Rollup merge of #63298 - RalfJung:assume_init, r=Mark-Simulacrum,Centril

assume_init: warn about valid != safe We have this warning in the type-level docs, but it seems worth repeating it on the function.
2019-08-06 15:36:35 +02:00 · 2019-08-06 15:36:35 +02:00 · d72cb093f4
commit d72cb093f4
parent fbf268bfd4 1821414b7b
1 changed files with 10 additions and 1 deletions
--- a/src/libcore/mem/maybe_uninit.rs
+++ b/src/libcore/mem/maybe_uninit.rs
@ -51,7 +51,8 @@ use crate::mem::ManuallyDrop;
 ///
 /// On top of that, remember that most types have additional invariants beyond merely
 /// being considered initialized at the type level. For example, a `1`-initialized [`Vec<T>`]
-/// is considered initialized because the only requirement the compiler knows about it
+/// is considered initialized (under the current implementation; this does not constitute
+/// a stable guarantee) because the only requirement the compiler knows about it
 /// is that the data pointer must be non-null. Creating such a `Vec<T>` does not cause
 /// *immediate* undefined behavior, but will cause undefined behavior with most
 /// safe operations (including dropping it).
@ -402,6 +403,14 @@ impl<T> MaybeUninit<T> {
    ///
    /// [inv]: #initialization-invariant
    ///
+    /// On top of that, remember that most types have additional invariants beyond merely
+    /// being considered initialized at the type level. For example, a `1`-initialized [`Vec<T>`]
+    /// is considered initialized (under the current implementation; this does not constitute
+    /// a stable guarantee) because the only requirement the compiler knows about it
+    /// is that the data pointer must be non-null. Creating such a `Vec<T>` does not cause
+    /// *immediate* undefined behavior, but will cause undefined behavior with most
+    /// safe operations (including dropping it).
+    ///
    /// # Examples
    ///
    /// Correct usage of this method: