[apple/xnu.git] / osfmk / arm64 / pgtrace.c

/*
 * Copyright (c) 2015 Apple Inc. All rights reserved.
 *
 * @APPLE_OSREFERENCE_LICENSE_HEADER_START@
 *
 * This file contains Original Code and/or Modifications of Original Code
 * as defined in and that are subject to the Apple Public Source License
 * Version 2.0 (the 'License'). You may not use this file except in
 * compliance with the License. The rights granted to you under the License
 * may not be used to create, or enable the creation or redistribution of,
 * unlawful or unlicensed copies of an Apple operating system, or to
 * circumvent, violate, or enable the circumvention or violation of, any
 * terms of an Apple operating system software license agreement.
 *
 * Please obtain a copy of the License at
 * http://www.opensource.apple.com/apsl/ and read it before using this file.
 *
 * The Original Code and all software distributed under the License are
 * distributed on an 'AS IS' basis, WITHOUT WARRANTY OF ANY KIND, EITHER
 * EXPRESS OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES,
 * INCLUDING WITHOUT LIMITATION, ANY WARRANTIES OF MERCHANTABILITY,
 * FITNESS FOR A PARTICULAR PURPOSE, QUIET ENJOYMENT OR NON-INFRINGEMENT.
 * Please see the License for the specific language governing rights and
 * limitations under the License.
 *
 * @APPLE_OSREFERENCE_LICENSE_HEADER_END@
 */

#if CONFIG_PGTRACE
#include <mach/mach_types.h>
#include <IOKit/IOLib.h>
#include <sys/msgbuf.h>
#include <sys/errno.h>
#include <arm64/pgtrace.h>
#include <libkern/OSDebug.h>

typedef struct {
	queue_chain_t chain;

	pmap_t      pmap;
	vm_offset_t start;
	vm_offset_t end;
} probe_t;

#if CONFIG_PGTRACE_NONKEXT
#include "pgtrace_decoder.h"

//--------------------------------------------
// Macros
//
#define RBUF_DEFAULT_SIZE   1024
#define RBUF_IDX(idx, mask) ((idx) & (mask))
#define MSG_MAX             130

//--------------------------------------------
// Types
//
typedef uint8_t RWLOCK;

typedef struct {
	uint64_t                id;
	pgtrace_run_result_t    res;
	void                    *stack[PGTRACE_STACK_DEPTH];
} log_t;

//--------------------------------------------
// Statics
//
static struct {
	log_t           *logs;          // Protect
	uint32_t        size;           // Protect
	uint64_t        rdidx, wridx;   // Protect
	decl_simple_lock_data(, loglock);

	uint64_t id;
	uint32_t option;
	uint32_t enabled;
	uint32_t bytes;

	queue_head_t    probes;         // Protect

	lck_grp_t       *lock_grp;
	lck_grp_attr_t  *lock_grp_attr;
	lck_attr_t      *lock_attr;
	lck_mtx_t       probelock;
} pgtrace = {};

//--------------------------------------------
// Globals
//
void
pgtrace_init(void)
{
	simple_lock_init(&pgtrace.loglock, 0);

	pgtrace.lock_attr = lck_attr_alloc_init();
	pgtrace.lock_grp_attr = lck_grp_attr_alloc_init();
	pgtrace.lock_grp = lck_grp_alloc_init("pgtrace_lock", pgtrace.lock_grp_attr);

	lck_mtx_init(&pgtrace.probelock, pgtrace.lock_grp, pgtrace.lock_attr);

	queue_init(&pgtrace.probes);

	pgtrace.size = RBUF_DEFAULT_SIZE;
	pgtrace.logs = kalloc(RBUF_DEFAULT_SIZE * sizeof(log_t));
}

void
pgtrace_clear_probe(void)
{
	probe_t *p, *next;
	queue_head_t *q = &pgtrace.probes;

	lck_mtx_lock(&pgtrace.probelock);

	p = (probe_t *)queue_first(q);
	while (!queue_end(q, (queue_entry_t)p)) {
		next = (probe_t *)queue_next(&(p->chain));

		queue_remove(q, p, probe_t *, chain);
		kfree(p, sizeof(probe_t));

		p = next;
	}

	lck_mtx_unlock(&pgtrace.probelock);

	return;
}

int
pgtrace_add_probe(thread_t thread, vm_offset_t start, vm_offset_t end)
{
	probe_t *p;
	queue_head_t *q = &pgtrace.probes;

	if (start > end) {
		kprintf("%s Invalid start=%lx end=%lx\n", __func__, start, end);
		return -1;
	}

	p = kalloc(sizeof(probe_t));
	p->start = start;
	p->end = end;
	if (thread == NULL) {
		p->pmap = NULL;
	} else {
		p->pmap = vm_map_pmap(thread->map);
	}

	lck_mtx_lock(&pgtrace.probelock);
	queue_enter(q, p, probe_t *, chain);
	lck_mtx_unlock(&pgtrace.probelock);

	return 0;
}

void
pgtrace_start(void)
{
	probe_t *p;
	queue_head_t *q = &pgtrace.probes;

	kprintf("%s\n", __func__);

	if (pgtrace.enabled) {
		return;
	}

	pgtrace.enabled = 1;

	lck_mtx_lock(&pgtrace.probelock);

	queue_iterate(q, p, probe_t *, chain) {
		pmap_pgtrace_add_page(p->pmap, p->start, p->end);
	}

	lck_mtx_unlock(&pgtrace.probelock);

	return;
}

void
pgtrace_stop(void)
{
	probe_t *p;
	queue_head_t *q = &pgtrace.probes;

	kprintf("%s\n", __func__);

	lck_mtx_lock(&pgtrace.probelock);

	queue_iterate(q, p, probe_t *, chain) {
		pmap_pgtrace_delete_page(p->pmap, p->start, p->end);
	}

	lck_mtx_unlock(&pgtrace.probelock);

	pgtrace.enabled = 0;
}

uint32_t
pgtrace_get_size(void)
{
	return pgtrace.size;
}

bool
pgtrace_set_size(uint32_t size)
{
	log_t *old_buf, *new_buf;
	uint32_t old_size, new_size = 1;

	// round up to next power of 2
	while (size > new_size) {
		new_size <<= 1;
		if (new_size > 0x100000) {
			// over million entries
			kprintf("%s: size=%x new_size=%x is too big\n", __func__, size, new_size);
			return false;
		}
	}

	new_buf = kalloc(new_size * sizeof(log_t));
	if (new_buf == NULL) {
		kprintf("%s: can't allocate new_size=%x\n entries", __func__, new_size);
		return false;
	}

	pgtrace_stop();

	simple_lock(&pgtrace.loglock);
	old_buf = pgtrace.logs;
	old_size = pgtrace.size;
	pgtrace.logs = new_buf;
	pgtrace.size = new_size;
	pgtrace.rdidx = pgtrace.wridx = 0;
	simple_unlock(&pgtrace.loglock);

	if (old_buf) {
		kfree(old_buf, old_size * sizeof(log_t));
	}

	return true;
}

void
pgtrace_clear_trace(void)
{
	simple_lock(&pgtrace.loglock);
	pgtrace.rdidx = pgtrace.wridx = 0;
	simple_unlock(&pgtrace.loglock);
}

boolean_t
pgtrace_active(void)
{
	return pgtrace.enabled > 0;
}

uint32_t
pgtrace_get_option(void)
{
	return pgtrace.option;
}

void
pgtrace_set_option(uint32_t option)
{
	pgtrace.option = option;
}

// pgtrace_write_log() is in interrupt disabled context
void
pgtrace_write_log(pgtrace_run_result_t res)
{
	uint8_t i;
	log_t log = {};
	const char *rwmap[] = { "R", "W", "PREFETCH" };

	log.id = pgtrace.id++;
	log.res = res;

	if (pgtrace.option & PGTRACE_OPTION_KPRINTF) {
		char msg[MSG_MAX];
		char *p;

		p = msg;

		snprintf(p, MSG_MAX, "%llu %s ", res.rr_time, rwmap[res.rr_rw]);
		p += strlen(p);

		for (i = 0; i < res.rr_num; i++) {
			snprintf(p, MSG_MAX - (p - msg), "%lx=%llx ", res.rr_addrdata[i].ad_addr, res.rr_addrdata[i].ad_data);
			p += strlen(p);
		}

		kprintf("%s %s\n", __func__, msg);
	}

	if (pgtrace.option & PGTRACE_OPTION_STACK) {
		OSBacktrace(log.stack, PGTRACE_STACK_DEPTH);
	}

	pgtrace.bytes += sizeof(log);

	simple_lock(&pgtrace.loglock);

	pgtrace.logs[RBUF_IDX(pgtrace.wridx, pgtrace.size - 1)] = log;

	// Advance rdidx if ring is full
	if (RBUF_IDX(pgtrace.wridx, pgtrace.size - 1) == RBUF_IDX(pgtrace.rdidx, pgtrace.size - 1) &&
	    (pgtrace.wridx != pgtrace.rdidx)) {
		pgtrace.rdidx++;
	}
	pgtrace.wridx++;

	// Signal if ring was empty
	if (pgtrace.wridx == (pgtrace.rdidx + 1)) {
		thread_wakeup(pgtrace.logs);
	}

	simple_unlock(&pgtrace.loglock);

	return;
}

// pgtrace_read_log() is in user thread
int64_t
pgtrace_read_log(uint8_t *buf, uint32_t size)
{
	int total, front, back;
	boolean_t ints;
	wait_result_t wr;

	if (pgtrace.enabled == FALSE) {
		return -EINVAL;
	}

	total = size / sizeof(log_t);

	// Check if buf is too small
	if (buf && total == 0) {
		return -EINVAL;
	}

	ints = ml_set_interrupts_enabled(FALSE);
	simple_lock(&pgtrace.loglock);

	// Wait if ring is empty
	if (pgtrace.rdidx == pgtrace.wridx) {
		assert_wait(pgtrace.logs, THREAD_ABORTSAFE);

		simple_unlock(&pgtrace.loglock);
		ml_set_interrupts_enabled(ints);

		wr = thread_block(NULL);
		if (wr != THREAD_AWAKENED) {
			return -EINTR;
		}

		ints = ml_set_interrupts_enabled(FALSE);
		simple_lock(&pgtrace.loglock);
	}

	// Trim the size
	if ((pgtrace.rdidx + total) > pgtrace.wridx) {
		total = (int)(pgtrace.wridx - pgtrace.rdidx);
	}

	// Copy front
	if ((RBUF_IDX(pgtrace.rdidx, pgtrace.size - 1) + total) >= pgtrace.size) {
		front = pgtrace.size - RBUF_IDX(pgtrace.rdidx, pgtrace.size - 1);
	} else {
		front = total;
	}

	memcpy(buf, &(pgtrace.logs[RBUF_IDX(pgtrace.rdidx, pgtrace.size - 1)]), front * sizeof(log_t));

	// Copy back if any
	back = total - front;
	if (back) {
		buf += front * sizeof(log_t);
		memcpy(buf, pgtrace.logs, back * sizeof(log_t));
	}

	pgtrace.rdidx += total;

	simple_unlock(&pgtrace.loglock);
	ml_set_interrupts_enabled(ints);

	return total * sizeof(log_t);
}

int
pgtrace_get_stats(pgtrace_stats_t *stats)
{
	if (!stats) {
		return -1;
	}

	stats->stat_logger.sl_bytes = pgtrace.bytes;
	pgtrace_decoder_get_stats(stats);

	return 0;
}

#else // CONFIG_PGTRACE_NONKEXT

static struct {
	bool            active;
	decoder_t       *decoder;
	logger_t        *logger;
	queue_head_t    probes;

	lck_grp_t       *lock_grp;
	lck_grp_attr_t  *lock_grp_attr;
	lck_attr_t      *lock_attr;
	lck_mtx_t       probelock;
} pgtrace = {};

//------------------------------------
// functions for pmap fault handler
// - pgtrace_decode_and_run
// - pgtrace_write_log
//------------------------------------
int
pgtrace_decode_and_run(uint32_t inst, vm_offset_t fva, vm_map_offset_t *cva_page, arm_saved_state_t *ss, pgtrace_run_result_t *res)
{
	vm_offset_t pa, cva;
	pgtrace_instruction_info_t info;
	vm_offset_t cva_front_page = cva_page[0];
	vm_offset_t cva_cur_page = cva_page[1];

	pgtrace.decoder->decode(inst, ss, &info);

	if (info.addr == fva) {
		cva = cva_cur_page + (fva & ARM_PGMASK);
	} else {
		// which means a front page is not a tracing page
		cva = cva_front_page + (fva & ARM_PGMASK);
	}

	pa = mmu_kvtop(cva);
	if (!pa) {
		panic("%s: invalid address cva=%lx fva=%lx info.addr=%lx inst=%x", __func__, cva, fva, info.addr, inst);
	}

	absolutetime_to_nanoseconds(mach_absolute_time(), &res->rr_time);

	pgtrace.decoder->run(inst, pa, cva, ss, res);

	return 0;
}

int
pgtrace_write_log(pgtrace_run_result_t res)
{
	pgtrace.logger->write(res);
	return 0;
}

//------------------------------------
// functions for kext
//  - pgtrace_init
//  - pgtrace_add_probe
//  - pgtrace_clear_probe
//  - pgtrace_start
//  - pgtrace_stop
//  - pgtrace_active
//------------------------------------
int
pgtrace_init(decoder_t *decoder, logger_t *logger)
{
	kprintf("%s decoder=%p logger=%p\n", __func__, decoder, logger);

	assert(decoder && logger);

	if (decoder->magic != 0xfeedface || logger->magic != 0xfeedface ||
	    strcmp(decoder->arch, "arm64") != 0 || strcmp(logger->arch, "arm64") != 0) {
		kprintf("%s:wrong decoder/logger magic=%llx/%llx arch=%s/%s", __func__, decoder->magic, logger->magic, decoder->arch, logger->arch);
		return EINVAL;
	}

	pgtrace.lock_attr = lck_attr_alloc_init();
	pgtrace.lock_grp_attr = lck_grp_attr_alloc_init();
	pgtrace.lock_grp = lck_grp_alloc_init("pgtrace_lock", pgtrace.lock_grp_attr);

	lck_mtx_init(&pgtrace.probelock, pgtrace.lock_grp, pgtrace.lock_attr);

	queue_init(&pgtrace.probes);
	pgtrace.decoder = decoder;
	pgtrace.logger = logger;

	return 0;
}

int
pgtrace_add_probe(thread_t thread, vm_offset_t start, vm_offset_t end)
{
	probe_t *p;
	queue_head_t *q = &pgtrace.probes;

	kprintf("%s start=%lx end=%lx\n", __func__, start, end);

	if (start > end) {
		kprintf("%s Invalid start=%lx end=%lx\n", __func__, start, end);
		return -1;
	}

	p = kalloc(sizeof(probe_t));
	p->start = start;
	p->end = end;
	if (thread == NULL) {
		p->pmap = NULL;
	} else {
		p->pmap = vm_map_pmap(thread->map);
	}

	lck_mtx_lock(&pgtrace.probelock);
	queue_enter(q, p, probe_t *, chain);
	lck_mtx_unlock(&pgtrace.probelock);

	return 0;
}

void
pgtrace_clear_probe(void)
{
	probe_t *p, *next;
	queue_head_t *q = &pgtrace.probes;

	kprintf("%s\n", __func__);

	lck_mtx_lock(&pgtrace.probelock);

	p = (probe_t *)queue_first(q);
	while (!queue_end(q, (queue_entry_t)p)) {
		next = (probe_t *)queue_next(&(p->chain));

		queue_remove(q, p, probe_t *, chain);
		kfree(p, sizeof(probe_t));

		p = next;
	}

	lck_mtx_unlock(&pgtrace.probelock);

	return;
}

void
pgtrace_start(void)
{
	probe_t *p;
	queue_head_t *q = &pgtrace.probes;

	kprintf("%s\n", __func__);

	if (pgtrace.active == true) {
		return;
	}

	pgtrace.active = true;

	lck_mtx_lock(&pgtrace.probelock);

	queue_iterate(q, p, probe_t *, chain) {
		pmap_pgtrace_add_page(p->pmap, p->start, p->end);
	}

	lck_mtx_unlock(&pgtrace.probelock);

	return;
}

void
pgtrace_stop(void)
{
	probe_t *p;
	queue_head_t *q = &pgtrace.probes;

	kprintf("%s\n", __func__);

	lck_mtx_lock(&pgtrace.probelock);

	queue_iterate(q, p, probe_t *, chain) {
		pmap_pgtrace_delete_page(p->pmap, p->start, p->end);
	}

	lck_mtx_unlock(&pgtrace.probelock);

	pgtrace.active = false;
}

bool
pgtrace_active(void)
{
	return pgtrace.active;
}
#endif // CONFIG_PGTRACE_NONKEXT
#else
// empty funcs for release kernel
extern void pgtrace_stop(void);
extern void pgtrace_start(void);
extern void pgtrace_clear_probe(void);
extern void pgtrace_add_probe(void);
extern void pgtrace_init(void);
extern void pgtrace_active(void);
void
pgtrace_stop(void)
{
}
void
pgtrace_start(void)
{
}
void
pgtrace_clear_probe(void)
{
}
void
pgtrace_add_probe(void)
{
}
void
pgtrace_init(void)
{
}
void
pgtrace_active(void)
{
}
#endif
Commit	Line	Data
5ba3f43e A	1	/*
	2	* Copyright (c) 2015 Apple Inc. All rights reserved.
	3	*
	4	* @APPLE_OSREFERENCE_LICENSE_HEADER_START@
	5	*
	6	* This file contains Original Code and/or Modifications of Original Code
	7	* as defined in and that are subject to the Apple Public Source License
	8	* Version 2.0 (the 'License'). You may not use this file except in
	9	* compliance with the License. The rights granted to you under the License
	10	* may not be used to create, or enable the creation or redistribution of,
	11	* unlawful or unlicensed copies of an Apple operating system, or to
	12	* circumvent, violate, or enable the circumvention or violation of, any
	13	* terms of an Apple operating system software license agreement.
	14	*
	15	* Please obtain a copy of the License at
	16	* http://www.opensource.apple.com/apsl/ and read it before using this file.
	17	*
	18	* The Original Code and all software distributed under the License are
	19	* distributed on an 'AS IS' basis, WITHOUT WARRANTY OF ANY KIND, EITHER
	20	* EXPRESS OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES,
	21	* INCLUDING WITHOUT LIMITATION, ANY WARRANTIES OF MERCHANTABILITY,
	22	* FITNESS FOR A PARTICULAR PURPOSE, QUIET ENJOYMENT OR NON-INFRINGEMENT.
	23	* Please see the License for the specific language governing rights and
	24	* limitations under the License.
	25	*
	26	* @APPLE_OSREFERENCE_LICENSE_HEADER_END@
	27	*/
	28
	29	#if CONFIG_PGTRACE
	30	#include <mach/mach_types.h>
	31	#include <IOKit/IOLib.h>
	32	#include <sys/msgbuf.h>
	33	#include <sys/errno.h>
	34	#include <arm64/pgtrace.h>
	35	#include <libkern/OSDebug.h>
	36
	37	typedef struct {
0a7de745	38	queue_chain_t chain;
5ba3f43e	39
0a7de745 A	40	pmap_t pmap;
	41	vm_offset_t start;
	42	vm_offset_t end;
5ba3f43e A	43	} probe_t;
	44
	45	#if CONFIG_PGTRACE_NONKEXT
	46	#include "pgtrace_decoder.h"
	47
	48	//--------------------------------------------
	49	// Macros
	50	//
	51	#define RBUF_DEFAULT_SIZE 1024
	52	#define RBUF_IDX(idx, mask) ((idx) & (mask))
	53	#define MSG_MAX 130
	54
	55	//--------------------------------------------
	56	// Types
	57	//
	58	typedef uint8_t RWLOCK;
	59
	60	typedef struct {
0a7de745 A	61	uint64_t id;
	62	pgtrace_run_result_t res;
	63	void *stack[PGTRACE_STACK_DEPTH];
5ba3f43e A	64	} log_t;
	65
	66	//--------------------------------------------
	67	// Statics
	68	//
	69	static struct {
0a7de745 A	70	log_t *logs; // Protect
	71	uint32_t size; // Protect
	72	uint64_t rdidx, wridx; // Protect
	73	decl_simple_lock_data(, loglock);
	74
	75	uint64_t id;
	76	uint32_t option;
	77	uint32_t enabled;
	78	uint32_t bytes;
	79
	80	queue_head_t probes; // Protect
	81
	82	lck_grp_t *lock_grp;
	83	lck_grp_attr_t *lock_grp_attr;
	84	lck_attr_t *lock_attr;
	85	lck_mtx_t probelock;
5ba3f43e A	86	} pgtrace = {};
	87
	88	//--------------------------------------------
	89	// Globals
	90	//
0a7de745 A	91	void
0a7de745 A	92	pgtrace_init(void)
5ba3f43e	93	{
0a7de745	94	simple_lock_init(&pgtrace.loglock, 0);
5ba3f43e	95
0a7de745 A	96	pgtrace.lock_attr = lck_attr_alloc_init();
	97	pgtrace.lock_grp_attr = lck_grp_attr_alloc_init();
	98	pgtrace.lock_grp = lck_grp_alloc_init("pgtrace_lock", pgtrace.lock_grp_attr);
5ba3f43e	99
0a7de745	100	lck_mtx_init(&pgtrace.probelock, pgtrace.lock_grp, pgtrace.lock_attr);
5ba3f43e	101
0a7de745	102	queue_init(&pgtrace.probes);
5ba3f43e	103
0a7de745 A	104	pgtrace.size = RBUF_DEFAULT_SIZE;
0a7de745 A	105	pgtrace.logs = kalloc(RBUF_DEFAULT_SIZE * sizeof(log_t));
5ba3f43e	106	}
0a7de745 A	107
	108	void
	109	pgtrace_clear_probe(void)
5ba3f43e	110	{
0a7de745 A	111	probe_t p, next;
0a7de745 A	112	queue_head_t *q = &pgtrace.probes;
5ba3f43e	113
0a7de745	114	lck_mtx_lock(&pgtrace.probelock);
5ba3f43e	115
0a7de745 A	116	p = (probe_t *)queue_first(q);
	117	while (!queue_end(q, (queue_entry_t)p)) {
	118	next = (probe_t *)queue_next(&(p->chain));
5ba3f43e	119
0a7de745 A	120	queue_remove(q, p, probe_t *, chain);
0a7de745 A	121	kfree(p, sizeof(probe_t));
5ba3f43e	122
0a7de745 A	123	p = next;
0a7de745 A	124	}
5ba3f43e	125
0a7de745	126	lck_mtx_unlock(&pgtrace.probelock);
5ba3f43e	127
0a7de745	128	return;
5ba3f43e A	129	}
5ba3f43e A	130
0a7de745 A	131	int
0a7de745 A	132	pgtrace_add_probe(thread_t thread, vm_offset_t start, vm_offset_t end)
5ba3f43e	133	{
0a7de745 A	134	probe_t *p;
	135	queue_head_t *q = &pgtrace.probes;
	136
	137	if (start > end) {
	138	kprintf("%s Invalid start=%lx end=%lx\n", __func__, start, end);
	139	return -1;
	140	}
	141
	142	p = kalloc(sizeof(probe_t));
	143	p->start = start;
	144	p->end = end;
	145	if (thread == NULL) {
	146	p->pmap = NULL;
	147	} else {
	148	p->pmap = vm_map_pmap(thread->map);
	149	}
	150
	151	lck_mtx_lock(&pgtrace.probelock);
	152	queue_enter(q, p, probe_t *, chain);
	153	lck_mtx_unlock(&pgtrace.probelock);
	154
	155	return 0;
5ba3f43e A	156	}
5ba3f43e A	157
0a7de745 A	158	void
0a7de745 A	159	pgtrace_start(void)
5ba3f43e	160	{
0a7de745 A	161	probe_t *p;
0a7de745 A	162	queue_head_t *q = &pgtrace.probes;
5ba3f43e	163
0a7de745	164	kprintf("%s\n", __func__);
5ba3f43e	165
0a7de745 A	166	if (pgtrace.enabled) {
	167	return;
	168	}
5ba3f43e	169
0a7de745	170	pgtrace.enabled = 1;
5ba3f43e	171
0a7de745	172	lck_mtx_lock(&pgtrace.probelock);
5ba3f43e	173
0a7de745 A	174	queue_iterate(q, p, probe_t *, chain) {
	175	pmap_pgtrace_add_page(p->pmap, p->start, p->end);
	176	}
5ba3f43e	177
0a7de745	178	lck_mtx_unlock(&pgtrace.probelock);
5ba3f43e	179
0a7de745	180	return;
5ba3f43e A	181	}
5ba3f43e A	182
0a7de745 A	183	void
0a7de745 A	184	pgtrace_stop(void)
5ba3f43e	185	{
0a7de745 A	186	probe_t *p;
0a7de745 A	187	queue_head_t *q = &pgtrace.probes;
5ba3f43e	188
0a7de745	189	kprintf("%s\n", __func__);
5ba3f43e	190
0a7de745	191	lck_mtx_lock(&pgtrace.probelock);
5ba3f43e	192
0a7de745 A	193	queue_iterate(q, p, probe_t *, chain) {
	194	pmap_pgtrace_delete_page(p->pmap, p->start, p->end);
	195	}
5ba3f43e	196
0a7de745	197	lck_mtx_unlock(&pgtrace.probelock);
5ba3f43e	198
0a7de745	199	pgtrace.enabled = 0;
5ba3f43e A	200	}
5ba3f43e A	201
0a7de745 A	202	uint32_t
0a7de745 A	203	pgtrace_get_size(void)
5ba3f43e	204	{
0a7de745	205	return pgtrace.size;
5ba3f43e A	206	}
5ba3f43e A	207
0a7de745 A	208	bool
0a7de745 A	209	pgtrace_set_size(uint32_t size)
5ba3f43e	210	{
0a7de745 A	211	log_t old_buf, new_buf;
	212	uint32_t old_size, new_size = 1;
	213
	214	// round up to next power of 2
	215	while (size > new_size) {
	216	new_size <<= 1;
	217	if (new_size > 0x100000) {
	218	// over million entries
	219	kprintf("%s: size=%x new_size=%x is too big\n", __func__, size, new_size);
	220	return false;
	221	}
	222	}
	223
	224	new_buf = kalloc(new_size * sizeof(log_t));
	225	if (new_buf == NULL) {
	226	kprintf("%s: can't allocate new_size=%x\n entries", __func__, new_size);
	227	return false;
	228	}
	229
	230	pgtrace_stop();
	231
	232	simple_lock(&pgtrace.loglock);
	233	old_buf = pgtrace.logs;
	234	old_size = pgtrace.size;
	235	pgtrace.logs = new_buf;
	236	pgtrace.size = new_size;
	237	pgtrace.rdidx = pgtrace.wridx = 0;
	238	simple_unlock(&pgtrace.loglock);
	239
	240	if (old_buf) {
	241	kfree(old_buf, old_size * sizeof(log_t));
	242	}
	243
	244	return true;
5ba3f43e A	245	}
5ba3f43e A	246
0a7de745 A	247	void
0a7de745 A	248	pgtrace_clear_trace(void)
5ba3f43e	249	{
0a7de745 A	250	simple_lock(&pgtrace.loglock);
	251	pgtrace.rdidx = pgtrace.wridx = 0;
	252	simple_unlock(&pgtrace.loglock);
5ba3f43e A	253	}
5ba3f43e A	254
0a7de745 A	255	boolean_t
0a7de745 A	256	pgtrace_active(void)
5ba3f43e	257	{
0a7de745	258	return pgtrace.enabled > 0;
5ba3f43e A	259	}
5ba3f43e A	260
0a7de745 A	261	uint32_t
0a7de745 A	262	pgtrace_get_option(void)
5ba3f43e	263	{
0a7de745	264	return pgtrace.option;
5ba3f43e A	265	}
5ba3f43e A	266
0a7de745 A	267	void
0a7de745 A	268	pgtrace_set_option(uint32_t option)
5ba3f43e	269	{
0a7de745	270	pgtrace.option = option;
5ba3f43e A	271	}
	272
	273	// pgtrace_write_log() is in interrupt disabled context
0a7de745 A	274	void
0a7de745 A	275	pgtrace_write_log(pgtrace_run_result_t res)
5ba3f43e	276	{
0a7de745 A	277	uint8_t i;
	278	log_t log = {};
	279	const char *rwmap[] = { "R", "W", "PREFETCH" };
	280
	281	log.id = pgtrace.id++;
	282	log.res = res;
5ba3f43e	283
0a7de745 A	284	if (pgtrace.option & PGTRACE_OPTION_KPRINTF) {
	285	char msg[MSG_MAX];
	286	char *p;
5ba3f43e	287
0a7de745	288	p = msg;
5ba3f43e	289
0a7de745 A	290	snprintf(p, MSG_MAX, "%llu %s ", res.rr_time, rwmap[res.rr_rw]);
0a7de745 A	291	p += strlen(p);
5ba3f43e	292
0a7de745 A	293	for (i = 0; i < res.rr_num; i++) {
	294	snprintf(p, MSG_MAX - (p - msg), "%lx=%llx ", res.rr_addrdata[i].ad_addr, res.rr_addrdata[i].ad_data);
	295	p += strlen(p);
	296	}
5ba3f43e	297
0a7de745 A	298	kprintf("%s %s\n", __func__, msg);
0a7de745 A	299	}
5ba3f43e	300
0a7de745 A	301	if (pgtrace.option & PGTRACE_OPTION_STACK) {
	302	OSBacktrace(log.stack, PGTRACE_STACK_DEPTH);
	303	}
5ba3f43e	304
0a7de745	305	pgtrace.bytes += sizeof(log);
5ba3f43e	306
0a7de745	307	simple_lock(&pgtrace.loglock);
5ba3f43e	308
0a7de745	309	pgtrace.logs[RBUF_IDX(pgtrace.wridx, pgtrace.size - 1)] = log;
5ba3f43e	310
0a7de745 A	311	// Advance rdidx if ring is full
	312	if (RBUF_IDX(pgtrace.wridx, pgtrace.size - 1) == RBUF_IDX(pgtrace.rdidx, pgtrace.size - 1) &&
	313	(pgtrace.wridx != pgtrace.rdidx)) {
	314	pgtrace.rdidx++;
	315	}
	316	pgtrace.wridx++;
5ba3f43e	317
0a7de745 A	318	// Signal if ring was empty
	319	if (pgtrace.wridx == (pgtrace.rdidx + 1)) {
	320	thread_wakeup(pgtrace.logs);
	321	}
5ba3f43e	322
0a7de745	323	simple_unlock(&pgtrace.loglock);
5ba3f43e	324
0a7de745	325	return;
5ba3f43e A	326	}
	327
	328	// pgtrace_read_log() is in user thread
0a7de745 A	329	int64_t
0a7de745 A	330	pgtrace_read_log(uint8_t *buf, uint32_t size)
5ba3f43e	331	{
0a7de745 A	332	int total, front, back;
	333	boolean_t ints;
	334	wait_result_t wr;
5ba3f43e	335
0a7de745 A	336	if (pgtrace.enabled == FALSE) {
	337	return -EINVAL;
	338	}
5ba3f43e	339
0a7de745	340	total = size / sizeof(log_t);
5ba3f43e	341
0a7de745 A	342	// Check if buf is too small
	343	if (buf && total == 0) {
	344	return -EINVAL;
	345	}
5ba3f43e	346
0a7de745 A	347	ints = ml_set_interrupts_enabled(FALSE);
0a7de745 A	348	simple_lock(&pgtrace.loglock);
5ba3f43e	349
0a7de745 A	350	// Wait if ring is empty
	351	if (pgtrace.rdidx == pgtrace.wridx) {
	352	assert_wait(pgtrace.logs, THREAD_ABORTSAFE);
5ba3f43e	353
0a7de745 A	354	simple_unlock(&pgtrace.loglock);
0a7de745 A	355	ml_set_interrupts_enabled(ints);
5ba3f43e	356
0a7de745 A	357	wr = thread_block(NULL);
	358	if (wr != THREAD_AWAKENED) {
	359	return -EINTR;
	360	}
5ba3f43e	361
0a7de745 A	362	ints = ml_set_interrupts_enabled(FALSE);
	363	simple_lock(&pgtrace.loglock);
	364	}
5ba3f43e	365
0a7de745 A	366	// Trim the size
	367	if ((pgtrace.rdidx + total) > pgtrace.wridx) {
	368	total = (int)(pgtrace.wridx - pgtrace.rdidx);
	369	}
5ba3f43e	370
0a7de745 A	371	// Copy front
	372	if ((RBUF_IDX(pgtrace.rdidx, pgtrace.size - 1) + total) >= pgtrace.size) {
	373	front = pgtrace.size - RBUF_IDX(pgtrace.rdidx, pgtrace.size - 1);
	374	} else {
	375	front = total;
	376	}
5ba3f43e	377
0a7de745	378	memcpy(buf, &(pgtrace.logs[RBUF_IDX(pgtrace.rdidx, pgtrace.size - 1)]), front * sizeof(log_t));
5ba3f43e	379
0a7de745 A	380	// Copy back if any
	381	back = total - front;
	382	if (back) {
	383	buf += front * sizeof(log_t);
	384	memcpy(buf, pgtrace.logs, back * sizeof(log_t));
	385	}
5ba3f43e	386
0a7de745	387	pgtrace.rdidx += total;
5ba3f43e	388
0a7de745 A	389	simple_unlock(&pgtrace.loglock);
0a7de745 A	390	ml_set_interrupts_enabled(ints);
5ba3f43e	391
0a7de745	392	return total * sizeof(log_t);
5ba3f43e A	393	}
5ba3f43e A	394
0a7de745 A	395	int
0a7de745 A	396	pgtrace_get_stats(pgtrace_stats_t *stats)
5ba3f43e	397	{
0a7de745 A	398	if (!stats) {
	399	return -1;
	400	}
5ba3f43e	401
0a7de745 A	402	stats->stat_logger.sl_bytes = pgtrace.bytes;
0a7de745 A	403	pgtrace_decoder_get_stats(stats);
5ba3f43e	404
0a7de745	405	return 0;
5ba3f43e A	406	}
	407
	408	#else // CONFIG_PGTRACE_NONKEXT
	409
	410	static struct {
0a7de745 A	411	bool active;
	412	decoder_t *decoder;
	413	logger_t *logger;
	414	queue_head_t probes;
	415
	416	lck_grp_t *lock_grp;
	417	lck_grp_attr_t *lock_grp_attr;
	418	lck_attr_t *lock_attr;
	419	lck_mtx_t probelock;
5ba3f43e A	420	} pgtrace = {};
	421
	422	//------------------------------------
	423	// functions for pmap fault handler
	424	// - pgtrace_decode_and_run
	425	// - pgtrace_write_log
	426	//------------------------------------
0a7de745 A	427	int
0a7de745 A	428	pgtrace_decode_and_run(uint32_t inst, vm_offset_t fva, vm_map_offset_t cva_page, arm_saved_state_t ss, pgtrace_run_result_t *res)
5ba3f43e	429	{
0a7de745 A	430	vm_offset_t pa, cva;
	431	pgtrace_instruction_info_t info;
	432	vm_offset_t cva_front_page = cva_page[0];
	433	vm_offset_t cva_cur_page = cva_page[1];
	434
	435	pgtrace.decoder->decode(inst, ss, &info);
	436
	437	if (info.addr == fva) {
	438	cva = cva_cur_page + (fva & ARM_PGMASK);
	439	} else {
	440	// which means a front page is not a tracing page
	441	cva = cva_front_page + (fva & ARM_PGMASK);
	442	}
	443
	444	pa = mmu_kvtop(cva);
	445	if (!pa) {
	446	panic("%s: invalid address cva=%lx fva=%lx info.addr=%lx inst=%x", __func__, cva, fva, info.addr, inst);
	447	}
	448
	449	absolutetime_to_nanoseconds(mach_absolute_time(), &res->rr_time);
	450
	451	pgtrace.decoder->run(inst, pa, cva, ss, res);
	452
	453	return 0;
5ba3f43e A	454	}
5ba3f43e A	455
0a7de745 A	456	int
0a7de745 A	457	pgtrace_write_log(pgtrace_run_result_t res)
5ba3f43e	458	{
0a7de745 A	459	pgtrace.logger->write(res);
0a7de745 A	460	return 0;
5ba3f43e A	461	}
	462
	463	//------------------------------------
	464	// functions for kext
	465	// - pgtrace_init
	466	// - pgtrace_add_probe
	467	// - pgtrace_clear_probe
	468	// - pgtrace_start
	469	// - pgtrace_stop
	470	// - pgtrace_active
	471	//------------------------------------
0a7de745 A	472	int
0a7de745 A	473	pgtrace_init(decoder_t decoder, logger_t logger)
5ba3f43e	474	{
0a7de745	475	kprintf("%s decoder=%p logger=%p\n", __func__, decoder, logger);
5ba3f43e	476
0a7de745	477	assert(decoder && logger);
5ba3f43e	478
0a7de745 A	479	if (decoder->magic != 0xfeedface \|\| logger->magic != 0xfeedface \|\|
	480	strcmp(decoder->arch, "arm64") != 0 \|\| strcmp(logger->arch, "arm64") != 0) {
	481	kprintf("%s:wrong decoder/logger magic=%llx/%llx arch=%s/%s", __func__, decoder->magic, logger->magic, decoder->arch, logger->arch);
	482	return EINVAL;
	483	}
5ba3f43e	484
0a7de745 A	485	pgtrace.lock_attr = lck_attr_alloc_init();
	486	pgtrace.lock_grp_attr = lck_grp_attr_alloc_init();
	487	pgtrace.lock_grp = lck_grp_alloc_init("pgtrace_lock", pgtrace.lock_grp_attr);
5ba3f43e	488
0a7de745	489	lck_mtx_init(&pgtrace.probelock, pgtrace.lock_grp, pgtrace.lock_attr);
5ba3f43e	490
0a7de745 A	491	queue_init(&pgtrace.probes);
	492	pgtrace.decoder = decoder;
	493	pgtrace.logger = logger;
5ba3f43e	494
0a7de745	495	return 0;
5ba3f43e	496	}
0a7de745 A	497
	498	int
	499	pgtrace_add_probe(thread_t thread, vm_offset_t start, vm_offset_t end)
5ba3f43e	500	{
0a7de745 A	501	probe_t *p;
	502	queue_head_t *q = &pgtrace.probes;
	503
	504	kprintf("%s start=%lx end=%lx\n", __func__, start, end);
	505
	506	if (start > end) {
	507	kprintf("%s Invalid start=%lx end=%lx\n", __func__, start, end);
	508	return -1;
	509	}
	510
	511	p = kalloc(sizeof(probe_t));
	512	p->start = start;
	513	p->end = end;
	514	if (thread == NULL) {
	515	p->pmap = NULL;
	516	} else {
	517	p->pmap = vm_map_pmap(thread->map);
	518	}
	519
	520	lck_mtx_lock(&pgtrace.probelock);
	521	queue_enter(q, p, probe_t *, chain);
	522	lck_mtx_unlock(&pgtrace.probelock);
	523
	524	return 0;
5ba3f43e A	525	}
5ba3f43e A	526
0a7de745 A	527	void
0a7de745 A	528	pgtrace_clear_probe(void)
5ba3f43e	529	{
0a7de745 A	530	probe_t p, next;
0a7de745 A	531	queue_head_t *q = &pgtrace.probes;
5ba3f43e	532
0a7de745	533	kprintf("%s\n", __func__);
5ba3f43e	534
0a7de745	535	lck_mtx_lock(&pgtrace.probelock);
5ba3f43e	536
0a7de745 A	537	p = (probe_t *)queue_first(q);
	538	while (!queue_end(q, (queue_entry_t)p)) {
	539	next = (probe_t *)queue_next(&(p->chain));
5ba3f43e	540
0a7de745 A	541	queue_remove(q, p, probe_t *, chain);
0a7de745 A	542	kfree(p, sizeof(probe_t));
5ba3f43e	543
0a7de745 A	544	p = next;
0a7de745 A	545	}
5ba3f43e	546
0a7de745	547	lck_mtx_unlock(&pgtrace.probelock);
5ba3f43e	548
0a7de745	549	return;
5ba3f43e A	550	}
5ba3f43e A	551
0a7de745 A	552	void
0a7de745 A	553	pgtrace_start(void)
5ba3f43e	554	{
0a7de745 A	555	probe_t *p;
0a7de745 A	556	queue_head_t *q = &pgtrace.probes;
5ba3f43e	557
0a7de745	558	kprintf("%s\n", __func__);
5ba3f43e	559
0a7de745 A	560	if (pgtrace.active == true) {
	561	return;
	562	}
5ba3f43e	563
0a7de745	564	pgtrace.active = true;
5ba3f43e	565
0a7de745	566	lck_mtx_lock(&pgtrace.probelock);
5ba3f43e	567
0a7de745 A	568	queue_iterate(q, p, probe_t *, chain) {
	569	pmap_pgtrace_add_page(p->pmap, p->start, p->end);
	570	}
5ba3f43e	571
0a7de745	572	lck_mtx_unlock(&pgtrace.probelock);
5ba3f43e	573
0a7de745	574	return;
5ba3f43e A	575	}
5ba3f43e A	576
0a7de745 A	577	void
0a7de745 A	578	pgtrace_stop(void)
5ba3f43e	579	{
0a7de745 A	580	probe_t *p;
0a7de745 A	581	queue_head_t *q = &pgtrace.probes;
5ba3f43e	582
0a7de745	583	kprintf("%s\n", __func__);
5ba3f43e	584
0a7de745	585	lck_mtx_lock(&pgtrace.probelock);
5ba3f43e	586
0a7de745 A	587	queue_iterate(q, p, probe_t *, chain) {
	588	pmap_pgtrace_delete_page(p->pmap, p->start, p->end);
	589	}
5ba3f43e	590
0a7de745	591	lck_mtx_unlock(&pgtrace.probelock);
5ba3f43e	592
0a7de745	593	pgtrace.active = false;
5ba3f43e A	594	}
5ba3f43e A	595
0a7de745 A	596	bool
0a7de745 A	597	pgtrace_active(void)
5ba3f43e	598	{
0a7de745	599	return pgtrace.active;
5ba3f43e A	600	}
	601	#endif // CONFIG_PGTRACE_NONKEXT
	602	#else
	603	// empty funcs for release kernel
	604	extern void pgtrace_stop(void);
	605	extern void pgtrace_start(void);
	606	extern void pgtrace_clear_probe(void);
	607	extern void pgtrace_add_probe(void);
	608	extern void pgtrace_init(void);
	609	extern void pgtrace_active(void);
0a7de745 A	610	void
	611	pgtrace_stop(void)
	612	{
	613	}
	614	void
	615	pgtrace_start(void)
	616	{
	617	}
	618	void
	619	pgtrace_clear_probe(void)
	620	{
	621	}
	622	void
	623	pgtrace_add_probe(void)
	624	{
	625	}
	626	void
	627	pgtrace_init(void)
	628	{
	629	}
	630	void
	631	pgtrace_active(void)
	632	{
	633	}
5ba3f43e	634	#endif