[mirror_qemu.git] / target / alpha / helper.c

/*
 *  Alpha emulation cpu helpers for qemu.
 *
 *  Copyright (c) 2007 Jocelyn Mayer
 *
 * This library is free software; you can redistribute it and/or
 * modify it under the terms of the GNU Lesser General Public
 * License as published by the Free Software Foundation; either
 * version 2 of the License, or (at your option) any later version.
 *
 * This library is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
 * Lesser General Public License for more details.
 *
 * You should have received a copy of the GNU Lesser General Public
 * License along with this library; if not, see <http://www.gnu.org/licenses/>.
 */

#include "qemu/osdep.h"

#include "cpu.h"
#include "exec/exec-all.h"
#include "fpu/softfloat-types.h"
#include "exec/helper-proto.h"
#include "qemu/qemu-print.h"


#define CONVERT_BIT(X, SRC, DST) \
    (SRC > DST ? (X) / (SRC / DST) & (DST) : ((X) & SRC) * (DST / SRC))

uint64_t cpu_alpha_load_fpcr(CPUAlphaState *env)
{
    return (uint64_t)env->fpcr << 32;
}

void cpu_alpha_store_fpcr(CPUAlphaState *env, uint64_t val)
{
    static const uint8_t rm_map[] = {
        [FPCR_DYN_NORMAL >> FPCR_DYN_SHIFT] = float_round_nearest_even,
        [FPCR_DYN_CHOPPED >> FPCR_DYN_SHIFT] = float_round_to_zero,
        [FPCR_DYN_MINUS >> FPCR_DYN_SHIFT] = float_round_down,
        [FPCR_DYN_PLUS >> FPCR_DYN_SHIFT] = float_round_up,
    };

    uint32_t fpcr = val >> 32;
    uint32_t t = 0;

    /* Record the raw value before adjusting for linux-user.  */
    env->fpcr = fpcr;

#ifdef CONFIG_USER_ONLY
    /*
     * Override some of these bits with the contents of ENV->SWCR.
     * In system mode, some of these would trap to the kernel, at
     * which point the kernel's handler would emulate and apply
     * the software exception mask.
     */
    uint32_t soft_fpcr = alpha_ieee_swcr_to_fpcr(env->swcr) >> 32;
    fpcr |= soft_fpcr & (FPCR_STATUS_MASK | FPCR_DNZ);

    /*
     * The IOV exception is disabled by the kernel with SWCR_TRAP_ENABLE_INV,
     * which got mapped by alpha_ieee_swcr_to_fpcr to FPCR_INVD.
     * Add FPCR_IOV to fpcr_exc_enable so that it is handled identically.
     */
    t |= CONVERT_BIT(soft_fpcr, FPCR_INVD, FPCR_IOV);
#endif

    t |= CONVERT_BIT(fpcr, FPCR_INED, FPCR_INE);
    t |= CONVERT_BIT(fpcr, FPCR_UNFD, FPCR_UNF);
    t |= CONVERT_BIT(fpcr, FPCR_OVFD, FPCR_OVF);
    t |= CONVERT_BIT(fpcr, FPCR_DZED, FPCR_DZE);
    t |= CONVERT_BIT(fpcr, FPCR_INVD, FPCR_INV);

    env->fpcr_exc_enable = ~t & FPCR_STATUS_MASK;

    env->fpcr_dyn_round = rm_map[(fpcr & FPCR_DYN_MASK) >> FPCR_DYN_SHIFT];
    env->fp_status.flush_inputs_to_zero = (fpcr & FPCR_DNZ) != 0;

    t = (fpcr & FPCR_UNFD) && (fpcr & FPCR_UNDZ);
#ifdef CONFIG_USER_ONLY
    t |= (env->swcr & SWCR_MAP_UMZ) != 0;
#endif
    env->fpcr_flush_to_zero = t;
}

uint64_t helper_load_fpcr(CPUAlphaState *env)
{
    return cpu_alpha_load_fpcr(env);
}

void helper_store_fpcr(CPUAlphaState *env, uint64_t val)
{
    cpu_alpha_store_fpcr(env, val);
}

static uint64_t *cpu_alpha_addr_gr(CPUAlphaState *env, unsigned reg)
{
#ifndef CONFIG_USER_ONLY
    if (env->flags & ENV_FLAG_PAL_MODE) {
        if (reg >= 8 && reg <= 14) {
            return &env->shadow[reg - 8];
        } else if (reg == 25) {
            return &env->shadow[7];
        }
    }
#endif
    return &env->ir[reg];
}

uint64_t cpu_alpha_load_gr(CPUAlphaState *env, unsigned reg)
{
    return *cpu_alpha_addr_gr(env, reg);
}

void cpu_alpha_store_gr(CPUAlphaState *env, unsigned reg, uint64_t val)
{
    *cpu_alpha_addr_gr(env, reg) = val;
}

#if defined(CONFIG_USER_ONLY)
bool alpha_cpu_tlb_fill(CPUState *cs, vaddr address, int size,
                        MMUAccessType access_type, int mmu_idx,
                        bool probe, uintptr_t retaddr)
{
    AlphaCPU *cpu = ALPHA_CPU(cs);

    cs->exception_index = EXCP_MMFAULT;
    cpu->env.trap_arg0 = address;
    cpu_loop_exit_restore(cs, retaddr);
}
#else
/* Returns the OSF/1 entMM failure indication, or -1 on success.  */
static int get_physical_address(CPUAlphaState *env, target_ulong addr,
                                int prot_need, int mmu_idx,
                                target_ulong *pphys, int *pprot)
{
    CPUState *cs = env_cpu(env);
    target_long saddr = addr;
    target_ulong phys = 0;
    target_ulong L1pte, L2pte, L3pte;
    target_ulong pt, index;
    int prot = 0;
    int ret = MM_K_ACV;

    /* Handle physical accesses.  */
    if (mmu_idx == MMU_PHYS_IDX) {
        phys = addr;
        prot = PAGE_READ | PAGE_WRITE | PAGE_EXEC;
        ret = -1;
        goto exit;
    }

    /* Ensure that the virtual address is properly sign-extended from
       the last implemented virtual address bit.  */
    if (saddr >> TARGET_VIRT_ADDR_SPACE_BITS != saddr >> 63) {
        goto exit;
    }

    /* Translate the superpage.  */
    /* ??? When we do more than emulate Unix PALcode, we'll need to
       determine which KSEG is actually active.  */
    if (saddr < 0 && ((saddr >> 41) & 3) == 2) {
        /* User-space cannot access KSEG addresses.  */
        if (mmu_idx != MMU_KERNEL_IDX) {
            goto exit;
        }

        /* For the benefit of the Typhoon chipset, move bit 40 to bit 43.
           We would not do this if the 48-bit KSEG is enabled.  */
        phys = saddr & ((1ull << 40) - 1);
        phys |= (saddr & (1ull << 40)) << 3;

        prot = PAGE_READ | PAGE_WRITE | PAGE_EXEC;
        ret = -1;
        goto exit;
    }

    /* Interpret the page table exactly like PALcode does.  */

    pt = env->ptbr;

    /* TODO: rather than using ldq_phys() to read the page table we should
     * use address_space_ldq() so that we can handle the case when
     * the page table read gives a bus fault, rather than ignoring it.
     * For the existing code the zero data that ldq_phys will return for
     * an access to invalid memory will result in our treating the page
     * table as invalid, which may even be the right behaviour.
     */

    /* L1 page table read.  */
    index = (addr >> (TARGET_PAGE_BITS + 20)) & 0x3ff;
    L1pte = ldq_phys(cs->as, pt + index*8);

    if (unlikely((L1pte & PTE_VALID) == 0)) {
        ret = MM_K_TNV;
        goto exit;
    }
    if (unlikely((L1pte & PTE_KRE) == 0)) {
        goto exit;
    }
    pt = L1pte >> 32 << TARGET_PAGE_BITS;

    /* L2 page table read.  */
    index = (addr >> (TARGET_PAGE_BITS + 10)) & 0x3ff;
    L2pte = ldq_phys(cs->as, pt + index*8);

    if (unlikely((L2pte & PTE_VALID) == 0)) {
        ret = MM_K_TNV;
        goto exit;
    }
    if (unlikely((L2pte & PTE_KRE) == 0)) {
        goto exit;
    }
    pt = L2pte >> 32 << TARGET_PAGE_BITS;

    /* L3 page table read.  */
    index = (addr >> TARGET_PAGE_BITS) & 0x3ff;
    L3pte = ldq_phys(cs->as, pt + index*8);

    phys = L3pte >> 32 << TARGET_PAGE_BITS;
    if (unlikely((L3pte & PTE_VALID) == 0)) {
        ret = MM_K_TNV;
        goto exit;
    }

#if PAGE_READ != 1 || PAGE_WRITE != 2 || PAGE_EXEC != 4
# error page bits out of date
#endif

    /* Check access violations.  */
    if (L3pte & (PTE_KRE << mmu_idx)) {
        prot |= PAGE_READ | PAGE_EXEC;
    }
    if (L3pte & (PTE_KWE << mmu_idx)) {
        prot |= PAGE_WRITE;
    }
    if (unlikely((prot & prot_need) == 0 && prot_need)) {
        goto exit;
    }

    /* Check fault-on-operation violations.  */
    prot &= ~(L3pte >> 1);
    ret = -1;
    if (unlikely((prot & prot_need) == 0)) {
        ret = (prot_need & PAGE_EXEC ? MM_K_FOE :
               prot_need & PAGE_WRITE ? MM_K_FOW :
               prot_need & PAGE_READ ? MM_K_FOR : -1);
    }

 exit:
    *pphys = phys;
    *pprot = prot;
    return ret;
}

hwaddr alpha_cpu_get_phys_page_debug(CPUState *cs, vaddr addr)
{
    AlphaCPU *cpu = ALPHA_CPU(cs);
    target_ulong phys;
    int prot, fail;

    fail = get_physical_address(&cpu->env, addr, 0, 0, &phys, &prot);
    return (fail >= 0 ? -1 : phys);
}

bool alpha_cpu_tlb_fill(CPUState *cs, vaddr addr, int size,
                        MMUAccessType access_type, int mmu_idx,
                        bool probe, uintptr_t retaddr)
{
    AlphaCPU *cpu = ALPHA_CPU(cs);
    CPUAlphaState *env = &cpu->env;
    target_ulong phys;
    int prot, fail;

    fail = get_physical_address(env, addr, 1 << access_type,
                                mmu_idx, &phys, &prot);
    if (unlikely(fail >= 0)) {
        if (probe) {
            return false;
        }
        cs->exception_index = EXCP_MMFAULT;
        env->trap_arg0 = addr;
        env->trap_arg1 = fail;
        env->trap_arg2 = (access_type == MMU_DATA_LOAD ? 0ull :
                          access_type == MMU_DATA_STORE ? 1ull :
                          /* access_type == MMU_INST_FETCH */ -1ull);
        cpu_loop_exit_restore(cs, retaddr);
    }

    tlb_set_page(cs, addr & TARGET_PAGE_MASK, phys & TARGET_PAGE_MASK,
                 prot, mmu_idx, TARGET_PAGE_SIZE);
    return true;
}
#endif /* USER_ONLY */

void alpha_cpu_do_interrupt(CPUState *cs)
{
    AlphaCPU *cpu = ALPHA_CPU(cs);
    CPUAlphaState *env = &cpu->env;
    int i = cs->exception_index;

    if (qemu_loglevel_mask(CPU_LOG_INT)) {
        static int count;
        const char *name = "<unknown>";

        switch (i) {
        case EXCP_RESET:
            name = "reset";
            break;
        case EXCP_MCHK:
            name = "mchk";
            break;
        case EXCP_SMP_INTERRUPT:
            name = "smp_interrupt";
            break;
        case EXCP_CLK_INTERRUPT:
            name = "clk_interrupt";
            break;
        case EXCP_DEV_INTERRUPT:
            name = "dev_interrupt";
            break;
        case EXCP_MMFAULT:
            name = "mmfault";
            break;
        case EXCP_UNALIGN:
            name = "unalign";
            break;
        case EXCP_OPCDEC:
            name = "opcdec";
            break;
        case EXCP_ARITH:
            name = "arith";
            break;
        case EXCP_FEN:
            name = "fen";
            break;
        case EXCP_CALL_PAL:
            name = "call_pal";
            break;
        }
        qemu_log("INT %6d: %s(%#x) cpu=%d pc=%016"
                 PRIx64 " sp=%016" PRIx64 "\n",
                 ++count, name, env->error_code, cs->cpu_index,
                 env->pc, env->ir[IR_SP]);
    }

    cs->exception_index = -1;

#if !defined(CONFIG_USER_ONLY)
    switch (i) {
    case EXCP_RESET:
        i = 0x0000;
        break;
    case EXCP_MCHK:
        i = 0x0080;
        break;
    case EXCP_SMP_INTERRUPT:
        i = 0x0100;
        break;
    case EXCP_CLK_INTERRUPT:
        i = 0x0180;
        break;
    case EXCP_DEV_INTERRUPT:
        i = 0x0200;
        break;
    case EXCP_MMFAULT:
        i = 0x0280;
        break;
    case EXCP_UNALIGN:
        i = 0x0300;
        break;
    case EXCP_OPCDEC:
        i = 0x0380;
        break;
    case EXCP_ARITH:
        i = 0x0400;
        break;
    case EXCP_FEN:
        i = 0x0480;
        break;
    case EXCP_CALL_PAL:
        i = env->error_code;
        /* There are 64 entry points for both privileged and unprivileged,
           with bit 0x80 indicating unprivileged.  Each entry point gets
           64 bytes to do its job.  */
        if (i & 0x80) {
            i = 0x2000 + (i - 0x80) * 64;
        } else {
            i = 0x1000 + i * 64;
        }
        break;
    default:
        cpu_abort(cs, "Unhandled CPU exception");
    }

    /* Remember where the exception happened.  Emulate real hardware in
       that the low bit of the PC indicates PALmode.  */
    env->exc_addr = env->pc | (env->flags & ENV_FLAG_PAL_MODE);

    /* Continue execution at the PALcode entry point.  */
    env->pc = env->palbr + i;

    /* Switch to PALmode.  */
    env->flags |= ENV_FLAG_PAL_MODE;
#endif /* !USER_ONLY */
}

bool alpha_cpu_exec_interrupt(CPUState *cs, int interrupt_request)
{
    AlphaCPU *cpu = ALPHA_CPU(cs);
    CPUAlphaState *env = &cpu->env;
    int idx = -1;

    /* We never take interrupts while in PALmode.  */
    if (env->flags & ENV_FLAG_PAL_MODE) {
        return false;
    }

    /* Fall through the switch, collecting the highest priority
       interrupt that isn't masked by the processor status IPL.  */
    /* ??? This hard-codes the OSF/1 interrupt levels.  */
    switch ((env->flags >> ENV_FLAG_PS_SHIFT) & PS_INT_MASK) {
    case 0 ... 3:
        if (interrupt_request & CPU_INTERRUPT_HARD) {
            idx = EXCP_DEV_INTERRUPT;
        }
        /* FALLTHRU */
    case 4:
        if (interrupt_request & CPU_INTERRUPT_TIMER) {
            idx = EXCP_CLK_INTERRUPT;
        }
        /* FALLTHRU */
    case 5:
        if (interrupt_request & CPU_INTERRUPT_SMP) {
            idx = EXCP_SMP_INTERRUPT;
        }
        /* FALLTHRU */
    case 6:
        if (interrupt_request & CPU_INTERRUPT_MCHK) {
            idx = EXCP_MCHK;
        }
    }
    if (idx >= 0) {
        cs->exception_index = idx;
        env->error_code = 0;
        alpha_cpu_do_interrupt(cs);
        return true;
    }
    return false;
}

void alpha_cpu_dump_state(CPUState *cs, FILE *f, int flags)
{
    static const char linux_reg_names[31][4] = {
        "v0",  "t0",  "t1", "t2",  "t3", "t4", "t5", "t6",
        "t7",  "s0",  "s1", "s2",  "s3", "s4", "s5", "fp",
        "a0",  "a1",  "a2", "a3",  "a4", "a5", "t8", "t9",
        "t10", "t11", "ra", "t12", "at", "gp", "sp"
    };
    AlphaCPU *cpu = ALPHA_CPU(cs);
    CPUAlphaState *env = &cpu->env;
    int i;

    qemu_fprintf(f, "PC      " TARGET_FMT_lx " PS      %02x\n",
                 env->pc, extract32(env->flags, ENV_FLAG_PS_SHIFT, 8));
    for (i = 0; i < 31; i++) {
        qemu_fprintf(f, "%-8s" TARGET_FMT_lx "%c",
                     linux_reg_names[i], cpu_alpha_load_gr(env, i),
                     (i % 3) == 2 ? '\n' : ' ');
    }

    qemu_fprintf(f, "lock_a  " TARGET_FMT_lx " lock_v  " TARGET_FMT_lx "\n",
                 env->lock_addr, env->lock_value);

    if (flags & CPU_DUMP_FPU) {
        for (i = 0; i < 31; i++) {
            qemu_fprintf(f, "f%-7d%016" PRIx64 "%c", i, env->fir[i],
                         (i % 3) == 2 ? '\n' : ' ');
        }
        qemu_fprintf(f, "fpcr    %016" PRIx64 "\n", cpu_alpha_load_fpcr(env));
    }
    qemu_fprintf(f, "\n");
}

/* This should only be called from translate, via gen_excp.
   We expect that ENV->PC has already been updated.  */
void QEMU_NORETURN helper_excp(CPUAlphaState *env, int excp, int error)
{
    CPUState *cs = env_cpu(env);

    cs->exception_index = excp;
    env->error_code = error;
    cpu_loop_exit(cs);
}

/* This may be called from any of the helpers to set up EXCEPTION_INDEX.  */
void QEMU_NORETURN dynamic_excp(CPUAlphaState *env, uintptr_t retaddr,
                                int excp, int error)
{
    CPUState *cs = env_cpu(env);

    cs->exception_index = excp;
    env->error_code = error;
    if (retaddr) {
        cpu_restore_state(cs, retaddr, true);
        /* Floating-point exceptions (our only users) point to the next PC.  */
        env->pc += 4;
    }
    cpu_loop_exit(cs);
}

void QEMU_NORETURN arith_excp(CPUAlphaState *env, uintptr_t retaddr,
                              int exc, uint64_t mask)
{
    env->trap_arg0 = exc;
    env->trap_arg1 = mask;
    dynamic_excp(env, retaddr, EXCP_ARITH, 0);
}
Commit	Line	Data
4c9649a9 JM	1	/*
4c9649a9 JM	2	* Alpha emulation cpu helpers for qemu.
5fafdf24	3	*
4c9649a9 JM	4	* Copyright (c) 2007 Jocelyn Mayer
	5	*
	6	* This library is free software; you can redistribute it and/or
	7	* modify it under the terms of the GNU Lesser General Public
	8	* License as published by the Free Software Foundation; either
	9	* version 2 of the License, or (at your option) any later version.
	10	*
	11	* This library is distributed in the hope that it will be useful,
	12	* but WITHOUT ANY WARRANTY; without even the implied warranty of
	13	* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
	14	* Lesser General Public License for more details.
	15	*
	16	* You should have received a copy of the GNU Lesser General Public
8167ee88	17	* License along with this library; if not, see <http://www.gnu.org/licenses/>.
4c9649a9 JM	18	*/
4c9649a9 JM	19
e2e5e114	20	#include "qemu/osdep.h"
4c9649a9 JM	21
4c9649a9 JM	22	#include "cpu.h"
63c91552	23	#include "exec/exec-all.h"
5f8ab000	24	#include "fpu/softfloat-types.h"
2ef6175a	25	#include "exec/helper-proto.h"
90c84c56	26	#include "qemu/qemu-print.h"
ba0e276d	27
8443effb	28
f3d3aad4 RH	29	#define CONVERT_BIT(X, SRC, DST) \
f3d3aad4 RH	30	(SRC > DST ? (X) / (SRC / DST) & (DST) : ((X) & SRC) * (DST / SRC))
8443effb	31
21ba8564	32	uint64_t cpu_alpha_load_fpcr(CPUAlphaState *env)
f3d3aad4 RH	33	{
f3d3aad4 RH	34	return (uint64_t)env->fpcr << 32;
ba0e276d RH	35	}
ba0e276d RH	36
21ba8564	37	void cpu_alpha_store_fpcr(CPUAlphaState *env, uint64_t val)
ba0e276d	38	{
ea937ded RH	39	static const uint8_t rm_map[] = {
	40	[FPCR_DYN_NORMAL >> FPCR_DYN_SHIFT] = float_round_nearest_even,
	41	[FPCR_DYN_CHOPPED >> FPCR_DYN_SHIFT] = float_round_to_zero,
	42	[FPCR_DYN_MINUS >> FPCR_DYN_SHIFT] = float_round_down,
	43	[FPCR_DYN_PLUS >> FPCR_DYN_SHIFT] = float_round_up,
	44	};
	45
f3d3aad4 RH	46	uint32_t fpcr = val >> 32;
f3d3aad4 RH	47	uint32_t t = 0;
8443effb	48
106e1319 RH	49	/* Record the raw value before adjusting for linux-user. */
	50	env->fpcr = fpcr;
	51
	52	#ifdef CONFIG_USER_ONLY
	53	/*
	54	* Override some of these bits with the contents of ENV->SWCR.
	55	* In system mode, some of these would trap to the kernel, at
	56	* which point the kernel's handler would emulate and apply
	57	* the software exception mask.
	58	*/
	59	uint32_t soft_fpcr = alpha_ieee_swcr_to_fpcr(env->swcr) >> 32;
8cd99905	60	fpcr \|= soft_fpcr & (FPCR_STATUS_MASK \| FPCR_DNZ);
80093070 RH	61
	62	/*
	63	* The IOV exception is disabled by the kernel with SWCR_TRAP_ENABLE_INV,
	64	* which got mapped by alpha_ieee_swcr_to_fpcr to FPCR_INVD.
	65	* Add FPCR_IOV to fpcr_exc_enable so that it is handled identically.
	66	*/
	67	t \|= CONVERT_BIT(soft_fpcr, FPCR_INVD, FPCR_IOV);
106e1319 RH	68	#endif
106e1319 RH	69
f3d3aad4 RH	70	t \|= CONVERT_BIT(fpcr, FPCR_INED, FPCR_INE);
	71	t \|= CONVERT_BIT(fpcr, FPCR_UNFD, FPCR_UNF);
	72	t \|= CONVERT_BIT(fpcr, FPCR_OVFD, FPCR_OVF);
	73	t \|= CONVERT_BIT(fpcr, FPCR_DZED, FPCR_DZE);
	74	t \|= CONVERT_BIT(fpcr, FPCR_INVD, FPCR_INV);
8443effb	75
f3d3aad4	76	env->fpcr_exc_enable = ~t & FPCR_STATUS_MASK;
8443effb	77
ea937ded	78	env->fpcr_dyn_round = rm_map[(fpcr & FPCR_DYN_MASK) >> FPCR_DYN_SHIFT];
f3d3aad4	79	env->fp_status.flush_inputs_to_zero = (fpcr & FPCR_DNZ) != 0;
a8938e5f RH	80
a8938e5f RH	81	t = (fpcr & FPCR_UNFD) && (fpcr & FPCR_UNDZ);
21ba8564	82	#ifdef CONFIG_USER_ONLY
a8938e5f	83	t \|= (env->swcr & SWCR_MAP_UMZ) != 0;
21ba8564	84	#endif
a8938e5f	85	env->fpcr_flush_to_zero = t;
ba0e276d	86	}
4c9649a9	87
a44a2777 RH	88	uint64_t helper_load_fpcr(CPUAlphaState *env)
	89	{
	90	return cpu_alpha_load_fpcr(env);
	91	}
	92
	93	void helper_store_fpcr(CPUAlphaState *env, uint64_t val)
	94	{
	95	cpu_alpha_store_fpcr(env, val);
	96	}
	97
59124384 RH	98	static uint64_t cpu_alpha_addr_gr(CPUAlphaState env, unsigned reg)
	99	{
	100	#ifndef CONFIG_USER_ONLY
bcd2625d	101	if (env->flags & ENV_FLAG_PAL_MODE) {
59124384 RH	102	if (reg >= 8 && reg <= 14) {
	103	return &env->shadow[reg - 8];
	104	} else if (reg == 25) {
	105	return &env->shadow[7];
	106	}
	107	}
	108	#endif
	109	return &env->ir[reg];
	110	}
	111
	112	uint64_t cpu_alpha_load_gr(CPUAlphaState *env, unsigned reg)
	113	{
	114	return *cpu_alpha_addr_gr(env, reg);
	115	}
	116
	117	void cpu_alpha_store_gr(CPUAlphaState *env, unsigned reg, uint64_t val)
	118	{
	119	*cpu_alpha_addr_gr(env, reg) = val;
	120	}
	121
5fafdf24	122	#if defined(CONFIG_USER_ONLY)
e41c9452 RH	123	bool alpha_cpu_tlb_fill(CPUState *cs, vaddr address, int size,
	124	MMUAccessType access_type, int mmu_idx,
	125	bool probe, uintptr_t retaddr)
4c9649a9	126	{
7510454e AF	127	AlphaCPU *cpu = ALPHA_CPU(cs);
7510454e AF	128
27103424	129	cs->exception_index = EXCP_MMFAULT;
7510454e	130	cpu->env.trap_arg0 = address;
e41c9452	131	cpu_loop_exit_restore(cs, retaddr);
4c9649a9	132	}
4c9649a9	133	#else
a3b9af16	134	/* Returns the OSF/1 entMM failure indication, or -1 on success. */
4d5712f1	135	static int get_physical_address(CPUAlphaState *env, target_ulong addr,
a3b9af16 RH	136	int prot_need, int mmu_idx,
a3b9af16 RH	137	target_ulong pphys, int pprot)
4c9649a9	138	{
1c7ad260	139	CPUState *cs = env_cpu(env);
a3b9af16 RH	140	target_long saddr = addr;
	141	target_ulong phys = 0;
	142	target_ulong L1pte, L2pte, L3pte;
	143	target_ulong pt, index;
	144	int prot = 0;
	145	int ret = MM_K_ACV;
	146
6a73ecf5 RH	147	/* Handle physical accesses. */
	148	if (mmu_idx == MMU_PHYS_IDX) {
	149	phys = addr;
	150	prot = PAGE_READ \| PAGE_WRITE \| PAGE_EXEC;
	151	ret = -1;
	152	goto exit;
	153	}
	154
a3b9af16 RH	155	/* Ensure that the virtual address is properly sign-extended from
	156	the last implemented virtual address bit. */
	157	if (saddr >> TARGET_VIRT_ADDR_SPACE_BITS != saddr >> 63) {
	158	goto exit;
	159	}
	160
	161	/* Translate the superpage. */
	162	/* ??? When we do more than emulate Unix PALcode, we'll need to
fa6e0a63 RH	163	determine which KSEG is actually active. */
	164	if (saddr < 0 && ((saddr >> 41) & 3) == 2) {
	165	/* User-space cannot access KSEG addresses. */
a3b9af16 RH	166	if (mmu_idx != MMU_KERNEL_IDX) {
	167	goto exit;
	168	}
	169
fa6e0a63 RH	170	/* For the benefit of the Typhoon chipset, move bit 40 to bit 43.
fa6e0a63 RH	171	We would not do this if the 48-bit KSEG is enabled. */
a3b9af16	172	phys = saddr & ((1ull << 40) - 1);
fa6e0a63 RH	173	phys \|= (saddr & (1ull << 40)) << 3;
fa6e0a63 RH	174
a3b9af16 RH	175	prot = PAGE_READ \| PAGE_WRITE \| PAGE_EXEC;
	176	ret = -1;
	177	goto exit;
	178	}
	179
	180	/* Interpret the page table exactly like PALcode does. */
	181
	182	pt = env->ptbr;
	183
6ad4d7ee PM	184	/* TODO: rather than using ldq_phys() to read the page table we should
	185	* use address_space_ldq() so that we can handle the case when
	186	* the page table read gives a bus fault, rather than ignoring it.
	187	* For the existing code the zero data that ldq_phys will return for
	188	* an access to invalid memory will result in our treating the page
	189	* table as invalid, which may even be the right behaviour.
	190	*/
	191
a3b9af16 RH	192	/* L1 page table read. */
a3b9af16 RH	193	index = (addr >> (TARGET_PAGE_BITS + 20)) & 0x3ff;
2c17449b	194	L1pte = ldq_phys(cs->as, pt + index*8);
a3b9af16 RH	195
	196	if (unlikely((L1pte & PTE_VALID) == 0)) {
	197	ret = MM_K_TNV;
	198	goto exit;
	199	}
	200	if (unlikely((L1pte & PTE_KRE) == 0)) {
	201	goto exit;
	202	}
	203	pt = L1pte >> 32 << TARGET_PAGE_BITS;
	204
	205	/* L2 page table read. */
	206	index = (addr >> (TARGET_PAGE_BITS + 10)) & 0x3ff;
2c17449b	207	L2pte = ldq_phys(cs->as, pt + index*8);
a3b9af16 RH	208
	209	if (unlikely((L2pte & PTE_VALID) == 0)) {
	210	ret = MM_K_TNV;
	211	goto exit;
	212	}
	213	if (unlikely((L2pte & PTE_KRE) == 0)) {
	214	goto exit;
	215	}
	216	pt = L2pte >> 32 << TARGET_PAGE_BITS;
	217
	218	/* L3 page table read. */
	219	index = (addr >> TARGET_PAGE_BITS) & 0x3ff;
2c17449b	220	L3pte = ldq_phys(cs->as, pt + index*8);
a3b9af16 RH	221
	222	phys = L3pte >> 32 << TARGET_PAGE_BITS;
	223	if (unlikely((L3pte & PTE_VALID) == 0)) {
	224	ret = MM_K_TNV;
	225	goto exit;
	226	}
	227
	228	#if PAGE_READ != 1 \|\| PAGE_WRITE != 2 \|\| PAGE_EXEC != 4
	229	# error page bits out of date
	230	#endif
	231
	232	/* Check access violations. */
	233	if (L3pte & (PTE_KRE << mmu_idx)) {
	234	prot \|= PAGE_READ \| PAGE_EXEC;
	235	}
	236	if (L3pte & (PTE_KWE << mmu_idx)) {
	237	prot \|= PAGE_WRITE;
	238	}
	239	if (unlikely((prot & prot_need) == 0 && prot_need)) {
	240	goto exit;
	241	}
	242
	243	/* Check fault-on-operation violations. */
	244	prot &= ~(L3pte >> 1);
	245	ret = -1;
	246	if (unlikely((prot & prot_need) == 0)) {
	247	ret = (prot_need & PAGE_EXEC ? MM_K_FOE :
	248	prot_need & PAGE_WRITE ? MM_K_FOW :
	249	prot_need & PAGE_READ ? MM_K_FOR : -1);
	250	}
	251
	252	exit:
	253	*pphys = phys;
	254	*pprot = prot;
	255	return ret;
4c9649a9 JM	256	}
4c9649a9 JM	257
00b941e5	258	hwaddr alpha_cpu_get_phys_page_debug(CPUState *cs, vaddr addr)
4c9649a9	259	{
00b941e5	260	AlphaCPU *cpu = ALPHA_CPU(cs);
a3b9af16 RH	261	target_ulong phys;
	262	int prot, fail;
	263
00b941e5	264	fail = get_physical_address(&cpu->env, addr, 0, 0, &phys, &prot);
a3b9af16 RH	265	return (fail >= 0 ? -1 : phys);
	266	}
	267
e41c9452 RH	268	bool alpha_cpu_tlb_fill(CPUState *cs, vaddr addr, int size,
	269	MMUAccessType access_type, int mmu_idx,
	270	bool probe, uintptr_t retaddr)
a3b9af16	271	{
7510454e AF	272	AlphaCPU *cpu = ALPHA_CPU(cs);
7510454e AF	273	CPUAlphaState *env = &cpu->env;
a3b9af16 RH	274	target_ulong phys;
	275	int prot, fail;
	276
e41c9452 RH	277	fail = get_physical_address(env, addr, 1 << access_type,
e41c9452 RH	278	mmu_idx, &phys, &prot);
a3b9af16	279	if (unlikely(fail >= 0)) {
e41c9452 RH	280	if (probe) {
	281	return false;
	282	}
27103424	283	cs->exception_index = EXCP_MMFAULT;
a3b9af16 RH	284	env->trap_arg0 = addr;
a3b9af16 RH	285	env->trap_arg1 = fail;
cb1de55a AJ	286	env->trap_arg2 = (access_type == MMU_DATA_LOAD ? 0ull :
	287	access_type == MMU_DATA_STORE ? 1ull :
	288	/* access_type == MMU_INST_FETCH */ -1ull);
e41c9452	289	cpu_loop_exit_restore(cs, retaddr);
a3b9af16 RH	290	}
a3b9af16 RH	291
0c591eb0	292	tlb_set_page(cs, addr & TARGET_PAGE_MASK, phys & TARGET_PAGE_MASK,
a3b9af16	293	prot, mmu_idx, TARGET_PAGE_SIZE);
e41c9452 RH	294	return true;
e41c9452 RH	295	}
3a6fa678	296	#endif /* USER_ONLY */
4c9649a9	297
97a8ea5a	298	void alpha_cpu_do_interrupt(CPUState *cs)
4c9649a9	299	{
97a8ea5a AF	300	AlphaCPU *cpu = ALPHA_CPU(cs);
97a8ea5a AF	301	CPUAlphaState *env = &cpu->env;
27103424	302	int i = cs->exception_index;
3a6fa678 RH	303
	304	if (qemu_loglevel_mask(CPU_LOG_INT)) {
	305	static int count;
	306	const char *name = "<unknown>";
	307
	308	switch (i) {
	309	case EXCP_RESET:
	310	name = "reset";
	311	break;
	312	case EXCP_MCHK:
	313	name = "mchk";
	314	break;
	315	case EXCP_SMP_INTERRUPT:
	316	name = "smp_interrupt";
	317	break;
	318	case EXCP_CLK_INTERRUPT:
	319	name = "clk_interrupt";
	320	break;
	321	case EXCP_DEV_INTERRUPT:
	322	name = "dev_interrupt";
	323	break;
	324	case EXCP_MMFAULT:
	325	name = "mmfault";
	326	break;
	327	case EXCP_UNALIGN:
	328	name = "unalign";
	329	break;
	330	case EXCP_OPCDEC:
	331	name = "opcdec";
	332	break;
	333	case EXCP_ARITH:
	334	name = "arith";
	335	break;
	336	case EXCP_FEN:
	337	name = "fen";
	338	break;
	339	case EXCP_CALL_PAL:
	340	name = "call_pal";
	341	break;
3a6fa678	342	}
022f52e0 RH	343	qemu_log("INT %6d: %s(%#x) cpu=%d pc=%016"
	344	PRIx64 " sp=%016" PRIx64 "\n",
	345	++count, name, env->error_code, cs->cpu_index,
	346	env->pc, env->ir[IR_SP]);
3a6fa678 RH	347	}
3a6fa678 RH	348
27103424	349	cs->exception_index = -1;
3a6fa678 RH	350
	351	#if !defined(CONFIG_USER_ONLY)
	352	switch (i) {
	353	case EXCP_RESET:
	354	i = 0x0000;
	355	break;
	356	case EXCP_MCHK:
	357	i = 0x0080;
	358	break;
	359	case EXCP_SMP_INTERRUPT:
	360	i = 0x0100;
	361	break;
	362	case EXCP_CLK_INTERRUPT:
	363	i = 0x0180;
	364	break;
	365	case EXCP_DEV_INTERRUPT:
	366	i = 0x0200;
	367	break;
	368	case EXCP_MMFAULT:
	369	i = 0x0280;
	370	break;
	371	case EXCP_UNALIGN:
	372	i = 0x0300;
	373	break;
	374	case EXCP_OPCDEC:
	375	i = 0x0380;
	376	break;
	377	case EXCP_ARITH:
	378	i = 0x0400;
	379	break;
	380	case EXCP_FEN:
	381	i = 0x0480;
	382	break;
	383	case EXCP_CALL_PAL:
	384	i = env->error_code;
	385	/* There are 64 entry points for both privileged and unprivileged,
	386	with bit 0x80 indicating unprivileged. Each entry point gets
	387	64 bytes to do its job. */
	388	if (i & 0x80) {
	389	i = 0x2000 + (i - 0x80) * 64;
	390	} else {
	391	i = 0x1000 + i * 64;
	392	}
	393	break;
	394	default:
a47dddd7	395	cpu_abort(cs, "Unhandled CPU exception");
3a6fa678 RH	396	}
	397
	398	/* Remember where the exception happened. Emulate real hardware in
	399	that the low bit of the PC indicates PALmode. */
bcd2625d	400	env->exc_addr = env->pc \| (env->flags & ENV_FLAG_PAL_MODE);
3a6fa678 RH	401
	402	/* Continue execution at the PALcode entry point. */
	403	env->pc = env->palbr + i;
	404
	405	/* Switch to PALmode. */
bcd2625d	406	env->flags \|= ENV_FLAG_PAL_MODE;
3a6fa678	407	#endif /* !USER_ONLY */
4c9649a9	408	}
4c9649a9	409
dde7c241 RH	410	bool alpha_cpu_exec_interrupt(CPUState *cs, int interrupt_request)
	411	{
	412	AlphaCPU *cpu = ALPHA_CPU(cs);
	413	CPUAlphaState *env = &cpu->env;
	414	int idx = -1;
	415
	416	/* We never take interrupts while in PALmode. */
bcd2625d	417	if (env->flags & ENV_FLAG_PAL_MODE) {
dde7c241 RH	418	return false;
	419	}
	420
	421	/* Fall through the switch, collecting the highest priority
	422	interrupt that isn't masked by the processor status IPL. */
	423	/* ??? This hard-codes the OSF/1 interrupt levels. */
bcd2625d	424	switch ((env->flags >> ENV_FLAG_PS_SHIFT) & PS_INT_MASK) {
dde7c241 RH	425	case 0 ... 3:
	426	if (interrupt_request & CPU_INTERRUPT_HARD) {
	427	idx = EXCP_DEV_INTERRUPT;
	428	}
	429	/* FALLTHRU */
	430	case 4:
	431	if (interrupt_request & CPU_INTERRUPT_TIMER) {
	432	idx = EXCP_CLK_INTERRUPT;
	433	}
	434	/* FALLTHRU */
	435	case 5:
	436	if (interrupt_request & CPU_INTERRUPT_SMP) {
	437	idx = EXCP_SMP_INTERRUPT;
	438	}
	439	/* FALLTHRU */
	440	case 6:
	441	if (interrupt_request & CPU_INTERRUPT_MCHK) {
	442	idx = EXCP_MCHK;
	443	}
	444	}
	445	if (idx >= 0) {
	446	cs->exception_index = idx;
	447	env->error_code = 0;
	448	alpha_cpu_do_interrupt(cs);
	449	return true;
	450	}
	451	return false;
	452	}
	453
90c84c56	454	void alpha_cpu_dump_state(CPUState cs, FILE f, int flags)
4c9649a9	455	{
4a247932 RH	456	static const char linux_reg_names[31][4] = {
	457	"v0", "t0", "t1", "t2", "t3", "t4", "t5", "t6",
	458	"t7", "s0", "s1", "s2", "s3", "s4", "s5", "fp",
	459	"a0", "a1", "a2", "a3", "a4", "a5", "t8", "t9",
	460	"t10", "t11", "ra", "t12", "at", "gp", "sp"
4c9649a9	461	};
878096ee AF	462	AlphaCPU *cpu = ALPHA_CPU(cs);
878096ee AF	463	CPUAlphaState *env = &cpu->env;
4c9649a9 JM	464	int i;
4c9649a9 JM	465
4a247932	466	qemu_fprintf(f, "PC " TARGET_FMT_lx " PS %02x\n",
90c84c56	467	env->pc, extract32(env->flags, ENV_FLAG_PS_SHIFT, 8));
4c9649a9	468	for (i = 0; i < 31; i++) {
4a247932	469	qemu_fprintf(f, "%-8s" TARGET_FMT_lx "%c",
90c84c56 MA	470	linux_reg_names[i], cpu_alpha_load_gr(env, i),
90c84c56 MA	471	(i % 3) == 2 ? '\n' : ' ');
4c9649a9	472	}
6910b8f6	473
4a247932	474	qemu_fprintf(f, "lock_a " TARGET_FMT_lx " lock_v " TARGET_FMT_lx "\n",
90c84c56	475	env->lock_addr, env->lock_value);
6910b8f6	476
a68d82b8 RH	477	if (flags & CPU_DUMP_FPU) {
a68d82b8 RH	478	for (i = 0; i < 31; i++) {
4a247932	479	qemu_fprintf(f, "f%-7d%016" PRIx64 "%c", i, env->fir[i],
90c84c56	480	(i % 3) == 2 ? '\n' : ' ');
a68d82b8	481	}
4a247932	482	qemu_fprintf(f, "fpcr %016" PRIx64 "\n", cpu_alpha_load_fpcr(env));
4c9649a9	483	}
90c84c56	484	qemu_fprintf(f, "\n");
4c9649a9	485	}
b9f0923e	486
b9f0923e RH	487	/* This should only be called from translate, via gen_excp.
	488	We expect that ENV->PC has already been updated. */
	489	void QEMU_NORETURN helper_excp(CPUAlphaState *env, int excp, int error)
	490	{
1c7ad260	491	CPUState *cs = env_cpu(env);
27103424 AF	492
27103424 AF	493	cs->exception_index = excp;
b9f0923e	494	env->error_code = error;
5638d180	495	cpu_loop_exit(cs);
b9f0923e RH	496	}
	497
	498	/* This may be called from any of the helpers to set up EXCEPTION_INDEX. */
20503968	499	void QEMU_NORETURN dynamic_excp(CPUAlphaState *env, uintptr_t retaddr,
b9f0923e RH	500	int excp, int error)
b9f0923e RH	501	{
1c7ad260	502	CPUState *cs = env_cpu(env);
27103424 AF	503
27103424 AF	504	cs->exception_index = excp;
b9f0923e	505	env->error_code = error;
a8a826a3	506	if (retaddr) {
afd46fca	507	cpu_restore_state(cs, retaddr, true);
ba9c5de5 RH	508	/* Floating-point exceptions (our only users) point to the next PC. */
ba9c5de5 RH	509	env->pc += 4;
a8a826a3	510	}
5638d180	511	cpu_loop_exit(cs);
b9f0923e RH	512	}
b9f0923e RH	513
20503968	514	void QEMU_NORETURN arith_excp(CPUAlphaState *env, uintptr_t retaddr,
b9f0923e RH	515	int exc, uint64_t mask)
	516	{
	517	env->trap_arg0 = exc;
	518	env->trap_arg1 = mask;
	519	dynamic_excp(env, retaddr, EXCP_ARITH, 0);
	520	}