From nobody Wed May 15 19:31:35 2024 Delivered-To: importer@patchew.org Authentication-Results: mx.zohomail.com; spf=pass (zohomail.com: domain of gnu.org designates 209.51.188.17 as permitted sender) smtp.mailfrom=qemu-devel-bounces+importer=patchew.org@nongnu.org ARC-Seal: i=1; a=rsa-sha256; t=1590923009; cv=none; d=zohomail.com; s=zohoarc; b=gKS8SVROB0M0hKBlHD44OSM7pLeaivAMrYoGNNxOrPj1X8EkbQv/JodJHWgeb8CPIUsrTolJl/7a7jC6HTKjOxAb7RXqBI0VeowNRZf50rnZXgTPdHsrgMZe7ZdRXvrjXZNLAmvrlN+NQv56Hh3C522u2c1rkzXGL3f8F8pu7u4= ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=zohomail.com; s=zohoarc; t=1590923009; h=Content-Transfer-Encoding:Cc:Date:From:List-Subscribe:List-Post:List-Id:List-Archive:List-Help:List-Unsubscribe:MIME-Version:Message-ID:Sender:Subject:To; bh=CwK85/8zfBZwF97MqyF1QWqfri4giSxuk3K38mv8vPQ=; b=Az6O1NgHg/T4EAk2r7nB97c8eWsNJYG+wMx7XVtCNs81HYP51hY/FMwr8HDym3hQdz/rvI/mA7FnJyj4KEn9y6F+sKyLvDxhY1AxJr2ez6qNj/4a5EJob7ZOQ6UwVcOWyg5Io0DBV4NeldBRcCKlZ3zUz1X2aaPFXs203DbXc4Y= ARC-Authentication-Results: i=1; mx.zohomail.com; spf=pass (zohomail.com: domain of gnu.org designates 209.51.188.17 as permitted sender) smtp.mailfrom=qemu-devel-bounces+importer=patchew.org@nongnu.org Return-Path: Received: from lists.gnu.org (lists.gnu.org [209.51.188.17]) by mx.zohomail.com with SMTPS id 1590923009705170.0605745217846; Sun, 31 May 2020 04:03:29 -0700 (PDT) Received: from localhost ([::1]:33648 helo=lists1p.gnu.org) by lists.gnu.org with esmtp (Exim 4.90_1) (envelope-from ) id 1jfLkU-0001ey-7t for importer@patchew.org; Sun, 31 May 2020 07:03:26 -0400 Received: from eggs.gnu.org ([2001:470:142:3::10]:53320) by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from ) id 1jfLjl-0001An-DD for qemu-devel@nongnu.org; Sun, 31 May 2020 07:02:41 -0400 Received: from mout.kundenserver.de ([217.72.192.75]:59031) by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from ) id 1jfLjk-0006Oj-9M for qemu-devel@nongnu.org; Sun, 31 May 2020 07:02:41 -0400 Received: from localhost.localdomain ([82.252.135.106]) by mrelayeu.kundenserver.de (mreue107 [212.227.15.183]) with ESMTPSA (Nemesis) id 1MFL4B-1jlibL3fmD-00Fjz1; Sun, 31 May 2020 13:02:35 +0200 From: Laurent Vivier To: qemu-devel@nongnu.org Subject: [PATCH] target/m68k: implement fmove.l #,FPCR Date: Sun, 31 May 2020 13:02:31 +0200 Message-Id: <20200531110231.620711-1-laurent@vivier.eu> X-Mailer: git-send-email 2.26.2 MIME-Version: 1.0 Content-Transfer-Encoding: quoted-printable X-Provags-ID: V03:K1:gRXlPp3ur9V9PClMfEz5Kcot4hH4+G1Frpu/j6M5h4iEo7sZPPC 4u5pwEgsK/0imq8xinGXfhR1ET4OHqvOxmB01i4EOb7fXfindYSYXnBVzQZaIGT4IAfLP7U OZz7I05svbNJsLu8RMUUO0IfY1Sl+bHT1lT77wyqSqWH7Zg0IikIqyVvypTDYddlhaH8DM8 pXDbmP3L8SSNXEiS5d4sg== X-UI-Out-Filterresults: notjunk:1;V03:K0:7VIazFhr6/o=:6wy0/jbWo6ISJoPF8+A4wS PJIo0BqNNizhrYdri/7V+gY1X9evt8gvdBPuQJx93DjqP+wwQMez0A/FqRIF743HY1A2Dv0UZ 46rUYq/ds8+UJRy6bxDS9Z4OTvtIBa4Tz94kmwNK9sjoEEJd9yLePgDWXNWi/x66m3k81z9sn ToMZ3PCG9q/XZhL8uY0KG3MCUPMezthMu7xAmexXcNYbwDyRHl7Uzyw0be3YKaCAHVZf8FFrI iEF/pr5YuZjC9Ojv5642jZPXXlWZMyuW02MP8hQVrU4Yb/YQxG29SUj2WNQ1NqKMXYBASQyD8 N2deWU64tF0wCliZcRWWobUyM65fXU7UC+gpab6tY9iN3JVUiUZukd9pTQS9cGg+Fw3oZwP7F s4x41a4XS/mUMiYLX8LLirFQsLXMbT2yUYcQFVwT3ByM0zS13Vqjv1ZkOlRmt39H8wfw4nnPN angb8GC3XZnDwWZv2NAoaccfY7l6G+2YlM68L+oxGiFE8WMQANcSSwA8LBuk3pJMKVE43GY4D /q96yPf/sd948boDo5rLFKIxFVRZPIgTqlwLjNN3Er2YEY+Oi39j3w6oJYqy+K+9WAIQiUWr6 k2IZMoe9lzhw0m6TuYSBcZIqhzBl1aNOxVZrnP77c0fvgkV6dL+nKxbT8wpurKEFUNCxQT/2O 6F0LE/Et+w/jboiwS4r784aC97NFgtrj+e215eDr8npCqfVBUMCzAhESRHNh4qxEc4Z+BBNdA PCELz9wneTrBkUNg62E0CLm4/oKiQedw7CXapKFEANCm7wbUdKjkRNWJBxeJ47pfguh8vdMNW yXDaQ6OcDMyk4mRP9RMCp+UjI9VLsgckHFGBfEyZUckhF1iyUvI3W2wYa6w20rdZ1OKbCPf Received-SPF: pass (zohomail.com: domain of gnu.org designates 209.51.188.17 as permitted sender) client-ip=209.51.188.17; envelope-from=qemu-devel-bounces+importer=patchew.org@nongnu.org; helo=lists.gnu.org; Received-SPF: none client-ip=217.72.192.75; envelope-from=laurent@vivier.eu; helo=mout.kundenserver.de X-detected-operating-system: by eggs.gnu.org: First seen = 2020/05/31 07:02:37 X-ACL-Warn: Detected OS = Linux 2.2.x-3.x [generic] X-Spam_score_int: -18 X-Spam_score: -1.9 X-Spam_bar: - X-Spam_report: (-1.9 / 5.0 requ) BAYES_00=-1.9, RCVD_IN_DNSWL_NONE=-0.0001, URIBL_BLOCKED=0.001 autolearn=_AUTOLEARN X-Spam_action: no action X-BeenThere: qemu-devel@nongnu.org X-Mailman-Version: 2.1.23 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Cc: Laurent Vivier , John Paul Adrian Glaubitz Errors-To: qemu-devel-bounces+importer=patchew.org@nongnu.org Sender: "Qemu-devel" Content-Type: text/plain; charset="utf-8" The immediate value mode was ignored and instruction execution ends to an invalid access mode. This was found running 'R' that set FPSR to 0 at startup with a 'fmove.l #0,FPSR' in qemu-system-m68k emulation and triggers a kernel crash: [ 56.640000] *** ADDRESS ERROR *** FORMAT=3D2 [ 56.640000] Current process id is 728 [ 56.640000] BAD KERNEL TRAP: 00000000 [ 56.640000] Modules linked in: sg evdev mac_hid ip_tables x_tables sha1_= generic hmac ipv6 nf_defrag_ipv6 autofs4 ext4 crc16 mbcache jbd2 crc32c_gen= eric sd_mod t10_pi crc_t10dif crct10dif_generic crct10dif_common sr_mod cdr= om mac_esp macsonic esp_scsi [ 56.640000] PC: [<00016a2c>] X_UNSUPP+0x2c/0x3c [ 56.640000] SR: 2004 SP: 3eb5e68c a2: c02e239a [ 56.640000] d0: 00000040 d1: 00000002 d2: 8002adec d3: 8002ad50 [ 56.640000] d4: 8002c768 d5: 0000000d a0: ffffffc2 a1: ffffffc1 [ 56.640000] Process R (pid: 728, task=3Da3dfda5d) [ 56.640000] Frame format=3D2 instr addr=3D00000000 [ 56.650000] Stack from 3a4d9f30: [ 56.650000] 41000000 00000002 00000002 ffffffc2 ffffffc1 1fff000= 0 80000000 00000000 [ 56.650000] 3fbf0000 80000000 00000000 00000000 20000000 0000000= 0 7fff0000 ffffffff [ 56.650000] ffffffff 00000000 00050008 00000000 8000067c c02c200= 0 efffee20 000002d8 [ 56.650000] 00002a28 3a4d9f98 00000002 00000014 fffffffe 8002c76= 8 00000002 00000041 [ 56.650000] 00000002 c041fc58 c0743758 ffffffff 00000000 0008c07= 5 00002b24 00000012 [ 56.650000] 000007d0 00000024 00000002 c05bef04 c05bef04 0000005= e 00000077 c28aca70 [ 56.650000] Call Trace: [<00050008>] copy_overflow+0x10/0x28 [ 56.650000] [<00002a28>] buserr+0x20/0x28 [ 56.650000] [<0008c075>] bpf_check+0x57f/0x1cfa [ 56.650000] [<00002b24>] syscall+0x8/0xc [ 56.650000] [<0000c019>] dn_sched_init+0x75/0x88 [ 56.650000] Code: 1017 0200 00f0 0c00 0040 66ff 0000 05ac 8800 00= 00 0000 f23c 9000 0000 0000 222e ff84 082e 0005 ff1c 6600 000a 0281 [ 56.650000] Disabling lock debugging due to kernel taint ... Reported-by: John Paul Adrian Glaubitz Signed-off-by: Laurent Vivier Reviewed-by: Richard Henderson Tested-by: John Paul Adrian Glaubitz --- target/m68k/translate.c | 14 ++++++++++++++ 1 file changed, 14 insertions(+) diff --git a/target/m68k/translate.c b/target/m68k/translate.c index 0f80888203d3..c093f6c683e8 100644 --- a/target/m68k/translate.c +++ b/target/m68k/translate.c @@ -4936,6 +4936,20 @@ static void gen_op_fmove_fcr(CPUM68KState *env, Disa= sContext *s, gen_store_fcr(s, AREG(insn, 0), mask); } return; + case 7: /* Immediate */ + if (REG(insn, 0) =3D=3D 4) { + if (is_write || + (mask !=3D M68K_FPIAR && mask !=3D M68K_FPSR && + mask !=3D M68K_FPCR)) { + gen_exception(s, s->base.pc_next, EXCP_ILLEGAL); + return; + } + tmp =3D tcg_const_i32(read_im32(env, s)); + gen_store_fcr(s, tmp, mask); + tcg_temp_free(tmp); + return; + } + break; default: break; } --=20 2.26.2