// SPDX-License-Identifier: GPL-2.0 /* * Code for replacing ftrace calls with jumps. * * Copyright (C) 2007-2008 Steven Rostedt * * Thanks goes out to P.A. Semi, Inc for supplying me with a PPC64 box. * * Added function graph tracer code, taken from x86 that was written * by Frederic Weisbecker, and ported to PPC by Steven Rostedt. * */ #define pr_fmt(fmt) "ftrace-powerpc: " fmt #include #include #include #include #include #include #include #include #include #include #include #include #include #define NUM_FTRACE_TRAMPS 2 static unsigned long ftrace_tramps[NUM_FTRACE_TRAMPS]; static ppc_inst_t ftrace_create_branch_inst(unsigned long ip, unsigned long addr, int link) { ppc_inst_t op; WARN_ON(!is_offset_in_branch_range(addr - ip)); create_branch(&op, (u32 *)ip, addr, link ? BRANCH_SET_LINK : 0); return op; } static ppc_inst_t ftrace_call_replace(unsigned long ip, unsigned long addr, int link) { ppc_inst_t op; addr = ppc_function_entry((void *)addr); /* if (link) set op to 'bl' else 'b' */ create_branch(&op, (u32 *)ip, addr, link ? BRANCH_SET_LINK : 0); return op; } static inline int ftrace_read_inst(unsigned long ip, ppc_inst_t *op) { if (copy_inst_from_kernel_nofault(op, (void *)ip)) { pr_err("0x%lx: fetching instruction failed\n", ip); return -EFAULT; } return 0; } static inline int ftrace_validate_inst(unsigned long ip, ppc_inst_t inst) { ppc_inst_t op; int ret; ret = ftrace_read_inst(ip, &op); if (!ret && !ppc_inst_equal(op, inst)) { pr_err("0x%lx: expected (%08lx) != found (%08lx)\n", ip, ppc_inst_as_ulong(inst), ppc_inst_as_ulong(op)); ret = -EINVAL; } return ret; } static inline int ftrace_modify_code(unsigned long ip, ppc_inst_t old, ppc_inst_t new) { int ret = ftrace_validate_inst(ip, old); if (!ret) ret = patch_instruction((u32 *)ip, new); return ret; } /* * Helper functions that are the same for both PPC64 and PPC32. */ static int test_24bit_addr(unsigned long ip, unsigned long addr) { addr = ppc_function_entry((void *)addr); return is_offset_in_branch_range(addr - ip); } static int is_bl_op(ppc_inst_t op) { return (ppc_inst_val(op) & ~PPC_LI_MASK) == PPC_RAW_BL(0); } static unsigned long find_bl_target(unsigned long ip, ppc_inst_t op) { int offset; offset = PPC_LI(ppc_inst_val(op)); /* make it signed */ if (offset & 0x02000000) offset |= 0xfe000000; return ip + (long)offset; } static unsigned long find_ftrace_tramp(unsigned long ip) { int i; for (i = 0; i < NUM_FTRACE_TRAMPS; i++) if (!ftrace_tramps[i]) continue; else if (is_offset_in_branch_range(ftrace_tramps[i] - ip)) return ftrace_tramps[i]; return 0; } #ifdef CONFIG_MODULES /* * Examine the existing instructions for __ftrace_make_call. * They should effectively be a NOP, and follow formal constraints, * depending on the ABI. Return false if they don't. */ static bool expected_nop_sequence(void *ip, ppc_inst_t op0, ppc_inst_t op1) { if (IS_ENABLED(CONFIG_DYNAMIC_FTRACE_WITH_REGS)) return ppc_inst_equal(op0, ppc_inst(PPC_RAW_NOP())); else return ppc_inst_equal(op0, ppc_inst(PPC_RAW_BRANCH(8))) && ppc_inst_equal(op1, ppc_inst(PPC_INST_LD_TOC)); } static int __ftrace_make_call(struct dyn_ftrace *rec, unsigned long addr) { ppc_inst_t op[2]; void *ip = (void *)rec->ip; unsigned long entry, ptr, tramp; struct module *mod = rec->arch.mod; /* read where this goes */ if (copy_inst_from_kernel_nofault(op, ip)) return -EFAULT; if (!IS_ENABLED(CONFIG_DYNAMIC_FTRACE_WITH_REGS) && copy_inst_from_kernel_nofault(op + 1, ip + 4)) return -EFAULT; if (!expected_nop_sequence(ip, op[0], op[1])) { pr_err("Unexpected call sequence at %p: %08lx %08lx\n", ip, ppc_inst_as_ulong(op[0]), ppc_inst_as_ulong(op[1])); return -EINVAL; } /* If we never set up ftrace trampoline(s), then bail */ if (!mod->arch.tramp || (IS_ENABLED(CONFIG_DYNAMIC_FTRACE_WITH_REGS) && !mod->arch.tramp_regs)) { pr_err("No ftrace trampoline\n"); return -EINVAL; } if (IS_ENABLED(CONFIG_DYNAMIC_FTRACE_WITH_REGS) && rec->flags & FTRACE_FL_REGS) tramp = mod->arch.tramp_regs; else tramp = mod->arch.tramp; if (module_trampoline_target(mod, tramp, &ptr)) { pr_err("Failed to get trampoline target\n"); return -EFAULT; } pr_devel("trampoline target %lx", ptr); entry = ppc_global_function_entry((void *)addr); /* This should match what was called */ if (ptr != entry) { pr_err("addr %lx does not match expected %lx\n", ptr, entry); return -EINVAL; } if (patch_branch(ip, tramp, BRANCH_SET_LINK)) { pr_err("REL24 out of range!\n"); return -EINVAL; } return 0; } #else static int __ftrace_make_call(struct dyn_ftrace *rec, unsigned long addr) { return 0; } #endif /* CONFIG_MODULES */ static int __ftrace_make_call_kernel(struct dyn_ftrace *rec, unsigned long addr) { ppc_inst_t op; void *ip = (void *)rec->ip; unsigned long tramp, entry, ptr; /* Make sure we're being asked to patch branch to a known ftrace addr */ entry = ppc_global_function_entry((void *)ftrace_caller); ptr = ppc_global_function_entry((void *)addr); if (ptr != entry && IS_ENABLED(CONFIG_DYNAMIC_FTRACE_WITH_REGS)) entry = ppc_global_function_entry((void *)ftrace_regs_caller); if (ptr != entry) { pr_err("Unknown ftrace addr to patch: %ps\n", (void *)ptr); return -EINVAL; } /* Make sure we have a nop */ if (copy_inst_from_kernel_nofault(&op, ip)) { pr_err("Unable to read ftrace location %p\n", ip); return -EFAULT; } if (!ppc_inst_equal(op, ppc_inst(PPC_RAW_NOP()))) { pr_err("Unexpected call sequence at %p: %08lx\n", ip, ppc_inst_as_ulong(op)); return -EINVAL; } tramp = find_ftrace_tramp((unsigned long)ip); if (!tramp) { pr_err("No ftrace trampolines reachable from %ps\n", ip); return -EINVAL; } if (patch_branch(ip, tramp, BRANCH_SET_LINK)) { pr_err("Error patching branch to ftrace tramp!\n"); return -EINVAL; } return 0; } int ftrace_make_call(struct dyn_ftrace *rec, unsigned long addr) { unsigned long ip = rec->ip; ppc_inst_t old, new; /* * If the calling address is more that 24 bits away, * then we had to use a trampoline to make the call. * Otherwise just update the call site. */ if (test_24bit_addr(ip, addr)) { /* within range */ old = ppc_inst(PPC_RAW_NOP()); new = ftrace_call_replace(ip, addr, 1); return ftrace_modify_code(ip, old, new); } else if (core_kernel_text(ip)) { return __ftrace_make_call_kernel(rec, addr); } else if (!IS_ENABLED(CONFIG_MODULES)) { /* We should not get here without modules */ return -EINVAL; } /* * Out of range jumps are called from modules. * Being that we are converting from nop, it had better * already have a module defined. */ if (!rec->arch.mod) { pr_err("No module loaded\n"); return -EINVAL; } return __ftrace_make_call(rec, addr); } #ifdef CONFIG_DYNAMIC_FTRACE_WITH_REGS #ifdef CONFIG_MODULES static int __ftrace_modify_call(struct dyn_ftrace *rec, unsigned long old_addr, unsigned long addr) { ppc_inst_t op; unsigned long ip = rec->ip; unsigned long entry, ptr, tramp; struct module *mod = rec->arch.mod; /* If we never set up ftrace trampolines, then bail */ if (!mod->arch.tramp || !mod->arch.tramp_regs) { pr_err("No ftrace trampoline\n"); return -EINVAL; } /* read where this goes */ if (copy_inst_from_kernel_nofault(&op, (void *)ip)) { pr_err("Fetching opcode failed.\n"); return -EFAULT; } /* Make sure that this is still a 24bit jump */ if (!is_bl_op(op)) { pr_err("Not expected bl: opcode is %08lx\n", ppc_inst_as_ulong(op)); return -EINVAL; } /* lets find where the pointer goes */ tramp = find_bl_target(ip, op); entry = ppc_global_function_entry((void *)old_addr); pr_devel("ip:%lx jumps to %lx", ip, tramp); if (tramp != entry) { /* old_addr is not within range, so we must have used a trampoline */ if (module_trampoline_target(mod, tramp, &ptr)) { pr_err("Failed to get trampoline target\n"); return -EFAULT; } pr_devel("trampoline target %lx", ptr); /* This should match what was called */ if (ptr != entry) { pr_err("addr %lx does not match expected %lx\n", ptr, entry); return -EINVAL; } } /* The new target may be within range */ if (test_24bit_addr(ip, addr)) { /* within range */ if (patch_branch((u32 *)ip, addr, BRANCH_SET_LINK)) { pr_err("REL24 out of range!\n"); return -EINVAL; } return 0; } if (rec->flags & FTRACE_FL_REGS) tramp = mod->arch.tramp_regs; else tramp = mod->arch.tramp; if (module_trampoline_target(mod, tramp, &ptr)) { pr_err("Failed to get trampoline target\n"); return -EFAULT; } pr_devel("trampoline target %lx", ptr); entry = ppc_global_function_entry((void *)addr); /* This should match what was called */ if (ptr != entry) { pr_err("addr %lx does not match expected %lx\n", ptr, entry); return -EINVAL; } if (patch_branch((u32 *)ip, tramp, BRANCH_SET_LINK)) { pr_err("REL24 out of range!\n"); return -EINVAL; } return 0; } #else static int __ftrace_modify_call(struct dyn_ftrace *rec, unsigned long old_addr, unsigned long addr) { return 0; } #endif int ftrace_modify_call(struct dyn_ftrace *rec, unsigned long old_addr, unsigned long addr) { unsigned long ip = rec->ip; ppc_inst_t old, new; /* * If the calling address is more that 24 bits away, * then we had to use a trampoline to make the call. * Otherwise just update the call site. */ if (test_24bit_addr(ip, addr) && test_24bit_addr(ip, old_addr)) { /* within range */ old = ftrace_call_replace(ip, old_addr, 1); new = ftrace_call_replace(ip, addr, 1); return ftrace_modify_code(ip, old, new); } else if (core_kernel_text(ip)) { /* * We always patch out of range locations to go to the regs * variant, so there is nothing to do here */ return 0; } else if (!IS_ENABLED(CONFIG_MODULES)) { /* We should not get here without modules */ return -EINVAL; } /* * Out of range jumps are called from modules. */ if (!rec->arch.mod) { pr_err("No module loaded\n"); return -EINVAL; } return __ftrace_modify_call(rec, old_addr, addr); } #endif int ftrace_make_nop(struct module *mod, struct dyn_ftrace *rec, unsigned long addr) { unsigned long tramp, ip = rec->ip; ppc_inst_t old, new; /* Nop-out the ftrace location */ new = ppc_inst(PPC_RAW_NOP()); if (is_offset_in_branch_range(addr - ip)) { /* Within range */ old = ftrace_create_branch_inst(ip, addr, 1); return ftrace_modify_code(ip, old, new); } else if (core_kernel_text(ip)) { /* We would be branching to one of our ftrace tramps */ tramp = find_ftrace_tramp(ip); if (!tramp) { pr_err("0x%lx: No ftrace trampolines reachable\n", ip); return -EINVAL; } old = ftrace_create_branch_inst(ip, tramp, 1); return ftrace_modify_code(ip, old, new); } else if (IS_ENABLED(CONFIG_MODULES)) { /* Module code would be going to one of the module stubs */ if (!mod) mod = rec->arch.mod; tramp = (addr == (unsigned long)ftrace_caller ? mod->arch.tramp : mod->arch.tramp_regs); old = ftrace_create_branch_inst(ip, tramp, 1); return ftrace_modify_code(ip, old, new); } return -EINVAL; } int ftrace_init_nop(struct module *mod, struct dyn_ftrace *rec) { unsigned long addr, ip = rec->ip; ppc_inst_t old, new; int ret = 0; /* Verify instructions surrounding the ftrace location */ if (IS_ENABLED(CONFIG_PPC32)) { /* Expected sequence: 'mflr r0', 'stw r0,4(r1)', 'bl _mcount' */ ret = ftrace_validate_inst(ip - 8, ppc_inst(PPC_RAW_MFLR(_R0))); if (!ret) ret = ftrace_validate_inst(ip - 4, ppc_inst(PPC_RAW_STW(_R0, _R1, 4))); } else if (IS_ENABLED(CONFIG_MPROFILE_KERNEL)) { /* Expected sequence: 'mflr r0', ['std r0,16(r1)'], 'bl _mcount' */ ret = ftrace_read_inst(ip - 4, &old); if (!ret && !ppc_inst_equal(old, ppc_inst(PPC_RAW_MFLR(_R0)))) { ret = ftrace_validate_inst(ip - 8, ppc_inst(PPC_RAW_MFLR(_R0))); ret |= ftrace_validate_inst(ip - 4, ppc_inst(PPC_RAW_STD(_R0, _R1, 16))); } } else { return -EINVAL; } if (ret) return ret; if (!core_kernel_text(ip)) { if (!mod) { pr_err("0x%lx: No module provided for non-kernel address\n", ip); return -EFAULT; } rec->arch.mod = mod; } /* Nop-out the ftrace location */ new = ppc_inst(PPC_RAW_NOP()); addr = MCOUNT_ADDR; if (is_offset_in_branch_range(addr - ip)) { /* Within range */ old = ftrace_create_branch_inst(ip, addr, 1); ret = ftrace_modify_code(ip, old, new); } else if (core_kernel_text(ip) || (IS_ENABLED(CONFIG_MODULES) && mod)) { /* * We would be branching to a linker-generated stub, or to the module _mcount * stub. Let's just confirm we have a 'bl' here. */ ret = ftrace_read_inst(ip, &old); if (ret) return ret; if (!is_bl_op(old)) { pr_err("0x%lx: expected (bl) != found (%08lx)\n", ip, ppc_inst_as_ulong(old)); return -EINVAL; } ret = patch_instruction((u32 *)ip, new); } else { return -EINVAL; } return ret; } int ftrace_update_ftrace_func(ftrace_func_t func) { unsigned long ip = (unsigned long)(&ftrace_call); ppc_inst_t old, new; int ret; old = ppc_inst_read((u32 *)&ftrace_call); new = ftrace_call_replace(ip, (unsigned long)func, 1); ret = ftrace_modify_code(ip, old, new); /* Also update the regs callback function */ if (IS_ENABLED(CONFIG_DYNAMIC_FTRACE_WITH_REGS) && !ret) { ip = (unsigned long)(&ftrace_regs_call); old = ppc_inst_read((u32 *)&ftrace_regs_call); new = ftrace_call_replace(ip, (unsigned long)func, 1); ret = ftrace_modify_code(ip, old, new); } return ret; } /* * Use the default ftrace_modify_all_code, but without * stop_machine(). */ void arch_ftrace_update_code(int command) { ftrace_modify_all_code(command); } void ftrace_free_init_tramp(void) { int i; for (i = 0; i < NUM_FTRACE_TRAMPS && ftrace_tramps[i]; i++) if (ftrace_tramps[i] == (unsigned long)ftrace_tramp_init) { ftrace_tramps[i] = 0; return; } } static void __init add_ftrace_tramp(unsigned long tramp) { int i; for (i = 0; i < NUM_FTRACE_TRAMPS; i++) if (!ftrace_tramps[i]) { ftrace_tramps[i] = tramp; return; } } int __init ftrace_dyn_arch_init(void) { unsigned int *tramp[] = { ftrace_tramp_text, ftrace_tramp_init }; unsigned long addr = FTRACE_REGS_ADDR; long reladdr; int i; u32 stub_insns[] = { #ifdef CONFIG_PPC_KERNEL_PCREL /* pla r12,addr */ PPC_PREFIX_MLS | __PPC_PRFX_R(1), PPC_INST_PADDI | ___PPC_RT(_R12), PPC_RAW_MTCTR(_R12), PPC_RAW_BCTR() #elif defined(CONFIG_PPC64) PPC_RAW_LD(_R12, _R13, offsetof(struct paca_struct, kernel_toc)), PPC_RAW_ADDIS(_R12, _R12, 0), PPC_RAW_ADDI(_R12, _R12, 0), PPC_RAW_MTCTR(_R12), PPC_RAW_BCTR() #else PPC_RAW_LIS(_R12, 0), PPC_RAW_ADDI(_R12, _R12, 0), PPC_RAW_MTCTR(_R12), PPC_RAW_BCTR() #endif }; if (IS_ENABLED(CONFIG_PPC_KERNEL_PCREL)) { for (i = 0; i < 2; i++) { reladdr = addr - (unsigned long)tramp[i]; if (reladdr >= (long)SZ_8G || reladdr < -(long)SZ_8G) { pr_err("Address of %ps out of range of pcrel address.\n", (void *)addr); return -1; } memcpy(tramp[i], stub_insns, sizeof(stub_insns)); tramp[i][0] |= IMM_H18(reladdr); tramp[i][1] |= IMM_L(reladdr); add_ftrace_tramp((unsigned long)tramp[i]); } } else if (IS_ENABLED(CONFIG_PPC64)) { reladdr = addr - kernel_toc_addr(); if (reladdr >= (long)SZ_2G || reladdr < -(long long)SZ_2G) { pr_err("Address of %ps out of range of kernel_toc.\n", (void *)addr); return -1; } for (i = 0; i < 2; i++) { memcpy(tramp[i], stub_insns, sizeof(stub_insns)); tramp[i][1] |= PPC_HA(reladdr); tramp[i][2] |= PPC_LO(reladdr); add_ftrace_tramp((unsigned long)tramp[i]); } } else { for (i = 0; i < 2; i++) { memcpy(tramp[i], stub_insns, sizeof(stub_insns)); tramp[i][0] |= PPC_HA(addr); tramp[i][1] |= PPC_LO(addr); add_ftrace_tramp((unsigned long)tramp[i]); } } return 0; } #ifdef CONFIG_FUNCTION_GRAPH_TRACER void ftrace_graph_func(unsigned long ip, unsigned long parent_ip, struct ftrace_ops *op, struct ftrace_regs *fregs) { unsigned long sp = fregs->regs.gpr[1]; int bit; if (unlikely(ftrace_graph_is_dead())) goto out; if (unlikely(atomic_read(¤t->tracing_graph_pause))) goto out; bit = ftrace_test_recursion_trylock(ip, parent_ip); if (bit < 0) goto out; if (!function_graph_enter(parent_ip, ip, 0, (unsigned long *)sp)) parent_ip = ppc_function_entry(return_to_handler); ftrace_test_recursion_unlock(bit); out: fregs->regs.link = parent_ip; } #endif /* CONFIG_FUNCTION_GRAPH_TRACER */