Re: [PATCH v2] LoongArch: Replace -ffreestanding with finer-grained -fno-builtin's

From: Huacai Chen
Date: Sun Aug 06 2023 - 05:16:46 EST

Next message: Yang, Weijiang: "Re: [PATCH v5 13/19] KVM:VMX: Set up interception for CET MSRs"
Previous message: Yang, Weijiang: "Re: [PATCH v5 12/19] KVM:x86: Save and reload SSP to/from SMRAM"
In reply to: WANG Xuerui: "[PATCH v2] LoongArch: Replace -ffreestanding with finer-grained -fno-builtin's"
Next in thread: WANG Xuerui: "Re: [PATCH v2] LoongArch: Replace -ffreestanding with finer-grained -fno-builtin's"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi, Xuerui,

On Sun, Aug 6, 2023 at 4:30 PM WANG Xuerui <kernel@xxxxxxxxxx> wrote:
>
> From: WANG Xuerui <git@xxxxxxxxxx>
>
> As explained by Nick in the original issue: the kernel usually does a
> good job of providing library helpers that have similar semantics as
> their ordinary userspace libc equivalents, but -ffreestanding disables
> such libcall optimization and other related features in the compiler,
> which can lead to unexpected things such as CONFIG_FORTIFY_SOURCE not
> working (!).
>
> As it turns out to be the case, only the memory operations really need
> to be prevented from expansion by the compiler, and this is doable with
> finer-grained -fno-builtin-* toggles. So only disable memcpy, memmove
> and memset, while leaving other builtins enabled, to fix source
> fortification among others.
>
> Closes: https://github.com/ClangBuiltLinux/linux/issues/1897
> Reported-by: Nathan Chancellor <nathan@xxxxxxxxxx>
> Suggested-by: Nick Desaulniers <ndesaulniers@xxxxxxxxxx>
> Signed-off-by: WANG Xuerui <git@xxxxxxxxxx>
> ---
>
> Changes in v2:
>
> - Keep the memory operation builtins disabled, add comments, and tweak the
> commit message along the way.
>
> arch/loongarch/Makefile | 9 ++++++++-
> 1 file changed, 8 insertions(+), 1 deletion(-)
>
> diff --git a/arch/loongarch/Makefile b/arch/loongarch/Makefile
> index b1e5db51b61c..34fc48df87f2 100644
> --- a/arch/loongarch/Makefile
> +++ b/arch/loongarch/Makefile
> @@ -83,7 +83,14 @@ KBUILD_CFLAGS_KERNEL += -fPIE
> LDFLAGS_vmlinux += -static -pie --no-dynamic-linker -z notext
> endif
>
> -cflags-y += -ffreestanding
> +# Make sure the memory libcalls are not expanded by the compiler, for better
> +# control over unaligned accesses with respect to CONFIG_ARCH_STRICT_ALIGN,
> +# and also for avoiding https://gcc.gnu.org/PR109465.
> +#
> +# The overly broad -ffreestanding is undesirable as it disables *all* libcall
> +# handling, that unfortunately includes proper FORTIFY_SOURCE instrumentation.
I think these comments should go to commit message rather than here,
because after this patch there is no -ffreestanding in Makefile.

Huacai

> +cflags-y += -fno-builtin-memcpy -fno-builtin-memmove -fno-builtin-memset
> +
> cflags-y += $(call cc-option, -mno-check-zero-division)
>
> load-y = 0x9000000000200000
> --
> 2.40.0
>
>

Next message: Yang, Weijiang: "Re: [PATCH v5 13/19] KVM:VMX: Set up interception for CET MSRs"
Previous message: Yang, Weijiang: "Re: [PATCH v5 12/19] KVM:x86: Save and reload SSP to/from SMRAM"
In reply to: WANG Xuerui: "[PATCH v2] LoongArch: Replace -ffreestanding with finer-grained -fno-builtin's"
Next in thread: WANG Xuerui: "Re: [PATCH v2] LoongArch: Replace -ffreestanding with finer-grained -fno-builtin's"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]