diff options
| author | Arnd Bergmann <arnd@arndb.de> | 2011-05-03 13:32:55 -0400 |
|---|---|---|
| committer | Russell King <rmk+kernel@arm.linux.org.uk> | 2011-05-12 05:52:00 -0400 |
| commit | 2af68df02fe5ccd644f4312ba2401996f52faab3 (patch) | |
| tree | b881d8561a1d1831f45b4a40b7351e72dfa48110 | |
| parent | 9af386c8dc5a9dce56f36b484647ad6401758c85 (diff) | |
ARM: 6892/1: handle ptrace requests to change PC during interrupted system calls
GDB's interrupt.exp test cases currenly fail on ARM. The problem is how do_signal
handled restarting interrupted system calls:
The entry.S assembler code determines that we come from a system call; and that
information is passed as "syscall" parameter to do_signal. That routine then
calls get_signal_to_deliver [*] and if a signal is to be delivered, calls into
handle_signal. If a system call is to be restarted either after the signal
handler returns, or if no handler is to be called in the first place, the PC
is updated after the get_signal_to_deliver call, either in handle_signal (if
we have a handler) or at the end of do_signal (otherwise).
Now the problem is that during [*], the call to get_signal_to_deliver, a ptrace
intercept may happen. During this intercept, the debugger may change registers,
including the PC. This is done by GDB if it wants to execute an "inferior call",
i.e. the execution of some code in the debugged program triggered by GDB.
To this purpose, GDB will save all registers, allocate a stack frame, set up
PC and arguments as appropriate for the call, and point the link register to
a dummy breakpoint instruction. Once the process is restarted, it will execute
the call and then trap back to the debugger, at which point GDB will restore
all registers and continue original execution.
This generally works fine. However, now consider what happens when GDB attempts
to do exactly that while the process was interrupted during execution of a to-be-
restarted system call: do_signal is called with the syscall flag set; it calls
get_signal_to_deliver, at which point the debugger takes over and changes the PC
to point to a completely different place. Now get_signal_to_deliver returns
without a signal to deliver; but now do_signal decides it should be restarting
a system call, and decrements the PC by 2 or 4 -- so it now points to 2 or 4
bytes before the function GDB wants to call -- which leads to a subsequent crash.
To fix this problem, two things need to be supported:
- do_signal must be able to recognize that get_signal_to_deliver changed the PC
to a different location, and skip the restart-syscall sequence
- once the debugger has restored all registers at the end of the inferior call
sequence, do_signal must recognize that *now* it needs to restart the pending
system call, even though it was now entered from a breakpoint instead of an
actual svc instruction
This set of issues is solved on other platforms, usually by one of two
mechanisms:
- The status information "do_signal is handling a system call that may need
restarting" is itself carried in some register that can be accessed via
ptrace. This is e.g. on Intel the "orig_eax" register; on Sparc the kernel
defines a magic extra bit in the flags register for this purpose.
This allows GDB to manage that state: reset it when doing an inferior call,
and restore it after the call is finished.
- On s390, do_signal transparently handles this problem without requiring
GDB interaction, by performing system call restarting in the following
way: first, adjust the PC as necessary for restarting the call. Then,
call get_signal_to_deliver; and finally just continue execution at the
PC. This way, if GDB does not change the PC, everything is as before.
If GDB *does* change the PC, execution will simply continue there --
and once GDB restores the PC it saved at that point, it will automatically
point to the *restarted* system call. (There is the minor twist how to
handle system calls that do *not* need restarting -- do_signal will undo
the PC change in this case, after get_signal_to_deliver has returned, and
only if ptrace did not change the PC during that call.)
Because there does not appear to be any obvious register to carry the
syscall-restart information on ARM, we'd either have to introduce a new
artificial ptrace register just for that purpose, or else handle the issue
transparently like on s390. The patch below implements the second option;
using this patch makes the interrupt.exp test cases pass on ARM, with no
regression in the GDB test suite otherwise.
Cc: patches@linaro.org
Signed-off-by: Ulrich Weigand <ulrich.weigand@linaro.org>
Signed-off-by: Arnd Bergmann <arnd.bergmann@linaro.org>
Signed-off-by: Russell King <rmk+kernel@arm.linux.org.uk>
| -rw-r--r-- | arch/arm/kernel/signal.c | 90 |
1 files changed, 53 insertions, 37 deletions
diff --git a/arch/arm/kernel/signal.c b/arch/arm/kernel/signal.c index cb839831764..0340224cf73 100644 --- a/arch/arm/kernel/signal.c +++ b/arch/arm/kernel/signal.c | |||
| @@ -597,19 +597,13 @@ setup_rt_frame(int usig, struct k_sigaction *ka, siginfo_t *info, | |||
| 597 | return err; | 597 | return err; |
| 598 | } | 598 | } |
| 599 | 599 | ||
| 600 | static inline void setup_syscall_restart(struct pt_regs *regs) | ||
| 601 | { | ||
| 602 | regs->ARM_r0 = regs->ARM_ORIG_r0; | ||
| 603 | regs->ARM_pc -= thumb_mode(regs) ? 2 : 4; | ||
| 604 | } | ||
| 605 | |||
| 606 | /* | 600 | /* |
| 607 | * OK, we're invoking a handler | 601 | * OK, we're invoking a handler |
| 608 | */ | 602 | */ |
| 609 | static int | 603 | static int |
| 610 | handle_signal(unsigned long sig, struct k_sigaction *ka, | 604 | handle_signal(unsigned long sig, struct k_sigaction *ka, |
| 611 | siginfo_t *info, sigset_t *oldset, | 605 | siginfo_t *info, sigset_t *oldset, |
| 612 | struct pt_regs * regs, int syscall) | 606 | struct pt_regs * regs) |
| 613 | { | 607 | { |
| 614 | struct thread_info *thread = current_thread_info(); | 608 | struct thread_info *thread = current_thread_info(); |
| 615 | struct task_struct *tsk = current; | 609 | struct task_struct *tsk = current; |
| @@ -617,26 +611,6 @@ handle_signal(unsigned long sig, struct k_sigaction *ka, | |||
| 617 | int ret; | 611 | int ret; |
| 618 | 612 | ||
| 619 | /* | 613 | /* |
| 620 | * If we were from a system call, check for system call restarting... | ||
| 621 | */ | ||
| 622 | if (syscall) { | ||
| 623 | switch (regs->ARM_r0) { | ||
| 624 | case -ERESTART_RESTARTBLOCK: | ||
| 625 | case -ERESTARTNOHAND: | ||
| 626 | regs->ARM_r0 = -EINTR; | ||
| 627 | break; | ||
| 628 | case -ERESTARTSYS: | ||
| 629 | if (!(ka->sa.sa_flags & SA_RESTART)) { | ||
| 630 | regs->ARM_r0 = -EINTR; | ||
| 631 | break; | ||
| 632 | } | ||
| 633 | /* fallthrough */ | ||
| 634 | case -ERESTARTNOINTR: | ||
| 635 | setup_syscall_restart(regs); | ||
| 636 | } | ||
| 637 | } | ||
| 638 | |||
| 639 | /* | ||
| 640 | * translate the signal | 614 | * translate the signal |
| 641 | */ | 615 | */ |
| 642 | if (usig < 32 && thread->exec_domain && thread->exec_domain->signal_invmap) | 616 | if (usig < 32 && thread->exec_domain && thread->exec_domain->signal_invmap) |
| @@ -685,6 +659,7 @@ handle_signal(unsigned long sig, struct k_sigaction *ka, | |||
| 685 | */ | 659 | */ |
| 686 | static void do_signal(struct pt_regs *regs, int syscall) | 660 | static void do_signal(struct pt_regs *regs, int syscall) |
| 687 | { | 661 | { |
| 662 | unsigned int retval = 0, continue_addr = 0, restart_addr = 0; | ||
| 688 | struct k_sigaction ka; | 663 | struct k_sigaction ka; |
| 689 | siginfo_t info; | 664 | siginfo_t info; |
| 690 | int signr; | 665 | int signr; |
| @@ -698,18 +673,61 @@ static void do_signal(struct pt_regs *regs, int syscall) | |||
| 698 | if (!user_mode(regs)) | 673 | if (!user_mode(regs)) |
| 699 | return; | 674 | return; |
| 700 | 675 | ||
| 676 | /* | ||
| 677 | * If we were from a system call, check for system call restarting... | ||
| 678 | */ | ||
| 679 | if (syscall) { | ||
| 680 | continue_addr = regs->ARM_pc; | ||
| 681 | restart_addr = continue_addr - (thumb_mode(regs) ? 2 : 4); | ||
| 682 | retval = regs->ARM_r0; | ||
| 683 | |||
| 684 | /* | ||
| 685 | * Prepare for system call restart. We do this here so that a | ||
| 686 | * debugger will see the already changed PSW. | ||
| 687 | */ | ||
| 688 | switch (retval) { | ||
| 689 | case -ERESTARTNOHAND: | ||
| 690 | case -ERESTARTSYS: | ||
| 691 | case -ERESTARTNOINTR: | ||
| 692 | regs->ARM_r0 = regs->ARM_ORIG_r0; | ||
| 693 | regs->ARM_pc = restart_addr; | ||
| 694 | break; | ||
| 695 | case -ERESTART_RESTARTBLOCK: | ||
| 696 | regs->ARM_r0 = -EINTR; | ||
| 697 | break; | ||
| 698 | } | ||
| 699 | } | ||
| 700 | |||
| 701 | if (try_to_freeze()) | 701 | if (try_to_freeze()) |
| 702 | goto no_signal; | 702 | goto no_signal; |
| 703 | 703 | ||
| 704 | /* | ||
| 705 | * Get the signal to deliver. When running under ptrace, at this | ||
| 706 | * point the debugger may change all our registers ... | ||
| 707 | */ | ||
| 704 | signr = get_signal_to_deliver(&info, &ka, regs, NULL); | 708 | signr = get_signal_to_deliver(&info, &ka, regs, NULL); |
| 705 | if (signr > 0) { | 709 | if (signr > 0) { |
| 706 | sigset_t *oldset; | 710 | sigset_t *oldset; |
| 707 | 711 | ||
| 712 | /* | ||
| 713 | * Depending on the signal settings we may need to revert the | ||
| 714 | * decision to restart the system call. But skip this if a | ||
| 715 | * debugger has chosen to restart at a different PC. | ||
| 716 | */ | ||
| 717 | if (regs->ARM_pc == restart_addr) { | ||
| 718 | if (retval == -ERESTARTNOHAND | ||
| 719 | || (retval == -ERESTARTSYS | ||
| 720 | && !(ka.sa.sa_flags & SA_RESTART))) { | ||
| 721 | regs->ARM_r0 = -EINTR; | ||
| 722 | regs->ARM_pc = continue_addr; | ||
| 723 | } | ||
| 724 | } | ||
| 725 | |||
| 708 | if (test_thread_flag(TIF_RESTORE_SIGMASK)) | 726 | if (test_thread_flag(TIF_RESTORE_SIGMASK)) |
| 709 | oldset = ¤t->saved_sigmask; | 727 | oldset = ¤t->saved_sigmask; |
| 710 | else | 728 | else |
| 711 | oldset = ¤t->blocked; | 729 | oldset = ¤t->blocked; |
| 712 | if (handle_signal(signr, &ka, &info, oldset, regs, syscall) == 0) { | 730 | if (handle_signal(signr, &ka, &info, oldset, regs) == 0) { |
| 713 | /* | 731 | /* |
| 714 | * A signal was successfully delivered; the saved | 732 | * A signal was successfully delivered; the saved |
| 715 | * sigmask will have been stored in the signal frame, | 733 | * sigmask will have been stored in the signal frame, |
| @@ -723,11 +741,14 @@ static void do_signal(struct pt_regs *regs, int syscall) | |||
| 723 | } | 741 | } |
| 724 | 742 | ||
| 725 | no_signal: | 743 | no_signal: |
| 726 | /* | ||
| 727 | * No signal to deliver to the process - restart the syscall. | ||
| 728 | */ | ||
| 729 | if (syscall) { | 744 | if (syscall) { |
| 730 | if (regs->ARM_r0 == -ERESTART_RESTARTBLOCK) { | 745 | /* |
| 746 | * Handle restarting a different system call. As above, | ||
| 747 | * if a debugger has chosen to restart at a different PC, | ||
| 748 | * ignore the restart. | ||
| 749 | */ | ||
| 750 | if (retval == -ERESTART_RESTARTBLOCK | ||
| 751 | && regs->ARM_pc == continue_addr) { | ||
| 731 | if (thumb_mode(regs)) { | 752 | if (thumb_mode(regs)) { |
| 732 | regs->ARM_r7 = __NR_restart_syscall - __NR_SYSCALL_BASE; | 753 | regs->ARM_r7 = __NR_restart_syscall - __NR_SYSCALL_BASE; |
| 733 | regs->ARM_pc -= 2; | 754 | regs->ARM_pc -= 2; |
| @@ -750,11 +771,6 @@ static void do_signal(struct pt_regs *regs, int syscall) | |||
| 750 | #endif | 771 | #endif |
| 751 | } | 772 | } |
| 752 | } | 773 | } |
| 753 | if (regs->ARM_r0 == -ERESTARTNOHAND || | ||
| 754 | regs->ARM_r0 == -ERESTARTSYS || | ||
| 755 | regs->ARM_r0 == -ERESTARTNOINTR) { | ||
| 756 | setup_syscall_restart(regs); | ||
| 757 | } | ||
| 758 | 774 | ||
| 759 | /* If there's no signal to deliver, we just put the saved sigmask | 775 | /* If there's no signal to deliver, we just put the saved sigmask |
| 760 | * back. | 776 | * back. |