2 * i386 emulator main execution loop
4 * Copyright (c) 2003 Fabrice Bellard
6 * This library is free software; you can redistribute it and/or
7 * modify it under the terms of the GNU Lesser General Public
8 * License as published by the Free Software Foundation; either
9 * version 2 of the License, or (at your option) any later version.
11 * This library is distributed in the hope that it will be useful,
12 * but WITHOUT ANY WARRANTY; without even the implied warranty of
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
14 * Lesser General Public License for more details.
16 * You should have received a copy of the GNU Lesser General Public
17 * License along with this library; if not, write to the Free Software
18 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
20 #include "exec-i386.h"
25 //#define DEBUG_SIGNAL
27 /* main execution loop */
29 /* maximum total translate dcode allocated */
30 #define CODE_GEN_BUFFER_SIZE (2048 * 1024)
31 //#define CODE_GEN_BUFFER_SIZE (128 * 1024)
32 #define CODE_GEN_MAX_SIZE 65536
33 #define CODE_GEN_ALIGN 16 /* must be >= of the size of a icache line */
35 /* threshold to flush the translated code buffer */
36 #define CODE_GEN_BUFFER_MAX_SIZE (CODE_GEN_BUFFER_SIZE - CODE_GEN_MAX_SIZE)
38 #define CODE_GEN_MAX_BLOCKS (CODE_GEN_BUFFER_SIZE / 64)
39 #define CODE_GEN_HASH_BITS 15
40 #define CODE_GEN_HASH_SIZE (1 << CODE_GEN_HASH_BITS)
42 typedef struct TranslationBlock {
43 unsigned long pc; /* simulated PC corresponding to this block (EIP + CS base) */
44 unsigned long cs_base; /* CS base for this block */
45 unsigned int flags; /* flags defining in which context the code was generated */
46 uint8_t *tc_ptr; /* pointer to the translated code */
47 struct TranslationBlock *hash_next; /* next matching block */
50 TranslationBlock tbs[CODE_GEN_MAX_BLOCKS];
51 TranslationBlock *tb_hash[CODE_GEN_HASH_SIZE];
54 uint8_t code_gen_buffer[CODE_GEN_BUFFER_SIZE];
55 uint8_t *code_gen_ptr;
60 static inline int testandset (int *p)
63 __asm__ __volatile__ (
71 : "r" (p), "r" (1), "r" (0)
78 static inline int testandset (int *p)
83 __asm__ __volatile__ ("lock; cmpxchgl %3, %1; sete %0"
84 : "=q" (ret), "=m" (*p), "=a" (readval)
85 : "r" (1), "m" (*p), "a" (0)
92 static inline int testandset (int *p)
96 __asm__ __volatile__ ("0: cs %0,%1,0(%2)\n"
99 : "r" (1), "a" (p), "0" (*p)
106 int testandset (int *p)
111 __asm__ __volatile__ ("0: mov 1,%2\n"
118 : "=r" (ret), "=m" (*p), "=r" (one)
124 int global_cpu_lock = 0;
128 while (testandset(&global_cpu_lock));
131 void cpu_unlock(void)
136 /* exception support */
137 /* NOTE: not static to force relocation generation by GCC */
138 void raise_exception(int exception_index)
140 /* NOTE: the register at this point must be saved by hand because
141 longjmp restore them */
143 env->regs[R_EAX] = EAX;
146 env->regs[R_ECX] = ECX;
149 env->regs[R_EDX] = EDX;
152 env->regs[R_EBX] = EBX;
155 env->regs[R_ESP] = ESP;
158 env->regs[R_EBP] = EBP;
161 env->regs[R_ESI] = ESI;
164 env->regs[R_EDI] = EDI;
166 env->exception_index = exception_index;
167 longjmp(env->jmp_env, 1);
170 #if defined(DEBUG_EXEC)
171 static const char *cc_op_str[] = {
204 static void cpu_x86_dump_state(FILE *f)
207 eflags = cc_table[CC_OP].compute_all();
208 eflags |= (DF & DF_MASK);
210 "EAX=%08x EBX=%08X ECX=%08x EDX=%08x\n"
211 "ESI=%08x EDI=%08X EBP=%08x ESP=%08x\n"
212 "CCS=%08x CCD=%08x CCO=%-8s EFL=%c%c%c%c%c%c%c\n"
214 env->regs[R_EAX], env->regs[R_EBX], env->regs[R_ECX], env->regs[R_EDX],
215 env->regs[R_ESI], env->regs[R_EDI], env->regs[R_EBP], env->regs[R_ESP],
216 env->cc_src, env->cc_dst, cc_op_str[env->cc_op],
217 eflags & DF_MASK ? 'D' : '-',
218 eflags & CC_O ? 'O' : '-',
219 eflags & CC_S ? 'S' : '-',
220 eflags & CC_Z ? 'Z' : '-',
221 eflags & CC_A ? 'A' : '-',
222 eflags & CC_P ? 'P' : '-',
223 eflags & CC_C ? 'C' : '-',
226 fprintf(f, "ST0=%f ST1=%f ST2=%f ST3=%f\n",
227 (double)ST0, (double)ST1, (double)ST(2), (double)ST(3));
233 void cpu_x86_tblocks_init(void)
236 code_gen_ptr = code_gen_buffer;
240 /* flush all the translation blocks */
241 static void tb_flush(void)
245 printf("gemu: flush code_size=%d nb_tbs=%d avg_tb_size=%d\n",
246 code_gen_ptr - code_gen_buffer,
248 (code_gen_ptr - code_gen_buffer) / nb_tbs);
251 for(i = 0;i < CODE_GEN_HASH_SIZE; i++)
253 code_gen_ptr = code_gen_buffer;
254 /* XXX: flush processor icache at this point */
257 /* find a translation block in the translation cache. If not found,
258 return NULL and the pointer to the last element of the list in pptb */
259 static inline TranslationBlock *tb_find(TranslationBlock ***pptb,
261 unsigned long cs_base,
264 TranslationBlock **ptb, *tb;
267 h = pc & (CODE_GEN_HASH_SIZE - 1);
273 if (tb->pc == pc && tb->cs_base == cs_base && tb->flags == flags)
275 ptb = &tb->hash_next;
281 /* allocate a new translation block. flush the translation buffer if
282 too many translation blocks or too much generated code */
283 static inline TranslationBlock *tb_alloc(void)
285 TranslationBlock *tb;
286 if (nb_tbs >= CODE_GEN_MAX_BLOCKS ||
287 (code_gen_ptr - code_gen_buffer) >= CODE_GEN_BUFFER_MAX_SIZE)
293 int cpu_x86_exec(CPUX86State *env1)
295 int saved_T0, saved_T1, saved_A0;
296 CPUX86State *saved_env;
321 int code_gen_size, ret;
322 void (*gen_func)(void);
323 TranslationBlock *tb, **ptb;
324 uint8_t *tc_ptr, *cs_base, *pc;
327 /* first we save global registers */
335 EAX = env->regs[R_EAX];
339 ECX = env->regs[R_ECX];
343 EDX = env->regs[R_EDX];
347 EBX = env->regs[R_EBX];
351 ESP = env->regs[R_ESP];
355 EBP = env->regs[R_EBP];
359 ESI = env->regs[R_ESI];
363 EDI = env->regs[R_EDI];
366 /* put eflags in CPU temporary format */
367 CC_SRC = env->eflags & (CC_O | CC_S | CC_Z | CC_A | CC_P | CC_C);
368 DF = 1 - (2 * ((env->eflags >> 10) & 1));
369 CC_OP = CC_OP_EFLAGS;
370 env->eflags &= ~(DF_MASK | CC_O | CC_S | CC_Z | CC_A | CC_P | CC_C);
371 env->interrupt_request = 0;
373 /* prepare setjmp context for exception handling */
374 if (setjmp(env->jmp_env) == 0) {
376 if (env->interrupt_request) {
377 raise_exception(EXCP_INTERRUPT);
381 cpu_x86_dump_state(logfile);
384 /* we compute the CPU state. We assume it will not
385 change during the whole generated block. */
386 flags = env->seg_cache[R_CS].seg_32bit << GEN_FLAG_CODE32_SHIFT;
387 flags |= env->seg_cache[R_SS].seg_32bit << GEN_FLAG_SS32_SHIFT;
388 flags |= (((unsigned long)env->seg_cache[R_DS].base |
389 (unsigned long)env->seg_cache[R_ES].base |
390 (unsigned long)env->seg_cache[R_SS].base) != 0) <<
391 GEN_FLAG_ADDSEG_SHIFT;
392 flags |= (env->eflags & VM_MASK) >> (17 - GEN_FLAG_VM_SHIFT);
393 cs_base = env->seg_cache[R_CS].base;
394 pc = cs_base + env->eip;
395 tb = tb_find(&ptb, (unsigned long)pc, (unsigned long)cs_base,
398 /* if no translated code available, then translate it now */
399 /* XXX: very inefficient: we lock all the cpus when
402 tc_ptr = code_gen_ptr;
403 ret = cpu_x86_gen_code(code_gen_ptr, CODE_GEN_MAX_SIZE,
404 &code_gen_size, pc, cs_base, flags);
405 /* if invalid instruction, signal it */
408 raise_exception(EXCP06_ILLOP);
412 tb->pc = (unsigned long)pc;
413 tb->cs_base = (unsigned long)cs_base;
416 tb->hash_next = NULL;
417 code_gen_ptr = (void *)(((unsigned long)code_gen_ptr + code_gen_size + CODE_GEN_ALIGN - 1) & ~(CODE_GEN_ALIGN - 1));
421 fprintf(logfile, "Trace 0x%08lx [0x%08lx] %s\n",
422 (long)tb->tc_ptr, (long)tb->pc,
423 lookup_symbol((void *)tb->pc));
426 /* execute the generated code */
428 gen_func = (void *)tc_ptr;
432 ret = env->exception_index;
434 /* restore flags in standard format */
435 env->eflags = env->eflags | cc_table[CC_OP].compute_all() | (DF & DF_MASK);
437 /* restore global registers */
469 void cpu_x86_interrupt(CPUX86State *s)
471 s->interrupt_request = 1;
475 void cpu_x86_load_seg(CPUX86State *s, int seg_reg, int selector)
477 CPUX86State *saved_env;
481 load_seg(seg_reg, selector);
495 #include <sys/ucontext.h>
497 static inline int handle_cpu_signal(unsigned long pc,
501 printf("gemu: SIGSEGV pc=0x%08lx oldset=0x%08lx\n",
502 pc, *(unsigned long *)old_set);
504 if (pc >= (unsigned long)code_gen_buffer &&
505 pc < (unsigned long)code_gen_buffer + CODE_GEN_BUFFER_SIZE) {
506 /* the PC is inside the translated code. It means that we have
507 a virtual CPU fault */
508 /* we restore the process signal mask as the sigreturn should
510 sigprocmask(SIG_SETMASK, old_set, NULL);
511 /* XXX: need to compute virtual pc position by retranslating
512 code. The rest of the CPU state should be correct. */
513 raise_exception(EXCP0D_GPF);
514 /* never comes here */
521 int cpu_x86_signal_handler(int host_signum, struct siginfo *info,
524 #if defined(__i386__)
525 struct ucontext *uc = puc;
533 pc = uc->uc_mcontext.gregs[REG_EIP];
534 pold_set = &uc->uc_sigmask;
535 return handle_cpu_signal(pc, pold_set);
537 #warning No CPU specific signal handler: cannot handle target SIGSEGV events
projects / qemu / blob