2 * i386 emulator main execution loop
4 * Copyright (c) 2003-2005 Fabrice Bellard
6 * This library is free software; you can redistribute it and/or
7 * modify it under the terms of the GNU Lesser General Public
8 * License as published by the Free Software Foundation; either
9 * version 2 of the License, or (at your option) any later version.
11 * This library is distributed in the hope that it will be useful,
12 * but WITHOUT ANY WARRANTY; without even the implied warranty of
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
14 * Lesser General Public License for more details.
16 * You should have received a copy of the GNU Lesser General Public
17 * License along with this library; if not, write to the Free Software
18 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
21 #define CPU_NO_GLOBAL_REGS
26 #if !defined(CONFIG_SOFTMMU)
37 #include <sys/ucontext.h>
40 #if defined(__sparc__) && !defined(HOST_SOLARIS)
41 // Work around ugly bugs in glibc that mangle global register contents
43 #define env cpu_single_env
46 int tb_invalidated_flag;
49 //#define DEBUG_SIGNAL
51 void cpu_loop_exit(void)
53 /* NOTE: the register at this point must be saved by hand because
54 longjmp restore them */
56 longjmp(env->jmp_env, 1);
59 #if !(defined(TARGET_SPARC) || defined(TARGET_SH4) || defined(TARGET_M68K))
63 /* exit the current TB from a signal handler. The host registers are
64 restored in a state compatible with the CPU emulator
66 void cpu_resume_from_signal(CPUState *env1, void *puc)
68 #if !defined(CONFIG_SOFTMMU)
69 struct ucontext *uc = puc;
74 /* XXX: restore cpu registers saved in host registers */
76 #if !defined(CONFIG_SOFTMMU)
78 /* XXX: use siglongjmp ? */
79 sigprocmask(SIG_SETMASK, &uc->uc_sigmask, NULL);
82 longjmp(env->jmp_env, 1);
85 static TranslationBlock *tb_find_slow(target_ulong pc,
89 TranslationBlock *tb, **ptb1;
92 target_ulong phys_pc, phys_page1, phys_page2, virt_page2;
95 tb_invalidated_flag = 0;
97 regs_to_env(); /* XXX: do it just before cpu_gen_code() */
99 /* find translated block using physical mappings */
100 phys_pc = get_phys_addr_code(env, pc);
101 phys_page1 = phys_pc & TARGET_PAGE_MASK;
103 h = tb_phys_hash_func(phys_pc);
104 ptb1 = &tb_phys_hash[h];
110 tb->page_addr[0] == phys_page1 &&
111 tb->cs_base == cs_base &&
112 tb->flags == flags) {
113 /* check next page if needed */
114 if (tb->page_addr[1] != -1) {
115 virt_page2 = (pc & TARGET_PAGE_MASK) +
117 phys_page2 = get_phys_addr_code(env, virt_page2);
118 if (tb->page_addr[1] == phys_page2)
124 ptb1 = &tb->phys_hash_next;
127 /* if no translated code available, then translate it now */
130 /* flush must be done */
132 /* cannot fail at this point */
134 /* don't forget to invalidate previous TB info */
135 tb_invalidated_flag = 1;
137 tc_ptr = code_gen_ptr;
139 tb->cs_base = cs_base;
141 cpu_gen_code(env, tb, &code_gen_size);
142 code_gen_ptr = (void *)(((unsigned long)code_gen_ptr + code_gen_size + CODE_GEN_ALIGN - 1) & ~(CODE_GEN_ALIGN - 1));
144 /* check next page if needed */
145 virt_page2 = (pc + tb->size - 1) & TARGET_PAGE_MASK;
147 if ((pc & TARGET_PAGE_MASK) != virt_page2) {
148 phys_page2 = get_phys_addr_code(env, virt_page2);
150 tb_link_phys(tb, phys_pc, phys_page2);
153 /* we add the TB in the virtual pc hash table */
154 env->tb_jmp_cache[tb_jmp_cache_hash_func(pc)] = tb;
158 static inline TranslationBlock *tb_find_fast(void)
160 TranslationBlock *tb;
161 target_ulong cs_base, pc;
164 /* we record a subset of the CPU state. It will
165 always be the same before a given translated block
167 #if defined(TARGET_I386)
169 flags |= (env->eflags & (IOPL_MASK | TF_MASK | VM_MASK));
170 cs_base = env->segs[R_CS].base;
171 pc = cs_base + env->eip;
172 #elif defined(TARGET_ARM)
173 flags = env->thumb | (env->vfp.vec_len << 1)
174 | (env->vfp.vec_stride << 4);
175 if ((env->uncached_cpsr & CPSR_M) != ARM_CPU_MODE_USR)
177 if (env->vfp.xregs[ARM_VFP_FPEXC] & (1 << 30))
179 flags |= (env->condexec_bits << 8);
182 #elif defined(TARGET_SPARC)
183 #ifdef TARGET_SPARC64
184 // Combined FPU enable bits . PRIV . DMMU enabled . IMMU enabled
185 flags = (((env->pstate & PS_PEF) >> 1) | ((env->fprs & FPRS_FEF) << 2))
186 | (env->pstate & PS_PRIV) | ((env->lsu & (DMMU_E | IMMU_E)) >> 2);
188 // FPU enable . Supervisor
189 flags = (env->psref << 4) | env->psrs;
193 #elif defined(TARGET_PPC)
197 #elif defined(TARGET_MIPS)
198 flags = env->hflags & (MIPS_HFLAG_TMASK | MIPS_HFLAG_BMASK);
200 pc = env->PC[env->current_tc];
201 #elif defined(TARGET_M68K)
202 flags = (env->fpcr & M68K_FPCR_PREC) /* Bit 6 */
203 | (env->sr & SR_S) /* Bit 13 */
204 | ((env->macsr >> 4) & 0xf); /* Bits 0-3 */
207 #elif defined(TARGET_SH4)
211 #elif defined(TARGET_ALPHA)
215 #elif defined(TARGET_CRIS)
216 flags = env->pregs[PR_CCS] & (P_FLAG | U_FLAG | X_FLAG);
221 #error unsupported CPU
223 tb = env->tb_jmp_cache[tb_jmp_cache_hash_func(pc)];
224 if (__builtin_expect(!tb || tb->pc != pc || tb->cs_base != cs_base ||
225 tb->flags != flags, 0)) {
226 tb = tb_find_slow(pc, cs_base, flags);
231 /* main execution loop */
233 int cpu_exec(CPUState *env1)
235 #define DECLARE_HOST_REGS 1
236 #include "hostregs_helper.h"
237 int ret, interrupt_request;
238 TranslationBlock *tb;
240 unsigned long next_tb;
242 if (cpu_halted(env1) == EXCP_HALTED)
245 cpu_single_env = env1;
247 /* first we save global registers */
248 #define SAVE_HOST_REGS 1
249 #include "hostregs_helper.h"
253 #if defined(TARGET_I386)
254 /* put eflags in CPU temporary format */
255 CC_SRC = env->eflags & (CC_O | CC_S | CC_Z | CC_A | CC_P | CC_C);
256 DF = 1 - (2 * ((env->eflags >> 10) & 1));
257 CC_OP = CC_OP_EFLAGS;
258 env->eflags &= ~(DF_MASK | CC_O | CC_S | CC_Z | CC_A | CC_P | CC_C);
259 #elif defined(TARGET_SPARC)
260 #elif defined(TARGET_M68K)
261 env->cc_op = CC_OP_FLAGS;
262 env->cc_dest = env->sr & 0xf;
263 env->cc_x = (env->sr >> 4) & 1;
264 #elif defined(TARGET_ALPHA)
265 #elif defined(TARGET_ARM)
266 #elif defined(TARGET_PPC)
267 #elif defined(TARGET_MIPS)
268 #elif defined(TARGET_SH4)
269 #elif defined(TARGET_CRIS)
272 #error unsupported target CPU
274 env->exception_index = -1;
276 /* prepare setjmp context for exception handling */
278 if (setjmp(env->jmp_env) == 0) {
279 env->current_tb = NULL;
280 /* if an exception is pending, we execute it here */
281 if (env->exception_index >= 0) {
282 if (env->exception_index >= EXCP_INTERRUPT) {
283 /* exit request from the cpu execution loop */
284 ret = env->exception_index;
286 } else if (env->user_mode_only) {
287 /* if user mode only, we simulate a fake exception
288 which will be handled outside the cpu execution
290 #if defined(TARGET_I386)
291 do_interrupt_user(env->exception_index,
292 env->exception_is_int,
294 env->exception_next_eip);
295 /* successfully delivered */
296 env->old_exception = -1;
298 ret = env->exception_index;
301 #if defined(TARGET_I386)
302 /* simulate a real cpu exception. On i386, it can
303 trigger new exceptions, but we do not handle
304 double or triple faults yet. */
305 do_interrupt(env->exception_index,
306 env->exception_is_int,
308 env->exception_next_eip, 0);
309 /* successfully delivered */
310 env->old_exception = -1;
311 #elif defined(TARGET_PPC)
313 #elif defined(TARGET_MIPS)
315 #elif defined(TARGET_SPARC)
317 #elif defined(TARGET_ARM)
319 #elif defined(TARGET_SH4)
321 #elif defined(TARGET_ALPHA)
323 #elif defined(TARGET_CRIS)
325 #elif defined(TARGET_M68K)
329 env->exception_index = -1;
332 if (kqemu_is_ok(env) && env->interrupt_request == 0) {
334 env->eflags = env->eflags | cc_table[CC_OP].compute_all() | (DF & DF_MASK);
335 ret = kqemu_cpu_exec(env);
336 /* put eflags in CPU temporary format */
337 CC_SRC = env->eflags & (CC_O | CC_S | CC_Z | CC_A | CC_P | CC_C);
338 DF = 1 - (2 * ((env->eflags >> 10) & 1));
339 CC_OP = CC_OP_EFLAGS;
340 env->eflags &= ~(DF_MASK | CC_O | CC_S | CC_Z | CC_A | CC_P | CC_C);
343 longjmp(env->jmp_env, 1);
344 } else if (ret == 2) {
345 /* softmmu execution needed */
347 if (env->interrupt_request != 0) {
348 /* hardware interrupt will be executed just after */
350 /* otherwise, we restart */
351 longjmp(env->jmp_env, 1);
357 next_tb = 0; /* force lookup of first TB */
359 interrupt_request = env->interrupt_request;
360 if (__builtin_expect(interrupt_request, 0) &&
361 likely(!(env->singlestep_enabled & SSTEP_NOIRQ))) {
362 if (interrupt_request & CPU_INTERRUPT_DEBUG) {
363 env->interrupt_request &= ~CPU_INTERRUPT_DEBUG;
364 env->exception_index = EXCP_DEBUG;
367 #if defined(TARGET_ARM) || defined(TARGET_SPARC) || defined(TARGET_MIPS) || \
368 defined(TARGET_PPC) || defined(TARGET_ALPHA) || defined(TARGET_CRIS)
369 if (interrupt_request & CPU_INTERRUPT_HALT) {
370 env->interrupt_request &= ~CPU_INTERRUPT_HALT;
372 env->exception_index = EXCP_HLT;
376 #if defined(TARGET_I386)
377 if (env->hflags2 & HF2_GIF_MASK) {
378 if ((interrupt_request & CPU_INTERRUPT_SMI) &&
379 !(env->hflags & HF_SMM_MASK)) {
380 svm_check_intercept(SVM_EXIT_SMI);
381 env->interrupt_request &= ~CPU_INTERRUPT_SMI;
384 } else if ((interrupt_request & CPU_INTERRUPT_NMI) &&
385 !(env->hflags2 & HF2_NMI_MASK)) {
386 env->interrupt_request &= ~CPU_INTERRUPT_NMI;
387 env->hflags2 |= HF2_NMI_MASK;
388 do_interrupt(EXCP02_NMI, 0, 0, 0, 1);
390 } else if ((interrupt_request & CPU_INTERRUPT_HARD) &&
391 (((env->hflags2 & HF2_VINTR_MASK) &&
392 (env->hflags2 & HF2_HIF_MASK)) ||
393 (!(env->hflags2 & HF2_VINTR_MASK) &&
394 (env->eflags & IF_MASK &&
395 !(env->hflags & HF_INHIBIT_IRQ_MASK))))) {
397 svm_check_intercept(SVM_EXIT_INTR);
398 env->interrupt_request &= ~(CPU_INTERRUPT_HARD | CPU_INTERRUPT_VIRQ);
399 intno = cpu_get_pic_interrupt(env);
400 if (loglevel & CPU_LOG_TB_IN_ASM) {
401 fprintf(logfile, "Servicing hardware INT=0x%02x\n", intno);
403 do_interrupt(intno, 0, 0, 0, 1);
404 /* ensure that no TB jump will be modified as
405 the program flow was changed */
407 #if !defined(CONFIG_USER_ONLY)
408 } else if ((interrupt_request & CPU_INTERRUPT_VIRQ) &&
409 (env->eflags & IF_MASK) &&
410 !(env->hflags & HF_INHIBIT_IRQ_MASK)) {
412 /* FIXME: this should respect TPR */
413 svm_check_intercept(SVM_EXIT_VINTR);
414 env->interrupt_request &= ~CPU_INTERRUPT_VIRQ;
415 intno = ldl_phys(env->vm_vmcb + offsetof(struct vmcb, control.int_vector));
416 if (loglevel & CPU_LOG_TB_IN_ASM)
417 fprintf(logfile, "Servicing virtual hardware INT=0x%02x\n", intno);
418 do_interrupt(intno, 0, 0, 0, 1);
423 #elif defined(TARGET_PPC)
425 if ((interrupt_request & CPU_INTERRUPT_RESET)) {
429 if (interrupt_request & CPU_INTERRUPT_HARD) {
430 ppc_hw_interrupt(env);
431 if (env->pending_interrupts == 0)
432 env->interrupt_request &= ~CPU_INTERRUPT_HARD;
435 #elif defined(TARGET_MIPS)
436 if ((interrupt_request & CPU_INTERRUPT_HARD) &&
437 (env->CP0_Status & env->CP0_Cause & CP0Ca_IP_mask) &&
438 (env->CP0_Status & (1 << CP0St_IE)) &&
439 !(env->CP0_Status & (1 << CP0St_EXL)) &&
440 !(env->CP0_Status & (1 << CP0St_ERL)) &&
441 !(env->hflags & MIPS_HFLAG_DM)) {
443 env->exception_index = EXCP_EXT_INTERRUPT;
448 #elif defined(TARGET_SPARC)
449 if ((interrupt_request & CPU_INTERRUPT_HARD) &&
451 int pil = env->interrupt_index & 15;
452 int type = env->interrupt_index & 0xf0;
454 if (((type == TT_EXTINT) &&
455 (pil == 15 || pil > env->psrpil)) ||
457 env->interrupt_request &= ~CPU_INTERRUPT_HARD;
458 env->exception_index = env->interrupt_index;
460 env->interrupt_index = 0;
461 #if !defined(TARGET_SPARC64) && !defined(CONFIG_USER_ONLY)
466 } else if (interrupt_request & CPU_INTERRUPT_TIMER) {
467 //do_interrupt(0, 0, 0, 0, 0);
468 env->interrupt_request &= ~CPU_INTERRUPT_TIMER;
470 #elif defined(TARGET_ARM)
471 if (interrupt_request & CPU_INTERRUPT_FIQ
472 && !(env->uncached_cpsr & CPSR_F)) {
473 env->exception_index = EXCP_FIQ;
477 /* ARMv7-M interrupt return works by loading a magic value
478 into the PC. On real hardware the load causes the
479 return to occur. The qemu implementation performs the
480 jump normally, then does the exception return when the
481 CPU tries to execute code at the magic address.
482 This will cause the magic PC value to be pushed to
483 the stack if an interrupt occured at the wrong time.
484 We avoid this by disabling interrupts when
485 pc contains a magic address. */
486 if (interrupt_request & CPU_INTERRUPT_HARD
487 && ((IS_M(env) && env->regs[15] < 0xfffffff0)
488 || !(env->uncached_cpsr & CPSR_I))) {
489 env->exception_index = EXCP_IRQ;
493 #elif defined(TARGET_SH4)
494 if (interrupt_request & CPU_INTERRUPT_HARD) {
498 #elif defined(TARGET_ALPHA)
499 if (interrupt_request & CPU_INTERRUPT_HARD) {
503 #elif defined(TARGET_CRIS)
504 if (interrupt_request & CPU_INTERRUPT_HARD) {
508 #elif defined(TARGET_M68K)
509 if (interrupt_request & CPU_INTERRUPT_HARD
510 && ((env->sr & SR_I) >> SR_I_SHIFT)
511 < env->pending_level) {
512 /* Real hardware gets the interrupt vector via an
513 IACK cycle at this point. Current emulated
514 hardware doesn't rely on this, so we
515 provide/save the vector when the interrupt is
517 env->exception_index = env->pending_vector;
522 /* Don't use the cached interupt_request value,
523 do_interrupt may have updated the EXITTB flag. */
524 if (env->interrupt_request & CPU_INTERRUPT_EXITTB) {
525 env->interrupt_request &= ~CPU_INTERRUPT_EXITTB;
526 /* ensure that no TB jump will be modified as
527 the program flow was changed */
530 if (interrupt_request & CPU_INTERRUPT_EXIT) {
531 env->interrupt_request &= ~CPU_INTERRUPT_EXIT;
532 env->exception_index = EXCP_INTERRUPT;
537 if ((loglevel & CPU_LOG_TB_CPU)) {
538 /* restore flags in standard format */
540 #if defined(TARGET_I386)
541 env->eflags = env->eflags | cc_table[CC_OP].compute_all() | (DF & DF_MASK);
542 cpu_dump_state(env, logfile, fprintf, X86_DUMP_CCOP);
543 env->eflags &= ~(DF_MASK | CC_O | CC_S | CC_Z | CC_A | CC_P | CC_C);
544 #elif defined(TARGET_ARM)
545 cpu_dump_state(env, logfile, fprintf, 0);
546 #elif defined(TARGET_SPARC)
547 cpu_dump_state(env, logfile, fprintf, 0);
548 #elif defined(TARGET_PPC)
549 cpu_dump_state(env, logfile, fprintf, 0);
550 #elif defined(TARGET_M68K)
551 cpu_m68k_flush_flags(env, env->cc_op);
552 env->cc_op = CC_OP_FLAGS;
553 env->sr = (env->sr & 0xffe0)
554 | env->cc_dest | (env->cc_x << 4);
555 cpu_dump_state(env, logfile, fprintf, 0);
556 #elif defined(TARGET_MIPS)
557 cpu_dump_state(env, logfile, fprintf, 0);
558 #elif defined(TARGET_SH4)
559 cpu_dump_state(env, logfile, fprintf, 0);
560 #elif defined(TARGET_ALPHA)
561 cpu_dump_state(env, logfile, fprintf, 0);
562 #elif defined(TARGET_CRIS)
563 cpu_dump_state(env, logfile, fprintf, 0);
565 #error unsupported target CPU
571 /* Note: we do it here to avoid a gcc bug on Mac OS X when
572 doing it in tb_find_slow */
573 if (tb_invalidated_flag) {
574 /* as some TB could have been invalidated because
575 of memory exceptions while generating the code, we
576 must recompute the hash index here */
580 if ((loglevel & CPU_LOG_EXEC)) {
581 fprintf(logfile, "Trace 0x%08lx [" TARGET_FMT_lx "] %s\n",
582 (long)tb->tc_ptr, tb->pc,
583 lookup_symbol(tb->pc));
586 /* see if we can patch the calling TB. When the TB
587 spans two pages, we cannot safely do a direct
592 (env->kqemu_enabled != 2) &&
594 tb->page_addr[1] == -1) {
595 tb_add_jump((TranslationBlock *)(next_tb & ~3), next_tb & 3, tb);
598 spin_unlock(&tb_lock);
600 env->current_tb = tb;
601 /* execute the generated code */
602 #if defined(__sparc__) && !defined(HOST_SOLARIS)
604 env = cpu_single_env;
605 #define env cpu_single_env
607 next_tb = tcg_qemu_tb_exec(tc_ptr);
608 env->current_tb = NULL;
609 /* reset soft MMU for next block (it can currently
610 only be set by a memory fault) */
611 #if defined(USE_KQEMU)
612 #define MIN_CYCLE_BEFORE_SWITCH (100 * 1000)
613 if (kqemu_is_ok(env) &&
614 (cpu_get_time_fast() - env->last_io_time) >= MIN_CYCLE_BEFORE_SWITCH) {
625 #if defined(TARGET_I386)
626 /* restore flags in standard format */
627 env->eflags = env->eflags | cc_table[CC_OP].compute_all() | (DF & DF_MASK);
628 #elif defined(TARGET_ARM)
629 /* XXX: Save/restore host fpu exception state?. */
630 #elif defined(TARGET_SPARC)
631 #elif defined(TARGET_PPC)
632 #elif defined(TARGET_M68K)
633 cpu_m68k_flush_flags(env, env->cc_op);
634 env->cc_op = CC_OP_FLAGS;
635 env->sr = (env->sr & 0xffe0)
636 | env->cc_dest | (env->cc_x << 4);
637 #elif defined(TARGET_MIPS)
638 #elif defined(TARGET_SH4)
639 #elif defined(TARGET_ALPHA)
640 #elif defined(TARGET_CRIS)
643 #error unsupported target CPU
646 /* restore global registers */
647 #include "hostregs_helper.h"
649 /* fail safe : never use cpu_single_env outside cpu_exec() */
650 cpu_single_env = NULL;
654 /* must only be called from the generated code as an exception can be
656 void tb_invalidate_page_range(target_ulong start, target_ulong end)
658 /* XXX: cannot enable it yet because it yields to MMU exception
659 where NIP != read address on PowerPC */
661 target_ulong phys_addr;
662 phys_addr = get_phys_addr_code(env, start);
663 tb_invalidate_phys_page_range(phys_addr, phys_addr + end - start, 0);
667 #if defined(TARGET_I386) && defined(CONFIG_USER_ONLY)
669 void cpu_x86_load_seg(CPUX86State *s, int seg_reg, int selector)
671 CPUX86State *saved_env;
675 if (!(env->cr[0] & CR0_PE_MASK) || (env->eflags & VM_MASK)) {
677 cpu_x86_load_seg_cache(env, seg_reg, selector,
678 (selector << 4), 0xffff, 0);
680 helper_load_seg(seg_reg, selector);
685 void cpu_x86_fsave(CPUX86State *s, target_ulong ptr, int data32)
687 CPUX86State *saved_env;
692 helper_fsave(ptr, data32);
697 void cpu_x86_frstor(CPUX86State *s, target_ulong ptr, int data32)
699 CPUX86State *saved_env;
704 helper_frstor(ptr, data32);
709 #endif /* TARGET_I386 */
711 #if !defined(CONFIG_SOFTMMU)
713 #if defined(TARGET_I386)
715 /* 'pc' is the host PC at which the exception was raised. 'address' is
716 the effective address of the memory exception. 'is_write' is 1 if a
717 write caused the exception and otherwise 0'. 'old_set' is the
718 signal set which should be restored */
719 static inline int handle_cpu_signal(unsigned long pc, unsigned long address,
720 int is_write, sigset_t *old_set,
723 TranslationBlock *tb;
727 env = cpu_single_env; /* XXX: find a correct solution for multithread */
728 #if defined(DEBUG_SIGNAL)
729 qemu_printf("qemu: SIGSEGV pc=0x%08lx address=%08lx w=%d oldset=0x%08lx\n",
730 pc, address, is_write, *(unsigned long *)old_set);
732 /* XXX: locking issue */
733 if (is_write && page_unprotect(h2g(address), pc, puc)) {
737 /* see if it is an MMU fault */
738 ret = cpu_x86_handle_mmu_fault(env, address, is_write, MMU_USER_IDX, 0);
740 return 0; /* not an MMU fault */
742 return 1; /* the MMU fault was handled without causing real CPU fault */
743 /* now we have a real cpu fault */
746 /* the PC is inside the translated code. It means that we have
747 a virtual CPU fault */
748 cpu_restore_state(tb, env, pc, puc);
752 printf("PF exception: EIP=0x%08x CR2=0x%08x error=0x%x\n",
753 env->eip, env->cr[2], env->error_code);
755 /* we restore the process signal mask as the sigreturn should
756 do it (XXX: use sigsetjmp) */
757 sigprocmask(SIG_SETMASK, old_set, NULL);
758 raise_exception_err(env->exception_index, env->error_code);
760 /* activate soft MMU for this block */
761 env->hflags |= HF_SOFTMMU_MASK;
762 cpu_resume_from_signal(env, puc);
764 /* never comes here */
768 #elif defined(TARGET_ARM)
769 static inline int handle_cpu_signal(unsigned long pc, unsigned long address,
770 int is_write, sigset_t *old_set,
773 TranslationBlock *tb;
777 env = cpu_single_env; /* XXX: find a correct solution for multithread */
778 #if defined(DEBUG_SIGNAL)
779 printf("qemu: SIGSEGV pc=0x%08lx address=%08lx w=%d oldset=0x%08lx\n",
780 pc, address, is_write, *(unsigned long *)old_set);
782 /* XXX: locking issue */
783 if (is_write && page_unprotect(h2g(address), pc, puc)) {
786 /* see if it is an MMU fault */
787 ret = cpu_arm_handle_mmu_fault(env, address, is_write, MMU_USER_IDX, 0);
789 return 0; /* not an MMU fault */
791 return 1; /* the MMU fault was handled without causing real CPU fault */
792 /* now we have a real cpu fault */
795 /* the PC is inside the translated code. It means that we have
796 a virtual CPU fault */
797 cpu_restore_state(tb, env, pc, puc);
799 /* we restore the process signal mask as the sigreturn should
800 do it (XXX: use sigsetjmp) */
801 sigprocmask(SIG_SETMASK, old_set, NULL);
803 /* never comes here */
806 #elif defined(TARGET_SPARC)
807 static inline int handle_cpu_signal(unsigned long pc, unsigned long address,
808 int is_write, sigset_t *old_set,
811 TranslationBlock *tb;
815 env = cpu_single_env; /* XXX: find a correct solution for multithread */
816 #if defined(DEBUG_SIGNAL)
817 printf("qemu: SIGSEGV pc=0x%08lx address=%08lx w=%d oldset=0x%08lx\n",
818 pc, address, is_write, *(unsigned long *)old_set);
820 /* XXX: locking issue */
821 if (is_write && page_unprotect(h2g(address), pc, puc)) {
824 /* see if it is an MMU fault */
825 ret = cpu_sparc_handle_mmu_fault(env, address, is_write, MMU_USER_IDX, 0);
827 return 0; /* not an MMU fault */
829 return 1; /* the MMU fault was handled without causing real CPU fault */
830 /* now we have a real cpu fault */
833 /* the PC is inside the translated code. It means that we have
834 a virtual CPU fault */
835 cpu_restore_state(tb, env, pc, puc);
837 /* we restore the process signal mask as the sigreturn should
838 do it (XXX: use sigsetjmp) */
839 sigprocmask(SIG_SETMASK, old_set, NULL);
841 /* never comes here */
844 #elif defined (TARGET_PPC)
845 static inline int handle_cpu_signal(unsigned long pc, unsigned long address,
846 int is_write, sigset_t *old_set,
849 TranslationBlock *tb;
853 env = cpu_single_env; /* XXX: find a correct solution for multithread */
854 #if defined(DEBUG_SIGNAL)
855 printf("qemu: SIGSEGV pc=0x%08lx address=%08lx w=%d oldset=0x%08lx\n",
856 pc, address, is_write, *(unsigned long *)old_set);
858 /* XXX: locking issue */
859 if (is_write && page_unprotect(h2g(address), pc, puc)) {
863 /* see if it is an MMU fault */
864 ret = cpu_ppc_handle_mmu_fault(env, address, is_write, MMU_USER_IDX, 0);
866 return 0; /* not an MMU fault */
868 return 1; /* the MMU fault was handled without causing real CPU fault */
870 /* now we have a real cpu fault */
873 /* the PC is inside the translated code. It means that we have
874 a virtual CPU fault */
875 cpu_restore_state(tb, env, pc, puc);
879 printf("PF exception: NIP=0x%08x error=0x%x %p\n",
880 env->nip, env->error_code, tb);
882 /* we restore the process signal mask as the sigreturn should
883 do it (XXX: use sigsetjmp) */
884 sigprocmask(SIG_SETMASK, old_set, NULL);
885 do_raise_exception_err(env->exception_index, env->error_code);
887 /* activate soft MMU for this block */
888 cpu_resume_from_signal(env, puc);
890 /* never comes here */
894 #elif defined(TARGET_M68K)
895 static inline int handle_cpu_signal(unsigned long pc, unsigned long address,
896 int is_write, sigset_t *old_set,
899 TranslationBlock *tb;
903 env = cpu_single_env; /* XXX: find a correct solution for multithread */
904 #if defined(DEBUG_SIGNAL)
905 printf("qemu: SIGSEGV pc=0x%08lx address=%08lx w=%d oldset=0x%08lx\n",
906 pc, address, is_write, *(unsigned long *)old_set);
908 /* XXX: locking issue */
909 if (is_write && page_unprotect(address, pc, puc)) {
912 /* see if it is an MMU fault */
913 ret = cpu_m68k_handle_mmu_fault(env, address, is_write, MMU_USER_IDX, 0);
915 return 0; /* not an MMU fault */
917 return 1; /* the MMU fault was handled without causing real CPU fault */
918 /* now we have a real cpu fault */
921 /* the PC is inside the translated code. It means that we have
922 a virtual CPU fault */
923 cpu_restore_state(tb, env, pc, puc);
925 /* we restore the process signal mask as the sigreturn should
926 do it (XXX: use sigsetjmp) */
927 sigprocmask(SIG_SETMASK, old_set, NULL);
929 /* never comes here */
933 #elif defined (TARGET_MIPS)
934 static inline int handle_cpu_signal(unsigned long pc, unsigned long address,
935 int is_write, sigset_t *old_set,
938 TranslationBlock *tb;
942 env = cpu_single_env; /* XXX: find a correct solution for multithread */
943 #if defined(DEBUG_SIGNAL)
944 printf("qemu: SIGSEGV pc=0x%08lx address=%08lx w=%d oldset=0x%08lx\n",
945 pc, address, is_write, *(unsigned long *)old_set);
947 /* XXX: locking issue */
948 if (is_write && page_unprotect(h2g(address), pc, puc)) {
952 /* see if it is an MMU fault */
953 ret = cpu_mips_handle_mmu_fault(env, address, is_write, MMU_USER_IDX, 0);
955 return 0; /* not an MMU fault */
957 return 1; /* the MMU fault was handled without causing real CPU fault */
959 /* now we have a real cpu fault */
962 /* the PC is inside the translated code. It means that we have
963 a virtual CPU fault */
964 cpu_restore_state(tb, env, pc, puc);
968 printf("PF exception: PC=0x" TARGET_FMT_lx " error=0x%x %p\n",
969 env->PC, env->error_code, tb);
971 /* we restore the process signal mask as the sigreturn should
972 do it (XXX: use sigsetjmp) */
973 sigprocmask(SIG_SETMASK, old_set, NULL);
974 do_raise_exception_err(env->exception_index, env->error_code);
976 /* activate soft MMU for this block */
977 cpu_resume_from_signal(env, puc);
979 /* never comes here */
983 #elif defined (TARGET_SH4)
984 static inline int handle_cpu_signal(unsigned long pc, unsigned long address,
985 int is_write, sigset_t *old_set,
988 TranslationBlock *tb;
992 env = cpu_single_env; /* XXX: find a correct solution for multithread */
993 #if defined(DEBUG_SIGNAL)
994 printf("qemu: SIGSEGV pc=0x%08lx address=%08lx w=%d oldset=0x%08lx\n",
995 pc, address, is_write, *(unsigned long *)old_set);
997 /* XXX: locking issue */
998 if (is_write && page_unprotect(h2g(address), pc, puc)) {
1002 /* see if it is an MMU fault */
1003 ret = cpu_sh4_handle_mmu_fault(env, address, is_write, MMU_USER_IDX, 0);
1005 return 0; /* not an MMU fault */
1007 return 1; /* the MMU fault was handled without causing real CPU fault */
1009 /* now we have a real cpu fault */
1010 tb = tb_find_pc(pc);
1012 /* the PC is inside the translated code. It means that we have
1013 a virtual CPU fault */
1014 cpu_restore_state(tb, env, pc, puc);
1017 printf("PF exception: NIP=0x%08x error=0x%x %p\n",
1018 env->nip, env->error_code, tb);
1020 /* we restore the process signal mask as the sigreturn should
1021 do it (XXX: use sigsetjmp) */
1022 sigprocmask(SIG_SETMASK, old_set, NULL);
1024 /* never comes here */
1028 #elif defined (TARGET_ALPHA)
1029 static inline int handle_cpu_signal(unsigned long pc, unsigned long address,
1030 int is_write, sigset_t *old_set,
1033 TranslationBlock *tb;
1037 env = cpu_single_env; /* XXX: find a correct solution for multithread */
1038 #if defined(DEBUG_SIGNAL)
1039 printf("qemu: SIGSEGV pc=0x%08lx address=%08lx w=%d oldset=0x%08lx\n",
1040 pc, address, is_write, *(unsigned long *)old_set);
1042 /* XXX: locking issue */
1043 if (is_write && page_unprotect(h2g(address), pc, puc)) {
1047 /* see if it is an MMU fault */
1048 ret = cpu_alpha_handle_mmu_fault(env, address, is_write, MMU_USER_IDX, 0);
1050 return 0; /* not an MMU fault */
1052 return 1; /* the MMU fault was handled without causing real CPU fault */
1054 /* now we have a real cpu fault */
1055 tb = tb_find_pc(pc);
1057 /* the PC is inside the translated code. It means that we have
1058 a virtual CPU fault */
1059 cpu_restore_state(tb, env, pc, puc);
1062 printf("PF exception: NIP=0x%08x error=0x%x %p\n",
1063 env->nip, env->error_code, tb);
1065 /* we restore the process signal mask as the sigreturn should
1066 do it (XXX: use sigsetjmp) */
1067 sigprocmask(SIG_SETMASK, old_set, NULL);
1069 /* never comes here */
1072 #elif defined (TARGET_CRIS)
1073 static inline int handle_cpu_signal(unsigned long pc, unsigned long address,
1074 int is_write, sigset_t *old_set,
1077 TranslationBlock *tb;
1081 env = cpu_single_env; /* XXX: find a correct solution for multithread */
1082 #if defined(DEBUG_SIGNAL)
1083 printf("qemu: SIGSEGV pc=0x%08lx address=%08lx w=%d oldset=0x%08lx\n",
1084 pc, address, is_write, *(unsigned long *)old_set);
1086 /* XXX: locking issue */
1087 if (is_write && page_unprotect(h2g(address), pc, puc)) {
1091 /* see if it is an MMU fault */
1092 ret = cpu_cris_handle_mmu_fault(env, address, is_write, MMU_USER_IDX, 0);
1094 return 0; /* not an MMU fault */
1096 return 1; /* the MMU fault was handled without causing real CPU fault */
1098 /* now we have a real cpu fault */
1099 tb = tb_find_pc(pc);
1101 /* the PC is inside the translated code. It means that we have
1102 a virtual CPU fault */
1103 cpu_restore_state(tb, env, pc, puc);
1105 /* we restore the process signal mask as the sigreturn should
1106 do it (XXX: use sigsetjmp) */
1107 sigprocmask(SIG_SETMASK, old_set, NULL);
1109 /* never comes here */
1114 #error unsupported target CPU
1117 #if defined(__i386__)
1119 #if defined(__APPLE__)
1120 # include <sys/ucontext.h>
1122 # define EIP_sig(context) (*((unsigned long*)&(context)->uc_mcontext->ss.eip))
1123 # define TRAP_sig(context) ((context)->uc_mcontext->es.trapno)
1124 # define ERROR_sig(context) ((context)->uc_mcontext->es.err)
1126 # define EIP_sig(context) ((context)->uc_mcontext.gregs[REG_EIP])
1127 # define TRAP_sig(context) ((context)->uc_mcontext.gregs[REG_TRAPNO])
1128 # define ERROR_sig(context) ((context)->uc_mcontext.gregs[REG_ERR])
1131 int cpu_signal_handler(int host_signum, void *pinfo,
1134 siginfo_t *info = pinfo;
1135 struct ucontext *uc = puc;
1143 #define REG_TRAPNO TRAPNO
1146 trapno = TRAP_sig(uc);
1147 return handle_cpu_signal(pc, (unsigned long)info->si_addr,
1149 (ERROR_sig(uc) >> 1) & 1 : 0,
1150 &uc->uc_sigmask, puc);
1153 #elif defined(__x86_64__)
1155 int cpu_signal_handler(int host_signum, void *pinfo,
1158 siginfo_t *info = pinfo;
1159 struct ucontext *uc = puc;
1162 pc = uc->uc_mcontext.gregs[REG_RIP];
1163 return handle_cpu_signal(pc, (unsigned long)info->si_addr,
1164 uc->uc_mcontext.gregs[REG_TRAPNO] == 0xe ?
1165 (uc->uc_mcontext.gregs[REG_ERR] >> 1) & 1 : 0,
1166 &uc->uc_sigmask, puc);
1169 #elif defined(__powerpc__)
1171 /***********************************************************************
1172 * signal context platform-specific definitions
1176 /* All Registers access - only for local access */
1177 # define REG_sig(reg_name, context) ((context)->uc_mcontext.regs->reg_name)
1178 /* Gpr Registers access */
1179 # define GPR_sig(reg_num, context) REG_sig(gpr[reg_num], context)
1180 # define IAR_sig(context) REG_sig(nip, context) /* Program counter */
1181 # define MSR_sig(context) REG_sig(msr, context) /* Machine State Register (Supervisor) */
1182 # define CTR_sig(context) REG_sig(ctr, context) /* Count register */
1183 # define XER_sig(context) REG_sig(xer, context) /* User's integer exception register */
1184 # define LR_sig(context) REG_sig(link, context) /* Link register */
1185 # define CR_sig(context) REG_sig(ccr, context) /* Condition register */
1186 /* Float Registers access */
1187 # define FLOAT_sig(reg_num, context) (((double*)((char*)((context)->uc_mcontext.regs+48*4)))[reg_num])
1188 # define FPSCR_sig(context) (*(int*)((char*)((context)->uc_mcontext.regs+(48+32*2)*4)))
1189 /* Exception Registers access */
1190 # define DAR_sig(context) REG_sig(dar, context)
1191 # define DSISR_sig(context) REG_sig(dsisr, context)
1192 # define TRAP_sig(context) REG_sig(trap, context)
1196 # include <sys/ucontext.h>
1197 typedef struct ucontext SIGCONTEXT;
1198 /* All Registers access - only for local access */
1199 # define REG_sig(reg_name, context) ((context)->uc_mcontext->ss.reg_name)
1200 # define FLOATREG_sig(reg_name, context) ((context)->uc_mcontext->fs.reg_name)
1201 # define EXCEPREG_sig(reg_name, context) ((context)->uc_mcontext->es.reg_name)
1202 # define VECREG_sig(reg_name, context) ((context)->uc_mcontext->vs.reg_name)
1203 /* Gpr Registers access */
1204 # define GPR_sig(reg_num, context) REG_sig(r##reg_num, context)
1205 # define IAR_sig(context) REG_sig(srr0, context) /* Program counter */
1206 # define MSR_sig(context) REG_sig(srr1, context) /* Machine State Register (Supervisor) */
1207 # define CTR_sig(context) REG_sig(ctr, context)
1208 # define XER_sig(context) REG_sig(xer, context) /* Link register */
1209 # define LR_sig(context) REG_sig(lr, context) /* User's integer exception register */
1210 # define CR_sig(context) REG_sig(cr, context) /* Condition register */
1211 /* Float Registers access */
1212 # define FLOAT_sig(reg_num, context) FLOATREG_sig(fpregs[reg_num], context)
1213 # define FPSCR_sig(context) ((double)FLOATREG_sig(fpscr, context))
1214 /* Exception Registers access */
1215 # define DAR_sig(context) EXCEPREG_sig(dar, context) /* Fault registers for coredump */
1216 # define DSISR_sig(context) EXCEPREG_sig(dsisr, context)
1217 # define TRAP_sig(context) EXCEPREG_sig(exception, context) /* number of powerpc exception taken */
1218 #endif /* __APPLE__ */
1220 int cpu_signal_handler(int host_signum, void *pinfo,
1223 siginfo_t *info = pinfo;
1224 struct ucontext *uc = puc;
1232 if (DSISR_sig(uc) & 0x00800000)
1235 if (TRAP_sig(uc) != 0x400 && (DSISR_sig(uc) & 0x02000000))
1238 return handle_cpu_signal(pc, (unsigned long)info->si_addr,
1239 is_write, &uc->uc_sigmask, puc);
1242 #elif defined(__alpha__)
1244 int cpu_signal_handler(int host_signum, void *pinfo,
1247 siginfo_t *info = pinfo;
1248 struct ucontext *uc = puc;
1249 uint32_t *pc = uc->uc_mcontext.sc_pc;
1250 uint32_t insn = *pc;
1253 /* XXX: need kernel patch to get write flag faster */
1254 switch (insn >> 26) {
1269 return handle_cpu_signal(pc, (unsigned long)info->si_addr,
1270 is_write, &uc->uc_sigmask, puc);
1272 #elif defined(__sparc__)
1274 int cpu_signal_handler(int host_signum, void *pinfo,
1277 siginfo_t *info = pinfo;
1280 #if !defined(__arch64__) || defined(HOST_SOLARIS)
1281 uint32_t *regs = (uint32_t *)(info + 1);
1282 void *sigmask = (regs + 20);
1283 /* XXX: is there a standard glibc define ? */
1284 unsigned long pc = regs[1];
1286 struct sigcontext *sc = puc;
1287 unsigned long pc = sc->sigc_regs.tpc;
1288 void *sigmask = (void *)sc->sigc_mask;
1291 /* XXX: need kernel patch to get write flag faster */
1293 insn = *(uint32_t *)pc;
1294 if ((insn >> 30) == 3) {
1295 switch((insn >> 19) & 0x3f) {
1307 return handle_cpu_signal(pc, (unsigned long)info->si_addr,
1308 is_write, sigmask, NULL);
1311 #elif defined(__arm__)
1313 int cpu_signal_handler(int host_signum, void *pinfo,
1316 siginfo_t *info = pinfo;
1317 struct ucontext *uc = puc;
1321 #if (__GLIBC__ < 2 || (__GLIBC__ == 2 && __GLIBC_MINOR__ =< 3))
1322 pc = uc->uc_mcontext.gregs[R15];
1324 pc = uc->uc_mcontext.arm_pc;
1326 /* XXX: compute is_write */
1328 return handle_cpu_signal(pc, (unsigned long)info->si_addr,
1330 &uc->uc_sigmask, puc);
1333 #elif defined(__mc68000)
1335 int cpu_signal_handler(int host_signum, void *pinfo,
1338 siginfo_t *info = pinfo;
1339 struct ucontext *uc = puc;
1343 pc = uc->uc_mcontext.gregs[16];
1344 /* XXX: compute is_write */
1346 return handle_cpu_signal(pc, (unsigned long)info->si_addr,
1348 &uc->uc_sigmask, puc);
1351 #elif defined(__ia64)
1354 /* This ought to be in <bits/siginfo.h>... */
1355 # define __ISR_VALID 1
1358 int cpu_signal_handler(int host_signum, void *pinfo, void *puc)
1360 siginfo_t *info = pinfo;
1361 struct ucontext *uc = puc;
1365 ip = uc->uc_mcontext.sc_ip;
1366 switch (host_signum) {
1372 if (info->si_code && (info->si_segvflags & __ISR_VALID))
1373 /* ISR.W (write-access) is bit 33: */
1374 is_write = (info->si_isr >> 33) & 1;
1380 return handle_cpu_signal(ip, (unsigned long)info->si_addr,
1382 &uc->uc_sigmask, puc);
1385 #elif defined(__s390__)
1387 int cpu_signal_handler(int host_signum, void *pinfo,
1390 siginfo_t *info = pinfo;
1391 struct ucontext *uc = puc;
1395 pc = uc->uc_mcontext.psw.addr;
1396 /* XXX: compute is_write */
1398 return handle_cpu_signal(pc, (unsigned long)info->si_addr,
1399 is_write, &uc->uc_sigmask, puc);
1402 #elif defined(__mips__)
1404 int cpu_signal_handler(int host_signum, void *pinfo,
1407 siginfo_t *info = pinfo;
1408 struct ucontext *uc = puc;
1409 greg_t pc = uc->uc_mcontext.pc;
1412 /* XXX: compute is_write */
1414 return handle_cpu_signal(pc, (unsigned long)info->si_addr,
1415 is_write, &uc->uc_sigmask, puc);
1418 #elif defined(__hppa__)
1420 int cpu_signal_handler(int host_signum, void *pinfo,
1423 struct siginfo *info = pinfo;
1424 struct ucontext *uc = puc;
1428 pc = uc->uc_mcontext.sc_iaoq[0];
1429 /* FIXME: compute is_write */
1431 return handle_cpu_signal(pc, (unsigned long)info->si_addr,
1433 &uc->uc_sigmask, puc);
1438 #error host CPU specific signal handler needed
1442 #endif /* !defined(CONFIG_SOFTMMU) */
projects / sdk / emulator / qemu.git / blob