From: Julian Brown <julian@codesourcery.com>
To: Peter Maydell <peter.maydell@linaro.org>
Cc: QEMU Developers <qemu-devel@nongnu.org>
Subject: Re: [Qemu-devel] [PATCH 2/5] Fix Thumb-1 BE32 execution and disassembly.
Date: Fri, 4 Nov 2016 14:04:24 +0000 [thread overview]
Message-ID: <20161104140424.51369668@squid.athome> (raw)
In-Reply-To: <CAFEAcA_cOWiLFEg37PhaU+hnrjRGnJc_g1cFc6FXgbXnOpFnVw@mail.gmail.com>
On Fri, 4 Nov 2016 13:30:12 +0000
Peter Maydell <peter.maydell@linaro.org> wrote:
> On 3 November 2016 at 17:30, Julian Brown <julian@codesourcery.com>
> wrote:
> > Thumb-1 code has some issues in BE32 mode (as currently
> > implemented). In short, since bytes are swapped within words at
> > load time for BE32 executables, this also swaps pairs of adjacent
> > Thumb-1 instructions.
> >
> > This patch un-swaps those pairs of instructions again, both for
> > execution, and for disassembly.
> >
> > Signed-off-by: Julian Brown <julian@codesourcery.com>
> > ---
> > disas/arm.c | 46
> > +++++++++++++++++++++++++++++++++++-----------
> > include/disas/bfd.h | 1 + target-arm/arm_ldst.h | 10 +++++++++-
> > target-arm/cpu.c | 4 ++++
> > 4 files changed, 49 insertions(+), 12 deletions(-)
> >
> > diff --git a/disas/arm.c b/disas/arm.c
> > index 93c6503..4807ba3 100644
> > --- a/disas/arm.c
> > +++ b/disas/arm.c
> > @@ -3863,10 +3863,11 @@ print_insn_arm (bfd_vma pc, struct
> > disassemble_info *info) int is_data = false;
> > unsigned int size = 4;
> > void (*printer) (bfd_vma, struct disassemble_info *,
> > long);
> > - int little;
> > + int little, is_thumb1_be32 = false;
> >
> > little = (info->endian == BFD_ENDIAN_LITTLE);
> > is_thumb |= (pc & 1);
> > + is_thumb1_be32 = (info->flags & INSN_ARM_THUMB1_BE32) != 0;
> > pc &= ~(bfd_vma)1;
> >
> > if (force_thumb)
> > @@ -3915,11 +3916,22 @@ print_insn_arm (bfd_vma pc, struct
> > disassemble_info *info) info->bytes_per_chunk = 2;
> > size = 2;
> >
> > - status = info->read_memory_func (pc, (bfd_byte *)b, 2, info);
> > - if (little)
> > - given = (b[0]) | (b[1] << 8);
> > - else
> > - given = (b[1]) | (b[0] << 8);
> > + if (is_thumb1_be32) {
> > + status = info->read_memory_func(pc & ~3, (bfd_byte *)b,
> > 4, info);
> > + assert(little);
> > + if ((pc & 2) == 0) {
> > + given = b[2] | (b[3] << 8);
> > + } else {
> > + given = b[0] | (b[1] << 8);
> > + }
> > + } else {
> > + status = info->read_memory_func(pc, (bfd_byte *)b, 2,
> > info);
> > + if (little) {
> > + given = (b[0]) | (b[1] << 8);
> > + } else {
>
> > + given = (b[1]) | (b[0] << 8);
> > + }
> > + }
>
> Could we do this instead by changing the read_memory_func() so that it
> did the appropriate XORing of addresses ? (Chaining through to
> the original read_memory_func would be a bit irritating as you'd
> need to find a place to stash that function pointer where you
> could get at it again from the new read_memory_func.)
Hmm, not sure. I'll try to think about whether that can be done nicely.
Julian
next prev parent reply other threads:[~2016-11-04 14:04 UTC|newest]
Thread overview: 28+ messages / expand[flat|nested] mbox.gz Atom feed top
2016-11-03 17:30 [Qemu-devel] [PATCH 0/5] ARM BE8/BE32 big-endian system-mode fixes (semihosting, gdbstub) Julian Brown
2016-11-03 17:30 ` [Qemu-devel] [PATCH 1/5] ARM BE8/BE32 semihosting and gdbstub support Julian Brown
2016-11-03 22:23 ` Peter Maydell
2016-11-03 23:34 ` Julian Brown
2016-11-04 8:48 ` Paolo Bonzini
2016-11-04 10:25 ` Julian Brown
2016-11-04 11:01 ` Paolo Bonzini
2016-11-04 9:03 ` Paolo Bonzini
2016-12-06 15:11 ` Julian Brown
2016-12-06 15:44 ` Peter Maydell
2016-12-06 15:51 ` Julian Brown
2016-12-06 16:14 ` Peter Maydell
2016-11-03 17:30 ` [Qemu-devel] [PATCH 2/5] Fix Thumb-1 BE32 execution and disassembly Julian Brown
2016-11-04 13:30 ` Peter Maydell
2016-11-04 14:04 ` Julian Brown [this message]
2016-12-06 15:12 ` Julian Brown
2016-11-03 17:30 ` [Qemu-devel] [PATCH 3/5] Fix arm_semi_flen_cb for BE32 system mode Julian Brown
2016-11-04 9:00 ` Paolo Bonzini
2016-12-06 15:11 ` Julian Brown
2016-11-03 17:30 ` [Qemu-devel] [PATCH 4/5] ARM BE32 watchpoint fix Julian Brown
2016-11-03 23:14 ` Peter Maydell
2016-11-03 23:20 ` Julian Brown
2016-11-04 8:55 ` Paolo Bonzini
2016-12-06 15:12 ` Julian Brown
2016-11-03 21:26 ` [Qemu-devel] [PATCH 5/5] Fix typo in arm_cpu_do_interrupt_aarch32 Julian Brown
2016-11-04 13:02 ` Peter Maydell
2016-11-03 21:29 ` [Qemu-devel] [PATCH 0/5] ARM BE8/BE32 big-endian system-mode fixes (semihosting, gdbstub) no-reply
2016-11-03 21:37 ` no-reply
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20161104140424.51369668@squid.athome \
--to=julian@codesourcery.com \
--cc=peter.maydell@linaro.org \
--cc=qemu-devel@nongnu.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.