4 * Copyright (c) 2003 Fabrice Bellard
5 * Copyright (c) 2005-2007 CodeSourcery
6 * Copyright (c) 2007 OpenedHand, Ltd.
8 * This library is free software; you can redistribute it and/or
9 * modify it under the terms of the GNU Lesser General Public
10 * License as published by the Free Software Foundation; either
11 * version 2 of the License, or (at your option) any later version.
13 * This library is distributed in the hope that it will be useful,
14 * but WITHOUT ANY WARRANTY; without even the implied warranty of
15 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
16 * Lesser General Public License for more details.
18 * You should have received a copy of the GNU Lesser General Public
19 * License along with this library; if not, see <http://www.gnu.org/licenses/>.
28 #include "internals.h"
29 #include "disas/disas.h"
32 #include "qemu/bitops.h"
35 #include "exec/helper-proto.h"
36 #include "exec/helper-gen.h"
38 #include "trace-tcg.h"
41 #define ENABLE_ARCH_4T arm_dc_feature(s, ARM_FEATURE_V4T)
42 #define ENABLE_ARCH_5 arm_dc_feature(s, ARM_FEATURE_V5)
43 /* currently all emulated v5 cores are also v5TE, so don't bother */
44 #define ENABLE_ARCH_5TE arm_dc_feature(s, ARM_FEATURE_V5)
45 #define ENABLE_ARCH_5J 0
46 #define ENABLE_ARCH_6 arm_dc_feature(s, ARM_FEATURE_V6)
47 #define ENABLE_ARCH_6K arm_dc_feature(s, ARM_FEATURE_V6K)
48 #define ENABLE_ARCH_6T2 arm_dc_feature(s, ARM_FEATURE_THUMB2)
49 #define ENABLE_ARCH_7 arm_dc_feature(s, ARM_FEATURE_V7)
50 #define ENABLE_ARCH_8 arm_dc_feature(s, ARM_FEATURE_V8)
52 #define ARCH(x) do { if (!ENABLE_ARCH_##x) goto illegal_op; } while(0)
54 #include "translate.h"
55 static uint32_t gen_opc_condexec_bits[OPC_BUF_SIZE];
57 #if defined(CONFIG_USER_ONLY)
60 #define IS_USER(s) (s->user)
64 /* We reuse the same 64-bit temporaries for efficiency. */
65 static TCGv_i64 cpu_V0, cpu_V1, cpu_M0;
66 static TCGv_i32 cpu_R[16];
67 static TCGv_i32 cpu_CF, cpu_NF, cpu_VF, cpu_ZF;
68 static TCGv_i64 cpu_exclusive_addr;
69 static TCGv_i64 cpu_exclusive_val;
70 #ifdef CONFIG_USER_ONLY
71 static TCGv_i64 cpu_exclusive_test;
72 static TCGv_i32 cpu_exclusive_info;
75 /* FIXME: These should be removed. */
76 static TCGv_i32 cpu_F0s, cpu_F1s;
77 static TCGv_i64 cpu_F0d, cpu_F1d;
79 #include "exec/gen-icount.h"
81 static const char *regnames[] =
82 { "r0", "r1", "r2", "r3", "r4", "r5", "r6", "r7",
83 "r8", "r9", "r10", "r11", "r12", "r13", "r14", "pc" };
85 /* initialize TCG globals. */
86 void arm_translate_init(void)
90 cpu_env = tcg_global_reg_new_ptr(TCG_AREG0, "env");
92 for (i = 0; i < 16; i++) {
93 cpu_R[i] = tcg_global_mem_new_i32(TCG_AREG0,
94 offsetof(CPUARMState, regs[i]),
97 cpu_CF = tcg_global_mem_new_i32(TCG_AREG0, offsetof(CPUARMState, CF), "CF");
98 cpu_NF = tcg_global_mem_new_i32(TCG_AREG0, offsetof(CPUARMState, NF), "NF");
99 cpu_VF = tcg_global_mem_new_i32(TCG_AREG0, offsetof(CPUARMState, VF), "VF");
100 cpu_ZF = tcg_global_mem_new_i32(TCG_AREG0, offsetof(CPUARMState, ZF), "ZF");
102 cpu_exclusive_addr = tcg_global_mem_new_i64(TCG_AREG0,
103 offsetof(CPUARMState, exclusive_addr), "exclusive_addr");
104 cpu_exclusive_val = tcg_global_mem_new_i64(TCG_AREG0,
105 offsetof(CPUARMState, exclusive_val), "exclusive_val");
106 #ifdef CONFIG_USER_ONLY
107 cpu_exclusive_test = tcg_global_mem_new_i64(TCG_AREG0,
108 offsetof(CPUARMState, exclusive_test), "exclusive_test");
109 cpu_exclusive_info = tcg_global_mem_new_i32(TCG_AREG0,
110 offsetof(CPUARMState, exclusive_info), "exclusive_info");
113 a64_translate_init();
116 static inline TCGv_i32 load_cpu_offset(int offset)
118 TCGv_i32 tmp = tcg_temp_new_i32();
119 tcg_gen_ld_i32(tmp, cpu_env, offset);
123 #define load_cpu_field(name) load_cpu_offset(offsetof(CPUARMState, name))
125 static inline void store_cpu_offset(TCGv_i32 var, int offset)
127 tcg_gen_st_i32(var, cpu_env, offset);
128 tcg_temp_free_i32(var);
131 #define store_cpu_field(var, name) \
132 store_cpu_offset(var, offsetof(CPUARMState, name))
134 /* Set a variable to the value of a CPU register. */
135 static void load_reg_var(DisasContext *s, TCGv_i32 var, int reg)
139 /* normally, since we updated PC, we need only to add one insn */
141 addr = (long)s->pc + 2;
143 addr = (long)s->pc + 4;
144 tcg_gen_movi_i32(var, addr);
146 tcg_gen_mov_i32(var, cpu_R[reg]);
150 /* Create a new temporary and set it to the value of a CPU register. */
151 static inline TCGv_i32 load_reg(DisasContext *s, int reg)
153 TCGv_i32 tmp = tcg_temp_new_i32();
154 load_reg_var(s, tmp, reg);
158 /* Set a CPU register. The source must be a temporary and will be
160 static void store_reg(DisasContext *s, int reg, TCGv_i32 var)
163 tcg_gen_andi_i32(var, var, ~1);
164 s->is_jmp = DISAS_JUMP;
166 tcg_gen_mov_i32(cpu_R[reg], var);
167 tcg_temp_free_i32(var);
170 /* Value extensions. */
171 #define gen_uxtb(var) tcg_gen_ext8u_i32(var, var)
172 #define gen_uxth(var) tcg_gen_ext16u_i32(var, var)
173 #define gen_sxtb(var) tcg_gen_ext8s_i32(var, var)
174 #define gen_sxth(var) tcg_gen_ext16s_i32(var, var)
176 #define gen_sxtb16(var) gen_helper_sxtb16(var, var)
177 #define gen_uxtb16(var) gen_helper_uxtb16(var, var)
180 static inline void gen_set_cpsr(TCGv_i32 var, uint32_t mask)
182 TCGv_i32 tmp_mask = tcg_const_i32(mask);
183 gen_helper_cpsr_write(cpu_env, var, tmp_mask);
184 tcg_temp_free_i32(tmp_mask);
186 /* Set NZCV flags from the high 4 bits of var. */
187 #define gen_set_nzcv(var) gen_set_cpsr(var, CPSR_NZCV)
189 static void gen_exception_internal(int excp)
191 TCGv_i32 tcg_excp = tcg_const_i32(excp);
193 assert(excp_is_internal(excp));
194 gen_helper_exception_internal(cpu_env, tcg_excp);
195 tcg_temp_free_i32(tcg_excp);
198 static void gen_exception(int excp, uint32_t syndrome)
200 TCGv_i32 tcg_excp = tcg_const_i32(excp);
201 TCGv_i32 tcg_syn = tcg_const_i32(syndrome);
203 gen_helper_exception_with_syndrome(cpu_env, tcg_excp, tcg_syn);
204 tcg_temp_free_i32(tcg_syn);
205 tcg_temp_free_i32(tcg_excp);
208 static void gen_ss_advance(DisasContext *s)
210 /* If the singlestep state is Active-not-pending, advance to
215 gen_helper_clear_pstate_ss(cpu_env);
219 static void gen_step_complete_exception(DisasContext *s)
221 /* We just completed step of an insn. Move from Active-not-pending
222 * to Active-pending, and then also take the swstep exception.
223 * This corresponds to making the (IMPDEF) choice to prioritize
224 * swstep exceptions over asynchronous exceptions taken to an exception
225 * level where debug is disabled. This choice has the advantage that
226 * we do not need to maintain internal state corresponding to the
227 * ISV/EX syndrome bits between completion of the step and generation
228 * of the exception, and our syndrome information is always correct.
231 gen_exception(EXCP_UDEF, syn_swstep(s->ss_same_el, 1, s->is_ldex));
232 s->is_jmp = DISAS_EXC;
235 static void gen_smul_dual(TCGv_i32 a, TCGv_i32 b)
237 TCGv_i32 tmp1 = tcg_temp_new_i32();
238 TCGv_i32 tmp2 = tcg_temp_new_i32();
239 tcg_gen_ext16s_i32(tmp1, a);
240 tcg_gen_ext16s_i32(tmp2, b);
241 tcg_gen_mul_i32(tmp1, tmp1, tmp2);
242 tcg_temp_free_i32(tmp2);
243 tcg_gen_sari_i32(a, a, 16);
244 tcg_gen_sari_i32(b, b, 16);
245 tcg_gen_mul_i32(b, b, a);
246 tcg_gen_mov_i32(a, tmp1);
247 tcg_temp_free_i32(tmp1);
250 /* Byteswap each halfword. */
251 static void gen_rev16(TCGv_i32 var)
253 TCGv_i32 tmp = tcg_temp_new_i32();
254 tcg_gen_shri_i32(tmp, var, 8);
255 tcg_gen_andi_i32(tmp, tmp, 0x00ff00ff);
256 tcg_gen_shli_i32(var, var, 8);
257 tcg_gen_andi_i32(var, var, 0xff00ff00);
258 tcg_gen_or_i32(var, var, tmp);
259 tcg_temp_free_i32(tmp);
262 /* Byteswap low halfword and sign extend. */
263 static void gen_revsh(TCGv_i32 var)
265 tcg_gen_ext16u_i32(var, var);
266 tcg_gen_bswap16_i32(var, var);
267 tcg_gen_ext16s_i32(var, var);
270 /* Unsigned bitfield extract. */
271 static void gen_ubfx(TCGv_i32 var, int shift, uint32_t mask)
274 tcg_gen_shri_i32(var, var, shift);
275 tcg_gen_andi_i32(var, var, mask);
278 /* Signed bitfield extract. */
279 static void gen_sbfx(TCGv_i32 var, int shift, int width)
284 tcg_gen_sari_i32(var, var, shift);
285 if (shift + width < 32) {
286 signbit = 1u << (width - 1);
287 tcg_gen_andi_i32(var, var, (1u << width) - 1);
288 tcg_gen_xori_i32(var, var, signbit);
289 tcg_gen_subi_i32(var, var, signbit);
293 /* Return (b << 32) + a. Mark inputs as dead */
294 static TCGv_i64 gen_addq_msw(TCGv_i64 a, TCGv_i32 b)
296 TCGv_i64 tmp64 = tcg_temp_new_i64();
298 tcg_gen_extu_i32_i64(tmp64, b);
299 tcg_temp_free_i32(b);
300 tcg_gen_shli_i64(tmp64, tmp64, 32);
301 tcg_gen_add_i64(a, tmp64, a);
303 tcg_temp_free_i64(tmp64);
307 /* Return (b << 32) - a. Mark inputs as dead. */
308 static TCGv_i64 gen_subq_msw(TCGv_i64 a, TCGv_i32 b)
310 TCGv_i64 tmp64 = tcg_temp_new_i64();
312 tcg_gen_extu_i32_i64(tmp64, b);
313 tcg_temp_free_i32(b);
314 tcg_gen_shli_i64(tmp64, tmp64, 32);
315 tcg_gen_sub_i64(a, tmp64, a);
317 tcg_temp_free_i64(tmp64);
321 /* 32x32->64 multiply. Marks inputs as dead. */
322 static TCGv_i64 gen_mulu_i64_i32(TCGv_i32 a, TCGv_i32 b)
324 TCGv_i32 lo = tcg_temp_new_i32();
325 TCGv_i32 hi = tcg_temp_new_i32();
328 tcg_gen_mulu2_i32(lo, hi, a, b);
329 tcg_temp_free_i32(a);
330 tcg_temp_free_i32(b);
332 ret = tcg_temp_new_i64();
333 tcg_gen_concat_i32_i64(ret, lo, hi);
334 tcg_temp_free_i32(lo);
335 tcg_temp_free_i32(hi);
340 static TCGv_i64 gen_muls_i64_i32(TCGv_i32 a, TCGv_i32 b)
342 TCGv_i32 lo = tcg_temp_new_i32();
343 TCGv_i32 hi = tcg_temp_new_i32();
346 tcg_gen_muls2_i32(lo, hi, a, b);
347 tcg_temp_free_i32(a);
348 tcg_temp_free_i32(b);
350 ret = tcg_temp_new_i64();
351 tcg_gen_concat_i32_i64(ret, lo, hi);
352 tcg_temp_free_i32(lo);
353 tcg_temp_free_i32(hi);
358 /* Swap low and high halfwords. */
359 static void gen_swap_half(TCGv_i32 var)
361 TCGv_i32 tmp = tcg_temp_new_i32();
362 tcg_gen_shri_i32(tmp, var, 16);
363 tcg_gen_shli_i32(var, var, 16);
364 tcg_gen_or_i32(var, var, tmp);
365 tcg_temp_free_i32(tmp);
368 /* Dual 16-bit add. Result placed in t0 and t1 is marked as dead.
369 tmp = (t0 ^ t1) & 0x8000;
372 t0 = (t0 + t1) ^ tmp;
375 static void gen_add16(TCGv_i32 t0, TCGv_i32 t1)
377 TCGv_i32 tmp = tcg_temp_new_i32();
378 tcg_gen_xor_i32(tmp, t0, t1);
379 tcg_gen_andi_i32(tmp, tmp, 0x8000);
380 tcg_gen_andi_i32(t0, t0, ~0x8000);
381 tcg_gen_andi_i32(t1, t1, ~0x8000);
382 tcg_gen_add_i32(t0, t0, t1);
383 tcg_gen_xor_i32(t0, t0, tmp);
384 tcg_temp_free_i32(tmp);
385 tcg_temp_free_i32(t1);
388 /* Set CF to the top bit of var. */
389 static void gen_set_CF_bit31(TCGv_i32 var)
391 tcg_gen_shri_i32(cpu_CF, var, 31);
394 /* Set N and Z flags from var. */
395 static inline void gen_logic_CC(TCGv_i32 var)
397 tcg_gen_mov_i32(cpu_NF, var);
398 tcg_gen_mov_i32(cpu_ZF, var);
402 static void gen_adc(TCGv_i32 t0, TCGv_i32 t1)
404 tcg_gen_add_i32(t0, t0, t1);
405 tcg_gen_add_i32(t0, t0, cpu_CF);
408 /* dest = T0 + T1 + CF. */
409 static void gen_add_carry(TCGv_i32 dest, TCGv_i32 t0, TCGv_i32 t1)
411 tcg_gen_add_i32(dest, t0, t1);
412 tcg_gen_add_i32(dest, dest, cpu_CF);
415 /* dest = T0 - T1 + CF - 1. */
416 static void gen_sub_carry(TCGv_i32 dest, TCGv_i32 t0, TCGv_i32 t1)
418 tcg_gen_sub_i32(dest, t0, t1);
419 tcg_gen_add_i32(dest, dest, cpu_CF);
420 tcg_gen_subi_i32(dest, dest, 1);
423 /* dest = T0 + T1. Compute C, N, V and Z flags */
424 static void gen_add_CC(TCGv_i32 dest, TCGv_i32 t0, TCGv_i32 t1)
426 TCGv_i32 tmp = tcg_temp_new_i32();
427 tcg_gen_movi_i32(tmp, 0);
428 tcg_gen_add2_i32(cpu_NF, cpu_CF, t0, tmp, t1, tmp);
429 tcg_gen_mov_i32(cpu_ZF, cpu_NF);
430 tcg_gen_xor_i32(cpu_VF, cpu_NF, t0);
431 tcg_gen_xor_i32(tmp, t0, t1);
432 tcg_gen_andc_i32(cpu_VF, cpu_VF, tmp);
433 tcg_temp_free_i32(tmp);
434 tcg_gen_mov_i32(dest, cpu_NF);
437 /* dest = T0 + T1 + CF. Compute C, N, V and Z flags */
438 static void gen_adc_CC(TCGv_i32 dest, TCGv_i32 t0, TCGv_i32 t1)
440 TCGv_i32 tmp = tcg_temp_new_i32();
441 if (TCG_TARGET_HAS_add2_i32) {
442 tcg_gen_movi_i32(tmp, 0);
443 tcg_gen_add2_i32(cpu_NF, cpu_CF, t0, tmp, cpu_CF, tmp);
444 tcg_gen_add2_i32(cpu_NF, cpu_CF, cpu_NF, cpu_CF, t1, tmp);
446 TCGv_i64 q0 = tcg_temp_new_i64();
447 TCGv_i64 q1 = tcg_temp_new_i64();
448 tcg_gen_extu_i32_i64(q0, t0);
449 tcg_gen_extu_i32_i64(q1, t1);
450 tcg_gen_add_i64(q0, q0, q1);
451 tcg_gen_extu_i32_i64(q1, cpu_CF);
452 tcg_gen_add_i64(q0, q0, q1);
453 tcg_gen_extr_i64_i32(cpu_NF, cpu_CF, q0);
454 tcg_temp_free_i64(q0);
455 tcg_temp_free_i64(q1);
457 tcg_gen_mov_i32(cpu_ZF, cpu_NF);
458 tcg_gen_xor_i32(cpu_VF, cpu_NF, t0);
459 tcg_gen_xor_i32(tmp, t0, t1);
460 tcg_gen_andc_i32(cpu_VF, cpu_VF, tmp);
461 tcg_temp_free_i32(tmp);
462 tcg_gen_mov_i32(dest, cpu_NF);
465 /* dest = T0 - T1. Compute C, N, V and Z flags */
466 static void gen_sub_CC(TCGv_i32 dest, TCGv_i32 t0, TCGv_i32 t1)
469 tcg_gen_sub_i32(cpu_NF, t0, t1);
470 tcg_gen_mov_i32(cpu_ZF, cpu_NF);
471 tcg_gen_setcond_i32(TCG_COND_GEU, cpu_CF, t0, t1);
472 tcg_gen_xor_i32(cpu_VF, cpu_NF, t0);
473 tmp = tcg_temp_new_i32();
474 tcg_gen_xor_i32(tmp, t0, t1);
475 tcg_gen_and_i32(cpu_VF, cpu_VF, tmp);
476 tcg_temp_free_i32(tmp);
477 tcg_gen_mov_i32(dest, cpu_NF);
480 /* dest = T0 + ~T1 + CF. Compute C, N, V and Z flags */
481 static void gen_sbc_CC(TCGv_i32 dest, TCGv_i32 t0, TCGv_i32 t1)
483 TCGv_i32 tmp = tcg_temp_new_i32();
484 tcg_gen_not_i32(tmp, t1);
485 gen_adc_CC(dest, t0, tmp);
486 tcg_temp_free_i32(tmp);
489 #define GEN_SHIFT(name) \
490 static void gen_##name(TCGv_i32 dest, TCGv_i32 t0, TCGv_i32 t1) \
492 TCGv_i32 tmp1, tmp2, tmp3; \
493 tmp1 = tcg_temp_new_i32(); \
494 tcg_gen_andi_i32(tmp1, t1, 0xff); \
495 tmp2 = tcg_const_i32(0); \
496 tmp3 = tcg_const_i32(0x1f); \
497 tcg_gen_movcond_i32(TCG_COND_GTU, tmp2, tmp1, tmp3, tmp2, t0); \
498 tcg_temp_free_i32(tmp3); \
499 tcg_gen_andi_i32(tmp1, tmp1, 0x1f); \
500 tcg_gen_##name##_i32(dest, tmp2, tmp1); \
501 tcg_temp_free_i32(tmp2); \
502 tcg_temp_free_i32(tmp1); \
508 static void gen_sar(TCGv_i32 dest, TCGv_i32 t0, TCGv_i32 t1)
511 tmp1 = tcg_temp_new_i32();
512 tcg_gen_andi_i32(tmp1, t1, 0xff);
513 tmp2 = tcg_const_i32(0x1f);
514 tcg_gen_movcond_i32(TCG_COND_GTU, tmp1, tmp1, tmp2, tmp2, tmp1);
515 tcg_temp_free_i32(tmp2);
516 tcg_gen_sar_i32(dest, t0, tmp1);
517 tcg_temp_free_i32(tmp1);
520 static void tcg_gen_abs_i32(TCGv_i32 dest, TCGv_i32 src)
522 TCGv_i32 c0 = tcg_const_i32(0);
523 TCGv_i32 tmp = tcg_temp_new_i32();
524 tcg_gen_neg_i32(tmp, src);
525 tcg_gen_movcond_i32(TCG_COND_GT, dest, src, c0, src, tmp);
526 tcg_temp_free_i32(c0);
527 tcg_temp_free_i32(tmp);
530 static void shifter_out_im(TCGv_i32 var, int shift)
533 tcg_gen_andi_i32(cpu_CF, var, 1);
535 tcg_gen_shri_i32(cpu_CF, var, shift);
537 tcg_gen_andi_i32(cpu_CF, cpu_CF, 1);
542 /* Shift by immediate. Includes special handling for shift == 0. */
543 static inline void gen_arm_shift_im(TCGv_i32 var, int shiftop,
544 int shift, int flags)
550 shifter_out_im(var, 32 - shift);
551 tcg_gen_shli_i32(var, var, shift);
557 tcg_gen_shri_i32(cpu_CF, var, 31);
559 tcg_gen_movi_i32(var, 0);
562 shifter_out_im(var, shift - 1);
563 tcg_gen_shri_i32(var, var, shift);
570 shifter_out_im(var, shift - 1);
573 tcg_gen_sari_i32(var, var, shift);
575 case 3: /* ROR/RRX */
578 shifter_out_im(var, shift - 1);
579 tcg_gen_rotri_i32(var, var, shift); break;
581 TCGv_i32 tmp = tcg_temp_new_i32();
582 tcg_gen_shli_i32(tmp, cpu_CF, 31);
584 shifter_out_im(var, 0);
585 tcg_gen_shri_i32(var, var, 1);
586 tcg_gen_or_i32(var, var, tmp);
587 tcg_temp_free_i32(tmp);
592 static inline void gen_arm_shift_reg(TCGv_i32 var, int shiftop,
593 TCGv_i32 shift, int flags)
597 case 0: gen_helper_shl_cc(var, cpu_env, var, shift); break;
598 case 1: gen_helper_shr_cc(var, cpu_env, var, shift); break;
599 case 2: gen_helper_sar_cc(var, cpu_env, var, shift); break;
600 case 3: gen_helper_ror_cc(var, cpu_env, var, shift); break;
605 gen_shl(var, var, shift);
608 gen_shr(var, var, shift);
611 gen_sar(var, var, shift);
613 case 3: tcg_gen_andi_i32(shift, shift, 0x1f);
614 tcg_gen_rotr_i32(var, var, shift); break;
617 tcg_temp_free_i32(shift);
620 #define PAS_OP(pfx) \
622 case 0: gen_pas_helper(glue(pfx,add16)); break; \
623 case 1: gen_pas_helper(glue(pfx,addsubx)); break; \
624 case 2: gen_pas_helper(glue(pfx,subaddx)); break; \
625 case 3: gen_pas_helper(glue(pfx,sub16)); break; \
626 case 4: gen_pas_helper(glue(pfx,add8)); break; \
627 case 7: gen_pas_helper(glue(pfx,sub8)); break; \
629 static void gen_arm_parallel_addsub(int op1, int op2, TCGv_i32 a, TCGv_i32 b)
634 #define gen_pas_helper(name) glue(gen_helper_,name)(a, a, b, tmp)
636 tmp = tcg_temp_new_ptr();
637 tcg_gen_addi_ptr(tmp, cpu_env, offsetof(CPUARMState, GE));
639 tcg_temp_free_ptr(tmp);
642 tmp = tcg_temp_new_ptr();
643 tcg_gen_addi_ptr(tmp, cpu_env, offsetof(CPUARMState, GE));
645 tcg_temp_free_ptr(tmp);
647 #undef gen_pas_helper
648 #define gen_pas_helper(name) glue(gen_helper_,name)(a, a, b)
661 #undef gen_pas_helper
666 /* For unknown reasons Arm and Thumb-2 use arbitrarily different encodings. */
667 #define PAS_OP(pfx) \
669 case 0: gen_pas_helper(glue(pfx,add8)); break; \
670 case 1: gen_pas_helper(glue(pfx,add16)); break; \
671 case 2: gen_pas_helper(glue(pfx,addsubx)); break; \
672 case 4: gen_pas_helper(glue(pfx,sub8)); break; \
673 case 5: gen_pas_helper(glue(pfx,sub16)); break; \
674 case 6: gen_pas_helper(glue(pfx,subaddx)); break; \
676 static void gen_thumb2_parallel_addsub(int op1, int op2, TCGv_i32 a, TCGv_i32 b)
681 #define gen_pas_helper(name) glue(gen_helper_,name)(a, a, b, tmp)
683 tmp = tcg_temp_new_ptr();
684 tcg_gen_addi_ptr(tmp, cpu_env, offsetof(CPUARMState, GE));
686 tcg_temp_free_ptr(tmp);
689 tmp = tcg_temp_new_ptr();
690 tcg_gen_addi_ptr(tmp, cpu_env, offsetof(CPUARMState, GE));
692 tcg_temp_free_ptr(tmp);
694 #undef gen_pas_helper
695 #define gen_pas_helper(name) glue(gen_helper_,name)(a, a, b)
708 #undef gen_pas_helper
714 * generate a conditional branch based on ARM condition code cc.
715 * This is common between ARM and Aarch64 targets.
717 void arm_gen_test_cc(int cc, int label)
724 tcg_gen_brcondi_i32(TCG_COND_EQ, cpu_ZF, 0, label);
727 tcg_gen_brcondi_i32(TCG_COND_NE, cpu_ZF, 0, label);
730 tcg_gen_brcondi_i32(TCG_COND_NE, cpu_CF, 0, label);
733 tcg_gen_brcondi_i32(TCG_COND_EQ, cpu_CF, 0, label);
736 tcg_gen_brcondi_i32(TCG_COND_LT, cpu_NF, 0, label);
739 tcg_gen_brcondi_i32(TCG_COND_GE, cpu_NF, 0, label);
742 tcg_gen_brcondi_i32(TCG_COND_LT, cpu_VF, 0, label);
745 tcg_gen_brcondi_i32(TCG_COND_GE, cpu_VF, 0, label);
747 case 8: /* hi: C && !Z */
748 inv = gen_new_label();
749 tcg_gen_brcondi_i32(TCG_COND_EQ, cpu_CF, 0, inv);
750 tcg_gen_brcondi_i32(TCG_COND_NE, cpu_ZF, 0, label);
753 case 9: /* ls: !C || Z */
754 tcg_gen_brcondi_i32(TCG_COND_EQ, cpu_CF, 0, label);
755 tcg_gen_brcondi_i32(TCG_COND_EQ, cpu_ZF, 0, label);
757 case 10: /* ge: N == V -> N ^ V == 0 */
758 tmp = tcg_temp_new_i32();
759 tcg_gen_xor_i32(tmp, cpu_VF, cpu_NF);
760 tcg_gen_brcondi_i32(TCG_COND_GE, tmp, 0, label);
761 tcg_temp_free_i32(tmp);
763 case 11: /* lt: N != V -> N ^ V != 0 */
764 tmp = tcg_temp_new_i32();
765 tcg_gen_xor_i32(tmp, cpu_VF, cpu_NF);
766 tcg_gen_brcondi_i32(TCG_COND_LT, tmp, 0, label);
767 tcg_temp_free_i32(tmp);
769 case 12: /* gt: !Z && N == V */
770 inv = gen_new_label();
771 tcg_gen_brcondi_i32(TCG_COND_EQ, cpu_ZF, 0, inv);
772 tmp = tcg_temp_new_i32();
773 tcg_gen_xor_i32(tmp, cpu_VF, cpu_NF);
774 tcg_gen_brcondi_i32(TCG_COND_GE, tmp, 0, label);
775 tcg_temp_free_i32(tmp);
778 case 13: /* le: Z || N != V */
779 tcg_gen_brcondi_i32(TCG_COND_EQ, cpu_ZF, 0, label);
780 tmp = tcg_temp_new_i32();
781 tcg_gen_xor_i32(tmp, cpu_VF, cpu_NF);
782 tcg_gen_brcondi_i32(TCG_COND_LT, tmp, 0, label);
783 tcg_temp_free_i32(tmp);
786 fprintf(stderr, "Bad condition code 0x%x\n", cc);
791 static const uint8_t table_logic_cc[16] = {
810 /* Set PC and Thumb state from an immediate address. */
811 static inline void gen_bx_im(DisasContext *s, uint32_t addr)
815 s->is_jmp = DISAS_UPDATE;
816 if (s->thumb != (addr & 1)) {
817 tmp = tcg_temp_new_i32();
818 tcg_gen_movi_i32(tmp, addr & 1);
819 tcg_gen_st_i32(tmp, cpu_env, offsetof(CPUARMState, thumb));
820 tcg_temp_free_i32(tmp);
822 tcg_gen_movi_i32(cpu_R[15], addr & ~1);
825 /* Set PC and Thumb state from var. var is marked as dead. */
826 static inline void gen_bx(DisasContext *s, TCGv_i32 var)
828 s->is_jmp = DISAS_UPDATE;
829 tcg_gen_andi_i32(cpu_R[15], var, ~1);
830 tcg_gen_andi_i32(var, var, 1);
831 store_cpu_field(var, thumb);
834 /* Variant of store_reg which uses branch&exchange logic when storing
835 to r15 in ARM architecture v7 and above. The source must be a temporary
836 and will be marked as dead. */
837 static inline void store_reg_bx(DisasContext *s, int reg, TCGv_i32 var)
839 if (reg == 15 && ENABLE_ARCH_7) {
842 store_reg(s, reg, var);
846 /* Variant of store_reg which uses branch&exchange logic when storing
847 * to r15 in ARM architecture v5T and above. This is used for storing
848 * the results of a LDR/LDM/POP into r15, and corresponds to the cases
849 * in the ARM ARM which use the LoadWritePC() pseudocode function. */
850 static inline void store_reg_from_load(DisasContext *s, int reg, TCGv_i32 var)
852 if (reg == 15 && ENABLE_ARCH_5) {
855 store_reg(s, reg, var);
859 /* Abstractions of "generate code to do a guest load/store for
860 * AArch32", where a vaddr is always 32 bits (and is zero
861 * extended if we're a 64 bit core) and data is also
862 * 32 bits unless specifically doing a 64 bit access.
863 * These functions work like tcg_gen_qemu_{ld,st}* except
864 * that the address argument is TCGv_i32 rather than TCGv.
866 #if TARGET_LONG_BITS == 32
868 #define DO_GEN_LD(SUFF, OPC) \
869 static inline void gen_aa32_ld##SUFF(TCGv_i32 val, TCGv_i32 addr, int index) \
871 tcg_gen_qemu_ld_i32(val, addr, index, OPC); \
874 #define DO_GEN_ST(SUFF, OPC) \
875 static inline void gen_aa32_st##SUFF(TCGv_i32 val, TCGv_i32 addr, int index) \
877 tcg_gen_qemu_st_i32(val, addr, index, OPC); \
880 static inline void gen_aa32_ld64(TCGv_i64 val, TCGv_i32 addr, int index)
882 tcg_gen_qemu_ld_i64(val, addr, index, MO_TEQ);
885 static inline void gen_aa32_st64(TCGv_i64 val, TCGv_i32 addr, int index)
887 tcg_gen_qemu_st_i64(val, addr, index, MO_TEQ);
892 #define DO_GEN_LD(SUFF, OPC) \
893 static inline void gen_aa32_ld##SUFF(TCGv_i32 val, TCGv_i32 addr, int index) \
895 TCGv addr64 = tcg_temp_new(); \
896 tcg_gen_extu_i32_i64(addr64, addr); \
897 tcg_gen_qemu_ld_i32(val, addr64, index, OPC); \
898 tcg_temp_free(addr64); \
901 #define DO_GEN_ST(SUFF, OPC) \
902 static inline void gen_aa32_st##SUFF(TCGv_i32 val, TCGv_i32 addr, int index) \
904 TCGv addr64 = tcg_temp_new(); \
905 tcg_gen_extu_i32_i64(addr64, addr); \
906 tcg_gen_qemu_st_i32(val, addr64, index, OPC); \
907 tcg_temp_free(addr64); \
910 static inline void gen_aa32_ld64(TCGv_i64 val, TCGv_i32 addr, int index)
912 TCGv addr64 = tcg_temp_new();
913 tcg_gen_extu_i32_i64(addr64, addr);
914 tcg_gen_qemu_ld_i64(val, addr64, index, MO_TEQ);
915 tcg_temp_free(addr64);
918 static inline void gen_aa32_st64(TCGv_i64 val, TCGv_i32 addr, int index)
920 TCGv addr64 = tcg_temp_new();
921 tcg_gen_extu_i32_i64(addr64, addr);
922 tcg_gen_qemu_st_i64(val, addr64, index, MO_TEQ);
923 tcg_temp_free(addr64);
930 DO_GEN_LD(16s, MO_TESW)
931 DO_GEN_LD(16u, MO_TEUW)
932 DO_GEN_LD(32u, MO_TEUL)
934 DO_GEN_ST(16, MO_TEUW)
935 DO_GEN_ST(32, MO_TEUL)
937 static inline void gen_set_pc_im(DisasContext *s, target_ulong val)
939 tcg_gen_movi_i32(cpu_R[15], val);
942 static inline void gen_hvc(DisasContext *s, int imm16)
944 /* The pre HVC helper handles cases when HVC gets trapped
945 * as an undefined insn by runtime configuration (ie before
946 * the insn really executes).
948 gen_set_pc_im(s, s->pc - 4);
949 gen_helper_pre_hvc(cpu_env);
950 /* Otherwise we will treat this as a real exception which
951 * happens after execution of the insn. (The distinction matters
952 * for the PC value reported to the exception handler and also
953 * for single stepping.)
956 gen_set_pc_im(s, s->pc);
957 s->is_jmp = DISAS_HVC;
960 static inline void gen_smc(DisasContext *s)
962 /* As with HVC, we may take an exception either before or after
967 gen_set_pc_im(s, s->pc - 4);
968 tmp = tcg_const_i32(syn_aa32_smc());
969 gen_helper_pre_smc(cpu_env, tmp);
970 tcg_temp_free_i32(tmp);
971 gen_set_pc_im(s, s->pc);
972 s->is_jmp = DISAS_SMC;
976 gen_set_condexec (DisasContext *s)
978 if (s->condexec_mask) {
979 uint32_t val = (s->condexec_cond << 4) | (s->condexec_mask >> 1);
980 TCGv_i32 tmp = tcg_temp_new_i32();
981 tcg_gen_movi_i32(tmp, val);
982 store_cpu_field(tmp, condexec_bits);
986 static void gen_exception_internal_insn(DisasContext *s, int offset, int excp)
989 gen_set_pc_im(s, s->pc - offset);
990 gen_exception_internal(excp);
991 s->is_jmp = DISAS_JUMP;
994 static void gen_exception_insn(DisasContext *s, int offset, int excp, int syn)
997 gen_set_pc_im(s, s->pc - offset);
998 gen_exception(excp, syn);
999 s->is_jmp = DISAS_JUMP;
1002 /* Force a TB lookup after an instruction that changes the CPU state. */
1003 static inline void gen_lookup_tb(DisasContext *s)
1005 tcg_gen_movi_i32(cpu_R[15], s->pc & ~1);
1006 s->is_jmp = DISAS_UPDATE;
1009 static inline void gen_add_data_offset(DisasContext *s, unsigned int insn,
1012 int val, rm, shift, shiftop;
1015 if (!(insn & (1 << 25))) {
1018 if (!(insn & (1 << 23)))
1021 tcg_gen_addi_i32(var, var, val);
1023 /* shift/register */
1025 shift = (insn >> 7) & 0x1f;
1026 shiftop = (insn >> 5) & 3;
1027 offset = load_reg(s, rm);
1028 gen_arm_shift_im(offset, shiftop, shift, 0);
1029 if (!(insn & (1 << 23)))
1030 tcg_gen_sub_i32(var, var, offset);
1032 tcg_gen_add_i32(var, var, offset);
1033 tcg_temp_free_i32(offset);
1037 static inline void gen_add_datah_offset(DisasContext *s, unsigned int insn,
1038 int extra, TCGv_i32 var)
1043 if (insn & (1 << 22)) {
1045 val = (insn & 0xf) | ((insn >> 4) & 0xf0);
1046 if (!(insn & (1 << 23)))
1050 tcg_gen_addi_i32(var, var, val);
1054 tcg_gen_addi_i32(var, var, extra);
1056 offset = load_reg(s, rm);
1057 if (!(insn & (1 << 23)))
1058 tcg_gen_sub_i32(var, var, offset);
1060 tcg_gen_add_i32(var, var, offset);
1061 tcg_temp_free_i32(offset);
1065 static TCGv_ptr get_fpstatus_ptr(int neon)
1067 TCGv_ptr statusptr = tcg_temp_new_ptr();
1070 offset = offsetof(CPUARMState, vfp.standard_fp_status);
1072 offset = offsetof(CPUARMState, vfp.fp_status);
1074 tcg_gen_addi_ptr(statusptr, cpu_env, offset);
1078 #define VFP_OP2(name) \
1079 static inline void gen_vfp_##name(int dp) \
1081 TCGv_ptr fpst = get_fpstatus_ptr(0); \
1083 gen_helper_vfp_##name##d(cpu_F0d, cpu_F0d, cpu_F1d, fpst); \
1085 gen_helper_vfp_##name##s(cpu_F0s, cpu_F0s, cpu_F1s, fpst); \
1087 tcg_temp_free_ptr(fpst); \
1097 static inline void gen_vfp_F1_mul(int dp)
1099 /* Like gen_vfp_mul() but put result in F1 */
1100 TCGv_ptr fpst = get_fpstatus_ptr(0);
1102 gen_helper_vfp_muld(cpu_F1d, cpu_F0d, cpu_F1d, fpst);
1104 gen_helper_vfp_muls(cpu_F1s, cpu_F0s, cpu_F1s, fpst);
1106 tcg_temp_free_ptr(fpst);
1109 static inline void gen_vfp_F1_neg(int dp)
1111 /* Like gen_vfp_neg() but put result in F1 */
1113 gen_helper_vfp_negd(cpu_F1d, cpu_F0d);
1115 gen_helper_vfp_negs(cpu_F1s, cpu_F0s);
1119 static inline void gen_vfp_abs(int dp)
1122 gen_helper_vfp_absd(cpu_F0d, cpu_F0d);
1124 gen_helper_vfp_abss(cpu_F0s, cpu_F0s);
1127 static inline void gen_vfp_neg(int dp)
1130 gen_helper_vfp_negd(cpu_F0d, cpu_F0d);
1132 gen_helper_vfp_negs(cpu_F0s, cpu_F0s);
1135 static inline void gen_vfp_sqrt(int dp)
1138 gen_helper_vfp_sqrtd(cpu_F0d, cpu_F0d, cpu_env);
1140 gen_helper_vfp_sqrts(cpu_F0s, cpu_F0s, cpu_env);
1143 static inline void gen_vfp_cmp(int dp)
1146 gen_helper_vfp_cmpd(cpu_F0d, cpu_F1d, cpu_env);
1148 gen_helper_vfp_cmps(cpu_F0s, cpu_F1s, cpu_env);
1151 static inline void gen_vfp_cmpe(int dp)
1154 gen_helper_vfp_cmped(cpu_F0d, cpu_F1d, cpu_env);
1156 gen_helper_vfp_cmpes(cpu_F0s, cpu_F1s, cpu_env);
1159 static inline void gen_vfp_F1_ld0(int dp)
1162 tcg_gen_movi_i64(cpu_F1d, 0);
1164 tcg_gen_movi_i32(cpu_F1s, 0);
1167 #define VFP_GEN_ITOF(name) \
1168 static inline void gen_vfp_##name(int dp, int neon) \
1170 TCGv_ptr statusptr = get_fpstatus_ptr(neon); \
1172 gen_helper_vfp_##name##d(cpu_F0d, cpu_F0s, statusptr); \
1174 gen_helper_vfp_##name##s(cpu_F0s, cpu_F0s, statusptr); \
1176 tcg_temp_free_ptr(statusptr); \
1183 #define VFP_GEN_FTOI(name) \
1184 static inline void gen_vfp_##name(int dp, int neon) \
1186 TCGv_ptr statusptr = get_fpstatus_ptr(neon); \
1188 gen_helper_vfp_##name##d(cpu_F0s, cpu_F0d, statusptr); \
1190 gen_helper_vfp_##name##s(cpu_F0s, cpu_F0s, statusptr); \
1192 tcg_temp_free_ptr(statusptr); \
1201 #define VFP_GEN_FIX(name, round) \
1202 static inline void gen_vfp_##name(int dp, int shift, int neon) \
1204 TCGv_i32 tmp_shift = tcg_const_i32(shift); \
1205 TCGv_ptr statusptr = get_fpstatus_ptr(neon); \
1207 gen_helper_vfp_##name##d##round(cpu_F0d, cpu_F0d, tmp_shift, \
1210 gen_helper_vfp_##name##s##round(cpu_F0s, cpu_F0s, tmp_shift, \
1213 tcg_temp_free_i32(tmp_shift); \
1214 tcg_temp_free_ptr(statusptr); \
1216 VFP_GEN_FIX(tosh, _round_to_zero)
1217 VFP_GEN_FIX(tosl, _round_to_zero)
1218 VFP_GEN_FIX(touh, _round_to_zero)
1219 VFP_GEN_FIX(toul, _round_to_zero)
1226 static inline void gen_vfp_ld(DisasContext *s, int dp, TCGv_i32 addr)
1229 gen_aa32_ld64(cpu_F0d, addr, get_mem_index(s));
1231 gen_aa32_ld32u(cpu_F0s, addr, get_mem_index(s));
1235 static inline void gen_vfp_st(DisasContext *s, int dp, TCGv_i32 addr)
1238 gen_aa32_st64(cpu_F0d, addr, get_mem_index(s));
1240 gen_aa32_st32(cpu_F0s, addr, get_mem_index(s));
1245 vfp_reg_offset (int dp, int reg)
1248 return offsetof(CPUARMState, vfp.regs[reg]);
1250 return offsetof(CPUARMState, vfp.regs[reg >> 1])
1251 + offsetof(CPU_DoubleU, l.upper);
1253 return offsetof(CPUARMState, vfp.regs[reg >> 1])
1254 + offsetof(CPU_DoubleU, l.lower);
1258 /* Return the offset of a 32-bit piece of a NEON register.
1259 zero is the least significant end of the register. */
1261 neon_reg_offset (int reg, int n)
1265 return vfp_reg_offset(0, sreg);
1268 static TCGv_i32 neon_load_reg(int reg, int pass)
1270 TCGv_i32 tmp = tcg_temp_new_i32();
1271 tcg_gen_ld_i32(tmp, cpu_env, neon_reg_offset(reg, pass));
1275 static void neon_store_reg(int reg, int pass, TCGv_i32 var)
1277 tcg_gen_st_i32(var, cpu_env, neon_reg_offset(reg, pass));
1278 tcg_temp_free_i32(var);
1281 static inline void neon_load_reg64(TCGv_i64 var, int reg)
1283 tcg_gen_ld_i64(var, cpu_env, vfp_reg_offset(1, reg));
1286 static inline void neon_store_reg64(TCGv_i64 var, int reg)
1288 tcg_gen_st_i64(var, cpu_env, vfp_reg_offset(1, reg));
1291 #define tcg_gen_ld_f32 tcg_gen_ld_i32
1292 #define tcg_gen_ld_f64 tcg_gen_ld_i64
1293 #define tcg_gen_st_f32 tcg_gen_st_i32
1294 #define tcg_gen_st_f64 tcg_gen_st_i64
1296 static inline void gen_mov_F0_vreg(int dp, int reg)
1299 tcg_gen_ld_f64(cpu_F0d, cpu_env, vfp_reg_offset(dp, reg));
1301 tcg_gen_ld_f32(cpu_F0s, cpu_env, vfp_reg_offset(dp, reg));
1304 static inline void gen_mov_F1_vreg(int dp, int reg)
1307 tcg_gen_ld_f64(cpu_F1d, cpu_env, vfp_reg_offset(dp, reg));
1309 tcg_gen_ld_f32(cpu_F1s, cpu_env, vfp_reg_offset(dp, reg));
1312 static inline void gen_mov_vreg_F0(int dp, int reg)
1315 tcg_gen_st_f64(cpu_F0d, cpu_env, vfp_reg_offset(dp, reg));
1317 tcg_gen_st_f32(cpu_F0s, cpu_env, vfp_reg_offset(dp, reg));
1320 #define ARM_CP_RW_BIT (1 << 20)
1322 static inline void iwmmxt_load_reg(TCGv_i64 var, int reg)
1324 tcg_gen_ld_i64(var, cpu_env, offsetof(CPUARMState, iwmmxt.regs[reg]));
1327 static inline void iwmmxt_store_reg(TCGv_i64 var, int reg)
1329 tcg_gen_st_i64(var, cpu_env, offsetof(CPUARMState, iwmmxt.regs[reg]));
1332 static inline TCGv_i32 iwmmxt_load_creg(int reg)
1334 TCGv_i32 var = tcg_temp_new_i32();
1335 tcg_gen_ld_i32(var, cpu_env, offsetof(CPUARMState, iwmmxt.cregs[reg]));
1339 static inline void iwmmxt_store_creg(int reg, TCGv_i32 var)
1341 tcg_gen_st_i32(var, cpu_env, offsetof(CPUARMState, iwmmxt.cregs[reg]));
1342 tcg_temp_free_i32(var);
1345 static inline void gen_op_iwmmxt_movq_wRn_M0(int rn)
1347 iwmmxt_store_reg(cpu_M0, rn);
1350 static inline void gen_op_iwmmxt_movq_M0_wRn(int rn)
1352 iwmmxt_load_reg(cpu_M0, rn);
1355 static inline void gen_op_iwmmxt_orq_M0_wRn(int rn)
1357 iwmmxt_load_reg(cpu_V1, rn);
1358 tcg_gen_or_i64(cpu_M0, cpu_M0, cpu_V1);
1361 static inline void gen_op_iwmmxt_andq_M0_wRn(int rn)
1363 iwmmxt_load_reg(cpu_V1, rn);
1364 tcg_gen_and_i64(cpu_M0, cpu_M0, cpu_V1);
1367 static inline void gen_op_iwmmxt_xorq_M0_wRn(int rn)
1369 iwmmxt_load_reg(cpu_V1, rn);
1370 tcg_gen_xor_i64(cpu_M0, cpu_M0, cpu_V1);
1373 #define IWMMXT_OP(name) \
1374 static inline void gen_op_iwmmxt_##name##_M0_wRn(int rn) \
1376 iwmmxt_load_reg(cpu_V1, rn); \
1377 gen_helper_iwmmxt_##name(cpu_M0, cpu_M0, cpu_V1); \
1380 #define IWMMXT_OP_ENV(name) \
1381 static inline void gen_op_iwmmxt_##name##_M0_wRn(int rn) \
1383 iwmmxt_load_reg(cpu_V1, rn); \
1384 gen_helper_iwmmxt_##name(cpu_M0, cpu_env, cpu_M0, cpu_V1); \
1387 #define IWMMXT_OP_ENV_SIZE(name) \
1388 IWMMXT_OP_ENV(name##b) \
1389 IWMMXT_OP_ENV(name##w) \
1390 IWMMXT_OP_ENV(name##l)
1392 #define IWMMXT_OP_ENV1(name) \
1393 static inline void gen_op_iwmmxt_##name##_M0(void) \
1395 gen_helper_iwmmxt_##name(cpu_M0, cpu_env, cpu_M0); \
1409 IWMMXT_OP_ENV_SIZE(unpackl)
1410 IWMMXT_OP_ENV_SIZE(unpackh)
1412 IWMMXT_OP_ENV1(unpacklub)
1413 IWMMXT_OP_ENV1(unpackluw)
1414 IWMMXT_OP_ENV1(unpacklul)
1415 IWMMXT_OP_ENV1(unpackhub)
1416 IWMMXT_OP_ENV1(unpackhuw)
1417 IWMMXT_OP_ENV1(unpackhul)
1418 IWMMXT_OP_ENV1(unpacklsb)
1419 IWMMXT_OP_ENV1(unpacklsw)
1420 IWMMXT_OP_ENV1(unpacklsl)
1421 IWMMXT_OP_ENV1(unpackhsb)
1422 IWMMXT_OP_ENV1(unpackhsw)
1423 IWMMXT_OP_ENV1(unpackhsl)
1425 IWMMXT_OP_ENV_SIZE(cmpeq)
1426 IWMMXT_OP_ENV_SIZE(cmpgtu)
1427 IWMMXT_OP_ENV_SIZE(cmpgts)
1429 IWMMXT_OP_ENV_SIZE(mins)
1430 IWMMXT_OP_ENV_SIZE(minu)
1431 IWMMXT_OP_ENV_SIZE(maxs)
1432 IWMMXT_OP_ENV_SIZE(maxu)
1434 IWMMXT_OP_ENV_SIZE(subn)
1435 IWMMXT_OP_ENV_SIZE(addn)
1436 IWMMXT_OP_ENV_SIZE(subu)
1437 IWMMXT_OP_ENV_SIZE(addu)
1438 IWMMXT_OP_ENV_SIZE(subs)
1439 IWMMXT_OP_ENV_SIZE(adds)
1441 IWMMXT_OP_ENV(avgb0)
1442 IWMMXT_OP_ENV(avgb1)
1443 IWMMXT_OP_ENV(avgw0)
1444 IWMMXT_OP_ENV(avgw1)
1446 IWMMXT_OP_ENV(packuw)
1447 IWMMXT_OP_ENV(packul)
1448 IWMMXT_OP_ENV(packuq)
1449 IWMMXT_OP_ENV(packsw)
1450 IWMMXT_OP_ENV(packsl)
1451 IWMMXT_OP_ENV(packsq)
1453 static void gen_op_iwmmxt_set_mup(void)
1456 tmp = load_cpu_field(iwmmxt.cregs[ARM_IWMMXT_wCon]);
1457 tcg_gen_ori_i32(tmp, tmp, 2);
1458 store_cpu_field(tmp, iwmmxt.cregs[ARM_IWMMXT_wCon]);
1461 static void gen_op_iwmmxt_set_cup(void)
1464 tmp = load_cpu_field(iwmmxt.cregs[ARM_IWMMXT_wCon]);
1465 tcg_gen_ori_i32(tmp, tmp, 1);
1466 store_cpu_field(tmp, iwmmxt.cregs[ARM_IWMMXT_wCon]);
1469 static void gen_op_iwmmxt_setpsr_nz(void)
1471 TCGv_i32 tmp = tcg_temp_new_i32();
1472 gen_helper_iwmmxt_setpsr_nz(tmp, cpu_M0);
1473 store_cpu_field(tmp, iwmmxt.cregs[ARM_IWMMXT_wCASF]);
1476 static inline void gen_op_iwmmxt_addl_M0_wRn(int rn)
1478 iwmmxt_load_reg(cpu_V1, rn);
1479 tcg_gen_ext32u_i64(cpu_V1, cpu_V1);
1480 tcg_gen_add_i64(cpu_M0, cpu_M0, cpu_V1);
1483 static inline int gen_iwmmxt_address(DisasContext *s, uint32_t insn,
1490 rd = (insn >> 16) & 0xf;
1491 tmp = load_reg(s, rd);
1493 offset = (insn & 0xff) << ((insn >> 7) & 2);
1494 if (insn & (1 << 24)) {
1496 if (insn & (1 << 23))
1497 tcg_gen_addi_i32(tmp, tmp, offset);
1499 tcg_gen_addi_i32(tmp, tmp, -offset);
1500 tcg_gen_mov_i32(dest, tmp);
1501 if (insn & (1 << 21))
1502 store_reg(s, rd, tmp);
1504 tcg_temp_free_i32(tmp);
1505 } else if (insn & (1 << 21)) {
1507 tcg_gen_mov_i32(dest, tmp);
1508 if (insn & (1 << 23))
1509 tcg_gen_addi_i32(tmp, tmp, offset);
1511 tcg_gen_addi_i32(tmp, tmp, -offset);
1512 store_reg(s, rd, tmp);
1513 } else if (!(insn & (1 << 23)))
1518 static inline int gen_iwmmxt_shift(uint32_t insn, uint32_t mask, TCGv_i32 dest)
1520 int rd = (insn >> 0) & 0xf;
1523 if (insn & (1 << 8)) {
1524 if (rd < ARM_IWMMXT_wCGR0 || rd > ARM_IWMMXT_wCGR3) {
1527 tmp = iwmmxt_load_creg(rd);
1530 tmp = tcg_temp_new_i32();
1531 iwmmxt_load_reg(cpu_V0, rd);
1532 tcg_gen_trunc_i64_i32(tmp, cpu_V0);
1534 tcg_gen_andi_i32(tmp, tmp, mask);
1535 tcg_gen_mov_i32(dest, tmp);
1536 tcg_temp_free_i32(tmp);
1540 /* Disassemble an iwMMXt instruction. Returns nonzero if an error occurred
1541 (ie. an undefined instruction). */
1542 static int disas_iwmmxt_insn(DisasContext *s, uint32_t insn)
1545 int rdhi, rdlo, rd0, rd1, i;
1547 TCGv_i32 tmp, tmp2, tmp3;
1549 if ((insn & 0x0e000e00) == 0x0c000000) {
1550 if ((insn & 0x0fe00ff0) == 0x0c400000) {
1552 rdlo = (insn >> 12) & 0xf;
1553 rdhi = (insn >> 16) & 0xf;
1554 if (insn & ARM_CP_RW_BIT) { /* TMRRC */
1555 iwmmxt_load_reg(cpu_V0, wrd);
1556 tcg_gen_trunc_i64_i32(cpu_R[rdlo], cpu_V0);
1557 tcg_gen_shri_i64(cpu_V0, cpu_V0, 32);
1558 tcg_gen_trunc_i64_i32(cpu_R[rdhi], cpu_V0);
1559 } else { /* TMCRR */
1560 tcg_gen_concat_i32_i64(cpu_V0, cpu_R[rdlo], cpu_R[rdhi]);
1561 iwmmxt_store_reg(cpu_V0, wrd);
1562 gen_op_iwmmxt_set_mup();
1567 wrd = (insn >> 12) & 0xf;
1568 addr = tcg_temp_new_i32();
1569 if (gen_iwmmxt_address(s, insn, addr)) {
1570 tcg_temp_free_i32(addr);
1573 if (insn & ARM_CP_RW_BIT) {
1574 if ((insn >> 28) == 0xf) { /* WLDRW wCx */
1575 tmp = tcg_temp_new_i32();
1576 gen_aa32_ld32u(tmp, addr, get_mem_index(s));
1577 iwmmxt_store_creg(wrd, tmp);
1580 if (insn & (1 << 8)) {
1581 if (insn & (1 << 22)) { /* WLDRD */
1582 gen_aa32_ld64(cpu_M0, addr, get_mem_index(s));
1584 } else { /* WLDRW wRd */
1585 tmp = tcg_temp_new_i32();
1586 gen_aa32_ld32u(tmp, addr, get_mem_index(s));
1589 tmp = tcg_temp_new_i32();
1590 if (insn & (1 << 22)) { /* WLDRH */
1591 gen_aa32_ld16u(tmp, addr, get_mem_index(s));
1592 } else { /* WLDRB */
1593 gen_aa32_ld8u(tmp, addr, get_mem_index(s));
1597 tcg_gen_extu_i32_i64(cpu_M0, tmp);
1598 tcg_temp_free_i32(tmp);
1600 gen_op_iwmmxt_movq_wRn_M0(wrd);
1603 if ((insn >> 28) == 0xf) { /* WSTRW wCx */
1604 tmp = iwmmxt_load_creg(wrd);
1605 gen_aa32_st32(tmp, addr, get_mem_index(s));
1607 gen_op_iwmmxt_movq_M0_wRn(wrd);
1608 tmp = tcg_temp_new_i32();
1609 if (insn & (1 << 8)) {
1610 if (insn & (1 << 22)) { /* WSTRD */
1611 gen_aa32_st64(cpu_M0, addr, get_mem_index(s));
1612 } else { /* WSTRW wRd */
1613 tcg_gen_trunc_i64_i32(tmp, cpu_M0);
1614 gen_aa32_st32(tmp, addr, get_mem_index(s));
1617 if (insn & (1 << 22)) { /* WSTRH */
1618 tcg_gen_trunc_i64_i32(tmp, cpu_M0);
1619 gen_aa32_st16(tmp, addr, get_mem_index(s));
1620 } else { /* WSTRB */
1621 tcg_gen_trunc_i64_i32(tmp, cpu_M0);
1622 gen_aa32_st8(tmp, addr, get_mem_index(s));
1626 tcg_temp_free_i32(tmp);
1628 tcg_temp_free_i32(addr);
1632 if ((insn & 0x0f000000) != 0x0e000000)
1635 switch (((insn >> 12) & 0xf00) | ((insn >> 4) & 0xff)) {
1636 case 0x000: /* WOR */
1637 wrd = (insn >> 12) & 0xf;
1638 rd0 = (insn >> 0) & 0xf;
1639 rd1 = (insn >> 16) & 0xf;
1640 gen_op_iwmmxt_movq_M0_wRn(rd0);
1641 gen_op_iwmmxt_orq_M0_wRn(rd1);
1642 gen_op_iwmmxt_setpsr_nz();
1643 gen_op_iwmmxt_movq_wRn_M0(wrd);
1644 gen_op_iwmmxt_set_mup();
1645 gen_op_iwmmxt_set_cup();
1647 case 0x011: /* TMCR */
1650 rd = (insn >> 12) & 0xf;
1651 wrd = (insn >> 16) & 0xf;
1653 case ARM_IWMMXT_wCID:
1654 case ARM_IWMMXT_wCASF:
1656 case ARM_IWMMXT_wCon:
1657 gen_op_iwmmxt_set_cup();
1659 case ARM_IWMMXT_wCSSF:
1660 tmp = iwmmxt_load_creg(wrd);
1661 tmp2 = load_reg(s, rd);
1662 tcg_gen_andc_i32(tmp, tmp, tmp2);
1663 tcg_temp_free_i32(tmp2);
1664 iwmmxt_store_creg(wrd, tmp);
1666 case ARM_IWMMXT_wCGR0:
1667 case ARM_IWMMXT_wCGR1:
1668 case ARM_IWMMXT_wCGR2:
1669 case ARM_IWMMXT_wCGR3:
1670 gen_op_iwmmxt_set_cup();
1671 tmp = load_reg(s, rd);
1672 iwmmxt_store_creg(wrd, tmp);
1678 case 0x100: /* WXOR */
1679 wrd = (insn >> 12) & 0xf;
1680 rd0 = (insn >> 0) & 0xf;
1681 rd1 = (insn >> 16) & 0xf;
1682 gen_op_iwmmxt_movq_M0_wRn(rd0);
1683 gen_op_iwmmxt_xorq_M0_wRn(rd1);
1684 gen_op_iwmmxt_setpsr_nz();
1685 gen_op_iwmmxt_movq_wRn_M0(wrd);
1686 gen_op_iwmmxt_set_mup();
1687 gen_op_iwmmxt_set_cup();
1689 case 0x111: /* TMRC */
1692 rd = (insn >> 12) & 0xf;
1693 wrd = (insn >> 16) & 0xf;
1694 tmp = iwmmxt_load_creg(wrd);
1695 store_reg(s, rd, tmp);
1697 case 0x300: /* WANDN */
1698 wrd = (insn >> 12) & 0xf;
1699 rd0 = (insn >> 0) & 0xf;
1700 rd1 = (insn >> 16) & 0xf;
1701 gen_op_iwmmxt_movq_M0_wRn(rd0);
1702 tcg_gen_neg_i64(cpu_M0, cpu_M0);
1703 gen_op_iwmmxt_andq_M0_wRn(rd1);
1704 gen_op_iwmmxt_setpsr_nz();
1705 gen_op_iwmmxt_movq_wRn_M0(wrd);
1706 gen_op_iwmmxt_set_mup();
1707 gen_op_iwmmxt_set_cup();
1709 case 0x200: /* WAND */
1710 wrd = (insn >> 12) & 0xf;
1711 rd0 = (insn >> 0) & 0xf;
1712 rd1 = (insn >> 16) & 0xf;
1713 gen_op_iwmmxt_movq_M0_wRn(rd0);
1714 gen_op_iwmmxt_andq_M0_wRn(rd1);
1715 gen_op_iwmmxt_setpsr_nz();
1716 gen_op_iwmmxt_movq_wRn_M0(wrd);
1717 gen_op_iwmmxt_set_mup();
1718 gen_op_iwmmxt_set_cup();
1720 case 0x810: case 0xa10: /* WMADD */
1721 wrd = (insn >> 12) & 0xf;
1722 rd0 = (insn >> 0) & 0xf;
1723 rd1 = (insn >> 16) & 0xf;
1724 gen_op_iwmmxt_movq_M0_wRn(rd0);
1725 if (insn & (1 << 21))
1726 gen_op_iwmmxt_maddsq_M0_wRn(rd1);
1728 gen_op_iwmmxt_madduq_M0_wRn(rd1);
1729 gen_op_iwmmxt_movq_wRn_M0(wrd);
1730 gen_op_iwmmxt_set_mup();
1732 case 0x10e: case 0x50e: case 0x90e: case 0xd0e: /* WUNPCKIL */
1733 wrd = (insn >> 12) & 0xf;
1734 rd0 = (insn >> 16) & 0xf;
1735 rd1 = (insn >> 0) & 0xf;
1736 gen_op_iwmmxt_movq_M0_wRn(rd0);
1737 switch ((insn >> 22) & 3) {
1739 gen_op_iwmmxt_unpacklb_M0_wRn(rd1);
1742 gen_op_iwmmxt_unpacklw_M0_wRn(rd1);
1745 gen_op_iwmmxt_unpackll_M0_wRn(rd1);
1750 gen_op_iwmmxt_movq_wRn_M0(wrd);
1751 gen_op_iwmmxt_set_mup();
1752 gen_op_iwmmxt_set_cup();
1754 case 0x10c: case 0x50c: case 0x90c: case 0xd0c: /* WUNPCKIH */
1755 wrd = (insn >> 12) & 0xf;
1756 rd0 = (insn >> 16) & 0xf;
1757 rd1 = (insn >> 0) & 0xf;
1758 gen_op_iwmmxt_movq_M0_wRn(rd0);
1759 switch ((insn >> 22) & 3) {
1761 gen_op_iwmmxt_unpackhb_M0_wRn(rd1);
1764 gen_op_iwmmxt_unpackhw_M0_wRn(rd1);
1767 gen_op_iwmmxt_unpackhl_M0_wRn(rd1);
1772 gen_op_iwmmxt_movq_wRn_M0(wrd);
1773 gen_op_iwmmxt_set_mup();
1774 gen_op_iwmmxt_set_cup();
1776 case 0x012: case 0x112: case 0x412: case 0x512: /* WSAD */
1777 wrd = (insn >> 12) & 0xf;
1778 rd0 = (insn >> 16) & 0xf;
1779 rd1 = (insn >> 0) & 0xf;
1780 gen_op_iwmmxt_movq_M0_wRn(rd0);
1781 if (insn & (1 << 22))
1782 gen_op_iwmmxt_sadw_M0_wRn(rd1);
1784 gen_op_iwmmxt_sadb_M0_wRn(rd1);
1785 if (!(insn & (1 << 20)))
1786 gen_op_iwmmxt_addl_M0_wRn(wrd);
1787 gen_op_iwmmxt_movq_wRn_M0(wrd);
1788 gen_op_iwmmxt_set_mup();
1790 case 0x010: case 0x110: case 0x210: case 0x310: /* WMUL */
1791 wrd = (insn >> 12) & 0xf;
1792 rd0 = (insn >> 16) & 0xf;
1793 rd1 = (insn >> 0) & 0xf;
1794 gen_op_iwmmxt_movq_M0_wRn(rd0);
1795 if (insn & (1 << 21)) {
1796 if (insn & (1 << 20))
1797 gen_op_iwmmxt_mulshw_M0_wRn(rd1);
1799 gen_op_iwmmxt_mulslw_M0_wRn(rd1);
1801 if (insn & (1 << 20))
1802 gen_op_iwmmxt_muluhw_M0_wRn(rd1);
1804 gen_op_iwmmxt_mululw_M0_wRn(rd1);
1806 gen_op_iwmmxt_movq_wRn_M0(wrd);
1807 gen_op_iwmmxt_set_mup();
1809 case 0x410: case 0x510: case 0x610: case 0x710: /* WMAC */
1810 wrd = (insn >> 12) & 0xf;
1811 rd0 = (insn >> 16) & 0xf;
1812 rd1 = (insn >> 0) & 0xf;
1813 gen_op_iwmmxt_movq_M0_wRn(rd0);
1814 if (insn & (1 << 21))
1815 gen_op_iwmmxt_macsw_M0_wRn(rd1);
1817 gen_op_iwmmxt_macuw_M0_wRn(rd1);
1818 if (!(insn & (1 << 20))) {
1819 iwmmxt_load_reg(cpu_V1, wrd);
1820 tcg_gen_add_i64(cpu_M0, cpu_M0, cpu_V1);
1822 gen_op_iwmmxt_movq_wRn_M0(wrd);
1823 gen_op_iwmmxt_set_mup();
1825 case 0x006: case 0x406: case 0x806: case 0xc06: /* WCMPEQ */
1826 wrd = (insn >> 12) & 0xf;
1827 rd0 = (insn >> 16) & 0xf;
1828 rd1 = (insn >> 0) & 0xf;
1829 gen_op_iwmmxt_movq_M0_wRn(rd0);
1830 switch ((insn >> 22) & 3) {
1832 gen_op_iwmmxt_cmpeqb_M0_wRn(rd1);
1835 gen_op_iwmmxt_cmpeqw_M0_wRn(rd1);
1838 gen_op_iwmmxt_cmpeql_M0_wRn(rd1);
1843 gen_op_iwmmxt_movq_wRn_M0(wrd);
1844 gen_op_iwmmxt_set_mup();
1845 gen_op_iwmmxt_set_cup();
1847 case 0x800: case 0x900: case 0xc00: case 0xd00: /* WAVG2 */
1848 wrd = (insn >> 12) & 0xf;
1849 rd0 = (insn >> 16) & 0xf;
1850 rd1 = (insn >> 0) & 0xf;
1851 gen_op_iwmmxt_movq_M0_wRn(rd0);
1852 if (insn & (1 << 22)) {
1853 if (insn & (1 << 20))
1854 gen_op_iwmmxt_avgw1_M0_wRn(rd1);
1856 gen_op_iwmmxt_avgw0_M0_wRn(rd1);
1858 if (insn & (1 << 20))
1859 gen_op_iwmmxt_avgb1_M0_wRn(rd1);
1861 gen_op_iwmmxt_avgb0_M0_wRn(rd1);
1863 gen_op_iwmmxt_movq_wRn_M0(wrd);
1864 gen_op_iwmmxt_set_mup();
1865 gen_op_iwmmxt_set_cup();
1867 case 0x802: case 0x902: case 0xa02: case 0xb02: /* WALIGNR */
1868 wrd = (insn >> 12) & 0xf;
1869 rd0 = (insn >> 16) & 0xf;
1870 rd1 = (insn >> 0) & 0xf;
1871 gen_op_iwmmxt_movq_M0_wRn(rd0);
1872 tmp = iwmmxt_load_creg(ARM_IWMMXT_wCGR0 + ((insn >> 20) & 3));
1873 tcg_gen_andi_i32(tmp, tmp, 7);
1874 iwmmxt_load_reg(cpu_V1, rd1);
1875 gen_helper_iwmmxt_align(cpu_M0, cpu_M0, cpu_V1, tmp);
1876 tcg_temp_free_i32(tmp);
1877 gen_op_iwmmxt_movq_wRn_M0(wrd);
1878 gen_op_iwmmxt_set_mup();
1880 case 0x601: case 0x605: case 0x609: case 0x60d: /* TINSR */
1881 if (((insn >> 6) & 3) == 3)
1883 rd = (insn >> 12) & 0xf;
1884 wrd = (insn >> 16) & 0xf;
1885 tmp = load_reg(s, rd);
1886 gen_op_iwmmxt_movq_M0_wRn(wrd);
1887 switch ((insn >> 6) & 3) {
1889 tmp2 = tcg_const_i32(0xff);
1890 tmp3 = tcg_const_i32((insn & 7) << 3);
1893 tmp2 = tcg_const_i32(0xffff);
1894 tmp3 = tcg_const_i32((insn & 3) << 4);
1897 tmp2 = tcg_const_i32(0xffffffff);
1898 tmp3 = tcg_const_i32((insn & 1) << 5);
1901 TCGV_UNUSED_I32(tmp2);
1902 TCGV_UNUSED_I32(tmp3);
1904 gen_helper_iwmmxt_insr(cpu_M0, cpu_M0, tmp, tmp2, tmp3);
1905 tcg_temp_free_i32(tmp3);
1906 tcg_temp_free_i32(tmp2);
1907 tcg_temp_free_i32(tmp);
1908 gen_op_iwmmxt_movq_wRn_M0(wrd);
1909 gen_op_iwmmxt_set_mup();
1911 case 0x107: case 0x507: case 0x907: case 0xd07: /* TEXTRM */
1912 rd = (insn >> 12) & 0xf;
1913 wrd = (insn >> 16) & 0xf;
1914 if (rd == 15 || ((insn >> 22) & 3) == 3)
1916 gen_op_iwmmxt_movq_M0_wRn(wrd);
1917 tmp = tcg_temp_new_i32();
1918 switch ((insn >> 22) & 3) {
1920 tcg_gen_shri_i64(cpu_M0, cpu_M0, (insn & 7) << 3);
1921 tcg_gen_trunc_i64_i32(tmp, cpu_M0);
1923 tcg_gen_ext8s_i32(tmp, tmp);
1925 tcg_gen_andi_i32(tmp, tmp, 0xff);
1929 tcg_gen_shri_i64(cpu_M0, cpu_M0, (insn & 3) << 4);
1930 tcg_gen_trunc_i64_i32(tmp, cpu_M0);
1932 tcg_gen_ext16s_i32(tmp, tmp);
1934 tcg_gen_andi_i32(tmp, tmp, 0xffff);
1938 tcg_gen_shri_i64(cpu_M0, cpu_M0, (insn & 1) << 5);
1939 tcg_gen_trunc_i64_i32(tmp, cpu_M0);
1942 store_reg(s, rd, tmp);
1944 case 0x117: case 0x517: case 0x917: case 0xd17: /* TEXTRC */
1945 if ((insn & 0x000ff008) != 0x0003f000 || ((insn >> 22) & 3) == 3)
1947 tmp = iwmmxt_load_creg(ARM_IWMMXT_wCASF);
1948 switch ((insn >> 22) & 3) {
1950 tcg_gen_shri_i32(tmp, tmp, ((insn & 7) << 2) + 0);
1953 tcg_gen_shri_i32(tmp, tmp, ((insn & 3) << 3) + 4);
1956 tcg_gen_shri_i32(tmp, tmp, ((insn & 1) << 4) + 12);
1959 tcg_gen_shli_i32(tmp, tmp, 28);
1961 tcg_temp_free_i32(tmp);
1963 case 0x401: case 0x405: case 0x409: case 0x40d: /* TBCST */
1964 if (((insn >> 6) & 3) == 3)
1966 rd = (insn >> 12) & 0xf;
1967 wrd = (insn >> 16) & 0xf;
1968 tmp = load_reg(s, rd);
1969 switch ((insn >> 6) & 3) {
1971 gen_helper_iwmmxt_bcstb(cpu_M0, tmp);
1974 gen_helper_iwmmxt_bcstw(cpu_M0, tmp);
1977 gen_helper_iwmmxt_bcstl(cpu_M0, tmp);
1980 tcg_temp_free_i32(tmp);
1981 gen_op_iwmmxt_movq_wRn_M0(wrd);
1982 gen_op_iwmmxt_set_mup();
1984 case 0x113: case 0x513: case 0x913: case 0xd13: /* TANDC */
1985 if ((insn & 0x000ff00f) != 0x0003f000 || ((insn >> 22) & 3) == 3)
1987 tmp = iwmmxt_load_creg(ARM_IWMMXT_wCASF);
1988 tmp2 = tcg_temp_new_i32();
1989 tcg_gen_mov_i32(tmp2, tmp);
1990 switch ((insn >> 22) & 3) {
1992 for (i = 0; i < 7; i ++) {
1993 tcg_gen_shli_i32(tmp2, tmp2, 4);
1994 tcg_gen_and_i32(tmp, tmp, tmp2);
1998 for (i = 0; i < 3; i ++) {
1999 tcg_gen_shli_i32(tmp2, tmp2, 8);
2000 tcg_gen_and_i32(tmp, tmp, tmp2);
2004 tcg_gen_shli_i32(tmp2, tmp2, 16);
2005 tcg_gen_and_i32(tmp, tmp, tmp2);
2009 tcg_temp_free_i32(tmp2);
2010 tcg_temp_free_i32(tmp);
2012 case 0x01c: case 0x41c: case 0x81c: case 0xc1c: /* WACC */
2013 wrd = (insn >> 12) & 0xf;
2014 rd0 = (insn >> 16) & 0xf;
2015 gen_op_iwmmxt_movq_M0_wRn(rd0);
2016 switch ((insn >> 22) & 3) {
2018 gen_helper_iwmmxt_addcb(cpu_M0, cpu_M0);
2021 gen_helper_iwmmxt_addcw(cpu_M0, cpu_M0);
2024 gen_helper_iwmmxt_addcl(cpu_M0, cpu_M0);
2029 gen_op_iwmmxt_movq_wRn_M0(wrd);
2030 gen_op_iwmmxt_set_mup();
2032 case 0x115: case 0x515: case 0x915: case 0xd15: /* TORC */
2033 if ((insn & 0x000ff00f) != 0x0003f000 || ((insn >> 22) & 3) == 3)
2035 tmp = iwmmxt_load_creg(ARM_IWMMXT_wCASF);
2036 tmp2 = tcg_temp_new_i32();
2037 tcg_gen_mov_i32(tmp2, tmp);
2038 switch ((insn >> 22) & 3) {
2040 for (i = 0; i < 7; i ++) {
2041 tcg_gen_shli_i32(tmp2, tmp2, 4);
2042 tcg_gen_or_i32(tmp, tmp, tmp2);
2046 for (i = 0; i < 3; i ++) {
2047 tcg_gen_shli_i32(tmp2, tmp2, 8);
2048 tcg_gen_or_i32(tmp, tmp, tmp2);
2052 tcg_gen_shli_i32(tmp2, tmp2, 16);
2053 tcg_gen_or_i32(tmp, tmp, tmp2);
2057 tcg_temp_free_i32(tmp2);
2058 tcg_temp_free_i32(tmp);
2060 case 0x103: case 0x503: case 0x903: case 0xd03: /* TMOVMSK */
2061 rd = (insn >> 12) & 0xf;
2062 rd0 = (insn >> 16) & 0xf;
2063 if ((insn & 0xf) != 0 || ((insn >> 22) & 3) == 3)
2065 gen_op_iwmmxt_movq_M0_wRn(rd0);
2066 tmp = tcg_temp_new_i32();
2067 switch ((insn >> 22) & 3) {
2069 gen_helper_iwmmxt_msbb(tmp, cpu_M0);
2072 gen_helper_iwmmxt_msbw(tmp, cpu_M0);
2075 gen_helper_iwmmxt_msbl(tmp, cpu_M0);
2078 store_reg(s, rd, tmp);
2080 case 0x106: case 0x306: case 0x506: case 0x706: /* WCMPGT */
2081 case 0x906: case 0xb06: case 0xd06: case 0xf06:
2082 wrd = (insn >> 12) & 0xf;
2083 rd0 = (insn >> 16) & 0xf;
2084 rd1 = (insn >> 0) & 0xf;
2085 gen_op_iwmmxt_movq_M0_wRn(rd0);
2086 switch ((insn >> 22) & 3) {
2088 if (insn & (1 << 21))
2089 gen_op_iwmmxt_cmpgtsb_M0_wRn(rd1);
2091 gen_op_iwmmxt_cmpgtub_M0_wRn(rd1);
2094 if (insn & (1 << 21))
2095 gen_op_iwmmxt_cmpgtsw_M0_wRn(rd1);
2097 gen_op_iwmmxt_cmpgtuw_M0_wRn(rd1);
2100 if (insn & (1 << 21))
2101 gen_op_iwmmxt_cmpgtsl_M0_wRn(rd1);
2103 gen_op_iwmmxt_cmpgtul_M0_wRn(rd1);
2108 gen_op_iwmmxt_movq_wRn_M0(wrd);
2109 gen_op_iwmmxt_set_mup();
2110 gen_op_iwmmxt_set_cup();
2112 case 0x00e: case 0x20e: case 0x40e: case 0x60e: /* WUNPCKEL */
2113 case 0x80e: case 0xa0e: case 0xc0e: case 0xe0e:
2114 wrd = (insn >> 12) & 0xf;
2115 rd0 = (insn >> 16) & 0xf;
2116 gen_op_iwmmxt_movq_M0_wRn(rd0);
2117 switch ((insn >> 22) & 3) {
2119 if (insn & (1 << 21))
2120 gen_op_iwmmxt_unpacklsb_M0();
2122 gen_op_iwmmxt_unpacklub_M0();
2125 if (insn & (1 << 21))
2126 gen_op_iwmmxt_unpacklsw_M0();
2128 gen_op_iwmmxt_unpackluw_M0();
2131 if (insn & (1 << 21))
2132 gen_op_iwmmxt_unpacklsl_M0();
2134 gen_op_iwmmxt_unpacklul_M0();
2139 gen_op_iwmmxt_movq_wRn_M0(wrd);
2140 gen_op_iwmmxt_set_mup();
2141 gen_op_iwmmxt_set_cup();
2143 case 0x00c: case 0x20c: case 0x40c: case 0x60c: /* WUNPCKEH */
2144 case 0x80c: case 0xa0c: case 0xc0c: case 0xe0c:
2145 wrd = (insn >> 12) & 0xf;
2146 rd0 = (insn >> 16) & 0xf;
2147 gen_op_iwmmxt_movq_M0_wRn(rd0);
2148 switch ((insn >> 22) & 3) {
2150 if (insn & (1 << 21))
2151 gen_op_iwmmxt_unpackhsb_M0();
2153 gen_op_iwmmxt_unpackhub_M0();
2156 if (insn & (1 << 21))
2157 gen_op_iwmmxt_unpackhsw_M0();
2159 gen_op_iwmmxt_unpackhuw_M0();
2162 if (insn & (1 << 21))
2163 gen_op_iwmmxt_unpackhsl_M0();
2165 gen_op_iwmmxt_unpackhul_M0();
2170 gen_op_iwmmxt_movq_wRn_M0(wrd);
2171 gen_op_iwmmxt_set_mup();
2172 gen_op_iwmmxt_set_cup();
2174 case 0x204: case 0x604: case 0xa04: case 0xe04: /* WSRL */
2175 case 0x214: case 0x614: case 0xa14: case 0xe14:
2176 if (((insn >> 22) & 3) == 0)
2178 wrd = (insn >> 12) & 0xf;
2179 rd0 = (insn >> 16) & 0xf;
2180 gen_op_iwmmxt_movq_M0_wRn(rd0);
2181 tmp = tcg_temp_new_i32();
2182 if (gen_iwmmxt_shift(insn, 0xff, tmp)) {
2183 tcg_temp_free_i32(tmp);
2186 switch ((insn >> 22) & 3) {
2188 gen_helper_iwmmxt_srlw(cpu_M0, cpu_env, cpu_M0, tmp);
2191 gen_helper_iwmmxt_srll(cpu_M0, cpu_env, cpu_M0, tmp);
2194 gen_helper_iwmmxt_srlq(cpu_M0, cpu_env, cpu_M0, tmp);
2197 tcg_temp_free_i32(tmp);
2198 gen_op_iwmmxt_movq_wRn_M0(wrd);
2199 gen_op_iwmmxt_set_mup();
2200 gen_op_iwmmxt_set_cup();
2202 case 0x004: case 0x404: case 0x804: case 0xc04: /* WSRA */
2203 case 0x014: case 0x414: case 0x814: case 0xc14:
2204 if (((insn >> 22) & 3) == 0)
2206 wrd = (insn >> 12) & 0xf;
2207 rd0 = (insn >> 16) & 0xf;
2208 gen_op_iwmmxt_movq_M0_wRn(rd0);
2209 tmp = tcg_temp_new_i32();
2210 if (gen_iwmmxt_shift(insn, 0xff, tmp)) {
2211 tcg_temp_free_i32(tmp);
2214 switch ((insn >> 22) & 3) {
2216 gen_helper_iwmmxt_sraw(cpu_M0, cpu_env, cpu_M0, tmp);
2219 gen_helper_iwmmxt_sral(cpu_M0, cpu_env, cpu_M0, tmp);
2222 gen_helper_iwmmxt_sraq(cpu_M0, cpu_env, cpu_M0, tmp);
2225 tcg_temp_free_i32(tmp);
2226 gen_op_iwmmxt_movq_wRn_M0(wrd);
2227 gen_op_iwmmxt_set_mup();
2228 gen_op_iwmmxt_set_cup();
2230 case 0x104: case 0x504: case 0x904: case 0xd04: /* WSLL */
2231 case 0x114: case 0x514: case 0x914: case 0xd14:
2232 if (((insn >> 22) & 3) == 0)
2234 wrd = (insn >> 12) & 0xf;
2235 rd0 = (insn >> 16) & 0xf;
2236 gen_op_iwmmxt_movq_M0_wRn(rd0);
2237 tmp = tcg_temp_new_i32();
2238 if (gen_iwmmxt_shift(insn, 0xff, tmp)) {
2239 tcg_temp_free_i32(tmp);
2242 switch ((insn >> 22) & 3) {
2244 gen_helper_iwmmxt_sllw(cpu_M0, cpu_env, cpu_M0, tmp);
2247 gen_helper_iwmmxt_slll(cpu_M0, cpu_env, cpu_M0, tmp);
2250 gen_helper_iwmmxt_sllq(cpu_M0, cpu_env, cpu_M0, tmp);
2253 tcg_temp_free_i32(tmp);
2254 gen_op_iwmmxt_movq_wRn_M0(wrd);
2255 gen_op_iwmmxt_set_mup();
2256 gen_op_iwmmxt_set_cup();
2258 case 0x304: case 0x704: case 0xb04: case 0xf04: /* WROR */
2259 case 0x314: case 0x714: case 0xb14: case 0xf14:
2260 if (((insn >> 22) & 3) == 0)
2262 wrd = (insn >> 12) & 0xf;
2263 rd0 = (insn >> 16) & 0xf;
2264 gen_op_iwmmxt_movq_M0_wRn(rd0);
2265 tmp = tcg_temp_new_i32();
2266 switch ((insn >> 22) & 3) {
2268 if (gen_iwmmxt_shift(insn, 0xf, tmp)) {
2269 tcg_temp_free_i32(tmp);
2272 gen_helper_iwmmxt_rorw(cpu_M0, cpu_env, cpu_M0, tmp);
2275 if (gen_iwmmxt_shift(insn, 0x1f, tmp)) {
2276 tcg_temp_free_i32(tmp);
2279 gen_helper_iwmmxt_rorl(cpu_M0, cpu_env, cpu_M0, tmp);
2282 if (gen_iwmmxt_shift(insn, 0x3f, tmp)) {
2283 tcg_temp_free_i32(tmp);
2286 gen_helper_iwmmxt_rorq(cpu_M0, cpu_env, cpu_M0, tmp);
2289 tcg_temp_free_i32(tmp);
2290 gen_op_iwmmxt_movq_wRn_M0(wrd);
2291 gen_op_iwmmxt_set_mup();
2292 gen_op_iwmmxt_set_cup();
2294 case 0x116: case 0x316: case 0x516: case 0x716: /* WMIN */
2295 case 0x916: case 0xb16: case 0xd16: case 0xf16:
2296 wrd = (insn >> 12) & 0xf;
2297 rd0 = (insn >> 16) & 0xf;
2298 rd1 = (insn >> 0) & 0xf;
2299 gen_op_iwmmxt_movq_M0_wRn(rd0);
2300 switch ((insn >> 22) & 3) {
2302 if (insn & (1 << 21))
2303 gen_op_iwmmxt_minsb_M0_wRn(rd1);
2305 gen_op_iwmmxt_minub_M0_wRn(rd1);
2308 if (insn & (1 << 21))
2309 gen_op_iwmmxt_minsw_M0_wRn(rd1);
2311 gen_op_iwmmxt_minuw_M0_wRn(rd1);
2314 if (insn & (1 << 21))
2315 gen_op_iwmmxt_minsl_M0_wRn(rd1);
2317 gen_op_iwmmxt_minul_M0_wRn(rd1);
2322 gen_op_iwmmxt_movq_wRn_M0(wrd);
2323 gen_op_iwmmxt_set_mup();
2325 case 0x016: case 0x216: case 0x416: case 0x616: /* WMAX */
2326 case 0x816: case 0xa16: case 0xc16: case 0xe16:
2327 wrd = (insn >> 12) & 0xf;
2328 rd0 = (insn >> 16) & 0xf;
2329 rd1 = (insn >> 0) & 0xf;
2330 gen_op_iwmmxt_movq_M0_wRn(rd0);
2331 switch ((insn >> 22) & 3) {
2333 if (insn & (1 << 21))
2334 gen_op_iwmmxt_maxsb_M0_wRn(rd1);
2336 gen_op_iwmmxt_maxub_M0_wRn(rd1);
2339 if (insn & (1 << 21))
2340 gen_op_iwmmxt_maxsw_M0_wRn(rd1);
2342 gen_op_iwmmxt_maxuw_M0_wRn(rd1);
2345 if (insn & (1 << 21))
2346 gen_op_iwmmxt_maxsl_M0_wRn(rd1);
2348 gen_op_iwmmxt_maxul_M0_wRn(rd1);
2353 gen_op_iwmmxt_movq_wRn_M0(wrd);
2354 gen_op_iwmmxt_set_mup();
2356 case 0x002: case 0x102: case 0x202: case 0x302: /* WALIGNI */
2357 case 0x402: case 0x502: case 0x602: case 0x702:
2358 wrd = (insn >> 12) & 0xf;
2359 rd0 = (insn >> 16) & 0xf;
2360 rd1 = (insn >> 0) & 0xf;
2361 gen_op_iwmmxt_movq_M0_wRn(rd0);
2362 tmp = tcg_const_i32((insn >> 20) & 3);
2363 iwmmxt_load_reg(cpu_V1, rd1);
2364 gen_helper_iwmmxt_align(cpu_M0, cpu_M0, cpu_V1, tmp);
2365 tcg_temp_free_i32(tmp);
2366 gen_op_iwmmxt_movq_wRn_M0(wrd);
2367 gen_op_iwmmxt_set_mup();
2369 case 0x01a: case 0x11a: case 0x21a: case 0x31a: /* WSUB */
2370 case 0x41a: case 0x51a: case 0x61a: case 0x71a:
2371 case 0x81a: case 0x91a: case 0xa1a: case 0xb1a:
2372 case 0xc1a: case 0xd1a: case 0xe1a: case 0xf1a:
2373 wrd = (insn >> 12) & 0xf;
2374 rd0 = (insn >> 16) & 0xf;
2375 rd1 = (insn >> 0) & 0xf;
2376 gen_op_iwmmxt_movq_M0_wRn(rd0);
2377 switch ((insn >> 20) & 0xf) {
2379 gen_op_iwmmxt_subnb_M0_wRn(rd1);
2382 gen_op_iwmmxt_subub_M0_wRn(rd1);
2385 gen_op_iwmmxt_subsb_M0_wRn(rd1);
2388 gen_op_iwmmxt_subnw_M0_wRn(rd1);
2391 gen_op_iwmmxt_subuw_M0_wRn(rd1);
2394 gen_op_iwmmxt_subsw_M0_wRn(rd1);
2397 gen_op_iwmmxt_subnl_M0_wRn(rd1);
2400 gen_op_iwmmxt_subul_M0_wRn(rd1);
2403 gen_op_iwmmxt_subsl_M0_wRn(rd1);
2408 gen_op_iwmmxt_movq_wRn_M0(wrd);
2409 gen_op_iwmmxt_set_mup();
2410 gen_op_iwmmxt_set_cup();
2412 case 0x01e: case 0x11e: case 0x21e: case 0x31e: /* WSHUFH */
2413 case 0x41e: case 0x51e: case 0x61e: case 0x71e:
2414 case 0x81e: case 0x91e: case 0xa1e: case 0xb1e:
2415 case 0xc1e: case 0xd1e: case 0xe1e: case 0xf1e:
2416 wrd = (insn >> 12) & 0xf;
2417 rd0 = (insn >> 16) & 0xf;
2418 gen_op_iwmmxt_movq_M0_wRn(rd0);
2419 tmp = tcg_const_i32(((insn >> 16) & 0xf0) | (insn & 0x0f));
2420 gen_helper_iwmmxt_shufh(cpu_M0, cpu_env, cpu_M0, tmp);
2421 tcg_temp_free_i32(tmp);
2422 gen_op_iwmmxt_movq_wRn_M0(wrd);
2423 gen_op_iwmmxt_set_mup();
2424 gen_op_iwmmxt_set_cup();
2426 case 0x018: case 0x118: case 0x218: case 0x318: /* WADD */
2427 case 0x418: case 0x518: case 0x618: case 0x718:
2428 case 0x818: case 0x918: case 0xa18: case 0xb18:
2429 case 0xc18: case 0xd18: case 0xe18: case 0xf18:
2430 wrd = (insn >> 12) & 0xf;
2431 rd0 = (insn >> 16) & 0xf;
2432 rd1 = (insn >> 0) & 0xf;
2433 gen_op_iwmmxt_movq_M0_wRn(rd0);
2434 switch ((insn >> 20) & 0xf) {
2436 gen_op_iwmmxt_addnb_M0_wRn(rd1);
2439 gen_op_iwmmxt_addub_M0_wRn(rd1);
2442 gen_op_iwmmxt_addsb_M0_wRn(rd1);
2445 gen_op_iwmmxt_addnw_M0_wRn(rd1);
2448 gen_op_iwmmxt_adduw_M0_wRn(rd1);
2451 gen_op_iwmmxt_addsw_M0_wRn(rd1);
2454 gen_op_iwmmxt_addnl_M0_wRn(rd1);
2457 gen_op_iwmmxt_addul_M0_wRn(rd1);
2460 gen_op_iwmmxt_addsl_M0_wRn(rd1);
2465 gen_op_iwmmxt_movq_wRn_M0(wrd);
2466 gen_op_iwmmxt_set_mup();
2467 gen_op_iwmmxt_set_cup();
2469 case 0x008: case 0x108: case 0x208: case 0x308: /* WPACK */
2470 case 0x408: case 0x508: case 0x608: case 0x708:
2471 case 0x808: case 0x908: case 0xa08: case 0xb08:
2472 case 0xc08: case 0xd08: case 0xe08: case 0xf08:
2473 if (!(insn & (1 << 20)) || ((insn >> 22) & 3) == 0)
2475 wrd = (insn >> 12) & 0xf;
2476 rd0 = (insn >> 16) & 0xf;
2477 rd1 = (insn >> 0) & 0xf;
2478 gen_op_iwmmxt_movq_M0_wRn(rd0);
2479 switch ((insn >> 22) & 3) {
2481 if (insn & (1 << 21))
2482 gen_op_iwmmxt_packsw_M0_wRn(rd1);
2484 gen_op_iwmmxt_packuw_M0_wRn(rd1);
2487 if (insn & (1 << 21))
2488 gen_op_iwmmxt_packsl_M0_wRn(rd1);
2490 gen_op_iwmmxt_packul_M0_wRn(rd1);
2493 if (insn & (1 << 21))
2494 gen_op_iwmmxt_packsq_M0_wRn(rd1);
2496 gen_op_iwmmxt_packuq_M0_wRn(rd1);
2499 gen_op_iwmmxt_movq_wRn_M0(wrd);
2500 gen_op_iwmmxt_set_mup();
2501 gen_op_iwmmxt_set_cup();
2503 case 0x201: case 0x203: case 0x205: case 0x207:
2504 case 0x209: case 0x20b: case 0x20d: case 0x20f:
2505 case 0x211: case 0x213: case 0x215: case 0x217:
2506 case 0x219: case 0x21b: case 0x21d: case 0x21f:
2507 wrd = (insn >> 5) & 0xf;
2508 rd0 = (insn >> 12) & 0xf;
2509 rd1 = (insn >> 0) & 0xf;
2510 if (rd0 == 0xf || rd1 == 0xf)
2512 gen_op_iwmmxt_movq_M0_wRn(wrd);
2513 tmp = load_reg(s, rd0);
2514 tmp2 = load_reg(s, rd1);
2515 switch ((insn >> 16) & 0xf) {
2516 case 0x0: /* TMIA */
2517 gen_helper_iwmmxt_muladdsl(cpu_M0, cpu_M0, tmp, tmp2);
2519 case 0x8: /* TMIAPH */
2520 gen_helper_iwmmxt_muladdsw(cpu_M0, cpu_M0, tmp, tmp2);
2522 case 0xc: case 0xd: case 0xe: case 0xf: /* TMIAxy */
2523 if (insn & (1 << 16))
2524 tcg_gen_shri_i32(tmp, tmp, 16);
2525 if (insn & (1 << 17))
2526 tcg_gen_shri_i32(tmp2, tmp2, 16);
2527 gen_helper_iwmmxt_muladdswl(cpu_M0, cpu_M0, tmp, tmp2);
2530 tcg_temp_free_i32(tmp2);
2531 tcg_temp_free_i32(tmp);
2534 tcg_temp_free_i32(tmp2);
2535 tcg_temp_free_i32(tmp);
2536 gen_op_iwmmxt_movq_wRn_M0(wrd);
2537 gen_op_iwmmxt_set_mup();
2546 /* Disassemble an XScale DSP instruction. Returns nonzero if an error occurred
2547 (ie. an undefined instruction). */
2548 static int disas_dsp_insn(DisasContext *s, uint32_t insn)
2550 int acc, rd0, rd1, rdhi, rdlo;
2553 if ((insn & 0x0ff00f10) == 0x0e200010) {
2554 /* Multiply with Internal Accumulate Format */
2555 rd0 = (insn >> 12) & 0xf;
2557 acc = (insn >> 5) & 7;
2562 tmp = load_reg(s, rd0);
2563 tmp2 = load_reg(s, rd1);
2564 switch ((insn >> 16) & 0xf) {
2566 gen_helper_iwmmxt_muladdsl(cpu_M0, cpu_M0, tmp, tmp2);
2568 case 0x8: /* MIAPH */
2569 gen_helper_iwmmxt_muladdsw(cpu_M0, cpu_M0, tmp, tmp2);
2571 case 0xc: /* MIABB */
2572 case 0xd: /* MIABT */
2573 case 0xe: /* MIATB */
2574 case 0xf: /* MIATT */
2575 if (insn & (1 << 16))
2576 tcg_gen_shri_i32(tmp, tmp, 16);
2577 if (insn & (1 << 17))
2578 tcg_gen_shri_i32(tmp2, tmp2, 16);
2579 gen_helper_iwmmxt_muladdswl(cpu_M0, cpu_M0, tmp, tmp2);
2584 tcg_temp_free_i32(tmp2);
2585 tcg_temp_free_i32(tmp);
2587 gen_op_iwmmxt_movq_wRn_M0(acc);
2591 if ((insn & 0x0fe00ff8) == 0x0c400000) {
2592 /* Internal Accumulator Access Format */
2593 rdhi = (insn >> 16) & 0xf;
2594 rdlo = (insn >> 12) & 0xf;
2600 if (insn & ARM_CP_RW_BIT) { /* MRA */
2601 iwmmxt_load_reg(cpu_V0, acc);
2602 tcg_gen_trunc_i64_i32(cpu_R[rdlo], cpu_V0);
2603 tcg_gen_shri_i64(cpu_V0, cpu_V0, 32);
2604 tcg_gen_trunc_i64_i32(cpu_R[rdhi], cpu_V0);
2605 tcg_gen_andi_i32(cpu_R[rdhi], cpu_R[rdhi], (1 << (40 - 32)) - 1);
2607 tcg_gen_concat_i32_i64(cpu_V0, cpu_R[rdlo], cpu_R[rdhi]);
2608 iwmmxt_store_reg(cpu_V0, acc);
2616 #define VFP_REG_SHR(x, n) (((n) > 0) ? (x) >> (n) : (x) << -(n))
2617 #define VFP_SREG(insn, bigbit, smallbit) \
2618 ((VFP_REG_SHR(insn, bigbit - 1) & 0x1e) | (((insn) >> (smallbit)) & 1))
2619 #define VFP_DREG(reg, insn, bigbit, smallbit) do { \
2620 if (arm_dc_feature(s, ARM_FEATURE_VFP3)) { \
2621 reg = (((insn) >> (bigbit)) & 0x0f) \
2622 | (((insn) >> ((smallbit) - 4)) & 0x10); \
2624 if (insn & (1 << (smallbit))) \
2626 reg = ((insn) >> (bigbit)) & 0x0f; \
2629 #define VFP_SREG_D(insn) VFP_SREG(insn, 12, 22)
2630 #define VFP_DREG_D(reg, insn) VFP_DREG(reg, insn, 12, 22)
2631 #define VFP_SREG_N(insn) VFP_SREG(insn, 16, 7)
2632 #define VFP_DREG_N(reg, insn) VFP_DREG(reg, insn, 16, 7)
2633 #define VFP_SREG_M(insn) VFP_SREG(insn, 0, 5)
2634 #define VFP_DREG_M(reg, insn) VFP_DREG(reg, insn, 0, 5)
2636 /* Move between integer and VFP cores. */
2637 static TCGv_i32 gen_vfp_mrs(void)
2639 TCGv_i32 tmp = tcg_temp_new_i32();
2640 tcg_gen_mov_i32(tmp, cpu_F0s);
2644 static void gen_vfp_msr(TCGv_i32 tmp)
2646 tcg_gen_mov_i32(cpu_F0s, tmp);
2647 tcg_temp_free_i32(tmp);
2650 static void gen_neon_dup_u8(TCGv_i32 var, int shift)
2652 TCGv_i32 tmp = tcg_temp_new_i32();
2654 tcg_gen_shri_i32(var, var, shift);
2655 tcg_gen_ext8u_i32(var, var);
2656 tcg_gen_shli_i32(tmp, var, 8);
2657 tcg_gen_or_i32(var, var, tmp);
2658 tcg_gen_shli_i32(tmp, var, 16);
2659 tcg_gen_or_i32(var, var, tmp);
2660 tcg_temp_free_i32(tmp);
2663 static void gen_neon_dup_low16(TCGv_i32 var)
2665 TCGv_i32 tmp = tcg_temp_new_i32();
2666 tcg_gen_ext16u_i32(var, var);
2667 tcg_gen_shli_i32(tmp, var, 16);
2668 tcg_gen_or_i32(var, var, tmp);
2669 tcg_temp_free_i32(tmp);
2672 static void gen_neon_dup_high16(TCGv_i32 var)
2674 TCGv_i32 tmp = tcg_temp_new_i32();
2675 tcg_gen_andi_i32(var, var, 0xffff0000);
2676 tcg_gen_shri_i32(tmp, var, 16);
2677 tcg_gen_or_i32(var, var, tmp);
2678 tcg_temp_free_i32(tmp);
2681 static TCGv_i32 gen_load_and_replicate(DisasContext *s, TCGv_i32 addr, int size)
2683 /* Load a single Neon element and replicate into a 32 bit TCG reg */
2684 TCGv_i32 tmp = tcg_temp_new_i32();
2687 gen_aa32_ld8u(tmp, addr, get_mem_index(s));
2688 gen_neon_dup_u8(tmp, 0);
2691 gen_aa32_ld16u(tmp, addr, get_mem_index(s));
2692 gen_neon_dup_low16(tmp);
2695 gen_aa32_ld32u(tmp, addr, get_mem_index(s));
2697 default: /* Avoid compiler warnings. */
2703 static int handle_vsel(uint32_t insn, uint32_t rd, uint32_t rn, uint32_t rm,
2706 uint32_t cc = extract32(insn, 20, 2);
2709 TCGv_i64 frn, frm, dest;
2710 TCGv_i64 tmp, zero, zf, nf, vf;
2712 zero = tcg_const_i64(0);
2714 frn = tcg_temp_new_i64();
2715 frm = tcg_temp_new_i64();
2716 dest = tcg_temp_new_i64();
2718 zf = tcg_temp_new_i64();
2719 nf = tcg_temp_new_i64();
2720 vf = tcg_temp_new_i64();
2722 tcg_gen_extu_i32_i64(zf, cpu_ZF);
2723 tcg_gen_ext_i32_i64(nf, cpu_NF);
2724 tcg_gen_ext_i32_i64(vf, cpu_VF);
2726 tcg_gen_ld_f64(frn, cpu_env, vfp_reg_offset(dp, rn));
2727 tcg_gen_ld_f64(frm, cpu_env, vfp_reg_offset(dp, rm));
2730 tcg_gen_movcond_i64(TCG_COND_EQ, dest, zf, zero,
2734 tcg_gen_movcond_i64(TCG_COND_LT, dest, vf, zero,
2737 case 2: /* ge: N == V -> N ^ V == 0 */
2738 tmp = tcg_temp_new_i64();
2739 tcg_gen_xor_i64(tmp, vf, nf);
2740 tcg_gen_movcond_i64(TCG_COND_GE, dest, tmp, zero,
2742 tcg_temp_free_i64(tmp);
2744 case 3: /* gt: !Z && N == V */
2745 tcg_gen_movcond_i64(TCG_COND_NE, dest, zf, zero,
2747 tmp = tcg_temp_new_i64();
2748 tcg_gen_xor_i64(tmp, vf, nf);
2749 tcg_gen_movcond_i64(TCG_COND_GE, dest, tmp, zero,
2751 tcg_temp_free_i64(tmp);
2754 tcg_gen_st_f64(dest, cpu_env, vfp_reg_offset(dp, rd));
2755 tcg_temp_free_i64(frn);
2756 tcg_temp_free_i64(frm);
2757 tcg_temp_free_i64(dest);
2759 tcg_temp_free_i64(zf);
2760 tcg_temp_free_i64(nf);
2761 tcg_temp_free_i64(vf);
2763 tcg_temp_free_i64(zero);
2765 TCGv_i32 frn, frm, dest;
2768 zero = tcg_const_i32(0);
2770 frn = tcg_temp_new_i32();
2771 frm = tcg_temp_new_i32();
2772 dest = tcg_temp_new_i32();
2773 tcg_gen_ld_f32(frn, cpu_env, vfp_reg_offset(dp, rn));
2774 tcg_gen_ld_f32(frm, cpu_env, vfp_reg_offset(dp, rm));
2777 tcg_gen_movcond_i32(TCG_COND_EQ, dest, cpu_ZF, zero,
2781 tcg_gen_movcond_i32(TCG_COND_LT, dest, cpu_VF, zero,
2784 case 2: /* ge: N == V -> N ^ V == 0 */
2785 tmp = tcg_temp_new_i32();
2786 tcg_gen_xor_i32(tmp, cpu_VF, cpu_NF);
2787 tcg_gen_movcond_i32(TCG_COND_GE, dest, tmp, zero,
2789 tcg_temp_free_i32(tmp);
2791 case 3: /* gt: !Z && N == V */
2792 tcg_gen_movcond_i32(TCG_COND_NE, dest, cpu_ZF, zero,
2794 tmp = tcg_temp_new_i32();
2795 tcg_gen_xor_i32(tmp, cpu_VF, cpu_NF);
2796 tcg_gen_movcond_i32(TCG_COND_GE, dest, tmp, zero,
2798 tcg_temp_free_i32(tmp);
2801 tcg_gen_st_f32(dest, cpu_env, vfp_reg_offset(dp, rd));
2802 tcg_temp_free_i32(frn);
2803 tcg_temp_free_i32(frm);
2804 tcg_temp_free_i32(dest);
2806 tcg_temp_free_i32(zero);
2812 static int handle_vminmaxnm(uint32_t insn, uint32_t rd, uint32_t rn,
2813 uint32_t rm, uint32_t dp)
2815 uint32_t vmin = extract32(insn, 6, 1);
2816 TCGv_ptr fpst = get_fpstatus_ptr(0);
2819 TCGv_i64 frn, frm, dest;
2821 frn = tcg_temp_new_i64();
2822 frm = tcg_temp_new_i64();
2823 dest = tcg_temp_new_i64();
2825 tcg_gen_ld_f64(frn, cpu_env, vfp_reg_offset(dp, rn));
2826 tcg_gen_ld_f64(frm, cpu_env, vfp_reg_offset(dp, rm));
2828 gen_helper_vfp_minnumd(dest, frn, frm, fpst);
2830 gen_helper_vfp_maxnumd(dest, frn, frm, fpst);
2832 tcg_gen_st_f64(dest, cpu_env, vfp_reg_offset(dp, rd));
2833 tcg_temp_free_i64(frn);
2834 tcg_temp_free_i64(frm);
2835 tcg_temp_free_i64(dest);
2837 TCGv_i32 frn, frm, dest;
2839 frn = tcg_temp_new_i32();
2840 frm = tcg_temp_new_i32();
2841 dest = tcg_temp_new_i32();
2843 tcg_gen_ld_f32(frn, cpu_env, vfp_reg_offset(dp, rn));
2844 tcg_gen_ld_f32(frm, cpu_env, vfp_reg_offset(dp, rm));
2846 gen_helper_vfp_minnums(dest, frn, frm, fpst);
2848 gen_helper_vfp_maxnums(dest, frn, frm, fpst);
2850 tcg_gen_st_f32(dest, cpu_env, vfp_reg_offset(dp, rd));
2851 tcg_temp_free_i32(frn);
2852 tcg_temp_free_i32(frm);
2853 tcg_temp_free_i32(dest);
2856 tcg_temp_free_ptr(fpst);
2860 static int handle_vrint(uint32_t insn, uint32_t rd, uint32_t rm, uint32_t dp,
2863 TCGv_ptr fpst = get_fpstatus_ptr(0);
2866 tcg_rmode = tcg_const_i32(arm_rmode_to_sf(rounding));
2867 gen_helper_set_rmode(tcg_rmode, tcg_rmode, cpu_env);
2872 tcg_op = tcg_temp_new_i64();
2873 tcg_res = tcg_temp_new_i64();
2874 tcg_gen_ld_f64(tcg_op, cpu_env, vfp_reg_offset(dp, rm));
2875 gen_helper_rintd(tcg_res, tcg_op, fpst);
2876 tcg_gen_st_f64(tcg_res, cpu_env, vfp_reg_offset(dp, rd));
2877 tcg_temp_free_i64(tcg_op);
2878 tcg_temp_free_i64(tcg_res);
2882 tcg_op = tcg_temp_new_i32();
2883 tcg_res = tcg_temp_new_i32();
2884 tcg_gen_ld_f32(tcg_op, cpu_env, vfp_reg_offset(dp, rm));
2885 gen_helper_rints(tcg_res, tcg_op, fpst);
2886 tcg_gen_st_f32(tcg_res, cpu_env, vfp_reg_offset(dp, rd));
2887 tcg_temp_free_i32(tcg_op);
2888 tcg_temp_free_i32(tcg_res);
2891 gen_helper_set_rmode(tcg_rmode, tcg_rmode, cpu_env);
2892 tcg_temp_free_i32(tcg_rmode);
2894 tcg_temp_free_ptr(fpst);
2898 static int handle_vcvt(uint32_t insn, uint32_t rd, uint32_t rm, uint32_t dp,
2901 bool is_signed = extract32(insn, 7, 1);
2902 TCGv_ptr fpst = get_fpstatus_ptr(0);
2903 TCGv_i32 tcg_rmode, tcg_shift;
2905 tcg_shift = tcg_const_i32(0);
2907 tcg_rmode = tcg_const_i32(arm_rmode_to_sf(rounding));
2908 gen_helper_set_rmode(tcg_rmode, tcg_rmode, cpu_env);
2911 TCGv_i64 tcg_double, tcg_res;
2913 /* Rd is encoded as a single precision register even when the source
2914 * is double precision.
2916 rd = ((rd << 1) & 0x1e) | ((rd >> 4) & 0x1);
2917 tcg_double = tcg_temp_new_i64();
2918 tcg_res = tcg_temp_new_i64();
2919 tcg_tmp = tcg_temp_new_i32();
2920 tcg_gen_ld_f64(tcg_double, cpu_env, vfp_reg_offset(1, rm));
2922 gen_helper_vfp_tosld(tcg_res, tcg_double, tcg_shift, fpst);
2924 gen_helper_vfp_tould(tcg_res, tcg_double, tcg_shift, fpst);
2926 tcg_gen_trunc_i64_i32(tcg_tmp, tcg_res);
2927 tcg_gen_st_f32(tcg_tmp, cpu_env, vfp_reg_offset(0, rd));
2928 tcg_temp_free_i32(tcg_tmp);
2929 tcg_temp_free_i64(tcg_res);
2930 tcg_temp_free_i64(tcg_double);
2932 TCGv_i32 tcg_single, tcg_res;
2933 tcg_single = tcg_temp_new_i32();
2934 tcg_res = tcg_temp_new_i32();
2935 tcg_gen_ld_f32(tcg_single, cpu_env, vfp_reg_offset(0, rm));
2937 gen_helper_vfp_tosls(tcg_res, tcg_single, tcg_shift, fpst);
2939 gen_helper_vfp_touls(tcg_res, tcg_single, tcg_shift, fpst);
2941 tcg_gen_st_f32(tcg_res, cpu_env, vfp_reg_offset(0, rd));
2942 tcg_temp_free_i32(tcg_res);
2943 tcg_temp_free_i32(tcg_single);
2946 gen_helper_set_rmode(tcg_rmode, tcg_rmode, cpu_env);
2947 tcg_temp_free_i32(tcg_rmode);
2949 tcg_temp_free_i32(tcg_shift);
2951 tcg_temp_free_ptr(fpst);
2956 /* Table for converting the most common AArch32 encoding of
2957 * rounding mode to arm_fprounding order (which matches the
2958 * common AArch64 order); see ARM ARM pseudocode FPDecodeRM().
2960 static const uint8_t fp_decode_rm[] = {
2967 static int disas_vfp_v8_insn(DisasContext *s, uint32_t insn)
2969 uint32_t rd, rn, rm, dp = extract32(insn, 8, 1);
2971 if (!arm_dc_feature(s, ARM_FEATURE_V8)) {
2976 VFP_DREG_D(rd, insn);
2977 VFP_DREG_N(rn, insn);
2978 VFP_DREG_M(rm, insn);
2980 rd = VFP_SREG_D(insn);
2981 rn = VFP_SREG_N(insn);
2982 rm = VFP_SREG_M(insn);
2985 if ((insn & 0x0f800e50) == 0x0e000a00) {
2986 return handle_vsel(insn, rd, rn, rm, dp);
2987 } else if ((insn & 0x0fb00e10) == 0x0e800a00) {
2988 return handle_vminmaxnm(insn, rd, rn, rm, dp);
2989 } else if ((insn & 0x0fbc0ed0) == 0x0eb80a40) {
2990 /* VRINTA, VRINTN, VRINTP, VRINTM */
2991 int rounding = fp_decode_rm[extract32(insn, 16, 2)];
2992 return handle_vrint(insn, rd, rm, dp, rounding);
2993 } else if ((insn & 0x0fbc0e50) == 0x0ebc0a40) {
2994 /* VCVTA, VCVTN, VCVTP, VCVTM */
2995 int rounding = fp_decode_rm[extract32(insn, 16, 2)];
2996 return handle_vcvt(insn, rd, rm, dp, rounding);
3001 /* Disassemble a VFP instruction. Returns nonzero if an error occurred
3002 (ie. an undefined instruction). */
3003 static int disas_vfp_insn(DisasContext *s, uint32_t insn)
3005 uint32_t rd, rn, rm, op, i, n, offset, delta_d, delta_m, bank_mask;
3011 if (!arm_dc_feature(s, ARM_FEATURE_VFP)) {
3015 /* FIXME: this access check should not take precedence over UNDEF
3016 * for invalid encodings; we will generate incorrect syndrome information
3017 * for attempts to execute invalid vfp/neon encodings with FP disabled.
3019 if (!s->cpacr_fpen) {
3020 gen_exception_insn(s, 4, EXCP_UDEF,
3021 syn_fp_access_trap(1, 0xe, s->thumb));
3025 if (!s->vfp_enabled) {
3026 /* VFP disabled. Only allow fmxr/fmrx to/from some control regs. */
3027 if ((insn & 0x0fe00fff) != 0x0ee00a10)
3029 rn = (insn >> 16) & 0xf;
3030 if (rn != ARM_VFP_FPSID && rn != ARM_VFP_FPEXC && rn != ARM_VFP_MVFR2
3031 && rn != ARM_VFP_MVFR1 && rn != ARM_VFP_MVFR0) {
3036 if (extract32(insn, 28, 4) == 0xf) {
3037 /* Encodings with T=1 (Thumb) or unconditional (ARM):
3038 * only used in v8 and above.
3040 return disas_vfp_v8_insn(s, insn);
3043 dp = ((insn & 0xf00) == 0xb00);
3044 switch ((insn >> 24) & 0xf) {
3046 if (insn & (1 << 4)) {
3047 /* single register transfer */
3048 rd = (insn >> 12) & 0xf;
3053 VFP_DREG_N(rn, insn);
3056 if (insn & 0x00c00060
3057 && !arm_dc_feature(s, ARM_FEATURE_NEON)) {
3061 pass = (insn >> 21) & 1;
3062 if (insn & (1 << 22)) {
3064 offset = ((insn >> 5) & 3) * 8;
3065 } else if (insn & (1 << 5)) {
3067 offset = (insn & (1 << 6)) ? 16 : 0;
3072 if (insn & ARM_CP_RW_BIT) {
3074 tmp = neon_load_reg(rn, pass);
3078 tcg_gen_shri_i32(tmp, tmp, offset);
3079 if (insn & (1 << 23))
3085 if (insn & (1 << 23)) {
3087 tcg_gen_shri_i32(tmp, tmp, 16);
3093 tcg_gen_sari_i32(tmp, tmp, 16);
3102 store_reg(s, rd, tmp);
3105 tmp = load_reg(s, rd);
3106 if (insn & (1 << 23)) {
3109 gen_neon_dup_u8(tmp, 0);
3110 } else if (size == 1) {
3111 gen_neon_dup_low16(tmp);
3113 for (n = 0; n <= pass * 2; n++) {
3114 tmp2 = tcg_temp_new_i32();
3115 tcg_gen_mov_i32(tmp2, tmp);
3116 neon_store_reg(rn, n, tmp2);
3118 neon_store_reg(rn, n, tmp);
3123 tmp2 = neon_load_reg(rn, pass);
3124 tcg_gen_deposit_i32(tmp, tmp2, tmp, offset, 8);
3125 tcg_temp_free_i32(tmp2);
3128 tmp2 = neon_load_reg(rn, pass);
3129 tcg_gen_deposit_i32(tmp, tmp2, tmp, offset, 16);
3130 tcg_temp_free_i32(tmp2);
3135 neon_store_reg(rn, pass, tmp);
3139 if ((insn & 0x6f) != 0x00)
3141 rn = VFP_SREG_N(insn);
3142 if (insn & ARM_CP_RW_BIT) {
3144 if (insn & (1 << 21)) {
3145 /* system register */
3150 /* VFP2 allows access to FSID from userspace.
3151 VFP3 restricts all id registers to privileged
3154 && arm_dc_feature(s, ARM_FEATURE_VFP3)) {
3157 tmp = load_cpu_field(vfp.xregs[rn]);
3162 tmp = load_cpu_field(vfp.xregs[rn]);
3164 case ARM_VFP_FPINST:
3165 case ARM_VFP_FPINST2:
3166 /* Not present in VFP3. */
3168 || arm_dc_feature(s, ARM_FEATURE_VFP3)) {
3171 tmp = load_cpu_field(vfp.xregs[rn]);
3175 tmp = load_cpu_field(vfp.xregs[ARM_VFP_FPSCR]);
3176 tcg_gen_andi_i32(tmp, tmp, 0xf0000000);
3178 tmp = tcg_temp_new_i32();
3179 gen_helper_vfp_get_fpscr(tmp, cpu_env);
3183 if (!arm_dc_feature(s, ARM_FEATURE_V8)) {
3190 || !arm_dc_feature(s, ARM_FEATURE_MVFR)) {
3193 tmp = load_cpu_field(vfp.xregs[rn]);
3199 gen_mov_F0_vreg(0, rn);
3200 tmp = gen_vfp_mrs();
3203 /* Set the 4 flag bits in the CPSR. */
3205 tcg_temp_free_i32(tmp);
3207 store_reg(s, rd, tmp);
3211 if (insn & (1 << 21)) {
3213 /* system register */
3218 /* Writes are ignored. */
3221 tmp = load_reg(s, rd);
3222 gen_helper_vfp_set_fpscr(cpu_env, tmp);
3223 tcg_temp_free_i32(tmp);
3229 /* TODO: VFP subarchitecture support.
3230 * For now, keep the EN bit only */
3231 tmp = load_reg(s, rd);
3232 tcg_gen_andi_i32(tmp, tmp, 1 << 30);
3233 store_cpu_field(tmp, vfp.xregs[rn]);
3236 case ARM_VFP_FPINST:
3237 case ARM_VFP_FPINST2:
3241 tmp = load_reg(s, rd);
3242 store_cpu_field(tmp, vfp.xregs[rn]);
3248 tmp = load_reg(s, rd);
3250 gen_mov_vreg_F0(0, rn);
3255 /* data processing */
3256 /* The opcode is in bits 23, 21, 20 and 6. */
3257 op = ((insn >> 20) & 8) | ((insn >> 19) & 6) | ((insn >> 6) & 1);
3261 rn = ((insn >> 15) & 0x1e) | ((insn >> 7) & 1);
3263 /* rn is register number */
3264 VFP_DREG_N(rn, insn);
3267 if (op == 15 && (rn == 15 || ((rn & 0x1c) == 0x18) ||
3268 ((rn & 0x1e) == 0x6))) {
3269 /* Integer or single/half precision destination. */
3270 rd = VFP_SREG_D(insn);
3272 VFP_DREG_D(rd, insn);
3275 (((rn & 0x1c) == 0x10) || ((rn & 0x14) == 0x14) ||
3276 ((rn & 0x1e) == 0x4))) {
3277 /* VCVT from int or half precision is always from S reg
3278 * regardless of dp bit. VCVT with immediate frac_bits
3279 * has same format as SREG_M.
3281 rm = VFP_SREG_M(insn);
3283 VFP_DREG_M(rm, insn);
3286 rn = VFP_SREG_N(insn);
3287 if (op == 15 && rn == 15) {
3288 /* Double precision destination. */
3289 VFP_DREG_D(rd, insn);
3291 rd = VFP_SREG_D(insn);
3293 /* NB that we implicitly rely on the encoding for the frac_bits
3294 * in VCVT of fixed to float being the same as that of an SREG_M
3296 rm = VFP_SREG_M(insn);
3299 veclen = s->vec_len;
3300 if (op == 15 && rn > 3)
3303 /* Shut up compiler warnings. */
3314 /* Figure out what type of vector operation this is. */
3315 if ((rd & bank_mask) == 0) {
3320 delta_d = (s->vec_stride >> 1) + 1;
3322 delta_d = s->vec_stride + 1;
3324 if ((rm & bank_mask) == 0) {
3325 /* mixed scalar/vector */
3334 /* Load the initial operands. */
3339 /* Integer source */
3340 gen_mov_F0_vreg(0, rm);
3345 gen_mov_F0_vreg(dp, rd);
3346 gen_mov_F1_vreg(dp, rm);
3350 /* Compare with zero */
3351 gen_mov_F0_vreg(dp, rd);
3362 /* Source and destination the same. */
3363 gen_mov_F0_vreg(dp, rd);
3369 /* VCVTB, VCVTT: only present with the halfprec extension
3370 * UNPREDICTABLE if bit 8 is set prior to ARMv8
3371 * (we choose to UNDEF)
3373 if ((dp && !arm_dc_feature(s, ARM_FEATURE_V8)) ||
3374 !arm_dc_feature(s, ARM_FEATURE_VFP_FP16)) {
3377 if (!extract32(rn, 1, 1)) {
3378 /* Half precision source. */
3379 gen_mov_F0_vreg(0, rm);
3382 /* Otherwise fall through */
3384 /* One source operand. */
3385 gen_mov_F0_vreg(dp, rm);
3389 /* Two source operands. */
3390 gen_mov_F0_vreg(dp, rn);
3391 gen_mov_F1_vreg(dp, rm);
3395 /* Perform the calculation. */
3397 case 0: /* VMLA: fd + (fn * fm) */
3398 /* Note that order of inputs to the add matters for NaNs */
3400 gen_mov_F0_vreg(dp, rd);
3403 case 1: /* VMLS: fd + -(fn * fm) */
3406 gen_mov_F0_vreg(dp, rd);
3409 case 2: /* VNMLS: -fd + (fn * fm) */
3410 /* Note that it isn't valid to replace (-A + B) with (B - A)
3411 * or similar plausible looking simplifications
3412 * because this will give wrong results for NaNs.
3415 gen_mov_F0_vreg(dp, rd);
3419 case 3: /* VNMLA: -fd + -(fn * fm) */
3422 gen_mov_F0_vreg(dp, rd);
3426 case 4: /* mul: fn * fm */
3429 case 5: /* nmul: -(fn * fm) */
3433 case 6: /* add: fn + fm */
3436 case 7: /* sub: fn - fm */
3439 case 8: /* div: fn / fm */
3442 case 10: /* VFNMA : fd = muladd(-fd, fn, fm) */
3443 case 11: /* VFNMS : fd = muladd(-fd, -fn, fm) */
3444 case 12: /* VFMA : fd = muladd( fd, fn, fm) */
3445 case 13: /* VFMS : fd = muladd( fd, -fn, fm) */
3446 /* These are fused multiply-add, and must be done as one
3447 * floating point operation with no rounding between the
3448 * multiplication and addition steps.
3449 * NB that doing the negations here as separate steps is
3450 * correct : an input NaN should come out with its sign bit
3451 * flipped if it is a negated-input.
3453 if (!arm_dc_feature(s, ARM_FEATURE_VFP4)) {
3461 gen_helper_vfp_negd(cpu_F0d, cpu_F0d);
3463 frd = tcg_temp_new_i64();
3464 tcg_gen_ld_f64(frd, cpu_env, vfp_reg_offset(dp, rd));
3467 gen_helper_vfp_negd(frd, frd);
3469 fpst = get_fpstatus_ptr(0);
3470 gen_helper_vfp_muladdd(cpu_F0d, cpu_F0d,
3471 cpu_F1d, frd, fpst);
3472 tcg_temp_free_ptr(fpst);
3473 tcg_temp_free_i64(frd);
3479 gen_helper_vfp_negs(cpu_F0s, cpu_F0s);
3481 frd = tcg_temp_new_i32();
3482 tcg_gen_ld_f32(frd, cpu_env, vfp_reg_offset(dp, rd));
3484 gen_helper_vfp_negs(frd, frd);
3486 fpst = get_fpstatus_ptr(0);
3487 gen_helper_vfp_muladds(cpu_F0s, cpu_F0s,
3488 cpu_F1s, frd, fpst);
3489 tcg_temp_free_ptr(fpst);
3490 tcg_temp_free_i32(frd);
3493 case 14: /* fconst */
3494 if (!arm_dc_feature(s, ARM_FEATURE_VFP3)) {
3498 n = (insn << 12) & 0x80000000;
3499 i = ((insn >> 12) & 0x70) | (insn & 0xf);
3506 tcg_gen_movi_i64(cpu_F0d, ((uint64_t)n) << 32);
3513 tcg_gen_movi_i32(cpu_F0s, n);
3516 case 15: /* extension space */
3530 case 4: /* vcvtb.f32.f16, vcvtb.f64.f16 */
3531 tmp = gen_vfp_mrs();
3532 tcg_gen_ext16u_i32(tmp, tmp);
3534 gen_helper_vfp_fcvt_f16_to_f64(cpu_F0d, tmp,
3537 gen_helper_vfp_fcvt_f16_to_f32(cpu_F0s, tmp,
3540 tcg_temp_free_i32(tmp);
3542 case 5: /* vcvtt.f32.f16, vcvtt.f64.f16 */
3543 tmp = gen_vfp_mrs();
3544 tcg_gen_shri_i32(tmp, tmp, 16);
3546 gen_helper_vfp_fcvt_f16_to_f64(cpu_F0d, tmp,
3549 gen_helper_vfp_fcvt_f16_to_f32(cpu_F0s, tmp,
3552 tcg_temp_free_i32(tmp);
3554 case 6: /* vcvtb.f16.f32, vcvtb.f16.f64 */
3555 tmp = tcg_temp_new_i32();
3557 gen_helper_vfp_fcvt_f64_to_f16(tmp, cpu_F0d,
3560 gen_helper_vfp_fcvt_f32_to_f16(tmp, cpu_F0s,
3563 gen_mov_F0_vreg(0, rd);
3564 tmp2 = gen_vfp_mrs();
3565 tcg_gen_andi_i32(tmp2, tmp2, 0xffff0000);
3566 tcg_gen_or_i32(tmp, tmp, tmp2);
3567 tcg_temp_free_i32(tmp2);
3570 case 7: /* vcvtt.f16.f32, vcvtt.f16.f64 */
3571 tmp = tcg_temp_new_i32();
3573 gen_helper_vfp_fcvt_f64_to_f16(tmp, cpu_F0d,
3576 gen_helper_vfp_fcvt_f32_to_f16(tmp, cpu_F0s,
3579 tcg_gen_shli_i32(tmp, tmp, 16);
3580 gen_mov_F0_vreg(0, rd);
3581 tmp2 = gen_vfp_mrs();
3582 tcg_gen_ext16u_i32(tmp2, tmp2);
3583 tcg_gen_or_i32(tmp, tmp, tmp2);
3584 tcg_temp_free_i32(tmp2);
3596 case 11: /* cmpez */
3600 case 12: /* vrintr */
3602 TCGv_ptr fpst = get_fpstatus_ptr(0);
3604 gen_helper_rintd(cpu_F0d, cpu_F0d, fpst);
3606 gen_helper_rints(cpu_F0s, cpu_F0s, fpst);
3608 tcg_temp_free_ptr(fpst);
3611 case 13: /* vrintz */
3613 TCGv_ptr fpst = get_fpstatus_ptr(0);
3615 tcg_rmode = tcg_const_i32(float_round_to_zero);
3616 gen_helper_set_rmode(tcg_rmode, tcg_rmode, cpu_env);
3618 gen_helper_rintd(cpu_F0d, cpu_F0d, fpst);
3620 gen_helper_rints(cpu_F0s, cpu_F0s, fpst);
3622 gen_helper_set_rmode(tcg_rmode, tcg_rmode, cpu_env);
3623 tcg_temp_free_i32(tcg_rmode);
3624 tcg_temp_free_ptr(fpst);
3627 case 14: /* vrintx */
3629 TCGv_ptr fpst = get_fpstatus_ptr(0);
3631 gen_helper_rintd_exact(cpu_F0d, cpu_F0d, fpst);
3633 gen_helper_rints_exact(cpu_F0s, cpu_F0s, fpst);
3635 tcg_temp_free_ptr(fpst);
3638 case 15: /* single<->double conversion */
3640 gen_helper_vfp_fcvtsd(cpu_F0s, cpu_F0d, cpu_env);
3642 gen_helper_vfp_fcvtds(cpu_F0d, cpu_F0s, cpu_env);
3644 case 16: /* fuito */
3645 gen_vfp_uito(dp, 0);
3647 case 17: /* fsito */
3648 gen_vfp_sito(dp, 0);
3650 case 20: /* fshto */
3651 if (!arm_dc_feature(s, ARM_FEATURE_VFP3)) {
3654 gen_vfp_shto(dp, 16 - rm, 0);
3656 case 21: /* fslto */
3657 if (!arm_dc_feature(s, ARM_FEATURE_VFP3)) {
3660 gen_vfp_slto(dp, 32 - rm, 0);
3662 case 22: /* fuhto */
3663 if (!arm_dc_feature(s, ARM_FEATURE_VFP3)) {
3666 gen_vfp_uhto(dp, 16 - rm, 0);
3668 case 23: /* fulto */
3669 if (!arm_dc_feature(s, ARM_FEATURE_VFP3)) {
3672 gen_vfp_ulto(dp, 32 - rm, 0);
3674 case 24: /* ftoui */
3675 gen_vfp_toui(dp, 0);
3677 case 25: /* ftouiz */
3678 gen_vfp_touiz(dp, 0);
3680 case 26: /* ftosi */
3681 gen_vfp_tosi(dp, 0);
3683 case 27: /* ftosiz */
3684 gen_vfp_tosiz(dp, 0);
3686 case 28: /* ftosh */
3687 if (!arm_dc_feature(s, ARM_FEATURE_VFP3)) {
3690 gen_vfp_tosh(dp, 16 - rm, 0);
3692 case 29: /* ftosl */
3693 if (!arm_dc_feature(s, ARM_FEATURE_VFP3)) {
3696 gen_vfp_tosl(dp, 32 - rm, 0);
3698 case 30: /* ftouh */
3699 if (!arm_dc_feature(s, ARM_FEATURE_VFP3)) {
3702 gen_vfp_touh(dp, 16 - rm, 0);
3704 case 31: /* ftoul */
3705 if (!arm_dc_feature(s, ARM_FEATURE_VFP3)) {
3708 gen_vfp_toul(dp, 32 - rm, 0);
3710 default: /* undefined */
3714 default: /* undefined */
3718 /* Write back the result. */
3719 if (op == 15 && (rn >= 8 && rn <= 11)) {
3720 /* Comparison, do nothing. */
3721 } else if (op == 15 && dp && ((rn & 0x1c) == 0x18 ||
3722 (rn & 0x1e) == 0x6)) {
3723 /* VCVT double to int: always integer result.
3724 * VCVT double to half precision is always a single
3727 gen_mov_vreg_F0(0, rd);
3728 } else if (op == 15 && rn == 15) {
3730 gen_mov_vreg_F0(!dp, rd);
3732 gen_mov_vreg_F0(dp, rd);
3735 /* break out of the loop if we have finished */
3739 if (op == 15 && delta_m == 0) {
3740 /* single source one-many */
3742 rd = ((rd + delta_d) & (bank_mask - 1))
3744 gen_mov_vreg_F0(dp, rd);
3748 /* Setup the next operands. */
3750 rd = ((rd + delta_d) & (bank_mask - 1))
3754 /* One source operand. */
3755 rm = ((rm + delta_m) & (bank_mask - 1))
3757 gen_mov_F0_vreg(dp, rm);
3759 /* Two source operands. */
3760 rn = ((rn + delta_d) & (bank_mask - 1))
3762 gen_mov_F0_vreg(dp, rn);
3764 rm = ((rm + delta_m) & (bank_mask - 1))
3766 gen_mov_F1_vreg(dp, rm);
3774 if ((insn & 0x03e00000) == 0x00400000) {
3775 /* two-register transfer */
3776 rn = (insn >> 16) & 0xf;
3777 rd = (insn >> 12) & 0xf;
3779 VFP_DREG_M(rm, insn);
3781 rm = VFP_SREG_M(insn);
3784 if (insn & ARM_CP_RW_BIT) {
3787 gen_mov_F0_vreg(0, rm * 2);
3788 tmp = gen_vfp_mrs();
3789 store_reg(s, rd, tmp);
3790 gen_mov_F0_vreg(0, rm * 2 + 1);
3791 tmp = gen_vfp_mrs();
3792 store_reg(s, rn, tmp);
3794 gen_mov_F0_vreg(0, rm);
3795 tmp = gen_vfp_mrs();
3796 store_reg(s, rd, tmp);
3797 gen_mov_F0_vreg(0, rm + 1);
3798 tmp = gen_vfp_mrs();
3799 store_reg(s, rn, tmp);
3804 tmp = load_reg(s, rd);
3806 gen_mov_vreg_F0(0, rm * 2);
3807 tmp = load_reg(s, rn);
3809 gen_mov_vreg_F0(0, rm * 2 + 1);
3811 tmp = load_reg(s, rd);
3813 gen_mov_vreg_F0(0, rm);
3814 tmp = load_reg(s, rn);
3816 gen_mov_vreg_F0(0, rm + 1);
3821 rn = (insn >> 16) & 0xf;
3823 VFP_DREG_D(rd, insn);
3825 rd = VFP_SREG_D(insn);
3826 if ((insn & 0x01200000) == 0x01000000) {
3827 /* Single load/store */
3828 offset = (insn & 0xff) << 2;
3829 if ((insn & (1 << 23)) == 0)
3831 if (s->thumb && rn == 15) {
3832 /* This is actually UNPREDICTABLE */
3833 addr = tcg_temp_new_i32();
3834 tcg_gen_movi_i32(addr, s->pc & ~2);
3836 addr = load_reg(s, rn);
3838 tcg_gen_addi_i32(addr, addr, offset);
3839 if (insn & (1 << 20)) {
3840 gen_vfp_ld(s, dp, addr);
3841 gen_mov_vreg_F0(dp, rd);
3843 gen_mov_F0_vreg(dp, rd);
3844 gen_vfp_st(s, dp, addr);
3846 tcg_temp_free_i32(addr);
3848 /* load/store multiple */
3849 int w = insn & (1 << 21);
3851 n = (insn >> 1) & 0x7f;
3855 if (w && !(((insn >> 23) ^ (insn >> 24)) & 1)) {
3856 /* P == U , W == 1 => UNDEF */
3859 if (n == 0 || (rd + n) > 32 || (dp && n > 16)) {
3860 /* UNPREDICTABLE cases for bad immediates: we choose to
3861 * UNDEF to avoid generating huge numbers of TCG ops
3865 if (rn == 15 && w) {
3866 /* writeback to PC is UNPREDICTABLE, we choose to UNDEF */
3870 if (s->thumb && rn == 15) {
3871 /* This is actually UNPREDICTABLE */
3872 addr = tcg_temp_new_i32();
3873 tcg_gen_movi_i32(addr, s->pc & ~2);
3875 addr = load_reg(s, rn);
3877 if (insn & (1 << 24)) /* pre-decrement */
3878 tcg_gen_addi_i32(addr, addr, -((insn & 0xff) << 2));
3884 for (i = 0; i < n; i++) {
3885 if (insn & ARM_CP_RW_BIT) {
3887 gen_vfp_ld(s, dp, addr);
3888 gen_mov_vreg_F0(dp, rd + i);
3891 gen_mov_F0_vreg(dp, rd + i);
3892 gen_vfp_st(s, dp, addr);
3894 tcg_gen_addi_i32(addr, addr, offset);
3898 if (insn & (1 << 24))
3899 offset = -offset * n;
3900 else if (dp && (insn & 1))
3906 tcg_gen_addi_i32(addr, addr, offset);
3907 store_reg(s, rn, addr);
3909 tcg_temp_free_i32(addr);
3915 /* Should never happen. */
3921 static inline void gen_goto_tb(DisasContext *s, int n, target_ulong dest)
3923 TranslationBlock *tb;
3926 if ((tb->pc & TARGET_PAGE_MASK) == (dest & TARGET_PAGE_MASK)) {
3928 gen_set_pc_im(s, dest);
3929 tcg_gen_exit_tb((uintptr_t)tb + n);
3931 gen_set_pc_im(s, dest);
3936 static inline void gen_jmp (DisasContext *s, uint32_t dest)
3938 if (unlikely(s->singlestep_enabled || s->ss_active)) {
3939 /* An indirect jump so that we still trigger the debug exception. */
3944 gen_goto_tb(s, 0, dest);
3945 s->is_jmp = DISAS_TB_JUMP;
3949 static inline void gen_mulxy(TCGv_i32 t0, TCGv_i32 t1, int x, int y)
3952 tcg_gen_sari_i32(t0, t0, 16);
3956 tcg_gen_sari_i32(t1, t1, 16);
3959 tcg_gen_mul_i32(t0, t0, t1);
3962 /* Return the mask of PSR bits set by a MSR instruction. */
3963 static uint32_t msr_mask(DisasContext *s, int flags, int spsr)
3968 if (flags & (1 << 0))
3970 if (flags & (1 << 1))
3972 if (flags & (1 << 2))
3974 if (flags & (1 << 3))
3977 /* Mask out undefined bits. */
3978 mask &= ~CPSR_RESERVED;
3979 if (!arm_dc_feature(s, ARM_FEATURE_V4T)) {
3982 if (!arm_dc_feature(s, ARM_FEATURE_V5)) {
3983 mask &= ~CPSR_Q; /* V5TE in reality*/
3985 if (!arm_dc_feature(s, ARM_FEATURE_V6)) {
3986 mask &= ~(CPSR_E | CPSR_GE);
3988 if (!arm_dc_feature(s, ARM_FEATURE_THUMB2)) {
3991 /* Mask out execution state and reserved bits. */
3993 mask &= ~(CPSR_EXEC | CPSR_RESERVED);
3995 /* Mask out privileged bits. */
4001 /* Returns nonzero if access to the PSR is not permitted. Marks t0 as dead. */
4002 static int gen_set_psr(DisasContext *s, uint32_t mask, int spsr, TCGv_i32 t0)
4006 /* ??? This is also undefined in system mode. */
4010 tmp = load_cpu_field(spsr);
4011 tcg_gen_andi_i32(tmp, tmp, ~mask);
4012 tcg_gen_andi_i32(t0, t0, mask);
4013 tcg_gen_or_i32(tmp, tmp, t0);
4014 store_cpu_field(tmp, spsr);
4016 gen_set_cpsr(t0, mask);
4018 tcg_temp_free_i32(t0);
4023 /* Returns nonzero if access to the PSR is not permitted. */
4024 static int gen_set_psr_im(DisasContext *s, uint32_t mask, int spsr, uint32_t val)
4027 tmp = tcg_temp_new_i32();
4028 tcg_gen_movi_i32(tmp, val);
4029 return gen_set_psr(s, mask, spsr, tmp);
4032 /* Generate an old-style exception return. Marks pc as dead. */
4033 static void gen_exception_return(DisasContext *s, TCGv_i32 pc)
4036 store_reg(s, 15, pc);
4037 tmp = load_cpu_field(spsr);
4038 gen_set_cpsr(tmp, CPSR_ERET_MASK);
4039 tcg_temp_free_i32(tmp);
4040 s->is_jmp = DISAS_UPDATE;
4043 /* Generate a v6 exception return. Marks both values as dead. */
4044 static void gen_rfe(DisasContext *s, TCGv_i32 pc, TCGv_i32 cpsr)
4046 gen_set_cpsr(cpsr, CPSR_ERET_MASK);
4047 tcg_temp_free_i32(cpsr);
4048 store_reg(s, 15, pc);
4049 s->is_jmp = DISAS_UPDATE;
4052 static void gen_nop_hint(DisasContext *s, int val)
4056 gen_set_pc_im(s, s->pc);
4057 s->is_jmp = DISAS_WFI;
4060 gen_set_pc_im(s, s->pc);
4061 s->is_jmp = DISAS_WFE;
4065 /* TODO: Implement SEV, SEVL and WFE. May help SMP performance. */
4071 #define CPU_V001 cpu_V0, cpu_V0, cpu_V1
4073 static inline void gen_neon_add(int size, TCGv_i32 t0, TCGv_i32 t1)
4076 case 0: gen_helper_neon_add_u8(t0, t0, t1); break;
4077 case 1: gen_helper_neon_add_u16(t0, t0, t1); break;
4078 case 2: tcg_gen_add_i32(t0, t0, t1); break;
4083 static inline void gen_neon_rsb(int size, TCGv_i32 t0, TCGv_i32 t1)
4086 case 0: gen_helper_neon_sub_u8(t0, t1, t0); break;
4087 case 1: gen_helper_neon_sub_u16(t0, t1, t0); break;
4088 case 2: tcg_gen_sub_i32(t0, t1, t0); break;
4093 /* 32-bit pairwise ops end up the same as the elementwise versions. */
4094 #define gen_helper_neon_pmax_s32 gen_helper_neon_max_s32
4095 #define gen_helper_neon_pmax_u32 gen_helper_neon_max_u32
4096 #define gen_helper_neon_pmin_s32 gen_helper_neon_min_s32
4097 #define gen_helper_neon_pmin_u32 gen_helper_neon_min_u32
4099 #define GEN_NEON_INTEGER_OP_ENV(name) do { \
4100 switch ((size << 1) | u) { \
4102 gen_helper_neon_##name##_s8(tmp, cpu_env, tmp, tmp2); \
4105 gen_helper_neon_##name##_u8(tmp, cpu_env, tmp, tmp2); \
4108 gen_helper_neon_##name##_s16(tmp, cpu_env, tmp, tmp2); \
4111 gen_helper_neon_##name##_u16(tmp, cpu_env, tmp, tmp2); \
4114 gen_helper_neon_##name##_s32(tmp, cpu_env, tmp, tmp2); \
4117 gen_helper_neon_##name##_u32(tmp, cpu_env, tmp, tmp2); \
4119 default: return 1; \
4122 #define GEN_NEON_INTEGER_OP(name) do { \
4123 switch ((size << 1) | u) { \
4125 gen_helper_neon_##name##_s8(tmp, tmp, tmp2); \
4128 gen_helper_neon_##name##_u8(tmp, tmp, tmp2); \
4131 gen_helper_neon_##name##_s16(tmp, tmp, tmp2); \
4134 gen_helper_neon_##name##_u16(tmp, tmp, tmp2); \
4137 gen_helper_neon_##name##_s32(tmp, tmp, tmp2); \
4140 gen_helper_neon_##name##_u32(tmp, tmp, tmp2); \
4142 default: return 1; \
4145 static TCGv_i32 neon_load_scratch(int scratch)
4147 TCGv_i32 tmp = tcg_temp_new_i32();
4148 tcg_gen_ld_i32(tmp, cpu_env, offsetof(CPUARMState, vfp.scratch[scratch]));
4152 static void neon_store_scratch(int scratch, TCGv_i32 var)
4154 tcg_gen_st_i32(var, cpu_env, offsetof(CPUARMState, vfp.scratch[scratch]));
4155 tcg_temp_free_i32(var);
4158 static inline TCGv_i32 neon_get_scalar(int size, int reg)
4162 tmp = neon_load_reg(reg & 7, reg >> 4);
4164 gen_neon_dup_high16(tmp);
4166 gen_neon_dup_low16(tmp);
4169 tmp = neon_load_reg(reg & 15, reg >> 4);
4174 static int gen_neon_unzip(int rd, int rm, int size, int q)
4177 if (!q && size == 2) {
4180 tmp = tcg_const_i32(rd);
4181 tmp2 = tcg_const_i32(rm);
4185 gen_helper_neon_qunzip8(cpu_env, tmp, tmp2);
4188 gen_helper_neon_qunzip16(cpu_env, tmp, tmp2);
4191 gen_helper_neon_qunzip32(cpu_env, tmp, tmp2);
4199 gen_helper_neon_unzip8(cpu_env, tmp, tmp2);
4202 gen_helper_neon_unzip16(cpu_env, tmp, tmp2);
4208 tcg_temp_free_i32(tmp);
4209 tcg_temp_free_i32(tmp2);
4213 static int gen_neon_zip(int rd, int rm, int size, int q)
4216 if (!q && size == 2) {
4219 tmp = tcg_const_i32(rd);
4220 tmp2 = tcg_const_i32(rm);
4224 gen_helper_neon_qzip8(cpu_env, tmp, tmp2);
4227 gen_helper_neon_qzip16(cpu_env, tmp, tmp2);
4230 gen_helper_neon_qzip32(cpu_env, tmp, tmp2);
4238 gen_helper_neon_zip8(cpu_env, tmp, tmp2);
4241 gen_helper_neon_zip16(cpu_env, tmp, tmp2);
4247 tcg_temp_free_i32(tmp);
4248 tcg_temp_free_i32(tmp2);
4252 static void gen_neon_trn_u8(TCGv_i32 t0, TCGv_i32 t1)
4256 rd = tcg_temp_new_i32();
4257 tmp = tcg_temp_new_i32();
4259 tcg_gen_shli_i32(rd, t0, 8);
4260 tcg_gen_andi_i32(rd, rd, 0xff00ff00);
4261 tcg_gen_andi_i32(tmp, t1, 0x00ff00ff);
4262 tcg_gen_or_i32(rd, rd, tmp);
4264 tcg_gen_shri_i32(t1, t1, 8);
4265 tcg_gen_andi_i32(t1, t1, 0x00ff00ff);
4266 tcg_gen_andi_i32(tmp, t0, 0xff00ff00);
4267 tcg_gen_or_i32(t1, t1, tmp);
4268 tcg_gen_mov_i32(t0, rd);
4270 tcg_temp_free_i32(tmp);
4271 tcg_temp_free_i32(rd);
4274 static void gen_neon_trn_u16(TCGv_i32 t0, TCGv_i32 t1)
4278 rd = tcg_temp_new_i32();
4279 tmp = tcg_temp_new_i32();
4281 tcg_gen_shli_i32(rd, t0, 16);
4282 tcg_gen_andi_i32(tmp, t1, 0xffff);
4283 tcg_gen_or_i32(rd, rd, tmp);
4284 tcg_gen_shri_i32(t1, t1, 16);
4285 tcg_gen_andi_i32(tmp, t0, 0xffff0000);
4286 tcg_gen_or_i32(t1, t1, tmp);
4287 tcg_gen_mov_i32(t0, rd);
4289 tcg_temp_free_i32(tmp);
4290 tcg_temp_free_i32(rd);
4298 } neon_ls_element_type[11] = {
4312 /* Translate a NEON load/store element instruction. Return nonzero if the
4313 instruction is invalid. */
4314 static int disas_neon_ls_insn(DisasContext *s, uint32_t insn)
4333 /* FIXME: this access check should not take precedence over UNDEF
4334 * for invalid encodings; we will generate incorrect syndrome information
4335 * for attempts to execute invalid vfp/neon encodings with FP disabled.
4337 if (!s->cpacr_fpen) {
4338 gen_exception_insn(s, 4, EXCP_UDEF,
4339 syn_fp_access_trap(1, 0xe, s->thumb));
4343 if (!s->vfp_enabled)
4345 VFP_DREG_D(rd, insn);
4346 rn = (insn >> 16) & 0xf;
4348 load = (insn & (1 << 21)) != 0;
4349 if ((insn & (1 << 23)) == 0) {
4350 /* Load store all elements. */
4351 op = (insn >> 8) & 0xf;
4352 size = (insn >> 6) & 3;
4355 /* Catch UNDEF cases for bad values of align field */
4358 if (((insn >> 5) & 1) == 1) {
4363 if (((insn >> 4) & 3) == 3) {
4370 nregs = neon_ls_element_type[op].nregs;
4371 interleave = neon_ls_element_type[op].interleave;
4372 spacing = neon_ls_element_type[op].spacing;
4373 if (size == 3 && (interleave | spacing) != 1)
4375 addr = tcg_temp_new_i32();
4376 load_reg_var(s, addr, rn);
4377 stride = (1 << size) * interleave;
4378 for (reg = 0; reg < nregs; reg++) {
4379 if (interleave > 2 || (interleave == 2 && nregs == 2)) {
4380 load_reg_var(s, addr, rn);
4381 tcg_gen_addi_i32(addr, addr, (1 << size) * reg);
4382 } else if (interleave == 2 && nregs == 4 && reg == 2) {
4383 load_reg_var(s, addr, rn);
4384 tcg_gen_addi_i32(addr, addr, 1 << size);
4387 tmp64 = tcg_temp_new_i64();
4389 gen_aa32_ld64(tmp64, addr, get_mem_index(s));
4390 neon_store_reg64(tmp64, rd);
4392 neon_load_reg64(tmp64, rd);
4393 gen_aa32_st64(tmp64, addr, get_mem_index(s));
4395 tcg_temp_free_i64(tmp64);
4396 tcg_gen_addi_i32(addr, addr, stride);
4398 for (pass = 0; pass < 2; pass++) {
4401 tmp = tcg_temp_new_i32();
4402 gen_aa32_ld32u(tmp, addr, get_mem_index(s));
4403 neon_store_reg(rd, pass, tmp);
4405 tmp = neon_load_reg(rd, pass);
4406 gen_aa32_st32(tmp, addr, get_mem_index(s));
4407 tcg_temp_free_i32(tmp);
4409 tcg_gen_addi_i32(addr, addr, stride);
4410 } else if (size == 1) {
4412 tmp = tcg_temp_new_i32();
4413 gen_aa32_ld16u(tmp, addr, get_mem_index(s));
4414 tcg_gen_addi_i32(addr, addr, stride);
4415 tmp2 = tcg_temp_new_i32();
4416 gen_aa32_ld16u(tmp2, addr, get_mem_index(s));
4417 tcg_gen_addi_i32(addr, addr, stride);
4418 tcg_gen_shli_i32(tmp2, tmp2, 16);
4419 tcg_gen_or_i32(tmp, tmp, tmp2);
4420 tcg_temp_free_i32(tmp2);
4421 neon_store_reg(rd, pass, tmp);
4423 tmp = neon_load_reg(rd, pass);
4424 tmp2 = tcg_temp_new_i32();
4425 tcg_gen_shri_i32(tmp2, tmp, 16);
4426 gen_aa32_st16(tmp, addr, get_mem_index(s));
4427 tcg_temp_free_i32(tmp);
4428 tcg_gen_addi_i32(addr, addr, stride);
4429 gen_aa32_st16(tmp2, addr, get_mem_index(s));
4430 tcg_temp_free_i32(tmp2);
4431 tcg_gen_addi_i32(addr, addr, stride);
4433 } else /* size == 0 */ {
4435 TCGV_UNUSED_I32(tmp2);
4436 for (n = 0; n < 4; n++) {
4437 tmp = tcg_temp_new_i32();
4438 gen_aa32_ld8u(tmp, addr, get_mem_index(s));
4439 tcg_gen_addi_i32(addr, addr, stride);
4443 tcg_gen_shli_i32(tmp, tmp, n * 8);
4444 tcg_gen_or_i32(tmp2, tmp2, tmp);
4445 tcg_temp_free_i32(tmp);
4448 neon_store_reg(rd, pass, tmp2);
4450 tmp2 = neon_load_reg(rd, pass);
4451 for (n = 0; n < 4; n++) {
4452 tmp = tcg_temp_new_i32();
4454 tcg_gen_mov_i32(tmp, tmp2);
4456 tcg_gen_shri_i32(tmp, tmp2, n * 8);
4458 gen_aa32_st8(tmp, addr, get_mem_index(s));
4459 tcg_temp_free_i32(tmp);
4460 tcg_gen_addi_i32(addr, addr, stride);
4462 tcg_temp_free_i32(tmp2);
4469 tcg_temp_free_i32(addr);
4472 size = (insn >> 10) & 3;
4474 /* Load single element to all lanes. */
4475 int a = (insn >> 4) & 1;
4479 size = (insn >> 6) & 3;
4480 nregs = ((insn >> 8) & 3) + 1;
4483 if (nregs != 4 || a == 0) {
4486 /* For VLD4 size==3 a == 1 means 32 bits at 16 byte alignment */
4489 if (nregs == 1 && a == 1 && size == 0) {
4492 if (nregs == 3 && a == 1) {
4495 addr = tcg_temp_new_i32();
4496 load_reg_var(s, addr, rn);
4498 /* VLD1 to all lanes: bit 5 indicates how many Dregs to write */
4499 tmp = gen_load_and_replicate(s, addr, size);
4500 tcg_gen_st_i32(tmp, cpu_env, neon_reg_offset(rd, 0));
4501 tcg_gen_st_i32(tmp, cpu_env, neon_reg_offset(rd, 1));
4502 if (insn & (1 << 5)) {
4503 tcg_gen_st_i32(tmp, cpu_env, neon_reg_offset(rd + 1, 0));
4504 tcg_gen_st_i32(tmp, cpu_env, neon_reg_offset(rd + 1, 1));
4506 tcg_temp_free_i32(tmp);
4508 /* VLD2/3/4 to all lanes: bit 5 indicates register stride */
4509 stride = (insn & (1 << 5)) ? 2 : 1;
4510 for (reg = 0; reg < nregs; reg++) {
4511 tmp = gen_load_and_replicate(s, addr, size);
4512 tcg_gen_st_i32(tmp, cpu_env, neon_reg_offset(rd, 0));
4513 tcg_gen_st_i32(tmp, cpu_env, neon_reg_offset(rd, 1));
4514 tcg_temp_free_i32(tmp);
4515 tcg_gen_addi_i32(addr, addr, 1 << size);
4519 tcg_temp_free_i32(addr);
4520 stride = (1 << size) * nregs;
4522 /* Single element. */
4523 int idx = (insn >> 4) & 0xf;
4524 pass = (insn >> 7) & 1;
4527 shift = ((insn >> 5) & 3) * 8;
4531 shift = ((insn >> 6) & 1) * 16;
4532 stride = (insn & (1 << 5)) ? 2 : 1;
4536 stride = (insn & (1 << 6)) ? 2 : 1;
4541 nregs = ((insn >> 8) & 3) + 1;
4542 /* Catch the UNDEF cases. This is unavoidably a bit messy. */
4545 if (((idx & (1 << size)) != 0) ||
4546 (size == 2 && ((idx & 3) == 1 || (idx & 3) == 2))) {
4551 if ((idx & 1) != 0) {
4556 if (size == 2 && (idx & 2) != 0) {
4561 if ((size == 2) && ((idx & 3) == 3)) {
4568 if ((rd + stride * (nregs - 1)) > 31) {
4569 /* Attempts to write off the end of the register file
4570 * are UNPREDICTABLE; we choose to UNDEF because otherwise
4571 * the neon_load_reg() would write off the end of the array.
4575 addr = tcg_temp_new_i32();
4576 load_reg_var(s, addr, rn);
4577 for (reg = 0; reg < nregs; reg++) {
4579 tmp = tcg_temp_new_i32();
4582 gen_aa32_ld8u(tmp, addr, get_mem_index(s));
4585 gen_aa32_ld16u(tmp, addr, get_mem_index(s));
4588 gen_aa32_ld32u(tmp, addr, get_mem_index(s));
4590 default: /* Avoid compiler warnings. */
4594 tmp2 = neon_load_reg(rd, pass);
4595 tcg_gen_deposit_i32(tmp, tmp2, tmp,
4596 shift, size ? 16 : 8);
4597 tcg_temp_free_i32(tmp2);
4599 neon_store_reg(rd, pass, tmp);
4600 } else { /* Store */
4601 tmp = neon_load_reg(rd, pass);
4603 tcg_gen_shri_i32(tmp, tmp, shift);
4606 gen_aa32_st8(tmp, addr, get_mem_index(s));
4609 gen_aa32_st16(tmp, addr, get_mem_index(s));
4612 gen_aa32_st32(tmp, addr, get_mem_index(s));
4615 tcg_temp_free_i32(tmp);
4618 tcg_gen_addi_i32(addr, addr, 1 << size);
4620 tcg_temp_free_i32(addr);
4621 stride = nregs * (1 << size);
4627 base = load_reg(s, rn);
4629 tcg_gen_addi_i32(base, base, stride);
4632 index = load_reg(s, rm);
4633 tcg_gen_add_i32(base, base, index);
4634 tcg_temp_free_i32(index);
4636 store_reg(s, rn, base);
4641 /* Bitwise select. dest = c ? t : f. Clobbers T and F. */
4642 static void gen_neon_bsl(TCGv_i32 dest, TCGv_i32 t, TCGv_i32 f, TCGv_i32 c)
4644 tcg_gen_and_i32(t, t, c);
4645 tcg_gen_andc_i32(f, f, c);
4646 tcg_gen_or_i32(dest, t, f);
4649 static inline void gen_neon_narrow(int size, TCGv_i32 dest, TCGv_i64 src)
4652 case 0: gen_helper_neon_narrow_u8(dest, src); break;
4653 case 1: gen_helper_neon_narrow_u16(dest, src); break;
4654 case 2: tcg_gen_trunc_i64_i32(dest, src); break;
4659 static inline void gen_neon_narrow_sats(int size, TCGv_i32 dest, TCGv_i64 src)
4662 case 0: gen_helper_neon_narrow_sat_s8(dest, cpu_env, src); break;
4663 case 1: gen_helper_neon_narrow_sat_s16(dest, cpu_env, src); break;
4664 case 2: gen_helper_neon_narrow_sat_s32(dest, cpu_env, src); break;
4669 static inline void gen_neon_narrow_satu(int size, TCGv_i32 dest, TCGv_i64 src)
4672 case 0: gen_helper_neon_narrow_sat_u8(dest, cpu_env, src); break;
4673 case 1: gen_helper_neon_narrow_sat_u16(dest, cpu_env, src); break;
4674 case 2: gen_helper_neon_narrow_sat_u32(dest, cpu_env, src); break;
4679 static inline void gen_neon_unarrow_sats(int size, TCGv_i32 dest, TCGv_i64 src)
4682 case 0: gen_helper_neon_unarrow_sat8(dest, cpu_env, src); break;
4683 case 1: gen_helper_neon_unarrow_sat16(dest, cpu_env, src); break;
4684 case 2: gen_helper_neon_unarrow_sat32(dest, cpu_env, src); break;
4689 static inline void gen_neon_shift_narrow(int size, TCGv_i32 var, TCGv_i32 shift,
4695 case 1: gen_helper_neon_rshl_u16(var, var, shift); break;
4696 case 2: gen_helper_neon_rshl_u32(var, var, shift); break;
4701 case 1: gen_helper_neon_rshl_s16(var, var, shift); break;
4702 case 2: gen_helper_neon_rshl_s32(var, var, shift); break;
4709 case 1: gen_helper_neon_shl_u16(var, var, shift); break;
4710 case 2: gen_helper_neon_shl_u32(var, var, shift); break;
4715 case 1: gen_helper_neon_shl_s16(var, var, shift); break;
4716 case 2: gen_helper_neon_shl_s32(var, var, shift); break;
4723 static inline void gen_neon_widen(TCGv_i64 dest, TCGv_i32 src, int size, int u)
4727 case 0: gen_helper_neon_widen_u8(dest, src); break;
4728 case 1: gen_helper_neon_widen_u16(dest, src); break;
4729 case 2: tcg_gen_extu_i32_i64(dest, src); break;
4734 case 0: gen_helper_neon_widen_s8(dest, src); break;
4735 case 1: gen_helper_neon_widen_s16(dest, src); break;
4736 case 2: tcg_gen_ext_i32_i64(dest, src); break;
4740 tcg_temp_free_i32(src);
4743 static inline void gen_neon_addl(int size)
4746 case 0: gen_helper_neon_addl_u16(CPU_V001); break;
4747 case 1: gen_helper_neon_addl_u32(CPU_V001); break;
4748 case 2: tcg_gen_add_i64(CPU_V001); break;
4753 static inline void gen_neon_subl(int size)
4756 case 0: gen_helper_neon_subl_u16(CPU_V001); break;
4757 case 1: gen_helper_neon_subl_u32(CPU_V001); break;
4758 case 2: tcg_gen_sub_i64(CPU_V001); break;
4763 static inline void gen_neon_negl(TCGv_i64 var, int size)
4766 case 0: gen_helper_neon_negl_u16(var, var); break;
4767 case 1: gen_helper_neon_negl_u32(var, var); break;
4769 tcg_gen_neg_i64(var, var);
4775 static inline void gen_neon_addl_saturate(TCGv_i64 op0, TCGv_i64 op1, int size)
4778 case 1: gen_helper_neon_addl_saturate_s32(op0, cpu_env, op0, op1); break;
4779 case 2: gen_helper_neon_addl_saturate_s64(op0, cpu_env, op0, op1); break;
4784 static inline void gen_neon_mull(TCGv_i64 dest, TCGv_i32 a, TCGv_i32 b,
4789 switch ((size << 1) | u) {
4790 case 0: gen_helper_neon_mull_s8(dest, a, b); break;
4791 case 1: gen_helper_neon_mull_u8(dest, a, b); break;
4792 case 2: gen_helper_neon_mull_s16(dest, a, b); break;
4793 case 3: gen_helper_neon_mull_u16(dest, a, b); break;
4795 tmp = gen_muls_i64_i32(a, b);
4796 tcg_gen_mov_i64(dest, tmp);
4797 tcg_temp_free_i64(tmp);
4800 tmp = gen_mulu_i64_i32(a, b);
4801 tcg_gen_mov_i64(dest, tmp);
4802 tcg_temp_free_i64(tmp);
4807 /* gen_helper_neon_mull_[su]{8|16} do not free their parameters.
4808 Don't forget to clean them now. */
4810 tcg_temp_free_i32(a);
4811 tcg_temp_free_i32(b);
4815 static void gen_neon_narrow_op(int op, int u, int size,
4816 TCGv_i32 dest, TCGv_i64 src)
4820 gen_neon_unarrow_sats(size, dest, src);
4822 gen_neon_narrow(size, dest, src);
4826 gen_neon_narrow_satu(size, dest, src);
4828 gen_neon_narrow_sats(size, dest, src);
4833 /* Symbolic constants for op fields for Neon 3-register same-length.
4834 * The values correspond to bits [11:8,4]; see the ARM ARM DDI0406B
4837 #define NEON_3R_VHADD 0
4838 #define NEON_3R_VQADD 1
4839 #define NEON_3R_VRHADD 2
4840 #define NEON_3R_LOGIC 3 /* VAND,VBIC,VORR,VMOV,VORN,VEOR,VBIF,VBIT,VBSL */
4841 #define NEON_3R_VHSUB 4
4842 #define NEON_3R_VQSUB 5
4843 #define NEON_3R_VCGT 6
4844 #define NEON_3R_VCGE 7
4845 #define NEON_3R_VSHL 8
4846 #define NEON_3R_VQSHL 9
4847 #define NEON_3R_VRSHL 10
4848 #define NEON_3R_VQRSHL 11
4849 #define NEON_3R_VMAX 12
4850 #define NEON_3R_VMIN 13
4851 #define NEON_3R_VABD 14
4852 #define NEON_3R_VABA 15
4853 #define NEON_3R_VADD_VSUB 16
4854 #define NEON_3R_VTST_VCEQ 17
4855 #define NEON_3R_VML 18 /* VMLA, VMLAL, VMLS, VMLSL */
4856 #define NEON_3R_VMUL 19
4857 #define NEON_3R_VPMAX 20
4858 #define NEON_3R_VPMIN 21
4859 #define NEON_3R_VQDMULH_VQRDMULH 22
4860 #define NEON_3R_VPADD 23
4861 #define NEON_3R_SHA 24 /* SHA1C,SHA1P,SHA1M,SHA1SU0,SHA256H{2},SHA256SU1 */
4862 #define NEON_3R_VFM 25 /* VFMA, VFMS : float fused multiply-add */
4863 #define NEON_3R_FLOAT_ARITH 26 /* float VADD, VSUB, VPADD, VABD */
4864 #define NEON_3R_FLOAT_MULTIPLY 27 /* float VMLA, VMLS, VMUL */
4865 #define NEON_3R_FLOAT_CMP 28 /* float VCEQ, VCGE, VCGT */
4866 #define NEON_3R_FLOAT_ACMP 29 /* float VACGE, VACGT, VACLE, VACLT */
4867 #define NEON_3R_FLOAT_MINMAX 30 /* float VMIN, VMAX */
4868 #define NEON_3R_FLOAT_MISC 31 /* float VRECPS, VRSQRTS, VMAXNM/MINNM */
4870 static const uint8_t neon_3r_sizes[] = {
4871 [NEON_3R_VHADD] = 0x7,
4872 [NEON_3R_VQADD] = 0xf,
4873 [NEON_3R_VRHADD] = 0x7,
4874 [NEON_3R_LOGIC] = 0xf, /* size field encodes op type */
4875 [NEON_3R_VHSUB] = 0x7,
4876 [NEON_3R_VQSUB] = 0xf,
4877 [NEON_3R_VCGT] = 0x7,
4878 [NEON_3R_VCGE] = 0x7,
4879 [NEON_3R_VSHL] = 0xf,
4880 [NEON_3R_VQSHL] = 0xf,
4881 [NEON_3R_VRSHL] = 0xf,
4882 [NEON_3R_VQRSHL] = 0xf,
4883 [NEON_3R_VMAX] = 0x7,
4884 [NEON_3R_VMIN] = 0x7,
4885 [NEON_3R_VABD] = 0x7,
4886 [NEON_3R_VABA] = 0x7,
4887 [NEON_3R_VADD_VSUB] = 0xf,
4888 [NEON_3R_VTST_VCEQ] = 0x7,
4889 [NEON_3R_VML] = 0x7,
4890 [NEON_3R_VMUL] = 0x7,
4891 [NEON_3R_VPMAX] = 0x7,
4892 [NEON_3R_VPMIN] = 0x7,
4893 [NEON_3R_VQDMULH_VQRDMULH] = 0x6,
4894 [NEON_3R_VPADD] = 0x7,
4895 [NEON_3R_SHA] = 0xf, /* size field encodes op type */
4896 [NEON_3R_VFM] = 0x5, /* size bit 1 encodes op */
4897 [NEON_3R_FLOAT_ARITH] = 0x5, /* size bit 1 encodes op */
4898 [NEON_3R_FLOAT_MULTIPLY] = 0x5, /* size bit 1 encodes op */
4899 [NEON_3R_FLOAT_CMP] = 0x5, /* size bit 1 encodes op */
4900 [NEON_3R_FLOAT_ACMP] = 0x5, /* size bit 1 encodes op */
4901 [NEON_3R_FLOAT_MINMAX] = 0x5, /* size bit 1 encodes op */
4902 [NEON_3R_FLOAT_MISC] = 0x5, /* size bit 1 encodes op */
4905 /* Symbolic constants for op fields for Neon 2-register miscellaneous.
4906 * The values correspond to bits [17:16,10:7]; see the ARM ARM DDI0406B
4909 #define NEON_2RM_VREV64 0
4910 #define NEON_2RM_VREV32 1
4911 #define NEON_2RM_VREV16 2
4912 #define NEON_2RM_VPADDL 4
4913 #define NEON_2RM_VPADDL_U 5
4914 #define NEON_2RM_AESE 6 /* Includes AESD */
4915 #define NEON_2RM_AESMC 7 /* Includes AESIMC */
4916 #define NEON_2RM_VCLS 8
4917 #define NEON_2RM_VCLZ 9
4918 #define NEON_2RM_VCNT 10
4919 #define NEON_2RM_VMVN 11
4920 #define NEON_2RM_VPADAL 12
4921 #define NEON_2RM_VPADAL_U 13
4922 #define NEON_2RM_VQABS 14
4923 #define NEON_2RM_VQNEG 15
4924 #define NEON_2RM_VCGT0 16
4925 #define NEON_2RM_VCGE0 17
4926 #define NEON_2RM_VCEQ0 18
4927 #define NEON_2RM_VCLE0 19
4928 #define NEON_2RM_VCLT0 20
4929 #define NEON_2RM_SHA1H 21
4930 #define NEON_2RM_VABS 22
4931 #define NEON_2RM_VNEG 23
4932 #define NEON_2RM_VCGT0_F 24
4933 #define NEON_2RM_VCGE0_F 25
4934 #define NEON_2RM_VCEQ0_F 26
4935 #define NEON_2RM_VCLE0_F 27
4936 #define NEON_2RM_VCLT0_F 28
4937 #define NEON_2RM_VABS_F 30
4938 #define NEON_2RM_VNEG_F 31
4939 #define NEON_2RM_VSWP 32
4940 #define NEON_2RM_VTRN 33
4941 #define NEON_2RM_VUZP 34
4942 #define NEON_2RM_VZIP 35
4943 #define NEON_2RM_VMOVN 36 /* Includes VQMOVN, VQMOVUN */
4944 #define NEON_2RM_VQMOVN 37 /* Includes VQMOVUN */
4945 #define NEON_2RM_VSHLL 38
4946 #define NEON_2RM_SHA1SU1 39 /* Includes SHA256SU0 */
4947 #define NEON_2RM_VRINTN 40
4948 #define NEON_2RM_VRINTX 41
4949 #define NEON_2RM_VRINTA 42
4950 #define NEON_2RM_VRINTZ 43
4951 #define NEON_2RM_VCVT_F16_F32 44
4952 #define NEON_2RM_VRINTM 45
4953 #define NEON_2RM_VCVT_F32_F16 46
4954 #define NEON_2RM_VRINTP 47
4955 #define NEON_2RM_VCVTAU 48
4956 #define NEON_2RM_VCVTAS 49
4957 #define NEON_2RM_VCVTNU 50
4958 #define NEON_2RM_VCVTNS 51
4959 #define NEON_2RM_VCVTPU 52
4960 #define NEON_2RM_VCVTPS 53
4961 #define NEON_2RM_VCVTMU 54
4962 #define NEON_2RM_VCVTMS 55
4963 #define NEON_2RM_VRECPE 56
4964 #define NEON_2RM_VRSQRTE 57
4965 #define NEON_2RM_VRECPE_F 58
4966 #define NEON_2RM_VRSQRTE_F 59
4967 #define NEON_2RM_VCVT_FS 60
4968 #define NEON_2RM_VCVT_FU 61
4969 #define NEON_2RM_VCVT_SF 62
4970 #define NEON_2RM_VCVT_UF 63
4972 static int neon_2rm_is_float_op(int op)
4974 /* Return true if this neon 2reg-misc op is float-to-float */
4975 return (op == NEON_2RM_VABS_F || op == NEON_2RM_VNEG_F ||
4976 (op >= NEON_2RM_VRINTN && op <= NEON_2RM_VRINTZ) ||
4977 op == NEON_2RM_VRINTM ||
4978 (op >= NEON_2RM_VRINTP && op <= NEON_2RM_VCVTMS) ||
4979 op >= NEON_2RM_VRECPE_F);
4982 /* Each entry in this array has bit n set if the insn allows
4983 * size value n (otherwise it will UNDEF). Since unallocated
4984 * op values will have no bits set they always UNDEF.
4986 static const uint8_t neon_2rm_sizes[] = {
4987 [NEON_2RM_VREV64] = 0x7,
4988 [NEON_2RM_VREV32] = 0x3,
4989 [NEON_2RM_VREV16] = 0x1,
4990 [NEON_2RM_VPADDL] = 0x7,
4991 [NEON_2RM_VPADDL_U] = 0x7,
4992 [NEON_2RM_AESE] = 0x1,
4993 [NEON_2RM_AESMC] = 0x1,
4994 [NEON_2RM_VCLS] = 0x7,
4995 [NEON_2RM_VCLZ] = 0x7,
4996 [NEON_2RM_VCNT] = 0x1,
4997 [NEON_2RM_VMVN] = 0x1,
4998 [NEON_2RM_VPADAL] = 0x7,
4999 [NEON_2RM_VPADAL_U] = 0x7,
5000 [NEON_2RM_VQABS] = 0x7,
5001 [NEON_2RM_VQNEG] = 0x7,
5002 [NEON_2RM_VCGT0] = 0x7,
5003 [NEON_2RM_VCGE0] = 0x7,
5004 [NEON_2RM_VCEQ0] = 0x7,
5005 [NEON_2RM_VCLE0] = 0x7,
5006 [NEON_2RM_VCLT0] = 0x7,
5007 [NEON_2RM_SHA1H] = 0x4,
5008 [NEON_2RM_VABS] = 0x7,
5009 [NEON_2RM_VNEG] = 0x7,
5010 [NEON_2RM_VCGT0_F] = 0x4,
5011 [NEON_2RM_VCGE0_F] = 0x4,
5012 [NEON_2RM_VCEQ0_F] = 0x4,
5013 [NEON_2RM_VCLE0_F] = 0x4,
5014 [NEON_2RM_VCLT0_F] = 0x4,
5015 [NEON_2RM_VABS_F] = 0x4,
5016 [NEON_2RM_VNEG_F] = 0x4,
5017 [NEON_2RM_VSWP] = 0x1,
5018 [NEON_2RM_VTRN] = 0x7,
5019 [NEON_2RM_VUZP] = 0x7,
5020 [NEON_2RM_VZIP] = 0x7,
5021 [NEON_2RM_VMOVN] = 0x7,
5022 [NEON_2RM_VQMOVN] = 0x7,
5023 [NEON_2RM_VSHLL] = 0x7,
5024 [NEON_2RM_SHA1SU1] = 0x4,
5025 [NEON_2RM_VRINTN] = 0x4,
5026 [NEON_2RM_VRINTX] = 0x4,
5027 [NEON_2RM_VRINTA] = 0x4,
5028 [NEON_2RM_VRINTZ] = 0x4,
5029 [NEON_2RM_VCVT_F16_F32] = 0x2,
5030 [NEON_2RM_VRINTM] = 0x4,
5031 [NEON_2RM_VCVT_F32_F16] = 0x2,
5032 [NEON_2RM_VRINTP] = 0x4,
5033 [NEON_2RM_VCVTAU] = 0x4,
5034 [NEON_2RM_VCVTAS] = 0x4,
5035 [NEON_2RM_VCVTNU] = 0x4,
5036 [NEON_2RM_VCVTNS] = 0x4,
5037 [NEON_2RM_VCVTPU] = 0x4,
5038 [NEON_2RM_VCVTPS] = 0x4,
5039 [NEON_2RM_VCVTMU] = 0x4,
5040 [NEON_2RM_VCVTMS] = 0x4,
5041 [NEON_2RM_VRECPE] = 0x4,
5042 [NEON_2RM_VRSQRTE] = 0x4,
5043 [NEON_2RM_VRECPE_F] = 0x4,
5044 [NEON_2RM_VRSQRTE_F] = 0x4,
5045 [NEON_2RM_VCVT_FS] = 0x4,
5046 [NEON_2RM_VCVT_FU] = 0x4,
5047 [NEON_2RM_VCVT_SF] = 0x4,
5048 [NEON_2RM_VCVT_UF] = 0x4,
5051 /* Translate a NEON data processing instruction. Return nonzero if the
5052 instruction is invalid.
5053 We process data in a mixture of 32-bit and 64-bit chunks.
5054 Mostly we use 32-bit chunks so we can use normal scalar instructions. */
5056 static int disas_neon_data_insn(DisasContext *s, uint32_t insn)
5068 TCGv_i32 tmp, tmp2, tmp3, tmp4, tmp5;
5071 /* FIXME: this access check should not take precedence over UNDEF
5072 * for invalid encodings; we will generate incorrect syndrome information
5073 * for attempts to execute invalid vfp/neon encodings with FP disabled.
5075 if (!s->cpacr_fpen) {
5076 gen_exception_insn(s, 4, EXCP_UDEF,
5077 syn_fp_access_trap(1, 0xe, s->thumb));
5081 if (!s->vfp_enabled)
5083 q = (insn & (1 << 6)) != 0;
5084 u = (insn >> 24) & 1;
5085 VFP_DREG_D(rd, insn);
5086 VFP_DREG_N(rn, insn);
5087 VFP_DREG_M(rm, insn);
5088 size = (insn >> 20) & 3;
5089 if ((insn & (1 << 23)) == 0) {
5090 /* Three register same length. */
5091 op = ((insn >> 7) & 0x1e) | ((insn >> 4) & 1);
5092 /* Catch invalid op and bad size combinations: UNDEF */
5093 if ((neon_3r_sizes[op] & (1 << size)) == 0) {
5096 /* All insns of this form UNDEF for either this condition or the
5097 * superset of cases "Q==1"; we catch the latter later.
5099 if (q && ((rd | rn | rm) & 1)) {
5103 * The SHA-1/SHA-256 3-register instructions require special treatment
5104 * here, as their size field is overloaded as an op type selector, and
5105 * they all consume their input in a single pass.
5107 if (op == NEON_3R_SHA) {
5111 if (!u) { /* SHA-1 */
5112 if (!arm_dc_feature(s, ARM_FEATURE_V8_SHA1)) {
5115 tmp = tcg_const_i32(rd);
5116 tmp2 = tcg_const_i32(rn);
5117 tmp3 = tcg_const_i32(rm);
5118 tmp4 = tcg_const_i32(size);
5119 gen_helper_crypto_sha1_3reg(cpu_env, tmp, tmp2, tmp3, tmp4);
5120 tcg_temp_free_i32(tmp4);
5121 } else { /* SHA-256 */
5122 if (!arm_dc_feature(s, ARM_FEATURE_V8_SHA256) || size == 3) {
5125 tmp = tcg_const_i32(rd);
5126 tmp2 = tcg_const_i32(rn);
5127 tmp3 = tcg_const_i32(rm);
5130 gen_helper_crypto_sha256h(cpu_env, tmp, tmp2, tmp3);
5133 gen_helper_crypto_sha256h2(cpu_env, tmp, tmp2, tmp3);
5136 gen_helper_crypto_sha256su1(cpu_env, tmp, tmp2, tmp3);
5140 tcg_temp_free_i32(tmp);
5141 tcg_temp_free_i32(tmp2);
5142 tcg_temp_free_i32(tmp3);
5145 if (size == 3 && op != NEON_3R_LOGIC) {
5146 /* 64-bit element instructions. */
5147 for (pass = 0; pass < (q ? 2 : 1); pass++) {
5148 neon_load_reg64(cpu_V0, rn + pass);
5149 neon_load_reg64(cpu_V1, rm + pass);
5153 gen_helper_neon_qadd_u64(cpu_V0, cpu_env,
5156 gen_helper_neon_qadd_s64(cpu_V0, cpu_env,
5162 gen_helper_neon_qsub_u64(cpu_V0, cpu_env,
5165 gen_helper_neon_qsub_s64(cpu_V0, cpu_env,
5171 gen_helper_neon_shl_u64(cpu_V0, cpu_V1, cpu_V0);
5173 gen_helper_neon_shl_s64(cpu_V0, cpu_V1, cpu_V0);
5178 gen_helper_neon_qshl_u64(cpu_V0, cpu_env,
5181 gen_helper_neon_qshl_s64(cpu_V0, cpu_env,
5187 gen_helper_neon_rshl_u64(cpu_V0, cpu_V1, cpu_V0);
5189 gen_helper_neon_rshl_s64(cpu_V0, cpu_V1, cpu_V0);
5192 case NEON_3R_VQRSHL:
5194 gen_helper_neon_qrshl_u64(cpu_V0, cpu_env,
5197 gen_helper_neon_qrshl_s64(cpu_V0, cpu_env,
5201 case NEON_3R_VADD_VSUB:
5203 tcg_gen_sub_i64(CPU_V001);
5205 tcg_gen_add_i64(CPU_V001);
5211 neon_store_reg64(cpu_V0, rd + pass);
5220 case NEON_3R_VQRSHL:
5223 /* Shift instruction operands are reversed. */
5238 case NEON_3R_FLOAT_ARITH:
5239 pairwise = (u && size < 2); /* if VPADD (float) */
5241 case NEON_3R_FLOAT_MINMAX:
5242 pairwise = u; /* if VPMIN/VPMAX (float) */
5244 case NEON_3R_FLOAT_CMP:
5246 /* no encoding for U=0 C=1x */
5250 case NEON_3R_FLOAT_ACMP:
5255 case NEON_3R_FLOAT_MISC:
5256 /* VMAXNM/VMINNM in ARMv8 */
5257 if (u && !arm_dc_feature(s, ARM_FEATURE_V8)) {
5262 if (u && (size != 0)) {
5263 /* UNDEF on invalid size for polynomial subcase */
5268 if (!arm_dc_feature(s, ARM_FEATURE_VFP4) || u) {
5276 if (pairwise && q) {
5277 /* All the pairwise insns UNDEF if Q is set */
5281 for (pass = 0; pass < (q ? 4 : 2); pass++) {
5286 tmp = neon_load_reg(rn, 0);
5287 tmp2 = neon_load_reg(rn, 1);
5289 tmp = neon_load_reg(rm, 0);
5290 tmp2 = neon_load_reg(rm, 1);
5294 tmp = neon_load_reg(rn, pass);
5295 tmp2 = neon_load_reg(rm, pass);
5299 GEN_NEON_INTEGER_OP(hadd);
5302 GEN_NEON_INTEGER_OP_ENV(qadd);
5304 case NEON_3R_VRHADD:
5305 GEN_NEON_INTEGER_OP(rhadd);
5307 case NEON_3R_LOGIC: /* Logic ops. */
5308 switch ((u << 2) | size) {
5310 tcg_gen_and_i32(tmp, tmp, tmp2);
5313 tcg_gen_andc_i32(tmp, tmp, tmp2);
5316 tcg_gen_or_i32(tmp, tmp, tmp2);
5319 tcg_gen_orc_i32(tmp, tmp, tmp2);
5322 tcg_gen_xor_i32(tmp, tmp, tmp2);
5325 tmp3 = neon_load_reg(rd, pass);
5326 gen_neon_bsl(tmp, tmp, tmp2, tmp3);
5327 tcg_temp_free_i32(tmp3);
5330 tmp3 = neon_load_reg(rd, pass);
5331 gen_neon_bsl(tmp, tmp, tmp3, tmp2);
5332 tcg_temp_free_i32(tmp3);
5335 tmp3 = neon_load_reg(rd, pass);
5336 gen_neon_bsl(tmp, tmp3, tmp, tmp2);
5337 tcg_temp_free_i32(tmp3);
5342 GEN_NEON_INTEGER_OP(hsub);
5345 GEN_NEON_INTEGER_OP_ENV(qsub);
5348 GEN_NEON_INTEGER_OP(cgt);
5351 GEN_NEON_INTEGER_OP(cge);
5354 GEN_NEON_INTEGER_OP(shl);
5357 GEN_NEON_INTEGER_OP_ENV(qshl);
5360 GEN_NEON_INTEGER_OP(rshl);
5362 case NEON_3R_VQRSHL:
5363 GEN_NEON_INTEGER_OP_ENV(qrshl);
5366 GEN_NEON_INTEGER_OP(max);
5369 GEN_NEON_INTEGER_OP(min);
5372 GEN_NEON_INTEGER_OP(abd);
5375 GEN_NEON_INTEGER_OP(abd);
5376 tcg_temp_free_i32(tmp2);
5377 tmp2 = neon_load_reg(rd, pass);
5378 gen_neon_add(size, tmp, tmp2);
5380 case NEON_3R_VADD_VSUB:
5381 if (!u) { /* VADD */
5382 gen_neon_add(size, tmp, tmp2);
5385 case 0: gen_helper_neon_sub_u8(tmp, tmp, tmp2); break;
5386 case 1: gen_helper_neon_sub_u16(tmp, tmp, tmp2); break;
5387 case 2: tcg_gen_sub_i32(tmp, tmp, tmp2); break;
5392 case NEON_3R_VTST_VCEQ:
5393 if (!u) { /* VTST */
5395 case 0: gen_helper_neon_tst_u8(tmp, tmp, tmp2); break;
5396 case 1: gen_helper_neon_tst_u16(tmp, tmp, tmp2); break;
5397 case 2: gen_helper_neon_tst_u32(tmp, tmp, tmp2); break;
5402 case 0: gen_helper_neon_ceq_u8(tmp, tmp, tmp2); break;
5403 case 1: gen_helper_neon_ceq_u16(tmp, tmp, tmp2); break;
5404 case 2: gen_helper_neon_ceq_u32(tmp, tmp, tmp2); break;
5409 case NEON_3R_VML: /* VMLA, VMLAL, VMLS,VMLSL */
5411 case 0: gen_helper_neon_mul_u8(tmp, tmp, tmp2); break;
5412 case 1: gen_helper_neon_mul_u16(tmp, tmp, tmp2); break;
5413 case 2: tcg_gen_mul_i32(tmp, tmp, tmp2); break;
5416 tcg_temp_free_i32(tmp2);
5417 tmp2 = neon_load_reg(rd, pass);
5419 gen_neon_rsb(size, tmp, tmp2);
5421 gen_neon_add(size, tmp, tmp2);
5425 if (u) { /* polynomial */
5426 gen_helper_neon_mul_p8(tmp, tmp, tmp2);
5427 } else { /* Integer */
5429 case 0: gen_helper_neon_mul_u8(tmp, tmp, tmp2); break;
5430 case 1: gen_helper_neon_mul_u16(tmp, tmp, tmp2); break;
5431 case 2: tcg_gen_mul_i32(tmp, tmp, tmp2); break;
5437 GEN_NEON_INTEGER_OP(pmax);
5440 GEN_NEON_INTEGER_OP(pmin);
5442 case NEON_3R_VQDMULH_VQRDMULH: /* Multiply high. */
5443 if (!u) { /* VQDMULH */
5446 gen_helper_neon_qdmulh_s16(tmp, cpu_env, tmp, tmp2);
5449 gen_helper_neon_qdmulh_s32(tmp, cpu_env, tmp, tmp2);
5453 } else { /* VQRDMULH */
5456 gen_helper_neon_qrdmulh_s16(tmp, cpu_env, tmp, tmp2);
5459 gen_helper_neon_qrdmulh_s32(tmp, cpu_env, tmp, tmp2);
5467 case 0: gen_helper_neon_padd_u8(tmp, tmp, tmp2); break;
5468 case 1: gen_helper_neon_padd_u16(tmp, tmp, tmp2); break;
5469 case 2: tcg_gen_add_i32(tmp, tmp, tmp2); break;
5473 case NEON_3R_FLOAT_ARITH: /* Floating point arithmetic. */
5475 TCGv_ptr fpstatus = get_fpstatus_ptr(1);
5476 switch ((u << 2) | size) {
5479 gen_helper_vfp_adds(tmp, tmp, tmp2, fpstatus);
5482 gen_helper_vfp_subs(tmp, tmp, tmp2, fpstatus);
5485 gen_helper_neon_abd_f32(tmp, tmp, tmp2, fpstatus);
5490 tcg_temp_free_ptr(fpstatus);
5493 case NEON_3R_FLOAT_MULTIPLY:
5495 TCGv_ptr fpstatus = get_fpstatus_ptr(1);
5496 gen_helper_vfp_muls(tmp, tmp, tmp2, fpstatus);
5498 tcg_temp_free_i32(tmp2);
5499 tmp2 = neon_load_reg(rd, pass);
5501 gen_helper_vfp_adds(tmp, tmp, tmp2, fpstatus);
5503 gen_helper_vfp_subs(tmp, tmp2, tmp, fpstatus);
5506 tcg_temp_free_ptr(fpstatus);
5509 case NEON_3R_FLOAT_CMP:
5511 TCGv_ptr fpstatus = get_fpstatus_ptr(1);
5513 gen_helper_neon_ceq_f32(tmp, tmp, tmp2, fpstatus);
5516 gen_helper_neon_cge_f32(tmp, tmp, tmp2, fpstatus);
5518 gen_helper_neon_cgt_f32(tmp, tmp, tmp2, fpstatus);
5521 tcg_temp_free_ptr(fpstatus);
5524 case NEON_3R_FLOAT_ACMP:
5526 TCGv_ptr fpstatus = get_fpstatus_ptr(1);
5528 gen_helper_neon_acge_f32(tmp, tmp, tmp2, fpstatus);
5530 gen_helper_neon_acgt_f32(tmp, tmp, tmp2, fpstatus);
5532 tcg_temp_free_ptr(fpstatus);
5535 case NEON_3R_FLOAT_MINMAX:
5537 TCGv_ptr fpstatus = get_fpstatus_ptr(1);
5539 gen_helper_vfp_maxs(tmp, tmp, tmp2, fpstatus);
5541 gen_helper_vfp_mins(tmp, tmp, tmp2, fpstatus);
5543 tcg_temp_free_ptr(fpstatus);
5546 case NEON_3R_FLOAT_MISC:
5549 TCGv_ptr fpstatus = get_fpstatus_ptr(1);
5551 gen_helper_vfp_maxnums(tmp, tmp, tmp2, fpstatus);
5553 gen_helper_vfp_minnums(tmp, tmp, tmp2, fpstatus);
5555 tcg_temp_free_ptr(fpstatus);
5558 gen_helper_recps_f32(tmp, tmp, tmp2, cpu_env);
5560 gen_helper_rsqrts_f32(tmp, tmp, tmp2, cpu_env);
5566 /* VFMA, VFMS: fused multiply-add */
5567 TCGv_ptr fpstatus = get_fpstatus_ptr(1);
5568 TCGv_i32 tmp3 = neon_load_reg(rd, pass);
5571 gen_helper_vfp_negs(tmp, tmp);
5573 gen_helper_vfp_muladds(tmp, tmp, tmp2, tmp3, fpstatus);
5574 tcg_temp_free_i32(tmp3);
5575 tcg_temp_free_ptr(fpstatus);
5581 tcg_temp_free_i32(tmp2);
5583 /* Save the result. For elementwise operations we can put it
5584 straight into the destination register. For pairwise operations
5585 we have to be careful to avoid clobbering the source operands. */
5586 if (pairwise && rd == rm) {
5587 neon_store_scratch(pass, tmp);
5589 neon_store_reg(rd, pass, tmp);
5593 if (pairwise && rd == rm) {
5594 for (pass = 0; pass < (q ? 4 : 2); pass++) {
5595 tmp = neon_load_scratch(pass);
5596 neon_store_reg(rd, pass, tmp);
5599 /* End of 3 register same size operations. */
5600 } else if (insn & (1 << 4)) {
5601 if ((insn & 0x00380080) != 0) {
5602 /* Two registers and shift. */
5603 op = (insn >> 8) & 0xf;
5604 if (insn & (1 << 7)) {
5612 while ((insn & (1 << (size + 19))) == 0)
5615 shift = (insn >> 16) & ((1 << (3 + size)) - 1);
5616 /* To avoid excessive duplication of ops we implement shift
5617 by immediate using the variable shift operations. */
5619 /* Shift by immediate:
5620 VSHR, VSRA, VRSHR, VRSRA, VSRI, VSHL, VQSHL, VQSHLU. */
5621 if (q && ((rd | rm) & 1)) {
5624 if (!u && (op == 4 || op == 6)) {
5627 /* Right shifts are encoded as N - shift, where N is the
5628 element size in bits. */
5630 shift = shift - (1 << (size + 3));
5638 imm = (uint8_t) shift;
5643 imm = (uint16_t) shift;
5654 for (pass = 0; pass < count; pass++) {
5656 neon_load_reg64(cpu_V0, rm + pass);
5657 tcg_gen_movi_i64(cpu_V1, imm);
5662 gen_helper_neon_shl_u64(cpu_V0, cpu_V0, cpu_V1);
5664 gen_helper_neon_shl_s64(cpu_V0, cpu_V0, cpu_V1);
5669 gen_helper_neon_rshl_u64(cpu_V0, cpu_V0, cpu_V1);
5671 gen_helper_neon_rshl_s64(cpu_V0, cpu_V0, cpu_V1);
5674 case 5: /* VSHL, VSLI */
5675 gen_helper_neon_shl_u64(cpu_V0, cpu_V0, cpu_V1);
5677 case 6: /* VQSHLU */
5678 gen_helper_neon_qshlu_s64(cpu_V0, cpu_env,
5683 gen_helper_neon_qshl_u64(cpu_V0, cpu_env,
5686 gen_helper_neon_qshl_s64(cpu_V0, cpu_env,
5691 if (op == 1 || op == 3) {
5693 neon_load_reg64(cpu_V1, rd + pass);
5694 tcg_gen_add_i64(cpu_V0, cpu_V0, cpu_V1);
5695 } else if (op == 4 || (op == 5 && u)) {
5697 neon_load_reg64(cpu_V1, rd + pass);
5699 if (shift < -63 || shift > 63) {
5703 mask = 0xffffffffffffffffull >> -shift;
5705 mask = 0xffffffffffffffffull << shift;
5708 tcg_gen_andi_i64(cpu_V1, cpu_V1, ~mask);
5709 tcg_gen_or_i64(cpu_V0, cpu_V0, cpu_V1);
5711 neon_store_reg64(cpu_V0, rd + pass);
5712 } else { /* size < 3 */
5713 /* Operands in T0 and T1. */
5714 tmp = neon_load_reg(rm, pass);
5715 tmp2 = tcg_temp_new_i32();
5716 tcg_gen_movi_i32(tmp2, imm);
5720 GEN_NEON_INTEGER_OP(shl);
5724 GEN_NEON_INTEGER_OP(rshl);
5727 case 5: /* VSHL, VSLI */
5729 case 0: gen_helper_neon_shl_u8(tmp, tmp, tmp2); break;
5730 case 1: gen_helper_neon_shl_u16(tmp, tmp, tmp2); break;
5731 case 2: gen_helper_neon_shl_u32(tmp, tmp, tmp2); break;
5735 case 6: /* VQSHLU */
5738 gen_helper_neon_qshlu_s8(tmp, cpu_env,
5742 gen_helper_neon_qshlu_s16(tmp, cpu_env,
5746 gen_helper_neon_qshlu_s32(tmp, cpu_env,
5754 GEN_NEON_INTEGER_OP_ENV(qshl);
5757 tcg_temp_free_i32(tmp2);
5759 if (op == 1 || op == 3) {
5761 tmp2 = neon_load_reg(rd, pass);
5762 gen_neon_add(size, tmp, tmp2);
5763 tcg_temp_free_i32(tmp2);
5764 } else if (op == 4 || (op == 5 && u)) {
5769 mask = 0xff >> -shift;
5771 mask = (uint8_t)(0xff << shift);
5777 mask = 0xffff >> -shift;
5779 mask = (uint16_t)(0xffff << shift);
5783 if (shift < -31 || shift > 31) {
5787 mask = 0xffffffffu >> -shift;
5789 mask = 0xffffffffu << shift;
5795 tmp2 = neon_load_reg(rd, pass);
5796 tcg_gen_andi_i32(tmp, tmp, mask);
5797 tcg_gen_andi_i32(tmp2, tmp2, ~mask);
5798 tcg_gen_or_i32(tmp, tmp, tmp2);
5799 tcg_temp_free_i32(tmp2);
5801 neon_store_reg(rd, pass, tmp);
5804 } else if (op < 10) {
5805 /* Shift by immediate and narrow:
5806 VSHRN, VRSHRN, VQSHRN, VQRSHRN. */
5807 int input_unsigned = (op == 8) ? !u : u;
5811 shift = shift - (1 << (size + 3));
5814 tmp64 = tcg_const_i64(shift);
5815 neon_load_reg64(cpu_V0, rm);
5816 neon_load_reg64(cpu_V1, rm + 1);
5817 for (pass = 0; pass < 2; pass++) {
5825 if (input_unsigned) {
5826 gen_helper_neon_rshl_u64(cpu_V0, in, tmp64);
5828 gen_helper_neon_rshl_s64(cpu_V0, in, tmp64);
5831 if (input_unsigned) {
5832 gen_helper_neon_shl_u64(cpu_V0, in, tmp64);
5834 gen_helper_neon_shl_s64(cpu_V0, in, tmp64);
5837 tmp = tcg_temp_new_i32();
5838 gen_neon_narrow_op(op == 8, u, size - 1, tmp, cpu_V0);
5839 neon_store_reg(rd, pass, tmp);
5841 tcg_temp_free_i64(tmp64);
5844 imm = (uint16_t)shift;
5848 imm = (uint32_t)shift;
5850 tmp2 = tcg_const_i32(imm);
5851 tmp4 = neon_load_reg(rm + 1, 0);
5852 tmp5 = neon_load_reg(rm + 1, 1);
5853 for (pass = 0; pass < 2; pass++) {
5855 tmp = neon_load_reg(rm, 0);
5859 gen_neon_shift_narrow(size, tmp, tmp2, q,
5862 tmp3 = neon_load_reg(rm, 1);
5866 gen_neon_shift_narrow(size, tmp3, tmp2, q,
5868 tcg_gen_concat_i32_i64(cpu_V0, tmp, tmp3);
5869 tcg_temp_free_i32(tmp);
5870 tcg_temp_free_i32(tmp3);
5871 tmp = tcg_temp_new_i32();
5872 gen_neon_narrow_op(op == 8, u, size - 1, tmp, cpu_V0);
5873 neon_store_reg(rd, pass, tmp);
5875 tcg_temp_free_i32(tmp2);
5877 } else if (op == 10) {
5879 if (q || (rd & 1)) {
5882 tmp = neon_load_reg(rm, 0);
5883 tmp2 = neon_load_reg(rm, 1);
5884 for (pass = 0; pass < 2; pass++) {
5888 gen_neon_widen(cpu_V0, tmp, size, u);
5891 /* The shift is less than the width of the source
5892 type, so we can just shift the whole register. */
5893 tcg_gen_shli_i64(cpu_V0, cpu_V0, shift);
5894 /* Widen the result of shift: we need to clear
5895 * the potential overflow bits resulting from
5896 * left bits of the narrow input appearing as
5897 * right bits of left the neighbour narrow
5899 if (size < 2 || !u) {
5902 imm = (0xffu >> (8 - shift));
5904 } else if (size == 1) {
5905 imm = 0xffff >> (16 - shift);
5908 imm = 0xffffffff >> (32 - shift);
5911 imm64 = imm | (((uint64_t)imm) << 32);
5915 tcg_gen_andi_i64(cpu_V0, cpu_V0, ~imm64);
5918 neon_store_reg64(cpu_V0, rd + pass);
5920 } else if (op >= 14) {
5921 /* VCVT fixed-point. */
5922 if (!(insn & (1 << 21)) || (q && ((rd | rm) & 1))) {
5925 /* We have already masked out the must-be-1 top bit of imm6,
5926 * hence this 32-shift where the ARM ARM has 64-imm6.
5929 for (pass = 0; pass < (q ? 4 : 2); pass++) {
5930 tcg_gen_ld_f32(cpu_F0s, cpu_env, neon_reg_offset(rm, pass));
5933 gen_vfp_ulto(0, shift, 1);
5935 gen_vfp_slto(0, shift, 1);
5938 gen_vfp_toul(0, shift, 1);
5940 gen_vfp_tosl(0, shift, 1);
5942 tcg_gen_st_f32(cpu_F0s, cpu_env, neon_reg_offset(rd, pass));
5947 } else { /* (insn & 0x00380080) == 0 */
5949 if (q && (rd & 1)) {
5953 op = (insn >> 8) & 0xf;
5954 /* One register and immediate. */
5955 imm = (u << 7) | ((insn >> 12) & 0x70) | (insn & 0xf);
5956 invert = (insn & (1 << 5)) != 0;
5957 /* Note that op = 2,3,4,5,6,7,10,11,12,13 imm=0 is UNPREDICTABLE.
5958 * We choose to not special-case this and will behave as if a
5959 * valid constant encoding of 0 had been given.
5978 imm = (imm << 8) | (imm << 24);
5981 imm = (imm << 8) | 0xff;
5984 imm = (imm << 16) | 0xffff;
5987 imm |= (imm << 8) | (imm << 16) | (imm << 24);
5995 imm = ((imm & 0x80) << 24) | ((imm & 0x3f) << 19)
5996 | ((imm & 0x40) ? (0x1f << 25) : (1 << 30));
6002 for (pass = 0; pass < (q ? 4 : 2); pass++) {
6003 if (op & 1 && op < 12) {
6004 tmp = neon_load_reg(rd, pass);
6006 /* The immediate value has already been inverted, so
6008 tcg_gen_andi_i32(tmp, tmp, imm);
6010 tcg_gen_ori_i32(tmp, tmp, imm);
6014 tmp = tcg_temp_new_i32();
6015 if (op == 14 && invert) {
6019 for (n = 0; n < 4; n++) {
6020 if (imm & (1 << (n + (pass & 1) * 4)))
6021 val |= 0xff << (n * 8);
6023 tcg_gen_movi_i32(tmp, val);
6025 tcg_gen_movi_i32(tmp, imm);
6028 neon_store_reg(rd, pass, tmp);
6031 } else { /* (insn & 0x00800010 == 0x00800000) */
6033 op = (insn >> 8) & 0xf;
6034 if ((insn & (1 << 6)) == 0) {
6035 /* Three registers of different lengths. */
6039 /* undefreq: bit 0 : UNDEF if size == 0
6040 * bit 1 : UNDEF if size == 1
6041 * bit 2 : UNDEF if size == 2
6042 * bit 3 : UNDEF if U == 1
6043 * Note that [2:0] set implies 'always UNDEF'
6046 /* prewiden, src1_wide, src2_wide, undefreq */
6047 static const int neon_3reg_wide[16][4] = {
6048 {1, 0, 0, 0}, /* VADDL */
6049 {1, 1, 0, 0}, /* VADDW */
6050 {1, 0, 0, 0}, /* VSUBL */
6051 {1, 1, 0, 0}, /* VSUBW */
6052 {0, 1, 1, 0}, /* VADDHN */
6053 {0, 0, 0, 0}, /* VABAL */
6054 {0, 1, 1, 0}, /* VSUBHN */
6055 {0, 0, 0, 0}, /* VABDL */
6056 {0, 0, 0, 0}, /* VMLAL */
6057 {0, 0, 0, 9}, /* VQDMLAL */
6058 {0, 0, 0, 0}, /* VMLSL */
6059 {0, 0, 0, 9}, /* VQDMLSL */
6060 {0, 0, 0, 0}, /* Integer VMULL */
6061 {0, 0, 0, 1}, /* VQDMULL */
6062 {0, 0, 0, 0xa}, /* Polynomial VMULL */
6063 {0, 0, 0, 7}, /* Reserved: always UNDEF */
6066 prewiden = neon_3reg_wide[op][0];
6067 src1_wide = neon_3reg_wide[op][1];
6068 src2_wide = neon_3reg_wide[op][2];
6069 undefreq = neon_3reg_wide[op][3];
6071 if ((undefreq & (1 << size)) ||
6072 ((undefreq & 8) && u)) {
6075 if ((src1_wide && (rn & 1)) ||
6076 (src2_wide && (rm & 1)) ||
6077 (!src2_wide && (rd & 1))) {
6081 /* Handle VMULL.P64 (Polynomial 64x64 to 128 bit multiply)
6082 * outside the loop below as it only performs a single pass.
6084 if (op == 14 && size == 2) {
6085 TCGv_i64 tcg_rn, tcg_rm, tcg_rd;
6087 if (!arm_dc_feature(s, ARM_FEATURE_V8_PMULL)) {
6090 tcg_rn = tcg_temp_new_i64();
6091 tcg_rm = tcg_temp_new_i64();
6092 tcg_rd = tcg_temp_new_i64();
6093 neon_load_reg64(tcg_rn, rn);
6094 neon_load_reg64(tcg_rm, rm);
6095 gen_helper_neon_pmull_64_lo(tcg_rd, tcg_rn, tcg_rm);
6096 neon_store_reg64(tcg_rd, rd);
6097 gen_helper_neon_pmull_64_hi(tcg_rd, tcg_rn, tcg_rm);
6098 neon_store_reg64(tcg_rd, rd + 1);
6099 tcg_temp_free_i64(tcg_rn);
6100 tcg_temp_free_i64(tcg_rm);
6101 tcg_temp_free_i64(tcg_rd);
6105 /* Avoid overlapping operands. Wide source operands are
6106 always aligned so will never overlap with wide
6107 destinations in problematic ways. */
6108 if (rd == rm && !src2_wide) {
6109 tmp = neon_load_reg(rm, 1);
6110 neon_store_scratch(2, tmp);
6111 } else if (rd == rn && !src1_wide) {
6112 tmp = neon_load_reg(rn, 1);
6113 neon_store_scratch(2, tmp);
6115 TCGV_UNUSED_I32(tmp3);
6116 for (pass = 0; pass < 2; pass++) {
6118 neon_load_reg64(cpu_V0, rn + pass);
6119 TCGV_UNUSED_I32(tmp);
6121 if (pass == 1 && rd == rn) {
6122 tmp = neon_load_scratch(2);
6124 tmp = neon_load_reg(rn, pass);
6127 gen_neon_widen(cpu_V0, tmp, size, u);
6131 neon_load_reg64(cpu_V1, rm + pass);
6132 TCGV_UNUSED_I32(tmp2);
6134 if (pass == 1 && rd == rm) {
6135 tmp2 = neon_load_scratch(2);
6137 tmp2 = neon_load_reg(rm, pass);
6140 gen_neon_widen(cpu_V1, tmp2, size, u);
6144 case 0: case 1: case 4: /* VADDL, VADDW, VADDHN, VRADDHN */
6145 gen_neon_addl(size);
6147 case 2: case 3: case 6: /* VSUBL, VSUBW, VSUBHN, VRSUBHN */
6148 gen_neon_subl(size);
6150 case 5: case 7: /* VABAL, VABDL */
6151 switch ((size << 1) | u) {
6153 gen_helper_neon_abdl_s16(cpu_V0, tmp, tmp2);
6156 gen_helper_neon_abdl_u16(cpu_V0, tmp, tmp2);
6159 gen_helper_neon_abdl_s32(cpu_V0, tmp, tmp2);
6162 gen_helper_neon_abdl_u32(cpu_V0, tmp, tmp2);
6165 gen_helper_neon_abdl_s64(cpu_V0, tmp, tmp2);
6168 gen_helper_neon_abdl_u64(cpu_V0, tmp, tmp2);
6172 tcg_temp_free_i32(tmp2);
6173 tcg_temp_free_i32(tmp);
6175 case 8: case 9: case 10: case 11: case 12: case 13:
6176 /* VMLAL, VQDMLAL, VMLSL, VQDMLSL, VMULL, VQDMULL */
6177 gen_neon_mull(cpu_V0, tmp, tmp2, size, u);
6179 case 14: /* Polynomial VMULL */
6180 gen_helper_neon_mull_p8(cpu_V0, tmp, tmp2);
6181 tcg_temp_free_i32(tmp2);
6182 tcg_temp_free_i32(tmp);
6184 default: /* 15 is RESERVED: caught earlier */
6189 gen_neon_addl_saturate(cpu_V0, cpu_V0, size);
6190 neon_store_reg64(cpu_V0, rd + pass);
6191 } else if (op == 5 || (op >= 8 && op <= 11)) {
6193 neon_load_reg64(cpu_V1, rd + pass);
6195 case 10: /* VMLSL */
6196 gen_neon_negl(cpu_V0, size);
6198 case 5: case 8: /* VABAL, VMLAL */
6199 gen_neon_addl(size);
6201 case 9: case 11: /* VQDMLAL, VQDMLSL */
6202 gen_neon_addl_saturate(cpu_V0, cpu_V0, size);
6204 gen_neon_negl(cpu_V0, size);
6206 gen_neon_addl_saturate(cpu_V0, cpu_V1, size);
6211 neon_store_reg64(cpu_V0, rd + pass);
6212 } else if (op == 4 || op == 6) {
6213 /* Narrowing operation. */
6214 tmp = tcg_temp_new_i32();
6218 gen_helper_neon_narrow_high_u8(tmp, cpu_V0);
6221 gen_helper_neon_narrow_high_u16(tmp, cpu_V0);
6224 tcg_gen_shri_i64(cpu_V0, cpu_V0, 32);
6225 tcg_gen_trunc_i64_i32(tmp, cpu_V0);
6232 gen_helper_neon_narrow_round_high_u8(tmp, cpu_V0);
6235 gen_helper_neon_narrow_round_high_u16(tmp, cpu_V0);
6238 tcg_gen_addi_i64(cpu_V0, cpu_V0, 1u << 31);
6239 tcg_gen_shri_i64(cpu_V0, cpu_V0, 32);
6240 tcg_gen_trunc_i64_i32(tmp, cpu_V0);
6248 neon_store_reg(rd, 0, tmp3);
6249 neon_store_reg(rd, 1, tmp);
6252 /* Write back the result. */
6253 neon_store_reg64(cpu_V0, rd + pass);
6257 /* Two registers and a scalar. NB that for ops of this form
6258 * the ARM ARM labels bit 24 as Q, but it is in our variable
6265 case 1: /* Float VMLA scalar */
6266 case 5: /* Floating point VMLS scalar */
6267 case 9: /* Floating point VMUL scalar */
6272 case 0: /* Integer VMLA scalar */
6273 case 4: /* Integer VMLS scalar */
6274 case 8: /* Integer VMUL scalar */
6275 case 12: /* VQDMULH scalar */
6276 case 13: /* VQRDMULH scalar */
6277 if (u && ((rd | rn) & 1)) {
6280 tmp = neon_get_scalar(size, rm);
6281 neon_store_scratch(0, tmp);
6282 for (pass = 0; pass < (u ? 4 : 2); pass++) {
6283 tmp = neon_load_scratch(0);
6284 tmp2 = neon_load_reg(rn, pass);
6287 gen_helper_neon_qdmulh_s16(tmp, cpu_env, tmp, tmp2);
6289 gen_helper_neon_qdmulh_s32(tmp, cpu_env, tmp, tmp2);
6291 } else if (op == 13) {
6293 gen_helper_neon_qrdmulh_s16(tmp, cpu_env, tmp, tmp2);
6295 gen_helper_neon_qrdmulh_s32(tmp, cpu_env, tmp, tmp2);
6297 } else if (op & 1) {
6298 TCGv_ptr fpstatus = get_fpstatus_ptr(1);
6299 gen_helper_vfp_muls(tmp, tmp, tmp2, fpstatus);
6300 tcg_temp_free_ptr(fpstatus);
6303 case 0: gen_helper_neon_mul_u8(tmp, tmp, tmp2); break;
6304 case 1: gen_helper_neon_mul_u16(tmp, tmp, tmp2); break;
6305 case 2: tcg_gen_mul_i32(tmp, tmp, tmp2); break;
6309 tcg_temp_free_i32(tmp2);
6312 tmp2 = neon_load_reg(rd, pass);
6315 gen_neon_add(size, tmp, tmp2);
6319 TCGv_ptr fpstatus = get_fpstatus_ptr(1);
6320 gen_helper_vfp_adds(tmp, tmp, tmp2, fpstatus);
6321 tcg_temp_free_ptr(fpstatus);
6325 gen_neon_rsb(size, tmp, tmp2);
6329 TCGv_ptr fpstatus = get_fpstatus_ptr(1);
6330 gen_helper_vfp_subs(tmp, tmp2, tmp, fpstatus);
6331 tcg_temp_free_ptr(fpstatus);
6337 tcg_temp_free_i32(tmp2);
6339 neon_store_reg(rd, pass, tmp);
6342 case 3: /* VQDMLAL scalar */
6343 case 7: /* VQDMLSL scalar */
6344 case 11: /* VQDMULL scalar */
6349 case 2: /* VMLAL sclar */
6350 case 6: /* VMLSL scalar */
6351 case 10: /* VMULL scalar */
6355 tmp2 = neon_get_scalar(size, rm);
6356 /* We need a copy of tmp2 because gen_neon_mull
6357 * deletes it during pass 0. */
6358 tmp4 = tcg_temp_new_i32();
6359 tcg_gen_mov_i32(tmp4, tmp2);
6360 tmp3 = neon_load_reg(rn, 1);
6362 for (pass = 0; pass < 2; pass++) {
6364 tmp = neon_load_reg(rn, 0);
6369 gen_neon_mull(cpu_V0, tmp, tmp2, size, u);
6371 neon_load_reg64(cpu_V1, rd + pass);
6375 gen_neon_negl(cpu_V0, size);
6378 gen_neon_addl(size);
6381 gen_neon_addl_saturate(cpu_V0, cpu_V0, size);
6383 gen_neon_negl(cpu_V0, size);
6385 gen_neon_addl_saturate(cpu_V0, cpu_V1, size);
6391 gen_neon_addl_saturate(cpu_V0, cpu_V0, size);
6396 neon_store_reg64(cpu_V0, rd + pass);
6401 default: /* 14 and 15 are RESERVED */
6405 } else { /* size == 3 */
6408 imm = (insn >> 8) & 0xf;
6413 if (q && ((rd | rn | rm) & 1)) {
6418 neon_load_reg64(cpu_V0, rn);
6420 neon_load_reg64(cpu_V1, rn + 1);
6422 } else if (imm == 8) {
6423 neon_load_reg64(cpu_V0, rn + 1);
6425 neon_load_reg64(cpu_V1, rm);
6428 tmp64 = tcg_temp_new_i64();
6430 neon_load_reg64(cpu_V0, rn);
6431 neon_load_reg64(tmp64, rn + 1);
6433 neon_load_reg64(cpu_V0, rn + 1);
6434 neon_load_reg64(tmp64, rm);
6436 tcg_gen_shri_i64(cpu_V0, cpu_V0, (imm & 7) * 8);
6437 tcg_gen_shli_i64(cpu_V1, tmp64, 64 - ((imm & 7) * 8));
6438 tcg_gen_or_i64(cpu_V0, cpu_V0, cpu_V1);
6440 neon_load_reg64(cpu_V1, rm);
6442 neon_load_reg64(cpu_V1, rm + 1);
6445 tcg_gen_shli_i64(cpu_V1, cpu_V1, 64 - (imm * 8));
6446 tcg_gen_shri_i64(tmp64, tmp64, imm * 8);
6447 tcg_gen_or_i64(cpu_V1, cpu_V1, tmp64);
6448 tcg_temp_free_i64(tmp64);
6451 neon_load_reg64(cpu_V0, rn);
6452 tcg_gen_shri_i64(cpu_V0, cpu_V0, imm * 8);
6453 neon_load_reg64(cpu_V1, rm);
6454 tcg_gen_shli_i64(cpu_V1, cpu_V1, 64 - (imm * 8));
6455 tcg_gen_or_i64(cpu_V0, cpu_V0, cpu_V1);
6457 neon_store_reg64(cpu_V0, rd);
6459 neon_store_reg64(cpu_V1, rd + 1);
6461 } else if ((insn & (1 << 11)) == 0) {
6462 /* Two register misc. */
6463 op = ((insn >> 12) & 0x30) | ((insn >> 7) & 0xf);
6464 size = (insn >> 18) & 3;
6465 /* UNDEF for unknown op values and bad op-size combinations */
6466 if ((neon_2rm_sizes[op] & (1 << size)) == 0) {
6469 if ((op != NEON_2RM_VMOVN && op != NEON_2RM_VQMOVN) &&
6470 q && ((rm | rd) & 1)) {
6474 case NEON_2RM_VREV64:
6475 for (pass = 0; pass < (q ? 2 : 1); pass++) {
6476 tmp = neon_load_reg(rm, pass * 2);
6477 tmp2 = neon_load_reg(rm, pass * 2 + 1);
6479 case 0: tcg_gen_bswap32_i32(tmp, tmp); break;
6480 case 1: gen_swap_half(tmp); break;
6481 case 2: /* no-op */ break;
6484 neon_store_reg(rd, pass * 2 + 1, tmp);
6486 neon_store_reg(rd, pass * 2, tmp2);
6489 case 0: tcg_gen_bswap32_i32(tmp2, tmp2); break;
6490 case 1: gen_swap_half(tmp2); break;
6493 neon_store_reg(rd, pass * 2, tmp2);
6497 case NEON_2RM_VPADDL: case NEON_2RM_VPADDL_U:
6498 case NEON_2RM_VPADAL: case NEON_2RM_VPADAL_U:
6499 for (pass = 0; pass < q + 1; pass++) {
6500 tmp = neon_load_reg(rm, pass * 2);
6501 gen_neon_widen(cpu_V0, tmp, size, op & 1);
6502 tmp = neon_load_reg(rm, pass * 2 + 1);
6503 gen_neon_widen(cpu_V1, tmp, size, op & 1);
6505 case 0: gen_helper_neon_paddl_u16(CPU_V001); break;
6506 case 1: gen_helper_neon_paddl_u32(CPU_V001); break;
6507 case 2: tcg_gen_add_i64(CPU_V001); break;
6510 if (op >= NEON_2RM_VPADAL) {
6512 neon_load_reg64(cpu_V1, rd + pass);
6513 gen_neon_addl(size);
6515 neon_store_reg64(cpu_V0, rd + pass);
6521 for (n = 0; n < (q ? 4 : 2); n += 2) {
6522 tmp = neon_load_reg(rm, n);
6523 tmp2 = neon_load_reg(rd, n + 1);
6524 neon_store_reg(rm, n, tmp2);
6525 neon_store_reg(rd, n + 1, tmp);
6532 if (gen_neon_unzip(rd, rm, size, q)) {
6537 if (gen_neon_zip(rd, rm, size, q)) {
6541 case NEON_2RM_VMOVN: case NEON_2RM_VQMOVN:
6542 /* also VQMOVUN; op field and mnemonics don't line up */
6546 TCGV_UNUSED_I32(tmp2);
6547 for (pass = 0; pass < 2; pass++) {
6548 neon_load_reg64(cpu_V0, rm + pass);
6549 tmp = tcg_temp_new_i32();
6550 gen_neon_narrow_op(op == NEON_2RM_VMOVN, q, size,
6555 neon_store_reg(rd, 0, tmp2);
6556 neon_store_reg(rd, 1, tmp);
6560 case NEON_2RM_VSHLL:
6561 if (q || (rd & 1)) {
6564 tmp = neon_load_reg(rm, 0);
6565 tmp2 = neon_load_reg(rm, 1);
6566 for (pass = 0; pass < 2; pass++) {
6569 gen_neon_widen(cpu_V0, tmp, size, 1);
6570 tcg_gen_shli_i64(cpu_V0, cpu_V0, 8 << size);
6571 neon_store_reg64(cpu_V0, rd + pass);
6574 case NEON_2RM_VCVT_F16_F32:
6575 if (!arm_dc_feature(s, ARM_FEATURE_VFP_FP16) ||
6579 tmp = tcg_temp_new_i32();
6580 tmp2 = tcg_temp_new_i32();
6581 tcg_gen_ld_f32(cpu_F0s, cpu_env, neon_reg_offset(rm, 0));
6582 gen_helper_neon_fcvt_f32_to_f16(tmp, cpu_F0s, cpu_env);
6583 tcg_gen_ld_f32(cpu_F0s, cpu_env, neon_reg_offset(rm, 1));
6584 gen_helper_neon_fcvt_f32_to_f16(tmp2, cpu_F0s, cpu_env);
6585 tcg_gen_shli_i32(tmp2, tmp2, 16);
6586 tcg_gen_or_i32(tmp2, tmp2, tmp);
6587 tcg_gen_ld_f32(cpu_F0s, cpu_env, neon_reg_offset(rm, 2));
6588 gen_helper_neon_fcvt_f32_to_f16(tmp, cpu_F0s, cpu_env);
6589 tcg_gen_ld_f32(cpu_F0s, cpu_env, neon_reg_offset(rm, 3));
6590 neon_store_reg(rd, 0, tmp2);
6591 tmp2 = tcg_temp_new_i32();
6592 gen_helper_neon_fcvt_f32_to_f16(tmp2, cpu_F0s, cpu_env);
6593 tcg_gen_shli_i32(tmp2, tmp2, 16);
6594 tcg_gen_or_i32(tmp2, tmp2, tmp);
6595 neon_store_reg(rd, 1, tmp2);
6596 tcg_temp_free_i32(tmp);
6598 case NEON_2RM_VCVT_F32_F16:
6599 if (!arm_dc_feature(s, ARM_FEATURE_VFP_FP16) ||
6603 tmp3 = tcg_temp_new_i32();
6604 tmp = neon_load_reg(rm, 0);
6605 tmp2 = neon_load_reg(rm, 1);
6606 tcg_gen_ext16u_i32(tmp3, tmp);
6607 gen_helper_neon_fcvt_f16_to_f32(cpu_F0s, tmp3, cpu_env);
6608 tcg_gen_st_f32(cpu_F0s, cpu_env, neon_reg_offset(rd, 0));
6609 tcg_gen_shri_i32(tmp3, tmp, 16);
6610 gen_helper_neon_fcvt_f16_to_f32(cpu_F0s, tmp3, cpu_env);
6611 tcg_gen_st_f32(cpu_F0s, cpu_env, neon_reg_offset(rd, 1));
6612 tcg_temp_free_i32(tmp);
6613 tcg_gen_ext16u_i32(tmp3, tmp2);
6614 gen_helper_neon_fcvt_f16_to_f32(cpu_F0s, tmp3, cpu_env);
6615 tcg_gen_st_f32(cpu_F0s, cpu_env, neon_reg_offset(rd, 2));
6616 tcg_gen_shri_i32(tmp3, tmp2, 16);
6617 gen_helper_neon_fcvt_f16_to_f32(cpu_F0s, tmp3, cpu_env);
6618 tcg_gen_st_f32(cpu_F0s, cpu_env, neon_reg_offset(rd, 3));
6619 tcg_temp_free_i32(tmp2);
6620 tcg_temp_free_i32(tmp3);
6622 case NEON_2RM_AESE: case NEON_2RM_AESMC:
6623 if (!arm_dc_feature(s, ARM_FEATURE_V8_AES)
6624 || ((rm | rd) & 1)) {
6627 tmp = tcg_const_i32(rd);
6628 tmp2 = tcg_const_i32(rm);
6630 /* Bit 6 is the lowest opcode bit; it distinguishes between
6631 * encryption (AESE/AESMC) and decryption (AESD/AESIMC)
6633 tmp3 = tcg_const_i32(extract32(insn, 6, 1));
6635 if (op == NEON_2RM_AESE) {
6636 gen_helper_crypto_aese(cpu_env, tmp, tmp2, tmp3);
6638 gen_helper_crypto_aesmc(cpu_env, tmp, tmp2, tmp3);
6640 tcg_temp_free_i32(tmp);
6641 tcg_temp_free_i32(tmp2);
6642 tcg_temp_free_i32(tmp3);
6644 case NEON_2RM_SHA1H:
6645 if (!arm_dc_feature(s, ARM_FEATURE_V8_SHA1)
6646 || ((rm | rd) & 1)) {
6649 tmp = tcg_const_i32(rd);
6650 tmp2 = tcg_const_i32(rm);
6652 gen_helper_crypto_sha1h(cpu_env, tmp, tmp2);
6654 tcg_temp_free_i32(tmp);
6655 tcg_temp_free_i32(tmp2);
6657 case NEON_2RM_SHA1SU1:
6658 if ((rm | rd) & 1) {
6661 /* bit 6 (q): set -> SHA256SU0, cleared -> SHA1SU1 */
6663 if (!arm_dc_feature(s, ARM_FEATURE_V8_SHA256)) {
6666 } else if (!arm_dc_feature(s, ARM_FEATURE_V8_SHA1)) {
6669 tmp = tcg_const_i32(rd);
6670 tmp2 = tcg_const_i32(rm);
6672 gen_helper_crypto_sha256su0(cpu_env, tmp, tmp2);
6674 gen_helper_crypto_sha1su1(cpu_env, tmp, tmp2);
6676 tcg_temp_free_i32(tmp);
6677 tcg_temp_free_i32(tmp2);
6681 for (pass = 0; pass < (q ? 4 : 2); pass++) {
6682 if (neon_2rm_is_float_op(op)) {
6683 tcg_gen_ld_f32(cpu_F0s, cpu_env,
6684 neon_reg_offset(rm, pass));
6685 TCGV_UNUSED_I32(tmp);
6687 tmp = neon_load_reg(rm, pass);
6690 case NEON_2RM_VREV32:
6692 case 0: tcg_gen_bswap32_i32(tmp, tmp); break;
6693 case 1: gen_swap_half(tmp); break;
6697 case NEON_2RM_VREV16:
6702 case 0: gen_helper_neon_cls_s8(tmp, tmp); break;
6703 case 1: gen_helper_neon_cls_s16(tmp, tmp); break;
6704 case 2: gen_helper_neon_cls_s32(tmp, tmp); break;
6710 case 0: gen_helper_neon_clz_u8(tmp, tmp); break;
6711 case 1: gen_helper_neon_clz_u16(tmp, tmp); break;
6712 case 2: gen_helper_clz(tmp, tmp); break;
6717 gen_helper_neon_cnt_u8(tmp, tmp);
6720 tcg_gen_not_i32(tmp, tmp);
6722 case NEON_2RM_VQABS:
6725 gen_helper_neon_qabs_s8(tmp, cpu_env, tmp);
6728 gen_helper_neon_qabs_s16(tmp, cpu_env, tmp);
6731 gen_helper_neon_qabs_s32(tmp, cpu_env, tmp);
6736 case NEON_2RM_VQNEG:
6739 gen_helper_neon_qneg_s8(tmp, cpu_env, tmp);
6742 gen_helper_neon_qneg_s16(tmp, cpu_env, tmp);
6745 gen_helper_neon_qneg_s32(tmp, cpu_env, tmp);
6750 case NEON_2RM_VCGT0: case NEON_2RM_VCLE0:
6751 tmp2 = tcg_const_i32(0);
6753 case 0: gen_helper_neon_cgt_s8(tmp, tmp, tmp2); break;
6754 case 1: gen_helper_neon_cgt_s16(tmp, tmp, tmp2); break;
6755 case 2: gen_helper_neon_cgt_s32(tmp, tmp, tmp2); break;
6758 tcg_temp_free_i32(tmp2);
6759 if (op == NEON_2RM_VCLE0) {
6760 tcg_gen_not_i32(tmp, tmp);
6763 case NEON_2RM_VCGE0: case NEON_2RM_VCLT0:
6764 tmp2 = tcg_const_i32(0);
6766 case 0: gen_helper_neon_cge_s8(tmp, tmp, tmp2); break;
6767 case 1: gen_helper_neon_cge_s16(tmp, tmp, tmp2); break;
6768 case 2: gen_helper_neon_cge_s32(tmp, tmp, tmp2); break;
6771 tcg_temp_free_i32(tmp2);
6772 if (op == NEON_2RM_VCLT0) {
6773 tcg_gen_not_i32(tmp, tmp);
6776 case NEON_2RM_VCEQ0:
6777 tmp2 = tcg_const_i32(0);
6779 case 0: gen_helper_neon_ceq_u8(tmp, tmp, tmp2); break;
6780 case 1: gen_helper_neon_ceq_u16(tmp, tmp, tmp2); break;
6781 case 2: gen_helper_neon_ceq_u32(tmp, tmp, tmp2); break;
6784 tcg_temp_free_i32(tmp2);
6788 case 0: gen_helper_neon_abs_s8(tmp, tmp); break;
6789 case 1: gen_helper_neon_abs_s16(tmp, tmp); break;
6790 case 2: tcg_gen_abs_i32(tmp, tmp); break;
6795 tmp2 = tcg_const_i32(0);
6796 gen_neon_rsb(size, tmp, tmp2);
6797 tcg_temp_free_i32(tmp2);
6799 case NEON_2RM_VCGT0_F:
6801 TCGv_ptr fpstatus = get_fpstatus_ptr(1);
6802 tmp2 = tcg_const_i32(0);
6803 gen_helper_neon_cgt_f32(tmp, tmp, tmp2, fpstatus);
6804 tcg_temp_free_i32(tmp2);
6805 tcg_temp_free_ptr(fpstatus);
6808 case NEON_2RM_VCGE0_F:
6810 TCGv_ptr fpstatus = get_fpstatus_ptr(1);
6811 tmp2 = tcg_const_i32(0);
6812 gen_helper_neon_cge_f32(tmp, tmp, tmp2, fpstatus);
6813 tcg_temp_free_i32(tmp2);
6814 tcg_temp_free_ptr(fpstatus);
6817 case NEON_2RM_VCEQ0_F:
6819 TCGv_ptr fpstatus = get_fpstatus_ptr(1);
6820 tmp2 = tcg_const_i32(0);
6821 gen_helper_neon_ceq_f32(tmp, tmp, tmp2, fpstatus);
6822 tcg_temp_free_i32(tmp2);
6823 tcg_temp_free_ptr(fpstatus);
6826 case NEON_2RM_VCLE0_F:
6828 TCGv_ptr fpstatus = get_fpstatus_ptr(1);
6829 tmp2 = tcg_const_i32(0);
6830 gen_helper_neon_cge_f32(tmp, tmp2, tmp, fpstatus);
6831 tcg_temp_free_i32(tmp2);
6832 tcg_temp_free_ptr(fpstatus);
6835 case NEON_2RM_VCLT0_F:
6837 TCGv_ptr fpstatus = get_fpstatus_ptr(1);
6838 tmp2 = tcg_const_i32(0);
6839 gen_helper_neon_cgt_f32(tmp, tmp2, tmp, fpstatus);
6840 tcg_temp_free_i32(tmp2);
6841 tcg_temp_free_ptr(fpstatus);
6844 case NEON_2RM_VABS_F:
6847 case NEON_2RM_VNEG_F:
6851 tmp2 = neon_load_reg(rd, pass);
6852 neon_store_reg(rm, pass, tmp2);
6855 tmp2 = neon_load_reg(rd, pass);
6857 case 0: gen_neon_trn_u8(tmp, tmp2); break;
6858 case 1: gen_neon_trn_u16(tmp, tmp2); break;
6861 neon_store_reg(rm, pass, tmp2);
6863 case NEON_2RM_VRINTN:
6864 case NEON_2RM_VRINTA:
6865 case NEON_2RM_VRINTM:
6866 case NEON_2RM_VRINTP:
6867 case NEON_2RM_VRINTZ:
6870 TCGv_ptr fpstatus = get_fpstatus_ptr(1);
6873 if (op == NEON_2RM_VRINTZ) {
6874 rmode = FPROUNDING_ZERO;
6876 rmode = fp_decode_rm[((op & 0x6) >> 1) ^ 1];
6879 tcg_rmode = tcg_const_i32(arm_rmode_to_sf(rmode));
6880 gen_helper_set_neon_rmode(tcg_rmode, tcg_rmode,
6882 gen_helper_rints(cpu_F0s, cpu_F0s, fpstatus);
6883 gen_helper_set_neon_rmode(tcg_rmode, tcg_rmode,
6885 tcg_temp_free_ptr(fpstatus);
6886 tcg_temp_free_i32(tcg_rmode);
6889 case NEON_2RM_VRINTX:
6891 TCGv_ptr fpstatus = get_fpstatus_ptr(1);
6892 gen_helper_rints_exact(cpu_F0s, cpu_F0s, fpstatus);
6893 tcg_temp_free_ptr(fpstatus);
6896 case NEON_2RM_VCVTAU:
6897 case NEON_2RM_VCVTAS:
6898 case NEON_2RM_VCVTNU:
6899 case NEON_2RM_VCVTNS:
6900 case NEON_2RM_VCVTPU:
6901 case NEON_2RM_VCVTPS:
6902 case NEON_2RM_VCVTMU:
6903 case NEON_2RM_VCVTMS:
6905 bool is_signed = !extract32(insn, 7, 1);
6906 TCGv_ptr fpst = get_fpstatus_ptr(1);
6907 TCGv_i32 tcg_rmode, tcg_shift;
6908 int rmode = fp_decode_rm[extract32(insn, 8, 2)];
6910 tcg_shift = tcg_const_i32(0);
6911 tcg_rmode = tcg_const_i32(arm_rmode_to_sf(rmode));
6912 gen_helper_set_neon_rmode(tcg_rmode, tcg_rmode,
6916 gen_helper_vfp_tosls(cpu_F0s, cpu_F0s,
6919 gen_helper_vfp_touls(cpu_F0s, cpu_F0s,
6923 gen_helper_set_neon_rmode(tcg_rmode, tcg_rmode,
6925 tcg_temp_free_i32(tcg_rmode);
6926 tcg_temp_free_i32(tcg_shift);
6927 tcg_temp_free_ptr(fpst);
6930 case NEON_2RM_VRECPE:
6932 TCGv_ptr fpstatus = get_fpstatus_ptr(1);
6933 gen_helper_recpe_u32(tmp, tmp, fpstatus);
6934 tcg_temp_free_ptr(fpstatus);
6937 case NEON_2RM_VRSQRTE:
6939 TCGv_ptr fpstatus = get_fpstatus_ptr(1);
6940 gen_helper_rsqrte_u32(tmp, tmp, fpstatus);
6941 tcg_temp_free_ptr(fpstatus);
6944 case NEON_2RM_VRECPE_F:
6946 TCGv_ptr fpstatus = get_fpstatus_ptr(1);
6947 gen_helper_recpe_f32(cpu_F0s, cpu_F0s, fpstatus);
6948 tcg_temp_free_ptr(fpstatus);
6951 case NEON_2RM_VRSQRTE_F:
6953 TCGv_ptr fpstatus = get_fpstatus_ptr(1);
6954 gen_helper_rsqrte_f32(cpu_F0s, cpu_F0s, fpstatus);
6955 tcg_temp_free_ptr(fpstatus);
6958 case NEON_2RM_VCVT_FS: /* VCVT.F32.S32 */
6961 case NEON_2RM_VCVT_FU: /* VCVT.F32.U32 */
6964 case NEON_2RM_VCVT_SF: /* VCVT.S32.F32 */
6965 gen_vfp_tosiz(0, 1);
6967 case NEON_2RM_VCVT_UF: /* VCVT.U32.F32 */
6968 gen_vfp_touiz(0, 1);
6971 /* Reserved op values were caught by the
6972 * neon_2rm_sizes[] check earlier.
6976 if (neon_2rm_is_float_op(op)) {
6977 tcg_gen_st_f32(cpu_F0s, cpu_env,
6978 neon_reg_offset(rd, pass));
6980 neon_store_reg(rd, pass, tmp);
6985 } else if ((insn & (1 << 10)) == 0) {
6987 int n = ((insn >> 8) & 3) + 1;
6988 if ((rn + n) > 32) {
6989 /* This is UNPREDICTABLE; we choose to UNDEF to avoid the
6990 * helper function running off the end of the register file.
6995 if (insn & (1 << 6)) {
6996 tmp = neon_load_reg(rd, 0);
6998 tmp = tcg_temp_new_i32();
6999 tcg_gen_movi_i32(tmp, 0);
7001 tmp2 = neon_load_reg(rm, 0);
7002 tmp4 = tcg_const_i32(rn);
7003 tmp5 = tcg_const_i32(n);
7004 gen_helper_neon_tbl(tmp2, cpu_env, tmp2, tmp, tmp4, tmp5);
7005 tcg_temp_free_i32(tmp);
7006 if (insn & (1 << 6)) {
7007 tmp = neon_load_reg(rd, 1);
7009 tmp = tcg_temp_new_i32();
7010 tcg_gen_movi_i32(tmp, 0);
7012 tmp3 = neon_load_reg(rm, 1);
7013 gen_helper_neon_tbl(tmp3, cpu_env, tmp3, tmp, tmp4, tmp5);
7014 tcg_temp_free_i32(tmp5);
7015 tcg_temp_free_i32(tmp4);
7016 neon_store_reg(rd, 0, tmp2);
7017 neon_store_reg(rd, 1, tmp3);
7018 tcg_temp_free_i32(tmp);
7019 } else if ((insn & 0x380) == 0) {
7021 if ((insn & (7 << 16)) == 0 || (q && (rd & 1))) {
7024 if (insn & (1 << 19)) {
7025 tmp = neon_load_reg(rm, 1);
7027 tmp = neon_load_reg(rm, 0);
7029 if (insn & (1 << 16)) {
7030 gen_neon_dup_u8(tmp, ((insn >> 17) & 3) * 8);
7031 } else if (insn & (1 << 17)) {
7032 if ((insn >> 18) & 1)
7033 gen_neon_dup_high16(tmp);
7035 gen_neon_dup_low16(tmp);
7037 for (pass = 0; pass < (q ? 4 : 2); pass++) {
7038 tmp2 = tcg_temp_new_i32();
7039 tcg_gen_mov_i32(tmp2, tmp);
7040 neon_store_reg(rd, pass, tmp2);
7042 tcg_temp_free_i32(tmp);
7051 static int disas_coproc_insn(DisasContext *s, uint32_t insn)
7053 int cpnum, is64, crn, crm, opc1, opc2, isread, rt, rt2;
7054 const ARMCPRegInfo *ri;
7056 cpnum = (insn >> 8) & 0xf;
7058 /* First check for coprocessor space used for XScale/iwMMXt insns */
7059 if (arm_dc_feature(s, ARM_FEATURE_XSCALE) && (cpnum < 2)) {
7060 if (extract32(s->c15_cpar, cpnum, 1) == 0) {
7063 if (arm_dc_feature(s, ARM_FEATURE_IWMMXT)) {
7064 return disas_iwmmxt_insn(s, insn);
7065 } else if (arm_dc_feature(s, ARM_FEATURE_XSCALE)) {
7066 return disas_dsp_insn(s, insn);
7071 /* Otherwise treat as a generic register access */
7072 is64 = (insn & (1 << 25)) == 0;
7073 if (!is64 && ((insn & (1 << 4)) == 0)) {
7081 opc1 = (insn >> 4) & 0xf;
7083 rt2 = (insn >> 16) & 0xf;
7085 crn = (insn >> 16) & 0xf;
7086 opc1 = (insn >> 21) & 7;
7087 opc2 = (insn >> 5) & 7;
7090 isread = (insn >> 20) & 1;
7091 rt = (insn >> 12) & 0xf;
7093 ri = get_arm_cp_reginfo(s->cp_regs,
7094 ENCODE_CP_REG(cpnum, is64, crn, crm, opc1, opc2));
7096 /* Check access permissions */
7097 if (!cp_access_ok(s->current_el, ri, isread)) {
7102 (arm_dc_feature(s, ARM_FEATURE_XSCALE) && cpnum < 14)) {
7103 /* Emit code to perform further access permissions checks at
7104 * runtime; this may result in an exception.
7105 * Note that on XScale all cp0..c13 registers do an access check
7106 * call in order to handle c15_cpar.
7112 /* Note that since we are an implementation which takes an
7113 * exception on a trapped conditional instruction only if the
7114 * instruction passes its condition code check, we can take
7115 * advantage of the clause in the ARM ARM that allows us to set
7116 * the COND field in the instruction to 0xE in all cases.
7117 * We could fish the actual condition out of the insn (ARM)
7118 * or the condexec bits (Thumb) but it isn't necessary.
7123 syndrome = syn_cp14_rrt_trap(1, 0xe, opc1, crm, rt, rt2,
7126 syndrome = syn_cp14_rt_trap(1, 0xe, opc1, opc2, crn, crm,
7127 rt, isread, s->thumb);
7132 syndrome = syn_cp15_rrt_trap(1, 0xe, opc1, crm, rt, rt2,
7135 syndrome = syn_cp15_rt_trap(1, 0xe, opc1, opc2, crn, crm,
7136 rt, isread, s->thumb);
7140 /* ARMv8 defines that only coprocessors 14 and 15 exist,
7141 * so this can only happen if this is an ARMv7 or earlier CPU,
7142 * in which case the syndrome information won't actually be
7145 assert(!arm_dc_feature(s, ARM_FEATURE_V8));
7146 syndrome = syn_uncategorized();
7150 gen_set_pc_im(s, s->pc);
7151 tmpptr = tcg_const_ptr(ri);
7152 tcg_syn = tcg_const_i32(syndrome);
7153 gen_helper_access_check_cp_reg(cpu_env, tmpptr, tcg_syn);
7154 tcg_temp_free_ptr(tmpptr);
7155 tcg_temp_free_i32(tcg_syn);
7158 /* Handle special cases first */
7159 switch (ri->type & ~(ARM_CP_FLAG_MASK & ~ARM_CP_SPECIAL)) {
7166 gen_set_pc_im(s, s->pc);
7167 s->is_jmp = DISAS_WFI;
7173 if (use_icount && (ri->type & ARM_CP_IO)) {
7182 if (ri->type & ARM_CP_CONST) {
7183 tmp64 = tcg_const_i64(ri->resetvalue);
7184 } else if (ri->readfn) {
7186 tmp64 = tcg_temp_new_i64();
7187 tmpptr = tcg_const_ptr(ri);
7188 gen_helper_get_cp_reg64(tmp64, cpu_env, tmpptr);
7189 tcg_temp_free_ptr(tmpptr);
7191 tmp64 = tcg_temp_new_i64();
7192 tcg_gen_ld_i64(tmp64, cpu_env, ri->fieldoffset);
7194 tmp = tcg_temp_new_i32();
7195 tcg_gen_trunc_i64_i32(tmp, tmp64);
7196 store_reg(s, rt, tmp);
7197 tcg_gen_shri_i64(tmp64, tmp64, 32);
7198 tmp = tcg_temp_new_i32();
7199 tcg_gen_trunc_i64_i32(tmp, tmp64);
7200 tcg_temp_free_i64(tmp64);
7201 store_reg(s, rt2, tmp);
7204 if (ri->type & ARM_CP_CONST) {
7205 tmp = tcg_const_i32(ri->resetvalue);
7206 } else if (ri->readfn) {
7208 tmp = tcg_temp_new_i32();
7209 tmpptr = tcg_const_ptr(ri);
7210 gen_helper_get_cp_reg(tmp, cpu_env, tmpptr);
7211 tcg_temp_free_ptr(tmpptr);
7213 tmp = load_cpu_offset(ri->fieldoffset);
7216 /* Destination register of r15 for 32 bit loads sets
7217 * the condition codes from the high 4 bits of the value
7220 tcg_temp_free_i32(tmp);
7222 store_reg(s, rt, tmp);
7227 if (ri->type & ARM_CP_CONST) {
7228 /* If not forbidden by access permissions, treat as WI */
7233 TCGv_i32 tmplo, tmphi;
7234 TCGv_i64 tmp64 = tcg_temp_new_i64();
7235 tmplo = load_reg(s, rt);
7236 tmphi = load_reg(s, rt2);
7237 tcg_gen_concat_i32_i64(tmp64, tmplo, tmphi);
7238 tcg_temp_free_i32(tmplo);
7239 tcg_temp_free_i32(tmphi);
7241 TCGv_ptr tmpptr = tcg_const_ptr(ri);
7242 gen_helper_set_cp_reg64(cpu_env, tmpptr, tmp64);
7243 tcg_temp_free_ptr(tmpptr);
7245 tcg_gen_st_i64(tmp64, cpu_env, ri->fieldoffset);
7247 tcg_temp_free_i64(tmp64);
7252 tmp = load_reg(s, rt);
7253 tmpptr = tcg_const_ptr(ri);
7254 gen_helper_set_cp_reg(cpu_env, tmpptr, tmp);
7255 tcg_temp_free_ptr(tmpptr);
7256 tcg_temp_free_i32(tmp);
7258 TCGv_i32 tmp = load_reg(s, rt);
7259 store_cpu_offset(tmp, ri->fieldoffset);
7264 if (use_icount && (ri->type & ARM_CP_IO)) {
7265 /* I/O operations must end the TB here (whether read or write) */
7268 } else if (!isread && !(ri->type & ARM_CP_SUPPRESS_TB_END)) {
7269 /* We default to ending the TB on a coprocessor register write,
7270 * but allow this to be suppressed by the register definition
7271 * (usually only necessary to work around guest bugs).
7279 /* Unknown register; this might be a guest error or a QEMU
7280 * unimplemented feature.
7283 qemu_log_mask(LOG_UNIMP, "%s access to unsupported AArch32 "
7284 "64 bit system register cp:%d opc1: %d crm:%d\n",
7285 isread ? "read" : "write", cpnum, opc1, crm);
7287 qemu_log_mask(LOG_UNIMP, "%s access to unsupported AArch32 "
7288 "system register cp:%d opc1:%d crn:%d crm:%d opc2:%d\n",
7289 isread ? "read" : "write", cpnum, opc1, crn, crm, opc2);
7296 /* Store a 64-bit value to a register pair. Clobbers val. */
7297 static void gen_storeq_reg(DisasContext *s, int rlow, int rhigh, TCGv_i64 val)
7300 tmp = tcg_temp_new_i32();
7301 tcg_gen_trunc_i64_i32(tmp, val);
7302 store_reg(s, rlow, tmp);
7303 tmp = tcg_temp_new_i32();
7304 tcg_gen_shri_i64(val, val, 32);
7305 tcg_gen_trunc_i64_i32(tmp, val);
7306 store_reg(s, rhigh, tmp);
7309 /* load a 32-bit value from a register and perform a 64-bit accumulate. */
7310 static void gen_addq_lo(DisasContext *s, TCGv_i64 val, int rlow)
7315 /* Load value and extend to 64 bits. */
7316 tmp = tcg_temp_new_i64();
7317 tmp2 = load_reg(s, rlow);
7318 tcg_gen_extu_i32_i64(tmp, tmp2);
7319 tcg_temp_free_i32(tmp2);
7320 tcg_gen_add_i64(val, val, tmp);
7321 tcg_temp_free_i64(tmp);
7324 /* load and add a 64-bit value from a register pair. */
7325 static void gen_addq(DisasContext *s, TCGv_i64 val, int rlow, int rhigh)
7331 /* Load 64-bit value rd:rn. */
7332 tmpl = load_reg(s, rlow);
7333 tmph = load_reg(s, rhigh);
7334 tmp = tcg_temp_new_i64();
7335 tcg_gen_concat_i32_i64(tmp, tmpl, tmph);
7336 tcg_temp_free_i32(tmpl);
7337 tcg_temp_free_i32(tmph);
7338 tcg_gen_add_i64(val, val, tmp);
7339 tcg_temp_free_i64(tmp);
7342 /* Set N and Z flags from hi|lo. */
7343 static void gen_logicq_cc(TCGv_i32 lo, TCGv_i32 hi)
7345 tcg_gen_mov_i32(cpu_NF, hi);
7346 tcg_gen_or_i32(cpu_ZF, lo, hi);
7349 /* Load/Store exclusive instructions are implemented by remembering
7350 the value/address loaded, and seeing if these are the same
7351 when the store is performed. This should be sufficient to implement
7352 the architecturally mandated semantics, and avoids having to monitor
7355 In system emulation mode only one CPU will be running at once, so
7356 this sequence is effectively atomic. In user emulation mode we
7357 throw an exception and handle the atomic operation elsewhere. */
7358 static void gen_load_exclusive(DisasContext *s, int rt, int rt2,
7359 TCGv_i32 addr, int size)
7361 TCGv_i32 tmp = tcg_temp_new_i32();
7367 gen_aa32_ld8u(tmp, addr, get_mem_index(s));
7370 gen_aa32_ld16u(tmp, addr, get_mem_index(s));
7374 gen_aa32_ld32u(tmp, addr, get_mem_index(s));
7381 TCGv_i32 tmp2 = tcg_temp_new_i32();
7382 TCGv_i32 tmp3 = tcg_temp_new_i32();
7384 tcg_gen_addi_i32(tmp2, addr, 4);
7385 gen_aa32_ld32u(tmp3, tmp2, get_mem_index(s));
7386 tcg_temp_free_i32(tmp2);
7387 tcg_gen_concat_i32_i64(cpu_exclusive_val, tmp, tmp3);
7388 store_reg(s, rt2, tmp3);
7390 tcg_gen_extu_i32_i64(cpu_exclusive_val, tmp);
7393 store_reg(s, rt, tmp);
7394 tcg_gen_extu_i32_i64(cpu_exclusive_addr, addr);
7397 static void gen_clrex(DisasContext *s)
7399 tcg_gen_movi_i64(cpu_exclusive_addr, -1);
7402 #ifdef CONFIG_USER_ONLY
7403 static void gen_store_exclusive(DisasContext *s, int rd, int rt, int rt2,
7404 TCGv_i32 addr, int size)
7406 tcg_gen_extu_i32_i64(cpu_exclusive_test, addr);
7407 tcg_gen_movi_i32(cpu_exclusive_info,
7408 size | (rd << 4) | (rt << 8) | (rt2 << 12));
7409 gen_exception_internal_insn(s, 4, EXCP_STREX);
7412 static void gen_store_exclusive(DisasContext *s, int rd, int rt, int rt2,
7413 TCGv_i32 addr, int size)
7416 TCGv_i64 val64, extaddr;
7420 /* if (env->exclusive_addr == addr && env->exclusive_val == [addr]) {
7426 fail_label = gen_new_label();
7427 done_label = gen_new_label();
7428 extaddr = tcg_temp_new_i64();
7429 tcg_gen_extu_i32_i64(extaddr, addr);
7430 tcg_gen_brcond_i64(TCG_COND_NE, extaddr, cpu_exclusive_addr, fail_label);
7431 tcg_temp_free_i64(extaddr);
7433 tmp = tcg_temp_new_i32();
7436 gen_aa32_ld8u(tmp, addr, get_mem_index(s));
7439 gen_aa32_ld16u(tmp, addr, get_mem_index(s));
7443 gen_aa32_ld32u(tmp, addr, get_mem_index(s));
7449 val64 = tcg_temp_new_i64();
7451 TCGv_i32 tmp2 = tcg_temp_new_i32();
7452 TCGv_i32 tmp3 = tcg_temp_new_i32();
7453 tcg_gen_addi_i32(tmp2, addr, 4);
7454 gen_aa32_ld32u(tmp3, tmp2, get_mem_index(s));
7455 tcg_temp_free_i32(tmp2);
7456 tcg_gen_concat_i32_i64(val64, tmp, tmp3);
7457 tcg_temp_free_i32(tmp3);
7459 tcg_gen_extu_i32_i64(val64, tmp);
7461 tcg_temp_free_i32(tmp);
7463 tcg_gen_brcond_i64(TCG_COND_NE, val64, cpu_exclusive_val, fail_label);
7464 tcg_temp_free_i64(val64);
7466 tmp = load_reg(s, rt);
7469 gen_aa32_st8(tmp, addr, get_mem_index(s));
7472 gen_aa32_st16(tmp, addr, get_mem_index(s));
7476 gen_aa32_st32(tmp, addr, get_mem_index(s));
7481 tcg_temp_free_i32(tmp);
7483 tcg_gen_addi_i32(addr, addr, 4);
7484 tmp = load_reg(s, rt2);
7485 gen_aa32_st32(tmp, addr, get_mem_index(s));
7486 tcg_temp_free_i32(tmp);
7488 tcg_gen_movi_i32(cpu_R[rd], 0);
7489 tcg_gen_br(done_label);
7490 gen_set_label(fail_label);
7491 tcg_gen_movi_i32(cpu_R[rd], 1);
7492 gen_set_label(done_label);
7493 tcg_gen_movi_i64(cpu_exclusive_addr, -1);
7500 * @mode: mode field from insn (which stack to store to)
7501 * @amode: addressing mode (DA/IA/DB/IB), encoded as per P,U bits in ARM insn
7502 * @writeback: true if writeback bit set
7504 * Generate code for the SRS (Store Return State) insn.
7506 static void gen_srs(DisasContext *s,
7507 uint32_t mode, uint32_t amode, bool writeback)
7510 TCGv_i32 addr = tcg_temp_new_i32();
7511 TCGv_i32 tmp = tcg_const_i32(mode);
7512 gen_helper_get_r13_banked(addr, cpu_env, tmp);
7513 tcg_temp_free_i32(tmp);
7530 tcg_gen_addi_i32(addr, addr, offset);
7531 tmp = load_reg(s, 14);
7532 gen_aa32_st32(tmp, addr, get_mem_index(s));
7533 tcg_temp_free_i32(tmp);
7534 tmp = load_cpu_field(spsr);
7535 tcg_gen_addi_i32(addr, addr, 4);
7536 gen_aa32_st32(tmp, addr, get_mem_index(s));
7537 tcg_temp_free_i32(tmp);
7555 tcg_gen_addi_i32(addr, addr, offset);
7556 tmp = tcg_const_i32(mode);
7557 gen_helper_set_r13_banked(cpu_env, tmp, addr);
7558 tcg_temp_free_i32(tmp);
7560 tcg_temp_free_i32(addr);
7563 static void disas_arm_insn(DisasContext *s, unsigned int insn)
7565 unsigned int cond, val, op1, i, shift, rm, rs, rn, rd, sh;
7572 /* M variants do not implement ARM mode. */
7573 if (arm_dc_feature(s, ARM_FEATURE_M)) {
7578 /* In ARMv3 and v4 the NV condition is UNPREDICTABLE; we
7579 * choose to UNDEF. In ARMv5 and above the space is used
7580 * for miscellaneous unconditional instructions.
7584 /* Unconditional instructions. */
7585 if (((insn >> 25) & 7) == 1) {
7586 /* NEON Data processing. */
7587 if (!arm_dc_feature(s, ARM_FEATURE_NEON)) {
7591 if (disas_neon_data_insn(s, insn)) {
7596 if ((insn & 0x0f100000) == 0x04000000) {
7597 /* NEON load/store. */
7598 if (!arm_dc_feature(s, ARM_FEATURE_NEON)) {
7602 if (disas_neon_ls_insn(s, insn)) {
7607 if ((insn & 0x0f000e10) == 0x0e000a00) {
7609 if (disas_vfp_insn(s, insn)) {
7614 if (((insn & 0x0f30f000) == 0x0510f000) ||
7615 ((insn & 0x0f30f010) == 0x0710f000)) {
7616 if ((insn & (1 << 22)) == 0) {
7618 if (!arm_dc_feature(s, ARM_FEATURE_V7MP)) {
7622 /* Otherwise PLD; v5TE+ */
7626 if (((insn & 0x0f70f000) == 0x0450f000) ||
7627 ((insn & 0x0f70f010) == 0x0650f000)) {
7629 return; /* PLI; V7 */
7631 if (((insn & 0x0f700000) == 0x04100000) ||
7632 ((insn & 0x0f700010) == 0x06100000)) {
7633 if (!arm_dc_feature(s, ARM_FEATURE_V7MP)) {
7636 return; /* v7MP: Unallocated memory hint: must NOP */
7639 if ((insn & 0x0ffffdff) == 0x01010000) {
7642 if (((insn >> 9) & 1) != s->bswap_code) {
7643 /* Dynamic endianness switching not implemented. */
7644 qemu_log_mask(LOG_UNIMP, "arm: unimplemented setend\n");
7648 } else if ((insn & 0x0fffff00) == 0x057ff000) {
7649 switch ((insn >> 4) & 0xf) {
7658 /* We don't emulate caches so these are a no-op. */
7663 } else if ((insn & 0x0e5fffe0) == 0x084d0500) {
7669 gen_srs(s, (insn & 0x1f), (insn >> 23) & 3, insn & (1 << 21));
7671 } else if ((insn & 0x0e50ffe0) == 0x08100a00) {
7677 rn = (insn >> 16) & 0xf;
7678 addr = load_reg(s, rn);
7679 i = (insn >> 23) & 3;
7681 case 0: offset = -4; break; /* DA */
7682 case 1: offset = 0; break; /* IA */
7683 case 2: offset = -8; break; /* DB */
7684 case 3: offset = 4; break; /* IB */
7688 tcg_gen_addi_i32(addr, addr, offset);
7689 /* Load PC into tmp and CPSR into tmp2. */
7690 tmp = tcg_temp_new_i32();
7691 gen_aa32_ld32u(tmp, addr, get_mem_index(s));
7692 tcg_gen_addi_i32(addr, addr, 4);
7693 tmp2 = tcg_temp_new_i32();
7694 gen_aa32_ld32u(tmp2, addr, get_mem_index(s));
7695 if (insn & (1 << 21)) {
7696 /* Base writeback. */
7698 case 0: offset = -8; break;
7699 case 1: offset = 4; break;
7700 case 2: offset = -4; break;
7701 case 3: offset = 0; break;
7705 tcg_gen_addi_i32(addr, addr, offset);
7706 store_reg(s, rn, addr);
7708 tcg_temp_free_i32(addr);
7710 gen_rfe(s, tmp, tmp2);
7712 } else if ((insn & 0x0e000000) == 0x0a000000) {
7713 /* branch link and change to thumb (blx <offset>) */
7716 val = (uint32_t)s->pc;
7717 tmp = tcg_temp_new_i32();
7718 tcg_gen_movi_i32(tmp, val);
7719 store_reg(s, 14, tmp);
7720 /* Sign-extend the 24-bit offset */
7721 offset = (((int32_t)insn) << 8) >> 8;
7722 /* offset * 4 + bit24 * 2 + (thumb bit) */
7723 val += (offset << 2) | ((insn >> 23) & 2) | 1;
7724 /* pipeline offset */
7726 /* protected by ARCH(5); above, near the start of uncond block */
7729 } else if ((insn & 0x0e000f00) == 0x0c000100) {
7730 if (arm_dc_feature(s, ARM_FEATURE_IWMMXT)) {
7731 /* iWMMXt register transfer. */
7732 if (extract32(s->c15_cpar, 1, 1)) {
7733 if (!disas_iwmmxt_insn(s, insn)) {
7738 } else if ((insn & 0x0fe00000) == 0x0c400000) {
7739 /* Coprocessor double register transfer. */
7741 } else if ((insn & 0x0f000010) == 0x0e000010) {
7742 /* Additional coprocessor register transfer. */
7743 } else if ((insn & 0x0ff10020) == 0x01000000) {
7746 /* cps (privileged) */
7750 if (insn & (1 << 19)) {
7751 if (insn & (1 << 8))
7753 if (insn & (1 << 7))
7755 if (insn & (1 << 6))
7757 if (insn & (1 << 18))
7760 if (insn & (1 << 17)) {
7762 val |= (insn & 0x1f);
7765 gen_set_psr_im(s, mask, 0, val);
7772 /* if not always execute, we generate a conditional jump to
7774 s->condlabel = gen_new_label();
7775 arm_gen_test_cc(cond ^ 1, s->condlabel);
7778 if ((insn & 0x0f900000) == 0x03000000) {
7779 if ((insn & (1 << 21)) == 0) {
7781 rd = (insn >> 12) & 0xf;
7782 val = ((insn >> 4) & 0xf000) | (insn & 0xfff);
7783 if ((insn & (1 << 22)) == 0) {
7785 tmp = tcg_temp_new_i32();
7786 tcg_gen_movi_i32(tmp, val);
7789 tmp = load_reg(s, rd);
7790 tcg_gen_ext16u_i32(tmp, tmp);
7791 tcg_gen_ori_i32(tmp, tmp, val << 16);
7793 store_reg(s, rd, tmp);
7795 if (((insn >> 12) & 0xf) != 0xf)
7797 if (((insn >> 16) & 0xf) == 0) {
7798 gen_nop_hint(s, insn & 0xff);
7800 /* CPSR = immediate */
7802 shift = ((insn >> 8) & 0xf) * 2;
7804 val = (val >> shift) | (val << (32 - shift));
7805 i = ((insn & (1 << 22)) != 0);
7806 if (gen_set_psr_im(s, msr_mask(s, (insn >> 16) & 0xf, i),
7812 } else if ((insn & 0x0f900000) == 0x01000000
7813 && (insn & 0x00000090) != 0x00000090) {
7814 /* miscellaneous instructions */
7815 op1 = (insn >> 21) & 3;
7816 sh = (insn >> 4) & 0xf;
7819 case 0x0: /* move program status register */
7822 tmp = load_reg(s, rm);
7823 i = ((op1 & 2) != 0);
7824 if (gen_set_psr(s, msr_mask(s, (insn >> 16) & 0xf, i), i, tmp))
7828 rd = (insn >> 12) & 0xf;
7832 tmp = load_cpu_field(spsr);
7834 tmp = tcg_temp_new_i32();
7835 gen_helper_cpsr_read(tmp, cpu_env);
7837 store_reg(s, rd, tmp);
7842 /* branch/exchange thumb (bx). */
7844 tmp = load_reg(s, rm);
7846 } else if (op1 == 3) {
7849 rd = (insn >> 12) & 0xf;
7850 tmp = load_reg(s, rm);
7851 gen_helper_clz(tmp, tmp);
7852 store_reg(s, rd, tmp);
7860 /* Trivial implementation equivalent to bx. */
7861 tmp = load_reg(s, rm);
7872 /* branch link/exchange thumb (blx) */
7873 tmp = load_reg(s, rm);
7874 tmp2 = tcg_temp_new_i32();
7875 tcg_gen_movi_i32(tmp2, s->pc);
7876 store_reg(s, 14, tmp2);
7882 uint32_t c = extract32(insn, 8, 4);
7884 /* Check this CPU supports ARMv8 CRC instructions.
7885 * op1 == 3 is UNPREDICTABLE but handle as UNDEFINED.
7886 * Bits 8, 10 and 11 should be zero.
7888 if (!arm_dc_feature(s, ARM_FEATURE_CRC) || op1 == 0x3 ||
7893 rn = extract32(insn, 16, 4);
7894 rd = extract32(insn, 12, 4);
7896 tmp = load_reg(s, rn);
7897 tmp2 = load_reg(s, rm);
7899 tcg_gen_andi_i32(tmp2, tmp2, 0xff);
7900 } else if (op1 == 1) {
7901 tcg_gen_andi_i32(tmp2, tmp2, 0xffff);
7903 tmp3 = tcg_const_i32(1 << op1);
7905 gen_helper_crc32c(tmp, tmp, tmp2, tmp3);
7907 gen_helper_crc32(tmp, tmp, tmp2, tmp3);
7909 tcg_temp_free_i32(tmp2);
7910 tcg_temp_free_i32(tmp3);
7911 store_reg(s, rd, tmp);
7914 case 0x5: /* saturating add/subtract */
7916 rd = (insn >> 12) & 0xf;
7917 rn = (insn >> 16) & 0xf;
7918 tmp = load_reg(s, rm);
7919 tmp2 = load_reg(s, rn);
7921 gen_helper_double_saturate(tmp2, cpu_env, tmp2);
7923 gen_helper_sub_saturate(tmp, cpu_env, tmp, tmp2);
7925 gen_helper_add_saturate(tmp, cpu_env, tmp, tmp2);
7926 tcg_temp_free_i32(tmp2);
7927 store_reg(s, rd, tmp);
7931 int imm16 = extract32(insn, 0, 4) | (extract32(insn, 8, 12) << 4);
7936 gen_exception_insn(s, 4, EXCP_BKPT,
7937 syn_aa32_bkpt(imm16, false));
7940 /* Hypervisor call (v7) */
7948 /* Secure monitor call (v6+) */
7960 case 0x8: /* signed multiply */
7965 rs = (insn >> 8) & 0xf;
7966 rn = (insn >> 12) & 0xf;
7967 rd = (insn >> 16) & 0xf;
7969 /* (32 * 16) >> 16 */
7970 tmp = load_reg(s, rm);
7971 tmp2 = load_reg(s, rs);
7973 tcg_gen_sari_i32(tmp2, tmp2, 16);
7976 tmp64 = gen_muls_i64_i32(tmp, tmp2);
7977 tcg_gen_shri_i64(tmp64, tmp64, 16);
7978 tmp = tcg_temp_new_i32();
7979 tcg_gen_trunc_i64_i32(tmp, tmp64);
7980 tcg_temp_free_i64(tmp64);
7981 if ((sh & 2) == 0) {
7982 tmp2 = load_reg(s, rn);
7983 gen_helper_add_setq(tmp, cpu_env, tmp, tmp2);
7984 tcg_temp_free_i32(tmp2);
7986 store_reg(s, rd, tmp);
7989 tmp = load_reg(s, rm);
7990 tmp2 = load_reg(s, rs);
7991 gen_mulxy(tmp, tmp2, sh & 2, sh & 4);
7992 tcg_temp_free_i32(tmp2);
7994 tmp64 = tcg_temp_new_i64();
7995 tcg_gen_ext_i32_i64(tmp64, tmp);
7996 tcg_temp_free_i32(tmp);
7997 gen_addq(s, tmp64, rn, rd);
7998 gen_storeq_reg(s, rn, rd, tmp64);
7999 tcg_temp_free_i64(tmp64);
8002 tmp2 = load_reg(s, rn);
8003 gen_helper_add_setq(tmp, cpu_env, tmp, tmp2);
8004 tcg_temp_free_i32(tmp2);
8006 store_reg(s, rd, tmp);
8013 } else if (((insn & 0x0e000000) == 0 &&
8014 (insn & 0x00000090) != 0x90) ||
8015 ((insn & 0x0e000000) == (1 << 25))) {
8016 int set_cc, logic_cc, shiftop;
8018 op1 = (insn >> 21) & 0xf;
8019 set_cc = (insn >> 20) & 1;
8020 logic_cc = table_logic_cc[op1] & set_cc;
8022 /* data processing instruction */
8023 if (insn & (1 << 25)) {
8024 /* immediate operand */
8026 shift = ((insn >> 8) & 0xf) * 2;
8028 val = (val >> shift) | (val << (32 - shift));
8030 tmp2 = tcg_temp_new_i32();
8031 tcg_gen_movi_i32(tmp2, val);
8032 if (logic_cc && shift) {
8033 gen_set_CF_bit31(tmp2);
8038 tmp2 = load_reg(s, rm);
8039 shiftop = (insn >> 5) & 3;
8040 if (!(insn & (1 << 4))) {
8041 shift = (insn >> 7) & 0x1f;
8042 gen_arm_shift_im(tmp2, shiftop, shift, logic_cc);
8044 rs = (insn >> 8) & 0xf;
8045 tmp = load_reg(s, rs);
8046 gen_arm_shift_reg(tmp2, shiftop, tmp, logic_cc);
8049 if (op1 != 0x0f && op1 != 0x0d) {
8050 rn = (insn >> 16) & 0xf;
8051 tmp = load_reg(s, rn);
8053 TCGV_UNUSED_I32(tmp);
8055 rd = (insn >> 12) & 0xf;
8058 tcg_gen_and_i32(tmp, tmp, tmp2);
8062 store_reg_bx(s, rd, tmp);
8065 tcg_gen_xor_i32(tmp, tmp, tmp2);
8069 store_reg_bx(s, rd, tmp);
8072 if (set_cc && rd == 15) {
8073 /* SUBS r15, ... is used for exception return. */
8077 gen_sub_CC(tmp, tmp, tmp2);
8078 gen_exception_return(s, tmp);
8081 gen_sub_CC(tmp, tmp, tmp2);
8083 tcg_gen_sub_i32(tmp, tmp, tmp2);
8085 store_reg_bx(s, rd, tmp);
8090 gen_sub_CC(tmp, tmp2, tmp);
8092 tcg_gen_sub_i32(tmp, tmp2, tmp);
8094 store_reg_bx(s, rd, tmp);
8098 gen_add_CC(tmp, tmp, tmp2);
8100 tcg_gen_add_i32(tmp, tmp, tmp2);
8102 store_reg_bx(s, rd, tmp);
8106 gen_adc_CC(tmp, tmp, tmp2);
8108 gen_add_carry(tmp, tmp, tmp2);
8110 store_reg_bx(s, rd, tmp);
8114 gen_sbc_CC(tmp, tmp, tmp2);
8116 gen_sub_carry(tmp, tmp, tmp2);
8118 store_reg_bx(s, rd, tmp);
8122 gen_sbc_CC(tmp, tmp2, tmp);
8124 gen_sub_carry(tmp, tmp2, tmp);
8126 store_reg_bx(s, rd, tmp);
8130 tcg_gen_and_i32(tmp, tmp, tmp2);
8133 tcg_temp_free_i32(tmp);
8137 tcg_gen_xor_i32(tmp, tmp, tmp2);
8140 tcg_temp_free_i32(tmp);
8144 gen_sub_CC(tmp, tmp, tmp2);
8146 tcg_temp_free_i32(tmp);
8150 gen_add_CC(tmp, tmp, tmp2);
8152 tcg_temp_free_i32(tmp);
8155 tcg_gen_or_i32(tmp, tmp, tmp2);
8159 store_reg_bx(s, rd, tmp);
8162 if (logic_cc && rd == 15) {
8163 /* MOVS r15, ... is used for exception return. */
8167 gen_exception_return(s, tmp2);
8172 store_reg_bx(s, rd, tmp2);
8176 tcg_gen_andc_i32(tmp, tmp, tmp2);
8180 store_reg_bx(s, rd, tmp);
8184 tcg_gen_not_i32(tmp2, tmp2);
8188 store_reg_bx(s, rd, tmp2);
8191 if (op1 != 0x0f && op1 != 0x0d) {
8192 tcg_temp_free_i32(tmp2);
8195 /* other instructions */
8196 op1 = (insn >> 24) & 0xf;
8200 /* multiplies, extra load/stores */
8201 sh = (insn >> 5) & 3;
8204 rd = (insn >> 16) & 0xf;
8205 rn = (insn >> 12) & 0xf;
8206 rs = (insn >> 8) & 0xf;
8208 op1 = (insn >> 20) & 0xf;
8210 case 0: case 1: case 2: case 3: case 6:
8212 tmp = load_reg(s, rs);
8213 tmp2 = load_reg(s, rm);
8214 tcg_gen_mul_i32(tmp, tmp, tmp2);
8215 tcg_temp_free_i32(tmp2);
8216 if (insn & (1 << 22)) {
8217 /* Subtract (mls) */
8219 tmp2 = load_reg(s, rn);
8220 tcg_gen_sub_i32(tmp, tmp2, tmp);
8221 tcg_temp_free_i32(tmp2);
8222 } else if (insn & (1 << 21)) {
8224 tmp2 = load_reg(s, rn);
8225 tcg_gen_add_i32(tmp, tmp, tmp2);
8226 tcg_temp_free_i32(tmp2);
8228 if (insn & (1 << 20))
8230 store_reg(s, rd, tmp);
8233 /* 64 bit mul double accumulate (UMAAL) */
8235 tmp = load_reg(s, rs);
8236 tmp2 = load_reg(s, rm);
8237 tmp64 = gen_mulu_i64_i32(tmp, tmp2);
8238 gen_addq_lo(s, tmp64, rn);
8239 gen_addq_lo(s, tmp64, rd);
8240 gen_storeq_reg(s, rn, rd, tmp64);
8241 tcg_temp_free_i64(tmp64);
8243 case 8: case 9: case 10: case 11:
8244 case 12: case 13: case 14: case 15:
8245 /* 64 bit mul: UMULL, UMLAL, SMULL, SMLAL. */
8246 tmp = load_reg(s, rs);
8247 tmp2 = load_reg(s, rm);
8248 if (insn & (1 << 22)) {
8249 tcg_gen_muls2_i32(tmp, tmp2, tmp, tmp2);
8251 tcg_gen_mulu2_i32(tmp, tmp2, tmp, tmp2);
8253 if (insn & (1 << 21)) { /* mult accumulate */
8254 TCGv_i32 al = load_reg(s, rn);
8255 TCGv_i32 ah = load_reg(s, rd);
8256 tcg_gen_add2_i32(tmp, tmp2, tmp, tmp2, al, ah);
8257 tcg_temp_free_i32(al);
8258 tcg_temp_free_i32(ah);
8260 if (insn & (1 << 20)) {
8261 gen_logicq_cc(tmp, tmp2);
8263 store_reg(s, rn, tmp);
8264 store_reg(s, rd, tmp2);
8270 rn = (insn >> 16) & 0xf;
8271 rd = (insn >> 12) & 0xf;
8272 if (insn & (1 << 23)) {
8273 /* load/store exclusive */
8274 int op2 = (insn >> 8) & 3;
8275 op1 = (insn >> 21) & 0x3;
8278 case 0: /* lda/stl */
8284 case 1: /* reserved */
8286 case 2: /* ldaex/stlex */
8289 case 3: /* ldrex/strex */
8298 addr = tcg_temp_local_new_i32();
8299 load_reg_var(s, addr, rn);
8301 /* Since the emulation does not have barriers,
8302 the acquire/release semantics need no special
8305 if (insn & (1 << 20)) {
8306 tmp = tcg_temp_new_i32();
8309 gen_aa32_ld32u(tmp, addr, get_mem_index(s));
8312 gen_aa32_ld8u(tmp, addr, get_mem_index(s));
8315 gen_aa32_ld16u(tmp, addr, get_mem_index(s));
8320 store_reg(s, rd, tmp);
8323 tmp = load_reg(s, rm);
8326 gen_aa32_st32(tmp, addr, get_mem_index(s));
8329 gen_aa32_st8(tmp, addr, get_mem_index(s));
8332 gen_aa32_st16(tmp, addr, get_mem_index(s));
8337 tcg_temp_free_i32(tmp);
8339 } else if (insn & (1 << 20)) {
8342 gen_load_exclusive(s, rd, 15, addr, 2);
8344 case 1: /* ldrexd */
8345 gen_load_exclusive(s, rd, rd + 1, addr, 3);
8347 case 2: /* ldrexb */
8348 gen_load_exclusive(s, rd, 15, addr, 0);
8350 case 3: /* ldrexh */
8351 gen_load_exclusive(s, rd, 15, addr, 1);
8360 gen_store_exclusive(s, rd, rm, 15, addr, 2);
8362 case 1: /* strexd */
8363 gen_store_exclusive(s, rd, rm, rm + 1, addr, 3);
8365 case 2: /* strexb */
8366 gen_store_exclusive(s, rd, rm, 15, addr, 0);
8368 case 3: /* strexh */
8369 gen_store_exclusive(s, rd, rm, 15, addr, 1);
8375 tcg_temp_free_i32(addr);
8377 /* SWP instruction */
8380 /* ??? This is not really atomic. However we know
8381 we never have multiple CPUs running in parallel,
8382 so it is good enough. */
8383 addr = load_reg(s, rn);
8384 tmp = load_reg(s, rm);
8385 tmp2 = tcg_temp_new_i32();
8386 if (insn & (1 << 22)) {
8387 gen_aa32_ld8u(tmp2, addr, get_mem_index(s));
8388 gen_aa32_st8(tmp, addr, get_mem_index(s));
8390 gen_aa32_ld32u(tmp2, addr, get_mem_index(s));
8391 gen_aa32_st32(tmp, addr, get_mem_index(s));
8393 tcg_temp_free_i32(tmp);
8394 tcg_temp_free_i32(addr);
8395 store_reg(s, rd, tmp2);
8401 /* Misc load/store */
8402 rn = (insn >> 16) & 0xf;
8403 rd = (insn >> 12) & 0xf;
8404 addr = load_reg(s, rn);
8405 if (insn & (1 << 24))
8406 gen_add_datah_offset(s, insn, 0, addr);
8408 if (insn & (1 << 20)) {
8410 tmp = tcg_temp_new_i32();
8413 gen_aa32_ld16u(tmp, addr, get_mem_index(s));
8416 gen_aa32_ld8s(tmp, addr, get_mem_index(s));
8420 gen_aa32_ld16s(tmp, addr, get_mem_index(s));
8424 } else if (sh & 2) {
8429 tmp = load_reg(s, rd);
8430 gen_aa32_st32(tmp, addr, get_mem_index(s));
8431 tcg_temp_free_i32(tmp);
8432 tcg_gen_addi_i32(addr, addr, 4);
8433 tmp = load_reg(s, rd + 1);
8434 gen_aa32_st32(tmp, addr, get_mem_index(s));
8435 tcg_temp_free_i32(tmp);
8439 tmp = tcg_temp_new_i32();
8440 gen_aa32_ld32u(tmp, addr, get_mem_index(s));
8441 store_reg(s, rd, tmp);
8442 tcg_gen_addi_i32(addr, addr, 4);
8443 tmp = tcg_temp_new_i32();
8444 gen_aa32_ld32u(tmp, addr, get_mem_index(s));
8448 address_offset = -4;
8451 tmp = load_reg(s, rd);
8452 gen_aa32_st16(tmp, addr, get_mem_index(s));
8453 tcg_temp_free_i32(tmp);
8456 /* Perform base writeback before the loaded value to
8457 ensure correct behavior with overlapping index registers.
8458 ldrd with base writeback is is undefined if the
8459 destination and index registers overlap. */
8460 if (!(insn & (1 << 24))) {
8461 gen_add_datah_offset(s, insn, address_offset, addr);
8462 store_reg(s, rn, addr);
8463 } else if (insn & (1 << 21)) {
8465 tcg_gen_addi_i32(addr, addr, address_offset);
8466 store_reg(s, rn, addr);
8468 tcg_temp_free_i32(addr);
8471 /* Complete the load. */
8472 store_reg(s, rd, tmp);
8481 if (insn & (1 << 4)) {
8483 /* Armv6 Media instructions. */
8485 rn = (insn >> 16) & 0xf;
8486 rd = (insn >> 12) & 0xf;
8487 rs = (insn >> 8) & 0xf;
8488 switch ((insn >> 23) & 3) {
8489 case 0: /* Parallel add/subtract. */
8490 op1 = (insn >> 20) & 7;
8491 tmp = load_reg(s, rn);
8492 tmp2 = load_reg(s, rm);
8493 sh = (insn >> 5) & 7;
8494 if ((op1 & 3) == 0 || sh == 5 || sh == 6)
8496 gen_arm_parallel_addsub(op1, sh, tmp, tmp2);
8497 tcg_temp_free_i32(tmp2);
8498 store_reg(s, rd, tmp);
8501 if ((insn & 0x00700020) == 0) {
8502 /* Halfword pack. */
8503 tmp = load_reg(s, rn);
8504 tmp2 = load_reg(s, rm);
8505 shift = (insn >> 7) & 0x1f;
8506 if (insn & (1 << 6)) {
8510 tcg_gen_sari_i32(tmp2, tmp2, shift);
8511 tcg_gen_andi_i32(tmp, tmp, 0xffff0000);
8512 tcg_gen_ext16u_i32(tmp2, tmp2);
8516 tcg_gen_shli_i32(tmp2, tmp2, shift);
8517 tcg_gen_ext16u_i32(tmp, tmp);
8518 tcg_gen_andi_i32(tmp2, tmp2, 0xffff0000);
8520 tcg_gen_or_i32(tmp, tmp, tmp2);
8521 tcg_temp_free_i32(tmp2);
8522 store_reg(s, rd, tmp);
8523 } else if ((insn & 0x00200020) == 0x00200000) {
8525 tmp = load_reg(s, rm);
8526 shift = (insn >> 7) & 0x1f;
8527 if (insn & (1 << 6)) {
8530 tcg_gen_sari_i32(tmp, tmp, shift);
8532 tcg_gen_shli_i32(tmp, tmp, shift);
8534 sh = (insn >> 16) & 0x1f;
8535 tmp2 = tcg_const_i32(sh);
8536 if (insn & (1 << 22))
8537 gen_helper_usat(tmp, cpu_env, tmp, tmp2);
8539 gen_helper_ssat(tmp, cpu_env, tmp, tmp2);
8540 tcg_temp_free_i32(tmp2);
8541 store_reg(s, rd, tmp);
8542 } else if ((insn & 0x00300fe0) == 0x00200f20) {
8544 tmp = load_reg(s, rm);
8545 sh = (insn >> 16) & 0x1f;
8546 tmp2 = tcg_const_i32(sh);
8547 if (insn & (1 << 22))
8548 gen_helper_usat16(tmp, cpu_env, tmp, tmp2);
8550 gen_helper_ssat16(tmp, cpu_env, tmp, tmp2);
8551 tcg_temp_free_i32(tmp2);
8552 store_reg(s, rd, tmp);
8553 } else if ((insn & 0x00700fe0) == 0x00000fa0) {
8555 tmp = load_reg(s, rn);
8556 tmp2 = load_reg(s, rm);
8557 tmp3 = tcg_temp_new_i32();
8558 tcg_gen_ld_i32(tmp3, cpu_env, offsetof(CPUARMState, GE));
8559 gen_helper_sel_flags(tmp, tmp3, tmp, tmp2);
8560 tcg_temp_free_i32(tmp3);
8561 tcg_temp_free_i32(tmp2);
8562 store_reg(s, rd, tmp);
8563 } else if ((insn & 0x000003e0) == 0x00000060) {
8564 tmp = load_reg(s, rm);
8565 shift = (insn >> 10) & 3;
8566 /* ??? In many cases it's not necessary to do a
8567 rotate, a shift is sufficient. */
8569 tcg_gen_rotri_i32(tmp, tmp, shift * 8);
8570 op1 = (insn >> 20) & 7;
8572 case 0: gen_sxtb16(tmp); break;
8573 case 2: gen_sxtb(tmp); break;
8574 case 3: gen_sxth(tmp); break;
8575 case 4: gen_uxtb16(tmp); break;
8576 case 6: gen_uxtb(tmp); break;
8577 case 7: gen_uxth(tmp); break;
8578 default: goto illegal_op;
8581 tmp2 = load_reg(s, rn);
8582 if ((op1 & 3) == 0) {
8583 gen_add16(tmp, tmp2);
8585 tcg_gen_add_i32(tmp, tmp, tmp2);
8586 tcg_temp_free_i32(tmp2);
8589 store_reg(s, rd, tmp);
8590 } else if ((insn & 0x003f0f60) == 0x003f0f20) {
8592 tmp = load_reg(s, rm);
8593 if (insn & (1 << 22)) {
8594 if (insn & (1 << 7)) {
8598 gen_helper_rbit(tmp, tmp);
8601 if (insn & (1 << 7))
8604 tcg_gen_bswap32_i32(tmp, tmp);
8606 store_reg(s, rd, tmp);
8611 case 2: /* Multiplies (Type 3). */
8612 switch ((insn >> 20) & 0x7) {
8614 if (((insn >> 6) ^ (insn >> 7)) & 1) {
8615 /* op2 not 00x or 11x : UNDEF */
8618 /* Signed multiply most significant [accumulate].
8619 (SMMUL, SMMLA, SMMLS) */
8620 tmp = load_reg(s, rm);
8621 tmp2 = load_reg(s, rs);
8622 tmp64 = gen_muls_i64_i32(tmp, tmp2);
8625 tmp = load_reg(s, rd);
8626 if (insn & (1 << 6)) {
8627 tmp64 = gen_subq_msw(tmp64, tmp);
8629 tmp64 = gen_addq_msw(tmp64, tmp);
8632 if (insn & (1 << 5)) {
8633 tcg_gen_addi_i64(tmp64, tmp64, 0x80000000u);
8635 tcg_gen_shri_i64(tmp64, tmp64, 32);
8636 tmp = tcg_temp_new_i32();
8637 tcg_gen_trunc_i64_i32(tmp, tmp64);
8638 tcg_temp_free_i64(tmp64);
8639 store_reg(s, rn, tmp);
8643 /* SMLAD, SMUAD, SMLSD, SMUSD, SMLALD, SMLSLD */
8644 if (insn & (1 << 7)) {
8647 tmp = load_reg(s, rm);
8648 tmp2 = load_reg(s, rs);
8649 if (insn & (1 << 5))
8650 gen_swap_half(tmp2);
8651 gen_smul_dual(tmp, tmp2);
8652 if (insn & (1 << 22)) {
8653 /* smlald, smlsld */
8656 tmp64 = tcg_temp_new_i64();
8657 tmp64_2 = tcg_temp_new_i64();
8658 tcg_gen_ext_i32_i64(tmp64, tmp);
8659 tcg_gen_ext_i32_i64(tmp64_2, tmp2);
8660 tcg_temp_free_i32(tmp);
8661 tcg_temp_free_i32(tmp2);
8662 if (insn & (1 << 6)) {
8663 tcg_gen_sub_i64(tmp64, tmp64, tmp64_2);
8665 tcg_gen_add_i64(tmp64, tmp64, tmp64_2);
8667 tcg_temp_free_i64(tmp64_2);
8668 gen_addq(s, tmp64, rd, rn);
8669 gen_storeq_reg(s, rd, rn, tmp64);
8670 tcg_temp_free_i64(tmp64);
8672 /* smuad, smusd, smlad, smlsd */
8673 if (insn & (1 << 6)) {
8674 /* This subtraction cannot overflow. */
8675 tcg_gen_sub_i32(tmp, tmp, tmp2);
8677 /* This addition cannot overflow 32 bits;
8678 * however it may overflow considered as a
8679 * signed operation, in which case we must set
8682 gen_helper_add_setq(tmp, cpu_env, tmp, tmp2);
8684 tcg_temp_free_i32(tmp2);
8687 tmp2 = load_reg(s, rd);
8688 gen_helper_add_setq(tmp, cpu_env, tmp, tmp2);
8689 tcg_temp_free_i32(tmp2);
8691 store_reg(s, rn, tmp);
8697 if (!arm_dc_feature(s, ARM_FEATURE_ARM_DIV)) {
8700 if (((insn >> 5) & 7) || (rd != 15)) {
8703 tmp = load_reg(s, rm);
8704 tmp2 = load_reg(s, rs);
8705 if (insn & (1 << 21)) {
8706 gen_helper_udiv(tmp, tmp, tmp2);
8708 gen_helper_sdiv(tmp, tmp, tmp2);
8710 tcg_temp_free_i32(tmp2);
8711 store_reg(s, rn, tmp);
8718 op1 = ((insn >> 17) & 0x38) | ((insn >> 5) & 7);
8720 case 0: /* Unsigned sum of absolute differences. */
8722 tmp = load_reg(s, rm);
8723 tmp2 = load_reg(s, rs);
8724 gen_helper_usad8(tmp, tmp, tmp2);
8725 tcg_temp_free_i32(tmp2);
8727 tmp2 = load_reg(s, rd);
8728 tcg_gen_add_i32(tmp, tmp, tmp2);
8729 tcg_temp_free_i32(tmp2);
8731 store_reg(s, rn, tmp);
8733 case 0x20: case 0x24: case 0x28: case 0x2c:
8734 /* Bitfield insert/clear. */
8736 shift = (insn >> 7) & 0x1f;
8737 i = (insn >> 16) & 0x1f;
8740 tmp = tcg_temp_new_i32();
8741 tcg_gen_movi_i32(tmp, 0);
8743 tmp = load_reg(s, rm);
8746 tmp2 = load_reg(s, rd);
8747 tcg_gen_deposit_i32(tmp, tmp2, tmp, shift, i);
8748 tcg_temp_free_i32(tmp2);
8750 store_reg(s, rd, tmp);
8752 case 0x12: case 0x16: case 0x1a: case 0x1e: /* sbfx */
8753 case 0x32: case 0x36: case 0x3a: case 0x3e: /* ubfx */
8755 tmp = load_reg(s, rm);
8756 shift = (insn >> 7) & 0x1f;
8757 i = ((insn >> 16) & 0x1f) + 1;
8762 gen_ubfx(tmp, shift, (1u << i) - 1);
8764 gen_sbfx(tmp, shift, i);
8767 store_reg(s, rd, tmp);
8777 /* Check for undefined extension instructions
8778 * per the ARM Bible IE:
8779 * xxxx 0111 1111 xxxx xxxx xxxx 1111 xxxx
8781 sh = (0xf << 20) | (0xf << 4);
8782 if (op1 == 0x7 && ((insn & sh) == sh))
8786 /* load/store byte/word */
8787 rn = (insn >> 16) & 0xf;
8788 rd = (insn >> 12) & 0xf;
8789 tmp2 = load_reg(s, rn);
8790 if ((insn & 0x01200000) == 0x00200000) {
8794 i = get_mem_index(s);
8796 if (insn & (1 << 24))
8797 gen_add_data_offset(s, insn, tmp2);
8798 if (insn & (1 << 20)) {
8800 tmp = tcg_temp_new_i32();
8801 if (insn & (1 << 22)) {
8802 gen_aa32_ld8u(tmp, tmp2, i);
8804 gen_aa32_ld32u(tmp, tmp2, i);
8808 tmp = load_reg(s, rd);
8809 if (insn & (1 << 22)) {
8810 gen_aa32_st8(tmp, tmp2, i);
8812 gen_aa32_st32(tmp, tmp2, i);
8814 tcg_temp_free_i32(tmp);
8816 if (!(insn & (1 << 24))) {
8817 gen_add_data_offset(s, insn, tmp2);
8818 store_reg(s, rn, tmp2);
8819 } else if (insn & (1 << 21)) {
8820 store_reg(s, rn, tmp2);
8822 tcg_temp_free_i32(tmp2);
8824 if (insn & (1 << 20)) {
8825 /* Complete the load. */
8826 store_reg_from_load(s, rd, tmp);
8832 int j, n, user, loaded_base;
8833 TCGv_i32 loaded_var;
8834 /* load/store multiple words */
8835 /* XXX: store correct base if write back */
8837 if (insn & (1 << 22)) {
8839 goto illegal_op; /* only usable in supervisor mode */
8841 if ((insn & (1 << 15)) == 0)
8844 rn = (insn >> 16) & 0xf;
8845 addr = load_reg(s, rn);
8847 /* compute total size */
8849 TCGV_UNUSED_I32(loaded_var);
8852 if (insn & (1 << i))
8855 /* XXX: test invalid n == 0 case ? */
8856 if (insn & (1 << 23)) {
8857 if (insn & (1 << 24)) {
8859 tcg_gen_addi_i32(addr, addr, 4);
8861 /* post increment */
8864 if (insn & (1 << 24)) {
8866 tcg_gen_addi_i32(addr, addr, -(n * 4));
8868 /* post decrement */
8870 tcg_gen_addi_i32(addr, addr, -((n - 1) * 4));
8875 if (insn & (1 << i)) {
8876 if (insn & (1 << 20)) {
8878 tmp = tcg_temp_new_i32();
8879 gen_aa32_ld32u(tmp, addr, get_mem_index(s));
8881 tmp2 = tcg_const_i32(i);
8882 gen_helper_set_user_reg(cpu_env, tmp2, tmp);
8883 tcg_temp_free_i32(tmp2);
8884 tcg_temp_free_i32(tmp);
8885 } else if (i == rn) {
8889 store_reg_from_load(s, i, tmp);
8894 /* special case: r15 = PC + 8 */
8895 val = (long)s->pc + 4;
8896 tmp = tcg_temp_new_i32();
8897 tcg_gen_movi_i32(tmp, val);
8899 tmp = tcg_temp_new_i32();
8900 tmp2 = tcg_const_i32(i);
8901 gen_helper_get_user_reg(tmp, cpu_env, tmp2);
8902 tcg_temp_free_i32(tmp2);
8904 tmp = load_reg(s, i);
8906 gen_aa32_st32(tmp, addr, get_mem_index(s));
8907 tcg_temp_free_i32(tmp);
8910 /* no need to add after the last transfer */
8912 tcg_gen_addi_i32(addr, addr, 4);
8915 if (insn & (1 << 21)) {
8917 if (insn & (1 << 23)) {
8918 if (insn & (1 << 24)) {
8921 /* post increment */
8922 tcg_gen_addi_i32(addr, addr, 4);
8925 if (insn & (1 << 24)) {
8928 tcg_gen_addi_i32(addr, addr, -((n - 1) * 4));
8930 /* post decrement */
8931 tcg_gen_addi_i32(addr, addr, -(n * 4));
8934 store_reg(s, rn, addr);
8936 tcg_temp_free_i32(addr);
8939 store_reg(s, rn, loaded_var);
8941 if ((insn & (1 << 22)) && !user) {
8942 /* Restore CPSR from SPSR. */
8943 tmp = load_cpu_field(spsr);
8944 gen_set_cpsr(tmp, CPSR_ERET_MASK);
8945 tcg_temp_free_i32(tmp);
8946 s->is_jmp = DISAS_UPDATE;
8955 /* branch (and link) */
8956 val = (int32_t)s->pc;
8957 if (insn & (1 << 24)) {
8958 tmp = tcg_temp_new_i32();
8959 tcg_gen_movi_i32(tmp, val);
8960 store_reg(s, 14, tmp);
8962 offset = sextract32(insn << 2, 0, 26);
8970 if (((insn >> 8) & 0xe) == 10) {
8972 if (disas_vfp_insn(s, insn)) {
8975 } else if (disas_coproc_insn(s, insn)) {
8982 gen_set_pc_im(s, s->pc);
8983 s->svc_imm = extract32(insn, 0, 24);
8984 s->is_jmp = DISAS_SWI;
8988 gen_exception_insn(s, 4, EXCP_UDEF, syn_uncategorized());
8994 /* Return true if this is a Thumb-2 logical op. */
8996 thumb2_logic_op(int op)
9001 /* Generate code for a Thumb-2 data processing operation. If CONDS is nonzero
9002 then set condition code flags based on the result of the operation.
9003 If SHIFTER_OUT is nonzero then set the carry flag for logical operations
9004 to the high bit of T1.
9005 Returns zero if the opcode is valid. */
9008 gen_thumb2_data_op(DisasContext *s, int op, int conds, uint32_t shifter_out,
9009 TCGv_i32 t0, TCGv_i32 t1)
9016 tcg_gen_and_i32(t0, t0, t1);
9020 tcg_gen_andc_i32(t0, t0, t1);
9024 tcg_gen_or_i32(t0, t0, t1);
9028 tcg_gen_orc_i32(t0, t0, t1);
9032 tcg_gen_xor_i32(t0, t0, t1);
9037 gen_add_CC(t0, t0, t1);
9039 tcg_gen_add_i32(t0, t0, t1);
9043 gen_adc_CC(t0, t0, t1);
9049 gen_sbc_CC(t0, t0, t1);
9051 gen_sub_carry(t0, t0, t1);
9056 gen_sub_CC(t0, t0, t1);
9058 tcg_gen_sub_i32(t0, t0, t1);
9062 gen_sub_CC(t0, t1, t0);
9064 tcg_gen_sub_i32(t0, t1, t0);
9066 default: /* 5, 6, 7, 9, 12, 15. */
9072 gen_set_CF_bit31(t1);
9077 /* Translate a 32-bit thumb instruction. Returns nonzero if the instruction
9079 static int disas_thumb2_insn(CPUARMState *env, DisasContext *s, uint16_t insn_hw1)
9081 uint32_t insn, imm, shift, offset;
9082 uint32_t rd, rn, rm, rs;
9093 if (!(arm_dc_feature(s, ARM_FEATURE_THUMB2)
9094 || arm_dc_feature(s, ARM_FEATURE_M))) {
9095 /* Thumb-1 cores may need to treat bl and blx as a pair of
9096 16-bit instructions to get correct prefetch abort behavior. */
9098 if ((insn & (1 << 12)) == 0) {
9100 /* Second half of blx. */
9101 offset = ((insn & 0x7ff) << 1);
9102 tmp = load_reg(s, 14);
9103 tcg_gen_addi_i32(tmp, tmp, offset);
9104 tcg_gen_andi_i32(tmp, tmp, 0xfffffffc);
9106 tmp2 = tcg_temp_new_i32();
9107 tcg_gen_movi_i32(tmp2, s->pc | 1);
9108 store_reg(s, 14, tmp2);
9112 if (insn & (1 << 11)) {
9113 /* Second half of bl. */
9114 offset = ((insn & 0x7ff) << 1) | 1;
9115 tmp = load_reg(s, 14);
9116 tcg_gen_addi_i32(tmp, tmp, offset);
9118 tmp2 = tcg_temp_new_i32();
9119 tcg_gen_movi_i32(tmp2, s->pc | 1);
9120 store_reg(s, 14, tmp2);
9124 if ((s->pc & ~TARGET_PAGE_MASK) == 0) {
9125 /* Instruction spans a page boundary. Implement it as two
9126 16-bit instructions in case the second half causes an
9128 offset = ((int32_t)insn << 21) >> 9;
9129 tcg_gen_movi_i32(cpu_R[14], s->pc + 2 + offset);
9132 /* Fall through to 32-bit decode. */
9135 insn = arm_lduw_code(env, s->pc, s->bswap_code);
9137 insn |= (uint32_t)insn_hw1 << 16;
9139 if ((insn & 0xf800e800) != 0xf000e800) {
9143 rn = (insn >> 16) & 0xf;
9144 rs = (insn >> 12) & 0xf;
9145 rd = (insn >> 8) & 0xf;
9147 switch ((insn >> 25) & 0xf) {
9148 case 0: case 1: case 2: case 3:
9149 /* 16-bit instructions. Should never happen. */
9152 if (insn & (1 << 22)) {
9153 /* Other load/store, table branch. */
9154 if (insn & 0x01200000) {
9155 /* Load/store doubleword. */
9157 addr = tcg_temp_new_i32();
9158 tcg_gen_movi_i32(addr, s->pc & ~3);
9160 addr = load_reg(s, rn);
9162 offset = (insn & 0xff) * 4;
9163 if ((insn & (1 << 23)) == 0)
9165 if (insn & (1 << 24)) {
9166 tcg_gen_addi_i32(addr, addr, offset);
9169 if (insn & (1 << 20)) {
9171 tmp = tcg_temp_new_i32();
9172 gen_aa32_ld32u(tmp, addr, get_mem_index(s));
9173 store_reg(s, rs, tmp);
9174 tcg_gen_addi_i32(addr, addr, 4);
9175 tmp = tcg_temp_new_i32();
9176 gen_aa32_ld32u(tmp, addr, get_mem_index(s));
9177 store_reg(s, rd, tmp);
9180 tmp = load_reg(s, rs);
9181 gen_aa32_st32(tmp, addr, get_mem_index(s));
9182 tcg_temp_free_i32(tmp);
9183 tcg_gen_addi_i32(addr, addr, 4);
9184 tmp = load_reg(s, rd);
9185 gen_aa32_st32(tmp, addr, get_mem_index(s));
9186 tcg_temp_free_i32(tmp);
9188 if (insn & (1 << 21)) {
9189 /* Base writeback. */
9192 tcg_gen_addi_i32(addr, addr, offset - 4);
9193 store_reg(s, rn, addr);
9195 tcg_temp_free_i32(addr);
9197 } else if ((insn & (1 << 23)) == 0) {
9198 /* Load/store exclusive word. */
9199 addr = tcg_temp_local_new_i32();
9200 load_reg_var(s, addr, rn);
9201 tcg_gen_addi_i32(addr, addr, (insn & 0xff) << 2);
9202 if (insn & (1 << 20)) {
9203 gen_load_exclusive(s, rs, 15, addr, 2);
9205 gen_store_exclusive(s, rd, rs, 15, addr, 2);
9207 tcg_temp_free_i32(addr);
9208 } else if ((insn & (7 << 5)) == 0) {
9211 addr = tcg_temp_new_i32();
9212 tcg_gen_movi_i32(addr, s->pc);
9214 addr = load_reg(s, rn);
9216 tmp = load_reg(s, rm);
9217 tcg_gen_add_i32(addr, addr, tmp);
9218 if (insn & (1 << 4)) {
9220 tcg_gen_add_i32(addr, addr, tmp);
9221 tcg_temp_free_i32(tmp);
9222 tmp = tcg_temp_new_i32();
9223 gen_aa32_ld16u(tmp, addr, get_mem_index(s));
9225 tcg_temp_free_i32(tmp);
9226 tmp = tcg_temp_new_i32();
9227 gen_aa32_ld8u(tmp, addr, get_mem_index(s));
9229 tcg_temp_free_i32(addr);
9230 tcg_gen_shli_i32(tmp, tmp, 1);
9231 tcg_gen_addi_i32(tmp, tmp, s->pc);
9232 store_reg(s, 15, tmp);
9234 int op2 = (insn >> 6) & 0x3;
9235 op = (insn >> 4) & 0x3;
9240 /* Load/store exclusive byte/halfword/doubleword */
9247 /* Load-acquire/store-release */
9253 /* Load-acquire/store-release exclusive */
9257 addr = tcg_temp_local_new_i32();
9258 load_reg_var(s, addr, rn);
9260 if (insn & (1 << 20)) {
9261 tmp = tcg_temp_new_i32();
9264 gen_aa32_ld8u(tmp, addr, get_mem_index(s));
9267 gen_aa32_ld16u(tmp, addr, get_mem_index(s));
9270 gen_aa32_ld32u(tmp, addr, get_mem_index(s));
9275 store_reg(s, rs, tmp);
9277 tmp = load_reg(s, rs);
9280 gen_aa32_st8(tmp, addr, get_mem_index(s));
9283 gen_aa32_st16(tmp, addr, get_mem_index(s));
9286 gen_aa32_st32(tmp, addr, get_mem_index(s));
9291 tcg_temp_free_i32(tmp);
9293 } else if (insn & (1 << 20)) {
9294 gen_load_exclusive(s, rs, rd, addr, op);
9296 gen_store_exclusive(s, rm, rs, rd, addr, op);
9298 tcg_temp_free_i32(addr);
9301 /* Load/store multiple, RFE, SRS. */
9302 if (((insn >> 23) & 1) == ((insn >> 24) & 1)) {
9303 /* RFE, SRS: not available in user mode or on M profile */
9304 if (IS_USER(s) || arm_dc_feature(s, ARM_FEATURE_M)) {
9307 if (insn & (1 << 20)) {
9309 addr = load_reg(s, rn);
9310 if ((insn & (1 << 24)) == 0)
9311 tcg_gen_addi_i32(addr, addr, -8);
9312 /* Load PC into tmp and CPSR into tmp2. */
9313 tmp = tcg_temp_new_i32();
9314 gen_aa32_ld32u(tmp, addr, get_mem_index(s));
9315 tcg_gen_addi_i32(addr, addr, 4);
9316 tmp2 = tcg_temp_new_i32();
9317 gen_aa32_ld32u(tmp2, addr, get_mem_index(s));
9318 if (insn & (1 << 21)) {
9319 /* Base writeback. */
9320 if (insn & (1 << 24)) {
9321 tcg_gen_addi_i32(addr, addr, 4);
9323 tcg_gen_addi_i32(addr, addr, -4);
9325 store_reg(s, rn, addr);
9327 tcg_temp_free_i32(addr);
9329 gen_rfe(s, tmp, tmp2);
9332 gen_srs(s, (insn & 0x1f), (insn & (1 << 24)) ? 1 : 2,
9336 int i, loaded_base = 0;
9337 TCGv_i32 loaded_var;
9338 /* Load/store multiple. */
9339 addr = load_reg(s, rn);
9341 for (i = 0; i < 16; i++) {
9342 if (insn & (1 << i))
9345 if (insn & (1 << 24)) {
9346 tcg_gen_addi_i32(addr, addr, -offset);
9349 TCGV_UNUSED_I32(loaded_var);
9350 for (i = 0; i < 16; i++) {
9351 if ((insn & (1 << i)) == 0)
9353 if (insn & (1 << 20)) {
9355 tmp = tcg_temp_new_i32();
9356 gen_aa32_ld32u(tmp, addr, get_mem_index(s));
9359 } else if (i == rn) {
9363 store_reg(s, i, tmp);
9367 tmp = load_reg(s, i);
9368 gen_aa32_st32(tmp, addr, get_mem_index(s));
9369 tcg_temp_free_i32(tmp);
9371 tcg_gen_addi_i32(addr, addr, 4);
9374 store_reg(s, rn, loaded_var);
9376 if (insn & (1 << 21)) {
9377 /* Base register writeback. */
9378 if (insn & (1 << 24)) {
9379 tcg_gen_addi_i32(addr, addr, -offset);
9381 /* Fault if writeback register is in register list. */
9382 if (insn & (1 << rn))
9384 store_reg(s, rn, addr);
9386 tcg_temp_free_i32(addr);
9393 op = (insn >> 21) & 0xf;
9395 /* Halfword pack. */
9396 tmp = load_reg(s, rn);
9397 tmp2 = load_reg(s, rm);
9398 shift = ((insn >> 10) & 0x1c) | ((insn >> 6) & 0x3);
9399 if (insn & (1 << 5)) {
9403 tcg_gen_sari_i32(tmp2, tmp2, shift);
9404 tcg_gen_andi_i32(tmp, tmp, 0xffff0000);
9405 tcg_gen_ext16u_i32(tmp2, tmp2);
9409 tcg_gen_shli_i32(tmp2, tmp2, shift);
9410 tcg_gen_ext16u_i32(tmp, tmp);
9411 tcg_gen_andi_i32(tmp2, tmp2, 0xffff0000);
9413 tcg_gen_or_i32(tmp, tmp, tmp2);
9414 tcg_temp_free_i32(tmp2);
9415 store_reg(s, rd, tmp);
9417 /* Data processing register constant shift. */
9419 tmp = tcg_temp_new_i32();
9420 tcg_gen_movi_i32(tmp, 0);
9422 tmp = load_reg(s, rn);
9424 tmp2 = load_reg(s, rm);
9426 shiftop = (insn >> 4) & 3;
9427 shift = ((insn >> 6) & 3) | ((insn >> 10) & 0x1c);
9428 conds = (insn & (1 << 20)) != 0;
9429 logic_cc = (conds && thumb2_logic_op(op));
9430 gen_arm_shift_im(tmp2, shiftop, shift, logic_cc);
9431 if (gen_thumb2_data_op(s, op, conds, 0, tmp, tmp2))
9433 tcg_temp_free_i32(tmp2);
9435 store_reg(s, rd, tmp);
9437 tcg_temp_free_i32(tmp);
9441 case 13: /* Misc data processing. */
9442 op = ((insn >> 22) & 6) | ((insn >> 7) & 1);
9443 if (op < 4 && (insn & 0xf000) != 0xf000)
9446 case 0: /* Register controlled shift. */
9447 tmp = load_reg(s, rn);
9448 tmp2 = load_reg(s, rm);
9449 if ((insn & 0x70) != 0)
9451 op = (insn >> 21) & 3;
9452 logic_cc = (insn & (1 << 20)) != 0;
9453 gen_arm_shift_reg(tmp, op, tmp2, logic_cc);
9456 store_reg_bx(s, rd, tmp);
9458 case 1: /* Sign/zero extend. */
9459 tmp = load_reg(s, rm);
9460 shift = (insn >> 4) & 3;
9461 /* ??? In many cases it's not necessary to do a
9462 rotate, a shift is sufficient. */
9464 tcg_gen_rotri_i32(tmp, tmp, shift * 8);
9465 op = (insn >> 20) & 7;
9467 case 0: gen_sxth(tmp); break;
9468 case 1: gen_uxth(tmp); break;
9469 case 2: gen_sxtb16(tmp); break;
9470 case 3: gen_uxtb16(tmp); break;
9471 case 4: gen_sxtb(tmp); break;
9472 case 5: gen_uxtb(tmp); break;
9473 default: goto illegal_op;
9476 tmp2 = load_reg(s, rn);
9477 if ((op >> 1) == 1) {
9478 gen_add16(tmp, tmp2);
9480 tcg_gen_add_i32(tmp, tmp, tmp2);
9481 tcg_temp_free_i32(tmp2);
9484 store_reg(s, rd, tmp);
9486 case 2: /* SIMD add/subtract. */
9487 op = (insn >> 20) & 7;
9488 shift = (insn >> 4) & 7;
9489 if ((op & 3) == 3 || (shift & 3) == 3)
9491 tmp = load_reg(s, rn);
9492 tmp2 = load_reg(s, rm);
9493 gen_thumb2_parallel_addsub(op, shift, tmp, tmp2);
9494 tcg_temp_free_i32(tmp2);
9495 store_reg(s, rd, tmp);
9497 case 3: /* Other data processing. */
9498 op = ((insn >> 17) & 0x38) | ((insn >> 4) & 7);
9500 /* Saturating add/subtract. */
9501 tmp = load_reg(s, rn);
9502 tmp2 = load_reg(s, rm);
9504 gen_helper_double_saturate(tmp, cpu_env, tmp);
9506 gen_helper_sub_saturate(tmp, cpu_env, tmp2, tmp);
9508 gen_helper_add_saturate(tmp, cpu_env, tmp, tmp2);
9509 tcg_temp_free_i32(tmp2);
9511 tmp = load_reg(s, rn);
9513 case 0x0a: /* rbit */
9514 gen_helper_rbit(tmp, tmp);
9516 case 0x08: /* rev */
9517 tcg_gen_bswap32_i32(tmp, tmp);
9519 case 0x09: /* rev16 */
9522 case 0x0b: /* revsh */
9525 case 0x10: /* sel */
9526 tmp2 = load_reg(s, rm);
9527 tmp3 = tcg_temp_new_i32();
9528 tcg_gen_ld_i32(tmp3, cpu_env, offsetof(CPUARMState, GE));
9529 gen_helper_sel_flags(tmp, tmp3, tmp, tmp2);
9530 tcg_temp_free_i32(tmp3);
9531 tcg_temp_free_i32(tmp2);
9533 case 0x18: /* clz */
9534 gen_helper_clz(tmp, tmp);
9544 uint32_t sz = op & 0x3;
9545 uint32_t c = op & 0x8;
9547 if (!arm_dc_feature(s, ARM_FEATURE_CRC)) {
9551 tmp2 = load_reg(s, rm);
9553 tcg_gen_andi_i32(tmp2, tmp2, 0xff);
9554 } else if (sz == 1) {
9555 tcg_gen_andi_i32(tmp2, tmp2, 0xffff);
9557 tmp3 = tcg_const_i32(1 << sz);
9559 gen_helper_crc32c(tmp, tmp, tmp2, tmp3);
9561 gen_helper_crc32(tmp, tmp, tmp2, tmp3);
9563 tcg_temp_free_i32(tmp2);
9564 tcg_temp_free_i32(tmp3);
9571 store_reg(s, rd, tmp);
9573 case 4: case 5: /* 32-bit multiply. Sum of absolute differences. */
9574 op = (insn >> 4) & 0xf;
9575 tmp = load_reg(s, rn);
9576 tmp2 = load_reg(s, rm);
9577 switch ((insn >> 20) & 7) {
9578 case 0: /* 32 x 32 -> 32 */
9579 tcg_gen_mul_i32(tmp, tmp, tmp2);
9580 tcg_temp_free_i32(tmp2);
9582 tmp2 = load_reg(s, rs);
9584 tcg_gen_sub_i32(tmp, tmp2, tmp);
9586 tcg_gen_add_i32(tmp, tmp, tmp2);
9587 tcg_temp_free_i32(tmp2);
9590 case 1: /* 16 x 16 -> 32 */
9591 gen_mulxy(tmp, tmp2, op & 2, op & 1);
9592 tcg_temp_free_i32(tmp2);
9594 tmp2 = load_reg(s, rs);
9595 gen_helper_add_setq(tmp, cpu_env, tmp, tmp2);
9596 tcg_temp_free_i32(tmp2);
9599 case 2: /* Dual multiply add. */
9600 case 4: /* Dual multiply subtract. */
9602 gen_swap_half(tmp2);
9603 gen_smul_dual(tmp, tmp2);
9604 if (insn & (1 << 22)) {
9605 /* This subtraction cannot overflow. */
9606 tcg_gen_sub_i32(tmp, tmp, tmp2);
9608 /* This addition cannot overflow 32 bits;
9609 * however it may overflow considered as a signed
9610 * operation, in which case we must set the Q flag.
9612 gen_helper_add_setq(tmp, cpu_env, tmp, tmp2);
9614 tcg_temp_free_i32(tmp2);
9617 tmp2 = load_reg(s, rs);
9618 gen_helper_add_setq(tmp, cpu_env, tmp, tmp2);
9619 tcg_temp_free_i32(tmp2);
9622 case 3: /* 32 * 16 -> 32msb */
9624 tcg_gen_sari_i32(tmp2, tmp2, 16);
9627 tmp64 = gen_muls_i64_i32(tmp, tmp2);
9628 tcg_gen_shri_i64(tmp64, tmp64, 16);
9629 tmp = tcg_temp_new_i32();
9630 tcg_gen_trunc_i64_i32(tmp, tmp64);
9631 tcg_temp_free_i64(tmp64);
9634 tmp2 = load_reg(s, rs);
9635 gen_helper_add_setq(tmp, cpu_env, tmp, tmp2);
9636 tcg_temp_free_i32(tmp2);
9639 case 5: case 6: /* 32 * 32 -> 32msb (SMMUL, SMMLA, SMMLS) */
9640 tmp64 = gen_muls_i64_i32(tmp, tmp2);
9642 tmp = load_reg(s, rs);
9643 if (insn & (1 << 20)) {
9644 tmp64 = gen_addq_msw(tmp64, tmp);
9646 tmp64 = gen_subq_msw(tmp64, tmp);
9649 if (insn & (1 << 4)) {
9650 tcg_gen_addi_i64(tmp64, tmp64, 0x80000000u);
9652 tcg_gen_shri_i64(tmp64, tmp64, 32);
9653 tmp = tcg_temp_new_i32();
9654 tcg_gen_trunc_i64_i32(tmp, tmp64);
9655 tcg_temp_free_i64(tmp64);
9657 case 7: /* Unsigned sum of absolute differences. */
9658 gen_helper_usad8(tmp, tmp, tmp2);
9659 tcg_temp_free_i32(tmp2);
9661 tmp2 = load_reg(s, rs);
9662 tcg_gen_add_i32(tmp, tmp, tmp2);
9663 tcg_temp_free_i32(tmp2);
9667 store_reg(s, rd, tmp);
9669 case 6: case 7: /* 64-bit multiply, Divide. */
9670 op = ((insn >> 4) & 0xf) | ((insn >> 16) & 0x70);
9671 tmp = load_reg(s, rn);
9672 tmp2 = load_reg(s, rm);
9673 if ((op & 0x50) == 0x10) {
9675 if (!arm_dc_feature(s, ARM_FEATURE_THUMB_DIV)) {
9679 gen_helper_udiv(tmp, tmp, tmp2);
9681 gen_helper_sdiv(tmp, tmp, tmp2);
9682 tcg_temp_free_i32(tmp2);
9683 store_reg(s, rd, tmp);
9684 } else if ((op & 0xe) == 0xc) {
9685 /* Dual multiply accumulate long. */
9687 gen_swap_half(tmp2);
9688 gen_smul_dual(tmp, tmp2);
9690 tcg_gen_sub_i32(tmp, tmp, tmp2);
9692 tcg_gen_add_i32(tmp, tmp, tmp2);
9694 tcg_temp_free_i32(tmp2);
9696 tmp64 = tcg_temp_new_i64();
9697 tcg_gen_ext_i32_i64(tmp64, tmp);
9698 tcg_temp_free_i32(tmp);
9699 gen_addq(s, tmp64, rs, rd);
9700 gen_storeq_reg(s, rs, rd, tmp64);
9701 tcg_temp_free_i64(tmp64);
9704 /* Unsigned 64-bit multiply */
9705 tmp64 = gen_mulu_i64_i32(tmp, tmp2);
9709 gen_mulxy(tmp, tmp2, op & 2, op & 1);
9710 tcg_temp_free_i32(tmp2);
9711 tmp64 = tcg_temp_new_i64();
9712 tcg_gen_ext_i32_i64(tmp64, tmp);
9713 tcg_temp_free_i32(tmp);
9715 /* Signed 64-bit multiply */
9716 tmp64 = gen_muls_i64_i32(tmp, tmp2);
9721 gen_addq_lo(s, tmp64, rs);
9722 gen_addq_lo(s, tmp64, rd);
9723 } else if (op & 0x40) {
9724 /* 64-bit accumulate. */
9725 gen_addq(s, tmp64, rs, rd);
9727 gen_storeq_reg(s, rs, rd, tmp64);
9728 tcg_temp_free_i64(tmp64);
9733 case 6: case 7: case 14: case 15:
9735 if (((insn >> 24) & 3) == 3) {
9736 /* Translate into the equivalent ARM encoding. */
9737 insn = (insn & 0xe2ffffff) | ((insn & (1 << 28)) >> 4) | (1 << 28);
9738 if (disas_neon_data_insn(s, insn)) {
9741 } else if (((insn >> 8) & 0xe) == 10) {
9742 if (disas_vfp_insn(s, insn)) {
9746 if (insn & (1 << 28))
9748 if (disas_coproc_insn(s, insn)) {
9753 case 8: case 9: case 10: case 11:
9754 if (insn & (1 << 15)) {
9755 /* Branches, misc control. */
9756 if (insn & 0x5000) {
9757 /* Unconditional branch. */
9758 /* signextend(hw1[10:0]) -> offset[:12]. */
9759 offset = ((int32_t)insn << 5) >> 9 & ~(int32_t)0xfff;
9760 /* hw1[10:0] -> offset[11:1]. */
9761 offset |= (insn & 0x7ff) << 1;
9762 /* (~hw2[13, 11] ^ offset[24]) -> offset[23,22]
9763 offset[24:22] already have the same value because of the
9764 sign extension above. */
9765 offset ^= ((~insn) & (1 << 13)) << 10;
9766 offset ^= ((~insn) & (1 << 11)) << 11;
9768 if (insn & (1 << 14)) {
9769 /* Branch and link. */
9770 tcg_gen_movi_i32(cpu_R[14], s->pc | 1);
9774 if (insn & (1 << 12)) {
9779 offset &= ~(uint32_t)2;
9780 /* thumb2 bx, no need to check */
9781 gen_bx_im(s, offset);
9783 } else if (((insn >> 23) & 7) == 7) {
9785 if (insn & (1 << 13))
9788 if (insn & (1 << 26)) {
9789 if (!(insn & (1 << 20))) {
9790 /* Hypervisor call (v7) */
9791 int imm16 = extract32(insn, 16, 4) << 12
9792 | extract32(insn, 0, 12);
9799 /* Secure monitor call (v6+) */
9807 op = (insn >> 20) & 7;
9809 case 0: /* msr cpsr. */
9810 if (arm_dc_feature(s, ARM_FEATURE_M)) {
9811 tmp = load_reg(s, rn);
9812 addr = tcg_const_i32(insn & 0xff);
9813 gen_helper_v7m_msr(cpu_env, addr, tmp);
9814 tcg_temp_free_i32(addr);
9815 tcg_temp_free_i32(tmp);
9820 case 1: /* msr spsr. */
9821 if (arm_dc_feature(s, ARM_FEATURE_M)) {
9824 tmp = load_reg(s, rn);
9826 msr_mask(s, (insn >> 8) & 0xf, op == 1),
9830 case 2: /* cps, nop-hint. */
9831 if (((insn >> 8) & 7) == 0) {
9832 gen_nop_hint(s, insn & 0xff);
9834 /* Implemented as NOP in user mode. */
9839 if (insn & (1 << 10)) {
9840 if (insn & (1 << 7))
9842 if (insn & (1 << 6))
9844 if (insn & (1 << 5))
9846 if (insn & (1 << 9))
9847 imm = CPSR_A | CPSR_I | CPSR_F;
9849 if (insn & (1 << 8)) {
9851 imm |= (insn & 0x1f);
9854 gen_set_psr_im(s, offset, 0, imm);
9857 case 3: /* Special control operations. */
9859 op = (insn >> 4) & 0xf;
9867 /* These execute as NOPs. */
9874 /* Trivial implementation equivalent to bx. */
9875 tmp = load_reg(s, rn);
9878 case 5: /* Exception return. */
9882 if (rn != 14 || rd != 15) {
9885 tmp = load_reg(s, rn);
9886 tcg_gen_subi_i32(tmp, tmp, insn & 0xff);
9887 gen_exception_return(s, tmp);
9889 case 6: /* mrs cpsr. */
9890 tmp = tcg_temp_new_i32();
9891 if (arm_dc_feature(s, ARM_FEATURE_M)) {
9892 addr = tcg_const_i32(insn & 0xff);
9893 gen_helper_v7m_mrs(tmp, cpu_env, addr);
9894 tcg_temp_free_i32(addr);
9896 gen_helper_cpsr_read(tmp, cpu_env);
9898 store_reg(s, rd, tmp);
9900 case 7: /* mrs spsr. */
9901 /* Not accessible in user mode. */
9902 if (IS_USER(s) || arm_dc_feature(s, ARM_FEATURE_M)) {
9905 tmp = load_cpu_field(spsr);
9906 store_reg(s, rd, tmp);
9911 /* Conditional branch. */
9912 op = (insn >> 22) & 0xf;
9913 /* Generate a conditional jump to next instruction. */
9914 s->condlabel = gen_new_label();
9915 arm_gen_test_cc(op ^ 1, s->condlabel);
9918 /* offset[11:1] = insn[10:0] */
9919 offset = (insn & 0x7ff) << 1;
9920 /* offset[17:12] = insn[21:16]. */
9921 offset |= (insn & 0x003f0000) >> 4;
9922 /* offset[31:20] = insn[26]. */
9923 offset |= ((int32_t)((insn << 5) & 0x80000000)) >> 11;
9924 /* offset[18] = insn[13]. */
9925 offset |= (insn & (1 << 13)) << 5;
9926 /* offset[19] = insn[11]. */
9927 offset |= (insn & (1 << 11)) << 8;
9929 /* jump to the offset */
9930 gen_jmp(s, s->pc + offset);
9933 /* Data processing immediate. */
9934 if (insn & (1 << 25)) {
9935 if (insn & (1 << 24)) {
9936 if (insn & (1 << 20))
9938 /* Bitfield/Saturate. */
9939 op = (insn >> 21) & 7;
9941 shift = ((insn >> 6) & 3) | ((insn >> 10) & 0x1c);
9943 tmp = tcg_temp_new_i32();
9944 tcg_gen_movi_i32(tmp, 0);
9946 tmp = load_reg(s, rn);
9949 case 2: /* Signed bitfield extract. */
9951 if (shift + imm > 32)
9954 gen_sbfx(tmp, shift, imm);
9956 case 6: /* Unsigned bitfield extract. */
9958 if (shift + imm > 32)
9961 gen_ubfx(tmp, shift, (1u << imm) - 1);
9963 case 3: /* Bitfield insert/clear. */
9966 imm = imm + 1 - shift;
9968 tmp2 = load_reg(s, rd);
9969 tcg_gen_deposit_i32(tmp, tmp2, tmp, shift, imm);
9970 tcg_temp_free_i32(tmp2);
9975 default: /* Saturate. */
9978 tcg_gen_sari_i32(tmp, tmp, shift);
9980 tcg_gen_shli_i32(tmp, tmp, shift);
9982 tmp2 = tcg_const_i32(imm);
9985 if ((op & 1) && shift == 0)
9986 gen_helper_usat16(tmp, cpu_env, tmp, tmp2);
9988 gen_helper_usat(tmp, cpu_env, tmp, tmp2);
9991 if ((op & 1) && shift == 0)
9992 gen_helper_ssat16(tmp, cpu_env, tmp, tmp2);
9994 gen_helper_ssat(tmp, cpu_env, tmp, tmp2);
9996 tcg_temp_free_i32(tmp2);
9999 store_reg(s, rd, tmp);
10001 imm = ((insn & 0x04000000) >> 15)
10002 | ((insn & 0x7000) >> 4) | (insn & 0xff);
10003 if (insn & (1 << 22)) {
10004 /* 16-bit immediate. */
10005 imm |= (insn >> 4) & 0xf000;
10006 if (insn & (1 << 23)) {
10008 tmp = load_reg(s, rd);
10009 tcg_gen_ext16u_i32(tmp, tmp);
10010 tcg_gen_ori_i32(tmp, tmp, imm << 16);
10013 tmp = tcg_temp_new_i32();
10014 tcg_gen_movi_i32(tmp, imm);
10017 /* Add/sub 12-bit immediate. */
10019 offset = s->pc & ~(uint32_t)3;
10020 if (insn & (1 << 23))
10024 tmp = tcg_temp_new_i32();
10025 tcg_gen_movi_i32(tmp, offset);
10027 tmp = load_reg(s, rn);
10028 if (insn & (1 << 23))
10029 tcg_gen_subi_i32(tmp, tmp, imm);
10031 tcg_gen_addi_i32(tmp, tmp, imm);
10034 store_reg(s, rd, tmp);
10037 int shifter_out = 0;
10038 /* modified 12-bit immediate. */
10039 shift = ((insn & 0x04000000) >> 23) | ((insn & 0x7000) >> 12);
10040 imm = (insn & 0xff);
10043 /* Nothing to do. */
10045 case 1: /* 00XY00XY */
10048 case 2: /* XY00XY00 */
10052 case 3: /* XYXYXYXY */
10056 default: /* Rotated constant. */
10057 shift = (shift << 1) | (imm >> 7);
10059 imm = imm << (32 - shift);
10063 tmp2 = tcg_temp_new_i32();
10064 tcg_gen_movi_i32(tmp2, imm);
10065 rn = (insn >> 16) & 0xf;
10067 tmp = tcg_temp_new_i32();
10068 tcg_gen_movi_i32(tmp, 0);
10070 tmp = load_reg(s, rn);
10072 op = (insn >> 21) & 0xf;
10073 if (gen_thumb2_data_op(s, op, (insn & (1 << 20)) != 0,
10074 shifter_out, tmp, tmp2))
10076 tcg_temp_free_i32(tmp2);
10077 rd = (insn >> 8) & 0xf;
10079 store_reg(s, rd, tmp);
10081 tcg_temp_free_i32(tmp);
10086 case 12: /* Load/store single data item. */
10091 if ((insn & 0x01100000) == 0x01000000) {
10092 if (disas_neon_ls_insn(s, insn)) {
10097 op = ((insn >> 21) & 3) | ((insn >> 22) & 4);
10099 if (!(insn & (1 << 20))) {
10103 /* Byte or halfword load space with dest == r15 : memory hints.
10104 * Catch them early so we don't emit pointless addressing code.
10105 * This space is a mix of:
10106 * PLD/PLDW/PLI, which we implement as NOPs (note that unlike
10107 * the ARM encodings, PLDW space doesn't UNDEF for non-v7MP
10109 * unallocated hints, which must be treated as NOPs
10110 * UNPREDICTABLE space, which we NOP or UNDEF depending on
10111 * which is easiest for the decoding logic
10112 * Some space which must UNDEF
10114 int op1 = (insn >> 23) & 3;
10115 int op2 = (insn >> 6) & 0x3f;
10120 /* UNPREDICTABLE, unallocated hint or
10121 * PLD/PLDW/PLI (literal)
10126 return 0; /* PLD/PLDW/PLI or unallocated hint */
10128 if ((op2 == 0) || ((op2 & 0x3c) == 0x30)) {
10129 return 0; /* PLD/PLDW/PLI or unallocated hint */
10131 /* UNDEF space, or an UNPREDICTABLE */
10135 memidx = get_mem_index(s);
10137 addr = tcg_temp_new_i32();
10139 /* s->pc has already been incremented by 4. */
10140 imm = s->pc & 0xfffffffc;
10141 if (insn & (1 << 23))
10142 imm += insn & 0xfff;
10144 imm -= insn & 0xfff;
10145 tcg_gen_movi_i32(addr, imm);
10147 addr = load_reg(s, rn);
10148 if (insn & (1 << 23)) {
10149 /* Positive offset. */
10150 imm = insn & 0xfff;
10151 tcg_gen_addi_i32(addr, addr, imm);
10154 switch ((insn >> 8) & 0xf) {
10155 case 0x0: /* Shifted Register. */
10156 shift = (insn >> 4) & 0xf;
10158 tcg_temp_free_i32(addr);
10161 tmp = load_reg(s, rm);
10163 tcg_gen_shli_i32(tmp, tmp, shift);
10164 tcg_gen_add_i32(addr, addr, tmp);
10165 tcg_temp_free_i32(tmp);
10167 case 0xc: /* Negative offset. */
10168 tcg_gen_addi_i32(addr, addr, -imm);
10170 case 0xe: /* User privilege. */
10171 tcg_gen_addi_i32(addr, addr, imm);
10172 memidx = MMU_USER_IDX;
10174 case 0x9: /* Post-decrement. */
10176 /* Fall through. */
10177 case 0xb: /* Post-increment. */
10181 case 0xd: /* Pre-decrement. */
10183 /* Fall through. */
10184 case 0xf: /* Pre-increment. */
10185 tcg_gen_addi_i32(addr, addr, imm);
10189 tcg_temp_free_i32(addr);
10194 if (insn & (1 << 20)) {
10196 tmp = tcg_temp_new_i32();
10199 gen_aa32_ld8u(tmp, addr, memidx);
10202 gen_aa32_ld8s(tmp, addr, memidx);
10205 gen_aa32_ld16u(tmp, addr, memidx);
10208 gen_aa32_ld16s(tmp, addr, memidx);
10211 gen_aa32_ld32u(tmp, addr, memidx);
10214 tcg_temp_free_i32(tmp);
10215 tcg_temp_free_i32(addr);
10221 store_reg(s, rs, tmp);
10225 tmp = load_reg(s, rs);
10228 gen_aa32_st8(tmp, addr, memidx);
10231 gen_aa32_st16(tmp, addr, memidx);
10234 gen_aa32_st32(tmp, addr, memidx);
10237 tcg_temp_free_i32(tmp);
10238 tcg_temp_free_i32(addr);
10241 tcg_temp_free_i32(tmp);
10244 tcg_gen_addi_i32(addr, addr, imm);
10246 store_reg(s, rn, addr);
10248 tcg_temp_free_i32(addr);
10260 static void disas_thumb_insn(CPUARMState *env, DisasContext *s)
10262 uint32_t val, insn, op, rm, rn, rd, shift, cond;
10269 if (s->condexec_mask) {
10270 cond = s->condexec_cond;
10271 if (cond != 0x0e) { /* Skip conditional when condition is AL. */
10272 s->condlabel = gen_new_label();
10273 arm_gen_test_cc(cond ^ 1, s->condlabel);
10278 insn = arm_lduw_code(env, s->pc, s->bswap_code);
10281 switch (insn >> 12) {
10285 op = (insn >> 11) & 3;
10288 rn = (insn >> 3) & 7;
10289 tmp = load_reg(s, rn);
10290 if (insn & (1 << 10)) {
10292 tmp2 = tcg_temp_new_i32();
10293 tcg_gen_movi_i32(tmp2, (insn >> 6) & 7);
10296 rm = (insn >> 6) & 7;
10297 tmp2 = load_reg(s, rm);
10299 if (insn & (1 << 9)) {
10300 if (s->condexec_mask)
10301 tcg_gen_sub_i32(tmp, tmp, tmp2);
10303 gen_sub_CC(tmp, tmp, tmp2);
10305 if (s->condexec_mask)
10306 tcg_gen_add_i32(tmp, tmp, tmp2);
10308 gen_add_CC(tmp, tmp, tmp2);
10310 tcg_temp_free_i32(tmp2);
10311 store_reg(s, rd, tmp);
10313 /* shift immediate */
10314 rm = (insn >> 3) & 7;
10315 shift = (insn >> 6) & 0x1f;
10316 tmp = load_reg(s, rm);
10317 gen_arm_shift_im(tmp, op, shift, s->condexec_mask == 0);
10318 if (!s->condexec_mask)
10320 store_reg(s, rd, tmp);
10324 /* arithmetic large immediate */
10325 op = (insn >> 11) & 3;
10326 rd = (insn >> 8) & 0x7;
10327 if (op == 0) { /* mov */
10328 tmp = tcg_temp_new_i32();
10329 tcg_gen_movi_i32(tmp, insn & 0xff);
10330 if (!s->condexec_mask)
10332 store_reg(s, rd, tmp);
10334 tmp = load_reg(s, rd);
10335 tmp2 = tcg_temp_new_i32();
10336 tcg_gen_movi_i32(tmp2, insn & 0xff);
10339 gen_sub_CC(tmp, tmp, tmp2);
10340 tcg_temp_free_i32(tmp);
10341 tcg_temp_free_i32(tmp2);
10344 if (s->condexec_mask)
10345 tcg_gen_add_i32(tmp, tmp, tmp2);
10347 gen_add_CC(tmp, tmp, tmp2);
10348 tcg_temp_free_i32(tmp2);
10349 store_reg(s, rd, tmp);
10352 if (s->condexec_mask)
10353 tcg_gen_sub_i32(tmp, tmp, tmp2);
10355 gen_sub_CC(tmp, tmp, tmp2);
10356 tcg_temp_free_i32(tmp2);
10357 store_reg(s, rd, tmp);
10363 if (insn & (1 << 11)) {
10364 rd = (insn >> 8) & 7;
10365 /* load pc-relative. Bit 1 of PC is ignored. */
10366 val = s->pc + 2 + ((insn & 0xff) * 4);
10367 val &= ~(uint32_t)2;
10368 addr = tcg_temp_new_i32();
10369 tcg_gen_movi_i32(addr, val);
10370 tmp = tcg_temp_new_i32();
10371 gen_aa32_ld32u(tmp, addr, get_mem_index(s));
10372 tcg_temp_free_i32(addr);
10373 store_reg(s, rd, tmp);
10376 if (insn & (1 << 10)) {
10377 /* data processing extended or blx */
10378 rd = (insn & 7) | ((insn >> 4) & 8);
10379 rm = (insn >> 3) & 0xf;
10380 op = (insn >> 8) & 3;
10383 tmp = load_reg(s, rd);
10384 tmp2 = load_reg(s, rm);
10385 tcg_gen_add_i32(tmp, tmp, tmp2);
10386 tcg_temp_free_i32(tmp2);
10387 store_reg(s, rd, tmp);
10390 tmp = load_reg(s, rd);
10391 tmp2 = load_reg(s, rm);
10392 gen_sub_CC(tmp, tmp, tmp2);
10393 tcg_temp_free_i32(tmp2);
10394 tcg_temp_free_i32(tmp);
10396 case 2: /* mov/cpy */
10397 tmp = load_reg(s, rm);
10398 store_reg(s, rd, tmp);
10400 case 3:/* branch [and link] exchange thumb register */
10401 tmp = load_reg(s, rm);
10402 if (insn & (1 << 7)) {
10404 val = (uint32_t)s->pc | 1;
10405 tmp2 = tcg_temp_new_i32();
10406 tcg_gen_movi_i32(tmp2, val);
10407 store_reg(s, 14, tmp2);
10409 /* already thumb, no need to check */
10416 /* data processing register */
10418 rm = (insn >> 3) & 7;
10419 op = (insn >> 6) & 0xf;
10420 if (op == 2 || op == 3 || op == 4 || op == 7) {
10421 /* the shift/rotate ops want the operands backwards */
10430 if (op == 9) { /* neg */
10431 tmp = tcg_temp_new_i32();
10432 tcg_gen_movi_i32(tmp, 0);
10433 } else if (op != 0xf) { /* mvn doesn't read its first operand */
10434 tmp = load_reg(s, rd);
10436 TCGV_UNUSED_I32(tmp);
10439 tmp2 = load_reg(s, rm);
10441 case 0x0: /* and */
10442 tcg_gen_and_i32(tmp, tmp, tmp2);
10443 if (!s->condexec_mask)
10446 case 0x1: /* eor */
10447 tcg_gen_xor_i32(tmp, tmp, tmp2);
10448 if (!s->condexec_mask)
10451 case 0x2: /* lsl */
10452 if (s->condexec_mask) {
10453 gen_shl(tmp2, tmp2, tmp);
10455 gen_helper_shl_cc(tmp2, cpu_env, tmp2, tmp);
10456 gen_logic_CC(tmp2);
10459 case 0x3: /* lsr */
10460 if (s->condexec_mask) {
10461 gen_shr(tmp2, tmp2, tmp);
10463 gen_helper_shr_cc(tmp2, cpu_env, tmp2, tmp);
10464 gen_logic_CC(tmp2);
10467 case 0x4: /* asr */
10468 if (s->condexec_mask) {
10469 gen_sar(tmp2, tmp2, tmp);
10471 gen_helper_sar_cc(tmp2, cpu_env, tmp2, tmp);
10472 gen_logic_CC(tmp2);
10475 case 0x5: /* adc */
10476 if (s->condexec_mask) {
10477 gen_adc(tmp, tmp2);
10479 gen_adc_CC(tmp, tmp, tmp2);
10482 case 0x6: /* sbc */
10483 if (s->condexec_mask) {
10484 gen_sub_carry(tmp, tmp, tmp2);
10486 gen_sbc_CC(tmp, tmp, tmp2);
10489 case 0x7: /* ror */
10490 if (s->condexec_mask) {
10491 tcg_gen_andi_i32(tmp, tmp, 0x1f);
10492 tcg_gen_rotr_i32(tmp2, tmp2, tmp);
10494 gen_helper_ror_cc(tmp2, cpu_env, tmp2, tmp);
10495 gen_logic_CC(tmp2);
10498 case 0x8: /* tst */
10499 tcg_gen_and_i32(tmp, tmp, tmp2);
10503 case 0x9: /* neg */
10504 if (s->condexec_mask)
10505 tcg_gen_neg_i32(tmp, tmp2);
10507 gen_sub_CC(tmp, tmp, tmp2);
10509 case 0xa: /* cmp */
10510 gen_sub_CC(tmp, tmp, tmp2);
10513 case 0xb: /* cmn */
10514 gen_add_CC(tmp, tmp, tmp2);
10517 case 0xc: /* orr */
10518 tcg_gen_or_i32(tmp, tmp, tmp2);
10519 if (!s->condexec_mask)
10522 case 0xd: /* mul */
10523 tcg_gen_mul_i32(tmp, tmp, tmp2);
10524 if (!s->condexec_mask)
10527 case 0xe: /* bic */
10528 tcg_gen_andc_i32(tmp, tmp, tmp2);
10529 if (!s->condexec_mask)
10532 case 0xf: /* mvn */
10533 tcg_gen_not_i32(tmp2, tmp2);
10534 if (!s->condexec_mask)
10535 gen_logic_CC(tmp2);
10542 store_reg(s, rm, tmp2);
10544 tcg_temp_free_i32(tmp);
10546 store_reg(s, rd, tmp);
10547 tcg_temp_free_i32(tmp2);
10550 tcg_temp_free_i32(tmp);
10551 tcg_temp_free_i32(tmp2);
10556 /* load/store register offset. */
10558 rn = (insn >> 3) & 7;
10559 rm = (insn >> 6) & 7;
10560 op = (insn >> 9) & 7;
10561 addr = load_reg(s, rn);
10562 tmp = load_reg(s, rm);
10563 tcg_gen_add_i32(addr, addr, tmp);
10564 tcg_temp_free_i32(tmp);
10566 if (op < 3) { /* store */
10567 tmp = load_reg(s, rd);
10569 tmp = tcg_temp_new_i32();
10574 gen_aa32_st32(tmp, addr, get_mem_index(s));
10577 gen_aa32_st16(tmp, addr, get_mem_index(s));
10580 gen_aa32_st8(tmp, addr, get_mem_index(s));
10582 case 3: /* ldrsb */
10583 gen_aa32_ld8s(tmp, addr, get_mem_index(s));
10586 gen_aa32_ld32u(tmp, addr, get_mem_index(s));
10589 gen_aa32_ld16u(tmp, addr, get_mem_index(s));
10592 gen_aa32_ld8u(tmp, addr, get_mem_index(s));
10594 case 7: /* ldrsh */
10595 gen_aa32_ld16s(tmp, addr, get_mem_index(s));
10598 if (op >= 3) { /* load */
10599 store_reg(s, rd, tmp);
10601 tcg_temp_free_i32(tmp);
10603 tcg_temp_free_i32(addr);
10607 /* load/store word immediate offset */
10609 rn = (insn >> 3) & 7;
10610 addr = load_reg(s, rn);
10611 val = (insn >> 4) & 0x7c;
10612 tcg_gen_addi_i32(addr, addr, val);
10614 if (insn & (1 << 11)) {
10616 tmp = tcg_temp_new_i32();
10617 gen_aa32_ld32u(tmp, addr, get_mem_index(s));
10618 store_reg(s, rd, tmp);
10621 tmp = load_reg(s, rd);
10622 gen_aa32_st32(tmp, addr, get_mem_index(s));
10623 tcg_temp_free_i32(tmp);
10625 tcg_temp_free_i32(addr);
10629 /* load/store byte immediate offset */
10631 rn = (insn >> 3) & 7;
10632 addr = load_reg(s, rn);
10633 val = (insn >> 6) & 0x1f;
10634 tcg_gen_addi_i32(addr, addr, val);
10636 if (insn & (1 << 11)) {
10638 tmp = tcg_temp_new_i32();
10639 gen_aa32_ld8u(tmp, addr, get_mem_index(s));
10640 store_reg(s, rd, tmp);
10643 tmp = load_reg(s, rd);
10644 gen_aa32_st8(tmp, addr, get_mem_index(s));
10645 tcg_temp_free_i32(tmp);
10647 tcg_temp_free_i32(addr);
10651 /* load/store halfword immediate offset */
10653 rn = (insn >> 3) & 7;
10654 addr = load_reg(s, rn);
10655 val = (insn >> 5) & 0x3e;
10656 tcg_gen_addi_i32(addr, addr, val);
10658 if (insn & (1 << 11)) {
10660 tmp = tcg_temp_new_i32();
10661 gen_aa32_ld16u(tmp, addr, get_mem_index(s));
10662 store_reg(s, rd, tmp);
10665 tmp = load_reg(s, rd);
10666 gen_aa32_st16(tmp, addr, get_mem_index(s));
10667 tcg_temp_free_i32(tmp);
10669 tcg_temp_free_i32(addr);
10673 /* load/store from stack */
10674 rd = (insn >> 8) & 7;
10675 addr = load_reg(s, 13);
10676 val = (insn & 0xff) * 4;
10677 tcg_gen_addi_i32(addr, addr, val);
10679 if (insn & (1 << 11)) {
10681 tmp = tcg_temp_new_i32();
10682 gen_aa32_ld32u(tmp, addr, get_mem_index(s));
10683 store_reg(s, rd, tmp);
10686 tmp = load_reg(s, rd);
10687 gen_aa32_st32(tmp, addr, get_mem_index(s));
10688 tcg_temp_free_i32(tmp);
10690 tcg_temp_free_i32(addr);
10694 /* add to high reg */
10695 rd = (insn >> 8) & 7;
10696 if (insn & (1 << 11)) {
10698 tmp = load_reg(s, 13);
10700 /* PC. bit 1 is ignored. */
10701 tmp = tcg_temp_new_i32();
10702 tcg_gen_movi_i32(tmp, (s->pc + 2) & ~(uint32_t)2);
10704 val = (insn & 0xff) * 4;
10705 tcg_gen_addi_i32(tmp, tmp, val);
10706 store_reg(s, rd, tmp);
10711 op = (insn >> 8) & 0xf;
10714 /* adjust stack pointer */
10715 tmp = load_reg(s, 13);
10716 val = (insn & 0x7f) * 4;
10717 if (insn & (1 << 7))
10718 val = -(int32_t)val;
10719 tcg_gen_addi_i32(tmp, tmp, val);
10720 store_reg(s, 13, tmp);
10723 case 2: /* sign/zero extend. */
10726 rm = (insn >> 3) & 7;
10727 tmp = load_reg(s, rm);
10728 switch ((insn >> 6) & 3) {
10729 case 0: gen_sxth(tmp); break;
10730 case 1: gen_sxtb(tmp); break;
10731 case 2: gen_uxth(tmp); break;
10732 case 3: gen_uxtb(tmp); break;
10734 store_reg(s, rd, tmp);
10736 case 4: case 5: case 0xc: case 0xd:
10738 addr = load_reg(s, 13);
10739 if (insn & (1 << 8))
10743 for (i = 0; i < 8; i++) {
10744 if (insn & (1 << i))
10747 if ((insn & (1 << 11)) == 0) {
10748 tcg_gen_addi_i32(addr, addr, -offset);
10750 for (i = 0; i < 8; i++) {
10751 if (insn & (1 << i)) {
10752 if (insn & (1 << 11)) {
10754 tmp = tcg_temp_new_i32();
10755 gen_aa32_ld32u(tmp, addr, get_mem_index(s));
10756 store_reg(s, i, tmp);
10759 tmp = load_reg(s, i);
10760 gen_aa32_st32(tmp, addr, get_mem_index(s));
10761 tcg_temp_free_i32(tmp);
10763 /* advance to the next address. */
10764 tcg_gen_addi_i32(addr, addr, 4);
10767 TCGV_UNUSED_I32(tmp);
10768 if (insn & (1 << 8)) {
10769 if (insn & (1 << 11)) {
10771 tmp = tcg_temp_new_i32();
10772 gen_aa32_ld32u(tmp, addr, get_mem_index(s));
10773 /* don't set the pc until the rest of the instruction
10777 tmp = load_reg(s, 14);
10778 gen_aa32_st32(tmp, addr, get_mem_index(s));
10779 tcg_temp_free_i32(tmp);
10781 tcg_gen_addi_i32(addr, addr, 4);
10783 if ((insn & (1 << 11)) == 0) {
10784 tcg_gen_addi_i32(addr, addr, -offset);
10786 /* write back the new stack pointer */
10787 store_reg(s, 13, addr);
10788 /* set the new PC value */
10789 if ((insn & 0x0900) == 0x0900) {
10790 store_reg_from_load(s, 15, tmp);
10794 case 1: case 3: case 9: case 11: /* czb */
10796 tmp = load_reg(s, rm);
10797 s->condlabel = gen_new_label();
10799 if (insn & (1 << 11))
10800 tcg_gen_brcondi_i32(TCG_COND_EQ, tmp, 0, s->condlabel);
10802 tcg_gen_brcondi_i32(TCG_COND_NE, tmp, 0, s->condlabel);
10803 tcg_temp_free_i32(tmp);
10804 offset = ((insn & 0xf8) >> 2) | (insn & 0x200) >> 3;
10805 val = (uint32_t)s->pc + 2;
10810 case 15: /* IT, nop-hint. */
10811 if ((insn & 0xf) == 0) {
10812 gen_nop_hint(s, (insn >> 4) & 0xf);
10816 s->condexec_cond = (insn >> 4) & 0xe;
10817 s->condexec_mask = insn & 0x1f;
10818 /* No actual code generated for this insn, just setup state. */
10821 case 0xe: /* bkpt */
10823 int imm8 = extract32(insn, 0, 8);
10825 gen_exception_insn(s, 2, EXCP_BKPT, syn_aa32_bkpt(imm8, true));
10829 case 0xa: /* rev */
10831 rn = (insn >> 3) & 0x7;
10833 tmp = load_reg(s, rn);
10834 switch ((insn >> 6) & 3) {
10835 case 0: tcg_gen_bswap32_i32(tmp, tmp); break;
10836 case 1: gen_rev16(tmp); break;
10837 case 3: gen_revsh(tmp); break;
10838 default: goto illegal_op;
10840 store_reg(s, rd, tmp);
10844 switch ((insn >> 5) & 7) {
10848 if (((insn >> 3) & 1) != s->bswap_code) {
10849 /* Dynamic endianness switching not implemented. */
10850 qemu_log_mask(LOG_UNIMP, "arm: unimplemented setend\n");
10860 if (arm_dc_feature(s, ARM_FEATURE_M)) {
10861 tmp = tcg_const_i32((insn & (1 << 4)) != 0);
10864 addr = tcg_const_i32(19);
10865 gen_helper_v7m_msr(cpu_env, addr, tmp);
10866 tcg_temp_free_i32(addr);
10870 addr = tcg_const_i32(16);
10871 gen_helper_v7m_msr(cpu_env, addr, tmp);
10872 tcg_temp_free_i32(addr);
10874 tcg_temp_free_i32(tmp);
10877 if (insn & (1 << 4)) {
10878 shift = CPSR_A | CPSR_I | CPSR_F;
10882 gen_set_psr_im(s, ((insn & 7) << 6), 0, shift);
10897 /* load/store multiple */
10898 TCGv_i32 loaded_var;
10899 TCGV_UNUSED_I32(loaded_var);
10900 rn = (insn >> 8) & 0x7;
10901 addr = load_reg(s, rn);
10902 for (i = 0; i < 8; i++) {
10903 if (insn & (1 << i)) {
10904 if (insn & (1 << 11)) {
10906 tmp = tcg_temp_new_i32();
10907 gen_aa32_ld32u(tmp, addr, get_mem_index(s));
10911 store_reg(s, i, tmp);
10915 tmp = load_reg(s, i);
10916 gen_aa32_st32(tmp, addr, get_mem_index(s));
10917 tcg_temp_free_i32(tmp);
10919 /* advance to the next address */
10920 tcg_gen_addi_i32(addr, addr, 4);
10923 if ((insn & (1 << rn)) == 0) {
10924 /* base reg not in list: base register writeback */
10925 store_reg(s, rn, addr);
10927 /* base reg in list: if load, complete it now */
10928 if (insn & (1 << 11)) {
10929 store_reg(s, rn, loaded_var);
10931 tcg_temp_free_i32(addr);
10936 /* conditional branch or swi */
10937 cond = (insn >> 8) & 0xf;
10943 gen_set_pc_im(s, s->pc);
10944 s->svc_imm = extract32(insn, 0, 8);
10945 s->is_jmp = DISAS_SWI;
10948 /* generate a conditional jump to next instruction */
10949 s->condlabel = gen_new_label();
10950 arm_gen_test_cc(cond ^ 1, s->condlabel);
10953 /* jump to the offset */
10954 val = (uint32_t)s->pc + 2;
10955 offset = ((int32_t)insn << 24) >> 24;
10956 val += offset << 1;
10961 if (insn & (1 << 11)) {
10962 if (disas_thumb2_insn(env, s, insn))
10966 /* unconditional branch */
10967 val = (uint32_t)s->pc;
10968 offset = ((int32_t)insn << 21) >> 21;
10969 val += (offset << 1) + 2;
10974 if (disas_thumb2_insn(env, s, insn))
10980 gen_exception_insn(s, 4, EXCP_UDEF, syn_uncategorized());
10984 gen_exception_insn(s, 2, EXCP_UDEF, syn_uncategorized());
10987 /* generate intermediate code in gen_opc_buf and gen_opparam_buf for
10988 basic block 'tb'. If search_pc is TRUE, also generate PC
10989 information for each intermediate instruction. */
10990 static inline void gen_intermediate_code_internal(ARMCPU *cpu,
10991 TranslationBlock *tb,
10994 CPUState *cs = CPU(cpu);
10995 CPUARMState *env = &cpu->env;
10996 DisasContext dc1, *dc = &dc1;
10998 uint16_t *gen_opc_end;
11000 target_ulong pc_start;
11001 target_ulong next_page_start;
11005 /* generate intermediate code */
11007 /* The A64 decoder has its own top level loop, because it doesn't need
11008 * the A32/T32 complexity to do with conditional execution/IT blocks/etc.
11010 if (ARM_TBFLAG_AARCH64_STATE(tb->flags)) {
11011 gen_intermediate_code_internal_a64(cpu, tb, search_pc);
11019 gen_opc_end = tcg_ctx.gen_opc_buf + OPC_MAX_SIZE;
11021 dc->is_jmp = DISAS_NEXT;
11023 dc->singlestep_enabled = cs->singlestep_enabled;
11027 dc->thumb = ARM_TBFLAG_THUMB(tb->flags);
11028 dc->bswap_code = ARM_TBFLAG_BSWAP_CODE(tb->flags);
11029 dc->condexec_mask = (ARM_TBFLAG_CONDEXEC(tb->flags) & 0xf) << 1;
11030 dc->condexec_cond = ARM_TBFLAG_CONDEXEC(tb->flags) >> 4;
11031 #if !defined(CONFIG_USER_ONLY)
11032 dc->user = (ARM_TBFLAG_PRIV(tb->flags) == 0);
11034 dc->cpacr_fpen = ARM_TBFLAG_CPACR_FPEN(tb->flags);
11035 dc->vfp_enabled = ARM_TBFLAG_VFPEN(tb->flags);
11036 dc->vec_len = ARM_TBFLAG_VECLEN(tb->flags);
11037 dc->vec_stride = ARM_TBFLAG_VECSTRIDE(tb->flags);
11038 dc->c15_cpar = ARM_TBFLAG_XSCALE_CPAR(tb->flags);
11039 dc->cp_regs = cpu->cp_regs;
11040 dc->current_el = arm_current_el(env);
11041 dc->features = env->features;
11043 /* Single step state. The code-generation logic here is:
11045 * generate code with no special handling for single-stepping (except
11046 * that anything that can make us go to SS_ACTIVE == 1 must end the TB;
11047 * this happens anyway because those changes are all system register or
11049 * SS_ACTIVE == 1, PSTATE.SS == 1: (active-not-pending)
11050 * emit code for one insn
11051 * emit code to clear PSTATE.SS
11052 * emit code to generate software step exception for completed step
11053 * end TB (as usual for having generated an exception)
11054 * SS_ACTIVE == 1, PSTATE.SS == 0: (active-pending)
11055 * emit code to generate a software step exception
11058 dc->ss_active = ARM_TBFLAG_SS_ACTIVE(tb->flags);
11059 dc->pstate_ss = ARM_TBFLAG_PSTATE_SS(tb->flags);
11060 dc->is_ldex = false;
11061 dc->ss_same_el = false; /* Can't be true since EL_d must be AArch64 */
11063 cpu_F0s = tcg_temp_new_i32();
11064 cpu_F1s = tcg_temp_new_i32();
11065 cpu_F0d = tcg_temp_new_i64();
11066 cpu_F1d = tcg_temp_new_i64();
11069 /* FIXME: cpu_M0 can probably be the same as cpu_V0. */
11070 cpu_M0 = tcg_temp_new_i64();
11071 next_page_start = (pc_start & TARGET_PAGE_MASK) + TARGET_PAGE_SIZE;
11074 max_insns = tb->cflags & CF_COUNT_MASK;
11075 if (max_insns == 0)
11076 max_insns = CF_COUNT_MASK;
11080 tcg_clear_temp_count();
11082 /* A note on handling of the condexec (IT) bits:
11084 * We want to avoid the overhead of having to write the updated condexec
11085 * bits back to the CPUARMState for every instruction in an IT block. So:
11086 * (1) if the condexec bits are not already zero then we write
11087 * zero back into the CPUARMState now. This avoids complications trying
11088 * to do it at the end of the block. (For example if we don't do this
11089 * it's hard to identify whether we can safely skip writing condexec
11090 * at the end of the TB, which we definitely want to do for the case
11091 * where a TB doesn't do anything with the IT state at all.)
11092 * (2) if we are going to leave the TB then we call gen_set_condexec()
11093 * which will write the correct value into CPUARMState if zero is wrong.
11094 * This is done both for leaving the TB at the end, and for leaving
11095 * it because of an exception we know will happen, which is done in
11096 * gen_exception_insn(). The latter is necessary because we need to
11097 * leave the TB with the PC/IT state just prior to execution of the
11098 * instruction which caused the exception.
11099 * (3) if we leave the TB unexpectedly (eg a data abort on a load)
11100 * then the CPUARMState will be wrong and we need to reset it.
11101 * This is handled in the same way as restoration of the
11102 * PC in these situations: we will be called again with search_pc=1
11103 * and generate a mapping of the condexec bits for each PC in
11104 * gen_opc_condexec_bits[]. restore_state_to_opc() then uses
11105 * this to restore the condexec bits.
11107 * Note that there are no instructions which can read the condexec
11108 * bits, and none which can write non-static values to them, so
11109 * we don't need to care about whether CPUARMState is correct in the
11113 /* Reset the conditional execution bits immediately. This avoids
11114 complications trying to do it at the end of the block. */
11115 if (dc->condexec_mask || dc->condexec_cond)
11117 TCGv_i32 tmp = tcg_temp_new_i32();
11118 tcg_gen_movi_i32(tmp, 0);
11119 store_cpu_field(tmp, condexec_bits);
11122 #ifdef CONFIG_USER_ONLY
11123 /* Intercept jump to the magic kernel page. */
11124 if (dc->pc >= 0xffff0000) {
11125 /* We always get here via a jump, so know we are not in a
11126 conditional execution block. */
11127 gen_exception_internal(EXCP_KERNEL_TRAP);
11128 dc->is_jmp = DISAS_UPDATE;
11132 if (dc->pc >= 0xfffffff0 && arm_dc_feature(dc, ARM_FEATURE_M)) {
11133 /* We always get here via a jump, so know we are not in a
11134 conditional execution block. */
11135 gen_exception_internal(EXCP_EXCEPTION_EXIT);
11136 dc->is_jmp = DISAS_UPDATE;
11141 if (unlikely(!QTAILQ_EMPTY(&cs->breakpoints))) {
11142 QTAILQ_FOREACH(bp, &cs->breakpoints, entry) {
11143 if (bp->pc == dc->pc) {
11144 gen_exception_internal_insn(dc, 0, EXCP_DEBUG);
11145 /* Advance PC so that clearing the breakpoint will
11146 invalidate this TB. */
11148 goto done_generating;
11153 j = tcg_ctx.gen_opc_ptr - tcg_ctx.gen_opc_buf;
11157 tcg_ctx.gen_opc_instr_start[lj++] = 0;
11159 tcg_ctx.gen_opc_pc[lj] = dc->pc;
11160 gen_opc_condexec_bits[lj] = (dc->condexec_cond << 4) | (dc->condexec_mask >> 1);
11161 tcg_ctx.gen_opc_instr_start[lj] = 1;
11162 tcg_ctx.gen_opc_icount[lj] = num_insns;
11165 if (num_insns + 1 == max_insns && (tb->cflags & CF_LAST_IO))
11168 if (unlikely(qemu_loglevel_mask(CPU_LOG_TB_OP | CPU_LOG_TB_OP_OPT))) {
11169 tcg_gen_debug_insn_start(dc->pc);
11172 if (dc->ss_active && !dc->pstate_ss) {
11173 /* Singlestep state is Active-pending.
11174 * If we're in this state at the start of a TB then either
11175 * a) we just took an exception to an EL which is being debugged
11176 * and this is the first insn in the exception handler
11177 * b) debug exceptions were masked and we just unmasked them
11178 * without changing EL (eg by clearing PSTATE.D)
11179 * In either case we're going to take a swstep exception in the
11180 * "did not step an insn" case, and so the syndrome ISV and EX
11181 * bits should be zero.
11183 assert(num_insns == 0);
11184 gen_exception(EXCP_UDEF, syn_swstep(dc->ss_same_el, 0, 0));
11185 goto done_generating;
11189 disas_thumb_insn(env, dc);
11190 if (dc->condexec_mask) {
11191 dc->condexec_cond = (dc->condexec_cond & 0xe)
11192 | ((dc->condexec_mask >> 4) & 1);
11193 dc->condexec_mask = (dc->condexec_mask << 1) & 0x1f;
11194 if (dc->condexec_mask == 0) {
11195 dc->condexec_cond = 0;
11199 unsigned int insn = arm_ldl_code(env, dc->pc, dc->bswap_code);
11201 disas_arm_insn(dc, insn);
11204 if (dc->condjmp && !dc->is_jmp) {
11205 gen_set_label(dc->condlabel);
11209 if (tcg_check_temp_count()) {
11210 fprintf(stderr, "TCG temporary leak before "TARGET_FMT_lx"\n",
11214 /* Translation stops when a conditional branch is encountered.
11215 * Otherwise the subsequent code could get translated several times.
11216 * Also stop translation when a page boundary is reached. This
11217 * ensures prefetch aborts occur at the right place. */
11219 } while (!dc->is_jmp && tcg_ctx.gen_opc_ptr < gen_opc_end &&
11220 !cs->singlestep_enabled &&
11223 dc->pc < next_page_start &&
11224 num_insns < max_insns);
11226 if (tb->cflags & CF_LAST_IO) {
11228 /* FIXME: This can theoretically happen with self-modifying
11230 cpu_abort(cs, "IO on conditional branch instruction");
11235 /* At this stage dc->condjmp will only be set when the skipped
11236 instruction was a conditional branch or trap, and the PC has
11237 already been written. */
11238 if (unlikely(cs->singlestep_enabled || dc->ss_active)) {
11239 /* Make sure the pc is updated, and raise a debug exception. */
11241 gen_set_condexec(dc);
11242 if (dc->is_jmp == DISAS_SWI) {
11243 gen_ss_advance(dc);
11244 gen_exception(EXCP_SWI, syn_aa32_svc(dc->svc_imm, dc->thumb));
11245 } else if (dc->is_jmp == DISAS_HVC) {
11246 gen_ss_advance(dc);
11247 gen_exception(EXCP_HVC, syn_aa32_hvc(dc->svc_imm));
11248 } else if (dc->is_jmp == DISAS_SMC) {
11249 gen_ss_advance(dc);
11250 gen_exception(EXCP_SMC, syn_aa32_smc());
11251 } else if (dc->ss_active) {
11252 gen_step_complete_exception(dc);
11254 gen_exception_internal(EXCP_DEBUG);
11256 gen_set_label(dc->condlabel);
11258 if (dc->condjmp || !dc->is_jmp) {
11259 gen_set_pc_im(dc, dc->pc);
11262 gen_set_condexec(dc);
11263 if (dc->is_jmp == DISAS_SWI && !dc->condjmp) {
11264 gen_ss_advance(dc);
11265 gen_exception(EXCP_SWI, syn_aa32_svc(dc->svc_imm, dc->thumb));
11266 } else if (dc->is_jmp == DISAS_HVC && !dc->condjmp) {
11267 gen_ss_advance(dc);
11268 gen_exception(EXCP_HVC, syn_aa32_hvc(dc->svc_imm));
11269 } else if (dc->is_jmp == DISAS_SMC && !dc->condjmp) {
11270 gen_ss_advance(dc);
11271 gen_exception(EXCP_SMC, syn_aa32_smc());
11272 } else if (dc->ss_active) {
11273 gen_step_complete_exception(dc);
11275 /* FIXME: Single stepping a WFI insn will not halt
11277 gen_exception_internal(EXCP_DEBUG);
11280 /* While branches must always occur at the end of an IT block,
11281 there are a few other things that can cause us to terminate
11282 the TB in the middle of an IT block:
11283 - Exception generating instructions (bkpt, swi, undefined).
11285 - Hardware watchpoints.
11286 Hardware breakpoints have already been handled and skip this code.
11288 gen_set_condexec(dc);
11289 switch(dc->is_jmp) {
11291 gen_goto_tb(dc, 1, dc->pc);
11296 /* indicate that the hash table must be used to find the next TB */
11297 tcg_gen_exit_tb(0);
11299 case DISAS_TB_JUMP:
11300 /* nothing more to generate */
11303 gen_helper_wfi(cpu_env);
11306 gen_helper_wfe(cpu_env);
11309 gen_exception(EXCP_SWI, syn_aa32_svc(dc->svc_imm, dc->thumb));
11312 gen_exception(EXCP_HVC, syn_aa32_hvc(dc->svc_imm));
11315 gen_exception(EXCP_SMC, syn_aa32_smc());
11319 gen_set_label(dc->condlabel);
11320 gen_set_condexec(dc);
11321 gen_goto_tb(dc, 1, dc->pc);
11327 gen_tb_end(tb, num_insns);
11328 *tcg_ctx.gen_opc_ptr = INDEX_op_end;
11331 if (qemu_loglevel_mask(CPU_LOG_TB_IN_ASM)) {
11332 qemu_log("----------------\n");
11333 qemu_log("IN: %s\n", lookup_symbol(pc_start));
11334 log_target_disas(env, pc_start, dc->pc - pc_start,
11335 dc->thumb | (dc->bswap_code << 1));
11340 j = tcg_ctx.gen_opc_ptr - tcg_ctx.gen_opc_buf;
11343 tcg_ctx.gen_opc_instr_start[lj++] = 0;
11345 tb->size = dc->pc - pc_start;
11346 tb->icount = num_insns;
11350 void gen_intermediate_code(CPUARMState *env, TranslationBlock *tb)
11352 gen_intermediate_code_internal(arm_env_get_cpu(env), tb, false);
11355 void gen_intermediate_code_pc(CPUARMState *env, TranslationBlock *tb)
11357 gen_intermediate_code_internal(arm_env_get_cpu(env), tb, true);
11360 static const char *cpu_mode_names[16] = {
11361 "usr", "fiq", "irq", "svc", "???", "???", "mon", "abt",
11362 "???", "???", "hyp", "und", "???", "???", "???", "sys"
11365 void arm_cpu_dump_state(CPUState *cs, FILE *f, fprintf_function cpu_fprintf,
11368 ARMCPU *cpu = ARM_CPU(cs);
11369 CPUARMState *env = &cpu->env;
11374 aarch64_cpu_dump_state(cs, f, cpu_fprintf, flags);
11378 for(i=0;i<16;i++) {
11379 cpu_fprintf(f, "R%02d=%08x", i, env->regs[i]);
11381 cpu_fprintf(f, "\n");
11383 cpu_fprintf(f, " ");
11385 psr = cpsr_read(env);
11386 cpu_fprintf(f, "PSR=%08x %c%c%c%c %c %s%d\n",
11388 psr & (1 << 31) ? 'N' : '-',
11389 psr & (1 << 30) ? 'Z' : '-',
11390 psr & (1 << 29) ? 'C' : '-',
11391 psr & (1 << 28) ? 'V' : '-',
11392 psr & CPSR_T ? 'T' : 'A',
11393 cpu_mode_names[psr & 0xf], (psr & 0x10) ? 32 : 26);
11395 if (flags & CPU_DUMP_FPU) {
11396 int numvfpregs = 0;
11397 if (arm_feature(env, ARM_FEATURE_VFP)) {
11400 if (arm_feature(env, ARM_FEATURE_VFP3)) {
11403 for (i = 0; i < numvfpregs; i++) {
11404 uint64_t v = float64_val(env->vfp.regs[i]);
11405 cpu_fprintf(f, "s%02d=%08x s%02d=%08x d%02d=%016" PRIx64 "\n",
11406 i * 2, (uint32_t)v,
11407 i * 2 + 1, (uint32_t)(v >> 32),
11410 cpu_fprintf(f, "FPSCR: %08x\n", (int)env->vfp.xregs[ARM_VFP_FPSCR]);
11414 void restore_state_to_opc(CPUARMState *env, TranslationBlock *tb, int pc_pos)
11417 env->pc = tcg_ctx.gen_opc_pc[pc_pos];
11418 env->condexec_bits = 0;
11420 env->regs[15] = tcg_ctx.gen_opc_pc[pc_pos];
11421 env->condexec_bits = gen_opc_condexec_bits[pc_pos];
projects / qemu.git / blob