8 files changed, 74 insertions, 12 deletions
diff --git a/arch/arm/kernel/ptrace.c b/arch/arm/kernel/ptrace.c
index 2bf27f364d09..8182f45ca493 100644
--- a/arch/arm/kernel/ptrace.c
+++ b/arch/arm/kernel/ptrace.c
@@ -767,12 +767,20 @@ long arch_ptrace(struct task_struct *child, long request,
 #ifdef CONFIG_HAVE_HW_BREAKPOINT
                case PTRACE_GETHBPREGS:
+                        if (ptrace_get_breakpoints(child) < 0)
+                                return -ESRCH;
                        ret = ptrace_gethbpregs(child, addr,
                                                (unsigned long __user *)data);
+                        ptrace_put_breakpoints(child);
                        break;
                case PTRACE_SETHBPREGS:
+                        if (ptrace_get_breakpoints(child) < 0)
+                                return -ESRCH;
                        ret = ptrace_sethbpregs(child, addr,
                                                (unsigned long __user *)data);
+                        ptrace_put_breakpoints(child);
                        break;
 #endif
diff --git a/arch/powerpc/kernel/ptrace.c b/arch/powerpc/kernel/ptrace.c
index 55613e33e263..4edeeb325429 100644
--- a/arch/powerpc/kernel/ptrace.c
+++ b/arch/powerpc/kernel/ptrace.c
@@ -1591,7 +1591,10 @@ long arch_ptrace(struct task_struct *child, long request,
        }
        case PTRACE_SET_DEBUGREG:
+                if (ptrace_get_breakpoints(child) < 0)
+                        return -ESRCH;
                ret = ptrace_set_debugreg(child, addr, data);
+                ptrace_put_breakpoints(child);
                break;
 #ifdef CONFIG_PPC64
diff --git a/arch/sh/kernel/ptrace_32.c b/arch/sh/kernel/ptrace_32.c
index 2130ca674e9b..3d7b209b2178 100644
--- a/arch/sh/kernel/ptrace_32.c
+++ b/arch/sh/kernel/ptrace_32.c
@@ -117,7 +117,11 @@ void user_enable_single_step(struct task_struct *child)
        set_tsk_thread_flag(child, TIF_SINGLESTEP);
+        if (ptrace_get_breakpoints(child) < 0)
+                return;
        set_single_step(child, pc);
+        ptrace_put_breakpoints(child);
 }
 void user_disable_single_step(struct task_struct *child)
diff --git a/arch/x86/kernel/ptrace.c b/arch/x86/kernel/ptrace.c
index 45892dc4b72a..f65e5b521dbd 100644
--- a/arch/x86/kernel/ptrace.c
+++ b/arch/x86/kernel/ptrace.c
@@ -608,6 +608,9 @@ static int ptrace_write_dr7(struct task_struct *tsk, unsigned long data)
        unsigned len, type;
        struct perf_event *bp;
+        if (ptrace_get_breakpoints(tsk) < 0)
+                return -ESRCH;
        data &= ~DR_CONTROL_RESERVED;
        old_dr7 = ptrace_get_dr7(thread->ptrace_bps);
 restore:
@@ -655,6 +658,9 @@ restore:
                }
                goto restore;
        }
+        ptrace_put_breakpoints(tsk);
        return ((orig_ret < 0) ? orig_ret : rc);
 }
@@ -668,10 +674,17 @@ static unsigned long ptrace_get_debugreg(struct task_struct *tsk, int n)
        if (n < HBP_NUM) {
                struct perf_event *bp;
+                if (ptrace_get_breakpoints(tsk) < 0)
+                        return -ESRCH;
                bp = thread->ptrace_bps[n];
                if (!bp)
-                        return 0;
+                        val = 0;
-                val = bp->hw.info.address;
+                else
+                        val = bp->hw.info.address;
+                ptrace_put_breakpoints(tsk);
        } else if (n == 6) {
                val = thread->debugreg6;
         } else if (n == 7) {
@@ -686,6 +699,10 @@ static int ptrace_set_breakpoint_addr(struct task_struct *tsk, int nr,
        struct perf_event *bp;
        struct thread_struct *t = &tsk->thread;
        struct perf_event_attr attr;
+        int err = 0;
+        if (ptrace_get_breakpoints(tsk) < 0)
+                return -ESRCH;
        if (!t->ptrace_bps[nr]) {
                ptrace_breakpoint_init(&attr);
@@ -709,24 +726,23 @@ static int ptrace_set_breakpoint_addr(struct task_struct *tsk, int nr,
                 * writing for the user. And anyway this is the previous
                 * behaviour.
                 */
-                if (IS_ERR(bp))
+                if (IS_ERR(bp)) {
-                        return PTR_ERR(bp);
+                        err = PTR_ERR(bp);
+                        goto put;
+                }
                t->ptrace_bps[nr] = bp;
        } else {
-                int err;
                bp = t->ptrace_bps[nr];
                attr = bp->attr;
                attr.bp_addr = addr;
                err = modify_user_hw_breakpoint(bp, &attr);
-                if (err)
-                        return err;
        }
+put:
-        return 0;
+        ptrace_put_breakpoints(tsk);
+        return err;
 }
 /*
diff --git a/include/linux/ptrace.h b/include/linux/ptrace.h
index a1147e5dd245..9178d5cc0b01 100644
--- a/include/linux/ptrace.h
+++ b/include/linux/ptrace.h
@@ -189,6 +189,10 @@ static inline void ptrace_init_task(struct task_struct *child, bool ptrace)
                child->ptrace = current->ptrace;
                __ptrace_link(child, current->parent);
        }
+#ifdef CONFIG_HAVE_HW_BREAKPOINT
+        atomic_set(&child->ptrace_bp_refcnt, 1);
+#endif
 }
 /**
@@ -350,6 +354,13 @@ extern int task_current_syscall(struct task_struct *target, long *callno,
                                unsigned long args[6], unsigned int maxargs,
                                unsigned long *sp, unsigned long *pc);
-#endif
+#ifdef CONFIG_HAVE_HW_BREAKPOINT
+extern int ptrace_get_breakpoints(struct task_struct *tsk);
+extern void ptrace_put_breakpoints(struct task_struct *tsk);
+#else
+static inline void ptrace_put_breakpoints(struct task_struct *tsk) { }
+#endif /* CONFIG_HAVE_HW_BREAKPOINT */
+#endif /* __KERNEL */
 #endif
diff --git a/include/linux/sched.h b/include/linux/sched.h
index 18d63cea2848..781abd137673 100644
--- a/include/linux/sched.h
+++ b/include/linux/sched.h
@@ -1537,6 +1537,9 @@ struct task_struct {
                unsigned long memsw_nr_pages; /* uncharged mem+swap usage */
        } memcg_batch;
 #endif
+#ifdef CONFIG_HAVE_HW_BREAKPOINT
+        atomic_t ptrace_bp_refcnt;
+#endif
 };
 /* Future-safe accessor for struct task_struct's cpus_allowed. */
diff --git a/kernel/exit.c b/kernel/exit.c
index f5d2f63bae0b..8dd874181542 100644
--- a/kernel/exit.c
+++ b/kernel/exit.c
@@ -1016,7 +1016,7 @@ NORET_TYPE void do_exit(long code)
        /*
         * FIXME: do that only when needed, using sched_exit tracepoint
         */
-        flush_ptrace_hw_breakpoint(tsk);
+        ptrace_put_breakpoints(tsk);
        exit_notify(tsk, group_dead);
 #ifdef CONFIG_NUMA
diff --git a/kernel/ptrace.c b/kernel/ptrace.c
index 0fc1eed28d27..dc7ab65f3b36 100644
--- a/kernel/ptrace.c
+++ b/kernel/ptrace.c
@@ -22,6 +22,7 @@
 #include <linux/syscalls.h>
 #include <linux/uaccess.h>
 #include <linux/regset.h>
+#include <linux/hw_breakpoint.h>
 /*
@@ -879,3 +880,19 @@ asmlinkage long compat_sys_ptrace(compat_long_t request, compat_long_t pid,
        return ret;
 }
 #endif  /* CONFIG_COMPAT */
+#ifdef CONFIG_HAVE_HW_BREAKPOINT
+int ptrace_get_breakpoints(struct task_struct *tsk)
+{
+        if (atomic_inc_not_zero(&tsk->ptrace_bp_refcnt))
+                return 0;
+        return -1;
+}
+void ptrace_put_breakpoints(struct task_struct *tsk)
+{
+        if (atomic_dec_and_test(&tsk->ptrace_bp_refcnt))
+                flush_ptrace_hw_breakpoint(tsk);
+}
+#endif /* CONFIG_HAVE_HW_BREAKPOINT */

diff --git a/arch/arm/kernel/ptrace.c b/arch/arm/kernel/ptrace.c index 2bf27f364d09..8182f45ca493 100644 --- a/arch/arm/kernel/ptrace.c +++ b/arch/arm/kernel/ptrace.c
@@ -767,12 +767,20 @@ long arch_ptrace(struct task_struct *child, long request,
767		767
768	#ifdef CONFIG_HAVE_HW_BREAKPOINT	768	#ifdef CONFIG_HAVE_HW_BREAKPOINT
769	case PTRACE_GETHBPREGS:	769	case PTRACE_GETHBPREGS:
		770	if (ptrace_get_breakpoints(child) < 0)
		771	return -ESRCH;
		772
770	ret = ptrace_gethbpregs(child, addr,	773	ret = ptrace_gethbpregs(child, addr,
771	(unsigned long __user *)data);	774	(unsigned long __user *)data);
		775	ptrace_put_breakpoints(child);
772	break;	776	break;
773	case PTRACE_SETHBPREGS:	777	case PTRACE_SETHBPREGS:
		778	if (ptrace_get_breakpoints(child) < 0)
		779	return -ESRCH;
		780
774	ret = ptrace_sethbpregs(child, addr,	781	ret = ptrace_sethbpregs(child, addr,
775	(unsigned long __user *)data);	782	(unsigned long __user *)data);
		783	ptrace_put_breakpoints(child);
776	break;	784	break;
777	#endif	785	#endif
778		786


diff --git a/arch/powerpc/kernel/ptrace.c b/arch/powerpc/kernel/ptrace.c index 55613e33e263..4edeeb325429 100644 --- a/arch/powerpc/kernel/ptrace.c +++ b/arch/powerpc/kernel/ptrace.c
@@ -1591,7 +1591,10 @@ long arch_ptrace(struct task_struct *child, long request,
1591	}	1591	}
1592		1592
1593	case PTRACE_SET_DEBUGREG:	1593	case PTRACE_SET_DEBUGREG:
		1594	if (ptrace_get_breakpoints(child) < 0)
		1595	return -ESRCH;
1594	ret = ptrace_set_debugreg(child, addr, data);	1596	ret = ptrace_set_debugreg(child, addr, data);
		1597	ptrace_put_breakpoints(child);
1595	break;	1598	break;
1596		1599
1597	#ifdef CONFIG_PPC64	1600	#ifdef CONFIG_PPC64


diff --git a/arch/sh/kernel/ptrace_32.c b/arch/sh/kernel/ptrace_32.c index 2130ca674e9b..3d7b209b2178 100644 --- a/arch/sh/kernel/ptrace_32.c +++ b/arch/sh/kernel/ptrace_32.c
@@ -117,7 +117,11 @@ void user_enable_single_step(struct task_struct *child)
117		117
118	set_tsk_thread_flag(child, TIF_SINGLESTEP);	118	set_tsk_thread_flag(child, TIF_SINGLESTEP);
119		119
		120	if (ptrace_get_breakpoints(child) < 0)
		121	return;
		122
120	set_single_step(child, pc);	123	set_single_step(child, pc);
		124	ptrace_put_breakpoints(child);
121	}	125	}
122		126
123	void user_disable_single_step(struct task_struct *child)	127	void user_disable_single_step(struct task_struct *child)


diff --git a/arch/x86/kernel/ptrace.c b/arch/x86/kernel/ptrace.c index 45892dc4b72a..f65e5b521dbd 100644 --- a/arch/x86/kernel/ptrace.c +++ b/arch/x86/kernel/ptrace.c
@@ -608,6 +608,9 @@ static int ptrace_write_dr7(struct task_struct *tsk, unsigned long data)
608	unsigned len, type;	608	unsigned len, type;
609	struct perf_event *bp;	609	struct perf_event *bp;
610		610
		611	if (ptrace_get_breakpoints(tsk) < 0)
		612	return -ESRCH;
		613
611	data &= ~DR_CONTROL_RESERVED;	614	data &= ~DR_CONTROL_RESERVED;
612	old_dr7 = ptrace_get_dr7(thread->ptrace_bps);	615	old_dr7 = ptrace_get_dr7(thread->ptrace_bps);
613	restore:	616	restore:
@@ -655,6 +658,9 @@ restore:
655	}	658	}
656	goto restore;	659	goto restore;
657	}	660	}
		661
		662	ptrace_put_breakpoints(tsk);
		663
658	return ((orig_ret < 0) ? orig_ret : rc);	664	return ((orig_ret < 0) ? orig_ret : rc);
659	}	665	}
660		666
@@ -668,10 +674,17 @@ static unsigned long ptrace_get_debugreg(struct task_struct *tsk, int n)
668		674
669	if (n < HBP_NUM) {	675	if (n < HBP_NUM) {
670	struct perf_event *bp;	676	struct perf_event *bp;
		677
		678	if (ptrace_get_breakpoints(tsk) < 0)
		679	return -ESRCH;
		680
671	bp = thread->ptrace_bps[n];	681	bp = thread->ptrace_bps[n];
672	if (!bp)	682	if (!bp)
673	return 0;	683	val = 0;
674	val = bp->hw.info.address;	684	else
		685	val = bp->hw.info.address;
		686
		687	ptrace_put_breakpoints(tsk);
675	} else if (n == 6) {	688	} else if (n == 6) {
676	val = thread->debugreg6;	689	val = thread->debugreg6;
677	} else if (n == 7) {	690	} else if (n == 7) {
@@ -686,6 +699,10 @@ static int ptrace_set_breakpoint_addr(struct task_struct *tsk, int nr,
686	struct perf_event *bp;	699	struct perf_event *bp;
687	struct thread_struct *t = &tsk->thread;	700	struct thread_struct *t = &tsk->thread;
688	struct perf_event_attr attr;	701	struct perf_event_attr attr;
		702	int err = 0;
		703
		704	if (ptrace_get_breakpoints(tsk) < 0)
		705	return -ESRCH;
689		706
690	if (!t->ptrace_bps[nr]) {	707	if (!t->ptrace_bps[nr]) {
691	ptrace_breakpoint_init(&attr);	708	ptrace_breakpoint_init(&attr);
@@ -709,24 +726,23 @@ static int ptrace_set_breakpoint_addr(struct task_struct *tsk, int nr,
709	* writing for the user. And anyway this is the previous	726	* writing for the user. And anyway this is the previous
710	* behaviour.	727	* behaviour.
711	*/	728	*/
712	if (IS_ERR(bp))	729	if (IS_ERR(bp)) {
713	return PTR_ERR(bp);	730	err = PTR_ERR(bp);
		731	goto put;
		732	}
714		733
715	t->ptrace_bps[nr] = bp;	734	t->ptrace_bps[nr] = bp;
716	} else {	735	} else {
717	int err;
718
719	bp = t->ptrace_bps[nr];	736	bp = t->ptrace_bps[nr];
720		737
721	attr = bp->attr;	738	attr = bp->attr;
722	attr.bp_addr = addr;	739	attr.bp_addr = addr;
723	err = modify_user_hw_breakpoint(bp, &attr);	740	err = modify_user_hw_breakpoint(bp, &attr);
724	if (err)
725	return err;
726	}	741	}
727		742
728		743	put:
729	return 0;	744	ptrace_put_breakpoints(tsk);
		745	return err;
730	}	746	}
731		747
732	/*	748	/*


diff --git a/include/linux/ptrace.h b/include/linux/ptrace.h index a1147e5dd245..9178d5cc0b01 100644 --- a/include/linux/ptrace.h +++ b/include/linux/ptrace.h
@@ -189,6 +189,10 @@ static inline void ptrace_init_task(struct task_struct *child, bool ptrace)
189	child->ptrace = current->ptrace;	189	child->ptrace = current->ptrace;
190	__ptrace_link(child, current->parent);	190	__ptrace_link(child, current->parent);
191	}	191	}
		192
		193	#ifdef CONFIG_HAVE_HW_BREAKPOINT
		194	atomic_set(&child->ptrace_bp_refcnt, 1);
		195	#endif
192	}	196	}
193		197
194	/**	198	/**
@@ -350,6 +354,13 @@ extern int task_current_syscall(struct task_struct target, long callno,
350	unsigned long args[6], unsigned int maxargs,	354	unsigned long args[6], unsigned int maxargs,
351	unsigned long sp, unsigned long pc);	355	unsigned long sp, unsigned long pc);
352		356
353	#endif	357	#ifdef CONFIG_HAVE_HW_BREAKPOINT
		358	extern int ptrace_get_breakpoints(struct task_struct *tsk);
		359	extern void ptrace_put_breakpoints(struct task_struct *tsk);
		360	#else
		361	static inline void ptrace_put_breakpoints(struct task_struct *tsk) { }
		362	#endif /* CONFIG_HAVE_HW_BREAKPOINT */
		363
		364	#endif /* __KERNEL */
354		365
355	#endif	366	#endif


diff --git a/include/linux/sched.h b/include/linux/sched.h index 18d63cea2848..781abd137673 100644 --- a/include/linux/sched.h +++ b/include/linux/sched.h
@@ -1537,6 +1537,9 @@ struct task_struct {
1537	unsigned long memsw_nr_pages; /* uncharged mem+swap usage */	1537	unsigned long memsw_nr_pages; /* uncharged mem+swap usage */
1538	} memcg_batch;	1538	} memcg_batch;
1539	#endif	1539	#endif
		1540	#ifdef CONFIG_HAVE_HW_BREAKPOINT
		1541	atomic_t ptrace_bp_refcnt;
		1542	#endif
1540	};	1543	};
1541		1544
1542	/* Future-safe accessor for struct task_struct's cpus_allowed. */	1545	/* Future-safe accessor for struct task_struct's cpus_allowed. */


diff --git a/kernel/exit.c b/kernel/exit.c index f5d2f63bae0b..8dd874181542 100644 --- a/kernel/exit.c +++ b/kernel/exit.c
@@ -1016,7 +1016,7 @@ NORET_TYPE void do_exit(long code)
1016	/*	1016	/*
1017	* FIXME: do that only when needed, using sched_exit tracepoint	1017	* FIXME: do that only when needed, using sched_exit tracepoint
1018	*/	1018	*/
1019	flush_ptrace_hw_breakpoint(tsk);	1019	ptrace_put_breakpoints(tsk);
1020		1020
1021	exit_notify(tsk, group_dead);	1021	exit_notify(tsk, group_dead);
1022	#ifdef CONFIG_NUMA	1022	#ifdef CONFIG_NUMA


diff --git a/kernel/ptrace.c b/kernel/ptrace.c index 0fc1eed28d27..dc7ab65f3b36 100644 --- a/kernel/ptrace.c +++ b/kernel/ptrace.c
@@ -22,6 +22,7 @@
22	#include <linux/syscalls.h>	22	#include <linux/syscalls.h>
23	#include <linux/uaccess.h>	23	#include <linux/uaccess.h>
24	#include <linux/regset.h>	24	#include <linux/regset.h>
		25	#include <linux/hw_breakpoint.h>
25		26
26		27
27	/*	28	/*
@@ -879,3 +880,19 @@ asmlinkage long compat_sys_ptrace(compat_long_t request, compat_long_t pid,
879	return ret;	880	return ret;
880	}	881	}
881	#endif /* CONFIG_COMPAT */	882	#endif /* CONFIG_COMPAT */
		883
		884	#ifdef CONFIG_HAVE_HW_BREAKPOINT
		885	int ptrace_get_breakpoints(struct task_struct *tsk)
		886	{
		887	if (atomic_inc_not_zero(&tsk->ptrace_bp_refcnt))
		888	return 0;
		889
		890	return -1;
		891	}
		892
		893	void ptrace_put_breakpoints(struct task_struct *tsk)
		894	{
		895	if (atomic_dec_and_test(&tsk->ptrace_bp_refcnt))
		896	flush_ptrace_hw_breakpoint(tsk);
		897	}
		898	#endif /* CONFIG_HAVE_HW_BREAKPOINT */