I'm open to other suggestions about how we can do this. We definitely want THIS_MODULE to be non-zero, but having it be an opaque pointer that isn't a struct module isn't that great. Barring fully implementing module in linuxkpi I think something like this could make sense to allow emulated code to check if devices/dmabufs/etc come from the same module?

User reported issue: https://github.com/amshafer/nvidia-driver/issues/21

FYI: I am going to drop owner member in CURRENT completely: https://github.com/wulf7/freebsd/commit/9605d603714cc22ed73b4f876a3dc84337d9b6fe

That's for struct class though, right? I'm talking about struct module, and struct file_operations. Here's an example usage from nvidia-drm: https://github.com/amshafer/nvidia-driver/blob/535.98/nvidia/src/nvidia-drm/nvidia-drm-gem.c#L156. Iirc there's a couple similar ones in other drivers in base.

So based on that I think whatever you're doing to class is fine and doesn't affect this?

Maybe an interesting solution would be to do something a bit more DRM specific using LKPI_DRIVER_MODULE. Afaict only the DRM drivers will run into the issue that motivated this change. There's no reason we couldn't do something like this in base or just move the bits I mentioned into base.

We could override THIS_MODULE from drm-kmod's linuxkpi/bsd/include/linux/module.h and have it refer to a global variable defined in LKPI_DRIVER_MODULE? Then only set THIS_MODULE to 0x0 in base if THIS_MODULE isn't defined. That would avoid linker nastiness and still prevent panics on DRM. Although it would require drm-kmod header changes it isn't that invasive of a change and we could easily replace it with something more thorough in the future if we wanted to.

maybe we can do something like:
#define THIS_MODULE ((void *)string_hash(KBUILD_MODNAME))

There are couple of examples of build-time string hashing functions floating around like: https://stackoverflow.com/questions/28654707/how-to-calculate-the-hash-of-a-string-literal-using-only-the-c-preprocessor

Any thoughts?

That's a promising idea. I wonder if instead of having an unusual inline function we could instead make it part of the build setup. Something like setting KBUILD_MODNAME_HASH to whatever sha1 -s "$KBUILD_MODNAME" returns as part of the Makefile? That seems like it might be a little cleaner and easier to debug. Only downside is we have to update all of the makefiles that use KBUILD_MODNAME, I can't think of a way to automate it off the top of my head.

At this point I will ask -- has anyone considered checking how much linker work would be needed for this?

It sounds like linux has insmod set up the __this_module variable when a module is loaded. If you're asking about doing something equivalent then I don't have a good estimate for how hard that would be. I don't know the details though.

I did mention how this could be accomplished using linker scripts earlier: "I think another alternative might be a linker script. Iirc it's relatively easy to declare variables in linker scripts, the problem is having a valid linker script lying around that contains the definition, which might not be trivial in our build infrastructure?". I do know you can create global variables there so that's not a problem, but you have to have/ship the default linker script wit your global variable modifications for every architecture that you want to compile and that might not be trivial for the kernel module building infrastructure? I think this could be the "proper" way of doing it but the effort required would probably be quite high, and I'm not sure if that's something we want to do when all we need (for now) is a way to check if two modules have matching pointers.

I do think that GCC and clang (and really ld.bfd and lld) will collapse duplicate copies of the same anonymous string down to the same storage.

However, is insmod equivalent to just kldload and is __this_module only valid during then? If so, you can hang a suitable pointer to the current struct linker_file off of struct thread that gets set during kldload(2) and cleared before it exits (probably a bit further down in linker_load_file or the like). Then you can #define __this_module to something like curthread->td_current_linker_file with a suitable wrapper cast or whatever.

In D44306#1020400, @jhb wrote:

I do think that GCC and clang (and really ld.bfd and lld) will collapse duplicate copies of the same anonymous string down to the same storage.

However, is insmod equivalent to just kldload and is __this_module only valid during then? If so, you can hang a suitable pointer to the current struct linker_file off of struct thread that gets set during kldload(2) and cleared before it exits (probably a bit further down in linker_load_file or the like). Then you can #define __this_module to something like curthread->td_current_linker_file with a suitable wrapper cast or whatever.

@jhb my understanding is that it is valid for the lifetime of the module (until unloaded). Hence my thinking of how much it would actually need to set an (unresolved) symbol, and how much to add it during build... I think they put it in a special section but I haven't investigated or read up any further.

Oh, if it is just a global symbol that isn't a ton of work to handle. You just need to recognize that symbol name when resolving symbols and resolve the pointer to the right thing instead. Probably what we would want to do is having __this_module store the pointer to the current linker_file_t when you are resolving symbols and require it to be the same size as a pointer.

In D44306#1020417, @jhb wrote:

Oh, if it is just a global symbol that isn't a ton of work to handle. You just need to recognize that symbol name when resolving symbols and resolve the pointer to the right thing instead. Probably what we would want to do is having __this_module store the pointer to the current linker_file_t when you are resolving symbols and require it to be the same size as a pointer.

Well it is a per-module (.ko or possibly multiple modules in a single .ko) "global".
Assume for simplicity 1 .ko 1 this_module.
Load multiple LinuxKPI based modules, have multiple this_module.
Is our kernel linker smart enough to know the "scope" and not to have a conflicting symbols then?
I.e. amdgpu.ko this_module != iwlwifi this_module?

Somehow we do similar things for DPCPU and VNET?
So basically add a GLOBL and possibly with section(FOO) used?
Something like this?

In D44306#1020434, @bz wrote:

In D44306#1020417, @jhb wrote:

Oh, if it is just a global symbol that isn't a ton of work to handle. You just need to recognize that symbol name when resolving symbols and resolve the pointer to the right thing instead. Probably what we would want to do is having __this_module store the pointer to the current linker_file_t when you are resolving symbols and require it to be the same size as a pointer.

Well it is a per-module (.ko or possibly multiple modules in a single .ko) "global".
Assume for simplicity 1 .ko 1 this_module.
Load multiple LinuxKPI based modules, have multiple this_module.
Is our kernel linker smart enough to know the "scope" and not to have a conflicting symbols then?
I.e. amdgpu.ko this_module != iwlwifi this_module?

Somehow we do similar things for DPCPU and VNET?
So basically add a GLOBL and possibly with section(FOO) used?
Something like this?

It would have to be global for the .ko. You would basically just add a special case for the symbol name "__this_module" (or whatever you call it) and give that particular name special semantics.

That is, you would have extern linker_file_t __this_module; in a header so you end up with an undefined symbol, and you would need to add a special hack for that symbol name to resolve it. Possibly just in linker_file_lookup_symbol_internal you would add a special case before the call to LINKER_LOOKUP_SYMBOL:

if (strcmp(name, "__this_module") == 0)
    return (lf);

Sorry, s/lf/file/

My only thought is do we want to make this work for stock FreeBSD as well and not have it be linuxkpi specific by just s/__lkpi_this_module/__this_module/? Perhaps @kib has some thoughts on if we might find this useful outside of Linux KPI?

So what is the expected use of THIS_MODULE in Linux? Determine that current module is not that module, or something else?

Also note that linker script cannot work for amd64 .o modules.

So what is the expected use of THIS_MODULE in Linux? Determine that current module is not that module, or something else?

It's supposed to point to a struct module which describes some things about a loaded module, seems the most important of which is it contains the file operations. DRM code uses this to tell if things belong to the same kernel module and take action based on that: https://github.com/freebsd/drm-kmod/blob/master/drivers/gpu/drm/amd/amdgpu/amdgpu_sync.c#L204

Afaict this comparison is the only type of thing we use owner/THIS_MODULE for through linuxkpi.

Taking into the account bz' grep output, I believe that the best route is to properly implement the struct module. For start it could be simply struct module {int dummy;}; if nothing is needed from its guts. But there should be an instance of the structure for each LKPI module, and THIS_MODULE underlying symbol should be magic indeed, but not in the sense of the current review. Instead, it should be only resolved locally, causing undefined symbol error if attempt is made to reference it from kld without the module symbol (section ?).

BTW, how it THIS_MODULE supposed to work when LKPI modules are statically linked into kernel?

Instead, it should be only resolved locally, causing undefined symbol error if attempt is made to reference it from kld without the module symbol (section ?).

Could you elaborate a little on what you mean by this?

There was an earlier version of this which used LKPI_DRIVER_MODULE to create a global variable for each lkpi module, do you mean something like that? It would be very easy to create the dummy struct module there.

https://github.com/freebsd/drm-kmod/pull/297

In D44306#1023990, @ashafer_badland.io wrote:

Instead, it should be only resolved locally, causing undefined symbol error if attempt is made to reference it from kld without the module symbol (section ?).

Could you elaborate a little on what you mean by this?

There was an earlier version of this which used LKPI_DRIVER_MODULE to create a global variable for each lkpi module, do you mean something like that? It would be very easy to create the dummy struct module there.

https://github.com/freebsd/drm-kmod/pull/297

Yes, very similar. But the magic from kernel linker must ensure that this symbol is local to linker file. It must not be resolved from other file. So if a file does not provide the symbol but references it, the result is undefined symbol instead of random and invalid binding.

And again, my question still stands, how would any of proposals handle LKPI modules statically compiled into the kernel?

how would any of proposals handle LKPI modules statically compiled into the kernel?

The previous solution I linked generated a unique global name per module that was then used. i.e. instead of __this_module it was __this_module_drm_ or something similar. The names were unique since they were derived from the sysctl node names. It was only done for the DRM lkpi modules in drm-kmod, but there's no reason we couldn't do the same approach for the in-tree ones.

For static linking that approach should work, since it's just a uniquely named global symbol. But if we are doing the "add logic in the linker to check that the usage is contained within the module" approach you listed then I'm not sure how to accomplish that? I assume the linker isn't even invoked for static kernel module, so any approach that uses it is going to have to accomplish the same through some other means? Do we have any existing variables that behave similar to what you're suggesting here that we could use as an example?

I think an important question is what does __THIS_MODULE mean in Linux when used in the kernel proper rather than in a kernel module? That is what we should be aiming for when a linuxkpi-using module is compiled statically into the kernel.

Note that having __THIS_MODULE resolve to the FreeBSD kernel's linker_file_t would work just fine with what @bz found, you just want module_put to know that the pointer is really a linker_file_t and then call a suitable function in kern_linker.c to bump the reference count. The important point is the semantics, and those may not require a wrapper structure if the value is an opaque cookie.

It seems the way it works is that THIS_MODULE is a NULL pointer during "builtin" (statically building modules into the kernel), and points to the struct module of the dynamically loaded module otherwise. I think we could do something similar where we get the current linuxkpi behavior (THIS_MODULE is null) if we aren't building a dynamically loaded module?

With that concern resolved I guess the question now is do we want to:

a) have __this_module magically resolve to the current linker_file_t, implementing module_put as jhb suggested (no wrapper struct, close to what the current revision is)
b) have some linuxkpi macro declare a struct module global, validate usage at module load time (similar to the previous version I linked)
c) maybe have the module loader allocate space at load time, placing __this_module there and filling it with a wrapper struct? Not sure how possible this is.
d) something else?

Of the options I think (a) is the simplest, but (c) would probably be the most robust. I'm not expert but happy to implement whatever you all suggest.

In D44306#1025524, @ashafer_badland.io wrote:

It seems the way it works is that THIS_MODULE is a NULL pointer during "builtin" (statically building modules into the kernel), and points to the struct module of the dynamically loaded module otherwise. I think we could do something similar where we get the current linuxkpi behavior (THIS_MODULE is null) if we aren't building a dynamically loaded module?

With that concern resolved I guess the question now is do we want to:

a) have __this_module magically resolve to the current linker_file_t, implementing module_put as jhb suggested (no wrapper struct, close to what the current revision is)
b) have some linuxkpi macro declare a struct module global, validate usage at module load time (similar to the previous version I linked)
c) maybe have the module loader allocate space at load time, placing __this_module there and filling it with a wrapper struct? Not sure how possible this is.
d) something else?

Of the options I think (a) is the simplest, but (c) would probably be the most robust. I'm not expert but happy to implement whatever you all suggest.

IMO b is the most correct (assuming it would detect that the lmodule is statically linked into kernel and not define the module 'global'). Then c is just a complication over b with the dynamic allocation.

Since jhb answered what should happen with the static linking into kernel proper, I still think that b is right, and you need to add something to the kernel linker to ensure that __this_module is local to the module.

I guess the last question is what linuxkpi macro should actually create the global? I had previously used LKPI_DRIVER_MODULE, but not everywhere uses that. I guess we could make our own DEFINE_THIS_MODULE() macro and then call it from LKPI_DRIVER_MODULE, and add calls elsewhere as needed?

Do we have a good way to detect if we are building for a dynamic module or not during build? I looked for a macro that signaled that but couldn't find anything in kmod.mk.

In D44306#1025639, @ashafer_badland.io wrote:

Do we have a good way to detect if we are building for a dynamic module or not during build? I looked for a macro that signaled that but couldn't find anything in kmod.mk.

The right way is to check for #ifdef KLD_MODULE. Look for the uses in the tree.