Received: by 2002:a05:7412:d8a:b0:e2:908c:2ebd with SMTP id b10csp2941417rdg; Mon, 16 Oct 2023 22:28:50 -0700 (PDT) X-Google-Smtp-Source: AGHT+IEleEm3ejqg7HPaJxhNA/pi3QH7vwVKWTZ957hNogrOAgYb6MobxuB+6CVdEMsv6k7Q0DAb X-Received: by 2002:a05:6a00:99d:b0:6b5:ec98:427d with SMTP id u29-20020a056a00099d00b006b5ec98427dmr1454483pfg.17.1697520529711; Mon, 16 Oct 2023 22:28:49 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1697520529; cv=none; d=google.com; s=arc-20160816; b=PDbIGUEahxKkj6+EtXI749+M8XRFP5K6fYf225az9lDl7KrNkIMsCiXw6llLIeyoRb K2RTdh9Y6JwOJSboR5hdydXcuZOhsl5cXakO5SptjXzMKML9s/FBJIqLLx+XCqfH9oob g8yItYSq9oNrvnVejBILpQzjwFQq7tYizXwhgRCE+7HI3Y/YFSkBjRcIVIu5Hs7cX542 P/g93kgU8vnTN+8Nn2GCXRPCsT6S5EVps6KqP2R/91VWOOsTLJYqu5b7uNRLhBLijrik UowbCW9y/6hjTJsd2VXdeoBRh9jw2O4z95AyYXB4thest059bUelEawzhaNSNzCYgVe8 imkA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:in-reply-to:content-disposition:mime-version :references:message-id:subject:cc:to:from:date:dkim-signature; bh=Z2cNsJGeWpsi27C0M1KZJlGy0rBViDhIhRYH19f9KRA=; fh=QP+JzpY0gEnsn7xG3YzDyV2PPAGHzZVa1DvOzSd3/Os=; b=zqkWt3GO0kdEFPfpCHmDdXOlRyebkA61/IlvqhbghRxQSm/kL5BFON8uDakhJVJT9+ /W1+9f7UNVT4JaVdpLvVE5lm8IdDv6EIDLtSp8zB8JAiT/ZuEvRtbyYbvZesTbdM8P7q B4mvuILhrBPmjbjaVYs+6Le2qqCwFh8r45+Pj/U/5KYG2utgsHyvTgasuYTCKU4Mr0qw JsLYM74yYqo2EH8Hzu2RHju8BybA5UjiL4ua/Rty4NT+NBInGmGFlpGMGu43KhkG3UtH mwBKYdUyhja6fz0+R53Ll36yR9lhTLlwy4ce2lGp3Pn6AxbYpoOI/FBmIhitAHzGFNTz ECxg== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@kernel.org header.s=k20201202 header.b=ntF7ZIGw; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::3:1 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org Return-Path: Received: from morse.vger.email (morse.vger.email. [2620:137:e000::3:1]) by mx.google.com with ESMTPS id o19-20020a056a0015d300b0068fb5ca50cdsi911691pfu.126.2023.10.16.22.28.49 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Mon, 16 Oct 2023 22:28:49 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::3:1 as permitted sender) client-ip=2620:137:e000::3:1; Authentication-Results: mx.google.com; dkim=pass header.i=@kernel.org header.s=k20201202 header.b=ntF7ZIGw; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::3:1 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org Received: from out1.vger.email (depot.vger.email [IPv6:2620:137:e000::3:0]) by morse.vger.email (Postfix) with ESMTP id 789018051976; Mon, 16 Oct 2023 22:28:47 -0700 (PDT) X-Virus-Status: Clean X-Virus-Scanned: clamav-milter 0.103.10 at morse.vger.email Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S234391AbjJQF2l (ORCPT + 99 others); Tue, 17 Oct 2023 01:28:41 -0400 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:37128 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S234341AbjJQF2j (ORCPT ); Tue, 17 Oct 2023 01:28:39 -0400 Received: from smtp.kernel.org (relay.kernel.org [52.25.139.140]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 2AAEBF2; Mon, 16 Oct 2023 22:28:37 -0700 (PDT) Received: by smtp.kernel.org (Postfix) with ESMTPSA id 57768C433C7; Tue, 17 Oct 2023 05:28:36 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=kernel.org; s=k20201202; t=1697520516; bh=cd+YCcvaHShnXv8nfPjDdkeIq4Z59L04bYAn6IBtZqw=; h=Date:From:To:Cc:Subject:References:In-Reply-To:From; b=ntF7ZIGwmlpol29wyVdJbpc8ID4cq0mtwqrWBDTeXAskry0rMCdoEruNogvmNsU+t NqQxKvSGs75U5msvpeYdfieKunLtc052QQH4DU0a1YqSij6JKj9AjYwiUx6IJF+vx7 3hB2jykjVWnSdGmbbsidS3PKfrMzY2XXRKAyV3YNzG/4pjrrbMOWhmgZSVxAIMb1g8 pl21yGph/khjwE3zcQaY+r6QNKk3FbGILEtQcXNPrSm5LeBHiMpU9qNdbVOBCSBiFI IXqh9/KduF32ZjkJiSMiVWKflbBYScyvvDDo4TgBsQLWoenLVAbzi/Zc4K0CCIrqDV +TNT6LtjCrf8g== Date: Mon, 16 Oct 2023 22:28:34 -0700 From: Josh Poimboeuf To: "Kaplan, David" Cc: Nathan Chancellor , Borislav Petkov , "linux-kernel@vger.kernel.org" , "linux-tip-commits@vger.kernel.org" , Ingo Molnar , "Peter Zijlstra (Intel)" , "x86@kernel.org" , "llvm@lists.linux.dev" Subject: Re: [tip: x86/bugs] x86/retpoline: Ensure default return thunk isn't used at runtime Message-ID: <20231017052834.v53regh66hspv45n@treble> References: <20231012141031.GHZSf+V1NjjUJTc9a9@fat_crate.local> <169713303534.3135.10558074245117750218.tip-bot2@tip-bot2> <20231016211040.GA3789555@dev-arch.thelio-3990X> <20231016212944.GGZS2rSCbIsViqZBDe@fat_crate.local> <20231016214810.GA3942238@dev-arch.thelio-3990X> MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Disposition: inline In-Reply-To: X-Spam-Status: No, score=-1.2 required=5.0 tests=DKIMWL_WL_HIGH,DKIM_SIGNED, DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,MAILING_LIST_MULTI, SPF_HELO_NONE,SPF_PASS autolearn=unavailable autolearn_force=no version=3.4.6 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on morse.vger.email Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org X-Greylist: Sender passed SPF test, not delayed by milter-greylist-4.6.4 (morse.vger.email [0.0.0.0]); Mon, 16 Oct 2023 22:28:47 -0700 (PDT) On Tue, Oct 17, 2023 at 04:31:09AM +0000, Kaplan, David wrote: > I think I found the problem, although I'm not sure the best way to fix it. > > When KCSAN is enabled, GCC generates lots of constructor functions named _sub_I_00099_0 which call __tsan_init and then return. The returns in these are generally annotated normally by objtool and fixed up at runtime. But objtool runs on vmlinux.o and vmlinux.o does not include a couple of object files that are in vmlinux, like init/version-timestamp.o and .vmlinux.export.o, both of which contain _sub_I_00099_0 functions. As a result, the returns in these functions are not annotated, and the panic occurs when we call one of them in do_ctors and it uses the default return thunk. > > This difference can be seen by counting the number of these functions in the object files: > $ objdump -d vmlinux.o|grep -c "<_sub_I_00099_0>:" > 2601 > $ objdump -d vmlinux|grep -c "<_sub_I_00099_0>:" > 2603 > > If these functions are only run during kernel boot, there is no speculation concern. My first thought is that these two object files perhaps should be built without -mfunction-return=thunk-extern. The use of that flag requires objtool to have the intended behavior and objtool isn't seeing these files. > > Perhaps another option would be to not compile these two files with KCSAN, as they are already excluded from KASAN and GCOV it looks like. I think the latter would be the easy fix, does this make it go away? diff --git a/init/Makefile b/init/Makefile index ec557ada3c12..cbac576c57d6 100644 --- a/init/Makefile +++ b/init/Makefile @@ -60,4 +60,5 @@ include/generated/utsversion.h: FORCE $(obj)/version-timestamp.o: include/generated/utsversion.h CFLAGS_version-timestamp.o := -include include/generated/utsversion.h KASAN_SANITIZE_version-timestamp.o := n +KCSAN_SANITIZE_version-timestamp.o := n GCOV_PROFILE_version-timestamp.o := n diff --git a/scripts/Makefile.vmlinux b/scripts/Makefile.vmlinux index 3cd6ca15f390..c9f3e03124d7 100644 --- a/scripts/Makefile.vmlinux +++ b/scripts/Makefile.vmlinux @@ -19,6 +19,7 @@ quiet_cmd_cc_o_c = CC $@ ifdef CONFIG_MODULES KASAN_SANITIZE_.vmlinux.export.o := n +KCSAN_SANITIZE_.vmlinux.export.o := n GCOV_PROFILE_.vmlinux.export.o := n targets += .vmlinux.export.o vmlinux: .vmlinux.export.o