2 * SPDX-License-Identifier: BSD-4-Clause
4 * Copyright (c) 2003 Peter Wemm.
5 * Copyright (c) 1992 Terrence R. Lambert.
6 * Copyright (c) 1982, 1987, 1990 The Regents of the University of California.
9 * This code is derived from software contributed to Berkeley by
12 * Redistribution and use in source and binary forms, with or without
13 * modification, are permitted provided that the following conditions
15 * 1. Redistributions of source code must retain the above copyright
16 * notice, this list of conditions and the following disclaimer.
17 * 2. Redistributions in binary form must reproduce the above copyright
18 * notice, this list of conditions and the following disclaimer in the
19 * documentation and/or other materials provided with the distribution.
20 * 3. All advertising materials mentioning features or use of this software
21 * must display the following acknowledgement:
22 * This product includes software developed by the University of
23 * California, Berkeley and its contributors.
24 * 4. Neither the name of the University nor the names of its contributors
25 * may be used to endorse or promote products derived from this software
26 * without specific prior written permission.
28 * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
29 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
30 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
31 * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
32 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
33 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
34 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
35 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
36 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
37 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
40 * from: @(#)machdep.c 7.4 (Berkeley) 6/3/91
43 #include <sys/cdefs.h>
44 __FBSDID("$FreeBSD$");
46 #include "opt_atpic.h"
51 #include "opt_kstack_pages.h"
52 #include "opt_maxmem.h"
53 #include "opt_mp_watchdog.h"
55 #include "opt_platform.h"
56 #include "opt_sched.h"
58 #include <sys/param.h>
60 #include <sys/systm.h>
65 #include <sys/callout.h>
70 #include <sys/eventhandler.h>
72 #include <sys/imgact.h>
74 #include <sys/kernel.h>
76 #include <sys/linker.h>
78 #include <sys/malloc.h>
79 #include <sys/memrange.h>
80 #include <sys/msgbuf.h>
81 #include <sys/mutex.h>
83 #include <sys/ptrace.h>
84 #include <sys/reboot.h>
85 #include <sys/rwlock.h>
86 #include <sys/sched.h>
87 #include <sys/signalvar.h>
91 #include <sys/syscallsubr.h>
92 #include <sys/sysctl.h>
93 #include <sys/sysent.h>
94 #include <sys/sysproto.h>
95 #include <sys/ucontext.h>
96 #include <sys/vmmeter.h>
99 #include <vm/vm_param.h>
100 #include <vm/vm_extern.h>
101 #include <vm/vm_kern.h>
102 #include <vm/vm_page.h>
103 #include <vm/vm_map.h>
104 #include <vm/vm_object.h>
105 #include <vm/vm_pager.h>
106 #include <vm/vm_phys.h>
107 #include <vm/vm_dumpset.h>
111 #error KDB must be enabled in order for DDB to work!
114 #include <ddb/db_sym.h>
117 #include <net/netisr.h>
119 #include <machine/clock.h>
120 #include <machine/cpu.h>
121 #include <machine/cputypes.h>
122 #include <machine/frame.h>
123 #include <machine/intr_machdep.h>
125 #include <machine/md_var.h>
126 #include <machine/metadata.h>
127 #include <machine/mp_watchdog.h>
128 #include <machine/pc/bios.h>
129 #include <machine/pcb.h>
130 #include <machine/proc.h>
131 #include <machine/reg.h>
132 #include <machine/sigframe.h>
133 #include <machine/specialreg.h>
134 #include <machine/trap.h>
135 #include <machine/tss.h>
136 #include <x86/ucode.h>
137 #include <x86/ifunc.h>
139 #include <machine/smp.h>
146 #include <x86/isa/icu.h>
148 #include <x86/apicvar.h>
151 #include <isa/isareg.h>
153 #include <x86/init.h>
155 /* Sanity check for __curthread() */
156 CTASSERT(offsetof(struct pcpu, pc_curthread) == 0);
159 * The PTI trampoline stack needs enough space for a hardware trapframe and a
160 * couple of scratch registers, as well as the trapframe left behind after an
163 CTASSERT(PC_PTI_STACK_SZ * sizeof(register_t) >= 2 * sizeof(struct pti_frame) -
164 offsetof(struct pti_frame, pti_rip));
166 extern u_int64_t hammer_time(u_int64_t, u_int64_t);
168 #define CS_SECURE(cs) (ISPL(cs) == SEL_UPL)
169 #define EFL_SECURE(ef, oef) ((((ef) ^ (oef)) & ~PSL_USERCHANGE) == 0)
171 static void cpu_startup(void *);
172 static void get_fpcontext(struct thread *td, mcontext_t *mcp,
173 char *xfpusave, size_t xfpusave_len);
174 static int set_fpcontext(struct thread *td, mcontext_t *mcp,
175 char *xfpustate, size_t xfpustate_len);
176 SYSINIT(cpu, SI_SUB_CPU, SI_ORDER_FIRST, cpu_startup, NULL);
178 /* Preload data parse function */
179 static caddr_t native_parse_preload_data(u_int64_t);
181 /* Native function to fetch and parse the e820 map */
182 static void native_parse_memmap(caddr_t, vm_paddr_t *, int *);
184 /* Default init_ops implementation. */
185 struct init_ops init_ops = {
186 .parse_preload_data = native_parse_preload_data,
187 .early_clock_source_init = i8254_init,
188 .early_delay = i8254_delay,
189 .parse_memmap = native_parse_memmap,
193 * Physical address of the EFI System Table. Stashed from the metadata hints
194 * passed into the kernel and used by the EFI code to call runtime services.
196 vm_paddr_t efi_systbl_phys;
198 /* Intel ICH registers */
199 #define ICH_PMBASE 0x400
200 #define ICH_SMI_EN ICH_PMBASE + 0x30
202 int _udatasel, _ucodesel, _ucode32sel, _ufssel, _ugssel;
209 struct kva_md_info kmi;
211 static struct trapframe proc0_tf;
212 struct region_descriptor r_idt;
215 struct pcpu temp_bsp_pcpu;
219 struct mem_range_softc mem_range_softc;
221 struct mtx dt_lock; /* lock for GDT and LDT */
223 void (*vmm_resume_p)(void);
233 * On MacBooks, we need to disallow the legacy USB circuit to
234 * generate an SMI# because this can cause several problems,
235 * namely: incorrect CPU frequency detection and failure to
237 * We do this by disabling a bit in the SMI_EN (SMI Control and
238 * Enable register) of the Intel ICH LPC Interface Bridge.
240 sysenv = kern_getenv("smbios.system.product");
241 if (sysenv != NULL) {
242 if (strncmp(sysenv, "MacBook1,1", 10) == 0 ||
243 strncmp(sysenv, "MacBook3,1", 10) == 0 ||
244 strncmp(sysenv, "MacBook4,1", 10) == 0 ||
245 strncmp(sysenv, "MacBookPro1,1", 13) == 0 ||
246 strncmp(sysenv, "MacBookPro1,2", 13) == 0 ||
247 strncmp(sysenv, "MacBookPro3,1", 13) == 0 ||
248 strncmp(sysenv, "MacBookPro4,1", 13) == 0 ||
249 strncmp(sysenv, "Macmini1,1", 10) == 0) {
251 printf("Disabling LEGACY_USB_EN bit on "
253 outl(ICH_SMI_EN, inl(ICH_SMI_EN) & ~0x8);
259 * Good {morning,afternoon,evening,night}.
265 * Display physical memory if SMBIOS reports reasonable amount.
268 sysenv = kern_getenv("smbios.memory.enabled");
269 if (sysenv != NULL) {
270 memsize = (uintmax_t)strtoul(sysenv, (char **)NULL, 10) << 10;
273 if (memsize < ptoa((uintmax_t)vm_free_count()))
274 memsize = ptoa((uintmax_t)Maxmem);
275 printf("real memory = %ju (%ju MB)\n", memsize, memsize >> 20);
276 realmem = atop(memsize);
279 * Display any holes after the first chunk of extended memory.
284 printf("Physical memory chunk(s):\n");
285 for (indx = 0; phys_avail[indx + 1] != 0; indx += 2) {
288 size = phys_avail[indx + 1] - phys_avail[indx];
290 "0x%016jx - 0x%016jx, %ju bytes (%ju pages)\n",
291 (uintmax_t)phys_avail[indx],
292 (uintmax_t)phys_avail[indx + 1] - 1,
293 (uintmax_t)size, (uintmax_t)size / PAGE_SIZE);
297 vm_ksubmap_init(&kmi);
299 printf("avail memory = %ju (%ju MB)\n",
300 ptoa((uintmax_t)vm_free_count()),
301 ptoa((uintmax_t)vm_free_count()) / 1048576);
303 if (bootverbose && intel_graphics_stolen_base != 0)
304 printf("intel stolen mem: base %#jx size %ju MB\n",
305 (uintmax_t)intel_graphics_stolen_base,
306 (uintmax_t)intel_graphics_stolen_size / 1024 / 1024);
310 * Set up buffers, so they can be used to read disk labels.
313 vm_pager_bufferinit();
319 late_ifunc_resolve(void *dummy __unused)
321 link_elf_late_ireloc();
323 SYSINIT(late_ifunc_resolve, SI_SUB_CPU, SI_ORDER_ANY, late_ifunc_resolve, NULL);
326 * Send an interrupt to process.
328 * Stack is set up to allow sigcode stored
329 * at top to call routine, followed by call
330 * to sigreturn routine below. After sigreturn
331 * resets the signal mask, the stack, and the
332 * frame pointer, it returns to the user
336 sendsig(sig_t catcher, ksiginfo_t *ksi, sigset_t *mask)
338 struct sigframe sf, *sfp;
344 struct trapframe *regs;
353 PROC_LOCK_ASSERT(p, MA_OWNED);
354 sig = ksi->ksi_signo;
356 mtx_assert(&psp->ps_mtx, MA_OWNED);
358 oonstack = sigonstack(regs->tf_rsp);
360 if (cpu_max_ext_state_size > sizeof(struct savefpu) && use_xsave) {
361 xfpusave_len = cpu_max_ext_state_size - sizeof(struct savefpu);
362 xfpusave = __builtin_alloca(xfpusave_len);
368 /* Save user context. */
369 bzero(&sf, sizeof(sf));
370 sf.sf_uc.uc_sigmask = *mask;
371 sf.sf_uc.uc_stack = td->td_sigstk;
372 sf.sf_uc.uc_stack.ss_flags = (td->td_pflags & TDP_ALTSTACK)
373 ? ((oonstack) ? SS_ONSTACK : 0) : SS_DISABLE;
374 sf.sf_uc.uc_mcontext.mc_onstack = (oonstack) ? 1 : 0;
375 bcopy(regs, &sf.sf_uc.uc_mcontext.mc_rdi, sizeof(*regs));
376 sf.sf_uc.uc_mcontext.mc_len = sizeof(sf.sf_uc.uc_mcontext); /* magic */
377 get_fpcontext(td, &sf.sf_uc.uc_mcontext, xfpusave, xfpusave_len);
379 update_pcb_bases(pcb);
380 sf.sf_uc.uc_mcontext.mc_fsbase = pcb->pcb_fsbase;
381 sf.sf_uc.uc_mcontext.mc_gsbase = pcb->pcb_gsbase;
382 bzero(sf.sf_uc.uc_mcontext.mc_spare,
383 sizeof(sf.sf_uc.uc_mcontext.mc_spare));
385 /* Allocate space for the signal handler context. */
386 if ((td->td_pflags & TDP_ALTSTACK) != 0 && !oonstack &&
387 SIGISMEMBER(psp->ps_sigonstack, sig)) {
388 sp = (char *)td->td_sigstk.ss_sp + td->td_sigstk.ss_size;
389 #if defined(COMPAT_43)
390 td->td_sigstk.ss_flags |= SS_ONSTACK;
393 sp = (char *)regs->tf_rsp - 128;
394 if (xfpusave != NULL) {
396 sp = (char *)((unsigned long)sp & ~0x3Ful);
397 sf.sf_uc.uc_mcontext.mc_xfpustate = (register_t)sp;
399 sp -= sizeof(struct sigframe);
400 /* Align to 16 bytes. */
401 sfp = (struct sigframe *)((unsigned long)sp & ~0xFul);
403 /* Build the argument list for the signal handler. */
404 regs->tf_rdi = sig; /* arg 1 in %rdi */
405 regs->tf_rdx = (register_t)&sfp->sf_uc; /* arg 3 in %rdx */
406 bzero(&sf.sf_si, sizeof(sf.sf_si));
407 if (SIGISMEMBER(psp->ps_siginfo, sig)) {
408 /* Signal handler installed with SA_SIGINFO. */
409 regs->tf_rsi = (register_t)&sfp->sf_si; /* arg 2 in %rsi */
410 sf.sf_ahu.sf_action = (__siginfohandler_t *)catcher;
412 /* Fill in POSIX parts */
413 sf.sf_si = ksi->ksi_info;
414 sf.sf_si.si_signo = sig; /* maybe a translated signal */
415 regs->tf_rcx = (register_t)ksi->ksi_addr; /* arg 4 in %rcx */
417 /* Old FreeBSD-style arguments. */
418 regs->tf_rsi = ksi->ksi_code; /* arg 2 in %rsi */
419 regs->tf_rcx = (register_t)ksi->ksi_addr; /* arg 4 in %rcx */
420 sf.sf_ahu.sf_handler = catcher;
422 mtx_unlock(&psp->ps_mtx);
426 * Copy the sigframe out to the user's stack.
428 if (copyout(&sf, sfp, sizeof(*sfp)) != 0 ||
429 (xfpusave != NULL && copyout(xfpusave,
430 (void *)sf.sf_uc.uc_mcontext.mc_xfpustate, xfpusave_len)
433 printf("process %ld has trashed its stack\n", (long)p->p_pid);
439 regs->tf_rsp = (long)sfp;
440 regs->tf_rip = p->p_sysent->sv_sigcode_base;
441 regs->tf_rflags &= ~(PSL_T | PSL_D);
442 regs->tf_cs = _ucodesel;
443 regs->tf_ds = _udatasel;
444 regs->tf_ss = _udatasel;
445 regs->tf_es = _udatasel;
446 regs->tf_fs = _ufssel;
447 regs->tf_gs = _ugssel;
448 regs->tf_flags = TF_HASSEGS;
450 mtx_lock(&psp->ps_mtx);
454 * System call to cleanup state after a signal
455 * has been taken. Reset signal mask and
456 * stack state from context left by sendsig (above).
457 * Return to previous pc and psl as specified by
458 * context left by sendsig. Check carefully to
459 * make sure that the user has not modified the
460 * state to gain improper privileges.
465 sys_sigreturn(td, uap)
467 struct sigreturn_args /* {
468 const struct __ucontext *sigcntxp;
474 struct trapframe *regs;
477 size_t xfpustate_len;
485 error = copyin(uap->sigcntxp, &uc, sizeof(uc));
487 uprintf("pid %d (%s): sigreturn copyin failed\n",
488 p->p_pid, td->td_name);
492 if ((ucp->uc_mcontext.mc_flags & ~_MC_FLAG_MASK) != 0) {
493 uprintf("pid %d (%s): sigreturn mc_flags %x\n", p->p_pid,
494 td->td_name, ucp->uc_mcontext.mc_flags);
498 rflags = ucp->uc_mcontext.mc_rflags;
500 * Don't allow users to change privileged or reserved flags.
502 if (!EFL_SECURE(rflags, regs->tf_rflags)) {
503 uprintf("pid %d (%s): sigreturn rflags = 0x%lx\n", p->p_pid,
504 td->td_name, rflags);
509 * Don't allow users to load a valid privileged %cs. Let the
510 * hardware check for invalid selectors, excess privilege in
511 * other selectors, invalid %eip's and invalid %esp's.
513 cs = ucp->uc_mcontext.mc_cs;
514 if (!CS_SECURE(cs)) {
515 uprintf("pid %d (%s): sigreturn cs = 0x%x\n", p->p_pid,
517 ksiginfo_init_trap(&ksi);
518 ksi.ksi_signo = SIGBUS;
519 ksi.ksi_code = BUS_OBJERR;
520 ksi.ksi_trapno = T_PROTFLT;
521 ksi.ksi_addr = (void *)regs->tf_rip;
522 trapsignal(td, &ksi);
526 if ((uc.uc_mcontext.mc_flags & _MC_HASFPXSTATE) != 0) {
527 xfpustate_len = uc.uc_mcontext.mc_xfpustate_len;
528 if (xfpustate_len > cpu_max_ext_state_size -
529 sizeof(struct savefpu)) {
530 uprintf("pid %d (%s): sigreturn xfpusave_len = 0x%zx\n",
531 p->p_pid, td->td_name, xfpustate_len);
534 xfpustate = __builtin_alloca(xfpustate_len);
535 error = copyin((const void *)uc.uc_mcontext.mc_xfpustate,
536 xfpustate, xfpustate_len);
539 "pid %d (%s): sigreturn copying xfpustate failed\n",
540 p->p_pid, td->td_name);
547 ret = set_fpcontext(td, &ucp->uc_mcontext, xfpustate, xfpustate_len);
549 uprintf("pid %d (%s): sigreturn set_fpcontext err %d\n",
550 p->p_pid, td->td_name, ret);
553 bcopy(&ucp->uc_mcontext.mc_rdi, regs, sizeof(*regs));
554 update_pcb_bases(pcb);
555 pcb->pcb_fsbase = ucp->uc_mcontext.mc_fsbase;
556 pcb->pcb_gsbase = ucp->uc_mcontext.mc_gsbase;
558 #if defined(COMPAT_43)
559 if (ucp->uc_mcontext.mc_onstack & 1)
560 td->td_sigstk.ss_flags |= SS_ONSTACK;
562 td->td_sigstk.ss_flags &= ~SS_ONSTACK;
565 kern_sigprocmask(td, SIG_SETMASK, &ucp->uc_sigmask, NULL, 0);
566 return (EJUSTRETURN);
569 #ifdef COMPAT_FREEBSD4
571 freebsd4_sigreturn(struct thread *td, struct freebsd4_sigreturn_args *uap)
574 return sys_sigreturn(td, (struct sigreturn_args *)uap);
579 * Reset the hardware debug registers if they were in use.
580 * They won't have any meaning for the newly exec'd process.
583 x86_clear_dbregs(struct pcb *pcb)
585 if ((pcb->pcb_flags & PCB_DBREGS) == 0)
597 * Clear the debug registers on the running CPU,
598 * otherwise they will end up affecting the next
599 * process we switch to.
603 clear_pcb_flags(pcb, PCB_DBREGS);
607 * Reset registers to default values on exec.
610 exec_setregs(struct thread *td, struct image_params *imgp, uintptr_t stack)
612 struct trapframe *regs;
614 register_t saved_rflags;
619 if (td->td_proc->p_md.md_ldt != NULL)
622 update_pcb_bases(pcb);
625 clear_pcb_flags(pcb, PCB_32BIT);
626 pcb->pcb_initial_fpucw = __INITIAL_FPUCW__;
628 saved_rflags = regs->tf_rflags & PSL_T;
629 bzero((char *)regs, sizeof(struct trapframe));
630 regs->tf_rip = imgp->entry_addr;
631 regs->tf_rsp = ((stack - 8) & ~0xFul) + 8;
632 regs->tf_rdi = stack; /* argv */
633 regs->tf_rflags = PSL_USER | saved_rflags;
634 regs->tf_ss = _udatasel;
635 regs->tf_cs = _ucodesel;
636 regs->tf_ds = _udatasel;
637 regs->tf_es = _udatasel;
638 regs->tf_fs = _ufssel;
639 regs->tf_gs = _ugssel;
640 regs->tf_flags = TF_HASSEGS;
642 x86_clear_dbregs(pcb);
645 * Drop the FP state if we hold it, so that the process gets a
646 * clean FP state if it uses the FPU again.
658 * CR0_MP, CR0_NE and CR0_TS are also set by npx_probe() for the
659 * BSP. See the comments there about why we set them.
661 cr0 |= CR0_MP | CR0_NE | CR0_TS | CR0_WP | CR0_AM;
666 * Initialize amd64 and configure to run kernel
670 * Initialize segments & interrupt table
672 static struct gate_descriptor idt0[NIDT];
673 struct gate_descriptor *idt = &idt0[0]; /* interrupt descriptor table */
675 static char dblfault_stack[DBLFAULT_STACK_SIZE] __aligned(16);
676 static char mce0_stack[MCE_STACK_SIZE] __aligned(16);
677 static char nmi0_stack[NMI_STACK_SIZE] __aligned(16);
678 static char dbg0_stack[DBG_STACK_SIZE] __aligned(16);
679 CTASSERT(sizeof(struct nmi_pcpu) == 16);
682 * Software prototypes -- in more palatable form.
684 * Keep GUFS32, GUGS32, GUCODE32 and GUDATA at the same
685 * slots as corresponding segments for i386 kernel.
687 struct soft_segment_descriptor gdt_segs[] = {
688 /* GNULL_SEL 0 Null Descriptor */
697 /* GNULL2_SEL 1 Null Descriptor */
706 /* GUFS32_SEL 2 32 bit %gs Descriptor for user */
708 .ssd_limit = 0xfffff,
709 .ssd_type = SDT_MEMRWA,
715 /* GUGS32_SEL 3 32 bit %fs Descriptor for user */
717 .ssd_limit = 0xfffff,
718 .ssd_type = SDT_MEMRWA,
724 /* GCODE_SEL 4 Code Descriptor for kernel */
726 .ssd_limit = 0xfffff,
727 .ssd_type = SDT_MEMERA,
733 /* GDATA_SEL 5 Data Descriptor for kernel */
735 .ssd_limit = 0xfffff,
736 .ssd_type = SDT_MEMRWA,
742 /* GUCODE32_SEL 6 32 bit Code Descriptor for user */
744 .ssd_limit = 0xfffff,
745 .ssd_type = SDT_MEMERA,
751 /* GUDATA_SEL 7 32/64 bit Data Descriptor for user */
753 .ssd_limit = 0xfffff,
754 .ssd_type = SDT_MEMRWA,
760 /* GUCODE_SEL 8 64 bit Code Descriptor for user */
762 .ssd_limit = 0xfffff,
763 .ssd_type = SDT_MEMERA,
769 /* GPROC0_SEL 9 Proc 0 Tss Descriptor */
771 .ssd_limit = sizeof(struct amd64tss) + IOPERM_BITMAP_SIZE - 1,
772 .ssd_type = SDT_SYSTSS,
778 /* Actually, the TSS is a system descriptor which is double size */
787 /* GUSERLDT_SEL 11 LDT Descriptor */
796 /* GUSERLDT_SEL 12 LDT Descriptor, double size */
806 _Static_assert(nitems(gdt_segs) == NGDT, "Stale NGDT");
809 setidt(int idx, inthand_t *func, int typ, int dpl, int ist)
811 struct gate_descriptor *ip;
814 ip->gd_looffset = (uintptr_t)func;
815 ip->gd_selector = GSEL(GCODE_SEL, SEL_KPL);
821 ip->gd_hioffset = ((uintptr_t)func)>>16 ;
825 IDTVEC(div), IDTVEC(dbg), IDTVEC(nmi), IDTVEC(bpt), IDTVEC(ofl),
826 IDTVEC(bnd), IDTVEC(ill), IDTVEC(dna), IDTVEC(fpusegm),
827 IDTVEC(tss), IDTVEC(missing), IDTVEC(stk), IDTVEC(prot),
828 IDTVEC(page), IDTVEC(mchk), IDTVEC(rsvd), IDTVEC(fpu), IDTVEC(align),
829 IDTVEC(xmm), IDTVEC(dblfault),
830 IDTVEC(div_pti), IDTVEC(bpt_pti),
831 IDTVEC(ofl_pti), IDTVEC(bnd_pti), IDTVEC(ill_pti), IDTVEC(dna_pti),
832 IDTVEC(fpusegm_pti), IDTVEC(tss_pti), IDTVEC(missing_pti),
833 IDTVEC(stk_pti), IDTVEC(prot_pti), IDTVEC(page_pti),
834 IDTVEC(rsvd_pti), IDTVEC(fpu_pti), IDTVEC(align_pti),
837 IDTVEC(dtrace_ret), IDTVEC(dtrace_ret_pti),
840 IDTVEC(xen_intr_upcall), IDTVEC(xen_intr_upcall_pti),
842 IDTVEC(fast_syscall), IDTVEC(fast_syscall32),
843 IDTVEC(fast_syscall_pti);
847 * Display the index and function name of any IDT entries that don't use
848 * the default 'rsvd' entry point.
850 DB_SHOW_COMMAND(idt, db_show_idt)
852 struct gate_descriptor *ip;
857 for (idx = 0; idx < NIDT && !db_pager_quit; idx++) {
858 func = ((long)ip->gd_hioffset << 16 | ip->gd_looffset);
859 if (func != (uintptr_t)&IDTVEC(rsvd)) {
860 db_printf("%3d\t", idx);
861 db_printsym(func, DB_STGY_PROC);
868 /* Show privileged registers. */
869 DB_SHOW_COMMAND(sysregs, db_show_sysregs)
874 } __packed idtr, gdtr;
877 __asm __volatile("sidt %0" : "=m" (idtr));
878 db_printf("idtr\t0x%016lx/%04x\n",
879 (u_long)idtr.base, (u_int)idtr.limit);
880 __asm __volatile("sgdt %0" : "=m" (gdtr));
881 db_printf("gdtr\t0x%016lx/%04x\n",
882 (u_long)gdtr.base, (u_int)gdtr.limit);
883 __asm __volatile("sldt %0" : "=r" (ldt));
884 db_printf("ldtr\t0x%04x\n", ldt);
885 __asm __volatile("str %0" : "=r" (tr));
886 db_printf("tr\t0x%04x\n", tr);
887 db_printf("cr0\t0x%016lx\n", rcr0());
888 db_printf("cr2\t0x%016lx\n", rcr2());
889 db_printf("cr3\t0x%016lx\n", rcr3());
890 db_printf("cr4\t0x%016lx\n", rcr4());
891 if (rcr4() & CR4_XSAVE)
892 db_printf("xcr0\t0x%016lx\n", rxcr(0));
893 db_printf("EFER\t0x%016lx\n", rdmsr(MSR_EFER));
894 if (cpu_feature2 & (CPUID2_VMX | CPUID2_SMX))
895 db_printf("FEATURES_CTL\t%016lx\n",
896 rdmsr(MSR_IA32_FEATURE_CONTROL));
897 db_printf("DEBUG_CTL\t0x%016lx\n", rdmsr(MSR_DEBUGCTLMSR));
898 db_printf("PAT\t0x%016lx\n", rdmsr(MSR_PAT));
899 db_printf("GSBASE\t0x%016lx\n", rdmsr(MSR_GSBASE));
902 DB_SHOW_COMMAND(dbregs, db_show_dbregs)
905 db_printf("dr0\t0x%016lx\n", rdr0());
906 db_printf("dr1\t0x%016lx\n", rdr1());
907 db_printf("dr2\t0x%016lx\n", rdr2());
908 db_printf("dr3\t0x%016lx\n", rdr3());
909 db_printf("dr6\t0x%016lx\n", rdr6());
910 db_printf("dr7\t0x%016lx\n", rdr7());
916 struct user_segment_descriptor *sd;
917 struct soft_segment_descriptor *ssd;
920 ssd->ssd_base = (sd->sd_hibase << 24) | sd->sd_lobase;
921 ssd->ssd_limit = (sd->sd_hilimit << 16) | sd->sd_lolimit;
922 ssd->ssd_type = sd->sd_type;
923 ssd->ssd_dpl = sd->sd_dpl;
924 ssd->ssd_p = sd->sd_p;
925 ssd->ssd_long = sd->sd_long;
926 ssd->ssd_def32 = sd->sd_def32;
927 ssd->ssd_gran = sd->sd_gran;
932 struct soft_segment_descriptor *ssd;
933 struct user_segment_descriptor *sd;
936 sd->sd_lobase = (ssd->ssd_base) & 0xffffff;
937 sd->sd_hibase = (ssd->ssd_base >> 24) & 0xff;
938 sd->sd_lolimit = (ssd->ssd_limit) & 0xffff;
939 sd->sd_hilimit = (ssd->ssd_limit >> 16) & 0xf;
940 sd->sd_type = ssd->ssd_type;
941 sd->sd_dpl = ssd->ssd_dpl;
942 sd->sd_p = ssd->ssd_p;
943 sd->sd_long = ssd->ssd_long;
944 sd->sd_def32 = ssd->ssd_def32;
945 sd->sd_gran = ssd->ssd_gran;
950 struct soft_segment_descriptor *ssd;
951 struct system_segment_descriptor *sd;
954 sd->sd_lobase = (ssd->ssd_base) & 0xffffff;
955 sd->sd_hibase = (ssd->ssd_base >> 24) & 0xfffffffffful;
956 sd->sd_lolimit = (ssd->ssd_limit) & 0xffff;
957 sd->sd_hilimit = (ssd->ssd_limit >> 16) & 0xf;
958 sd->sd_type = ssd->ssd_type;
959 sd->sd_dpl = ssd->ssd_dpl;
960 sd->sd_p = ssd->ssd_p;
961 sd->sd_gran = ssd->ssd_gran;
967 add_physmap_entry(uint64_t base, uint64_t length, vm_paddr_t *physmap,
970 int i, insert_idx, physmap_idx;
972 physmap_idx = *physmap_idxp;
978 * Find insertion point while checking for overlap. Start off by
979 * assuming the new entry will be added to the end.
981 * NB: physmap_idx points to the next free slot.
983 insert_idx = physmap_idx;
984 for (i = 0; i <= physmap_idx; i += 2) {
985 if (base < physmap[i + 1]) {
986 if (base + length <= physmap[i]) {
990 if (boothowto & RB_VERBOSE)
992 "Overlapping memory regions, ignoring second region\n");
997 /* See if we can prepend to the next entry. */
998 if (insert_idx <= physmap_idx && base + length == physmap[insert_idx]) {
999 physmap[insert_idx] = base;
1003 /* See if we can append to the previous entry. */
1004 if (insert_idx > 0 && base == physmap[insert_idx - 1]) {
1005 physmap[insert_idx - 1] += length;
1010 *physmap_idxp = physmap_idx;
1011 if (physmap_idx == PHYS_AVAIL_ENTRIES) {
1013 "Too many segments in the physical address map, giving up\n");
1018 * Move the last 'N' entries down to make room for the new
1021 for (i = (physmap_idx - 2); i > insert_idx; i -= 2) {
1022 physmap[i] = physmap[i - 2];
1023 physmap[i + 1] = physmap[i - 1];
1026 /* Insert the new entry. */
1027 physmap[insert_idx] = base;
1028 physmap[insert_idx + 1] = base + length;
1033 bios_add_smap_entries(struct bios_smap *smapbase, u_int32_t smapsize,
1034 vm_paddr_t *physmap, int *physmap_idx)
1036 struct bios_smap *smap, *smapend;
1038 smapend = (struct bios_smap *)((uintptr_t)smapbase + smapsize);
1040 for (smap = smapbase; smap < smapend; smap++) {
1041 if (boothowto & RB_VERBOSE)
1042 printf("SMAP type=%02x base=%016lx len=%016lx\n",
1043 smap->type, smap->base, smap->length);
1045 if (smap->type != SMAP_TYPE_MEMORY)
1048 if (!add_physmap_entry(smap->base, smap->length, physmap,
1055 add_efi_map_entries(struct efi_map_header *efihdr, vm_paddr_t *physmap,
1058 struct efi_md *map, *p;
1063 static const char *types[] = {
1069 "RuntimeServicesCode",
1070 "RuntimeServicesData",
1071 "ConventionalMemory",
1073 "ACPIReclaimMemory",
1076 "MemoryMappedIOPortSpace",
1082 * Memory map data provided by UEFI via the GetMemoryMap
1083 * Boot Services API.
1085 efisz = (sizeof(struct efi_map_header) + 0xf) & ~0xf;
1086 map = (struct efi_md *)((uint8_t *)efihdr + efisz);
1088 if (efihdr->descriptor_size == 0)
1090 ndesc = efihdr->memory_size / efihdr->descriptor_size;
1092 if (boothowto & RB_VERBOSE)
1093 printf("%23s %12s %12s %8s %4s\n",
1094 "Type", "Physical", "Virtual", "#Pages", "Attr");
1096 for (i = 0, p = map; i < ndesc; i++,
1097 p = efi_next_descriptor(p, efihdr->descriptor_size)) {
1098 if (boothowto & RB_VERBOSE) {
1099 if (p->md_type < nitems(types))
1100 type = types[p->md_type];
1103 printf("%23s %012lx %012lx %08lx ", type, p->md_phys,
1104 p->md_virt, p->md_pages);
1105 if (p->md_attr & EFI_MD_ATTR_UC)
1107 if (p->md_attr & EFI_MD_ATTR_WC)
1109 if (p->md_attr & EFI_MD_ATTR_WT)
1111 if (p->md_attr & EFI_MD_ATTR_WB)
1113 if (p->md_attr & EFI_MD_ATTR_UCE)
1115 if (p->md_attr & EFI_MD_ATTR_WP)
1117 if (p->md_attr & EFI_MD_ATTR_RP)
1119 if (p->md_attr & EFI_MD_ATTR_XP)
1121 if (p->md_attr & EFI_MD_ATTR_NV)
1123 if (p->md_attr & EFI_MD_ATTR_MORE_RELIABLE)
1124 printf("MORE_RELIABLE ");
1125 if (p->md_attr & EFI_MD_ATTR_RO)
1127 if (p->md_attr & EFI_MD_ATTR_RT)
1132 switch (p->md_type) {
1133 case EFI_MD_TYPE_CODE:
1134 case EFI_MD_TYPE_DATA:
1135 case EFI_MD_TYPE_BS_CODE:
1136 case EFI_MD_TYPE_BS_DATA:
1137 case EFI_MD_TYPE_FREE:
1139 * We're allowed to use any entry with these types.
1146 if (!add_physmap_entry(p->md_phys, (p->md_pages * PAGE_SIZE),
1147 physmap, physmap_idx))
1153 native_parse_memmap(caddr_t kmdp, vm_paddr_t *physmap, int *physmap_idx)
1155 struct bios_smap *smap;
1156 struct efi_map_header *efihdr;
1160 * Memory map from INT 15:E820.
1162 * subr_module.c says:
1163 * "Consumer may safely assume that size value precedes data."
1164 * ie: an int32_t immediately precedes smap.
1167 efihdr = (struct efi_map_header *)preload_search_info(kmdp,
1168 MODINFO_METADATA | MODINFOMD_EFI_MAP);
1169 smap = (struct bios_smap *)preload_search_info(kmdp,
1170 MODINFO_METADATA | MODINFOMD_SMAP);
1171 if (efihdr == NULL && smap == NULL)
1172 panic("No BIOS smap or EFI map info from loader!");
1174 if (efihdr != NULL) {
1175 add_efi_map_entries(efihdr, physmap, physmap_idx);
1176 strlcpy(bootmethod, "UEFI", sizeof(bootmethod));
1178 size = *((u_int32_t *)smap - 1);
1179 bios_add_smap_entries(smap, size, physmap, physmap_idx);
1180 strlcpy(bootmethod, "BIOS", sizeof(bootmethod));
1184 #define PAGES_PER_GB (1024 * 1024 * 1024 / PAGE_SIZE)
1187 * Populate the (physmap) array with base/bound pairs describing the
1188 * available physical memory in the system, then test this memory and
1189 * build the phys_avail array describing the actually-available memory.
1191 * Total memory size may be set by the kernel environment variable
1192 * hw.physmem or the compile-time define MAXMEM.
1194 * XXX first should be vm_paddr_t.
1197 getmemsize(caddr_t kmdp, u_int64_t first)
1199 int i, physmap_idx, pa_indx, da_indx;
1200 vm_paddr_t pa, physmap[PHYS_AVAIL_ENTRIES];
1201 u_long physmem_start, physmem_tunable, memtest;
1203 quad_t dcons_addr, dcons_size;
1207 * Tell the physical memory allocator about pages used to store
1208 * the kernel and preloaded data. See kmem_bootstrap_free().
1210 vm_phys_early_add_seg((vm_paddr_t)kernphys, trunc_page(first));
1212 bzero(physmap, sizeof(physmap));
1215 init_ops.parse_memmap(kmdp, physmap, &physmap_idx);
1219 * Find the 'base memory' segment for SMP
1222 for (i = 0; i <= physmap_idx; i += 2) {
1223 if (physmap[i] <= 0xA0000) {
1224 basemem = physmap[i + 1] / 1024;
1228 if (basemem == 0 || basemem > 640) {
1231 "Memory map doesn't contain a basemem segment, faking it");
1236 * Maxmem isn't the "maximum memory", it's one larger than the
1237 * highest page of the physical address space. It should be
1238 * called something like "Maxphyspage". We may adjust this
1239 * based on ``hw.physmem'' and the results of the memory test.
1241 Maxmem = atop(physmap[physmap_idx + 1]);
1244 Maxmem = MAXMEM / 4;
1247 if (TUNABLE_ULONG_FETCH("hw.physmem", &physmem_tunable))
1248 Maxmem = atop(physmem_tunable);
1251 * The boot memory test is disabled by default, as it takes a
1252 * significant amount of time on large-memory systems, and is
1253 * unfriendly to virtual machines as it unnecessarily touches all
1256 * A general name is used as the code may be extended to support
1257 * additional tests beyond the current "page present" test.
1260 TUNABLE_ULONG_FETCH("hw.memtest.tests", &memtest);
1263 * Don't allow MAXMEM or hw.physmem to extend the amount of memory
1266 if (Maxmem > atop(physmap[physmap_idx + 1]))
1267 Maxmem = atop(physmap[physmap_idx + 1]);
1269 if (atop(physmap[physmap_idx + 1]) != Maxmem &&
1270 (boothowto & RB_VERBOSE))
1271 printf("Physical memory use set to %ldK\n", Maxmem * 4);
1274 * Make hole for "AP -> long mode" bootstrap code. The
1275 * mp_bootaddress vector is only available when the kernel
1276 * is configured to support APs and APs for the system start
1277 * in real mode mode (e.g. SMP bare metal).
1280 mp_bootaddress(physmap, &physmap_idx);
1283 /* call pmap initialization to make new kernel address space */
1284 pmap_bootstrap(&first);
1287 * Size up each available chunk of physical memory.
1289 * XXX Some BIOSes corrupt low 64KB between suspend and resume.
1290 * By default, mask off the first 16 pages unless we appear to be
1293 physmem_start = (vm_guest > VM_GUEST_NO ? 1 : 16) << PAGE_SHIFT;
1294 TUNABLE_ULONG_FETCH("hw.physmem.start", &physmem_start);
1295 if (physmap[0] < physmem_start) {
1296 if (physmem_start < PAGE_SIZE)
1297 physmap[0] = PAGE_SIZE;
1298 else if (physmem_start >= physmap[1])
1299 physmap[0] = round_page(physmap[1] - PAGE_SIZE);
1301 physmap[0] = round_page(physmem_start);
1305 phys_avail[pa_indx++] = physmap[0];
1306 phys_avail[pa_indx] = physmap[0];
1307 dump_avail[da_indx] = physmap[0];
1311 * Get dcons buffer address
1313 if (getenv_quad("dcons.addr", &dcons_addr) == 0 ||
1314 getenv_quad("dcons.size", &dcons_size) == 0)
1318 * physmap is in bytes, so when converting to page boundaries,
1319 * round up the start address and round down the end address.
1323 printf("Testing system memory");
1324 for (i = 0; i <= physmap_idx; i += 2) {
1327 end = ptoa((vm_paddr_t)Maxmem);
1328 if (physmap[i + 1] < end)
1329 end = trunc_page(physmap[i + 1]);
1330 for (pa = round_page(physmap[i]); pa < end; pa += PAGE_SIZE) {
1331 int tmp, page_bad, full;
1332 int *ptr = (int *)CADDR1;
1336 * block out kernel memory as not available.
1338 if (pa >= (vm_paddr_t)kernphys && pa < first)
1342 * block out dcons buffer
1345 && pa >= trunc_page(dcons_addr)
1346 && pa < dcons_addr + dcons_size)
1354 * Print a "." every GB to show we're making
1358 if ((page_counter % PAGES_PER_GB) == 0)
1362 * map page into kernel: valid, read/write,non-cacheable
1364 *pte = pa | PG_V | PG_RW | PG_NC_PWT | PG_NC_PCD;
1369 * Test for alternating 1's and 0's
1371 *(volatile int *)ptr = 0xaaaaaaaa;
1372 if (*(volatile int *)ptr != 0xaaaaaaaa)
1375 * Test for alternating 0's and 1's
1377 *(volatile int *)ptr = 0x55555555;
1378 if (*(volatile int *)ptr != 0x55555555)
1383 *(volatile int *)ptr = 0xffffffff;
1384 if (*(volatile int *)ptr != 0xffffffff)
1389 *(volatile int *)ptr = 0x0;
1390 if (*(volatile int *)ptr != 0x0)
1393 * Restore original value.
1399 * Adjust array of valid/good pages.
1401 if (page_bad == TRUE)
1404 * If this good page is a continuation of the
1405 * previous set of good pages, then just increase
1406 * the end pointer. Otherwise start a new chunk.
1407 * Note that "end" points one higher than end,
1408 * making the range >= start and < end.
1409 * If we're also doing a speculative memory
1410 * test and we at or past the end, bump up Maxmem
1411 * so that we keep going. The first bad page
1412 * will terminate the loop.
1414 if (phys_avail[pa_indx] == pa) {
1415 phys_avail[pa_indx] += PAGE_SIZE;
1418 if (pa_indx == PHYS_AVAIL_ENTRIES) {
1420 "Too many holes in the physical address space, giving up\n");
1425 phys_avail[pa_indx++] = pa; /* start */
1426 phys_avail[pa_indx] = pa + PAGE_SIZE; /* end */
1430 if (dump_avail[da_indx] == pa) {
1431 dump_avail[da_indx] += PAGE_SIZE;
1434 if (da_indx == PHYS_AVAIL_ENTRIES) {
1438 dump_avail[da_indx++] = pa; /* start */
1439 dump_avail[da_indx] = pa + PAGE_SIZE; /* end */
1453 * The last chunk must contain at least one page plus the message
1454 * buffer to avoid complicating other code (message buffer address
1455 * calculation, etc.).
1457 while (phys_avail[pa_indx - 1] + PAGE_SIZE +
1458 round_page(msgbufsize) >= phys_avail[pa_indx]) {
1459 physmem -= atop(phys_avail[pa_indx] - phys_avail[pa_indx - 1]);
1460 phys_avail[pa_indx--] = 0;
1461 phys_avail[pa_indx--] = 0;
1464 Maxmem = atop(phys_avail[pa_indx]);
1466 /* Trim off space for the message buffer. */
1467 phys_avail[pa_indx] -= round_page(msgbufsize);
1469 /* Map the message buffer. */
1470 msgbufp = (struct msgbuf *)PHYS_TO_DMAP(phys_avail[pa_indx]);
1474 native_parse_preload_data(u_int64_t modulep)
1479 vm_offset_t ksym_start;
1480 vm_offset_t ksym_end;
1483 preload_metadata = (caddr_t)(uintptr_t)(modulep + KERNBASE);
1484 preload_bootstrap_relocate(KERNBASE);
1485 kmdp = preload_search_by_type("elf kernel");
1487 kmdp = preload_search_by_type("elf64 kernel");
1488 boothowto = MD_FETCH(kmdp, MODINFOMD_HOWTO, int);
1489 envp = MD_FETCH(kmdp, MODINFOMD_ENVP, char *);
1492 init_static_kenv(envp, 0);
1494 ksym_start = MD_FETCH(kmdp, MODINFOMD_SSYM, uintptr_t);
1495 ksym_end = MD_FETCH(kmdp, MODINFOMD_ESYM, uintptr_t);
1496 db_fetch_ksymtab(ksym_start, ksym_end, 0);
1498 efi_systbl_phys = MD_FETCH(kmdp, MODINFOMD_FW_HANDLE, vm_paddr_t);
1504 amd64_kdb_init(void)
1508 if (boothowto & RB_KDB)
1509 kdb_enter(KDB_WHY_BOOTFLAGS, "Boot flags requested debugger");
1513 /* Set up the fast syscall stuff */
1515 amd64_conf_fast_syscall(void)
1519 msr = rdmsr(MSR_EFER) | EFER_SCE;
1520 wrmsr(MSR_EFER, msr);
1521 wrmsr(MSR_LSTAR, pti ? (u_int64_t)IDTVEC(fast_syscall_pti) :
1522 (u_int64_t)IDTVEC(fast_syscall));
1523 wrmsr(MSR_CSTAR, (u_int64_t)IDTVEC(fast_syscall32));
1524 msr = ((u_int64_t)GSEL(GCODE_SEL, SEL_KPL) << 32) |
1525 ((u_int64_t)GSEL(GUCODE32_SEL, SEL_UPL) << 48);
1526 wrmsr(MSR_STAR, msr);
1527 wrmsr(MSR_SF_MASK, PSL_NT | PSL_T | PSL_I | PSL_C | PSL_D | PSL_AC);
1531 amd64_bsp_pcpu_init1(struct pcpu *pc)
1533 struct user_segment_descriptor *gdt;
1535 PCPU_SET(prvspace, pc);
1536 gdt = *PCPU_PTR(gdt);
1537 PCPU_SET(curthread, &thread0);
1538 PCPU_SET(tssp, PCPU_PTR(common_tss));
1539 PCPU_SET(tss, (struct system_segment_descriptor *)&gdt[GPROC0_SEL]);
1540 PCPU_SET(ldt, (struct system_segment_descriptor *)&gdt[GUSERLDT_SEL]);
1541 PCPU_SET(fs32p, &gdt[GUFS32_SEL]);
1542 PCPU_SET(gs32p, &gdt[GUGS32_SEL]);
1543 PCPU_SET(ucr3_load_mask, PMAP_UCR3_NOMASK);
1544 PCPU_SET(smp_tlb_gen, 1);
1548 amd64_bsp_pcpu_init2(uint64_t rsp0)
1551 PCPU_SET(rsp0, rsp0);
1552 PCPU_SET(pti_rsp0, ((vm_offset_t)PCPU_PTR(pti_stack) +
1553 PC_PTI_STACK_SZ * sizeof(uint64_t)) & ~0xful);
1554 PCPU_SET(curpcb, thread0.td_pcb);
1558 amd64_bsp_ist_init(struct pcpu *pc)
1560 struct nmi_pcpu *np;
1561 struct amd64tss *tssp;
1563 tssp = &pc->pc_common_tss;
1565 /* doublefault stack space, runs on ist1 */
1566 np = ((struct nmi_pcpu *)&dblfault_stack[sizeof(dblfault_stack)]) - 1;
1567 np->np_pcpu = (register_t)pc;
1568 tssp->tss_ist1 = (long)np;
1571 * NMI stack, runs on ist2. The pcpu pointer is stored just
1572 * above the start of the ist2 stack.
1574 np = ((struct nmi_pcpu *)&nmi0_stack[sizeof(nmi0_stack)]) - 1;
1575 np->np_pcpu = (register_t)pc;
1576 tssp->tss_ist2 = (long)np;
1579 * MC# stack, runs on ist3. The pcpu pointer is stored just
1580 * above the start of the ist3 stack.
1582 np = ((struct nmi_pcpu *)&mce0_stack[sizeof(mce0_stack)]) - 1;
1583 np->np_pcpu = (register_t)pc;
1584 tssp->tss_ist3 = (long)np;
1587 * DB# stack, runs on ist4.
1589 np = ((struct nmi_pcpu *)&dbg0_stack[sizeof(dbg0_stack)]) - 1;
1590 np->np_pcpu = (register_t)pc;
1591 tssp->tss_ist4 = (long)np;
1595 hammer_time(u_int64_t modulep, u_int64_t physfree)
1600 struct xstate_hdr *xhdr;
1603 struct user_segment_descriptor *gdt;
1604 struct region_descriptor r_gdt;
1609 TSRAW(&thread0, TS_ENTER, __func__, NULL);
1611 kmdp = init_ops.parse_preload_data(modulep);
1613 efi_boot = preload_search_info(kmdp, MODINFO_METADATA |
1614 MODINFOMD_EFI_MAP) != NULL;
1617 /* Tell the bios to warmboot next time */
1618 atomic_store_short((u_short *)0x472, 0x1234);
1621 physfree += ucode_load_bsp(physfree + KERNBASE);
1622 physfree = roundup2(physfree, PAGE_SIZE);
1625 identify_hypervisor();
1626 identify_cpu_fixup_bsp();
1628 initializecpucache();
1631 * Check for pti, pcid, and invpcid before ifuncs are
1632 * resolved, to correctly select the implementation for
1633 * pmap_activate_sw_mode().
1635 pti = pti_get_default();
1636 TUNABLE_INT_FETCH("vm.pmap.pti", &pti);
1637 TUNABLE_INT_FETCH("vm.pmap.pcid_enabled", &pmap_pcid_enabled);
1638 if ((cpu_feature2 & CPUID2_PCID) != 0 && pmap_pcid_enabled) {
1639 invpcid_works = (cpu_stdext_feature &
1640 CPUID_STDEXT_INVPCID) != 0;
1642 pmap_pcid_enabled = 0;
1645 link_elf_ireloc(kmdp);
1648 * This may be done better later if it gets more high level
1649 * components in it. If so just link td->td_proc here.
1651 proc_linkup0(&proc0, &thread0);
1653 /* Init basic tunables, hz etc */
1656 thread0.td_kstack = physfree + KERNBASE;
1657 thread0.td_kstack_pages = kstack_pages;
1658 kstack0_sz = thread0.td_kstack_pages * PAGE_SIZE;
1659 bzero((void *)thread0.td_kstack, kstack0_sz);
1660 physfree += kstack0_sz;
1663 * Initialize enough of thread0 for delayed invalidation to
1664 * work very early. Rely on thread0.td_base_pri
1665 * zero-initialization, it is reset to PVM at proc0_init().
1667 pmap_thread_init_invl_gen(&thread0);
1669 pc = &temp_bsp_pcpu;
1670 pcpu_init(pc, 0, sizeof(struct pcpu));
1671 gdt = &temp_bsp_pcpu.pc_gdt[0];
1674 * make gdt memory segments
1676 for (x = 0; x < NGDT; x++) {
1677 if (x != GPROC0_SEL && x != (GPROC0_SEL + 1) &&
1678 x != GUSERLDT_SEL && x != (GUSERLDT_SEL) + 1)
1679 ssdtosd(&gdt_segs[x], &gdt[x]);
1681 gdt_segs[GPROC0_SEL].ssd_base = (uintptr_t)&pc->pc_common_tss;
1682 ssdtosyssd(&gdt_segs[GPROC0_SEL],
1683 (struct system_segment_descriptor *)&gdt[GPROC0_SEL]);
1685 r_gdt.rd_limit = NGDT * sizeof(gdt[0]) - 1;
1686 r_gdt.rd_base = (long)gdt;
1689 wrmsr(MSR_FSBASE, 0); /* User value */
1690 wrmsr(MSR_GSBASE, (u_int64_t)pc);
1691 wrmsr(MSR_KGSBASE, 0); /* User value while in the kernel */
1693 dpcpu_init((void *)(physfree + KERNBASE), 0);
1694 physfree += DPCPU_SIZE;
1695 amd64_bsp_pcpu_init1(pc);
1696 /* Non-late cninit() and printf() can be moved up to here. */
1699 * Initialize mutexes.
1701 * icu_lock: in order to allow an interrupt to occur in a critical
1702 * section, to set pcpu->ipending (etc...) properly, we
1703 * must be able to get the icu lock, so it can't be
1707 mtx_init(&icu_lock, "icu", NULL, MTX_SPIN | MTX_NOWITNESS);
1708 mtx_init(&dt_lock, "descriptor tables", NULL, MTX_DEF);
1711 for (x = 0; x < NIDT; x++)
1712 setidt(x, pti ? &IDTVEC(rsvd_pti) : &IDTVEC(rsvd), SDT_SYSIGT,
1714 setidt(IDT_DE, pti ? &IDTVEC(div_pti) : &IDTVEC(div), SDT_SYSIGT,
1716 setidt(IDT_DB, &IDTVEC(dbg), SDT_SYSIGT, SEL_KPL, 4);
1717 setidt(IDT_NMI, &IDTVEC(nmi), SDT_SYSIGT, SEL_KPL, 2);
1718 setidt(IDT_BP, pti ? &IDTVEC(bpt_pti) : &IDTVEC(bpt), SDT_SYSIGT,
1720 setidt(IDT_OF, pti ? &IDTVEC(ofl_pti) : &IDTVEC(ofl), SDT_SYSIGT,
1722 setidt(IDT_BR, pti ? &IDTVEC(bnd_pti) : &IDTVEC(bnd), SDT_SYSIGT,
1724 setidt(IDT_UD, pti ? &IDTVEC(ill_pti) : &IDTVEC(ill), SDT_SYSIGT,
1726 setidt(IDT_NM, pti ? &IDTVEC(dna_pti) : &IDTVEC(dna), SDT_SYSIGT,
1728 setidt(IDT_DF, &IDTVEC(dblfault), SDT_SYSIGT, SEL_KPL, 1);
1729 setidt(IDT_FPUGP, pti ? &IDTVEC(fpusegm_pti) : &IDTVEC(fpusegm),
1730 SDT_SYSIGT, SEL_KPL, 0);
1731 setidt(IDT_TS, pti ? &IDTVEC(tss_pti) : &IDTVEC(tss), SDT_SYSIGT,
1733 setidt(IDT_NP, pti ? &IDTVEC(missing_pti) : &IDTVEC(missing),
1734 SDT_SYSIGT, SEL_KPL, 0);
1735 setidt(IDT_SS, pti ? &IDTVEC(stk_pti) : &IDTVEC(stk), SDT_SYSIGT,
1737 setidt(IDT_GP, pti ? &IDTVEC(prot_pti) : &IDTVEC(prot), SDT_SYSIGT,
1739 setidt(IDT_PF, pti ? &IDTVEC(page_pti) : &IDTVEC(page), SDT_SYSIGT,
1741 setidt(IDT_MF, pti ? &IDTVEC(fpu_pti) : &IDTVEC(fpu), SDT_SYSIGT,
1743 setidt(IDT_AC, pti ? &IDTVEC(align_pti) : &IDTVEC(align), SDT_SYSIGT,
1745 setidt(IDT_MC, &IDTVEC(mchk), SDT_SYSIGT, SEL_KPL, 3);
1746 setidt(IDT_XF, pti ? &IDTVEC(xmm_pti) : &IDTVEC(xmm), SDT_SYSIGT,
1748 #ifdef KDTRACE_HOOKS
1749 setidt(IDT_DTRACE_RET, pti ? &IDTVEC(dtrace_ret_pti) :
1750 &IDTVEC(dtrace_ret), SDT_SYSIGT, SEL_UPL, 0);
1753 setidt(IDT_EVTCHN, pti ? &IDTVEC(xen_intr_upcall_pti) :
1754 &IDTVEC(xen_intr_upcall), SDT_SYSIGT, SEL_KPL, 0);
1756 r_idt.rd_limit = sizeof(idt0) - 1;
1757 r_idt.rd_base = (long) idt;
1761 * Initialize the clock before the console so that console
1762 * initialization can use DELAY().
1767 * Use vt(4) by default for UEFI boot (during the sc(4)/vt(4)
1769 * Once bootblocks have updated, we can test directly for
1770 * efi_systbl != NULL here...
1773 vty_set_preferred(VTY_VT);
1775 TUNABLE_INT_FETCH("hw.ibrs_disable", &hw_ibrs_disable);
1776 TUNABLE_INT_FETCH("machdep.mitigations.ibrs.disable", &hw_ibrs_disable);
1778 TUNABLE_INT_FETCH("hw.spec_store_bypass_disable", &hw_ssb_disable);
1779 TUNABLE_INT_FETCH("machdep.mitigations.ssb.disable", &hw_ssb_disable);
1781 TUNABLE_INT_FETCH("machdep.syscall_ret_l1d_flush",
1782 &syscall_ret_l1d_flush_mode);
1784 TUNABLE_INT_FETCH("hw.mds_disable", &hw_mds_disable);
1785 TUNABLE_INT_FETCH("machdep.mitigations.mds.disable", &hw_mds_disable);
1787 TUNABLE_INT_FETCH("machdep.mitigations.taa.enable", &x86_taa_enable);
1789 TUNABLE_INT_FETCH("machdep.mitigations.rndgs.enable",
1790 &x86_rngds_mitg_enable);
1792 finishidentcpu(); /* Final stage of CPU initialization */
1793 initializecpu(); /* Initialize CPU registers */
1795 amd64_bsp_ist_init(pc);
1797 /* Set the IO permission bitmap (empty due to tss seg limit) */
1798 pc->pc_common_tss.tss_iobase = sizeof(struct amd64tss) +
1801 gsel_tss = GSEL(GPROC0_SEL, SEL_KPL);
1804 amd64_conf_fast_syscall();
1807 * We initialize the PCB pointer early so that exception
1808 * handlers will work. Also set up td_critnest to short-cut
1809 * the page fault handler.
1811 cpu_max_ext_state_size = sizeof(struct savefpu);
1812 set_top_of_stack_td(&thread0);
1813 thread0.td_pcb = get_pcb_td(&thread0);
1814 thread0.td_critnest = 1;
1817 * The console and kdb should be initialized even earlier than here,
1818 * but some console drivers don't work until after getmemsize().
1819 * Default to late console initialization to support these drivers.
1820 * This loses mainly printf()s in getmemsize() and early debugging.
1823 TUNABLE_INT_FETCH("debug.late_console", &late_console);
1824 if (!late_console) {
1829 getmemsize(kmdp, physfree);
1830 init_param2(physmem);
1832 /* now running on new page tables, configured,and u/iom is accessible */
1835 /* This call might adjust phys_avail[]. */
1843 * Dump the boot metadata. We have to wait for cninit() since console
1844 * output is required. If it's grossly incorrect the kernel will never
1847 if (getenv_is_true("debug.dump_modinfo_at_boot"))
1855 /* Reset and mask the atpics and leave them shut down. */
1859 * Point the ICU spurious interrupt vectors at the APIC spurious
1860 * interrupt handler.
1862 setidt(IDT_IO_INTS + 7, IDTVEC(spuriousint), SDT_SYSIGT, SEL_KPL, 0);
1863 setidt(IDT_IO_INTS + 15, IDTVEC(spuriousint), SDT_SYSIGT, SEL_KPL, 0);
1866 #error "have you forgotten the isa device?"
1872 msgbufinit(msgbufp, msgbufsize);
1876 * Reinitialize thread0's stack base now that the xsave area size is
1877 * known. Set up thread0's pcb save area after fpuinit calculated fpu
1878 * save area size. Zero out the extended state header in fpu save area.
1880 set_top_of_stack_td(&thread0);
1881 thread0.td_pcb->pcb_save = get_pcb_user_save_td(&thread0);
1882 bzero(thread0.td_pcb->pcb_save, cpu_max_ext_state_size);
1884 xhdr = (struct xstate_hdr *)(get_pcb_user_save_td(&thread0) +
1886 xhdr->xstate_bv = xsave_mask;
1888 /* make an initial tss so cpu can get interrupt stack on syscall! */
1889 rsp0 = thread0.td_md.md_stack_base;
1890 /* Ensure the stack is aligned to 16 bytes */
1892 PCPU_PTR(common_tss)->tss_rsp0 = rsp0;
1893 amd64_bsp_pcpu_init2(rsp0);
1895 /* transfer to user mode */
1897 _ucodesel = GSEL(GUCODE_SEL, SEL_UPL);
1898 _udatasel = GSEL(GUDATA_SEL, SEL_UPL);
1899 _ucode32sel = GSEL(GUCODE32_SEL, SEL_UPL);
1900 _ufssel = GSEL(GUFS32_SEL, SEL_UPL);
1901 _ugssel = GSEL(GUGS32_SEL, SEL_UPL);
1907 /* setup proc 0's pcb */
1908 thread0.td_pcb->pcb_flags = 0;
1909 thread0.td_frame = &proc0_tf;
1911 env = kern_getenv("kernelname");
1913 strlcpy(kernelname, env, sizeof(kernelname));
1920 thread0.td_critnest = 0;
1926 /* Location of kernel stack for locore */
1927 return (thread0.td_md.md_stack_base);
1931 cpu_pcpu_init(struct pcpu *pcpu, int cpuid, size_t size)
1934 pcpu->pc_acpi_id = 0xffffffff;
1938 smap_sysctl_handler(SYSCTL_HANDLER_ARGS)
1940 struct bios_smap *smapbase;
1941 struct bios_smap_xattr smap;
1944 int count, error, i;
1946 /* Retrieve the system memory map from the loader. */
1947 kmdp = preload_search_by_type("elf kernel");
1949 kmdp = preload_search_by_type("elf64 kernel");
1950 smapbase = (struct bios_smap *)preload_search_info(kmdp,
1951 MODINFO_METADATA | MODINFOMD_SMAP);
1952 if (smapbase == NULL)
1954 smapattr = (uint32_t *)preload_search_info(kmdp,
1955 MODINFO_METADATA | MODINFOMD_SMAP_XATTR);
1956 count = *((uint32_t *)smapbase - 1) / sizeof(*smapbase);
1958 for (i = 0; i < count; i++) {
1959 smap.base = smapbase[i].base;
1960 smap.length = smapbase[i].length;
1961 smap.type = smapbase[i].type;
1962 if (smapattr != NULL)
1963 smap.xattr = smapattr[i];
1966 error = SYSCTL_OUT(req, &smap, sizeof(smap));
1970 SYSCTL_PROC(_machdep, OID_AUTO, smap,
1971 CTLTYPE_OPAQUE | CTLFLAG_RD | CTLFLAG_MPSAFE, NULL, 0,
1972 smap_sysctl_handler, "S,bios_smap_xattr",
1973 "Raw BIOS SMAP data");
1976 efi_map_sysctl_handler(SYSCTL_HANDLER_ARGS)
1978 struct efi_map_header *efihdr;
1982 kmdp = preload_search_by_type("elf kernel");
1984 kmdp = preload_search_by_type("elf64 kernel");
1985 efihdr = (struct efi_map_header *)preload_search_info(kmdp,
1986 MODINFO_METADATA | MODINFOMD_EFI_MAP);
1989 efisize = *((uint32_t *)efihdr - 1);
1990 return (SYSCTL_OUT(req, efihdr, efisize));
1992 SYSCTL_PROC(_machdep, OID_AUTO, efi_map,
1993 CTLTYPE_OPAQUE | CTLFLAG_RD | CTLFLAG_MPSAFE, NULL, 0,
1994 efi_map_sysctl_handler, "S,efi_map_header",
1995 "Raw EFI Memory Map");
1998 spinlock_enter(void)
2004 if (td->td_md.md_spinlock_count == 0) {
2005 flags = intr_disable();
2006 td->td_md.md_spinlock_count = 1;
2007 td->td_md.md_saved_flags = flags;
2010 td->td_md.md_spinlock_count++;
2020 flags = td->td_md.md_saved_flags;
2021 td->td_md.md_spinlock_count--;
2022 if (td->td_md.md_spinlock_count == 0) {
2024 intr_restore(flags);
2029 * Construct a PCB from a trapframe. This is called from kdb_trap() where
2030 * we want to start a backtrace from the function that caused us to enter
2031 * the debugger. We have the context in the trapframe, but base the trace
2032 * on the PCB. The PCB doesn't have to be perfect, as long as it contains
2033 * enough for a backtrace.
2036 makectx(struct trapframe *tf, struct pcb *pcb)
2039 pcb->pcb_r12 = tf->tf_r12;
2040 pcb->pcb_r13 = tf->tf_r13;
2041 pcb->pcb_r14 = tf->tf_r14;
2042 pcb->pcb_r15 = tf->tf_r15;
2043 pcb->pcb_rbp = tf->tf_rbp;
2044 pcb->pcb_rbx = tf->tf_rbx;
2045 pcb->pcb_rip = tf->tf_rip;
2046 pcb->pcb_rsp = tf->tf_rsp;
2050 ptrace_set_pc(struct thread *td, unsigned long addr)
2053 td->td_frame->tf_rip = addr;
2054 set_pcb_flags(td->td_pcb, PCB_FULL_IRET);
2059 ptrace_single_step(struct thread *td)
2062 PROC_LOCK_ASSERT(td->td_proc, MA_OWNED);
2063 if ((td->td_frame->tf_rflags & PSL_T) == 0) {
2064 td->td_frame->tf_rflags |= PSL_T;
2065 td->td_dbgflags |= TDB_STEP;
2071 ptrace_clear_single_step(struct thread *td)
2074 PROC_LOCK_ASSERT(td->td_proc, MA_OWNED);
2075 td->td_frame->tf_rflags &= ~PSL_T;
2076 td->td_dbgflags &= ~TDB_STEP;
2081 fill_regs(struct thread *td, struct reg *regs)
2083 struct trapframe *tp;
2086 return (fill_frame_regs(tp, regs));
2090 fill_frame_regs(struct trapframe *tp, struct reg *regs)
2093 regs->r_r15 = tp->tf_r15;
2094 regs->r_r14 = tp->tf_r14;
2095 regs->r_r13 = tp->tf_r13;
2096 regs->r_r12 = tp->tf_r12;
2097 regs->r_r11 = tp->tf_r11;
2098 regs->r_r10 = tp->tf_r10;
2099 regs->r_r9 = tp->tf_r9;
2100 regs->r_r8 = tp->tf_r8;
2101 regs->r_rdi = tp->tf_rdi;
2102 regs->r_rsi = tp->tf_rsi;
2103 regs->r_rbp = tp->tf_rbp;
2104 regs->r_rbx = tp->tf_rbx;
2105 regs->r_rdx = tp->tf_rdx;
2106 regs->r_rcx = tp->tf_rcx;
2107 regs->r_rax = tp->tf_rax;
2108 regs->r_rip = tp->tf_rip;
2109 regs->r_cs = tp->tf_cs;
2110 regs->r_rflags = tp->tf_rflags;
2111 regs->r_rsp = tp->tf_rsp;
2112 regs->r_ss = tp->tf_ss;
2113 if (tp->tf_flags & TF_HASSEGS) {
2114 regs->r_ds = tp->tf_ds;
2115 regs->r_es = tp->tf_es;
2116 regs->r_fs = tp->tf_fs;
2117 regs->r_gs = tp->tf_gs;
2130 set_regs(struct thread *td, struct reg *regs)
2132 struct trapframe *tp;
2136 rflags = regs->r_rflags & 0xffffffff;
2137 if (!EFL_SECURE(rflags, tp->tf_rflags) || !CS_SECURE(regs->r_cs))
2139 tp->tf_r15 = regs->r_r15;
2140 tp->tf_r14 = regs->r_r14;
2141 tp->tf_r13 = regs->r_r13;
2142 tp->tf_r12 = regs->r_r12;
2143 tp->tf_r11 = regs->r_r11;
2144 tp->tf_r10 = regs->r_r10;
2145 tp->tf_r9 = regs->r_r9;
2146 tp->tf_r8 = regs->r_r8;
2147 tp->tf_rdi = regs->r_rdi;
2148 tp->tf_rsi = regs->r_rsi;
2149 tp->tf_rbp = regs->r_rbp;
2150 tp->tf_rbx = regs->r_rbx;
2151 tp->tf_rdx = regs->r_rdx;
2152 tp->tf_rcx = regs->r_rcx;
2153 tp->tf_rax = regs->r_rax;
2154 tp->tf_rip = regs->r_rip;
2155 tp->tf_cs = regs->r_cs;
2156 tp->tf_rflags = rflags;
2157 tp->tf_rsp = regs->r_rsp;
2158 tp->tf_ss = regs->r_ss;
2159 if (0) { /* XXXKIB */
2160 tp->tf_ds = regs->r_ds;
2161 tp->tf_es = regs->r_es;
2162 tp->tf_fs = regs->r_fs;
2163 tp->tf_gs = regs->r_gs;
2164 tp->tf_flags = TF_HASSEGS;
2166 set_pcb_flags(td->td_pcb, PCB_FULL_IRET);
2170 /* XXX check all this stuff! */
2171 /* externalize from sv_xmm */
2173 fill_fpregs_xmm(struct savefpu *sv_xmm, struct fpreg *fpregs)
2175 struct envxmm *penv_fpreg = (struct envxmm *)&fpregs->fpr_env;
2176 struct envxmm *penv_xmm = &sv_xmm->sv_env;
2180 bzero(fpregs, sizeof(*fpregs));
2182 /* FPU control/status */
2183 penv_fpreg->en_cw = penv_xmm->en_cw;
2184 penv_fpreg->en_sw = penv_xmm->en_sw;
2185 penv_fpreg->en_tw = penv_xmm->en_tw;
2186 penv_fpreg->en_opcode = penv_xmm->en_opcode;
2187 penv_fpreg->en_rip = penv_xmm->en_rip;
2188 penv_fpreg->en_rdp = penv_xmm->en_rdp;
2189 penv_fpreg->en_mxcsr = penv_xmm->en_mxcsr;
2190 penv_fpreg->en_mxcsr_mask = penv_xmm->en_mxcsr_mask;
2193 for (i = 0; i < 8; ++i)
2194 bcopy(sv_xmm->sv_fp[i].fp_acc.fp_bytes, fpregs->fpr_acc[i], 10);
2197 for (i = 0; i < 16; ++i)
2198 bcopy(sv_xmm->sv_xmm[i].xmm_bytes, fpregs->fpr_xacc[i], 16);
2201 /* internalize from fpregs into sv_xmm */
2203 set_fpregs_xmm(struct fpreg *fpregs, struct savefpu *sv_xmm)
2205 struct envxmm *penv_xmm = &sv_xmm->sv_env;
2206 struct envxmm *penv_fpreg = (struct envxmm *)&fpregs->fpr_env;
2210 /* FPU control/status */
2211 penv_xmm->en_cw = penv_fpreg->en_cw;
2212 penv_xmm->en_sw = penv_fpreg->en_sw;
2213 penv_xmm->en_tw = penv_fpreg->en_tw;
2214 penv_xmm->en_opcode = penv_fpreg->en_opcode;
2215 penv_xmm->en_rip = penv_fpreg->en_rip;
2216 penv_xmm->en_rdp = penv_fpreg->en_rdp;
2217 penv_xmm->en_mxcsr = penv_fpreg->en_mxcsr;
2218 penv_xmm->en_mxcsr_mask = penv_fpreg->en_mxcsr_mask & cpu_mxcsr_mask;
2221 for (i = 0; i < 8; ++i)
2222 bcopy(fpregs->fpr_acc[i], sv_xmm->sv_fp[i].fp_acc.fp_bytes, 10);
2225 for (i = 0; i < 16; ++i)
2226 bcopy(fpregs->fpr_xacc[i], sv_xmm->sv_xmm[i].xmm_bytes, 16);
2229 /* externalize from td->pcb */
2231 fill_fpregs(struct thread *td, struct fpreg *fpregs)
2234 KASSERT(td == curthread || TD_IS_SUSPENDED(td) ||
2235 P_SHOULDSTOP(td->td_proc),
2236 ("not suspended thread %p", td));
2238 fill_fpregs_xmm(get_pcb_user_save_td(td), fpregs);
2242 /* internalize to td->pcb */
2244 set_fpregs(struct thread *td, struct fpreg *fpregs)
2248 set_fpregs_xmm(fpregs, get_pcb_user_save_td(td));
2255 * Get machine context.
2258 get_mcontext(struct thread *td, mcontext_t *mcp, int flags)
2261 struct trapframe *tp;
2265 PROC_LOCK(curthread->td_proc);
2266 mcp->mc_onstack = sigonstack(tp->tf_rsp);
2267 PROC_UNLOCK(curthread->td_proc);
2268 mcp->mc_r15 = tp->tf_r15;
2269 mcp->mc_r14 = tp->tf_r14;
2270 mcp->mc_r13 = tp->tf_r13;
2271 mcp->mc_r12 = tp->tf_r12;
2272 mcp->mc_r11 = tp->tf_r11;
2273 mcp->mc_r10 = tp->tf_r10;
2274 mcp->mc_r9 = tp->tf_r9;
2275 mcp->mc_r8 = tp->tf_r8;
2276 mcp->mc_rdi = tp->tf_rdi;
2277 mcp->mc_rsi = tp->tf_rsi;
2278 mcp->mc_rbp = tp->tf_rbp;
2279 mcp->mc_rbx = tp->tf_rbx;
2280 mcp->mc_rcx = tp->tf_rcx;
2281 mcp->mc_rflags = tp->tf_rflags;
2282 if (flags & GET_MC_CLEAR_RET) {
2285 mcp->mc_rflags &= ~PSL_C;
2287 mcp->mc_rax = tp->tf_rax;
2288 mcp->mc_rdx = tp->tf_rdx;
2290 mcp->mc_rip = tp->tf_rip;
2291 mcp->mc_cs = tp->tf_cs;
2292 mcp->mc_rsp = tp->tf_rsp;
2293 mcp->mc_ss = tp->tf_ss;
2294 mcp->mc_ds = tp->tf_ds;
2295 mcp->mc_es = tp->tf_es;
2296 mcp->mc_fs = tp->tf_fs;
2297 mcp->mc_gs = tp->tf_gs;
2298 mcp->mc_flags = tp->tf_flags;
2299 mcp->mc_len = sizeof(*mcp);
2300 get_fpcontext(td, mcp, NULL, 0);
2301 update_pcb_bases(pcb);
2302 mcp->mc_fsbase = pcb->pcb_fsbase;
2303 mcp->mc_gsbase = pcb->pcb_gsbase;
2304 mcp->mc_xfpustate = 0;
2305 mcp->mc_xfpustate_len = 0;
2306 bzero(mcp->mc_spare, sizeof(mcp->mc_spare));
2311 * Set machine context.
2313 * However, we don't set any but the user modifiable flags, and we won't
2314 * touch the cs selector.
2317 set_mcontext(struct thread *td, mcontext_t *mcp)
2320 struct trapframe *tp;
2327 if (mcp->mc_len != sizeof(*mcp) ||
2328 (mcp->mc_flags & ~_MC_FLAG_MASK) != 0)
2330 rflags = (mcp->mc_rflags & PSL_USERCHANGE) |
2331 (tp->tf_rflags & ~PSL_USERCHANGE);
2332 if (mcp->mc_flags & _MC_HASFPXSTATE) {
2333 if (mcp->mc_xfpustate_len > cpu_max_ext_state_size -
2334 sizeof(struct savefpu))
2336 xfpustate = __builtin_alloca(mcp->mc_xfpustate_len);
2337 ret = copyin((void *)mcp->mc_xfpustate, xfpustate,
2338 mcp->mc_xfpustate_len);
2343 ret = set_fpcontext(td, mcp, xfpustate, mcp->mc_xfpustate_len);
2346 tp->tf_r15 = mcp->mc_r15;
2347 tp->tf_r14 = mcp->mc_r14;
2348 tp->tf_r13 = mcp->mc_r13;
2349 tp->tf_r12 = mcp->mc_r12;
2350 tp->tf_r11 = mcp->mc_r11;
2351 tp->tf_r10 = mcp->mc_r10;
2352 tp->tf_r9 = mcp->mc_r9;
2353 tp->tf_r8 = mcp->mc_r8;
2354 tp->tf_rdi = mcp->mc_rdi;
2355 tp->tf_rsi = mcp->mc_rsi;
2356 tp->tf_rbp = mcp->mc_rbp;
2357 tp->tf_rbx = mcp->mc_rbx;
2358 tp->tf_rdx = mcp->mc_rdx;
2359 tp->tf_rcx = mcp->mc_rcx;
2360 tp->tf_rax = mcp->mc_rax;
2361 tp->tf_rip = mcp->mc_rip;
2362 tp->tf_rflags = rflags;
2363 tp->tf_rsp = mcp->mc_rsp;
2364 tp->tf_ss = mcp->mc_ss;
2365 tp->tf_flags = mcp->mc_flags;
2366 if (tp->tf_flags & TF_HASSEGS) {
2367 tp->tf_ds = mcp->mc_ds;
2368 tp->tf_es = mcp->mc_es;
2369 tp->tf_fs = mcp->mc_fs;
2370 tp->tf_gs = mcp->mc_gs;
2372 set_pcb_flags(pcb, PCB_FULL_IRET);
2373 if (mcp->mc_flags & _MC_HASBASES) {
2374 pcb->pcb_fsbase = mcp->mc_fsbase;
2375 pcb->pcb_gsbase = mcp->mc_gsbase;
2381 get_fpcontext(struct thread *td, mcontext_t *mcp, char *xfpusave,
2382 size_t xfpusave_len)
2384 size_t max_len, len;
2386 mcp->mc_ownedfp = fpugetregs(td);
2387 bcopy(get_pcb_user_save_td(td), &mcp->mc_fpstate[0],
2388 sizeof(mcp->mc_fpstate));
2389 mcp->mc_fpformat = fpuformat();
2390 if (!use_xsave || xfpusave_len == 0)
2392 max_len = cpu_max_ext_state_size - sizeof(struct savefpu);
2394 if (len > max_len) {
2396 bzero(xfpusave + max_len, len - max_len);
2398 mcp->mc_flags |= _MC_HASFPXSTATE;
2399 mcp->mc_xfpustate_len = len;
2400 bcopy(get_pcb_user_save_td(td) + 1, xfpusave, len);
2404 set_fpcontext(struct thread *td, mcontext_t *mcp, char *xfpustate,
2405 size_t xfpustate_len)
2409 if (mcp->mc_fpformat == _MC_FPFMT_NODEV)
2411 else if (mcp->mc_fpformat != _MC_FPFMT_XMM)
2413 else if (mcp->mc_ownedfp == _MC_FPOWNED_NONE) {
2414 /* We don't care what state is left in the FPU or PCB. */
2417 } else if (mcp->mc_ownedfp == _MC_FPOWNED_FPU ||
2418 mcp->mc_ownedfp == _MC_FPOWNED_PCB) {
2419 error = fpusetregs(td, (struct savefpu *)&mcp->mc_fpstate,
2420 xfpustate, xfpustate_len);
2427 fpstate_drop(struct thread *td)
2430 KASSERT(PCB_USER_FPU(td->td_pcb), ("fpstate_drop: kernel-owned fpu"));
2432 if (PCPU_GET(fpcurthread) == td)
2435 * XXX force a full drop of the fpu. The above only drops it if we
2438 * XXX I don't much like fpugetuserregs()'s semantics of doing a full
2439 * drop. Dropping only to the pcb matches fnsave's behaviour.
2440 * We only need to drop to !PCB_INITDONE in sendsig(). But
2441 * sendsig() is the only caller of fpugetuserregs()... perhaps we just
2442 * have too many layers.
2444 clear_pcb_flags(curthread->td_pcb,
2445 PCB_FPUINITDONE | PCB_USERFPUINITDONE);
2450 fill_dbregs(struct thread *td, struct dbreg *dbregs)
2455 dbregs->dr[0] = rdr0();
2456 dbregs->dr[1] = rdr1();
2457 dbregs->dr[2] = rdr2();
2458 dbregs->dr[3] = rdr3();
2459 dbregs->dr[6] = rdr6();
2460 dbregs->dr[7] = rdr7();
2463 dbregs->dr[0] = pcb->pcb_dr0;
2464 dbregs->dr[1] = pcb->pcb_dr1;
2465 dbregs->dr[2] = pcb->pcb_dr2;
2466 dbregs->dr[3] = pcb->pcb_dr3;
2467 dbregs->dr[6] = pcb->pcb_dr6;
2468 dbregs->dr[7] = pcb->pcb_dr7;
2484 set_dbregs(struct thread *td, struct dbreg *dbregs)
2490 load_dr0(dbregs->dr[0]);
2491 load_dr1(dbregs->dr[1]);
2492 load_dr2(dbregs->dr[2]);
2493 load_dr3(dbregs->dr[3]);
2494 load_dr6(dbregs->dr[6]);
2495 load_dr7(dbregs->dr[7]);
2498 * Don't let an illegal value for dr7 get set. Specifically,
2499 * check for undefined settings. Setting these bit patterns
2500 * result in undefined behaviour and can lead to an unexpected
2501 * TRCTRAP or a general protection fault right here.
2502 * Upper bits of dr6 and dr7 must not be set
2504 for (i = 0; i < 4; i++) {
2505 if (DBREG_DR7_ACCESS(dbregs->dr[7], i) == 0x02)
2507 if (td->td_frame->tf_cs == _ucode32sel &&
2508 DBREG_DR7_LEN(dbregs->dr[7], i) == DBREG_DR7_LEN_8)
2511 if ((dbregs->dr[6] & 0xffffffff00000000ul) != 0 ||
2512 (dbregs->dr[7] & 0xffffffff00000000ul) != 0)
2518 * Don't let a process set a breakpoint that is not within the
2519 * process's address space. If a process could do this, it
2520 * could halt the system by setting a breakpoint in the kernel
2521 * (if ddb was enabled). Thus, we need to check to make sure
2522 * that no breakpoints are being enabled for addresses outside
2523 * process's address space.
2525 * XXX - what about when the watched area of the user's
2526 * address space is written into from within the kernel
2527 * ... wouldn't that still cause a breakpoint to be generated
2528 * from within kernel mode?
2531 if (DBREG_DR7_ENABLED(dbregs->dr[7], 0)) {
2532 /* dr0 is enabled */
2533 if (dbregs->dr[0] >= VM_MAXUSER_ADDRESS)
2536 if (DBREG_DR7_ENABLED(dbregs->dr[7], 1)) {
2537 /* dr1 is enabled */
2538 if (dbregs->dr[1] >= VM_MAXUSER_ADDRESS)
2541 if (DBREG_DR7_ENABLED(dbregs->dr[7], 2)) {
2542 /* dr2 is enabled */
2543 if (dbregs->dr[2] >= VM_MAXUSER_ADDRESS)
2546 if (DBREG_DR7_ENABLED(dbregs->dr[7], 3)) {
2547 /* dr3 is enabled */
2548 if (dbregs->dr[3] >= VM_MAXUSER_ADDRESS)
2552 pcb->pcb_dr0 = dbregs->dr[0];
2553 pcb->pcb_dr1 = dbregs->dr[1];
2554 pcb->pcb_dr2 = dbregs->dr[2];
2555 pcb->pcb_dr3 = dbregs->dr[3];
2556 pcb->pcb_dr6 = dbregs->dr[6];
2557 pcb->pcb_dr7 = dbregs->dr[7];
2559 set_pcb_flags(pcb, PCB_DBREGS);
2569 load_dr7(0); /* Turn off the control bits first */
2578 * Return > 0 if a hardware breakpoint has been hit, and the
2579 * breakpoint was in user space. Return 0, otherwise.
2582 user_dbreg_trap(register_t dr6)
2585 u_int64_t bp; /* breakpoint bits extracted from dr6 */
2586 int nbp; /* number of breakpoints that triggered */
2587 caddr_t addr[4]; /* breakpoint addresses */
2590 bp = dr6 & DBREG_DR6_BMASK;
2593 * None of the breakpoint bits are set meaning this
2594 * trap was not caused by any of the debug registers
2600 if ((dr7 & 0x000000ff) == 0) {
2602 * all GE and LE bits in the dr7 register are zero,
2603 * thus the trap couldn't have been caused by the
2604 * hardware debug registers
2612 * at least one of the breakpoints were hit, check to see
2613 * which ones and if any of them are user space addresses
2617 addr[nbp++] = (caddr_t)rdr0();
2620 addr[nbp++] = (caddr_t)rdr1();
2623 addr[nbp++] = (caddr_t)rdr2();
2626 addr[nbp++] = (caddr_t)rdr3();
2629 for (i = 0; i < nbp; i++) {
2630 if (addr[i] < (caddr_t)VM_MAXUSER_ADDRESS) {
2632 * addr[i] is in user space
2639 * None of the breakpoints are in user space.
2645 * The pcb_flags is only modified by current thread, or by other threads
2646 * when current thread is stopped. However, current thread may change it
2647 * from the interrupt context in cpu_switch(), or in the trap handler.
2648 * When we read-modify-write pcb_flags from C sources, compiler may generate
2649 * code that is not atomic regarding the interrupt handler. If a trap or
2650 * interrupt happens and any flag is modified from the handler, it can be
2651 * clobbered with the cached value later. Therefore, we implement setting
2652 * and clearing flags with single-instruction functions, which do not race
2653 * with possible modification of the flags from the trap or interrupt context,
2654 * because traps and interrupts are executed only on instruction boundary.
2657 set_pcb_flags_raw(struct pcb *pcb, const u_int flags)
2660 __asm __volatile("orl %1,%0"
2661 : "=m" (pcb->pcb_flags) : "ir" (flags), "m" (pcb->pcb_flags)
2667 * The support for RDFSBASE, WRFSBASE and similar instructions for %gs
2668 * base requires that kernel saves MSR_FSBASE and MSR_{K,}GSBASE into
2669 * pcb if user space modified the bases. We must save on the context
2670 * switch or if the return to usermode happens through the doreti.
2672 * Tracking of both events is performed by the pcb flag PCB_FULL_IRET,
2673 * which have a consequence that the base MSRs must be saved each time
2674 * the PCB_FULL_IRET flag is set. We disable interrupts to sync with
2678 set_pcb_flags_fsgsbase(struct pcb *pcb, const u_int flags)
2682 if (curpcb == pcb &&
2683 (flags & PCB_FULL_IRET) != 0 &&
2684 (pcb->pcb_flags & PCB_FULL_IRET) == 0) {
2686 if ((pcb->pcb_flags & PCB_FULL_IRET) == 0) {
2687 if (rfs() == _ufssel)
2688 pcb->pcb_fsbase = rdfsbase();
2689 if (rgs() == _ugssel)
2690 pcb->pcb_gsbase = rdmsr(MSR_KGSBASE);
2692 set_pcb_flags_raw(pcb, flags);
2695 set_pcb_flags_raw(pcb, flags);
2699 DEFINE_IFUNC(, void, set_pcb_flags, (struct pcb *, const u_int))
2702 return ((cpu_stdext_feature & CPUID_STDEXT_FSGSBASE) != 0 ?
2703 set_pcb_flags_fsgsbase : set_pcb_flags_raw);
2707 clear_pcb_flags(struct pcb *pcb, const u_int flags)
2710 __asm __volatile("andl %1,%0"
2711 : "=m" (pcb->pcb_flags) : "ir" (~flags), "m" (pcb->pcb_flags)
2718 * Provide inb() and outb() as functions. They are normally only available as
2719 * inline functions, thus cannot be called from the debugger.
2722 /* silence compiler warnings */
2723 u_char inb_(u_short);
2724 void outb_(u_short, u_char);
2733 outb_(u_short port, u_char data)
2744 void *memset_std(void *buf, int c, size_t len);
2745 void *memset_erms(void *buf, int c, size_t len);
2746 void *memmove_std(void * _Nonnull dst, const void * _Nonnull src,
2748 void *memmove_erms(void * _Nonnull dst, const void * _Nonnull src,
2750 void *memcpy_std(void * _Nonnull dst, const void * _Nonnull src,
2752 void *memcpy_erms(void * _Nonnull dst, const void * _Nonnull src,
2757 * These fail to build as ifuncs when used with KCSAN.
2760 memset(void *buf, int c, size_t len)
2763 return (memset_std(buf, c, len));
2767 memmove(void * _Nonnull dst, const void * _Nonnull src, size_t len)
2770 return (memmove_std(dst, src, len));
2774 memcpy(void * _Nonnull dst, const void * _Nonnull src, size_t len)
2777 return (memcpy_std(dst, src, len));
2780 DEFINE_IFUNC(, void *, memset, (void *, int, size_t))
2783 return ((cpu_stdext_feature & CPUID_STDEXT_ERMS) != 0 ?
2784 memset_erms : memset_std);
2787 DEFINE_IFUNC(, void *, memmove, (void * _Nonnull, const void * _Nonnull,
2791 return ((cpu_stdext_feature & CPUID_STDEXT_ERMS) != 0 ?
2792 memmove_erms : memmove_std);
2795 DEFINE_IFUNC(, void *, memcpy, (void * _Nonnull, const void * _Nonnull,size_t))
2798 return ((cpu_stdext_feature & CPUID_STDEXT_ERMS) != 0 ?
2799 memcpy_erms : memcpy_std);
2803 void pagezero_std(void *addr);
2804 void pagezero_erms(void *addr);
2805 DEFINE_IFUNC(, void , pagezero, (void *))
2808 return ((cpu_stdext_feature & CPUID_STDEXT_ERMS) != 0 ?
2809 pagezero_erms : pagezero_std);
projects / FreeBSD / FreeBSD.git / blob