Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/steveklabnik/uniq_ptr_problem

Unsafety with uniq_ptr in C++
https://github.com/steveklabnik/uniq_ptr_problem

Last synced: 4 days ago
JSON representation

Unsafety with uniq_ptr in C++

Host: GitHub
URL: https://github.com/steveklabnik/uniq_ptr_problem
Owner: steveklabnik
Created: 2014-12-15T16:39:11.000Z (about 10 years ago)
Default Branch: gh-pages
Last Pushed: 2016-12-24T17:27:53.000Z (almost 8 years ago)
Last Synced: 2024-11-01T01:24:41.748Z (about 2 months ago)
Language: HTML
Homepage: http://steveklabnik.github.io/uniq_ptr_problem/
Size: 15.6 KB
Stars: 6
Watchers: 2
Forks: 0
Open Issues: 0
Metadata Files:
- Readme: README.md

Awesome Lists containing this project

README

        # Unique Pointer Problems

When discussing Rust and safety, a common refrain is that C++ smart pointers

do the same thing that Rust's do, and therefore, it's not an advantage for

Rust.

While it's true that C++'s smart pointers are a huge leap forward, they

aren't actually safe in all cases. I always forget what the exact cases

are, so I made this page to remind myself.

```cpp

#include 

#include 

using namespace std;

int main ()

{

    unique_ptr orig(new int(5));

    cout << *orig << endl;

    auto stolen = move(orig);

    cout << *orig << endl;

}

```

The previous code, when compiled on my system (Debian Jessie):

```bash

$ g++ -std=c++14 -Wall -Wextra -g code.cpp -o code

$ ./code 

5

Segmentation fault

$ clang++ -std=c++14 -Wall -Wextra -g code.cpp -o code

$ ./code 

5

Segmentation fault

```

This happens because `move` sets `orig` to null, making this an example of

undefined behavior.

See [The C++11 standard](http://www.open-std.org/jtc1/sc22/wg21/docs/papers/2011/n3242.pdf), section `20.7.1 4`:

> Additionally, `u` can, upon request, transfer ownership to another unique

> pointer `u2`. Upon completion of such a transfer, the following

> postconditions hold:

> 

> - `u.p` is equal to `nullptr`

Hence, no warning, and hence, a null pointer dereference.

The [C++14 standard](http://www.open-std.org/jtc1/sc22/wg21/docs/papers/2013/n3797.pd) uses the same language, but is in section `20.8.1 4` instead.

The equivalent Rust program:

```rust

fn main() {

    let org = Box::new(5);

    println!("{}", org);

    let stolen = org;

    println!("{}", org);

}

```

gives an error when compiled:

```bash

$ rustc code.rs

error[E0382]: use of moved value: `org`

 --> :8:20

  |

6 |     let stolen = org;

  |         ------ value moved here

7 | 

8 |     println!("{}", org);

  |                    ^^^ value used here after move

  |

  = note: move occurs because `org` has type `Box`, which does not implement the `Copy` trait

```

The Rust compiler itself understands move semantics, and therefore, knows

that `org` is invalid after a move.

[This HN comment](https://news.ycombinator.com/item?id=8751815)

inspired me to finally write this down.