rustc_codegen_llvm: don't assume offsets are always aligned. #53998
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
|
r? @oli-obk (rust_highfive has picked a reviewer for you, use r? to override) |
rust-highfive
added
the
S-waiting-on-review
oli-obk
reviewed
Sep 6, 2018
| @@ -174,7 +174,12 @@ impl PlaceRef<'ll, 'tcx> { | |||
| let cx = bx.cx; | |||
| let field = self.layout.field(cx, ix); | |||
| let offset = self.layout.fields.offset(ix); | |||
| let align = self.align.min(self.layout.align).min(field.align); | |||
| let mut real_field_align = self.align.min(self.layout.align).min(field.align); | |||
| if offset.abi_align(real_field_align) > offset { | |||
There was a problem hiding this comment.
Since this code is already duplicated twice in rustc and will get a third duplication in miri, I think this warrants a method on Align taking a field alignment and a field offset and producing the real alignment.
There was a problem hiding this comment.
That's not enough, sadly, unless you mean starting from self.align.min(self.layout.align) and then using the method on that. I think I like that, and I can fix the FIXME too.
|
@oli-obk Does this new approach work for you? |
|
@bors r+ the math checks out, yes |
|
📌 Commit b9e7574 has been approved by |
bors
added
S-waiting-on-bors
arielb1
reviewed
Sep 8, 2018
| @@ -174,7 +174,10 @@ impl PlaceRef<'ll, 'tcx> { | |||
| let cx = bx.cx; | |||
| let field = self.layout.field(cx, ix); | |||
| let offset = self.layout.fields.offset(ix); | |||
| let align = self.align.min(self.layout.align).min(field.align); | |||
| let effective_field_align = self.align | |||
There was a problem hiding this comment.
Why isn't field.align set up properly here?
eddyb
commented
Sep 8, 2018
| let align = self.align.min(self.layout.align).min(field.align); | ||
| let effective_field_align = self.align | ||
| .min(self.layout.align) | ||
| .min(field.align) |
There was a problem hiding this comment.
It might help #54028 to remove this line, and rely strictly on the alignment of the type, combined with the best-case alignment for the offset. That way, we can hint LLVM about alignments that are higher than it can figure out by itself. Do we want to do that and do we expect a performance improvement?
Mark-Simulacrum
added a commit
to Mark-Simulacrum/rust
that referenced
this pull request
Sep 8, 2018
rustc_codegen_llvm: don't assume offsets are always aligned. Fixes rust-lang#53728 by taking into account not just overall type alignment and the field's alignment when determining whether a field is aligned or not ("packed"), but also the field's offset within the type. Previously, rustc assumed that the offset was always at least as aligned as `min(struct.align, field.align)`. However, there's no real reason to have that assumption, and it obviously can't always be true after we implement `#[repr(align(N), pack(K))]`. There's also a case today where that assumption is not true, involving niche discriminants in enums: Suppose that we have the code in rust-lang#53728: ```Rust #[repr(u16)] enum DeviceKind { Nil = 0, } #[repr(packed)] struct DeviceInfo { endianness: u8, device_kind: DeviceKind, } struct Wrapper { device_info: DeviceInfo, data: u32 } ``` Observe the layout of `Option<Wrapper>`. It has an alignment of 4 because of the `u32`. `device_info.device_kind` is a good niche field to use, which means the enum ends up with this layout: ``` size = 8 align = 4 fields = [ { offset=1, type=u16 } // discriminant, .<Some>.device_info.device_kind ] ``` And here we have an discriminant with alignment 2 (`u16`) but offset 1.
bors
added a commit
that referenced
this pull request
Sep 9, 2018
rustc_codegen_llvm: don't assume offsets are always aligned. Fixes #53728 by taking into account not just overall type alignment and the field's alignment when determining whether a field is aligned or not ("packed"), but also the field's offset within the type. Previously, rustc assumed that the offset was always at least as aligned as `min(struct.align, field.align)`. However, there's no real reason to have that assumption, and it obviously can't always be true after we implement `#[repr(align(N), pack(K))]`. There's also a case today where that assumption is not true, involving niche discriminants in enums: Suppose that we have the code in #53728: ```Rust #[repr(u16)] enum DeviceKind { Nil = 0, } #[repr(packed)] struct DeviceInfo { endianness: u8, device_kind: DeviceKind, } struct Wrapper { device_info: DeviceInfo, data: u32 } ``` Observe the layout of `Option<Wrapper>`. It has an alignment of 4 because of the `u32`. `device_info.device_kind` is a good niche field to use, which means the enum ends up with this layout: ``` size = 8 align = 4 fields = [ { offset=1, type=u16 } // discriminant, .<Some>.device_info.device_kind ] ``` And here we have an discriminant with alignment 2 (`u16`) but offset 1.
|
☀️ Test successful - status-appveyor, status-travis |
|
@eddyb so you mention on Discord that miri might also need a fix here. Do you have a testcase to check? I assume we'd currently throw an "unaligned access" error where we should not. |
kennytm
added a commit
to kennytm/rust
that referenced
this pull request
Sep 20, 2018
miri: correctly compute expected alignment for field This is the miri version of rust-lang#53998. A test is added by rust-lang/miri#457. r? @eddyb
bors
added a commit
to rust-lang/miri
that referenced
this pull request
Jul 31, 2023
add some interesting tests for alignment corner cases `strange_enum_discriminant_offset` example found in rust-lang/rust#53998.
bors
added a commit
to rust-lang/miri
that referenced
this pull request
Jul 31, 2023
add some interesting tests for alignment corner cases `strange_enum_discriminant_offset` example found in rust-lang/rust#53998.
RalfJung
pushed a commit
to RalfJung/rust
that referenced
this pull request
Aug 6, 2023
add some interesting tests for alignment corner cases `strange_enum_discriminant_offset` example found in rust-lang#53998.
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Fixes #53728 by taking into account not just overall type alignment and the field's alignment when determining whether a field is aligned or not ("packed"), but also the field's offset within the type.
Previously, rustc assumed that the offset was always at least as aligned as
min(struct.align, field.align). However, there's no real reason to have that assumption, and it obviously can't always be true after we implement#[repr(align(N), pack(K))]. There's also a case today where that assumption is not true, involving niche discriminants in enums:Suppose that we have the code in #53728:
Observe the layout of
Option<Wrapper>. It has an alignment of 4 because of theu32.device_info.device_kindis a good niche field to use, which means the enum ends up with this layout:And here we have an discriminant with alignment 2 (
u16) but offset 1.