From: Heiko Carstens <hca@linux.ibm.com>
To: Gary Guo <gary@garyguo.net>
Cc: Miguel Ojeda <miguel.ojeda.sandonis@gmail.com>,
Boqun Feng <boqun@kernel.org>, Jan Polensky <japo@linux.ibm.com>,
gor@linux.ibm.com, agordeev@linux.ibm.com, ojeda@kernel.org,
peterz@infradead.org, jpoimboe@kernel.org, jbaron@akamai.com,
aliceryhl@google.com, borntraeger@linux.ibm.com,
svens@linux.ibm.com, bjorn3_gh@protonmail.com, lossin@kernel.org,
a.hindborg@kernel.org, tmgross@umich.edu, dakr@kernel.org,
rostedt@goodmis.org, ardb@kernel.org, linux-s390@vger.kernel.org,
rust-for-linux@vger.kernel.org, linux-kernel@vger.kernel.org
Subject: Re: [PATCH v3 0/4] s390: Enable Rust support and add required arch glue
Date: Wed, 27 May 2026 15:37:36 +0200 [thread overview]
Message-ID: <20260527133736.9471B16-hca@linux.ibm.com> (raw)
In-Reply-To: <DITFTAVVHTNQ.380OHUHGTOI6M@garyguo.net>
On Wed, May 27, 2026 at 12:54:13PM +0100, Gary Guo wrote:
> On Wed May 27, 2026 at 11:08 AM BST, Miguel Ojeda wrote:
> > On Tue, May 26, 2026 at 6:13 PM Heiko Carstens <hca@linux.ibm.com> wrote:
> > I also found a couple bits: in a KASAN build, I got [1] -- Cc'ing
> > Boqun in case he is interested:
> >
> > [ 5.323670] ok 5 rust_allocator
> > [ 5.324134] KTAP version 1
> > [ 5.324194] # Subtest: rust_atomics
> > [ 5.324251] # speed: normal
> > [ 5.324367] 1..8
> > [ 5.332184] # atomic_basic_tests.speed: normal
> > [ 5.332356] ok 1 atomic_basic_tests
> > [ 5.340797] # atomic_acquire_release_tests.speed: normal
> > [ 5.341054] ok 2 atomic_acquire_release_tests
> > [ 5.344127]
> > ==================================================================
> > [ 5.344584] BUG: KASAN: stack-out-of-bounds in
> > rust_helper_atomic_i8_xchg+0xb2/0xc0
> > [ 5.345283] Read of size 4 at addr 001bff7ffdbefcf0 by task
> > kunit_try_catch/142
> > [ 5.345493]
> > [ 5.346499] CPU: 2 UID: 0 PID: 142 Comm: kunit_try_catch Tainted:
> > G N 7.1.0-rc4-00009-g60c6b4b89923 #10 PREEMPTLAZY
> > [ 5.347065] Tainted: [N]=TEST
> > [ 5.347124] Hardware name: QEMU 8561 QEMU (KVM/Linux)
> > [ 5.347323] Call Trace:
> > [ 5.347408] [<001bfffffcb9c6b0>] dump_stack_lvl+0x80/0xa0
> > [ 5.347663] [<001bfffffcb90846>] print_report+0xd6/0x310
> > [ 5.347784] [<001bfffffd596e08>] kasan_report+0xe8/0x110
> > [ 5.347895] [<001bfffffde5a042>] rust_helper_atomic_i8_xchg+0xb2/0xc0
> > [ 5.347983] [<001bfffffde917fe>]
> > _RNvNtNtNtNtCseBLeUu9QniM_6kernel4sync6atomic9predefine5tests36kunit_rust_wrapper_atomic_xchg_tests+0x5be/0x4f90
> > [ 5.348088] [<001bfffffdf59e50>] kunit_try_run_case+0x150/0x3d0
> > [ 5.348194] [<001bfffffdf60500>]
> > kunit_generic_run_threadfn_adapter+0x90/0x130
> > [ 5.348257] [<001bfffffccf9fde>] kthread+0x33e/0x410
> > [ 5.348309] [<001bfffffcba122e>] __ret_from_fork+0x9e/0x3c0
> > [ 5.348357] [<001bfffffec96faa>] ret_from_fork+0xa/0x30
>
> The issue looks like an incorrect implementation of __arch_xchg1 and
> __arch_xchg2 for s390. The `READ_ONCE` (and subsequent cmpxchg) causes a 4-byte
> operations when only 1-byte can be touched.
>
> The functions should either be re-implemented in assembly, or be marked as
> __no_sanitize_or_inline.
I wouldn't call the implementation incorrect; due to lack of native 1- and
2-byte cmpxchg instructions those have to be emulated with the 4-byte variant.
So yes, the fix seems to be to mark those variants of __arch_xchg() and
__arch_cmpxchg() __no_sanitize_or_inline. But that's up to Jan :)
next prev parent reply other threads:[~2026-05-27 13:38 UTC|newest]
Thread overview: 26+ messages / expand[flat|nested] mbox.gz Atom feed top
2026-05-21 16:56 [PATCH v3 0/4] s390: Enable Rust support and add required arch glue Jan Polensky
2026-05-21 16:56 ` [PATCH v3 1/4] s390/bug: Provide ARCH_WARN_ASM for Rust WARN/BUG support Jan Polensky
2026-05-27 10:54 ` Gary Guo
2026-05-21 16:56 ` [PATCH v3 2/4] s390/jump_label: Implement ARCH_STATIC_BRANCH_JUMP_ASM and ARCH_STATIC_BRANCH_ASM macros Jan Polensky
2026-05-27 5:57 ` Alice Ryhl
2026-05-27 21:06 ` Jan Polensky
2026-05-27 10:54 ` Gary Guo
2026-05-21 16:56 ` [PATCH v3 3/4] rust/bindgen_parameters: Mark s390 types as opaque to prevent repr conflicts Jan Polensky
2026-05-21 16:56 ` [PATCH v3 4/4] s390: Enable Rust support Jan Polensky
2026-05-27 5:59 ` Alice Ryhl
2026-05-27 6:53 ` Heiko Carstens
2026-05-27 8:27 ` Miguel Ojeda
2026-05-26 13:55 ` [PATCH v3 0/4] s390: Enable Rust support and add required arch glue Miguel Ojeda
2026-05-26 16:13 ` Heiko Carstens
2026-05-27 10:08 ` Miguel Ojeda
2026-05-27 10:38 ` Alice Ryhl
2026-05-27 12:10 ` Miguel Ojeda
2026-05-27 13:44 ` Heiko Carstens
2026-05-27 15:25 ` Miguel Ojeda
2026-05-27 10:53 ` Gary Guo
2026-05-27 12:13 ` Miguel Ojeda
2026-05-27 11:54 ` Gary Guo
2026-05-27 13:37 ` Heiko Carstens [this message]
2026-05-28 14:03 ` Jan Polensky
2026-05-28 14:14 ` Gary Guo
2026-05-29 15:04 ` Jan Polensky
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20260527133736.9471B16-hca@linux.ibm.com \
--to=hca@linux.ibm.com \
--cc=a.hindborg@kernel.org \
--cc=agordeev@linux.ibm.com \
--cc=aliceryhl@google.com \
--cc=ardb@kernel.org \
--cc=bjorn3_gh@protonmail.com \
--cc=boqun@kernel.org \
--cc=borntraeger@linux.ibm.com \
--cc=dakr@kernel.org \
--cc=gary@garyguo.net \
--cc=gor@linux.ibm.com \
--cc=japo@linux.ibm.com \
--cc=jbaron@akamai.com \
--cc=jpoimboe@kernel.org \
--cc=linux-kernel@vger.kernel.org \
--cc=linux-s390@vger.kernel.org \
--cc=lossin@kernel.org \
--cc=miguel.ojeda.sandonis@gmail.com \
--cc=ojeda@kernel.org \
--cc=peterz@infradead.org \
--cc=rostedt@goodmis.org \
--cc=rust-for-linux@vger.kernel.org \
--cc=svens@linux.ibm.com \
--cc=tmgross@umich.edu \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox