Cargo Check T-lang Policy #3477
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,45 @@ | ||
| - Feature Name: `cargo-check-lang-policy` | ||
| - Start Date: 2023-08-22 | ||
| - RFC PR: [rust-lang/rfcs#0000](https://github.com/rust-lang/rfcs/pull/0000) | ||
| - Rust Issue: [rust-lang/rust#0000](https://github.com/rust-lang/rust/issues/0000) | ||
|
|
||
| # Summary | ||
| [summary]: #summary | ||
|
|
||
| This RFC helps to codify the T-lang policy regarding `cargo check` vs `cargo build`. | ||
|
|
||
| This is a policy RFC rather than a change to the language itself, and is thus "instantly stable" once accepted. There's no associated feature within the compiler, and no further stabilization report necessary. | ||
|
|
||
| # Motivation | ||
| [motivation]: #motivation | ||
|
|
||
| It has often come up within GitHub issues what *exactly* the intended line is between Cargo's `check` and `build` commands should be, what users should expect, and so on. | ||
|
|
||
| The RFC gives a clear policy from T-lang's perspective so that both other teams within the Rust project as well as users of the Rust project can have the same expectations. | ||
|
|
||
| # Decision | ||
| [decision]: #decision | ||
|
|
||
| * `cargo build` catches all Rust compilation errors. | ||
| * `cargo check` only catches some subset of the possible compilation errors. | ||
| * A Rust program **must** compile with `cargo build` to be covered by Rust's standard stability guarantee. | ||
|
|
||
| Specifically, if a given Rust program does not compile with `cargo build` then it might or might not pass `cargo check`. If a program does not compile with `cargo build` but does pass `cargo check` it still might not pass a `cargo check` in a future version of Rust. Changes in `cargo check` outcome when `cargo build` does not work are not considered a breaking change in Rust. | ||
|
|
||
| `cargo check` **should** catch as many errors as possible, but the emphasis of `cargo check` is on giving a "fast" answer rather than giving a "complete" answer. | ||
| If you need a complete answer with all possible errors accounted for then you **must** use `cargo build`. | ||
| The rationale for this is that giving a "complete" answer requires (among other things) doing full monomorphization (since some errors, such as those related to associated consts, can only be caught during monomorphization). | ||
| Monomorphization is expensive: instead of having to check each function only once, each function now has to be checked once for all choices of generic parameters that the crate needs. | ||
| Given this performance cost and the fact that errors during monomorphization are fairly rare, `cargo check` favors speed over completeness. | ||
|
|
||
| Examples where the optimization level can affect if a program passes `cargo check` and/or `cargo build` are considered bugs unless there is a documented policy exception, approved by T-lang. One example of such an exception is [RFC #3016](https://rust-lang.github.io/rfcs/3016-const-ub.html), which indicated that undefined behavior in const functions cannot always be detected statically (and in particular, optimizations may cause the UB to be undetectable). | ||
|
|
||
| # Unresolved questions | ||
Lokathor marked this conversation as resolved.
Show resolved
Hide resolved
|
||
| [unresolved-questions]: #unresolved-questions | ||
|
|
||
| * Is there any situation when we would *want* to allow optimization level to affect if a program passes or fails a build? This seems unlikely. | ||
|
There was a problem hiding this comment. There's one very notable case for linker errors: the "no panic trick" relies on making an unwind call an undefined linker symbol and optimization removing any references to the symbol, thus allowing the code to compile iff the compiler proves that no unwinding can occur. Additionally, essentially the entirety of the average 5% regressions caused by rust-lang/rust#112879 come from not permitting dead code optimizations to skip middle-end MIR monomorphization of statically known to be unreachable code. There was a problem hiding this comment.
That's not clear at all, given that that PR reports regressions in |
||
|
|
||
| # Future possibilities | ||
| [future-possibilities]: #future-possibilities | ||
|
|
||
| * Any future changes in this policy would require a future RFC so that such changes are as clear and visible as possible. | ||
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
FWIW, this is currently not optimization-dependent. CTFE always runs on unoptimized MIR, exactly to avoid that situation.
But I understand the point of this paragraph is that it would be allowed to be optimization-dependent.