Merge pull request #84 from dolio/master

Avoid giving out uninitialized memory from safe vector creation functions.

Author: dolio

Data/Vector/Generic/Mutable.hs

@@ -582,7 +582,7 @@ overlaps = basicOverlaps
 new :: (PrimMonad m, MVector v a) => Int -> m (v (PrimState m) a)
 {-# INLINE new #-}
 new n = BOUNDS_CHECK(checkLength) "new" n
-      $ unsafeNew n
+      $ unsafeNew n >>= \v -> basicInitialize v >> return v
 
 -- | Create a mutable vector of the given length. The length is not checked.
 unsafeNew :: (PrimMonad m, MVector v a) => Int -> m (v (PrimState m) a)
@@ -619,13 +619,17 @@ grow :: (PrimMonad m, MVector v a)
                 => v (PrimState m) a -> Int -> m (v (PrimState m) a)
 {-# INLINE grow #-}
 grow v by = BOUNDS_CHECK(checkLength) "grow" by
-          $ unsafeGrow v by
+          $ do vnew <- unsafeGrow v by
+               basicInitialize $ basicUnsafeSlice (length v) by vnew
+               return vnew
 
 growFront :: (PrimMonad m, MVector v a)
                 => v (PrimState m) a -> Int -> m (v (PrimState m) a)
 {-# INLINE growFront #-}
 growFront v by = BOUNDS_CHECK(checkLength) "growFront" by
-               $ unsafeGrowFront v by
+               $ do vnew <- unsafeGrowFront v by
+                    basicInitialize $ basicUnsafeSlice 0 by vnew
+                    return vnew
 
 enlarge_delta :: MVector v a => v s a -> Int
 enlarge_delta v = max (length v) 1
@@ -634,13 +638,18 @@ enlarge_delta v = max (length v) 1
 enlarge :: (PrimMonad m, MVector v a)
                 => v (PrimState m) a -> m (v (PrimState m) a)
 {-# INLINE enlarge #-}
-enlarge v = unsafeGrow v (enlarge_delta v)
+enlarge v = do vnew <- unsafeGrow v by
+               basicInitialize $ basicUnsafeSlice (length v) by vnew
+               return vnew
+  where
+    by = enlarge_delta v
 
 enlargeFront :: (PrimMonad m, MVector v a)
                 => v (PrimState m) a -> m (v (PrimState m) a, Int)
 {-# INLINE enlargeFront #-}
 enlargeFront v = do
                    v' <- unsafeGrowFront v by
+                   basicInitialize $ basicUnsafeSlice 0 by v'
                    return (v', by)
   where
     by = enlarge_delta v

Data/Vector/Generic/Mutable/Base.hs

@@ -43,6 +43,14 @@ class MVector v a where
   -- called directly, use 'unsafeNew' instead.
   basicUnsafeNew   :: PrimMonad m => Int -> m (v (PrimState m) a)
 
+  -- | Initialize a vector to a standard value. This is intended to be called as
+  -- part of the safe new operation (and similar operations), to properly blank
+  -- the newly allocated memory if necessary.
+  --
+  -- Vectors that are necessarily initialized as part of creation may implement
+  -- this as a no-op.
+  basicInitialize :: PrimMonad m => v (PrimState m) a -> m ()
+
   -- | Create a mutable vector of the given length and fill it with an
   -- initial value. This method should not be called directly, use
   -- 'replicate' instead.

Data/Vector/Mutable.hs

@@ -100,6 +100,10 @@ instance G.MVector MVector a where
         arr <- newArray n uninitialised
         return (MVector 0 n arr)
 
+  {-# INLINE basicInitialize #-}
+  -- initialization is unnecessary for boxed vectors
+  basicInitialize _ = return ()
+
   {-# INLINE basicUnsafeReplicate #-}
   basicUnsafeReplicate n x
     = do

Data/Vector/Primitive/Mutable.hs

@@ -52,6 +52,7 @@ module Data.Vector.Primitive.Mutable (
 import qualified Data.Vector.Generic.Mutable as G
 import           Data.Primitive.ByteArray
 import           Data.Primitive ( Prim, sizeOf )
+import           Data.Word ( Word8 )
 import           Control.Monad.Primitive
 import           Control.Monad ( liftM )
 
@@ -99,6 +100,13 @@ instance Prim a => G.MVector MVector a where
       size = sizeOf (undefined :: a)
       mx = maxBound `div` size :: Int
 
+  {-# INLINE basicInitialize #-}
+  basicInitialize (MVector off n v) =
+      setByteArray v (off * size) (n * size) (0 :: Word8)
+    where
+      size = sizeOf (undefined :: a)
+
+
   {-# INLINE basicUnsafeRead #-}
   basicUnsafeRead (MVector i _ arr) j = readByteArray arr (i+j)
 

Data/Vector/Storable/Mutable.hs

@@ -122,6 +122,9 @@ instance Storable a => G.MVector MVector a where
         fp <- mallocVector n
         return $ MVector n fp
 
+  {-# INLINE basicInitialize #-}
+  basicInitialize = storableZero
+
   {-# INLINE basicUnsafeRead #-}
   basicUnsafeRead (MVector _ fp) i
     = unsafePrimToPrim
@@ -149,6 +152,18 @@ instance Storable a => G.MVector MVector a where
       withForeignPtr fq $ \q ->
       moveArray p q n
 
+storableZero :: forall a m. (Storable a, PrimMonad m) => MVector (PrimState m) a -> m ()
+{-# INLINE storableZero #-}
+storableZero (MVector n fp) = unsafePrimToPrim . withForeignPtr fp $ \(Ptr p) -> do
+  let q = Addr p
+  setAddr q byteSize (0 :: Word8)
+ where
+ x :: a
+ x = undefined
+
+ byteSize :: Int
+ byteSize = n * sizeOf x
+
 storableSet :: (Storable a, PrimMonad m) => MVector (PrimState m) a -> a -> m ()
 {-# INLINE storableSet #-}
 storableSet (MVector n fp) x

Data/Vector/Unboxed/Base.hs

@@ -106,6 +106,7 @@ instance M.MVector MVector () where
   {-# INLINE basicUnsafeSlice #-}
   {-# INLINE basicOverlaps #-}
   {-# INLINE basicUnsafeNew #-}
+  {-# INLINE basicInitialize #-}
   {-# INLINE basicUnsafeRead #-}
   {-# INLINE basicUnsafeWrite #-}
   {-# INLINE basicClear #-}
@@ -121,6 +122,9 @@ instance M.MVector MVector () where
 
   basicUnsafeNew n = return (MV_Unit n)
 
+  -- Nothing to initialize
+  basicInitialize _ = return ()
+
   basicUnsafeRead (MV_Unit _) _ = return ()
 
   basicUnsafeWrite (MV_Unit _) _ () = return ()
@@ -166,6 +170,7 @@ instance M.MVector MVector ty where {                                   \
 ; {-# INLINE basicUnsafeSlice #-}                                       \
 ; {-# INLINE basicOverlaps #-}                                          \
 ; {-# INLINE basicUnsafeNew #-}                                         \
+; {-# INLINE basicInitialize #-}                                        \
 ; {-# INLINE basicUnsafeReplicate #-}                                   \
 ; {-# INLINE basicUnsafeRead #-}                                        \
 ; {-# INLINE basicUnsafeWrite #-}                                       \
@@ -177,6 +182,7 @@ instance M.MVector MVector ty where {                                   \
 ; basicUnsafeSlice i n (con v) = con $ M.basicUnsafeSlice i n v         \
 ; basicOverlaps (con v1) (con v2) = M.basicOverlaps v1 v2               \
 ; basicUnsafeNew n = con `liftM` M.basicUnsafeNew n                     \
+; basicInitialize (con v) = M.basicInitialize v                         \
 ; basicUnsafeReplicate n x = con `liftM` M.basicUnsafeReplicate n x     \
 ; basicUnsafeRead (con v) i = M.basicUnsafeRead v i                     \
 ; basicUnsafeWrite (con v) i x = M.basicUnsafeWrite v i x               \
@@ -307,6 +313,7 @@ instance M.MVector MVector Bool where
   {-# INLINE basicUnsafeSlice #-}
   {-# INLINE basicOverlaps #-}
   {-# INLINE basicUnsafeNew #-}
+  {-# INLINE basicInitialize #-}
   {-# INLINE basicUnsafeReplicate #-}
   {-# INLINE basicUnsafeRead #-}
   {-# INLINE basicUnsafeWrite #-}
@@ -318,6 +325,7 @@ instance M.MVector MVector Bool where
   basicUnsafeSlice i n (MV_Bool v) = MV_Bool $ M.basicUnsafeSlice i n v
   basicOverlaps (MV_Bool v1) (MV_Bool v2) = M.basicOverlaps v1 v2
   basicUnsafeNew n = MV_Bool `liftM` M.basicUnsafeNew n
+  basicInitialize (MV_Bool v) = M.basicInitialize v
   basicUnsafeReplicate n x = MV_Bool `liftM` M.basicUnsafeReplicate n (fromBool x)
   basicUnsafeRead (MV_Bool v) i = toBool `liftM` M.basicUnsafeRead v i
   basicUnsafeWrite (MV_Bool v) i x = M.basicUnsafeWrite v i (fromBool x)
@@ -356,6 +364,7 @@ instance (RealFloat a, Unbox a) => M.MVector MVector (Complex a) where
   {-# INLINE basicUnsafeSlice #-}
   {-# INLINE basicOverlaps #-}
   {-# INLINE basicUnsafeNew #-}
+  {-# INLINE basicInitialize #-}
   {-# INLINE basicUnsafeReplicate #-}
   {-# INLINE basicUnsafeRead #-}
   {-# INLINE basicUnsafeWrite #-}
@@ -367,6 +376,7 @@ instance (RealFloat a, Unbox a) => M.MVector MVector (Complex a) where
   basicUnsafeSlice i n (MV_Complex v) = MV_Complex $ M.basicUnsafeSlice i n v
   basicOverlaps (MV_Complex v1) (MV_Complex v2) = M.basicOverlaps v1 v2
   basicUnsafeNew n = MV_Complex `liftM` M.basicUnsafeNew n
+  basicInitialize (MV_Complex v) = M.basicInitialize v
   basicUnsafeReplicate n (x :+ y) = MV_Complex `liftM` M.basicUnsafeReplicate n (x,y)
   basicUnsafeRead (MV_Complex v) i = uncurry (:+) `liftM` M.basicUnsafeRead v i
   basicUnsafeWrite (MV_Complex v) i (x :+ y) = M.basicUnsafeWrite v i (x,y)

internal/unbox-tuple-instances

@@ -23,6 +23,11 @@ instance (Unbox a, Unbox b) => M.MVector MVector (a, b) where
           as <- M.basicUnsafeNew n_
           bs <- M.basicUnsafeNew n_
           return $ MV_2 n_ as bs
+  {-# INLINE basicInitialize  #-}
+  basicInitialize (MV_2 _ as bs)
+      = do
+          M.basicInitialize as
+          M.basicInitialize bs
   {-# INLINE basicUnsafeReplicate  #-}
   basicUnsafeReplicate n_ (a, b)
       = do
@@ -162,6 +167,12 @@ instance (Unbox a,
           bs <- M.basicUnsafeNew n_
           cs <- M.basicUnsafeNew n_
           return $ MV_3 n_ as bs cs
+  {-# INLINE basicInitialize #-}
+  basicInitialize (MV_3 _ as bs cs)
+      = do
+          M.basicInitialize as
+          M.basicInitialize bs
+          M.basicInitialize cs
   {-# INLINE basicUnsafeReplicate  #-}
   basicUnsafeReplicate n_ (a, b, c)
       = do
@@ -337,6 +348,13 @@ instance (Unbox a,
           cs <- M.basicUnsafeNew n_
           ds <- M.basicUnsafeNew n_
           return $ MV_4 n_ as bs cs ds
+  {-# INLINE basicInitialize #-}
+  basicInitialize (MV_4 _ as bs cs ds)
+      = do
+          M.basicInitialize as
+          M.basicInitialize bs
+          M.basicInitialize cs
+          M.basicInitialize ds
   {-# INLINE basicUnsafeReplicate  #-}
   basicUnsafeReplicate n_ (a, b, c, d)
       = do
@@ -567,6 +585,14 @@ instance (Unbox a,
           ds <- M.basicUnsafeNew n_
           es <- M.basicUnsafeNew n_
           return $ MV_5 n_ as bs cs ds es
+  {-# INLINE basicInitialize #-}
+  basicInitialize (MV_5 _ as bs cs ds es)
+      = do
+          M.basicInitialize as
+          M.basicInitialize bs
+          M.basicInitialize cs
+          M.basicInitialize ds
+          M.basicInitialize es
   {-# INLINE basicUnsafeReplicate  #-}
   basicUnsafeReplicate n_ (a, b, c, d, e)
       = do
@@ -846,6 +872,15 @@ instance (Unbox a,
           es <- M.basicUnsafeNew n_
           fs <- M.basicUnsafeNew n_
           return $ MV_6 n_ as bs cs ds es fs
+  {-# INLINE basicInitialize #-}
+  basicInitialize (MV_6 _ as bs cs ds es fs)
+      = do
+          M.basicInitialize as
+          M.basicInitialize bs
+          M.basicInitialize cs
+          M.basicInitialize ds
+          M.basicInitialize es
+          M.basicInitialize fs
   {-# INLINE basicUnsafeReplicate  #-}
   basicUnsafeReplicate n_ (a, b, c, d, e, f)
       = do