Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Move doc(hidden) items to __private module and make yielder::pair unsafe #84

Merged
merged 2 commits into from
Dec 6, 2022
Merged

Move doc(hidden) items to __private module and make yielder::pair unsafe #84

merged 2 commits into from
Dec 6, 2022

Conversation

taiki-e
Copy link
Member

@taiki-e taiki-e commented Nov 30, 2022

To clarify that they are not public APIs. (To prevent someone from accidentally using it...)

@trevyn
Copy link
Contributor

trevyn commented Nov 30, 2022

If it’s known that these methods can cause UB if used incorrectly, and are actually pub, would it be appropriate to call the module __private_unsafe?

Otherwise, people might just consider it a potential semver-breaking module, not an actual safety issue.

@taiki-e
Move doc(hidden) items to __private module
b874e32 
To clarify that they are not public APIs.
@taiki-e
Copy link
Member Author

taiki-e commented Nov 30, 2022

would it be appropriate to call the module __private_unsafe

Disagreed. First of all, users should not use private APIs. I think the distinction between "safe" and "unsafe" private modules is misleading. (Even if it is a "safe" private module, it is not "fine" for users to use it.)

a potential semver-breaking module, not an actual safety issue.

Disagreed. Such APIs are usually called unstable instead of private.

That said, I don't think those who would abuse the private API care about documentation or convention...

@taiki-e
Copy link
Member Author

taiki-e commented Nov 30, 2022

That said, I don't think those who would abuse the private API care about documentation or convention...

Given this point, I think it would be difficult to completely deal with users who want to abuse the private API unless the yielder::pair is marked as unsafe -- added a commit to make yielder::pair unsafe.

async-stream/async-stream/src/yielder.rs

Lines 23 to 28 in 530fc82

// Note: It is considered unsound for anyone other than our macros to call
// this function. This is a private API intended only for calls from our
// macros, and users should never call it, but some people tend to
// misinterpret it as fine to call unless it is marked unsafe.
#[doc(hidden)]
pub unsafe fn pair<T>() -> (Sender<T>, Receiver<T>) {

@trevyn
Copy link
Contributor

trevyn commented Nov 30, 2022

added a commit to make yielder::pair unsafe.

Since this is adding an unsafe call inside of quote!, would this cause an issue if the user applies #![forbid(unsafe_code)]?

@taiki-e
Copy link
Member Author

taiki-e commented Nov 30, 2022
edited

Since this is adding an unsafe call inside of quote!, would this cause an issue if the user applies #![forbid(unsafe_code)]?

No, unsafe_code will not trigger on unsafe keyword generated by external macros (except when the unsafe token has a span other than the call-site). (rust-lang/rust#52467)

@taiki-e taiki-e changed the title Move doc(hidden) items to __private module Move doc(hidden) items to __private module and make yielder::pair unsafe Dec 6, 2022
@taiki-e taiki-e merged commit e1d440f into master Dec 6, 2022
@taiki-e taiki-e deleted the taiki-e/private branch December 6, 2022 12:55
@taiki-e taiki-e mentioned this pull request Dec 6, 2022
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@Darksonn Darksonn Darksonn approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
3 participants
@taiki-e @trevyn @Darksonn