# git rev-parse -q --verify 9f7853d7609d59172eecfc5e7ccf503bc1b690bd^{commit}
9f7853d7609d59172eecfc5e7ccf503bc1b690bd
already have revision, skipping fetch
# git checkout -q -f -B kisskb 9f7853d7609d59172eecfc5e7ccf503bc1b690bd
# git clean -qxdf
# < git log -1
# commit 9f7853d7609d59172eecfc5e7ccf503bc1b690bd
# Author: Michael Ellerman <mpe@ellerman.id.au>
# Date:   Sun Aug 15 14:10:24 2021 +1000
# 
#     powerpc/mm: Fix set_memory_*() against concurrent accesses
#     
#     Laurent reported that STRICT_MODULE_RWX was causing intermittent crashes
#     on one of his systems:
#     
#       kernel tried to execute exec-protected page (c008000004073278) - exploit attempt? (uid: 0)
#       BUG: Unable to handle kernel instruction fetch
#       Faulting instruction address: 0xc008000004073278
#       Oops: Kernel access of bad area, sig: 11 [#1]
#       LE PAGE_SIZE=64K MMU=Radix SMP NR_CPUS=2048 NUMA pSeries
#       Modules linked in: drm virtio_console fuse drm_panel_orientation_quirks ...
#       CPU: 3 PID: 44 Comm: kworker/3:1 Not tainted 5.14.0-rc4+ #12
#       Workqueue: events control_work_handler [virtio_console]
#       NIP:  c008000004073278 LR: c008000004073278 CTR: c0000000001e9de0
#       REGS: c00000002e4ef7e0 TRAP: 0400   Not tainted  (5.14.0-rc4+)
#       MSR:  800000004280b033 <SF,VEC,VSX,EE,FP,ME,IR,DR,RI,LE>  CR: 24002822 XER: 200400cf
#       ...
#       NIP fill_queue+0xf0/0x210 [virtio_console]
#       LR  fill_queue+0xf0/0x210 [virtio_console]
#       Call Trace:
#         fill_queue+0xb4/0x210 [virtio_console] (unreliable)
#         add_port+0x1a8/0x470 [virtio_console]
#         control_work_handler+0xbc/0x1e8 [virtio_console]
#         process_one_work+0x290/0x590
#         worker_thread+0x88/0x620
#         kthread+0x194/0x1a0
#         ret_from_kernel_thread+0x5c/0x64
#     
#     Jordan, Fabiano & Murilo were able to reproduce and identify that the
#     problem is caused by the call to module_enable_ro() in do_init_module(),
#     which happens after the module's init function has already been called.
#     
#     Our current implementation of change_page_attr() is not safe against
#     concurrent accesses, because it invalidates the PTE before flushing the
#     TLB and then installing the new PTE. That leaves a window in time where
#     there is no valid PTE for the page, if another CPU tries to access the
#     page at that time we see something like the fault above.
#     
#     We can't simply switch to set_pte_at()/flush TLB, because our hash MMU
#     code doesn't handle a set_pte_at() of a valid PTE. See [1].
#     
#     But we do have pte_update(), which replaces the old PTE with the new,
#     meaning there's no window where the PTE is invalid. And the hash MMU
#     version hash__pte_update() deals with synchronising the hash page table
#     correctly.
#     
#     [1]: https://lore.kernel.org/linuxppc-dev/87y318wp9r.fsf@linux.ibm.com/
#     
#     Fixes: 1f9ad21c3b38 ("powerpc/mm: Implement set_memory() routines")
#     Reported-by: Laurent Vivier <lvivier@redhat.com>
#     Reviewed-by: Christophe Leroy <christophe.leroy@csgroup.eu>
#     Reviewed-by: Murilo Opsfelder Araújo <muriloo@linux.ibm.com>
#     Tested-by: Laurent Vivier <lvivier@redhat.com>
#     Signed-off-by: Fabiano Rosas <farosas@linux.ibm.com>
#     Signed-off-by: Michael Ellerman <mpe@ellerman.id.au>
#     Link: https://lore.kernel.org/r/20210818120518.3603172-1-mpe@ellerman.id.au
# < /opt/cross/kisskb/korg/gcc-8.1.0-nolibc/x86_64-linux/bin/x86_64-linux-gcc --version
# < /opt/cross/kisskb/korg/gcc-8.1.0-nolibc/x86_64-linux/bin/x86_64-linux-ld --version
# < git log --format=%s --max-count=1 9f7853d7609d59172eecfc5e7ccf503bc1b690bd
# < make -s -j 32 ARCH=x86 O=/kisskb/build/powerpc-fixes_x86-allmodconfig_x86_64-gcc8 CROSS_COMPILE=/opt/cross/kisskb/korg/gcc-8.1.0-nolibc/x86_64-linux/bin/x86_64-linux-  allmodconfig
# Added to kconfig CONFIG_BUILD_DOCSRC=n
# Added to kconfig CONFIG_MODULE_SIG=n
# Added to kconfig CONFIG_SAMPLES=n
# < make -s -j 32 ARCH=x86 O=/kisskb/build/powerpc-fixes_x86-allmodconfig_x86_64-gcc8 CROSS_COMPILE=/opt/cross/kisskb/korg/gcc-8.1.0-nolibc/x86_64-linux/bin/x86_64-linux-  help
# make -s -j 32 ARCH=x86 O=/kisskb/build/powerpc-fixes_x86-allmodconfig_x86_64-gcc8 CROSS_COMPILE=/opt/cross/kisskb/korg/gcc-8.1.0-nolibc/x86_64-linux/bin/x86_64-linux-  olddefconfig
# make -s -j 32 ARCH=x86 O=/kisskb/build/powerpc-fixes_x86-allmodconfig_x86_64-gcc8 CROSS_COMPILE=/opt/cross/kisskb/korg/gcc-8.1.0-nolibc/x86_64-linux/bin/x86_64-linux-  
/opt/cross/kisskb/korg/gcc-8.1.0-nolibc/x86_64-linux/bin/x86_64-linux-objdump: mm/kfence/kfence_test.o: unable to initialize decompress status for section .debug_info
/opt/cross/kisskb/korg/gcc-8.1.0-nolibc/x86_64-linux/bin/x86_64-linux-objdump: mm/kfence/kfence_test.o: unable to initialize decompress status for section .debug_info
/opt/cross/kisskb/korg/gcc-8.1.0-nolibc/x86_64-linux/bin/x86_64-linux-objdump: mm/kfence/kfence_test.o: File format not recognized
/kisskb/src/kernel/trace/trace_osnoise.c: In function 'start_kthread':
/kisskb/src/kernel/trace/trace_osnoise.c:1461:8: warning: 'main' is usually a function [-Wmain]
  void *main = osnoise_main;
        ^~~~
/kisskb/src/lib/test_scanf.c: In function 'numbers_list_field_width_val_width':
/kisskb/src/lib/test_scanf.c:530:1: warning: the frame size of 2472 bytes is larger than 2048 bytes [-Wframe-larger-than=]
 }
 ^
/kisskb/src/lib/test_scanf.c: In function 'numbers_list_field_width_typemax':
/kisskb/src/lib/test_scanf.c:488:1: warning: the frame size of 2952 bytes is larger than 2048 bytes [-Wframe-larger-than=]
 }
 ^
/kisskb/src/lib/test_scanf.c: In function 'numbers_list':
/kisskb/src/lib/test_scanf.c:437:1: warning: the frame size of 2472 bytes is larger than 2048 bytes [-Wframe-larger-than=]
 }
 ^
/opt/cross/kisskb/korg/gcc-8.1.0-nolibc/x86_64-linux/bin/x86_64-linux-ld: mm/kfence/kfence_test.o: unable to initialize decompress status for section .debug_info
/opt/cross/kisskb/korg/gcc-8.1.0-nolibc/x86_64-linux/bin/x86_64-linux-ld: mm/kfence/kfence_test.o: unable to initialize decompress status for section .debug_info
/opt/cross/kisskb/korg/gcc-8.1.0-nolibc/x86_64-linux/bin/x86_64-linux-ld: mm/kfence/kfence_test.o: unable to initialize decompress status for section .debug_info
/opt/cross/kisskb/korg/gcc-8.1.0-nolibc/x86_64-linux/bin/x86_64-linux-ld: mm/kfence/kfence_test.o: unable to initialize decompress status for section .debug_info
mm/kfence/kfence_test.o: file not recognized: File format not recognized
make[3]: *** [/kisskb/src/scripts/Makefile.modfinal:76: mm/kfence/kfence_test.ko] Error 1
make[3]: *** Waiting for unfinished jobs....
make[2]: *** [/kisskb/src/scripts/Makefile.modpost:156: __modpost] Error 2
make[1]: *** [/kisskb/src/Makefile:1757: modules] Error 2
make: *** [Makefile:220: __sub-make] Error 2
Command 'make -s -j 32 ARCH=x86 O=/kisskb/build/powerpc-fixes_x86-allmodconfig_x86_64-gcc8 CROSS_COMPILE=/opt/cross/kisskb/korg/gcc-8.1.0-nolibc/x86_64-linux/bin/x86_64-linux-  ' returned non-zero exit status 2
# rm -rf /kisskb/build/powerpc-fixes_x86-allmodconfig_x86_64-gcc8
# Build took: 0:17:00.096083