| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <Zs4mO8Lzayru3JFm@boqun-archlinux>
Date: Tue, 27 Aug 2024 12:17:15 -0700
From: Boqun Feng <boqun.feng@...il.com>
To: Danilo Krummrich <dakr@...nel.org>
Cc: ojeda@...nel.org, alex.gaynor@...il.com, wedsonaf@...il.com,
gary@...yguo.net, bjorn3_gh@...tonmail.com, benno.lossin@...ton.me,
a.hindborg@...sung.com, aliceryhl@...gle.com,
akpm@...ux-foundation.org, daniel.almeida@...labora.com,
faith.ekstrand@...labora.com, boris.brezillon@...labora.com,
lina@...hilina.net, mcanal@...lia.com, zhiw@...dia.com,
cjia@...dia.com, jhubbard@...dia.com, airlied@...hat.com,
ajanulgu@...hat.com, lyude@...hat.com, linux-kernel@...r.kernel.org,
rust-for-linux@...r.kernel.org, linux-mm@...ck.org
Subject: Re: [PATCH v6 00/26] Generic `Allocator` support for Rust
On Fri, Aug 16, 2024 at 02:10:42AM +0200, Danilo Krummrich wrote:
> Hi,
>
> This patch series adds generic kernel allocator support for Rust, which so far
> is limited to `kmalloc` allocations.
>
> In order to abstain from (re-)adding unstable Rust features to the kernel, this
> patch series does not extend the `Allocator` trait from Rust's `alloc` crate,
> nor does it extend the `BoxExt` and `VecExt` extensions.
>
> Instead, this series introduces a kernel specific `Allocator` trait, which is
> implemented by the `Kmalloc`, `Vmalloc` and `KVmalloc` allocators, also
> implemented in the context of this series.
>
> As a consequence we need our own kernel `Box<T, A>` and `Vec<T, A>` types.
> Additionally, this series adds the following type aliases:
>
> ```
> pub type KBox<T> = Box<T, Kmalloc>;
> pub type VBox<T> = Box<T, Vmalloc>;
> pub type KVBox<T> = Box<T, KVmalloc>;
>
>
> pub type KVec<T> = Vec<T, Kmalloc>;
> pub type VVec<T> = Vec<T, Vmalloc>;
> pub type KVVec<T> = Vec<T, KVmalloc>;
> ```
>
> With that, we can start using the kernel `Box` and `Vec` types throughout the
> tree and remove the now obolete extensions `BoxExt` and `VecExt`.
>
> For a final cleanup, this series removes the last minor dependencies to Rust's
> `alloc` crate and removes it from the entire kernel build.
>
> The series ensures not to break the `rusttest` make target by implementing the
> `allocator_test` module providing a stub implementation for all kernel
> `Allocator`s.
>
> This patch series passes all KUnit tests, including the ones added by this
> series. Additionally, the tests were run with `kmemleak` and `KASAN` enabled,
> without any issues.
>
> This series is based on [1], which hit -mm/mm-unstable, and is also available
> in [2].
>
> [1] https://git.kernel.org/pub/scm/linux/kernel/git/dakr/linux.git/log/?h=mm/krealloc
> [2] https://git.kernel.org/pub/scm/linux/kernel/git/dakr/linux.git/log/?h=rust/mm
>
Finally managed to apply this on rust-dev ;-) A few things I resolved,
JFYI:
* Resolve the conflicts between patch 6 & 7 and the helper split,
note that the vmalloc() helper temporarily lives in a file
called `slab.c`.
* Adjust patch 9 with the introduction of InPlaceInit::PinnedSelf,
also drop the ForeignOwnable::borrow_mut() implemenation.
* Resolve the conflict between patch 10 and the latest rbtree
patchset (v12).
* Adjust patch 11 with the introduction of
InPlaceInit::PinnedSelf.
* Resolve the conflicts between patch 25 and the helper split.
(very likely I could make mistakes during these conflict resolution,
just let me know)
I've put this on the rust-dev based on today's rust-next (+ your mm
changes) for testing, will continue to review the series, thanks!
Regards,
Boqun
> Changes in v6:
> - rebase onto rust-dev
> - keep compiler annotations for {k,v,kv}realloc()
> - documentation changes suggested by Alice, Benno
> - remove `Box::into_pin`
> - fix typo in `Send` and `Sync` for `Box` and `Vec`
> - `kvec!` changes suggested by Alice
> - free `src` after copy in `Cmalloc`
> - handle `n == 0` in `Vec::extend_with`
>
> Changes in v5:
> - (safety) comment / documentation fixes suggested by Alice, Benno and Gary
> - remove `Unique<T>` and implement `Send` and `Sync` for `Box` and `Vec`
> - use `KMALLOC_MAX_SIZE` for `KVmalloc` test and add a `Kmalloc` test that
> expects to fail for `KMALLOC_MAX_SIZE`
> - create use constants `KREALLOC`, `VREALLOC` and `KVREALLOC` for
> `ReallocFuncs`
> - drop `Box::drop_contents` for now, will add it again, once I actually rebase
> on the original patch that introduces it
> - improve usage of `size_of_val` in `Box`
> - move `InPlaceInit` and `ForeignOwnable` impls into kbox.rs
> - fix missing `Box` conversions in rnull.rs
> - reworked `Cmalloc` to keep track of the size of memory allocations itself
> - remove `GlobalAlloc` together with the `alloc` crate to avoid a linker error
> - remove `alloc` from scripts/generate_rust_analyzer.py
>
> Changes in v4:
> - (safety) comment fixes suggested by Alice and Boqun
> - remove `Box::from_raw_alloc` and `Box::into_raw_alloc`, we don't need them
> - in `Box::drop` call `size_of_val` before `drop_in_place`
> - implement ForeignOwnable for Pin<Box<T>> as suggested by Alice
> - in `Vec::extend_with`, iterate over `n` instead of `spare.len()`
> - for `Vmalloc` and `KVmalloc` fail allocation for alignments larger than
> PAGE_SIZE for now (will add support for larger alignments in a separate
> series)
> - implement `Cmalloc` in `allocator_test` and type alias all kernel allocator
> types to it, such that we can use the kernel's `Box` and `Vec` types in
> userspace tests (rusttest)
> - this makes patch "rust: str: test: replace `alloc::format`" rather trivial
>
> Changes in v3:
> - Box:
> - minor documentation fixes
> - removed unnecessary imports in doc tests
> - dropeed `self` argument from some remaining `Box` methods
> - implement `InPlaceInit` for Box<T, A> rather than specifically for `KBox<T>`
> - Vec:
> - minor documentation fixes
> - removed useless `Vec::allocator` method
> - in `Vec::extend_with` use `Vec::spare_capacity_mut` instead of raw pointer operations
> - added a few missing safety comments
> - pass GFP flags to `Vec::collect`
> - fixed a rustdoc warning in alloc.rs
> - fixed the allocator_test module to implement the `Allocator` trait correctly
> - rebased to rust-next
>
> Changes in v2:
> - preserve `impl GlobalAlloc for Kmalloc` and remove it at the end (Benno)
> - remove `&self` parameter from all `Allocator` functions (Benno)
> - various documentation fixes for `Allocator` (Benno)
> - use `NonNull<u8>` for `Allocator::free` and `Option<NonNull<u8>>` for
> `Allocator::realloc` (Benno)
> - fix leak of `IntoIter` in `Vec::collect` (Boqun)
> - always realloc (try to shrink) in `Vec::collect`, it's up the the
> `Allocator` to provide a heuristic whether it makes sense to actually shrink
> - rename `KBox<T, A>` -> `Box<T, A>` and `KVec<T, A>` -> `Vec<T, A>` and
> provide type aliases `KBox<T>`, `VBox<T>`, `KVBox<T>`, etc.
> - This allows for much cleaner code and, in combination with removing
> `&self` parameters from `Allocator`s, gets us rid of the need for
> `Box::new` and `Box::new_alloc` and all other "_alloc" postfixed
> functions.
> - Before: `KBox::new_alloc(foo, Vmalloc)?`
> - After: `VBox::new(foo)?`, which resolves to
> `Box::<Foo, Vmalloc>::new(foo)?;
>
>
> Danilo Krummrich (26):
> rust: alloc: add `Allocator` trait
> rust: alloc: separate `aligned_size` from `krealloc_aligned`
> rust: alloc: rename `KernelAllocator` to `Kmalloc`
> rust: alloc: implement `Allocator` for `Kmalloc`
> rust: alloc: add module `allocator_test`
> rust: alloc: implement `Vmalloc` allocator
> rust: alloc: implement `KVmalloc` allocator
> rust: alloc: add __GFP_NOWARN to `Flags`
> rust: alloc: implement kernel `Box`
> rust: treewide: switch to our kernel `Box` type
> rust: alloc: remove `BoxExt` extension
> rust: alloc: add `Box` to prelude
> rust: alloc: implement kernel `Vec` type
> rust: alloc: implement `IntoIterator` for `Vec`
> rust: alloc: implement `collect` for `IntoIter`
> rust: treewide: switch to the kernel `Vec` type
> rust: alloc: remove `VecExt` extension
> rust: alloc: add `Vec` to prelude
> rust: error: use `core::alloc::LayoutError`
> rust: error: check for config `test` in `Error::name`
> rust: alloc: implement `contains` for `Flags`
> rust: alloc: implement `Cmalloc` in module allocator_test
> rust: str: test: replace `alloc::format`
> rust: alloc: update module comment of alloc.rs
> kbuild: rust: remove the `alloc` crate and `GlobalAlloc`
> MAINTAINERS: add entry for the Rust `alloc` module
>
> MAINTAINERS | 7 +
> drivers/block/rnull.rs | 4 +-
> rust/Makefile | 44 +-
> rust/bindings/bindings_helper.h | 1 +
> rust/exports.c | 1 -
> rust/helpers.c | 15 +
> rust/kernel/alloc.rs | 142 ++++-
> rust/kernel/alloc/allocator.rs | 173 ++++--
> rust/kernel/alloc/allocator_test.rs | 185 ++++++
> rust/kernel/alloc/box_ext.rs | 80 ---
> rust/kernel/alloc/kbox.rs | 480 +++++++++++++++
> rust/kernel/alloc/kvec.rs | 891 ++++++++++++++++++++++++++++
> rust/kernel/alloc/vec_ext.rs | 185 ------
> rust/kernel/error.rs | 6 +-
> rust/kernel/init.rs | 93 +--
> rust/kernel/init/__internal.rs | 2 +-
> rust/kernel/lib.rs | 1 -
> rust/kernel/prelude.rs | 5 +-
> rust/kernel/rbtree.rs | 34 +-
> rust/kernel/str.rs | 35 +-
> rust/kernel/sync/arc.rs | 17 +-
> rust/kernel/sync/condvar.rs | 4 +-
> rust/kernel/sync/lock/mutex.rs | 2 +-
> rust/kernel/sync/lock/spinlock.rs | 2 +-
> rust/kernel/sync/locked_by.rs | 2 +-
> rust/kernel/types.rs | 30 +-
> rust/kernel/uaccess.rs | 17 +-
> rust/kernel/workqueue.rs | 20 +-
> rust/macros/lib.rs | 12 +-
> samples/rust/rust_minimal.rs | 4 +-
> scripts/Makefile.build | 7 +-
> scripts/generate_rust_analyzer.py | 11 +-
> 32 files changed, 1973 insertions(+), 539 deletions(-)
> create mode 100644 rust/kernel/alloc/allocator_test.rs
> delete mode 100644 rust/kernel/alloc/box_ext.rs
> create mode 100644 rust/kernel/alloc/kbox.rs
> create mode 100644 rust/kernel/alloc/kvec.rs
> delete mode 100644 rust/kernel/alloc/vec_ext.rs
>
>
> base-commit: f005c686d6c1a2e66f2f9d21179d6b6bd45b20e2
> --
> 2.46.0
>
Powered by blists - more mailing lists