]> git.proxmox.com Git - mirror_qemu.git/blame - target/ppc/mmu-hash64.c
projects / mirror_qemu.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
target/ppc: Use env_cpu, env_archcpu
[mirror_qemu.git] / target / ppc / mmu-hash64.c
CommitLineData
10b46525
DG		 1/*
2 * PowerPC MMU, TLB, SLB and BAT emulation helpers for QEMU.
3 *
4 * Copyright (c) 2003-2007 Jocelyn Mayer
5 * Copyright (c) 2013 David Gibson, IBM Corporation
6 *
7 * This library is free software; you can redistribute it and/or
8 * modify it under the terms of the GNU Lesser General Public
9 * License as published by the Free Software Foundation; either
10 * version 2 of the License, or (at your option) any later version.
11 *
12 * This library is distributed in the hope that it will be useful,
13 * but WITHOUT ANY WARRANTY; without even the implied warranty of
14 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
15 * Lesser General Public License for more details.
16 *
17 * You should have received a copy of the GNU Lesser General Public
18 * License along with this library; if not, see <http://www.gnu.org/licenses/>.
19 */
0d75590d 20#include "qemu/osdep.h"
10b46525 21#include "cpu.h"
63c91552 22#include "exec/exec-all.h"
2ef6175a 23#include "exec/helper-proto.h"
cd6a9bb6 24#include "qemu/error-report.h"
fad866da 25#include "qemu/qemu-print.h"
b3946626 26#include "sysemu/hw_accel.h"
10b46525
DG		 27#include "kvm_ppc.h"
28#include "mmu-hash64.h"
508127e2 29#include "exec/log.h"
7222b94a 30#include "hw/hw.h"
b2899495 31#include "mmu-book3s-v3.h"
10b46525 32
d75cbae8 33/* #define DEBUG_SLB */
10b46525
DG		 34
35#ifdef DEBUG_SLB
48880da6 36# define LOG_SLB(...) qemu_log_mask(CPU_LOG_MMU, __VA_ARGS__)
10b46525
DG		 37#else
38# define LOG_SLB(...) do { } while (0)
39#endif
40
41/*
42 * SLB handling
43 */
44
7ef23068 45static ppc_slb_t *slb_lookup(PowerPCCPU *cpu, target_ulong eaddr)
10b46525 46{
7ef23068 47 CPUPPCState *env = &cpu->env;
10b46525
DG		 48 uint64_t esid_256M, esid_1T;
49 int n;
50
51 LOG_SLB("%s: eaddr " TARGET_FMT_lx "\n", __func__, eaddr);
52
53 esid_256M = (eaddr & SEGMENT_MASK_256M) | SLB_ESID_V;
54 esid_1T = (eaddr & SEGMENT_MASK_1T) | SLB_ESID_V;
55
67d7d66f 56 for (n = 0; n < cpu->hash64_opts->slb_size; n++) {
10b46525
DG		 57 ppc_slb_t *slb = &env->slb[n];
58
59 LOG_SLB("%s: slot %d %016" PRIx64 " %016"
60 PRIx64 "\n", __func__, n, slb->esid, slb->vsid);
d75cbae8
DG		 61 /*
62 * We check for 1T matches on all MMUs here - if the MMU
10b46525 63 * doesn't have 1T segment support, we will have prevented 1T
d75cbae8
DG		 64 * entries from being inserted in the slbmte code.
65 */
10b46525
DG		 66 if (((slb->esid == esid_256M) &&
67 ((slb->vsid & SLB_VSID_B) == SLB_VSID_B_256M))
68 || ((slb->esid == esid_1T) &&
69 ((slb->vsid & SLB_VSID_B) == SLB_VSID_B_1T))) {
70 return slb;
71 }
72 }
73
74 return NULL;
75}
76
fad866da 77void dump_slb(PowerPCCPU *cpu)
10b46525 78{
7ef23068 79 CPUPPCState *env = &cpu->env;
10b46525
DG		 80 int i;
81 uint64_t slbe, slbv;
82
7ef23068 83 cpu_synchronize_state(CPU(cpu));
10b46525 84
fad866da 85 qemu_printf("SLB\tESID\t\t\tVSID\n");
67d7d66f 86 for (i = 0; i < cpu->hash64_opts->slb_size; i++) {
10b46525
DG		 87 slbe = env->slb[i].esid;
88 slbv = env->slb[i].vsid;
89 if (slbe == 0 && slbv == 0) {
90 continue;
91 }
fad866da 92 qemu_printf("%d\t0x%016" PRIx64 "\t0x%016" PRIx64 "\n",
10b46525
DG		 93 i, slbe, slbv);
94 }
95}
96
97void helper_slbia(CPUPPCState *env)
98{
db70b311 99 PowerPCCPU *cpu = env_archcpu(env);
cd0c6f47 100 int n;
10b46525 101
10b46525 102 /* XXX: Warning: slbia never invalidates the first segment */
67d7d66f 103 for (n = 1; n < cpu->hash64_opts->slb_size; n++) {
10b46525
DG		 104 ppc_slb_t *slb = &env->slb[n];
105
106 if (slb->esid & SLB_ESID_V) {
107 slb->esid &= ~SLB_ESID_V;
d75cbae8
DG		 108 /*
109 * XXX: given the fact that segment size is 256 MB or 1TB,
10b46525
DG		 110 * and we still don't have a tlb_flush_mask(env, n, mask)
111 * in QEMU, we just invalidate all TLBs
112 */
a8a6d53e 113 env->tlb_need_flush |= TLB_NEED_LOCAL_FLUSH;
10b46525
DG		 114 }
115 }
10b46525
DG		 116}
117
a63f1dfc
ND		 118static void __helper_slbie(CPUPPCState *env, target_ulong addr,
119 target_ulong global)
10b46525 120{
db70b311 121 PowerPCCPU *cpu = env_archcpu(env);
10b46525
DG		 122 ppc_slb_t *slb;
123
7ef23068 124 slb = slb_lookup(cpu, addr);
10b46525
DG		 125 if (!slb) {
126 return;
127 }
128
129 if (slb->esid & SLB_ESID_V) {
130 slb->esid &= ~SLB_ESID_V;
131
d75cbae8
DG		 132 /*
133 * XXX: given the fact that segment size is 256 MB or 1TB,
10b46525
DG		 134 * and we still don't have a tlb_flush_mask(env, n, mask)
135 * in QEMU, we just invalidate all TLBs
136 */
a63f1dfc
ND		 137 env->tlb_need_flush |=
138 (global == false ? TLB_NEED_LOCAL_FLUSH : TLB_NEED_GLOBAL_FLUSH);
10b46525
DG		 139 }
140}
141
a63f1dfc
ND		 142void helper_slbie(CPUPPCState *env, target_ulong addr)
143{
144 __helper_slbie(env, addr, false);
145}
146
147void helper_slbieg(CPUPPCState *env, target_ulong addr)
148{
149 __helper_slbie(env, addr, true);
150}
151
bcd81230
DG		 152int ppc_store_slb(PowerPCCPU *cpu, target_ulong slot,
153 target_ulong esid, target_ulong vsid)
10b46525 154{
7ef23068 155 CPUPPCState *env = &cpu->env;
10b46525 156 ppc_slb_t *slb = &env->slb[slot];
b07c59f7 157 const PPCHash64SegmentPageSizes *sps = NULL;
cd6a9bb6 158 int i;
10b46525 159
67d7d66f 160 if (slot >= cpu->hash64_opts->slb_size) {
bcd81230
DG		 161 return -1; /* Bad slot number */
162 }
163 if (esid & ~(SLB_ESID_ESID | SLB_ESID_V)) {
164 return -1; /* Reserved bits set */
10b46525 165 }
bcd81230 166 if (vsid & (SLB_VSID_B & ~SLB_VSID_B_1T)) {
10b46525
DG		 167 return -1; /* Bad segment size */
168 }
58969eee 169 if ((vsid & SLB_VSID_B) && !(ppc_hash64_has(cpu, PPC_HASH64_1TSEG))) {
10b46525
DG		 170 return -1; /* 1T segment on MMU that doesn't support it */
171 }
172
cd6a9bb6 173 for (i = 0; i < PPC_PAGE_SIZES_MAX_SZ; i++) {
b07c59f7 174 const PPCHash64SegmentPageSizes *sps1 = &cpu->hash64_opts->sps[i];
cd6a9bb6
DG		 175
176 if (!sps1->page_shift) {
177 break;
178 }
179
180 if ((vsid & SLB_VSID_LLP_MASK) == sps1->slb_enc) {
181 sps = sps1;
182 break;
183 }
184 }
185
186 if (!sps) {
187 error_report("Bad page size encoding in SLB store: slot "TARGET_FMT_lu
188 " esid 0x"TARGET_FMT_lx" vsid 0x"TARGET_FMT_lx,
189 slot, esid, vsid);
190 return -1;
191 }
192
bcd81230
DG		 193 slb->esid = esid;
194 slb->vsid = vsid;
cd6a9bb6 195 slb->sps = sps;
10b46525 196
76134d48
SJS		 197 LOG_SLB("%s: " TARGET_FMT_lu " " TARGET_FMT_lx " - " TARGET_FMT_lx
198 " => %016" PRIx64 " %016" PRIx64 "\n", __func__, slot, esid, vsid,
10b46525
DG		 199 slb->esid, slb->vsid);
200
201 return 0;
202}
203
7ef23068 204static int ppc_load_slb_esid(PowerPCCPU *cpu, target_ulong rb,
10b46525
DG		 205 target_ulong *rt)
206{
7ef23068 207 CPUPPCState *env = &cpu->env;
10b46525
DG		 208 int slot = rb & 0xfff;
209 ppc_slb_t *slb = &env->slb[slot];
210
67d7d66f 211 if (slot >= cpu->hash64_opts->slb_size) {
10b46525
DG		 212 return -1;
213 }
214
215 *rt = slb->esid;
216 return 0;
217}
218
7ef23068 219static int ppc_load_slb_vsid(PowerPCCPU *cpu, target_ulong rb,
10b46525
DG		 220 target_ulong *rt)
221{
7ef23068 222 CPUPPCState *env = &cpu->env;
10b46525
DG		 223 int slot = rb & 0xfff;
224 ppc_slb_t *slb = &env->slb[slot];
225
67d7d66f 226 if (slot >= cpu->hash64_opts->slb_size) {
10b46525
DG		 227 return -1;
228 }
229
230 *rt = slb->vsid;
231 return 0;
232}
233
c76c22d5
BH		 234static int ppc_find_slb_vsid(PowerPCCPU *cpu, target_ulong rb,
235 target_ulong *rt)
236{
237 CPUPPCState *env = &cpu->env;
238 ppc_slb_t *slb;
239
240 if (!msr_is_64bit(env, env->msr)) {
241 rb &= 0xffffffff;
242 }
243 slb = slb_lookup(cpu, rb);
244 if (slb == NULL) {
245 *rt = (target_ulong)-1ul;
246 } else {
247 *rt = slb->vsid;
248 }
249 return 0;
250}
251
10b46525
DG		 252void helper_store_slb(CPUPPCState *env, target_ulong rb, target_ulong rs)
253{
db70b311 254 PowerPCCPU *cpu = env_archcpu(env);
7ef23068 255
bcd81230 256 if (ppc_store_slb(cpu, rb & 0xfff, rb & ~0xfffULL, rs) < 0) {
0f72b7c6
BH		 257 raise_exception_err_ra(env, POWERPC_EXCP_PROGRAM,
258 POWERPC_EXCP_INVAL, GETPC());
10b46525
DG		 259 }
260}
261
262target_ulong helper_load_slb_esid(CPUPPCState *env, target_ulong rb)
263{
db70b311 264 PowerPCCPU *cpu = env_archcpu(env);
10b46525
DG		 265 target_ulong rt = 0;
266
7ef23068 267 if (ppc_load_slb_esid(cpu, rb, &rt) < 0) {
0f72b7c6
BH		 268 raise_exception_err_ra(env, POWERPC_EXCP_PROGRAM,
269 POWERPC_EXCP_INVAL, GETPC());
10b46525
DG		 270 }
271 return rt;
272}
273
c76c22d5
BH		 274target_ulong helper_find_slb_vsid(CPUPPCState *env, target_ulong rb)
275{
db70b311 276 PowerPCCPU *cpu = env_archcpu(env);
c76c22d5
BH		 277 target_ulong rt = 0;
278
279 if (ppc_find_slb_vsid(cpu, rb, &rt) < 0) {
0f72b7c6
BH		 280 raise_exception_err_ra(env, POWERPC_EXCP_PROGRAM,
281 POWERPC_EXCP_INVAL, GETPC());
c76c22d5
BH		 282 }
283 return rt;
284}
285
10b46525
DG		 286target_ulong helper_load_slb_vsid(CPUPPCState *env, target_ulong rb)
287{
db70b311 288 PowerPCCPU *cpu = env_archcpu(env);
10b46525
DG		 289 target_ulong rt = 0;
290
7ef23068 291 if (ppc_load_slb_vsid(cpu, rb, &rt) < 0) {
0f72b7c6
BH		 292 raise_exception_err_ra(env, POWERPC_EXCP_PROGRAM,
293 POWERPC_EXCP_INVAL, GETPC());
10b46525
DG		 294 }
295 return rt;
296}
9d7c3f4a 297
07a68f99
SJS		 298/* Check No-Execute or Guarded Storage */
299static inline int ppc_hash64_pte_noexec_guard(PowerPCCPU *cpu,
300 ppc_hash_pte64_t pte)
301{
302 /* Exec permissions CANNOT take away read or write permissions */
303 return (pte.pte1 & HPTE64_R_N) || (pte.pte1 & HPTE64_R_G) ?
304 PAGE_READ | PAGE_WRITE : PAGE_READ | PAGE_WRITE | PAGE_EXEC;
305}
306
307/* Check Basic Storage Protection */
7ef23068 308static int ppc_hash64_pte_prot(PowerPCCPU *cpu,
e01b4445 309 ppc_slb_t *slb, ppc_hash_pte64_t pte)
496272a7 310{
7ef23068 311 CPUPPCState *env = &cpu->env;
e01b4445 312 unsigned pp, key;
d75cbae8
DG		 313 /*
314 * Some pp bit combinations have undefined behaviour, so default
315 * to no access in those cases
316 */
e01b4445
DG		 317 int prot = 0;
318
319 key = !!(msr_pr ? (slb->vsid & SLB_VSID_KP)
320 : (slb->vsid & SLB_VSID_KS));
321 pp = (pte.pte1 & HPTE64_R_PP) | ((pte.pte1 & HPTE64_R_PP0) >> 61);
496272a7 322
496272a7
DG		 323 if (key == 0) {
324 switch (pp) {
325 case 0x0:
326 case 0x1:
327 case 0x2:
347a5c73 328 prot = PAGE_READ | PAGE_WRITE | PAGE_EXEC;
e01b4445
DG		 329 break;
330
496272a7
DG		 331 case 0x3:
332 case 0x6:
347a5c73 333 prot = PAGE_READ | PAGE_EXEC;
496272a7
DG		 334 break;
335 }
336 } else {
337 switch (pp) {
338 case 0x0:
339 case 0x6:
496272a7 340 break;
e01b4445 341
496272a7
DG		 342 case 0x1:
343 case 0x3:
347a5c73 344 prot = PAGE_READ | PAGE_EXEC;
496272a7 345 break;
e01b4445 346
496272a7 347 case 0x2:
347a5c73 348 prot = PAGE_READ | PAGE_WRITE | PAGE_EXEC;
496272a7
DG		 349 break;
350 }
351 }
496272a7 352
e01b4445 353 return prot;
496272a7
DG		 354}
355
a6152b52
SJS		 356/* Check the instruction access permissions specified in the IAMR */
357static int ppc_hash64_iamr_prot(PowerPCCPU *cpu, int key)
358{
359 CPUPPCState *env = &cpu->env;
360 int iamr_bits = (env->spr[SPR_IAMR] >> 2 * (31 - key)) & 0x3;
361
362 /*
363 * An instruction fetch is permitted if the IAMR bit is 0.
364 * If the bit is set, return PAGE_READ | PAGE_WRITE because this bit
365 * can only take away EXEC permissions not READ or WRITE permissions.
366 * If bit is cleared return PAGE_READ | PAGE_WRITE | PAGE_EXEC since
367 * EXEC permissions are allowed.
368 */
369 return (iamr_bits & 0x1) ? PAGE_READ | PAGE_WRITE :
370 PAGE_READ | PAGE_WRITE | PAGE_EXEC;
371}
372
7ef23068 373static int ppc_hash64_amr_prot(PowerPCCPU *cpu, ppc_hash_pte64_t pte)
f80872e2 374{
7ef23068 375 CPUPPCState *env = &cpu->env;
f80872e2 376 int key, amrbits;
363248e8 377 int prot = PAGE_READ | PAGE_WRITE | PAGE_EXEC;
f80872e2 378
f80872e2 379 /* Only recent MMUs implement Virtual Page Class Key Protection */
58969eee 380 if (!ppc_hash64_has(cpu, PPC_HASH64_AMR)) {
363248e8 381 return prot;
f80872e2
DG		 382 }
383
384 key = HPTE64_R_KEY(pte.pte1);
d75cbae8 385 amrbits = (env->spr[SPR_AMR] >> 2 * (31 - key)) & 0x3;
f80872e2
DG		 386
387 /* fprintf(stderr, "AMR protection: key=%d AMR=0x%" PRIx64 "\n", key, */
388 /* env->spr[SPR_AMR]); */
389
363248e8
CLG		 390 /*
391 * A store is permitted if the AMR bit is 0. Remove write
392 * protection if it is set.
393 */
f80872e2 394 if (amrbits & 0x2) {
363248e8 395 prot &= ~PAGE_WRITE;
f80872e2 396 }
363248e8
CLG		 397 /*
398 * A load is permitted if the AMR bit is 0. Remove read
399 * protection if it is set.
400 */
f80872e2 401 if (amrbits & 0x1) {
363248e8 402 prot &= ~PAGE_READ;
f80872e2
DG		 403 }
404
a6152b52
SJS		 405 switch (env->mmu_model) {
406 /*
407 * MMU version 2.07 and later support IAMR
408 * Check if the IAMR allows the instruction access - it will return
409 * PAGE_EXEC if it doesn't (and thus that bit will be cleared) or 0
410 * if it does (and prot will be unchanged indicating execution support).
411 */
412 case POWERPC_MMU_2_07:
413 case POWERPC_MMU_3_00:
414 prot &= ppc_hash64_iamr_prot(cpu, key);
415 break;
416 default:
417 break;
418 }
419
f80872e2
DG		 420 return prot;
421}
422
7222b94a
DG		 423const ppc_hash_pte64_t *ppc_hash64_map_hptes(PowerPCCPU *cpu,
424 hwaddr ptex, int n)
7c43bca0 425{
7222b94a 426 hwaddr pte_offset = ptex * HASH_PTE_SIZE_64;
3367c62f 427 hwaddr base;
e57ca75c
DG		 428 hwaddr plen = n * HASH_PTE_SIZE_64;
429 const ppc_hash_pte64_t *hptes;
7c43bca0 430
e57ca75c
DG		 431 if (cpu->vhyp) {
432 PPCVirtualHypervisorClass *vhc =
433 PPC_VIRTUAL_HYPERVISOR_GET_CLASS(cpu->vhyp);
434 return vhc->map_hptes(cpu->vhyp, ptex, n);
435 }
3367c62f 436 base = ppc_hash64_hpt_base(cpu);
e57ca75c
DG		 437
438 if (!base) {
439 return NULL;
440 }
441
f26404fb
PM		 442 hptes = address_space_map(CPU(cpu)->as, base + pte_offset, &plen, false,
443 MEMTXATTRS_UNSPECIFIED);
e57ca75c
DG		 444 if (plen < (n * HASH_PTE_SIZE_64)) {
445 hw_error("%s: Unable to map all requested HPTEs\n", __func__);
7c43bca0 446 }
7222b94a 447 return hptes;
7c43bca0
AK		 448}
449
7222b94a
DG		 450void ppc_hash64_unmap_hptes(PowerPCCPU *cpu, const ppc_hash_pte64_t *hptes,
451 hwaddr ptex, int n)
7c43bca0 452{
e57ca75c
DG		 453 if (cpu->vhyp) {
454 PPCVirtualHypervisorClass *vhc =
455 PPC_VIRTUAL_HYPERVISOR_GET_CLASS(cpu->vhyp);
456 vhc->unmap_hptes(cpu->vhyp, hptes, ptex, n);
457 return;
7c43bca0 458 }
e57ca75c
DG		 459
460 address_space_unmap(CPU(cpu)->as, (void *)hptes, n * HASH_PTE_SIZE_64,
461 false, n * HASH_PTE_SIZE_64);
7c43bca0
AK		 462}
463
b07c59f7
DG		 464static unsigned hpte_page_shift(const PPCHash64SegmentPageSizes *sps,
465 uint64_t pte0, uint64_t pte1)
4322e8ce 466{
651060ab
DG		 467 int i;
468
469 if (!(pte0 & HPTE64_V_LARGE)) {
470 if (sps->page_shift != 12) {
471 /* 4kiB page in a non 4kiB segment */
472 return 0;
473 }
474 /* Normal 4kiB page */
4322e8ce 475 return 12;
651060ab
DG		 476 }
477
478 for (i = 0; i < PPC_PAGE_SIZES_MAX_SZ; i++) {
b07c59f7 479 const PPCHash64PageSize *ps = &sps->enc[i];
651060ab
DG		 480 uint64_t mask;
481
482 if (!ps->page_shift) {
483 break;
4322e8ce 484 }
651060ab
DG		 485
486 if (ps->page_shift == 12) {
487 /* L bit is set so this can't be a 4kiB page */
488 continue;
489 }
490
491 mask = ((1ULL << ps->page_shift) - 1) & HPTE64_R_RPN;
492
b56d417b 493 if ((pte1 & mask) == ((uint64_t)ps->pte_enc << HPTE64_R_RPN_SHIFT)) {
651060ab 494 return ps->page_shift;
4322e8ce 495 }
4322e8ce 496 }
651060ab
DG		 497
498 return 0; /* Bad page size encoding */
4322e8ce
BH		 499}
500
34525595
BH		 501static void ppc64_v3_new_to_old_hpte(target_ulong *pte0, target_ulong *pte1)
502{
503 /* Insert B into pte0 */
504 *pte0 = (*pte0 & HPTE64_V_COMMON_BITS) |
505 ((*pte1 & HPTE64_R_3_0_SSIZE_MASK) <<
506 (HPTE64_V_SSIZE_SHIFT - HPTE64_R_3_0_SSIZE_SHIFT));
507
508 /* Remove B from pte1 */
509 *pte1 = *pte1 & ~HPTE64_R_3_0_SSIZE_MASK;
510}
511
512
7ef23068 513static hwaddr ppc_hash64_pteg_search(PowerPCCPU *cpu, hwaddr hash,
b07c59f7 514 const PPCHash64SegmentPageSizes *sps,
2c7ad804 515 target_ulong ptem,
94986863 516 ppc_hash_pte64_t *pte, unsigned *pshift)
aea390e4 517{
aea390e4 518 int i;
7222b94a 519 const ppc_hash_pte64_t *pteg;
7c43bca0 520 target_ulong pte0, pte1;
7222b94a 521 target_ulong ptex;
aea390e4 522
36778660 523 ptex = (hash & ppc_hash64_hpt_mask(cpu)) * HPTES_PER_GROUP;
7222b94a
DG		 524 pteg = ppc_hash64_map_hptes(cpu, ptex, HPTES_PER_GROUP);
525 if (!pteg) {
7c43bca0
AK		 526 return -1;
527 }
aea390e4 528 for (i = 0; i < HPTES_PER_GROUP; i++) {
7222b94a 529 pte0 = ppc_hash64_hpte0(cpu, pteg, i);
3054b0ca
BH		 530 /*
531 * pte0 contains the valid bit and must be read before pte1,
532 * otherwise we might see an old pte1 with a new valid bit and
533 * thus an inconsistent hpte value
534 */
535 smp_rmb();
7222b94a 536 pte1 = ppc_hash64_hpte1(cpu, pteg, i);
aea390e4 537
34525595
BH		 538 /* Convert format if necessary */
539 if (cpu->env.mmu_model == POWERPC_MMU_3_00 && !cpu->vhyp) {
540 ppc64_v3_new_to_old_hpte(&pte0, &pte1);
541 }
542
073de86a
DG		 543 /* This compares V, B, H (secondary) and the AVPN */
544 if (HPTE64_V_COMPARE(pte0, ptem)) {
2c7ad804 545 *pshift = hpte_page_shift(sps, pte0, pte1);
651060ab
DG		 546 /*
547 * If there is no match, ignore the PTE, it could simply
548 * be for a different segment size encoding and the
549 * architecture specifies we should not match. Linux will
550 * potentially leave behind PTEs for the wrong base page
551 * size when demoting segments.
552 */
94986863 553 if (*pshift == 0) {
4322e8ce
BH		 554 continue;
555 }
d75cbae8
DG		 556 /*
557 * We don't do anything with pshift yet as qemu TLB only
558 * deals with 4K pages anyway
4322e8ce 559 */
aea390e4
DG		 560 pte->pte0 = pte0;
561 pte->pte1 = pte1;
7222b94a
DG		 562 ppc_hash64_unmap_hptes(cpu, pteg, ptex, HPTES_PER_GROUP);
563 return ptex + i;
aea390e4 564 }
aea390e4 565 }
7222b94a 566 ppc_hash64_unmap_hptes(cpu, pteg, ptex, HPTES_PER_GROUP);
7c43bca0
AK		 567 /*
568 * We didn't find a valid entry.
569 */
aea390e4
DG		 570 return -1;
571}
572
7ef23068 573static hwaddr ppc_hash64_htab_lookup(PowerPCCPU *cpu,
7f3bdc2d 574 ppc_slb_t *slb, target_ulong eaddr,
94986863 575 ppc_hash_pte64_t *pte, unsigned *pshift)
c69b6151 576{
7ef23068 577 CPUPPCState *env = &cpu->env;
7222b94a 578 hwaddr hash, ptex;
cd6a9bb6 579 uint64_t vsid, epnmask, epn, ptem;
b07c59f7 580 const PPCHash64SegmentPageSizes *sps = slb->sps;
cd6a9bb6 581
d75cbae8
DG		 582 /*
583 * The SLB store path should prevent any bad page size encodings
584 * getting in there, so:
585 */
2c7ad804 586 assert(sps);
a1ff751a 587
2c7ad804
BH		 588 /* If ISL is set in LPCR we need to clamp the page size to 4K */
589 if (env->spr[SPR_LPCR] & LPCR_ISL) {
590 /* We assume that when using TCG, 4k is first entry of SPS */
b07c59f7 591 sps = &cpu->hash64_opts->sps[0];
2c7ad804
BH		 592 assert(sps->page_shift == 12);
593 }
594
595 epnmask = ~((1ULL << sps->page_shift) - 1);
a1ff751a 596
a1ff751a 597 if (slb->vsid & SLB_VSID_B) {
18148898
DG		 598 /* 1TB segment */
599 vsid = (slb->vsid & SLB_VSID_VSID) >> SLB_VSID_SHIFT_1T;
600 epn = (eaddr & ~SEGMENT_MASK_1T) & epnmask;
2c7ad804 601 hash = vsid ^ (vsid << 25) ^ (epn >> sps->page_shift);
a1ff751a 602 } else {
18148898
DG		 603 /* 256M segment */
604 vsid = (slb->vsid & SLB_VSID_VSID) >> SLB_VSID_SHIFT;
605 epn = (eaddr & ~SEGMENT_MASK_256M) & epnmask;
2c7ad804 606 hash = vsid ^ (epn >> sps->page_shift);
a1ff751a 607 }
18148898 608 ptem = (slb->vsid & SLB_VSID_PTEM) | ((epn >> 16) & HPTE64_V_AVPN);
073de86a 609 ptem |= HPTE64_V_VALID;
a1ff751a 610
a1ff751a 611 /* Page address translation */
339aaf5b
AP		 612 qemu_log_mask(CPU_LOG_MMU,
613 "htab_base " TARGET_FMT_plx " htab_mask " TARGET_FMT_plx
a1ff751a 614 " hash " TARGET_FMT_plx "\n",
36778660 615 ppc_hash64_hpt_base(cpu), ppc_hash64_hpt_mask(cpu), hash);
a1ff751a 616
a1ff751a 617 /* Primary PTEG lookup */
339aaf5b
AP		 618 qemu_log_mask(CPU_LOG_MMU,
619 "0 htab=" TARGET_FMT_plx "/" TARGET_FMT_plx
a1ff751a
DG		 620 " vsid=" TARGET_FMT_lx " ptem=" TARGET_FMT_lx
621 " hash=" TARGET_FMT_plx "\n",
36778660
DG		 622 ppc_hash64_hpt_base(cpu), ppc_hash64_hpt_mask(cpu),
623 vsid, ptem, hash);
7222b94a 624 ptex = ppc_hash64_pteg_search(cpu, hash, sps, ptem, pte, pshift);
7f3bdc2d 625
7222b94a 626 if (ptex == -1) {
a1ff751a 627 /* Secondary PTEG lookup */
073de86a 628 ptem |= HPTE64_V_SECONDARY;
339aaf5b
AP		 629 qemu_log_mask(CPU_LOG_MMU,
630 "1 htab=" TARGET_FMT_plx "/" TARGET_FMT_plx
a1ff751a 631 " vsid=" TARGET_FMT_lx " api=" TARGET_FMT_lx
36778660
DG		 632 " hash=" TARGET_FMT_plx "\n", ppc_hash64_hpt_base(cpu),
633 ppc_hash64_hpt_mask(cpu), vsid, ptem, ~hash);
a1ff751a 634
7222b94a 635 ptex = ppc_hash64_pteg_search(cpu, ~hash, sps, ptem, pte, pshift);
a1ff751a
DG		 636 }
637
7222b94a 638 return ptex;
c69b6151 639}
0480884f 640
1114e712 641unsigned ppc_hash64_hpte_page_shift_noslb(PowerPCCPU *cpu,
1f0252e6 642 uint64_t pte0, uint64_t pte1)
1114e712 643{
1114e712
DG		 644 int i;
645
646 if (!(pte0 & HPTE64_V_LARGE)) {
1114e712
DG		 647 return 12;
648 }
649
650 /*
651 * The encodings in env->sps need to be carefully chosen so that
652 * this gives an unambiguous result.
653 */
654 for (i = 0; i < PPC_PAGE_SIZES_MAX_SZ; i++) {
b07c59f7 655 const PPCHash64SegmentPageSizes *sps = &cpu->hash64_opts->sps[i];
1114e712
DG		 656 unsigned shift;
657
658 if (!sps->page_shift) {
659 break;
660 }
661
662 shift = hpte_page_shift(sps, pte0, pte1);
663 if (shift) {
1114e712
DG		 664 return shift;
665 }
666 }
667
1114e712
DG		 668 return 0;
669}
670
8fe08fac 671static void ppc_hash64_set_isi(CPUState *cs, uint64_t error_code)
33595dc9 672{
8fe08fac 673 CPUPPCState *env = &POWERPC_CPU(cs)->env;
33595dc9
BH		 674 bool vpm;
675
676 if (msr_ir) {
677 vpm = !!(env->spr[SPR_LPCR] & LPCR_VPM1);
678 } else {
50659083
SJS		 679 switch (env->mmu_model) {
680 case POWERPC_MMU_3_00:
681 /* Field deprecated in ISAv3.00 - interrupts always go to hyperv */
682 vpm = true;
683 break;
684 default:
685 vpm = !!(env->spr[SPR_LPCR] & LPCR_VPM0);
686 break;
687 }
33595dc9
BH		 688 }
689 if (vpm && !msr_hv) {
690 cs->exception_index = POWERPC_EXCP_HISI;
691 } else {
692 cs->exception_index = POWERPC_EXCP_ISI;
693 }
694 env->error_code = error_code;
695}
696
8fe08fac 697static void ppc_hash64_set_dsi(CPUState *cs, uint64_t dar, uint64_t dsisr)
33595dc9 698{
8fe08fac 699 CPUPPCState *env = &POWERPC_CPU(cs)->env;
33595dc9
BH		 700 bool vpm;
701
702 if (msr_dr) {
703 vpm = !!(env->spr[SPR_LPCR] & LPCR_VPM1);
704 } else {
50659083
SJS		 705 switch (env->mmu_model) {
706 case POWERPC_MMU_3_00:
707 /* Field deprecated in ISAv3.00 - interrupts always go to hyperv */
708 vpm = true;
709 break;
710 default:
711 vpm = !!(env->spr[SPR_LPCR] & LPCR_VPM0);
712 break;
713 }
33595dc9
BH		 714 }
715 if (vpm && !msr_hv) {
716 cs->exception_index = POWERPC_EXCP_HDSI;
717 env->spr[SPR_HDAR] = dar;
718 env->spr[SPR_HDSISR] = dsisr;
719 } else {
720 cs->exception_index = POWERPC_EXCP_DSI;
721 env->spr[SPR_DAR] = dar;
722 env->spr[SPR_DSISR] = dsisr;
723 }
724 env->error_code = 0;
725}
726
727
a2dd4e83
BH		 728static void ppc_hash64_set_r(PowerPCCPU *cpu, hwaddr ptex, uint64_t pte1)
729{
730 hwaddr base, offset = ptex * HASH_PTE_SIZE_64 + 16;
731
732 if (cpu->vhyp) {
733 PPCVirtualHypervisorClass *vhc =
734 PPC_VIRTUAL_HYPERVISOR_GET_CLASS(cpu->vhyp);
735 vhc->hpte_set_r(cpu->vhyp, ptex, pte1);
736 return;
737 }
738 base = ppc_hash64_hpt_base(cpu);
739
740
741 /* The HW performs a non-atomic byte update */
742 stb_phys(CPU(cpu)->as, base + offset, ((pte1 >> 8) & 0xff) | 0x01);
743}
744
745static void ppc_hash64_set_c(PowerPCCPU *cpu, hwaddr ptex, uint64_t pte1)
746{
747 hwaddr base, offset = ptex * HASH_PTE_SIZE_64 + 15;
748
749 if (cpu->vhyp) {
750 PPCVirtualHypervisorClass *vhc =
751 PPC_VIRTUAL_HYPERVISOR_GET_CLASS(cpu->vhyp);
752 vhc->hpte_set_c(cpu->vhyp, ptex, pte1);
753 return;
754 }
755 base = ppc_hash64_hpt_base(cpu);
756
757 /* The HW performs a non-atomic byte update */
758 stb_phys(CPU(cpu)->as, base + offset, (pte1 & 0xff) | 0x80);
759}
760
b2305601 761int ppc_hash64_handle_mmu_fault(PowerPCCPU *cpu, vaddr eaddr,
caa597bd 762 int rwx, int mmu_idx)
0480884f 763{
d0e39c5d
AF		 764 CPUState *cs = CPU(cpu);
765 CPUPPCState *env = &cpu->env;
0480884f 766 ppc_slb_t *slb;
be18b2b5 767 unsigned apshift;
7222b94a 768 hwaddr ptex;
7f3bdc2d 769 ppc_hash_pte64_t pte;
07a68f99 770 int exec_prot, pp_prot, amr_prot, prot;
e01b4445 771 const int need_prot[] = {PAGE_READ, PAGE_WRITE, PAGE_EXEC};
caa597bd 772 hwaddr raddr;
0480884f 773
6a980110
DG		 774 assert((rwx == 0) || (rwx == 1) || (rwx == 2));
775
d75cbae8
DG		 776 /*
777 * Note on LPCR usage: 970 uses HID4, but our special variant of
778 * store_spr copies relevant fields into env->spr[SPR_LPCR].
779 * Similarily we filter unimplemented bits when storing into LPCR
780 * depending on the MMU version. This code can thus just use the
781 * LPCR "as-is".
912acdf4
BH		 782 */
783
65d61643
DG		 784 /* 1. Handle real mode accesses */
785 if (((rwx == 2) && (msr_ir == 0)) || ((rwx != 2) && (msr_dr == 0))) {
d75cbae8
DG		 786 /*
787 * Translation is supposedly "off", but in real mode the top 4
788 * effective address bits are (mostly) ignored
789 */
caa597bd 790 raddr = eaddr & 0x0FFFFFFFFFFFFFFFULL;
912acdf4
BH		 791
792 /* In HV mode, add HRMOR if top EA bit is clear */
793 if (msr_hv || !env->has_hv_mode) {
794 if (!(eaddr >> 63)) {
795 raddr |= env->spr[SPR_HRMOR];
796 }
797 } else {
798 /* Otherwise, check VPM for RMA vs VRMA */
799 if (env->spr[SPR_LPCR] & LPCR_VPM0) {
800 slb = &env->vrma_slb;
801 if (slb->sps) {
802 goto skip_slb_search;
803 }
804 /* Not much else to do here */
805 cs->exception_index = POWERPC_EXCP_MCHECK;
806 env->error_code = 0;
807 return 1;
808 } else if (raddr < env->rmls) {
809 /* RMA. Check bounds in RMLS */
810 raddr |= env->spr[SPR_RMOR];
811 } else {
812 /* The access failed, generate the approriate interrupt */
813 if (rwx == 2) {
8fe08fac 814 ppc_hash64_set_isi(cs, SRR1_PROTFAULT);
912acdf4 815 } else {
da82c73a 816 int dsisr = DSISR_PROTFAULT;
912acdf4 817 if (rwx == 1) {
da82c73a 818 dsisr |= DSISR_ISSTORE;
912acdf4 819 }
8fe08fac 820 ppc_hash64_set_dsi(cs, eaddr, dsisr);
912acdf4
BH		 821 }
822 return 1;
823 }
824 }
0c591eb0 825 tlb_set_page(cs, eaddr & TARGET_PAGE_MASK, raddr & TARGET_PAGE_MASK,
caa597bd
DG		 826 PAGE_READ | PAGE_WRITE | PAGE_EXEC, mmu_idx,
827 TARGET_PAGE_SIZE);
65d61643
DG		 828 return 0;
829 }
830
bb218042 831 /* 2. Translation is on, so look up the SLB */
7ef23068 832 slb = slb_lookup(cpu, eaddr);
0480884f 833 if (!slb) {
b2899495 834 /* No entry found, check if in-memory segment tables are in use */
ca79b3b7 835 if (ppc64_use_proc_tbl(cpu)) {
b2899495
SJS		 836 /* TODO - Unsupported */
837 error_report("Segment Table Support Unimplemented");
838 exit(1);
839 }
840 /* Segment still not found, generate the appropriate interrupt */
caa597bd 841 if (rwx == 2) {
27103424 842 cs->exception_index = POWERPC_EXCP_ISEG;
caa597bd
DG		 843 env->error_code = 0;
844 } else {
27103424 845 cs->exception_index = POWERPC_EXCP_DSEG;
caa597bd
DG		 846 env->error_code = 0;
847 env->spr[SPR_DAR] = eaddr;
848 }
849 return 1;
0480884f
DG		 850 }
851
912acdf4
BH		 852skip_slb_search:
853
bb218042
DG		 854 /* 3. Check for segment level no-execute violation */
855 if ((rwx == 2) && (slb->vsid & SLB_VSID_N)) {
8fe08fac 856 ppc_hash64_set_isi(cs, SRR1_NOEXEC_GUARD);
caa597bd 857 return 1;
bb218042
DG		 858 }
859
7f3bdc2d 860 /* 4. Locate the PTE in the hash table */
7222b94a
DG		 861 ptex = ppc_hash64_htab_lookup(cpu, slb, eaddr, &pte, &apshift);
862 if (ptex == -1) {
caa597bd 863 if (rwx == 2) {
8fe08fac 864 ppc_hash64_set_isi(cs, SRR1_NOPTE);
caa597bd 865 } else {
da82c73a 866 int dsisr = DSISR_NOPTE;
caa597bd 867 if (rwx == 1) {
da82c73a 868 dsisr |= DSISR_ISSTORE;
caa597bd 869 }
8fe08fac 870 ppc_hash64_set_dsi(cs, eaddr, dsisr);
caa597bd
DG		 871 }
872 return 1;
7f3bdc2d 873 }
339aaf5b 874 qemu_log_mask(CPU_LOG_MMU,
7222b94a 875 "found PTE at index %08" HWADDR_PRIx "\n", ptex);
7f3bdc2d
DG		 876
877 /* 5. Check access permissions */
7f3bdc2d 878
07a68f99 879 exec_prot = ppc_hash64_pte_noexec_guard(cpu, pte);
7ef23068
DG		 880 pp_prot = ppc_hash64_pte_prot(cpu, slb, pte);
881 amr_prot = ppc_hash64_amr_prot(cpu, pte);
07a68f99 882 prot = exec_prot & pp_prot & amr_prot;
6a980110 883
caa597bd 884 if ((need_prot[rwx] & ~prot) != 0) {
6a980110 885 /* Access right violation */
339aaf5b 886 qemu_log_mask(CPU_LOG_MMU, "PTE access rejected\n");
caa597bd 887 if (rwx == 2) {
a6152b52 888 int srr1 = 0;
07a68f99
SJS		 889 if (PAGE_EXEC & ~exec_prot) {
890 srr1 |= SRR1_NOEXEC_GUARD; /* Access violates noexec or guard */
891 } else if (PAGE_EXEC & ~pp_prot) {
a6152b52
SJS		 892 srr1 |= SRR1_PROTFAULT; /* Access violates access authority */
893 }
894 if (PAGE_EXEC & ~amr_prot) {
895 srr1 |= SRR1_IAMR; /* Access violates virt pg class key prot */
896 }
8fe08fac 897 ppc_hash64_set_isi(cs, srr1);
caa597bd 898 } else {
da82c73a 899 int dsisr = 0;
f80872e2 900 if (need_prot[rwx] & ~pp_prot) {
da82c73a 901 dsisr |= DSISR_PROTFAULT;
f80872e2 902 }
caa597bd 903 if (rwx == 1) {
da82c73a 904 dsisr |= DSISR_ISSTORE;
f80872e2
DG		 905 }
906 if (need_prot[rwx] & ~amr_prot) {
da82c73a 907 dsisr |= DSISR_AMR;
caa597bd 908 }
8fe08fac 909 ppc_hash64_set_dsi(cs, eaddr, dsisr);
caa597bd
DG		 910 }
911 return 1;
6a980110
DG		 912 }
913
339aaf5b 914 qemu_log_mask(CPU_LOG_MMU, "PTE access granted !\n");
87dc3fd1
DG		 915
916 /* 6. Update PTE referenced and changed bits if necessary */
917
a2dd4e83
BH		 918 if (!(pte.pte1 & HPTE64_R_R)) {
919 ppc_hash64_set_r(cpu, ptex, pte.pte1);
b3440746 920 }
a2dd4e83
BH		 921 if (!(pte.pte1 & HPTE64_R_C)) {
922 if (rwx == 1) {
923 ppc_hash64_set_c(cpu, ptex, pte.pte1);
924 } else {
925 /*
926 * Treat the page as read-only for now, so that a later write
927 * will pass through this function again to set the C bit
928 */
929 prot &= ~PAGE_WRITE;
930 }
7f3bdc2d 931 }
0480884f 932
6d11d998
DG		 933 /* 7. Determine the real address from the PTE */
934
be18b2b5 935 raddr = deposit64(pte.pte1 & HPTE64_R_RPN, 0, apshift, eaddr);
caa597bd 936
0c591eb0 937 tlb_set_page(cs, eaddr & TARGET_PAGE_MASK, raddr & TARGET_PAGE_MASK,
be18b2b5 938 prot, mmu_idx, 1ULL << apshift);
e01b4445 939
e01b4445 940 return 0;
0480884f 941}
629bd516 942
7ef23068 943hwaddr ppc_hash64_get_phys_page_debug(PowerPCCPU *cpu, target_ulong addr)
f2ad6be8 944{
7ef23068 945 CPUPPCState *env = &cpu->env;
5883d8b2 946 ppc_slb_t *slb;
7222b94a 947 hwaddr ptex, raddr;
5883d8b2 948 ppc_hash_pte64_t pte;
be18b2b5 949 unsigned apshift;
5883d8b2 950
912acdf4 951 /* Handle real mode */
5883d8b2
DG		 952 if (msr_dr == 0) {
953 /* In real mode the top 4 effective address bits are ignored */
912acdf4 954 raddr = addr & 0x0FFFFFFFFFFFFFFFULL;
f2ad6be8 955
912acdf4
BH		 956 /* In HV mode, add HRMOR if top EA bit is clear */
957 if ((msr_hv || !env->has_hv_mode) && !(addr >> 63)) {
958 return raddr | env->spr[SPR_HRMOR];
959 }
960
961 /* Otherwise, check VPM for RMA vs VRMA */
962 if (env->spr[SPR_LPCR] & LPCR_VPM0) {
963 slb = &env->vrma_slb;
964 if (!slb->sps) {
965 return -1;
966 }
967 } else if (raddr < env->rmls) {
968 /* RMA. Check bounds in RMLS */
969 return raddr | env->spr[SPR_RMOR];
970 } else {
971 return -1;
972 }
973 } else {
974 slb = slb_lookup(cpu, addr);
975 if (!slb) {
976 return -1;
977 }
5883d8b2
DG		 978 }
979
7222b94a
DG		 980 ptex = ppc_hash64_htab_lookup(cpu, slb, addr, &pte, &apshift);
981 if (ptex == -1) {
f2ad6be8
DG		 982 return -1;
983 }
984
be18b2b5 985 return deposit64(pte.pte1 & HPTE64_R_RPN, 0, apshift, addr)
cd6a9bb6 986 & TARGET_PAGE_MASK;
f2ad6be8 987}
c1385933 988
7222b94a 989void ppc_hash64_tlb_flush_hpte(PowerPCCPU *cpu, target_ulong ptex,
61a36c9b
DG		 990 target_ulong pte0, target_ulong pte1)
991{
992 /*
993 * XXX: given the fact that there are too many segments to
994 * invalidate, and we still don't have a tlb_flush_mask(env, n,
995 * mask) in QEMU, we just invalidate all TLBs
996 */
d76ab5e1 997 cpu->env.tlb_need_flush = TLB_NEED_GLOBAL_FLUSH | TLB_NEED_LOCAL_FLUSH;
61a36c9b 998}
4b3fc377 999
5ad55315 1000static void ppc_hash64_update_rmls(PowerPCCPU *cpu)
912acdf4 1001{
8fe08fac 1002 CPUPPCState *env = &cpu->env;
912acdf4
BH		 1003 uint64_t lpcr = env->spr[SPR_LPCR];
1004
1005 /*
1006 * This is the full 4 bits encoding of POWER8. Previous
1007 * CPUs only support a subset of these but the filtering
1008 * is done when writing LPCR
1009 */
1010 switch ((lpcr & LPCR_RMLS) >> LPCR_RMLS_SHIFT) {
1011 case 0x8: /* 32MB */
1012 env->rmls = 0x2000000ull;
1013 break;
1014 case 0x3: /* 64MB */
1015 env->rmls = 0x4000000ull;
1016 break;
1017 case 0x7: /* 128MB */
1018 env->rmls = 0x8000000ull;
1019 break;
1020 case 0x4: /* 256MB */
1021 env->rmls = 0x10000000ull;
1022 break;
1023 case 0x2: /* 1GB */
1024 env->rmls = 0x40000000ull;
1025 break;
1026 case 0x1: /* 16GB */
1027 env->rmls = 0x400000000ull;
1028 break;
1029 default:
1030 /* What to do here ??? */
1031 env->rmls = 0;
1032 }
1033}
1034
5ad55315 1035static void ppc_hash64_update_vrma(PowerPCCPU *cpu)
912acdf4 1036{
8fe08fac 1037 CPUPPCState *env = &cpu->env;
b07c59f7 1038 const PPCHash64SegmentPageSizes *sps = NULL;
912acdf4
BH		 1039 target_ulong esid, vsid, lpcr;
1040 ppc_slb_t *slb = &env->vrma_slb;
1041 uint32_t vrmasd;
1042 int i;
1043
1044 /* First clear it */
1045 slb->esid = slb->vsid = 0;
1046 slb->sps = NULL;
1047
1048 /* Is VRMA enabled ? */
1049 lpcr = env->spr[SPR_LPCR];
1050 if (!(lpcr & LPCR_VPM0)) {
1051 return;
1052 }
1053
d75cbae8
DG		 1054 /*
1055 * Make one up. Mostly ignore the ESID which will not be needed
1056 * for translation
912acdf4
BH		 1057 */
1058 vsid = SLB_VSID_VRMA;
1059 vrmasd = (lpcr & LPCR_VRMASD) >> LPCR_VRMASD_SHIFT;
1060 vsid |= (vrmasd << 4) & (SLB_VSID_L | SLB_VSID_LP);
1061 esid = SLB_ESID_V;
1062
8fe08fac 1063 for (i = 0; i < PPC_PAGE_SIZES_MAX_SZ; i++) {
b07c59f7 1064 const PPCHash64SegmentPageSizes *sps1 = &cpu->hash64_opts->sps[i];
912acdf4
BH		 1065
1066 if (!sps1->page_shift) {
1067 break;
1068 }
1069
1070 if ((vsid & SLB_VSID_LLP_MASK) == sps1->slb_enc) {
1071 sps = sps1;
1072 break;
1073 }
1074 }
1075
1076 if (!sps) {
1077 error_report("Bad page size encoding esid 0x"TARGET_FMT_lx
1078 " vsid 0x"TARGET_FMT_lx, esid, vsid);
1079 return;
1080 }
1081
1082 slb->vsid = vsid;
1083 slb->esid = esid;
1084 slb->sps = sps;
1085}
1086
5ad55315 1087void ppc_store_lpcr(PowerPCCPU *cpu, target_ulong val)
4b3fc377 1088{
5ad55315 1089 CPUPPCState *env = &cpu->env;
4b3fc377
BH		 1090 uint64_t lpcr = 0;
1091
1092 /* Filter out bits */
0941d728
DG		 1093 switch (env->mmu_model) {
1094 case POWERPC_MMU_64B: /* 970 */
4b3fc377
BH		 1095 if (val & 0x40) {
1096 lpcr |= LPCR_LPES0;
1097 }
1098 if (val & 0x8000000000000000ull) {
1099 lpcr |= LPCR_LPES1;
1100 }
1101 if (val & 0x20) {
1102 lpcr |= (0x4ull << LPCR_RMLS_SHIFT);
1103 }
1104 if (val & 0x4000000000000000ull) {
1105 lpcr |= (0x2ull << LPCR_RMLS_SHIFT);
1106 }
1107 if (val & 0x2000000000000000ull) {
1108 lpcr |= (0x1ull << LPCR_RMLS_SHIFT);
1109 }
1110 env->spr[SPR_RMOR] = ((lpcr >> 41) & 0xffffull) << 26;
1111
d75cbae8
DG		 1112 /*
1113 * XXX We could also write LPID from HID4 here
4b3fc377
BH		 1114 * but since we don't tag any translation on it
1115 * it doesn't actually matter
d75cbae8
DG		 1116 *
1117 * XXX For proper emulation of 970 we also need
4b3fc377
BH		 1118 * to dig HRMOR out of HID5
1119 */
1120 break;
0941d728 1121 case POWERPC_MMU_2_03: /* P5p */
4b3fc377
BH		 1122 lpcr = val & (LPCR_RMLS | LPCR_ILE |
1123 LPCR_LPES0 | LPCR_LPES1 |
1124 LPCR_RMI | LPCR_HDICE);
1125 break;
0941d728 1126 case POWERPC_MMU_2_06: /* P7 */
4b3fc377
BH		 1127 lpcr = val & (LPCR_VPM0 | LPCR_VPM1 | LPCR_ISL | LPCR_DPFD |
1128 LPCR_VRMASD | LPCR_RMLS | LPCR_ILE |
1129 LPCR_P7_PECE0 | LPCR_P7_PECE1 | LPCR_P7_PECE2 |
1130 LPCR_MER | LPCR_TC |
1131 LPCR_LPES0 | LPCR_LPES1 | LPCR_HDICE);
1132 break;
0941d728 1133 case POWERPC_MMU_2_07: /* P8 */
4b3fc377
BH		 1134 lpcr = val & (LPCR_VPM0 | LPCR_VPM1 | LPCR_ISL | LPCR_KBV |
1135 LPCR_DPFD | LPCR_VRMASD | LPCR_RMLS | LPCR_ILE |
1136 LPCR_AIL | LPCR_ONL | LPCR_P8_PECE0 | LPCR_P8_PECE1 |
1137 LPCR_P8_PECE2 | LPCR_P8_PECE3 | LPCR_P8_PECE4 |
1138 LPCR_MER | LPCR_TC | LPCR_LPES0 | LPCR_HDICE);
1139 break;
0941d728 1140 case POWERPC_MMU_3_00: /* P9 */
18aa49ec
SJS		 1141 lpcr = val & (LPCR_VPM1 | LPCR_ISL | LPCR_KBV | LPCR_DPFD |
1142 (LPCR_PECE_U_MASK & LPCR_HVEE) | LPCR_ILE | LPCR_AIL |
a8dafa52 1143 LPCR_UPRT | LPCR_EVIRT | LPCR_ONL | LPCR_HR | LPCR_LD |
18aa49ec
SJS		 1144 (LPCR_PECE_L_MASK & (LPCR_PDEE | LPCR_HDEE | LPCR_EEE |
1145 LPCR_DEE | LPCR_OEE)) | LPCR_MER | LPCR_GTSE | LPCR_TC |
1146 LPCR_HEIC | LPCR_LPES0 | LPCR_HVICE | LPCR_HDICE);
2b9e0a6b
BH		 1147 /*
1148 * If we have a virtual hypervisor, we need to bring back RMLS. It
1149 * doesn't exist on an actual P9 but that's all we know how to
1150 * configure with softmmu at the moment
1151 */
1152 if (cpu->vhyp) {
1153 lpcr |= (val & LPCR_RMLS);
1154 }
18aa49ec 1155 break;
4b3fc377
BH		 1156 default:
1157 ;
1158 }
1159 env->spr[SPR_LPCR] = lpcr;
8fe08fac
DG		 1160 ppc_hash64_update_rmls(cpu);
1161 ppc_hash64_update_vrma(cpu);
4b3fc377 1162}
a059471d 1163
5ad55315
DG		 1164void helper_store_lpcr(CPUPPCState *env, target_ulong val)
1165{
db70b311 1166 PowerPCCPU *cpu = env_archcpu(env);
5ad55315
DG		 1167
1168 ppc_store_lpcr(cpu, val);
1169}
1170
a059471d
DG		 1171void ppc_hash64_init(PowerPCCPU *cpu)
1172{
1173 CPUPPCState *env = &cpu->env;
1174 PowerPCCPUClass *pcc = POWERPC_CPU_GET_CLASS(cpu);
1175
21e405f1
DG		 1176 if (!pcc->hash64_opts) {
1177 assert(!(env->mmu_model & POWERPC_MMU_64));
1178 return;
a059471d 1179 }
21e405f1
DG		 1180
1181 cpu->hash64_opts = g_memdup(pcc->hash64_opts, sizeof(*cpu->hash64_opts));
a059471d
DG		 1182}
1183
1184void ppc_hash64_finalize(PowerPCCPU *cpu)
1185{
b07c59f7 1186 g_free(cpu->hash64_opts);
a059471d 1187}
b07c59f7 1188
21e405f1 1189const PPCHash64Options ppc_hash64_opts_basic = {
58969eee 1190 .flags = 0,
67d7d66f 1191 .slb_size = 64,
21e405f1
DG		 1192 .sps = {
1193 { .page_shift = 12, /* 4K */
1194 .slb_enc = 0,
1195 .enc = { { .page_shift = 12, .pte_enc = 0 } }
1196 },
1197 { .page_shift = 24, /* 16M */
1198 .slb_enc = 0x100,
1199 .enc = { { .page_shift = 24, .pte_enc = 0 } }
1200 },
1201 },
1202};
1203
b07c59f7 1204const PPCHash64Options ppc_hash64_opts_POWER7 = {
26cd35b8 1205 .flags = PPC_HASH64_1TSEG | PPC_HASH64_AMR | PPC_HASH64_CI_LARGEPAGE,
67d7d66f 1206 .slb_size = 32,
b07c59f7
DG		 1207 .sps = {
1208 {
1209 .page_shift = 12, /* 4K */
1210 .slb_enc = 0,
1211 .enc = { { .page_shift = 12, .pte_enc = 0 },
1212 { .page_shift = 16, .pte_enc = 0x7 },
1213 { .page_shift = 24, .pte_enc = 0x38 }, },
1214 },
1215 {
1216 .page_shift = 16, /* 64K */
1217 .slb_enc = SLB_VSID_64K,
1218 .enc = { { .page_shift = 16, .pte_enc = 0x1 },
1219 { .page_shift = 24, .pte_enc = 0x8 }, },
1220 },
1221 {
1222 .page_shift = 24, /* 16M */
1223 .slb_enc = SLB_VSID_16M,
1224 .enc = { { .page_shift = 24, .pte_enc = 0 }, },
1225 },
1226 {
1227 .page_shift = 34, /* 16G */
1228 .slb_enc = SLB_VSID_16G,
1229 .enc = { { .page_shift = 34, .pte_enc = 0x3 }, },
1230 },
1231 }
1232};
27f00f0a
DG		 1233
1234void ppc_hash64_filter_pagesizes(PowerPCCPU *cpu,
1235 bool (*cb)(void *, uint32_t, uint32_t),
1236 void *opaque)
1237{
1238 PPCHash64Options *opts = cpu->hash64_opts;
1239 int i;
1240 int n = 0;
1241 bool ci_largepage = false;
1242
1243 assert(opts);
1244
1245 n = 0;
1246 for (i = 0; i < ARRAY_SIZE(opts->sps); i++) {
1247 PPCHash64SegmentPageSizes *sps = &opts->sps[i];
1248 int j;
1249 int m = 0;
1250
1251 assert(n <= i);
1252
1253 if (!sps->page_shift) {
1254 break;
1255 }
1256
1257 for (j = 0; j < ARRAY_SIZE(sps->enc); j++) {
1258 PPCHash64PageSize *ps = &sps->enc[j];
1259
1260 assert(m <= j);
1261 if (!ps->page_shift) {
1262 break;
1263 }
1264
1265 if (cb(opaque, sps->page_shift, ps->page_shift)) {
1266 if (ps->page_shift >= 16) {
1267 ci_largepage = true;
1268 }
1269 sps->enc[m++] = *ps;
1270 }
1271 }
1272
1273 /* Clear rest of the row */
1274 for (j = m; j < ARRAY_SIZE(sps->enc); j++) {
1275 memset(&sps->enc[j], 0, sizeof(sps->enc[j]));
1276 }
1277
1278 if (m) {
1279 n++;
1280 }
1281 }
1282
1283 /* Clear the rest of the table */
1284 for (i = n; i < ARRAY_SIZE(opts->sps); i++) {
1285 memset(&opts->sps[i], 0, sizeof(opts->sps[i]));
1286 }
1287
1288 if (!ci_largepage) {
1289 opts->flags &= ~PPC_HASH64_CI_LARGEPAGE;
1290 }
1291}
QEMU mirror