lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
Message-ID: <495a5594-8ac6-4b7d-be6b-7c176b741c21@t-8ch.de>
Date: Mon, 22 Sep 2025 14:05:34 +0200
From: Thomas Weißschuh <linux@...ssschuh.net>
To: Tiwei Bie <tiwei.bie@...ux.dev>
Cc: richard@....at, anton.ivanov@...bridgegreys.com, 
	johannes@...solutions.net, benjamin@...solutions.net, arnd@...db.de, 
	linux-um@...ts.infradead.org, linux-kernel@...r.kernel.org, tiwei.btw@...group.com
Subject: Re: [PATCH v2 03/10] um: vdso: Implement __vdso_getcpu() via syscall

On 2025-09-22 12:50:20+0800, Tiwei Bie wrote:
> On Sun, 21 Sep 2025 22:00:41 +0200, Thomas Weißschuh wrote:
> > On 2025-09-10 13:59:02+0200, Johannes Berg wrote:
> > > On Sun, 2025-08-10 at 13:51 +0800, Tiwei Bie wrote:
> > > > From: Tiwei Bie <tiwei.btw@...group.com>
> > > > 
> > > > We are going to support SMP in UML, so we can not hard code
> > > > the CPU and NUMA node in __vdso_getcpu() anymore.
> > > 
> > > Correct. But does that mean we actually have to implement it via syscall
> > > in the VDSO? That seems a bit odd? ARM doesn't seem to have getcpu in
> > > the VDSO at all, for example, so could we do the same and just remove
> > > it?
> > 
> > It is my understanding that the UM VDSO exists to cope with old versions
> > of glibc which would fall back to the old vsyscall mechanism if no VDSO
> > was present. That could fall through to the host kernels vsyscalls.
> > See commit f1c2bb8b9964 ("um: implement a x86_64 vDSO").
> > 
> > If this is not necessary anymore, the whole VDSO on UM can probably go
> > away.
> 
> The vsyscall usage was removed from glibc a decade ago:
> 
> https://sourceware.org/git/?p=glibc.git;a=commit;h=7cbeabac0fb28e24c99aaa5085e613ea543a2346
> 
> "This patch removes the vsyscall usage for x86_64 port.  As indicated
>  by kernel code comments [1], vsyscalls are a legacy ABI and its concept
>  is problematic:
> 
>  - It interferes with ASLR.
>  - It's awkward to write code that lives in kernel addresses but is
>    callable by userspace at fixed addresses.
>  - The whole concept is impossible for 32-bit compat userspace.
>  - UML cannot easily virtualize a vsyscall.
> 
>  ......"

Also modern kernels dont even implement the vsyscall page anymore.
At most it is implemented as a stub which will trigger the real syscall
which then gets handled properly.

> The original issue could now be considered resolved. So in v3, we no
> longer turn __vdso_getcpu into a syscall wrapper; we simply removed it.
> Perhaps we could remove the whole VDSO before we implement the "real"
> VDSO. However, its implementation is clean, so keeping it wouldn't hurt
> and it could serve as a useful starting point for the "real" VDSO.

A "real" vDSO would require quite some more infrastructure. And it is
not even clear if such a vDSO will make a difference on UML. In my
opinion if __vdso_getcpu() gets removed, the whole vDSO should go with
it. The code can still be easily restored from git.

Also the functionality to map the host vDSO and vsyscall page into UML
userspace looks very weird and error-prone. Maybe it can also go away.


Thomas

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ