[RFC] apparent bogosity in unregister_ftrace_function_probe

linux-kernel.vger.kernel.org archive mirror
 help / color / mirror / Atom feed

* [RFC] apparent bogosity in unregister_ftrace_function_probe_func()
@ 2018-01-27  3:17 Al Viro
  2018-01-27 13:59 ` Dmitry Safonov
  2018-01-29 13:49 ` Masami Hiramatsu
  0 siblings, 2 replies; 13+ messages in thread
From: Al Viro @ 2018-01-27  3:17 UTC (permalink / raw)
  To: Steven Rostedt; +Cc: Dmitry Safonov, linux-kernel

It contains something very odd:

                func_g.type = filter_parse_regex(glob, strlen(glob),
                                                 &func_g.search, &not);
                func_g.len = strlen(func_g.search);
                func_g.search = glob;

                /* we do not support '!' for function probes */
                if (WARN_ON(not))
                        return -EINVAL;

What the hell is the last assignment for?  After that call of
filter_parse_regex() we could have func_g.search not equal to glob
only if glob started with '!' or '*'.  In the former case we would've
buggered off with -EINVAL (not = 1).  In the latter we would've set
func_g.search equal to glob + 1, calculated the length of that thing
in func_g.len and proceeded to reset func_g.search back to glob.

Suppose the glob is e.g. *foo*.  We end up with
	func_g.type = MATCH_MIDDLE_ONLY;
	func_g.len = 3;
	func_g.search = "*foo";
Feeding that to ftrace_match_record() will not do anything sane - we
will be looking for names containing "*foo" (->len is ignored for that
one).

Incidentally, shouldn't filter_parse_regex("*[ab]", 5, &s, &not)
end up with s = "*[ab]"?  We are returning MATCH_GLOB, after all,
so we want the entire pattern there...  I would've assumed that
this is what the code in unregister_ftrace_function_probe_func()
is trying to compensate for, the first oddity predates MATCH_GLOB...

In any case, that should be done in filter_parse_regex() itself -
there are other callers that don't have such compensation and
it does the wrong thing for MATCH_MIDDLE_ONLY and MATCH_END_ONLY
cases...

That started in commit 3ba009297149fa45956c33ab5de7c5f4da1f28b8
Author: Dmitry Safonov <0x7f454c46@gmail.com>
Date:   Tue Sep 29 19:46:14 2015 +0300

    ftrace: Introduce ftrace_glob structure

without any explanation -
-               type = filter_parse_regex(glob, strlen(glob), &search, &not);
-               len = strlen(search);
+               func_g.type = filter_parse_regex(glob, strlen(glob),
+                                                &func_g.search, &not);
+               func_g.len = strlen(func_g.search);
+               func_g.search = glob;

Note in the same commit
-       type = filter_parse_regex(glob, strlen(glob), &search, &not);
-       len = strlen(search);
+       func_g.type = filter_parse_regex(glob, strlen(glob),
+                       &func_g.search, &not);
+       func_g.len = strlen(func_g.search);
nearby (in register_ftrace_function_probe()).

What am I missing here?

^ permalink raw reply	[flat|nested] 13+ messages in thread

* Re: [RFC] apparent bogosity in unregister_ftrace_function_probe_func()
  2018-01-27  3:17 [RFC] apparent bogosity in unregister_ftrace_function_probe_func() Al Viro
@ 2018-01-27 13:59 ` Dmitry Safonov
  2018-01-27 17:07   ` Al Viro
  2018-01-29 13:49 ` Masami Hiramatsu
  1 sibling, 1 reply; 13+ messages in thread
From: Dmitry Safonov @ 2018-01-27 13:59 UTC (permalink / raw)
  To: Al Viro; +Cc: Steven Rostedt, open list

Hi Alexander,

2018-01-27 3:17 GMT+00:00 Al Viro <viro@zeniv.linux.org.uk>:
> It contains something very odd:
>
>                 func_g.type = filter_parse_regex(glob, strlen(glob),
>                                                  &func_g.search, &not);
>                 func_g.len = strlen(func_g.search);
>                 func_g.search = glob;
>
>                 /* we do not support '!' for function probes */
>                 if (WARN_ON(not))
>                         return -EINVAL;
>
> What the hell is the last assignment for?  After that call of
> filter_parse_regex() we could have func_g.search not equal to glob
> only if glob started with '!' or '*'.  In the former case we would've
> buggered off with -EINVAL (not = 1).  In the latter we would've set
> func_g.search equal to glob + 1, calculated the length of that thing
> in func_g.len and proceeded to reset func_g.search back to glob.
>
> Suppose the glob is e.g. *foo*.  We end up with
>         func_g.type = MATCH_MIDDLE_ONLY;
>         func_g.len = 3;
>         func_g.search = "*foo";
> Feeding that to ftrace_match_record() will not do anything sane - we
> will be looking for names containing "*foo" (->len is ignored for that
> one).

Yes, that definitely smells bogus.

> Incidentally, shouldn't filter_parse_regex("*[ab]", 5, &s, &not)
> end up with s = "*[ab]"?  We are returning MATCH_GLOB, after all,
> so we want the entire pattern there...  I would've assumed that
> this is what the code in unregister_ftrace_function_probe_func()
> is trying to compensate for, the first oddity predates MATCH_GLOB...

No, I don't think filter_parse_regex() should return the full regex..
ftrace_match() expects search would be processed string, not a glob.
So, this unnecessary assignment broke unregistering multiple kprobs
with a middle/end pattern..

> In any case, that should be done in filter_parse_regex() itself -
> there are other callers that don't have such compensation and
> it does the wrong thing for MATCH_MIDDLE_ONLY and MATCH_END_ONLY
> cases...
>
> That started in commit 3ba009297149fa45956c33ab5de7c5f4da1f28b8
> Author: Dmitry Safonov <0x7f454c46@gmail.com>
> Date:   Tue Sep 29 19:46:14 2015 +0300
>
>     ftrace: Introduce ftrace_glob structure
>
> without any explanation -
> -               type = filter_parse_regex(glob, strlen(glob), &search, &not);
> -               len = strlen(search);
> +               func_g.type = filter_parse_regex(glob, strlen(glob),
> +                                                &func_g.search, &not);
> +               func_g.len = strlen(func_g.search);
> +               func_g.search = glob;
>
> Note in the same commit
> -       type = filter_parse_regex(glob, strlen(glob), &search, &not);
> -       len = strlen(search);
> +       func_g.type = filter_parse_regex(glob, strlen(glob),
> +                       &func_g.search, &not);
> +       func_g.len = strlen(func_g.search);
> nearby (in register_ftrace_function_probe()).
>
> What am I missing here?

No, I think you don't miss anything. The patch shouldn't have changed
any behaviour as it was merely an introduction of a new struct.
Ugh, sorry for the bogus - I'll prepare a patch and will check selftests
so they will check this pattern.

Thanks for the report,
             Dmitry

^ permalink raw reply	[flat|nested] 13+ messages in thread

* Re: [RFC] apparent bogosity in unregister_ftrace_function_probe_func()
  2018-01-27 13:59 ` Dmitry Safonov
@ 2018-01-27 17:07   ` Al Viro
  2018-01-28 10:31     ` Steven Rostedt
  2018-01-29 13:59     ` Masami Hiramatsu
  0 siblings, 2 replies; 13+ messages in thread
From: Al Viro @ 2018-01-27 17:07 UTC (permalink / raw)
  To: Dmitry Safonov; +Cc: Steven Rostedt, open list

On Sat, Jan 27, 2018 at 01:59:56PM +0000, Dmitry Safonov wrote:
> 
> > Incidentally, shouldn't filter_parse_regex("*[ab]", 5, &s, &not)
> > end up with s = "*[ab]"?  We are returning MATCH_GLOB, after all,
> > so we want the entire pattern there...  I would've assumed that
> > this is what the code in unregister_ftrace_function_probe_func()
> > is trying to compensate for, the first oddity predates MATCH_GLOB...
> 
> No, I don't think filter_parse_regex() should return the full regex..
> ftrace_match() expects search would be processed string, not a glob.
> So, this unnecessary assignment broke unregistering multiple kprobs
> with a middle/end pattern..

For substring - sure, but what about something like "*a*b" and "a*b"?
AFAICS, filter_parse_regex() ends up with identical results in both
cases - MATCH_GLOB and *search = "a*b".  And no way for the caller
to tell one from another.

IOW, it's a different bug sometimes obscured by the one in
unregister_ftrace_function_probe_func().  filter_parse_regex()
ought to revert to *search = buff; when it decides to return
MATCH_GLOB.  Or something like
        for (i = 0; i < len; i++) {
                if (buff[i] == '*') {
                        if (!i) {
                                type = MATCH_END_ONLY;
                        } else if (i == len - 1) {
                                if (type == MATCH_END_ONLY)
                                        type = MATCH_MIDDLE_ONLY;
                                else
                                        type = MATCH_FRONT_ONLY;
                                buff[i] = 0;
                                break;
                        } else {        /* pattern continues, use full glob */
                                return MATCH_GLOB;
                        }
                } else if (strchr("[?\\", buff[i])) {
                        return MATCH_GLOB;
                }
        }
        if (buff[0] == '*')
                *search = buff + 1;
for that matter - i.e. delay that "we want everything past the first character"
until we are certain it's not a MATCH_GLOB.

That one was introduced by "ftrace: Support full glob matching" in 2016, AFAICS...

^ permalink raw reply	[flat|nested] 13+ messages in thread

* Re: [RFC] apparent bogosity in unregister_ftrace_function_probe_func()
  2018-01-27 17:07   ` Al Viro
@ 2018-01-28 10:31     ` Steven Rostedt
  2018-01-29 13:59     ` Masami Hiramatsu
  1 sibling, 0 replies; 13+ messages in thread
From: Steven Rostedt @ 2018-01-28 10:31 UTC (permalink / raw)
  To: Al Viro; +Cc: Dmitry Safonov, open list, Masami Hiramatsu

On Sat, 27 Jan 2018 17:07:48 +0000
Al Viro <viro@ZenIV.linux.org.uk> wrote:

Hi Al,

> On Sat, Jan 27, 2018 at 01:59:56PM +0000, Dmitry Safonov wrote:
> >   
> > > Incidentally, shouldn't filter_parse_regex("*[ab]", 5, &s, &not)
> > > end up with s = "*[ab]"?  We are returning MATCH_GLOB, after all,
> > > so we want the entire pattern there...  I would've assumed that
> > > this is what the code in unregister_ftrace_function_probe_func()
> > > is trying to compensate for, the first oddity predates MATCH_GLOB...  
> > 
> > No, I don't think filter_parse_regex() should return the full regex..
> > ftrace_match() expects search would be processed string, not a glob.
> > So, this unnecessary assignment broke unregistering multiple kprobs
> > with a middle/end pattern..  
> 
> For substring - sure, but what about something like "*a*b" and "a*b"?
> AFAICS, filter_parse_regex() ends up with identical results in both
> cases - MATCH_GLOB and *search = "a*b".  And no way for the caller
> to tell one from another.
> 
> IOW, it's a different bug sometimes obscured by the one in
> unregister_ftrace_function_probe_func().  filter_parse_regex()
> ought to revert to *search = buff; when it decides to return
> MATCH_GLOB.  Or something like
>         for (i = 0; i < len; i++) {
>                 if (buff[i] == '*') {
>                         if (!i) {
>                                 type = MATCH_END_ONLY;
>                         } else if (i == len - 1) {
>                                 if (type == MATCH_END_ONLY)
>                                         type = MATCH_MIDDLE_ONLY;
>                                 else
>                                         type = MATCH_FRONT_ONLY;
>                                 buff[i] = 0;
>                                 break;
>                         } else {        /* pattern continues, use full glob */
>                                 return MATCH_GLOB;
>                         }
>                 } else if (strchr("[?\\", buff[i])) {
>                         return MATCH_GLOB;
>                 }
>         }
>         if (buff[0] == '*')
>                 *search = buff + 1;
> for that matter - i.e. delay that "we want everything past the first character"
> until we are certain it's not a MATCH_GLOB.
> 
> That one was introduced by "ftrace: Support full glob matching" in 2016, AFAICS...

Yep, I totally agree. This code is one of those places that haven't had
the loving it deserved. It was one of our neglected children.

Thanks for taking a look here. I'm a bit embarrassed by this, and
should have audited it more. I'll have to rip into it and see what else
may be incorrect.

-- Steve

^ permalink raw reply	[flat|nested] 13+ messages in thread

* Re: [RFC] apparent bogosity in unregister_ftrace_function_probe_func()
  2018-01-27 17:07   ` Al Viro
  2018-01-28 10:31     ` Steven Rostedt
@ 2018-01-29 13:59     ` Masami Hiramatsu
  2018-02-05 22:54       ` Steven Rostedt
  1 sibling, 1 reply; 13+ messages in thread
From: Masami Hiramatsu @ 2018-01-29 13:59 UTC (permalink / raw)
  To: Al Viro; +Cc: Dmitry Safonov, Steven Rostedt, open list

On Sat, 27 Jan 2018 17:07:48 +0000
Al Viro <viro@ZenIV.linux.org.uk> wrote:

> On Sat, Jan 27, 2018 at 01:59:56PM +0000, Dmitry Safonov wrote:
> > 
> > > Incidentally, shouldn't filter_parse_regex("*[ab]", 5, &s, &not)
> > > end up with s = "*[ab]"?  We are returning MATCH_GLOB, after all,
> > > so we want the entire pattern there...  I would've assumed that
> > > this is what the code in unregister_ftrace_function_probe_func()
> > > is trying to compensate for, the first oddity predates MATCH_GLOB...
> > 
> > No, I don't think filter_parse_regex() should return the full regex..
> > ftrace_match() expects search would be processed string, not a glob.
> > So, this unnecessary assignment broke unregistering multiple kprobs
> > with a middle/end pattern..
> 
> For substring - sure, but what about something like "*a*b" and "a*b"?
> AFAICS, filter_parse_regex() ends up with identical results in both
> cases - MATCH_GLOB and *search = "a*b".  And no way for the caller
> to tell one from another.
> 
> IOW, it's a different bug sometimes obscured by the one in
> unregister_ftrace_function_probe_func().  filter_parse_regex()
> ought to revert to *search = buff; when it decides to return
> MATCH_GLOB.  Or something like
>         for (i = 0; i < len; i++) {
>                 if (buff[i] == '*') {
>                         if (!i) {
>                                 type = MATCH_END_ONLY;
>                         } else if (i == len - 1) {
>                                 if (type == MATCH_END_ONLY)
>                                         type = MATCH_MIDDLE_ONLY;
>                                 else
>                                         type = MATCH_FRONT_ONLY;
>                                 buff[i] = 0;
>                                 break;
>                         } else {        /* pattern continues, use full glob */
>                                 return MATCH_GLOB;
>                         }
>                 } else if (strchr("[?\\", buff[i])) {
>                         return MATCH_GLOB;
>                 }
>         }
>         if (buff[0] == '*')
>                 *search = buff + 1;
> for that matter - i.e. delay that "we want everything past the first character"
> until we are certain it's not a MATCH_GLOB.

Looks nice to me!

> That one was introduced by "ftrace: Support full glob matching" in 2016, AFAICS...

Yes, that was my fault...
Thank you for pointing it out!

-- 
Masami Hiramatsu <mhiramat@kernel.org>

^ permalink raw reply	[flat|nested] 13+ messages in thread

* Re: [RFC] apparent bogosity in unregister_ftrace_function_probe_func()
  2018-01-29 13:59     ` Masami Hiramatsu
@ 2018-02-05 22:54       ` Steven Rostedt
  2018-02-06  1:25         ` Dmitry Safonov
  2018-02-06  2:26         ` Masami Hiramatsu
  0 siblings, 2 replies; 13+ messages in thread
From: Steven Rostedt @ 2018-02-05 22:54 UTC (permalink / raw)
  To: Masami Hiramatsu; +Cc: Al Viro, Dmitry Safonov, open list

On Mon, 29 Jan 2018 22:59:42 +0900
Masami Hiramatsu <mhiramat@kernel.org> wrote:

> On Sat, 27 Jan 2018 17:07:48 +0000
> Al Viro <viro@ZenIV.linux.org.uk> wrote:
> 
> > On Sat, Jan 27, 2018 at 01:59:56PM +0000, Dmitry Safonov wrote:  
> > >   
> > > > Incidentally, shouldn't filter_parse_regex("*[ab]", 5, &s, &not)
> > > > end up with s = "*[ab]"?  We are returning MATCH_GLOB, after all,
> > > > so we want the entire pattern there...  I would've assumed that
> > > > this is what the code in unregister_ftrace_function_probe_func()
> > > > is trying to compensate for, the first oddity predates MATCH_GLOB...  
> > > 
> > > No, I don't think filter_parse_regex() should return the full regex..
> > > ftrace_match() expects search would be processed string, not a glob.
> > > So, this unnecessary assignment broke unregistering multiple kprobs
> > > with a middle/end pattern..  
> > 
> > For substring - sure, but what about something like "*a*b" and "a*b"?
> > AFAICS, filter_parse_regex() ends up with identical results in both
> > cases - MATCH_GLOB and *search = "a*b".  And no way for the caller
> > to tell one from another.
> > 
> > IOW, it's a different bug sometimes obscured by the one in
> > unregister_ftrace_function_probe_func().  filter_parse_regex()
> > ought to revert to *search = buff; when it decides to return
> > MATCH_GLOB.  Or something like
> >         for (i = 0; i < len; i++) {
> >                 if (buff[i] == '*') {
> >                         if (!i) {
> >                                 type = MATCH_END_ONLY;
> >                         } else if (i == len - 1) {
> >                                 if (type == MATCH_END_ONLY)
> >                                         type = MATCH_MIDDLE_ONLY;
> >                                 else
> >                                         type = MATCH_FRONT_ONLY;
> >                                 buff[i] = 0;
> >                                 break;
> >                         } else {        /* pattern continues, use full glob */
> >                                 return MATCH_GLOB;
> >                         }
> >                 } else if (strchr("[?\\", buff[i])) {
> >                         return MATCH_GLOB;
> >                 }
> >         }
> >         if (buff[0] == '*')
> >                 *search = buff + 1;
> > for that matter - i.e. delay that "we want everything past the first character"
> > until we are certain it's not a MATCH_GLOB.  
> 
> Looks nice to me!
> 

I'll implement this code giving Al credit and referencing this email
thread. Anyone have objections to that?

Thanks!

-- Steve

^ permalink raw reply	[flat|nested] 13+ messages in thread

* Re: [RFC] apparent bogosity in unregister_ftrace_function_probe_func()
  2018-02-05 22:54       ` Steven Rostedt
@ 2018-02-06  1:25         ` Dmitry Safonov
  2018-02-06  2:26         ` Masami Hiramatsu
  1 sibling, 0 replies; 13+ messages in thread
From: Dmitry Safonov @ 2018-02-06  1:25 UTC (permalink / raw)
  To: Steven Rostedt; +Cc: Masami Hiramatsu, Al Viro, open list

2018-02-05 22:54 GMT+00:00 Steven Rostedt <rostedt@goodmis.org>:
> On Mon, 29 Jan 2018 22:59:42 +0900
> Masami Hiramatsu <mhiramat@kernel.org> wrote:
>
>> On Sat, 27 Jan 2018 17:07:48 +0000
>> Al Viro <viro@ZenIV.linux.org.uk> wrote:
>>
>> > On Sat, Jan 27, 2018 at 01:59:56PM +0000, Dmitry Safonov wrote:
>> > >
>> > > > Incidentally, shouldn't filter_parse_regex("*[ab]", 5, &s, &not)
>> > > > end up with s = "*[ab]"?  We are returning MATCH_GLOB, after all,
>> > > > so we want the entire pattern there...  I would've assumed that
>> > > > this is what the code in unregister_ftrace_function_probe_func()
>> > > > is trying to compensate for, the first oddity predates MATCH_GLOB...
>> > >
>> > > No, I don't think filter_parse_regex() should return the full regex..
>> > > ftrace_match() expects search would be processed string, not a glob.
>> > > So, this unnecessary assignment broke unregistering multiple kprobs
>> > > with a middle/end pattern..
>> >
>> > For substring - sure, but what about something like "*a*b" and "a*b"?
>> > AFAICS, filter_parse_regex() ends up with identical results in both
>> > cases - MATCH_GLOB and *search = "a*b".  And no way for the caller
>> > to tell one from another.
>> >
>> > IOW, it's a different bug sometimes obscured by the one in
>> > unregister_ftrace_function_probe_func().  filter_parse_regex()
>> > ought to revert to *search = buff; when it decides to return
>> > MATCH_GLOB.  Or something like
>> >         for (i = 0; i < len; i++) {
>> >                 if (buff[i] == '*') {
>> >                         if (!i) {
>> >                                 type = MATCH_END_ONLY;
>> >                         } else if (i == len - 1) {
>> >                                 if (type == MATCH_END_ONLY)
>> >                                         type = MATCH_MIDDLE_ONLY;
>> >                                 else
>> >                                         type = MATCH_FRONT_ONLY;
>> >                                 buff[i] = 0;
>> >                                 break;
>> >                         } else {        /* pattern continues, use full glob */
>> >                                 return MATCH_GLOB;
>> >                         }
>> >                 } else if (strchr("[?\\", buff[i])) {
>> >                         return MATCH_GLOB;
>> >                 }
>> >         }
>> >         if (buff[0] == '*')
>> >                 *search = buff + 1;
>> > for that matter - i.e. delay that "we want everything past the first character"
>> > until we are certain it's not a MATCH_GLOB.
>>
>> Looks nice to me!
>>
>
> I'll implement this code giving Al credit and referencing this email
> thread. Anyone have objections to that?

Thank you, Steven.
No objections from me.

-- 
             Dmitry

^ permalink raw reply	[flat|nested] 13+ messages in thread

* Re: [RFC] apparent bogosity in unregister_ftrace_function_probe_func()
  2018-02-05 22:54       ` Steven Rostedt
  2018-02-06  1:25         ` Dmitry Safonov
@ 2018-02-06  2:26         ` Masami Hiramatsu
  2018-02-06  2:40           ` Steven Rostedt
  1 sibling, 1 reply; 13+ messages in thread
From: Masami Hiramatsu @ 2018-02-06  2:26 UTC (permalink / raw)
  To: Steven Rostedt; +Cc: Al Viro, Dmitry Safonov, open list

On Mon, 5 Feb 2018 17:54:33 -0500
Steven Rostedt <rostedt@goodmis.org> wrote:

> On Mon, 29 Jan 2018 22:59:42 +0900
> Masami Hiramatsu <mhiramat@kernel.org> wrote:
> 
> > On Sat, 27 Jan 2018 17:07:48 +0000
> > Al Viro <viro@ZenIV.linux.org.uk> wrote:
> > 
> > > On Sat, Jan 27, 2018 at 01:59:56PM +0000, Dmitry Safonov wrote:  
> > > >   
> > > > > Incidentally, shouldn't filter_parse_regex("*[ab]", 5, &s, &not)
> > > > > end up with s = "*[ab]"?  We are returning MATCH_GLOB, after all,
> > > > > so we want the entire pattern there...  I would've assumed that
> > > > > this is what the code in unregister_ftrace_function_probe_func()
> > > > > is trying to compensate for, the first oddity predates MATCH_GLOB...  
> > > > 
> > > > No, I don't think filter_parse_regex() should return the full regex..
> > > > ftrace_match() expects search would be processed string, not a glob.
> > > > So, this unnecessary assignment broke unregistering multiple kprobs
> > > > with a middle/end pattern..  
> > > 
> > > For substring - sure, but what about something like "*a*b" and "a*b"?
> > > AFAICS, filter_parse_regex() ends up with identical results in both
> > > cases - MATCH_GLOB and *search = "a*b".  And no way for the caller
> > > to tell one from another.
> > > 
> > > IOW, it's a different bug sometimes obscured by the one in
> > > unregister_ftrace_function_probe_func().  filter_parse_regex()
> > > ought to revert to *search = buff; when it decides to return
> > > MATCH_GLOB.  Or something like
> > >         for (i = 0; i < len; i++) {
> > >                 if (buff[i] == '*') {
> > >                         if (!i) {
> > >                                 type = MATCH_END_ONLY;
> > >                         } else if (i == len - 1) {
> > >                                 if (type == MATCH_END_ONLY)
> > >                                         type = MATCH_MIDDLE_ONLY;
> > >                                 else
> > >                                         type = MATCH_FRONT_ONLY;
> > >                                 buff[i] = 0;
> > >                                 break;
> > >                         } else {        /* pattern continues, use full glob */
> > >                                 return MATCH_GLOB;
> > >                         }
> > >                 } else if (strchr("[?\\", buff[i])) {
> > >                         return MATCH_GLOB;
> > >                 }
> > >         }
> > >         if (buff[0] == '*')
> > >                 *search = buff + 1;
> > > for that matter - i.e. delay that "we want everything past the first character"
> > > until we are certain it's not a MATCH_GLOB.  
> > 
> > Looks nice to me!
> > 
> 
> I'll implement this code giving Al credit and referencing this email
> thread. Anyone have objections to that?

No, that code looks good to me. :)

BTW, did you also remove "search = buff;" line in 
unregister_ftrace_function_probe_func() too?

Thanks!


-- 
Masami Hiramatsu <mhiramat@kernel.org>

^ permalink raw reply	[flat|nested] 13+ messages in thread

* Re: [RFC] apparent bogosity in unregister_ftrace_function_probe_func()
  2018-02-06  2:26         ` Masami Hiramatsu
@ 2018-02-06  2:40           ` Steven Rostedt
  2018-02-06  2:44             ` Dmitry Safonov
  0 siblings, 1 reply; 13+ messages in thread
From: Steven Rostedt @ 2018-02-06  2:40 UTC (permalink / raw)
  To: Masami Hiramatsu; +Cc: Al Viro, Dmitry Safonov, open list

On Tue, 6 Feb 2018 11:26:14 +0900
Masami Hiramatsu <mhiramat@kernel.org> wrote:

> No, that code looks good to me. :)
> 
> BTW, did you also remove "search = buff;" line in 
> unregister_ftrace_function_probe_func() too?

That's a separate bug, and should be a separate patch. Dmitry mentioned
that he was preparing a patch to fix that.

Dmitry did you have a patch and added selftests to check it? If not,
I'll whip one up.

Thanks,

-- Steve

^ permalink raw reply	[flat|nested] 13+ messages in thread

* Re: [RFC] apparent bogosity in unregister_ftrace_function_probe_func()
  2018-02-06  2:40           ` Steven Rostedt
@ 2018-02-06  2:44             ` Dmitry Safonov
  2018-02-06  2:48               ` Steven Rostedt
  0 siblings, 1 reply; 13+ messages in thread
From: Dmitry Safonov @ 2018-02-06  2:44 UTC (permalink / raw)
  To: Steven Rostedt; +Cc: Masami Hiramatsu, Al Viro, open list

2018-02-06 2:40 GMT+00:00 Steven Rostedt <rostedt@goodmis.org>:
> On Tue, 6 Feb 2018 11:26:14 +0900
> Masami Hiramatsu <mhiramat@kernel.org> wrote:
>
>> No, that code looks good to me. :)
>>
>> BTW, did you also remove "search = buff;" line in
>> unregister_ftrace_function_probe_func() too?
>
> That's a separate bug, and should be a separate patch. Dmitry mentioned
> that he was preparing a patch to fix that.
>
> Dmitry did you have a patch and added selftests to check it? If not,
> I'll whip one up.

Yes, I've planned to do this..
As it's merge-window now I thought doing this a week later.
So, it's up to you - just let me know so we will not end doing the same fix :)

-- 
             Dmitry

^ permalink raw reply	[flat|nested] 13+ messages in thread

* Re: [RFC] apparent bogosity in unregister_ftrace_function_probe_func()
  2018-02-06  2:44             ` Dmitry Safonov
@ 2018-02-06  2:48               ` Steven Rostedt
  2018-02-06  2:53                 ` Dmitry Safonov
  0 siblings, 1 reply; 13+ messages in thread
From: Steven Rostedt @ 2018-02-06  2:48 UTC (permalink / raw)
  To: Dmitry Safonov; +Cc: Masami Hiramatsu, Al Viro, open list

On Tue, 6 Feb 2018 02:44:03 +0000
Dmitry Safonov <0x7f454c46@gmail.com> wrote:


> Yes, I've planned to do this..
> As it's merge-window now I thought doing this a week later.
> So, it's up to you - just let me know so we will not end doing the same fix :)
> 

If you haven't done it already, I'll just do it. As it will not be much
more work with the tests I'll add for Al's updates.

Note, these are bug fixes (and will mark them for stable), and I plan to
send to Linus as soon as they are ready. They don't need to wait for the
merge window.

Thanks!

-- Steve

^ permalink raw reply	[flat|nested] 13+ messages in thread

* Re: [RFC] apparent bogosity in unregister_ftrace_function_probe_func()
  2018-02-06  2:48               ` Steven Rostedt
@ 2018-02-06  2:53                 ` Dmitry Safonov
  0 siblings, 0 replies; 13+ messages in thread
From: Dmitry Safonov @ 2018-02-06  2:53 UTC (permalink / raw)
  To: Steven Rostedt; +Cc: Masami Hiramatsu, Al Viro, open list

2018-02-06 2:48 GMT+00:00 Steven Rostedt <rostedt@goodmis.org>:
> On Tue, 6 Feb 2018 02:44:03 +0000
> Dmitry Safonov <0x7f454c46@gmail.com> wrote:
>
>
>> Yes, I've planned to do this..
>> As it's merge-window now I thought doing this a week later.
>> So, it's up to you - just let me know so we will not end doing the same fix :)
>>
>
> If you haven't done it already, I'll just do it. As it will not be much
> more work with the tests I'll add for Al's updates.
>
> Note, these are bug fixes (and will mark them for stable), and I plan to
> send to Linus as soon as they are ready. They don't need to wait for the
> merge window.

Ok, then please, do it.

Thanks,
             Dmitry

^ permalink raw reply	[flat|nested] 13+ messages in thread

* Re: [RFC] apparent bogosity in unregister_ftrace_function_probe_func()
  2018-01-27  3:17 [RFC] apparent bogosity in unregister_ftrace_function_probe_func() Al Viro
  2018-01-27 13:59 ` Dmitry Safonov
@ 2018-01-29 13:49 ` Masami Hiramatsu
  1 sibling, 0 replies; 13+ messages in thread
From: Masami Hiramatsu @ 2018-01-29 13:49 UTC (permalink / raw)
  To: Al Viro; +Cc: mhiramat, Steven Rostedt, Dmitry Safonov, linux-kernel

On Sat, 27 Jan 2018 03:17:06 +0000
Al Viro <viro@ZenIV.linux.org.uk> wrote:

> It contains something very odd:
> 
>                 func_g.type = filter_parse_regex(glob, strlen(glob),
>                                                  &func_g.search, &not);
>                 func_g.len = strlen(func_g.search);
>                 func_g.search = glob;
> 
>                 /* we do not support '!' for function probes */
>                 if (WARN_ON(not))
>                         return -EINVAL;
> 
> What the hell is the last assignment for?  After that call of
> filter_parse_regex() we could have func_g.search not equal to glob
> only if glob started with '!' or '*'.  In the former case we would've
> buggered off with -EINVAL (not = 1).  In the latter we would've set
> func_g.search equal to glob + 1, calculated the length of that thing
> in func_g.len and proceeded to reset func_g.search back to glob.

Ah, right. It must be a bug! func_g.search should be assigned in
filter_parse_regex(), and it should be "glob" without "!" if
it is MATCH_GLOB. Of course above assignment should be removed.

Thank you,

-- 
Masami Hiramatsu <mhiramat@kernel.org>

^ permalink raw reply	[flat|nested] 13+ messages in thread

end of thread, other threads:[~2018-02-06  2:54 UTC | newest]

Thread overview: 13+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2018-01-27  3:17 [RFC] apparent bogosity in unregister_ftrace_function_probe_func() Al Viro
2018-01-27 13:59 ` Dmitry Safonov
2018-01-27 17:07   ` Al Viro
2018-01-28 10:31     ` Steven Rostedt
2018-01-29 13:59     ` Masami Hiramatsu
2018-02-05 22:54       ` Steven Rostedt
2018-02-06  1:25         ` Dmitry Safonov
2018-02-06  2:26         ` Masami Hiramatsu
2018-02-06  2:40           ` Steven Rostedt
2018-02-06  2:44             ` Dmitry Safonov
2018-02-06  2:48               ` Steven Rostedt
2018-02-06  2:53                 ` Dmitry Safonov
2018-01-29 13:49 ` Masami Hiramatsu

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).