mirror of
https://git.kernel.org/pub/scm/linux/kernel/git/next/linux-next.git
synced 2025-01-11 16:29:05 +00:00
3e6cd394bb
Make the instruction interpreter call back to semantic action functions through a function pointer array provided by the invoker. The interpreter decodes the instructions into groups and uses the group number to index into the supplied array. kprobes and uprobes code will each supply their own array of functions. Signed-off-by: David A. Long <dave.long@linaro.org> Acked-by: Jon Medhurst <tixy@linaro.org>
343 lines
11 KiB
C
343 lines
11 KiB
C
/*
|
|
* arch/arm/kernel/kprobes-decode.c
|
|
*
|
|
* Copyright (C) 2006, 2007 Motorola Inc.
|
|
*
|
|
* This program is free software; you can redistribute it and/or modify
|
|
* it under the terms of the GNU General Public License version 2 as
|
|
* published by the Free Software Foundation.
|
|
*
|
|
* This program is distributed in the hope that it will be useful,
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
|
* General Public License for more details.
|
|
*/
|
|
|
|
/*
|
|
* We do not have hardware single-stepping on ARM, This
|
|
* effort is further complicated by the ARM not having a
|
|
* "next PC" register. Instructions that change the PC
|
|
* can't be safely single-stepped in a MP environment, so
|
|
* we have a lot of work to do:
|
|
*
|
|
* In the prepare phase:
|
|
* *) If it is an instruction that does anything
|
|
* with the CPU mode, we reject it for a kprobe.
|
|
* (This is out of laziness rather than need. The
|
|
* instructions could be simulated.)
|
|
*
|
|
* *) Otherwise, decode the instruction rewriting its
|
|
* registers to take fixed, ordered registers and
|
|
* setting a handler for it to run the instruction.
|
|
*
|
|
* In the execution phase by an instruction's handler:
|
|
*
|
|
* *) If the PC is written to by the instruction, the
|
|
* instruction must be fully simulated in software.
|
|
*
|
|
* *) Otherwise, a modified form of the instruction is
|
|
* directly executed. Its handler calls the
|
|
* instruction in insn[0]. In insn[1] is a
|
|
* "mov pc, lr" to return.
|
|
*
|
|
* Before calling, load up the reordered registers
|
|
* from the original instruction's registers. If one
|
|
* of the original input registers is the PC, compute
|
|
* and adjust the appropriate input register.
|
|
*
|
|
* After call completes, copy the output registers to
|
|
* the original instruction's original registers.
|
|
*
|
|
* We don't use a real breakpoint instruction since that
|
|
* would have us in the kernel go from SVC mode to SVC
|
|
* mode losing the link register. Instead we use an
|
|
* undefined instruction. To simplify processing, the
|
|
* undefined instruction used for kprobes must be reserved
|
|
* exclusively for kprobes use.
|
|
*
|
|
* TODO: ifdef out some instruction decoding based on architecture.
|
|
*/
|
|
|
|
#include <linux/kernel.h>
|
|
#include <linux/kprobes.h>
|
|
#include <linux/ptrace.h>
|
|
|
|
#include "kprobes.h"
|
|
#include "probes-arm.h"
|
|
|
|
#if __LINUX_ARM_ARCH__ >= 6
|
|
#define BLX(reg) "blx "reg" \n\t"
|
|
#else
|
|
#define BLX(reg) "mov lr, pc \n\t" \
|
|
"mov pc, "reg" \n\t"
|
|
#endif
|
|
|
|
|
|
static void __kprobes
|
|
emulate_ldrdstrd(struct kprobe *p, struct pt_regs *regs)
|
|
{
|
|
kprobe_opcode_t insn = p->opcode;
|
|
unsigned long pc = (unsigned long)p->addr + 8;
|
|
int rt = (insn >> 12) & 0xf;
|
|
int rn = (insn >> 16) & 0xf;
|
|
int rm = insn & 0xf;
|
|
|
|
register unsigned long rtv asm("r0") = regs->uregs[rt];
|
|
register unsigned long rt2v asm("r1") = regs->uregs[rt+1];
|
|
register unsigned long rnv asm("r2") = (rn == 15) ? pc
|
|
: regs->uregs[rn];
|
|
register unsigned long rmv asm("r3") = regs->uregs[rm];
|
|
|
|
__asm__ __volatile__ (
|
|
BLX("%[fn]")
|
|
: "=r" (rtv), "=r" (rt2v), "=r" (rnv)
|
|
: "0" (rtv), "1" (rt2v), "2" (rnv), "r" (rmv),
|
|
[fn] "r" (p->ainsn.insn_fn)
|
|
: "lr", "memory", "cc"
|
|
);
|
|
|
|
regs->uregs[rt] = rtv;
|
|
regs->uregs[rt+1] = rt2v;
|
|
if (is_writeback(insn))
|
|
regs->uregs[rn] = rnv;
|
|
}
|
|
|
|
static void __kprobes
|
|
emulate_ldr(struct kprobe *p, struct pt_regs *regs)
|
|
{
|
|
kprobe_opcode_t insn = p->opcode;
|
|
unsigned long pc = (unsigned long)p->addr + 8;
|
|
int rt = (insn >> 12) & 0xf;
|
|
int rn = (insn >> 16) & 0xf;
|
|
int rm = insn & 0xf;
|
|
|
|
register unsigned long rtv asm("r0");
|
|
register unsigned long rnv asm("r2") = (rn == 15) ? pc
|
|
: regs->uregs[rn];
|
|
register unsigned long rmv asm("r3") = regs->uregs[rm];
|
|
|
|
__asm__ __volatile__ (
|
|
BLX("%[fn]")
|
|
: "=r" (rtv), "=r" (rnv)
|
|
: "1" (rnv), "r" (rmv), [fn] "r" (p->ainsn.insn_fn)
|
|
: "lr", "memory", "cc"
|
|
);
|
|
|
|
if (rt == 15)
|
|
load_write_pc(rtv, regs);
|
|
else
|
|
regs->uregs[rt] = rtv;
|
|
|
|
if (is_writeback(insn))
|
|
regs->uregs[rn] = rnv;
|
|
}
|
|
|
|
static void __kprobes
|
|
emulate_str(struct kprobe *p, struct pt_regs *regs)
|
|
{
|
|
kprobe_opcode_t insn = p->opcode;
|
|
unsigned long rtpc = (unsigned long)p->addr + str_pc_offset;
|
|
unsigned long rnpc = (unsigned long)p->addr + 8;
|
|
int rt = (insn >> 12) & 0xf;
|
|
int rn = (insn >> 16) & 0xf;
|
|
int rm = insn & 0xf;
|
|
|
|
register unsigned long rtv asm("r0") = (rt == 15) ? rtpc
|
|
: regs->uregs[rt];
|
|
register unsigned long rnv asm("r2") = (rn == 15) ? rnpc
|
|
: regs->uregs[rn];
|
|
register unsigned long rmv asm("r3") = regs->uregs[rm];
|
|
|
|
__asm__ __volatile__ (
|
|
BLX("%[fn]")
|
|
: "=r" (rnv)
|
|
: "r" (rtv), "0" (rnv), "r" (rmv), [fn] "r" (p->ainsn.insn_fn)
|
|
: "lr", "memory", "cc"
|
|
);
|
|
|
|
if (is_writeback(insn))
|
|
regs->uregs[rn] = rnv;
|
|
}
|
|
|
|
static void __kprobes
|
|
emulate_rd12rn16rm0rs8_rwflags(struct kprobe *p, struct pt_regs *regs)
|
|
{
|
|
kprobe_opcode_t insn = p->opcode;
|
|
unsigned long pc = (unsigned long)p->addr + 8;
|
|
int rd = (insn >> 12) & 0xf;
|
|
int rn = (insn >> 16) & 0xf;
|
|
int rm = insn & 0xf;
|
|
int rs = (insn >> 8) & 0xf;
|
|
|
|
register unsigned long rdv asm("r0") = regs->uregs[rd];
|
|
register unsigned long rnv asm("r2") = (rn == 15) ? pc
|
|
: regs->uregs[rn];
|
|
register unsigned long rmv asm("r3") = (rm == 15) ? pc
|
|
: regs->uregs[rm];
|
|
register unsigned long rsv asm("r1") = regs->uregs[rs];
|
|
unsigned long cpsr = regs->ARM_cpsr;
|
|
|
|
__asm__ __volatile__ (
|
|
"msr cpsr_fs, %[cpsr] \n\t"
|
|
BLX("%[fn]")
|
|
"mrs %[cpsr], cpsr \n\t"
|
|
: "=r" (rdv), [cpsr] "=r" (cpsr)
|
|
: "0" (rdv), "r" (rnv), "r" (rmv), "r" (rsv),
|
|
"1" (cpsr), [fn] "r" (p->ainsn.insn_fn)
|
|
: "lr", "memory", "cc"
|
|
);
|
|
|
|
if (rd == 15)
|
|
alu_write_pc(rdv, regs);
|
|
else
|
|
regs->uregs[rd] = rdv;
|
|
regs->ARM_cpsr = (regs->ARM_cpsr & ~APSR_MASK) | (cpsr & APSR_MASK);
|
|
}
|
|
|
|
static void __kprobes
|
|
emulate_rd12rn16rm0_rwflags_nopc(struct kprobe *p, struct pt_regs *regs)
|
|
{
|
|
kprobe_opcode_t insn = p->opcode;
|
|
int rd = (insn >> 12) & 0xf;
|
|
int rn = (insn >> 16) & 0xf;
|
|
int rm = insn & 0xf;
|
|
|
|
register unsigned long rdv asm("r0") = regs->uregs[rd];
|
|
register unsigned long rnv asm("r2") = regs->uregs[rn];
|
|
register unsigned long rmv asm("r3") = regs->uregs[rm];
|
|
unsigned long cpsr = regs->ARM_cpsr;
|
|
|
|
__asm__ __volatile__ (
|
|
"msr cpsr_fs, %[cpsr] \n\t"
|
|
BLX("%[fn]")
|
|
"mrs %[cpsr], cpsr \n\t"
|
|
: "=r" (rdv), [cpsr] "=r" (cpsr)
|
|
: "0" (rdv), "r" (rnv), "r" (rmv),
|
|
"1" (cpsr), [fn] "r" (p->ainsn.insn_fn)
|
|
: "lr", "memory", "cc"
|
|
);
|
|
|
|
regs->uregs[rd] = rdv;
|
|
regs->ARM_cpsr = (regs->ARM_cpsr & ~APSR_MASK) | (cpsr & APSR_MASK);
|
|
}
|
|
|
|
static void __kprobes
|
|
emulate_rd16rn12rm0rs8_rwflags_nopc(struct kprobe *p, struct pt_regs *regs)
|
|
{
|
|
kprobe_opcode_t insn = p->opcode;
|
|
int rd = (insn >> 16) & 0xf;
|
|
int rn = (insn >> 12) & 0xf;
|
|
int rm = insn & 0xf;
|
|
int rs = (insn >> 8) & 0xf;
|
|
|
|
register unsigned long rdv asm("r2") = regs->uregs[rd];
|
|
register unsigned long rnv asm("r0") = regs->uregs[rn];
|
|
register unsigned long rmv asm("r3") = regs->uregs[rm];
|
|
register unsigned long rsv asm("r1") = regs->uregs[rs];
|
|
unsigned long cpsr = regs->ARM_cpsr;
|
|
|
|
__asm__ __volatile__ (
|
|
"msr cpsr_fs, %[cpsr] \n\t"
|
|
BLX("%[fn]")
|
|
"mrs %[cpsr], cpsr \n\t"
|
|
: "=r" (rdv), [cpsr] "=r" (cpsr)
|
|
: "0" (rdv), "r" (rnv), "r" (rmv), "r" (rsv),
|
|
"1" (cpsr), [fn] "r" (p->ainsn.insn_fn)
|
|
: "lr", "memory", "cc"
|
|
);
|
|
|
|
regs->uregs[rd] = rdv;
|
|
regs->ARM_cpsr = (regs->ARM_cpsr & ~APSR_MASK) | (cpsr & APSR_MASK);
|
|
}
|
|
|
|
static void __kprobes
|
|
emulate_rd12rm0_noflags_nopc(struct kprobe *p, struct pt_regs *regs)
|
|
{
|
|
kprobe_opcode_t insn = p->opcode;
|
|
int rd = (insn >> 12) & 0xf;
|
|
int rm = insn & 0xf;
|
|
|
|
register unsigned long rdv asm("r0") = regs->uregs[rd];
|
|
register unsigned long rmv asm("r3") = regs->uregs[rm];
|
|
|
|
__asm__ __volatile__ (
|
|
BLX("%[fn]")
|
|
: "=r" (rdv)
|
|
: "0" (rdv), "r" (rmv), [fn] "r" (p->ainsn.insn_fn)
|
|
: "lr", "memory", "cc"
|
|
);
|
|
|
|
regs->uregs[rd] = rdv;
|
|
}
|
|
|
|
static void __kprobes
|
|
emulate_rdlo12rdhi16rn0rm8_rwflags_nopc(struct kprobe *p, struct pt_regs *regs)
|
|
{
|
|
kprobe_opcode_t insn = p->opcode;
|
|
int rdlo = (insn >> 12) & 0xf;
|
|
int rdhi = (insn >> 16) & 0xf;
|
|
int rn = insn & 0xf;
|
|
int rm = (insn >> 8) & 0xf;
|
|
|
|
register unsigned long rdlov asm("r0") = regs->uregs[rdlo];
|
|
register unsigned long rdhiv asm("r2") = regs->uregs[rdhi];
|
|
register unsigned long rnv asm("r3") = regs->uregs[rn];
|
|
register unsigned long rmv asm("r1") = regs->uregs[rm];
|
|
unsigned long cpsr = regs->ARM_cpsr;
|
|
|
|
__asm__ __volatile__ (
|
|
"msr cpsr_fs, %[cpsr] \n\t"
|
|
BLX("%[fn]")
|
|
"mrs %[cpsr], cpsr \n\t"
|
|
: "=r" (rdlov), "=r" (rdhiv), [cpsr] "=r" (cpsr)
|
|
: "0" (rdlov), "1" (rdhiv), "r" (rnv), "r" (rmv),
|
|
"2" (cpsr), [fn] "r" (p->ainsn.insn_fn)
|
|
: "lr", "memory", "cc"
|
|
);
|
|
|
|
regs->uregs[rdlo] = rdlov;
|
|
regs->uregs[rdhi] = rdhiv;
|
|
regs->ARM_cpsr = (regs->ARM_cpsr & ~APSR_MASK) | (cpsr & APSR_MASK);
|
|
}
|
|
|
|
const union decode_action kprobes_arm_actions[NUM_PROBES_ARM_ACTIONS] = {
|
|
[PROBES_EMULATE_NONE] = {.handler = kprobe_emulate_none},
|
|
[PROBES_SIMULATE_NOP] = {.handler = kprobe_simulate_nop},
|
|
[PROBES_PRELOAD_IMM] = {.handler = kprobe_simulate_nop},
|
|
[PROBES_PRELOAD_REG] = {.handler = kprobe_simulate_nop},
|
|
[PROBES_BRANCH_IMM] = {.handler = simulate_blx1},
|
|
[PROBES_MRS] = {.handler = simulate_mrs},
|
|
[PROBES_BRANCH_REG] = {.handler = simulate_blx2bx},
|
|
[PROBES_CLZ] = {.handler = emulate_rd12rm0_noflags_nopc},
|
|
[PROBES_SATURATING_ARITHMETIC] = {
|
|
.handler = emulate_rd12rn16rm0_rwflags_nopc},
|
|
[PROBES_MUL1] = {.handler = emulate_rdlo12rdhi16rn0rm8_rwflags_nopc},
|
|
[PROBES_MUL2] = {.handler = emulate_rd16rn12rm0rs8_rwflags_nopc},
|
|
[PROBES_SWP] = {.handler = emulate_rd12rn16rm0_rwflags_nopc},
|
|
[PROBES_LDRSTRD] = {.handler = emulate_ldrdstrd},
|
|
[PROBES_LOAD_EXTRA] = {.handler = emulate_ldr},
|
|
[PROBES_LOAD] = {.handler = emulate_ldr},
|
|
[PROBES_STORE_EXTRA] = {.handler = emulate_str},
|
|
[PROBES_STORE] = {.handler = emulate_str},
|
|
[PROBES_MOV_IP_SP] = {.handler = simulate_mov_ipsp},
|
|
[PROBES_DATA_PROCESSING_REG] = {
|
|
.handler = emulate_rd12rn16rm0rs8_rwflags},
|
|
[PROBES_DATA_PROCESSING_IMM] = {
|
|
.handler = emulate_rd12rn16rm0rs8_rwflags},
|
|
[PROBES_MOV_HALFWORD] = {.handler = emulate_rd12rm0_noflags_nopc},
|
|
[PROBES_SEV] = {.handler = kprobe_emulate_none},
|
|
[PROBES_WFE] = {.handler = kprobe_simulate_nop},
|
|
[PROBES_SATURATE] = {.handler = emulate_rd12rn16rm0_rwflags_nopc},
|
|
[PROBES_REV] = {.handler = emulate_rd12rm0_noflags_nopc},
|
|
[PROBES_MMI] = {.handler = emulate_rd12rn16rm0_rwflags_nopc},
|
|
[PROBES_PACK] = {.handler = emulate_rd12rn16rm0_rwflags_nopc},
|
|
[PROBES_EXTEND] = {.handler = emulate_rd12rm0_noflags_nopc},
|
|
[PROBES_EXTEND_ADD] = {.handler = emulate_rd12rn16rm0_rwflags_nopc},
|
|
[PROBES_MUL_ADD_LONG] = {
|
|
.handler = emulate_rdlo12rdhi16rn0rm8_rwflags_nopc},
|
|
[PROBES_MUL_ADD] = {.handler = emulate_rd16rn12rm0rs8_rwflags_nopc},
|
|
[PROBES_BITFIELD] = {.handler = emulate_rd12rm0_noflags_nopc},
|
|
[PROBES_BRANCH] = {.handler = simulate_bbl},
|
|
[PROBES_LDMSTM] = {.decoder = kprobe_decode_ldmstm}
|
|
};
|