Received: by 2002:ab2:620c:0:b0:1ef:ffd0:ce49 with SMTP id o12csp1279218lqt; Tue, 19 Mar 2024 20:30:43 -0700 (PDT) X-Forwarded-Encrypted: i=3; AJvYcCUSnaHrsBNI9YWy9uRkEUbptMcCza7Nr5PCkiADxedE8JMcmNPqVWqg7Xjir3clhIrelBy4s7V3spAqHj2YE/qjDEbaPU5JaaW4cCkhAA== X-Google-Smtp-Source: AGHT+IHOz5VIRNyVZ4otJ9TSzURTEcae8FtpXL7ppvioXlt7jwYlMdeoSWOoxqwM+4xP8lisX9rJ X-Received: by 2002:a05:6808:3a0b:b0:3c3:9600:8789 with SMTP id gr11-20020a0568083a0b00b003c396008789mr5644235oib.8.1710905443164; Tue, 19 Mar 2024 20:30:43 -0700 (PDT) ARC-Seal: i=2; a=rsa-sha256; t=1710905443; cv=pass; d=google.com; s=arc-20160816; b=Zi+PKI+H3v8P9Bju8Eu2FYCkEO0sULkDZqmQmx4c16N4TJP4obhBwlHAaG1HowTAbi J6xsh4F7QuFzVRqOIfOMgkhUX91xAXNCnLjzrJQH34afeQSluDVIsMSGk8OPetv9GylU 563SxK8eWq/TdzRPneitrLXXeqjg+TEPLm608FGSryuCDO/caO5juM23Nc+OKrP2z+TY pSUlSIialq9KgbY3LM7WDv3YRsHaNY8jpmRK6zhGELUl7x3iGBGxq2W2rluHtOAN7I0b SvOz4uBwZt1h9caBD7fOMvFSS5CmWuO12fcEEH0y0+P3wIuwDV1WKjLQ5mZhJDm+RaWt D9pw== ARC-Message-Signature: i=2; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=content-transfer-encoding:in-reply-to:mime-version:list-unsubscribe :list-subscribe:list-id:precedence:user-agent:date:message-id:from :cc:references:to:subject; bh=2SQW1Rd45RZsfTg/+mSLnWoU/nK2sFkYhmxM2TOscNw=; fh=Gsr95thVr4UkyrljtF4sL4lFLzZA0ojW7oOSl54wbCE=; b=PIydT/9Vji+ZvcDubf9QgbJB9IXTZIl3GvOK5FuB6RR85IJG3inp+2qofzfhMyE8qR dbBy0AUI6xClFFTNFbTT7P4TGrR8owTxPSG+Y3XTHElmw6W/XM8go4QVjd7nEB4yNChW mBz1QqXVeu8ybQa721aOM7DWBif9/6u023eloFr1U43d7llHy3I8de/L8Sz9TkkcJBku hKoNDqvjR2UimriZqQKdi/4cwwp/gj3C7hUqtGd3wMReQWRuPAWKkDEMeOXOT6ZgfHsd 0TLO7mMwgf22oHcel0s5TKrePmIqd7p7oLgdpO8WNkUvAo74OxfnnRT/JWjhVrqJuDaG KPcA==; dara=google.com ARC-Authentication-Results: i=2; mx.google.com; arc=pass (i=1 spf=pass spfdomain=huawei.com dmarc=pass fromdomain=huawei.com); spf=pass (google.com: domain of linux-kernel+bounces-108409-linux.lists.archive=gmail.com@vger.kernel.org designates 147.75.48.161 as permitted sender) smtp.mailfrom="linux-kernel+bounces-108409-linux.lists.archive=gmail.com@vger.kernel.org"; dmarc=fail (p=QUARANTINE sp=QUARANTINE dis=NONE) header.from=huawei.com Return-Path: Received: from sy.mirrors.kernel.org (sy.mirrors.kernel.org. [147.75.48.161]) by mx.google.com with ESMTPS id f16-20020a63f110000000b005e45abc8c8fsi11481275pgi.306.2024.03.19.20.30.42 for (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Tue, 19 Mar 2024 20:30:43 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel+bounces-108409-linux.lists.archive=gmail.com@vger.kernel.org designates 147.75.48.161 as permitted sender) client-ip=147.75.48.161; Authentication-Results: mx.google.com; arc=pass (i=1 spf=pass spfdomain=huawei.com dmarc=pass fromdomain=huawei.com); spf=pass (google.com: domain of linux-kernel+bounces-108409-linux.lists.archive=gmail.com@vger.kernel.org designates 147.75.48.161 as permitted sender) smtp.mailfrom="linux-kernel+bounces-108409-linux.lists.archive=gmail.com@vger.kernel.org"; dmarc=fail (p=QUARANTINE sp=QUARANTINE dis=NONE) header.from=huawei.com Received: from smtp.subspace.kernel.org (wormhole.subspace.kernel.org [52.25.139.140]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by sy.mirrors.kernel.org (Postfix) with ESMTPS id 379D9B2231A for ; Wed, 20 Mar 2024 03:30:40 +0000 (UTC) Received: from localhost.localdomain (localhost.localdomain [127.0.0.1]) by smtp.subspace.kernel.org (Postfix) with ESMTP id 1DBDE1171D; Wed, 20 Mar 2024 03:30:31 +0000 (UTC) Received: from szxga03-in.huawei.com (szxga03-in.huawei.com [45.249.212.189]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id AA62212E40; Wed, 20 Mar 2024 03:30:27 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; arc=none smtp.client-ip=45.249.212.189 ARC-Seal:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1710905430; cv=none; b=Mxu6yYSyUiES8UvBKp9sFnB14mNjLD0UWvsO1UULHGOv0nA65kxmX4c5CjB3HwQqqvO3mxqDvHx+3coZvlHKdWNdjl0H9ntUNMTEw/QgDp3/6IqY0RRSCuD7zzdGxpvjmgfmNwsXjl5WMOeFzqrCRxE51PRjSjrJwaIebW1dVZ8= ARC-Message-Signature:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1710905430; c=relaxed/simple; bh=wNIYr0YRIvV7+ACKzGHG2nKgc76mfD09xmnyWCrTk0w=; h=Subject:To:References:CC:From:Message-ID:Date:MIME-Version: In-Reply-To:Content-Type; b=hWovm4NmRTSu+YYvyVcmp4yNRWjgOljKfuEtlNDxoBW6xbIekXPdCmdpETtKUkfmHTgBhWDE2S2f9XD/SDPR/nwkVV7BlcVZTfbpxq9BuRs2YyEI1qgA9MyuPPnwBRsTri6QwND7r9pjGSMpYBBKfVNHWlzPV73ulANM3qk9GZQ= ARC-Authentication-Results:i=1; smtp.subspace.kernel.org; dmarc=pass (p=quarantine dis=none) header.from=huawei.com; spf=pass smtp.mailfrom=huawei.com; arc=none smtp.client-ip=45.249.212.189 Authentication-Results: smtp.subspace.kernel.org; dmarc=pass (p=quarantine dis=none) header.from=huawei.com Authentication-Results: smtp.subspace.kernel.org; spf=pass smtp.mailfrom=huawei.com Received: from mail.maildlp.com (unknown [172.19.88.105]) by szxga03-in.huawei.com (SkyGuard) with ESMTP id 4TzvF56Y93zNmFg; Wed, 20 Mar 2024 11:28:25 +0800 (CST) Received: from canpemm500010.china.huawei.com (unknown [7.192.105.118]) by mail.maildlp.com (Postfix) with ESMTPS id DE0BF140487; Wed, 20 Mar 2024 11:30:18 +0800 (CST) Received: from [10.67.111.82] (10.67.111.82) by canpemm500010.china.huawei.com (7.192.105.118) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.1.2507.35; Wed, 20 Mar 2024 11:30:18 +0800 Subject: Re: [PATCH] ARM: unwind: improve unwinders for noreturn case To: Kees Cook References: <1709516385-7778-1-git-send-email-xiaojiangfeng@huawei.com> <1710901169-22763-1-git-send-email-xiaojiangfeng@huawei.com> <202403191945.661DBCE8@keescook> CC: , , , , , , , , , , , , , , , , , , , , , , From: Jiangfeng Xiao Message-ID: Date: Wed, 20 Mar 2024 11:30:13 +0800 User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:45.0) Gecko/20100101 Thunderbird/45.7.1 Precedence: bulk X-Mailing-List: linux-kernel@vger.kernel.org List-Id: List-Subscribe: List-Unsubscribe: MIME-Version: 1.0 In-Reply-To: <202403191945.661DBCE8@keescook> Content-Type: text/plain; charset="windows-1252" Content-Transfer-Encoding: 7bit X-ClientProxiedBy: dggems702-chm.china.huawei.com (10.3.19.179) To canpemm500010.china.huawei.com (7.192.105.118) On 2024/3/20 10:46, Kees Cook wrote: > On Wed, Mar 20, 2024 at 10:19:29AM +0800, Jiangfeng Xiao wrote: >> This is an off-by-one bug which is common in unwinders, >> due to the fact that the address on the stack points >> to the return address rather than the call address. >> >> So, for example, when the last instruction of a function >> is a function call (e.g., to a noreturn function), it can >> cause the unwinder to incorrectly try to unwind from >> the function after the callee. >> >> foo: >> ... >> bl bar >> ... end of function and thus next function ... >> >> which results in LR pointing into the next function. >> >> Fixed this by subtracting 1 from frmae->pc in the call frame >> (but not exception frames) like ORC on x86 does. >> >> Refer to the unwind_next_frame function in the unwind_orc.c >> >> Suggested-by: Josh Poimboeuf >> Link: https://lkml.kernel.org/lkml/20240305175846.qnyiru7uaa7itqba@treble/ >> Signed-off-by: Jiangfeng Xiao >> --- >> arch/arm/include/asm/stacktrace.h | 4 ---- >> arch/arm/kernel/stacktrace.c | 2 -- >> arch/arm/kernel/traps.c | 4 ++-- >> arch/arm/kernel/unwind.c | 18 +++++++++++++++--- >> 4 files changed, 17 insertions(+), 11 deletions(-) >> >> diff --git a/arch/arm/include/asm/stacktrace.h b/arch/arm/include/asm/stacktrace.h >> index 360f0d2..07e4c16 100644 >> --- a/arch/arm/include/asm/stacktrace.h >> +++ b/arch/arm/include/asm/stacktrace.h >> @@ -21,9 +21,7 @@ struct stackframe { >> struct llist_node *kr_cur; >> struct task_struct *tsk; >> #endif >> -#ifdef CONFIG_UNWINDER_FRAME_POINTER >> bool ex_frame; >> -#endif >> }; >> >> static __always_inline >> @@ -37,9 +35,7 @@ void arm_get_current_stackframe(struct pt_regs *regs, struct stackframe *frame) >> frame->kr_cur = NULL; >> frame->tsk = current; >> #endif >> -#ifdef CONFIG_UNWINDER_FRAME_POINTER >> frame->ex_frame = in_entry_text(frame->pc); >> -#endif >> } >> >> extern int unwind_frame(struct stackframe *frame); >> diff --git a/arch/arm/kernel/stacktrace.c b/arch/arm/kernel/stacktrace.c >> index 620aa82..1abd4f9 100644 >> --- a/arch/arm/kernel/stacktrace.c >> +++ b/arch/arm/kernel/stacktrace.c >> @@ -154,9 +154,7 @@ static void start_stack_trace(struct stackframe *frame, struct task_struct *task >> frame->kr_cur = NULL; >> frame->tsk = task; >> #endif >> -#ifdef CONFIG_UNWINDER_FRAME_POINTER >> frame->ex_frame = in_entry_text(frame->pc); >> -#endif >> } >> >> void arch_stack_walk(stack_trace_consume_fn consume_entry, void *cookie, >> diff --git a/arch/arm/kernel/traps.c b/arch/arm/kernel/traps.c >> index 3bad79d..b64e442 100644 >> --- a/arch/arm/kernel/traps.c >> +++ b/arch/arm/kernel/traps.c >> @@ -84,10 +84,10 @@ void dump_backtrace_entry(unsigned long where, unsigned long from, >> printk("%sFunction entered at [<%08lx>] from [<%08lx>]\n", >> loglvl, where, from); >> #elif defined CONFIG_BACKTRACE_VERBOSE >> - printk("%s[<%08lx>] (%ps) from [<%08lx>] (%pS)\n", >> + pr_warn("%s[<%08lx>] (%ps) from [<%08lx>] (%pB)\n", >> loglvl, where, (void *)where, from, (void *)from); > > This should stay printk("%s...", loglvl, ...) or loglvl should be > dropped when converting to pr_warn(): > > pr_warn([<%08lx>] (%ps) from [<%08lx>] (%pB)\n", > where, (void *)where, from, (void *)from); > > Why did you want to force the "warn" log level? > Thank you for your review. I think I'm wrong. The checkpatch.pl script reports the "WARNING: printk() should include KERN_ facility level" warning. That's why I changed printk to pr_warn. I should change printk to printk(KERN_DEFAULT). >> #else >> - printk("%s %ps from %pS\n", loglvl, (void *)where, (void *)from); >> + pr_warn("%s %ps from %pB\n", loglvl, (void *)where, (void *)from); > > Ditto. > > -Kees >