kernel::types

Struct Opaque

Source 
pub struct Opaque<T> { /* private fields */ }
Expand description

Stores an opaque value.

Opaque<T> is meant to be used with FFI objects that are never interpreted by Rust code.

It is used to wrap structs from the C side, like for example Opaque<bindings::mutex>. It gets rid of all the usual assumptions that Rust has for a value:

  • The value is allowed to be uninitialized (for example have invalid bit patterns: 3 for a bool).
  • The value is allowed to be mutated, when a &Opaque<T> exists on the Rust side.
  • No uniqueness for mutable references: it is fine to have multiple &mut Opaque<T> point to the same value.
  • The value is not allowed to be shared with other threads (i.e. it is !Sync).

This has to be used for all values that the C side has access to, because it can’t be ensured that the C side is adhering to the usual constraints that Rust needs.

Using Opaque<T> allows to continue to use references on the Rust side even for values shared with C.

§Examples

use kernel::types::Opaque;

// `foo.val` is assumed to be handled on the C side, so we use `Opaque` to wrap it.
pub struct Foo {
    foo: Opaque<bindings::Foo>,
}

impl Foo {
    pub fn get_val(&self) -> u8 {
        let ptr = Opaque::get(&self.foo);

        // SAFETY: `Self` is valid from C side.
        unsafe { (*ptr).val }
    }
}

// Create an instance of `Foo` with the `Opaque` wrapper.
let foo = Foo {
    foo: Opaque::new(bindings::Foo { val: 0xdb }),
};

assert_eq!(foo.get_val(), 0xdb);

Implementations§

Source§

impl<T> Opaque<T>

Source

pub const fn new(value: T) -> Self

Creates a new opaque value.

Source

pub const fn uninit() -> Self

Creates an uninitialised value.

Source

pub fn ffi_init(init_func: impl FnOnce(*mut T)) -> impl PinInit<Self>

Creates a pin-initializer from the given initializer closure.

The returned initializer calls the given closure with the pointer to the inner T of this Opaque. Since this memory is uninitialized, the closure is not allowed to read from it.

This function is safe, because the T inside of an Opaque is allowed to be uninitialized. Additionally, access to the inner T requires unsafe, so the caller needs to verify at that point that the inner value is valid.

Source

pub fn try_ffi_init<E>( init_func: impl FnOnce(*mut T) -> Result<(), E>, ) -> impl PinInit<Self, E>

Creates a fallible pin-initializer from the given initializer closure.

The returned initializer calls the given closure with the pointer to the inner T of this Opaque. Since this memory is uninitialized, the closure is not allowed to read from it.

This function is safe, because the T inside of an Opaque is allowed to be uninitialized. Additionally, access to the inner T requires unsafe, so the caller needs to verify at that point that the inner value is valid.

Source

pub const fn get(&self) -> *mut T

Returns a raw pointer to the opaque data.

Source

pub const fn raw_get(this: *const Self) -> *mut T

Gets the value behind this.

This function is useful to get access to the value without creating intermediate references.

Trait Implementations§

Source§

impl<T> Zeroable for Opaque<T>

Auto Trait Implementations§

§

impl<T> !Freeze for Opaque<T>

§

impl<T> !RefUnwindSafe for Opaque<T>

§

impl<T> Send for Opaque<T>
where T: Send,

§

impl<T> !Sync for Opaque<T>

§

impl<T> !Unpin for Opaque<T>

§

impl<T> UnwindSafe for Opaque<T>
where T: UnwindSafe,

Blanket Implementations§

Source§

impl<T> Any for T
where T: 'static + ?Sized,

Source§

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more
Source§

impl<T> Borrow<T> for T
where T: ?Sized,

Source§

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more
Source§

impl<T> BorrowMut<T> for T
where T: ?Sized,

Source§

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more
Source§

impl<T> From<T> for T

Source§

fn from(t: T) -> T

Returns the argument unchanged.

Source§

impl<T, E> Init<T, E> for T

Source§

unsafe fn __init(self, slot: *mut T) -> Result<(), E>

Initializes slot. Read more
Source§

fn chain<F>(self, f: F) -> ChainInit<Self, F, T, E>
where F: FnOnce(&mut T) -> Result<(), E>,

First initializes the value using self then calls the function f with the initialized value. Read more
Source§

impl<T, U> Into<U> for T
where U: From<T>,

Source§

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

Source§

impl<T, E> PinInit<T, E> for T

Source§

unsafe fn __pinned_init(self, slot: *mut T) -> Result<(), E>

Initializes slot. Read more
Source§

fn pin_chain<F>(self, f: F) -> ChainPinInit<Self, F, T, E>
where F: FnOnce(Pin<&mut T>) -> Result<(), E>,

First initializes the value using self then calls the function f with the initialized value. Read more
Source§

impl<T, U> TryFrom<U> for T
where U: Into<T>,

Source§

type Error = Infallible

The type returned in the event of a conversion error.
Source§

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.
Source§

impl<T, U> TryInto<U> for T
where U: TryFrom<T>,

Source§

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.
Source§

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.