| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Mon, 11 Feb 2008 02:53:21 +0100 From: Andi Kleen <andi@...stfloor.org> To: linux-kernel@...r.kernel.org Subject: kgdb in git-x86#mm review I sent Jan & Jason earlier a quick review of the kgdb code currently in git-x86#mm. The kgdb code in git-x86#mm is right now is totally broken of course because the CFI annotations in assembler code are gone now, but they are needed for gdb use. And the bogus fault handling code is still in there, but Jason apprently fixed that one. Here are the other commments I wrote just in case someone is interested. Overall I would say there is quite a lot of stuff to clean up still. <snip> ok, doing a review on the code in git-x86#mm. I have not read everything in detail, just a quick skip over. My personal test for clean kernel debugger integration is if the debugger could be made a loadable (but not unloadable) module with minor/no effort. How far away is your code from that? The 32bit in_exception_stack code looks weird. Are you sure you cannot just use the pt_regs passed to the die notifier? It might be safer to explicitely disable interrupts early in the notifier. You should probably use simple_strtoul() instead of inventing an own hex parser in kgdb.c. And sprintf instead of an own hex writer. In general more use sprintf would probably shorten a lot of the parser code. The num_online_cpu()s check in getthread() looks weird. What is that supposed to do? kgdb_softlock_notify: I think the right way to handle this is just calling touch_softlockup_watchdog() (or perhaps better touch_nmi_watchdog) Actually it should be only needed once when you exit the debugger for soft lockup, but regularly for nmi watchdog. On x86 it is ok, but on other architectures i'm suspect the SMP synchronization with atomics might benefit from more memory barriers. gdb_cmd_reboot: always calling emergency_sync looks dangerous. In fact i suspect if you hold the other CPUs the changes are good it will lock up. You should at least offer a option to not call that (or better don't do it by default). Even machine_start is likely lock up actually if the other CPUs are truly halted (as they should be) because it will try to halt them. So if anything I suspect you need to exit the debugger first before executing this. The logic to halt all the other CPUs in kgdb_handle_exception et.al. looks a little fragile. It would be probably best to use the same as kcrash uses factored out into a common function. One obvious problem is that it is racy against cpu hotplug, but there are likely others too. With a better implementation you likely wouldn't need the mdelay(2) hack further down. You should use raw spinlocks everywhere in the debugger -- i don't think you want lockdep etc. anywhere. The unregister hook stuff looks racy against NMIs etc. -Andi -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists