!9259 Fix CVE-2024-38588

	struct ftrace_page	*next;

	struct dyn_ftrace	*records;

	int			index;

	int			size;

	int			order;

};

#define ENTRY_SIZE sizeof(struct dyn_ftrace)

unsigned long ftrace_location_range(unsigned long start, unsigned long end)

{

	struct dyn_ftrace *rec;

	unsigned long ip = 0;

	rcu_read_lock();

	rec = lookup_rec(start, end);

	if (rec)

		return rec->ip;

		ip = rec->ip;

	rcu_read_unlock();

	return 0;

	return ip;

}

/**

	ftrace_number_of_groups++;

	cnt = (PAGE_SIZE << order) / ENTRY_SIZE;

	pg->size = cnt;

	pg->order = order;

	if (cnt > count)

		cnt = count;

	return cnt;

}

static void ftrace_free_pages(struct ftrace_page *pages)

{

	struct ftrace_page *pg = pages;

	while (pg) {

		if (pg->records) {

			free_pages((unsigned long)pg->records, pg->order);

			ftrace_number_of_pages -= 1 << pg->order;

		}

		pages = pg->next;

		kfree(pg);

		pg = pages;

		ftrace_number_of_groups--;

	}

}

static struct ftrace_page *

ftrace_allocate_pages(unsigned long num_to_init)

{

	struct ftrace_page *start_pg;

	struct ftrace_page *pg;

	int order;

	int cnt;

	if (!num_to_init)

	return start_pg;

 free_pages:

	pg = start_pg;

	while (pg) {

		order = get_count_order(pg->size / ENTRIES_PER_PAGE);

		if (order >= 0)

			free_pages((unsigned long)pg->records, order);

		start_pg = pg->next;

		kfree(pg);

		pg = start_pg;

		ftrace_number_of_pages -= 1 << order;

		ftrace_number_of_groups--;

	}

	ftrace_free_pages(start_pg);

	pr_info("ftrace: FAILED to allocate memory for functions\n");

	return NULL;

}

			       unsigned long *start,

			       unsigned long *end)

{

	struct ftrace_page *pg_unuse = NULL;

	struct ftrace_page *start_pg;

	struct ftrace_page *pg;

	struct dyn_ftrace *rec;

	unsigned long skipped = 0;

	unsigned long count;

	unsigned long *p;

	unsigned long addr;

	p = start;

	pg = start_pg;

	while (p < end) {

		unsigned long end_offset;

		addr = ftrace_call_adjust(*p++);

		/*

		 * Some architecture linkers will pad between

		 * object files to satisfy alignments.

		 * Skip any NULL pointers.

		 */

		if (!addr)

		if (!addr) {

			skipped++;

			continue;

		}

		if (pg->index == pg->size) {

		end_offset = (pg->index+1) * sizeof(pg->records[0]);

		if (end_offset > PAGE_SIZE << pg->order) {

			/* We should have allocated enough */

			if (WARN_ON(!pg->next))

				break;

		rec->ip = addr;

	}

	/* We should have used all pages */

	WARN_ON(pg->next);

	if (pg->next) {

		pg_unuse = pg->next;

		pg->next = NULL;

	}

	/* Assign the last page to ftrace_pages */

	ftrace_pages = pg;

 out:

	mutex_unlock(&ftrace_lock);

	/* We should have used all pages unless we skipped some */

	if (pg_unuse) {

		WARN_ON(!skipped);

		/* Need to synchronize with ftrace_location_range() */

		synchronize_rcu();

		ftrace_free_pages(pg_unuse);

	}

	return ret;

}

	struct ftrace_page **last_pg;

	struct ftrace_page *tmp_page = NULL;

	struct ftrace_page *pg;

	int order;

	mutex_lock(&ftrace_lock);

 out_unlock:

	mutex_unlock(&ftrace_lock);

	/* Need to synchronize with ftrace_location_range() */

	if (tmp_page)

		synchronize_rcu();

	for (pg = tmp_page; pg; pg = tmp_page) {

		/* Needs to be called outside of ftrace_lock */

		clear_mod_from_hashes(pg);

		order = get_count_order(pg->size / ENTRIES_PER_PAGE);

		if (order >= 0)

			free_pages((unsigned long)pg->records, order);

		if (pg->records) {

			free_pages((unsigned long)pg->records, pg->order);

			ftrace_number_of_pages -= 1 << pg->order;

		}

		tmp_page = pg->next;

		kfree(pg);

		ftrace_number_of_pages -= 1 << order;

		ftrace_number_of_groups--;

	}

}

	unsigned long start = (unsigned long)(start_ptr);

	unsigned long end = (unsigned long)(end_ptr);

	struct ftrace_page **last_pg = &ftrace_pages_start;

	struct ftrace_page *tmp_page = NULL;

	struct ftrace_page *pg;

	struct dyn_ftrace *rec;

	struct dyn_ftrace key;

	struct ftrace_mod_map *mod_map = NULL;

	struct ftrace_init_func *func, *func_next;

	struct list_head clear_hash;

	int order;

	INIT_LIST_HEAD(&clear_hash);

		ftrace_update_tot_cnt--;

		if (!pg->index) {

			*last_pg = pg->next;

			order = get_count_order(pg->size / ENTRIES_PER_PAGE);

			if (order >= 0)

				free_pages((unsigned long)pg->records, order);

			ftrace_number_of_pages -= 1 << order;

			ftrace_number_of_groups--;

			kfree(pg);

			pg->next = tmp_page;

			tmp_page = pg;

			pg = container_of(last_pg, struct ftrace_page, next);

			if (!(*last_pg))

				ftrace_pages = pg;

		clear_func_from_hashes(func);

		kfree(func);

	}

	/* Need to synchronize with ftrace_location_range() */

	if (tmp_page) {

		synchronize_rcu();

		ftrace_free_pages(tmp_page);

	}

}

void __init ftrace_free_init_mem(void)