juntyr
diff --git a/‎rust-cuda-derive/src/rust_to_cuda/impl.rs‎
Lines changed: 2 additions & 2 deletions b/‎rust-cuda-derive/src/rust_to_cuda/impl.rs‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎src/host/mod.rs‎
Lines changed: 39 additions & 15 deletions b/‎src/host/mod.rs‎
Lines changed: 39 additions & 15 deletions
diff --git a/‎src/kernel/mod.rs‎
Lines changed: 6 additions & 6 deletions b/‎src/kernel/mod.rs‎
Lines changed: 6 additions & 6 deletions
diff --git a/‎src/kernel/param.rs‎
Lines changed: 12 additions & 12 deletions b/‎src/kernel/param.rs‎
Lines changed: 12 additions & 12 deletions
diff --git a/‎src/lend/impls/box.rs‎
Lines changed: 4 additions & 4 deletions b/‎src/lend/impls/box.rs‎
Lines changed: 4 additions & 4 deletions
diff --git a/‎src/lend/impls/boxed_slice.rs‎
Lines changed: 4 additions & 4 deletions b/‎src/lend/impls/boxed_slice.rs‎
Lines changed: 4 additions & 4 deletions
diff --git a/‎src/lend/impls/final.rs‎
Lines changed: 2 additions & 2 deletions b/‎src/lend/impls/final.rs‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎src/lend/impls/option.rs‎
Lines changed: 2 additions & 2 deletions b/‎src/lend/impls/option.rs‎
Lines changed: 2 additions & 2 deletions
@@ -191,7 +191,7 @@ pub fn rust_to_cuda_async_trait(
             unsafe fn borrow_async<'stream, CudaAllocType: #crate_path::alloc::CudaAlloc>(
                 &self,
                 alloc: CudaAllocType,
-                stream: &'stream #crate_path::host::Stream,
+                stream: #crate_path::host::Stream<'stream>,
             ) -> #crate_path::deps::rustacuda::error::CudaResult<(
                 #crate_path::utils::r#async::Async<
                     '_, 'stream,
@@ -219,7 +219,7 @@ pub fn rust_to_cuda_async_trait(
                 alloc: #crate_path::alloc::CombinedCudaAlloc<
                     Self::CudaAllocationAsync, CudaAllocType
                 >,
-                stream: &'stream #crate_path::host::Stream,
+                stream: #crate_path::host::Stream<'stream>,
             ) -> #crate_path::deps::rustacuda::error::CudaResult<(
                 #crate_path::utils::r#async::Async<
                     'a, 'stream,
 
@@ -25,30 +25,54 @@ use crate::{
     },
 };
 
+type InvariantLifetime<'brand> = PhantomData<fn(&'brand ()) -> &'brand ()>;
+
+#[derive(Copy, Clone)]
 #[repr(transparent)]
-pub struct Stream {
-    stream: rustacuda::stream::Stream,
+pub struct Stream<'stream> {
+    stream: &'stream rustacuda::stream::Stream,
+    _brand: InvariantLifetime<'stream>,
 }
 
-impl Deref for Stream {
+impl<'stream> Deref for Stream<'stream> {
     type Target = rustacuda::stream::Stream;
 
     fn deref(&self) -> &Self::Target {
-        &self.stream
+        self.stream
     }
 }
 
-impl Stream {
+impl<'stream> Stream<'stream> {
+    #[allow(clippy::needless_pass_by_ref_mut)]
+    /// Create a new uniquely branded [`Stream`], which can bind async
+    /// operations to the [`Stream`] that they are computed on.
+    ///
+    /// The uniqueness guarantees are provided by using branded types,
+    /// as inspired by the Ghost Cell paper by Yanovski, J., Dang, H.-H.,
+    /// Jung, R., and Dreyer, D.: <https://doi.org/10.1145/3473597>.
+    ///
+    /// # Examples
+    ///
+    /// The following example shows that two [`Stream`]'s with different
+    /// `'stream` lifetime brands cannot be used interchangeably.
+    ///
+    /// ```rust, compile_fail
+    /// use rust_cuda::host::Stream;
+    ///
+    /// fn check_same<'stream>(_stream_a: Stream<'stream>, _stream_b: Stream<'stream>) {}
+    ///
+    /// fn two_streams<'stream_a, 'stream_b>(stream_a: Stream<'stream_a>, stream_b: Stream<'stream_b>) {
+    ///     check_same(stream_a, stream_b);
+    /// }
+    /// ```
     pub fn with<O>(
         stream: &mut rustacuda::stream::Stream,
-        inner: impl for<'stream> FnOnce(&'stream Self) -> O,
+        inner: impl for<'new_stream> FnOnce(Stream<'new_stream>) -> O,
     ) -> O {
-        // Safety:
-        //  - Stream is a newtype wrapper around rustacuda::stream::Stream
-        //  - we forge a unique lifetime for a unique reference
-        let stream = unsafe { &*std::ptr::from_ref(stream).cast() };
-
-        inner(stream)
+        inner(Stream {
+            stream,
+            _brand: InvariantLifetime::default(),
+        })
     }
 }
 
@@ -219,7 +243,7 @@ impl<'a, T: PortableBitSemantics + TypeGraphLayout> HostAndDeviceMutRef<'a, T> {
     #[must_use]
     pub fn into_async<'b, 'stream>(
         self,
-        stream: &'stream Stream,
+        stream: Stream<'stream>,
     ) -> Async<'b, 'stream, HostAndDeviceMutRef<'b, T>, NoCompletion>
     where
         'a: 'b,
@@ -312,7 +336,7 @@ impl<'a, T: PortableBitSemantics + TypeGraphLayout> HostAndDeviceConstRef<'a, T>
     #[must_use]
     pub const fn as_async<'b, 'stream>(
         &'b self,
-        stream: &'stream Stream,
+        stream: Stream<'stream>,
     ) -> Async<'b, 'stream, HostAndDeviceConstRef<'b, T>, NoCompletion>
     where
         'a: 'b,
@@ -370,7 +394,7 @@ impl<'a, T: PortableBitSemantics + TypeGraphLayout> HostAndDeviceOwned<'a, T> {
     #[must_use]
     pub const fn into_async<'stream>(
         self,
-        stream: &'stream Stream,
+        stream: Stream<'stream>,
     ) -> Async<'a, 'stream, Self, NoCompletion> {
         Async::ready(self, stream)
     }
 
@@ -110,7 +110,7 @@ pub trait CudaKernelParameter: sealed::Sealed {
     #[allow(clippy::missing_errors_doc)] // FIXME
     fn with_new_async<'stream, 'param, O, E: From<rustacuda::error::CudaError>>(
         param: Self::SyncHostType,
-        stream: &'stream crate::host::Stream,
+        stream: crate::host::Stream<'stream>,
         inner: impl WithNewAsync<'stream, Self, O, E>,
     ) -> Result<O, E>
     where
@@ -156,7 +156,7 @@ pub trait CudaKernelParameter: sealed::Sealed {
 
 #[cfg(feature = "host")]
 pub struct Launcher<'stream, 'kernel, Kernel> {
-    pub stream: &'stream Stream,
+    pub stream: Stream<'stream>,
     pub kernel: &'kernel mut TypedPtxKernel<Kernel>,
     pub config: LaunchConfig,
 }
@@ -366,7 +366,7 @@ macro_rules! impl_typed_kernel_launch {
         #[allow(clippy::too_many_arguments)] // func is defined for <= 12 args
         pub fn $launch<'kernel, 'stream, $($T: CudaKernelParameter),*>(
             &'kernel mut self,
-            stream: &'stream Stream,
+            stream: Stream<'stream>,
             config: &LaunchConfig,
             $($arg: $T::SyncHostType),*
         ) -> CudaResult<()>
@@ -396,12 +396,12 @@ macro_rules! impl_typed_kernel_launch {
             $($T: CudaKernelParameter),*
         >(
             &'kernel mut self,
-            stream: &'stream Stream,
+            stream: Stream<'stream>,
             config: &LaunchConfig,
             $($arg: $T::SyncHostType,)*
             inner: impl FnOnce(
                 &'kernel mut Self,
-                &'stream Stream,
+                Stream<'stream>,
                 &LaunchConfig,
                 $($T::AsyncHostType<'stream, '_>),*
             ) -> Result<Ok, Err>,
@@ -419,7 +419,7 @@ macro_rules! impl_typed_kernel_launch {
         #[allow(clippy::too_many_arguments)] // func is defined for <= 12 args
         pub fn $launch_async<'kernel, 'stream, $($T: CudaKernelParameter),*>(
             &'kernel mut self,
-            stream: &'stream Stream,
+            stream: Stream<'stream>,
             config: &LaunchConfig,
             $($arg: $T::AsyncHostType<'stream, '_>),*
         ) -> CudaResult<crate::utils::r#async::Async<
 
@@ -81,7 +81,7 @@ impl<
     #[cfg(feature = "host")]
     fn with_new_async<'stream, 'b, O, E: From<rustacuda::error::CudaError>>(
         param: Self::SyncHostType,
-        _stream: &'stream crate::host::Stream,
+        _stream: crate::host::Stream<'stream>,
         inner: impl super::WithNewAsync<'stream, Self, O, E>,
     ) -> Result<O, E>
     where
@@ -167,7 +167,7 @@ impl<
     #[cfg(feature = "host")]
     fn with_new_async<'stream, 'b, O, E: From<rustacuda::error::CudaError>>(
         param: Self::SyncHostType,
-        stream: &'stream crate::host::Stream,
+        stream: crate::host::Stream<'stream>,
         inner: impl super::WithNewAsync<'stream, Self, O, E>,
     ) -> Result<O, E>
     where
@@ -251,7 +251,7 @@ impl<
     #[cfg(feature = "host")]
     fn with_new_async<'stream, 'b, O, E: From<rustacuda::error::CudaError>>(
         param: Self::SyncHostType,
-        stream: &'stream crate::host::Stream,
+        stream: crate::host::Stream<'stream>,
         inner: impl super::WithNewAsync<'stream, Self, O, E>,
     ) -> Result<O, E>
     where
@@ -373,7 +373,7 @@ impl<
     #[cfg(feature = "host")]
     fn with_new_async<'stream, 'b, O, E: From<rustacuda::error::CudaError>>(
         param: Self::SyncHostType,
-        stream: &'stream crate::host::Stream,
+        stream: crate::host::Stream<'stream>,
         inner: impl super::WithNewAsync<'stream, Self, O, E>,
     ) -> Result<O, E>
     where
@@ -509,7 +509,7 @@ impl<
     #[cfg(feature = "host")]
     fn with_new_async<'stream, 'b, O, E: From<rustacuda::error::CudaError>>(
         param: Self::SyncHostType,
-        stream: &'stream crate::host::Stream,
+        stream: crate::host::Stream<'stream>,
         inner: impl super::WithNewAsync<'stream, Self, O, E>,
     ) -> Result<O, E>
     where
@@ -595,7 +595,7 @@ impl<'a, T: Sync + RustToCuda> CudaKernelParameter for &'a DeepPerThreadBorrow<T
     #[cfg(feature = "host")]
     fn with_new_async<'stream, 'b, O, E: From<rustacuda::error::CudaError>>(
         param: Self::SyncHostType,
-        stream: &'stream crate::host::Stream,
+        stream: crate::host::Stream<'stream>,
         inner: impl super::WithNewAsync<'stream, Self, O, E>,
     ) -> Result<O, E>
     where
@@ -678,7 +678,7 @@ impl<'a, T: Sync + RustToCuda + SafeMutableAliasing> CudaKernelParameter
     #[cfg(feature = "host")]
     fn with_new_async<'stream, 'b, O, E: From<rustacuda::error::CudaError>>(
         param: Self::SyncHostType,
-        stream: &'stream crate::host::Stream,
+        stream: crate::host::Stream<'stream>,
         inner: impl super::WithNewAsync<'stream, Self, O, E>,
     ) -> Result<O, E>
     where
@@ -768,7 +768,7 @@ impl<
     #[cfg(feature = "host")]
     fn with_new_async<'stream, 'b, O, E: From<rustacuda::error::CudaError>>(
         param: Self::SyncHostType,
-        stream: &'stream crate::host::Stream,
+        stream: crate::host::Stream<'stream>,
         inner: impl super::WithNewAsync<'stream, Self, O, E>,
     ) -> Result<O, E>
     where
@@ -851,7 +851,7 @@ impl<'a, T: Sync + RustToCuda> CudaKernelParameter for &'a PtxJit<DeepPerThreadB
     #[cfg(feature = "host")]
     fn with_new_async<'stream, 'b, O, E: From<rustacuda::error::CudaError>>(
         param: Self::SyncHostType,
-        stream: &'stream crate::host::Stream,
+        stream: crate::host::Stream<'stream>,
         inner: impl super::WithNewAsync<'stream, Self, O, E>,
     ) -> Result<O, E>
     where
@@ -932,7 +932,7 @@ impl<'a, T: Sync + RustToCuda + SafeMutableAliasing> CudaKernelParameter
     #[cfg(feature = "host")]
     fn with_new_async<'stream, 'b, O, E: From<rustacuda::error::CudaError>>(
         param: Self::SyncHostType,
-        stream: &'stream crate::host::Stream,
+        stream: crate::host::Stream<'stream>,
         inner: impl super::WithNewAsync<'stream, Self, O, E>,
     ) -> Result<O, E>
     where
@@ -1058,7 +1058,7 @@ impl<'a, T: 'static> CudaKernelParameter for &'a mut crate::utils::shared::Threa
     #[cfg(feature = "host")]
     fn with_new_async<'stream, 'b, O, E: From<rustacuda::error::CudaError>>(
         param: Self::SyncHostType,
-        _stream: &'stream crate::host::Stream,
+        _stream: crate::host::Stream<'stream>,
         inner: impl super::WithNewAsync<'stream, Self, O, E>,
     ) -> Result<O, E>
     where
@@ -1135,7 +1135,7 @@ impl<'a, T: 'static + PortableBitSemantics + TypeGraphLayout> CudaKernelParamete
     #[cfg(feature = "host")]
     fn with_new_async<'stream, 'b, O, E: From<rustacuda::error::CudaError>>(
         param: Self::SyncHostType,
-        _stream: &'stream crate::host::Stream,
+        _stream: crate::host::Stream<'stream>,
         inner: impl super::WithNewAsync<'stream, Self, O, E>,
     ) -> Result<O, E>
     where
 
@@ -90,7 +90,7 @@ unsafe impl<T: PortableBitSemantics + TypeGraphLayout> RustToCudaAsync for Box<T
     unsafe fn borrow_async<'stream, A: CudaAlloc>(
         &self,
         alloc: A,
-        stream: &'stream crate::host::Stream,
+        stream: crate::host::Stream<'stream>,
     ) -> rustacuda::error::CudaResult<(
         Async<'_, 'stream, DeviceAccessible<Self::CudaRepresentation>>,
         CombinedCudaAlloc<Self::CudaAllocationAsync, A>,
@@ -113,7 +113,7 @@ unsafe impl<T: PortableBitSemantics + TypeGraphLayout> RustToCudaAsync for Box<T
         let mut device_box = CudaDropWrapper::from(DeviceBox::<
             DeviceCopyWithPortableBitSemantics<ManuallyDrop<T>>,
         >::uninitialized()?);
-        device_box.async_copy_from(&*locked_box, stream)?;
+        device_box.async_copy_from(&*locked_box, &stream)?;
 
         Ok((
             Async::pending(
@@ -131,7 +131,7 @@ unsafe impl<T: PortableBitSemantics + TypeGraphLayout> RustToCudaAsync for Box<T
     unsafe fn restore_async<'a, 'stream, A: CudaAlloc, O>(
         this: owning_ref::BoxRefMut<'a, O, Self>,
         alloc: CombinedCudaAlloc<Self::CudaAllocationAsync, A>,
-        stream: &'stream crate::host::Stream,
+        stream: crate::host::Stream<'stream>,
     ) -> CudaResult<(
         Async<'a, 'stream, owning_ref::BoxRefMut<'a, O, Self>, CompletionFnMut<'a, Self>>,
         A,
@@ -141,7 +141,7 @@ unsafe impl<T: PortableBitSemantics + TypeGraphLayout> RustToCudaAsync for Box<T
         let (alloc_front, alloc_tail) = alloc.split();
         let (mut locked_box, device_box) = alloc_front.split();
 
-        device_box.async_copy_to(&mut *locked_box, stream)?;
+        device_box.async_copy_to(&mut *locked_box, &stream)?;
 
         let r#async = crate::utils::r#async::Async::<_, CompletionFnMut<'a, Self>>::pending(
             this,
 
@@ -96,7 +96,7 @@ unsafe impl<T: PortableBitSemantics + TypeGraphLayout> RustToCudaAsync for Box<[
     unsafe fn borrow_async<'stream, A: CudaAlloc>(
         &self,
         alloc: A,
-        stream: &'stream crate::host::Stream,
+        stream: crate::host::Stream<'stream>,
     ) -> rustacuda::error::CudaResult<(
         Async<'_, 'stream, DeviceAccessible<Self::CudaRepresentation>>,
         CombinedCudaAlloc<Self::CudaAllocationAsync, A>,
@@ -120,7 +120,7 @@ unsafe impl<T: PortableBitSemantics + TypeGraphLayout> RustToCudaAsync for Box<[
         let mut device_buffer = CudaDropWrapper::from(DeviceBuffer::<
             DeviceCopyWithPortableBitSemantics<ManuallyDrop<T>>,
         >::uninitialized(self.len())?);
-        device_buffer.async_copy_from(&*locked_buffer, stream)?;
+        device_buffer.async_copy_from(&*locked_buffer, &stream)?;
 
         Ok((
             Async::pending(
@@ -140,7 +140,7 @@ unsafe impl<T: PortableBitSemantics + TypeGraphLayout> RustToCudaAsync for Box<[
     unsafe fn restore_async<'a, 'stream, A: CudaAlloc, O>(
         this: owning_ref::BoxRefMut<'a, O, Self>,
         alloc: CombinedCudaAlloc<Self::CudaAllocationAsync, A>,
-        stream: &'stream crate::host::Stream,
+        stream: crate::host::Stream<'stream>,
     ) -> CudaResult<(
         Async<'a, 'stream, owning_ref::BoxRefMut<'a, O, Self>, CompletionFnMut<'a, Self>>,
         A,
@@ -150,7 +150,7 @@ unsafe impl<T: PortableBitSemantics + TypeGraphLayout> RustToCudaAsync for Box<[
         let (alloc_front, alloc_tail) = alloc.split();
         let (mut locked_buffer, device_buffer) = alloc_front.split();
 
-        device_buffer.async_copy_to(&mut *locked_buffer, stream)?;
+        device_buffer.async_copy_to(&mut *locked_buffer, &stream)?;
 
         let r#async = crate::utils::r#async::Async::<_, CompletionFnMut<'a, Self>>::pending(
             this,
 
@@ -49,7 +49,7 @@ unsafe impl<T: RustToCudaAsync> RustToCudaAsync for Final<T> {
     unsafe fn borrow_async<'stream, A: crate::alloc::CudaAlloc>(
         &self,
         alloc: A,
-        stream: &'stream crate::host::Stream,
+        stream: crate::host::Stream<'stream>,
     ) -> rustacuda::error::CudaResult<(
         crate::utils::r#async::Async<'_, 'stream, DeviceAccessible<Self::CudaRepresentation>>,
         crate::alloc::CombinedCudaAlloc<Self::CudaAllocationAsync, A>,
@@ -76,7 +76,7 @@ unsafe impl<T: RustToCudaAsync> RustToCudaAsync for Final<T> {
     unsafe fn restore_async<'a, 'stream, A: crate::alloc::CudaAlloc, O>(
         this: owning_ref::BoxRefMut<'a, O, Self>,
         alloc: crate::alloc::CombinedCudaAlloc<Self::CudaAllocationAsync, A>,
-        stream: &'stream crate::host::Stream,
+        stream: crate::host::Stream<'stream>,
     ) -> rustacuda::error::CudaResult<(
         crate::utils::r#async::Async<
             'a,
 
@@ -89,7 +89,7 @@ unsafe impl<T: RustToCudaAsync> RustToCudaAsync for Option<T> {
     unsafe fn borrow_async<'stream, A: CudaAlloc>(
         &self,
         alloc: A,
-        stream: &'stream crate::host::Stream,
+        stream: crate::host::Stream<'stream>,
     ) -> CudaResult<(
         Async<'_, 'stream, DeviceAccessible<Self::CudaRepresentation>>,
         CombinedCudaAlloc<Self::CudaAllocationAsync, A>,
@@ -135,7 +135,7 @@ unsafe impl<T: RustToCudaAsync> RustToCudaAsync for Option<T> {
     unsafe fn restore_async<'a, 'stream, A: CudaAlloc, O>(
         mut this: owning_ref::BoxRefMut<'a, O, Self>,
         alloc: CombinedCudaAlloc<Self::CudaAllocationAsync, A>,
-        stream: &'stream crate::host::Stream,
+        stream: crate::host::Stream<'stream>,
     ) -> CudaResult<(
         Async<'a, 'stream, owning_ref::BoxRefMut<'a, O, Self>, CompletionFnMut<'a, Self>>,
         A,