[GitHub/exynos8895/android_kernel_samsung_universal8895.git] / kernel / panic.c

/*
 *  linux/kernel/panic.c
 *
 *  Copyright (C) 1991, 1992  Linus Torvalds
 */

/*
 * This function is used through-out the kernel (including mm and fs)
 * to indicate a major problem.
 */
#include <linux/debug_locks.h>
#include <linux/interrupt.h>
#include <linux/kmsg_dump.h>
#include <linux/kallsyms.h>
#include <linux/notifier.h>
#include <linux/module.h>
#include <linux/random.h>
#include <linux/ftrace.h>
#include <linux/reboot.h>
#include <linux/delay.h>
#include <linux/kexec.h>
#include <linux/sched.h>
#include <linux/sysrq.h>
#include <linux/init.h>
#include <linux/nmi.h>
#include <linux/console.h>
#include <linux/exynos-ss.h>
#include <soc/samsung/exynos-condbg.h>
#include <asm/core_regs.h>
#include "sched/sched.h"

#include <asm/core_regs.h>

#define PANIC_TIMER_STEP 100
#define PANIC_BLINK_SPD 18

/* Machine specific panic information string */
char *mach_panic_string;

int panic_on_oops = CONFIG_PANIC_ON_OOPS_VALUE;
static unsigned long tainted_mask;
static int pause_on_oops;
static int pause_on_oops_flag;
static DEFINE_SPINLOCK(pause_on_oops_lock);
bool crash_kexec_post_notifiers;
int panic_on_warn __read_mostly;

int panic_timeout = CONFIG_PANIC_TIMEOUT;
EXPORT_SYMBOL_GPL(panic_timeout);

ATOMIC_NOTIFIER_HEAD(panic_notifier_list);

EXPORT_SYMBOL(panic_notifier_list);

static long no_blink(int state)
{
	return 0;
}

/* Returns how long it waited in ms */
long (*panic_blink)(int state);
EXPORT_SYMBOL(panic_blink);

/*
 * Stop ourself in panic -- architecture code may override this
 */
void __weak panic_smp_self_stop(void)
{
	while (1)
		cpu_relax();
}

/**
 *	panic - halt the system
 *	@fmt: The text string to print
 *
 *	Display a message, then perform cleanups.
 *
 *	This function never returns.
 */
void panic(const char *fmt, ...)
{
	static DEFINE_SPINLOCK(panic_lock);
	static char buf[1024];
	va_list args;
	long i, i_next = 0;
	int state = 0;

	exynos_trace_stop();

	if (ecd_get_enable() &&
		ecd_get_debug_panic() &&
		ecd_get_debug_mode() != MODE_DEBUG) {
		ecd_printf("Debugging in Panic on ECD\n");
		ecd_do_break_now();
	}
	/*
	 * Disable local interrupts. This will prevent panic_smp_self_stop
	 * from deadlocking the first cpu that invokes the panic, since
	 * there is nothing to prevent an interrupt handler (that runs
	 * after the panic_lock is acquired) from invoking panic again.
	 */
	local_irq_disable();

	/*
	 * It's possible to come here directly from a panic-assertion and
	 * not have preempt disabled. Some functions called from here want
	 * preempt to be disabled. No point enabling it later though...
	 *
	 * Only one CPU is allowed to execute the panic code from here. For
	 * multiple parallel invocations of panic, all other CPUs either
	 * stop themself or will wait until they are stopped by the 1st CPU
	 * with smp_send_stop().
	 */
	if (!spin_trylock(&panic_lock)) {
		exynos_ss_hook_hardlockup_exit();
		panic_smp_self_stop();
	}

	console_verbose();
	bust_spinlocks(1);
	va_start(args, fmt);
	vsnprintf(buf, sizeof(buf), fmt, args);
	va_end(args);

#ifdef CONFIG_SEC_DEBUG_AUTO_SUMMARY
	if (buf[strlen(buf) - 1] == '\n')
		buf[strlen(buf) - 1] = '\0';
#endif

	ecd_printf("Kernel Panic - not syncing: %s\n", buf);
	pr_auto(ASL5, "Kernel panic - not syncing: %s\n", buf);

#ifdef CONFIG_RELOCATABLE_KERNEL
	{
		extern u64 *__boot_kernel_offset;
		u64 *kernel_addr = (u64 *) &__boot_kernel_offset;
		
		pr_emerg("Kernel loaded at: 0x%llx, offset from compile-time address %llx\n",
		(u64)((u64)kernel_addr[1] + (u64)kernel_addr[0]), (u64)((u64)kernel_addr[1] - (u64)kernel_addr[2]));
	}
#endif
	exynos_ss_prepare_panic();
	exynos_ss_dump_panic(buf, (size_t)strnlen(buf, sizeof(buf)));
#ifdef CONFIG_DEBUG_BUGVERBOSE
	/*
	 * Avoid nested stack-dumping if a panic occurs during oops processing
	 */
	if (!test_taint(TAINT_DIE) && oops_in_progress <= 1)
		dump_stack();
#endif
	sysrq_sched_debug_show();
	/*
	 * If we have crashed and we have a crash kernel loaded let it handle
	 * everything else.
	 * If we want to run this after calling panic_notifiers, pass
	 * the "crash_kexec_post_notifiers" option to the kernel.
	 */
	if (!crash_kexec_post_notifiers)
		crash_kexec(NULL);

	/*
	 * Note smp_send_stop is the usual smp shutdown function, which
	 * unfortunately means it may not be hardened to work in a panic
	 * situation.
	 */

	if (!ecd_get_enable() || ecd_get_debug_mode() != MODE_DEBUG)
		smp_send_stop();

	/*
	 * Run any panic handlers, including those that might need to
	 * add information to the kmsg dump output.
	 */
	atomic_notifier_call_chain(&panic_notifier_list, 0, buf);

	kmsg_dump(KMSG_DUMP_PANIC);

	exynos_ss_post_panic();

	/*
	 * If you doubt kdump always works fine in any situation,
	 * "crash_kexec_post_notifiers" offers you a chance to run
	 * panic_notifiers and dumping kmsg before kdump.
	 * Note: since some panic_notifiers can make crashed kernel
	 * more unstable, it can increase risks of the kdump failure too.
	 */
	if (crash_kexec_post_notifiers)
		crash_kexec(NULL);

	bust_spinlocks(0);

	/*
	 * We may have ended up stopping the CPU holding the lock (in
	 * smp_send_stop()) while still having some valuable data in the console
	 * buffer.  Try to acquire the lock then release it regardless of the
	 * result.  The release will also print the buffers out.  Locks debug
	 * should be disabled to avoid reporting bad unlock balance when
	 * panic() is not being callled from OOPS.
	 */
	debug_locks_off();
	console_flush_on_panic();

	if (!panic_blink)
		panic_blink = no_blink;

	if (panic_timeout > 0) {
		/*
		 * Delay timeout seconds before rebooting the machine.
		 * We can't use the "normal" timers since we just panicked.
		 */
		pr_emerg("Rebooting in %d seconds..\n", panic_timeout);

		for (i = 0; i < panic_timeout * 1000; i += PANIC_TIMER_STEP) {
			touch_nmi_watchdog();
			if (i >= i_next) {
				i += panic_blink(state ^= 1);
				i_next = i + 3600 / PANIC_BLINK_SPD;
			}
			mdelay(PANIC_TIMER_STEP);
		}
	}
	if (panic_timeout != 0) {
		/*
		 * This will not be a clean reboot, with everything
		 * shutting down.  But if there is a chance of
		 * rebooting the system it will be rebooted.
		 */
		emergency_restart();
	}
#ifdef __sparc__
	{
		extern int stop_a_enabled;
		/* Make sure the user can actually press Stop-A (L1-A) */
		stop_a_enabled = 1;
		pr_emerg("Press Stop-A (L1-A) to return to the boot prom\n");
	}
#endif
#if defined(CONFIG_S390)
	{
		unsigned long caller;

		caller = (unsigned long)__builtin_return_address(0);
		disabled_wait(caller);
	}
#endif
	pr_emerg("---[ end Kernel panic - not syncing: %s\n", buf);
	local_irq_enable();
	for (i = 0; ; i += PANIC_TIMER_STEP) {
		touch_softlockup_watchdog();
		if (i >= i_next) {
			i += panic_blink(state ^= 1);
			i_next = i + 3600 / PANIC_BLINK_SPD;
		}
		mdelay(PANIC_TIMER_STEP);
	}
}
EXPORT_SYMBOL(panic);


struct tnt {
	u8	bit;
	char	true;
	char	false;
};

static const struct tnt tnts[] = {
	{ TAINT_PROPRIETARY_MODULE,	'P', 'G' },
	{ TAINT_FORCED_MODULE,		'F', ' ' },
	{ TAINT_CPU_OUT_OF_SPEC,	'S', ' ' },
	{ TAINT_FORCED_RMMOD,		'R', ' ' },
	{ TAINT_MACHINE_CHECK,		'M', ' ' },
	{ TAINT_BAD_PAGE,		'B', ' ' },
	{ TAINT_USER,			'U', ' ' },
	{ TAINT_DIE,			'D', ' ' },
	{ TAINT_OVERRIDDEN_ACPI_TABLE,	'A', ' ' },
	{ TAINT_WARN,			'W', ' ' },
	{ TAINT_CRAP,			'C', ' ' },
	{ TAINT_FIRMWARE_WORKAROUND,	'I', ' ' },
	{ TAINT_OOT_MODULE,		'O', ' ' },
	{ TAINT_UNSIGNED_MODULE,	'E', ' ' },
	{ TAINT_SOFTLOCKUP,		'L', ' ' },
	{ TAINT_LIVEPATCH,		'K', ' ' },
};

/**
 *	print_tainted - return a string to represent the kernel taint state.
 *
 *  'P' - Proprietary module has been loaded.
 *  'F' - Module has been forcibly loaded.
 *  'S' - SMP with CPUs not designed for SMP.
 *  'R' - User forced a module unload.
 *  'M' - System experienced a machine check exception.
 *  'B' - System has hit bad_page.
 *  'U' - Userspace-defined naughtiness.
 *  'D' - Kernel has oopsed before
 *  'A' - ACPI table overridden.
 *  'W' - Taint on warning.
 *  'C' - modules from drivers/staging are loaded.
 *  'I' - Working around severe firmware bug.
 *  'O' - Out-of-tree module has been loaded.
 *  'E' - Unsigned module has been loaded.
 *  'L' - A soft lockup has previously occurred.
 *  'K' - Kernel has been live patched.
 *
 *	The string is overwritten by the next call to print_tainted().
 */
const char *print_tainted(void)
{
	static char buf[ARRAY_SIZE(tnts) + sizeof("Tainted: ")];

	if (tainted_mask) {
		char *s;
		int i;

		s = buf + sprintf(buf, "Tainted: ");
		for (i = 0; i < ARRAY_SIZE(tnts); i++) {
			const struct tnt *t = &tnts[i];
			*s++ = test_bit(t->bit, &tainted_mask) ?
					t->true : t->false;
		}
		*s = 0;
	} else
		snprintf(buf, sizeof(buf), "Not tainted");

	return buf;
}

int test_taint(unsigned flag)
{
	return test_bit(flag, &tainted_mask);
}
EXPORT_SYMBOL(test_taint);

unsigned long get_taint(void)
{
	return tainted_mask;
}

/**
 * add_taint: add a taint flag if not already set.
 * @flag: one of the TAINT_* constants.
 * @lockdep_ok: whether lock debugging is still OK.
 *
 * If something bad has gone wrong, you'll want @lockdebug_ok = false, but for
 * some notewortht-but-not-corrupting cases, it can be set to true.
 */
void add_taint(unsigned flag, enum lockdep_ok lockdep_ok)
{
	if (lockdep_ok == LOCKDEP_NOW_UNRELIABLE && __debug_locks_off())
		pr_warn("Disabling lock debugging due to kernel taint\n");

	set_bit(flag, &tainted_mask);
}
EXPORT_SYMBOL(add_taint);

static void spin_msec(int msecs)
{
	int i;

	for (i = 0; i < msecs; i++) {
		touch_nmi_watchdog();
		mdelay(1);
	}
}

/*
 * It just happens that oops_enter() and oops_exit() are identically
 * implemented...
 */
static void do_oops_enter_exit(void)
{
	unsigned long flags;
	static int spin_counter;

	if (!pause_on_oops)
		return;

	spin_lock_irqsave(&pause_on_oops_lock, flags);
	if (pause_on_oops_flag == 0) {
		/* This CPU may now print the oops message */
		pause_on_oops_flag = 1;
	} else {
		/* We need to stall this CPU */
		if (!spin_counter) {
			/* This CPU gets to do the counting */
			spin_counter = pause_on_oops;
			do {
				spin_unlock(&pause_on_oops_lock);
				spin_msec(MSEC_PER_SEC);
				spin_lock(&pause_on_oops_lock);
			} while (--spin_counter);
			pause_on_oops_flag = 0;
		} else {
			/* This CPU waits for a different one */
			while (spin_counter) {
				spin_unlock(&pause_on_oops_lock);
				spin_msec(1);
				spin_lock(&pause_on_oops_lock);
			}
		}
	}
	spin_unlock_irqrestore(&pause_on_oops_lock, flags);
}

/*
 * Return true if the calling CPU is allowed to print oops-related info.
 * This is a bit racy..
 */
int oops_may_print(void)
{
	return pause_on_oops_flag == 0;
}

/*
 * Called when the architecture enters its oops handler, before it prints
 * anything.  If this is the first CPU to oops, and it's oopsing the first
 * time then let it proceed.
 *
 * This is all enabled by the pause_on_oops kernel boot option.  We do all
 * this to ensure that oopses don't scroll off the screen.  It has the
 * side-effect of preventing later-oopsing CPUs from mucking up the display,
 * too.
 *
 * It turns out that the CPU which is allowed to print ends up pausing for
 * the right duration, whereas all the other CPUs pause for twice as long:
 * once in oops_enter(), once in oops_exit().
 */
void oops_enter(void)
{
	tracing_off();
	/* can't trust the integrity of the kernel anymore: */
	debug_locks_off();
	do_oops_enter_exit();
}

/*
 * 64-bit random ID for oopses:
 */
static u64 oops_id;

static int init_oops_id(void)
{
	if (!oops_id)
		get_random_bytes(&oops_id, sizeof(oops_id));
	else
		oops_id++;

	return 0;
}
late_initcall(init_oops_id);

void print_oops_end_marker(void)
{
	init_oops_id();

	if (mach_panic_string)
		printk(KERN_WARNING "Board Information: %s\n",
		       mach_panic_string);

	pr_warn("---[ end trace %016llx ]---\n", (unsigned long long)oops_id);
}

/*
 * Called when the architecture exits its oops handler, after printing
 * everything.
 */
void oops_exit(void)
{
	do_oops_enter_exit();
	print_oops_end_marker();
	kmsg_dump(KMSG_DUMP_OOPS);
}

#ifdef WANT_WARN_ON_SLOWPATH
struct slowpath_args {
	const char *fmt;
	va_list args;
};

static void warn_slowpath_common(const char *file, int line, void *caller,
				 unsigned taint, struct slowpath_args *args)
{
	disable_trace_on_warning();

	pr_warn("------------[ cut here ]------------\n");
	pr_warn("WARNING: CPU: %d PID: %d at %s:%d %pS()\n",
		raw_smp_processor_id(), current->pid, file, line, caller);

	if (args)
		vprintk(args->fmt, args->args);

	if (panic_on_warn) {
		/*
		 * This thread may hit another WARN() in the panic path.
		 * Resetting this prevents additional WARN() from panicking the
		 * system on this thread.  Other threads are blocked by the
		 * panic_mutex in panic().
		 */
		panic_on_warn = 0;
		panic("panic_on_warn set ...\n");
	}

	print_modules();
	dump_stack();
	print_oops_end_marker();
	/* Just a warning, don't kill lockdep. */
	add_taint(taint, LOCKDEP_STILL_OK);
}

void warn_slowpath_fmt(const char *file, int line, const char *fmt, ...)
{
	struct slowpath_args args;

	args.fmt = fmt;
	va_start(args.args, fmt);
	warn_slowpath_common(file, line, __builtin_return_address(0),
			     TAINT_WARN, &args);
	va_end(args.args);
}
EXPORT_SYMBOL(warn_slowpath_fmt);

void warn_slowpath_fmt_taint(const char *file, int line,
			     unsigned taint, const char *fmt, ...)
{
	struct slowpath_args args;

	args.fmt = fmt;
	va_start(args.args, fmt);
	warn_slowpath_common(file, line, __builtin_return_address(0),
			     taint, &args);
	va_end(args.args);
}
EXPORT_SYMBOL(warn_slowpath_fmt_taint);

void warn_slowpath_null(const char *file, int line)
{
	warn_slowpath_common(file, line, __builtin_return_address(0),
			     TAINT_WARN, NULL);
}
EXPORT_SYMBOL(warn_slowpath_null);
#endif

#ifdef CONFIG_CC_STACKPROTECTOR

/*
 * Called when gcc's -fstack-protector feature is used, and
 * gcc detects corruption of the on-stack canary value
 */
__visible void __stack_chk_fail(void)
{
	panic("stack-protector: Kernel stack is corrupted in: %p\n",
		__builtin_return_address(0));
}
EXPORT_SYMBOL(__stack_chk_fail);

#endif

core_param(panic, panic_timeout, int, 0644);
core_param(pause_on_oops, pause_on_oops, int, 0644);
core_param(panic_on_warn, panic_on_warn, int, 0644);

static int __init setup_crash_kexec_post_notifiers(char *s)
{
	crash_kexec_post_notifiers = true;
	return 0;
}
early_param("crash_kexec_post_notifiers", setup_crash_kexec_post_notifiers);

static int __init oops_setup(char *s)
{
	if (!s)
		return -EINVAL;
	if (!strcmp(s, "panic"))
		panic_on_oops = 1;
	return 0;
}
early_param("oops", oops_setup);
Commit	Line	Data
1da177e4 LT	1	/*
	2	* linux/kernel/panic.c
	3	*
	4	* Copyright (C) 1991, 1992 Linus Torvalds
	5	*/
	6
	7	/*
	8	* This function is used through-out the kernel (including mm and fs)
	9	* to indicate a major problem.
	10	*/
c95dbf27 IM	11	#include <linux/debug_locks.h>
c95dbf27 IM	12	#include <linux/interrupt.h>
456b565c	13	#include <linux/kmsg_dump.h>
c95dbf27 IM	14	#include <linux/kallsyms.h>
c95dbf27 IM	15	#include <linux/notifier.h>
1da177e4	16	#include <linux/module.h>
c95dbf27	17	#include <linux/random.h>
de7edd31	18	#include <linux/ftrace.h>
1da177e4	19	#include <linux/reboot.h>
c95dbf27 IM	20	#include <linux/delay.h>
	21	#include <linux/kexec.h>
	22	#include <linux/sched.h>
1da177e4	23	#include <linux/sysrq.h>
c95dbf27	24	#include <linux/init.h>
1da177e4	25	#include <linux/nmi.h>
08d78658	26	#include <linux/console.h>
1cac41cb MB	27	#include <linux/exynos-ss.h>
	28	#include <soc/samsung/exynos-condbg.h>
	29	#include <asm/core_regs.h>
	30	#include "sched/sched.h"
	31
	32	#include <asm/core_regs.h>
1da177e4	33
c7ff0d9c TS	34	#define PANIC_TIMER_STEP 100
	35	#define PANIC_BLINK_SPD 18
	36
1cac41cb MB	37	/* Machine specific panic information string */
	38	char *mach_panic_string;
	39
2a01bb38	40	int panic_on_oops = CONFIG_PANIC_ON_OOPS_VALUE;
25ddbb18	41	static unsigned long tainted_mask;
dd287796 AM	42	static int pause_on_oops;
	43	static int pause_on_oops_flag;
	44	static DEFINE_SPINLOCK(pause_on_oops_lock);
5375b708	45	bool crash_kexec_post_notifiers;
9e3961a0	46	int panic_on_warn __read_mostly;
1da177e4	47
5800dc3c	48	int panic_timeout = CONFIG_PANIC_TIMEOUT;
81e88fdc	49	EXPORT_SYMBOL_GPL(panic_timeout);
1da177e4	50
e041c683	51	ATOMIC_NOTIFIER_HEAD(panic_notifier_list);
1da177e4 LT	52
	53	EXPORT_SYMBOL(panic_notifier_list);
	54
c7ff0d9c	55	static long no_blink(int state)
8aeee85a	56	{
c7ff0d9c	57	return 0;
8aeee85a AB	58	}
8aeee85a AB	59
c7ff0d9c TS	60	/* Returns how long it waited in ms */
	61	long (*panic_blink)(int state);
	62	EXPORT_SYMBOL(panic_blink);
	63
93e13a36 MH	64	/*
	65	* Stop ourself in panic -- architecture code may override this
	66	*/
	67	void __weak panic_smp_self_stop(void)
	68	{
	69	while (1)
	70	cpu_relax();
	71	}
	72
1da177e4 LT	73	/**
	74	* panic - halt the system
	75	* @fmt: The text string to print
	76	*
	77	* Display a message, then perform cleanups.
	78	*
	79	* This function never returns.
	80	*/
9402c95f	81	void panic(const char *fmt, ...)
1da177e4	82	{
93e13a36	83	static DEFINE_SPINLOCK(panic_lock);
1da177e4 LT	84	static char buf[1024];
1da177e4 LT	85	va_list args;
c7ff0d9c TS	86	long i, i_next = 0;
c7ff0d9c TS	87	int state = 0;
1da177e4	88
1cac41cb MB	89	exynos_trace_stop();
	90
	91	if (ecd_get_enable() &&
	92	ecd_get_debug_panic() &&
	93	ecd_get_debug_mode() != MODE_DEBUG) {
	94	ecd_printf("Debugging in Panic on ECD\n");
	95	ecd_do_break_now();
	96	}
190320c3 VM	97	/*
	98	* Disable local interrupts. This will prevent panic_smp_self_stop
	99	* from deadlocking the first cpu that invokes the panic, since
	100	* there is nothing to prevent an interrupt handler (that runs
	101	* after the panic_lock is acquired) from invoking panic again.
	102	*/
	103	local_irq_disable();
	104
dc009d92	105	/*
c95dbf27 IM	106	* It's possible to come here directly from a panic-assertion and
c95dbf27 IM	107	* not have preempt disabled. Some functions called from here want
dc009d92	108	* preempt to be disabled. No point enabling it later though...
93e13a36 MH	109	*
	110	* Only one CPU is allowed to execute the panic code from here. For
	111	* multiple parallel invocations of panic, all other CPUs either
	112	* stop themself or will wait until they are stopped by the 1st CPU
	113	* with smp_send_stop().
dc009d92	114	*/
1cac41cb MB	115	if (!spin_trylock(&panic_lock)) {
1cac41cb MB	116	exynos_ss_hook_hardlockup_exit();
93e13a36	117	panic_smp_self_stop();
1cac41cb	118	}
dc009d92	119
5b530fc1	120	console_verbose();
1da177e4 LT	121	bust_spinlocks(1);
	122	va_start(args, fmt);
	123	vsnprintf(buf, sizeof(buf), fmt, args);
	124	va_end(args);
1cac41cb MB	125
	126	#ifdef CONFIG_SEC_DEBUG_AUTO_SUMMARY
	127	if (buf[strlen(buf) - 1] == '\n')
	128	buf[strlen(buf) - 1] = '\0';
	129	#endif
	130
	131	ecd_printf("Kernel Panic - not syncing: %s\n", buf);
	132	pr_auto(ASL5, "Kernel panic - not syncing: %s\n", buf);
	133
	134	#ifdef CONFIG_RELOCATABLE_KERNEL
	135	{
	136	extern u64 *__boot_kernel_offset;
	137	u64 kernel_addr = (u64 ) &__boot_kernel_offset;
	138
	139	pr_emerg("Kernel loaded at: 0x%llx, offset from compile-time address %llx\n",
	140	(u64)((u64)kernel_addr[1] + (u64)kernel_addr[0]), (u64)((u64)kernel_addr[1] - (u64)kernel_addr[2]));
	141	}
	142	#endif
	143	exynos_ss_prepare_panic();
	144	exynos_ss_dump_panic(buf, (size_t)strnlen(buf, sizeof(buf)));
5cb27301	145	#ifdef CONFIG_DEBUG_BUGVERBOSE
6e6f0a1f AK	146	/*
	147	* Avoid nested stack-dumping if a panic occurs during oops processing
	148	*/
026ee1f6	149	if (!test_taint(TAINT_DIE) && oops_in_progress <= 1)
6e6f0a1f	150	dump_stack();
5cb27301	151	#endif
1cac41cb	152	sysrq_sched_debug_show();
dc009d92 EB	153	/*
	154	* If we have crashed and we have a crash kernel loaded let it handle
	155	* everything else.
f06e5153 MH	156	* If we want to run this after calling panic_notifiers, pass
f06e5153 MH	157	* the "crash_kexec_post_notifiers" option to the kernel.
dc009d92	158	*/
f06e5153 MH	159	if (!crash_kexec_post_notifiers)
f06e5153 MH	160	crash_kexec(NULL);
dc009d92	161
dc009d92 EB	162	/*
	163	* Note smp_send_stop is the usual smp shutdown function, which
	164	* unfortunately means it may not be hardened to work in a panic
	165	* situation.
	166	*/
1cac41cb MB	167
	168	if (!ecd_get_enable() \|\| ecd_get_debug_mode() != MODE_DEBUG)
	169	smp_send_stop();
1da177e4	170
6723734c KC	171	/*
	172	* Run any panic handlers, including those that might need to
	173	* add information to the kmsg dump output.
	174	*/
e041c683	175	atomic_notifier_call_chain(&panic_notifier_list, 0, buf);
1da177e4	176
6723734c KC	177	kmsg_dump(KMSG_DUMP_PANIC);
6723734c KC	178
1cac41cb MB	179	exynos_ss_post_panic();
1cac41cb MB	180
f06e5153 MH	181	/*
	182	* If you doubt kdump always works fine in any situation,
	183	* "crash_kexec_post_notifiers" offers you a chance to run
	184	* panic_notifiers and dumping kmsg before kdump.
	185	* Note: since some panic_notifiers can make crashed kernel
	186	* more unstable, it can increase risks of the kdump failure too.
	187	*/
f45d85ff HD	188	if (crash_kexec_post_notifiers)
f45d85ff HD	189	crash_kexec(NULL);
f06e5153	190
d014e889 AK	191	bust_spinlocks(0);
d014e889 AK	192
08d78658 VK	193	/*
	194	* We may have ended up stopping the CPU holding the lock (in
	195	* smp_send_stop()) while still having some valuable data in the console
	196	* buffer. Try to acquire the lock then release it regardless of the
7625b3a0 VK	197	* result. The release will also print the buffers out. Locks debug
	198	* should be disabled to avoid reporting bad unlock balance when
	199	* panic() is not being callled from OOPS.
08d78658	200	*/
7625b3a0	201	debug_locks_off();
a623f87a	202	console_flush_on_panic();
08d78658	203
c7ff0d9c TS	204	if (!panic_blink)
	205	panic_blink = no_blink;
	206
dc009d92	207	if (panic_timeout > 0) {
1da177e4	208	/*
c95dbf27 IM	209	* Delay timeout seconds before rebooting the machine.
	210	* We can't use the "normal" timers since we just panicked.
	211	*/
70f41003	212	pr_emerg("Rebooting in %d seconds..\n", panic_timeout);
c95dbf27	213
c7ff0d9c	214	for (i = 0; i < panic_timeout * 1000; i += PANIC_TIMER_STEP) {
1da177e4	215	touch_nmi_watchdog();
c7ff0d9c TS	216	if (i >= i_next) {
	217	i += panic_blink(state ^= 1);
	218	i_next = i + 3600 / PANIC_BLINK_SPD;
	219	}
	220	mdelay(PANIC_TIMER_STEP);
1da177e4	221	}
4302fbc8 HD	222	}
4302fbc8 HD	223	if (panic_timeout != 0) {
c95dbf27 IM	224	/*
	225	* This will not be a clean reboot, with everything
	226	* shutting down. But if there is a chance of
	227	* rebooting the system it will be rebooted.
1da177e4	228	*/
2f048ea8	229	emergency_restart();
1da177e4 LT	230	}
	231	#ifdef __sparc__
	232	{
	233	extern int stop_a_enabled;
a271c241	234	/* Make sure the user can actually press Stop-A (L1-A) */
1da177e4	235	stop_a_enabled = 1;
d7c0847f	236	pr_emerg("Press Stop-A (L1-A) to return to the boot prom\n");
1da177e4 LT	237	}
1da177e4 LT	238	#endif
347a8dc3	239	#if defined(CONFIG_S390)
c95dbf27 IM	240	{
	241	unsigned long caller;
	242
	243	caller = (unsigned long)__builtin_return_address(0);
	244	disabled_wait(caller);
	245	}
1da177e4	246	#endif
d7c0847f	247	pr_emerg("---[ end Kernel panic - not syncing: %s\n", buf);
1da177e4	248	local_irq_enable();
c7ff0d9c	249	for (i = 0; ; i += PANIC_TIMER_STEP) {
c22db941	250	touch_softlockup_watchdog();
c7ff0d9c TS	251	if (i >= i_next) {
	252	i += panic_blink(state ^= 1);
	253	i_next = i + 3600 / PANIC_BLINK_SPD;
	254	}
	255	mdelay(PANIC_TIMER_STEP);
1da177e4 LT	256	}
1da177e4 LT	257	}
1da177e4 LT	258	EXPORT_SYMBOL(panic);
1da177e4 LT	259
c277e63f	260
25ddbb18	261	struct tnt {
c95dbf27 IM	262	u8 bit;
	263	char true;
	264	char false;
25ddbb18 AK	265	};
	266
	267	static const struct tnt tnts[] = {
c95dbf27 IM	268	{ TAINT_PROPRIETARY_MODULE, 'P', 'G' },
c95dbf27 IM	269	{ TAINT_FORCED_MODULE, 'F', ' ' },
8c90487c	270	{ TAINT_CPU_OUT_OF_SPEC, 'S', ' ' },
c95dbf27 IM	271	{ TAINT_FORCED_RMMOD, 'R', ' ' },
	272	{ TAINT_MACHINE_CHECK, 'M', ' ' },
	273	{ TAINT_BAD_PAGE, 'B', ' ' },
	274	{ TAINT_USER, 'U', ' ' },
	275	{ TAINT_DIE, 'D', ' ' },
	276	{ TAINT_OVERRIDDEN_ACPI_TABLE, 'A', ' ' },
	277	{ TAINT_WARN, 'W', ' ' },
	278	{ TAINT_CRAP, 'C', ' ' },
92946bc7	279	{ TAINT_FIRMWARE_WORKAROUND, 'I', ' ' },
2449b8ba	280	{ TAINT_OOT_MODULE, 'O', ' ' },
57673c2b	281	{ TAINT_UNSIGNED_MODULE, 'E', ' ' },
69361eef	282	{ TAINT_SOFTLOCKUP, 'L', ' ' },
c5f45465	283	{ TAINT_LIVEPATCH, 'K', ' ' },
25ddbb18 AK	284	};
25ddbb18 AK	285
1da177e4 LT	286	/**
	287	* print_tainted - return a string to represent the kernel taint state.
	288	*
	289	* 'P' - Proprietary module has been loaded.
	290	* 'F' - Module has been forcibly loaded.
	291	* 'S' - SMP with CPUs not designed for SMP.
	292	* 'R' - User forced a module unload.
9aa5e993	293	* 'M' - System experienced a machine check exception.
1da177e4	294	* 'B' - System has hit bad_page.
34f5a398	295	* 'U' - Userspace-defined naughtiness.
a8005992	296	* 'D' - Kernel has oopsed before
95b570c9 NH	297	* 'A' - ACPI table overridden.
95b570c9 NH	298	* 'W' - Taint on warning.
061b1bd3	299	* 'C' - modules from drivers/staging are loaded.
92946bc7	300	* 'I' - Working around severe firmware bug.
2449b8ba	301	* 'O' - Out-of-tree module has been loaded.
57673c2b	302	* 'E' - Unsigned module has been loaded.
bc53a3f4	303	* 'L' - A soft lockup has previously occurred.
c5f45465	304	* 'K' - Kernel has been live patched.
1da177e4	305	*
fe002a41	306	* The string is overwritten by the next call to print_tainted().
1da177e4	307	*/
1da177e4 LT	308	const char *print_tainted(void)
1da177e4 LT	309	{
01284764	310	static char buf[ARRAY_SIZE(tnts) + sizeof("Tainted: ")];
25ddbb18 AK	311
	312	if (tainted_mask) {
	313	char *s;
	314	int i;
	315
	316	s = buf + sprintf(buf, "Tainted: ");
	317	for (i = 0; i < ARRAY_SIZE(tnts); i++) {
	318	const struct tnt *t = &tnts[i];
	319	*s++ = test_bit(t->bit, &tainted_mask) ?
	320	t->true : t->false;
	321	}
	322	*s = 0;
	323	} else
1da177e4	324	snprintf(buf, sizeof(buf), "Not tainted");
c95dbf27 IM	325
c95dbf27 IM	326	return buf;
1da177e4 LT	327	}
1da177e4 LT	328
25ddbb18	329	int test_taint(unsigned flag)
1da177e4	330	{
25ddbb18 AK	331	return test_bit(flag, &tainted_mask);
	332	}
	333	EXPORT_SYMBOL(test_taint);
	334
	335	unsigned long get_taint(void)
	336	{
	337	return tainted_mask;
1da177e4	338	}
dd287796	339
373d4d09 RR	340	/**
	341	* add_taint: add a taint flag if not already set.
	342	* @flag: one of the TAINT_* constants.
	343	* @lockdep_ok: whether lock debugging is still OK.
	344	*
	345	* If something bad has gone wrong, you'll want @lockdebug_ok = false, but for
	346	* some notewortht-but-not-corrupting cases, it can be set to true.
	347	*/
	348	void add_taint(unsigned flag, enum lockdep_ok lockdep_ok)
dd287796	349	{
373d4d09	350	if (lockdep_ok == LOCKDEP_NOW_UNRELIABLE && __debug_locks_off())
d7c0847f	351	pr_warn("Disabling lock debugging due to kernel taint\n");
9eeba613	352
25ddbb18	353	set_bit(flag, &tainted_mask);
dd287796	354	}
1da177e4	355	EXPORT_SYMBOL(add_taint);
dd287796 AM	356
	357	static void spin_msec(int msecs)
	358	{
	359	int i;
	360
	361	for (i = 0; i < msecs; i++) {
	362	touch_nmi_watchdog();
	363	mdelay(1);
	364	}
	365	}
	366
	367	/*
	368	* It just happens that oops_enter() and oops_exit() are identically
	369	* implemented...
	370	*/
	371	static void do_oops_enter_exit(void)
	372	{
	373	unsigned long flags;
	374	static int spin_counter;
	375
	376	if (!pause_on_oops)
	377	return;
	378
	379	spin_lock_irqsave(&pause_on_oops_lock, flags);
	380	if (pause_on_oops_flag == 0) {
	381	/* This CPU may now print the oops message */
	382	pause_on_oops_flag = 1;
	383	} else {
	384	/* We need to stall this CPU */
	385	if (!spin_counter) {
	386	/* This CPU gets to do the counting */
	387	spin_counter = pause_on_oops;
	388	do {
	389	spin_unlock(&pause_on_oops_lock);
	390	spin_msec(MSEC_PER_SEC);
	391	spin_lock(&pause_on_oops_lock);
	392	} while (--spin_counter);
	393	pause_on_oops_flag = 0;
	394	} else {
	395	/* This CPU waits for a different one */
	396	while (spin_counter) {
	397	spin_unlock(&pause_on_oops_lock);
	398	spin_msec(1);
	399	spin_lock(&pause_on_oops_lock);
	400	}
	401	}
	402	}
	403	spin_unlock_irqrestore(&pause_on_oops_lock, flags);
	404	}
	405
	406	/*
c95dbf27 IM	407	* Return true if the calling CPU is allowed to print oops-related info.
c95dbf27 IM	408	* This is a bit racy..
dd287796 AM	409	*/
	410	int oops_may_print(void)
	411	{
	412	return pause_on_oops_flag == 0;
	413	}
	414
	415	/*
	416	* Called when the architecture enters its oops handler, before it prints
c95dbf27 IM	417	* anything. If this is the first CPU to oops, and it's oopsing the first
c95dbf27 IM	418	* time then let it proceed.
dd287796	419	*
c95dbf27 IM	420	* This is all enabled by the pause_on_oops kernel boot option. We do all
	421	* this to ensure that oopses don't scroll off the screen. It has the
	422	* side-effect of preventing later-oopsing CPUs from mucking up the display,
	423	* too.
dd287796	424	*
c95dbf27 IM	425	* It turns out that the CPU which is allowed to print ends up pausing for
	426	* the right duration, whereas all the other CPUs pause for twice as long:
	427	* once in oops_enter(), once in oops_exit().
dd287796 AM	428	*/
	429	void oops_enter(void)
	430	{
bdff7870	431	tracing_off();
c95dbf27 IM	432	/* can't trust the integrity of the kernel anymore: */
c95dbf27 IM	433	debug_locks_off();
dd287796 AM	434	do_oops_enter_exit();
	435	}
	436
2c3b20e9 AV	437	/*
	438	* 64-bit random ID for oopses:
	439	*/
	440	static u64 oops_id;
	441
	442	static int init_oops_id(void)
	443	{
	444	if (!oops_id)
	445	get_random_bytes(&oops_id, sizeof(oops_id));
d6624f99 AV	446	else
d6624f99 AV	447	oops_id++;
2c3b20e9 AV	448
	449	return 0;
	450	}
	451	late_initcall(init_oops_id);
	452
863a6049	453	void print_oops_end_marker(void)
71c33911 AV	454	{
71c33911 AV	455	init_oops_id();
1cac41cb MB	456
	457	if (mach_panic_string)
	458	printk(KERN_WARNING "Board Information: %s\n",
	459	mach_panic_string);
	460
d7c0847f	461	pr_warn("---[ end trace %016llx ]---\n", (unsigned long long)oops_id);
71c33911 AV	462	}
71c33911 AV	463
dd287796 AM	464	/*
	465	* Called when the architecture exits its oops handler, after printing
	466	* everything.
	467	*/
	468	void oops_exit(void)
	469	{
	470	do_oops_enter_exit();
71c33911	471	print_oops_end_marker();
456b565c	472	kmsg_dump(KMSG_DUMP_OOPS);
dd287796	473	}
3162f751	474
79b4cc5e	475	#ifdef WANT_WARN_ON_SLOWPATH
0f6f49a8 LT	476	struct slowpath_args {
0f6f49a8 LT	477	const char *fmt;
a8f18b90	478	va_list args;
0f6f49a8	479	};
bd89bb29	480
b2be0527 BH	481	static void warn_slowpath_common(const char file, int line, void caller,
b2be0527 BH	482	unsigned taint, struct slowpath_args *args)
0f6f49a8	483	{
de7edd31 SRRH	484	disable_trace_on_warning();
de7edd31 SRRH	485
dcb6b452 AT	486	pr_warn("------------[ cut here ]------------\n");
	487	pr_warn("WARNING: CPU: %d PID: %d at %s:%d %pS()\n",
	488	raw_smp_processor_id(), current->pid, file, line, caller);
74853dba	489
0f6f49a8 LT	490	if (args)
0f6f49a8 LT	491	vprintk(args->fmt, args->args);
a8f18b90	492
9e3961a0 PB	493	if (panic_on_warn) {
	494	/*
	495	* This thread may hit another WARN() in the panic path.
	496	* Resetting this prevents additional WARN() from panicking the
	497	* system on this thread. Other threads are blocked by the
	498	* panic_mutex in panic().
	499	*/
	500	panic_on_warn = 0;
	501	panic("panic_on_warn set ...\n");
	502	}
	503
a8f18b90 AV	504	print_modules();
	505	dump_stack();
	506	print_oops_end_marker();
373d4d09 RR	507	/* Just a warning, don't kill lockdep. */
373d4d09 RR	508	add_taint(taint, LOCKDEP_STILL_OK);
a8f18b90	509	}
0f6f49a8 LT	510
	511	void warn_slowpath_fmt(const char file, int line, const char fmt, ...)
	512	{
	513	struct slowpath_args args;
	514
	515	args.fmt = fmt;
	516	va_start(args.args, fmt);
b2be0527 BH	517	warn_slowpath_common(file, line, __builtin_return_address(0),
b2be0527 BH	518	TAINT_WARN, &args);
0f6f49a8 LT	519	va_end(args.args);
0f6f49a8 LT	520	}
57adc4d2 AK	521	EXPORT_SYMBOL(warn_slowpath_fmt);
57adc4d2 AK	522
b2be0527 BH	523	void warn_slowpath_fmt_taint(const char *file, int line,
	524	unsigned taint, const char *fmt, ...)
	525	{
	526	struct slowpath_args args;
	527
	528	args.fmt = fmt;
	529	va_start(args.args, fmt);
	530	warn_slowpath_common(file, line, __builtin_return_address(0),
	531	taint, &args);
	532	va_end(args.args);
	533	}
	534	EXPORT_SYMBOL(warn_slowpath_fmt_taint);
	535
57adc4d2 AK	536	void warn_slowpath_null(const char *file, int line)
57adc4d2 AK	537	{
b2be0527 BH	538	warn_slowpath_common(file, line, __builtin_return_address(0),
b2be0527 BH	539	TAINT_WARN, NULL);
57adc4d2 AK	540	}
57adc4d2 AK	541	EXPORT_SYMBOL(warn_slowpath_null);
79b4cc5e AV	542	#endif
79b4cc5e AV	543
3162f751	544	#ifdef CONFIG_CC_STACKPROTECTOR
54371a43	545
3162f751 AV	546	/*
	547	* Called when gcc's -fstack-protector feature is used, and
	548	* gcc detects corruption of the on-stack canary value
	549	*/
a7330c99	550	__visible void __stack_chk_fail(void)
3162f751	551	{
517a92c4 IM	552	panic("stack-protector: Kernel stack is corrupted in: %p\n",
517a92c4 IM	553	__builtin_return_address(0));
3162f751 AV	554	}
3162f751 AV	555	EXPORT_SYMBOL(__stack_chk_fail);
54371a43	556
3162f751	557	#endif
f44dd164 RR	558
	559	core_param(panic, panic_timeout, int, 0644);
	560	core_param(pause_on_oops, pause_on_oops, int, 0644);
9e3961a0	561	core_param(panic_on_warn, panic_on_warn, int, 0644);
d404ab0a	562
f06e5153 MH	563	static int __init setup_crash_kexec_post_notifiers(char *s)
	564	{
	565	crash_kexec_post_notifiers = true;
	566	return 0;
	567	}
	568	early_param("crash_kexec_post_notifiers", setup_crash_kexec_post_notifiers);
	569
d404ab0a OH	570	static int __init oops_setup(char *s)
	571	{
	572	if (!s)
	573	return -EINVAL;
	574	if (!strcmp(s, "panic"))
	575	panic_on_oops = 1;
	576	return 0;
	577	}
	578	early_param("oops", oops_setup);