Zig: result location mechanism (previously: well defined copy eliding semantics)

Let me elaborate on a specific usecase:

fn foo() -> BigStruct {
    const a = BigStruct { ... }; // fine so far
    return a; // ERROR: cannot copy type BigStruct
}

The reason for this error is that at the time when you declared a, it created its own location as a local variable (or const, w/e). If the compiler were clever enough to look ahead and notice you were returning a, it could have used the secret result location pointer parameter as the storage location for a. Then the return would not be a copy, and it would work.

I'm hesitant to suggest that this rule be well-defined, because it's a bit more demanding of the compiler, and the rules for what is allowed and what's not allowed get more complicated as well. For example:

fn foo() -> BigStruct {
    const a = BigStruct { ... };
    if (something()) return a; // ERROR
    const b = BigStruct { ... };
    if (something()) return a; // ERROR
    if (something()) return b; // ERROR: but really if this were deleted, then all the errors go away.
    return a; // ERROR
}

However, one argument in favor of this idea is #286, which wants to refer to the return value of a block by name. Among the proposals in that issue, there is a simpler proposal, which is the one in this comment.

fn main() {
    const a : BigStruct = {
        const result = BigStruct{ ... };
        result.method();
        result // here's the "copy" that could be elided if the compiler notices
               // that this block only returns that local variable.
    };
}

A function can declare a non-copyable return type. In this case, the function gets an additional, secret parameter that is a writable pointer to where it should write its return value.

Why not just be explicit about it and let the user provide a pointer to the function? Then everyone can clearly see it doesn't get copied and nobody has to wonder why you can 'copy' this non-copyable struct.

That would require that the user declare the variable on a separate line and initialize it to undefined, and then the function signature doesn't really indicate that it's an output only parameter, and the function implementation could read from the pointer without getting a compile error.

That all definitely works ok, and it's what you do in C, but it seems more elegant to make the function look like it's returning the thing. However, I agree that the copy-or-not semantics are a little confusing when they're completely implicit, especially when the return type is generic. Then a single function can do and not do the secret pointer thing depending on the type parameters.

It is desirable that we only have one obvious way to return things from functions. But if under the hood there are actually multiple ways, we need to be careful that surprises don't break anything. For example, we need to be careful that this doesn't cause any aliasing footguns.

Something like this is still planned, but this proposal is old enough now that it needs revisiting and reworking before it's ready to be implemented.

I don't believe named return types need/ should be part of this proposal because cpp has guaranteed copy elision as well and does not have named return types so it seems to be unnecessary.

It seems though as if cpp has cases where its not guaranteed (even cpp 17) so it might be worth investigating this before making a final judgement. My cpp is currently not good enough to easily judge the current state of copy elision in cpp.

Here is my new proposal for guaranteed copy elision:

const Foo = struct {
    x: i32,
    ptr: *i32,

    fn init(z: i32) !Foo { // same function signature syntax
        try somethingThatCanFail(); // try still works
        @result() = Foo{ // new builtin function which is a reference to the return value
            .x = 1234,
            .ptr = undefined,
        };
        if (z == 0) return error.Bad;
        if (z == 1) {
            // this still works, but doesn't have guaranteed
            // copy elision semantics.
            return Foo { .x = 0, .ptr = undefined};
        }
        // in case of error inference, @result() refers to the bare value
        @result().ptr = &foo.x;
        return @result(); // returning @result() is guaranteed not to copy any memory
    }

    const Error = error{Bad};

    fn init2(z: i32) Error!Foo {
        @result() = Foo{
            .x = 1234,
            .ptr = undefined,
        };
        // since the result type is fully specified, we need to unwap to get the bare value
        const res = &(@result() catch unreachable);
        res.ptr = &foo.x;
        return @result();
    }
}

// works at global scope too
const foo = Foo.init(2);
test "pointer value correct" {
    assert(foo.ptr == &foo.x);
}

The followup proposal would be something like https://github.com/ziglang/zig/issues/591#issuecomment-418186046 where a field could be fixed, and not doing this @result() thing to avoid copying would give a compile error.

What happens here:

if (z == 3) {
  var foo: Foo = undefined;
  foo.x = 456;
  foo.ptr = &foo.x;
  return foo;

I think this should generate a compiler error?

(Note in the above I "fixed" the foo.ptr assignment).

Also, Is there a simple syntax to something like:

fn init3(v: i32) Foo {
    return @result() = Foo{
        .x = v,
        .ptr = &@result().x,
    }
}

(Sorry for the editing :( )

I've edited both comments above, please view the comments; 1, 2 directly.

Sorry

I never got the whole copy-elision hype. What is the advantage over fn init(z: i32, result: * !Foo) void or maybe fn init(z: i32, result: * Foo) !void ?

I'd want to see reason why it's necessary to add new syntax at all cause I'd still like to make the point that even cpp does not have such syntax (neither named return value, nor @return like thing).

@BarabasGitHub It's semantically necessary if your struct fields have references to other struct fields. Your first example introduces new syntax; we don't currently have the concept of inferred error sets for parameter values. Your second example looks like this at the callsite (if we swap the param orders):

var result: Foo = undefined;
try result.init(123);

This is the null hypothesis to this proposal. It's not so bad.

One big downside is that if you have a struct that you've been returning something directly, and it's used in lots of places, and then you need to add a field that requires these semantics, you either have to heap allocate it, or change everything to accept a pointer parameter. It's infectious. For example, back when we had LockFreeQueue, it required a field to point to another one. And if you used it in any other struct, it forced you to heap allocate it or make the struct that you used it in init() with a pointer parameter.

@BarabasGitHub I can come up with a few on the top of my head:

• Keeping variables const when possible. If you only ever initialize a value, and after this, it is read-only, then having to do var a: T = undefined; a.init() hides the intent that a is const.
• Results should be returned, and not passed in. Again, an "out" parameter hides intent, and make code harder to read.

Also @andrewrk, does this apply to labeled blocks as well?

const a = blk: {
    @result() = Foo{
        .x = v,
        .ptr = &@result().x,
    };
    break :blk @result(); 
}

That's a good question. I didn't consider it. I need to rework the proposal taking that into account.

@BarabasGitHub

A parameter is input only, a return value is output only, and a parameter that is a pointer points to something that can be input or output or both. A pointer to const is input only, but a pointer to mutable memory doesn't encode the direction of data flow.

C# and other languages have the concept of an out parameter, which is effectively a named return value that you call with pass by reference semantics. This clearly communicates to the caller and the function implementor what must happen with the parameter.

• It is an error if the function doesn't assign to the parameter on every code path through the function.
• It is an error if the function tries to read from the parameter.
• The caller can pass in an uninitialized variable and be guaranteed that the variable will be initialized once the function returns.

All of these guarantees are already in place for return values, although you might not think about them in these terms.

With the right compiler flags, you can dig up the old behavior of C where you don't have to return a value in all paths through a function. The result is that sometimes your return value is undefined. It's good that the compiler makes this an error. When passing an explicit pointer parameter that is intended to hold a return value, the compiler doesn't guarantee you initialize it on every code path.

Alright, those are definitely good arguments. But then I wonder how to nicely handle multiple return values. That's something that annoys me in C and C++. Usually you end up with a struct, but that means you have to unpack it at the call site and thus make copies. (maybe that's something to discuss here though)

That's a great point. Since tuples (#208) is one of the issues I want to solve in 0.4.0, I need to take those into account in this proposal as well. (Tuples is how multiple return values would work.)

That's something that annoys me in C and C++. Usually you end up with a struct

not so anymore https://skebanga.github.io/structured-bindings/

Great. I'm glad there will have tuples in the language and that there's an idea for multiple return values.

OK I'm back with an updated proposal. I'm confident about this one. So confident, in fact, that I'm going to accept it as the null hypothesis. Everyone is of course welcome to provide alternative proposals or point out flaws in this one that mean it should not be accepted.

Copy Elision Part 1, a prerequisite, is well underway in #1682. This proposal is for for Part 2 where we make it possible for functions to return large structs with no copying, guaranteed, and more importantly, to use the return value before returning it, e.g. calling a method on it.

I started typing up this complicated proposal and then changed my mind at the end, and here's where I've arrived, somewhere very close to what @thejoshwolfe originally proposed.

• Zig will detect when all control flow paths end with return foo;, where foo is the same in all the return expressions, and is declared in a way that allows it to reference the return value. In this case the variable declaration will reference the return value rather than be a stack allocation. The detection doesn't have to be very advanced, just good enough that it's easy to get the detection to happen when you are trying to.
• Introduce the ability to mark structs/unions as "nocopy", or perhaps even at a field level, where you can mark individual fields as "fixed" which means that they cannot be moved to a new address in memory, once initialized.
• If a struct/union is "nocopy" and would get copied, it's a compile error. This makes up for lack of sophistication in the result value detection. The compile error would point to the part in the code where a copy happens, and you could then adjust the logic to avoid it. Note that LLVM optimizations do much more advanced copy elision detection; this proposal is discussing only what Zig has to do to guarantee no-copy semantics in certain situations.
• This solves the question about blocks. They work the same way.
• Tuples: No tuples. See the comment I'm about to post on that issue. (#208)

First part is landed in 01ff0d4d629c3800ebac68edfd91edb570aeaa59
Second and third parts split into #2761 and #2765