Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

What should we do about #[derive(...)] on #[repr(packed)] structs? #39696

Closed
solson opened this issue Feb 9, 2017 · 8 comments
Closed

What should we do about #[derive(...)] on #[repr(packed)] structs? #39696

solson opened this issue Feb 9, 2017 · 8 comments
Labels
C-bug Category: This is a bug. T-lang Relevant to the language team, which will review and decide on the PR/issue.

Comments

@solson
Copy link
Member

solson commented Feb 9, 2017
edited
Loading

The derived trait instances for packed structs tend to take references to the packed struct fields, which can cause undefined behavior (unaligned loads) and will be detected as unsafe once #27060 is fixed. So, code using these derives on packed structs will stop compiling.

See also #39682 where I fixed impls in a Rust test and #39683 where I fixed an impl in rustc.

Should we:

  1. Make derive detect #[repr(packed)] (can it?) and change the generated code.
  2. Generate the code in a way that always works for packed structs (I somewhat doubt this is possible).
  3. Do nothing. Let the users deal with manually implementing derivable traits for packed structs.
  4. Do something I didn't think of.

cc @Aatch @bluss @retep998 @rust-lang/compiler
@retep998
Copy link
Member

retep998 commented Feb 9, 2017
edited
Loading

Option 1 would probably be ideal. Option 3 would require a crater run and I think a lot of stuff would fail that. Option 2 would be kinda inefficient for all non-packed structs. I don't know what option 4 even is.

@solson solson mentioned this issue Feb 10, 2017
Closed
@durka
Copy link
Contributor

durka commented Feb 12, 2017

Can you give an example of the code that would be generated for a #[repr(packed)] struct under option (1)? I don't see why we couldn't do (2) by pretending every struct is packed, except that would probably be slower than necessary, confusing to the optimizer etc.

@solson
Copy link
Member Author

solson commented Feb 13, 2017
edited
Loading

The way to do (1) or (2) is to move every field into an aligned local and pass a reference to that local instead of a reference to the field. Unfortunately, this is only safe if all the fields are Copy.

It's maybe possible that it could work for non-Copy types by unsafely copying them into a local and mem::forgetting them before they drop...

@solson
Copy link
Member Author

solson commented Feb 13, 2017
edited
Loading

Those copies are potentially pretty bad implicit behavior if there is a really large field in the packed struct (say, a long array), which is an argument in favor of (3).

Another option is (3) plus a crates.io crate using custom derive for Clone/Debug/etc on packed structs.

@retep998
Copy link
Member

Every packed struct in winapi manually implements Copy/Clone, so this won't break winapi 0.2.8 nor 0.3, so I'm okay with option 3. Just be sure to do crater runs and have a long warning period.

@Mark-Simulacrum Mark-Simulacrum added the T-lang Relevant to the language team, which will review and decide on the PR/issue. label May 22, 2017
@Mark-Simulacrum Mark-Simulacrum added the C-bug Category: This is a bug. label Jul 27, 2017
@karcherm karcherm mentioned this issue Oct 24, 2017
Closed
@glaubitz glaubitz mentioned this issue Nov 1, 2017
Closed
glaubitz added a commit to glaubitz/rust that referenced this issue Nov 1, 2017
@glaubitz
libsyntax_pos: Don't use packed attribute for Span on sparc64/v9
d4745f8 
Due the limitation that #[derive(...)] on #[repr(packed)] structs
does not guarantee proper alignment of the compiler-generated
impls is not guaranteed (rust-lang#39696), the change in rust-lang#44646 to compress
Spans results in the compiler generating code with unaligned access.

Until rust-lang#39696 has been fixed, the issue can be worked around by
not using the packed attribute on sparc64 and sparcv9 on the
Span struct.

Fixes: rust-lang#45509
@nikomatsakis
Copy link
Contributor

nikomatsakis commented Nov 1, 2017
edited
Loading

I think we should make it very easy to do derives on packed, copy structs. There is a bit of a performance footgun to copying into a local variable, but that won't apply to 99% of the structs -- it's a shame to make people write out the impls by hand just because of that.

I could imagine having some "flag" that we pass to derive (e.g., #[derive(PartialEq(copy)]) to explicitly request the behavior, but I think my real preference would be to pursue the idea of a lint that warns against undesirable implicit copies, described in #45683, which could then trigger and warn you when some big field is getting copied just to compare equality.

(Also, one great thing about the copy solution is that I suspect it greatly mitigates the backwards compat risk here.)

@MartinHusemann
Copy link
Contributor

Option 1a: detect #[repr(packed)] and error out on #[derive(...)] from them not implementing manual Copy/Clone?
Is there actually a good stylistic reason to ever use that? Hiding the potential cost and making compiler magic just deal sounds dangerous to me.

@solson
Copy link
Member Author

solson commented Mar 27, 2018

I'm going to close this in favor of #46043. There is already now some handling of this problem in rustc.

@solson solson closed this as completed Mar 27, 2018
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
C-bug Category: This is a bug. T-lang Relevant to the language team, which will review and decide on the PR/issue.
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
6 participants
@solson @durka @nikomatsakis @retep998 @Mark-Simulacrum @MartinHusemann