Re: [PATCH 1/2] uprobes: add comment with insn opcodes, mnemonics and why we dont support them

From: Denys Vlasenko
Date: Tue May 06 2014 - 12:11:53 EST

Next message: Michal Hocko: "Re: [PATCH 1/4] memcg, mm: introduce lowlimit reclaim"
Previous message: Borislav Petkov: "Re: Slow down stupid pounders"
In reply to: Jim Keniston: "Re: [PATCH 1/2] uprobes: add comment with insn opcodes, mnemonics and why we dont support them"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 05/06/2014 12:32 AM, Jim Keniston wrote:
> All of the following is FYI.
>
> The good-instruction tables date back 2006-2007. Back then, the
> philosophy was to disallow any questionable opcodes, and add them back
> into the "good" tables only when a need was demonstrated (i.e., somebody
> needed to probe that particular instruction) and we could verify that
> probing that instruction worked.

For the record, I do agree with this.
I think it's not worthwhile to expend additional work
to add support for instructions which won't ever be seen
in any sane program.

Example: iret instruction works in userspace
(with the correct stack layout, it will successfully
pop instruction pointer, statck pointer, flags, and continue
executing whereever that address points to).
But no one in userspace has any need to do that.

And since we need to expend additional work to support it
(we need to account for the fact it sets EFLAGS),
we can simply prohibit its probing.

However, if a particular insn requires no special support
whatsoever, it should be enabled even if it's not usually used
(examples: arpl, lsl). Merely because we want fewer '0' bits
in the tables - less explaining to ourselves "ok, why is that one
disallowed?".

And second, if a particular insn will be used in legitimate programs
(example: the boatload of new vector insns *will be* used by scientific
supercomputers, and will need debugging), we can't just disable probing
of it at the slightest inconvenience.

Example: 0f 78 - vmread (Intel VMX. CPL0 insn).
We now have it disabled. Presumably because it generates GP exception
when used in userspace, and we aren't sure we handle it absolutely
correctly. (The "slightest inconvenience"). So we disable it.

But there is a problem. With 66 and f2 prefixes, it's not vmread anymore.
These are valid, innocuous SSE4A vector ops. We disable them too.
With EVEX prefix on Knight's Landing CPU these are vector conversion ops.
We disable them too. But they eventually will be used.

I think we should try to support cases like this one.
Especially that in this case (we disabled an insn which
*always* throws an exception) it may even already be working
- we need to check that. If we do, many more '0' bits can become
'1' - in fact more than half of them.

--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Michal Hocko: "Re: [PATCH 1/4] memcg, mm: introduce lowlimit reclaim"
Previous message: Borislav Petkov: "Re: Slow down stupid pounders"
In reply to: Jim Keniston: "Re: [PATCH 1/2] uprobes: add comment with insn opcodes, mnemonics and why we dont support them"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]