Re: [RFC] kasan stack overflow warnings again: READ_ONCE(), typecheck()

From: Arnd Bergmann
Date: Wed Feb 15 2017 - 17:19:18 EST

Next message: Jaehoon Chung: "Re: [PATCH V3 2/4] phy: phy-exynos-pcie: Add support for Exynos PCIe phy"
Previous message: Rob Herring: "Re: [PATCH v2 3/4] ARM: pwm: sun6i: add support the Allwinner A31 PWM."
In reply to: Christian Borntraeger: "Re: [RFC] kasan stack overflow warnings again: READ_ONCE(), typecheck()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, Feb 15, 2017 at 5:20 PM, Christian Borntraeger
<borntraeger@xxxxxxxxxx> wrote:
> On 02/15/2017 05:18 PM, Christian Borntraeger wrote:
>> On 02/15/2017 12:03 AM, Arnd Bergmann wrote:
>>>
>>> -#define WRITE_ONCE(x, val) \
>>> -({ \
>>> - union { typeof(x) __val; char __c[1]; } __u = \
>>> - { .__val = (__force typeof(x)) (val) }; \
>>> - __write_once_size(&(x), __u.__c, sizeof(x)); \
>>> - __u.__val; \
>>> -})
>>> +#define WRITE_ONCE(x, val) \
>>> +( \
>>> + __builtin_choose_expr(sizeof(x) == 1, *(volatile typeof(&(x)))&(x) = (val), \
>>> + __builtin_choose_expr(sizeof(x) == 2, *(volatile typeof(&(x)))&(x) = (val), \
>>> + __builtin_choose_expr(sizeof(x) == 4, *(volatile typeof(&(x)))&(x) = (val), \
>>> + __builtin_choose_expr(sizeof(x) == sizeof(long), *(volatile typeof(&(x)))&(x) = (val), \
>>
>> Have you run sparse on those changes?
>> IIRC we had to add the __force to get rid of address space annotations
>> in that macro above. Cannot tell if we need something like that here.

I haven't tried that yet, and I'm not overly worried about sparse, we can always
work around sparse using a different implementation of the macro
behind an #ifdef
if we can't easily fix that.

The hard part is coming up with a version that GCC won't turn into horrible
object code when building with ASAN, and that probably requires leaving out
the local variable.

I'm still struggling to understand what commit ab3f02fc237211 ("locking/arch:
Add WRITE_ONCE() to set_mb()") was for, and whether we should worry about
unaligned destinations trapping when we do a word-sized store to a location
that possibly has a smaller alignment.

> The original warning was
> fs/afs/inode.c:448:9: sparse: incorrect type in initializer (different address spaces)
> fs/afs/inode.c:448:9: expected struct afs_permits *__val
> fs/afs/inode.c:448:9: got void [noderef] <asn:4>*<noident>

Is this just for the __rcu annotation in rcu_assign_pointer? WRITE_ONCE
should not care about that at all, but the caller should do it here, as this is
the place where a normal pointer becomes an __rcu pointer.

Arnd

Next message: Jaehoon Chung: "Re: [PATCH V3 2/4] phy: phy-exynos-pcie: Add support for Exynos PCIe phy"
Previous message: Rob Herring: "Re: [PATCH v2 3/4] ARM: pwm: sun6i: add support the Allwinner A31 PWM."
In reply to: Christian Borntraeger: "Re: [RFC] kasan stack overflow warnings again: READ_ONCE(), typecheck()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]