Downcasting on tagged integers needs to be handled.

This is one of those "what was I thinking?!" moments where it's hard to imagine how I got so confused that I made the mistake this commit fixes. yksom, correctly, stops you trying to downcast a `Val` to an `Int`. However, the `*downcast` functions took that too far by also trying to stop you checking whether a run-time `Val` that happened to be an `Int` could be downcast or not. If you did, you got (in debug mode) an assertion failure or (in runtime mode) undefined behaviour. This simple commit rectifies this mistake by explicitly checking for tagged integers when downcasting.
ltratt · Sep 28, 2019 · 3589ddd · 3589ddd
1 parent 0a24658
commit 3589ddd
Showing 1 changed file with 22 additions and 16 deletions.
diff --git a/src/lib/vm/val.rs b/src/lib/vm/val.rs
@@ -131,28 +131,30 @@ impl Val {
         &self,
         _: &VM,
     ) -> Result<&T, Box<VMError>> {
-        debug_assert_eq!(self.valkind(), ValKind::GCBOX);
-        debug_assert_eq!(ValKind::GCBOX as usize, 0);
-        debug_assert_eq!(size_of::<*const ThinObj>(), size_of::<usize>());
-        debug_assert_ne!(self.val, 0);
-        let tobj = unsafe { &*(self.val as *const ThinObj) };
-
-        tobj.downcast().ok_or_else(|| {
-            Box::new(VMError::TypeError {
+        match self.valkind() {
+            ValKind::INT => Err(Box::new(VMError::TypeError {
                 expected: T::static_objtype(),
-                got: tobj.deref().dyn_objtype(),
-            })
-        })
+                got: Int::static_objtype(),
+            })),
+            ValKind::GCBOX => {
+                let tobj = unsafe { &*(self.val as *const ThinObj) };
+                tobj.downcast().ok_or_else(|| {
+                    Box::new(VMError::TypeError {
+                        expected: T::static_objtype(),
+                        got: tobj.deref().dyn_objtype(),
+                    })
+                })
+            }
+        }
     }
 
     /// Cast a `Val` into an instance of type `T` (where `T` must statically be a type that cannot
     /// be boxed) or return `None` if the cast is not valid.
     pub fn try_downcast<T: Obj + StaticObjType + NotUnboxable>(&self, _: &VM) -> Option<&T> {
-        debug_assert_eq!(self.valkind(), ValKind::GCBOX);
-        debug_assert_eq!(ValKind::GCBOX as usize, 0);
-        debug_assert_eq!(size_of::<*const ThinObj>(), size_of::<usize>());
-        debug_assert_ne!(self.val, 0);
-        unsafe { &*(self.val as *const ThinObj) }.downcast()
+        match self.valkind() {
+            ValKind::INT => None,
+            ValKind::GCBOX => unsafe { &*(self.val as *const ThinObj) }.downcast(),
+        }
     }
 
     /// Return this `Val`'s box. If the `Val` refers to an unboxed value, this will box it.
@@ -728,5 +730,9 @@ mod tests {
         assert!(v.downcast::<Class>(&vm).is_err());
         assert!(v.try_downcast::<String_>(&vm).is_some());
         assert!(v.try_downcast::<Class>(&vm).is_none());
+
+        let v = Val::from_isize(&vm, 0).unwrap();
+        assert!(v.downcast::<String_>(&vm).is_err());
+        assert!(v.try_downcast::<String_>(&vm).is_none());
     }
 }