mirror of
https://git.kernel.org/pub/scm/linux/kernel/git/chenhuacai/linux-loongson
synced 2025-09-01 15:14:52 +00:00
1a15bb8303
Patch series "mm/hwpoison: Fix regressions in memory failure handling",
v4.
## 1. What am I trying to do:
This patchset resolves two critical regressions related to memory failure
handling that have appeared in the upstream kernel since version 5.17, as
compared to 5.10 LTS.
- copyin case: poison found in user page while kernel copying from user space
- instr case: poison found while instruction fetching in user space
## 2. What is the expected outcome and why
- For copyin case:
Kernel can recover from poison found where kernel is doing get_user() or
copy_from_user() if those places get an error return and the kernel return
-EFAULT to the process instead of crashing. More specifily, MCE handler
checks the fixup handler type to decide whether an in kernel #MC can be
recovered. When EX_TYPE_UACCESS is found, the PC jumps to recovery code
specified in _ASM_EXTABLE_FAULT() and return a -EFAULT to user space.
- For instr case:
If a poison found while instruction fetching in user space, full recovery
is possible. User process takes #PF, Linux allocates a new page and fills
by reading from storage.
## 3. What actually happens and why
- For copyin case: kernel panic since v5.17
Commit 4c132d1d84 ("x86/futex: Remove .fixup usage") introduced a new
extable fixup type, EX_TYPE_EFAULT_REG, and later patches updated the
extable fixup type for copy-from-user operations, changing it from
EX_TYPE_UACCESS to EX_TYPE_EFAULT_REG. It breaks previous EX_TYPE_UACCESS
handling when posion found in get_user() or copy_from_user().
- For instr case: user process is killed by a SIGBUS signal due to #CMCI
and #MCE race
When an uncorrected memory error is consumed there is a race between the
CMCI from the memory controller reporting an uncorrected error with a UCNA
signature, and the core reporting and SRAR signature machine check when
the data is about to be consumed.
### Background: why *UN*corrected errors tied to *C*MCI in Intel platform [1]
Prior to Icelake memory controllers reported patrol scrub events that
detected a previously unseen uncorrected error in memory by signaling a
broadcast machine check with an SRAO (Software Recoverable Action
Optional) signature in the machine check bank. This was overkill because
it's not an urgent problem that no core is on the verge of consuming that
bad data. It's also found that multi SRAO UCE may cause nested MCE
interrupts and finally become an IERR.
Hence, Intel downgrades the machine check bank signature of patrol scrub
from SRAO to UCNA (Uncorrected, No Action required), and signal changed to
#CMCI. Just to add to the confusion, Linux does take an action (in
uc_decode_notifier()) to try to offline the page despite the UC*NA*
signature name.
### Background: why #CMCI and #MCE race when poison is consuming in
Intel platform [1]
Having decided that CMCI/UCNA is the best action for patrol scrub errors,
the memory controller uses it for reads too. But the memory controller is
executing asynchronously from the core, and can't tell the difference
between a "real" read and a speculative read. So it will do CMCI/UCNA if
an error is found in any read.
Thus:
1) Core is clever and thinks address A is needed soon, issues a
speculative read.
2) Core finds it is going to use address A soon after sending the read
request
3) The CMCI from the memory controller is in a race with MCE from the
core that will soon try to retire the load from address A.
Quite often (because speculation has got better) the CMCI from the memory
controller is delivered before the core is committed to the instruction
reading address A, so the interrupt is taken, and Linux offlines the page
(marking it as poison).
## Why user process is killed for instr case
Commit 046545a661 ("mm/hwpoison: fix error page recovered but reported
"not recovered"") tries to fix noise message "Memory error not recovered"
and skips duplicate SIGBUSs due to the race. But it also introduced a bug
that kill_accessing_process() return -EHWPOISON for instr case, as result,
kill_me_maybe() send a SIGBUS to user process.
# 4. The fix, in my opinion, should be:
- For copyin case:
The key point is whether the error context is in a read from user memory.
We do not care about the ex-type if we know its a MOV reading from
userspace.
is_copy_from_user() return true when both of the following two checks are
true:
- the current instruction is copy
- source address is user memory
If copy_user is true, we set
m->kflags |= MCE_IN_KERNEL_COPYIN | MCE_IN_KERNEL_RECOV;
Then do_machine_check() will try fixup_exception() first.
- For instr case: let kill_accessing_process() return 0 to prevent a SIGBUS.
- For patch 3:
The return value of memory_failure() is quite important while discussed
instr case regression with Tony and Miaohe for patch 2, so add comment
about the return value.
This patch (of 3):
Commit 4c132d1d84 ("x86/futex: Remove .fixup usage") introduced a new
extable fixup type, EX_TYPE_EFAULT_REG, and commit 4c132d1d84
("x86/futex: Remove .fixup usage") updated the extable fixup type for
copy-from-user operations, changing it from EX_TYPE_UACCESS to
EX_TYPE_EFAULT_REG. The error context for copy-from-user operations no
longer functions as an in-kernel recovery context. Consequently, the
error context for copy-from-user operations no longer functions as an
in-kernel recovery context, resulting in kernel panics with the message:
"Machine check: Data load in unrecoverable area of kernel."
To address this, it is crucial to identify if an error context involves a
read operation from user memory. The function is_copy_from_user() can be
utilized to determine:
- the current operation is copy
- when reading user memory
When these conditions are met, is_copy_from_user() will return true,
confirming that it is indeed a direct copy from user memory. This check
is essential for correctly handling the context of errors in these
operations without relying on the extable fixup types that previously
allowed for in-kernel recovery.
So, use is_copy_from_user() to determine if a context is copy user directly.
Link: https://lkml.kernel.org/r/20250312112852.82415-1-xueshuai@linux.alibaba.com
Link: https://lkml.kernel.org/r/20250312112852.82415-2-xueshuai@linux.alibaba.com
Fixes: 4c132d1d84 ("x86/futex: Remove .fixup usage")
Signed-off-by: Shuai Xue <xueshuai@linux.alibaba.com>
Suggested-by: Peter Zijlstra <peterz@infradead.org>
Acked-by: Borislav Petkov (AMD) <bp@alien8.de>
Tested-by: Tony Luck <tony.luck@intel.com>
Cc: Baolin Wang <baolin.wang@linux.alibaba.com>
Cc: Borislav Betkov <bp@alien8.de>
Cc: Catalin Marinas <catalin.marinas@arm.com>
Cc: Dave Hansen <dave.hansen@linux.intel.com>
Cc: "H. Peter Anvin" <hpa@zytor.com>
Cc: Ingo Molnar <mingo@redhat.com>
Cc: Josh Poimboeuf <jpoimboe@kernel.org>
Cc: Miaohe Lin <linmiaohe@huawei.com>
Cc: Naoya Horiguchi <nao.horiguchi@gmail.com>
Cc: Ruidong Tian <tianruidong@linux.alibaba.com>
Cc: Thomas Gleinxer <tglx@linutronix.de>
Cc: Yazen Ghannam <yazen.ghannam@amd.com>
Cc: Jane Chu <jane.chu@oracle.com>
Cc: Jarkko Sakkinen <jarkko@kernel.org>
Cc: Jonathan Cameron <Jonathan.Cameron@huawei.com>
Cc: <stable@vger.kernel.org>
Signed-off-by: Andrew Morton <akpm@linux-foundation.org>
490 lines
12 KiB
C
490 lines
12 KiB
C
// SPDX-License-Identifier: GPL-2.0-only
|
|
/*
|
|
* MCE grading rules.
|
|
* Copyright 2008, 2009 Intel Corporation.
|
|
*
|
|
* Author: Andi Kleen
|
|
*/
|
|
#include <linux/kernel.h>
|
|
#include <linux/seq_file.h>
|
|
#include <linux/init.h>
|
|
#include <linux/debugfs.h>
|
|
#include <linux/uaccess.h>
|
|
|
|
#include <asm/mce.h>
|
|
#include <asm/cpu_device_id.h>
|
|
#include <asm/traps.h>
|
|
#include <asm/insn.h>
|
|
#include <asm/insn-eval.h>
|
|
|
|
#include "internal.h"
|
|
|
|
/*
|
|
* Grade an mce by severity. In general the most severe ones are processed
|
|
* first. Since there are quite a lot of combinations test the bits in a
|
|
* table-driven way. The rules are simply processed in order, first
|
|
* match wins.
|
|
*
|
|
* Note this is only used for machine check exceptions, the corrected
|
|
* errors use much simpler rules. The exceptions still check for the corrected
|
|
* errors, but only to leave them alone for the CMCI handler (except for
|
|
* panic situations)
|
|
*/
|
|
|
|
enum context { IN_KERNEL = 1, IN_USER = 2, IN_KERNEL_RECOV = 3 };
|
|
enum ser { SER_REQUIRED = 1, NO_SER = 2 };
|
|
enum exception { EXCP_CONTEXT = 1, NO_EXCP = 2 };
|
|
|
|
static struct severity {
|
|
u64 mask;
|
|
u64 result;
|
|
unsigned char sev;
|
|
unsigned short mcgmask;
|
|
unsigned short mcgres;
|
|
unsigned char ser;
|
|
unsigned char context;
|
|
unsigned char excp;
|
|
unsigned char covered;
|
|
unsigned int cpu_vfm;
|
|
unsigned char cpu_minstepping;
|
|
unsigned char bank_lo, bank_hi;
|
|
char *msg;
|
|
} severities[] = {
|
|
#define MCESEV(s, m, c...) { .sev = MCE_ ## s ## _SEVERITY, .msg = m, ## c }
|
|
#define BANK_RANGE(l, h) .bank_lo = l, .bank_hi = h
|
|
#define VFM_STEPPING(m, s) .cpu_vfm = m, .cpu_minstepping = s
|
|
#define KERNEL .context = IN_KERNEL
|
|
#define USER .context = IN_USER
|
|
#define KERNEL_RECOV .context = IN_KERNEL_RECOV
|
|
#define SER .ser = SER_REQUIRED
|
|
#define NOSER .ser = NO_SER
|
|
#define EXCP .excp = EXCP_CONTEXT
|
|
#define NOEXCP .excp = NO_EXCP
|
|
#define BITCLR(x) .mask = x, .result = 0
|
|
#define BITSET(x) .mask = x, .result = x
|
|
#define MCGMASK(x, y) .mcgmask = x, .mcgres = y
|
|
#define MASK(x, y) .mask = x, .result = y
|
|
#define MCI_UC_S (MCI_STATUS_UC|MCI_STATUS_S)
|
|
#define MCI_UC_AR (MCI_STATUS_UC|MCI_STATUS_AR)
|
|
#define MCI_UC_SAR (MCI_STATUS_UC|MCI_STATUS_S|MCI_STATUS_AR)
|
|
#define MCI_ADDR (MCI_STATUS_ADDRV|MCI_STATUS_MISCV)
|
|
|
|
MCESEV(
|
|
NO, "Invalid",
|
|
BITCLR(MCI_STATUS_VAL)
|
|
),
|
|
MCESEV(
|
|
NO, "Not enabled",
|
|
EXCP, BITCLR(MCI_STATUS_EN)
|
|
),
|
|
MCESEV(
|
|
PANIC, "Processor context corrupt",
|
|
BITSET(MCI_STATUS_PCC)
|
|
),
|
|
/* When MCIP is not set something is very confused */
|
|
MCESEV(
|
|
PANIC, "MCIP not set in MCA handler",
|
|
EXCP, MCGMASK(MCG_STATUS_MCIP, 0)
|
|
),
|
|
/* Neither return not error IP -- no chance to recover -> PANIC */
|
|
MCESEV(
|
|
PANIC, "Neither restart nor error IP",
|
|
EXCP, MCGMASK(MCG_STATUS_RIPV|MCG_STATUS_EIPV, 0)
|
|
),
|
|
MCESEV(
|
|
PANIC, "In kernel and no restart IP",
|
|
EXCP, KERNEL, MCGMASK(MCG_STATUS_RIPV, 0)
|
|
),
|
|
MCESEV(
|
|
PANIC, "In kernel and no restart IP",
|
|
EXCP, KERNEL_RECOV, MCGMASK(MCG_STATUS_RIPV, 0)
|
|
),
|
|
MCESEV(
|
|
KEEP, "Corrected error",
|
|
NOSER, BITCLR(MCI_STATUS_UC)
|
|
),
|
|
/*
|
|
* known AO MCACODs reported via MCE or CMC:
|
|
*
|
|
* SRAO could be signaled either via a machine check exception or
|
|
* CMCI with the corresponding bit S 1 or 0. So we don't need to
|
|
* check bit S for SRAO.
|
|
*/
|
|
MCESEV(
|
|
AO, "Action optional: memory scrubbing error",
|
|
SER, MASK(MCI_UC_AR|MCACOD_SCRUBMSK, MCI_STATUS_UC|MCACOD_SCRUB)
|
|
),
|
|
MCESEV(
|
|
AO, "Action optional: last level cache writeback error",
|
|
SER, MASK(MCI_UC_AR|MCACOD, MCI_STATUS_UC|MCACOD_L3WB)
|
|
),
|
|
/*
|
|
* Quirk for Skylake/Cascade Lake. Patrol scrubber may be configured
|
|
* to report uncorrected errors using CMCI with a special signature.
|
|
* UC=0, MSCOD=0x0010, MCACOD=binary(000X 0000 1100 XXXX) reported
|
|
* in one of the memory controller banks.
|
|
* Set severity to "AO" for same action as normal patrol scrub error.
|
|
*/
|
|
MCESEV(
|
|
AO, "Uncorrected Patrol Scrub Error",
|
|
SER, MASK(MCI_STATUS_UC|MCI_ADDR|0xffffeff0, MCI_ADDR|0x001000c0),
|
|
VFM_STEPPING(INTEL_SKYLAKE_X, 4), BANK_RANGE(13, 18)
|
|
),
|
|
|
|
/* ignore OVER for UCNA */
|
|
MCESEV(
|
|
UCNA, "Uncorrected no action required",
|
|
SER, MASK(MCI_UC_SAR, MCI_STATUS_UC)
|
|
),
|
|
MCESEV(
|
|
PANIC, "Illegal combination (UCNA with AR=1)",
|
|
SER,
|
|
MASK(MCI_STATUS_OVER|MCI_UC_SAR, MCI_STATUS_UC|MCI_STATUS_AR)
|
|
),
|
|
MCESEV(
|
|
KEEP, "Non signaled machine check",
|
|
SER, BITCLR(MCI_STATUS_S)
|
|
),
|
|
|
|
MCESEV(
|
|
PANIC, "Action required with lost events",
|
|
SER, BITSET(MCI_STATUS_OVER|MCI_UC_SAR)
|
|
),
|
|
|
|
/* known AR MCACODs: */
|
|
#ifdef CONFIG_MEMORY_FAILURE
|
|
MCESEV(
|
|
KEEP, "Action required but unaffected thread is continuable",
|
|
SER, MASK(MCI_STATUS_OVER|MCI_UC_SAR|MCI_ADDR, MCI_UC_SAR|MCI_ADDR),
|
|
MCGMASK(MCG_STATUS_RIPV|MCG_STATUS_EIPV, MCG_STATUS_RIPV)
|
|
),
|
|
MCESEV(
|
|
AR, "Action required: data load in error recoverable area of kernel",
|
|
SER, MASK(MCI_STATUS_OVER|MCI_UC_SAR|MCI_ADDR|MCACOD, MCI_UC_SAR|MCI_ADDR|MCACOD_DATA),
|
|
KERNEL_RECOV
|
|
),
|
|
MCESEV(
|
|
AR, "Action required: data load error in a user process",
|
|
SER, MASK(MCI_STATUS_OVER|MCI_UC_SAR|MCI_ADDR|MCACOD, MCI_UC_SAR|MCI_ADDR|MCACOD_DATA),
|
|
USER
|
|
),
|
|
MCESEV(
|
|
AR, "Action required: instruction fetch error in a user process",
|
|
SER, MASK(MCI_STATUS_OVER|MCI_UC_SAR|MCI_ADDR|MCACOD, MCI_UC_SAR|MCI_ADDR|MCACOD_INSTR),
|
|
USER
|
|
),
|
|
MCESEV(
|
|
AR, "Data load error in SEAM non-root mode",
|
|
SER, MASK(MCI_STATUS_OVER|MCI_UC_SAR|MCI_ADDR|MCACOD, MCI_UC_SAR|MCI_ADDR|MCACOD_DATA),
|
|
MCGMASK(MCG_STATUS_SEAM_NR, MCG_STATUS_SEAM_NR),
|
|
KERNEL
|
|
),
|
|
MCESEV(
|
|
AR, "Instruction fetch error in SEAM non-root mode",
|
|
SER, MASK(MCI_STATUS_OVER|MCI_UC_SAR|MCI_ADDR|MCACOD, MCI_UC_SAR|MCI_ADDR|MCACOD_INSTR),
|
|
MCGMASK(MCG_STATUS_SEAM_NR, MCG_STATUS_SEAM_NR),
|
|
KERNEL
|
|
),
|
|
MCESEV(
|
|
PANIC, "Data load in unrecoverable area of kernel",
|
|
SER, MASK(MCI_STATUS_OVER|MCI_UC_SAR|MCI_ADDR|MCACOD, MCI_UC_SAR|MCI_ADDR|MCACOD_DATA),
|
|
KERNEL
|
|
),
|
|
MCESEV(
|
|
PANIC, "Instruction fetch error in kernel",
|
|
SER, MASK(MCI_STATUS_OVER|MCI_UC_SAR|MCI_ADDR|MCACOD, MCI_UC_SAR|MCI_ADDR|MCACOD_INSTR),
|
|
KERNEL
|
|
),
|
|
#endif
|
|
MCESEV(
|
|
PANIC, "Action required: unknown MCACOD",
|
|
SER, MASK(MCI_STATUS_OVER|MCI_UC_SAR, MCI_UC_SAR)
|
|
),
|
|
|
|
MCESEV(
|
|
SOME, "Action optional: unknown MCACOD",
|
|
SER, MASK(MCI_STATUS_OVER|MCI_UC_SAR, MCI_UC_S)
|
|
),
|
|
MCESEV(
|
|
SOME, "Action optional with lost events",
|
|
SER, MASK(MCI_STATUS_OVER|MCI_UC_SAR, MCI_STATUS_OVER|MCI_UC_S)
|
|
),
|
|
|
|
MCESEV(
|
|
PANIC, "Overflowed uncorrected",
|
|
BITSET(MCI_STATUS_OVER|MCI_STATUS_UC)
|
|
),
|
|
MCESEV(
|
|
PANIC, "Uncorrected in kernel",
|
|
BITSET(MCI_STATUS_UC),
|
|
KERNEL
|
|
),
|
|
MCESEV(
|
|
UC, "Uncorrected",
|
|
BITSET(MCI_STATUS_UC)
|
|
),
|
|
MCESEV(
|
|
SOME, "No match",
|
|
BITSET(0)
|
|
) /* always matches. keep at end */
|
|
};
|
|
|
|
#define mc_recoverable(mcg) (((mcg) & (MCG_STATUS_RIPV|MCG_STATUS_EIPV)) == \
|
|
(MCG_STATUS_RIPV|MCG_STATUS_EIPV))
|
|
|
|
static bool is_copy_from_user(struct pt_regs *regs)
|
|
{
|
|
u8 insn_buf[MAX_INSN_SIZE];
|
|
unsigned long addr;
|
|
struct insn insn;
|
|
int ret;
|
|
|
|
if (!regs)
|
|
return false;
|
|
|
|
if (copy_from_kernel_nofault(insn_buf, (void *)regs->ip, MAX_INSN_SIZE))
|
|
return false;
|
|
|
|
ret = insn_decode_kernel(&insn, insn_buf);
|
|
if (ret < 0)
|
|
return false;
|
|
|
|
switch (insn.opcode.value) {
|
|
/* MOV mem,reg */
|
|
case 0x8A: case 0x8B:
|
|
/* MOVZ mem,reg */
|
|
case 0xB60F: case 0xB70F:
|
|
addr = (unsigned long)insn_get_addr_ref(&insn, regs);
|
|
break;
|
|
/* REP MOVS */
|
|
case 0xA4: case 0xA5:
|
|
addr = regs->si;
|
|
break;
|
|
default:
|
|
return false;
|
|
}
|
|
|
|
if (fault_in_kernel_space(addr))
|
|
return false;
|
|
|
|
current->mce_vaddr = (void __user *)addr;
|
|
|
|
return true;
|
|
}
|
|
|
|
/*
|
|
* If mcgstatus indicated that ip/cs on the stack were
|
|
* no good, then "m->cs" will be zero and we will have
|
|
* to assume the worst case (IN_KERNEL) as we actually
|
|
* have no idea what we were executing when the machine
|
|
* check hit.
|
|
* If we do have a good "m->cs" (or a faked one in the
|
|
* case we were executing in VM86 mode) we can use it to
|
|
* distinguish an exception taken in user from from one
|
|
* taken in the kernel.
|
|
*/
|
|
static noinstr int error_context(struct mce *m, struct pt_regs *regs)
|
|
{
|
|
int fixup_type;
|
|
bool copy_user;
|
|
|
|
if ((m->cs & 3) == 3)
|
|
return IN_USER;
|
|
|
|
if (!mc_recoverable(m->mcgstatus))
|
|
return IN_KERNEL;
|
|
|
|
/* Allow instrumentation around external facilities usage. */
|
|
instrumentation_begin();
|
|
fixup_type = ex_get_fixup_type(m->ip);
|
|
copy_user = is_copy_from_user(regs);
|
|
instrumentation_end();
|
|
|
|
if (copy_user) {
|
|
m->kflags |= MCE_IN_KERNEL_COPYIN | MCE_IN_KERNEL_RECOV;
|
|
return IN_KERNEL_RECOV;
|
|
}
|
|
|
|
switch (fixup_type) {
|
|
case EX_TYPE_FAULT_MCE_SAFE:
|
|
case EX_TYPE_DEFAULT_MCE_SAFE:
|
|
m->kflags |= MCE_IN_KERNEL_RECOV;
|
|
return IN_KERNEL_RECOV;
|
|
|
|
default:
|
|
return IN_KERNEL;
|
|
}
|
|
}
|
|
|
|
/* See AMD PPR(s) section Machine Check Error Handling. */
|
|
static noinstr int mce_severity_amd(struct mce *m, struct pt_regs *regs, char **msg, bool is_excp)
|
|
{
|
|
char *panic_msg = NULL;
|
|
int ret;
|
|
|
|
/*
|
|
* Default return value: Action required, the error must be handled
|
|
* immediately.
|
|
*/
|
|
ret = MCE_AR_SEVERITY;
|
|
|
|
/* Processor Context Corrupt, no need to fumble too much, die! */
|
|
if (m->status & MCI_STATUS_PCC) {
|
|
panic_msg = "Processor Context Corrupt";
|
|
ret = MCE_PANIC_SEVERITY;
|
|
goto out;
|
|
}
|
|
|
|
if (m->status & MCI_STATUS_DEFERRED) {
|
|
ret = MCE_DEFERRED_SEVERITY;
|
|
goto out;
|
|
}
|
|
|
|
/*
|
|
* If the UC bit is not set, the system either corrected or deferred
|
|
* the error. No action will be required after logging the error.
|
|
*/
|
|
if (!(m->status & MCI_STATUS_UC)) {
|
|
ret = MCE_KEEP_SEVERITY;
|
|
goto out;
|
|
}
|
|
|
|
/*
|
|
* On MCA overflow, without the MCA overflow recovery feature the
|
|
* system will not be able to recover, panic.
|
|
*/
|
|
if ((m->status & MCI_STATUS_OVER) && !mce_flags.overflow_recov) {
|
|
panic_msg = "Overflowed uncorrected error without MCA Overflow Recovery";
|
|
ret = MCE_PANIC_SEVERITY;
|
|
goto out;
|
|
}
|
|
|
|
if (!mce_flags.succor) {
|
|
panic_msg = "Uncorrected error without MCA Recovery";
|
|
ret = MCE_PANIC_SEVERITY;
|
|
goto out;
|
|
}
|
|
|
|
if (error_context(m, regs) == IN_KERNEL) {
|
|
panic_msg = "Uncorrected unrecoverable error in kernel context";
|
|
ret = MCE_PANIC_SEVERITY;
|
|
}
|
|
|
|
out:
|
|
if (msg && panic_msg)
|
|
*msg = panic_msg;
|
|
|
|
return ret;
|
|
}
|
|
|
|
static noinstr int mce_severity_intel(struct mce *m, struct pt_regs *regs, char **msg, bool is_excp)
|
|
{
|
|
enum exception excp = (is_excp ? EXCP_CONTEXT : NO_EXCP);
|
|
enum context ctx = error_context(m, regs);
|
|
struct severity *s;
|
|
|
|
for (s = severities;; s++) {
|
|
if ((m->status & s->mask) != s->result)
|
|
continue;
|
|
if ((m->mcgstatus & s->mcgmask) != s->mcgres)
|
|
continue;
|
|
if (s->ser == SER_REQUIRED && !mca_cfg.ser)
|
|
continue;
|
|
if (s->ser == NO_SER && mca_cfg.ser)
|
|
continue;
|
|
if (s->context && ctx != s->context)
|
|
continue;
|
|
if (s->excp && excp != s->excp)
|
|
continue;
|
|
if (s->cpu_vfm && boot_cpu_data.x86_vfm != s->cpu_vfm)
|
|
continue;
|
|
if (s->cpu_minstepping && boot_cpu_data.x86_stepping < s->cpu_minstepping)
|
|
continue;
|
|
if (s->bank_lo && (m->bank < s->bank_lo || m->bank > s->bank_hi))
|
|
continue;
|
|
if (msg)
|
|
*msg = s->msg;
|
|
s->covered = 1;
|
|
|
|
return s->sev;
|
|
}
|
|
}
|
|
|
|
int noinstr mce_severity(struct mce *m, struct pt_regs *regs, char **msg, bool is_excp)
|
|
{
|
|
if (boot_cpu_data.x86_vendor == X86_VENDOR_AMD ||
|
|
boot_cpu_data.x86_vendor == X86_VENDOR_HYGON)
|
|
return mce_severity_amd(m, regs, msg, is_excp);
|
|
else
|
|
return mce_severity_intel(m, regs, msg, is_excp);
|
|
}
|
|
|
|
#ifdef CONFIG_DEBUG_FS
|
|
static void *s_start(struct seq_file *f, loff_t *pos)
|
|
{
|
|
if (*pos >= ARRAY_SIZE(severities))
|
|
return NULL;
|
|
return &severities[*pos];
|
|
}
|
|
|
|
static void *s_next(struct seq_file *f, void *data, loff_t *pos)
|
|
{
|
|
if (++(*pos) >= ARRAY_SIZE(severities))
|
|
return NULL;
|
|
return &severities[*pos];
|
|
}
|
|
|
|
static void s_stop(struct seq_file *f, void *data)
|
|
{
|
|
}
|
|
|
|
static int s_show(struct seq_file *f, void *data)
|
|
{
|
|
struct severity *ser = data;
|
|
seq_printf(f, "%d\t%s\n", ser->covered, ser->msg);
|
|
return 0;
|
|
}
|
|
|
|
static const struct seq_operations severities_seq_ops = {
|
|
.start = s_start,
|
|
.next = s_next,
|
|
.stop = s_stop,
|
|
.show = s_show,
|
|
};
|
|
|
|
static int severities_coverage_open(struct inode *inode, struct file *file)
|
|
{
|
|
return seq_open(file, &severities_seq_ops);
|
|
}
|
|
|
|
static ssize_t severities_coverage_write(struct file *file,
|
|
const char __user *ubuf,
|
|
size_t count, loff_t *ppos)
|
|
{
|
|
int i;
|
|
for (i = 0; i < ARRAY_SIZE(severities); i++)
|
|
severities[i].covered = 0;
|
|
return count;
|
|
}
|
|
|
|
static const struct file_operations severities_coverage_fops = {
|
|
.open = severities_coverage_open,
|
|
.release = seq_release,
|
|
.read = seq_read,
|
|
.write = severities_coverage_write,
|
|
.llseek = seq_lseek,
|
|
};
|
|
|
|
static int __init severities_debugfs_init(void)
|
|
{
|
|
struct dentry *dmce;
|
|
|
|
dmce = mce_get_debugfs_dir();
|
|
|
|
debugfs_create_file("severities-coverage", 0444, dmce, NULL,
|
|
&severities_coverage_fops);
|
|
return 0;
|
|
}
|
|
late_initcall(severities_debugfs_init);
|
|
#endif /* CONFIG_DEBUG_FS */
|