4 * Copyright (c) 2003 Fabrice Bellard
6 * This library is free software; you can redistribute it and/or
7 * modify it under the terms of the GNU Lesser General Public
8 * License as published by the Free Software Foundation; either
9 * version 2 of the License, or (at your option) any later version.
11 * This library is distributed in the hope that it will be useful,
12 * but WITHOUT ANY WARRANTY; without even the implied warranty of
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
14 * Lesser General Public License for more details.
16 * You should have received a copy of the GNU Lesser General Public
17 * License along with this library; if not, write to the Free Software
18 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
34 #define PREFIX_REPZ 0x01
35 #define PREFIX_REPNZ 0x02
36 #define PREFIX_LOCK 0x04
37 #define PREFIX_DATA 0x08
38 #define PREFIX_ADR 0x10
41 #define X86_64_ONLY(x) x
42 #define X86_64_DEF(x...) x
43 #define CODE64(s) ((s)->code64)
44 #define REX_X(s) ((s)->rex_x)
45 #define REX_B(s) ((s)->rex_b)
46 /* XXX: gcc generates push/pop in some opcodes, so we cannot use them */
48 #define BUGGY_64(x) NULL
51 #define X86_64_ONLY(x) NULL
52 #define X86_64_DEF(x...)
58 //#define MACRO_TEST 1
60 /* global register indexes */
61 static TCGv cpu_env, cpu_T[2], cpu_A0, cpu_cc_op, cpu_cc_src, cpu_cc_dst;
63 /* local register indexes (only used inside old micro ops) */
64 static TCGv cpu_tmp0, cpu_tmp1_i64, cpu_tmp2_i32, cpu_tmp3_i32, cpu_tmp4, cpu_ptr0, cpu_ptr1;
65 static TCGv cpu_tmp5, cpu_tmp6;
68 static int x86_64_hregs;
71 typedef struct DisasContext {
72 /* current insn context */
73 int override; /* -1 if no override */
76 target_ulong pc; /* pc = eip + cs_base */
77 int is_jmp; /* 1 = means jump (stop translation), 2 means CPU
78 static state change (stop translation) */
79 /* current block context */
80 target_ulong cs_base; /* base of CS segment */
81 int pe; /* protected mode */
82 int code32; /* 32 bit code segment */
84 int lma; /* long mode active */
85 int code64; /* 64 bit code segment */
88 int ss32; /* 32 bit stack segment */
89 int cc_op; /* current CC operation */
90 int addseg; /* non zero if either DS/ES/SS have a non zero base */
91 int f_st; /* currently unused */
92 int vm86; /* vm86 mode */
95 int tf; /* TF cpu flag */
96 int singlestep_enabled; /* "hardware" single step enabled */
97 int jmp_opt; /* use direct block chaining for direct jumps */
98 int mem_index; /* select memory access functions */
99 uint64_t flags; /* all execution flags */
100 struct TranslationBlock *tb;
101 int popl_esp_hack; /* for correct popl with esp base handling */
102 int rip_offset; /* only used in x86_64, but left for simplicity */
104 int cpuid_ext_features;
105 int cpuid_ext2_features;
108 static void gen_eob(DisasContext *s);
109 static void gen_jmp(DisasContext *s, target_ulong eip);
110 static void gen_jmp_tb(DisasContext *s, target_ulong eip, int tb_num);
112 /* i386 arith/logic operations */
132 OP_SHL1, /* undocumented */
145 /* I386 int registers */
146 OR_EAX, /* MUST be even numbered */
155 OR_TMP0 = 16, /* temporary operand register */
157 OR_A0, /* temporary register used when doing address evaluation */
160 static inline void gen_op_movl_T0_0(void)
162 tcg_gen_movi_tl(cpu_T[0], 0);
165 static inline void gen_op_movl_T0_im(int32_t val)
167 tcg_gen_movi_tl(cpu_T[0], val);
170 static inline void gen_op_movl_T0_imu(uint32_t val)
172 tcg_gen_movi_tl(cpu_T[0], val);
175 static inline void gen_op_movl_T1_im(int32_t val)
177 tcg_gen_movi_tl(cpu_T[1], val);
180 static inline void gen_op_movl_T1_imu(uint32_t val)
182 tcg_gen_movi_tl(cpu_T[1], val);
185 static inline void gen_op_movl_A0_im(uint32_t val)
187 tcg_gen_movi_tl(cpu_A0, val);
191 static inline void gen_op_movq_A0_im(int64_t val)
193 tcg_gen_movi_tl(cpu_A0, val);
197 static inline void gen_movtl_T0_im(target_ulong val)
199 tcg_gen_movi_tl(cpu_T[0], val);
202 static inline void gen_movtl_T1_im(target_ulong val)
204 tcg_gen_movi_tl(cpu_T[1], val);
207 static inline void gen_op_andl_T0_ffff(void)
209 tcg_gen_andi_tl(cpu_T[0], cpu_T[0], 0xffff);
212 static inline void gen_op_andl_T0_im(uint32_t val)
214 tcg_gen_andi_tl(cpu_T[0], cpu_T[0], val);
217 static inline void gen_op_movl_T0_T1(void)
219 tcg_gen_mov_tl(cpu_T[0], cpu_T[1]);
222 static inline void gen_op_andl_A0_ffff(void)
224 tcg_gen_andi_tl(cpu_A0, cpu_A0, 0xffff);
229 #define NB_OP_SIZES 4
231 #define DEF_REGS(prefix, suffix) \
232 prefix ## EAX ## suffix,\
233 prefix ## ECX ## suffix,\
234 prefix ## EDX ## suffix,\
235 prefix ## EBX ## suffix,\
236 prefix ## ESP ## suffix,\
237 prefix ## EBP ## suffix,\
238 prefix ## ESI ## suffix,\
239 prefix ## EDI ## suffix,\
240 prefix ## R8 ## suffix,\
241 prefix ## R9 ## suffix,\
242 prefix ## R10 ## suffix,\
243 prefix ## R11 ## suffix,\
244 prefix ## R12 ## suffix,\
245 prefix ## R13 ## suffix,\
246 prefix ## R14 ## suffix,\
247 prefix ## R15 ## suffix,
249 #else /* !TARGET_X86_64 */
251 #define NB_OP_SIZES 3
253 #define DEF_REGS(prefix, suffix) \
254 prefix ## EAX ## suffix,\
255 prefix ## ECX ## suffix,\
256 prefix ## EDX ## suffix,\
257 prefix ## EBX ## suffix,\
258 prefix ## ESP ## suffix,\
259 prefix ## EBP ## suffix,\
260 prefix ## ESI ## suffix,\
261 prefix ## EDI ## suffix,
263 #endif /* !TARGET_X86_64 */
265 #if defined(WORDS_BIGENDIAN)
266 #define REG_B_OFFSET (sizeof(target_ulong) - 1)
267 #define REG_H_OFFSET (sizeof(target_ulong) - 2)
268 #define REG_W_OFFSET (sizeof(target_ulong) - 2)
269 #define REG_L_OFFSET (sizeof(target_ulong) - 4)
270 #define REG_LH_OFFSET (sizeof(target_ulong) - 8)
272 #define REG_B_OFFSET 0
273 #define REG_H_OFFSET 1
274 #define REG_W_OFFSET 0
275 #define REG_L_OFFSET 0
276 #define REG_LH_OFFSET 4
279 static inline void gen_op_mov_reg_TN(int ot, int t_index, int reg)
283 if (reg < 4 X86_64_DEF( || reg >= 8 || x86_64_hregs)) {
284 tcg_gen_st8_tl(cpu_T[t_index], cpu_env, offsetof(CPUState, regs[reg]) + REG_B_OFFSET);
286 tcg_gen_st8_tl(cpu_T[t_index], cpu_env, offsetof(CPUState, regs[reg - 4]) + REG_H_OFFSET);
290 tcg_gen_st16_tl(cpu_T[t_index], cpu_env, offsetof(CPUState, regs[reg]) + REG_W_OFFSET);
294 tcg_gen_st32_tl(cpu_T[t_index], cpu_env, offsetof(CPUState, regs[reg]) + REG_L_OFFSET);
295 /* high part of register set to zero */
296 tcg_gen_movi_tl(cpu_tmp0, 0);
297 tcg_gen_st32_tl(cpu_tmp0, cpu_env, offsetof(CPUState, regs[reg]) + REG_LH_OFFSET);
301 tcg_gen_st_tl(cpu_T[t_index], cpu_env, offsetof(CPUState, regs[reg]));
306 tcg_gen_st32_tl(cpu_T[t_index], cpu_env, offsetof(CPUState, regs[reg]) + REG_L_OFFSET);
312 static inline void gen_op_mov_reg_T0(int ot, int reg)
314 gen_op_mov_reg_TN(ot, 0, reg);
317 static inline void gen_op_mov_reg_T1(int ot, int reg)
319 gen_op_mov_reg_TN(ot, 1, reg);
322 static inline void gen_op_mov_reg_A0(int size, int reg)
326 tcg_gen_st16_tl(cpu_A0, cpu_env, offsetof(CPUState, regs[reg]) + REG_W_OFFSET);
330 tcg_gen_st32_tl(cpu_A0, cpu_env, offsetof(CPUState, regs[reg]) + REG_L_OFFSET);
331 /* high part of register set to zero */
332 tcg_gen_movi_tl(cpu_tmp0, 0);
333 tcg_gen_st32_tl(cpu_tmp0, cpu_env, offsetof(CPUState, regs[reg]) + REG_LH_OFFSET);
337 tcg_gen_st_tl(cpu_A0, cpu_env, offsetof(CPUState, regs[reg]));
342 tcg_gen_st32_tl(cpu_A0, cpu_env, offsetof(CPUState, regs[reg]) + REG_L_OFFSET);
348 static inline void gen_op_mov_TN_reg(int ot, int t_index, int reg)
352 if (reg < 4 X86_64_DEF( || reg >= 8 || x86_64_hregs)) {
355 tcg_gen_ld8u_tl(cpu_T[t_index], cpu_env, offsetof(CPUState, regs[reg - 4]) + REG_H_OFFSET);
360 tcg_gen_ld_tl(cpu_T[t_index], cpu_env, offsetof(CPUState, regs[reg]));
365 static inline void gen_op_movl_A0_reg(int reg)
367 tcg_gen_ld32u_tl(cpu_A0, cpu_env, offsetof(CPUState, regs[reg]) + REG_L_OFFSET);
370 static inline void gen_op_addl_A0_im(int32_t val)
372 tcg_gen_addi_tl(cpu_A0, cpu_A0, val);
374 tcg_gen_andi_tl(cpu_A0, cpu_A0, 0xffffffff);
379 static inline void gen_op_addq_A0_im(int64_t val)
381 tcg_gen_addi_tl(cpu_A0, cpu_A0, val);
385 static void gen_add_A0_im(DisasContext *s, int val)
389 gen_op_addq_A0_im(val);
392 gen_op_addl_A0_im(val);
395 static inline void gen_op_addl_T0_T1(void)
397 tcg_gen_add_tl(cpu_T[0], cpu_T[0], cpu_T[1]);
400 static inline void gen_op_jmp_T0(void)
402 tcg_gen_st_tl(cpu_T[0], cpu_env, offsetof(CPUState, eip));
405 static inline void gen_op_addw_ESP_im(int32_t val)
407 tcg_gen_ld_tl(cpu_tmp0, cpu_env, offsetof(CPUState, regs[R_ESP]));
408 tcg_gen_addi_tl(cpu_tmp0, cpu_tmp0, val);
409 tcg_gen_st16_tl(cpu_tmp0, cpu_env, offsetof(CPUState, regs[R_ESP]) + REG_W_OFFSET);
412 static inline void gen_op_addl_ESP_im(int32_t val)
414 tcg_gen_ld_tl(cpu_tmp0, cpu_env, offsetof(CPUState, regs[R_ESP]));
415 tcg_gen_addi_tl(cpu_tmp0, cpu_tmp0, val);
417 tcg_gen_andi_tl(cpu_tmp0, cpu_tmp0, 0xffffffff);
419 tcg_gen_st_tl(cpu_tmp0, cpu_env, offsetof(CPUState, regs[R_ESP]));
423 static inline void gen_op_addq_ESP_im(int32_t val)
425 tcg_gen_ld_tl(cpu_tmp0, cpu_env, offsetof(CPUState, regs[R_ESP]));
426 tcg_gen_addi_tl(cpu_tmp0, cpu_tmp0, val);
427 tcg_gen_st_tl(cpu_tmp0, cpu_env, offsetof(CPUState, regs[R_ESP]));
431 static inline void gen_op_set_cc_op(int32_t val)
433 tcg_gen_movi_i32(cpu_cc_op, val);
436 static inline void gen_op_addl_A0_reg_sN(int shift, int reg)
438 tcg_gen_ld_tl(cpu_tmp0, cpu_env, offsetof(CPUState, regs[reg]));
440 tcg_gen_shli_tl(cpu_tmp0, cpu_tmp0, shift);
441 tcg_gen_add_tl(cpu_A0, cpu_A0, cpu_tmp0);
443 tcg_gen_andi_tl(cpu_A0, cpu_A0, 0xffffffff);
447 static inline void gen_op_movl_A0_seg(int reg)
449 tcg_gen_ld32u_tl(cpu_A0, cpu_env, offsetof(CPUState, segs[reg].base) + REG_L_OFFSET);
452 static inline void gen_op_addl_A0_seg(int reg)
454 tcg_gen_ld_tl(cpu_tmp0, cpu_env, offsetof(CPUState, segs[reg].base));
455 tcg_gen_add_tl(cpu_A0, cpu_A0, cpu_tmp0);
457 tcg_gen_andi_tl(cpu_A0, cpu_A0, 0xffffffff);
462 static inline void gen_op_movq_A0_seg(int reg)
464 tcg_gen_ld_tl(cpu_A0, cpu_env, offsetof(CPUState, segs[reg].base));
467 static inline void gen_op_addq_A0_seg(int reg)
469 tcg_gen_ld_tl(cpu_tmp0, cpu_env, offsetof(CPUState, segs[reg].base));
470 tcg_gen_add_tl(cpu_A0, cpu_A0, cpu_tmp0);
473 static inline void gen_op_movq_A0_reg(int reg)
475 tcg_gen_ld_tl(cpu_A0, cpu_env, offsetof(CPUState, regs[reg]));
478 static inline void gen_op_addq_A0_reg_sN(int shift, int reg)
480 tcg_gen_ld_tl(cpu_tmp0, cpu_env, offsetof(CPUState, regs[reg]));
482 tcg_gen_shli_tl(cpu_tmp0, cpu_tmp0, shift);
483 tcg_gen_add_tl(cpu_A0, cpu_A0, cpu_tmp0);
487 static GenOpFunc *gen_op_cmov_reg_T1_T0[NB_OP_SIZES - 1][CPU_NB_REGS] = {
489 DEF_REGS(gen_op_cmovw_, _T1_T0)
492 DEF_REGS(gen_op_cmovl_, _T1_T0)
496 DEF_REGS(gen_op_cmovq_, _T1_T0)
501 static inline void gen_op_lds_T0_A0(int idx)
503 int mem_index = (idx >> 2) - 1;
506 tcg_gen_qemu_ld8s(cpu_T[0], cpu_A0, mem_index);
509 tcg_gen_qemu_ld16s(cpu_T[0], cpu_A0, mem_index);
513 tcg_gen_qemu_ld32s(cpu_T[0], cpu_A0, mem_index);
518 /* sign does not matter, except for lidt/lgdt call (TODO: fix it) */
519 static inline void gen_op_ld_T0_A0(int idx)
521 int mem_index = (idx >> 2) - 1;
524 tcg_gen_qemu_ld8u(cpu_T[0], cpu_A0, mem_index);
527 tcg_gen_qemu_ld16u(cpu_T[0], cpu_A0, mem_index);
530 tcg_gen_qemu_ld32u(cpu_T[0], cpu_A0, mem_index);
534 tcg_gen_qemu_ld64(cpu_T[0], cpu_A0, mem_index);
539 static inline void gen_op_ldu_T0_A0(int idx)
541 gen_op_ld_T0_A0(idx);
544 static inline void gen_op_ld_T1_A0(int idx)
546 int mem_index = (idx >> 2) - 1;
549 tcg_gen_qemu_ld8u(cpu_T[1], cpu_A0, mem_index);
552 tcg_gen_qemu_ld16u(cpu_T[1], cpu_A0, mem_index);
555 tcg_gen_qemu_ld32u(cpu_T[1], cpu_A0, mem_index);
559 tcg_gen_qemu_ld64(cpu_T[1], cpu_A0, mem_index);
564 static inline void gen_op_st_T0_A0(int idx)
566 int mem_index = (idx >> 2) - 1;
569 tcg_gen_qemu_st8(cpu_T[0], cpu_A0, mem_index);
572 tcg_gen_qemu_st16(cpu_T[0], cpu_A0, mem_index);
575 tcg_gen_qemu_st32(cpu_T[0], cpu_A0, mem_index);
579 tcg_gen_qemu_st64(cpu_T[0], cpu_A0, mem_index);
584 static inline void gen_op_st_T1_A0(int idx)
586 int mem_index = (idx >> 2) - 1;
589 tcg_gen_qemu_st8(cpu_T[1], cpu_A0, mem_index);
592 tcg_gen_qemu_st16(cpu_T[1], cpu_A0, mem_index);
595 tcg_gen_qemu_st32(cpu_T[1], cpu_A0, mem_index);
599 tcg_gen_qemu_st64(cpu_T[1], cpu_A0, mem_index);
604 static inline void gen_jmp_im(target_ulong pc)
606 tcg_gen_movi_tl(cpu_tmp0, pc);
607 tcg_gen_st_tl(cpu_tmp0, cpu_env, offsetof(CPUState, eip));
610 static inline void gen_string_movl_A0_ESI(DisasContext *s)
614 override = s->override;
618 gen_op_movq_A0_seg(override);
619 gen_op_addq_A0_reg_sN(0, R_ESI);
621 gen_op_movq_A0_reg(R_ESI);
627 if (s->addseg && override < 0)
630 gen_op_movl_A0_seg(override);
631 gen_op_addl_A0_reg_sN(0, R_ESI);
633 gen_op_movl_A0_reg(R_ESI);
636 /* 16 address, always override */
639 gen_op_movl_A0_reg(R_ESI);
640 gen_op_andl_A0_ffff();
641 gen_op_addl_A0_seg(override);
645 static inline void gen_string_movl_A0_EDI(DisasContext *s)
649 gen_op_movq_A0_reg(R_EDI);
654 gen_op_movl_A0_seg(R_ES);
655 gen_op_addl_A0_reg_sN(0, R_EDI);
657 gen_op_movl_A0_reg(R_EDI);
660 gen_op_movl_A0_reg(R_EDI);
661 gen_op_andl_A0_ffff();
662 gen_op_addl_A0_seg(R_ES);
666 static GenOpFunc *gen_op_movl_T0_Dshift[4] = {
667 gen_op_movl_T0_Dshiftb,
668 gen_op_movl_T0_Dshiftw,
669 gen_op_movl_T0_Dshiftl,
670 X86_64_ONLY(gen_op_movl_T0_Dshiftq),
673 static GenOpFunc1 *gen_op_jnz_ecx[3] = {
676 X86_64_ONLY(gen_op_jnz_ecxq),
679 static GenOpFunc1 *gen_op_jz_ecx[3] = {
682 X86_64_ONLY(gen_op_jz_ecxq),
685 static GenOpFunc *gen_op_dec_ECX[3] = {
688 X86_64_ONLY(gen_op_decq_ECX),
691 static GenOpFunc1 *gen_op_string_jnz_sub[2][4] = {
696 X86_64_ONLY(gen_op_jnz_subq),
702 X86_64_ONLY(gen_op_jz_subq),
706 static void *helper_in_func[3] = {
712 static void *helper_out_func[3] = {
718 static void *gen_check_io_func[3] = {
724 static void gen_check_io(DisasContext *s, int ot, target_ulong cur_eip,
728 target_ulong next_eip;
731 if (s->pe && (s->cpl > s->iopl || s->vm86)) {
732 if (s->cc_op != CC_OP_DYNAMIC)
733 gen_op_set_cc_op(s->cc_op);
736 tcg_gen_trunc_tl_i32(cpu_tmp2_i32, cpu_T[0]);
737 tcg_gen_helper_0_1(gen_check_io_func[ot],
740 if(s->flags & (1ULL << INTERCEPT_IOIO_PROT)) {
742 if (s->cc_op != CC_OP_DYNAMIC)
743 gen_op_set_cc_op(s->cc_op);
747 svm_flags |= (1 << (4 + ot));
748 next_eip = s->pc - s->cs_base;
749 tcg_gen_trunc_tl_i32(cpu_tmp2_i32, cpu_T[0]);
750 tcg_gen_helper_0_3(helper_svm_check_io,
752 tcg_const_i32(svm_flags),
753 tcg_const_i32(next_eip - cur_eip));
757 static inline void gen_movs(DisasContext *s, int ot)
759 gen_string_movl_A0_ESI(s);
760 gen_op_ld_T0_A0(ot + s->mem_index);
761 gen_string_movl_A0_EDI(s);
762 gen_op_st_T0_A0(ot + s->mem_index);
763 gen_op_movl_T0_Dshift[ot]();
766 gen_op_addq_ESI_T0();
767 gen_op_addq_EDI_T0();
771 gen_op_addl_ESI_T0();
772 gen_op_addl_EDI_T0();
774 gen_op_addw_ESI_T0();
775 gen_op_addw_EDI_T0();
779 static inline void gen_update_cc_op(DisasContext *s)
781 if (s->cc_op != CC_OP_DYNAMIC) {
782 gen_op_set_cc_op(s->cc_op);
783 s->cc_op = CC_OP_DYNAMIC;
787 static void gen_op_update1_cc(void)
789 tcg_gen_discard_tl(cpu_cc_src);
790 tcg_gen_mov_tl(cpu_cc_dst, cpu_T[0]);
793 static void gen_op_update2_cc(void)
795 tcg_gen_mov_tl(cpu_cc_src, cpu_T[1]);
796 tcg_gen_mov_tl(cpu_cc_dst, cpu_T[0]);
799 static inline void gen_op_cmpl_T0_T1_cc(void)
801 tcg_gen_mov_tl(cpu_cc_src, cpu_T[1]);
802 tcg_gen_sub_tl(cpu_cc_dst, cpu_T[0], cpu_T[1]);
805 static inline void gen_op_testl_T0_T1_cc(void)
807 tcg_gen_discard_tl(cpu_cc_src);
808 tcg_gen_and_tl(cpu_cc_dst, cpu_T[0], cpu_T[1]);
811 static void gen_op_update_neg_cc(void)
813 tcg_gen_neg_tl(cpu_cc_src, cpu_T[0]);
814 tcg_gen_mov_tl(cpu_cc_dst, cpu_T[0]);
817 /* XXX: does not work with gdbstub "ice" single step - not a
819 static int gen_jz_ecx_string(DisasContext *s, target_ulong next_eip)
823 l1 = gen_new_label();
824 l2 = gen_new_label();
825 gen_op_jnz_ecx[s->aflag](l1);
827 gen_jmp_tb(s, next_eip, 1);
832 static inline void gen_stos(DisasContext *s, int ot)
834 gen_op_mov_TN_reg(OT_LONG, 0, R_EAX);
835 gen_string_movl_A0_EDI(s);
836 gen_op_st_T0_A0(ot + s->mem_index);
837 gen_op_movl_T0_Dshift[ot]();
840 gen_op_addq_EDI_T0();
844 gen_op_addl_EDI_T0();
846 gen_op_addw_EDI_T0();
850 static inline void gen_lods(DisasContext *s, int ot)
852 gen_string_movl_A0_ESI(s);
853 gen_op_ld_T0_A0(ot + s->mem_index);
854 gen_op_mov_reg_T0(ot, R_EAX);
855 gen_op_movl_T0_Dshift[ot]();
858 gen_op_addq_ESI_T0();
862 gen_op_addl_ESI_T0();
864 gen_op_addw_ESI_T0();
868 static inline void gen_scas(DisasContext *s, int ot)
870 gen_op_mov_TN_reg(OT_LONG, 0, R_EAX);
871 gen_string_movl_A0_EDI(s);
872 gen_op_ld_T1_A0(ot + s->mem_index);
873 gen_op_cmpl_T0_T1_cc();
874 gen_op_movl_T0_Dshift[ot]();
877 gen_op_addq_EDI_T0();
881 gen_op_addl_EDI_T0();
883 gen_op_addw_EDI_T0();
887 static inline void gen_cmps(DisasContext *s, int ot)
889 gen_string_movl_A0_ESI(s);
890 gen_op_ld_T0_A0(ot + s->mem_index);
891 gen_string_movl_A0_EDI(s);
892 gen_op_ld_T1_A0(ot + s->mem_index);
893 gen_op_cmpl_T0_T1_cc();
894 gen_op_movl_T0_Dshift[ot]();
897 gen_op_addq_ESI_T0();
898 gen_op_addq_EDI_T0();
902 gen_op_addl_ESI_T0();
903 gen_op_addl_EDI_T0();
905 gen_op_addw_ESI_T0();
906 gen_op_addw_EDI_T0();
910 static inline void gen_ins(DisasContext *s, int ot)
912 gen_string_movl_A0_EDI(s);
914 gen_op_st_T0_A0(ot + s->mem_index);
915 gen_op_mov_TN_reg(OT_WORD, 1, R_EDX);
916 tcg_gen_trunc_tl_i32(cpu_tmp2_i32, cpu_T[1]);
917 tcg_gen_andi_i32(cpu_tmp2_i32, cpu_tmp2_i32, 0xffff);
918 tcg_gen_helper_1_1(helper_in_func[ot], cpu_T[0], cpu_tmp2_i32);
919 gen_op_st_T0_A0(ot + s->mem_index);
920 gen_op_movl_T0_Dshift[ot]();
923 gen_op_addq_EDI_T0();
927 gen_op_addl_EDI_T0();
929 gen_op_addw_EDI_T0();
933 static inline void gen_outs(DisasContext *s, int ot)
935 gen_string_movl_A0_ESI(s);
936 gen_op_ld_T0_A0(ot + s->mem_index);
938 gen_op_mov_TN_reg(OT_WORD, 1, R_EDX);
939 tcg_gen_trunc_tl_i32(cpu_tmp2_i32, cpu_T[1]);
940 tcg_gen_andi_i32(cpu_tmp2_i32, cpu_tmp2_i32, 0xffff);
941 tcg_gen_trunc_tl_i32(cpu_tmp3_i32, cpu_T[0]);
942 tcg_gen_helper_0_2(helper_out_func[ot], cpu_tmp2_i32, cpu_tmp3_i32);
944 gen_op_movl_T0_Dshift[ot]();
947 gen_op_addq_ESI_T0();
951 gen_op_addl_ESI_T0();
953 gen_op_addw_ESI_T0();
957 /* same method as Valgrind : we generate jumps to current or next
959 #define GEN_REPZ(op) \
960 static inline void gen_repz_ ## op(DisasContext *s, int ot, \
961 target_ulong cur_eip, target_ulong next_eip) \
964 gen_update_cc_op(s); \
965 l2 = gen_jz_ecx_string(s, next_eip); \
967 gen_op_dec_ECX[s->aflag](); \
968 /* a loop would cause two single step exceptions if ECX = 1 \
969 before rep string_insn */ \
971 gen_op_jz_ecx[s->aflag](l2); \
972 gen_jmp(s, cur_eip); \
975 #define GEN_REPZ2(op) \
976 static inline void gen_repz_ ## op(DisasContext *s, int ot, \
977 target_ulong cur_eip, \
978 target_ulong next_eip, \
982 gen_update_cc_op(s); \
983 l2 = gen_jz_ecx_string(s, next_eip); \
985 gen_op_dec_ECX[s->aflag](); \
986 gen_op_set_cc_op(CC_OP_SUBB + ot); \
987 gen_op_string_jnz_sub[nz][ot](l2);\
989 gen_op_jz_ecx[s->aflag](l2); \
990 gen_jmp(s, cur_eip); \
1012 static GenOpFunc1 *gen_jcc_sub[4][8] = {
1043 #ifdef TARGET_X86_64
1046 BUGGY_64(gen_op_jb_subq),
1048 BUGGY_64(gen_op_jbe_subq),
1051 BUGGY_64(gen_op_jl_subq),
1052 BUGGY_64(gen_op_jle_subq),
1056 static GenOpFunc1 *gen_op_loop[3][4] = {
1067 #ifdef TARGET_X86_64
1076 static GenOpFunc *gen_setcc_slow[8] = {
1087 static GenOpFunc *gen_setcc_sub[4][8] = {
1090 gen_op_setb_T0_subb,
1091 gen_op_setz_T0_subb,
1092 gen_op_setbe_T0_subb,
1093 gen_op_sets_T0_subb,
1095 gen_op_setl_T0_subb,
1096 gen_op_setle_T0_subb,
1100 gen_op_setb_T0_subw,
1101 gen_op_setz_T0_subw,
1102 gen_op_setbe_T0_subw,
1103 gen_op_sets_T0_subw,
1105 gen_op_setl_T0_subw,
1106 gen_op_setle_T0_subw,
1110 gen_op_setb_T0_subl,
1111 gen_op_setz_T0_subl,
1112 gen_op_setbe_T0_subl,
1113 gen_op_sets_T0_subl,
1115 gen_op_setl_T0_subl,
1116 gen_op_setle_T0_subl,
1118 #ifdef TARGET_X86_64
1121 gen_op_setb_T0_subq,
1122 gen_op_setz_T0_subq,
1123 gen_op_setbe_T0_subq,
1124 gen_op_sets_T0_subq,
1126 gen_op_setl_T0_subq,
1127 gen_op_setle_T0_subq,
1132 static void *helper_fp_arith_ST0_FT0[8] = {
1133 helper_fadd_ST0_FT0,
1134 helper_fmul_ST0_FT0,
1135 helper_fcom_ST0_FT0,
1136 helper_fcom_ST0_FT0,
1137 helper_fsub_ST0_FT0,
1138 helper_fsubr_ST0_FT0,
1139 helper_fdiv_ST0_FT0,
1140 helper_fdivr_ST0_FT0,
1143 /* NOTE the exception in "r" op ordering */
1144 static void *helper_fp_arith_STN_ST0[8] = {
1145 helper_fadd_STN_ST0,
1146 helper_fmul_STN_ST0,
1149 helper_fsubr_STN_ST0,
1150 helper_fsub_STN_ST0,
1151 helper_fdivr_STN_ST0,
1152 helper_fdiv_STN_ST0,
1155 /* compute eflags.C to reg */
1156 static void gen_compute_eflags_c(TCGv reg)
1158 #if TCG_TARGET_REG_BITS == 32
1159 tcg_gen_shli_i32(cpu_tmp2_i32, cpu_cc_op, 3);
1160 tcg_gen_addi_i32(cpu_tmp2_i32, cpu_tmp2_i32,
1161 (long)cc_table + offsetof(CCTable, compute_c));
1162 tcg_gen_ld_i32(cpu_tmp2_i32, cpu_tmp2_i32, 0);
1163 tcg_gen_call(&tcg_ctx, cpu_tmp2_i32, TCG_CALL_PURE,
1164 1, &cpu_tmp2_i32, 0, NULL);
1166 tcg_gen_extu_i32_tl(cpu_tmp1_i64, cpu_cc_op);
1167 tcg_gen_shli_i64(cpu_tmp1_i64, cpu_tmp1_i64, 4);
1168 tcg_gen_addi_i64(cpu_tmp1_i64, cpu_tmp1_i64,
1169 (long)cc_table + offsetof(CCTable, compute_c));
1170 tcg_gen_ld_i64(cpu_tmp1_i64, cpu_tmp1_i64, 0);
1171 tcg_gen_call(&tcg_ctx, cpu_tmp1_i64, TCG_CALL_PURE,
1172 1, &cpu_tmp2_i32, 0, NULL);
1174 tcg_gen_extu_i32_tl(reg, cpu_tmp2_i32);
1177 /* compute all eflags to cc_src */
1178 static void gen_compute_eflags(TCGv reg)
1180 #if TCG_TARGET_REG_BITS == 32
1181 tcg_gen_shli_i32(cpu_tmp2_i32, cpu_cc_op, 3);
1182 tcg_gen_addi_i32(cpu_tmp2_i32, cpu_tmp2_i32,
1183 (long)cc_table + offsetof(CCTable, compute_all));
1184 tcg_gen_ld_i32(cpu_tmp2_i32, cpu_tmp2_i32, 0);
1185 tcg_gen_call(&tcg_ctx, cpu_tmp2_i32, TCG_CALL_PURE,
1186 1, &cpu_tmp2_i32, 0, NULL);
1188 tcg_gen_extu_i32_tl(cpu_tmp1_i64, cpu_cc_op);
1189 tcg_gen_shli_i64(cpu_tmp1_i64, cpu_tmp1_i64, 4);
1190 tcg_gen_addi_i64(cpu_tmp1_i64, cpu_tmp1_i64,
1191 (long)cc_table + offsetof(CCTable, compute_all));
1192 tcg_gen_ld_i64(cpu_tmp1_i64, cpu_tmp1_i64, 0);
1193 tcg_gen_call(&tcg_ctx, cpu_tmp1_i64, TCG_CALL_PURE,
1194 1, &cpu_tmp2_i32, 0, NULL);
1196 tcg_gen_extu_i32_tl(reg, cpu_tmp2_i32);
1199 /* if d == OR_TMP0, it means memory operand (address in A0) */
1200 static void gen_op(DisasContext *s1, int op, int ot, int d)
1203 gen_op_mov_TN_reg(ot, 0, d);
1205 gen_op_ld_T0_A0(ot + s1->mem_index);
1209 if (s1->cc_op != CC_OP_DYNAMIC)
1210 gen_op_set_cc_op(s1->cc_op);
1211 gen_compute_eflags_c(cpu_tmp4);
1212 tcg_gen_add_tl(cpu_T[0], cpu_T[0], cpu_T[1]);
1213 tcg_gen_add_tl(cpu_T[0], cpu_T[0], cpu_tmp4);
1215 gen_op_mov_reg_T0(ot, d);
1217 gen_op_st_T0_A0(ot + s1->mem_index);
1218 tcg_gen_mov_tl(cpu_cc_src, cpu_T[1]);
1219 tcg_gen_mov_tl(cpu_cc_dst, cpu_T[0]);
1220 tcg_gen_trunc_tl_i32(cpu_tmp2_i32, cpu_tmp4);
1221 tcg_gen_shli_i32(cpu_tmp2_i32, cpu_tmp2_i32, 2);
1222 tcg_gen_addi_i32(cpu_cc_op, cpu_tmp2_i32, CC_OP_ADDB + ot);
1223 s1->cc_op = CC_OP_DYNAMIC;
1226 if (s1->cc_op != CC_OP_DYNAMIC)
1227 gen_op_set_cc_op(s1->cc_op);
1228 gen_compute_eflags_c(cpu_tmp4);
1229 tcg_gen_sub_tl(cpu_T[0], cpu_T[0], cpu_T[1]);
1230 tcg_gen_sub_tl(cpu_T[0], cpu_T[0], cpu_tmp4);
1232 gen_op_mov_reg_T0(ot, d);
1234 gen_op_st_T0_A0(ot + s1->mem_index);
1235 tcg_gen_mov_tl(cpu_cc_src, cpu_T[1]);
1236 tcg_gen_mov_tl(cpu_cc_dst, cpu_T[0]);
1237 tcg_gen_trunc_tl_i32(cpu_tmp2_i32, cpu_tmp4);
1238 tcg_gen_shli_i32(cpu_tmp2_i32, cpu_tmp2_i32, 2);
1239 tcg_gen_addi_i32(cpu_cc_op, cpu_tmp2_i32, CC_OP_SUBB + ot);
1240 s1->cc_op = CC_OP_DYNAMIC;
1243 gen_op_addl_T0_T1();
1245 gen_op_mov_reg_T0(ot, d);
1247 gen_op_st_T0_A0(ot + s1->mem_index);
1248 gen_op_update2_cc();
1249 s1->cc_op = CC_OP_ADDB + ot;
1252 tcg_gen_sub_tl(cpu_T[0], cpu_T[0], cpu_T[1]);
1254 gen_op_mov_reg_T0(ot, d);
1256 gen_op_st_T0_A0(ot + s1->mem_index);
1257 gen_op_update2_cc();
1258 s1->cc_op = CC_OP_SUBB + ot;
1262 tcg_gen_and_tl(cpu_T[0], cpu_T[0], cpu_T[1]);
1264 gen_op_mov_reg_T0(ot, d);
1266 gen_op_st_T0_A0(ot + s1->mem_index);
1267 gen_op_update1_cc();
1268 s1->cc_op = CC_OP_LOGICB + ot;
1271 tcg_gen_or_tl(cpu_T[0], cpu_T[0], cpu_T[1]);
1273 gen_op_mov_reg_T0(ot, d);
1275 gen_op_st_T0_A0(ot + s1->mem_index);
1276 gen_op_update1_cc();
1277 s1->cc_op = CC_OP_LOGICB + ot;
1280 tcg_gen_xor_tl(cpu_T[0], cpu_T[0], cpu_T[1]);
1282 gen_op_mov_reg_T0(ot, d);
1284 gen_op_st_T0_A0(ot + s1->mem_index);
1285 gen_op_update1_cc();
1286 s1->cc_op = CC_OP_LOGICB + ot;
1289 gen_op_cmpl_T0_T1_cc();
1290 s1->cc_op = CC_OP_SUBB + ot;
1295 /* if d == OR_TMP0, it means memory operand (address in A0) */
1296 static void gen_inc(DisasContext *s1, int ot, int d, int c)
1299 gen_op_mov_TN_reg(ot, 0, d);
1301 gen_op_ld_T0_A0(ot + s1->mem_index);
1302 if (s1->cc_op != CC_OP_DYNAMIC)
1303 gen_op_set_cc_op(s1->cc_op);
1305 tcg_gen_addi_tl(cpu_T[0], cpu_T[0], 1);
1306 s1->cc_op = CC_OP_INCB + ot;
1308 tcg_gen_addi_tl(cpu_T[0], cpu_T[0], -1);
1309 s1->cc_op = CC_OP_DECB + ot;
1312 gen_op_mov_reg_T0(ot, d);
1314 gen_op_st_T0_A0(ot + s1->mem_index);
1315 gen_compute_eflags_c(cpu_cc_src);
1316 tcg_gen_mov_tl(cpu_cc_dst, cpu_T[0]);
1319 static void gen_extu(int ot, TCGv reg)
1323 tcg_gen_ext8u_tl(reg, reg);
1326 tcg_gen_ext16u_tl(reg, reg);
1329 tcg_gen_ext32u_tl(reg, reg);
1336 static void gen_exts(int ot, TCGv reg)
1340 tcg_gen_ext8s_tl(reg, reg);
1343 tcg_gen_ext16s_tl(reg, reg);
1346 tcg_gen_ext32s_tl(reg, reg);
1353 /* XXX: add faster immediate case */
1354 static void gen_shift_rm_T1(DisasContext *s, int ot, int op1,
1355 int is_right, int is_arith)
1367 gen_op_ld_T0_A0(ot + s->mem_index);
1369 gen_op_mov_TN_reg(ot, 0, op1);
1371 tcg_gen_andi_tl(cpu_T[1], cpu_T[1], mask);
1373 tcg_gen_addi_tl(cpu_tmp5, cpu_T[1], -1);
1377 gen_exts(ot, cpu_T[0]);
1378 tcg_gen_sar_tl(cpu_T3, cpu_T[0], cpu_tmp5);
1379 tcg_gen_sar_tl(cpu_T[0], cpu_T[0], cpu_T[1]);
1381 gen_extu(ot, cpu_T[0]);
1382 tcg_gen_shr_tl(cpu_T3, cpu_T[0], cpu_tmp5);
1383 tcg_gen_shr_tl(cpu_T[0], cpu_T[0], cpu_T[1]);
1386 tcg_gen_shl_tl(cpu_T3, cpu_T[0], cpu_tmp5);
1387 tcg_gen_shl_tl(cpu_T[0], cpu_T[0], cpu_T[1]);
1392 gen_op_st_T0_A0(ot + s->mem_index);
1394 gen_op_mov_reg_T0(ot, op1);
1396 /* update eflags if non zero shift */
1397 if (s->cc_op != CC_OP_DYNAMIC)
1398 gen_op_set_cc_op(s->cc_op);
1400 shift_label = gen_new_label();
1401 tcg_gen_brcond_tl(TCG_COND_EQ, cpu_T[1], tcg_const_tl(0), shift_label);
1403 tcg_gen_mov_tl(cpu_cc_src, cpu_T3);
1404 tcg_gen_mov_tl(cpu_cc_dst, cpu_T[0]);
1406 tcg_gen_movi_i32(cpu_cc_op, CC_OP_SARB + ot);
1408 tcg_gen_movi_i32(cpu_cc_op, CC_OP_SHLB + ot);
1410 gen_set_label(shift_label);
1411 s->cc_op = CC_OP_DYNAMIC; /* cannot predict flags after */
1414 static inline void tcg_gen_lshift(TCGv ret, TCGv arg1, target_long arg2)
1417 tcg_gen_shli_tl(ret, arg1, arg2);
1419 tcg_gen_shri_tl(ret, arg1, -arg2);
1422 /* XXX: add faster immediate case */
1423 static void gen_rot_rm_T1(DisasContext *s, int ot, int op1,
1427 int label1, label2, data_bits;
1436 gen_op_ld_T0_A0(ot + s->mem_index);
1438 gen_op_mov_TN_reg(ot, 0, op1);
1440 tcg_gen_andi_tl(cpu_T[1], cpu_T[1], mask);
1442 /* Must test zero case to avoid using undefined behaviour in TCG
1444 label1 = gen_new_label();
1445 tcg_gen_brcond_tl(TCG_COND_EQ, cpu_T[1], tcg_const_tl(0), label1);
1448 tcg_gen_andi_tl(cpu_tmp0, cpu_T[1], (1 << (3 + ot)) - 1);
1450 tcg_gen_mov_tl(cpu_tmp0, cpu_T[1]);
1452 gen_extu(ot, cpu_T[0]);
1453 tcg_gen_mov_tl(cpu_T3, cpu_T[0]);
1455 data_bits = 8 << ot;
1456 /* XXX: rely on behaviour of shifts when operand 2 overflows (XXX:
1457 fix TCG definition) */
1459 tcg_gen_shr_tl(cpu_tmp4, cpu_T[0], cpu_tmp0);
1460 tcg_gen_sub_tl(cpu_tmp0, tcg_const_tl(data_bits), cpu_tmp0);
1461 tcg_gen_shl_tl(cpu_T[0], cpu_T[0], cpu_tmp0);
1463 tcg_gen_shl_tl(cpu_tmp4, cpu_T[0], cpu_tmp0);
1464 tcg_gen_sub_tl(cpu_tmp0, tcg_const_tl(data_bits), cpu_tmp0);
1465 tcg_gen_shr_tl(cpu_T[0], cpu_T[0], cpu_tmp0);
1467 tcg_gen_or_tl(cpu_T[0], cpu_T[0], cpu_tmp4);
1469 gen_set_label(label1);
1472 gen_op_st_T0_A0(ot + s->mem_index);
1474 gen_op_mov_reg_T0(ot, op1);
1477 if (s->cc_op != CC_OP_DYNAMIC)
1478 gen_op_set_cc_op(s->cc_op);
1480 label2 = gen_new_label();
1481 tcg_gen_brcond_tl(TCG_COND_EQ, cpu_T[1], tcg_const_tl(0), label2);
1483 gen_compute_eflags(cpu_cc_src);
1484 tcg_gen_andi_tl(cpu_cc_src, cpu_cc_src, ~(CC_O | CC_C));
1485 tcg_gen_xor_tl(cpu_tmp0, cpu_T3, cpu_T[0]);
1486 tcg_gen_lshift(cpu_tmp0, cpu_tmp0, 11 - (data_bits - 1));
1487 tcg_gen_andi_tl(cpu_tmp0, cpu_tmp0, CC_O);
1488 tcg_gen_or_tl(cpu_cc_src, cpu_cc_src, cpu_tmp0);
1490 tcg_gen_shri_tl(cpu_T[0], cpu_T[0], data_bits - 1);
1492 tcg_gen_andi_tl(cpu_T[0], cpu_T[0], CC_C);
1493 tcg_gen_or_tl(cpu_cc_src, cpu_cc_src, cpu_T[0]);
1495 tcg_gen_discard_tl(cpu_cc_dst);
1496 tcg_gen_movi_i32(cpu_cc_op, CC_OP_EFLAGS);
1498 gen_set_label(label2);
1499 s->cc_op = CC_OP_DYNAMIC; /* cannot predict flags after */
1502 static void *helper_rotc[8] = {
1506 X86_64_ONLY(helper_rclq),
1510 X86_64_ONLY(helper_rcrq),
1513 /* XXX: add faster immediate = 1 case */
1514 static void gen_rotc_rm_T1(DisasContext *s, int ot, int op1,
1519 if (s->cc_op != CC_OP_DYNAMIC)
1520 gen_op_set_cc_op(s->cc_op);
1524 gen_op_ld_T0_A0(ot + s->mem_index);
1526 gen_op_mov_TN_reg(ot, 0, op1);
1528 tcg_gen_helper_1_2(helper_rotc[ot + (is_right * 4)],
1529 cpu_T[0], cpu_T[0], cpu_T[1]);
1532 gen_op_st_T0_A0(ot + s->mem_index);
1534 gen_op_mov_reg_T0(ot, op1);
1537 label1 = gen_new_label();
1538 tcg_gen_brcond_tl(TCG_COND_EQ, cpu_T3, tcg_const_tl(-1), label1);
1540 tcg_gen_mov_tl(cpu_cc_src, cpu_T3);
1541 tcg_gen_discard_tl(cpu_cc_dst);
1542 tcg_gen_movi_i32(cpu_cc_op, CC_OP_EFLAGS);
1544 gen_set_label(label1);
1545 s->cc_op = CC_OP_DYNAMIC; /* cannot predict flags after */
1548 /* XXX: add faster immediate case */
1549 static void gen_shiftd_rm_T1_T3(DisasContext *s, int ot, int op1,
1552 int label1, label2, data_bits;
1562 gen_op_ld_T0_A0(ot + s->mem_index);
1564 gen_op_mov_TN_reg(ot, 0, op1);
1566 tcg_gen_andi_tl(cpu_T3, cpu_T3, mask);
1567 /* Must test zero case to avoid using undefined behaviour in TCG
1569 label1 = gen_new_label();
1570 tcg_gen_brcond_tl(TCG_COND_EQ, cpu_T3, tcg_const_tl(0), label1);
1572 tcg_gen_addi_tl(cpu_tmp5, cpu_T3, -1);
1573 if (ot == OT_WORD) {
1574 /* Note: we implement the Intel behaviour for shift count > 16 */
1576 tcg_gen_andi_tl(cpu_T[0], cpu_T[0], 0xffff);
1577 tcg_gen_shli_tl(cpu_tmp0, cpu_T[1], 16);
1578 tcg_gen_or_tl(cpu_T[0], cpu_T[0], cpu_tmp0);
1579 tcg_gen_ext32u_tl(cpu_T[0], cpu_T[0]);
1581 tcg_gen_shr_tl(cpu_tmp4, cpu_T[0], cpu_tmp5);
1583 /* only needed if count > 16, but a test would complicate */
1584 tcg_gen_sub_tl(cpu_tmp5, tcg_const_tl(32), cpu_T3);
1585 tcg_gen_shl_tl(cpu_tmp0, cpu_T[0], cpu_tmp5);
1587 tcg_gen_shr_tl(cpu_T[0], cpu_T[0], cpu_T3);
1589 tcg_gen_or_tl(cpu_T[0], cpu_T[0], cpu_tmp0);
1591 /* XXX: not optimal */
1592 tcg_gen_andi_tl(cpu_T[0], cpu_T[0], 0xffff);
1593 tcg_gen_shli_tl(cpu_T[1], cpu_T[1], 16);
1594 tcg_gen_or_tl(cpu_T[1], cpu_T[1], cpu_T[0]);
1595 tcg_gen_ext32u_tl(cpu_T[1], cpu_T[1]);
1597 tcg_gen_shl_tl(cpu_tmp4, cpu_T[0], cpu_tmp5);
1598 tcg_gen_sub_tl(cpu_tmp0, tcg_const_tl(32), cpu_tmp5);
1599 tcg_gen_shr_tl(cpu_tmp6, cpu_T[1], cpu_tmp0);
1600 tcg_gen_or_tl(cpu_tmp4, cpu_tmp4, cpu_tmp6);
1602 tcg_gen_shl_tl(cpu_T[0], cpu_T[0], cpu_T3);
1603 tcg_gen_sub_tl(cpu_tmp5, tcg_const_tl(32), cpu_T3);
1604 tcg_gen_shr_tl(cpu_T[1], cpu_T[1], cpu_tmp5);
1605 tcg_gen_or_tl(cpu_T[0], cpu_T[0], cpu_T[1]);
1608 data_bits = 8 << ot;
1611 tcg_gen_ext32u_tl(cpu_T[0], cpu_T[0]);
1613 tcg_gen_shr_tl(cpu_tmp4, cpu_T[0], cpu_tmp5);
1615 tcg_gen_shr_tl(cpu_T[0], cpu_T[0], cpu_T3);
1616 tcg_gen_sub_tl(cpu_tmp5, tcg_const_tl(data_bits), cpu_T3);
1617 tcg_gen_shl_tl(cpu_T[1], cpu_T[1], cpu_tmp5);
1618 tcg_gen_or_tl(cpu_T[0], cpu_T[0], cpu_T[1]);
1622 tcg_gen_ext32u_tl(cpu_T[1], cpu_T[1]);
1624 tcg_gen_shl_tl(cpu_tmp4, cpu_T[0], cpu_tmp5);
1626 tcg_gen_shl_tl(cpu_T[0], cpu_T[0], cpu_T3);
1627 tcg_gen_sub_tl(cpu_tmp5, tcg_const_tl(data_bits), cpu_T3);
1628 tcg_gen_shr_tl(cpu_T[1], cpu_T[1], cpu_tmp5);
1629 tcg_gen_or_tl(cpu_T[0], cpu_T[0], cpu_T[1]);
1632 tcg_gen_mov_tl(cpu_T[1], cpu_tmp4);
1634 gen_set_label(label1);
1637 gen_op_st_T0_A0(ot + s->mem_index);
1639 gen_op_mov_reg_T0(ot, op1);
1642 if (s->cc_op != CC_OP_DYNAMIC)
1643 gen_op_set_cc_op(s->cc_op);
1645 label2 = gen_new_label();
1646 tcg_gen_brcond_tl(TCG_COND_EQ, cpu_T3, tcg_const_tl(0), label2);
1648 tcg_gen_mov_tl(cpu_cc_src, cpu_T[1]);
1649 tcg_gen_mov_tl(cpu_cc_dst, cpu_T[0]);
1651 tcg_gen_movi_i32(cpu_cc_op, CC_OP_SARB + ot);
1653 tcg_gen_movi_i32(cpu_cc_op, CC_OP_SHLB + ot);
1655 gen_set_label(label2);
1656 s->cc_op = CC_OP_DYNAMIC; /* cannot predict flags after */
1659 static void gen_shift(DisasContext *s1, int op, int ot, int d, int s)
1662 gen_op_mov_TN_reg(ot, 1, s);
1665 gen_rot_rm_T1(s1, ot, d, 0);
1668 gen_rot_rm_T1(s1, ot, d, 1);
1672 gen_shift_rm_T1(s1, ot, d, 0, 0);
1675 gen_shift_rm_T1(s1, ot, d, 1, 0);
1678 gen_shift_rm_T1(s1, ot, d, 1, 1);
1681 gen_rotc_rm_T1(s1, ot, d, 0);
1684 gen_rotc_rm_T1(s1, ot, d, 1);
1689 static void gen_shifti(DisasContext *s1, int op, int ot, int d, int c)
1691 /* currently not optimized */
1692 gen_op_movl_T1_im(c);
1693 gen_shift(s1, op, ot, d, OR_TMP1);
1696 static void gen_lea_modrm(DisasContext *s, int modrm, int *reg_ptr, int *offset_ptr)
1704 int mod, rm, code, override, must_add_seg;
1706 override = s->override;
1707 must_add_seg = s->addseg;
1710 mod = (modrm >> 6) & 3;
1722 code = ldub_code(s->pc++);
1723 scale = (code >> 6) & 3;
1724 index = ((code >> 3) & 7) | REX_X(s);
1731 if ((base & 7) == 5) {
1733 disp = (int32_t)ldl_code(s->pc);
1735 if (CODE64(s) && !havesib) {
1736 disp += s->pc + s->rip_offset;
1743 disp = (int8_t)ldub_code(s->pc++);
1747 disp = ldl_code(s->pc);
1753 /* for correct popl handling with esp */
1754 if (base == 4 && s->popl_esp_hack)
1755 disp += s->popl_esp_hack;
1756 #ifdef TARGET_X86_64
1757 if (s->aflag == 2) {
1758 gen_op_movq_A0_reg(base);
1760 gen_op_addq_A0_im(disp);
1765 gen_op_movl_A0_reg(base);
1767 gen_op_addl_A0_im(disp);
1770 #ifdef TARGET_X86_64
1771 if (s->aflag == 2) {
1772 gen_op_movq_A0_im(disp);
1776 gen_op_movl_A0_im(disp);
1779 /* XXX: index == 4 is always invalid */
1780 if (havesib && (index != 4 || scale != 0)) {
1781 #ifdef TARGET_X86_64
1782 if (s->aflag == 2) {
1783 gen_op_addq_A0_reg_sN(scale, index);
1787 gen_op_addl_A0_reg_sN(scale, index);
1792 if (base == R_EBP || base == R_ESP)
1797 #ifdef TARGET_X86_64
1798 if (s->aflag == 2) {
1799 gen_op_addq_A0_seg(override);
1803 gen_op_addl_A0_seg(override);
1810 disp = lduw_code(s->pc);
1812 gen_op_movl_A0_im(disp);
1813 rm = 0; /* avoid SS override */
1820 disp = (int8_t)ldub_code(s->pc++);
1824 disp = lduw_code(s->pc);
1830 gen_op_movl_A0_reg(R_EBX);
1831 gen_op_addl_A0_reg_sN(0, R_ESI);
1834 gen_op_movl_A0_reg(R_EBX);
1835 gen_op_addl_A0_reg_sN(0, R_EDI);
1838 gen_op_movl_A0_reg(R_EBP);
1839 gen_op_addl_A0_reg_sN(0, R_ESI);
1842 gen_op_movl_A0_reg(R_EBP);
1843 gen_op_addl_A0_reg_sN(0, R_EDI);
1846 gen_op_movl_A0_reg(R_ESI);
1849 gen_op_movl_A0_reg(R_EDI);
1852 gen_op_movl_A0_reg(R_EBP);
1856 gen_op_movl_A0_reg(R_EBX);
1860 gen_op_addl_A0_im(disp);
1861 gen_op_andl_A0_ffff();
1865 if (rm == 2 || rm == 3 || rm == 6)
1870 gen_op_addl_A0_seg(override);
1880 static void gen_nop_modrm(DisasContext *s, int modrm)
1882 int mod, rm, base, code;
1884 mod = (modrm >> 6) & 3;
1894 code = ldub_code(s->pc++);
1930 /* used for LEA and MOV AX, mem */
1931 static void gen_add_A0_ds_seg(DisasContext *s)
1933 int override, must_add_seg;
1934 must_add_seg = s->addseg;
1936 if (s->override >= 0) {
1937 override = s->override;
1943 #ifdef TARGET_X86_64
1945 gen_op_addq_A0_seg(override);
1949 gen_op_addl_A0_seg(override);
1954 /* generate modrm memory load or store of 'reg'. TMP0 is used if reg !=
1956 static void gen_ldst_modrm(DisasContext *s, int modrm, int ot, int reg, int is_store)
1958 int mod, rm, opreg, disp;
1960 mod = (modrm >> 6) & 3;
1961 rm = (modrm & 7) | REX_B(s);
1965 gen_op_mov_TN_reg(ot, 0, reg);
1966 gen_op_mov_reg_T0(ot, rm);
1968 gen_op_mov_TN_reg(ot, 0, rm);
1970 gen_op_mov_reg_T0(ot, reg);
1973 gen_lea_modrm(s, modrm, &opreg, &disp);
1976 gen_op_mov_TN_reg(ot, 0, reg);
1977 gen_op_st_T0_A0(ot + s->mem_index);
1979 gen_op_ld_T0_A0(ot + s->mem_index);
1981 gen_op_mov_reg_T0(ot, reg);
1986 static inline uint32_t insn_get(DisasContext *s, int ot)
1992 ret = ldub_code(s->pc);
1996 ret = lduw_code(s->pc);
2001 ret = ldl_code(s->pc);
2008 static inline int insn_const_size(unsigned int ot)
2016 static inline void gen_goto_tb(DisasContext *s, int tb_num, target_ulong eip)
2018 TranslationBlock *tb;
2021 pc = s->cs_base + eip;
2023 /* NOTE: we handle the case where the TB spans two pages here */
2024 if ((pc & TARGET_PAGE_MASK) == (tb->pc & TARGET_PAGE_MASK) ||
2025 (pc & TARGET_PAGE_MASK) == ((s->pc - 1) & TARGET_PAGE_MASK)) {
2026 /* jump to same page: we can use a direct jump */
2027 tcg_gen_goto_tb(tb_num);
2029 tcg_gen_exit_tb((long)tb + tb_num);
2031 /* jump to another page: currently not optimized */
2037 static inline void gen_jcc(DisasContext *s, int b,
2038 target_ulong val, target_ulong next_eip)
2040 TranslationBlock *tb;
2047 jcc_op = (b >> 1) & 7;
2051 /* we optimize the cmp/jcc case */
2056 func = gen_jcc_sub[s->cc_op - CC_OP_SUBB][jcc_op];
2059 /* some jumps are easy to compute */
2101 func = gen_jcc_sub[(s->cc_op - CC_OP_ADDB) % 4][jcc_op];
2104 func = gen_jcc_sub[(s->cc_op - CC_OP_ADDB) % 4][jcc_op];
2116 if (s->cc_op != CC_OP_DYNAMIC) {
2117 gen_op_set_cc_op(s->cc_op);
2118 s->cc_op = CC_OP_DYNAMIC;
2122 gen_setcc_slow[jcc_op]();
2123 func = gen_op_jnz_T0_label;
2133 l1 = gen_new_label();
2136 gen_goto_tb(s, 0, next_eip);
2139 gen_goto_tb(s, 1, val);
2144 if (s->cc_op != CC_OP_DYNAMIC) {
2145 gen_op_set_cc_op(s->cc_op);
2146 s->cc_op = CC_OP_DYNAMIC;
2148 gen_setcc_slow[jcc_op]();
2154 l1 = gen_new_label();
2155 l2 = gen_new_label();
2156 gen_op_jnz_T0_label(l1);
2157 gen_jmp_im(next_eip);
2158 gen_op_jmp_label(l2);
2166 static void gen_setcc(DisasContext *s, int b)
2172 jcc_op = (b >> 1) & 7;
2174 /* we optimize the cmp/jcc case */
2179 func = gen_setcc_sub[s->cc_op - CC_OP_SUBB][jcc_op];
2184 /* some jumps are easy to compute */
2211 func = gen_setcc_sub[(s->cc_op - CC_OP_ADDB) % 4][jcc_op];
2214 func = gen_setcc_sub[(s->cc_op - CC_OP_ADDB) % 4][jcc_op];
2222 if (s->cc_op != CC_OP_DYNAMIC)
2223 gen_op_set_cc_op(s->cc_op);
2224 func = gen_setcc_slow[jcc_op];
2233 /* move T0 to seg_reg and compute if the CPU state may change. Never
2234 call this function with seg_reg == R_CS */
2235 static void gen_movl_seg_T0(DisasContext *s, int seg_reg, target_ulong cur_eip)
2237 if (s->pe && !s->vm86) {
2238 /* XXX: optimize by finding processor state dynamically */
2239 if (s->cc_op != CC_OP_DYNAMIC)
2240 gen_op_set_cc_op(s->cc_op);
2241 gen_jmp_im(cur_eip);
2242 tcg_gen_trunc_tl_i32(cpu_tmp2_i32, cpu_T[0]);
2243 tcg_gen_helper_0_2(helper_load_seg, tcg_const_i32(seg_reg), cpu_tmp2_i32);
2244 /* abort translation because the addseg value may change or
2245 because ss32 may change. For R_SS, translation must always
2246 stop as a special handling must be done to disable hardware
2247 interrupts for the next instruction */
2248 if (seg_reg == R_SS || (s->code32 && seg_reg < R_FS))
2251 gen_op_movl_seg_T0_vm(offsetof(CPUX86State,segs[seg_reg]));
2252 if (seg_reg == R_SS)
2257 static inline int svm_is_rep(int prefixes)
2259 return ((prefixes & (PREFIX_REPZ | PREFIX_REPNZ)) ? 8 : 0);
2263 gen_svm_check_intercept_param(DisasContext *s, target_ulong pc_start,
2264 uint32_t type, uint64_t param)
2266 if(!(s->flags & (INTERCEPT_SVM_MASK)))
2267 /* no SVM activated */
2270 /* CRx and DRx reads/writes */
2271 case SVM_EXIT_READ_CR0 ... SVM_EXIT_EXCP_BASE - 1:
2272 if (s->cc_op != CC_OP_DYNAMIC) {
2273 gen_op_set_cc_op(s->cc_op);
2275 gen_jmp_im(pc_start - s->cs_base);
2276 tcg_gen_helper_0_2(helper_svm_check_intercept_param,
2277 tcg_const_i32(type), tcg_const_i64(param));
2278 /* this is a special case as we do not know if the interception occurs
2279 so we assume there was none */
2282 if(s->flags & (1ULL << INTERCEPT_MSR_PROT)) {
2283 if (s->cc_op != CC_OP_DYNAMIC) {
2284 gen_op_set_cc_op(s->cc_op);
2286 gen_jmp_im(pc_start - s->cs_base);
2287 tcg_gen_helper_0_2(helper_svm_check_intercept_param,
2288 tcg_const_i32(type), tcg_const_i64(param));
2289 /* this is a special case as we do not know if the interception occurs
2290 so we assume there was none */
2295 if(s->flags & (1ULL << ((type - SVM_EXIT_INTR) + INTERCEPT_INTR))) {
2296 if (s->cc_op != CC_OP_DYNAMIC) {
2297 gen_op_set_cc_op(s->cc_op);
2299 gen_jmp_im(pc_start - s->cs_base);
2300 tcg_gen_helper_0_2(helper_vmexit,
2301 tcg_const_i32(type), tcg_const_i64(param));
2302 /* we can optimize this one so TBs don't get longer
2303 than up to vmexit */
2312 gen_svm_check_intercept(DisasContext *s, target_ulong pc_start, uint64_t type)
2314 return gen_svm_check_intercept_param(s, pc_start, type, 0);
2317 static inline void gen_stack_update(DisasContext *s, int addend)
2319 #ifdef TARGET_X86_64
2321 gen_op_addq_ESP_im(addend);
2325 gen_op_addl_ESP_im(addend);
2327 gen_op_addw_ESP_im(addend);
2331 /* generate a push. It depends on ss32, addseg and dflag */
2332 static void gen_push_T0(DisasContext *s)
2334 #ifdef TARGET_X86_64
2336 gen_op_movq_A0_reg(R_ESP);
2338 gen_op_addq_A0_im(-8);
2339 gen_op_st_T0_A0(OT_QUAD + s->mem_index);
2341 gen_op_addq_A0_im(-2);
2342 gen_op_st_T0_A0(OT_WORD + s->mem_index);
2344 gen_op_mov_reg_A0(2, R_ESP);
2348 gen_op_movl_A0_reg(R_ESP);
2350 gen_op_addl_A0_im(-2);
2352 gen_op_addl_A0_im(-4);
2355 tcg_gen_mov_tl(cpu_T[1], cpu_A0);
2356 gen_op_addl_A0_seg(R_SS);
2359 gen_op_andl_A0_ffff();
2360 tcg_gen_mov_tl(cpu_T[1], cpu_A0);
2361 gen_op_addl_A0_seg(R_SS);
2363 gen_op_st_T0_A0(s->dflag + 1 + s->mem_index);
2364 if (s->ss32 && !s->addseg)
2365 gen_op_mov_reg_A0(1, R_ESP);
2367 gen_op_mov_reg_T1(s->ss32 + 1, R_ESP);
2371 /* generate a push. It depends on ss32, addseg and dflag */
2372 /* slower version for T1, only used for call Ev */
2373 static void gen_push_T1(DisasContext *s)
2375 #ifdef TARGET_X86_64
2377 gen_op_movq_A0_reg(R_ESP);
2379 gen_op_addq_A0_im(-8);
2380 gen_op_st_T1_A0(OT_QUAD + s->mem_index);
2382 gen_op_addq_A0_im(-2);
2383 gen_op_st_T0_A0(OT_WORD + s->mem_index);
2385 gen_op_mov_reg_A0(2, R_ESP);
2389 gen_op_movl_A0_reg(R_ESP);
2391 gen_op_addl_A0_im(-2);
2393 gen_op_addl_A0_im(-4);
2396 gen_op_addl_A0_seg(R_SS);
2399 gen_op_andl_A0_ffff();
2400 gen_op_addl_A0_seg(R_SS);
2402 gen_op_st_T1_A0(s->dflag + 1 + s->mem_index);
2404 if (s->ss32 && !s->addseg)
2405 gen_op_mov_reg_A0(1, R_ESP);
2407 gen_stack_update(s, (-2) << s->dflag);
2411 /* two step pop is necessary for precise exceptions */
2412 static void gen_pop_T0(DisasContext *s)
2414 #ifdef TARGET_X86_64
2416 gen_op_movq_A0_reg(R_ESP);
2417 gen_op_ld_T0_A0((s->dflag ? OT_QUAD : OT_WORD) + s->mem_index);
2421 gen_op_movl_A0_reg(R_ESP);
2424 gen_op_addl_A0_seg(R_SS);
2426 gen_op_andl_A0_ffff();
2427 gen_op_addl_A0_seg(R_SS);
2429 gen_op_ld_T0_A0(s->dflag + 1 + s->mem_index);
2433 static void gen_pop_update(DisasContext *s)
2435 #ifdef TARGET_X86_64
2436 if (CODE64(s) && s->dflag) {
2437 gen_stack_update(s, 8);
2441 gen_stack_update(s, 2 << s->dflag);
2445 static void gen_stack_A0(DisasContext *s)
2447 gen_op_movl_A0_reg(R_ESP);
2449 gen_op_andl_A0_ffff();
2450 tcg_gen_mov_tl(cpu_T[1], cpu_A0);
2452 gen_op_addl_A0_seg(R_SS);
2455 /* NOTE: wrap around in 16 bit not fully handled */
2456 static void gen_pusha(DisasContext *s)
2459 gen_op_movl_A0_reg(R_ESP);
2460 gen_op_addl_A0_im(-16 << s->dflag);
2462 gen_op_andl_A0_ffff();
2463 tcg_gen_mov_tl(cpu_T[1], cpu_A0);
2465 gen_op_addl_A0_seg(R_SS);
2466 for(i = 0;i < 8; i++) {
2467 gen_op_mov_TN_reg(OT_LONG, 0, 7 - i);
2468 gen_op_st_T0_A0(OT_WORD + s->dflag + s->mem_index);
2469 gen_op_addl_A0_im(2 << s->dflag);
2471 gen_op_mov_reg_T1(OT_WORD + s->ss32, R_ESP);
2474 /* NOTE: wrap around in 16 bit not fully handled */
2475 static void gen_popa(DisasContext *s)
2478 gen_op_movl_A0_reg(R_ESP);
2480 gen_op_andl_A0_ffff();
2481 tcg_gen_mov_tl(cpu_T[1], cpu_A0);
2482 tcg_gen_addi_tl(cpu_T[1], cpu_T[1], 16 << s->dflag);
2484 gen_op_addl_A0_seg(R_SS);
2485 for(i = 0;i < 8; i++) {
2486 /* ESP is not reloaded */
2488 gen_op_ld_T0_A0(OT_WORD + s->dflag + s->mem_index);
2489 gen_op_mov_reg_T0(OT_WORD + s->dflag, 7 - i);
2491 gen_op_addl_A0_im(2 << s->dflag);
2493 gen_op_mov_reg_T1(OT_WORD + s->ss32, R_ESP);
2496 static void gen_enter(DisasContext *s, int esp_addend, int level)
2501 #ifdef TARGET_X86_64
2503 ot = s->dflag ? OT_QUAD : OT_WORD;
2506 gen_op_movl_A0_reg(R_ESP);
2507 gen_op_addq_A0_im(-opsize);
2508 tcg_gen_mov_tl(cpu_T[1], cpu_A0);
2511 gen_op_mov_TN_reg(OT_LONG, 0, R_EBP);
2512 gen_op_st_T0_A0(ot + s->mem_index);
2514 /* XXX: must save state */
2515 tcg_gen_helper_0_3(helper_enter64_level,
2516 tcg_const_i32(level),
2517 tcg_const_i32((ot == OT_QUAD)),
2520 gen_op_mov_reg_T1(ot, R_EBP);
2521 tcg_gen_addi_tl(cpu_T[1], cpu_T[1], -esp_addend + (-opsize * level));
2522 gen_op_mov_reg_T1(OT_QUAD, R_ESP);
2526 ot = s->dflag + OT_WORD;
2527 opsize = 2 << s->dflag;
2529 gen_op_movl_A0_reg(R_ESP);
2530 gen_op_addl_A0_im(-opsize);
2532 gen_op_andl_A0_ffff();
2533 tcg_gen_mov_tl(cpu_T[1], cpu_A0);
2535 gen_op_addl_A0_seg(R_SS);
2537 gen_op_mov_TN_reg(OT_LONG, 0, R_EBP);
2538 gen_op_st_T0_A0(ot + s->mem_index);
2540 /* XXX: must save state */
2541 tcg_gen_helper_0_3(helper_enter_level,
2542 tcg_const_i32(level),
2543 tcg_const_i32(s->dflag),
2546 gen_op_mov_reg_T1(ot, R_EBP);
2547 tcg_gen_addi_tl(cpu_T[1], cpu_T[1], -esp_addend + (-opsize * level));
2548 gen_op_mov_reg_T1(OT_WORD + s->ss32, R_ESP);
2552 static void gen_exception(DisasContext *s, int trapno, target_ulong cur_eip)
2554 if (s->cc_op != CC_OP_DYNAMIC)
2555 gen_op_set_cc_op(s->cc_op);
2556 gen_jmp_im(cur_eip);
2557 tcg_gen_helper_0_1(helper_raise_exception, tcg_const_i32(trapno));
2561 /* an interrupt is different from an exception because of the
2563 static void gen_interrupt(DisasContext *s, int intno,
2564 target_ulong cur_eip, target_ulong next_eip)
2566 if (s->cc_op != CC_OP_DYNAMIC)
2567 gen_op_set_cc_op(s->cc_op);
2568 gen_jmp_im(cur_eip);
2569 tcg_gen_helper_0_2(helper_raise_interrupt,
2570 tcg_const_i32(intno),
2571 tcg_const_i32(next_eip - cur_eip));
2575 static void gen_debug(DisasContext *s, target_ulong cur_eip)
2577 if (s->cc_op != CC_OP_DYNAMIC)
2578 gen_op_set_cc_op(s->cc_op);
2579 gen_jmp_im(cur_eip);
2580 tcg_gen_helper_0_0(helper_debug);
2584 /* generate a generic end of block. Trace exception is also generated
2586 static void gen_eob(DisasContext *s)
2588 if (s->cc_op != CC_OP_DYNAMIC)
2589 gen_op_set_cc_op(s->cc_op);
2590 if (s->tb->flags & HF_INHIBIT_IRQ_MASK) {
2591 tcg_gen_helper_0_0(helper_reset_inhibit_irq);
2593 if (s->singlestep_enabled) {
2594 tcg_gen_helper_0_0(helper_debug);
2596 tcg_gen_helper_0_0(helper_single_step);
2603 /* generate a jump to eip. No segment change must happen before as a
2604 direct call to the next block may occur */
2605 static void gen_jmp_tb(DisasContext *s, target_ulong eip, int tb_num)
2608 if (s->cc_op != CC_OP_DYNAMIC) {
2609 gen_op_set_cc_op(s->cc_op);
2610 s->cc_op = CC_OP_DYNAMIC;
2612 gen_goto_tb(s, tb_num, eip);
2620 static void gen_jmp(DisasContext *s, target_ulong eip)
2622 gen_jmp_tb(s, eip, 0);
2625 static inline void gen_ldq_env_A0(int idx, int offset)
2627 int mem_index = (idx >> 2) - 1;
2628 tcg_gen_qemu_ld64(cpu_tmp1_i64, cpu_A0, mem_index);
2629 tcg_gen_st_i64(cpu_tmp1_i64, cpu_env, offset);
2632 static inline void gen_stq_env_A0(int idx, int offset)
2634 int mem_index = (idx >> 2) - 1;
2635 tcg_gen_ld_i64(cpu_tmp1_i64, cpu_env, offset);
2636 tcg_gen_qemu_st64(cpu_tmp1_i64, cpu_A0, mem_index);
2639 static inline void gen_ldo_env_A0(int idx, int offset)
2641 int mem_index = (idx >> 2) - 1;
2642 tcg_gen_qemu_ld64(cpu_tmp1_i64, cpu_A0, mem_index);
2643 tcg_gen_st_i64(cpu_tmp1_i64, cpu_env, offset + offsetof(XMMReg, XMM_Q(0)));
2644 tcg_gen_addi_tl(cpu_tmp0, cpu_A0, 8);
2645 tcg_gen_qemu_ld64(cpu_tmp1_i64, cpu_tmp0, mem_index);
2646 tcg_gen_st_i64(cpu_tmp1_i64, cpu_env, offset + offsetof(XMMReg, XMM_Q(1)));
2649 static inline void gen_sto_env_A0(int idx, int offset)
2651 int mem_index = (idx >> 2) - 1;
2652 tcg_gen_ld_i64(cpu_tmp1_i64, cpu_env, offset + offsetof(XMMReg, XMM_Q(0)));
2653 tcg_gen_qemu_st64(cpu_tmp1_i64, cpu_A0, mem_index);
2654 tcg_gen_addi_tl(cpu_tmp0, cpu_A0, 8);
2655 tcg_gen_ld_i64(cpu_tmp1_i64, cpu_env, offset + offsetof(XMMReg, XMM_Q(1)));
2656 tcg_gen_qemu_st64(cpu_tmp1_i64, cpu_tmp0, mem_index);
2659 static inline void gen_op_movo(int d_offset, int s_offset)
2661 tcg_gen_ld_i64(cpu_tmp1_i64, cpu_env, s_offset);
2662 tcg_gen_st_i64(cpu_tmp1_i64, cpu_env, d_offset);
2663 tcg_gen_ld_i64(cpu_tmp1_i64, cpu_env, s_offset + 8);
2664 tcg_gen_st_i64(cpu_tmp1_i64, cpu_env, d_offset + 8);
2667 static inline void gen_op_movq(int d_offset, int s_offset)
2669 tcg_gen_ld_i64(cpu_tmp1_i64, cpu_env, s_offset);
2670 tcg_gen_st_i64(cpu_tmp1_i64, cpu_env, d_offset);
2673 static inline void gen_op_movl(int d_offset, int s_offset)
2675 tcg_gen_ld_i32(cpu_tmp2_i32, cpu_env, s_offset);
2676 tcg_gen_st_i32(cpu_tmp2_i32, cpu_env, d_offset);
2679 static inline void gen_op_movq_env_0(int d_offset)
2681 tcg_gen_movi_i64(cpu_tmp1_i64, 0);
2682 tcg_gen_st_i64(cpu_tmp1_i64, cpu_env, d_offset);
2685 #define SSE_SPECIAL ((void *)1)
2686 #define SSE_DUMMY ((void *)2)
2688 #define MMX_OP2(x) { helper_ ## x ## _mmx, helper_ ## x ## _xmm }
2689 #define SSE_FOP(x) { helper_ ## x ## ps, helper_ ## x ## pd, \
2690 helper_ ## x ## ss, helper_ ## x ## sd, }
2692 static void *sse_op_table1[256][4] = {
2693 /* 3DNow! extensions */
2694 [0x0e] = { SSE_DUMMY }, /* femms */
2695 [0x0f] = { SSE_DUMMY }, /* pf... */
2696 /* pure SSE operations */
2697 [0x10] = { SSE_SPECIAL, SSE_SPECIAL, SSE_SPECIAL, SSE_SPECIAL }, /* movups, movupd, movss, movsd */
2698 [0x11] = { SSE_SPECIAL, SSE_SPECIAL, SSE_SPECIAL, SSE_SPECIAL }, /* movups, movupd, movss, movsd */
2699 [0x12] = { SSE_SPECIAL, SSE_SPECIAL, SSE_SPECIAL, SSE_SPECIAL }, /* movlps, movlpd, movsldup, movddup */
2700 [0x13] = { SSE_SPECIAL, SSE_SPECIAL }, /* movlps, movlpd */
2701 [0x14] = { helper_punpckldq_xmm, helper_punpcklqdq_xmm },
2702 [0x15] = { helper_punpckhdq_xmm, helper_punpckhqdq_xmm },
2703 [0x16] = { SSE_SPECIAL, SSE_SPECIAL, SSE_SPECIAL }, /* movhps, movhpd, movshdup */
2704 [0x17] = { SSE_SPECIAL, SSE_SPECIAL }, /* movhps, movhpd */
2706 [0x28] = { SSE_SPECIAL, SSE_SPECIAL }, /* movaps, movapd */
2707 [0x29] = { SSE_SPECIAL, SSE_SPECIAL }, /* movaps, movapd */
2708 [0x2a] = { SSE_SPECIAL, SSE_SPECIAL, SSE_SPECIAL, SSE_SPECIAL }, /* cvtpi2ps, cvtpi2pd, cvtsi2ss, cvtsi2sd */
2709 [0x2b] = { SSE_SPECIAL, SSE_SPECIAL }, /* movntps, movntpd */
2710 [0x2c] = { SSE_SPECIAL, SSE_SPECIAL, SSE_SPECIAL, SSE_SPECIAL }, /* cvttps2pi, cvttpd2pi, cvttsd2si, cvttss2si */
2711 [0x2d] = { SSE_SPECIAL, SSE_SPECIAL, SSE_SPECIAL, SSE_SPECIAL }, /* cvtps2pi, cvtpd2pi, cvtsd2si, cvtss2si */
2712 [0x2e] = { helper_ucomiss, helper_ucomisd },
2713 [0x2f] = { helper_comiss, helper_comisd },
2714 [0x50] = { SSE_SPECIAL, SSE_SPECIAL }, /* movmskps, movmskpd */
2715 [0x51] = SSE_FOP(sqrt),
2716 [0x52] = { helper_rsqrtps, NULL, helper_rsqrtss, NULL },
2717 [0x53] = { helper_rcpps, NULL, helper_rcpss, NULL },
2718 [0x54] = { helper_pand_xmm, helper_pand_xmm }, /* andps, andpd */
2719 [0x55] = { helper_pandn_xmm, helper_pandn_xmm }, /* andnps, andnpd */
2720 [0x56] = { helper_por_xmm, helper_por_xmm }, /* orps, orpd */
2721 [0x57] = { helper_pxor_xmm, helper_pxor_xmm }, /* xorps, xorpd */
2722 [0x58] = SSE_FOP(add),
2723 [0x59] = SSE_FOP(mul),
2724 [0x5a] = { helper_cvtps2pd, helper_cvtpd2ps,
2725 helper_cvtss2sd, helper_cvtsd2ss },
2726 [0x5b] = { helper_cvtdq2ps, helper_cvtps2dq, helper_cvttps2dq },
2727 [0x5c] = SSE_FOP(sub),
2728 [0x5d] = SSE_FOP(min),
2729 [0x5e] = SSE_FOP(div),
2730 [0x5f] = SSE_FOP(max),
2732 [0xc2] = SSE_FOP(cmpeq),
2733 [0xc6] = { helper_shufps, helper_shufpd },
2735 /* MMX ops and their SSE extensions */
2736 [0x60] = MMX_OP2(punpcklbw),
2737 [0x61] = MMX_OP2(punpcklwd),
2738 [0x62] = MMX_OP2(punpckldq),
2739 [0x63] = MMX_OP2(packsswb),
2740 [0x64] = MMX_OP2(pcmpgtb),
2741 [0x65] = MMX_OP2(pcmpgtw),
2742 [0x66] = MMX_OP2(pcmpgtl),
2743 [0x67] = MMX_OP2(packuswb),
2744 [0x68] = MMX_OP2(punpckhbw),
2745 [0x69] = MMX_OP2(punpckhwd),
2746 [0x6a] = MMX_OP2(punpckhdq),
2747 [0x6b] = MMX_OP2(packssdw),
2748 [0x6c] = { NULL, helper_punpcklqdq_xmm },
2749 [0x6d] = { NULL, helper_punpckhqdq_xmm },
2750 [0x6e] = { SSE_SPECIAL, SSE_SPECIAL }, /* movd mm, ea */
2751 [0x6f] = { SSE_SPECIAL, SSE_SPECIAL, SSE_SPECIAL }, /* movq, movdqa, , movqdu */
2752 [0x70] = { helper_pshufw_mmx,
2755 helper_pshuflw_xmm },
2756 [0x71] = { SSE_SPECIAL, SSE_SPECIAL }, /* shiftw */
2757 [0x72] = { SSE_SPECIAL, SSE_SPECIAL }, /* shiftd */
2758 [0x73] = { SSE_SPECIAL, SSE_SPECIAL }, /* shiftq */
2759 [0x74] = MMX_OP2(pcmpeqb),
2760 [0x75] = MMX_OP2(pcmpeqw),
2761 [0x76] = MMX_OP2(pcmpeql),
2762 [0x77] = { SSE_DUMMY }, /* emms */
2763 [0x7c] = { NULL, helper_haddpd, NULL, helper_haddps },
2764 [0x7d] = { NULL, helper_hsubpd, NULL, helper_hsubps },
2765 [0x7e] = { SSE_SPECIAL, SSE_SPECIAL, SSE_SPECIAL }, /* movd, movd, , movq */
2766 [0x7f] = { SSE_SPECIAL, SSE_SPECIAL, SSE_SPECIAL }, /* movq, movdqa, movdqu */
2767 [0xc4] = { SSE_SPECIAL, SSE_SPECIAL }, /* pinsrw */
2768 [0xc5] = { SSE_SPECIAL, SSE_SPECIAL }, /* pextrw */
2769 [0xd0] = { NULL, helper_addsubpd, NULL, helper_addsubps },
2770 [0xd1] = MMX_OP2(psrlw),
2771 [0xd2] = MMX_OP2(psrld),
2772 [0xd3] = MMX_OP2(psrlq),
2773 [0xd4] = MMX_OP2(paddq),
2774 [0xd5] = MMX_OP2(pmullw),
2775 [0xd6] = { NULL, SSE_SPECIAL, SSE_SPECIAL, SSE_SPECIAL },
2776 [0xd7] = { SSE_SPECIAL, SSE_SPECIAL }, /* pmovmskb */
2777 [0xd8] = MMX_OP2(psubusb),
2778 [0xd9] = MMX_OP2(psubusw),
2779 [0xda] = MMX_OP2(pminub),
2780 [0xdb] = MMX_OP2(pand),
2781 [0xdc] = MMX_OP2(paddusb),
2782 [0xdd] = MMX_OP2(paddusw),
2783 [0xde] = MMX_OP2(pmaxub),
2784 [0xdf] = MMX_OP2(pandn),
2785 [0xe0] = MMX_OP2(pavgb),
2786 [0xe1] = MMX_OP2(psraw),
2787 [0xe2] = MMX_OP2(psrad),
2788 [0xe3] = MMX_OP2(pavgw),
2789 [0xe4] = MMX_OP2(pmulhuw),
2790 [0xe5] = MMX_OP2(pmulhw),
2791 [0xe6] = { NULL, helper_cvttpd2dq, helper_cvtdq2pd, helper_cvtpd2dq },
2792 [0xe7] = { SSE_SPECIAL , SSE_SPECIAL }, /* movntq, movntq */
2793 [0xe8] = MMX_OP2(psubsb),
2794 [0xe9] = MMX_OP2(psubsw),
2795 [0xea] = MMX_OP2(pminsw),
2796 [0xeb] = MMX_OP2(por),
2797 [0xec] = MMX_OP2(paddsb),
2798 [0xed] = MMX_OP2(paddsw),
2799 [0xee] = MMX_OP2(pmaxsw),
2800 [0xef] = MMX_OP2(pxor),
2801 [0xf0] = { NULL, NULL, NULL, SSE_SPECIAL }, /* lddqu */
2802 [0xf1] = MMX_OP2(psllw),
2803 [0xf2] = MMX_OP2(pslld),
2804 [0xf3] = MMX_OP2(psllq),
2805 [0xf4] = MMX_OP2(pmuludq),
2806 [0xf5] = MMX_OP2(pmaddwd),
2807 [0xf6] = MMX_OP2(psadbw),
2808 [0xf7] = MMX_OP2(maskmov),
2809 [0xf8] = MMX_OP2(psubb),
2810 [0xf9] = MMX_OP2(psubw),
2811 [0xfa] = MMX_OP2(psubl),
2812 [0xfb] = MMX_OP2(psubq),
2813 [0xfc] = MMX_OP2(paddb),
2814 [0xfd] = MMX_OP2(paddw),
2815 [0xfe] = MMX_OP2(paddl),
2818 static void *sse_op_table2[3 * 8][2] = {
2819 [0 + 2] = MMX_OP2(psrlw),
2820 [0 + 4] = MMX_OP2(psraw),
2821 [0 + 6] = MMX_OP2(psllw),
2822 [8 + 2] = MMX_OP2(psrld),
2823 [8 + 4] = MMX_OP2(psrad),
2824 [8 + 6] = MMX_OP2(pslld),
2825 [16 + 2] = MMX_OP2(psrlq),
2826 [16 + 3] = { NULL, helper_psrldq_xmm },
2827 [16 + 6] = MMX_OP2(psllq),
2828 [16 + 7] = { NULL, helper_pslldq_xmm },
2831 static void *sse_op_table3[4 * 3] = {
2834 X86_64_ONLY(helper_cvtsq2ss),
2835 X86_64_ONLY(helper_cvtsq2sd),
2839 X86_64_ONLY(helper_cvttss2sq),
2840 X86_64_ONLY(helper_cvttsd2sq),
2844 X86_64_ONLY(helper_cvtss2sq),
2845 X86_64_ONLY(helper_cvtsd2sq),
2848 static void *sse_op_table4[8][4] = {
2859 static void *sse_op_table5[256] = {
2860 [0x0c] = helper_pi2fw,
2861 [0x0d] = helper_pi2fd,
2862 [0x1c] = helper_pf2iw,
2863 [0x1d] = helper_pf2id,
2864 [0x8a] = helper_pfnacc,
2865 [0x8e] = helper_pfpnacc,
2866 [0x90] = helper_pfcmpge,
2867 [0x94] = helper_pfmin,
2868 [0x96] = helper_pfrcp,
2869 [0x97] = helper_pfrsqrt,
2870 [0x9a] = helper_pfsub,
2871 [0x9e] = helper_pfadd,
2872 [0xa0] = helper_pfcmpgt,
2873 [0xa4] = helper_pfmax,
2874 [0xa6] = helper_movq, /* pfrcpit1; no need to actually increase precision */
2875 [0xa7] = helper_movq, /* pfrsqit1 */
2876 [0xaa] = helper_pfsubr,
2877 [0xae] = helper_pfacc,
2878 [0xb0] = helper_pfcmpeq,
2879 [0xb4] = helper_pfmul,
2880 [0xb6] = helper_movq, /* pfrcpit2 */
2881 [0xb7] = helper_pmulhrw_mmx,
2882 [0xbb] = helper_pswapd,
2883 [0xbf] = helper_pavgb_mmx /* pavgusb */
2886 static void gen_sse(DisasContext *s, int b, target_ulong pc_start, int rex_r)
2888 int b1, op1_offset, op2_offset, is_xmm, val, ot;
2889 int modrm, mod, rm, reg, reg_addr, offset_addr;
2893 if (s->prefix & PREFIX_DATA)
2895 else if (s->prefix & PREFIX_REPZ)
2897 else if (s->prefix & PREFIX_REPNZ)
2901 sse_op2 = sse_op_table1[b][b1];
2904 if ((b <= 0x5f && b >= 0x10) || b == 0xc6 || b == 0xc2) {
2914 /* simple MMX/SSE operation */
2915 if (s->flags & HF_TS_MASK) {
2916 gen_exception(s, EXCP07_PREX, pc_start - s->cs_base);
2919 if (s->flags & HF_EM_MASK) {
2921 gen_exception(s, EXCP06_ILLOP, pc_start - s->cs_base);
2924 if (is_xmm && !(s->flags & HF_OSFXSR_MASK))
2927 if (!(s->cpuid_ext2_features & CPUID_EXT2_3DNOW))
2930 tcg_gen_helper_0_0(helper_emms);
2935 tcg_gen_helper_0_0(helper_emms);
2938 /* prepare MMX state (XXX: optimize by storing fptt and fptags in
2939 the static cpu state) */
2941 tcg_gen_helper_0_0(helper_enter_mmx);
2944 modrm = ldub_code(s->pc++);
2945 reg = ((modrm >> 3) & 7);
2948 mod = (modrm >> 6) & 3;
2949 if (sse_op2 == SSE_SPECIAL) {
2952 case 0x0e7: /* movntq */
2955 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
2956 gen_stq_env_A0(s->mem_index, offsetof(CPUX86State,fpregs[reg].mmx));
2958 case 0x1e7: /* movntdq */
2959 case 0x02b: /* movntps */
2960 case 0x12b: /* movntps */
2961 case 0x3f0: /* lddqu */
2964 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
2965 gen_sto_env_A0(s->mem_index, offsetof(CPUX86State,xmm_regs[reg]));
2967 case 0x6e: /* movd mm, ea */
2968 #ifdef TARGET_X86_64
2969 if (s->dflag == 2) {
2970 gen_ldst_modrm(s, modrm, OT_QUAD, OR_TMP0, 0);
2971 tcg_gen_st_tl(cpu_T[0], cpu_env, offsetof(CPUX86State,fpregs[reg].mmx));
2975 gen_ldst_modrm(s, modrm, OT_LONG, OR_TMP0, 0);
2976 tcg_gen_addi_ptr(cpu_ptr0, cpu_env,
2977 offsetof(CPUX86State,fpregs[reg].mmx));
2978 tcg_gen_helper_0_2(helper_movl_mm_T0_mmx, cpu_ptr0, cpu_T[0]);
2981 case 0x16e: /* movd xmm, ea */
2982 #ifdef TARGET_X86_64
2983 if (s->dflag == 2) {
2984 gen_ldst_modrm(s, modrm, OT_QUAD, OR_TMP0, 0);
2985 tcg_gen_addi_ptr(cpu_ptr0, cpu_env,
2986 offsetof(CPUX86State,xmm_regs[reg]));
2987 tcg_gen_helper_0_2(helper_movq_mm_T0_xmm, cpu_ptr0, cpu_T[0]);
2991 gen_ldst_modrm(s, modrm, OT_LONG, OR_TMP0, 0);
2992 tcg_gen_addi_ptr(cpu_ptr0, cpu_env,
2993 offsetof(CPUX86State,xmm_regs[reg]));
2994 tcg_gen_trunc_tl_i32(cpu_tmp2_i32, cpu_T[0]);
2995 tcg_gen_helper_0_2(helper_movl_mm_T0_xmm, cpu_ptr0, cpu_tmp2_i32);
2998 case 0x6f: /* movq mm, ea */
3000 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3001 gen_ldq_env_A0(s->mem_index, offsetof(CPUX86State,fpregs[reg].mmx));
3004 tcg_gen_ld_i64(cpu_tmp1_i64, cpu_env,
3005 offsetof(CPUX86State,fpregs[rm].mmx));
3006 tcg_gen_st_i64(cpu_tmp1_i64, cpu_env,
3007 offsetof(CPUX86State,fpregs[reg].mmx));
3010 case 0x010: /* movups */
3011 case 0x110: /* movupd */
3012 case 0x028: /* movaps */
3013 case 0x128: /* movapd */
3014 case 0x16f: /* movdqa xmm, ea */
3015 case 0x26f: /* movdqu xmm, ea */
3017 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3018 gen_ldo_env_A0(s->mem_index, offsetof(CPUX86State,xmm_regs[reg]));
3020 rm = (modrm & 7) | REX_B(s);
3021 gen_op_movo(offsetof(CPUX86State,xmm_regs[reg]),
3022 offsetof(CPUX86State,xmm_regs[rm]));
3025 case 0x210: /* movss xmm, ea */
3027 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3028 gen_op_ld_T0_A0(OT_LONG + s->mem_index);
3029 gen_op_movl_env_T0(offsetof(CPUX86State,xmm_regs[reg].XMM_L(0)));
3031 gen_op_movl_env_T0(offsetof(CPUX86State,xmm_regs[reg].XMM_L(1)));
3032 gen_op_movl_env_T0(offsetof(CPUX86State,xmm_regs[reg].XMM_L(2)));
3033 gen_op_movl_env_T0(offsetof(CPUX86State,xmm_regs[reg].XMM_L(3)));
3035 rm = (modrm & 7) | REX_B(s);
3036 gen_op_movl(offsetof(CPUX86State,xmm_regs[reg].XMM_L(0)),
3037 offsetof(CPUX86State,xmm_regs[rm].XMM_L(0)));
3040 case 0x310: /* movsd xmm, ea */
3042 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3043 gen_ldq_env_A0(s->mem_index, offsetof(CPUX86State,xmm_regs[reg].XMM_Q(0)));
3045 gen_op_movl_env_T0(offsetof(CPUX86State,xmm_regs[reg].XMM_L(2)));
3046 gen_op_movl_env_T0(offsetof(CPUX86State,xmm_regs[reg].XMM_L(3)));
3048 rm = (modrm & 7) | REX_B(s);
3049 gen_op_movq(offsetof(CPUX86State,xmm_regs[reg].XMM_Q(0)),
3050 offsetof(CPUX86State,xmm_regs[rm].XMM_Q(0)));
3053 case 0x012: /* movlps */
3054 case 0x112: /* movlpd */
3056 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3057 gen_ldq_env_A0(s->mem_index, offsetof(CPUX86State,xmm_regs[reg].XMM_Q(0)));
3060 rm = (modrm & 7) | REX_B(s);
3061 gen_op_movq(offsetof(CPUX86State,xmm_regs[reg].XMM_Q(0)),
3062 offsetof(CPUX86State,xmm_regs[rm].XMM_Q(1)));
3065 case 0x212: /* movsldup */
3067 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3068 gen_ldo_env_A0(s->mem_index, offsetof(CPUX86State,xmm_regs[reg]));
3070 rm = (modrm & 7) | REX_B(s);
3071 gen_op_movl(offsetof(CPUX86State,xmm_regs[reg].XMM_L(0)),
3072 offsetof(CPUX86State,xmm_regs[rm].XMM_L(0)));
3073 gen_op_movl(offsetof(CPUX86State,xmm_regs[reg].XMM_L(2)),
3074 offsetof(CPUX86State,xmm_regs[rm].XMM_L(2)));
3076 gen_op_movl(offsetof(CPUX86State,xmm_regs[reg].XMM_L(1)),
3077 offsetof(CPUX86State,xmm_regs[reg].XMM_L(0)));
3078 gen_op_movl(offsetof(CPUX86State,xmm_regs[reg].XMM_L(3)),
3079 offsetof(CPUX86State,xmm_regs[reg].XMM_L(2)));
3081 case 0x312: /* movddup */
3083 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3084 gen_ldq_env_A0(s->mem_index, offsetof(CPUX86State,xmm_regs[reg].XMM_Q(0)));
3086 rm = (modrm & 7) | REX_B(s);
3087 gen_op_movq(offsetof(CPUX86State,xmm_regs[reg].XMM_Q(0)),
3088 offsetof(CPUX86State,xmm_regs[rm].XMM_Q(0)));
3090 gen_op_movq(offsetof(CPUX86State,xmm_regs[reg].XMM_Q(1)),
3091 offsetof(CPUX86State,xmm_regs[reg].XMM_Q(0)));
3093 case 0x016: /* movhps */
3094 case 0x116: /* movhpd */
3096 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3097 gen_ldq_env_A0(s->mem_index, offsetof(CPUX86State,xmm_regs[reg].XMM_Q(1)));
3100 rm = (modrm & 7) | REX_B(s);
3101 gen_op_movq(offsetof(CPUX86State,xmm_regs[reg].XMM_Q(1)),
3102 offsetof(CPUX86State,xmm_regs[rm].XMM_Q(0)));
3105 case 0x216: /* movshdup */
3107 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3108 gen_ldo_env_A0(s->mem_index, offsetof(CPUX86State,xmm_regs[reg]));
3110 rm = (modrm & 7) | REX_B(s);
3111 gen_op_movl(offsetof(CPUX86State,xmm_regs[reg].XMM_L(1)),
3112 offsetof(CPUX86State,xmm_regs[rm].XMM_L(1)));
3113 gen_op_movl(offsetof(CPUX86State,xmm_regs[reg].XMM_L(3)),
3114 offsetof(CPUX86State,xmm_regs[rm].XMM_L(3)));
3116 gen_op_movl(offsetof(CPUX86State,xmm_regs[reg].XMM_L(0)),
3117 offsetof(CPUX86State,xmm_regs[reg].XMM_L(1)));
3118 gen_op_movl(offsetof(CPUX86State,xmm_regs[reg].XMM_L(2)),
3119 offsetof(CPUX86State,xmm_regs[reg].XMM_L(3)));
3121 case 0x7e: /* movd ea, mm */
3122 #ifdef TARGET_X86_64
3123 if (s->dflag == 2) {
3124 tcg_gen_ld_i64(cpu_T[0], cpu_env,
3125 offsetof(CPUX86State,fpregs[reg].mmx));
3126 gen_ldst_modrm(s, modrm, OT_QUAD, OR_TMP0, 1);
3130 tcg_gen_ld32u_tl(cpu_T[0], cpu_env,
3131 offsetof(CPUX86State,fpregs[reg].mmx.MMX_L(0)));
3132 gen_ldst_modrm(s, modrm, OT_LONG, OR_TMP0, 1);
3135 case 0x17e: /* movd ea, xmm */
3136 #ifdef TARGET_X86_64
3137 if (s->dflag == 2) {
3138 tcg_gen_ld_i64(cpu_T[0], cpu_env,
3139 offsetof(CPUX86State,xmm_regs[reg].XMM_Q(0)));
3140 gen_ldst_modrm(s, modrm, OT_QUAD, OR_TMP0, 1);
3144 tcg_gen_ld32u_tl(cpu_T[0], cpu_env,
3145 offsetof(CPUX86State,xmm_regs[reg].XMM_L(0)));
3146 gen_ldst_modrm(s, modrm, OT_LONG, OR_TMP0, 1);
3149 case 0x27e: /* movq xmm, ea */
3151 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3152 gen_ldq_env_A0(s->mem_index, offsetof(CPUX86State,xmm_regs[reg].XMM_Q(0)));
3154 rm = (modrm & 7) | REX_B(s);
3155 gen_op_movq(offsetof(CPUX86State,xmm_regs[reg].XMM_Q(0)),
3156 offsetof(CPUX86State,xmm_regs[rm].XMM_Q(0)));
3158 gen_op_movq_env_0(offsetof(CPUX86State,xmm_regs[reg].XMM_Q(1)));
3160 case 0x7f: /* movq ea, mm */
3162 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3163 gen_stq_env_A0(s->mem_index, offsetof(CPUX86State,fpregs[reg].mmx));
3166 gen_op_movq(offsetof(CPUX86State,fpregs[rm].mmx),
3167 offsetof(CPUX86State,fpregs[reg].mmx));
3170 case 0x011: /* movups */
3171 case 0x111: /* movupd */
3172 case 0x029: /* movaps */
3173 case 0x129: /* movapd */
3174 case 0x17f: /* movdqa ea, xmm */
3175 case 0x27f: /* movdqu ea, xmm */
3177 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3178 gen_sto_env_A0(s->mem_index, offsetof(CPUX86State,xmm_regs[reg]));
3180 rm = (modrm & 7) | REX_B(s);
3181 gen_op_movo(offsetof(CPUX86State,xmm_regs[rm]),
3182 offsetof(CPUX86State,xmm_regs[reg]));
3185 case 0x211: /* movss ea, xmm */
3187 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3188 gen_op_movl_T0_env(offsetof(CPUX86State,xmm_regs[reg].XMM_L(0)));
3189 gen_op_st_T0_A0(OT_LONG + s->mem_index);
3191 rm = (modrm & 7) | REX_B(s);
3192 gen_op_movl(offsetof(CPUX86State,xmm_regs[rm].XMM_L(0)),
3193 offsetof(CPUX86State,xmm_regs[reg].XMM_L(0)));
3196 case 0x311: /* movsd ea, xmm */
3198 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3199 gen_stq_env_A0(s->mem_index, offsetof(CPUX86State,xmm_regs[reg].XMM_Q(0)));
3201 rm = (modrm & 7) | REX_B(s);
3202 gen_op_movq(offsetof(CPUX86State,xmm_regs[rm].XMM_Q(0)),
3203 offsetof(CPUX86State,xmm_regs[reg].XMM_Q(0)));
3206 case 0x013: /* movlps */
3207 case 0x113: /* movlpd */
3209 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3210 gen_stq_env_A0(s->mem_index, offsetof(CPUX86State,xmm_regs[reg].XMM_Q(0)));
3215 case 0x017: /* movhps */
3216 case 0x117: /* movhpd */
3218 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3219 gen_stq_env_A0(s->mem_index, offsetof(CPUX86State,xmm_regs[reg].XMM_Q(1)));
3224 case 0x71: /* shift mm, im */
3227 case 0x171: /* shift xmm, im */
3230 val = ldub_code(s->pc++);
3232 gen_op_movl_T0_im(val);
3233 gen_op_movl_env_T0(offsetof(CPUX86State,xmm_t0.XMM_L(0)));
3235 gen_op_movl_env_T0(offsetof(CPUX86State,xmm_t0.XMM_L(1)));
3236 op1_offset = offsetof(CPUX86State,xmm_t0);
3238 gen_op_movl_T0_im(val);
3239 gen_op_movl_env_T0(offsetof(CPUX86State,mmx_t0.MMX_L(0)));
3241 gen_op_movl_env_T0(offsetof(CPUX86State,mmx_t0.MMX_L(1)));
3242 op1_offset = offsetof(CPUX86State,mmx_t0);
3244 sse_op2 = sse_op_table2[((b - 1) & 3) * 8 + (((modrm >> 3)) & 7)][b1];
3248 rm = (modrm & 7) | REX_B(s);
3249 op2_offset = offsetof(CPUX86State,xmm_regs[rm]);
3252 op2_offset = offsetof(CPUX86State,fpregs[rm].mmx);
3254 tcg_gen_addi_ptr(cpu_ptr0, cpu_env, op2_offset);
3255 tcg_gen_addi_ptr(cpu_ptr1, cpu_env, op1_offset);
3256 tcg_gen_helper_0_2(sse_op2, cpu_ptr0, cpu_ptr1);
3258 case 0x050: /* movmskps */
3259 rm = (modrm & 7) | REX_B(s);
3260 tcg_gen_addi_ptr(cpu_ptr0, cpu_env,
3261 offsetof(CPUX86State,xmm_regs[rm]));
3262 tcg_gen_helper_1_1(helper_movmskps, cpu_tmp2_i32, cpu_ptr0);
3263 tcg_gen_extu_i32_tl(cpu_T[0], cpu_tmp2_i32);
3264 gen_op_mov_reg_T0(OT_LONG, reg);
3266 case 0x150: /* movmskpd */
3267 rm = (modrm & 7) | REX_B(s);
3268 tcg_gen_addi_ptr(cpu_ptr0, cpu_env,
3269 offsetof(CPUX86State,xmm_regs[rm]));
3270 tcg_gen_helper_1_1(helper_movmskpd, cpu_tmp2_i32, cpu_ptr0);
3271 tcg_gen_extu_i32_tl(cpu_T[0], cpu_tmp2_i32);
3272 gen_op_mov_reg_T0(OT_LONG, reg);
3274 case 0x02a: /* cvtpi2ps */
3275 case 0x12a: /* cvtpi2pd */
3276 tcg_gen_helper_0_0(helper_enter_mmx);
3278 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3279 op2_offset = offsetof(CPUX86State,mmx_t0);
3280 gen_ldq_env_A0(s->mem_index, op2_offset);
3283 op2_offset = offsetof(CPUX86State,fpregs[rm].mmx);
3285 op1_offset = offsetof(CPUX86State,xmm_regs[reg]);
3286 tcg_gen_addi_ptr(cpu_ptr0, cpu_env, op1_offset);
3287 tcg_gen_addi_ptr(cpu_ptr1, cpu_env, op2_offset);
3290 tcg_gen_helper_0_2(helper_cvtpi2ps, cpu_ptr0, cpu_ptr1);
3294 tcg_gen_helper_0_2(helper_cvtpi2pd, cpu_ptr0, cpu_ptr1);
3298 case 0x22a: /* cvtsi2ss */
3299 case 0x32a: /* cvtsi2sd */
3300 ot = (s->dflag == 2) ? OT_QUAD : OT_LONG;
3301 gen_ldst_modrm(s, modrm, ot, OR_TMP0, 0);
3302 op1_offset = offsetof(CPUX86State,xmm_regs[reg]);
3303 tcg_gen_addi_ptr(cpu_ptr0, cpu_env, op1_offset);
3304 sse_op2 = sse_op_table3[(s->dflag == 2) * 2 + ((b >> 8) - 2)];
3305 tcg_gen_trunc_tl_i32(cpu_tmp2_i32, cpu_T[0]);
3306 tcg_gen_helper_0_2(sse_op2, cpu_ptr0, cpu_tmp2_i32);
3308 case 0x02c: /* cvttps2pi */
3309 case 0x12c: /* cvttpd2pi */
3310 case 0x02d: /* cvtps2pi */
3311 case 0x12d: /* cvtpd2pi */
3312 tcg_gen_helper_0_0(helper_enter_mmx);
3314 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3315 op2_offset = offsetof(CPUX86State,xmm_t0);
3316 gen_ldo_env_A0(s->mem_index, op2_offset);
3318 rm = (modrm & 7) | REX_B(s);
3319 op2_offset = offsetof(CPUX86State,xmm_regs[rm]);
3321 op1_offset = offsetof(CPUX86State,fpregs[reg & 7].mmx);
3322 tcg_gen_addi_ptr(cpu_ptr0, cpu_env, op1_offset);
3323 tcg_gen_addi_ptr(cpu_ptr1, cpu_env, op2_offset);
3326 tcg_gen_helper_0_2(helper_cvttps2pi, cpu_ptr0, cpu_ptr1);
3329 tcg_gen_helper_0_2(helper_cvttpd2pi, cpu_ptr0, cpu_ptr1);
3332 tcg_gen_helper_0_2(helper_cvtps2pi, cpu_ptr0, cpu_ptr1);
3335 tcg_gen_helper_0_2(helper_cvtpd2pi, cpu_ptr0, cpu_ptr1);
3339 case 0x22c: /* cvttss2si */
3340 case 0x32c: /* cvttsd2si */
3341 case 0x22d: /* cvtss2si */
3342 case 0x32d: /* cvtsd2si */
3343 ot = (s->dflag == 2) ? OT_QUAD : OT_LONG;
3345 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3347 gen_ldq_env_A0(s->mem_index, offsetof(CPUX86State,xmm_t0.XMM_Q(0)));
3349 gen_op_ld_T0_A0(OT_LONG + s->mem_index);
3350 gen_op_movl_env_T0(offsetof(CPUX86State,xmm_t0.XMM_L(0)));
3352 op2_offset = offsetof(CPUX86State,xmm_t0);
3354 rm = (modrm & 7) | REX_B(s);
3355 op2_offset = offsetof(CPUX86State,xmm_regs[rm]);
3357 sse_op2 = sse_op_table3[(s->dflag == 2) * 2 + ((b >> 8) - 2) + 4 +
3359 tcg_gen_addi_ptr(cpu_ptr0, cpu_env, op2_offset);
3360 if (ot == OT_LONG) {
3361 tcg_gen_helper_1_1(sse_op2, cpu_tmp2_i32, cpu_ptr0);
3362 tcg_gen_extu_i32_tl(cpu_T[0], cpu_tmp2_i32);
3364 tcg_gen_helper_1_1(sse_op2, cpu_T[0], cpu_ptr0);
3366 gen_op_mov_reg_T0(ot, reg);
3368 case 0xc4: /* pinsrw */
3371 gen_ldst_modrm(s, modrm, OT_WORD, OR_TMP0, 0);
3372 val = ldub_code(s->pc++);
3375 tcg_gen_st16_tl(cpu_T[0], cpu_env,
3376 offsetof(CPUX86State,xmm_regs[reg].XMM_W(val)));
3379 tcg_gen_st16_tl(cpu_T[0], cpu_env,
3380 offsetof(CPUX86State,fpregs[reg].mmx.MMX_W(val)));
3383 case 0xc5: /* pextrw */
3387 val = ldub_code(s->pc++);
3390 rm = (modrm & 7) | REX_B(s);
3391 tcg_gen_ld16u_tl(cpu_T[0], cpu_env,
3392 offsetof(CPUX86State,xmm_regs[rm].XMM_W(val)));
3396 tcg_gen_ld16u_tl(cpu_T[0], cpu_env,
3397 offsetof(CPUX86State,fpregs[rm].mmx.MMX_W(val)));
3399 reg = ((modrm >> 3) & 7) | rex_r;
3400 gen_op_mov_reg_T0(OT_LONG, reg);
3402 case 0x1d6: /* movq ea, xmm */
3404 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3405 gen_stq_env_A0(s->mem_index, offsetof(CPUX86State,xmm_regs[reg].XMM_Q(0)));
3407 rm = (modrm & 7) | REX_B(s);
3408 gen_op_movq(offsetof(CPUX86State,xmm_regs[rm].XMM_Q(0)),
3409 offsetof(CPUX86State,xmm_regs[reg].XMM_Q(0)));
3410 gen_op_movq_env_0(offsetof(CPUX86State,xmm_regs[rm].XMM_Q(1)));
3413 case 0x2d6: /* movq2dq */
3414 tcg_gen_helper_0_0(helper_enter_mmx);
3416 gen_op_movq(offsetof(CPUX86State,xmm_regs[reg].XMM_Q(0)),
3417 offsetof(CPUX86State,fpregs[rm].mmx));
3418 gen_op_movq_env_0(offsetof(CPUX86State,xmm_regs[reg].XMM_Q(1)));
3420 case 0x3d6: /* movdq2q */
3421 tcg_gen_helper_0_0(helper_enter_mmx);
3422 rm = (modrm & 7) | REX_B(s);
3423 gen_op_movq(offsetof(CPUX86State,fpregs[reg & 7].mmx),
3424 offsetof(CPUX86State,xmm_regs[rm].XMM_Q(0)));
3426 case 0xd7: /* pmovmskb */
3431 rm = (modrm & 7) | REX_B(s);
3432 tcg_gen_addi_ptr(cpu_ptr0, cpu_env, offsetof(CPUX86State,xmm_regs[rm]));
3433 tcg_gen_helper_1_1(helper_pmovmskb_xmm, cpu_tmp2_i32, cpu_ptr0);
3436 tcg_gen_addi_ptr(cpu_ptr0, cpu_env, offsetof(CPUX86State,fpregs[rm].mmx));
3437 tcg_gen_helper_1_1(helper_pmovmskb_mmx, cpu_tmp2_i32, cpu_ptr0);
3439 tcg_gen_extu_i32_tl(cpu_T[0], cpu_tmp2_i32);
3440 reg = ((modrm >> 3) & 7) | rex_r;
3441 gen_op_mov_reg_T0(OT_LONG, reg);
3447 /* generic MMX or SSE operation */
3449 case 0x70: /* pshufx insn */
3450 case 0xc6: /* pshufx insn */
3451 case 0xc2: /* compare insns */
3458 op1_offset = offsetof(CPUX86State,xmm_regs[reg]);
3460 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3461 op2_offset = offsetof(CPUX86State,xmm_t0);
3462 if (b1 >= 2 && ((b >= 0x50 && b <= 0x5f && b != 0x5b) ||
3464 /* specific case for SSE single instructions */
3467 gen_op_ld_T0_A0(OT_LONG + s->mem_index);
3468 gen_op_movl_env_T0(offsetof(CPUX86State,xmm_t0.XMM_L(0)));
3471 gen_ldq_env_A0(s->mem_index, offsetof(CPUX86State,xmm_t0.XMM_D(0)));
3474 gen_ldo_env_A0(s->mem_index, op2_offset);
3477 rm = (modrm & 7) | REX_B(s);
3478 op2_offset = offsetof(CPUX86State,xmm_regs[rm]);
3481 op1_offset = offsetof(CPUX86State,fpregs[reg].mmx);
3483 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3484 op2_offset = offsetof(CPUX86State,mmx_t0);
3485 gen_ldq_env_A0(s->mem_index, op2_offset);
3488 op2_offset = offsetof(CPUX86State,fpregs[rm].mmx);
3492 case 0x0f: /* 3DNow! data insns */
3493 if (!(s->cpuid_ext2_features & CPUID_EXT2_3DNOW))
3495 val = ldub_code(s->pc++);
3496 sse_op2 = sse_op_table5[val];
3499 tcg_gen_addi_ptr(cpu_ptr0, cpu_env, op1_offset);
3500 tcg_gen_addi_ptr(cpu_ptr1, cpu_env, op2_offset);
3501 tcg_gen_helper_0_2(sse_op2, cpu_ptr0, cpu_ptr1);
3503 case 0x70: /* pshufx insn */
3504 case 0xc6: /* pshufx insn */
3505 val = ldub_code(s->pc++);
3506 tcg_gen_addi_ptr(cpu_ptr0, cpu_env, op1_offset);
3507 tcg_gen_addi_ptr(cpu_ptr1, cpu_env, op2_offset);
3508 tcg_gen_helper_0_3(sse_op2, cpu_ptr0, cpu_ptr1, tcg_const_i32(val));
3512 val = ldub_code(s->pc++);
3515 sse_op2 = sse_op_table4[val][b1];
3516 tcg_gen_addi_ptr(cpu_ptr0, cpu_env, op1_offset);
3517 tcg_gen_addi_ptr(cpu_ptr1, cpu_env, op2_offset);
3518 tcg_gen_helper_0_2(sse_op2, cpu_ptr0, cpu_ptr1);
3521 /* maskmov : we must prepare A0 */
3524 #ifdef TARGET_X86_64
3525 if (s->aflag == 2) {
3526 gen_op_movq_A0_reg(R_EDI);
3530 gen_op_movl_A0_reg(R_EDI);
3532 gen_op_andl_A0_ffff();
3534 gen_add_A0_ds_seg(s);
3536 tcg_gen_addi_ptr(cpu_ptr0, cpu_env, op1_offset);
3537 tcg_gen_addi_ptr(cpu_ptr1, cpu_env, op2_offset);
3538 tcg_gen_helper_0_3(sse_op2, cpu_ptr0, cpu_ptr1, cpu_A0);
3541 tcg_gen_addi_ptr(cpu_ptr0, cpu_env, op1_offset);
3542 tcg_gen_addi_ptr(cpu_ptr1, cpu_env, op2_offset);
3543 tcg_gen_helper_0_2(sse_op2, cpu_ptr0, cpu_ptr1);
3546 if (b == 0x2e || b == 0x2f) {
3547 /* just to keep the EFLAGS optimization correct */
3549 s->cc_op = CC_OP_EFLAGS;
3554 /* convert one instruction. s->is_jmp is set if the translation must
3555 be stopped. Return the next pc value */
3556 static target_ulong disas_insn(DisasContext *s, target_ulong pc_start)
3558 int b, prefixes, aflag, dflag;
3560 int modrm, reg, rm, mod, reg_addr, op, opreg, offset_addr, val;
3561 target_ulong next_eip, tval;
3571 #ifdef TARGET_X86_64
3576 s->rip_offset = 0; /* for relative ip address */
3578 b = ldub_code(s->pc);
3580 /* check prefixes */
3581 #ifdef TARGET_X86_64
3585 prefixes |= PREFIX_REPZ;
3588 prefixes |= PREFIX_REPNZ;
3591 prefixes |= PREFIX_LOCK;
3612 prefixes |= PREFIX_DATA;
3615 prefixes |= PREFIX_ADR;
3619 rex_w = (b >> 3) & 1;
3620 rex_r = (b & 0x4) << 1;
3621 s->rex_x = (b & 0x2) << 2;
3622 REX_B(s) = (b & 0x1) << 3;
3623 x86_64_hregs = 1; /* select uniform byte register addressing */
3627 /* 0x66 is ignored if rex.w is set */
3630 if (prefixes & PREFIX_DATA)
3633 if (!(prefixes & PREFIX_ADR))
3640 prefixes |= PREFIX_REPZ;
3643 prefixes |= PREFIX_REPNZ;
3646 prefixes |= PREFIX_LOCK;
3667 prefixes |= PREFIX_DATA;
3670 prefixes |= PREFIX_ADR;
3673 if (prefixes & PREFIX_DATA)
3675 if (prefixes & PREFIX_ADR)
3679 s->prefix = prefixes;
3683 /* lock generation */
3684 if (prefixes & PREFIX_LOCK)
3685 tcg_gen_helper_0_0(helper_lock);
3687 /* now check op code */
3691 /**************************/
3692 /* extended op code */
3693 b = ldub_code(s->pc++) | 0x100;
3696 /**************************/
3714 ot = dflag + OT_WORD;
3717 case 0: /* OP Ev, Gv */
3718 modrm = ldub_code(s->pc++);
3719 reg = ((modrm >> 3) & 7) | rex_r;
3720 mod = (modrm >> 6) & 3;
3721 rm = (modrm & 7) | REX_B(s);
3723 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3725 } else if (op == OP_XORL && rm == reg) {
3727 /* xor reg, reg optimisation */
3729 s->cc_op = CC_OP_LOGICB + ot;
3730 gen_op_mov_reg_T0(ot, reg);
3731 gen_op_update1_cc();
3736 gen_op_mov_TN_reg(ot, 1, reg);
3737 gen_op(s, op, ot, opreg);
3739 case 1: /* OP Gv, Ev */
3740 modrm = ldub_code(s->pc++);
3741 mod = (modrm >> 6) & 3;
3742 reg = ((modrm >> 3) & 7) | rex_r;
3743 rm = (modrm & 7) | REX_B(s);
3745 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3746 gen_op_ld_T1_A0(ot + s->mem_index);
3747 } else if (op == OP_XORL && rm == reg) {
3750 gen_op_mov_TN_reg(ot, 1, rm);
3752 gen_op(s, op, ot, reg);
3754 case 2: /* OP A, Iv */
3755 val = insn_get(s, ot);
3756 gen_op_movl_T1_im(val);
3757 gen_op(s, op, ot, OR_EAX);
3763 case 0x80: /* GRP1 */
3773 ot = dflag + OT_WORD;
3775 modrm = ldub_code(s->pc++);
3776 mod = (modrm >> 6) & 3;
3777 rm = (modrm & 7) | REX_B(s);
3778 op = (modrm >> 3) & 7;
3784 s->rip_offset = insn_const_size(ot);
3785 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3796 val = insn_get(s, ot);
3799 val = (int8_t)insn_get(s, OT_BYTE);
3802 gen_op_movl_T1_im(val);
3803 gen_op(s, op, ot, opreg);
3807 /**************************/
3808 /* inc, dec, and other misc arith */
3809 case 0x40 ... 0x47: /* inc Gv */
3810 ot = dflag ? OT_LONG : OT_WORD;
3811 gen_inc(s, ot, OR_EAX + (b & 7), 1);
3813 case 0x48 ... 0x4f: /* dec Gv */
3814 ot = dflag ? OT_LONG : OT_WORD;
3815 gen_inc(s, ot, OR_EAX + (b & 7), -1);
3817 case 0xf6: /* GRP3 */
3822 ot = dflag + OT_WORD;
3824 modrm = ldub_code(s->pc++);
3825 mod = (modrm >> 6) & 3;
3826 rm = (modrm & 7) | REX_B(s);
3827 op = (modrm >> 3) & 7;
3830 s->rip_offset = insn_const_size(ot);
3831 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3832 gen_op_ld_T0_A0(ot + s->mem_index);
3834 gen_op_mov_TN_reg(ot, 0, rm);
3839 val = insn_get(s, ot);
3840 gen_op_movl_T1_im(val);
3841 gen_op_testl_T0_T1_cc();
3842 s->cc_op = CC_OP_LOGICB + ot;
3845 tcg_gen_not_tl(cpu_T[0], cpu_T[0]);
3847 gen_op_st_T0_A0(ot + s->mem_index);
3849 gen_op_mov_reg_T0(ot, rm);
3853 tcg_gen_neg_tl(cpu_T[0], cpu_T[0]);
3855 gen_op_st_T0_A0(ot + s->mem_index);
3857 gen_op_mov_reg_T0(ot, rm);
3859 gen_op_update_neg_cc();
3860 s->cc_op = CC_OP_SUBB + ot;
3865 gen_op_mulb_AL_T0();
3866 s->cc_op = CC_OP_MULB;
3869 gen_op_mulw_AX_T0();
3870 s->cc_op = CC_OP_MULW;
3874 gen_op_mull_EAX_T0();
3875 s->cc_op = CC_OP_MULL;
3877 #ifdef TARGET_X86_64
3879 gen_op_mulq_EAX_T0();
3880 s->cc_op = CC_OP_MULQ;
3888 gen_op_imulb_AL_T0();
3889 s->cc_op = CC_OP_MULB;
3892 gen_op_imulw_AX_T0();
3893 s->cc_op = CC_OP_MULW;
3897 gen_op_imull_EAX_T0();
3898 s->cc_op = CC_OP_MULL;
3900 #ifdef TARGET_X86_64
3902 gen_op_imulq_EAX_T0();
3903 s->cc_op = CC_OP_MULQ;
3911 gen_jmp_im(pc_start - s->cs_base);
3912 tcg_gen_helper_0_1(helper_divb_AL, cpu_T[0]);
3915 gen_jmp_im(pc_start - s->cs_base);
3916 tcg_gen_helper_0_1(helper_divw_AX, cpu_T[0]);
3920 gen_jmp_im(pc_start - s->cs_base);
3921 tcg_gen_helper_0_1(helper_divl_EAX, cpu_T[0]);
3923 #ifdef TARGET_X86_64
3925 gen_jmp_im(pc_start - s->cs_base);
3926 tcg_gen_helper_0_1(helper_divq_EAX, cpu_T[0]);
3934 gen_jmp_im(pc_start - s->cs_base);
3935 tcg_gen_helper_0_1(helper_idivb_AL, cpu_T[0]);
3938 gen_jmp_im(pc_start - s->cs_base);
3939 tcg_gen_helper_0_1(helper_idivw_AX, cpu_T[0]);
3943 gen_jmp_im(pc_start - s->cs_base);
3944 tcg_gen_helper_0_1(helper_idivl_EAX, cpu_T[0]);
3946 #ifdef TARGET_X86_64
3948 gen_jmp_im(pc_start - s->cs_base);
3949 tcg_gen_helper_0_1(helper_idivq_EAX, cpu_T[0]);
3959 case 0xfe: /* GRP4 */
3960 case 0xff: /* GRP5 */
3964 ot = dflag + OT_WORD;
3966 modrm = ldub_code(s->pc++);
3967 mod = (modrm >> 6) & 3;
3968 rm = (modrm & 7) | REX_B(s);
3969 op = (modrm >> 3) & 7;
3970 if (op >= 2 && b == 0xfe) {
3974 if (op == 2 || op == 4) {
3975 /* operand size for jumps is 64 bit */
3977 } else if (op == 3 || op == 5) {
3978 /* for call calls, the operand is 16 or 32 bit, even
3980 ot = dflag ? OT_LONG : OT_WORD;
3981 } else if (op == 6) {
3982 /* default push size is 64 bit */
3983 ot = dflag ? OT_QUAD : OT_WORD;
3987 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3988 if (op >= 2 && op != 3 && op != 5)
3989 gen_op_ld_T0_A0(ot + s->mem_index);
3991 gen_op_mov_TN_reg(ot, 0, rm);
3995 case 0: /* inc Ev */
4000 gen_inc(s, ot, opreg, 1);
4002 case 1: /* dec Ev */
4007 gen_inc(s, ot, opreg, -1);
4009 case 2: /* call Ev */
4010 /* XXX: optimize if memory (no 'and' is necessary) */
4012 gen_op_andl_T0_ffff();
4013 next_eip = s->pc - s->cs_base;
4014 gen_movtl_T1_im(next_eip);
4019 case 3: /* lcall Ev */
4020 gen_op_ld_T1_A0(ot + s->mem_index);
4021 gen_add_A0_im(s, 1 << (ot - OT_WORD + 1));
4022 gen_op_ldu_T0_A0(OT_WORD + s->mem_index);
4024 if (s->pe && !s->vm86) {
4025 if (s->cc_op != CC_OP_DYNAMIC)
4026 gen_op_set_cc_op(s->cc_op);
4027 gen_jmp_im(pc_start - s->cs_base);
4028 tcg_gen_trunc_tl_i32(cpu_tmp2_i32, cpu_T[0]);
4029 tcg_gen_helper_0_4(helper_lcall_protected,
4030 cpu_tmp2_i32, cpu_T[1],
4031 tcg_const_i32(dflag),
4032 tcg_const_i32(s->pc - pc_start));
4034 tcg_gen_trunc_tl_i32(cpu_tmp2_i32, cpu_T[0]);
4035 tcg_gen_helper_0_4(helper_lcall_real,
4036 cpu_tmp2_i32, cpu_T[1],
4037 tcg_const_i32(dflag),
4038 tcg_const_i32(s->pc - s->cs_base));
4042 case 4: /* jmp Ev */
4044 gen_op_andl_T0_ffff();
4048 case 5: /* ljmp Ev */
4049 gen_op_ld_T1_A0(ot + s->mem_index);
4050 gen_add_A0_im(s, 1 << (ot - OT_WORD + 1));
4051 gen_op_ldu_T0_A0(OT_WORD + s->mem_index);
4053 if (s->pe && !s->vm86) {
4054 if (s->cc_op != CC_OP_DYNAMIC)
4055 gen_op_set_cc_op(s->cc_op);
4056 gen_jmp_im(pc_start - s->cs_base);
4057 tcg_gen_trunc_tl_i32(cpu_tmp2_i32, cpu_T[0]);
4058 tcg_gen_helper_0_3(helper_ljmp_protected,
4061 tcg_const_i32(s->pc - pc_start));
4063 gen_op_movl_seg_T0_vm(offsetof(CPUX86State,segs[R_CS]));
4064 gen_op_movl_T0_T1();
4069 case 6: /* push Ev */
4077 case 0x84: /* test Ev, Gv */
4082 ot = dflag + OT_WORD;
4084 modrm = ldub_code(s->pc++);
4085 mod = (modrm >> 6) & 3;
4086 rm = (modrm & 7) | REX_B(s);
4087 reg = ((modrm >> 3) & 7) | rex_r;
4089 gen_ldst_modrm(s, modrm, ot, OR_TMP0, 0);
4090 gen_op_mov_TN_reg(ot, 1, reg);
4091 gen_op_testl_T0_T1_cc();
4092 s->cc_op = CC_OP_LOGICB + ot;
4095 case 0xa8: /* test eAX, Iv */
4100 ot = dflag + OT_WORD;
4101 val = insn_get(s, ot);
4103 gen_op_mov_TN_reg(ot, 0, OR_EAX);
4104 gen_op_movl_T1_im(val);
4105 gen_op_testl_T0_T1_cc();
4106 s->cc_op = CC_OP_LOGICB + ot;
4109 case 0x98: /* CWDE/CBW */
4110 #ifdef TARGET_X86_64
4112 gen_op_mov_TN_reg(OT_LONG, 0, R_EAX);
4113 tcg_gen_ext32s_tl(cpu_T[0], cpu_T[0]);
4114 gen_op_mov_reg_T0(OT_QUAD, R_EAX);
4118 gen_op_mov_TN_reg(OT_WORD, 0, R_EAX);
4119 tcg_gen_ext16s_tl(cpu_T[0], cpu_T[0]);
4120 gen_op_mov_reg_T0(OT_LONG, R_EAX);
4122 gen_op_mov_TN_reg(OT_BYTE, 0, R_EAX);
4123 tcg_gen_ext8s_tl(cpu_T[0], cpu_T[0]);
4124 gen_op_mov_reg_T0(OT_WORD, R_EAX);
4127 case 0x99: /* CDQ/CWD */
4128 #ifdef TARGET_X86_64
4130 gen_op_mov_TN_reg(OT_QUAD, 0, R_EAX);
4131 tcg_gen_sari_tl(cpu_T[0], cpu_T[0], 63);
4132 gen_op_mov_reg_T0(OT_QUAD, R_EDX);
4136 gen_op_mov_TN_reg(OT_LONG, 0, R_EAX);
4137 tcg_gen_ext32s_tl(cpu_T[0], cpu_T[0]);
4138 tcg_gen_sari_tl(cpu_T[0], cpu_T[0], 31);
4139 gen_op_mov_reg_T0(OT_LONG, R_EDX);
4141 gen_op_mov_TN_reg(OT_WORD, 0, R_EAX);
4142 tcg_gen_ext16s_tl(cpu_T[0], cpu_T[0]);
4143 tcg_gen_sari_tl(cpu_T[0], cpu_T[0], 15);
4144 gen_op_mov_reg_T0(OT_WORD, R_EDX);
4147 case 0x1af: /* imul Gv, Ev */
4148 case 0x69: /* imul Gv, Ev, I */
4150 ot = dflag + OT_WORD;
4151 modrm = ldub_code(s->pc++);
4152 reg = ((modrm >> 3) & 7) | rex_r;
4154 s->rip_offset = insn_const_size(ot);
4157 gen_ldst_modrm(s, modrm, ot, OR_TMP0, 0);
4159 val = insn_get(s, ot);
4160 gen_op_movl_T1_im(val);
4161 } else if (b == 0x6b) {
4162 val = (int8_t)insn_get(s, OT_BYTE);
4163 gen_op_movl_T1_im(val);
4165 gen_op_mov_TN_reg(ot, 1, reg);
4168 #ifdef TARGET_X86_64
4169 if (ot == OT_QUAD) {
4170 gen_op_imulq_T0_T1();
4173 if (ot == OT_LONG) {
4174 gen_op_imull_T0_T1();
4176 gen_op_imulw_T0_T1();
4178 gen_op_mov_reg_T0(ot, reg);
4179 s->cc_op = CC_OP_MULB + ot;
4182 case 0x1c1: /* xadd Ev, Gv */
4186 ot = dflag + OT_WORD;
4187 modrm = ldub_code(s->pc++);
4188 reg = ((modrm >> 3) & 7) | rex_r;
4189 mod = (modrm >> 6) & 3;
4191 rm = (modrm & 7) | REX_B(s);
4192 gen_op_mov_TN_reg(ot, 0, reg);
4193 gen_op_mov_TN_reg(ot, 1, rm);
4194 gen_op_addl_T0_T1();
4195 gen_op_mov_reg_T1(ot, reg);
4196 gen_op_mov_reg_T0(ot, rm);
4198 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
4199 gen_op_mov_TN_reg(ot, 0, reg);
4200 gen_op_ld_T1_A0(ot + s->mem_index);
4201 gen_op_addl_T0_T1();
4202 gen_op_st_T0_A0(ot + s->mem_index);
4203 gen_op_mov_reg_T1(ot, reg);
4205 gen_op_update2_cc();
4206 s->cc_op = CC_OP_ADDB + ot;
4209 case 0x1b1: /* cmpxchg Ev, Gv */
4216 ot = dflag + OT_WORD;
4217 modrm = ldub_code(s->pc++);
4218 reg = ((modrm >> 3) & 7) | rex_r;
4219 mod = (modrm >> 6) & 3;
4220 gen_op_mov_TN_reg(ot, 1, reg);
4222 rm = (modrm & 7) | REX_B(s);
4223 gen_op_mov_TN_reg(ot, 0, rm);
4225 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
4226 gen_op_ld_T0_A0(ot + s->mem_index);
4227 rm = 0; /* avoid warning */
4229 label1 = gen_new_label();
4230 tcg_gen_ld_tl(cpu_T3, cpu_env, offsetof(CPUState, regs[R_EAX]));
4231 tcg_gen_sub_tl(cpu_T3, cpu_T3, cpu_T[0]);
4232 gen_extu(ot, cpu_T3);
4233 tcg_gen_brcond_tl(TCG_COND_EQ, cpu_T3, tcg_const_tl(0), label1);
4234 tcg_gen_mov_tl(cpu_T[1], cpu_T[0]);
4235 gen_op_mov_reg_T0(ot, R_EAX);
4236 gen_set_label(label1);
4238 gen_op_mov_reg_T1(ot, rm);
4240 gen_op_st_T1_A0(ot + s->mem_index);
4242 tcg_gen_mov_tl(cpu_cc_src, cpu_T[0]);
4243 tcg_gen_mov_tl(cpu_cc_dst, cpu_T3);
4244 s->cc_op = CC_OP_SUBB + ot;
4247 case 0x1c7: /* cmpxchg8b */
4248 modrm = ldub_code(s->pc++);
4249 mod = (modrm >> 6) & 3;
4250 if ((mod == 3) || ((modrm & 0x38) != 0x8))
4252 gen_jmp_im(pc_start - s->cs_base);
4253 if (s->cc_op != CC_OP_DYNAMIC)
4254 gen_op_set_cc_op(s->cc_op);
4255 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
4257 s->cc_op = CC_OP_EFLAGS;
4260 /**************************/
4262 case 0x50 ... 0x57: /* push */
4263 gen_op_mov_TN_reg(OT_LONG, 0, (b & 7) | REX_B(s));
4266 case 0x58 ... 0x5f: /* pop */
4268 ot = dflag ? OT_QUAD : OT_WORD;
4270 ot = dflag + OT_WORD;
4273 /* NOTE: order is important for pop %sp */
4275 gen_op_mov_reg_T0(ot, (b & 7) | REX_B(s));
4277 case 0x60: /* pusha */
4282 case 0x61: /* popa */
4287 case 0x68: /* push Iv */
4290 ot = dflag ? OT_QUAD : OT_WORD;
4292 ot = dflag + OT_WORD;
4295 val = insn_get(s, ot);
4297 val = (int8_t)insn_get(s, OT_BYTE);
4298 gen_op_movl_T0_im(val);
4301 case 0x8f: /* pop Ev */
4303 ot = dflag ? OT_QUAD : OT_WORD;
4305 ot = dflag + OT_WORD;
4307 modrm = ldub_code(s->pc++);
4308 mod = (modrm >> 6) & 3;
4311 /* NOTE: order is important for pop %sp */
4313 rm = (modrm & 7) | REX_B(s);
4314 gen_op_mov_reg_T0(ot, rm);
4316 /* NOTE: order is important too for MMU exceptions */
4317 s->popl_esp_hack = 1 << ot;
4318 gen_ldst_modrm(s, modrm, ot, OR_TMP0, 1);
4319 s->popl_esp_hack = 0;
4323 case 0xc8: /* enter */
4326 val = lduw_code(s->pc);
4328 level = ldub_code(s->pc++);
4329 gen_enter(s, val, level);
4332 case 0xc9: /* leave */
4333 /* XXX: exception not precise (ESP is updated before potential exception) */
4335 gen_op_mov_TN_reg(OT_QUAD, 0, R_EBP);
4336 gen_op_mov_reg_T0(OT_QUAD, R_ESP);
4337 } else if (s->ss32) {
4338 gen_op_mov_TN_reg(OT_LONG, 0, R_EBP);
4339 gen_op_mov_reg_T0(OT_LONG, R_ESP);
4341 gen_op_mov_TN_reg(OT_WORD, 0, R_EBP);
4342 gen_op_mov_reg_T0(OT_WORD, R_ESP);
4346 ot = dflag ? OT_QUAD : OT_WORD;
4348 ot = dflag + OT_WORD;
4350 gen_op_mov_reg_T0(ot, R_EBP);
4353 case 0x06: /* push es */
4354 case 0x0e: /* push cs */
4355 case 0x16: /* push ss */
4356 case 0x1e: /* push ds */
4359 gen_op_movl_T0_seg(b >> 3);
4362 case 0x1a0: /* push fs */
4363 case 0x1a8: /* push gs */
4364 gen_op_movl_T0_seg((b >> 3) & 7);
4367 case 0x07: /* pop es */
4368 case 0x17: /* pop ss */
4369 case 0x1f: /* pop ds */
4374 gen_movl_seg_T0(s, reg, pc_start - s->cs_base);
4377 /* if reg == SS, inhibit interrupts/trace. */
4378 /* If several instructions disable interrupts, only the
4380 if (!(s->tb->flags & HF_INHIBIT_IRQ_MASK))
4381 tcg_gen_helper_0_0(helper_set_inhibit_irq);
4385 gen_jmp_im(s->pc - s->cs_base);
4389 case 0x1a1: /* pop fs */
4390 case 0x1a9: /* pop gs */
4392 gen_movl_seg_T0(s, (b >> 3) & 7, pc_start - s->cs_base);
4395 gen_jmp_im(s->pc - s->cs_base);
4400 /**************************/
4403 case 0x89: /* mov Gv, Ev */
4407 ot = dflag + OT_WORD;
4408 modrm = ldub_code(s->pc++);
4409 reg = ((modrm >> 3) & 7) | rex_r;
4411 /* generate a generic store */
4412 gen_ldst_modrm(s, modrm, ot, reg, 1);
4415 case 0xc7: /* mov Ev, Iv */
4419 ot = dflag + OT_WORD;
4420 modrm = ldub_code(s->pc++);
4421 mod = (modrm >> 6) & 3;
4423 s->rip_offset = insn_const_size(ot);
4424 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
4426 val = insn_get(s, ot);
4427 gen_op_movl_T0_im(val);
4429 gen_op_st_T0_A0(ot + s->mem_index);
4431 gen_op_mov_reg_T0(ot, (modrm & 7) | REX_B(s));
4434 case 0x8b: /* mov Ev, Gv */
4438 ot = OT_WORD + dflag;
4439 modrm = ldub_code(s->pc++);
4440 reg = ((modrm >> 3) & 7) | rex_r;
4442 gen_ldst_modrm(s, modrm, ot, OR_TMP0, 0);
4443 gen_op_mov_reg_T0(ot, reg);
4445 case 0x8e: /* mov seg, Gv */
4446 modrm = ldub_code(s->pc++);
4447 reg = (modrm >> 3) & 7;
4448 if (reg >= 6 || reg == R_CS)
4450 gen_ldst_modrm(s, modrm, OT_WORD, OR_TMP0, 0);
4451 gen_movl_seg_T0(s, reg, pc_start - s->cs_base);
4453 /* if reg == SS, inhibit interrupts/trace */
4454 /* If several instructions disable interrupts, only the
4456 if (!(s->tb->flags & HF_INHIBIT_IRQ_MASK))
4457 tcg_gen_helper_0_0(helper_set_inhibit_irq);
4461 gen_jmp_im(s->pc - s->cs_base);
4465 case 0x8c: /* mov Gv, seg */
4466 modrm = ldub_code(s->pc++);
4467 reg = (modrm >> 3) & 7;
4468 mod = (modrm >> 6) & 3;
4471 gen_op_movl_T0_seg(reg);
4473 ot = OT_WORD + dflag;
4476 gen_ldst_modrm(s, modrm, ot, OR_TMP0, 1);
4479 case 0x1b6: /* movzbS Gv, Eb */
4480 case 0x1b7: /* movzwS Gv, Eb */
4481 case 0x1be: /* movsbS Gv, Eb */
4482 case 0x1bf: /* movswS Gv, Eb */
4485 /* d_ot is the size of destination */
4486 d_ot = dflag + OT_WORD;
4487 /* ot is the size of source */
4488 ot = (b & 1) + OT_BYTE;
4489 modrm = ldub_code(s->pc++);
4490 reg = ((modrm >> 3) & 7) | rex_r;
4491 mod = (modrm >> 6) & 3;
4492 rm = (modrm & 7) | REX_B(s);
4495 gen_op_mov_TN_reg(ot, 0, rm);
4496 switch(ot | (b & 8)) {
4498 tcg_gen_ext8u_tl(cpu_T[0], cpu_T[0]);
4501 tcg_gen_ext8s_tl(cpu_T[0], cpu_T[0]);
4504 tcg_gen_ext16u_tl(cpu_T[0], cpu_T[0]);
4508 tcg_gen_ext16s_tl(cpu_T[0], cpu_T[0]);
4511 gen_op_mov_reg_T0(d_ot, reg);
4513 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
4515 gen_op_lds_T0_A0(ot + s->mem_index);
4517 gen_op_ldu_T0_A0(ot + s->mem_index);
4519 gen_op_mov_reg_T0(d_ot, reg);
4524 case 0x8d: /* lea */
4525 ot = dflag + OT_WORD;
4526 modrm = ldub_code(s->pc++);
4527 mod = (modrm >> 6) & 3;
4530 reg = ((modrm >> 3) & 7) | rex_r;
4531 /* we must ensure that no segment is added */
4535 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
4537 gen_op_mov_reg_A0(ot - OT_WORD, reg);
4540 case 0xa0: /* mov EAX, Ov */
4542 case 0xa2: /* mov Ov, EAX */
4545 target_ulong offset_addr;
4550 ot = dflag + OT_WORD;
4551 #ifdef TARGET_X86_64
4552 if (s->aflag == 2) {
4553 offset_addr = ldq_code(s->pc);
4555 gen_op_movq_A0_im(offset_addr);
4560 offset_addr = insn_get(s, OT_LONG);
4562 offset_addr = insn_get(s, OT_WORD);
4564 gen_op_movl_A0_im(offset_addr);
4566 gen_add_A0_ds_seg(s);
4568 gen_op_ld_T0_A0(ot + s->mem_index);
4569 gen_op_mov_reg_T0(ot, R_EAX);
4571 gen_op_mov_TN_reg(ot, 0, R_EAX);
4572 gen_op_st_T0_A0(ot + s->mem_index);
4576 case 0xd7: /* xlat */
4577 #ifdef TARGET_X86_64
4578 if (s->aflag == 2) {
4579 gen_op_movq_A0_reg(R_EBX);
4580 gen_op_mov_TN_reg(OT_QUAD, 0, R_EAX);
4581 tcg_gen_andi_tl(cpu_T[0], cpu_T[0], 0xff);
4582 tcg_gen_add_tl(cpu_A0, cpu_A0, cpu_T[0]);
4586 gen_op_movl_A0_reg(R_EBX);
4587 gen_op_mov_TN_reg(OT_LONG, 0, R_EAX);
4588 tcg_gen_andi_tl(cpu_T[0], cpu_T[0], 0xff);
4589 tcg_gen_add_tl(cpu_A0, cpu_A0, cpu_T[0]);
4591 gen_op_andl_A0_ffff();
4593 tcg_gen_andi_tl(cpu_A0, cpu_A0, 0xffffffff);
4595 gen_add_A0_ds_seg(s);
4596 gen_op_ldu_T0_A0(OT_BYTE + s->mem_index);
4597 gen_op_mov_reg_T0(OT_BYTE, R_EAX);
4599 case 0xb0 ... 0xb7: /* mov R, Ib */
4600 val = insn_get(s, OT_BYTE);
4601 gen_op_movl_T0_im(val);
4602 gen_op_mov_reg_T0(OT_BYTE, (b & 7) | REX_B(s));
4604 case 0xb8 ... 0xbf: /* mov R, Iv */
4605 #ifdef TARGET_X86_64
4609 tmp = ldq_code(s->pc);
4611 reg = (b & 7) | REX_B(s);
4612 gen_movtl_T0_im(tmp);
4613 gen_op_mov_reg_T0(OT_QUAD, reg);
4617 ot = dflag ? OT_LONG : OT_WORD;
4618 val = insn_get(s, ot);
4619 reg = (b & 7) | REX_B(s);
4620 gen_op_movl_T0_im(val);
4621 gen_op_mov_reg_T0(ot, reg);
4625 case 0x91 ... 0x97: /* xchg R, EAX */
4626 ot = dflag + OT_WORD;
4627 reg = (b & 7) | REX_B(s);
4631 case 0x87: /* xchg Ev, Gv */
4635 ot = dflag + OT_WORD;
4636 modrm = ldub_code(s->pc++);
4637 reg = ((modrm >> 3) & 7) | rex_r;
4638 mod = (modrm >> 6) & 3;
4640 rm = (modrm & 7) | REX_B(s);
4642 gen_op_mov_TN_reg(ot, 0, reg);
4643 gen_op_mov_TN_reg(ot, 1, rm);
4644 gen_op_mov_reg_T0(ot, rm);
4645 gen_op_mov_reg_T1(ot, reg);
4647 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
4648 gen_op_mov_TN_reg(ot, 0, reg);
4649 /* for xchg, lock is implicit */
4650 if (!(prefixes & PREFIX_LOCK))
4651 tcg_gen_helper_0_0(helper_lock);
4652 gen_op_ld_T1_A0(ot + s->mem_index);
4653 gen_op_st_T0_A0(ot + s->mem_index);
4654 if (!(prefixes & PREFIX_LOCK))
4655 tcg_gen_helper_0_0(helper_unlock);
4656 gen_op_mov_reg_T1(ot, reg);
4659 case 0xc4: /* les Gv */
4664 case 0xc5: /* lds Gv */
4669 case 0x1b2: /* lss Gv */
4672 case 0x1b4: /* lfs Gv */
4675 case 0x1b5: /* lgs Gv */
4678 ot = dflag ? OT_LONG : OT_WORD;
4679 modrm = ldub_code(s->pc++);
4680 reg = ((modrm >> 3) & 7) | rex_r;
4681 mod = (modrm >> 6) & 3;
4684 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
4685 gen_op_ld_T1_A0(ot + s->mem_index);
4686 gen_add_A0_im(s, 1 << (ot - OT_WORD + 1));
4687 /* load the segment first to handle exceptions properly */
4688 gen_op_ldu_T0_A0(OT_WORD + s->mem_index);
4689 gen_movl_seg_T0(s, op, pc_start - s->cs_base);
4690 /* then put the data */
4691 gen_op_mov_reg_T1(ot, reg);
4693 gen_jmp_im(s->pc - s->cs_base);
4698 /************************/
4709 ot = dflag + OT_WORD;
4711 modrm = ldub_code(s->pc++);
4712 mod = (modrm >> 6) & 3;
4713 op = (modrm >> 3) & 7;
4719 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
4722 opreg = (modrm & 7) | REX_B(s);
4727 gen_shift(s, op, ot, opreg, OR_ECX);
4730 shift = ldub_code(s->pc++);
4732 gen_shifti(s, op, ot, opreg, shift);
4747 case 0x1a4: /* shld imm */
4751 case 0x1a5: /* shld cl */
4755 case 0x1ac: /* shrd imm */
4759 case 0x1ad: /* shrd cl */
4763 ot = dflag + OT_WORD;
4764 modrm = ldub_code(s->pc++);
4765 mod = (modrm >> 6) & 3;
4766 rm = (modrm & 7) | REX_B(s);
4767 reg = ((modrm >> 3) & 7) | rex_r;
4769 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
4774 gen_op_mov_TN_reg(ot, 1, reg);
4777 val = ldub_code(s->pc++);
4778 tcg_gen_movi_tl(cpu_T3, val);
4780 tcg_gen_ld_tl(cpu_T3, cpu_env, offsetof(CPUState, regs[R_ECX]));
4782 gen_shiftd_rm_T1_T3(s, ot, opreg, op);
4785 /************************/
4788 if (s->flags & (HF_EM_MASK | HF_TS_MASK)) {
4789 /* if CR0.EM or CR0.TS are set, generate an FPU exception */
4790 /* XXX: what to do if illegal op ? */
4791 gen_exception(s, EXCP07_PREX, pc_start - s->cs_base);
4794 modrm = ldub_code(s->pc++);
4795 mod = (modrm >> 6) & 3;
4797 op = ((b & 7) << 3) | ((modrm >> 3) & 7);
4800 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
4802 case 0x00 ... 0x07: /* fxxxs */
4803 case 0x10 ... 0x17: /* fixxxl */
4804 case 0x20 ... 0x27: /* fxxxl */
4805 case 0x30 ... 0x37: /* fixxx */
4812 gen_op_ld_T0_A0(OT_LONG + s->mem_index);
4813 tcg_gen_trunc_tl_i32(cpu_tmp2_i32, cpu_T[0]);
4814 tcg_gen_helper_0_1(helper_flds_FT0, cpu_tmp2_i32);
4817 gen_op_ld_T0_A0(OT_LONG + s->mem_index);
4818 tcg_gen_trunc_tl_i32(cpu_tmp2_i32, cpu_T[0]);
4819 tcg_gen_helper_0_1(helper_fildl_FT0, cpu_tmp2_i32);
4822 tcg_gen_qemu_ld64(cpu_tmp1_i64, cpu_A0,
4823 (s->mem_index >> 2) - 1);
4824 tcg_gen_helper_0_1(helper_fldl_FT0, cpu_tmp1_i64);
4828 gen_op_lds_T0_A0(OT_WORD + s->mem_index);
4829 tcg_gen_trunc_tl_i32(cpu_tmp2_i32, cpu_T[0]);
4830 tcg_gen_helper_0_1(helper_fildl_FT0, cpu_tmp2_i32);
4834 tcg_gen_helper_0_0(helper_fp_arith_ST0_FT0[op1]);
4836 /* fcomp needs pop */
4837 tcg_gen_helper_0_0(helper_fpop);
4841 case 0x08: /* flds */
4842 case 0x0a: /* fsts */
4843 case 0x0b: /* fstps */
4844 case 0x18 ... 0x1b: /* fildl, fisttpl, fistl, fistpl */
4845 case 0x28 ... 0x2b: /* fldl, fisttpll, fstl, fstpl */
4846 case 0x38 ... 0x3b: /* filds, fisttps, fists, fistps */
4851 gen_op_ld_T0_A0(OT_LONG + s->mem_index);
4852 tcg_gen_trunc_tl_i32(cpu_tmp2_i32, cpu_T[0]);
4853 tcg_gen_helper_0_1(helper_flds_ST0, cpu_tmp2_i32);
4856 gen_op_ld_T0_A0(OT_LONG + s->mem_index);
4857 tcg_gen_trunc_tl_i32(cpu_tmp2_i32, cpu_T[0]);
4858 tcg_gen_helper_0_1(helper_fildl_ST0, cpu_tmp2_i32);
4861 tcg_gen_qemu_ld64(cpu_tmp1_i64, cpu_A0,
4862 (s->mem_index >> 2) - 1);
4863 tcg_gen_helper_0_1(helper_fldl_ST0, cpu_tmp1_i64);
4867 gen_op_lds_T0_A0(OT_WORD + s->mem_index);
4868 tcg_gen_trunc_tl_i32(cpu_tmp2_i32, cpu_T[0]);
4869 tcg_gen_helper_0_1(helper_fildl_ST0, cpu_tmp2_i32);
4874 /* XXX: the corresponding CPUID bit must be tested ! */
4877 tcg_gen_helper_1_0(helper_fisttl_ST0, cpu_tmp2_i32);
4878 tcg_gen_extu_i32_tl(cpu_T[0], cpu_tmp2_i32);
4879 gen_op_st_T0_A0(OT_LONG + s->mem_index);
4882 tcg_gen_helper_1_0(helper_fisttll_ST0, cpu_tmp1_i64);
4883 tcg_gen_qemu_st64(cpu_tmp1_i64, cpu_A0,
4884 (s->mem_index >> 2) - 1);
4888 tcg_gen_helper_1_0(helper_fistt_ST0, cpu_tmp2_i32);
4889 tcg_gen_extu_i32_tl(cpu_T[0], cpu_tmp2_i32);
4890 gen_op_st_T0_A0(OT_WORD + s->mem_index);
4893 tcg_gen_helper_0_0(helper_fpop);
4898 tcg_gen_helper_1_0(helper_fsts_ST0, cpu_tmp2_i32);
4899 tcg_gen_extu_i32_tl(cpu_T[0], cpu_tmp2_i32);
4900 gen_op_st_T0_A0(OT_LONG + s->mem_index);
4903 tcg_gen_helper_1_0(helper_fistl_ST0, cpu_tmp2_i32);
4904 tcg_gen_extu_i32_tl(cpu_T[0], cpu_tmp2_i32);
4905 gen_op_st_T0_A0(OT_LONG + s->mem_index);
4908 tcg_gen_helper_1_0(helper_fstl_ST0, cpu_tmp1_i64);
4909 tcg_gen_qemu_st64(cpu_tmp1_i64, cpu_A0,
4910 (s->mem_index >> 2) - 1);
4914 tcg_gen_helper_1_0(helper_fist_ST0, cpu_tmp2_i32);
4915 tcg_gen_extu_i32_tl(cpu_T[0], cpu_tmp2_i32);
4916 gen_op_st_T0_A0(OT_WORD + s->mem_index);
4920 tcg_gen_helper_0_0(helper_fpop);
4924 case 0x0c: /* fldenv mem */
4925 if (s->cc_op != CC_OP_DYNAMIC)
4926 gen_op_set_cc_op(s->cc_op);
4927 gen_jmp_im(pc_start - s->cs_base);
4928 tcg_gen_helper_0_2(helper_fldenv,
4929 cpu_A0, tcg_const_i32(s->dflag));
4931 case 0x0d: /* fldcw mem */
4932 gen_op_ld_T0_A0(OT_WORD + s->mem_index);
4933 tcg_gen_trunc_tl_i32(cpu_tmp2_i32, cpu_T[0]);
4934 tcg_gen_helper_0_1(helper_fldcw, cpu_tmp2_i32);
4936 case 0x0e: /* fnstenv mem */
4937 if (s->cc_op != CC_OP_DYNAMIC)
4938 gen_op_set_cc_op(s->cc_op);
4939 gen_jmp_im(pc_start - s->cs_base);
4940 tcg_gen_helper_0_2(helper_fstenv,
4941 cpu_A0, tcg_const_i32(s->dflag));
4943 case 0x0f: /* fnstcw mem */
4944 tcg_gen_helper_1_0(helper_fnstcw, cpu_tmp2_i32);
4945 tcg_gen_extu_i32_tl(cpu_T[0], cpu_tmp2_i32);
4946 gen_op_st_T0_A0(OT_WORD + s->mem_index);
4948 case 0x1d: /* fldt mem */
4949 if (s->cc_op != CC_OP_DYNAMIC)
4950 gen_op_set_cc_op(s->cc_op);
4951 gen_jmp_im(pc_start - s->cs_base);
4952 tcg_gen_helper_0_1(helper_fldt_ST0, cpu_A0);
4954 case 0x1f: /* fstpt mem */
4955 if (s->cc_op != CC_OP_DYNAMIC)
4956 gen_op_set_cc_op(s->cc_op);
4957 gen_jmp_im(pc_start - s->cs_base);
4958 tcg_gen_helper_0_1(helper_fstt_ST0, cpu_A0);
4959 tcg_gen_helper_0_0(helper_fpop);
4961 case 0x2c: /* frstor mem */
4962 if (s->cc_op != CC_OP_DYNAMIC)
4963 gen_op_set_cc_op(s->cc_op);
4964 gen_jmp_im(pc_start - s->cs_base);
4965 tcg_gen_helper_0_2(helper_frstor,
4966 cpu_A0, tcg_const_i32(s->dflag));
4968 case 0x2e: /* fnsave mem */
4969 if (s->cc_op != CC_OP_DYNAMIC)
4970 gen_op_set_cc_op(s->cc_op);
4971 gen_jmp_im(pc_start - s->cs_base);
4972 tcg_gen_helper_0_2(helper_fsave,
4973 cpu_A0, tcg_const_i32(s->dflag));
4975 case 0x2f: /* fnstsw mem */
4976 tcg_gen_helper_1_0(helper_fnstsw, cpu_tmp2_i32);
4977 tcg_gen_extu_i32_tl(cpu_T[0], cpu_tmp2_i32);
4978 gen_op_st_T0_A0(OT_WORD + s->mem_index);
4980 case 0x3c: /* fbld */
4981 if (s->cc_op != CC_OP_DYNAMIC)
4982 gen_op_set_cc_op(s->cc_op);
4983 gen_jmp_im(pc_start - s->cs_base);
4984 tcg_gen_helper_0_1(helper_fbld_ST0, cpu_A0);
4986 case 0x3e: /* fbstp */
4987 if (s->cc_op != CC_OP_DYNAMIC)
4988 gen_op_set_cc_op(s->cc_op);
4989 gen_jmp_im(pc_start - s->cs_base);
4990 tcg_gen_helper_0_1(helper_fbst_ST0, cpu_A0);
4991 tcg_gen_helper_0_0(helper_fpop);
4993 case 0x3d: /* fildll */
4994 tcg_gen_qemu_ld64(cpu_tmp1_i64, cpu_A0,
4995 (s->mem_index >> 2) - 1);
4996 tcg_gen_helper_0_1(helper_fildll_ST0, cpu_tmp1_i64);
4998 case 0x3f: /* fistpll */
4999 tcg_gen_helper_1_0(helper_fistll_ST0, cpu_tmp1_i64);
5000 tcg_gen_qemu_st64(cpu_tmp1_i64, cpu_A0,
5001 (s->mem_index >> 2) - 1);
5002 tcg_gen_helper_0_0(helper_fpop);
5008 /* register float ops */
5012 case 0x08: /* fld sti */
5013 tcg_gen_helper_0_0(helper_fpush);
5014 tcg_gen_helper_0_1(helper_fmov_ST0_STN, tcg_const_i32((opreg + 1) & 7));
5016 case 0x09: /* fxchg sti */
5017 case 0x29: /* fxchg4 sti, undocumented op */
5018 case 0x39: /* fxchg7 sti, undocumented op */
5019 tcg_gen_helper_0_1(helper_fxchg_ST0_STN, tcg_const_i32(opreg));
5021 case 0x0a: /* grp d9/2 */
5024 /* check exceptions (FreeBSD FPU probe) */
5025 if (s->cc_op != CC_OP_DYNAMIC)
5026 gen_op_set_cc_op(s->cc_op);
5027 gen_jmp_im(pc_start - s->cs_base);
5028 tcg_gen_helper_0_0(helper_fwait);
5034 case 0x0c: /* grp d9/4 */
5037 tcg_gen_helper_0_0(helper_fchs_ST0);
5040 tcg_gen_helper_0_0(helper_fabs_ST0);
5043 tcg_gen_helper_0_0(helper_fldz_FT0);
5044 tcg_gen_helper_0_0(helper_fcom_ST0_FT0);
5047 tcg_gen_helper_0_0(helper_fxam_ST0);
5053 case 0x0d: /* grp d9/5 */
5057 tcg_gen_helper_0_0(helper_fpush);
5058 tcg_gen_helper_0_0(helper_fld1_ST0);
5061 tcg_gen_helper_0_0(helper_fpush);
5062 tcg_gen_helper_0_0(helper_fldl2t_ST0);
5065 tcg_gen_helper_0_0(helper_fpush);
5066 tcg_gen_helper_0_0(helper_fldl2e_ST0);
5069 tcg_gen_helper_0_0(helper_fpush);
5070 tcg_gen_helper_0_0(helper_fldpi_ST0);
5073 tcg_gen_helper_0_0(helper_fpush);
5074 tcg_gen_helper_0_0(helper_fldlg2_ST0);
5077 tcg_gen_helper_0_0(helper_fpush);
5078 tcg_gen_helper_0_0(helper_fldln2_ST0);
5081 tcg_gen_helper_0_0(helper_fpush);
5082 tcg_gen_helper_0_0(helper_fldz_ST0);
5089 case 0x0e: /* grp d9/6 */
5092 tcg_gen_helper_0_0(helper_f2xm1);
5095 tcg_gen_helper_0_0(helper_fyl2x);
5098 tcg_gen_helper_0_0(helper_fptan);
5100 case 3: /* fpatan */
5101 tcg_gen_helper_0_0(helper_fpatan);
5103 case 4: /* fxtract */
5104 tcg_gen_helper_0_0(helper_fxtract);
5106 case 5: /* fprem1 */
5107 tcg_gen_helper_0_0(helper_fprem1);
5109 case 6: /* fdecstp */
5110 tcg_gen_helper_0_0(helper_fdecstp);
5113 case 7: /* fincstp */
5114 tcg_gen_helper_0_0(helper_fincstp);
5118 case 0x0f: /* grp d9/7 */
5121 tcg_gen_helper_0_0(helper_fprem);
5123 case 1: /* fyl2xp1 */
5124 tcg_gen_helper_0_0(helper_fyl2xp1);
5127 tcg_gen_helper_0_0(helper_fsqrt);
5129 case 3: /* fsincos */
5130 tcg_gen_helper_0_0(helper_fsincos);
5132 case 5: /* fscale */
5133 tcg_gen_helper_0_0(helper_fscale);
5135 case 4: /* frndint */
5136 tcg_gen_helper_0_0(helper_frndint);
5139 tcg_gen_helper_0_0(helper_fsin);
5143 tcg_gen_helper_0_0(helper_fcos);
5147 case 0x00: case 0x01: case 0x04 ... 0x07: /* fxxx st, sti */
5148 case 0x20: case 0x21: case 0x24 ... 0x27: /* fxxx sti, st */
5149 case 0x30: case 0x31: case 0x34 ... 0x37: /* fxxxp sti, st */
5155 tcg_gen_helper_0_1(helper_fp_arith_STN_ST0[op1], tcg_const_i32(opreg));
5157 tcg_gen_helper_0_0(helper_fpop);
5159 tcg_gen_helper_0_1(helper_fmov_FT0_STN, tcg_const_i32(opreg));
5160 tcg_gen_helper_0_0(helper_fp_arith_ST0_FT0[op1]);
5164 case 0x02: /* fcom */
5165 case 0x22: /* fcom2, undocumented op */
5166 tcg_gen_helper_0_1(helper_fmov_FT0_STN, tcg_const_i32(opreg));
5167 tcg_gen_helper_0_0(helper_fcom_ST0_FT0);
5169 case 0x03: /* fcomp */
5170 case 0x23: /* fcomp3, undocumented op */
5171 case 0x32: /* fcomp5, undocumented op */
5172 tcg_gen_helper_0_1(helper_fmov_FT0_STN, tcg_const_i32(opreg));
5173 tcg_gen_helper_0_0(helper_fcom_ST0_FT0);
5174 tcg_gen_helper_0_0(helper_fpop);
5176 case 0x15: /* da/5 */
5178 case 1: /* fucompp */
5179 tcg_gen_helper_0_1(helper_fmov_FT0_STN, tcg_const_i32(1));
5180 tcg_gen_helper_0_0(helper_fucom_ST0_FT0);
5181 tcg_gen_helper_0_0(helper_fpop);
5182 tcg_gen_helper_0_0(helper_fpop);
5190 case 0: /* feni (287 only, just do nop here) */
5192 case 1: /* fdisi (287 only, just do nop here) */
5195 tcg_gen_helper_0_0(helper_fclex);
5197 case 3: /* fninit */
5198 tcg_gen_helper_0_0(helper_fninit);
5200 case 4: /* fsetpm (287 only, just do nop here) */
5206 case 0x1d: /* fucomi */
5207 if (s->cc_op != CC_OP_DYNAMIC)
5208 gen_op_set_cc_op(s->cc_op);
5209 tcg_gen_helper_0_1(helper_fmov_FT0_STN, tcg_const_i32(opreg));
5210 tcg_gen_helper_0_0(helper_fucomi_ST0_FT0);
5211 gen_op_fcomi_dummy();
5212 s->cc_op = CC_OP_EFLAGS;
5214 case 0x1e: /* fcomi */
5215 if (s->cc_op != CC_OP_DYNAMIC)
5216 gen_op_set_cc_op(s->cc_op);
5217 tcg_gen_helper_0_1(helper_fmov_FT0_STN, tcg_const_i32(opreg));
5218 tcg_gen_helper_0_0(helper_fcomi_ST0_FT0);
5219 gen_op_fcomi_dummy();
5220 s->cc_op = CC_OP_EFLAGS;
5222 case 0x28: /* ffree sti */
5223 tcg_gen_helper_0_1(helper_ffree_STN, tcg_const_i32(opreg));
5225 case 0x2a: /* fst sti */
5226 tcg_gen_helper_0_1(helper_fmov_STN_ST0, tcg_const_i32(opreg));
5228 case 0x2b: /* fstp sti */
5229 case 0x0b: /* fstp1 sti, undocumented op */
5230 case 0x3a: /* fstp8 sti, undocumented op */
5231 case 0x3b: /* fstp9 sti, undocumented op */
5232 tcg_gen_helper_0_1(helper_fmov_STN_ST0, tcg_const_i32(opreg));
5233 tcg_gen_helper_0_0(helper_fpop);
5235 case 0x2c: /* fucom st(i) */
5236 tcg_gen_helper_0_1(helper_fmov_FT0_STN, tcg_const_i32(opreg));
5237 tcg_gen_helper_0_0(helper_fucom_ST0_FT0);
5239 case 0x2d: /* fucomp st(i) */
5240 tcg_gen_helper_0_1(helper_fmov_FT0_STN, tcg_const_i32(opreg));
5241 tcg_gen_helper_0_0(helper_fucom_ST0_FT0);
5242 tcg_gen_helper_0_0(helper_fpop);
5244 case 0x33: /* de/3 */
5246 case 1: /* fcompp */
5247 tcg_gen_helper_0_1(helper_fmov_FT0_STN, tcg_const_i32(1));
5248 tcg_gen_helper_0_0(helper_fcom_ST0_FT0);
5249 tcg_gen_helper_0_0(helper_fpop);
5250 tcg_gen_helper_0_0(helper_fpop);
5256 case 0x38: /* ffreep sti, undocumented op */
5257 tcg_gen_helper_0_1(helper_ffree_STN, tcg_const_i32(opreg));
5258 tcg_gen_helper_0_0(helper_fpop);
5260 case 0x3c: /* df/4 */
5263 tcg_gen_helper_1_0(helper_fnstsw, cpu_tmp2_i32);
5264 tcg_gen_extu_i32_tl(cpu_T[0], cpu_tmp2_i32);
5265 gen_op_mov_reg_T0(OT_WORD, R_EAX);
5271 case 0x3d: /* fucomip */
5272 if (s->cc_op != CC_OP_DYNAMIC)
5273 gen_op_set_cc_op(s->cc_op);
5274 tcg_gen_helper_0_1(helper_fmov_FT0_STN, tcg_const_i32(opreg));
5275 tcg_gen_helper_0_0(helper_fucomi_ST0_FT0);
5276 tcg_gen_helper_0_0(helper_fpop);
5277 gen_op_fcomi_dummy();
5278 s->cc_op = CC_OP_EFLAGS;
5280 case 0x3e: /* fcomip */
5281 if (s->cc_op != CC_OP_DYNAMIC)
5282 gen_op_set_cc_op(s->cc_op);
5283 tcg_gen_helper_0_1(helper_fmov_FT0_STN, tcg_const_i32(opreg));
5284 tcg_gen_helper_0_0(helper_fcomi_ST0_FT0);
5285 tcg_gen_helper_0_0(helper_fpop);
5286 gen_op_fcomi_dummy();
5287 s->cc_op = CC_OP_EFLAGS;
5289 case 0x10 ... 0x13: /* fcmovxx */
5293 const static uint8_t fcmov_cc[8] = {
5299 op1 = fcmov_cc[op & 3] | ((op >> 3) & 1);
5301 l1 = gen_new_label();
5302 tcg_gen_brcond_tl(TCG_COND_EQ, cpu_T[0], tcg_const_tl(0), l1);
5303 tcg_gen_helper_0_1(helper_fmov_ST0_STN, tcg_const_i32(opreg));
5312 /************************/
5315 case 0xa4: /* movsS */
5320 ot = dflag + OT_WORD;
5322 if (prefixes & (PREFIX_REPZ | PREFIX_REPNZ)) {
5323 gen_repz_movs(s, ot, pc_start - s->cs_base, s->pc - s->cs_base);
5329 case 0xaa: /* stosS */
5334 ot = dflag + OT_WORD;
5336 if (prefixes & (PREFIX_REPZ | PREFIX_REPNZ)) {
5337 gen_repz_stos(s, ot, pc_start - s->cs_base, s->pc - s->cs_base);
5342 case 0xac: /* lodsS */
5347 ot = dflag + OT_WORD;
5348 if (prefixes & (PREFIX_REPZ | PREFIX_REPNZ)) {
5349 gen_repz_lods(s, ot, pc_start - s->cs_base, s->pc - s->cs_base);
5354 case 0xae: /* scasS */
5359 ot = dflag + OT_WORD;
5360 if (prefixes & PREFIX_REPNZ) {
5361 gen_repz_scas(s, ot, pc_start - s->cs_base, s->pc - s->cs_base, 1);
5362 } else if (prefixes & PREFIX_REPZ) {
5363 gen_repz_scas(s, ot, pc_start - s->cs_base, s->pc - s->cs_base, 0);
5366 s->cc_op = CC_OP_SUBB + ot;
5370 case 0xa6: /* cmpsS */
5375 ot = dflag + OT_WORD;
5376 if (prefixes & PREFIX_REPNZ) {
5377 gen_repz_cmps(s, ot, pc_start - s->cs_base, s->pc - s->cs_base, 1);
5378 } else if (prefixes & PREFIX_REPZ) {
5379 gen_repz_cmps(s, ot, pc_start - s->cs_base, s->pc - s->cs_base, 0);
5382 s->cc_op = CC_OP_SUBB + ot;
5385 case 0x6c: /* insS */
5390 ot = dflag ? OT_LONG : OT_WORD;
5391 gen_op_mov_TN_reg(OT_WORD, 0, R_EDX);
5392 gen_op_andl_T0_ffff();
5393 gen_check_io(s, ot, pc_start - s->cs_base,
5394 SVM_IOIO_TYPE_MASK | svm_is_rep(prefixes) | 4);
5395 if (prefixes & (PREFIX_REPZ | PREFIX_REPNZ)) {
5396 gen_repz_ins(s, ot, pc_start - s->cs_base, s->pc - s->cs_base);
5401 case 0x6e: /* outsS */
5406 ot = dflag ? OT_LONG : OT_WORD;
5407 gen_op_mov_TN_reg(OT_WORD, 0, R_EDX);
5408 gen_op_andl_T0_ffff();
5409 gen_check_io(s, ot, pc_start - s->cs_base,
5410 svm_is_rep(prefixes) | 4);
5411 if (prefixes & (PREFIX_REPZ | PREFIX_REPNZ)) {
5412 gen_repz_outs(s, ot, pc_start - s->cs_base, s->pc - s->cs_base);
5418 /************************/
5426 ot = dflag ? OT_LONG : OT_WORD;
5427 val = ldub_code(s->pc++);
5428 gen_op_movl_T0_im(val);
5429 gen_check_io(s, ot, pc_start - s->cs_base,
5430 SVM_IOIO_TYPE_MASK | svm_is_rep(prefixes));
5431 tcg_gen_trunc_tl_i32(cpu_tmp2_i32, cpu_T[0]);
5432 tcg_gen_helper_1_1(helper_in_func[ot], cpu_T[1], cpu_tmp2_i32);
5433 gen_op_mov_reg_T1(ot, R_EAX);
5440 ot = dflag ? OT_LONG : OT_WORD;
5441 val = ldub_code(s->pc++);
5442 gen_op_movl_T0_im(val);
5443 gen_check_io(s, ot, pc_start - s->cs_base,
5444 svm_is_rep(prefixes));
5445 gen_op_mov_TN_reg(ot, 1, R_EAX);
5447 tcg_gen_trunc_tl_i32(cpu_tmp2_i32, cpu_T[0]);
5448 tcg_gen_andi_i32(cpu_tmp2_i32, cpu_tmp2_i32, 0xffff);
5449 tcg_gen_trunc_tl_i32(cpu_tmp3_i32, cpu_T[1]);
5450 tcg_gen_helper_0_2(helper_out_func[ot], cpu_tmp2_i32, cpu_tmp3_i32);
5457 ot = dflag ? OT_LONG : OT_WORD;
5458 gen_op_mov_TN_reg(OT_WORD, 0, R_EDX);
5459 gen_op_andl_T0_ffff();
5460 gen_check_io(s, ot, pc_start - s->cs_base,
5461 SVM_IOIO_TYPE_MASK | svm_is_rep(prefixes));
5462 tcg_gen_trunc_tl_i32(cpu_tmp2_i32, cpu_T[0]);
5463 tcg_gen_helper_1_1(helper_in_func[ot], cpu_T[1], cpu_tmp2_i32);
5464 gen_op_mov_reg_T1(ot, R_EAX);
5471 ot = dflag ? OT_LONG : OT_WORD;
5472 gen_op_mov_TN_reg(OT_WORD, 0, R_EDX);
5473 gen_op_andl_T0_ffff();
5474 gen_check_io(s, ot, pc_start - s->cs_base,
5475 svm_is_rep(prefixes));
5476 gen_op_mov_TN_reg(ot, 1, R_EAX);
5478 tcg_gen_trunc_tl_i32(cpu_tmp2_i32, cpu_T[0]);
5479 tcg_gen_andi_i32(cpu_tmp2_i32, cpu_tmp2_i32, 0xffff);
5480 tcg_gen_trunc_tl_i32(cpu_tmp3_i32, cpu_T[1]);
5481 tcg_gen_helper_0_2(helper_out_func[ot], cpu_tmp2_i32, cpu_tmp3_i32);
5484 /************************/
5486 case 0xc2: /* ret im */
5487 val = ldsw_code(s->pc);
5490 if (CODE64(s) && s->dflag)
5492 gen_stack_update(s, val + (2 << s->dflag));
5494 gen_op_andl_T0_ffff();
5498 case 0xc3: /* ret */
5502 gen_op_andl_T0_ffff();
5506 case 0xca: /* lret im */
5507 val = ldsw_code(s->pc);
5510 if (s->pe && !s->vm86) {
5511 if (s->cc_op != CC_OP_DYNAMIC)
5512 gen_op_set_cc_op(s->cc_op);
5513 gen_jmp_im(pc_start - s->cs_base);
5514 tcg_gen_helper_0_2(helper_lret_protected,
5515 tcg_const_i32(s->dflag),
5516 tcg_const_i32(val));
5520 gen_op_ld_T0_A0(1 + s->dflag + s->mem_index);
5522 gen_op_andl_T0_ffff();
5523 /* NOTE: keeping EIP updated is not a problem in case of
5527 gen_op_addl_A0_im(2 << s->dflag);
5528 gen_op_ld_T0_A0(1 + s->dflag + s->mem_index);
5529 gen_op_movl_seg_T0_vm(offsetof(CPUX86State,segs[R_CS]));
5530 /* add stack offset */
5531 gen_stack_update(s, val + (4 << s->dflag));
5535 case 0xcb: /* lret */
5538 case 0xcf: /* iret */
5539 if (gen_svm_check_intercept(s, pc_start, SVM_EXIT_IRET))
5543 tcg_gen_helper_0_1(helper_iret_real, tcg_const_i32(s->dflag));
5544 s->cc_op = CC_OP_EFLAGS;
5545 } else if (s->vm86) {
5547 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
5549 tcg_gen_helper_0_1(helper_iret_real, tcg_const_i32(s->dflag));
5550 s->cc_op = CC_OP_EFLAGS;
5553 if (s->cc_op != CC_OP_DYNAMIC)
5554 gen_op_set_cc_op(s->cc_op);
5555 gen_jmp_im(pc_start - s->cs_base);
5556 tcg_gen_helper_0_2(helper_iret_protected,
5557 tcg_const_i32(s->dflag),
5558 tcg_const_i32(s->pc - s->cs_base));
5559 s->cc_op = CC_OP_EFLAGS;
5563 case 0xe8: /* call im */
5566 tval = (int32_t)insn_get(s, OT_LONG);
5568 tval = (int16_t)insn_get(s, OT_WORD);
5569 next_eip = s->pc - s->cs_base;
5573 gen_movtl_T0_im(next_eip);
5578 case 0x9a: /* lcall im */
5580 unsigned int selector, offset;
5584 ot = dflag ? OT_LONG : OT_WORD;
5585 offset = insn_get(s, ot);
5586 selector = insn_get(s, OT_WORD);
5588 gen_op_movl_T0_im(selector);
5589 gen_op_movl_T1_imu(offset);
5592 case 0xe9: /* jmp im */
5594 tval = (int32_t)insn_get(s, OT_LONG);
5596 tval = (int16_t)insn_get(s, OT_WORD);
5597 tval += s->pc - s->cs_base;
5602 case 0xea: /* ljmp im */
5604 unsigned int selector, offset;
5608 ot = dflag ? OT_LONG : OT_WORD;
5609 offset = insn_get(s, ot);
5610 selector = insn_get(s, OT_WORD);
5612 gen_op_movl_T0_im(selector);
5613 gen_op_movl_T1_imu(offset);
5616 case 0xeb: /* jmp Jb */
5617 tval = (int8_t)insn_get(s, OT_BYTE);
5618 tval += s->pc - s->cs_base;
5623 case 0x70 ... 0x7f: /* jcc Jb */
5624 tval = (int8_t)insn_get(s, OT_BYTE);
5626 case 0x180 ... 0x18f: /* jcc Jv */
5628 tval = (int32_t)insn_get(s, OT_LONG);
5630 tval = (int16_t)insn_get(s, OT_WORD);
5633 next_eip = s->pc - s->cs_base;
5637 gen_jcc(s, b, tval, next_eip);
5640 case 0x190 ... 0x19f: /* setcc Gv */
5641 modrm = ldub_code(s->pc++);
5643 gen_ldst_modrm(s, modrm, OT_BYTE, OR_TMP0, 1);
5645 case 0x140 ... 0x14f: /* cmov Gv, Ev */
5646 ot = dflag + OT_WORD;
5647 modrm = ldub_code(s->pc++);
5648 reg = ((modrm >> 3) & 7) | rex_r;
5649 mod = (modrm >> 6) & 3;
5652 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
5653 gen_op_ld_T1_A0(ot + s->mem_index);
5655 rm = (modrm & 7) | REX_B(s);
5656 gen_op_mov_TN_reg(ot, 1, rm);
5658 gen_op_cmov_reg_T1_T0[ot - OT_WORD][reg]();
5661 /************************/
5663 case 0x9c: /* pushf */
5664 if (gen_svm_check_intercept(s, pc_start, SVM_EXIT_PUSHF))
5666 if (s->vm86 && s->iopl != 3) {
5667 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
5669 if (s->cc_op != CC_OP_DYNAMIC)
5670 gen_op_set_cc_op(s->cc_op);
5671 gen_op_movl_T0_eflags();
5675 case 0x9d: /* popf */
5676 if (gen_svm_check_intercept(s, pc_start, SVM_EXIT_POPF))
5678 if (s->vm86 && s->iopl != 3) {
5679 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
5684 gen_op_movl_eflags_T0_cpl0();
5686 gen_op_movw_eflags_T0_cpl0();
5689 if (s->cpl <= s->iopl) {
5691 gen_op_movl_eflags_T0_io();
5693 gen_op_movw_eflags_T0_io();
5697 gen_op_movl_eflags_T0();
5699 gen_op_movw_eflags_T0();
5704 s->cc_op = CC_OP_EFLAGS;
5705 /* abort translation because TF flag may change */
5706 gen_jmp_im(s->pc - s->cs_base);
5710 case 0x9e: /* sahf */
5713 gen_op_mov_TN_reg(OT_BYTE, 0, R_AH);
5714 if (s->cc_op != CC_OP_DYNAMIC)
5715 gen_op_set_cc_op(s->cc_op);
5716 gen_op_movb_eflags_T0();
5717 s->cc_op = CC_OP_EFLAGS;
5719 case 0x9f: /* lahf */
5722 if (s->cc_op != CC_OP_DYNAMIC)
5723 gen_op_set_cc_op(s->cc_op);
5724 gen_op_movl_T0_eflags();
5725 gen_op_mov_reg_T0(OT_BYTE, R_AH);
5727 case 0xf5: /* cmc */
5728 if (s->cc_op != CC_OP_DYNAMIC)
5729 gen_op_set_cc_op(s->cc_op);
5731 s->cc_op = CC_OP_EFLAGS;
5733 case 0xf8: /* clc */
5734 if (s->cc_op != CC_OP_DYNAMIC)
5735 gen_op_set_cc_op(s->cc_op);
5737 s->cc_op = CC_OP_EFLAGS;
5739 case 0xf9: /* stc */
5740 if (s->cc_op != CC_OP_DYNAMIC)
5741 gen_op_set_cc_op(s->cc_op);
5743 s->cc_op = CC_OP_EFLAGS;
5745 case 0xfc: /* cld */
5746 tcg_gen_movi_i32(cpu_tmp2_i32, 1);
5747 tcg_gen_st_i32(cpu_tmp2_i32, cpu_env, offsetof(CPUState, df));
5749 case 0xfd: /* std */
5750 tcg_gen_movi_i32(cpu_tmp2_i32, -1);
5751 tcg_gen_st_i32(cpu_tmp2_i32, cpu_env, offsetof(CPUState, df));
5754 /************************/
5755 /* bit operations */
5756 case 0x1ba: /* bt/bts/btr/btc Gv, im */
5757 ot = dflag + OT_WORD;
5758 modrm = ldub_code(s->pc++);
5759 op = (modrm >> 3) & 7;
5760 mod = (modrm >> 6) & 3;
5761 rm = (modrm & 7) | REX_B(s);
5764 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
5765 gen_op_ld_T0_A0(ot + s->mem_index);
5767 gen_op_mov_TN_reg(ot, 0, rm);
5770 val = ldub_code(s->pc++);
5771 gen_op_movl_T1_im(val);
5776 case 0x1a3: /* bt Gv, Ev */
5779 case 0x1ab: /* bts */
5782 case 0x1b3: /* btr */
5785 case 0x1bb: /* btc */
5788 ot = dflag + OT_WORD;
5789 modrm = ldub_code(s->pc++);
5790 reg = ((modrm >> 3) & 7) | rex_r;
5791 mod = (modrm >> 6) & 3;
5792 rm = (modrm & 7) | REX_B(s);
5793 gen_op_mov_TN_reg(OT_LONG, 1, reg);
5795 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
5796 /* specific case: we need to add a displacement */
5797 gen_exts(ot, cpu_T[1]);
5798 tcg_gen_sari_tl(cpu_tmp0, cpu_T[1], 3 + ot);
5799 tcg_gen_shli_tl(cpu_tmp0, cpu_tmp0, ot);
5800 tcg_gen_add_tl(cpu_A0, cpu_A0, cpu_tmp0);
5801 gen_op_ld_T0_A0(ot + s->mem_index);
5803 gen_op_mov_TN_reg(ot, 0, rm);
5806 tcg_gen_andi_tl(cpu_T[1], cpu_T[1], (1 << (3 + ot)) - 1);
5809 tcg_gen_shr_tl(cpu_cc_src, cpu_T[0], cpu_T[1]);
5810 tcg_gen_movi_tl(cpu_cc_dst, 0);
5813 tcg_gen_shr_tl(cpu_tmp4, cpu_T[0], cpu_T[1]);
5814 tcg_gen_movi_tl(cpu_tmp0, 1);
5815 tcg_gen_shl_tl(cpu_tmp0, cpu_tmp0, cpu_T[1]);
5816 tcg_gen_or_tl(cpu_T[0], cpu_T[0], cpu_tmp0);
5819 tcg_gen_shr_tl(cpu_tmp4, cpu_T[0], cpu_T[1]);
5820 tcg_gen_movi_tl(cpu_tmp0, 1);
5821 tcg_gen_shl_tl(cpu_tmp0, cpu_tmp0, cpu_T[1]);
5822 tcg_gen_not_tl(cpu_tmp0, cpu_tmp0);
5823 tcg_gen_and_tl(cpu_T[0], cpu_T[0], cpu_tmp0);
5827 tcg_gen_shr_tl(cpu_tmp4, cpu_T[0], cpu_T[1]);
5828 tcg_gen_movi_tl(cpu_tmp0, 1);
5829 tcg_gen_shl_tl(cpu_tmp0, cpu_tmp0, cpu_T[1]);
5830 tcg_gen_xor_tl(cpu_T[0], cpu_T[0], cpu_tmp0);
5833 s->cc_op = CC_OP_SARB + ot;
5836 gen_op_st_T0_A0(ot + s->mem_index);
5838 gen_op_mov_reg_T0(ot, rm);
5839 tcg_gen_mov_tl(cpu_cc_src, cpu_tmp4);
5840 tcg_gen_movi_tl(cpu_cc_dst, 0);
5843 case 0x1bc: /* bsf */
5844 case 0x1bd: /* bsr */
5847 ot = dflag + OT_WORD;
5848 modrm = ldub_code(s->pc++);
5849 reg = ((modrm >> 3) & 7) | rex_r;
5850 gen_ldst_modrm(s, modrm, ot, OR_TMP0, 0);
5851 gen_extu(ot, cpu_T[0]);
5852 label1 = gen_new_label();
5853 tcg_gen_movi_tl(cpu_cc_dst, 0);
5854 tcg_gen_brcond_tl(TCG_COND_EQ, cpu_T[0], tcg_const_tl(0), label1);
5856 tcg_gen_helper_1_1(helper_bsr, cpu_T[0], cpu_T[0]);
5858 tcg_gen_helper_1_1(helper_bsf, cpu_T[0], cpu_T[0]);
5860 gen_op_mov_reg_T0(ot, reg);
5861 tcg_gen_movi_tl(cpu_cc_dst, 1);
5862 gen_set_label(label1);
5863 tcg_gen_discard_tl(cpu_cc_src);
5864 s->cc_op = CC_OP_LOGICB + ot;
5867 /************************/
5869 case 0x27: /* daa */
5872 if (s->cc_op != CC_OP_DYNAMIC)
5873 gen_op_set_cc_op(s->cc_op);
5875 s->cc_op = CC_OP_EFLAGS;
5877 case 0x2f: /* das */
5880 if (s->cc_op != CC_OP_DYNAMIC)
5881 gen_op_set_cc_op(s->cc_op);
5883 s->cc_op = CC_OP_EFLAGS;
5885 case 0x37: /* aaa */
5888 if (s->cc_op != CC_OP_DYNAMIC)
5889 gen_op_set_cc_op(s->cc_op);
5891 s->cc_op = CC_OP_EFLAGS;
5893 case 0x3f: /* aas */
5896 if (s->cc_op != CC_OP_DYNAMIC)
5897 gen_op_set_cc_op(s->cc_op);
5899 s->cc_op = CC_OP_EFLAGS;
5901 case 0xd4: /* aam */
5904 val = ldub_code(s->pc++);
5906 gen_exception(s, EXCP00_DIVZ, pc_start - s->cs_base);
5909 s->cc_op = CC_OP_LOGICB;
5912 case 0xd5: /* aad */
5915 val = ldub_code(s->pc++);
5917 s->cc_op = CC_OP_LOGICB;
5919 /************************/
5921 case 0x90: /* nop */
5922 /* XXX: xchg + rex handling */
5923 /* XXX: correct lock test for all insn */
5924 if (prefixes & PREFIX_LOCK)
5926 if (prefixes & PREFIX_REPZ) {
5927 gen_svm_check_intercept(s, pc_start, SVM_EXIT_PAUSE);
5930 case 0x9b: /* fwait */
5931 if ((s->flags & (HF_MP_MASK | HF_TS_MASK)) ==
5932 (HF_MP_MASK | HF_TS_MASK)) {
5933 gen_exception(s, EXCP07_PREX, pc_start - s->cs_base);
5935 if (s->cc_op != CC_OP_DYNAMIC)
5936 gen_op_set_cc_op(s->cc_op);
5937 gen_jmp_im(pc_start - s->cs_base);
5938 tcg_gen_helper_0_0(helper_fwait);
5941 case 0xcc: /* int3 */
5942 if (gen_svm_check_intercept(s, pc_start, SVM_EXIT_SWINT))
5944 gen_interrupt(s, EXCP03_INT3, pc_start - s->cs_base, s->pc - s->cs_base);
5946 case 0xcd: /* int N */
5947 val = ldub_code(s->pc++);
5948 if (gen_svm_check_intercept(s, pc_start, SVM_EXIT_SWINT))
5950 if (s->vm86 && s->iopl != 3) {
5951 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
5953 gen_interrupt(s, val, pc_start - s->cs_base, s->pc - s->cs_base);
5956 case 0xce: /* into */
5959 if (gen_svm_check_intercept(s, pc_start, SVM_EXIT_SWINT))
5961 if (s->cc_op != CC_OP_DYNAMIC)
5962 gen_op_set_cc_op(s->cc_op);
5963 gen_jmp_im(pc_start - s->cs_base);
5964 gen_op_into(s->pc - pc_start);
5966 case 0xf1: /* icebp (undocumented, exits to external debugger) */
5967 if (gen_svm_check_intercept(s, pc_start, SVM_EXIT_ICEBP))
5970 gen_debug(s, pc_start - s->cs_base);
5973 tb_flush(cpu_single_env);
5974 cpu_set_log(CPU_LOG_INT | CPU_LOG_TB_IN_ASM);
5977 case 0xfa: /* cli */
5979 if (s->cpl <= s->iopl) {
5980 tcg_gen_helper_0_0(helper_cli);
5982 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
5986 tcg_gen_helper_0_0(helper_cli);
5988 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
5992 case 0xfb: /* sti */
5994 if (s->cpl <= s->iopl) {
5996 tcg_gen_helper_0_0(helper_sti);
5997 /* interruptions are enabled only the first insn after sti */
5998 /* If several instructions disable interrupts, only the
6000 if (!(s->tb->flags & HF_INHIBIT_IRQ_MASK))
6001 tcg_gen_helper_0_0(helper_set_inhibit_irq);
6002 /* give a chance to handle pending irqs */
6003 gen_jmp_im(s->pc - s->cs_base);
6006 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
6012 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
6016 case 0x62: /* bound */
6019 ot = dflag ? OT_LONG : OT_WORD;
6020 modrm = ldub_code(s->pc++);
6021 reg = (modrm >> 3) & 7;
6022 mod = (modrm >> 6) & 3;
6025 gen_op_mov_TN_reg(ot, 0, reg);
6026 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
6027 gen_jmp_im(pc_start - s->cs_base);
6028 tcg_gen_trunc_tl_i32(cpu_tmp2_i32, cpu_T[0]);
6030 tcg_gen_helper_0_2(helper_boundw, cpu_A0, cpu_tmp2_i32);
6032 tcg_gen_helper_0_2(helper_boundl, cpu_A0, cpu_tmp2_i32);
6034 case 0x1c8 ... 0x1cf: /* bswap reg */
6035 reg = (b & 7) | REX_B(s);
6036 #ifdef TARGET_X86_64
6038 gen_op_mov_TN_reg(OT_QUAD, 0, reg);
6039 tcg_gen_bswap_i64(cpu_T[0], cpu_T[0]);
6040 gen_op_mov_reg_T0(OT_QUAD, reg);
6044 gen_op_mov_TN_reg(OT_LONG, 0, reg);
6046 tmp0 = tcg_temp_new(TCG_TYPE_I32);
6047 tcg_gen_trunc_i64_i32(tmp0, cpu_T[0]);
6048 tcg_gen_bswap_i32(tmp0, tmp0);
6049 tcg_gen_extu_i32_i64(cpu_T[0], tmp0);
6050 gen_op_mov_reg_T0(OT_LONG, reg);
6054 gen_op_mov_TN_reg(OT_LONG, 0, reg);
6055 tcg_gen_bswap_i32(cpu_T[0], cpu_T[0]);
6056 gen_op_mov_reg_T0(OT_LONG, reg);
6060 case 0xd6: /* salc */
6063 if (s->cc_op != CC_OP_DYNAMIC)
6064 gen_op_set_cc_op(s->cc_op);
6067 case 0xe0: /* loopnz */
6068 case 0xe1: /* loopz */
6069 if (s->cc_op != CC_OP_DYNAMIC)
6070 gen_op_set_cc_op(s->cc_op);
6072 case 0xe2: /* loop */
6073 case 0xe3: /* jecxz */
6077 tval = (int8_t)insn_get(s, OT_BYTE);
6078 next_eip = s->pc - s->cs_base;
6083 l1 = gen_new_label();
6084 l2 = gen_new_label();
6087 gen_op_jz_ecx[s->aflag](l1);
6089 gen_op_dec_ECX[s->aflag]();
6092 gen_op_loop[s->aflag][b](l1);
6095 gen_jmp_im(next_eip);
6096 gen_op_jmp_label(l2);
6103 case 0x130: /* wrmsr */
6104 case 0x132: /* rdmsr */
6106 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
6110 retval = gen_svm_check_intercept_param(s, pc_start, SVM_EXIT_MSR, 0);
6111 tcg_gen_helper_0_0(helper_rdmsr);
6113 retval = gen_svm_check_intercept_param(s, pc_start, SVM_EXIT_MSR, 1);
6114 tcg_gen_helper_0_0(helper_wrmsr);
6120 case 0x131: /* rdtsc */
6121 if (gen_svm_check_intercept(s, pc_start, SVM_EXIT_RDTSC))
6123 gen_jmp_im(pc_start - s->cs_base);
6124 tcg_gen_helper_0_0(helper_rdtsc);
6126 case 0x133: /* rdpmc */
6127 gen_jmp_im(pc_start - s->cs_base);
6128 tcg_gen_helper_0_0(helper_rdpmc);
6130 case 0x134: /* sysenter */
6134 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
6136 if (s->cc_op != CC_OP_DYNAMIC) {
6137 gen_op_set_cc_op(s->cc_op);
6138 s->cc_op = CC_OP_DYNAMIC;
6140 gen_jmp_im(pc_start - s->cs_base);
6141 tcg_gen_helper_0_0(helper_sysenter);
6145 case 0x135: /* sysexit */
6149 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
6151 if (s->cc_op != CC_OP_DYNAMIC) {
6152 gen_op_set_cc_op(s->cc_op);
6153 s->cc_op = CC_OP_DYNAMIC;
6155 gen_jmp_im(pc_start - s->cs_base);
6156 tcg_gen_helper_0_0(helper_sysexit);
6160 #ifdef TARGET_X86_64
6161 case 0x105: /* syscall */
6162 /* XXX: is it usable in real mode ? */
6163 if (s->cc_op != CC_OP_DYNAMIC) {
6164 gen_op_set_cc_op(s->cc_op);
6165 s->cc_op = CC_OP_DYNAMIC;
6167 gen_jmp_im(pc_start - s->cs_base);
6168 tcg_gen_helper_0_1(helper_syscall, tcg_const_i32(s->pc - pc_start));
6171 case 0x107: /* sysret */
6173 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
6175 if (s->cc_op != CC_OP_DYNAMIC) {
6176 gen_op_set_cc_op(s->cc_op);
6177 s->cc_op = CC_OP_DYNAMIC;
6179 gen_jmp_im(pc_start - s->cs_base);
6180 tcg_gen_helper_0_1(helper_sysret, tcg_const_i32(s->dflag));
6181 /* condition codes are modified only in long mode */
6183 s->cc_op = CC_OP_EFLAGS;
6188 case 0x1a2: /* cpuid */
6189 if (gen_svm_check_intercept(s, pc_start, SVM_EXIT_CPUID))
6191 tcg_gen_helper_0_0(helper_cpuid);
6193 case 0xf4: /* hlt */
6195 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
6197 if (gen_svm_check_intercept(s, pc_start, SVM_EXIT_HLT))
6199 if (s->cc_op != CC_OP_DYNAMIC)
6200 gen_op_set_cc_op(s->cc_op);
6201 gen_jmp_im(s->pc - s->cs_base);
6202 tcg_gen_helper_0_0(helper_hlt);
6207 modrm = ldub_code(s->pc++);
6208 mod = (modrm >> 6) & 3;
6209 op = (modrm >> 3) & 7;
6212 if (!s->pe || s->vm86)
6214 if (gen_svm_check_intercept(s, pc_start, SVM_EXIT_LDTR_READ))
6216 gen_op_movl_T0_env(offsetof(CPUX86State,ldt.selector));
6220 gen_ldst_modrm(s, modrm, ot, OR_TMP0, 1);
6223 if (!s->pe || s->vm86)
6226 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
6228 if (gen_svm_check_intercept(s, pc_start, SVM_EXIT_LDTR_WRITE))
6230 gen_ldst_modrm(s, modrm, OT_WORD, OR_TMP0, 0);
6231 gen_jmp_im(pc_start - s->cs_base);
6232 tcg_gen_trunc_tl_i32(cpu_tmp2_i32, cpu_T[0]);
6233 tcg_gen_helper_0_1(helper_lldt, cpu_tmp2_i32);
6237 if (!s->pe || s->vm86)
6239 if (gen_svm_check_intercept(s, pc_start, SVM_EXIT_TR_READ))
6241 gen_op_movl_T0_env(offsetof(CPUX86State,tr.selector));
6245 gen_ldst_modrm(s, modrm, ot, OR_TMP0, 1);
6248 if (!s->pe || s->vm86)
6251 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
6253 if (gen_svm_check_intercept(s, pc_start, SVM_EXIT_TR_WRITE))
6255 gen_ldst_modrm(s, modrm, OT_WORD, OR_TMP0, 0);
6256 gen_jmp_im(pc_start - s->cs_base);
6257 tcg_gen_trunc_tl_i32(cpu_tmp2_i32, cpu_T[0]);
6258 tcg_gen_helper_0_1(helper_ltr, cpu_tmp2_i32);
6263 if (!s->pe || s->vm86)
6265 gen_ldst_modrm(s, modrm, OT_WORD, OR_TMP0, 0);
6266 if (s->cc_op != CC_OP_DYNAMIC)
6267 gen_op_set_cc_op(s->cc_op);
6272 s->cc_op = CC_OP_EFLAGS;
6279 modrm = ldub_code(s->pc++);
6280 mod = (modrm >> 6) & 3;
6281 op = (modrm >> 3) & 7;
6287 if (gen_svm_check_intercept(s, pc_start, SVM_EXIT_GDTR_READ))
6289 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
6290 gen_op_movl_T0_env(offsetof(CPUX86State, gdt.limit));
6291 gen_op_st_T0_A0(OT_WORD + s->mem_index);
6292 gen_add_A0_im(s, 2);
6293 gen_op_movtl_T0_env(offsetof(CPUX86State, gdt.base));
6295 gen_op_andl_T0_im(0xffffff);
6296 gen_op_st_T0_A0(CODE64(s) + OT_LONG + s->mem_index);
6301 case 0: /* monitor */
6302 if (!(s->cpuid_ext_features & CPUID_EXT_MONITOR) ||
6305 if (gen_svm_check_intercept(s, pc_start, SVM_EXIT_MONITOR))
6307 gen_jmp_im(pc_start - s->cs_base);
6308 #ifdef TARGET_X86_64
6309 if (s->aflag == 2) {
6310 gen_op_movq_A0_reg(R_EAX);
6314 gen_op_movl_A0_reg(R_EAX);
6316 gen_op_andl_A0_ffff();
6318 gen_add_A0_ds_seg(s);
6319 tcg_gen_helper_0_1(helper_monitor, cpu_A0);
6322 if (!(s->cpuid_ext_features & CPUID_EXT_MONITOR) ||
6325 if (s->cc_op != CC_OP_DYNAMIC) {
6326 gen_op_set_cc_op(s->cc_op);
6327 s->cc_op = CC_OP_DYNAMIC;
6329 if (gen_svm_check_intercept(s, pc_start, SVM_EXIT_MWAIT))
6331 gen_jmp_im(s->pc - s->cs_base);
6332 tcg_gen_helper_0_0(helper_mwait);
6339 if (gen_svm_check_intercept(s, pc_start, SVM_EXIT_IDTR_READ))
6341 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
6342 gen_op_movl_T0_env(offsetof(CPUX86State, idt.limit));
6343 gen_op_st_T0_A0(OT_WORD + s->mem_index);
6344 gen_add_A0_im(s, 2);
6345 gen_op_movtl_T0_env(offsetof(CPUX86State, idt.base));
6347 gen_op_andl_T0_im(0xffffff);
6348 gen_op_st_T0_A0(CODE64(s) + OT_LONG + s->mem_index);
6356 if (gen_svm_check_intercept(s, pc_start, SVM_EXIT_VMRUN))
6358 if (s->cc_op != CC_OP_DYNAMIC)
6359 gen_op_set_cc_op(s->cc_op);
6360 gen_jmp_im(s->pc - s->cs_base);
6361 tcg_gen_helper_0_0(helper_vmrun);
6362 s->cc_op = CC_OP_EFLAGS;
6365 case 1: /* VMMCALL */
6366 if (gen_svm_check_intercept(s, pc_start, SVM_EXIT_VMMCALL))
6368 /* FIXME: cause #UD if hflags & SVM */
6369 tcg_gen_helper_0_0(helper_vmmcall);
6371 case 2: /* VMLOAD */
6372 if (gen_svm_check_intercept(s, pc_start, SVM_EXIT_VMLOAD))
6374 tcg_gen_helper_0_0(helper_vmload);
6376 case 3: /* VMSAVE */
6377 if (gen_svm_check_intercept(s, pc_start, SVM_EXIT_VMSAVE))
6379 tcg_gen_helper_0_0(helper_vmsave);
6382 if (gen_svm_check_intercept(s, pc_start, SVM_EXIT_STGI))
6384 tcg_gen_helper_0_0(helper_stgi);
6387 if (gen_svm_check_intercept(s, pc_start, SVM_EXIT_CLGI))
6389 tcg_gen_helper_0_0(helper_clgi);
6391 case 6: /* SKINIT */
6392 if (gen_svm_check_intercept(s, pc_start, SVM_EXIT_SKINIT))
6394 tcg_gen_helper_0_0(helper_skinit);
6396 case 7: /* INVLPGA */
6397 if (gen_svm_check_intercept(s, pc_start, SVM_EXIT_INVLPGA))
6399 tcg_gen_helper_0_0(helper_invlpga);
6404 } else if (s->cpl != 0) {
6405 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
6407 if (gen_svm_check_intercept(s, pc_start,
6408 op==2 ? SVM_EXIT_GDTR_WRITE : SVM_EXIT_IDTR_WRITE))
6410 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
6411 gen_op_ld_T1_A0(OT_WORD + s->mem_index);
6412 gen_add_A0_im(s, 2);
6413 gen_op_ld_T0_A0(CODE64(s) + OT_LONG + s->mem_index);
6415 gen_op_andl_T0_im(0xffffff);
6417 gen_op_movtl_env_T0(offsetof(CPUX86State,gdt.base));
6418 gen_op_movl_env_T1(offsetof(CPUX86State,gdt.limit));
6420 gen_op_movtl_env_T0(offsetof(CPUX86State,idt.base));
6421 gen_op_movl_env_T1(offsetof(CPUX86State,idt.limit));
6426 if (gen_svm_check_intercept(s, pc_start, SVM_EXIT_READ_CR0))
6428 gen_op_movl_T0_env(offsetof(CPUX86State,cr[0]));
6429 gen_ldst_modrm(s, modrm, OT_WORD, OR_TMP0, 1);
6433 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
6435 if (gen_svm_check_intercept(s, pc_start, SVM_EXIT_WRITE_CR0))
6437 gen_ldst_modrm(s, modrm, OT_WORD, OR_TMP0, 0);
6438 tcg_gen_helper_0_1(helper_lmsw, cpu_T[0]);
6439 gen_jmp_im(s->pc - s->cs_base);
6443 case 7: /* invlpg */
6445 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
6448 #ifdef TARGET_X86_64
6449 if (CODE64(s) && rm == 0) {
6451 gen_op_movtl_T0_env(offsetof(CPUX86State,segs[R_GS].base));
6452 gen_op_movtl_T1_env(offsetof(CPUX86State,kernelgsbase));
6453 gen_op_movtl_env_T1(offsetof(CPUX86State,segs[R_GS].base));
6454 gen_op_movtl_env_T0(offsetof(CPUX86State,kernelgsbase));
6461 if (gen_svm_check_intercept(s, pc_start, SVM_EXIT_INVLPG))
6463 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
6464 tcg_gen_helper_0_1(helper_invlpg, cpu_A0);
6465 gen_jmp_im(s->pc - s->cs_base);
6474 case 0x108: /* invd */
6475 case 0x109: /* wbinvd */
6477 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
6479 if (gen_svm_check_intercept(s, pc_start, (b & 2) ? SVM_EXIT_INVD : SVM_EXIT_WBINVD))
6484 case 0x63: /* arpl or movslS (x86_64) */
6485 #ifdef TARGET_X86_64
6488 /* d_ot is the size of destination */
6489 d_ot = dflag + OT_WORD;
6491 modrm = ldub_code(s->pc++);
6492 reg = ((modrm >> 3) & 7) | rex_r;
6493 mod = (modrm >> 6) & 3;
6494 rm = (modrm & 7) | REX_B(s);
6497 gen_op_mov_TN_reg(OT_LONG, 0, rm);
6499 if (d_ot == OT_QUAD)
6500 tcg_gen_ext32s_tl(cpu_T[0], cpu_T[0]);
6501 gen_op_mov_reg_T0(d_ot, reg);
6503 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
6504 if (d_ot == OT_QUAD) {
6505 gen_op_lds_T0_A0(OT_LONG + s->mem_index);
6507 gen_op_ld_T0_A0(OT_LONG + s->mem_index);
6509 gen_op_mov_reg_T0(d_ot, reg);
6514 if (!s->pe || s->vm86)
6516 ot = dflag ? OT_LONG : OT_WORD;
6517 modrm = ldub_code(s->pc++);
6518 reg = (modrm >> 3) & 7;
6519 mod = (modrm >> 6) & 3;
6522 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
6523 gen_op_ld_T0_A0(ot + s->mem_index);
6525 gen_op_mov_TN_reg(ot, 0, rm);
6527 gen_op_mov_TN_reg(ot, 1, reg);
6528 if (s->cc_op != CC_OP_DYNAMIC)
6529 gen_op_set_cc_op(s->cc_op);
6531 s->cc_op = CC_OP_EFLAGS;
6533 gen_op_st_T0_A0(ot + s->mem_index);
6535 gen_op_mov_reg_T0(ot, rm);
6537 gen_op_arpl_update();
6540 case 0x102: /* lar */
6541 case 0x103: /* lsl */
6542 if (!s->pe || s->vm86)
6544 ot = dflag ? OT_LONG : OT_WORD;
6545 modrm = ldub_code(s->pc++);
6546 reg = ((modrm >> 3) & 7) | rex_r;
6547 gen_ldst_modrm(s, modrm, ot, OR_TMP0, 0);
6548 gen_op_mov_TN_reg(ot, 1, reg);
6549 if (s->cc_op != CC_OP_DYNAMIC)
6550 gen_op_set_cc_op(s->cc_op);
6555 s->cc_op = CC_OP_EFLAGS;
6556 gen_op_mov_reg_T1(ot, reg);
6559 modrm = ldub_code(s->pc++);
6560 mod = (modrm >> 6) & 3;
6561 op = (modrm >> 3) & 7;
6563 case 0: /* prefetchnta */
6564 case 1: /* prefetchnt0 */
6565 case 2: /* prefetchnt0 */
6566 case 3: /* prefetchnt0 */
6569 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
6570 /* nothing more to do */
6572 default: /* nop (multi byte) */
6573 gen_nop_modrm(s, modrm);
6577 case 0x119 ... 0x11f: /* nop (multi byte) */
6578 modrm = ldub_code(s->pc++);
6579 gen_nop_modrm(s, modrm);
6581 case 0x120: /* mov reg, crN */
6582 case 0x122: /* mov crN, reg */
6584 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
6586 modrm = ldub_code(s->pc++);
6587 if ((modrm & 0xc0) != 0xc0)
6589 rm = (modrm & 7) | REX_B(s);
6590 reg = ((modrm >> 3) & 7) | rex_r;
6602 gen_svm_check_intercept(s, pc_start, SVM_EXIT_WRITE_CR0 + reg);
6603 gen_op_mov_TN_reg(ot, 0, rm);
6604 tcg_gen_helper_0_2(helper_movl_crN_T0,
6605 tcg_const_i32(reg), cpu_T[0]);
6606 gen_jmp_im(s->pc - s->cs_base);
6609 gen_svm_check_intercept(s, pc_start, SVM_EXIT_READ_CR0 + reg);
6610 #if !defined(CONFIG_USER_ONLY)
6612 tcg_gen_helper_1_0(helper_movtl_T0_cr8, cpu_T[0]);
6615 gen_op_movtl_T0_env(offsetof(CPUX86State,cr[reg]));
6616 gen_op_mov_reg_T0(ot, rm);
6624 case 0x121: /* mov reg, drN */
6625 case 0x123: /* mov drN, reg */
6627 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
6629 modrm = ldub_code(s->pc++);
6630 if ((modrm & 0xc0) != 0xc0)
6632 rm = (modrm & 7) | REX_B(s);
6633 reg = ((modrm >> 3) & 7) | rex_r;
6638 /* XXX: do it dynamically with CR4.DE bit */
6639 if (reg == 4 || reg == 5 || reg >= 8)
6642 gen_svm_check_intercept(s, pc_start, SVM_EXIT_WRITE_DR0 + reg);
6643 gen_op_mov_TN_reg(ot, 0, rm);
6644 tcg_gen_helper_0_2(helper_movl_drN_T0,
6645 tcg_const_i32(reg), cpu_T[0]);
6646 gen_jmp_im(s->pc - s->cs_base);
6649 gen_svm_check_intercept(s, pc_start, SVM_EXIT_READ_DR0 + reg);
6650 gen_op_movtl_T0_env(offsetof(CPUX86State,dr[reg]));
6651 gen_op_mov_reg_T0(ot, rm);
6655 case 0x106: /* clts */
6657 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
6659 gen_svm_check_intercept(s, pc_start, SVM_EXIT_WRITE_CR0);
6660 tcg_gen_helper_0_0(helper_clts);
6661 /* abort block because static cpu state changed */
6662 gen_jmp_im(s->pc - s->cs_base);
6666 /* MMX/3DNow!/SSE/SSE2/SSE3 support */
6667 case 0x1c3: /* MOVNTI reg, mem */
6668 if (!(s->cpuid_features & CPUID_SSE2))
6670 ot = s->dflag == 2 ? OT_QUAD : OT_LONG;
6671 modrm = ldub_code(s->pc++);
6672 mod = (modrm >> 6) & 3;
6675 reg = ((modrm >> 3) & 7) | rex_r;
6676 /* generate a generic store */
6677 gen_ldst_modrm(s, modrm, ot, reg, 1);
6680 modrm = ldub_code(s->pc++);
6681 mod = (modrm >> 6) & 3;
6682 op = (modrm >> 3) & 7;
6684 case 0: /* fxsave */
6685 if (mod == 3 || !(s->cpuid_features & CPUID_FXSR) ||
6686 (s->flags & HF_EM_MASK))
6688 if (s->flags & HF_TS_MASK) {
6689 gen_exception(s, EXCP07_PREX, pc_start - s->cs_base);
6692 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
6693 if (s->cc_op != CC_OP_DYNAMIC)
6694 gen_op_set_cc_op(s->cc_op);
6695 gen_jmp_im(pc_start - s->cs_base);
6696 tcg_gen_helper_0_2(helper_fxsave,
6697 cpu_A0, tcg_const_i32((s->dflag == 2)));
6699 case 1: /* fxrstor */
6700 if (mod == 3 || !(s->cpuid_features & CPUID_FXSR) ||
6701 (s->flags & HF_EM_MASK))
6703 if (s->flags & HF_TS_MASK) {
6704 gen_exception(s, EXCP07_PREX, pc_start - s->cs_base);
6707 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
6708 if (s->cc_op != CC_OP_DYNAMIC)
6709 gen_op_set_cc_op(s->cc_op);
6710 gen_jmp_im(pc_start - s->cs_base);
6711 tcg_gen_helper_0_2(helper_fxrstor,
6712 cpu_A0, tcg_const_i32((s->dflag == 2)));
6714 case 2: /* ldmxcsr */
6715 case 3: /* stmxcsr */
6716 if (s->flags & HF_TS_MASK) {
6717 gen_exception(s, EXCP07_PREX, pc_start - s->cs_base);
6720 if ((s->flags & HF_EM_MASK) || !(s->flags & HF_OSFXSR_MASK) ||
6723 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
6725 gen_op_ld_T0_A0(OT_LONG + s->mem_index);
6726 gen_op_movl_env_T0(offsetof(CPUX86State, mxcsr));
6728 gen_op_movl_T0_env(offsetof(CPUX86State, mxcsr));
6729 gen_op_st_T0_A0(OT_LONG + s->mem_index);
6732 case 5: /* lfence */
6733 case 6: /* mfence */
6734 if ((modrm & 0xc7) != 0xc0 || !(s->cpuid_features & CPUID_SSE))
6737 case 7: /* sfence / clflush */
6738 if ((modrm & 0xc7) == 0xc0) {
6740 /* XXX: also check for cpuid_ext2_features & CPUID_EXT2_EMMX */
6741 if (!(s->cpuid_features & CPUID_SSE))
6745 if (!(s->cpuid_features & CPUID_CLFLUSH))
6747 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
6754 case 0x10d: /* 3DNow! prefetch(w) */
6755 modrm = ldub_code(s->pc++);
6756 mod = (modrm >> 6) & 3;
6759 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
6760 /* ignore for now */
6762 case 0x1aa: /* rsm */
6763 if (gen_svm_check_intercept(s, pc_start, SVM_EXIT_RSM))
6765 if (!(s->flags & HF_SMM_MASK))
6767 if (s->cc_op != CC_OP_DYNAMIC) {
6768 gen_op_set_cc_op(s->cc_op);
6769 s->cc_op = CC_OP_DYNAMIC;
6771 gen_jmp_im(s->pc - s->cs_base);
6772 tcg_gen_helper_0_0(helper_rsm);
6775 case 0x10e ... 0x10f:
6776 /* 3DNow! instructions, ignore prefixes */
6777 s->prefix &= ~(PREFIX_REPZ | PREFIX_REPNZ | PREFIX_DATA);
6778 case 0x110 ... 0x117:
6779 case 0x128 ... 0x12f:
6780 case 0x150 ... 0x177:
6781 case 0x17c ... 0x17f:
6783 case 0x1c4 ... 0x1c6:
6784 case 0x1d0 ... 0x1fe:
6785 gen_sse(s, b, pc_start, rex_r);
6790 /* lock generation */
6791 if (s->prefix & PREFIX_LOCK)
6792 tcg_gen_helper_0_0(helper_unlock);
6795 if (s->prefix & PREFIX_LOCK)
6796 tcg_gen_helper_0_0(helper_unlock);
6797 /* XXX: ensure that no lock was generated */
6798 gen_exception(s, EXCP06_ILLOP, pc_start - s->cs_base);
6802 static void tcg_macro_func(TCGContext *s, int macro_id, const int *dead_args)
6807 tcg_gen_helper_0_1(helper_divl_EAX_T0, cpu_T[0]);
6813 void optimize_flags_init(void)
6815 #if TCG_TARGET_REG_BITS == 32
6816 assert(sizeof(CCTable) == (1 << 3));
6818 assert(sizeof(CCTable) == (1 << 4));
6820 tcg_set_macro_func(&tcg_ctx, tcg_macro_func);
6822 cpu_env = tcg_global_reg_new(TCG_TYPE_PTR, TCG_AREG0, "env");
6823 #if TARGET_LONG_BITS > HOST_LONG_BITS
6824 cpu_T[0] = tcg_global_mem_new(TCG_TYPE_TL,
6825 TCG_AREG0, offsetof(CPUState, t0), "T0");
6826 cpu_T[1] = tcg_global_mem_new(TCG_TYPE_TL,
6827 TCG_AREG0, offsetof(CPUState, t1), "T1");
6828 cpu_A0 = tcg_global_mem_new(TCG_TYPE_TL,
6829 TCG_AREG0, offsetof(CPUState, t2), "A0");
6831 cpu_T[0] = tcg_global_reg_new(TCG_TYPE_TL, TCG_AREG1, "T0");
6832 cpu_T[1] = tcg_global_reg_new(TCG_TYPE_TL, TCG_AREG2, "T1");
6833 cpu_A0 = tcg_global_reg_new(TCG_TYPE_TL, TCG_AREG3, "A0");
6835 cpu_T3 = tcg_global_mem_new(TCG_TYPE_TL,
6836 TCG_AREG0, offsetof(CPUState, t3), "T3");
6837 #if defined(__i386__) && (TARGET_LONG_BITS <= HOST_LONG_BITS)
6838 /* XXX: must be suppressed once there are less fixed registers */
6839 cpu_tmp1_i64 = tcg_global_reg2_new_hack(TCG_TYPE_I64, TCG_AREG1, TCG_AREG2, "tmp1");
6841 cpu_cc_op = tcg_global_mem_new(TCG_TYPE_I32,
6842 TCG_AREG0, offsetof(CPUState, cc_op), "cc_op");
6843 cpu_cc_src = tcg_global_mem_new(TCG_TYPE_TL,
6844 TCG_AREG0, offsetof(CPUState, cc_src), "cc_src");
6845 cpu_cc_dst = tcg_global_mem_new(TCG_TYPE_TL,
6846 TCG_AREG0, offsetof(CPUState, cc_dst), "cc_dst");
6849 /* generate intermediate code in gen_opc_buf and gen_opparam_buf for
6850 basic block 'tb'. If search_pc is TRUE, also generate PC
6851 information for each intermediate instruction. */
6852 static inline int gen_intermediate_code_internal(CPUState *env,
6853 TranslationBlock *tb,
6856 DisasContext dc1, *dc = &dc1;
6857 target_ulong pc_ptr;
6858 uint16_t *gen_opc_end;
6861 target_ulong pc_start;
6862 target_ulong cs_base;
6864 /* generate intermediate code */
6866 cs_base = tb->cs_base;
6868 cflags = tb->cflags;
6870 dc->pe = (flags >> HF_PE_SHIFT) & 1;
6871 dc->code32 = (flags >> HF_CS32_SHIFT) & 1;
6872 dc->ss32 = (flags >> HF_SS32_SHIFT) & 1;
6873 dc->addseg = (flags >> HF_ADDSEG_SHIFT) & 1;
6875 dc->vm86 = (flags >> VM_SHIFT) & 1;
6876 dc->cpl = (flags >> HF_CPL_SHIFT) & 3;
6877 dc->iopl = (flags >> IOPL_SHIFT) & 3;
6878 dc->tf = (flags >> TF_SHIFT) & 1;
6879 dc->singlestep_enabled = env->singlestep_enabled;
6880 dc->cc_op = CC_OP_DYNAMIC;
6881 dc->cs_base = cs_base;
6883 dc->popl_esp_hack = 0;
6884 /* select memory access functions */
6886 if (flags & HF_SOFTMMU_MASK) {
6888 dc->mem_index = 2 * 4;
6890 dc->mem_index = 1 * 4;
6892 dc->cpuid_features = env->cpuid_features;
6893 dc->cpuid_ext_features = env->cpuid_ext_features;
6894 dc->cpuid_ext2_features = env->cpuid_ext2_features;
6895 #ifdef TARGET_X86_64
6896 dc->lma = (flags >> HF_LMA_SHIFT) & 1;
6897 dc->code64 = (flags >> HF_CS64_SHIFT) & 1;
6900 dc->jmp_opt = !(dc->tf || env->singlestep_enabled ||
6901 (flags & HF_INHIBIT_IRQ_MASK)
6902 #ifndef CONFIG_SOFTMMU
6903 || (flags & HF_SOFTMMU_MASK)
6907 /* check addseg logic */
6908 if (!dc->addseg && (dc->vm86 || !dc->pe || !dc->code32))
6909 printf("ERROR addseg\n");
6912 cpu_tmp0 = tcg_temp_new(TCG_TYPE_TL);
6913 #if !(defined(__i386__) && (TARGET_LONG_BITS <= HOST_LONG_BITS))
6914 cpu_tmp1_i64 = tcg_temp_new(TCG_TYPE_I64);
6916 cpu_tmp2_i32 = tcg_temp_new(TCG_TYPE_I32);
6917 cpu_tmp3_i32 = tcg_temp_new(TCG_TYPE_I32);
6918 cpu_tmp4 = tcg_temp_new(TCG_TYPE_TL);
6919 cpu_tmp5 = tcg_temp_new(TCG_TYPE_TL);
6920 cpu_tmp6 = tcg_temp_new(TCG_TYPE_TL);
6921 cpu_ptr0 = tcg_temp_new(TCG_TYPE_PTR);
6922 cpu_ptr1 = tcg_temp_new(TCG_TYPE_PTR);
6924 gen_opc_end = gen_opc_buf + OPC_MAX_SIZE;
6926 dc->is_jmp = DISAS_NEXT;
6931 if (env->nb_breakpoints > 0) {
6932 for(j = 0; j < env->nb_breakpoints; j++) {
6933 if (env->breakpoints[j] == pc_ptr) {
6934 gen_debug(dc, pc_ptr - dc->cs_base);
6940 j = gen_opc_ptr - gen_opc_buf;
6944 gen_opc_instr_start[lj++] = 0;
6946 gen_opc_pc[lj] = pc_ptr;
6947 gen_opc_cc_op[lj] = dc->cc_op;
6948 gen_opc_instr_start[lj] = 1;
6950 pc_ptr = disas_insn(dc, pc_ptr);
6951 /* stop translation if indicated */
6954 /* if single step mode, we generate only one instruction and
6955 generate an exception */
6956 /* if irq were inhibited with HF_INHIBIT_IRQ_MASK, we clear
6957 the flag and abort the translation to give the irqs a
6958 change to be happen */
6959 if (dc->tf || dc->singlestep_enabled ||
6960 (flags & HF_INHIBIT_IRQ_MASK) ||
6961 (cflags & CF_SINGLE_INSN)) {
6962 gen_jmp_im(pc_ptr - dc->cs_base);
6966 /* if too long translation, stop generation too */
6967 if (gen_opc_ptr >= gen_opc_end ||
6968 (pc_ptr - pc_start) >= (TARGET_PAGE_SIZE - 32)) {
6969 gen_jmp_im(pc_ptr - dc->cs_base);
6974 *gen_opc_ptr = INDEX_op_end;
6975 /* we don't forget to fill the last values */
6977 j = gen_opc_ptr - gen_opc_buf;
6980 gen_opc_instr_start[lj++] = 0;
6984 if (loglevel & CPU_LOG_TB_CPU) {
6985 cpu_dump_state(env, logfile, fprintf, X86_DUMP_CCOP);
6987 if (loglevel & CPU_LOG_TB_IN_ASM) {
6989 fprintf(logfile, "----------------\n");
6990 fprintf(logfile, "IN: %s\n", lookup_symbol(pc_start));
6991 #ifdef TARGET_X86_64
6996 disas_flags = !dc->code32;
6997 target_disas(logfile, pc_start, pc_ptr - pc_start, disas_flags);
6998 fprintf(logfile, "\n");
6999 if (loglevel & CPU_LOG_TB_OP_OPT) {
7000 fprintf(logfile, "OP before opt:\n");
7001 tcg_dump_ops(&tcg_ctx, logfile);
7002 fprintf(logfile, "\n");
7008 tb->size = pc_ptr - pc_start;
7012 int gen_intermediate_code(CPUState *env, TranslationBlock *tb)
7014 return gen_intermediate_code_internal(env, tb, 0);
7017 int gen_intermediate_code_pc(CPUState *env, TranslationBlock *tb)
7019 return gen_intermediate_code_internal(env, tb, 1);
7022 void gen_pc_load(CPUState *env, TranslationBlock *tb,
7023 unsigned long searched_pc, int pc_pos, void *puc)
7027 if (loglevel & CPU_LOG_TB_OP) {
7029 fprintf(logfile, "RESTORE:\n");
7030 for(i = 0;i <= pc_pos; i++) {
7031 if (gen_opc_instr_start[i]) {
7032 fprintf(logfile, "0x%04x: " TARGET_FMT_lx "\n", i, gen_opc_pc[i]);
7035 fprintf(logfile, "spc=0x%08lx pc_pos=0x%x eip=" TARGET_FMT_lx " cs_base=%x\n",
7036 searched_pc, pc_pos, gen_opc_pc[pc_pos] - tb->cs_base,
7037 (uint32_t)tb->cs_base);
7040 env->eip = gen_opc_pc[pc_pos] - tb->cs_base;
7041 cc_op = gen_opc_cc_op[pc_pos];
7042 if (cc_op != CC_OP_DYNAMIC)
projects / qemu / blob