Re: [Qemu-devel] Qemu arm emulation

qemu-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Qemu-devel] Qemu arm emulation

From:	Fabrice Bellard
Subject:	Re: [Qemu-devel] Qemu arm emulation
Date:	Wed, 08 Dec 2004 23:33:50 +0100
User-agent:	Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.7.3) Gecko/20040913

Thank you for the patch ! From the spec, I think there are still errorsfor 0 shifts when shiftop != 3. Have you made a patch for that too ?


Fabrice.

Paul Brook wrote:

On Friday 03 December 2004 21:07, Charlie Baylis wrote:

Hi Fabrice

I have had a look at some faults in the ARM port of Qemu. I have discovered
a couple of bugs. To avoid difficulties with my employer I can't distribute
my patch which contains the fixes, but they are fairly trivial so I am
detailing the changes required here.

1. The RRX operand shift on data processing instructions is incorrectly
decoded as a rotate right (ROR) of 0 bits.
RRX should have the effect of an extended rotate right of 1 bit where the
carry flag is shifted into the top bit of the result. If the S bit is set,
then the carry flag is set to the bottom bit of the source value.



The attached patch fixes this.

I posted it a while back, but it never got into CVS and I never chased it.
Paul


------------------------------------------------------------------------

Index: target-arm/op.c
===================================================================
RCS file: /cvsroot/qemu/qemu/target-arm/op.c,v
retrieving revision 1.3
diff -u -p -r1.3 op.c
--- target-arm/op.c     30 Nov 2003 19:40:08 -0000      1.3
+++ target-arm/op.c     1 Aug 2004 21:43:22 -0000
@@ -485,6 +502,11 @@ void OPPROTO op_rorl_T1_im(void)
     T1 = ((uint32_t)T1 >> shift) | (T1 << (32 - shift));
 }

+void OPPROTO op_rrxl_T1(void)

+{
+    T1 = ((uint32_t)T1 >> 1) | ((uint32_t)env->CF << 31);
+}
+
 /* T1 based, set C flag */
 void OPPROTO op_shll_T1_im_cc(void)
 {
@@ -512,6 +534,14 @@ void OPPROTO op_rorl_T1_im_cc(void)
     T1 = ((uint32_t)T1 >> shift) | (T1 << (32 - shift));
 }

+void OPPROTO op_rrxl_T1_cc(void)

+{
+    uint32_t c;
+    c = T1 & 1;
+    T1 = ((uint32_t)T1 >> 1) | ((uint32_t)env->CF << 31);
+    env->CF = c;
+}
+
 /* T2 based */
 void OPPROTO op_shll_T2_im(void)
 {
Index: target-arm/translate.c
===================================================================
RCS file: /cvsroot/qemu/qemu/target-arm/translate.c,v
retrieving revision 1.10
diff -u -p -r1.10 translate.c
--- target-arm/translate.c      22 Jun 2004 10:55:49 -0000      1.10
+++ target-arm/translate.c      1 Aug 2004 21:43:22 -0000

@@ -365,6 +484,11 @@ static void disas_arm_insn(DisasContext} else {

                         gen_shift_T1_im[shiftop](shift);
                     }
+                } else if (shiftop == 3) {
+                    if (logic_cc)
+                        gen_op_rrxl_T1_cc();
+                    else
+                        gen_op_rrxl_T1();
                 }
             } else {
                 rs = (insn >> 8) & 0xf;


------------------------------------------------------------------------

_______________________________________________
Qemu-devel mailing list
address@hidden
http://lists.nongnu.org/mailman/listinfo/qemu-devel

[Prev in Thread]

Current Thread

[Next in Thread]

[Qemu-devel] Qemu arm emulation, Charlie Baylis, 2004/12/03
- Re: [Qemu-devel] Qemu arm emulation, Paul Brook, 2004/12/03
  - Re: [Qemu-devel] Qemu arm emulation, Fabrice Bellard <=
    - Re: [Qemu-devel] Qemu arm emulation, Paul Brook, 2004/12/08

Prev by Date: [Qemu-devel] qemu/target-arm op.c translate.c
Next by Date: [Qemu-devel] [PATCH] Updated: Use existing tun/tap network interface
Previous by thread: Re: [Qemu-devel] Qemu arm emulation
Next by thread: Re: [Qemu-devel] Qemu arm emulation
Index(es):
- Date
- Thread