Make function pointer types look like borrowed pointer types for forwards compatability #883
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,130 @@ | ||
| - Feature Name: explicit_fun_ptr | ||
| - Start Date: 2015-2-17 | ||
| - RFC PR: (leave this empty) | ||
| - Rust Issue: (leave this empty) | ||
|
|
||
| # Summary | ||
|
|
||
| It is likely that Rust will want to someday have a notion of an unboxed function type to be used | ||
| with custom pointer types.<sup>1</sup> Ideally then today's function pointers would become | ||
| `&'static`s of functions. But this is a breaking syntactic change, and unboxed functions can | ||
| probably not be exposed by 1.0. This RFC proposals making the needed breaking changes now, so | ||
| unboxed functions can be added---and function pointers turned to borrowed pointers---all backwards | ||
| compatibly in the future. | ||
|
|
||
| # Motivation | ||
|
|
||
| Currently, functions have statics lifetimes, and function pointers act like `&'static`s. This fits | ||
| common case where all functions are either statically linked or dynamic linked in a transparent | ||
| fashion. | ||
|
|
||
| When more manually invoking the loader or JIT-compiling, however, functions with non-static | ||
| lifetimes arise as function are dynamically creatable and destroyable like any value of a "normal" | ||
| type. As such, it would be nice to have all the machinery Rust offers (lifetimes, ownership, etc) | ||
| available for functions too. | ||
|
|
||
| A nice way to enable all that machinery is add actual "unboxed" function types, unlike the | ||
| function-ptr types that currently exist. That ways the whole menagerie of parameterized pointer | ||
| types are available for use with functions to generate many types of function pointers. To give some | ||
| examples of the possibilities, `Arc` can be used ARC to unload libraries or free JITed code, or, as | ||
| @eddyb came up with, (unsafe to deref) `*const` pointers to functions could replace unsafe function | ||
| pointers. | ||
|
|
||
| Adding unboxed function types begs the questions of what would happen to the current function | ||
| pointers were that route taken. Since they act just like immutable borrowed static pointers to | ||
| functions, it would be nice if they became that in actuality, lest two ways to do the same thing be | ||
| introduced so deeply in the language. Unfortunately, combining the two requires a breaking syntactic | ||
| change. There are many details that need to be resolved to support unboxed function types, plus | ||
| probably a good deal of implementation work, so it is probably not realistic to try to do this | ||
| before 1.0. Note, while it is tempting to use DST for this, but unfortunately that would make | ||
| function pointers fat, and moreover the sizes of functions are not in-general known dynamically | ||
| anyway (c.f. foreign functions). | ||
|
|
||
| So if this requires a breaking change to make nice, yet is too big to do before 1.0, what can be | ||
| done? My suggestion is simply to make just the breaking changes now, and leave the rest for later: | ||
| change the syntax of function pointer types to make clear they act like `&'statics`, and make it so | ||
| that only "borrowed functions" coerce to function pointers. This doesn't force any semantic changes | ||
| in the future, but opens to door to reusing `fn(...)...` for unboxed functions by allowing function | ||
| pointers to silently become actual `&statics` if/when function types are added in the | ||
| future. Meanwhile Rust, while slightly less ergonomic---function pointers are quite rare, is more | ||
| forthright about its current expressiveness today. | ||
|
|
||
| # Detailed design | ||
|
|
||
| 1. Change the syntax of function pointer types from | ||
|
|
||
| ```rust | ||
| ('extern' STRING_LIT?)? 'fn' '(' (IDEN ':' TYPE (',' IDEN ':' TYPE)* ','?)? ')' ('->' TYPE)? | ||
| ``` | ||
|
|
||
| to | ||
|
|
||
| ```rust | ||
| '&' '\'static' ('extern' STRING_LIT?)? 'fn' '(' (IDEN ':' TYPE (',' IDEN ':' TYPE)* ','?)? ')' ('->' TYPE)? | ||
| ``` | ||
|
|
||
| Like slices before DST, the `fn(...) ...` itself will not denote a type on its own and need not | ||
| even parse. | ||
|
|
||
| In the future, `fn(...) ...` can be made legal syntax and given semantics, in which case the | ||
| current syntax would no longer be its own grammatical production but remain valid, and actually | ||
| denote the type of a static, immutable borrowed pointer to a function. | ||
|
|
||
|
|
||
| 2. Change the coercion rules so that values of the secret function types to not coerce to function | ||
| pointers, but values of immutably borrowed secret function types do instead. | ||
|
|
||
| Just as today, these secret function types won't have a surface syntax. This change however | ||
| brings the coercion rules for functions in line with that for DSTs, and will prevent what would | ||
| be a much more auto-referencing if the types of functions were exposed in the | ||
| future. [Thanks @P1start for this idea.] | ||
|
|
||
| ## Examples | ||
|
|
||
| ```rust | ||
| fn f() { } | ||
| // f : an undenotable, (ideally) zero sized, type. Think of it as a function "proxy". | ||
| // &'static fn() is a function pointer type. | ||
| // fn() could *someday* be an unsized function type. | ||
| fn main() { | ||
| let g = f; // DEPENDS; should the proxy impls Copy? | ||
| let g = &f; // OK; g : &(an undenotable, (ideally) zero sized, type) | ||
| let g: &'static fn() = f; // ERROR: no auto-borrowing in Rust | ||
| let g: &'static fn() = &f; // OK; pointers to concrete function proxy coerce to pointers function | ||
| let g: &Fn() = &f; // OK; &magic -coerce-> &'static fn() -coerce-> &Fn trait object. Would necessitate dyanmic dispatch though. | ||
| let g: &Fn() = f; // DEPENDS; Should proxies themselves Fn? | ||
|
There was a problem hiding this comment. As @CloudiDust pointed out, this doesn't work (at least, not without introducing a whole new type of coercion), e.g. |
||
| } | ||
| ``` | ||
|
|
||
| # Drawbacks | ||
|
|
||
| - Temporary ergonomic loss | ||
| - May not extend language with borrowed function pointers in the future | ||
| - All non-static functions can only be created in unsafe ways, so this is just making a safe | ||
| interface to fake at the end of the day. | ||
| - But even if the function itself may not conform to the type, at least the backing executable | ||
| memory could potentially be managed 100% safely. | ||
|
|
||
| # Alternatives | ||
|
|
||
| - Seeing that in the short-term, all functions will have a static lifetime (i. e. can only | ||
| transmute a value to a function pointer and not a function). It might be perfectly safe to allow | ||
| `&fn(...) ...` with the normal lifetime inference rules. I hope this is the case, but as it | ||
| relies on more assumptions I put it as an alternative to stay safe. | ||
|
|
||
| - The above isn't true, but the lifetime inference could special-case-default to `static` with a | ||
| function pointer type. (Yuck!) | ||
|
|
||
| - `fn (...):'a ...` syntax. This would seem to doom us to a redundancy with borrowed pointers in | ||
| the future rather than prevent it, thought it does give us more expressiveness. Pre-RFC for this | ||
| at http://internals.rust-lang.org/t/pre-rfc-fn-lifetimes/472 . | ||
|
|
||
| # Unresolved questions | ||
|
|
||
| Perhaps I am mistaken and the semantics of `&'static`s and functions pointers differ. | ||
|
|
||
| Should the hidden function types impl `Fn` and `Copy`? I think this depends on whether we like to bind | ||
| function IDs to an proxy type in the future, or get rid of such proxy types. | ||
|
|
||
| [1]: https://github.com/rust-lang/rust/pull/19891 The implementation currently distinguishes between | ||
| function types and function pointer types, but this is not really exposed as part of the language. | ||
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
What does "can be used ARC" mean?