| Message ID | 20230517203119.3160435-3-aliceryhl@google.com |
|---|---|
| State | New |
| Headers |
Return-Path: <linux-kernel-owner@vger.kernel.org>
Delivered-To: ouuuleilei@gmail.com
Received: by 2002:a59:b0ea:0:b0:3b6:4342:cba0 with SMTP id b10csp38243vqo;
Wed, 17 May 2023 13:36:29 -0700 (PDT)
X-Google-Smtp-Source:
ACHHUZ4Uik61BVKoF2fCAts6H6aHH0poO3sq/eccaMDM8AI8w1dyQRUuL2wWavFwtS0P3LgGUum6
X-Received: by 2002:a17:90b:8d4:b0:24e:5344:9c9d with SMTP id
ds20-20020a17090b08d400b0024e53449c9dmr92556pjb.38.1684355788819;
Wed, 17 May 2023 13:36:28 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1684355788; cv=none;
d=google.com; s=arc-20160816;
b=bDGvKcjHySn5SGFJhBONuE8kcRiAx02YySAFS8Y7U+JX/nPkNImQrYg9G4RCOp1bz8
MtBwTOLJdIeXlQjGZvk34ZWkkCGTB/LBJDNS+5jV5TXOTdQJZrbr9jfMwKT0LeLHW9Rg
fF3F2/Da8vyRyO4alYHDyExn4aER4Z6ekPz0U4iPNtg34/QO6k9sxEMLyCnumYzWA1Wg
cgQuVStjcCTOzDDNxNo1DStsk2iGdT+1mg1XxwLBqXMiuPK+L3ZJGOhFZxJYTN5gPPHt
c5asnv8JjeEoRgFWQeEaoNDKHFbt46yJ72gZQMovnX9Od8MmyDmpxZP1xoKRIcR+zcuP
mDgA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com;
s=arc-20160816;
h=list-id:precedence:cc:to:from:subject:message-id:references
:mime-version:in-reply-to:date:dkim-signature;
bh=32ue7WltCbe1aj9V+bmg5YyP4ANtZIJoj0Bg0fkgpuM=;
b=b/shc2za8QFPMzfrMOywS7CBgO4bwDXdM9OblZ+T6J1ea5lPpdhDyRDoLduCIeK0fq
Nck2SeexoRxeBILRxswX7zkMxHJbgkpR1tGnODs+d9r6kbICMJPQfpdDe8m2NAiRw/cu
aF/OiqlLBaL4ceUEEi+VD+4mdhXCMaOczypD4RkFx0ASKHpmTX3TLSSVIIis7MbqWoZ7
k5eZ1CYF3mkG5KqLCGX1+VSw/Dqe5YSTNWFNW0HrvU4SgA7+hpeOqZhfGegSdmza22KE
YFjuwvANGTAad/PKmONsh2QIk8EFZ23+BmxgfWbAuUsD1C0G81BptujzGf9F7Lf0LL2W
VOWQ==
ARC-Authentication-Results: i=1; mx.google.com;
dkim=pass header.i=@google.com header.s=20221208 header.b=RBwReH9o;
spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org
designates 2620:137:e000::1:20 as permitted sender)
smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com
Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20])
by mx.google.com with ESMTP id
a21-20020a63e855000000b0050f817c6c82si22073125pgk.232.2023.05.17.13.36.03;
Wed, 17 May 2023 13:36:28 -0700 (PDT)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org
designates 2620:137:e000::1:20 as permitted sender)
client-ip=2620:137:e000::1:20;
Authentication-Results: mx.google.com;
dkim=pass header.i=@google.com header.s=20221208 header.b=RBwReH9o;
spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org
designates 2620:137:e000::1:20 as permitted sender)
smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
id S229724AbjEQUba (ORCPT <rfc822;abdi.embedded@gmail.com>
+ 99 others); Wed, 17 May 2023 16:31:30 -0400
Received: from lindbergh.monkeyblade.net ([23.128.96.19]:56166 "EHLO
lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
with ESMTP id S229497AbjEQUb2 (ORCPT
<rfc822;linux-kernel@vger.kernel.org>);
Wed, 17 May 2023 16:31:28 -0400
Received: from mail-yb1-xb4a.google.com (mail-yb1-xb4a.google.com
[IPv6:2607:f8b0:4864:20::b4a])
by lindbergh.monkeyblade.net (Postfix) with ESMTPS id F3FF87DA3
for <linux-kernel@vger.kernel.org>;
Wed, 17 May 2023 13:31:26 -0700 (PDT)
Received: by mail-yb1-xb4a.google.com with SMTP id
3f1490d57ef6-ba8217b3d30so1502670276.2
for <linux-kernel@vger.kernel.org>;
Wed, 17 May 2023 13:31:26 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=google.com; s=20221208; t=1684355486; x=1686947486;
h=cc:to:from:subject:message-id:references:mime-version:in-reply-to
:date:from:to:cc:subject:date:message-id:reply-to;
bh=32ue7WltCbe1aj9V+bmg5YyP4ANtZIJoj0Bg0fkgpuM=;
b=RBwReH9ogtwVoE1XQ/ZI6UfWivhfBXI3WmrFbmj7DoEuSLsn8C1nmPiQsBycA+2F43
62buFxLbt/L8aBnfdSpk2jL6Nw7xsYt+5rZnyqeCudDzwy/Nx1sPcTQM0R/OoQOW+zsL
oGBOurlBS6d9N5xkh7hwEjNk77U0euEAONsRWMRySBg3+XH0WhdK9tms5MnFg9qttraz
HO1bLTR98+8tyOkgi9P84RD+c5JBS5CuIzVRZltEVWkxtTx3wZsdq03GOa6unp6OQ05q
QyLTOQyAnjJ+pdcGBsZLcPNnBcb0PPIAyGbWw0aiAQtLUU8KbW6DNenHPCUxrsxUtyi0
Hqwg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=1e100.net; s=20221208; t=1684355486; x=1686947486;
h=cc:to:from:subject:message-id:references:mime-version:in-reply-to
:date:x-gm-message-state:from:to:cc:subject:date:message-id:reply-to;
bh=32ue7WltCbe1aj9V+bmg5YyP4ANtZIJoj0Bg0fkgpuM=;
b=QaWY31EpWMJF0Gmu2S5Nx26EFW7szFM8w6cdYCGOWjKfMDi89/zPsZZcaNjnHMcXsZ
vWrQgpfcNzdXNqwPY4zHa2ydddf4r6Lhoa8fMiDB5eft0FiTrPcV5hKD2llyT/Mx2wcv
j1BXdVLm/WwfVtVCOpcL2tICT1JAiBRpfAJMAliLrRYC+gT+/WiyUDQws8C6mFgxvalO
OqZ1Nzd/fLsJinnAVWyAmbCkxESrHDZjlg+LD7qsja9XI3F/nyC6pj+2HHK7pcnAiXYJ
W0MVIiFPyri2gwnT/eKA0Uqjs6DoUFNXWYNbUJt/nBX/L0P7tZo221+sWvusgdSCA6SX
Qlrw==
X-Gm-Message-State: AC+VfDxcmMDrX+NFas41nKjQzl/48S714umf4pFSlugaWLEyyx9bB+vI
7SgX61ByI8iH0Hzycz7fVQp1i1sd/09xOoU=
X-Received: from aliceryhl.c.googlers.com
([fda3:e722:ac3:cc00:31:98fb:c0a8:6c8])
(user=aliceryhl job=sendgmr) by 2002:a25:182:0:b0:ba8:58c8:38f7 with SMTP id
124-20020a250182000000b00ba858c838f7mr2038208ybb.11.1684355486248; Wed, 17
May 2023 13:31:26 -0700 (PDT)
Date: Wed, 17 May 2023 20:31:14 +0000
In-Reply-To: <20230517203119.3160435-1-aliceryhl@google.com>
Mime-Version: 1.0
References: <20230517203119.3160435-1-aliceryhl@google.com>
X-Mailer: git-send-email 2.40.1.606.ga4b1b128d6-goog
Message-ID: <20230517203119.3160435-3-aliceryhl@google.com>
Subject: [PATCH v1 2/7] rust: add offset_of! macro
From: Alice Ryhl <aliceryhl@google.com>
To: rust-for-linux@vger.kernel.org
Cc: Miguel Ojeda <ojeda@kernel.org>,
Wedson Almeida Filho <wedsonaf@gmail.com>, Tejun Heo <tj@kernel.org>,
Lai Jiangshan <jiangshanlai@gmail.com>, Alex Gaynor <alex.gaynor@gmail.com>,
Boqun Feng <boqun.feng@gmail.com>, Gary Guo <gary@garyguo.net>, "
=?utf-8?q?Bj=C3=B6rn_Roy_Baron?= " <bjorn3_gh@protonmail.com>,
Benno Lossin <benno.lossin@proton.me>, Alice Ryhl <aliceryhl@google.com>,
linux-kernel@vger.kernel.org, patches@lists.linux.dev
Content-Type: text/plain; charset="UTF-8"
X-Spam-Status: No, score=-9.6 required=5.0 tests=BAYES_00,DKIMWL_WL_MED,
DKIM_SIGNED,DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,RCVD_IN_DNSWL_NONE,
SPF_HELO_NONE,SPF_PASS,T_SCC_BODY_TEXT_LINE,URIBL_BLOCKED,
USER_IN_DEF_DKIM_WL autolearn=ham autolearn_force=no version=3.4.6
X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on
lindbergh.monkeyblade.net
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org
X-getmail-retrieved-from-mailbox: =?utf-8?q?INBOX?=
X-GMAIL-THRID: =?utf-8?q?1766175055574848924?=
X-GMAIL-MSGID: =?utf-8?q?1766175055574848924?=
|
| Series |
Bindings for the workqueue
|
|
Commit Message
Alice Ryhl
May 17, 2023, 8:31 p.m. UTC
From: Wedson Almeida Filho <walmeida@microsoft.com> This macro is used to compute the offset of a field in a struct. This commit enables two unstable features that are necessary for using the macro in a constant. However, this is not a problem as the macro will become available from the Rust standard library soon [1]. The unstable features can be disabled again once that happens. The macro in this patch does not support sub-fields. That is, you cannot write `offset_of!(MyStruct, field.sub_field)` to get the offset of `sub_field` with `field`'s type being a struct with a field called `sub_field`. This is because `field` might be a `Box<SubStruct>`, which means that you would be trying to compute the offset to something in an entirely different allocation. There's no easy way to fix the current macro to support subfields, but the version being added to the standard library should support it, so the limitation is temporary and not a big deal. Link: https://github.com/rust-lang/rust/issues/106655 [1] Signed-off-by: Wedson Almeida Filho <walmeida@microsoft.com> Co-developed-by: Alice Ryhl <aliceryhl@google.com> Signed-off-by: Alice Ryhl <aliceryhl@google.com> --- rust/kernel/lib.rs | 35 +++++++++++++++++++++++++++++++++++ scripts/Makefile.build | 2 +- 2 files changed, 36 insertions(+), 1 deletion(-)
Comments
On 5/17/23 17:31, Alice Ryhl wrote: > From: Wedson Almeida Filho <walmeida@microsoft.com> > > This macro is used to compute the offset of a field in a struct. > > This commit enables two unstable features that are necessary for using > the macro in a constant. However, this is not a problem as the macro > will become available from the Rust standard library soon [1]. The > unstable features can be disabled again once that happens. > > The macro in this patch does not support sub-fields. That is, you cannot > write `offset_of!(MyStruct, field.sub_field)` to get the offset of > `sub_field` with `field`'s type being a struct with a field called > `sub_field`. This is because `field` might be a `Box<SubStruct>`, which > means that you would be trying to compute the offset to something in an > entirely different allocation. There's no easy way to fix the current > macro to support subfields, but the version being added to the standard > library should support it, so the limitation is temporary and not a big > deal. > > Link: https://github.com/rust-lang/rust/issues/106655 [1] > Signed-off-by: Wedson Almeida Filho <walmeida@microsoft.com> > Co-developed-by: Alice Ryhl <aliceryhl@google.com> > Signed-off-by: Alice Ryhl <aliceryhl@google.com> > --- > [...] Reviewed-by: Martin Rodriguez Reboredo <yakoyoku@gmail.com>
On Wed, 17 May 2023 20:31:14 +0000 Alice Ryhl <aliceryhl@google.com> wrote: > From: Wedson Almeida Filho <walmeida@microsoft.com> > > This macro is used to compute the offset of a field in a struct. > > This commit enables two unstable features that are necessary for using > the macro in a constant. However, this is not a problem as the macro > will become available from the Rust standard library soon [1]. The > unstable features can be disabled again once that happens. > > The macro in this patch does not support sub-fields. That is, you cannot > write `offset_of!(MyStruct, field.sub_field)` to get the offset of > `sub_field` with `field`'s type being a struct with a field called > `sub_field`. This is because `field` might be a `Box<SubStruct>`, which > means that you would be trying to compute the offset to something in an > entirely different allocation. There's no easy way to fix the current > macro to support subfields, but the version being added to the standard > library should support it, so the limitation is temporary and not a big > deal. > > Link: https://github.com/rust-lang/rust/issues/106655 [1] > Signed-off-by: Wedson Almeida Filho <walmeida@microsoft.com> > Co-developed-by: Alice Ryhl <aliceryhl@google.com> > Signed-off-by: Alice Ryhl <aliceryhl@google.com> > --- > rust/kernel/lib.rs | 35 +++++++++++++++++++++++++++++++++++ > scripts/Makefile.build | 2 +- > 2 files changed, 36 insertions(+), 1 deletion(-) > > diff --git a/rust/kernel/lib.rs b/rust/kernel/lib.rs > index c718524056a6..cdf9fe999328 100644 > --- a/rust/kernel/lib.rs > +++ b/rust/kernel/lib.rs > @@ -14,6 +14,8 @@ > #![no_std] > #![feature(allocator_api)] > #![feature(coerce_unsized)] > +#![feature(const_ptr_offset_from)] > +#![feature(const_refs_to_cell)] > #![feature(core_ffi_c)] > #![feature(dispatch_from_dyn)] > #![feature(explicit_generic_args_with_impl_trait)] > @@ -102,3 +104,36 @@ fn panic(info: &core::panic::PanicInfo<'_>) -> ! { > // instead of `!`. See <https://github.com/rust-lang/rust-bindgen/issues/2094>. > loop {} > } > + > +/// Calculates the offset of a field from the beginning of the struct it belongs to. > +/// > +/// # Examples > +/// > +/// ``` > +/// #[repr(C)] > +/// struct Test { > +/// a: u64, > +/// b: u32, > +/// } > +/// > +/// assert_eq!(kernel::offset_of!(Test, b), 8); > +/// ``` > +#[macro_export] > +macro_rules! offset_of { > + ($type:ty, $field:ident) => {{ > + let tmp = ::core::mem::MaybeUninit::<$type>::uninit(); > + let outer = tmp.as_ptr(); > + // To avoid warnings when nesting `unsafe` blocks. > + #[allow(unused_unsafe)] > + // SAFETY: The pointer is valid and aligned, just not initialised; `addr_of` ensures that > + // we don't actually read from `outer` (which would be UB) nor create an intermediate > + // reference. > + let inner = unsafe { ::core::ptr::addr_of!((*outer).$field) } as *const u8; > + // To avoid warnings when nesting `unsafe` blocks. > + #[allow(unused_unsafe)] > + // SAFETY: The two pointers are within the same allocation block. > + unsafe { > + inner.offset_from(outer as *const u8) as usize > + } This has no protection against using `Deref`. The memoffset crate has a let $type { $field: _, .. }; line to ensure that the field is a direct member of type and deref is not happening. > + }}; > +} > diff --git a/scripts/Makefile.build b/scripts/Makefile.build > index 9f94fc83f086..ec583d13dde2 100644 > --- a/scripts/Makefile.build > +++ b/scripts/Makefile.build > @@ -277,7 +277,7 @@ $(obj)/%.lst: $(src)/%.c FORCE > # Compile Rust sources (.rs) > # --------------------------------------------------------------------------- > > -rust_allowed_features := core_ffi_c,explicit_generic_args_with_impl_trait,new_uninit,pin_macro > +rust_allowed_features := const_ptr_offset_from,const_refs_to_cell,core_ffi_c,explicit_generic_args_with_impl_trait,new_uninit,pin_macro Side note: once we bump our compiler to 1.71, we should switch to the built-in `offset_of!` macro and get rid of these unstable features. Best, Gary
Gary Guo <gary@garyguo.net> writes: > On Wed, 17 May 2023 20:31:14 +0000 > Alice Ryhl <aliceryhl@google.com> wrote: >> +#[macro_export] >> +macro_rules! offset_of { >> + ($type:ty, $field:ident) => {{ >> + let tmp = ::core::mem::MaybeUninit::<$type>::uninit(); >> + let outer = tmp.as_ptr(); >> + // To avoid warnings when nesting `unsafe` blocks. >> + #[allow(unused_unsafe)] >> + // SAFETY: The pointer is valid and aligned, just not initialised; `addr_of` ensures that >> + // we don't actually read from `outer` (which would be UB) nor create an intermediate >> + // reference. >> + let inner = unsafe { ::core::ptr::addr_of!((*outer).$field) } as *const u8; >> + // To avoid warnings when nesting `unsafe` blocks. >> + #[allow(unused_unsafe)] >> + // SAFETY: The two pointers are within the same allocation block. >> + unsafe { >> + inner.offset_from(outer as *const u8) as usize >> + } > > This has no protection against using `Deref`. The memoffset crate has a > > let $type { $field: _, .. }; > > line to ensure that the field is a direct member of type and deref is > not happening. Added. I had to change `$type:ty` to `$type:path` to get that to compile, since otherwise you can't use the token in a pattern. However, I think it's fine - this is temporary anyway until the standard library gets the macro. >> + }}; >> +} >> diff --git a/scripts/Makefile.build b/scripts/Makefile.build >> index 9f94fc83f086..ec583d13dde2 100644 >> --- a/scripts/Makefile.build >> +++ b/scripts/Makefile.build >> @@ -277,7 +277,7 @@ $(obj)/%.lst: $(src)/%.c FORCE >> # Compile Rust sources (.rs) >> # --------------------------------------------------------------------------- >> >> -rust_allowed_features := core_ffi_c,explicit_generic_args_with_impl_trait,new_uninit,pin_macro >> +rust_allowed_features := const_ptr_offset_from,const_refs_to_cell,core_ffi_c,explicit_generic_args_with_impl_trait,new_uninit,pin_macro > > Side note: once we bump our compiler to 1.71, we should switch to the > built-in `offset_of!` macro and get rid of these unstable features. Agreed. I mentioned that in the commit message. Alice
Gary Guo <gary@garyguo.net> writes: > On Wed, 17 May 2023 20:31:14 +0000 > Alice Ryhl <aliceryhl@google.com> wrote: > >> From: Wedson Almeida Filho <walmeida@microsoft.com> >> >> This macro is used to compute the offset of a field in a struct. >> >> This commit enables two unstable features that are necessary for using >> the macro in a constant. However, this is not a problem as the macro >> will become available from the Rust standard library soon [1]. The >> unstable features can be disabled again once that happens. >> >> The macro in this patch does not support sub-fields. That is, you cannot >> write `offset_of!(MyStruct, field.sub_field)` to get the offset of >> `sub_field` with `field`'s type being a struct with a field called >> `sub_field`. This is because `field` might be a `Box<SubStruct>`, which >> means that you would be trying to compute the offset to something in an >> entirely different allocation. There's no easy way to fix the current >> macro to support subfields, but the version being added to the standard >> library should support it, so the limitation is temporary and not a big >> deal. >> >> Link: https://github.com/rust-lang/rust/issues/106655 [1] >> Signed-off-by: Wedson Almeida Filho <walmeida@microsoft.com> >> Co-developed-by: Alice Ryhl <aliceryhl@google.com> >> Signed-off-by: Alice Ryhl <aliceryhl@google.com> >> --- >> rust/kernel/lib.rs | 35 +++++++++++++++++++++++++++++++++++ >> scripts/Makefile.build | 2 +- >> 2 files changed, 36 insertions(+), 1 deletion(-) >> >> diff --git a/rust/kernel/lib.rs b/rust/kernel/lib.rs >> index c718524056a6..cdf9fe999328 100644 >> --- a/rust/kernel/lib.rs >> +++ b/rust/kernel/lib.rs >> @@ -14,6 +14,8 @@ >> #![no_std] >> #![feature(allocator_api)] >> #![feature(coerce_unsized)] >> +#![feature(const_ptr_offset_from)] >> +#![feature(const_refs_to_cell)] >> #![feature(core_ffi_c)] >> #![feature(dispatch_from_dyn)] >> #![feature(explicit_generic_args_with_impl_trait)] >> @@ -102,3 +104,36 @@ fn panic(info: &core::panic::PanicInfo<'_>) -> ! { >> // instead of `!`. See <https://github.com/rust-lang/rust-bindgen/issues/2094>. >> loop {} >> } >> + >> +/// Calculates the offset of a field from the beginning of the struct it belongs to. >> +/// >> +/// # Examples >> +/// >> +/// ``` >> +/// #[repr(C)] >> +/// struct Test { >> +/// a: u64, >> +/// b: u32, >> +/// } >> +/// >> +/// assert_eq!(kernel::offset_of!(Test, b), 8); >> +/// ``` >> +#[macro_export] >> +macro_rules! offset_of { >> + ($type:ty, $field:ident) => {{ >> + let tmp = ::core::mem::MaybeUninit::<$type>::uninit(); >> + let outer = tmp.as_ptr(); >> + // To avoid warnings when nesting `unsafe` blocks. >> + #[allow(unused_unsafe)] >> + // SAFETY: The pointer is valid and aligned, just not initialised; `addr_of` ensures that >> + // we don't actually read from `outer` (which would be UB) nor create an intermediate >> + // reference. >> + let inner = unsafe { ::core::ptr::addr_of!((*outer).$field) } as *const u8; >> + // To avoid warnings when nesting `unsafe` blocks. >> + #[allow(unused_unsafe)] >> + // SAFETY: The two pointers are within the same allocation block. >> + unsafe { >> + inner.offset_from(outer as *const u8) as usize >> + } > > This has no protection against using `Deref`. The memoffset crate has a > > let $type { $field: _, .. }; > > line to ensure that the field is a direct member of type and deref is > not happening. Good catch 👍 > >> + }}; >> +} >> diff --git a/scripts/Makefile.build b/scripts/Makefile.build >> index 9f94fc83f086..ec583d13dde2 100644 >> --- a/scripts/Makefile.build >> +++ b/scripts/Makefile.build >> @@ -277,7 +277,7 @@ $(obj)/%.lst: $(src)/%.c FORCE >> # Compile Rust sources (.rs) >> # --------------------------------------------------------------------------- >> >> -rust_allowed_features := core_ffi_c,explicit_generic_args_with_impl_trait,new_uninit,pin_macro >> +rust_allowed_features := const_ptr_offset_from,const_refs_to_cell,core_ffi_c,explicit_generic_args_with_impl_trait,new_uninit,pin_macro > > Side note: once we bump our compiler to 1.71, we should switch to the > built-in `offset_of!` macro and get rid of these unstable features. > > Best, > Gary
diff --git a/rust/kernel/lib.rs b/rust/kernel/lib.rs index c718524056a6..cdf9fe999328 100644 --- a/rust/kernel/lib.rs +++ b/rust/kernel/lib.rs @@ -14,6 +14,8 @@ #![no_std] #![feature(allocator_api)] #![feature(coerce_unsized)] +#![feature(const_ptr_offset_from)] +#![feature(const_refs_to_cell)] #![feature(core_ffi_c)] #![feature(dispatch_from_dyn)] #![feature(explicit_generic_args_with_impl_trait)] @@ -102,3 +104,36 @@ fn panic(info: &core::panic::PanicInfo<'_>) -> ! { // instead of `!`. See <https://github.com/rust-lang/rust-bindgen/issues/2094>. loop {} } + +/// Calculates the offset of a field from the beginning of the struct it belongs to. +/// +/// # Examples +/// +/// ``` +/// #[repr(C)] +/// struct Test { +/// a: u64, +/// b: u32, +/// } +/// +/// assert_eq!(kernel::offset_of!(Test, b), 8); +/// ``` +#[macro_export] +macro_rules! offset_of { + ($type:ty, $field:ident) => {{ + let tmp = ::core::mem::MaybeUninit::<$type>::uninit(); + let outer = tmp.as_ptr(); + // To avoid warnings when nesting `unsafe` blocks. + #[allow(unused_unsafe)] + // SAFETY: The pointer is valid and aligned, just not initialised; `addr_of` ensures that + // we don't actually read from `outer` (which would be UB) nor create an intermediate + // reference. + let inner = unsafe { ::core::ptr::addr_of!((*outer).$field) } as *const u8; + // To avoid warnings when nesting `unsafe` blocks. + #[allow(unused_unsafe)] + // SAFETY: The two pointers are within the same allocation block. + unsafe { + inner.offset_from(outer as *const u8) as usize + } + }}; +} diff --git a/scripts/Makefile.build b/scripts/Makefile.build index 9f94fc83f086..ec583d13dde2 100644 --- a/scripts/Makefile.build +++ b/scripts/Makefile.build @@ -277,7 +277,7 @@ $(obj)/%.lst: $(src)/%.c FORCE # Compile Rust sources (.rs) # --------------------------------------------------------------------------- -rust_allowed_features := core_ffi_c,explicit_generic_args_with_impl_trait,new_uninit,pin_macro +rust_allowed_features := const_ptr_offset_from,const_refs_to_cell,core_ffi_c,explicit_generic_args_with_impl_trait,new_uninit,pin_macro rust_common_cmd = \ RUST_MODFILE=$(modfile) $(RUSTC_OR_CLIPPY) $(rust_flags) \