Rust for C-Programmers

6.1 Overview of Ownership

In Rust, every piece of data has an “owner.” You can imagine the owner as a variable responsible for overseeing a particular piece of data. When that variable goes out of scope (for instance, at the end of a function), Rust automatically frees the data. This design eliminates many memory-management errors common in languages like C.

6.1.1 Ownership Rules

Rust’s ownership model centers on a few critical rules:

1. Every value in Rust has a single, unique owner.
   Each piece of data is associated with exactly one variable.

2. When the owner goes out of scope, the value is dropped (freed).
   Rust automatically reclaims resources when the variable that owns them leaves its scope.

3. Ownership can be transferred (moved) to another variable.
   If you assign data from one variable to another, ownership of that data moves to the new variable.

4. Only one owner can exist for a value at a time.
   No two parts of the code can simultaneously own the same resource.

Rust enforces these rules at compile time through the borrow checker, which prevents errors like data races or dangling pointers without introducing extra runtime overhead.

If you need greater control over how or when data is freed, Rust allows you to implement the Drop trait. This mechanism is analogous to a C++ destructor, allowing you to define custom cleanup actions when an object goes out of scope.

Example: Scope and Drop

fn main() {
    {
        let s = String::from("hello"); // s comes into scope
        // use s
    } // s goes out of scope and is dropped here
}

In this example, s is a String that exists only within the inner scope. When that scope ends, s is automatically dropped, and its memory is reclaimed. This behavior resembles C++ RAII, but Rust’s strict compile-time checks enforce it.

Comparison with C

#include <stdio.h>
#include <stdlib.h>
#include <string.h> // for strcpy

int main() {
    {
        char *s = malloc(6); // Allocate memory on the heap
        strcpy(s, "hello");
        // use s
        free(s); // Manually free the memory
    } // No automatic cleanup in C
    return 0;
}

In C, forgetting to call free(s) results in a memory leak. Rust avoids this by automatically calling drop when the variable exits its scope.