Linux 3.8-rc7
[cris-mirror.git] / arch / x86 / kernel / alternative.c
blobef5ccca79a6cd2f6279086ed5ea464176d5870a1
1 #define pr_fmt(fmt) "SMP alternatives: " fmt
3 #include <linux/module.h>
4 #include <linux/sched.h>
5 #include <linux/mutex.h>
6 #include <linux/list.h>
7 #include <linux/stringify.h>
8 #include <linux/kprobes.h>
9 #include <linux/mm.h>
10 #include <linux/vmalloc.h>
11 #include <linux/memory.h>
12 #include <linux/stop_machine.h>
13 #include <linux/slab.h>
14 #include <asm/alternative.h>
15 #include <asm/sections.h>
16 #include <asm/pgtable.h>
17 #include <asm/mce.h>
18 #include <asm/nmi.h>
19 #include <asm/cacheflush.h>
20 #include <asm/tlbflush.h>
21 #include <asm/io.h>
22 #include <asm/fixmap.h>
24 #define MAX_PATCH_LEN (255-1)
26 static int __initdata_or_module debug_alternative;
28 static int __init debug_alt(char *str)
30 debug_alternative = 1;
31 return 1;
33 __setup("debug-alternative", debug_alt);
35 static int noreplace_smp;
37 static int __init setup_noreplace_smp(char *str)
39 noreplace_smp = 1;
40 return 1;
42 __setup("noreplace-smp", setup_noreplace_smp);
44 #ifdef CONFIG_PARAVIRT
45 static int __initdata_or_module noreplace_paravirt = 0;
47 static int __init setup_noreplace_paravirt(char *str)
49 noreplace_paravirt = 1;
50 return 1;
52 __setup("noreplace-paravirt", setup_noreplace_paravirt);
53 #endif
55 #define DPRINTK(fmt, ...) \
56 do { \
57 if (debug_alternative) \
58 printk(KERN_DEBUG fmt, ##__VA_ARGS__); \
59 } while (0)
62 * Each GENERIC_NOPX is of X bytes, and defined as an array of bytes
63 * that correspond to that nop. Getting from one nop to the next, we
64 * add to the array the offset that is equal to the sum of all sizes of
65 * nops preceding the one we are after.
67 * Note: The GENERIC_NOP5_ATOMIC is at the end, as it breaks the
68 * nice symmetry of sizes of the previous nops.
70 #if defined(GENERIC_NOP1) && !defined(CONFIG_X86_64)
71 static const unsigned char intelnops[] =
73 GENERIC_NOP1,
74 GENERIC_NOP2,
75 GENERIC_NOP3,
76 GENERIC_NOP4,
77 GENERIC_NOP5,
78 GENERIC_NOP6,
79 GENERIC_NOP7,
80 GENERIC_NOP8,
81 GENERIC_NOP5_ATOMIC
83 static const unsigned char * const intel_nops[ASM_NOP_MAX+2] =
85 NULL,
86 intelnops,
87 intelnops + 1,
88 intelnops + 1 + 2,
89 intelnops + 1 + 2 + 3,
90 intelnops + 1 + 2 + 3 + 4,
91 intelnops + 1 + 2 + 3 + 4 + 5,
92 intelnops + 1 + 2 + 3 + 4 + 5 + 6,
93 intelnops + 1 + 2 + 3 + 4 + 5 + 6 + 7,
94 intelnops + 1 + 2 + 3 + 4 + 5 + 6 + 7 + 8,
96 #endif
98 #ifdef K8_NOP1
99 static const unsigned char k8nops[] =
101 K8_NOP1,
102 K8_NOP2,
103 K8_NOP3,
104 K8_NOP4,
105 K8_NOP5,
106 K8_NOP6,
107 K8_NOP7,
108 K8_NOP8,
109 K8_NOP5_ATOMIC
111 static const unsigned char * const k8_nops[ASM_NOP_MAX+2] =
113 NULL,
114 k8nops,
115 k8nops + 1,
116 k8nops + 1 + 2,
117 k8nops + 1 + 2 + 3,
118 k8nops + 1 + 2 + 3 + 4,
119 k8nops + 1 + 2 + 3 + 4 + 5,
120 k8nops + 1 + 2 + 3 + 4 + 5 + 6,
121 k8nops + 1 + 2 + 3 + 4 + 5 + 6 + 7,
122 k8nops + 1 + 2 + 3 + 4 + 5 + 6 + 7 + 8,
124 #endif
126 #if defined(K7_NOP1) && !defined(CONFIG_X86_64)
127 static const unsigned char k7nops[] =
129 K7_NOP1,
130 K7_NOP2,
131 K7_NOP3,
132 K7_NOP4,
133 K7_NOP5,
134 K7_NOP6,
135 K7_NOP7,
136 K7_NOP8,
137 K7_NOP5_ATOMIC
139 static const unsigned char * const k7_nops[ASM_NOP_MAX+2] =
141 NULL,
142 k7nops,
143 k7nops + 1,
144 k7nops + 1 + 2,
145 k7nops + 1 + 2 + 3,
146 k7nops + 1 + 2 + 3 + 4,
147 k7nops + 1 + 2 + 3 + 4 + 5,
148 k7nops + 1 + 2 + 3 + 4 + 5 + 6,
149 k7nops + 1 + 2 + 3 + 4 + 5 + 6 + 7,
150 k7nops + 1 + 2 + 3 + 4 + 5 + 6 + 7 + 8,
152 #endif
154 #ifdef P6_NOP1
155 static const unsigned char p6nops[] =
157 P6_NOP1,
158 P6_NOP2,
159 P6_NOP3,
160 P6_NOP4,
161 P6_NOP5,
162 P6_NOP6,
163 P6_NOP7,
164 P6_NOP8,
165 P6_NOP5_ATOMIC
167 static const unsigned char * const p6_nops[ASM_NOP_MAX+2] =
169 NULL,
170 p6nops,
171 p6nops + 1,
172 p6nops + 1 + 2,
173 p6nops + 1 + 2 + 3,
174 p6nops + 1 + 2 + 3 + 4,
175 p6nops + 1 + 2 + 3 + 4 + 5,
176 p6nops + 1 + 2 + 3 + 4 + 5 + 6,
177 p6nops + 1 + 2 + 3 + 4 + 5 + 6 + 7,
178 p6nops + 1 + 2 + 3 + 4 + 5 + 6 + 7 + 8,
180 #endif
182 /* Initialize these to a safe default */
183 #ifdef CONFIG_X86_64
184 const unsigned char * const *ideal_nops = p6_nops;
185 #else
186 const unsigned char * const *ideal_nops = intel_nops;
187 #endif
189 void __init arch_init_ideal_nops(void)
191 switch (boot_cpu_data.x86_vendor) {
192 case X86_VENDOR_INTEL:
194 * Due to a decoder implementation quirk, some
195 * specific Intel CPUs actually perform better with
196 * the "k8_nops" than with the SDM-recommended NOPs.
198 if (boot_cpu_data.x86 == 6 &&
199 boot_cpu_data.x86_model >= 0x0f &&
200 boot_cpu_data.x86_model != 0x1c &&
201 boot_cpu_data.x86_model != 0x26 &&
202 boot_cpu_data.x86_model != 0x27 &&
203 boot_cpu_data.x86_model < 0x30) {
204 ideal_nops = k8_nops;
205 } else if (boot_cpu_has(X86_FEATURE_NOPL)) {
206 ideal_nops = p6_nops;
207 } else {
208 #ifdef CONFIG_X86_64
209 ideal_nops = k8_nops;
210 #else
211 ideal_nops = intel_nops;
212 #endif
214 break;
215 default:
216 #ifdef CONFIG_X86_64
217 ideal_nops = k8_nops;
218 #else
219 if (boot_cpu_has(X86_FEATURE_K8))
220 ideal_nops = k8_nops;
221 else if (boot_cpu_has(X86_FEATURE_K7))
222 ideal_nops = k7_nops;
223 else
224 ideal_nops = intel_nops;
225 #endif
229 /* Use this to add nops to a buffer, then text_poke the whole buffer. */
230 static void __init_or_module add_nops(void *insns, unsigned int len)
232 while (len > 0) {
233 unsigned int noplen = len;
234 if (noplen > ASM_NOP_MAX)
235 noplen = ASM_NOP_MAX;
236 memcpy(insns, ideal_nops[noplen], noplen);
237 insns += noplen;
238 len -= noplen;
242 extern struct alt_instr __alt_instructions[], __alt_instructions_end[];
243 extern s32 __smp_locks[], __smp_locks_end[];
244 void *text_poke_early(void *addr, const void *opcode, size_t len);
246 /* Replace instructions with better alternatives for this CPU type.
247 This runs before SMP is initialized to avoid SMP problems with
248 self modifying code. This implies that asymmetric systems where
249 APs have less capabilities than the boot processor are not handled.
250 Tough. Make sure you disable such features by hand. */
252 void __init_or_module apply_alternatives(struct alt_instr *start,
253 struct alt_instr *end)
255 struct alt_instr *a;
256 u8 *instr, *replacement;
257 u8 insnbuf[MAX_PATCH_LEN];
259 DPRINTK("%s: alt table %p -> %p\n", __func__, start, end);
261 * The scan order should be from start to end. A later scanned
262 * alternative code can overwrite a previous scanned alternative code.
263 * Some kernel functions (e.g. memcpy, memset, etc) use this order to
264 * patch code.
266 * So be careful if you want to change the scan order to any other
267 * order.
269 for (a = start; a < end; a++) {
270 instr = (u8 *)&a->instr_offset + a->instr_offset;
271 replacement = (u8 *)&a->repl_offset + a->repl_offset;
272 BUG_ON(a->replacementlen > a->instrlen);
273 BUG_ON(a->instrlen > sizeof(insnbuf));
274 BUG_ON(a->cpuid >= NCAPINTS*32);
275 if (!boot_cpu_has(a->cpuid))
276 continue;
278 memcpy(insnbuf, replacement, a->replacementlen);
280 /* 0xe8 is a relative jump; fix the offset. */
281 if (*insnbuf == 0xe8 && a->replacementlen == 5)
282 *(s32 *)(insnbuf + 1) += replacement - instr;
284 add_nops(insnbuf + a->replacementlen,
285 a->instrlen - a->replacementlen);
287 text_poke_early(instr, insnbuf, a->instrlen);
291 #ifdef CONFIG_SMP
293 static void alternatives_smp_lock(const s32 *start, const s32 *end,
294 u8 *text, u8 *text_end)
296 const s32 *poff;
298 mutex_lock(&text_mutex);
299 for (poff = start; poff < end; poff++) {
300 u8 *ptr = (u8 *)poff + *poff;
302 if (!*poff || ptr < text || ptr >= text_end)
303 continue;
304 /* turn DS segment override prefix into lock prefix */
305 if (*ptr == 0x3e)
306 text_poke(ptr, ((unsigned char []){0xf0}), 1);
308 mutex_unlock(&text_mutex);
311 static void alternatives_smp_unlock(const s32 *start, const s32 *end,
312 u8 *text, u8 *text_end)
314 const s32 *poff;
316 mutex_lock(&text_mutex);
317 for (poff = start; poff < end; poff++) {
318 u8 *ptr = (u8 *)poff + *poff;
320 if (!*poff || ptr < text || ptr >= text_end)
321 continue;
322 /* turn lock prefix into DS segment override prefix */
323 if (*ptr == 0xf0)
324 text_poke(ptr, ((unsigned char []){0x3E}), 1);
326 mutex_unlock(&text_mutex);
329 struct smp_alt_module {
330 /* what is this ??? */
331 struct module *mod;
332 char *name;
334 /* ptrs to lock prefixes */
335 const s32 *locks;
336 const s32 *locks_end;
338 /* .text segment, needed to avoid patching init code ;) */
339 u8 *text;
340 u8 *text_end;
342 struct list_head next;
344 static LIST_HEAD(smp_alt_modules);
345 static DEFINE_MUTEX(smp_alt);
346 static bool uniproc_patched = false; /* protected by smp_alt */
348 void __init_or_module alternatives_smp_module_add(struct module *mod,
349 char *name,
350 void *locks, void *locks_end,
351 void *text, void *text_end)
353 struct smp_alt_module *smp;
355 mutex_lock(&smp_alt);
356 if (!uniproc_patched)
357 goto unlock;
359 if (num_possible_cpus() == 1)
360 /* Don't bother remembering, we'll never have to undo it. */
361 goto smp_unlock;
363 smp = kzalloc(sizeof(*smp), GFP_KERNEL);
364 if (NULL == smp)
365 /* we'll run the (safe but slow) SMP code then ... */
366 goto unlock;
368 smp->mod = mod;
369 smp->name = name;
370 smp->locks = locks;
371 smp->locks_end = locks_end;
372 smp->text = text;
373 smp->text_end = text_end;
374 DPRINTK("%s: locks %p -> %p, text %p -> %p, name %s\n",
375 __func__, smp->locks, smp->locks_end,
376 smp->text, smp->text_end, smp->name);
378 list_add_tail(&smp->next, &smp_alt_modules);
379 smp_unlock:
380 alternatives_smp_unlock(locks, locks_end, text, text_end);
381 unlock:
382 mutex_unlock(&smp_alt);
385 void __init_or_module alternatives_smp_module_del(struct module *mod)
387 struct smp_alt_module *item;
389 mutex_lock(&smp_alt);
390 list_for_each_entry(item, &smp_alt_modules, next) {
391 if (mod != item->mod)
392 continue;
393 list_del(&item->next);
394 kfree(item);
395 break;
397 mutex_unlock(&smp_alt);
400 void alternatives_enable_smp(void)
402 struct smp_alt_module *mod;
404 #ifdef CONFIG_LOCKDEP
406 * Older binutils section handling bug prevented
407 * alternatives-replacement from working reliably.
409 * If this still occurs then you should see a hang
410 * or crash shortly after this line:
412 pr_info("lockdep: fixing up alternatives\n");
413 #endif
415 /* Why bother if there are no other CPUs? */
416 BUG_ON(num_possible_cpus() == 1);
418 mutex_lock(&smp_alt);
420 if (uniproc_patched) {
421 pr_info("switching to SMP code\n");
422 BUG_ON(num_online_cpus() != 1);
423 clear_cpu_cap(&boot_cpu_data, X86_FEATURE_UP);
424 clear_cpu_cap(&cpu_data(0), X86_FEATURE_UP);
425 list_for_each_entry(mod, &smp_alt_modules, next)
426 alternatives_smp_lock(mod->locks, mod->locks_end,
427 mod->text, mod->text_end);
428 uniproc_patched = false;
430 mutex_unlock(&smp_alt);
433 /* Return 1 if the address range is reserved for smp-alternatives */
434 int alternatives_text_reserved(void *start, void *end)
436 struct smp_alt_module *mod;
437 const s32 *poff;
438 u8 *text_start = start;
439 u8 *text_end = end;
441 list_for_each_entry(mod, &smp_alt_modules, next) {
442 if (mod->text > text_end || mod->text_end < text_start)
443 continue;
444 for (poff = mod->locks; poff < mod->locks_end; poff++) {
445 const u8 *ptr = (const u8 *)poff + *poff;
447 if (text_start <= ptr && text_end > ptr)
448 return 1;
452 return 0;
454 #endif
456 #ifdef CONFIG_PARAVIRT
457 void __init_or_module apply_paravirt(struct paravirt_patch_site *start,
458 struct paravirt_patch_site *end)
460 struct paravirt_patch_site *p;
461 char insnbuf[MAX_PATCH_LEN];
463 if (noreplace_paravirt)
464 return;
466 for (p = start; p < end; p++) {
467 unsigned int used;
469 BUG_ON(p->len > MAX_PATCH_LEN);
470 /* prep the buffer with the original instructions */
471 memcpy(insnbuf, p->instr, p->len);
472 used = pv_init_ops.patch(p->instrtype, p->clobbers, insnbuf,
473 (unsigned long)p->instr, p->len);
475 BUG_ON(used > p->len);
477 /* Pad the rest with nops */
478 add_nops(insnbuf + used, p->len - used);
479 text_poke_early(p->instr, insnbuf, p->len);
482 extern struct paravirt_patch_site __start_parainstructions[],
483 __stop_parainstructions[];
484 #endif /* CONFIG_PARAVIRT */
486 void __init alternative_instructions(void)
488 /* The patching is not fully atomic, so try to avoid local interruptions
489 that might execute the to be patched code.
490 Other CPUs are not running. */
491 stop_nmi();
494 * Don't stop machine check exceptions while patching.
495 * MCEs only happen when something got corrupted and in this
496 * case we must do something about the corruption.
497 * Ignoring it is worse than a unlikely patching race.
498 * Also machine checks tend to be broadcast and if one CPU
499 * goes into machine check the others follow quickly, so we don't
500 * expect a machine check to cause undue problems during to code
501 * patching.
504 apply_alternatives(__alt_instructions, __alt_instructions_end);
506 #ifdef CONFIG_SMP
507 /* Patch to UP if other cpus not imminent. */
508 if (!noreplace_smp && (num_present_cpus() == 1 || setup_max_cpus <= 1)) {
509 uniproc_patched = true;
510 alternatives_smp_module_add(NULL, "core kernel",
511 __smp_locks, __smp_locks_end,
512 _text, _etext);
515 if (!uniproc_patched || num_possible_cpus() == 1)
516 free_init_pages("SMP alternatives",
517 (unsigned long)__smp_locks,
518 (unsigned long)__smp_locks_end);
519 #endif
521 apply_paravirt(__parainstructions, __parainstructions_end);
523 restart_nmi();
527 * text_poke_early - Update instructions on a live kernel at boot time
528 * @addr: address to modify
529 * @opcode: source of the copy
530 * @len: length to copy
532 * When you use this code to patch more than one byte of an instruction
533 * you need to make sure that other CPUs cannot execute this code in parallel.
534 * Also no thread must be currently preempted in the middle of these
535 * instructions. And on the local CPU you need to be protected again NMI or MCE
536 * handlers seeing an inconsistent instruction while you patch.
538 void *__init_or_module text_poke_early(void *addr, const void *opcode,
539 size_t len)
541 unsigned long flags;
542 local_irq_save(flags);
543 memcpy(addr, opcode, len);
544 sync_core();
545 local_irq_restore(flags);
546 /* Could also do a CLFLUSH here to speed up CPU recovery; but
547 that causes hangs on some VIA CPUs. */
548 return addr;
552 * text_poke - Update instructions on a live kernel
553 * @addr: address to modify
554 * @opcode: source of the copy
555 * @len: length to copy
557 * Only atomic text poke/set should be allowed when not doing early patching.
558 * It means the size must be writable atomically and the address must be aligned
559 * in a way that permits an atomic write. It also makes sure we fit on a single
560 * page.
562 * Note: Must be called under text_mutex.
564 void *__kprobes text_poke(void *addr, const void *opcode, size_t len)
566 unsigned long flags;
567 char *vaddr;
568 struct page *pages[2];
569 int i;
571 if (!core_kernel_text((unsigned long)addr)) {
572 pages[0] = vmalloc_to_page(addr);
573 pages[1] = vmalloc_to_page(addr + PAGE_SIZE);
574 } else {
575 pages[0] = virt_to_page(addr);
576 WARN_ON(!PageReserved(pages[0]));
577 pages[1] = virt_to_page(addr + PAGE_SIZE);
579 BUG_ON(!pages[0]);
580 local_irq_save(flags);
581 set_fixmap(FIX_TEXT_POKE0, page_to_phys(pages[0]));
582 if (pages[1])
583 set_fixmap(FIX_TEXT_POKE1, page_to_phys(pages[1]));
584 vaddr = (char *)fix_to_virt(FIX_TEXT_POKE0);
585 memcpy(&vaddr[(unsigned long)addr & ~PAGE_MASK], opcode, len);
586 clear_fixmap(FIX_TEXT_POKE0);
587 if (pages[1])
588 clear_fixmap(FIX_TEXT_POKE1);
589 local_flush_tlb();
590 sync_core();
591 /* Could also do a CLFLUSH here to speed up CPU recovery; but
592 that causes hangs on some VIA CPUs. */
593 for (i = 0; i < len; i++)
594 BUG_ON(((char *)addr)[i] != ((char *)opcode)[i]);
595 local_irq_restore(flags);
596 return addr;
600 * Cross-modifying kernel text with stop_machine().
601 * This code originally comes from immediate value.
603 static atomic_t stop_machine_first;
604 static int wrote_text;
606 struct text_poke_params {
607 struct text_poke_param *params;
608 int nparams;
611 static int __kprobes stop_machine_text_poke(void *data)
613 struct text_poke_params *tpp = data;
614 struct text_poke_param *p;
615 int i;
617 if (atomic_xchg(&stop_machine_first, 0)) {
618 for (i = 0; i < tpp->nparams; i++) {
619 p = &tpp->params[i];
620 text_poke(p->addr, p->opcode, p->len);
622 smp_wmb(); /* Make sure other cpus see that this has run */
623 wrote_text = 1;
624 } else {
625 while (!wrote_text)
626 cpu_relax();
627 smp_mb(); /* Load wrote_text before following execution */
630 for (i = 0; i < tpp->nparams; i++) {
631 p = &tpp->params[i];
632 flush_icache_range((unsigned long)p->addr,
633 (unsigned long)p->addr + p->len);
636 * Intel Archiecture Software Developer's Manual section 7.1.3 specifies
637 * that a core serializing instruction such as "cpuid" should be
638 * executed on _each_ core before the new instruction is made visible.
640 sync_core();
641 return 0;
645 * text_poke_smp - Update instructions on a live kernel on SMP
646 * @addr: address to modify
647 * @opcode: source of the copy
648 * @len: length to copy
650 * Modify multi-byte instruction by using stop_machine() on SMP. This allows
651 * user to poke/set multi-byte text on SMP. Only non-NMI/MCE code modifying
652 * should be allowed, since stop_machine() does _not_ protect code against
653 * NMI and MCE.
655 * Note: Must be called under get_online_cpus() and text_mutex.
657 void *__kprobes text_poke_smp(void *addr, const void *opcode, size_t len)
659 struct text_poke_params tpp;
660 struct text_poke_param p;
662 p.addr = addr;
663 p.opcode = opcode;
664 p.len = len;
665 tpp.params = &p;
666 tpp.nparams = 1;
667 atomic_set(&stop_machine_first, 1);
668 wrote_text = 0;
669 /* Use __stop_machine() because the caller already got online_cpus. */
670 __stop_machine(stop_machine_text_poke, (void *)&tpp, cpu_online_mask);
671 return addr;
675 * text_poke_smp_batch - Update instructions on a live kernel on SMP
676 * @params: an array of text_poke parameters
677 * @n: the number of elements in params.
679 * Modify multi-byte instruction by using stop_machine() on SMP. Since the
680 * stop_machine() is heavy task, it is better to aggregate text_poke requests
681 * and do it once if possible.
683 * Note: Must be called under get_online_cpus() and text_mutex.
685 void __kprobes text_poke_smp_batch(struct text_poke_param *params, int n)
687 struct text_poke_params tpp = {.params = params, .nparams = n};
689 atomic_set(&stop_machine_first, 1);
690 wrote_text = 0;
691 __stop_machine(stop_machine_text_poke, (void *)&tpp, cpu_online_mask);