Commit a9809407 authored by Martin Schwidefsky's avatar Martin Schwidefsky

s390/mm: fix vunmap vs finish_arch_post_lock_switch

The vunmap_pte_range() function calls ptep_get_and_clear() without any
locking. ptep_get_and_clear() uses ptep_xchg_lazy()/ptep_flush_direct()
for the page table update. ptep_flush_direct requires that preemption
is disabled, but without any locking this is not the case. If the kernel
preempts the task while the attach_counter is increased an endless loop
in finish_arch_post_lock_switch() will occur the next time the task is
scheduled.

Add explicit preempt_disable()/preempt_enable() calls to the relevant
functions in arch/s390/mm/pgtable.c.
Signed-off-by: default avatarMartin Schwidefsky <schwidefsky@de.ibm.com>
parent fd5ada04
...@@ -70,7 +70,6 @@ static inline pgste_t pgste_get_lock(pte_t *ptep) ...@@ -70,7 +70,6 @@ static inline pgste_t pgste_get_lock(pte_t *ptep)
#ifdef CONFIG_PGSTE #ifdef CONFIG_PGSTE
unsigned long old; unsigned long old;
preempt_disable();
asm( asm(
" lg %0,%2\n" " lg %0,%2\n"
"0: lgr %1,%0\n" "0: lgr %1,%0\n"
...@@ -93,7 +92,6 @@ static inline void pgste_set_unlock(pte_t *ptep, pgste_t pgste) ...@@ -93,7 +92,6 @@ static inline void pgste_set_unlock(pte_t *ptep, pgste_t pgste)
: "=Q" (ptep[PTRS_PER_PTE]) : "=Q" (ptep[PTRS_PER_PTE])
: "d" (pgste_val(pgste)), "Q" (ptep[PTRS_PER_PTE]) : "d" (pgste_val(pgste)), "Q" (ptep[PTRS_PER_PTE])
: "cc", "memory"); : "cc", "memory");
preempt_enable();
#endif #endif
} }
...@@ -230,9 +228,11 @@ pte_t ptep_xchg_direct(struct mm_struct *mm, unsigned long addr, ...@@ -230,9 +228,11 @@ pte_t ptep_xchg_direct(struct mm_struct *mm, unsigned long addr,
pgste_t pgste; pgste_t pgste;
pte_t old; pte_t old;
preempt_disable();
pgste = ptep_xchg_start(mm, addr, ptep); pgste = ptep_xchg_start(mm, addr, ptep);
old = ptep_flush_direct(mm, addr, ptep); old = ptep_flush_direct(mm, addr, ptep);
ptep_xchg_commit(mm, addr, ptep, pgste, old, new); ptep_xchg_commit(mm, addr, ptep, pgste, old, new);
preempt_enable();
return old; return old;
} }
EXPORT_SYMBOL(ptep_xchg_direct); EXPORT_SYMBOL(ptep_xchg_direct);
...@@ -243,9 +243,11 @@ pte_t ptep_xchg_lazy(struct mm_struct *mm, unsigned long addr, ...@@ -243,9 +243,11 @@ pte_t ptep_xchg_lazy(struct mm_struct *mm, unsigned long addr,
pgste_t pgste; pgste_t pgste;
pte_t old; pte_t old;
preempt_disable();
pgste = ptep_xchg_start(mm, addr, ptep); pgste = ptep_xchg_start(mm, addr, ptep);
old = ptep_flush_lazy(mm, addr, ptep); old = ptep_flush_lazy(mm, addr, ptep);
ptep_xchg_commit(mm, addr, ptep, pgste, old, new); ptep_xchg_commit(mm, addr, ptep, pgste, old, new);
preempt_enable();
return old; return old;
} }
EXPORT_SYMBOL(ptep_xchg_lazy); EXPORT_SYMBOL(ptep_xchg_lazy);
...@@ -256,6 +258,7 @@ pte_t ptep_modify_prot_start(struct mm_struct *mm, unsigned long addr, ...@@ -256,6 +258,7 @@ pte_t ptep_modify_prot_start(struct mm_struct *mm, unsigned long addr,
pgste_t pgste; pgste_t pgste;
pte_t old; pte_t old;
preempt_disable();
pgste = ptep_xchg_start(mm, addr, ptep); pgste = ptep_xchg_start(mm, addr, ptep);
old = ptep_flush_lazy(mm, addr, ptep); old = ptep_flush_lazy(mm, addr, ptep);
if (mm_has_pgste(mm)) { if (mm_has_pgste(mm)) {
...@@ -279,6 +282,7 @@ void ptep_modify_prot_commit(struct mm_struct *mm, unsigned long addr, ...@@ -279,6 +282,7 @@ void ptep_modify_prot_commit(struct mm_struct *mm, unsigned long addr,
} else { } else {
*ptep = pte; *ptep = pte;
} }
preempt_enable();
} }
EXPORT_SYMBOL(ptep_modify_prot_commit); EXPORT_SYMBOL(ptep_modify_prot_commit);
...@@ -333,8 +337,10 @@ pmd_t pmdp_xchg_direct(struct mm_struct *mm, unsigned long addr, ...@@ -333,8 +337,10 @@ pmd_t pmdp_xchg_direct(struct mm_struct *mm, unsigned long addr,
{ {
pmd_t old; pmd_t old;
preempt_disable();
old = pmdp_flush_direct(mm, addr, pmdp); old = pmdp_flush_direct(mm, addr, pmdp);
*pmdp = new; *pmdp = new;
preempt_enable();
return old; return old;
} }
EXPORT_SYMBOL(pmdp_xchg_direct); EXPORT_SYMBOL(pmdp_xchg_direct);
...@@ -344,8 +350,10 @@ pmd_t pmdp_xchg_lazy(struct mm_struct *mm, unsigned long addr, ...@@ -344,8 +350,10 @@ pmd_t pmdp_xchg_lazy(struct mm_struct *mm, unsigned long addr,
{ {
pmd_t old; pmd_t old;
preempt_disable();
old = pmdp_flush_lazy(mm, addr, pmdp); old = pmdp_flush_lazy(mm, addr, pmdp);
*pmdp = new; *pmdp = new;
preempt_enable();
return old; return old;
} }
EXPORT_SYMBOL(pmdp_xchg_lazy); EXPORT_SYMBOL(pmdp_xchg_lazy);
...@@ -398,20 +406,24 @@ void ptep_set_pte_at(struct mm_struct *mm, unsigned long addr, ...@@ -398,20 +406,24 @@ void ptep_set_pte_at(struct mm_struct *mm, unsigned long addr,
pgste_t pgste; pgste_t pgste;
/* the mm_has_pgste() check is done in set_pte_at() */ /* the mm_has_pgste() check is done in set_pte_at() */
preempt_disable();
pgste = pgste_get_lock(ptep); pgste = pgste_get_lock(ptep);
pgste_val(pgste) &= ~_PGSTE_GPS_ZERO; pgste_val(pgste) &= ~_PGSTE_GPS_ZERO;
pgste_set_key(ptep, pgste, entry, mm); pgste_set_key(ptep, pgste, entry, mm);
pgste = pgste_set_pte(ptep, pgste, entry); pgste = pgste_set_pte(ptep, pgste, entry);
pgste_set_unlock(ptep, pgste); pgste_set_unlock(ptep, pgste);
preempt_enable();
} }
void ptep_set_notify(struct mm_struct *mm, unsigned long addr, pte_t *ptep) void ptep_set_notify(struct mm_struct *mm, unsigned long addr, pte_t *ptep)
{ {
pgste_t pgste; pgste_t pgste;
preempt_disable();
pgste = pgste_get_lock(ptep); pgste = pgste_get_lock(ptep);
pgste_val(pgste) |= PGSTE_IN_BIT; pgste_val(pgste) |= PGSTE_IN_BIT;
pgste_set_unlock(ptep, pgste); pgste_set_unlock(ptep, pgste);
preempt_enable();
} }
static void ptep_zap_swap_entry(struct mm_struct *mm, swp_entry_t entry) static void ptep_zap_swap_entry(struct mm_struct *mm, swp_entry_t entry)
...@@ -434,6 +446,7 @@ void ptep_zap_unused(struct mm_struct *mm, unsigned long addr, ...@@ -434,6 +446,7 @@ void ptep_zap_unused(struct mm_struct *mm, unsigned long addr,
pte_t pte; pte_t pte;
/* Zap unused and logically-zero pages */ /* Zap unused and logically-zero pages */
preempt_disable();
pgste = pgste_get_lock(ptep); pgste = pgste_get_lock(ptep);
pgstev = pgste_val(pgste); pgstev = pgste_val(pgste);
pte = *ptep; pte = *ptep;
...@@ -446,6 +459,7 @@ void ptep_zap_unused(struct mm_struct *mm, unsigned long addr, ...@@ -446,6 +459,7 @@ void ptep_zap_unused(struct mm_struct *mm, unsigned long addr,
if (reset) if (reset)
pgste_val(pgste) &= ~_PGSTE_GPS_USAGE_MASK; pgste_val(pgste) &= ~_PGSTE_GPS_USAGE_MASK;
pgste_set_unlock(ptep, pgste); pgste_set_unlock(ptep, pgste);
preempt_enable();
} }
void ptep_zap_key(struct mm_struct *mm, unsigned long addr, pte_t *ptep) void ptep_zap_key(struct mm_struct *mm, unsigned long addr, pte_t *ptep)
...@@ -454,6 +468,7 @@ void ptep_zap_key(struct mm_struct *mm, unsigned long addr, pte_t *ptep) ...@@ -454,6 +468,7 @@ void ptep_zap_key(struct mm_struct *mm, unsigned long addr, pte_t *ptep)
pgste_t pgste; pgste_t pgste;
/* Clear storage key */ /* Clear storage key */
preempt_disable();
pgste = pgste_get_lock(ptep); pgste = pgste_get_lock(ptep);
pgste_val(pgste) &= ~(PGSTE_ACC_BITS | PGSTE_FP_BIT | pgste_val(pgste) &= ~(PGSTE_ACC_BITS | PGSTE_FP_BIT |
PGSTE_GR_BIT | PGSTE_GC_BIT); PGSTE_GR_BIT | PGSTE_GC_BIT);
...@@ -461,6 +476,7 @@ void ptep_zap_key(struct mm_struct *mm, unsigned long addr, pte_t *ptep) ...@@ -461,6 +476,7 @@ void ptep_zap_key(struct mm_struct *mm, unsigned long addr, pte_t *ptep)
if (!(ptev & _PAGE_INVALID) && (ptev & _PAGE_WRITE)) if (!(ptev & _PAGE_INVALID) && (ptev & _PAGE_WRITE))
page_set_storage_key(ptev & PAGE_MASK, PAGE_DEFAULT_KEY, 1); page_set_storage_key(ptev & PAGE_MASK, PAGE_DEFAULT_KEY, 1);
pgste_set_unlock(ptep, pgste); pgste_set_unlock(ptep, pgste);
preempt_enable();
} }
/* /*
......
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment