clarify tests

Author: Vanille-N

tests/fail/tree_borrows/kill-copies.default.stderr renamed to tests/fail/tree_borrows/children-can-alias.default.stderr

@@ -1,13 +1,13 @@
 error: Undefined Behavior: entering unreachable code
-  --> $DIR/kill-copies.rs:LL:CC
+  --> $DIR/children-can-alias.rs:LL:CC
    |
 LL |         std::hint::unreachable_unchecked();
    |         ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ entering unreachable code
    |
    = help: this indicates a bug in the program: it performed an invalid operation, and caused Undefined Behavior
    = help: see https://doc.rust-lang.org/nightly/reference/behavior-considered-undefined.html for further information
    = note: BACKTRACE:
-   = note: inside `main` at $DIR/kill-copies.rs:LL:CC
+   = note: inside `main` at $DIR/children-can-alias.rs:LL:CC
 
 note: some details are omitted, run with `MIRIFLAGS=-Zmiri-backtrace=full` for a verbose backtrace
 

tests/fail/tree_borrows/children-can-alias.rs

@@ -0,0 +1,56 @@
+//@revisions: default uniq
+//@compile-flags: -Zmiri-tree-borrows
+//@[uniq]compile-flags: -Zmiri-unique-is-unique
+
+//! This is NOT intended behavior.
+//! We should eventually find a solution so that the version with `Unique` passes too,
+//! otherwise `Unique` is more strict than `&mut`!
+
+#![feature(ptr_internals)]
+
+use core::ptr::addr_of_mut;
+use core::ptr::Unique;
+
+fn main() {
+    let mut data = 0u8;
+    let raw = addr_of_mut!(data);
+    unsafe {
+        raw_children_of_refmut_can_alias(&mut *raw);
+        raw_children_of_unique_can_alias(Unique::new_unchecked(raw));
+
+        // Ultimately the intended behavior is that both above tests would
+        // succeed.
+        std::hint::unreachable_unchecked();
+        //~[default]^ ERROR: entering unreachable code
+    }
+}
+
+unsafe fn raw_children_of_refmut_can_alias(x: &mut u8) {
+    let child1 = addr_of_mut!(*x);
+    let child2 = addr_of_mut!(*x);
+    // We create two raw aliases of `x`: they have the exact same
+    // tag and can be used interchangeably.
+    child1.write(1);
+    child2.write(2);
+    child1.write(1);
+    child2.write(2);
+}
+
+unsafe fn raw_children_of_unique_can_alias(x: Unique<u8>) {
+    let child1 = x.as_ptr();
+    let child2 = x.as_ptr();
+    // Under `-Zmiri-unique-is-unique`, `Unique` accidentally offers more guarantees
+    // than `&mut`. Not because it responds differently to accesses but because
+    // there is no way to obtain a copy with the same tag.
+    //
+    // The closest attempt (and one that works without `-Zmiri-unique-is-unique`)
+    // is two calls to `as_ptr` that return cousin pointers, not writeable
+    // interchangeably.
+    // This is an unexpected consequence of retagging all `Unique` and we
+    // should find a way to make `Unique` no more strict than `&mut`.
+    child1.write(1);
+    child2.write(2);
+    //~[uniq]^ ERROR: /write access through .* is forbidden/
+    child1.write(1);
+    child2.write(2);
+}

tests/fail/tree_borrows/kill-copies.uniq.stderr renamed to tests/fail/tree_borrows/children-can-alias.uniq.stderr

@@ -1,35 +1,35 @@
 error: Undefined Behavior: write access through <TAG> is forbidden
-  --> $DIR/kill-copies.rs:LL:CC
+  --> $DIR/children-can-alias.rs:LL:CC
    |
-LL |     *cp = 2;
-   |     ^^^^^^^ write access through <TAG> is forbidden
+LL |     child2.write(2);
+   |     ^^^^^^^^^^^^^^^ write access through <TAG> is forbidden
    |
    = help: this indicates a potential bug in the program: it performed an invalid operation, but the Tree Borrows rules it violated are still experimental
    = help: the accessed tag <TAG> is a child of the conflicting tag <TAG>
    = help: the conflicting tag <TAG> has state Disabled which forbids this child write access
 help: the accessed tag <TAG> was created here
-  --> $DIR/kill-copies.rs:LL:CC
+  --> $DIR/children-can-alias.rs:LL:CC
    |
-LL |     let cp = x.as_ptr();
-   |              ^^^^^^^^^^
+LL |     let child2 = x.as_ptr();
+   |                  ^^^^^^^^^^
 help: the conflicting tag <TAG> was created here, in the initial state Reserved
-  --> $DIR/kill-copies.rs:LL:CC
+  --> $DIR/children-can-alias.rs:LL:CC
    |
-LL |     let cp = x.as_ptr();
-   |              ^
+LL |     let child2 = x.as_ptr();
+   |                  ^
 help: the conflicting tag <TAG> later transitioned to Disabled due to a foreign write access at offsets [0x0..0x1]
-  --> $DIR/kill-copies.rs:LL:CC
+  --> $DIR/children-can-alias.rs:LL:CC
    |
-LL |     *x.as_ptr() = 1;
+LL |     child1.write(1);
    |     ^^^^^^^^^^^^^^^
    = help: this transition corresponds to a loss of read and write permissions
    = note: BACKTRACE (of the first span):
-   = note: inside `unique_keeps_copies` at $DIR/kill-copies.rs:LL:CC
+   = note: inside `raw_children_of_unique_can_alias` at $DIR/children-can-alias.rs:LL:CC
 note: inside `main`
-  --> $DIR/kill-copies.rs:LL:CC
+  --> $DIR/children-can-alias.rs:LL:CC
    |
-LL |         unique_keeps_copies(Unique::new_unchecked(raw));
-   |         ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
+LL |         raw_children_of_unique_can_alias(Unique::new_unchecked(raw));
+   |         ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
 
 note: some details are omitted, run with `MIRIFLAGS=-Zmiri-backtrace=full` for a verbose backtrace
 

tests/fail/tree_borrows/kill-copies.rs

@@ -24,9 +24,35 @@ fn main() {
         // We create a `Unique` and expect it to have a fresh tag
         // and uninitialized permissions.
         let uniq = Unique::new_unchecked(raw);
-        let intermediate = if cfg!(uniq) { 2 } else { 0 };
-        name!(uniq.as_ptr()=>intermediate, "uniq");
-        name!(uniq.as_ptr()=>intermediate, "uniq");
+
+        // The usage of `-Zmiri-unique-is-unique` disturbs the internal
+        // structure of the tree: pointers that used to have the same tag
+        // under `-Zmiri-tree-borrows` are now cousins under
+        // `-Zmiri-tree-borrows -Zmiri-unique-is-unique`.
+        //
+        // This is an unintended consequence of the way we currently
+        // retag `Unique`, and we should look for a way to make these return
+        // the same pointer. In the meantime we hardcode the distance at which
+        // we expect the nearest common ancestor to be (which is the tag of
+        // the actual root `Unique` pointer) and name that.
+        //
+        // (We name it twice so that we have an indicator in the output of
+        // whether we got the distance correct:
+        //
+        // If the output shows
+        //
+        //    |- <XYZ: uniq>
+        //    '- <XYZ: uniq>
+        //
+        // then `nth_parent` is not big enough.
+        // The correct value for `nth_parent` should be the minimum
+        // integer for which the output shows
+        //
+        //    '- <XYZ: uniq, uniq>
+        // )
+        let nth_parent = if cfg!(uniq) { 2 } else { 0 };
+        name!(uniq.as_ptr()=>nth_parent, "uniq");
+        name!(uniq.as_ptr()=>nth_parent, "uniq");
         print_state!(alloc_id);
 
         // We can activate the Unique and use it mutably.

tests/pass/tree_borrows/unique.rs

@@ -17,20 +17,40 @@ fn main() {
         let base = vec![0u8, 1];
         let alloc_id = alloc_id!(base.as_ptr());
 
-        // Doing this twice to illustrate how treating `Unique` differently
-        // changes `as_ptr`:
-        // - with `default`, `as_ptr` always returns the same pointer without
-        //   extra reborrow: two `as_ptr` from the same `Vec` retun the *same pointer*,
-        // - with `uniq` however, the two returned pointers are now cousins.
-        // This is probably problematic.
-        let intermediate = if cfg!(uniq) { 2 } else { 0 };
-        name!(base.as_ptr()=>intermediate);
-        name!(base.as_ptr()=>intermediate);
+        // The usage of `-Zmiri-unique-is-unique` disturbs the internal
+        // structure of the tree: pointers that used to have the same tag
+        // under `-Zmiri-tree-borrows` are now cousins under
+        // `-Zmiri-tree-borrows -Zmiri-unique-is-unique`.
+        //
+        // This is an unintended consequence of the way we currently
+        // retag `Unique`, and we should look for a way to make these return
+        // the same pointer. In the meantime we hardcode the distance at which
+        // we expect the nearest common ancestor to be (which is the tag of
+        // the actual root `Unique` pointer) and name that.
+        //
+        // (We name it twice so that we have an indicator in the output of
+        // whether we got the distance correct:
+        //
+        // If the output shows
+        //
+        //    |- <XYZ: base.as_ptr()>
+        //    '- <XYZ: base.as_ptr()>
+        //
+        // then `nth_parent` is not big enough.
+        // The correct value for `nth_parent` should be the minimum
+        // integer for which the output shows
+        //
+        //    '- <XYZ: base.as_ptr(), base.as_ptr()>
+        // )
+        let nth_parent = if cfg!(uniq) { 2 } else { 0 };
+        name!(base.as_ptr()=>nth_parent);
+        name!(base.as_ptr()=>nth_parent);
 
         // Destruct the `Vec`
         let (ptr, len, cap) = base.into_raw_parts();
 
         // Expect this to be again the same pointer as the one obtained from `as_ptr`.
+        // Under `-Zmiri-unique-is-unique`, this will be a strict child.
         name!(ptr, "raw_parts.0");
 
         // This is where the presence of `Unique` has implications,
@@ -40,8 +60,8 @@ fn main() {
 
         // The `as_ptr` here (twice for the same reason as above) return either
         // the same pointer once more (default) or a strict child (uniq).
-        name!(reconstructed.as_ptr()=>intermediate);
-        name!(reconstructed.as_ptr()=>intermediate);
+        name!(reconstructed.as_ptr()=>nth_parent);
+        name!(reconstructed.as_ptr()=>nth_parent);
 
         print_state!(alloc_id, false);
     }

tests/pass/tree_borrows/vec_unique.rs

@@ -47,12 +47,12 @@ macro_rules! name {
     ($ptr:expr) => {
         crate::utils::macros::name!($ptr => 0, stringify!($ptr));
     };
-    ($ptr:expr => $nb:expr) => {
-        crate::utils::macros::name!($ptr => $nb, stringify!($ptr));
+    ($ptr:expr => $nth_parent:expr) => {
+        crate::utils::macros::name!($ptr => $nth_parent, stringify!($ptr));
     };
-    ($ptr:expr => $nb:expr, $name:expr) => {
+    ($ptr:expr => $nth_parent:expr, $name:expr) => {
         let name = $name.as_bytes();
-        crate::utils::miri_extern::miri_pointer_name($ptr as *const u8 as *const (), $nb, name);
+        crate::utils::miri_extern::miri_pointer_name($ptr as *const u8 as *const (), $nth_parent, name);
     };
 }