Google Git
Sign in
qemu-android/qemu-android/ab096a75cd626dcd4ad34b2a11652df0269bee0d^!/.
commit
ab096a75cd626dcd4ad34b2a11652df0269bee0d
[log]
author
Paolo Bonzini <pbonzini@redhat.com>
Tue Aug 18 06:34:19 2015 -0700
committer
Paolo Bonzini <pbonzini@redhat.com>
Wed Sep 09 15:34:53 2015 +0200
tree
c4fe850ffe472f0bee61c7c2a792a1d6e026f4a1
parent
b0a46fa796504c7334202877a68c857e49f7c96c [diff]
tcg: synchronize cpu->exit_request and cpu->tcg_exit_req accesses

Reviewed-by: Richard Henderson <rth@twiddle.net>
Signed-off-by: Paolo Bonzini <pbonzini@redhat.com>

diff --git a/cpu-exec.c b/cpu-exec.c
index 567ae8b..e24c640 100644
--- a/cpu-exec.c
+++ b/cpu-exec.c

@@ -507,8 +507,12 @@
                          * loop. Whatever requested the exit will also
                          * have set something else (eg exit_request or
                          * interrupt_request) which we will handle
-                         * next time around the loop.
+                         * next time around the loop.  But we need to
+                         * ensure the tcg_exit_req read in generated code
+                         * comes before the next read of cpu->exit_request
+                         * or cpu->interrupt_request.
                          */
+                        smp_rmb();
                         next_tb = 0;
                         break;
                     case TB_EXIT_ICOUNT_EXPIRED:

diff --git a/qom/cpu.c b/qom/cpu.c
index 62f4b5d..02b56f7 100644
--- a/qom/cpu.c
+++ b/qom/cpu.c

@@ -114,6 +114,8 @@
 void cpu_exit(CPUState *cpu)
 {
     cpu->exit_request = 1;
+    /* Ensure cpu_exec will see the exit request after TCG has exited.  */
+    smp_wmb();
     cpu->tcg_exit_req = 1;
 }