mirror of
https://github.com/riscv-software-src/opensbi.git
synced 2025-08-24 15:31:22 +01:00
013ba4ef3d
The parameter passed to HFENCE.GVMA instruction in rs1 register
is guest physical address right shifted by 2 (i.e. divided by 4).
Unfortunately, we overlooked the semantics of rs1 registers for
HFENCE.GVMA instruction and never right shifted guest physical
address by 2. This issue did not manifest for hypervisors till
now because all H-extension implementations (such as QEMU, Spike,
Rocket Core FPGA, etc) we tried till now were conservatively
flushing everything upon any HFENCE.GVMA instruction.
This patch fixes GPA passed to __sbi_hfence_gvma_vmid_gpa()
and __sbi_hfence_gvma_gpa() functions.
Fixes: 331ff6a162 ("lib: Support stage1 and stage2 tlb flushing")
Reported-by: Ian Huang <ihuang@ventanamicro.com>
Signed-off-by: Anup Patel <anup.patel@wdc.com>
Reviewed-by: Xiang W <wxjstz@126.com>
Reviewed-by: Dong Du <Dd_nirvana@sjtu.edu.cn>
465 lines
11 KiB
C
465 lines
11 KiB
C
/*
|
|
* SPDX-License-Identifier: BSD-2-Clause
|
|
*
|
|
* Copyright (c) 2019 Western Digital Corporation or its affiliates.
|
|
*
|
|
* Authors:
|
|
* Atish Patra <atish.patra@wdc.com>
|
|
* Anup Patel <anup.patel@wdc.com>
|
|
*/
|
|
|
|
#include <sbi/riscv_asm.h>
|
|
#include <sbi/riscv_atomic.h>
|
|
#include <sbi/riscv_barrier.h>
|
|
#include <sbi/sbi_error.h>
|
|
#include <sbi/sbi_fifo.h>
|
|
#include <sbi/sbi_hart.h>
|
|
#include <sbi/sbi_ipi.h>
|
|
#include <sbi/sbi_scratch.h>
|
|
#include <sbi/sbi_tlb.h>
|
|
#include <sbi/sbi_hfence.h>
|
|
#include <sbi/sbi_string.h>
|
|
#include <sbi/sbi_console.h>
|
|
#include <sbi/sbi_platform.h>
|
|
#include <sbi/sbi_pmu.h>
|
|
|
|
static unsigned long tlb_sync_off;
|
|
static unsigned long tlb_fifo_off;
|
|
static unsigned long tlb_fifo_mem_off;
|
|
static unsigned long tlb_range_flush_limit;
|
|
|
|
static void tlb_flush_all(void)
|
|
{
|
|
__asm__ __volatile("sfence.vma");
|
|
}
|
|
|
|
void sbi_tlb_local_hfence_vvma(struct sbi_tlb_info *tinfo)
|
|
{
|
|
unsigned long start = tinfo->start;
|
|
unsigned long size = tinfo->size;
|
|
unsigned long vmid = tinfo->vmid;
|
|
unsigned long i, hgatp;
|
|
|
|
sbi_pmu_ctr_incr_fw(SBI_PMU_FW_HFENCE_VVMA_RCVD);
|
|
|
|
hgatp = csr_swap(CSR_HGATP,
|
|
(vmid << HGATP_VMID_SHIFT) & HGATP_VMID_MASK);
|
|
|
|
if ((start == 0 && size == 0) || (size == SBI_TLB_FLUSH_ALL)) {
|
|
__sbi_hfence_vvma_all();
|
|
goto done;
|
|
}
|
|
|
|
for (i = 0; i < size; i += PAGE_SIZE) {
|
|
__sbi_hfence_vvma_va(start+i);
|
|
}
|
|
|
|
done:
|
|
csr_write(CSR_HGATP, hgatp);
|
|
}
|
|
|
|
void sbi_tlb_local_hfence_gvma(struct sbi_tlb_info *tinfo)
|
|
{
|
|
unsigned long start = tinfo->start;
|
|
unsigned long size = tinfo->size;
|
|
unsigned long i;
|
|
|
|
sbi_pmu_ctr_incr_fw(SBI_PMU_FW_HFENCE_GVMA_RCVD);
|
|
|
|
if ((start == 0 && size == 0) || (size == SBI_TLB_FLUSH_ALL)) {
|
|
__sbi_hfence_gvma_all();
|
|
return;
|
|
}
|
|
|
|
for (i = 0; i < size; i += PAGE_SIZE) {
|
|
__sbi_hfence_gvma_gpa((start + i) >> 2);
|
|
}
|
|
}
|
|
|
|
void sbi_tlb_local_sfence_vma(struct sbi_tlb_info *tinfo)
|
|
{
|
|
unsigned long start = tinfo->start;
|
|
unsigned long size = tinfo->size;
|
|
unsigned long i;
|
|
|
|
sbi_pmu_ctr_incr_fw(SBI_PMU_FW_SFENCE_VMA_RCVD);
|
|
|
|
if ((start == 0 && size == 0) || (size == SBI_TLB_FLUSH_ALL)) {
|
|
tlb_flush_all();
|
|
return;
|
|
}
|
|
|
|
for (i = 0; i < size; i += PAGE_SIZE) {
|
|
__asm__ __volatile__("sfence.vma %0"
|
|
:
|
|
: "r"(start + i)
|
|
: "memory");
|
|
}
|
|
}
|
|
|
|
void sbi_tlb_local_hfence_vvma_asid(struct sbi_tlb_info *tinfo)
|
|
{
|
|
unsigned long start = tinfo->start;
|
|
unsigned long size = tinfo->size;
|
|
unsigned long asid = tinfo->asid;
|
|
unsigned long vmid = tinfo->vmid;
|
|
unsigned long i, hgatp;
|
|
|
|
sbi_pmu_ctr_incr_fw(SBI_PMU_FW_HFENCE_VVMA_ASID_RCVD);
|
|
|
|
hgatp = csr_swap(CSR_HGATP,
|
|
(vmid << HGATP_VMID_SHIFT) & HGATP_VMID_MASK);
|
|
|
|
if (start == 0 && size == 0) {
|
|
__sbi_hfence_vvma_all();
|
|
goto done;
|
|
}
|
|
|
|
if (size == SBI_TLB_FLUSH_ALL) {
|
|
__sbi_hfence_vvma_asid(asid);
|
|
goto done;
|
|
}
|
|
|
|
for (i = 0; i < size; i += PAGE_SIZE) {
|
|
__sbi_hfence_vvma_asid_va(start + i, asid);
|
|
}
|
|
|
|
done:
|
|
csr_write(CSR_HGATP, hgatp);
|
|
}
|
|
|
|
void sbi_tlb_local_hfence_gvma_vmid(struct sbi_tlb_info *tinfo)
|
|
{
|
|
unsigned long start = tinfo->start;
|
|
unsigned long size = tinfo->size;
|
|
unsigned long vmid = tinfo->vmid;
|
|
unsigned long i;
|
|
|
|
sbi_pmu_ctr_incr_fw(SBI_PMU_FW_HFENCE_GVMA_VMID_RCVD);
|
|
|
|
if (start == 0 && size == 0) {
|
|
__sbi_hfence_gvma_all();
|
|
return;
|
|
}
|
|
|
|
if (size == SBI_TLB_FLUSH_ALL) {
|
|
__sbi_hfence_gvma_vmid(vmid);
|
|
return;
|
|
}
|
|
|
|
for (i = 0; i < size; i += PAGE_SIZE) {
|
|
__sbi_hfence_gvma_vmid_gpa((start + i) >> 2, vmid);
|
|
}
|
|
}
|
|
|
|
void sbi_tlb_local_sfence_vma_asid(struct sbi_tlb_info *tinfo)
|
|
{
|
|
unsigned long start = tinfo->start;
|
|
unsigned long size = tinfo->size;
|
|
unsigned long asid = tinfo->asid;
|
|
unsigned long i;
|
|
|
|
sbi_pmu_ctr_incr_fw(SBI_PMU_FW_SFENCE_VMA_ASID_RCVD);
|
|
|
|
if (start == 0 && size == 0) {
|
|
tlb_flush_all();
|
|
return;
|
|
}
|
|
|
|
/* Flush entire MM context for a given ASID */
|
|
if (size == SBI_TLB_FLUSH_ALL) {
|
|
__asm__ __volatile__("sfence.vma x0, %0"
|
|
:
|
|
: "r"(asid)
|
|
: "memory");
|
|
return;
|
|
}
|
|
|
|
for (i = 0; i < size; i += PAGE_SIZE) {
|
|
__asm__ __volatile__("sfence.vma %0, %1"
|
|
:
|
|
: "r"(start + i), "r"(asid)
|
|
: "memory");
|
|
}
|
|
}
|
|
|
|
void sbi_tlb_local_fence_i(struct sbi_tlb_info *tinfo)
|
|
{
|
|
sbi_pmu_ctr_incr_fw(SBI_PMU_FW_FENCE_I_RECVD);
|
|
|
|
__asm__ __volatile("fence.i");
|
|
}
|
|
|
|
static void tlb_pmu_incr_fw_ctr(struct sbi_tlb_info *data)
|
|
{
|
|
if (unlikely(!data))
|
|
return;
|
|
|
|
if (data->local_fn == sbi_tlb_local_fence_i)
|
|
sbi_pmu_ctr_incr_fw(SBI_PMU_FW_FENCE_I_SENT);
|
|
else if (data->local_fn == sbi_tlb_local_sfence_vma)
|
|
sbi_pmu_ctr_incr_fw(SBI_PMU_FW_SFENCE_VMA_SENT);
|
|
else if (data->local_fn == sbi_tlb_local_sfence_vma_asid)
|
|
sbi_pmu_ctr_incr_fw(SBI_PMU_FW_SFENCE_VMA_ASID_SENT);
|
|
else if (data->local_fn == sbi_tlb_local_hfence_gvma)
|
|
sbi_pmu_ctr_incr_fw(SBI_PMU_FW_HFENCE_GVMA_SENT);
|
|
else if (data->local_fn == sbi_tlb_local_hfence_gvma_vmid)
|
|
sbi_pmu_ctr_incr_fw(SBI_PMU_FW_HFENCE_GVMA_VMID_SENT);
|
|
else if (data->local_fn == sbi_tlb_local_hfence_vvma)
|
|
sbi_pmu_ctr_incr_fw(SBI_PMU_FW_HFENCE_VVMA_SENT);
|
|
else if (data->local_fn == sbi_tlb_local_hfence_vvma_asid)
|
|
sbi_pmu_ctr_incr_fw(SBI_PMU_FW_HFENCE_VVMA_ASID_SENT);
|
|
}
|
|
|
|
static void tlb_entry_process(struct sbi_tlb_info *tinfo)
|
|
{
|
|
u32 rhartid;
|
|
struct sbi_scratch *rscratch = NULL;
|
|
unsigned long *rtlb_sync = NULL;
|
|
|
|
tinfo->local_fn(tinfo);
|
|
|
|
sbi_hartmask_for_each_hart(rhartid, &tinfo->smask) {
|
|
rscratch = sbi_hartid_to_scratch(rhartid);
|
|
if (!rscratch)
|
|
continue;
|
|
|
|
rtlb_sync = sbi_scratch_offset_ptr(rscratch, tlb_sync_off);
|
|
while (atomic_raw_xchg_ulong(rtlb_sync, 1)) ;
|
|
}
|
|
}
|
|
|
|
static void tlb_process_count(struct sbi_scratch *scratch, int count)
|
|
{
|
|
struct sbi_tlb_info tinfo;
|
|
unsigned int deq_count = 0;
|
|
struct sbi_fifo *tlb_fifo =
|
|
sbi_scratch_offset_ptr(scratch, tlb_fifo_off);
|
|
|
|
while (!sbi_fifo_dequeue(tlb_fifo, &tinfo)) {
|
|
tlb_entry_process(&tinfo);
|
|
deq_count++;
|
|
if (deq_count > count)
|
|
break;
|
|
|
|
}
|
|
}
|
|
|
|
static void tlb_process(struct sbi_scratch *scratch)
|
|
{
|
|
struct sbi_tlb_info tinfo;
|
|
struct sbi_fifo *tlb_fifo =
|
|
sbi_scratch_offset_ptr(scratch, tlb_fifo_off);
|
|
|
|
while (!sbi_fifo_dequeue(tlb_fifo, &tinfo))
|
|
tlb_entry_process(&tinfo);
|
|
}
|
|
|
|
static void tlb_sync(struct sbi_scratch *scratch)
|
|
{
|
|
unsigned long *tlb_sync =
|
|
sbi_scratch_offset_ptr(scratch, tlb_sync_off);
|
|
|
|
while (!atomic_raw_xchg_ulong(tlb_sync, 0)) {
|
|
/*
|
|
* While we are waiting for remote hart to set the sync,
|
|
* consume fifo requests to avoid deadlock.
|
|
*/
|
|
tlb_process_count(scratch, 1);
|
|
}
|
|
|
|
return;
|
|
}
|
|
|
|
static inline int tlb_range_check(struct sbi_tlb_info *curr,
|
|
struct sbi_tlb_info *next)
|
|
{
|
|
unsigned long curr_end;
|
|
unsigned long next_end;
|
|
int ret = SBI_FIFO_UNCHANGED;
|
|
|
|
if (!curr || !next)
|
|
return ret;
|
|
|
|
next_end = next->start + next->size;
|
|
curr_end = curr->start + curr->size;
|
|
if (next->start <= curr->start && next_end > curr_end) {
|
|
curr->start = next->start;
|
|
curr->size = next->size;
|
|
sbi_hartmask_or(&curr->smask, &curr->smask, &next->smask);
|
|
ret = SBI_FIFO_UPDATED;
|
|
} else if (next->start >= curr->start && next_end <= curr_end) {
|
|
sbi_hartmask_or(&curr->smask, &curr->smask, &next->smask);
|
|
ret = SBI_FIFO_SKIP;
|
|
}
|
|
|
|
return ret;
|
|
}
|
|
|
|
/**
|
|
* Call back to decide if an inplace fifo update is required or next entry can
|
|
* can be skipped. Here are the different cases that are being handled.
|
|
*
|
|
* Case1:
|
|
* if next flush request range lies within one of the existing entry, skip
|
|
* the next entry.
|
|
* Case2:
|
|
* if flush request range in current fifo entry lies within next flush
|
|
* request, update the current entry.
|
|
*
|
|
* Note:
|
|
* We can not issue a fifo reset anymore if a complete vma flush is requested.
|
|
* This is because we are queueing FENCE.I requests as well now.
|
|
* To ease up the pressure in enqueue/fifo sync path, try to dequeue 1 element
|
|
* before continuing the while loop. This method is preferred over wfi/ipi because
|
|
* of MMIO cost involved in later method.
|
|
*/
|
|
static int tlb_update_cb(void *in, void *data)
|
|
{
|
|
struct sbi_tlb_info *curr;
|
|
struct sbi_tlb_info *next;
|
|
int ret = SBI_FIFO_UNCHANGED;
|
|
|
|
if (!in || !data)
|
|
return ret;
|
|
|
|
curr = (struct sbi_tlb_info *)data;
|
|
next = (struct sbi_tlb_info *)in;
|
|
|
|
if (next->local_fn == sbi_tlb_local_sfence_vma_asid &&
|
|
curr->local_fn == sbi_tlb_local_sfence_vma_asid) {
|
|
if (next->asid == curr->asid)
|
|
ret = tlb_range_check(curr, next);
|
|
} else if (next->local_fn == sbi_tlb_local_sfence_vma &&
|
|
curr->local_fn == sbi_tlb_local_sfence_vma) {
|
|
ret = tlb_range_check(curr, next);
|
|
}
|
|
|
|
return ret;
|
|
}
|
|
|
|
static int tlb_update(struct sbi_scratch *scratch,
|
|
struct sbi_scratch *remote_scratch,
|
|
u32 remote_hartid, void *data)
|
|
{
|
|
int ret;
|
|
struct sbi_fifo *tlb_fifo_r;
|
|
struct sbi_tlb_info *tinfo = data;
|
|
u32 curr_hartid = current_hartid();
|
|
|
|
/*
|
|
* If address range to flush is too big then simply
|
|
* upgrade it to flush all because we can only flush
|
|
* 4KB at a time.
|
|
*/
|
|
if (tinfo->size > tlb_range_flush_limit) {
|
|
tinfo->start = 0;
|
|
tinfo->size = SBI_TLB_FLUSH_ALL;
|
|
}
|
|
|
|
/*
|
|
* If the request is to queue a tlb flush entry for itself
|
|
* then just do a local flush and return;
|
|
*/
|
|
if (remote_hartid == curr_hartid) {
|
|
tinfo->local_fn(tinfo);
|
|
return -1;
|
|
}
|
|
|
|
tlb_fifo_r = sbi_scratch_offset_ptr(remote_scratch, tlb_fifo_off);
|
|
|
|
ret = sbi_fifo_inplace_update(tlb_fifo_r, data, tlb_update_cb);
|
|
if (ret != SBI_FIFO_UNCHANGED) {
|
|
return 1;
|
|
}
|
|
|
|
while (sbi_fifo_enqueue(tlb_fifo_r, data) < 0) {
|
|
/**
|
|
* For now, Busy loop until there is space in the fifo.
|
|
* There may be case where target hart is also
|
|
* enqueue in source hart's fifo. Both hart may busy
|
|
* loop leading to a deadlock.
|
|
* TODO: Introduce a wait/wakeup event mechanism to handle
|
|
* this properly.
|
|
*/
|
|
tlb_process_count(scratch, 1);
|
|
sbi_dprintf("hart%d: hart%d tlb fifo full\n",
|
|
curr_hartid, remote_hartid);
|
|
}
|
|
|
|
return 0;
|
|
}
|
|
|
|
static struct sbi_ipi_event_ops tlb_ops = {
|
|
.name = "IPI_TLB",
|
|
.update = tlb_update,
|
|
.sync = tlb_sync,
|
|
.process = tlb_process,
|
|
};
|
|
|
|
static u32 tlb_event = SBI_IPI_EVENT_MAX;
|
|
|
|
int sbi_tlb_request(ulong hmask, ulong hbase, struct sbi_tlb_info *tinfo)
|
|
{
|
|
if (!tinfo->local_fn)
|
|
return SBI_EINVAL;
|
|
|
|
tlb_pmu_incr_fw_ctr(tinfo);
|
|
|
|
return sbi_ipi_send_many(hmask, hbase, tlb_event, tinfo);
|
|
}
|
|
|
|
int sbi_tlb_init(struct sbi_scratch *scratch, bool cold_boot)
|
|
{
|
|
int ret;
|
|
void *tlb_mem;
|
|
unsigned long *tlb_sync;
|
|
struct sbi_fifo *tlb_q;
|
|
const struct sbi_platform *plat = sbi_platform_ptr(scratch);
|
|
|
|
if (cold_boot) {
|
|
tlb_sync_off = sbi_scratch_alloc_offset(sizeof(*tlb_sync));
|
|
if (!tlb_sync_off)
|
|
return SBI_ENOMEM;
|
|
tlb_fifo_off = sbi_scratch_alloc_offset(sizeof(*tlb_q));
|
|
if (!tlb_fifo_off) {
|
|
sbi_scratch_free_offset(tlb_sync_off);
|
|
return SBI_ENOMEM;
|
|
}
|
|
tlb_fifo_mem_off = sbi_scratch_alloc_offset(
|
|
SBI_TLB_FIFO_NUM_ENTRIES * SBI_TLB_INFO_SIZE);
|
|
if (!tlb_fifo_mem_off) {
|
|
sbi_scratch_free_offset(tlb_fifo_off);
|
|
sbi_scratch_free_offset(tlb_sync_off);
|
|
return SBI_ENOMEM;
|
|
}
|
|
ret = sbi_ipi_event_create(&tlb_ops);
|
|
if (ret < 0) {
|
|
sbi_scratch_free_offset(tlb_fifo_mem_off);
|
|
sbi_scratch_free_offset(tlb_fifo_off);
|
|
sbi_scratch_free_offset(tlb_sync_off);
|
|
return ret;
|
|
}
|
|
tlb_event = ret;
|
|
tlb_range_flush_limit = sbi_platform_tlbr_flush_limit(plat);
|
|
} else {
|
|
if (!tlb_sync_off ||
|
|
!tlb_fifo_off ||
|
|
!tlb_fifo_mem_off)
|
|
return SBI_ENOMEM;
|
|
if (SBI_IPI_EVENT_MAX <= tlb_event)
|
|
return SBI_ENOSPC;
|
|
}
|
|
|
|
tlb_sync = sbi_scratch_offset_ptr(scratch, tlb_sync_off);
|
|
tlb_q = sbi_scratch_offset_ptr(scratch, tlb_fifo_off);
|
|
tlb_mem = sbi_scratch_offset_ptr(scratch, tlb_fifo_mem_off);
|
|
|
|
*tlb_sync = 0;
|
|
|
|
sbi_fifo_init(tlb_q, tlb_mem,
|
|
SBI_TLB_FIFO_NUM_ENTRIES, SBI_TLB_INFO_SIZE);
|
|
|
|
return 0;
|
|
}
|