From: "Alex Bennée" <alex.bennee@linaro.org>
To: Peter Maydell <peter.maydell@linaro.org>
Cc: Paolo Bonzini <pbonzini@redhat.com>,
Richard Henderson <richard.henderson@linaro.org>,
QEMU Developers <qemu-devel@nongnu.org>
Subject: Re: [PULL 18/23] accel/tcg: re-factor non-RAM execution code
Date: Thu, 15 Apr 2021 15:31:00 +0100 [thread overview]
Message-ID: <87blaflit2.fsf@linaro.org> (raw)
In-Reply-To: <CAFEAcA9G-WabAM_EdgMzd0Xv6z8xRYjw57DiEqB6Z_Wbj=X1Eg@mail.gmail.com>
--8<---------------cut here---------------start------------->8---
Peter Maydell <peter.maydell@linaro.org> writes:
> On Thu, 15 Apr 2021 at 14:18, Peter Maydell <peter.maydell@linaro.org> wrote:
>>
>> On Thu, 18 Feb 2021 at 09:47, Alex Bennée <alex.bennee@linaro.org> wrote:
>> >
>> > There is no real need to use CF_NOCACHE here. As long as the TB isn't
>> > linked to other TBs or included in the QHT or jump cache then it will
>> > only get executed once.
>> >
>> > Signed-off-by: Alex Bennée <alex.bennee@linaro.org>
>> > Reviewed-by: Richard Henderson <richard.henderson@linaro.org>
>> > Message-Id: <20210213130325.14781-19-alex.bennee@linaro.org>
>>
>> Hi; I've just noticed that this commit seems to break the case of:
>> * execution of code not from a RAM block
>> * when icount is enabled
>> * and an instruction is an IO insn that triggers io-recompile
>>
>> because:
>>
>> > @@ -2097,6 +2086,17 @@ TranslationBlock *tb_gen_code(CPUState *cpu,
>> > tb_reset_jump(tb, 1);
>> > }
>> >
>> > + /*
>> > + * If the TB is not associated with a physical RAM page then
>> > + * it must be a temporary one-insn TB, and we have nothing to do
>> > + * except fill in the page_addr[] fields. Return early before
>> > + * attempting to link to other TBs or add to the lookup table.
>> > + */
>> > + if (phys_pc == -1) {
>> > + tb->page_addr[0] = tb->page_addr[1] = -1;
>> > + return tb;
>> > + }
>>
>> we used to fall through here, which meant we called
>> tcg_tb_insert(tb). No we no longer do. That's bad, because
>> cpu_io_recompile() does:
>>
>> tb = tcg_tb_lookup(retaddr);
>> if (!tb) {
>> cpu_abort(cpu, "cpu_io_recompile: could not find TB for pc=%p",
>> (void *)retaddr);
>> }
>>
>> and since it can no longer find the TB, QEMU aborts.
>
> Adding the tcg_tb_insert() call to the early exit path:
>
> diff --git a/accel/tcg/translate-all.c b/accel/tcg/translate-all.c
> index ba6ab09790e..6014285e4dc 100644
> --- a/accel/tcg/translate-all.c
> +++ b/accel/tcg/translate-all.c
> @@ -2081,6 +2081,7 @@ TranslationBlock *tb_gen_code(CPUState *cpu,
> */
> if (phys_pc == -1) {
> tb->page_addr[0] = tb->page_addr[1] = -1;
> + tcg_tb_insert(tb);
> return tb;
> }
>
> seems to fix my test case, but I don't know enough about the new
> design here to know if that has undesirable side effects.
No we don't want to do that as the comment says above. However as it's a
single instruction block it can do IO so could you try this instead
please:
--8<---------------cut here---------------start------------->8---
accel/tcg: avoid re-translating one-shot instructions
By definition a single instruction is capable of being an IO
instruction. This avoids a problem of triggering a cpu_io_recompile on
a non-cached translation which would only do exactly this anyway.
Signed-off-by: Alex Bennée <alex.bennee@linaro.org>
1 file changed, 1 insertion(+), 1 deletion(-)
accel/tcg/translate-all.c | 2 +-
modified accel/tcg/translate-all.c
@@ -1863,7 +1863,7 @@ TranslationBlock *tb_gen_code(CPUState *cpu,
if (phys_pc == -1) {
/* Generate a one-shot TB with 1 insn in it */
- cflags = (cflags & ~CF_COUNT_MASK) | 1;
+ cflags = (cflags & ~CF_COUNT_MASK) | CF_LAST_IO | 1;
}
max_insns = cflags & CF_COUNT_MASK;
--8<---------------cut here---------------end--------------->8---
--
Alex Bennée
next prev parent reply other threads:[~2021-04-15 14:34 UTC|newest]
Thread overview: 35+ messages / expand[flat|nested] mbox.gz Atom feed top
2021-02-18 9:46 [PULL 00/23] plugin updates (hwprofile, CF_NOCACHE, io_recompile) Alex Bennée
2021-02-18 9:46 ` [PULL 01/23] hw/virtio/pci: include vdev name in registered PCI sections Alex Bennée
2021-02-18 9:46 ` [PULL 02/23] plugins: add API to return a name for a IO device Alex Bennée
2021-02-18 9:46 ` [PULL 03/23] plugins: new hwprofile plugin Alex Bennée
2021-02-18 9:46 ` [PULL 04/23] contrib: Don't use '#' flag of printf format Alex Bennée
2021-02-18 9:46 ` [PULL 05/23] contrib: Fix some code style problems, ERROR: "foo * bar" should be "foo *bar" Alex Bennée
2021-02-18 9:46 ` [PULL 06/23] contrib: Add spaces around operator Alex Bennée
2021-02-18 9:46 ` [PULL 07/23] contrib: space required after that ',' Alex Bennée
2021-02-18 9:46 ` [PULL 08/23] contrib: Open brace '{' following struct go on the same line Alex Bennée
2021-02-18 9:46 ` [PULL 09/23] accel/tcg/plugin-gen: fix the call signature for inline callbacks Alex Bennée
2021-02-18 9:46 ` [PULL 10/23] exec: Move TranslationBlock typedef to qemu/typedefs.h Alex Bennée
2021-02-18 9:46 ` [PULL 11/23] accel/tcg: Create io_recompile_replay_branch hook Alex Bennée
2021-02-18 9:46 ` [PULL 12/23] target/mips: Create mips_io_recompile_replay_branch Alex Bennée
2021-02-18 9:46 ` [PULL 13/23] target/sh4: Create superh_io_recompile_replay_branch Alex Bennée
2021-02-18 9:46 ` [PULL 14/23] tests/plugin: expand insn test to detect duplicate instructions Alex Bennée
2021-02-18 9:46 ` [PULL 15/23] tests/acceptance: add a new set of tests to exercise plugins Alex Bennée
2021-02-18 9:46 ` [PULL 16/23] accel/tcg: actually cache our partial icount TB Alex Bennée
2021-02-18 9:47 ` [PULL 17/23] accel/tcg: cache single instruction TB on pending replay exception Alex Bennée
2021-02-18 9:47 ` [PULL 18/23] accel/tcg: re-factor non-RAM execution code Alex Bennée
2021-04-15 13:18 ` Peter Maydell
2021-04-15 13:37 ` Peter Maydell
2021-04-15 14:31 ` Alex Bennée [this message]
2021-04-15 14:54 ` Peter Maydell
2021-04-15 15:55 ` Philippe Mathieu-Daudé
2021-04-15 17:18 ` [EXTERNAL] " Cédric Le Goater
2021-04-15 17:34 ` Peter Maydell
2021-04-16 7:55 ` Cédric Le Goater
2021-04-16 9:14 ` Alex Bennée
2021-04-16 10:14 ` Cédric Le Goater
2021-02-18 9:47 ` [PULL 19/23] accel/tcg: remove CF_NOCACHE and special cases Alex Bennée
2021-02-18 9:47 ` [PULL 20/23] accel/tcg: allow plugin instrumentation to be disable via cflags Alex Bennée
2021-02-18 9:47 ` [PULL 21/23] tests/acceptance: add a new tests to detect counting errors Alex Bennée
2021-02-18 9:47 ` [PULL 22/23] tests/plugin: allow memory plugin to do both inline and callbacks Alex Bennée
2021-02-18 9:47 ` [PULL 23/23] tests/acceptance: add a memory callback check Alex Bennée
2021-02-18 15:13 ` [PULL 00/23] plugin updates (hwprofile, CF_NOCACHE, io_recompile) Peter Maydell
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=87blaflit2.fsf@linaro.org \
--to=alex.bennee@linaro.org \
--cc=pbonzini@redhat.com \
--cc=peter.maydell@linaro.org \
--cc=qemu-devel@nongnu.org \
--cc=richard.henderson@linaro.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).