| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <CABCJKucxDtCeq5NgwU9+8Fb1yGbrcV_91NbzM=6YquPLL48Jxg@mail.gmail.com> Date: Thu, 5 Sep 2024 11:15:36 -0700 From: Sami Tolvanen <samitolvanen@...gle.com> To: Petr Pavlu <petr.pavlu@...e.com> Cc: Masahiro Yamada <masahiroy@...nel.org>, Luis Chamberlain <mcgrof@...nel.org>, Miguel Ojeda <ojeda@...nel.org>, Greg Kroah-Hartman <gregkh@...uxfoundation.org>, Matthew Maurer <mmaurer@...gle.com>, Alex Gaynor <alex.gaynor@...il.com>, Wedson Almeida Filho <wedsonaf@...il.com>, Gary Guo <gary@...yguo.net>, Neal Gompa <neal@...pa.dev>, Hector Martin <marcan@...can.st>, Janne Grunau <j@...nau.net>, Asahi Linux <asahi@...ts.linux.dev>, linux-kbuild@...r.kernel.org, linux-kernel@...r.kernel.org, linux-modules@...r.kernel.org, rust-for-linux@...r.kernel.org Subject: Re: [PATCH v2 11/19] gendwarfksyms: Limit structure expansion On Tue, Sep 3, 2024 at 8:15 AM Petr Pavlu <petr.pavlu@...e.com> wrote: > > On 8/15/24 19:39, Sami Tolvanen wrote: > > Expand each structure type only once per exported symbol. This > > is necessary to support self-referential structures, which would > > otherwise result in infinite recursion, but is still sufficient for > > catching ABI changes. > > > > For pointers to structure types, limit type expansion inside the > > pointer to two levels. This should be plenty for detecting ABI > > differences, but it stops us from pulling in half the kernel for > > types that contain pointers to large kernel data structures, like > > task_struct, for example. > > I'm quite worried about this optimization for pointer types. It could > result in some kABI changes not being recognized. > > I assume the goal of the optimization is to speed up the tool's runtime. > How much does it improve the processing time and is there any other way > how it could be done? It’s mostly a matter of how deep it makes sense to go. For example, queue_delayed_work_on accepts a pointer to s#workqueue_struct, which points to s#worker, which points to s#task_struct, which points to s#mm_struct etc. Does a change to an internal kernel data structure several references deep change the ABI of the function? If we traverse through the DWARF without limits, during a defconfig build the highest pointer expansion depth I see is 70 levels (!), with ~5k symbols going 30+ levels deep. We would end up pulling in a lot of major internal data structures at that point, and a change to any of them would change thousands of symbol versions, which feels undesirable. I'm fine with increasing the limit to something more reasonable though, the impact on performance doesn't seem to be significant in parallel builds. Of course, this might impact vmlinux.o processing more, if we end up doing that, since the DWARF at that point contains information about all the data structures. I do wonder if there's a better way to figure out where to stop than a hard limit. Any thoughts? > > diff --git a/scripts/gendwarfksyms/dwarf.c b/scripts/gendwarfksyms/dwarf.c > > index 92b6ca4c5c91..2f1601015c4e 100644 > > --- a/scripts/gendwarfksyms/dwarf.c > > +++ b/scripts/gendwarfksyms/dwarf.c > > [...] > > @@ -651,6 +742,7 @@ static int process_exported_symbols(struct state *state, struct die *cache, > > else > > check(process_variable(state, &state->die)); > > > > + cache_clear_expanded(&state->expansion_cache); > > return 0; > > default: > > return 0; > > I wonder if it would make sense to share the cache between processing > individual exported symbols. The actual DIE caching happens in die_map, which is already shared between symbols. The expansion cache keeps track of which DIEs we have processed per symbol, so we don't process the same thing twice and end up in a loop, for example. Sami
Powered by blists - more mailing lists