pub struct CStr { /* private fields */ }Expand description
Representation of a borrowed C string.
This type represents a borrowed reference to a nul-terminated
array of bytes. It can be constructed safely from a &[u8]
slice, or unsafely from a raw *const c_char. It can then be
converted to a Rust &str by performing UTF-8 validation, or
into an owned CString.
&CStr is to CString as &str is to String: the former
in each pair are borrowed references; the latter are owned
strings.
Note that this structure is not repr(C) and is not recommended to be
placed in the signatures of FFI functions. Instead, safe wrappers of FFI
functions may leverage the unsafe CStr::from_ptr constructor to provide
a safe interface to other consumers.
Examples
Inspecting a foreign C string:
use std::ffi::CStr;
use std::os::raw::c_char;
extern "C" { fn my_string() -> *const c_char; }
unsafe {
let slice = CStr::from_ptr(my_string());
println!("string buffer size without nul terminator: {}", slice.to_bytes().len());
}Passing a Rust-originating C string:
use std::ffi::{CString, CStr};
use std::os::raw::c_char;
fn work(data: &CStr) {
extern "C" { fn work_with(data: *const c_char); }
unsafe { work_with(data.as_ptr()) }
}
let s = CString::new("data data data data").expect("CString::new failed");
work(&s);Converting a foreign C string into a Rust String:
use std::ffi::CStr;
use std::os::raw::c_char;
extern "C" { fn my_string() -> *const c_char; }
fn my_string_safe() -> String {
unsafe {
CStr::from_ptr(my_string()).to_string_lossy().into_owned()
}
}
println!("string: {}", my_string_safe());Implementations
impl CStr
source
impl CStr
sourcepub unsafe fn from_ptr<'a>(ptr: *const c_char) -> &'a CStr
1.0.0 · source
pub unsafe fn from_ptr<'a>(ptr: *const c_char) -> &'a CStr
1.0.0 · sourceWraps a raw C string with a safe C string wrapper.
This function will wrap the provided ptr with a CStr wrapper, which
allows inspection and interoperation of non-owned C strings. The total
size of the raw C string must be smaller than isize::MAX bytes
in memory due to calling the slice::from_raw_parts function.
This method is unsafe for a number of reasons:
- There is no guarantee to the validity of
ptr. - The returned lifetime is not guaranteed to be the actual lifetime of
ptr. - There is no guarantee that the memory pointed to by
ptrcontains a valid nul terminator byte at the end of the string. - It is not guaranteed that the memory pointed by
ptrwon’t change before theCStrhas been destroyed.
Note: This operation is intended to be a 0-cost cast but it is currently implemented with an up-front calculation of the length of the string. This is not guaranteed to always be the case.
Examples
use std::ffi::CStr;
use std::os::raw::c_char;
extern "C" {
fn my_string() -> *const c_char;
}
unsafe {
let slice = CStr::from_ptr(my_string());
println!("string returned: {}", slice.to_str().unwrap());
}pub fn from_bytes_until_nul(
bytes: &[u8]
) -> Result<&CStr, FromBytesUntilNulError>
source
pub fn from_bytes_until_nul(
bytes: &[u8]
) -> Result<&CStr, FromBytesUntilNulError>
sourceCreates a C string wrapper from a byte slice.
This method will create a CStr from any byte slice that contains at
least one nul byte. The caller does not need to know or specify where
the nul byte is located.
If the first byte is a nul character, this method will return an
empty CStr. If multiple nul characters are present, the CStr will
end at the first one.
If the slice only has a single nul byte at the end, this method is
equivalent to CStr::from_bytes_with_nul.
Examples
#![feature(cstr_from_bytes_until_nul)]
use std::ffi::CStr;
let mut buffer = [0u8; 16];
unsafe {
// Here we might call an unsafe C function that writes a string
// into the buffer.
let buf_ptr = buffer.as_mut_ptr();
buf_ptr.write_bytes(b'A', 8);
}
// Attempt to extract a C nul-terminated string from the buffer.
let c_str = CStr::from_bytes_until_nul(&buffer[..]).unwrap();
assert_eq!(c_str.to_str().unwrap(), "AAAAAAAA");pub fn from_bytes_with_nul(bytes: &[u8]) -> Result<&Self, FromBytesWithNulError>
1.10.0 · source
pub fn from_bytes_with_nul(bytes: &[u8]) -> Result<&Self, FromBytesWithNulError>
1.10.0 · sourceCreates a C string wrapper from a byte slice.
This function will cast the provided bytes to a CStr
wrapper after ensuring that the byte slice is nul-terminated
and does not contain any interior nul bytes.
If the nul byte may not be at the end,
CStr::from_bytes_until_nul can be used instead.
Examples
use std::ffi::CStr;
let cstr = CStr::from_bytes_with_nul(b"hello\0");
assert!(cstr.is_ok());Creating a CStr without a trailing nul terminator is an error:
use std::ffi::CStr;
let cstr = CStr::from_bytes_with_nul(b"hello");
assert!(cstr.is_err());Creating a CStr with an interior nul byte is an error:
use std::ffi::CStr;
let cstr = CStr::from_bytes_with_nul(b"he\0llo\0");
assert!(cstr.is_err());pub const unsafe fn from_bytes_with_nul_unchecked(bytes: &[u8]) -> &CStr
1.10.0 (const: 1.59.0) · source
pub const unsafe fn from_bytes_with_nul_unchecked(bytes: &[u8]) -> &CStr
1.10.0 (const: 1.59.0) · sourceUnsafely creates a C string wrapper from a byte slice.
This function will cast the provided bytes to a CStr wrapper without
performing any sanity checks. The provided slice must be nul-terminated
and not contain any interior nul bytes.
Examples
use std::ffi::{CStr, CString};
unsafe {
let cstring = CString::new("hello").expect("CString::new failed");
let cstr = CStr::from_bytes_with_nul_unchecked(cstring.to_bytes_with_nul());
assert_eq!(cstr, &*cstring);
}pub const fn as_ptr(&self) -> *const c_char
1.0.0 (const: 1.32.0) · source
pub const fn as_ptr(&self) -> *const c_char
1.0.0 (const: 1.32.0) · sourceReturns the inner pointer to this C string.
The returned pointer will be valid for as long as self is, and points
to a contiguous region of memory terminated with a 0 byte to represent
the end of the string.
WARNING
The returned pointer is read-only; writing to it (including passing it to C code that writes to it) causes undefined behavior.
It is your responsibility to make sure that the underlying memory is not
freed too early. For example, the following code will cause undefined
behavior when ptr is used inside the unsafe block:
use std::ffi::CString;
let ptr = CString::new("Hello").expect("CString::new failed").as_ptr();
unsafe {
// `ptr` is dangling
*ptr;
}This happens because the pointer returned by as_ptr does not carry any
lifetime information and the CString is deallocated immediately after
the CString::new("Hello").expect("CString::new failed").as_ptr()
expression is evaluated.
To fix the problem, bind the CString to a local variable:
use std::ffi::CString;
let hello = CString::new("Hello").expect("CString::new failed");
let ptr = hello.as_ptr();
unsafe {
// `ptr` is valid because `hello` is in scope
*ptr;
}This way, the lifetime of the CString in hello encompasses
the lifetime of ptr and the unsafe block.
pub fn to_bytes(&self) -> &[u8]
1.0.0 · source
pub fn to_bytes(&self) -> &[u8]
1.0.0 · sourceConverts this C string to a byte slice.
The returned slice will not contain the trailing nul terminator that this C string has.
Note: This method is currently implemented as a constant-time cast, but it is planned to alter its definition in the future to perform the length calculation whenever this method is called.
Examples
use std::ffi::CStr;
let cstr = CStr::from_bytes_with_nul(b"foo\0").expect("CStr::from_bytes_with_nul failed");
assert_eq!(cstr.to_bytes(), b"foo");pub fn to_bytes_with_nul(&self) -> &[u8]
1.0.0 · source
pub fn to_bytes_with_nul(&self) -> &[u8]
1.0.0 · sourceConverts this C string to a byte slice containing the trailing 0 byte.
This function is the equivalent of CStr::to_bytes except that it
will retain the trailing nul terminator instead of chopping it off.
Note: This method is currently implemented as a 0-cost cast, but it is planned to alter its definition in the future to perform the length calculation whenever this method is called.
Examples
use std::ffi::CStr;
let cstr = CStr::from_bytes_with_nul(b"foo\0").expect("CStr::from_bytes_with_nul failed");
assert_eq!(cstr.to_bytes_with_nul(), b"foo\0");pub fn to_str(&self) -> Result<&str, Utf8Error>
1.4.0 · source
pub fn to_str(&self) -> Result<&str, Utf8Error>
1.4.0 · sourceYields a &str slice if the CStr contains valid UTF-8.
If the contents of the CStr are valid UTF-8 data, this
function will return the corresponding &str slice. Otherwise,
it will return an error with details of where UTF-8 validation failed.
Examples
use std::ffi::CStr;
let cstr = CStr::from_bytes_with_nul(b"foo\0").expect("CStr::from_bytes_with_nul failed");
assert_eq!(cstr.to_str(), Ok("foo"));Trait Implementations
impl Ord for CStr
1.0.0 · source
impl Ord for CStr
1.0.0 · sourceimpl PartialOrd<CStr> for CStr
1.0.0 · source
impl PartialOrd<CStr> for CStr
1.0.0 · sourcefn partial_cmp(&self, other: &CStr) -> Option<Ordering>
source
fn partial_cmp(&self, other: &CStr) -> Option<Ordering>
sourceThis method returns an ordering between self and other values if one exists. Read more
fn lt(&self, other: &Rhs) -> bool
1.0.0 · source
fn lt(&self, other: &Rhs) -> bool
1.0.0 · sourceThis method tests less than (for self and other) and is used by the < operator. Read more
fn le(&self, other: &Rhs) -> bool
1.0.0 · source
fn le(&self, other: &Rhs) -> bool
1.0.0 · sourceThis method tests less than or equal to (for self and other) and is used by the <=
operator. Read more