Re: [RFC PATCH 2/8] jump label v4 - x86: Introduce generic jump patchingwithout stop_machine

From: H. Peter Anvin
Date: Tue Jan 12 2010 - 18:17:10 EST

Next message: Corrado Zoccolo: "Re: [PATCH] cfq-iosched: rework seeky detection"
Previous message: Andrew Morton: "Re: [PATCH] gpio: introduce gpio_request_one() and friends"
In reply to: Jason Baron: "[RFC PATCH 2/8] jump label v4 - x86: Introduce generic jump patching without stop_machine"
Next in thread: Mathieu Desnoyers: "Re: [RFC PATCH 2/8] jump label v4 - x86: Introduce generic jumppatching without stop_machine"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 01/12/2010 08:26 AM, Jason Baron wrote:
> Add text_poke_fixup() which takes a fixup address to where a processor
> jumps if it hits the modifying address while code modifying.
> text_poke_fixup() does following steps for this purpose.
>
> 1. Setup int3 handler for fixup.
> 2. Put a breakpoint (int3) on the first byte of modifying region,
> and synchronize code on all CPUs.
> 3. Modify other bytes of modifying region, and synchronize code on all CPUs.
> 4. Modify the first byte of modifying region, and synchronize code
> on all CPUs.
> 5. Clear int3 handler.
>

We (Intel OTC) have been able to get an *unofficial* answer as to the
validity of this procedure; specifically as it applies to Intel hardware
(obviously). We are working on getting an officially approved answer,
but as far as we currently know, the procedure as outlined above should
work on all Intel hardware. In fact, we believe the synchronization in
step 3 is in fact unnecessary (as the synchronization in step 4 provides
sufficient guard.)

In fact, if a suitable int3 handler is left permanently in place then
step 5 is unnecessary as well. This would slow down other uses of int3
slightly, but might be a worthwhile tradeoff.

Such a permanent int3 handler would need to keep track of two
potentially-spurious breakpoints: the current and the previous. The
reason for needing two is that one could get a #BP from either the
current or the previous modification site between the insertion of int3
and the synchronization in step 2. This, of course, assumes that the
actual code poking is forcibly single-threaded (running under a spinlock
or other mutex) -- if modifications are allowed to run in parallel you
need to consider all possible current or stale #BP sites.

-hpa
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Corrado Zoccolo: "Re: [PATCH] cfq-iosched: rework seeky detection"
Previous message: Andrew Morton: "Re: [PATCH] gpio: introduce gpio_request_one() and friends"
In reply to: Jason Baron: "[RFC PATCH 2/8] jump label v4 - x86: Introduce generic jump patching without stop_machine"
Next in thread: Mathieu Desnoyers: "Re: [RFC PATCH 2/8] jump label v4 - x86: Introduce generic jumppatching without stop_machine"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]