[mirror_ubuntu-bionic-kernel.git] / kernel / panic.c

/*
 *  linux/kernel/panic.c
 *
 *  Copyright (C) 1991, 1992  Linus Torvalds
 */

/*
 * This function is used through-out the kernel (including mm and fs)
 * to indicate a major problem.
 */
#include <linux/debug_locks.h>
#include <linux/interrupt.h>
#include <linux/kmsg_dump.h>
#include <linux/kallsyms.h>
#include <linux/notifier.h>
#include <linux/module.h>
#include <linux/random.h>
#include <linux/ftrace.h>
#include <linux/reboot.h>
#include <linux/delay.h>
#include <linux/kexec.h>
#include <linux/sched.h>
#include <linux/sysrq.h>
#include <linux/init.h>
#include <linux/nmi.h>
#include <linux/console.h>

#define PANIC_TIMER_STEP 100
#define PANIC_BLINK_SPD 18

int panic_on_oops = CONFIG_PANIC_ON_OOPS_VALUE;
static unsigned long tainted_mask;
static int pause_on_oops;
static int pause_on_oops_flag;
static DEFINE_SPINLOCK(pause_on_oops_lock);
bool crash_kexec_post_notifiers;
int panic_on_warn __read_mostly;

int panic_timeout = CONFIG_PANIC_TIMEOUT;
EXPORT_SYMBOL_GPL(panic_timeout);

ATOMIC_NOTIFIER_HEAD(panic_notifier_list);

EXPORT_SYMBOL(panic_notifier_list);

static long no_blink(int state)
{
	return 0;
}

/* Returns how long it waited in ms */
long (*panic_blink)(int state);
EXPORT_SYMBOL(panic_blink);

/*
 * Stop ourself in panic -- architecture code may override this
 */
void __weak panic_smp_self_stop(void)
{
	while (1)
		cpu_relax();
}

/*
 * Stop ourselves in NMI context if another CPU has already panicked. Arch code
 * may override this to prepare for crash dumping, e.g. save regs info.
 */
void __weak nmi_panic_self_stop(struct pt_regs *regs)
{
	panic_smp_self_stop();
}

atomic_t panic_cpu = ATOMIC_INIT(PANIC_CPU_INVALID);

/**
 *	panic - halt the system
 *	@fmt: The text string to print
 *
 *	Display a message, then perform cleanups.
 *
 *	This function never returns.
 */
void panic(const char *fmt, ...)
{
	static char buf[1024];
	va_list args;
	long i, i_next = 0;
	int state = 0;
	int old_cpu, this_cpu;

	/*
	 * Disable local interrupts. This will prevent panic_smp_self_stop
	 * from deadlocking the first cpu that invokes the panic, since
	 * there is nothing to prevent an interrupt handler (that runs
	 * after setting panic_cpu) from invoking panic() again.
	 */
	local_irq_disable();

	/*
	 * It's possible to come here directly from a panic-assertion and
	 * not have preempt disabled. Some functions called from here want
	 * preempt to be disabled. No point enabling it later though...
	 *
	 * Only one CPU is allowed to execute the panic code from here. For
	 * multiple parallel invocations of panic, all other CPUs either
	 * stop themself or will wait until they are stopped by the 1st CPU
	 * with smp_send_stop().
	 *
	 * `old_cpu == PANIC_CPU_INVALID' means this is the 1st CPU which
	 * comes here, so go ahead.
	 * `old_cpu == this_cpu' means we came from nmi_panic() which sets
	 * panic_cpu to this CPU.  In this case, this is also the 1st CPU.
	 */
	this_cpu = raw_smp_processor_id();
	old_cpu  = atomic_cmpxchg(&panic_cpu, PANIC_CPU_INVALID, this_cpu);

	if (old_cpu != PANIC_CPU_INVALID && old_cpu != this_cpu)
		panic_smp_self_stop();

	console_verbose();
	bust_spinlocks(1);
	va_start(args, fmt);
	vsnprintf(buf, sizeof(buf), fmt, args);
	va_end(args);
	pr_emerg("Kernel panic - not syncing: %s\n", buf);
#ifdef CONFIG_DEBUG_BUGVERBOSE
	/*
	 * Avoid nested stack-dumping if a panic occurs during oops processing
	 */
	if (!test_taint(TAINT_DIE) && oops_in_progress <= 1)
		dump_stack();
#endif

	/*
	 * If we have crashed and we have a crash kernel loaded let it handle
	 * everything else.
	 * If we want to run this after calling panic_notifiers, pass
	 * the "crash_kexec_post_notifiers" option to the kernel.
	 */
	if (!crash_kexec_post_notifiers)
		crash_kexec(NULL);

	/*
	 * Note smp_send_stop is the usual smp shutdown function, which
	 * unfortunately means it may not be hardened to work in a panic
	 * situation.
	 */
	smp_send_stop();

	/*
	 * Run any panic handlers, including those that might need to
	 * add information to the kmsg dump output.
	 */
	atomic_notifier_call_chain(&panic_notifier_list, 0, buf);

	kmsg_dump(KMSG_DUMP_PANIC);

	/*
	 * If you doubt kdump always works fine in any situation,
	 * "crash_kexec_post_notifiers" offers you a chance to run
	 * panic_notifiers and dumping kmsg before kdump.
	 * Note: since some panic_notifiers can make crashed kernel
	 * more unstable, it can increase risks of the kdump failure too.
	 */
	if (crash_kexec_post_notifiers)
		crash_kexec(NULL);

	bust_spinlocks(0);

	/*
	 * We may have ended up stopping the CPU holding the lock (in
	 * smp_send_stop()) while still having some valuable data in the console
	 * buffer.  Try to acquire the lock then release it regardless of the
	 * result.  The release will also print the buffers out.  Locks debug
	 * should be disabled to avoid reporting bad unlock balance when
	 * panic() is not being callled from OOPS.
	 */
	debug_locks_off();
	console_trylock();
	console_unlock();

	if (!panic_blink)
		panic_blink = no_blink;

	if (panic_timeout > 0) {
		/*
		 * Delay timeout seconds before rebooting the machine.
		 * We can't use the "normal" timers since we just panicked.
		 */
		pr_emerg("Rebooting in %d seconds..", panic_timeout);

		for (i = 0; i < panic_timeout * 1000; i += PANIC_TIMER_STEP) {
			touch_nmi_watchdog();
			if (i >= i_next) {
				i += panic_blink(state ^= 1);
				i_next = i + 3600 / PANIC_BLINK_SPD;
			}
			mdelay(PANIC_TIMER_STEP);
		}
	}
	if (panic_timeout != 0) {
		/*
		 * This will not be a clean reboot, with everything
		 * shutting down.  But if there is a chance of
		 * rebooting the system it will be rebooted.
		 */
		emergency_restart();
	}
#ifdef __sparc__
	{
		extern int stop_a_enabled;
		/* Make sure the user can actually press Stop-A (L1-A) */
		stop_a_enabled = 1;
		pr_emerg("Press Stop-A (L1-A) to return to the boot prom\n");
	}
#endif
#if defined(CONFIG_S390)
	{
		unsigned long caller;

		caller = (unsigned long)__builtin_return_address(0);
		disabled_wait(caller);
	}
#endif
	pr_emerg("---[ end Kernel panic - not syncing: %s\n", buf);
	local_irq_enable();
	for (i = 0; ; i += PANIC_TIMER_STEP) {
		touch_softlockup_watchdog();
		if (i >= i_next) {
			i += panic_blink(state ^= 1);
			i_next = i + 3600 / PANIC_BLINK_SPD;
		}
		mdelay(PANIC_TIMER_STEP);
	}
}

EXPORT_SYMBOL(panic);


struct tnt {
	u8	bit;
	char	true;
	char	false;
};

static const struct tnt tnts[] = {
	{ TAINT_PROPRIETARY_MODULE,	'P', 'G' },
	{ TAINT_FORCED_MODULE,		'F', ' ' },
	{ TAINT_CPU_OUT_OF_SPEC,	'S', ' ' },
	{ TAINT_FORCED_RMMOD,		'R', ' ' },
	{ TAINT_MACHINE_CHECK,		'M', ' ' },
	{ TAINT_BAD_PAGE,		'B', ' ' },
	{ TAINT_USER,			'U', ' ' },
	{ TAINT_DIE,			'D', ' ' },
	{ TAINT_OVERRIDDEN_ACPI_TABLE,	'A', ' ' },
	{ TAINT_WARN,			'W', ' ' },
	{ TAINT_CRAP,			'C', ' ' },
	{ TAINT_FIRMWARE_WORKAROUND,	'I', ' ' },
	{ TAINT_OOT_MODULE,		'O', ' ' },
	{ TAINT_UNSIGNED_MODULE,	'E', ' ' },
	{ TAINT_SOFTLOCKUP,		'L', ' ' },
	{ TAINT_LIVEPATCH,		'K', ' ' },
};

/**
 *	print_tainted - return a string to represent the kernel taint state.
 *
 *  'P' - Proprietary module has been loaded.
 *  'F' - Module has been forcibly loaded.
 *  'S' - SMP with CPUs not designed for SMP.
 *  'R' - User forced a module unload.
 *  'M' - System experienced a machine check exception.
 *  'B' - System has hit bad_page.
 *  'U' - Userspace-defined naughtiness.
 *  'D' - Kernel has oopsed before
 *  'A' - ACPI table overridden.
 *  'W' - Taint on warning.
 *  'C' - modules from drivers/staging are loaded.
 *  'I' - Working around severe firmware bug.
 *  'O' - Out-of-tree module has been loaded.
 *  'E' - Unsigned module has been loaded.
 *  'L' - A soft lockup has previously occurred.
 *  'K' - Kernel has been live patched.
 *
 *	The string is overwritten by the next call to print_tainted().
 */
const char *print_tainted(void)
{
	static char buf[ARRAY_SIZE(tnts) + sizeof("Tainted: ")];

	if (tainted_mask) {
		char *s;
		int i;

		s = buf + sprintf(buf, "Tainted: ");
		for (i = 0; i < ARRAY_SIZE(tnts); i++) {
			const struct tnt *t = &tnts[i];
			*s++ = test_bit(t->bit, &tainted_mask) ?
					t->true : t->false;
		}
		*s = 0;
	} else
		snprintf(buf, sizeof(buf), "Not tainted");

	return buf;
}

int test_taint(unsigned flag)
{
	return test_bit(flag, &tainted_mask);
}
EXPORT_SYMBOL(test_taint);

unsigned long get_taint(void)
{
	return tainted_mask;
}

/**
 * add_taint: add a taint flag if not already set.
 * @flag: one of the TAINT_* constants.
 * @lockdep_ok: whether lock debugging is still OK.
 *
 * If something bad has gone wrong, you'll want @lockdebug_ok = false, but for
 * some notewortht-but-not-corrupting cases, it can be set to true.
 */
void add_taint(unsigned flag, enum lockdep_ok lockdep_ok)
{
	if (lockdep_ok == LOCKDEP_NOW_UNRELIABLE && __debug_locks_off())
		pr_warn("Disabling lock debugging due to kernel taint\n");

	set_bit(flag, &tainted_mask);
}
EXPORT_SYMBOL(add_taint);

static void spin_msec(int msecs)
{
	int i;

	for (i = 0; i < msecs; i++) {
		touch_nmi_watchdog();
		mdelay(1);
	}
}

/*
 * It just happens that oops_enter() and oops_exit() are identically
 * implemented...
 */
static void do_oops_enter_exit(void)
{
	unsigned long flags;
	static int spin_counter;

	if (!pause_on_oops)
		return;

	spin_lock_irqsave(&pause_on_oops_lock, flags);
	if (pause_on_oops_flag == 0) {
		/* This CPU may now print the oops message */
		pause_on_oops_flag = 1;
	} else {
		/* We need to stall this CPU */
		if (!spin_counter) {
			/* This CPU gets to do the counting */
			spin_counter = pause_on_oops;
			do {
				spin_unlock(&pause_on_oops_lock);
				spin_msec(MSEC_PER_SEC);
				spin_lock(&pause_on_oops_lock);
			} while (--spin_counter);
			pause_on_oops_flag = 0;
		} else {
			/* This CPU waits for a different one */
			while (spin_counter) {
				spin_unlock(&pause_on_oops_lock);
				spin_msec(1);
				spin_lock(&pause_on_oops_lock);
			}
		}
	}
	spin_unlock_irqrestore(&pause_on_oops_lock, flags);
}

/*
 * Return true if the calling CPU is allowed to print oops-related info.
 * This is a bit racy..
 */
int oops_may_print(void)
{
	return pause_on_oops_flag == 0;
}

/*
 * Called when the architecture enters its oops handler, before it prints
 * anything.  If this is the first CPU to oops, and it's oopsing the first
 * time then let it proceed.
 *
 * This is all enabled by the pause_on_oops kernel boot option.  We do all
 * this to ensure that oopses don't scroll off the screen.  It has the
 * side-effect of preventing later-oopsing CPUs from mucking up the display,
 * too.
 *
 * It turns out that the CPU which is allowed to print ends up pausing for
 * the right duration, whereas all the other CPUs pause for twice as long:
 * once in oops_enter(), once in oops_exit().
 */
void oops_enter(void)
{
	tracing_off();
	/* can't trust the integrity of the kernel anymore: */
	debug_locks_off();
	do_oops_enter_exit();
}

/*
 * 64-bit random ID for oopses:
 */
static u64 oops_id;

static int init_oops_id(void)
{
	if (!oops_id)
		get_random_bytes(&oops_id, sizeof(oops_id));
	else
		oops_id++;

	return 0;
}
late_initcall(init_oops_id);

void print_oops_end_marker(void)
{
	init_oops_id();
	pr_warn("---[ end trace %016llx ]---\n", (unsigned long long)oops_id);
}

/*
 * Called when the architecture exits its oops handler, after printing
 * everything.
 */
void oops_exit(void)
{
	do_oops_enter_exit();
	print_oops_end_marker();
	kmsg_dump(KMSG_DUMP_OOPS);
}

#ifdef WANT_WARN_ON_SLOWPATH
struct slowpath_args {
	const char *fmt;
	va_list args;
};

static void warn_slowpath_common(const char *file, int line, void *caller,
				 unsigned taint, struct slowpath_args *args)
{
	disable_trace_on_warning();

	pr_warn("------------[ cut here ]------------\n");
	pr_warn("WARNING: CPU: %d PID: %d at %s:%d %pS()\n",
		raw_smp_processor_id(), current->pid, file, line, caller);

	if (args)
		vprintk(args->fmt, args->args);

	if (panic_on_warn) {
		/*
		 * This thread may hit another WARN() in the panic path.
		 * Resetting this prevents additional WARN() from panicking the
		 * system on this thread.  Other threads are blocked by the
		 * panic_mutex in panic().
		 */
		panic_on_warn = 0;
		panic("panic_on_warn set ...\n");
	}

	print_modules();
	dump_stack();
	print_oops_end_marker();
	/* Just a warning, don't kill lockdep. */
	add_taint(taint, LOCKDEP_STILL_OK);
}

void warn_slowpath_fmt(const char *file, int line, const char *fmt, ...)
{
	struct slowpath_args args;

	args.fmt = fmt;
	va_start(args.args, fmt);
	warn_slowpath_common(file, line, __builtin_return_address(0),
			     TAINT_WARN, &args);
	va_end(args.args);
}
EXPORT_SYMBOL(warn_slowpath_fmt);

void warn_slowpath_fmt_taint(const char *file, int line,
			     unsigned taint, const char *fmt, ...)
{
	struct slowpath_args args;

	args.fmt = fmt;
	va_start(args.args, fmt);
	warn_slowpath_common(file, line, __builtin_return_address(0),
			     taint, &args);
	va_end(args.args);
}
EXPORT_SYMBOL(warn_slowpath_fmt_taint);

void warn_slowpath_null(const char *file, int line)
{
	warn_slowpath_common(file, line, __builtin_return_address(0),
			     TAINT_WARN, NULL);
}
EXPORT_SYMBOL(warn_slowpath_null);
#endif

#ifdef CONFIG_CC_STACKPROTECTOR

/*
 * Called when gcc's -fstack-protector feature is used, and
 * gcc detects corruption of the on-stack canary value
 */
__visible void __stack_chk_fail(void)
{
	panic("stack-protector: Kernel stack is corrupted in: %p\n",
		__builtin_return_address(0));
}
EXPORT_SYMBOL(__stack_chk_fail);

#endif

core_param(panic, panic_timeout, int, 0644);
core_param(pause_on_oops, pause_on_oops, int, 0644);
core_param(panic_on_warn, panic_on_warn, int, 0644);

static int __init setup_crash_kexec_post_notifiers(char *s)
{
	crash_kexec_post_notifiers = true;
	return 0;
}
early_param("crash_kexec_post_notifiers", setup_crash_kexec_post_notifiers);

static int __init oops_setup(char *s)
{
	if (!s)
		return -EINVAL;
	if (!strcmp(s, "panic"))
		panic_on_oops = 1;
	return 0;
}
early_param("oops", oops_setup);
Commit	Line	Data
1da177e4 LT	1	/*
	2	* linux/kernel/panic.c
	3	*
	4	* Copyright (C) 1991, 1992 Linus Torvalds
	5	*/
	6
	7	/*
	8	* This function is used through-out the kernel (including mm and fs)
	9	* to indicate a major problem.
	10	*/
c95dbf27 IM	11	#include <linux/debug_locks.h>
c95dbf27 IM	12	#include <linux/interrupt.h>
456b565c	13	#include <linux/kmsg_dump.h>
c95dbf27 IM	14	#include <linux/kallsyms.h>
c95dbf27 IM	15	#include <linux/notifier.h>
1da177e4	16	#include <linux/module.h>
c95dbf27	17	#include <linux/random.h>
de7edd31	18	#include <linux/ftrace.h>
1da177e4	19	#include <linux/reboot.h>
c95dbf27 IM	20	#include <linux/delay.h>
	21	#include <linux/kexec.h>
	22	#include <linux/sched.h>
1da177e4	23	#include <linux/sysrq.h>
c95dbf27	24	#include <linux/init.h>
1da177e4	25	#include <linux/nmi.h>
08d78658	26	#include <linux/console.h>
1da177e4	27
c7ff0d9c TS	28	#define PANIC_TIMER_STEP 100
	29	#define PANIC_BLINK_SPD 18
	30
2a01bb38	31	int panic_on_oops = CONFIG_PANIC_ON_OOPS_VALUE;
25ddbb18	32	static unsigned long tainted_mask;
dd287796 AM	33	static int pause_on_oops;
	34	static int pause_on_oops_flag;
	35	static DEFINE_SPINLOCK(pause_on_oops_lock);
5375b708	36	bool crash_kexec_post_notifiers;
9e3961a0	37	int panic_on_warn __read_mostly;
1da177e4	38
5800dc3c	39	int panic_timeout = CONFIG_PANIC_TIMEOUT;
81e88fdc	40	EXPORT_SYMBOL_GPL(panic_timeout);
1da177e4	41
e041c683	42	ATOMIC_NOTIFIER_HEAD(panic_notifier_list);
1da177e4 LT	43
	44	EXPORT_SYMBOL(panic_notifier_list);
	45
c7ff0d9c	46	static long no_blink(int state)
8aeee85a	47	{
c7ff0d9c	48	return 0;
8aeee85a AB	49	}
8aeee85a AB	50
c7ff0d9c TS	51	/* Returns how long it waited in ms */
	52	long (*panic_blink)(int state);
	53	EXPORT_SYMBOL(panic_blink);
	54
93e13a36 MH	55	/*
	56	* Stop ourself in panic -- architecture code may override this
	57	*/
	58	void __weak panic_smp_self_stop(void)
	59	{
	60	while (1)
	61	cpu_relax();
	62	}
	63
58c5661f HK	64	/*
	65	* Stop ourselves in NMI context if another CPU has already panicked. Arch code
	66	* may override this to prepare for crash dumping, e.g. save regs info.
	67	*/
	68	void __weak nmi_panic_self_stop(struct pt_regs *regs)
	69	{
	70	panic_smp_self_stop();
	71	}
	72
1717f209 HK	73	atomic_t panic_cpu = ATOMIC_INIT(PANIC_CPU_INVALID);
1717f209 HK	74
1da177e4 LT	75	/**
	76	* panic - halt the system
	77	* @fmt: The text string to print
	78	*
	79	* Display a message, then perform cleanups.
	80	*
	81	* This function never returns.
	82	*/
9402c95f	83	void panic(const char *fmt, ...)
1da177e4	84	{
1da177e4 LT	85	static char buf[1024];
1da177e4 LT	86	va_list args;
c7ff0d9c TS	87	long i, i_next = 0;
c7ff0d9c TS	88	int state = 0;
1717f209	89	int old_cpu, this_cpu;
1da177e4	90
190320c3 VM	91	/*
	92	* Disable local interrupts. This will prevent panic_smp_self_stop
	93	* from deadlocking the first cpu that invokes the panic, since
	94	* there is nothing to prevent an interrupt handler (that runs
1717f209	95	* after setting panic_cpu) from invoking panic() again.
190320c3 VM	96	*/
	97	local_irq_disable();
	98
dc009d92	99	/*
c95dbf27 IM	100	* It's possible to come here directly from a panic-assertion and
c95dbf27 IM	101	* not have preempt disabled. Some functions called from here want
dc009d92	102	* preempt to be disabled. No point enabling it later though...
93e13a36 MH	103	*
	104	* Only one CPU is allowed to execute the panic code from here. For
	105	* multiple parallel invocations of panic, all other CPUs either
	106	* stop themself or will wait until they are stopped by the 1st CPU
	107	* with smp_send_stop().
1717f209 HK	108	*
	109	* `old_cpu == PANIC_CPU_INVALID' means this is the 1st CPU which
	110	* comes here, so go ahead.
	111	* `old_cpu == this_cpu' means we came from nmi_panic() which sets
	112	* panic_cpu to this CPU. In this case, this is also the 1st CPU.
dc009d92	113	*/
1717f209 HK	114	this_cpu = raw_smp_processor_id();
	115	old_cpu = atomic_cmpxchg(&panic_cpu, PANIC_CPU_INVALID, this_cpu);
	116
	117	if (old_cpu != PANIC_CPU_INVALID && old_cpu != this_cpu)
93e13a36	118	panic_smp_self_stop();
dc009d92	119
5b530fc1	120	console_verbose();
1da177e4 LT	121	bust_spinlocks(1);
	122	va_start(args, fmt);
	123	vsnprintf(buf, sizeof(buf), fmt, args);
	124	va_end(args);
d7c0847f	125	pr_emerg("Kernel panic - not syncing: %s\n", buf);
5cb27301	126	#ifdef CONFIG_DEBUG_BUGVERBOSE
6e6f0a1f AK	127	/*
	128	* Avoid nested stack-dumping if a panic occurs during oops processing
	129	*/
026ee1f6	130	if (!test_taint(TAINT_DIE) && oops_in_progress <= 1)
6e6f0a1f	131	dump_stack();
5cb27301	132	#endif
1da177e4	133
dc009d92 EB	134	/*
	135	* If we have crashed and we have a crash kernel loaded let it handle
	136	* everything else.
f06e5153 MH	137	* If we want to run this after calling panic_notifiers, pass
f06e5153 MH	138	* the "crash_kexec_post_notifiers" option to the kernel.
dc009d92	139	*/
f06e5153 MH	140	if (!crash_kexec_post_notifiers)
f06e5153 MH	141	crash_kexec(NULL);
dc009d92	142
dc009d92 EB	143	/*
	144	* Note smp_send_stop is the usual smp shutdown function, which
	145	* unfortunately means it may not be hardened to work in a panic
	146	* situation.
	147	*/
1da177e4	148	smp_send_stop();
1da177e4	149
6723734c KC	150	/*
	151	* Run any panic handlers, including those that might need to
	152	* add information to the kmsg dump output.
	153	*/
e041c683	154	atomic_notifier_call_chain(&panic_notifier_list, 0, buf);
1da177e4	155
6723734c KC	156	kmsg_dump(KMSG_DUMP_PANIC);
6723734c KC	157
f06e5153 MH	158	/*
	159	* If you doubt kdump always works fine in any situation,
	160	* "crash_kexec_post_notifiers" offers you a chance to run
	161	* panic_notifiers and dumping kmsg before kdump.
	162	* Note: since some panic_notifiers can make crashed kernel
	163	* more unstable, it can increase risks of the kdump failure too.
	164	*/
f45d85ff HD	165	if (crash_kexec_post_notifiers)
f45d85ff HD	166	crash_kexec(NULL);
f06e5153	167
d014e889 AK	168	bust_spinlocks(0);
d014e889 AK	169
08d78658 VK	170	/*
	171	* We may have ended up stopping the CPU holding the lock (in
	172	* smp_send_stop()) while still having some valuable data in the console
	173	* buffer. Try to acquire the lock then release it regardless of the
7625b3a0 VK	174	* result. The release will also print the buffers out. Locks debug
	175	* should be disabled to avoid reporting bad unlock balance when
	176	* panic() is not being callled from OOPS.
08d78658	177	*/
7625b3a0	178	debug_locks_off();
08d78658 VK	179	console_trylock();
	180	console_unlock();
	181
c7ff0d9c TS	182	if (!panic_blink)
	183	panic_blink = no_blink;
	184
dc009d92	185	if (panic_timeout > 0) {
1da177e4	186	/*
c95dbf27 IM	187	* Delay timeout seconds before rebooting the machine.
	188	* We can't use the "normal" timers since we just panicked.
	189	*/
d7c0847f	190	pr_emerg("Rebooting in %d seconds..", panic_timeout);
c95dbf27	191
c7ff0d9c	192	for (i = 0; i < panic_timeout * 1000; i += PANIC_TIMER_STEP) {
1da177e4	193	touch_nmi_watchdog();
c7ff0d9c TS	194	if (i >= i_next) {
	195	i += panic_blink(state ^= 1);
	196	i_next = i + 3600 / PANIC_BLINK_SPD;
	197	}
	198	mdelay(PANIC_TIMER_STEP);
1da177e4	199	}
4302fbc8 HD	200	}
4302fbc8 HD	201	if (panic_timeout != 0) {
c95dbf27 IM	202	/*
	203	* This will not be a clean reboot, with everything
	204	* shutting down. But if there is a chance of
	205	* rebooting the system it will be rebooted.
1da177e4	206	*/
2f048ea8	207	emergency_restart();
1da177e4 LT	208	}
	209	#ifdef __sparc__
	210	{
	211	extern int stop_a_enabled;
a271c241	212	/* Make sure the user can actually press Stop-A (L1-A) */
1da177e4	213	stop_a_enabled = 1;
d7c0847f	214	pr_emerg("Press Stop-A (L1-A) to return to the boot prom\n");
1da177e4 LT	215	}
1da177e4 LT	216	#endif
347a8dc3	217	#if defined(CONFIG_S390)
c95dbf27 IM	218	{
	219	unsigned long caller;
	220
	221	caller = (unsigned long)__builtin_return_address(0);
	222	disabled_wait(caller);
	223	}
1da177e4	224	#endif
d7c0847f	225	pr_emerg("---[ end Kernel panic - not syncing: %s\n", buf);
1da177e4	226	local_irq_enable();
c7ff0d9c	227	for (i = 0; ; i += PANIC_TIMER_STEP) {
c22db941	228	touch_softlockup_watchdog();
c7ff0d9c TS	229	if (i >= i_next) {
	230	i += panic_blink(state ^= 1);
	231	i_next = i + 3600 / PANIC_BLINK_SPD;
	232	}
	233	mdelay(PANIC_TIMER_STEP);
1da177e4 LT	234	}
	235	}
	236
	237	EXPORT_SYMBOL(panic);
	238
c277e63f	239
25ddbb18	240	struct tnt {
c95dbf27 IM	241	u8 bit;
	242	char true;
	243	char false;
25ddbb18 AK	244	};
	245
	246	static const struct tnt tnts[] = {
c95dbf27 IM	247	{ TAINT_PROPRIETARY_MODULE, 'P', 'G' },
c95dbf27 IM	248	{ TAINT_FORCED_MODULE, 'F', ' ' },
8c90487c	249	{ TAINT_CPU_OUT_OF_SPEC, 'S', ' ' },
c95dbf27 IM	250	{ TAINT_FORCED_RMMOD, 'R', ' ' },
	251	{ TAINT_MACHINE_CHECK, 'M', ' ' },
	252	{ TAINT_BAD_PAGE, 'B', ' ' },
	253	{ TAINT_USER, 'U', ' ' },
	254	{ TAINT_DIE, 'D', ' ' },
	255	{ TAINT_OVERRIDDEN_ACPI_TABLE, 'A', ' ' },
	256	{ TAINT_WARN, 'W', ' ' },
	257	{ TAINT_CRAP, 'C', ' ' },
92946bc7	258	{ TAINT_FIRMWARE_WORKAROUND, 'I', ' ' },
2449b8ba	259	{ TAINT_OOT_MODULE, 'O', ' ' },
57673c2b	260	{ TAINT_UNSIGNED_MODULE, 'E', ' ' },
69361eef	261	{ TAINT_SOFTLOCKUP, 'L', ' ' },
c5f45465	262	{ TAINT_LIVEPATCH, 'K', ' ' },
25ddbb18 AK	263	};
25ddbb18 AK	264
1da177e4 LT	265	/**
	266	* print_tainted - return a string to represent the kernel taint state.
	267	*
	268	* 'P' - Proprietary module has been loaded.
	269	* 'F' - Module has been forcibly loaded.
	270	* 'S' - SMP with CPUs not designed for SMP.
	271	* 'R' - User forced a module unload.
9aa5e993	272	* 'M' - System experienced a machine check exception.
1da177e4	273	* 'B' - System has hit bad_page.
34f5a398	274	* 'U' - Userspace-defined naughtiness.
a8005992	275	* 'D' - Kernel has oopsed before
95b570c9 NH	276	* 'A' - ACPI table overridden.
95b570c9 NH	277	* 'W' - Taint on warning.
061b1bd3	278	* 'C' - modules from drivers/staging are loaded.
92946bc7	279	* 'I' - Working around severe firmware bug.
2449b8ba	280	* 'O' - Out-of-tree module has been loaded.
57673c2b	281	* 'E' - Unsigned module has been loaded.
bc53a3f4	282	* 'L' - A soft lockup has previously occurred.
c5f45465	283	* 'K' - Kernel has been live patched.
1da177e4	284	*
fe002a41	285	* The string is overwritten by the next call to print_tainted().
1da177e4	286	*/
1da177e4 LT	287	const char *print_tainted(void)
1da177e4 LT	288	{
01284764	289	static char buf[ARRAY_SIZE(tnts) + sizeof("Tainted: ")];
25ddbb18 AK	290
	291	if (tainted_mask) {
	292	char *s;
	293	int i;
	294
	295	s = buf + sprintf(buf, "Tainted: ");
	296	for (i = 0; i < ARRAY_SIZE(tnts); i++) {
	297	const struct tnt *t = &tnts[i];
	298	*s++ = test_bit(t->bit, &tainted_mask) ?
	299	t->true : t->false;
	300	}
	301	*s = 0;
	302	} else
1da177e4	303	snprintf(buf, sizeof(buf), "Not tainted");
c95dbf27 IM	304
c95dbf27 IM	305	return buf;
1da177e4 LT	306	}
1da177e4 LT	307
25ddbb18	308	int test_taint(unsigned flag)
1da177e4	309	{
25ddbb18 AK	310	return test_bit(flag, &tainted_mask);
	311	}
	312	EXPORT_SYMBOL(test_taint);
	313
	314	unsigned long get_taint(void)
	315	{
	316	return tainted_mask;
1da177e4	317	}
dd287796	318
373d4d09 RR	319	/**
	320	* add_taint: add a taint flag if not already set.
	321	* @flag: one of the TAINT_* constants.
	322	* @lockdep_ok: whether lock debugging is still OK.
	323	*
	324	* If something bad has gone wrong, you'll want @lockdebug_ok = false, but for
	325	* some notewortht-but-not-corrupting cases, it can be set to true.
	326	*/
	327	void add_taint(unsigned flag, enum lockdep_ok lockdep_ok)
dd287796	328	{
373d4d09	329	if (lockdep_ok == LOCKDEP_NOW_UNRELIABLE && __debug_locks_off())
d7c0847f	330	pr_warn("Disabling lock debugging due to kernel taint\n");
9eeba613	331
25ddbb18	332	set_bit(flag, &tainted_mask);
dd287796	333	}
1da177e4	334	EXPORT_SYMBOL(add_taint);
dd287796 AM	335
	336	static void spin_msec(int msecs)
	337	{
	338	int i;
	339
	340	for (i = 0; i < msecs; i++) {
	341	touch_nmi_watchdog();
	342	mdelay(1);
	343	}
	344	}
	345
	346	/*
	347	* It just happens that oops_enter() and oops_exit() are identically
	348	* implemented...
	349	*/
	350	static void do_oops_enter_exit(void)
	351	{
	352	unsigned long flags;
	353	static int spin_counter;
	354
	355	if (!pause_on_oops)
	356	return;
	357
	358	spin_lock_irqsave(&pause_on_oops_lock, flags);
	359	if (pause_on_oops_flag == 0) {
	360	/* This CPU may now print the oops message */
	361	pause_on_oops_flag = 1;
	362	} else {
	363	/* We need to stall this CPU */
	364	if (!spin_counter) {
	365	/* This CPU gets to do the counting */
	366	spin_counter = pause_on_oops;
	367	do {
	368	spin_unlock(&pause_on_oops_lock);
	369	spin_msec(MSEC_PER_SEC);
	370	spin_lock(&pause_on_oops_lock);
	371	} while (--spin_counter);
	372	pause_on_oops_flag = 0;
	373	} else {
	374	/* This CPU waits for a different one */
	375	while (spin_counter) {
	376	spin_unlock(&pause_on_oops_lock);
	377	spin_msec(1);
	378	spin_lock(&pause_on_oops_lock);
	379	}
	380	}
	381	}
	382	spin_unlock_irqrestore(&pause_on_oops_lock, flags);
	383	}
	384
	385	/*
c95dbf27 IM	386	* Return true if the calling CPU is allowed to print oops-related info.
c95dbf27 IM	387	* This is a bit racy..
dd287796 AM	388	*/
	389	int oops_may_print(void)
	390	{
	391	return pause_on_oops_flag == 0;
	392	}
	393
	394	/*
	395	* Called when the architecture enters its oops handler, before it prints
c95dbf27 IM	396	* anything. If this is the first CPU to oops, and it's oopsing the first
c95dbf27 IM	397	* time then let it proceed.
dd287796	398	*
c95dbf27 IM	399	* This is all enabled by the pause_on_oops kernel boot option. We do all
	400	* this to ensure that oopses don't scroll off the screen. It has the
	401	* side-effect of preventing later-oopsing CPUs from mucking up the display,
	402	* too.
dd287796	403	*
c95dbf27 IM	404	* It turns out that the CPU which is allowed to print ends up pausing for
	405	* the right duration, whereas all the other CPUs pause for twice as long:
	406	* once in oops_enter(), once in oops_exit().
dd287796 AM	407	*/
	408	void oops_enter(void)
	409	{
bdff7870	410	tracing_off();
c95dbf27 IM	411	/* can't trust the integrity of the kernel anymore: */
c95dbf27 IM	412	debug_locks_off();
dd287796 AM	413	do_oops_enter_exit();
	414	}
	415
2c3b20e9 AV	416	/*
	417	* 64-bit random ID for oopses:
	418	*/
	419	static u64 oops_id;
	420
	421	static int init_oops_id(void)
	422	{
	423	if (!oops_id)
	424	get_random_bytes(&oops_id, sizeof(oops_id));
d6624f99 AV	425	else
d6624f99 AV	426	oops_id++;
2c3b20e9 AV	427
	428	return 0;
	429	}
	430	late_initcall(init_oops_id);
	431
863a6049	432	void print_oops_end_marker(void)
71c33911 AV	433	{
71c33911 AV	434	init_oops_id();
d7c0847f	435	pr_warn("---[ end trace %016llx ]---\n", (unsigned long long)oops_id);
71c33911 AV	436	}
71c33911 AV	437
dd287796 AM	438	/*
	439	* Called when the architecture exits its oops handler, after printing
	440	* everything.
	441	*/
	442	void oops_exit(void)
	443	{
	444	do_oops_enter_exit();
71c33911	445	print_oops_end_marker();
456b565c	446	kmsg_dump(KMSG_DUMP_OOPS);
dd287796	447	}
3162f751	448
79b4cc5e	449	#ifdef WANT_WARN_ON_SLOWPATH
0f6f49a8 LT	450	struct slowpath_args {
0f6f49a8 LT	451	const char *fmt;
a8f18b90	452	va_list args;
0f6f49a8	453	};
bd89bb29	454
b2be0527 BH	455	static void warn_slowpath_common(const char file, int line, void caller,
b2be0527 BH	456	unsigned taint, struct slowpath_args *args)
0f6f49a8	457	{
de7edd31 SRRH	458	disable_trace_on_warning();
de7edd31 SRRH	459
dcb6b452 AT	460	pr_warn("------------[ cut here ]------------\n");
	461	pr_warn("WARNING: CPU: %d PID: %d at %s:%d %pS()\n",
	462	raw_smp_processor_id(), current->pid, file, line, caller);
74853dba	463
0f6f49a8 LT	464	if (args)
0f6f49a8 LT	465	vprintk(args->fmt, args->args);
a8f18b90	466
9e3961a0 PB	467	if (panic_on_warn) {
	468	/*
	469	* This thread may hit another WARN() in the panic path.
	470	* Resetting this prevents additional WARN() from panicking the
	471	* system on this thread. Other threads are blocked by the
	472	* panic_mutex in panic().
	473	*/
	474	panic_on_warn = 0;
	475	panic("panic_on_warn set ...\n");
	476	}
	477
a8f18b90 AV	478	print_modules();
	479	dump_stack();
	480	print_oops_end_marker();
373d4d09 RR	481	/* Just a warning, don't kill lockdep. */
373d4d09 RR	482	add_taint(taint, LOCKDEP_STILL_OK);
a8f18b90	483	}
0f6f49a8 LT	484
	485	void warn_slowpath_fmt(const char file, int line, const char fmt, ...)
	486	{
	487	struct slowpath_args args;
	488
	489	args.fmt = fmt;
	490	va_start(args.args, fmt);
b2be0527 BH	491	warn_slowpath_common(file, line, __builtin_return_address(0),
b2be0527 BH	492	TAINT_WARN, &args);
0f6f49a8 LT	493	va_end(args.args);
0f6f49a8 LT	494	}
57adc4d2 AK	495	EXPORT_SYMBOL(warn_slowpath_fmt);
57adc4d2 AK	496
b2be0527 BH	497	void warn_slowpath_fmt_taint(const char *file, int line,
	498	unsigned taint, const char *fmt, ...)
	499	{
	500	struct slowpath_args args;
	501
	502	args.fmt = fmt;
	503	va_start(args.args, fmt);
	504	warn_slowpath_common(file, line, __builtin_return_address(0),
	505	taint, &args);
	506	va_end(args.args);
	507	}
	508	EXPORT_SYMBOL(warn_slowpath_fmt_taint);
	509
57adc4d2 AK	510	void warn_slowpath_null(const char *file, int line)
57adc4d2 AK	511	{
b2be0527 BH	512	warn_slowpath_common(file, line, __builtin_return_address(0),
b2be0527 BH	513	TAINT_WARN, NULL);
57adc4d2 AK	514	}
57adc4d2 AK	515	EXPORT_SYMBOL(warn_slowpath_null);
79b4cc5e AV	516	#endif
79b4cc5e AV	517
3162f751	518	#ifdef CONFIG_CC_STACKPROTECTOR
54371a43	519
3162f751 AV	520	/*
	521	* Called when gcc's -fstack-protector feature is used, and
	522	* gcc detects corruption of the on-stack canary value
	523	*/
a7330c99	524	__visible void __stack_chk_fail(void)
3162f751	525	{
517a92c4 IM	526	panic("stack-protector: Kernel stack is corrupted in: %p\n",
517a92c4 IM	527	__builtin_return_address(0));
3162f751 AV	528	}
3162f751 AV	529	EXPORT_SYMBOL(__stack_chk_fail);
54371a43	530
3162f751	531	#endif
f44dd164 RR	532
	533	core_param(panic, panic_timeout, int, 0644);
	534	core_param(pause_on_oops, pause_on_oops, int, 0644);
9e3961a0	535	core_param(panic_on_warn, panic_on_warn, int, 0644);
d404ab0a	536
f06e5153 MH	537	static int __init setup_crash_kexec_post_notifiers(char *s)
	538	{
	539	crash_kexec_post_notifiers = true;
	540	return 0;
	541	}
	542	early_param("crash_kexec_post_notifiers", setup_crash_kexec_post_notifiers);
	543
d404ab0a OH	544	static int __init oops_setup(char *s)
	545	{
	546	if (!s)
	547	return -EINVAL;
	548	if (!strcmp(s, "panic"))
	549	panic_on_oops = 1;
	550	return 0;
	551	}
	552	early_param("oops", oops_setup);