[PATCH] objtool: ignore unreachable trap after call to noreturn functions
1 view
Skip to first unread message
Ilie Halip
Sep 17, 2020, 4:49:11 AM9/17/20
to linux-...@vger.kernel.org, Ilie Halip, Nick Desaulniers, Rong Chen, Marco Elver, Philip Li, Borislav Petkov, kasa...@googlegroups.com, x...@kernel.org, clang-bu...@googlegroups.com, Josh Poimboeuf, Peter Zijlstra, Nathan Chancellor
With CONFIG_UBSAN_TRAP enabled, the compiler may insert a trap instruction
after a call to a noreturn function. In this case, objtool warns that the
ud2 instruction is unreachable.
objtool silences similar warnings (trap after dead end instructions), so
expand that check to include dead end functions.
Cc: Nick Desaulniers <ndesau...@google.com>
Cc: Rong Chen <rong....@intel.com>
Cc: Marco Elver <el...@google.com>
Cc: Philip Li <phil...@intel.com>
Cc: Borislav Petkov <b...@alien8.de>
Cc: kasa...@googlegroups.com
Cc: x...@kernel.org
Cc: clang-bu...@googlegroups.com
BugLink: https://github.com/ClangBuiltLinux/linux/issues/1148
Link: https://lore.kernel.org/lkml/CAKwvOdmptEpi8fiOyWUo=AiZJiX+Z+VHJOM...@mail.gmail.com
Suggested-by: Nick Desaulniers <ndesau...@google.com>
Signed-off-by: Ilie Halip <ilie....@gmail.com>
---
tools/objtool/check.c | 10 +++++++---
1 file changed, 7 insertions(+), 3 deletions(-)
diff --git a/tools/objtool/check.c b/tools/objtool/check.c
index e034a8f24f46..eddf8bf16b05 100644
--- a/tools/objtool/check.c
+++ b/tools/objtool/check.c
@@ -2612,9 +2612,10 @@ static bool is_ubsan_insn(struct instruction *insn)
"__ubsan_handle_builtin_unreachable"));
}
-static bool ignore_unreachable_insn(struct instruction *insn)
+static bool ignore_unreachable_insn(struct objtool_file *file, struct instruction *insn)
{
int i;
+ struct instruction *prev_insn;
if (insn->ignore || insn->type == INSN_NOP)
return true;
@@ -2639,8 +2640,11 @@ static bool ignore_unreachable_insn(struct instruction *insn)
* __builtin_unreachable(). The BUG() macro has an unreachable() after
* the UD2, which causes GCC's undefined trap logic to emit another UD2
* (or occasionally a JMP to UD2).
+ * CONFIG_UBSAN_TRAP may also insert a UD2 after calling a __noreturn
+ * function.
*/
- if (list_prev_entry(insn, list)->dead_end &&
+ prev_insn = list_prev_entry(insn, list);
+ if ((prev_insn->dead_end || dead_end_function(file, prev_insn->call_dest)) &&
(insn->type == INSN_BUG ||
(insn->type == INSN_JUMP_UNCONDITIONAL &&
insn->jump_dest && insn->jump_dest->type == INSN_BUG)))
@@ -2767,7 +2771,7 @@ static int validate_reachable_instructions(struct objtool_file *file)
return 0;
for_each_insn(file, insn) {
- if (insn->visited || ignore_unreachable_insn(insn))
+ if (insn->visited || ignore_unreachable_insn(file, insn))
continue;
WARN_FUNC("unreachable instruction", insn->sec, insn->offset);
--
2.25.1
after a call to a noreturn function. In this case, objtool warns that the
ud2 instruction is unreachable.
objtool silences similar warnings (trap after dead end instructions), so
expand that check to include dead end functions.
Cc: Nick Desaulniers <ndesau...@google.com>
Cc: Rong Chen <rong....@intel.com>
Cc: Marco Elver <el...@google.com>
Cc: Philip Li <phil...@intel.com>
Cc: Borislav Petkov <b...@alien8.de>
Cc: kasa...@googlegroups.com
Cc: x...@kernel.org
Cc: clang-bu...@googlegroups.com
BugLink: https://github.com/ClangBuiltLinux/linux/issues/1148
Link: https://lore.kernel.org/lkml/CAKwvOdmptEpi8fiOyWUo=AiZJiX+Z+VHJOM...@mail.gmail.com
Suggested-by: Nick Desaulniers <ndesau...@google.com>
Signed-off-by: Ilie Halip <ilie....@gmail.com>
---
tools/objtool/check.c | 10 +++++++---
1 file changed, 7 insertions(+), 3 deletions(-)
diff --git a/tools/objtool/check.c b/tools/objtool/check.c
index e034a8f24f46..eddf8bf16b05 100644
--- a/tools/objtool/check.c
+++ b/tools/objtool/check.c
@@ -2612,9 +2612,10 @@ static bool is_ubsan_insn(struct instruction *insn)
"__ubsan_handle_builtin_unreachable"));
}
-static bool ignore_unreachable_insn(struct instruction *insn)
+static bool ignore_unreachable_insn(struct objtool_file *file, struct instruction *insn)
{
int i;
+ struct instruction *prev_insn;
if (insn->ignore || insn->type == INSN_NOP)
return true;
@@ -2639,8 +2640,11 @@ static bool ignore_unreachable_insn(struct instruction *insn)
* __builtin_unreachable(). The BUG() macro has an unreachable() after
* the UD2, which causes GCC's undefined trap logic to emit another UD2
* (or occasionally a JMP to UD2).
+ * CONFIG_UBSAN_TRAP may also insert a UD2 after calling a __noreturn
+ * function.
*/
- if (list_prev_entry(insn, list)->dead_end &&
+ prev_insn = list_prev_entry(insn, list);
+ if ((prev_insn->dead_end || dead_end_function(file, prev_insn->call_dest)) &&
(insn->type == INSN_BUG ||
(insn->type == INSN_JUMP_UNCONDITIONAL &&
insn->jump_dest && insn->jump_dest->type == INSN_BUG)))
@@ -2767,7 +2771,7 @@ static int validate_reachable_instructions(struct objtool_file *file)
return 0;
for_each_insn(file, insn) {
- if (insn->visited || ignore_unreachable_insn(insn))
+ if (insn->visited || ignore_unreachable_insn(file, insn))
continue;
WARN_FUNC("unreachable instruction", insn->sec, insn->offset);
--
2.25.1
Nick Desaulniers
Sep 17, 2020, 2:16:07 PM9/17/20
to Ilie Halip, LKML, Rong Chen, Marco Elver, Philip Li, Borislav Petkov, kasan-dev, maintainer:X86 ARCHITECTURE (32-BIT AND 64-BIT), clang-built-linux, Josh Poimboeuf, Peter Zijlstra, Nathan Chancellor
On Thu, Sep 17, 2020 at 1:49 AM Ilie Halip <ilie....@gmail.com> wrote:
>
> With CONFIG_UBSAN_TRAP enabled, the compiler may insert a trap instruction
> after a call to a noreturn function. In this case, objtool warns that the
> ud2 instruction is unreachable.
>
> objtool silences similar warnings (trap after dead end instructions), so
> expand that check to include dead end functions.
Reviewed-by: Nick Desaulniers <ndesau...@google.com>
>
> With CONFIG_UBSAN_TRAP enabled, the compiler may insert a trap instruction
> after a call to a noreturn function. In this case, objtool warns that the
> ud2 instruction is unreachable.
>
> objtool silences similar warnings (trap after dead end instructions), so
> expand that check to include dead end functions.
Tested-by: Nick Desaulniers <ndesau...@google.com>
Reported-by: kbuild test robot <l...@intel.com>
Thanks for the patch, Ilie! With this, a
defconfig+CONFIG_UBSAN+CONFIG_UBSAN_TRAP goes from 82 unreachable
instruction warnings from objtool to 0.
$ make LLVM=1 -j71 defconfig
$ make LLVM=1 -j71 menuconfig
<enable UBSAN and UBSAN_TRAP>
$ make LLVM=1 -j71 2> log.txt
$ grep warning: log.txt | cut -d ' ' -f 2- | sort | uniq -c | wc -l
82
$ b4 am https://lore.kernel.org/lkml/20200917084905.16...@gmail.com/
-o - | git am
$ make LLVM=1 -j71 clean
$ make LLVM=1 -j71 2> log.txt
$ grep warning: log.txt | cut -d ' ' -f 2- | sort | uniq -c | wc -l
0
Thanks,
~Nick Desaulniers
Josh Poimboeuf
Sep 17, 2020, 6:16:30 PM9/17/20
to Ilie Halip, linux-...@vger.kernel.org, Nick Desaulniers, Rong Chen, Marco Elver, Philip Li, Borislav Petkov, kasa...@googlegroups.com, x...@kernel.org, clang-bu...@googlegroups.com, Peter Zijlstra, Nathan Chancellor
On Thu, Sep 17, 2020 at 11:49:04AM +0300, Ilie Halip wrote:
> With CONFIG_UBSAN_TRAP enabled, the compiler may insert a trap instruction
> after a call to a noreturn function. In this case, objtool warns that the
> ud2 instruction is unreachable.
>
> objtool silences similar warnings (trap after dead end instructions), so
> expand that check to include dead end functions.
>
> Cc: Nick Desaulniers <ndesau...@google.com>
> Cc: Rong Chen <rong....@intel.com>
> Cc: Marco Elver <el...@google.com>
> Cc: Philip Li <phil...@intel.com>
> Cc: Borislav Petkov <b...@alien8.de>
> Cc: kasa...@googlegroups.com
> Cc: x...@kernel.org
> Cc: clang-bu...@googlegroups.com
> BugLink: https://github.com/ClangBuiltLinux/linux/issues/1148
> Link: https://lore.kernel.org/lkml/CAKwvOdmptEpi8fiOyWUo=AiZJiX+Z+VHJOM...@mail.gmail.com
> Suggested-by: Nick Desaulniers <ndesau...@google.com>
> Signed-off-by: Ilie Halip <ilie....@gmail.com>
The patch looks good to me. Which versions of Clang do the trap after
> With CONFIG_UBSAN_TRAP enabled, the compiler may insert a trap instruction
> after a call to a noreturn function. In this case, objtool warns that the
> ud2 instruction is unreachable.
>
> objtool silences similar warnings (trap after dead end instructions), so
> expand that check to include dead end functions.
>
> Cc: Nick Desaulniers <ndesau...@google.com>
> Cc: Rong Chen <rong....@intel.com>
> Cc: Marco Elver <el...@google.com>
> Cc: Philip Li <phil...@intel.com>
> Cc: Borislav Petkov <b...@alien8.de>
> Cc: kasa...@googlegroups.com
> Cc: x...@kernel.org
> Cc: clang-bu...@googlegroups.com
> BugLink: https://github.com/ClangBuiltLinux/linux/issues/1148
> Link: https://lore.kernel.org/lkml/CAKwvOdmptEpi8fiOyWUo=AiZJiX+Z+VHJOM...@mail.gmail.com
> Suggested-by: Nick Desaulniers <ndesau...@google.com>
> Signed-off-by: Ilie Halip <ilie....@gmail.com>
noreturn call? It would be good to have that in the commit message.
--
Josh
Ilie Halip
Sep 18, 2020, 1:35:53 AM9/18/20
to Josh Poimboeuf, Linux Kernel Mailing List, Nick Desaulniers, Rong Chen, Marco Elver, Philip Li, Borislav Petkov, kasan-dev, maintainer:X86 ARCHITECTURE (32-BIT AND 64-BIT), clang-built-linux, Peter Zijlstra, Nathan Chancellor
> The patch looks good to me. Which versions of Clang do the trap after
> noreturn call? It would be good to have that in the commit message.
I omitted this because it happens with all versions of clang that are
> noreturn call? It would be good to have that in the commit message.
supported for building the kernel. clang-9 is the oldest version that
could build the mainline x86_64 kernel right now, and it has the same
behavior.
Should I send a v2 with this info?
I.H.
Josh Poimboeuf
Sep 18, 2020, 11:51:53 AM9/18/20
to Ilie Halip, Linux Kernel Mailing List, Nick Desaulniers, Rong Chen, Marco Elver, Philip Li, Borislav Petkov, kasan-dev, maintainer:X86 ARCHITECTURE (32-BIT AND 64-BIT), clang-built-linux, Peter Zijlstra, Nathan Chancellor
On Fri, Sep 18, 2020 at 08:35:40AM +0300, Ilie Halip wrote:
> > The patch looks good to me. Which versions of Clang do the trap after
> > noreturn call? It would be good to have that in the commit message.
>
> I omitted this because it happens with all versions of clang that are
> supported for building the kernel. clang-9 is the oldest version that
> could build the mainline x86_64 kernel right now, and it has the same
> behavior.
Ok. It should at least mention that this is a Clang-specific thing,
> > The patch looks good to me. Which versions of Clang do the trap after
> > noreturn call? It would be good to have that in the commit message.
>
> I omitted this because it happens with all versions of clang that are
> supported for building the kernel. clang-9 is the oldest version that
> could build the mainline x86_64 kernel right now, and it has the same
> behavior.
since GCC's version of UBSAN_TRAP doesn't do it.
> Should I send a v2 with this info?
--
Josh
Ilie Halip
Sep 19, 2020, 2:41:48 AM9/19/20
to linux-...@vger.kernel.org, Ilie Halip, Nick Desaulniers, Rong Chen, Marco Elver, Philip Li, Borislav Petkov, kasa...@googlegroups.com, x...@kernel.org, clang-bu...@googlegroups.com, kbuild test robot, Josh Poimboeuf, Peter Zijlstra, Nathan Chancellor
With CONFIG_UBSAN_TRAP enabled, the compiler may insert a trap instruction
after a call to a noreturn function. In this case, objtool warns that the
ud2 instruction is unreachable.
This is a behavior seen with clang, from the oldest version capable of
after a call to a noreturn function. In this case, objtool warns that the
ud2 instruction is unreachable.
building the mainline x64_64 kernel (9.0), to the latest experimental
version (12.0).
objtool silences similar warnings (trap after dead end instructions), so
so expand that check to include dead end functions.
Cc: Nick Desaulniers <ndesau...@google.com>
Cc: Rong Chen <rong....@intel.com>
Cc: Marco Elver <el...@google.com>
Cc: Philip Li <phil...@intel.com>
Cc: Borislav Petkov <b...@alien8.de>
Cc: kasa...@googlegroups.com
Cc: x...@kernel.org
Cc: clang-bu...@googlegroups.com
BugLink: https://github.com/ClangBuiltLinux/linux/issues/1148
Link: https://lore.kernel.org/lkml/CAKwvOdmptEpi8fiOyWUo=AiZJiX+Z+VHJOM...@mail.gmail.com
Suggested-by: Nick Desaulniers <ndesau...@google.com>
Reviewed-by: Nick Desaulniers <ndesau...@google.com>
Tested-by: Nick Desaulniers <ndesau...@google.com>
Reported-by: kbuild test robot <l...@intel.com>
Changed in v2:
Tested-by: Nick Desaulniers <ndesau...@google.com>
Reported-by: kbuild test robot <l...@intel.com>
- added a mention that this is a clang issue across all versions
- added Nick's Reviewed-by, Tested-by
- added Reported-by
Sedat Dilek
Sep 19, 2020, 7:02:57 AM9/19/20
to Ilie Halip, linux-...@vger.kernel.org, Nick Desaulniers, Rong Chen, Marco Elver, Philip Li, Borislav Petkov, kasa...@googlegroups.com, x...@kernel.org, Clang-Built-Linux ML, kbuild test robot, Josh Poimboeuf, Peter Zijlstra, Nathan Chancellor
- Sedat -
> You received this message because you are subscribed to the Google Groups "Clang Built Linux" group.
> To unsubscribe from this group and stop receiving emails from it, send an email to clang-built-li...@googlegroups.com.
> To view this discussion on the web visit https://groups.google.com/d/msgid/clang-built-linux/20200919064118.1899325-1-ilie.halip%40gmail.com.
Josh Poimboeuf
Sep 21, 2020, 11:19:27 AM9/21/20
to Ilie Halip, linux-...@vger.kernel.org, Nick Desaulniers, Rong Chen, Marco Elver, Philip Li, Borislav Petkov, kasa...@googlegroups.com, x...@kernel.org, clang-bu...@googlegroups.com, kbuild test robot, Peter Zijlstra, Nathan Chancellor
--
Josh
Reply all
Reply to author
Forward
0 new messages