dev/dtrace/fasttrap.c

*0f4c859eSApple OSS Distributions/*
*0f4c859eSApple OSS Distributions * CDDL HEADER START
*0f4c859eSApple OSS Distributions *
*0f4c859eSApple OSS Distributions * The contents of this file are subject to the terms of the
*0f4c859eSApple OSS Distributions * Common Development and Distribution License (the "License").
*0f4c859eSApple OSS Distributions * You may not use this file except in compliance with the License.
*0f4c859eSApple OSS Distributions *
*0f4c859eSApple OSS Distributions * You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
*0f4c859eSApple OSS Distributions * or http://www.opensolaris.org/os/licensing.
*0f4c859eSApple OSS Distributions * See the License for the specific language governing permissions
*0f4c859eSApple OSS Distributions * and limitations under the License.
*0f4c859eSApple OSS Distributions *
*0f4c859eSApple OSS Distributions * When distributing Covered Code, include this CDDL HEADER in each
*0f4c859eSApple OSS Distributions * file and include the License file at usr/src/OPENSOLARIS.LICENSE.
*0f4c859eSApple OSS Distributions * If applicable, add the following below this CDDL HEADER, with the
*0f4c859eSApple OSS Distributions * fields enclosed by brackets "[]" replaced with your own identifying
*0f4c859eSApple OSS Distributions * information: Portions Copyright [yyyy] [name of copyright owner]
*0f4c859eSApple OSS Distributions *
*0f4c859eSApple OSS Distributions * CDDL HEADER END
*0f4c859eSApple OSS Distributions */
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions/*
*0f4c859eSApple OSS Distributions * Copyright 2009 Sun Microsystems, Inc.  All rights reserved.
*0f4c859eSApple OSS Distributions * Use is subject to license terms.
*0f4c859eSApple OSS Distributions */
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions#include <sys/types.h>
*0f4c859eSApple OSS Distributions#include <sys/time.h>
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions#include <sys/codesign.h>
*0f4c859eSApple OSS Distributions#include <sys/errno.h>
*0f4c859eSApple OSS Distributions#include <sys/stat.h>
*0f4c859eSApple OSS Distributions#include <sys/conf.h>
*0f4c859eSApple OSS Distributions#include <sys/systm.h>
*0f4c859eSApple OSS Distributions#include <sys/kauth.h>
*0f4c859eSApple OSS Distributions#include <sys/utfconv.h>
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions#include <sys/fasttrap.h>
*0f4c859eSApple OSS Distributions#include <sys/fasttrap_impl.h>
*0f4c859eSApple OSS Distributions#include <sys/fasttrap_isa.h>
*0f4c859eSApple OSS Distributions#include <sys/dtrace.h>
*0f4c859eSApple OSS Distributions#include <sys/dtrace_impl.h>
*0f4c859eSApple OSS Distributions#include <sys/proc.h>
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions#include <security/mac_framework.h>
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions#include <miscfs/devfs/devfs.h>
*0f4c859eSApple OSS Distributions#include <sys/proc_internal.h>
*0f4c859eSApple OSS Distributions#include <sys/dtrace_glue.h>
*0f4c859eSApple OSS Distributions#include <sys/dtrace_ptss.h>
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions#include <kern/cs_blobs.h>
*0f4c859eSApple OSS Distributions#include <kern/thread.h>
*0f4c859eSApple OSS Distributions#include <kern/zalloc.h>
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions#include <mach/thread_act.h>
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributionsextern kern_return_t kernel_thread_start_priority(thread_continue_t continuation, void *parameter, integer_t priority, thread_t *new_thread);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions/* Solaris proc_t is the struct. Darwin's proc_t is a pointer to it. */
*0f4c859eSApple OSS Distributions#define proc_t struct proc /* Steer clear of the Darwin typedef for proc_t */
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions__private_extern__
*0f4c859eSApple OSS Distributionsvoid
*0f4c859eSApple OSS Distributionsqsort(void *a, size_t n, size_t es, int (*cmp)(const void *, const void *));
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions/*
*0f4c859eSApple OSS Distributions * User-Land Trap-Based Tracing
*0f4c859eSApple OSS Distributions * ----------------------------
*0f4c859eSApple OSS Distributions *
*0f4c859eSApple OSS Distributions * The fasttrap provider allows DTrace consumers to instrument any user-level
*0f4c859eSApple OSS Distributions * instruction to gather data; this includes probes with semantic
*0f4c859eSApple OSS Distributions * signifigance like entry and return as well as simple offsets into the
*0f4c859eSApple OSS Distributions * function. While the specific techniques used are very ISA specific, the
*0f4c859eSApple OSS Distributions * methodology is generalizable to any architecture.
*0f4c859eSApple OSS Distributions *
*0f4c859eSApple OSS Distributions *
*0f4c859eSApple OSS Distributions * The General Methodology
*0f4c859eSApple OSS Distributions * -----------------------
*0f4c859eSApple OSS Distributions *
*0f4c859eSApple OSS Distributions * With the primary goal of tracing every user-land instruction and the
*0f4c859eSApple OSS Distributions * limitation that we can't trust user space so don't want to rely on much
*0f4c859eSApple OSS Distributions * information there, we begin by replacing the instructions we want to trace
*0f4c859eSApple OSS Distributions * with trap instructions. Each instruction we overwrite is saved into a hash
*0f4c859eSApple OSS Distributions * table keyed by process ID and pc address. When we enter the kernel due to
*0f4c859eSApple OSS Distributions * this trap instruction, we need the effects of the replaced instruction to
*0f4c859eSApple OSS Distributions * appear to have occurred before we proceed with the user thread's
*0f4c859eSApple OSS Distributions * execution.
*0f4c859eSApple OSS Distributions *
*0f4c859eSApple OSS Distributions * Each user level thread is represented by a ulwp_t structure which is
*0f4c859eSApple OSS Distributions * always easily accessible through a register. The most basic way to produce
*0f4c859eSApple OSS Distributions * the effects of the instruction we replaced is to copy that instruction out
*0f4c859eSApple OSS Distributions * to a bit of scratch space reserved in the user thread's ulwp_t structure
*0f4c859eSApple OSS Distributions * (a sort of kernel-private thread local storage), set the PC to that
*0f4c859eSApple OSS Distributions * scratch space and single step. When we reenter the kernel after single
*0f4c859eSApple OSS Distributions * stepping the instruction we must then adjust the PC to point to what would
*0f4c859eSApple OSS Distributions * normally be the next instruction. Of course, special care must be taken
*0f4c859eSApple OSS Distributions * for branches and jumps, but these represent such a small fraction of any
*0f4c859eSApple OSS Distributions * instruction set that writing the code to emulate these in the kernel is
*0f4c859eSApple OSS Distributions * not too difficult.
*0f4c859eSApple OSS Distributions *
*0f4c859eSApple OSS Distributions * Return probes may require several tracepoints to trace every return site,
*0f4c859eSApple OSS Distributions * and, conversely, each tracepoint may activate several probes (the entry
*0f4c859eSApple OSS Distributions * and offset 0 probes, for example). To solve this muliplexing problem,
*0f4c859eSApple OSS Distributions * tracepoints contain lists of probes to activate and probes contain lists
*0f4c859eSApple OSS Distributions * of tracepoints to enable. If a probe is activated, it adds its ID to
*0f4c859eSApple OSS Distributions * existing tracepoints or creates new ones as necessary.
*0f4c859eSApple OSS Distributions *
*0f4c859eSApple OSS Distributions * Most probes are activated _before_ the instruction is executed, but return
*0f4c859eSApple OSS Distributions * probes are activated _after_ the effects of the last instruction of the
*0f4c859eSApple OSS Distributions * function are visible. Return probes must be fired _after_ we have
*0f4c859eSApple OSS Distributions * single-stepped the instruction whereas all other probes are fired
*0f4c859eSApple OSS Distributions * beforehand.
*0f4c859eSApple OSS Distributions *
*0f4c859eSApple OSS Distributions *
*0f4c859eSApple OSS Distributions * Lock Ordering
*0f4c859eSApple OSS Distributions * -------------
*0f4c859eSApple OSS Distributions *
*0f4c859eSApple OSS Distributions * The lock ordering below -- both internally and with respect to the DTrace
*0f4c859eSApple OSS Distributions * framework -- is a little tricky and bears some explanation. Each provider
*0f4c859eSApple OSS Distributions * has a lock (ftp_mtx) that protects its members including reference counts
*0f4c859eSApple OSS Distributions * for enabled probes (ftp_rcount), consumers actively creating probes
*0f4c859eSApple OSS Distributions * (ftp_ccount) and USDT consumers (ftp_mcount); all three prevent a provider
*0f4c859eSApple OSS Distributions * from being freed. A provider is looked up by taking the bucket lock for the
*0f4c859eSApple OSS Distributions * provider hash table, and is returned with its lock held. The provider lock
*0f4c859eSApple OSS Distributions * may be taken in functions invoked by the DTrace framework, but may not be
*0f4c859eSApple OSS Distributions * held while calling functions in the DTrace framework.
*0f4c859eSApple OSS Distributions *
*0f4c859eSApple OSS Distributions * To ensure consistency over multiple calls to the DTrace framework, the
*0f4c859eSApple OSS Distributions * creation lock (ftp_cmtx) should be held. Naturally, the creation lock may
*0f4c859eSApple OSS Distributions * not be taken when holding the provider lock as that would create a cyclic
*0f4c859eSApple OSS Distributions * lock ordering. In situations where one would naturally take the provider
*0f4c859eSApple OSS Distributions * lock and then the creation lock, we instead up a reference count to prevent
*0f4c859eSApple OSS Distributions * the provider from disappearing, drop the provider lock, and acquire the
*0f4c859eSApple OSS Distributions * creation lock.
*0f4c859eSApple OSS Distributions *
*0f4c859eSApple OSS Distributions * Briefly:
*0f4c859eSApple OSS Distributions * 	bucket lock before provider lock
*0f4c859eSApple OSS Distributions *	DTrace before provider lock
*0f4c859eSApple OSS Distributions *	creation lock before DTrace
*0f4c859eSApple OSS Distributions *	never hold the provider lock and creation lock simultaneously
*0f4c859eSApple OSS Distributions */
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributionsstatic dtrace_meta_provider_id_t fasttrap_meta_id;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributionsstatic thread_t fasttrap_cleanup_thread;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributionsstatic LCK_GRP_DECLARE(fasttrap_lck_grp, "fasttrap");
*0f4c859eSApple OSS Distributionsstatic LCK_ATTR_DECLARE(fasttrap_lck_attr, 0, 0);
*0f4c859eSApple OSS Distributionsstatic LCK_MTX_DECLARE_ATTR(fasttrap_cleanup_mtx,
*0f4c859eSApple OSS Distributions    &fasttrap_lck_grp, &fasttrap_lck_attr);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions#define FASTTRAP_CLEANUP_PROVIDER 0x1
*0f4c859eSApple OSS Distributions#define FASTTRAP_CLEANUP_TRACEPOINT 0x2
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributionsstatic uint32_t fasttrap_cleanup_work = 0;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions/*
*0f4c859eSApple OSS Distributions * Generation count on modifications to the global tracepoint lookup table.
*0f4c859eSApple OSS Distributions */
*0f4c859eSApple OSS Distributionsstatic volatile uint64_t fasttrap_mod_gen;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions/*
*0f4c859eSApple OSS Distributions * APPLE NOTE: When the fasttrap provider is loaded, fasttrap_max is computed
*0f4c859eSApple OSS Distributions * base on system memory.  Each time a probe is created, fasttrap_total is
*0f4c859eSApple OSS Distributions * incremented by the number of tracepoints that may be associated with that
*0f4c859eSApple OSS Distributions * probe; fasttrap_total is capped at fasttrap_max.
*0f4c859eSApple OSS Distributions */
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributionsstatic uint32_t fasttrap_max;
*0f4c859eSApple OSS Distributionsstatic uint32_t fasttrap_retired;
*0f4c859eSApple OSS Distributionsstatic uint32_t fasttrap_total;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions#define	FASTTRAP_TPOINTS_DEFAULT_SIZE	0x4000
*0f4c859eSApple OSS Distributions#define	FASTTRAP_PROVIDERS_DEFAULT_SIZE	0x100
*0f4c859eSApple OSS Distributions#define	FASTTRAP_PROCS_DEFAULT_SIZE	0x100
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributionsfasttrap_hash_t			fasttrap_tpoints;
*0f4c859eSApple OSS Distributionsstatic fasttrap_hash_t		fasttrap_provs;
*0f4c859eSApple OSS Distributionsstatic fasttrap_hash_t		fasttrap_procs;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributionsstatic uint64_t			fasttrap_pid_count;	/* pid ref count */
*0f4c859eSApple OSS Distributionsstatic LCK_MTX_DECLARE_ATTR(fasttrap_count_mtx,	/* lock on ref count */
*0f4c859eSApple OSS Distributions    &fasttrap_lck_grp, &fasttrap_lck_attr);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions#define	FASTTRAP_ENABLE_FAIL	1
*0f4c859eSApple OSS Distributions#define	FASTTRAP_ENABLE_PARTIAL	2
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributionsstatic int fasttrap_tracepoint_enable(proc_t *, fasttrap_probe_t *, uint_t);
*0f4c859eSApple OSS Distributionsstatic void fasttrap_tracepoint_disable(proc_t *, fasttrap_probe_t *, uint_t);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributionsstatic fasttrap_provider_t *fasttrap_provider_lookup(proc_t*, fasttrap_provider_type_t, const char *,
*0f4c859eSApple OSS Distributions    const dtrace_pattr_t *);
*0f4c859eSApple OSS Distributionsstatic void fasttrap_provider_retire(proc_t*, const char *, int);
*0f4c859eSApple OSS Distributionsstatic void fasttrap_provider_free(fasttrap_provider_t *);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributionsstatic fasttrap_proc_t *fasttrap_proc_lookup(pid_t);
*0f4c859eSApple OSS Distributionsstatic void fasttrap_proc_release(fasttrap_proc_t *);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions#define	FASTTRAP_PROVS_INDEX(pid, name) \
*0f4c859eSApple OSS Distributions	((fasttrap_hash_str(name) + (pid)) & fasttrap_provs.fth_mask)
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions#define	FASTTRAP_PROCS_INDEX(pid) ((pid) & fasttrap_procs.fth_mask)
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions/*
*0f4c859eSApple OSS Distributions * APPLE NOTE: To save memory, some common memory allocations are given
*0f4c859eSApple OSS Distributions * a unique zone. For example, dtrace_probe_t is 72 bytes in size,
*0f4c859eSApple OSS Distributions * which means it would fall into the kalloc.128 bucket. With
*0f4c859eSApple OSS Distributions * 20k elements allocated, the space saved is substantial.
*0f4c859eSApple OSS Distributions */
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS DistributionsZONE_DEFINE(fasttrap_tracepoint_t_zone, "dtrace.fasttrap_tracepoint_t",
*0f4c859eSApple OSS Distributions    sizeof(fasttrap_tracepoint_t), ZC_NONE);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions/*
*0f4c859eSApple OSS Distributions * APPLE NOTE: fasttrap_probe_t's are variable in size. Some quick profiling has shown
*0f4c859eSApple OSS Distributions * that the sweet spot for reducing memory footprint is covering the first
*0f4c859eSApple OSS Distributions * three sizes. Everything larger goes into the common pool.
*0f4c859eSApple OSS Distributions */
*0f4c859eSApple OSS Distributions#define FASTTRAP_PROBE_T_ZONE_MAX_TRACEPOINTS 4
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributionsstruct zone *fasttrap_probe_t_zones[FASTTRAP_PROBE_T_ZONE_MAX_TRACEPOINTS];
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributionsstatic const char *fasttrap_probe_t_zone_names[FASTTRAP_PROBE_T_ZONE_MAX_TRACEPOINTS] = {
*0f4c859eSApple OSS Distributions	"",
*0f4c859eSApple OSS Distributions	"dtrace.fasttrap_probe_t[1]",
*0f4c859eSApple OSS Distributions	"dtrace.fasttrap_probe_t[2]",
*0f4c859eSApple OSS Distributions	"dtrace.fasttrap_probe_t[3]"
*0f4c859eSApple OSS Distributions};
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributionsstatic int
*0f4c859eSApple OSS Distributionsfasttrap_highbit(ulong_t i)
*0f4c859eSApple OSS Distributions{
*0f4c859eSApple OSS Distributions	int h = 1;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	if (i == 0)
*0f4c859eSApple OSS Distributions		return (0);
*0f4c859eSApple OSS Distributions#ifdef _LP64
*0f4c859eSApple OSS Distributions	if (i & 0xffffffff00000000ul) {
*0f4c859eSApple OSS Distributions		h += 32; i >>= 32;
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions#endif
*0f4c859eSApple OSS Distributions	if (i & 0xffff0000) {
*0f4c859eSApple OSS Distributions		h += 16; i >>= 16;
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions	if (i & 0xff00) {
*0f4c859eSApple OSS Distributions		h += 8; i >>= 8;
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions	if (i & 0xf0) {
*0f4c859eSApple OSS Distributions		h += 4; i >>= 4;
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions	if (i & 0xc) {
*0f4c859eSApple OSS Distributions		h += 2; i >>= 2;
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions	if (i & 0x2) {
*0f4c859eSApple OSS Distributions		h += 1;
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions	return (h);
*0f4c859eSApple OSS Distributions}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributionsstatic uint_t
*0f4c859eSApple OSS Distributionsfasttrap_hash_str(const char *p)
*0f4c859eSApple OSS Distributions{
*0f4c859eSApple OSS Distributions	unsigned int g;
*0f4c859eSApple OSS Distributions	uint_t hval = 0;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	while (*p) {
*0f4c859eSApple OSS Distributions		hval = (hval << 4) + *p++;
*0f4c859eSApple OSS Distributions		if ((g = (hval & 0xf0000000)) != 0)
*0f4c859eSApple OSS Distributions			hval ^= g >> 24;
*0f4c859eSApple OSS Distributions		hval &= ~g;
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions	return (hval);
*0f4c859eSApple OSS Distributions}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions/*
*0f4c859eSApple OSS Distributions * APPLE NOTE: fasttrap_sigtrap not implemented
*0f4c859eSApple OSS Distributions */
*0f4c859eSApple OSS Distributionsvoid
*0f4c859eSApple OSS Distributionsfasttrap_sigtrap(proc_t *p, uthread_t t, user_addr_t pc)
*0f4c859eSApple OSS Distributions{
*0f4c859eSApple OSS Distributions#pragma unused(p, t, pc)
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions#if !defined(__APPLE__)
*0f4c859eSApple OSS Distributions	sigqueue_t *sqp = kmem_zalloc(sizeof (sigqueue_t), KM_SLEEP);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	sqp->sq_info.si_signo = SIGTRAP;
*0f4c859eSApple OSS Distributions	sqp->sq_info.si_code = TRAP_DTRACE;
*0f4c859eSApple OSS Distributions	sqp->sq_info.si_addr = (caddr_t)pc;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	mutex_enter(&p->p_lock);
*0f4c859eSApple OSS Distributions	sigaddqa(p, t, sqp);
*0f4c859eSApple OSS Distributions	mutex_exit(&p->p_lock);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	if (t != NULL)
*0f4c859eSApple OSS Distributions		aston(t);
*0f4c859eSApple OSS Distributions#endif /* __APPLE__ */
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	printf("fasttrap_sigtrap called with no implementation.\n");
*0f4c859eSApple OSS Distributions}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions/*
*0f4c859eSApple OSS Distributions * This function ensures that no threads are actively using the memory
*0f4c859eSApple OSS Distributions * associated with probes that were formerly live.
*0f4c859eSApple OSS Distributions */
*0f4c859eSApple OSS Distributionsstatic void
*0f4c859eSApple OSS Distributionsfasttrap_mod_barrier(uint64_t gen)
*0f4c859eSApple OSS Distributions{
*0f4c859eSApple OSS Distributions	unsigned int i;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	if (gen < fasttrap_mod_gen)
*0f4c859eSApple OSS Distributions		return;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	fasttrap_mod_gen++;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	for (i = 0; i < NCPU; i++) {
*0f4c859eSApple OSS Distributions		lck_mtx_lock(&cpu_core[i].cpuc_pid_lock);
*0f4c859eSApple OSS Distributions		lck_mtx_unlock(&cpu_core[i].cpuc_pid_lock);
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributionsstatic void fasttrap_pid_cleanup(uint32_t);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributionsstatic unsigned int
*0f4c859eSApple OSS Distributionsfasttrap_pid_cleanup_providers(void)
*0f4c859eSApple OSS Distributions{
*0f4c859eSApple OSS Distributions	fasttrap_provider_t **fpp, *fp;
*0f4c859eSApple OSS Distributions	fasttrap_bucket_t *bucket;
*0f4c859eSApple OSS Distributions	dtrace_provider_id_t provid;
*0f4c859eSApple OSS Distributions	unsigned int later = 0, i;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * Iterate over all the providers trying to remove the marked
*0f4c859eSApple OSS Distributions	 * ones. If a provider is marked but not retired, we just
*0f4c859eSApple OSS Distributions	 * have to take a crack at removing it -- it's no big deal if
*0f4c859eSApple OSS Distributions	 * we can't.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	for (i = 0; i < fasttrap_provs.fth_nent; i++) {
*0f4c859eSApple OSS Distributions		bucket = &fasttrap_provs.fth_table[i];
*0f4c859eSApple OSS Distributions		lck_mtx_lock(&bucket->ftb_mtx);
*0f4c859eSApple OSS Distributions		fpp = (fasttrap_provider_t **)&bucket->ftb_data;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		while ((fp = *fpp) != NULL) {
*0f4c859eSApple OSS Distributions			if (!fp->ftp_marked) {
*0f4c859eSApple OSS Distributions				fpp = &fp->ftp_next;
*0f4c859eSApple OSS Distributions				continue;
*0f4c859eSApple OSS Distributions			}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions			lck_mtx_lock(&fp->ftp_mtx);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions			/*
*0f4c859eSApple OSS Distributions			 * If this provider has consumers actively
*0f4c859eSApple OSS Distributions			 * creating probes (ftp_ccount) or is a USDT
*0f4c859eSApple OSS Distributions			 * provider (ftp_mcount), we can't unregister
*0f4c859eSApple OSS Distributions			 * or even condense.
*0f4c859eSApple OSS Distributions			 */
*0f4c859eSApple OSS Distributions			if (fp->ftp_ccount != 0 ||
*0f4c859eSApple OSS Distributions			    fp->ftp_mcount != 0) {
*0f4c859eSApple OSS Distributions				fp->ftp_marked = 0;
*0f4c859eSApple OSS Distributions				lck_mtx_unlock(&fp->ftp_mtx);
*0f4c859eSApple OSS Distributions				continue;
*0f4c859eSApple OSS Distributions			}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions			if (!fp->ftp_retired || fp->ftp_rcount != 0)
*0f4c859eSApple OSS Distributions				fp->ftp_marked = 0;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions			lck_mtx_unlock(&fp->ftp_mtx);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions			/*
*0f4c859eSApple OSS Distributions			 * If we successfully unregister this
*0f4c859eSApple OSS Distributions			 * provider we can remove it from the hash
*0f4c859eSApple OSS Distributions			 * chain and free the memory. If our attempt
*0f4c859eSApple OSS Distributions			 * to unregister fails and this is a retired
*0f4c859eSApple OSS Distributions			 * provider, increment our flag to try again
*0f4c859eSApple OSS Distributions			 * pretty soon. If we've consumed more than
*0f4c859eSApple OSS Distributions			 * half of our total permitted number of
*0f4c859eSApple OSS Distributions			 * probes call dtrace_condense() to try to
*0f4c859eSApple OSS Distributions			 * clean out the unenabled probes.
*0f4c859eSApple OSS Distributions			 */
*0f4c859eSApple OSS Distributions			provid = fp->ftp_provid;
*0f4c859eSApple OSS Distributions			if (dtrace_unregister(provid) != 0) {
*0f4c859eSApple OSS Distributions				if (fasttrap_total > fasttrap_max / 2)
*0f4c859eSApple OSS Distributions					(void) dtrace_condense(provid);
*0f4c859eSApple OSS Distributions				later += fp->ftp_marked;
*0f4c859eSApple OSS Distributions				fpp = &fp->ftp_next;
*0f4c859eSApple OSS Distributions			} else {
*0f4c859eSApple OSS Distributions				*fpp = fp->ftp_next;
*0f4c859eSApple OSS Distributions				fasttrap_provider_free(fp);
*0f4c859eSApple OSS Distributions			}
*0f4c859eSApple OSS Distributions		}
*0f4c859eSApple OSS Distributions		lck_mtx_unlock(&bucket->ftb_mtx);
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	return later;
*0f4c859eSApple OSS Distributions}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributionstypedef struct fasttrap_tracepoint_spec {
*0f4c859eSApple OSS Distributions	pid_t fttps_pid;
*0f4c859eSApple OSS Distributions	user_addr_t fttps_pc;
*0f4c859eSApple OSS Distributions} fasttrap_tracepoint_spec_t;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributionsstatic fasttrap_tracepoint_spec_t *fasttrap_retired_spec;
*0f4c859eSApple OSS Distributionsstatic size_t fasttrap_cur_retired = 0, fasttrap_retired_size;
*0f4c859eSApple OSS Distributionsstatic LCK_MTX_DECLARE_ATTR(fasttrap_retired_mtx,
*0f4c859eSApple OSS Distributions    &fasttrap_lck_grp, &fasttrap_lck_attr);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions#define DEFAULT_RETIRED_SIZE 256
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributionsstatic void
*0f4c859eSApple OSS Distributionsfasttrap_tracepoint_cleanup(void)
*0f4c859eSApple OSS Distributions{
*0f4c859eSApple OSS Distributions	size_t i;
*0f4c859eSApple OSS Distributions	pid_t pid = 0;
*0f4c859eSApple OSS Distributions	user_addr_t pc;
*0f4c859eSApple OSS Distributions	proc_t *p = PROC_NULL;
*0f4c859eSApple OSS Distributions	fasttrap_tracepoint_t *tp = NULL;
*0f4c859eSApple OSS Distributions	lck_mtx_lock(&fasttrap_retired_mtx);
*0f4c859eSApple OSS Distributions	fasttrap_bucket_t *bucket;
*0f4c859eSApple OSS Distributions	for (i = 0; i < fasttrap_cur_retired; i++) {
*0f4c859eSApple OSS Distributions		pc = fasttrap_retired_spec[i].fttps_pc;
*0f4c859eSApple OSS Distributions		if (fasttrap_retired_spec[i].fttps_pid != pid) {
*0f4c859eSApple OSS Distributions			pid = fasttrap_retired_spec[i].fttps_pid;
*0f4c859eSApple OSS Distributions			if (p != PROC_NULL) {
*0f4c859eSApple OSS Distributions				sprunlock(p);
*0f4c859eSApple OSS Distributions			}
*0f4c859eSApple OSS Distributions			if ((p = sprlock(pid)) == PROC_NULL) {
*0f4c859eSApple OSS Distributions				pid = 0;
*0f4c859eSApple OSS Distributions				continue;
*0f4c859eSApple OSS Distributions			}
*0f4c859eSApple OSS Distributions		}
*0f4c859eSApple OSS Distributions		bucket = &fasttrap_tpoints.fth_table[FASTTRAP_TPOINTS_INDEX(pid, pc)];
*0f4c859eSApple OSS Distributions		lck_mtx_lock(&bucket->ftb_mtx);
*0f4c859eSApple OSS Distributions		for (tp = bucket->ftb_data; tp != NULL; tp = tp->ftt_next) {
*0f4c859eSApple OSS Distributions			if (pid == tp->ftt_pid && pc == tp->ftt_pc &&
*0f4c859eSApple OSS Distributions			tp->ftt_proc->ftpc_acount != 0)
*0f4c859eSApple OSS Distributions				break;
*0f4c859eSApple OSS Distributions		}
*0f4c859eSApple OSS Distributions		/*
*0f4c859eSApple OSS Distributions		 * Check that the tracepoint is not gone or has not been
*0f4c859eSApple OSS Distributions		 * re-activated for another probe
*0f4c859eSApple OSS Distributions		 */
*0f4c859eSApple OSS Distributions		if (tp == NULL || tp->ftt_retired == 0) {
*0f4c859eSApple OSS Distributions			lck_mtx_unlock(&bucket->ftb_mtx);
*0f4c859eSApple OSS Distributions			continue;
*0f4c859eSApple OSS Distributions		}
*0f4c859eSApple OSS Distributions		fasttrap_tracepoint_remove(p, tp);
*0f4c859eSApple OSS Distributions		lck_mtx_unlock(&bucket->ftb_mtx);
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions	if (p != PROC_NULL) {
*0f4c859eSApple OSS Distributions		sprunlock(p);
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	fasttrap_cur_retired = 0;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	lck_mtx_unlock(&fasttrap_retired_mtx);
*0f4c859eSApple OSS Distributions}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributionsvoid
*0f4c859eSApple OSS Distributionsfasttrap_tracepoint_retire(proc_t *p, fasttrap_tracepoint_t *tp)
*0f4c859eSApple OSS Distributions{
*0f4c859eSApple OSS Distributions	if (tp->ftt_retired)
*0f4c859eSApple OSS Distributions		return;
*0f4c859eSApple OSS Distributions	lck_mtx_lock(&fasttrap_retired_mtx);
*0f4c859eSApple OSS Distributions	fasttrap_tracepoint_spec_t *s = &fasttrap_retired_spec[fasttrap_cur_retired++];
*0f4c859eSApple OSS Distributions	s->fttps_pid = proc_getpid(p);
*0f4c859eSApple OSS Distributions	s->fttps_pc = tp->ftt_pc;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	if (fasttrap_cur_retired == fasttrap_retired_size) {
*0f4c859eSApple OSS Distributions		fasttrap_tracepoint_spec_t *new_retired = kmem_zalloc(
*0f4c859eSApple OSS Distributions					fasttrap_retired_size * 2 *
*0f4c859eSApple OSS Distributions					sizeof(*fasttrap_retired_spec),
*0f4c859eSApple OSS Distributions					KM_SLEEP);
*0f4c859eSApple OSS Distributions		memcpy(new_retired, fasttrap_retired_spec, sizeof(*fasttrap_retired_spec) * fasttrap_retired_size);
*0f4c859eSApple OSS Distributions		kmem_free(fasttrap_retired_spec, sizeof(*fasttrap_retired_spec) * fasttrap_retired_size);
*0f4c859eSApple OSS Distributions		fasttrap_retired_size *= 2;
*0f4c859eSApple OSS Distributions		fasttrap_retired_spec = new_retired;
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	lck_mtx_unlock(&fasttrap_retired_mtx);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	tp->ftt_retired = 1;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	fasttrap_pid_cleanup(FASTTRAP_CLEANUP_TRACEPOINT);
*0f4c859eSApple OSS Distributions}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributionsstatic void
*0f4c859eSApple OSS Distributionsfasttrap_pid_cleanup_compute_priority(void)
*0f4c859eSApple OSS Distributions{
*0f4c859eSApple OSS Distributions	if (fasttrap_total > (fasttrap_max / 100 * 90) || fasttrap_retired > fasttrap_max / 2) {
*0f4c859eSApple OSS Distributions		thread_precedence_policy_data_t precedence = {12 /* BASEPRI_PREEMPT_HIGH */};
*0f4c859eSApple OSS Distributions		thread_policy_set(fasttrap_cleanup_thread, THREAD_PRECEDENCE_POLICY, (thread_policy_t) &precedence, THREAD_PRECEDENCE_POLICY_COUNT);
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions	else {
*0f4c859eSApple OSS Distributions		thread_precedence_policy_data_t precedence = {-39 /* BASEPRI_USER_INITIATED */};
*0f4c859eSApple OSS Distributions		thread_policy_set(fasttrap_cleanup_thread, THREAD_PRECEDENCE_POLICY, (thread_policy_t) &precedence, THREAD_PRECEDENCE_POLICY_COUNT);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions/*
*0f4c859eSApple OSS Distributions * This is the timeout's callback for cleaning up the providers and their
*0f4c859eSApple OSS Distributions * probes.
*0f4c859eSApple OSS Distributions */
*0f4c859eSApple OSS Distributions/*ARGSUSED*/
*0f4c859eSApple OSS Distributions__attribute__((noreturn))
*0f4c859eSApple OSS Distributionsstatic void
*0f4c859eSApple OSS Distributionsfasttrap_pid_cleanup_cb(void)
*0f4c859eSApple OSS Distributions{
*0f4c859eSApple OSS Distributions	uint32_t work = 0;
*0f4c859eSApple OSS Distributions	lck_mtx_lock(&fasttrap_cleanup_mtx);
*0f4c859eSApple OSS Distributions	msleep(&fasttrap_pid_cleanup_cb, &fasttrap_cleanup_mtx, PRIBIO, "fasttrap_pid_cleanup_cb", NULL);
*0f4c859eSApple OSS Distributions	while (1) {
*0f4c859eSApple OSS Distributions		unsigned int later = 0;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		work = os_atomic_xchg(&fasttrap_cleanup_work, 0, relaxed);
*0f4c859eSApple OSS Distributions		lck_mtx_unlock(&fasttrap_cleanup_mtx);
*0f4c859eSApple OSS Distributions		if (work & FASTTRAP_CLEANUP_PROVIDER) {
*0f4c859eSApple OSS Distributions			later = fasttrap_pid_cleanup_providers();
*0f4c859eSApple OSS Distributions		}
*0f4c859eSApple OSS Distributions		if (work & FASTTRAP_CLEANUP_TRACEPOINT) {
*0f4c859eSApple OSS Distributions			fasttrap_tracepoint_cleanup();
*0f4c859eSApple OSS Distributions		}
*0f4c859eSApple OSS Distributions		lck_mtx_lock(&fasttrap_cleanup_mtx);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		fasttrap_pid_cleanup_compute_priority();
*0f4c859eSApple OSS Distributions		if (!fasttrap_cleanup_work) {
*0f4c859eSApple OSS Distributions			/*
*0f4c859eSApple OSS Distributions			 * If we were unable to remove a retired provider, try again after
*0f4c859eSApple OSS Distributions			 * a second. This situation can occur in certain circumstances where
*0f4c859eSApple OSS Distributions			 * providers cannot be unregistered even though they have no probes
*0f4c859eSApple OSS Distributions			 * enabled because of an execution of dtrace -l or something similar.
*0f4c859eSApple OSS Distributions			 * If the timeout has been disabled (set to 1 because we're trying
*0f4c859eSApple OSS Distributions			 * to detach), we set fasttrap_cleanup_work to ensure that we'll
*0f4c859eSApple OSS Distributions			 * get a chance to do that work if and when the timeout is reenabled
*0f4c859eSApple OSS Distributions			 * (if detach fails).
*0f4c859eSApple OSS Distributions			 */
*0f4c859eSApple OSS Distributions			if (later > 0) {
*0f4c859eSApple OSS Distributions				struct timespec t = {.tv_sec = 1, .tv_nsec = 0};
*0f4c859eSApple OSS Distributions				msleep(&fasttrap_pid_cleanup_cb, &fasttrap_cleanup_mtx, PRIBIO, "fasttrap_pid_cleanup_cb", &t);
*0f4c859eSApple OSS Distributions			}
*0f4c859eSApple OSS Distributions			else
*0f4c859eSApple OSS Distributions				msleep(&fasttrap_pid_cleanup_cb, &fasttrap_cleanup_mtx, PRIBIO, "fasttrap_pid_cleanup_cb", NULL);
*0f4c859eSApple OSS Distributions		}
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions/*
*0f4c859eSApple OSS Distributions * Activates the asynchronous cleanup mechanism.
*0f4c859eSApple OSS Distributions */
*0f4c859eSApple OSS Distributionsstatic void
*0f4c859eSApple OSS Distributionsfasttrap_pid_cleanup(uint32_t work)
*0f4c859eSApple OSS Distributions{
*0f4c859eSApple OSS Distributions	lck_mtx_lock(&fasttrap_cleanup_mtx);
*0f4c859eSApple OSS Distributions	os_atomic_or(&fasttrap_cleanup_work, work, relaxed);
*0f4c859eSApple OSS Distributions	fasttrap_pid_cleanup_compute_priority();
*0f4c859eSApple OSS Distributions	wakeup(&fasttrap_pid_cleanup_cb);
*0f4c859eSApple OSS Distributions	lck_mtx_unlock(&fasttrap_cleanup_mtx);
*0f4c859eSApple OSS Distributions}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributionsstatic int
*0f4c859eSApple OSS Distributionsfasttrap_setdebug(proc_t *p)
*0f4c859eSApple OSS Distributions{
*0f4c859eSApple OSS Distributions	LCK_MTX_ASSERT(&p->p_mlock, LCK_MTX_ASSERT_OWNED);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * CS_KILL and CS_HARD will cause code-signing to kill the process
*0f4c859eSApple OSS Distributions	 * when the process text is modified, so register the intent
*0f4c859eSApple OSS Distributions	 * to allow invalid access beforehand.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	if ((proc_getcsflags(p) & (CS_KILL|CS_HARD))) {
*0f4c859eSApple OSS Distributions		proc_unlock(p);
*0f4c859eSApple OSS Distributions		for (int i = 0; i < DTRACE_NCLIENTS; i++) {
*0f4c859eSApple OSS Distributions			dtrace_state_t *state = dtrace_state_get(i);
*0f4c859eSApple OSS Distributions			if (state == NULL)
*0f4c859eSApple OSS Distributions				continue;
*0f4c859eSApple OSS Distributions			if (state->dts_cred.dcr_cred == NULL)
*0f4c859eSApple OSS Distributions				continue;
*0f4c859eSApple OSS Distributions			/*
*0f4c859eSApple OSS Distributions			 * The get_task call flags whether the process should
*0f4c859eSApple OSS Distributions			 * be flagged to have the cs_allow_invalid call
*0f4c859eSApple OSS Distributions			 * succeed. We want the best credential that any dtrace
*0f4c859eSApple OSS Distributions			 * client has, so try all of them.
*0f4c859eSApple OSS Distributions			 */
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions			/*
*0f4c859eSApple OSS Distributions			 * mac_proc_check_get_task() can trigger upcalls. It's
*0f4c859eSApple OSS Distributions			 * not safe to hold proc references accross upcalls, so
*0f4c859eSApple OSS Distributions			 * just drop the reference.  Given the context, it
*0f4c859eSApple OSS Distributions			 * should not be possible for the process to actually
*0f4c859eSApple OSS Distributions			 * disappear.
*0f4c859eSApple OSS Distributions			 */
*0f4c859eSApple OSS Distributions			struct proc_ident pident = proc_ident(p);
*0f4c859eSApple OSS Distributions			sprunlock(p);
*0f4c859eSApple OSS Distributions			p = PROC_NULL;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions			(void) mac_proc_check_get_task(state->dts_cred.dcr_cred, &pident, TASK_FLAVOR_CONTROL);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions			p = sprlock(pident.p_pid);
*0f4c859eSApple OSS Distributions			if (p == PROC_NULL) {
*0f4c859eSApple OSS Distributions				return (ESRCH);
*0f4c859eSApple OSS Distributions			}
*0f4c859eSApple OSS Distributions		}
*0f4c859eSApple OSS Distributions		int rc = cs_allow_invalid(p);
*0f4c859eSApple OSS Distributions		proc_lock(p);
*0f4c859eSApple OSS Distributions		if (rc == 0) {
*0f4c859eSApple OSS Distributions			return (EACCES);
*0f4c859eSApple OSS Distributions		}
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions	return (0);
*0f4c859eSApple OSS Distributions}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions/*
*0f4c859eSApple OSS Distributions * This is called from cfork() via dtrace_fasttrap_fork(). The child
*0f4c859eSApple OSS Distributions * process's address space is a (roughly) a copy of the parent process's so
*0f4c859eSApple OSS Distributions * we have to remove all the instrumentation we had previously enabled in the
*0f4c859eSApple OSS Distributions * parent.
*0f4c859eSApple OSS Distributions */
*0f4c859eSApple OSS Distributionsstatic void
*0f4c859eSApple OSS Distributionsfasttrap_fork(proc_t *p, proc_t *cp)
*0f4c859eSApple OSS Distributions{
*0f4c859eSApple OSS Distributions	pid_t ppid = proc_getpid(p);
*0f4c859eSApple OSS Distributions	unsigned int i;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	ASSERT(current_proc() == p);
*0f4c859eSApple OSS Distributions	LCK_MTX_ASSERT(&p->p_dtrace_sprlock, LCK_MTX_ASSERT_OWNED);
*0f4c859eSApple OSS Distributions	ASSERT(p->p_dtrace_count > 0);
*0f4c859eSApple OSS Distributions	ASSERT(cp->p_dtrace_count == 0);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * This would be simpler and faster if we maintained per-process
*0f4c859eSApple OSS Distributions	 * hash tables of enabled tracepoints. It could, however, potentially
*0f4c859eSApple OSS Distributions	 * slow down execution of a tracepoint since we'd need to go
*0f4c859eSApple OSS Distributions	 * through two levels of indirection. In the future, we should
*0f4c859eSApple OSS Distributions	 * consider either maintaining per-process ancillary lists of
*0f4c859eSApple OSS Distributions	 * enabled tracepoints or hanging a pointer to a per-process hash
*0f4c859eSApple OSS Distributions	 * table of enabled tracepoints off the proc structure.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * We don't have to worry about the child process disappearing
*0f4c859eSApple OSS Distributions	 * because we're in fork().
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	if (cp != sprlock(proc_getpid(cp))) {
*0f4c859eSApple OSS Distributions		printf("fasttrap_fork: sprlock(%d) returned a different proc\n", proc_getpid(cp));
*0f4c859eSApple OSS Distributions		return;
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	proc_lock(cp);
*0f4c859eSApple OSS Distributions	if (fasttrap_setdebug(cp) == ESRCH) {
*0f4c859eSApple OSS Distributions		printf("fasttrap_fork: failed to re-acquire proc\n");
*0f4c859eSApple OSS Distributions		return;
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions	proc_unlock(cp);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * Iterate over every tracepoint looking for ones that belong to the
*0f4c859eSApple OSS Distributions	 * parent process, and remove each from the child process.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	for (i = 0; i < fasttrap_tpoints.fth_nent; i++) {
*0f4c859eSApple OSS Distributions		fasttrap_tracepoint_t *tp;
*0f4c859eSApple OSS Distributions		fasttrap_bucket_t *bucket = &fasttrap_tpoints.fth_table[i];
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		lck_mtx_lock(&bucket->ftb_mtx);
*0f4c859eSApple OSS Distributions		for (tp = bucket->ftb_data; tp != NULL; tp = tp->ftt_next) {
*0f4c859eSApple OSS Distributions			if (tp->ftt_pid == ppid &&
*0f4c859eSApple OSS Distributions			    tp->ftt_proc->ftpc_acount != 0) {
*0f4c859eSApple OSS Distributions				fasttrap_tracepoint_remove(cp, tp);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions				/*
*0f4c859eSApple OSS Distributions				 * The count of active providers can only be
*0f4c859eSApple OSS Distributions				 * decremented (i.e. to zero) during exec,
*0f4c859eSApple OSS Distributions				 * exit, and removal of a meta provider so it
*0f4c859eSApple OSS Distributions				 * should be impossible to drop the count
*0f4c859eSApple OSS Distributions				 * mid-fork.
*0f4c859eSApple OSS Distributions				 */
*0f4c859eSApple OSS Distributions				 ASSERT(tp->ftt_proc->ftpc_acount != 0);
*0f4c859eSApple OSS Distributions			}
*0f4c859eSApple OSS Distributions		}
*0f4c859eSApple OSS Distributions		lck_mtx_unlock(&bucket->ftb_mtx);
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * Free any ptss pages/entries in the child.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	dtrace_ptss_fork(p, cp);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	sprunlock(cp);
*0f4c859eSApple OSS Distributions}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions/*
*0f4c859eSApple OSS Distributions * This is called from proc_exit() or from exec_common() if p_dtrace_probes
*0f4c859eSApple OSS Distributions * is set on the proc structure to indicate that there is a pid provider
*0f4c859eSApple OSS Distributions * associated with this process.
*0f4c859eSApple OSS Distributions */
*0f4c859eSApple OSS Distributionsstatic void
*0f4c859eSApple OSS Distributionsfasttrap_exec_exit(proc_t *p)
*0f4c859eSApple OSS Distributions{
*0f4c859eSApple OSS Distributions	ASSERT(p == current_proc());
*0f4c859eSApple OSS Distributions	LCK_MTX_ASSERT(&p->p_mlock, LCK_MTX_ASSERT_OWNED);
*0f4c859eSApple OSS Distributions	LCK_MTX_ASSERT(&p->p_dtrace_sprlock, LCK_MTX_ASSERT_NOTOWNED);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/* APPLE NOTE: Okay, the locking here is really odd and needs some
*0f4c859eSApple OSS Distributions	 * explaining. This method is always called with the proc_lock held.
*0f4c859eSApple OSS Distributions	 * We must drop the proc_lock before calling fasttrap_provider_retire
*0f4c859eSApple OSS Distributions	 * to avoid a deadlock when it takes the bucket lock.
*0f4c859eSApple OSS Distributions	 *
*0f4c859eSApple OSS Distributions	 * Next, the dtrace_ptss_exec_exit function requires the sprlock
*0f4c859eSApple OSS Distributions	 * be held, but not the proc_lock.
*0f4c859eSApple OSS Distributions	 *
*0f4c859eSApple OSS Distributions	 * Finally, we must re-acquire the proc_lock
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	proc_unlock(p);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * We clean up the pid provider for this process here; user-land
*0f4c859eSApple OSS Distributions	 * static probes are handled by the meta-provider remove entry point.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	fasttrap_provider_retire(p, FASTTRAP_PID_NAME, 0);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * APPLE NOTE: We also need to remove any aliased providers.
*0f4c859eSApple OSS Distributions	 * XXX optimization: track which provider types are instantiated
*0f4c859eSApple OSS Distributions	 * and only retire as needed.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	fasttrap_provider_retire(p, FASTTRAP_OBJC_NAME, 0);
*0f4c859eSApple OSS Distributions	fasttrap_provider_retire(p, FASTTRAP_ONESHOT_NAME, 0);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * This should be called after it is no longer possible for a user
*0f4c859eSApple OSS Distributions	 * thread to execute (potentially dtrace instrumented) instructions.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	lck_mtx_lock(&p->p_dtrace_sprlock);
*0f4c859eSApple OSS Distributions	dtrace_ptss_exec_exit(p);
*0f4c859eSApple OSS Distributions	lck_mtx_unlock(&p->p_dtrace_sprlock);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	proc_lock(p);
*0f4c859eSApple OSS Distributions}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions/*ARGSUSED*/
*0f4c859eSApple OSS Distributionsstatic void
*0f4c859eSApple OSS Distributionsfasttrap_pid_provide(void *arg, const dtrace_probedesc_t *desc)
*0f4c859eSApple OSS Distributions{
*0f4c859eSApple OSS Distributions#pragma unused(arg, desc)
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * There are no "default" pid probes.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributionsstatic int
*0f4c859eSApple OSS Distributionsfasttrap_tracepoint_enable(proc_t *p, fasttrap_probe_t *probe, uint_t index)
*0f4c859eSApple OSS Distributions{
*0f4c859eSApple OSS Distributions	fasttrap_tracepoint_t *tp, *new_tp = NULL;
*0f4c859eSApple OSS Distributions	fasttrap_bucket_t *bucket;
*0f4c859eSApple OSS Distributions	fasttrap_id_t *id;
*0f4c859eSApple OSS Distributions	pid_t pid;
*0f4c859eSApple OSS Distributions	user_addr_t pc;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	ASSERT(index < probe->ftp_ntps);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	pid = probe->ftp_pid;
*0f4c859eSApple OSS Distributions	pc = probe->ftp_tps[index].fit_tp->ftt_pc;
*0f4c859eSApple OSS Distributions	id = &probe->ftp_tps[index].fit_id;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	ASSERT(probe->ftp_tps[index].fit_tp->ftt_pid == pid);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * Before we make any modifications, make sure we've imposed a barrier
*0f4c859eSApple OSS Distributions	 * on the generation in which this probe was last modified.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	fasttrap_mod_barrier(probe->ftp_gen);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	bucket = &fasttrap_tpoints.fth_table[FASTTRAP_TPOINTS_INDEX(pid, pc)];
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * If the tracepoint has already been enabled, just add our id to the
*0f4c859eSApple OSS Distributions	 * list of interested probes. This may be our second time through
*0f4c859eSApple OSS Distributions	 * this path in which case we'll have constructed the tracepoint we'd
*0f4c859eSApple OSS Distributions	 * like to install. If we can't find a match, and have an allocated
*0f4c859eSApple OSS Distributions	 * tracepoint ready to go, enable that one now.
*0f4c859eSApple OSS Distributions	 *
*0f4c859eSApple OSS Distributions	 * A tracepoint whose process is defunct is also considered defunct.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributionsagain:
*0f4c859eSApple OSS Distributions	lck_mtx_lock(&bucket->ftb_mtx);
*0f4c859eSApple OSS Distributions	for (tp = bucket->ftb_data; tp != NULL; tp = tp->ftt_next) {
*0f4c859eSApple OSS Distributions		int rc = 0;
*0f4c859eSApple OSS Distributions		/*
*0f4c859eSApple OSS Distributions		 * Note that it's safe to access the active count on the
*0f4c859eSApple OSS Distributions		 * associated proc structure because we know that at least one
*0f4c859eSApple OSS Distributions		 * provider (this one) will still be around throughout this
*0f4c859eSApple OSS Distributions		 * operation.
*0f4c859eSApple OSS Distributions		 */
*0f4c859eSApple OSS Distributions		if (tp->ftt_pid != pid || tp->ftt_pc != pc ||
*0f4c859eSApple OSS Distributions		    tp->ftt_proc->ftpc_acount == 0)
*0f4c859eSApple OSS Distributions			continue;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		/*
*0f4c859eSApple OSS Distributions		 * Now that we've found a matching tracepoint, it would be
*0f4c859eSApple OSS Distributions		 * a decent idea to confirm that the tracepoint is still
*0f4c859eSApple OSS Distributions		 * enabled and the trap instruction hasn't been overwritten.
*0f4c859eSApple OSS Distributions		 * Since this is a little hairy, we'll punt for now.
*0f4c859eSApple OSS Distributions		 */
*0f4c859eSApple OSS Distributions		if (!tp->ftt_installed) {
*0f4c859eSApple OSS Distributions			if (fasttrap_tracepoint_install(p, tp) != 0)
*0f4c859eSApple OSS Distributions				rc = FASTTRAP_ENABLE_PARTIAL;
*0f4c859eSApple OSS Distributions		}
*0f4c859eSApple OSS Distributions		/*
*0f4c859eSApple OSS Distributions		 * This can't be the first interested probe. We don't have
*0f4c859eSApple OSS Distributions		 * to worry about another thread being in the midst of
*0f4c859eSApple OSS Distributions		 * deleting this tracepoint (which would be the only valid
*0f4c859eSApple OSS Distributions		 * reason for a tracepoint to have no interested probes)
*0f4c859eSApple OSS Distributions		 * since we're holding P_PR_LOCK for this process.
*0f4c859eSApple OSS Distributions		 */
*0f4c859eSApple OSS Distributions		ASSERT(tp->ftt_ids != NULL || tp->ftt_retids != NULL);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		switch (id->fti_ptype) {
*0f4c859eSApple OSS Distributions		case DTFTP_ENTRY:
*0f4c859eSApple OSS Distributions		case DTFTP_OFFSETS:
*0f4c859eSApple OSS Distributions		case DTFTP_IS_ENABLED:
*0f4c859eSApple OSS Distributions			id->fti_next = tp->ftt_ids;
*0f4c859eSApple OSS Distributions			dtrace_membar_producer();
*0f4c859eSApple OSS Distributions			tp->ftt_ids = id;
*0f4c859eSApple OSS Distributions			dtrace_membar_producer();
*0f4c859eSApple OSS Distributions			break;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		case DTFTP_RETURN:
*0f4c859eSApple OSS Distributions		case DTFTP_POST_OFFSETS:
*0f4c859eSApple OSS Distributions			id->fti_next = tp->ftt_retids;
*0f4c859eSApple OSS Distributions			dtrace_membar_producer();
*0f4c859eSApple OSS Distributions			tp->ftt_retids = id;
*0f4c859eSApple OSS Distributions			dtrace_membar_producer();
*0f4c859eSApple OSS Distributions			break;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		default:
*0f4c859eSApple OSS Distributions			ASSERT(0);
*0f4c859eSApple OSS Distributions		}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		tp->ftt_retired = 0;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		lck_mtx_unlock(&bucket->ftb_mtx);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		if (new_tp != NULL) {
*0f4c859eSApple OSS Distributions			new_tp->ftt_ids = NULL;
*0f4c859eSApple OSS Distributions			new_tp->ftt_retids = NULL;
*0f4c859eSApple OSS Distributions		}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		return rc;
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * If we have a good tracepoint ready to go, install it now while
*0f4c859eSApple OSS Distributions	 * we have the lock held and no one can screw with us.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	if (new_tp != NULL) {
*0f4c859eSApple OSS Distributions		int rc = 0;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		new_tp->ftt_next = bucket->ftb_data;
*0f4c859eSApple OSS Distributions		dtrace_membar_producer();
*0f4c859eSApple OSS Distributions		bucket->ftb_data = new_tp;
*0f4c859eSApple OSS Distributions		dtrace_membar_producer();
*0f4c859eSApple OSS Distributions		lck_mtx_unlock(&bucket->ftb_mtx);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		/*
*0f4c859eSApple OSS Distributions		 * Activate the tracepoint in the ISA-specific manner.
*0f4c859eSApple OSS Distributions		 * If this fails, we need to report the failure, but
*0f4c859eSApple OSS Distributions		 * indicate that this tracepoint must still be disabled
*0f4c859eSApple OSS Distributions		 * by calling fasttrap_tracepoint_disable().
*0f4c859eSApple OSS Distributions		 */
*0f4c859eSApple OSS Distributions		if (fasttrap_tracepoint_install(p, new_tp) != 0)
*0f4c859eSApple OSS Distributions			rc = FASTTRAP_ENABLE_PARTIAL;
*0f4c859eSApple OSS Distributions		/*
*0f4c859eSApple OSS Distributions		 * Increment the count of the number of tracepoints active in
*0f4c859eSApple OSS Distributions		 * the victim process.
*0f4c859eSApple OSS Distributions		 */
*0f4c859eSApple OSS Distributions		//ASSERT(p->p_proc_flag & P_PR_LOCK);
*0f4c859eSApple OSS Distributions		p->p_dtrace_count++;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		return (rc);
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	lck_mtx_unlock(&bucket->ftb_mtx);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * Initialize the tracepoint that's been preallocated with the probe.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	new_tp = probe->ftp_tps[index].fit_tp;
*0f4c859eSApple OSS Distributions	new_tp->ftt_retired = 0;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	ASSERT(new_tp->ftt_pid == pid);
*0f4c859eSApple OSS Distributions	ASSERT(new_tp->ftt_pc == pc);
*0f4c859eSApple OSS Distributions	ASSERT(new_tp->ftt_proc == probe->ftp_prov->ftp_proc);
*0f4c859eSApple OSS Distributions	ASSERT(new_tp->ftt_ids == NULL);
*0f4c859eSApple OSS Distributions	ASSERT(new_tp->ftt_retids == NULL);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	switch (id->fti_ptype) {
*0f4c859eSApple OSS Distributions	case DTFTP_ENTRY:
*0f4c859eSApple OSS Distributions	case DTFTP_OFFSETS:
*0f4c859eSApple OSS Distributions	case DTFTP_IS_ENABLED:
*0f4c859eSApple OSS Distributions		id->fti_next = NULL;
*0f4c859eSApple OSS Distributions		new_tp->ftt_ids = id;
*0f4c859eSApple OSS Distributions		break;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	case DTFTP_RETURN:
*0f4c859eSApple OSS Distributions	case DTFTP_POST_OFFSETS:
*0f4c859eSApple OSS Distributions		id->fti_next = NULL;
*0f4c859eSApple OSS Distributions		new_tp->ftt_retids = id;
*0f4c859eSApple OSS Distributions		break;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	default:
*0f4c859eSApple OSS Distributions		ASSERT(0);
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * If the ISA-dependent initialization goes to plan, go back to the
*0f4c859eSApple OSS Distributions	 * beginning and try to install this freshly made tracepoint.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	if (fasttrap_tracepoint_init(p, new_tp, pc, id->fti_ptype) == 0)
*0f4c859eSApple OSS Distributions		goto again;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	new_tp->ftt_ids = NULL;
*0f4c859eSApple OSS Distributions	new_tp->ftt_retids = NULL;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	return (FASTTRAP_ENABLE_FAIL);
*0f4c859eSApple OSS Distributions}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributionsstatic void
*0f4c859eSApple OSS Distributionsfasttrap_tracepoint_disable(proc_t *p, fasttrap_probe_t *probe, uint_t index)
*0f4c859eSApple OSS Distributions{
*0f4c859eSApple OSS Distributions	fasttrap_bucket_t *bucket;
*0f4c859eSApple OSS Distributions	fasttrap_provider_t *provider = probe->ftp_prov;
*0f4c859eSApple OSS Distributions	fasttrap_tracepoint_t **pp, *tp;
*0f4c859eSApple OSS Distributions	fasttrap_id_t *id, **idp;
*0f4c859eSApple OSS Distributions	pid_t pid;
*0f4c859eSApple OSS Distributions	user_addr_t pc;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	ASSERT(index < probe->ftp_ntps);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	pid = probe->ftp_pid;
*0f4c859eSApple OSS Distributions	pc = probe->ftp_tps[index].fit_tp->ftt_pc;
*0f4c859eSApple OSS Distributions	id = &probe->ftp_tps[index].fit_id;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	ASSERT(probe->ftp_tps[index].fit_tp->ftt_pid == pid);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * Find the tracepoint and make sure that our id is one of the
*0f4c859eSApple OSS Distributions	 * ones registered with it.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	bucket = &fasttrap_tpoints.fth_table[FASTTRAP_TPOINTS_INDEX(pid, pc)];
*0f4c859eSApple OSS Distributions	lck_mtx_lock(&bucket->ftb_mtx);
*0f4c859eSApple OSS Distributions	for (tp = bucket->ftb_data; tp != NULL; tp = tp->ftt_next) {
*0f4c859eSApple OSS Distributions		if (tp->ftt_pid == pid && tp->ftt_pc == pc &&
*0f4c859eSApple OSS Distributions		    tp->ftt_proc == provider->ftp_proc)
*0f4c859eSApple OSS Distributions			break;
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * If we somehow lost this tracepoint, we're in a world of hurt.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	ASSERT(tp != NULL);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	switch (id->fti_ptype) {
*0f4c859eSApple OSS Distributions		case DTFTP_ENTRY:
*0f4c859eSApple OSS Distributions		case DTFTP_OFFSETS:
*0f4c859eSApple OSS Distributions		case DTFTP_IS_ENABLED:
*0f4c859eSApple OSS Distributions			ASSERT(tp->ftt_ids != NULL);
*0f4c859eSApple OSS Distributions			idp = &tp->ftt_ids;
*0f4c859eSApple OSS Distributions			break;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		case DTFTP_RETURN:
*0f4c859eSApple OSS Distributions		case DTFTP_POST_OFFSETS:
*0f4c859eSApple OSS Distributions			ASSERT(tp->ftt_retids != NULL);
*0f4c859eSApple OSS Distributions			idp = &tp->ftt_retids;
*0f4c859eSApple OSS Distributions			break;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		default:
*0f4c859eSApple OSS Distributions			/* Fix compiler warning... */
*0f4c859eSApple OSS Distributions			idp = NULL;
*0f4c859eSApple OSS Distributions			ASSERT(0);
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	while ((*idp)->fti_probe != probe) {
*0f4c859eSApple OSS Distributions		idp = &(*idp)->fti_next;
*0f4c859eSApple OSS Distributions		ASSERT(*idp != NULL);
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	id = *idp;
*0f4c859eSApple OSS Distributions	*idp = id->fti_next;
*0f4c859eSApple OSS Distributions	dtrace_membar_producer();
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	ASSERT(id->fti_probe == probe);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * If there are other registered enablings of this tracepoint, we're
*0f4c859eSApple OSS Distributions	 * all done, but if this was the last probe assocated with this
*0f4c859eSApple OSS Distributions	 * this tracepoint, we need to remove and free it.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	if (tp->ftt_ids != NULL || tp->ftt_retids != NULL) {
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		/*
*0f4c859eSApple OSS Distributions		 * If the current probe's tracepoint is in use, swap it
*0f4c859eSApple OSS Distributions		 * for an unused tracepoint.
*0f4c859eSApple OSS Distributions		 */
*0f4c859eSApple OSS Distributions		if (tp == probe->ftp_tps[index].fit_tp) {
*0f4c859eSApple OSS Distributions			fasttrap_probe_t *tmp_probe;
*0f4c859eSApple OSS Distributions			fasttrap_tracepoint_t **tmp_tp;
*0f4c859eSApple OSS Distributions			uint_t tmp_index;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions			if (tp->ftt_ids != NULL) {
*0f4c859eSApple OSS Distributions				tmp_probe = tp->ftt_ids->fti_probe;
*0f4c859eSApple OSS Distributions				/* LINTED - alignment */
*0f4c859eSApple OSS Distributions				tmp_index = FASTTRAP_ID_INDEX(tp->ftt_ids);
*0f4c859eSApple OSS Distributions				tmp_tp = &tmp_probe->ftp_tps[tmp_index].fit_tp;
*0f4c859eSApple OSS Distributions			} else {
*0f4c859eSApple OSS Distributions				tmp_probe = tp->ftt_retids->fti_probe;
*0f4c859eSApple OSS Distributions				/* LINTED - alignment */
*0f4c859eSApple OSS Distributions				tmp_index = FASTTRAP_ID_INDEX(tp->ftt_retids);
*0f4c859eSApple OSS Distributions				tmp_tp = &tmp_probe->ftp_tps[tmp_index].fit_tp;
*0f4c859eSApple OSS Distributions			}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions			ASSERT(*tmp_tp != NULL);
*0f4c859eSApple OSS Distributions			ASSERT(*tmp_tp != probe->ftp_tps[index].fit_tp);
*0f4c859eSApple OSS Distributions			ASSERT((*tmp_tp)->ftt_ids == NULL);
*0f4c859eSApple OSS Distributions			ASSERT((*tmp_tp)->ftt_retids == NULL);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions			probe->ftp_tps[index].fit_tp = *tmp_tp;
*0f4c859eSApple OSS Distributions			*tmp_tp = tp;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		lck_mtx_unlock(&bucket->ftb_mtx);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		/*
*0f4c859eSApple OSS Distributions		 * Tag the modified probe with the generation in which it was
*0f4c859eSApple OSS Distributions		 * changed.
*0f4c859eSApple OSS Distributions		 */
*0f4c859eSApple OSS Distributions		probe->ftp_gen = fasttrap_mod_gen;
*0f4c859eSApple OSS Distributions		return;
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	lck_mtx_unlock(&bucket->ftb_mtx);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * We can't safely remove the tracepoint from the set of active
*0f4c859eSApple OSS Distributions	 * tracepoints until we've actually removed the fasttrap instruction
*0f4c859eSApple OSS Distributions	 * from the process's text. We can, however, operate on this
*0f4c859eSApple OSS Distributions	 * tracepoint secure in the knowledge that no other thread is going to
*0f4c859eSApple OSS Distributions	 * be looking at it since we hold P_PR_LOCK on the process if it's
*0f4c859eSApple OSS Distributions	 * live or we hold the provider lock on the process if it's dead and
*0f4c859eSApple OSS Distributions	 * gone.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * We only need to remove the actual instruction if we're looking
*0f4c859eSApple OSS Distributions	 * at an existing process
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	if (p != NULL) {
*0f4c859eSApple OSS Distributions		/*
*0f4c859eSApple OSS Distributions		 * If we fail to restore the instruction we need to kill
*0f4c859eSApple OSS Distributions		 * this process since it's in a completely unrecoverable
*0f4c859eSApple OSS Distributions		 * state.
*0f4c859eSApple OSS Distributions		 */
*0f4c859eSApple OSS Distributions		if (fasttrap_tracepoint_remove(p, tp) != 0)
*0f4c859eSApple OSS Distributions			fasttrap_sigtrap(p, NULL, pc);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		/*
*0f4c859eSApple OSS Distributions		 * Decrement the count of the number of tracepoints active
*0f4c859eSApple OSS Distributions		 * in the victim process.
*0f4c859eSApple OSS Distributions		 */
*0f4c859eSApple OSS Distributions		//ASSERT(p->p_proc_flag & P_PR_LOCK);
*0f4c859eSApple OSS Distributions		p->p_dtrace_count--;
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * Remove the probe from the hash table of active tracepoints.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	lck_mtx_lock(&bucket->ftb_mtx);
*0f4c859eSApple OSS Distributions	pp = (fasttrap_tracepoint_t **)&bucket->ftb_data;
*0f4c859eSApple OSS Distributions	ASSERT(*pp != NULL);
*0f4c859eSApple OSS Distributions	while (*pp != tp) {
*0f4c859eSApple OSS Distributions		pp = &(*pp)->ftt_next;
*0f4c859eSApple OSS Distributions		ASSERT(*pp != NULL);
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	*pp = tp->ftt_next;
*0f4c859eSApple OSS Distributions	dtrace_membar_producer();
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	lck_mtx_unlock(&bucket->ftb_mtx);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * Tag the modified probe with the generation in which it was changed.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	probe->ftp_gen = fasttrap_mod_gen;
*0f4c859eSApple OSS Distributions}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributionsstatic void
*0f4c859eSApple OSS Distributionsfasttrap_enable_callbacks(void)
*0f4c859eSApple OSS Distributions{
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * We don't have to play the rw lock game here because we're
*0f4c859eSApple OSS Distributions	 * providing something rather than taking something away --
*0f4c859eSApple OSS Distributions	 * we can be sure that no threads have tried to follow this
*0f4c859eSApple OSS Distributions	 * function pointer yet.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	lck_mtx_lock(&fasttrap_count_mtx);
*0f4c859eSApple OSS Distributions	if (fasttrap_pid_count == 0) {
*0f4c859eSApple OSS Distributions		ASSERT(dtrace_pid_probe_ptr == NULL);
*0f4c859eSApple OSS Distributions		ASSERT(dtrace_return_probe_ptr == NULL);
*0f4c859eSApple OSS Distributions		dtrace_pid_probe_ptr = &fasttrap_pid_probe;
*0f4c859eSApple OSS Distributions		dtrace_return_probe_ptr = &fasttrap_return_probe;
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions	ASSERT(dtrace_pid_probe_ptr == &fasttrap_pid_probe);
*0f4c859eSApple OSS Distributions	ASSERT(dtrace_return_probe_ptr == &fasttrap_return_probe);
*0f4c859eSApple OSS Distributions	fasttrap_pid_count++;
*0f4c859eSApple OSS Distributions	lck_mtx_unlock(&fasttrap_count_mtx);
*0f4c859eSApple OSS Distributions}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributionsstatic void
*0f4c859eSApple OSS Distributionsfasttrap_disable_callbacks(void)
*0f4c859eSApple OSS Distributions{
*0f4c859eSApple OSS Distributions	//ASSERT(MUTEX_HELD(&cpu_lock));
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	lck_mtx_lock(&fasttrap_count_mtx);
*0f4c859eSApple OSS Distributions	ASSERT(fasttrap_pid_count > 0);
*0f4c859eSApple OSS Distributions	fasttrap_pid_count--;
*0f4c859eSApple OSS Distributions	if (fasttrap_pid_count == 0) {
*0f4c859eSApple OSS Distributions		dtrace_cpu_t *cur, *cpu = CPU;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		/*
*0f4c859eSApple OSS Distributions		 * APPLE NOTE: This loop seems broken, it touches every CPU
*0f4c859eSApple OSS Distributions		 * but the one we're actually running on. Need to ask Sun folks
*0f4c859eSApple OSS Distributions		 * if that is safe. Scenario is this: We're running on CPU A,
*0f4c859eSApple OSS Distributions		 * and lock all but A. Then we get preempted, and start running
*0f4c859eSApple OSS Distributions		 * on CPU B. A probe fires on A, and is allowed to enter. BOOM!
*0f4c859eSApple OSS Distributions		 */
*0f4c859eSApple OSS Distributions		for (cur = cpu->cpu_next; cur != cpu; cur = cur->cpu_next) {
*0f4c859eSApple OSS Distributions			lck_rw_lock_exclusive(&cur->cpu_ft_lock);
*0f4c859eSApple OSS Distributions			// rw_enter(&cur->cpu_ft_lock, RW_WRITER);
*0f4c859eSApple OSS Distributions		}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		dtrace_pid_probe_ptr = NULL;
*0f4c859eSApple OSS Distributions		dtrace_return_probe_ptr = NULL;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		for (cur = cpu->cpu_next; cur != cpu; cur = cur->cpu_next) {
*0f4c859eSApple OSS Distributions			lck_rw_unlock_exclusive(&cur->cpu_ft_lock);
*0f4c859eSApple OSS Distributions			// rw_exit(&cur->cpu_ft_lock);
*0f4c859eSApple OSS Distributions		}
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions	lck_mtx_unlock(&fasttrap_count_mtx);
*0f4c859eSApple OSS Distributions}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions/*ARGSUSED*/
*0f4c859eSApple OSS Distributionsstatic int
*0f4c859eSApple OSS Distributionsfasttrap_pid_enable(void *arg, dtrace_id_t id, void *parg)
*0f4c859eSApple OSS Distributions{
*0f4c859eSApple OSS Distributions#pragma unused(arg, id)
*0f4c859eSApple OSS Distributions	fasttrap_probe_t *probe = parg;
*0f4c859eSApple OSS Distributions	proc_t *p;
*0f4c859eSApple OSS Distributions	int i, rc;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	ASSERT(probe != NULL);
*0f4c859eSApple OSS Distributions	ASSERT(!probe->ftp_enabled);
*0f4c859eSApple OSS Distributions	ASSERT(id == probe->ftp_id);
*0f4c859eSApple OSS Distributions	// ASSERT(MUTEX_HELD(&cpu_lock));
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * Increment the count of enabled probes on this probe's provider;
*0f4c859eSApple OSS Distributions	 * the provider can't go away while the probe still exists. We
*0f4c859eSApple OSS Distributions	 * must increment this even if we aren't able to properly enable
*0f4c859eSApple OSS Distributions	 * this probe.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	lck_mtx_lock(&probe->ftp_prov->ftp_mtx);
*0f4c859eSApple OSS Distributions	probe->ftp_prov->ftp_rcount++;
*0f4c859eSApple OSS Distributions	lck_mtx_unlock(&probe->ftp_prov->ftp_mtx);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * If this probe's provider is retired (meaning it was valid in a
*0f4c859eSApple OSS Distributions	 * previously exec'ed incarnation of this address space), bail out. The
*0f4c859eSApple OSS Distributions	 * provider can't go away while we're in this code path.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	if (probe->ftp_prov->ftp_retired)
*0f4c859eSApple OSS Distributions	    return(0);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * If we can't find the process, it may be that we're in the context of
*0f4c859eSApple OSS Distributions	 * a fork in which the traced process is being born and we're copying
*0f4c859eSApple OSS Distributions	 * USDT probes. Otherwise, the process is gone so bail.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	if ((p = sprlock(probe->ftp_pid)) == PROC_NULL) {
*0f4c859eSApple OSS Distributions		/*
*0f4c859eSApple OSS Distributions		 * APPLE NOTE: We should never end up here. The Solaris sprlock()
*0f4c859eSApple OSS Distributions		 * does not return process's with SIDL set, but we always return
*0f4c859eSApple OSS Distributions		 * the child process.
*0f4c859eSApple OSS Distributions		 */
*0f4c859eSApple OSS Distributions	    return(0);
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	proc_lock(p);
*0f4c859eSApple OSS Distributions	int p_pid = proc_pid(p);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	rc = fasttrap_setdebug(p);
*0f4c859eSApple OSS Distributions	switch (rc) {
*0f4c859eSApple OSS Distributions	case EACCES:
*0f4c859eSApple OSS Distributions		proc_unlock(p);
*0f4c859eSApple OSS Distributions		sprunlock(p);
*0f4c859eSApple OSS Distributions		cmn_err(CE_WARN, "Failed to install fasttrap probe for pid %d: "
*0f4c859eSApple OSS Distributions		    "Process does not allow invalid code pages\n", p_pid);
*0f4c859eSApple OSS Distributions		return (0);
*0f4c859eSApple OSS Distributions	case ESRCH:
*0f4c859eSApple OSS Distributions		cmn_err(CE_WARN, "Failed to install fasttrap probe for pid %d: "
*0f4c859eSApple OSS Distributions		    "Failed to re-acquire process\n", p_pid);
*0f4c859eSApple OSS Distributions		return (0);
*0f4c859eSApple OSS Distributions	default:
*0f4c859eSApple OSS Distributions		assert(rc == 0);
*0f4c859eSApple OSS Distributions		break;
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * APPLE NOTE: We do not have an equivalent thread structure to Solaris.
*0f4c859eSApple OSS Distributions	 * Solaris uses its ulwp_t struct for scratch space to support the pid provider.
*0f4c859eSApple OSS Distributions	 * To mimic this, we allocate on demand scratch space. If this is the first
*0f4c859eSApple OSS Distributions	 * time a probe has been enabled in this process, we need to allocate scratch
*0f4c859eSApple OSS Distributions	 * space for each already existing thread. Now is a good time to do this, as
*0f4c859eSApple OSS Distributions	 * the target process is suspended and the proc_lock is held.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	if (p->p_dtrace_ptss_pages == NULL) {
*0f4c859eSApple OSS Distributions		dtrace_ptss_enable(p);
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	proc_unlock(p);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * We have to enable the trap entry point before any user threads have
*0f4c859eSApple OSS Distributions	 * the chance to execute the trap instruction we're about to place
*0f4c859eSApple OSS Distributions	 * in their process's text.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	fasttrap_enable_callbacks();
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * Enable all the tracepoints and add this probe's id to each
*0f4c859eSApple OSS Distributions	 * tracepoint's list of active probes.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	for (i = 0; i < (int)probe->ftp_ntps; i++) {
*0f4c859eSApple OSS Distributions		if ((rc = fasttrap_tracepoint_enable(p, probe, i)) != 0) {
*0f4c859eSApple OSS Distributions			/*
*0f4c859eSApple OSS Distributions			 * If enabling the tracepoint failed completely,
*0f4c859eSApple OSS Distributions			 * we don't have to disable it; if the failure
*0f4c859eSApple OSS Distributions			 * was only partial we must disable it.
*0f4c859eSApple OSS Distributions			 */
*0f4c859eSApple OSS Distributions			if (rc == FASTTRAP_ENABLE_FAIL)
*0f4c859eSApple OSS Distributions				i--;
*0f4c859eSApple OSS Distributions			else
*0f4c859eSApple OSS Distributions				ASSERT(rc == FASTTRAP_ENABLE_PARTIAL);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions			/*
*0f4c859eSApple OSS Distributions			 * Back up and pull out all the tracepoints we've
*0f4c859eSApple OSS Distributions			 * created so far for this probe.
*0f4c859eSApple OSS Distributions			 */
*0f4c859eSApple OSS Distributions			while (i >= 0) {
*0f4c859eSApple OSS Distributions				fasttrap_tracepoint_disable(p, probe, i);
*0f4c859eSApple OSS Distributions				i--;
*0f4c859eSApple OSS Distributions			}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions			sprunlock(p);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions			/*
*0f4c859eSApple OSS Distributions			 * Since we're not actually enabling this probe,
*0f4c859eSApple OSS Distributions			 * drop our reference on the trap table entry.
*0f4c859eSApple OSS Distributions			 */
*0f4c859eSApple OSS Distributions			fasttrap_disable_callbacks();
*0f4c859eSApple OSS Distributions			return(0);
*0f4c859eSApple OSS Distributions		}
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	sprunlock(p);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	probe->ftp_enabled = 1;
*0f4c859eSApple OSS Distributions	return (0);
*0f4c859eSApple OSS Distributions}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions/*ARGSUSED*/
*0f4c859eSApple OSS Distributionsstatic void
*0f4c859eSApple OSS Distributionsfasttrap_pid_disable(void *arg, dtrace_id_t id, void *parg)
*0f4c859eSApple OSS Distributions{
*0f4c859eSApple OSS Distributions#pragma unused(arg, id)
*0f4c859eSApple OSS Distributions	fasttrap_probe_t *probe = parg;
*0f4c859eSApple OSS Distributions	fasttrap_provider_t *provider = probe->ftp_prov;
*0f4c859eSApple OSS Distributions	proc_t *p;
*0f4c859eSApple OSS Distributions	int i, whack = 0;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	ASSERT(id == probe->ftp_id);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * We won't be able to acquire a /proc-esque lock on the process
*0f4c859eSApple OSS Distributions	 * iff the process is dead and gone. In this case, we rely on the
*0f4c859eSApple OSS Distributions	 * provider lock as a point of mutual exclusion to prevent other
*0f4c859eSApple OSS Distributions	 * DTrace consumers from disabling this probe.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	p = sprlock(probe->ftp_pid);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	lck_mtx_lock(&provider->ftp_mtx);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * Disable all the associated tracepoints (for fully enabled probes).
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	if (probe->ftp_enabled) {
*0f4c859eSApple OSS Distributions		for (i = 0; i < (int)probe->ftp_ntps; i++) {
*0f4c859eSApple OSS Distributions			fasttrap_tracepoint_disable(p, probe, i);
*0f4c859eSApple OSS Distributions		}
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	ASSERT(provider->ftp_rcount > 0);
*0f4c859eSApple OSS Distributions	provider->ftp_rcount--;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	if (p != NULL) {
*0f4c859eSApple OSS Distributions		/*
*0f4c859eSApple OSS Distributions		 * Even though we may not be able to remove it entirely, we
*0f4c859eSApple OSS Distributions		 * mark this retired provider to get a chance to remove some
*0f4c859eSApple OSS Distributions		 * of the associated probes.
*0f4c859eSApple OSS Distributions		 */
*0f4c859eSApple OSS Distributions		if (provider->ftp_retired && !provider->ftp_marked)
*0f4c859eSApple OSS Distributions			whack = provider->ftp_marked = 1;
*0f4c859eSApple OSS Distributions		lck_mtx_unlock(&provider->ftp_mtx);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		sprunlock(p);
*0f4c859eSApple OSS Distributions	} else {
*0f4c859eSApple OSS Distributions		/*
*0f4c859eSApple OSS Distributions		 * If the process is dead, we're just waiting for the
*0f4c859eSApple OSS Distributions		 * last probe to be disabled to be able to free it.
*0f4c859eSApple OSS Distributions		 */
*0f4c859eSApple OSS Distributions		if (provider->ftp_rcount == 0 && !provider->ftp_marked)
*0f4c859eSApple OSS Distributions			whack = provider->ftp_marked = 1;
*0f4c859eSApple OSS Distributions		lck_mtx_unlock(&provider->ftp_mtx);
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	if (whack) {
*0f4c859eSApple OSS Distributions		fasttrap_pid_cleanup(FASTTRAP_CLEANUP_PROVIDER);
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	if (!probe->ftp_enabled)
*0f4c859eSApple OSS Distributions		return;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	probe->ftp_enabled = 0;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	// ASSERT(MUTEX_HELD(&cpu_lock));
*0f4c859eSApple OSS Distributions	fasttrap_disable_callbacks();
*0f4c859eSApple OSS Distributions}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions/*ARGSUSED*/
*0f4c859eSApple OSS Distributionsstatic void
*0f4c859eSApple OSS Distributionsfasttrap_pid_getargdesc(void *arg, dtrace_id_t id, void *parg,
*0f4c859eSApple OSS Distributions    dtrace_argdesc_t *desc)
*0f4c859eSApple OSS Distributions{
*0f4c859eSApple OSS Distributions#pragma unused(arg, id)
*0f4c859eSApple OSS Distributions	fasttrap_probe_t *probe = parg;
*0f4c859eSApple OSS Distributions	char *str;
*0f4c859eSApple OSS Distributions	int i, ndx;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	desc->dtargd_native[0] = '\0';
*0f4c859eSApple OSS Distributions	desc->dtargd_xlate[0] = '\0';
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	if (probe->ftp_prov->ftp_retired != 0 ||
*0f4c859eSApple OSS Distributions		desc->dtargd_ndx < 0 ||
*0f4c859eSApple OSS Distributions	    desc->dtargd_ndx >= probe->ftp_nargs) {
*0f4c859eSApple OSS Distributions		desc->dtargd_ndx = DTRACE_ARGNONE;
*0f4c859eSApple OSS Distributions		return;
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	ndx = (probe->ftp_argmap != NULL) ?
*0f4c859eSApple OSS Distributions		probe->ftp_argmap[desc->dtargd_ndx] : desc->dtargd_ndx;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	if (probe->ftp_ntypes == NULL)
*0f4c859eSApple OSS Distributions		return;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	str = probe->ftp_ntypes;
*0f4c859eSApple OSS Distributions	for (i = 0; i < ndx; i++) {
*0f4c859eSApple OSS Distributions		str += strlen(str) + 1;
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	(void) strlcpy(desc->dtargd_native, str, sizeof(desc->dtargd_native));
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	if (probe->ftp_xtypes == NULL)
*0f4c859eSApple OSS Distributions		return;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	str = probe->ftp_xtypes;
*0f4c859eSApple OSS Distributions	for (i = 0; i < desc->dtargd_ndx; i++) {
*0f4c859eSApple OSS Distributions		str += strlen(str) + 1;
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	(void) strlcpy(desc->dtargd_xlate, str, sizeof(desc->dtargd_xlate));
*0f4c859eSApple OSS Distributions}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions/*ARGSUSED*/
*0f4c859eSApple OSS Distributionsstatic void
*0f4c859eSApple OSS Distributionsfasttrap_pid_destroy(void *arg, dtrace_id_t id, void *parg)
*0f4c859eSApple OSS Distributions{
*0f4c859eSApple OSS Distributions#pragma unused(arg, id)
*0f4c859eSApple OSS Distributions	fasttrap_probe_t *probe = parg;
*0f4c859eSApple OSS Distributions	unsigned int i;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	ASSERT(probe != NULL);
*0f4c859eSApple OSS Distributions	ASSERT(!probe->ftp_enabled);
*0f4c859eSApple OSS Distributions	ASSERT(fasttrap_total >= probe->ftp_ntps);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	os_atomic_sub(&fasttrap_total, probe->ftp_ntps, relaxed);
*0f4c859eSApple OSS Distributions	os_atomic_sub(&fasttrap_retired, probe->ftp_ntps, relaxed);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	if (probe->ftp_gen + 1 >= fasttrap_mod_gen)
*0f4c859eSApple OSS Distributions		fasttrap_mod_barrier(probe->ftp_gen);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	for (i = 0; i < probe->ftp_ntps; i++) {
*0f4c859eSApple OSS Distributions		zfree(fasttrap_tracepoint_t_zone, probe->ftp_tps[i].fit_tp);
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	if (probe->ftp_ntps < FASTTRAP_PROBE_T_ZONE_MAX_TRACEPOINTS) {
*0f4c859eSApple OSS Distributions		zfree(fasttrap_probe_t_zones[probe->ftp_ntps], probe);
*0f4c859eSApple OSS Distributions	} else {
*0f4c859eSApple OSS Distributions		size_t size = offsetof(fasttrap_probe_t, ftp_tps[probe->ftp_ntps]);
*0f4c859eSApple OSS Distributions		kmem_free(probe, size);
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributionsstatic const dtrace_pattr_t pid_attr = {
*0f4c859eSApple OSS Distributions{ DTRACE_STABILITY_EVOLVING, DTRACE_STABILITY_EVOLVING, DTRACE_CLASS_ISA },
*0f4c859eSApple OSS Distributions{ DTRACE_STABILITY_PRIVATE, DTRACE_STABILITY_PRIVATE, DTRACE_CLASS_UNKNOWN },
*0f4c859eSApple OSS Distributions{ DTRACE_STABILITY_PRIVATE, DTRACE_STABILITY_PRIVATE, DTRACE_CLASS_UNKNOWN },
*0f4c859eSApple OSS Distributions{ DTRACE_STABILITY_EVOLVING, DTRACE_STABILITY_EVOLVING, DTRACE_CLASS_ISA },
*0f4c859eSApple OSS Distributions{ DTRACE_STABILITY_PRIVATE, DTRACE_STABILITY_PRIVATE, DTRACE_CLASS_UNKNOWN },
*0f4c859eSApple OSS Distributions};
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributionsstatic dtrace_pops_t pid_pops = {
*0f4c859eSApple OSS Distributions	.dtps_provide =		fasttrap_pid_provide,
*0f4c859eSApple OSS Distributions	.dtps_provide_module =	NULL,
*0f4c859eSApple OSS Distributions	.dtps_enable =		fasttrap_pid_enable,
*0f4c859eSApple OSS Distributions	.dtps_disable =		fasttrap_pid_disable,
*0f4c859eSApple OSS Distributions	.dtps_suspend =		NULL,
*0f4c859eSApple OSS Distributions	.dtps_resume =		NULL,
*0f4c859eSApple OSS Distributions	.dtps_getargdesc =	fasttrap_pid_getargdesc,
*0f4c859eSApple OSS Distributions	.dtps_getargval =	fasttrap_pid_getarg,
*0f4c859eSApple OSS Distributions	.dtps_usermode =	NULL,
*0f4c859eSApple OSS Distributions	.dtps_destroy =		fasttrap_pid_destroy
*0f4c859eSApple OSS Distributions};
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributionsstatic dtrace_pops_t usdt_pops = {
*0f4c859eSApple OSS Distributions	.dtps_provide =		fasttrap_pid_provide,
*0f4c859eSApple OSS Distributions	.dtps_provide_module =	NULL,
*0f4c859eSApple OSS Distributions	.dtps_enable =		fasttrap_pid_enable,
*0f4c859eSApple OSS Distributions	.dtps_disable =		fasttrap_pid_disable,
*0f4c859eSApple OSS Distributions	.dtps_suspend =		NULL,
*0f4c859eSApple OSS Distributions	.dtps_resume =		NULL,
*0f4c859eSApple OSS Distributions	.dtps_getargdesc =	fasttrap_pid_getargdesc,
*0f4c859eSApple OSS Distributions	.dtps_getargval =	fasttrap_usdt_getarg,
*0f4c859eSApple OSS Distributions	.dtps_usermode =	NULL,
*0f4c859eSApple OSS Distributions	.dtps_destroy =		fasttrap_pid_destroy
*0f4c859eSApple OSS Distributions};
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributionsstatic fasttrap_proc_t *
*0f4c859eSApple OSS Distributionsfasttrap_proc_lookup(pid_t pid)
*0f4c859eSApple OSS Distributions{
*0f4c859eSApple OSS Distributions	fasttrap_bucket_t *bucket;
*0f4c859eSApple OSS Distributions	fasttrap_proc_t *fprc, *new_fprc;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	bucket = &fasttrap_procs.fth_table[FASTTRAP_PROCS_INDEX(pid)];
*0f4c859eSApple OSS Distributions	lck_mtx_lock(&bucket->ftb_mtx);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	for (fprc = bucket->ftb_data; fprc != NULL; fprc = fprc->ftpc_next) {
*0f4c859eSApple OSS Distributions		if (fprc->ftpc_pid == pid && fprc->ftpc_acount != 0) {
*0f4c859eSApple OSS Distributions			lck_mtx_lock(&fprc->ftpc_mtx);
*0f4c859eSApple OSS Distributions			lck_mtx_unlock(&bucket->ftb_mtx);
*0f4c859eSApple OSS Distributions			fprc->ftpc_rcount++;
*0f4c859eSApple OSS Distributions			os_atomic_inc(&fprc->ftpc_acount, relaxed);
*0f4c859eSApple OSS Distributions			ASSERT(fprc->ftpc_acount <= fprc->ftpc_rcount);
*0f4c859eSApple OSS Distributions			lck_mtx_unlock(&fprc->ftpc_mtx);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions			return (fprc);
*0f4c859eSApple OSS Distributions		}
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * Drop the bucket lock so we don't try to perform a sleeping
*0f4c859eSApple OSS Distributions	 * allocation under it.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	lck_mtx_unlock(&bucket->ftb_mtx);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	new_fprc = kmem_zalloc(sizeof (fasttrap_proc_t), KM_SLEEP);
*0f4c859eSApple OSS Distributions	ASSERT(new_fprc != NULL);
*0f4c859eSApple OSS Distributions	new_fprc->ftpc_pid = pid;
*0f4c859eSApple OSS Distributions	new_fprc->ftpc_rcount = 1;
*0f4c859eSApple OSS Distributions	new_fprc->ftpc_acount = 1;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	lck_mtx_lock(&bucket->ftb_mtx);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * Take another lap through the list to make sure a proc hasn't
*0f4c859eSApple OSS Distributions	 * been created for this pid while we weren't under the bucket lock.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	for (fprc = bucket->ftb_data; fprc != NULL; fprc = fprc->ftpc_next) {
*0f4c859eSApple OSS Distributions		if (fprc->ftpc_pid == pid && fprc->ftpc_acount != 0) {
*0f4c859eSApple OSS Distributions			lck_mtx_lock(&fprc->ftpc_mtx);
*0f4c859eSApple OSS Distributions			lck_mtx_unlock(&bucket->ftb_mtx);
*0f4c859eSApple OSS Distributions			fprc->ftpc_rcount++;
*0f4c859eSApple OSS Distributions			os_atomic_inc(&fprc->ftpc_acount, relaxed);
*0f4c859eSApple OSS Distributions			ASSERT(fprc->ftpc_acount <= fprc->ftpc_rcount);
*0f4c859eSApple OSS Distributions			lck_mtx_unlock(&fprc->ftpc_mtx);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions			kmem_free(new_fprc, sizeof (fasttrap_proc_t));
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions			return (fprc);
*0f4c859eSApple OSS Distributions		}
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * APPLE NOTE: We have to initialize all locks explicitly
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	lck_mtx_init(&new_fprc->ftpc_mtx, &fasttrap_lck_grp, &fasttrap_lck_attr);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	new_fprc->ftpc_next = bucket->ftb_data;
*0f4c859eSApple OSS Distributions	bucket->ftb_data = new_fprc;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	lck_mtx_unlock(&bucket->ftb_mtx);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	return (new_fprc);
*0f4c859eSApple OSS Distributions}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributionsstatic void
*0f4c859eSApple OSS Distributionsfasttrap_proc_release(fasttrap_proc_t *proc)
*0f4c859eSApple OSS Distributions{
*0f4c859eSApple OSS Distributions	fasttrap_bucket_t *bucket;
*0f4c859eSApple OSS Distributions	fasttrap_proc_t *fprc, **fprcp;
*0f4c859eSApple OSS Distributions	pid_t pid = proc->ftpc_pid;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	lck_mtx_lock(&proc->ftpc_mtx);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	ASSERT(proc->ftpc_rcount != 0);
*0f4c859eSApple OSS Distributions	ASSERT(proc->ftpc_acount <= proc->ftpc_rcount);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	if (--proc->ftpc_rcount != 0) {
*0f4c859eSApple OSS Distributions		lck_mtx_unlock(&proc->ftpc_mtx);
*0f4c859eSApple OSS Distributions		return;
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	lck_mtx_unlock(&proc->ftpc_mtx);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * There should definitely be no live providers associated with this
*0f4c859eSApple OSS Distributions	 * process at this point.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	 ASSERT(proc->ftpc_acount == 0);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	bucket = &fasttrap_procs.fth_table[FASTTRAP_PROCS_INDEX(pid)];
*0f4c859eSApple OSS Distributions	lck_mtx_lock(&bucket->ftb_mtx);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	fprcp = (fasttrap_proc_t **)&bucket->ftb_data;
*0f4c859eSApple OSS Distributions	while ((fprc = *fprcp) != NULL) {
*0f4c859eSApple OSS Distributions		if (fprc == proc)
*0f4c859eSApple OSS Distributions			break;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		fprcp = &fprc->ftpc_next;
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * Something strange has happened if we can't find the proc.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	ASSERT(fprc != NULL);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	*fprcp = fprc->ftpc_next;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	lck_mtx_unlock(&bucket->ftb_mtx);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * APPLE NOTE: explicit lock management. Not 100% certain we need this, the
*0f4c859eSApple OSS Distributions	 * memory is freed even without the destroy. Maybe accounting cleanup?
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	lck_mtx_destroy(&fprc->ftpc_mtx, &fasttrap_lck_grp);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	kmem_free(fprc, sizeof (fasttrap_proc_t));
*0f4c859eSApple OSS Distributions}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions/*
*0f4c859eSApple OSS Distributions * Lookup a fasttrap-managed provider based on its name and associated proc.
*0f4c859eSApple OSS Distributions * A reference to the proc must be held for the duration of the call.
*0f4c859eSApple OSS Distributions * If the pattr argument is non-NULL, this function instantiates the provider
*0f4c859eSApple OSS Distributions * if it doesn't exist otherwise it returns NULL. The provider is returned
*0f4c859eSApple OSS Distributions * with its lock held.
*0f4c859eSApple OSS Distributions */
*0f4c859eSApple OSS Distributionsstatic fasttrap_provider_t *
*0f4c859eSApple OSS Distributionsfasttrap_provider_lookup(proc_t *p, fasttrap_provider_type_t provider_type, const char *name,
*0f4c859eSApple OSS Distributions    const dtrace_pattr_t *pattr)
*0f4c859eSApple OSS Distributions{
*0f4c859eSApple OSS Distributions	pid_t pid = proc_getpid(p);
*0f4c859eSApple OSS Distributions	fasttrap_provider_t *fp, *new_fp = NULL;
*0f4c859eSApple OSS Distributions	fasttrap_bucket_t *bucket;
*0f4c859eSApple OSS Distributions	char provname[DTRACE_PROVNAMELEN];
*0f4c859eSApple OSS Distributions	cred_t *cred;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	ASSERT(strlen(name) < sizeof (fp->ftp_name));
*0f4c859eSApple OSS Distributions	ASSERT(pattr != NULL);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	bucket = &fasttrap_provs.fth_table[FASTTRAP_PROVS_INDEX(pid, name)];
*0f4c859eSApple OSS Distributions	lck_mtx_lock(&bucket->ftb_mtx);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * Take a lap through the list and return the match if we find it.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	for (fp = bucket->ftb_data; fp != NULL; fp = fp->ftp_next) {
*0f4c859eSApple OSS Distributions		if (fp->ftp_pid == pid &&
*0f4c859eSApple OSS Distributions		    fp->ftp_provider_type == provider_type &&
*0f4c859eSApple OSS Distributions		    strncmp(fp->ftp_name, name, sizeof(fp->ftp_name)) == 0 &&
*0f4c859eSApple OSS Distributions		    !fp->ftp_retired) {
*0f4c859eSApple OSS Distributions			lck_mtx_lock(&fp->ftp_mtx);
*0f4c859eSApple OSS Distributions			lck_mtx_unlock(&bucket->ftb_mtx);
*0f4c859eSApple OSS Distributions			return (fp);
*0f4c859eSApple OSS Distributions		}
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * Drop the bucket lock so we don't try to perform a sleeping
*0f4c859eSApple OSS Distributions	 * allocation under it.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	lck_mtx_unlock(&bucket->ftb_mtx);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * Make sure the process isn't a child
*0f4c859eSApple OSS Distributions	 * isn't a zombie (but may be in fork).
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	proc_lock(p);
*0f4c859eSApple OSS Distributions	if (p->p_lflag & P_LEXIT) {
*0f4c859eSApple OSS Distributions		proc_unlock(p);
*0f4c859eSApple OSS Distributions		return (NULL);
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * Increment p_dtrace_probes so that the process knows to inform us
*0f4c859eSApple OSS Distributions	 * when it exits or execs. fasttrap_provider_free() decrements this
*0f4c859eSApple OSS Distributions	 * when we're done with this provider.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	p->p_dtrace_probes++;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * Grab the credentials for this process so we have
*0f4c859eSApple OSS Distributions	 * something to pass to dtrace_register().
*0f4c859eSApple OSS Distributions	 * APPLE NOTE:  We have no equivalent to crhold,
*0f4c859eSApple OSS Distributions	 * even though there is a cr_ref filed in ucred.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	cred = kauth_cred_proc_ref(p);
*0f4c859eSApple OSS Distributions	proc_unlock(p);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	new_fp = kmem_zalloc(sizeof (fasttrap_provider_t), KM_SLEEP);
*0f4c859eSApple OSS Distributions	ASSERT(new_fp != NULL);
*0f4c859eSApple OSS Distributions	new_fp->ftp_pid = proc_getpid(p);
*0f4c859eSApple OSS Distributions	new_fp->ftp_proc = fasttrap_proc_lookup(pid);
*0f4c859eSApple OSS Distributions	new_fp->ftp_provider_type = provider_type;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * APPLE NOTE:  locks require explicit init
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	lck_mtx_init(&new_fp->ftp_mtx, &fasttrap_lck_grp, &fasttrap_lck_attr);
*0f4c859eSApple OSS Distributions	lck_mtx_init(&new_fp->ftp_cmtx, &fasttrap_lck_grp, &fasttrap_lck_attr);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	ASSERT(new_fp->ftp_proc != NULL);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	lck_mtx_lock(&bucket->ftb_mtx);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * Take another lap through the list to make sure a provider hasn't
*0f4c859eSApple OSS Distributions	 * been created for this pid while we weren't under the bucket lock.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	for (fp = bucket->ftb_data; fp != NULL; fp = fp->ftp_next) {
*0f4c859eSApple OSS Distributions		if (fp->ftp_pid == pid && strncmp(fp->ftp_name, name, sizeof(fp->ftp_name)) == 0 &&
*0f4c859eSApple OSS Distributions		    !fp->ftp_retired) {
*0f4c859eSApple OSS Distributions			lck_mtx_lock(&fp->ftp_mtx);
*0f4c859eSApple OSS Distributions			lck_mtx_unlock(&bucket->ftb_mtx);
*0f4c859eSApple OSS Distributions			fasttrap_provider_free(new_fp);
*0f4c859eSApple OSS Distributions			kauth_cred_unref(&cred);
*0f4c859eSApple OSS Distributions			return (fp);
*0f4c859eSApple OSS Distributions		}
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	(void) strlcpy(new_fp->ftp_name, name, sizeof(new_fp->ftp_name));
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * Fail and return NULL if either the provider name is too long
*0f4c859eSApple OSS Distributions	 * or we fail to register this new provider with the DTrace
*0f4c859eSApple OSS Distributions	 * framework. Note that this is the only place we ever construct
*0f4c859eSApple OSS Distributions	 * the full provider name -- we keep it in pieces in the provider
*0f4c859eSApple OSS Distributions	 * structure.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	if (snprintf(provname, sizeof (provname), "%s%u", name, (uint_t)pid) >=
*0f4c859eSApple OSS Distributions	    (int)sizeof (provname) ||
*0f4c859eSApple OSS Distributions	    dtrace_register(provname, pattr,
*0f4c859eSApple OSS Distributions	    DTRACE_PRIV_PROC | DTRACE_PRIV_OWNER | DTRACE_PRIV_ZONEOWNER, cred,
*0f4c859eSApple OSS Distributions	    pattr == &pid_attr ? &pid_pops : &usdt_pops, new_fp,
*0f4c859eSApple OSS Distributions	    &new_fp->ftp_provid) != 0) {
*0f4c859eSApple OSS Distributions		lck_mtx_unlock(&bucket->ftb_mtx);
*0f4c859eSApple OSS Distributions		fasttrap_provider_free(new_fp);
*0f4c859eSApple OSS Distributions		kauth_cred_unref(&cred);
*0f4c859eSApple OSS Distributions		return (NULL);
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	new_fp->ftp_next = bucket->ftb_data;
*0f4c859eSApple OSS Distributions	bucket->ftb_data = new_fp;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	lck_mtx_lock(&new_fp->ftp_mtx);
*0f4c859eSApple OSS Distributions	lck_mtx_unlock(&bucket->ftb_mtx);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	kauth_cred_unref(&cred);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	return (new_fp);
*0f4c859eSApple OSS Distributions}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributionsstatic void
*0f4c859eSApple OSS Distributionsfasttrap_provider_free(fasttrap_provider_t *provider)
*0f4c859eSApple OSS Distributions{
*0f4c859eSApple OSS Distributions	pid_t pid = provider->ftp_pid;
*0f4c859eSApple OSS Distributions	proc_t *p;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * There need to be no associated enabled probes, no consumers
*0f4c859eSApple OSS Distributions	 * creating probes, and no meta providers referencing this provider.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	ASSERT(provider->ftp_rcount == 0);
*0f4c859eSApple OSS Distributions	ASSERT(provider->ftp_ccount == 0);
*0f4c859eSApple OSS Distributions	ASSERT(provider->ftp_mcount == 0);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * If this provider hasn't been retired, we need to explicitly drop the
*0f4c859eSApple OSS Distributions	 * count of active providers on the associated process structure.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	if (!provider->ftp_retired) {
*0f4c859eSApple OSS Distributions		os_atomic_dec(&provider->ftp_proc->ftpc_acount, relaxed);
*0f4c859eSApple OSS Distributions		ASSERT(provider->ftp_proc->ftpc_acount <
*0f4c859eSApple OSS Distributions		provider->ftp_proc->ftpc_rcount);
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	fasttrap_proc_release(provider->ftp_proc);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * APPLE NOTE:  explicit lock management. Not 100% certain we need this, the
*0f4c859eSApple OSS Distributions	 * memory is freed even without the destroy. Maybe accounting cleanup?
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	lck_mtx_destroy(&provider->ftp_mtx, &fasttrap_lck_grp);
*0f4c859eSApple OSS Distributions	lck_mtx_destroy(&provider->ftp_cmtx, &fasttrap_lck_grp);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	kmem_free(provider, sizeof (fasttrap_provider_t));
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * Decrement p_dtrace_probes on the process whose provider we're
*0f4c859eSApple OSS Distributions	 * freeing. We don't have to worry about clobbering somone else's
*0f4c859eSApple OSS Distributions	 * modifications to it because we have locked the bucket that
*0f4c859eSApple OSS Distributions	 * corresponds to this process's hash chain in the provider hash
*0f4c859eSApple OSS Distributions	 * table. Don't sweat it if we can't find the process.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	if ((p = proc_find(pid)) == NULL) {
*0f4c859eSApple OSS Distributions		return;
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	proc_lock(p);
*0f4c859eSApple OSS Distributions	p->p_dtrace_probes--;
*0f4c859eSApple OSS Distributions	proc_unlock(p);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	proc_rele(p);
*0f4c859eSApple OSS Distributions}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributionsstatic void
*0f4c859eSApple OSS Distributionsfasttrap_provider_retire(proc_t *p, const char *name, int mprov)
*0f4c859eSApple OSS Distributions{
*0f4c859eSApple OSS Distributions	fasttrap_provider_t *fp;
*0f4c859eSApple OSS Distributions	fasttrap_bucket_t *bucket;
*0f4c859eSApple OSS Distributions	dtrace_provider_id_t provid;
*0f4c859eSApple OSS Distributions	ASSERT(strlen(name) < sizeof (fp->ftp_name));
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	bucket = &fasttrap_provs.fth_table[FASTTRAP_PROVS_INDEX(proc_getpid(p), name)];
*0f4c859eSApple OSS Distributions	lck_mtx_lock(&bucket->ftb_mtx);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	for (fp = bucket->ftb_data; fp != NULL; fp = fp->ftp_next) {
*0f4c859eSApple OSS Distributions		if (fp->ftp_pid == proc_getpid(p) && strncmp(fp->ftp_name, name, sizeof(fp->ftp_name)) == 0 &&
*0f4c859eSApple OSS Distributions		    !fp->ftp_retired)
*0f4c859eSApple OSS Distributions			break;
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	if (fp == NULL) {
*0f4c859eSApple OSS Distributions		lck_mtx_unlock(&bucket->ftb_mtx);
*0f4c859eSApple OSS Distributions		return;
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	lck_mtx_lock(&fp->ftp_mtx);
*0f4c859eSApple OSS Distributions	ASSERT(!mprov || fp->ftp_mcount > 0);
*0f4c859eSApple OSS Distributions	if (mprov && --fp->ftp_mcount != 0)  {
*0f4c859eSApple OSS Distributions		lck_mtx_unlock(&fp->ftp_mtx);
*0f4c859eSApple OSS Distributions		lck_mtx_unlock(&bucket->ftb_mtx);
*0f4c859eSApple OSS Distributions		return;
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * Mark the provider to be removed in our post-processing step, mark it
*0f4c859eSApple OSS Distributions	 * retired, and drop the active count on its proc. Marking it indicates
*0f4c859eSApple OSS Distributions	 * that we should try to remove it; setting the retired flag indicates
*0f4c859eSApple OSS Distributions	 * that we're done with this provider; dropping the active the proc
*0f4c859eSApple OSS Distributions	 * releases our hold, and when this reaches zero (as it will during
*0f4c859eSApple OSS Distributions	 * exit or exec) the proc and associated providers become defunct.
*0f4c859eSApple OSS Distributions	 *
*0f4c859eSApple OSS Distributions	 * We obviously need to take the bucket lock before the provider lock
*0f4c859eSApple OSS Distributions	 * to perform the lookup, but we need to drop the provider lock
*0f4c859eSApple OSS Distributions	 * before calling into the DTrace framework since we acquire the
*0f4c859eSApple OSS Distributions	 * provider lock in callbacks invoked from the DTrace framework. The
*0f4c859eSApple OSS Distributions	 * bucket lock therefore protects the integrity of the provider hash
*0f4c859eSApple OSS Distributions	 * table.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	os_atomic_dec(&fp->ftp_proc->ftpc_acount, relaxed);
*0f4c859eSApple OSS Distributions	ASSERT(fp->ftp_proc->ftpc_acount < fp->ftp_proc->ftpc_rcount);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * Add this provider probes to the retired count and
*0f4c859eSApple OSS Distributions	 * make sure we don't add them twice
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	os_atomic_add(&fasttrap_retired, fp->ftp_pcount, relaxed);
*0f4c859eSApple OSS Distributions	fp->ftp_pcount = 0;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	fp->ftp_retired = 1;
*0f4c859eSApple OSS Distributions	fp->ftp_marked = 1;
*0f4c859eSApple OSS Distributions	provid = fp->ftp_provid;
*0f4c859eSApple OSS Distributions	lck_mtx_unlock(&fp->ftp_mtx);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * We don't have to worry about invalidating the same provider twice
*0f4c859eSApple OSS Distributions	 * since fasttrap_provider_lookup() will ignore providers that have
*0f4c859eSApple OSS Distributions	 * been marked as retired.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	dtrace_invalidate(provid);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	lck_mtx_unlock(&bucket->ftb_mtx);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	fasttrap_pid_cleanup(FASTTRAP_CLEANUP_PROVIDER);
*0f4c859eSApple OSS Distributions}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributionsstatic int
*0f4c859eSApple OSS Distributionsfasttrap_uint32_cmp(const void *ap, const void *bp)
*0f4c859eSApple OSS Distributions{
*0f4c859eSApple OSS Distributions	return (*(const uint32_t *)ap - *(const uint32_t *)bp);
*0f4c859eSApple OSS Distributions}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributionsstatic int
*0f4c859eSApple OSS Distributionsfasttrap_uint64_cmp(const void *ap, const void *bp)
*0f4c859eSApple OSS Distributions{
*0f4c859eSApple OSS Distributions	return (*(const uint64_t *)ap - *(const uint64_t *)bp);
*0f4c859eSApple OSS Distributions}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributionsstatic int
*0f4c859eSApple OSS Distributionsfasttrap_add_probe(fasttrap_probe_spec_t *pdata)
*0f4c859eSApple OSS Distributions{
*0f4c859eSApple OSS Distributions	proc_t *p;
*0f4c859eSApple OSS Distributions	fasttrap_provider_t *provider;
*0f4c859eSApple OSS Distributions	fasttrap_probe_t *pp;
*0f4c859eSApple OSS Distributions	fasttrap_tracepoint_t *tp;
*0f4c859eSApple OSS Distributions	const char *name;
*0f4c859eSApple OSS Distributions	unsigned int i, aframes, whack;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * There needs to be at least one desired trace point.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	 if (pdata->ftps_noffs == 0)
*0f4c859eSApple OSS Distributions		return (EINVAL);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	switch (pdata->ftps_probe_type) {
*0f4c859eSApple OSS Distributions	case DTFTP_ENTRY:
*0f4c859eSApple OSS Distributions		name = "entry";
*0f4c859eSApple OSS Distributions		aframes = FASTTRAP_ENTRY_AFRAMES;
*0f4c859eSApple OSS Distributions		break;
*0f4c859eSApple OSS Distributions	case DTFTP_RETURN:
*0f4c859eSApple OSS Distributions		name = "return";
*0f4c859eSApple OSS Distributions		aframes = FASTTRAP_RETURN_AFRAMES;
*0f4c859eSApple OSS Distributions		break;
*0f4c859eSApple OSS Distributions	case DTFTP_OFFSETS:
*0f4c859eSApple OSS Distributions		aframes = 0;
*0f4c859eSApple OSS Distributions		name = NULL;
*0f4c859eSApple OSS Distributions		break;
*0f4c859eSApple OSS Distributions	default:
*0f4c859eSApple OSS Distributions		return (EINVAL);
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	const char* provider_name;
*0f4c859eSApple OSS Distributions	switch (pdata->ftps_provider_type) {
*0f4c859eSApple OSS Distributions		case DTFTP_PROVIDER_PID:
*0f4c859eSApple OSS Distributions			provider_name = FASTTRAP_PID_NAME;
*0f4c859eSApple OSS Distributions			break;
*0f4c859eSApple OSS Distributions		case DTFTP_PROVIDER_OBJC:
*0f4c859eSApple OSS Distributions			provider_name = FASTTRAP_OBJC_NAME;
*0f4c859eSApple OSS Distributions			break;
*0f4c859eSApple OSS Distributions		case DTFTP_PROVIDER_ONESHOT:
*0f4c859eSApple OSS Distributions			provider_name = FASTTRAP_ONESHOT_NAME;
*0f4c859eSApple OSS Distributions			break;
*0f4c859eSApple OSS Distributions		default:
*0f4c859eSApple OSS Distributions			return (EINVAL);
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	p = proc_find(pdata->ftps_pid);
*0f4c859eSApple OSS Distributions	if (p == PROC_NULL)
*0f4c859eSApple OSS Distributions		return (ESRCH);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	if ((provider = fasttrap_provider_lookup(p, pdata->ftps_provider_type,
*0f4c859eSApple OSS Distributions						 provider_name, &pid_attr)) == NULL) {
*0f4c859eSApple OSS Distributions		proc_rele(p);
*0f4c859eSApple OSS Distributions		return (ESRCH);
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	proc_rele(p);
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * Increment this reference count to indicate that a consumer is
*0f4c859eSApple OSS Distributions	 * actively adding a new probe associated with this provider. This
*0f4c859eSApple OSS Distributions	 * prevents the provider from being deleted -- we'll need to check
*0f4c859eSApple OSS Distributions	 * for pending deletions when we drop this reference count.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	provider->ftp_ccount++;
*0f4c859eSApple OSS Distributions	lck_mtx_unlock(&provider->ftp_mtx);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * Grab the creation lock to ensure consistency between calls to
*0f4c859eSApple OSS Distributions	 * dtrace_probe_lookup() and dtrace_probe_create() in the face of
*0f4c859eSApple OSS Distributions	 * other threads creating probes. We must drop the provider lock
*0f4c859eSApple OSS Distributions	 * before taking this lock to avoid a three-way deadlock with the
*0f4c859eSApple OSS Distributions	 * DTrace framework.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	lck_mtx_lock(&provider->ftp_cmtx);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	if (name == NULL) {
*0f4c859eSApple OSS Distributions		for (i = 0; i < pdata->ftps_noffs; i++) {
*0f4c859eSApple OSS Distributions			char name_str[17];
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions			(void) snprintf(name_str, sizeof(name_str), "%llx",
*0f4c859eSApple OSS Distributions			    (uint64_t)pdata->ftps_offs[i]);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions			if (dtrace_probe_lookup(provider->ftp_provid,
*0f4c859eSApple OSS Distributions			    pdata->ftps_mod, pdata->ftps_func, name_str) != 0)
*0f4c859eSApple OSS Distributions				continue;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions			os_atomic_inc(&fasttrap_total, relaxed);
*0f4c859eSApple OSS Distributions			if (fasttrap_total > fasttrap_max) {
*0f4c859eSApple OSS Distributions				os_atomic_dec(&fasttrap_total, relaxed);
*0f4c859eSApple OSS Distributions				goto no_mem;
*0f4c859eSApple OSS Distributions			}
*0f4c859eSApple OSS Distributions			provider->ftp_pcount++;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions			pp = zalloc_flags(fasttrap_probe_t_zones[1], Z_WAITOK | Z_ZERO);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions			pp->ftp_prov = provider;
*0f4c859eSApple OSS Distributions			pp->ftp_faddr = pdata->ftps_pc;
*0f4c859eSApple OSS Distributions			pp->ftp_fsize = pdata->ftps_size;
*0f4c859eSApple OSS Distributions			pp->ftp_pid = pdata->ftps_pid;
*0f4c859eSApple OSS Distributions			pp->ftp_ntps = 1;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions			tp = zalloc_flags(fasttrap_tracepoint_t_zone, Z_WAITOK | Z_ZERO);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions			tp->ftt_proc = provider->ftp_proc;
*0f4c859eSApple OSS Distributions			tp->ftt_pc = pdata->ftps_offs[i] + pdata->ftps_pc;
*0f4c859eSApple OSS Distributions			tp->ftt_pid = pdata->ftps_pid;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions#if defined(__arm64__)
*0f4c859eSApple OSS Distributions			/*
*0f4c859eSApple OSS Distributions			 * On arm the subinfo is used to distinguish between arm
*0f4c859eSApple OSS Distributions			 * and thumb modes.  On arm64 there is no thumb mode, so
*0f4c859eSApple OSS Distributions			 * this field is simply initialized to 0 on its way
*0f4c859eSApple OSS Distributions			 * into the kernel.
*0f4c859eSApple OSS Distributions			 */
*0f4c859eSApple OSS Distributions			tp->ftt_fntype = pdata->ftps_arch_subinfo;
*0f4c859eSApple OSS Distributions#endif
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions			pp->ftp_tps[0].fit_tp = tp;
*0f4c859eSApple OSS Distributions			pp->ftp_tps[0].fit_id.fti_probe = pp;
*0f4c859eSApple OSS Distributions			pp->ftp_tps[0].fit_id.fti_ptype = pdata->ftps_probe_type;
*0f4c859eSApple OSS Distributions			pp->ftp_id = dtrace_probe_create(provider->ftp_provid,
*0f4c859eSApple OSS Distributions			    pdata->ftps_mod, pdata->ftps_func, name_str,
*0f4c859eSApple OSS Distributions			    FASTTRAP_OFFSET_AFRAMES, pp);
*0f4c859eSApple OSS Distributions		}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	} else if (dtrace_probe_lookup(provider->ftp_provid, pdata->ftps_mod,
*0f4c859eSApple OSS Distributions	    pdata->ftps_func, name) == 0) {
*0f4c859eSApple OSS Distributions		os_atomic_add(&fasttrap_total, pdata->ftps_noffs, relaxed);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		if (fasttrap_total > fasttrap_max) {
*0f4c859eSApple OSS Distributions			os_atomic_sub(&fasttrap_total, pdata->ftps_noffs, relaxed);
*0f4c859eSApple OSS Distributions			goto no_mem;
*0f4c859eSApple OSS Distributions		}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		/*
*0f4c859eSApple OSS Distributions		 * Make sure all tracepoint program counter values are unique.
*0f4c859eSApple OSS Distributions		 * We later assume that each probe has exactly one tracepoint
*0f4c859eSApple OSS Distributions		 * for a given pc.
*0f4c859eSApple OSS Distributions		 */
*0f4c859eSApple OSS Distributions		qsort(pdata->ftps_offs, pdata->ftps_noffs,
*0f4c859eSApple OSS Distributions			sizeof (uint64_t), fasttrap_uint64_cmp);
*0f4c859eSApple OSS Distributions		for (i = 1; i < pdata->ftps_noffs; i++) {
*0f4c859eSApple OSS Distributions			if (pdata->ftps_offs[i] > pdata->ftps_offs[i - 1])
*0f4c859eSApple OSS Distributions				continue;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions			os_atomic_sub(&fasttrap_total, pdata->ftps_noffs, relaxed);
*0f4c859eSApple OSS Distributions			goto no_mem;
*0f4c859eSApple OSS Distributions		}
*0f4c859eSApple OSS Distributions		provider->ftp_pcount += pdata->ftps_noffs;
*0f4c859eSApple OSS Distributions		ASSERT(pdata->ftps_noffs > 0);
*0f4c859eSApple OSS Distributions		if (pdata->ftps_noffs < FASTTRAP_PROBE_T_ZONE_MAX_TRACEPOINTS) {
*0f4c859eSApple OSS Distributions			pp = zalloc_flags(fasttrap_probe_t_zones[pdata->ftps_noffs],
*0f4c859eSApple OSS Distributions			    Z_WAITOK | Z_ZERO);
*0f4c859eSApple OSS Distributions		} else {
*0f4c859eSApple OSS Distributions			pp = kmem_zalloc(offsetof(fasttrap_probe_t, ftp_tps[pdata->ftps_noffs]), KM_SLEEP);
*0f4c859eSApple OSS Distributions		}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		pp->ftp_prov = provider;
*0f4c859eSApple OSS Distributions		pp->ftp_faddr = pdata->ftps_pc;
*0f4c859eSApple OSS Distributions		pp->ftp_fsize = pdata->ftps_size;
*0f4c859eSApple OSS Distributions		pp->ftp_pid = pdata->ftps_pid;
*0f4c859eSApple OSS Distributions		pp->ftp_ntps = pdata->ftps_noffs;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		for (i = 0; i < pdata->ftps_noffs; i++) {
*0f4c859eSApple OSS Distributions			tp = zalloc_flags(fasttrap_tracepoint_t_zone, Z_WAITOK | Z_ZERO);
*0f4c859eSApple OSS Distributions			tp->ftt_proc = provider->ftp_proc;
*0f4c859eSApple OSS Distributions			tp->ftt_pc = pdata->ftps_offs[i] + pdata->ftps_pc;
*0f4c859eSApple OSS Distributions			tp->ftt_pid = pdata->ftps_pid;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions#if defined (__arm64__)
*0f4c859eSApple OSS Distributions			/*
*0f4c859eSApple OSS Distributions			 * On arm the subinfo is used to distinguish between arm
*0f4c859eSApple OSS Distributions			 * and thumb modes.  On arm64 there is no thumb mode, so
*0f4c859eSApple OSS Distributions			 * this field is simply initialized to 0 on its way
*0f4c859eSApple OSS Distributions			 * into the kernel.
*0f4c859eSApple OSS Distributions			 */
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions			tp->ftt_fntype = pdata->ftps_arch_subinfo;
*0f4c859eSApple OSS Distributions#endif
*0f4c859eSApple OSS Distributions			pp->ftp_tps[i].fit_tp = tp;
*0f4c859eSApple OSS Distributions			pp->ftp_tps[i].fit_id.fti_probe = pp;
*0f4c859eSApple OSS Distributions			pp->ftp_tps[i].fit_id.fti_ptype = pdata->ftps_probe_type;
*0f4c859eSApple OSS Distributions		}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		pp->ftp_id = dtrace_probe_create(provider->ftp_provid,
*0f4c859eSApple OSS Distributions		    pdata->ftps_mod, pdata->ftps_func, name, aframes, pp);
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	lck_mtx_unlock(&provider->ftp_cmtx);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * We know that the provider is still valid since we incremented the
*0f4c859eSApple OSS Distributions	 * creation reference count. If someone tried to clean up this provider
*0f4c859eSApple OSS Distributions	 * while we were using it (e.g. because the process called exec(2) or
*0f4c859eSApple OSS Distributions	 * exit(2)), take note of that and try to clean it up now.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	lck_mtx_lock(&provider->ftp_mtx);
*0f4c859eSApple OSS Distributions	provider->ftp_ccount--;
*0f4c859eSApple OSS Distributions	whack = provider->ftp_retired;
*0f4c859eSApple OSS Distributions	lck_mtx_unlock(&provider->ftp_mtx);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	if (whack)
*0f4c859eSApple OSS Distributions		fasttrap_pid_cleanup(FASTTRAP_CLEANUP_PROVIDER);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	return (0);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributionsno_mem:
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * If we've exhausted the allowable resources, we'll try to remove
*0f4c859eSApple OSS Distributions	 * this provider to free some up. This is to cover the case where
*0f4c859eSApple OSS Distributions	 * the user has accidentally created many more probes than was
*0f4c859eSApple OSS Distributions	 * intended (e.g. pid123:::).
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	lck_mtx_unlock(&provider->ftp_cmtx);
*0f4c859eSApple OSS Distributions	lck_mtx_lock(&provider->ftp_mtx);
*0f4c859eSApple OSS Distributions	provider->ftp_ccount--;
*0f4c859eSApple OSS Distributions	provider->ftp_marked = 1;
*0f4c859eSApple OSS Distributions	lck_mtx_unlock(&provider->ftp_mtx);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	fasttrap_pid_cleanup(FASTTRAP_CLEANUP_PROVIDER);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	return (ENOMEM);
*0f4c859eSApple OSS Distributions}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions/*ARGSUSED*/
*0f4c859eSApple OSS Distributionsstatic void *
*0f4c859eSApple OSS Distributionsfasttrap_meta_provide(void *arg, dtrace_helper_provdesc_t *dhpv, proc_t *p)
*0f4c859eSApple OSS Distributions{
*0f4c859eSApple OSS Distributions#pragma unused(arg)
*0f4c859eSApple OSS Distributions	fasttrap_provider_t *provider;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * A 32-bit unsigned integer (like a pid for example) can be
*0f4c859eSApple OSS Distributions	 * expressed in 10 or fewer decimal digits. Make sure that we'll
*0f4c859eSApple OSS Distributions	 * have enough space for the provider name.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	if (strlen(dhpv->dthpv_provname) + 10 >=
*0f4c859eSApple OSS Distributions	    sizeof (provider->ftp_name)) {
*0f4c859eSApple OSS Distributions		cmn_err(CE_WARN, "failed to instantiate provider %s: "
*0f4c859eSApple OSS Distributions		    "name too long to accomodate pid", dhpv->dthpv_provname);
*0f4c859eSApple OSS Distributions		return (NULL);
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * Don't let folks spoof the true pid provider.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	if (strncmp(dhpv->dthpv_provname, FASTTRAP_PID_NAME, sizeof(FASTTRAP_PID_NAME)) == 0) {
*0f4c859eSApple OSS Distributions		cmn_err(CE_WARN, "failed to instantiate provider %s: "
*0f4c859eSApple OSS Distributions		    "%s is an invalid name", dhpv->dthpv_provname,
*0f4c859eSApple OSS Distributions		    FASTTRAP_PID_NAME);
*0f4c859eSApple OSS Distributions		return (NULL);
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * APPLE NOTE: We also need to check the objc and oneshot pid provider types
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	if (strncmp(dhpv->dthpv_provname, FASTTRAP_OBJC_NAME, sizeof(FASTTRAP_OBJC_NAME)) == 0) {
*0f4c859eSApple OSS Distributions		cmn_err(CE_WARN, "failed to instantiate provider %s: "
*0f4c859eSApple OSS Distributions		    "%s is an invalid name", dhpv->dthpv_provname,
*0f4c859eSApple OSS Distributions		    FASTTRAP_OBJC_NAME);
*0f4c859eSApple OSS Distributions		return (NULL);
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions	if (strncmp(dhpv->dthpv_provname, FASTTRAP_ONESHOT_NAME, sizeof(FASTTRAP_ONESHOT_NAME)) == 0) {
*0f4c859eSApple OSS Distributions		cmn_err(CE_WARN, "failed to instantiate provider %s: "
*0f4c859eSApple OSS Distributions		    "%s is an invalid name", dhpv->dthpv_provname,
*0f4c859eSApple OSS Distributions		    FASTTRAP_ONESHOT_NAME);
*0f4c859eSApple OSS Distributions		return (NULL);
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * The highest stability class that fasttrap supports is ISA; cap
*0f4c859eSApple OSS Distributions	 * the stability of the new provider accordingly.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	if (dhpv->dthpv_pattr.dtpa_provider.dtat_class > DTRACE_CLASS_ISA)
*0f4c859eSApple OSS Distributions		dhpv->dthpv_pattr.dtpa_provider.dtat_class = DTRACE_CLASS_ISA;
*0f4c859eSApple OSS Distributions	if (dhpv->dthpv_pattr.dtpa_mod.dtat_class > DTRACE_CLASS_ISA)
*0f4c859eSApple OSS Distributions		dhpv->dthpv_pattr.dtpa_mod.dtat_class = DTRACE_CLASS_ISA;
*0f4c859eSApple OSS Distributions	if (dhpv->dthpv_pattr.dtpa_func.dtat_class > DTRACE_CLASS_ISA)
*0f4c859eSApple OSS Distributions		dhpv->dthpv_pattr.dtpa_func.dtat_class = DTRACE_CLASS_ISA;
*0f4c859eSApple OSS Distributions	if (dhpv->dthpv_pattr.dtpa_name.dtat_class > DTRACE_CLASS_ISA)
*0f4c859eSApple OSS Distributions		dhpv->dthpv_pattr.dtpa_name.dtat_class = DTRACE_CLASS_ISA;
*0f4c859eSApple OSS Distributions	if (dhpv->dthpv_pattr.dtpa_args.dtat_class > DTRACE_CLASS_ISA)
*0f4c859eSApple OSS Distributions		dhpv->dthpv_pattr.dtpa_args.dtat_class = DTRACE_CLASS_ISA;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	if ((provider = fasttrap_provider_lookup(p, DTFTP_PROVIDER_USDT, dhpv->dthpv_provname,
*0f4c859eSApple OSS Distributions	    &dhpv->dthpv_pattr)) == NULL) {
*0f4c859eSApple OSS Distributions		cmn_err(CE_WARN, "failed to instantiate provider %s for "
*0f4c859eSApple OSS Distributions		    "process %u",  dhpv->dthpv_provname, (uint_t)proc_getpid(p));
*0f4c859eSApple OSS Distributions		return (NULL);
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * APPLE NOTE!
*0f4c859eSApple OSS Distributions	 *
*0f4c859eSApple OSS Distributions	 * USDT probes (fasttrap meta probes) are very expensive to create.
*0f4c859eSApple OSS Distributions	 * Profiling has shown that the largest single cost is verifying that
*0f4c859eSApple OSS Distributions	 * dtrace hasn't already created a given meta_probe. The reason for
*0f4c859eSApple OSS Distributions	 * this is dtrace_match() often has to strcmp ~100 hashed entries for
*0f4c859eSApple OSS Distributions	 * each static probe being created. We want to get rid of that check.
*0f4c859eSApple OSS Distributions	 * The simplest way of eliminating it is to deny the ability to add
*0f4c859eSApple OSS Distributions	 * probes to an existing provider. If the provider already exists, BZZT!
*0f4c859eSApple OSS Distributions	 * This still leaves the possibility of intentionally malformed DOF
*0f4c859eSApple OSS Distributions	 * having duplicate probes. However, duplicate probes are not fatal,
*0f4c859eSApple OSS Distributions	 * and there is no way to get that by accident, so we will not check
*0f4c859eSApple OSS Distributions	 * for that case.
*0f4c859eSApple OSS Distributions	 *
*0f4c859eSApple OSS Distributions	 * UPDATE: It turns out there are several use cases that require adding
*0f4c859eSApple OSS Distributions	 * probes to existing providers. Disabling the dtrace_probe_lookup()
*0f4c859eSApple OSS Distributions	 * optimization for now. See APPLE NOTE in fasttrap_meta_create_probe.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * Up the meta provider count so this provider isn't removed until
*0f4c859eSApple OSS Distributions	 * the meta provider has been told to remove it.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	provider->ftp_mcount++;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	lck_mtx_unlock(&provider->ftp_mtx);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	return (provider);
*0f4c859eSApple OSS Distributions}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions/*ARGSUSED*/
*0f4c859eSApple OSS Distributionsstatic void
*0f4c859eSApple OSS Distributionsfasttrap_meta_create_probe(void *arg, void *parg,
*0f4c859eSApple OSS Distributions    dtrace_helper_probedesc_t *dhpb)
*0f4c859eSApple OSS Distributions{
*0f4c859eSApple OSS Distributions#pragma unused(arg)
*0f4c859eSApple OSS Distributions	fasttrap_provider_t *provider = parg;
*0f4c859eSApple OSS Distributions	fasttrap_probe_t *pp;
*0f4c859eSApple OSS Distributions	fasttrap_tracepoint_t *tp;
*0f4c859eSApple OSS Distributions	unsigned int i, j;
*0f4c859eSApple OSS Distributions	uint32_t ntps;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * Since the meta provider count is non-zero we don't have to worry
*0f4c859eSApple OSS Distributions	 * about this provider disappearing.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	ASSERT(provider->ftp_mcount > 0);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * The offsets must be unique.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	qsort(dhpb->dthpb_offs, dhpb->dthpb_noffs, sizeof (uint32_t),
*0f4c859eSApple OSS Distributions		fasttrap_uint32_cmp);
*0f4c859eSApple OSS Distributions	for (i = 1; i < dhpb->dthpb_noffs; i++) {
*0f4c859eSApple OSS Distributions		if (dhpb->dthpb_base + dhpb->dthpb_offs[i] <=
*0f4c859eSApple OSS Distributions			dhpb->dthpb_base + dhpb->dthpb_offs[i - 1])
*0f4c859eSApple OSS Distributions				return;
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	qsort(dhpb->dthpb_enoffs, dhpb->dthpb_nenoffs, sizeof (uint32_t),
*0f4c859eSApple OSS Distributions		fasttrap_uint32_cmp);
*0f4c859eSApple OSS Distributions	for (i = 1; i < dhpb->dthpb_nenoffs; i++) {
*0f4c859eSApple OSS Distributions		if (dhpb->dthpb_base + dhpb->dthpb_enoffs[i] <=
*0f4c859eSApple OSS Distributions			dhpb->dthpb_base + dhpb->dthpb_enoffs[i - 1])
*0f4c859eSApple OSS Distributions				return;
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * Grab the creation lock to ensure consistency between calls to
*0f4c859eSApple OSS Distributions	 * dtrace_probe_lookup() and dtrace_probe_create() in the face of
*0f4c859eSApple OSS Distributions	 * other threads creating probes.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	lck_mtx_lock(&provider->ftp_cmtx);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions#if 0
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * APPLE NOTE: This is hideously expensive. See note in
*0f4c859eSApple OSS Distributions	 * fasttrap_meta_provide() for why we can get away without
*0f4c859eSApple OSS Distributions	 * checking here.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	if (dtrace_probe_lookup(provider->ftp_provid, dhpb->dthpb_mod,
*0f4c859eSApple OSS Distributions	    dhpb->dthpb_func, dhpb->dthpb_name) != 0) {
*0f4c859eSApple OSS Distributions		lck_mtx_unlock(&provider->ftp_cmtx);
*0f4c859eSApple OSS Distributions		return;
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions#endif
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	ntps = dhpb->dthpb_noffs + dhpb->dthpb_nenoffs;
*0f4c859eSApple OSS Distributions	ASSERT(ntps > 0);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	os_atomic_add(&fasttrap_total, ntps, relaxed);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	if (fasttrap_total > fasttrap_max) {
*0f4c859eSApple OSS Distributions		os_atomic_sub(&fasttrap_total, ntps, relaxed);
*0f4c859eSApple OSS Distributions		lck_mtx_unlock(&provider->ftp_cmtx);
*0f4c859eSApple OSS Distributions		return;
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	provider->ftp_pcount += ntps;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	if (ntps < FASTTRAP_PROBE_T_ZONE_MAX_TRACEPOINTS) {
*0f4c859eSApple OSS Distributions		pp = zalloc_flags(fasttrap_probe_t_zones[ntps], Z_WAITOK | Z_ZERO);
*0f4c859eSApple OSS Distributions	} else {
*0f4c859eSApple OSS Distributions		pp = kmem_zalloc(offsetof(fasttrap_probe_t, ftp_tps[ntps]), KM_SLEEP);
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	pp->ftp_prov = provider;
*0f4c859eSApple OSS Distributions	pp->ftp_pid = provider->ftp_pid;
*0f4c859eSApple OSS Distributions	pp->ftp_ntps = ntps;
*0f4c859eSApple OSS Distributions	pp->ftp_nargs = dhpb->dthpb_xargc;
*0f4c859eSApple OSS Distributions	pp->ftp_xtypes = dhpb->dthpb_xtypes;
*0f4c859eSApple OSS Distributions	pp->ftp_ntypes = dhpb->dthpb_ntypes;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * First create a tracepoint for each actual point of interest.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	for (i = 0; i < dhpb->dthpb_noffs; i++) {
*0f4c859eSApple OSS Distributions		tp = zalloc_flags(fasttrap_tracepoint_t_zone, Z_WAITOK | Z_ZERO);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		tp->ftt_proc = provider->ftp_proc;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		/*
*0f4c859eSApple OSS Distributions		 * APPLE NOTE: We have linker support when creating DOF to handle all relocations for us.
*0f4c859eSApple OSS Distributions		 * Unfortunately, a side effect of this is that the relocations do not point at exactly
*0f4c859eSApple OSS Distributions		 * the location we want. We need to fix up the addresses here. The fixups vary by arch and type.
*0f4c859eSApple OSS Distributions		 */
*0f4c859eSApple OSS Distributions#if defined(__x86_64__)
*0f4c859eSApple OSS Distributions		/*
*0f4c859eSApple OSS Distributions		 * Both 32 & 64 bit want to go back one byte, to point at the first NOP
*0f4c859eSApple OSS Distributions		 */
*0f4c859eSApple OSS Distributions		tp->ftt_pc = dhpb->dthpb_base + (int64_t)dhpb->dthpb_offs[i] - 1;
*0f4c859eSApple OSS Distributions#elif defined(__arm64__)
*0f4c859eSApple OSS Distributions		/*
*0f4c859eSApple OSS Distributions		 * All ARM and ARM64 probes are zero offset. We need to zero out the
*0f4c859eSApple OSS Distributions		 * thumb bit because we still support 32bit user processes.
*0f4c859eSApple OSS Distributions		 * On 64bit user processes, bit zero won't be set anyway.
*0f4c859eSApple OSS Distributions		 */
*0f4c859eSApple OSS Distributions		tp->ftt_pc = (dhpb->dthpb_base + (int64_t)dhpb->dthpb_offs[i]) & ~0x1UL;
*0f4c859eSApple OSS Distributions		tp->ftt_fntype = FASTTRAP_FN_USDT;
*0f4c859eSApple OSS Distributions#else
*0f4c859eSApple OSS Distributions#error "Architecture not supported"
*0f4c859eSApple OSS Distributions#endif
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		tp->ftt_pid = provider->ftp_pid;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		pp->ftp_tps[i].fit_tp = tp;
*0f4c859eSApple OSS Distributions		pp->ftp_tps[i].fit_id.fti_probe = pp;
*0f4c859eSApple OSS Distributions		pp->ftp_tps[i].fit_id.fti_ptype = DTFTP_OFFSETS;
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * Then create a tracepoint for each is-enabled point.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	for (j = 0; i < ntps; i++, j++) {
*0f4c859eSApple OSS Distributions		tp = zalloc_flags(fasttrap_tracepoint_t_zone, Z_WAITOK | Z_ZERO);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		tp->ftt_proc = provider->ftp_proc;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		/*
*0f4c859eSApple OSS Distributions		 * APPLE NOTE: We have linker support when creating DOF to handle all relocations for us.
*0f4c859eSApple OSS Distributions		 * Unfortunately, a side effect of this is that the relocations do not point at exactly
*0f4c859eSApple OSS Distributions		 * the location we want. We need to fix up the addresses here. The fixups vary by arch and type.
*0f4c859eSApple OSS Distributions		 */
*0f4c859eSApple OSS Distributions#if defined(__x86_64__)
*0f4c859eSApple OSS Distributions		/*
*0f4c859eSApple OSS Distributions		 * Both 32 & 64 bit want to go forward two bytes, to point at a single byte nop.
*0f4c859eSApple OSS Distributions		 */
*0f4c859eSApple OSS Distributions		tp->ftt_pc = dhpb->dthpb_base + (int64_t)dhpb->dthpb_enoffs[j] + 2;
*0f4c859eSApple OSS Distributions#elif defined(__arm64__)
*0f4c859eSApple OSS Distributions		/*
*0f4c859eSApple OSS Distributions		 * All ARM and ARM64 probes are zero offset. We need to zero out the
*0f4c859eSApple OSS Distributions		 * thumb bit because we still support 32bit user processes.
*0f4c859eSApple OSS Distributions		 * On 64bit user processes, bit zero won't be set anyway.
*0f4c859eSApple OSS Distributions		 */
*0f4c859eSApple OSS Distributions		tp->ftt_pc = (dhpb->dthpb_base + (int64_t)dhpb->dthpb_enoffs[j]) & ~0x1UL;
*0f4c859eSApple OSS Distributions		tp->ftt_fntype = FASTTRAP_FN_USDT;
*0f4c859eSApple OSS Distributions#else
*0f4c859eSApple OSS Distributions#error "Architecture not supported"
*0f4c859eSApple OSS Distributions#endif
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		tp->ftt_pid = provider->ftp_pid;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		pp->ftp_tps[i].fit_tp = tp;
*0f4c859eSApple OSS Distributions		pp->ftp_tps[i].fit_id.fti_probe = pp;
*0f4c859eSApple OSS Distributions		pp->ftp_tps[i].fit_id.fti_ptype = DTFTP_IS_ENABLED;
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * If the arguments are shuffled around we set the argument remapping
*0f4c859eSApple OSS Distributions	 * table. Later, when the probe fires, we only remap the arguments
*0f4c859eSApple OSS Distributions	 * if the table is non-NULL.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	for (i = 0; i < dhpb->dthpb_xargc; i++) {
*0f4c859eSApple OSS Distributions		if (dhpb->dthpb_args[i] != i) {
*0f4c859eSApple OSS Distributions			pp->ftp_argmap = dhpb->dthpb_args;
*0f4c859eSApple OSS Distributions			break;
*0f4c859eSApple OSS Distributions		}
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * The probe is fully constructed -- register it with DTrace.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	pp->ftp_id = dtrace_probe_create(provider->ftp_provid, dhpb->dthpb_mod,
*0f4c859eSApple OSS Distributions	    dhpb->dthpb_func, dhpb->dthpb_name, FASTTRAP_OFFSET_AFRAMES, pp);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	lck_mtx_unlock(&provider->ftp_cmtx);
*0f4c859eSApple OSS Distributions}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions/*ARGSUSED*/
*0f4c859eSApple OSS Distributionsstatic void
*0f4c859eSApple OSS Distributionsfasttrap_meta_remove(void *arg, dtrace_helper_provdesc_t *dhpv, proc_t *p)
*0f4c859eSApple OSS Distributions{
*0f4c859eSApple OSS Distributions#pragma unused(arg)
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * Clean up the USDT provider. There may be active consumers of the
*0f4c859eSApple OSS Distributions	 * provider busy adding probes, no damage will actually befall the
*0f4c859eSApple OSS Distributions	 * provider until that count has dropped to zero. This just puts
*0f4c859eSApple OSS Distributions	 * the provider on death row.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	fasttrap_provider_retire(p, dhpv->dthpv_provname, 1);
*0f4c859eSApple OSS Distributions}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributionsstatic char*
*0f4c859eSApple OSS Distributionsfasttrap_meta_provider_name(void *arg)
*0f4c859eSApple OSS Distributions{
*0f4c859eSApple OSS Distributions	fasttrap_provider_t *fprovider = arg;
*0f4c859eSApple OSS Distributions	dtrace_provider_t *provider = (dtrace_provider_t*)(fprovider->ftp_provid);
*0f4c859eSApple OSS Distributions	return provider->dtpv_name;
*0f4c859eSApple OSS Distributions}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributionsstatic dtrace_mops_t fasttrap_mops = {
*0f4c859eSApple OSS Distributions	.dtms_create_probe =	fasttrap_meta_create_probe,
*0f4c859eSApple OSS Distributions	.dtms_provide_proc =	fasttrap_meta_provide,
*0f4c859eSApple OSS Distributions	.dtms_remove_proc =	fasttrap_meta_remove,
*0f4c859eSApple OSS Distributions	.dtms_provider_name =	fasttrap_meta_provider_name
*0f4c859eSApple OSS Distributions};
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions/*
*0f4c859eSApple OSS Distributions * Validate a null-terminated string. If str is not null-terminated,
*0f4c859eSApple OSS Distributions * or not a UTF8 valid string, the function returns -1. Otherwise, 0 is
*0f4c859eSApple OSS Distributions * returned.
*0f4c859eSApple OSS Distributions *
*0f4c859eSApple OSS Distributions * str: string to validate.
*0f4c859eSApple OSS Distributions * maxlen: maximal length of the string, null-terminated byte included.
*0f4c859eSApple OSS Distributions */
*0f4c859eSApple OSS Distributionsstatic int
*0f4c859eSApple OSS Distributionsfasttrap_validatestr(char const* str, size_t maxlen) {
*0f4c859eSApple OSS Distributions	size_t len;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	assert(str);
*0f4c859eSApple OSS Distributions	assert(maxlen != 0);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/* Check if the string is null-terminated. */
*0f4c859eSApple OSS Distributions	len = strnlen(str, maxlen);
*0f4c859eSApple OSS Distributions	if (len >= maxlen)
*0f4c859eSApple OSS Distributions		return -1;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/* Finally, check for UTF8 validity. */
*0f4c859eSApple OSS Distributions	return utf8_validatestr((unsigned const char*) str, len);
*0f4c859eSApple OSS Distributions}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions/*
*0f4c859eSApple OSS Distributions * Checks that provided credentials are allowed to debug target process.
*0f4c859eSApple OSS Distributions */
*0f4c859eSApple OSS Distributionsstatic int
*0f4c859eSApple OSS Distributionsfasttrap_check_cred_priv(cred_t *cr, proc_t *p)
*0f4c859eSApple OSS Distributions{
*0f4c859eSApple OSS Distributions	int err = 0;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/* Only root can use DTrace. */
*0f4c859eSApple OSS Distributions	if (!kauth_cred_issuser(cr)) {
*0f4c859eSApple OSS Distributions		err = EPERM;
*0f4c859eSApple OSS Distributions		goto out;
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/* Process is marked as no attach. */
*0f4c859eSApple OSS Distributions	if (ISSET(p->p_lflag, P_LNOATTACH)) {
*0f4c859eSApple OSS Distributions		err = EBUSY;
*0f4c859eSApple OSS Distributions		goto out;
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions#if CONFIG_MACF
*0f4c859eSApple OSS Distributions	/* Check with MAC framework when enabled. */
*0f4c859eSApple OSS Distributions	struct proc_ident cur_ident = proc_ident(current_proc());
*0f4c859eSApple OSS Distributions	struct proc_ident p_ident = proc_ident(p);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/* Do not hold ref to proc here to avoid deadlock. */
*0f4c859eSApple OSS Distributions	proc_rele(p);
*0f4c859eSApple OSS Distributions	err = mac_proc_check_debug(&cur_ident, cr, &p_ident);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	if (proc_find_ident(&p_ident) == PROC_NULL) {
*0f4c859eSApple OSS Distributions		err = ESRCH;
*0f4c859eSApple OSS Distributions		goto out_no_proc;
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions#endif /* CONFIG_MACF */
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributionsout:
*0f4c859eSApple OSS Distributions	proc_rele(p);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributionsout_no_proc:
*0f4c859eSApple OSS Distributions	return err;
*0f4c859eSApple OSS Distributions}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions/*ARGSUSED*/
*0f4c859eSApple OSS Distributionsstatic int
*0f4c859eSApple OSS Distributionsfasttrap_ioctl(dev_t dev, u_long cmd, user_addr_t arg, int md, cred_t *cr, int *rv)
*0f4c859eSApple OSS Distributions{
*0f4c859eSApple OSS Distributions#pragma unused(dev, md, rv)
*0f4c859eSApple OSS Distributions	if (!dtrace_attached())
*0f4c859eSApple OSS Distributions		return (EAGAIN);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	if (cmd == FASTTRAPIOC_MAKEPROBE) {
*0f4c859eSApple OSS Distributions		fasttrap_probe_spec_t *probe;
*0f4c859eSApple OSS Distributions		uint64_t noffs;
*0f4c859eSApple OSS Distributions		size_t size;
*0f4c859eSApple OSS Distributions		int ret;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		if (copyin(arg + __offsetof(fasttrap_probe_spec_t, ftps_noffs), &noffs,
*0f4c859eSApple OSS Distributions		    sizeof (probe->ftps_noffs)))
*0f4c859eSApple OSS Distributions			return (EFAULT);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		/*
*0f4c859eSApple OSS Distributions		 * Probes must have at least one tracepoint.
*0f4c859eSApple OSS Distributions		 */
*0f4c859eSApple OSS Distributions		if (noffs == 0)
*0f4c859eSApple OSS Distributions			return (EINVAL);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		/*
*0f4c859eSApple OSS Distributions		 * We want to check the number of noffs before doing
*0f4c859eSApple OSS Distributions		 * sizing math, to prevent potential buffer overflows.
*0f4c859eSApple OSS Distributions		 */
*0f4c859eSApple OSS Distributions		if (noffs > ((1024 * 1024) - sizeof(fasttrap_probe_spec_t)) / sizeof(probe->ftps_offs[0]))
*0f4c859eSApple OSS Distributions			return (ENOMEM);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		size = sizeof (fasttrap_probe_spec_t) +
*0f4c859eSApple OSS Distributions		    sizeof (probe->ftps_offs[0]) * (noffs - 1);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		probe = kmem_alloc(size, KM_SLEEP);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		if (copyin(arg, probe, size) != 0 ||
*0f4c859eSApple OSS Distributions		    probe->ftps_noffs != noffs) {
*0f4c859eSApple OSS Distributions			kmem_free(probe, size);
*0f4c859eSApple OSS Distributions			return (EFAULT);
*0f4c859eSApple OSS Distributions		}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		/*
*0f4c859eSApple OSS Distributions		 * Verify that the function and module strings contain no
*0f4c859eSApple OSS Distributions		 * funny characters.
*0f4c859eSApple OSS Distributions		 */
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		if (fasttrap_validatestr(probe->ftps_func, sizeof(probe->ftps_func)) != 0) {
*0f4c859eSApple OSS Distributions			ret = EINVAL;
*0f4c859eSApple OSS Distributions			goto err;
*0f4c859eSApple OSS Distributions		}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		if (fasttrap_validatestr(probe->ftps_mod, sizeof(probe->ftps_mod)) != 0) {
*0f4c859eSApple OSS Distributions			ret = EINVAL;
*0f4c859eSApple OSS Distributions			goto err;
*0f4c859eSApple OSS Distributions		}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		if (!PRIV_POLICY_CHOICE(cr, PRIV_ALL, B_FALSE)) {
*0f4c859eSApple OSS Distributions			proc_t *p;
*0f4c859eSApple OSS Distributions			pid_t pid = probe->ftps_pid;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions			/*
*0f4c859eSApple OSS Distributions			 * Report an error if the process doesn't exist
*0f4c859eSApple OSS Distributions			 * or is actively being birthed.
*0f4c859eSApple OSS Distributions			 */
*0f4c859eSApple OSS Distributions			if ((p = proc_find(pid)) == PROC_NULL || p->p_stat == SIDL) {
*0f4c859eSApple OSS Distributions				if (p != PROC_NULL)
*0f4c859eSApple OSS Distributions					proc_rele(p);
*0f4c859eSApple OSS Distributions				ret = ESRCH;
*0f4c859eSApple OSS Distributions				goto err;
*0f4c859eSApple OSS Distributions			}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions			ret = fasttrap_check_cred_priv(cr, p);
*0f4c859eSApple OSS Distributions			if (ret != 0) {
*0f4c859eSApple OSS Distributions				goto err;
*0f4c859eSApple OSS Distributions			}
*0f4c859eSApple OSS Distributions		}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		ret = fasttrap_add_probe(probe);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributionserr:
*0f4c859eSApple OSS Distributions		kmem_free(probe, size);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		return (ret);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	} else if (cmd == FASTTRAPIOC_GETINSTR) {
*0f4c859eSApple OSS Distributions		fasttrap_instr_query_t instr;
*0f4c859eSApple OSS Distributions		fasttrap_tracepoint_t *tp;
*0f4c859eSApple OSS Distributions		uint_t index;
*0f4c859eSApple OSS Distributions		int ret;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		if (copyin(arg, &instr, sizeof (instr)) != 0)
*0f4c859eSApple OSS Distributions			return (EFAULT);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		if (!PRIV_POLICY_CHOICE(cr, PRIV_ALL, B_FALSE)) {
*0f4c859eSApple OSS Distributions			proc_t *p;
*0f4c859eSApple OSS Distributions			pid_t pid = instr.ftiq_pid;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions			/*
*0f4c859eSApple OSS Distributions			 * Report an error if the process doesn't exist
*0f4c859eSApple OSS Distributions			 * or is actively being birthed.
*0f4c859eSApple OSS Distributions			 */
*0f4c859eSApple OSS Distributions			if ((p = proc_find(pid)) == NULL || p->p_stat == SIDL) {
*0f4c859eSApple OSS Distributions				if (p != PROC_NULL)
*0f4c859eSApple OSS Distributions					proc_rele(p);
*0f4c859eSApple OSS Distributions				return (ESRCH);
*0f4c859eSApple OSS Distributions			}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions			ret = fasttrap_check_cred_priv(cr, p);
*0f4c859eSApple OSS Distributions			if (ret != 0) {
*0f4c859eSApple OSS Distributions				return (ret);
*0f4c859eSApple OSS Distributions			}
*0f4c859eSApple OSS Distributions		}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		index = FASTTRAP_TPOINTS_INDEX(instr.ftiq_pid, instr.ftiq_pc);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		lck_mtx_lock(&fasttrap_tpoints.fth_table[index].ftb_mtx);
*0f4c859eSApple OSS Distributions		tp = fasttrap_tpoints.fth_table[index].ftb_data;
*0f4c859eSApple OSS Distributions		while (tp != NULL) {
*0f4c859eSApple OSS Distributions			if (instr.ftiq_pid == tp->ftt_pid &&
*0f4c859eSApple OSS Distributions			    instr.ftiq_pc == tp->ftt_pc &&
*0f4c859eSApple OSS Distributions			    tp->ftt_proc->ftpc_acount != 0)
*0f4c859eSApple OSS Distributions				break;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions			tp = tp->ftt_next;
*0f4c859eSApple OSS Distributions		}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		if (tp == NULL) {
*0f4c859eSApple OSS Distributions			lck_mtx_unlock(&fasttrap_tpoints.fth_table[index].ftb_mtx);
*0f4c859eSApple OSS Distributions			return (ENOENT);
*0f4c859eSApple OSS Distributions		}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		bcopy(&tp->ftt_instr, &instr.ftiq_instr,
*0f4c859eSApple OSS Distributions		    sizeof (instr.ftiq_instr));
*0f4c859eSApple OSS Distributions		lck_mtx_unlock(&fasttrap_tpoints.fth_table[index].ftb_mtx);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		if (copyout(&instr, arg, sizeof (instr)) != 0)
*0f4c859eSApple OSS Distributions			return (EFAULT);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		return (0);
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	return (EINVAL);
*0f4c859eSApple OSS Distributions}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributionsstatic void
*0f4c859eSApple OSS Distributionsfasttrap_attach(void)
*0f4c859eSApple OSS Distributions{
*0f4c859eSApple OSS Distributions	ulong_t nent;
*0f4c859eSApple OSS Distributions	unsigned int i;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * Install our hooks into fork(2), exec(2), and exit(2).
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	dtrace_fasttrap_fork_ptr = &fasttrap_fork;
*0f4c859eSApple OSS Distributions	dtrace_fasttrap_exit_ptr = &fasttrap_exec_exit;
*0f4c859eSApple OSS Distributions	dtrace_fasttrap_exec_ptr = &fasttrap_exec_exit;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * APPLE NOTE:  We size the maximum number of fasttrap probes
*0f4c859eSApple OSS Distributions	 * based on system memory. 100k probes per 256M of system memory.
*0f4c859eSApple OSS Distributions	 * Yes, this is a WAG.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	fasttrap_max = (sane_size >> 28) * 100000;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	if (fasttrap_max == 0)
*0f4c859eSApple OSS Distributions		fasttrap_max = 50000;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	fasttrap_total = 0;
*0f4c859eSApple OSS Distributions	fasttrap_retired = 0;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * Conjure up the tracepoints hashtable...
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions#ifdef illumos
*0f4c859eSApple OSS Distributions	nent = ddi_getprop(DDI_DEV_T_ANY, devi, DDI_PROP_DONTPASS,
*0f4c859eSApple OSS Distributions	    "fasttrap-hash-size", FASTTRAP_TPOINTS_DEFAULT_SIZE);
*0f4c859eSApple OSS Distributions#else
*0f4c859eSApple OSS Distributions	nent = FASTTRAP_TPOINTS_DEFAULT_SIZE;
*0f4c859eSApple OSS Distributions#endif
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	if (nent <= 0 || nent > 0x1000000)
*0f4c859eSApple OSS Distributions		nent = FASTTRAP_TPOINTS_DEFAULT_SIZE;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	if ((nent & (nent - 1)) == 0)
*0f4c859eSApple OSS Distributions		fasttrap_tpoints.fth_nent = nent;
*0f4c859eSApple OSS Distributions	else
*0f4c859eSApple OSS Distributions		fasttrap_tpoints.fth_nent = 1 << fasttrap_highbit(nent);
*0f4c859eSApple OSS Distributions	ASSERT(fasttrap_tpoints.fth_nent > 0);
*0f4c859eSApple OSS Distributions	fasttrap_tpoints.fth_mask = fasttrap_tpoints.fth_nent - 1;
*0f4c859eSApple OSS Distributions	fasttrap_tpoints.fth_table = kmem_zalloc(fasttrap_tpoints.fth_nent *
*0f4c859eSApple OSS Distributions	    sizeof (fasttrap_bucket_t), KM_SLEEP);
*0f4c859eSApple OSS Distributions	ASSERT(fasttrap_tpoints.fth_table != NULL);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	for (i = 0; i < fasttrap_tpoints.fth_nent; i++) {
*0f4c859eSApple OSS Distributions		lck_mtx_init(&fasttrap_tpoints.fth_table[i].ftb_mtx, &fasttrap_lck_grp,
*0f4c859eSApple OSS Distributions		    &fasttrap_lck_attr);
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * ... and the providers hash table...
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	nent = FASTTRAP_PROVIDERS_DEFAULT_SIZE;
*0f4c859eSApple OSS Distributions	if ((nent & (nent - 1)) == 0)
*0f4c859eSApple OSS Distributions		fasttrap_provs.fth_nent = nent;
*0f4c859eSApple OSS Distributions	else
*0f4c859eSApple OSS Distributions		fasttrap_provs.fth_nent = 1 << fasttrap_highbit(nent);
*0f4c859eSApple OSS Distributions	ASSERT(fasttrap_provs.fth_nent > 0);
*0f4c859eSApple OSS Distributions	fasttrap_provs.fth_mask = fasttrap_provs.fth_nent - 1;
*0f4c859eSApple OSS Distributions	fasttrap_provs.fth_table = kmem_zalloc(fasttrap_provs.fth_nent *
*0f4c859eSApple OSS Distributions	    sizeof (fasttrap_bucket_t), KM_SLEEP);
*0f4c859eSApple OSS Distributions	ASSERT(fasttrap_provs.fth_table != NULL);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	for (i = 0; i < fasttrap_provs.fth_nent; i++) {
*0f4c859eSApple OSS Distributions		lck_mtx_init(&fasttrap_provs.fth_table[i].ftb_mtx, &fasttrap_lck_grp,
*0f4c859eSApple OSS Distributions		    &fasttrap_lck_attr);
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * ... and the procs hash table.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	nent = FASTTRAP_PROCS_DEFAULT_SIZE;
*0f4c859eSApple OSS Distributions	if ((nent & (nent - 1)) == 0)
*0f4c859eSApple OSS Distributions		fasttrap_procs.fth_nent = nent;
*0f4c859eSApple OSS Distributions	else
*0f4c859eSApple OSS Distributions		fasttrap_procs.fth_nent = 1 << fasttrap_highbit(nent);
*0f4c859eSApple OSS Distributions	ASSERT(fasttrap_procs.fth_nent > 0);
*0f4c859eSApple OSS Distributions	fasttrap_procs.fth_mask = fasttrap_procs.fth_nent - 1;
*0f4c859eSApple OSS Distributions	fasttrap_procs.fth_table = kmem_zalloc(fasttrap_procs.fth_nent *
*0f4c859eSApple OSS Distributions	    sizeof (fasttrap_bucket_t), KM_SLEEP);
*0f4c859eSApple OSS Distributions	ASSERT(fasttrap_procs.fth_table != NULL);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions#ifndef illumos
*0f4c859eSApple OSS Distributions	for (i = 0; i < fasttrap_procs.fth_nent; i++) {
*0f4c859eSApple OSS Distributions		lck_mtx_init(&fasttrap_procs.fth_table[i].ftb_mtx, &fasttrap_lck_grp,
*0f4c859eSApple OSS Distributions		    &fasttrap_lck_attr);
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions#endif
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	(void) dtrace_meta_register("fasttrap", &fasttrap_mops, NULL,
*0f4c859eSApple OSS Distributions	    &fasttrap_meta_id);
*0f4c859eSApple OSS Distributions}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributionsstatic int
*0f4c859eSApple OSS Distributions_fasttrap_open(dev_t dev, int flags, int devtype, struct proc *p)
*0f4c859eSApple OSS Distributions{
*0f4c859eSApple OSS Distributions#pragma unused(dev, flags, devtype, p)
*0f4c859eSApple OSS Distributions	return  0;
*0f4c859eSApple OSS Distributions}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributionsstatic int
*0f4c859eSApple OSS Distributions_fasttrap_ioctl(dev_t dev, u_long cmd, caddr_t data, int fflag, struct proc *p)
*0f4c859eSApple OSS Distributions{
*0f4c859eSApple OSS Distributions	int err, rv = 0;
*0f4c859eSApple OSS Distributions	user_addr_t uaddrp;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	if (proc_is64bit(p)) {
*0f4c859eSApple OSS Distributions		uaddrp = *(user_addr_t *)data;
*0f4c859eSApple OSS Distributions	} else {
*0f4c859eSApple OSS Distributions		uaddrp = (user_addr_t) *(uint32_t *)data;
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	err = fasttrap_ioctl(dev, cmd, uaddrp, fflag, CRED(), &rv);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions	/* XXX Darwin's BSD ioctls only return -1 or zero. Overload errno to mimic Solaris. 20 bits suffice. */
*0f4c859eSApple OSS Distributions	if (err != 0) {
*0f4c859eSApple OSS Distributions		ASSERT( (err & 0xfffff000) == 0 );
*0f4c859eSApple OSS Distributions		return (err & 0xfff); /* ioctl returns -1 and errno set to an error code < 4096 */
*0f4c859eSApple OSS Distributions	} else if (rv != 0) {
*0f4c859eSApple OSS Distributions		ASSERT( (rv & 0xfff00000) == 0 );
*0f4c859eSApple OSS Distributions		return (((rv & 0xfffff) << 12)); /* ioctl returns -1 and errno set to a return value >= 4096 */
*0f4c859eSApple OSS Distributions	} else
*0f4c859eSApple OSS Distributions		return 0;
*0f4c859eSApple OSS Distributions}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributionsstatic int fasttrap_inited = 0;
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions#define FASTTRAP_MAJOR  -24 /* let the kernel pick the device number */
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributionsstatic const struct cdevsw fasttrap_cdevsw =
*0f4c859eSApple OSS Distributions{
*0f4c859eSApple OSS Distributions	.d_open = _fasttrap_open,
*0f4c859eSApple OSS Distributions	.d_close = eno_opcl,
*0f4c859eSApple OSS Distributions	.d_read = eno_rdwrt,
*0f4c859eSApple OSS Distributions	.d_write = eno_rdwrt,
*0f4c859eSApple OSS Distributions	.d_ioctl = _fasttrap_ioctl,
*0f4c859eSApple OSS Distributions	.d_stop = eno_stop,
*0f4c859eSApple OSS Distributions	.d_reset = eno_reset,
*0f4c859eSApple OSS Distributions	.d_select = eno_select,
*0f4c859eSApple OSS Distributions	.d_mmap = eno_mmap,
*0f4c859eSApple OSS Distributions	.d_strategy = eno_strat,
*0f4c859eSApple OSS Distributions	.d_reserved_1 = eno_getc,
*0f4c859eSApple OSS Distributions	.d_reserved_2 = eno_putc,
*0f4c859eSApple OSS Distributions};
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributionsvoid fasttrap_init(void);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributionsvoid
*0f4c859eSApple OSS Distributionsfasttrap_init( void )
*0f4c859eSApple OSS Distributions{
*0f4c859eSApple OSS Distributions	/*
*0f4c859eSApple OSS Distributions	 * This method is now invoked from multiple places. Any open of /dev/dtrace,
*0f4c859eSApple OSS Distributions	 * also dtrace_init if the dtrace_dof_mode is DTRACE_DOF_MODE_NON_LAZY.
*0f4c859eSApple OSS Distributions	 *
*0f4c859eSApple OSS Distributions	 * The reason is to delay allocating the (rather large) resources as late as possible.
*0f4c859eSApple OSS Distributions	 */
*0f4c859eSApple OSS Distributions	if (!fasttrap_inited) {
*0f4c859eSApple OSS Distributions		int majdevno = cdevsw_add(FASTTRAP_MAJOR, &fasttrap_cdevsw);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		if (majdevno < 0) {
*0f4c859eSApple OSS Distributions			// FIX ME! What kind of error reporting to do here?
*0f4c859eSApple OSS Distributions			printf("fasttrap_init: failed to allocate a major number!\n");
*0f4c859eSApple OSS Distributions			return;
*0f4c859eSApple OSS Distributions		}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		dev_t device = makedev( (uint32_t)majdevno, 0 );
*0f4c859eSApple OSS Distributions		if (NULL == devfs_make_node( device, DEVFS_CHAR, UID_ROOT, GID_WHEEL, 0666, "fasttrap" )) {
*0f4c859eSApple OSS Distributions			return;
*0f4c859eSApple OSS Distributions		}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		/*
*0f4c859eSApple OSS Distributions		 * fasttrap_probe_t's are variable in size. We use an array of zones to
*0f4c859eSApple OSS Distributions		 * cover the most common sizes.
*0f4c859eSApple OSS Distributions		 */
*0f4c859eSApple OSS Distributions		int i;
*0f4c859eSApple OSS Distributions		for (i=1; i<FASTTRAP_PROBE_T_ZONE_MAX_TRACEPOINTS; i++) {
*0f4c859eSApple OSS Distributions			fasttrap_probe_t_zones[i] =
*0f4c859eSApple OSS Distributions			    zone_create(fasttrap_probe_t_zone_names[i],
*0f4c859eSApple OSS Distributions				    offsetof(fasttrap_probe_t, ftp_tps[i]), ZC_NONE);
*0f4c859eSApple OSS Distributions		}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		fasttrap_attach();
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		/*
*0f4c859eSApple OSS Distributions		 * Start the fasttrap cleanup thread
*0f4c859eSApple OSS Distributions		 */
*0f4c859eSApple OSS Distributions		kern_return_t res = kernel_thread_start_priority((thread_continue_t)fasttrap_pid_cleanup_cb, NULL, 46 /* BASEPRI_BACKGROUND */, &fasttrap_cleanup_thread);
*0f4c859eSApple OSS Distributions		if (res != KERN_SUCCESS) {
*0f4c859eSApple OSS Distributions			panic("Could not create fasttrap_cleanup_thread");
*0f4c859eSApple OSS Distributions		}
*0f4c859eSApple OSS Distributions		thread_set_thread_name(fasttrap_cleanup_thread, "dtrace_fasttrap_cleanup_thread");
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		fasttrap_retired_size = DEFAULT_RETIRED_SIZE;
*0f4c859eSApple OSS Distributions		fasttrap_retired_spec = kmem_zalloc(fasttrap_retired_size * sizeof(*fasttrap_retired_spec),
*0f4c859eSApple OSS Distributions					KM_SLEEP);
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions		fasttrap_inited = 1;
*0f4c859eSApple OSS Distributions	}
*0f4c859eSApple OSS Distributions}
*0f4c859eSApple OSS Distributions
*0f4c859eSApple OSS Distributions#undef FASTTRAP_MAJOR