| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Thu, 11 Nov 2021 12:43:47 -0600
From: ebiederm@...ssion.com (Eric W. Biederman)
To: Claudio Imbrenda <imbrenda@...ux.ibm.com>
Cc: linux-kernel@...r.kernel.org, linux-mm@...ck.org, thuth@...hat.com,
frankja@...ux.ibm.com, borntraeger@...ibm.com,
Ulrich.Weigand@...ibm.com, heiko.carstens@...ibm.com,
david@...hat.com, ultrachin@....com, akpm@...ux-foundation.org,
vbabka@...e.cz, brookxu.cn@...il.com, xiaoggchen@...cent.com,
linuszeng@...cent.com, yihuilu@...cent.com, mhocko@...e.com,
daniel.m.jordan@...cle.com, axboe@...nel.dk, legion@...nel.org,
peterz@...radead.org, aarcange@...hat.com, christian@...uner.io,
tglx@...utronix.de
Subject: Re: [RFC v1 1/4] exit: add arch mmput hook in exit_mm
Claudio Imbrenda <imbrenda@...ux.ibm.com> writes:
> This simple patch adds a hook for the mmput in exit_mm. This allows
> archs to perform the mmput in custom ways if desired (e.g.
> asynchronously)
>
> No functional change intended.
Ouch! No.
You changes don't include an architecture taking advantage of this
so there is not way to see how this is used in practice and maintain
the code.
Further you are making the generic code much harder to read and
follow replacing generic code with something random that some buggy
architecture implements that no one understands.
Saying "some buggy architecture implements and no one understands"
is a bit hyperbole but that is how these hooks feel when digging in
to changing the code. It takes weeks to months to read through
ask questions etc to clean hooks like this up and change the
code in an appropriate way.
As things are ill specified like this really do need change eventually.
So please use much more targeted routines for architecture code to call.
Especially when dealing with something as fundamental as the lifetime of
a core kernel object.
If you want an example of how silly some of these kinds of things
can get just look at arch_ptrace_stop and sigkill_pending. Linus has
just merged my fixes for these things. There are worse examples, I just
remember them off the top of my head.
If this is merged as is, this feels like code that will be subtly wrong
for a decade before someone figures it out and fixes it.
Eric
> Signed-off-by: Claudio Imbrenda <imbrenda@...ux.ibm.com>
> ---
> include/asm-generic/mmu_context.h | 4 ++++
> kernel/exit.c | 2 +-
> 2 files changed, 5 insertions(+), 1 deletion(-)
>
> diff --git a/include/asm-generic/mmu_context.h b/include/asm-generic/mmu_context.h
> index 91727065bacb..900931a6a105 100644
> --- a/include/asm-generic/mmu_context.h
> +++ b/include/asm-generic/mmu_context.h
> @@ -73,4 +73,8 @@ static inline void deactivate_mm(struct task_struct *tsk,
> }
> #endif
>
> +#ifndef arch_exit_mm_mmput
> +#define arch_exit_mm_mmput mmput
> +#endif
> +
> #endif /* __ASM_GENERIC_MMU_CONTEXT_H */
> diff --git a/kernel/exit.c b/kernel/exit.c
> index f702a6a63686..6eb1fdcc434e 100644
> --- a/kernel/exit.c
> +++ b/kernel/exit.c
> @@ -504,7 +504,7 @@ static void exit_mm(void)
> task_unlock(current);
> mmap_read_unlock(mm);
> mm_update_next_owner(mm);
> - mmput(mm);
> + arch_exit_mm_mmput(mm);
> if (test_thread_flag(TIF_MEMDIE))
> exit_oom_victim();
> }
Powered by blists - more mailing lists