Tighten JsonPointer and methods #613
Conversation
|
|
|
Hi, thanks for the contribution it definitely looks like an improvement. However we moved the JSON pointer implementation in recent changes into |
|
Hey @timothee-haudebourg . |
|
I've taken a leap and am assuming that #612 felt forced to change the internals of these types from |
|
Thanks for the effort 😄 It doesn't really matter what internal type is used in the wrapper types, but having the |
There was a problem hiding this comment.
Ok, I've split the verify functions up. I've tried to ensure there is always a path for str/String to become JsonPointers without the utf-8 check being done again.
This means that in general, if you already have a &str, then from_str_const is the better method to construct a JsonPointer. And, if you already have a String, then try_from is best.
I also changed JsonPointerBuf::deserialize to use try_into instead of parse, as from_str implied making an extra copy.
The `JsonPointer` type ought to be `#[repr(transparent)]` if
`std::mem::transmute` is going to be used to coerce one from a `str`.
`ReferenceToken` already did.
The `validate` method did not ensure that a string starts with a `/`. This
may not have led a direct path to any undefined behavior, because it was
ensured that all `~` are followed by a `0` or `1`, but other methods do
act as though they assumed a pointer string always starts with a `/`. I
think this makes things a bit more clear.
The private `token_end` can be mostly replaced by `find("/")`.
`as_array_index` can be implemented in terms of the standard library's
integer parsing. (Allowing "+000" is an annoying gotcha in seemingly
every major language's standard library!).
I've added `Deserialize` for `&JsonPointer`.
I've made the internals of the new `json_pointer!` macro `const {}` to
better ensure that its checks actually happen at compile time.
I've adjusted some methods to reduce the total number of `unsafe` blocks
necessary.
| @@ -65,14 +61,36 @@ impl JsonPointer { | |||
| /// # Safety | |||
| /// | |||
| /// The input string *must* be a valid JSON pointer. | |||
| pub const unsafe fn new_unchecked(s: &[u8]) -> &Self { | |||
| pub const unsafe fn new_unchecked_str(s: &str) -> &Self { | |||
There was a problem hiding this comment.
I don't think that was necessary since we can always use s.as_bytes() even in const context, but why not.
The
JsonPointertype ought to be#[repr(transparent)]ifstd::mem::transmuteis going to be used to coerce one from astr.ReferenceTokenalready did.The
validatemethod did not ensure that a string starts with a/. This may not have led a direct path to any undefined behavior, because it was ensured that all~are followed by a0or1, but other methods do act as though they assumed a pointer string always starts with a/. I think this makes things a bit more clear.The private
token_endcan be mostly replaced byfind("/").as_array_indexcan be implemented in terms of the standard library's integer parsing. (Allowing "+000" is an annoying gotcha in seemingly every major language's standard library!).I've added
Deserializefor&JsonPointer.I've made the internals of the new
json_pointer!macroconst {}to better ensure that its checks actually happen at compile time.I've adjusted some methods to reduce the total number of
unsafeblocks