4 * Copyright (c) 2003 Fabrice Bellard
6 * This library is free software; you can redistribute it and/or
7 * modify it under the terms of the GNU Lesser General Public
8 * License as published by the Free Software Foundation; either
9 * version 2 of the License, or (at your option) any later version.
11 * This library is distributed in the hope that it will be useful,
12 * but WITHOUT ANY WARRANTY; without even the implied warranty of
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
14 * Lesser General Public License for more details.
16 * You should have received a copy of the GNU Lesser General Public
17 * License along with this library; if not, write to the Free Software
18 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
32 /* XXX: move that elsewhere */
33 static uint16_t *gen_opc_ptr;
34 static uint32_t *gen_opparam_ptr;
36 #define PREFIX_REPZ 0x01
37 #define PREFIX_REPNZ 0x02
38 #define PREFIX_LOCK 0x04
39 #define PREFIX_DATA 0x08
40 #define PREFIX_ADR 0x10
43 #define X86_64_ONLY(x) x
44 #define X86_64_DEF(x...) x
45 #define CODE64(s) ((s)->code64)
46 #define REX_X(s) ((s)->rex_x)
47 #define REX_B(s) ((s)->rex_b)
48 /* XXX: gcc generates push/pop in some opcodes, so we cannot use them */
50 #define BUGGY_64(x) NULL
53 #define X86_64_ONLY(x) NULL
54 #define X86_64_DEF(x...)
61 static int x86_64_hregs;
64 #ifdef USE_DIRECT_JUMP
67 #define TBPARAM(x) (long)(x)
70 typedef struct DisasContext {
71 /* current insn context */
72 int override; /* -1 if no override */
75 target_ulong pc; /* pc = eip + cs_base */
76 int is_jmp; /* 1 = means jump (stop translation), 2 means CPU
77 static state change (stop translation) */
78 /* current block context */
79 target_ulong cs_base; /* base of CS segment */
80 int pe; /* protected mode */
81 int code32; /* 32 bit code segment */
83 int lma; /* long mode active */
84 int code64; /* 64 bit code segment */
87 int ss32; /* 32 bit stack segment */
88 int cc_op; /* current CC operation */
89 int addseg; /* non zero if either DS/ES/SS have a non zero base */
90 int f_st; /* currently unused */
91 int vm86; /* vm86 mode */
94 int tf; /* TF cpu flag */
95 int singlestep_enabled; /* "hardware" single step enabled */
96 int jmp_opt; /* use direct block chaining for direct jumps */
97 int mem_index; /* select memory access functions */
98 uint64_t flags; /* all execution flags */
99 struct TranslationBlock *tb;
100 int popl_esp_hack; /* for correct popl with esp base handling */
101 int rip_offset; /* only used in x86_64, but left for simplicity */
103 int cpuid_ext_features;
106 static void gen_eob(DisasContext *s);
107 static void gen_jmp(DisasContext *s, target_ulong eip);
108 static void gen_jmp_tb(DisasContext *s, target_ulong eip, int tb_num);
110 /* i386 arith/logic operations */
130 OP_SHL1, /* undocumented */
135 #define DEF(s, n, copy_size) INDEX_op_ ## s,
152 /* I386 int registers */
153 OR_EAX, /* MUST be even numbered */
162 OR_TMP0 = 16, /* temporary operand register */
164 OR_A0, /* temporary register used when doing address evaluation */
169 #define NB_OP_SIZES 4
171 #define DEF_REGS(prefix, suffix) \
172 prefix ## EAX ## suffix,\
173 prefix ## ECX ## suffix,\
174 prefix ## EDX ## suffix,\
175 prefix ## EBX ## suffix,\
176 prefix ## ESP ## suffix,\
177 prefix ## EBP ## suffix,\
178 prefix ## ESI ## suffix,\
179 prefix ## EDI ## suffix,\
180 prefix ## R8 ## suffix,\
181 prefix ## R9 ## suffix,\
182 prefix ## R10 ## suffix,\
183 prefix ## R11 ## suffix,\
184 prefix ## R12 ## suffix,\
185 prefix ## R13 ## suffix,\
186 prefix ## R14 ## suffix,\
187 prefix ## R15 ## suffix,
189 #define DEF_BREGS(prefixb, prefixh, suffix) \
191 static void prefixb ## ESP ## suffix ## _wrapper(void) \
194 prefixb ## ESP ## suffix (); \
196 prefixh ## EAX ## suffix (); \
199 static void prefixb ## EBP ## suffix ## _wrapper(void) \
202 prefixb ## EBP ## suffix (); \
204 prefixh ## ECX ## suffix (); \
207 static void prefixb ## ESI ## suffix ## _wrapper(void) \
210 prefixb ## ESI ## suffix (); \
212 prefixh ## EDX ## suffix (); \
215 static void prefixb ## EDI ## suffix ## _wrapper(void) \
218 prefixb ## EDI ## suffix (); \
220 prefixh ## EBX ## suffix (); \
223 DEF_BREGS(gen_op_movb_, gen_op_movh_, _T0)
224 DEF_BREGS(gen_op_movb_, gen_op_movh_, _T1)
225 DEF_BREGS(gen_op_movl_T0_, gen_op_movh_T0_, )
226 DEF_BREGS(gen_op_movl_T1_, gen_op_movh_T1_, )
228 #else /* !TARGET_X86_64 */
230 #define NB_OP_SIZES 3
232 #define DEF_REGS(prefix, suffix) \
233 prefix ## EAX ## suffix,\
234 prefix ## ECX ## suffix,\
235 prefix ## EDX ## suffix,\
236 prefix ## EBX ## suffix,\
237 prefix ## ESP ## suffix,\
238 prefix ## EBP ## suffix,\
239 prefix ## ESI ## suffix,\
240 prefix ## EDI ## suffix,
242 #endif /* !TARGET_X86_64 */
244 static GenOpFunc *gen_op_mov_reg_T0[NB_OP_SIZES][CPU_NB_REGS] = {
251 gen_op_movb_ESP_T0_wrapper,
252 gen_op_movb_EBP_T0_wrapper,
253 gen_op_movb_ESI_T0_wrapper,
254 gen_op_movb_EDI_T0_wrapper,
271 DEF_REGS(gen_op_movw_, _T0)
274 DEF_REGS(gen_op_movl_, _T0)
278 DEF_REGS(gen_op_movq_, _T0)
283 static GenOpFunc *gen_op_mov_reg_T1[NB_OP_SIZES][CPU_NB_REGS] = {
290 gen_op_movb_ESP_T1_wrapper,
291 gen_op_movb_EBP_T1_wrapper,
292 gen_op_movb_ESI_T1_wrapper,
293 gen_op_movb_EDI_T1_wrapper,
310 DEF_REGS(gen_op_movw_, _T1)
313 DEF_REGS(gen_op_movl_, _T1)
317 DEF_REGS(gen_op_movq_, _T1)
322 static GenOpFunc *gen_op_mov_reg_A0[NB_OP_SIZES - 1][CPU_NB_REGS] = {
324 DEF_REGS(gen_op_movw_, _A0)
327 DEF_REGS(gen_op_movl_, _A0)
331 DEF_REGS(gen_op_movq_, _A0)
336 static GenOpFunc *gen_op_mov_TN_reg[NB_OP_SIZES][2][CPU_NB_REGS] =
345 gen_op_movl_T0_ESP_wrapper,
346 gen_op_movl_T0_EBP_wrapper,
347 gen_op_movl_T0_ESI_wrapper,
348 gen_op_movl_T0_EDI_wrapper,
370 gen_op_movl_T1_ESP_wrapper,
371 gen_op_movl_T1_EBP_wrapper,
372 gen_op_movl_T1_ESI_wrapper,
373 gen_op_movl_T1_EDI_wrapper,
392 DEF_REGS(gen_op_movl_T0_, )
395 DEF_REGS(gen_op_movl_T1_, )
400 DEF_REGS(gen_op_movl_T0_, )
403 DEF_REGS(gen_op_movl_T1_, )
409 DEF_REGS(gen_op_movl_T0_, )
412 DEF_REGS(gen_op_movl_T1_, )
418 static GenOpFunc *gen_op_movl_A0_reg[CPU_NB_REGS] = {
419 DEF_REGS(gen_op_movl_A0_, )
422 static GenOpFunc *gen_op_addl_A0_reg_sN[4][CPU_NB_REGS] = {
424 DEF_REGS(gen_op_addl_A0_, )
427 DEF_REGS(gen_op_addl_A0_, _s1)
430 DEF_REGS(gen_op_addl_A0_, _s2)
433 DEF_REGS(gen_op_addl_A0_, _s3)
438 static GenOpFunc *gen_op_movq_A0_reg[CPU_NB_REGS] = {
439 DEF_REGS(gen_op_movq_A0_, )
442 static GenOpFunc *gen_op_addq_A0_reg_sN[4][CPU_NB_REGS] = {
444 DEF_REGS(gen_op_addq_A0_, )
447 DEF_REGS(gen_op_addq_A0_, _s1)
450 DEF_REGS(gen_op_addq_A0_, _s2)
453 DEF_REGS(gen_op_addq_A0_, _s3)
458 static GenOpFunc *gen_op_cmov_reg_T1_T0[NB_OP_SIZES - 1][CPU_NB_REGS] = {
460 DEF_REGS(gen_op_cmovw_, _T1_T0)
463 DEF_REGS(gen_op_cmovl_, _T1_T0)
467 DEF_REGS(gen_op_cmovq_, _T1_T0)
472 static GenOpFunc *gen_op_arith_T0_T1_cc[8] = {
483 #define DEF_ARITHC(SUFFIX)\
485 gen_op_adcb ## SUFFIX ## _T0_T1_cc,\
486 gen_op_sbbb ## SUFFIX ## _T0_T1_cc,\
489 gen_op_adcw ## SUFFIX ## _T0_T1_cc,\
490 gen_op_sbbw ## SUFFIX ## _T0_T1_cc,\
493 gen_op_adcl ## SUFFIX ## _T0_T1_cc,\
494 gen_op_sbbl ## SUFFIX ## _T0_T1_cc,\
497 X86_64_ONLY(gen_op_adcq ## SUFFIX ## _T0_T1_cc),\
498 X86_64_ONLY(gen_op_sbbq ## SUFFIX ## _T0_T1_cc),\
501 static GenOpFunc *gen_op_arithc_T0_T1_cc[4][2] = {
505 static GenOpFunc *gen_op_arithc_mem_T0_T1_cc[3 * 4][2] = {
507 #ifndef CONFIG_USER_ONLY
513 static const int cc_op_arithb[8] = {
524 #define DEF_CMPXCHG(SUFFIX)\
525 gen_op_cmpxchgb ## SUFFIX ## _T0_T1_EAX_cc,\
526 gen_op_cmpxchgw ## SUFFIX ## _T0_T1_EAX_cc,\
527 gen_op_cmpxchgl ## SUFFIX ## _T0_T1_EAX_cc,\
528 X86_64_ONLY(gen_op_cmpxchgq ## SUFFIX ## _T0_T1_EAX_cc),
530 static GenOpFunc *gen_op_cmpxchg_T0_T1_EAX_cc[4] = {
534 static GenOpFunc *gen_op_cmpxchg_mem_T0_T1_EAX_cc[3 * 4] = {
536 #ifndef CONFIG_USER_ONLY
542 #define DEF_SHIFT(SUFFIX)\
544 gen_op_rolb ## SUFFIX ## _T0_T1_cc,\
545 gen_op_rorb ## SUFFIX ## _T0_T1_cc,\
546 gen_op_rclb ## SUFFIX ## _T0_T1_cc,\
547 gen_op_rcrb ## SUFFIX ## _T0_T1_cc,\
548 gen_op_shlb ## SUFFIX ## _T0_T1_cc,\
549 gen_op_shrb ## SUFFIX ## _T0_T1_cc,\
550 gen_op_shlb ## SUFFIX ## _T0_T1_cc,\
551 gen_op_sarb ## SUFFIX ## _T0_T1_cc,\
554 gen_op_rolw ## SUFFIX ## _T0_T1_cc,\
555 gen_op_rorw ## SUFFIX ## _T0_T1_cc,\
556 gen_op_rclw ## SUFFIX ## _T0_T1_cc,\
557 gen_op_rcrw ## SUFFIX ## _T0_T1_cc,\
558 gen_op_shlw ## SUFFIX ## _T0_T1_cc,\
559 gen_op_shrw ## SUFFIX ## _T0_T1_cc,\
560 gen_op_shlw ## SUFFIX ## _T0_T1_cc,\
561 gen_op_sarw ## SUFFIX ## _T0_T1_cc,\
564 gen_op_roll ## SUFFIX ## _T0_T1_cc,\
565 gen_op_rorl ## SUFFIX ## _T0_T1_cc,\
566 gen_op_rcll ## SUFFIX ## _T0_T1_cc,\
567 gen_op_rcrl ## SUFFIX ## _T0_T1_cc,\
568 gen_op_shll ## SUFFIX ## _T0_T1_cc,\
569 gen_op_shrl ## SUFFIX ## _T0_T1_cc,\
570 gen_op_shll ## SUFFIX ## _T0_T1_cc,\
571 gen_op_sarl ## SUFFIX ## _T0_T1_cc,\
574 X86_64_ONLY(gen_op_rolq ## SUFFIX ## _T0_T1_cc),\
575 X86_64_ONLY(gen_op_rorq ## SUFFIX ## _T0_T1_cc),\
576 X86_64_ONLY(gen_op_rclq ## SUFFIX ## _T0_T1_cc),\
577 X86_64_ONLY(gen_op_rcrq ## SUFFIX ## _T0_T1_cc),\
578 X86_64_ONLY(gen_op_shlq ## SUFFIX ## _T0_T1_cc),\
579 X86_64_ONLY(gen_op_shrq ## SUFFIX ## _T0_T1_cc),\
580 X86_64_ONLY(gen_op_shlq ## SUFFIX ## _T0_T1_cc),\
581 X86_64_ONLY(gen_op_sarq ## SUFFIX ## _T0_T1_cc),\
584 static GenOpFunc *gen_op_shift_T0_T1_cc[4][8] = {
588 static GenOpFunc *gen_op_shift_mem_T0_T1_cc[3 * 4][8] = {
590 #ifndef CONFIG_USER_ONLY
596 #define DEF_SHIFTD(SUFFIX, op)\
602 gen_op_shldw ## SUFFIX ## _T0_T1_ ## op ## _cc,\
603 gen_op_shrdw ## SUFFIX ## _T0_T1_ ## op ## _cc,\
606 gen_op_shldl ## SUFFIX ## _T0_T1_ ## op ## _cc,\
607 gen_op_shrdl ## SUFFIX ## _T0_T1_ ## op ## _cc,\
610 X86_64_DEF(gen_op_shldq ## SUFFIX ## _T0_T1_ ## op ## _cc,\
611 gen_op_shrdq ## SUFFIX ## _T0_T1_ ## op ## _cc,)\
614 static GenOpFunc1 *gen_op_shiftd_T0_T1_im_cc[4][2] = {
618 static GenOpFunc *gen_op_shiftd_T0_T1_ECX_cc[4][2] = {
622 static GenOpFunc1 *gen_op_shiftd_mem_T0_T1_im_cc[3 * 4][2] = {
624 #ifndef CONFIG_USER_ONLY
625 DEF_SHIFTD(_kernel, im)
626 DEF_SHIFTD(_user, im)
630 static GenOpFunc *gen_op_shiftd_mem_T0_T1_ECX_cc[3 * 4][2] = {
631 DEF_SHIFTD(_raw, ECX)
632 #ifndef CONFIG_USER_ONLY
633 DEF_SHIFTD(_kernel, ECX)
634 DEF_SHIFTD(_user, ECX)
638 static GenOpFunc *gen_op_btx_T0_T1_cc[3][4] = {
641 gen_op_btsw_T0_T1_cc,
642 gen_op_btrw_T0_T1_cc,
643 gen_op_btcw_T0_T1_cc,
647 gen_op_btsl_T0_T1_cc,
648 gen_op_btrl_T0_T1_cc,
649 gen_op_btcl_T0_T1_cc,
654 gen_op_btsq_T0_T1_cc,
655 gen_op_btrq_T0_T1_cc,
656 gen_op_btcq_T0_T1_cc,
661 static GenOpFunc *gen_op_add_bit_A0_T1[3] = {
662 gen_op_add_bitw_A0_T1,
663 gen_op_add_bitl_A0_T1,
664 X86_64_ONLY(gen_op_add_bitq_A0_T1),
667 static GenOpFunc *gen_op_bsx_T0_cc[3][2] = {
684 static GenOpFunc *gen_op_lds_T0_A0[3 * 4] = {
685 gen_op_ldsb_raw_T0_A0,
686 gen_op_ldsw_raw_T0_A0,
687 X86_64_ONLY(gen_op_ldsl_raw_T0_A0),
689 #ifndef CONFIG_USER_ONLY
690 gen_op_ldsb_kernel_T0_A0,
691 gen_op_ldsw_kernel_T0_A0,
692 X86_64_ONLY(gen_op_ldsl_kernel_T0_A0),
695 gen_op_ldsb_user_T0_A0,
696 gen_op_ldsw_user_T0_A0,
697 X86_64_ONLY(gen_op_ldsl_user_T0_A0),
702 static GenOpFunc *gen_op_ldu_T0_A0[3 * 4] = {
703 gen_op_ldub_raw_T0_A0,
704 gen_op_lduw_raw_T0_A0,
708 #ifndef CONFIG_USER_ONLY
709 gen_op_ldub_kernel_T0_A0,
710 gen_op_lduw_kernel_T0_A0,
714 gen_op_ldub_user_T0_A0,
715 gen_op_lduw_user_T0_A0,
721 /* sign does not matter, except for lidt/lgdt call (TODO: fix it) */
722 static GenOpFunc *gen_op_ld_T0_A0[3 * 4] = {
723 gen_op_ldub_raw_T0_A0,
724 gen_op_lduw_raw_T0_A0,
725 gen_op_ldl_raw_T0_A0,
726 X86_64_ONLY(gen_op_ldq_raw_T0_A0),
728 #ifndef CONFIG_USER_ONLY
729 gen_op_ldub_kernel_T0_A0,
730 gen_op_lduw_kernel_T0_A0,
731 gen_op_ldl_kernel_T0_A0,
732 X86_64_ONLY(gen_op_ldq_kernel_T0_A0),
734 gen_op_ldub_user_T0_A0,
735 gen_op_lduw_user_T0_A0,
736 gen_op_ldl_user_T0_A0,
737 X86_64_ONLY(gen_op_ldq_user_T0_A0),
741 static GenOpFunc *gen_op_ld_T1_A0[3 * 4] = {
742 gen_op_ldub_raw_T1_A0,
743 gen_op_lduw_raw_T1_A0,
744 gen_op_ldl_raw_T1_A0,
745 X86_64_ONLY(gen_op_ldq_raw_T1_A0),
747 #ifndef CONFIG_USER_ONLY
748 gen_op_ldub_kernel_T1_A0,
749 gen_op_lduw_kernel_T1_A0,
750 gen_op_ldl_kernel_T1_A0,
751 X86_64_ONLY(gen_op_ldq_kernel_T1_A0),
753 gen_op_ldub_user_T1_A0,
754 gen_op_lduw_user_T1_A0,
755 gen_op_ldl_user_T1_A0,
756 X86_64_ONLY(gen_op_ldq_user_T1_A0),
760 static GenOpFunc *gen_op_st_T0_A0[3 * 4] = {
761 gen_op_stb_raw_T0_A0,
762 gen_op_stw_raw_T0_A0,
763 gen_op_stl_raw_T0_A0,
764 X86_64_ONLY(gen_op_stq_raw_T0_A0),
766 #ifndef CONFIG_USER_ONLY
767 gen_op_stb_kernel_T0_A0,
768 gen_op_stw_kernel_T0_A0,
769 gen_op_stl_kernel_T0_A0,
770 X86_64_ONLY(gen_op_stq_kernel_T0_A0),
772 gen_op_stb_user_T0_A0,
773 gen_op_stw_user_T0_A0,
774 gen_op_stl_user_T0_A0,
775 X86_64_ONLY(gen_op_stq_user_T0_A0),
779 static GenOpFunc *gen_op_st_T1_A0[3 * 4] = {
781 gen_op_stw_raw_T1_A0,
782 gen_op_stl_raw_T1_A0,
783 X86_64_ONLY(gen_op_stq_raw_T1_A0),
785 #ifndef CONFIG_USER_ONLY
787 gen_op_stw_kernel_T1_A0,
788 gen_op_stl_kernel_T1_A0,
789 X86_64_ONLY(gen_op_stq_kernel_T1_A0),
792 gen_op_stw_user_T1_A0,
793 gen_op_stl_user_T1_A0,
794 X86_64_ONLY(gen_op_stq_user_T1_A0),
798 static inline void gen_jmp_im(target_ulong pc)
801 if (pc == (uint32_t)pc) {
802 gen_op_movl_eip_im(pc);
803 } else if (pc == (int32_t)pc) {
804 gen_op_movq_eip_im(pc);
806 gen_op_movq_eip_im64(pc >> 32, pc);
809 gen_op_movl_eip_im(pc);
813 static inline void gen_string_movl_A0_ESI(DisasContext *s)
817 override = s->override;
821 gen_op_movq_A0_seg(offsetof(CPUX86State,segs[override].base));
822 gen_op_addq_A0_reg_sN[0][R_ESI]();
824 gen_op_movq_A0_reg[R_ESI]();
830 if (s->addseg && override < 0)
833 gen_op_movl_A0_seg(offsetof(CPUX86State,segs[override].base));
834 gen_op_addl_A0_reg_sN[0][R_ESI]();
836 gen_op_movl_A0_reg[R_ESI]();
839 /* 16 address, always override */
842 gen_op_movl_A0_reg[R_ESI]();
843 gen_op_andl_A0_ffff();
844 gen_op_addl_A0_seg(offsetof(CPUX86State,segs[override].base));
848 static inline void gen_string_movl_A0_EDI(DisasContext *s)
852 gen_op_movq_A0_reg[R_EDI]();
857 gen_op_movl_A0_seg(offsetof(CPUX86State,segs[R_ES].base));
858 gen_op_addl_A0_reg_sN[0][R_EDI]();
860 gen_op_movl_A0_reg[R_EDI]();
863 gen_op_movl_A0_reg[R_EDI]();
864 gen_op_andl_A0_ffff();
865 gen_op_addl_A0_seg(offsetof(CPUX86State,segs[R_ES].base));
869 static GenOpFunc *gen_op_movl_T0_Dshift[4] = {
870 gen_op_movl_T0_Dshiftb,
871 gen_op_movl_T0_Dshiftw,
872 gen_op_movl_T0_Dshiftl,
873 X86_64_ONLY(gen_op_movl_T0_Dshiftq),
876 static GenOpFunc1 *gen_op_jnz_ecx[3] = {
879 X86_64_ONLY(gen_op_jnz_ecxq),
882 static GenOpFunc1 *gen_op_jz_ecx[3] = {
885 X86_64_ONLY(gen_op_jz_ecxq),
888 static GenOpFunc *gen_op_dec_ECX[3] = {
891 X86_64_ONLY(gen_op_decq_ECX),
894 static GenOpFunc1 *gen_op_string_jnz_sub[2][4] = {
899 X86_64_ONLY(gen_op_jnz_subq),
905 X86_64_ONLY(gen_op_jz_subq),
909 static GenOpFunc *gen_op_in_DX_T0[3] = {
915 static GenOpFunc *gen_op_out_DX_T0[3] = {
921 static GenOpFunc *gen_op_in[3] = {
927 static GenOpFunc *gen_op_out[3] = {
933 static GenOpFunc *gen_check_io_T0[3] = {
939 static GenOpFunc *gen_check_io_DX[3] = {
945 static void gen_check_io(DisasContext *s, int ot, int use_dx, target_ulong cur_eip)
947 if (s->pe && (s->cpl > s->iopl || s->vm86)) {
948 if (s->cc_op != CC_OP_DYNAMIC)
949 gen_op_set_cc_op(s->cc_op);
952 gen_check_io_DX[ot]();
954 gen_check_io_T0[ot]();
958 static inline void gen_movs(DisasContext *s, int ot)
960 gen_string_movl_A0_ESI(s);
961 gen_op_ld_T0_A0[ot + s->mem_index]();
962 gen_string_movl_A0_EDI(s);
963 gen_op_st_T0_A0[ot + s->mem_index]();
964 gen_op_movl_T0_Dshift[ot]();
967 gen_op_addq_ESI_T0();
968 gen_op_addq_EDI_T0();
972 gen_op_addl_ESI_T0();
973 gen_op_addl_EDI_T0();
975 gen_op_addw_ESI_T0();
976 gen_op_addw_EDI_T0();
980 static inline void gen_update_cc_op(DisasContext *s)
982 if (s->cc_op != CC_OP_DYNAMIC) {
983 gen_op_set_cc_op(s->cc_op);
984 s->cc_op = CC_OP_DYNAMIC;
988 /* XXX: does not work with gdbstub "ice" single step - not a
990 static int gen_jz_ecx_string(DisasContext *s, target_ulong next_eip)
994 l1 = gen_new_label();
995 l2 = gen_new_label();
996 gen_op_jnz_ecx[s->aflag](l1);
998 gen_jmp_tb(s, next_eip, 1);
1003 static inline void gen_stos(DisasContext *s, int ot)
1005 gen_op_mov_TN_reg[OT_LONG][0][R_EAX]();
1006 gen_string_movl_A0_EDI(s);
1007 gen_op_st_T0_A0[ot + s->mem_index]();
1008 gen_op_movl_T0_Dshift[ot]();
1009 #ifdef TARGET_X86_64
1010 if (s->aflag == 2) {
1011 gen_op_addq_EDI_T0();
1015 gen_op_addl_EDI_T0();
1017 gen_op_addw_EDI_T0();
1021 static inline void gen_lods(DisasContext *s, int ot)
1023 gen_string_movl_A0_ESI(s);
1024 gen_op_ld_T0_A0[ot + s->mem_index]();
1025 gen_op_mov_reg_T0[ot][R_EAX]();
1026 gen_op_movl_T0_Dshift[ot]();
1027 #ifdef TARGET_X86_64
1028 if (s->aflag == 2) {
1029 gen_op_addq_ESI_T0();
1033 gen_op_addl_ESI_T0();
1035 gen_op_addw_ESI_T0();
1039 static inline void gen_scas(DisasContext *s, int ot)
1041 gen_op_mov_TN_reg[OT_LONG][0][R_EAX]();
1042 gen_string_movl_A0_EDI(s);
1043 gen_op_ld_T1_A0[ot + s->mem_index]();
1044 gen_op_cmpl_T0_T1_cc();
1045 gen_op_movl_T0_Dshift[ot]();
1046 #ifdef TARGET_X86_64
1047 if (s->aflag == 2) {
1048 gen_op_addq_EDI_T0();
1052 gen_op_addl_EDI_T0();
1054 gen_op_addw_EDI_T0();
1058 static inline void gen_cmps(DisasContext *s, int ot)
1060 gen_string_movl_A0_ESI(s);
1061 gen_op_ld_T0_A0[ot + s->mem_index]();
1062 gen_string_movl_A0_EDI(s);
1063 gen_op_ld_T1_A0[ot + s->mem_index]();
1064 gen_op_cmpl_T0_T1_cc();
1065 gen_op_movl_T0_Dshift[ot]();
1066 #ifdef TARGET_X86_64
1067 if (s->aflag == 2) {
1068 gen_op_addq_ESI_T0();
1069 gen_op_addq_EDI_T0();
1073 gen_op_addl_ESI_T0();
1074 gen_op_addl_EDI_T0();
1076 gen_op_addw_ESI_T0();
1077 gen_op_addw_EDI_T0();
1081 static inline void gen_ins(DisasContext *s, int ot)
1083 gen_string_movl_A0_EDI(s);
1085 gen_op_st_T0_A0[ot + s->mem_index]();
1086 gen_op_in_DX_T0[ot]();
1087 gen_op_st_T0_A0[ot + s->mem_index]();
1088 gen_op_movl_T0_Dshift[ot]();
1089 #ifdef TARGET_X86_64
1090 if (s->aflag == 2) {
1091 gen_op_addq_EDI_T0();
1095 gen_op_addl_EDI_T0();
1097 gen_op_addw_EDI_T0();
1101 static inline void gen_outs(DisasContext *s, int ot)
1103 gen_string_movl_A0_ESI(s);
1104 gen_op_ld_T0_A0[ot + s->mem_index]();
1105 gen_op_out_DX_T0[ot]();
1106 gen_op_movl_T0_Dshift[ot]();
1107 #ifdef TARGET_X86_64
1108 if (s->aflag == 2) {
1109 gen_op_addq_ESI_T0();
1113 gen_op_addl_ESI_T0();
1115 gen_op_addw_ESI_T0();
1119 /* same method as Valgrind : we generate jumps to current or next
1121 #define GEN_REPZ(op) \
1122 static inline void gen_repz_ ## op(DisasContext *s, int ot, \
1123 target_ulong cur_eip, target_ulong next_eip) \
1126 gen_update_cc_op(s); \
1127 l2 = gen_jz_ecx_string(s, next_eip); \
1128 gen_ ## op(s, ot); \
1129 gen_op_dec_ECX[s->aflag](); \
1130 /* a loop would cause two single step exceptions if ECX = 1 \
1131 before rep string_insn */ \
1133 gen_op_jz_ecx[s->aflag](l2); \
1134 gen_jmp(s, cur_eip); \
1137 #define GEN_REPZ2(op) \
1138 static inline void gen_repz_ ## op(DisasContext *s, int ot, \
1139 target_ulong cur_eip, \
1140 target_ulong next_eip, \
1144 gen_update_cc_op(s); \
1145 l2 = gen_jz_ecx_string(s, next_eip); \
1146 gen_ ## op(s, ot); \
1147 gen_op_dec_ECX[s->aflag](); \
1148 gen_op_set_cc_op(CC_OP_SUBB + ot); \
1149 gen_op_string_jnz_sub[nz][ot](l2);\
1151 gen_op_jz_ecx[s->aflag](l2); \
1152 gen_jmp(s, cur_eip); \
1174 static GenOpFunc1 *gen_jcc_sub[4][8] = {
1205 #ifdef TARGET_X86_64
1208 BUGGY_64(gen_op_jb_subq),
1210 BUGGY_64(gen_op_jbe_subq),
1213 BUGGY_64(gen_op_jl_subq),
1214 BUGGY_64(gen_op_jle_subq),
1218 static GenOpFunc1 *gen_op_loop[3][4] = {
1229 #ifdef TARGET_X86_64
1238 static GenOpFunc *gen_setcc_slow[8] = {
1249 static GenOpFunc *gen_setcc_sub[4][8] = {
1252 gen_op_setb_T0_subb,
1253 gen_op_setz_T0_subb,
1254 gen_op_setbe_T0_subb,
1255 gen_op_sets_T0_subb,
1257 gen_op_setl_T0_subb,
1258 gen_op_setle_T0_subb,
1262 gen_op_setb_T0_subw,
1263 gen_op_setz_T0_subw,
1264 gen_op_setbe_T0_subw,
1265 gen_op_sets_T0_subw,
1267 gen_op_setl_T0_subw,
1268 gen_op_setle_T0_subw,
1272 gen_op_setb_T0_subl,
1273 gen_op_setz_T0_subl,
1274 gen_op_setbe_T0_subl,
1275 gen_op_sets_T0_subl,
1277 gen_op_setl_T0_subl,
1278 gen_op_setle_T0_subl,
1280 #ifdef TARGET_X86_64
1283 gen_op_setb_T0_subq,
1284 gen_op_setz_T0_subq,
1285 gen_op_setbe_T0_subq,
1286 gen_op_sets_T0_subq,
1288 gen_op_setl_T0_subq,
1289 gen_op_setle_T0_subq,
1294 static GenOpFunc *gen_op_fp_arith_ST0_FT0[8] = {
1295 gen_op_fadd_ST0_FT0,
1296 gen_op_fmul_ST0_FT0,
1297 gen_op_fcom_ST0_FT0,
1298 gen_op_fcom_ST0_FT0,
1299 gen_op_fsub_ST0_FT0,
1300 gen_op_fsubr_ST0_FT0,
1301 gen_op_fdiv_ST0_FT0,
1302 gen_op_fdivr_ST0_FT0,
1305 /* NOTE the exception in "r" op ordering */
1306 static GenOpFunc1 *gen_op_fp_arith_STN_ST0[8] = {
1307 gen_op_fadd_STN_ST0,
1308 gen_op_fmul_STN_ST0,
1311 gen_op_fsubr_STN_ST0,
1312 gen_op_fsub_STN_ST0,
1313 gen_op_fdivr_STN_ST0,
1314 gen_op_fdiv_STN_ST0,
1317 /* if d == OR_TMP0, it means memory operand (address in A0) */
1318 static void gen_op(DisasContext *s1, int op, int ot, int d)
1320 GenOpFunc *gen_update_cc;
1323 gen_op_mov_TN_reg[ot][0][d]();
1325 gen_op_ld_T0_A0[ot + s1->mem_index]();
1330 if (s1->cc_op != CC_OP_DYNAMIC)
1331 gen_op_set_cc_op(s1->cc_op);
1333 gen_op_arithc_T0_T1_cc[ot][op - OP_ADCL]();
1334 gen_op_mov_reg_T0[ot][d]();
1336 gen_op_arithc_mem_T0_T1_cc[ot + s1->mem_index][op - OP_ADCL]();
1338 s1->cc_op = CC_OP_DYNAMIC;
1341 gen_op_addl_T0_T1();
1342 s1->cc_op = CC_OP_ADDB + ot;
1343 gen_update_cc = gen_op_update2_cc;
1346 gen_op_subl_T0_T1();
1347 s1->cc_op = CC_OP_SUBB + ot;
1348 gen_update_cc = gen_op_update2_cc;
1354 gen_op_arith_T0_T1_cc[op]();
1355 s1->cc_op = CC_OP_LOGICB + ot;
1356 gen_update_cc = gen_op_update1_cc;
1359 gen_op_cmpl_T0_T1_cc();
1360 s1->cc_op = CC_OP_SUBB + ot;
1361 gen_update_cc = NULL;
1364 if (op != OP_CMPL) {
1366 gen_op_mov_reg_T0[ot][d]();
1368 gen_op_st_T0_A0[ot + s1->mem_index]();
1370 /* the flags update must happen after the memory write (precise
1371 exception support) */
1377 /* if d == OR_TMP0, it means memory operand (address in A0) */
1378 static void gen_inc(DisasContext *s1, int ot, int d, int c)
1381 gen_op_mov_TN_reg[ot][0][d]();
1383 gen_op_ld_T0_A0[ot + s1->mem_index]();
1384 if (s1->cc_op != CC_OP_DYNAMIC)
1385 gen_op_set_cc_op(s1->cc_op);
1388 s1->cc_op = CC_OP_INCB + ot;
1391 s1->cc_op = CC_OP_DECB + ot;
1394 gen_op_mov_reg_T0[ot][d]();
1396 gen_op_st_T0_A0[ot + s1->mem_index]();
1397 gen_op_update_inc_cc();
1400 static void gen_shift(DisasContext *s1, int op, int ot, int d, int s)
1403 gen_op_mov_TN_reg[ot][0][d]();
1405 gen_op_ld_T0_A0[ot + s1->mem_index]();
1407 gen_op_mov_TN_reg[ot][1][s]();
1408 /* for zero counts, flags are not updated, so must do it dynamically */
1409 if (s1->cc_op != CC_OP_DYNAMIC)
1410 gen_op_set_cc_op(s1->cc_op);
1413 gen_op_shift_T0_T1_cc[ot][op]();
1415 gen_op_shift_mem_T0_T1_cc[ot + s1->mem_index][op]();
1417 gen_op_mov_reg_T0[ot][d]();
1418 s1->cc_op = CC_OP_DYNAMIC; /* cannot predict flags after */
1421 static void gen_shifti(DisasContext *s1, int op, int ot, int d, int c)
1423 /* currently not optimized */
1424 gen_op_movl_T1_im(c);
1425 gen_shift(s1, op, ot, d, OR_TMP1);
1428 static void gen_lea_modrm(DisasContext *s, int modrm, int *reg_ptr, int *offset_ptr)
1436 int mod, rm, code, override, must_add_seg;
1438 override = s->override;
1439 must_add_seg = s->addseg;
1442 mod = (modrm >> 6) & 3;
1454 code = ldub_code(s->pc++);
1455 scale = (code >> 6) & 3;
1456 index = ((code >> 3) & 7) | REX_X(s);
1463 if ((base & 7) == 5) {
1465 disp = (int32_t)ldl_code(s->pc);
1467 if (CODE64(s) && !havesib) {
1468 disp += s->pc + s->rip_offset;
1475 disp = (int8_t)ldub_code(s->pc++);
1479 disp = ldl_code(s->pc);
1485 /* for correct popl handling with esp */
1486 if (base == 4 && s->popl_esp_hack)
1487 disp += s->popl_esp_hack;
1488 #ifdef TARGET_X86_64
1489 if (s->aflag == 2) {
1490 gen_op_movq_A0_reg[base]();
1492 if ((int32_t)disp == disp)
1493 gen_op_addq_A0_im(disp);
1495 gen_op_addq_A0_im64(disp >> 32, disp);
1500 gen_op_movl_A0_reg[base]();
1502 gen_op_addl_A0_im(disp);
1505 #ifdef TARGET_X86_64
1506 if (s->aflag == 2) {
1507 if ((int32_t)disp == disp)
1508 gen_op_movq_A0_im(disp);
1510 gen_op_movq_A0_im64(disp >> 32, disp);
1514 gen_op_movl_A0_im(disp);
1517 /* XXX: index == 4 is always invalid */
1518 if (havesib && (index != 4 || scale != 0)) {
1519 #ifdef TARGET_X86_64
1520 if (s->aflag == 2) {
1521 gen_op_addq_A0_reg_sN[scale][index]();
1525 gen_op_addl_A0_reg_sN[scale][index]();
1530 if (base == R_EBP || base == R_ESP)
1535 #ifdef TARGET_X86_64
1536 if (s->aflag == 2) {
1537 gen_op_addq_A0_seg(offsetof(CPUX86State,segs[override].base));
1541 gen_op_addl_A0_seg(offsetof(CPUX86State,segs[override].base));
1548 disp = lduw_code(s->pc);
1550 gen_op_movl_A0_im(disp);
1551 rm = 0; /* avoid SS override */
1558 disp = (int8_t)ldub_code(s->pc++);
1562 disp = lduw_code(s->pc);
1568 gen_op_movl_A0_reg[R_EBX]();
1569 gen_op_addl_A0_reg_sN[0][R_ESI]();
1572 gen_op_movl_A0_reg[R_EBX]();
1573 gen_op_addl_A0_reg_sN[0][R_EDI]();
1576 gen_op_movl_A0_reg[R_EBP]();
1577 gen_op_addl_A0_reg_sN[0][R_ESI]();
1580 gen_op_movl_A0_reg[R_EBP]();
1581 gen_op_addl_A0_reg_sN[0][R_EDI]();
1584 gen_op_movl_A0_reg[R_ESI]();
1587 gen_op_movl_A0_reg[R_EDI]();
1590 gen_op_movl_A0_reg[R_EBP]();
1594 gen_op_movl_A0_reg[R_EBX]();
1598 gen_op_addl_A0_im(disp);
1599 gen_op_andl_A0_ffff();
1603 if (rm == 2 || rm == 3 || rm == 6)
1608 gen_op_addl_A0_seg(offsetof(CPUX86State,segs[override].base));
1618 static void gen_nop_modrm(DisasContext *s, int modrm)
1620 int mod, rm, base, code;
1622 mod = (modrm >> 6) & 3;
1632 code = ldub_code(s->pc++);
1668 /* used for LEA and MOV AX, mem */
1669 static void gen_add_A0_ds_seg(DisasContext *s)
1671 int override, must_add_seg;
1672 must_add_seg = s->addseg;
1674 if (s->override >= 0) {
1675 override = s->override;
1681 #ifdef TARGET_X86_64
1683 gen_op_addq_A0_seg(offsetof(CPUX86State,segs[override].base));
1687 gen_op_addl_A0_seg(offsetof(CPUX86State,segs[override].base));
1692 /* generate modrm memory load or store of 'reg'. TMP0 is used if reg !=
1694 static void gen_ldst_modrm(DisasContext *s, int modrm, int ot, int reg, int is_store)
1696 int mod, rm, opreg, disp;
1698 mod = (modrm >> 6) & 3;
1699 rm = (modrm & 7) | REX_B(s);
1703 gen_op_mov_TN_reg[ot][0][reg]();
1704 gen_op_mov_reg_T0[ot][rm]();
1706 gen_op_mov_TN_reg[ot][0][rm]();
1708 gen_op_mov_reg_T0[ot][reg]();
1711 gen_lea_modrm(s, modrm, &opreg, &disp);
1714 gen_op_mov_TN_reg[ot][0][reg]();
1715 gen_op_st_T0_A0[ot + s->mem_index]();
1717 gen_op_ld_T0_A0[ot + s->mem_index]();
1719 gen_op_mov_reg_T0[ot][reg]();
1724 static inline uint32_t insn_get(DisasContext *s, int ot)
1730 ret = ldub_code(s->pc);
1734 ret = lduw_code(s->pc);
1739 ret = ldl_code(s->pc);
1746 static inline int insn_const_size(unsigned int ot)
1754 static inline void gen_goto_tb(DisasContext *s, int tb_num, target_ulong eip)
1756 TranslationBlock *tb;
1759 pc = s->cs_base + eip;
1761 /* NOTE: we handle the case where the TB spans two pages here */
1762 if ((pc & TARGET_PAGE_MASK) == (tb->pc & TARGET_PAGE_MASK) ||
1763 (pc & TARGET_PAGE_MASK) == ((s->pc - 1) & TARGET_PAGE_MASK)) {
1764 /* jump to same page: we can use a direct jump */
1766 gen_op_goto_tb0(TBPARAM(tb));
1768 gen_op_goto_tb1(TBPARAM(tb));
1770 gen_op_movl_T0_im((long)tb + tb_num);
1773 /* jump to another page: currently not optimized */
1779 static inline void gen_jcc(DisasContext *s, int b,
1780 target_ulong val, target_ulong next_eip)
1782 TranslationBlock *tb;
1789 jcc_op = (b >> 1) & 7;
1793 /* we optimize the cmp/jcc case */
1798 func = gen_jcc_sub[s->cc_op - CC_OP_SUBB][jcc_op];
1801 /* some jumps are easy to compute */
1843 func = gen_jcc_sub[(s->cc_op - CC_OP_ADDB) % 4][jcc_op];
1846 func = gen_jcc_sub[(s->cc_op - CC_OP_ADDB) % 4][jcc_op];
1858 if (s->cc_op != CC_OP_DYNAMIC) {
1859 gen_op_set_cc_op(s->cc_op);
1860 s->cc_op = CC_OP_DYNAMIC;
1864 gen_setcc_slow[jcc_op]();
1865 func = gen_op_jnz_T0_label;
1875 l1 = gen_new_label();
1878 gen_goto_tb(s, 0, next_eip);
1881 gen_goto_tb(s, 1, val);
1886 if (s->cc_op != CC_OP_DYNAMIC) {
1887 gen_op_set_cc_op(s->cc_op);
1888 s->cc_op = CC_OP_DYNAMIC;
1890 gen_setcc_slow[jcc_op]();
1896 l1 = gen_new_label();
1897 l2 = gen_new_label();
1898 gen_op_jnz_T0_label(l1);
1899 gen_jmp_im(next_eip);
1900 gen_op_jmp_label(l2);
1908 static void gen_setcc(DisasContext *s, int b)
1914 jcc_op = (b >> 1) & 7;
1916 /* we optimize the cmp/jcc case */
1921 func = gen_setcc_sub[s->cc_op - CC_OP_SUBB][jcc_op];
1926 /* some jumps are easy to compute */
1953 func = gen_setcc_sub[(s->cc_op - CC_OP_ADDB) % 4][jcc_op];
1956 func = gen_setcc_sub[(s->cc_op - CC_OP_ADDB) % 4][jcc_op];
1964 if (s->cc_op != CC_OP_DYNAMIC)
1965 gen_op_set_cc_op(s->cc_op);
1966 func = gen_setcc_slow[jcc_op];
1975 /* move T0 to seg_reg and compute if the CPU state may change. Never
1976 call this function with seg_reg == R_CS */
1977 static void gen_movl_seg_T0(DisasContext *s, int seg_reg, target_ulong cur_eip)
1979 if (s->pe && !s->vm86) {
1980 /* XXX: optimize by finding processor state dynamically */
1981 if (s->cc_op != CC_OP_DYNAMIC)
1982 gen_op_set_cc_op(s->cc_op);
1983 gen_jmp_im(cur_eip);
1984 gen_op_movl_seg_T0(seg_reg);
1985 /* abort translation because the addseg value may change or
1986 because ss32 may change. For R_SS, translation must always
1987 stop as a special handling must be done to disable hardware
1988 interrupts for the next instruction */
1989 if (seg_reg == R_SS || (s->code32 && seg_reg < R_FS))
1992 gen_op_movl_seg_T0_vm(offsetof(CPUX86State,segs[seg_reg]));
1993 if (seg_reg == R_SS)
1998 #ifdef TARGET_X86_64
1999 #define SVM_movq_T1_im(x) gen_op_movq_T1_im64((x) >> 32, x)
2001 #define SVM_movq_T1_im(x) gen_op_movl_T1_im(x)
2005 gen_svm_check_io(DisasContext *s, target_ulong pc_start, uint64_t type)
2007 #if !defined(CONFIG_USER_ONLY)
2008 if(s->flags & (1ULL << INTERCEPT_IOIO_PROT)) {
2009 if (s->cc_op != CC_OP_DYNAMIC)
2010 gen_op_set_cc_op(s->cc_op);
2011 SVM_movq_T1_im(s->pc - s->cs_base);
2012 gen_jmp_im(pc_start - s->cs_base);
2014 gen_op_svm_check_intercept_io((uint32_t)(type >> 32), (uint32_t)type);
2015 s->cc_op = CC_OP_DYNAMIC;
2016 /* FIXME: maybe we could move the io intercept vector to the TB as well
2017 so we know if this is an EOB or not ... let's assume it's not
2024 static inline int svm_is_rep(int prefixes)
2026 return ((prefixes & (PREFIX_REPZ | PREFIX_REPNZ)) ? 8 : 0);
2030 gen_svm_check_intercept_param(DisasContext *s, target_ulong pc_start,
2031 uint64_t type, uint64_t param)
2033 if(!(s->flags & (INTERCEPT_SVM_MASK)))
2034 /* no SVM activated */
2037 /* CRx and DRx reads/writes */
2038 case SVM_EXIT_READ_CR0 ... SVM_EXIT_EXCP_BASE - 1:
2039 if (s->cc_op != CC_OP_DYNAMIC) {
2040 gen_op_set_cc_op(s->cc_op);
2041 s->cc_op = CC_OP_DYNAMIC;
2043 gen_jmp_im(pc_start - s->cs_base);
2044 SVM_movq_T1_im(param);
2046 gen_op_svm_check_intercept_param((uint32_t)(type >> 32), (uint32_t)type);
2047 /* this is a special case as we do not know if the interception occurs
2048 so we assume there was none */
2051 if(s->flags & (1ULL << INTERCEPT_MSR_PROT)) {
2052 if (s->cc_op != CC_OP_DYNAMIC) {
2053 gen_op_set_cc_op(s->cc_op);
2054 s->cc_op = CC_OP_DYNAMIC;
2056 gen_jmp_im(pc_start - s->cs_base);
2057 SVM_movq_T1_im(param);
2059 gen_op_svm_check_intercept_param((uint32_t)(type >> 32), (uint32_t)type);
2060 /* this is a special case as we do not know if the interception occurs
2061 so we assume there was none */
2066 if(s->flags & (1ULL << ((type - SVM_EXIT_INTR) + INTERCEPT_INTR))) {
2067 if (s->cc_op != CC_OP_DYNAMIC) {
2068 gen_op_set_cc_op(s->cc_op);
2069 s->cc_op = CC_OP_EFLAGS;
2071 gen_jmp_im(pc_start - s->cs_base);
2072 SVM_movq_T1_im(param);
2074 gen_op_svm_vmexit(type >> 32, type);
2075 /* we can optimize this one so TBs don't get longer
2076 than up to vmexit */
2085 gen_svm_check_intercept(DisasContext *s, target_ulong pc_start, uint64_t type)
2087 return gen_svm_check_intercept_param(s, pc_start, type, 0);
2090 static inline void gen_stack_update(DisasContext *s, int addend)
2092 #ifdef TARGET_X86_64
2095 gen_op_addq_ESP_8();
2097 gen_op_addq_ESP_im(addend);
2102 gen_op_addl_ESP_2();
2103 else if (addend == 4)
2104 gen_op_addl_ESP_4();
2106 gen_op_addl_ESP_im(addend);
2109 gen_op_addw_ESP_2();
2110 else if (addend == 4)
2111 gen_op_addw_ESP_4();
2113 gen_op_addw_ESP_im(addend);
2117 /* generate a push. It depends on ss32, addseg and dflag */
2118 static void gen_push_T0(DisasContext *s)
2120 #ifdef TARGET_X86_64
2122 gen_op_movq_A0_reg[R_ESP]();
2125 gen_op_st_T0_A0[OT_QUAD + s->mem_index]();
2128 gen_op_st_T0_A0[OT_WORD + s->mem_index]();
2130 gen_op_movq_ESP_A0();
2134 gen_op_movl_A0_reg[R_ESP]();
2141 gen_op_movl_T1_A0();
2142 gen_op_addl_A0_SS();
2145 gen_op_andl_A0_ffff();
2146 gen_op_movl_T1_A0();
2147 gen_op_addl_A0_SS();
2149 gen_op_st_T0_A0[s->dflag + 1 + s->mem_index]();
2150 if (s->ss32 && !s->addseg)
2151 gen_op_movl_ESP_A0();
2153 gen_op_mov_reg_T1[s->ss32 + 1][R_ESP]();
2157 /* generate a push. It depends on ss32, addseg and dflag */
2158 /* slower version for T1, only used for call Ev */
2159 static void gen_push_T1(DisasContext *s)
2161 #ifdef TARGET_X86_64
2163 gen_op_movq_A0_reg[R_ESP]();
2166 gen_op_st_T1_A0[OT_QUAD + s->mem_index]();
2169 gen_op_st_T0_A0[OT_WORD + s->mem_index]();
2171 gen_op_movq_ESP_A0();
2175 gen_op_movl_A0_reg[R_ESP]();
2182 gen_op_addl_A0_SS();
2185 gen_op_andl_A0_ffff();
2186 gen_op_addl_A0_SS();
2188 gen_op_st_T1_A0[s->dflag + 1 + s->mem_index]();
2190 if (s->ss32 && !s->addseg)
2191 gen_op_movl_ESP_A0();
2193 gen_stack_update(s, (-2) << s->dflag);
2197 /* two step pop is necessary for precise exceptions */
2198 static void gen_pop_T0(DisasContext *s)
2200 #ifdef TARGET_X86_64
2202 gen_op_movq_A0_reg[R_ESP]();
2203 gen_op_ld_T0_A0[(s->dflag ? OT_QUAD : OT_WORD) + s->mem_index]();
2207 gen_op_movl_A0_reg[R_ESP]();
2210 gen_op_addl_A0_SS();
2212 gen_op_andl_A0_ffff();
2213 gen_op_addl_A0_SS();
2215 gen_op_ld_T0_A0[s->dflag + 1 + s->mem_index]();
2219 static void gen_pop_update(DisasContext *s)
2221 #ifdef TARGET_X86_64
2222 if (CODE64(s) && s->dflag) {
2223 gen_stack_update(s, 8);
2227 gen_stack_update(s, 2 << s->dflag);
2231 static void gen_stack_A0(DisasContext *s)
2233 gen_op_movl_A0_ESP();
2235 gen_op_andl_A0_ffff();
2236 gen_op_movl_T1_A0();
2238 gen_op_addl_A0_seg(offsetof(CPUX86State,segs[R_SS].base));
2241 /* NOTE: wrap around in 16 bit not fully handled */
2242 static void gen_pusha(DisasContext *s)
2245 gen_op_movl_A0_ESP();
2246 gen_op_addl_A0_im(-16 << s->dflag);
2248 gen_op_andl_A0_ffff();
2249 gen_op_movl_T1_A0();
2251 gen_op_addl_A0_seg(offsetof(CPUX86State,segs[R_SS].base));
2252 for(i = 0;i < 8; i++) {
2253 gen_op_mov_TN_reg[OT_LONG][0][7 - i]();
2254 gen_op_st_T0_A0[OT_WORD + s->dflag + s->mem_index]();
2255 gen_op_addl_A0_im(2 << s->dflag);
2257 gen_op_mov_reg_T1[OT_WORD + s->ss32][R_ESP]();
2260 /* NOTE: wrap around in 16 bit not fully handled */
2261 static void gen_popa(DisasContext *s)
2264 gen_op_movl_A0_ESP();
2266 gen_op_andl_A0_ffff();
2267 gen_op_movl_T1_A0();
2268 gen_op_addl_T1_im(16 << s->dflag);
2270 gen_op_addl_A0_seg(offsetof(CPUX86State,segs[R_SS].base));
2271 for(i = 0;i < 8; i++) {
2272 /* ESP is not reloaded */
2274 gen_op_ld_T0_A0[OT_WORD + s->dflag + s->mem_index]();
2275 gen_op_mov_reg_T0[OT_WORD + s->dflag][7 - i]();
2277 gen_op_addl_A0_im(2 << s->dflag);
2279 gen_op_mov_reg_T1[OT_WORD + s->ss32][R_ESP]();
2282 static void gen_enter(DisasContext *s, int esp_addend, int level)
2287 #ifdef TARGET_X86_64
2289 ot = s->dflag ? OT_QUAD : OT_WORD;
2292 gen_op_movl_A0_ESP();
2293 gen_op_addq_A0_im(-opsize);
2294 gen_op_movl_T1_A0();
2297 gen_op_mov_TN_reg[OT_LONG][0][R_EBP]();
2298 gen_op_st_T0_A0[ot + s->mem_index]();
2300 gen_op_enter64_level(level, (ot == OT_QUAD));
2302 gen_op_mov_reg_T1[ot][R_EBP]();
2303 gen_op_addl_T1_im( -esp_addend + (-opsize * level) );
2304 gen_op_mov_reg_T1[OT_QUAD][R_ESP]();
2308 ot = s->dflag + OT_WORD;
2309 opsize = 2 << s->dflag;
2311 gen_op_movl_A0_ESP();
2312 gen_op_addl_A0_im(-opsize);
2314 gen_op_andl_A0_ffff();
2315 gen_op_movl_T1_A0();
2317 gen_op_addl_A0_seg(offsetof(CPUX86State,segs[R_SS].base));
2319 gen_op_mov_TN_reg[OT_LONG][0][R_EBP]();
2320 gen_op_st_T0_A0[ot + s->mem_index]();
2322 gen_op_enter_level(level, s->dflag);
2324 gen_op_mov_reg_T1[ot][R_EBP]();
2325 gen_op_addl_T1_im( -esp_addend + (-opsize * level) );
2326 gen_op_mov_reg_T1[OT_WORD + s->ss32][R_ESP]();
2330 static void gen_exception(DisasContext *s, int trapno, target_ulong cur_eip)
2332 if (s->cc_op != CC_OP_DYNAMIC)
2333 gen_op_set_cc_op(s->cc_op);
2334 gen_jmp_im(cur_eip);
2335 gen_op_raise_exception(trapno);
2339 /* an interrupt is different from an exception because of the
2341 static void gen_interrupt(DisasContext *s, int intno,
2342 target_ulong cur_eip, target_ulong next_eip)
2344 if (s->cc_op != CC_OP_DYNAMIC)
2345 gen_op_set_cc_op(s->cc_op);
2346 gen_jmp_im(cur_eip);
2347 gen_op_raise_interrupt(intno, (int)(next_eip - cur_eip));
2351 static void gen_debug(DisasContext *s, target_ulong cur_eip)
2353 if (s->cc_op != CC_OP_DYNAMIC)
2354 gen_op_set_cc_op(s->cc_op);
2355 gen_jmp_im(cur_eip);
2360 /* generate a generic end of block. Trace exception is also generated
2362 static void gen_eob(DisasContext *s)
2364 if (s->cc_op != CC_OP_DYNAMIC)
2365 gen_op_set_cc_op(s->cc_op);
2366 if (s->tb->flags & HF_INHIBIT_IRQ_MASK) {
2367 gen_op_reset_inhibit_irq();
2369 if (s->singlestep_enabled) {
2372 gen_op_single_step();
2380 /* generate a jump to eip. No segment change must happen before as a
2381 direct call to the next block may occur */
2382 static void gen_jmp_tb(DisasContext *s, target_ulong eip, int tb_num)
2385 if (s->cc_op != CC_OP_DYNAMIC) {
2386 gen_op_set_cc_op(s->cc_op);
2387 s->cc_op = CC_OP_DYNAMIC;
2389 gen_goto_tb(s, tb_num, eip);
2397 static void gen_jmp(DisasContext *s, target_ulong eip)
2399 gen_jmp_tb(s, eip, 0);
2402 static void gen_movtl_T0_im(target_ulong val)
2404 #ifdef TARGET_X86_64
2405 if ((int32_t)val == val) {
2406 gen_op_movl_T0_im(val);
2408 gen_op_movq_T0_im64(val >> 32, val);
2411 gen_op_movl_T0_im(val);
2415 static void gen_movtl_T1_im(target_ulong val)
2417 #ifdef TARGET_X86_64
2418 if ((int32_t)val == val) {
2419 gen_op_movl_T1_im(val);
2421 gen_op_movq_T1_im64(val >> 32, val);
2424 gen_op_movl_T1_im(val);
2428 static void gen_add_A0_im(DisasContext *s, int val)
2430 #ifdef TARGET_X86_64
2432 gen_op_addq_A0_im(val);
2435 gen_op_addl_A0_im(val);
2438 static GenOpFunc1 *gen_ldq_env_A0[3] = {
2439 gen_op_ldq_raw_env_A0,
2440 #ifndef CONFIG_USER_ONLY
2441 gen_op_ldq_kernel_env_A0,
2442 gen_op_ldq_user_env_A0,
2446 static GenOpFunc1 *gen_stq_env_A0[3] = {
2447 gen_op_stq_raw_env_A0,
2448 #ifndef CONFIG_USER_ONLY
2449 gen_op_stq_kernel_env_A0,
2450 gen_op_stq_user_env_A0,
2454 static GenOpFunc1 *gen_ldo_env_A0[3] = {
2455 gen_op_ldo_raw_env_A0,
2456 #ifndef CONFIG_USER_ONLY
2457 gen_op_ldo_kernel_env_A0,
2458 gen_op_ldo_user_env_A0,
2462 static GenOpFunc1 *gen_sto_env_A0[3] = {
2463 gen_op_sto_raw_env_A0,
2464 #ifndef CONFIG_USER_ONLY
2465 gen_op_sto_kernel_env_A0,
2466 gen_op_sto_user_env_A0,
2470 #define SSE_SPECIAL ((GenOpFunc2 *)1)
2472 #define MMX_OP2(x) { gen_op_ ## x ## _mmx, gen_op_ ## x ## _xmm }
2473 #define SSE_FOP(x) { gen_op_ ## x ## ps, gen_op_ ## x ## pd, \
2474 gen_op_ ## x ## ss, gen_op_ ## x ## sd, }
2476 static GenOpFunc2 *sse_op_table1[256][4] = {
2477 /* pure SSE operations */
2478 [0x10] = { SSE_SPECIAL, SSE_SPECIAL, SSE_SPECIAL, SSE_SPECIAL }, /* movups, movupd, movss, movsd */
2479 [0x11] = { SSE_SPECIAL, SSE_SPECIAL, SSE_SPECIAL, SSE_SPECIAL }, /* movups, movupd, movss, movsd */
2480 [0x12] = { SSE_SPECIAL, SSE_SPECIAL, SSE_SPECIAL, SSE_SPECIAL }, /* movlps, movlpd, movsldup, movddup */
2481 [0x13] = { SSE_SPECIAL, SSE_SPECIAL }, /* movlps, movlpd */
2482 [0x14] = { gen_op_punpckldq_xmm, gen_op_punpcklqdq_xmm },
2483 [0x15] = { gen_op_punpckhdq_xmm, gen_op_punpckhqdq_xmm },
2484 [0x16] = { SSE_SPECIAL, SSE_SPECIAL, SSE_SPECIAL }, /* movhps, movhpd, movshdup */
2485 [0x17] = { SSE_SPECIAL, SSE_SPECIAL }, /* movhps, movhpd */
2487 [0x28] = { SSE_SPECIAL, SSE_SPECIAL }, /* movaps, movapd */
2488 [0x29] = { SSE_SPECIAL, SSE_SPECIAL }, /* movaps, movapd */
2489 [0x2a] = { SSE_SPECIAL, SSE_SPECIAL, SSE_SPECIAL, SSE_SPECIAL }, /* cvtpi2ps, cvtpi2pd, cvtsi2ss, cvtsi2sd */
2490 [0x2b] = { SSE_SPECIAL, SSE_SPECIAL }, /* movntps, movntpd */
2491 [0x2c] = { SSE_SPECIAL, SSE_SPECIAL, SSE_SPECIAL, SSE_SPECIAL }, /* cvttps2pi, cvttpd2pi, cvttsd2si, cvttss2si */
2492 [0x2d] = { SSE_SPECIAL, SSE_SPECIAL, SSE_SPECIAL, SSE_SPECIAL }, /* cvtps2pi, cvtpd2pi, cvtsd2si, cvtss2si */
2493 [0x2e] = { gen_op_ucomiss, gen_op_ucomisd },
2494 [0x2f] = { gen_op_comiss, gen_op_comisd },
2495 [0x50] = { SSE_SPECIAL, SSE_SPECIAL }, /* movmskps, movmskpd */
2496 [0x51] = SSE_FOP(sqrt),
2497 [0x52] = { gen_op_rsqrtps, NULL, gen_op_rsqrtss, NULL },
2498 [0x53] = { gen_op_rcpps, NULL, gen_op_rcpss, NULL },
2499 [0x54] = { gen_op_pand_xmm, gen_op_pand_xmm }, /* andps, andpd */
2500 [0x55] = { gen_op_pandn_xmm, gen_op_pandn_xmm }, /* andnps, andnpd */
2501 [0x56] = { gen_op_por_xmm, gen_op_por_xmm }, /* orps, orpd */
2502 [0x57] = { gen_op_pxor_xmm, gen_op_pxor_xmm }, /* xorps, xorpd */
2503 [0x58] = SSE_FOP(add),
2504 [0x59] = SSE_FOP(mul),
2505 [0x5a] = { gen_op_cvtps2pd, gen_op_cvtpd2ps,
2506 gen_op_cvtss2sd, gen_op_cvtsd2ss },
2507 [0x5b] = { gen_op_cvtdq2ps, gen_op_cvtps2dq, gen_op_cvttps2dq },
2508 [0x5c] = SSE_FOP(sub),
2509 [0x5d] = SSE_FOP(min),
2510 [0x5e] = SSE_FOP(div),
2511 [0x5f] = SSE_FOP(max),
2513 [0xc2] = SSE_FOP(cmpeq),
2514 [0xc6] = { (GenOpFunc2 *)gen_op_shufps, (GenOpFunc2 *)gen_op_shufpd },
2516 /* MMX ops and their SSE extensions */
2517 [0x60] = MMX_OP2(punpcklbw),
2518 [0x61] = MMX_OP2(punpcklwd),
2519 [0x62] = MMX_OP2(punpckldq),
2520 [0x63] = MMX_OP2(packsswb),
2521 [0x64] = MMX_OP2(pcmpgtb),
2522 [0x65] = MMX_OP2(pcmpgtw),
2523 [0x66] = MMX_OP2(pcmpgtl),
2524 [0x67] = MMX_OP2(packuswb),
2525 [0x68] = MMX_OP2(punpckhbw),
2526 [0x69] = MMX_OP2(punpckhwd),
2527 [0x6a] = MMX_OP2(punpckhdq),
2528 [0x6b] = MMX_OP2(packssdw),
2529 [0x6c] = { NULL, gen_op_punpcklqdq_xmm },
2530 [0x6d] = { NULL, gen_op_punpckhqdq_xmm },
2531 [0x6e] = { SSE_SPECIAL, SSE_SPECIAL }, /* movd mm, ea */
2532 [0x6f] = { SSE_SPECIAL, SSE_SPECIAL, SSE_SPECIAL }, /* movq, movdqa, , movqdu */
2533 [0x70] = { (GenOpFunc2 *)gen_op_pshufw_mmx,
2534 (GenOpFunc2 *)gen_op_pshufd_xmm,
2535 (GenOpFunc2 *)gen_op_pshufhw_xmm,
2536 (GenOpFunc2 *)gen_op_pshuflw_xmm },
2537 [0x71] = { SSE_SPECIAL, SSE_SPECIAL }, /* shiftw */
2538 [0x72] = { SSE_SPECIAL, SSE_SPECIAL }, /* shiftd */
2539 [0x73] = { SSE_SPECIAL, SSE_SPECIAL }, /* shiftq */
2540 [0x74] = MMX_OP2(pcmpeqb),
2541 [0x75] = MMX_OP2(pcmpeqw),
2542 [0x76] = MMX_OP2(pcmpeql),
2543 [0x77] = { SSE_SPECIAL }, /* emms */
2544 [0x7c] = { NULL, gen_op_haddpd, NULL, gen_op_haddps },
2545 [0x7d] = { NULL, gen_op_hsubpd, NULL, gen_op_hsubps },
2546 [0x7e] = { SSE_SPECIAL, SSE_SPECIAL, SSE_SPECIAL }, /* movd, movd, , movq */
2547 [0x7f] = { SSE_SPECIAL, SSE_SPECIAL, SSE_SPECIAL }, /* movq, movdqa, movdqu */
2548 [0xc4] = { SSE_SPECIAL, SSE_SPECIAL }, /* pinsrw */
2549 [0xc5] = { SSE_SPECIAL, SSE_SPECIAL }, /* pextrw */
2550 [0xd0] = { NULL, gen_op_addsubpd, NULL, gen_op_addsubps },
2551 [0xd1] = MMX_OP2(psrlw),
2552 [0xd2] = MMX_OP2(psrld),
2553 [0xd3] = MMX_OP2(psrlq),
2554 [0xd4] = MMX_OP2(paddq),
2555 [0xd5] = MMX_OP2(pmullw),
2556 [0xd6] = { NULL, SSE_SPECIAL, SSE_SPECIAL, SSE_SPECIAL },
2557 [0xd7] = { SSE_SPECIAL, SSE_SPECIAL }, /* pmovmskb */
2558 [0xd8] = MMX_OP2(psubusb),
2559 [0xd9] = MMX_OP2(psubusw),
2560 [0xda] = MMX_OP2(pminub),
2561 [0xdb] = MMX_OP2(pand),
2562 [0xdc] = MMX_OP2(paddusb),
2563 [0xdd] = MMX_OP2(paddusw),
2564 [0xde] = MMX_OP2(pmaxub),
2565 [0xdf] = MMX_OP2(pandn),
2566 [0xe0] = MMX_OP2(pavgb),
2567 [0xe1] = MMX_OP2(psraw),
2568 [0xe2] = MMX_OP2(psrad),
2569 [0xe3] = MMX_OP2(pavgw),
2570 [0xe4] = MMX_OP2(pmulhuw),
2571 [0xe5] = MMX_OP2(pmulhw),
2572 [0xe6] = { NULL, gen_op_cvttpd2dq, gen_op_cvtdq2pd, gen_op_cvtpd2dq },
2573 [0xe7] = { SSE_SPECIAL , SSE_SPECIAL }, /* movntq, movntq */
2574 [0xe8] = MMX_OP2(psubsb),
2575 [0xe9] = MMX_OP2(psubsw),
2576 [0xea] = MMX_OP2(pminsw),
2577 [0xeb] = MMX_OP2(por),
2578 [0xec] = MMX_OP2(paddsb),
2579 [0xed] = MMX_OP2(paddsw),
2580 [0xee] = MMX_OP2(pmaxsw),
2581 [0xef] = MMX_OP2(pxor),
2582 [0xf0] = { NULL, NULL, NULL, SSE_SPECIAL }, /* lddqu */
2583 [0xf1] = MMX_OP2(psllw),
2584 [0xf2] = MMX_OP2(pslld),
2585 [0xf3] = MMX_OP2(psllq),
2586 [0xf4] = MMX_OP2(pmuludq),
2587 [0xf5] = MMX_OP2(pmaddwd),
2588 [0xf6] = MMX_OP2(psadbw),
2589 [0xf7] = MMX_OP2(maskmov),
2590 [0xf8] = MMX_OP2(psubb),
2591 [0xf9] = MMX_OP2(psubw),
2592 [0xfa] = MMX_OP2(psubl),
2593 [0xfb] = MMX_OP2(psubq),
2594 [0xfc] = MMX_OP2(paddb),
2595 [0xfd] = MMX_OP2(paddw),
2596 [0xfe] = MMX_OP2(paddl),
2599 static GenOpFunc2 *sse_op_table2[3 * 8][2] = {
2600 [0 + 2] = MMX_OP2(psrlw),
2601 [0 + 4] = MMX_OP2(psraw),
2602 [0 + 6] = MMX_OP2(psllw),
2603 [8 + 2] = MMX_OP2(psrld),
2604 [8 + 4] = MMX_OP2(psrad),
2605 [8 + 6] = MMX_OP2(pslld),
2606 [16 + 2] = MMX_OP2(psrlq),
2607 [16 + 3] = { NULL, gen_op_psrldq_xmm },
2608 [16 + 6] = MMX_OP2(psllq),
2609 [16 + 7] = { NULL, gen_op_pslldq_xmm },
2612 static GenOpFunc1 *sse_op_table3[4 * 3] = {
2615 X86_64_ONLY(gen_op_cvtsq2ss),
2616 X86_64_ONLY(gen_op_cvtsq2sd),
2620 X86_64_ONLY(gen_op_cvttss2sq),
2621 X86_64_ONLY(gen_op_cvttsd2sq),
2625 X86_64_ONLY(gen_op_cvtss2sq),
2626 X86_64_ONLY(gen_op_cvtsd2sq),
2629 static GenOpFunc2 *sse_op_table4[8][4] = {
2640 static void gen_sse(DisasContext *s, int b, target_ulong pc_start, int rex_r)
2642 int b1, op1_offset, op2_offset, is_xmm, val, ot;
2643 int modrm, mod, rm, reg, reg_addr, offset_addr;
2644 GenOpFunc2 *sse_op2;
2645 GenOpFunc3 *sse_op3;
2648 if (s->prefix & PREFIX_DATA)
2650 else if (s->prefix & PREFIX_REPZ)
2652 else if (s->prefix & PREFIX_REPNZ)
2656 sse_op2 = sse_op_table1[b][b1];
2659 if (b <= 0x5f || b == 0xc6 || b == 0xc2) {
2669 /* simple MMX/SSE operation */
2670 if (s->flags & HF_TS_MASK) {
2671 gen_exception(s, EXCP07_PREX, pc_start - s->cs_base);
2674 if (s->flags & HF_EM_MASK) {
2676 gen_exception(s, EXCP06_ILLOP, pc_start - s->cs_base);
2679 if (is_xmm && !(s->flags & HF_OSFXSR_MASK))
2686 /* prepare MMX state (XXX: optimize by storing fptt and fptags in
2687 the static cpu state) */
2692 modrm = ldub_code(s->pc++);
2693 reg = ((modrm >> 3) & 7);
2696 mod = (modrm >> 6) & 3;
2697 if (sse_op2 == SSE_SPECIAL) {
2700 case 0x0e7: /* movntq */
2703 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
2704 gen_stq_env_A0[s->mem_index >> 2](offsetof(CPUX86State,fpregs[reg].mmx));
2706 case 0x1e7: /* movntdq */
2707 case 0x02b: /* movntps */
2708 case 0x12b: /* movntps */
2709 case 0x3f0: /* lddqu */
2712 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
2713 gen_sto_env_A0[s->mem_index >> 2](offsetof(CPUX86State,xmm_regs[reg]));
2715 case 0x6e: /* movd mm, ea */
2716 #ifdef TARGET_X86_64
2717 if (s->dflag == 2) {
2718 gen_ldst_modrm(s, modrm, OT_QUAD, OR_TMP0, 0);
2719 gen_op_movq_mm_T0_mmx(offsetof(CPUX86State,fpregs[reg].mmx));
2723 gen_ldst_modrm(s, modrm, OT_LONG, OR_TMP0, 0);
2724 gen_op_movl_mm_T0_mmx(offsetof(CPUX86State,fpregs[reg].mmx));
2727 case 0x16e: /* movd xmm, ea */
2728 #ifdef TARGET_X86_64
2729 if (s->dflag == 2) {
2730 gen_ldst_modrm(s, modrm, OT_QUAD, OR_TMP0, 0);
2731 gen_op_movq_mm_T0_xmm(offsetof(CPUX86State,xmm_regs[reg]));
2735 gen_ldst_modrm(s, modrm, OT_LONG, OR_TMP0, 0);
2736 gen_op_movl_mm_T0_xmm(offsetof(CPUX86State,xmm_regs[reg]));
2739 case 0x6f: /* movq mm, ea */
2741 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
2742 gen_ldq_env_A0[s->mem_index >> 2](offsetof(CPUX86State,fpregs[reg].mmx));
2745 gen_op_movq(offsetof(CPUX86State,fpregs[reg].mmx),
2746 offsetof(CPUX86State,fpregs[rm].mmx));
2749 case 0x010: /* movups */
2750 case 0x110: /* movupd */
2751 case 0x028: /* movaps */
2752 case 0x128: /* movapd */
2753 case 0x16f: /* movdqa xmm, ea */
2754 case 0x26f: /* movdqu xmm, ea */
2756 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
2757 gen_ldo_env_A0[s->mem_index >> 2](offsetof(CPUX86State,xmm_regs[reg]));
2759 rm = (modrm & 7) | REX_B(s);
2760 gen_op_movo(offsetof(CPUX86State,xmm_regs[reg]),
2761 offsetof(CPUX86State,xmm_regs[rm]));
2764 case 0x210: /* movss xmm, ea */
2766 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
2767 gen_op_ld_T0_A0[OT_LONG + s->mem_index]();
2768 gen_op_movl_env_T0(offsetof(CPUX86State,xmm_regs[reg].XMM_L(0)));
2770 gen_op_movl_env_T0(offsetof(CPUX86State,xmm_regs[reg].XMM_L(1)));
2771 gen_op_movl_env_T0(offsetof(CPUX86State,xmm_regs[reg].XMM_L(2)));
2772 gen_op_movl_env_T0(offsetof(CPUX86State,xmm_regs[reg].XMM_L(3)));
2774 rm = (modrm & 7) | REX_B(s);
2775 gen_op_movl(offsetof(CPUX86State,xmm_regs[reg].XMM_L(0)),
2776 offsetof(CPUX86State,xmm_regs[rm].XMM_L(0)));
2779 case 0x310: /* movsd xmm, ea */
2781 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
2782 gen_ldq_env_A0[s->mem_index >> 2](offsetof(CPUX86State,xmm_regs[reg].XMM_Q(0)));
2784 gen_op_movl_env_T0(offsetof(CPUX86State,xmm_regs[reg].XMM_L(2)));
2785 gen_op_movl_env_T0(offsetof(CPUX86State,xmm_regs[reg].XMM_L(3)));
2787 rm = (modrm & 7) | REX_B(s);
2788 gen_op_movq(offsetof(CPUX86State,xmm_regs[reg].XMM_Q(0)),
2789 offsetof(CPUX86State,xmm_regs[rm].XMM_Q(0)));
2792 case 0x012: /* movlps */
2793 case 0x112: /* movlpd */
2795 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
2796 gen_ldq_env_A0[s->mem_index >> 2](offsetof(CPUX86State,xmm_regs[reg].XMM_Q(0)));
2799 rm = (modrm & 7) | REX_B(s);
2800 gen_op_movq(offsetof(CPUX86State,xmm_regs[reg].XMM_Q(0)),
2801 offsetof(CPUX86State,xmm_regs[rm].XMM_Q(1)));
2804 case 0x212: /* movsldup */
2806 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
2807 gen_ldo_env_A0[s->mem_index >> 2](offsetof(CPUX86State,xmm_regs[reg]));
2809 rm = (modrm & 7) | REX_B(s);
2810 gen_op_movl(offsetof(CPUX86State,xmm_regs[reg].XMM_L(0)),
2811 offsetof(CPUX86State,xmm_regs[rm].XMM_L(0)));
2812 gen_op_movl(offsetof(CPUX86State,xmm_regs[reg].XMM_L(2)),
2813 offsetof(CPUX86State,xmm_regs[rm].XMM_L(2)));
2815 gen_op_movl(offsetof(CPUX86State,xmm_regs[reg].XMM_L(1)),
2816 offsetof(CPUX86State,xmm_regs[reg].XMM_L(0)));
2817 gen_op_movl(offsetof(CPUX86State,xmm_regs[reg].XMM_L(3)),
2818 offsetof(CPUX86State,xmm_regs[reg].XMM_L(2)));
2820 case 0x312: /* movddup */
2822 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
2823 gen_ldq_env_A0[s->mem_index >> 2](offsetof(CPUX86State,xmm_regs[reg].XMM_Q(0)));
2825 rm = (modrm & 7) | REX_B(s);
2826 gen_op_movq(offsetof(CPUX86State,xmm_regs[reg].XMM_Q(0)),
2827 offsetof(CPUX86State,xmm_regs[rm].XMM_Q(0)));
2829 gen_op_movq(offsetof(CPUX86State,xmm_regs[reg].XMM_Q(1)),
2830 offsetof(CPUX86State,xmm_regs[reg].XMM_Q(0)));
2832 case 0x016: /* movhps */
2833 case 0x116: /* movhpd */
2835 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
2836 gen_ldq_env_A0[s->mem_index >> 2](offsetof(CPUX86State,xmm_regs[reg].XMM_Q(1)));
2839 rm = (modrm & 7) | REX_B(s);
2840 gen_op_movq(offsetof(CPUX86State,xmm_regs[reg].XMM_Q(1)),
2841 offsetof(CPUX86State,xmm_regs[rm].XMM_Q(0)));
2844 case 0x216: /* movshdup */
2846 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
2847 gen_ldo_env_A0[s->mem_index >> 2](offsetof(CPUX86State,xmm_regs[reg]));
2849 rm = (modrm & 7) | REX_B(s);
2850 gen_op_movl(offsetof(CPUX86State,xmm_regs[reg].XMM_L(1)),
2851 offsetof(CPUX86State,xmm_regs[rm].XMM_L(1)));
2852 gen_op_movl(offsetof(CPUX86State,xmm_regs[reg].XMM_L(3)),
2853 offsetof(CPUX86State,xmm_regs[rm].XMM_L(3)));
2855 gen_op_movl(offsetof(CPUX86State,xmm_regs[reg].XMM_L(0)),
2856 offsetof(CPUX86State,xmm_regs[reg].XMM_L(1)));
2857 gen_op_movl(offsetof(CPUX86State,xmm_regs[reg].XMM_L(2)),
2858 offsetof(CPUX86State,xmm_regs[reg].XMM_L(3)));
2860 case 0x7e: /* movd ea, mm */
2861 #ifdef TARGET_X86_64
2862 if (s->dflag == 2) {
2863 gen_op_movq_T0_mm_mmx(offsetof(CPUX86State,fpregs[reg].mmx));
2864 gen_ldst_modrm(s, modrm, OT_QUAD, OR_TMP0, 1);
2868 gen_op_movl_T0_mm_mmx(offsetof(CPUX86State,fpregs[reg].mmx));
2869 gen_ldst_modrm(s, modrm, OT_LONG, OR_TMP0, 1);
2872 case 0x17e: /* movd ea, xmm */
2873 #ifdef TARGET_X86_64
2874 if (s->dflag == 2) {
2875 gen_op_movq_T0_mm_xmm(offsetof(CPUX86State,xmm_regs[reg]));
2876 gen_ldst_modrm(s, modrm, OT_QUAD, OR_TMP0, 1);
2880 gen_op_movl_T0_mm_xmm(offsetof(CPUX86State,xmm_regs[reg]));
2881 gen_ldst_modrm(s, modrm, OT_LONG, OR_TMP0, 1);
2884 case 0x27e: /* movq xmm, ea */
2886 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
2887 gen_ldq_env_A0[s->mem_index >> 2](offsetof(CPUX86State,xmm_regs[reg].XMM_Q(0)));
2889 rm = (modrm & 7) | REX_B(s);
2890 gen_op_movq(offsetof(CPUX86State,xmm_regs[reg].XMM_Q(0)),
2891 offsetof(CPUX86State,xmm_regs[rm].XMM_Q(0)));
2893 gen_op_movq_env_0(offsetof(CPUX86State,xmm_regs[reg].XMM_Q(1)));
2895 case 0x7f: /* movq ea, mm */
2897 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
2898 gen_stq_env_A0[s->mem_index >> 2](offsetof(CPUX86State,fpregs[reg].mmx));
2901 gen_op_movq(offsetof(CPUX86State,fpregs[rm].mmx),
2902 offsetof(CPUX86State,fpregs[reg].mmx));
2905 case 0x011: /* movups */
2906 case 0x111: /* movupd */
2907 case 0x029: /* movaps */
2908 case 0x129: /* movapd */
2909 case 0x17f: /* movdqa ea, xmm */
2910 case 0x27f: /* movdqu ea, xmm */
2912 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
2913 gen_sto_env_A0[s->mem_index >> 2](offsetof(CPUX86State,xmm_regs[reg]));
2915 rm = (modrm & 7) | REX_B(s);
2916 gen_op_movo(offsetof(CPUX86State,xmm_regs[rm]),
2917 offsetof(CPUX86State,xmm_regs[reg]));
2920 case 0x211: /* movss ea, xmm */
2922 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
2923 gen_op_movl_T0_env(offsetof(CPUX86State,xmm_regs[reg].XMM_L(0)));
2924 gen_op_st_T0_A0[OT_LONG + s->mem_index]();
2926 rm = (modrm & 7) | REX_B(s);
2927 gen_op_movl(offsetof(CPUX86State,xmm_regs[rm].XMM_L(0)),
2928 offsetof(CPUX86State,xmm_regs[reg].XMM_L(0)));
2931 case 0x311: /* movsd ea, xmm */
2933 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
2934 gen_stq_env_A0[s->mem_index >> 2](offsetof(CPUX86State,xmm_regs[reg].XMM_Q(0)));
2936 rm = (modrm & 7) | REX_B(s);
2937 gen_op_movq(offsetof(CPUX86State,xmm_regs[rm].XMM_Q(0)),
2938 offsetof(CPUX86State,xmm_regs[reg].XMM_Q(0)));
2941 case 0x013: /* movlps */
2942 case 0x113: /* movlpd */
2944 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
2945 gen_stq_env_A0[s->mem_index >> 2](offsetof(CPUX86State,xmm_regs[reg].XMM_Q(0)));
2950 case 0x017: /* movhps */
2951 case 0x117: /* movhpd */
2953 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
2954 gen_stq_env_A0[s->mem_index >> 2](offsetof(CPUX86State,xmm_regs[reg].XMM_Q(1)));
2959 case 0x71: /* shift mm, im */
2962 case 0x171: /* shift xmm, im */
2965 val = ldub_code(s->pc++);
2967 gen_op_movl_T0_im(val);
2968 gen_op_movl_env_T0(offsetof(CPUX86State,xmm_t0.XMM_L(0)));
2970 gen_op_movl_env_T0(offsetof(CPUX86State,xmm_t0.XMM_L(1)));
2971 op1_offset = offsetof(CPUX86State,xmm_t0);
2973 gen_op_movl_T0_im(val);
2974 gen_op_movl_env_T0(offsetof(CPUX86State,mmx_t0.MMX_L(0)));
2976 gen_op_movl_env_T0(offsetof(CPUX86State,mmx_t0.MMX_L(1)));
2977 op1_offset = offsetof(CPUX86State,mmx_t0);
2979 sse_op2 = sse_op_table2[((b - 1) & 3) * 8 + (((modrm >> 3)) & 7)][b1];
2983 rm = (modrm & 7) | REX_B(s);
2984 op2_offset = offsetof(CPUX86State,xmm_regs[rm]);
2987 op2_offset = offsetof(CPUX86State,fpregs[rm].mmx);
2989 sse_op2(op2_offset, op1_offset);
2991 case 0x050: /* movmskps */
2992 rm = (modrm & 7) | REX_B(s);
2993 gen_op_movmskps(offsetof(CPUX86State,xmm_regs[rm]));
2994 gen_op_mov_reg_T0[OT_LONG][reg]();
2996 case 0x150: /* movmskpd */
2997 rm = (modrm & 7) | REX_B(s);
2998 gen_op_movmskpd(offsetof(CPUX86State,xmm_regs[rm]));
2999 gen_op_mov_reg_T0[OT_LONG][reg]();
3001 case 0x02a: /* cvtpi2ps */
3002 case 0x12a: /* cvtpi2pd */
3005 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3006 op2_offset = offsetof(CPUX86State,mmx_t0);
3007 gen_ldq_env_A0[s->mem_index >> 2](op2_offset);
3010 op2_offset = offsetof(CPUX86State,fpregs[rm].mmx);
3012 op1_offset = offsetof(CPUX86State,xmm_regs[reg]);
3015 gen_op_cvtpi2ps(op1_offset, op2_offset);
3019 gen_op_cvtpi2pd(op1_offset, op2_offset);
3023 case 0x22a: /* cvtsi2ss */
3024 case 0x32a: /* cvtsi2sd */
3025 ot = (s->dflag == 2) ? OT_QUAD : OT_LONG;
3026 gen_ldst_modrm(s, modrm, ot, OR_TMP0, 0);
3027 op1_offset = offsetof(CPUX86State,xmm_regs[reg]);
3028 sse_op_table3[(s->dflag == 2) * 2 + ((b >> 8) - 2)](op1_offset);
3030 case 0x02c: /* cvttps2pi */
3031 case 0x12c: /* cvttpd2pi */
3032 case 0x02d: /* cvtps2pi */
3033 case 0x12d: /* cvtpd2pi */
3036 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3037 op2_offset = offsetof(CPUX86State,xmm_t0);
3038 gen_ldo_env_A0[s->mem_index >> 2](op2_offset);
3040 rm = (modrm & 7) | REX_B(s);
3041 op2_offset = offsetof(CPUX86State,xmm_regs[rm]);
3043 op1_offset = offsetof(CPUX86State,fpregs[reg & 7].mmx);
3046 gen_op_cvttps2pi(op1_offset, op2_offset);
3049 gen_op_cvttpd2pi(op1_offset, op2_offset);
3052 gen_op_cvtps2pi(op1_offset, op2_offset);
3055 gen_op_cvtpd2pi(op1_offset, op2_offset);
3059 case 0x22c: /* cvttss2si */
3060 case 0x32c: /* cvttsd2si */
3061 case 0x22d: /* cvtss2si */
3062 case 0x32d: /* cvtsd2si */
3063 ot = (s->dflag == 2) ? OT_QUAD : OT_LONG;
3065 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3067 gen_ldq_env_A0[s->mem_index >> 2](offsetof(CPUX86State,xmm_t0.XMM_Q(0)));
3069 gen_op_ld_T0_A0[OT_LONG + s->mem_index]();
3070 gen_op_movl_env_T0(offsetof(CPUX86State,xmm_t0.XMM_L(0)));
3072 op2_offset = offsetof(CPUX86State,xmm_t0);
3074 rm = (modrm & 7) | REX_B(s);
3075 op2_offset = offsetof(CPUX86State,xmm_regs[rm]);
3077 sse_op_table3[(s->dflag == 2) * 2 + ((b >> 8) - 2) + 4 +
3078 (b & 1) * 4](op2_offset);
3079 gen_op_mov_reg_T0[ot][reg]();
3081 case 0xc4: /* pinsrw */
3084 gen_ldst_modrm(s, modrm, OT_WORD, OR_TMP0, 0);
3085 val = ldub_code(s->pc++);
3088 gen_op_pinsrw_xmm(offsetof(CPUX86State,xmm_regs[reg]), val);
3091 gen_op_pinsrw_mmx(offsetof(CPUX86State,fpregs[reg].mmx), val);
3094 case 0xc5: /* pextrw */
3098 val = ldub_code(s->pc++);
3101 rm = (modrm & 7) | REX_B(s);
3102 gen_op_pextrw_xmm(offsetof(CPUX86State,xmm_regs[rm]), val);
3106 gen_op_pextrw_mmx(offsetof(CPUX86State,fpregs[rm].mmx), val);
3108 reg = ((modrm >> 3) & 7) | rex_r;
3109 gen_op_mov_reg_T0[OT_LONG][reg]();
3111 case 0x1d6: /* movq ea, xmm */
3113 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3114 gen_stq_env_A0[s->mem_index >> 2](offsetof(CPUX86State,xmm_regs[reg].XMM_Q(0)));
3116 rm = (modrm & 7) | REX_B(s);
3117 gen_op_movq(offsetof(CPUX86State,xmm_regs[rm].XMM_Q(0)),
3118 offsetof(CPUX86State,xmm_regs[reg].XMM_Q(0)));
3119 gen_op_movq_env_0(offsetof(CPUX86State,xmm_regs[rm].XMM_Q(1)));
3122 case 0x2d6: /* movq2dq */
3125 gen_op_movq(offsetof(CPUX86State,xmm_regs[reg].XMM_Q(0)),
3126 offsetof(CPUX86State,fpregs[rm].mmx));
3127 gen_op_movq_env_0(offsetof(CPUX86State,xmm_regs[reg].XMM_Q(1)));
3129 case 0x3d6: /* movdq2q */
3131 rm = (modrm & 7) | REX_B(s);
3132 gen_op_movq(offsetof(CPUX86State,fpregs[reg & 7].mmx),
3133 offsetof(CPUX86State,xmm_regs[rm].XMM_Q(0)));
3135 case 0xd7: /* pmovmskb */
3140 rm = (modrm & 7) | REX_B(s);
3141 gen_op_pmovmskb_xmm(offsetof(CPUX86State,xmm_regs[rm]));
3144 gen_op_pmovmskb_mmx(offsetof(CPUX86State,fpregs[rm].mmx));
3146 reg = ((modrm >> 3) & 7) | rex_r;
3147 gen_op_mov_reg_T0[OT_LONG][reg]();
3153 /* generic MMX or SSE operation */
3156 /* maskmov : we must prepare A0 */
3159 #ifdef TARGET_X86_64
3160 if (s->aflag == 2) {
3161 gen_op_movq_A0_reg[R_EDI]();
3165 gen_op_movl_A0_reg[R_EDI]();
3167 gen_op_andl_A0_ffff();
3169 gen_add_A0_ds_seg(s);
3171 case 0x70: /* pshufx insn */
3172 case 0xc6: /* pshufx insn */
3173 case 0xc2: /* compare insns */
3180 op1_offset = offsetof(CPUX86State,xmm_regs[reg]);
3182 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3183 op2_offset = offsetof(CPUX86State,xmm_t0);
3184 if (b1 >= 2 && ((b >= 0x50 && b <= 0x5f && b != 0x5b) ||
3186 /* specific case for SSE single instructions */
3189 gen_op_ld_T0_A0[OT_LONG + s->mem_index]();
3190 gen_op_movl_env_T0(offsetof(CPUX86State,xmm_t0.XMM_L(0)));
3193 gen_ldq_env_A0[s->mem_index >> 2](offsetof(CPUX86State,xmm_t0.XMM_D(0)));
3196 gen_ldo_env_A0[s->mem_index >> 2](op2_offset);
3199 rm = (modrm & 7) | REX_B(s);
3200 op2_offset = offsetof(CPUX86State,xmm_regs[rm]);
3203 op1_offset = offsetof(CPUX86State,fpregs[reg].mmx);
3205 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3206 op2_offset = offsetof(CPUX86State,mmx_t0);
3207 gen_ldq_env_A0[s->mem_index >> 2](op2_offset);
3210 op2_offset = offsetof(CPUX86State,fpregs[rm].mmx);
3214 case 0x70: /* pshufx insn */
3215 case 0xc6: /* pshufx insn */
3216 val = ldub_code(s->pc++);
3217 sse_op3 = (GenOpFunc3 *)sse_op2;
3218 sse_op3(op1_offset, op2_offset, val);
3222 val = ldub_code(s->pc++);
3225 sse_op2 = sse_op_table4[val][b1];
3226 sse_op2(op1_offset, op2_offset);
3229 sse_op2(op1_offset, op2_offset);
3232 if (b == 0x2e || b == 0x2f) {
3233 s->cc_op = CC_OP_EFLAGS;
3239 /* convert one instruction. s->is_jmp is set if the translation must
3240 be stopped. Return the next pc value */
3241 static target_ulong disas_insn(DisasContext *s, target_ulong pc_start)
3243 int b, prefixes, aflag, dflag;
3245 int modrm, reg, rm, mod, reg_addr, op, opreg, offset_addr, val;
3246 target_ulong next_eip, tval;
3256 #ifdef TARGET_X86_64
3261 s->rip_offset = 0; /* for relative ip address */
3263 b = ldub_code(s->pc);
3265 /* check prefixes */
3266 #ifdef TARGET_X86_64
3270 prefixes |= PREFIX_REPZ;
3273 prefixes |= PREFIX_REPNZ;
3276 prefixes |= PREFIX_LOCK;
3297 prefixes |= PREFIX_DATA;
3300 prefixes |= PREFIX_ADR;
3304 rex_w = (b >> 3) & 1;
3305 rex_r = (b & 0x4) << 1;
3306 s->rex_x = (b & 0x2) << 2;
3307 REX_B(s) = (b & 0x1) << 3;
3308 x86_64_hregs = 1; /* select uniform byte register addressing */
3312 /* 0x66 is ignored if rex.w is set */
3315 if (prefixes & PREFIX_DATA)
3318 if (!(prefixes & PREFIX_ADR))
3325 prefixes |= PREFIX_REPZ;
3328 prefixes |= PREFIX_REPNZ;
3331 prefixes |= PREFIX_LOCK;
3352 prefixes |= PREFIX_DATA;
3355 prefixes |= PREFIX_ADR;
3358 if (prefixes & PREFIX_DATA)
3360 if (prefixes & PREFIX_ADR)
3364 s->prefix = prefixes;
3368 /* lock generation */
3369 if (prefixes & PREFIX_LOCK)
3372 /* now check op code */
3376 /**************************/
3377 /* extended op code */
3378 b = ldub_code(s->pc++) | 0x100;
3381 /**************************/
3399 ot = dflag + OT_WORD;
3402 case 0: /* OP Ev, Gv */
3403 modrm = ldub_code(s->pc++);
3404 reg = ((modrm >> 3) & 7) | rex_r;
3405 mod = (modrm >> 6) & 3;
3406 rm = (modrm & 7) | REX_B(s);
3408 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3410 } else if (op == OP_XORL && rm == reg) {
3412 /* xor reg, reg optimisation */
3414 s->cc_op = CC_OP_LOGICB + ot;
3415 gen_op_mov_reg_T0[ot][reg]();
3416 gen_op_update1_cc();
3421 gen_op_mov_TN_reg[ot][1][reg]();
3422 gen_op(s, op, ot, opreg);
3424 case 1: /* OP Gv, Ev */
3425 modrm = ldub_code(s->pc++);
3426 mod = (modrm >> 6) & 3;
3427 reg = ((modrm >> 3) & 7) | rex_r;
3428 rm = (modrm & 7) | REX_B(s);
3430 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3431 gen_op_ld_T1_A0[ot + s->mem_index]();
3432 } else if (op == OP_XORL && rm == reg) {
3435 gen_op_mov_TN_reg[ot][1][rm]();
3437 gen_op(s, op, ot, reg);
3439 case 2: /* OP A, Iv */
3440 val = insn_get(s, ot);
3441 gen_op_movl_T1_im(val);
3442 gen_op(s, op, ot, OR_EAX);
3448 case 0x80: /* GRP1 */
3458 ot = dflag + OT_WORD;
3460 modrm = ldub_code(s->pc++);
3461 mod = (modrm >> 6) & 3;
3462 rm = (modrm & 7) | REX_B(s);
3463 op = (modrm >> 3) & 7;
3469 s->rip_offset = insn_const_size(ot);
3470 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3481 val = insn_get(s, ot);
3484 val = (int8_t)insn_get(s, OT_BYTE);
3487 gen_op_movl_T1_im(val);
3488 gen_op(s, op, ot, opreg);
3492 /**************************/
3493 /* inc, dec, and other misc arith */
3494 case 0x40 ... 0x47: /* inc Gv */
3495 ot = dflag ? OT_LONG : OT_WORD;
3496 gen_inc(s, ot, OR_EAX + (b & 7), 1);
3498 case 0x48 ... 0x4f: /* dec Gv */
3499 ot = dflag ? OT_LONG : OT_WORD;
3500 gen_inc(s, ot, OR_EAX + (b & 7), -1);
3502 case 0xf6: /* GRP3 */
3507 ot = dflag + OT_WORD;
3509 modrm = ldub_code(s->pc++);
3510 mod = (modrm >> 6) & 3;
3511 rm = (modrm & 7) | REX_B(s);
3512 op = (modrm >> 3) & 7;
3515 s->rip_offset = insn_const_size(ot);
3516 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3517 gen_op_ld_T0_A0[ot + s->mem_index]();
3519 gen_op_mov_TN_reg[ot][0][rm]();
3524 val = insn_get(s, ot);
3525 gen_op_movl_T1_im(val);
3526 gen_op_testl_T0_T1_cc();
3527 s->cc_op = CC_OP_LOGICB + ot;
3532 gen_op_st_T0_A0[ot + s->mem_index]();
3534 gen_op_mov_reg_T0[ot][rm]();
3540 gen_op_st_T0_A0[ot + s->mem_index]();
3542 gen_op_mov_reg_T0[ot][rm]();
3544 gen_op_update_neg_cc();
3545 s->cc_op = CC_OP_SUBB + ot;
3550 gen_op_mulb_AL_T0();
3551 s->cc_op = CC_OP_MULB;
3554 gen_op_mulw_AX_T0();
3555 s->cc_op = CC_OP_MULW;
3559 gen_op_mull_EAX_T0();
3560 s->cc_op = CC_OP_MULL;
3562 #ifdef TARGET_X86_64
3564 gen_op_mulq_EAX_T0();
3565 s->cc_op = CC_OP_MULQ;
3573 gen_op_imulb_AL_T0();
3574 s->cc_op = CC_OP_MULB;
3577 gen_op_imulw_AX_T0();
3578 s->cc_op = CC_OP_MULW;
3582 gen_op_imull_EAX_T0();
3583 s->cc_op = CC_OP_MULL;
3585 #ifdef TARGET_X86_64
3587 gen_op_imulq_EAX_T0();
3588 s->cc_op = CC_OP_MULQ;
3596 gen_jmp_im(pc_start - s->cs_base);
3597 gen_op_divb_AL_T0();
3600 gen_jmp_im(pc_start - s->cs_base);
3601 gen_op_divw_AX_T0();
3605 gen_jmp_im(pc_start - s->cs_base);
3606 gen_op_divl_EAX_T0();
3608 #ifdef TARGET_X86_64
3610 gen_jmp_im(pc_start - s->cs_base);
3611 gen_op_divq_EAX_T0();
3619 gen_jmp_im(pc_start - s->cs_base);
3620 gen_op_idivb_AL_T0();
3623 gen_jmp_im(pc_start - s->cs_base);
3624 gen_op_idivw_AX_T0();
3628 gen_jmp_im(pc_start - s->cs_base);
3629 gen_op_idivl_EAX_T0();
3631 #ifdef TARGET_X86_64
3633 gen_jmp_im(pc_start - s->cs_base);
3634 gen_op_idivq_EAX_T0();
3644 case 0xfe: /* GRP4 */
3645 case 0xff: /* GRP5 */
3649 ot = dflag + OT_WORD;
3651 modrm = ldub_code(s->pc++);
3652 mod = (modrm >> 6) & 3;
3653 rm = (modrm & 7) | REX_B(s);
3654 op = (modrm >> 3) & 7;
3655 if (op >= 2 && b == 0xfe) {
3659 if (op == 2 || op == 4) {
3660 /* operand size for jumps is 64 bit */
3662 } else if (op == 3 || op == 5) {
3663 /* for call calls, the operand is 16 or 32 bit, even
3665 ot = dflag ? OT_LONG : OT_WORD;
3666 } else if (op == 6) {
3667 /* default push size is 64 bit */
3668 ot = dflag ? OT_QUAD : OT_WORD;
3672 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3673 if (op >= 2 && op != 3 && op != 5)
3674 gen_op_ld_T0_A0[ot + s->mem_index]();
3676 gen_op_mov_TN_reg[ot][0][rm]();
3680 case 0: /* inc Ev */
3685 gen_inc(s, ot, opreg, 1);
3687 case 1: /* dec Ev */
3692 gen_inc(s, ot, opreg, -1);
3694 case 2: /* call Ev */
3695 /* XXX: optimize if memory (no 'and' is necessary) */
3697 gen_op_andl_T0_ffff();
3698 next_eip = s->pc - s->cs_base;
3699 gen_movtl_T1_im(next_eip);
3704 case 3: /* lcall Ev */
3705 gen_op_ld_T1_A0[ot + s->mem_index]();
3706 gen_add_A0_im(s, 1 << (ot - OT_WORD + 1));
3707 gen_op_ldu_T0_A0[OT_WORD + s->mem_index]();
3709 if (s->pe && !s->vm86) {
3710 if (s->cc_op != CC_OP_DYNAMIC)
3711 gen_op_set_cc_op(s->cc_op);
3712 gen_jmp_im(pc_start - s->cs_base);
3713 gen_op_lcall_protected_T0_T1(dflag, s->pc - pc_start);
3715 gen_op_lcall_real_T0_T1(dflag, s->pc - s->cs_base);
3719 case 4: /* jmp Ev */
3721 gen_op_andl_T0_ffff();
3725 case 5: /* ljmp Ev */
3726 gen_op_ld_T1_A0[ot + s->mem_index]();
3727 gen_add_A0_im(s, 1 << (ot - OT_WORD + 1));
3728 gen_op_ldu_T0_A0[OT_WORD + s->mem_index]();
3730 if (s->pe && !s->vm86) {
3731 if (s->cc_op != CC_OP_DYNAMIC)
3732 gen_op_set_cc_op(s->cc_op);
3733 gen_jmp_im(pc_start - s->cs_base);
3734 gen_op_ljmp_protected_T0_T1(s->pc - pc_start);
3736 gen_op_movl_seg_T0_vm(offsetof(CPUX86State,segs[R_CS]));
3737 gen_op_movl_T0_T1();
3742 case 6: /* push Ev */
3750 case 0x84: /* test Ev, Gv */
3755 ot = dflag + OT_WORD;
3757 modrm = ldub_code(s->pc++);
3758 mod = (modrm >> 6) & 3;
3759 rm = (modrm & 7) | REX_B(s);
3760 reg = ((modrm >> 3) & 7) | rex_r;
3762 gen_ldst_modrm(s, modrm, ot, OR_TMP0, 0);
3763 gen_op_mov_TN_reg[ot][1][reg]();
3764 gen_op_testl_T0_T1_cc();
3765 s->cc_op = CC_OP_LOGICB + ot;
3768 case 0xa8: /* test eAX, Iv */
3773 ot = dflag + OT_WORD;
3774 val = insn_get(s, ot);
3776 gen_op_mov_TN_reg[ot][0][OR_EAX]();
3777 gen_op_movl_T1_im(val);
3778 gen_op_testl_T0_T1_cc();
3779 s->cc_op = CC_OP_LOGICB + ot;
3782 case 0x98: /* CWDE/CBW */
3783 #ifdef TARGET_X86_64
3785 gen_op_movslq_RAX_EAX();
3789 gen_op_movswl_EAX_AX();
3791 gen_op_movsbw_AX_AL();
3793 case 0x99: /* CDQ/CWD */
3794 #ifdef TARGET_X86_64
3796 gen_op_movsqo_RDX_RAX();
3800 gen_op_movslq_EDX_EAX();
3802 gen_op_movswl_DX_AX();
3804 case 0x1af: /* imul Gv, Ev */
3805 case 0x69: /* imul Gv, Ev, I */
3807 ot = dflag + OT_WORD;
3808 modrm = ldub_code(s->pc++);
3809 reg = ((modrm >> 3) & 7) | rex_r;
3811 s->rip_offset = insn_const_size(ot);
3814 gen_ldst_modrm(s, modrm, ot, OR_TMP0, 0);
3816 val = insn_get(s, ot);
3817 gen_op_movl_T1_im(val);
3818 } else if (b == 0x6b) {
3819 val = (int8_t)insn_get(s, OT_BYTE);
3820 gen_op_movl_T1_im(val);
3822 gen_op_mov_TN_reg[ot][1][reg]();
3825 #ifdef TARGET_X86_64
3826 if (ot == OT_QUAD) {
3827 gen_op_imulq_T0_T1();
3830 if (ot == OT_LONG) {
3831 gen_op_imull_T0_T1();
3833 gen_op_imulw_T0_T1();
3835 gen_op_mov_reg_T0[ot][reg]();
3836 s->cc_op = CC_OP_MULB + ot;
3839 case 0x1c1: /* xadd Ev, Gv */
3843 ot = dflag + OT_WORD;
3844 modrm = ldub_code(s->pc++);
3845 reg = ((modrm >> 3) & 7) | rex_r;
3846 mod = (modrm >> 6) & 3;
3848 rm = (modrm & 7) | REX_B(s);
3849 gen_op_mov_TN_reg[ot][0][reg]();
3850 gen_op_mov_TN_reg[ot][1][rm]();
3851 gen_op_addl_T0_T1();
3852 gen_op_mov_reg_T1[ot][reg]();
3853 gen_op_mov_reg_T0[ot][rm]();
3855 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3856 gen_op_mov_TN_reg[ot][0][reg]();
3857 gen_op_ld_T1_A0[ot + s->mem_index]();
3858 gen_op_addl_T0_T1();
3859 gen_op_st_T0_A0[ot + s->mem_index]();
3860 gen_op_mov_reg_T1[ot][reg]();
3862 gen_op_update2_cc();
3863 s->cc_op = CC_OP_ADDB + ot;
3866 case 0x1b1: /* cmpxchg Ev, Gv */
3870 ot = dflag + OT_WORD;
3871 modrm = ldub_code(s->pc++);
3872 reg = ((modrm >> 3) & 7) | rex_r;
3873 mod = (modrm >> 6) & 3;
3874 gen_op_mov_TN_reg[ot][1][reg]();
3876 rm = (modrm & 7) | REX_B(s);
3877 gen_op_mov_TN_reg[ot][0][rm]();
3878 gen_op_cmpxchg_T0_T1_EAX_cc[ot]();
3879 gen_op_mov_reg_T0[ot][rm]();
3881 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3882 gen_op_ld_T0_A0[ot + s->mem_index]();
3883 gen_op_cmpxchg_mem_T0_T1_EAX_cc[ot + s->mem_index]();
3885 s->cc_op = CC_OP_SUBB + ot;
3887 case 0x1c7: /* cmpxchg8b */
3888 modrm = ldub_code(s->pc++);
3889 mod = (modrm >> 6) & 3;
3892 gen_jmp_im(pc_start - s->cs_base);
3893 if (s->cc_op != CC_OP_DYNAMIC)
3894 gen_op_set_cc_op(s->cc_op);
3895 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3897 s->cc_op = CC_OP_EFLAGS;
3900 /**************************/
3902 case 0x50 ... 0x57: /* push */
3903 gen_op_mov_TN_reg[OT_LONG][0][(b & 7) | REX_B(s)]();
3906 case 0x58 ... 0x5f: /* pop */
3908 ot = dflag ? OT_QUAD : OT_WORD;
3910 ot = dflag + OT_WORD;
3913 /* NOTE: order is important for pop %sp */
3915 gen_op_mov_reg_T0[ot][(b & 7) | REX_B(s)]();
3917 case 0x60: /* pusha */
3922 case 0x61: /* popa */
3927 case 0x68: /* push Iv */
3930 ot = dflag ? OT_QUAD : OT_WORD;
3932 ot = dflag + OT_WORD;
3935 val = insn_get(s, ot);
3937 val = (int8_t)insn_get(s, OT_BYTE);
3938 gen_op_movl_T0_im(val);
3941 case 0x8f: /* pop Ev */
3943 ot = dflag ? OT_QUAD : OT_WORD;
3945 ot = dflag + OT_WORD;
3947 modrm = ldub_code(s->pc++);
3948 mod = (modrm >> 6) & 3;
3951 /* NOTE: order is important for pop %sp */
3953 rm = (modrm & 7) | REX_B(s);
3954 gen_op_mov_reg_T0[ot][rm]();
3956 /* NOTE: order is important too for MMU exceptions */
3957 s->popl_esp_hack = 1 << ot;
3958 gen_ldst_modrm(s, modrm, ot, OR_TMP0, 1);
3959 s->popl_esp_hack = 0;
3963 case 0xc8: /* enter */
3966 val = lduw_code(s->pc);
3968 level = ldub_code(s->pc++);
3969 gen_enter(s, val, level);
3972 case 0xc9: /* leave */
3973 /* XXX: exception not precise (ESP is updated before potential exception) */
3975 gen_op_mov_TN_reg[OT_QUAD][0][R_EBP]();
3976 gen_op_mov_reg_T0[OT_QUAD][R_ESP]();
3977 } else if (s->ss32) {
3978 gen_op_mov_TN_reg[OT_LONG][0][R_EBP]();
3979 gen_op_mov_reg_T0[OT_LONG][R_ESP]();
3981 gen_op_mov_TN_reg[OT_WORD][0][R_EBP]();
3982 gen_op_mov_reg_T0[OT_WORD][R_ESP]();
3986 ot = dflag ? OT_QUAD : OT_WORD;
3988 ot = dflag + OT_WORD;
3990 gen_op_mov_reg_T0[ot][R_EBP]();
3993 case 0x06: /* push es */
3994 case 0x0e: /* push cs */
3995 case 0x16: /* push ss */
3996 case 0x1e: /* push ds */
3999 gen_op_movl_T0_seg(b >> 3);
4002 case 0x1a0: /* push fs */
4003 case 0x1a8: /* push gs */
4004 gen_op_movl_T0_seg((b >> 3) & 7);
4007 case 0x07: /* pop es */
4008 case 0x17: /* pop ss */
4009 case 0x1f: /* pop ds */
4014 gen_movl_seg_T0(s, reg, pc_start - s->cs_base);
4017 /* if reg == SS, inhibit interrupts/trace. */
4018 /* If several instructions disable interrupts, only the
4020 if (!(s->tb->flags & HF_INHIBIT_IRQ_MASK))
4021 gen_op_set_inhibit_irq();
4025 gen_jmp_im(s->pc - s->cs_base);
4029 case 0x1a1: /* pop fs */
4030 case 0x1a9: /* pop gs */
4032 gen_movl_seg_T0(s, (b >> 3) & 7, pc_start - s->cs_base);
4035 gen_jmp_im(s->pc - s->cs_base);
4040 /**************************/
4043 case 0x89: /* mov Gv, Ev */
4047 ot = dflag + OT_WORD;
4048 modrm = ldub_code(s->pc++);
4049 reg = ((modrm >> 3) & 7) | rex_r;
4051 /* generate a generic store */
4052 gen_ldst_modrm(s, modrm, ot, reg, 1);
4055 case 0xc7: /* mov Ev, Iv */
4059 ot = dflag + OT_WORD;
4060 modrm = ldub_code(s->pc++);
4061 mod = (modrm >> 6) & 3;
4063 s->rip_offset = insn_const_size(ot);
4064 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
4066 val = insn_get(s, ot);
4067 gen_op_movl_T0_im(val);
4069 gen_op_st_T0_A0[ot + s->mem_index]();
4071 gen_op_mov_reg_T0[ot][(modrm & 7) | REX_B(s)]();
4074 case 0x8b: /* mov Ev, Gv */
4078 ot = OT_WORD + dflag;
4079 modrm = ldub_code(s->pc++);
4080 reg = ((modrm >> 3) & 7) | rex_r;
4082 gen_ldst_modrm(s, modrm, ot, OR_TMP0, 0);
4083 gen_op_mov_reg_T0[ot][reg]();
4085 case 0x8e: /* mov seg, Gv */
4086 modrm = ldub_code(s->pc++);
4087 reg = (modrm >> 3) & 7;
4088 if (reg >= 6 || reg == R_CS)
4090 gen_ldst_modrm(s, modrm, OT_WORD, OR_TMP0, 0);
4091 gen_movl_seg_T0(s, reg, pc_start - s->cs_base);
4093 /* if reg == SS, inhibit interrupts/trace */
4094 /* If several instructions disable interrupts, only the
4096 if (!(s->tb->flags & HF_INHIBIT_IRQ_MASK))
4097 gen_op_set_inhibit_irq();
4101 gen_jmp_im(s->pc - s->cs_base);
4105 case 0x8c: /* mov Gv, seg */
4106 modrm = ldub_code(s->pc++);
4107 reg = (modrm >> 3) & 7;
4108 mod = (modrm >> 6) & 3;
4111 gen_op_movl_T0_seg(reg);
4113 ot = OT_WORD + dflag;
4116 gen_ldst_modrm(s, modrm, ot, OR_TMP0, 1);
4119 case 0x1b6: /* movzbS Gv, Eb */
4120 case 0x1b7: /* movzwS Gv, Eb */
4121 case 0x1be: /* movsbS Gv, Eb */
4122 case 0x1bf: /* movswS Gv, Eb */
4125 /* d_ot is the size of destination */
4126 d_ot = dflag + OT_WORD;
4127 /* ot is the size of source */
4128 ot = (b & 1) + OT_BYTE;
4129 modrm = ldub_code(s->pc++);
4130 reg = ((modrm >> 3) & 7) | rex_r;
4131 mod = (modrm >> 6) & 3;
4132 rm = (modrm & 7) | REX_B(s);
4135 gen_op_mov_TN_reg[ot][0][rm]();
4136 switch(ot | (b & 8)) {
4138 gen_op_movzbl_T0_T0();
4141 gen_op_movsbl_T0_T0();
4144 gen_op_movzwl_T0_T0();
4148 gen_op_movswl_T0_T0();
4151 gen_op_mov_reg_T0[d_ot][reg]();
4153 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
4155 gen_op_lds_T0_A0[ot + s->mem_index]();
4157 gen_op_ldu_T0_A0[ot + s->mem_index]();
4159 gen_op_mov_reg_T0[d_ot][reg]();
4164 case 0x8d: /* lea */
4165 ot = dflag + OT_WORD;
4166 modrm = ldub_code(s->pc++);
4167 mod = (modrm >> 6) & 3;
4170 reg = ((modrm >> 3) & 7) | rex_r;
4171 /* we must ensure that no segment is added */
4175 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
4177 gen_op_mov_reg_A0[ot - OT_WORD][reg]();
4180 case 0xa0: /* mov EAX, Ov */
4182 case 0xa2: /* mov Ov, EAX */
4185 target_ulong offset_addr;
4190 ot = dflag + OT_WORD;
4191 #ifdef TARGET_X86_64
4192 if (s->aflag == 2) {
4193 offset_addr = ldq_code(s->pc);
4195 if (offset_addr == (int32_t)offset_addr)
4196 gen_op_movq_A0_im(offset_addr);
4198 gen_op_movq_A0_im64(offset_addr >> 32, offset_addr);
4203 offset_addr = insn_get(s, OT_LONG);
4205 offset_addr = insn_get(s, OT_WORD);
4207 gen_op_movl_A0_im(offset_addr);
4209 gen_add_A0_ds_seg(s);
4211 gen_op_ld_T0_A0[ot + s->mem_index]();
4212 gen_op_mov_reg_T0[ot][R_EAX]();
4214 gen_op_mov_TN_reg[ot][0][R_EAX]();
4215 gen_op_st_T0_A0[ot + s->mem_index]();
4219 case 0xd7: /* xlat */
4220 #ifdef TARGET_X86_64
4221 if (s->aflag == 2) {
4222 gen_op_movq_A0_reg[R_EBX]();
4223 gen_op_addq_A0_AL();
4227 gen_op_movl_A0_reg[R_EBX]();
4228 gen_op_addl_A0_AL();
4230 gen_op_andl_A0_ffff();
4232 gen_add_A0_ds_seg(s);
4233 gen_op_ldu_T0_A0[OT_BYTE + s->mem_index]();
4234 gen_op_mov_reg_T0[OT_BYTE][R_EAX]();
4236 case 0xb0 ... 0xb7: /* mov R, Ib */
4237 val = insn_get(s, OT_BYTE);
4238 gen_op_movl_T0_im(val);
4239 gen_op_mov_reg_T0[OT_BYTE][(b & 7) | REX_B(s)]();
4241 case 0xb8 ... 0xbf: /* mov R, Iv */
4242 #ifdef TARGET_X86_64
4246 tmp = ldq_code(s->pc);
4248 reg = (b & 7) | REX_B(s);
4249 gen_movtl_T0_im(tmp);
4250 gen_op_mov_reg_T0[OT_QUAD][reg]();
4254 ot = dflag ? OT_LONG : OT_WORD;
4255 val = insn_get(s, ot);
4256 reg = (b & 7) | REX_B(s);
4257 gen_op_movl_T0_im(val);
4258 gen_op_mov_reg_T0[ot][reg]();
4262 case 0x91 ... 0x97: /* xchg R, EAX */
4263 ot = dflag + OT_WORD;
4264 reg = (b & 7) | REX_B(s);
4268 case 0x87: /* xchg Ev, Gv */
4272 ot = dflag + OT_WORD;
4273 modrm = ldub_code(s->pc++);
4274 reg = ((modrm >> 3) & 7) | rex_r;
4275 mod = (modrm >> 6) & 3;
4277 rm = (modrm & 7) | REX_B(s);
4279 gen_op_mov_TN_reg[ot][0][reg]();
4280 gen_op_mov_TN_reg[ot][1][rm]();
4281 gen_op_mov_reg_T0[ot][rm]();
4282 gen_op_mov_reg_T1[ot][reg]();
4284 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
4285 gen_op_mov_TN_reg[ot][0][reg]();
4286 /* for xchg, lock is implicit */
4287 if (!(prefixes & PREFIX_LOCK))
4289 gen_op_ld_T1_A0[ot + s->mem_index]();
4290 gen_op_st_T0_A0[ot + s->mem_index]();
4291 if (!(prefixes & PREFIX_LOCK))
4293 gen_op_mov_reg_T1[ot][reg]();
4296 case 0xc4: /* les Gv */
4301 case 0xc5: /* lds Gv */
4306 case 0x1b2: /* lss Gv */
4309 case 0x1b4: /* lfs Gv */
4312 case 0x1b5: /* lgs Gv */
4315 ot = dflag ? OT_LONG : OT_WORD;
4316 modrm = ldub_code(s->pc++);
4317 reg = ((modrm >> 3) & 7) | rex_r;
4318 mod = (modrm >> 6) & 3;
4321 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
4322 gen_op_ld_T1_A0[ot + s->mem_index]();
4323 gen_add_A0_im(s, 1 << (ot - OT_WORD + 1));
4324 /* load the segment first to handle exceptions properly */
4325 gen_op_ldu_T0_A0[OT_WORD + s->mem_index]();
4326 gen_movl_seg_T0(s, op, pc_start - s->cs_base);
4327 /* then put the data */
4328 gen_op_mov_reg_T1[ot][reg]();
4330 gen_jmp_im(s->pc - s->cs_base);
4335 /************************/
4346 ot = dflag + OT_WORD;
4348 modrm = ldub_code(s->pc++);
4349 mod = (modrm >> 6) & 3;
4350 op = (modrm >> 3) & 7;
4356 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
4359 opreg = (modrm & 7) | REX_B(s);
4364 gen_shift(s, op, ot, opreg, OR_ECX);
4367 shift = ldub_code(s->pc++);
4369 gen_shifti(s, op, ot, opreg, shift);
4384 case 0x1a4: /* shld imm */
4388 case 0x1a5: /* shld cl */
4392 case 0x1ac: /* shrd imm */
4396 case 0x1ad: /* shrd cl */
4400 ot = dflag + OT_WORD;
4401 modrm = ldub_code(s->pc++);
4402 mod = (modrm >> 6) & 3;
4403 rm = (modrm & 7) | REX_B(s);
4404 reg = ((modrm >> 3) & 7) | rex_r;
4407 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
4408 gen_op_ld_T0_A0[ot + s->mem_index]();
4410 gen_op_mov_TN_reg[ot][0][rm]();
4412 gen_op_mov_TN_reg[ot][1][reg]();
4415 val = ldub_code(s->pc++);
4422 gen_op_shiftd_T0_T1_im_cc[ot][op](val);
4424 gen_op_shiftd_mem_T0_T1_im_cc[ot + s->mem_index][op](val);
4425 if (op == 0 && ot != OT_WORD)
4426 s->cc_op = CC_OP_SHLB + ot;
4428 s->cc_op = CC_OP_SARB + ot;
4431 if (s->cc_op != CC_OP_DYNAMIC)
4432 gen_op_set_cc_op(s->cc_op);
4434 gen_op_shiftd_T0_T1_ECX_cc[ot][op]();
4436 gen_op_shiftd_mem_T0_T1_ECX_cc[ot + s->mem_index][op]();
4437 s->cc_op = CC_OP_DYNAMIC; /* cannot predict flags after */
4440 gen_op_mov_reg_T0[ot][rm]();
4444 /************************/
4447 if (s->flags & (HF_EM_MASK | HF_TS_MASK)) {
4448 /* if CR0.EM or CR0.TS are set, generate an FPU exception */
4449 /* XXX: what to do if illegal op ? */
4450 gen_exception(s, EXCP07_PREX, pc_start - s->cs_base);
4453 modrm = ldub_code(s->pc++);
4454 mod = (modrm >> 6) & 3;
4456 op = ((b & 7) << 3) | ((modrm >> 3) & 7);
4459 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
4461 case 0x00 ... 0x07: /* fxxxs */
4462 case 0x10 ... 0x17: /* fixxxl */
4463 case 0x20 ... 0x27: /* fxxxl */
4464 case 0x30 ... 0x37: /* fixxx */
4471 gen_op_flds_FT0_A0();
4474 gen_op_fildl_FT0_A0();
4477 gen_op_fldl_FT0_A0();
4481 gen_op_fild_FT0_A0();
4485 gen_op_fp_arith_ST0_FT0[op1]();
4487 /* fcomp needs pop */
4492 case 0x08: /* flds */
4493 case 0x0a: /* fsts */
4494 case 0x0b: /* fstps */
4495 case 0x18 ... 0x1b: /* fildl, fisttpl, fistl, fistpl */
4496 case 0x28 ... 0x2b: /* fldl, fisttpll, fstl, fstpl */
4497 case 0x38 ... 0x3b: /* filds, fisttps, fists, fistps */
4502 gen_op_flds_ST0_A0();
4505 gen_op_fildl_ST0_A0();
4508 gen_op_fldl_ST0_A0();
4512 gen_op_fild_ST0_A0();
4519 gen_op_fisttl_ST0_A0();
4522 gen_op_fisttll_ST0_A0();
4526 gen_op_fistt_ST0_A0();
4533 gen_op_fsts_ST0_A0();
4536 gen_op_fistl_ST0_A0();
4539 gen_op_fstl_ST0_A0();
4543 gen_op_fist_ST0_A0();
4551 case 0x0c: /* fldenv mem */
4552 gen_op_fldenv_A0(s->dflag);
4554 case 0x0d: /* fldcw mem */
4557 case 0x0e: /* fnstenv mem */
4558 gen_op_fnstenv_A0(s->dflag);
4560 case 0x0f: /* fnstcw mem */
4563 case 0x1d: /* fldt mem */
4564 gen_op_fldt_ST0_A0();
4566 case 0x1f: /* fstpt mem */
4567 gen_op_fstt_ST0_A0();
4570 case 0x2c: /* frstor mem */
4571 gen_op_frstor_A0(s->dflag);
4573 case 0x2e: /* fnsave mem */
4574 gen_op_fnsave_A0(s->dflag);
4576 case 0x2f: /* fnstsw mem */
4579 case 0x3c: /* fbld */
4580 gen_op_fbld_ST0_A0();
4582 case 0x3e: /* fbstp */
4583 gen_op_fbst_ST0_A0();
4586 case 0x3d: /* fildll */
4587 gen_op_fildll_ST0_A0();
4589 case 0x3f: /* fistpll */
4590 gen_op_fistll_ST0_A0();
4597 /* register float ops */
4601 case 0x08: /* fld sti */
4603 gen_op_fmov_ST0_STN((opreg + 1) & 7);
4605 case 0x09: /* fxchg sti */
4606 case 0x29: /* fxchg4 sti, undocumented op */
4607 case 0x39: /* fxchg7 sti, undocumented op */
4608 gen_op_fxchg_ST0_STN(opreg);
4610 case 0x0a: /* grp d9/2 */
4613 /* check exceptions (FreeBSD FPU probe) */
4614 if (s->cc_op != CC_OP_DYNAMIC)
4615 gen_op_set_cc_op(s->cc_op);
4616 gen_jmp_im(pc_start - s->cs_base);
4623 case 0x0c: /* grp d9/4 */
4633 gen_op_fcom_ST0_FT0();
4642 case 0x0d: /* grp d9/5 */
4651 gen_op_fldl2t_ST0();
4655 gen_op_fldl2e_ST0();
4663 gen_op_fldlg2_ST0();
4667 gen_op_fldln2_ST0();
4678 case 0x0e: /* grp d9/6 */
4689 case 3: /* fpatan */
4692 case 4: /* fxtract */
4695 case 5: /* fprem1 */
4698 case 6: /* fdecstp */
4702 case 7: /* fincstp */
4707 case 0x0f: /* grp d9/7 */
4712 case 1: /* fyl2xp1 */
4718 case 3: /* fsincos */
4721 case 5: /* fscale */
4724 case 4: /* frndint */
4736 case 0x00: case 0x01: case 0x04 ... 0x07: /* fxxx st, sti */
4737 case 0x20: case 0x21: case 0x24 ... 0x27: /* fxxx sti, st */
4738 case 0x30: case 0x31: case 0x34 ... 0x37: /* fxxxp sti, st */
4744 gen_op_fp_arith_STN_ST0[op1](opreg);
4748 gen_op_fmov_FT0_STN(opreg);
4749 gen_op_fp_arith_ST0_FT0[op1]();
4753 case 0x02: /* fcom */
4754 case 0x22: /* fcom2, undocumented op */
4755 gen_op_fmov_FT0_STN(opreg);
4756 gen_op_fcom_ST0_FT0();
4758 case 0x03: /* fcomp */
4759 case 0x23: /* fcomp3, undocumented op */
4760 case 0x32: /* fcomp5, undocumented op */
4761 gen_op_fmov_FT0_STN(opreg);
4762 gen_op_fcom_ST0_FT0();
4765 case 0x15: /* da/5 */
4767 case 1: /* fucompp */
4768 gen_op_fmov_FT0_STN(1);
4769 gen_op_fucom_ST0_FT0();
4779 case 0: /* feni (287 only, just do nop here) */
4781 case 1: /* fdisi (287 only, just do nop here) */
4786 case 3: /* fninit */
4789 case 4: /* fsetpm (287 only, just do nop here) */
4795 case 0x1d: /* fucomi */
4796 if (s->cc_op != CC_OP_DYNAMIC)
4797 gen_op_set_cc_op(s->cc_op);
4798 gen_op_fmov_FT0_STN(opreg);
4799 gen_op_fucomi_ST0_FT0();
4800 s->cc_op = CC_OP_EFLAGS;
4802 case 0x1e: /* fcomi */
4803 if (s->cc_op != CC_OP_DYNAMIC)
4804 gen_op_set_cc_op(s->cc_op);
4805 gen_op_fmov_FT0_STN(opreg);
4806 gen_op_fcomi_ST0_FT0();
4807 s->cc_op = CC_OP_EFLAGS;
4809 case 0x28: /* ffree sti */
4810 gen_op_ffree_STN(opreg);
4812 case 0x2a: /* fst sti */
4813 gen_op_fmov_STN_ST0(opreg);
4815 case 0x2b: /* fstp sti */
4816 case 0x0b: /* fstp1 sti, undocumented op */
4817 case 0x3a: /* fstp8 sti, undocumented op */
4818 case 0x3b: /* fstp9 sti, undocumented op */
4819 gen_op_fmov_STN_ST0(opreg);
4822 case 0x2c: /* fucom st(i) */
4823 gen_op_fmov_FT0_STN(opreg);
4824 gen_op_fucom_ST0_FT0();
4826 case 0x2d: /* fucomp st(i) */
4827 gen_op_fmov_FT0_STN(opreg);
4828 gen_op_fucom_ST0_FT0();
4831 case 0x33: /* de/3 */
4833 case 1: /* fcompp */
4834 gen_op_fmov_FT0_STN(1);
4835 gen_op_fcom_ST0_FT0();
4843 case 0x38: /* ffreep sti, undocumented op */
4844 gen_op_ffree_STN(opreg);
4847 case 0x3c: /* df/4 */
4850 gen_op_fnstsw_EAX();
4856 case 0x3d: /* fucomip */
4857 if (s->cc_op != CC_OP_DYNAMIC)
4858 gen_op_set_cc_op(s->cc_op);
4859 gen_op_fmov_FT0_STN(opreg);
4860 gen_op_fucomi_ST0_FT0();
4862 s->cc_op = CC_OP_EFLAGS;
4864 case 0x3e: /* fcomip */
4865 if (s->cc_op != CC_OP_DYNAMIC)
4866 gen_op_set_cc_op(s->cc_op);
4867 gen_op_fmov_FT0_STN(opreg);
4868 gen_op_fcomi_ST0_FT0();
4870 s->cc_op = CC_OP_EFLAGS;
4872 case 0x10 ... 0x13: /* fcmovxx */
4876 const static uint8_t fcmov_cc[8] = {
4882 op1 = fcmov_cc[op & 3] | ((op >> 3) & 1);
4884 gen_op_fcmov_ST0_STN_T0(opreg);
4891 #ifdef USE_CODE_COPY
4892 s->tb->cflags |= CF_TB_FP_USED;
4895 /************************/
4898 case 0xa4: /* movsS */
4903 ot = dflag + OT_WORD;
4905 if (prefixes & (PREFIX_REPZ | PREFIX_REPNZ)) {
4906 gen_repz_movs(s, ot, pc_start - s->cs_base, s->pc - s->cs_base);
4912 case 0xaa: /* stosS */
4917 ot = dflag + OT_WORD;
4919 if (prefixes & (PREFIX_REPZ | PREFIX_REPNZ)) {
4920 gen_repz_stos(s, ot, pc_start - s->cs_base, s->pc - s->cs_base);
4925 case 0xac: /* lodsS */
4930 ot = dflag + OT_WORD;
4931 if (prefixes & (PREFIX_REPZ | PREFIX_REPNZ)) {
4932 gen_repz_lods(s, ot, pc_start - s->cs_base, s->pc - s->cs_base);
4937 case 0xae: /* scasS */
4942 ot = dflag + OT_WORD;
4943 if (prefixes & PREFIX_REPNZ) {
4944 gen_repz_scas(s, ot, pc_start - s->cs_base, s->pc - s->cs_base, 1);
4945 } else if (prefixes & PREFIX_REPZ) {
4946 gen_repz_scas(s, ot, pc_start - s->cs_base, s->pc - s->cs_base, 0);
4949 s->cc_op = CC_OP_SUBB + ot;
4953 case 0xa6: /* cmpsS */
4958 ot = dflag + OT_WORD;
4959 if (prefixes & PREFIX_REPNZ) {
4960 gen_repz_cmps(s, ot, pc_start - s->cs_base, s->pc - s->cs_base, 1);
4961 } else if (prefixes & PREFIX_REPZ) {
4962 gen_repz_cmps(s, ot, pc_start - s->cs_base, s->pc - s->cs_base, 0);
4965 s->cc_op = CC_OP_SUBB + ot;
4968 case 0x6c: /* insS */
4973 ot = dflag ? OT_LONG : OT_WORD;
4974 gen_check_io(s, ot, 1, pc_start - s->cs_base);
4975 gen_op_mov_TN_reg[OT_WORD][0][R_EDX]();
4976 gen_op_andl_T0_ffff();
4977 if (gen_svm_check_io(s, pc_start,
4978 SVM_IOIO_TYPE_MASK | (1 << (4+ot)) |
4979 svm_is_rep(prefixes) | 4 | (1 << (7+s->aflag))))
4981 if (prefixes & (PREFIX_REPZ | PREFIX_REPNZ)) {
4982 gen_repz_ins(s, ot, pc_start - s->cs_base, s->pc - s->cs_base);
4987 case 0x6e: /* outsS */
4992 ot = dflag ? OT_LONG : OT_WORD;
4993 gen_check_io(s, ot, 1, pc_start - s->cs_base);
4994 gen_op_mov_TN_reg[OT_WORD][0][R_EDX]();
4995 gen_op_andl_T0_ffff();
4996 if (gen_svm_check_io(s, pc_start,
4997 (1 << (4+ot)) | svm_is_rep(prefixes) |
4998 4 | (1 << (7+s->aflag))))
5000 if (prefixes & (PREFIX_REPZ | PREFIX_REPNZ)) {
5001 gen_repz_outs(s, ot, pc_start - s->cs_base, s->pc - s->cs_base);
5007 /************************/
5015 ot = dflag ? OT_LONG : OT_WORD;
5016 val = ldub_code(s->pc++);
5017 gen_op_movl_T0_im(val);
5018 gen_check_io(s, ot, 0, pc_start - s->cs_base);
5019 if (gen_svm_check_io(s, pc_start,
5020 SVM_IOIO_TYPE_MASK | svm_is_rep(prefixes) |
5024 gen_op_mov_reg_T1[ot][R_EAX]();
5031 ot = dflag ? OT_LONG : OT_WORD;
5032 val = ldub_code(s->pc++);
5033 gen_op_movl_T0_im(val);
5034 gen_check_io(s, ot, 0, pc_start - s->cs_base);
5035 if (gen_svm_check_io(s, pc_start, svm_is_rep(prefixes) |
5038 gen_op_mov_TN_reg[ot][1][R_EAX]();
5046 ot = dflag ? OT_LONG : OT_WORD;
5047 gen_op_mov_TN_reg[OT_WORD][0][R_EDX]();
5048 gen_op_andl_T0_ffff();
5049 gen_check_io(s, ot, 0, pc_start - s->cs_base);
5050 if (gen_svm_check_io(s, pc_start,
5051 SVM_IOIO_TYPE_MASK | svm_is_rep(prefixes) |
5055 gen_op_mov_reg_T1[ot][R_EAX]();
5062 ot = dflag ? OT_LONG : OT_WORD;
5063 gen_op_mov_TN_reg[OT_WORD][0][R_EDX]();
5064 gen_op_andl_T0_ffff();
5065 gen_check_io(s, ot, 0, pc_start - s->cs_base);
5066 if (gen_svm_check_io(s, pc_start,
5067 svm_is_rep(prefixes) | (1 << (4+ot))))
5069 gen_op_mov_TN_reg[ot][1][R_EAX]();
5073 /************************/
5075 case 0xc2: /* ret im */
5076 val = ldsw_code(s->pc);
5079 if (CODE64(s) && s->dflag)
5081 gen_stack_update(s, val + (2 << s->dflag));
5083 gen_op_andl_T0_ffff();
5087 case 0xc3: /* ret */
5091 gen_op_andl_T0_ffff();
5095 case 0xca: /* lret im */
5096 val = ldsw_code(s->pc);
5099 if (s->pe && !s->vm86) {
5100 if (s->cc_op != CC_OP_DYNAMIC)
5101 gen_op_set_cc_op(s->cc_op);
5102 gen_jmp_im(pc_start - s->cs_base);
5103 gen_op_lret_protected(s->dflag, val);
5107 gen_op_ld_T0_A0[1 + s->dflag + s->mem_index]();
5109 gen_op_andl_T0_ffff();
5110 /* NOTE: keeping EIP updated is not a problem in case of
5114 gen_op_addl_A0_im(2 << s->dflag);
5115 gen_op_ld_T0_A0[1 + s->dflag + s->mem_index]();
5116 gen_op_movl_seg_T0_vm(offsetof(CPUX86State,segs[R_CS]));
5117 /* add stack offset */
5118 gen_stack_update(s, val + (4 << s->dflag));
5122 case 0xcb: /* lret */
5125 case 0xcf: /* iret */
5126 if (gen_svm_check_intercept(s, pc_start, SVM_EXIT_IRET))
5130 gen_op_iret_real(s->dflag);
5131 s->cc_op = CC_OP_EFLAGS;
5132 } else if (s->vm86) {
5134 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
5136 gen_op_iret_real(s->dflag);
5137 s->cc_op = CC_OP_EFLAGS;
5140 if (s->cc_op != CC_OP_DYNAMIC)
5141 gen_op_set_cc_op(s->cc_op);
5142 gen_jmp_im(pc_start - s->cs_base);
5143 gen_op_iret_protected(s->dflag, s->pc - s->cs_base);
5144 s->cc_op = CC_OP_EFLAGS;
5148 case 0xe8: /* call im */
5151 tval = (int32_t)insn_get(s, OT_LONG);
5153 tval = (int16_t)insn_get(s, OT_WORD);
5154 next_eip = s->pc - s->cs_base;
5158 gen_movtl_T0_im(next_eip);
5163 case 0x9a: /* lcall im */
5165 unsigned int selector, offset;
5169 ot = dflag ? OT_LONG : OT_WORD;
5170 offset = insn_get(s, ot);
5171 selector = insn_get(s, OT_WORD);
5173 gen_op_movl_T0_im(selector);
5174 gen_op_movl_T1_imu(offset);
5177 case 0xe9: /* jmp im */
5179 tval = (int32_t)insn_get(s, OT_LONG);
5181 tval = (int16_t)insn_get(s, OT_WORD);
5182 tval += s->pc - s->cs_base;
5187 case 0xea: /* ljmp im */
5189 unsigned int selector, offset;
5193 ot = dflag ? OT_LONG : OT_WORD;
5194 offset = insn_get(s, ot);
5195 selector = insn_get(s, OT_WORD);
5197 gen_op_movl_T0_im(selector);
5198 gen_op_movl_T1_imu(offset);
5201 case 0xeb: /* jmp Jb */
5202 tval = (int8_t)insn_get(s, OT_BYTE);
5203 tval += s->pc - s->cs_base;
5208 case 0x70 ... 0x7f: /* jcc Jb */
5209 tval = (int8_t)insn_get(s, OT_BYTE);
5211 case 0x180 ... 0x18f: /* jcc Jv */
5213 tval = (int32_t)insn_get(s, OT_LONG);
5215 tval = (int16_t)insn_get(s, OT_WORD);
5218 next_eip = s->pc - s->cs_base;
5222 gen_jcc(s, b, tval, next_eip);
5225 case 0x190 ... 0x19f: /* setcc Gv */
5226 modrm = ldub_code(s->pc++);
5228 gen_ldst_modrm(s, modrm, OT_BYTE, OR_TMP0, 1);
5230 case 0x140 ... 0x14f: /* cmov Gv, Ev */
5231 ot = dflag + OT_WORD;
5232 modrm = ldub_code(s->pc++);
5233 reg = ((modrm >> 3) & 7) | rex_r;
5234 mod = (modrm >> 6) & 3;
5237 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
5238 gen_op_ld_T1_A0[ot + s->mem_index]();
5240 rm = (modrm & 7) | REX_B(s);
5241 gen_op_mov_TN_reg[ot][1][rm]();
5243 gen_op_cmov_reg_T1_T0[ot - OT_WORD][reg]();
5246 /************************/
5248 case 0x9c: /* pushf */
5249 if (gen_svm_check_intercept(s, pc_start, SVM_EXIT_PUSHF))
5251 if (s->vm86 && s->iopl != 3) {
5252 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
5254 if (s->cc_op != CC_OP_DYNAMIC)
5255 gen_op_set_cc_op(s->cc_op);
5256 gen_op_movl_T0_eflags();
5260 case 0x9d: /* popf */
5261 if (gen_svm_check_intercept(s, pc_start, SVM_EXIT_POPF))
5263 if (s->vm86 && s->iopl != 3) {
5264 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
5269 gen_op_movl_eflags_T0_cpl0();
5271 gen_op_movw_eflags_T0_cpl0();
5274 if (s->cpl <= s->iopl) {
5276 gen_op_movl_eflags_T0_io();
5278 gen_op_movw_eflags_T0_io();
5282 gen_op_movl_eflags_T0();
5284 gen_op_movw_eflags_T0();
5289 s->cc_op = CC_OP_EFLAGS;
5290 /* abort translation because TF flag may change */
5291 gen_jmp_im(s->pc - s->cs_base);
5295 case 0x9e: /* sahf */
5298 gen_op_mov_TN_reg[OT_BYTE][0][R_AH]();
5299 if (s->cc_op != CC_OP_DYNAMIC)
5300 gen_op_set_cc_op(s->cc_op);
5301 gen_op_movb_eflags_T0();
5302 s->cc_op = CC_OP_EFLAGS;
5304 case 0x9f: /* lahf */
5307 if (s->cc_op != CC_OP_DYNAMIC)
5308 gen_op_set_cc_op(s->cc_op);
5309 gen_op_movl_T0_eflags();
5310 gen_op_mov_reg_T0[OT_BYTE][R_AH]();
5312 case 0xf5: /* cmc */
5313 if (s->cc_op != CC_OP_DYNAMIC)
5314 gen_op_set_cc_op(s->cc_op);
5316 s->cc_op = CC_OP_EFLAGS;
5318 case 0xf8: /* clc */
5319 if (s->cc_op != CC_OP_DYNAMIC)
5320 gen_op_set_cc_op(s->cc_op);
5322 s->cc_op = CC_OP_EFLAGS;
5324 case 0xf9: /* stc */
5325 if (s->cc_op != CC_OP_DYNAMIC)
5326 gen_op_set_cc_op(s->cc_op);
5328 s->cc_op = CC_OP_EFLAGS;
5330 case 0xfc: /* cld */
5333 case 0xfd: /* std */
5337 /************************/
5338 /* bit operations */
5339 case 0x1ba: /* bt/bts/btr/btc Gv, im */
5340 ot = dflag + OT_WORD;
5341 modrm = ldub_code(s->pc++);
5342 op = (modrm >> 3) & 7;
5343 mod = (modrm >> 6) & 3;
5344 rm = (modrm & 7) | REX_B(s);
5347 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
5348 gen_op_ld_T0_A0[ot + s->mem_index]();
5350 gen_op_mov_TN_reg[ot][0][rm]();
5353 val = ldub_code(s->pc++);
5354 gen_op_movl_T1_im(val);
5358 gen_op_btx_T0_T1_cc[ot - OT_WORD][op]();
5359 s->cc_op = CC_OP_SARB + ot;
5362 gen_op_st_T0_A0[ot + s->mem_index]();
5364 gen_op_mov_reg_T0[ot][rm]();
5365 gen_op_update_bt_cc();
5368 case 0x1a3: /* bt Gv, Ev */
5371 case 0x1ab: /* bts */
5374 case 0x1b3: /* btr */
5377 case 0x1bb: /* btc */
5380 ot = dflag + OT_WORD;
5381 modrm = ldub_code(s->pc++);
5382 reg = ((modrm >> 3) & 7) | rex_r;
5383 mod = (modrm >> 6) & 3;
5384 rm = (modrm & 7) | REX_B(s);
5385 gen_op_mov_TN_reg[OT_LONG][1][reg]();
5387 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
5388 /* specific case: we need to add a displacement */
5389 gen_op_add_bit_A0_T1[ot - OT_WORD]();
5390 gen_op_ld_T0_A0[ot + s->mem_index]();
5392 gen_op_mov_TN_reg[ot][0][rm]();
5394 gen_op_btx_T0_T1_cc[ot - OT_WORD][op]();
5395 s->cc_op = CC_OP_SARB + ot;
5398 gen_op_st_T0_A0[ot + s->mem_index]();
5400 gen_op_mov_reg_T0[ot][rm]();
5401 gen_op_update_bt_cc();
5404 case 0x1bc: /* bsf */
5405 case 0x1bd: /* bsr */
5406 ot = dflag + OT_WORD;
5407 modrm = ldub_code(s->pc++);
5408 reg = ((modrm >> 3) & 7) | rex_r;
5409 gen_ldst_modrm(s, modrm, ot, OR_TMP0, 0);
5410 /* NOTE: in order to handle the 0 case, we must load the
5411 result. It could be optimized with a generated jump */
5412 gen_op_mov_TN_reg[ot][1][reg]();
5413 gen_op_bsx_T0_cc[ot - OT_WORD][b & 1]();
5414 gen_op_mov_reg_T1[ot][reg]();
5415 s->cc_op = CC_OP_LOGICB + ot;
5417 /************************/
5419 case 0x27: /* daa */
5422 if (s->cc_op != CC_OP_DYNAMIC)
5423 gen_op_set_cc_op(s->cc_op);
5425 s->cc_op = CC_OP_EFLAGS;
5427 case 0x2f: /* das */
5430 if (s->cc_op != CC_OP_DYNAMIC)
5431 gen_op_set_cc_op(s->cc_op);
5433 s->cc_op = CC_OP_EFLAGS;
5435 case 0x37: /* aaa */
5438 if (s->cc_op != CC_OP_DYNAMIC)
5439 gen_op_set_cc_op(s->cc_op);
5441 s->cc_op = CC_OP_EFLAGS;
5443 case 0x3f: /* aas */
5446 if (s->cc_op != CC_OP_DYNAMIC)
5447 gen_op_set_cc_op(s->cc_op);
5449 s->cc_op = CC_OP_EFLAGS;
5451 case 0xd4: /* aam */
5454 val = ldub_code(s->pc++);
5456 gen_exception(s, EXCP00_DIVZ, pc_start - s->cs_base);
5459 s->cc_op = CC_OP_LOGICB;
5462 case 0xd5: /* aad */
5465 val = ldub_code(s->pc++);
5467 s->cc_op = CC_OP_LOGICB;
5469 /************************/
5471 case 0x90: /* nop */
5472 /* XXX: xchg + rex handling */
5473 /* XXX: correct lock test for all insn */
5474 if (prefixes & PREFIX_LOCK)
5476 if (prefixes & PREFIX_REPZ) {
5477 gen_svm_check_intercept(s, pc_start, SVM_EXIT_PAUSE);
5480 case 0x9b: /* fwait */
5481 if ((s->flags & (HF_MP_MASK | HF_TS_MASK)) ==
5482 (HF_MP_MASK | HF_TS_MASK)) {
5483 gen_exception(s, EXCP07_PREX, pc_start - s->cs_base);
5485 if (s->cc_op != CC_OP_DYNAMIC)
5486 gen_op_set_cc_op(s->cc_op);
5487 gen_jmp_im(pc_start - s->cs_base);
5491 case 0xcc: /* int3 */
5492 if (gen_svm_check_intercept(s, pc_start, SVM_EXIT_SWINT))
5494 gen_interrupt(s, EXCP03_INT3, pc_start - s->cs_base, s->pc - s->cs_base);
5496 case 0xcd: /* int N */
5497 val = ldub_code(s->pc++);
5498 if (gen_svm_check_intercept(s, pc_start, SVM_EXIT_SWINT))
5500 if (s->vm86 && s->iopl != 3) {
5501 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
5503 gen_interrupt(s, val, pc_start - s->cs_base, s->pc - s->cs_base);
5506 case 0xce: /* into */
5509 if (gen_svm_check_intercept(s, pc_start, SVM_EXIT_SWINT))
5511 if (s->cc_op != CC_OP_DYNAMIC)
5512 gen_op_set_cc_op(s->cc_op);
5513 gen_jmp_im(pc_start - s->cs_base);
5514 gen_op_into(s->pc - pc_start);
5516 case 0xf1: /* icebp (undocumented, exits to external debugger) */
5517 if (gen_svm_check_intercept(s, pc_start, SVM_EXIT_ICEBP))
5520 gen_debug(s, pc_start - s->cs_base);
5523 tb_flush(cpu_single_env);
5524 cpu_set_log(CPU_LOG_INT | CPU_LOG_TB_IN_ASM);
5527 case 0xfa: /* cli */
5529 if (s->cpl <= s->iopl) {
5532 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
5538 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
5542 case 0xfb: /* sti */
5544 if (s->cpl <= s->iopl) {
5547 /* interruptions are enabled only the first insn after sti */
5548 /* If several instructions disable interrupts, only the
5550 if (!(s->tb->flags & HF_INHIBIT_IRQ_MASK))
5551 gen_op_set_inhibit_irq();
5552 /* give a chance to handle pending irqs */
5553 gen_jmp_im(s->pc - s->cs_base);
5556 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
5562 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
5566 case 0x62: /* bound */
5569 ot = dflag ? OT_LONG : OT_WORD;
5570 modrm = ldub_code(s->pc++);
5571 reg = (modrm >> 3) & 7;
5572 mod = (modrm >> 6) & 3;
5575 gen_op_mov_TN_reg[ot][0][reg]();
5576 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
5577 gen_jmp_im(pc_start - s->cs_base);
5583 case 0x1c8 ... 0x1cf: /* bswap reg */
5584 reg = (b & 7) | REX_B(s);
5585 #ifdef TARGET_X86_64
5587 gen_op_mov_TN_reg[OT_QUAD][0][reg]();
5589 gen_op_mov_reg_T0[OT_QUAD][reg]();
5593 gen_op_mov_TN_reg[OT_LONG][0][reg]();
5595 gen_op_mov_reg_T0[OT_LONG][reg]();
5598 case 0xd6: /* salc */
5601 if (s->cc_op != CC_OP_DYNAMIC)
5602 gen_op_set_cc_op(s->cc_op);
5605 case 0xe0: /* loopnz */
5606 case 0xe1: /* loopz */
5607 if (s->cc_op != CC_OP_DYNAMIC)
5608 gen_op_set_cc_op(s->cc_op);
5610 case 0xe2: /* loop */
5611 case 0xe3: /* jecxz */
5615 tval = (int8_t)insn_get(s, OT_BYTE);
5616 next_eip = s->pc - s->cs_base;
5621 l1 = gen_new_label();
5622 l2 = gen_new_label();
5625 gen_op_jz_ecx[s->aflag](l1);
5627 gen_op_dec_ECX[s->aflag]();
5630 gen_op_loop[s->aflag][b](l1);
5633 gen_jmp_im(next_eip);
5634 gen_op_jmp_label(l2);
5641 case 0x130: /* wrmsr */
5642 case 0x132: /* rdmsr */
5644 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
5648 retval = gen_svm_check_intercept_param(s, pc_start, SVM_EXIT_MSR, 0);
5651 retval = gen_svm_check_intercept_param(s, pc_start, SVM_EXIT_MSR, 1);
5658 case 0x131: /* rdtsc */
5659 if (gen_svm_check_intercept(s, pc_start, SVM_EXIT_RDTSC))
5661 gen_jmp_im(pc_start - s->cs_base);
5664 case 0x134: /* sysenter */
5668 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
5670 if (s->cc_op != CC_OP_DYNAMIC) {
5671 gen_op_set_cc_op(s->cc_op);
5672 s->cc_op = CC_OP_DYNAMIC;
5674 gen_jmp_im(pc_start - s->cs_base);
5679 case 0x135: /* sysexit */
5683 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
5685 if (s->cc_op != CC_OP_DYNAMIC) {
5686 gen_op_set_cc_op(s->cc_op);
5687 s->cc_op = CC_OP_DYNAMIC;
5689 gen_jmp_im(pc_start - s->cs_base);
5694 #ifdef TARGET_X86_64
5695 case 0x105: /* syscall */
5696 /* XXX: is it usable in real mode ? */
5697 if (s->cc_op != CC_OP_DYNAMIC) {
5698 gen_op_set_cc_op(s->cc_op);
5699 s->cc_op = CC_OP_DYNAMIC;
5701 gen_jmp_im(pc_start - s->cs_base);
5702 gen_op_syscall(s->pc - pc_start);
5705 case 0x107: /* sysret */
5707 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
5709 if (s->cc_op != CC_OP_DYNAMIC) {
5710 gen_op_set_cc_op(s->cc_op);
5711 s->cc_op = CC_OP_DYNAMIC;
5713 gen_jmp_im(pc_start - s->cs_base);
5714 gen_op_sysret(s->dflag);
5715 /* condition codes are modified only in long mode */
5717 s->cc_op = CC_OP_EFLAGS;
5722 case 0x1a2: /* cpuid */
5723 if (gen_svm_check_intercept(s, pc_start, SVM_EXIT_CPUID))
5727 case 0xf4: /* hlt */
5729 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
5731 if (gen_svm_check_intercept(s, pc_start, SVM_EXIT_HLT))
5733 if (s->cc_op != CC_OP_DYNAMIC)
5734 gen_op_set_cc_op(s->cc_op);
5735 gen_jmp_im(s->pc - s->cs_base);
5741 modrm = ldub_code(s->pc++);
5742 mod = (modrm >> 6) & 3;
5743 op = (modrm >> 3) & 7;
5746 if (!s->pe || s->vm86)
5748 if (gen_svm_check_intercept(s, pc_start, SVM_EXIT_LDTR_READ))
5750 gen_op_movl_T0_env(offsetof(CPUX86State,ldt.selector));
5754 gen_ldst_modrm(s, modrm, ot, OR_TMP0, 1);
5757 if (!s->pe || s->vm86)
5760 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
5762 if (gen_svm_check_intercept(s, pc_start, SVM_EXIT_LDTR_WRITE))
5764 gen_ldst_modrm(s, modrm, OT_WORD, OR_TMP0, 0);
5765 gen_jmp_im(pc_start - s->cs_base);
5770 if (!s->pe || s->vm86)
5772 if (gen_svm_check_intercept(s, pc_start, SVM_EXIT_TR_READ))
5774 gen_op_movl_T0_env(offsetof(CPUX86State,tr.selector));
5778 gen_ldst_modrm(s, modrm, ot, OR_TMP0, 1);
5781 if (!s->pe || s->vm86)
5784 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
5786 if (gen_svm_check_intercept(s, pc_start, SVM_EXIT_TR_WRITE))
5788 gen_ldst_modrm(s, modrm, OT_WORD, OR_TMP0, 0);
5789 gen_jmp_im(pc_start - s->cs_base);
5795 if (!s->pe || s->vm86)
5797 gen_ldst_modrm(s, modrm, OT_WORD, OR_TMP0, 0);
5798 if (s->cc_op != CC_OP_DYNAMIC)
5799 gen_op_set_cc_op(s->cc_op);
5804 s->cc_op = CC_OP_EFLAGS;
5811 modrm = ldub_code(s->pc++);
5812 mod = (modrm >> 6) & 3;
5813 op = (modrm >> 3) & 7;
5819 if (gen_svm_check_intercept(s, pc_start, SVM_EXIT_GDTR_READ))
5821 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
5822 gen_op_movl_T0_env(offsetof(CPUX86State, gdt.limit));
5823 gen_op_st_T0_A0[OT_WORD + s->mem_index]();
5824 gen_add_A0_im(s, 2);
5825 gen_op_movtl_T0_env(offsetof(CPUX86State, gdt.base));
5827 gen_op_andl_T0_im(0xffffff);
5828 gen_op_st_T0_A0[CODE64(s) + OT_LONG + s->mem_index]();
5833 case 0: /* monitor */
5834 if (!(s->cpuid_ext_features & CPUID_EXT_MONITOR) ||
5837 if (gen_svm_check_intercept(s, pc_start, SVM_EXIT_MONITOR))
5839 gen_jmp_im(pc_start - s->cs_base);
5840 #ifdef TARGET_X86_64
5841 if (s->aflag == 2) {
5842 gen_op_movq_A0_reg[R_EBX]();
5843 gen_op_addq_A0_AL();
5847 gen_op_movl_A0_reg[R_EBX]();
5848 gen_op_addl_A0_AL();
5850 gen_op_andl_A0_ffff();
5852 gen_add_A0_ds_seg(s);
5856 if (!(s->cpuid_ext_features & CPUID_EXT_MONITOR) ||
5859 if (s->cc_op != CC_OP_DYNAMIC) {
5860 gen_op_set_cc_op(s->cc_op);
5861 s->cc_op = CC_OP_DYNAMIC;
5863 if (gen_svm_check_intercept(s, pc_start, SVM_EXIT_MWAIT))
5865 gen_jmp_im(s->pc - s->cs_base);
5873 if (gen_svm_check_intercept(s, pc_start, SVM_EXIT_IDTR_READ))
5875 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
5876 gen_op_movl_T0_env(offsetof(CPUX86State, idt.limit));
5877 gen_op_st_T0_A0[OT_WORD + s->mem_index]();
5878 gen_add_A0_im(s, 2);
5879 gen_op_movtl_T0_env(offsetof(CPUX86State, idt.base));
5881 gen_op_andl_T0_im(0xffffff);
5882 gen_op_st_T0_A0[CODE64(s) + OT_LONG + s->mem_index]();
5890 if (gen_svm_check_intercept(s, pc_start, SVM_EXIT_VMRUN))
5892 if (s->cc_op != CC_OP_DYNAMIC)
5893 gen_op_set_cc_op(s->cc_op);
5894 gen_jmp_im(s->pc - s->cs_base);
5896 s->cc_op = CC_OP_EFLAGS;
5899 case 1: /* VMMCALL */
5900 if (gen_svm_check_intercept(s, pc_start, SVM_EXIT_VMMCALL))
5902 /* FIXME: cause #UD if hflags & SVM */
5905 case 2: /* VMLOAD */
5906 if (gen_svm_check_intercept(s, pc_start, SVM_EXIT_VMLOAD))
5910 case 3: /* VMSAVE */
5911 if (gen_svm_check_intercept(s, pc_start, SVM_EXIT_VMSAVE))
5916 if (gen_svm_check_intercept(s, pc_start, SVM_EXIT_STGI))
5921 if (gen_svm_check_intercept(s, pc_start, SVM_EXIT_CLGI))
5925 case 6: /* SKINIT */
5926 if (gen_svm_check_intercept(s, pc_start, SVM_EXIT_SKINIT))
5930 case 7: /* INVLPGA */
5931 if (gen_svm_check_intercept(s, pc_start, SVM_EXIT_INVLPGA))
5938 } else if (s->cpl != 0) {
5939 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
5941 if (gen_svm_check_intercept(s, pc_start,
5942 op==2 ? SVM_EXIT_GDTR_WRITE : SVM_EXIT_IDTR_WRITE))
5944 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
5945 gen_op_ld_T1_A0[OT_WORD + s->mem_index]();
5946 gen_add_A0_im(s, 2);
5947 gen_op_ld_T0_A0[CODE64(s) + OT_LONG + s->mem_index]();
5949 gen_op_andl_T0_im(0xffffff);
5951 gen_op_movtl_env_T0(offsetof(CPUX86State,gdt.base));
5952 gen_op_movl_env_T1(offsetof(CPUX86State,gdt.limit));
5954 gen_op_movtl_env_T0(offsetof(CPUX86State,idt.base));
5955 gen_op_movl_env_T1(offsetof(CPUX86State,idt.limit));
5960 if (gen_svm_check_intercept(s, pc_start, SVM_EXIT_READ_CR0))
5962 gen_op_movl_T0_env(offsetof(CPUX86State,cr[0]));
5963 gen_ldst_modrm(s, modrm, OT_WORD, OR_TMP0, 1);
5967 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
5969 if (gen_svm_check_intercept(s, pc_start, SVM_EXIT_WRITE_CR0))
5971 gen_ldst_modrm(s, modrm, OT_WORD, OR_TMP0, 0);
5973 gen_jmp_im(s->pc - s->cs_base);
5977 case 7: /* invlpg */
5979 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
5982 #ifdef TARGET_X86_64
5983 if (CODE64(s) && rm == 0) {
5985 gen_op_movtl_T0_env(offsetof(CPUX86State,segs[R_GS].base));
5986 gen_op_movtl_T1_env(offsetof(CPUX86State,kernelgsbase));
5987 gen_op_movtl_env_T1(offsetof(CPUX86State,segs[R_GS].base));
5988 gen_op_movtl_env_T0(offsetof(CPUX86State,kernelgsbase));
5995 if (gen_svm_check_intercept(s, pc_start, SVM_EXIT_INVLPG))
5997 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
5999 gen_jmp_im(s->pc - s->cs_base);
6008 case 0x108: /* invd */
6009 case 0x109: /* wbinvd */
6011 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
6013 if (gen_svm_check_intercept(s, pc_start, SVM_EXIT_INVD))
6018 case 0x63: /* arpl or movslS (x86_64) */
6019 #ifdef TARGET_X86_64
6022 /* d_ot is the size of destination */
6023 d_ot = dflag + OT_WORD;
6025 modrm = ldub_code(s->pc++);
6026 reg = ((modrm >> 3) & 7) | rex_r;
6027 mod = (modrm >> 6) & 3;
6028 rm = (modrm & 7) | REX_B(s);
6031 gen_op_mov_TN_reg[OT_LONG][0][rm]();
6033 if (d_ot == OT_QUAD)
6034 gen_op_movslq_T0_T0();
6035 gen_op_mov_reg_T0[d_ot][reg]();
6037 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
6038 if (d_ot == OT_QUAD) {
6039 gen_op_lds_T0_A0[OT_LONG + s->mem_index]();
6041 gen_op_ld_T0_A0[OT_LONG + s->mem_index]();
6043 gen_op_mov_reg_T0[d_ot][reg]();
6048 if (!s->pe || s->vm86)
6050 ot = dflag ? OT_LONG : OT_WORD;
6051 modrm = ldub_code(s->pc++);
6052 reg = (modrm >> 3) & 7;
6053 mod = (modrm >> 6) & 3;
6056 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
6057 gen_op_ld_T0_A0[ot + s->mem_index]();
6059 gen_op_mov_TN_reg[ot][0][rm]();
6061 if (s->cc_op != CC_OP_DYNAMIC)
6062 gen_op_set_cc_op(s->cc_op);
6064 s->cc_op = CC_OP_EFLAGS;
6066 gen_op_st_T0_A0[ot + s->mem_index]();
6068 gen_op_mov_reg_T0[ot][rm]();
6070 gen_op_arpl_update();
6073 case 0x102: /* lar */
6074 case 0x103: /* lsl */
6075 if (!s->pe || s->vm86)
6077 ot = dflag ? OT_LONG : OT_WORD;
6078 modrm = ldub_code(s->pc++);
6079 reg = ((modrm >> 3) & 7) | rex_r;
6080 gen_ldst_modrm(s, modrm, ot, OR_TMP0, 0);
6081 gen_op_mov_TN_reg[ot][1][reg]();
6082 if (s->cc_op != CC_OP_DYNAMIC)
6083 gen_op_set_cc_op(s->cc_op);
6088 s->cc_op = CC_OP_EFLAGS;
6089 gen_op_mov_reg_T1[ot][reg]();
6092 modrm = ldub_code(s->pc++);
6093 mod = (modrm >> 6) & 3;
6094 op = (modrm >> 3) & 7;
6096 case 0: /* prefetchnta */
6097 case 1: /* prefetchnt0 */
6098 case 2: /* prefetchnt0 */
6099 case 3: /* prefetchnt0 */
6102 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
6103 /* nothing more to do */
6105 default: /* nop (multi byte) */
6106 gen_nop_modrm(s, modrm);
6110 case 0x119 ... 0x11f: /* nop (multi byte) */
6111 modrm = ldub_code(s->pc++);
6112 gen_nop_modrm(s, modrm);
6114 case 0x120: /* mov reg, crN */
6115 case 0x122: /* mov crN, reg */
6117 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
6119 modrm = ldub_code(s->pc++);
6120 if ((modrm & 0xc0) != 0xc0)
6122 rm = (modrm & 7) | REX_B(s);
6123 reg = ((modrm >> 3) & 7) | rex_r;
6135 gen_svm_check_intercept(s, pc_start, SVM_EXIT_WRITE_CR0 + reg);
6136 gen_op_mov_TN_reg[ot][0][rm]();
6137 gen_op_movl_crN_T0(reg);
6138 gen_jmp_im(s->pc - s->cs_base);
6141 gen_svm_check_intercept(s, pc_start, SVM_EXIT_READ_CR0 + reg);
6142 #if !defined(CONFIG_USER_ONLY)
6144 gen_op_movtl_T0_cr8();
6147 gen_op_movtl_T0_env(offsetof(CPUX86State,cr[reg]));
6148 gen_op_mov_reg_T0[ot][rm]();
6156 case 0x121: /* mov reg, drN */
6157 case 0x123: /* mov drN, reg */
6159 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
6161 modrm = ldub_code(s->pc++);
6162 if ((modrm & 0xc0) != 0xc0)
6164 rm = (modrm & 7) | REX_B(s);
6165 reg = ((modrm >> 3) & 7) | rex_r;
6170 /* XXX: do it dynamically with CR4.DE bit */
6171 if (reg == 4 || reg == 5 || reg >= 8)
6174 gen_svm_check_intercept(s, pc_start, SVM_EXIT_WRITE_DR0 + reg);
6175 gen_op_mov_TN_reg[ot][0][rm]();
6176 gen_op_movl_drN_T0(reg);
6177 gen_jmp_im(s->pc - s->cs_base);
6180 gen_svm_check_intercept(s, pc_start, SVM_EXIT_READ_DR0 + reg);
6181 gen_op_movtl_T0_env(offsetof(CPUX86State,dr[reg]));
6182 gen_op_mov_reg_T0[ot][rm]();
6186 case 0x106: /* clts */
6188 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
6190 gen_svm_check_intercept(s, pc_start, SVM_EXIT_WRITE_CR0);
6192 /* abort block because static cpu state changed */
6193 gen_jmp_im(s->pc - s->cs_base);
6197 /* MMX/SSE/SSE2/PNI support */
6198 case 0x1c3: /* MOVNTI reg, mem */
6199 if (!(s->cpuid_features & CPUID_SSE2))
6201 ot = s->dflag == 2 ? OT_QUAD : OT_LONG;
6202 modrm = ldub_code(s->pc++);
6203 mod = (modrm >> 6) & 3;
6206 reg = ((modrm >> 3) & 7) | rex_r;
6207 /* generate a generic store */
6208 gen_ldst_modrm(s, modrm, ot, reg, 1);
6211 modrm = ldub_code(s->pc++);
6212 mod = (modrm >> 6) & 3;
6213 op = (modrm >> 3) & 7;
6215 case 0: /* fxsave */
6216 if (mod == 3 || !(s->cpuid_features & CPUID_FXSR) ||
6217 (s->flags & HF_EM_MASK))
6219 if (s->flags & HF_TS_MASK) {
6220 gen_exception(s, EXCP07_PREX, pc_start - s->cs_base);
6223 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
6224 gen_op_fxsave_A0((s->dflag == 2));
6226 case 1: /* fxrstor */
6227 if (mod == 3 || !(s->cpuid_features & CPUID_FXSR) ||
6228 (s->flags & HF_EM_MASK))
6230 if (s->flags & HF_TS_MASK) {
6231 gen_exception(s, EXCP07_PREX, pc_start - s->cs_base);
6234 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
6235 gen_op_fxrstor_A0((s->dflag == 2));
6237 case 2: /* ldmxcsr */
6238 case 3: /* stmxcsr */
6239 if (s->flags & HF_TS_MASK) {
6240 gen_exception(s, EXCP07_PREX, pc_start - s->cs_base);
6243 if ((s->flags & HF_EM_MASK) || !(s->flags & HF_OSFXSR_MASK) ||
6246 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
6248 gen_op_ld_T0_A0[OT_LONG + s->mem_index]();
6249 gen_op_movl_env_T0(offsetof(CPUX86State, mxcsr));
6251 gen_op_movl_T0_env(offsetof(CPUX86State, mxcsr));
6252 gen_op_st_T0_A0[OT_LONG + s->mem_index]();
6255 case 5: /* lfence */
6256 case 6: /* mfence */
6257 if ((modrm & 0xc7) != 0xc0 || !(s->cpuid_features & CPUID_SSE))
6260 case 7: /* sfence / clflush */
6261 if ((modrm & 0xc7) == 0xc0) {
6263 if (!(s->cpuid_features & CPUID_SSE))
6267 if (!(s->cpuid_features & CPUID_CLFLUSH))
6269 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
6276 case 0x10d: /* prefetch */
6277 modrm = ldub_code(s->pc++);
6278 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
6279 /* ignore for now */
6281 case 0x1aa: /* rsm */
6282 if (gen_svm_check_intercept(s, pc_start, SVM_EXIT_RSM))
6284 if (!(s->flags & HF_SMM_MASK))
6286 if (s->cc_op != CC_OP_DYNAMIC) {
6287 gen_op_set_cc_op(s->cc_op);
6288 s->cc_op = CC_OP_DYNAMIC;
6290 gen_jmp_im(s->pc - s->cs_base);
6294 case 0x110 ... 0x117:
6295 case 0x128 ... 0x12f:
6296 case 0x150 ... 0x177:
6297 case 0x17c ... 0x17f:
6299 case 0x1c4 ... 0x1c6:
6300 case 0x1d0 ... 0x1fe:
6301 gen_sse(s, b, pc_start, rex_r);
6306 /* lock generation */
6307 if (s->prefix & PREFIX_LOCK)
6311 if (s->prefix & PREFIX_LOCK)
6313 /* XXX: ensure that no lock was generated */
6314 gen_exception(s, EXCP06_ILLOP, pc_start - s->cs_base);
6318 #define CC_OSZAPC (CC_O | CC_S | CC_Z | CC_A | CC_P | CC_C)
6319 #define CC_OSZAP (CC_O | CC_S | CC_Z | CC_A | CC_P)
6321 /* flags read by an operation */
6322 static uint16_t opc_read_flags[NB_OPS] = {
6323 [INDEX_op_aas] = CC_A,
6324 [INDEX_op_aaa] = CC_A,
6325 [INDEX_op_das] = CC_A | CC_C,
6326 [INDEX_op_daa] = CC_A | CC_C,
6328 /* subtle: due to the incl/decl implementation, C is used */
6329 [INDEX_op_update_inc_cc] = CC_C,
6331 [INDEX_op_into] = CC_O,
6333 [INDEX_op_jb_subb] = CC_C,
6334 [INDEX_op_jb_subw] = CC_C,
6335 [INDEX_op_jb_subl] = CC_C,
6337 [INDEX_op_jz_subb] = CC_Z,
6338 [INDEX_op_jz_subw] = CC_Z,
6339 [INDEX_op_jz_subl] = CC_Z,
6341 [INDEX_op_jbe_subb] = CC_Z | CC_C,
6342 [INDEX_op_jbe_subw] = CC_Z | CC_C,
6343 [INDEX_op_jbe_subl] = CC_Z | CC_C,
6345 [INDEX_op_js_subb] = CC_S,
6346 [INDEX_op_js_subw] = CC_S,
6347 [INDEX_op_js_subl] = CC_S,
6349 [INDEX_op_jl_subb] = CC_O | CC_S,
6350 [INDEX_op_jl_subw] = CC_O | CC_S,
6351 [INDEX_op_jl_subl] = CC_O | CC_S,
6353 [INDEX_op_jle_subb] = CC_O | CC_S | CC_Z,
6354 [INDEX_op_jle_subw] = CC_O | CC_S | CC_Z,
6355 [INDEX_op_jle_subl] = CC_O | CC_S | CC_Z,
6357 [INDEX_op_loopnzw] = CC_Z,
6358 [INDEX_op_loopnzl] = CC_Z,
6359 [INDEX_op_loopzw] = CC_Z,
6360 [INDEX_op_loopzl] = CC_Z,
6362 [INDEX_op_seto_T0_cc] = CC_O,
6363 [INDEX_op_setb_T0_cc] = CC_C,
6364 [INDEX_op_setz_T0_cc] = CC_Z,
6365 [INDEX_op_setbe_T0_cc] = CC_Z | CC_C,
6366 [INDEX_op_sets_T0_cc] = CC_S,
6367 [INDEX_op_setp_T0_cc] = CC_P,
6368 [INDEX_op_setl_T0_cc] = CC_O | CC_S,
6369 [INDEX_op_setle_T0_cc] = CC_O | CC_S | CC_Z,
6371 [INDEX_op_setb_T0_subb] = CC_C,
6372 [INDEX_op_setb_T0_subw] = CC_C,
6373 [INDEX_op_setb_T0_subl] = CC_C,
6375 [INDEX_op_setz_T0_subb] = CC_Z,
6376 [INDEX_op_setz_T0_subw] = CC_Z,
6377 [INDEX_op_setz_T0_subl] = CC_Z,
6379 [INDEX_op_setbe_T0_subb] = CC_Z | CC_C,
6380 [INDEX_op_setbe_T0_subw] = CC_Z | CC_C,
6381 [INDEX_op_setbe_T0_subl] = CC_Z | CC_C,
6383 [INDEX_op_sets_T0_subb] = CC_S,
6384 [INDEX_op_sets_T0_subw] = CC_S,
6385 [INDEX_op_sets_T0_subl] = CC_S,
6387 [INDEX_op_setl_T0_subb] = CC_O | CC_S,
6388 [INDEX_op_setl_T0_subw] = CC_O | CC_S,
6389 [INDEX_op_setl_T0_subl] = CC_O | CC_S,
6391 [INDEX_op_setle_T0_subb] = CC_O | CC_S | CC_Z,
6392 [INDEX_op_setle_T0_subw] = CC_O | CC_S | CC_Z,
6393 [INDEX_op_setle_T0_subl] = CC_O | CC_S | CC_Z,
6395 [INDEX_op_movl_T0_eflags] = CC_OSZAPC,
6396 [INDEX_op_cmc] = CC_C,
6397 [INDEX_op_salc] = CC_C,
6399 /* needed for correct flag optimisation before string ops */
6400 [INDEX_op_jnz_ecxw] = CC_OSZAPC,
6401 [INDEX_op_jnz_ecxl] = CC_OSZAPC,
6402 [INDEX_op_jz_ecxw] = CC_OSZAPC,
6403 [INDEX_op_jz_ecxl] = CC_OSZAPC,
6405 #ifdef TARGET_X86_64
6406 [INDEX_op_jb_subq] = CC_C,
6407 [INDEX_op_jz_subq] = CC_Z,
6408 [INDEX_op_jbe_subq] = CC_Z | CC_C,
6409 [INDEX_op_js_subq] = CC_S,
6410 [INDEX_op_jl_subq] = CC_O | CC_S,
6411 [INDEX_op_jle_subq] = CC_O | CC_S | CC_Z,
6413 [INDEX_op_loopnzq] = CC_Z,
6414 [INDEX_op_loopzq] = CC_Z,
6416 [INDEX_op_setb_T0_subq] = CC_C,
6417 [INDEX_op_setz_T0_subq] = CC_Z,
6418 [INDEX_op_setbe_T0_subq] = CC_Z | CC_C,
6419 [INDEX_op_sets_T0_subq] = CC_S,
6420 [INDEX_op_setl_T0_subq] = CC_O | CC_S,
6421 [INDEX_op_setle_T0_subq] = CC_O | CC_S | CC_Z,
6423 [INDEX_op_jnz_ecxq] = CC_OSZAPC,
6424 [INDEX_op_jz_ecxq] = CC_OSZAPC,
6427 #define DEF_READF(SUFFIX)\
6428 [INDEX_op_adcb ## SUFFIX ## _T0_T1_cc] = CC_C,\
6429 [INDEX_op_adcw ## SUFFIX ## _T0_T1_cc] = CC_C,\
6430 [INDEX_op_adcl ## SUFFIX ## _T0_T1_cc] = CC_C,\
6431 X86_64_DEF([INDEX_op_adcq ## SUFFIX ## _T0_T1_cc] = CC_C,)\
6432 [INDEX_op_sbbb ## SUFFIX ## _T0_T1_cc] = CC_C,\
6433 [INDEX_op_sbbw ## SUFFIX ## _T0_T1_cc] = CC_C,\
6434 [INDEX_op_sbbl ## SUFFIX ## _T0_T1_cc] = CC_C,\
6435 X86_64_DEF([INDEX_op_sbbq ## SUFFIX ## _T0_T1_cc] = CC_C,)\
6437 [INDEX_op_rclb ## SUFFIX ## _T0_T1_cc] = CC_C,\
6438 [INDEX_op_rclw ## SUFFIX ## _T0_T1_cc] = CC_C,\
6439 [INDEX_op_rcll ## SUFFIX ## _T0_T1_cc] = CC_C,\
6440 X86_64_DEF([INDEX_op_rclq ## SUFFIX ## _T0_T1_cc] = CC_C,)\
6441 [INDEX_op_rcrb ## SUFFIX ## _T0_T1_cc] = CC_C,\
6442 [INDEX_op_rcrw ## SUFFIX ## _T0_T1_cc] = CC_C,\
6443 [INDEX_op_rcrl ## SUFFIX ## _T0_T1_cc] = CC_C,\
6444 X86_64_DEF([INDEX_op_rcrq ## SUFFIX ## _T0_T1_cc] = CC_C,)
6448 #ifndef CONFIG_USER_ONLY
6454 /* flags written by an operation */
6455 static uint16_t opc_write_flags[NB_OPS] = {
6456 [INDEX_op_update2_cc] = CC_OSZAPC,
6457 [INDEX_op_update1_cc] = CC_OSZAPC,
6458 [INDEX_op_cmpl_T0_T1_cc] = CC_OSZAPC,
6459 [INDEX_op_update_neg_cc] = CC_OSZAPC,
6460 /* subtle: due to the incl/decl implementation, C is used */
6461 [INDEX_op_update_inc_cc] = CC_OSZAPC,
6462 [INDEX_op_testl_T0_T1_cc] = CC_OSZAPC,
6464 [INDEX_op_mulb_AL_T0] = CC_OSZAPC,
6465 [INDEX_op_mulw_AX_T0] = CC_OSZAPC,
6466 [INDEX_op_mull_EAX_T0] = CC_OSZAPC,
6467 X86_64_DEF([INDEX_op_mulq_EAX_T0] = CC_OSZAPC,)
6468 [INDEX_op_imulb_AL_T0] = CC_OSZAPC,
6469 [INDEX_op_imulw_AX_T0] = CC_OSZAPC,
6470 [INDEX_op_imull_EAX_T0] = CC_OSZAPC,
6471 X86_64_DEF([INDEX_op_imulq_EAX_T0] = CC_OSZAPC,)
6472 [INDEX_op_imulw_T0_T1] = CC_OSZAPC,
6473 [INDEX_op_imull_T0_T1] = CC_OSZAPC,
6474 X86_64_DEF([INDEX_op_imulq_T0_T1] = CC_OSZAPC,)
6477 [INDEX_op_ucomiss] = CC_OSZAPC,
6478 [INDEX_op_ucomisd] = CC_OSZAPC,
6479 [INDEX_op_comiss] = CC_OSZAPC,
6480 [INDEX_op_comisd] = CC_OSZAPC,
6483 [INDEX_op_aam] = CC_OSZAPC,
6484 [INDEX_op_aad] = CC_OSZAPC,
6485 [INDEX_op_aas] = CC_OSZAPC,
6486 [INDEX_op_aaa] = CC_OSZAPC,
6487 [INDEX_op_das] = CC_OSZAPC,
6488 [INDEX_op_daa] = CC_OSZAPC,
6490 [INDEX_op_movb_eflags_T0] = CC_S | CC_Z | CC_A | CC_P | CC_C,
6491 [INDEX_op_movw_eflags_T0] = CC_OSZAPC,
6492 [INDEX_op_movl_eflags_T0] = CC_OSZAPC,
6493 [INDEX_op_movw_eflags_T0_io] = CC_OSZAPC,
6494 [INDEX_op_movl_eflags_T0_io] = CC_OSZAPC,
6495 [INDEX_op_movw_eflags_T0_cpl0] = CC_OSZAPC,
6496 [INDEX_op_movl_eflags_T0_cpl0] = CC_OSZAPC,
6497 [INDEX_op_clc] = CC_C,
6498 [INDEX_op_stc] = CC_C,
6499 [INDEX_op_cmc] = CC_C,
6501 [INDEX_op_btw_T0_T1_cc] = CC_OSZAPC,
6502 [INDEX_op_btl_T0_T1_cc] = CC_OSZAPC,
6503 X86_64_DEF([INDEX_op_btq_T0_T1_cc] = CC_OSZAPC,)
6504 [INDEX_op_btsw_T0_T1_cc] = CC_OSZAPC,
6505 [INDEX_op_btsl_T0_T1_cc] = CC_OSZAPC,
6506 X86_64_DEF([INDEX_op_btsq_T0_T1_cc] = CC_OSZAPC,)
6507 [INDEX_op_btrw_T0_T1_cc] = CC_OSZAPC,
6508 [INDEX_op_btrl_T0_T1_cc] = CC_OSZAPC,
6509 X86_64_DEF([INDEX_op_btrq_T0_T1_cc] = CC_OSZAPC,)
6510 [INDEX_op_btcw_T0_T1_cc] = CC_OSZAPC,
6511 [INDEX_op_btcl_T0_T1_cc] = CC_OSZAPC,
6512 X86_64_DEF([INDEX_op_btcq_T0_T1_cc] = CC_OSZAPC,)
6514 [INDEX_op_bsfw_T0_cc] = CC_OSZAPC,
6515 [INDEX_op_bsfl_T0_cc] = CC_OSZAPC,
6516 X86_64_DEF([INDEX_op_bsfq_T0_cc] = CC_OSZAPC,)
6517 [INDEX_op_bsrw_T0_cc] = CC_OSZAPC,
6518 [INDEX_op_bsrl_T0_cc] = CC_OSZAPC,
6519 X86_64_DEF([INDEX_op_bsrq_T0_cc] = CC_OSZAPC,)
6521 [INDEX_op_cmpxchgb_T0_T1_EAX_cc] = CC_OSZAPC,
6522 [INDEX_op_cmpxchgw_T0_T1_EAX_cc] = CC_OSZAPC,
6523 [INDEX_op_cmpxchgl_T0_T1_EAX_cc] = CC_OSZAPC,
6524 X86_64_DEF([INDEX_op_cmpxchgq_T0_T1_EAX_cc] = CC_OSZAPC,)
6526 [INDEX_op_cmpxchg8b] = CC_Z,
6527 [INDEX_op_lar] = CC_Z,
6528 [INDEX_op_lsl] = CC_Z,
6529 [INDEX_op_verr] = CC_Z,
6530 [INDEX_op_verw] = CC_Z,
6531 [INDEX_op_fcomi_ST0_FT0] = CC_Z | CC_P | CC_C,
6532 [INDEX_op_fucomi_ST0_FT0] = CC_Z | CC_P | CC_C,
6534 #define DEF_WRITEF(SUFFIX)\
6535 [INDEX_op_adcb ## SUFFIX ## _T0_T1_cc] = CC_OSZAPC,\
6536 [INDEX_op_adcw ## SUFFIX ## _T0_T1_cc] = CC_OSZAPC,\
6537 [INDEX_op_adcl ## SUFFIX ## _T0_T1_cc] = CC_OSZAPC,\
6538 X86_64_DEF([INDEX_op_adcq ## SUFFIX ## _T0_T1_cc] = CC_OSZAPC,)\
6539 [INDEX_op_sbbb ## SUFFIX ## _T0_T1_cc] = CC_OSZAPC,\
6540 [INDEX_op_sbbw ## SUFFIX ## _T0_T1_cc] = CC_OSZAPC,\
6541 [INDEX_op_sbbl ## SUFFIX ## _T0_T1_cc] = CC_OSZAPC,\
6542 X86_64_DEF([INDEX_op_sbbq ## SUFFIX ## _T0_T1_cc] = CC_OSZAPC,)\
6544 [INDEX_op_rolb ## SUFFIX ## _T0_T1_cc] = CC_O | CC_C,\
6545 [INDEX_op_rolw ## SUFFIX ## _T0_T1_cc] = CC_O | CC_C,\
6546 [INDEX_op_roll ## SUFFIX ## _T0_T1_cc] = CC_O | CC_C,\
6547 X86_64_DEF([INDEX_op_rolq ## SUFFIX ## _T0_T1_cc] = CC_O | CC_C,)\
6548 [INDEX_op_rorb ## SUFFIX ## _T0_T1_cc] = CC_O | CC_C,\
6549 [INDEX_op_rorw ## SUFFIX ## _T0_T1_cc] = CC_O | CC_C,\
6550 [INDEX_op_rorl ## SUFFIX ## _T0_T1_cc] = CC_O | CC_C,\
6551 X86_64_DEF([INDEX_op_rorq ## SUFFIX ## _T0_T1_cc] = CC_O | CC_C,)\
6553 [INDEX_op_rclb ## SUFFIX ## _T0_T1_cc] = CC_O | CC_C,\
6554 [INDEX_op_rclw ## SUFFIX ## _T0_T1_cc] = CC_O | CC_C,\
6555 [INDEX_op_rcll ## SUFFIX ## _T0_T1_cc] = CC_O | CC_C,\
6556 X86_64_DEF([INDEX_op_rclq ## SUFFIX ## _T0_T1_cc] = CC_O | CC_C,)\
6557 [INDEX_op_rcrb ## SUFFIX ## _T0_T1_cc] = CC_O | CC_C,\
6558 [INDEX_op_rcrw ## SUFFIX ## _T0_T1_cc] = CC_O | CC_C,\
6559 [INDEX_op_rcrl ## SUFFIX ## _T0_T1_cc] = CC_O | CC_C,\
6560 X86_64_DEF([INDEX_op_rcrq ## SUFFIX ## _T0_T1_cc] = CC_O | CC_C,)\
6562 [INDEX_op_shlb ## SUFFIX ## _T0_T1_cc] = CC_OSZAPC,\
6563 [INDEX_op_shlw ## SUFFIX ## _T0_T1_cc] = CC_OSZAPC,\
6564 [INDEX_op_shll ## SUFFIX ## _T0_T1_cc] = CC_OSZAPC,\
6565 X86_64_DEF([INDEX_op_shlq ## SUFFIX ## _T0_T1_cc] = CC_OSZAPC,)\
6567 [INDEX_op_shrb ## SUFFIX ## _T0_T1_cc] = CC_OSZAPC,\
6568 [INDEX_op_shrw ## SUFFIX ## _T0_T1_cc] = CC_OSZAPC,\
6569 [INDEX_op_shrl ## SUFFIX ## _T0_T1_cc] = CC_OSZAPC,\
6570 X86_64_DEF([INDEX_op_shrq ## SUFFIX ## _T0_T1_cc] = CC_OSZAPC,)\
6572 [INDEX_op_sarb ## SUFFIX ## _T0_T1_cc] = CC_OSZAPC,\
6573 [INDEX_op_sarw ## SUFFIX ## _T0_T1_cc] = CC_OSZAPC,\
6574 [INDEX_op_sarl ## SUFFIX ## _T0_T1_cc] = CC_OSZAPC,\
6575 X86_64_DEF([INDEX_op_sarq ## SUFFIX ## _T0_T1_cc] = CC_OSZAPC,)\
6577 [INDEX_op_shldw ## SUFFIX ## _T0_T1_ECX_cc] = CC_OSZAPC,\
6578 [INDEX_op_shldl ## SUFFIX ## _T0_T1_ECX_cc] = CC_OSZAPC,\
6579 X86_64_DEF([INDEX_op_shldq ## SUFFIX ## _T0_T1_ECX_cc] = CC_OSZAPC,)\
6580 [INDEX_op_shldw ## SUFFIX ## _T0_T1_im_cc] = CC_OSZAPC,\
6581 [INDEX_op_shldl ## SUFFIX ## _T0_T1_im_cc] = CC_OSZAPC,\
6582 X86_64_DEF([INDEX_op_shldq ## SUFFIX ## _T0_T1_im_cc] = CC_OSZAPC,)\
6584 [INDEX_op_shrdw ## SUFFIX ## _T0_T1_ECX_cc] = CC_OSZAPC,\
6585 [INDEX_op_shrdl ## SUFFIX ## _T0_T1_ECX_cc] = CC_OSZAPC,\
6586 X86_64_DEF([INDEX_op_shrdq ## SUFFIX ## _T0_T1_ECX_cc] = CC_OSZAPC,)\
6587 [INDEX_op_shrdw ## SUFFIX ## _T0_T1_im_cc] = CC_OSZAPC,\
6588 [INDEX_op_shrdl ## SUFFIX ## _T0_T1_im_cc] = CC_OSZAPC,\
6589 X86_64_DEF([INDEX_op_shrdq ## SUFFIX ## _T0_T1_im_cc] = CC_OSZAPC,)\
6591 [INDEX_op_cmpxchgb ## SUFFIX ## _T0_T1_EAX_cc] = CC_OSZAPC,\
6592 [INDEX_op_cmpxchgw ## SUFFIX ## _T0_T1_EAX_cc] = CC_OSZAPC,\
6593 [INDEX_op_cmpxchgl ## SUFFIX ## _T0_T1_EAX_cc] = CC_OSZAPC,\
6594 X86_64_DEF([INDEX_op_cmpxchgq ## SUFFIX ## _T0_T1_EAX_cc] = CC_OSZAPC,)
6599 #ifndef CONFIG_USER_ONLY
6605 /* simpler form of an operation if no flags need to be generated */
6606 static uint16_t opc_simpler[NB_OPS] = {
6607 [INDEX_op_update2_cc] = INDEX_op_nop,
6608 [INDEX_op_update1_cc] = INDEX_op_nop,
6609 [INDEX_op_update_neg_cc] = INDEX_op_nop,
6611 /* broken: CC_OP logic must be rewritten */
6612 [INDEX_op_update_inc_cc] = INDEX_op_nop,
6615 [INDEX_op_shlb_T0_T1_cc] = INDEX_op_shlb_T0_T1,
6616 [INDEX_op_shlw_T0_T1_cc] = INDEX_op_shlw_T0_T1,
6617 [INDEX_op_shll_T0_T1_cc] = INDEX_op_shll_T0_T1,
6618 X86_64_DEF([INDEX_op_shlq_T0_T1_cc] = INDEX_op_shlq_T0_T1,)
6620 [INDEX_op_shrb_T0_T1_cc] = INDEX_op_shrb_T0_T1,
6621 [INDEX_op_shrw_T0_T1_cc] = INDEX_op_shrw_T0_T1,
6622 [INDEX_op_shrl_T0_T1_cc] = INDEX_op_shrl_T0_T1,
6623 X86_64_DEF([INDEX_op_shrq_T0_T1_cc] = INDEX_op_shrq_T0_T1,)
6625 [INDEX_op_sarb_T0_T1_cc] = INDEX_op_sarb_T0_T1,
6626 [INDEX_op_sarw_T0_T1_cc] = INDEX_op_sarw_T0_T1,
6627 [INDEX_op_sarl_T0_T1_cc] = INDEX_op_sarl_T0_T1,
6628 X86_64_DEF([INDEX_op_sarq_T0_T1_cc] = INDEX_op_sarq_T0_T1,)
6630 #define DEF_SIMPLER(SUFFIX)\
6631 [INDEX_op_rolb ## SUFFIX ## _T0_T1_cc] = INDEX_op_rolb ## SUFFIX ## _T0_T1,\
6632 [INDEX_op_rolw ## SUFFIX ## _T0_T1_cc] = INDEX_op_rolw ## SUFFIX ## _T0_T1,\
6633 [INDEX_op_roll ## SUFFIX ## _T0_T1_cc] = INDEX_op_roll ## SUFFIX ## _T0_T1,\
6634 X86_64_DEF([INDEX_op_rolq ## SUFFIX ## _T0_T1_cc] = INDEX_op_rolq ## SUFFIX ## _T0_T1,)\
6636 [INDEX_op_rorb ## SUFFIX ## _T0_T1_cc] = INDEX_op_rorb ## SUFFIX ## _T0_T1,\
6637 [INDEX_op_rorw ## SUFFIX ## _T0_T1_cc] = INDEX_op_rorw ## SUFFIX ## _T0_T1,\
6638 [INDEX_op_rorl ## SUFFIX ## _T0_T1_cc] = INDEX_op_rorl ## SUFFIX ## _T0_T1,\
6639 X86_64_DEF([INDEX_op_rorq ## SUFFIX ## _T0_T1_cc] = INDEX_op_rorq ## SUFFIX ## _T0_T1,)
6643 #ifndef CONFIG_USER_ONLY
6644 DEF_SIMPLER(_kernel)
6649 void optimize_flags_init(void)
6652 /* put default values in arrays */
6653 for(i = 0; i < NB_OPS; i++) {
6654 if (opc_simpler[i] == 0)
6659 /* CPU flags computation optimization: we move backward thru the
6660 generated code to see which flags are needed. The operation is
6661 modified if suitable */
6662 static void optimize_flags(uint16_t *opc_buf, int opc_buf_len)
6665 int live_flags, write_flags, op;
6667 opc_ptr = opc_buf + opc_buf_len;
6668 /* live_flags contains the flags needed by the next instructions
6669 in the code. At the end of the block, we consider that all the
6671 live_flags = CC_OSZAPC;
6672 while (opc_ptr > opc_buf) {
6674 /* if none of the flags written by the instruction is used,
6675 then we can try to find a simpler instruction */
6676 write_flags = opc_write_flags[op];
6677 if ((live_flags & write_flags) == 0) {
6678 *opc_ptr = opc_simpler[op];
6680 /* compute the live flags before the instruction */
6681 live_flags &= ~write_flags;
6682 live_flags |= opc_read_flags[op];
6686 /* generate intermediate code in gen_opc_buf and gen_opparam_buf for
6687 basic block 'tb'. If search_pc is TRUE, also generate PC
6688 information for each intermediate instruction. */
6689 static inline int gen_intermediate_code_internal(CPUState *env,
6690 TranslationBlock *tb,
6693 DisasContext dc1, *dc = &dc1;
6694 target_ulong pc_ptr;
6695 uint16_t *gen_opc_end;
6698 target_ulong pc_start;
6699 target_ulong cs_base;
6701 /* generate intermediate code */
6703 cs_base = tb->cs_base;
6705 cflags = tb->cflags;
6707 dc->pe = (flags >> HF_PE_SHIFT) & 1;
6708 dc->code32 = (flags >> HF_CS32_SHIFT) & 1;
6709 dc->ss32 = (flags >> HF_SS32_SHIFT) & 1;
6710 dc->addseg = (flags >> HF_ADDSEG_SHIFT) & 1;
6712 dc->vm86 = (flags >> VM_SHIFT) & 1;
6713 dc->cpl = (flags >> HF_CPL_SHIFT) & 3;
6714 dc->iopl = (flags >> IOPL_SHIFT) & 3;
6715 dc->tf = (flags >> TF_SHIFT) & 1;
6716 dc->singlestep_enabled = env->singlestep_enabled;
6717 dc->cc_op = CC_OP_DYNAMIC;
6718 dc->cs_base = cs_base;
6720 dc->popl_esp_hack = 0;
6721 /* select memory access functions */
6723 if (flags & HF_SOFTMMU_MASK) {
6725 dc->mem_index = 2 * 4;
6727 dc->mem_index = 1 * 4;
6729 dc->cpuid_features = env->cpuid_features;
6730 dc->cpuid_ext_features = env->cpuid_ext_features;
6731 #ifdef TARGET_X86_64
6732 dc->lma = (flags >> HF_LMA_SHIFT) & 1;
6733 dc->code64 = (flags >> HF_CS64_SHIFT) & 1;
6736 dc->jmp_opt = !(dc->tf || env->singlestep_enabled ||
6737 (flags & HF_INHIBIT_IRQ_MASK)
6738 #ifndef CONFIG_SOFTMMU
6739 || (flags & HF_SOFTMMU_MASK)
6743 /* check addseg logic */
6744 if (!dc->addseg && (dc->vm86 || !dc->pe || !dc->code32))
6745 printf("ERROR addseg\n");
6748 gen_opc_ptr = gen_opc_buf;
6749 gen_opc_end = gen_opc_buf + OPC_MAX_SIZE;
6750 gen_opparam_ptr = gen_opparam_buf;
6753 dc->is_jmp = DISAS_NEXT;
6758 if (env->nb_breakpoints > 0) {
6759 for(j = 0; j < env->nb_breakpoints; j++) {
6760 if (env->breakpoints[j] == pc_ptr) {
6761 gen_debug(dc, pc_ptr - dc->cs_base);
6767 j = gen_opc_ptr - gen_opc_buf;
6771 gen_opc_instr_start[lj++] = 0;
6773 gen_opc_pc[lj] = pc_ptr;
6774 gen_opc_cc_op[lj] = dc->cc_op;
6775 gen_opc_instr_start[lj] = 1;
6777 pc_ptr = disas_insn(dc, pc_ptr);
6778 /* stop translation if indicated */
6781 /* if single step mode, we generate only one instruction and
6782 generate an exception */
6783 /* if irq were inhibited with HF_INHIBIT_IRQ_MASK, we clear
6784 the flag and abort the translation to give the irqs a
6785 change to be happen */
6786 if (dc->tf || dc->singlestep_enabled ||
6787 (flags & HF_INHIBIT_IRQ_MASK) ||
6788 (cflags & CF_SINGLE_INSN)) {
6789 gen_jmp_im(pc_ptr - dc->cs_base);
6793 /* if too long translation, stop generation too */
6794 if (gen_opc_ptr >= gen_opc_end ||
6795 (pc_ptr - pc_start) >= (TARGET_PAGE_SIZE - 32)) {
6796 gen_jmp_im(pc_ptr - dc->cs_base);
6801 *gen_opc_ptr = INDEX_op_end;
6802 /* we don't forget to fill the last values */
6804 j = gen_opc_ptr - gen_opc_buf;
6807 gen_opc_instr_start[lj++] = 0;
6811 if (loglevel & CPU_LOG_TB_CPU) {
6812 cpu_dump_state(env, logfile, fprintf, X86_DUMP_CCOP);
6814 if (loglevel & CPU_LOG_TB_IN_ASM) {
6816 fprintf(logfile, "----------------\n");
6817 fprintf(logfile, "IN: %s\n", lookup_symbol(pc_start));
6818 #ifdef TARGET_X86_64
6823 disas_flags = !dc->code32;
6824 target_disas(logfile, pc_start, pc_ptr - pc_start, disas_flags);
6825 fprintf(logfile, "\n");
6826 if (loglevel & CPU_LOG_TB_OP) {
6827 fprintf(logfile, "OP:\n");
6828 dump_ops(gen_opc_buf, gen_opparam_buf);
6829 fprintf(logfile, "\n");
6834 /* optimize flag computations */
6835 optimize_flags(gen_opc_buf, gen_opc_ptr - gen_opc_buf);
6838 if (loglevel & CPU_LOG_TB_OP_OPT) {
6839 fprintf(logfile, "AFTER FLAGS OPT:\n");
6840 dump_ops(gen_opc_buf, gen_opparam_buf);
6841 fprintf(logfile, "\n");
6845 tb->size = pc_ptr - pc_start;
6849 int gen_intermediate_code(CPUState *env, TranslationBlock *tb)
6851 return gen_intermediate_code_internal(env, tb, 0);
6854 int gen_intermediate_code_pc(CPUState *env, TranslationBlock *tb)
6856 return gen_intermediate_code_internal(env, tb, 1);
projects / qemu / blob