From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from bombadil.infradead.org (bombadil.infradead.org [198.137.202.133]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.lore.kernel.org (Postfix) with ESMTPS id 9A9A5D2FFE0 for ; Fri, 18 Oct 2024 09:51:11 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=lists.infradead.org; s=bombadil.20210309; h=Sender:List-Subscribe:List-Help :List-Post:List-Archive:List-Unsubscribe:List-Id:Content-Transfer-Encoding: Content-Type:MIME-Version:Message-ID:Date:References:In-Reply-To:Subject:Cc: To:From:Reply-To:Content-ID:Content-Description:Resent-Date:Resent-From: Resent-Sender:Resent-To:Resent-Cc:Resent-Message-ID:List-Owner; bh=6qAhYOjYwYnTUgJvVsGGd3RC/MiaDZR+oKlZB5tHMco=; b=VK1NQTugc5R/f0Qw5FWm7OUbjY mh3yaNUlBoUp7CnDqbSZdXaezb/izDY6TWAQq1R2ofl1Vy66i2IfsyY90NxPohTe24ZCfHILaFzHa 7/lk71KoW4zDRhvN0UEzpv0b4ic6dFepsTpP5xEnXgZELDvpYuhrnhBeDN76bZO9rD2r7DSj2YD7Z zgquYFT2taQpooa9d+uE8z5WsIJDxWtTnD/IMH8ESVPZFcVaVOz+uUVxeqnyYnEwqGNE+GQlum9Fu DaNzKKHsJnh4XBUBNqHQHmkBQbnxB8qO3doMEFfBw0Kvrl4y2dwHSvlxqF7UAOGSKoocvpiiAoixV sh0Db9PQ==; Received: from localhost ([::1] helo=bombadil.infradead.org) by bombadil.infradead.org with esmtp (Exim 4.98 #2 (Red Hat Linux)) id 1t1jdC-00000000FFC-3niV; Fri, 18 Oct 2024 09:50:50 +0000 Received: from mail-ed1-x52c.google.com ([2a00:1450:4864:20::52c]) by bombadil.infradead.org with esmtps (Exim 4.98 #2 (Red Hat Linux)) id 1t1jZA-00000000EsF-0NEV for linux-arm-kernel@lists.infradead.org; Fri, 18 Oct 2024 09:46:41 +0000 Received: by mail-ed1-x52c.google.com with SMTP id 4fb4d7f45d1cf-5c40aea5c40so3408221a12.0 for ; Fri, 18 Oct 2024 02:46:39 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=linaro.org; s=google; t=1729244798; x=1729849598; darn=lists.infradead.org; h=content-transfer-encoding:mime-version:message-id:date:user-agent :references:in-reply-to:subject:cc:to:from:from:to:cc:subject:date :message-id:reply-to; bh=6qAhYOjYwYnTUgJvVsGGd3RC/MiaDZR+oKlZB5tHMco=; b=Z/5cXSAaGmnFCdOpI5do1GyrMBu5KR3dh5wGIR5m1Aa0s6Otu4pcZ66CXxEE8ujCtm KJzyaP4zhBkNIGey5xpxIjfHmEiwMAWWKsH98n7X2uUZXnyyVHOS9VDOL5M8raQZuGDB gWNPRzPgzkVZ9O20TU15qQI8UC88u1jhnA10d46jqRpzfhOEg4UsTnEQmGX0JzuhR1hc Tuu1jlYASA/o4tTcLMjWL5XN5fQ4HLZQtDh3/ZVJbTomZVpU+7IftWejmrquOlmQzky1 JgCXWQMGhH/uMo5OucyCGSOwWJOKm+y86HhC8fhcIHPZl3ru7hEalPU0AXVMnGQWLam6 e2Zw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1729244798; x=1729849598; h=content-transfer-encoding:mime-version:message-id:date:user-agent :references:in-reply-to:subject:cc:to:from:x-gm-message-state:from :to:cc:subject:date:message-id:reply-to; bh=6qAhYOjYwYnTUgJvVsGGd3RC/MiaDZR+oKlZB5tHMco=; b=qmEUh+3iFS1CiNpJ9HiYhFFRQ4ankjb8X4eQRyxlao3KOLaWk3QT3rv+PvUwfZ4Zer nGRNUYviikubuJXYq9naCYonzAbZJ0e6JTNiyrk78PDShRFFVMCzCym4vFDD2XHOKBhe BPLgrTz/kYT0Oid+ZVcZTX5ulmyksG+qi83TmDIObr+EPMXoyqUD14rbxx/YmLjntrbx yeomU44iJKWpK9RA11yrfi73y/TPIU0QKTXVczQj476AhdWCMH+Tw6mQ3CybnT1SP1DV 4TaH0Zmc2bS6UQldonNSI+QX4+0zEmggSLQUqoswxwY+ZLtJdIm29hEbzIDoHWYHoMjw bekw== X-Forwarded-Encrypted: i=1; AJvYcCUoGA+opjeNY8vE7DJf/c4hmo6qceG9u6mPTGAkUQA+NkgfX3tAGhNh5p+GNxSlvFBjzM5RRcFLBLiPnPdjwLAM@lists.infradead.org X-Gm-Message-State: AOJu0Yy8SQiHcFgv6Hjw4WU2L90Q1NzdKo9iajpSa5LrhYCeUqZT5n+U lo2ZArhWUHrcwQlK/ahUOUVvrwf7/wb4Xe7uLy6oG8z9ZSbxjKl5qa5Pp8o40Vk= X-Google-Smtp-Source: AGHT+IFGBhEqaGJcgl5GIoQ9Q6A2WuElJLkh9++CZInNLyHznA6vWlThz5m+uvCvt8AmZx05e2VKzA== X-Received: by 2002:a05:6402:28ca:b0:5c9:46a7:527 with SMTP id 4fb4d7f45d1cf-5ca0b117cacmr1725253a12.17.1729244797647; Fri, 18 Oct 2024 02:46:37 -0700 (PDT) Received: from draig.lan ([85.9.250.243]) by smtp.gmail.com with ESMTPSA id 4fb4d7f45d1cf-5ca0b0ff6c1sm496118a12.93.2024.10.18.02.46.36 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Fri, 18 Oct 2024 02:46:37 -0700 (PDT) Received: from draig (localhost [IPv6:::1]) by draig.lan (Postfix) with ESMTP id 063C25F863; Fri, 18 Oct 2024 10:46:35 +0100 (BST) From: =?utf-8?Q?Alex_Benn=C3=A9e?= To: Naresh Kamboju Cc: open list , Linux ARM , qemu-devel@nongnu.org, lkft-triage@lists.linaro.org, Linux Regressions , Catalin Marinas , Mark Brown , Peter Maydell , Anders Roxell , Arnd Bergmann , Dan Carpenter , Aishwarya TCV , Richard Henderson Subject: Re: Qemu v9.0.2: Boot failed qemu-arm64 with Linux next-20241017 tag In-Reply-To: (Naresh Kamboju's message of "Fri, 18 Oct 2024 12:56:01 +0530") References: User-Agent: mu4e 1.12.6; emacs 29.4 Date: Fri, 18 Oct 2024 10:46:34 +0100 Message-ID: <871q0daglh.fsf@draig.linaro.org> MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable X-CRM114-Version: 20100106-BlameMichelson ( TRE 0.8.0 (BSD) ) MR-646709E3 X-CRM114-CacheID: sfid-20241018_024640_199769_8DF89DE3 X-CRM114-Status: GOOD ( 15.44 ) X-BeenThere: linux-arm-kernel@lists.infradead.org X-Mailman-Version: 2.1.34 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Sender: "linux-arm-kernel" Errors-To: linux-arm-kernel-bounces+linux-arm-kernel=archiver.kernel.org@lists.infradead.org Naresh Kamboju writes: > The QEMU-arm64 boot has failed with the Linux next-20241017 tag. > The boot log is incomplete, and no kernel crash was detected. > However, the system did not proceed far enough to reach the login prompt. > > Please find the incomplete boot log links below for your reference. > The Qemu version is 9.0.2. > The arm64 devices boot pass. Can confirm it also fails on the current master of QEMU: #0 __pthread_kill_implementation (threadid=3D, signo=3Dsi= gno@entry=3D6, no_tid=3Dno_tid@entry=3D0) at ./nptl/pthread_kill.c:44 #1 0x00007ffff4a3ae9f in __pthread_kill_internal (signo=3D6, threadid=3D= ) at ./nptl/pthread_kill.c:78 #2 0x00007ffff49ebfb2 in __GI_raise (sig=3Dsig@entry=3D6) at ../sysdeps/= posix/raise.c:26 #3 0x00007ffff49d6472 in __GI_abort () at ./stdlib/abort.c:79 #4 0x00007ffff6e47ec8 in () at /lib/x86_64-linux-gnu/libglib-2.0.so.0 #5 0x00007ffff6ea7e1a in g_assertion_message_expr () at /lib/x86_64-linu= x-gnu/libglib-2.0.so.0 #6 0x0000555555f45732 in regime_is_user (env=3D0x555557f805f0, mmu_idx= =3DARMMMUIdx_E10_0) at ../../target/arm/internals.h:978 #7 0x0000555555f5b0f1 in aa64_va_parameters (env=3D0x555557f805f0, va=3D= 18446744073709551615, mmu_idx=3DARMMMUIdx_E10_0, data=3Dtrue, el1_is_aa32= =3Dfalse) at ../../target/arm/helper.c:12048 #8 0x0000555555f4e3e5 in tlbi_aa64_get_range (env=3D0x555557f805f0, mmui= dx=3DARMMMUIdx_E10_0, value=3D107271103184929) at ../../target/arm/helper.c= :5214 #9 0x0000555555f4e5a4 in do_rvae_write (env=3D0x555557f805f0, value=3D10= 7271103184929, idxmap=3D21, synced=3Dtrue) at ../../target/arm/helper.c:5260 #10 0x0000555555f4e6d9 in tlbi_aa64_rvae1is_write (env=3D0x555557f805f0, = ri=3D0x555557ffda90, value=3D107271103184929) at ../../target/arm/helper.c:= 5302 #11 0x00005555560553c8 in helper_set_cp_reg64 (env=3D0x555557f805f0, rip= =3D0x555557ffda90, value=3D107271103184929) at ../../target/arm/tcg/op_help= er.c:965 #12 0x00007fff60fc3939 in code_gen_buffer () while with: ./qemu-system-aarch64 \ -machine type=3Dvirt,virtualization=3Don,gic-version=3D3,= mte=3Don \ -cpu max,pauth-impdef=3Don \ -smp 4 \ -accel tcg \ -serial mon:stdio \ -m 8192 \ -kernel /home/alex/lsrc/qemu.git/builds/all/Image -append= "root=3D/dev/sda2 console=3DttyAMA0 kvm-arm.mode=3Dprotected earlycon" \ -display none Specifically kvm-arm.mode=3Dprotected has to be on. With more detail I can see: (gdb) p/x value $1 =3D 0x619000000021 (gdb) p *ri $2 =3D {name =3D 0x555557ffdb28 "TLBI_RVAALE1IS", cp =3D 19 '\023', crn =3D= 8 '\b', crm =3D 2 '\002', opc0 =3D 1 '\001', opc1 =3D 0 '\000', opc2 =3D 7= '\a',=20 state =3D ARM_CP_STATE_AA64, type =3D 1024, access =3D PL1_W, secure =3D = ARM_CP_SECSTATE_NS, fgt =3D FGT_TLBIRVAALE1IS, nv2_redirect_offset =3D 0, o= paque =3D 0x0,=20 resetvalue =3D 0, fieldoffset =3D 0, bank_fieldoffsets =3D {0, 0}, access= fn =3D 0x555555f46703 , readfn =3D 0x0,=20 writefn =3D 0x555555f4e6a2 , raw_readfn =3D 0x0,= raw_writefn =3D 0x0, resetfn =3D 0x0, orig_readfn =3D 0x0, orig_writefn = =3D 0x0,=20 orig_accessfn =3D 0x0} It seems the asset fires because: case ARMMMUIdx_E10_0: case ARMMMUIdx_E10_1: case ARMMMUIdx_E10_1_PAN: g_assert_not_reached(); But the function: static int vae1_tlbmask(CPUARMState *env) { uint64_t hcr =3D arm_hcr_el2_eff(env); uint16_t mask; if ((hcr & (HCR_E2H | HCR_TGE)) =3D=3D (HCR_E2H | HCR_TGE)) { mask =3D ARMMMUIdxBit_E20_2 | ARMMMUIdxBit_E20_2_PAN | ARMMMUIdxBit_E20_0; } else { mask =3D ARMMMUIdxBit_E10_1 | ARMMMUIdxBit_E10_1_PAN | ARMMMUIdxBit_E10_0; } return mask; } returns that while handling tlbi_aa64_rvae1is_write(). I don't have an Arm ARM handy with me in the airport. Peter/Richard can you check what the logic should be and if this is a QEMU bug or the kernel doing something it shouldn't? --=20 Alex Benn=C3=A9e Virtualisation Tech Lead @ Linaro