2 * Copyright (C) 2014 ARM Limited
4 * This program is free software; you can redistribute it and/or modify
5 * it under the terms of the GNU General Public License version 2 as
6 * published by the Free Software Foundation.
10 #include <linux/init.h>
11 #include <linux/list.h>
12 #include <linux/perf_event.h>
13 #include <linux/sched.h>
14 #include <linux/slab.h>
15 #include <linux/sysctl.h>
17 #include <asm/cpufeature.h>
19 #include <asm/sysreg.h>
20 #include <asm/system_misc.h>
21 #include <asm/traps.h>
22 #include <asm/kprobes.h>
23 #include <linux/uaccess.h>
24 #include <asm/cpufeature.h>
26 #define CREATE_TRACE_POINTS
27 #include "trace-events-emulation.h"
30 * The runtime support for deprecated instruction support can be in one of
31 * following three states -
34 * 1 = emulate (software emulation)
35 * 2 = hw (supported in hardware)
37 enum insn_emulation_mode {
43 enum legacy_insn_status {
48 struct insn_emulation_ops {
50 enum legacy_insn_status status;
51 struct undef_hook *hooks;
52 int (*set_hw_mode)(bool enable);
55 struct insn_emulation {
56 struct list_head node;
57 struct insn_emulation_ops *ops;
63 static LIST_HEAD(insn_emulation);
64 static int nr_insn_emulated __initdata;
65 static DEFINE_RAW_SPINLOCK(insn_emulation_lock);
67 static void register_emulation_hooks(struct insn_emulation_ops *ops)
69 struct undef_hook *hook;
73 for (hook = ops->hooks; hook->instr_mask; hook++)
74 register_undef_hook(hook);
76 pr_notice("Registered %s emulation handler\n", ops->name);
79 static void remove_emulation_hooks(struct insn_emulation_ops *ops)
81 struct undef_hook *hook;
85 for (hook = ops->hooks; hook->instr_mask; hook++)
86 unregister_undef_hook(hook);
88 pr_notice("Removed %s emulation handler\n", ops->name);
91 static void enable_insn_hw_mode(void *data)
93 struct insn_emulation *insn = (struct insn_emulation *)data;
94 if (insn->ops->set_hw_mode)
95 insn->ops->set_hw_mode(true);
98 static void disable_insn_hw_mode(void *data)
100 struct insn_emulation *insn = (struct insn_emulation *)data;
101 if (insn->ops->set_hw_mode)
102 insn->ops->set_hw_mode(false);
105 /* Run set_hw_mode(mode) on all active CPUs */
106 static int run_all_cpu_set_hw_mode(struct insn_emulation *insn, bool enable)
108 if (!insn->ops->set_hw_mode)
111 on_each_cpu(enable_insn_hw_mode, (void *)insn, true);
113 on_each_cpu(disable_insn_hw_mode, (void *)insn, true);
118 * Run set_hw_mode for all insns on a starting CPU.
120 * 0 - If all the hooks ran successfully.
121 * -EINVAL - At least one hook is not supported by the CPU.
123 static int run_all_insn_set_hw_mode(unsigned int cpu)
127 struct insn_emulation *insn;
129 raw_spin_lock_irqsave(&insn_emulation_lock, flags);
130 list_for_each_entry(insn, &insn_emulation, node) {
131 bool enable = (insn->current_mode == INSN_HW);
132 if (insn->ops->set_hw_mode && insn->ops->set_hw_mode(enable)) {
133 pr_warn("CPU[%u] cannot support the emulation of %s",
134 cpu, insn->ops->name);
138 raw_spin_unlock_irqrestore(&insn_emulation_lock, flags);
142 static int update_insn_emulation_mode(struct insn_emulation *insn,
143 enum insn_emulation_mode prev)
148 case INSN_UNDEF: /* Nothing to be done */
151 remove_emulation_hooks(insn->ops);
154 if (!run_all_cpu_set_hw_mode(insn, false))
155 pr_notice("Disabled %s support\n", insn->ops->name);
159 switch (insn->current_mode) {
163 register_emulation_hooks(insn->ops);
166 ret = run_all_cpu_set_hw_mode(insn, true);
168 pr_notice("Enabled %s support\n", insn->ops->name);
175 static void __init register_insn_emulation(struct insn_emulation_ops *ops)
178 struct insn_emulation *insn;
180 insn = kzalloc(sizeof(*insn), GFP_KERNEL);
182 insn->min = INSN_UNDEF;
184 switch (ops->status) {
185 case INSN_DEPRECATED:
186 insn->current_mode = INSN_EMULATE;
187 /* Disable the HW mode if it was turned on at early boot time */
188 run_all_cpu_set_hw_mode(insn, false);
192 insn->current_mode = INSN_UNDEF;
193 insn->max = INSN_EMULATE;
197 raw_spin_lock_irqsave(&insn_emulation_lock, flags);
198 list_add(&insn->node, &insn_emulation);
200 raw_spin_unlock_irqrestore(&insn_emulation_lock, flags);
202 /* Register any handlers if required */
203 update_insn_emulation_mode(insn, INSN_UNDEF);
206 static int emulation_proc_handler(struct ctl_table *table, int write,
207 void __user *buffer, size_t *lenp,
211 struct insn_emulation *insn = (struct insn_emulation *) table->data;
212 enum insn_emulation_mode prev_mode = insn->current_mode;
214 table->data = &insn->current_mode;
215 ret = proc_dointvec_minmax(table, write, buffer, lenp, ppos);
217 if (ret || !write || prev_mode == insn->current_mode)
220 ret = update_insn_emulation_mode(insn, prev_mode);
222 /* Mode change failed, revert to previous mode. */
223 insn->current_mode = prev_mode;
224 update_insn_emulation_mode(insn, INSN_UNDEF);
231 static void __init register_insn_emulation_sysctl(void)
235 struct insn_emulation *insn;
236 struct ctl_table *insns_sysctl, *sysctl;
238 insns_sysctl = kzalloc(sizeof(*sysctl) * (nr_insn_emulated + 1),
241 raw_spin_lock_irqsave(&insn_emulation_lock, flags);
242 list_for_each_entry(insn, &insn_emulation, node) {
243 sysctl = &insns_sysctl[i];
246 sysctl->maxlen = sizeof(int);
248 sysctl->procname = insn->ops->name;
250 sysctl->extra1 = &insn->min;
251 sysctl->extra2 = &insn->max;
252 sysctl->proc_handler = emulation_proc_handler;
255 raw_spin_unlock_irqrestore(&insn_emulation_lock, flags);
257 register_sysctl("abi", insns_sysctl);
261 * Implement emulation of the SWP/SWPB instructions using load-exclusive and
264 * Syntax of SWP{B} instruction: SWP{B}<c> <Rt>, <Rt2>, [<Rn>]
265 * Where: Rt = destination
271 * Error-checking SWP macros implemented using ldxr{b}/stxr{b}
274 /* Arbitrary constant to ensure forward-progress of the LL/SC loop */
275 #define __SWP_LL_SC_LOOPS 4
277 #define __user_swpX_asm(data, addr, res, temp, temp2, B) \
280 __asm__ __volatile__( \
282 "0: ldxr"B" %w2, [%4]\n" \
283 "1: stxr"B" %w0, %w1, [%4]\n" \
285 " sub %w3, %w3, #1\n" \
292 " .pushsection .fixup,\"ax\"\n" \
294 "4: mov %w0, %w6\n" \
297 _ASM_EXTABLE(0b, 4b) \
298 _ASM_EXTABLE(1b, 4b) \
299 : "=&r" (res), "+r" (data), "=&r" (temp), "=&r" (temp2) \
300 : "r" ((unsigned long)addr), "i" (-EAGAIN), \
302 "i" (__SWP_LL_SC_LOOPS) \
307 #define __user_swp_asm(data, addr, res, temp, temp2) \
308 __user_swpX_asm(data, addr, res, temp, temp2, "")
309 #define __user_swpb_asm(data, addr, res, temp, temp2) \
310 __user_swpX_asm(data, addr, res, temp, temp2, "b")
313 * Bit 22 of the instruction encoding distinguishes between
314 * the SWP and SWPB variants (bit set means SWPB).
316 #define TYPE_SWPB (1 << 22)
318 static int emulate_swpX(unsigned int address, unsigned int *data,
321 unsigned int res = 0;
323 if ((type != TYPE_SWPB) && (address & 0x3)) {
324 /* SWP to unaligned address not permitted */
325 pr_debug("SWP instruction on unaligned pointer!\n");
330 unsigned long temp, temp2;
332 if (type == TYPE_SWPB)
333 __user_swpb_asm(*data, address, res, temp, temp2);
335 __user_swp_asm(*data, address, res, temp, temp2);
337 if (likely(res != -EAGAIN) || signal_pending(current))
346 #define ARM_OPCODE_CONDTEST_FAIL 0
347 #define ARM_OPCODE_CONDTEST_PASS 1
348 #define ARM_OPCODE_CONDTEST_UNCOND 2
350 #define ARM_OPCODE_CONDITION_UNCOND 0xf
352 static unsigned int __kprobes aarch32_check_condition(u32 opcode, u32 psr)
354 u32 cc_bits = opcode >> 28;
356 if (cc_bits != ARM_OPCODE_CONDITION_UNCOND) {
357 if ((*aarch32_opcode_cond_checks[cc_bits])(psr))
358 return ARM_OPCODE_CONDTEST_PASS;
360 return ARM_OPCODE_CONDTEST_FAIL;
362 return ARM_OPCODE_CONDTEST_UNCOND;
366 * swp_handler logs the id of calling process, dissects the instruction, sanity
367 * checks the memory location, calls emulate_swpX for the actual operation and
368 * deals with fixup/error handling before returning
370 static int swp_handler(struct pt_regs *regs, u32 instr)
372 u32 destreg, data, type, address = 0;
373 const void __user *user_ptr;
374 int rn, rt2, res = 0;
376 perf_sw_event(PERF_COUNT_SW_EMULATION_FAULTS, 1, regs, regs->pc);
378 type = instr & TYPE_SWPB;
380 switch (aarch32_check_condition(instr, regs->pstate)) {
381 case ARM_OPCODE_CONDTEST_PASS:
383 case ARM_OPCODE_CONDTEST_FAIL:
384 /* Condition failed - return to next instruction */
386 case ARM_OPCODE_CONDTEST_UNCOND:
387 /* If unconditional encoding - not a SWP, undef */
393 rn = aarch32_insn_extract_reg_num(instr, A32_RN_OFFSET);
394 rt2 = aarch32_insn_extract_reg_num(instr, A32_RT2_OFFSET);
396 address = (u32)regs->user_regs.regs[rn];
397 data = (u32)regs->user_regs.regs[rt2];
398 destreg = aarch32_insn_extract_reg_num(instr, A32_RT_OFFSET);
400 pr_debug("addr in r%d->0x%08x, dest is r%d, source in r%d->0x%08x)\n",
401 rn, address, destreg,
402 aarch32_insn_extract_reg_num(instr, A32_RT2_OFFSET), data);
404 /* Check access in reasonable access range for both SWP and SWPB */
405 user_ptr = (const void __user *)(unsigned long)(address & ~3);
406 if (!access_ok(VERIFY_WRITE, user_ptr, 4)) {
407 pr_debug("SWP{B} emulation: access to 0x%08x not allowed!\n",
412 res = emulate_swpX(address, &data, type);
416 regs->user_regs.regs[destreg] = data;
419 if (type == TYPE_SWPB)
420 trace_instruction_emulation("swpb", regs->pc);
422 trace_instruction_emulation("swp", regs->pc);
424 pr_warn_ratelimited("\"%s\" (%ld) uses obsolete SWP{B} instruction at 0x%llx\n",
425 current->comm, (unsigned long)current->pid, regs->pc);
427 arm64_skip_faulting_instruction(regs, 4);
431 pr_debug("SWP{B} emulation: access caused memory abort!\n");
432 arm64_notify_segfault(regs, address);
438 * Only emulate SWP/SWPB executed in ARM state/User mode.
439 * The kernel must be SWP free and SWP{B} does not exist in Thumb.
441 static struct undef_hook swp_hooks[] = {
443 .instr_mask = 0x0fb00ff0,
444 .instr_val = 0x01000090,
445 .pstate_mask = COMPAT_PSR_MODE_MASK,
446 .pstate_val = COMPAT_PSR_MODE_USR,
452 static struct insn_emulation_ops swp_ops = {
454 .status = INSN_OBSOLETE,
459 static int cp15barrier_handler(struct pt_regs *regs, u32 instr)
461 perf_sw_event(PERF_COUNT_SW_EMULATION_FAULTS, 1, regs, regs->pc);
463 switch (aarch32_check_condition(instr, regs->pstate)) {
464 case ARM_OPCODE_CONDTEST_PASS:
466 case ARM_OPCODE_CONDTEST_FAIL:
467 /* Condition failed - return to next instruction */
469 case ARM_OPCODE_CONDTEST_UNCOND:
470 /* If unconditional encoding - not a barrier instruction */
476 switch (aarch32_insn_mcr_extract_crm(instr)) {
479 * dmb - mcr p15, 0, Rt, c7, c10, 5
480 * dsb - mcr p15, 0, Rt, c7, c10, 4
482 if (aarch32_insn_mcr_extract_opc2(instr) == 5) {
484 trace_instruction_emulation(
485 "mcr p15, 0, Rt, c7, c10, 5 ; dmb", regs->pc);
488 trace_instruction_emulation(
489 "mcr p15, 0, Rt, c7, c10, 4 ; dsb", regs->pc);
494 * isb - mcr p15, 0, Rt, c7, c5, 4
496 * Taking an exception or returning from one acts as an
497 * instruction barrier. So no explicit barrier needed here.
499 trace_instruction_emulation(
500 "mcr p15, 0, Rt, c7, c5, 4 ; isb", regs->pc);
505 pr_warn_ratelimited("\"%s\" (%ld) uses deprecated CP15 Barrier instruction at 0x%llx\n",
506 current->comm, (unsigned long)current->pid, regs->pc);
508 arm64_skip_faulting_instruction(regs, 4);
512 static int cp15_barrier_set_hw_mode(bool enable)
515 config_sctlr_el1(0, SCTLR_EL1_CP15BEN);
517 config_sctlr_el1(SCTLR_EL1_CP15BEN, 0);
521 static struct undef_hook cp15_barrier_hooks[] = {
523 .instr_mask = 0x0fff0fdf,
524 .instr_val = 0x0e070f9a,
525 .pstate_mask = COMPAT_PSR_MODE_MASK,
526 .pstate_val = COMPAT_PSR_MODE_USR,
527 .fn = cp15barrier_handler,
530 .instr_mask = 0x0fff0fff,
531 .instr_val = 0x0e070f95,
532 .pstate_mask = COMPAT_PSR_MODE_MASK,
533 .pstate_val = COMPAT_PSR_MODE_USR,
534 .fn = cp15barrier_handler,
539 static struct insn_emulation_ops cp15_barrier_ops = {
540 .name = "cp15_barrier",
541 .status = INSN_DEPRECATED,
542 .hooks = cp15_barrier_hooks,
543 .set_hw_mode = cp15_barrier_set_hw_mode,
546 static int setend_set_hw_mode(bool enable)
548 if (!cpu_supports_mixed_endian_el0())
552 config_sctlr_el1(SCTLR_EL1_SED, 0);
554 config_sctlr_el1(0, SCTLR_EL1_SED);
558 static int compat_setend_handler(struct pt_regs *regs, u32 big_endian)
562 perf_sw_event(PERF_COUNT_SW_EMULATION_FAULTS, 1, regs, regs->pc);
566 regs->pstate |= COMPAT_PSR_E_BIT;
569 regs->pstate &= ~COMPAT_PSR_E_BIT;
572 trace_instruction_emulation(insn, regs->pc);
573 pr_warn_ratelimited("\"%s\" (%ld) uses deprecated setend instruction at 0x%llx\n",
574 current->comm, (unsigned long)current->pid, regs->pc);
579 static int a32_setend_handler(struct pt_regs *regs, u32 instr)
581 int rc = compat_setend_handler(regs, (instr >> 9) & 1);
582 arm64_skip_faulting_instruction(regs, 4);
586 static int t16_setend_handler(struct pt_regs *regs, u32 instr)
588 int rc = compat_setend_handler(regs, (instr >> 3) & 1);
589 arm64_skip_faulting_instruction(regs, 2);
593 static struct undef_hook setend_hooks[] = {
595 .instr_mask = 0xfffffdff,
596 .instr_val = 0xf1010000,
597 .pstate_mask = COMPAT_PSR_MODE_MASK,
598 .pstate_val = COMPAT_PSR_MODE_USR,
599 .fn = a32_setend_handler,
603 .instr_mask = 0x0000fff7,
604 .instr_val = 0x0000b650,
605 .pstate_mask = (COMPAT_PSR_T_BIT | COMPAT_PSR_MODE_MASK),
606 .pstate_val = (COMPAT_PSR_T_BIT | COMPAT_PSR_MODE_USR),
607 .fn = t16_setend_handler,
612 static struct insn_emulation_ops setend_ops = {
614 .status = INSN_DEPRECATED,
615 .hooks = setend_hooks,
616 .set_hw_mode = setend_set_hw_mode,
620 * Invoked as late_initcall, since not needed before init spawned.
622 static int __init armv8_deprecated_init(void)
624 if (IS_ENABLED(CONFIG_SWP_EMULATION))
625 register_insn_emulation(&swp_ops);
627 if (IS_ENABLED(CONFIG_CP15_BARRIER_EMULATION))
628 register_insn_emulation(&cp15_barrier_ops);
630 if (IS_ENABLED(CONFIG_SETEND_EMULATION)) {
631 if(system_supports_mixed_endian_el0())
632 register_insn_emulation(&setend_ops);
634 pr_info("setend instruction emulation is not supported on this system\n");
637 cpuhp_setup_state_nocalls(CPUHP_AP_ARM64_ISNDEP_STARTING,
638 "arm64/isndep:starting",
639 run_all_insn_set_hw_mode, NULL);
640 register_insn_emulation_sysctl();
645 core_initcall(armv8_deprecated_init);
projects / platform / kernel / linux-rpi.git / blob