From: "Wu, Fei" <fei2.wu@intel.com>
To: <qemu-devel@nongnu.org>, <richard.henderson@linaro.org>
Subject: Enable cross-page block chaining for user mode tcg
Date: Wed, 15 Mar 2023 22:40:17 +0800 [thread overview]
Message-ID: <60517f41-a5db-a907-03d1-545b69615a62@intel.com> (raw)
Block chaining is one of the key performance factors of tcg. Currently
tcg doesn't allow chaining across page boundary, an example can be found
in gen_goto_tb() in target/riscv/translate.c.
For user-mode tcg, it's possible to enable cross-page chaining with
careful attentions, assume there are chains like this:
preceding page -> 1st page -> 2nd page
Nth page -> 2nd page
There are 2 situations to consider:
1. First page should not jump to 2nd page directly anymore, if there is
a new breakpoint added to 3rd page, otherwise the breakpoint might not
be hit. One method to address this problem is when receiving gdb
commands, call tb_flush() to invalidate all the TBs, and make sure each
TB can only contain single instruction later, no matter the new JIT-ed
TBs use chain or not, the tcg core loop always has the chance to check
if there is any breakpoint on each instruction. There could be other
methods, but current tcg has already done this.
2. The protection of 2nd page has changed by mprotect/munmap, e.g. from
executable (X) to non-executable (NX), it's an error if the 1st page
jumps to 2nd page without checking the new protection. The point here is
to invalidate TBs in 2nd page and unlink all the TBs which jumps to it,
including 1st page and others(Nth in above chart). This is already done
in page_set_flags(). A small testcase runs on user-mode guest:
void *page = mmap(NULL, pagesize,
PROT_READ | PROT_WRITE | PROT_EXEC,
MAP_ANONYMOUS | MAP_PRIVATE, -1, 0);
memcpy(page, func_add, pagesize);
f = (FUNC)page;
f(1, 1); // good
mprotect(f, pagesize, PROT_READ | PROT_EXEC);
f(1, 2); // good
mprotect(f, pagesize, PROT_READ);
f(1, 3); // segfault
So it looks like current tcg implementation is ready to enable
cross-page chaining for user-mode. Correct?
diff --git a/accel/tcg/translator.c b/accel/tcg/translator.c
index 7bda43ff61..822644c7a4 100644
--- a/accel/tcg/translator.c
+++ b/accel/tcg/translator.c
@@ -25,8 +25,12 @@ bool translator_use_goto_tb(DisasContextBase *db,
target_ulong dest)
return false;
}
+#ifdef CONFIG_USER_ONLY
+ return true;
+#else
/* Check for the dest on the same page as the start of the TB. */
return ((db->pc_first ^ dest) & TARGET_PAGE_MASK) == 0;
+#endif
}
void translator_loop(CPUState *cpu, TranslationBlock *tb, int *max_insns,
Thanks,
Fei.
next reply other threads:[~2023-03-15 14:40 UTC|newest]
Thread overview: 2+ messages / expand[flat|nested] mbox.gz Atom feed top
2023-03-15 14:40 Wu, Fei [this message]
2023-03-16 1:55 ` Enable cross-page block chaining for user mode tcg Wu, Fei
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=60517f41-a5db-a907-03d1-545b69615a62@intel.com \
--to=fei2.wu@intel.com \
--cc=qemu-devel@nongnu.org \
--cc=richard.henderson@linaro.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.