From: BALATON Zoltan <balaton@eik.bme.hu>
To: KONRAD Frederic <frederic.konrad@adacore.com>
Cc: Francois Revol <revol@free.fr>,
qemu-ppc@nongnu.org, qemu-devel@nongnu.org,
David Gibson <david@gibson.dropbear.id.au>
Subject: Re: [Qemu-devel] [Qemu-ppc] BookE MMU question
Date: Sun, 20 Aug 2017 01:19:18 +0200 (CEST) [thread overview]
Message-ID: <alpine.BSF.2.21.1708200101080.95468@zero.eik.bme.hu> (raw)
In-Reply-To: <0e3383a1-33b5-8238-75e2-48e36b7daea4@adacore.com>
On Sun, 20 Aug 2017, KONRAD Frederic wrote:
> Hi,
>
> I think you need to go more in detail in what this map_region
> function does..
This function is defined in AROS/arch/ppc-sam440/kernel/mmu.c:95 at the
link below. I think it basically generates tlbwe instructions to set up a
TLB entry to map the region to a virtual address.
> eg: what is in the MAS registers before the tlbwe
> happen (checking field by field) and what is the tlb which is
> created / expected.
I don't know what MAS registers are. Is that specific to BOOKE206? The
PPC440 core in this board has POWERPC_MMU_BOOKE, not 206 but I don't know
what's the difference between these. The TLB entries before and after the
tlbwe instructions are logged below and I think TLB 0 should match the
address that is tried to be accessed (ff7fd648) but it fails and returns
refused. Does it ignore the new TLB entry just set for some reason?
> I got a pretty similar problem with a MAV V2 MMU and fixed size
> tlb.. But I don't think it affects your device.. I'm not totally
> sure though.
Do you have more info on this? Is it this patch: "booke206: fix tlbnps for
fixed size TLB"? Unfortunately I don't understand that code well enough to
tell if it's the same problem but your changes are specific to
mmu_booke206 so they won't fix this problem with mmu_booke for sure.
Thanks for the suggestions but I think I need more help with this.
>
> Fred
>
>
> On 08/18/2017 03:48 PM, BALATON Zoltan wrote:
>> Hello,
>>
>> While trying to get my recently posted Sam460ex emulation working (more
>> details on that here:
>> http://lists.nongnu.org/archive/html/qemu-ppc/2017-08/msg00112.html)
>> I'm stuck at a point with BookE MMU behaviour that seems to differ from
>> real hardware but I don't know much about it so I hope someone with more
>> knowledge can spot the problem or give some hints where to look for it.
>>
>> When trying to boot AROS it currently fails when mmu_init() is run from
>> https://github.com/ezrec/AROS-mirror/blob/ABI_V1/AROS/arch/ppc-sam440/kernel/mmu.c
>> (around line 273 I think).
>>
>> With a lot of debug enabled I see this:
>>
>> [KRN] MMU Init
>> [KRN] lowest = 007f74e8, base = 00800000, highest = 00c081f0
>> [KRN] Kernel size: 4128KB code, 34KB data
>> [KRN] Executing at ff841658, stack at ff7fd260, bss at ff7fd848, data at
>> ff7fffb8
>> [KRN] TLB0f: -I---rwxrwx 00000000 - 0fffffff : 00000000: 0:00000290
>> 1:00000000 2:0000043f
>> [KRN] TLB02: -I-G-rw-rw- 80000000 - 8fffffff : 80000000: 0:80000290
>> 1:8000000c 2:0000051b
>> [KRN] TLB03: -I-G-rw-rw- 90000000 - 9fffffff : 90000000: 0:90000290
>> 1:9000000c 2:0000051b
>> [KRN] TLB04: -I-G-rw-rw- a0000000 - afffffff : a0000000: 0:a0000290
>> 1:a000000d 2:0000051b
>> [KRN] TLB05: -I-G-rw-rw- b0000000 - bfffffff : b0000000: 0:b0000290
>> 1:b000000d 2:0000051b
>> [KRN] TLB06: -I-G-rw-rw- c0000000 - cfffffff : c0000000: 0:c0000290
>> 1:c000000d 2:0000051b
>> [KRN] TLB01: -I-G-rw-rw- d0000000 - dfffffff : 00000000: 0:d0000290
>> 1:0000000c 2:0000051b
>> [KRN] TLB07: -I-G-rw-rw- e0000000 - e0ffffff : 00000000: 0:e0000270
>> 1:0000000d 2:0000051b
>> [KRN] TLB08: -I-G-rw-rw- e1000000 - e1ffffff : 20000000: 0:e1000270
>> 1:2000000d 2:0000051b
>> [KRN] TLB0e: -I-G-rwxrwx e2000000 - e20fffff : bff00000: 0:e2000250
>> 1:bff00004 2:0000053f
>> [KRN] TLB09: -I-G-rw-rw- e3000000 - e30003ff : 10000000: 0:e3000200
>> 1:1000000d 2:0000051b
>> [KRN] TLB0a: -I-G-rw-rw- e3001000 - e30013ff : 30000000: 0:e3001200
>> 1:3000000d 2:0000051b
>> [KRN] TLB0b: -I-G-rw-rw- e4000000 - e4003fff : 08010000: 0:e4000220
>> 1:0801000c 2:0000051b
>> [KRN] TLB0c: -I---rwxrwx e5000000 - e50fffff : 00000000: 0:e5000250
>> 1:00000004 2:0000043f
>> [KRN] TLB0d: -I-G-rwxrwx ef000000 - efffffff : ef000000: 0:ef000270
>> 1:ef000004 2:0000053f
>> [KRN] TLB00: -I---rwxrwx ff000000 - ffffffff : 00000000: 0:ff000270
>> 1:00000000 2:0000043f
>> [KRN] map_region(007f7000, ff7f7000, 00009000, 081b):
>> [KRN] TLB00: 007f7000 - 007f7fff : ff7f7000 - ff7f7fff:
>>
>> helper_440_tlbwe word 0 entry 0 value ff7f7210
>> tlb_flush_nocheck: (count: 36)
>> helper_440_tlbwe word 1 entry 0 value 007f7000
>> tlb_flush_nocheck: (count: 37)
>> helper_440_tlbwe word 2 entry 0 value 0000081b
>> ppcemb_tlb_check: TLB 0 address ff7fd648 PID 0 <=> ff7f7000 fffff000 0 3b
>> mmubooke_check_tlb: TLB entry not found
>> ppcemb_tlb_check: TLB 1 address ff7fd648 PID 0 <=> d0000000 f0000000 0 3b
>> mmubooke_check_tlb: TLB entry not found
>> ppcemb_tlb_check: TLB 2 address ff7fd648 PID 0 <=> 80000000 f0000000 0 3b
>> mmubooke_check_tlb: TLB entry not found
>> ppcemb_tlb_check: TLB 3 address ff7fd648 PID 0 <=> 90000000 f0000000 0 3b
>> mmubooke_check_tlb: TLB entry not found
>> ppcemb_tlb_check: TLB 4 address ff7fd648 PID 0 <=> a0000000 f0000000 0 3b
>> mmubooke_check_tlb: TLB entry not found
>> ppcemb_tlb_check: TLB 5 address ff7fd648 PID 0 <=> b0000000 f0000000 0 3b
>> mmubooke_check_tlb: TLB entry not found
>> ppcemb_tlb_check: TLB 6 address ff7fd648 PID 0 <=> c0000000 f0000000 0 3b
>> mmubooke_check_tlb: TLB entry not found
>> ppcemb_tlb_check: TLB 7 address ff7fd648 PID 0 <=> e0000000 ff000000 0 3b
>> mmubooke_check_tlb: TLB entry not found
>> ppcemb_tlb_check: TLB 8 address ff7fd648 PID 0 <=> e1000000 ff000000 0 3b
>> mmubooke_check_tlb: TLB entry not found
>> ppcemb_tlb_check: TLB 9 address ff7fd648 PID 0 <=> e3000000 fffffc00 0 3b
>> mmubooke_check_tlb: TLB entry not found
>> ppcemb_tlb_check: TLB 10 address ff7fd648 PID 0 <=> e3001000 fffffc00 0 3b
>> mmubooke_check_tlb: TLB entry not found
>> ppcemb_tlb_check: TLB 11 address ff7fd648 PID 0 <=> e4000000 ffffc000 0 3b
>> mmubooke_check_tlb: TLB entry not found
>> ppcemb_tlb_check: TLB 12 address ff7fd648 PID 0 <=> e5000000 fff00000 0 7f
>> mmubooke_check_tlb: TLB entry not found
>> ppcemb_tlb_check: TLB 13 address ff7fd648 PID 0 <=> ef000000 ff000000 0 7f
>> mmubooke_check_tlb: TLB entry not found
>> ppcemb_tlb_check: TLB 14 address ff7fd648 PID 0 <=> e2000000 fff00000 0 7f
>> mmubooke_check_tlb: TLB entry not found
>> ppcemb_tlb_check: TLB 15 address ff7fd648 PID 0 <=> 00000000 f0000000 0 7f
>> mmubooke_check_tlb: TLB entry not found
>> mmubooke_check_tlb: TLB entry not found
>> mmubooke_check_tlb: TLB entry not found
>> mmubooke_check_tlb: TLB entry not found
>> mmubooke_check_tlb: TLB entry not found
>> mmubooke_check_tlb: TLB entry not found
>> mmubooke_check_tlb: TLB entry not found
>> mmubooke_check_tlb: TLB entry not found
>> mmubooke_check_tlb: TLB entry not found
>> mmubooke_check_tlb: TLB entry not found
>> mmubooke_check_tlb: TLB entry not found
>> mmubooke_check_tlb: TLB entry not found
>> mmubooke_check_tlb: TLB entry not found
>> mmubooke_check_tlb: TLB entry not found
>> mmubooke_check_tlb: TLB entry not found
>> mmubooke_check_tlb: TLB entry not found
>> mmubooke_check_tlb: TLB entry not found
>> mmubooke_check_tlb: TLB entry not found
>> mmubooke_check_tlb: TLB entry not found
>> mmubooke_check_tlb: TLB entry not found
>> mmubooke_check_tlb: TLB entry not found
>> mmubooke_check_tlb: TLB entry not found
>> mmubooke_check_tlb: TLB entry not found
>> mmubooke_check_tlb: TLB entry not found
>> mmubooke_check_tlb: TLB entry not found
>> mmubooke_check_tlb: TLB entry not found
>> mmubooke_check_tlb: TLB entry not found
>> mmubooke_check_tlb: TLB entry not found
>> mmubooke_check_tlb: TLB entry not found
>> mmubooke_check_tlb: TLB entry not found
>> mmubooke_check_tlb: TLB entry not found
>> mmubooke_check_tlb: TLB entry not found
>> mmubooke_check_tlb: TLB entry not found
>> mmubooke_check_tlb: TLB entry not found
>> mmubooke_check_tlb: TLB entry not found
>> mmubooke_check_tlb: TLB entry not found
>> mmubooke_check_tlb: TLB entry not found
>> mmubooke_check_tlb: TLB entry not found
>> mmubooke_check_tlb: TLB entry not found
>> mmubooke_check_tlb: TLB entry not found
>> mmubooke_check_tlb: TLB entry not found
>> mmubooke_check_tlb: TLB entry not found
>> mmubooke_check_tlb: TLB entry not found
>> mmubooke_check_tlb: TLB entry not found
>> mmubooke_check_tlb: TLB entry not found
>> mmubooke_check_tlb: TLB entry not found
>> mmubooke_check_tlb: TLB entry not found
>> mmubooke_check_tlb: TLB entry not found
>> mmubooke_check_tlb: TLB entry not found
>> mmubooke_get_physical_address: access refused ff7fd648 => ffffffffffffffff
>> 0 -1
>>
>> Apparently this works on real hardware (although I could not check because
>> I don't have access to it and found no logs proving it) but fails in
>> emulation so it may be a bug or some difference in emulation. Does anyone
>> have any idea? Could this be related to caching/shadow TLBs on real
>> hardware that are not emulated? How could this be fixed in QEMU?
>>
>> Regards,
>> BALATON Zoltan
>>
>
>
next prev parent reply other threads:[~2017-08-19 23:19 UTC|newest]
Thread overview: 9+ messages / expand[flat|nested] mbox.gz Atom feed top
2017-08-18 13:48 [Qemu-devel] BookE MMU question BALATON Zoltan
2017-08-19 22:56 ` KONRAD Frederic
2017-08-19 23:19 ` BALATON Zoltan [this message]
2017-08-20 7:20 ` [Qemu-devel] [Qemu-ppc] " Mark Cave-Ayland
2017-08-20 13:35 ` BALATON Zoltan
2017-08-20 15:16 ` Mark Cave-Ayland
2017-08-20 21:59 ` BALATON Zoltan
2017-08-20 22:48 ` Mark Cave-Ayland
2017-08-20 22:57 ` BALATON Zoltan
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=alpine.BSF.2.21.1708200101080.95468@zero.eik.bme.hu \
--to=balaton@eik.bme.hu \
--cc=david@gibson.dropbear.id.au \
--cc=frederic.konrad@adacore.com \
--cc=qemu-devel@nongnu.org \
--cc=qemu-ppc@nongnu.org \
--cc=revol@free.fr \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).