I've noticed that Rust doesn't perform niche optimization on unions (i.e. reduced-size Option<union>). Is that an omission, or is there a technical reason for this?
I'd expect this to work, since the first field is the same in all union variants, and has a niche:
I don't have the specific citation for this, but I distinctly recall it being decided that union should suppress validity requirements (thus any niching opportunities) and that any byte layout be valid in a union.
This is notable for e.g. MaybeUninit, which is currently just[1] defined as union { (), ManuallyDrop<T> }. This means that (as currently implemented in the compiler) unionhas to suppress niches, as I understand it.
It is a lang item, but a "soft" lang item in that the compiler emits code using it, not that it is given special semantics. ↩︎
To me this feels solved by simply not considering the extra padding for the niche, or in the other words, consider the padding as if it can take any bit pattern. Thus the () variant has no niche, and MaybeUninit continues working like it currently does.
The counterargument to that is that unions with fields that all have consistent niche's (like the Niche union in the OP) could still utilize those niches.
Whether or not that's worth the effort of implementing is a separate question, though... Unions complicate niches because a union like union U { a: (NonZeroU8, u8), b: (u8, NonZeroU8) } doesn't have a niche anymore, unlike a struct would. Union niches would require some careful, custom logic to implement correctly.
My recollection is that this fell out of deciding that Rust doesn't have the "at least one union variant must be valid" rule, and thus one cannot trust that any niche, even if consistent across all variants, would be there.
(I don't recall why this was decided, though. Since it seems to me like adding a () variant would always work to get essentially that behaviour if that's what was desired for a particular union.)
It could potentially, fields with niches could be sorted to the start of their alignment class so that (NonZeroU8, u8) and (u8, NonZeroU8) have the same layout (which seems like it could help enum niche opts too).
Also of note is that in the case of a union like union U { a: NonZeroU8, b: (u8, NonZeroU8) } (with tuples that lay their fields out in declaration order), the a variant could be offset to align the niche with that in the b variant since repr(Rust) unions don't guarantee their layout.
If unions were guaranteed to suppress validity requirements, then it could simply be union MaybeUninit<T> { init: ManuallyDrop<T> }, the () variant is only necessary as a way to forceably remove the validity requirements if union doesn't do that.
One reason (of many) that you aren't guaranteed at least one union variant is valid:
Consider a struct containing a type byte followed by a union, where the type byte determines the correct interpretation of the union, and not all types are defined yet. A producer of that struct might add a new variant, with a type you don't know. If you see an unknown type, no variant of the union is valid; it might contain arbitrary bytes from your perspective. You could still read those bytes and (say) checksum them, but you can't assume they correspond to any variant.
This is even possible to break without any unsafe:
use std::num::NonZeroU8;
union U {
a: (NonZeroU8, u8),
b: (u8, NonZeroU8),
}
fn main() {
let mut x = U {
a: (1_u8.try_into().unwrap(), 0),
};
x.b.0 = 0;
}
Indeed, your example in the original post seems very reasonable to me and I don’t see a way to break it either. My answer was just about justifying that the concrete example that @mjbshaw brought up can’t/doesn’t have a niche.
Depending on whether or not we currently always allow unions to always contain uninitialized or invalid data, and if yes how clearly specified this is, worst-case such niches as you propose could be introduced over an edition where cargo fix --edition would add an additional __dummy: () fields to every existing union that isn’t supposed to change semantics when upgrading editions.
Even in that case, our defined semantics allow a union to contain a value that isn't valid for any of its fields, for multiple reasons.
I personally think the right solution to this would be to stabilize a mechanism to declare explicit niches. That way, rather than the compiler trying to guess at the union semantics (and risk doing so incorrectly), the code can declare the correct semantics.
You can if the semantics of the structure are such that you know the checksum is over the entire structure (for instance, if padding is defined to be zeroed). This is true for some firmware data structures, for example.
Tuples are not guaranteed to be laid out in memory in sequence. union U { a: (NonZeroU8, u8), b: (u8, NonZeroU8) } might as well be ABI-equivalent to (NonZeroU8, u8), with only field names differing between union variants.