From: Alireza Sanaee via qemu development <qemu-devel@nongnu.org>
To: Li Chen <me@linux.beauty>
Cc: Jonathan Cameron <jonathan.cameron@huawei.com>,
Fan Ni <fan.ni@samsung.com>, qemu-devel <qemu-devel@nongnu.org>,
linux-cxl <linux-cxl@vger.kernel.org>
Subject: Re: [PATCH 0/3] cxl: avoid KVM internal error for fixed memory windows
Date: Mon, 23 Mar 2026 09:51:31 +0000 [thread overview]
Message-ID: <20260323095131.00006fed.alireza.sanaee@huawei.com> (raw)
In-Reply-To: <19d1414db80.826e8bdb1235052.3769762728645896585@linux.beauty>
On Sun, 22 Mar 2026 13:46:44 +0800
Li Chen <me@linux.beauty> wrote:
Super!
> Hi Alireza,
>
> ---- On Wed, 18 Mar 2026 23:01:08 +0800 Alireza Sanaee <alireza.sanaee@huawei.com> wrote ---
> > On Tue, 17 Mar 2026 16:57:02 +0000
> > Jonathan Cameron <jonathan.cameron@huawei.com> wrote:
> >
> > Hi Li,
> >
> > It looks like what you achieved is quite similar to what I have done in the patchset Jonathan shared earlier.
> >
> > You have used memory_region_begin_transaction and memory_region_transaction_commit calls that I believe they are useful to be there given other examples I checked in the qemu code base.
> >
> > I will be using those calls and will send another version. Also, please let me know if that patchset actually addresses your usecase and fix the bug you have in the cover letter.
>
> Yes, exactly! Your patchset addresses my use case issue perfectly. Thank you very much for your effort!
>
> Regards,
> Li
>
> > Thanks,
> > Ali
> >
> > > On Tue, 17 Mar 2026 11:33:00 +0800
> > > Li Chen <me@linux.beauty> wrote:
> > >
> > > > CXL fixed memory windows are currently modeled as an I/O MemoryRegion.
> > > > When running under KVM, this makes the entire window look like MMIO.
> > > > If Linux onlines the window as system RAM (e.g. for a CXL Type-3
> > > > volatile memdev), normal CPU stores into the window trigger KVM
> > > > instruction emulation. Instructions like XSAVEC are not supported by
> > > > the emulator and abort the VM with a KVM internal error.
> > > >
> > > > Repro:
> > > > - Boot a guest with a CXL Type-3 volatile memdev and a fixed memory window.
> > > > - In the guest, create a RAM region and online it as system RAM:
> > > > cxl create-region -m -t ram -d decoder0.0 -w 1 -g 4096 mem0
> > > > - QEMU exits with a KVM internal error.
> > >
> > > Hi Li Chen,
> > >
> > > At least at first look this looks very like:
> > >
> > > https://lore.kernel.org/qemu-devel/20260306121151.883-1-alireza.sanaee@huawei.com/
> > >
> > > Which was ready for merge as far as I was concerned, but missed getting queued for
> > > 11.0 (as last PCI pull request had gone) and is currently ready to go in next cycle.
> > >
> > > Please see if that works for your case. If there are improvements I'd prefer
> > > to see them applied on top of that series than reinventing what I think
> > > is the same thing.
> > >
> > > It's not KVM specific as linear mappings (when valid) bring huge performance
> > > benefits on TCG as well as correctness for KVM.
> > >
> > > Jonathan
> > >
> > > +CC linux-cxl which is where CXL folk tend to hang out in larger numbers
> > > than on the qemu list.
> > >
> > >
> > >
> > > >
> > > > Serial output excerpt:
> > > > KVM internal error. Suberror: 1
> > > > extra data[0]: 0x0000000000000001
> > > > extra data[1]: 0xc0314061c70f480f
> > > > extra data[2]: 0x024080f610478b48
> > > > extra data[3]: 0x0000000000000400
> > > > extra data[4]: 0x000000010000000f
> > > > extra data[5]: 0x00000004a0003140
> > > > extra data[6]: 0x0000000000000000
> > > > extra data[7]: 0x0000000000000000
> > > > emulation failure
> > > > RAX=0000000000000007 RBX=ffff8eace0001a40 RCX=ffff8eace0003100 RDX=0000000000000000
> > > > RSI=0000000000000007 RDI=ffff8eace00030c0 RBP=ffffd48ac1747c08 RSP=ffffd48ac1747bc8
> > > > R8 =0000000000000007 R9 =0000000000000007 R10=000000000000000d R11=0000000000000000
> > > > R12=ffff8ea945b51a40 R13=ffffd48ac166c000 R14=0000000000000000 R15=0000000001200000
> > > > RIP=ffffffffaf77a14d RFL=00000256 [---ZAP-] CPL=0 II=0 A20=1 SMM=0 HLT=0
> > > > ES =0000 0000000000000000 00000000 00000000
> > > > CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
> > > > SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
> > > > DS =0000 0000000000000000 00000000 00000000
> > > > FS =0000 00007f997da3fec0 00000000 00000000
> > > > GS =0000 ffff8eab0535d000 00000000 00000000
> > > > LDT=0000 fffffe7600000000 00000000 00000000
> > > > TR =0040 fffffe767cf8f000 00004087 00008b00 DPL=0 TSS64-busy
> > > > GDT= fffffe767cf8d000 0000007f
> > > > IDT= fffffe0000000000 00000fff
> > > > CR0=80050033 CR2=000055fd193a6468 CR3=000000010930c000 CR4=00350ef0
> > > > DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
> > > > DR6=00000000ffff0ff0 DR7=0000000000000400
> > > > EFER=0000000000001d01
> > > > Code=0f 1f 44 00 00 48 8b 4f 10 48 8b 41 08 48 89 c2 48 c1 ea 20 <48> 0f c7 61 40 31 c0 48 8b 47 10 f6 80 40 02 00 00 c0 74 1e 48 8b 05 98 f8 e8 01 48 89 47
> > > >
> > > > This series keeps the existing MMIO dispatcher, but turns the fixed
> > > > window into a container and (when the window maps linearly to a Type-3
> > > > volatile memdev) overlays a RAM alias so KVM can create a memslot for
> > > > the range. The mapping is updated when HDM decoders are
> > > > committed/uncommitted by the guest.
> > > >
> > > > This patchset is based on master branch 559919ce54927d59b215a4665eda7ab6118a48aa
> > > >
> > > > Local validation on this base confirmed that the issue reproduces
> > > > without the series and is fixed with the 3 patches below.
> > > >
> > > > Li Chen (3):
> > > > cxl/type3: expose vmem mapping for fixed windows
> > > > cxl: alias fixed memory windows to RAM under KVM
> > > > cxl: update fixed window mappings on decoder programming
> > > >
> > > > hw/cxl/cxl-component-utils.c | 2 +
> > > > hw/cxl/cxl-host-stubs.c | 1 +
> > > > hw/cxl/cxl-host.c | 189 ++++++++++++++++++++++++++++++++++-
> > > > hw/mem/cxl_type3.c | 59 +++++++++++
> > > > include/hw/cxl/cxl.h | 5 +
> > > > include/hw/cxl/cxl_device.h | 3 +
> > > > include/hw/cxl/cxl_host.h | 1 +
> > > > 7 files changed, 258 insertions(+), 2 deletions(-)
> > > >
> > >
> >
> >
> Regards,
>
> Li
>
next prev parent reply other threads:[~2026-03-23 9:52 UTC|newest]
Thread overview: 9+ messages / expand[flat|nested] mbox.gz Atom feed top
2026-03-17 3:33 [PATCH 0/3] cxl: avoid KVM internal error for fixed memory windows Li Chen
2026-03-17 3:33 ` [PATCH 1/3] cxl/type3: expose vmem mapping for fixed windows Li Chen
2026-03-17 3:33 ` [PATCH 2/3] cxl: alias fixed memory windows to RAM under KVM Li Chen
2026-03-17 3:33 ` [PATCH 3/3] cxl: update fixed window mappings on decoder programming Li Chen
2026-03-17 16:57 ` [PATCH 0/3] cxl: avoid KVM internal error for fixed memory windows Jonathan Cameron via qemu development
2026-03-18 15:01 ` Alireza Sanaee via qemu development
2026-03-22 5:46 ` Li Chen
2026-03-23 9:51 ` Alireza Sanaee via qemu development [this message]
2026-03-22 5:49 ` Li Chen
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20260323095131.00006fed.alireza.sanaee@huawei.com \
--to=qemu-devel@nongnu.org \
--cc=alireza.sanaee@huawei.com \
--cc=fan.ni@samsung.com \
--cc=jonathan.cameron@huawei.com \
--cc=linux-cxl@vger.kernel.org \
--cc=me@linux.beauty \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox