Discarding hides type errors

vulpesx · November 3, 2025, 11:52pm

If you discard the result of two or more branches, even if they return different types, the code will still compile (unless an error set or union is among them).

It makes sense that the type doesn’t matter as the value wont be used. My issue is that this allows silent resource leakage, ignoring DebugAllocator or similar mechanisms as they are optional.

Case in point (and how I just found out about this behaviour)

var accept = io.async(net.Server.accept, .{ &server, io });
defer _ = accept.cancel(io) catch {};

silently leaks the stream, if the async task finished before the cancel occured.

a clearer example, though you probably wouldnt forget to close the stream if you wrote it like this:

var accept = io.async(net.Server.accept, .{ &server, io });
defer _ = if (accept.cancel(io)) |stream| stream else |_| {};

With the new Io being merged this kind of code, and mistake by extension, become more common.

It is possible that this was a regression, but it would be an old one as I went back several versions and the behaviour persisted.

It isn’t specific to catch, it occurs with all ways to do branching that I tested, though I probably missed some.

So why does this behaviour exist? and is there an argument to it remaining?

joed · November 4, 2025, 12:19am

It took me a little bit to parse what you mean (in my defence I’m sleep deprived and it’s after 01:00), I think it’d be clearer if you rewrote it as

defer if (accept.cancel(io)) |stream| {
    _ = stream;
} else |_|  {};

That makes the “branch” aspect a little bit easier to understand IMO.

I’m not quite sure how this is a regression from existing behaviour though?

vulpesx · November 4, 2025, 12:22am

Yes, that is what you would do to handle the success as well.

My point was how easy it is to miss, but I will add a second, clearer example, I don’t need my point to be missable too

It isn’t, as far as I have tested, but it’s possible it is an old regression that was just missed, that’s what I was saying. As I see an argument for why it could exist, but I don’t think it’s a very convincing argument, which is why I questioned if it was a regression in the first place.

just realised, your suggestion isnt the same as both branches are void, but I got what you meant and fixed it in my update.

joed · November 4, 2025, 12:24am

I guess me pointing out that I struggled to understand the issue works in your favour quite a bit.

I’ll try have a think about this tomorrow when I can… actually think.

npc1054657282 · November 4, 2025, 2:10am

Do you mean peer type resolution? I’m not sure. I’ve seen discussions about removing it.

github.com/ziglang/zig

Proposal: remove Peer Type Resolution from the language

opened 11:21PM - 07 Dec 24 UTC

mlugg

breaking proposal

~~This may be the spiciest proposal I ever write.~~ oh man was i wrong, everyone… seems to love this one? ## Background Peer Type Resolution (PTR) is a mechanism to combine a set of arbitrarily many types into a final type which all of the inputs can coerce to. For instance, `u8` and `u16` peer resolve to `u16`, while `*volatile [4:0]u8` and `*const [7:0]u8` peer resolve to `[:0]const volatile u8`. The main purpose of PTR is to combine the results of different control flow branches. Opposing branches of a control flow construct are known as "peers", and PTR is applied to the results of those branches to figure out the result of the entire construct. For example: ```zig var t = true; // runtime-known test { const a: *const volatile [4:0]u8 = "abcd"; const b: *const [7:0]u8 = "abcdefg"; const x = if (t) a else b; @compileLog(@TypeOf(x)); // [:0]const volatile u8 } ``` The output here shows that the `if` statement applied Peer Type Resolution to the two "peer expressions" `a` and `b`. **This issue will propose removing Peer Type Resolution from Zig.** However, we must first note that Peer Type Resolution is also used in three other places in Zig. * Binary operators like `+` and `&`, including some builtins like `@addWithOverflow`, apply PTR to their operands. This proposal **does not** propose changing these operators. It is likely that their typing rules will change in the future anyway (see #3806, #16310), but even if they don't, these operators require only a very small subset of the behavior of modern PTR. * Passing multiple arguments to the `@TypeOf` builtin. In this case, the builtin will apply PTR to the types of the operands. This proposal **does** suggest removing this functionality. * When `switch`ing on a tagged union, a prong containing multiple items with distinct payload types apply PTR to determine the type of the capture; e.g. `switch (u) { .my_u32, .my_u16 => |u32_val| ... }`. This proposal **does** suggest removing this functionality. When we get into the meat of the proposal, I'll discuss these cases in a little more detail. ## Problems with PTR Peer Type Resolution, while commonly accepted as a part of Zig, actually has some problems. Firstly, it leads to a common way for semantics to differ between runtime and comptime execution. For instance, consider this code: ```zig fn f(b: bool) u32 { const opt = if (b) null else @as(u32, 123); if (opt) |x|return x; return 0; } ``` This function is fairly straightforward, if quite esoteric. But the key point here is: what is the type of `opt`? When `f` is called at runtime, the type is determined using PTR; the peers have types `@Type(.null)` and `u32`, which peer resolve to `?u32`, so `opt` has type `?u32`. This makes the following `if` statement work as expected. However, if `f` is called at comptime, PTR is not used, because the not-taken branch of the first conditional is not evaluated. This is a very useful feature of Zig, and not one that should change; but it means that the type `opt` is either `@Type(.null)` or `u32`, depending on the comptime-known value of `b`. In the `u32` case (i.e. `comptime f(false)`), this causes the second `if` statement to emit a compile error, because `u32` is not an optional type, so this construct is invalid! So, this code emits a compile error when called at comptime. The second issue is that it can unintuitive impacts on comptime-only types. The statement `const x = if (b) 1 else 2` is invalid at runtime in Zig, because the resoved type of `x` is `comptime_int`, and its value depends on runtime control flow (the `if` expression), so we have a value of a comptime-only type depending on runtime control flow, which is disallowed. However, this error goes away if one of the peers has a concrete integer type -- for instance, `const x = if (b) 1 else @as(u32, 2)` works fine, because the first peer is coerced to `u32` which *can* exist at runtime. This kind of "spooky action at a distance" can be confusing for new Zig users. Lastly, it can hinder readability. Consider these definitions: ```zig const x = if (b) "hi" else "world"; const y = if (b) "hello" else "world"; ``` What are the types of `x` and `y`? If you said `[:0]const u8`, you're actually wrong; that's the type of `x`, but the peers of `y` are strings of the same length, so the types peer resolve to `*const [5:0]u8`. In this case, that's probably not a huge deal, but you can imagine it being more confusing when, say, integer widening is involved, or more significant pointer qualifiers like `volatile`. In these cases, it would be more clear to annotate the type of the variables. This can also help to clarify what properties of the type your code depends on; for instance, a user might annotate the type of `x` as `[]const u8`, because the null terminator doesn't matter for their use case. ## Proposal Remove Peer Type Resolution from the language. The features of Zig which utilize it are changed as follows: * Expressions combining peers (e.g. `if` expressions, `switch` expressions, labeled blocks) emit a compile error if all peers are not of the same type (excluding `noreturn` peers). * Binary operators using PTR are unchanged; they can use a simple, specialized form of the algorithm. * `@TypeOf` accepts only one operand, making this proposal a reversal of #439. * `switch` on a tagged union requires all payloads to have the same type, making this proposal a reversal of #2812. This change resolves all three of the issues described above: * Since all peers must have the same type, it's fine that comptime only evaluates one; the expression will have the same type. This eliminates the need for #13025, which would be a complex language change to fix this issue. This would also solve #5462, which is the same issue. * It would no longer be possible for e.g. `comptime_int` to implicitly become a runtime type due to the type of a peer; if you intend for the result to be e.g. a `u32`, you would have to coerce all peers. More realistically, you would annotate the type *outside* of the expression; more on this in a second. * The type of an expression would have to be the same across all peers, making it hopefully obvious. In cases where the types are not identical, you would use an explicit type annotation; again, more on this below. This proposal also simplifies the language in general, which is a nice plus. The effect of this proposal on user code would be to **encourage more type annotations in places where types are non-obvious**. This style of including type annotations where possible is something Zig has been moving towards in recent years: * We have an "unofficial" preference for `const x: T = .{ ... }` over `const x = T{ ... }`. * Decl literals encourage writing `const x: T = .foo` rather than `const x = T.foo`. * The "new" (not that new anymore) casting builtins encourage explicit type annotations by sometimes requiring them around type casts. The advantages of explicit type annotations are as follows: * It increases readability for humans, since it becomes easier to know what types different expressions have; in particular, giving local variables type annotations can make the variables' uses easier to understand. * It is useful to tooling acting on Zig source code; for instance, language servers or documentation tooling which is performing a "best effort" interpretation of code without full semantic analysis capabilities can know more types with certainty, just like how humans can. * For container-level declarations, it increases the ability of the compiler to be parallelized, since the type can be determined while queuing value resolution for later. * For container-level declarations, it will allow self-reference and mutual references; see #131. With all of these in mind, it's pretty clear that type annotations are a Good Thing, and I tend to support features which encourage more of them (within reason). I think this proposal probably falls within that category. ## Impact on Real Code This proposal will almost certainly cause a lot of breakage in the wild, including in the standard library. As I see it, the main question will be whether the diffs required to fix these breakages make code *more* or *less* readable. I strongly suspect the answer is that code will become more readable. However, I think we will have to implement this in the compiler (which would be relatively straightforward) and take a look at some of what breaks in a large codebase, probably the standard library and the compiler itself. # EDITS BELOW ## Clarification: Result Types This proposal never affects semantics when an expression has a result type. For instance, this code still works: ```zig const x: u32 = if (b) 123 else my_u16; ``` Here, even though the peers have types `comptime_int` and `u16`, the result type of `u32` is propagated to these expressions and is applied before the values "exit" the conditional branch. This code working is actually a key motivation for this proposal: it encourages adding type annotations like this. ## Discussion: `catch` and `orelse` Under this proposal as written, the following code would fail to compile: ```zig const E = enum { a, b, c }; fn getE() ?E { ... } test { const result = getE() orelse .c; _ = result; } ``` That's because the `orelse` statement currently applies Peer Type Resolution to the types `E` and `@Type(.enum_literal)`. Without PTR, these types would not match. The same applies to `catch`. However, if this proposal is accepted, this code actually can work; not through PTR, but by providing a result type to the RHS. If we call `?T` the type of the LHS after being evaluated, then the RHS can be evaluated with result type `T`; this is acceptable because under this proposal, it would need to have type `T` anyway for the peers to successfully combine. Again, the same thing applies to `catch`. To be honest, I could see an argument that this *isn't* desirable, and that the above snippet should indeed require a type annotation on `result`. But it's a possibility nonetheless. ## Discussion: Ranged Integers One potential downside to this proposal is that it could make #3806 significantly more difficult to work with. For instance, consider this code: ```zig const x: u8 = something; const y = if (b) x else x + 1; ``` Under #3806 *with* PTR, `y` has type `@Int(0, 257)`, since PTR is applied to the peer types `@Int(0. 256)` and `@Int(1, 257)`. However, this proposal would cause this code to emit a compile error, because the peer types differ. That could be a big problem, since it could cancel out some of the benefits of implicit range expansion by requiring explicit type annotations. Assuming this is indeed awkward in practice, I'm not sure if there's a good way to reconcile these two proposals. This gives way to a counter-proposal... ## Counter-proposal: Restrict PTR to Numeric Types Instead of eliminating PTR altogether, we could potentially just nerf it a lot. Here's what I would suggest: * PTR of integers combines integer bounds (under #3806) * PTR of floats selects the largest float type, like today * No other types peer resolve This refocuses PTR to be about combining *numeric types*. This restriction still solves the problems discussed in the original issue, whilst avoiding conflicting with #3806: * It wouldn't really matter that comptime evaluation only evaluates one peer: the only thing that could differ between runtime and comptime is an exact integer or float type. The former could not have any effect on semantics, aside from explicitly depending on `@TypeOf(expr)`. The latter *could* affect floating-point precision/rounding, but it seems reasonable that if you need precise details of one floating-point type, you should be annotating it anywhere where it's unclear. * Under ranged integers, `comptime_int` ceases to exist anyway, so this case where adding a runtime peer makes runtime evaluation work doesn't exist. It might still exist for floats if we allow `comptime_float` to peer resolve, which we probably should. This is a minor downside to this counter-proposal. * One property of ranged integers is that exact types don't actually matter that much, so it wouldn't necessarily be an issue that this limited PTR can make those types non-obvious. Likewise, for floating-point types, it *rarely* matters too much which exact type is being used; where it does, it again seems reasonable to expect annotations anyway.

vulpesx · November 4, 2025, 2:15am

Nope, peer type resolution is coercing two different types into a common type, if possible.

I am talking about when two branches have a type conflict that isn’t resolved, yet it is hidden if you discard the value, removing peer type resolution will only increase such cases.

npc1054657282 · November 4, 2025, 2:23am

I see.
Perhaps I’m digressing a bit, but if discarding values is considered a less desirable solution, I can accept some of its oddities.
But it seems the standard Io.cancel solution encourages discarding return values and catch {} statements that might throw errors but not handle them? This smells a bit strange to me. If discarding return values is encouraged, then there will certainly be many cases like forgetting to close the stream.

vulpesx · November 4, 2025, 2:37am

it does not, no different from calling any other function with a return value.

However, cancel is encouraged to be deferred right after async or concurrent calls (depending on your code ofc), and in defers you cannot propagate errors, but since it’s cleanup code you often dont need to worry about them either so catch {} will be somewhat common, depending on the task.

You will get an error if you don’t discard, but if you are aware it returns a success value but overlook it needs to be cleaned up you will discard it, as far as such a person is aware that is correct, which hides this error and successfully compiles.

I think that’s a common enough occurrence, especially if you are less familiar with the API you are using (net.Server.connect for my example).

The type error is secondary, it’s the fact that it alerts you to incorrect code that I care about.

npc1054657282 · November 4, 2025, 3:08am

After rethinking, I feel the problem still lies in the overconfident discarding of values.

Even in a positive example: the user is confident that a successful value that needs to be discarded is being returned, and this successful value doesn’t require resource release. In this example, which aligns with the intended requirement of “correctly discarding,” a type error still occurs if type resolution is strictly enforced. I think allowing branches of different types to discard values is precisely the kind of “correctly discarding” usage that fits this need.

If discarding is not used, but something like const a = func() catch {}, the resolution error here is understandable: the symbol a does not exist in the branch. But with discarding, there is no such problem.

If the discarded object is not the return value of Io.cancel, but the return value of another function that doesn’t return an error, then even without a branch or type resolution issue, overconfidently discarding a return value can still lead to the leakage of results that require resource release.

Therefore, I think the key is that discarding values is an operation that needs to be handled with caution. On the surface, _ allows assignment to any type, and type resolution conflicts stem from type resolution contradictions within the target symbol itself. For a symbol that allows any type, this contradiction doesn’t exist. The compiler error for type resolution conflicts is not intended to alert the user to resource release issues, and it cannot resolve such problems. When a user uses _ for discarding, resource release contradictions can occur regardless of whether there is a branch or type resolution issue. Programmers have a responsibility to know exactly what the returned resource is when discarding a return value.

vulpesx · November 4, 2025, 4:24am

I don’t deny that it is a mistake from the programmer, but that doesn’t mean this is good behaviour. It doesn’t mean there is not any better behaviour.

zig’s explicit discarding instead of silent ignoring of values comes from this line of thinking, human error will always occur, let’s make it easier to catch when it does.

‘Just be careful’ works until it doesn’t, we already passed that point, the example I showed came from someone’s real project.

C devs that have been deving for most of c’s existence still make simple mistakes, you can’t dismiss them for not being careful enough, when they know from experience how careful they need to be.

npc1054657282 · November 4, 2025, 6:25am

Avoiding such footgun is possible by requiring explicit declaration of the value’s type when discarding it.

The footgun not only occur during branch type resolution but can happen whenever a programmer confidently discards a function return value without confirming its return type. If you want to force programmers to be responsible and understand what they’re discarding, then have them repeatedly declare the type of the values they’re discarding.

However, this feature would be incredibly unpopular, as you can imagine. XD

vulpesx · November 4, 2025, 6:51am

They would need to allow it, if not require it, once PTR is removed. Unless, discarding gets special treatment.

An issue is that you can discard void values, and when you see foo() catch {}, it’s reasonable to assume foo returns void on success, and you’d be none the wiser as unlike a normal assignment, the type mismatch is hidden.

In that respect I think it’s more of a problem when errors are involved, so I am fine with discarding being otherwise the same, as long as this mistake isn’t silent.

But I do agree with you, specifying the type would give the best chance of catching these mistakes.

It’s a balancing act between annoying and explicit.