Proper usage of explicit pointers

Help
1

Please, I need some sanity checks here. This Zig behaviour surprised me, after using zig for a couple of years. I tried to distil it into a simple test:

const std = @import("std");
const testing = std.testing;

const Foo = struct {
    id: usize,
    value: usize,
    other: ?*Foo,

    pub fn init(id: usize) Foo {
        const self = Foo{
            .id = id,
            .value = 0,
            .other = null,
        };
        std.debug.print("CREATE Foo id {} (other: {*})\n", .{ self.id, self.other });
        return self;
    }

    pub fn deinit(self: *Foo) void {
        std.debug.print("DESTROY Foo id {} (other: {*}), value={}\n", .{ self.id, self.other, self.value });
    }

    pub fn show(self: Foo) void {
        std.debug.print("Foo id {} (other: {*}), value={}\n", .{ self.id, self.other, self.value });
    }

    pub fn setValue(self: *Foo, value: usize) void {
        self.value = value;
    }

    pub fn setOther(self: *Foo, other: *Foo) void {
        self.other = other;
    }
};

const Bar = struct {
    const SIZE = 3;

    id: usize,
    foos: [SIZE]Foo,

    pub fn init(id: usize) Bar {
        var self = Bar{ .id = id, .foos = undefined };
        for (&self.foos, 0..) |_, p| {
            self.foos[p] = Foo.init(p);
        }
        for (&self.foos, 0..) |_, p| {
            const o = (p + 1) % SIZE;
            std.debug.print("OTHER for {} at {*} is {} at {*}\n", .{ p, &self.foos[p], o, &self.foos[o] });
            self.foos[p].setOther(&self.foos[o]);
        }
        return self;
    }

    pub fn deinit(self: *Bar) void {
        for (&self.foos, 0..) |_, p| {
            self.foos[p].deinit();
        }
    }

    pub fn show(self: Bar) void {
        std.debug.print("Bar id {}\n", .{self.id});
        for (&self.foos, 0..) |_, p| {
            std.debug.print("  {} {*}: ", .{ p, &self.foos[p] });
            self.foos[p].show();
        }
    }

    pub fn populate(self: *Bar) void {
        for (&self.foos, 0..) |_, p| {
            self.foos[p].setValue(p * 10);
        }
    }

    pub fn cycle(self: *Bar) void {
        for (&self.foos, 0..) |_, p| {
            self.foos[p].other.?.*.setValue(p * 100);
        }
    }
};

test "Foo" {
    std.debug.print("\n", .{});
    const id = 11;
    var foo = Foo.init(id);
    defer foo.deinit();
    try testing.expectEqual(foo.id, id);
    foo.show();
}

test "Bar" {
    std.debug.print("\n", .{});
    const id = 11;
    var bar = Bar.init(id);
    defer bar.deinit();
    try testing.expectEqual(bar.id, id);
    bar.show();
    bar.populate();
    bar.show();
    bar.cycle();
    bar.show();
}

This is the output I get:

$ zig test memory.zig   
Test [1/2] test.Foo... 
CREATE Foo id 11 (other: *memory.Foo@0)
Foo id 11 (other: *memory.Foo@0), value=0
DESTROY Foo id 11 (other: *memory.Foo@0), value=0
Test [2/2] test.Bar... 
CREATE Foo id 0 (other: *memory.Foo@0)
CREATE Foo id 1 (other: *memory.Foo@0)
CREATE Foo id 2 (other: *memory.Foo@0)
OTHER for 0 at memory.Foo@16ba65fd8 is 1 at memory.Foo@16ba65ff0
OTHER for 1 at memory.Foo@16ba65ff0 is 2 at memory.Foo@16ba66008
OTHER for 2 at memory.Foo@16ba66008 is 0 at memory.Foo@16ba65fd8
Bar id 11
  0 memory.Foo@16ba66010: Foo id 0 (other: *memory.Foo@16ba65ff0), value=0
  1 memory.Foo@16ba66028: Foo id 1 (other: *memory.Foo@16ba66008), value=0
  2 memory.Foo@16ba66040: Foo id 2 (other: *memory.Foo@16ba65fd8), value=0
Bar id 11
  0 memory.Foo@16ba66010: Foo id 0 (other: *memory.Foo@16ba65ff0), value=0
  1 memory.Foo@16ba66028: Foo id 1 (other: *memory.Foo@16ba66008), value=10
  2 memory.Foo@16ba66040: Foo id 2 (other: *memory.Foo@16ba65fd8), value=20
Bar id 11
  0 memory.Foo@16ba66010: Foo id 0 (other: *memory.Foo@16ba65ff0), value=0
  1 memory.Foo@16ba66028: Foo id 1 (other: *memory.Foo@16ba66008), value=10
  2 memory.Foo@16ba66040: Foo id 2 (other: *memory.Foo@16ba65fd8), value=20
DESTROY Foo id 0 (other: *memory.Foo@16ba65ff0), value=0
DESTROY Foo id 1 (other: *memory.Foo@16ba66008), value=10
DESTROY Foo id 2 (other: *memory.Foo@16ba65fd8), value=20
All 2 tests passed.

These are the things that surprised me:

  • The addresses for other donā€™t seem to have a stable value.
  • The changes made through other when calling bar.cycle() donā€™t seem to have any effect, or happened in a place I am not looking atā€¦

This all seems quite basic, but I will confess I am flabbergastedā€¦ Please help restore my sanity.

2

Not 100% sure but I think this is a bug. Since Bar.foos is an array, itā€™s created on the stack and any references to it or its items will be invalid once Bar.init returns.

3 Likes
3

Looks like yet another example for this doc.

3 Likes
4

I think you probably are onto something @dude_the_builder ā€“ if I move the code to set the other pointers to a separate function:

pub fn fixup(self: *Bar) void {
    for (&self.foos, 0..) |_, p| {
        const o = (p + 1) % SIZE;
        std.debug.print("OTHER for {} at {*} is {} at {*}\n", .{ p, &self.foos[p], o, &self.foos[o] });
        self.foos[p].setOther(&self.foos[o]);
    }
}

and call it separately, after the call to Bar.init(), it all works.

1 Like
5

I agree. I think the idea of zigā€™s arrays being value objects is still not well settled in my brain ā€“ too much C in thereā€¦ :slight_smile:

1 Like
6

It may be useful to look at a value of a pointer.
Entities on stack have ā€œlargeā€ addresses, while entities on heap ā€œsmallā€ ones:

const std = @import("std");
const log = std.debug.print;

const Foo  = struct {
    a: usize = 0,
    b: usize = 0,
};

pub fn main() !void {
    const a = std.heap.c_allocator;
    var foo_on_stak = Foo{};
    var foo_on_heap = try a.create(Foo);

    log("addr of a foo on stak is {*}\n", .{&foo_on_stak});
    log("addr of a foo on heap is {*}\n", .{ foo_on_heap});
}

addr of a foo on stak is stack-heap-adresses.Foo@7fff9c4f8b98
// definitely on stack
addr of a foo on heap is stack-heap-adresses.Foo@205c2a0
// definitely not on stack
1 Like
7

Wellā€¦ :slight_smile:

#include <stdio.h>

char *get_arr(void) {
    char arr[8];
    return arr;
}

int main(void) {
    char *a = get_arr();
    printf("%p\n", a);
}

gcc warns about it:

$ gcc a.c 
a.c: In function ā€˜get_arrā€™:
a.c:6:12: warning: function returns address of local variable [-Wreturn-local-addr]
    6 |     return arr;
      |            ^~~

$ ./a.out 
(nil) // oops

Some ZIgā€™s GH issue about this and similar things have been already mentioned somewhere but I do not remember where exactly.

1 Like
8

A bit of off-topic, sorryā€¦ Hmmm, why (nil)?!? I expected some stack address (ā€œlargeā€ value) here. Ok, maximally simplified example.

#include <stdio.h>

int *get_ptr(void) {
    int x;
    printf("inside: &x = %p\n", &x);
    return &x;
}

int main(void) {
    int *p = get_ptr();
    int i;
    printf("outside: p = %p, &i = %p\n", p, &i);
}

$ ./a.out 
inside: &x = 0x7fff6ee27044
outside: p = (nil), &i = 0x7fff6ee2706c

It seems that gcc not only warns about the footgun, but it also makes that pointer zero behind the scene - and instead of doing some strange things when de-referencing the pointer a program will 100% crash.

9

Yeah, thatā€™s not the case I was thinking ofā€¦ But we are getting too off-topic here.

10

I think we are not, this footgun in itā€™s various forms already got people sick and tired.

We all here (a bit of āˆ€ quantifier demagogue, sorry :slight_smile: ) believe Zig to be a good C competitor (currently) and a C replacement (in some distant future), right?

I just do not want people to repeat mindlessly ā€œzig is better than c 'cause itā€™s <subst your favorite zigā€™s feature>ā€.

@dude_the_builder and gcc are able to recognize a (not so trivial) case of using pointers to local vars outside of a function, why Zig can not? :slight_smile:

11

C was first introduced between 1969-1973. GCC was first released in 1987. Zig first appeared in 2016.

Theyā€™ve had compilers for C longer than Zig has been around. I imagine they have some features we donā€™t at this point. Thereā€™s an open issue for this, too: Add Compiler Error when returning pointer to stack variable Ā· Issue #2646 Ā· ziglang/zig Ā· GitHub

Iā€™m not really sure what to say beyond that. Itā€™s a work in progress by a small team of people.

2 Likes
12

I personally believe zig is already better than C. Is it perfect? Sure, not (yet?).

In my mind I was mapping assigning the result of Foo.init() to an array element, to assigning the result of malloc() to an array member in C. This mental model is wrong, as was proven in this thread. Thatā€™s what I meant by ā€œtoo much C in my mindā€.

1 Like
13

I am not laying into Zig nor am I talking about which one is better, I am just comparing capabilities of compilers. As to heap allocated things, itā€™s clear that (C/Zig) compilers can not ā€œknow/understandā€ that something is on heap, because there is no special syntax/keywords for heap allocation (like new in Pascal/Ada), everything is handled by std library calls.

But what about stack allocations?
Do compilers ā€œunderstandā€ that something is on stack?
If they do (and I guess the really do), then they can look (recursively I guess)
at what is being returned by a function and if they find some local addresses there,
it is compilation warning (or better an error).

14

At least codegen can know when it layouts locals on stack.