feat utils: mark containers with lifetimebound annotations

Annotations have been added to @ref concurrent::Variable, @ref rcu::Variable, @ref utils::LazySharedPtr, @ref utils::AnyMovable, @ref utils::AnyStorage, @ref utils::expected, @ref utils::FixedArray, @ref utils::SharedReadablePtr and some other container types.
commit_hash:d544b8710ed6c4bc7116466a9d1ac2551aa2beb5

Author: Anton3

core/include/userver/concurrent/variable.hpp

@@ -5,6 +5,7 @@
 #include <optional>
 #include <shared_mutex>  // for shared_lock
 
+#include <userver/compiler/impl/lifetime.hpp>
 #include <userver/engine/mutex.hpp>
 
 USERVER_NAMESPACE_BEGIN
@@ -27,19 +28,27 @@ class LockedPtr final {
           data_(data)
     {}
 
-    Data& operator*() & { return data_; }
-    const Data& operator*() const& { return data_; }
+    Data& operator*() & USERVER_IMPL_LIFETIME_BOUND { return data_; }
+    const Data& operator*() const& USERVER_IMPL_LIFETIME_BOUND { return data_; }
 
     /// Don't use *tmp for temporary value, store it to variable.
     Data& operator*() && { return *GetOnRvalue(); }
 
-    Data* operator->() & { return &data_; }
-    const Data* operator->() const& { return &data_; }
+    Data* operator->() & USERVER_IMPL_LIFETIME_BOUND { return &data_; }
+    const Data* operator->() const& USERVER_IMPL_LIFETIME_BOUND { return &data_; }
 
     /// Don't use tmp-> for temporary value, store it to variable.
     Data* operator->() && { return GetOnRvalue(); }
 
-    Lock& GetLock() { return lock_; }
+    /// For node-based containers, e.g. `std::unordered_map`, where container access needs to be locked,
+    /// but after that the reference is stable and does not need the lock anymore.
+    Data& GetUnsafeForStableSubobject() & { return data_; }
+    const Data& GetUnsafeForStableSubobject() const& { return data_; }
+
+    /// Don't use *tmp for temporary value, store it to variable.
+    Data& GetUnsafeForStableSubobject() && { return *GetOnRvalue(); }
+
+    Lock& GetLock() USERVER_IMPL_LIFETIME_BOUND { return lock_; }
 
 private:
     const Data* GetOnRvalue() {

core/include/userver/rcu/rcu.hpp

@@ -9,6 +9,7 @@
 #include <optional>
 #include <utility>
 
+#include <userver/compiler/impl/lifetime.hpp>
 #include <userver/concurrent/impl/asymmetric_fence.hpp>
 #include <userver/concurrent/impl/intrusive_hooks.hpp>
 #include <userver/concurrent/impl/intrusive_stack.hpp>
@@ -281,17 +282,17 @@ class [[nodiscard]] ReadablePtr final {
     ReadablePtr& operator=(const ReadablePtr& other) = default;
     ~ReadablePtr() = default;
 
-    const T* Get() const& {
+    const T* Get() const& USERVER_IMPL_LIFETIME_BOUND {
         UASSERT(ptr_);
         return ptr_;
     }
 
     const T* Get() && { return GetOnRvalue(); }
 
-    const T* operator->() const& { return Get(); }
+    const T* operator->() const& USERVER_IMPL_LIFETIME_BOUND { return Get(); }
     const T* operator->() && { return GetOnRvalue(); }
 
-    const T& operator*() const& { return *Get(); }
+    const T& operator*() const& USERVER_IMPL_LIFETIME_BOUND { return *Get(); }
     const T& operator*() && { return *GetOnRvalue(); }
 
 private:
@@ -352,17 +353,17 @@ class [[nodiscard]] WritablePtr final {
         lock_.unlock();
     }
 
-    T* Get() & {
+    T* Get() & USERVER_IMPL_LIFETIME_BOUND {
         UASSERT(record_ != nullptr);
         return &*record_->data;
     }
 
     T* Get() && { return GetOnRvalue(); }
 
-    T* operator->() & { return Get(); }
+    T* operator->() & USERVER_IMPL_LIFETIME_BOUND { return Get(); }
     T* operator->() && { return GetOnRvalue(); }
 
-    T& operator*() & { return *Get(); }
+    T& operator*() & USERVER_IMPL_LIFETIME_BOUND { return *Get(); }
     T& operator*() && { return *GetOnRvalue(); }
 
 private:

core/include/userver/utils/lazy_shared_ptr.hpp

@@ -8,6 +8,7 @@
 #include <memory>
 #include <utility>
 
+#include <userver/compiler/impl/lifetime.hpp>
 #include <userver/engine/sleep.hpp>
 #include <userver/utils/assert.hpp>
 #include <userver/utils/shared_readable_ptr.hpp>
@@ -76,7 +77,7 @@ class LazySharedPtr final {
 
     /// @brief Get a pointer to the data (may be null). Fetches the data on the
     /// first access.
-    const T* Get() const& {
+    const T* Get() const& USERVER_IMPL_LIFETIME_BOUND {
         if (const auto* current_value = value_.load(); current_value != kUnfilled) {
             return current_value;
         }
@@ -90,7 +91,7 @@ class LazySharedPtr final {
 
     /// @brief Get a smart pointer to the data (may be null). Fetches the data on
     /// the first access.
-    const utils::SharedReadablePtr<T>& GetShared() const& {
+    const utils::SharedReadablePtr<T>& GetShared() const& USERVER_IMPL_LIFETIME_BOUND {
         if (value_ == kUnfilled) {
             auto readable = get_data_();
             if (const auto* expected = kUnfilled; value_.compare_exchange_strong(expected, readable.Get())) {
@@ -109,24 +110,24 @@ class LazySharedPtr final {
 
     ///@returns `*Get()`
     ///@note `Get()` must not be `nullptr`.
-    const T& operator*() const& {
+    const T& operator*() const& USERVER_IMPL_LIFETIME_BOUND {
         const auto* res = Get();
         UASSERT(res);
         return *res;
     }
 
     /// @returns `Get()`
     /// @note `Get()` must not be `nullptr`.
-    const T* operator->() const& { return &**this; }
+    const T* operator->() const& USERVER_IMPL_LIFETIME_BOUND { return &**this; }
 
     /// @returns `Get() != nullptr`
-    explicit operator bool() const& { return !!Get(); }
+    explicit operator bool() const& USERVER_IMPL_LIFETIME_BOUND { return !!Get(); }
 
     /// @returns `GetShared()`
-    operator const utils::SharedReadablePtr<T>&() const& { return GetShared(); }
+    operator const utils::SharedReadablePtr<T>&() const& USERVER_IMPL_LIFETIME_BOUND { return GetShared(); }
 
     /// @returns `GetShared()`
-    operator std::shared_ptr<const T>() const& { return GetShared(); }
+    operator std::shared_ptr<const T>() const& USERVER_IMPL_LIFETIME_BOUND { return GetShared(); }
 
 private:
     static inline const auto kUnfilled = reinterpret_cast<const T*>(std::uintptr_t{1});

kafka/functional_tests/balanced_consumer_groups/kafka_service.cpp

@@ -212,7 +212,7 @@ bool HandlerKafkaConsumerGroups::HasConsumer(const std::string& consumer_name) c
 kafka::ConsumerScope& HandlerKafkaConsumerGroups::GetConsumerScope(const std::string& consumer_name) const {
     auto consumer_by_name = consumer_by_name_.Lock();
 
-    return consumer_by_name->at(consumer_name);
+    return consumer_by_name.GetUnsafeForStableSubobject().at(consumer_name);
 }
 
 yaml_config::Schema HandlerKafkaConsumerGroups::GetStaticConfigSchema() {

universal/include/userver/utils/any_movable.hpp

@@ -9,6 +9,8 @@
 #include <type_traits>
 #include <utility>
 
+#include <userver/compiler/impl/lifetime.hpp>
+
 USERVER_NAMESPACE_BEGIN
 
 /// Utilities
@@ -56,11 +58,11 @@ class AnyMovable final {
 
     /// In-place constructs an object of the specified type
     template <typename ValueType, typename... Args>
-    ValueType& Emplace(Args&&... args);
+    ValueType& Emplace(Args&&... args) USERVER_IMPL_LIFETIME_BOUND;
 
     /// In-place constructs an object of the specified type
     template <typename ValueType, typename Item, typename... Args>
-    ValueType& Emplace(std::initializer_list<Item> list, Args&&... args);
+    ValueType& Emplace(std::initializer_list<Item> list, Args&&... args) USERVER_IMPL_LIFETIME_BOUND;
 
 private:
     struct HolderBase;
@@ -178,13 +180,13 @@ AnyMovable& AnyMovable::operator=(ValueType&& rhs) {
 }
 
 template <typename ValueType, typename... Args>
-ValueType& AnyMovable::Emplace(Args&&... args) {
+ValueType& AnyMovable::Emplace(Args&&... args) USERVER_IMPL_LIFETIME_BOUND {
     content_ = Holder<ValueType>::Make(std::forward<Args>(args)...);
     return static_cast<Holder<ValueType>&>(*content_).held;
 }
 
 template <typename ValueType, typename Item, typename... Args>
-ValueType& AnyMovable::Emplace(std::initializer_list<Item> list, Args&&... args) {
+ValueType& AnyMovable::Emplace(std::initializer_list<Item> list, Args&&... args) USERVER_IMPL_LIFETIME_BOUND {
     content_ = Holder<ValueType>::Make(list, std::forward<Args>(args)...);
     return static_cast<Holder<ValueType>&>(*content_).held;
 }

universal/include/userver/utils/any_storage.hpp

@@ -10,6 +10,8 @@
 #include <type_traits>
 #include <vector>
 
+#include <userver/compiler/impl/lifetime.hpp>
+
 USERVER_NAMESPACE_BEGIN
 
 namespace utils {
@@ -86,31 +88,31 @@ class AnyStorage final {
 
     /// @returns Stored data.
     template <typename Data>
-    const Data& Get(const AnyStorageDataTag<StorageTag, Data>& tag) const;
+    const Data& Get(const AnyStorageDataTag<StorageTag, Data>& tag) const USERVER_IMPL_LIFETIME_BOUND;
 
     /// @returns Stored data.
     /// @throws std::runtime_error if no data was stored
     template <typename Data>
-    Data& Get(const AnyStorageDataTag<StorageTag, Data>& tag);
+    Data& Get(const AnyStorageDataTag<StorageTag, Data>& tag) USERVER_IMPL_LIFETIME_BOUND;
 
     /// @brief Stores the data.
     template <typename Data>
-    Data& Set(AnyStorageDataTag<StorageTag, Data> tag, Data data);
+    Data& Set(AnyStorageDataTag<StorageTag, Data> tag, Data data) USERVER_IMPL_LIFETIME_BOUND;
 
     /// @brief Emplaces the data. The data is rewritten if
     /// already stored.
     template <typename Data, typename... Args>
-    Data& Emplace(const AnyStorageDataTag<StorageTag, Data>& tag, Args&&... args);
+    Data& Emplace(const AnyStorageDataTag<StorageTag, Data>& tag, Args&&... args) USERVER_IMPL_LIFETIME_BOUND;
 
     /// @returns Pointer to stored data or nullptr if
     /// no data is found.
     template <typename Data>
-    Data* GetOptional(const AnyStorageDataTag<StorageTag, Data>& tag) noexcept;
+    Data* GetOptional(const AnyStorageDataTag<StorageTag, Data>& tag) noexcept USERVER_IMPL_LIFETIME_BOUND;
 
     /// @returns Pointer to stored data or nullptr if
     /// no data found.
     template <typename Data>
-    const Data* GetOptional(const AnyStorageDataTag<StorageTag, Data>& tag) const noexcept;
+    const Data* GetOptional(const AnyStorageDataTag<StorageTag, Data>& tag) const noexcept USERVER_IMPL_LIFETIME_BOUND;
 
     /// @brief Erase data.
     template <typename Data>
@@ -139,7 +141,7 @@ any_storage::impl::Offset AnyStorage<StorageTag>::CalcOffset() noexcept {
 
 template <typename StorageTag>
 AnyStorage<StorageTag>::AnyStorage()
-    : raw_data_(new std::byte[CalcOffset() + sizeof(AllocRecord) * any_storage::impl::count<StorageTag>])
+    : raw_data_(new std::byte[CalcOffset() + (sizeof(AllocRecord) * any_storage::impl::count<StorageTag>)])
 {
     static_assert(std::is_trivial_v<AllocRecord>);
 
@@ -184,7 +186,8 @@ void AnyStorage<StorageTag>::Destroy() noexcept {
 
 template <typename StorageTag>
 template <typename Data>
-Data& AnyStorage<StorageTag>::Set(const AnyStorageDataTag<StorageTag, Data> tag, Data data) {
+Data& AnyStorage<StorageTag>::Set(const AnyStorageDataTag<StorageTag, Data> tag, Data data)
+    USERVER_IMPL_LIFETIME_BOUND {
     auto number = tag.number_;
     if (!GetRecords()[number].deleter) {
         return Emplace(tag, std::move(data));
@@ -196,7 +199,8 @@ Data& AnyStorage<StorageTag>::Set(const AnyStorageDataTag<StorageTag, Data> tag,
 
 template <typename StorageTag>
 template <typename Data, typename... Args>
-Data& AnyStorage<StorageTag>::Emplace(const AnyStorageDataTag<StorageTag, Data>& tag, Args&&... args) {
+Data& AnyStorage<StorageTag>::Emplace(const AnyStorageDataTag<StorageTag, Data>& tag, Args&&... args)
+    USERVER_IMPL_LIFETIME_BOUND {
     auto number = tag.number_;
     auto& record = GetRecords()[number];
     if (record.deleter) {
@@ -211,7 +215,7 @@ Data& AnyStorage<StorageTag>::Emplace(const AnyStorageDataTag<StorageTag, Data>&
 
 template <typename StorageTag>
 template <typename Data>
-Data& AnyStorage<StorageTag>::Get(const AnyStorageDataTag<StorageTag, Data>& tag) {
+Data& AnyStorage<StorageTag>::Get(const AnyStorageDataTag<StorageTag, Data>& tag) USERVER_IMPL_LIFETIME_BOUND {
     auto ptr = GetOptional(tag);
     if (ptr) {
         return *ptr;
@@ -221,14 +225,16 @@ Data& AnyStorage<StorageTag>::Get(const AnyStorageDataTag<StorageTag, Data>& tag
 
 template <typename StorageTag>
 template <typename Data>
-const Data& AnyStorage<StorageTag>::Get(const AnyStorageDataTag<StorageTag, Data>& tag) const {
+const Data& AnyStorage<StorageTag>::Get(const AnyStorageDataTag<StorageTag, Data>& tag
+) const USERVER_IMPL_LIFETIME_BOUND {
     // NOLINTNEXTLINE(cppcoreguidelines-pro-type-const-cast)
     return const_cast<AnyStorage<StorageTag>*>(this)->Get<Data>(tag);
 }
 
 template <typename StorageTag>
 template <typename Data>
-Data* AnyStorage<StorageTag>::GetOptional(const AnyStorageDataTag<StorageTag, Data>& tag) noexcept {
+Data* AnyStorage<StorageTag>::GetOptional(const AnyStorageDataTag<StorageTag, Data>& tag
+) noexcept USERVER_IMPL_LIFETIME_BOUND {
     auto number = tag.number_;
     auto offset = tag.offset_;
     if (!GetRecords()[number].deleter) {
@@ -239,7 +245,8 @@ Data* AnyStorage<StorageTag>::GetOptional(const AnyStorageDataTag<StorageTag, Da
 
 template <typename StorageTag>
 template <typename Data>
-const Data* AnyStorage<StorageTag>::GetOptional(const AnyStorageDataTag<StorageTag, Data>& tag) const noexcept {
+const Data* AnyStorage<StorageTag>::GetOptional(const AnyStorageDataTag<StorageTag, Data>& tag
+) const noexcept USERVER_IMPL_LIFETIME_BOUND {
     // NOLINTNEXTLINE(cppcoreguidelines-pro-type-const-cast)
     return const_cast<AnyStorage*>(this)->GetOptional<Data>(tag);
 }