qemu-devel
[Top][All Lists]
Advanced
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Qemu-devel] Possibility of unaligned DMA accesses via the QEMU DMA

From: Mark Cave-Ayland
Subject: Re: [Qemu-devel] Possibility of unaligned DMA accesses via the QEMU DMA API?
Date: Wed, 17 Jul 2013 21:12:09 +0100
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:10.0.12) Gecko/20130116 Icedove/10.0.12 
On 17/07/13 14:35, Kevin Wolf wrote:


Okay, so I've had a quick look at that DMA controller, and it seems that
for a complete emulation, there's no way around using a bounce buffer
(and calling directly into the block layer instead of using
dma-helpers.c) for the general case.

You can have a fast path that is triggered if one or more directly
following INPUT/OUTPUT commands cover the whole IDE command, and that
creates an QEMUSGList as described above and uses dma-helpers.c to
implement zero-copy requests. I suspect that your Darwin requests would
actually fall into this category.

Essentially I think Alex' patches are doing something similar, just not
implementing the complete DMA controller feature set and with the
regular slow path hacked as additional code into the fast path. So the
code could be cleaner, it could use asynchronous block layer functions
and handle errors, and it could be more complete, but at the end of
the day you'd still have some fast-path zero-copy I/O and some calls
into the block layer using bounce buffers.
I think the key concept to understand here is at what point does the data hit the disk? From the comments in various parts of Darwin/Linux, it could be understood that the DMA transfers are between memory and the ATA drive *buffer*, so for writes especially there is no guarantee that they even hit the disk until some point in the future, unless of course the FLUSH flag is set in the control register.
So part of me makes me think that maybe we are over-thinking this and we should just go with Kevin's original suggestion: what about if we start a new QEMUSGList for each IDE transfer, and just keep appending QEMUSGList entries until we find an OUTPUT_LAST/INPUT_LAST command?
Why is this valid? We can respond with a complete status for the intermediate INPUT_MORE/OUTPUT_MORE commands without touching the disk because all that guarantees is that data has been passed between memory and the drive *buffer* - not that it has actually hit the disk. And what is the point of having explicit _LAST commands if they aren't used to signify completion of the whole transfer between drive and memory? 


ATB,

Mark.
reply via email to
[Prev in Thread] Current Thread [Next in Thread]