Confused by an exception safety example in Onomicon

zylthinking1 · October 18, 2022, 6:31am

The Onomicon has the following:

We would rather have the following:
bubble_up(heap, index):
    let elem = heap[index]
    while index != 0 && elem < heap[parent(index)]:
        heap[index] = heap[parent(index)]
        index = parent(index)
    heap[index] = elem
This code ensures that each element is copied as little as possible (it is in fact necessary that elem be copied twice in general). However it now exposes some exception safety trouble! At all times, there exists two copies of one value. If we panic in this function something will be double-dropped. Unfortunately, we also don't have full control of the code: that comparison is user-defined!

I can't undetstand the mentioned double-drop.
If heap[index] = heap[parent(index)] is a movement, then heap[parent(index)] is uninitiated, so only one drop. If it is a Copy, then T: !Drop, no dropping at all.

H2CO3 · October 18, 2022, 6:55am

That's not true. When you are blindly copying around memory behind raw pointers using ptr::read() and ptr::write(), the compiler can't possibly track initialization state, so there will be a double-drop if there are two copies of the same value. (Proof.)

zylthinking1 · October 18, 2022, 6:58am

So that is pseudo code too.

H2CO3 · October 18, 2022, 6:58am

It has to be; the snippet you cited can't be Rust because it isn't even syntactically valid. Also, you have to use raw pointer based methods for this purpose, exactly because you can't otherwise move out of a dereference (safe code forbids that, exactly for this reason).

system · January 16, 2023, 6:59am

This topic was automatically closed 90 days after the last reply. We invite you to open a new topic if you have further questions or comments.