Commit bb0c99e0 authored Jan 30, 2026 by Marco Elver Committed by Will Deacon Feb 02, 2026

arm64: Fix non-atomic __READ_ONCE() with CONFIG_LTO=y



The implementation of __READ_ONCE() under CONFIG_LTO=y incorrectly
qualified the fallback "once" access for types larger than 8 bytes,
which are not atomic but should still happen "once" and suppress common
compiler optimizations.

The cast `volatile typeof(__x)` applied the volatile qualifier to the
pointer type itself rather than the pointee. This created a volatile
pointer to a non-volatile type, which violated __READ_ONCE() semantics.

Fix this by casting to `volatile typeof(*__x) *`.

With a defconfig + LTO + debug options build, we see the following
functions to be affected:

	xen_manage_runstate_time (884 -> 944 bytes)
	xen_steal_clock (248 -> 340 bytes)
	  ^-- use __READ_ONCE() to load vcpu_runstate_info structs

Fixes: e35123d8 ("arm64: lto: Strengthen READ_ONCE() to acquire when CONFIG_LTO=y")
Cc: stable@vger.kernel.org
Reviewed-by: Boqun Feng <boqun@kernel.org>
Signed-off-by: Marco Elver <elver@google.com>
Tested-by: David Laight <david.laight.linux@gmail.com>
Signed-off-by: Will Deacon <will@kernel.org>

parent 76e9f683

arch/arm64/include/asm/rwonce.h

+1 −1

Original line number	Diff line number	Diff line
		@@ -58,7 +58,7 @@
		default: \
		atomic = 0; \
		} \
		atomic ? (typeof(__x))__u.__val : ((volatile typeof(__x))__x);\
		atomic ? (typeof(__x))__u.__val : ((volatile typeof(__x) )__x);\
		})

		#endif /* !BUILD_VDSO */