rust/kernel/alloc/allocator_test.rs | 15 ++++++++++++++- 1 file changed, 14 insertions(+), 1 deletion(-)
The implementation added in commit dd09538fb409 ("rust: alloc: implement
`Cmalloc` in module allocator_test") did not honor the documented
requirements of `aligned_alloc`. These requirements may not be enforced
on all system, but they are on macOS. Ensure that alignment is at least
`sizeof(void *)` and round size up to the nearest multiple of that
value.
Fixes: dd09538fb409 ("rust: alloc: implement `Cmalloc` in module allocator_test")
Signed-off-by: Tamir Duberstein <tamird@gmail.com>
---
rust/kernel/alloc/allocator_test.rs | 15 ++++++++++++++-
1 file changed, 14 insertions(+), 1 deletion(-)
diff --git a/rust/kernel/alloc/allocator_test.rs b/rust/kernel/alloc/allocator_test.rs
index e3240d16040b..f360fc2e20f2 100644
--- a/rust/kernel/alloc/allocator_test.rs
+++ b/rust/kernel/alloc/allocator_test.rs
@@ -62,9 +62,22 @@ unsafe fn realloc(
));
}
+ // According to `man aligned_alloc`:
+ //
+ // aligned_alloc() returns a NULL pointer and sets errno to EINVAL if size is not an
+ // integral multiple of alignment, or if alignment is not a power of 2 at least as large as
+ // sizeof(void *).
+ let alignment = layout.align();
+ let minimum_alignment = core::mem::size_of::<*const crate::ffi::c_void>();
+ let (alignment, size) = if alignment < minimum_alignment {
+ (minimum_alignment, layout.size().div_ceil(minimum_alignment) * minimum_alignment)
+ } else {
+ (alignment, layout.size())
+ };
+
// SAFETY: Returns either NULL or a pointer to a memory allocation that satisfies or
// exceeds the given size and alignment requirements.
- let dst = unsafe { libc_aligned_alloc(layout.align(), layout.size()) } as *mut u8;
+ let dst = unsafe { libc_aligned_alloc(alignment, size) } as *mut u8;
let dst = NonNull::new(dst).ok_or(AllocError)?;
if flags.contains(__GFP_ZERO) {
---
base-commit: 89a010129b2a60185d34d7377ef8aec7fbb92e76
change-id: 20250201-aligned-alloc-b52cb2353c82
Best regards,
--
Tamir Duberstein <tamird@gmail.com>Hi Tamir,
On Sat, Feb 01, 2025 at 01:58:10PM -0500, Tamir Duberstein wrote:
> The implementation added in commit dd09538fb409 ("rust: alloc: implement
> `Cmalloc` in module allocator_test") did not honor the documented
> requirements of `aligned_alloc`. These requirements may not be enforced
> on all system, but they are on macOS. Ensure that alignment is at least
> `sizeof(void *)` and round size up to the nearest multiple of that
> value.
Good catch!
>
> Fixes: dd09538fb409 ("rust: alloc: implement `Cmalloc` in module allocator_test")
>
> Signed-off-by: Tamir Duberstein <tamird@gmail.com>
> ---
> rust/kernel/alloc/allocator_test.rs | 15 ++++++++++++++-
> 1 file changed, 14 insertions(+), 1 deletion(-)
>
> diff --git a/rust/kernel/alloc/allocator_test.rs b/rust/kernel/alloc/allocator_test.rs
> index e3240d16040b..f360fc2e20f2 100644
> --- a/rust/kernel/alloc/allocator_test.rs
> +++ b/rust/kernel/alloc/allocator_test.rs
> @@ -62,9 +62,22 @@ unsafe fn realloc(
> ));
> }
>
> + // According to `man aligned_alloc`:
> + //
> + // aligned_alloc() returns a NULL pointer and sets errno to EINVAL if size is not an
> + // integral multiple of alignment, or if alignment is not a power of 2 at least as large as
> + // sizeof(void *).
> + let alignment = layout.align();
> + let minimum_alignment = core::mem::size_of::<*const crate::ffi::c_void>();
> + let (alignment, size) = if alignment < minimum_alignment {
> + (minimum_alignment, layout.size().div_ceil(minimum_alignment) * minimum_alignment)
> + } else {
> + (alignment, layout.size())
> + };
> +
I think I prefer this to be slightly more compact:
let min_align = core::mem::size_of::<*const crate::ffi::c_void>();
let (align, size) = if layout.align() < min_align {
(min_align, layout.size().div_ceil(min_align) * min_align)
} else {
(layout.align(), layout.size())
};
Hi Danilo, thanks for the review!
On Sat, Feb 1, 2025 at 3:18 PM Danilo Krummrich <dakr@kernel.org> wrote:
>
> I think I prefer this to be slightly more compact:
>
> let min_align = core::mem::size_of::<*const crate::ffi::c_void>();
> let (align, size) = if layout.align() < min_align {
> (min_align, layout.size().div_ceil(min_align) * min_align)
> } else {
> (layout.align(), layout.size())
> };
I was trying to avoid repeated calls to either function, but I'm happy
to shorten the variable names. Would that suit?
On Sat, Feb 01, 2025 at 04:19:48PM -0500, Tamir Duberstein wrote:
> Hi Danilo, thanks for the review!
>
> On Sat, Feb 1, 2025 at 3:18 PM Danilo Krummrich <dakr@kernel.org> wrote:
> >
> > I think I prefer this to be slightly more compact:
> >
> > let min_align = core::mem::size_of::<*const crate::ffi::c_void>();
> > let (align, size) = if layout.align() < min_align {
> > (min_align, layout.size().div_ceil(min_align) * min_align)
> > } else {
> > (layout.align(), layout.size())
> > };
>
> I was trying to avoid repeated calls to either function, but I'm happy
> to shorten the variable names. Would that suit?
I think calling layout.align() twice is fine, no need shadow align for that.
On Sat, Feb 1, 2025 at 4:58 PM Danilo Krummrich <dakr@kernel.org> wrote:
>
> On Sat, Feb 01, 2025 at 04:19:48PM -0500, Tamir Duberstein wrote:
> > Hi Danilo, thanks for the review!
> >
> > On Sat, Feb 1, 2025 at 3:18 PM Danilo Krummrich <dakr@kernel.org> wrote:
> > >
> > > I think I prefer this to be slightly more compact:
> > >
> > > let min_align = core::mem::size_of::<*const crate::ffi::c_void>();
> > > let (align, size) = if layout.align() < min_align {
> > > (min_align, layout.size().div_ceil(min_align) * min_align)
> > > } else {
> > > (layout.align(), layout.size())
> > > };
> >
> > I was trying to avoid repeated calls to either function, but I'm happy
> > to shorten the variable names. Would that suit?
>
> I think calling layout.align() twice is fine, no need shadow align for that.
Sure. Anything else?
© 2016 - 2026 Red Hat, Inc.