target/riscv: rvzicbo: Fixup CBO extension register calculation

alistair23 · Michael Tokarev · commit fb1be88084b6 · 2024-06-05T13:06:15.000+03:00
When running the instruction ``` cbo.flush 0(x0) ``` QEMU would segfault. The issue was in cpu_gpr[a->rs1] as QEMU does not have cpu_gpr[0] allocated. In order to fix this let's use the existing get_address() helper. This also has the benefit of performing pointer mask calculations on the address specified in rs1. The pointer masking specificiation specifically states: """ Cache Management Operations: All instructions in Zicbom, Zicbop and Zicboz """ So this is the correct behaviour and we previously have been incorrectly not masking the address. Signed-off-by: Alistair Francis <alistair.francis@wdc.com> Reported-by: Fabian Thomas <fabian.thomas@cispa.de> Fixes: e05da09 ("target/riscv: implement Zicbom extension") Reviewed-by: Richard Henderson <richard.henderson@linaro.org> Cc: qemu-stable <qemu-stable@nongnu.org> Message-ID: <20240514023910.301766-1-alistair.francis@wdc.com> Signed-off-by: Alistair Francis <alistair.francis@wdc.com> (cherry picked from commit c5eb8d6) Signed-off-by: Michael Tokarev <mjt@tls.msk.ru>
diff --git a/target/riscv/insn_trans/trans_rvzicbo.c.inc b/target/riscv/insn_trans/trans_rvzicbo.c.inc
@@ -31,27 +31,35 @@
 static bool trans_cbo_clean(DisasContext *ctx, arg_cbo_clean *a)
 {
     REQUIRE_ZICBOM(ctx);
-    gen_helper_cbo_clean_flush(tcg_env, cpu_gpr[a->rs1]);
+    TCGv src = get_address(ctx, a->rs1, 0);
+
+    gen_helper_cbo_clean_flush(tcg_env, src);
     return true;
 }
 
 static bool trans_cbo_flush(DisasContext *ctx, arg_cbo_flush *a)
 {
     REQUIRE_ZICBOM(ctx);
-    gen_helper_cbo_clean_flush(tcg_env, cpu_gpr[a->rs1]);
+    TCGv src = get_address(ctx, a->rs1, 0);
+
+    gen_helper_cbo_clean_flush(tcg_env, src);
     return true;
 }
 
 static bool trans_cbo_inval(DisasContext *ctx, arg_cbo_inval *a)
 {
     REQUIRE_ZICBOM(ctx);
-    gen_helper_cbo_inval(tcg_env, cpu_gpr[a->rs1]);
+    TCGv src = get_address(ctx, a->rs1, 0);
+
+    gen_helper_cbo_inval(tcg_env, src);
     return true;
 }
 
 static bool trans_cbo_zero(DisasContext *ctx, arg_cbo_zero *a)
 {
     REQUIRE_ZICBOZ(ctx);
-    gen_helper_cbo_zero(tcg_env, cpu_gpr[a->rs1]);
+    TCGv src = get_address(ctx, a->rs1, 0);
+
+    gen_helper_cbo_zero(tcg_env, src);
     return true;
 }

Original file line number	Diff line number	Diff line change
`@@ -31,27 +31,35 @@`
`31`	`31`	`static bool trans_cbo_clean(DisasContext ctx, arg_cbo_clean a)`
`32`	`32`	`{`
`33`	`33`	`REQUIRE_ZICBOM(ctx);`
`34`		`- gen_helper_cbo_clean_flush(tcg_env, cpu_gpr[a->rs1]);`
	`34`	`+ TCGv src = get_address(ctx, a->rs1, 0);`
	`35`	`+`
	`36`	`+ gen_helper_cbo_clean_flush(tcg_env, src);`
`35`	`37`	`return true;`
`36`	`38`	`}`
`37`	`39`
`38`	`40`	`static bool trans_cbo_flush(DisasContext ctx, arg_cbo_flush a)`
`39`	`41`	`{`
`40`	`42`	`REQUIRE_ZICBOM(ctx);`
`41`		`- gen_helper_cbo_clean_flush(tcg_env, cpu_gpr[a->rs1]);`
	`43`	`+ TCGv src = get_address(ctx, a->rs1, 0);`
	`44`	`+`
	`45`	`+ gen_helper_cbo_clean_flush(tcg_env, src);`
`42`	`46`	`return true;`
`43`	`47`	`}`
`44`	`48`
`45`	`49`	`static bool trans_cbo_inval(DisasContext ctx, arg_cbo_inval a)`
`46`	`50`	`{`
`47`	`51`	`REQUIRE_ZICBOM(ctx);`
`48`		`- gen_helper_cbo_inval(tcg_env, cpu_gpr[a->rs1]);`
	`52`	`+ TCGv src = get_address(ctx, a->rs1, 0);`
	`53`	`+`
	`54`	`+ gen_helper_cbo_inval(tcg_env, src);`
`49`	`55`	`return true;`
`50`	`56`	`}`
`51`	`57`
`52`	`58`	`static bool trans_cbo_zero(DisasContext ctx, arg_cbo_zero a)`
`53`	`59`	`{`
`54`	`60`	`REQUIRE_ZICBOZ(ctx);`
`55`		`- gen_helper_cbo_zero(tcg_env, cpu_gpr[a->rs1]);`
	`61`	`+ TCGv src = get_address(ctx, a->rs1, 0);`
	`62`	`+`
	`63`	`+ gen_helper_cbo_zero(tcg_env, src);`
`56`	`64`	`return true;`
`57`	`65`	`}`