Add a new lint that warns for pointers to stack memory #134218

1c3t3a · 2024-12-12T16:32:52Z

This adds a new lint with level Warn to check for code like:

fn foo() -> *const i32 {
  let x = 42;
  &x
}

and produce a warning like:

error: returning a pointer to stack memory associated with a local variable
  --> <source>:12:5
   |
 LL|  &x
   |  ^^

This fixes #134215.

rustbot · 2024-12-12T16:33:03Z

r? @compiler-errors

rustbot has assigned @compiler-errors.
They will have a look at your PR within the next two weeks and either review your PR or reassign to another reviewer.

Use r? to explicitly pick a reviewer

1c3t3a · 2024-12-12T16:34:24Z

I am aware that this may warn on existing code. I wonder what is a good strategy here? Should it be an Allow lint first and then be migrated to Warn as part of an edition? Or even stay Allow forever?

compiler-errors · 2024-12-12T16:49:32Z

Is there a reason why this was implemented as a rust lint rather than a clippy suspicious lint or something?

I guess let's find the fallout of this lint

@bors try

Add a new lint that warns for pointers to stack memory This adds a new lint with level `Warn` to check for code like: ```rust fn foo() -> *const i32 { let x = 42; &x } ``` and produce a warning like: ```text error: returning a pointer to stack memory associated with a local variable --> <source>:12:5 | LL| &x | ^^ ``` This fixes rust-lang#134215.

bors · 2024-12-12T16:50:47Z

⌛ Trying commit 40eb5d7 with merge 6db1a6a...

1c3t3a · 2024-12-12T16:52:25Z

Is there a reason why this was implemented as a rust lint rather than a clippy suspicious lint or something?

This was completely my judgment, I am happy to change this if requested. My reasoning was that this is a pretty fundamental lint, since the code it lints should probably never exist? And looking at the list of rustc lints I thought it might be a good fit.

compiler/rustc_lint/src/builtin.rs

1c3t3a · 2024-12-12T17:18:26Z

The job x86_64-gnu-llvm-18 failed! Check out the build log: (web) (plain)

Click to see the possible cause of the failure (guessed by this bot)

Oops - I don't fully understand that error. The failure looks like in the .stderr file, but it still has unexpected errors that it doesn't match on... This even happens when passing --bless.

compiler-errors · 2024-12-12T19:55:46Z

@craterbot check

craterbot · 2024-12-12T19:55:49Z

🚨 Error: missing start toolchain

🆘 If you have any trouble with Crater please ping @rust-lang/infra!
ℹ️ Crater is a tool to run experiments across parts of the Rust ecosystem. Learn more

compiler-errors · 2024-12-12T19:56:50Z

@craterbot run mode=check-only start=master#8e37e151835d96d6a7415e93e6876561485a3354 end=try#6db1a6a7ebb2ad243051f3ff949f987dd70cde2b

craterbot · 2024-12-12T19:57:13Z

👌 Experiment pr-134218 created and queued.
🔍 You can check out the queue and this experiment's details.

ℹ️ Crater is a tool to run experiments across parts of the Rust ecosystem. Learn more

jyn514 · 2024-12-13T02:33:31Z

The job x86_64-gnu-llvm-18 failed! Check out the build log: (web) (plain)
Click to see the possible cause of the failure (guessed by this bot)

Oops - I don't fully understand that error. The failure looks like in the .stderr file, but it still has unexpected errors that it doesn't match on... This even happens when passing --bless.

bless will generate a .stderr file for you, but it will not update the original .rs file. compiletest is complaining because it expects each warning to be annotated with //~ WARN. see https://rustc-dev-guide.rust-lang.org/tests/ui.html#error-annotations

rustbot · 2024-12-13T15:49:15Z

The Miri subtree was changed

cc @rust-lang/miri

compiler-errors · 2024-12-14T19:18:44Z

@craterbot end=try#6db1a6a7ebb2ad243051f3ff949f987dd70cde2b+rustflags=-Dreturn-local-variable-ptr

craterbot · 2024-12-14T19:18:47Z

📝 Configuration of the pr-134218 experiment changed.

ℹ️ Crater is a tool to run experiments across parts of the Rust ecosystem. Learn more

craterbot · 2024-12-16T01:50:06Z

🚧 Experiment pr-134218 is now running

ℹ️ Crater is a tool to run experiments across parts of the Rust ecosystem. Learn more

craterbot · 2024-12-16T23:18:31Z

🎉 Experiment pr-134218 is completed!
📊 121 regressed and 53 fixed (553468 total)
📰 Open the full report.

⚠️ If you notice any spurious failure please add them to the denylist!
ℹ️ Crater is a tool to run experiments across parts of the Rust ecosystem. Learn more

1c3t3a · 2024-12-17T07:54:50Z

Looks like this just hit one crate (out of 553468!). There was an ICE happening as well, which looks unrelated. The other 119 errors look like spurious failures (something wrong with the docker invocation). Can we conclude that this lint will not break a great amount of existing users?

estebank · 2024-12-31T23:16:37Z

The only one that seems related to the lint is triggering at

https://github.com/feymartynov/janus-app/blob/11d2f4dbbcd993a203df48fecda2507e37c5be03/src/plugin.rs#L247-L272

and it looks legit.

Separately, I am slightly concerned about the ICEs at https://crater-reports.s3.amazonaws.com/pr-134218/try%236db1a6a7ebb2ad243051f3ff949f987dd70cde2b%2Brustflags=-Dreturn-local-variable-ptr/gh/fmhall.chess-program/log.txt which seem to point at an issue elsewhere that was recently introduced.

compiler-errors · 2025-01-23T18:07:46Z

r? estebank

bors · 2025-01-27T15:16:20Z

☔ The latest upstream changes (presumably #136024) made this pull request unmergeable. Please resolve the merge conflicts.

1c3t3a · 2025-01-30T18:19:02Z

Hey all, friendly ping on this PR, do you have overall feedback on this change :)

I made a small change to the lint to also include nested pointers of arbitrary depth. This was funnily enough discovered by having some production code I saw that ran into this issue, which is I think a good reason to have a lint like that?

bors · 2025-01-31T13:08:46Z

☔ The latest upstream changes (presumably #136332) made this pull request unmergeable. Please resolve the merge conflicts.

This adds a new lint with level `Warn` to check for code like: ```rust fn foo() -> *const i32 { let x = 42; &x } ``` and produce a warning like: ```text error: returning a pointer to stack memory associated with a local variable --> <source>:12:5 | LL| &x | ^^ ```

1c3t3a · 2025-02-11T08:35:20Z

Friendly ping on this one :)

1c3t3a · 2025-02-18T15:25:35Z

Friendly ping on this again :) It would be great to get some feedback!

1c3t3a · 2025-02-24T16:18:45Z

Friendly ping again!

cc: @estebank, @compiler-errors

bors · 2025-03-05T18:57:08Z

☔ The latest upstream changes (presumably #138058) made this pull request unmergeable. Please resolve the merge conflicts.

rustbot assigned compiler-errors Dec 12, 2024

rustbot added S-waiting-on-review Status: Awaiting review from the assignee but also interested parties. T-compiler Relevant to the compiler team, which will review and decide on the PR/issue. labels Dec 12, 2024