Skip to content

RAprogramm/cstring-array

BranchesTags

Repository files navigation

cstring-array

Crates.io Downloads Documentation Lib.rs License: MIT

CI codecov REUSE status

Rust Version Hits-of-Code

Safe, zero-copy wrapper for passing string arrays to C FFI (char**)

This crate provides CStringArray, a safe abstraction over C's null-terminated string arrays, commonly used for command-line arguments (argv) and similar purposes.

Features

  • Memory-safe: RAII-based lifetime management prevents dangling pointers
  • Zero-copy: When constructed from Vec<CString>, no re-allocation occurs
  • C-compatible: Produces valid char** pointers with null termination
  • Ergonomic: Multiple constructors and trait implementations for easy usage
  • Well-tested: 98.5%+ test coverage for reliability
  • Minimal dependencies: Pure Rust with no external dependencies
  • Cross-platform: Works on Linux, macOS, Windows, and more

Quick Start

Add this to your Cargo.toml:

[dependencies]
cstring-array = "0.1"

Usage

Basic Example

use cstring_array::CStringArray;
use std::ffi::c_char;

let args = vec![
    "program".to_string(),
    "--verbose".to_string(),
    "file.txt".to_string(),
];
let array = CStringArray::new(args).unwrap();

// Safe to pass to C FFI functions expecting char**
let ptr: *const *const c_char = array.as_ptr();
assert_eq!(array.len(), 3);

Construction Methods

use cstring_array::CStringArray;
use std::ffi::CString;
use std::convert::TryFrom;

// From Vec<String>
let arr1 = CStringArray::new(vec!["foo".to_string(), "bar".to_string()]).unwrap();

// From Vec<CString> (zero-copy)
let cstrings = vec![CString::new("foo").unwrap(), CString::new("bar").unwrap()];
let arr2 = CStringArray::from_cstrings(cstrings).unwrap();

// Using TryFrom with Vec<&str>
let arr3 = CStringArray::try_from(vec!["foo", "bar"]).unwrap();

// Using TryFrom with arrays
let arr4 = CStringArray::try_from(["foo", "bar"]).unwrap();

// Using FromIterator (collect)
let arr5: CStringArray = vec!["a", "b", "c"].into_iter().map(String::from).collect();

Ergonomic API with Standard Traits

CStringArray implements standard Rust traits for idiomatic usage:

use cstring_array::CStringArray;
use std::collections::HashMap;

let arr1 = CStringArray::new(vec!["a".to_string(), "b".to_string()]).unwrap();

// Clone - independent copies
let arr2 = arr1.clone();
assert_eq!(arr1, arr2);

// Equality comparison
assert_eq!(arr1, arr2);

// Hash - use in HashMap/HashSet
let mut map = HashMap::new();
map.insert(arr1.clone(), "value");

// Array indexing
assert_eq!(arr1[0].to_str().unwrap(), "a");
assert_eq!(arr1[1].to_str().unwrap(), "b");

// For loop iteration (borrowed)
for s in &arr1 {
    println!("{}", s.to_str().unwrap());
}

// For loop iteration (owned - consumes array)
for s in arr2 {
    println!("{}", s.to_str().unwrap());
}

// Functional programming with iterators
let filtered: CStringArray = vec!["a", "bb", "ccc"]
    .into_iter()
    .filter(|s| s.len() > 1)
    .map(String::from)
    .collect();

Implemented traits:

  • Clone - Deep copy with independent memory
  • PartialEq, Eq - Equality comparison
  • Hash - Use in HashMap and HashSet
  • FromIterator<String> - Collect from String iterators
  • FromIterator<CString> - Collect from CString iterators
  • IntoIterator - Owned and borrowed iteration
  • Index<usize> - Array-style indexing arr[0]
  • AsRef<[CString]> - Generic slice conversion

Real-World Example: Calling C Function

use cstring_array::CStringArray;
use std::ffi::c_char;

extern "C" {
    fn execve(
        pathname: *const c_char,
        argv: *const *const c_char,
        envp: *const *const c_char,
    ) -> i32;
}

fn execute_program(path: &str, args: Vec<String>) -> Result<(), Box<dyn std::error::Error>> {
    let argv = CStringArray::new(args)?;
    let envp = CStringArray::new(vec![])?;  // Empty environment

    unsafe {
        execve(
            CString::new(path)?.as_ptr(),
            argv.as_ptr(),
            envp.as_ptr(),
        );
    }

    Ok(())
}

Error Handling

use cstring_array::{CStringArray, CStringArrayError};

// Interior null bytes are detected
let result = CStringArray::new(vec!["hello\0world".to_string()]);
assert!(matches!(result, Err(CStringArrayError::NulError(_))));

// Empty arrays are not allowed
let result = CStringArray::new(vec![]);
assert!(matches!(result, Err(CStringArrayError::EmptyArray)));

Safety Considerations

The pointer returned by CStringArray::as_ptr() is only valid for the lifetime of the CStringArray. Ensure the array outlives any C code using the pointer:

use cstring_array::CStringArray;
use std::ffi::c_char;

fn call_c_function(argv: *const *const c_char, argc: i32) {
    // ... FFI call ...
}

let array = CStringArray::new(vec!["arg1".to_string(), "arg2".to_string()]).unwrap();
let ptr = array.as_ptr();
call_c_function(ptr, array.len() as i32);
// array must not be dropped before call_c_function returns

Performance

CStringArray is designed for zero-cost abstractions:

  • Zero-copy when constructed from Vec<CString>
  • No re-allocation of strings, only pointer array management
  • RAII cleanup without manual memory management

Benchmark Results

Performance Metrics

Last updated: 2025-10-19 07:27:25 UTC

Operations

Benchmark Time Std Dev
As Ptr 0 ns ±0 ns
Get 0 ns ±0 ns
Iter 326 ns ±1 ns
Try From Vec Str 5.34 μs ±63 ns
New From Iter 6.79 μs ±124 ns

Construction Comparison

Benchmark Time Std Dev
Construction Comparison/From Vec String 5.29 μs ±11 ns
Construction Comparison/Try From Vec Str 5.36 μs ±26 ns
Construction Comparison/From Vec New 5.39 μs ±25 ns

From Cstrings Zero Copy

Benchmark Time Std Dev
From Cstrings Zero Copy/10 179 ns ±1 ns
From Cstrings Zero Copy/100 3.81 μs ±28 ns
From Cstrings Zero Copy/1000 39.07 μs ±4.48 μs

Large Strings

Benchmark Time Std Dev
Large Strings/100 398 ns ±3 ns
Large Strings/1000 1.54 μs ±12 ns
Large Strings/10000 8.67 μs ±26 ns

New From Strings

Benchmark Time Std Dev
New From Strings/10 297 ns ±2 ns
New From Strings/100 5.05 μs ±19 ns
New From Strings/1000 51.78 μs ±214 ns
Coverage Visualization

Sunburst Chart

The inner-most circle is the entire project, moving away from the center are folders then, finally, a single file. The size and color of each slice represents the number of statements and the coverage, respectively.

Sunburst

Grid Chart

Each block represents a single file in the project. The size and color of each block is represented by the number of statements and the coverage, respectively.

Grid

Icicle Chart

The top section represents the entire project, proceeding with folders and finally individual files. The size and color of each slice represents the number of statements and the coverage, respectively.

Icicle

Minimum Supported Rust Version (MSRV)

This crate requires Rust 1.90 or later.

Repository Metrics

Last updated: 2025-10-19 07:24:30 UTC

Code Statistics

Language Files Lines Code Comments Blanks
Rust 17 1831 1393 91 347
TOML 5 223 191 6 26
YAML 1 40 28 5 7
JSON 1 0 0 0 0
Markdown 4 552 0 378 174
Plain Text 2 139 0 123 16
Total 30 2785 1612 603 570

Test Coverage Breakdown

  • Unit Tests: 34 tests (src/tests.rs)
  • Integration Tests: 11 tests (tests/integration.rs)
  • Property Tests: 12 tests (tests/property_tests.rs)
  • Trait Tests: 17 tests (tests/traits.rs)
  • Documentation Tests: 20 tests (inline examples)
  • Fuzz Targets: 4 targets (libFuzzer-based)
  • Total: 94 traditional tests + fuzzing

Security & Quality

  • REUSE 3.3 Compliance: 41/41 files (100%)
  • Code Coverage: 98.5%+ (Codecov)
  • Unsafe Code Validation: Miri testing enabled
  • Supply Chain Security: cargo-deny + cargo-audit
  • Static Analysis: CodeQL scanning

Related Projects

About

Safe, zero-copy wrapper for passing string arrays to C FFI (char**)

Resources

Readme

License

MIT license

Contributing

Contributing

Security policy

Security policy
Activity

Stars

1 star

Watchers

0 watching

Forks

0 forks
Report repository

Releases 2

v0.1.1 Latest
Oct 19, 2025
+ 1 release

Packages

No packages published

Contributors 2

  •  
  •  

Languages