Received: by 2002:a25:4158:0:0:0:0:0 with SMTP id o85csp2179000yba;
        Thu, 25 Apr 2019 11:57:55 -0700 (PDT)
X-Google-Smtp-Source: APXvYqzQ99Q4XkxPEO1eOKppz5F6WdPZNdywYsd+WFBEtDtNrfTeoidrRIA6lg2Hec1/FL+myKzO
X-Received: by 2002:a63:5b24:: with SMTP id p36mr37586132pgb.84.1556218675802;
        Thu, 25 Apr 2019 11:57:55 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1556218675; cv=none;
        d=google.com; s=arc-20160816;
        b=nqJnOCR6h8yASf/R8Z00yASUK5yqXIPIuu8zPjfJqxReSXX6UC9WDLigZ97kohrEs1
         QXGK+Z4v4P815YMqdzK7BqAF6rMdcUujpHCV3KzbnnmKuvMchDLgPFSOLMkQzne2ktBf
         l/mkCMzXOtAUlD+/OZl1Xf38daBvyQDizCr2qBInOJCKHXt7spg1SGqhqiIiugbLBYqS
         LpQhxbRLo93u5tgYF4hYNELaZhhnysgULFcEzrKCvsCoNAxyS43tPkq6wNnodWoFXz8t
         Xqg3oD0RgAEFyuOtJl/G9AliC5Ubcyj8FOTbxlPt7gi8wR0/jTKilYO/5Ymx2nicXKES
         xCog==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:sender:content-transfer-encoding
         :content-language:in-reply-to:mime-version:user-agent:date
         :message-id:from:references:cc:to:subject;
        bh=b5fPAkpj536AvCvfOyG2JOOWRwgQbm/HdSWsl9FbKtE=;
        b=HHGpbletD8Um/yXcG5xwyzcB5YmOZn/aTGplc4k240A8GwFU6xXb7lDP2IQFauN5wy
         gZszy3RmGJNGltyahLPbMYJ6v46bDYuoKY/PdH3CkiFG/UkX+7GLTBBtU2MB7Ic3YVJn
         ErTjg6k+lQrJfQgJL8SK1GVkJh18FtO9SiwFQbSU9Pi4JgHUPqa3C1BLprTBJUfN5QHa
         jsWKRWtu02KTfb/QUsILG/AuVzboGpMXcVkzUZc5bcYi9NB2fffhj/FfacvxBjTu8q0y
         /Wnv5LQ/jRJxQKwFM2QQ8r+U3a+PQXAuQXJ51IJmT1BiefmBEUwnKzAdB64vDi60aeTR
         ohrg==
ARC-Authentication-Results: i=1; mx.google.com;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=redhat.com
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67])
        by mx.google.com with ESMTP id e13si21254562pgs.341.2019.04.25.11.57.40;
        Thu, 25 Apr 2019 11:57:55 -0700 (PDT)
Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67;
Authentication-Results: mx.google.com;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=redhat.com
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1730470AbfDYSWZ (ORCPT <rfc822;jaysonjohndmello@gmail.com>
        + 99 others); Thu, 25 Apr 2019 14:22:25 -0400
Received: from mx1.redhat.com ([209.132.183.28]:56888 "EHLO mx1.redhat.com"
        rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP
        id S1726126AbfDYSWY (ORCPT <rfc822;linux-kernel@vger.kernel.org>);
        Thu, 25 Apr 2019 14:22:24 -0400
Received: from smtp.corp.redhat.com (int-mx08.intmail.prod.int.phx2.redhat.com [10.5.11.23])
        (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits))
        (No client certificate requested)
        by mx1.redhat.com (Postfix) with ESMTPS id 8B8C63001D22;
        Thu, 25 Apr 2019 18:22:24 +0000 (UTC)
Received: from [10.10.122.74] (ovpn-122-74.rdu2.redhat.com [10.10.122.74])
        by smtp.corp.redhat.com (Postfix) with ESMTPS id E7B54272DA;
        Thu, 25 Apr 2019 18:22:23 +0000 (UTC)
Subject: Re: Livepatch vs LTO
To:     Josh Poimboeuf <jpoimboe@redhat.com>, live-patching@vger.kernel.org
Cc:     Peter Zijlstra <peterz@infradead.org>,
        Mark Rutland <mark.rutland@arm.com>,
        linux-kernel@vger.kernel.org
References: <20190425152628.ogk4woi3omeocwly@treble>
From:   Joe Lawrence <joe.lawrence@redhat.com>
Message-ID: <18a4eaae-e874-8568-9372-337ea1ce301b@redhat.com>
Date:   Thu, 25 Apr 2019 14:22:23 -0400
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:60.0) Gecko/20100101
 Thunderbird/60.6.1
MIME-Version: 1.0
In-Reply-To: <20190425152628.ogk4woi3omeocwly@treble>
Content-Type: text/plain; charset=utf-8; format=flowed
Content-Language: en-US
Content-Transfer-Encoding: 7bit
X-Scanned-By: MIMEDefang 2.84 on 10.5.11.23
X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-4.5.16 (mx1.redhat.com [10.5.110.42]); Thu, 25 Apr 2019 18:22:24 +0000 (UTC)
Sender: linux-kernel-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

On 4/25/19 11:26 AM, Josh Poimboeuf wrote:
> Hi all,
> 
> On IRC, Peter expressed some concern about -flive-patching, specifically
> that the flag isn't compatible with LTO.
> 
> The upstream kernel currently doesn't support LTO, but Android is using
> it with LLVM:
> 
>    https://source.android.com/devices/tech/debug/kcfi
> 
> And there seems to be progress being made in that direction for
> upstream.
> 
> Live patching has at least the following issues with LTO:
> 
> - For source-based patch generation (klp-convert and friends), the GCC
>    manual says that -flive-patching is incompatible with LTO.  Does
>    anybody know if that's a hard incompatibility, or can it be fixed?
> 
>    Also, what about the performance implications of this flag with LTO?
>    Might they become more pronounced?
> 
>    Also I wonder if -fdump-ipa-clones works with LTO?
> 
>    I also wonder about the future of source-based patch generation with
>    LLVM.  Will it also have -flive-patching and -fdump-ipa-clones flags?
> 
> - For binary-based patch generation (kpatch-build), we currently diff
>    objects at a per-compilation-unit level.  That would have to be
>    changed to work on vmlinux.o instead.
> 
> - Objtool would also have to be changed to work on vmlinux.o.  It's
>    currently not optimized for large files, and the per-.o whitelisting
>    would need to be fixed.  And there may be other issues lurking.
> 
> Also, thinking about objtool in this context has given me another idea,
> which might allow us to get rid of the use of -flive-patching and
> -fdump-ipa-clones altogether (which are both nasty and way too
> compiler-dependent):

Would objtool work around these issues because it would (pending the 
above changes) operate on post-LTO object files?

> Since objtool is already reading every function in the kernel, it could
> create a checksum associated with each function, based on all the
> instructions (both within the function and any alternatives or other
> special sections it relies on).  The function checksums could be written
> to a file.
> 
> Then, when a patch file is applied and the kernel rebuilt, the checksum
> files could be compared to determine exactly which functions have
> changed at a binary level.
> 
> Thoughts?  Any reasons why that wouldn't work?

This is an interesting option.  Keep in mind, like kpatch-build, it 
would detect changes as a result of source code line number positioning, 
ie WARN_* or might_sleep macros that kpatch-build currently detects and 
chooses to ignore.  Not a big deal, but warts like this start 
introducing more instruction decoding into the process.

Also, I think a klp-convert type script would still be needed to create 
livepatch symbols and their corresponding sections and relocations, 
right?  However, we might not need manual symbol <obj, pos> annotations 
to pull this off since presumably the object will have already 
built/linked.  I think.

I've only just started looking at klp-convert and asm alternatives, but 
maybe this would also help determine the alteratives-relocation to 
klp_object relationship that we will need if we want klp-convert to 
create klp.arch sections.

> And, if we wanted to take the idea even further, objtool could have the
> ability to write the changed functions to a new object file.  Voila, we
> now pretty much have kpatch-build :-)  (Though whether this is better
> than source-based patch generation is certainly an open question.)

Porting objtool to new arches is probably easier than kpatch-build at least.

-- Joe