From: Thomas Rodgers <rodgert@appliantology.com>
To: gcc-patches@gcc.gnu.org, libstdc++@gcc.gnu.org
Cc: trodgers@redhat.com, Thomas Rodgers <rodgert@twrodgers.com>
Subject: [PATCH] libstdc++: Clear padding bits in atomic compare_exchange
Date: Mon, 27 Sep 2021 07:10:31 -0700 [thread overview]
Message-ID: <20210927141031.651313-1-rodgert@appliantology.com> (raw)
In-Reply-To: <20210923180837.633173-1-rodgert@appliantology.com>
From: Thomas Rodgers <rodgert@twrodgers.com>
Now with checks for __has_builtin(__builtin_clear_padding)
This change implements P0528 which requires that padding bits not
participate in atomic compare exchange operations. All arguments to the
generic template are 'sanitized' by the __builtin_clearpadding intrisic
before they are used in comparisons. This alrequires that any stores
also sanitize the incoming value.
Signed-off-by: Thomas Rodgers <trodgers@redhat.com>
libstdc++=v3/ChangeLog:
* include/std/atomic (atomic<T>::atomic(_Tp) clear padding for
__cplusplus > 201703L.
(atomic<T>::store()) Clear padding.
(atomic<T>::exchange()) Likewise.
(atomic<T>::compare_exchange_weak()) Likewise.
(atomic<T>::compare_exchange_strong()) Likewise.
* testsuite/29_atomics/atomic/compare_exchange_padding.cc: New
test.
---
libstdc++-v3/include/std/atomic | 41 +++++++++++++++++-
.../atomic/compare_exchange_padding.cc | 42 +++++++++++++++++++
2 files changed, 81 insertions(+), 2 deletions(-)
create mode 100644 libstdc++-v3/testsuite/29_atomics/atomic/compare_exchange_padding.cc
diff --git a/libstdc++-v3/include/std/atomic b/libstdc++-v3/include/std/atomic
index 936dd50ba1c..4ac9ccdc1ab 100644
--- a/libstdc++-v3/include/std/atomic
+++ b/libstdc++-v3/include/std/atomic
@@ -228,7 +228,13 @@ _GLIBCXX_BEGIN_NAMESPACE_VERSION
atomic& operator=(const atomic&) = delete;
atomic& operator=(const atomic&) volatile = delete;
- constexpr atomic(_Tp __i) noexcept : _M_i(__i) { }
+#if __cplusplus > 201703L && __has_builtin(__builtin_clear_padding)
+ constexpr atomic(_Tp __i) noexcept : _M_i(__i)
+ { __builtin_clear_padding(std::__addressof(_M_i)); }
+#else
+ constexpr atomic(_Tp __i) noexcept : _M_i(__i)
+ { }
+#endif
operator _Tp() const noexcept
{ return load(); }
@@ -268,12 +274,18 @@ _GLIBCXX_BEGIN_NAMESPACE_VERSION
void
store(_Tp __i, memory_order __m = memory_order_seq_cst) noexcept
{
+#if __has_builtin(__builtin_clear_padding)
+ __builtin_clear_padding(std::__addressof(__i));
+#endif
__atomic_store(std::__addressof(_M_i), std::__addressof(__i), int(__m));
}
void
store(_Tp __i, memory_order __m = memory_order_seq_cst) volatile noexcept
{
+#if __has_builtin(__builtin_clear_padding)
+ __builtin_clear_padding(std::__addressof(__i));
+#endif
__atomic_store(std::__addressof(_M_i), std::__addressof(__i), int(__m));
}
@@ -300,6 +312,9 @@ _GLIBCXX_BEGIN_NAMESPACE_VERSION
{
alignas(_Tp) unsigned char __buf[sizeof(_Tp)];
_Tp* __ptr = reinterpret_cast<_Tp*>(__buf);
+#if __has_builtin(__builtin_clear_padding)
+ __builtin_clear_padding(std::__addressof(__i));
+#endif
__atomic_exchange(std::__addressof(_M_i), std::__addressof(__i),
__ptr, int(__m));
return *__ptr;
@@ -311,6 +326,9 @@ _GLIBCXX_BEGIN_NAMESPACE_VERSION
{
alignas(_Tp) unsigned char __buf[sizeof(_Tp)];
_Tp* __ptr = reinterpret_cast<_Tp*>(__buf);
+#if __has_builtin(__builtin_clear_padding)
+ __builtin_clear_padding(std::__addressof(__i));
+#endif
__atomic_exchange(std::__addressof(_M_i), std::__addressof(__i),
__ptr, int(__m));
return *__ptr;
@@ -322,6 +340,10 @@ _GLIBCXX_BEGIN_NAMESPACE_VERSION
{
__glibcxx_assert(__is_valid_cmpexch_failure_order(__f));
+#if __has_builtin(__builtin_clear_padding)
+ __builtin_clear_padding(std::__addressof(__e));
+ __builtin_clear_padding(std::__addressof(__i));
+#endif
return __atomic_compare_exchange(std::__addressof(_M_i),
std::__addressof(__e),
std::__addressof(__i),
@@ -334,6 +356,10 @@ _GLIBCXX_BEGIN_NAMESPACE_VERSION
{
__glibcxx_assert(__is_valid_cmpexch_failure_order(__f));
+#if __has_builtin(__builtin_clear_padding)
+ __builtin_clear_padding(std::__addressof(__e));
+ __builtin_clear_padding(std::__addressof(__i));
+#endif
return __atomic_compare_exchange(std::__addressof(_M_i),
std::__addressof(__e),
std::__addressof(__i),
@@ -358,6 +384,10 @@ _GLIBCXX_BEGIN_NAMESPACE_VERSION
{
__glibcxx_assert(__is_valid_cmpexch_failure_order(__f));
+#if __has_builtin(__builtin_clear_padding)
+ __builtin_clear_padding(std::__addressof(__e));
+ __builtin_clear_padding(std::__addressof(__i));
+#endif
return __atomic_compare_exchange(std::__addressof(_M_i),
std::__addressof(__e),
std::__addressof(__i),
@@ -370,6 +400,10 @@ _GLIBCXX_BEGIN_NAMESPACE_VERSION
{
__glibcxx_assert(__is_valid_cmpexch_failure_order(__f));
+#if __has_builtin(__builtin_clear_padding)
+ __builtin_clear_padding(std::__addressof(__e));
+ __builtin_clear_padding(std::__addressof(__i));
+#endif
return __atomic_compare_exchange(std::__addressof(_M_i),
std::__addressof(__e),
std::__addressof(__i),
@@ -392,6 +426,9 @@ _GLIBCXX_BEGIN_NAMESPACE_VERSION
void
wait(_Tp __old, memory_order __m = memory_order_seq_cst) const noexcept
{
+#if __has_builtin(__builtin_clear_padding)
+ __builtin_clear_padding(std::__addressof(__old));
+#endif
std::__atomic_wait_address_v(&_M_i, __old,
[__m, this] { return this->load(__m); });
}
@@ -407,7 +444,7 @@ _GLIBCXX_BEGIN_NAMESPACE_VERSION
{ std::__atomic_notify_address(&_M_i, true); }
#endif // __cpp_lib_atomic_wait
- };
+ };
#undef _GLIBCXX20_INIT
/// Partial specialization for pointer types.
diff --git a/libstdc++-v3/testsuite/29_atomics/atomic/compare_exchange_padding.cc b/libstdc++-v3/testsuite/29_atomics/atomic/compare_exchange_padding.cc
new file mode 100644
index 00000000000..0875f168097
--- /dev/null
+++ b/libstdc++-v3/testsuite/29_atomics/atomic/compare_exchange_padding.cc
@@ -0,0 +1,42 @@
+// { dg-options "-std=gnu++2a" }
+// { dg-do run { target c++2a } }
+// { dg-add-options libatomic }
+
+#include <atomic>
+
+#include <testsuite_hooks.h>
+
+struct S { char c; short s; };
+
+void __attribute__((noinline,noipa))
+fill_struct(S& s)
+{ __builtin_memset(&s, 0xff, sizeof(S)); }
+
+bool
+compare_struct(const S& a, const S& b)
+{ return __builtin_memcmp(&a, &b, sizeof(S)) == 0; }
+
+int
+main ()
+{
+ S s;
+ fill_struct(s);
+ s.c = 'a';
+ s.s = 42;
+
+ std::atomic<S> as{ s };
+ auto ts = as.load();
+ VERIFY( !compare_struct(s, ts) ); // padding cleared on construction
+ as.exchange(s);
+ auto es = as.load();
+ VERIFY( compare_struct(ts, es) ); // padding cleared on exchange
+
+ S n;
+ fill_struct(n);
+ n.c = 'b';
+ n.s = 71;
+ // padding cleared on compexchg
+ VERIFY( as.compare_exchange_weak(s, n) );
+ VERIFY( as.compare_exchange_strong(n, s) );
+ return 0;
+}
--
2.31.1
next prev parent reply other threads:[~2021-09-27 14:10 UTC|newest]
Thread overview: 23+ messages / expand[flat|nested] mbox.gz Atom feed top
2021-09-23 18:08 Thomas Rodgers
2021-09-23 19:07 ` Jakub Jelinek
2021-09-23 20:15 ` Thomas Rodgers
2021-09-23 20:15 ` Jonathan Wakely
2021-09-27 14:10 ` Thomas Rodgers [this message]
2021-09-29 12:13 ` Jonathan Wakely
2021-09-29 12:18 ` Jonathan Wakely
2021-09-29 12:28 ` Jakub Jelinek
2021-09-29 18:22 ` Thomas Rodgers
2021-09-29 18:29 ` Jakub Jelinek
2021-11-02 1:25 ` Thomas Rodgers
2021-11-02 7:49 ` Jakub Jelinek
2021-11-03 3:06 ` Thomas Rodgers
2021-11-02 8:49 ` Daniel Krügler
2022-01-18 21:48 ` Jonathan Wakely
2022-08-25 10:11 ` Patch ping (was Re: [PATCH] libstdc++: Clear padding bits in atomic compare_exchange) Jakub Jelinek
2022-09-01 22:57 ` Thomas Rodgers
2022-09-07 11:56 ` Jonathan Wakely
2022-09-07 22:06 ` Thomas Rodgers
2022-09-09 18:36 ` Rainer Orth
2022-09-09 18:46 ` Iain Sandoe
2022-09-09 19:01 ` Thomas Rodgers
2022-09-09 20:14 ` Jonathan Wakely
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20210927141031.651313-1-rodgert@appliantology.com \
--to=rodgert@appliantology.com \
--cc=gcc-patches@gcc.gnu.org \
--cc=libstdc++@gcc.gnu.org \
--cc=rodgert@twrodgers.com \
--cc=trodgers@redhat.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).