| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <20250827145159.GA9844@redhat.com> Date: Wed, 27 Aug 2025 16:51:59 +0200 From: Oleg Nesterov <oleg@...hat.com> To: "Edgecombe, Rick P" <rick.p.edgecombe@...el.com> Cc: "debug@...osinc.com" <debug@...osinc.com>, "mingo@...nel.org" <mingo@...nel.org>, "bp@...en8.de" <bp@...en8.de>, "broonie@...nel.org" <broonie@...nel.org>, "peterz@...radead.org" <peterz@...radead.org>, "hpa@...or.com" <hpa@...or.com>, "linux-kernel@...r.kernel.org" <linux-kernel@...r.kernel.org>, "tglx@...utronix.de" <tglx@...utronix.de>, "dave.hansen@...ux.intel.com" <dave.hansen@...ux.intel.com>, "Mehta, Sohil" <sohil.mehta@...el.com>, "x86@...nel.org" <x86@...nel.org> Subject: Re: [PATCH v2 0/5] x86/fpu: don't abuse x86_task_fpu(PF_USER_WORKER) in .regset_get() paths On 08/27, Edgecombe, Rick P wrote: > > On Mon, 2025-08-25 at 15:47 +0200, Oleg Nesterov wrote: > > > > So. Sorry if it wasn't clear, this series is not a bug fix or something like this. > > This starts the cleanups I was thinking about year ago, see > > > > https://lore.kernel.org/all/20240606120038.GB22450@redhat.com/ > > > > Then later we can probably make more changes so that the kernel threads > > (PF_KTHREADs and PF_USER_WORKERs) will run without "struct fpu" attached > > to task_struct, so that x86_task_fpu() should return NULL regardless of > > CONFIG_X86_DEBUG_FPU. > > To save space? Yes. And to make the fact that kernel threads never use (do not really have) FPU state more clear. > > But even the WARN_ON_ONCE(task->flags & (PF_KTHREAD|PF_USER_WORKER)) in > > x86_task_fpu() makes sense to me. > > > > Say, switch_fpu() has no reason to check "PF_KTHREAD | PF_USER_WORKER", > > this check should die. > > > > Digging through git, the reason for the PF_USER_WORKER check in switch_fpu() was > originally: "more of a cosmetic thing that was found while debugging and issue > and pondering why the FPU flag is set on these threads." Whatever reasons we had, they're gone. We can rely on TIF_NEED_FPU_LOAD. I'll send a coupld of patches tomorrow. > So a goal could be to make the code make more sense? If that is a reason, then I > have some concerns with it. The simpler code would need to somehow work with > that (I think...) user workers should still have a PKRU value. So then does > ptrace need branching logic for xstateregs_get/set() with a struct fpu and > without? If so, is that ultimately simpler? Sorry, I don't understand... In particular, I don't understand again how this connects to PKRU. __switch_to()->x86_pkru_load() doesn't depend on switch_fpu() ? > > But if something goes wrong, it would be nice to > > have a warning for io threads as well. > > I guess I question whether it really makes sense to add a special case for > PF_USER_WORKER, including the existing logic. But I'm still trying to piece > together a clearly stated benefit. Again, I don't understand... To me, currently arch/x86/kernel/fpu/regset.c adds a special case for PF_USER_WORKER, this series tries to remove it (but we need a bit more of simple changes). > > That said... Could you explain why do you dislike 4/5 ? > > As I said, shstk_alloc_thread_stack() shouldn't clear ARCH_SHSTK_SHSTK because > the function is about shadow stack allocation. OK, then how/where we can clear this flag if we avoid the pointless shadow stack allocation for PF_USER_WORKER? > It also doesn't make sense to > clear ARCH_SHSTK_SHSTK for user workers. Why? > I think Dave also questioned whether a rare extra shadow stack is really a > problem. Sure, it is not really a problem. In that it is not a bug. But why we can't avoid the pointless shadow stack / ARCH_SHSTK_SHSTK for user workers ? 4/5 doesn't complicate this code. Plus, again, the current code is not consistent. fpu_clone() won't do update_fpu_shstk() in this case. Not a bug too, but imo deserves a cleanup. Oleg.
Powered by blists - more mailing lists