* [PATCH v3 0/3] Fix MCE handling on AMD hosts
@ 2023-09-06 20:53 John Allen
2023-09-06 20:53 ` [PATCH v3 1/3] i386: Fix MCE support for " John Allen
` (2 more replies)
0 siblings, 3 replies; 7+ messages in thread
From: John Allen @ 2023-09-06 20:53 UTC (permalink / raw)
To: qemu-devel
Cc: yazen.ghannam, michael.roth, babu.moger, william.roche,
joao.m.martins, pbonzini, richard.henderson, eduardo, John Allen
In the event that a guest process attempts to access memory that has
been poisoned in response to a deferred uncorrected MCE, an AMD system
will currently generate a SIGBUS error which will result in the entire
guest being shutdown. Ideally, we only want to kill the guest process
that accessed poisoned memory in this case.
This support has been included in qemu for Intel hosts for a long time,
but there are a couple of changes needed for AMD hosts. First, we will
need to expose the SUCCOR cpuid bit to guests. Second, we need to modify
the MCE injection code to avoid Intel specific behavior when we are
running on an AMD host.
v2:
- Add "succor" feature word.
- Add case to kvm_arch_get_supported_cpuid for the SUCCOR feature.
v3:
- Reorder series. Only enable SUCCOR after bugs have been fixed.
- Introduce new patch ignoring AO errors.
John Allen (2):
i386: Fix MCE support for AMD hosts
i386: Add support for SUCCOR feature
William Roche (1):
i386: Explicitly ignore unsupported BUS_MCEERR_AO MCE on AMD guest
target/i386/cpu.c | 18 +++++++++++++++++-
target/i386/cpu.h | 4 ++++
target/i386/helper.c | 4 ++++
target/i386/kvm/kvm.c | 34 ++++++++++++++++++++++++----------
4 files changed, 49 insertions(+), 11 deletions(-)
--
2.39.3
^ permalink raw reply [flat|nested] 7+ messages in thread
* [PATCH v3 1/3] i386: Fix MCE support for AMD hosts
2023-09-06 20:53 [PATCH v3 0/3] Fix MCE handling on AMD hosts John Allen
@ 2023-09-06 20:53 ` John Allen
2023-09-06 20:53 ` [PATCH v3 2/3] i386: Explicitly ignore unsupported BUS_MCEERR_AO MCE on AMD guest John Allen
2023-09-06 20:53 ` [PATCH v3 3/3] i386: Add support for SUCCOR feature John Allen
2 siblings, 0 replies; 7+ messages in thread
From: John Allen @ 2023-09-06 20:53 UTC (permalink / raw)
To: qemu-devel
Cc: yazen.ghannam, michael.roth, babu.moger, william.roche,
joao.m.martins, pbonzini, richard.henderson, eduardo, John Allen
For the most part, AMD hosts can use the same MCE injection code as Intel but,
there are instances where the qemu implementation is Intel specific. First, MCE
deliviery works differently on AMD and does not support broadcast. Second,
kvm_mce_inject generates MCEs that include a number of Intel specific status
bits. Modify kvm_mce_inject to properly generate MCEs on AMD platforms.
Reported-by: William Roche <william.roche@oracle.com>
Signed-off-by: John Allen <john.allen@amd.com>
---
v3:
- Update to latest qemu code that introduces using MCG_STATUS_RIPV in the
case of a BUS_MCEERR_AR on a non-AMD machine.
---
target/i386/helper.c | 4 ++++
target/i386/kvm/kvm.c | 17 +++++++++++------
2 files changed, 15 insertions(+), 6 deletions(-)
diff --git a/target/i386/helper.c b/target/i386/helper.c
index 89aa696c6d..9547e2b09d 100644
--- a/target/i386/helper.c
+++ b/target/i386/helper.c
@@ -91,6 +91,10 @@ int cpu_x86_support_mca_broadcast(CPUX86State *env)
int family = 0;
int model = 0;
+ if (IS_AMD_CPU(env)) {
+ return 0;
+ }
+
cpu_x86_version(env, &family, &model);
if ((family == 6 && model >= 14) || family > 6) {
return 1;
diff --git a/target/i386/kvm/kvm.c b/target/i386/kvm/kvm.c
index 639a242ad8..5fce74aac5 100644
--- a/target/i386/kvm/kvm.c
+++ b/target/i386/kvm/kvm.c
@@ -590,16 +590,21 @@ static void kvm_mce_inject(X86CPU *cpu, hwaddr paddr, int code)
CPUState *cs = CPU(cpu);
CPUX86State *env = &cpu->env;
uint64_t status = MCI_STATUS_VAL | MCI_STATUS_UC | MCI_STATUS_EN |
- MCI_STATUS_MISCV | MCI_STATUS_ADDRV | MCI_STATUS_S;
+ MCI_STATUS_MISCV | MCI_STATUS_ADDRV;
uint64_t mcg_status = MCG_STATUS_MCIP;
int flags = 0;
- if (code == BUS_MCEERR_AR) {
- status |= MCI_STATUS_AR | 0x134;
- mcg_status |= MCG_STATUS_RIPV | MCG_STATUS_EIPV;
+ if (!IS_AMD_CPU(env)) {
+ status |= MCI_STATUS_S;
+ if (code == BUS_MCEERR_AR) {
+ status |= MCI_STATUS_AR | 0x134;
+ mcg_status |= MCG_STATUS_RIPV | MCG_STATUS_EIPV;
+ } else {
+ status |= 0xc0;
+ mcg_status |= MCG_STATUS_RIPV;
+ }
} else {
- status |= 0xc0;
- mcg_status |= MCG_STATUS_RIPV;
+ mcg_status |= MCG_STATUS_EIPV | MCG_STATUS_RIPV;
}
flags = cpu_x86_support_mca_broadcast(env) ? MCE_INJECT_BROADCAST : 0;
--
2.39.3
^ permalink raw reply related [flat|nested] 7+ messages in thread
* [PATCH v3 2/3] i386: Explicitly ignore unsupported BUS_MCEERR_AO MCE on AMD guest
2023-09-06 20:53 [PATCH v3 0/3] Fix MCE handling on AMD hosts John Allen
2023-09-06 20:53 ` [PATCH v3 1/3] i386: Fix MCE support for " John Allen
@ 2023-09-06 20:53 ` John Allen
2023-09-07 11:12 ` Gupta, Pankaj
2023-09-06 20:53 ` [PATCH v3 3/3] i386: Add support for SUCCOR feature John Allen
2 siblings, 1 reply; 7+ messages in thread
From: John Allen @ 2023-09-06 20:53 UTC (permalink / raw)
To: qemu-devel
Cc: yazen.ghannam, michael.roth, babu.moger, william.roche,
joao.m.martins, pbonzini, richard.henderson, eduardo
From: William Roche <william.roche@oracle.com>
AMD guests can't currently deal with BUS_MCEERR_AO MCE injection
as it panics the VM kernel. We filter this event and provide a
warning message.
Signed-off-by: William Roche <william.roche@oracle.com>
---
v3:
- New patch
---
target/i386/kvm/kvm.c | 13 ++++++++++---
1 file changed, 10 insertions(+), 3 deletions(-)
diff --git a/target/i386/kvm/kvm.c b/target/i386/kvm/kvm.c
index 5fce74aac5..4d42d3ed4c 100644
--- a/target/i386/kvm/kvm.c
+++ b/target/i386/kvm/kvm.c
@@ -604,6 +604,10 @@ static void kvm_mce_inject(X86CPU *cpu, hwaddr paddr, int code)
mcg_status |= MCG_STATUS_RIPV;
}
} else {
+ if (code == BUS_MCEERR_AO) {
+ /* XXX we don't support BUS_MCEERR_AO injection on AMD yet */
+ return;
+ }
mcg_status |= MCG_STATUS_EIPV | MCG_STATUS_RIPV;
}
@@ -655,7 +659,9 @@ void kvm_arch_on_sigbus_vcpu(CPUState *c, int code, void *addr)
if (ram_addr != RAM_ADDR_INVALID &&
kvm_physical_memory_addr_from_host(c->kvm_state, addr, &paddr)) {
kvm_hwpoison_page_add(ram_addr);
- kvm_mce_inject(cpu, paddr, code);
+ if (!IS_AMD_CPU(env) || code != BUS_MCEERR_AO) {
+ kvm_mce_inject(cpu, paddr, code);
+ }
/*
* Use different logging severity based on error type.
@@ -668,8 +674,9 @@ void kvm_arch_on_sigbus_vcpu(CPUState *c, int code, void *addr)
addr, paddr, "BUS_MCEERR_AR");
} else {
warn_report("Guest MCE Memory Error at QEMU addr %p and "
- "GUEST addr 0x%" HWADDR_PRIx " of type %s injected",
- addr, paddr, "BUS_MCEERR_AO");
+ "GUEST addr 0x%" HWADDR_PRIx " of type %s %s",
+ addr, paddr, "BUS_MCEERR_AO",
+ IS_AMD_CPU(env) ? "ignored on AMD guest" : "injected");
}
return;
--
2.39.3
^ permalink raw reply related [flat|nested] 7+ messages in thread
* [PATCH v3 3/3] i386: Add support for SUCCOR feature
2023-09-06 20:53 [PATCH v3 0/3] Fix MCE handling on AMD hosts John Allen
2023-09-06 20:53 ` [PATCH v3 1/3] i386: Fix MCE support for " John Allen
2023-09-06 20:53 ` [PATCH v3 2/3] i386: Explicitly ignore unsupported BUS_MCEERR_AO MCE on AMD guest John Allen
@ 2023-09-06 20:53 ` John Allen
2 siblings, 0 replies; 7+ messages in thread
From: John Allen @ 2023-09-06 20:53 UTC (permalink / raw)
To: qemu-devel
Cc: yazen.ghannam, michael.roth, babu.moger, william.roche,
joao.m.martins, pbonzini, richard.henderson, eduardo, John Allen
Add cpuid bit definition for the SUCCOR feature. This cpuid bit is required to
be exposed to guests to allow them to handle machine check exceptions on AMD
hosts.
Reported-by: William Roche <william.roche@oracle.com>
Reviewed-by: Joao Martins <joao.m.martins@oracle.com>
Signed-off-by: John Allen <john.allen@amd.com>
----
v2:
- Add "succor" feature word.
- Add case to kvm_arch_get_supported_cpuid for the SUCCOR feature.
---
target/i386/cpu.c | 18 +++++++++++++++++-
target/i386/cpu.h | 4 ++++
target/i386/kvm/kvm.c | 2 ++
3 files changed, 23 insertions(+), 1 deletion(-)
diff --git a/target/i386/cpu.c b/target/i386/cpu.c
index 00f913b638..d90d3a9489 100644
--- a/target/i386/cpu.c
+++ b/target/i386/cpu.c
@@ -1029,6 +1029,22 @@ FeatureWordInfo feature_word_info[FEATURE_WORDS] = {
.tcg_features = TCG_APM_FEATURES,
.unmigratable_flags = CPUID_APM_INVTSC,
},
+ [FEAT_8000_0007_EBX] = {
+ .type = CPUID_FEATURE_WORD,
+ .feat_names = {
+ NULL, "succor", NULL, NULL,
+ NULL, NULL, NULL, NULL,
+ NULL, NULL, NULL, NULL,
+ NULL, NULL, NULL, NULL,
+ NULL, NULL, NULL, NULL,
+ NULL, NULL, NULL, NULL,
+ NULL, NULL, NULL, NULL,
+ NULL, NULL, NULL, NULL,
+ },
+ .cpuid = { .eax = 0x80000007, .reg = R_EBX, },
+ .tcg_features = 0,
+ .unmigratable_flags = 0,
+ },
[FEAT_8000_0008_EBX] = {
.type = CPUID_FEATURE_WORD,
.feat_names = {
@@ -6554,7 +6570,7 @@ void cpu_x86_cpuid(CPUX86State *env, uint32_t index, uint32_t count,
break;
case 0x80000007:
*eax = 0;
- *ebx = 0;
+ *ebx = env->features[FEAT_8000_0007_EBX];
*ecx = 0;
*edx = env->features[FEAT_8000_0007_EDX];
break;
diff --git a/target/i386/cpu.h b/target/i386/cpu.h
index a6000e93bd..f5afc5e4fd 100644
--- a/target/i386/cpu.h
+++ b/target/i386/cpu.h
@@ -598,6 +598,7 @@ typedef enum FeatureWord {
FEAT_7_1_EAX, /* CPUID[EAX=7,ECX=1].EAX */
FEAT_8000_0001_EDX, /* CPUID[8000_0001].EDX */
FEAT_8000_0001_ECX, /* CPUID[8000_0001].ECX */
+ FEAT_8000_0007_EBX, /* CPUID[8000_0007].EBX */
FEAT_8000_0007_EDX, /* CPUID[8000_0007].EDX */
FEAT_8000_0008_EBX, /* CPUID[8000_0008].EBX */
FEAT_8000_0021_EAX, /* CPUID[8000_0021].EAX */
@@ -942,6 +943,9 @@ uint64_t x86_cpu_get_supported_feature_word(FeatureWord w,
/* Packets which contain IP payload have LIP values */
#define CPUID_14_0_ECX_LIP (1U << 31)
+/* RAS Features */
+#define CPUID_8000_0007_EBX_SUCCOR (1U << 1)
+
/* CLZERO instruction */
#define CPUID_8000_0008_EBX_CLZERO (1U << 0)
/* Always save/restore FP error pointers */
diff --git a/target/i386/kvm/kvm.c b/target/i386/kvm/kvm.c
index 4d42d3ed4c..0255863421 100644
--- a/target/i386/kvm/kvm.c
+++ b/target/i386/kvm/kvm.c
@@ -477,6 +477,8 @@ uint32_t kvm_arch_get_supported_cpuid(KVMState *s, uint32_t function,
*/
cpuid_1_edx = kvm_arch_get_supported_cpuid(s, 1, 0, R_EDX);
ret |= cpuid_1_edx & CPUID_EXT2_AMD_ALIASES;
+ } else if (function == 0x80000007 && reg == R_EBX) {
+ ret |= CPUID_8000_0007_EBX_SUCCOR;
} else if (function == KVM_CPUID_FEATURES && reg == R_EAX) {
/* kvm_pv_unhalt is reported by GET_SUPPORTED_CPUID, but it can't
* be enabled without the in-kernel irqchip
--
2.39.3
^ permalink raw reply related [flat|nested] 7+ messages in thread
* Re: [PATCH v3 2/3] i386: Explicitly ignore unsupported BUS_MCEERR_AO MCE on AMD guest
2023-09-06 20:53 ` [PATCH v3 2/3] i386: Explicitly ignore unsupported BUS_MCEERR_AO MCE on AMD guest John Allen
@ 2023-09-07 11:12 ` Gupta, Pankaj
2023-09-07 14:00 ` William Roche
0 siblings, 1 reply; 7+ messages in thread
From: Gupta, Pankaj @ 2023-09-07 11:12 UTC (permalink / raw)
To: John Allen, qemu-devel
Cc: yazen.ghannam, michael.roth, babu.moger, william.roche,
joao.m.martins, pbonzini, richard.henderson, eduardo
On 9/6/2023 10:53 PM, John Allen wrote:
> From: William Roche <william.roche@oracle.com>
>
> AMD guests can't currently deal with BUS_MCEERR_AO MCE injection
> as it panics the VM kernel. We filter this event and provide a
> warning message.
>
> Signed-off-by: William Roche <william.roche@oracle.com>
> ---
> v3:
> - New patch
> ---
> target/i386/kvm/kvm.c | 13 ++++++++++---
> 1 file changed, 10 insertions(+), 3 deletions(-)
>
> diff --git a/target/i386/kvm/kvm.c b/target/i386/kvm/kvm.c
> index 5fce74aac5..4d42d3ed4c 100644
> --- a/target/i386/kvm/kvm.c
> +++ b/target/i386/kvm/kvm.c
> @@ -604,6 +604,10 @@ static void kvm_mce_inject(X86CPU *cpu, hwaddr paddr, int code)
> mcg_status |= MCG_STATUS_RIPV;
> }
> } else {
> + if (code == BUS_MCEERR_AO) {
> + /* XXX we don't support BUS_MCEERR_AO injection on AMD yet */
> + return;
> + }
> mcg_status |= MCG_STATUS_EIPV | MCG_STATUS_RIPV;
> }
>
> @@ -655,7 +659,9 @@ void kvm_arch_on_sigbus_vcpu(CPUState *c, int code, void *addr)
> if (ram_addr != RAM_ADDR_INVALID &&
> kvm_physical_memory_addr_from_host(c->kvm_state, addr, &paddr)) {
> kvm_hwpoison_page_add(ram_addr);
> - kvm_mce_inject(cpu, paddr, code);
> + if (!IS_AMD_CPU(env) || code != BUS_MCEERR_AO) {
Isn't the 'optional' case we already handle inside kvm_mce_inject()?
So this check seems repetitive to me.
Thanks,
Pankaj
> + kvm_mce_inject(cpu, paddr, code);
> + }
>
> /*
> * Use different logging severity based on error type.
> @@ -668,8 +674,9 @@ void kvm_arch_on_sigbus_vcpu(CPUState *c, int code, void *addr)
> addr, paddr, "BUS_MCEERR_AR");
> } else {
> warn_report("Guest MCE Memory Error at QEMU addr %p and "
> - "GUEST addr 0x%" HWADDR_PRIx " of type %s injected",
> - addr, paddr, "BUS_MCEERR_AO");
> + "GUEST addr 0x%" HWADDR_PRIx " of type %s %s",
> + addr, paddr, "BUS_MCEERR_AO",
> + IS_AMD_CPU(env) ? "ignored on AMD guest" : "injected");
> }
>
> return;
^ permalink raw reply [flat|nested] 7+ messages in thread
* Re: [PATCH v3 2/3] i386: Explicitly ignore unsupported BUS_MCEERR_AO MCE on AMD guest
2023-09-07 11:12 ` Gupta, Pankaj
@ 2023-09-07 14:00 ` William Roche
2023-09-08 9:35 ` Gupta, Pankaj
0 siblings, 1 reply; 7+ messages in thread
From: William Roche @ 2023-09-07 14:00 UTC (permalink / raw)
To: Gupta, Pankaj, John Allen, qemu-devel
Cc: yazen.ghannam, michael.roth, babu.moger, joao.m.martins, pbonzini,
richard.henderson, eduardo
On 9/7/23 13:12, Gupta, Pankaj wrote:
>
>>
>> diff --git a/target/i386/kvm/kvm.c b/target/i386/kvm/kvm.c
>> index 5fce74aac5..4d42d3ed4c 100644
>> --- a/target/i386/kvm/kvm.c
>> +++ b/target/i386/kvm/kvm.c
>> @@ -604,6 +604,10 @@ static void kvm_mce_inject(X86CPU *cpu, hwaddr
>> paddr, int code)
>> mcg_status |= MCG_STATUS_RIPV;
>> }
>> } else {
>> + if (code == BUS_MCEERR_AO) {
>> + /* XXX we don't support BUS_MCEERR_AO injection on AMD
>> yet */
>> + return;
>> + }
>> mcg_status |= MCG_STATUS_EIPV | MCG_STATUS_RIPV;
>> }
>> @@ -655,7 +659,9 @@ void kvm_arch_on_sigbus_vcpu(CPUState *c, int
>> code, void *addr)
>> if (ram_addr != RAM_ADDR_INVALID &&
>> kvm_physical_memory_addr_from_host(c->kvm_state, addr,
>> &paddr)) {
>> kvm_hwpoison_page_add(ram_addr);
>> - kvm_mce_inject(cpu, paddr, code);
>> + if (!IS_AMD_CPU(env) || code != BUS_MCEERR_AO) {
>
> Isn't the 'optional' case we already handle inside kvm_mce_inject()?
> So this check seems repetitive to me.
You are right, it is repetitive, but can be considered as a reminder of
the situation and an explanation of the "ignored on AMD guest" message
later in this function.
Of course it can be removed if you think that the code is easier to read
without it. When the AMD BUS_MCEERR_AO support is integrated, both
locations would need to be cleared, but this sounds reasonable to me.
John, it's up to you.
William.
^ permalink raw reply [flat|nested] 7+ messages in thread
* Re: [PATCH v3 2/3] i386: Explicitly ignore unsupported BUS_MCEERR_AO MCE on AMD guest
2023-09-07 14:00 ` William Roche
@ 2023-09-08 9:35 ` Gupta, Pankaj
0 siblings, 0 replies; 7+ messages in thread
From: Gupta, Pankaj @ 2023-09-08 9:35 UTC (permalink / raw)
To: William Roche, John Allen, qemu-devel
Cc: yazen.ghannam, michael.roth, babu.moger, joao.m.martins, pbonzini,
richard.henderson, eduardo
>>> diff --git a/target/i386/kvm/kvm.c b/target/i386/kvm/kvm.c
>>> index 5fce74aac5..4d42d3ed4c 100644
>>> --- a/target/i386/kvm/kvm.c
>>> +++ b/target/i386/kvm/kvm.c
>>> @@ -604,6 +604,10 @@ static void kvm_mce_inject(X86CPU *cpu, hwaddr
>>> paddr, int code)
>>> mcg_status |= MCG_STATUS_RIPV;
>>> }
>>> } else {
>>> + if (code == BUS_MCEERR_AO) {
>>> + /* XXX we don't support BUS_MCEERR_AO injection on AMD
>>> yet */
>>> + return;
>>> + }
>>> mcg_status |= MCG_STATUS_EIPV | MCG_STATUS_RIPV;
>>> }
>>> @@ -655,7 +659,9 @@ void kvm_arch_on_sigbus_vcpu(CPUState *c, int
>>> code, void *addr)
>>> if (ram_addr != RAM_ADDR_INVALID &&
>>> kvm_physical_memory_addr_from_host(c->kvm_state, addr,
>>> &paddr)) {
>>> kvm_hwpoison_page_add(ram_addr);
>>> - kvm_mce_inject(cpu, paddr, code);
>>> + if (!IS_AMD_CPU(env) || code != BUS_MCEERR_AO) {
>>
>> Isn't the 'optional' case we already handle inside kvm_mce_inject()?
>> So this check seems repetitive to me.
>
> You are right, it is repetitive, but can be considered as a reminder of
> the situation and an explanation of the "ignored on AMD guest" message
> later in this function.
>
> Of course it can be removed if you think that the code is easier to read
> without it. When the AMD BUS_MCEERR_AO support is integrated, both
> locations would need to be cleared, but this sounds reasonable to me.
Yes, I think it helps to read the code better and less conditional.
Thanks,
Pankaj
>
> John, it's up to you.
>
> William.
^ permalink raw reply [flat|nested] 7+ messages in thread
end of thread, other threads:[~2023-09-08 9:36 UTC | newest]
Thread overview: 7+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2023-09-06 20:53 [PATCH v3 0/3] Fix MCE handling on AMD hosts John Allen
2023-09-06 20:53 ` [PATCH v3 1/3] i386: Fix MCE support for " John Allen
2023-09-06 20:53 ` [PATCH v3 2/3] i386: Explicitly ignore unsupported BUS_MCEERR_AO MCE on AMD guest John Allen
2023-09-07 11:12 ` Gupta, Pankaj
2023-09-07 14:00 ` William Roche
2023-09-08 9:35 ` Gupta, Pankaj
2023-09-06 20:53 ` [PATCH v3 3/3] i386: Add support for SUCCOR feature John Allen
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).