Received: by 2002:a05:6359:c8b:b0:c7:702f:21d4 with SMTP id go11csp1026180rwb; Thu, 6 Oct 2022 07:36:25 -0700 (PDT) X-Google-Smtp-Source: AMsMyM5uwEb50eeDif4SsH9dgGQ2HusmXoJ6l4z3fCe35jS8XdOXR2+Zdo8lB8ELMIqlWyJyWev1 X-Received: by 2002:a50:bb68:0:b0:458:ab56:a8c0 with SMTP id y95-20020a50bb68000000b00458ab56a8c0mr52199ede.103.1665066985248; Thu, 06 Oct 2022 07:36:25 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1665066985; cv=none; d=google.com; s=arc-20160816; b=GXTnSFtZZHIwPy0P+5N4cBACciBQFQ8ICLcpcOKjJGLq9sEU+L0TgutyTMCxv1GQE+ dBlriNwbLCzOlvt8szg4J2sZ64Jr/VzKUj7ZoNYi25+MeehIuH7kZYVhkiA5cLXk/F6Q zJZUrcXTuhwrxn0sSmRuTiqPT7czkBsQOqruCjFIBw6xo/SXWu4of6yd8U1Uc9CUFPq/ RcHz3q9lXhSBUQ2jHrR8pOYkmXB3y27obpyv8Qa7MWfjOLTqoQzM0gM4FX/3tgho0HNu /CCCgDhYnKm9UNVcEAcaMk84XghFfnE3S5dYmXQgwRrHCa6no07XSuZ3uyD0gDNLz4XT UN8A== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:content-transfer-encoding:mime-version :references:in-reply-to:message-id:date:subject:cc:to:from; bh=/z+bqY+j7b8OpETQUraO3VrGksETylBsfzsxp8Fz9VE=; b=ite5wyG3wMUTwrsxrrM6dxePK1CEuXG1G0vaV4Q9zOeR7T0Odi6ii69j2SBbJryV1F S/LBHHuZDnpXLNBEAeZnqHmgzoQF44AzA665gcFgtdJY/KDX0kxojgqtvI92ywQXMXok m47mwZFY+h07m9TxzSL2JP4ybATfxu/4iEKdKKjNpBuAJVjxQEn5WgA3RnCj9mbNkT3Q IUh46JJ8SvU01YTB/uy3fBVt2JZx4nvNUMFVMHhKAGDas78b9PtupzXWjFppC1yrFIGq pRWz2r0sw1qui9ce+eD2z/+6NcdklExtNFJIt/aaazSoRHXzpSrukl2PCnb6hBHkbnyX lrcA== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20]) by mx.google.com with ESMTP id t8-20020a056402524800b00459dc4e4b3esi2194175edd.66.2022.10.06.07.35.59; Thu, 06 Oct 2022 07:36:25 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20; Authentication-Results: mx.google.com; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S231788AbiJFOSR (ORCPT + 99 others); Thu, 6 Oct 2022 10:18:17 -0400 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:56096 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S231735AbiJFORa (ORCPT ); Thu, 6 Oct 2022 10:17:30 -0400 Received: from mail-m118206.qiye.163.com (mail-m118206.qiye.163.com [115.236.118.206]) by lindbergh.monkeyblade.net (Postfix) with ESMTP id AC8CC57241 for ; Thu, 6 Oct 2022 07:15:02 -0700 (PDT) Received: from lyc-workstation.. (unknown [221.212.176.62]) by mail-m118206.qiye.163.com (HMail) with ESMTPA id 38763BE0B01; Thu, 6 Oct 2022 22:14:58 +0800 (CST) From: YingChi Long To: me@inclyc.cn Cc: bp@alien8.de, chang.seok.bae@intel.com, dave.hansen@linux.intel.com, hpa@zytor.com, linux-kernel@vger.kernel.org, mingo@redhat.com, ndesaulniers@google.com, pbonzini@redhat.com, tglx@linutronix.de, x86@kernel.org, david.laight@aculab.com Subject: [PATCH v3] x86/fpu: use _Alignof to avoid UB in TYPE_ALIGN Date: Thu, 6 Oct 2022 22:14:42 +0800 Message-Id: <20221006141442.2475978-1-me@inclyc.cn> X-Mailer: git-send-email 2.35.1 In-Reply-To: <20220925153151.2467884-1-me@inclyc.cn> References: <20220925153151.2467884-1-me@inclyc.cn> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit X-HM-Spam-Status: e1kfGhgUHx5ZQUpXWQgPGg8OCBgUHx5ZQUlOS1dZFg8aDwILHllBWSg2Ly tZV1koWUFPN1dZLVlBSVdZDwkaFQgSH1lBWUJOGkpWQktITU1PHhgYQxlJVQIWExYaEhckFA4PWV dZGBILWUFZSUlKVUlKSVVKTE1VTUlZV1kWGg8SFR0UWUFZT0tIVUpJS0NOTVVKS0tVS1kG X-HM-Sender-Digest: e1kMHhlZQR0aFwgeV1kSHx4VD1lBWUc6MD46Fgw6TjlOATYuM09POSxN DghPFDpVSlVKTU1OS01OTUJCSk1CVTMWGhIXVRYeOxIVGBcCGFUYFUVZV1kSC1lBWUlJSlVJSklV SkxNVU1JWVdZCAFZQUhOSU03Bg++ X-HM-Tid: 0a83ada645d02d28kusn38763be0b01 X-Spam-Status: No, score=-1.9 required=5.0 tests=BAYES_00,RCVD_IN_DNSWL_NONE, SPF_HELO_NONE,SPF_PASS autolearn=ham autolearn_force=no version=3.4.6 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on lindbergh.monkeyblade.net Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org WG14 N2350 made very clear that it is an UB having type definitions with in "offsetof". This patch change the implementation of macro "TYPE_ALIGN" to builtin "_Alignof" to avoid undefined behavior. I've grepped all source files to find any type definitions within "offsetof". offsetof\(struct .*\{ .*, This implementation of macro "TYPE_ALIGN" seemes to be the only case of type definitions within offsetof in the kernel codebase. I've made a clang patch that rejects any definitions within __builtin_offsetof (usually #defined with "offsetof"), and tested compiling with this patch, there are no error if this patch applied. ISO C11 _Alignof is subtly different from the GNU C extension __alignof__. __alignof__ is the preferred alignment and _Alignof the minimal alignment. For 'long long' on x86 these are 8 and 4 respectively. The macro TYPE_ALIGN we're replacing has behavior that matches _Alignof rather than __alignof__. Signed-off-by: YingChi Long Link: https://www.open-std.org/jtc1/sc22/wg14/www/docs/n2350.htm Link: https://godbolt.org/z/sPs1GEhbT Link: https://gcc.gnu.org/onlinedocs/gcc/Alignment.html Link: https://reviews.llvm.org/D133574 --- v3: - commit message changes suggested by Nick and David v2: https://lore.kernel.org/all/20220927153338.4177854-1-me@inclyc.cn/ --- arch/x86/kernel/fpu/init.c | 7 ++----- 1 file changed, 2 insertions(+), 5 deletions(-) diff --git a/arch/x86/kernel/fpu/init.c b/arch/x86/kernel/fpu/init.c index 621f4b6cac4a..de96c11e1fe9 100644 --- a/arch/x86/kernel/fpu/init.c +++ b/arch/x86/kernel/fpu/init.c @@ -133,9 +133,6 @@ static void __init fpu__init_system_generic(void) fpu__init_system_mxcsr(); } -/* Get alignment of the TYPE. */ -#define TYPE_ALIGN(TYPE) offsetof(struct { char x; TYPE test; }, test) - /* * Enforce that 'MEMBER' is the last field of 'TYPE'. * @@ -143,8 +140,8 @@ static void __init fpu__init_system_generic(void) * because that's how C aligns structs. */ #define CHECK_MEMBER_AT_END_OF(TYPE, MEMBER) \ - BUILD_BUG_ON(sizeof(TYPE) != ALIGN(offsetofend(TYPE, MEMBER), \ - TYPE_ALIGN(TYPE))) + BUILD_BUG_ON(sizeof(TYPE) != \ + ALIGN(offsetofend(TYPE, MEMBER), _Alignof(TYPE))) /* * We append the 'struct fpu' to the task_struct: -- 2.35.1