Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

error on alignments greater than isize::MAX #131633

Merged
merged 1 commit into from
Oct 28, 2024
Merged

error on alignments greater than isize::MAX #131633

merged 1 commit into from
Oct 28, 2024

Conversation

asquared31415
Copy link
Contributor

Fixes #131122

On zulip someone had a concern that it was legal to create a type with alignment isize::MAX + 1, but I do not believe this should be allowed for repr(align), as repr(align) also increases the size of the type, and that would be larger than the maximum allowed size of objects.

(cc @workingjubilee #131276)

@rustbot
Copy link
Collaborator

rustbot commented Oct 13, 2024

r? @nnethercote

rustbot has assigned @nnethercote.
They will have a look at your PR within the next two weeks and either review your PR or reassign to another reviewer.

Use r? to explicitly pick a reviewer

@rustbot rustbot added S-waiting-on-review Status: Awaiting review from the assignee but also interested parties. T-compiler Relevant to the compiler team, which will review and decide on the PR/issue. labels Oct 13, 2024
@rust-log-analyzer

This comment has been minimized.

Sign in to view
@rust-log-analyzer

This comment has been minimized.

Sign in to view
@asquared31415
Copy link
Contributor Author

"test compilation failed even though it shouldn't"... but it's a build-fail test???

@jieyouxu
Copy link
Member

"test compilation failed even though it shouldn't"... but it's a build-fail test???

#130894

@rust-log-analyzer

This comment has been minimized.

Sign in to view
@nnethercote
Copy link
Contributor

r? @workingjubilee

@zachs18
Copy link
Contributor

zachs18 commented Oct 16, 2024

as repr(align) also increases the size of the type, and that would be larger than the maximum allowed size of objects.

repr(align) can be applied to unit/ZST structs without increasing their size, so #[repr(align(32768))] struct ZST; is possible on 16-bit targets and currently does not error. (though it might be enough of an edge case to disallow anyway).

#![no_std]

#[repr(align(32768))]
struct Hello;

pub fn foo() -> usize { core::mem::align_of::<Hello>() }

This currently compiles fine with cargo +nightly build -Z build-std=core --target avr-unknown-gnu-atmega328 --release, but fails on this branch with

error[E0589]: alignment must not be greater than `isize::MAX` bytes
 --> src/lib.rs:4:8
  |
4 | #[repr(align(32768))]
  |        ^^^^^^^^^^^^
  |
  = note: `isize::MAX` is 32767 for the current target

For more information about this error, try `rustc --explain E0589`.

@workingjubilee
Copy link
Member

workingjubilee commented Oct 16, 2024
edited
Loading

cc @Patryk27 as prospective maintainer for AVR
cc @cr1901 because you're the one who comes to mind re: MSP430

You are the only targets affected by this, as all other targets have a bound on repr(align(N)) that is already below isize::MAX, functionally imposed by our codegen backends.

Do you think this #[repr(align(32768))] struct Hello16BitAlign; has any real use-case on AVR? Even a somewhat silly one?

Note that #[repr(align(16384))] struct Hello16BitSize(u8); is the limit for actually-sized types.

@asquared31415
Copy link
Contributor Author

ah i see, i was under the impression repr(align) increased the size for structs that would otherwise be 1-ZSTs, i can probably add an exception if it's needed then? i do think this is a slightly weird use case, but i'm mostly neutral on this, and dont work with any 16 bit targets for rust to know what they might need.

@cr1901
Copy link
Contributor

cr1901 commented Oct 17, 2024
edited
Loading

I've never used Rust on an MSP430 with more than 10kB (8+2kB) of RAM. MSP430's max out at 512kB ROM and 66kB RAM.

However, from what I can gather, actual existing MSP430s top out at 18kB (16+2kB) of RAM without relying on stuff unsupported by LLVM. Given such constraints, #[repr(align(32768))]- or even #[repr(align(16384))], or #[repr(align(8192))], etc- isn't usable in practice.

If LLVM gets these features to access 20-bit addresses, I don't see how I'd use such functionality for RAM; you only have 64kB continguous RAM anyway- the other 2kB is a marketing gimmick "bonus" if you're not using the USB peripheral, at a much lower address than the rest of RAM. And having 20 ZSTs 32kB apart in ROM doesn't seem that useful either.

@Patryk27
Copy link
Contributor

Do you think this #[repr(align(32768))] struct Hello16BitAlign; has any real use-case on AVR? Even a somewhat silly one?

I don't think so - I mean, I think ideally we'd throw this error on instantiating the struct, so that a mere fact of such type existing wasn't a failure (as in @zachs18's example), but I think there's no point in doing more complex analysis considering it's already quite an edge case.

@workingjubilee
Copy link
Member

Okay!

Then if people using the targets cannot think of a good reason for us to support an alignment greater than isize::MAX, zero-sized type or no: let us not, and keep the rule consistent.

@workingjubilee
Copy link
Member

Unfortunately I don't know that this is the right place to emit this check, so having determined that, its implementation seems correct, but it would be good if someone with experience with rustc_passes could actually weigh in.

@workingjubilee
Copy link
Member

hmm, recent history (and a coinflip) says...

r? @jieyouxu

@rustbot rustbot assigned jieyouxu and unassigned workingjubilee Oct 18, 2024
@asquared31415
Copy link
Contributor Author

asquared31415 commented Oct 18, 2024
edited
Loading

Unfortunately I don't know that this is the right place to emit this check [...]

I explored an alternative approach doing the error in the same location that the 2^64 check was emitted in rustc_attr::builtin::parse_alignment, but was unsatisfied with how the &'static str error type was being used and changing the call sites seemed non-trivial because it is used for repr(packed) as well.

... on further thought, should this isize::MAX check be done for repr(packed(N))? Since repr(packed) can only lower alignment, it's probably not necessary?

jieyouxu
jieyouxu reviewed Oct 18, 2024
View reviewed changes
Copy link
Member

@jieyouxu jieyouxu left a comment
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This is a reasonable place to check the attribute. I have some nits, but looks good otherwise.

should this isize::MAX check be done for repr(packed(N))? Since repr(packed) can only lower alignment, it's probably not necessary?

That should be in a follow-up if that is determined desirable.

compiler/rustc_passes/src/check_attr.rs Outdated Show resolved Hide resolved
compiler/rustc_passes/src/check_attr.rs Outdated
Comment on lines 1809 to 1810
// ignore values greater than 2^29, a different error will be emitted
if val <= 2_u64.pow(29) {
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Problem: please use a self.dcx().delayed_bug("...") here to assert that an error is emitted

This is a strange one: lets you register an error without emitting it. If compilation ends without any other errors occurring, this will be emitted as a bug. Otherwise, it will be silently dropped. I.e. “expect other errors are emitted” semantics. Useful on code paths that should only be reached when compiling erroneous code.

-- https://doc.rust-lang.org/nightly/nightly-rustc/rustc_errors/enum.Level.html#variant.DelayedBug

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Turns out this is good, actually. The delayed bug caught the fact that we didn't even properly check the attr on certain targets in the first place, lmao.

@jieyouxu
Copy link
Member

@rustbot author

@rustbot rustbot removed the S-waiting-on-review Status: Awaiting review from the assignee but also interested parties. label Oct 18, 2024
@rustbot rustbot added the S-waiting-on-author Status: This is awaiting some action (such as code changes or more information) from the author. label Oct 18, 2024
@asquared31415
Copy link
Contributor Author

@rustbot ready

will open a zulip thread about the potential follow up PR for repr(align), though personally i don't think it's necessary

@rustbot rustbot added S-waiting-on-review Status: Awaiting review from the assignee but also interested parties. and removed S-waiting-on-author Status: This is awaiting some action (such as code changes or more information) from the author. labels Oct 25, 2024
jieyouxu
jieyouxu approved these changes Oct 28, 2024
View reviewed changes
Copy link
Member

@jieyouxu jieyouxu left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks, one tiny nit then r=me.

tests/ui/repr/repr_align_greater_usize.rs Outdated Show resolved Hide resolved
@asquared31415 @jieyouxu
Error on alignments greater than isize::MAX
6fc7ce4 
Co-authored-by: Jieyou Xu <jieyouxu@outlook.com>
@jieyouxu
Copy link
Member

Dropped the redundant check-fail, no other changes.
@bors r+ rollup=iffy

@bors
Copy link
Contributor

bors commented Oct 28, 2024

📌 Commit 6fc7ce4 has been approved by jieyouxu

It is now in the queue for this repository.

@bors bors added S-waiting-on-bors Status: Waiting on bors to run and complete tests. Bors will change the label on completion. and removed S-waiting-on-review Status: Awaiting review from the assignee but also interested parties. labels Oct 28, 2024
@jieyouxu jieyouxu mentioned this pull request Oct 28, 2024
Merged
bors added a commit to rust-lang-ci/rust that referenced this pull request Oct 28, 2024
@bors
Auto merge of rust-lang#132251 - jieyouxu:rollup-mtv9mpd, r=jieyouxu
66701c4 
Rollup of 7 pull requests

Successful merges:

 - rust-lang#131633 (error on alignments greater than `isize::MAX`)
 - rust-lang#132086 (Tweak E0277 highlighting and "long type" path printing)
 - rust-lang#132220 (Add GUI regression test for doc struct fields margins)
 - rust-lang#132225 (Dynamically link run-make support)
 - rust-lang#132227 (Pass constness with span into lower_poly_trait_ref)
 - rust-lang#132242 (Support `char::is_digit` in const contexts.)
 - rust-lang#132243 (Remove `ObligationCause::span()` method)

r? `@ghost`
`@rustbot` modify labels: rollup
@bors bors merged commit 95a9d49 into rust-lang:master Oct 28, 2024
6 checks passed
@rustbot rustbot added this to the 1.84.0 milestone Oct 28, 2024
@bors
Copy link
Contributor

bors commented Oct 28, 2024

⌛ Testing commit 6fc7ce4 with merge 66701c4...

rust-timer added a commit to rust-lang-ci/rust that referenced this pull request Oct 28, 2024
@rust-timer
Unrolled build for rust-lang#131633
69dcce6 
Rollup merge of rust-lang#131633 - asquared31415:align_isize_max, r=jieyouxu

error on alignments greater than `isize::MAX`

Fixes rust-lang#131122

On zulip someone had a concern that it was legal to create a type with alignment `isize::MAX + 1`, but I do not believe this should be allowed for `repr(align)`, as `repr(align)` also increases the *size* of the type, and that would be larger than the maximum allowed size of objects.

(cc `@workingjubilee` rust-lang#131276)
@jieyouxu jieyouxu mentioned this pull request Oct 31, 2024
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@jieyouxu jieyouxu jieyouxu approved these changes

Assignees

@jieyouxu jieyouxu

Labels
S-waiting-on-bors Status: Waiting on bors to run and complete tests. Bors will change the label on completion. T-compiler Relevant to the compiler team, which will review and decide on the PR/issue.
Projects
None yet
Milestone
1.84.0
10 participants
@asquared31415 @rustbot @rust-log-analyzer @jieyouxu @nnethercote @zachs18 @workingjubilee @cr1901 @Patryk27 @bors