* Re: [PATCH 1/2] zram: fix crashes due to use of cpu hotplug multistate [not found] ` <20210406003152.GZ4332@42.do-not-panic.com> @ 2021-04-06 12:00 ` Miroslav Benes 2021-04-06 15:54 ` Josh Poimboeuf 0 siblings, 1 reply; 5+ messages in thread From: Miroslav Benes @ 2021-04-06 12:00 UTC (permalink / raw) To: Greg KH, Luis Chamberlain Cc: mbenes, Minchan Kim, keescook, dhowells, hch, ngupta, sergey.senozhatsky.work, axboe, linux-block, linux-kernel, live-patching Hi, > > Driver developers will simply have to open code these protections. In > > light of what I see on LTP / fuzzing, I suspect the use case will grow > > and we'll have to revisit this in the future. But for now, sure, we can > > just open code the required protections everywhere to not crash on module > > removal. > > LTP and fuzzing too do not remove modules. So I do not understand the > root problem here, that's just something that does not happen on a real > system. If I am not mistaken, the issue that Luis tries to solve here was indeed found by running LTP. > On Sat, Apr 03, 2021 at 08:13:23AM +0200, Greg KH wrote: > > On Fri, Apr 02, 2021 at 06:30:16PM +0000, Luis Chamberlain wrote: > > > On Fri, Apr 02, 2021 at 09:54:12AM +0200, Greg KH wrote: > > > > No, please no. Module removal is a "best effort", > > > > > > Not for live patching. I am not sure if I am missing any other valid > > > use case? > > > > live patching removes modules? We have so many code paths that are > > "best effort" when it comes to module unloading, trying to resolve this > > one is a valiant try, but not realistic. > > Miroslav, your input / help here would be valuable. I did the > generalization work because you said it would be worthy for you too... Yes, we have the option to revert and remove the existing live patch from the system. I am not sure how (if) it is used in practice. At least at SUSE we do not support the option. But we are only one of the many downstream users. So yes, there is the option. Miroslav ^ permalink raw reply [flat|nested] 5+ messages in thread
* Re: [PATCH 1/2] zram: fix crashes due to use of cpu hotplug multistate 2021-04-06 12:00 ` [PATCH 1/2] zram: fix crashes due to use of cpu hotplug multistate Miroslav Benes @ 2021-04-06 15:54 ` Josh Poimboeuf 2021-04-07 14:09 ` Peter Zijlstra 0 siblings, 1 reply; 5+ messages in thread From: Josh Poimboeuf @ 2021-04-06 15:54 UTC (permalink / raw) To: Miroslav Benes Cc: Greg KH, Luis Chamberlain, mbenes, Minchan Kim, keescook, dhowells, hch, ngupta, sergey.senozhatsky.work, axboe, linux-block, linux-kernel, live-patching, Jessica Yu, Peter Zijlstra On Tue, Apr 06, 2021 at 02:00:19PM +0200, Miroslav Benes wrote: > Hi, > > > > Driver developers will simply have to open code these protections. In > > > light of what I see on LTP / fuzzing, I suspect the use case will grow > > > and we'll have to revisit this in the future. But for now, sure, we can > > > just open code the required protections everywhere to not crash on module > > > removal. > > > > LTP and fuzzing too do not remove modules. So I do not understand the > > root problem here, that's just something that does not happen on a real > > system. > > If I am not mistaken, the issue that Luis tries to solve here was indeed > found by running LTP. > > > On Sat, Apr 03, 2021 at 08:13:23AM +0200, Greg KH wrote: > > > On Fri, Apr 02, 2021 at 06:30:16PM +0000, Luis Chamberlain wrote: > > > > On Fri, Apr 02, 2021 at 09:54:12AM +0200, Greg KH wrote: > > > > > No, please no. Module removal is a "best effort", > > > > > > > > Not for live patching. I am not sure if I am missing any other valid > > > > use case? > > > > > > live patching removes modules? We have so many code paths that are > > > "best effort" when it comes to module unloading, trying to resolve this > > > one is a valiant try, but not realistic. > > > > Miroslav, your input / help here would be valuable. I did the > > generalization work because you said it would be worthy for you too... > > Yes, we have the option to revert and remove the existing live patch from > the system. I am not sure how (if) it is used in practice. > > At least at SUSE we do not support the option. But we are only one of the > many downstream users. So yes, there is the option. Same for Red Hat. Unloading livepatch modules seems to work fine, but isn't officially supported. That said, if rmmod is just considered a development aid, and we're going to be ignoring bugs, we should make it official with a new TAINT_RMMOD. -- Josh ^ permalink raw reply [flat|nested] 5+ messages in thread
* Re: [PATCH 1/2] zram: fix crashes due to use of cpu hotplug multistate 2021-04-06 15:54 ` Josh Poimboeuf @ 2021-04-07 14:09 ` Peter Zijlstra 2021-04-07 15:30 ` Josh Poimboeuf 0 siblings, 1 reply; 5+ messages in thread From: Peter Zijlstra @ 2021-04-07 14:09 UTC (permalink / raw) To: Josh Poimboeuf Cc: Miroslav Benes, Greg KH, Luis Chamberlain, mbenes, Minchan Kim, keescook, dhowells, hch, ngupta, sergey.senozhatsky.work, axboe, linux-block, linux-kernel, live-patching, Jessica Yu On Tue, Apr 06, 2021 at 10:54:23AM -0500, Josh Poimboeuf wrote: > Same for Red Hat. Unloading livepatch modules seems to work fine, but > isn't officially supported. > > That said, if rmmod is just considered a development aid, and we're > going to be ignoring bugs, we should make it official with a new > TAINT_RMMOD. Another option would be to have live-patch modules leak a module reference by default, except when some debug sysctl is set or something. Then only those LP modules loaded while the sysctl is set to 'YOLO' can be unloaded. ^ permalink raw reply [flat|nested] 5+ messages in thread
* Re: [PATCH 1/2] zram: fix crashes due to use of cpu hotplug multistate 2021-04-07 14:09 ` Peter Zijlstra @ 2021-04-07 15:30 ` Josh Poimboeuf 2021-04-07 16:48 ` Peter Zijlstra 0 siblings, 1 reply; 5+ messages in thread From: Josh Poimboeuf @ 2021-04-07 15:30 UTC (permalink / raw) To: Peter Zijlstra Cc: Miroslav Benes, Greg KH, Luis Chamberlain, mbenes, Minchan Kim, keescook, dhowells, hch, ngupta, sergey.senozhatsky.work, axboe, linux-block, linux-kernel, live-patching, Jessica Yu On Wed, Apr 07, 2021 at 04:09:44PM +0200, Peter Zijlstra wrote: > On Tue, Apr 06, 2021 at 10:54:23AM -0500, Josh Poimboeuf wrote: > > > Same for Red Hat. Unloading livepatch modules seems to work fine, but > > isn't officially supported. > > > > That said, if rmmod is just considered a development aid, and we're > > going to be ignoring bugs, we should make it official with a new > > TAINT_RMMOD. > > Another option would be to have live-patch modules leak a module > reference by default, except when some debug sysctl is set or something. > Then only those LP modules loaded while the sysctl is set to 'YOLO' can > be unloaded. The issue is broader than just live patching. My suggestion was that if we aren't going to fix bugs in kernel module unloading, then unloading modules shouldn't be supported, and should taint the kernel. -- Josh ^ permalink raw reply [flat|nested] 5+ messages in thread
* Re: [PATCH 1/2] zram: fix crashes due to use of cpu hotplug multistate 2021-04-07 15:30 ` Josh Poimboeuf @ 2021-04-07 16:48 ` Peter Zijlstra 0 siblings, 0 replies; 5+ messages in thread From: Peter Zijlstra @ 2021-04-07 16:48 UTC (permalink / raw) To: Josh Poimboeuf Cc: Miroslav Benes, Greg KH, Luis Chamberlain, mbenes, Minchan Kim, keescook, dhowells, hch, ngupta, sergey.senozhatsky.work, axboe, linux-block, linux-kernel, live-patching, Jessica Yu On Wed, Apr 07, 2021 at 10:30:31AM -0500, Josh Poimboeuf wrote: > On Wed, Apr 07, 2021 at 04:09:44PM +0200, Peter Zijlstra wrote: > > On Tue, Apr 06, 2021 at 10:54:23AM -0500, Josh Poimboeuf wrote: > > > > > Same for Red Hat. Unloading livepatch modules seems to work fine, but > > > isn't officially supported. > > > > > > That said, if rmmod is just considered a development aid, and we're > > > going to be ignoring bugs, we should make it official with a new > > > TAINT_RMMOD. > > > > Another option would be to have live-patch modules leak a module > > reference by default, except when some debug sysctl is set or something. > > Then only those LP modules loaded while the sysctl is set to 'YOLO' can > > be unloaded. > > The issue is broader than just live patching. > > My suggestion was that if we aren't going to fix bugs in kernel module > unloading, then unloading modules shouldn't be supported, and should > taint the kernel. Hold up, what? However much I dislike modules (and that is lots), if you don't want to support rmmod, you have to leak a reference to self in init. Barring that you get to fix any and all unload bugs. ^ permalink raw reply [flat|nested] 5+ messages in thread
end of thread, other threads:[~2021-04-07 16:49 UTC | newest]
Thread overview: 5+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
[not found] <20210312183238.GW4332@42.do-not-panic.com>
[not found] ` <YEvA1dzDsFOuKdZ/@google.com>
[not found] ` <20210319190924.GK4332@42.do-not-panic.com>
[not found] ` <YFjHvUolScp3btJ9@google.com>
[not found] ` <20210322204156.GM4332@42.do-not-panic.com>
[not found] ` <YFkWMZ0m9nKCT69T@google.com>
[not found] ` <20210401235925.GR4332@42.do-not-panic.com>
[not found] ` <YGbNpLKXfWpy0ZZa@kroah.com>
[not found] ` <20210402183016.GU4332@42.do-not-panic.com>
[not found] ` <YGgHg7XCHD3rATIK@kroah.com>
[not found] ` <20210406003152.GZ4332@42.do-not-panic.com>
2021-04-06 12:00 ` [PATCH 1/2] zram: fix crashes due to use of cpu hotplug multistate Miroslav Benes
2021-04-06 15:54 ` Josh Poimboeuf
2021-04-07 14:09 ` Peter Zijlstra
2021-04-07 15:30 ` Josh Poimboeuf
2021-04-07 16:48 ` Peter Zijlstra
This is a public inbox, see mirroring instructions for how to clone and mirror all data and code used for this inbox; as well as URLs for NNTP newsgroup(s).