6.3 failure with setlocalversion

Question

6.3 failure with setlocalversion

jpoimboe opened this issue 2 years ago · 5 comments

6.3-based kernel is failing with

$ kpatch-build/kpatch-build -s ~/git/linux test/integration/linux-5.18.0/shadow-newpid.patch
Using source directory at /home/jpoimboe/git/linux
Testing patch file(s)
Reading special section data
Building original source
Usage: ./scripts/setlocalversion [srctree]
ERROR: kpatch build failed. Check /home/jpoimboe/.kpatch/build.log for more details.

The setlocalversion script no longer supports the --save-scmversion hack so we'll have to come up with another hack. Replace setlocalversion with a version which does what we want?

Answer 1 · 2023-03-13T13:19:38.000Z

I've never had to look at this before, our use in kpatch-build was added by Seth in 2015.. what was its purpose? Patching or replacing a kernel build script is always iffy it turns into a moving target. Could we pull similar hack completely into kpatch-build?

Answer 2 · 2023-03-13T16:45:37.000Z

If the kernel is based on a git tag (like v6.2), the kernel has a VERMAGIC_STRING which includes a version string "6.2.0". The module loader ensures that all loaded modules' version strings match the kernel's.

If there are changes in the git index, the version string will have a '+' appended to it like "6.2.0+".

The problem is, when kpatch-build builds the patched kernel, it has the patch applied, so it will always have the "+". This version can be seen by doing modinfo <patch>.ko.

What setlocalversion --save-scmversion did was save the version (before applying the patch) to a file, which was then read by subsequent builds' invocations of setlocalversion to force the version to stay the same despite changes to the tree. Without that --save-scmversion functionality, which disappeared in the 6.3 merge window, livepatch modules will fail to load.

Answer 3 · 2023-03-13T17:04:09.000Z

The proper way to fix this is probably

swap the order of the builds: do the patched build first, followed by the original build, so the patch module link happens against the original kernel
somehow get rid of all the hacks which require us to modify the tree (link-vmlinux.sh, Makefile.modfinal, utsrelease.h)

Answer 4 · 2023-03-13T17:24:14.000Z

Or we could just punt and do something similar to what's already being done for Ubuntu

if [[ -z "$USERSRCDIR" ]] && [[ "$DISTRO" = ubuntu ]]; then
        # UBUNTU: add UTS_UBUNTU_RELEASE_ABI to utsrelease.h after regenerating it                                     
        UBUNTU_ABI="${ARCHVERSION#*-}"                                                                                 
        UBUNTU_ABI="${UBUNTU_ABI%-*}"                                                                                  
        echo "#define UTS_UBUNTU_RELEASE_ABI $UBUNTU_ABI" >> "$KERNEL_SRCDIR"/include/generated/utsrelease.h           
fi

We could save off that file at the beginning and then copy it back right before the module link.

Answer 5 · 2023-03-13T19:39:47.000Z

Actually neither of those would work very well, because when the vermagic changes during the build of the patched objects, it changes the actual compilation of kernel/module/main.o, which confuses create-diff-object. The best option I can come up with is the original idea of replacing setlocalversion.