Skip to content

ManuallyDrop<T>::clone should trigger a lint #12221

New issue
New issue
Open
Open
ManuallyDrop<T>::clone should trigger a lint#12221
Labels
A-lintArea: New lints
@mmastrac

Description

@mmastrac
mmastrac
opened on Feb 1, 2024

What it does

ManuallyDrop implements Clone when T: Clone, but I've found that this is often not what I want to do. For example, I may have code that looks like this:

struct MyStruct {
  state: Rc<State>,
}

...

fn spawn_state_task(data: &MyStuct) {
  let state = data.state.clone();
  spawn(async move { state.do_something() });
}

In the future, I change state to ManuallyDrop<Rc<X>> and update the Drop impl correctly, but neglect to update spawn_state_task(). The code continues to compile, but we've got a memory leak.

If you wish to clone the value inside of a ManuallyDrop and continue controlling the drop lifetime manually, you should do it via the explicit ManuallyDrop::clone call rather than .clone() or Clone::clone, both of which may mask a memory leak. If you wish to clone the object and return to automatic drop lifetime management, you should use (*value).clone() instead to deref the ManuallyDrop first.

Advantage

  • Explicit detection of potential memory leak sites when switching T to ManuallyDrop<T> where T: Clone
  • Clear display of sites where a new ManuallyDrop struct is creates from a clone, and require an additional drop call

Drawbacks

  • This is more verbose in the case where you actually want to clone the ManuallyDrop

Example

struct MyStruct {
  state: Rc<State>,
}


fn spawn_state_task(data: &MyStuct) {
  let state = data.state.clone();
  spawn(async move { state.do_something() });
}

Could be written as:

struct MyStruct {
  state: Rc<State>,
}


fn spawn_state_task(data: &MyStuct) {
  let state = (*data.state).clone();
  spawn(async move { state.do_something() });
}

or

struct MyStruct {
  state: Rc<State>,
}


fn spawn_state_task(data: &MyStuct) {
  let state = ManuallyDrop::clone(data.state);
  spawn(async move { state.do_something() });
}

Activity

mmastrac
added
A-lintArea: New lints
on Feb 1, 2024
mmastrac

mmastrac commented on Feb 1, 2024

@mmastrac
mmastrac
on Feb 1, 2024 · edited by mmastrac
Author

In deno_core we ended up writing a ManuallyDropRc [1] because this bit us a few times, but I just ran into it with another ManuallyDrop<T: Clone> type today.

[1] https://github.com/denoland/deno_core/blob/main/core/runtime/jsruntime.rs#L93

lcnr

lcnr commented on Sep 9, 2024

@lcnr
lcnr
on Sep 9, 2024 · edited by lcnr
Contributor

cc rust-lang/rust#130140 where incorrectly using Clone causes an unsoundness. Deriving pretty much any trait for a type containing ManuallyDrop if they may drop its value outside the actual Drop impl is dangerous. Because of that I think that we should have a correctness lint when deriving traits for a structs containing ManuallyDrop

scottmcm

scottmcm commented on Sep 10, 2024

@scottmcm
scottmcm
on Sep 10, 2024
Member

Yes please, to what @lcnr said. I checked all the code I wrote really carefully, but didn't think about the derives, which was my mistake. If we could do something smarter there, that'd be great -- since even Debug's derive is a problem.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Metadata

Metadata

Assignees

No one assigned

    Labels

    A-lintArea: New lints

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

      Development

      No branches or pull requests

        Participants

        @mmastrac@scottmcm@lcnr

        Issue actions
          `ManuallyDrop<T>::clone` should trigger a lint · Issue #12221 · rust-lang/rust-clippy