| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <20250721100913-0c6d93d8-79d6-482b-9db4-7b0c06b604fa@linutronix.de> Date: Mon, 4 Aug 2025 17:01:35 +0200 From: Thomas Weißschuh <thomas.weissschuh@...utronix.de> To: Christoph Hellwig <hch@....de>, Shuah Khan <shuah@...nel.org> Cc: Masahiro Yamada <masahiroy@...nel.org>, Nathan Chancellor <nathan@...nel.org>, Andrew Morton <akpm@...ux-foundation.org>, Willy Tarreau <w@....eu>, Thomas Weißschuh <linux@...ssschuh.net>, Brendan Higgins <brendan.higgins@...ux.dev>, David Gow <davidgow@...gle.com>, Rae Moar <rmoar@...gle.com>, Jonathan Corbet <corbet@....net>, Nicolas Schier <nicolas.schier@...ux.dev>, Kees Cook <kees@...nel.org>, Alexander Viro <viro@...iv.linux.org.uk>, Christian Brauner <brauner@...nel.org>, Jan Kara <jack@...e.cz>, Luis Chamberlain <mcgrof@...nel.org>, Christophe Leroy <christophe.leroy@...roup.eu>, linux-kbuild@...r.kernel.org, linux-kernel@...r.kernel.org, linux-kselftest@...r.kernel.org, kunit-dev@...glegroups.com, linux-doc@...r.kernel.org, workflows@...r.kernel.org, linux-mm@...ck.org, linux-fsdevel@...r.kernel.org Subject: Re: [PATCH v5 00/15] kunit: Introduce UAPI testing framework Hi Christoph, On Mon, Jul 21, 2025 at 09:09:58AM +0200, Christoph Hellwig wrote: > On Fri, Jul 18, 2025 at 08:22:26AM +0200, Thomas Weißschuh wrote: > > > I had my own fair share of problems with kselftests, > > > mostly because of the lack of structure and automated way to run them, > > > > How did you overcome these issues? Why does everbody need to reinvent the > > wheel here? > > Told people to use everything remotely file system related to use > xfstests instead, and either ignore or suffer from the rest. Suffering from the rest is what I am trying to avoid. (More on that below) > > KUnit already exists and provides a lot of structure and tooling. > > That's great. Let's reuse it without having to drive running userspace > programs from kernel code. Running in the kernel is the point behind KUnit. It could be done by putting all the userspace test into a initramfs and run them on boot from there. But that has other drawbacks: * The tests can't be run on an existing system. * All tests need to be loaded into memory together, and not on demand. * The tests can not be rerun. > > > but adding them to the kernel (or a module) is overshooting the target > > > by far. > > > > That's a subjective statement without any reasoning I can engange with. > > Well, then we're done here if you can't engage. This was a response to one specific statement. Could you be a bit more specific in your critique? I am not sure what exactly you mean in some cases, making it hard to respond properly. For example "bloat", it is bloaty * source code, * object code for users enabling the new kconfig options, * object code for other users *not* enabling the new kconfig options? > > I would be happy to do so, but for now I can only say that I disagree. > > The patches have been on the testing-related lists for > > some time and so far nobody had an issue with this aspect. > > Has anyone actually chimed in and said "it's great that we bloat the > kernel to run userspace tests", or have people just mostly ignored it > like most things? That specific wording wasn't used. Obviously... So far nobody had any issues with the overall goal of the series. There was criticism around implementation details and I have been and will be working on resolving those. Some feedback I got: David [0]: "I've taken quite a liking to it: it'd definitely have made my life easier more than once." Benjamin is already playing with it, having built his own testcase [1]. I asked Shuah about it before starting development and she gave a go-ahead. A collegue of mine is also using it to validate the PREEMPT_RT safety of various UAPIs by combining KUnit UAPI with a runtime validator [2]. > > > > If the kernel toolchain is not fit to > > > > produce userspace because of a missing libc, the kernel's own nolibc can > > > > be used instead. > > > > > > Is nolibc enough to run all the selftests? > > > > It is not and most probably won't ever be. The maintainers of each testcase > > will decide which libc to use. Like it is in tools/testing/selftests/ today. > > Some use glibc, some nolibc and some can do both. > > So why do you want to use it here? And how is is related to the rest > of the series? To make it easier to test a wide range of architectures by not requiring a libc from the toolchain. It also avoids relying on a bunch of out-of-tree code (glibc) as part of the test. And there are existing kselftests which use it over glibc for their own reasons. But using nolibc in test code is not necessary and nobody is forced to do so. (Maybe a disclaimer that I'm one of the nolibc maintainers is in order) (...) > You present running pure userspace tests as the solution to a problem > you don't even explain, or rather just state very highlevel. To run kselftests we need the following things: a) A toolchain which can build userspace executables. b) Quite a bit of supporting userland, at least glibc, coreutils and bash. c) A rootfs assembled out of these. d) An efficient way to incrementally rebuild the test executables and rootfs. e) A way to put that rootfs into the system under test. f) A way to configure a kernel which * is as small as possible and as fast as possible to build, * can run on QEMU or a real machine, * can run the functionality under test. g) A way to select the tests to run in the system under test. h) A way to communicate back the results. i) Something to interpret the results. j) Hook up everything into a CI system. And for all of this there should be good in-tree tooling. For a) and b) I am not aware of any toolchain provider or distribution which provides this for all necessary architectures. And the existing userspace test frameworks don't even try to address the points a) to e)/f) and let the user figure it out. This is the case for xfstests and LTP. virtme(-ng) provide most of it but don't support cross-architecture setups. On the other hand the tree already contains solutions for most of those points. a) and d) are solved by kbuild userprogs, e) to j) by KUnit and my new framework plugs b) and c). Moving to a pure userspace solution would preclude the usage of KUnit as far as I can see. This all started when I worked on the generic vDSO data storage patches [3]. I needed to run the existing vDSO selftests against a bunch of architectures, including some esoteric ones [4]. With my framework, running the vDSO selftests for any architecture is now trivial and blazingly fast. Does this make more sense? > Yes, kselftests suck as most people will agree. But the answer is not > to add a lot of kernel bloat to treat userspace integration tests > like kernel units tests. I fail to understand how this test code is worse than the existing KUnit test code. This is not meant to test complex scenarios, but single system calls or specific UAPIs, which may depend on architecture features. For example timers, signals, vDSO, mm etc. > How about you just fix kselftests, preferably > by reusing well known and teststed userland code? Is "well known and tested userland code" referring to glibc or testing frameworks? As mentioned above, glibc can be used just fine and the frameworks I know about are lacking. Thomas [0] https://lore.kernel.org/all/CABVgOSn+530YJ3OPNJQncLDQNbd9JEDtZ04Amyyxk57jOVYUyQ@mail.gmail.com/ [1] https://lore.kernel.org/all/20250626195714.2123694-3-benjamin@sipsolutions.net/ [2] https://lore.kernel.org/lkml/cover.1752088709.git.namcao@linutronix.de/ [3] https://lore.kernel.org/lkml/20250204-vdso-store-rng-v3-0-13a4669dfc8c@linutronix.de/ [4] https://lore.kernel.org/lkml/20250724-vdso-sparc64-generic-2-v1-0-e376a3bd24d1@linutronix.de/
Powered by blists - more mailing lists