1 #define pr_fmt(fmt) "SMP alternatives: " fmt
3 #include <linux/module.h>
4 #include <linux/sched.h>
5 #include <linux/mutex.h>
6 #include <linux/list.h>
7 #include <linux/stringify.h>
8 #include <linux/kprobes.h>
10 #include <linux/vmalloc.h>
11 #include <linux/memory.h>
12 #include <linux/stop_machine.h>
13 #include <linux/slab.h>
14 #include <linux/kdebug.h>
15 #include <asm/alternative.h>
16 #include <asm/sections.h>
17 #include <asm/pgtable.h>
20 #include <asm/cacheflush.h>
21 #include <asm/tlbflush.h>
23 #include <asm/fixmap.h>
25 #define MAX_PATCH_LEN (255-1)
27 static int __initdata_or_module debug_alternative;
29 static int __init debug_alt(char *str)
31 debug_alternative = 1;
34 __setup("debug-alternative", debug_alt);
36 static int noreplace_smp;
38 static int __init setup_noreplace_smp(char *str)
43 __setup("noreplace-smp", setup_noreplace_smp);
45 #ifdef CONFIG_PARAVIRT
46 static int __initdata_or_module noreplace_paravirt = 0;
48 static int __init setup_noreplace_paravirt(char *str)
50 noreplace_paravirt = 1;
53 __setup("noreplace-paravirt", setup_noreplace_paravirt);
56 #define DPRINTK(fmt, ...) \
58 if (debug_alternative) \
59 printk(KERN_DEBUG fmt, ##__VA_ARGS__); \
63 * Each GENERIC_NOPX is of X bytes, and defined as an array of bytes
64 * that correspond to that nop. Getting from one nop to the next, we
65 * add to the array the offset that is equal to the sum of all sizes of
66 * nops preceding the one we are after.
68 * Note: The GENERIC_NOP5_ATOMIC is at the end, as it breaks the
69 * nice symmetry of sizes of the previous nops.
71 #if defined(GENERIC_NOP1) && !defined(CONFIG_X86_64)
72 static const unsigned char intelnops[] =
84 static const unsigned char * const intel_nops[ASM_NOP_MAX+2] =
90 intelnops + 1 + 2 + 3,
91 intelnops + 1 + 2 + 3 + 4,
92 intelnops + 1 + 2 + 3 + 4 + 5,
93 intelnops + 1 + 2 + 3 + 4 + 5 + 6,
94 intelnops + 1 + 2 + 3 + 4 + 5 + 6 + 7,
95 intelnops + 1 + 2 + 3 + 4 + 5 + 6 + 7 + 8,
100 static const unsigned char k8nops[] =
112 static const unsigned char * const k8_nops[ASM_NOP_MAX+2] =
119 k8nops + 1 + 2 + 3 + 4,
120 k8nops + 1 + 2 + 3 + 4 + 5,
121 k8nops + 1 + 2 + 3 + 4 + 5 + 6,
122 k8nops + 1 + 2 + 3 + 4 + 5 + 6 + 7,
123 k8nops + 1 + 2 + 3 + 4 + 5 + 6 + 7 + 8,
127 #if defined(K7_NOP1) && !defined(CONFIG_X86_64)
128 static const unsigned char k7nops[] =
140 static const unsigned char * const k7_nops[ASM_NOP_MAX+2] =
147 k7nops + 1 + 2 + 3 + 4,
148 k7nops + 1 + 2 + 3 + 4 + 5,
149 k7nops + 1 + 2 + 3 + 4 + 5 + 6,
150 k7nops + 1 + 2 + 3 + 4 + 5 + 6 + 7,
151 k7nops + 1 + 2 + 3 + 4 + 5 + 6 + 7 + 8,
156 static const unsigned char p6nops[] =
168 static const unsigned char * const p6_nops[ASM_NOP_MAX+2] =
175 p6nops + 1 + 2 + 3 + 4,
176 p6nops + 1 + 2 + 3 + 4 + 5,
177 p6nops + 1 + 2 + 3 + 4 + 5 + 6,
178 p6nops + 1 + 2 + 3 + 4 + 5 + 6 + 7,
179 p6nops + 1 + 2 + 3 + 4 + 5 + 6 + 7 + 8,
183 /* Initialize these to a safe default */
185 const unsigned char * const *ideal_nops = p6_nops;
187 const unsigned char * const *ideal_nops = intel_nops;
190 void __init arch_init_ideal_nops(void)
192 switch (boot_cpu_data.x86_vendor) {
193 case X86_VENDOR_INTEL:
195 * Due to a decoder implementation quirk, some
196 * specific Intel CPUs actually perform better with
197 * the "k8_nops" than with the SDM-recommended NOPs.
199 if (boot_cpu_data.x86 == 6 &&
200 boot_cpu_data.x86_model >= 0x0f &&
201 boot_cpu_data.x86_model != 0x1c &&
202 boot_cpu_data.x86_model != 0x26 &&
203 boot_cpu_data.x86_model != 0x27 &&
204 boot_cpu_data.x86_model < 0x30) {
205 ideal_nops = k8_nops;
206 } else if (boot_cpu_has(X86_FEATURE_NOPL)) {
207 ideal_nops = p6_nops;
210 ideal_nops = k8_nops;
212 ideal_nops = intel_nops;
218 ideal_nops = k8_nops;
220 if (boot_cpu_has(X86_FEATURE_K8))
221 ideal_nops = k8_nops;
222 else if (boot_cpu_has(X86_FEATURE_K7))
223 ideal_nops = k7_nops;
225 ideal_nops = intel_nops;
230 /* Use this to add nops to a buffer, then text_poke the whole buffer. */
231 static void __init_or_module add_nops(void *insns, unsigned int len)
234 unsigned int noplen = len;
235 if (noplen > ASM_NOP_MAX)
236 noplen = ASM_NOP_MAX;
237 memcpy(insns, ideal_nops[noplen], noplen);
243 extern struct alt_instr __alt_instructions[], __alt_instructions_end[];
244 extern s32 __smp_locks[], __smp_locks_end[];
245 void *text_poke_early(void *addr, const void *opcode, size_t len);
247 /* Replace instructions with better alternatives for this CPU type.
248 This runs before SMP is initialized to avoid SMP problems with
249 self modifying code. This implies that asymmetric systems where
250 APs have less capabilities than the boot processor are not handled.
251 Tough. Make sure you disable such features by hand. */
253 void __init_or_module apply_alternatives(struct alt_instr *start,
254 struct alt_instr *end)
257 u8 *instr, *replacement;
258 u8 insnbuf[MAX_PATCH_LEN];
260 DPRINTK("%s: alt table %p -> %p\n", __func__, start, end);
262 * The scan order should be from start to end. A later scanned
263 * alternative code can overwrite a previous scanned alternative code.
264 * Some kernel functions (e.g. memcpy, memset, etc) use this order to
267 * So be careful if you want to change the scan order to any other
270 for (a = start; a < end; a++) {
271 instr = (u8 *)&a->instr_offset + a->instr_offset;
272 replacement = (u8 *)&a->repl_offset + a->repl_offset;
273 BUG_ON(a->replacementlen > a->instrlen);
274 BUG_ON(a->instrlen > sizeof(insnbuf));
275 BUG_ON(a->cpuid >= (NCAPINTS + NBUGINTS) * 32);
276 if (!boot_cpu_has(a->cpuid))
279 memcpy(insnbuf, replacement, a->replacementlen);
281 /* 0xe8 is a relative jump; fix the offset. */
282 if (*insnbuf == 0xe8 && a->replacementlen == 5)
283 *(s32 *)(insnbuf + 1) += replacement - instr;
285 add_nops(insnbuf + a->replacementlen,
286 a->instrlen - a->replacementlen);
288 text_poke_early(instr, insnbuf, a->instrlen);
294 static void alternatives_smp_lock(const s32 *start, const s32 *end,
295 u8 *text, u8 *text_end)
299 mutex_lock(&text_mutex);
300 for (poff = start; poff < end; poff++) {
301 u8 *ptr = (u8 *)poff + *poff;
303 if (!*poff || ptr < text || ptr >= text_end)
305 /* turn DS segment override prefix into lock prefix */
307 text_poke(ptr, ((unsigned char []){0xf0}), 1);
309 mutex_unlock(&text_mutex);
312 static void alternatives_smp_unlock(const s32 *start, const s32 *end,
313 u8 *text, u8 *text_end)
317 mutex_lock(&text_mutex);
318 for (poff = start; poff < end; poff++) {
319 u8 *ptr = (u8 *)poff + *poff;
321 if (!*poff || ptr < text || ptr >= text_end)
323 /* turn lock prefix into DS segment override prefix */
325 text_poke(ptr, ((unsigned char []){0x3E}), 1);
327 mutex_unlock(&text_mutex);
330 struct smp_alt_module {
331 /* what is this ??? */
335 /* ptrs to lock prefixes */
337 const s32 *locks_end;
339 /* .text segment, needed to avoid patching init code ;) */
343 struct list_head next;
345 static LIST_HEAD(smp_alt_modules);
346 static DEFINE_MUTEX(smp_alt);
347 static bool uniproc_patched = false; /* protected by smp_alt */
349 void __init_or_module alternatives_smp_module_add(struct module *mod,
351 void *locks, void *locks_end,
352 void *text, void *text_end)
354 struct smp_alt_module *smp;
356 mutex_lock(&smp_alt);
357 if (!uniproc_patched)
360 if (num_possible_cpus() == 1)
361 /* Don't bother remembering, we'll never have to undo it. */
364 smp = kzalloc(sizeof(*smp), GFP_KERNEL);
366 /* we'll run the (safe but slow) SMP code then ... */
372 smp->locks_end = locks_end;
374 smp->text_end = text_end;
375 DPRINTK("%s: locks %p -> %p, text %p -> %p, name %s\n",
376 __func__, smp->locks, smp->locks_end,
377 smp->text, smp->text_end, smp->name);
379 list_add_tail(&smp->next, &smp_alt_modules);
381 alternatives_smp_unlock(locks, locks_end, text, text_end);
383 mutex_unlock(&smp_alt);
386 void __init_or_module alternatives_smp_module_del(struct module *mod)
388 struct smp_alt_module *item;
390 mutex_lock(&smp_alt);
391 list_for_each_entry(item, &smp_alt_modules, next) {
392 if (mod != item->mod)
394 list_del(&item->next);
398 mutex_unlock(&smp_alt);
401 void alternatives_enable_smp(void)
403 struct smp_alt_module *mod;
405 /* Why bother if there are no other CPUs? */
406 BUG_ON(num_possible_cpus() == 1);
408 mutex_lock(&smp_alt);
410 if (uniproc_patched) {
411 pr_info("switching to SMP code\n");
412 BUG_ON(num_online_cpus() != 1);
413 clear_cpu_cap(&boot_cpu_data, X86_FEATURE_UP);
414 clear_cpu_cap(&cpu_data(0), X86_FEATURE_UP);
415 list_for_each_entry(mod, &smp_alt_modules, next)
416 alternatives_smp_lock(mod->locks, mod->locks_end,
417 mod->text, mod->text_end);
418 uniproc_patched = false;
420 mutex_unlock(&smp_alt);
423 /* Return 1 if the address range is reserved for smp-alternatives */
424 int alternatives_text_reserved(void *start, void *end)
426 struct smp_alt_module *mod;
428 u8 *text_start = start;
431 list_for_each_entry(mod, &smp_alt_modules, next) {
432 if (mod->text > text_end || mod->text_end < text_start)
434 for (poff = mod->locks; poff < mod->locks_end; poff++) {
435 const u8 *ptr = (const u8 *)poff + *poff;
437 if (text_start <= ptr && text_end > ptr)
446 #ifdef CONFIG_PARAVIRT
447 void __init_or_module apply_paravirt(struct paravirt_patch_site *start,
448 struct paravirt_patch_site *end)
450 struct paravirt_patch_site *p;
451 char insnbuf[MAX_PATCH_LEN];
453 if (noreplace_paravirt)
456 for (p = start; p < end; p++) {
459 BUG_ON(p->len > MAX_PATCH_LEN);
460 /* prep the buffer with the original instructions */
461 memcpy(insnbuf, p->instr, p->len);
462 used = pv_init_ops.patch(p->instrtype, p->clobbers, insnbuf,
463 (unsigned long)p->instr, p->len);
465 BUG_ON(used > p->len);
467 /* Pad the rest with nops */
468 add_nops(insnbuf + used, p->len - used);
469 text_poke_early(p->instr, insnbuf, p->len);
472 extern struct paravirt_patch_site __start_parainstructions[],
473 __stop_parainstructions[];
474 #endif /* CONFIG_PARAVIRT */
476 void __init alternative_instructions(void)
478 /* The patching is not fully atomic, so try to avoid local interruptions
479 that might execute the to be patched code.
480 Other CPUs are not running. */
484 * Don't stop machine check exceptions while patching.
485 * MCEs only happen when something got corrupted and in this
486 * case we must do something about the corruption.
487 * Ignoring it is worse than a unlikely patching race.
488 * Also machine checks tend to be broadcast and if one CPU
489 * goes into machine check the others follow quickly, so we don't
490 * expect a machine check to cause undue problems during to code
494 apply_alternatives(__alt_instructions, __alt_instructions_end);
497 /* Patch to UP if other cpus not imminent. */
498 if (!noreplace_smp && (num_present_cpus() == 1 || setup_max_cpus <= 1)) {
499 uniproc_patched = true;
500 alternatives_smp_module_add(NULL, "core kernel",
501 __smp_locks, __smp_locks_end,
505 if (!uniproc_patched || num_possible_cpus() == 1)
506 free_init_pages("SMP alternatives",
507 (unsigned long)__smp_locks,
508 (unsigned long)__smp_locks_end);
511 apply_paravirt(__parainstructions, __parainstructions_end);
517 * text_poke_early - Update instructions on a live kernel at boot time
518 * @addr: address to modify
519 * @opcode: source of the copy
520 * @len: length to copy
522 * When you use this code to patch more than one byte of an instruction
523 * you need to make sure that other CPUs cannot execute this code in parallel.
524 * Also no thread must be currently preempted in the middle of these
525 * instructions. And on the local CPU you need to be protected again NMI or MCE
526 * handlers seeing an inconsistent instruction while you patch.
528 void *__init_or_module text_poke_early(void *addr, const void *opcode,
532 local_irq_save(flags);
533 memcpy(addr, opcode, len);
535 local_irq_restore(flags);
536 /* Could also do a CLFLUSH here to speed up CPU recovery; but
537 that causes hangs on some VIA CPUs. */
542 * text_poke - Update instructions on a live kernel
543 * @addr: address to modify
544 * @opcode: source of the copy
545 * @len: length to copy
547 * Only atomic text poke/set should be allowed when not doing early patching.
548 * It means the size must be writable atomically and the address must be aligned
549 * in a way that permits an atomic write. It also makes sure we fit on a single
552 * Note: Must be called under text_mutex.
554 void *__kprobes text_poke(void *addr, const void *opcode, size_t len)
558 struct page *pages[2];
561 if (!core_kernel_text((unsigned long)addr)) {
562 pages[0] = vmalloc_to_page(addr);
563 pages[1] = vmalloc_to_page(addr + PAGE_SIZE);
565 pages[0] = virt_to_page(addr);
566 WARN_ON(!PageReserved(pages[0]));
567 pages[1] = virt_to_page(addr + PAGE_SIZE);
570 local_irq_save(flags);
571 set_fixmap(FIX_TEXT_POKE0, page_to_phys(pages[0]));
573 set_fixmap(FIX_TEXT_POKE1, page_to_phys(pages[1]));
574 vaddr = (char *)fix_to_virt(FIX_TEXT_POKE0);
575 memcpy(&vaddr[(unsigned long)addr & ~PAGE_MASK], opcode, len);
576 clear_fixmap(FIX_TEXT_POKE0);
578 clear_fixmap(FIX_TEXT_POKE1);
581 /* Could also do a CLFLUSH here to speed up CPU recovery; but
582 that causes hangs on some VIA CPUs. */
583 for (i = 0; i < len; i++)
584 BUG_ON(((char *)addr)[i] != ((char *)opcode)[i]);
585 local_irq_restore(flags);
589 static void do_sync_core(void *info)
594 static bool bp_patching_in_progress;
595 static void *bp_int3_handler, *bp_int3_addr;
597 int poke_int3_handler(struct pt_regs *regs)
599 /* bp_patching_in_progress */
602 if (likely(!bp_patching_in_progress))
605 if (user_mode_vm(regs) || regs->ip != (unsigned long)bp_int3_addr)
608 /* set up the specified breakpoint handler */
609 regs->ip = (unsigned long) bp_int3_handler;
616 * text_poke_bp() -- update instructions on live kernel on SMP
617 * @addr: address to patch
618 * @opcode: opcode of new instruction
619 * @len: length to copy
620 * @handler: address to jump to when the temporary breakpoint is hit
622 * Modify multi-byte instruction by using int3 breakpoint on SMP.
623 * We completely avoid stop_machine() here, and achieve the
624 * synchronization using int3 breakpoint.
626 * The way it is done:
627 * - add a int3 trap to the address that will be patched
629 * - update all but the first byte of the patched range
631 * - replace the first byte (int3) by the first byte of
635 * Note: must be called under text_mutex.
637 void *text_poke_bp(void *addr, const void *opcode, size_t len, void *handler)
639 unsigned char int3 = 0xcc;
641 bp_int3_handler = handler;
642 bp_int3_addr = (u8 *)addr + sizeof(int3);
643 bp_patching_in_progress = true;
645 * Corresponding read barrier in int3 notifier for
646 * making sure the in_progress flags is correctly ordered wrt.
651 text_poke(addr, &int3, sizeof(int3));
653 on_each_cpu(do_sync_core, NULL, 1);
655 if (len - sizeof(int3) > 0) {
656 /* patch all but the first byte */
657 text_poke((char *)addr + sizeof(int3),
658 (const char *) opcode + sizeof(int3),
661 * According to Intel, this core syncing is very likely
662 * not necessary and we'd be safe even without it. But
663 * better safe than sorry (plus there's not only Intel).
665 on_each_cpu(do_sync_core, NULL, 1);
668 /* patch the first byte */
669 text_poke(addr, opcode, sizeof(int3));
671 on_each_cpu(do_sync_core, NULL, 1);
673 bp_patching_in_progress = false;
projects / karo-tx-linux.git / blob