1*b2441318SGreg Kroah-Hartman // SPDX-License-Identifier: GPL-2.0 25a6bef47SJiri Olsa /* 35a6bef47SJiri Olsa * Inspired by breakpoint overflow test done by 45a6bef47SJiri Olsa * Vince Weaver <vincent.weaver@maine.edu> for perf_event_tests 55a6bef47SJiri Olsa * (git://github.com/deater/perf_event_tests) 65a6bef47SJiri Olsa */ 75a6bef47SJiri Olsa 8b3539d21SSukadev Bhattiprolu /* 9b3539d21SSukadev Bhattiprolu * Powerpc needs __SANE_USERSPACE_TYPES__ before <linux/types.h> to select 10b3539d21SSukadev Bhattiprolu * 'int-ll64.h' and avoid compile warnings when printing __u64 with %llu. 11b3539d21SSukadev Bhattiprolu */ 12b3539d21SSukadev Bhattiprolu #define __SANE_USERSPACE_TYPES__ 13b3539d21SSukadev Bhattiprolu 145a6bef47SJiri Olsa #include <stdlib.h> 155a6bef47SJiri Olsa #include <stdio.h> 165a6bef47SJiri Olsa #include <unistd.h> 175a6bef47SJiri Olsa #include <string.h> 185a6bef47SJiri Olsa #include <sys/ioctl.h> 195a6bef47SJiri Olsa #include <time.h> 205a6bef47SJiri Olsa #include <fcntl.h> 215a6bef47SJiri Olsa #include <signal.h> 225a6bef47SJiri Olsa #include <sys/mman.h> 235a6bef47SJiri Olsa #include <linux/compiler.h> 245a6bef47SJiri Olsa #include <linux/hw_breakpoint.h> 255a6bef47SJiri Olsa 265a6bef47SJiri Olsa #include "tests.h" 275a6bef47SJiri Olsa #include "debug.h" 285a6bef47SJiri Olsa #include "perf.h" 2957480d2cSYann Droneaud #include "cloexec.h" 305a6bef47SJiri Olsa 315a6bef47SJiri Olsa static int fd1; 325a6bef47SJiri Olsa static int fd2; 338fd34e1cSWang Nan static int fd3; 345a6bef47SJiri Olsa static int overflows; 358fd34e1cSWang Nan static int overflows_2; 368fd34e1cSWang Nan 378fd34e1cSWang Nan volatile long the_var; 388fd34e1cSWang Nan 398fd34e1cSWang Nan 408fd34e1cSWang Nan /* 418fd34e1cSWang Nan * Use ASM to ensure watchpoint and breakpoint can be triggered 428fd34e1cSWang Nan * at one instruction. 438fd34e1cSWang Nan */ 448fd34e1cSWang Nan #if defined (__x86_64__) 458fd34e1cSWang Nan extern void __test_function(volatile long *ptr); 468fd34e1cSWang Nan asm ( 478fd34e1cSWang Nan ".globl __test_function\n" 488fd34e1cSWang Nan "__test_function:\n" 498fd34e1cSWang Nan "incq (%rdi)\n" 508fd34e1cSWang Nan "ret\n"); 518fd34e1cSWang Nan #elif defined (__aarch64__) 528fd34e1cSWang Nan extern void __test_function(volatile long *ptr); 538fd34e1cSWang Nan asm ( 548fd34e1cSWang Nan ".globl __test_function\n" 558fd34e1cSWang Nan "__test_function:\n" 568fd34e1cSWang Nan "str x30, [x0]\n" 578fd34e1cSWang Nan "ret\n"); 588fd34e1cSWang Nan 598fd34e1cSWang Nan #else 608fd34e1cSWang Nan static void __test_function(volatile long *ptr) 618fd34e1cSWang Nan { 628fd34e1cSWang Nan *ptr = 0x1234; 638fd34e1cSWang Nan } 648fd34e1cSWang Nan #endif 655a6bef47SJiri Olsa 669dd4ca47SArnaldo Carvalho de Melo static noinline int test_function(void) 675a6bef47SJiri Olsa { 688fd34e1cSWang Nan __test_function(&the_var); 698fd34e1cSWang Nan the_var++; 705a6bef47SJiri Olsa return time(NULL); 715a6bef47SJiri Olsa } 725a6bef47SJiri Olsa 738fd34e1cSWang Nan static void sig_handler_2(int signum __maybe_unused, 748fd34e1cSWang Nan siginfo_t *oh __maybe_unused, 758fd34e1cSWang Nan void *uc __maybe_unused) 768fd34e1cSWang Nan { 778fd34e1cSWang Nan overflows_2++; 788fd34e1cSWang Nan if (overflows_2 > 10) { 798fd34e1cSWang Nan ioctl(fd1, PERF_EVENT_IOC_DISABLE, 0); 808fd34e1cSWang Nan ioctl(fd2, PERF_EVENT_IOC_DISABLE, 0); 818fd34e1cSWang Nan ioctl(fd3, PERF_EVENT_IOC_DISABLE, 0); 828fd34e1cSWang Nan } 838fd34e1cSWang Nan } 848fd34e1cSWang Nan 855a6bef47SJiri Olsa static void sig_handler(int signum __maybe_unused, 865a6bef47SJiri Olsa siginfo_t *oh __maybe_unused, 875a6bef47SJiri Olsa void *uc __maybe_unused) 885a6bef47SJiri Olsa { 895a6bef47SJiri Olsa overflows++; 905a6bef47SJiri Olsa 915a6bef47SJiri Olsa if (overflows > 10) { 925a6bef47SJiri Olsa /* 935a6bef47SJiri Olsa * This should be executed only once during 945a6bef47SJiri Olsa * this test, if we are here for the 10th 955a6bef47SJiri Olsa * time, consider this the recursive issue. 965a6bef47SJiri Olsa * 975a6bef47SJiri Olsa * We can get out of here by disable events, 985a6bef47SJiri Olsa * so no new SIGIO is delivered. 995a6bef47SJiri Olsa */ 1005a6bef47SJiri Olsa ioctl(fd1, PERF_EVENT_IOC_DISABLE, 0); 1015a6bef47SJiri Olsa ioctl(fd2, PERF_EVENT_IOC_DISABLE, 0); 1028fd34e1cSWang Nan ioctl(fd3, PERF_EVENT_IOC_DISABLE, 0); 1035a6bef47SJiri Olsa } 1045a6bef47SJiri Olsa } 1055a6bef47SJiri Olsa 1061ad826baSArnaldo Carvalho de Melo static int __event(bool is_x, void *addr, int sig) 1075a6bef47SJiri Olsa { 1085a6bef47SJiri Olsa struct perf_event_attr pe; 1095a6bef47SJiri Olsa int fd; 1105a6bef47SJiri Olsa 1115a6bef47SJiri Olsa memset(&pe, 0, sizeof(struct perf_event_attr)); 1125a6bef47SJiri Olsa pe.type = PERF_TYPE_BREAKPOINT; 1135a6bef47SJiri Olsa pe.size = sizeof(struct perf_event_attr); 1145a6bef47SJiri Olsa 1155a6bef47SJiri Olsa pe.config = 0; 1168fd34e1cSWang Nan pe.bp_type = is_x ? HW_BREAKPOINT_X : HW_BREAKPOINT_W; 1178fd34e1cSWang Nan pe.bp_addr = (unsigned long) addr; 1185a6bef47SJiri Olsa pe.bp_len = sizeof(long); 1195a6bef47SJiri Olsa 1205a6bef47SJiri Olsa pe.sample_period = 1; 1215a6bef47SJiri Olsa pe.sample_type = PERF_SAMPLE_IP; 1225a6bef47SJiri Olsa pe.wakeup_events = 1; 1235a6bef47SJiri Olsa 1245a6bef47SJiri Olsa pe.disabled = 1; 1255a6bef47SJiri Olsa pe.exclude_kernel = 1; 1265a6bef47SJiri Olsa pe.exclude_hv = 1; 1275a6bef47SJiri Olsa 12857480d2cSYann Droneaud fd = sys_perf_event_open(&pe, 0, -1, -1, 12957480d2cSYann Droneaud perf_event_open_cloexec_flag()); 1305a6bef47SJiri Olsa if (fd < 0) { 1315a6bef47SJiri Olsa pr_debug("failed opening event %llx\n", pe.config); 1325a6bef47SJiri Olsa return TEST_FAIL; 1335a6bef47SJiri Olsa } 1345a6bef47SJiri Olsa 1355a6bef47SJiri Olsa fcntl(fd, F_SETFL, O_RDWR|O_NONBLOCK|O_ASYNC); 1361ad826baSArnaldo Carvalho de Melo fcntl(fd, F_SETSIG, sig); 1375a6bef47SJiri Olsa fcntl(fd, F_SETOWN, getpid()); 1385a6bef47SJiri Olsa 1395a6bef47SJiri Olsa ioctl(fd, PERF_EVENT_IOC_RESET, 0); 1405a6bef47SJiri Olsa 1415a6bef47SJiri Olsa return fd; 1425a6bef47SJiri Olsa } 1435a6bef47SJiri Olsa 1441ad826baSArnaldo Carvalho de Melo static int bp_event(void *addr, int sig) 1458fd34e1cSWang Nan { 1461ad826baSArnaldo Carvalho de Melo return __event(true, addr, sig); 1478fd34e1cSWang Nan } 1488fd34e1cSWang Nan 1491ad826baSArnaldo Carvalho de Melo static int wp_event(void *addr, int sig) 1508fd34e1cSWang Nan { 1511ad826baSArnaldo Carvalho de Melo return __event(false, addr, sig); 1528fd34e1cSWang Nan } 1538fd34e1cSWang Nan 1545a6bef47SJiri Olsa static long long bp_count(int fd) 1555a6bef47SJiri Olsa { 1565a6bef47SJiri Olsa long long count; 1575a6bef47SJiri Olsa int ret; 1585a6bef47SJiri Olsa 1595a6bef47SJiri Olsa ret = read(fd, &count, sizeof(long long)); 1605a6bef47SJiri Olsa if (ret != sizeof(long long)) { 1615a6bef47SJiri Olsa pr_debug("failed to read: %d\n", ret); 1625a6bef47SJiri Olsa return TEST_FAIL; 1635a6bef47SJiri Olsa } 1645a6bef47SJiri Olsa 1655a6bef47SJiri Olsa return count; 1665a6bef47SJiri Olsa } 1675a6bef47SJiri Olsa 16881f17c90SArnaldo Carvalho de Melo int test__bp_signal(struct test *test __maybe_unused, int subtest __maybe_unused) 1695a6bef47SJiri Olsa { 1705a6bef47SJiri Olsa struct sigaction sa; 1718fd34e1cSWang Nan long long count1, count2, count3; 1725a6bef47SJiri Olsa 1735a6bef47SJiri Olsa /* setup SIGIO signal handler */ 1745a6bef47SJiri Olsa memset(&sa, 0, sizeof(struct sigaction)); 1755a6bef47SJiri Olsa sa.sa_sigaction = (void *) sig_handler; 1765a6bef47SJiri Olsa sa.sa_flags = SA_SIGINFO; 1775a6bef47SJiri Olsa 1785a6bef47SJiri Olsa if (sigaction(SIGIO, &sa, NULL) < 0) { 1795a6bef47SJiri Olsa pr_debug("failed setting up signal handler\n"); 1805a6bef47SJiri Olsa return TEST_FAIL; 1815a6bef47SJiri Olsa } 1825a6bef47SJiri Olsa 1838fd34e1cSWang Nan sa.sa_sigaction = (void *) sig_handler_2; 1848fd34e1cSWang Nan if (sigaction(SIGUSR1, &sa, NULL) < 0) { 1858fd34e1cSWang Nan pr_debug("failed setting up signal handler 2\n"); 1868fd34e1cSWang Nan return TEST_FAIL; 1878fd34e1cSWang Nan } 1888fd34e1cSWang Nan 1895a6bef47SJiri Olsa /* 1905a6bef47SJiri Olsa * We create following events: 1915a6bef47SJiri Olsa * 1928fd34e1cSWang Nan * fd1 - breakpoint event on __test_function with SIGIO 1935a6bef47SJiri Olsa * signal configured. We should get signal 1945a6bef47SJiri Olsa * notification each time the breakpoint is hit 1955a6bef47SJiri Olsa * 1968fd34e1cSWang Nan * fd2 - breakpoint event on sig_handler with SIGUSR1 1978fd34e1cSWang Nan * configured. We should get SIGUSR1 each time when 1988fd34e1cSWang Nan * breakpoint is hit 1998fd34e1cSWang Nan * 2008fd34e1cSWang Nan * fd3 - watchpoint event on __test_function with SIGIO 2015a6bef47SJiri Olsa * configured. 2025a6bef47SJiri Olsa * 2035a6bef47SJiri Olsa * Following processing should happen: 2048fd34e1cSWang Nan * Exec: Action: Result: 2058fd34e1cSWang Nan * incq (%rdi) - fd1 event breakpoint hit -> count1 == 1 2068fd34e1cSWang Nan * - SIGIO is delivered 2078fd34e1cSWang Nan * sig_handler - fd2 event breakpoint hit -> count2 == 1 2088fd34e1cSWang Nan * - SIGUSR1 is delivered 2098fd34e1cSWang Nan * sig_handler_2 -> overflows_2 == 1 (nested signal) 2108fd34e1cSWang Nan * sys_rt_sigreturn - return from sig_handler_2 2118fd34e1cSWang Nan * overflows++ -> overflows = 1 2128fd34e1cSWang Nan * sys_rt_sigreturn - return from sig_handler 2138fd34e1cSWang Nan * incq (%rdi) - fd3 event watchpoint hit -> count3 == 1 (wp and bp in one insn) 2148fd34e1cSWang Nan * - SIGIO is delivered 2158fd34e1cSWang Nan * sig_handler - fd2 event breakpoint hit -> count2 == 2 2168fd34e1cSWang Nan * - SIGUSR1 is delivered 2178fd34e1cSWang Nan * sig_handler_2 -> overflows_2 == 2 (nested signal) 2188fd34e1cSWang Nan * sys_rt_sigreturn - return from sig_handler_2 2198fd34e1cSWang Nan * overflows++ -> overflows = 2 2208fd34e1cSWang Nan * sys_rt_sigreturn - return from sig_handler 2218fd34e1cSWang Nan * the_var++ - fd3 event watchpoint hit -> count3 == 2 (standalone watchpoint) 2228fd34e1cSWang Nan * - SIGIO is delivered 2238fd34e1cSWang Nan * sig_handler - fd2 event breakpoint hit -> count2 == 3 2248fd34e1cSWang Nan * - SIGUSR1 is delivered 2258fd34e1cSWang Nan * sig_handler_2 -> overflows_2 == 3 (nested signal) 2268fd34e1cSWang Nan * sys_rt_sigreturn - return from sig_handler_2 2278fd34e1cSWang Nan * overflows++ -> overflows == 3 2288fd34e1cSWang Nan * sys_rt_sigreturn - return from sig_handler 2295a6bef47SJiri Olsa * 2305a6bef47SJiri Olsa * The test case check following error conditions: 2315a6bef47SJiri Olsa * - we get stuck in signal handler because of debug 2325a6bef47SJiri Olsa * exception being triggered receursively due to 2335a6bef47SJiri Olsa * the wrong RF EFLAG management 2345a6bef47SJiri Olsa * 2355a6bef47SJiri Olsa * - we never trigger the sig_handler breakpoint due 2365a6bef47SJiri Olsa * to the rong RF EFLAG management 2375a6bef47SJiri Olsa * 2385a6bef47SJiri Olsa */ 2395a6bef47SJiri Olsa 2408fd34e1cSWang Nan fd1 = bp_event(__test_function, SIGIO); 2418fd34e1cSWang Nan fd2 = bp_event(sig_handler, SIGUSR1); 2428fd34e1cSWang Nan fd3 = wp_event((void *)&the_var, SIGIO); 2435a6bef47SJiri Olsa 2445a6bef47SJiri Olsa ioctl(fd1, PERF_EVENT_IOC_ENABLE, 0); 2455a6bef47SJiri Olsa ioctl(fd2, PERF_EVENT_IOC_ENABLE, 0); 2468fd34e1cSWang Nan ioctl(fd3, PERF_EVENT_IOC_ENABLE, 0); 2475a6bef47SJiri Olsa 2485a6bef47SJiri Olsa /* 2495a6bef47SJiri Olsa * Kick off the test by trigering 'fd1' 2505a6bef47SJiri Olsa * breakpoint. 2515a6bef47SJiri Olsa */ 2525a6bef47SJiri Olsa test_function(); 2535a6bef47SJiri Olsa 2545a6bef47SJiri Olsa ioctl(fd1, PERF_EVENT_IOC_DISABLE, 0); 2555a6bef47SJiri Olsa ioctl(fd2, PERF_EVENT_IOC_DISABLE, 0); 2568fd34e1cSWang Nan ioctl(fd3, PERF_EVENT_IOC_DISABLE, 0); 2575a6bef47SJiri Olsa 2585a6bef47SJiri Olsa count1 = bp_count(fd1); 2595a6bef47SJiri Olsa count2 = bp_count(fd2); 2608fd34e1cSWang Nan count3 = bp_count(fd3); 2615a6bef47SJiri Olsa 2625a6bef47SJiri Olsa close(fd1); 2635a6bef47SJiri Olsa close(fd2); 2648fd34e1cSWang Nan close(fd3); 2655a6bef47SJiri Olsa 2668fd34e1cSWang Nan pr_debug("count1 %lld, count2 %lld, count3 %lld, overflow %d, overflows_2 %d\n", 2678fd34e1cSWang Nan count1, count2, count3, overflows, overflows_2); 2685a6bef47SJiri Olsa 2695a6bef47SJiri Olsa if (count1 != 1) { 2705a6bef47SJiri Olsa if (count1 == 11) 2715a6bef47SJiri Olsa pr_debug("failed: RF EFLAG recursion issue detected\n"); 2725a6bef47SJiri Olsa else 2735a6bef47SJiri Olsa pr_debug("failed: wrong count for bp1%lld\n", count1); 2745a6bef47SJiri Olsa } 2755a6bef47SJiri Olsa 2768fd34e1cSWang Nan if (overflows != 3) 2775a6bef47SJiri Olsa pr_debug("failed: wrong overflow hit\n"); 2785a6bef47SJiri Olsa 2798fd34e1cSWang Nan if (overflows_2 != 3) 2808fd34e1cSWang Nan pr_debug("failed: wrong overflow_2 hit\n"); 2818fd34e1cSWang Nan 2828fd34e1cSWang Nan if (count2 != 3) 2835a6bef47SJiri Olsa pr_debug("failed: wrong count for bp2\n"); 2845a6bef47SJiri Olsa 2858fd34e1cSWang Nan if (count3 != 2) 2868fd34e1cSWang Nan pr_debug("failed: wrong count for bp3\n"); 2878fd34e1cSWang Nan 2888fd34e1cSWang Nan return count1 == 1 && overflows == 3 && count2 == 3 && overflows_2 == 3 && count3 == 2 ? 2895a6bef47SJiri Olsa TEST_OK : TEST_FAIL; 2905a6bef47SJiri Olsa } 291598762cfSJiri Olsa 292598762cfSJiri Olsa bool test__bp_signal_is_supported(void) 293598762cfSJiri Olsa { 294598762cfSJiri Olsa /* 295598762cfSJiri Olsa * The powerpc so far does not have support to even create 296598762cfSJiri Olsa * instruction breakpoint using the perf event interface. 297598762cfSJiri Olsa * Once it's there we can release this. 298598762cfSJiri Olsa */ 299598762cfSJiri Olsa #ifdef __powerpc__ 300598762cfSJiri Olsa return false; 301598762cfSJiri Olsa #else 302598762cfSJiri Olsa return true; 303598762cfSJiri Olsa #endif 304598762cfSJiri Olsa } 305