1*053f45beSAndroid Build Coastguard Worker // SPDX-License-Identifier: GPL-2.0-only
2*053f45beSAndroid Build Coastguard Worker /*
3*053f45beSAndroid Build Coastguard Worker * Stress userfaultfd syscall.
4*053f45beSAndroid Build Coastguard Worker *
5*053f45beSAndroid Build Coastguard Worker * Copyright (C) 2015 Red Hat, Inc.
6*053f45beSAndroid Build Coastguard Worker *
7*053f45beSAndroid Build Coastguard Worker * This test allocates two virtual areas and bounces the physical
8*053f45beSAndroid Build Coastguard Worker * memory across the two virtual areas (from area_src to area_dst)
9*053f45beSAndroid Build Coastguard Worker * using userfaultfd.
10*053f45beSAndroid Build Coastguard Worker *
11*053f45beSAndroid Build Coastguard Worker * There are three threads running per CPU:
12*053f45beSAndroid Build Coastguard Worker *
13*053f45beSAndroid Build Coastguard Worker * 1) one per-CPU thread takes a per-page pthread_mutex in a random
14*053f45beSAndroid Build Coastguard Worker * page of the area_dst (while the physical page may still be in
15*053f45beSAndroid Build Coastguard Worker * area_src), and increments a per-page counter in the same page,
16*053f45beSAndroid Build Coastguard Worker * and checks its value against a verification region.
17*053f45beSAndroid Build Coastguard Worker *
18*053f45beSAndroid Build Coastguard Worker * 2) another per-CPU thread handles the userfaults generated by
19*053f45beSAndroid Build Coastguard Worker * thread 1 above. userfaultfd blocking reads or poll() modes are
20*053f45beSAndroid Build Coastguard Worker * exercised interleaved.
21*053f45beSAndroid Build Coastguard Worker *
22*053f45beSAndroid Build Coastguard Worker * 3) one last per-CPU thread transfers the memory in the background
23*053f45beSAndroid Build Coastguard Worker * at maximum bandwidth (if not already transferred by thread
24*053f45beSAndroid Build Coastguard Worker * 2). Each cpu thread takes cares of transferring a portion of the
25*053f45beSAndroid Build Coastguard Worker * area.
26*053f45beSAndroid Build Coastguard Worker *
27*053f45beSAndroid Build Coastguard Worker * When all threads of type 3 completed the transfer, one bounce is
28*053f45beSAndroid Build Coastguard Worker * complete. area_src and area_dst are then swapped. All threads are
29*053f45beSAndroid Build Coastguard Worker * respawned and so the bounce is immediately restarted in the
30*053f45beSAndroid Build Coastguard Worker * opposite direction.
31*053f45beSAndroid Build Coastguard Worker *
32*053f45beSAndroid Build Coastguard Worker * per-CPU threads 1 by triggering userfaults inside
33*053f45beSAndroid Build Coastguard Worker * pthread_mutex_lock will also verify the atomicity of the memory
34*053f45beSAndroid Build Coastguard Worker * transfer (UFFDIO_COPY).
35*053f45beSAndroid Build Coastguard Worker */
36*053f45beSAndroid Build Coastguard Worker
37*053f45beSAndroid Build Coastguard Worker #define _GNU_SOURCE
38*053f45beSAndroid Build Coastguard Worker #include <stdio.h>
39*053f45beSAndroid Build Coastguard Worker #include <errno.h>
40*053f45beSAndroid Build Coastguard Worker #include <unistd.h>
41*053f45beSAndroid Build Coastguard Worker #include <stdlib.h>
42*053f45beSAndroid Build Coastguard Worker #include <sys/types.h>
43*053f45beSAndroid Build Coastguard Worker #include <sys/stat.h>
44*053f45beSAndroid Build Coastguard Worker #include <fcntl.h>
45*053f45beSAndroid Build Coastguard Worker #include <time.h>
46*053f45beSAndroid Build Coastguard Worker #include <signal.h>
47*053f45beSAndroid Build Coastguard Worker #include <poll.h>
48*053f45beSAndroid Build Coastguard Worker #include <string.h>
49*053f45beSAndroid Build Coastguard Worker #include <linux/mman.h>
50*053f45beSAndroid Build Coastguard Worker #include <sys/mman.h>
51*053f45beSAndroid Build Coastguard Worker #include <sys/syscall.h>
52*053f45beSAndroid Build Coastguard Worker #include <sys/ioctl.h>
53*053f45beSAndroid Build Coastguard Worker #include <sys/wait.h>
54*053f45beSAndroid Build Coastguard Worker #include <pthread.h>
55*053f45beSAndroid Build Coastguard Worker #include <linux/userfaultfd.h>
56*053f45beSAndroid Build Coastguard Worker #include <setjmp.h>
57*053f45beSAndroid Build Coastguard Worker #include <stdbool.h>
58*053f45beSAndroid Build Coastguard Worker #include <assert.h>
59*053f45beSAndroid Build Coastguard Worker #include <inttypes.h>
60*053f45beSAndroid Build Coastguard Worker #include <stdint.h>
61*053f45beSAndroid Build Coastguard Worker #include <sys/random.h>
62*053f45beSAndroid Build Coastguard Worker #include <linux/version.h>
63*053f45beSAndroid Build Coastguard Worker #include <sys/utsname.h>
64*053f45beSAndroid Build Coastguard Worker
65*053f45beSAndroid Build Coastguard Worker #include "../kselftest.h"
66*053f45beSAndroid Build Coastguard Worker #include "vm_util.h"
67*053f45beSAndroid Build Coastguard Worker
68*053f45beSAndroid Build Coastguard Worker #ifdef __NR_userfaultfd
69*053f45beSAndroid Build Coastguard Worker
70*053f45beSAndroid Build Coastguard Worker static unsigned long nr_cpus, nr_pages, nr_pages_per_cpu, page_size, hpage_size;
71*053f45beSAndroid Build Coastguard Worker
72*053f45beSAndroid Build Coastguard Worker #define BOUNCE_RANDOM (1<<0)
73*053f45beSAndroid Build Coastguard Worker #define BOUNCE_RACINGFAULTS (1<<1)
74*053f45beSAndroid Build Coastguard Worker #define BOUNCE_VERIFY (1<<2)
75*053f45beSAndroid Build Coastguard Worker #define BOUNCE_POLL (1<<3)
76*053f45beSAndroid Build Coastguard Worker static int bounces;
77*053f45beSAndroid Build Coastguard Worker
78*053f45beSAndroid Build Coastguard Worker #define TEST_ANON 1
79*053f45beSAndroid Build Coastguard Worker #define TEST_HUGETLB 2
80*053f45beSAndroid Build Coastguard Worker #define TEST_SHMEM 3
81*053f45beSAndroid Build Coastguard Worker static int test_type;
82*053f45beSAndroid Build Coastguard Worker
83*053f45beSAndroid Build Coastguard Worker #define UFFD_FLAGS (O_CLOEXEC | O_NONBLOCK | UFFD_USER_MODE_ONLY)
84*053f45beSAndroid Build Coastguard Worker
85*053f45beSAndroid Build Coastguard Worker #define BASE_PMD_ADDR ((void *)(1UL << 30))
86*053f45beSAndroid Build Coastguard Worker
87*053f45beSAndroid Build Coastguard Worker /* test using /dev/userfaultfd, instead of userfaultfd(2) */
88*053f45beSAndroid Build Coastguard Worker static bool test_dev_userfaultfd;
89*053f45beSAndroid Build Coastguard Worker
90*053f45beSAndroid Build Coastguard Worker /* exercise the test_uffdio_*_eexist every ALARM_INTERVAL_SECS */
91*053f45beSAndroid Build Coastguard Worker #define ALARM_INTERVAL_SECS 10
92*053f45beSAndroid Build Coastguard Worker static volatile bool test_uffdio_copy_eexist = true;
93*053f45beSAndroid Build Coastguard Worker static volatile bool test_uffdio_zeropage_eexist = true;
94*053f45beSAndroid Build Coastguard Worker /* Whether to test uffd write-protection */
95*053f45beSAndroid Build Coastguard Worker static bool test_uffdio_wp = false;
96*053f45beSAndroid Build Coastguard Worker /* Whether to test uffd minor faults */
97*053f45beSAndroid Build Coastguard Worker static bool test_uffdio_minor = false;
98*053f45beSAndroid Build Coastguard Worker
99*053f45beSAndroid Build Coastguard Worker static bool map_shared;
100*053f45beSAndroid Build Coastguard Worker static int shm_fd;
101*053f45beSAndroid Build Coastguard Worker static int huge_fd;
102*053f45beSAndroid Build Coastguard Worker static unsigned long long *count_verify;
103*053f45beSAndroid Build Coastguard Worker static int uffd = -1;
104*053f45beSAndroid Build Coastguard Worker static int uffd_flags, finished, *pipefd;
105*053f45beSAndroid Build Coastguard Worker static volatile bool ready_for_fork;
106*053f45beSAndroid Build Coastguard Worker static char *area_src, *area_src_alias, *area_dst, *area_dst_alias, *area_remap;
107*053f45beSAndroid Build Coastguard Worker static char *zeropage;
108*053f45beSAndroid Build Coastguard Worker pthread_attr_t attr;
109*053f45beSAndroid Build Coastguard Worker pthread_key_t long_jmp_key;
110*053f45beSAndroid Build Coastguard Worker static bool test_collapse;
111*053f45beSAndroid Build Coastguard Worker
112*053f45beSAndroid Build Coastguard Worker /* Userfaultfd test statistics */
113*053f45beSAndroid Build Coastguard Worker struct uffd_stats {
114*053f45beSAndroid Build Coastguard Worker int cpu;
115*053f45beSAndroid Build Coastguard Worker unsigned long missing_faults;
116*053f45beSAndroid Build Coastguard Worker unsigned long wp_faults;
117*053f45beSAndroid Build Coastguard Worker unsigned long minor_faults;
118*053f45beSAndroid Build Coastguard Worker };
119*053f45beSAndroid Build Coastguard Worker
120*053f45beSAndroid Build Coastguard Worker /* pthread_mutex_t starts at page offset 0 */
121*053f45beSAndroid Build Coastguard Worker #define area_mutex(___area, ___nr) \
122*053f45beSAndroid Build Coastguard Worker ((pthread_mutex_t *) ((___area) + (___nr)*page_size))
123*053f45beSAndroid Build Coastguard Worker /*
124*053f45beSAndroid Build Coastguard Worker * count is placed in the page after pthread_mutex_t naturally aligned
125*053f45beSAndroid Build Coastguard Worker * to avoid non alignment faults on non-x86 archs.
126*053f45beSAndroid Build Coastguard Worker */
127*053f45beSAndroid Build Coastguard Worker #define area_count(___area, ___nr) \
128*053f45beSAndroid Build Coastguard Worker ((volatile unsigned long long *) ((unsigned long) \
129*053f45beSAndroid Build Coastguard Worker ((___area) + (___nr)*page_size + \
130*053f45beSAndroid Build Coastguard Worker sizeof(pthread_mutex_t) + \
131*053f45beSAndroid Build Coastguard Worker sizeof(unsigned long long) - 1) & \
132*053f45beSAndroid Build Coastguard Worker ~(unsigned long)(sizeof(unsigned long long) \
133*053f45beSAndroid Build Coastguard Worker - 1)))
134*053f45beSAndroid Build Coastguard Worker
135*053f45beSAndroid Build Coastguard Worker #define swap(a, b) \
136*053f45beSAndroid Build Coastguard Worker do { typeof(a) __tmp = (a); (a) = (b); (b) = __tmp; } while (0)
137*053f45beSAndroid Build Coastguard Worker
138*053f45beSAndroid Build Coastguard Worker #define factor_of_2(x) ((x) ^ ((x) & ((x) - 1)))
139*053f45beSAndroid Build Coastguard Worker
140*053f45beSAndroid Build Coastguard Worker const char *examples =
141*053f45beSAndroid Build Coastguard Worker "# Run anonymous memory test on 100MiB region with 99999 bounces:\n"
142*053f45beSAndroid Build Coastguard Worker "./userfaultfd anon 100 99999\n\n"
143*053f45beSAndroid Build Coastguard Worker "# Run the same anonymous memory test, but using /dev/userfaultfd:\n"
144*053f45beSAndroid Build Coastguard Worker "./userfaultfd anon:dev 100 99999\n\n"
145*053f45beSAndroid Build Coastguard Worker "# Run share memory test on 1GiB region with 99 bounces:\n"
146*053f45beSAndroid Build Coastguard Worker "./userfaultfd shmem 1000 99\n\n"
147*053f45beSAndroid Build Coastguard Worker "# Run hugetlb memory test on 256MiB region with 50 bounces:\n"
148*053f45beSAndroid Build Coastguard Worker "./userfaultfd hugetlb 256 50\n\n"
149*053f45beSAndroid Build Coastguard Worker "# Run the same hugetlb test but using shared file:\n"
150*053f45beSAndroid Build Coastguard Worker "./userfaultfd hugetlb_shared 256 50 /dev/hugepages/hugefile\n\n"
151*053f45beSAndroid Build Coastguard Worker "# 10MiB-~6GiB 999 bounces anonymous test, "
152*053f45beSAndroid Build Coastguard Worker "continue forever unless an error triggers\n"
153*053f45beSAndroid Build Coastguard Worker "while ./userfaultfd anon $[RANDOM % 6000 + 10] 999; do true; done\n\n";
154*053f45beSAndroid Build Coastguard Worker
usage(void)155*053f45beSAndroid Build Coastguard Worker static void usage(void)
156*053f45beSAndroid Build Coastguard Worker {
157*053f45beSAndroid Build Coastguard Worker fprintf(stderr, "\nUsage: ./userfaultfd <test type> <MiB> <bounces> "
158*053f45beSAndroid Build Coastguard Worker "[hugetlbfs_file]\n\n");
159*053f45beSAndroid Build Coastguard Worker fprintf(stderr, "Supported <test type>: anon, hugetlb, "
160*053f45beSAndroid Build Coastguard Worker "hugetlb_shared, shmem\n\n");
161*053f45beSAndroid Build Coastguard Worker fprintf(stderr, "'Test mods' can be joined to the test type string with a ':'. "
162*053f45beSAndroid Build Coastguard Worker "Supported mods:\n");
163*053f45beSAndroid Build Coastguard Worker fprintf(stderr, "\tsyscall - Use userfaultfd(2) (default)\n");
164*053f45beSAndroid Build Coastguard Worker fprintf(stderr, "\tdev - Use /dev/userfaultfd instead of userfaultfd(2)\n");
165*053f45beSAndroid Build Coastguard Worker fprintf(stderr, "\tcollapse - Test MADV_COLLAPSE of UFFDIO_REGISTER_MODE_MINOR\n"
166*053f45beSAndroid Build Coastguard Worker "memory\n");
167*053f45beSAndroid Build Coastguard Worker fprintf(stderr, "\nExample test mod usage:\n");
168*053f45beSAndroid Build Coastguard Worker fprintf(stderr, "# Run anonymous memory test with /dev/userfaultfd:\n");
169*053f45beSAndroid Build Coastguard Worker fprintf(stderr, "./userfaultfd anon:dev 100 99999\n\n");
170*053f45beSAndroid Build Coastguard Worker
171*053f45beSAndroid Build Coastguard Worker fprintf(stderr, "Examples:\n\n");
172*053f45beSAndroid Build Coastguard Worker fprintf(stderr, "%s", examples);
173*053f45beSAndroid Build Coastguard Worker exit(1);
174*053f45beSAndroid Build Coastguard Worker }
175*053f45beSAndroid Build Coastguard Worker
176*053f45beSAndroid Build Coastguard Worker #define _err(fmt, ...) \
177*053f45beSAndroid Build Coastguard Worker do { \
178*053f45beSAndroid Build Coastguard Worker int ret = errno; \
179*053f45beSAndroid Build Coastguard Worker fprintf(stderr, "ERROR: " fmt, ##__VA_ARGS__); \
180*053f45beSAndroid Build Coastguard Worker fprintf(stderr, " (errno=%d, line=%d)\n", \
181*053f45beSAndroid Build Coastguard Worker ret, __LINE__); \
182*053f45beSAndroid Build Coastguard Worker } while (0)
183*053f45beSAndroid Build Coastguard Worker
184*053f45beSAndroid Build Coastguard Worker #define errexit(exitcode, fmt, ...) \
185*053f45beSAndroid Build Coastguard Worker do { \
186*053f45beSAndroid Build Coastguard Worker _err(fmt, ##__VA_ARGS__); \
187*053f45beSAndroid Build Coastguard Worker exit(exitcode); \
188*053f45beSAndroid Build Coastguard Worker } while (0)
189*053f45beSAndroid Build Coastguard Worker
190*053f45beSAndroid Build Coastguard Worker #define err(fmt, ...) errexit(1, fmt, ##__VA_ARGS__)
191*053f45beSAndroid Build Coastguard Worker
uffd_stats_reset(struct uffd_stats * uffd_stats,unsigned long n_cpus)192*053f45beSAndroid Build Coastguard Worker static void uffd_stats_reset(struct uffd_stats *uffd_stats,
193*053f45beSAndroid Build Coastguard Worker unsigned long n_cpus)
194*053f45beSAndroid Build Coastguard Worker {
195*053f45beSAndroid Build Coastguard Worker int i;
196*053f45beSAndroid Build Coastguard Worker
197*053f45beSAndroid Build Coastguard Worker for (i = 0; i < n_cpus; i++) {
198*053f45beSAndroid Build Coastguard Worker uffd_stats[i].cpu = i;
199*053f45beSAndroid Build Coastguard Worker uffd_stats[i].missing_faults = 0;
200*053f45beSAndroid Build Coastguard Worker uffd_stats[i].wp_faults = 0;
201*053f45beSAndroid Build Coastguard Worker uffd_stats[i].minor_faults = 0;
202*053f45beSAndroid Build Coastguard Worker }
203*053f45beSAndroid Build Coastguard Worker }
204*053f45beSAndroid Build Coastguard Worker
uffd_stats_report(struct uffd_stats * stats,int n_cpus)205*053f45beSAndroid Build Coastguard Worker static void uffd_stats_report(struct uffd_stats *stats, int n_cpus)
206*053f45beSAndroid Build Coastguard Worker {
207*053f45beSAndroid Build Coastguard Worker int i;
208*053f45beSAndroid Build Coastguard Worker unsigned long long miss_total = 0, wp_total = 0, minor_total = 0;
209*053f45beSAndroid Build Coastguard Worker
210*053f45beSAndroid Build Coastguard Worker for (i = 0; i < n_cpus; i++) {
211*053f45beSAndroid Build Coastguard Worker miss_total += stats[i].missing_faults;
212*053f45beSAndroid Build Coastguard Worker wp_total += stats[i].wp_faults;
213*053f45beSAndroid Build Coastguard Worker minor_total += stats[i].minor_faults;
214*053f45beSAndroid Build Coastguard Worker }
215*053f45beSAndroid Build Coastguard Worker
216*053f45beSAndroid Build Coastguard Worker printf("userfaults: ");
217*053f45beSAndroid Build Coastguard Worker if (miss_total) {
218*053f45beSAndroid Build Coastguard Worker printf("%llu missing (", miss_total);
219*053f45beSAndroid Build Coastguard Worker for (i = 0; i < n_cpus; i++)
220*053f45beSAndroid Build Coastguard Worker printf("%lu+", stats[i].missing_faults);
221*053f45beSAndroid Build Coastguard Worker printf("\b) ");
222*053f45beSAndroid Build Coastguard Worker }
223*053f45beSAndroid Build Coastguard Worker if (wp_total) {
224*053f45beSAndroid Build Coastguard Worker printf("%llu wp (", wp_total);
225*053f45beSAndroid Build Coastguard Worker for (i = 0; i < n_cpus; i++)
226*053f45beSAndroid Build Coastguard Worker printf("%lu+", stats[i].wp_faults);
227*053f45beSAndroid Build Coastguard Worker printf("\b) ");
228*053f45beSAndroid Build Coastguard Worker }
229*053f45beSAndroid Build Coastguard Worker if (minor_total) {
230*053f45beSAndroid Build Coastguard Worker printf("%llu minor (", minor_total);
231*053f45beSAndroid Build Coastguard Worker for (i = 0; i < n_cpus; i++)
232*053f45beSAndroid Build Coastguard Worker printf("%lu+", stats[i].minor_faults);
233*053f45beSAndroid Build Coastguard Worker printf("\b)");
234*053f45beSAndroid Build Coastguard Worker }
235*053f45beSAndroid Build Coastguard Worker printf("\n");
236*053f45beSAndroid Build Coastguard Worker }
237*053f45beSAndroid Build Coastguard Worker
anon_release_pages(char * rel_area)238*053f45beSAndroid Build Coastguard Worker static void anon_release_pages(char *rel_area)
239*053f45beSAndroid Build Coastguard Worker {
240*053f45beSAndroid Build Coastguard Worker if (madvise(rel_area, nr_pages * page_size, MADV_DONTNEED))
241*053f45beSAndroid Build Coastguard Worker err("madvise(MADV_DONTNEED) failed");
242*053f45beSAndroid Build Coastguard Worker }
243*053f45beSAndroid Build Coastguard Worker
anon_allocate_area(void ** alloc_area,bool is_src)244*053f45beSAndroid Build Coastguard Worker static void anon_allocate_area(void **alloc_area, bool is_src)
245*053f45beSAndroid Build Coastguard Worker {
246*053f45beSAndroid Build Coastguard Worker *alloc_area = mmap(NULL, nr_pages * page_size, PROT_READ | PROT_WRITE,
247*053f45beSAndroid Build Coastguard Worker MAP_ANONYMOUS | MAP_PRIVATE, -1, 0);
248*053f45beSAndroid Build Coastguard Worker }
249*053f45beSAndroid Build Coastguard Worker
noop_alias_mapping(__u64 * start,size_t len,unsigned long offset)250*053f45beSAndroid Build Coastguard Worker static void noop_alias_mapping(__u64 *start, size_t len, unsigned long offset)
251*053f45beSAndroid Build Coastguard Worker {
252*053f45beSAndroid Build Coastguard Worker }
253*053f45beSAndroid Build Coastguard Worker
hugetlb_release_pages(char * rel_area)254*053f45beSAndroid Build Coastguard Worker static void hugetlb_release_pages(char *rel_area)
255*053f45beSAndroid Build Coastguard Worker {
256*053f45beSAndroid Build Coastguard Worker if (!map_shared) {
257*053f45beSAndroid Build Coastguard Worker if (madvise(rel_area, nr_pages * page_size, MADV_DONTNEED))
258*053f45beSAndroid Build Coastguard Worker err("madvise(MADV_DONTNEED) failed");
259*053f45beSAndroid Build Coastguard Worker } else {
260*053f45beSAndroid Build Coastguard Worker if (madvise(rel_area, nr_pages * page_size, MADV_REMOVE))
261*053f45beSAndroid Build Coastguard Worker err("madvise(MADV_REMOVE) failed");
262*053f45beSAndroid Build Coastguard Worker }
263*053f45beSAndroid Build Coastguard Worker }
264*053f45beSAndroid Build Coastguard Worker
hugetlb_allocate_area(void ** alloc_area,bool is_src)265*053f45beSAndroid Build Coastguard Worker static void hugetlb_allocate_area(void **alloc_area, bool is_src)
266*053f45beSAndroid Build Coastguard Worker {
267*053f45beSAndroid Build Coastguard Worker void *area_alias = NULL;
268*053f45beSAndroid Build Coastguard Worker char **alloc_area_alias;
269*053f45beSAndroid Build Coastguard Worker
270*053f45beSAndroid Build Coastguard Worker if (!map_shared)
271*053f45beSAndroid Build Coastguard Worker *alloc_area = mmap(NULL,
272*053f45beSAndroid Build Coastguard Worker nr_pages * page_size,
273*053f45beSAndroid Build Coastguard Worker PROT_READ | PROT_WRITE,
274*053f45beSAndroid Build Coastguard Worker MAP_PRIVATE | MAP_ANONYMOUS | MAP_HUGETLB |
275*053f45beSAndroid Build Coastguard Worker (is_src ? 0 : MAP_NORESERVE),
276*053f45beSAndroid Build Coastguard Worker -1,
277*053f45beSAndroid Build Coastguard Worker 0);
278*053f45beSAndroid Build Coastguard Worker else
279*053f45beSAndroid Build Coastguard Worker *alloc_area = mmap(NULL,
280*053f45beSAndroid Build Coastguard Worker nr_pages * page_size,
281*053f45beSAndroid Build Coastguard Worker PROT_READ | PROT_WRITE,
282*053f45beSAndroid Build Coastguard Worker MAP_SHARED |
283*053f45beSAndroid Build Coastguard Worker (is_src ? 0 : MAP_NORESERVE),
284*053f45beSAndroid Build Coastguard Worker huge_fd,
285*053f45beSAndroid Build Coastguard Worker is_src ? 0 : nr_pages * page_size);
286*053f45beSAndroid Build Coastguard Worker if (*alloc_area == MAP_FAILED)
287*053f45beSAndroid Build Coastguard Worker err("mmap of hugetlbfs file failed");
288*053f45beSAndroid Build Coastguard Worker
289*053f45beSAndroid Build Coastguard Worker if (map_shared) {
290*053f45beSAndroid Build Coastguard Worker area_alias = mmap(NULL,
291*053f45beSAndroid Build Coastguard Worker nr_pages * page_size,
292*053f45beSAndroid Build Coastguard Worker PROT_READ | PROT_WRITE,
293*053f45beSAndroid Build Coastguard Worker MAP_SHARED,
294*053f45beSAndroid Build Coastguard Worker huge_fd,
295*053f45beSAndroid Build Coastguard Worker is_src ? 0 : nr_pages * page_size);
296*053f45beSAndroid Build Coastguard Worker if (area_alias == MAP_FAILED)
297*053f45beSAndroid Build Coastguard Worker err("mmap of hugetlb file alias failed");
298*053f45beSAndroid Build Coastguard Worker }
299*053f45beSAndroid Build Coastguard Worker
300*053f45beSAndroid Build Coastguard Worker if (is_src) {
301*053f45beSAndroid Build Coastguard Worker alloc_area_alias = &area_src_alias;
302*053f45beSAndroid Build Coastguard Worker } else {
303*053f45beSAndroid Build Coastguard Worker alloc_area_alias = &area_dst_alias;
304*053f45beSAndroid Build Coastguard Worker }
305*053f45beSAndroid Build Coastguard Worker if (area_alias)
306*053f45beSAndroid Build Coastguard Worker *alloc_area_alias = area_alias;
307*053f45beSAndroid Build Coastguard Worker }
308*053f45beSAndroid Build Coastguard Worker
hugetlb_alias_mapping(__u64 * start,size_t len,unsigned long offset)309*053f45beSAndroid Build Coastguard Worker static void hugetlb_alias_mapping(__u64 *start, size_t len, unsigned long offset)
310*053f45beSAndroid Build Coastguard Worker {
311*053f45beSAndroid Build Coastguard Worker if (!map_shared)
312*053f45beSAndroid Build Coastguard Worker return;
313*053f45beSAndroid Build Coastguard Worker
314*053f45beSAndroid Build Coastguard Worker *start = (unsigned long) area_dst_alias + offset;
315*053f45beSAndroid Build Coastguard Worker }
316*053f45beSAndroid Build Coastguard Worker
shmem_release_pages(char * rel_area)317*053f45beSAndroid Build Coastguard Worker static void shmem_release_pages(char *rel_area)
318*053f45beSAndroid Build Coastguard Worker {
319*053f45beSAndroid Build Coastguard Worker if (madvise(rel_area, nr_pages * page_size, MADV_REMOVE))
320*053f45beSAndroid Build Coastguard Worker err("madvise(MADV_REMOVE) failed");
321*053f45beSAndroid Build Coastguard Worker }
322*053f45beSAndroid Build Coastguard Worker
shmem_allocate_area(void ** alloc_area,bool is_src)323*053f45beSAndroid Build Coastguard Worker static void shmem_allocate_area(void **alloc_area, bool is_src)
324*053f45beSAndroid Build Coastguard Worker {
325*053f45beSAndroid Build Coastguard Worker void *area_alias = NULL;
326*053f45beSAndroid Build Coastguard Worker size_t bytes = nr_pages * page_size;
327*053f45beSAndroid Build Coastguard Worker unsigned long offset = is_src ? 0 : bytes;
328*053f45beSAndroid Build Coastguard Worker char *p = NULL, *p_alias = NULL;
329*053f45beSAndroid Build Coastguard Worker
330*053f45beSAndroid Build Coastguard Worker if (test_collapse) {
331*053f45beSAndroid Build Coastguard Worker p = BASE_PMD_ADDR;
332*053f45beSAndroid Build Coastguard Worker if (!is_src)
333*053f45beSAndroid Build Coastguard Worker /* src map + alias + interleaved hpages */
334*053f45beSAndroid Build Coastguard Worker p += 2 * (bytes + hpage_size);
335*053f45beSAndroid Build Coastguard Worker p_alias = p;
336*053f45beSAndroid Build Coastguard Worker p_alias += bytes;
337*053f45beSAndroid Build Coastguard Worker p_alias += hpage_size; /* Prevent src/dst VMA merge */
338*053f45beSAndroid Build Coastguard Worker }
339*053f45beSAndroid Build Coastguard Worker
340*053f45beSAndroid Build Coastguard Worker *alloc_area = mmap(p, bytes, PROT_READ | PROT_WRITE, MAP_SHARED,
341*053f45beSAndroid Build Coastguard Worker shm_fd, offset);
342*053f45beSAndroid Build Coastguard Worker if (*alloc_area == MAP_FAILED)
343*053f45beSAndroid Build Coastguard Worker err("mmap of memfd failed");
344*053f45beSAndroid Build Coastguard Worker if (test_collapse && *alloc_area != p)
345*053f45beSAndroid Build Coastguard Worker err("mmap of memfd failed at %p", p);
346*053f45beSAndroid Build Coastguard Worker
347*053f45beSAndroid Build Coastguard Worker area_alias = mmap(p_alias, bytes, PROT_READ | PROT_WRITE, MAP_SHARED,
348*053f45beSAndroid Build Coastguard Worker shm_fd, offset);
349*053f45beSAndroid Build Coastguard Worker if (area_alias == MAP_FAILED)
350*053f45beSAndroid Build Coastguard Worker err("mmap of memfd alias failed");
351*053f45beSAndroid Build Coastguard Worker if (test_collapse && area_alias != p_alias)
352*053f45beSAndroid Build Coastguard Worker err("mmap of anonymous memory failed at %p", p_alias);
353*053f45beSAndroid Build Coastguard Worker
354*053f45beSAndroid Build Coastguard Worker if (is_src)
355*053f45beSAndroid Build Coastguard Worker area_src_alias = area_alias;
356*053f45beSAndroid Build Coastguard Worker else
357*053f45beSAndroid Build Coastguard Worker area_dst_alias = area_alias;
358*053f45beSAndroid Build Coastguard Worker }
359*053f45beSAndroid Build Coastguard Worker
shmem_alias_mapping(__u64 * start,size_t len,unsigned long offset)360*053f45beSAndroid Build Coastguard Worker static void shmem_alias_mapping(__u64 *start, size_t len, unsigned long offset)
361*053f45beSAndroid Build Coastguard Worker {
362*053f45beSAndroid Build Coastguard Worker *start = (unsigned long)area_dst_alias + offset;
363*053f45beSAndroid Build Coastguard Worker }
364*053f45beSAndroid Build Coastguard Worker
shmem_check_pmd_mapping(void * p,int expect_nr_hpages)365*053f45beSAndroid Build Coastguard Worker static void shmem_check_pmd_mapping(void *p, int expect_nr_hpages)
366*053f45beSAndroid Build Coastguard Worker {
367*053f45beSAndroid Build Coastguard Worker if (!check_huge_shmem(area_dst_alias, expect_nr_hpages, hpage_size))
368*053f45beSAndroid Build Coastguard Worker err("Did not find expected %d number of hugepages",
369*053f45beSAndroid Build Coastguard Worker expect_nr_hpages);
370*053f45beSAndroid Build Coastguard Worker }
371*053f45beSAndroid Build Coastguard Worker
372*053f45beSAndroid Build Coastguard Worker struct uffd_test_ops {
373*053f45beSAndroid Build Coastguard Worker void (*allocate_area)(void **alloc_area, bool is_src);
374*053f45beSAndroid Build Coastguard Worker void (*release_pages)(char *rel_area);
375*053f45beSAndroid Build Coastguard Worker void (*alias_mapping)(__u64 *start, size_t len, unsigned long offset);
376*053f45beSAndroid Build Coastguard Worker void (*check_pmd_mapping)(void *p, int expect_nr_hpages);
377*053f45beSAndroid Build Coastguard Worker };
378*053f45beSAndroid Build Coastguard Worker
379*053f45beSAndroid Build Coastguard Worker static struct uffd_test_ops anon_uffd_test_ops = {
380*053f45beSAndroid Build Coastguard Worker .allocate_area = anon_allocate_area,
381*053f45beSAndroid Build Coastguard Worker .release_pages = anon_release_pages,
382*053f45beSAndroid Build Coastguard Worker .alias_mapping = noop_alias_mapping,
383*053f45beSAndroid Build Coastguard Worker .check_pmd_mapping = NULL,
384*053f45beSAndroid Build Coastguard Worker };
385*053f45beSAndroid Build Coastguard Worker
386*053f45beSAndroid Build Coastguard Worker static struct uffd_test_ops shmem_uffd_test_ops = {
387*053f45beSAndroid Build Coastguard Worker .allocate_area = shmem_allocate_area,
388*053f45beSAndroid Build Coastguard Worker .release_pages = shmem_release_pages,
389*053f45beSAndroid Build Coastguard Worker .alias_mapping = shmem_alias_mapping,
390*053f45beSAndroid Build Coastguard Worker .check_pmd_mapping = shmem_check_pmd_mapping,
391*053f45beSAndroid Build Coastguard Worker };
392*053f45beSAndroid Build Coastguard Worker
393*053f45beSAndroid Build Coastguard Worker static struct uffd_test_ops hugetlb_uffd_test_ops = {
394*053f45beSAndroid Build Coastguard Worker .allocate_area = hugetlb_allocate_area,
395*053f45beSAndroid Build Coastguard Worker .release_pages = hugetlb_release_pages,
396*053f45beSAndroid Build Coastguard Worker .alias_mapping = hugetlb_alias_mapping,
397*053f45beSAndroid Build Coastguard Worker .check_pmd_mapping = NULL,
398*053f45beSAndroid Build Coastguard Worker };
399*053f45beSAndroid Build Coastguard Worker
400*053f45beSAndroid Build Coastguard Worker static struct uffd_test_ops *uffd_test_ops;
401*053f45beSAndroid Build Coastguard Worker
uffd_minor_feature(void)402*053f45beSAndroid Build Coastguard Worker static inline uint64_t uffd_minor_feature(void)
403*053f45beSAndroid Build Coastguard Worker {
404*053f45beSAndroid Build Coastguard Worker if (test_type == TEST_HUGETLB && map_shared)
405*053f45beSAndroid Build Coastguard Worker return UFFD_FEATURE_MINOR_HUGETLBFS;
406*053f45beSAndroid Build Coastguard Worker else if (test_type == TEST_SHMEM)
407*053f45beSAndroid Build Coastguard Worker return UFFD_FEATURE_MINOR_SHMEM;
408*053f45beSAndroid Build Coastguard Worker else
409*053f45beSAndroid Build Coastguard Worker return 0;
410*053f45beSAndroid Build Coastguard Worker }
411*053f45beSAndroid Build Coastguard Worker
412*053f45beSAndroid Build Coastguard Worker /* b/308714445
413*053f45beSAndroid Build Coastguard Worker * _UFFDIO_POISON unsupported in kernel <6.6
414*053f45beSAndroid Build Coastguard Worker * b/335674702
415*053f45beSAndroid Build Coastguard Worker * _UFFDIO_MOVE unupported in kernel <6.8
416*053f45beSAndroid Build Coastguard Worker */
get_kernel_version(void)417*053f45beSAndroid Build Coastguard Worker static uint32_t get_kernel_version(void)
418*053f45beSAndroid Build Coastguard Worker {
419*053f45beSAndroid Build Coastguard Worker uint32_t major, minor, patch;
420*053f45beSAndroid Build Coastguard Worker struct utsname info;
421*053f45beSAndroid Build Coastguard Worker
422*053f45beSAndroid Build Coastguard Worker uname(&info);
423*053f45beSAndroid Build Coastguard Worker if (sscanf(info.release, "%u.%u.%u", &major, &minor, &patch) != 3)
424*053f45beSAndroid Build Coastguard Worker return 0;
425*053f45beSAndroid Build Coastguard Worker return KERNEL_VERSION(major, minor, patch);
426*053f45beSAndroid Build Coastguard Worker }
427*053f45beSAndroid Build Coastguard Worker
get_expected_ioctls(uint64_t mode)428*053f45beSAndroid Build Coastguard Worker static uint64_t get_expected_ioctls(uint64_t mode)
429*053f45beSAndroid Build Coastguard Worker {
430*053f45beSAndroid Build Coastguard Worker uint64_t ioctls = UFFD_API_RANGE_IOCTLS;
431*053f45beSAndroid Build Coastguard Worker
432*053f45beSAndroid Build Coastguard Worker if (test_type == TEST_HUGETLB)
433*053f45beSAndroid Build Coastguard Worker ioctls &= ~(1 << _UFFDIO_ZEROPAGE);
434*053f45beSAndroid Build Coastguard Worker
435*053f45beSAndroid Build Coastguard Worker if (!((mode & UFFDIO_REGISTER_MODE_WP) && test_uffdio_wp))
436*053f45beSAndroid Build Coastguard Worker ioctls &= ~(1 << _UFFDIO_WRITEPROTECT);
437*053f45beSAndroid Build Coastguard Worker
438*053f45beSAndroid Build Coastguard Worker if (!((mode & UFFDIO_REGISTER_MODE_MINOR) && test_uffdio_minor))
439*053f45beSAndroid Build Coastguard Worker ioctls &= ~(1 << _UFFDIO_CONTINUE);
440*053f45beSAndroid Build Coastguard Worker
441*053f45beSAndroid Build Coastguard Worker static uint32_t kernel_version = 0;
442*053f45beSAndroid Build Coastguard Worker if (kernel_version == 0) {
443*053f45beSAndroid Build Coastguard Worker kernel_version = get_kernel_version();
444*053f45beSAndroid Build Coastguard Worker }
445*053f45beSAndroid Build Coastguard Worker if (kernel_version < KERNEL_VERSION(6, 6, 0)) {
446*053f45beSAndroid Build Coastguard Worker // UFFDIO_POISON not supported until kernel 6.6.
447*053f45beSAndroid Build Coastguard Worker ioctls &= ~(1 << _UFFDIO_POISON);
448*053f45beSAndroid Build Coastguard Worker }
449*053f45beSAndroid Build Coastguard Worker if (kernel_version < KERNEL_VERSION(6, 8, 0)) {
450*053f45beSAndroid Build Coastguard Worker // UFFDIO_MOVE not supported until kernel 6.8.
451*053f45beSAndroid Build Coastguard Worker ioctls &= ~(1 << _UFFDIO_MOVE);
452*053f45beSAndroid Build Coastguard Worker }
453*053f45beSAndroid Build Coastguard Worker
454*053f45beSAndroid Build Coastguard Worker return ioctls;
455*053f45beSAndroid Build Coastguard Worker }
456*053f45beSAndroid Build Coastguard Worker
assert_expected_ioctls_present(uint64_t mode,uint64_t ioctls)457*053f45beSAndroid Build Coastguard Worker static void assert_expected_ioctls_present(uint64_t mode, uint64_t ioctls)
458*053f45beSAndroid Build Coastguard Worker {
459*053f45beSAndroid Build Coastguard Worker uint64_t expected = get_expected_ioctls(mode);
460*053f45beSAndroid Build Coastguard Worker uint64_t actual = ioctls & expected;
461*053f45beSAndroid Build Coastguard Worker
462*053f45beSAndroid Build Coastguard Worker if (actual != expected) {
463*053f45beSAndroid Build Coastguard Worker err("missing ioctl(s): expected %"PRIx64" actual: %"PRIx64,
464*053f45beSAndroid Build Coastguard Worker expected, actual);
465*053f45beSAndroid Build Coastguard Worker }
466*053f45beSAndroid Build Coastguard Worker }
467*053f45beSAndroid Build Coastguard Worker
__userfaultfd_open_dev(void)468*053f45beSAndroid Build Coastguard Worker static int __userfaultfd_open_dev(void)
469*053f45beSAndroid Build Coastguard Worker {
470*053f45beSAndroid Build Coastguard Worker int fd, _uffd;
471*053f45beSAndroid Build Coastguard Worker
472*053f45beSAndroid Build Coastguard Worker fd = open("/dev/userfaultfd", O_RDWR | O_CLOEXEC);
473*053f45beSAndroid Build Coastguard Worker if (fd < 0)
474*053f45beSAndroid Build Coastguard Worker errexit(KSFT_SKIP, "opening /dev/userfaultfd failed");
475*053f45beSAndroid Build Coastguard Worker
476*053f45beSAndroid Build Coastguard Worker _uffd = ioctl(fd, USERFAULTFD_IOC_NEW, UFFD_FLAGS);
477*053f45beSAndroid Build Coastguard Worker if (_uffd < 0)
478*053f45beSAndroid Build Coastguard Worker errexit(errno == ENOTTY ? KSFT_SKIP : 1,
479*053f45beSAndroid Build Coastguard Worker "creating userfaultfd failed");
480*053f45beSAndroid Build Coastguard Worker close(fd);
481*053f45beSAndroid Build Coastguard Worker return _uffd;
482*053f45beSAndroid Build Coastguard Worker }
483*053f45beSAndroid Build Coastguard Worker
userfaultfd_open(uint64_t * features)484*053f45beSAndroid Build Coastguard Worker static void userfaultfd_open(uint64_t *features)
485*053f45beSAndroid Build Coastguard Worker {
486*053f45beSAndroid Build Coastguard Worker struct uffdio_api uffdio_api;
487*053f45beSAndroid Build Coastguard Worker
488*053f45beSAndroid Build Coastguard Worker if (test_dev_userfaultfd)
489*053f45beSAndroid Build Coastguard Worker uffd = __userfaultfd_open_dev();
490*053f45beSAndroid Build Coastguard Worker else {
491*053f45beSAndroid Build Coastguard Worker uffd = syscall(__NR_userfaultfd, UFFD_FLAGS);
492*053f45beSAndroid Build Coastguard Worker if (uffd < 0)
493*053f45beSAndroid Build Coastguard Worker errexit(errno == ENOSYS ? KSFT_SKIP : 1,
494*053f45beSAndroid Build Coastguard Worker "creating userfaultfd failed");
495*053f45beSAndroid Build Coastguard Worker }
496*053f45beSAndroid Build Coastguard Worker uffd_flags = fcntl(uffd, F_GETFD, NULL);
497*053f45beSAndroid Build Coastguard Worker
498*053f45beSAndroid Build Coastguard Worker uffdio_api.api = UFFD_API;
499*053f45beSAndroid Build Coastguard Worker uffdio_api.features = *features;
500*053f45beSAndroid Build Coastguard Worker if (ioctl(uffd, UFFDIO_API, &uffdio_api))
501*053f45beSAndroid Build Coastguard Worker err("UFFDIO_API failed.\nPlease make sure to "
502*053f45beSAndroid Build Coastguard Worker "run with either root or ptrace capability.");
503*053f45beSAndroid Build Coastguard Worker if (uffdio_api.api != UFFD_API)
504*053f45beSAndroid Build Coastguard Worker err("UFFDIO_API error: %" PRIu64, (uint64_t)uffdio_api.api);
505*053f45beSAndroid Build Coastguard Worker
506*053f45beSAndroid Build Coastguard Worker *features = uffdio_api.features;
507*053f45beSAndroid Build Coastguard Worker }
508*053f45beSAndroid Build Coastguard Worker
munmap_area(void ** area)509*053f45beSAndroid Build Coastguard Worker static inline void munmap_area(void **area)
510*053f45beSAndroid Build Coastguard Worker {
511*053f45beSAndroid Build Coastguard Worker if (*area)
512*053f45beSAndroid Build Coastguard Worker if (munmap(*area, nr_pages * page_size))
513*053f45beSAndroid Build Coastguard Worker err("munmap");
514*053f45beSAndroid Build Coastguard Worker
515*053f45beSAndroid Build Coastguard Worker *area = NULL;
516*053f45beSAndroid Build Coastguard Worker }
517*053f45beSAndroid Build Coastguard Worker
uffd_test_ctx_clear(void)518*053f45beSAndroid Build Coastguard Worker static void uffd_test_ctx_clear(void)
519*053f45beSAndroid Build Coastguard Worker {
520*053f45beSAndroid Build Coastguard Worker size_t i;
521*053f45beSAndroid Build Coastguard Worker
522*053f45beSAndroid Build Coastguard Worker if (pipefd) {
523*053f45beSAndroid Build Coastguard Worker for (i = 0; i < nr_cpus * 2; ++i) {
524*053f45beSAndroid Build Coastguard Worker if (close(pipefd[i]))
525*053f45beSAndroid Build Coastguard Worker err("close pipefd");
526*053f45beSAndroid Build Coastguard Worker }
527*053f45beSAndroid Build Coastguard Worker free(pipefd);
528*053f45beSAndroid Build Coastguard Worker pipefd = NULL;
529*053f45beSAndroid Build Coastguard Worker }
530*053f45beSAndroid Build Coastguard Worker
531*053f45beSAndroid Build Coastguard Worker if (count_verify) {
532*053f45beSAndroid Build Coastguard Worker free(count_verify);
533*053f45beSAndroid Build Coastguard Worker count_verify = NULL;
534*053f45beSAndroid Build Coastguard Worker }
535*053f45beSAndroid Build Coastguard Worker
536*053f45beSAndroid Build Coastguard Worker if (uffd != -1) {
537*053f45beSAndroid Build Coastguard Worker if (close(uffd))
538*053f45beSAndroid Build Coastguard Worker err("close uffd");
539*053f45beSAndroid Build Coastguard Worker uffd = -1;
540*053f45beSAndroid Build Coastguard Worker }
541*053f45beSAndroid Build Coastguard Worker
542*053f45beSAndroid Build Coastguard Worker munmap_area((void **)&area_src);
543*053f45beSAndroid Build Coastguard Worker munmap_area((void **)&area_src_alias);
544*053f45beSAndroid Build Coastguard Worker munmap_area((void **)&area_dst);
545*053f45beSAndroid Build Coastguard Worker munmap_area((void **)&area_dst_alias);
546*053f45beSAndroid Build Coastguard Worker munmap_area((void **)&area_remap);
547*053f45beSAndroid Build Coastguard Worker }
548*053f45beSAndroid Build Coastguard Worker
uffd_test_ctx_init(uint64_t features)549*053f45beSAndroid Build Coastguard Worker static void uffd_test_ctx_init(uint64_t features)
550*053f45beSAndroid Build Coastguard Worker {
551*053f45beSAndroid Build Coastguard Worker unsigned long nr, cpu;
552*053f45beSAndroid Build Coastguard Worker
553*053f45beSAndroid Build Coastguard Worker uffd_test_ctx_clear();
554*053f45beSAndroid Build Coastguard Worker
555*053f45beSAndroid Build Coastguard Worker uffd_test_ops->allocate_area((void **)&area_src, true);
556*053f45beSAndroid Build Coastguard Worker uffd_test_ops->allocate_area((void **)&area_dst, false);
557*053f45beSAndroid Build Coastguard Worker
558*053f45beSAndroid Build Coastguard Worker userfaultfd_open(&features);
559*053f45beSAndroid Build Coastguard Worker
560*053f45beSAndroid Build Coastguard Worker count_verify = malloc(nr_pages * sizeof(unsigned long long));
561*053f45beSAndroid Build Coastguard Worker if (!count_verify)
562*053f45beSAndroid Build Coastguard Worker err("count_verify");
563*053f45beSAndroid Build Coastguard Worker
564*053f45beSAndroid Build Coastguard Worker for (nr = 0; nr < nr_pages; nr++) {
565*053f45beSAndroid Build Coastguard Worker *area_mutex(area_src, nr) =
566*053f45beSAndroid Build Coastguard Worker (pthread_mutex_t)PTHREAD_MUTEX_INITIALIZER;
567*053f45beSAndroid Build Coastguard Worker count_verify[nr] = *area_count(area_src, nr) = 1;
568*053f45beSAndroid Build Coastguard Worker /*
569*053f45beSAndroid Build Coastguard Worker * In the transition between 255 to 256, powerpc will
570*053f45beSAndroid Build Coastguard Worker * read out of order in my_bcmp and see both bytes as
571*053f45beSAndroid Build Coastguard Worker * zero, so leave a placeholder below always non-zero
572*053f45beSAndroid Build Coastguard Worker * after the count, to avoid my_bcmp to trigger false
573*053f45beSAndroid Build Coastguard Worker * positives.
574*053f45beSAndroid Build Coastguard Worker */
575*053f45beSAndroid Build Coastguard Worker *(area_count(area_src, nr) + 1) = 1;
576*053f45beSAndroid Build Coastguard Worker }
577*053f45beSAndroid Build Coastguard Worker
578*053f45beSAndroid Build Coastguard Worker /*
579*053f45beSAndroid Build Coastguard Worker * After initialization of area_src, we must explicitly release pages
580*053f45beSAndroid Build Coastguard Worker * for area_dst to make sure it's fully empty. Otherwise we could have
581*053f45beSAndroid Build Coastguard Worker * some area_dst pages be errornously initialized with zero pages,
582*053f45beSAndroid Build Coastguard Worker * hence we could hit memory corruption later in the test.
583*053f45beSAndroid Build Coastguard Worker *
584*053f45beSAndroid Build Coastguard Worker * One example is when THP is globally enabled, above allocate_area()
585*053f45beSAndroid Build Coastguard Worker * calls could have the two areas merged into a single VMA (as they
586*053f45beSAndroid Build Coastguard Worker * will have the same VMA flags so they're mergeable). When we
587*053f45beSAndroid Build Coastguard Worker * initialize the area_src above, it's possible that some part of
588*053f45beSAndroid Build Coastguard Worker * area_dst could have been faulted in via one huge THP that will be
589*053f45beSAndroid Build Coastguard Worker * shared between area_src and area_dst. It could cause some of the
590*053f45beSAndroid Build Coastguard Worker * area_dst won't be trapped by missing userfaults.
591*053f45beSAndroid Build Coastguard Worker *
592*053f45beSAndroid Build Coastguard Worker * This release_pages() will guarantee even if that happened, we'll
593*053f45beSAndroid Build Coastguard Worker * proactively split the thp and drop any accidentally initialized
594*053f45beSAndroid Build Coastguard Worker * pages within area_dst.
595*053f45beSAndroid Build Coastguard Worker */
596*053f45beSAndroid Build Coastguard Worker uffd_test_ops->release_pages(area_dst);
597*053f45beSAndroid Build Coastguard Worker
598*053f45beSAndroid Build Coastguard Worker pipefd = malloc(sizeof(int) * nr_cpus * 2);
599*053f45beSAndroid Build Coastguard Worker if (!pipefd)
600*053f45beSAndroid Build Coastguard Worker err("pipefd");
601*053f45beSAndroid Build Coastguard Worker for (cpu = 0; cpu < nr_cpus; cpu++)
602*053f45beSAndroid Build Coastguard Worker if (pipe2(&pipefd[cpu * 2], O_CLOEXEC | O_NONBLOCK))
603*053f45beSAndroid Build Coastguard Worker err("pipe");
604*053f45beSAndroid Build Coastguard Worker }
605*053f45beSAndroid Build Coastguard Worker
my_bcmp(char * str1,char * str2,size_t n)606*053f45beSAndroid Build Coastguard Worker static int my_bcmp(char *str1, char *str2, size_t n)
607*053f45beSAndroid Build Coastguard Worker {
608*053f45beSAndroid Build Coastguard Worker unsigned long i;
609*053f45beSAndroid Build Coastguard Worker for (i = 0; i < n; i++)
610*053f45beSAndroid Build Coastguard Worker if (str1[i] != str2[i])
611*053f45beSAndroid Build Coastguard Worker return 1;
612*053f45beSAndroid Build Coastguard Worker return 0;
613*053f45beSAndroid Build Coastguard Worker }
614*053f45beSAndroid Build Coastguard Worker
wp_range(int ufd,__u64 start,__u64 len,bool wp)615*053f45beSAndroid Build Coastguard Worker static void wp_range(int ufd, __u64 start, __u64 len, bool wp)
616*053f45beSAndroid Build Coastguard Worker {
617*053f45beSAndroid Build Coastguard Worker struct uffdio_writeprotect prms;
618*053f45beSAndroid Build Coastguard Worker
619*053f45beSAndroid Build Coastguard Worker /* Write protection page faults */
620*053f45beSAndroid Build Coastguard Worker prms.range.start = start;
621*053f45beSAndroid Build Coastguard Worker prms.range.len = len;
622*053f45beSAndroid Build Coastguard Worker /* Undo write-protect, do wakeup after that */
623*053f45beSAndroid Build Coastguard Worker prms.mode = wp ? UFFDIO_WRITEPROTECT_MODE_WP : 0;
624*053f45beSAndroid Build Coastguard Worker
625*053f45beSAndroid Build Coastguard Worker if (ioctl(ufd, UFFDIO_WRITEPROTECT, &prms))
626*053f45beSAndroid Build Coastguard Worker err("clear WP failed: address=0x%"PRIx64, (uint64_t)start);
627*053f45beSAndroid Build Coastguard Worker }
628*053f45beSAndroid Build Coastguard Worker
continue_range(int ufd,__u64 start,__u64 len)629*053f45beSAndroid Build Coastguard Worker static void continue_range(int ufd, __u64 start, __u64 len)
630*053f45beSAndroid Build Coastguard Worker {
631*053f45beSAndroid Build Coastguard Worker struct uffdio_continue req;
632*053f45beSAndroid Build Coastguard Worker int ret;
633*053f45beSAndroid Build Coastguard Worker
634*053f45beSAndroid Build Coastguard Worker req.range.start = start;
635*053f45beSAndroid Build Coastguard Worker req.range.len = len;
636*053f45beSAndroid Build Coastguard Worker req.mode = 0;
637*053f45beSAndroid Build Coastguard Worker
638*053f45beSAndroid Build Coastguard Worker if (ioctl(ufd, UFFDIO_CONTINUE, &req))
639*053f45beSAndroid Build Coastguard Worker err("UFFDIO_CONTINUE failed for address 0x%" PRIx64,
640*053f45beSAndroid Build Coastguard Worker (uint64_t)start);
641*053f45beSAndroid Build Coastguard Worker
642*053f45beSAndroid Build Coastguard Worker /*
643*053f45beSAndroid Build Coastguard Worker * Error handling within the kernel for continue is subtly different
644*053f45beSAndroid Build Coastguard Worker * from copy or zeropage, so it may be a source of bugs. Trigger an
645*053f45beSAndroid Build Coastguard Worker * error (-EEXIST) on purpose, to verify doing so doesn't cause a BUG.
646*053f45beSAndroid Build Coastguard Worker */
647*053f45beSAndroid Build Coastguard Worker req.mapped = 0;
648*053f45beSAndroid Build Coastguard Worker ret = ioctl(ufd, UFFDIO_CONTINUE, &req);
649*053f45beSAndroid Build Coastguard Worker if (ret >= 0 || req.mapped != -EEXIST)
650*053f45beSAndroid Build Coastguard Worker err("failed to exercise UFFDIO_CONTINUE error handling, ret=%d, mapped=%" PRId64,
651*053f45beSAndroid Build Coastguard Worker ret, (int64_t) req.mapped);
652*053f45beSAndroid Build Coastguard Worker }
653*053f45beSAndroid Build Coastguard Worker
locking_thread(void * arg)654*053f45beSAndroid Build Coastguard Worker static void *locking_thread(void *arg)
655*053f45beSAndroid Build Coastguard Worker {
656*053f45beSAndroid Build Coastguard Worker unsigned long cpu = (unsigned long) arg;
657*053f45beSAndroid Build Coastguard Worker unsigned long page_nr;
658*053f45beSAndroid Build Coastguard Worker unsigned long long count;
659*053f45beSAndroid Build Coastguard Worker
660*053f45beSAndroid Build Coastguard Worker if (!(bounces & BOUNCE_RANDOM)) {
661*053f45beSAndroid Build Coastguard Worker page_nr = -bounces;
662*053f45beSAndroid Build Coastguard Worker if (!(bounces & BOUNCE_RACINGFAULTS))
663*053f45beSAndroid Build Coastguard Worker page_nr += cpu * nr_pages_per_cpu;
664*053f45beSAndroid Build Coastguard Worker }
665*053f45beSAndroid Build Coastguard Worker
666*053f45beSAndroid Build Coastguard Worker while (!finished) {
667*053f45beSAndroid Build Coastguard Worker if (bounces & BOUNCE_RANDOM) {
668*053f45beSAndroid Build Coastguard Worker if (getrandom(&page_nr, sizeof(page_nr), 0) != sizeof(page_nr))
669*053f45beSAndroid Build Coastguard Worker err("getrandom failed");
670*053f45beSAndroid Build Coastguard Worker } else
671*053f45beSAndroid Build Coastguard Worker page_nr += 1;
672*053f45beSAndroid Build Coastguard Worker page_nr %= nr_pages;
673*053f45beSAndroid Build Coastguard Worker pthread_mutex_lock(area_mutex(area_dst, page_nr));
674*053f45beSAndroid Build Coastguard Worker count = *area_count(area_dst, page_nr);
675*053f45beSAndroid Build Coastguard Worker if (count != count_verify[page_nr])
676*053f45beSAndroid Build Coastguard Worker err("page_nr %lu memory corruption %llu %llu",
677*053f45beSAndroid Build Coastguard Worker page_nr, count, count_verify[page_nr]);
678*053f45beSAndroid Build Coastguard Worker count++;
679*053f45beSAndroid Build Coastguard Worker *area_count(area_dst, page_nr) = count_verify[page_nr] = count;
680*053f45beSAndroid Build Coastguard Worker pthread_mutex_unlock(area_mutex(area_dst, page_nr));
681*053f45beSAndroid Build Coastguard Worker }
682*053f45beSAndroid Build Coastguard Worker
683*053f45beSAndroid Build Coastguard Worker return NULL;
684*053f45beSAndroid Build Coastguard Worker }
685*053f45beSAndroid Build Coastguard Worker
retry_copy_page(int ufd,struct uffdio_copy * uffdio_copy,unsigned long offset)686*053f45beSAndroid Build Coastguard Worker static void retry_copy_page(int ufd, struct uffdio_copy *uffdio_copy,
687*053f45beSAndroid Build Coastguard Worker unsigned long offset)
688*053f45beSAndroid Build Coastguard Worker {
689*053f45beSAndroid Build Coastguard Worker uffd_test_ops->alias_mapping(&uffdio_copy->dst,
690*053f45beSAndroid Build Coastguard Worker uffdio_copy->len,
691*053f45beSAndroid Build Coastguard Worker offset);
692*053f45beSAndroid Build Coastguard Worker if (ioctl(ufd, UFFDIO_COPY, uffdio_copy)) {
693*053f45beSAndroid Build Coastguard Worker /* real retval in ufdio_copy.copy */
694*053f45beSAndroid Build Coastguard Worker if (uffdio_copy->copy != -EEXIST)
695*053f45beSAndroid Build Coastguard Worker err("UFFDIO_COPY retry error: %"PRId64,
696*053f45beSAndroid Build Coastguard Worker (int64_t)uffdio_copy->copy);
697*053f45beSAndroid Build Coastguard Worker } else {
698*053f45beSAndroid Build Coastguard Worker err("UFFDIO_COPY retry unexpected: %"PRId64,
699*053f45beSAndroid Build Coastguard Worker (int64_t)uffdio_copy->copy);
700*053f45beSAndroid Build Coastguard Worker }
701*053f45beSAndroid Build Coastguard Worker }
702*053f45beSAndroid Build Coastguard Worker
wake_range(int ufd,unsigned long addr,unsigned long len)703*053f45beSAndroid Build Coastguard Worker static void wake_range(int ufd, unsigned long addr, unsigned long len)
704*053f45beSAndroid Build Coastguard Worker {
705*053f45beSAndroid Build Coastguard Worker struct uffdio_range uffdio_wake;
706*053f45beSAndroid Build Coastguard Worker
707*053f45beSAndroid Build Coastguard Worker uffdio_wake.start = addr;
708*053f45beSAndroid Build Coastguard Worker uffdio_wake.len = len;
709*053f45beSAndroid Build Coastguard Worker
710*053f45beSAndroid Build Coastguard Worker if (ioctl(ufd, UFFDIO_WAKE, &uffdio_wake))
711*053f45beSAndroid Build Coastguard Worker fprintf(stderr, "error waking %lu\n",
712*053f45beSAndroid Build Coastguard Worker addr), exit(1);
713*053f45beSAndroid Build Coastguard Worker }
714*053f45beSAndroid Build Coastguard Worker
__copy_page(int ufd,unsigned long offset,bool retry)715*053f45beSAndroid Build Coastguard Worker static int __copy_page(int ufd, unsigned long offset, bool retry)
716*053f45beSAndroid Build Coastguard Worker {
717*053f45beSAndroid Build Coastguard Worker struct uffdio_copy uffdio_copy;
718*053f45beSAndroid Build Coastguard Worker
719*053f45beSAndroid Build Coastguard Worker if (offset >= nr_pages * page_size)
720*053f45beSAndroid Build Coastguard Worker err("unexpected offset %lu\n", offset);
721*053f45beSAndroid Build Coastguard Worker uffdio_copy.dst = (unsigned long) area_dst + offset;
722*053f45beSAndroid Build Coastguard Worker uffdio_copy.src = (unsigned long) area_src + offset;
723*053f45beSAndroid Build Coastguard Worker uffdio_copy.len = page_size;
724*053f45beSAndroid Build Coastguard Worker if (test_uffdio_wp)
725*053f45beSAndroid Build Coastguard Worker uffdio_copy.mode = UFFDIO_COPY_MODE_WP;
726*053f45beSAndroid Build Coastguard Worker else
727*053f45beSAndroid Build Coastguard Worker uffdio_copy.mode = 0;
728*053f45beSAndroid Build Coastguard Worker uffdio_copy.copy = 0;
729*053f45beSAndroid Build Coastguard Worker if (ioctl(ufd, UFFDIO_COPY, &uffdio_copy)) {
730*053f45beSAndroid Build Coastguard Worker /* real retval in ufdio_copy.copy */
731*053f45beSAndroid Build Coastguard Worker if (uffdio_copy.copy != -EEXIST)
732*053f45beSAndroid Build Coastguard Worker err("UFFDIO_COPY error: %"PRId64,
733*053f45beSAndroid Build Coastguard Worker (int64_t)uffdio_copy.copy);
734*053f45beSAndroid Build Coastguard Worker wake_range(ufd, uffdio_copy.dst, page_size);
735*053f45beSAndroid Build Coastguard Worker } else if (uffdio_copy.copy != page_size) {
736*053f45beSAndroid Build Coastguard Worker err("UFFDIO_COPY error: %"PRId64, (int64_t)uffdio_copy.copy);
737*053f45beSAndroid Build Coastguard Worker } else {
738*053f45beSAndroid Build Coastguard Worker if (test_uffdio_copy_eexist && retry) {
739*053f45beSAndroid Build Coastguard Worker test_uffdio_copy_eexist = false;
740*053f45beSAndroid Build Coastguard Worker retry_copy_page(ufd, &uffdio_copy, offset);
741*053f45beSAndroid Build Coastguard Worker }
742*053f45beSAndroid Build Coastguard Worker return 1;
743*053f45beSAndroid Build Coastguard Worker }
744*053f45beSAndroid Build Coastguard Worker return 0;
745*053f45beSAndroid Build Coastguard Worker }
746*053f45beSAndroid Build Coastguard Worker
copy_page_retry(int ufd,unsigned long offset)747*053f45beSAndroid Build Coastguard Worker static int copy_page_retry(int ufd, unsigned long offset)
748*053f45beSAndroid Build Coastguard Worker {
749*053f45beSAndroid Build Coastguard Worker return __copy_page(ufd, offset, true);
750*053f45beSAndroid Build Coastguard Worker }
751*053f45beSAndroid Build Coastguard Worker
copy_page(int ufd,unsigned long offset)752*053f45beSAndroid Build Coastguard Worker static int copy_page(int ufd, unsigned long offset)
753*053f45beSAndroid Build Coastguard Worker {
754*053f45beSAndroid Build Coastguard Worker return __copy_page(ufd, offset, false);
755*053f45beSAndroid Build Coastguard Worker }
756*053f45beSAndroid Build Coastguard Worker
uffd_read_msg(int ufd,struct uffd_msg * msg)757*053f45beSAndroid Build Coastguard Worker static int uffd_read_msg(int ufd, struct uffd_msg *msg)
758*053f45beSAndroid Build Coastguard Worker {
759*053f45beSAndroid Build Coastguard Worker int ret = read(uffd, msg, sizeof(*msg));
760*053f45beSAndroid Build Coastguard Worker
761*053f45beSAndroid Build Coastguard Worker if (ret != sizeof(*msg)) {
762*053f45beSAndroid Build Coastguard Worker if (ret < 0) {
763*053f45beSAndroid Build Coastguard Worker if (errno == EAGAIN || errno == EINTR)
764*053f45beSAndroid Build Coastguard Worker return 1;
765*053f45beSAndroid Build Coastguard Worker err("blocking read error");
766*053f45beSAndroid Build Coastguard Worker } else {
767*053f45beSAndroid Build Coastguard Worker err("short read");
768*053f45beSAndroid Build Coastguard Worker }
769*053f45beSAndroid Build Coastguard Worker }
770*053f45beSAndroid Build Coastguard Worker
771*053f45beSAndroid Build Coastguard Worker return 0;
772*053f45beSAndroid Build Coastguard Worker }
773*053f45beSAndroid Build Coastguard Worker
uffd_handle_page_fault(struct uffd_msg * msg,struct uffd_stats * stats)774*053f45beSAndroid Build Coastguard Worker static void uffd_handle_page_fault(struct uffd_msg *msg,
775*053f45beSAndroid Build Coastguard Worker struct uffd_stats *stats)
776*053f45beSAndroid Build Coastguard Worker {
777*053f45beSAndroid Build Coastguard Worker unsigned long offset;
778*053f45beSAndroid Build Coastguard Worker
779*053f45beSAndroid Build Coastguard Worker if (msg->event != UFFD_EVENT_PAGEFAULT)
780*053f45beSAndroid Build Coastguard Worker err("unexpected msg event %u", msg->event);
781*053f45beSAndroid Build Coastguard Worker
782*053f45beSAndroid Build Coastguard Worker if (msg->arg.pagefault.flags & UFFD_PAGEFAULT_FLAG_WP) {
783*053f45beSAndroid Build Coastguard Worker /* Write protect page faults */
784*053f45beSAndroid Build Coastguard Worker wp_range(uffd, msg->arg.pagefault.address, page_size, false);
785*053f45beSAndroid Build Coastguard Worker stats->wp_faults++;
786*053f45beSAndroid Build Coastguard Worker } else if (msg->arg.pagefault.flags & UFFD_PAGEFAULT_FLAG_MINOR) {
787*053f45beSAndroid Build Coastguard Worker uint8_t *area;
788*053f45beSAndroid Build Coastguard Worker int b;
789*053f45beSAndroid Build Coastguard Worker
790*053f45beSAndroid Build Coastguard Worker /*
791*053f45beSAndroid Build Coastguard Worker * Minor page faults
792*053f45beSAndroid Build Coastguard Worker *
793*053f45beSAndroid Build Coastguard Worker * To prove we can modify the original range for testing
794*053f45beSAndroid Build Coastguard Worker * purposes, we're going to bit flip this range before
795*053f45beSAndroid Build Coastguard Worker * continuing.
796*053f45beSAndroid Build Coastguard Worker *
797*053f45beSAndroid Build Coastguard Worker * Note that this requires all minor page fault tests operate on
798*053f45beSAndroid Build Coastguard Worker * area_dst (non-UFFD-registered) and area_dst_alias
799*053f45beSAndroid Build Coastguard Worker * (UFFD-registered).
800*053f45beSAndroid Build Coastguard Worker */
801*053f45beSAndroid Build Coastguard Worker
802*053f45beSAndroid Build Coastguard Worker area = (uint8_t *)(area_dst +
803*053f45beSAndroid Build Coastguard Worker ((char *)msg->arg.pagefault.address -
804*053f45beSAndroid Build Coastguard Worker area_dst_alias));
805*053f45beSAndroid Build Coastguard Worker for (b = 0; b < page_size; ++b)
806*053f45beSAndroid Build Coastguard Worker area[b] = ~area[b];
807*053f45beSAndroid Build Coastguard Worker continue_range(uffd, msg->arg.pagefault.address, page_size);
808*053f45beSAndroid Build Coastguard Worker stats->minor_faults++;
809*053f45beSAndroid Build Coastguard Worker } else {
810*053f45beSAndroid Build Coastguard Worker /*
811*053f45beSAndroid Build Coastguard Worker * Missing page faults.
812*053f45beSAndroid Build Coastguard Worker *
813*053f45beSAndroid Build Coastguard Worker * Here we force a write check for each of the missing mode
814*053f45beSAndroid Build Coastguard Worker * faults. It's guaranteed because the only threads that
815*053f45beSAndroid Build Coastguard Worker * will trigger uffd faults are the locking threads, and
816*053f45beSAndroid Build Coastguard Worker * their first instruction to touch the missing page will
817*053f45beSAndroid Build Coastguard Worker * always be pthread_mutex_lock().
818*053f45beSAndroid Build Coastguard Worker *
819*053f45beSAndroid Build Coastguard Worker * Note that here we relied on an NPTL glibc impl detail to
820*053f45beSAndroid Build Coastguard Worker * always read the lock type at the entry of the lock op
821*053f45beSAndroid Build Coastguard Worker * (pthread_mutex_t.__data.__type, offset 0x10) before
822*053f45beSAndroid Build Coastguard Worker * doing any locking operations to guarantee that. It's
823*053f45beSAndroid Build Coastguard Worker * actually not good to rely on this impl detail because
824*053f45beSAndroid Build Coastguard Worker * logically a pthread-compatible lib can implement the
825*053f45beSAndroid Build Coastguard Worker * locks without types and we can fail when linking with
826*053f45beSAndroid Build Coastguard Worker * them. However since we used to find bugs with this
827*053f45beSAndroid Build Coastguard Worker * strict check we still keep it around. Hopefully this
828*053f45beSAndroid Build Coastguard Worker * could be a good hint when it fails again. If one day
829*053f45beSAndroid Build Coastguard Worker * it'll break on some other impl of glibc we'll revisit.
830*053f45beSAndroid Build Coastguard Worker */
831*053f45beSAndroid Build Coastguard Worker if (msg->arg.pagefault.flags & UFFD_PAGEFAULT_FLAG_WRITE)
832*053f45beSAndroid Build Coastguard Worker err("unexpected write fault");
833*053f45beSAndroid Build Coastguard Worker
834*053f45beSAndroid Build Coastguard Worker offset = (char *)(unsigned long)msg->arg.pagefault.address - area_dst;
835*053f45beSAndroid Build Coastguard Worker offset &= ~(page_size-1);
836*053f45beSAndroid Build Coastguard Worker
837*053f45beSAndroid Build Coastguard Worker if (copy_page(uffd, offset))
838*053f45beSAndroid Build Coastguard Worker stats->missing_faults++;
839*053f45beSAndroid Build Coastguard Worker }
840*053f45beSAndroid Build Coastguard Worker }
841*053f45beSAndroid Build Coastguard Worker
uffd_poll_thread(void * arg)842*053f45beSAndroid Build Coastguard Worker static void *uffd_poll_thread(void *arg)
843*053f45beSAndroid Build Coastguard Worker {
844*053f45beSAndroid Build Coastguard Worker struct uffd_stats *stats = (struct uffd_stats *)arg;
845*053f45beSAndroid Build Coastguard Worker unsigned long cpu = stats->cpu;
846*053f45beSAndroid Build Coastguard Worker struct pollfd pollfd[2];
847*053f45beSAndroid Build Coastguard Worker struct uffd_msg msg;
848*053f45beSAndroid Build Coastguard Worker struct uffdio_register uffd_reg;
849*053f45beSAndroid Build Coastguard Worker int ret;
850*053f45beSAndroid Build Coastguard Worker char tmp_chr;
851*053f45beSAndroid Build Coastguard Worker
852*053f45beSAndroid Build Coastguard Worker pollfd[0].fd = uffd;
853*053f45beSAndroid Build Coastguard Worker pollfd[0].events = POLLIN;
854*053f45beSAndroid Build Coastguard Worker pollfd[1].fd = pipefd[cpu*2];
855*053f45beSAndroid Build Coastguard Worker pollfd[1].events = POLLIN;
856*053f45beSAndroid Build Coastguard Worker
857*053f45beSAndroid Build Coastguard Worker // Notify the main thread that it can now fork.
858*053f45beSAndroid Build Coastguard Worker ready_for_fork = true;
859*053f45beSAndroid Build Coastguard Worker
860*053f45beSAndroid Build Coastguard Worker for (;;) {
861*053f45beSAndroid Build Coastguard Worker ret = poll(pollfd, 2, -1);
862*053f45beSAndroid Build Coastguard Worker if (ret <= 0) {
863*053f45beSAndroid Build Coastguard Worker if (errno == EINTR || errno == EAGAIN)
864*053f45beSAndroid Build Coastguard Worker continue;
865*053f45beSAndroid Build Coastguard Worker err("poll error: %d", ret);
866*053f45beSAndroid Build Coastguard Worker }
867*053f45beSAndroid Build Coastguard Worker if (pollfd[1].revents & POLLIN) {
868*053f45beSAndroid Build Coastguard Worker if (read(pollfd[1].fd, &tmp_chr, 1) != 1)
869*053f45beSAndroid Build Coastguard Worker err("read pipefd error");
870*053f45beSAndroid Build Coastguard Worker break;
871*053f45beSAndroid Build Coastguard Worker }
872*053f45beSAndroid Build Coastguard Worker if (!(pollfd[0].revents & POLLIN))
873*053f45beSAndroid Build Coastguard Worker err("pollfd[0].revents %d", pollfd[0].revents);
874*053f45beSAndroid Build Coastguard Worker if (uffd_read_msg(uffd, &msg))
875*053f45beSAndroid Build Coastguard Worker continue;
876*053f45beSAndroid Build Coastguard Worker switch (msg.event) {
877*053f45beSAndroid Build Coastguard Worker default:
878*053f45beSAndroid Build Coastguard Worker err("unexpected msg event %u\n", msg.event);
879*053f45beSAndroid Build Coastguard Worker break;
880*053f45beSAndroid Build Coastguard Worker case UFFD_EVENT_PAGEFAULT:
881*053f45beSAndroid Build Coastguard Worker uffd_handle_page_fault(&msg, stats);
882*053f45beSAndroid Build Coastguard Worker break;
883*053f45beSAndroid Build Coastguard Worker case UFFD_EVENT_FORK:
884*053f45beSAndroid Build Coastguard Worker close(uffd);
885*053f45beSAndroid Build Coastguard Worker uffd = msg.arg.fork.ufd;
886*053f45beSAndroid Build Coastguard Worker pollfd[0].fd = uffd;
887*053f45beSAndroid Build Coastguard Worker break;
888*053f45beSAndroid Build Coastguard Worker case UFFD_EVENT_REMOVE:
889*053f45beSAndroid Build Coastguard Worker uffd_reg.range.start = msg.arg.remove.start;
890*053f45beSAndroid Build Coastguard Worker uffd_reg.range.len = msg.arg.remove.end -
891*053f45beSAndroid Build Coastguard Worker msg.arg.remove.start;
892*053f45beSAndroid Build Coastguard Worker if (ioctl(uffd, UFFDIO_UNREGISTER, &uffd_reg.range))
893*053f45beSAndroid Build Coastguard Worker err("remove failure");
894*053f45beSAndroid Build Coastguard Worker break;
895*053f45beSAndroid Build Coastguard Worker case UFFD_EVENT_REMAP:
896*053f45beSAndroid Build Coastguard Worker area_remap = area_dst; /* save for later unmap */
897*053f45beSAndroid Build Coastguard Worker area_dst = (char *)(unsigned long)msg.arg.remap.to;
898*053f45beSAndroid Build Coastguard Worker break;
899*053f45beSAndroid Build Coastguard Worker }
900*053f45beSAndroid Build Coastguard Worker }
901*053f45beSAndroid Build Coastguard Worker
902*053f45beSAndroid Build Coastguard Worker return NULL;
903*053f45beSAndroid Build Coastguard Worker }
904*053f45beSAndroid Build Coastguard Worker
905*053f45beSAndroid Build Coastguard Worker pthread_mutex_t uffd_read_mutex = PTHREAD_MUTEX_INITIALIZER;
906*053f45beSAndroid Build Coastguard Worker
sigusr1_handler(int signum,siginfo_t * siginfo,void * ptr)907*053f45beSAndroid Build Coastguard Worker static void sigusr1_handler(int signum, siginfo_t *siginfo, void *ptr)
908*053f45beSAndroid Build Coastguard Worker {
909*053f45beSAndroid Build Coastguard Worker jmp_buf *env;
910*053f45beSAndroid Build Coastguard Worker env = pthread_getspecific(long_jmp_key);
911*053f45beSAndroid Build Coastguard Worker longjmp(*env, 1);
912*053f45beSAndroid Build Coastguard Worker }
913*053f45beSAndroid Build Coastguard Worker
uffd_read_thread(void * arg)914*053f45beSAndroid Build Coastguard Worker static void *uffd_read_thread(void *arg)
915*053f45beSAndroid Build Coastguard Worker {
916*053f45beSAndroid Build Coastguard Worker struct uffd_stats *stats = (struct uffd_stats *)arg;
917*053f45beSAndroid Build Coastguard Worker struct uffd_msg msg;
918*053f45beSAndroid Build Coastguard Worker jmp_buf env;
919*053f45beSAndroid Build Coastguard Worker int setjmp_ret;
920*053f45beSAndroid Build Coastguard Worker
921*053f45beSAndroid Build Coastguard Worker pthread_setspecific(long_jmp_key, &env);
922*053f45beSAndroid Build Coastguard Worker
923*053f45beSAndroid Build Coastguard Worker pthread_mutex_unlock(&uffd_read_mutex);
924*053f45beSAndroid Build Coastguard Worker // One first return setjmp return 0. On second (fake) return from
925*053f45beSAndroid Build Coastguard Worker // longjmp() it returns the provided value, which will be 1 in our case.
926*053f45beSAndroid Build Coastguard Worker setjmp_ret = setjmp(env);
927*053f45beSAndroid Build Coastguard Worker while (!setjmp_ret) {
928*053f45beSAndroid Build Coastguard Worker if (uffd_read_msg(uffd, &msg))
929*053f45beSAndroid Build Coastguard Worker continue;
930*053f45beSAndroid Build Coastguard Worker uffd_handle_page_fault(&msg, stats);
931*053f45beSAndroid Build Coastguard Worker }
932*053f45beSAndroid Build Coastguard Worker
933*053f45beSAndroid Build Coastguard Worker return NULL;
934*053f45beSAndroid Build Coastguard Worker }
935*053f45beSAndroid Build Coastguard Worker
background_thread(void * arg)936*053f45beSAndroid Build Coastguard Worker static void *background_thread(void *arg)
937*053f45beSAndroid Build Coastguard Worker {
938*053f45beSAndroid Build Coastguard Worker unsigned long cpu = (unsigned long) arg;
939*053f45beSAndroid Build Coastguard Worker unsigned long page_nr, start_nr, mid_nr, end_nr;
940*053f45beSAndroid Build Coastguard Worker
941*053f45beSAndroid Build Coastguard Worker start_nr = cpu * nr_pages_per_cpu;
942*053f45beSAndroid Build Coastguard Worker end_nr = (cpu+1) * nr_pages_per_cpu;
943*053f45beSAndroid Build Coastguard Worker mid_nr = (start_nr + end_nr) / 2;
944*053f45beSAndroid Build Coastguard Worker
945*053f45beSAndroid Build Coastguard Worker /* Copy the first half of the pages */
946*053f45beSAndroid Build Coastguard Worker for (page_nr = start_nr; page_nr < mid_nr; page_nr++)
947*053f45beSAndroid Build Coastguard Worker copy_page_retry(uffd, page_nr * page_size);
948*053f45beSAndroid Build Coastguard Worker
949*053f45beSAndroid Build Coastguard Worker /*
950*053f45beSAndroid Build Coastguard Worker * If we need to test uffd-wp, set it up now. Then we'll have
951*053f45beSAndroid Build Coastguard Worker * at least the first half of the pages mapped already which
952*053f45beSAndroid Build Coastguard Worker * can be write-protected for testing
953*053f45beSAndroid Build Coastguard Worker */
954*053f45beSAndroid Build Coastguard Worker if (test_uffdio_wp)
955*053f45beSAndroid Build Coastguard Worker wp_range(uffd, (unsigned long)area_dst + start_nr * page_size,
956*053f45beSAndroid Build Coastguard Worker nr_pages_per_cpu * page_size, true);
957*053f45beSAndroid Build Coastguard Worker
958*053f45beSAndroid Build Coastguard Worker /*
959*053f45beSAndroid Build Coastguard Worker * Continue the 2nd half of the page copying, handling write
960*053f45beSAndroid Build Coastguard Worker * protection faults if any
961*053f45beSAndroid Build Coastguard Worker */
962*053f45beSAndroid Build Coastguard Worker for (page_nr = mid_nr; page_nr < end_nr; page_nr++)
963*053f45beSAndroid Build Coastguard Worker copy_page_retry(uffd, page_nr * page_size);
964*053f45beSAndroid Build Coastguard Worker
965*053f45beSAndroid Build Coastguard Worker return NULL;
966*053f45beSAndroid Build Coastguard Worker }
967*053f45beSAndroid Build Coastguard Worker
stress(struct uffd_stats * uffd_stats)968*053f45beSAndroid Build Coastguard Worker static int stress(struct uffd_stats *uffd_stats)
969*053f45beSAndroid Build Coastguard Worker {
970*053f45beSAndroid Build Coastguard Worker unsigned long cpu;
971*053f45beSAndroid Build Coastguard Worker pthread_t locking_threads[nr_cpus];
972*053f45beSAndroid Build Coastguard Worker pthread_t uffd_threads[nr_cpus];
973*053f45beSAndroid Build Coastguard Worker pthread_t background_threads[nr_cpus];
974*053f45beSAndroid Build Coastguard Worker
975*053f45beSAndroid Build Coastguard Worker finished = 0;
976*053f45beSAndroid Build Coastguard Worker for (cpu = 0; cpu < nr_cpus; cpu++) {
977*053f45beSAndroid Build Coastguard Worker if (pthread_create(&locking_threads[cpu], &attr,
978*053f45beSAndroid Build Coastguard Worker locking_thread, (void *)cpu))
979*053f45beSAndroid Build Coastguard Worker return 1;
980*053f45beSAndroid Build Coastguard Worker if (bounces & BOUNCE_POLL) {
981*053f45beSAndroid Build Coastguard Worker if (pthread_create(&uffd_threads[cpu], &attr,
982*053f45beSAndroid Build Coastguard Worker uffd_poll_thread,
983*053f45beSAndroid Build Coastguard Worker (void *)&uffd_stats[cpu]))
984*053f45beSAndroid Build Coastguard Worker return 1;
985*053f45beSAndroid Build Coastguard Worker } else {
986*053f45beSAndroid Build Coastguard Worker if (pthread_create(&uffd_threads[cpu], &attr,
987*053f45beSAndroid Build Coastguard Worker uffd_read_thread,
988*053f45beSAndroid Build Coastguard Worker (void *)&uffd_stats[cpu]))
989*053f45beSAndroid Build Coastguard Worker return 1;
990*053f45beSAndroid Build Coastguard Worker pthread_mutex_lock(&uffd_read_mutex);
991*053f45beSAndroid Build Coastguard Worker }
992*053f45beSAndroid Build Coastguard Worker if (pthread_create(&background_threads[cpu], &attr,
993*053f45beSAndroid Build Coastguard Worker background_thread, (void *)cpu))
994*053f45beSAndroid Build Coastguard Worker return 1;
995*053f45beSAndroid Build Coastguard Worker }
996*053f45beSAndroid Build Coastguard Worker for (cpu = 0; cpu < nr_cpus; cpu++)
997*053f45beSAndroid Build Coastguard Worker if (pthread_join(background_threads[cpu], NULL))
998*053f45beSAndroid Build Coastguard Worker return 1;
999*053f45beSAndroid Build Coastguard Worker
1000*053f45beSAndroid Build Coastguard Worker /*
1001*053f45beSAndroid Build Coastguard Worker * Be strict and immediately zap area_src, the whole area has
1002*053f45beSAndroid Build Coastguard Worker * been transferred already by the background treads. The
1003*053f45beSAndroid Build Coastguard Worker * area_src could then be faulted in a racy way by still
1004*053f45beSAndroid Build Coastguard Worker * running uffdio_threads reading zeropages after we zapped
1005*053f45beSAndroid Build Coastguard Worker * area_src (but they're guaranteed to get -EEXIST from
1006*053f45beSAndroid Build Coastguard Worker * UFFDIO_COPY without writing zero pages into area_dst
1007*053f45beSAndroid Build Coastguard Worker * because the background threads already completed).
1008*053f45beSAndroid Build Coastguard Worker */
1009*053f45beSAndroid Build Coastguard Worker uffd_test_ops->release_pages(area_src);
1010*053f45beSAndroid Build Coastguard Worker
1011*053f45beSAndroid Build Coastguard Worker finished = 1;
1012*053f45beSAndroid Build Coastguard Worker for (cpu = 0; cpu < nr_cpus; cpu++)
1013*053f45beSAndroid Build Coastguard Worker if (pthread_join(locking_threads[cpu], NULL))
1014*053f45beSAndroid Build Coastguard Worker return 1;
1015*053f45beSAndroid Build Coastguard Worker
1016*053f45beSAndroid Build Coastguard Worker for (cpu = 0; cpu < nr_cpus; cpu++) {
1017*053f45beSAndroid Build Coastguard Worker char c;
1018*053f45beSAndroid Build Coastguard Worker if (bounces & BOUNCE_POLL) {
1019*053f45beSAndroid Build Coastguard Worker if (write(pipefd[cpu*2+1], &c, 1) != 1)
1020*053f45beSAndroid Build Coastguard Worker err("pipefd write error");
1021*053f45beSAndroid Build Coastguard Worker if (pthread_join(uffd_threads[cpu],
1022*053f45beSAndroid Build Coastguard Worker (void *)&uffd_stats[cpu]))
1023*053f45beSAndroid Build Coastguard Worker return 1;
1024*053f45beSAndroid Build Coastguard Worker } else {
1025*053f45beSAndroid Build Coastguard Worker if (pthread_kill(uffd_threads[cpu], SIGUSR1))
1026*053f45beSAndroid Build Coastguard Worker return 1;
1027*053f45beSAndroid Build Coastguard Worker if (pthread_join(uffd_threads[cpu], NULL))
1028*053f45beSAndroid Build Coastguard Worker return 1;
1029*053f45beSAndroid Build Coastguard Worker }
1030*053f45beSAndroid Build Coastguard Worker }
1031*053f45beSAndroid Build Coastguard Worker
1032*053f45beSAndroid Build Coastguard Worker return 0;
1033*053f45beSAndroid Build Coastguard Worker }
1034*053f45beSAndroid Build Coastguard Worker
1035*053f45beSAndroid Build Coastguard Worker sigjmp_buf jbuf, *sigbuf;
1036*053f45beSAndroid Build Coastguard Worker
sighndl(int sig,siginfo_t * siginfo,void * ptr)1037*053f45beSAndroid Build Coastguard Worker static void sighndl(int sig, siginfo_t *siginfo, void *ptr)
1038*053f45beSAndroid Build Coastguard Worker {
1039*053f45beSAndroid Build Coastguard Worker if (sig == SIGBUS) {
1040*053f45beSAndroid Build Coastguard Worker if (sigbuf)
1041*053f45beSAndroid Build Coastguard Worker siglongjmp(*sigbuf, 1);
1042*053f45beSAndroid Build Coastguard Worker abort();
1043*053f45beSAndroid Build Coastguard Worker }
1044*053f45beSAndroid Build Coastguard Worker }
1045*053f45beSAndroid Build Coastguard Worker
1046*053f45beSAndroid Build Coastguard Worker /*
1047*053f45beSAndroid Build Coastguard Worker * For non-cooperative userfaultfd test we fork() a process that will
1048*053f45beSAndroid Build Coastguard Worker * generate pagefaults, will mremap the area monitored by the
1049*053f45beSAndroid Build Coastguard Worker * userfaultfd and at last this process will release the monitored
1050*053f45beSAndroid Build Coastguard Worker * area.
1051*053f45beSAndroid Build Coastguard Worker * For the anonymous and shared memory the area is divided into two
1052*053f45beSAndroid Build Coastguard Worker * parts, the first part is accessed before mremap, and the second
1053*053f45beSAndroid Build Coastguard Worker * part is accessed after mremap. Since hugetlbfs does not support
1054*053f45beSAndroid Build Coastguard Worker * mremap, the entire monitored area is accessed in a single pass for
1055*053f45beSAndroid Build Coastguard Worker * HUGETLB_TEST.
1056*053f45beSAndroid Build Coastguard Worker * The release of the pages currently generates event for shmem and
1057*053f45beSAndroid Build Coastguard Worker * anonymous memory (UFFD_EVENT_REMOVE), hence it is not checked
1058*053f45beSAndroid Build Coastguard Worker * for hugetlb.
1059*053f45beSAndroid Build Coastguard Worker * For signal test(UFFD_FEATURE_SIGBUS), signal_test = 1, we register
1060*053f45beSAndroid Build Coastguard Worker * monitored area, generate pagefaults and test that signal is delivered.
1061*053f45beSAndroid Build Coastguard Worker * Use UFFDIO_COPY to allocate missing page and retry. For signal_test = 2
1062*053f45beSAndroid Build Coastguard Worker * test robustness use case - we release monitored area, fork a process
1063*053f45beSAndroid Build Coastguard Worker * that will generate pagefaults and verify signal is generated.
1064*053f45beSAndroid Build Coastguard Worker * This also tests UFFD_FEATURE_EVENT_FORK event along with the signal
1065*053f45beSAndroid Build Coastguard Worker * feature. Using monitor thread, verify no userfault events are generated.
1066*053f45beSAndroid Build Coastguard Worker */
faulting_process(int signal_test)1067*053f45beSAndroid Build Coastguard Worker static int faulting_process(int signal_test)
1068*053f45beSAndroid Build Coastguard Worker {
1069*053f45beSAndroid Build Coastguard Worker unsigned long nr;
1070*053f45beSAndroid Build Coastguard Worker unsigned long long count;
1071*053f45beSAndroid Build Coastguard Worker unsigned long split_nr_pages;
1072*053f45beSAndroid Build Coastguard Worker unsigned long lastnr;
1073*053f45beSAndroid Build Coastguard Worker struct sigaction act;
1074*053f45beSAndroid Build Coastguard Worker volatile unsigned long signalled = 0;
1075*053f45beSAndroid Build Coastguard Worker
1076*053f45beSAndroid Build Coastguard Worker split_nr_pages = (nr_pages + 1) / 2;
1077*053f45beSAndroid Build Coastguard Worker
1078*053f45beSAndroid Build Coastguard Worker if (signal_test) {
1079*053f45beSAndroid Build Coastguard Worker sigbuf = &jbuf;
1080*053f45beSAndroid Build Coastguard Worker memset(&act, 0, sizeof(act));
1081*053f45beSAndroid Build Coastguard Worker act.sa_sigaction = sighndl;
1082*053f45beSAndroid Build Coastguard Worker act.sa_flags = SA_SIGINFO;
1083*053f45beSAndroid Build Coastguard Worker if (sigaction(SIGBUS, &act, 0))
1084*053f45beSAndroid Build Coastguard Worker err("sigaction");
1085*053f45beSAndroid Build Coastguard Worker lastnr = (unsigned long)-1;
1086*053f45beSAndroid Build Coastguard Worker }
1087*053f45beSAndroid Build Coastguard Worker
1088*053f45beSAndroid Build Coastguard Worker for (nr = 0; nr < split_nr_pages; nr++) {
1089*053f45beSAndroid Build Coastguard Worker volatile int steps = 1;
1090*053f45beSAndroid Build Coastguard Worker unsigned long offset = nr * page_size;
1091*053f45beSAndroid Build Coastguard Worker
1092*053f45beSAndroid Build Coastguard Worker if (signal_test) {
1093*053f45beSAndroid Build Coastguard Worker if (sigsetjmp(*sigbuf, 1) != 0) {
1094*053f45beSAndroid Build Coastguard Worker if (steps == 1 && nr == lastnr)
1095*053f45beSAndroid Build Coastguard Worker err("Signal repeated");
1096*053f45beSAndroid Build Coastguard Worker
1097*053f45beSAndroid Build Coastguard Worker lastnr = nr;
1098*053f45beSAndroid Build Coastguard Worker if (signal_test == 1) {
1099*053f45beSAndroid Build Coastguard Worker if (steps == 1) {
1100*053f45beSAndroid Build Coastguard Worker /* This is a MISSING request */
1101*053f45beSAndroid Build Coastguard Worker steps++;
1102*053f45beSAndroid Build Coastguard Worker if (copy_page(uffd, offset))
1103*053f45beSAndroid Build Coastguard Worker signalled++;
1104*053f45beSAndroid Build Coastguard Worker } else {
1105*053f45beSAndroid Build Coastguard Worker /* This is a WP request */
1106*053f45beSAndroid Build Coastguard Worker assert(steps == 2);
1107*053f45beSAndroid Build Coastguard Worker wp_range(uffd,
1108*053f45beSAndroid Build Coastguard Worker (__u64)area_dst +
1109*053f45beSAndroid Build Coastguard Worker offset,
1110*053f45beSAndroid Build Coastguard Worker page_size, false);
1111*053f45beSAndroid Build Coastguard Worker }
1112*053f45beSAndroid Build Coastguard Worker } else {
1113*053f45beSAndroid Build Coastguard Worker signalled++;
1114*053f45beSAndroid Build Coastguard Worker continue;
1115*053f45beSAndroid Build Coastguard Worker }
1116*053f45beSAndroid Build Coastguard Worker }
1117*053f45beSAndroid Build Coastguard Worker }
1118*053f45beSAndroid Build Coastguard Worker
1119*053f45beSAndroid Build Coastguard Worker count = *area_count(area_dst, nr);
1120*053f45beSAndroid Build Coastguard Worker if (count != count_verify[nr])
1121*053f45beSAndroid Build Coastguard Worker err("nr %lu memory corruption %llu %llu\n",
1122*053f45beSAndroid Build Coastguard Worker nr, count, count_verify[nr]);
1123*053f45beSAndroid Build Coastguard Worker /*
1124*053f45beSAndroid Build Coastguard Worker * Trigger write protection if there is by writing
1125*053f45beSAndroid Build Coastguard Worker * the same value back.
1126*053f45beSAndroid Build Coastguard Worker */
1127*053f45beSAndroid Build Coastguard Worker *area_count(area_dst, nr) = count;
1128*053f45beSAndroid Build Coastguard Worker }
1129*053f45beSAndroid Build Coastguard Worker
1130*053f45beSAndroid Build Coastguard Worker if (signal_test)
1131*053f45beSAndroid Build Coastguard Worker return signalled != split_nr_pages;
1132*053f45beSAndroid Build Coastguard Worker
1133*053f45beSAndroid Build Coastguard Worker area_dst = mremap(area_dst, nr_pages * page_size, nr_pages * page_size,
1134*053f45beSAndroid Build Coastguard Worker MREMAP_MAYMOVE | MREMAP_FIXED, area_src);
1135*053f45beSAndroid Build Coastguard Worker if (area_dst == MAP_FAILED)
1136*053f45beSAndroid Build Coastguard Worker err("mremap");
1137*053f45beSAndroid Build Coastguard Worker /* Reset area_src since we just clobbered it */
1138*053f45beSAndroid Build Coastguard Worker area_src = NULL;
1139*053f45beSAndroid Build Coastguard Worker
1140*053f45beSAndroid Build Coastguard Worker for (; nr < nr_pages; nr++) {
1141*053f45beSAndroid Build Coastguard Worker count = *area_count(area_dst, nr);
1142*053f45beSAndroid Build Coastguard Worker if (count != count_verify[nr]) {
1143*053f45beSAndroid Build Coastguard Worker err("nr %lu memory corruption %llu %llu\n",
1144*053f45beSAndroid Build Coastguard Worker nr, count, count_verify[nr]);
1145*053f45beSAndroid Build Coastguard Worker }
1146*053f45beSAndroid Build Coastguard Worker /*
1147*053f45beSAndroid Build Coastguard Worker * Trigger write protection if there is by writing
1148*053f45beSAndroid Build Coastguard Worker * the same value back.
1149*053f45beSAndroid Build Coastguard Worker */
1150*053f45beSAndroid Build Coastguard Worker *area_count(area_dst, nr) = count;
1151*053f45beSAndroid Build Coastguard Worker }
1152*053f45beSAndroid Build Coastguard Worker
1153*053f45beSAndroid Build Coastguard Worker uffd_test_ops->release_pages(area_dst);
1154*053f45beSAndroid Build Coastguard Worker
1155*053f45beSAndroid Build Coastguard Worker for (nr = 0; nr < nr_pages; nr++)
1156*053f45beSAndroid Build Coastguard Worker if (my_bcmp(area_dst + nr * page_size, zeropage, page_size))
1157*053f45beSAndroid Build Coastguard Worker err("nr %lu is not zero", nr);
1158*053f45beSAndroid Build Coastguard Worker
1159*053f45beSAndroid Build Coastguard Worker return 0;
1160*053f45beSAndroid Build Coastguard Worker }
1161*053f45beSAndroid Build Coastguard Worker
retry_uffdio_zeropage(int ufd,struct uffdio_zeropage * uffdio_zeropage,unsigned long offset)1162*053f45beSAndroid Build Coastguard Worker static void retry_uffdio_zeropage(int ufd,
1163*053f45beSAndroid Build Coastguard Worker struct uffdio_zeropage *uffdio_zeropage,
1164*053f45beSAndroid Build Coastguard Worker unsigned long offset)
1165*053f45beSAndroid Build Coastguard Worker {
1166*053f45beSAndroid Build Coastguard Worker uffd_test_ops->alias_mapping(&uffdio_zeropage->range.start,
1167*053f45beSAndroid Build Coastguard Worker uffdio_zeropage->range.len,
1168*053f45beSAndroid Build Coastguard Worker offset);
1169*053f45beSAndroid Build Coastguard Worker if (ioctl(ufd, UFFDIO_ZEROPAGE, uffdio_zeropage)) {
1170*053f45beSAndroid Build Coastguard Worker if (uffdio_zeropage->zeropage != -EEXIST)
1171*053f45beSAndroid Build Coastguard Worker err("UFFDIO_ZEROPAGE error: %"PRId64,
1172*053f45beSAndroid Build Coastguard Worker (int64_t)uffdio_zeropage->zeropage);
1173*053f45beSAndroid Build Coastguard Worker } else {
1174*053f45beSAndroid Build Coastguard Worker err("UFFDIO_ZEROPAGE error: %"PRId64,
1175*053f45beSAndroid Build Coastguard Worker (int64_t)uffdio_zeropage->zeropage);
1176*053f45beSAndroid Build Coastguard Worker }
1177*053f45beSAndroid Build Coastguard Worker }
1178*053f45beSAndroid Build Coastguard Worker
__uffdio_zeropage(int ufd,unsigned long offset,bool retry)1179*053f45beSAndroid Build Coastguard Worker static int __uffdio_zeropage(int ufd, unsigned long offset, bool retry)
1180*053f45beSAndroid Build Coastguard Worker {
1181*053f45beSAndroid Build Coastguard Worker struct uffdio_zeropage uffdio_zeropage;
1182*053f45beSAndroid Build Coastguard Worker int ret;
1183*053f45beSAndroid Build Coastguard Worker bool has_zeropage = get_expected_ioctls(0) & (1 << _UFFDIO_ZEROPAGE);
1184*053f45beSAndroid Build Coastguard Worker __s64 res;
1185*053f45beSAndroid Build Coastguard Worker
1186*053f45beSAndroid Build Coastguard Worker if (offset >= nr_pages * page_size)
1187*053f45beSAndroid Build Coastguard Worker err("unexpected offset %lu", offset);
1188*053f45beSAndroid Build Coastguard Worker uffdio_zeropage.range.start = (unsigned long) area_dst + offset;
1189*053f45beSAndroid Build Coastguard Worker uffdio_zeropage.range.len = page_size;
1190*053f45beSAndroid Build Coastguard Worker uffdio_zeropage.mode = 0;
1191*053f45beSAndroid Build Coastguard Worker ret = ioctl(ufd, UFFDIO_ZEROPAGE, &uffdio_zeropage);
1192*053f45beSAndroid Build Coastguard Worker res = uffdio_zeropage.zeropage;
1193*053f45beSAndroid Build Coastguard Worker if (ret) {
1194*053f45beSAndroid Build Coastguard Worker /* real retval in ufdio_zeropage.zeropage */
1195*053f45beSAndroid Build Coastguard Worker if (has_zeropage)
1196*053f45beSAndroid Build Coastguard Worker err("UFFDIO_ZEROPAGE error: %"PRId64, (int64_t)res);
1197*053f45beSAndroid Build Coastguard Worker else if (res != -EINVAL)
1198*053f45beSAndroid Build Coastguard Worker err("UFFDIO_ZEROPAGE not -EINVAL");
1199*053f45beSAndroid Build Coastguard Worker } else if (has_zeropage) {
1200*053f45beSAndroid Build Coastguard Worker if (res != page_size) {
1201*053f45beSAndroid Build Coastguard Worker err("UFFDIO_ZEROPAGE unexpected size");
1202*053f45beSAndroid Build Coastguard Worker } else {
1203*053f45beSAndroid Build Coastguard Worker if (test_uffdio_zeropage_eexist && retry) {
1204*053f45beSAndroid Build Coastguard Worker test_uffdio_zeropage_eexist = false;
1205*053f45beSAndroid Build Coastguard Worker retry_uffdio_zeropage(ufd, &uffdio_zeropage,
1206*053f45beSAndroid Build Coastguard Worker offset);
1207*053f45beSAndroid Build Coastguard Worker }
1208*053f45beSAndroid Build Coastguard Worker return 1;
1209*053f45beSAndroid Build Coastguard Worker }
1210*053f45beSAndroid Build Coastguard Worker } else
1211*053f45beSAndroid Build Coastguard Worker err("UFFDIO_ZEROPAGE succeeded");
1212*053f45beSAndroid Build Coastguard Worker
1213*053f45beSAndroid Build Coastguard Worker return 0;
1214*053f45beSAndroid Build Coastguard Worker }
1215*053f45beSAndroid Build Coastguard Worker
uffdio_zeropage(int ufd,unsigned long offset)1216*053f45beSAndroid Build Coastguard Worker static int uffdio_zeropage(int ufd, unsigned long offset)
1217*053f45beSAndroid Build Coastguard Worker {
1218*053f45beSAndroid Build Coastguard Worker return __uffdio_zeropage(ufd, offset, false);
1219*053f45beSAndroid Build Coastguard Worker }
1220*053f45beSAndroid Build Coastguard Worker
1221*053f45beSAndroid Build Coastguard Worker /* exercise UFFDIO_ZEROPAGE */
userfaultfd_zeropage_test(void)1222*053f45beSAndroid Build Coastguard Worker static int userfaultfd_zeropage_test(void)
1223*053f45beSAndroid Build Coastguard Worker {
1224*053f45beSAndroid Build Coastguard Worker struct uffdio_register uffdio_register;
1225*053f45beSAndroid Build Coastguard Worker
1226*053f45beSAndroid Build Coastguard Worker printf("testing UFFDIO_ZEROPAGE: ");
1227*053f45beSAndroid Build Coastguard Worker fflush(stdout);
1228*053f45beSAndroid Build Coastguard Worker
1229*053f45beSAndroid Build Coastguard Worker uffd_test_ctx_init(0);
1230*053f45beSAndroid Build Coastguard Worker
1231*053f45beSAndroid Build Coastguard Worker uffdio_register.range.start = (unsigned long) area_dst;
1232*053f45beSAndroid Build Coastguard Worker uffdio_register.range.len = nr_pages * page_size;
1233*053f45beSAndroid Build Coastguard Worker uffdio_register.mode = UFFDIO_REGISTER_MODE_MISSING;
1234*053f45beSAndroid Build Coastguard Worker if (test_uffdio_wp)
1235*053f45beSAndroid Build Coastguard Worker uffdio_register.mode |= UFFDIO_REGISTER_MODE_WP;
1236*053f45beSAndroid Build Coastguard Worker if (ioctl(uffd, UFFDIO_REGISTER, &uffdio_register))
1237*053f45beSAndroid Build Coastguard Worker err("register failure");
1238*053f45beSAndroid Build Coastguard Worker
1239*053f45beSAndroid Build Coastguard Worker assert_expected_ioctls_present(
1240*053f45beSAndroid Build Coastguard Worker uffdio_register.mode, uffdio_register.ioctls);
1241*053f45beSAndroid Build Coastguard Worker
1242*053f45beSAndroid Build Coastguard Worker if (uffdio_zeropage(uffd, 0))
1243*053f45beSAndroid Build Coastguard Worker if (my_bcmp(area_dst, zeropage, page_size))
1244*053f45beSAndroid Build Coastguard Worker err("zeropage is not zero");
1245*053f45beSAndroid Build Coastguard Worker
1246*053f45beSAndroid Build Coastguard Worker printf("done.\n");
1247*053f45beSAndroid Build Coastguard Worker return 0;
1248*053f45beSAndroid Build Coastguard Worker }
1249*053f45beSAndroid Build Coastguard Worker
userfaultfd_events_test(void)1250*053f45beSAndroid Build Coastguard Worker static int userfaultfd_events_test(void)
1251*053f45beSAndroid Build Coastguard Worker {
1252*053f45beSAndroid Build Coastguard Worker struct uffdio_register uffdio_register;
1253*053f45beSAndroid Build Coastguard Worker pthread_t uffd_mon;
1254*053f45beSAndroid Build Coastguard Worker int err, features;
1255*053f45beSAndroid Build Coastguard Worker pid_t pid;
1256*053f45beSAndroid Build Coastguard Worker char c;
1257*053f45beSAndroid Build Coastguard Worker struct uffd_stats stats = { 0 };
1258*053f45beSAndroid Build Coastguard Worker
1259*053f45beSAndroid Build Coastguard Worker // All the syscalls below up to pthread_create will ensure that this
1260*053f45beSAndroid Build Coastguard Worker // write is completed before, the uffd_thread sets it to true.
1261*053f45beSAndroid Build Coastguard Worker ready_for_fork = false;
1262*053f45beSAndroid Build Coastguard Worker
1263*053f45beSAndroid Build Coastguard Worker printf("testing events (fork, remap, remove): ");
1264*053f45beSAndroid Build Coastguard Worker fflush(stdout);
1265*053f45beSAndroid Build Coastguard Worker
1266*053f45beSAndroid Build Coastguard Worker features = UFFD_FEATURE_EVENT_FORK | UFFD_FEATURE_EVENT_REMAP |
1267*053f45beSAndroid Build Coastguard Worker UFFD_FEATURE_EVENT_REMOVE;
1268*053f45beSAndroid Build Coastguard Worker uffd_test_ctx_init(features);
1269*053f45beSAndroid Build Coastguard Worker
1270*053f45beSAndroid Build Coastguard Worker fcntl(uffd, F_SETFL, uffd_flags | O_NONBLOCK);
1271*053f45beSAndroid Build Coastguard Worker
1272*053f45beSAndroid Build Coastguard Worker uffdio_register.range.start = (unsigned long) area_dst;
1273*053f45beSAndroid Build Coastguard Worker uffdio_register.range.len = nr_pages * page_size;
1274*053f45beSAndroid Build Coastguard Worker uffdio_register.mode = UFFDIO_REGISTER_MODE_MISSING;
1275*053f45beSAndroid Build Coastguard Worker if (test_uffdio_wp)
1276*053f45beSAndroid Build Coastguard Worker uffdio_register.mode |= UFFDIO_REGISTER_MODE_WP;
1277*053f45beSAndroid Build Coastguard Worker if (ioctl(uffd, UFFDIO_REGISTER, &uffdio_register))
1278*053f45beSAndroid Build Coastguard Worker err("register failure");
1279*053f45beSAndroid Build Coastguard Worker
1280*053f45beSAndroid Build Coastguard Worker assert_expected_ioctls_present(
1281*053f45beSAndroid Build Coastguard Worker uffdio_register.mode, uffdio_register.ioctls);
1282*053f45beSAndroid Build Coastguard Worker
1283*053f45beSAndroid Build Coastguard Worker if (pthread_create(&uffd_mon, &attr, uffd_poll_thread, &stats))
1284*053f45beSAndroid Build Coastguard Worker err("uffd_poll_thread create");
1285*053f45beSAndroid Build Coastguard Worker
1286*053f45beSAndroid Build Coastguard Worker // Wait for the poll_thread to start executing before forking. This is
1287*053f45beSAndroid Build Coastguard Worker // required to avoid a deadlock, which can happen if poll_thread doesn't
1288*053f45beSAndroid Build Coastguard Worker // start getting executed by the time fork is invoked.
1289*053f45beSAndroid Build Coastguard Worker while (!ready_for_fork);
1290*053f45beSAndroid Build Coastguard Worker
1291*053f45beSAndroid Build Coastguard Worker pid = fork();
1292*053f45beSAndroid Build Coastguard Worker if (pid < 0)
1293*053f45beSAndroid Build Coastguard Worker err("fork");
1294*053f45beSAndroid Build Coastguard Worker
1295*053f45beSAndroid Build Coastguard Worker if (!pid)
1296*053f45beSAndroid Build Coastguard Worker exit(faulting_process(0));
1297*053f45beSAndroid Build Coastguard Worker
1298*053f45beSAndroid Build Coastguard Worker waitpid(pid, &err, 0);
1299*053f45beSAndroid Build Coastguard Worker if (err)
1300*053f45beSAndroid Build Coastguard Worker err("faulting process failed");
1301*053f45beSAndroid Build Coastguard Worker if (write(pipefd[1], &c, sizeof(c)) != sizeof(c))
1302*053f45beSAndroid Build Coastguard Worker err("pipe write");
1303*053f45beSAndroid Build Coastguard Worker if (pthread_join(uffd_mon, NULL))
1304*053f45beSAndroid Build Coastguard Worker return 1;
1305*053f45beSAndroid Build Coastguard Worker
1306*053f45beSAndroid Build Coastguard Worker uffd_stats_report(&stats, 1);
1307*053f45beSAndroid Build Coastguard Worker
1308*053f45beSAndroid Build Coastguard Worker return stats.missing_faults != nr_pages;
1309*053f45beSAndroid Build Coastguard Worker }
1310*053f45beSAndroid Build Coastguard Worker
userfaultfd_sig_test(void)1311*053f45beSAndroid Build Coastguard Worker static int userfaultfd_sig_test(void)
1312*053f45beSAndroid Build Coastguard Worker {
1313*053f45beSAndroid Build Coastguard Worker struct uffdio_register uffdio_register;
1314*053f45beSAndroid Build Coastguard Worker unsigned long userfaults;
1315*053f45beSAndroid Build Coastguard Worker pthread_t uffd_mon;
1316*053f45beSAndroid Build Coastguard Worker int err, features;
1317*053f45beSAndroid Build Coastguard Worker pid_t pid;
1318*053f45beSAndroid Build Coastguard Worker char c;
1319*053f45beSAndroid Build Coastguard Worker struct uffd_stats stats = { 0 };
1320*053f45beSAndroid Build Coastguard Worker
1321*053f45beSAndroid Build Coastguard Worker // All the syscalls below up to pthread_create will ensure that this
1322*053f45beSAndroid Build Coastguard Worker // write is completed before, the uffd_thread sets it to true.
1323*053f45beSAndroid Build Coastguard Worker ready_for_fork = false;
1324*053f45beSAndroid Build Coastguard Worker
1325*053f45beSAndroid Build Coastguard Worker printf("testing signal delivery: ");
1326*053f45beSAndroid Build Coastguard Worker fflush(stdout);
1327*053f45beSAndroid Build Coastguard Worker
1328*053f45beSAndroid Build Coastguard Worker features = UFFD_FEATURE_EVENT_FORK|UFFD_FEATURE_SIGBUS;
1329*053f45beSAndroid Build Coastguard Worker uffd_test_ctx_init(features);
1330*053f45beSAndroid Build Coastguard Worker
1331*053f45beSAndroid Build Coastguard Worker fcntl(uffd, F_SETFL, uffd_flags | O_NONBLOCK);
1332*053f45beSAndroid Build Coastguard Worker
1333*053f45beSAndroid Build Coastguard Worker uffdio_register.range.start = (unsigned long) area_dst;
1334*053f45beSAndroid Build Coastguard Worker uffdio_register.range.len = nr_pages * page_size;
1335*053f45beSAndroid Build Coastguard Worker uffdio_register.mode = UFFDIO_REGISTER_MODE_MISSING;
1336*053f45beSAndroid Build Coastguard Worker if (test_uffdio_wp)
1337*053f45beSAndroid Build Coastguard Worker uffdio_register.mode |= UFFDIO_REGISTER_MODE_WP;
1338*053f45beSAndroid Build Coastguard Worker if (ioctl(uffd, UFFDIO_REGISTER, &uffdio_register))
1339*053f45beSAndroid Build Coastguard Worker err("register failure");
1340*053f45beSAndroid Build Coastguard Worker
1341*053f45beSAndroid Build Coastguard Worker assert_expected_ioctls_present(
1342*053f45beSAndroid Build Coastguard Worker uffdio_register.mode, uffdio_register.ioctls);
1343*053f45beSAndroid Build Coastguard Worker
1344*053f45beSAndroid Build Coastguard Worker if (faulting_process(1))
1345*053f45beSAndroid Build Coastguard Worker err("faulting process failed");
1346*053f45beSAndroid Build Coastguard Worker
1347*053f45beSAndroid Build Coastguard Worker uffd_test_ops->release_pages(area_dst);
1348*053f45beSAndroid Build Coastguard Worker
1349*053f45beSAndroid Build Coastguard Worker if (pthread_create(&uffd_mon, &attr, uffd_poll_thread, &stats))
1350*053f45beSAndroid Build Coastguard Worker err("uffd_poll_thread create");
1351*053f45beSAndroid Build Coastguard Worker
1352*053f45beSAndroid Build Coastguard Worker // Wait for the poll_thread to start executing before forking. This is
1353*053f45beSAndroid Build Coastguard Worker // required to avoid a deadlock, which can happen if poll_thread doesn't
1354*053f45beSAndroid Build Coastguard Worker // start getting executed by the time fork is invoked.
1355*053f45beSAndroid Build Coastguard Worker while (!ready_for_fork);
1356*053f45beSAndroid Build Coastguard Worker
1357*053f45beSAndroid Build Coastguard Worker pid = fork();
1358*053f45beSAndroid Build Coastguard Worker if (pid < 0)
1359*053f45beSAndroid Build Coastguard Worker err("fork");
1360*053f45beSAndroid Build Coastguard Worker
1361*053f45beSAndroid Build Coastguard Worker if (!pid)
1362*053f45beSAndroid Build Coastguard Worker exit(faulting_process(2));
1363*053f45beSAndroid Build Coastguard Worker
1364*053f45beSAndroid Build Coastguard Worker waitpid(pid, &err, 0);
1365*053f45beSAndroid Build Coastguard Worker if (err)
1366*053f45beSAndroid Build Coastguard Worker err("faulting process failed");
1367*053f45beSAndroid Build Coastguard Worker if (write(pipefd[1], &c, sizeof(c)) != sizeof(c))
1368*053f45beSAndroid Build Coastguard Worker err("pipe write");
1369*053f45beSAndroid Build Coastguard Worker if (pthread_join(uffd_mon, (void **)&userfaults))
1370*053f45beSAndroid Build Coastguard Worker return 1;
1371*053f45beSAndroid Build Coastguard Worker
1372*053f45beSAndroid Build Coastguard Worker printf("done.\n");
1373*053f45beSAndroid Build Coastguard Worker if (userfaults)
1374*053f45beSAndroid Build Coastguard Worker err("Signal test failed, userfaults: %ld", userfaults);
1375*053f45beSAndroid Build Coastguard Worker
1376*053f45beSAndroid Build Coastguard Worker return userfaults != 0;
1377*053f45beSAndroid Build Coastguard Worker }
1378*053f45beSAndroid Build Coastguard Worker
check_memory_contents(char * p)1379*053f45beSAndroid Build Coastguard Worker void check_memory_contents(char *p)
1380*053f45beSAndroid Build Coastguard Worker {
1381*053f45beSAndroid Build Coastguard Worker unsigned long i;
1382*053f45beSAndroid Build Coastguard Worker uint8_t expected_byte;
1383*053f45beSAndroid Build Coastguard Worker void *expected_page;
1384*053f45beSAndroid Build Coastguard Worker
1385*053f45beSAndroid Build Coastguard Worker if (posix_memalign(&expected_page, page_size, page_size))
1386*053f45beSAndroid Build Coastguard Worker err("out of memory");
1387*053f45beSAndroid Build Coastguard Worker
1388*053f45beSAndroid Build Coastguard Worker for (i = 0; i < nr_pages; ++i) {
1389*053f45beSAndroid Build Coastguard Worker expected_byte = ~((uint8_t)(i % ((uint8_t)-1)));
1390*053f45beSAndroid Build Coastguard Worker memset(expected_page, expected_byte, page_size);
1391*053f45beSAndroid Build Coastguard Worker if (my_bcmp(expected_page, p + (i * page_size), page_size))
1392*053f45beSAndroid Build Coastguard Worker err("unexpected page contents after minor fault");
1393*053f45beSAndroid Build Coastguard Worker }
1394*053f45beSAndroid Build Coastguard Worker
1395*053f45beSAndroid Build Coastguard Worker free(expected_page);
1396*053f45beSAndroid Build Coastguard Worker }
1397*053f45beSAndroid Build Coastguard Worker
userfaultfd_minor_test(void)1398*053f45beSAndroid Build Coastguard Worker static int userfaultfd_minor_test(void)
1399*053f45beSAndroid Build Coastguard Worker {
1400*053f45beSAndroid Build Coastguard Worker unsigned long p;
1401*053f45beSAndroid Build Coastguard Worker struct uffdio_register uffdio_register;
1402*053f45beSAndroid Build Coastguard Worker pthread_t uffd_mon;
1403*053f45beSAndroid Build Coastguard Worker char c;
1404*053f45beSAndroid Build Coastguard Worker struct uffd_stats stats = { 0 };
1405*053f45beSAndroid Build Coastguard Worker
1406*053f45beSAndroid Build Coastguard Worker if (!test_uffdio_minor)
1407*053f45beSAndroid Build Coastguard Worker return 0;
1408*053f45beSAndroid Build Coastguard Worker
1409*053f45beSAndroid Build Coastguard Worker printf("testing minor faults: ");
1410*053f45beSAndroid Build Coastguard Worker fflush(stdout);
1411*053f45beSAndroid Build Coastguard Worker
1412*053f45beSAndroid Build Coastguard Worker uffd_test_ctx_init(uffd_minor_feature());
1413*053f45beSAndroid Build Coastguard Worker
1414*053f45beSAndroid Build Coastguard Worker uffdio_register.range.start = (unsigned long)area_dst_alias;
1415*053f45beSAndroid Build Coastguard Worker uffdio_register.range.len = nr_pages * page_size;
1416*053f45beSAndroid Build Coastguard Worker uffdio_register.mode = UFFDIO_REGISTER_MODE_MINOR;
1417*053f45beSAndroid Build Coastguard Worker if (ioctl(uffd, UFFDIO_REGISTER, &uffdio_register))
1418*053f45beSAndroid Build Coastguard Worker err("register failure");
1419*053f45beSAndroid Build Coastguard Worker
1420*053f45beSAndroid Build Coastguard Worker assert_expected_ioctls_present(
1421*053f45beSAndroid Build Coastguard Worker uffdio_register.mode, uffdio_register.ioctls);
1422*053f45beSAndroid Build Coastguard Worker
1423*053f45beSAndroid Build Coastguard Worker /*
1424*053f45beSAndroid Build Coastguard Worker * After registering with UFFD, populate the non-UFFD-registered side of
1425*053f45beSAndroid Build Coastguard Worker * the shared mapping. This should *not* trigger any UFFD minor faults.
1426*053f45beSAndroid Build Coastguard Worker */
1427*053f45beSAndroid Build Coastguard Worker for (p = 0; p < nr_pages; ++p) {
1428*053f45beSAndroid Build Coastguard Worker memset(area_dst + (p * page_size), p % ((uint8_t)-1),
1429*053f45beSAndroid Build Coastguard Worker page_size);
1430*053f45beSAndroid Build Coastguard Worker }
1431*053f45beSAndroid Build Coastguard Worker
1432*053f45beSAndroid Build Coastguard Worker if (pthread_create(&uffd_mon, &attr, uffd_poll_thread, &stats))
1433*053f45beSAndroid Build Coastguard Worker err("uffd_poll_thread create");
1434*053f45beSAndroid Build Coastguard Worker
1435*053f45beSAndroid Build Coastguard Worker /*
1436*053f45beSAndroid Build Coastguard Worker * Read each of the pages back using the UFFD-registered mapping. We
1437*053f45beSAndroid Build Coastguard Worker * expect that the first time we touch a page, it will result in a minor
1438*053f45beSAndroid Build Coastguard Worker * fault. uffd_poll_thread will resolve the fault by bit-flipping the
1439*053f45beSAndroid Build Coastguard Worker * page's contents, and then issuing a CONTINUE ioctl.
1440*053f45beSAndroid Build Coastguard Worker */
1441*053f45beSAndroid Build Coastguard Worker check_memory_contents(area_dst_alias);
1442*053f45beSAndroid Build Coastguard Worker
1443*053f45beSAndroid Build Coastguard Worker if (write(pipefd[1], &c, sizeof(c)) != sizeof(c))
1444*053f45beSAndroid Build Coastguard Worker err("pipe write");
1445*053f45beSAndroid Build Coastguard Worker if (pthread_join(uffd_mon, NULL))
1446*053f45beSAndroid Build Coastguard Worker return 1;
1447*053f45beSAndroid Build Coastguard Worker
1448*053f45beSAndroid Build Coastguard Worker uffd_stats_report(&stats, 1);
1449*053f45beSAndroid Build Coastguard Worker
1450*053f45beSAndroid Build Coastguard Worker if (test_collapse) {
1451*053f45beSAndroid Build Coastguard Worker printf("testing collapse of uffd memory into PMD-mapped THPs:");
1452*053f45beSAndroid Build Coastguard Worker if (madvise(area_dst_alias, nr_pages * page_size,
1453*053f45beSAndroid Build Coastguard Worker MADV_COLLAPSE))
1454*053f45beSAndroid Build Coastguard Worker err("madvise(MADV_COLLAPSE)");
1455*053f45beSAndroid Build Coastguard Worker
1456*053f45beSAndroid Build Coastguard Worker uffd_test_ops->check_pmd_mapping(area_dst,
1457*053f45beSAndroid Build Coastguard Worker nr_pages * page_size /
1458*053f45beSAndroid Build Coastguard Worker hpage_size);
1459*053f45beSAndroid Build Coastguard Worker /*
1460*053f45beSAndroid Build Coastguard Worker * This won't cause uffd-fault - it purely just makes sure there
1461*053f45beSAndroid Build Coastguard Worker * was no corruption.
1462*053f45beSAndroid Build Coastguard Worker */
1463*053f45beSAndroid Build Coastguard Worker check_memory_contents(area_dst_alias);
1464*053f45beSAndroid Build Coastguard Worker printf(" done.\n");
1465*053f45beSAndroid Build Coastguard Worker }
1466*053f45beSAndroid Build Coastguard Worker
1467*053f45beSAndroid Build Coastguard Worker return stats.missing_faults != 0 || stats.minor_faults != nr_pages;
1468*053f45beSAndroid Build Coastguard Worker }
1469*053f45beSAndroid Build Coastguard Worker
1470*053f45beSAndroid Build Coastguard Worker #define BIT_ULL(nr) (1ULL << (nr))
1471*053f45beSAndroid Build Coastguard Worker #define PM_SOFT_DIRTY BIT_ULL(55)
1472*053f45beSAndroid Build Coastguard Worker #define PM_MMAP_EXCLUSIVE BIT_ULL(56)
1473*053f45beSAndroid Build Coastguard Worker #define PM_UFFD_WP BIT_ULL(57)
1474*053f45beSAndroid Build Coastguard Worker #define PM_FILE BIT_ULL(61)
1475*053f45beSAndroid Build Coastguard Worker #define PM_SWAP BIT_ULL(62)
1476*053f45beSAndroid Build Coastguard Worker #define PM_PRESENT BIT_ULL(63)
1477*053f45beSAndroid Build Coastguard Worker
1478*053f45beSAndroid Build Coastguard Worker /*
1479*053f45beSAndroid Build Coastguard Worker * b/232026677
1480*053f45beSAndroid Build Coastguard Worker * pagemap not compatible with < 5.14
1481*053f45beSAndroid Build Coastguard Worker */
1482*053f45beSAndroid Build Coastguard Worker #ifndef __ANDROID__
pagemap_open(void)1483*053f45beSAndroid Build Coastguard Worker static int pagemap_open(void)
1484*053f45beSAndroid Build Coastguard Worker {
1485*053f45beSAndroid Build Coastguard Worker int fd = open("/proc/self/pagemap", O_RDONLY);
1486*053f45beSAndroid Build Coastguard Worker
1487*053f45beSAndroid Build Coastguard Worker if (fd < 0)
1488*053f45beSAndroid Build Coastguard Worker err("open pagemap");
1489*053f45beSAndroid Build Coastguard Worker
1490*053f45beSAndroid Build Coastguard Worker return fd;
1491*053f45beSAndroid Build Coastguard Worker }
1492*053f45beSAndroid Build Coastguard Worker
pagemap_read_vaddr(int fd,void * vaddr)1493*053f45beSAndroid Build Coastguard Worker static uint64_t pagemap_read_vaddr(int fd, void *vaddr)
1494*053f45beSAndroid Build Coastguard Worker {
1495*053f45beSAndroid Build Coastguard Worker uint64_t value;
1496*053f45beSAndroid Build Coastguard Worker int ret;
1497*053f45beSAndroid Build Coastguard Worker
1498*053f45beSAndroid Build Coastguard Worker ret = pread(fd, &value, sizeof(uint64_t),
1499*053f45beSAndroid Build Coastguard Worker ((uint64_t)vaddr >> 12) * sizeof(uint64_t));
1500*053f45beSAndroid Build Coastguard Worker if (ret != sizeof(uint64_t))
1501*053f45beSAndroid Build Coastguard Worker err("pread() on pagemap failed");
1502*053f45beSAndroid Build Coastguard Worker
1503*053f45beSAndroid Build Coastguard Worker return value;
1504*053f45beSAndroid Build Coastguard Worker }
1505*053f45beSAndroid Build Coastguard Worker
1506*053f45beSAndroid Build Coastguard Worker /* This macro let __LINE__ works in err() */
1507*053f45beSAndroid Build Coastguard Worker #define pagemap_check_wp(value, wp) do { \
1508*053f45beSAndroid Build Coastguard Worker if (!!(value & PM_UFFD_WP) != wp) \
1509*053f45beSAndroid Build Coastguard Worker err("pagemap uffd-wp bit error: 0x%"PRIx64, value); \
1510*053f45beSAndroid Build Coastguard Worker } while (0)
1511*053f45beSAndroid Build Coastguard Worker
pagemap_test_fork(bool present)1512*053f45beSAndroid Build Coastguard Worker static int pagemap_test_fork(bool present)
1513*053f45beSAndroid Build Coastguard Worker {
1514*053f45beSAndroid Build Coastguard Worker pid_t child = fork();
1515*053f45beSAndroid Build Coastguard Worker uint64_t value;
1516*053f45beSAndroid Build Coastguard Worker int fd, result;
1517*053f45beSAndroid Build Coastguard Worker
1518*053f45beSAndroid Build Coastguard Worker if (!child) {
1519*053f45beSAndroid Build Coastguard Worker /* Open the pagemap fd of the child itself */
1520*053f45beSAndroid Build Coastguard Worker fd = pagemap_open();
1521*053f45beSAndroid Build Coastguard Worker value = pagemap_read_vaddr(fd, area_dst);
1522*053f45beSAndroid Build Coastguard Worker /*
1523*053f45beSAndroid Build Coastguard Worker * After fork() uffd-wp bit should be gone as long as we're
1524*053f45beSAndroid Build Coastguard Worker * without UFFD_FEATURE_EVENT_FORK
1525*053f45beSAndroid Build Coastguard Worker */
1526*053f45beSAndroid Build Coastguard Worker pagemap_check_wp(value, false);
1527*053f45beSAndroid Build Coastguard Worker /* Succeed */
1528*053f45beSAndroid Build Coastguard Worker exit(0);
1529*053f45beSAndroid Build Coastguard Worker }
1530*053f45beSAndroid Build Coastguard Worker waitpid(child, &result, 0);
1531*053f45beSAndroid Build Coastguard Worker return result;
1532*053f45beSAndroid Build Coastguard Worker }
1533*053f45beSAndroid Build Coastguard Worker
userfaultfd_pagemap_test(unsigned int test_pgsize)1534*053f45beSAndroid Build Coastguard Worker static void userfaultfd_pagemap_test(unsigned int test_pgsize)
1535*053f45beSAndroid Build Coastguard Worker {
1536*053f45beSAndroid Build Coastguard Worker struct uffdio_register uffdio_register;
1537*053f45beSAndroid Build Coastguard Worker int pagemap_fd;
1538*053f45beSAndroid Build Coastguard Worker uint64_t value;
1539*053f45beSAndroid Build Coastguard Worker
1540*053f45beSAndroid Build Coastguard Worker /* Pagemap tests uffd-wp only */
1541*053f45beSAndroid Build Coastguard Worker if (!test_uffdio_wp)
1542*053f45beSAndroid Build Coastguard Worker return;
1543*053f45beSAndroid Build Coastguard Worker
1544*053f45beSAndroid Build Coastguard Worker /* Not enough memory to test this page size */
1545*053f45beSAndroid Build Coastguard Worker if (test_pgsize > nr_pages * page_size)
1546*053f45beSAndroid Build Coastguard Worker return;
1547*053f45beSAndroid Build Coastguard Worker
1548*053f45beSAndroid Build Coastguard Worker printf("testing uffd-wp with pagemap (pgsize=%u): ", test_pgsize);
1549*053f45beSAndroid Build Coastguard Worker /* Flush so it doesn't flush twice in parent/child later */
1550*053f45beSAndroid Build Coastguard Worker fflush(stdout);
1551*053f45beSAndroid Build Coastguard Worker
1552*053f45beSAndroid Build Coastguard Worker uffd_test_ctx_init(0);
1553*053f45beSAndroid Build Coastguard Worker
1554*053f45beSAndroid Build Coastguard Worker if (test_pgsize > page_size) {
1555*053f45beSAndroid Build Coastguard Worker /* This is a thp test */
1556*053f45beSAndroid Build Coastguard Worker if (madvise(area_dst, nr_pages * page_size, MADV_HUGEPAGE))
1557*053f45beSAndroid Build Coastguard Worker err("madvise(MADV_HUGEPAGE) failed");
1558*053f45beSAndroid Build Coastguard Worker } else if (test_pgsize == page_size) {
1559*053f45beSAndroid Build Coastguard Worker /* This is normal page test; force no thp */
1560*053f45beSAndroid Build Coastguard Worker if (madvise(area_dst, nr_pages * page_size, MADV_NOHUGEPAGE))
1561*053f45beSAndroid Build Coastguard Worker err("madvise(MADV_NOHUGEPAGE) failed");
1562*053f45beSAndroid Build Coastguard Worker }
1563*053f45beSAndroid Build Coastguard Worker
1564*053f45beSAndroid Build Coastguard Worker uffdio_register.range.start = (unsigned long) area_dst;
1565*053f45beSAndroid Build Coastguard Worker uffdio_register.range.len = nr_pages * page_size;
1566*053f45beSAndroid Build Coastguard Worker uffdio_register.mode = UFFDIO_REGISTER_MODE_WP;
1567*053f45beSAndroid Build Coastguard Worker if (ioctl(uffd, UFFDIO_REGISTER, &uffdio_register))
1568*053f45beSAndroid Build Coastguard Worker err("register failed");
1569*053f45beSAndroid Build Coastguard Worker
1570*053f45beSAndroid Build Coastguard Worker pagemap_fd = pagemap_open();
1571*053f45beSAndroid Build Coastguard Worker
1572*053f45beSAndroid Build Coastguard Worker /* Touch the page */
1573*053f45beSAndroid Build Coastguard Worker *area_dst = 1;
1574*053f45beSAndroid Build Coastguard Worker wp_range(uffd, (uint64_t)area_dst, test_pgsize, true);
1575*053f45beSAndroid Build Coastguard Worker value = pagemap_read_vaddr(pagemap_fd, area_dst);
1576*053f45beSAndroid Build Coastguard Worker pagemap_check_wp(value, true);
1577*053f45beSAndroid Build Coastguard Worker /* Make sure uffd-wp bit dropped when fork */
1578*053f45beSAndroid Build Coastguard Worker if (pagemap_test_fork(true))
1579*053f45beSAndroid Build Coastguard Worker err("Detected stall uffd-wp bit in child");
1580*053f45beSAndroid Build Coastguard Worker
1581*053f45beSAndroid Build Coastguard Worker /* Exclusive required or PAGEOUT won't work */
1582*053f45beSAndroid Build Coastguard Worker if (!(value & PM_MMAP_EXCLUSIVE))
1583*053f45beSAndroid Build Coastguard Worker err("multiple mapping detected: 0x%"PRIx64, value);
1584*053f45beSAndroid Build Coastguard Worker
1585*053f45beSAndroid Build Coastguard Worker if (madvise(area_dst, test_pgsize, MADV_PAGEOUT))
1586*053f45beSAndroid Build Coastguard Worker err("madvise(MADV_PAGEOUT) failed");
1587*053f45beSAndroid Build Coastguard Worker
1588*053f45beSAndroid Build Coastguard Worker /* Uffd-wp should persist even swapped out */
1589*053f45beSAndroid Build Coastguard Worker value = pagemap_read_vaddr(pagemap_fd, area_dst);
1590*053f45beSAndroid Build Coastguard Worker pagemap_check_wp(value, true);
1591*053f45beSAndroid Build Coastguard Worker /* Make sure uffd-wp bit dropped when fork */
1592*053f45beSAndroid Build Coastguard Worker if (pagemap_test_fork(false))
1593*053f45beSAndroid Build Coastguard Worker err("Detected stall uffd-wp bit in child");
1594*053f45beSAndroid Build Coastguard Worker
1595*053f45beSAndroid Build Coastguard Worker /* Unprotect; this tests swap pte modifications */
1596*053f45beSAndroid Build Coastguard Worker wp_range(uffd, (uint64_t)area_dst, page_size, false);
1597*053f45beSAndroid Build Coastguard Worker value = pagemap_read_vaddr(pagemap_fd, area_dst);
1598*053f45beSAndroid Build Coastguard Worker pagemap_check_wp(value, false);
1599*053f45beSAndroid Build Coastguard Worker
1600*053f45beSAndroid Build Coastguard Worker /* Fault in the page from disk */
1601*053f45beSAndroid Build Coastguard Worker *area_dst = 2;
1602*053f45beSAndroid Build Coastguard Worker value = pagemap_read_vaddr(pagemap_fd, area_dst);
1603*053f45beSAndroid Build Coastguard Worker pagemap_check_wp(value, false);
1604*053f45beSAndroid Build Coastguard Worker
1605*053f45beSAndroid Build Coastguard Worker close(pagemap_fd);
1606*053f45beSAndroid Build Coastguard Worker printf("done\n");
1607*053f45beSAndroid Build Coastguard Worker }
1608*053f45beSAndroid Build Coastguard Worker #endif
1609*053f45beSAndroid Build Coastguard Worker
userfaultfd_stress(void)1610*053f45beSAndroid Build Coastguard Worker static int userfaultfd_stress(void)
1611*053f45beSAndroid Build Coastguard Worker {
1612*053f45beSAndroid Build Coastguard Worker void *area;
1613*053f45beSAndroid Build Coastguard Worker unsigned long nr;
1614*053f45beSAndroid Build Coastguard Worker struct uffdio_register uffdio_register;
1615*053f45beSAndroid Build Coastguard Worker struct sigaction act;
1616*053f45beSAndroid Build Coastguard Worker struct uffd_stats uffd_stats[nr_cpus];
1617*053f45beSAndroid Build Coastguard Worker
1618*053f45beSAndroid Build Coastguard Worker uffd_test_ctx_init(0);
1619*053f45beSAndroid Build Coastguard Worker
1620*053f45beSAndroid Build Coastguard Worker if (posix_memalign(&area, page_size, page_size))
1621*053f45beSAndroid Build Coastguard Worker err("out of memory");
1622*053f45beSAndroid Build Coastguard Worker zeropage = area;
1623*053f45beSAndroid Build Coastguard Worker bzero(zeropage, page_size);
1624*053f45beSAndroid Build Coastguard Worker
1625*053f45beSAndroid Build Coastguard Worker pthread_mutex_lock(&uffd_read_mutex);
1626*053f45beSAndroid Build Coastguard Worker
1627*053f45beSAndroid Build Coastguard Worker pthread_attr_init(&attr);
1628*053f45beSAndroid Build Coastguard Worker pthread_attr_setstacksize(&attr, 16*1024*1024);
1629*053f45beSAndroid Build Coastguard Worker
1630*053f45beSAndroid Build Coastguard Worker // For handling thread termination of read thread in the absence of
1631*053f45beSAndroid Build Coastguard Worker // pthread_cancel().
1632*053f45beSAndroid Build Coastguard Worker pthread_key_create(&long_jmp_key, NULL);
1633*053f45beSAndroid Build Coastguard Worker memset(&act, 0, sizeof(act));
1634*053f45beSAndroid Build Coastguard Worker act.sa_sigaction = sigusr1_handler;
1635*053f45beSAndroid Build Coastguard Worker act.sa_flags = SA_SIGINFO;
1636*053f45beSAndroid Build Coastguard Worker if (sigaction(SIGUSR1, &act, 0)) {
1637*053f45beSAndroid Build Coastguard Worker perror("sigaction");
1638*053f45beSAndroid Build Coastguard Worker return 1;
1639*053f45beSAndroid Build Coastguard Worker }
1640*053f45beSAndroid Build Coastguard Worker
1641*053f45beSAndroid Build Coastguard Worker while (bounces--) {
1642*053f45beSAndroid Build Coastguard Worker printf("bounces: %d, mode:", bounces);
1643*053f45beSAndroid Build Coastguard Worker if (bounces & BOUNCE_RANDOM)
1644*053f45beSAndroid Build Coastguard Worker printf(" rnd");
1645*053f45beSAndroid Build Coastguard Worker if (bounces & BOUNCE_RACINGFAULTS)
1646*053f45beSAndroid Build Coastguard Worker printf(" racing");
1647*053f45beSAndroid Build Coastguard Worker if (bounces & BOUNCE_VERIFY)
1648*053f45beSAndroid Build Coastguard Worker printf(" ver");
1649*053f45beSAndroid Build Coastguard Worker if (bounces & BOUNCE_POLL)
1650*053f45beSAndroid Build Coastguard Worker printf(" poll");
1651*053f45beSAndroid Build Coastguard Worker else
1652*053f45beSAndroid Build Coastguard Worker printf(" read");
1653*053f45beSAndroid Build Coastguard Worker printf(", ");
1654*053f45beSAndroid Build Coastguard Worker fflush(stdout);
1655*053f45beSAndroid Build Coastguard Worker
1656*053f45beSAndroid Build Coastguard Worker if (bounces & BOUNCE_POLL)
1657*053f45beSAndroid Build Coastguard Worker fcntl(uffd, F_SETFL, uffd_flags | O_NONBLOCK);
1658*053f45beSAndroid Build Coastguard Worker else
1659*053f45beSAndroid Build Coastguard Worker fcntl(uffd, F_SETFL, uffd_flags & ~O_NONBLOCK);
1660*053f45beSAndroid Build Coastguard Worker
1661*053f45beSAndroid Build Coastguard Worker /* register */
1662*053f45beSAndroid Build Coastguard Worker uffdio_register.range.start = (unsigned long) area_dst;
1663*053f45beSAndroid Build Coastguard Worker uffdio_register.range.len = nr_pages * page_size;
1664*053f45beSAndroid Build Coastguard Worker uffdio_register.mode = UFFDIO_REGISTER_MODE_MISSING;
1665*053f45beSAndroid Build Coastguard Worker if (test_uffdio_wp)
1666*053f45beSAndroid Build Coastguard Worker uffdio_register.mode |= UFFDIO_REGISTER_MODE_WP;
1667*053f45beSAndroid Build Coastguard Worker if (ioctl(uffd, UFFDIO_REGISTER, &uffdio_register))
1668*053f45beSAndroid Build Coastguard Worker err("register failure");
1669*053f45beSAndroid Build Coastguard Worker assert_expected_ioctls_present(
1670*053f45beSAndroid Build Coastguard Worker uffdio_register.mode, uffdio_register.ioctls);
1671*053f45beSAndroid Build Coastguard Worker
1672*053f45beSAndroid Build Coastguard Worker if (area_dst_alias) {
1673*053f45beSAndroid Build Coastguard Worker uffdio_register.range.start = (unsigned long)
1674*053f45beSAndroid Build Coastguard Worker area_dst_alias;
1675*053f45beSAndroid Build Coastguard Worker if (ioctl(uffd, UFFDIO_REGISTER, &uffdio_register))
1676*053f45beSAndroid Build Coastguard Worker err("register failure alias");
1677*053f45beSAndroid Build Coastguard Worker }
1678*053f45beSAndroid Build Coastguard Worker
1679*053f45beSAndroid Build Coastguard Worker /*
1680*053f45beSAndroid Build Coastguard Worker * The madvise done previously isn't enough: some
1681*053f45beSAndroid Build Coastguard Worker * uffd_thread could have read userfaults (one of
1682*053f45beSAndroid Build Coastguard Worker * those already resolved by the background thread)
1683*053f45beSAndroid Build Coastguard Worker * and it may be in the process of calling
1684*053f45beSAndroid Build Coastguard Worker * UFFDIO_COPY. UFFDIO_COPY will read the zapped
1685*053f45beSAndroid Build Coastguard Worker * area_src and it would map a zero page in it (of
1686*053f45beSAndroid Build Coastguard Worker * course such a UFFDIO_COPY is perfectly safe as it'd
1687*053f45beSAndroid Build Coastguard Worker * return -EEXIST). The problem comes at the next
1688*053f45beSAndroid Build Coastguard Worker * bounce though: that racing UFFDIO_COPY would
1689*053f45beSAndroid Build Coastguard Worker * generate zeropages in the area_src, so invalidating
1690*053f45beSAndroid Build Coastguard Worker * the previous MADV_DONTNEED. Without this additional
1691*053f45beSAndroid Build Coastguard Worker * MADV_DONTNEED those zeropages leftovers in the
1692*053f45beSAndroid Build Coastguard Worker * area_src would lead to -EEXIST failure during the
1693*053f45beSAndroid Build Coastguard Worker * next bounce, effectively leaving a zeropage in the
1694*053f45beSAndroid Build Coastguard Worker * area_dst.
1695*053f45beSAndroid Build Coastguard Worker *
1696*053f45beSAndroid Build Coastguard Worker * Try to comment this out madvise to see the memory
1697*053f45beSAndroid Build Coastguard Worker * corruption being caught pretty quick.
1698*053f45beSAndroid Build Coastguard Worker *
1699*053f45beSAndroid Build Coastguard Worker * khugepaged is also inhibited to collapse THP after
1700*053f45beSAndroid Build Coastguard Worker * MADV_DONTNEED only after the UFFDIO_REGISTER, so it's
1701*053f45beSAndroid Build Coastguard Worker * required to MADV_DONTNEED here.
1702*053f45beSAndroid Build Coastguard Worker */
1703*053f45beSAndroid Build Coastguard Worker uffd_test_ops->release_pages(area_dst);
1704*053f45beSAndroid Build Coastguard Worker
1705*053f45beSAndroid Build Coastguard Worker uffd_stats_reset(uffd_stats, nr_cpus);
1706*053f45beSAndroid Build Coastguard Worker
1707*053f45beSAndroid Build Coastguard Worker /* bounce pass */
1708*053f45beSAndroid Build Coastguard Worker if (stress(uffd_stats))
1709*053f45beSAndroid Build Coastguard Worker return 1;
1710*053f45beSAndroid Build Coastguard Worker
1711*053f45beSAndroid Build Coastguard Worker /* Clear all the write protections if there is any */
1712*053f45beSAndroid Build Coastguard Worker if (test_uffdio_wp)
1713*053f45beSAndroid Build Coastguard Worker wp_range(uffd, (unsigned long)area_dst,
1714*053f45beSAndroid Build Coastguard Worker nr_pages * page_size, false);
1715*053f45beSAndroid Build Coastguard Worker
1716*053f45beSAndroid Build Coastguard Worker /* unregister */
1717*053f45beSAndroid Build Coastguard Worker if (ioctl(uffd, UFFDIO_UNREGISTER, &uffdio_register.range))
1718*053f45beSAndroid Build Coastguard Worker err("unregister failure");
1719*053f45beSAndroid Build Coastguard Worker if (area_dst_alias) {
1720*053f45beSAndroid Build Coastguard Worker uffdio_register.range.start = (unsigned long) area_dst;
1721*053f45beSAndroid Build Coastguard Worker if (ioctl(uffd, UFFDIO_UNREGISTER,
1722*053f45beSAndroid Build Coastguard Worker &uffdio_register.range))
1723*053f45beSAndroid Build Coastguard Worker err("unregister failure alias");
1724*053f45beSAndroid Build Coastguard Worker }
1725*053f45beSAndroid Build Coastguard Worker
1726*053f45beSAndroid Build Coastguard Worker /* verification */
1727*053f45beSAndroid Build Coastguard Worker if (bounces & BOUNCE_VERIFY)
1728*053f45beSAndroid Build Coastguard Worker for (nr = 0; nr < nr_pages; nr++)
1729*053f45beSAndroid Build Coastguard Worker if (*area_count(area_dst, nr) != count_verify[nr])
1730*053f45beSAndroid Build Coastguard Worker err("error area_count %llu %llu %lu\n",
1731*053f45beSAndroid Build Coastguard Worker *area_count(area_src, nr),
1732*053f45beSAndroid Build Coastguard Worker count_verify[nr], nr);
1733*053f45beSAndroid Build Coastguard Worker
1734*053f45beSAndroid Build Coastguard Worker /* prepare next bounce */
1735*053f45beSAndroid Build Coastguard Worker swap(area_src, area_dst);
1736*053f45beSAndroid Build Coastguard Worker
1737*053f45beSAndroid Build Coastguard Worker swap(area_src_alias, area_dst_alias);
1738*053f45beSAndroid Build Coastguard Worker
1739*053f45beSAndroid Build Coastguard Worker uffd_stats_report(uffd_stats, nr_cpus);
1740*053f45beSAndroid Build Coastguard Worker }
1741*053f45beSAndroid Build Coastguard Worker
1742*053f45beSAndroid Build Coastguard Worker /*
1743*053f45beSAndroid Build Coastguard Worker * b/232026677
1744*053f45beSAndroid Build Coastguard Worker * pagemap not compatible with < 5.14
1745*053f45beSAndroid Build Coastguard Worker */
1746*053f45beSAndroid Build Coastguard Worker #ifndef __ANDROID__
1747*053f45beSAndroid Build Coastguard Worker if (test_type == TEST_ANON) {
1748*053f45beSAndroid Build Coastguard Worker /*
1749*053f45beSAndroid Build Coastguard Worker * shmem/hugetlb won't be able to run since they have different
1750*053f45beSAndroid Build Coastguard Worker * behavior on fork() (file-backed memory normally drops ptes
1751*053f45beSAndroid Build Coastguard Worker * directly when fork), meanwhile the pagemap test will verify
1752*053f45beSAndroid Build Coastguard Worker * pgtable entry of fork()ed child.
1753*053f45beSAndroid Build Coastguard Worker */
1754*053f45beSAndroid Build Coastguard Worker userfaultfd_pagemap_test(page_size);
1755*053f45beSAndroid Build Coastguard Worker /*
1756*053f45beSAndroid Build Coastguard Worker * Hard-code for x86_64 for now for 2M THP, as x86_64 is
1757*053f45beSAndroid Build Coastguard Worker * currently the only one that supports uffd-wp
1758*053f45beSAndroid Build Coastguard Worker */
1759*053f45beSAndroid Build Coastguard Worker userfaultfd_pagemap_test(page_size * 512);
1760*053f45beSAndroid Build Coastguard Worker }
1761*053f45beSAndroid Build Coastguard Worker #endif
1762*053f45beSAndroid Build Coastguard Worker
1763*053f45beSAndroid Build Coastguard Worker pthread_key_delete(long_jmp_key);
1764*053f45beSAndroid Build Coastguard Worker
1765*053f45beSAndroid Build Coastguard Worker return userfaultfd_zeropage_test() || userfaultfd_sig_test()
1766*053f45beSAndroid Build Coastguard Worker || userfaultfd_events_test() || userfaultfd_minor_test();
1767*053f45beSAndroid Build Coastguard Worker }
1768*053f45beSAndroid Build Coastguard Worker
1769*053f45beSAndroid Build Coastguard Worker /*
1770*053f45beSAndroid Build Coastguard Worker * Copied from mlock2-tests.c
1771*053f45beSAndroid Build Coastguard Worker */
default_huge_page_size(void)1772*053f45beSAndroid Build Coastguard Worker unsigned long default_huge_page_size(void)
1773*053f45beSAndroid Build Coastguard Worker {
1774*053f45beSAndroid Build Coastguard Worker unsigned long hps = 0;
1775*053f45beSAndroid Build Coastguard Worker char *line = NULL;
1776*053f45beSAndroid Build Coastguard Worker size_t linelen = 0;
1777*053f45beSAndroid Build Coastguard Worker FILE *f = fopen("/proc/meminfo", "r");
1778*053f45beSAndroid Build Coastguard Worker
1779*053f45beSAndroid Build Coastguard Worker if (!f)
1780*053f45beSAndroid Build Coastguard Worker return 0;
1781*053f45beSAndroid Build Coastguard Worker while (getline(&line, &linelen, f) > 0) {
1782*053f45beSAndroid Build Coastguard Worker if (sscanf(line, "Hugepagesize: %lu kB", &hps) == 1) {
1783*053f45beSAndroid Build Coastguard Worker hps <<= 10;
1784*053f45beSAndroid Build Coastguard Worker break;
1785*053f45beSAndroid Build Coastguard Worker }
1786*053f45beSAndroid Build Coastguard Worker }
1787*053f45beSAndroid Build Coastguard Worker
1788*053f45beSAndroid Build Coastguard Worker free(line);
1789*053f45beSAndroid Build Coastguard Worker fclose(f);
1790*053f45beSAndroid Build Coastguard Worker return hps;
1791*053f45beSAndroid Build Coastguard Worker }
1792*053f45beSAndroid Build Coastguard Worker
set_test_type(const char * type)1793*053f45beSAndroid Build Coastguard Worker static void set_test_type(const char *type)
1794*053f45beSAndroid Build Coastguard Worker {
1795*053f45beSAndroid Build Coastguard Worker if (!strcmp(type, "anon")) {
1796*053f45beSAndroid Build Coastguard Worker test_type = TEST_ANON;
1797*053f45beSAndroid Build Coastguard Worker uffd_test_ops = &anon_uffd_test_ops;
1798*053f45beSAndroid Build Coastguard Worker /* Only enable write-protect test for anonymous test */
1799*053f45beSAndroid Build Coastguard Worker test_uffdio_wp = true;
1800*053f45beSAndroid Build Coastguard Worker } else if (!strcmp(type, "hugetlb")) {
1801*053f45beSAndroid Build Coastguard Worker test_type = TEST_HUGETLB;
1802*053f45beSAndroid Build Coastguard Worker uffd_test_ops = &hugetlb_uffd_test_ops;
1803*053f45beSAndroid Build Coastguard Worker } else if (!strcmp(type, "hugetlb_shared")) {
1804*053f45beSAndroid Build Coastguard Worker map_shared = true;
1805*053f45beSAndroid Build Coastguard Worker test_type = TEST_HUGETLB;
1806*053f45beSAndroid Build Coastguard Worker uffd_test_ops = &hugetlb_uffd_test_ops;
1807*053f45beSAndroid Build Coastguard Worker /* Minor faults require shared hugetlb; only enable here. */
1808*053f45beSAndroid Build Coastguard Worker test_uffdio_minor = true;
1809*053f45beSAndroid Build Coastguard Worker } else if (!strcmp(type, "shmem")) {
1810*053f45beSAndroid Build Coastguard Worker map_shared = true;
1811*053f45beSAndroid Build Coastguard Worker test_type = TEST_SHMEM;
1812*053f45beSAndroid Build Coastguard Worker uffd_test_ops = &shmem_uffd_test_ops;
1813*053f45beSAndroid Build Coastguard Worker test_uffdio_minor = true;
1814*053f45beSAndroid Build Coastguard Worker }
1815*053f45beSAndroid Build Coastguard Worker }
1816*053f45beSAndroid Build Coastguard Worker
parse_test_type_arg(const char * raw_type)1817*053f45beSAndroid Build Coastguard Worker static void parse_test_type_arg(const char *raw_type)
1818*053f45beSAndroid Build Coastguard Worker {
1819*053f45beSAndroid Build Coastguard Worker char *buf = strdup(raw_type);
1820*053f45beSAndroid Build Coastguard Worker /* b/234150821
1821*053f45beSAndroid Build Coastguard Worker * UFFD_FEATURE_PAGEFAULT_FLAG_WP unsupported in kernel <5.7
1822*053f45beSAndroid Build Coastguard Worker */
1823*053f45beSAndroid Build Coastguard Worker #ifdef __ANDROID__
1824*053f45beSAndroid Build Coastguard Worker uint64_t features = (
1825*053f45beSAndroid Build Coastguard Worker UFFD_FEATURE_EVENT_FORK | \
1826*053f45beSAndroid Build Coastguard Worker UFFD_FEATURE_EVENT_REMAP | \
1827*053f45beSAndroid Build Coastguard Worker UFFD_FEATURE_EVENT_REMOVE | \
1828*053f45beSAndroid Build Coastguard Worker UFFD_FEATURE_EVENT_UNMAP | \
1829*053f45beSAndroid Build Coastguard Worker UFFD_FEATURE_MISSING_HUGETLBFS | \
1830*053f45beSAndroid Build Coastguard Worker UFFD_FEATURE_MISSING_SHMEM | \
1831*053f45beSAndroid Build Coastguard Worker UFFD_FEATURE_SIGBUS | \
1832*053f45beSAndroid Build Coastguard Worker UFFD_FEATURE_THREAD_ID | \
1833*053f45beSAndroid Build Coastguard Worker UFFD_FEATURE_MINOR_HUGETLBFS | \
1834*053f45beSAndroid Build Coastguard Worker UFFD_FEATURE_MINOR_SHMEM);
1835*053f45beSAndroid Build Coastguard Worker #else
1836*053f45beSAndroid Build Coastguard Worker uint64_t features = UFFD_API_FEATURES;
1837*053f45beSAndroid Build Coastguard Worker #endif
1838*053f45beSAndroid Build Coastguard Worker
1839*053f45beSAndroid Build Coastguard Worker while (buf) {
1840*053f45beSAndroid Build Coastguard Worker const char *token = strsep(&buf, ":");
1841*053f45beSAndroid Build Coastguard Worker
1842*053f45beSAndroid Build Coastguard Worker if (!test_type)
1843*053f45beSAndroid Build Coastguard Worker set_test_type(token);
1844*053f45beSAndroid Build Coastguard Worker else if (!strcmp(token, "dev"))
1845*053f45beSAndroid Build Coastguard Worker test_dev_userfaultfd = true;
1846*053f45beSAndroid Build Coastguard Worker else if (!strcmp(token, "syscall"))
1847*053f45beSAndroid Build Coastguard Worker test_dev_userfaultfd = false;
1848*053f45beSAndroid Build Coastguard Worker else if (!strcmp(token, "collapse"))
1849*053f45beSAndroid Build Coastguard Worker test_collapse = true;
1850*053f45beSAndroid Build Coastguard Worker else
1851*053f45beSAndroid Build Coastguard Worker err("unrecognized test mod '%s'", token);
1852*053f45beSAndroid Build Coastguard Worker }
1853*053f45beSAndroid Build Coastguard Worker
1854*053f45beSAndroid Build Coastguard Worker if (!test_type)
1855*053f45beSAndroid Build Coastguard Worker err("failed to parse test type argument: '%s'", raw_type);
1856*053f45beSAndroid Build Coastguard Worker
1857*053f45beSAndroid Build Coastguard Worker if (test_collapse && test_type != TEST_SHMEM)
1858*053f45beSAndroid Build Coastguard Worker err("Unsupported test: %s", raw_type);
1859*053f45beSAndroid Build Coastguard Worker
1860*053f45beSAndroid Build Coastguard Worker if (test_type == TEST_HUGETLB)
1861*053f45beSAndroid Build Coastguard Worker page_size = hpage_size;
1862*053f45beSAndroid Build Coastguard Worker else
1863*053f45beSAndroid Build Coastguard Worker page_size = sysconf(_SC_PAGE_SIZE);
1864*053f45beSAndroid Build Coastguard Worker
1865*053f45beSAndroid Build Coastguard Worker if (!page_size)
1866*053f45beSAndroid Build Coastguard Worker err("Unable to determine page size");
1867*053f45beSAndroid Build Coastguard Worker if ((unsigned long) area_count(NULL, 0) + sizeof(unsigned long long) * 2
1868*053f45beSAndroid Build Coastguard Worker > page_size)
1869*053f45beSAndroid Build Coastguard Worker err("Impossible to run this test");
1870*053f45beSAndroid Build Coastguard Worker
1871*053f45beSAndroid Build Coastguard Worker /*
1872*053f45beSAndroid Build Coastguard Worker * Whether we can test certain features depends not just on test type,
1873*053f45beSAndroid Build Coastguard Worker * but also on whether or not this particular kernel supports the
1874*053f45beSAndroid Build Coastguard Worker * feature.
1875*053f45beSAndroid Build Coastguard Worker */
1876*053f45beSAndroid Build Coastguard Worker
1877*053f45beSAndroid Build Coastguard Worker userfaultfd_open(&features);
1878*053f45beSAndroid Build Coastguard Worker
1879*053f45beSAndroid Build Coastguard Worker test_uffdio_wp = test_uffdio_wp &&
1880*053f45beSAndroid Build Coastguard Worker (features & UFFD_FEATURE_PAGEFAULT_FLAG_WP);
1881*053f45beSAndroid Build Coastguard Worker test_uffdio_minor = test_uffdio_minor &&
1882*053f45beSAndroid Build Coastguard Worker (features & uffd_minor_feature());
1883*053f45beSAndroid Build Coastguard Worker
1884*053f45beSAndroid Build Coastguard Worker close(uffd);
1885*053f45beSAndroid Build Coastguard Worker uffd = -1;
1886*053f45beSAndroid Build Coastguard Worker }
1887*053f45beSAndroid Build Coastguard Worker
sigalrm(int sig)1888*053f45beSAndroid Build Coastguard Worker static void sigalrm(int sig)
1889*053f45beSAndroid Build Coastguard Worker {
1890*053f45beSAndroid Build Coastguard Worker if (sig != SIGALRM)
1891*053f45beSAndroid Build Coastguard Worker abort();
1892*053f45beSAndroid Build Coastguard Worker test_uffdio_copy_eexist = true;
1893*053f45beSAndroid Build Coastguard Worker test_uffdio_zeropage_eexist = true;
1894*053f45beSAndroid Build Coastguard Worker alarm(ALARM_INTERVAL_SECS);
1895*053f45beSAndroid Build Coastguard Worker }
1896*053f45beSAndroid Build Coastguard Worker
main(int argc,char ** argv)1897*053f45beSAndroid Build Coastguard Worker int main(int argc, char **argv)
1898*053f45beSAndroid Build Coastguard Worker {
1899*053f45beSAndroid Build Coastguard Worker size_t bytes;
1900*053f45beSAndroid Build Coastguard Worker
1901*053f45beSAndroid Build Coastguard Worker if (argc < 4)
1902*053f45beSAndroid Build Coastguard Worker usage();
1903*053f45beSAndroid Build Coastguard Worker
1904*053f45beSAndroid Build Coastguard Worker if (signal(SIGALRM, sigalrm) == SIG_ERR)
1905*053f45beSAndroid Build Coastguard Worker err("failed to arm SIGALRM");
1906*053f45beSAndroid Build Coastguard Worker alarm(ALARM_INTERVAL_SECS);
1907*053f45beSAndroid Build Coastguard Worker
1908*053f45beSAndroid Build Coastguard Worker hpage_size = default_huge_page_size();
1909*053f45beSAndroid Build Coastguard Worker parse_test_type_arg(argv[1]);
1910*053f45beSAndroid Build Coastguard Worker bytes = atol(argv[2]) * 1024 * 1024;
1911*053f45beSAndroid Build Coastguard Worker
1912*053f45beSAndroid Build Coastguard Worker if (test_collapse && bytes & (hpage_size - 1))
1913*053f45beSAndroid Build Coastguard Worker err("MiB must be multiple of %lu if :collapse mod set",
1914*053f45beSAndroid Build Coastguard Worker hpage_size >> 20);
1915*053f45beSAndroid Build Coastguard Worker
1916*053f45beSAndroid Build Coastguard Worker nr_cpus = sysconf(_SC_NPROCESSORS_ONLN);
1917*053f45beSAndroid Build Coastguard Worker
1918*053f45beSAndroid Build Coastguard Worker if (test_collapse) {
1919*053f45beSAndroid Build Coastguard Worker /* nr_cpus must divide (bytes / page_size), otherwise,
1920*053f45beSAndroid Build Coastguard Worker * area allocations of (nr_pages * paze_size) won't be a
1921*053f45beSAndroid Build Coastguard Worker * multiple of hpage_size, even if bytes is a multiple of
1922*053f45beSAndroid Build Coastguard Worker * hpage_size.
1923*053f45beSAndroid Build Coastguard Worker *
1924*053f45beSAndroid Build Coastguard Worker * This means that nr_cpus must divide (N * (2 << (H-P))
1925*053f45beSAndroid Build Coastguard Worker * where:
1926*053f45beSAndroid Build Coastguard Worker * bytes = hpage_size * N
1927*053f45beSAndroid Build Coastguard Worker * hpage_size = 2 << H
1928*053f45beSAndroid Build Coastguard Worker * page_size = 2 << P
1929*053f45beSAndroid Build Coastguard Worker *
1930*053f45beSAndroid Build Coastguard Worker * And we want to chose nr_cpus to be the largest value
1931*053f45beSAndroid Build Coastguard Worker * satisfying this constraint, not larger than the number
1932*053f45beSAndroid Build Coastguard Worker * of online CPUs. Unfortunately, prime factorization of
1933*053f45beSAndroid Build Coastguard Worker * N and nr_cpus may be arbitrary, so have to search for it.
1934*053f45beSAndroid Build Coastguard Worker * Instead, just use the highest power of 2 dividing both
1935*053f45beSAndroid Build Coastguard Worker * nr_cpus and (bytes / page_size).
1936*053f45beSAndroid Build Coastguard Worker */
1937*053f45beSAndroid Build Coastguard Worker int x = factor_of_2(nr_cpus);
1938*053f45beSAndroid Build Coastguard Worker int y = factor_of_2(bytes / page_size);
1939*053f45beSAndroid Build Coastguard Worker
1940*053f45beSAndroid Build Coastguard Worker nr_cpus = x < y ? x : y;
1941*053f45beSAndroid Build Coastguard Worker }
1942*053f45beSAndroid Build Coastguard Worker nr_pages_per_cpu = bytes / page_size / nr_cpus;
1943*053f45beSAndroid Build Coastguard Worker if (!nr_pages_per_cpu) {
1944*053f45beSAndroid Build Coastguard Worker _err("invalid MiB");
1945*053f45beSAndroid Build Coastguard Worker usage();
1946*053f45beSAndroid Build Coastguard Worker }
1947*053f45beSAndroid Build Coastguard Worker
1948*053f45beSAndroid Build Coastguard Worker bounces = atoi(argv[3]);
1949*053f45beSAndroid Build Coastguard Worker if (bounces <= 0) {
1950*053f45beSAndroid Build Coastguard Worker _err("invalid bounces");
1951*053f45beSAndroid Build Coastguard Worker usage();
1952*053f45beSAndroid Build Coastguard Worker }
1953*053f45beSAndroid Build Coastguard Worker nr_pages = nr_pages_per_cpu * nr_cpus;
1954*053f45beSAndroid Build Coastguard Worker
1955*053f45beSAndroid Build Coastguard Worker if (test_type == TEST_HUGETLB && map_shared) {
1956*053f45beSAndroid Build Coastguard Worker if (argc < 5)
1957*053f45beSAndroid Build Coastguard Worker usage();
1958*053f45beSAndroid Build Coastguard Worker huge_fd = open(argv[4], O_CREAT | O_RDWR, 0755);
1959*053f45beSAndroid Build Coastguard Worker if (huge_fd < 0)
1960*053f45beSAndroid Build Coastguard Worker err("Open of %s failed", argv[4]);
1961*053f45beSAndroid Build Coastguard Worker if (ftruncate(huge_fd, 0))
1962*053f45beSAndroid Build Coastguard Worker err("ftruncate %s to size 0 failed", argv[4]);
1963*053f45beSAndroid Build Coastguard Worker } else if (test_type == TEST_SHMEM) {
1964*053f45beSAndroid Build Coastguard Worker shm_fd = memfd_create(argv[0], 0);
1965*053f45beSAndroid Build Coastguard Worker if (shm_fd < 0)
1966*053f45beSAndroid Build Coastguard Worker err("memfd_create");
1967*053f45beSAndroid Build Coastguard Worker if (ftruncate(shm_fd, nr_pages * page_size * 2))
1968*053f45beSAndroid Build Coastguard Worker err("ftruncate");
1969*053f45beSAndroid Build Coastguard Worker if (fallocate(shm_fd,
1970*053f45beSAndroid Build Coastguard Worker FALLOC_FL_PUNCH_HOLE | FALLOC_FL_KEEP_SIZE, 0,
1971*053f45beSAndroid Build Coastguard Worker nr_pages * page_size * 2))
1972*053f45beSAndroid Build Coastguard Worker err("fallocate");
1973*053f45beSAndroid Build Coastguard Worker }
1974*053f45beSAndroid Build Coastguard Worker printf("nr_pages: %lu, nr_pages_per_cpu: %lu\n",
1975*053f45beSAndroid Build Coastguard Worker nr_pages, nr_pages_per_cpu);
1976*053f45beSAndroid Build Coastguard Worker return userfaultfd_stress();
1977*053f45beSAndroid Build Coastguard Worker }
1978*053f45beSAndroid Build Coastguard Worker
1979*053f45beSAndroid Build Coastguard Worker #else /* __NR_userfaultfd */
1980*053f45beSAndroid Build Coastguard Worker
1981*053f45beSAndroid Build Coastguard Worker #warning "missing __NR_userfaultfd definition"
1982*053f45beSAndroid Build Coastguard Worker
main(void)1983*053f45beSAndroid Build Coastguard Worker int main(void)
1984*053f45beSAndroid Build Coastguard Worker {
1985*053f45beSAndroid Build Coastguard Worker printf("skip: Skipping userfaultfd test (missing __NR_userfaultfd)\n");
1986*053f45beSAndroid Build Coastguard Worker return KSFT_SKIP;
1987*053f45beSAndroid Build Coastguard Worker }
1988*053f45beSAndroid Build Coastguard Worker
1989*053f45beSAndroid Build Coastguard Worker #endif /* __NR_userfaultfd */
1990