Series comparison

-[Qemu-devel] [PULL 00/36] target-arm queue
+[PULL 0/2] target-arm queue
-Try #2, with the compile failure in kvm32.c fixed
+This bug seemed worth fixing for 8.0 since we need an rc4 anyway:
-(trivial change, not resending patches)
+we were using uninitialized data for the guarded bit when
 combining stage 1 and stage 2 attrs.
 thanks
 -- PMM
-The following changes since commit 98bfaac788be0ca63d7d010c8d4ba100ff1d8278:
+The following changes since commit 08dede07030973c1053868bc64de7e10bfa02ad6:
-  Merge remote-tracking branch 'remotes/armbru/tags/pull-qapi-2017-09-01-v3' into staging (2017-09-04 13:28:09 +0100)
+  Merge tag 'pull-ppc-20230409' of https://github.com/legoater/qemu into staging (2023-04-10 11:47:52 +0100)
-are available in the git repository at:
+are available in the Git repository at:
-  git://git.linaro.org/people/pmaydell/qemu-arm.git tags/pull-target-arm-20170904-1
+  https://git.linaro.org/people/pmaydell/qemu-arm.git tags/pull-target-arm-20230410
-for you to fetch changes up to 0b8095ec9e924dc00636ab2069d88dec6592a75d:
+for you to fetch changes up to 8539dc00552e8ea60420856fc1262c8299bc6308:
-  arm_gicv3_kvm: Fix compile warning (2017-09-04 15:21:56 +0100)
+  target/arm: Copy guarded bit in combine_cacheattrs (2023-04-10 14:31:40 +0100)
 ----------------------------------------------------------------
-target-arm:
+target-arm: Fix bug where we weren't initializing
- * collection of M profile cleanups and minor bugfixes
+            guarded bit state when combining S1/S2 attrs
  * loader: handle ELF files with overlapping zero-init data
  * virt: allow PMU instantiation with userspace irqchip
  * wdt_aspeed: Add support for the reset width register
  * cpu: Define new cpu_transaction_failed() hook
  * arm: Support generating CPU exceptions on memory
    transaction failures (bus faults)
  * Mark some SoC devices as not user-creatable
  * arm: Fix aa64 ldp register writeback
  * arm_gicv3_kvm: Fix compile warning
 ----------------------------------------------------------------
-Andrew Jeffery (2):
+Richard Henderson (2):
-      watchdog: wdt_aspeed: Add support for the reset width register
+      target/arm: PTE bit GP only applies to stage1
-      aspeed_soc: Propagate silicon-rev to watchdog
+      target/arm: Copy guarded bit in combine_cacheattrs
-Andrew Jones (4):
+ target/arm/ptw.c | 11 ++++++-----
-      hw/arm/virt: add pmu interrupt state
+file changed, 6 insertions(+), 5 deletions(-)
       target/arm/kvm: pmu: split init and set-irq stages
       hw/arm/virt: allow pmu instantiation with userspace irqchip
       target/arm/kvm: pmu: improve error handling
 Peter Maydell (25):
       target/arm: Use MMUAccessType enum rather than int
       target/arm: Don't trap WFI/WFE for M profile
       target/arm: Consolidate PMSA handling in get_phys_addr()
       target/arm: Tighten up Thumb decode where new v8M insns will be
       hw/intc/armv7m_nvic.c: Remove out of date comment
       target/arm: Remove incorrect comment about MPU_CTRL
       target/arm: Fix outdated comment about exception exit
       target/arm: Define and use XPSR bit masks
       target/arm: Don't store M profile PRIMASK and FAULTMASK in daif
       target/arm: Don't use cpsr_write/cpsr_read to transfer M profile XPSR
       target/arm: Make arm_cpu_dump_state() handle the M-profile XPSR
       target/arm: Don't calculate lr in arm_v7m_cpu_do_interrupt() until needed
       target/arm: Create and use new function arm_v7m_is_handler_mode()
       armv7m_nvic.h: Move from include/hw/arm to include/hw/intc
       nvic: Implement "user accesses BusFault" SCS region behaviour
       loader: Handle ELF files with overlapping zero-initialized data
       loader: Ignore zero-sized ELF segments
       memory.h: Move MemTxResult type to memattrs.h
       cpu: Define new cpu_transaction_failed() hook
       cputlb: Support generating CPU exceptions on memory transaction failures
       boards.h: Define new flag ignore_memory_transaction_failures
       hw/arm: Set ignore_memory_transaction_failures for most ARM boards
       target/arm: Factor out fault delivery code
       target/arm: Allow deliver_fault() caller to specify EA bit
       target/arm: Implement new do_transaction_failed hook
 Philippe Mathieu-Daudé (1):
       hw/arm: use defined type name instead of hard-coded string
 Pranith Kumar (1):
       arm_gicv3_kvm: Fix compile warning
 Richard Henderson (1):
       target/arm: Fix aa64 ldp register writeback
 Thomas Huth (2):
       hw/arm/aspeed_soc: Mark devices as user_creatable = false
       hw/arm/digic: Mark device with user_creatable = false
  include/exec/memattrs.h                |  10 +++
  include/exec/memory.h                  |  10 ---
  include/hw/arm/armv7m.h                |   2 +-
  include/hw/boards.h                    |  11 +++
  include/hw/elf_ops.h                   |  72 +++++++++++++--
  include/hw/{arm => intc}/armv7m_nvic.h |   0
  include/hw/watchdog/wdt_aspeed.h       |   2 +
  include/qom/cpu.h                      |  27 ++++++
  softmmu_template.h                     |   4 +-
  target/arm/cpu.h                       |  56 +++++++++---
  target/arm/internals.h                 |  15 +++-
  target/arm/kvm_arm.h                   |   9 +-
  accel/tcg/cputlb.c                     |  32 ++++++-
  hw/arm/armv7m.c                        |   4 +-
  hw/arm/aspeed.c                        |   3 +
  hw/arm/aspeed_soc.c                    |   4 +
  hw/arm/collie.c                        |   1 +
  hw/arm/cubieboard.c                    |   1 +
  hw/arm/digic.c                         |   2 +
  hw/arm/digic_boards.c                  |   1 +
  hw/arm/exynos4210.c                    |   4 +-
  hw/arm/exynos4_boards.c                |   2 +
  hw/arm/gumstix.c                       |   2 +
  hw/arm/highbank.c                      |  13 ++-
  hw/arm/imx25_pdk.c                     |   1 +
  hw/arm/integratorcp.c                  |   1 +
  hw/arm/kzm.c                           |   1 +
  hw/arm/mainstone.c                     |   1 +
  hw/arm/musicpal.c                      |   1 +
  hw/arm/netduino2.c                     |   1 +
  hw/arm/nseries.c                       |   2 +
  hw/arm/omap_sx1.c                      |   2 +
  hw/arm/palm.c                          |   1 +
  hw/arm/raspi.c                         |   1 +
  hw/arm/realview.c                      |  10 ++-
  hw/arm/sabrelite.c                     |   1 +
  hw/arm/spitz.c                         |   4 +
  hw/arm/stellaris.c                     |   2 +
  hw/arm/tosa.c                          |   1 +
  hw/arm/versatilepb.c                   |   2 +
  hw/arm/vexpress.c                      |   7 +-
  hw/arm/virt.c                          |  12 ++-
  hw/arm/xilinx_zynq.c                   |  15 ++--
  hw/arm/xlnx-ep108.c                    |   2 +
  hw/arm/z2.c                            |   1 +
  hw/intc/arm_gicv3_kvm.c                |   2 +-
  hw/intc/armv7m_nvic.c                  |  68 +++++++++-----
  hw/watchdog/wdt_aspeed.c               |  93 ++++++++++++++++---
  qom/cpu.c                              |   7 ++
  target/arm/cpu.c                       |   8 +-
  target/arm/helper.c                    | 124 ++++++++++++-------------
  target/arm/kvm.c                       |   6 +-
  target/arm/kvm32.c                     |   8 +-
  target/arm/kvm64.c                     |  63 +++++++------
  target/arm/machine.c                   |  54 ++++++++++-
  target/arm/op_helper.c                 | 160 ++++++++++++++++++++++-----------
  target/arm/translate-a64.c             |  29 +++---
  target/arm/translate.c                 | 106 ++++++++++++++++------
 files changed, 795 insertions(+), 289 deletions(-)
  rename include/hw/{arm => intc}/armv7m_nvic.h (100%)

-New patch
+[PULL 1/2] target/arm: PTE bit GP only applies to stage1
+From: Richard Henderson <richard.henderson@linaro.org>
+Only perform the extract of GP during the stage1 walk.
+Reported-by: Peter Maydell <peter.maydell@linaro.org>
+Signed-off-by: Richard Henderson <richard.henderson@linaro.org>
+Reviewed-by: Peter Maydell <peter.maydell@linaro.org>
+Message-id: 20230407185149.3253946-2-richard.henderson@linaro.org
+Signed-off-by: Peter Maydell <peter.maydell@linaro.org>
+---
+ target/arm/ptw.c | 10 +++++-----
+file changed, 5 insertions(+), 5 deletions(-)
+diff --git a/target/arm/ptw.c b/target/arm/ptw.c
+index XXXXXXX..XXXXXXX 100644
+--- a/target/arm/ptw.c
++++ b/target/arm/ptw.c
+@@ -XXX,XX +XXX,XX @@ static bool get_phys_addr_lpae(CPUARMState *env, S1Translate *ptw,
+         result->f.attrs.secure = false;
+     }
+-    /* When in aarch64 mode, and BTI is enabled, remember GP in the TLB.  */
+-    if (aarch64 && cpu_isar_feature(aa64_bti, cpu)) {
+-        result->f.guarded = extract64(attrs, 50, 1); /* GP */
+-    }
+-
+     if (regime_is_stage2(mmu_idx)) {
+         result->cacheattrs.is_s2_format = true;
+         result->cacheattrs.attrs = extract32(attrs, 2, 4);
+@@ -XXX,XX +XXX,XX @@ static bool get_phys_addr_lpae(CPUARMState *env, S1Translate *ptw,
+         assert(attrindx <= 7);
+         result->cacheattrs.is_s2_format = false;
+         result->cacheattrs.attrs = extract64(mair, attrindx * 8, 8);
++
++        /* When in aarch64 mode, and BTI is enabled, remember GP in the TLB. */
++        if (aarch64 && cpu_isar_feature(aa64_bti, cpu)) {
++            result->f.guarded = extract64(attrs, 50, 1); /* GP */
++        }
+     }
+     /*
+--
+.34.1

-New patch
+[PULL 2/2] target/arm: Copy guarded bit in combine_cacheattrs
+From: Richard Henderson <richard.henderson@linaro.org>
+The guarded bit comes from the stage1 walk.
+Fixes: Coverity CID 1507929
+Signed-off-by: Richard Henderson <richard.henderson@linaro.org>
+Reviewed-by: Peter Maydell <peter.maydell@linaro.org>
+Message-id: 20230407185149.3253946-3-richard.henderson@linaro.org
+Signed-off-by: Peter Maydell <peter.maydell@linaro.org>
+---
+ target/arm/ptw.c | 1 +
+file changed, 1 insertion(+)
+diff --git a/target/arm/ptw.c b/target/arm/ptw.c
+index XXXXXXX..XXXXXXX 100644
+--- a/target/arm/ptw.c
++++ b/target/arm/ptw.c
+@@ -XXX,XX +XXX,XX @@ static ARMCacheAttrs combine_cacheattrs(uint64_t hcr,
+     assert(!s1.is_s2_format);
+     ret.is_s2_format = false;
++    ret.guarded = s1.guarded;
+     if (s1.attrs == 0xf0) {
+         tagged = true;
+--
+.34.1

Try #2, with the compile failure in kvm32.c fixed
(trivial change, not resending patches)

thanks
-- PMM

The following changes since commit 98bfaac788be0ca63d7d010c8d4ba100ff1d8278:

Merge remote-tracking branch 'remotes/armbru/tags/pull-qapi-2017-09-01-v3' into staging (2017-09-04 13:28:09 +0100)

are available in the git repository at:

git://git.linaro.org/people/pmaydell/qemu-arm.git tags/pull-target-arm-20170904-1

for you to fetch changes up to 0b8095ec9e924dc00636ab2069d88dec6592a75d:

arm_gicv3_kvm: Fix compile warning (2017-09-04 15:21:56 +0100)

----------------------------------------------------------------
target-arm:
 * collection of M profile cleanups and minor bugfixes
 * loader: handle ELF files with overlapping zero-init data
 * virt: allow PMU instantiation with userspace irqchip
 * wdt_aspeed: Add support for the reset width register
 * cpu: Define new cpu_transaction_failed() hook
 * arm: Support generating CPU exceptions on memory
   transaction failures (bus faults)
 * Mark some SoC devices as not user-creatable
 * arm: Fix aa64 ldp register writeback
 * arm_gicv3_kvm: Fix compile warning

----------------------------------------------------------------
Andrew Jeffery (2):
      watchdog: wdt_aspeed: Add support for the reset width register
      aspeed_soc: Propagate silicon-rev to watchdog

Andrew Jones (4):
      hw/arm/virt: add pmu interrupt state
      target/arm/kvm: pmu: split init and set-irq stages
      hw/arm/virt: allow pmu instantiation with userspace irqchip
      target/arm/kvm: pmu: improve error handling

Peter Maydell (25):
      target/arm: Use MMUAccessType enum rather than int
      target/arm: Don't trap WFI/WFE for M profile
      target/arm: Consolidate PMSA handling in get_phys_addr()
      target/arm: Tighten up Thumb decode where new v8M insns will be
      hw/intc/armv7m_nvic.c: Remove out of date comment
      target/arm: Remove incorrect comment about MPU_CTRL
      target/arm: Fix outdated comment about exception exit
      target/arm: Define and use XPSR bit masks
      target/arm: Don't store M profile PRIMASK and FAULTMASK in daif
      target/arm: Don't use cpsr_write/cpsr_read to transfer M profile XPSR
      target/arm: Make arm_cpu_dump_state() handle the M-profile XPSR
      target/arm: Don't calculate lr in arm_v7m_cpu_do_interrupt() until needed
      target/arm: Create and use new function arm_v7m_is_handler_mode()
      armv7m_nvic.h: Move from include/hw/arm to include/hw/intc
      nvic: Implement "user accesses BusFault" SCS region behaviour
      loader: Handle ELF files with overlapping zero-initialized data
      loader: Ignore zero-sized ELF segments
      memory.h: Move MemTxResult type to memattrs.h
      cpu: Define new cpu_transaction_failed() hook
      cputlb: Support generating CPU exceptions on memory transaction failures
      boards.h: Define new flag ignore_memory_transaction_failures
      hw/arm: Set ignore_memory_transaction_failures for most ARM boards
      target/arm: Factor out fault delivery code
      target/arm: Allow deliver_fault() caller to specify EA bit
      target/arm: Implement new do_transaction_failed hook

Philippe Mathieu-Daudé (1):
      hw/arm: use defined type name instead of hard-coded string

Pranith Kumar (1):
      arm_gicv3_kvm: Fix compile warning

Richard Henderson (1):
      target/arm: Fix aa64 ldp register writeback

Thomas Huth (2):
      hw/arm/aspeed_soc: Mark devices as user_creatable = false
      hw/arm/digic: Mark device with user_creatable = false

include/exec/memattrs.h                |  10 +++
 include/exec/memory.h                  |  10 ---
 include/hw/arm/armv7m.h                |   2 +-
 include/hw/boards.h                    |  11 +++
 include/hw/elf_ops.h                   |  72 +++++++++++++--
 include/hw/{arm => intc}/armv7m_nvic.h |   0
 include/hw/watchdog/wdt_aspeed.h       |   2 +
 include/qom/cpu.h                      |  27 ++++++
 softmmu_template.h                     |   4 +-
 target/arm/cpu.h                       |  56 +++++++++---
 target/arm/internals.h                 |  15 +++-
 target/arm/kvm_arm.h                   |   9 +-
 accel/tcg/cputlb.c                     |  32 ++++++-
 hw/arm/armv7m.c                        |   4 +-
 hw/arm/aspeed.c                        |   3 +
 hw/arm/aspeed_soc.c                    |   4 +
 hw/arm/collie.c                        |   1 +
 hw/arm/cubieboard.c                    |   1 +
 hw/arm/digic.c                         |   2 +
 hw/arm/digic_boards.c                  |   1 +
 hw/arm/exynos4210.c                    |   4 +-
 hw/arm/exynos4_boards.c                |   2 +
 hw/arm/gumstix.c                       |   2 +
 hw/arm/highbank.c                      |  13 ++-
 hw/arm/imx25_pdk.c                     |   1 +
 hw/arm/integratorcp.c                  |   1 +
 hw/arm/kzm.c                           |   1 +
 hw/arm/mainstone.c                     |   1 +
 hw/arm/musicpal.c                      |   1 +
 hw/arm/netduino2.c                     |   1 +
 hw/arm/nseries.c                       |   2 +
 hw/arm/omap_sx1.c                      |   2 +
 hw/arm/palm.c                          |   1 +
 hw/arm/raspi.c                         |   1 +
 hw/arm/realview.c                      |  10 ++-
 hw/arm/sabrelite.c                     |   1 +
 hw/arm/spitz.c                         |   4 +
 hw/arm/stellaris.c                     |   2 +
 hw/arm/tosa.c                          |   1 +
 hw/arm/versatilepb.c                   |   2 +
 hw/arm/vexpress.c                      |   7 +-
 hw/arm/virt.c                          |  12 ++-
 hw/arm/xilinx_zynq.c                   |  15 ++--
 hw/arm/xlnx-ep108.c                    |   2 +
 hw/arm/z2.c                            |   1 +
 hw/intc/arm_gicv3_kvm.c                |   2 +-
 hw/intc/armv7m_nvic.c                  |  68 +++++++++-----
 hw/watchdog/wdt_aspeed.c               |  93 ++++++++++++++++---
 qom/cpu.c                              |   7 ++
 target/arm/cpu.c                       |   8 +-
 target/arm/helper.c                    | 124 ++++++++++++-------------
 target/arm/kvm.c                       |   6 +-
 target/arm/kvm32.c                     |   8 +-
 target/arm/kvm64.c                     |  63 +++++++------
 target/arm/machine.c                   |  54 ++++++++++-
 target/arm/op_helper.c                 | 160 ++++++++++++++++++++++-----------
 target/arm/translate-a64.c             |  29 +++---
 target/arm/translate.c                 | 106 ++++++++++++++++------
 58 files changed, 795 insertions(+), 289 deletions(-)
 rename include/hw/{arm => intc}/armv7m_nvic.h (100%)

This bug seemed worth fixing for 8.0 since we need an rc4 anyway:
we were using uninitialized data for the guarded bit when
combining stage 1 and stage 2 attrs.

thanks
-- PMM

The following changes since commit 08dede07030973c1053868bc64de7e10bfa02ad6:

Merge tag 'pull-ppc-20230409' of https://github.com/legoater/qemu into staging (2023-04-10 11:47:52 +0100)

are available in the Git repository at:

https://git.linaro.org/people/pmaydell/qemu-arm.git tags/pull-target-arm-20230410

for you to fetch changes up to 8539dc00552e8ea60420856fc1262c8299bc6308:

target/arm: Copy guarded bit in combine_cacheattrs (2023-04-10 14:31:40 +0100)

----------------------------------------------------------------
target-arm: Fix bug where we weren't initializing
            guarded bit state when combining S1/S2 attrs

----------------------------------------------------------------
Richard Henderson (2):
      target/arm: PTE bit GP only applies to stage1
      target/arm: Copy guarded bit in combine_cacheattrs

target/arm/ptw.c | 11 ++++++-----
 1 file changed, 6 insertions(+), 5 deletions(-)

From: Richard Henderson <richard.henderson@linaro.org>

Only perform the extract of GP during the stage1 walk.

Reported-by: Peter Maydell <peter.maydell@linaro.org>
Signed-off-by: Richard Henderson <richard.henderson@linaro.org>
Reviewed-by: Peter Maydell <peter.maydell@linaro.org>
Message-id: 20230407185149.3253946-2-richard.henderson@linaro.org
Signed-off-by: Peter Maydell <peter.maydell@linaro.org>
---
 target/arm/ptw.c | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/target/arm/ptw.c b/target/arm/ptw.c
index XXXXXXX..XXXXXXX 100644
--- a/target/arm/ptw.c
+++ b/target/arm/ptw.c
@@ -XXX,XX +XXX,XX @@ static bool get_phys_addr_lpae(CPUARMState *env, S1Translate *ptw,
         result->f.attrs.secure = false;
     }
 
-    /* When in aarch64 mode, and BTI is enabled, remember GP in the TLB.  */
-    if (aarch64 && cpu_isar_feature(aa64_bti, cpu)) {
-        result->f.guarded = extract64(attrs, 50, 1); /* GP */
-    }
-
     if (regime_is_stage2(mmu_idx)) {
         result->cacheattrs.is_s2_format = true;
         result->cacheattrs.attrs = extract32(attrs, 2, 4);
@@ -XXX,XX +XXX,XX @@ static bool get_phys_addr_lpae(CPUARMState *env, S1Translate *ptw,
         assert(attrindx <= 7);
         result->cacheattrs.is_s2_format = false;
         result->cacheattrs.attrs = extract64(mair, attrindx * 8, 8);
+
+        /* When in aarch64 mode, and BTI is enabled, remember GP in the TLB. */
+        if (aarch64 && cpu_isar_feature(aa64_bti, cpu)) {
+            result->f.guarded = extract64(attrs, 50, 1); /* GP */
+        }
     }
 
     /*
-- 
2.34.1