2 * i386 emulator main execution loop
4 * Copyright (c) 2003-2005 Fabrice Bellard
6 * This library is free software; you can redistribute it and/or
7 * modify it under the terms of the GNU Lesser General Public
8 * License as published by the Free Software Foundation; either
9 * version 2 of the License, or (at your option) any later version.
11 * This library is distributed in the hope that it will be useful,
12 * but WITHOUT ANY WARRANTY; without even the implied warranty of
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
14 * Lesser General Public License for more details.
16 * You should have received a copy of the GNU Lesser General Public
17 * License along with this library; if not, write to the Free Software
18 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
24 #if !defined(CONFIG_SOFTMMU)
35 #include <sys/ucontext.h>
38 int tb_invalidated_flag;
41 //#define DEBUG_SIGNAL
43 void cpu_loop_exit(void)
45 /* NOTE: the register at this point must be saved by hand because
46 longjmp restore them */
48 longjmp(env->jmp_env, 1);
51 #if !(defined(TARGET_SPARC) || defined(TARGET_SH4) || defined(TARGET_M68K))
55 /* exit the current TB from a signal handler. The host registers are
56 restored in a state compatible with the CPU emulator
58 void cpu_resume_from_signal(CPUState *env1, void *puc)
60 #if !defined(CONFIG_SOFTMMU)
61 struct ucontext *uc = puc;
66 /* XXX: restore cpu registers saved in host registers */
68 #if !defined(CONFIG_SOFTMMU)
70 /* XXX: use siglongjmp ? */
71 sigprocmask(SIG_SETMASK, &uc->uc_sigmask, NULL);
74 longjmp(env->jmp_env, 1);
78 static TranslationBlock *tb_find_slow(target_ulong pc,
82 TranslationBlock *tb, **ptb1;
85 target_ulong phys_pc, phys_page1, phys_page2, virt_page2;
90 tb_invalidated_flag = 0;
92 regs_to_env(); /* XXX: do it just before cpu_gen_code() */
94 /* find translated block using physical mappings */
95 phys_pc = get_phys_addr_code(env, pc);
96 phys_page1 = phys_pc & TARGET_PAGE_MASK;
98 h = tb_phys_hash_func(phys_pc);
99 ptb1 = &tb_phys_hash[h];
105 tb->page_addr[0] == phys_page1 &&
106 tb->cs_base == cs_base &&
107 tb->flags == flags) {
108 /* check next page if needed */
109 if (tb->page_addr[1] != -1) {
110 virt_page2 = (pc & TARGET_PAGE_MASK) +
112 phys_page2 = get_phys_addr_code(env, virt_page2);
113 if (tb->page_addr[1] == phys_page2)
119 ptb1 = &tb->phys_hash_next;
122 /* if no translated code available, then translate it now */
125 /* flush must be done */
127 /* cannot fail at this point */
129 /* don't forget to invalidate previous TB info */
130 tb_invalidated_flag = 1;
132 tc_ptr = code_gen_ptr;
134 tb->cs_base = cs_base;
136 cpu_gen_code(env, tb, CODE_GEN_MAX_SIZE, &code_gen_size);
137 code_gen_ptr = (void *)(((unsigned long)code_gen_ptr + code_gen_size + CODE_GEN_ALIGN - 1) & ~(CODE_GEN_ALIGN - 1));
139 /* check next page if needed */
140 virt_page2 = (pc + tb->size - 1) & TARGET_PAGE_MASK;
142 if ((pc & TARGET_PAGE_MASK) != virt_page2) {
143 phys_page2 = get_phys_addr_code(env, virt_page2);
145 tb_link_phys(tb, phys_pc, phys_page2);
148 /* we add the TB in the virtual pc hash table */
149 env->tb_jmp_cache[tb_jmp_cache_hash_func(pc)] = tb;
150 spin_unlock(&tb_lock);
154 static inline TranslationBlock *tb_find_fast(void)
156 TranslationBlock *tb;
157 target_ulong cs_base, pc;
160 /* we record a subset of the CPU state. It will
161 always be the same before a given translated block
163 #if defined(TARGET_I386)
165 flags |= (env->eflags & (IOPL_MASK | TF_MASK | VM_MASK));
166 cs_base = env->segs[R_CS].base;
167 pc = cs_base + env->eip;
168 #elif defined(TARGET_ARM)
169 flags = env->thumb | (env->vfp.vec_len << 1)
170 | (env->vfp.vec_stride << 4);
171 if ((env->uncached_cpsr & CPSR_M) != ARM_CPU_MODE_USR)
173 if (env->vfp.xregs[ARM_VFP_FPEXC] & (1 << 30))
177 #elif defined(TARGET_SPARC)
178 #ifdef TARGET_SPARC64
179 // Combined FPU enable bits . PRIV . DMMU enabled . IMMU enabled
180 flags = (((env->pstate & PS_PEF) >> 1) | ((env->fprs & FPRS_FEF) << 2))
181 | (env->pstate & PS_PRIV) | ((env->lsu & (DMMU_E | IMMU_E)) >> 2);
183 // FPU enable . MMU enabled . MMU no-fault . Supervisor
184 flags = (env->psref << 3) | ((env->mmuregs[0] & (MMU_E | MMU_NF)) << 1)
189 #elif defined(TARGET_PPC)
193 #elif defined(TARGET_MIPS)
194 flags = env->hflags & (MIPS_HFLAG_TMASK | MIPS_HFLAG_BMASK);
196 pc = env->PC[env->current_tc];
197 #elif defined(TARGET_M68K)
198 flags = (env->fpcr & M68K_FPCR_PREC) /* Bit 6 */
199 | (env->sr & SR_S) /* Bit 13 */
200 | ((env->macsr >> 4) & 0xf); /* Bits 0-3 */
203 #elif defined(TARGET_SH4)
204 flags = env->sr & (SR_MD | SR_RB);
205 cs_base = 0; /* XXXXX */
207 #elif defined(TARGET_ALPHA)
212 #error unsupported CPU
214 tb = env->tb_jmp_cache[tb_jmp_cache_hash_func(pc)];
215 if (__builtin_expect(!tb || tb->pc != pc || tb->cs_base != cs_base ||
216 tb->flags != flags, 0)) {
217 tb = tb_find_slow(pc, cs_base, flags);
218 /* Note: we do it here to avoid a gcc bug on Mac OS X when
219 doing it in tb_find_slow */
220 if (tb_invalidated_flag) {
221 /* as some TB could have been invalidated because
222 of memory exceptions while generating the code, we
223 must recompute the hash index here */
231 /* main execution loop */
233 int cpu_exec(CPUState *env1)
235 #define DECLARE_HOST_REGS 1
236 #include "hostregs_helper.h"
237 #if defined(TARGET_SPARC)
238 #if defined(reg_REGWPTR)
239 uint32_t *saved_regwptr;
242 #if defined(__sparc__) && !defined(HOST_SOLARIS)
246 int ret, interrupt_request;
247 void (*gen_func)(void);
248 TranslationBlock *tb;
251 if (cpu_halted(env1) == EXCP_HALTED)
254 cpu_single_env = env1;
256 /* first we save global registers */
257 #define SAVE_HOST_REGS 1
258 #include "hostregs_helper.h"
260 #if defined(__sparc__) && !defined(HOST_SOLARIS)
261 /* we also save i7 because longjmp may not restore it */
262 asm volatile ("mov %%i7, %0" : "=r" (saved_i7));
266 #if defined(TARGET_I386)
267 /* put eflags in CPU temporary format */
268 CC_SRC = env->eflags & (CC_O | CC_S | CC_Z | CC_A | CC_P | CC_C);
269 DF = 1 - (2 * ((env->eflags >> 10) & 1));
270 CC_OP = CC_OP_EFLAGS;
271 env->eflags &= ~(DF_MASK | CC_O | CC_S | CC_Z | CC_A | CC_P | CC_C);
272 #elif defined(TARGET_SPARC)
273 #if defined(reg_REGWPTR)
274 saved_regwptr = REGWPTR;
276 #elif defined(TARGET_M68K)
277 env->cc_op = CC_OP_FLAGS;
278 env->cc_dest = env->sr & 0xf;
279 env->cc_x = (env->sr >> 4) & 1;
280 #elif defined(TARGET_ALPHA)
281 #elif defined(TARGET_ARM)
282 #elif defined(TARGET_PPC)
283 #elif defined(TARGET_MIPS)
284 #elif defined(TARGET_SH4)
287 #error unsupported target CPU
289 env->exception_index = -1;
291 /* prepare setjmp context for exception handling */
293 if (setjmp(env->jmp_env) == 0) {
294 env->current_tb = NULL;
295 /* if an exception is pending, we execute it here */
296 if (env->exception_index >= 0) {
297 if (env->exception_index >= EXCP_INTERRUPT) {
298 /* exit request from the cpu execution loop */
299 ret = env->exception_index;
301 } else if (env->user_mode_only) {
302 /* if user mode only, we simulate a fake exception
303 which will be handled outside the cpu execution
305 #if defined(TARGET_I386)
306 do_interrupt_user(env->exception_index,
307 env->exception_is_int,
309 env->exception_next_eip);
311 ret = env->exception_index;
314 #if defined(TARGET_I386)
315 /* simulate a real cpu exception. On i386, it can
316 trigger new exceptions, but we do not handle
317 double or triple faults yet. */
318 do_interrupt(env->exception_index,
319 env->exception_is_int,
321 env->exception_next_eip, 0);
322 /* successfully delivered */
323 env->old_exception = -1;
324 #elif defined(TARGET_PPC)
326 #elif defined(TARGET_MIPS)
328 #elif defined(TARGET_SPARC)
329 do_interrupt(env->exception_index);
330 #elif defined(TARGET_ARM)
332 #elif defined(TARGET_SH4)
334 #elif defined(TARGET_ALPHA)
336 #elif defined(TARGET_M68K)
340 env->exception_index = -1;
343 if (kqemu_is_ok(env) && env->interrupt_request == 0) {
345 env->eflags = env->eflags | cc_table[CC_OP].compute_all() | (DF & DF_MASK);
346 ret = kqemu_cpu_exec(env);
347 /* put eflags in CPU temporary format */
348 CC_SRC = env->eflags & (CC_O | CC_S | CC_Z | CC_A | CC_P | CC_C);
349 DF = 1 - (2 * ((env->eflags >> 10) & 1));
350 CC_OP = CC_OP_EFLAGS;
351 env->eflags &= ~(DF_MASK | CC_O | CC_S | CC_Z | CC_A | CC_P | CC_C);
354 longjmp(env->jmp_env, 1);
355 } else if (ret == 2) {
356 /* softmmu execution needed */
358 if (env->interrupt_request != 0) {
359 /* hardware interrupt will be executed just after */
361 /* otherwise, we restart */
362 longjmp(env->jmp_env, 1);
368 T0 = 0; /* force lookup of first TB */
370 #if defined(__sparc__) && !defined(HOST_SOLARIS)
371 /* g1 can be modified by some libc? functions */
374 interrupt_request = env->interrupt_request;
375 if (__builtin_expect(interrupt_request, 0)) {
376 if (interrupt_request & CPU_INTERRUPT_DEBUG) {
377 env->interrupt_request &= ~CPU_INTERRUPT_DEBUG;
378 env->exception_index = EXCP_DEBUG;
381 #if defined(TARGET_ARM) || defined(TARGET_SPARC) || defined(TARGET_MIPS) || \
382 defined(TARGET_PPC) || defined(TARGET_ALPHA)
383 if (interrupt_request & CPU_INTERRUPT_HALT) {
384 env->interrupt_request &= ~CPU_INTERRUPT_HALT;
386 env->exception_index = EXCP_HLT;
390 #if defined(TARGET_I386)
391 if ((interrupt_request & CPU_INTERRUPT_SMI) &&
392 !(env->hflags & HF_SMM_MASK)) {
393 env->interrupt_request &= ~CPU_INTERRUPT_SMI;
395 #if defined(__sparc__) && !defined(HOST_SOLARIS)
400 } else if ((interrupt_request & CPU_INTERRUPT_HARD) &&
401 (env->eflags & IF_MASK) &&
402 !(env->hflags & HF_INHIBIT_IRQ_MASK)) {
404 env->interrupt_request &= ~CPU_INTERRUPT_HARD;
405 intno = cpu_get_pic_interrupt(env);
406 if (loglevel & CPU_LOG_TB_IN_ASM) {
407 fprintf(logfile, "Servicing hardware INT=0x%02x\n", intno);
409 do_interrupt(intno, 0, 0, 0, 1);
410 /* ensure that no TB jump will be modified as
411 the program flow was changed */
412 #if defined(__sparc__) && !defined(HOST_SOLARIS)
418 #elif defined(TARGET_PPC)
420 if ((interrupt_request & CPU_INTERRUPT_RESET)) {
424 if (interrupt_request & CPU_INTERRUPT_HARD) {
425 ppc_hw_interrupt(env);
426 if (env->pending_interrupts == 0)
427 env->interrupt_request &= ~CPU_INTERRUPT_HARD;
428 #if defined(__sparc__) && !defined(HOST_SOLARIS)
434 #elif defined(TARGET_MIPS)
435 if ((interrupt_request & CPU_INTERRUPT_HARD) &&
436 (env->CP0_Status & env->CP0_Cause & CP0Ca_IP_mask) &&
437 (env->CP0_Status & (1 << CP0St_IE)) &&
438 !(env->CP0_Status & (1 << CP0St_EXL)) &&
439 !(env->CP0_Status & (1 << CP0St_ERL)) &&
440 !(env->hflags & MIPS_HFLAG_DM)) {
442 env->exception_index = EXCP_EXT_INTERRUPT;
445 #if defined(__sparc__) && !defined(HOST_SOLARIS)
451 #elif defined(TARGET_SPARC)
452 if ((interrupt_request & CPU_INTERRUPT_HARD) &&
454 int pil = env->interrupt_index & 15;
455 int type = env->interrupt_index & 0xf0;
457 if (((type == TT_EXTINT) &&
458 (pil == 15 || pil > env->psrpil)) ||
460 env->interrupt_request &= ~CPU_INTERRUPT_HARD;
461 do_interrupt(env->interrupt_index);
462 env->interrupt_index = 0;
463 #if !defined(TARGET_SPARC64) && !defined(CONFIG_USER_ONLY)
466 #if defined(__sparc__) && !defined(HOST_SOLARIS)
472 } else if (interrupt_request & CPU_INTERRUPT_TIMER) {
473 //do_interrupt(0, 0, 0, 0, 0);
474 env->interrupt_request &= ~CPU_INTERRUPT_TIMER;
476 #elif defined(TARGET_ARM)
477 if (interrupt_request & CPU_INTERRUPT_FIQ
478 && !(env->uncached_cpsr & CPSR_F)) {
479 env->exception_index = EXCP_FIQ;
482 if (interrupt_request & CPU_INTERRUPT_HARD
483 && !(env->uncached_cpsr & CPSR_I)) {
484 env->exception_index = EXCP_IRQ;
487 #elif defined(TARGET_SH4)
489 #elif defined(TARGET_ALPHA)
490 if (interrupt_request & CPU_INTERRUPT_HARD) {
493 #elif defined(TARGET_M68K)
494 if (interrupt_request & CPU_INTERRUPT_HARD
495 && ((env->sr & SR_I) >> SR_I_SHIFT)
496 < env->pending_level) {
497 /* Real hardware gets the interrupt vector via an
498 IACK cycle at this point. Current emulated
499 hardware doesn't rely on this, so we
500 provide/save the vector when the interrupt is
502 env->exception_index = env->pending_vector;
506 /* Don't use the cached interupt_request value,
507 do_interrupt may have updated the EXITTB flag. */
508 if (env->interrupt_request & CPU_INTERRUPT_EXITTB) {
509 env->interrupt_request &= ~CPU_INTERRUPT_EXITTB;
510 /* ensure that no TB jump will be modified as
511 the program flow was changed */
512 #if defined(__sparc__) && !defined(HOST_SOLARIS)
518 if (interrupt_request & CPU_INTERRUPT_EXIT) {
519 env->interrupt_request &= ~CPU_INTERRUPT_EXIT;
520 env->exception_index = EXCP_INTERRUPT;
525 if ((loglevel & CPU_LOG_TB_CPU)) {
526 /* restore flags in standard format */
528 #if defined(TARGET_I386)
529 env->eflags = env->eflags | cc_table[CC_OP].compute_all() | (DF & DF_MASK);
530 cpu_dump_state(env, logfile, fprintf, X86_DUMP_CCOP);
531 env->eflags &= ~(DF_MASK | CC_O | CC_S | CC_Z | CC_A | CC_P | CC_C);
532 #elif defined(TARGET_ARM)
533 cpu_dump_state(env, logfile, fprintf, 0);
534 #elif defined(TARGET_SPARC)
535 REGWPTR = env->regbase + (env->cwp * 16);
536 env->regwptr = REGWPTR;
537 cpu_dump_state(env, logfile, fprintf, 0);
538 #elif defined(TARGET_PPC)
539 cpu_dump_state(env, logfile, fprintf, 0);
540 #elif defined(TARGET_M68K)
541 cpu_m68k_flush_flags(env, env->cc_op);
542 env->cc_op = CC_OP_FLAGS;
543 env->sr = (env->sr & 0xffe0)
544 | env->cc_dest | (env->cc_x << 4);
545 cpu_dump_state(env, logfile, fprintf, 0);
546 #elif defined(TARGET_MIPS)
547 cpu_dump_state(env, logfile, fprintf, 0);
548 #elif defined(TARGET_SH4)
549 cpu_dump_state(env, logfile, fprintf, 0);
550 #elif defined(TARGET_ALPHA)
551 cpu_dump_state(env, logfile, fprintf, 0);
553 #error unsupported target CPU
559 if ((loglevel & CPU_LOG_EXEC)) {
560 fprintf(logfile, "Trace 0x%08lx [" TARGET_FMT_lx "] %s\n",
561 (long)tb->tc_ptr, tb->pc,
562 lookup_symbol(tb->pc));
565 #if defined(__sparc__) && !defined(HOST_SOLARIS)
568 /* see if we can patch the calling TB. When the TB
569 spans two pages, we cannot safely do a direct
574 (env->kqemu_enabled != 2) &&
576 tb->page_addr[1] == -1
577 #if defined(TARGET_I386) && defined(USE_CODE_COPY)
578 && (tb->cflags & CF_CODE_COPY) ==
579 (((TranslationBlock *)(T0 & ~3))->cflags & CF_CODE_COPY)
583 tb_add_jump((TranslationBlock *)(long)(T0 & ~3), T0 & 3, tb);
584 #if defined(USE_CODE_COPY)
585 /* propagates the FP use info */
586 ((TranslationBlock *)(T0 & ~3))->cflags |=
587 (tb->cflags & CF_FP_USED);
589 spin_unlock(&tb_lock);
593 env->current_tb = tb;
594 /* execute the generated code */
595 gen_func = (void *)tc_ptr;
596 #if defined(__sparc__)
597 __asm__ __volatile__("call %0\n\t"
601 : "i0", "i1", "i2", "i3", "i4", "i5",
602 "o0", "o1", "o2", "o3", "o4", "o5",
603 "l0", "l1", "l2", "l3", "l4", "l5",
605 #elif defined(__arm__)
606 asm volatile ("mov pc, %0\n\t"
607 ".global exec_loop\n\t"
611 : "r1", "r2", "r3", "r8", "r9", "r10", "r12", "r14");
612 #elif defined(TARGET_I386) && defined(USE_CODE_COPY)
614 if (!(tb->cflags & CF_CODE_COPY)) {
615 if ((tb->cflags & CF_FP_USED) && env->native_fp_regs) {
616 save_native_fp_state(env);
620 if ((tb->cflags & CF_FP_USED) && !env->native_fp_regs) {
621 restore_native_fp_state(env);
623 /* we work with native eflags */
624 CC_SRC = cc_table[CC_OP].compute_all();
625 CC_OP = CC_OP_EFLAGS;
626 asm(".globl exec_loop\n"
631 " fs movl %11, %%eax\n"
632 " andl $0x400, %%eax\n"
633 " fs orl %8, %%eax\n"
636 " fs movl %%esp, %12\n"
637 " fs movl %0, %%eax\n"
638 " fs movl %1, %%ecx\n"
639 " fs movl %2, %%edx\n"
640 " fs movl %3, %%ebx\n"
641 " fs movl %4, %%esp\n"
642 " fs movl %5, %%ebp\n"
643 " fs movl %6, %%esi\n"
644 " fs movl %7, %%edi\n"
647 " fs movl %%esp, %4\n"
648 " fs movl %12, %%esp\n"
649 " fs movl %%eax, %0\n"
650 " fs movl %%ecx, %1\n"
651 " fs movl %%edx, %2\n"
652 " fs movl %%ebx, %3\n"
653 " fs movl %%ebp, %5\n"
654 " fs movl %%esi, %6\n"
655 " fs movl %%edi, %7\n"
658 " movl %%eax, %%ecx\n"
659 " andl $0x400, %%ecx\n"
661 " andl $0x8d5, %%eax\n"
662 " fs movl %%eax, %8\n"
664 " subl %%ecx, %%eax\n"
665 " fs movl %%eax, %11\n"
666 " fs movl %9, %%ebx\n" /* get T0 value */
669 : "m" (*(uint8_t *)offsetof(CPUState, regs[0])),
670 "m" (*(uint8_t *)offsetof(CPUState, regs[1])),
671 "m" (*(uint8_t *)offsetof(CPUState, regs[2])),
672 "m" (*(uint8_t *)offsetof(CPUState, regs[3])),
673 "m" (*(uint8_t *)offsetof(CPUState, regs[4])),
674 "m" (*(uint8_t *)offsetof(CPUState, regs[5])),
675 "m" (*(uint8_t *)offsetof(CPUState, regs[6])),
676 "m" (*(uint8_t *)offsetof(CPUState, regs[7])),
677 "m" (*(uint8_t *)offsetof(CPUState, cc_src)),
678 "m" (*(uint8_t *)offsetof(CPUState, tmp0)),
680 "m" (*(uint8_t *)offsetof(CPUState, df)),
681 "m" (*(uint8_t *)offsetof(CPUState, saved_esp))
686 #elif defined(__ia64)
693 fp.gp = code_gen_buffer + 2 * (1 << 20);
694 (*(void (*)(void)) &fp)();
698 env->current_tb = NULL;
699 /* reset soft MMU for next block (it can currently
700 only be set by a memory fault) */
701 #if defined(TARGET_I386) && !defined(CONFIG_SOFTMMU)
702 if (env->hflags & HF_SOFTMMU_MASK) {
703 env->hflags &= ~HF_SOFTMMU_MASK;
704 /* do not allow linking to another block */
708 #if defined(USE_KQEMU)
709 #define MIN_CYCLE_BEFORE_SWITCH (100 * 1000)
710 if (kqemu_is_ok(env) &&
711 (cpu_get_time_fast() - env->last_io_time) >= MIN_CYCLE_BEFORE_SWITCH) {
722 #if defined(TARGET_I386)
723 #if defined(USE_CODE_COPY)
724 if (env->native_fp_regs) {
725 save_native_fp_state(env);
728 /* restore flags in standard format */
729 env->eflags = env->eflags | cc_table[CC_OP].compute_all() | (DF & DF_MASK);
730 #elif defined(TARGET_ARM)
731 /* XXX: Save/restore host fpu exception state?. */
732 #elif defined(TARGET_SPARC)
733 #if defined(reg_REGWPTR)
734 REGWPTR = saved_regwptr;
736 #elif defined(TARGET_PPC)
737 #elif defined(TARGET_M68K)
738 cpu_m68k_flush_flags(env, env->cc_op);
739 env->cc_op = CC_OP_FLAGS;
740 env->sr = (env->sr & 0xffe0)
741 | env->cc_dest | (env->cc_x << 4);
742 #elif defined(TARGET_MIPS)
743 #elif defined(TARGET_SH4)
744 #elif defined(TARGET_ALPHA)
747 #error unsupported target CPU
750 /* restore global registers */
751 #if defined(__sparc__) && !defined(HOST_SOLARIS)
752 asm volatile ("mov %0, %%i7" : : "r" (saved_i7));
754 #include "hostregs_helper.h"
756 /* fail safe : never use cpu_single_env outside cpu_exec() */
757 cpu_single_env = NULL;
761 /* must only be called from the generated code as an exception can be
763 void tb_invalidate_page_range(target_ulong start, target_ulong end)
765 /* XXX: cannot enable it yet because it yields to MMU exception
766 where NIP != read address on PowerPC */
768 target_ulong phys_addr;
769 phys_addr = get_phys_addr_code(env, start);
770 tb_invalidate_phys_page_range(phys_addr, phys_addr + end - start, 0);
774 #if defined(TARGET_I386) && defined(CONFIG_USER_ONLY)
776 void cpu_x86_load_seg(CPUX86State *s, int seg_reg, int selector)
778 CPUX86State *saved_env;
782 if (!(env->cr[0] & CR0_PE_MASK) || (env->eflags & VM_MASK)) {
784 cpu_x86_load_seg_cache(env, seg_reg, selector,
785 (selector << 4), 0xffff, 0);
787 load_seg(seg_reg, selector);
792 void cpu_x86_fsave(CPUX86State *s, uint8_t *ptr, int data32)
794 CPUX86State *saved_env;
799 helper_fsave((target_ulong)ptr, data32);
804 void cpu_x86_frstor(CPUX86State *s, uint8_t *ptr, int data32)
806 CPUX86State *saved_env;
811 helper_frstor((target_ulong)ptr, data32);
816 #endif /* TARGET_I386 */
818 #if !defined(CONFIG_SOFTMMU)
820 #if defined(TARGET_I386)
822 /* 'pc' is the host PC at which the exception was raised. 'address' is
823 the effective address of the memory exception. 'is_write' is 1 if a
824 write caused the exception and otherwise 0'. 'old_set' is the
825 signal set which should be restored */
826 static inline int handle_cpu_signal(unsigned long pc, unsigned long address,
827 int is_write, sigset_t *old_set,
830 TranslationBlock *tb;
834 env = cpu_single_env; /* XXX: find a correct solution for multithread */
835 #if defined(DEBUG_SIGNAL)
836 qemu_printf("qemu: SIGSEGV pc=0x%08lx address=%08lx w=%d oldset=0x%08lx\n",
837 pc, address, is_write, *(unsigned long *)old_set);
839 /* XXX: locking issue */
840 if (is_write && page_unprotect(h2g(address), pc, puc)) {
844 /* see if it is an MMU fault */
845 ret = cpu_x86_handle_mmu_fault(env, address, is_write,
846 ((env->hflags & HF_CPL_MASK) == 3), 0);
848 return 0; /* not an MMU fault */
850 return 1; /* the MMU fault was handled without causing real CPU fault */
851 /* now we have a real cpu fault */
854 /* the PC is inside the translated code. It means that we have
855 a virtual CPU fault */
856 cpu_restore_state(tb, env, pc, puc);
860 printf("PF exception: EIP=0x%08x CR2=0x%08x error=0x%x\n",
861 env->eip, env->cr[2], env->error_code);
863 /* we restore the process signal mask as the sigreturn should
864 do it (XXX: use sigsetjmp) */
865 sigprocmask(SIG_SETMASK, old_set, NULL);
866 raise_exception_err(env->exception_index, env->error_code);
868 /* activate soft MMU for this block */
869 env->hflags |= HF_SOFTMMU_MASK;
870 cpu_resume_from_signal(env, puc);
872 /* never comes here */
876 #elif defined(TARGET_ARM)
877 static inline int handle_cpu_signal(unsigned long pc, unsigned long address,
878 int is_write, sigset_t *old_set,
881 TranslationBlock *tb;
885 env = cpu_single_env; /* XXX: find a correct solution for multithread */
886 #if defined(DEBUG_SIGNAL)
887 printf("qemu: SIGSEGV pc=0x%08lx address=%08lx w=%d oldset=0x%08lx\n",
888 pc, address, is_write, *(unsigned long *)old_set);
890 /* XXX: locking issue */
891 if (is_write && page_unprotect(h2g(address), pc, puc)) {
894 /* see if it is an MMU fault */
895 ret = cpu_arm_handle_mmu_fault(env, address, is_write, 1, 0);
897 return 0; /* not an MMU fault */
899 return 1; /* the MMU fault was handled without causing real CPU fault */
900 /* now we have a real cpu fault */
903 /* the PC is inside the translated code. It means that we have
904 a virtual CPU fault */
905 cpu_restore_state(tb, env, pc, puc);
907 /* we restore the process signal mask as the sigreturn should
908 do it (XXX: use sigsetjmp) */
909 sigprocmask(SIG_SETMASK, old_set, NULL);
912 #elif defined(TARGET_SPARC)
913 static inline int handle_cpu_signal(unsigned long pc, unsigned long address,
914 int is_write, sigset_t *old_set,
917 TranslationBlock *tb;
921 env = cpu_single_env; /* XXX: find a correct solution for multithread */
922 #if defined(DEBUG_SIGNAL)
923 printf("qemu: SIGSEGV pc=0x%08lx address=%08lx w=%d oldset=0x%08lx\n",
924 pc, address, is_write, *(unsigned long *)old_set);
926 /* XXX: locking issue */
927 if (is_write && page_unprotect(h2g(address), pc, puc)) {
930 /* see if it is an MMU fault */
931 ret = cpu_sparc_handle_mmu_fault(env, address, is_write, 1, 0);
933 return 0; /* not an MMU fault */
935 return 1; /* the MMU fault was handled without causing real CPU fault */
936 /* now we have a real cpu fault */
939 /* the PC is inside the translated code. It means that we have
940 a virtual CPU fault */
941 cpu_restore_state(tb, env, pc, puc);
943 /* we restore the process signal mask as the sigreturn should
944 do it (XXX: use sigsetjmp) */
945 sigprocmask(SIG_SETMASK, old_set, NULL);
948 #elif defined (TARGET_PPC)
949 static inline int handle_cpu_signal(unsigned long pc, unsigned long address,
950 int is_write, sigset_t *old_set,
953 TranslationBlock *tb;
957 env = cpu_single_env; /* XXX: find a correct solution for multithread */
958 #if defined(DEBUG_SIGNAL)
959 printf("qemu: SIGSEGV pc=0x%08lx address=%08lx w=%d oldset=0x%08lx\n",
960 pc, address, is_write, *(unsigned long *)old_set);
962 /* XXX: locking issue */
963 if (is_write && page_unprotect(h2g(address), pc, puc)) {
967 /* see if it is an MMU fault */
968 ret = cpu_ppc_handle_mmu_fault(env, address, is_write, msr_pr, 0);
970 return 0; /* not an MMU fault */
972 return 1; /* the MMU fault was handled without causing real CPU fault */
974 /* now we have a real cpu fault */
977 /* the PC is inside the translated code. It means that we have
978 a virtual CPU fault */
979 cpu_restore_state(tb, env, pc, puc);
983 printf("PF exception: NIP=0x%08x error=0x%x %p\n",
984 env->nip, env->error_code, tb);
986 /* we restore the process signal mask as the sigreturn should
987 do it (XXX: use sigsetjmp) */
988 sigprocmask(SIG_SETMASK, old_set, NULL);
989 do_raise_exception_err(env->exception_index, env->error_code);
991 /* activate soft MMU for this block */
992 cpu_resume_from_signal(env, puc);
994 /* never comes here */
998 #elif defined(TARGET_M68K)
999 static inline int handle_cpu_signal(unsigned long pc, unsigned long address,
1000 int is_write, sigset_t *old_set,
1003 TranslationBlock *tb;
1007 env = cpu_single_env; /* XXX: find a correct solution for multithread */
1008 #if defined(DEBUG_SIGNAL)
1009 printf("qemu: SIGSEGV pc=0x%08lx address=%08lx w=%d oldset=0x%08lx\n",
1010 pc, address, is_write, *(unsigned long *)old_set);
1012 /* XXX: locking issue */
1013 if (is_write && page_unprotect(address, pc, puc)) {
1016 /* see if it is an MMU fault */
1017 ret = cpu_m68k_handle_mmu_fault(env, address, is_write, 1, 0);
1019 return 0; /* not an MMU fault */
1021 return 1; /* the MMU fault was handled without causing real CPU fault */
1022 /* now we have a real cpu fault */
1023 tb = tb_find_pc(pc);
1025 /* the PC is inside the translated code. It means that we have
1026 a virtual CPU fault */
1027 cpu_restore_state(tb, env, pc, puc);
1029 /* we restore the process signal mask as the sigreturn should
1030 do it (XXX: use sigsetjmp) */
1031 sigprocmask(SIG_SETMASK, old_set, NULL);
1033 /* never comes here */
1037 #elif defined (TARGET_MIPS)
1038 static inline int handle_cpu_signal(unsigned long pc, unsigned long address,
1039 int is_write, sigset_t *old_set,
1042 TranslationBlock *tb;
1046 env = cpu_single_env; /* XXX: find a correct solution for multithread */
1047 #if defined(DEBUG_SIGNAL)
1048 printf("qemu: SIGSEGV pc=0x%08lx address=%08lx w=%d oldset=0x%08lx\n",
1049 pc, address, is_write, *(unsigned long *)old_set);
1051 /* XXX: locking issue */
1052 if (is_write && page_unprotect(h2g(address), pc, puc)) {
1056 /* see if it is an MMU fault */
1057 ret = cpu_mips_handle_mmu_fault(env, address, is_write, 1, 0);
1059 return 0; /* not an MMU fault */
1061 return 1; /* the MMU fault was handled without causing real CPU fault */
1063 /* now we have a real cpu fault */
1064 tb = tb_find_pc(pc);
1066 /* the PC is inside the translated code. It means that we have
1067 a virtual CPU fault */
1068 cpu_restore_state(tb, env, pc, puc);
1072 printf("PF exception: PC=0x" TARGET_FMT_lx " error=0x%x %p\n",
1073 env->PC, env->error_code, tb);
1075 /* we restore the process signal mask as the sigreturn should
1076 do it (XXX: use sigsetjmp) */
1077 sigprocmask(SIG_SETMASK, old_set, NULL);
1078 do_raise_exception_err(env->exception_index, env->error_code);
1080 /* activate soft MMU for this block */
1081 cpu_resume_from_signal(env, puc);
1083 /* never comes here */
1087 #elif defined (TARGET_SH4)
1088 static inline int handle_cpu_signal(unsigned long pc, unsigned long address,
1089 int is_write, sigset_t *old_set,
1092 TranslationBlock *tb;
1096 env = cpu_single_env; /* XXX: find a correct solution for multithread */
1097 #if defined(DEBUG_SIGNAL)
1098 printf("qemu: SIGSEGV pc=0x%08lx address=%08lx w=%d oldset=0x%08lx\n",
1099 pc, address, is_write, *(unsigned long *)old_set);
1101 /* XXX: locking issue */
1102 if (is_write && page_unprotect(h2g(address), pc, puc)) {
1106 /* see if it is an MMU fault */
1107 ret = cpu_sh4_handle_mmu_fault(env, address, is_write, 1, 0);
1109 return 0; /* not an MMU fault */
1111 return 1; /* the MMU fault was handled without causing real CPU fault */
1113 /* now we have a real cpu fault */
1114 tb = tb_find_pc(pc);
1116 /* the PC is inside the translated code. It means that we have
1117 a virtual CPU fault */
1118 cpu_restore_state(tb, env, pc, puc);
1121 printf("PF exception: NIP=0x%08x error=0x%x %p\n",
1122 env->nip, env->error_code, tb);
1124 /* we restore the process signal mask as the sigreturn should
1125 do it (XXX: use sigsetjmp) */
1126 sigprocmask(SIG_SETMASK, old_set, NULL);
1128 /* never comes here */
1132 #elif defined (TARGET_ALPHA)
1133 static inline int handle_cpu_signal(unsigned long pc, unsigned long address,
1134 int is_write, sigset_t *old_set,
1137 TranslationBlock *tb;
1141 env = cpu_single_env; /* XXX: find a correct solution for multithread */
1142 #if defined(DEBUG_SIGNAL)
1143 printf("qemu: SIGSEGV pc=0x%08lx address=%08lx w=%d oldset=0x%08lx\n",
1144 pc, address, is_write, *(unsigned long *)old_set);
1146 /* XXX: locking issue */
1147 if (is_write && page_unprotect(h2g(address), pc, puc)) {
1151 /* see if it is an MMU fault */
1152 ret = cpu_alpha_handle_mmu_fault(env, address, is_write, 1, 0);
1154 return 0; /* not an MMU fault */
1156 return 1; /* the MMU fault was handled without causing real CPU fault */
1158 /* now we have a real cpu fault */
1159 tb = tb_find_pc(pc);
1161 /* the PC is inside the translated code. It means that we have
1162 a virtual CPU fault */
1163 cpu_restore_state(tb, env, pc, puc);
1166 printf("PF exception: NIP=0x%08x error=0x%x %p\n",
1167 env->nip, env->error_code, tb);
1169 /* we restore the process signal mask as the sigreturn should
1170 do it (XXX: use sigsetjmp) */
1171 sigprocmask(SIG_SETMASK, old_set, NULL);
1173 /* never comes here */
1177 #error unsupported target CPU
1180 #if defined(__i386__)
1182 #if defined(__APPLE__)
1183 # include <sys/ucontext.h>
1185 # define EIP_sig(context) (*((unsigned long*)&(context)->uc_mcontext->ss.eip))
1186 # define TRAP_sig(context) ((context)->uc_mcontext->es.trapno)
1187 # define ERROR_sig(context) ((context)->uc_mcontext->es.err)
1189 # define EIP_sig(context) ((context)->uc_mcontext.gregs[REG_EIP])
1190 # define TRAP_sig(context) ((context)->uc_mcontext.gregs[REG_TRAPNO])
1191 # define ERROR_sig(context) ((context)->uc_mcontext.gregs[REG_ERR])
1194 #if defined(USE_CODE_COPY)
1195 static void cpu_send_trap(unsigned long pc, int trap,
1196 struct ucontext *uc)
1198 TranslationBlock *tb;
1201 env = cpu_single_env; /* XXX: find a correct solution for multithread */
1202 /* now we have a real cpu fault */
1203 tb = tb_find_pc(pc);
1205 /* the PC is inside the translated code. It means that we have
1206 a virtual CPU fault */
1207 cpu_restore_state(tb, env, pc, uc);
1209 sigprocmask(SIG_SETMASK, &uc->uc_sigmask, NULL);
1210 raise_exception_err(trap, env->error_code);
1214 int cpu_signal_handler(int host_signum, void *pinfo,
1217 siginfo_t *info = pinfo;
1218 struct ucontext *uc = puc;
1226 #define REG_TRAPNO TRAPNO
1229 trapno = TRAP_sig(uc);
1230 #if defined(TARGET_I386) && defined(USE_CODE_COPY)
1231 if (trapno == 0x00 || trapno == 0x05) {
1232 /* send division by zero or bound exception */
1233 cpu_send_trap(pc, trapno, uc);
1237 return handle_cpu_signal(pc, (unsigned long)info->si_addr,
1239 (ERROR_sig(uc) >> 1) & 1 : 0,
1240 &uc->uc_sigmask, puc);
1243 #elif defined(__x86_64__)
1245 int cpu_signal_handler(int host_signum, void *pinfo,
1248 siginfo_t *info = pinfo;
1249 struct ucontext *uc = puc;
1252 pc = uc->uc_mcontext.gregs[REG_RIP];
1253 return handle_cpu_signal(pc, (unsigned long)info->si_addr,
1254 uc->uc_mcontext.gregs[REG_TRAPNO] == 0xe ?
1255 (uc->uc_mcontext.gregs[REG_ERR] >> 1) & 1 : 0,
1256 &uc->uc_sigmask, puc);
1259 #elif defined(__powerpc__)
1261 /***********************************************************************
1262 * signal context platform-specific definitions
1266 /* All Registers access - only for local access */
1267 # define REG_sig(reg_name, context) ((context)->uc_mcontext.regs->reg_name)
1268 /* Gpr Registers access */
1269 # define GPR_sig(reg_num, context) REG_sig(gpr[reg_num], context)
1270 # define IAR_sig(context) REG_sig(nip, context) /* Program counter */
1271 # define MSR_sig(context) REG_sig(msr, context) /* Machine State Register (Supervisor) */
1272 # define CTR_sig(context) REG_sig(ctr, context) /* Count register */
1273 # define XER_sig(context) REG_sig(xer, context) /* User's integer exception register */
1274 # define LR_sig(context) REG_sig(link, context) /* Link register */
1275 # define CR_sig(context) REG_sig(ccr, context) /* Condition register */
1276 /* Float Registers access */
1277 # define FLOAT_sig(reg_num, context) (((double*)((char*)((context)->uc_mcontext.regs+48*4)))[reg_num])
1278 # define FPSCR_sig(context) (*(int*)((char*)((context)->uc_mcontext.regs+(48+32*2)*4)))
1279 /* Exception Registers access */
1280 # define DAR_sig(context) REG_sig(dar, context)
1281 # define DSISR_sig(context) REG_sig(dsisr, context)
1282 # define TRAP_sig(context) REG_sig(trap, context)
1286 # include <sys/ucontext.h>
1287 typedef struct ucontext SIGCONTEXT;
1288 /* All Registers access - only for local access */
1289 # define REG_sig(reg_name, context) ((context)->uc_mcontext->ss.reg_name)
1290 # define FLOATREG_sig(reg_name, context) ((context)->uc_mcontext->fs.reg_name)
1291 # define EXCEPREG_sig(reg_name, context) ((context)->uc_mcontext->es.reg_name)
1292 # define VECREG_sig(reg_name, context) ((context)->uc_mcontext->vs.reg_name)
1293 /* Gpr Registers access */
1294 # define GPR_sig(reg_num, context) REG_sig(r##reg_num, context)
1295 # define IAR_sig(context) REG_sig(srr0, context) /* Program counter */
1296 # define MSR_sig(context) REG_sig(srr1, context) /* Machine State Register (Supervisor) */
1297 # define CTR_sig(context) REG_sig(ctr, context)
1298 # define XER_sig(context) REG_sig(xer, context) /* Link register */
1299 # define LR_sig(context) REG_sig(lr, context) /* User's integer exception register */
1300 # define CR_sig(context) REG_sig(cr, context) /* Condition register */
1301 /* Float Registers access */
1302 # define FLOAT_sig(reg_num, context) FLOATREG_sig(fpregs[reg_num], context)
1303 # define FPSCR_sig(context) ((double)FLOATREG_sig(fpscr, context))
1304 /* Exception Registers access */
1305 # define DAR_sig(context) EXCEPREG_sig(dar, context) /* Fault registers for coredump */
1306 # define DSISR_sig(context) EXCEPREG_sig(dsisr, context)
1307 # define TRAP_sig(context) EXCEPREG_sig(exception, context) /* number of powerpc exception taken */
1308 #endif /* __APPLE__ */
1310 int cpu_signal_handler(int host_signum, void *pinfo,
1313 siginfo_t *info = pinfo;
1314 struct ucontext *uc = puc;
1322 if (DSISR_sig(uc) & 0x00800000)
1325 if (TRAP_sig(uc) != 0x400 && (DSISR_sig(uc) & 0x02000000))
1328 return handle_cpu_signal(pc, (unsigned long)info->si_addr,
1329 is_write, &uc->uc_sigmask, puc);
1332 #elif defined(__alpha__)
1334 int cpu_signal_handler(int host_signum, void *pinfo,
1337 siginfo_t *info = pinfo;
1338 struct ucontext *uc = puc;
1339 uint32_t *pc = uc->uc_mcontext.sc_pc;
1340 uint32_t insn = *pc;
1343 /* XXX: need kernel patch to get write flag faster */
1344 switch (insn >> 26) {
1359 return handle_cpu_signal(pc, (unsigned long)info->si_addr,
1360 is_write, &uc->uc_sigmask, puc);
1362 #elif defined(__sparc__)
1364 int cpu_signal_handler(int host_signum, void *pinfo,
1367 siginfo_t *info = pinfo;
1368 uint32_t *regs = (uint32_t *)(info + 1);
1369 void *sigmask = (regs + 20);
1374 /* XXX: is there a standard glibc define ? */
1376 /* XXX: need kernel patch to get write flag faster */
1378 insn = *(uint32_t *)pc;
1379 if ((insn >> 30) == 3) {
1380 switch((insn >> 19) & 0x3f) {
1392 return handle_cpu_signal(pc, (unsigned long)info->si_addr,
1393 is_write, sigmask, NULL);
1396 #elif defined(__arm__)
1398 int cpu_signal_handler(int host_signum, void *pinfo,
1401 siginfo_t *info = pinfo;
1402 struct ucontext *uc = puc;
1406 pc = uc->uc_mcontext.gregs[R15];
1407 /* XXX: compute is_write */
1409 return handle_cpu_signal(pc, (unsigned long)info->si_addr,
1411 &uc->uc_sigmask, puc);
1414 #elif defined(__mc68000)
1416 int cpu_signal_handler(int host_signum, void *pinfo,
1419 siginfo_t *info = pinfo;
1420 struct ucontext *uc = puc;
1424 pc = uc->uc_mcontext.gregs[16];
1425 /* XXX: compute is_write */
1427 return handle_cpu_signal(pc, (unsigned long)info->si_addr,
1429 &uc->uc_sigmask, puc);
1432 #elif defined(__ia64)
1435 /* This ought to be in <bits/siginfo.h>... */
1436 # define __ISR_VALID 1
1439 int cpu_signal_handler(int host_signum, void *pinfo, void *puc)
1441 siginfo_t *info = pinfo;
1442 struct ucontext *uc = puc;
1446 ip = uc->uc_mcontext.sc_ip;
1447 switch (host_signum) {
1453 if (info->si_code && (info->si_segvflags & __ISR_VALID))
1454 /* ISR.W (write-access) is bit 33: */
1455 is_write = (info->si_isr >> 33) & 1;
1461 return handle_cpu_signal(ip, (unsigned long)info->si_addr,
1463 &uc->uc_sigmask, puc);
1466 #elif defined(__s390__)
1468 int cpu_signal_handler(int host_signum, void *pinfo,
1471 siginfo_t *info = pinfo;
1472 struct ucontext *uc = puc;
1476 pc = uc->uc_mcontext.psw.addr;
1477 /* XXX: compute is_write */
1479 return handle_cpu_signal(pc, (unsigned long)info->si_addr,
1480 is_write, &uc->uc_sigmask, puc);
1483 #elif defined(__mips__)
1485 int cpu_signal_handler(int host_signum, void *pinfo,
1488 siginfo_t *info = pinfo;
1489 struct ucontext *uc = puc;
1490 greg_t pc = uc->uc_mcontext.pc;
1493 /* XXX: compute is_write */
1495 return handle_cpu_signal(pc, (unsigned long)info->si_addr,
1496 is_write, &uc->uc_sigmask, puc);
1501 #error host CPU specific signal handler needed
1505 #endif /* !defined(CONFIG_SOFTMMU) */
projects / qemu / blob