Re: [PATCH v2] rust: page: add byte-wise atomic memory copy methods

Next message: Konrad Dybcio: "Re: [PATCH v3 5/6] clk: qcom: Add support for Global clock controller on Eliza"
Previous message: Ian Ray: "[PATCH 1/2] dt-bindings: hwmon: ti,ina2xx: Add INA234 device"
In reply to: Peter Zijlstra: "Re: [PATCH v2] rust: page: add byte-wise atomic memory copy methods"
Next in thread: Alice Ryhl: "Re: [PATCH v2] rust: page: add byte-wise atomic memory copy methods"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

From: Peter Zijlstra

Date: Tue Feb 17 2026 - 04:24:51 EST

On Tue, Feb 17, 2026 at 10:17:23AM +0100, Peter Zijlstra wrote:
> On Fri, Feb 13, 2026 at 07:45:19AM -0800, Boqun Feng wrote:
>
> > > > Suppose the memory was 'AAAA' and while you're reading it, it is written
> > > > to be 'BBBB'. The resulting copy can be any combination of
> > > > '[AB][AB][AB][AB]'. Not one of them is better than the other.
> > > >
> >
> > The idea is if using Rust's own `core::ptr::copy()` or
> > `core::ptr::copy_nonoverlapping()`, you may get `CCCC`, because they are
> > not semantically guaranteed atomic per byte (i.e. tearing can happen at
> > bit level, because they are not designed for using in case of data
> > races, and there is no defined asm implementation of them, compilers can
> > do anything).
>
> How the heck would they do out-of-thin-air? Any memcpy() implementation
> that can cause that is insane and broken.
>
> Compilers are broken crap if they do this.

If rust core code can cause this, I stand by my earlier position that we
should not want that anywhere near the kernel. There is a reason our C
code is free standing.

So fix Rust to not be broken or take it out.