diff options
| author | Avi Kivity <avi@redhat.com> | 2010-03-15 07:59:57 -0400 |
|---|---|---|
| committer | Avi Kivity <avi@redhat.com> | 2010-05-17 05:15:43 -0400 |
| commit | 08e850c6536db302050c0287649e68e3bbdfe2c7 (patch) | |
| tree | 9eb7e554b53ea9eb1cb408f81234f404a43a54ab /arch/x86/kvm/paging_tmpl.h | |
| parent | fbc5d139bb92e6822e4c000f97631a072d8babf9 (diff) | |
KVM: MMU: Reinstate pte prefetch on invlpg
Commit fb341f57 removed the pte prefetch on guest invlpg, citing guest races.
However, the SDM is adamant that prefetch is allowed:
"The processor may create entries in paging-structure caches for
translations required for prefetches and for accesses that are a
result of speculative execution that would never actually occur
in the executed code path."
And, in fact, there was a race in the prefetch code: we picked up the pte
without the mmu lock held, so an older invlpg could install the pte over
a newer invlpg.
Reinstate the prefetch logic, but this time note whether another invlpg has
executed using a counter. If a race occured, do not install the pte.
Signed-off-by: Avi Kivity <avi@redhat.com>
Signed-off-by: Marcelo Tosatti <mtosatti@redhat.com>
Diffstat (limited to 'arch/x86/kvm/paging_tmpl.h')
| -rw-r--r-- | arch/x86/kvm/paging_tmpl.h | 15 |
1 files changed, 15 insertions, 0 deletions
diff --git a/arch/x86/kvm/paging_tmpl.h b/arch/x86/kvm/paging_tmpl.h index 4b37e1acd375..067797a72768 100644 --- a/arch/x86/kvm/paging_tmpl.h +++ b/arch/x86/kvm/paging_tmpl.h | |||
| @@ -463,6 +463,7 @@ out_unlock: | |||
| 463 | static void FNAME(invlpg)(struct kvm_vcpu *vcpu, gva_t gva) | 463 | static void FNAME(invlpg)(struct kvm_vcpu *vcpu, gva_t gva) |
| 464 | { | 464 | { |
| 465 | struct kvm_shadow_walk_iterator iterator; | 465 | struct kvm_shadow_walk_iterator iterator; |
| 466 | gpa_t pte_gpa = -1; | ||
| 466 | int level; | 467 | int level; |
| 467 | u64 *sptep; | 468 | u64 *sptep; |
| 468 | int need_flush = 0; | 469 | int need_flush = 0; |
| @@ -476,6 +477,10 @@ static void FNAME(invlpg)(struct kvm_vcpu *vcpu, gva_t gva) | |||
| 476 | if (level == PT_PAGE_TABLE_LEVEL || | 477 | if (level == PT_PAGE_TABLE_LEVEL || |
| 477 | ((level == PT_DIRECTORY_LEVEL && is_large_pte(*sptep))) || | 478 | ((level == PT_DIRECTORY_LEVEL && is_large_pte(*sptep))) || |
| 478 | ((level == PT_PDPE_LEVEL && is_large_pte(*sptep)))) { | 479 | ((level == PT_PDPE_LEVEL && is_large_pte(*sptep)))) { |
| 480 | struct kvm_mmu_page *sp = page_header(__pa(sptep)); | ||
| 481 | |||
| 482 | pte_gpa = (sp->gfn << PAGE_SHIFT); | ||
| 483 | pte_gpa += (sptep - sp->spt) * sizeof(pt_element_t); | ||
| 479 | 484 | ||
| 480 | if (is_shadow_present_pte(*sptep)) { | 485 | if (is_shadow_present_pte(*sptep)) { |
| 481 | rmap_remove(vcpu->kvm, sptep); | 486 | rmap_remove(vcpu->kvm, sptep); |
| @@ -493,7 +498,17 @@ static void FNAME(invlpg)(struct kvm_vcpu *vcpu, gva_t gva) | |||
| 493 | 498 | ||
| 494 | if (need_flush) | 499 | if (need_flush) |
| 495 | kvm_flush_remote_tlbs(vcpu->kvm); | 500 | kvm_flush_remote_tlbs(vcpu->kvm); |
| 501 | |||
| 502 | atomic_inc(&vcpu->kvm->arch.invlpg_counter); | ||
| 503 | |||
| 496 | spin_unlock(&vcpu->kvm->mmu_lock); | 504 | spin_unlock(&vcpu->kvm->mmu_lock); |
| 505 | |||
| 506 | if (pte_gpa == -1) | ||
| 507 | return; | ||
| 508 | |||
| 509 | if (mmu_topup_memory_caches(vcpu)) | ||
| 510 | return; | ||
| 511 | kvm_mmu_pte_write(vcpu, pte_gpa, NULL, sizeof(pt_element_t), 0); | ||
| 497 | } | 512 | } |
| 498 | 513 | ||
| 499 | static gpa_t FNAME(gva_to_gpa)(struct kvm_vcpu *vcpu, gva_t vaddr, u32 access, | 514 | static gpa_t FNAME(gva_to_gpa)(struct kvm_vcpu *vcpu, gva_t vaddr, u32 access, |