From nobody Mon Feb  9 04:59:57 2026
Return-Path: qemu-devel-bounces+famz=redhat.com@nongnu.org
Received: from zmta04.collab.prod.int.phx2.redhat.com (LHLO
 zmta04.collab.prod.int.phx2.redhat.com) (10.5.81.11) by
 zmail26.collab.prod.int.phx2.redhat.com with LMTP; Mon, 4 Sep 2017 09:00:22
 -0400 (EDT)
Received: from smtp.corp.redhat.com (int-mx06.intmail.prod.int.phx2.redhat.com
 [10.5.11.16])
	by zmta04.collab.prod.int.phx2.redhat.com (Postfix) with ESMTP id BFD6DD0310
	for <fzheng@mail.corp.redhat.com>; Mon,  4 Sep 2017 09:00:22 -0400 (EDT)
Received: by smtp.corp.redhat.com (Postfix)
	id BC47582083; Mon,  4 Sep 2017 13:00:22 +0000 (UTC)
Delivered-To: famz@redhat.com
Received: from mx1.redhat.com (ext-mx01.extmail.prod.ext.phx2.redhat.com
 [10.5.110.25])
	by smtp.corp.redhat.com (Postfix) with ESMTPS id B33DA8208A
	for <famz@redhat.com>; Mon,  4 Sep 2017 13:00:19 +0000 (UTC)
Received: from lists.gnu.org (lists.gnu.org [208.118.235.17])
	(using TLSv1 with cipher AES256-SHA (256/256 bits))
	(No client certificate requested)
	by mx1.redhat.com (Postfix) with ESMTPS id 2F4B3793F7
	for <famz@redhat.com>; Mon,  4 Sep 2017 13:00:14 +0000 (UTC)
DMARC-Filter: OpenDMARC Filter v1.3.2 mx1.redhat.com 2F4B3793F7
Authentication-Results: ext-mx01.extmail.prod.ext.phx2.redhat.com;
 dmarc=fail (p=none dis=none) header.from=linaro.org
Authentication-Results: ext-mx01.extmail.prod.ext.phx2.redhat.com;
 spf=pass smtp.mailfrom=qemu-devel-bounces+famz=redhat.com@nongnu.org
DKIM-Filter: OpenDKIM Filter v2.11.0 mx1.redhat.com 2F4B3793F7
Received: from localhost ([::1]:60593 helo=lists.gnu.org)
	by lists.gnu.org with esmtp (Exim 4.71)
	(envelope-from <qemu-devel-bounces+famz=redhat.com@nongnu.org>)
	id 1doqz7-0006wC-Aj
	for famz@redhat.com; Mon, 04 Sep 2017 09:00:13 -0400
Received: from eggs.gnu.org ([2001:4830:134:3::10]:52954)
	by lists.gnu.org with esmtp (Exim 4.71)
	(envelope-from <pm215@archaic.org.uk>) id 1doqSk-0005Fo-8L
	for qemu-devel@nongnu.org; Mon, 04 Sep 2017 08:26:54 -0400
Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71)
	(envelope-from <pm215@archaic.org.uk>) id 1doqSX-00050p-0s
	for qemu-devel@nongnu.org; Mon, 04 Sep 2017 08:26:46 -0400
Received: from orth.archaic.org.uk ([2001:8b0:1d0::2]:37140)
	by eggs.gnu.org with esmtps (TLS1.0:RSA_AES_256_CBC_SHA1:32)
	(Exim 4.71) (envelope-from <pm215@archaic.org.uk>)
	id 1doqSW-000503-Qa
	for qemu-devel@nongnu.org; Mon, 04 Sep 2017 08:26:32 -0400
Received: from pm215 by orth.archaic.org.uk with local (Exim 4.89)
	(envelope-from <pm215@archaic.org.uk>) id 1doqSV-0005eU-RS
	for qemu-devel@nongnu.org; Mon, 04 Sep 2017 13:26:31 +0100
From: Peter Maydell <peter.maydell@linaro.org>
To: qemu-devel@nongnu.org
Date: Mon,  4 Sep 2017 13:26:06 +0100
Message-Id: <1504527967-29248-36-git-send-email-peter.maydell@linaro.org>
In-Reply-To: <1504527967-29248-1-git-send-email-peter.maydell@linaro.org>
References: <1504527967-29248-1-git-send-email-peter.maydell@linaro.org>
X-detected-operating-system: by eggs.gnu.org: Genre and OS details not
	recognized.
X-Received-From: 2001:8b0:1d0::2
Subject: [Qemu-devel] [PULL 35/36] target/arm: Fix aa64 ldp register
 writeback
X-BeenThere: qemu-devel@nongnu.org
X-Mailman-Version: 2.1.21
Precedence: list
List-Id: <qemu-devel.nongnu.org>
List-Unsubscribe: <https://lists.nongnu.org/mailman/options/qemu-devel>,
	<mailto:qemu-devel-request@nongnu.org?subject=unsubscribe>
List-Archive: <http://lists.nongnu.org/archive/html/qemu-devel/>
List-Post: <mailto:qemu-devel@nongnu.org>
List-Help: <mailto:qemu-devel-request@nongnu.org?subject=help>
List-Subscribe: <https://lists.nongnu.org/mailman/listinfo/qemu-devel>,
	<mailto:qemu-devel-request@nongnu.org?subject=subscribe>
Errors-To: qemu-devel-bounces+famz=redhat.com@nongnu.org
Sender: "Qemu-devel" <qemu-devel-bounces+famz=redhat.com@nongnu.org>
X-Greylist: Sender passed SPF test, Sender IP whitelisted by DNSRBL,
 ACL 205 matched,
 not delayed by milter-greylist-4.5.16 (mx1.redhat.com [10.5.110.25]);
 Mon, 04 Sep 2017 13:00:14 +0000 (UTC)
X-Greylist: inspected by milter-greylist-4.5.16 (mx1.redhat.com
 [10.5.110.25]);
 Mon,
 04 Sep 2017 13:00:14 +0000 (UTC) for IP:'208.118.235.17' DOMAIN:'lists.gnu.org' HELO:'lists.gnu.org'
 FROM:'redhat.com@nongnu.org' RCPT:''
X-RedHat-Spam-Score: -5.02
  (HEADER_FROM_DIFFERENT_DOMAINS,RCVD_IN_DNSWL_HI,RCVD_IN_MSPIKE_H3,RCVD_IN_MSPIKE_WL,SPF_PASS)
 208.118.235.17 lists.gnu.org 208.118.235.17 lists.gnu.org
 <qemu-devel-bounces+famz=redhat.com@nongnu.org>
X-Scanned-By: MIMEDefang 2.78 on 10.5.110.25
X-Scanned-By: MIMEDefang 2.79 on 10.5.11.16
Content-Length: 2769
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"

From: Richard Henderson <richard.henderson@linaro.org>

For "ldp x0, x1, [x0]", if the second load is on a second page and
the second page is unmapped, the exception would be raised with x0
already modified.  This means the instruction couldn't be restarted.

Cc: qemu-arm@nongnu.org
Cc: qemu-stable@nongnu.org
Reported-by: Andrew <andrew@fubar.geek.nz>
Signed-off-by: Richard Henderson <richard.henderson@linaro.org>
Message-id: 20170825224833.4463-1-richard.henderson@linaro.org
Fixes: https://bugs.launchpad.net/qemu/+bug/1713066
Signed-off-by: Richard Henderson <richard.henderson@linaro.org>
[PMM: tweaked comment format]
Reviewed-by: Peter Maydell <peter.maydell@linaro.org>
Signed-off-by: Peter Maydell <peter.maydell@linaro.org>
---
 target/arm/translate-a64.c | 29 +++++++++++++++++------------
 1 file changed, 17 insertions(+), 12 deletions(-)

diff --git a/target/arm/translate-a64.c b/target/arm/translate-a64.c
index 2200e25..cb44632 100644
--- a/target/arm/translate-a64.c
+++ b/target/arm/translate-a64.c
@@ -2217,29 +2217,34 @@ static void disas_ldst_pair(DisasContext *s, uint32=
_t insn)
         } else {
             do_fp_st(s, rt, tcg_addr, size);
         }
-    } else {
-        TCGv_i64 tcg_rt =3D cpu_reg(s, rt);
-        if (is_load) {
-            do_gpr_ld(s, tcg_rt, tcg_addr, size, is_signed, false,
-                      false, 0, false, false);
-        } else {
-            do_gpr_st(s, tcg_rt, tcg_addr, size,
-                      false, 0, false, false);
-        }
-    }
-    tcg_gen_addi_i64(tcg_addr, tcg_addr, 1 << size);
-    if (is_vector) {
+        tcg_gen_addi_i64(tcg_addr, tcg_addr, 1 << size);
         if (is_load) {
             do_fp_ld(s, rt2, tcg_addr, size);
         } else {
             do_fp_st(s, rt2, tcg_addr, size);
         }
     } else {
+        TCGv_i64 tcg_rt =3D cpu_reg(s, rt);
         TCGv_i64 tcg_rt2 =3D cpu_reg(s, rt2);
+
         if (is_load) {
+            TCGv_i64 tmp =3D tcg_temp_new_i64();
+
+            /* Do not modify tcg_rt before recognizing any exception
+             * from the second load.
+             */
+            do_gpr_ld(s, tmp, tcg_addr, size, is_signed, false,
+                      false, 0, false, false);
+            tcg_gen_addi_i64(tcg_addr, tcg_addr, 1 << size);
             do_gpr_ld(s, tcg_rt2, tcg_addr, size, is_signed, false,
                       false, 0, false, false);
+
+            tcg_gen_mov_i64(tcg_rt, tmp);
+            tcg_temp_free_i64(tmp);
         } else {
+            do_gpr_st(s, tcg_rt, tcg_addr, size,
+                      false, 0, false, false);
+            tcg_gen_addi_i64(tcg_addr, tcg_addr, 1 << size);
             do_gpr_st(s, tcg_rt2, tcg_addr, size,
                       false, 0, false, false);
         }
--=20
2.7.4