i#7315: Avoid ID_AA64MMFR2_EL1 under QEMU to avoid fatal SIGILL (#7316)

derekbruening · web-flow · commit dcf4b22858da · 2025-03-03T12:28:37.000-05:00
Under QEMU, proc_init()'s MRS of ID_AA64MMFR2_EL1 causes a fatal SIGILL. We avoid it when under QEMU. (Note that this did not fail on Ubuntu20's QEMU, only on Ubuntu22, but we avoid under any QEMU for now to unblock progress.) We'd prefer to use TRY_EXCEPT_ALLOW_NO_DCONTEXT, but proc_init() is called prior to init-time signal handling being set up: and we'd need to add SIGILL to the ones caught at init time, which complicates later uses of SIGILL for NUDGESIG_SIGNUM and suspend_signum (and on x86 XSTATE_QUERY_SIG): so we'd want SIGILL to only work for try-except at init time. That is all a little too involved to implement right now so we're putting in this disabling to unblock Ubuntu22 progress for #7270. Long-term we probably want to put in the try-except, so we'll leave #7315 open. Tested on a local Ubuntu22 x86 machine with aarch64 cross-compilation where every test failed before this fix and nearly all pass now (the others fail for other reasons masked by this SIGILL before). Issue: #7270, #7315
diff --git a/core/arch/aarch64/proc.c b/core/arch/aarch64/proc.c
@@ -1,5 +1,5 @@
 /* **********************************************************
- * Copyright (c) 2022 Google, Inc.  All rights reserved.
+ * Copyright (c) 2022-2025 Google, Inc.  All rights reserved.
  * Copyright (c) 2016 ARM Limited. All rights reserved.
  * **********************************************************/
 
@@ -111,11 +111,25 @@ read_feature_regs(uint64 isa_features[])
         :
         : "x0");
 
-    asm(".inst 0xd5380740\n" /* mrs x0, ID_AA64MMFR2_EL1 */
-        "mov %0, x0"
-        : "=r"(isa_features[AA64MMFR2])
-        :
-        : "x0");
+    if (IF_LINUX_ELSE(!IS_STRING_OPTION_EMPTY(xarch_root), false)) {
+        /* We assume we're under QEMU, where this causes a fatal SIGILL (i#7315).
+         * XXX i#7315: We'd prefer to use TRY_EXCEPT_ALLOW_NO_DCONTEXT here and
+         * remove this xarch_root check, but proc_init() is called prior to
+         * init-time signal handling being set up: and we'd need to add SIGILL
+         * to the ones caught at init time, which complicates later uses of
+         * SIGILL for NUDGESIG_SIGNUM and suspend_signum (and on x86
+         * XSTATE_QUERY_SIG): so we'd want SIGILL to only work for try-except
+         * at init time. This is all a little too involved to implement right now.
+         */
+        LOG(GLOBAL, LOG_TOP | LOG_ASYNCH, 1,
+            "Skipping MRS of ID_AA64MMFR2_EL1 under QEMU\n");
+    } else {
+        asm(".inst 0xd5380740\n" /* mrs x0, ID_AA64MMFR2_EL1 */
+            "mov %0, x0"
+            : "=r"(isa_features[AA64MMFR2])
+            :
+            : "x0");
+    }
 }
 
 #    if !defined(MACOS)
