PTLB and IBM Software Support

The privileged PTLB (Purge Translation Lookaside Buffer) instruction is common to most modern computers, even by that name. It informs the hardware that some part of the memory map that it might just now be remembering (in the TLB), has been changed in RAM and the hardware must forget the old value and look again if necessary to learn the new value. To use the old value would cause obscure system misbehavior that is hard to relate to using a stale map. Thus the design of software to manipulate the map is fraught with anxiety lest there be too few PTLBs. But PTLBs are slow. There are few bugs so hard to find. (See PTLB in this.)

IBM shipped sources for early versions of VM/370. Tymshare provided timsharing services on mid-range 370s and significantly modified these sources in support of our atypical requirements. One day we found a path thru the kernel that changed the memory map but failed to purge the TLB. It was fairly easy to fix and we did, but we felt obliged to tell IBM about the bug. I called IBM support, which was very good indeed. Our contact there, however, had not conceived of a customer finding a bug by reading source code. They wanted a crash, (record of memory at the point of failure.) We suspected that we had never crashed with such a failure, and if we had the crash would provide few clues. They wondered what we were complaining about.

There the matter stood for several weeks. I then ran into John Cocke from IBM in an airport. John had the ear of important people at IBM and carried considerable weight for his reputation of technical understanding. I told John about the PTLB and our standoff. When I got home a few hours later I had a telephone message from a VP of IBM asking me to please call with the PTLB bug info. They soon circulated a patch.

The above is pretty nearly true in all details. The following is purely made up. I don’t recall how I described the bug to IBM but here is how I could have:
Imagine a page fault. That gets you into the kernel in a well known place. The faulty path thru the kernel encounters a sequence of conditional branches. Here is the sequence of decisions those branches make on that path.
true, true, false, true, false, false, (modify page table entry), false, true, return to user mode.
Note that the memory map was modified and no PTLB was performed on this path. Few bugs are so simple to define.