405377 – Handle new Linux kernel feature: Restartable Sequences ("rseq")

Bug 405377 - Handle new Linux kernel feature: Restartable Sequences ("rseq")

Summary: Handle new Linux kernel feature: Restartable Sequences ("rseq")

Status:	CONFIRMED

Alias:	None

Product:	valgrind
Classification:	Developer tools
Component:	general (show other bugs)
Version:	unspecified
Platform:	unspecified Linux

Importance:	NOR normal
Target Milestone:	---
Assignee:	Julian Seward

URL:
Keywords:

Duplicates (1):	449199 (view as bug list)
Depends on:
Blocks:

Reported:	2019-03-12 00:37 UTC by Derek Bruening
Modified:	2022-01-26 14:00 UTC (History)
CC List:	3 users (show)

See Also:
Latest Commit:
Version Fixed In:
Sentry Crash Report:

Attachments
implement rseq as ENOSYS (7.22 KB, patch) 2021-12-10 17:14 UTC, Mark Wielaard	Details
View All Add an attachment

Note You need to log in before you can comment on or make changes to this bug.

Description Derek Bruening 2019-03-12 00:37:57 UTC

The Linux kernel has introduced a new feature called "Restartable Sequences"
or "rseq".  This raises multiple problems for dynamic binary instrumentation,
including loss of control due to the kernel redirecting the PC and incorrect
application behavior due to failing to preserve the semantics of these
code sequences.

DynamoRIO has looked at and tried to solve these issues for an earlier
version of rseq.  The new version of rseq, the one that went into the
official linux kernel, is more difficult to handle and may require
establishing conventions among software developers who use rseq.  Given that,
it may make sense to collaboratively come up with a solution that works for
all dynamic instrumentation frameworks.

See Kevin's post to the valgrind-developers list:
https://sourceforge.net/p/valgrind/mailman/valgrind-developers/thread/CAB%3DH8NUgjS9Ee7r_VWoBXafAZVYzW1%2BeHPzmA3j-Qeo2n22nmg%40mail.gmail.com/#msg36584233

See a writeup with further details of rseq and ideas for how to handle it here: https://github.com/DynamoRIO/dynamorio/wiki/Restartable-Sequences

The kernel commit adding rseq: https://github.com/torvalds/linux/commit/d82991a8688ad128b46db1b42d5d84396487a508

Comment 1 Derek Bruening 2019-09-17 22:16:27 UTC

Details on DynamoRIO's "run twice" solution and implementation for the rseq feature which is now generally available in recent kernels are at https://github.com/DynamoRIO/dynamorio/wiki/Restartable-Sequences

Comment 2 Mark Wielaard 2021-12-10 17:11:13 UTC

glibc will start using rseq:
https://sourceware.org/pipermail/libc-alpha/2021-December/133656.html

If they get an ENOSYS they will simply not use it.
So I propose that for now we "implement" rseq by just returning ENOSYS and not produce an warning for now.

Comment 3 Mark Wielaard 2021-12-10 17:14:16 UTC

Created attachment 144436 [details]
implement rseq as ENOSYS

Comment 4 Derek Bruening 2021-12-10 17:20:47 UTC

Updated link for the stale wiki page from the first comment above detailing the run-twice solution DynamoRIO has been using successfully for years now: https://dynamorio.org/page_rseq.html

Comment 5 Mark Wielaard 2021-12-15 11:33:29 UTC

For now I pushed the ENOSYS patch to make sure things just work with the new glibc.

commit 1024237358f01009fe233cb1294f3b8211304eaa
Author: Mark Wielaard <mark@klomp.org>
Date:   Fri Dec 10 17:41:59 2021 +0100

    Implement linux rseq syscall as ENOSYS
    
    This implements rseq for amd64, arm, arm64, ppc32, ppc64,
    s390x and x86 linux as ENOSYS (without warning).
    
    glibc will start using rseq to accelerate sched_getcpu, if
    available. This would cause a warning from valgrind every
    time a new thread is started.
    
    Real rseq (restartable sequences) support is pretty hard, so
    for now just explicitly return ENOSYS (just like we do for clone3).
    
    https://sourceware.org/pipermail/libc-alpha/2021-December/133656.html

Leaving this bug open for a real implementation.

Comment 6 Tom Hughes 2022-01-26 14:00:50 UTC

*** Bug 449199 has been marked as a duplicate of this bug. ***