Implement enters target for guarding execution from double-mutability

[addisoncrump]

This will almost guaranteed break QEMU, because it was doing something necessarily unsound (double-mutable access of state). This needs to be resolved before this is merged.

[domenukk]

Add a read_volatile check here that current_input_ptr is ptr::null() please

And add the potential race condition to the # Safety comment

[addisoncrump]

Correct me if I'm wrong, but I don't think there's a race threat here unless there are multiple executors running simultaneously. If there is, then signal handling is already broken, since this would apply at a thread group level.

[domenukk]

Yes if you call this function twice you have a race condition. Ergo, document.
Also, return Err or None if it's already set

[domenukk]

I'm not saying it's how we use it, but it's how the doc should be

[addisoncrump]

Ah but you can't call this function twice, because you'll hold the guard.

[addisoncrump]

And, if you're not holding the guard, then the guard is dropped and it's already restored the guarded state.

[domenukk]

Shouldn't/coudn't this guy have the type of the generics used? As it is now you can still use it to call the methods with a different type, right?

[addisoncrump]

You would always be able to call the methods with a different type, but there are other ways that this is restricted (i.e. the harness gets moved out of the executor when it's in use, then restored after). There is no real way to restrict this further, without holding EM/Z in phantom data.

[addisoncrump]

While this would be nice to have, we need to severely revisit executors in general before we could use this effectively. Closing.

[domenukk]

Why?