←back to thread

Tree Borrows

(plf.inf.ethz.ch)

565 points zdw | 1 comments | 09 Jul 25 14:40 UTC | HN request time: 0s | source

Show context

wavemode ◴[09 Jul 25 15:17 UTC] No.44511091[source]▶

>>44510600 (OP) #

From the paper:

> The problem with unsafe code is that it can do things like this:

    fn main() {
        let mut x = 42;
        let ptr = &mut x as *mut i32;
        let val = unsafe { write_both(&mut *ptr, &mut *ptr) };
        println!("{val}");
    }

No it can't? Using pointers to coexist multiple mutable references to the same variable is undefined behavior. Unless I'm just misunderstanding the point they're trying to make here.

replies(6): >>44511182 #>>44511227 #>>44511321 #>>44511369 #>>44511392 #>>44512352 #

ralfj ◴[09 Jul 25 15:37 UTC] No.44511392[source]▶

> Using pointers to coexist multiple mutable references to the same variable is undefined behavior.

Yes, but which exact rule does it violate? What is the exact definition that says that it is UB? Tree Borrows is a proposal for exactly such a definition.

"code can do things like this" here means "you can write this code and compile it and run it and it will do something, and unless we have something like Tree Borrows we have no argument for why there would be anything wrong with this code".

You seem to have already accepted that we need something like Tree Borrows (i.e., we should say code like this is UB). This part of the paper is arguing why we need something like Tree Borrows. :)

replies(1): >>44518867 #

1. ◴[10 Jul 25 08:58 UTC] No.44518867[source]▶