main.c

Go to the documentation of this file.

 
#include <xtf.h>
 
const char test_title[] = "Debugging facility tests";
 
static void check_init_dr(unsigned int dr, unsigned long exp, unsigned long got)
{
    if ( got != exp )
        xtf_failure("  Fail: %%dr%u expected %p, got %p\n",
                    dr, _p(exp), _p(got));
}
 
static void check_init_msr(const char *name, uint64_t exp, uint64_t got)
{
    if ( got != exp )
        xtf_failure("  Fail: %s expected %08"PRIx64", got %08"PRIx64"\n",
                    name, exp, got);
}
 
static void test_initial_debug_state(void)
{
    printk("Test initial debug state\n");
 
    if ( read_cr4() & X86_CR4_DE )
        xtf_failure("  Fail: %%cr4.de expected to be clear\n");
 
    check_init_dr(0, 0, read_dr0());
    check_init_dr(1, 0, read_dr1());
    check_init_dr(2, 0, read_dr2());
    check_init_dr(3, 0, read_dr3());
    check_init_dr(6, X86_DR6_DEFAULT, read_dr6());
    check_init_dr(7, X86_DR7_DEFAULT, read_dr7());
 
    check_init_msr("MSR_DEBUGCTL", 0, rdmsr(MSR_DEBUGCTL));
 
    if ( cpu_has_dbext )
    {
        check_init_msr("MSR_DR0_ADDR_MASK", 0, rdmsr(MSR_DR0_ADDR_MASK));
        check_init_msr("MSR_DR1_ADDR_MASK", 0, rdmsr(MSR_DR1_ADDR_MASK));
        check_init_msr("MSR_DR2_ADDR_MASK", 0, rdmsr(MSR_DR2_ADDR_MASK));
        check_init_msr("MSR_DR3_ADDR_MASK", 0, rdmsr(MSR_DR3_ADDR_MASK));
    }
}
 
/*
 * Attempt to detect a failure to latch %dr7.  A full vcpu context switch, or
 * a second write to %dr7 will latch the correct value even in the presence of
 * the bug.
 */
static void test_pv_dr7_latch(void)
{
    unsigned int dummy, i;
    unsigned long dr7;
 
    printk("Test PV %%dr7 latch\n");
 
    /* Reset any latched %dr7 content. */
    write_dr7(0);
    write_dr7(0);
 
    /* Point %dr0 at dummy, %dr7 set with %dr0 enabled. */
    write_dr0(_u(&dummy));
    dr7 = X86_DR7_GE | DR7_SYM(0, G, RW, 32);
 
    /*
     * We can race with the Xen scheduler, which may mask the latching bug.
     * Repeat 10 times, or until we positively see buggy behaviour.
     */
    for ( i = 0; i < 10; ++i )
    {
        exinfo_t fault = 0;
 
        asm volatile ("mov %[dr7], %%dr7;"
                      "movl $0, %[ptr]; 1:"
                      _ASM_EXTABLE_HANDLER(1b, 1b, %P[rec])
                      : "+a" (fault),
                        [ptr] "=m" (dummy)
                      : [dr7] "r" (dr7), [rec] "p" (ex_record_fault_eax));
 
        /* Reset any latched %dr7 content. */
        write_dr7(0);
        write_dr7(0);
 
        if ( fault == 0 )
        {
            xtf_failure("  Fail: Single write to %%dr7 failed to latch\n");
            break;
        }
        else if ( fault != EXINFO_SYM(DB, 0) )
        {
            xtf_error("  Error: Unexpected fault %#x, %pe\n",
                      fault, _p(fault));
            break;
        }
    }
 
    /* Reset other state. */
    write_dr0(0);
    write_dr6(X86_DR6_DEFAULT);
}
 
/*
 * Detect both bugs with shadow IO breakpoint state handling.
 */
static void test_pv_dr7_io_breakpoints(void)
{
    unsigned long io0, io1, dr7, cr4 = read_cr4();
 
    printk("Test PV %%dr7 IO breakpoints\n");
 
    if ( !(cr4 & X86_CR4_DE) )
        write_cr4(cr4 | X86_CR4_DE);
 
    /* Active IO breakpoint in %dr0. */
    io0 = DR7_SYM(0, G, IO, 32) | X86_DR7_GE | X86_DR7_DEFAULT;
    write_dr7(io0);
 
    if ( (dr7 = read_dr7()) != io0 )
        xtf_failure("  Fail: dr7 %#lx != io0 %#lx\n",
                    dr7, io0);
 
    /* Inactive IO breakpoint in %dr1. */
    io1 = DR7_SYM(1, G, IO, 32) | X86_DR7_DEFAULT;
    write_dr7(io1);
 
    /* Bug 1.  Old %dr0 configuration still visible in %dr7. */
    if ( (dr7 = read_dr7()) != io1 )
        xtf_failure("  Fail: dr7 %#lx != io1 %#lx\n",
                    dr7, io1);
 
    /* Reload active configuration. */
    write_dr7(io0);
 
    /* Clear %cr4.de, after which IO breakpoints are invalid. */
    write_cr4(cr4);
 
    /* Attempt to reload an IO breakpoint in %dr0, which should fail ... */
    exinfo_t fault = 0;
    asm volatile ("1: mov %[val], %%dr7; 2:"
                  _ASM_EXTABLE_HANDLER(1b, 2b, %P[rec])
                  : "+a" (fault)
                  : [val] "r" (io0),
                    [rec] "p" (ex_record_fault_eax));
 
    if ( fault != EXINFO_SYM(GP, 0) )
        xtf_error("Error: Unexpected fault %pe\n", _p(fault));
 
    /* Bug 2.  ... but may drop the existing %dr7 configuration. */
    if ( (dr7 = read_dr7()) != io0 )
        xtf_failure("  Fail: dr7 %#lx != io0 %#lx\n",
                    dr7, io0);
}
 
void test_main(void)
{
    test_initial_debug_state();
 
    if ( IS_DEFINED(CONFIG_PV) )
    {
        test_pv_dr7_latch();
        test_pv_dr7_io_breakpoints();
    }
 
    xtf_success(NULL);
}
 
/*
 * Local variables:
 * mode: C
 * c-file-style: "BSD"
 * c-basic-offset: 4
 * tab-width: 4
 * indent-tabs-mode: nil
 * End:
 */