Menu
Search

Forums

Forum Index

November 13, 2013
Gravatar of Joseph CassmanPosted by Joseph Cassman
in reply to Andrei Alexandrescu		Reply
Joseph Cassman
Gravatar of Joseph Cassman
Posted in reply to Andrei Alexandrescu


Reply
On Wednesday, 13 November 2013 at 00:33:17 UTC, Andrei Alexandrescu wrote:
>
> * Arrays: some weird length (like 17), and also starting at size_t.max minus the memory occupied by the array.

This question probably reflects the fact that I do not know how arrays are implemented by the D runtime. But wouldn't shrinking an array cause it's memory to have the possibility of being reclaimed/reapportioned? At least I expect that to happen in normal D code any time I change an array's length to make it smaller; I figure the GC might kick in at any point after that and reclaim the formerly used memory. Of course, inside an allocator such functionality could be short cut so that the GC does not touch it, and shrinking an array is simply a notational adjustment.

The idea behind a reproducable way to fail all seems good. I am just concerned that this part might have a performance impact.

No?

Joseph
November 13, 2013
Gravatar of qzncPosted by qznc
in reply to Andrei Alexandrescu		Reply
qznc
Gravatar of qznc
Posted in reply to Andrei Alexandrescu


Reply
On Wednesday, 13 November 2013 at 00:33:17 UTC, Andrei Alexandrescu wrote:
> Hello,
>
>
> I will soon get to work on typed allocators; I figured there will be some issues percolating to untyped allocators that will require design changes (hopefully minor).
>
> For starters, I want to define a function that "obliterates" an object, i.e. makes it almost surely unusable and not obeying its own invariants. At the same time, that state should be entirely reproducible and memory-safe.

> * floating point numbers: NaN, or some ridiculous value like F.max / 2?

NaN would be semantically the right thing and there even is the concept of "signaling NaNs". I do not know how it works out in practice, though.

http://en.wikipedia.org/wiki/NaN#Signaling_NaN
November 13, 2013
Gravatar of Dmitry OlshanskyPosted by Dmitry Olshansky
in reply to Andrei Alexandrescu		Reply
Dmitry Olshansky
Gravatar of Dmitry Olshansky
Posted in reply to Andrei Alexandrescu


Reply
13-Nov-2013 04:33, Andrei Alexandrescu пишет:
> Hello,
[snip]
> Here's what I'm thinking. First, obliterate calls the destructor if
> present and then writes the fields as follows:

>
> * unsigned integers: t.max / 2
>
> * signed integers: t.min / 2
>
> * characters: ?

As Vladimir said:
0xFF for char
0xFFFF for wchar
0x10_FFFF for dchar

Alternatives for w/dchar :
all in range of 0xFDD0-0xFDEF
0xFFFE and 0xFFFF
0x1FFFE and 0x1FFFF
0x2FFFE and 0x2FFFF
and so on, up to
0x10FFFE and 0x10FFFF

Relevant passage from the Unicode standard:
Noncharacters are code points that are permanently reserved in the Unicode Standard for internal use. They are forbidden for use in open interchange of Unicode text data.

-- 
Dmitry Olshansky
November 13, 2013
Gravatar of Andrei AlexandrescuPosted by Andrei Alexandrescu
in reply to Dmitry Olshansky		Reply
Andrei Alexandrescu
Gravatar of Andrei Alexandrescu
Posted in reply to Dmitry Olshansky


Reply
On 11/13/13 10:18 AM, Dmitry Olshansky wrote:
> As Vladimir said:
> 0xFF for char
> 0xFFFF for wchar
> 0x10_FFFF for dchar
>
> Alternatives for w/dchar :
> all in range of 0xFDD0-0xFDEF
> 0xFFFE and 0xFFFF
> 0x1FFFE and 0x1FFFF
> 0x2FFFE and 0x2FFFF
> and so on, up to
> 0x10FFFE and 0x10FFFF
>
> Relevant passage from the Unicode standard:
> Noncharacters are code points that are permanently reserved in the
> Unicode Standard for internal use. They are forbidden for use in open
> interchange of Unicode text data.

Great, thanks folks.

Andrei
November 14, 2013
Gravatar of monarch_dodraPosted by monarch_dodra
in reply to Jonathan M Davis		Reply
monarch_dodra
Gravatar of monarch_dodra
Posted in reply to Jonathan M Davis


Reply
On Wednesday, 13 November 2013 at 01:37:15 UTC, Jonathan M Davis wrote:
> Except that pretty most of your examples don't seem like they would fail any
> more than T.init would. int.max / 2 in so no more valid or invalid than 0. The
> only difference I see would be that by setting pointers/references/arrays to a
> weird value rather than null, they'll be treated as if they have a value and
> then blow up rather than blowing up on a null value. For all the built-in
> types, T.init is essentially supposed to be as invalid as the type can get
> without pointing off into memory that it shouldn't be addressing.
>
> So, the only thing I see that this suggestion does over using T.init is that
> on pointers/references/arrays, you won't end up with code that checks for null
> and avoids blowing up. Code that checks for null would then blow up just as
> much as code that assumes that the pointer/reference/array was non-null. But
> that's the only difference I see, since none of the other types end up with
> values that are any more invalid than T.init.
>
> - Jonathan M Davis

+1. Essentially, I don't see how any of this is better than .init.

What about user defined types? How do you want to deal with those? Recursively search all basic types and set them to the above mentioned values?
November 14, 2013
Gravatar of Andrea FontanaPosted by Andrea Fontana
in reply to KlausO		Reply
Andrea Fontana
Gravatar of Andrea Fontana
Posted in reply to KlausO


Reply
On Wednesday, 13 November 2013 at 07:16:40 UTC, KlausO wrote:
> Am 13.11.2013 02:21, schrieb Andrei Alexandrescu:
>> On 11/12/13 5:10 PM, Vladimir Panteleev wrote:
>>>> * Pointers and class references: size_t.max - 65_535, i.e. 64K below
>>>> the upper memory limit. On all systems I know it can be safely assumed
>>>> that that area will cause GPF when accessed.
>>>
>>> Make that value odd. That will also guarantee a GPF on systems where
>>> unaligned pointer access is forbidden.
>>
>> Ha, I missed that. Nice!
>>
>> Andrei
>>
>
> The classics:
>
> 0xFFFFDEAD   dead
> 0xFFFFD1ED   died
>
> Not so obvious:
>
> 0xFFFFFA1D   failed
> 0xFFFFACED   (the result makes you dumb) faced
> 0xFFFFFEED   don't feed me with this
> 0xFFFFDF0F   don't follow (this pointer) or (you are) f*****

You missed the best classic: 0xDEADBEEF
November 14, 2013
Gravatar of Brad RobertsPosted by Brad Roberts
in reply to monarch_dodra		Reply
Brad Roberts
Gravatar of Brad Roberts
Posted in reply to monarch_dodra


Reply
On 11/14/13 1:36 AM, monarch_dodra wrote:
> On Wednesday, 13 November 2013 at 01:37:15 UTC, Jonathan M Davis wrote:
>> Except that pretty most of your examples don't seem like they would fail any
>> more than T.init would. int.max / 2 in so no more valid or invalid than 0. The
>> only difference I see would be that by setting pointers/references/arrays to a
>> weird value rather than null, they'll be treated as if they have a value and
>> then blow up rather than blowing up on a null value. For all the built-in
>> types, T.init is essentially supposed to be as invalid as the type can get
>> without pointing off into memory that it shouldn't be addressing.
>>
>> So, the only thing I see that this suggestion does over using T.init is that
>> on pointers/references/arrays, you won't end up with code that checks for null
>> and avoids blowing up. Code that checks for null would then blow up just as
>> much as code that assumes that the pointer/reference/array was non-null. But
>> that's the only difference I see, since none of the other types end up with
>> values that are any more invalid than T.init.
>>
>> - Jonathan M Davis
>
> +1. Essentially, I don't see how any of this is better than .init.
>
> What about user defined types? How do you want to deal with those? Recursively search all basic
> types and set them to the above mentioned values?

It can be nice to distinguish between initial state and final state.
« First   ‹ Prev
1 2
Next ›   Last »