Document unsafety use in crossbeam-deque

In Fuchsia, we're doing an [update](https://fuchsia-review.googlesource.com/c/fuchsia/+/517844) of our vendored version of crossbeam. As part of our review, we found a number of `unsafe` blocks that was hard to audit due to a lack of a comment explaining why it was safe.

* [L38](https://github.com/crossbeam-rs/crossbeam/blob/master/crossbeam-deque/src/deque.rs#L38) - it's unclear why it's safe for `Buffer` to implement `Send` for all types, rather than just `Send` types.
* [L895](https://github.com/crossbeam-rs/crossbeam/blob/master/crossbeam-deque/src/deque.rs#L895) and [L915](https://github.com/crossbeam-rs/crossbeam/blob/master/crossbeam-deque/src/deque.rs#L915) - What guarantees that batch_size is less than or equal to the buffer length? Does the epoch guard on line 881 guarantee that the buffer size can't change?
* [L1350](https://github.com/crossbeam-rs/crossbeam/blob/master/crossbeam-deque/src/deque.rs#L1350) - this is a large block of unsafe code. Could a comment be added to explain why it's safe?
* [L287](https://github.com/crossbeam-rs/crossbeam/blob/master/crossbeam-deque/src/deque.rs#L287) and [L395](https://github.com/crossbeam-rs/crossbeam/blob/master/crossbeam-deque/src/deque.rs#L395) - could you document the ordering around loading and storing the front and back pointers? Sometimes you use `Relaxed`, and sometimes you use `Acquire`, and it's difficult to tell if this is correct or an accident.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Document unsafety use in crossbeam-deque #688

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Document unsafety use in crossbeam-deque #688

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions