diff options
| author | Christian Krinitsin <mail@krinitsin.com> | 2025-05-30 16:52:07 +0200 |
|---|---|---|
| committer | Christian Krinitsin <mail@krinitsin.com> | 2025-05-30 16:52:17 +0200 |
| commit | 9260319e7411ff8281700a532caa436f40120ec4 (patch) | |
| tree | 2f6bfe5f3458dd49d328d3a9eb508595450adec0 /gitlab/issues/target_arm/host_missing/accel_TCG/826.toml | |
| parent | 225caa38269323af1bfc2daadff5ec8bd930747f (diff) | |
| download | emulator-bug-study-9260319e7411ff8281700a532caa436f40120ec4.tar.gz emulator-bug-study-9260319e7411ff8281700a532caa436f40120ec4.zip | |
gitlab scraper: download in toml and text format
Diffstat (limited to 'gitlab/issues/target_arm/host_missing/accel_TCG/826.toml')
| -rw-r--r-- | gitlab/issues/target_arm/host_missing/accel_TCG/826.toml | 26 |
1 files changed, 0 insertions, 26 deletions
diff --git a/gitlab/issues/target_arm/host_missing/accel_TCG/826.toml b/gitlab/issues/target_arm/host_missing/accel_TCG/826.toml deleted file mode 100644 index 53697a33..00000000 --- a/gitlab/issues/target_arm/host_missing/accel_TCG/826.toml +++ /dev/null @@ -1,26 +0,0 @@ -id = 826 -title = "AArch64 SVE2 LDNT1SB (vector plus scalar) load address incorrectly calculated" -state = "closed" -created_at = "2022-01-18T14:30:58.249Z" -closed_at = "2022-03-19T10:09:12.541Z" -labels = ["Closed::Fixed", "accel: TCG", "kind::Bug", "target: arm"] -url = "https://gitlab.com/qemu-project/qemu/-/issues/826" -host-os = "n/a" -host-arch = "AArch64" -qemu-version = "version 6.2.0" -guest-os = "n/a" -guest-arch = "AArch64" -description = """During execution of the following SVE2 instruction: -`ldnt1sb {z6.d}, p3/z, [z14.d, x9]` -with the following register state: -``` -(gdb) p $p3 -$1 = {0x7, 0x0, 0x74, 0x0, 0x43, 0x0, 0x29, 0x0, 0x47, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x47, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x66, 0xe4, 0x64, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x11, 0x31, 0x1, 0x0, 0x0, 0x0, 0x0, 0x20, 0x11, 0x31, 0x1, 0x0, 0x0, 0x0, 0x0, 0xb0, 0x8b, 0x49, 0x34, 0xfc, 0x7f, 0x0, 0x0, 0xe0, 0x71, 0x30, 0x1, 0x0, 0x0, 0x0, 0x0} -(gdb) p $z14.d.u -$2 = {0x3bdeaa30, 0x3bdeaa33, 0x3bdeaa36, 0x3bdeaa39, 0x3bdeaa3c, 0x3bdeaa3f, 0x3bdeaa42, 0x3bdeaa45} -(gdb) p $x9 -$3 = 0x0 -``` -QEMU produces a data abort due to an address fault on address `0x5EE45E4E`, which it clearly should not have tried to load.""" -reproduce = "n/a" -additional = """A quick look at the implementation of the LDNT1SB instruction in QEMU points to the following commit: https://gitlab.com/qemu-project/qemu/-/commit/cf327449816d5643106445420a0b06b0f38d4f01 which simply redirects to SVE's LD1SB handler. As these instructions use a new flavor of SVE scatter/gather loads (vector plus scalar) which SVE LD1SB does not support, I wonder if the LD1SB handler simply decodes it as the wrong instruction and treats it as a (scalar plus vector) instruction, which LD1SB does support, but whose address calculation is completely different.""" |