License cleanup: add SPDX GPL-2.0 license identifier to files with no license
Many source files in the tree are missing licensing information, which
makes it harder for compliance tools to determine the correct license.
By default all files without license information are under the default
license of the kernel, which is GPL version 2.
Update the files which contain no license information with the 'GPL-2.0'
SPDX license identifier. The SPDX identifier is a legally binding
shorthand, which can be used instead of the full boiler plate text.
This patch is based on work done by Thomas Gleixner and Kate Stewart and
Philippe Ombredanne.
How this work was done:
Patches were generated and checked against linux-4.14-rc6 for a subset of
the use cases:
- file had no licensing information it it.
- file was a */uapi/* one with no licensing information in it,
- file was a */uapi/* one with existing licensing information,
Further patches will be generated in subsequent months to fix up cases
where non-standard license headers were used, and references to license
had to be inferred by heuristics based on keywords.
The analysis to determine which SPDX License Identifier to be applied to
a file was done in a spreadsheet of side by side results from of the
output of two independent scanners (ScanCode & Windriver) producing SPDX
tag:value files created by Philippe Ombredanne. Philippe prepared the
base worksheet, and did an initial spot review of a few 1000 files.
The 4.13 kernel was the starting point of the analysis with 60,537 files
assessed. Kate Stewart did a file by file comparison of the scanner
results in the spreadsheet to determine which SPDX license identifier(s)
to be applied to the file. She confirmed any determination that was not
immediately clear with lawyers working with the Linux Foundation.
Criteria used to select files for SPDX license identifier tagging was:
- Files considered eligible had to be source code files.
- Make and config files were included as candidates if they contained >5
lines of source
- File already had some variant of a license header in it (even if <5
lines).
All documentation files were explicitly excluded.
The following heuristics were used to determine which SPDX license
identifiers to apply.
- when both scanners couldn't find any license traces, file was
considered to have no license information in it, and the top level
COPYING file license applied.
For non */uapi/* files that summary was:
SPDX license identifier # files
---------------------------------------------------|-------
GPL-2.0 11139
and resulted in the first patch in this series.
If that file was a */uapi/* path one, it was "GPL-2.0 WITH
Linux-syscall-note" otherwise it was "GPL-2.0". Results of that was:
SPDX license identifier # files
---------------------------------------------------|-------
GPL-2.0 WITH Linux-syscall-note 930
and resulted in the second patch in this series.
- if a file had some form of licensing information in it, and was one
of the */uapi/* ones, it was denoted with the Linux-syscall-note if
any GPL family license was found in the file or had no licensing in
it (per prior point). Results summary:
SPDX license identifier # files
---------------------------------------------------|------
GPL-2.0 WITH Linux-syscall-note 270
GPL-2.0+ WITH Linux-syscall-note 169
((GPL-2.0 WITH Linux-syscall-note) OR BSD-2-Clause) 21
((GPL-2.0 WITH Linux-syscall-note) OR BSD-3-Clause) 17
LGPL-2.1+ WITH Linux-syscall-note 15
GPL-1.0+ WITH Linux-syscall-note 14
((GPL-2.0+ WITH Linux-syscall-note) OR BSD-3-Clause) 5
LGPL-2.0+ WITH Linux-syscall-note 4
LGPL-2.1 WITH Linux-syscall-note 3
((GPL-2.0 WITH Linux-syscall-note) OR MIT) 3
((GPL-2.0 WITH Linux-syscall-note) AND MIT) 1
and that resulted in the third patch in this series.
- when the two scanners agreed on the detected license(s), that became
the concluded license(s).
- when there was disagreement between the two scanners (one detected a
license but the other didn't, or they both detected different
licenses) a manual inspection of the file occurred.
- In most cases a manual inspection of the information in the file
resulted in a clear resolution of the license that should apply (and
which scanner probably needed to revisit its heuristics).
- When it was not immediately clear, the license identifier was
confirmed with lawyers working with the Linux Foundation.
- If there was any question as to the appropriate license identifier,
the file was flagged for further research and to be revisited later
in time.
In total, over 70 hours of logged manual review was done on the
spreadsheet to determine the SPDX license identifiers to apply to the
source files by Kate, Philippe, Thomas and, in some cases, confirmation
by lawyers working with the Linux Foundation.
Kate also obtained a third independent scan of the 4.13 code base from
FOSSology, and compared selected files where the other two scanners
disagreed against that SPDX file, to see if there was new insights. The
Windriver scanner is based on an older version of FOSSology in part, so
they are related.
Thomas did random spot checks in about 500 files from the spreadsheets
for the uapi headers and agreed with SPDX license identifier in the
files he inspected. For the non-uapi files Thomas did random spot checks
in about 15000 files.
In initial set of patches against 4.14-rc6, 3 files were found to have
copy/paste license identifier errors, and have been fixed to reflect the
correct identifier.
Additionally Philippe spent 10 hours this week doing a detailed manual
inspection and review of the 12,461 patched files from the initial patch
version early this week with:
- a full scancode scan run, collecting the matched texts, detected
license ids and scores
- reviewing anything where there was a license detected (about 500+
files) to ensure that the applied SPDX license was correct
- reviewing anything where there was no detection but the patch license
was not GPL-2.0 WITH Linux-syscall-note to ensure that the applied
SPDX license was correct
This produced a worksheet with 20 files needing minor correction. This
worksheet was then exported into 3 different .csv files for the
different types of files to be modified.
These .csv files were then reviewed by Greg. Thomas wrote a script to
parse the csv files and add the proper SPDX tag to the file, in the
format that the file expected. This script was further refined by Greg
based on the output to detect more types of files automatically and to
distinguish between header and source .c files (which need different
comment types.) Finally Greg ran the script using the .csv files to
generate the patches.
Reviewed-by: Kate Stewart <kstewart@linuxfoundation.org>
Reviewed-by: Philippe Ombredanne <pombredanne@nexb.com>
Reviewed-by: Thomas Gleixner <tglx@linutronix.de>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
2017-11-01 15:07:57 +01:00
|
|
|
/* SPDX-License-Identifier: GPL-2.0 */
|
2016-04-26 12:23:24 -07:00
|
|
|
#ifndef _ASM_X86_TEXT_PATCHING_H
|
|
|
|
|
#define _ASM_X86_TEXT_PATCHING_H
|
|
|
|
|
|
|
|
|
|
#include <linux/types.h>
|
|
|
|
|
#include <linux/stddef.h>
|
|
|
|
|
#include <asm/ptrace.h>
|
|
|
|
|
|
x86/alternative: Batch of patch operations
Currently, the patch of an address is done in three steps:
-- Pseudo-code #1 - Current implementation ---
1) add an int3 trap to the address that will be patched
sync cores (send IPI to all other CPUs)
2) update all but the first byte of the patched range
sync cores (send IPI to all other CPUs)
3) replace the first byte (int3) by the first byte of replacing opcode
sync cores (send IPI to all other CPUs)
-- Pseudo-code #1 ---
When a static key has more than one entry, these steps are called once for
each entry. The number of IPIs then is linear with regard to the number 'n' of
entries of a key: O(n*3), which is O(n).
This algorithm works fine for the update of a single key. But we think
it is possible to optimize the case in which a static key has more than
one entry. For instance, the sched_schedstats jump label has 56 entries
in my (updated) fedora kernel, resulting in 168 IPIs for each CPU in
which the thread that is enabling the key is _not_ running.
With this patch, rather than receiving a single patch to be processed, a vector
of patches is passed, enabling the rewrite of the pseudo-code #1 in this
way:
-- Pseudo-code #2 - This patch ---
1) for each patch in the vector:
add an int3 trap to the address that will be patched
sync cores (send IPI to all other CPUs)
2) for each patch in the vector:
update all but the first byte of the patched range
sync cores (send IPI to all other CPUs)
3) for each patch in the vector:
replace the first byte (int3) by the first byte of replacing opcode
sync cores (send IPI to all other CPUs)
-- Pseudo-code #2 - This patch ---
Doing the update in this way, the number of IPI becomes O(3) with regard
to the number of keys, which is O(1).
The batch mode is done with the function text_poke_bp_batch(), that receives
two arguments: a vector of "struct text_to_poke", and the number of entries
in the vector.
The vector must be sorted by the addr field of the text_to_poke structure,
enabling the binary search of a handler in the poke_int3_handler function
(a fast path).
Signed-off-by: Daniel Bristot de Oliveira <bristot@redhat.com>
Signed-off-by: Peter Zijlstra (Intel) <peterz@infradead.org>
Reviewed-by: Masami Hiramatsu <mhiramat@kernel.org>
Cc: Borislav Petkov <bp@alien8.de>
Cc: Chris von Recklinghausen <crecklin@redhat.com>
Cc: Clark Williams <williams@redhat.com>
Cc: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
Cc: H. Peter Anvin <hpa@zytor.com>
Cc: Jason Baron <jbaron@akamai.com>
Cc: Jiri Kosina <jkosina@suse.cz>
Cc: Josh Poimboeuf <jpoimboe@redhat.com>
Cc: Linus Torvalds <torvalds@linux-foundation.org>
Cc: Marcelo Tosatti <mtosatti@redhat.com>
Cc: Peter Zijlstra <peterz@infradead.org>
Cc: Scott Wood <swood@redhat.com>
Cc: Steven Rostedt (VMware) <rostedt@goodmis.org>
Cc: Thomas Gleixner <tglx@linutronix.de>
Link: https://lkml.kernel.org/r/ca506ed52584c80f64de23f6f55ca288e5d079de.1560325897.git.bristot@redhat.com
Signed-off-by: Ingo Molnar <mingo@kernel.org>
2019-06-12 11:57:29 +02:00
|
|
|
/*
|
|
|
|
|
* Currently, the max observed size in the kernel code is
|
|
|
|
|
* JUMP_LABEL_NOP_SIZE/RELATIVEJUMP_SIZE, which are 5.
|
|
|
|
|
* Raise it if needed.
|
|
|
|
|
*/
|
2025-04-11 07:40:58 +02:00
|
|
|
#define TEXT_POKE_MAX_OPCODE_SIZE 5
|
x86/alternative: Batch of patch operations
Currently, the patch of an address is done in three steps:
-- Pseudo-code #1 - Current implementation ---
1) add an int3 trap to the address that will be patched
sync cores (send IPI to all other CPUs)
2) update all but the first byte of the patched range
sync cores (send IPI to all other CPUs)
3) replace the first byte (int3) by the first byte of replacing opcode
sync cores (send IPI to all other CPUs)
-- Pseudo-code #1 ---
When a static key has more than one entry, these steps are called once for
each entry. The number of IPIs then is linear with regard to the number 'n' of
entries of a key: O(n*3), which is O(n).
This algorithm works fine for the update of a single key. But we think
it is possible to optimize the case in which a static key has more than
one entry. For instance, the sched_schedstats jump label has 56 entries
in my (updated) fedora kernel, resulting in 168 IPIs for each CPU in
which the thread that is enabling the key is _not_ running.
With this patch, rather than receiving a single patch to be processed, a vector
of patches is passed, enabling the rewrite of the pseudo-code #1 in this
way:
-- Pseudo-code #2 - This patch ---
1) for each patch in the vector:
add an int3 trap to the address that will be patched
sync cores (send IPI to all other CPUs)
2) for each patch in the vector:
update all but the first byte of the patched range
sync cores (send IPI to all other CPUs)
3) for each patch in the vector:
replace the first byte (int3) by the first byte of replacing opcode
sync cores (send IPI to all other CPUs)
-- Pseudo-code #2 - This patch ---
Doing the update in this way, the number of IPI becomes O(3) with regard
to the number of keys, which is O(1).
The batch mode is done with the function text_poke_bp_batch(), that receives
two arguments: a vector of "struct text_to_poke", and the number of entries
in the vector.
The vector must be sorted by the addr field of the text_to_poke structure,
enabling the binary search of a handler in the poke_int3_handler function
(a fast path).
Signed-off-by: Daniel Bristot de Oliveira <bristot@redhat.com>
Signed-off-by: Peter Zijlstra (Intel) <peterz@infradead.org>
Reviewed-by: Masami Hiramatsu <mhiramat@kernel.org>
Cc: Borislav Petkov <bp@alien8.de>
Cc: Chris von Recklinghausen <crecklin@redhat.com>
Cc: Clark Williams <williams@redhat.com>
Cc: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
Cc: H. Peter Anvin <hpa@zytor.com>
Cc: Jason Baron <jbaron@akamai.com>
Cc: Jiri Kosina <jkosina@suse.cz>
Cc: Josh Poimboeuf <jpoimboe@redhat.com>
Cc: Linus Torvalds <torvalds@linux-foundation.org>
Cc: Marcelo Tosatti <mtosatti@redhat.com>
Cc: Peter Zijlstra <peterz@infradead.org>
Cc: Scott Wood <swood@redhat.com>
Cc: Steven Rostedt (VMware) <rostedt@goodmis.org>
Cc: Thomas Gleixner <tglx@linutronix.de>
Link: https://lkml.kernel.org/r/ca506ed52584c80f64de23f6f55ca288e5d079de.1560325897.git.bristot@redhat.com
Signed-off-by: Ingo Molnar <mingo@kernel.org>
2019-06-12 11:57:29 +02:00
|
|
|
|
2019-04-25 17:11:33 -07:00
|
|
|
extern void text_poke_early(void *addr, const void *opcode, size_t len);
|
2016-04-26 12:23:24 -07:00
|
|
|
|
2025-04-11 07:41:03 +02:00
|
|
|
extern void text_poke_apply_relocation(u8 *buf, const u8 * const instr, size_t instrlen, u8 *repl, size_t repl_len);
|
2024-02-14 10:45:07 +01:00
|
|
|
|
2016-04-26 12:23:24 -07:00
|
|
|
/*
|
|
|
|
|
* Clear and restore the kernel write-protection flag on the local CPU.
|
|
|
|
|
* Allows the kernel to edit read-only pages.
|
|
|
|
|
* Side-effect: any interrupt handler running between save and restore will have
|
|
|
|
|
* the ability to write to read-only pages.
|
|
|
|
|
*
|
|
|
|
|
* Warning:
|
|
|
|
|
* Code patching in the UP case is safe if NMIs and MCE handlers are stopped and
|
|
|
|
|
* no thread can be preempted in the instructions being modified (no iret to an
|
|
|
|
|
* invalid instruction possible) or if the instructions are changed from a
|
|
|
|
|
* consistent state to another consistent state atomically.
|
2019-09-02 14:02:59 +02:00
|
|
|
* On the local CPU you need to be protected against NMI or MCE handlers seeing
|
|
|
|
|
* an inconsistent instruction while you patch.
|
2016-04-26 12:23:24 -07:00
|
|
|
*/
|
|
|
|
|
extern void *text_poke(void *addr, const void *opcode, size_t len);
|
2025-04-11 07:40:52 +02:00
|
|
|
extern void smp_text_poke_sync_each_cpu(void);
|
2019-04-25 17:11:21 -07:00
|
|
|
extern void *text_poke_kgdb(void *addr, const void *opcode, size_t len);
|
2022-02-04 10:57:38 -08:00
|
|
|
extern void *text_poke_copy(void *addr, const void *opcode, size_t len);
|
2024-10-23 19:27:06 +03:00
|
|
|
#define text_poke_copy text_poke_copy
|
2022-09-15 13:11:20 +02:00
|
|
|
extern void *text_poke_copy_locked(void *addr, const void *opcode, size_t len, bool core_ok);
|
2022-05-20 16:57:52 -07:00
|
|
|
extern void *text_poke_set(void *addr, int c, size_t len);
|
2025-04-11 07:40:19 +02:00
|
|
|
extern int smp_text_poke_int3_handler(struct pt_regs *regs);
|
2025-04-11 07:40:18 +02:00
|
|
|
extern void smp_text_poke_single(void *addr, const void *opcode, size_t len, const void *emulate);
|
2019-08-26 13:38:58 +02:00
|
|
|
|
2025-04-11 07:40:28 +02:00
|
|
|
extern void smp_text_poke_batch_add(void *addr, const void *opcode, size_t len, const void *emulate);
|
2025-04-11 07:40:27 +02:00
|
|
|
extern void smp_text_poke_batch_finish(void);
|
2019-08-26 13:38:58 +02:00
|
|
|
|
x86/alternatives: Teach text_poke_bp() to emulate instructions
In preparation for static_call and variable size jump_label support,
teach text_poke_bp() to emulate instructions, namely:
JMP32, JMP8, CALL, NOP2, NOP_ATOMIC5, INT3
The current text_poke_bp() takes a @handler argument which is used as
a jump target when the temporary INT3 is hit by a different CPU.
When patching CALL instructions, this doesn't work because we'd miss
the PUSH of the return address. Instead, teach poke_int3_handler() to
emulate an instruction, typically the instruction we're patching in.
This fits almost all text_poke_bp() users, except
arch_unoptimize_kprobe() which restores random text, and for that site
we have to build an explicit emulate instruction.
Tested-by: Alexei Starovoitov <ast@kernel.org>
Tested-by: Steven Rostedt (VMware) <rostedt@goodmis.org>
Signed-off-by: Peter Zijlstra (Intel) <peterz@infradead.org>
Reviewed-by: Masami Hiramatsu <mhiramat@kernel.org>
Reviewed-by: Daniel Bristot de Oliveira <bristot@redhat.com>
Acked-by: Alexei Starovoitov <ast@kernel.org>
Cc: Andy Lutomirski <luto@kernel.org>
Cc: Borislav Petkov <bp@alien8.de>
Cc: H. Peter Anvin <hpa@zytor.com>
Cc: Josh Poimboeuf <jpoimboe@redhat.com>
Cc: Linus Torvalds <torvalds@linux-foundation.org>
Cc: Steven Rostedt <rostedt@goodmis.org>
Cc: Thomas Gleixner <tglx@linutronix.de>
Link: https://lkml.kernel.org/r/20191111132457.529086974@infradead.org
Signed-off-by: Ingo Molnar <mingo@kernel.org>
(cherry picked from commit 8c7eebc10687af45ac8e40ad1bac0cf7893dba9f)
Signed-off-by: Alexei Starovoitov <ast@kernel.org>
2019-06-05 10:48:37 +02:00
|
|
|
#define INT3_INSN_SIZE 1
|
|
|
|
|
#define INT3_INSN_OPCODE 0xCC
|
|
|
|
|
|
2020-08-18 15:57:47 +02:00
|
|
|
#define RET_INSN_SIZE 1
|
|
|
|
|
#define RET_INSN_OPCODE 0xC3
|
|
|
|
|
|
x86/alternatives: Teach text_poke_bp() to emulate instructions
In preparation for static_call and variable size jump_label support,
teach text_poke_bp() to emulate instructions, namely:
JMP32, JMP8, CALL, NOP2, NOP_ATOMIC5, INT3
The current text_poke_bp() takes a @handler argument which is used as
a jump target when the temporary INT3 is hit by a different CPU.
When patching CALL instructions, this doesn't work because we'd miss
the PUSH of the return address. Instead, teach poke_int3_handler() to
emulate an instruction, typically the instruction we're patching in.
This fits almost all text_poke_bp() users, except
arch_unoptimize_kprobe() which restores random text, and for that site
we have to build an explicit emulate instruction.
Tested-by: Alexei Starovoitov <ast@kernel.org>
Tested-by: Steven Rostedt (VMware) <rostedt@goodmis.org>
Signed-off-by: Peter Zijlstra (Intel) <peterz@infradead.org>
Reviewed-by: Masami Hiramatsu <mhiramat@kernel.org>
Reviewed-by: Daniel Bristot de Oliveira <bristot@redhat.com>
Acked-by: Alexei Starovoitov <ast@kernel.org>
Cc: Andy Lutomirski <luto@kernel.org>
Cc: Borislav Petkov <bp@alien8.de>
Cc: H. Peter Anvin <hpa@zytor.com>
Cc: Josh Poimboeuf <jpoimboe@redhat.com>
Cc: Linus Torvalds <torvalds@linux-foundation.org>
Cc: Steven Rostedt <rostedt@goodmis.org>
Cc: Thomas Gleixner <tglx@linutronix.de>
Link: https://lkml.kernel.org/r/20191111132457.529086974@infradead.org
Signed-off-by: Ingo Molnar <mingo@kernel.org>
(cherry picked from commit 8c7eebc10687af45ac8e40ad1bac0cf7893dba9f)
Signed-off-by: Alexei Starovoitov <ast@kernel.org>
2019-06-05 10:48:37 +02:00
|
|
|
#define CALL_INSN_SIZE 5
|
|
|
|
|
#define CALL_INSN_OPCODE 0xE8
|
|
|
|
|
|
|
|
|
|
#define JMP32_INSN_SIZE 5
|
|
|
|
|
#define JMP32_INSN_OPCODE 0xE9
|
|
|
|
|
|
|
|
|
|
#define JMP8_INSN_SIZE 2
|
|
|
|
|
#define JMP8_INSN_OPCODE 0xEB
|
2019-05-01 15:11:17 +02:00
|
|
|
|
2019-10-09 13:57:17 +02:00
|
|
|
#define DISP32_SIZE 4
|
|
|
|
|
|
2020-01-21 15:53:09 +01:00
|
|
|
static __always_inline int text_opcode_size(u8 opcode)
|
2019-10-09 12:44:17 +02:00
|
|
|
{
|
|
|
|
|
int size = 0;
|
|
|
|
|
|
|
|
|
|
#define __CASE(insn) \
|
|
|
|
|
case insn##_INSN_OPCODE: size = insn##_INSN_SIZE; break
|
|
|
|
|
|
|
|
|
|
switch(opcode) {
|
|
|
|
|
__CASE(INT3);
|
2020-08-18 15:57:47 +02:00
|
|
|
__CASE(RET);
|
2019-10-09 12:44:17 +02:00
|
|
|
__CASE(CALL);
|
|
|
|
|
__CASE(JMP32);
|
|
|
|
|
__CASE(JMP8);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
#undef __CASE
|
|
|
|
|
|
|
|
|
|
return size;
|
|
|
|
|
}
|
|
|
|
|
|
2019-10-09 12:44:14 +02:00
|
|
|
union text_poke_insn {
|
2025-04-11 07:40:58 +02:00
|
|
|
u8 text[TEXT_POKE_MAX_OPCODE_SIZE];
|
2019-10-09 12:44:14 +02:00
|
|
|
struct {
|
|
|
|
|
u8 opcode;
|
|
|
|
|
s32 disp;
|
|
|
|
|
} __attribute__((packed));
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
static __always_inline
|
2022-03-08 16:30:20 +01:00
|
|
|
void __text_gen_insn(void *buf, u8 opcode, const void *addr, const void *dest, int size)
|
2019-10-09 12:44:14 +02:00
|
|
|
{
|
2022-03-08 16:30:20 +01:00
|
|
|
union text_poke_insn *insn = buf;
|
|
|
|
|
|
|
|
|
|
BUG_ON(size < text_opcode_size(opcode));
|
2019-10-09 12:44:14 +02:00
|
|
|
|
2022-03-08 16:30:19 +01:00
|
|
|
/*
|
|
|
|
|
* Hide the addresses to avoid the compiler folding in constants when
|
|
|
|
|
* referencing code, these can mess up annotations like
|
|
|
|
|
* ANNOTATE_NOENDBR.
|
|
|
|
|
*/
|
2022-03-08 16:30:20 +01:00
|
|
|
OPTIMIZER_HIDE_VAR(insn);
|
2022-03-08 16:30:19 +01:00
|
|
|
OPTIMIZER_HIDE_VAR(addr);
|
|
|
|
|
OPTIMIZER_HIDE_VAR(dest);
|
|
|
|
|
|
2022-03-08 16:30:20 +01:00
|
|
|
insn->opcode = opcode;
|
2019-10-09 12:44:14 +02:00
|
|
|
|
|
|
|
|
if (size > 1) {
|
2022-03-08 16:30:20 +01:00
|
|
|
insn->disp = (long)dest - (long)(addr + size);
|
2019-10-09 12:44:14 +02:00
|
|
|
if (size == 2) {
|
|
|
|
|
/*
|
2022-03-08 16:30:19 +01:00
|
|
|
* Ensure that for JMP8 the displacement
|
2019-10-09 12:44:14 +02:00
|
|
|
* actually fits the signed byte.
|
|
|
|
|
*/
|
2022-03-08 16:30:20 +01:00
|
|
|
BUG_ON((insn->disp >> 31) != (insn->disp >> 7));
|
2019-10-09 12:44:14 +02:00
|
|
|
}
|
|
|
|
|
}
|
2022-03-08 16:30:20 +01:00
|
|
|
}
|
2019-10-09 12:44:14 +02:00
|
|
|
|
2022-03-08 16:30:20 +01:00
|
|
|
static __always_inline
|
|
|
|
|
void *text_gen_insn(u8 opcode, const void *addr, const void *dest)
|
|
|
|
|
{
|
|
|
|
|
static union text_poke_insn insn; /* per instance */
|
|
|
|
|
__text_gen_insn(&insn, opcode, addr, dest, text_opcode_size(opcode));
|
2019-10-09 12:44:14 +02:00
|
|
|
return &insn.text;
|
|
|
|
|
}
|
2019-10-09 12:44:17 +02:00
|
|
|
|
|
|
|
|
extern int after_bootmem;
|
2025-04-11 07:40:20 +02:00
|
|
|
extern __ro_after_init struct mm_struct *text_poke_mm;
|
2025-04-11 07:40:21 +02:00
|
|
|
extern __ro_after_init unsigned long text_poke_mm_addr;
|
2019-10-09 12:44:17 +02:00
|
|
|
|
|
|
|
|
#ifndef CONFIG_UML_X86
|
2020-01-21 15:53:09 +01:00
|
|
|
static __always_inline
|
|
|
|
|
void int3_emulate_jmp(struct pt_regs *regs, unsigned long ip)
|
2019-10-09 12:44:17 +02:00
|
|
|
{
|
|
|
|
|
regs->ip = ip;
|
|
|
|
|
}
|
|
|
|
|
|
2020-01-21 15:53:09 +01:00
|
|
|
static __always_inline
|
|
|
|
|
void int3_emulate_push(struct pt_regs *regs, unsigned long val)
|
2019-05-01 15:11:17 +02:00
|
|
|
{
|
|
|
|
|
/*
|
2025-04-11 07:40:24 +02:00
|
|
|
* The INT3 handler in entry_64.S adds a gap between the
|
2019-05-01 15:11:17 +02:00
|
|
|
* stack where the break point happened, and the saving of
|
|
|
|
|
* pt_regs. We can extend the original stack because of
|
2025-04-11 07:40:24 +02:00
|
|
|
* this gap. See the idtentry macro's X86_TRAP_BP logic.
|
2019-09-03 13:43:24 +02:00
|
|
|
*
|
2025-04-11 07:40:24 +02:00
|
|
|
* Similarly, entry_32.S will have a gap on the stack for
|
|
|
|
|
* (any) hardware exception and pt_regs; see the
|
|
|
|
|
* FIXUP_FRAME macro.
|
2019-05-01 15:11:17 +02:00
|
|
|
*/
|
|
|
|
|
regs->sp -= sizeof(unsigned long);
|
|
|
|
|
*(unsigned long *)regs->sp = val;
|
|
|
|
|
}
|
|
|
|
|
|
2020-08-18 15:57:47 +02:00
|
|
|
static __always_inline
|
|
|
|
|
unsigned long int3_emulate_pop(struct pt_regs *regs)
|
|
|
|
|
{
|
|
|
|
|
unsigned long val = *(unsigned long *)regs->sp;
|
|
|
|
|
regs->sp += sizeof(unsigned long);
|
|
|
|
|
return val;
|
|
|
|
|
}
|
|
|
|
|
|
2020-01-21 15:53:09 +01:00
|
|
|
static __always_inline
|
|
|
|
|
void int3_emulate_call(struct pt_regs *regs, unsigned long func)
|
2019-05-01 15:11:17 +02:00
|
|
|
{
|
|
|
|
|
int3_emulate_push(regs, regs->ip - INT3_INSN_SIZE + CALL_INSN_SIZE);
|
|
|
|
|
int3_emulate_jmp(regs, func);
|
|
|
|
|
}
|
2020-08-18 15:57:47 +02:00
|
|
|
|
|
|
|
|
static __always_inline
|
|
|
|
|
void int3_emulate_ret(struct pt_regs *regs)
|
|
|
|
|
{
|
|
|
|
|
unsigned long ip = int3_emulate_pop(regs);
|
|
|
|
|
int3_emulate_jmp(regs, ip);
|
|
|
|
|
}
|
2023-01-23 21:59:16 +01:00
|
|
|
|
|
|
|
|
static __always_inline
|
|
|
|
|
void int3_emulate_jcc(struct pt_regs *regs, u8 cc, unsigned long ip, unsigned long disp)
|
|
|
|
|
{
|
|
|
|
|
static const unsigned long jcc_mask[6] = {
|
|
|
|
|
[0] = X86_EFLAGS_OF,
|
|
|
|
|
[1] = X86_EFLAGS_CF,
|
|
|
|
|
[2] = X86_EFLAGS_ZF,
|
|
|
|
|
[3] = X86_EFLAGS_CF | X86_EFLAGS_ZF,
|
|
|
|
|
[4] = X86_EFLAGS_SF,
|
|
|
|
|
[5] = X86_EFLAGS_PF,
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
bool invert = cc & 1;
|
|
|
|
|
bool match;
|
|
|
|
|
|
|
|
|
|
if (cc < 0xc) {
|
|
|
|
|
match = regs->flags & jcc_mask[cc >> 1];
|
|
|
|
|
} else {
|
|
|
|
|
match = ((regs->flags & X86_EFLAGS_SF) >> X86_EFLAGS_SF_BIT) ^
|
|
|
|
|
((regs->flags & X86_EFLAGS_OF) >> X86_EFLAGS_OF_BIT);
|
|
|
|
|
if (cc >= 0xe)
|
|
|
|
|
match = match || (regs->flags & X86_EFLAGS_ZF);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if ((match && !invert) || (!match && invert))
|
|
|
|
|
ip += disp;
|
|
|
|
|
|
|
|
|
|
int3_emulate_jmp(regs, ip);
|
|
|
|
|
}
|
|
|
|
|
|
2019-05-11 08:32:40 -04:00
|
|
|
#endif /* !CONFIG_UML_X86 */
|
2019-05-01 15:11:17 +02:00
|
|
|
|
2016-04-26 12:23:24 -07:00
|
|
|
#endif /* _ASM_X86_TEXT_PATCHING_H */
|