1 files changed, 79 insertions, 10 deletions
diff --git a/arch/x86/kernel/cpu/perf_event.c b/arch/x86/kernel/cpu/perf_event.c
index 29557aa06dda..915b876edd1e 100644
--- a/arch/x86/kernel/cpu/perf_event.c
+++ b/arch/x86/kernel/cpu/perf_event.c
@@ -32,6 +32,8 @@
 #include <asm/smp.h>
 #include <asm/alternative.h>
 #include <asm/timer.h>
+#include <asm/desc.h>
+#include <asm/ldt.h>
 #include "perf_event.h"
@@ -1738,6 +1740,29 @@ valid_user_frame(const void __user *fp, unsigned long size)
        return (__range_not_ok(fp, size, TASK_SIZE) == 0);
 }
+static unsigned long get_segment_base(unsigned int segment)
+{
+        struct desc_struct *desc;
+        int idx = segment >> 3;
+        if ((segment & SEGMENT_TI_MASK) == SEGMENT_LDT) {
+                if (idx > LDT_ENTRIES)
+                        return 0;
+                if (idx > current->active_mm->context.size)
+                        return 0;
+                desc = current->active_mm->context.ldt;
+        } else {
+                if (idx > GDT_ENTRIES)
+                        return 0;
+                desc = __this_cpu_ptr(&gdt_page.gdt[0]);
+        }
+        return get_desc_base(desc + idx);
+}
 #ifdef CONFIG_COMPAT
 #include <asm/compat.h>
@@ -1746,13 +1771,17 @@ static inline int
 perf_callchain_user32(struct pt_regs *regs, struct perf_callchain_entry *entry)
 {
        /* 32-bit process in 64-bit kernel. */
+        unsigned long ss_base, cs_base;
        struct stack_frame_ia32 frame;
        const void __user *fp;
        if (!test_thread_flag(TIF_IA32))
                return 0;
-        fp = compat_ptr(regs->bp);
+        cs_base = get_segment_base(regs->cs);
+        ss_base = get_segment_base(regs->ss);
+        fp = compat_ptr(ss_base + regs->bp);
        while (entry->nr < PERF_MAX_STACK_DEPTH) {
                unsigned long bytes;
                frame.next_frame     = 0;
@@ -1765,8 +1794,8 @@ perf_callchain_user32(struct pt_regs *regs, struct perf_callchain_entry *entry)
                if (!valid_user_frame(fp, sizeof(frame)))
                        break;
-                perf_callchain_store(entry, frame.return_address);
+                perf_callchain_store(entry, cs_base + frame.return_address);
-                fp = compat_ptr(frame.next_frame);
+                fp = compat_ptr(ss_base + frame.next_frame);
        }
        return 1;
 }
@@ -1789,6 +1818,12 @@ perf_callchain_user(struct perf_callchain_entry *entry, struct pt_regs *regs)
                return;
        }
+        /*
+         * We don't know what to do with VM86 stacks.. ignore them for now.
+         */
+        if (regs->flags & (X86_VM_MASK | PERF_EFLAGS_VM))
+                return;
        fp = (void __user *)regs->bp;
        perf_callchain_store(entry, regs->ip);
@@ -1816,16 +1851,50 @@ perf_callchain_user(struct perf_callchain_entry *entry, struct pt_regs *regs)
        }
 }
-unsigned long perf_instruction_pointer(struct pt_regs *regs)
+/*
+ * Deal with code segment offsets for the various execution modes:
+ *
+ *   VM86 - the good olde 16 bit days, where the linear address is
+ *          20 bits and we use regs->ip + 0x10 * regs->cs.
+ *
+ *   IA32 - Where we need to look at GDT/LDT segment descriptor tables
+ *          to figure out what the 32bit base address is.
+ *
+ *    X32 - has TIF_X32 set, but is running in x86_64
+ *
+ * X86_64 - CS,DS,SS,ES are all zero based.
+ */
+static unsigned long code_segment_base(struct pt_regs *regs)
 {
-        unsigned long ip;
+        /*
+         * If we are in VM86 mode, add the segment offset to convert to a
+         * linear address.
+         */
+        if (regs->flags & X86_VM_MASK)
+                return 0x10 * regs->cs;
+        /*
+         * For IA32 we look at the GDT/LDT segment base to convert the
+         * effective IP to a linear address.
+         */
+#ifdef CONFIG_X86_32
+        if (user_mode(regs) && regs->cs != __USER_CS)
+                return get_segment_base(regs->cs);
+#else
+        if (test_thread_flag(TIF_IA32)) {
+                if (user_mode(regs) && regs->cs != __USER32_CS)
+                        return get_segment_base(regs->cs);
+        }
+#endif
+        return 0;
+}
+unsigned long perf_instruction_pointer(struct pt_regs *regs)
+{
        if (perf_guest_cbs && perf_guest_cbs->is_in_guest())
-                ip = perf_guest_cbs->get_guest_ip();
+                return perf_guest_cbs->get_guest_ip();
-        else
-                ip = instruction_pointer(regs);
-        return ip;
+        return regs->ip + code_segment_base(regs);
 }
 unsigned long perf_misc_flags(struct pt_regs *regs)
@@ -1838,7 +1907,7 @@ unsigned long perf_misc_flags(struct pt_regs *regs)
                else
                        misc |= PERF_RECORD_MISC_GUEST_KERNEL;
        } else {
-                if (!kernel_ip(regs->ip))
+                if (user_mode(regs))
                        misc |= PERF_RECORD_MISC_USER;
                else
                        misc |= PERF_RECORD_MISC_KERNEL;

diff --git a/arch/x86/kernel/cpu/perf_event.c b/arch/x86/kernel/cpu/perf_event.c index 29557aa06dda..915b876edd1e 100644 --- a/arch/x86/kernel/cpu/perf_event.c +++ b/arch/x86/kernel/cpu/perf_event.c
@@ -32,6 +32,8 @@
32	#include <asm/smp.h>	32	#include <asm/smp.h>
33	#include <asm/alternative.h>	33	#include <asm/alternative.h>
34	#include <asm/timer.h>	34	#include <asm/timer.h>
		35	#include <asm/desc.h>
		36	#include <asm/ldt.h>
35		37
36	#include "perf_event.h"	38	#include "perf_event.h"
37		39
@@ -1738,6 +1740,29 @@ valid_user_frame(const void __user *fp, unsigned long size)
1738	return (__range_not_ok(fp, size, TASK_SIZE) == 0);	1740	return (__range_not_ok(fp, size, TASK_SIZE) == 0);
1739	}	1741	}
1740		1742
		1743	static unsigned long get_segment_base(unsigned int segment)
		1744	{
		1745	struct desc_struct *desc;
		1746	int idx = segment >> 3;
		1747
		1748	if ((segment & SEGMENT_TI_MASK) == SEGMENT_LDT) {
		1749	if (idx > LDT_ENTRIES)
		1750	return 0;
		1751
		1752	if (idx > current->active_mm->context.size)
		1753	return 0;
		1754
		1755	desc = current->active_mm->context.ldt;
		1756	} else {
		1757	if (idx > GDT_ENTRIES)
		1758	return 0;
		1759
		1760	desc = __this_cpu_ptr(&gdt_page.gdt[0]);
		1761	}
		1762
		1763	return get_desc_base(desc + idx);
		1764	}
		1765
1741	#ifdef CONFIG_COMPAT	1766	#ifdef CONFIG_COMPAT
1742		1767
1743	#include <asm/compat.h>	1768	#include <asm/compat.h>
@@ -1746,13 +1771,17 @@ static inline int
1746	perf_callchain_user32(struct pt_regs regs, struct perf_callchain_entry entry)	1771	perf_callchain_user32(struct pt_regs regs, struct perf_callchain_entry entry)
1747	{	1772	{
1748	/* 32-bit process in 64-bit kernel. */	1773	/* 32-bit process in 64-bit kernel. */
		1774	unsigned long ss_base, cs_base;
1749	struct stack_frame_ia32 frame;	1775	struct stack_frame_ia32 frame;
1750	const void __user *fp;	1776	const void __user *fp;
1751		1777
1752	if (!test_thread_flag(TIF_IA32))	1778	if (!test_thread_flag(TIF_IA32))
1753	return 0;	1779	return 0;
1754		1780
1755	fp = compat_ptr(regs->bp);	1781	cs_base = get_segment_base(regs->cs);
		1782	ss_base = get_segment_base(regs->ss);
		1783
		1784	fp = compat_ptr(ss_base + regs->bp);
1756	while (entry->nr < PERF_MAX_STACK_DEPTH) {	1785	while (entry->nr < PERF_MAX_STACK_DEPTH) {
1757	unsigned long bytes;	1786	unsigned long bytes;
1758	frame.next_frame = 0;	1787	frame.next_frame = 0;
@@ -1765,8 +1794,8 @@ perf_callchain_user32(struct pt_regs regs, struct perf_callchain_entry entry)
1765	if (!valid_user_frame(fp, sizeof(frame)))	1794	if (!valid_user_frame(fp, sizeof(frame)))
1766	break;	1795	break;
1767		1796
1768	perf_callchain_store(entry, frame.return_address);	1797	perf_callchain_store(entry, cs_base + frame.return_address);
1769	fp = compat_ptr(frame.next_frame);	1798	fp = compat_ptr(ss_base + frame.next_frame);
1770	}	1799	}
1771	return 1;	1800	return 1;
1772	}	1801	}
@@ -1789,6 +1818,12 @@ perf_callchain_user(struct perf_callchain_entry entry, struct pt_regs regs)
1789	return;	1818	return;
1790	}	1819	}
1791		1820
		1821	/*
		1822	* We don't know what to do with VM86 stacks.. ignore them for now.
		1823	*/
		1824	if (regs->flags & (X86_VM_MASK \| PERF_EFLAGS_VM))
		1825	return;
		1826
1792	fp = (void __user *)regs->bp;	1827	fp = (void __user *)regs->bp;
1793		1828
1794	perf_callchain_store(entry, regs->ip);	1829	perf_callchain_store(entry, regs->ip);
@@ -1816,16 +1851,50 @@ perf_callchain_user(struct perf_callchain_entry entry, struct pt_regs regs)
1816	}	1851	}
1817	}	1852	}
1818		1853
1819	unsigned long perf_instruction_pointer(struct pt_regs *regs)	1854	/*
		1855	* Deal with code segment offsets for the various execution modes:
		1856	*
		1857	* VM86 - the good olde 16 bit days, where the linear address is
		1858	* 20 bits and we use regs->ip + 0x10 * regs->cs.
		1859	*
		1860	* IA32 - Where we need to look at GDT/LDT segment descriptor tables
		1861	* to figure out what the 32bit base address is.
		1862	*
		1863	* X32 - has TIF_X32 set, but is running in x86_64
		1864	*
		1865	* X86_64 - CS,DS,SS,ES are all zero based.
		1866	*/
		1867	static unsigned long code_segment_base(struct pt_regs *regs)
1820	{	1868	{
1821	unsigned long ip;	1869	/*
		1870	* If we are in VM86 mode, add the segment offset to convert to a
		1871	* linear address.
		1872	*/
		1873	if (regs->flags & X86_VM_MASK)
		1874	return 0x10 * regs->cs;
		1875
		1876	/*
		1877	* For IA32 we look at the GDT/LDT segment base to convert the
		1878	* effective IP to a linear address.
		1879	*/
		1880	#ifdef CONFIG_X86_32
		1881	if (user_mode(regs) && regs->cs != __USER_CS)
		1882	return get_segment_base(regs->cs);
		1883	#else
		1884	if (test_thread_flag(TIF_IA32)) {
		1885	if (user_mode(regs) && regs->cs != __USER32_CS)
		1886	return get_segment_base(regs->cs);
		1887	}
		1888	#endif
		1889	return 0;
		1890	}
1822		1891
		1892	unsigned long perf_instruction_pointer(struct pt_regs *regs)
		1893	{
1823	if (perf_guest_cbs && perf_guest_cbs->is_in_guest())	1894	if (perf_guest_cbs && perf_guest_cbs->is_in_guest())
1824	ip = perf_guest_cbs->get_guest_ip();	1895	return perf_guest_cbs->get_guest_ip();
1825	else
1826	ip = instruction_pointer(regs);
1827		1896
1828	return ip;	1897	return regs->ip + code_segment_base(regs);
1829	}	1898	}
1830		1899
1831	unsigned long perf_misc_flags(struct pt_regs *regs)	1900	unsigned long perf_misc_flags(struct pt_regs *regs)
@@ -1838,7 +1907,7 @@ unsigned long perf_misc_flags(struct pt_regs *regs)
1838	else	1907	else
1839	misc \|= PERF_RECORD_MISC_GUEST_KERNEL;	1908	misc \|= PERF_RECORD_MISC_GUEST_KERNEL;
1840	} else {	1909	} else {
1841	if (!kernel_ip(regs->ip))	1910	if (user_mode(regs))
1842	misc \|= PERF_RECORD_MISC_USER;	1911	misc \|= PERF_RECORD_MISC_USER;
1843	else	1912	else
1844	misc \|= PERF_RECORD_MISC_KERNEL;	1913	misc \|= PERF_RECORD_MISC_KERNEL;