From: Corentin Labbe <clabbe.montjoie@gmail.com>
To: Arnd Bergmann <arnd@arndb.de>
Cc: Herbert Xu <herbert@gondor.apana.org.au>,
"David S. Miller" <davem@davemloft.net>,
Maxime Ripard <maxime.ripard@bootlin.com>,
Chen-Yu Tsai <wens@csie.org>, Eric Biggers <ebiggers@google.com>,
linux-crypto@vger.kernel.org,
linux-arm-kernel@lists.infradead.org,
linux-kernel@vger.kernel.org
Subject: Re: [PATCH] crypto: sun4i-ss - reduce stack usage
Date: Tue, 18 Jun 2019 15:12:34 +0200 [thread overview]
Message-ID: <20190618131234.GA8474@Red> (raw)
In-Reply-To: <20190617132538.2759714-1-arnd@arndb.de>
On Mon, Jun 17, 2019 at 03:25:17PM +0200, Arnd Bergmann wrote:
> After the latest addition, the stack usage of sun4i_ss_cipher_poll
> grew beyond the warning limit when KASAN is enabled:
>
> drivers/crypto/sunxi-ss/sun4i-ss-cipher.c:118:12: error: stack frame size of 1152 bytes in function 'sun4i_ss_cipher_poll' [-Werror,-Wframe-larger-than=]
> static int sun4i_ss_cipher_poll(struct skcipher_request *areq)
>
> Reduce it in three ways:
>
> - split out the new code into a separate function so its stack
> usage can overlap that of the sun4i_ss_opti_poll() code path
> - mark both special cases as noinline_for_stack, which should
> ideally result in a tail call that frees the rest of the
> stack
> - move the buf and obuf variables into the code blocks in
> which they are used.
>
> The three separate functions now use 144, 640 and 304 bytes of kernel
> stack, respectively.
>
> Fixes: 0ae1f46c55f8 ("crypto: sun4i-ss - fallback when length is not multiple of blocksize")
> Signed-off-by: Arnd Bergmann <arnd@arndb.de>
> ---
> drivers/crypto/sunxi-ss/sun4i-ss-cipher.c | 47 +++++++++++++++--------
> 1 file changed, 30 insertions(+), 17 deletions(-)
>
> diff --git a/drivers/crypto/sunxi-ss/sun4i-ss-cipher.c b/drivers/crypto/sunxi-ss/sun4i-ss-cipher.c
> index 7b0c42882830..4ab14d58e85b 100644
> --- a/drivers/crypto/sunxi-ss/sun4i-ss-cipher.c
> +++ b/drivers/crypto/sunxi-ss/sun4i-ss-cipher.c
> @@ -12,7 +12,7 @@
> */
> #include "sun4i-ss.h"
>
> -static int sun4i_ss_opti_poll(struct skcipher_request *areq)
> +static int noinline_for_stack sun4i_ss_opti_poll(struct skcipher_request *areq)
> {
> struct crypto_skcipher *tfm = crypto_skcipher_reqtfm(areq);
> struct sun4i_tfm_ctx *op = crypto_skcipher_ctx(tfm);
> @@ -114,6 +114,29 @@ static int sun4i_ss_opti_poll(struct skcipher_request *areq)
> return err;
> }
>
> +
> +static int noinline_for_stack sun4i_ss_cipher_poll_fallback(struct skcipher_request *areq)
> +{
> + struct crypto_skcipher *tfm = crypto_skcipher_reqtfm(areq);
> + struct sun4i_tfm_ctx *op = crypto_skcipher_ctx(tfm);
> + struct sun4i_cipher_req_ctx *ctx = skcipher_request_ctx(areq);
> + SYNC_SKCIPHER_REQUEST_ON_STACK(subreq, op->fallback_tfm);
> + int err;
> +
> + skcipher_request_set_sync_tfm(subreq, op->fallback_tfm);
> + skcipher_request_set_callback(subreq, areq->base.flags, NULL,
> + NULL);
> + skcipher_request_set_crypt(subreq, areq->src, areq->dst,
> + areq->cryptlen, areq->iv);
> + if (ctx->mode & SS_DECRYPTION)
> + err = crypto_skcipher_decrypt(subreq);
> + else
> + err = crypto_skcipher_encrypt(subreq);
> + skcipher_request_zero(subreq);
> +
> + return err;
> +}
> +
> /* Generic function that support SG with size not multiple of 4 */
> static int sun4i_ss_cipher_poll(struct skcipher_request *areq)
> {
> @@ -140,8 +163,6 @@ static int sun4i_ss_cipher_poll(struct skcipher_request *areq)
> unsigned int todo;
> struct sg_mapping_iter mi, mo;
> unsigned int oi, oo; /* offset for in and out */
> - char buf[4 * SS_RX_MAX];/* buffer for linearize SG src */
> - char bufo[4 * SS_TX_MAX]; /* buffer for linearize SG dst */
> unsigned int ob = 0; /* offset in buf */
> unsigned int obo = 0; /* offset in bufo*/
> unsigned int obl = 0; /* length of data in bufo */
> @@ -178,20 +199,8 @@ static int sun4i_ss_cipher_poll(struct skcipher_request *areq)
> if (no_chunk == 1 && !need_fallback)
> return sun4i_ss_opti_poll(areq);
>
> - if (need_fallback) {
> - SYNC_SKCIPHER_REQUEST_ON_STACK(subreq, op->fallback_tfm);
> - skcipher_request_set_sync_tfm(subreq, op->fallback_tfm);
> - skcipher_request_set_callback(subreq, areq->base.flags, NULL,
> - NULL);
> - skcipher_request_set_crypt(subreq, areq->src, areq->dst,
> - areq->cryptlen, areq->iv);
> - if (ctx->mode & SS_DECRYPTION)
> - err = crypto_skcipher_decrypt(subreq);
> - else
> - err = crypto_skcipher_encrypt(subreq);
> - skcipher_request_zero(subreq);
> - return err;
> - }
> + if (need_fallback)
> + return sun4i_ss_cipher_poll_fallback(areq);
>
> spin_lock_irqsave(&ss->slock, flags);
>
> @@ -224,6 +233,8 @@ static int sun4i_ss_cipher_poll(struct skcipher_request *areq)
>
> while (oleft) {
> if (ileft) {
> + char buf[4 * SS_RX_MAX];/* buffer for linearize SG src */
> +
> /*
> * todo is the number of consecutive 4byte word that we
> * can read from current SG
> @@ -281,6 +292,8 @@ static int sun4i_ss_cipher_poll(struct skcipher_request *areq)
> oo = 0;
> }
> } else {
> + char bufo[4 * SS_TX_MAX]; /* buffer for linearize SG dst */
> +
> /*
> * read obl bytes in bufo, we read at maximum for
> * emptying the device
> --
> 2.20.0
>
Tested-by: Corentin LABBE <clabbe.montjoie@gmail.com>
WARNING: multiple messages have this Message-ID (diff)
From: Corentin Labbe <clabbe.montjoie@gmail.com>
To: Arnd Bergmann <arnd@arndb.de>
Cc: Herbert Xu <herbert@gondor.apana.org.au>,
Eric Biggers <ebiggers@google.com>,
Maxime Ripard <maxime.ripard@bootlin.com>,
linux-kernel@vger.kernel.org, Chen-Yu Tsai <wens@csie.org>,
linux-crypto@vger.kernel.org,
"David S. Miller" <davem@davemloft.net>,
linux-arm-kernel@lists.infradead.org
Subject: Re: [PATCH] crypto: sun4i-ss - reduce stack usage
Date: Tue, 18 Jun 2019 15:12:34 +0200 [thread overview]
Message-ID: <20190618131234.GA8474@Red> (raw)
In-Reply-To: <20190617132538.2759714-1-arnd@arndb.de>
On Mon, Jun 17, 2019 at 03:25:17PM +0200, Arnd Bergmann wrote:
> After the latest addition, the stack usage of sun4i_ss_cipher_poll
> grew beyond the warning limit when KASAN is enabled:
>
> drivers/crypto/sunxi-ss/sun4i-ss-cipher.c:118:12: error: stack frame size of 1152 bytes in function 'sun4i_ss_cipher_poll' [-Werror,-Wframe-larger-than=]
> static int sun4i_ss_cipher_poll(struct skcipher_request *areq)
>
> Reduce it in three ways:
>
> - split out the new code into a separate function so its stack
> usage can overlap that of the sun4i_ss_opti_poll() code path
> - mark both special cases as noinline_for_stack, which should
> ideally result in a tail call that frees the rest of the
> stack
> - move the buf and obuf variables into the code blocks in
> which they are used.
>
> The three separate functions now use 144, 640 and 304 bytes of kernel
> stack, respectively.
>
> Fixes: 0ae1f46c55f8 ("crypto: sun4i-ss - fallback when length is not multiple of blocksize")
> Signed-off-by: Arnd Bergmann <arnd@arndb.de>
> ---
> drivers/crypto/sunxi-ss/sun4i-ss-cipher.c | 47 +++++++++++++++--------
> 1 file changed, 30 insertions(+), 17 deletions(-)
>
> diff --git a/drivers/crypto/sunxi-ss/sun4i-ss-cipher.c b/drivers/crypto/sunxi-ss/sun4i-ss-cipher.c
> index 7b0c42882830..4ab14d58e85b 100644
> --- a/drivers/crypto/sunxi-ss/sun4i-ss-cipher.c
> +++ b/drivers/crypto/sunxi-ss/sun4i-ss-cipher.c
> @@ -12,7 +12,7 @@
> */
> #include "sun4i-ss.h"
>
> -static int sun4i_ss_opti_poll(struct skcipher_request *areq)
> +static int noinline_for_stack sun4i_ss_opti_poll(struct skcipher_request *areq)
> {
> struct crypto_skcipher *tfm = crypto_skcipher_reqtfm(areq);
> struct sun4i_tfm_ctx *op = crypto_skcipher_ctx(tfm);
> @@ -114,6 +114,29 @@ static int sun4i_ss_opti_poll(struct skcipher_request *areq)
> return err;
> }
>
> +
> +static int noinline_for_stack sun4i_ss_cipher_poll_fallback(struct skcipher_request *areq)
> +{
> + struct crypto_skcipher *tfm = crypto_skcipher_reqtfm(areq);
> + struct sun4i_tfm_ctx *op = crypto_skcipher_ctx(tfm);
> + struct sun4i_cipher_req_ctx *ctx = skcipher_request_ctx(areq);
> + SYNC_SKCIPHER_REQUEST_ON_STACK(subreq, op->fallback_tfm);
> + int err;
> +
> + skcipher_request_set_sync_tfm(subreq, op->fallback_tfm);
> + skcipher_request_set_callback(subreq, areq->base.flags, NULL,
> + NULL);
> + skcipher_request_set_crypt(subreq, areq->src, areq->dst,
> + areq->cryptlen, areq->iv);
> + if (ctx->mode & SS_DECRYPTION)
> + err = crypto_skcipher_decrypt(subreq);
> + else
> + err = crypto_skcipher_encrypt(subreq);
> + skcipher_request_zero(subreq);
> +
> + return err;
> +}
> +
> /* Generic function that support SG with size not multiple of 4 */
> static int sun4i_ss_cipher_poll(struct skcipher_request *areq)
> {
> @@ -140,8 +163,6 @@ static int sun4i_ss_cipher_poll(struct skcipher_request *areq)
> unsigned int todo;
> struct sg_mapping_iter mi, mo;
> unsigned int oi, oo; /* offset for in and out */
> - char buf[4 * SS_RX_MAX];/* buffer for linearize SG src */
> - char bufo[4 * SS_TX_MAX]; /* buffer for linearize SG dst */
> unsigned int ob = 0; /* offset in buf */
> unsigned int obo = 0; /* offset in bufo*/
> unsigned int obl = 0; /* length of data in bufo */
> @@ -178,20 +199,8 @@ static int sun4i_ss_cipher_poll(struct skcipher_request *areq)
> if (no_chunk == 1 && !need_fallback)
> return sun4i_ss_opti_poll(areq);
>
> - if (need_fallback) {
> - SYNC_SKCIPHER_REQUEST_ON_STACK(subreq, op->fallback_tfm);
> - skcipher_request_set_sync_tfm(subreq, op->fallback_tfm);
> - skcipher_request_set_callback(subreq, areq->base.flags, NULL,
> - NULL);
> - skcipher_request_set_crypt(subreq, areq->src, areq->dst,
> - areq->cryptlen, areq->iv);
> - if (ctx->mode & SS_DECRYPTION)
> - err = crypto_skcipher_decrypt(subreq);
> - else
> - err = crypto_skcipher_encrypt(subreq);
> - skcipher_request_zero(subreq);
> - return err;
> - }
> + if (need_fallback)
> + return sun4i_ss_cipher_poll_fallback(areq);
>
> spin_lock_irqsave(&ss->slock, flags);
>
> @@ -224,6 +233,8 @@ static int sun4i_ss_cipher_poll(struct skcipher_request *areq)
>
> while (oleft) {
> if (ileft) {
> + char buf[4 * SS_RX_MAX];/* buffer for linearize SG src */
> +
> /*
> * todo is the number of consecutive 4byte word that we
> * can read from current SG
> @@ -281,6 +292,8 @@ static int sun4i_ss_cipher_poll(struct skcipher_request *areq)
> oo = 0;
> }
> } else {
> + char bufo[4 * SS_TX_MAX]; /* buffer for linearize SG dst */
> +
> /*
> * read obl bytes in bufo, we read at maximum for
> * emptying the device
> --
> 2.20.0
>
Tested-by: Corentin LABBE <clabbe.montjoie@gmail.com>
_______________________________________________
linux-arm-kernel mailing list
linux-arm-kernel@lists.infradead.org
http://lists.infradead.org/mailman/listinfo/linux-arm-kernel
next prev parent reply other threads:[~2019-06-18 13:12 UTC|newest]
Thread overview: 6+ messages / expand[flat|nested] mbox.gz Atom feed top
2019-06-17 13:25 [PATCH] crypto: sun4i-ss - reduce stack usage Arnd Bergmann
2019-06-17 13:25 ` Arnd Bergmann
2019-06-18 13:12 ` Corentin Labbe [this message]
2019-06-18 13:12 ` Corentin Labbe
2019-06-28 4:18 ` Herbert Xu
2019-06-28 4:18 ` Herbert Xu
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20190618131234.GA8474@Red \
--to=clabbe.montjoie@gmail.com \
--cc=arnd@arndb.de \
--cc=davem@davemloft.net \
--cc=ebiggers@google.com \
--cc=herbert@gondor.apana.org.au \
--cc=linux-arm-kernel@lists.infradead.org \
--cc=linux-crypto@vger.kernel.org \
--cc=linux-kernel@vger.kernel.org \
--cc=maxime.ripard@bootlin.com \
--cc=wens@csie.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.