lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date:	Fri, 05 Apr 2013 11:16:08 +0900
From:	Masami Hiramatsu <masami.hiramatsu.pt@...achi.com>
To:	Joonsoo Kim <iamjoonsoo.kim@....com>
Cc:	Oskar Andero <oskar.andero@...ymobile.com>,
	linux-kernel@...r.kernel.org, linux-arch@...r.kernel.org,
	davem@...emloft.net, anil.s.keshavamurthy@...el.com,
	ananth@...ibm.com, radovan.lekanovic@...ymobile.com,
	bjorn.davidsson@...ymobile.com,
	Toby Collett <toby.collett@...ymobile.com>,
	"yrl.pp-manager.tt@...achi.com" <yrl.pp-manager.tt@...achi.com>
Subject: Re: Re: [PATCH v2 1/4] kprobes: delay blacklist symbol lookup
 until we actually need it

(2013/04/05 9:56), Joonsoo Kim wrote:
> Hello, Oskar.
> 
> On Thu, Apr 04, 2013 at 02:51:26PM +0200, Oskar Andero wrote:
>> From: Toby Collett <toby.collett@...ymobile.com>
>>
>> The symbol lookup can take a long time and kprobes is
>> initialised very early in boot, so delay symbol lookup
>> until the blacklist is first used.
>>
>> Cc: Masami Hiramatsu <masami.hiramatsu.pt@...achi.com>
>> Cc: David S. Miller <davem@...emloft.net>
>> Reviewed-by: Radovan Lekanovic <radovan.lekanovic@...ymobile.com>
>> Signed-off-by: Toby Collett <toby.collett@...ymobile.com>
>> Signed-off-by: Oskar Andero <oskar.andero@...ymobile.com>
>> ---
>>  kernel/kprobes.c | 98 ++++++++++++++++++++++++++++++++++----------------------
>>  1 file changed, 60 insertions(+), 38 deletions(-)
>>
>> diff --git a/kernel/kprobes.c b/kernel/kprobes.c
>> index e35be53..0a270e5 100644
>> --- a/kernel/kprobes.c
>> +++ b/kernel/kprobes.c
>> @@ -68,6 +68,7 @@
>>  #endif
>>  
>>  static int kprobes_initialized;
>> +static int kprobe_blacklist_initialized;
>>  static struct hlist_head kprobe_table[KPROBE_TABLE_SIZE];
>>  static struct hlist_head kretprobe_inst_table[KPROBE_TABLE_SIZE];
>>  
>> @@ -102,6 +103,60 @@ static struct kprobe_blackpoint kprobe_blacklist[] = {
>>  	{NULL}    /* Terminator */
>>  };
>>  
>> +/* it can take some time ( > 100ms ) to initialise the
>> + * blacklist so we delay this until we actually need it
>> + */
>> +static void init_kprobe_blacklist(void)
>> +{
>> +	int i;
>> +	unsigned long offset = 0, size = 0;
>> +	char *modname, namebuf[128];
>> +	const char *symbol_name;
>> +	void *addr;
>> +	struct kprobe_blackpoint *kb;
>> +
>> +	mutex_lock(&kprobe_mutex);
>> +	if (kprobe_blacklist_initialized)
>> +		goto out;
>> +
>> +	/*
>> +	 * Lookup and populate the kprobe_blacklist.
>> +	 *
>> +	 * Unlike the kretprobe blacklist, we'll need to determine
>> +	 * the range of addresses that belong to the said functions,
>> +	 * since a kprobe need not necessarily be at the beginning
>> +	 * of a function.
>> +	 */
>> +	for (kb = kprobe_blacklist; kb->name != NULL; kb++) {
>> +		kprobe_lookup_name(kb->name, addr);
>> +		if (!addr)
>> +			continue;
>> +
>> +		kb->start_addr = (unsigned long)addr;
>> +		symbol_name = kallsyms_lookup(kb->start_addr,
>> +				&size, &offset, &modname, namebuf);
>> +		if (!symbol_name)
>> +			kb->range = 0;
>> +		else
>> +			kb->range = size;
>> +	}
>> +
>> +	if (kretprobe_blacklist_size) {
>> +		/* lookup the function address from its name */
>> +		for (i = 0; kretprobe_blacklist[i].name != NULL; i++) {
>> +			kprobe_lookup_name(kretprobe_blacklist[i].name,
>> +					   kretprobe_blacklist[i].addr);
>> +			if (!kretprobe_blacklist[i].addr)
>> +				printk("kretprobe: lookup failed: %s\n",
>> +				       kretprobe_blacklist[i].name);
>> +		}
>> +	}
>> +	kprobe_blacklist_initialized = 1;
> 
> You need smp_wmb() before assigning 'kprobe_blacklist_initialized = 1'.
> This guarantee that who see kprobe_blacklist_initialized = 1 will get
> updated data of kprobe_blacklist.

Right, to ensure blacklist is updated, memory barrier is required.

> Please refer my previous patch once more :)
> 
> And How about define kprobe_blacklist_initialized as boolean?

Good idea :)

Thank you,

-- 
Masami HIRAMATSU
IT Management Research Dept. Linux Technology Center
Hitachi, Ltd., Yokohama Research Laboratory
E-mail: masami.hiramatsu.pt@...achi.com


--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@...r.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

Powered by blists - more mailing lists