Amend #911 const-fn to allow unsafe const functions #1245
There are no files selected for viewing
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -172,6 +172,18 @@ const fn arithmetic_ops<T: Int>() -> [fn(T, T) -> T; 4] { | |
| } | ||
| ``` | ||
|
|
||
| `const` functions can also be unsafe, allowing construction of types that require | ||
| invariants to be maintained (e.g. `std::ptr::Unique` requires a non-null pointer) | ||
| ```rust | ||
| struct OptionalInt(u32); | ||
| impl OptionalInt { | ||
| /// Value must be non-zero | ||
| unsafe const fn new(val: u32) -> OptionalInt { | ||
|
There was a problem hiding this comment. Since There was a problem hiding this comment. “unsafe constant function” sounds more “right” to me than “constant unsafe function”, though your point is also valid. Either way, I think it should be possible to put these in any order. I’ve already had some trouble remembering which goes first in There was a problem hiding this comment. +1 @petrochenkov's order. There was a problem hiding this comment. I prefer There was a problem hiding this comment. +1 for @nagisa: allow both orders If we decide on a preferred order, that can still be enforced by rustfmt. No need to make rustc overly strict. There was a problem hiding this comment. Hmm... both could be allowed, but would complicate the parser (if it is to correctly disallow There was a problem hiding this comment. I agree with @petrochenkov: There was a problem hiding this comment. @eddyb I see how a const fn ptr could allow for higher order functions at compile-time, I am not sure that is the right means to achieve that. |
||
| OptionalInt(val) | ||
| } | ||
| } | ||
| ``` | ||
|
|
||
| # Drawbacks | ||
|
|
||
| * A design that is not conservative enough risks creating backwards compatibility | ||
|
|
@@ -211,8 +223,6 @@ that a certain method of that trait is implemented as `const`. | |
|
|
||
| # Unresolved questions | ||
|
|
||
| * Keep recursion or disallow it for now? The conservative choice of having no | ||
| recursive `const fn`s would not affect the usecases intended for this RFC. | ||
| If we do allow it, we probably need a recursion limit, and/or an evaluation | ||
|
|
@@ -226,3 +236,9 @@ cannot be taken for granted, at least `if`/`else` should eventually work. | |
| - This RFC was accepted on 2015-04-06. The primary concerns raised in | ||
| the discussion concerned CTFE, and whether the `const fn` strategy | ||
| locks us into an undesirable plan there. | ||
|
|
||
| # Updates since being accepted | ||
|
|
||
| Since it was accepted, the RFC has been updated as follows: | ||
|
|
||
| 1. Allowed `unsafe const fn` | ||
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Wouldn't
NonZero::new_uncheckedbe a better example here?There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Possibly, however Unique is more directly related to the collection types (as that's the libcore type they're built on)