[Lldb-commits] [lldb] 6398181 - [lldb] Fix ARM STR T1 encoding using subtract instead of add, add test (#188614)

Tue, 07 Apr 2026 11:02:42 -0700 

Author: satyanarayana reddy janga
Date: 2026-04-07T13:02:15-05:00
New Revision: 639818145812ca04837decdc978a74e2b67da829

URL: 
https://github.com/llvm/llvm-project/commit/639818145812ca04837decdc978a74e2b67da829
DIFF: 
https://github.com/llvm/llvm-project/commit/639818145812ca04837decdc978a74e2b67da829.diff

LOG: [lldb] Fix ARM STR T1 encoding using subtract instead of add, add test 
(#188614)

The STR Thumb T1 encoding had add=false instead of add=true, causing the
emulator to compute the store address as Rn - imm rather than Rn + imm.
This contradicts the ARM spec comment directly above.

Add a unit test that verifies the STR T1 encoding stores to the correct
address (base + offset).

Added: 
    lldb/unittests/Instruction/ARM/TestARMEmulator.cpp

Modified: 
    lldb/source/Plugins/Instruction/ARM/EmulateInstructionARM.cpp
    lldb/unittests/Instruction/CMakeLists.txt

Removed: 
    


################################################################################
diff  --git a/lldb/source/Plugins/Instruction/ARM/EmulateInstructionARM.cpp 
b/lldb/source/Plugins/Instruction/ARM/EmulateInstructionARM.cpp
index f5f077ffb0bfc..6123a170fe7fb 100644
--- a/lldb/source/Plugins/Instruction/ARM/EmulateInstructionARM.cpp
+++ b/lldb/source/Plugins/Instruction/ARM/EmulateInstructionARM.cpp
@@ -5146,7 +5146,7 @@ bool EmulateInstructionARM::EmulateSTRThumb(const 
uint32_t opcode,
 
       // index = TRUE; add = TRUE; wback = FALSE;
       index = true;
-      add = false;
+      add = true;
       wback = false;
       break;
 

diff  --git a/lldb/unittests/Instruction/ARM/TestARMEmulator.cpp 
b/lldb/unittests/Instruction/ARM/TestARMEmulator.cpp
new file mode 100644
index 0000000000000..074d603617466
--- /dev/null
+++ b/lldb/unittests/Instruction/ARM/TestARMEmulator.cpp
@@ -0,0 +1,136 @@
+//===----------------------------------------------------------------------===//
+//
+// Part of the LLVM Project, under the Apache License v2.0 with LLVM 
Exceptions.
+// See https://llvm.org/LICENSE.txt for license information.
+// SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception
+//
+//===----------------------------------------------------------------------===//
+
+#include "gtest/gtest.h"
+
+#include "Plugins/Instruction/ARM/EmulateInstructionARM.h"
+#include "Utility/ARM_DWARF_Registers.h"
+#include "lldb/Core/Address.h"
+#include "lldb/Core/PluginManager.h"
+#include "lldb/Utility/ArchSpec.h"
+#include "lldb/Utility/RegisterValue.h"
+
+#include <map>
+
+using namespace lldb;
+using namespace lldb_private;
+
+struct ARMEmulatorTester : public EmulateInstructionARM {
+  uint32_t gpr[17] = {0}; // r0-r15 + cpsr
+  std::map<addr_t, uint32_t> memory;
+
+  ARMEmulatorTester() : EmulateInstructionARM(ArchSpec("thumbv7-apple-ios")) {
+    EmulateInstruction::SetReadRegCallback(ReadRegisterCallback);
+    EmulateInstruction::SetWriteRegCallback(WriteRegisterCallback);
+    EmulateInstruction::SetReadMemCallback(ReadMemoryCallback);
+    EmulateInstruction::SetWriteMemCallback(WriteMemoryCallback);
+  }
+
+  static bool ReadRegisterCallback(EmulateInstruction *instruction, void 
*baton,
+                                   const RegisterInfo *reg_info,
+                                   RegisterValue &reg_value) {
+    auto *tester = static_cast<ARMEmulatorTester *>(instruction);
+    uint32_t reg = reg_info->kinds[eRegisterKindDWARF];
+    if (reg <= dwarf_cpsr) {
+      reg_value.SetUInt32(tester->gpr[reg - dwarf_r0]);
+      return true;
+    }
+    return false;
+  }
+
+  static bool WriteRegisterCallback(EmulateInstruction *instruction,
+                                    void *baton, const Context &context,
+                                    const RegisterInfo *reg_info,
+                                    const RegisterValue &reg_value) {
+    auto *tester = static_cast<ARMEmulatorTester *>(instruction);
+    uint32_t reg = reg_info->kinds[eRegisterKindDWARF];
+    if (reg <= dwarf_cpsr) {
+      tester->gpr[reg - dwarf_r0] = reg_value.GetAsUInt32();
+      return true;
+    }
+    return false;
+  }
+
+  static size_t ReadMemoryCallback(EmulateInstruction *instruction, void 
*baton,
+                                   const Context &context, addr_t addr,
+                                   void *dst, size_t length) {
+    auto *tester = static_cast<ARMEmulatorTester *>(instruction);
+    // Read word-by-word from the memory map.
+    for (size_t i = 0; i < length; i++) {
+      addr_t word_addr = (addr + i) & ~3ULL;
+      auto it = tester->memory.find(word_addr);
+      if (it == tester->memory.end())
+        return 0;
+      uint32_t byte_offset = (addr + i) & 3;
+      static_cast<uint8_t *>(dst)[i] = (it->second >> (byte_offset * 8)) & 
0xff;
+    }
+    return length;
+  }
+
+  static size_t WriteMemoryCallback(EmulateInstruction *instruction,
+                                    void *baton, const Context &context,
+                                    addr_t addr, const void *dst,
+                                    size_t length) {
+    auto *tester = static_cast<ARMEmulatorTester *>(instruction);
+    if (length == 4 && (addr & 3) == 0) {
+      uint32_t value;
+      memcpy(&value, dst, 4);
+      tester->memory[addr] = value;
+      return 4;
+    }
+    return 0;
+  }
+
+  bool TestEmulateSTRThumb(const uint32_t opcode, const ARMEncoding encoding) {
+    return EmulateSTRThumb(opcode, encoding);
+  }
+
+  void SetupThumbMode(uint16_t opcode16) {
+    m_opcode_mode = eModeThumb;
+    m_opcode_cpsr = 0;
+    m_opcode.SetOpcode16(opcode16, lldb::eByteOrderLittle);
+    m_ignore_conditions = true;
+  }
+};
+
+class TestARMEmulator : public testing::Test {
+public:
+  static void SetUpTestCase() { EmulateInstructionARM::Initialize(); }
+  static void TearDownTestCase() { EmulateInstructionARM::Terminate(); }
+};
+
+// Test that STR (Thumb T1 encoding) uses add=true, computing address as
+// Rn + imm5*4, not Rn - imm5*4.
+//
+// STR r0, [r1, #4]  =>  Thumb T1 encoding: 0110 0 imm5 Rn Rt
+//   imm5 = 1 (offset = 1*4 = 4), Rn = r1, Rt = r0
+//   opcode = 0110 0 00001 001 000 = 0x6048
+TEST_F(TestARMEmulator, TestSTRT1AddsOffset) {
+  ARMEmulatorTester emu;
+
+  // Set up: r0 = 0xDEADBEEF (value to store), r1 = 0x1000 (base address)
+  emu.gpr[dwarf_r0] = 0xDEADBEEF;
+  emu.gpr[dwarf_r1] = 0x1000;
+  // Set up internal emulator state for Thumb mode.
+  emu.SetupThumbMode(0x6048);
+
+  // STR r0, [r1, #4] — T1 encoding
+  // With add=true, should store to 0x1000 + 4 = 0x1004
+  // With the old bug (add=false), it would store to 0x1000 - 4 = 0x0FFC
+  const uint32_t opcode = 0x6048;
+  ASSERT_TRUE(
+      emu.TestEmulateSTRThumb(opcode, EmulateInstructionARM::eEncodingT1));
+
+  // Verify the value was stored at base + offset (0x1004), not base - offset
+  auto it = emu.memory.find(0x1004);
+  ASSERT_NE(it, emu.memory.end());
+  ASSERT_EQ(it->second, (uint32_t)0xDEADBEEF);
+
+  // Verify nothing was written to the wrong address (0x0FFC)
+  ASSERT_EQ(emu.memory.find(0x0FFC), emu.memory.end());
+}

diff  --git a/lldb/unittests/Instruction/CMakeLists.txt 
b/lldb/unittests/Instruction/CMakeLists.txt
index 975923fdbb371..2345298ee3802 100644
--- a/lldb/unittests/Instruction/CMakeLists.txt
+++ b/lldb/unittests/Instruction/CMakeLists.txt
@@ -1,14 +1,16 @@
 add_lldb_unittest(EmulatorTests
+  ARM/TestARMEmulator.cpp
   ARM64/TestAArch64Emulator.cpp
   LoongArch/TestLoongArchEmulator.cpp
   RISCV/TestRISCVEmulator.cpp
-  
+
   LINK_COMPONENTS
     Support
   LINK_LIBS
     lldbCore
     lldbSymbol
     lldbTarget
+    lldbPluginInstructionARM
     lldbPluginInstructionARM64
     lldbPluginInstructionLoongArch
     lldbPluginInstructionRISCV


        
_______________________________________________
lldb-commits mailing list
[email protected]
https://lists.llvm.org/cgi-bin/mailman/listinfo/lldb-commits

Reply via email to