2 /* Simulator for the MIPS architecture.
4 This file is part of the MIPS sim
6 THIS SOFTWARE IS NOT COPYRIGHTED
8 Cygnus offers the following for use in the public domain. Cygnus
9 makes no warranty with regard to the software or it's performance
10 and the user accepts the software "AS IS" with all faults.
12 CYGNUS DISCLAIMS ANY WARRANTIES, EXPRESS OR IMPLIED, WITH REGARD TO
13 THIS SOFTWARE INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
14 MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE.
21 The IDT monitor (found on the VR4300 board), seems to lie about
22 register contents. It seems to treat the registers as sign-extended
23 32-bit values. This cause *REAL* problems when single-stepping 64-bit
28 /* The TRACE manifests enable the provision of extra features. If they
29 are not defined then a simpler (quicker) simulator is constructed
30 without the required run-time checks, etc. */
31 #if 1 /* 0 to allow user build selection, 1 to force inclusion */
37 #include "sim-utils.h"
38 #include "sim-options.h"
39 #include "sim-assert.h"
65 #include "libiberty.h"
67 #include "callback.h" /* GDB simulator callback interface */
68 #include "remote-sim.h" /* GDB simulator interface */
76 char* pr_addr PARAMS ((SIM_ADDR addr));
77 char* pr_uword64 PARAMS ((uword64 addr));
80 /* Within interp.c we refer to the sim_state and sim_cpu directly. */
85 /* The following reserved instruction value is used when a simulator
86 trap is required. NOTE: Care must be taken, since this value may be
87 used in later revisions of the MIPS ISA. */
89 #define RSVD_INSTRUCTION (0x00000005)
90 #define RSVD_INSTRUCTION_MASK (0xFC00003F)
92 #define RSVD_INSTRUCTION_ARG_SHIFT 6
93 #define RSVD_INSTRUCTION_ARG_MASK 0xFFFFF
96 /* Bits in the Debug register */
97 #define Debug_DBD 0x80000000 /* Debug Branch Delay */
98 #define Debug_DM 0x40000000 /* Debug Mode */
99 #define Debug_DBp 0x00000002 /* Debug Breakpoint indicator */
101 /*---------------------------------------------------------------------------*/
102 /*-- GDB simulator interface ------------------------------------------------*/
103 /*---------------------------------------------------------------------------*/
105 static void ColdReset PARAMS((SIM_DESC sd));
107 /*---------------------------------------------------------------------------*/
111 #define DELAYSLOT() {\
112 if (STATE & simDELAYSLOT)\
113 sim_io_eprintf(sd,"Delay slot already activated (branch in delay slot?)\n");\
114 STATE |= simDELAYSLOT;\
117 #define JALDELAYSLOT() {\
119 STATE |= simJALDELAYSLOT;\
123 STATE &= ~simDELAYSLOT;\
124 STATE |= simSKIPNEXT;\
127 #define CANCELDELAYSLOT() {\
129 STATE &= ~(simDELAYSLOT | simJALDELAYSLOT);\
132 #define INDELAYSLOT() ((STATE & simDELAYSLOT) != 0)
133 #define INJALDELAYSLOT() ((STATE & simJALDELAYSLOT) != 0)
135 /* Note that the monitor code essentially assumes this layout of memory.
136 If you change these, change the monitor code, too. */
137 #define K0BASE (0x80000000)
138 #define K0SIZE (0x20000000)
139 #define K1BASE (0xA0000000)
140 #define K1SIZE (0x20000000)
142 /* Simple run-time monitor support.
144 We emulate the monitor by placing magic reserved instructions at
145 the monitor's entry points; when we hit these instructions, instead
146 of raising an exception (as we would normally), we look at the
147 instruction and perform the appropriate monitory operation.
149 `*_monitor_base' are the physical addresses at which the corresponding
150 monitor vectors are located. `0' means none. By default,
152 The RSVD_INSTRUCTION... macros specify the magic instructions we
153 use at the monitor entry points. */
154 static int firmware_option_p = 0;
155 static SIM_ADDR idt_monitor_base = 0xBFC00000;
156 static SIM_ADDR pmon_monitor_base = 0xBFC00500;
157 static SIM_ADDR lsipmon_monitor_base = 0xBFC00200;
159 static SIM_RC sim_firmware_command (SIM_DESC sd, char* arg);
162 #define MEM_SIZE (2 << 20)
166 static char *tracefile = "trace.din"; /* default filename for trace log */
167 FILE *tracefh = NULL;
168 static void open_trace PARAMS((SIM_DESC sd));
171 static const char * get_insn_name (sim_cpu *, int);
173 /* simulation target board. NULL=canonical */
174 static char* board = NULL;
177 static DECLARE_OPTION_HANDLER (mips_option_handler);
180 OPTION_DINERO_TRACE = OPTION_START,
188 mips_option_handler (sd, cpu, opt, arg, is_command)
198 case OPTION_DINERO_TRACE: /* ??? */
200 /* Eventually the simTRACE flag could be treated as a toggle, to
201 allow external control of the program points being traced
202 (i.e. only from main onwards, excluding the run-time setup,
204 for (cpu_nr = 0; cpu_nr < MAX_NR_PROCESSORS; cpu_nr++)
206 sim_cpu *cpu = STATE_CPU (sd, cpu_nr);
209 else if (strcmp (arg, "yes") == 0)
211 else if (strcmp (arg, "no") == 0)
213 else if (strcmp (arg, "on") == 0)
215 else if (strcmp (arg, "off") == 0)
219 fprintf (stderr, "Unrecognized dinero-trace option `%s'\n", arg);
226 Simulator constructed without dinero tracing support (for performance).\n\
227 Re-compile simulator with \"-DTRACE\" to enable this option.\n");
231 case OPTION_DINERO_FILE:
233 if (optarg != NULL) {
235 tmp = (char *)malloc(strlen(optarg) + 1);
238 sim_io_printf(sd,"Failed to allocate buffer for tracefile name \"%s\"\n",optarg);
244 sim_io_printf(sd,"Placing trace information into file \"%s\"\n",tracefile);
250 case OPTION_FIRMWARE:
251 return sim_firmware_command (sd, arg);
257 board = zalloc(strlen(arg) + 1);
268 static const OPTION mips_options[] =
270 { {"dinero-trace", optional_argument, NULL, OPTION_DINERO_TRACE},
271 '\0', "on|off", "Enable dinero tracing",
272 mips_option_handler },
273 { {"dinero-file", required_argument, NULL, OPTION_DINERO_FILE},
274 '\0', "FILE", "Write dinero trace to FILE",
275 mips_option_handler },
276 { {"firmware", required_argument, NULL, OPTION_FIRMWARE},
277 '\0', "[idt|pmon|lsipmon|none][@ADDRESS]", "Emulate ROM monitor",
278 mips_option_handler },
279 { {"board", required_argument, NULL, OPTION_BOARD},
280 '\0', "none" /* rely on compile-time string concatenation for other options */
282 #define BOARD_JMR3904 "jmr3904"
284 #define BOARD_JMR3904_PAL "jmr3904pal"
285 "|" BOARD_JMR3904_PAL
286 #define BOARD_JMR3904_DEBUG "jmr3904debug"
287 "|" BOARD_JMR3904_DEBUG
288 #define BOARD_BSP "bsp"
291 , "Customize simulation for a particular board.", mips_option_handler },
293 { {NULL, no_argument, NULL, 0}, '\0', NULL, NULL, NULL }
297 int interrupt_pending;
300 interrupt_event (SIM_DESC sd, void *data)
302 sim_cpu *cpu = STATE_CPU (sd, 0); /* FIXME */
303 address_word cia = CIA_GET (cpu);
306 interrupt_pending = 0;
307 SignalExceptionInterrupt (1); /* interrupt "1" */
309 else if (!interrupt_pending)
310 sim_events_schedule (sd, 1, interrupt_event, data);
314 /*---------------------------------------------------------------------------*/
315 /*-- Device registration hook -----------------------------------------------*/
316 /*---------------------------------------------------------------------------*/
317 static void device_init(SIM_DESC sd) {
319 extern void register_devices(SIM_DESC);
320 register_devices(sd);
324 /*---------------------------------------------------------------------------*/
325 /*-- GDB simulator interface ------------------------------------------------*/
326 /*---------------------------------------------------------------------------*/
329 sim_open (kind, cb, abfd, argv)
335 SIM_DESC sd = sim_state_alloc (kind, cb);
336 sim_cpu *cpu = STATE_CPU (sd, 0); /* FIXME */
338 SIM_ASSERT (STATE_MAGIC (sd) == SIM_MAGIC_NUMBER);
340 /* FIXME: watchpoints code shouldn't need this */
341 STATE_WATCHPOINTS (sd)->pc = &(PC);
342 STATE_WATCHPOINTS (sd)->sizeof_pc = sizeof (PC);
343 STATE_WATCHPOINTS (sd)->interrupt_handler = interrupt_event;
345 /* Initialize the mechanism for doing insn profiling. */
346 CPU_INSN_NAME (cpu) = get_insn_name;
347 CPU_MAX_INSNS (cpu) = nr_itable_entries;
351 if (sim_pre_argv_init (sd, argv[0]) != SIM_RC_OK)
353 sim_add_option_table (sd, NULL, mips_options);
356 /* getopt will print the error message so we just have to exit if this fails.
357 FIXME: Hmmm... in the case of gdb we need getopt to call
359 if (sim_parse_args (sd, argv) != SIM_RC_OK)
361 /* Uninstall the modules to avoid memory leaks,
362 file descriptor leaks, etc. */
363 sim_module_uninstall (sd);
367 /* handle board-specific memory maps */
370 /* Allocate core managed memory */
373 /* For compatibility with the old code - under this (at level one)
374 are the kernel spaces K0 & K1. Both of these map to a single
375 smaller sub region */
376 sim_do_command(sd," memory region 0x7fff8000,0x8000") ; /* MTZ- 32 k stack */
377 sim_do_commandf (sd, "memory alias 0x%lx@1,0x%lx%%0x%lx,0x%0x",
379 MEM_SIZE, /* actual size */
384 else if (board != NULL
385 && (strcmp(board, BOARD_BSP) == 0))
389 STATE_ENVIRONMENT (sd) = OPERATING_ENVIRONMENT;
391 /* ROM: 0x9FC0_0000 - 0x9FFF_FFFF and 0xBFC0_0000 - 0xBFFF_FFFF */
392 sim_do_commandf (sd, "memory alias 0x%lx@1,0x%lx,0x%0x",
394 4 * 1024 * 1024, /* 4 MB */
397 /* SRAM: 0x8000_0000 - 0x803F_FFFF and 0xA000_0000 - 0xA03F_FFFF */
398 sim_do_commandf (sd, "memory alias 0x%lx@1,0x%lx,0x%0x",
400 4 * 1024 * 1024, /* 4 MB */
403 /* DRAM: 0x8800_0000 - 0x89FF_FFFF and 0xA800_0000 - 0xA9FF_FFFF */
404 for (i=0; i<8; i++) /* 32 MB total */
406 unsigned size = 4 * 1024 * 1024; /* 4 MB */
407 sim_do_commandf (sd, "memory alias 0x%lx@1,0x%lx,0x%0x",
408 0x88000000 + (i * size),
410 0xA8000000 + (i * size));
414 else if (board != NULL
415 && (strcmp(board, BOARD_JMR3904) == 0 ||
416 strcmp(board, BOARD_JMR3904_PAL) == 0 ||
417 strcmp(board, BOARD_JMR3904_DEBUG) == 0))
419 /* match VIRTUAL memory layout of JMR-TX3904 board */
422 /* --- disable monitor unless forced on by user --- */
424 if (! firmware_option_p)
426 idt_monitor_base = 0;
427 pmon_monitor_base = 0;
428 lsipmon_monitor_base = 0;
431 /* --- environment --- */
433 STATE_ENVIRONMENT (sd) = OPERATING_ENVIRONMENT;
437 /* ROM: 0x9FC0_0000 - 0x9FFF_FFFF and 0xBFC0_0000 - 0xBFFF_FFFF */
438 sim_do_commandf (sd, "memory alias 0x%lx@1,0x%lx,0x%0x",
440 4 * 1024 * 1024, /* 4 MB */
443 /* SRAM: 0x8000_0000 - 0x803F_FFFF and 0xA000_0000 - 0xA03F_FFFF */
444 sim_do_commandf (sd, "memory alias 0x%lx@1,0x%lx,0x%0x",
446 4 * 1024 * 1024, /* 4 MB */
449 /* DRAM: 0x8800_0000 - 0x89FF_FFFF and 0xA800_0000 - 0xA9FF_FFFF */
450 for (i=0; i<8; i++) /* 32 MB total */
452 unsigned size = 4 * 1024 * 1024; /* 4 MB */
453 sim_do_commandf (sd, "memory alias 0x%lx@1,0x%lx,0x%0x",
454 0x88000000 + (i * size),
456 0xA8000000 + (i * size));
459 /* Dummy memory regions for unsimulated devices */
461 sim_do_commandf (sd, "memory alias 0x%lx@1,0x%lx", 0xFFFFE000, 0x01c); /* EBIF */
462 sim_do_commandf (sd, "memory alias 0x%lx@1,0x%lx", 0xFFFF9000, 0x200); /* EBIF */
463 sim_do_commandf (sd, "memory alias 0x%lx@1,0x%lx", 0xFFFFF500, 0x300); /* PIO */
464 sim_do_commandf (sd, "memory alias 0x%lx@1,0x%lx", 0xFFFF8000, 0x804); /* DRAMC */
465 sim_do_commandf (sd, "memory alias 0x%lx@1,0x%lx", 0xB1000000, 0x400); /* ISA I/O */
466 sim_do_commandf (sd, "memory alias 0x%lx@1,0x%lx", 0xB2100000, 0x004); /* ISA ctl */
467 sim_do_commandf (sd, "memory alias 0x%lx@1,0x%lx", 0xB2500000, 0x004); /* LED/switch */
468 sim_do_commandf (sd, "memory alias 0x%lx@1,0x%lx", 0xB2700000, 0x004); /* RTC */
469 sim_do_commandf (sd, "memory alias 0x%lx@1,0x%lx", 0xB3C00000, 0x004); /* RTC */
471 /* --- simulated devices --- */
472 sim_hw_parse (sd, "/tx3904irc@0xffffc000/reg 0xffffc000 0x20");
473 sim_hw_parse (sd, "/tx3904cpu");
474 sim_hw_parse (sd, "/tx3904tmr@0xfffff000/reg 0xfffff000 0x100");
475 sim_hw_parse (sd, "/tx3904tmr@0xfffff100/reg 0xfffff100 0x100");
476 sim_hw_parse (sd, "/tx3904tmr@0xfffff200/reg 0xfffff200 0x100");
477 sim_hw_parse (sd, "/tx3904sio@0xfffff300/reg 0xfffff300 0x100");
479 /* FIXME: poking at dv-sockser internals, use tcp backend if
480 --sockser_addr option was given.*/
481 extern char* sockser_addr;
482 if(sockser_addr == NULL)
483 sim_hw_parse (sd, "/tx3904sio@0xfffff300/backend stdio");
485 sim_hw_parse (sd, "/tx3904sio@0xfffff300/backend tcp");
487 sim_hw_parse (sd, "/tx3904sio@0xfffff400/reg 0xfffff400 0x100");
488 sim_hw_parse (sd, "/tx3904sio@0xfffff400/backend stdio");
490 /* -- device connections --- */
491 sim_hw_parse (sd, "/tx3904irc > ip level /tx3904cpu");
492 sim_hw_parse (sd, "/tx3904tmr@0xfffff000 > int tmr0 /tx3904irc");
493 sim_hw_parse (sd, "/tx3904tmr@0xfffff100 > int tmr1 /tx3904irc");
494 sim_hw_parse (sd, "/tx3904tmr@0xfffff200 > int tmr2 /tx3904irc");
495 sim_hw_parse (sd, "/tx3904sio@0xfffff300 > int sio0 /tx3904irc");
496 sim_hw_parse (sd, "/tx3904sio@0xfffff400 > int sio1 /tx3904irc");
498 /* add PAL timer & I/O module */
499 if(! strcmp(board, BOARD_JMR3904_PAL))
502 sim_hw_parse (sd, "/pal@0xffff0000");
503 sim_hw_parse (sd, "/pal@0xffff0000/reg 0xffff0000 64");
505 /* wire up interrupt ports to irc */
506 sim_hw_parse (sd, "/pal@0x31000000 > countdown tmr0 /tx3904irc");
507 sim_hw_parse (sd, "/pal@0x31000000 > timer tmr1 /tx3904irc");
508 sim_hw_parse (sd, "/pal@0x31000000 > int int0 /tx3904irc");
511 if(! strcmp(board, BOARD_JMR3904_DEBUG))
513 /* -- DEBUG: glue interrupt generators --- */
514 sim_hw_parse (sd, "/glue@0xffff0000/reg 0xffff0000 0x50");
515 sim_hw_parse (sd, "/glue@0xffff0000 > int0 int0 /tx3904irc");
516 sim_hw_parse (sd, "/glue@0xffff0000 > int1 int1 /tx3904irc");
517 sim_hw_parse (sd, "/glue@0xffff0000 > int2 int2 /tx3904irc");
518 sim_hw_parse (sd, "/glue@0xffff0000 > int3 int3 /tx3904irc");
519 sim_hw_parse (sd, "/glue@0xffff0000 > int4 int4 /tx3904irc");
520 sim_hw_parse (sd, "/glue@0xffff0000 > int5 int5 /tx3904irc");
521 sim_hw_parse (sd, "/glue@0xffff0000 > int6 int6 /tx3904irc");
522 sim_hw_parse (sd, "/glue@0xffff0000 > int7 int7 /tx3904irc");
523 sim_hw_parse (sd, "/glue@0xffff0000 > int8 dmac0 /tx3904irc");
524 sim_hw_parse (sd, "/glue@0xffff0000 > int9 dmac1 /tx3904irc");
525 sim_hw_parse (sd, "/glue@0xffff0000 > int10 dmac2 /tx3904irc");
526 sim_hw_parse (sd, "/glue@0xffff0000 > int11 dmac3 /tx3904irc");
527 sim_hw_parse (sd, "/glue@0xffff0000 > int12 sio0 /tx3904irc");
528 sim_hw_parse (sd, "/glue@0xffff0000 > int13 sio1 /tx3904irc");
529 sim_hw_parse (sd, "/glue@0xffff0000 > int14 tmr0 /tx3904irc");
530 sim_hw_parse (sd, "/glue@0xffff0000 > int15 tmr1 /tx3904irc");
531 sim_hw_parse (sd, "/glue@0xffff0000 > int16 tmr2 /tx3904irc");
532 sim_hw_parse (sd, "/glue@0xffff0000 > int17 nmi /tx3904cpu");
540 /* check for/establish the a reference program image */
541 if (sim_analyze_program (sd,
542 (STATE_PROG_ARGV (sd) != NULL
543 ? *STATE_PROG_ARGV (sd)
547 sim_module_uninstall (sd);
551 /* Configure/verify the target byte order and other runtime
552 configuration options */
553 if (sim_config (sd) != SIM_RC_OK)
555 sim_module_uninstall (sd);
559 if (sim_post_argv_init (sd) != SIM_RC_OK)
561 /* Uninstall the modules to avoid memory leaks,
562 file descriptor leaks, etc. */
563 sim_module_uninstall (sd);
567 /* verify assumptions the simulator made about the host type system.
568 This macro does not return if there is a problem */
569 SIM_ASSERT (sizeof(int) == (4 * sizeof(char)));
570 SIM_ASSERT (sizeof(word64) == (8 * sizeof(char)));
572 /* This is NASTY, in that we are assuming the size of specific
576 for (rn = 0; (rn < (LAST_EMBED_REGNUM + 1)); rn++)
579 cpu->register_widths[rn] = WITH_TARGET_WORD_BITSIZE;
580 else if ((rn >= FGRIDX) && (rn < (FGRIDX + NR_FGR)))
581 cpu->register_widths[rn] = WITH_TARGET_FLOATING_POINT_BITSIZE;
582 else if ((rn >= 33) && (rn <= 37))
583 cpu->register_widths[rn] = WITH_TARGET_WORD_BITSIZE;
584 else if ((rn == SRIDX)
587 || ((rn >= 72) && (rn <= 89)))
588 cpu->register_widths[rn] = 32;
590 cpu->register_widths[rn] = 0;
597 if (STATE & simTRACE)
602 sim_io_eprintf (sd, "idt@%x pmon@%x lsipmon@%x\n",
605 lsipmon_monitor_base);
608 /* Write the monitor trap address handlers into the monitor (eeprom)
609 address space. This can only be done once the target endianness
610 has been determined. */
611 if (idt_monitor_base != 0)
614 unsigned idt_monitor_size = 1 << 11;
616 /* the default monitor region */
617 sim_do_commandf (sd, "memory region 0x%x,0x%x",
618 idt_monitor_base, idt_monitor_size);
620 /* Entry into the IDT monitor is via fixed address vectors, and
621 not using machine instructions. To avoid clashing with use of
622 the MIPS TRAP system, we place our own (simulator specific)
623 "undefined" instructions into the relevant vector slots. */
624 for (loop = 0; (loop < idt_monitor_size); loop += 4)
626 address_word vaddr = (idt_monitor_base + loop);
627 unsigned32 insn = (RSVD_INSTRUCTION |
628 (((loop >> 2) & RSVD_INSTRUCTION_ARG_MASK)
629 << RSVD_INSTRUCTION_ARG_SHIFT));
631 sim_write (sd, vaddr, (char *)&insn, sizeof (insn));
635 if ((pmon_monitor_base != 0) || (lsipmon_monitor_base != 0))
637 /* The PMON monitor uses the same address space, but rather than
638 branching into it the address of a routine is loaded. We can
639 cheat for the moment, and direct the PMON routine to IDT style
640 instructions within the monitor space. This relies on the IDT
641 monitor not using the locations from 0xBFC00500 onwards as its
644 for (loop = 0; (loop < 24); loop++)
646 unsigned32 value = ((0x500 - 8) / 8); /* default UNDEFINED reason code */
662 value = ((0x500 - 16) / 8); /* not an IDT reason code */
664 case 8: /* cliexit */
667 case 11: /* flush_cache */
672 SIM_ASSERT (idt_monitor_base != 0);
673 value = ((unsigned int) idt_monitor_base + (value * 8));
676 if (pmon_monitor_base != 0)
678 address_word vaddr = (pmon_monitor_base + (loop * 4));
679 sim_write (sd, vaddr, (char *)&value, sizeof (value));
682 if (lsipmon_monitor_base != 0)
684 address_word vaddr = (lsipmon_monitor_base + (loop * 4));
685 sim_write (sd, vaddr, (char *)&value, sizeof (value));
689 /* Write an abort sequence into the TRAP (common) exception vector
690 addresses. This is to catch code executing a TRAP (et.al.)
691 instruction without installing a trap handler. */
692 if ((idt_monitor_base != 0) ||
693 (pmon_monitor_base != 0) ||
694 (lsipmon_monitor_base != 0))
696 unsigned32 halt[2] = { 0x2404002f /* addiu r4, r0, 47 */,
697 HALT_INSTRUCTION /* BREAK */ };
700 sim_write (sd, 0x80000000, (char *) halt, sizeof (halt));
701 sim_write (sd, 0x80000180, (char *) halt, sizeof (halt));
702 sim_write (sd, 0x80000200, (char *) halt, sizeof (halt));
703 /* XXX: Write here unconditionally? */
704 sim_write (sd, 0xBFC00200, (char *) halt, sizeof (halt));
705 sim_write (sd, 0xBFC00380, (char *) halt, sizeof (halt));
706 sim_write (sd, 0xBFC00400, (char *) halt, sizeof (halt));
720 tracefh = fopen(tracefile,"wb+");
723 sim_io_eprintf(sd,"Failed to create file \"%s\", writing trace information to stderr.\n",tracefile);
729 /* Return name of an insn, used by insn profiling. */
731 get_insn_name (sim_cpu *cpu, int i)
733 return itable[i].name;
737 sim_close (sd, quitting)
742 printf("DBG: sim_close: entered (quitting = %d)\n",quitting);
746 /* "quitting" is non-zero if we cannot hang on errors */
748 /* shut down modules */
749 sim_module_uninstall (sd);
751 /* Ensure that any resources allocated through the callback
752 mechanism are released: */
753 sim_io_shutdown (sd);
756 if (tracefh != NULL && tracefh != stderr)
761 /* FIXME - free SD */
768 sim_write (sd,addr,buffer,size)
771 unsigned char *buffer;
775 sim_cpu *cpu = STATE_CPU (sd, 0); /* FIXME */
777 /* Return the number of bytes written, or zero if error. */
779 sim_io_printf(sd,"sim_write(0x%s,buffer,%d);\n",pr_addr(addr),size);
782 /* We use raw read and write routines, since we do not want to count
783 the GDB memory accesses in our statistics gathering. */
785 for (index = 0; index < size; index++)
787 address_word vaddr = (address_word)addr + index;
790 if (!address_translation (SD, CPU, NULL_CIA, vaddr, isDATA, isSTORE, &paddr, &cca, isRAW))
792 if (sim_core_write_buffer (SD, CPU, read_map, buffer + index, paddr, 1) != 1)
800 sim_read (sd,addr,buffer,size)
803 unsigned char *buffer;
807 sim_cpu *cpu = STATE_CPU (sd, 0); /* FIXME */
809 /* Return the number of bytes read, or zero if error. */
811 sim_io_printf(sd,"sim_read(0x%s,buffer,%d);\n",pr_addr(addr),size);
814 for (index = 0; (index < size); index++)
816 address_word vaddr = (address_word)addr + index;
819 if (!address_translation (SD, CPU, NULL_CIA, vaddr, isDATA, isLOAD, &paddr, &cca, isRAW))
821 if (sim_core_read_buffer (SD, CPU, read_map, buffer + index, paddr, 1) != 1)
829 sim_store_register (sd,rn,memory,length)
832 unsigned char *memory;
835 sim_cpu *cpu = STATE_CPU (sd, 0); /* FIXME */
836 /* NOTE: gdb (the client) stores registers in target byte order
837 while the simulator uses host byte order */
839 sim_io_printf(sd,"sim_store_register(%d,*memory=0x%s);\n",rn,pr_addr(*((SIM_ADDR *)memory)));
842 /* Unfortunately this suffers from the same problem as the register
843 numbering one. We need to know what the width of each logical
844 register number is for the architecture being simulated. */
846 if (cpu->register_widths[rn] == 0)
848 sim_io_eprintf(sd,"Invalid register width for %d (register store ignored)\n",rn);
854 if (rn >= FGRIDX && rn < FGRIDX + NR_FGR)
856 cpu->fpr_state[rn - FGRIDX] = fmt_uninterpreted;
857 if (cpu->register_widths[rn] == 32)
861 cpu->fgr[rn - FGRIDX] =
862 (unsigned32) T2H_8 (*(unsigned64*)memory);
867 cpu->fgr[rn - FGRIDX] = T2H_4 (*(unsigned32*)memory);
873 cpu->fgr[rn - FGRIDX] = T2H_8 (*(unsigned64*)memory);
878 if (cpu->register_widths[rn] == 32)
883 (unsigned32) T2H_8 (*(unsigned64*)memory);
888 cpu->registers[rn] = T2H_4 (*(unsigned32*)memory);
894 cpu->registers[rn] = T2H_8 (*(unsigned64*)memory);
902 sim_fetch_register (sd,rn,memory,length)
905 unsigned char *memory;
908 sim_cpu *cpu = STATE_CPU (sd, 0); /* FIXME */
909 /* NOTE: gdb (the client) stores registers in target byte order
910 while the simulator uses host byte order */
912 #if 0 /* FIXME: doesn't compile */
913 sim_io_printf(sd,"sim_fetch_register(%d=0x%s,mem) : place simulator registers into memory\n",rn,pr_addr(registers[rn]));
917 if (cpu->register_widths[rn] == 0)
919 sim_io_eprintf (sd, "Invalid register width for %d (register fetch ignored)\n",rn);
925 /* Any floating point register */
926 if (rn >= FGRIDX && rn < FGRIDX + NR_FGR)
928 if (cpu->register_widths[rn] == 32)
932 *(unsigned64*)memory =
933 H2T_8 ((unsigned32) (cpu->fgr[rn - FGRIDX]));
938 *(unsigned32*)memory = H2T_4 (cpu->fgr[rn - FGRIDX]);
944 *(unsigned64*)memory = H2T_8 (cpu->fgr[rn - FGRIDX]);
949 if (cpu->register_widths[rn] == 32)
953 *(unsigned64*)memory =
954 H2T_8 ((unsigned32) (cpu->registers[rn]));
959 *(unsigned32*)memory = H2T_4 ((unsigned32)(cpu->registers[rn]));
965 *(unsigned64*)memory = H2T_8 ((unsigned64)(cpu->registers[rn]));
974 sim_create_inferior (sd, abfd, argv,env)
982 #if 0 /* FIXME: doesn't compile */
983 printf("DBG: sim_create_inferior entered: start_address = 0x%s\n",
992 /* override PC value set by ColdReset () */
994 for (cpu_nr = 0; cpu_nr < sim_engine_nr_cpus (sd); cpu_nr++)
996 sim_cpu *cpu = STATE_CPU (sd, cpu_nr);
997 CIA_SET (cpu, (unsigned64) bfd_get_start_address (abfd));
1001 #if 0 /* def DEBUG */
1004 /* We should really place the argv slot values into the argument
1005 registers, and onto the stack as required. However, this
1006 assumes that we have a stack defined, which is not
1007 necessarily true at the moment. */
1009 sim_io_printf(sd,"sim_create_inferior() : passed arguments ignored\n");
1010 for (cptr = argv; (cptr && *cptr); cptr++)
1011 printf("DBG: arg \"%s\"\n",*cptr);
1019 sim_do_command (sd,cmd)
1023 if (sim_args_command (sd, cmd) != SIM_RC_OK)
1024 sim_io_printf (sd, "Error: \"%s\" is not a valid MIPS simulator command.\n",
1028 /*---------------------------------------------------------------------------*/
1029 /*-- Private simulator support interface ------------------------------------*/
1030 /*---------------------------------------------------------------------------*/
1032 /* Read a null terminated string from memory, return in a buffer */
1034 fetch_str (SIM_DESC sd,
1040 while (sim_read (sd, addr + nr, &null, 1) == 1 && null != 0)
1042 buf = NZALLOC (char, nr + 1);
1043 sim_read (sd, addr, buf, nr);
1048 /* Implements the "sim firmware" command:
1049 sim firmware NAME[@ADDRESS] --- emulate ROM monitor named NAME.
1050 NAME can be idt, pmon, or lsipmon. If omitted, ADDRESS
1051 defaults to the normal address for that monitor.
1052 sim firmware none --- don't emulate any ROM monitor. Useful
1053 if you need a clean address space. */
1055 sim_firmware_command (SIM_DESC sd, char *arg)
1057 int address_present = 0;
1060 /* Signal occurrence of this option. */
1061 firmware_option_p = 1;
1063 /* Parse out the address, if present. */
1065 char *p = strchr (arg, '@');
1069 address_present = 1;
1070 p ++; /* skip over @ */
1072 address = strtoul (p, &q, 0);
1075 sim_io_printf (sd, "Invalid address given to the"
1076 "`sim firmware NAME@ADDRESS' command: %s\n",
1082 address_present = 0;
1085 if (! strncmp (arg, "idt", 3))
1087 idt_monitor_base = address_present ? address : 0xBFC00000;
1088 pmon_monitor_base = 0;
1089 lsipmon_monitor_base = 0;
1091 else if (! strncmp (arg, "pmon", 4))
1093 /* pmon uses indirect calls. Hook into implied idt. */
1094 pmon_monitor_base = address_present ? address : 0xBFC00500;
1095 idt_monitor_base = pmon_monitor_base - 0x500;
1096 lsipmon_monitor_base = 0;
1098 else if (! strncmp (arg, "lsipmon", 7))
1100 /* lsipmon uses indirect calls. Hook into implied idt. */
1101 pmon_monitor_base = 0;
1102 lsipmon_monitor_base = address_present ? address : 0xBFC00200;
1103 idt_monitor_base = lsipmon_monitor_base - 0x200;
1105 else if (! strncmp (arg, "none", 4))
1107 if (address_present)
1110 "The `sim firmware none' command does "
1111 "not take an `ADDRESS' argument.\n");
1114 idt_monitor_base = 0;
1115 pmon_monitor_base = 0;
1116 lsipmon_monitor_base = 0;
1120 sim_io_printf (sd, "\
1121 Unrecognized name given to the `sim firmware NAME' command: %s\n\
1122 Recognized firmware names are: `idt', `pmon', `lsipmon', and `none'.\n",
1132 /* Simple monitor interface (currently setup for the IDT and PMON monitors) */
1134 sim_monitor (SIM_DESC sd,
1137 unsigned int reason)
1140 printf("DBG: sim_monitor: entered (reason = %d)\n",reason);
1143 /* The IDT monitor actually allows two instructions per vector
1144 slot. However, the simulator currently causes a trap on each
1145 individual instruction. We cheat, and lose the bottom bit. */
1148 /* The following callback functions are available, however the
1149 monitor we are simulating does not make use of them: get_errno,
1150 isatty, lseek, rename, system, time and unlink */
1154 case 6: /* int open(char *path,int flags) */
1156 char *path = fetch_str (sd, A0);
1157 V0 = sim_io_open (sd, path, (int)A1);
1162 case 7: /* int read(int file,char *ptr,int len) */
1166 char *buf = zalloc (nr);
1167 V0 = sim_io_read (sd, fd, buf, nr);
1168 sim_write (sd, A1, buf, nr);
1173 case 8: /* int write(int file,char *ptr,int len) */
1177 char *buf = zalloc (nr);
1178 sim_read (sd, A1, buf, nr);
1179 V0 = sim_io_write (sd, fd, buf, nr);
1184 case 10: /* int close(int file) */
1186 V0 = sim_io_close (sd, (int)A0);
1190 case 2: /* Densan monitor: char inbyte(int waitflag) */
1192 if (A0 == 0) /* waitflag == NOWAIT */
1193 V0 = (unsigned_word)-1;
1195 /* Drop through to case 11 */
1197 case 11: /* char inbyte(void) */
1200 /* ensure that all output has gone... */
1201 sim_io_flush_stdout (sd);
1202 if (sim_io_read_stdin (sd, &tmp, sizeof(char)) != sizeof(char))
1204 sim_io_error(sd,"Invalid return from character read");
1205 V0 = (unsigned_word)-1;
1208 V0 = (unsigned_word)tmp;
1212 case 3: /* Densan monitor: void co(char chr) */
1213 case 12: /* void outbyte(char chr) : write a byte to "stdout" */
1215 char tmp = (char)(A0 & 0xFF);
1216 sim_io_write_stdout (sd, &tmp, sizeof(char));
1220 case 17: /* void _exit() */
1222 sim_io_eprintf (sd, "sim_monitor(17): _exit(int reason) to be coded\n");
1223 sim_engine_halt (SD, CPU, NULL, NULL_CIA, sim_exited,
1224 (unsigned int)(A0 & 0xFFFFFFFF));
1228 case 28 : /* PMON flush_cache */
1231 case 55: /* void get_mem_info(unsigned int *ptr) */
1232 /* in: A0 = pointer to three word memory location */
1233 /* out: [A0 + 0] = size */
1234 /* [A0 + 4] = instruction cache size */
1235 /* [A0 + 8] = data cache size */
1237 unsigned_4 value = MEM_SIZE /* FIXME STATE_MEM_SIZE (sd) */;
1238 unsigned_4 zero = 0;
1240 sim_write (sd, A0 + 0, (char *)&value, 4);
1241 sim_write (sd, A0 + 4, (char *)&zero, 4);
1242 sim_write (sd, A0 + 8, (char *)&zero, 4);
1243 /* sim_io_eprintf (sd, "sim: get_mem_info() depreciated\n"); */
1247 case 158 : /* PMON printf */
1248 /* in: A0 = pointer to format string */
1249 /* A1 = optional argument 1 */
1250 /* A2 = optional argument 2 */
1251 /* A3 = optional argument 3 */
1253 /* The following is based on the PMON printf source */
1255 address_word s = A0;
1257 signed_word *ap = &A1; /* 1st argument */
1258 /* This isn't the quickest way, since we call the host print
1259 routine for every character almost. But it does avoid
1260 having to allocate and manage a temporary string buffer. */
1261 /* TODO: Include check that we only use three arguments (A1,
1263 while (sim_read (sd, s++, &c, 1) && c != '\0')
1268 enum {FMT_RJUST, FMT_LJUST, FMT_RJUST0, FMT_CENTER} fmt = FMT_RJUST;
1269 int width = 0, trunc = 0, haddot = 0, longlong = 0;
1270 while (sim_read (sd, s++, &c, 1) && c != '\0')
1272 if (strchr ("dobxXulscefg%", c))
1287 else if (c >= '1' && c <= '9')
1291 while (sim_read (sd, s++, &c, 1) == 1 && isdigit (c))
1294 n = (unsigned int)strtol(tmp,NULL,10);
1307 sim_io_printf (sd, "%%");
1312 address_word p = *ap++;
1314 while (sim_read (sd, p++, &ch, 1) == 1 && ch != '\0')
1315 sim_io_printf(sd, "%c", ch);
1318 sim_io_printf(sd,"(null)");
1321 sim_io_printf (sd, "%c", (int)*ap++);
1326 sim_read (sd, s++, &c, 1);
1330 sim_read (sd, s++, &c, 1);
1333 if (strchr ("dobxXu", c))
1335 word64 lv = (word64) *ap++;
1337 sim_io_printf(sd,"<binary not supported>");
1340 sprintf (tmp, "%%%s%c", longlong ? "ll" : "", c);
1342 sim_io_printf(sd, tmp, lv);
1344 sim_io_printf(sd, tmp, (int)lv);
1347 else if (strchr ("eEfgG", c))
1349 double dbl = *(double*)(ap++);
1350 sprintf (tmp, "%%%d.%d%c", width, trunc, c);
1351 sim_io_printf (sd, tmp, dbl);
1357 sim_io_printf(sd, "%c", c);
1363 sim_io_error (sd, "TODO: sim_monitor(%d) : PC = 0x%s\n",
1364 reason, pr_addr(cia));
1370 /* Store a word into memory. */
1373 store_word (SIM_DESC sd,
1382 if ((vaddr & 3) != 0)
1383 SignalExceptionAddressStore ();
1386 if (AddressTranslation (vaddr, isDATA, isSTORE, &paddr, &uncached,
1389 const uword64 mask = 7;
1393 paddr = (paddr & ~mask) | ((paddr & mask) ^ (ReverseEndian << 2));
1394 byte = (vaddr & mask) ^ (BigEndianCPU << 2);
1395 memval = ((uword64) val) << (8 * byte);
1396 StoreMemory (uncached, AccessLength_WORD, memval, 0, paddr, vaddr,
1402 /* Load a word from memory. */
1405 load_word (SIM_DESC sd,
1410 if ((vaddr & 3) != 0)
1412 SIM_CORE_SIGNAL (SD, cpu, cia, read_map, AccessLength_WORD+1, vaddr, read_transfer, sim_core_unaligned_signal);
1419 if (AddressTranslation (vaddr, isDATA, isLOAD, &paddr, &uncached,
1422 const uword64 mask = 0x7;
1423 const unsigned int reverse = ReverseEndian ? 1 : 0;
1424 const unsigned int bigend = BigEndianCPU ? 1 : 0;
1428 paddr = (paddr & ~mask) | ((paddr & mask) ^ (reverse << 2));
1429 LoadMemory (&memval,NULL,uncached, AccessLength_WORD, paddr, vaddr,
1431 byte = (vaddr & mask) ^ (bigend << 2);
1432 return SIGNEXTEND (((memval >> (8 * byte)) & 0xffffffff), 32);
1439 /* Simulate the mips16 entry and exit pseudo-instructions. These
1440 would normally be handled by the reserved instruction exception
1441 code, but for ease of simulation we just handle them directly. */
1444 mips16_entry (SIM_DESC sd,
1449 int aregs, sregs, rreg;
1452 printf("DBG: mips16_entry: entered (insn = 0x%08X)\n",insn);
1455 aregs = (insn & 0x700) >> 8;
1456 sregs = (insn & 0x0c0) >> 6;
1457 rreg = (insn & 0x020) >> 5;
1459 /* This should be checked by the caller. */
1468 /* This is the entry pseudo-instruction. */
1470 for (i = 0; i < aregs; i++)
1471 store_word (SD, CPU, cia, (uword64) (SP + 4 * i), GPR[i + 4]);
1479 store_word (SD, CPU, cia, (uword64) tsp, RA);
1482 for (i = 0; i < sregs; i++)
1485 store_word (SD, CPU, cia, (uword64) tsp, GPR[16 + i]);
1493 /* This is the exit pseudo-instruction. */
1500 RA = load_word (SD, CPU, cia, (uword64) tsp);
1503 for (i = 0; i < sregs; i++)
1506 GPR[i + 16] = load_word (SD, CPU, cia, (uword64) tsp);
1511 if (CURRENT_FLOATING_POINT == HARD_FLOATING_POINT)
1515 FGR[0] = WORD64LO (GPR[4]);
1516 FPR_STATE[0] = fmt_uninterpreted;
1518 else if (aregs == 6)
1520 FGR[0] = WORD64LO (GPR[5]);
1521 FGR[1] = WORD64LO (GPR[4]);
1522 FPR_STATE[0] = fmt_uninterpreted;
1523 FPR_STATE[1] = fmt_uninterpreted;
1532 /*-- trace support ----------------------------------------------------------*/
1534 /* The TRACE support is provided (if required) in the memory accessing
1535 routines. Since we are also providing the architecture specific
1536 features, the architecture simulation code can also deal with
1537 notifying the TRACE world of cache flushes, etc. Similarly we do
1538 not need to provide profiling support in the simulator engine,
1539 since we can sample in the instruction fetch control loop. By
1540 defining the TRACE manifest, we add tracing as a run-time
1544 /* Tracing by default produces "din" format (as required by
1545 dineroIII). Each line of such a trace file *MUST* have a din label
1546 and address field. The rest of the line is ignored, so comments can
1547 be included if desired. The first field is the label which must be
1548 one of the following values:
1553 3 escape record (treated as unknown access type)
1554 4 escape record (causes cache flush)
1556 The address field is a 32bit (lower-case) hexadecimal address
1557 value. The address should *NOT* be preceded by "0x".
1559 The size of the memory transfer is not important when dealing with
1560 cache lines (as long as no more than a cache line can be
1561 transferred in a single operation :-), however more information
1562 could be given following the dineroIII requirement to allow more
1563 complete memory and cache simulators to provide better
1564 results. i.e. the University of Pisa has a cache simulator that can
1565 also take bus size and speed as (variable) inputs to calculate
1566 complete system performance (a much more useful ability when trying
1567 to construct an end product, rather than a processor). They
1568 currently have an ARM version of their tool called ChARM. */
1572 dotrace (SIM_DESC sd,
1580 if (STATE & simTRACE) {
1582 fprintf(tracefh,"%d %s ; width %d ; ",
1586 va_start(ap,comment);
1587 vfprintf(tracefh,comment,ap);
1589 fprintf(tracefh,"\n");
1591 /* NOTE: Since the "din" format will only accept 32bit addresses, and
1592 we may be generating 64bit ones, we should put the hi-32bits of the
1593 address into the comment field. */
1595 /* TODO: Provide a buffer for the trace lines. We can then avoid
1596 performing writes until the buffer is filled, or the file is
1599 /* NOTE: We could consider adding a comment field to the "din" file
1600 produced using type 3 markers (unknown access). This would then
1601 allow information about the program that the "din" is for, and
1602 the MIPs world that was being simulated, to be placed into the
1609 /*---------------------------------------------------------------------------*/
1610 /*-- simulator engine -------------------------------------------------------*/
1611 /*---------------------------------------------------------------------------*/
1614 ColdReset (SIM_DESC sd)
1617 for (cpu_nr = 0; cpu_nr < sim_engine_nr_cpus (sd); cpu_nr++)
1619 sim_cpu *cpu = STATE_CPU (sd, cpu_nr);
1620 /* RESET: Fixed PC address: */
1621 PC = (unsigned_word) UNSIGNED64 (0xFFFFFFFFBFC00000);
1622 /* The reset vector address is in the unmapped, uncached memory space. */
1624 SR &= ~(status_SR | status_TS | status_RP);
1625 SR |= (status_ERL | status_BEV);
1627 /* Cheat and allow access to the complete register set immediately */
1628 if (CURRENT_FLOATING_POINT == HARD_FLOATING_POINT
1629 && WITH_TARGET_WORD_BITSIZE == 64)
1630 SR |= status_FR; /* 64bit registers */
1632 /* Ensure that any instructions with pending register updates are
1634 PENDING_INVALIDATE();
1636 /* Initialise the FPU registers to the unknown state */
1637 if (CURRENT_FLOATING_POINT == HARD_FLOATING_POINT)
1640 for (rn = 0; (rn < 32); rn++)
1641 FPR_STATE[rn] = fmt_uninterpreted;
1650 /* Description from page A-26 of the "MIPS IV Instruction Set" manual (revision 3.1) */
1651 /* Signal an exception condition. This will result in an exception
1652 that aborts the instruction. The instruction operation pseudocode
1653 will never see a return from this function call. */
1656 signal_exception (SIM_DESC sd,
1664 sim_io_printf(sd,"DBG: SignalException(%d) PC = 0x%s\n",exception,pr_addr(cia));
1667 /* Ensure that any active atomic read/modify/write operation will fail: */
1670 /* Save registers before interrupt dispatching */
1671 #ifdef SIM_CPU_EXCEPTION_TRIGGER
1672 SIM_CPU_EXCEPTION_TRIGGER(sd, cpu, cia);
1675 switch (exception) {
1677 case DebugBreakPoint :
1678 if (! (Debug & Debug_DM))
1684 Debug |= Debug_DBD; /* signaled from within in delay slot */
1685 DEPC = cia - 4; /* reference the branch instruction */
1689 Debug &= ~Debug_DBD; /* not signaled from within a delay slot */
1693 Debug |= Debug_DM; /* in debugging mode */
1694 Debug |= Debug_DBp; /* raising a DBp exception */
1696 sim_engine_restart (SD, CPU, NULL, NULL_CIA);
1700 case ReservedInstruction :
1703 unsigned int instruction;
1704 va_start(ap,exception);
1705 instruction = va_arg(ap,unsigned int);
1707 /* Provide simple monitor support using ReservedInstruction
1708 exceptions. The following code simulates the fixed vector
1709 entry points into the IDT monitor by causing a simulator
1710 trap, performing the monitor operation, and returning to
1711 the address held in the $ra register (standard PCS return
1712 address). This means we only need to pre-load the vector
1713 space with suitable instruction values. For systems were
1714 actual trap instructions are used, we would not need to
1715 perform this magic. */
1716 if ((instruction & RSVD_INSTRUCTION_MASK) == RSVD_INSTRUCTION)
1718 sim_monitor (SD, CPU, cia, ((instruction >> RSVD_INSTRUCTION_ARG_SHIFT) & RSVD_INSTRUCTION_ARG_MASK) );
1719 /* NOTE: This assumes that a branch-and-link style
1720 instruction was used to enter the vector (which is the
1721 case with the current IDT monitor). */
1722 sim_engine_restart (SD, CPU, NULL, RA);
1724 /* Look for the mips16 entry and exit instructions, and
1725 simulate a handler for them. */
1726 else if ((cia & 1) != 0
1727 && (instruction & 0xf81f) == 0xe809
1728 && (instruction & 0x0c0) != 0x0c0)
1730 mips16_entry (SD, CPU, cia, instruction);
1731 sim_engine_restart (sd, NULL, NULL, NULL_CIA);
1733 /* else fall through to normal exception processing */
1734 sim_io_eprintf(sd,"ReservedInstruction at PC = 0x%s\n", pr_addr (cia));
1738 /* Store exception code into current exception id variable (used
1741 /* TODO: If not simulating exceptions then stop the simulator
1742 execution. At the moment we always stop the simulation. */
1744 #ifdef SUBTARGET_R3900
1745 /* update interrupt-related registers */
1747 /* insert exception code in bits 6:2 */
1748 CAUSE = LSMASKED32(CAUSE, 31, 7) | LSINSERTED32(exception, 6, 2);
1749 /* shift IE/KU history bits left */
1750 SR = LSMASKED32(SR, 31, 4) | LSINSERTED32(LSEXTRACTED32(SR, 3, 0), 5, 2);
1752 if (STATE & simDELAYSLOT)
1754 STATE &= ~simDELAYSLOT;
1756 EPC = (cia - 4); /* reference the branch instruction */
1761 if (SR & status_BEV)
1762 PC = (signed)0xBFC00000 + 0x180;
1764 PC = (signed)0x80000000 + 0x080;
1766 /* See figure 5-17 for an outline of the code below */
1767 if (! (SR & status_EXL))
1769 CAUSE = (exception << 2);
1770 if (STATE & simDELAYSLOT)
1772 STATE &= ~simDELAYSLOT;
1774 EPC = (cia - 4); /* reference the branch instruction */
1778 /* FIXME: TLB et.al. */
1779 /* vector = 0x180; */
1783 CAUSE = (exception << 2);
1784 /* vector = 0x180; */
1787 /* Store exception code into current exception id variable (used
1790 if (SR & status_BEV)
1791 PC = (signed)0xBFC00200 + 0x180;
1793 PC = (signed)0x80000000 + 0x180;
1796 switch ((CAUSE >> 2) & 0x1F)
1799 /* Interrupts arrive during event processing, no need to
1805 #ifdef SUBTARGET_3900
1806 /* Exception vector: BEV=0 BFC00000 / BEF=1 BFC00000 */
1807 PC = (signed)0xBFC00000;
1808 #endif SUBTARGET_3900
1811 case TLBModification:
1816 case InstructionFetch:
1818 /* The following is so that the simulator will continue from the
1819 exception handler address. */
1820 sim_engine_halt (SD, CPU, NULL, PC,
1821 sim_stopped, SIM_SIGBUS);
1823 case ReservedInstruction:
1824 case CoProcessorUnusable:
1826 sim_engine_halt (SD, CPU, NULL, PC,
1827 sim_stopped, SIM_SIGILL);
1829 case IntegerOverflow:
1831 sim_engine_halt (SD, CPU, NULL, PC,
1832 sim_stopped, SIM_SIGFPE);
1835 sim_engine_halt (SD, CPU, NULL, PC, sim_stopped, SIM_SIGTRAP);
1840 sim_engine_restart (SD, CPU, NULL, PC);
1845 sim_engine_halt (SD, CPU, NULL, PC,
1846 sim_stopped, SIM_SIGTRAP);
1848 default : /* Unknown internal exception */
1850 sim_engine_halt (SD, CPU, NULL, PC,
1851 sim_stopped, SIM_SIGABRT);
1855 case SimulatorFault:
1859 va_start(ap,exception);
1860 msg = va_arg(ap,char *);
1862 sim_engine_abort (SD, CPU, NULL_CIA,
1863 "FATAL: Simulator error \"%s\"\n",msg);
1872 #if defined(WARN_RESULT)
1873 /* Description from page A-26 of the "MIPS IV Instruction Set" manual (revision 3.1) */
1874 /* This function indicates that the result of the operation is
1875 undefined. However, this should not affect the instruction
1876 stream. All that is meant to happen is that the destination
1877 register is set to an undefined result. To keep the simulator
1878 simple, we just don't bother updating the destination register, so
1879 the overall result will be undefined. If desired we can stop the
1880 simulator by raising a pseudo-exception. */
1881 #define UndefinedResult() undefined_result (sd,cia)
1883 undefined_result(sd,cia)
1887 sim_io_eprintf(sd,"UndefinedResult: PC = 0x%s\n",pr_addr(cia));
1888 #if 0 /* Disabled for the moment, since it actually happens a lot at the moment. */
1893 #endif /* WARN_RESULT */
1895 /*-- FPU support routines ---------------------------------------------------*/
1897 /* Numbers are held in normalized form. The SINGLE and DOUBLE binary
1898 formats conform to ANSI/IEEE Std 754-1985. */
1899 /* SINGLE precision floating:
1900 * seeeeeeeefffffffffffffffffffffff
1902 * e = 8bits = exponent
1903 * f = 23bits = fraction
1905 /* SINGLE precision fixed:
1906 * siiiiiiiiiiiiiiiiiiiiiiiiiiiiiii
1908 * i = 31bits = integer
1910 /* DOUBLE precision floating:
1911 * seeeeeeeeeeeffffffffffffffffffffffffffffffffffffffffffffffffffff
1913 * e = 11bits = exponent
1914 * f = 52bits = fraction
1916 /* DOUBLE precision fixed:
1917 * siiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiii
1919 * i = 63bits = integer
1922 /* Extract sign-bit: */
1923 #define FP_S_s(v) (((v) & ((unsigned)1 << 31)) ? 1 : 0)
1924 #define FP_D_s(v) (((v) & ((uword64)1 << 63)) ? 1 : 0)
1925 /* Extract biased exponent: */
1926 #define FP_S_be(v) (((v) >> 23) & 0xFF)
1927 #define FP_D_be(v) (((v) >> 52) & 0x7FF)
1928 /* Extract unbiased Exponent: */
1929 #define FP_S_e(v) (FP_S_be(v) - 0x7F)
1930 #define FP_D_e(v) (FP_D_be(v) - 0x3FF)
1931 /* Extract complete fraction field: */
1932 #define FP_S_f(v) ((v) & ~((unsigned)0x1FF << 23))
1933 #define FP_D_f(v) ((v) & ~((uword64)0xFFF << 52))
1934 /* Extract numbered fraction bit: */
1935 #define FP_S_fb(b,v) (((v) & (1 << (23 - (b)))) ? 1 : 0)
1936 #define FP_D_fb(b,v) (((v) & (1 << (52 - (b)))) ? 1 : 0)
1938 /* Explicit QNaN values used when value required: */
1939 #define FPQNaN_SINGLE (0x7FBFFFFF)
1940 #define FPQNaN_WORD (0x7FFFFFFF)
1941 #define FPQNaN_DOUBLE (((uword64)0x7FF7FFFF << 32) | 0xFFFFFFFF)
1942 #define FPQNaN_LONG (((uword64)0x7FFFFFFF << 32) | 0xFFFFFFFF)
1944 /* Explicit Infinity values used when required: */
1945 #define FPINF_SINGLE (0x7F800000)
1946 #define FPINF_DOUBLE (((uword64)0x7FF00000 << 32) | 0x00000000)
1948 #define RMMODE(v) (((v) == FP_RM_NEAREST) ? "Round" : (((v) == FP_RM_TOZERO) ? "Trunc" : (((v) == FP_RM_TOPINF) ? "Ceil" : "Floor")))
1949 #define DOFMT(v) (((v) == fmt_single) ? "single" : (((v) == fmt_double) ? "double" : (((v) == fmt_word) ? "word" : (((v) == fmt_long) ? "long" : (((v) == fmt_unknown) ? "<unknown>" : (((v) == fmt_uninterpreted) ? "<uninterpreted>" : (((v) == fmt_uninterpreted_32) ? "<uninterpreted_32>" : (((v) == fmt_uninterpreted_64) ? "<uninterpreted_64>" : "<format error>"))))))))
1952 value_fpr (SIM_DESC sd,
1961 /* Treat unused register values, as fixed-point 64bit values: */
1962 if ((fmt == fmt_uninterpreted) || (fmt == fmt_unknown))
1964 /* If request to read data as "uninterpreted", then use the current
1966 fmt = FPR_STATE[fpr];
1971 /* For values not yet accessed, set to the desired format: */
1972 if (FPR_STATE[fpr] == fmt_uninterpreted) {
1973 FPR_STATE[fpr] = fmt;
1975 printf("DBG: Register %d was fmt_uninterpreted. Now %s\n",fpr,DOFMT(fmt));
1978 if (fmt != FPR_STATE[fpr]) {
1979 sim_io_eprintf(sd,"FPR %d (format %s) being accessed with format %s - setting to unknown (PC = 0x%s)\n",fpr,DOFMT(FPR_STATE[fpr]),DOFMT(fmt),pr_addr(cia));
1980 FPR_STATE[fpr] = fmt_unknown;
1983 if (FPR_STATE[fpr] == fmt_unknown) {
1984 /* Set QNaN value: */
1987 value = FPQNaN_SINGLE;
1991 value = FPQNaN_DOUBLE;
1995 value = FPQNaN_WORD;
1999 value = FPQNaN_LONG;
2006 } else if (SizeFGR() == 64) {
2010 value = (FGR[fpr] & 0xFFFFFFFF);
2013 case fmt_uninterpreted:
2027 value = (FGR[fpr] & 0xFFFFFFFF);
2030 case fmt_uninterpreted:
2033 if ((fpr & 1) == 0) { /* even registers only */
2035 printf("DBG: ValueFPR: FGR[%d] = %s, FGR[%d] = %s\n",
2036 fpr+1, pr_uword64( (uword64) FGR[fpr+1] ),
2037 fpr, pr_uword64( (uword64) FGR[fpr] ));
2039 value = ((((uword64)FGR[fpr+1]) << 32) | (FGR[fpr] & 0xFFFFFFFF));
2041 SignalException(ReservedInstruction,0);
2052 SignalExceptionSimulatorFault ("Unrecognised FP format in ValueFPR()");
2055 printf("DBG: ValueFPR: fpr = %d, fmt = %s, value = 0x%s : PC = 0x%s : SizeFGR() = %d\n",fpr,DOFMT(fmt),pr_uword64(value),pr_addr(cia),SizeFGR());
2062 store_fpr (SIM_DESC sd,
2072 printf("DBG: StoreFPR: fpr = %d, fmt = %s, value = 0x%s : PC = 0x%s : SizeFGR() = %d,\n",fpr,DOFMT(fmt),pr_uword64(value),pr_addr(cia),SizeFGR());
2075 if (SizeFGR() == 64) {
2077 case fmt_uninterpreted_32:
2078 fmt = fmt_uninterpreted;
2081 FGR[fpr] = (((uword64)0xDEADC0DE << 32) | (value & 0xFFFFFFFF));
2082 FPR_STATE[fpr] = fmt;
2085 case fmt_uninterpreted_64:
2086 fmt = fmt_uninterpreted;
2087 case fmt_uninterpreted:
2091 FPR_STATE[fpr] = fmt;
2095 FPR_STATE[fpr] = fmt_unknown;
2101 case fmt_uninterpreted_32:
2102 fmt = fmt_uninterpreted;
2105 FGR[fpr] = (value & 0xFFFFFFFF);
2106 FPR_STATE[fpr] = fmt;
2109 case fmt_uninterpreted_64:
2110 fmt = fmt_uninterpreted;
2111 case fmt_uninterpreted:
2114 if ((fpr & 1) == 0) { /* even register number only */
2115 FGR[fpr+1] = (value >> 32);
2116 FGR[fpr] = (value & 0xFFFFFFFF);
2117 FPR_STATE[fpr + 1] = fmt;
2118 FPR_STATE[fpr] = fmt;
2120 FPR_STATE[fpr] = fmt_unknown;
2121 FPR_STATE[fpr + 1] = fmt_unknown;
2122 SignalException(ReservedInstruction,0);
2127 FPR_STATE[fpr] = fmt_unknown;
2132 #if defined(WARN_RESULT)
2135 #endif /* WARN_RESULT */
2138 SignalExceptionSimulatorFault ("Unrecognised FP format in StoreFPR()");
2141 printf("DBG: StoreFPR: fpr[%d] = 0x%s (format %s)\n",fpr,pr_uword64(FGR[fpr]),DOFMT(fmt));
2158 sim_fpu_32to (&wop, op);
2159 boolean = sim_fpu_is_nan (&wop);
2166 sim_fpu_64to (&wop, op);
2167 boolean = sim_fpu_is_nan (&wop);
2171 fprintf (stderr, "Bad switch\n");
2176 printf("DBG: NaN: returning %d for 0x%s (format = %s)\n",boolean,pr_addr(op),DOFMT(fmt));
2190 printf("DBG: Infinity: format %s 0x%s\n",DOFMT(fmt),pr_addr(op));
2197 sim_fpu_32to (&wop, op);
2198 boolean = sim_fpu_is_infinity (&wop);
2204 sim_fpu_64to (&wop, op);
2205 boolean = sim_fpu_is_infinity (&wop);
2209 printf("DBG: TODO: unrecognised format (%s) for Infinity check\n",DOFMT(fmt));
2214 printf("DBG: Infinity: returning %d for 0x%s (format = %s)\n",boolean,pr_addr(op),DOFMT(fmt));
2228 /* Argument checking already performed by the FPCOMPARE code */
2231 printf("DBG: Less: %s: op1 = 0x%s : op2 = 0x%s\n",DOFMT(fmt),pr_addr(op1),pr_addr(op2));
2234 /* The format type should already have been checked: */
2240 sim_fpu_32to (&wop1, op1);
2241 sim_fpu_32to (&wop2, op2);
2242 boolean = sim_fpu_is_lt (&wop1, &wop2);
2249 sim_fpu_64to (&wop1, op1);
2250 sim_fpu_64to (&wop2, op2);
2251 boolean = sim_fpu_is_lt (&wop1, &wop2);
2255 fprintf (stderr, "Bad switch\n");
2260 printf("DBG: Less: returning %d (format = %s)\n",boolean,DOFMT(fmt));
2274 /* Argument checking already performed by the FPCOMPARE code */
2277 printf("DBG: Equal: %s: op1 = 0x%s : op2 = 0x%s\n",DOFMT(fmt),pr_addr(op1),pr_addr(op2));
2280 /* The format type should already have been checked: */
2286 sim_fpu_32to (&wop1, op1);
2287 sim_fpu_32to (&wop2, op2);
2288 boolean = sim_fpu_is_eq (&wop1, &wop2);
2295 sim_fpu_64to (&wop1, op1);
2296 sim_fpu_64to (&wop2, op2);
2297 boolean = sim_fpu_is_eq (&wop1, &wop2);
2301 fprintf (stderr, "Bad switch\n");
2306 printf("DBG: Equal: returning %d (format = %s)\n",boolean,DOFMT(fmt));
2313 AbsoluteValue(op,fmt)
2320 printf("DBG: AbsoluteValue: %s: op = 0x%s\n",DOFMT(fmt),pr_addr(op));
2323 /* The format type should already have been checked: */
2329 sim_fpu_32to (&wop, op);
2330 sim_fpu_abs (&wop, &wop);
2331 sim_fpu_to32 (&ans, &wop);
2339 sim_fpu_64to (&wop, op);
2340 sim_fpu_abs (&wop, &wop);
2341 sim_fpu_to64 (&ans, &wop);
2346 fprintf (stderr, "Bad switch\n");
2361 printf("DBG: Negate: %s: op = 0x%s\n",DOFMT(fmt),pr_addr(op));
2364 /* The format type should already have been checked: */
2370 sim_fpu_32to (&wop, op);
2371 sim_fpu_neg (&wop, &wop);
2372 sim_fpu_to32 (&ans, &wop);
2380 sim_fpu_64to (&wop, op);
2381 sim_fpu_neg (&wop, &wop);
2382 sim_fpu_to64 (&ans, &wop);
2387 fprintf (stderr, "Bad switch\n");
2403 printf("DBG: Add: %s: op1 = 0x%s : op2 = 0x%s\n",DOFMT(fmt),pr_addr(op1),pr_addr(op2));
2406 /* The registers must specify FPRs valid for operands of type
2407 "fmt". If they are not valid, the result is undefined. */
2409 /* The format type should already have been checked: */
2417 sim_fpu_32to (&wop1, op1);
2418 sim_fpu_32to (&wop2, op2);
2419 sim_fpu_add (&ans, &wop1, &wop2);
2420 sim_fpu_to32 (&res, &ans);
2430 sim_fpu_64to (&wop1, op1);
2431 sim_fpu_64to (&wop2, op2);
2432 sim_fpu_add (&ans, &wop1, &wop2);
2433 sim_fpu_to64 (&res, &ans);
2438 fprintf (stderr, "Bad switch\n");
2443 printf("DBG: Add: returning 0x%s (format = %s)\n",pr_addr(result),DOFMT(fmt));
2458 printf("DBG: Sub: %s: op1 = 0x%s : op2 = 0x%s\n",DOFMT(fmt),pr_addr(op1),pr_addr(op2));
2461 /* The registers must specify FPRs valid for operands of type
2462 "fmt". If they are not valid, the result is undefined. */
2464 /* The format type should already have been checked: */
2472 sim_fpu_32to (&wop1, op1);
2473 sim_fpu_32to (&wop2, op2);
2474 sim_fpu_sub (&ans, &wop1, &wop2);
2475 sim_fpu_to32 (&res, &ans);
2485 sim_fpu_64to (&wop1, op1);
2486 sim_fpu_64to (&wop2, op2);
2487 sim_fpu_sub (&ans, &wop1, &wop2);
2488 sim_fpu_to64 (&res, &ans);
2493 fprintf (stderr, "Bad switch\n");
2498 printf("DBG: Sub: returning 0x%s (format = %s)\n",pr_addr(result),DOFMT(fmt));
2505 Multiply(op1,op2,fmt)
2513 printf("DBG: Multiply: %s: op1 = 0x%s : op2 = 0x%s\n",DOFMT(fmt),pr_addr(op1),pr_addr(op2));
2516 /* The registers must specify FPRs valid for operands of type
2517 "fmt". If they are not valid, the result is undefined. */
2519 /* The format type should already have been checked: */
2527 sim_fpu_32to (&wop1, op1);
2528 sim_fpu_32to (&wop2, op2);
2529 sim_fpu_mul (&ans, &wop1, &wop2);
2530 sim_fpu_to32 (&res, &ans);
2540 sim_fpu_64to (&wop1, op1);
2541 sim_fpu_64to (&wop2, op2);
2542 sim_fpu_mul (&ans, &wop1, &wop2);
2543 sim_fpu_to64 (&res, &ans);
2548 fprintf (stderr, "Bad switch\n");
2553 printf("DBG: Multiply: returning 0x%s (format = %s)\n",pr_addr(result),DOFMT(fmt));
2568 printf("DBG: Divide: %s: op1 = 0x%s : op2 = 0x%s\n",DOFMT(fmt),pr_addr(op1),pr_addr(op2));
2571 /* The registers must specify FPRs valid for operands of type
2572 "fmt". If they are not valid, the result is undefined. */
2574 /* The format type should already have been checked: */
2582 sim_fpu_32to (&wop1, op1);
2583 sim_fpu_32to (&wop2, op2);
2584 sim_fpu_div (&ans, &wop1, &wop2);
2585 sim_fpu_to32 (&res, &ans);
2595 sim_fpu_64to (&wop1, op1);
2596 sim_fpu_64to (&wop2, op2);
2597 sim_fpu_div (&ans, &wop1, &wop2);
2598 sim_fpu_to64 (&res, &ans);
2603 fprintf (stderr, "Bad switch\n");
2608 printf("DBG: Divide: returning 0x%s (format = %s)\n",pr_addr(result),DOFMT(fmt));
2622 printf("DBG: Recip: %s: op = 0x%s\n",DOFMT(fmt),pr_addr(op));
2625 /* The registers must specify FPRs valid for operands of type
2626 "fmt". If they are not valid, the result is undefined. */
2628 /* The format type should already have been checked: */
2635 sim_fpu_32to (&wop, op);
2636 sim_fpu_inv (&ans, &wop);
2637 sim_fpu_to32 (&res, &ans);
2646 sim_fpu_64to (&wop, op);
2647 sim_fpu_inv (&ans, &wop);
2648 sim_fpu_to64 (&res, &ans);
2653 fprintf (stderr, "Bad switch\n");
2658 printf("DBG: Recip: returning 0x%s (format = %s)\n",pr_addr(result),DOFMT(fmt));
2672 printf("DBG: SquareRoot: %s: op = 0x%s\n",DOFMT(fmt),pr_addr(op));
2675 /* The registers must specify FPRs valid for operands of type
2676 "fmt". If they are not valid, the result is undefined. */
2678 /* The format type should already have been checked: */
2685 sim_fpu_32to (&wop, op);
2686 sim_fpu_sqrt (&ans, &wop);
2687 sim_fpu_to32 (&res, &ans);
2696 sim_fpu_64to (&wop, op);
2697 sim_fpu_sqrt (&ans, &wop);
2698 sim_fpu_to64 (&res, &ans);
2703 fprintf (stderr, "Bad switch\n");
2708 printf("DBG: SquareRoot: returning 0x%s (format = %s)\n",pr_addr(result),DOFMT(fmt));
2724 printf("DBG: Max: %s: op1 = 0x%s : op2 = 0x%s\n",DOFMT(fmt),pr_addr(op1),pr_addr(op2));
2727 /* The registers must specify FPRs valid for operands of type
2728 "fmt". If they are not valid, the result is undefined. */
2730 /* The format type should already have been checked: */
2737 sim_fpu_32to (&wop1, op1);
2738 sim_fpu_32to (&wop2, op2);
2739 cmp = sim_fpu_cmp (&wop1, &wop2);
2746 sim_fpu_64to (&wop1, op1);
2747 sim_fpu_64to (&wop2, op2);
2748 cmp = sim_fpu_cmp (&wop1, &wop2);
2752 fprintf (stderr, "Bad switch\n");
2758 case SIM_FPU_IS_SNAN:
2759 case SIM_FPU_IS_QNAN:
2761 case SIM_FPU_IS_NINF:
2762 case SIM_FPU_IS_NNUMBER:
2763 case SIM_FPU_IS_NDENORM:
2764 case SIM_FPU_IS_NZERO:
2765 result = op2; /* op1 - op2 < 0 */
2766 case SIM_FPU_IS_PINF:
2767 case SIM_FPU_IS_PNUMBER:
2768 case SIM_FPU_IS_PDENORM:
2769 case SIM_FPU_IS_PZERO:
2770 result = op1; /* op1 - op2 > 0 */
2772 fprintf (stderr, "Bad switch\n");
2777 printf("DBG: Max: returning 0x%s (format = %s)\n",pr_addr(result),DOFMT(fmt));
2794 printf("DBG: Min: %s: op1 = 0x%s : op2 = 0x%s\n",DOFMT(fmt),pr_addr(op1),pr_addr(op2));
2797 /* The registers must specify FPRs valid for operands of type
2798 "fmt". If they are not valid, the result is undefined. */
2800 /* The format type should already have been checked: */
2807 sim_fpu_32to (&wop1, op1);
2808 sim_fpu_32to (&wop2, op2);
2809 cmp = sim_fpu_cmp (&wop1, &wop2);
2816 sim_fpu_64to (&wop1, op1);
2817 sim_fpu_64to (&wop2, op2);
2818 cmp = sim_fpu_cmp (&wop1, &wop2);
2822 fprintf (stderr, "Bad switch\n");
2828 case SIM_FPU_IS_SNAN:
2829 case SIM_FPU_IS_QNAN:
2831 case SIM_FPU_IS_NINF:
2832 case SIM_FPU_IS_NNUMBER:
2833 case SIM_FPU_IS_NDENORM:
2834 case SIM_FPU_IS_NZERO:
2835 result = op1; /* op1 - op2 < 0 */
2836 case SIM_FPU_IS_PINF:
2837 case SIM_FPU_IS_PNUMBER:
2838 case SIM_FPU_IS_PDENORM:
2839 case SIM_FPU_IS_PZERO:
2840 result = op2; /* op1 - op2 > 0 */
2842 fprintf (stderr, "Bad switch\n");
2847 printf("DBG: Min: returning 0x%s (format = %s)\n",pr_addr(result),DOFMT(fmt));
2855 convert (SIM_DESC sd,
2864 sim_fpu_round round;
2865 unsigned32 result32;
2866 unsigned64 result64;
2869 #if 0 /* FIXME: doesn't compile */
2870 printf("DBG: Convert: mode %s : op 0x%s : from %s : to %s : (PC = 0x%s)\n",RMMODE(rm),pr_addr(op),DOFMT(from),DOFMT(to),pr_addr(IPC));
2877 /* Round result to nearest representable value. When two
2878 representable values are equally near, round to the value
2879 that has a least significant bit of zero (i.e. is even). */
2880 round = sim_fpu_round_near;
2883 /* Round result to the value closest to, and not greater in
2884 magnitude than, the result. */
2885 round = sim_fpu_round_zero;
2888 /* Round result to the value closest to, and not less than,
2890 round = sim_fpu_round_up;
2894 /* Round result to the value closest to, and not greater than,
2896 round = sim_fpu_round_down;
2900 fprintf (stderr, "Bad switch\n");
2904 /* Convert the input to sim_fpu internal format */
2908 sim_fpu_64to (&wop, op);
2911 sim_fpu_32to (&wop, op);
2914 sim_fpu_i32to (&wop, op, round);
2917 sim_fpu_i64to (&wop, op, round);
2920 fprintf (stderr, "Bad switch\n");
2924 /* Convert sim_fpu format into the output */
2925 /* The value WOP is converted to the destination format, rounding
2926 using mode RM. When the destination is a fixed-point format, then
2927 a source value of Infinity, NaN or one which would round to an
2928 integer outside the fixed point range then an IEEE Invalid
2929 Operation condition is raised. */
2933 sim_fpu_round_32 (&wop, round, 0);
2934 sim_fpu_to32 (&result32, &wop);
2935 result64 = result32;
2938 sim_fpu_round_64 (&wop, round, 0);
2939 sim_fpu_to64 (&result64, &wop);
2942 sim_fpu_to32i (&result32, &wop, round);
2943 result64 = result32;
2946 sim_fpu_to64i (&result64, &wop, round);
2950 fprintf (stderr, "Bad switch\n");
2955 printf("DBG: Convert: returning 0x%s (to format = %s)\n",pr_addr(result64),DOFMT(to));
2962 /*-- co-processor support routines ------------------------------------------*/
2965 CoProcPresent(unsigned int coproc_number)
2967 /* Return TRUE if simulator provides a model for the given co-processor number */
2972 cop_lw (SIM_DESC sd,
2977 unsigned int memword)
2982 if (CURRENT_FLOATING_POINT == HARD_FLOATING_POINT)
2985 printf("DBG: COP_LW: memword = 0x%08X (uword64)memword = 0x%s\n",memword,pr_addr(memword));
2987 StoreFPR(coproc_reg,fmt_word,(uword64)memword);
2988 FPR_STATE[coproc_reg] = fmt_uninterpreted;
2993 #if 0 /* this should be controlled by a configuration option */
2994 sim_io_printf(sd,"COP_LW(%d,%d,0x%08X) at PC = 0x%s : TODO (architecture specific)\n",coproc_num,coproc_reg,memword,pr_addr(cia));
3003 cop_ld (SIM_DESC sd,
3012 printf("DBG: COP_LD: coproc_num = %d, coproc_reg = %d, value = 0x%s : PC = 0x%s\n", coproc_num, coproc_reg, pr_uword64(memword), pr_addr(cia) );
3015 switch (coproc_num) {
3017 if (CURRENT_FLOATING_POINT == HARD_FLOATING_POINT)
3019 StoreFPR(coproc_reg,fmt_uninterpreted,memword);
3024 #if 0 /* this message should be controlled by a configuration option */
3025 sim_io_printf(sd,"COP_LD(%d,%d,0x%s) at PC = 0x%s : TODO (architecture specific)\n",coproc_num,coproc_reg,pr_addr(memword),pr_addr(cia));
3037 cop_sw (SIM_DESC sd,
3043 unsigned int value = 0;
3048 if (CURRENT_FLOATING_POINT == HARD_FLOATING_POINT)
3051 hold = FPR_STATE[coproc_reg];
3052 FPR_STATE[coproc_reg] = fmt_word;
3053 value = (unsigned int)ValueFPR(coproc_reg,fmt_uninterpreted);
3054 FPR_STATE[coproc_reg] = hold;
3059 #if 0 /* should be controlled by configuration option */
3060 sim_io_printf(sd,"COP_SW(%d,%d) at PC = 0x%s : TODO (architecture specific)\n",coproc_num,coproc_reg,pr_addr(cia));
3069 cop_sd (SIM_DESC sd,
3079 if (CURRENT_FLOATING_POINT == HARD_FLOATING_POINT)
3081 value = ValueFPR(coproc_reg,fmt_uninterpreted);
3086 #if 0 /* should be controlled by configuration option */
3087 sim_io_printf(sd,"COP_SD(%d,%d) at PC = 0x%s : TODO (architecture specific)\n",coproc_num,coproc_reg,pr_addr(cia));
3099 decode_coproc (SIM_DESC sd,
3102 unsigned int instruction)
3104 int coprocnum = ((instruction >> 26) & 3);
3108 case 0: /* standard CPU control and cache registers */
3110 int code = ((instruction >> 21) & 0x1F);
3111 int rt = ((instruction >> 16) & 0x1F);
3112 int rd = ((instruction >> 11) & 0x1F);
3113 int tail = instruction & 0x3ff;
3114 /* R4000 Users Manual (second edition) lists the following CP0
3116 CODE><-RT><RD-><--TAIL--->
3117 DMFC0 Doubleword Move From CP0 (VR4100 = 01000000001tttttddddd00000000000)
3118 DMTC0 Doubleword Move To CP0 (VR4100 = 01000000101tttttddddd00000000000)
3119 MFC0 word Move From CP0 (VR4100 = 01000000000tttttddddd00000000000)
3120 MTC0 word Move To CP0 (VR4100 = 01000000100tttttddddd00000000000)
3121 TLBR Read Indexed TLB Entry (VR4100 = 01000010000000000000000000000001)
3122 TLBWI Write Indexed TLB Entry (VR4100 = 01000010000000000000000000000010)
3123 TLBWR Write Random TLB Entry (VR4100 = 01000010000000000000000000000110)
3124 TLBP Probe TLB for Matching Entry (VR4100 = 01000010000000000000000000001000)
3125 CACHE Cache operation (VR4100 = 101111bbbbbpppppiiiiiiiiiiiiiiii)
3126 ERET Exception return (VR4100 = 01000010000000000000000000011000)
3128 if (((code == 0x00) || (code == 0x04) /* MFC0 / MTC0 */
3129 || (code == 0x01) || (code == 0x05)) /* DMFC0 / DMTC0 */
3132 /* Clear double/single coprocessor move bit. */
3135 /* M[TF]C0 (32 bits) | DM[TF]C0 (64 bits) */
3137 switch (rd) /* NOTEs: Standard CP0 registers */
3139 /* 0 = Index R4000 VR4100 VR4300 */
3140 /* 1 = Random R4000 VR4100 VR4300 */
3141 /* 2 = EntryLo0 R4000 VR4100 VR4300 */
3142 /* 3 = EntryLo1 R4000 VR4100 VR4300 */
3143 /* 4 = Context R4000 VR4100 VR4300 */
3144 /* 5 = PageMask R4000 VR4100 VR4300 */
3145 /* 6 = Wired R4000 VR4100 VR4300 */
3146 /* 8 = BadVAddr R4000 VR4100 VR4300 */
3147 /* 9 = Count R4000 VR4100 VR4300 */
3148 /* 10 = EntryHi R4000 VR4100 VR4300 */
3149 /* 11 = Compare R4000 VR4100 VR4300 */
3150 /* 12 = SR R4000 VR4100 VR4300 */
3151 #ifdef SUBTARGET_R3900
3153 /* 3 = Config R3900 */
3155 /* 7 = Cache R3900 */
3157 /* 15 = PRID R3900 */
3163 /* 8 = BadVAddr R4000 VR4100 VR4300 */
3165 GPR[rt] = COP0_BADVADDR;
3167 COP0_BADVADDR = GPR[rt];
3170 #endif /* SUBTARGET_R3900 */
3177 /* 13 = Cause R4000 VR4100 VR4300 */
3184 /* 14 = EPC R4000 VR4100 VR4300 */
3187 GPR[rt] = (signed_word) (signed_address) EPC;
3191 /* 15 = PRId R4000 VR4100 VR4300 */
3192 #ifdef SUBTARGET_R3900
3201 /* 16 = Config R4000 VR4100 VR4300 */
3204 GPR[rt] = C0_CONFIG;
3206 C0_CONFIG = GPR[rt];
3209 #ifdef SUBTARGET_R3900
3218 /* 17 = LLAddr R4000 VR4100 VR4300 */
3220 /* 18 = WatchLo R4000 VR4100 VR4300 */
3221 /* 19 = WatchHi R4000 VR4100 VR4300 */
3222 /* 20 = XContext R4000 VR4100 VR4300 */
3223 /* 26 = PErr or ECC R4000 VR4100 VR4300 */
3224 /* 27 = CacheErr R4000 VR4100 */
3225 /* 28 = TagLo R4000 VR4100 VR4300 */
3226 /* 29 = TagHi R4000 VR4100 VR4300 */
3227 /* 30 = ErrorEPC R4000 VR4100 VR4300 */
3228 GPR[rt] = 0xDEADC0DE; /* CPR[0,rd] */
3229 /* CPR[0,rd] = GPR[rt]; */
3232 GPR[rt] = (signed_word) (signed32) COP0_GPR[rd];
3234 COP0_GPR[rd] = GPR[rt];
3237 sim_io_printf(sd,"Warning: MFC0 %d,%d ignored, PC=%08x (architecture specific)\n",rt,rd, (unsigned)cia);
3239 sim_io_printf(sd,"Warning: MTC0 %d,%d ignored, PC=%08x (architecture specific)\n",rt,rd, (unsigned)cia);
3243 else if (code == 0x10 && (tail & 0x3f) == 0x18)
3246 if (SR & status_ERL)
3248 /* Oops, not yet available */
3249 sim_io_printf(sd,"Warning: ERET when SR[ERL] set not handled yet");
3259 else if (code == 0x10 && (tail & 0x3f) == 0x10)
3262 #ifdef SUBTARGET_R3900
3263 /* TX39: Copy IEp/KUp -> IEc/KUc, and IEo/KUo -> IEp/KUp */
3265 /* shift IE/KU history bits right */
3266 SR = LSMASKED32(SR, 31, 4) | LSINSERTED32(LSEXTRACTED32(SR, 5, 2), 3, 0);
3268 /* TODO: CACHE register */
3269 #endif /* SUBTARGET_R3900 */
3271 else if (code == 0x10 && (tail & 0x3f) == 0x1F)
3279 sim_io_eprintf(sd,"Unrecognised COP0 instruction 0x%08X at PC = 0x%s : No handler present\n",instruction,pr_addr(cia));
3280 /* TODO: When executing an ERET or RFE instruction we should
3281 clear LLBIT, to ensure that any out-standing atomic
3282 read/modify/write sequence fails. */
3286 case 2: /* co-processor 2 */
3293 sim_io_eprintf(sd, "COP2 instruction 0x%08X at PC = 0x%s : No handler present\n",
3294 instruction,pr_addr(cia));
3299 case 1: /* should not occur (FPU co-processor) */
3300 case 3: /* should not occur (FPU co-processor) */
3301 SignalException(ReservedInstruction,instruction);
3309 /* This code copied from gdb's utils.c. Would like to share this code,
3310 but don't know of a common place where both could get to it. */
3312 /* Temporary storage using circular buffer */
3318 static char buf[NUMCELLS][CELLSIZE];
3320 if (++cell>=NUMCELLS) cell=0;
3324 /* Print routines to handle variable size regs, etc */
3326 /* Eliminate warning from compiler on 32-bit systems */
3327 static int thirty_two = 32;
3333 char *paddr_str=get_cell();
3334 switch (sizeof(addr))
3337 sprintf(paddr_str,"%08lx%08lx",
3338 (unsigned long)(addr>>thirty_two),(unsigned long)(addr&0xffffffff));
3341 sprintf(paddr_str,"%08lx",(unsigned long)addr);
3344 sprintf(paddr_str,"%04x",(unsigned short)(addr&0xffff));
3347 sprintf(paddr_str,"%x",addr);
3356 char *paddr_str=get_cell();
3357 sprintf(paddr_str,"%08lx%08lx",
3358 (unsigned long)(addr>>thirty_two),(unsigned long)(addr&0xffffffff));
3364 mips_core_signal (SIM_DESC sd,
3370 transfer_type transfer,
3371 sim_core_signals sig)
3373 const char *copy = (transfer == read_transfer ? "read" : "write");
3374 address_word ip = CIA_ADDR (cia);
3378 case sim_core_unmapped_signal:
3379 sim_io_eprintf (sd, "mips-core: %d byte %s to unmapped address 0x%lx at 0x%lx\n",
3381 (unsigned long) addr, (unsigned long) ip);
3382 COP0_BADVADDR = addr;
3383 SignalExceptionDataReference();
3386 case sim_core_unaligned_signal:
3387 sim_io_eprintf (sd, "mips-core: %d byte %s to unaligned address 0x%lx at 0x%lx\n",
3389 (unsigned long) addr, (unsigned long) ip);
3390 COP0_BADVADDR = addr;
3391 if(transfer == read_transfer)
3392 SignalExceptionAddressLoad();
3394 SignalExceptionAddressStore();
3398 sim_engine_abort (sd, cpu, cia,
3399 "mips_core_signal - internal error - bad switch");
3405 mips_cpu_exception_trigger(SIM_DESC sd, sim_cpu* cpu, address_word cia)
3407 ASSERT(cpu != NULL);
3409 if(cpu->exc_suspended > 0)
3410 sim_io_eprintf(sd, "Warning, nested exception triggered (%d)\n", cpu->exc_suspended);
3413 memcpy(cpu->exc_trigger_registers, cpu->registers, sizeof(cpu->exc_trigger_registers));
3414 cpu->exc_suspended = 0;
3418 mips_cpu_exception_suspend(SIM_DESC sd, sim_cpu* cpu, int exception)
3420 ASSERT(cpu != NULL);
3422 if(cpu->exc_suspended > 0)
3423 sim_io_eprintf(sd, "Warning, nested exception signal (%d then %d)\n",
3424 cpu->exc_suspended, exception);
3426 memcpy(cpu->exc_suspend_registers, cpu->registers, sizeof(cpu->exc_suspend_registers));
3427 memcpy(cpu->registers, cpu->exc_trigger_registers, sizeof(cpu->registers));
3428 cpu->exc_suspended = exception;
3432 mips_cpu_exception_resume(SIM_DESC sd, sim_cpu* cpu, int exception)
3434 ASSERT(cpu != NULL);
3436 if(exception == 0 && cpu->exc_suspended > 0)
3438 /* warn not for breakpoints */
3439 if(cpu->exc_suspended != sim_signal_to_host(sd, SIM_SIGTRAP))
3440 sim_io_eprintf(sd, "Warning, resuming but ignoring pending exception signal (%d)\n",
3441 cpu->exc_suspended);
3443 else if(exception != 0 && cpu->exc_suspended > 0)
3445 if(exception != cpu->exc_suspended)
3446 sim_io_eprintf(sd, "Warning, resuming with mismatched exception signal (%d vs %d)\n",
3447 cpu->exc_suspended, exception);
3449 memcpy(cpu->registers, cpu->exc_suspend_registers, sizeof(cpu->registers));
3451 else if(exception != 0 && cpu->exc_suspended == 0)
3453 sim_io_eprintf(sd, "Warning, ignoring spontanous exception signal (%d)\n", exception);
3455 cpu->exc_suspended = 0;
3459 /*---------------------------------------------------------------------------*/
3460 /*> EOF interp.c <*/
projects / external / binutils.git / blob