From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from eggs.gnu.org ([208.118.235.92]:40581)
	by lists.gnu.org with esmtp (Exim 4.71)
	(envelope-from <agraf@suse.de>) id 1SSsGY-0006Vl-UK
	for qemu-devel@nongnu.org; Fri, 11 May 2012 12:00:28 -0400
Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71)
	(envelope-from <agraf@suse.de>) id 1SSsGP-0004RH-Gl
	for qemu-devel@nongnu.org; Fri, 11 May 2012 12:00:26 -0400
Received: from cantor2.suse.de ([195.135.220.15]:45749 helo=mx2.suse.de)
	by eggs.gnu.org with esmtp (Exim 4.71)
	(envelope-from <agraf@suse.de>) id 1SSsGP-0004Qs-7L
	for qemu-devel@nongnu.org; Fri, 11 May 2012 12:00:17 -0400
Mime-Version: 1.0 (Apple Message framework v1257)
Content-Type: text/plain; charset=us-ascii
From: Alexander Graf <agraf@suse.de>
In-Reply-To: <CAFEAcA-fC=iWK=0OCrCO_uuZBNsxYTBdeiZoVSUoFtL4gfK2bA@mail.gmail.com>
Date: Fri, 11 May 2012 18:00:08 +0200
Content-Transfer-Encoding: quoted-printable
Message-Id: <3D426BAD-FACE-41EE-B3CA-98286ADAE926@suse.de>
References: <1336383010-28692-1-git-send-email-agraf@suse.de>
	<CAFEAcA-u2Ty0iXNQumn7HY4MH-uVkZ616BZJUAUoC-k02v+WEA@mail.gmail.com>
	<F4C6F921-7E35-4246-BF5F-0652660AA0AB@suse.de>
	<BA0ED813-AF4C-4FB4-AEFB-CB1B802DF76D@suse.de>
	<CAFEAcA-fC=iWK=0OCrCO_uuZBNsxYTBdeiZoVSUoFtL4gfK2bA@mail.gmail.com>
Subject: Re: [Qemu-devel] [PATCH] linux-user: Fix stale tbs after mmap
List-Id: <qemu-devel.nongnu.org>
List-Unsubscribe: <https://lists.nongnu.org/mailman/options/qemu-devel>,
	<mailto:qemu-devel-request@nongnu.org?subject=unsubscribe>
List-Archive: <http://lists.nongnu.org/archive/html/qemu-devel>
List-Post: <mailto:qemu-devel@nongnu.org>
List-Help: <mailto:qemu-devel-request@nongnu.org?subject=help>
List-Subscribe: <https://lists.nongnu.org/mailman/listinfo/qemu-devel>,
	<mailto:qemu-devel-request@nongnu.org?subject=subscribe>
To: Peter Maydell <peter.maydell@linaro.org>
Cc: Riku Voipio <riku.voipio@iki.fi>, qemu-devel Developers <qemu-devel@nongnu.org>


On 11.05.2012, at 17:46, Peter Maydell wrote:

> On 7 May 2012 12:38, Alexander Graf <agraf@suse.de> wrote:
>>=20
>> On 07.05.2012, at 13:32, Alexander Graf wrote:
>>=20
>>>=20
>>> On 07.05.2012, at 12:37, Peter Maydell wrote:
>>>=20
>>>> On 7 May 2012 10:30, Alexander Graf <agraf@suse.de> wrote:
>>>>> @@ -587,6 +587,7 @@ abi_long target_mmap(abi_ulong start, =
abi_ulong len, int prot,
>>>>>    page_dump(stdout);
>>>>>    printf("\n");
>>>>> #endif
>>>>> +    tb_invalidate_phys_page_range(start, start + len, 0);
>>>>>    mmap_unlock();
>>>>>    return start;
>>>>=20
>>>> The comment at the top of tb_invalidate_phys_page_range() says
>>>> "start and end must refer to the same physical page" -- is it
>>>> out of date or does that not apply to user-mode?
>>>>=20
>>>> Do you need to also invalidate the range on munmap() and
>>>> mprotect-to-not-executable in order to correctly fault on
>>>> the case of:
>>>> map something
>>>> execute it
>>>> unmap it
>>>> try to execute it again
>>>>=20
>>>> ? (haven't tested that case but it seems like it might be an issue)
>>>=20
>>> Yeah, the issue does exist:
>>=20
>> And the below patch on top of my revised patch fixes it.
>=20
> I think these two patches look correct (and as you pointed out
> on irc I was wrong about mprotect, which effectively already
> handles flushing the tb if needed). If you can roll them together
> into a single patch with a commit message and signed-off-by
> you can add my Reviewed-by: tag to it.

Well, if we invalidate on unmap, do we need to invalidate on mmap() =
still? Or is only invalidating on unmap enough? Maybe when you use fixed =
addresses... hrm

Ah whatever, let's just flush everywhere now and then optimize later.


Alex