Static promotion allows sharing non-Sync values across threads (maybe unsound?) #142233
Labels
C-bug
Category: This is a bug.
I-unsound
Issue: A soundness hole (worst kind of bug), see: https://en.wikipedia.org/wiki/Soundness
T-compiler
Relevant to the compiler team, which will review and decide on the PR/issue.
Comments
rustbot
added
needs-triage
|
Another variant (doesn't rely on consts or llvm deduplication): use std::marker::PhantomData;
// Doesn't implement Sync or Send
#[allow(dead_code)]
struct Foo(i32, PhantomData<*mut ()>);
fn get_foo() -> &'static Foo {
&Foo(123, PhantomData)
}
fn main() {
let mut threads = vec![];
for _ in 0..5 {
threads.push(std::thread::spawn(|| {
println!("{:p}", get_foo());
}));
}
for thread in threads {
thread.join().unwrap();
}
} |
Noratrieb
added
T-compiler
|
Seems related to #49206. |
apiraino
removed
the
I-prioritize
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Since
Foodoes not implementSync, Rust is supposed to prevent me from getting a&Foothat points to the same place, and access it from two different threads at the same time.However, the above code manages to obtain a
&Fooin two different threads simultaneously. The code then prints the addresses of the two references. This code somehow compiles, and it prints the same address twice, demonstrating that the two references indeed point to the same address.I suspect that this is probably unsound, because this may break invariants that external libraries rely on. (For example, a library might define a non-Sync type, and assume that if two references to this type have the same address, then they are from the same thread.) Although, I am unable to find a way to cause undefined behavior using just std, since trying to put interior mutability inside
Foocauses the code to stop compiling.@rustbot labels +I-unsound
Meta
Reproducible on the playground with
1.89.0-nightly (2025-06-08 6ccd4476036edfce364e)The text was updated successfully, but these errors were encountered: