From e4c317da8b2f55c8ab1a073b27e44a6e62d034e7 Mon Sep 17 00:00:00 2001
From: Changyuan Lyu <changyuanl@google.com>
Date: Sat, 24 Jan 2026 11:06:19 -0800
Subject: [PATCH] fix(hvf): treat X31 as zero register for MMIO

On aarch64, register index of 31 corresponds to the zero register in the
context of memory access.

Signed-off-by: Changyuan Lyu <changyuanl@google.com>
---
 alioth/src/hv/hvf/vcpu/vmexit.rs | 11 ++++++++---
 1 file changed, 8 insertions(+), 3 deletions(-)

diff --git a/alioth/src/hv/hvf/vcpu/vmexit.rs b/alioth/src/hv/hvf/vcpu/vmexit.rs
index 3e39490a..b31a1c98 100644
--- a/alioth/src/hv/hvf/vcpu/vmexit.rs
+++ b/alioth/src/hv/hvf/vcpu/vmexit.rs
@@ -48,11 +48,16 @@ impl HvfVcpu {
             }
             .fail();
         }
-        let reg = HvReg::from(iss.srt());
+        let srt = iss.srt();
+        let reg = HvReg::from(srt);
         let write = if iss.wnr() {
             let mut value = 0;
-            let ret = unsafe { hv_vcpu_get_reg(self.vcpu_id, reg, &mut value) };
-            check_ret(ret).context(error::VcpuReg)?;
+            // On aarch64, register index of 31 corresponds to the zero register
+            // in the context of memory access.
+            if srt != 31 {
+                let ret = unsafe { hv_vcpu_get_reg(self.vcpu_id, reg, &mut value) };
+                check_ret(ret).context(error::VcpuReg)?;
+            }
             Some(value)
         } else {
             self.exit_reg = Some(reg);