Re: [Qemu-devel] [PATCH v2 6/6] ARM BE32 watchpoint fix.

qemu-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Qemu-devel] [PATCH v2 6/6] ARM BE32 watchpoint fix.

From:	Peter Maydell
Subject:	Re: [Qemu-devel] [PATCH v2 6/6] ARM BE32 watchpoint fix.
Date:	Thu, 5 Jan 2017 18:25:25 +0000

On 7 December 2016 at 14:49, Julian Brown <address@hidden> wrote:
> In BE32 mode, sub-word size watchpoints can fail to trigger because the
> address of the access is adjusted in the opcode helpers before being
> compared with the watchpoint registers.  This patch reverses the address
> adjustment before performing the comparison with the help of a new CPUClass
> hook.
>
> Signed-off-by: Julian Brown <address@hidden>

This one looks good too, I just have a couple of comment-related
questions...

> ---
>  exec.c                 |  1 +
>  include/qom/cpu.h      |  1 +
>  qom/cpu.c              |  6 ++++++
>  target-arm/cpu.c       |  3 +++
>  target-arm/internals.h |  5 +++++
>  target-arm/op_helper.c | 22 ++++++++++++++++++++++
>  6 files changed, 38 insertions(+)
>
> diff --git a/exec.c b/exec.c
> index cbe14cd..0f1fe1c 100644
> --- a/exec.c
> +++ b/exec.c
> @@ -2067,6 +2067,7 @@ static void check_watchpoint(int offset, int len, 
> MemTxAttrs attrs, int flags)
>          return;
>      }
>      vaddr = (cpu->mem_io_vaddr & TARGET_PAGE_MASK) + offset;
> +    vaddr = cc->adjust_watchpoint_address(cpu, vaddr, len);
>      QTAILQ_FOREACH(wp, &cpu->watchpoints, entry) {
>          if (cpu_watchpoint_address_matches(wp, vaddr, len)
>              && (wp->flags & flags)) {
> diff --git a/include/qom/cpu.h b/include/qom/cpu.h
> index 3f79a8e..5c0c893 100644
> --- a/include/qom/cpu.h
> +++ b/include/qom/cpu.h
> @@ -195,6 +195,7 @@ typedef struct CPUClass {
>      bool (*cpu_exec_interrupt)(CPUState *cpu, int interrupt_request);
>
>      void (*disas_set_info)(CPUState *cpu, disassemble_info *info);
> +    vaddr (*adjust_watchpoint_address)(CPUState *cpu, vaddr addr, int len);

Can we have a line for this new field in the big doc comment
before the CPUClass struct definition as well, please?

>  } CPUClass;
>
>  #ifdef HOST_WORDS_BIGENDIAN
> diff --git a/qom/cpu.c b/qom/cpu.c
> index 03d9190..9ad07c8 100644
> --- a/qom/cpu.c
> +++ b/qom/cpu.c
> @@ -383,6 +383,11 @@ static int64_t cpu_common_get_arch_id(CPUState *cpu)
>      return cpu->cpu_index;
>  }
>
> +static vaddr cpu_adjust_watchpoint_address(CPUState *cpu, vaddr addr, int 
> len)
> +{
> +    return addr;
> +}
> +
>  static void cpu_class_init(ObjectClass *klass, void *data)
>  {
>      DeviceClass *dc = DEVICE_CLASS(klass);
> @@ -407,6 +412,7 @@ static void cpu_class_init(ObjectClass *klass, void *data)
>      k->cpu_exec_enter = cpu_common_noop;
>      k->cpu_exec_exit = cpu_common_noop;
>      k->cpu_exec_interrupt = cpu_common_exec_interrupt;
> +    k->adjust_watchpoint_address = cpu_adjust_watchpoint_address;
>      dc->realize = cpu_common_realizefn;
>      dc->unrealize = cpu_common_unrealizefn;
>      /*
> diff --git a/target-arm/cpu.c b/target-arm/cpu.c
> index 6099d50..a609211 100644
> --- a/target-arm/cpu.c
> +++ b/target-arm/cpu.c
> @@ -1650,6 +1650,9 @@ static void arm_cpu_class_init(ObjectClass *oc, void 
> *data)
>      cc->gdb_stop_before_watchpoint = true;
>      cc->debug_excp_handler = arm_debug_excp_handler;
>      cc->debug_check_watchpoint = arm_debug_check_watchpoint;
> +#if !defined(CONFIG_USER_ONLY)
> +    cc->adjust_watchpoint_address = arm_adjust_watchpoint_address;
> +#endif
>
>      cc->disas_set_info = arm_disas_set_info;
>  }
> diff --git a/target-arm/internals.h b/target-arm/internals.h
> index 3edccd2..132f8d0 100644
> --- a/target-arm/internals.h
> +++ b/target-arm/internals.h
> @@ -437,6 +437,11 @@ void hw_breakpoint_update_all(ARMCPU *cpu);
>  /* Callback function for checking if a watchpoint should trigger. */
>  bool arm_debug_check_watchpoint(CPUState *cs, CPUWatchpoint *wp);
>
> +/* Adjust addresses (in BE32 mode) before testing against watchpoint
> + * addresses.
> + */
> +vaddr arm_adjust_watchpoint_address(CPUState *cs, vaddr addr, int len);
> +
>  /* Callback function for when a watchpoint or breakpoint triggers. */
>  void arm_debug_excp_handler(CPUState *cs);
>
> diff --git a/target-arm/op_helper.c b/target-arm/op_helper.c
> index cd94216..dc92e49 100644
> --- a/target-arm/op_helper.c
> +++ b/target-arm/op_helper.c
> @@ -1216,6 +1216,28 @@ bool arm_debug_check_watchpoint(CPUState *cs, 
> CPUWatchpoint *wp)
>      return check_watchpoints(cpu);
>  }
>
> +vaddr arm_adjust_watchpoint_address(CPUState *cs, vaddr addr, int len)
> +{
> +    ARMCPU *cpu = ARM_CPU(cs);
> +    CPUARMState *env = &cpu->env;
> +
> +    /* In BE32 system mode, target memory is stored byteswapped (FIXME:
> +     * relative to a little-endian host system), and by the time we reach 
> here
> +     * (via an opcode helper) the addresses of subword accesses have been
> +     * adjusted to account for that, which means that watchpoints will not
> +     * match.  Undo the adjustment here.
> +     */

Could you clarify what you mean by this FIXME parenthetical?
I'm not sure what you're trying to say...

> +    if (arm_sctlr_b(env)) {
> +        if (len == 1) {
> +            addr ^= 3;
> +        } else if (len == 2) {
> +            addr ^= 2;
> +        }
> +    }
> +
> +    return addr;
> +}
> +
>  void arm_debug_excp_handler(CPUState *cs)
>  {
>      /* Called by core code when a watchpoint or breakpoint fires;
> --
> 2.8.1
>
>

thanks
-- PMM

[Prev in Thread]

Current Thread

[Next in Thread]

Re: [Qemu-devel] [PATCH v2 6/6] ARM BE32 watchpoint fix., Peter Maydell <=

Prev by Date: Re: [Qemu-devel] [PATCH v6 17/17] build-sys: add qapi doc generation targets
Next by Date: Re: [Qemu-devel] [PATCH v6 06/17] qapi: rework qapi Exception
Previous by thread: Re: [Qemu-devel] [PATCH v6 17/17] build-sys: add qapi doc generation targets
Next by thread: Re: [Qemu-devel] [PATCH v6 06/17] qapi: rework qapi Exception
Index(es):
- Date
- Thread