LDMFD affects R13 oddly

Question

We are using arm9 with ucos. The OS_CPU_ARM_ExceptHndlr_BrkTask common porting function's last instrument has strange behavior in our system.

Instrument: LDMFD SP!,{R0-R12,LR,PC}^

Let's suppose the SP is 0x10002000, and the following 15 DWORDs (which will be copied to R0-R12, LR, PC) have values from 1 to 15. We find the PC (R15) is changed and jumps to 15, but the SP (R13) is changed to a strange value (an address far outside the stack memory space). I expected it would become 0x1000203C (0x10002000+4*15).

Why is R13 changed this way?

Thanks a lot. This is a spell mistake, it is R13 that been affected. I have change question to R13. — shino, Jul 09 '16 at 02:19

score 0 · Answer 1 · answered Jul 07 '16 at 19:52

0

This instruction loads r14, like the other registers, from the stack. Write to PC causes the jump. This is not a branch and link that would set the return address to the link register.

Additionally, this instruction is actually an exception return (Because of the ^). So depending on the mode you are returning from, r14 might be banked. So after the exception return, you might see a different r14 than the one that was loaded from memory.

answered Jul 07 '16 at 19:52

Dric512

3,525
1
20
27

Thanks a lot. The question have a spell mistake which have been fixed. The R13(SP) is the register that have odd behavior. – shino Jul 09 '16 at 02:21
@shino, the above answer still applies. The stack pointer is banked, so you need to understand if you're seeing `R13_irq` or `R13_usr` for example. – Sean Houlihane Jul 09 '16 at 09:29

LDMFD affects R13 oddly

1 Answers1