yuzu/unicorn
1
0
Fork 0
mirror of https://github.com/yuzu-emu/unicorn.git synced 2025-10-05 12:27:03 +00:00
Code Issues Packages Projects Releases Wiki Activity
unicorn/qemu
History
Stanislav Shmarov 6f20d35cd1
translate-all: Fix user-mode self-modifying code in 2 page long TB 
In user-mode emulation Translation Block can consist of 2 guest pages.
In that case QEMU also mprotects 2 host pages that are dedicated for
guest memory, containing instructions. QEMU detects self-modifying code
with SEGFAULT signal processing.

In case if instruction in 1st page is modifying memory of 2nd
page (or vice versa) QEMU will mark 2nd page with PAGE_WRITE,
invalidate TB, generate new TB contatining 1 guest instruction and
exit to CPU loop. QEMU won't call mprotect, and new TB will cause
same SEGFAULT. Page will have both PAGE_WRITE_ORG and PAGE_WRITE
flags, so QEMU will handle the signal as guest binary problem,
and exit with guest SEGFAULT.

Solution is to do following: In case if current TB was invalidated
continue to invalidate TBs from remaining guest pages and mark pages
as PAGE_WRITE. After that disable host page protection with mprotect.
If current tb was invalidated longjmp to main loop. That is more
efficient, since we won't get SEGFAULT when executing new TB.

Backports commit 7399a337e4126f7c8c8af3336726f001378c4798 from qemu
2018-02-25 03:14:22 -05:00
..
crypto
default-configs
docs
fpu softfloat: Handle snan_bit_is_one == 0 in MIPS pickNaNMulAdd() 2018-02-24 20:40:11 -05:00
hw qemu-common: push cpu.h inclusion out of qemu-common.h 2018-02-24 01:50:56 -05:00
include tcg: Improve the alignment check infrastructure 2018-02-25 02:23:28 -05:00
qapi qapi: Add new clone visitor 2018-02-25 01:34:12 -05:00
qobject util: move declarations out of qemu-common.h 2018-02-22 09:25:48 -05:00
qom qapi: Add new visit_complete() function 2018-02-25 01:20:03 -05:00
scripts qapi: Add new visit_complete() function 2018-02-25 01:20:03 -05:00
target-arm softfloat: Implement run-time-configurable meaning of signaling NaN bit 2018-02-24 20:27:12 -05:00
target-i386 target-i386: Publish advised value of MSR_IA32_FEATURE_CONTROL via fw_cfg 2018-02-25 02:49:42 -05:00
target-m68k softfloat: Implement run-time-configurable meaning of signaling NaN bit 2018-02-24 20:27:12 -05:00
target-mips target-mips: Add FCR31's FS bit definition 2018-02-24 21:32:10 -05:00
target-sparc target-sparc: Use sparc_cpu_parse_features() directly 2018-02-25 02:27:23 -05:00
tcg tcg: Improve the alignment check infrastructure 2018-02-25 02:23:28 -05:00
util range: Replace internal representation of Range 2018-02-25 00:44:36 -05:00
aarch64.h memory: Provide memory_region_init_rom() 2018-02-25 00:28:17 -05:00
aarch64eb.h memory: Provide memory_region_init_rom() 2018-02-25 00:28:17 -05:00
accel.c accel: make configure_accelerator return void 2018-02-24 00:31:28 -05:00
arm.h memory: Provide memory_region_init_rom() 2018-02-25 00:28:17 -05:00
armeb.h memory: Provide memory_region_init_rom() 2018-02-25 00:28:17 -05:00
CODING_STYLE
configure configure: Enable -Werror for MinGW builds, too 2018-02-24 18:56:05 -05:00
COPYING
COPYING.LIB
cpu-exec-common.c cpu-exec: Rename cpu_resume_from_signal() to cpu_loop_exit_noexc() 2018-02-24 17:25:28 -05:00
cpu-exec.c tb hash: hash phys_pc, pc, and flags with xxhash 2018-02-24 18:00:14 -05:00
cpus.c cpu: move exec-all.h inclusion out of cpu.h 2018-02-24 02:39:08 -05:00
cputlb.c cputlb: Add address parameter to VICTIM_TLB_HIT 2018-02-25 03:03:36 -05:00
exec.c exec: hide mr->ram_addr from qemu_get_ram_ptr users 2018-02-24 16:17:49 -05:00
gen_all_header.sh
glib_compat.c qapi: Fix memleak in string visitors on int lists 2018-02-25 00:20:34 -05:00
HACKING
header_gen.py memory: Provide memory_region_init_rom() 2018-02-25 00:28:17 -05:00
ioport.c hw: remove pio_addr_t 2018-02-24 02:43:16 -05:00
LICENSE
m68k.h memory: Provide memory_region_init_rom() 2018-02-25 00:28:17 -05:00
Makefile Makefile: Add a FORCE target 2018-02-24 17:03:51 -05:00
Makefile.objs
Makefile.target
memory.c memory: Provide memory_region_init_rom() 2018-02-25 00:28:17 -05:00
memory_mapping.c include/qemu/osdep.h: Don't include qapi/error.h 2018-02-21 23:08:18 -05:00
mips.h memory: Provide memory_region_init_rom() 2018-02-25 00:28:17 -05:00
mips64.h memory: Provide memory_region_init_rom() 2018-02-25 00:28:17 -05:00
mips64el.h memory: Provide memory_region_init_rom() 2018-02-25 00:28:17 -05:00
mipsel.h memory: Provide memory_region_init_rom() 2018-02-25 00:28:17 -05:00
powerpc.h memory: Provide memory_region_init_rom() 2018-02-25 00:28:17 -05:00
qapi-schema.json
qemu-log.c log: move qemu_log_close/qemu_log_flush from header to log.c 2018-02-22 11:13:17 -05:00
qemu-timer.c
rules.mak Makefile: add dependency on scripts/create_config 2018-02-24 17:05:03 -05:00
softmmu_template.h cputlb: Fix for self-modifying writes across page boundaries 2018-02-25 03:12:11 -05:00
sparc.h memory: Provide memory_region_init_rom() 2018-02-25 00:28:17 -05:00
sparc64.h memory: Provide memory_region_init_rom() 2018-02-25 00:28:17 -05:00
tcg-runtime.c
translate-all.c translate-all: Fix user-mode self-modifying code in 2 page long TB 2018-02-25 03:14:22 -05:00
translate-all.h user-exec: Push resume-from-signal code out to handle_cpu_signal() 2018-02-24 17:21:06 -05:00
translate-common.c
unicorn_common.h
VERSION
vl.c hw: explicitly include qemu/log.h 2018-02-24 02:00:45 -05:00
vl.h
x86_64.h memory: Provide memory_region_init_rom() 2018-02-25 00:28:17 -05:00