Re: Bug#1102495: dpkg-dev: -fstack-clash-protection breaks valgrind on armhf Raspberry Pi

To: Guillem Jover <guillem@debian.org>, Andrew Sayers <2025-bugs.debian.org@pileofstuff.org>, 1102495-done@bugs.debian.org, debian-arm@lists.debian.org
Subject: Re: Bug#1102495: dpkg-dev: -fstack-clash-protection breaks valgrind on armhf Raspberry Pi
From: Emanuele Rocca <ema@debian.org>
Date: Thu, 10 Apr 2025 11:30:47 +0200
Message-id: <[🔎] Z_ePx5ydCjSkb4Kl@ariel.home>
In-reply-to: <[🔎] Z_a25-GHoCl8288L@thunder.hadrons.org>
References: <[🔎] 174421832101.1981251.18320161723349033932.reportbug@andrews-2024-laptop> <[🔎] Z_a25-GHoCl8288L@thunder.hadrons.org>

On 2025-04-09 08:05, Guillem Jover wrote:
> On Wed, 2025-04-09 at 18:05:21 +0100, Andrew Sayers wrote:
> > gcc lets you set `-fstack-clash-protection` on Pi armhf bookworm,
> > but doing so causes valgrind errors even in trivial programs:
> 
> > $ gcc -fstack-clash-protection -x c - <<EOF
> > void empty_function() {}
> > int main() {
> >   empty_function();
> >   return 0;
> > }
> > EOF
> > $ valgrind ./a.out
> > ==19138== Memcheck, a memory error detector
> > ==19138== Copyright (C) 2002-2022, and GNU GPL'd, by Julian Seward et al.
> > ==19138== Using Valgrind-3.19.0 and LibVEX; rerun with -h for copyright info
> > ==19138== Command: ./a.out
> > ==19138==
> > ==19138== Invalid write of size 4
> > ==19138==    at 0x1041C: main (in /home/andrew/a.out)
> > ==19138==  Address 0x7db5f2a0 is on thread 1's stack
> > ==19138==  8 bytes below stack pointer
[...]

> I cannot reproduce this in a Debian armhf sid chroot, and I assume
> this would have been reported earlier if it had affected Debian there,
> even on bookworm.

In Debian we added a suppression as a workaround, which is why on sid
the error reported by Andrew cannot be reproduced. Raspberry Pi OS may
want to do the same.
https://sources.debian.org/src/valgrind/1%3A3.24.0-2/debian/supp/armhf-stackclash.supp/

The issue here is that valgrind upstream has not been updated to follow
the latest (2018) Procedure Call Standard, which among other things
allows writes below the stack pointer. I opened a bug in that regard and
received no replies: https://bugs.kde.org/show_bug.cgi?id=479699

> > Please disable `-fstack-clash-protection` on Pi armhf (and Debian armhf if
> > the issue can be replicated there).
> 
> dpkg upstream has no knowledge or support for Raspberry Pi OS, and
> thus it cannot be disabled for it.

After Trixie I think we should disable it in Debian too. Although the
suppression above works for some of the problems valgrind has on armhf,
there is a trickier one. Certain programs built with stackclash cause
valgrind to segfault, and this regularly causes confusion and quite a
lot of unnecessary work. https://bugs.debian.org/1061496 is the
relevant bug in the BTS.

When we chose to turn stackclash on I thought the advantages would
outweight the disadvantages, but I was wrong. I think we should
reconsider the decision and re-enable stackclash on armhf only if
valgrind upstream gets updated to properly support recent standards. On
armel it does not really matter given that valgrind isn's supported at
all there.

Attachment: signature.asc
Description: PGP signature

Reply to:

References:
- Bug#1102495: dpkg-dev: -fstack-clash-protection breaks valgrind on armhf Raspberry Pi
  - From: Andrew Sayers <2025-bugs.debian.org@pileofstuff.org>
- Re: Bug#1102495: dpkg-dev: -fstack-clash-protection breaks valgrind on armhf Raspberry Pi
  - From: Guillem Jover <guillem@debian.org>

Prev by Date: Re: Bug#1102495: dpkg-dev: -fstack-clash-protection breaks valgrind on armhf Raspberry Pi
Next by Date: Re: Making U-Boot + grub-efi-arm(64) the default boot flow for Raspberry Pi hardware?
Previous by thread: Re: Bug#1102495: dpkg-dev: -fstack-clash-protection breaks valgrind on armhf Raspberry Pi
Next by thread: Bug#1103250: yasm: FTBFS on amd64, arm64, armel, armhf, i386, ppc64el, ppc64, powerpc, riscv64
Index(es):
- Date
- Thread