visus
/
dds
关注 1
点赞 0
派生 0
代码 工单 0 合并请求 0 版本发布 0 百科 动态
您最多选择25个主题 主题必须以字母或数字开头,可以包含连字符 (-),并且长度不得超过35个字符
42 提交
6 分支
目录树: 19c0afaba7
分支列表 标签列表
${ item.name }
创建分支 ${ searchTerm }
从 '19c0afaba7'
${ noResults }
dds/external/wil/include/wil/safecast.h

370 行
19KB
原始文件 Blame 文件历史 

  1. //*********************************************************

  2. //

  3. //    Copyright (c) Microsoft. All rights reserved.

  4. //    This code is licensed under the MIT License.

  5. //    THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF

  6. //    ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED

  7. //    TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A

  8. //    PARTICULAR PURPOSE AND NONINFRINGEMENT.

  9. //

  10. //*********************************************************

  11. #ifndef __WIL_SAFECAST_INCLUDED

  12. #define __WIL_SAFECAST_INCLUDED

  13. 

  14. #include "result_macros.h"

  15. #include <intsafe.h>

  16. #include "wistd_config.h"

  17. #include "wistd_type_traits.h"

  18. 

  19. namespace wil

  20. {

  21.     namespace details

  22.     {

  23.         // Default error case for undefined conversions in intsafe.h

  24.         template<typename OldT, typename NewT> constexpr wistd::nullptr_t intsafe_conversion = nullptr;

  25. 

  26.         // is_known_safe_static_cast_v determines if a conversion is known to be safe or not. Known

  27.         // safe conversions can be handled by static_cast, this includes conversions between the same

  28.         // type, when the new type is larger than the old type but is not a signed to unsigned

  29.         // conversion, and when the two types are the same size and signed/unsigned. All other

  30.         // conversions will be assumed to be potentially unsafe, and the conversion must be handled

  31.         // by intsafe and checked.

  32.         template <typename NewT, typename OldT>

  33.         constexpr bool is_known_safe_static_cast_v =

  34.             (sizeof(NewT) > sizeof(OldT) && !(wistd::is_signed_v<OldT> && wistd::is_unsigned_v<NewT>)) ||

  35.             (sizeof(NewT) == sizeof(OldT) && ((wistd::is_signed_v<NewT> && wistd::is_signed_v<OldT>) || (wistd::is_unsigned_v<NewT> && wistd::is_unsigned_v<OldT>)));

  36. 

  37.         // Helper template to determine that NewT and OldT are both integral types. The safe_cast

  38.         // operation only supports conversions between integral types.

  39.         template <typename NewT, typename OldT>

  40.         constexpr bool both_integral_v = wistd::is_integral<NewT>::value && wistd::is_integral<OldT>::value;

  41. 

  42.         // Note on native wchar_t (__wchar_t):

  43.         //      Intsafe.h does not currently handle native wchar_t. When compiling with /Zc:wchar_t-, this is fine as wchar_t is

  44.         //      typedef'd to unsigned short. However, when compiling with /Zc:wchar_t or wchar_t as a native type, the lack of

  45.         //      support for native wchar_t in intsafe.h becomes an issue. To work around this, we treat native wchar_t as an

  46.         //      unsigned short when passing it to intsafe.h, because the two on the Windows platform are the same size and

  47.         //      share the same range according to MSDN. If the cast is to a native wchar_t, the result from intsafe.h is cast

  48.         //      to a native wchar_t.

  49. 

  50.         // Intsafe does not have a defined conversion for native wchar_t

  51.         template <typename NewT, typename OldT>

  52.         constexpr bool neither_native_wchar_v = !wistd::is_same<NewT, __wchar_t>::value && !wistd::is_same<OldT, __wchar_t>::value;

  53. 

  54.         // Check to see if the cast is a conversion to native wchar_t

  55.         template <typename NewT, typename OldT>

  56.         constexpr bool is_cast_to_wchar_v = wistd::is_same<NewT, __wchar_t>::value && !wistd::is_same<OldT, __wchar_t>::value;

  57. 

  58.         // Check to see if the cast is a conversion from native wchar_t

  59.         template <typename NewT, typename OldT>

  60.         constexpr bool is_cast_from_wchar_v = !wistd::is_same<NewT, __wchar_t>::value && wistd::is_same<OldT, __wchar_t>::value;

  61. 

  62.         // Validate the conversion to be performed has a defined mapping to an intsafe conversion

  63.         template <typename NewT, typename OldT>

  64.         constexpr bool is_supported_intsafe_cast_v = intsafe_conversion<OldT, NewT> != nullptr;

  65. 

  66.         // True when the conversion is between integral types and can be handled by static_cast

  67.         template <typename NewT, typename OldT>

  68.         constexpr bool is_supported_safe_static_cast_v = both_integral_v<NewT, OldT> && is_known_safe_static_cast_v<NewT, OldT>;

  69. 

  70.         // True when the conversion is between integral types, does not involve native wchar, has

  71.         // a mapped intsafe conversion, and is unsafe.

  72.         template <typename NewT, typename OldT>

  73.         constexpr bool is_supported_unsafe_cast_no_wchar_v =

  74.             both_integral_v<NewT, OldT> &&

  75.             !is_known_safe_static_cast_v<NewT, OldT> &&

  76.             neither_native_wchar_v<NewT, OldT> &&

  77.             is_supported_intsafe_cast_v<NewT, OldT>;

  78. 

  79.         // True when the conversion is between integral types, is a cast to native wchar_t, has

  80.         // a mapped intsafe conversion, and is unsafe.

  81.         template <typename NewT, typename OldT>

  82.         constexpr bool is_supported_unsafe_cast_to_wchar_v =

  83.             both_integral_v<NewT, OldT> &&

  84.             !is_known_safe_static_cast_v<NewT, OldT> &&

  85.             is_cast_to_wchar_v<NewT, OldT> &&

  86.             is_supported_intsafe_cast_v<unsigned short, OldT>;

  87. 

  88.         // True when the conversion is between integral types, is a cast from native wchar_t, has

  89.         // a mapped intsafe conversion, and is unsafe.

  90.         template <typename NewT, typename OldT>

  91.         constexpr bool is_supported_unsafe_cast_from_wchar_v =

  92.             both_integral_v<NewT, OldT> &&

  93.             !is_known_safe_static_cast_v<NewT, OldT> &&

  94.             is_cast_from_wchar_v<NewT, OldT> &&

  95.             is_supported_intsafe_cast_v<NewT, unsigned short>;

  96. 

  97.         // True when the conversion is supported and unsafe, and may or may not involve

  98.         // native wchar_t.

  99.         template <typename NewT, typename OldT>

  100.         constexpr bool is_supported_unsafe_cast_v =

  101.             is_supported_unsafe_cast_no_wchar_v<NewT, OldT> ||

  102.             is_supported_unsafe_cast_to_wchar_v<NewT, OldT> ||

  103.             is_supported_unsafe_cast_from_wchar_v<NewT, OldT>;

  104. 

  105.         // True when T is any one of the primitive types that the variably sized types are defined as.

  106.         template <typename T>

  107.         constexpr bool is_potentially_variably_sized_type_v =

  108.             wistd::is_same<T, int>::value ||

  109.             wistd::is_same<T, unsigned int>::value ||

  110.             wistd::is_same<T, long>::value ||

  111.             wistd::is_same<T, unsigned long>::value ||

  112.             wistd::is_same<T, __int64>::value ||

  113.             wistd::is_same<T, unsigned __int64>::value;

  114. 

  115.         // True when either type is potentialy variably sized (e.g. size_t, ptrdiff_t)

  116.         template <typename OldT, typename NewT>

  117.         constexpr bool is_potentially_variably_sized_cast_v =

  118.             is_potentially_variably_sized_type_v<OldT> ||

  119.             is_potentially_variably_sized_type_v<NewT>;

  120. 

  121.         // Mappings of all conversions defined in intsafe.h to intsafe_conversion

  122.         // Note: Uppercase types (UINT, DWORD, SIZE_T, etc) and architecture dependent types resolve

  123.         // to the base types. The base types are used since they do not vary based on architecture.

  124.         template<> constexpr auto intsafe_conversion<__int64, char> = LongLongToChar;

  125.         template<> constexpr auto intsafe_conversion<__int64, int> = LongLongToInt;

  126.         template<> constexpr auto intsafe_conversion<__int64, long> = LongLongToLong;

  127.         template<> constexpr auto intsafe_conversion<__int64, short> = LongLongToShort;

  128.         template<> constexpr auto intsafe_conversion<__int64, signed char> = LongLongToInt8;

  129.         template<> constexpr auto intsafe_conversion<__int64, unsigned __int64> = LongLongToULongLong;

  130.         template<> constexpr auto intsafe_conversion<__int64, unsigned char> = LongLongToUChar;

  131.         template<> constexpr auto intsafe_conversion<__int64, unsigned int> = LongLongToUInt;

  132.         template<> constexpr auto intsafe_conversion<__int64, unsigned long> = LongLongToULong;

  133.         template<> constexpr auto intsafe_conversion<__int64, unsigned short> = LongLongToUShort;

  134.         template<> constexpr auto intsafe_conversion<int, char> = IntToChar;

  135.         template<> constexpr auto intsafe_conversion<int, short> = IntToShort;

  136.         template<> constexpr auto intsafe_conversion<int, signed char> = IntToInt8;

  137.         template<> constexpr auto intsafe_conversion<int, unsigned __int64> = IntToULongLong;

  138.         template<> constexpr auto intsafe_conversion<int, unsigned char> = IntToUChar;

  139.         template<> constexpr auto intsafe_conversion<int, unsigned int> = IntToUInt;

  140.         template<> constexpr auto intsafe_conversion<int, unsigned long> = IntToULong;

  141.         template<> constexpr auto intsafe_conversion<int, unsigned short> = IntToUShort;

  142.         template<> constexpr auto intsafe_conversion<long, char> = LongToChar;

  143.         template<> constexpr auto intsafe_conversion<long, int> = LongToInt;

  144.         template<> constexpr auto intsafe_conversion<long, short> = LongToShort;

  145.         template<> constexpr auto intsafe_conversion<long, signed char> = LongToInt8;

  146.         template<> constexpr auto intsafe_conversion<long, unsigned __int64> = LongToULongLong;

  147.         template<> constexpr auto intsafe_conversion<long, unsigned char> = LongToUChar;

  148.         template<> constexpr auto intsafe_conversion<long, unsigned int> = LongToUInt;

  149.         template<> constexpr auto intsafe_conversion<long, unsigned long> = LongToULong;

  150.         template<> constexpr auto intsafe_conversion<long, unsigned short> = LongToUShort;

  151.         template<> constexpr auto intsafe_conversion<short, char> = ShortToChar;

  152.         template<> constexpr auto intsafe_conversion<short, signed char> = ShortToInt8;

  153.         template<> constexpr auto intsafe_conversion<short, unsigned __int64> = ShortToULongLong;

  154.         template<> constexpr auto intsafe_conversion<short, unsigned char> = ShortToUChar;

  155.         template<> constexpr auto intsafe_conversion<short, unsigned int> = ShortToUInt;

  156.         template<> constexpr auto intsafe_conversion<short, unsigned long> = ShortToULong;

  157.         template<> constexpr auto intsafe_conversion<short, unsigned short> = ShortToUShort;

  158.         template<> constexpr auto intsafe_conversion<signed char, unsigned __int64> = Int8ToULongLong;

  159.         template<> constexpr auto intsafe_conversion<signed char, unsigned char> = Int8ToUChar;

  160.         template<> constexpr auto intsafe_conversion<signed char, unsigned int> = Int8ToUInt;

  161.         template<> constexpr auto intsafe_conversion<signed char, unsigned long> = Int8ToULong;

  162.         template<> constexpr auto intsafe_conversion<signed char, unsigned short> = Int8ToUShort;

  163.         template<> constexpr auto intsafe_conversion<unsigned __int64, __int64> = ULongLongToLongLong;

  164.         template<> constexpr auto intsafe_conversion<unsigned __int64, char> = ULongLongToChar;

  165.         template<> constexpr auto intsafe_conversion<unsigned __int64, int> = ULongLongToInt;

  166.         template<> constexpr auto intsafe_conversion<unsigned __int64, long> = ULongLongToLong;

  167.         template<> constexpr auto intsafe_conversion<unsigned __int64, short> = ULongLongToShort;

  168.         template<> constexpr auto intsafe_conversion<unsigned __int64, signed char> = ULongLongToInt8;

  169.         template<> constexpr auto intsafe_conversion<unsigned __int64, unsigned char> = ULongLongToUChar;

  170.         template<> constexpr auto intsafe_conversion<unsigned __int64, unsigned int> = ULongLongToUInt;

  171.         template<> constexpr auto intsafe_conversion<unsigned __int64, unsigned long> = ULongLongToULong;

  172.         template<> constexpr auto intsafe_conversion<unsigned __int64, unsigned short> = ULongLongToUShort;

  173.         template<> constexpr auto intsafe_conversion<unsigned char, char> = UInt8ToChar;

  174.         template<> constexpr auto intsafe_conversion<unsigned char, signed char> = UIntToInt8;

  175.         template<> constexpr auto intsafe_conversion<unsigned int, char> = UIntToChar;

  176.         template<> constexpr auto intsafe_conversion<unsigned int, int> = UIntToInt;

  177.         template<> constexpr auto intsafe_conversion<unsigned int, long> = UIntToLong;

  178.         template<> constexpr auto intsafe_conversion<unsigned int, short> = UIntToShort;

  179.         template<> constexpr auto intsafe_conversion<unsigned int, signed char> = UIntToInt8;

  180.         template<> constexpr auto intsafe_conversion<unsigned int, unsigned char> = UIntToUChar;

  181.         template<> constexpr auto intsafe_conversion<unsigned int, unsigned short> = UIntToUShort;

  182.         template<> constexpr auto intsafe_conversion<unsigned long, char> = ULongToChar;

  183.         template<> constexpr auto intsafe_conversion<unsigned long, int> = ULongToInt;

  184.         template<> constexpr auto intsafe_conversion<unsigned long, long> = ULongToLong;

  185.         template<> constexpr auto intsafe_conversion<unsigned long, short> = ULongToShort;

  186.         template<> constexpr auto intsafe_conversion<unsigned long, signed char> = ULongToInt8;

  187.         template<> constexpr auto intsafe_conversion<unsigned long, unsigned char> = ULongToUChar;

  188.         template<> constexpr auto intsafe_conversion<unsigned long, unsigned int> = ULongToUInt;

  189.         template<> constexpr auto intsafe_conversion<unsigned long, unsigned short> = ULongToUShort;

  190.         template<> constexpr auto intsafe_conversion<unsigned short, char> = UShortToChar;

  191.         template<> constexpr auto intsafe_conversion<unsigned short, short> = UShortToShort;

  192.         template<> constexpr auto intsafe_conversion<unsigned short, signed char> = UShortToInt8;

  193.         template<> constexpr auto intsafe_conversion<unsigned short, unsigned char> = UShortToUChar;

  194.     }

  195. 

  196.     // Unsafe conversion where failure results in fail fast.

  197.     template <

  198.         typename NewT,

  199.         typename OldT,

  200.         wistd::enable_if_t<details::is_supported_unsafe_cast_no_wchar_v<NewT, OldT>, int> = 0

  201.     >

  202.     NewT safe_cast_failfast(const OldT var)

  203.     {

  204.         NewT newVar;

  205.         FAIL_FAST_IF_FAILED((details::intsafe_conversion<OldT, NewT>(var, &newVar)));

  206.         return newVar;

  207.     }

  208. 

  209.     // Unsafe conversion where failure results in fail fast.

  210.     template <

  211.         typename NewT,

  212.         typename OldT,

  213.         wistd::enable_if_t<details::is_supported_unsafe_cast_from_wchar_v<NewT, OldT>, int> = 0

  214.     >

  215.     NewT safe_cast_failfast(const OldT var)

  216.     {

  217.         NewT newVar;

  218.         FAIL_FAST_IF_FAILED((details::intsafe_conversion<unsigned short, NewT>(static_cast<unsigned short>(var), &newVar)));

  219.         return newVar;

  220.     }

  221. 

  222.     // Unsafe conversion where failure results in fail fast.

  223.     template <

  224.         typename NewT,

  225.         typename OldT,

  226.         wistd::enable_if_t<details::is_supported_unsafe_cast_to_wchar_v<NewT, OldT>, int> = 0

  227.     >

  228.     NewT safe_cast_failfast(const OldT var)

  229.     {

  230.         unsigned short newVar;

  231.         FAIL_FAST_IF_FAILED((details::intsafe_conversion<OldT, unsigned short>(var, &newVar)));

  232.         return static_cast<__wchar_t>(newVar);

  233.     }

  234. 

  235.     // This conversion is always safe, therefore a static_cast is fine.

  236.     template <

  237.         typename NewT,

  238.         typename OldT,

  239.         wistd::enable_if_t<details::is_supported_safe_static_cast_v<NewT, OldT>, int> = 0

  240.     >

  241.     NewT safe_cast_failfast(const OldT var)

  242.     {

  243.         return static_cast<NewT>(var);

  244.     }

  245. 

  246. #ifdef WIL_ENABLE_EXCEPTIONS

  247.     // Unsafe conversion where failure results in a thrown exception.

  248.     template <

  249.         typename NewT,

  250.         typename OldT,

  251.         wistd::enable_if_t<details::is_supported_unsafe_cast_no_wchar_v<NewT, OldT>, int> = 0

  252.     >

  253.     NewT safe_cast(const OldT var)

  254.     {

  255.         NewT newVar;

  256.         THROW_IF_FAILED((details::intsafe_conversion<OldT, NewT>(var, &newVar)));

  257.         return newVar;

  258.     }

  259. 

  260.     // Unsafe conversion where failure results in a thrown exception.

  261.     template <

  262.         typename NewT,

  263.         typename OldT,

  264.         wistd::enable_if_t<details::is_supported_unsafe_cast_from_wchar_v<NewT, OldT>, int> = 0

  265.     >

  266.     NewT safe_cast(const OldT var)

  267.     {

  268.         NewT newVar;

  269.         THROW_IF_FAILED((details::intsafe_conversion<unsigned short, NewT>(static_cast<unsigned short>(var), &newVar)));

  270.         return newVar;

  271.     }

  272. 

  273.     // Unsafe conversion where failure results in a thrown exception.

  274.     template <

  275.         typename NewT,

  276.         typename OldT,

  277.         wistd::enable_if_t<details::is_supported_unsafe_cast_to_wchar_v<NewT, OldT>, int> = 0

  278.     >

  279.     NewT safe_cast(const OldT var)

  280.     {

  281.         unsigned short newVar;

  282.         THROW_IF_FAILED((details::intsafe_conversion<OldT, unsigned short>(var, &newVar)));

  283.         return static_cast<__wchar_t>(newVar);

  284.     }

  285. 

  286.     // This conversion is always safe, therefore a static_cast is fine.

  287.     template <

  288.         typename NewT,

  289.         typename OldT,

  290.         wistd::enable_if_t<details::is_supported_safe_static_cast_v<NewT, OldT>, int> = 0

  291.     >

  292.     NewT safe_cast(const OldT var)

  293.     {

  294.         return static_cast<NewT>(var);

  295.     }

  296. #endif

  297. 

  298.     // This conversion is unsafe, therefore the two parameter version of safe_cast_nothrow must be used

  299.     template <

  300.         typename NewT,

  301.         typename OldT,

  302.         wistd::enable_if_t<details::is_supported_unsafe_cast_v<NewT, OldT>, int> = 0

  303.     >

  304.     NewT safe_cast_nothrow(const OldT /*var*/)

  305.     {

  306.         static_assert(!wistd::is_same_v<NewT, NewT>, "This cast has the potential to fail, use the two parameter safe_cast_nothrow instead");

  307.     }

  308. 

  309.     // This conversion is always safe, therefore a static_cast is fine.

  310.     template <

  311.         typename NewT,

  312.         typename OldT,

  313.         wistd::enable_if_t<details::is_supported_safe_static_cast_v<NewT, OldT>, int> = 0

  314.     >

  315.     NewT safe_cast_nothrow(const OldT var)

  316.     {

  317.         return static_cast<NewT>(var);

  318.     }

  319. 

  320.     // Unsafe conversion where an HRESULT is returned. It is up to the callee to check and handle the HRESULT

  321.     template <

  322.         typename NewT,

  323.         typename OldT,

  324.         wistd::enable_if_t<details::is_supported_unsafe_cast_no_wchar_v<NewT, OldT>, int> = 0

  325.     >

  326.     HRESULT safe_cast_nothrow(const OldT var, NewT* newTResult)

  327.     {

  328.         return details::intsafe_conversion<OldT, NewT>(var, newTResult);

  329.     }

  330. 

  331.     // Unsafe conversion where an HRESULT is returned. It is up to the callee to check and handle the HRESULT

  332.     template <

  333.         typename NewT,

  334.         typename OldT,

  335.         wistd::enable_if_t<details::is_supported_unsafe_cast_from_wchar_v<NewT, OldT>, int> = 0

  336.     >

  337.     HRESULT safe_cast_nothrow(const OldT var, NewT* newTResult)

  338.     {

  339.         return details::intsafe_conversion<unsigned short, NewT>(static_cast<unsigned short>(var), newTResult);

  340.     }

  341. 

  342.     // Unsafe conversion where an HRESULT is returned. It is up to the callee to check and handle the HRESULT

  343.     template <

  344.         typename NewT,

  345.         typename OldT,

  346.         wistd::enable_if_t<details::is_supported_unsafe_cast_to_wchar_v<NewT, OldT>, int> = 0

  347.     >

  348.     HRESULT safe_cast_nothrow(const OldT var, NewT* newTResult)

  349.     {

  350.         return details::intsafe_conversion<OldT, unsigned short>(var, reinterpret_cast<unsigned short *>(newTResult));

  351.     }

  352. 

  353.     // This conversion is always safe, therefore a static_cast is fine. If it can be determined the conversion

  354.     // does not involve a variably sized type, then the compilation will fail and say the single parameter version

  355.     // of safe_cast_nothrow should be used instead.

  356.     template <

  357.         typename NewT,

  358.         typename OldT,

  359.         wistd::enable_if_t<details::is_supported_safe_static_cast_v<NewT, OldT>, int> = 0

  360.     >

  361.     HRESULT safe_cast_nothrow(const OldT var, NewT* newTResult)

  362.     {

  363.         static_assert(details::is_potentially_variably_sized_cast_v<OldT, NewT>, "This cast is always safe; use safe_cast_nothrow<T>(value) to avoid unnecessary error handling.");

  364.         *newTResult = static_cast<NewT>(var);

  365.         return S_OK;

  366.     }

  367. }

  368. 

  369. #endif // __WIL_SAFECAST_INCLUDED