Received: by 2002:a05:6358:d09b:b0:dc:cd0c:909e with SMTP id jc27csp1824138rwb;
        Thu, 8 Dec 2022 16:05:29 -0800 (PST)
X-Google-Smtp-Source: AA0mqf6eS5rfpwA3Sbee6U9Jqwtbd0cSbM9/IcxasVVbAu4D5K3dCssn1Oi+x+vRcwu8AQxuLO4m
X-Received: by 2002:a17:90a:f3c2:b0:219:38b7:4809 with SMTP id ha2-20020a17090af3c200b0021938b74809mr3660399pjb.39.1670544328822;
        Thu, 08 Dec 2022 16:05:28 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; t=1670544328; cv=none;
        d=google.com; s=arc-20160816;
        b=Qrr/+D9yvHaseu82faytXfoE0G0mi33xgTphboNNtCCk6TDzRHU8+OwRohi4a1IbN8
         cvMfvm2YDNW5tdgSFVaf1532I1jiJwQLAgRnDuBqvxm72b60l3tDGp7gjhCX2qOMuw1W
         O4MVS36gMfgFc8kSr5mZGPk/RHrwGl5m7GMNHAblKVUCP3BDHvRcsTPmRtUNhPghH24C
         8pxlnHhVDwwEKigCjNzkJ6C3leoHmN6cKnze8DeEnq0pyG5ohlgkHd4MpyhtgIr8YOrM
         r4x5J9gQrtMA7P7tMRexCmj2dLYmvTazwqqiTf2szTwHeOVP5oIWFdXUskhpObW1QHKm
         YLUg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:content-transfer-encoding:mime-version
         :message-id:to:from:cc:in-reply-to:subject:date:dkim-signature;
        bh=ePDFrC+thmFKubnseAgrLw6hx5tkMLW2pB1aGB33i8k=;
        b=ruNAL0saNSMwi686mlF7oKfxBOcXi6O+QO2y0bcJ5vNxienQtTM4h1ueAXw9HQMuC6
         gqUwe0THM36bWWRcTwGPzTpfpK3VWoyTOokp5vxVh+nl05tWBXOBOKzwElpk8AaHN6eN
         9A7ve5PuNNdaM+Tq0ZYo5x7BkvcW/DpQwUS6DNHedaPgUjnyxt0Pr8cg8O9IXAYK205q
         dmX1gg8tWbyIdei/Dv7NA0nKwmbPQABExquMc7/mnpHOG5YbG+h5VDkbluyvbzvOj4Y5
         Sr6PsbMmuqJRnIrRqmPeGOrgh+FcGwhF65C0RuwGTcKEzAW+3/Iuw/2bx9BOij8u7ihQ
         oRAQ==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@dabbelt-com.20210112.gappssmtp.com header.s=20210112 header.b=ETvh9Z94;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20])
        by mx.google.com with ESMTP id p1-20020a635b01000000b00477b64d8e5csi25125632pgb.160.2022.12.08.16.05.19;
        Thu, 08 Dec 2022 16:05:28 -0800 (PST)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@dabbelt-com.20210112.gappssmtp.com header.s=20210112 header.b=ETvh9Z94;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S230304AbiLHXoE (ORCPT <rfc822;2014014876lha@gmail.com>
        + 73 others); Thu, 8 Dec 2022 18:44:04 -0500
Received: from lindbergh.monkeyblade.net ([23.128.96.19]:54286 "EHLO
        lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S230352AbiLHXnn (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Thu, 8 Dec 2022 18:43:43 -0500
Received: from mail-pj1-x102b.google.com (mail-pj1-x102b.google.com [IPv6:2607:f8b0:4864:20::102b])
        by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 9D37AF1
        for <linux-kernel@vger.kernel.org>; Thu,  8 Dec 2022 15:43:23 -0800 (PST)
Received: by mail-pj1-x102b.google.com with SMTP id e7-20020a17090a77c700b00216928a3917so6287883pjs.4
        for <linux-kernel@vger.kernel.org>; Thu, 08 Dec 2022 15:43:23 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=dabbelt-com.20210112.gappssmtp.com; s=20210112;
        h=content-transfer-encoding:mime-version:message-id:to:from:cc
         :in-reply-to:subject:date:from:to:cc:subject:date:message-id
         :reply-to;
        bh=ePDFrC+thmFKubnseAgrLw6hx5tkMLW2pB1aGB33i8k=;
        b=ETvh9Z942KL/R/XGRFZOyuuyPHZNbVinppk1Sb1qW1ObiYcVxGuxTRnO48fS0NQT9u
         E3KyqcaiO7e7OJ1N1DCUKD9O5WLND9MR3gOIH7CaUpLDxHLrp6WbPCVTkp/oZjAD2TiG
         /Y1KIvehUnVmAjlMS1FAVYv+r83v9cRAh7fI5VzEEhIzwFE3ahKuaZ+dghOk8yUUHWB8
         QTRL/5+ZYVGkG8MLCe2Ikji1gkxp8TEly8F7eZdGy5lNK0aPNbiTOGVBIAz7888wRO+X
         E9GHXvxziy3GqGAoZyi7rPT2zuwvuJnytWTvdYLTwuIOor3oZDCffTzpaQsm/j084Lob
         9lTQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20210112;
        h=content-transfer-encoding:mime-version:message-id:to:from:cc
         :in-reply-to:subject:date:x-gm-message-state:from:to:cc:subject:date
         :message-id:reply-to;
        bh=ePDFrC+thmFKubnseAgrLw6hx5tkMLW2pB1aGB33i8k=;
        b=fSurg9VgNNLdbzN0ez0AA7LnRdvwyuiN+m9Ba2gVpUg4stu4bsCtoRAps/Mfwvzc+4
         15ViZfM1CJG3PrQBBHWjVeIJ/DMLfQ68Z20kCzVAn0Ln7DEFlpkBaQPGD4ggC63i4sL1
         dlRCOclWl/98qkCb+RmlLHl7pQx118uF1gwtEqv9G+CDKLkCnI22BpSR+2yiwAkKofP6
         ZWdAM7WZR1HN6nez7ZOaIjsCelp/A/E+WD2V7tTuo3vB921hcRQVoUmsldPH+YKISHpo
         r1pS8SQAYN+rT5b2gOCELUDXsgpIzlDqyI2bEGRiJnSAlQuPnSDiPCB2WMUPObY6DocY
         rRDQ==
X-Gm-Message-State: ANoB5pnRWyZVSvVUrKbp9fa11hiePhKx2SzOCBKMncXJ/ttTFd7qkewh
        ZTAgMyx31OHqp+IvxKXTBroiEg==
X-Received: by 2002:a17:902:6901:b0:188:c395:1756 with SMTP id j1-20020a170902690100b00188c3951756mr3202737plk.41.1670543002862;
        Thu, 08 Dec 2022 15:43:22 -0800 (PST)
Received: from localhost ([50.221.140.188])
        by smtp.gmail.com with ESMTPSA id u2-20020a170902e5c200b00186c5e8a8d7sm17226959plf.171.2022.12.08.15.43.21
        (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);
        Thu, 08 Dec 2022 15:43:21 -0800 (PST)
Date:   Thu, 08 Dec 2022 15:43:21 -0800 (PST)
X-Google-Original-Date: Thu, 08 Dec 2022 15:42:19 PST (-0800)
Subject:     Re: [PATCH] RISC-V: Fix unannoted hardirqs-on in return to userspace slow-path
In-Reply-To: <CAJF2gTTZS0YG_C=YkYB+8X78_7Aqp2fmfJrLvSjPLCT34CXjnA@mail.gmail.com>
CC:     abrestic@rivosinc.com, Conor Dooley <conor.dooley@microchip.com>,
        Paul Walmsley <paul.walmsley@sifive.com>,
        aou@eecs.berkeley.edu, Atish Patra <atishp@rivosinc.com>,
        linux-riscv@lists.infradead.org, linux-kernel@vger.kernel.org
From:   Palmer Dabbelt <palmer@dabbelt.com>
To:     guoren@kernel.org
Message-ID: <mhng-004caa98-a957-474e-a5e9-61338d0c3789@palmer-ri-x1c9a>
Mime-Version: 1.0 (MHng)
Content-Type: text/plain; charset=utf-8; format=flowed
Content-Transfer-Encoding: 8bit
X-Spam-Status: No, score=-1.9 required=5.0 tests=BAYES_00,DKIM_SIGNED,
        DKIM_VALID,RCVD_IN_DNSWL_NONE,SPF_HELO_NONE,SPF_PASS autolearn=ham
        autolearn_force=no version=3.4.6
X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on
        lindbergh.monkeyblade.net
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

On Mon, 14 Nov 2022 07:54:47 PST (-0800), guoren@kernel.org wrote:
> On Mon, Nov 14, 2022 at 11:42 PM Andrew Bresticker
> <abrestic@rivosinc.com> wrote:
>>
>> On Mon, Nov 14, 2022 at 10:31 AM Conor Dooley
>> <conor.dooley@microchip.com> wrote:
>> >
>> > On Mon, Nov 14, 2022 at 10:20:30AM -0500, Andrew Bresticker wrote:
>> > > On Mon, Nov 14, 2022 at 9:43 AM Guo Ren <guoren@kernel.org> wrote:
>> > > >
>> > > > On Sat, Nov 12, 2022 at 6:31 AM Andrew Bresticker <abrestic@rivosinc.com> wrote:
>> > > > >
>> > > > > The return to userspace path in entry.S may enable interrupts without the
>> > > > > corresponding lockdep annotation, producing a splat[0] when DEBUG_LOCKDEP
>> > > > > is enabled. Simply calling __trace_hardirqs_on() here gets a bit messy
>> > > > > due to the use of RA to point back to ret_from_exception, so just move
>> > > > > the whole slow-path loop into C. It's more readable and it lets us use
>> > > > > local_irq_{enable,disable}(), avoiding the need for manual annotations
>> > > > > altogether.
>> > > > Could generic_entry solve your problem? please try:
>> > > > https://lore.kernel.org/linux-riscv/20221103075047.1634923-1-guoren@kernel.org/
>> > >
>> > > Indeed it does, as I mentioned below, however it wasn't clear to me
>> > > how close your series was to landing so I'v emailed this small fix for
>> > > the existing bug in case your series does not make it into 6.2
>> >
>> > The backportablilty of this 26+, 26- change has to be considered too.
>> > The generic entry patchset has 20x the changes and would not ordinarily
>> > be stable material. How much of that series would be required to solve
>> > the problem?
>>
>> We'd need up to patch 6, "riscv: convert to generic entry":
>> https://lore.kernel.org/linux-riscv/20221103075047.1634923-7-guoren@kernel.org/
> Yes, but 6 needs 1 and 5, and they are very small patches.

I'm just going to take this one, for the ease of backporting.  The 
generic entry one keeps getting re-spun and I'm not sure it'll be in 
time for 6.2, so at least this way we can get the fix in now.

I've merge th is just on top of 6.1-rc1, so it's easier to deal with any 
conflicts later.

Thanks!

>
>>
>> -Andrew
>>
>> >
>> > > >
>> > > > >
>> > > > > [0]:
>> > > > >   ------------[ cut here ]------------
>> > > > >   DEBUG_LOCKS_WARN_ON(!lockdep_hardirqs_enabled())
>> > > > >   WARNING: CPU: 2 PID: 1 at kernel/locking/lockdep.c:5512 check_flags+0x10a/0x1e0
>> > > > >   Modules linked in:
>> > > > >   CPU: 2 PID: 1 Comm: init Not tainted 6.1.0-rc4-00160-gb56b6e2b4f31 #53
>> > > > >   Hardware name: riscv-virtio,qemu (DT)
>> > > > >   epc : check_flags+0x10a/0x1e0
>> > > > >   ra : check_flags+0x10a/0x1e0
>> > > > >   <snip>
>> > > > >    status: 0000000200000100 badaddr: 0000000000000000 cause: 0000000000000003
>> > > > >   [<ffffffff808edb90>] lock_is_held_type+0x78/0x14e
>> > > > >   [<ffffffff8003dae2>] __might_resched+0x26/0x22c
>> > > > >   [<ffffffff8003dd24>] __might_sleep+0x3c/0x66
>> > > > >   [<ffffffff80022c60>] get_signal+0x9e/0xa70
>> > > > >   [<ffffffff800054a2>] do_notify_resume+0x6e/0x422
>> > > > >   [<ffffffff80003c68>] ret_from_exception+0x0/0x10
>> > > > >   irq event stamp: 44512
>> > > > >   hardirqs last  enabled at (44511): [<ffffffff808f901c>] _raw_spin_unlock_irqrestore+0x54/0x62
>> > > > >   hardirqs last disabled at (44512): [<ffffffff80008200>] __trace_hardirqs_off+0xc/0x14
>> > > > >   softirqs last  enabled at (44472): [<ffffffff808f9fbe>] __do_softirq+0x3de/0x51e
>> > > > >   softirqs last disabled at (44467): [<ffffffff80017760>] irq_exit+0xd6/0x104
>> > > > >   ---[ end trace 0000000000000000 ]---
>> > > > >   possible reason: unannotated irqs-on.
>> > > > >
>> > > > > Signed-off-by: Andrew Bresticker <abrestic@rivosinc.com>
>> > > > > ---
>> > > > > This should also theoretically be fixed by the conversion to generic entry,
>> > > > > but it's not clear how far away that series is from landing.
>> > > > > ---
>> > > > >  arch/riscv/kernel/entry.S  | 18 +++++-------------
>> > > > >  arch/riscv/kernel/signal.c | 34 +++++++++++++++++++++-------------
>> > > > >  2 files changed, 26 insertions(+), 26 deletions(-)
>> > > > >
>> > > > > diff --git a/arch/riscv/kernel/entry.S b/arch/riscv/kernel/entry.S
>> > > > > index b9eda3fcbd6d..58dfa8595e19 100644
>> > > > > --- a/arch/riscv/kernel/entry.S
>> > > > > +++ b/arch/riscv/kernel/entry.S
>> > > > > @@ -263,12 +263,11 @@ ret_from_exception:
>> > > > >  #endif
>> > > > >         bnez s0, resume_kernel
>> > > > >
>> > > > > -resume_userspace:
>> > > > >         /* Interrupts must be disabled here so flags are checked atomically */
>> > > > >         REG_L s0, TASK_TI_FLAGS(tp) /* current_thread_info->flags */
>> > > > >         andi s1, s0, _TIF_WORK_MASK
>> > > > > -       bnez s1, work_pending
>> > > > > -
>> > > > > +       bnez s1, resume_userspace_slow
>> > > > > +resume_userspace:
>> > > > >  #ifdef CONFIG_CONTEXT_TRACKING_USER
>> > > > >         call user_enter_callable
>> > > > >  #endif
>> > > > > @@ -368,19 +367,12 @@ resume_kernel:
>> > > > >         j restore_all
>> > > > >  #endif
>> > > > >
>> > > > > -work_pending:
>> > > > > +resume_userspace_slow:
>> > > > >         /* Enter slow path for supplementary processing */
>> > > > > -       la ra, ret_from_exception
>> > > > > -       andi s1, s0, _TIF_NEED_RESCHED
>> > > > > -       bnez s1, work_resched
>> > > > > -work_notifysig:
>> > > > > -       /* Handle pending signals and notify-resume requests */
>> > > > > -       csrs CSR_STATUS, SR_IE /* Enable interrupts for do_notify_resume() */
>> > > > >         move a0, sp /* pt_regs */
>> > > > >         move a1, s0 /* current_thread_info->flags */
>> > > > > -       tail do_notify_resume
>> > > > > -work_resched:
>> > > > > -       tail schedule
>> > > > > +       call do_work_pending
>> > > > > +       j resume_userspace
>> > > > >
>> > > > >  /* Slow paths for ptrace. */
>> > > > >  handle_syscall_trace_enter:
>> > > > > diff --git a/arch/riscv/kernel/signal.c b/arch/riscv/kernel/signal.c
>> > > > > index 5c591123c440..bfb2afa4135f 100644
>> > > > > --- a/arch/riscv/kernel/signal.c
>> > > > > +++ b/arch/riscv/kernel/signal.c
>> > > > > @@ -313,19 +313,27 @@ static void do_signal(struct pt_regs *regs)
>> > > > >  }
>> > > > >
>> > > > >  /*
>> > > > > - * notification of userspace execution resumption
>> > > > > - * - triggered by the _TIF_WORK_MASK flags
>> > > > > + * Handle any pending work on the resume-to-userspace path, as indicated by
>> > > > > + * _TIF_WORK_MASK. Entered from assembly with IRQs off.
>> > > > >   */
>> > > > > -asmlinkage __visible void do_notify_resume(struct pt_regs *regs,
>> > > > > -                                          unsigned long thread_info_flags)
>> > > > > +asmlinkage __visible void do_work_pending(struct pt_regs *regs,
>> > > > > +                                         unsigned long thread_info_flags)
>> > > > >  {
>> > > > > -       if (thread_info_flags & _TIF_UPROBE)
>> > > > > -               uprobe_notify_resume(regs);
>> > > > > -
>> > > > > -       /* Handle pending signal delivery */
>> > > > > -       if (thread_info_flags & (_TIF_SIGPENDING | _TIF_NOTIFY_SIGNAL))
>> > > > > -               do_signal(regs);
>> > > > > -
>> > > > > -       if (thread_info_flags & _TIF_NOTIFY_RESUME)
>> > > > > -               resume_user_mode_work(regs);
>> > > > > +       do {
>> > > > > +               if (thread_info_flags & _TIF_NEED_RESCHED) {
>> > > > > +                       schedule();
>> > > > > +               } else {
>> > > > > +                       local_irq_enable();
>> > > > > +                       if (thread_info_flags & _TIF_UPROBE)
>> > > > > +                               uprobe_notify_resume(regs);
>> > > > > +                       /* Handle pending signal delivery */
>> > > > > +                       if (thread_info_flags & (_TIF_SIGPENDING |
>> > > > > +                                                _TIF_NOTIFY_SIGNAL))
>> > > > > +                               do_signal(regs);
>> > > > > +                       if (thread_info_flags & _TIF_NOTIFY_RESUME)
>> > > > > +                               resume_user_mode_work(regs);
>> > > > > +               }
>> > > > > +               local_irq_disable();
>> > > > > +               thread_info_flags = read_thread_flags();
>> > > > > +       } while (thread_info_flags & _TIF_WORK_MASK);
>> > > > >  }
>> > > > The more graceful code has been written in kernel/entry/common.c.
>> > > > Let's base it on that:
>> > > >
>> > > > static unsigned long exit_to_user_mode_loop(struct pt_regs *regs,
>> > > >                                             unsigned long ti_work)
>> > > > {
>> > > >         /*
>> > > >          * Before returning to user space ensure that all pending work
>> > > >          * items have been completed.
>> > > >          */
>> > > >         while (ti_work & EXIT_TO_USER_MODE_WORK) {
>> > > >
>> > > >                 local_irq_enable_exit_to_user(ti_work);
>> > > >
>> > > >                 if (ti_work & _TIF_NEED_RESCHED)
>> > > >                         schedule();
>> > > >
>> > > >                 if (ti_work & _TIF_UPROBE)
>> > > >                         uprobe_notify_resume(regs);
>> > > >
>> > > >                 if (ti_work & _TIF_PATCH_PENDING)
>> > > >                         klp_update_patch_state(current);
>> > > >
>> > > >                 if (ti_work & (_TIF_SIGPENDING | _TIF_NOTIFY_SIGNAL))
>> > > >                         arch_do_signal_or_restart(regs);
>> > > >
>> > > >                 if (ti_work & _TIF_NOTIFY_RESUME)
>> > > >                         resume_user_mode_work(regs);
>> > > >
>> > > >                 /* Architecture specific TIF work */
>> > > >                 arch_exit_to_user_mode_work(regs, ti_work);
>> > > >
>> > > >                 /*
>> > > >                  * Disable interrupts and reevaluate the work flags as they
>> > > >                  * might have changed while interrupts and preemption was
>> > > >                  * enabled above.
>> > > >                  */
>> > > >                 local_irq_disable_exit_to_user();
>> > > >
>> > > >                 /* Check if any of the above work has queued a
>> > > > deferred wakeup */
>> > > >                 tick_nohz_user_enter_prepare();
>> > > >
>> > > >                 ti_work = read_thread_flags();
>> > > >         }
>> > > >
>> > > >         /* Return the latest work state for arch_exit_to_user_mode() */
>> > > >         return ti_work;
>> > > > }
>> > > >
>> > > > > --
>> > > > > 2.25.1
>> > > > >
>> > > >
>> > > >
>> > > > --
>> > > > Best Regards
>> > > >  Guo Ren
>> > >
>> > > _______________________________________________
>> > > linux-riscv mailing list
>> > > linux-riscv@lists.infradead.org
>> > > http://lists.infradead.org/mailman/listinfo/linux-riscv