Optimize SliceIndex impl for RangeInclusive

Kmeakin · Kmeakin · commit a2eae7f2a1b1 · 2025-08-09T19:59:54.000+01:00
The check for `self.end() == usize::MAX` can be combined with the `self.end() +
1 &gt; slice.len()` check into `self.en() &gt;= slice.len()`, since `self.end() &lt;
slice.len()` implies both `self.end() &lt;= slice.len()` and `self.end() &lt;
usize::MAX`.

The tradeoff is slightly worse error reporting: previously there would be a
special panic message in the `range.end() == usize::MAX` case.
diff --git a/library/core/src/slice/index.rs b/library/core/src/slice/index.rs
@@ -658,7 +658,6 @@ unsafe impl<T> const SliceIndex<[T]> for ops::RangeFull {
 }
 
 /// The methods `index` and `index_mut` panic if:
-/// - the end of the range is `usize::MAX` or
 /// - the start of the range is greater than the end of the range or
 /// - the end of the range is out of bounds.
 #[stable(feature = "inclusive_range", since = "1.26.0")]
@@ -668,12 +667,14 @@ unsafe impl<T> const SliceIndex<[T]> for ops::RangeInclusive<usize> {
 
     #[inline]
     fn get(self, slice: &[T]) -> Option<&[T]> {
-        if *self.end() == usize::MAX { None } else { self.into_slice_range().get(slice) }
+        // `self.into_slice_range()` cannot overflow, because `*self.end() <
+        // slice.len()` implies `*self.end() < usize::MAX`.
+        if *self.end() >= slice.len() { None } else { self.into_slice_range().get(slice) }
     }
 
     #[inline]
     fn get_mut(self, slice: &mut [T]) -> Option<&mut [T]> {
-        if *self.end() == usize::MAX { None } else { self.into_slice_range().get_mut(slice) }
+        if *self.end() >= slice.len() { None } else { self.into_slice_range().get_mut(slice) }
     }
 
     #[inline]
@@ -690,16 +691,16 @@ unsafe impl<T> const SliceIndex<[T]> for ops::RangeInclusive<usize> {
 
     #[inline]
     fn index(self, slice: &[T]) -> &[T] {
-        if *self.end() == usize::MAX {
-            slice_end_index_overflow_fail();
+        if *self.end() >= slice.len() {
+            slice_end_index_len_fail(*self.end(), slice.len());
         }
         self.into_slice_range().index(slice)
     }
 
     #[inline]
     fn index_mut(self, slice: &mut [T]) -> &mut [T] {
-        if *self.end() == usize::MAX {
-            slice_end_index_overflow_fail();
+        if *self.end() >= slice.len() {
+            slice_end_index_len_fail(*self.end(), slice.len());
         }
         self.into_slice_range().index_mut(slice)
     }
diff --git a/library/coretests/tests/slice.rs b/library/coretests/tests/slice.rs
@@ -1492,14 +1492,14 @@ mod slice_index {
             // note: using 0 specifically ensures that the result of overflowing is 0..0,
             //       so that `get` doesn't simply return None for the wrong reason.
             bad: data[0 ..= usize::MAX];
-            message: "maximum usize";
+            message: "out of range";
         }
 
         in mod rangetoinclusive_overflow {
             data: [0, 1];
 
             bad: data[..= usize::MAX];
-            message: "maximum usize";
+            message: "out of range";
         }
 
         in mod boundpair_overflow_end {
diff --git a/src/tools/miri/tests/panic/oob_subslice.stderr b/src/tools/miri/tests/panic/oob_subslice.stderr
@@ -1,5 +1,5 @@
 
-thread 'main' ($TID) panicked at tests/panic/oob_subslice.rs:LL:CC:
-range end index 5 out of range for slice of length 4
+thread 'main' panicked at tests/panic/oob_subslice.rs:LL:CC:
+range end index 4 out of range for slice of length 4
 note: run with `RUST_BACKTRACE=1` environment variable to display a backtrace
 note: in Miri, you may have to set `MIRIFLAGS=-Zmiri-env-forward=RUST_BACKTRACE` for the environment variable to have an effect

Original file line number	Diff line number	Diff line change
`@@ -658,7 +658,6 @@ unsafe impl<T> const SliceIndex<[T]> for ops::RangeFull {`
`658`	`658`	`}`
`659`	`659`
`660`	`660`	/// The methods `index` and `index_mut` panic if:
`661`		-/// - the end of the range is `usize::MAX` or
`662`	`661`	`/// - the start of the range is greater than the end of the range or`
`663`	`662`	`/// - the end of the range is out of bounds.`
`664`	`663`	`#[stable(feature = "inclusive_range", since = "1.26.0")]`
`@@ -668,12 +667,14 @@ unsafe impl<T> const SliceIndex<[T]> for ops::RangeInclusive<usize> {`
`668`	`667`
`669`	`668`	`#[inline]`
`670`	`669`	`fn get(self, slice: &[T]) -> Option<&[T]> {`
`671`		`- if *self.end() == usize::MAX { None } else { self.into_slice_range().get(slice) }`
	`670`	+ // `self.into_slice_range()` cannot overflow, because `*self.end() <
	`671`	+ // slice.len()` implies `*self.end() < usize::MAX`.
	`672`	`+ if *self.end() >= slice.len() { None } else { self.into_slice_range().get(slice) }`
`672`	`673`	`}`
`673`	`674`
`674`	`675`	`#[inline]`
`675`	`676`	`fn get_mut(self, slice: &mut [T]) -> Option<&mut [T]> {`
`676`		`- if *self.end() == usize::MAX { None } else { self.into_slice_range().get_mut(slice) }`
	`677`	`+ if *self.end() >= slice.len() { None } else { self.into_slice_range().get_mut(slice) }`
`677`	`678`	`}`
`678`	`679`
`679`	`680`	`#[inline]`
`@@ -690,16 +691,16 @@ unsafe impl<T> const SliceIndex<[T]> for ops::RangeInclusive<usize> {`
`690`	`691`
`691`	`692`	`#[inline]`
`692`	`693`	`fn index(self, slice: &[T]) -> &[T] {`
`693`		`- if *self.end() == usize::MAX {`
`694`		`- slice_end_index_overflow_fail();`
	`694`	`+ if *self.end() >= slice.len() {`
	`695`	`+ slice_end_index_len_fail(*self.end(), slice.len());`
`695`	`696`	`}`
`696`	`697`	`self.into_slice_range().index(slice)`
`697`	`698`	`}`
`698`	`699`
`699`	`700`	`#[inline]`
`700`	`701`	`fn index_mut(self, slice: &mut [T]) -> &mut [T] {`
`701`		`- if *self.end() == usize::MAX {`
`702`		`- slice_end_index_overflow_fail();`
	`702`	`+ if *self.end() >= slice.len() {`
	`703`	`+ slice_end_index_len_fail(*self.end(), slice.len());`
`703`	`704`	`}`
`704`	`705`	`self.into_slice_range().index_mut(slice)`
`705`	`706`	`}`
Original file line number	Diff line number	Diff line change
`@@ -1492,14 +1492,14 @@ mod slice_index {`
`1492`	`1492`	`// note: using 0 specifically ensures that the result of overflowing is 0..0,`
`1493`	`1493`	// so that `get` doesn't simply return None for the wrong reason.
`1494`	`1494`	`bad: data[0 ..= usize::MAX];`
`1495`		`- message: "maximum usize";`
	`1495`	`+ message: "out of range";`
`1496`	`1496`	`}`
`1497`	`1497`
`1498`	`1498`	`in mod rangetoinclusive_overflow {`
`1499`	`1499`	`data: [0, 1];`
`1500`	`1500`
`1501`	`1501`	`bad: data[..= usize::MAX];`
`1502`		`- message: "maximum usize";`
	`1502`	`+ message: "out of range";`
`1503`	`1503`	`}`
`1504`	`1504`
`1505`	`1505`	`in mod boundpair_overflow_end {`