2 * This file is subject to the terms and conditions of the GNU General Public
3 * License. See the file "COPYING" in the main directory of this archive
6 * Copyright (C) 1995 - 2000 by Ralf Baechle
8 #include <linux/context_tracking.h>
9 #include <linux/signal.h>
10 #include <linux/sched.h>
11 #include <linux/interrupt.h>
12 #include <linux/kernel.h>
13 #include <linux/errno.h>
14 #include <linux/string.h>
15 #include <linux/types.h>
16 #include <linux/ptrace.h>
17 #include <linux/ratelimit.h>
18 #include <linux/mman.h>
20 #include <linux/smp.h>
21 #include <linux/module.h>
22 #include <linux/kprobes.h>
23 #include <linux/perf_event.h>
24 #include <linux/uaccess.h>
26 #include <asm/branch.h>
27 #include <asm/mmu_context.h>
28 #include <asm/ptrace.h>
29 #include <asm/highmem.h> /* For VMALLOC_END */
30 #include <linux/kdebug.h>
32 int show_unhandled_signals = 1;
35 * This routine handles page faults. It determines the address,
36 * and the problem, and then passes it off to one of the appropriate
39 static void __kprobes __do_page_fault(struct pt_regs *regs, unsigned long write,
40 unsigned long address)
42 struct vm_area_struct * vma = NULL;
43 struct task_struct *tsk = current;
44 struct mm_struct *mm = tsk->mm;
45 const int field = sizeof(unsigned long) * 2;
48 unsigned int flags = FAULT_FLAG_ALLOW_RETRY | FAULT_FLAG_KILLABLE;
50 static DEFINE_RATELIMIT_STATE(ratelimit_state, 5 * HZ, 10);
53 printk("Cpu%d[%s:%d:%0*lx:%ld:%0*lx]\n", raw_smp_processor_id(),
54 current->comm, current->pid, field, address, write,
55 field, regs->cp0_epc);
60 * This is to notify the fault handler of the kprobes.
62 if (notify_die(DIE_PAGE_FAULT, "page fault", regs, -1,
63 current->thread.trap_nr, SIGSEGV) == NOTIFY_STOP)
67 info.si_code = SEGV_MAPERR;
70 * We fault-in kernel-space virtual memory on-demand. The
71 * 'reference' page table is init_mm.pgd.
73 * NOTE! We MUST NOT take any locks for this case. We may
74 * be in an interrupt or a critical region, and should
75 * only copy the information from the master page table,
79 # define VMALLOC_FAULT_TARGET no_context
81 # define VMALLOC_FAULT_TARGET vmalloc_fault
84 if (unlikely(address >= VMALLOC_START && address <= VMALLOC_END))
85 goto VMALLOC_FAULT_TARGET;
87 if (unlikely(address >= MODULE_START && address < MODULE_END))
88 goto VMALLOC_FAULT_TARGET;
92 * If we're in an interrupt or have no user
93 * context, we must not take the fault..
95 if (faulthandler_disabled() || !mm)
96 goto bad_area_nosemaphore;
99 flags |= FAULT_FLAG_USER;
101 down_read(&mm->mmap_sem);
102 vma = find_vma(mm, address);
105 if (vma->vm_start <= address)
107 if (!(vma->vm_flags & VM_GROWSDOWN))
109 if (expand_stack(vma, address))
112 * Ok, we have a good vm_area for this memory access, so
116 info.si_code = SEGV_ACCERR;
119 if (!(vma->vm_flags & VM_WRITE))
121 flags |= FAULT_FLAG_WRITE;
124 if (address == regs->cp0_epc && !(vma->vm_flags & VM_EXEC)) {
126 pr_notice("Cpu%d[%s:%d:%0*lx:%ld:%0*lx] XI violation\n",
127 raw_smp_processor_id(),
128 current->comm, current->pid,
129 field, address, write,
130 field, regs->cp0_epc);
134 if (!(vma->vm_flags & VM_READ) &&
135 exception_epc(regs) != address) {
137 pr_notice("Cpu%d[%s:%d:%0*lx:%ld:%0*lx] RI violation\n",
138 raw_smp_processor_id(),
139 current->comm, current->pid,
140 field, address, write,
141 field, regs->cp0_epc);
146 if (!(vma->vm_flags & (VM_READ | VM_WRITE | VM_EXEC)))
152 * If for any reason at all we couldn't handle the fault,
153 * make sure we exit gracefully rather than endlessly redo
156 fault = handle_mm_fault(mm, vma, address, flags);
158 if ((fault & VM_FAULT_RETRY) && fatal_signal_pending(current))
161 perf_sw_event(PERF_COUNT_SW_PAGE_FAULTS, 1, regs, address);
162 if (unlikely(fault & VM_FAULT_ERROR)) {
163 if (fault & VM_FAULT_OOM)
165 else if (fault & VM_FAULT_SIGSEGV)
167 else if (fault & VM_FAULT_SIGBUS)
171 if (flags & FAULT_FLAG_ALLOW_RETRY) {
172 if (fault & VM_FAULT_MAJOR) {
173 perf_sw_event(PERF_COUNT_SW_PAGE_FAULTS_MAJ, 1,
177 perf_sw_event(PERF_COUNT_SW_PAGE_FAULTS_MIN, 1,
181 if (fault & VM_FAULT_RETRY) {
182 flags &= ~FAULT_FLAG_ALLOW_RETRY;
183 flags |= FAULT_FLAG_TRIED;
186 * No need to up_read(&mm->mmap_sem) as we would
187 * have already released it in __lock_page_or_retry
195 up_read(&mm->mmap_sem);
199 * Something tried to access memory that isn't in our memory map..
200 * Fix it, but check if it's kernel or user first..
203 up_read(&mm->mmap_sem);
205 bad_area_nosemaphore:
206 /* User mode accesses just cause a SIGSEGV */
207 if (user_mode(regs)) {
208 tsk->thread.cp0_badvaddr = address;
209 tsk->thread.error_code = write;
210 if (show_unhandled_signals &&
211 unhandled_signal(tsk, SIGSEGV) &&
212 __ratelimit(&ratelimit_state)) {
213 pr_info("\ndo_page_fault(): sending SIGSEGV to %s for invalid %s %0*lx",
215 write ? "write access to" : "read access from",
217 pr_info("epc = %0*lx in", field,
218 (unsigned long) regs->cp0_epc);
219 print_vma_addr(" ", regs->cp0_epc);
220 pr_info("ra = %0*lx in", field,
221 (unsigned long) regs->regs[31]);
222 print_vma_addr(" ", regs->regs[31]);
225 current->thread.trap_nr = (regs->cp0_cause >> 2) & 0x1f;
226 info.si_signo = SIGSEGV;
228 /* info.si_code has been set above */
229 info.si_addr = (void __user *) address;
230 force_sig_info(SIGSEGV, &info, tsk);
235 /* Are we prepared to handle this kernel fault? */
236 if (fixup_exception(regs)) {
237 current->thread.cp0_baduaddr = address;
242 * Oops. The kernel tried to access some bad page. We'll have to
243 * terminate things with extreme prejudice.
247 printk(KERN_ALERT "CPU %d Unable to handle kernel paging request at "
248 "virtual address %0*lx, epc == %0*lx, ra == %0*lx\n",
249 raw_smp_processor_id(), field, address, field, regs->cp0_epc,
250 field, regs->regs[31]);
255 * We ran out of memory, call the OOM killer, and return the userspace
256 * (which will retry the fault, or kill us if we got oom-killed).
258 up_read(&mm->mmap_sem);
259 if (!user_mode(regs))
261 pagefault_out_of_memory();
265 up_read(&mm->mmap_sem);
267 /* Kernel mode? Handle exceptions or die */
268 if (!user_mode(regs))
272 * Send a sigbus, regardless of whether we were in kernel
276 printk("do_page_fault() #3: sending SIGBUS to %s for "
277 "invalid %s\n%0*lx (epc == %0*lx, ra == %0*lx)\n",
279 write ? "write access to" : "read access from",
281 field, (unsigned long) regs->cp0_epc,
282 field, (unsigned long) regs->regs[31]);
284 current->thread.trap_nr = (regs->cp0_cause >> 2) & 0x1f;
285 tsk->thread.cp0_badvaddr = address;
286 info.si_signo = SIGBUS;
288 info.si_code = BUS_ADRERR;
289 info.si_addr = (void __user *) address;
290 force_sig_info(SIGBUS, &info, tsk);
297 * Synchronize this task's top level page-table
298 * with the 'reference' page table.
300 * Do _not_ use "tsk" here. We might be inside
301 * an interrupt in the middle of a task switch..
303 int offset = __pgd_offset(address);
309 pgd = (pgd_t *) pgd_current[raw_smp_processor_id()] + offset;
310 pgd_k = init_mm.pgd + offset;
312 if (!pgd_present(*pgd_k))
314 set_pgd(pgd, *pgd_k);
316 pud = pud_offset(pgd, address);
317 pud_k = pud_offset(pgd_k, address);
318 if (!pud_present(*pud_k))
321 pmd = pmd_offset(pud, address);
322 pmd_k = pmd_offset(pud_k, address);
323 if (!pmd_present(*pmd_k))
325 set_pmd(pmd, *pmd_k);
327 pte_k = pte_offset_kernel(pmd_k, address);
328 if (!pte_present(*pte_k))
335 asmlinkage void __kprobes do_page_fault(struct pt_regs *regs,
336 unsigned long write, unsigned long address)
338 enum ctx_state prev_state;
340 prev_state = exception_enter();
341 __do_page_fault(regs, write, address);
342 exception_exit(prev_state);
projects / linux-drm-fsl-dcu.git / blob