Received: by 2002:a25:c205:0:0:0:0:0 with SMTP id s5csp1192713ybf; Thu, 27 Feb 2020 06:36:01 -0800 (PST) X-Google-Smtp-Source: APXvYqw1jRLcJcCI/xZ+doQC//cH12KyWiPMgVSe5lasay+M33x1WNDKjt5sXiwDfRoCaj+jb9JB X-Received: by 2002:aca:814:: with SMTP id 20mr3592700oii.159.1582814161444; Thu, 27 Feb 2020 06:36:01 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1582814161; cv=none; d=google.com; s=arc-20160816; b=vk1tQME4ptUFrr5s4PYUd1iIbpj+y7AI5foz3w6qp5+sxHrAXPXULyTdViLyUxvz8Z G1Q3P3mk54YvfcVh7/Nrpjvv91vwph0m7N5lqubt2PR7Eqp3KhRcD37k2Pb6dYSR3W1f lNHFiegQeO8ta5lZlfb9WYUpzaC1ODh5OHGkyFiQL8sGOEItxhujdAEAUgPJTtRAoL3f QynnQ8r856Gm8vRwRcnCa2DIUeA2KYkITQ6oEPiiEOOUIHiSa01p6V59xICgLwOk3Lsl yKV/tLidRNPBlnoWsZZeQlBuR5pWTt+tx68uVKeP+GKzHWtgCpMSxUH/qgcF0Uq95IF6 pRKQ== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:references:in-reply-to:references :in-reply-to:message-id:date:subject:to:from:dkim-signature; bh=aSqQmGccrYJsSY1dQvcAHKBPzktyqm6wV0utnHUO7iU=; b=Bqvfpn5vngVirApFS+Sr3ZIfmiY+A6Y7dto8Jn3PDhRo6WWhtcfgIt9lXGXSTStCh/ 66PuOiwgHP8XEPlCvhU6+TY/Nd8NPechrBNT3g0d54KEEeabpAgzbGP9ASxQsS7vDW/S PhJz4xv9c9FE1wkMazYM9uddX+NzHdjVpCX0ne0ip7+dSVbjLHQg+1Z+HMY68rRMJ1Vu rkI0CfYKOyNRRiUpFDRIga6aJYzFxQdGhQObqIFkcEMkZCkN5jtJPCY4jeiRpqee2Web zjZWkX5pWA1OtvTAgW6YASW/DtiD3EglQ6UMIICMoQyPDTWSgdKRKaBAU2q9qtr2mjQ+ 27NQ== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@kernel.org header.s=default header.b=Bc+tbI1J; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id t9si1443249otp.57.2020.02.27.06.35.49; Thu, 27 Feb 2020 06:36:01 -0800 (PST) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; dkim=pass header.i=@kernel.org header.s=default header.b=Bc+tbI1J; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S2387911AbgB0OfK (ORCPT + 99 others); Thu, 27 Feb 2020 09:35:10 -0500 Received: from mail.kernel.org ([198.145.29.99]:45158 "EHLO mail.kernel.org" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S2387769AbgB0OeK (ORCPT ); Thu, 27 Feb 2020 09:34:10 -0500 Received: from localhost.localdomain (c-98-220-238-81.hsd1.il.comcast.net [98.220.238.81]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by mail.kernel.org (Postfix) with ESMTPSA id C0FA3246B8; Thu, 27 Feb 2020 14:34:08 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=kernel.org; s=default; t=1582814049; bh=eEY166ta87q0I5Yb9poafq3N1XnniQY60N3Cp98vY/c=; h=From:To:Subject:Date:In-Reply-To:References:In-Reply-To: References:From; b=Bc+tbI1J5rTPCQEfGflEqZB773VyzsVLDf1Su+OBbz8/YS6P9m9L090GSNKeUdbE6 WKrrsMusLA1oATsadBmiNRMmcr/a0aIxJ+LMIIt7fWM2CFq7VUEUExiPL+X9bmlg1z A0NZbSBwWzFFDHboSFzQbEundJ9DZc1k+mSCXXeA= From: zanussi@kernel.org To: LKML , linux-rt-users , Steven Rostedt , Thomas Gleixner , Carsten Emde , John Kacur , Sebastian Andrzej Siewior , Daniel Wagner , Tom Zanussi Subject: [PATCH RT 14/23] Revert "ARM: Initialize split page table locks for vector page" Date: Thu, 27 Feb 2020 08:33:25 -0600 Message-Id: X-Mailer: git-send-email 2.14.1 In-Reply-To: References: In-Reply-To: References: Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org From: Sebastian Andrzej Siewior v4.14.170-rt75-rc2 stable review patch. If anyone has any objections, please let me know. ----------- [ Upstream commit 247074c44d8c3e619dfde6404a52295d8d671d38 ] I'm dropping this patch, with its original description: |ARM: Initialize split page table locks for vector page | |Without this patch, ARM can not use SPLIT_PTLOCK_CPUS if |PREEMPT_RT_FULL=y because vectors_user_mapping() creates a |VM_ALWAYSDUMP mapping of the vector page (address 0xffff0000), but no |ptl->lock has been allocated for the page. An attempt to coredump |that page will result in a kernel NULL pointer dereference when |follow_page() attempts to lock the page. | |The call tree to the NULL pointer dereference is: | | do_notify_resume() | get_signal_to_deliver() | do_coredump() | elf_core_dump() | get_dump_page() | __get_user_pages() | follow_page() | pte_offset_map_lock() <----- a #define | ... | rt_spin_lock() | |The underlying problem is exposed by mm-shrink-the-page-frame-to-rt-size.patch. The patch named mm-shrink-the-page-frame-to-rt-size.patch was dropped from the RT queue once the SPLIT_PTLOCK_CPUS feature (in a slightly different shape) went upstream (somewhere between v3.12 and v3.14). I can see that the patch still allocates a lock which wasn't there before. However I can't trigger a kernel oops like described in the patch by triggering a coredump. Signed-off-by: Sebastian Andrzej Siewior Signed-off-by: Tom Zanussi --- arch/arm/kernel/process.c | 24 ------------------------ 1 file changed, 24 deletions(-) diff --git a/arch/arm/kernel/process.c b/arch/arm/kernel/process.c index cf4e1452d4b4..d96714e1858c 100644 --- a/arch/arm/kernel/process.c +++ b/arch/arm/kernel/process.c @@ -325,30 +325,6 @@ unsigned long arch_randomize_brk(struct mm_struct *mm) } #ifdef CONFIG_MMU -/* - * CONFIG_SPLIT_PTLOCK_CPUS results in a page->ptl lock. If the lock is not - * initialized by pgtable_page_ctor() then a coredump of the vector page will - * fail. - */ -static int __init vectors_user_mapping_init_page(void) -{ - struct page *page; - unsigned long addr = 0xffff0000; - pgd_t *pgd; - pud_t *pud; - pmd_t *pmd; - - pgd = pgd_offset_k(addr); - pud = pud_offset(pgd, addr); - pmd = pmd_offset(pud, addr); - page = pmd_page(*(pmd)); - - pgtable_page_ctor(page); - - return 0; -} -late_initcall(vectors_user_mapping_init_page); - #ifdef CONFIG_KUSER_HELPERS /* * The vectors page is always readable from user space for the -- 2.14.1