ARM: 6166/1: Proper prefetch abort handling on pre-ARMv6
in [Kernel]
|
Prev: i8042 no mouse on resume. (i8042: failed to resume active multiplexor, mouse won't work.)
Next: Closed source userspace graphics drivers with an open source kernel component
From: Russell King on 1 Jul 2010 18:50 On Fri, Jul 02, 2010 at 01:25:41AM +0300, Kirill A. Shutemov wrote: > On Thu, Jul 01, 2010 at 03:17:28PM -0700, Greg KH wrote: > > We (well, I) like to keep the commit log identical to what is upstream > > just to make things easier all around. Otherwise people start asking > > for spelling fixes, clarifications, and all sorts of other stuff (like > > this.) > > Ok, fair enough. > > I asked for it because I was confused by this commit message while > investigate (the same) problem on ARMv7 CPU. You shouldn't get anywhere near this on ARMv7, because we know the cause of the prefetch abort on those CPUs. On pre-ARMv6 CPUs, we always treat all prefetch aborts as a translation faults. The problem which this commit addresses occurs when userspace tries to execute code above TASK_SIZE - we're sent into a loop of prefetch aborts (because we are unable to determine that it is a permission fault.) ARMv6 and ARMv7 CPUs have an instruction fault status register, which tells us why the abort happened. On these CPUs, permission faults go nowhere near the translation fault handler. One possibility is that for some reason you're using the legacy prefetch abort code or pre-IFSR code, which will always tell the kernel that its a translation fault - and in this case, this patch would improve the situation. What kernel version are you using? The commit message is accurate for the kernel version to which it was originally applied. -- Russell King Linux kernel 2.6 ARM Linux - http://www.arm.linux.org.uk/ maintainer of: -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo(a)vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
From: Russell King on 1 Jul 2010 19:20 On Fri, Jul 02, 2010 at 01:59:11AM +0300, Kirill A. Shutemov wrote: > On Thu, Jul 01, 2010 at 11:48:37PM +0100, Russell King wrote: > > One possibility is that for some reason you're using the legacy prefetch > > abort code or pre-IFSR code, which will always tell the kernel that its > > a translation fault - and in this case, this patch would improve the > > situation. What kernel version are you using? > > 2.6.32 Should be recent enough. > If you run this test in loop on kernel without the patch you'll finally > get hung instead SIGSEGV. > > It seems the patch fixes more than it was written for. :) Have you investigated the IFSR and IFAR values, and the corresponding page table state? I'm not going to be able to run your test code for a few days. -- Russell King Linux kernel 2.6 ARM Linux - http://www.arm.linux.org.uk/ maintainer of: -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo(a)vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
From: Russell King on 6 Jul 2010 19:00 On Tue, Jul 06, 2010 at 04:06:18PM +0300, Kirill A. Shutemov wrote: > I've investigated the issue. It's reproducible if you try to jump to > the megabyte next to section mapping. Okay, this is specific to the way that OMAP sets up its mappings, which is why it doesn't appear everywhere. > On ARM one Linux PGD entry contains two hardware entry. But there is error > in do_translation_fault(). It's always call pmd_none() check for the first > entry of two, not for the entry corresponded to address. So in case if we > try to jump the megabyte next to section mapping, we will have inifinity > loop of translation faults. Okay, now that we know _why_ it happens, I'm satisfied that the fix previously committed will help this situation. > diff --git a/arch/arm/mm/fault.c b/arch/arm/mm/fault.c > index 9634fe1..825b9da 100644 > --- a/arch/arm/mm/fault.c > +++ b/arch/arm/mm/fault.c > @@ -406,7 +406,8 @@ do_translation_fault(unsigned long addr, unsigned int fsr, > pmd_k = pmd_offset(pgd_k, addr); > pmd = pmd_offset(pgd, addr); > > - if (pmd_none(*pmd_k)) > + index = (addr >> SECTION_SHIFT) & 1; > + if (pmd_none(pmd_k[index])) I do think this is extremely obscure, and therefore requires a comment to help people understand what is going on here and why. Leaving it in the commit log would be an invitation for this to be needlessly cut'n'pasted. -- Russell King Linux kernel 2.6 ARM Linux - http://www.arm.linux.org.uk/ maintainer of: -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo(a)vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
From: Russell King - ARM Linux on 7 Jul 2010 18:40
On Wed, Jul 07, 2010 at 11:56:01AM +0300, Kirill A. Shutemov wrote: > But it seems that the problem is more global. Potentially, any of > pmd_none() check may produce false results. I don't see an easy way to fix > it. It isn't. We normally guarantee that we always fill on both L1 entries. The only exception is for the mappings specified via create_mapping() which is used for the static platform mappings. > Does Linux VM still expect one PTE table per page? Yes, and as far as I can see probably always will. Hence why we need to put two L1 entries in one page and lie to the kernel about the sizes of the hardware entries. -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo(a)vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/ |