From: Peter Zijlstra <peterz@infradead.org>
To: Guo Ren <guoren@kernel.org>
Cc: Kees Cook <kees@kernel.org>,
arnd@arndb.de, palmer@rivosinc.com, tglx@linutronix.de,
luto@kernel.org, conor.dooley@microchip.com, heiko@sntech.de,
jszhang@kernel.org, lazyparser@gmail.com, falcon@tinylab.org,
chenhuacai@kernel.org, apatel@ventanamicro.com,
atishp@atishpatra.org, mark.rutland@arm.com, bjorn@kernel.org,
palmer@dabbelt.com, bjorn@rivosinc.com,
daniel.thompson@linaro.org, linux-arch@vger.kernel.org,
linux-kernel@vger.kernel.org, linux-riscv@lists.infradead.org,
stable@vger.kernel.org, Guo Ren <guoren@linux.alibaba.com>
Subject: Re: [PATCH] riscv: entry: Fixup do_trap_break from kernel side
Date: Mon, 22 Jun 2026 10:28:41 +0200 [thread overview]
Message-ID: <20260622082841.GW49951@noisy.programming.kicks-ass.net> (raw)
In-Reply-To: <ajeKPpg2rwadVPY4@gmail.com>
On Sun, Jun 21, 2026 at 02:52:46AM -0400, Guo Ren wrote:
> On Fri, Jun 19, 2026 at 04:54:53PM -0700, Kees Cook wrote:
> > *thread encromancy*
> >
> > On Sat, Jul 01, 2023 at 10:57:07PM -0400, guoren@kernel.org wrote:
> > > From: Guo Ren <guoren@linux.alibaba.com>
> > >
> > > The irqentry_nmi_enter/exit would force the current context into in_interrupt.
> > > That would trigger the kernel to dead panic, but the kdb still needs "ebreak" to
> > > debug the kernel.
> > >
> > > Move irqentry_nmi_enter/exit to exception_enter/exit could correct handle_break
> > > of the kernel side.
> > >
> > > Before the fixup:
> > > $echo BUG > /sys/kernel/debug/provoke-crash/DIRECT
> > > lkdtm: Performing direct entry BUG
> > > ------------[ cut here ]------------
> > > kernel BUG at drivers/misc/lkdtm/bugs.c:78!
> > > [...]
> > > Kernel panic - not syncing: Aiee, killing interrupt handler!
> >
> > This appears to still be unfixed. What's the blocker? The solutions in
> > this thread seem to work...
> >
> > I'd like to be exercising an Oops path via KUnit (for KCFI), and riscv
> > just instantly falls over instead of thread-killing on the exception.
> Thanks for reviving this thread. At the time I didn’t fully understand
> Peter’s point. We should only use the NMI path when the trap occurs with
> interrupts disabled.
> Here’s the updated fix:
>
> do_trap_break(struct pt_regs *regs)
> ...
> irqentry_exit_to_user_mode(regs);
> } else {
> - irqentry_state_t state = irqentry_nmi_enter(regs);
> + if (regs->status & SR_IE) {
> + enum ctx_state prev_state = exception_enter();
>
> - handle_break(regs);
> + handle_break(regs);
>
> - irqentry_nmi_exit(regs, state);
> + exception_exit(prev_state);
> + } else {
> + irqentry_state_t state = irqentry_nmi_enter(regs);
> +
> + handle_break(regs);
> +
> + irqentry_nmi_exit(regs, state);
> + }
> }
> }
>
> If you & Peter have no objection, I’ll post a v2.
I still don't understand it. This cannot fix anything. Consider:
EBREAK
raw_spin_lock_irq(&your_lock)
EBREAK
So now the first 'works', but the second will crash. Additionally,
having the EBREAK context differ so dramatically between invocations
seems like a very bad deal to me.
_______________________________________________
linux-riscv mailing list
linux-riscv@lists.infradead.org
http://lists.infradead.org/mailman/listinfo/linux-riscv
WARNING: multiple messages have this Message-ID (diff)
From: Peter Zijlstra <peterz@infradead.org>
To: Guo Ren <guoren@kernel.org>
Cc: Kees Cook <kees@kernel.org>,
arnd@arndb.de, palmer@rivosinc.com, tglx@linutronix.de,
luto@kernel.org, conor.dooley@microchip.com, heiko@sntech.de,
jszhang@kernel.org, lazyparser@gmail.com, falcon@tinylab.org,
chenhuacai@kernel.org, apatel@ventanamicro.com,
atishp@atishpatra.org, mark.rutland@arm.com, bjorn@kernel.org,
palmer@dabbelt.com, bjorn@rivosinc.com,
daniel.thompson@linaro.org, linux-arch@vger.kernel.org,
linux-kernel@vger.kernel.org, linux-riscv@lists.infradead.org,
stable@vger.kernel.org, Guo Ren <guoren@linux.alibaba.com>
Subject: Re: [PATCH] riscv: entry: Fixup do_trap_break from kernel side
Date: Mon, 22 Jun 2026 10:28:41 +0200 [thread overview]
Message-ID: <20260622082841.GW49951@noisy.programming.kicks-ass.net> (raw)
In-Reply-To: <ajeKPpg2rwadVPY4@gmail.com>
On Sun, Jun 21, 2026 at 02:52:46AM -0400, Guo Ren wrote:
> On Fri, Jun 19, 2026 at 04:54:53PM -0700, Kees Cook wrote:
> > *thread encromancy*
> >
> > On Sat, Jul 01, 2023 at 10:57:07PM -0400, guoren@kernel.org wrote:
> > > From: Guo Ren <guoren@linux.alibaba.com>
> > >
> > > The irqentry_nmi_enter/exit would force the current context into in_interrupt.
> > > That would trigger the kernel to dead panic, but the kdb still needs "ebreak" to
> > > debug the kernel.
> > >
> > > Move irqentry_nmi_enter/exit to exception_enter/exit could correct handle_break
> > > of the kernel side.
> > >
> > > Before the fixup:
> > > $echo BUG > /sys/kernel/debug/provoke-crash/DIRECT
> > > lkdtm: Performing direct entry BUG
> > > ------------[ cut here ]------------
> > > kernel BUG at drivers/misc/lkdtm/bugs.c:78!
> > > [...]
> > > Kernel panic - not syncing: Aiee, killing interrupt handler!
> >
> > This appears to still be unfixed. What's the blocker? The solutions in
> > this thread seem to work...
> >
> > I'd like to be exercising an Oops path via KUnit (for KCFI), and riscv
> > just instantly falls over instead of thread-killing on the exception.
> Thanks for reviving this thread. At the time I didn’t fully understand
> Peter’s point. We should only use the NMI path when the trap occurs with
> interrupts disabled.
> Here’s the updated fix:
>
> do_trap_break(struct pt_regs *regs)
> ...
> irqentry_exit_to_user_mode(regs);
> } else {
> - irqentry_state_t state = irqentry_nmi_enter(regs);
> + if (regs->status & SR_IE) {
> + enum ctx_state prev_state = exception_enter();
>
> - handle_break(regs);
> + handle_break(regs);
>
> - irqentry_nmi_exit(regs, state);
> + exception_exit(prev_state);
> + } else {
> + irqentry_state_t state = irqentry_nmi_enter(regs);
> +
> + handle_break(regs);
> +
> + irqentry_nmi_exit(regs, state);
> + }
> }
> }
>
> If you & Peter have no objection, I’ll post a v2.
I still don't understand it. This cannot fix anything. Consider:
EBREAK
raw_spin_lock_irq(&your_lock)
EBREAK
So now the first 'works', but the second will crash. Additionally,
having the EBREAK context differ so dramatically between invocations
seems like a very bad deal to me.
next prev parent reply other threads:[~2026-06-22 8:29 UTC|newest]
Thread overview: 32+ messages / expand[flat|nested] mbox.gz Atom feed top
2023-07-02 2:57 [PATCH] riscv: entry: Fixup do_trap_break from kernel side guoren
2023-07-02 2:57 ` guoren
2023-07-03 10:29 ` Daniel Thompson
2023-07-03 10:29 ` Daniel Thompson
2023-07-04 2:44 ` Guo Ren
2023-07-04 2:44 ` Guo Ren
2023-07-04 16:40 ` Peter Zijlstra
2023-07-04 16:40 ` Peter Zijlstra
2023-07-04 17:34 ` Daniel Thompson
2023-07-04 17:34 ` Daniel Thompson
2023-07-09 2:30 ` Guo Ren
2023-07-09 2:30 ` Guo Ren
2023-07-10 8:01 ` Peter Zijlstra
2023-07-10 8:01 ` Peter Zijlstra
2023-07-16 23:33 ` Guo Ren
2023-07-16 23:33 ` Guo Ren
2023-07-17 10:45 ` Peter Zijlstra
2023-07-17 10:45 ` Peter Zijlstra
2023-07-17 16:14 ` Guo Ren
2023-07-17 16:14 ` Guo Ren
2026-06-19 23:54 ` Kees Cook
2026-06-19 23:54 ` Kees Cook
2026-06-21 6:52 ` Guo Ren
2026-06-21 6:52 ` Guo Ren
2026-06-22 8:28 ` Peter Zijlstra [this message]
2026-06-22 8:28 ` Peter Zijlstra
2026-06-22 10:25 ` Vivian Wang
2026-06-22 10:25 ` Vivian Wang
2026-06-22 11:17 ` Peter Zijlstra
2026-06-22 11:17 ` Peter Zijlstra
2026-06-22 11:33 ` Thomas Gleixner
2026-06-22 11:33 ` Thomas Gleixner
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20260622082841.GW49951@noisy.programming.kicks-ass.net \
--to=peterz@infradead.org \
--cc=apatel@ventanamicro.com \
--cc=arnd@arndb.de \
--cc=atishp@atishpatra.org \
--cc=bjorn@kernel.org \
--cc=bjorn@rivosinc.com \
--cc=chenhuacai@kernel.org \
--cc=conor.dooley@microchip.com \
--cc=daniel.thompson@linaro.org \
--cc=falcon@tinylab.org \
--cc=guoren@kernel.org \
--cc=guoren@linux.alibaba.com \
--cc=heiko@sntech.de \
--cc=jszhang@kernel.org \
--cc=kees@kernel.org \
--cc=lazyparser@gmail.com \
--cc=linux-arch@vger.kernel.org \
--cc=linux-kernel@vger.kernel.org \
--cc=linux-riscv@lists.infradead.org \
--cc=luto@kernel.org \
--cc=mark.rutland@arm.com \
--cc=palmer@dabbelt.com \
--cc=palmer@rivosinc.com \
--cc=stable@vger.kernel.org \
--cc=tglx@linutronix.de \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.