From: "Edgar E. Iglesias" <edgar.iglesias@gmail.com>
To: Marc Zyngier <maz@kernel.org>
Cc: richard.henderson@linaro.org, qemu-devel@nongnu.org,
kvmarm@lists.cs.columbia.edu
Subject: Re: [PATCH 3/3] target/arm: Handle trapping to EL2 of AArch32 VMRS instructions
Date: Fri, 29 Nov 2019 09:28:06 +0100 [thread overview]
Message-ID: <20191129082806.GF29312@toto> (raw)
In-Reply-To: <20191128161718.24361-4-maz@kernel.org>
On Thu, Nov 28, 2019 at 04:17:18PM +0000, Marc Zyngier wrote:
> HCR_EL2.TID3 requires that AArch32 reads of MVFR[012] are trapped to
> EL2, and that HCR_EL2.TID0 does the same for reads of FPSID.
> In order to handle this, introduce a new TCG helper function that
> checks for these control bits before executing the VMRC instruction.
>
> Tested with a hacked-up version of KVM/arm64 that sets the control
> bits for 32bit guests.
>
> Signed-off-by: Marc Zyngier <maz@kernel.org>
> ---
> target/arm/helper-a64.h | 2 ++
> target/arm/internals.h | 8 ++++++++
> target/arm/translate-vfp.inc.c | 12 +++++++++---
> target/arm/vfp_helper.c | 27 +++++++++++++++++++++++++++
> 4 files changed, 46 insertions(+), 3 deletions(-)
>
> diff --git a/target/arm/helper-a64.h b/target/arm/helper-a64.h
> index a915c1247f..311ced44e6 100644
> --- a/target/arm/helper-a64.h
> +++ b/target/arm/helper-a64.h
> @@ -102,3 +102,5 @@ DEF_HELPER_FLAGS_3(autda, TCG_CALL_NO_WG, i64, env, i64, i64)
> DEF_HELPER_FLAGS_3(autdb, TCG_CALL_NO_WG, i64, env, i64, i64)
> DEF_HELPER_FLAGS_2(xpaci, TCG_CALL_NO_RWG_SE, i64, env, i64)
> DEF_HELPER_FLAGS_2(xpacd, TCG_CALL_NO_RWG_SE, i64, env, i64)
> +
> +DEF_HELPER_3(check_hcr_el2_trap, void, env, int, int)
> diff --git a/target/arm/internals.h b/target/arm/internals.h
> index f5313dd3d4..5a55e960de 100644
> --- a/target/arm/internals.h
> +++ b/target/arm/internals.h
> @@ -430,6 +430,14 @@ static inline uint32_t syn_simd_access_trap(int cv, int cond, bool is_16bit)
> | (cv << 24) | (cond << 20) | (1 << 5);
> }
>
> +static inline uint32_t syn_vmrs_trap(int rt, int reg)
> +{
> + return (EC_FPIDTRAP << ARM_EL_EC_SHIFT)
> + | ARM_EL_IL
> + | (1 << 24) | (0xe << 20) | (7 << 14)
> + | (reg << 10) | (rt << 5) | 1;
> +}
> +
> static inline uint32_t syn_sve_access_trap(void)
> {
> return EC_SVEACCESSTRAP << ARM_EL_EC_SHIFT;
> diff --git a/target/arm/translate-vfp.inc.c b/target/arm/translate-vfp.inc.c
> index 85c5ef897b..4c435b6c35 100644
> --- a/target/arm/translate-vfp.inc.c
> +++ b/target/arm/translate-vfp.inc.c
> @@ -759,15 +759,21 @@ static bool trans_VMSR_VMRS(DisasContext *s, arg_VMSR_VMRS *a)
> }
>
> if (a->l) {
> + TCGv_i32 tcg_rt, tcg_reg;
> +
> /* VMRS, move VFP special register to gp register */
> switch (a->reg) {
> + case ARM_VFP_MVFR0:
> + case ARM_VFP_MVFR1:
> + case ARM_VFP_MVFR2:
> case ARM_VFP_FPSID:
> + tcg_rt = tcg_const_i32(a->rt);
> + tcg_reg = tcg_const_i32(a->reg);
> + gen_helper_check_hcr_el2_trap(cpu_env, tcg_rt, tcg_reg);
> + /* fall through */
> case ARM_VFP_FPEXC:
> case ARM_VFP_FPINST:
> case ARM_VFP_FPINST2:
> - case ARM_VFP_MVFR0:
> - case ARM_VFP_MVFR1:
> - case ARM_VFP_MVFR2:
> tmp = load_cpu_field(vfp.xregs[a->reg]);
> break;
> case ARM_VFP_FPSCR:
> diff --git a/target/arm/vfp_helper.c b/target/arm/vfp_helper.c
> index 9710ef1c3e..44e538e51c 100644
> --- a/target/arm/vfp_helper.c
> +++ b/target/arm/vfp_helper.c
> @@ -1322,4 +1322,31 @@ float64 HELPER(frint64_d)(float64 f, void *fpst)
> return frint_d(f, fpst, 64);
> }
>
> +void HELPER(check_hcr_el2_trap)(CPUARMState *env, int rt, int reg)
> +{
> + if (arm_current_el(env) != 1) {
> + return;
> + }
I think we could move the EL1 check to translation time, couldn't we?
Other than that:
Reviewed-by: Edgar E. Iglesias <edgar.iglesias@xilinx.com>
> +
> + switch (reg) {
> + case ARM_VFP_MVFR0:
> + case ARM_VFP_MVFR1:
> + case ARM_VFP_MVFR2:
> + if (!(arm_hcr_el2_eff(env) & HCR_TID3)) {
> + return;
> + }
> + break;
> + case ARM_VFP_FPSID:
> + if (!(arm_hcr_el2_eff(env) & HCR_TID0)) {
> + return;
> + }
> + break;
> + default:
> + /* Shouldn't be here... */
> + return;
> + }
> +
> + raise_exception(env, EXCP_HYP_TRAP, syn_vmrs_trap(rt, reg), 2);
> +}
> +
> #endif
> --
> 2.20.1
>
>
_______________________________________________
kvmarm mailing list
kvmarm@lists.cs.columbia.edu
https://lists.cs.columbia.edu/mailman/listinfo/kvmarm
WARNING: multiple messages have this Message-ID (diff)
From: "Edgar E. Iglesias" <edgar.iglesias@gmail.com>
To: Marc Zyngier <maz@kernel.org>
Cc: Peter Maydell <peter.maydell@linaro.org>,
richard.henderson@linaro.org, qemu-devel@nongnu.org,
kvmarm@lists.cs.columbia.edu
Subject: Re: [PATCH 3/3] target/arm: Handle trapping to EL2 of AArch32 VMRS instructions
Date: Fri, 29 Nov 2019 09:28:06 +0100 [thread overview]
Message-ID: <20191129082806.GF29312@toto> (raw)
In-Reply-To: <20191128161718.24361-4-maz@kernel.org>
On Thu, Nov 28, 2019 at 04:17:18PM +0000, Marc Zyngier wrote:
> HCR_EL2.TID3 requires that AArch32 reads of MVFR[012] are trapped to
> EL2, and that HCR_EL2.TID0 does the same for reads of FPSID.
> In order to handle this, introduce a new TCG helper function that
> checks for these control bits before executing the VMRC instruction.
>
> Tested with a hacked-up version of KVM/arm64 that sets the control
> bits for 32bit guests.
>
> Signed-off-by: Marc Zyngier <maz@kernel.org>
> ---
> target/arm/helper-a64.h | 2 ++
> target/arm/internals.h | 8 ++++++++
> target/arm/translate-vfp.inc.c | 12 +++++++++---
> target/arm/vfp_helper.c | 27 +++++++++++++++++++++++++++
> 4 files changed, 46 insertions(+), 3 deletions(-)
>
> diff --git a/target/arm/helper-a64.h b/target/arm/helper-a64.h
> index a915c1247f..311ced44e6 100644
> --- a/target/arm/helper-a64.h
> +++ b/target/arm/helper-a64.h
> @@ -102,3 +102,5 @@ DEF_HELPER_FLAGS_3(autda, TCG_CALL_NO_WG, i64, env, i64, i64)
> DEF_HELPER_FLAGS_3(autdb, TCG_CALL_NO_WG, i64, env, i64, i64)
> DEF_HELPER_FLAGS_2(xpaci, TCG_CALL_NO_RWG_SE, i64, env, i64)
> DEF_HELPER_FLAGS_2(xpacd, TCG_CALL_NO_RWG_SE, i64, env, i64)
> +
> +DEF_HELPER_3(check_hcr_el2_trap, void, env, int, int)
> diff --git a/target/arm/internals.h b/target/arm/internals.h
> index f5313dd3d4..5a55e960de 100644
> --- a/target/arm/internals.h
> +++ b/target/arm/internals.h
> @@ -430,6 +430,14 @@ static inline uint32_t syn_simd_access_trap(int cv, int cond, bool is_16bit)
> | (cv << 24) | (cond << 20) | (1 << 5);
> }
>
> +static inline uint32_t syn_vmrs_trap(int rt, int reg)
> +{
> + return (EC_FPIDTRAP << ARM_EL_EC_SHIFT)
> + | ARM_EL_IL
> + | (1 << 24) | (0xe << 20) | (7 << 14)
> + | (reg << 10) | (rt << 5) | 1;
> +}
> +
> static inline uint32_t syn_sve_access_trap(void)
> {
> return EC_SVEACCESSTRAP << ARM_EL_EC_SHIFT;
> diff --git a/target/arm/translate-vfp.inc.c b/target/arm/translate-vfp.inc.c
> index 85c5ef897b..4c435b6c35 100644
> --- a/target/arm/translate-vfp.inc.c
> +++ b/target/arm/translate-vfp.inc.c
> @@ -759,15 +759,21 @@ static bool trans_VMSR_VMRS(DisasContext *s, arg_VMSR_VMRS *a)
> }
>
> if (a->l) {
> + TCGv_i32 tcg_rt, tcg_reg;
> +
> /* VMRS, move VFP special register to gp register */
> switch (a->reg) {
> + case ARM_VFP_MVFR0:
> + case ARM_VFP_MVFR1:
> + case ARM_VFP_MVFR2:
> case ARM_VFP_FPSID:
> + tcg_rt = tcg_const_i32(a->rt);
> + tcg_reg = tcg_const_i32(a->reg);
> + gen_helper_check_hcr_el2_trap(cpu_env, tcg_rt, tcg_reg);
> + /* fall through */
> case ARM_VFP_FPEXC:
> case ARM_VFP_FPINST:
> case ARM_VFP_FPINST2:
> - case ARM_VFP_MVFR0:
> - case ARM_VFP_MVFR1:
> - case ARM_VFP_MVFR2:
> tmp = load_cpu_field(vfp.xregs[a->reg]);
> break;
> case ARM_VFP_FPSCR:
> diff --git a/target/arm/vfp_helper.c b/target/arm/vfp_helper.c
> index 9710ef1c3e..44e538e51c 100644
> --- a/target/arm/vfp_helper.c
> +++ b/target/arm/vfp_helper.c
> @@ -1322,4 +1322,31 @@ float64 HELPER(frint64_d)(float64 f, void *fpst)
> return frint_d(f, fpst, 64);
> }
>
> +void HELPER(check_hcr_el2_trap)(CPUARMState *env, int rt, int reg)
> +{
> + if (arm_current_el(env) != 1) {
> + return;
> + }
I think we could move the EL1 check to translation time, couldn't we?
Other than that:
Reviewed-by: Edgar E. Iglesias <edgar.iglesias@xilinx.com>
> +
> + switch (reg) {
> + case ARM_VFP_MVFR0:
> + case ARM_VFP_MVFR1:
> + case ARM_VFP_MVFR2:
> + if (!(arm_hcr_el2_eff(env) & HCR_TID3)) {
> + return;
> + }
> + break;
> + case ARM_VFP_FPSID:
> + if (!(arm_hcr_el2_eff(env) & HCR_TID0)) {
> + return;
> + }
> + break;
> + default:
> + /* Shouldn't be here... */
> + return;
> + }
> +
> + raise_exception(env, EXCP_HYP_TRAP, syn_vmrs_trap(rt, reg), 2);
> +}
> +
> #endif
> --
> 2.20.1
>
>
next prev parent reply other threads:[~2019-11-29 8:28 UTC|newest]
Thread overview: 30+ messages / expand[flat|nested] mbox.gz Atom feed top
2019-11-28 16:17 [PATCH 0/3] target/arm: More HCR_EL2.TIDx fixes Marc Zyngier
2019-11-28 16:17 ` Marc Zyngier
2019-11-28 16:17 ` [PATCH 1/3] target/arm: Honor HCR_EL2.TID2 trapping requirements Marc Zyngier
2019-11-28 16:17 ` Marc Zyngier
2019-11-29 7:53 ` Edgar E. Iglesias
2019-11-29 7:53 ` Edgar E. Iglesias
2019-11-28 16:17 ` [PATCH 2/3] target/arm: Honor HCR_EL2.TID1 " Marc Zyngier
2019-11-28 16:17 ` Marc Zyngier
2019-11-29 8:00 ` Edgar E. Iglesias
2019-11-29 8:00 ` Edgar E. Iglesias
2019-11-28 16:17 ` [PATCH 3/3] target/arm: Handle trapping to EL2 of AArch32 VMRS instructions Marc Zyngier
2019-11-28 16:17 ` Marc Zyngier
2019-11-28 16:43 ` Peter Maydell
2019-11-28 16:43 ` Peter Maydell
2019-11-28 17:49 ` Marc Zyngier
2019-11-28 17:49 ` Marc Zyngier
2019-11-28 18:06 ` Peter Maydell
2019-11-28 18:06 ` Peter Maydell
2019-11-29 8:28 ` Edgar E. Iglesias [this message]
2019-11-29 8:28 ` Edgar E. Iglesias
2019-11-29 9:24 ` Marc Zyngier
2019-11-29 9:24 ` Marc Zyngier
2019-11-29 9:45 ` Edgar E. Iglesias
2019-11-29 9:45 ` Edgar E. Iglesias
2019-11-29 9:51 ` Peter Maydell
2019-11-29 9:51 ` Peter Maydell
2019-11-28 16:30 ` [PATCH 0/3] target/arm: More HCR_EL2.TIDx fixes Peter Maydell
2019-11-28 16:30 ` Peter Maydell
2019-11-28 16:35 ` Marc Zyngier
2019-11-28 16:35 ` Marc Zyngier
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20191129082806.GF29312@toto \
--to=edgar.iglesias@gmail.com \
--cc=kvmarm@lists.cs.columbia.edu \
--cc=maz@kernel.org \
--cc=qemu-devel@nongnu.org \
--cc=richard.henderson@linaro.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.