2 * Generic infrastructure for lifetime debugging of objects.
4 * Started by Thomas Gleixner
6 * Copyright (C) 2008, Thomas Gleixner <tglx@linutronix.de>
8 * For licencing details see kernel-base/COPYING
10 #include <linux/debugobjects.h>
11 #include <linux/interrupt.h>
12 #include <linux/seq_file.h>
13 #include <linux/debugfs.h>
14 #include <linux/hash.h>
16 #define ODEBUG_HASH_BITS 14
17 #define ODEBUG_HASH_SIZE (1 << ODEBUG_HASH_BITS)
19 #define ODEBUG_POOL_SIZE 512
20 #define ODEBUG_POOL_MIN_LEVEL 256
22 #define ODEBUG_CHUNK_SHIFT PAGE_SHIFT
23 #define ODEBUG_CHUNK_SIZE (1 << ODEBUG_CHUNK_SHIFT)
24 #define ODEBUG_CHUNK_MASK (~(ODEBUG_CHUNK_SIZE - 1))
27 struct hlist_head list;
31 static struct debug_bucket obj_hash[ODEBUG_HASH_SIZE];
33 static struct debug_obj obj_static_pool[ODEBUG_POOL_SIZE];
35 static DEFINE_SPINLOCK(pool_lock);
37 static HLIST_HEAD(obj_pool);
39 static int obj_pool_min_free = ODEBUG_POOL_SIZE;
40 static int obj_pool_free = ODEBUG_POOL_SIZE;
41 static int obj_pool_used;
42 static int obj_pool_max_used;
43 static struct kmem_cache *obj_cache;
45 static int debug_objects_maxchain __read_mostly;
46 static int debug_objects_fixups __read_mostly;
47 static int debug_objects_warnings __read_mostly;
48 static int debug_objects_enabled __read_mostly;
49 static struct debug_obj_descr *descr_test __read_mostly;
51 static int __init enable_object_debug(char *str)
53 debug_objects_enabled = 1;
56 early_param("debug_objects", enable_object_debug);
58 static const char *obj_states[ODEBUG_STATE_MAX] = {
59 [ODEBUG_STATE_NONE] = "none",
60 [ODEBUG_STATE_INIT] = "initialized",
61 [ODEBUG_STATE_INACTIVE] = "inactive",
62 [ODEBUG_STATE_ACTIVE] = "active",
63 [ODEBUG_STATE_DESTROYED] = "destroyed",
64 [ODEBUG_STATE_NOTAVAILABLE] = "not available",
67 static int fill_pool(void)
69 gfp_t gfp = GFP_ATOMIC | __GFP_NORETRY | __GFP_NOWARN;
70 struct debug_obj *new;
73 if (likely(obj_pool_free >= ODEBUG_POOL_MIN_LEVEL))
76 if (unlikely(!obj_cache))
79 while (obj_pool_free < ODEBUG_POOL_MIN_LEVEL) {
81 new = kmem_cache_zalloc(obj_cache, gfp);
85 spin_lock_irqsave(&pool_lock, flags);
86 hlist_add_head(&new->node, &obj_pool);
88 spin_unlock_irqrestore(&pool_lock, flags);
94 * Lookup an object in the hash bucket.
96 static struct debug_obj *lookup_object(void *addr, struct debug_bucket *b)
98 struct hlist_node *node;
99 struct debug_obj *obj;
102 hlist_for_each_entry(obj, node, &b->list, node) {
104 if (obj->object == addr)
107 if (cnt > debug_objects_maxchain)
108 debug_objects_maxchain = cnt;
114 * Allocate a new object. If the pool is empty, switch off the debugger.
116 static struct debug_obj *
117 alloc_object(void *addr, struct debug_bucket *b, struct debug_obj_descr *descr)
119 struct debug_obj *obj = NULL;
121 spin_lock(&pool_lock);
122 if (obj_pool.first) {
123 obj = hlist_entry(obj_pool.first, typeof(*obj), node);
127 obj->state = ODEBUG_STATE_NONE;
128 hlist_del(&obj->node);
130 hlist_add_head(&obj->node, &b->list);
133 if (obj_pool_used > obj_pool_max_used)
134 obj_pool_max_used = obj_pool_used;
137 if (obj_pool_free < obj_pool_min_free)
138 obj_pool_min_free = obj_pool_free;
140 spin_unlock(&pool_lock);
146 * Put the object back into the pool or give it back to kmem_cache:
148 static void free_object(struct debug_obj *obj)
150 unsigned long idx = (unsigned long)(obj - obj_static_pool);
152 if (obj_pool_free < ODEBUG_POOL_SIZE || idx < ODEBUG_POOL_SIZE) {
153 spin_lock(&pool_lock);
154 hlist_add_head(&obj->node, &obj_pool);
157 spin_unlock(&pool_lock);
159 spin_lock(&pool_lock);
161 spin_unlock(&pool_lock);
162 kmem_cache_free(obj_cache, obj);
167 * We run out of memory. That means we probably have tons of objects
170 static void debug_objects_oom(void)
172 struct debug_bucket *db = obj_hash;
173 struct hlist_node *node, *tmp;
174 struct debug_obj *obj;
178 printk(KERN_WARNING "ODEBUG: Out of memory. ODEBUG disabled\n");
180 for (i = 0; i < ODEBUG_HASH_SIZE; i++, db++) {
181 spin_lock_irqsave(&db->lock, flags);
182 hlist_for_each_entry_safe(obj, node, tmp, &db->list, node) {
183 hlist_del(&obj->node);
186 spin_unlock_irqrestore(&db->lock, flags);
191 * We use the pfn of the address for the hash. That way we can check
192 * for freed objects simply by checking the affected bucket.
194 static struct debug_bucket *get_bucket(unsigned long addr)
198 hash = hash_long((addr >> ODEBUG_CHUNK_SHIFT), ODEBUG_HASH_BITS);
199 return &obj_hash[hash];
202 static void debug_print_object(struct debug_obj *obj, char *msg)
206 if (limit < 5 && obj->descr != descr_test) {
208 printk(KERN_ERR "ODEBUG: %s %s object type: %s\n", msg,
209 obj_states[obj->state], obj->descr->name);
212 debug_objects_warnings++;
216 * Try to repair the damage, so we have a better chance to get useful
220 debug_object_fixup(int (*fixup)(void *addr, enum debug_obj_state state),
221 void * addr, enum debug_obj_state state)
224 debug_objects_fixups += fixup(addr, state);
227 static void debug_object_is_on_stack(void *addr, int onstack)
229 void *stack = current->stack;
236 is_on_stack = (addr >= stack && addr < (stack + THREAD_SIZE));
238 if (is_on_stack == onstack)
244 "ODEBUG: object is on stack, but not annotated\n");
247 "ODEBUG: object is not on stack, but annotated\n");
252 __debug_object_init(void *addr, struct debug_obj_descr *descr, int onstack)
254 enum debug_obj_state state;
255 struct debug_bucket *db;
256 struct debug_obj *obj;
261 db = get_bucket((unsigned long) addr);
263 spin_lock_irqsave(&db->lock, flags);
265 obj = lookup_object(addr, db);
267 obj = alloc_object(addr, db, descr);
269 debug_objects_enabled = 0;
270 spin_unlock_irqrestore(&db->lock, flags);
274 debug_object_is_on_stack(addr, onstack);
277 switch (obj->state) {
278 case ODEBUG_STATE_NONE:
279 case ODEBUG_STATE_INIT:
280 case ODEBUG_STATE_INACTIVE:
281 obj->state = ODEBUG_STATE_INIT;
284 case ODEBUG_STATE_ACTIVE:
285 debug_print_object(obj, "init");
287 spin_unlock_irqrestore(&db->lock, flags);
288 debug_object_fixup(descr->fixup_init, addr, state);
291 case ODEBUG_STATE_DESTROYED:
292 debug_print_object(obj, "init");
298 spin_unlock_irqrestore(&db->lock, flags);
302 * debug_object_init - debug checks when an object is initialized
303 * @addr: address of the object
304 * @descr: pointer to an object specific debug description structure
306 void debug_object_init(void *addr, struct debug_obj_descr *descr)
308 if (!debug_objects_enabled)
311 __debug_object_init(addr, descr, 0);
315 * debug_object_init_on_stack - debug checks when an object on stack is
317 * @addr: address of the object
318 * @descr: pointer to an object specific debug description structure
320 void debug_object_init_on_stack(void *addr, struct debug_obj_descr *descr)
322 if (!debug_objects_enabled)
325 __debug_object_init(addr, descr, 1);
329 * debug_object_activate - debug checks when an object is activated
330 * @addr: address of the object
331 * @descr: pointer to an object specific debug description structure
333 void debug_object_activate(void *addr, struct debug_obj_descr *descr)
335 enum debug_obj_state state;
336 struct debug_bucket *db;
337 struct debug_obj *obj;
340 if (!debug_objects_enabled)
343 db = get_bucket((unsigned long) addr);
345 spin_lock_irqsave(&db->lock, flags);
347 obj = lookup_object(addr, db);
349 switch (obj->state) {
350 case ODEBUG_STATE_INIT:
351 case ODEBUG_STATE_INACTIVE:
352 obj->state = ODEBUG_STATE_ACTIVE;
355 case ODEBUG_STATE_ACTIVE:
356 debug_print_object(obj, "activate");
358 spin_unlock_irqrestore(&db->lock, flags);
359 debug_object_fixup(descr->fixup_activate, addr, state);
362 case ODEBUG_STATE_DESTROYED:
363 debug_print_object(obj, "activate");
368 spin_unlock_irqrestore(&db->lock, flags);
372 spin_unlock_irqrestore(&db->lock, flags);
374 * This happens when a static object is activated. We
375 * let the type specific code decide whether this is
378 debug_object_fixup(descr->fixup_activate, addr,
379 ODEBUG_STATE_NOTAVAILABLE);
383 * debug_object_deactivate - debug checks when an object is deactivated
384 * @addr: address of the object
385 * @descr: pointer to an object specific debug description structure
387 void debug_object_deactivate(void *addr, struct debug_obj_descr *descr)
389 struct debug_bucket *db;
390 struct debug_obj *obj;
393 if (!debug_objects_enabled)
396 db = get_bucket((unsigned long) addr);
398 spin_lock_irqsave(&db->lock, flags);
400 obj = lookup_object(addr, db);
402 switch (obj->state) {
403 case ODEBUG_STATE_INIT:
404 case ODEBUG_STATE_INACTIVE:
405 case ODEBUG_STATE_ACTIVE:
406 obj->state = ODEBUG_STATE_INACTIVE;
409 case ODEBUG_STATE_DESTROYED:
410 debug_print_object(obj, "deactivate");
416 struct debug_obj o = { .object = addr,
417 .state = ODEBUG_STATE_NOTAVAILABLE,
420 debug_print_object(&o, "deactivate");
423 spin_unlock_irqrestore(&db->lock, flags);
427 * debug_object_destroy - debug checks when an object is destroyed
428 * @addr: address of the object
429 * @descr: pointer to an object specific debug description structure
431 void debug_object_destroy(void *addr, struct debug_obj_descr *descr)
433 enum debug_obj_state state;
434 struct debug_bucket *db;
435 struct debug_obj *obj;
438 if (!debug_objects_enabled)
441 db = get_bucket((unsigned long) addr);
443 spin_lock_irqsave(&db->lock, flags);
445 obj = lookup_object(addr, db);
449 switch (obj->state) {
450 case ODEBUG_STATE_NONE:
451 case ODEBUG_STATE_INIT:
452 case ODEBUG_STATE_INACTIVE:
453 obj->state = ODEBUG_STATE_DESTROYED;
455 case ODEBUG_STATE_ACTIVE:
456 debug_print_object(obj, "destroy");
458 spin_unlock_irqrestore(&db->lock, flags);
459 debug_object_fixup(descr->fixup_destroy, addr, state);
462 case ODEBUG_STATE_DESTROYED:
463 debug_print_object(obj, "destroy");
469 spin_unlock_irqrestore(&db->lock, flags);
473 * debug_object_free - debug checks when an object is freed
474 * @addr: address of the object
475 * @descr: pointer to an object specific debug description structure
477 void debug_object_free(void *addr, struct debug_obj_descr *descr)
479 enum debug_obj_state state;
480 struct debug_bucket *db;
481 struct debug_obj *obj;
484 if (!debug_objects_enabled)
487 db = get_bucket((unsigned long) addr);
489 spin_lock_irqsave(&db->lock, flags);
491 obj = lookup_object(addr, db);
495 switch (obj->state) {
496 case ODEBUG_STATE_ACTIVE:
497 debug_print_object(obj, "free");
499 spin_unlock_irqrestore(&db->lock, flags);
500 debug_object_fixup(descr->fixup_free, addr, state);
503 hlist_del(&obj->node);
508 spin_unlock_irqrestore(&db->lock, flags);
511 #ifdef CONFIG_DEBUG_OBJECTS_FREE
512 static void __debug_check_no_obj_freed(const void *address, unsigned long size)
514 unsigned long flags, oaddr, saddr, eaddr, paddr, chunks;
515 struct hlist_node *node, *tmp;
516 struct debug_obj_descr *descr;
517 enum debug_obj_state state;
518 struct debug_bucket *db;
519 struct debug_obj *obj;
522 saddr = (unsigned long) address;
523 eaddr = saddr + size;
524 paddr = saddr & ODEBUG_CHUNK_MASK;
525 chunks = ((eaddr - paddr) + (ODEBUG_CHUNK_SIZE - 1));
526 chunks >>= ODEBUG_CHUNK_SHIFT;
528 for (;chunks > 0; chunks--, paddr += ODEBUG_CHUNK_SIZE) {
529 db = get_bucket(paddr);
533 spin_lock_irqsave(&db->lock, flags);
534 hlist_for_each_entry_safe(obj, node, tmp, &db->list, node) {
536 oaddr = (unsigned long) obj->object;
537 if (oaddr < saddr || oaddr >= eaddr)
540 switch (obj->state) {
541 case ODEBUG_STATE_ACTIVE:
542 debug_print_object(obj, "free");
545 spin_unlock_irqrestore(&db->lock, flags);
546 debug_object_fixup(descr->fixup_free,
547 (void *) oaddr, state);
550 hlist_del(&obj->node);
555 spin_unlock_irqrestore(&db->lock, flags);
556 if (cnt > debug_objects_maxchain)
557 debug_objects_maxchain = cnt;
561 void debug_check_no_obj_freed(const void *address, unsigned long size)
563 if (debug_objects_enabled)
564 __debug_check_no_obj_freed(address, size);
568 #ifdef CONFIG_DEBUG_FS
570 static int debug_stats_show(struct seq_file *m, void *v)
572 seq_printf(m, "max_chain :%d\n", debug_objects_maxchain);
573 seq_printf(m, "warnings :%d\n", debug_objects_warnings);
574 seq_printf(m, "fixups :%d\n", debug_objects_fixups);
575 seq_printf(m, "pool_free :%d\n", obj_pool_free);
576 seq_printf(m, "pool_min_free :%d\n", obj_pool_min_free);
577 seq_printf(m, "pool_used :%d\n", obj_pool_used);
578 seq_printf(m, "pool_max_used :%d\n", obj_pool_max_used);
582 static int debug_stats_open(struct inode *inode, struct file *filp)
584 return single_open(filp, debug_stats_show, NULL);
587 static const struct file_operations debug_stats_fops = {
588 .open = debug_stats_open,
591 .release = single_release,
594 static int __init debug_objects_init_debugfs(void)
596 struct dentry *dbgdir, *dbgstats;
598 if (!debug_objects_enabled)
601 dbgdir = debugfs_create_dir("debug_objects", NULL);
605 dbgstats = debugfs_create_file("stats", 0444, dbgdir, NULL,
613 debugfs_remove(dbgdir);
617 __initcall(debug_objects_init_debugfs);
620 static inline void debug_objects_init_debugfs(void) { }
623 #ifdef CONFIG_DEBUG_OBJECTS_SELFTEST
625 /* Random data structure for the self test */
627 unsigned long dummy1[6];
629 unsigned long dummy2[3];
632 static __initdata struct debug_obj_descr descr_type_test;
635 * fixup_init is called when:
636 * - an active object is initialized
638 static int __init fixup_init(void *addr, enum debug_obj_state state)
640 struct self_test *obj = addr;
643 case ODEBUG_STATE_ACTIVE:
644 debug_object_deactivate(obj, &descr_type_test);
645 debug_object_init(obj, &descr_type_test);
653 * fixup_activate is called when:
654 * - an active object is activated
655 * - an unknown object is activated (might be a statically initialized object)
657 static int __init fixup_activate(void *addr, enum debug_obj_state state)
659 struct self_test *obj = addr;
662 case ODEBUG_STATE_NOTAVAILABLE:
663 if (obj->static_init == 1) {
664 debug_object_init(obj, &descr_type_test);
665 debug_object_activate(obj, &descr_type_test);
667 * Real code should return 0 here ! This is
668 * not a fixup of some bad behaviour. We
669 * merily call the debug_init function to keep
670 * track of the object.
674 /* Real code needs to emit a warning here */
678 case ODEBUG_STATE_ACTIVE:
679 debug_object_deactivate(obj, &descr_type_test);
680 debug_object_activate(obj, &descr_type_test);
689 * fixup_destroy is called when:
690 * - an active object is destroyed
692 static int __init fixup_destroy(void *addr, enum debug_obj_state state)
694 struct self_test *obj = addr;
697 case ODEBUG_STATE_ACTIVE:
698 debug_object_deactivate(obj, &descr_type_test);
699 debug_object_destroy(obj, &descr_type_test);
707 * fixup_free is called when:
708 * - an active object is freed
710 static int __init fixup_free(void *addr, enum debug_obj_state state)
712 struct self_test *obj = addr;
715 case ODEBUG_STATE_ACTIVE:
716 debug_object_deactivate(obj, &descr_type_test);
717 debug_object_free(obj, &descr_type_test);
725 check_results(void *addr, enum debug_obj_state state, int fixups, int warnings)
727 struct debug_bucket *db;
728 struct debug_obj *obj;
732 db = get_bucket((unsigned long) addr);
734 spin_lock_irqsave(&db->lock, flags);
736 obj = lookup_object(addr, db);
737 if (!obj && state != ODEBUG_STATE_NONE) {
738 printk(KERN_ERR "ODEBUG: selftest object not found\n");
742 if (obj && obj->state != state) {
743 printk(KERN_ERR "ODEBUG: selftest wrong state: %d != %d\n",
748 if (fixups != debug_objects_fixups) {
749 printk(KERN_ERR "ODEBUG: selftest fixups failed %d != %d\n",
750 fixups, debug_objects_fixups);
754 if (warnings != debug_objects_warnings) {
755 printk(KERN_ERR "ODEBUG: selftest warnings failed %d != %d\n",
756 warnings, debug_objects_warnings);
762 spin_unlock_irqrestore(&db->lock, flags);
764 debug_objects_enabled = 0;
768 static __initdata struct debug_obj_descr descr_type_test = {
770 .fixup_init = fixup_init,
771 .fixup_activate = fixup_activate,
772 .fixup_destroy = fixup_destroy,
773 .fixup_free = fixup_free,
776 static __initdata struct self_test obj = { .static_init = 0 };
778 static void __init debug_objects_selftest(void)
780 int fixups, oldfixups, warnings, oldwarnings;
783 local_irq_save(flags);
785 fixups = oldfixups = debug_objects_fixups;
786 warnings = oldwarnings = debug_objects_warnings;
787 descr_test = &descr_type_test;
789 debug_object_init(&obj, &descr_type_test);
790 if (check_results(&obj, ODEBUG_STATE_INIT, fixups, warnings))
792 debug_object_activate(&obj, &descr_type_test);
793 if (check_results(&obj, ODEBUG_STATE_ACTIVE, fixups, warnings))
795 debug_object_activate(&obj, &descr_type_test);
796 if (check_results(&obj, ODEBUG_STATE_ACTIVE, ++fixups, ++warnings))
798 debug_object_deactivate(&obj, &descr_type_test);
799 if (check_results(&obj, ODEBUG_STATE_INACTIVE, fixups, warnings))
801 debug_object_destroy(&obj, &descr_type_test);
802 if (check_results(&obj, ODEBUG_STATE_DESTROYED, fixups, warnings))
804 debug_object_init(&obj, &descr_type_test);
805 if (check_results(&obj, ODEBUG_STATE_DESTROYED, fixups, ++warnings))
807 debug_object_activate(&obj, &descr_type_test);
808 if (check_results(&obj, ODEBUG_STATE_DESTROYED, fixups, ++warnings))
810 debug_object_deactivate(&obj, &descr_type_test);
811 if (check_results(&obj, ODEBUG_STATE_DESTROYED, fixups, ++warnings))
813 debug_object_free(&obj, &descr_type_test);
814 if (check_results(&obj, ODEBUG_STATE_NONE, fixups, warnings))
818 debug_object_activate(&obj, &descr_type_test);
819 if (check_results(&obj, ODEBUG_STATE_ACTIVE, ++fixups, warnings))
821 debug_object_init(&obj, &descr_type_test);
822 if (check_results(&obj, ODEBUG_STATE_INIT, ++fixups, ++warnings))
824 debug_object_free(&obj, &descr_type_test);
825 if (check_results(&obj, ODEBUG_STATE_NONE, fixups, warnings))
828 #ifdef CONFIG_DEBUG_OBJECTS_FREE
829 debug_object_init(&obj, &descr_type_test);
830 if (check_results(&obj, ODEBUG_STATE_INIT, fixups, warnings))
832 debug_object_activate(&obj, &descr_type_test);
833 if (check_results(&obj, ODEBUG_STATE_ACTIVE, fixups, warnings))
835 __debug_check_no_obj_freed(&obj, sizeof(obj));
836 if (check_results(&obj, ODEBUG_STATE_NONE, ++fixups, ++warnings))
839 printk(KERN_INFO "ODEBUG: selftest passed\n");
842 debug_objects_fixups = oldfixups;
843 debug_objects_warnings = oldwarnings;
846 local_irq_restore(flags);
849 static inline void debug_objects_selftest(void) { }
853 * Called during early boot to initialize the hash buckets and link
854 * the static object pool objects into the poll list. After this call
855 * the object tracker is fully operational.
857 void __init debug_objects_early_init(void)
861 for (i = 0; i < ODEBUG_HASH_SIZE; i++)
862 spin_lock_init(&obj_hash[i].lock);
864 for (i = 0; i < ODEBUG_POOL_SIZE; i++)
865 hlist_add_head(&obj_static_pool[i].node, &obj_pool);
869 * Called after the kmem_caches are functional to setup a dedicated
870 * cache pool, which has the SLAB_DEBUG_OBJECTS flag set. This flag
871 * prevents that the debug code is called on kmem_cache_free() for the
872 * debug tracker objects to avoid recursive calls.
874 void __init debug_objects_mem_init(void)
876 if (!debug_objects_enabled)
879 obj_cache = kmem_cache_create("debug_objects_cache",
880 sizeof (struct debug_obj), 0,
881 SLAB_DEBUG_OBJECTS, NULL);
884 debug_objects_enabled = 0;
886 debug_objects_selftest();
projects / linux-2.6 / blob