Skip to content

Commit

Permalink
Fix another broken match statement.
Browse files Browse the repository at this point in the history 
A quick audit found a similar problem to the one fixed previously (see
 #5 and #6).  This allowed executable capabilities to be sealed with
any otype, not just 1-7. The result would be sealed with the low three
bits of the sealing capability's address.  Rather than using pattern
guards as for the previous fix I used integer literals as this is
easier to read and this code appears in the architecture document.
  • Loading branch information
@ronorton @rmn30
ronorton authored and rmn30 committed May 10, 2023
1 parent 348eb11 commit 9ec5c75
Showing 1 changed file with 3 additions and 3 deletions.
6 changes: 3 additions & 3 deletions src/cheri_insts.sail
View file
Original file line number Diff line number Diff line change
Expand Up @@ -676,9 +676,9 @@ function clause execute (CSeal(cd, cs1, cs2)) = {
if cs1_val.permit_execute then
match (cs2_addr) {
/* 0 is unsealed */
otype_sentry => true,
otype_sentry_id => true,
otype_sentry_ie => true,
1 => true, /* otype_sentry */
2 => true, /* otype_sentry_id */
3 => true, /* otype_sentry_ie */
/* 4 and 5 are reserved */
6 => true,
7 => true,
Expand Down

0 comments on commit 9ec5c75

Please sign in to comment.