| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Fri, 10 Jan 2020 16:56:28 +0000
From: Will Deacon <will@...nel.org>
To: linux-kernel@...r.kernel.org
Cc: linux-arch@...r.kernel.org, kernel-team@...roid.com,
Will Deacon <will@...nel.org>,
Michael Ellerman <mpe@...erman.id.au>,
Peter Zijlstra <peterz@...radead.org>,
Linus Torvalds <torvalds@...ux-foundation.org>,
Segher Boessenkool <segher@...nel.crashing.org>,
Christian Borntraeger <borntraeger@...ibm.com>,
Luc Van Oostenryck <luc.vanoostenryck@...il.com>,
Arnd Bergmann <arnd@...db.de>
Subject: [RFC PATCH 0/8] Rework READ_ONCE() to improve codegen
Hi all,
This is a follow-up RFC to the discussions we had on the mailing list at
the end of last year:
https://lore.kernel.org/lkml/875zimp0ay.fsf@mpe.ellerman.id.au
Unfortunately, we didn't get a "silver bullet" solution out of that
long thread, but I've tried to piece together some of the bits and
pieces we discussed and I've ended up with this series, which does at
least solve the pressing problem with the bitops for arm64.
The rough summary of the series is:
* Drop the GCC 4.8 workarounds, so that READ_ONCE() is a
straightforward dereference of a cast-to-volatile pointer.
* Require that the access is either 1, 2, 4 or 8 bytes in size
(even 32-bit architectures tend to use 8-byte accesses here).
* Introduce __READ_ONCE() for tearing operations with no size
restriction.
* Drop pointer qualifiers from scalar types, so that volatile scalars
don't generate horrible stack-spilling mess. This is pretty ugly,
but it's also mechanical and wrapped up in a macro.
* Convert acquire/release accessors to perform the same qualifier
stripping.
I gave up trying to prevent READ_ONCE() on aggregates because it is
pervasive, particularly within the mm/ layer on things like pmd_t.
Thankfully, these don't tend to be volatile.
I have more patches in this area because I'm trying to move all the
read_barrier_depends() magic into arch/alpha/, but I'm holding off until
we agree on this part first.
Cheers,
Will
Cc: Michael Ellerman <mpe@...erman.id.au>
Cc: Peter Zijlstra <peterz@...radead.org>
Cc: Linus Torvalds <torvalds@...ux-foundation.org>
Cc: Segher Boessenkool <segher@...nel.crashing.org>
Cc: Christian Borntraeger <borntraeger@...ibm.com>
Cc: Luc Van Oostenryck <luc.vanoostenryck@...il.com>
Cc: Arnd Bergmann <arnd@...db.de>
--->8
Will Deacon (8):
compiler/gcc: Emit build-time warning for GCC prior to version 4.8
netfilter: Avoid assigning 'const' pointer to non-const pointer
fault_inject: Don't rely on "return value" from WRITE_ONCE()
READ_ONCE: Simplify implementations of {READ,WRITE}_ONCE()
READ_ONCE: Enforce atomicity for {READ,WRITE}_ONCE() memory accesses
READ_ONCE: Drop pointer qualifiers when reading from scalar types
locking/barriers: Use '__unqual_scalar_typeof' for load-acquire macros
arm64: barrier: Use '__unqual_scalar_typeof' for acquire/release
macros
arch/arm64/include/asm/barrier.h | 16 ++--
drivers/xen/time.c | 2 +-
include/asm-generic/barrier.h | 16 ++--
include/linux/compiler-gcc.h | 4 +
include/linux/compiler.h | 129 +++++++++++++------------------
include/linux/compiler_types.h | 15 ++++
lib/fault-inject.c | 4 +-
net/netfilter/core.c | 2 +-
net/xdp/xsk_queue.h | 2 +-
9 files changed, 93 insertions(+), 97 deletions(-)
--
2.25.0.rc1.283.g88dfdc4193-goog
Powered by blists - more mailing lists