result would be double-indirection.  Therefore the enum behavior would need to be internal to the MutCursor.  Deriving a MutCursor from a user's enum type feels like a friendly way to define the types a cursor type is capable of storing.
 
 ## Acknowledgements
 
-[Frank Steffahn](https://github.com/steffahn) identified soundness issues and potential improvements in prior versions of this crate.
+[Frank Steffahn](https://github.com/steffahn) identified soundness issues and potential improvements in prior versions of this crate.
+
+[`MutCursor`]: https://docs.rs/mutcursor/latest/mutcursor/struct.MutCursor.html
+[`top`]: https://docs.rs/mutcursor/latest/mutcursor/struct.MutCursor.html#method.top
+[`MutCursor::try_map_into_mut`]: https://docs.rs/mutcursor/latest/mutcursor/struct.MutCursor.html#method.try_map_into_mut
+[`MutCursorVec`]: https://docs.rs/mutcursor/latest/mutcursor/struct.MutCursorVec.html
+[`MutCursorRootedVec`]: https://docs.rs/mutcursor/latest/mutcursor/struct.MutCursorRootedVec.html
+[`Vec`]: https://doc.rust-lang.org/std/vec/struct.Vec.html
diff --git a/src/lib.rs b/src/lib.rs
@@ -1,8 +1,56 @@
+// Overrides for `docs.rs` links in the README. This first definition takes precedence.
+
+// fix broken links if documented without `alloc`:
+#![cfg_attr(not(feature = "alloc"), doc = "[`MutCursorVec`]: features#alloc")]
+#![cfg_attr(not(feature = "alloc"), doc = "[`MutCursorRootedVec`]: features#alloc")]
+
+// more precise links to `std`/`alloc` when possible:
+#![cfg_attr(feature = "std", doc = "[Vec]: std::vec::Vec")]
+#![cfg_attr(feature = "alloc", doc = "[Vec]: alloc::vec::Vec")]
+
+// Normal link to crate items:
+//! [`MutCursor`]: MutCursor
+//! [`top`]: MutCursor::top
+//! [`MutCursor::try_map_into_mut`]: MutCursor::try_map_into_mut
+//! [`MutCursorVec`]: MutCursorVec
+//! [`MutCursorRootedVec`]: MutCursorRootedVec
+
 #![doc = include_str!("../README.md")]
 
-#![no_std]
 #![cfg_attr(docsrs, feature(doc_cfg))]
 
+#![no_std]
+
+#[cfg(any(test, feature = "alloc"))]
+extern crate alloc;
+#[cfg(any(test, feature = "std"))]
+#[cfg_attr(test, macro_use)]
+extern crate std;
+
+#[cfg(doc)]
+#[cfg_attr(docsrs, doc(cfg(doc)))]
+pub mod features {
+    //! Description of the crate features (not a real module).
+    //!
+    //! ## `default`
+    //! The default features of this crate include `std` and `alloc`
+    //! ## `alloc`
+    //! Enables usage of the `alloc` crate, and a public dependency on
+    //! [`stable_deref_trait`] at version `1.*`
+    //!
+    #![cfg_attr(not(feature = "alloc"), doc = "Enables the `MutCursorVec` and `MutCursorRootedVec` APIs.")]
+    #![cfg_attr(feature = "alloc", doc = "Enables the [`MutCursorVec`] and [`MutCursorRootedVec`] APIs.")]
+    //! ## `std`
+    //! Enables `std` support for [`StableDeref`], so you use std-only stable pointers
+    //! without needing to depend on [`stable_deref_trait`] yourself.
+    //!
+    #![cfg_attr(feature = "alloc", doc = "[`stable_deref_trait`]: stable_deref_trait")]
+    #![cfg_attr(feature = "alloc", doc = "[`StableDeref`]: stable_deref_trait::StableDeref")]
+    //! [`stable_deref_trait`]: https://docs.rs/stable_deref_trait/1/stable_deref_trait/
+    //! [`StableDeref`]: https://docs.rs/stable_deref_trait/1/stable_deref_trait/trait.StableDeref.html
+    use super::*;
+}
+
 use core::ptr::NonNull;
 use core::mem::MaybeUninit;
 use core::marker::PhantomData;
@@ -21,7 +69,7 @@ pub use rooted_vec::*;
 
 /// Stores a stack of `&mut` references, only allowing access to the top element on the stack
 ///
-/// The `MutCursor` stores `N` `&mut T` references, but only allows access to the [top](Self::top)
+/// The `MutCursor` stores `N` `&mut T` references, but only allows access to the [`top`](Self::top)
 pub struct MutCursor<'root, T: ?Sized + 'root, const N: usize> {
     cnt: usize, //The last item cannot be removed, so cnt==0 means there is 1 item
     top: usize,
@@ -147,7 +195,7 @@ impl<'root, T: ?Sized + 'root, const N: usize> MutCursor<'root, T, N> {
             None => false
         }
     }
-    /// Pops a reference from the stack, exposing the prior reference as the new [top](Self::top)
+    /// Pops a reference from the stack, exposing the prior reference as the new [`top`](Self::top)
     ///
     /// This method will panic if the stack contains only 1 entry
     #[inline]
@@ -197,7 +245,6 @@ impl<'root, T: ?Sized, const N: usize> core::ops::DerefMut for MutCursor<'root,
 
 #[cfg(test)]
 mod test {
-    extern crate std;
     use std::*;
     use std::{boxed::*, vec::Vec, string::String};
 
diff --git a/src/mut_cursor_vec.rs b/src/mut_cursor_vec.rs
@@ -1,11 +1,11 @@
 
 use core::ptr::NonNull;
 use core::marker::PhantomData;
-extern crate alloc;
 
-/// Similar to [MutCursor](crate::MutCursor), but allows for a dynamically growing stack
+/// Similar to [`MutCursor`](crate::MutCursor), but allows for a dynamically growing stack
 ///
-/// `MutCursorVec` is not available if the `alloc` feature is disabled. (The feature is enabled by default.)
+/// `MutCursorVec` is not available if the [`alloc`](crate::features#alloc) feature is disabled.
+/// (The feature is enabled by default.)
 pub struct MutCursorVec<'root, T: ?Sized + 'root> {
     top: NonNull<T>,
     stack: alloc::vec::Vec<NonNull<T>>,
@@ -65,7 +65,7 @@ impl<'root, T: ?Sized + 'root> MutCursorVec<'root, T> {
         }
     }
     /// Returns the number of excess references stored in the stack, which corresponds to the number of
-    /// times [backtrack](Self::backtrack) may be called
+    /// times [`backtrack`](Self::backtrack) may be called
     #[inline]
     pub fn depth(&self) -> usize {
         self.stack.len()
@@ -92,7 +92,7 @@ impl<'root, T: ?Sized + 'root> MutCursorVec<'root, T> {
             None => false
         }
     }
-    /// Pops a reference from the stack, exposing the prior reference as the new [top](Self::top)
+    /// Pops a reference from the stack, exposing the prior reference as the new [`top`](Self::top)
     ///
     /// This method will panic if the stack contains only 1 entry
     #[inline]
@@ -104,7 +104,7 @@ impl<'root, T: ?Sized + 'root> MutCursorVec<'root, T> {
             None => panic!("MutCursor must contain valid reference")
         }
     }
-    /// Pops all references from the stack, exposing the root reference as the [top](Self::top)
+    /// Pops all references from the stack, exposing the root reference as the [`top`](Self::top)
     ///
     /// This method does nothing if the stack is already at the root
     #[inline]
@@ -143,7 +143,6 @@ impl<'root, T: ?Sized> core::ops::DerefMut for MutCursorVec<'root, T> {
 
 #[cfg(test)]
 mod test {
-    extern crate std;
     use std::*;
     use std::boxed::*;
 
diff --git a/src/rooted_vec.rs b/src/rooted_vec.rs
