* [PATCH] Fix SEGFAULT on getting physical address of MMIO region.
@ 2023-08-02 13:08 Mikhail Tyutin
2023-08-02 16:09 ` Richard Henderson
0 siblings, 1 reply; 5+ messages in thread
From: Mikhail Tyutin @ 2023-08-02 13:08 UTC (permalink / raw)
To: qemu-devel@nongnu.org; +Cc: d.solovev, richard.henderson, pbonzini
The fix is to clear TLB_INVALID_MASK bit in tlb_addr, as it happens in other places e.g. load_helper().
Signed-off-by: Dmitriy Solovev <d.solovev@yadro.com>
Signed-off-by: Mikhail Tyutin <m.tyutin@yadro.com>
---
accel/tcg/cputlb.c | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/accel/tcg/cputlb.c b/accel/tcg/cputlb.c
index ba44501a7c..900dfc1079 100644
--- a/accel/tcg/cputlb.c
+++ b/accel/tcg/cputlb.c
@@ -1735,7 +1735,7 @@ bool tlb_plugin_lookup(CPUState *cpu, vaddr addr, int mmu_idx,
uintptr_t index = tlb_index(env, mmu_idx, addr);
uint64_t tlb_addr = is_store ? tlb_addr_write(tlbe) : tlbe->addr_read;
- if (likely(tlb_hit(tlb_addr, addr))) {
+ if (likely(tlb_hit(tlb_addr & ~TLB_INVALID_MASK, addr))) {
/* We must have an iotlb entry for MMIO */
if (tlb_addr & TLB_MMIO) {
CPUTLBEntryFull *full;
--
2.34.1
^ permalink raw reply related [flat|nested] 5+ messages in thread* Re: [PATCH] Fix SEGFAULT on getting physical address of MMIO region.
2023-08-02 13:08 [PATCH] Fix SEGFAULT on getting physical address of MMIO region Mikhail Tyutin
@ 2023-08-02 16:09 ` Richard Henderson
2023-08-09 13:17 ` Mikhail Tyutin
0 siblings, 1 reply; 5+ messages in thread
From: Richard Henderson @ 2023-08-02 16:09 UTC (permalink / raw)
To: Mikhail Tyutin, qemu-devel@nongnu.org
Cc: d.solovev, pbonzini, Alex Bennée
On 8/2/23 06:08, Mikhail Tyutin wrote:
> The fix is to clear TLB_INVALID_MASK bit in tlb_addr, as it happens in other places e.g.
> load_helper().
>
> Signed-off-by: Dmitriy Solovev <d.solovev@yadro.com>
> Signed-off-by: Mikhail Tyutin <m.tyutin@yadro.com>
> ---
> accel/tcg/cputlb.c | 2 +-
> 1 file changed, 1 insertion(+), 1 deletion(-)
The other places in load_helper happen only directly after tlb_fill has succeeded. Here
you have no such guarantee.
I think perhaps the save_iotlb_data() call should be applied to loads as well, and then
tlb_plugin_lookup simplified.
r~
^ permalink raw reply [flat|nested] 5+ messages in thread
* RE: [PATCH] Fix SEGFAULT on getting physical address of MMIO region.
2023-08-02 16:09 ` Richard Henderson
@ 2023-08-09 13:17 ` Mikhail Tyutin
2023-08-09 14:41 ` Richard Henderson
0 siblings, 1 reply; 5+ messages in thread
From: Mikhail Tyutin @ 2023-08-09 13:17 UTC (permalink / raw)
To: Richard Henderson, qemu-devel@nongnu.org
Cc: Dmitriy Solovev, pbonzini@redhat.com, Alex Bennée
> On 8/2/23 06:08, Mikhail Tyutin wrote:
> > The fix is to clear TLB_INVALID_MASK bit in tlb_addr, as it happens in other places e.g.
> > load_helper().
> >
> > Signed-off-by: Dmitriy Solovev <d.solovev@yadro.com>
> > Signed-off-by: Mikhail Tyutin <m.tyutin@yadro.com>
> > ---
> > accel/tcg/cputlb.c | 2 +-
> > 1 file changed, 1 insertion(+), 1 deletion(-)
>
> The other places in load_helper happen only directly after tlb_fill has succeeded. Here
> you have no such guarantee.
>
> I think perhaps the save_iotlb_data() call should be applied to loads as well, and then
> tlb_plugin_lookup simplified.
>
Hello Richard,
We performed testing on more scenarios and noticed that patch when save_iotlb_data() call is added to io_readx
(https://patchew.org/QEMU/20230804110903.19968-1-m.tyutin@yadro.com/). It doesn't work for addresses
in OCRAM region. Those accessed bypass io_writex/io_readx function and therefore don’t invoke save_iotlb_data().
So we observe the wrong value of cpu->saved_iotlb for it.
Would not be better to get back to initial v1 approach when we clean TLB_INVALID_MASK flag in
tlb_plugin_lookup()? It works well for those regions.
(https://patchew.org/QEMU/bf8ae2fd-158a-57b6-6270-2e56b6506421@yadro.com)
^ permalink raw reply [flat|nested] 5+ messages in thread
* [PATCH] Fix SEGFAULT on getting physical address of MMIO region.
@ 2023-07-03 16:16 Mikhail Tyutin
0 siblings, 0 replies; 5+ messages in thread
From: Mikhail Tyutin @ 2023-07-03 16:16 UTC (permalink / raw)
To: qemu-devel@nongnu.org; +Cc: Dmitriy Solovev, richard.henderson, pbonzini
The fix is to clear TLB_INVALID_MASK bit in tlb_addr, as it happens in
other places e.g. load_helper().
Signed-off-by: Dmitriy Solovev <d.solovev@yadro.com>
Signed-off-by: Mikhail Tyutin <m.tyutin@yadro.com>
---
accel/tcg/cputlb.c | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/accel/tcg/cputlb.c b/accel/tcg/cputlb.c
index 5b51eff5a4..9045b6330a 100644
--- a/accel/tcg/cputlb.c
+++ b/accel/tcg/cputlb.c
@@ -1708,7 +1708,7 @@ bool tlb_plugin_lookup(CPUState *cpu, vaddr addr,
int mmu_idx,
uintptr_t index = tlb_index(env, mmu_idx, addr);
uint64_t tlb_addr = is_store ? tlb_addr_write(tlbe) : tlbe->addr_read;
- if (likely(tlb_hit(tlb_addr, addr))) {
+ if (likely(tlb_hit(tlb_addr & ~TLB_INVALID_MASK, addr))) {
/* We must have an iotlb entry for MMIO */
if (tlb_addr & TLB_MMIO) {
CPUTLBEntryFull *full;
--
2.34.1
^ permalink raw reply related [flat|nested] 5+ messages in thread
end of thread, other threads:[~2023-08-09 14:42 UTC | newest]
Thread overview: 5+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2023-08-02 13:08 [PATCH] Fix SEGFAULT on getting physical address of MMIO region Mikhail Tyutin
2023-08-02 16:09 ` Richard Henderson
2023-08-09 13:17 ` Mikhail Tyutin
2023-08-09 14:41 ` Richard Henderson
-- strict thread matches above, loose matches on Subject: below --
2023-07-03 16:16 Mikhail Tyutin
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).