Clarify Semantics of Assignment in MIR #97567
Conversation
rustbot
added
the
T-compiler
|
Some changes occured to the CTFE / Miri engine cc @rust-lang/miri |
rust-highfive
added
the
S-waiting-on-review
|
☔ The latest upstream changes (presumably #97582) made this pull request unmergeable. Please resolve the merge conflicts. |
| // Avoid recomputing the layout | ||
| let op = self.eval_operand(operand, Some(dest.layout))?; | ||
| self.copy_op(&op, &dest)?; | ||
| } | ||
|
|
||
| BinaryOp(bin_op, box (ref left, ref right)) => { | ||
| let layout = binop_left_homogeneous(bin_op).then_some(dest.layout); | ||
| let left = self.read_immediate(&self.eval_operand(left, layout)?)?; | ||
| let left = self.read_immediate(&self.eval_operand(left, None)?)?; |
There was a problem hiding this comment.
This needs careful benchmarking; the perf gain from that optimization was quite noticeable in the past.
| // FIXME: Here, in `Aggregate`, and in `Repeat`, the various `dest = eval_place`s | ||
| // should also be retagging the pointer to ensure that it does not overlap with the | ||
| // RHS. | ||
| let dest = self.eval_place(place)?; | ||
| // Avoid recomputing the layout | ||
| let op = self.eval_operand(operand, Some(dest.layout))?; | ||
| self.copy_op(&op, &dest)?; |
There was a problem hiding this comment.
Note that copy_op makes a non-overlapping assumption. Is that still what you want?
| @@ -157,26 +147,29 @@ impl<'mir, 'tcx: 'mir, M: Machine<'mir, 'tcx>> InterpCx<'mir, 'tcx, M> { | |||
| rvalue: &mir::Rvalue<'tcx>, | |||
| place: mir::Place<'tcx>, | |||
| ) -> InterpResult<'tcx> { | |||
| let dest = self.eval_place(place)?; | |||
There was a problem hiding this comment.
I don't like how this makes the evaluation of the LHS and RHS all tangled up. For some rvalues you do the LHS first, for some the LHS; it all looks like a big mess.
IMO we should just stick to left-to-right evaluation order. I don't see the benefit from changing this, and it surely has a significant complexity cost.
I am not concerned about people reasoning about the semantics. I am concerned about optimizations that replace one So, I continue to hold my objection here. |
| /// not overlap with any memory computed as a part of the `Rvalue`. Relatedly, the evaluation | ||
| /// order is `compute lhs place -> compute rhs value -> store value in place`. The plan is for | ||
| /// the rule about the evaluation order to justify the rule about the non-overlappingness via | ||
| /// the aliasing model. |
There was a problem hiding this comment.
Oh wait, having the eval order depend on the rvalue is deliberate? That thought didn't even occur to me when reading the step.rs changes.
I think this is a very bad idea. It makes justifying rvalue transformations a total disaster.
This is a crucial part of the plan though. So I think we should have a plan for how to do this before changing anything here. We can sketch it out in MiniRust first, that should be easier. (And that will also reinforce my dislike for pattern-matching on the RHS expression to determine the evaluation order and overlap condition, since it will show very clearly how non-compositional that is.) I hope to add the retagging APIs there next week, but it might also have to wait until the end of the month. |
|
FWIW I also feel like we are getting close to the point where we really cannot progress without being able to directly write MIR for our tests, and feed that to particular transformations (and Miri). Just imagine LLVM without the ability to write LLVM IR testcases -- it'd be a disaster. |
|
Seems this is waiting on author to incorporate suggestions. Feel free to request a review when ready, thanks! @rustbot author |
rustbot
added
S-waiting-on-author
|
Yeah. I'm going to try and investigate what we need to change to just fully get the "left to right" evaluation order in all cases |
|
I'm closing this in favor of having consistent semantics anywhere, will try and make that change in the near-ish future |
This PR clarifies the semantics of assignments in MIR to match what I suggested here (cc #68364).
rustc_middleto handle these semantics soundly.InstCombineto be sound in the face of these semantics. I was not able to add a test for this, because without destprop or a similar function pass, there are too many temporaries to set this off. I briefly went through all the other passes, and I did not find anything that might not comply with this (except for dest prop, but that's being fixed elsewhere).@RalfJung expressed some concerns that these semantics might be too subtle/footgunny, and we should instead have an explicit flag on
StatementKind::Assignthat indicates which version of the semantics the statement gets. This is a tradeoff - it would indeed simplify things for people trying to reason about the semantics. However, it would also be a larger refactor and we'd have to decide whether/how not to support it in borrowck, support it in codegen, etc. Seeing that at least for now the amount of complexity this introduces seems to be minimal, I am personally against such a change until we have more evidence of this causing actual problems.r? @oli-obk