[PATCH v3 08/10] ARM: implement IRQ stacks

Mon Oct 18 13:59:48 PDT 2021

On Mon, 18 Oct 2021 at 22:43, Nick Desaulniers <ndesaulniers at google.com> wrote:
>
> On Sun, Oct 17, 2021 at 6:17 AM Ard Biesheuvel <ardb at kernel.org> wrote:
> >
> > Now that we no longer rely on the stack pointer to access the current
> > task struct or thread info, we can implement support for IRQ stacks
> > cleanly as well.
> >
> > Define a per-CPU IRQ stack and switch to this stack when taking an IRQ,
> > provided that we were not already using that stack in the interrupted
> > context. This is never the case for IRQs taken from user space, but ones
> > taken while running in the kernel could fire while one taken from user
> > space has not completed yet.
> >
> > Signed-off-by: Ard Biesheuvel <ardb at kernel.org>
> > Acked-by: Linus Walleij <linus.walleij at linaro.org>
> > Tested-by: Keith Packard <keithpac at amazon.com>
> > ---
> >  arch/arm/Kconfig                 |  4 ++
> >  arch/arm/include/asm/assembler.h |  4 ++
> >  arch/arm/kernel/entry-armv.S     | 54 ++++++++++++++++++--
> >  arch/arm/kernel/irq.c            | 23 +++++++++
> >  arch/arm/kernel/traps.c          | 15 +++++-
> >  arch/arm/lib/backtrace-clang.S   |  8 +++
> >  arch/arm/lib/backtrace.S         |  8 +++
> >  7 files changed, 112 insertions(+), 4 deletions(-)
> >
> > diff --git a/arch/arm/Kconfig b/arch/arm/Kconfig
> > index 4f61c9789e7f..a8c1db0736f3 100644
> > --- a/arch/arm/Kconfig
> > +++ b/arch/arm/Kconfig
> > @@ -1163,6 +1163,10 @@ config CURRENT_POINTER_IN_TPIDRURO
> >         def_bool y
> >         depends on SMP && CPU_32v6K && !CPU_V6
> >
> > +config IRQSTACKS
> > +       def_bool y
> > +       depends on GENERIC_IRQ_MULTI_HANDLER && THREAD_INFO_IN_TASK
> > +
> >  config ARM_CPU_TOPOLOGY
> >         bool "Support cpu topology definition"
> >         depends on SMP && CPU_V7
> > diff --git a/arch/arm/include/asm/assembler.h b/arch/arm/include/asm/assembler.h
> > index abb8202ef0da..405950494208 100644
> > --- a/arch/arm/include/asm/assembler.h
> > +++ b/arch/arm/include/asm/assembler.h
> > @@ -86,6 +86,10 @@
> >
> >  #define IMM12_MASK 0xfff
> >
> > +/* the frame pointer used for stack unwinding */
> > +ARM(   fpreg   .req    r11     )
> > +THUMB( fpreg   .req    r7      )
> > +
> >  /*
> >   * Enable and disable interrupts
> >   */
> > diff --git a/arch/arm/kernel/entry-armv.S b/arch/arm/kernel/entry-armv.S
> > index 21896f702447..2a426bd27a69 100644
> > --- a/arch/arm/kernel/entry-armv.S
> > +++ b/arch/arm/kernel/entry-armv.S
> > @@ -36,11 +36,59 @@
> >  /*
> >   * Interrupt handling.
> >   */
> > -       .macro  irq_handler
> > +       .macro  irq_handler, from_user:req
> >  #ifdef CONFIG_GENERIC_IRQ_MULTI_HANDLER
> >         mov_l   r1, handle_arch_irq
> >         mov     r0, sp
> > +#ifdef CONFIG_IRQSTACKS
> > +       mov_l   r2, irq_stack_ptr       @ Take base address
> > +       mrc     p15, 0, r3, c13, c0, 4  @ Get CPU offset
> > +#ifdef CONFIG_UNWINDER_ARM
> > +       mov     fpreg, sp               @ Preserve original SP
> > +#else
> > +       mov     r8, fp                  @ Preserve original FP
> > +       mov     r9, sp                  @ Preserve original SP
> > +#endif
> > +       ldr     sp, [r2, r3]            @ Load SP from per-CPU var
> > +       .if     \from_user == 0
> > +UNWIND(        .setfp  fpreg, sp               )
> > +       @
> > +       @ If we took the interrupt while running in the kernel, we may already
> > +       @ be using the IRQ stack, so revert to the original value in that case.
> > +       @
> > +       subs    r2, sp, r0              @ SP above bottom of IRQ stack?
> > +       rsbscs  r2, r2, #THREAD_SIZE    @ ... and below the top?
> > +       movcs   sp, r0                  @ If so, revert to incoming SP
> > +
> > +#ifndef CONFIG_UNWINDER_ARM
> > +       @
> > +       @ Inform the frame pointer unwinder where the next frame lives
> > +       @
> > +       movcc   lr, pc                  @ Make LR point into .entry.text so
> > +                                       @ that we will get a dump of the
> > +                                       @ exception stack for this frame.
> > +#ifdef CONFIG_CC_IS_GCC
> > +       movcc   ip, r0                  @ Store the old SP in the frame record.
> > +       stmdbcc sp!, {fp, ip, lr, pc}   @ Push frame record
> > +       addcc   fp, sp, #12
> > +#else
> > +       stmdbcc sp!, {fp, lr}           @ Push frame record
> > +       movcc   fp, sp
> > +#endif // CONFIG_CC_IS_GCC
> > +#endif // CONFIG_UNWINDER_ARM
> > +       .endif
> > +#endif // CONFIG_IRQSTACKS
> > +
> >         bl_m    [r1]
> > +
> > +#ifdef CONFIG_IRQSTACKS
> > +#ifdef CONFIG_UNWINDER_ARM
> > +       mov     sp, fpreg               @ Restore original SP
> > +#else
> > +       mov     fp, r8                  @ Restore original FP
> > +       mov     sp, r9                  @ Restore original SP
> > +#endif // CONFIG_UNWINDER_ARM
> > +#endif // CONFIG_IRQSTACKS
> >  #else
> >         arch_irq_handler_default
> >  #endif
> > @@ -200,7 +248,7 @@ ENDPROC(__dabt_svc)
> >         .align  5
> >  __irq_svc:
> >         svc_entry
> > -       irq_handler
> > +       irq_handler from_user=0
> >
> >  #ifdef CONFIG_PREEMPTION
> >         ldr     r8, [tsk, #TI_PREEMPT]          @ get preempt count
> > @@ -427,7 +475,7 @@ ENDPROC(__dabt_usr)
> >  __irq_usr:
> >         usr_entry
> >         kuser_cmpxchg_check
> > -       irq_handler
> > +       irq_handler from_user=1
> >         get_thread_info tsk
> >         mov     why, #0
> >         b       ret_to_user_from_irq
> > diff --git a/arch/arm/kernel/irq.c b/arch/arm/kernel/irq.c
> > index 20ab1e607522..58af2adb1583 100644
> > --- a/arch/arm/kernel/irq.c
> > +++ b/arch/arm/kernel/irq.c
> > @@ -43,6 +43,25 @@
> >
> >  unsigned long irq_err_count;
> >
> > +#ifdef CONFIG_IRQSTACKS
> > +
> > +asmlinkage DEFINE_PER_CPU_READ_MOSTLY(u8 *, irq_stack_ptr);
> > +
> > +static void __init init_irq_stacks(void)
> > +{
> > +       u8 *stack;
> > +       int cpu;
> > +
> > +       for_each_possible_cpu(cpu) {
> > +               stack = (u8 *)__get_free_pages(GFP_KERNEL, THREAD_SIZE_ORDER);
> > +               if (WARN_ON(!stack))
> > +                       break;
> > +               per_cpu(irq_stack_ptr, cpu) = &stack[THREAD_SIZE];
> > +       }
> > +}
> > +
> > +#endif
> > +
> >  int arch_show_interrupts(struct seq_file *p, int prec)
> >  {
> >  #ifdef CONFIG_FIQ
> > @@ -99,6 +118,10 @@ void __init init_IRQ(void)
> >  {
> >         int ret;
> >
> > +#ifdef CONFIG_IRQSTACKS
> > +       init_irq_stacks();
> > +#endif
> > +
> >         if (IS_ENABLED(CONFIG_OF) && !machine_desc->init_irq)
> >                 irqchip_init();
> >         else
> > diff --git a/arch/arm/kernel/traps.c b/arch/arm/kernel/traps.c
> > index cda32385552b..1ba9fc2eb564 100644
> > --- a/arch/arm/kernel/traps.c
> > +++ b/arch/arm/kernel/traps.c
> > @@ -66,6 +66,19 @@ void dump_backtrace_entry(unsigned long where, unsigned long from,
> >  {
> >         unsigned long end = frame + 4 + sizeof(struct pt_regs);
> >
> > +       if (IS_ENABLED(CONFIG_UNWINDER_FRAME_POINTER) &&
> > +           IS_ENABLED(CONFIG_CC_IS_GCC) &&
>
> Anything that needs to be adjusted here in the case of CONFIG_CC_IS_CLANG?
>

Not really. Clang simply does not record this information in the frame
record, so there is no way to recover it.

Note that this only affects whether or not the exception stack is
dumped for this frame, so it is not the end of the world.