| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Wed, 29 Apr 2015 00:33:42 -0400 From: David Long <dave.long@...aro.org> To: Masami Hiramatsu <masami.hiramatsu.pt@...achi.com> CC: linux-arm-kernel@...ts.infradead.org, Russell King <linux@....linux.org.uk>, sandeepa.s.prabhu@...il.com, William Cohen <wcohen@...hat.com>, Steve Capper <steve.capper@...aro.org>, Catalin Marinas <catalin.marinas@....com>, Will Deacon <will.deacon@....com>, "Jon Medhurst (Tixy)" <tixy@...aro.org>, Ananth N Mavinakayanahalli <ananth@...ibm.com>, Anil S Keshavamurthy <anil.s.keshavamurthy@...el.com>, davem@...emloft.net, linux-kernel@...r.kernel.org Subject: Re: [PATCH v6 0/6] arm64: Add kernel probes (kprobes) support On 04/21/15 07:42, Masami Hiramatsu wrote: > (2015/04/21 5:19), David Long wrote: >> From: "David A. Long" <dave.long@...aro.org> >> >> This patchset is heavily based on Sandeepa Prabhu's ARM v8 kprobes patches, >> first seen in October 2013. This version attempts to address concerns raised by >> reviewers and also fixes problems discovered during testing. >> >> This patchset adds support for kernel probes(kprobes), jump probes(jprobes) >> and return probes(kretprobes) support for ARM64. >> >> The kprobes mechanism makes use of software breakpoint and single stepping >> support available in the ARM v8 kernel. >> > [...] >> Changes since v5 include: >> >> 1) Replaced installation of breakpoint hook with direct call from the >> handlers in debug-monitors.c, as requested. >> 2) Reject probing of instructions that read the interrupt mask, in >> addition to instructions that set it. >> 3) Cleaned up comments describing usage of Debug Mask. >> 4) Added KPROBE_REENTER case in reenter_kprobe. >> 5) Corrected the ifdef'd definitions for notify_page_fault() to be >> consistent when KPROBES is not configed. >> 6) Changed "cpsr" to "pstate" for HAVE_REGS_AND_STACK_ACCESS_API feature. >> 7) Added back in missing new files in previous patch. >> 8) Changed two instances of pr_warning() to pr_warn(). > > Looks OK to me:) > BTW, have you tried to build and test this with CONFIG_KPROBE_EVENT? > If so, you can also test it by tools/testing/selftests/ftrace/ftracetest. > Yes, it builds with CONFIG_KPROBE_EVENT. Thanks for the suggestion regarding ftracetest, I was not actually aware of that test. I ran it with no failures, 11 "PASS", and 4 "UNSUPPORTED" tests. >> Note that there seems to be at least a potential issue with kprobes >> on multiple (possibly all) platforms having to do with use of kfree >> inside of the kretprobes trampoline handler. This has manifested >> occasionally in systemtap testing on arm64. There does not appear to >> be an simple solution to the problem. > > No, trampoline handler must call recycle_rp_inst() instead of kfree > to return kretprobe instance to the pool. Hmm, I should look into it. > I think all architectures call both from the kretprobe trampoline. In the arm64 case at least the kfree call apparently is very infrequent, and very problematic for now if anything it subsequently calls has a kretprobe set. Thanks, -dl -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists