Returning a wrapper type with lifetime, compiler says mutable borrow more than once, but I think they are in different control flow paths

nerditation · April 11, 2023, 3:15am

sorry I coudn't think of a more concise title to better describe the problem, probably because I don't really understand the problem.

I was writing wrapper types for some third party library, which has a Resource type and a guard type to actually call the methods on. I want to wrap both of them to provide some extra check or transformation for certain operations.

the code looks like:

// these are from extern crate

struct Resource {}

struct Token<'a> {
    resource: &'a mut Resource,
}

impl Resource {
    fn try_grant<'a>(&'a mut self) -> Option<Token<'a>> {
        // check availability
        Some(Token {
            resource: self
        })
    }
}

// these are my wrappers
struct ResourceWrapper {
    inner: Resource,
}

struct TokenWrapper<'a> {
    inner: Token<'a>,
}

impl ResourceWrapper {
     fn grant<'a>(&'a mut self) -> TokenWrapper<'a> {
        if let Some(token) = self.inner.try_grant() {
            return TokenWrapper {
                inner: token,
            }
        }
        self.wait_ready();
        if let Some(token) = self.inner.try_grant() {
            TokenWrapper {
                inner: token,
            }
        } else {
            unreachable!()
        }
    }
    fn wait_ready(&mut self) {
        // locking and synchronization stuff
    }
}

this code gives: error[E0499]: cannot borrow `*self` as mutable more than once at a time --- specifically, the line return TokenWrapper{...} under the if let branch prevents self from being used again. I really don't understand why it is the case, and how to express this (prefer safe code, but unsafe is acceptable if I have to). any suggestions are appreciated.

here is the same code snippet on rust playground if you want to see the actual compiler message or play with it

zirconium-n · April 11, 2023, 3:28am

It's a known limitation to borrow checker. It happens when you return a mutable reference in one branch and use it in another. The easy way out is just using unsafe.

nerditation · April 11, 2023, 4:28am

thanks for the information. is there's a tracking issue I can follow about the limitation?

quinedot · April 11, 2023, 4:53am

This issue or one of the related ones linked within.

github.com/rust-lang/rust

NLL Regression: Conditional control flow returning from functions no longer works

opened 03:47AM - 14 Jun 18 UTC

Osspial

T-compiler A-NLL NLL-polonius

If a match expression has one arm that returns a borrowed matched value from its… pattern, and another arm that doesn't borrow directly from a matched value but instead borrows the variable the matched value borrows and returns it, compilation fails if the match statement is returning from a function, but not if it's assigning to a variable. This used to work (and iirc one of the goals of NLLs was to make this pattern work), but it broke between `nightly-2018-05-17` and `nightly-2018-05-19`. A nightly for May 18th doesn't appear to exist. Examples: This doesn't work now: ```rust // Doesn't compile on nightly-2018-05-19 and later, but does on nightly-2018-05-17. fn borrow(o: &mut Option<i32>) -> Option<&mut i32> { match o.as_mut() { Some(i) => Some(i), None => o.as_mut() } } ``` This is similar to the other code, but *does* work both before and after `nightly-2018-05-19` ```rust fn main() { let mut o: Option<i32> = Some(1i32); // Compiles everywhere! let x = match o.as_mut() { Some(i) => Some(i), None => o.as_mut() }; } ```

steffahn · April 11, 2023, 4:54am

There’s even an experimental implementation of an improved borrow checker called “polonius”. E.g. see it used with your example here in the Compiler Explorer (experimental flag “-Z polonius” on nightly rustc to use it).

vague · April 11, 2023, 5:33am

With polonius_the_crab - Rust, your code is allowed to pass in stable Rust:

https://www.rustexplorer.com/b/ib10vm

    fn grant<'a>(&'a mut self) -> TokenWrapper<'a> {
        let mut wrapper = self;
        polonius!(|wrapper| -> TokenWrapper<'polonius> {
            if let Some(token) = wrapper.inner.try_grant() {
                polonius_return!(TokenWrapper { inner: token })
            }
        });
        wrapper.wait_ready();
        polonius!(|wrapper| -> TokenWrapper<'polonius> {
            if let Some(token) = wrapper.inner.try_grant() {
                polonius_return!(TokenWrapper { inner: token });
            } else {
                unreachable!()
            }
        })
    }

steffahn · April 11, 2023, 6:11am

The second usage of polonius! seems superfluous, this works aswell

    fn grant<'a>(&'a mut self) -> TokenWrapper<'a> {
        let mut wrapper = self;
        polonius!(|wrapper| -> TokenWrapper<'polonius> {
            if let Some(token) = wrapper.inner.try_grant() {
                polonius_return!(TokenWrapper { inner: token });
            }
        });
        wrapper.wait_ready();
        if let Some(token) = wrapper.inner.try_grant() {
            return TokenWrapper { inner: token };
        } else {
            unreachable!()
        }
    }

nerditation · April 11, 2023, 6:35am

thank you guys so much. these are valuable information to me. just read the docs of polunius-the-crab and learned a lot about the borrow checker

system · July 10, 2023, 6:35am

This topic was automatically closed 90 days after the last reply. We invite you to open a new topic if you have further questions or comments.