unsized_fn_params should not accept types that don't have a dynamically fixed size (such as `extern` types) #115709

RalfJung · 2023-09-09T14:16:18Z

The following code should not be accepted:

#![feature(extern_types)]
#![feature(unsized_fn_params)]

extern {
    type E;
}

fn test(e: E) {}

fn calltest(e: Box<E>) {
    test(*e)
}

In terms of MIR semantics I think we want to view a function call as making copies of its arguments. This requires at least dynamically determining the size of the argument, and therefore we shouldn't accept extern type arguments.

I was extremely surprised earlier today when I learned that this code is getting accepted.

There is no generic bound to distinguish extern types from other unsized types, so the options we have are

require the unsized type to be concrete enough that we can determine its tail, and ensure it is not extern
raise the error during monomorphization / codegen

Trying to actually build any such code will lead to ICEs such as

error: internal compiler error: compiler/rustc_codegen_llvm/src/type_of.rs:306:13: TyAndLayout::scalar_pair_element_llty(TyAndLayout { ty: *mut E, layout: Layout { size: Size(8 bytes), align: AbiAndPrefAlign { abi: Align(8 bytes), pref: Align(8 bytes) }, abi: Scalar(Initialized { value: Pointer(AddressSpace(0)), valid_range: 0..=18446744073709551615 }), fields: Primitive, largest_niche: None, variants: Single { index: 0 }, max_repr_align: None, unadjusted_abi_align: Align(8 bytes) } }): not applicable

or

thread 'rustc' panicked at compiler/rustc_codegen_llvm/src/builder.rs:491:9:
assertion `left == right` failed
  left: false
 right: true

The text was updated successfully, but these errors were encountered:

SNCPlay42 · 2023-09-09T15:46:46Z

See also #79409.

There is no generic bound to distinguish extern types from other unsized types

rust-lang/rfcs#2984 and rust-lang/rfcs#3396 are open RFCs that attempt to address this.

RalfJung · 2023-09-09T21:09:31Z

Unfortunately just rejecting locals/arguments that are not known to be dyn-sized as a MIR pass does not work: the forget_unsized function in the standard library would stop compiling.

So currently something post-monomorphization is the only option. Is there even some place that check could be put without being duplicated across all codegen backends (and Miri)?

move required_consts check to general post-mono-check function I was hoping this would simplify the code. That didn't entirely happen, but I still think it could be useful to have a single place for the "required const" check -- and this does simplify some code in codegen, where the const-eval functions no longer have to return a `Result`. Also this is in preparation for another post-mono check that will be needed for (the current hackfix for) rust-lang#115709: ensuring that all locals are dynamically sized. I didn't expect this to change diagnostics, but the changes seem either harmless (for the cycle errors) or improvements (where more spans are shown when something goes wrong in a constant). r? `@oli-obk`

move required_consts check to general post-mono-check function This factors some code that is common between the interpreter and the codegen backends into shared helper functions. Also as a side-effect the interpreter now uses the same `eval` functions as everyone else to get the evaluated MIR constants. Also this is in preparation for another post-mono check that will be needed for (the current hackfix for) rust-lang#115709: ensuring that all locals are dynamically sized. I didn't expect this to change diagnostics, but it's just cycle errors that change. r? `@oli-obk`

move required_consts check to general post-mono-check function This factors some code that is common between the interpreter and the codegen backends into shared helper functions. Also as a side-effect the interpreter now uses the same `eval` functions as everyone else to get the evaluated MIR constants. Also this is in preparation for another post-mono check that will be needed for (the current hackfix for) rust-lang/rust#115709: ensuring that all locals are dynamically sized. I didn't expect this to change diagnostics, but it's just cycle errors that change. r? `@oli-obk`

detect dyn-unsized arguments before they cause ICEs "Fixes" rust-lang#115709 in a crude way, with a post-mono check. This is entirely caused by us not having a trait to express "type can have its size determined at runtime".

move required_consts check to general post-mono-check function This factors some code that is common between the interpreter and the codegen backends into shared helper functions. Also as a side-effect the interpreter now uses the same `eval` functions as everyone else to get the evaluated MIR constants. Also this is in preparation for another post-mono check that will be needed for (the current hackfix for) rust-lang/rust#115709: ensuring that all locals are dynamically sized. I didn't expect this to change diagnostics, but it's just cycle errors that change. r? `@oli-obk`

RalfJung · 2023-12-02T14:18:41Z

In #116115 we agreed that this is not worth a post-mono check; this needs proper design to find a way that makes this work without a post-mono check. So for now we are living with the ICEs.

…iler-errors more targeted errors when extern types end up in places they should not Cc rust-lang#115709 -- this does not fix that bug but it makes the panics less obscure and makes it more clear that this is a deeper issue than just a little codegen oversight. (In rust-lang#116115 we decided we'd stick to causing ICEs here for now, rather than nicer errors. We can't currently show any errors pre-mono and probably we don't want post-mono checks when this gets stabilized anyway.)

Rollup merge of rust-lang#118551 - RalfJung:extern-types-bugs, r=compiler-errors more targeted errors when extern types end up in places they should not Cc rust-lang#115709 -- this does not fix that bug but it makes the panics less obscure and makes it more clear that this is a deeper issue than just a little codegen oversight. (In rust-lang#116115 we decided we'd stick to causing ICEs here for now, rather than nicer errors. We can't currently show any errors pre-mono and probably we don't want post-mono checks when this gets stabilized anyway.)

more targeted errors when extern types end up in places they should not Cc rust-lang/rust#115709 -- this does not fix that bug but it makes the panics less obscure and makes it more clear that this is a deeper issue than just a little codegen oversight. (In rust-lang/rust#116115 we decided we'd stick to causing ICEs here for now, rather than nicer errors. We can't currently show any errors pre-mono and probably we don't want post-mono checks when this gets stabilized anyway.)

move required_consts check to general post-mono-check function This factors some code that is common between the interpreter and the codegen backends into shared helper functions. Also as a side-effect the interpreter now uses the same `eval` functions as everyone else to get the evaluated MIR constants. Also this is in preparation for another post-mono check that will be needed for (the current hackfix for) rust-lang/rust#115709: ensuring that all locals are dynamically sized. I didn't expect this to change diagnostics, but it's just cycle errors that change. r? `@oli-obk`

RalfJung added the F-unsized_fn_params `#![feature(unsized_fn_params)]` label Sep 9, 2023

rustbot added the needs-triage This issue may need triage. Remove it if it has been sufficiently triaged. label Sep 9, 2023

RalfJung mentioned this issue Sep 9, 2023

Tracking issue for RFC #1909: Unsized Rvalues (unsized_locals, unsized_fn_params) #48055

Open

13 tasks

RalfJung added the F-extern_types `#![feature(extern_types)]` label Sep 9, 2023

RalfJung mentioned this issue Sep 9, 2023

Tracking issue for RFC 1861: Extern types #43467

Open

7 tasks

RalfJung mentioned this issue Sep 9, 2023

improve PassMode docs #115654

Merged

RalfJung changed the title ~~unsized_fn_params should not accept types that don't have a dynamically fixed size~~ unsized_fn_params should not accept types that don't have a dynamically fixed size (such as extern types) Sep 10, 2023

RalfJung mentioned this issue Sep 11, 2023

move required_consts check to general post-mono-check function #115748

Merged

Noratrieb added T-compiler Relevant to the compiler team, which will review and decide on the PR/issue. and removed needs-triage This issue may need triage. Remove it if it has been sufficiently triaged. labels Sep 19, 2023

RalfJung mentioned this issue Sep 24, 2023

detect dyn-unsized arguments before they cause ICEs #116115

Closed

RalfJung mentioned this issue Dec 2, 2023

more targeted errors when extern types end up in places they should not #118551

Merged

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

unsized_fn_params should not accept types that don't have a dynamically fixed size (such as `extern` types) #115709

unsized_fn_params should not accept types that don't have a dynamically fixed size (such as `extern` types) #115709

RalfJung commented Sep 9, 2023 •

edited

Loading

SNCPlay42 commented Sep 9, 2023 •

edited

Loading

RalfJung commented Sep 9, 2023

RalfJung commented Dec 2, 2023

unsized_fn_params should not accept types that don't have a dynamically fixed size (such as extern types) #115709

unsized_fn_params should not accept types that don't have a dynamically fixed size (such as extern types) #115709

Comments

RalfJung commented Sep 9, 2023 • edited Loading

SNCPlay42 commented Sep 9, 2023 • edited Loading

RalfJung commented Sep 9, 2023

RalfJung commented Dec 2, 2023

unsized_fn_params should not accept types that don't have a dynamically fixed size (such as `extern` types) #115709

unsized_fn_params should not accept types that don't have a dynamically fixed size (such as `extern` types) #115709

RalfJung commented Sep 9, 2023 •

edited

Loading

SNCPlay42 commented Sep 9, 2023 •

edited

Loading