Re: [PATCH 5.15 00/78] 5.15.55-rc1 review

From: Linus Torvalds
Date: Thu Jul 14 2022 - 16:39:57 EST

Next message: Luis Chamberlain: "Re: [PATCH] firmware_loader: Replace kmap() with kmap_local_page()"
Previous message: Daniel Borkmann: "Re: [PATCH v2,bpf-next] bpf: Don't redirect packets with invalid pkt_len"
In reply to: Borislav Petkov: "Re: [PATCH 5.15 00/78] 5.15.55-rc1 review"
Next in thread: Borislav Petkov: "Re: [PATCH 5.15 00/78] 5.15.55-rc1 review"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Thu, Jul 14, 2022 at 10:02 AM Borislav Petkov <bp@xxxxxxxxx> wrote:
>
> On Thu, Jul 14, 2022 at 09:51:40AM -0700, Linus Torvalds wrote:
> > Oh, absolutely. Doing an -rc7 is normal.
>
> Good. I'm gathering all the fallout fixes and will send them to you on
> Sunday, if nothing unexpected happens.

Btw, I assume that includes the clang fix for the
x86_spec_ctrl_current section attribute.

That's kind of personally embarrassing that it slipped through: I do
all my normal test builds that I actually *boot* with clang.

But since I kept all of the embargoed stuff outside my normal trees,
it also meant that the test builds I did didn't have my "this is my
clang tree" stuff in it.

And so I - like apparently everybody else - only did those builds with gcc.

And gcc for some reason doesn't care about this whole "you redeclared
that variable with a different attribute" thing.

And sadly, our percpu accessor functions don't verify these things
either, so you can write code like this:

unsigned long myvariable;

unsigned long test_fn(void)
{
return this_cpu_read(myvariable);
}

and the compiler will not complain about anything at all, and happily
generate completely nonsensical code like

movq %gs:myvariable(%rip), %rax

for it, which will do entirely the wrong thing because 'myvariable'
wasn't allocated in the percpu section.

In the 'x86_spec_ctrl_current' case, that nonsensical code _worked_
(with gcc), because despite the declaration being for a regular
variable, the actual definition was in the proper segment.

But that 'myvariable' thing above does end up being another example of
how we are clearly missing some type checkng in this area.

I'm not sure if there's any way to get that section mismatch at
compile-time at all. For the static declarations, we could just make
DECLARE_PER_CPU() add some prefix/postfix to the name (and obviously
then do it at use time too).

We have that '__pcpu_scope_##name' thing to make sure of globally
unique naming due to the whole weak type thing. I wonder if we could
do something similar to verify that "yes, this has been declared as a
percpu variable" at use time?

Linus

Next message: Luis Chamberlain: "Re: [PATCH] firmware_loader: Replace kmap() with kmap_local_page()"
Previous message: Daniel Borkmann: "Re: [PATCH v2,bpf-next] bpf: Don't redirect packets with invalid pkt_len"
In reply to: Borislav Petkov: "Re: [PATCH 5.15 00/78] 5.15.55-rc1 review"
Next in thread: Borislav Petkov: "Re: [PATCH 5.15 00/78] 5.15.55-rc1 review"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]