[v5,05/38] kmsan: reduce vmalloc space

Message ID	20200325161249.55095-6-glider@google.com (mailing list archive)
State	New, archived
Headers	show Return-Path: <SRS0=qMZt=5K=kvack.org=owner-linux-mm@kernel.org> DMARC-Filter: OpenDMARC Filter v1.3.2 mail.kernel.org 787BD20772 Date: Wed, 25 Mar 2020 17:12:16 +0100 In-Reply-To: <20200325161249.55095-1-glider@google.com> Message-Id: <20200325161249.55095-6-glider@google.com> Mime-Version: 1.0 References: <20200325161249.55095-1-glider@google.com> Subject: [PATCH v5 05/38] kmsan: reduce vmalloc space From: glider@google.com To: Vegard Nossum <vegard.nossum@oracle.com>, Andrew Morton <akpm@linux-foundation.org>, Dmitry Vyukov <dvyukov@google.com>, Marco Elver <elver@google.com>, Andrey Konovalov <andreyknvl@google.com>, linux-mm@kvack.org Cc: glider@google.com, viro@zeniv.linux.org.uk, adilger.kernel@dilger.ca, aryabinin@virtuozzo.com, luto@kernel.org, ard.biesheuvel@linaro.org, arnd@arndb.de, hch@infradead.org, hch@lst.de, darrick.wong@oracle.com, davem@davemloft.net, dmitry.torokhov@gmail.com, ebiggers@google.com, edumazet@google.com, ericvh@gmail.com, gregkh@linuxfoundation.org, harry.wentland@amd.com, herbert@gondor.apana.org.au, iii@linux.ibm.com, mingo@elte.hu, jasowang@redhat.com, axboe@kernel.dk, m.szyprowski@samsung.com, mark.rutland@arm.com, martin.petersen@oracle.com, schwidefsky@de.ibm.com, willy@infradead.org, mst@redhat.com, mhocko@suse.com, monstr@monstr.eu, pmladek@suse.com, cai@lca.pw, rdunlap@infradead.org, robin.murphy@arm.com, sergey.senozhatsky@gmail.com, rostedt@goodmis.org, tiwai@suse.com, tytso@mit.edu, tglx@linutronix.de, gor@linux.ibm.com, wsa@the-dreams.de Content-Type: text/plain; charset="UTF-8" Sender: owner-linux-mm@kvack.org Precedence: bulk
Series	Add KernelMemorySanitizer infrastructure \| expand [v5,00/38] Add KernelMemorySanitizer infrastructure [v5,01/38] stackdepot: reserve 5 extra bits in depot_stack_handle_t [v5,02/38] kmsan: add ReST documentation [v5,03/38] kmsan: gfp: introduce __GFP_NO_KMSAN_SHADOW [v5,04/38] kmsan: introduce __no_sanitize_memory and __SANITIZE_MEMORY__ [v5,05/38] kmsan: reduce vmalloc space [v5,06/38] kmsan: add KMSAN runtime core [v5,07/38] kmsan: KMSAN compiler API implementation [v5,08/38] kmsan: add KMSAN hooks for kernel subsystems [v5,09/38] kmsan: stackdepot: don't allocate KMSAN metadata for stackdepot [v5,10/38] kmsan: define READ_ONCE_NOCHECK() [v5,11/38] kmsan: make READ_ONCE_TASK_STACK() return initialized values [v5,12/38] kmsan: x86: sync metadata pages on page fault [v5,13/38] kmsan: add tests for KMSAN [v5,14/38] crypto: kmsan: disable accelerated configs under KMSAN [v5,15/38] kmsan: x86: disable UNWINDER_ORC under KMSAN [v5,16/38] kmsan: x86/asm: softirq: add KMSAN IRQ entry hooks [v5,17/38] kmsan: disable KMSAN instrumentation for certain kernel parts [v5,18/38] kmsan: mm: call KMSAN hooks from SLUB code [v5,19/38] kmsan: mm: maintain KMSAN metadata for page operations [v5,20/38] kmsan: handle memory sent to/from USB [v5,21/38] kmsan: handle task creation and exiting [v5,22/38] kmsan: net: check the value of skb before sending it to the network [v5,23/38] kmsan: printk: treat the result of vscnprintf() as initialized [v5,24/38] kmsan: disable instrumentation of certain functions [v5,25/38] kmsan: unpoison \|tlb\| in arch_tlb_gather_mmu() [v5,26/38] kmsan: use __msan_ string functions where possible. [v5,27/38] kmsan: hooks for copy_to_user() and friends [v5,28/38] kmsan: init: call KMSAN initialization routines [v5,29/38] kmsan: enable KMSAN builds [v5,30/38] kmsan: handle /dev/[u]random [v5,31/38] kmsan: virtio: check/unpoison scatterlist in vring_map_one_sg() [v5,32/38] kmsan: disable strscpy() optimization under KMSAN [v5,33/38] kmsan: add iomap support [v5,34/38] kmsan: dma: unpoison memory mapped by dma_direct_map_page() [v5,35/38] kmsan: disable physical page merging in biovec [v5,36/38] x86: kasan: kmsan: support CONFIG_GENERIC_CSUM on x86, enable it for KASAN/KMSAN [v5,37/38] kmsan: x86/uprobes: unpoison regs in arch_uprobe_exception_notify() [v5,38/38] kmsan: block: skip bio block merging logic for KMSAN

Message ID

20200325161249.55095-6-glider@google.com (mailing list archive)

State

New, archived

Headers

DMARC-Filter: OpenDMARC Filter v1.3.2 mail.kernel.org 787BD20772
Date: Wed, 25 Mar 2020 17:12:16 +0100
In-Reply-To: <20200325161249.55095-1-glider@google.com>
Message-Id: <20200325161249.55095-6-glider@google.com>
Mime-Version: 1.0
References: <20200325161249.55095-1-glider@google.com>
Subject: [PATCH v5 05/38] kmsan: reduce vmalloc space
From: glider@google.com
To: Vegard Nossum <vegard.nossum@oracle.com>,
 Andrew Morton <akpm@linux-foundation.org>,
	Dmitry Vyukov <dvyukov@google.com>, Marco Elver <elver@google.com>,
	Andrey Konovalov <andreyknvl@google.com>, linux-mm@kvack.org
Cc: glider@google.com, viro@zeniv.linux.org.uk, adilger.kernel@dilger.ca,
	aryabinin@virtuozzo.com, luto@kernel.org, ard.biesheuvel@linaro.org,
	arnd@arndb.de, hch@infradead.org, hch@lst.de, darrick.wong@oracle.com,
	davem@davemloft.net, dmitry.torokhov@gmail.com, ebiggers@google.com,
	edumazet@google.com, ericvh@gmail.com, gregkh@linuxfoundation.org,
	harry.wentland@amd.com, herbert@gondor.apana.org.au, iii@linux.ibm.com,
	mingo@elte.hu, jasowang@redhat.com, axboe@kernel.dk,
 m.szyprowski@samsung.com,
	mark.rutland@arm.com, martin.petersen@oracle.com, schwidefsky@de.ibm.com,
	willy@infradead.org, mst@redhat.com, mhocko@suse.com, monstr@monstr.eu,
	pmladek@suse.com, cai@lca.pw, rdunlap@infradead.org, robin.murphy@arm.com,
	sergey.senozhatsky@gmail.com, rostedt@goodmis.org, tiwai@suse.com,
	tytso@mit.edu, tglx@linutronix.de, gor@linux.ibm.com, wsa@the-dreams.de
Content-Type: text/plain; charset="UTF-8"
Sender: owner-linux-mm@kvack.org
Precedence: bulk

Series

Add KernelMemorySanitizer infrastructure | expand

Commit Message

Alexander Potapenko March 25, 2020, 4:12 p.m. UTC

KMSAN is going to use 3/4 of existing vmalloc space to hold the
metadata, therefore we lower VMALLOC_END to make sure vmalloc() doesn't
allocate past the first 1/4.

Signed-off-by: Alexander Potapenko <glider@google.com>
To: Alexander Potapenko <glider@google.com>
Cc: Vegard Nossum <vegard.nossum@oracle.com>
Cc: Andrew Morton <akpm@linux-foundation.org>
Cc: Dmitry Vyukov <dvyukov@google.com>
Cc: Marco Elver <elver@google.com>
Cc: Andrey Konovalov <andreyknvl@google.com>
Cc: linux-mm@kvack.org

---

Change-Id: Iaa5e8e0fc2aa66c956f937f5a1de6e5ef40d57cc
---
 arch/x86/include/asm/pgtable_64_types.h | 15 +++++++++++++++
 1 file changed, 15 insertions(+)

Comments

Andrey Konovalov March 30, 2020, 1:48 p.m. UTC | #1

On Wed, Mar 25, 2020 at 5:13 PM <glider@google.com> wrote:
>
> KMSAN is going to use 3/4 of existing vmalloc space to hold the
> metadata, therefore we lower VMALLOC_END to make sure vmalloc() doesn't
> allocate past the first 1/4.
>
> Signed-off-by: Alexander Potapenko <glider@google.com>
> To: Alexander Potapenko <glider@google.com>
> Cc: Vegard Nossum <vegard.nossum@oracle.com>
> Cc: Andrew Morton <akpm@linux-foundation.org>
> Cc: Dmitry Vyukov <dvyukov@google.com>
> Cc: Marco Elver <elver@google.com>
> Cc: Andrey Konovalov <andreyknvl@google.com>
> Cc: linux-mm@kvack.org
>
> ---
>
> Change-Id: Iaa5e8e0fc2aa66c956f937f5a1de6e5ef40d57cc
> ---
>  arch/x86/include/asm/pgtable_64_types.h | 15 +++++++++++++++
>  1 file changed, 15 insertions(+)
>
> diff --git a/arch/x86/include/asm/pgtable_64_types.h b/arch/x86/include/asm/pgtable_64_types.h
> index 52e5f5f2240d9..586629e204366 100644
> --- a/arch/x86/include/asm/pgtable_64_types.h
> +++ b/arch/x86/include/asm/pgtable_64_types.h
> @@ -139,7 +139,22 @@ extern unsigned int ptrs_per_p4d;
>  # define VMEMMAP_START         __VMEMMAP_BASE_L4
>  #endif /* CONFIG_DYNAMIC_MEMORY_LAYOUT */
>
> +#ifndef CONFIG_KMSAN
>  #define VMALLOC_END            (VMALLOC_START + (VMALLOC_SIZE_TB << 40) - 1)
> +#else
> +/*
> + * In KMSAN builds vmalloc area is four times smaller, and the remaining 3/4
> + * are used to keep the metadata for virtual pages.
> + */
> +#define VMALLOC_QUARTER_SIZE   ((VMALLOC_SIZE_TB << 40) >> 2)
> +#define VMALLOC_END            (VMALLOC_START + VMALLOC_QUARTER_SIZE - 1)
> +#define VMALLOC_SHADOW_OFFSET  VMALLOC_QUARTER_SIZE
> +#define VMALLOC_ORIGIN_OFFSET  (VMALLOC_QUARTER_SIZE * 2)

"<< 1" instead of "* 2" for consistency (since we're using ">> 2" just above")?

> +#define VMALLOC_META_END       (VMALLOC_END + VMALLOC_ORIGIN_OFFSET)
> +#define MODULES_SHADOW_START   (VMALLOC_META_END + 1)
> +#define MODULES_ORIGIN_START   (MODULES_SHADOW_START + MODULES_LEN)
> +#define MODULES_ORIGIN_END     (MODULES_ORIGIN_START + MODULES_LEN)
> +#endif

These macros are a bit hard to understand. VMALLOC_SHADOW_OFFSET and
VMALLOC_ORIGIN_OFFSET are offsets from VMALLOC_END and denote where
shadow and origin areas start? What is stored in (VMALLOC_END,
VMALLOC_END + VMALLOC_SHADOW_OFFSET] then? Maybe sorting these
constants in some logical order would help, or adding a comment on how
exactly those 3/4th of vmalloc space are split.

>
>  #define MODULES_VADDR          (__START_KERNEL_map + KERNEL_IMAGE_SIZE)
>  /* The module sections ends with the start of the fixmap */
> --
> 2.25.1.696.g5e7596f4ac-goog
>

Alexander Potapenko April 14, 2020, 2:21 p.m. UTC | #2

On Mon, Mar 30, 2020 at 3:49 PM Andrey Konovalov <andreyknvl@google.com> wrote:
>
> On Wed, Mar 25, 2020 at 5:13 PM <glider@google.com> wrote:
> >
> > KMSAN is going to use 3/4 of existing vmalloc space to hold the
> > metadata, therefore we lower VMALLOC_END to make sure vmalloc() doesn't
> > allocate past the first 1/4.
> >
> > Signed-off-by: Alexander Potapenko <glider@google.com>
> > To: Alexander Potapenko <glider@google.com>
> > Cc: Vegard Nossum <vegard.nossum@oracle.com>
> > Cc: Andrew Morton <akpm@linux-foundation.org>
> > Cc: Dmitry Vyukov <dvyukov@google.com>
> > Cc: Marco Elver <elver@google.com>
> > Cc: Andrey Konovalov <andreyknvl@google.com>
> > Cc: linux-mm@kvack.org
> >
> > ---
> >
> > Change-Id: Iaa5e8e0fc2aa66c956f937f5a1de6e5ef40d57cc
> > ---
> >  arch/x86/include/asm/pgtable_64_types.h | 15 +++++++++++++++
> >  1 file changed, 15 insertions(+)
> >
> > diff --git a/arch/x86/include/asm/pgtable_64_types.h b/arch/x86/include/asm/pgtable_64_types.h
> > index 52e5f5f2240d9..586629e204366 100644
> > --- a/arch/x86/include/asm/pgtable_64_types.h
> > +++ b/arch/x86/include/asm/pgtable_64_types.h
> > @@ -139,7 +139,22 @@ extern unsigned int ptrs_per_p4d;
> >  # define VMEMMAP_START         __VMEMMAP_BASE_L4
> >  #endif /* CONFIG_DYNAMIC_MEMORY_LAYOUT */
> >
> > +#ifndef CONFIG_KMSAN
> >  #define VMALLOC_END            (VMALLOC_START + (VMALLOC_SIZE_TB << 40) - 1)
> > +#else
> > +/*
> > + * In KMSAN builds vmalloc area is four times smaller, and the remaining 3/4
> > + * are used to keep the metadata for virtual pages.
> > + */
> > +#define VMALLOC_QUARTER_SIZE   ((VMALLOC_SIZE_TB << 40) >> 2)
> > +#define VMALLOC_END            (VMALLOC_START + VMALLOC_QUARTER_SIZE - 1)
> > +#define VMALLOC_SHADOW_OFFSET  VMALLOC_QUARTER_SIZE
> > +#define VMALLOC_ORIGIN_OFFSET  (VMALLOC_QUARTER_SIZE * 2)
>
> "<< 1" instead of "* 2" for consistency (since we're using ">> 2" just above")?

Done, thanks!

> > +#define VMALLOC_META_END       (VMALLOC_END + VMALLOC_ORIGIN_OFFSET)
> > +#define MODULES_SHADOW_START   (VMALLOC_META_END + 1)
> > +#define MODULES_ORIGIN_START   (MODULES_SHADOW_START + MODULES_LEN)
> > +#define MODULES_ORIGIN_END     (MODULES_ORIGIN_START + MODULES_LEN)
> > +#endif
>
> These macros are a bit hard to understand. VMALLOC_SHADOW_OFFSET and
> VMALLOC_ORIGIN_OFFSET are offsets from VMALLOC_END and denote where
> shadow and origin areas start? What is stored in (VMALLOC_END,
> VMALLOC_END + VMALLOC_SHADOW_OFFSET] then? Maybe sorting these
> constants in some logical order would help, or adding a comment on how
> exactly those 3/4th of vmalloc space are split.

Added an extensive comment describing this in v6.

Andrey Konovalov April 23, 2020, 7:14 p.m. UTC | #3

On Tue, Apr 14, 2020 at 4:22 PM Alexander Potapenko <glider@google.com> wrote:
>
> On Mon, Mar 30, 2020 at 3:49 PM Andrey Konovalov <andreyknvl@google.com> wrote:
> >
> > On Wed, Mar 25, 2020 at 5:13 PM <glider@google.com> wrote:
> > >
> > > KMSAN is going to use 3/4 of existing vmalloc space to hold the
> > > metadata, therefore we lower VMALLOC_END to make sure vmalloc() doesn't
> > > allocate past the first 1/4.
> > >
> > > Signed-off-by: Alexander Potapenko <glider@google.com>
> > > To: Alexander Potapenko <glider@google.com>
> > > Cc: Vegard Nossum <vegard.nossum@oracle.com>
> > > Cc: Andrew Morton <akpm@linux-foundation.org>
> > > Cc: Dmitry Vyukov <dvyukov@google.com>
> > > Cc: Marco Elver <elver@google.com>
> > > Cc: Andrey Konovalov <andreyknvl@google.com>
> > > Cc: linux-mm@kvack.org
> > >
> > > ---
> > >
> > > Change-Id: Iaa5e8e0fc2aa66c956f937f5a1de6e5ef40d57cc
> > > ---
> > >  arch/x86/include/asm/pgtable_64_types.h | 15 +++++++++++++++
> > >  1 file changed, 15 insertions(+)
> > >
> > > diff --git a/arch/x86/include/asm/pgtable_64_types.h b/arch/x86/include/asm/pgtable_64_types.h
> > > index 52e5f5f2240d9..586629e204366 100644
> > > --- a/arch/x86/include/asm/pgtable_64_types.h
> > > +++ b/arch/x86/include/asm/pgtable_64_types.h
> > > @@ -139,7 +139,22 @@ extern unsigned int ptrs_per_p4d;
> > >  # define VMEMMAP_START         __VMEMMAP_BASE_L4
> > >  #endif /* CONFIG_DYNAMIC_MEMORY_LAYOUT */
> > >
> > > +#ifndef CONFIG_KMSAN
> > >  #define VMALLOC_END            (VMALLOC_START + (VMALLOC_SIZE_TB << 40) - 1)
> > > +#else
> > > +/*
> > > + * In KMSAN builds vmalloc area is four times smaller, and the remaining 3/4
> > > + * are used to keep the metadata for virtual pages.
> > > + */
> > > +#define VMALLOC_QUARTER_SIZE   ((VMALLOC_SIZE_TB << 40) >> 2)
> > > +#define VMALLOC_END            (VMALLOC_START + VMALLOC_QUARTER_SIZE - 1)
> > > +#define VMALLOC_SHADOW_OFFSET  VMALLOC_QUARTER_SIZE
> > > +#define VMALLOC_ORIGIN_OFFSET  (VMALLOC_QUARTER_SIZE * 2)
> >
> > "<< 1" instead of "* 2" for consistency (since we're using ">> 2" just above")?
>
> Done, thanks!
>
> > > +#define VMALLOC_META_END       (VMALLOC_END + VMALLOC_ORIGIN_OFFSET)
> > > +#define MODULES_SHADOW_START   (VMALLOC_META_END + 1)
> > > +#define MODULES_ORIGIN_START   (MODULES_SHADOW_START + MODULES_LEN)
> > > +#define MODULES_ORIGIN_END     (MODULES_ORIGIN_START + MODULES_LEN)
> > > +#endif
> >
> > These macros are a bit hard to understand. VMALLOC_SHADOW_OFFSET and
> > VMALLOC_ORIGIN_OFFSET are offsets from VMALLOC_END and denote where
> > shadow and origin areas start? What is stored in (VMALLOC_END,
> > VMALLOC_END + VMALLOC_SHADOW_OFFSET] then? Maybe sorting these
> > constants in some logical order would help, or adding a comment on how
> > exactly those 3/4th of vmalloc space are split.
>
> Added an extensive comment describing this in v6.

Thanks!

Also, I think it also makes sense to prefix KMSAN-specific macros with KMSAN_.

diff --git a/arch/x86/include/asm/pgtable_64_types.h b/arch/x86/include/asm/pgtable_64_types.h
index 52e5f5f2240d9..586629e204366 100644
--- a/arch/x86/include/asm/pgtable_64_types.h
+++ b/arch/x86/include/asm/pgtable_64_types.h
@@ -139,7 +139,22 @@  extern unsigned int ptrs_per_p4d;
 # define VMEMMAP_START		__VMEMMAP_BASE_L4
 #endif /* CONFIG_DYNAMIC_MEMORY_LAYOUT */
 
+#ifndef CONFIG_KMSAN
 #define VMALLOC_END		(VMALLOC_START + (VMALLOC_SIZE_TB << 40) - 1)
+#else
+/*
+ * In KMSAN builds vmalloc area is four times smaller, and the remaining 3/4
+ * are used to keep the metadata for virtual pages.
+ */
+#define VMALLOC_QUARTER_SIZE	((VMALLOC_SIZE_TB << 40) >> 2)
+#define VMALLOC_END		(VMALLOC_START + VMALLOC_QUARTER_SIZE - 1)
+#define VMALLOC_SHADOW_OFFSET	VMALLOC_QUARTER_SIZE
+#define VMALLOC_ORIGIN_OFFSET	(VMALLOC_QUARTER_SIZE * 2)
+#define VMALLOC_META_END	(VMALLOC_END + VMALLOC_ORIGIN_OFFSET)
+#define MODULES_SHADOW_START	(VMALLOC_META_END + 1)
+#define MODULES_ORIGIN_START	(MODULES_SHADOW_START + MODULES_LEN)
+#define MODULES_ORIGIN_END	(MODULES_ORIGIN_START + MODULES_LEN)
+#endif
 
 #define MODULES_VADDR		(__START_KERNEL_map + KERNEL_IMAGE_SIZE)
 /* The module sections ends with the start of the fixmap */

[v5,05/38] kmsan: reduce vmalloc space

Commit Message

Comments

Patch