The following changes since commit 3e08b2b9cb64bff2b73fa9128c0e49bfcde0dd40:

Merge remote-tracking branch 'remotes/philmd-gitlab/tags/edk2-next-20200121' into staging (2020-01-21 15:29:25 +0000)

https://github.com/rth7680/qemu.git tags/pull-tcg-20200121

for you to fetch changes up to 75fa376cdab5e5db2c7fdd107358e16f95503ac6:

scripts/git.orderfile: Display decodetree before C source (2020-01-21 15:26:09 -1000)

Remove another limit to NB_MMU_MODES.

Fix compilation using uclibc.

Fix defaulting of -accel parameters.

Tidy cputlb basic routines.

Adjust git.orderfile for decodetree.

Carlos Santos (1):

util/cacheinfo: fix crash when compiling with uClibc

Philippe Mathieu-Daudé (1):

scripts/git.orderfile: Display decodetree before C source

Richard Henderson (14):

cputlb: Handle NB_MMU_MODES > TARGET_PAGE_BITS_MIN

vl: Remove unused variable in configure_accelerators

vl: Reduce scope of variables in configure_accelerators

vl: Remove useless test in configure_accelerators

vl: Only choose enabled accelerators in configure_accelerators

cputlb: Merge tlb_table_flush_by_mmuidx into tlb_flush_one_mmuidx_locked

cputlb: Make tlb_n_entries private to cputlb.c

cputlb: Pass CPUTLBDescFast to tlb_n_entries and sizeof_tlb

cputlb: Hoist tlb portions in tlb_mmu_resize_locked

cputlb: Hoist tlb portions in tlb_flush_one_mmuidx_locked

cputlb: Split out tlb_mmu_flush_locked

cputlb: Partially merge tlb_dyn_init into tlb_init

cputlb: Initialize tlbs as flushed

cputlb: Hoist timestamp outside of loops over tlbs

include/exec/cpu_ldst.h | 5 -

accel/tcg/cputlb.c | 287 +++++++++++++++++++++++++++++++++---------------

util/cacheinfo.c | 10 +-

vl.c | 27 +++--

scripts/git.orderfile | 3 +

5 files changed, 223 insertions(+), 109 deletions(-)

From: Philippe Mathieu-Daudé <philmd@redhat.com>

To avoid scrolling each instruction when reviewing tcg

helpers written for the decodetree script, display the

.decode files (similar to header declarations) before

the C source (implementation of previous declarations).

Signed-off-by: Philippe Mathieu-Daudé <philmd@redhat.com>

Reviewed-by: Stefano Garzarella <sgarzare@redhat.com>

Reviewed-by: Alex Bennée <alex.bennee@linaro.org>

Message-Id: <20191230082856.30556-1-philmd@redhat.com>

scripts/git.orderfile | 3 +++

1 file changed, 3 insertions(+)

diff --git a/scripts/git.orderfile b/scripts/git.orderfile

--- a/scripts/git.orderfile

+++ b/scripts/git.orderfile

@@ -XXX,XX +XXX,XX @@ qga/*.json

# headers

*.h

+# decoding tree specification

+*.decode

# code

*.c

2.20.1

Do not call get_clock_realtime() in tlb_mmu_resize_locked,

but hoist outside of any loop over a set of tlbs. This is

only two (indirect) callers, tlb_flush_by_mmuidx_async_work

and tlb_flush_page_locked, so not onerous.

Reviewed-by: Alex Bennée <alex.bennee@linaro.org>

Reviewed-by: Alistair Francis <alistair.francis@wdc.com>

Reviewed-by: Philippe Mathieu-Daudé <philmd@redhat.com>

accel/tcg/cputlb.c | 14 ++++++++------

1 file changed, 8 insertions(+), 6 deletions(-)

diff --git a/accel/tcg/cputlb.c b/accel/tcg/cputlb.c

--- a/accel/tcg/cputlb.c

+++ b/accel/tcg/cputlb.c

@@ -XXX,XX +XXX,XX @@ static void tlb_window_reset(CPUTLBDesc *desc, int64_t ns,

* high), since otherwise we are likely to have a significant amount of

* conflict misses.

*/

-static void tlb_mmu_resize_locked(CPUTLBDesc *desc, CPUTLBDescFast *fast)

+static void tlb_mmu_resize_locked(CPUTLBDesc *desc, CPUTLBDescFast *fast,

+ int64_t now)

{

size_t old_size = tlb_n_entries(fast);

size_t rate;

size_t new_size = old_size;

- int64_t now = get_clock_realtime();

int64_t window_len_ms = 100;

int64_t window_len_ns = window_len_ms * 1000 * 1000;

bool window_expired = now > desc->window_begin_ns + window_len_ns;

@@ -XXX,XX +XXX,XX @@ static void tlb_mmu_flush_locked(CPUTLBDesc *desc, CPUTLBDescFast *fast)

memset(desc->vtable, -1, sizeof(desc->vtable));

}

-static void tlb_flush_one_mmuidx_locked(CPUArchState *env, int mmu_idx)

+static void tlb_flush_one_mmuidx_locked(CPUArchState *env, int mmu_idx,

+ int64_t now)

{

CPUTLBDesc *desc = &env_tlb(env)->d[mmu_idx];

CPUTLBDescFast *fast = &env_tlb(env)->f[mmu_idx];

- tlb_mmu_resize_locked(desc, fast);

+ tlb_mmu_resize_locked(desc, fast, now);

tlb_mmu_flush_locked(desc, fast);

}

@@ -XXX,XX +XXX,XX @@ static void tlb_flush_by_mmuidx_async_work(CPUState *cpu, run_on_cpu_data data)

CPUArchState *env = cpu->env_ptr;

uint16_t asked = data.host_int;

uint16_t all_dirty, work, to_clean;

+ int64_t now = get_clock_realtime();

assert_cpu_is_self(cpu);

@@ -XXX,XX +XXX,XX @@ static void tlb_flush_by_mmuidx_async_work(CPUState *cpu, run_on_cpu_data data)

for (work = to_clean; work != 0; work &= work - 1) {

int mmu_idx = ctz32(work);

- tlb_flush_one_mmuidx_locked(env, mmu_idx);

+ tlb_flush_one_mmuidx_locked(env, mmu_idx, now);

}

qemu_spin_unlock(&env_tlb(env)->c.lock);

@@ -XXX,XX +XXX,XX @@ static void tlb_flush_page_locked(CPUArchState *env, int midx,

tlb_debug("forcing full flush midx %d ("

TARGET_FMT_lx "/" TARGET_FMT_lx ")\n",

midx, lp_addr, lp_mask);

- tlb_flush_one_mmuidx_locked(env, midx);

+ tlb_flush_one_mmuidx_locked(env, midx, get_clock_realtime());

} else {

if (tlb_flush_entry_locked(tlb_entry(env, midx, page), page)) {

tlb_n_used_entries_dec(env, midx);

2.20.1

There's little point in leaving these data structures half initialized,

and relying on a flush to be done during reset.

Reviewed-by: Alistair Francis <alistair.francis@wdc.com>

accel/tcg/cputlb.c | 5 +++--

1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/accel/tcg/cputlb.c b/accel/tcg/cputlb.c

--- a/accel/tcg/cputlb.c

+++ b/accel/tcg/cputlb.c

@@ -XXX,XX +XXX,XX @@ static void tlb_mmu_init(CPUTLBDesc *desc, CPUTLBDescFast *fast, int64_t now)

fast->mask = (n_entries - 1) << CPU_TLB_ENTRY_BITS;

fast->table = g_new(CPUTLBEntry, n_entries);

desc->iotlb = g_new(CPUIOTLBEntry, n_entries);

+ tlb_mmu_flush_locked(desc, fast);

static inline void tlb_n_used_entries_inc(CPUArchState *env, uintptr_t mmu_idx)

@@ -XXX,XX +XXX,XX @@ void tlb_init(CPUState *cpu)

qemu_spin_init(&env_tlb(env)->c.lock);

- /* Ensure that cpu_reset performs a full flush. */

- env_tlb(env)->c.dirty = ALL_MMUIDX_BITS;

+ /* All tlbs are initialized flushed. */

+ env_tlb(env)->c.dirty = 0;

for (i = 0; i < NB_MMU_MODES; i++) {

tlb_mmu_init(&env_tlb(env)->d[i], &env_tlb(env)->f[i], now);

2.20.1

In target/arm we will shortly have "too many" mmu_idx.

The current minimum barrier is caused by the way in which

tlb_flush_page_by_mmuidx is coded.

We can remove this limitation by allocating memory for

consumption by the worker. Let us assume that this is

the unlikely case, as will be the case for the majority

of targets which have so far satisfied the BUILD_BUG_ON,

and only allocate memory when necessary.

Reviewed-by: Peter Maydell <peter.maydell@linaro.org>

accel/tcg/cputlb.c | 167 +++++++++++++++++++++++++++++++++++----------

1 file changed, 132 insertions(+), 35 deletions(-)

diff --git a/accel/tcg/cputlb.c b/accel/tcg/cputlb.c

--- a/accel/tcg/cputlb.c

+++ b/accel/tcg/cputlb.c

@@ -XXX,XX +XXX,XX @@ static void tlb_flush_page_locked(CPUArchState *env, int midx,

}

-/* As we are going to hijack the bottom bits of the page address for a

- * mmuidx bit mask we need to fail to build if we can't do that

+/**

+ * tlb_flush_page_by_mmuidx_async_0:

+ * @cpu: cpu on which to flush

+ * @addr: page of virtual address to flush

+ * @idxmap: set of mmu_idx to flush

+ *

+ * Helper for tlb_flush_page_by_mmuidx and friends, flush one page

+ * at @addr from the tlbs indicated by @idxmap from @cpu.

*/

-QEMU_BUILD_BUG_ON(NB_MMU_MODES > TARGET_PAGE_BITS_MIN);

-

-static void tlb_flush_page_by_mmuidx_async_work(CPUState *cpu,

- run_on_cpu_data data)

+static void tlb_flush_page_by_mmuidx_async_0(CPUState *cpu,

+ target_ulong addr,

+ uint16_t idxmap)

{

CPUArchState *env = cpu->env_ptr;

- target_ulong addr_and_mmuidx = (target_ulong) data.target_ptr;

- target_ulong addr = addr_and_mmuidx & TARGET_PAGE_MASK;

- unsigned long mmu_idx_bitmap = addr_and_mmuidx & ALL_MMUIDX_BITS;

int mmu_idx;

assert_cpu_is_self(cpu);

- tlb_debug("page addr:" TARGET_FMT_lx " mmu_map:0x%lx\n",

- addr, mmu_idx_bitmap);

+ tlb_debug("page addr:" TARGET_FMT_lx " mmu_map:0x%x\n", addr, idxmap);

qemu_spin_lock(&env_tlb(env)->c.lock);

for (mmu_idx = 0; mmu_idx < NB_MMU_MODES; mmu_idx++) {

- if (test_bit(mmu_idx, &mmu_idx_bitmap)) {

+ if ((idxmap >> mmu_idx) & 1) {

tlb_flush_page_locked(env, mmu_idx, addr);

}

}

@@ -XXX,XX +XXX,XX @@ static void tlb_flush_page_by_mmuidx_async_work(CPUState *cpu,

tb_flush_jmp_cache(cpu, addr);

}

+/**

+ * tlb_flush_page_by_mmuidx_async_1:

+ * @cpu: cpu on which to flush

+ * @data: encoded addr + idxmap

+ *

+ * Helper for tlb_flush_page_by_mmuidx and friends, called through

+ * async_run_on_cpu. The idxmap parameter is encoded in the page

+ * offset of the target_ptr field. This limits the set of mmu_idx

+ * that can be passed via this method.

+ */

+static void tlb_flush_page_by_mmuidx_async_1(CPUState *cpu,

+ run_on_cpu_data data)

+{

+ target_ulong addr_and_idxmap = (target_ulong) data.target_ptr;

+ target_ulong addr = addr_and_idxmap & TARGET_PAGE_MASK;

+ uint16_t idxmap = addr_and_idxmap & ~TARGET_PAGE_MASK;

+

+ tlb_flush_page_by_mmuidx_async_0(cpu, addr, idxmap);

+}

+

+typedef struct {

+ target_ulong addr;

+ uint16_t idxmap;

+} TLBFlushPageByMMUIdxData;

+

+/**

+ * tlb_flush_page_by_mmuidx_async_2:

+ * @cpu: cpu on which to flush

+ * @data: allocated addr + idxmap

+ *

+ * Helper for tlb_flush_page_by_mmuidx and friends, called through

+ * async_run_on_cpu. The addr+idxmap parameters are stored in a

+ * TLBFlushPageByMMUIdxData structure that has been allocated

+ * specifically for this helper. Free the structure when done.

+ */

+static void tlb_flush_page_by_mmuidx_async_2(CPUState *cpu,

+ run_on_cpu_data data)

+{

+ TLBFlushPageByMMUIdxData *d = data.host_ptr;

+

+ tlb_flush_page_by_mmuidx_async_0(cpu, d->addr, d->idxmap);

+ g_free(d);

+}

+

void tlb_flush_page_by_mmuidx(CPUState *cpu, target_ulong addr, uint16_t idxmap)

{

- target_ulong addr_and_mmu_idx;

-

tlb_debug("addr: "TARGET_FMT_lx" mmu_idx:%" PRIx16 "\n", addr, idxmap);

/* This should already be page aligned */

- addr_and_mmu_idx = addr & TARGET_PAGE_MASK;

- addr_and_mmu_idx |= idxmap;

+ addr &= TARGET_PAGE_MASK;

- if (!qemu_cpu_is_self(cpu)) {

- async_run_on_cpu(cpu, tlb_flush_page_by_mmuidx_async_work,

- RUN_ON_CPU_TARGET_PTR(addr_and_mmu_idx));

+ if (qemu_cpu_is_self(cpu)) {

+ tlb_flush_page_by_mmuidx_async_0(cpu, addr, idxmap);

+ } else if (idxmap < TARGET_PAGE_SIZE) {

+ /*

+ * Most targets have only a few mmu_idx. In the case where

+ * we can stuff idxmap into the low TARGET_PAGE_BITS, avoid

+ * allocating memory for this operation.

+ */

+ async_run_on_cpu(cpu, tlb_flush_page_by_mmuidx_async_1,

+ RUN_ON_CPU_TARGET_PTR(addr | idxmap));

} else {

- tlb_flush_page_by_mmuidx_async_work(

- cpu, RUN_ON_CPU_TARGET_PTR(addr_and_mmu_idx));

+ TLBFlushPageByMMUIdxData *d = g_new(TLBFlushPageByMMUIdxData, 1);

+

+ /* Otherwise allocate a structure, freed by the worker. */

+ d->addr = addr;

+ d->idxmap = idxmap;

+ async_run_on_cpu(cpu, tlb_flush_page_by_mmuidx_async_2,

+ RUN_ON_CPU_HOST_PTR(d));

}

}

@@ -XXX,XX +XXX,XX @@ void tlb_flush_page(CPUState *cpu, target_ulong addr)

void tlb_flush_page_by_mmuidx_all_cpus(CPUState *src_cpu, target_ulong addr,

uint16_t idxmap)

{

- const run_on_cpu_func fn = tlb_flush_page_by_mmuidx_async_work;

- target_ulong addr_and_mmu_idx;

-

tlb_debug("addr: "TARGET_FMT_lx" mmu_idx:%"PRIx16"\n", addr, idxmap);

/* This should already be page aligned */

- addr_and_mmu_idx = addr & TARGET_PAGE_MASK;

- addr_and_mmu_idx |= idxmap;

+ addr &= TARGET_PAGE_MASK;

- flush_all_helper(src_cpu, fn, RUN_ON_CPU_TARGET_PTR(addr_and_mmu_idx));

- fn(src_cpu, RUN_ON_CPU_TARGET_PTR(addr_and_mmu_idx));

+ /*

+ * Allocate memory to hold addr+idxmap only when needed.

+ * See tlb_flush_page_by_mmuidx for details.

+ */

+ if (idxmap < TARGET_PAGE_SIZE) {

+ flush_all_helper(src_cpu, tlb_flush_page_by_mmuidx_async_1,

+ RUN_ON_CPU_TARGET_PTR(addr | idxmap));

+ } else {

+ CPUState *dst_cpu;

+

+ /* Allocate a separate data block for each destination cpu. */

+ CPU_FOREACH(dst_cpu) {

+ if (dst_cpu != src_cpu) {

+ TLBFlushPageByMMUIdxData *d

+ = g_new(TLBFlushPageByMMUIdxData, 1);

+

+ d->addr = addr;

+ d->idxmap = idxmap;

+ async_run_on_cpu(dst_cpu, tlb_flush_page_by_mmuidx_async_2,

+ RUN_ON_CPU_HOST_PTR(d));

+ }

+ }

+ tlb_flush_page_by_mmuidx_async_0(src_cpu, addr, idxmap);

void tlb_flush_page_all_cpus(CPUState *src, target_ulong addr)

@@ -XXX,XX +XXX,XX @@ void tlb_flush_page_by_mmuidx_all_cpus_synced(CPUState *src_cpu,

target_ulong addr,

uint16_t idxmap)

- const run_on_cpu_func fn = tlb_flush_page_by_mmuidx_async_work;

- target_ulong addr_and_mmu_idx;

-

tlb_debug("addr: "TARGET_FMT_lx" mmu_idx:%"PRIx16"\n", addr, idxmap);

/* This should already be page aligned */

- addr_and_mmu_idx = addr & TARGET_PAGE_MASK;

- addr_and_mmu_idx |= idxmap;

+ addr &= TARGET_PAGE_MASK;

- flush_all_helper(src_cpu, fn, RUN_ON_CPU_TARGET_PTR(addr_and_mmu_idx));

- async_safe_run_on_cpu(src_cpu, fn, RUN_ON_CPU_TARGET_PTR(addr_and_mmu_idx));

+ /*

+ * Allocate memory to hold addr+idxmap only when needed.

+ * See tlb_flush_page_by_mmuidx for details.

+ */

+ if (idxmap < TARGET_PAGE_SIZE) {

+ flush_all_helper(src_cpu, tlb_flush_page_by_mmuidx_async_1,

+ RUN_ON_CPU_TARGET_PTR(addr | idxmap));

+ async_safe_run_on_cpu(src_cpu, tlb_flush_page_by_mmuidx_async_1,

+ RUN_ON_CPU_TARGET_PTR(addr | idxmap));

+ } else {

+ CPUState *dst_cpu;

+ TLBFlushPageByMMUIdxData *d;

+

+ /* Allocate a separate data block for each destination cpu. */

+ CPU_FOREACH(dst_cpu) {

+ if (dst_cpu != src_cpu) {

+ d = g_new(TLBFlushPageByMMUIdxData, 1);

+ d->addr = addr;

+ d->idxmap = idxmap;

+ async_run_on_cpu(dst_cpu, tlb_flush_page_by_mmuidx_async_2,

+ RUN_ON_CPU_HOST_PTR(d));

+ }

+ }

+

+ d = g_new(TLBFlushPageByMMUIdxData, 1);

+ d->addr = addr;

+ d->idxmap = idxmap;

+ async_safe_run_on_cpu(src_cpu, tlb_flush_page_by_mmuidx_async_2,

+ RUN_ON_CPU_HOST_PTR(d));

}

void tlb_flush_page_all_cpus_synced(CPUState *src, target_ulong addr)

2.20.1

From: Carlos Santos <casantos@redhat.com>

uClibc defines _SC_LEVEL1_ICACHE_LINESIZE and _SC_LEVEL1_DCACHE_LINESIZE

but the corresponding sysconf calls returns -1, which is a valid result,

meaning that the limit is indeterminate.

Handle this situation using the fallback values instead of crashing due

to an assertion failure.

Signed-off-by: Carlos Santos <casantos@redhat.com>

Message-Id: <20191017123713.30192-1-casantos@redhat.com>

util/cacheinfo.c | 10 ++++++++--

diff --git a/util/cacheinfo.c b/util/cacheinfo.c

--- a/util/cacheinfo.c

+++ b/util/cacheinfo.c

@@ -XXX,XX +XXX,XX @@ static void sys_cache_info(int *isize, int *dsize)

static void sys_cache_info(int *isize, int *dsize)

# ifdef _SC_LEVEL1_ICACHE_LINESIZE

- *isize = sysconf(_SC_LEVEL1_ICACHE_LINESIZE);

+ int tmp_isize = (int) sysconf(_SC_LEVEL1_ICACHE_LINESIZE);

+ if (tmp_isize > 0) {

+ *isize = tmp_isize;

+ }

# endif

# ifdef _SC_LEVEL1_DCACHE_LINESIZE

- *dsize = sysconf(_SC_LEVEL1_DCACHE_LINESIZE);

+ int tmp_dsize = (int) sysconf(_SC_LEVEL1_DCACHE_LINESIZE);

+ if (tmp_dsize > 0) {

+ *dsize = tmp_dsize;

+ }

# endif

}

#endif /* sys_cache_info */

2.20.1

There are no users of this function outside cputlb.c,

and its interface will change in the next patch.

Reviewed-by: Alex Bennée <alex.bennee@linaro.org>

Reviewed-by: Alistair Francis <alistair.francis@wdc.com>

Reviewed-by: Philippe Mathieu-Daudé <philmd@redhat.com>

include/exec/cpu_ldst.h | 5 -----

accel/tcg/cputlb.c | 5 +++++

2 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/include/exec/cpu_ldst.h b/include/exec/cpu_ldst.h

index XXXXXXX..XXXXXXX 100644

--- a/include/exec/cpu_ldst.h

+++ b/include/exec/cpu_ldst.h

@@ -XXX,XX +XXX,XX @@ static inline uintptr_t tlb_index(CPUArchState *env, uintptr_t mmu_idx,

return (addr >> TARGET_PAGE_BITS) & size_mask;

-static inline size_t tlb_n_entries(CPUArchState *env, uintptr_t mmu_idx)

-{

- return (env_tlb(env)->f[mmu_idx].mask >> CPU_TLB_ENTRY_BITS) + 1;

-}

-

/* Find the TLB entry corresponding to the mmu_idx + address pair. */

static inline CPUTLBEntry *tlb_entry(CPUArchState *env, uintptr_t mmu_idx,

target_ulong addr)

diff --git a/accel/tcg/cputlb.c b/accel/tcg/cputlb.c

index XXXXXXX..XXXXXXX 100644

--- a/accel/tcg/cputlb.c

+++ b/accel/tcg/cputlb.c

@@ -XXX,XX +XXX,XX @@ QEMU_BUILD_BUG_ON(sizeof(target_ulong) > sizeof(run_on_cpu_data));

QEMU_BUILD_BUG_ON(NB_MMU_MODES > 16);

#define ALL_MMUIDX_BITS ((1 << NB_MMU_MODES) - 1)

+static inline size_t tlb_n_entries(CPUArchState *env, uintptr_t mmu_idx)

+ return (env_tlb(env)->f[mmu_idx].mask >> CPU_TLB_ENTRY_BITS) + 1;

static inline size_t sizeof_tlb(CPUArchState *env, uintptr_t mmu_idx)

return env_tlb(env)->f[mmu_idx].mask + (1 << CPU_TLB_ENTRY_BITS);

2.20.1