Builtin memcpy() requirements

Jonathan Brandmeyer jbrandmeyer at planetiq.com
Fri Dec 20 19:03:20 UTC 2019 

Small improvements inline:

On Fri, Dec 20, 2019 at 1:25 AM Sebastian Huber <
sebastian.huber at embedded-brains.de> wrote:

> Hello,
>
> while working on a test case for
>
> https://devel.rtems.org/ticket/3767
>
> I tried to find the right test suite for it. At first I thought that
> this is a unit test
> (testsuites/unit/compiler/tc-misaligned-builtin-memcpy.c). However, I
> now think that we should have a requirement for this function. The test
> case is more or less clear:
>
> T_TEST_CASE(MisalignedBuiltinMemcpy)
> {
>         double a;
>         double b;
>         char buf[2 * sizeof(double)];
>

buf has the alignment of char.  Although it is likely to be aligned to
sizeof(int), it very well could be less than that.  In C11 and newer, you
can use alignas() to force buf to have the alignment of double.


>         void *p;
>
>         p = &buf[0];

        p = (void *)((uintptr_t)p | 1);
>

IMO, this reads a bit clearer if p is just a char*.  Then you would
initialize it to the address of buf[1] to force the misalignment.


>         RTEMS_OBFUSCATE_VARIABLE(p);
>         a = 123e4;
>         RTEMS_OBFUSCATE_VARIABLE(a);
>         a *= a;
>         memcpy(p, &a, sizeof(a));
>         RTEMS_OBFUSCATE_VARIABLE(p);
>         memcpy(&b, p, sizeof(b));
>         T_eq(a, b, "%f == %f", a, b);
> }
>
> It is obvious that such a memcpy() operation should work. In general, we
> assume in RTEMS that the compiler does the right job. However, on some
> architectures we have to select the right compiler options and this is
> clearly under full control of the RTEMS BSP. I think we should add
> something like this to the RTEMS requirements:
>
> A call of memcpy() in C from a pointer to a double value to a misaligned
> destination buffer shall store the double value in the destination buffer.
>
> The formulation is quite specific, but I was not able to formulate it
> more generic and keep it testable.


I've worked on at least one system where double's were silently equivalent
to float.  Maybe a sized integer type such as int64_t would be a better
candidate for the test case?


> We have to keep in mind here that we
> are not interested in the memcpy() C library function, but rather the
> compiler optimized code for the memcpy() builtin function.
>

This is going to be difficult to verify without examining the generated
assembly code.

-mstrict-align would be overkill for some systems.  At least on ARMv7 and
ARMv8, many instructions do support unaligned accesses, while some other
instructions don't.

HTH,
-- 
Jonathan Brandmeyer
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.rtems.org/pipermail/devel/attachments/20191220/3a90630c/attachment.html>

More information about the devel mailing list