4 * Copyright (c) 2003 Fabrice Bellard
6 * This library is free software; you can redistribute it and/or
7 * modify it under the terms of the GNU Lesser General Public
8 * License as published by the Free Software Foundation; either
9 * version 2 of the License, or (at your option) any later version.
11 * This library is distributed in the hope that it will be useful,
12 * but WITHOUT ANY WARRANTY; without even the implied warranty of
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
14 * Lesser General Public License for more details.
16 * You should have received a copy of the GNU Lesser General Public
17 * License along with this library; if not, see <http://www.gnu.org/licenses/>.
35 #define PREFIX_REPZ 0x01
36 #define PREFIX_REPNZ 0x02
37 #define PREFIX_LOCK 0x04
38 #define PREFIX_DATA 0x08
39 #define PREFIX_ADR 0x10
42 #define X86_64_ONLY(x) x
43 #define X86_64_DEF(...) __VA_ARGS__
44 #define CODE64(s) ((s)->code64)
45 #define REX_X(s) ((s)->rex_x)
46 #define REX_B(s) ((s)->rex_b)
47 /* XXX: gcc generates push/pop in some opcodes, so we cannot use them */
49 #define BUGGY_64(x) NULL
52 #define X86_64_ONLY(x) NULL
53 #define X86_64_DEF(...)
59 //#define MACRO_TEST 1
61 /* global register indexes */
62 static TCGv_ptr cpu_env;
63 static TCGv cpu_A0, cpu_cc_src, cpu_cc_dst, cpu_cc_tmp;
64 static TCGv_i32 cpu_cc_op;
65 static TCGv cpu_regs[CPU_NB_REGS];
67 static TCGv cpu_T[2], cpu_T3;
68 /* local register indexes (only used inside old micro ops) */
69 static TCGv cpu_tmp0, cpu_tmp4;
70 static TCGv_ptr cpu_ptr0, cpu_ptr1;
71 static TCGv_i32 cpu_tmp2_i32, cpu_tmp3_i32;
72 static TCGv_i64 cpu_tmp1_i64;
75 static uint8_t gen_opc_cc_op[OPC_BUF_SIZE];
77 #include "gen-icount.h"
80 static int x86_64_hregs;
83 typedef struct DisasContext {
84 /* current insn context */
85 int override; /* -1 if no override */
88 target_ulong pc; /* pc = eip + cs_base */
89 int is_jmp; /* 1 = means jump (stop translation), 2 means CPU
90 static state change (stop translation) */
91 /* current block context */
92 target_ulong cs_base; /* base of CS segment */
93 int pe; /* protected mode */
94 int code32; /* 32 bit code segment */
96 int lma; /* long mode active */
97 int code64; /* 64 bit code segment */
100 int ss32; /* 32 bit stack segment */
101 int cc_op; /* current CC operation */
102 int addseg; /* non zero if either DS/ES/SS have a non zero base */
103 int f_st; /* currently unused */
104 int vm86; /* vm86 mode */
107 int tf; /* TF cpu flag */
108 int singlestep_enabled; /* "hardware" single step enabled */
109 int jmp_opt; /* use direct block chaining for direct jumps */
110 int mem_index; /* select memory access functions */
111 uint64_t flags; /* all execution flags */
112 struct TranslationBlock *tb;
113 int popl_esp_hack; /* for correct popl with esp base handling */
114 int rip_offset; /* only used in x86_64, but left for simplicity */
116 int cpuid_ext_features;
117 int cpuid_ext2_features;
118 int cpuid_ext3_features;
121 static void gen_eob(DisasContext *s);
122 static void gen_jmp(DisasContext *s, target_ulong eip);
123 static void gen_jmp_tb(DisasContext *s, target_ulong eip, int tb_num);
125 /* i386 arith/logic operations */
145 OP_SHL1, /* undocumented */
169 /* I386 int registers */
170 OR_EAX, /* MUST be even numbered */
179 OR_TMP0 = 16, /* temporary operand register */
181 OR_A0, /* temporary register used when doing address evaluation */
184 static inline void gen_op_movl_T0_0(void)
186 tcg_gen_movi_tl(cpu_T[0], 0);
189 static inline void gen_op_movl_T0_im(int32_t val)
191 tcg_gen_movi_tl(cpu_T[0], val);
194 static inline void gen_op_movl_T0_imu(uint32_t val)
196 tcg_gen_movi_tl(cpu_T[0], val);
199 static inline void gen_op_movl_T1_im(int32_t val)
201 tcg_gen_movi_tl(cpu_T[1], val);
204 static inline void gen_op_movl_T1_imu(uint32_t val)
206 tcg_gen_movi_tl(cpu_T[1], val);
209 static inline void gen_op_movl_A0_im(uint32_t val)
211 tcg_gen_movi_tl(cpu_A0, val);
215 static inline void gen_op_movq_A0_im(int64_t val)
217 tcg_gen_movi_tl(cpu_A0, val);
221 static inline void gen_movtl_T0_im(target_ulong val)
223 tcg_gen_movi_tl(cpu_T[0], val);
226 static inline void gen_movtl_T1_im(target_ulong val)
228 tcg_gen_movi_tl(cpu_T[1], val);
231 static inline void gen_op_andl_T0_ffff(void)
233 tcg_gen_andi_tl(cpu_T[0], cpu_T[0], 0xffff);
236 static inline void gen_op_andl_T0_im(uint32_t val)
238 tcg_gen_andi_tl(cpu_T[0], cpu_T[0], val);
241 static inline void gen_op_movl_T0_T1(void)
243 tcg_gen_mov_tl(cpu_T[0], cpu_T[1]);
246 static inline void gen_op_andl_A0_ffff(void)
248 tcg_gen_andi_tl(cpu_A0, cpu_A0, 0xffff);
253 #define NB_OP_SIZES 4
255 #else /* !TARGET_X86_64 */
257 #define NB_OP_SIZES 3
259 #endif /* !TARGET_X86_64 */
261 #if defined(HOST_WORDS_BIGENDIAN)
262 #define REG_B_OFFSET (sizeof(target_ulong) - 1)
263 #define REG_H_OFFSET (sizeof(target_ulong) - 2)
264 #define REG_W_OFFSET (sizeof(target_ulong) - 2)
265 #define REG_L_OFFSET (sizeof(target_ulong) - 4)
266 #define REG_LH_OFFSET (sizeof(target_ulong) - 8)
268 #define REG_B_OFFSET 0
269 #define REG_H_OFFSET 1
270 #define REG_W_OFFSET 0
271 #define REG_L_OFFSET 0
272 #define REG_LH_OFFSET 4
275 static inline void gen_op_mov_reg_v(int ot, int reg, TCGv t0)
281 tmp = tcg_temp_new();
282 tcg_gen_ext8u_tl(tmp, t0);
283 if (reg < 4 X86_64_DEF( || reg >= 8 || x86_64_hregs)) {
284 tcg_gen_andi_tl(cpu_regs[reg], cpu_regs[reg], ~0xff);
285 tcg_gen_or_tl(cpu_regs[reg], cpu_regs[reg], tmp);
287 tcg_gen_shli_tl(tmp, tmp, 8);
288 tcg_gen_andi_tl(cpu_regs[reg - 4], cpu_regs[reg - 4], ~0xff00);
289 tcg_gen_or_tl(cpu_regs[reg - 4], cpu_regs[reg - 4], tmp);
294 tmp = tcg_temp_new();
295 tcg_gen_ext16u_tl(tmp, t0);
296 tcg_gen_andi_tl(cpu_regs[reg], cpu_regs[reg], ~0xffff);
297 tcg_gen_or_tl(cpu_regs[reg], cpu_regs[reg], tmp);
300 default: /* XXX this shouldn't be reached; abort? */
302 /* For x86_64, this sets the higher half of register to zero.
303 For i386, this is equivalent to a mov. */
304 tcg_gen_ext32u_tl(cpu_regs[reg], t0);
308 tcg_gen_mov_tl(cpu_regs[reg], t0);
314 static inline void gen_op_mov_reg_T0(int ot, int reg)
316 gen_op_mov_reg_v(ot, reg, cpu_T[0]);
319 static inline void gen_op_mov_reg_T1(int ot, int reg)
321 gen_op_mov_reg_v(ot, reg, cpu_T[1]);
324 static inline void gen_op_mov_reg_A0(int size, int reg)
330 tmp = tcg_temp_new();
331 tcg_gen_ext16u_tl(tmp, cpu_A0);
332 tcg_gen_andi_tl(cpu_regs[reg], cpu_regs[reg], ~0xffff);
333 tcg_gen_or_tl(cpu_regs[reg], cpu_regs[reg], tmp);
336 default: /* XXX this shouldn't be reached; abort? */
338 /* For x86_64, this sets the higher half of register to zero.
339 For i386, this is equivalent to a mov. */
340 tcg_gen_ext32u_tl(cpu_regs[reg], cpu_A0);
344 tcg_gen_mov_tl(cpu_regs[reg], cpu_A0);
350 static inline void gen_op_mov_v_reg(int ot, TCGv t0, int reg)
354 if (reg < 4 X86_64_DEF( || reg >= 8 || x86_64_hregs)) {
357 tcg_gen_shri_tl(t0, cpu_regs[reg - 4], 8);
358 tcg_gen_ext8u_tl(t0, t0);
363 tcg_gen_mov_tl(t0, cpu_regs[reg]);
368 static inline void gen_op_mov_TN_reg(int ot, int t_index, int reg)
370 gen_op_mov_v_reg(ot, cpu_T[t_index], reg);
373 static inline void gen_op_movl_A0_reg(int reg)
375 tcg_gen_mov_tl(cpu_A0, cpu_regs[reg]);
378 static inline void gen_op_addl_A0_im(int32_t val)
380 tcg_gen_addi_tl(cpu_A0, cpu_A0, val);
382 tcg_gen_andi_tl(cpu_A0, cpu_A0, 0xffffffff);
387 static inline void gen_op_addq_A0_im(int64_t val)
389 tcg_gen_addi_tl(cpu_A0, cpu_A0, val);
393 static void gen_add_A0_im(DisasContext *s, int val)
397 gen_op_addq_A0_im(val);
400 gen_op_addl_A0_im(val);
403 static inline void gen_op_addl_T0_T1(void)
405 tcg_gen_add_tl(cpu_T[0], cpu_T[0], cpu_T[1]);
408 static inline void gen_op_jmp_T0(void)
410 tcg_gen_st_tl(cpu_T[0], cpu_env, offsetof(CPUState, eip));
413 static inline void gen_op_add_reg_im(int size, int reg, int32_t val)
417 tcg_gen_addi_tl(cpu_tmp0, cpu_regs[reg], val);
418 tcg_gen_ext16u_tl(cpu_tmp0, cpu_tmp0);
419 tcg_gen_andi_tl(cpu_regs[reg], cpu_regs[reg], ~0xffff);
420 tcg_gen_or_tl(cpu_regs[reg], cpu_regs[reg], cpu_tmp0);
423 tcg_gen_addi_tl(cpu_tmp0, cpu_regs[reg], val);
424 /* For x86_64, this sets the higher half of register to zero.
425 For i386, this is equivalent to a nop. */
426 tcg_gen_ext32u_tl(cpu_tmp0, cpu_tmp0);
427 tcg_gen_mov_tl(cpu_regs[reg], cpu_tmp0);
431 tcg_gen_addi_tl(cpu_regs[reg], cpu_regs[reg], val);
437 static inline void gen_op_add_reg_T0(int size, int reg)
441 tcg_gen_add_tl(cpu_tmp0, cpu_regs[reg], cpu_T[0]);
442 tcg_gen_ext16u_tl(cpu_tmp0, cpu_tmp0);
443 tcg_gen_andi_tl(cpu_regs[reg], cpu_regs[reg], ~0xffff);
444 tcg_gen_or_tl(cpu_regs[reg], cpu_regs[reg], cpu_tmp0);
447 tcg_gen_add_tl(cpu_tmp0, cpu_regs[reg], cpu_T[0]);
448 /* For x86_64, this sets the higher half of register to zero.
449 For i386, this is equivalent to a nop. */
450 tcg_gen_ext32u_tl(cpu_tmp0, cpu_tmp0);
451 tcg_gen_mov_tl(cpu_regs[reg], cpu_tmp0);
455 tcg_gen_add_tl(cpu_regs[reg], cpu_regs[reg], cpu_T[0]);
461 static inline void gen_op_set_cc_op(int32_t val)
463 tcg_gen_movi_i32(cpu_cc_op, val);
466 static inline void gen_op_addl_A0_reg_sN(int shift, int reg)
468 tcg_gen_mov_tl(cpu_tmp0, cpu_regs[reg]);
470 tcg_gen_shli_tl(cpu_tmp0, cpu_tmp0, shift);
471 tcg_gen_add_tl(cpu_A0, cpu_A0, cpu_tmp0);
472 /* For x86_64, this sets the higher half of register to zero.
473 For i386, this is equivalent to a nop. */
474 tcg_gen_ext32u_tl(cpu_A0, cpu_A0);
477 static inline void gen_op_movl_A0_seg(int reg)
479 tcg_gen_ld32u_tl(cpu_A0, cpu_env, offsetof(CPUState, segs[reg].base) + REG_L_OFFSET);
482 static inline void gen_op_addl_A0_seg(int reg)
484 tcg_gen_ld_tl(cpu_tmp0, cpu_env, offsetof(CPUState, segs[reg].base));
485 tcg_gen_add_tl(cpu_A0, cpu_A0, cpu_tmp0);
487 tcg_gen_andi_tl(cpu_A0, cpu_A0, 0xffffffff);
492 static inline void gen_op_movq_A0_seg(int reg)
494 tcg_gen_ld_tl(cpu_A0, cpu_env, offsetof(CPUState, segs[reg].base));
497 static inline void gen_op_addq_A0_seg(int reg)
499 tcg_gen_ld_tl(cpu_tmp0, cpu_env, offsetof(CPUState, segs[reg].base));
500 tcg_gen_add_tl(cpu_A0, cpu_A0, cpu_tmp0);
503 static inline void gen_op_movq_A0_reg(int reg)
505 tcg_gen_mov_tl(cpu_A0, cpu_regs[reg]);
508 static inline void gen_op_addq_A0_reg_sN(int shift, int reg)
510 tcg_gen_mov_tl(cpu_tmp0, cpu_regs[reg]);
512 tcg_gen_shli_tl(cpu_tmp0, cpu_tmp0, shift);
513 tcg_gen_add_tl(cpu_A0, cpu_A0, cpu_tmp0);
517 static inline void gen_op_lds_T0_A0(int idx)
519 int mem_index = (idx >> 2) - 1;
522 tcg_gen_qemu_ld8s(cpu_T[0], cpu_A0, mem_index);
525 tcg_gen_qemu_ld16s(cpu_T[0], cpu_A0, mem_index);
529 tcg_gen_qemu_ld32s(cpu_T[0], cpu_A0, mem_index);
534 static inline void gen_op_ld_v(int idx, TCGv t0, TCGv a0)
536 int mem_index = (idx >> 2) - 1;
539 tcg_gen_qemu_ld8u(t0, a0, mem_index);
542 tcg_gen_qemu_ld16u(t0, a0, mem_index);
545 tcg_gen_qemu_ld32u(t0, a0, mem_index);
549 /* Should never happen on 32-bit targets. */
551 tcg_gen_qemu_ld64(t0, a0, mem_index);
557 /* XXX: always use ldu or lds */
558 static inline void gen_op_ld_T0_A0(int idx)
560 gen_op_ld_v(idx, cpu_T[0], cpu_A0);
563 static inline void gen_op_ldu_T0_A0(int idx)
565 gen_op_ld_v(idx, cpu_T[0], cpu_A0);
568 static inline void gen_op_ld_T1_A0(int idx)
570 gen_op_ld_v(idx, cpu_T[1], cpu_A0);
573 static inline void gen_op_st_v(int idx, TCGv t0, TCGv a0)
575 int mem_index = (idx >> 2) - 1;
578 tcg_gen_qemu_st8(t0, a0, mem_index);
581 tcg_gen_qemu_st16(t0, a0, mem_index);
584 tcg_gen_qemu_st32(t0, a0, mem_index);
588 /* Should never happen on 32-bit targets. */
590 tcg_gen_qemu_st64(t0, a0, mem_index);
596 static inline void gen_op_st_T0_A0(int idx)
598 gen_op_st_v(idx, cpu_T[0], cpu_A0);
601 static inline void gen_op_st_T1_A0(int idx)
603 gen_op_st_v(idx, cpu_T[1], cpu_A0);
606 static inline void gen_jmp_im(target_ulong pc)
608 tcg_gen_movi_tl(cpu_tmp0, pc);
609 tcg_gen_st_tl(cpu_tmp0, cpu_env, offsetof(CPUState, eip));
612 static inline void gen_string_movl_A0_ESI(DisasContext *s)
616 override = s->override;
620 gen_op_movq_A0_seg(override);
621 gen_op_addq_A0_reg_sN(0, R_ESI);
623 gen_op_movq_A0_reg(R_ESI);
629 if (s->addseg && override < 0)
632 gen_op_movl_A0_seg(override);
633 gen_op_addl_A0_reg_sN(0, R_ESI);
635 gen_op_movl_A0_reg(R_ESI);
638 /* 16 address, always override */
641 gen_op_movl_A0_reg(R_ESI);
642 gen_op_andl_A0_ffff();
643 gen_op_addl_A0_seg(override);
647 static inline void gen_string_movl_A0_EDI(DisasContext *s)
651 gen_op_movq_A0_reg(R_EDI);
656 gen_op_movl_A0_seg(R_ES);
657 gen_op_addl_A0_reg_sN(0, R_EDI);
659 gen_op_movl_A0_reg(R_EDI);
662 gen_op_movl_A0_reg(R_EDI);
663 gen_op_andl_A0_ffff();
664 gen_op_addl_A0_seg(R_ES);
668 static inline void gen_op_movl_T0_Dshift(int ot)
670 tcg_gen_ld32s_tl(cpu_T[0], cpu_env, offsetof(CPUState, df));
671 tcg_gen_shli_tl(cpu_T[0], cpu_T[0], ot);
674 static void gen_extu(int ot, TCGv reg)
678 tcg_gen_ext8u_tl(reg, reg);
681 tcg_gen_ext16u_tl(reg, reg);
684 tcg_gen_ext32u_tl(reg, reg);
691 static void gen_exts(int ot, TCGv reg)
695 tcg_gen_ext8s_tl(reg, reg);
698 tcg_gen_ext16s_tl(reg, reg);
701 tcg_gen_ext32s_tl(reg, reg);
708 static inline void gen_op_jnz_ecx(int size, int label1)
710 tcg_gen_mov_tl(cpu_tmp0, cpu_regs[R_ECX]);
711 gen_extu(size + 1, cpu_tmp0);
712 tcg_gen_brcondi_tl(TCG_COND_NE, cpu_tmp0, 0, label1);
715 static inline void gen_op_jz_ecx(int size, int label1)
717 tcg_gen_mov_tl(cpu_tmp0, cpu_regs[R_ECX]);
718 gen_extu(size + 1, cpu_tmp0);
719 tcg_gen_brcondi_tl(TCG_COND_EQ, cpu_tmp0, 0, label1);
722 static void gen_helper_in_func(int ot, TCGv v, TCGv_i32 n)
725 case 0: gen_helper_inb(v, n); break;
726 case 1: gen_helper_inw(v, n); break;
727 case 2: gen_helper_inl(v, n); break;
732 static void gen_helper_out_func(int ot, TCGv_i32 v, TCGv_i32 n)
735 case 0: gen_helper_outb(v, n); break;
736 case 1: gen_helper_outw(v, n); break;
737 case 2: gen_helper_outl(v, n); break;
742 static void gen_check_io(DisasContext *s, int ot, target_ulong cur_eip,
746 target_ulong next_eip;
749 if (s->pe && (s->cpl > s->iopl || s->vm86)) {
750 if (s->cc_op != CC_OP_DYNAMIC)
751 gen_op_set_cc_op(s->cc_op);
754 tcg_gen_trunc_tl_i32(cpu_tmp2_i32, cpu_T[0]);
756 case 0: gen_helper_check_iob(cpu_tmp2_i32); break;
757 case 1: gen_helper_check_iow(cpu_tmp2_i32); break;
758 case 2: gen_helper_check_iol(cpu_tmp2_i32); break;
761 if(s->flags & HF_SVMI_MASK) {
763 if (s->cc_op != CC_OP_DYNAMIC)
764 gen_op_set_cc_op(s->cc_op);
767 svm_flags |= (1 << (4 + ot));
768 next_eip = s->pc - s->cs_base;
769 tcg_gen_trunc_tl_i32(cpu_tmp2_i32, cpu_T[0]);
770 gen_helper_svm_check_io(cpu_tmp2_i32, tcg_const_i32(svm_flags),
771 tcg_const_i32(next_eip - cur_eip));
775 static inline void gen_movs(DisasContext *s, int ot)
777 gen_string_movl_A0_ESI(s);
778 gen_op_ld_T0_A0(ot + s->mem_index);
779 gen_string_movl_A0_EDI(s);
780 gen_op_st_T0_A0(ot + s->mem_index);
781 gen_op_movl_T0_Dshift(ot);
782 gen_op_add_reg_T0(s->aflag, R_ESI);
783 gen_op_add_reg_T0(s->aflag, R_EDI);
786 static inline void gen_update_cc_op(DisasContext *s)
788 if (s->cc_op != CC_OP_DYNAMIC) {
789 gen_op_set_cc_op(s->cc_op);
790 s->cc_op = CC_OP_DYNAMIC;
794 static void gen_op_update1_cc(void)
796 tcg_gen_discard_tl(cpu_cc_src);
797 tcg_gen_mov_tl(cpu_cc_dst, cpu_T[0]);
800 static void gen_op_update2_cc(void)
802 tcg_gen_mov_tl(cpu_cc_src, cpu_T[1]);
803 tcg_gen_mov_tl(cpu_cc_dst, cpu_T[0]);
806 static inline void gen_op_cmpl_T0_T1_cc(void)
808 tcg_gen_mov_tl(cpu_cc_src, cpu_T[1]);
809 tcg_gen_sub_tl(cpu_cc_dst, cpu_T[0], cpu_T[1]);
812 static inline void gen_op_testl_T0_T1_cc(void)
814 tcg_gen_discard_tl(cpu_cc_src);
815 tcg_gen_and_tl(cpu_cc_dst, cpu_T[0], cpu_T[1]);
818 static void gen_op_update_neg_cc(void)
820 tcg_gen_neg_tl(cpu_cc_src, cpu_T[0]);
821 tcg_gen_mov_tl(cpu_cc_dst, cpu_T[0]);
824 /* compute eflags.C to reg */
825 static void gen_compute_eflags_c(TCGv reg)
827 gen_helper_cc_compute_c(cpu_tmp2_i32, cpu_cc_op);
828 tcg_gen_extu_i32_tl(reg, cpu_tmp2_i32);
831 /* compute all eflags to cc_src */
832 static void gen_compute_eflags(TCGv reg)
834 gen_helper_cc_compute_all(cpu_tmp2_i32, cpu_cc_op);
835 tcg_gen_extu_i32_tl(reg, cpu_tmp2_i32);
838 static inline void gen_setcc_slow_T0(DisasContext *s, int jcc_op)
840 if (s->cc_op != CC_OP_DYNAMIC)
841 gen_op_set_cc_op(s->cc_op);
844 gen_compute_eflags(cpu_T[0]);
845 tcg_gen_shri_tl(cpu_T[0], cpu_T[0], 11);
846 tcg_gen_andi_tl(cpu_T[0], cpu_T[0], 1);
849 gen_compute_eflags_c(cpu_T[0]);
852 gen_compute_eflags(cpu_T[0]);
853 tcg_gen_shri_tl(cpu_T[0], cpu_T[0], 6);
854 tcg_gen_andi_tl(cpu_T[0], cpu_T[0], 1);
857 gen_compute_eflags(cpu_tmp0);
858 tcg_gen_shri_tl(cpu_T[0], cpu_tmp0, 6);
859 tcg_gen_or_tl(cpu_T[0], cpu_T[0], cpu_tmp0);
860 tcg_gen_andi_tl(cpu_T[0], cpu_T[0], 1);
863 gen_compute_eflags(cpu_T[0]);
864 tcg_gen_shri_tl(cpu_T[0], cpu_T[0], 7);
865 tcg_gen_andi_tl(cpu_T[0], cpu_T[0], 1);
868 gen_compute_eflags(cpu_T[0]);
869 tcg_gen_shri_tl(cpu_T[0], cpu_T[0], 2);
870 tcg_gen_andi_tl(cpu_T[0], cpu_T[0], 1);
873 gen_compute_eflags(cpu_tmp0);
874 tcg_gen_shri_tl(cpu_T[0], cpu_tmp0, 11); /* CC_O */
875 tcg_gen_shri_tl(cpu_tmp0, cpu_tmp0, 7); /* CC_S */
876 tcg_gen_xor_tl(cpu_T[0], cpu_T[0], cpu_tmp0);
877 tcg_gen_andi_tl(cpu_T[0], cpu_T[0], 1);
881 gen_compute_eflags(cpu_tmp0);
882 tcg_gen_shri_tl(cpu_T[0], cpu_tmp0, 11); /* CC_O */
883 tcg_gen_shri_tl(cpu_tmp4, cpu_tmp0, 7); /* CC_S */
884 tcg_gen_shri_tl(cpu_tmp0, cpu_tmp0, 6); /* CC_Z */
885 tcg_gen_xor_tl(cpu_T[0], cpu_T[0], cpu_tmp4);
886 tcg_gen_or_tl(cpu_T[0], cpu_T[0], cpu_tmp0);
887 tcg_gen_andi_tl(cpu_T[0], cpu_T[0], 1);
892 /* return true if setcc_slow is not needed (WARNING: must be kept in
893 sync with gen_jcc1) */
894 static int is_fast_jcc_case(DisasContext *s, int b)
897 jcc_op = (b >> 1) & 7;
899 /* we optimize the cmp/jcc case */
904 if (jcc_op == JCC_O || jcc_op == JCC_P)
908 /* some jumps are easy to compute */
933 if (jcc_op != JCC_Z && jcc_op != JCC_S)
943 /* generate a conditional jump to label 'l1' according to jump opcode
944 value 'b'. In the fast case, T0 is guaranted not to be used. */
945 static inline void gen_jcc1(DisasContext *s, int cc_op, int b, int l1)
947 int inv, jcc_op, size, cond;
951 jcc_op = (b >> 1) & 7;
954 /* we optimize the cmp/jcc case */
960 size = cc_op - CC_OP_SUBB;
966 tcg_gen_andi_tl(cpu_tmp0, cpu_cc_dst, 0xff);
970 tcg_gen_andi_tl(cpu_tmp0, cpu_cc_dst, 0xffff);
975 tcg_gen_andi_tl(cpu_tmp0, cpu_cc_dst, 0xffffffff);
983 tcg_gen_brcondi_tl(inv ? TCG_COND_NE : TCG_COND_EQ, t0, 0, l1);
989 tcg_gen_andi_tl(cpu_tmp0, cpu_cc_dst, 0x80);
990 tcg_gen_brcondi_tl(inv ? TCG_COND_EQ : TCG_COND_NE, cpu_tmp0,
994 tcg_gen_andi_tl(cpu_tmp0, cpu_cc_dst, 0x8000);
995 tcg_gen_brcondi_tl(inv ? TCG_COND_EQ : TCG_COND_NE, cpu_tmp0,
1000 tcg_gen_andi_tl(cpu_tmp0, cpu_cc_dst, 0x80000000);
1001 tcg_gen_brcondi_tl(inv ? TCG_COND_EQ : TCG_COND_NE, cpu_tmp0,
1006 tcg_gen_brcondi_tl(inv ? TCG_COND_GE : TCG_COND_LT, cpu_cc_dst,
1013 cond = inv ? TCG_COND_GEU : TCG_COND_LTU;
1016 cond = inv ? TCG_COND_GTU : TCG_COND_LEU;
1018 tcg_gen_add_tl(cpu_tmp4, cpu_cc_dst, cpu_cc_src);
1022 tcg_gen_andi_tl(cpu_tmp4, cpu_tmp4, 0xff);
1023 tcg_gen_andi_tl(t0, cpu_cc_src, 0xff);
1027 tcg_gen_andi_tl(cpu_tmp4, cpu_tmp4, 0xffff);
1028 tcg_gen_andi_tl(t0, cpu_cc_src, 0xffff);
1030 #ifdef TARGET_X86_64
1033 tcg_gen_andi_tl(cpu_tmp4, cpu_tmp4, 0xffffffff);
1034 tcg_gen_andi_tl(t0, cpu_cc_src, 0xffffffff);
1041 tcg_gen_brcond_tl(cond, cpu_tmp4, t0, l1);
1045 cond = inv ? TCG_COND_GE : TCG_COND_LT;
1048 cond = inv ? TCG_COND_GT : TCG_COND_LE;
1050 tcg_gen_add_tl(cpu_tmp4, cpu_cc_dst, cpu_cc_src);
1054 tcg_gen_ext8s_tl(cpu_tmp4, cpu_tmp4);
1055 tcg_gen_ext8s_tl(t0, cpu_cc_src);
1059 tcg_gen_ext16s_tl(cpu_tmp4, cpu_tmp4);
1060 tcg_gen_ext16s_tl(t0, cpu_cc_src);
1062 #ifdef TARGET_X86_64
1065 tcg_gen_ext32s_tl(cpu_tmp4, cpu_tmp4);
1066 tcg_gen_ext32s_tl(t0, cpu_cc_src);
1073 tcg_gen_brcond_tl(cond, cpu_tmp4, t0, l1);
1081 /* some jumps are easy to compute */
1123 size = (cc_op - CC_OP_ADDB) & 3;
1126 size = (cc_op - CC_OP_ADDB) & 3;
1134 gen_setcc_slow_T0(s, jcc_op);
1135 tcg_gen_brcondi_tl(inv ? TCG_COND_EQ : TCG_COND_NE,
1141 /* XXX: does not work with gdbstub "ice" single step - not a
1143 static int gen_jz_ecx_string(DisasContext *s, target_ulong next_eip)
1147 l1 = gen_new_label();
1148 l2 = gen_new_label();
1149 gen_op_jnz_ecx(s->aflag, l1);
1151 gen_jmp_tb(s, next_eip, 1);
1156 static inline void gen_stos(DisasContext *s, int ot)
1158 gen_op_mov_TN_reg(OT_LONG, 0, R_EAX);
1159 gen_string_movl_A0_EDI(s);
1160 gen_op_st_T0_A0(ot + s->mem_index);
1161 gen_op_movl_T0_Dshift(ot);
1162 gen_op_add_reg_T0(s->aflag, R_EDI);
1165 static inline void gen_lods(DisasContext *s, int ot)
1167 gen_string_movl_A0_ESI(s);
1168 gen_op_ld_T0_A0(ot + s->mem_index);
1169 gen_op_mov_reg_T0(ot, R_EAX);
1170 gen_op_movl_T0_Dshift(ot);
1171 gen_op_add_reg_T0(s->aflag, R_ESI);
1174 static inline void gen_scas(DisasContext *s, int ot)
1176 gen_op_mov_TN_reg(OT_LONG, 0, R_EAX);
1177 gen_string_movl_A0_EDI(s);
1178 gen_op_ld_T1_A0(ot + s->mem_index);
1179 gen_op_cmpl_T0_T1_cc();
1180 gen_op_movl_T0_Dshift(ot);
1181 gen_op_add_reg_T0(s->aflag, R_EDI);
1184 static inline void gen_cmps(DisasContext *s, int ot)
1186 gen_string_movl_A0_ESI(s);
1187 gen_op_ld_T0_A0(ot + s->mem_index);
1188 gen_string_movl_A0_EDI(s);
1189 gen_op_ld_T1_A0(ot + s->mem_index);
1190 gen_op_cmpl_T0_T1_cc();
1191 gen_op_movl_T0_Dshift(ot);
1192 gen_op_add_reg_T0(s->aflag, R_ESI);
1193 gen_op_add_reg_T0(s->aflag, R_EDI);
1196 static inline void gen_ins(DisasContext *s, int ot)
1200 gen_string_movl_A0_EDI(s);
1201 /* Note: we must do this dummy write first to be restartable in
1202 case of page fault. */
1204 gen_op_st_T0_A0(ot + s->mem_index);
1205 gen_op_mov_TN_reg(OT_WORD, 1, R_EDX);
1206 tcg_gen_trunc_tl_i32(cpu_tmp2_i32, cpu_T[1]);
1207 tcg_gen_andi_i32(cpu_tmp2_i32, cpu_tmp2_i32, 0xffff);
1208 gen_helper_in_func(ot, cpu_T[0], cpu_tmp2_i32);
1209 gen_op_st_T0_A0(ot + s->mem_index);
1210 gen_op_movl_T0_Dshift(ot);
1211 gen_op_add_reg_T0(s->aflag, R_EDI);
1216 static inline void gen_outs(DisasContext *s, int ot)
1220 gen_string_movl_A0_ESI(s);
1221 gen_op_ld_T0_A0(ot + s->mem_index);
1223 gen_op_mov_TN_reg(OT_WORD, 1, R_EDX);
1224 tcg_gen_trunc_tl_i32(cpu_tmp2_i32, cpu_T[1]);
1225 tcg_gen_andi_i32(cpu_tmp2_i32, cpu_tmp2_i32, 0xffff);
1226 tcg_gen_trunc_tl_i32(cpu_tmp3_i32, cpu_T[0]);
1227 gen_helper_out_func(ot, cpu_tmp2_i32, cpu_tmp3_i32);
1229 gen_op_movl_T0_Dshift(ot);
1230 gen_op_add_reg_T0(s->aflag, R_ESI);
1235 /* same method as Valgrind : we generate jumps to current or next
1237 #define GEN_REPZ(op) \
1238 static inline void gen_repz_ ## op(DisasContext *s, int ot, \
1239 target_ulong cur_eip, target_ulong next_eip) \
1242 gen_update_cc_op(s); \
1243 l2 = gen_jz_ecx_string(s, next_eip); \
1244 gen_ ## op(s, ot); \
1245 gen_op_add_reg_im(s->aflag, R_ECX, -1); \
1246 /* a loop would cause two single step exceptions if ECX = 1 \
1247 before rep string_insn */ \
1249 gen_op_jz_ecx(s->aflag, l2); \
1250 gen_jmp(s, cur_eip); \
1253 #define GEN_REPZ2(op) \
1254 static inline void gen_repz_ ## op(DisasContext *s, int ot, \
1255 target_ulong cur_eip, \
1256 target_ulong next_eip, \
1260 gen_update_cc_op(s); \
1261 l2 = gen_jz_ecx_string(s, next_eip); \
1262 gen_ ## op(s, ot); \
1263 gen_op_add_reg_im(s->aflag, R_ECX, -1); \
1264 gen_op_set_cc_op(CC_OP_SUBB + ot); \
1265 gen_jcc1(s, CC_OP_SUBB + ot, (JCC_Z << 1) | (nz ^ 1), l2); \
1267 gen_op_jz_ecx(s->aflag, l2); \
1268 gen_jmp(s, cur_eip); \
1279 static void gen_helper_fp_arith_ST0_FT0(int op)
1282 case 0: gen_helper_fadd_ST0_FT0(); break;
1283 case 1: gen_helper_fmul_ST0_FT0(); break;
1284 case 2: gen_helper_fcom_ST0_FT0(); break;
1285 case 3: gen_helper_fcom_ST0_FT0(); break;
1286 case 4: gen_helper_fsub_ST0_FT0(); break;
1287 case 5: gen_helper_fsubr_ST0_FT0(); break;
1288 case 6: gen_helper_fdiv_ST0_FT0(); break;
1289 case 7: gen_helper_fdivr_ST0_FT0(); break;
1293 /* NOTE the exception in "r" op ordering */
1294 static void gen_helper_fp_arith_STN_ST0(int op, int opreg)
1296 TCGv_i32 tmp = tcg_const_i32(opreg);
1298 case 0: gen_helper_fadd_STN_ST0(tmp); break;
1299 case 1: gen_helper_fmul_STN_ST0(tmp); break;
1300 case 4: gen_helper_fsubr_STN_ST0(tmp); break;
1301 case 5: gen_helper_fsub_STN_ST0(tmp); break;
1302 case 6: gen_helper_fdivr_STN_ST0(tmp); break;
1303 case 7: gen_helper_fdiv_STN_ST0(tmp); break;
1307 /* if d == OR_TMP0, it means memory operand (address in A0) */
1308 static void gen_op(DisasContext *s1, int op, int ot, int d)
1311 gen_op_mov_TN_reg(ot, 0, d);
1313 gen_op_ld_T0_A0(ot + s1->mem_index);
1317 if (s1->cc_op != CC_OP_DYNAMIC)
1318 gen_op_set_cc_op(s1->cc_op);
1319 gen_compute_eflags_c(cpu_tmp4);
1320 tcg_gen_add_tl(cpu_T[0], cpu_T[0], cpu_T[1]);
1321 tcg_gen_add_tl(cpu_T[0], cpu_T[0], cpu_tmp4);
1323 gen_op_mov_reg_T0(ot, d);
1325 gen_op_st_T0_A0(ot + s1->mem_index);
1326 tcg_gen_mov_tl(cpu_cc_src, cpu_T[1]);
1327 tcg_gen_mov_tl(cpu_cc_dst, cpu_T[0]);
1328 tcg_gen_trunc_tl_i32(cpu_tmp2_i32, cpu_tmp4);
1329 tcg_gen_shli_i32(cpu_tmp2_i32, cpu_tmp2_i32, 2);
1330 tcg_gen_addi_i32(cpu_cc_op, cpu_tmp2_i32, CC_OP_ADDB + ot);
1331 s1->cc_op = CC_OP_DYNAMIC;
1334 if (s1->cc_op != CC_OP_DYNAMIC)
1335 gen_op_set_cc_op(s1->cc_op);
1336 gen_compute_eflags_c(cpu_tmp4);
1337 tcg_gen_sub_tl(cpu_T[0], cpu_T[0], cpu_T[1]);
1338 tcg_gen_sub_tl(cpu_T[0], cpu_T[0], cpu_tmp4);
1340 gen_op_mov_reg_T0(ot, d);
1342 gen_op_st_T0_A0(ot + s1->mem_index);
1343 tcg_gen_mov_tl(cpu_cc_src, cpu_T[1]);
1344 tcg_gen_mov_tl(cpu_cc_dst, cpu_T[0]);
1345 tcg_gen_trunc_tl_i32(cpu_tmp2_i32, cpu_tmp4);
1346 tcg_gen_shli_i32(cpu_tmp2_i32, cpu_tmp2_i32, 2);
1347 tcg_gen_addi_i32(cpu_cc_op, cpu_tmp2_i32, CC_OP_SUBB + ot);
1348 s1->cc_op = CC_OP_DYNAMIC;
1351 gen_op_addl_T0_T1();
1353 gen_op_mov_reg_T0(ot, d);
1355 gen_op_st_T0_A0(ot + s1->mem_index);
1356 gen_op_update2_cc();
1357 s1->cc_op = CC_OP_ADDB + ot;
1360 tcg_gen_sub_tl(cpu_T[0], cpu_T[0], cpu_T[1]);
1362 gen_op_mov_reg_T0(ot, d);
1364 gen_op_st_T0_A0(ot + s1->mem_index);
1365 gen_op_update2_cc();
1366 s1->cc_op = CC_OP_SUBB + ot;
1370 tcg_gen_and_tl(cpu_T[0], cpu_T[0], cpu_T[1]);
1372 gen_op_mov_reg_T0(ot, d);
1374 gen_op_st_T0_A0(ot + s1->mem_index);
1375 gen_op_update1_cc();
1376 s1->cc_op = CC_OP_LOGICB + ot;
1379 tcg_gen_or_tl(cpu_T[0], cpu_T[0], cpu_T[1]);
1381 gen_op_mov_reg_T0(ot, d);
1383 gen_op_st_T0_A0(ot + s1->mem_index);
1384 gen_op_update1_cc();
1385 s1->cc_op = CC_OP_LOGICB + ot;
1388 tcg_gen_xor_tl(cpu_T[0], cpu_T[0], cpu_T[1]);
1390 gen_op_mov_reg_T0(ot, d);
1392 gen_op_st_T0_A0(ot + s1->mem_index);
1393 gen_op_update1_cc();
1394 s1->cc_op = CC_OP_LOGICB + ot;
1397 gen_op_cmpl_T0_T1_cc();
1398 s1->cc_op = CC_OP_SUBB + ot;
1403 /* if d == OR_TMP0, it means memory operand (address in A0) */
1404 static void gen_inc(DisasContext *s1, int ot, int d, int c)
1407 gen_op_mov_TN_reg(ot, 0, d);
1409 gen_op_ld_T0_A0(ot + s1->mem_index);
1410 if (s1->cc_op != CC_OP_DYNAMIC)
1411 gen_op_set_cc_op(s1->cc_op);
1413 tcg_gen_addi_tl(cpu_T[0], cpu_T[0], 1);
1414 s1->cc_op = CC_OP_INCB + ot;
1416 tcg_gen_addi_tl(cpu_T[0], cpu_T[0], -1);
1417 s1->cc_op = CC_OP_DECB + ot;
1420 gen_op_mov_reg_T0(ot, d);
1422 gen_op_st_T0_A0(ot + s1->mem_index);
1423 gen_compute_eflags_c(cpu_cc_src);
1424 tcg_gen_mov_tl(cpu_cc_dst, cpu_T[0]);
1427 static void gen_shift_rm_T1(DisasContext *s, int ot, int op1,
1428 int is_right, int is_arith)
1441 gen_op_ld_T0_A0(ot + s->mem_index);
1443 gen_op_mov_TN_reg(ot, 0, op1);
1445 tcg_gen_andi_tl(cpu_T[1], cpu_T[1], mask);
1447 tcg_gen_addi_tl(cpu_tmp5, cpu_T[1], -1);
1451 gen_exts(ot, cpu_T[0]);
1452 tcg_gen_sar_tl(cpu_T3, cpu_T[0], cpu_tmp5);
1453 tcg_gen_sar_tl(cpu_T[0], cpu_T[0], cpu_T[1]);
1455 gen_extu(ot, cpu_T[0]);
1456 tcg_gen_shr_tl(cpu_T3, cpu_T[0], cpu_tmp5);
1457 tcg_gen_shr_tl(cpu_T[0], cpu_T[0], cpu_T[1]);
1460 tcg_gen_shl_tl(cpu_T3, cpu_T[0], cpu_tmp5);
1461 tcg_gen_shl_tl(cpu_T[0], cpu_T[0], cpu_T[1]);
1466 gen_op_st_T0_A0(ot + s->mem_index);
1468 gen_op_mov_reg_T0(ot, op1);
1470 /* update eflags if non zero shift */
1471 if (s->cc_op != CC_OP_DYNAMIC)
1472 gen_op_set_cc_op(s->cc_op);
1474 /* XXX: inefficient */
1475 t0 = tcg_temp_local_new();
1476 t1 = tcg_temp_local_new();
1478 tcg_gen_mov_tl(t0, cpu_T[0]);
1479 tcg_gen_mov_tl(t1, cpu_T3);
1481 shift_label = gen_new_label();
1482 tcg_gen_brcondi_tl(TCG_COND_EQ, cpu_T[1], 0, shift_label);
1484 tcg_gen_mov_tl(cpu_cc_src, t1);
1485 tcg_gen_mov_tl(cpu_cc_dst, t0);
1487 tcg_gen_movi_i32(cpu_cc_op, CC_OP_SARB + ot);
1489 tcg_gen_movi_i32(cpu_cc_op, CC_OP_SHLB + ot);
1491 gen_set_label(shift_label);
1492 s->cc_op = CC_OP_DYNAMIC; /* cannot predict flags after */
1498 static void gen_shift_rm_im(DisasContext *s, int ot, int op1, int op2,
1499 int is_right, int is_arith)
1510 gen_op_ld_T0_A0(ot + s->mem_index);
1512 gen_op_mov_TN_reg(ot, 0, op1);
1518 gen_exts(ot, cpu_T[0]);
1519 tcg_gen_sari_tl(cpu_tmp4, cpu_T[0], op2 - 1);
1520 tcg_gen_sari_tl(cpu_T[0], cpu_T[0], op2);
1522 gen_extu(ot, cpu_T[0]);
1523 tcg_gen_shri_tl(cpu_tmp4, cpu_T[0], op2 - 1);
1524 tcg_gen_shri_tl(cpu_T[0], cpu_T[0], op2);
1527 tcg_gen_shli_tl(cpu_tmp4, cpu_T[0], op2 - 1);
1528 tcg_gen_shli_tl(cpu_T[0], cpu_T[0], op2);
1534 gen_op_st_T0_A0(ot + s->mem_index);
1536 gen_op_mov_reg_T0(ot, op1);
1538 /* update eflags if non zero shift */
1540 tcg_gen_mov_tl(cpu_cc_src, cpu_tmp4);
1541 tcg_gen_mov_tl(cpu_cc_dst, cpu_T[0]);
1543 s->cc_op = CC_OP_SARB + ot;
1545 s->cc_op = CC_OP_SHLB + ot;
1549 static inline void tcg_gen_lshift(TCGv ret, TCGv arg1, target_long arg2)
1552 tcg_gen_shli_tl(ret, arg1, arg2);
1554 tcg_gen_shri_tl(ret, arg1, -arg2);
1557 static void gen_rot_rm_T1(DisasContext *s, int ot, int op1,
1561 int label1, label2, data_bits;
1562 TCGv t0, t1, t2, a0;
1564 /* XXX: inefficient, but we must use local temps */
1565 t0 = tcg_temp_local_new();
1566 t1 = tcg_temp_local_new();
1567 t2 = tcg_temp_local_new();
1568 a0 = tcg_temp_local_new();
1576 if (op1 == OR_TMP0) {
1577 tcg_gen_mov_tl(a0, cpu_A0);
1578 gen_op_ld_v(ot + s->mem_index, t0, a0);
1580 gen_op_mov_v_reg(ot, t0, op1);
1583 tcg_gen_mov_tl(t1, cpu_T[1]);
1585 tcg_gen_andi_tl(t1, t1, mask);
1587 /* Must test zero case to avoid using undefined behaviour in TCG
1589 label1 = gen_new_label();
1590 tcg_gen_brcondi_tl(TCG_COND_EQ, t1, 0, label1);
1593 tcg_gen_andi_tl(cpu_tmp0, t1, (1 << (3 + ot)) - 1);
1595 tcg_gen_mov_tl(cpu_tmp0, t1);
1598 tcg_gen_mov_tl(t2, t0);
1600 data_bits = 8 << ot;
1601 /* XXX: rely on behaviour of shifts when operand 2 overflows (XXX:
1602 fix TCG definition) */
1604 tcg_gen_shr_tl(cpu_tmp4, t0, cpu_tmp0);
1605 tcg_gen_subfi_tl(cpu_tmp0, data_bits, cpu_tmp0);
1606 tcg_gen_shl_tl(t0, t0, cpu_tmp0);
1608 tcg_gen_shl_tl(cpu_tmp4, t0, cpu_tmp0);
1609 tcg_gen_subfi_tl(cpu_tmp0, data_bits, cpu_tmp0);
1610 tcg_gen_shr_tl(t0, t0, cpu_tmp0);
1612 tcg_gen_or_tl(t0, t0, cpu_tmp4);
1614 gen_set_label(label1);
1616 if (op1 == OR_TMP0) {
1617 gen_op_st_v(ot + s->mem_index, t0, a0);
1619 gen_op_mov_reg_v(ot, op1, t0);
1623 if (s->cc_op != CC_OP_DYNAMIC)
1624 gen_op_set_cc_op(s->cc_op);
1626 label2 = gen_new_label();
1627 tcg_gen_brcondi_tl(TCG_COND_EQ, t1, 0, label2);
1629 gen_compute_eflags(cpu_cc_src);
1630 tcg_gen_andi_tl(cpu_cc_src, cpu_cc_src, ~(CC_O | CC_C));
1631 tcg_gen_xor_tl(cpu_tmp0, t2, t0);
1632 tcg_gen_lshift(cpu_tmp0, cpu_tmp0, 11 - (data_bits - 1));
1633 tcg_gen_andi_tl(cpu_tmp0, cpu_tmp0, CC_O);
1634 tcg_gen_or_tl(cpu_cc_src, cpu_cc_src, cpu_tmp0);
1636 tcg_gen_shri_tl(t0, t0, data_bits - 1);
1638 tcg_gen_andi_tl(t0, t0, CC_C);
1639 tcg_gen_or_tl(cpu_cc_src, cpu_cc_src, t0);
1641 tcg_gen_discard_tl(cpu_cc_dst);
1642 tcg_gen_movi_i32(cpu_cc_op, CC_OP_EFLAGS);
1644 gen_set_label(label2);
1645 s->cc_op = CC_OP_DYNAMIC; /* cannot predict flags after */
1653 static void gen_rot_rm_im(DisasContext *s, int ot, int op1, int op2,
1660 /* XXX: inefficient, but we must use local temps */
1661 t0 = tcg_temp_local_new();
1662 t1 = tcg_temp_local_new();
1663 a0 = tcg_temp_local_new();
1671 if (op1 == OR_TMP0) {
1672 tcg_gen_mov_tl(a0, cpu_A0);
1673 gen_op_ld_v(ot + s->mem_index, t0, a0);
1675 gen_op_mov_v_reg(ot, t0, op1);
1679 tcg_gen_mov_tl(t1, t0);
1682 data_bits = 8 << ot;
1684 int shift = op2 & ((1 << (3 + ot)) - 1);
1686 tcg_gen_shri_tl(cpu_tmp4, t0, shift);
1687 tcg_gen_shli_tl(t0, t0, data_bits - shift);
1690 tcg_gen_shli_tl(cpu_tmp4, t0, shift);
1691 tcg_gen_shri_tl(t0, t0, data_bits - shift);
1693 tcg_gen_or_tl(t0, t0, cpu_tmp4);
1697 if (op1 == OR_TMP0) {
1698 gen_op_st_v(ot + s->mem_index, t0, a0);
1700 gen_op_mov_reg_v(ot, op1, t0);
1705 if (s->cc_op != CC_OP_DYNAMIC)
1706 gen_op_set_cc_op(s->cc_op);
1708 gen_compute_eflags(cpu_cc_src);
1709 tcg_gen_andi_tl(cpu_cc_src, cpu_cc_src, ~(CC_O | CC_C));
1710 tcg_gen_xor_tl(cpu_tmp0, t1, t0);
1711 tcg_gen_lshift(cpu_tmp0, cpu_tmp0, 11 - (data_bits - 1));
1712 tcg_gen_andi_tl(cpu_tmp0, cpu_tmp0, CC_O);
1713 tcg_gen_or_tl(cpu_cc_src, cpu_cc_src, cpu_tmp0);
1715 tcg_gen_shri_tl(t0, t0, data_bits - 1);
1717 tcg_gen_andi_tl(t0, t0, CC_C);
1718 tcg_gen_or_tl(cpu_cc_src, cpu_cc_src, t0);
1720 tcg_gen_discard_tl(cpu_cc_dst);
1721 tcg_gen_movi_i32(cpu_cc_op, CC_OP_EFLAGS);
1722 s->cc_op = CC_OP_EFLAGS;
1730 /* XXX: add faster immediate = 1 case */
1731 static void gen_rotc_rm_T1(DisasContext *s, int ot, int op1,
1736 if (s->cc_op != CC_OP_DYNAMIC)
1737 gen_op_set_cc_op(s->cc_op);
1741 gen_op_ld_T0_A0(ot + s->mem_index);
1743 gen_op_mov_TN_reg(ot, 0, op1);
1747 case 0: gen_helper_rcrb(cpu_T[0], cpu_T[0], cpu_T[1]); break;
1748 case 1: gen_helper_rcrw(cpu_T[0], cpu_T[0], cpu_T[1]); break;
1749 case 2: gen_helper_rcrl(cpu_T[0], cpu_T[0], cpu_T[1]); break;
1750 #ifdef TARGET_X86_64
1751 case 3: gen_helper_rcrq(cpu_T[0], cpu_T[0], cpu_T[1]); break;
1756 case 0: gen_helper_rclb(cpu_T[0], cpu_T[0], cpu_T[1]); break;
1757 case 1: gen_helper_rclw(cpu_T[0], cpu_T[0], cpu_T[1]); break;
1758 case 2: gen_helper_rcll(cpu_T[0], cpu_T[0], cpu_T[1]); break;
1759 #ifdef TARGET_X86_64
1760 case 3: gen_helper_rclq(cpu_T[0], cpu_T[0], cpu_T[1]); break;
1766 gen_op_st_T0_A0(ot + s->mem_index);
1768 gen_op_mov_reg_T0(ot, op1);
1771 label1 = gen_new_label();
1772 tcg_gen_brcondi_tl(TCG_COND_EQ, cpu_cc_tmp, -1, label1);
1774 tcg_gen_mov_tl(cpu_cc_src, cpu_cc_tmp);
1775 tcg_gen_discard_tl(cpu_cc_dst);
1776 tcg_gen_movi_i32(cpu_cc_op, CC_OP_EFLAGS);
1778 gen_set_label(label1);
1779 s->cc_op = CC_OP_DYNAMIC; /* cannot predict flags after */
1782 /* XXX: add faster immediate case */
1783 static void gen_shiftd_rm_T1_T3(DisasContext *s, int ot, int op1,
1786 int label1, label2, data_bits;
1788 TCGv t0, t1, t2, a0;
1790 t0 = tcg_temp_local_new();
1791 t1 = tcg_temp_local_new();
1792 t2 = tcg_temp_local_new();
1793 a0 = tcg_temp_local_new();
1801 if (op1 == OR_TMP0) {
1802 tcg_gen_mov_tl(a0, cpu_A0);
1803 gen_op_ld_v(ot + s->mem_index, t0, a0);
1805 gen_op_mov_v_reg(ot, t0, op1);
1808 tcg_gen_andi_tl(cpu_T3, cpu_T3, mask);
1810 tcg_gen_mov_tl(t1, cpu_T[1]);
1811 tcg_gen_mov_tl(t2, cpu_T3);
1813 /* Must test zero case to avoid using undefined behaviour in TCG
1815 label1 = gen_new_label();
1816 tcg_gen_brcondi_tl(TCG_COND_EQ, t2, 0, label1);
1818 tcg_gen_addi_tl(cpu_tmp5, t2, -1);
1819 if (ot == OT_WORD) {
1820 /* Note: we implement the Intel behaviour for shift count > 16 */
1822 tcg_gen_andi_tl(t0, t0, 0xffff);
1823 tcg_gen_shli_tl(cpu_tmp0, t1, 16);
1824 tcg_gen_or_tl(t0, t0, cpu_tmp0);
1825 tcg_gen_ext32u_tl(t0, t0);
1827 tcg_gen_shr_tl(cpu_tmp4, t0, cpu_tmp5);
1829 /* only needed if count > 16, but a test would complicate */
1830 tcg_gen_subfi_tl(cpu_tmp5, 32, t2);
1831 tcg_gen_shl_tl(cpu_tmp0, t0, cpu_tmp5);
1833 tcg_gen_shr_tl(t0, t0, t2);
1835 tcg_gen_or_tl(t0, t0, cpu_tmp0);
1837 /* XXX: not optimal */
1838 tcg_gen_andi_tl(t0, t0, 0xffff);
1839 tcg_gen_shli_tl(t1, t1, 16);
1840 tcg_gen_or_tl(t1, t1, t0);
1841 tcg_gen_ext32u_tl(t1, t1);
1843 tcg_gen_shl_tl(cpu_tmp4, t0, cpu_tmp5);
1844 tcg_gen_subfi_tl(cpu_tmp0, 32, cpu_tmp5);
1845 tcg_gen_shr_tl(cpu_tmp5, t1, cpu_tmp0);
1846 tcg_gen_or_tl(cpu_tmp4, cpu_tmp4, cpu_tmp5);
1848 tcg_gen_shl_tl(t0, t0, t2);
1849 tcg_gen_subfi_tl(cpu_tmp5, 32, t2);
1850 tcg_gen_shr_tl(t1, t1, cpu_tmp5);
1851 tcg_gen_or_tl(t0, t0, t1);
1854 data_bits = 8 << ot;
1857 tcg_gen_ext32u_tl(t0, t0);
1859 tcg_gen_shr_tl(cpu_tmp4, t0, cpu_tmp5);
1861 tcg_gen_shr_tl(t0, t0, t2);
1862 tcg_gen_subfi_tl(cpu_tmp5, data_bits, t2);
1863 tcg_gen_shl_tl(t1, t1, cpu_tmp5);
1864 tcg_gen_or_tl(t0, t0, t1);
1868 tcg_gen_ext32u_tl(t1, t1);
1870 tcg_gen_shl_tl(cpu_tmp4, t0, cpu_tmp5);
1872 tcg_gen_shl_tl(t0, t0, t2);
1873 tcg_gen_subfi_tl(cpu_tmp5, data_bits, t2);
1874 tcg_gen_shr_tl(t1, t1, cpu_tmp5);
1875 tcg_gen_or_tl(t0, t0, t1);
1878 tcg_gen_mov_tl(t1, cpu_tmp4);
1880 gen_set_label(label1);
1882 if (op1 == OR_TMP0) {
1883 gen_op_st_v(ot + s->mem_index, t0, a0);
1885 gen_op_mov_reg_v(ot, op1, t0);
1889 if (s->cc_op != CC_OP_DYNAMIC)
1890 gen_op_set_cc_op(s->cc_op);
1892 label2 = gen_new_label();
1893 tcg_gen_brcondi_tl(TCG_COND_EQ, t2, 0, label2);
1895 tcg_gen_mov_tl(cpu_cc_src, t1);
1896 tcg_gen_mov_tl(cpu_cc_dst, t0);
1898 tcg_gen_movi_i32(cpu_cc_op, CC_OP_SARB + ot);
1900 tcg_gen_movi_i32(cpu_cc_op, CC_OP_SHLB + ot);
1902 gen_set_label(label2);
1903 s->cc_op = CC_OP_DYNAMIC; /* cannot predict flags after */
1911 static void gen_shift(DisasContext *s1, int op, int ot, int d, int s)
1914 gen_op_mov_TN_reg(ot, 1, s);
1917 gen_rot_rm_T1(s1, ot, d, 0);
1920 gen_rot_rm_T1(s1, ot, d, 1);
1924 gen_shift_rm_T1(s1, ot, d, 0, 0);
1927 gen_shift_rm_T1(s1, ot, d, 1, 0);
1930 gen_shift_rm_T1(s1, ot, d, 1, 1);
1933 gen_rotc_rm_T1(s1, ot, d, 0);
1936 gen_rotc_rm_T1(s1, ot, d, 1);
1941 static void gen_shifti(DisasContext *s1, int op, int ot, int d, int c)
1945 gen_rot_rm_im(s1, ot, d, c, 0);
1948 gen_rot_rm_im(s1, ot, d, c, 1);
1952 gen_shift_rm_im(s1, ot, d, c, 0, 0);
1955 gen_shift_rm_im(s1, ot, d, c, 1, 0);
1958 gen_shift_rm_im(s1, ot, d, c, 1, 1);
1961 /* currently not optimized */
1962 gen_op_movl_T1_im(c);
1963 gen_shift(s1, op, ot, d, OR_TMP1);
1968 static void gen_lea_modrm(DisasContext *s, int modrm, int *reg_ptr, int *offset_ptr)
1976 int mod, rm, code, override, must_add_seg;
1978 override = s->override;
1979 must_add_seg = s->addseg;
1982 mod = (modrm >> 6) & 3;
1994 code = ldub_code(s->pc++);
1995 scale = (code >> 6) & 3;
1996 index = ((code >> 3) & 7) | REX_X(s);
2003 if ((base & 7) == 5) {
2005 disp = (int32_t)ldl_code(s->pc);
2007 if (CODE64(s) && !havesib) {
2008 disp += s->pc + s->rip_offset;
2015 disp = (int8_t)ldub_code(s->pc++);
2019 disp = (int32_t)ldl_code(s->pc);
2025 /* for correct popl handling with esp */
2026 if (base == 4 && s->popl_esp_hack)
2027 disp += s->popl_esp_hack;
2028 #ifdef TARGET_X86_64
2029 if (s->aflag == 2) {
2030 gen_op_movq_A0_reg(base);
2032 gen_op_addq_A0_im(disp);
2037 gen_op_movl_A0_reg(base);
2039 gen_op_addl_A0_im(disp);
2042 #ifdef TARGET_X86_64
2043 if (s->aflag == 2) {
2044 gen_op_movq_A0_im(disp);
2048 gen_op_movl_A0_im(disp);
2051 /* index == 4 means no index */
2052 if (havesib && (index != 4)) {
2053 #ifdef TARGET_X86_64
2054 if (s->aflag == 2) {
2055 gen_op_addq_A0_reg_sN(scale, index);
2059 gen_op_addl_A0_reg_sN(scale, index);
2064 if (base == R_EBP || base == R_ESP)
2069 #ifdef TARGET_X86_64
2070 if (s->aflag == 2) {
2071 gen_op_addq_A0_seg(override);
2075 gen_op_addl_A0_seg(override);
2082 disp = lduw_code(s->pc);
2084 gen_op_movl_A0_im(disp);
2085 rm = 0; /* avoid SS override */
2092 disp = (int8_t)ldub_code(s->pc++);
2096 disp = lduw_code(s->pc);
2102 gen_op_movl_A0_reg(R_EBX);
2103 gen_op_addl_A0_reg_sN(0, R_ESI);
2106 gen_op_movl_A0_reg(R_EBX);
2107 gen_op_addl_A0_reg_sN(0, R_EDI);
2110 gen_op_movl_A0_reg(R_EBP);
2111 gen_op_addl_A0_reg_sN(0, R_ESI);
2114 gen_op_movl_A0_reg(R_EBP);
2115 gen_op_addl_A0_reg_sN(0, R_EDI);
2118 gen_op_movl_A0_reg(R_ESI);
2121 gen_op_movl_A0_reg(R_EDI);
2124 gen_op_movl_A0_reg(R_EBP);
2128 gen_op_movl_A0_reg(R_EBX);
2132 gen_op_addl_A0_im(disp);
2133 gen_op_andl_A0_ffff();
2137 if (rm == 2 || rm == 3 || rm == 6)
2142 gen_op_addl_A0_seg(override);
2152 static void gen_nop_modrm(DisasContext *s, int modrm)
2154 int mod, rm, base, code;
2156 mod = (modrm >> 6) & 3;
2166 code = ldub_code(s->pc++);
2202 /* used for LEA and MOV AX, mem */
2203 static void gen_add_A0_ds_seg(DisasContext *s)
2205 int override, must_add_seg;
2206 must_add_seg = s->addseg;
2208 if (s->override >= 0) {
2209 override = s->override;
2213 #ifdef TARGET_X86_64
2215 gen_op_addq_A0_seg(override);
2219 gen_op_addl_A0_seg(override);
2224 /* generate modrm memory load or store of 'reg'. TMP0 is used if reg ==
2226 static void gen_ldst_modrm(DisasContext *s, int modrm, int ot, int reg, int is_store)
2228 int mod, rm, opreg, disp;
2230 mod = (modrm >> 6) & 3;
2231 rm = (modrm & 7) | REX_B(s);
2235 gen_op_mov_TN_reg(ot, 0, reg);
2236 gen_op_mov_reg_T0(ot, rm);
2238 gen_op_mov_TN_reg(ot, 0, rm);
2240 gen_op_mov_reg_T0(ot, reg);
2243 gen_lea_modrm(s, modrm, &opreg, &disp);
2246 gen_op_mov_TN_reg(ot, 0, reg);
2247 gen_op_st_T0_A0(ot + s->mem_index);
2249 gen_op_ld_T0_A0(ot + s->mem_index);
2251 gen_op_mov_reg_T0(ot, reg);
2256 static inline uint32_t insn_get(DisasContext *s, int ot)
2262 ret = ldub_code(s->pc);
2266 ret = lduw_code(s->pc);
2271 ret = ldl_code(s->pc);
2278 static inline int insn_const_size(unsigned int ot)
2286 static inline void gen_goto_tb(DisasContext *s, int tb_num, target_ulong eip)
2288 TranslationBlock *tb;
2291 pc = s->cs_base + eip;
2293 /* NOTE: we handle the case where the TB spans two pages here */
2294 if ((pc & TARGET_PAGE_MASK) == (tb->pc & TARGET_PAGE_MASK) ||
2295 (pc & TARGET_PAGE_MASK) == ((s->pc - 1) & TARGET_PAGE_MASK)) {
2296 /* jump to same page: we can use a direct jump */
2297 tcg_gen_goto_tb(tb_num);
2299 tcg_gen_exit_tb((long)tb + tb_num);
2301 /* jump to another page: currently not optimized */
2307 static inline void gen_jcc(DisasContext *s, int b,
2308 target_ulong val, target_ulong next_eip)
2313 if (s->cc_op != CC_OP_DYNAMIC) {
2314 gen_op_set_cc_op(s->cc_op);
2315 s->cc_op = CC_OP_DYNAMIC;
2318 l1 = gen_new_label();
2319 gen_jcc1(s, cc_op, b, l1);
2321 gen_goto_tb(s, 0, next_eip);
2324 gen_goto_tb(s, 1, val);
2328 l1 = gen_new_label();
2329 l2 = gen_new_label();
2330 gen_jcc1(s, cc_op, b, l1);
2332 gen_jmp_im(next_eip);
2342 static void gen_setcc(DisasContext *s, int b)
2344 int inv, jcc_op, l1;
2347 if (is_fast_jcc_case(s, b)) {
2348 /* nominal case: we use a jump */
2349 /* XXX: make it faster by adding new instructions in TCG */
2350 t0 = tcg_temp_local_new();
2351 tcg_gen_movi_tl(t0, 0);
2352 l1 = gen_new_label();
2353 gen_jcc1(s, s->cc_op, b ^ 1, l1);
2354 tcg_gen_movi_tl(t0, 1);
2356 tcg_gen_mov_tl(cpu_T[0], t0);
2359 /* slow case: it is more efficient not to generate a jump,
2360 although it is questionnable whether this optimization is
2363 jcc_op = (b >> 1) & 7;
2364 gen_setcc_slow_T0(s, jcc_op);
2366 tcg_gen_xori_tl(cpu_T[0], cpu_T[0], 1);
2371 static inline void gen_op_movl_T0_seg(int seg_reg)
2373 tcg_gen_ld32u_tl(cpu_T[0], cpu_env,
2374 offsetof(CPUX86State,segs[seg_reg].selector));
2377 static inline void gen_op_movl_seg_T0_vm(int seg_reg)
2379 tcg_gen_andi_tl(cpu_T[0], cpu_T[0], 0xffff);
2380 tcg_gen_st32_tl(cpu_T[0], cpu_env,
2381 offsetof(CPUX86State,segs[seg_reg].selector));
2382 tcg_gen_shli_tl(cpu_T[0], cpu_T[0], 4);
2383 tcg_gen_st_tl(cpu_T[0], cpu_env,
2384 offsetof(CPUX86State,segs[seg_reg].base));
2387 /* move T0 to seg_reg and compute if the CPU state may change. Never
2388 call this function with seg_reg == R_CS */
2389 static void gen_movl_seg_T0(DisasContext *s, int seg_reg, target_ulong cur_eip)
2391 if (s->pe && !s->vm86) {
2392 /* XXX: optimize by finding processor state dynamically */
2393 if (s->cc_op != CC_OP_DYNAMIC)
2394 gen_op_set_cc_op(s->cc_op);
2395 gen_jmp_im(cur_eip);
2396 tcg_gen_trunc_tl_i32(cpu_tmp2_i32, cpu_T[0]);
2397 gen_helper_load_seg(tcg_const_i32(seg_reg), cpu_tmp2_i32);
2398 /* abort translation because the addseg value may change or
2399 because ss32 may change. For R_SS, translation must always
2400 stop as a special handling must be done to disable hardware
2401 interrupts for the next instruction */
2402 if (seg_reg == R_SS || (s->code32 && seg_reg < R_FS))
2405 gen_op_movl_seg_T0_vm(seg_reg);
2406 if (seg_reg == R_SS)
2411 static inline int svm_is_rep(int prefixes)
2413 return ((prefixes & (PREFIX_REPZ | PREFIX_REPNZ)) ? 8 : 0);
2417 gen_svm_check_intercept_param(DisasContext *s, target_ulong pc_start,
2418 uint32_t type, uint64_t param)
2420 /* no SVM activated; fast case */
2421 if (likely(!(s->flags & HF_SVMI_MASK)))
2423 if (s->cc_op != CC_OP_DYNAMIC)
2424 gen_op_set_cc_op(s->cc_op);
2425 gen_jmp_im(pc_start - s->cs_base);
2426 gen_helper_svm_check_intercept_param(tcg_const_i32(type),
2427 tcg_const_i64(param));
2431 gen_svm_check_intercept(DisasContext *s, target_ulong pc_start, uint64_t type)
2433 gen_svm_check_intercept_param(s, pc_start, type, 0);
2436 static inline void gen_stack_update(DisasContext *s, int addend)
2438 #ifdef TARGET_X86_64
2440 gen_op_add_reg_im(2, R_ESP, addend);
2444 gen_op_add_reg_im(1, R_ESP, addend);
2446 gen_op_add_reg_im(0, R_ESP, addend);
2450 /* generate a push. It depends on ss32, addseg and dflag */
2451 static void gen_push_T0(DisasContext *s)
2453 #ifdef TARGET_X86_64
2455 gen_op_movq_A0_reg(R_ESP);
2457 gen_op_addq_A0_im(-8);
2458 gen_op_st_T0_A0(OT_QUAD + s->mem_index);
2460 gen_op_addq_A0_im(-2);
2461 gen_op_st_T0_A0(OT_WORD + s->mem_index);
2463 gen_op_mov_reg_A0(2, R_ESP);
2467 gen_op_movl_A0_reg(R_ESP);
2469 gen_op_addl_A0_im(-2);
2471 gen_op_addl_A0_im(-4);
2474 tcg_gen_mov_tl(cpu_T[1], cpu_A0);
2475 gen_op_addl_A0_seg(R_SS);
2478 gen_op_andl_A0_ffff();
2479 tcg_gen_mov_tl(cpu_T[1], cpu_A0);
2480 gen_op_addl_A0_seg(R_SS);
2482 gen_op_st_T0_A0(s->dflag + 1 + s->mem_index);
2483 if (s->ss32 && !s->addseg)
2484 gen_op_mov_reg_A0(1, R_ESP);
2486 gen_op_mov_reg_T1(s->ss32 + 1, R_ESP);
2490 /* generate a push. It depends on ss32, addseg and dflag */
2491 /* slower version for T1, only used for call Ev */
2492 static void gen_push_T1(DisasContext *s)
2494 #ifdef TARGET_X86_64
2496 gen_op_movq_A0_reg(R_ESP);
2498 gen_op_addq_A0_im(-8);
2499 gen_op_st_T1_A0(OT_QUAD + s->mem_index);
2501 gen_op_addq_A0_im(-2);
2502 gen_op_st_T0_A0(OT_WORD + s->mem_index);
2504 gen_op_mov_reg_A0(2, R_ESP);
2508 gen_op_movl_A0_reg(R_ESP);
2510 gen_op_addl_A0_im(-2);
2512 gen_op_addl_A0_im(-4);
2515 gen_op_addl_A0_seg(R_SS);
2518 gen_op_andl_A0_ffff();
2519 gen_op_addl_A0_seg(R_SS);
2521 gen_op_st_T1_A0(s->dflag + 1 + s->mem_index);
2523 if (s->ss32 && !s->addseg)
2524 gen_op_mov_reg_A0(1, R_ESP);
2526 gen_stack_update(s, (-2) << s->dflag);
2530 /* two step pop is necessary for precise exceptions */
2531 static void gen_pop_T0(DisasContext *s)
2533 #ifdef TARGET_X86_64
2535 gen_op_movq_A0_reg(R_ESP);
2536 gen_op_ld_T0_A0((s->dflag ? OT_QUAD : OT_WORD) + s->mem_index);
2540 gen_op_movl_A0_reg(R_ESP);
2543 gen_op_addl_A0_seg(R_SS);
2545 gen_op_andl_A0_ffff();
2546 gen_op_addl_A0_seg(R_SS);
2548 gen_op_ld_T0_A0(s->dflag + 1 + s->mem_index);
2552 static void gen_pop_update(DisasContext *s)
2554 #ifdef TARGET_X86_64
2555 if (CODE64(s) && s->dflag) {
2556 gen_stack_update(s, 8);
2560 gen_stack_update(s, 2 << s->dflag);
2564 static void gen_stack_A0(DisasContext *s)
2566 gen_op_movl_A0_reg(R_ESP);
2568 gen_op_andl_A0_ffff();
2569 tcg_gen_mov_tl(cpu_T[1], cpu_A0);
2571 gen_op_addl_A0_seg(R_SS);
2574 /* NOTE: wrap around in 16 bit not fully handled */
2575 static void gen_pusha(DisasContext *s)
2578 gen_op_movl_A0_reg(R_ESP);
2579 gen_op_addl_A0_im(-16 << s->dflag);
2581 gen_op_andl_A0_ffff();
2582 tcg_gen_mov_tl(cpu_T[1], cpu_A0);
2584 gen_op_addl_A0_seg(R_SS);
2585 for(i = 0;i < 8; i++) {
2586 gen_op_mov_TN_reg(OT_LONG, 0, 7 - i);
2587 gen_op_st_T0_A0(OT_WORD + s->dflag + s->mem_index);
2588 gen_op_addl_A0_im(2 << s->dflag);
2590 gen_op_mov_reg_T1(OT_WORD + s->ss32, R_ESP);
2593 /* NOTE: wrap around in 16 bit not fully handled */
2594 static void gen_popa(DisasContext *s)
2597 gen_op_movl_A0_reg(R_ESP);
2599 gen_op_andl_A0_ffff();
2600 tcg_gen_mov_tl(cpu_T[1], cpu_A0);
2601 tcg_gen_addi_tl(cpu_T[1], cpu_T[1], 16 << s->dflag);
2603 gen_op_addl_A0_seg(R_SS);
2604 for(i = 0;i < 8; i++) {
2605 /* ESP is not reloaded */
2607 gen_op_ld_T0_A0(OT_WORD + s->dflag + s->mem_index);
2608 gen_op_mov_reg_T0(OT_WORD + s->dflag, 7 - i);
2610 gen_op_addl_A0_im(2 << s->dflag);
2612 gen_op_mov_reg_T1(OT_WORD + s->ss32, R_ESP);
2615 static void gen_enter(DisasContext *s, int esp_addend, int level)
2620 #ifdef TARGET_X86_64
2622 ot = s->dflag ? OT_QUAD : OT_WORD;
2625 gen_op_movl_A0_reg(R_ESP);
2626 gen_op_addq_A0_im(-opsize);
2627 tcg_gen_mov_tl(cpu_T[1], cpu_A0);
2630 gen_op_mov_TN_reg(OT_LONG, 0, R_EBP);
2631 gen_op_st_T0_A0(ot + s->mem_index);
2633 /* XXX: must save state */
2634 gen_helper_enter64_level(tcg_const_i32(level),
2635 tcg_const_i32((ot == OT_QUAD)),
2638 gen_op_mov_reg_T1(ot, R_EBP);
2639 tcg_gen_addi_tl(cpu_T[1], cpu_T[1], -esp_addend + (-opsize * level));
2640 gen_op_mov_reg_T1(OT_QUAD, R_ESP);
2644 ot = s->dflag + OT_WORD;
2645 opsize = 2 << s->dflag;
2647 gen_op_movl_A0_reg(R_ESP);
2648 gen_op_addl_A0_im(-opsize);
2650 gen_op_andl_A0_ffff();
2651 tcg_gen_mov_tl(cpu_T[1], cpu_A0);
2653 gen_op_addl_A0_seg(R_SS);
2655 gen_op_mov_TN_reg(OT_LONG, 0, R_EBP);
2656 gen_op_st_T0_A0(ot + s->mem_index);
2658 /* XXX: must save state */
2659 gen_helper_enter_level(tcg_const_i32(level),
2660 tcg_const_i32(s->dflag),
2663 gen_op_mov_reg_T1(ot, R_EBP);
2664 tcg_gen_addi_tl(cpu_T[1], cpu_T[1], -esp_addend + (-opsize * level));
2665 gen_op_mov_reg_T1(OT_WORD + s->ss32, R_ESP);
2669 static void gen_exception(DisasContext *s, int trapno, target_ulong cur_eip)
2671 if (s->cc_op != CC_OP_DYNAMIC)
2672 gen_op_set_cc_op(s->cc_op);
2673 gen_jmp_im(cur_eip);
2674 gen_helper_raise_exception(tcg_const_i32(trapno));
2678 /* an interrupt is different from an exception because of the
2680 static void gen_interrupt(DisasContext *s, int intno,
2681 target_ulong cur_eip, target_ulong next_eip)
2683 if (s->cc_op != CC_OP_DYNAMIC)
2684 gen_op_set_cc_op(s->cc_op);
2685 gen_jmp_im(cur_eip);
2686 gen_helper_raise_interrupt(tcg_const_i32(intno),
2687 tcg_const_i32(next_eip - cur_eip));
2691 static void gen_debug(DisasContext *s, target_ulong cur_eip)
2693 if (s->cc_op != CC_OP_DYNAMIC)
2694 gen_op_set_cc_op(s->cc_op);
2695 gen_jmp_im(cur_eip);
2700 /* generate a generic end of block. Trace exception is also generated
2702 static void gen_eob(DisasContext *s)
2704 if (s->cc_op != CC_OP_DYNAMIC)
2705 gen_op_set_cc_op(s->cc_op);
2706 if (s->tb->flags & HF_INHIBIT_IRQ_MASK) {
2707 gen_helper_reset_inhibit_irq();
2709 if (s->tb->flags & HF_RF_MASK) {
2710 gen_helper_reset_rf();
2712 if (s->singlestep_enabled) {
2715 gen_helper_single_step();
2722 /* generate a jump to eip. No segment change must happen before as a
2723 direct call to the next block may occur */
2724 static void gen_jmp_tb(DisasContext *s, target_ulong eip, int tb_num)
2727 if (s->cc_op != CC_OP_DYNAMIC) {
2728 gen_op_set_cc_op(s->cc_op);
2729 s->cc_op = CC_OP_DYNAMIC;
2731 gen_goto_tb(s, tb_num, eip);
2739 static void gen_jmp(DisasContext *s, target_ulong eip)
2741 gen_jmp_tb(s, eip, 0);
2744 static inline void gen_ldq_env_A0(int idx, int offset)
2746 int mem_index = (idx >> 2) - 1;
2747 tcg_gen_qemu_ld64(cpu_tmp1_i64, cpu_A0, mem_index);
2748 tcg_gen_st_i64(cpu_tmp1_i64, cpu_env, offset);
2751 static inline void gen_stq_env_A0(int idx, int offset)
2753 int mem_index = (idx >> 2) - 1;
2754 tcg_gen_ld_i64(cpu_tmp1_i64, cpu_env, offset);
2755 tcg_gen_qemu_st64(cpu_tmp1_i64, cpu_A0, mem_index);
2758 static inline void gen_ldo_env_A0(int idx, int offset)
2760 int mem_index = (idx >> 2) - 1;
2761 tcg_gen_qemu_ld64(cpu_tmp1_i64, cpu_A0, mem_index);
2762 tcg_gen_st_i64(cpu_tmp1_i64, cpu_env, offset + offsetof(XMMReg, XMM_Q(0)));
2763 tcg_gen_addi_tl(cpu_tmp0, cpu_A0, 8);
2764 tcg_gen_qemu_ld64(cpu_tmp1_i64, cpu_tmp0, mem_index);
2765 tcg_gen_st_i64(cpu_tmp1_i64, cpu_env, offset + offsetof(XMMReg, XMM_Q(1)));
2768 static inline void gen_sto_env_A0(int idx, int offset)
2770 int mem_index = (idx >> 2) - 1;
2771 tcg_gen_ld_i64(cpu_tmp1_i64, cpu_env, offset + offsetof(XMMReg, XMM_Q(0)));
2772 tcg_gen_qemu_st64(cpu_tmp1_i64, cpu_A0, mem_index);
2773 tcg_gen_addi_tl(cpu_tmp0, cpu_A0, 8);
2774 tcg_gen_ld_i64(cpu_tmp1_i64, cpu_env, offset + offsetof(XMMReg, XMM_Q(1)));
2775 tcg_gen_qemu_st64(cpu_tmp1_i64, cpu_tmp0, mem_index);
2778 static inline void gen_op_movo(int d_offset, int s_offset)
2780 tcg_gen_ld_i64(cpu_tmp1_i64, cpu_env, s_offset);
2781 tcg_gen_st_i64(cpu_tmp1_i64, cpu_env, d_offset);
2782 tcg_gen_ld_i64(cpu_tmp1_i64, cpu_env, s_offset + 8);
2783 tcg_gen_st_i64(cpu_tmp1_i64, cpu_env, d_offset + 8);
2786 static inline void gen_op_movq(int d_offset, int s_offset)
2788 tcg_gen_ld_i64(cpu_tmp1_i64, cpu_env, s_offset);
2789 tcg_gen_st_i64(cpu_tmp1_i64, cpu_env, d_offset);
2792 static inline void gen_op_movl(int d_offset, int s_offset)
2794 tcg_gen_ld_i32(cpu_tmp2_i32, cpu_env, s_offset);
2795 tcg_gen_st_i32(cpu_tmp2_i32, cpu_env, d_offset);
2798 static inline void gen_op_movq_env_0(int d_offset)
2800 tcg_gen_movi_i64(cpu_tmp1_i64, 0);
2801 tcg_gen_st_i64(cpu_tmp1_i64, cpu_env, d_offset);
2804 #define SSE_SPECIAL ((void *)1)
2805 #define SSE_DUMMY ((void *)2)
2807 #define MMX_OP2(x) { gen_helper_ ## x ## _mmx, gen_helper_ ## x ## _xmm }
2808 #define SSE_FOP(x) { gen_helper_ ## x ## ps, gen_helper_ ## x ## pd, \
2809 gen_helper_ ## x ## ss, gen_helper_ ## x ## sd, }
2811 static void *sse_op_table1[256][4] = {
2812 /* 3DNow! extensions */
2813 [0x0e] = { SSE_DUMMY }, /* femms */
2814 [0x0f] = { SSE_DUMMY }, /* pf... */
2815 /* pure SSE operations */
2816 [0x10] = { SSE_SPECIAL, SSE_SPECIAL, SSE_SPECIAL, SSE_SPECIAL }, /* movups, movupd, movss, movsd */
2817 [0x11] = { SSE_SPECIAL, SSE_SPECIAL, SSE_SPECIAL, SSE_SPECIAL }, /* movups, movupd, movss, movsd */
2818 [0x12] = { SSE_SPECIAL, SSE_SPECIAL, SSE_SPECIAL, SSE_SPECIAL }, /* movlps, movlpd, movsldup, movddup */
2819 [0x13] = { SSE_SPECIAL, SSE_SPECIAL }, /* movlps, movlpd */
2820 [0x14] = { gen_helper_punpckldq_xmm, gen_helper_punpcklqdq_xmm },
2821 [0x15] = { gen_helper_punpckhdq_xmm, gen_helper_punpckhqdq_xmm },
2822 [0x16] = { SSE_SPECIAL, SSE_SPECIAL, SSE_SPECIAL }, /* movhps, movhpd, movshdup */
2823 [0x17] = { SSE_SPECIAL, SSE_SPECIAL }, /* movhps, movhpd */
2825 [0x28] = { SSE_SPECIAL, SSE_SPECIAL }, /* movaps, movapd */
2826 [0x29] = { SSE_SPECIAL, SSE_SPECIAL }, /* movaps, movapd */
2827 [0x2a] = { SSE_SPECIAL, SSE_SPECIAL, SSE_SPECIAL, SSE_SPECIAL }, /* cvtpi2ps, cvtpi2pd, cvtsi2ss, cvtsi2sd */
2828 [0x2b] = { SSE_SPECIAL, SSE_SPECIAL, SSE_SPECIAL, SSE_SPECIAL }, /* movntps, movntpd, movntss, movntsd */
2829 [0x2c] = { SSE_SPECIAL, SSE_SPECIAL, SSE_SPECIAL, SSE_SPECIAL }, /* cvttps2pi, cvttpd2pi, cvttsd2si, cvttss2si */
2830 [0x2d] = { SSE_SPECIAL, SSE_SPECIAL, SSE_SPECIAL, SSE_SPECIAL }, /* cvtps2pi, cvtpd2pi, cvtsd2si, cvtss2si */
2831 [0x2e] = { gen_helper_ucomiss, gen_helper_ucomisd },
2832 [0x2f] = { gen_helper_comiss, gen_helper_comisd },
2833 [0x50] = { SSE_SPECIAL, SSE_SPECIAL }, /* movmskps, movmskpd */
2834 [0x51] = SSE_FOP(sqrt),
2835 [0x52] = { gen_helper_rsqrtps, NULL, gen_helper_rsqrtss, NULL },
2836 [0x53] = { gen_helper_rcpps, NULL, gen_helper_rcpss, NULL },
2837 [0x54] = { gen_helper_pand_xmm, gen_helper_pand_xmm }, /* andps, andpd */
2838 [0x55] = { gen_helper_pandn_xmm, gen_helper_pandn_xmm }, /* andnps, andnpd */
2839 [0x56] = { gen_helper_por_xmm, gen_helper_por_xmm }, /* orps, orpd */
2840 [0x57] = { gen_helper_pxor_xmm, gen_helper_pxor_xmm }, /* xorps, xorpd */
2841 [0x58] = SSE_FOP(add),
2842 [0x59] = SSE_FOP(mul),
2843 [0x5a] = { gen_helper_cvtps2pd, gen_helper_cvtpd2ps,
2844 gen_helper_cvtss2sd, gen_helper_cvtsd2ss },
2845 [0x5b] = { gen_helper_cvtdq2ps, gen_helper_cvtps2dq, gen_helper_cvttps2dq },
2846 [0x5c] = SSE_FOP(sub),
2847 [0x5d] = SSE_FOP(min),
2848 [0x5e] = SSE_FOP(div),
2849 [0x5f] = SSE_FOP(max),
2851 [0xc2] = SSE_FOP(cmpeq),
2852 [0xc6] = { gen_helper_shufps, gen_helper_shufpd },
2854 [0x38] = { SSE_SPECIAL, SSE_SPECIAL, NULL, SSE_SPECIAL }, /* SSSE3/SSE4 */
2855 [0x3a] = { SSE_SPECIAL, SSE_SPECIAL }, /* SSSE3/SSE4 */
2857 /* MMX ops and their SSE extensions */
2858 [0x60] = MMX_OP2(punpcklbw),
2859 [0x61] = MMX_OP2(punpcklwd),
2860 [0x62] = MMX_OP2(punpckldq),
2861 [0x63] = MMX_OP2(packsswb),
2862 [0x64] = MMX_OP2(pcmpgtb),
2863 [0x65] = MMX_OP2(pcmpgtw),
2864 [0x66] = MMX_OP2(pcmpgtl),
2865 [0x67] = MMX_OP2(packuswb),
2866 [0x68] = MMX_OP2(punpckhbw),
2867 [0x69] = MMX_OP2(punpckhwd),
2868 [0x6a] = MMX_OP2(punpckhdq),
2869 [0x6b] = MMX_OP2(packssdw),
2870 [0x6c] = { NULL, gen_helper_punpcklqdq_xmm },
2871 [0x6d] = { NULL, gen_helper_punpckhqdq_xmm },
2872 [0x6e] = { SSE_SPECIAL, SSE_SPECIAL }, /* movd mm, ea */
2873 [0x6f] = { SSE_SPECIAL, SSE_SPECIAL, SSE_SPECIAL }, /* movq, movdqa, , movqdu */
2874 [0x70] = { gen_helper_pshufw_mmx,
2875 gen_helper_pshufd_xmm,
2876 gen_helper_pshufhw_xmm,
2877 gen_helper_pshuflw_xmm },
2878 [0x71] = { SSE_SPECIAL, SSE_SPECIAL }, /* shiftw */
2879 [0x72] = { SSE_SPECIAL, SSE_SPECIAL }, /* shiftd */
2880 [0x73] = { SSE_SPECIAL, SSE_SPECIAL }, /* shiftq */
2881 [0x74] = MMX_OP2(pcmpeqb),
2882 [0x75] = MMX_OP2(pcmpeqw),
2883 [0x76] = MMX_OP2(pcmpeql),
2884 [0x77] = { SSE_DUMMY }, /* emms */
2885 [0x78] = { NULL, SSE_SPECIAL, NULL, SSE_SPECIAL }, /* extrq_i, insertq_i */
2886 [0x79] = { NULL, gen_helper_extrq_r, NULL, gen_helper_insertq_r },
2887 [0x7c] = { NULL, gen_helper_haddpd, NULL, gen_helper_haddps },
2888 [0x7d] = { NULL, gen_helper_hsubpd, NULL, gen_helper_hsubps },
2889 [0x7e] = { SSE_SPECIAL, SSE_SPECIAL, SSE_SPECIAL }, /* movd, movd, , movq */
2890 [0x7f] = { SSE_SPECIAL, SSE_SPECIAL, SSE_SPECIAL }, /* movq, movdqa, movdqu */
2891 [0xc4] = { SSE_SPECIAL, SSE_SPECIAL }, /* pinsrw */
2892 [0xc5] = { SSE_SPECIAL, SSE_SPECIAL }, /* pextrw */
2893 [0xd0] = { NULL, gen_helper_addsubpd, NULL, gen_helper_addsubps },
2894 [0xd1] = MMX_OP2(psrlw),
2895 [0xd2] = MMX_OP2(psrld),
2896 [0xd3] = MMX_OP2(psrlq),
2897 [0xd4] = MMX_OP2(paddq),
2898 [0xd5] = MMX_OP2(pmullw),
2899 [0xd6] = { NULL, SSE_SPECIAL, SSE_SPECIAL, SSE_SPECIAL },
2900 [0xd7] = { SSE_SPECIAL, SSE_SPECIAL }, /* pmovmskb */
2901 [0xd8] = MMX_OP2(psubusb),
2902 [0xd9] = MMX_OP2(psubusw),
2903 [0xda] = MMX_OP2(pminub),
2904 [0xdb] = MMX_OP2(pand),
2905 [0xdc] = MMX_OP2(paddusb),
2906 [0xdd] = MMX_OP2(paddusw),
2907 [0xde] = MMX_OP2(pmaxub),
2908 [0xdf] = MMX_OP2(pandn),
2909 [0xe0] = MMX_OP2(pavgb),
2910 [0xe1] = MMX_OP2(psraw),
2911 [0xe2] = MMX_OP2(psrad),
2912 [0xe3] = MMX_OP2(pavgw),
2913 [0xe4] = MMX_OP2(pmulhuw),
2914 [0xe5] = MMX_OP2(pmulhw),
2915 [0xe6] = { NULL, gen_helper_cvttpd2dq, gen_helper_cvtdq2pd, gen_helper_cvtpd2dq },
2916 [0xe7] = { SSE_SPECIAL , SSE_SPECIAL }, /* movntq, movntq */
2917 [0xe8] = MMX_OP2(psubsb),
2918 [0xe9] = MMX_OP2(psubsw),
2919 [0xea] = MMX_OP2(pminsw),
2920 [0xeb] = MMX_OP2(por),
2921 [0xec] = MMX_OP2(paddsb),
2922 [0xed] = MMX_OP2(paddsw),
2923 [0xee] = MMX_OP2(pmaxsw),
2924 [0xef] = MMX_OP2(pxor),
2925 [0xf0] = { NULL, NULL, NULL, SSE_SPECIAL }, /* lddqu */
2926 [0xf1] = MMX_OP2(psllw),
2927 [0xf2] = MMX_OP2(pslld),
2928 [0xf3] = MMX_OP2(psllq),
2929 [0xf4] = MMX_OP2(pmuludq),
2930 [0xf5] = MMX_OP2(pmaddwd),
2931 [0xf6] = MMX_OP2(psadbw),
2932 [0xf7] = MMX_OP2(maskmov),
2933 [0xf8] = MMX_OP2(psubb),
2934 [0xf9] = MMX_OP2(psubw),
2935 [0xfa] = MMX_OP2(psubl),
2936 [0xfb] = MMX_OP2(psubq),
2937 [0xfc] = MMX_OP2(paddb),
2938 [0xfd] = MMX_OP2(paddw),
2939 [0xfe] = MMX_OP2(paddl),
2942 static void *sse_op_table2[3 * 8][2] = {
2943 [0 + 2] = MMX_OP2(psrlw),
2944 [0 + 4] = MMX_OP2(psraw),
2945 [0 + 6] = MMX_OP2(psllw),
2946 [8 + 2] = MMX_OP2(psrld),
2947 [8 + 4] = MMX_OP2(psrad),
2948 [8 + 6] = MMX_OP2(pslld),
2949 [16 + 2] = MMX_OP2(psrlq),
2950 [16 + 3] = { NULL, gen_helper_psrldq_xmm },
2951 [16 + 6] = MMX_OP2(psllq),
2952 [16 + 7] = { NULL, gen_helper_pslldq_xmm },
2955 static void *sse_op_table3[4 * 3] = {
2956 gen_helper_cvtsi2ss,
2957 gen_helper_cvtsi2sd,
2958 X86_64_ONLY(gen_helper_cvtsq2ss),
2959 X86_64_ONLY(gen_helper_cvtsq2sd),
2961 gen_helper_cvttss2si,
2962 gen_helper_cvttsd2si,
2963 X86_64_ONLY(gen_helper_cvttss2sq),
2964 X86_64_ONLY(gen_helper_cvttsd2sq),
2966 gen_helper_cvtss2si,
2967 gen_helper_cvtsd2si,
2968 X86_64_ONLY(gen_helper_cvtss2sq),
2969 X86_64_ONLY(gen_helper_cvtsd2sq),
2972 static void *sse_op_table4[8][4] = {
2983 static void *sse_op_table5[256] = {
2984 [0x0c] = gen_helper_pi2fw,
2985 [0x0d] = gen_helper_pi2fd,
2986 [0x1c] = gen_helper_pf2iw,
2987 [0x1d] = gen_helper_pf2id,
2988 [0x8a] = gen_helper_pfnacc,
2989 [0x8e] = gen_helper_pfpnacc,
2990 [0x90] = gen_helper_pfcmpge,
2991 [0x94] = gen_helper_pfmin,
2992 [0x96] = gen_helper_pfrcp,
2993 [0x97] = gen_helper_pfrsqrt,
2994 [0x9a] = gen_helper_pfsub,
2995 [0x9e] = gen_helper_pfadd,
2996 [0xa0] = gen_helper_pfcmpgt,
2997 [0xa4] = gen_helper_pfmax,
2998 [0xa6] = gen_helper_movq, /* pfrcpit1; no need to actually increase precision */
2999 [0xa7] = gen_helper_movq, /* pfrsqit1 */
3000 [0xaa] = gen_helper_pfsubr,
3001 [0xae] = gen_helper_pfacc,
3002 [0xb0] = gen_helper_pfcmpeq,
3003 [0xb4] = gen_helper_pfmul,
3004 [0xb6] = gen_helper_movq, /* pfrcpit2 */
3005 [0xb7] = gen_helper_pmulhrw_mmx,
3006 [0xbb] = gen_helper_pswapd,
3007 [0xbf] = gen_helper_pavgb_mmx /* pavgusb */
3010 struct sse_op_helper_s {
3011 void *op[2]; uint32_t ext_mask;
3013 #define SSSE3_OP(x) { MMX_OP2(x), CPUID_EXT_SSSE3 }
3014 #define SSE41_OP(x) { { NULL, gen_helper_ ## x ## _xmm }, CPUID_EXT_SSE41 }
3015 #define SSE42_OP(x) { { NULL, gen_helper_ ## x ## _xmm }, CPUID_EXT_SSE42 }
3016 #define SSE41_SPECIAL { { NULL, SSE_SPECIAL }, CPUID_EXT_SSE41 }
3017 static struct sse_op_helper_s sse_op_table6[256] = {
3018 [0x00] = SSSE3_OP(pshufb),
3019 [0x01] = SSSE3_OP(phaddw),
3020 [0x02] = SSSE3_OP(phaddd),
3021 [0x03] = SSSE3_OP(phaddsw),
3022 [0x04] = SSSE3_OP(pmaddubsw),
3023 [0x05] = SSSE3_OP(phsubw),
3024 [0x06] = SSSE3_OP(phsubd),
3025 [0x07] = SSSE3_OP(phsubsw),
3026 [0x08] = SSSE3_OP(psignb),
3027 [0x09] = SSSE3_OP(psignw),
3028 [0x0a] = SSSE3_OP(psignd),
3029 [0x0b] = SSSE3_OP(pmulhrsw),
3030 [0x10] = SSE41_OP(pblendvb),
3031 [0x14] = SSE41_OP(blendvps),
3032 [0x15] = SSE41_OP(blendvpd),
3033 [0x17] = SSE41_OP(ptest),
3034 [0x1c] = SSSE3_OP(pabsb),
3035 [0x1d] = SSSE3_OP(pabsw),
3036 [0x1e] = SSSE3_OP(pabsd),
3037 [0x20] = SSE41_OP(pmovsxbw),
3038 [0x21] = SSE41_OP(pmovsxbd),
3039 [0x22] = SSE41_OP(pmovsxbq),
3040 [0x23] = SSE41_OP(pmovsxwd),
3041 [0x24] = SSE41_OP(pmovsxwq),
3042 [0x25] = SSE41_OP(pmovsxdq),
3043 [0x28] = SSE41_OP(pmuldq),
3044 [0x29] = SSE41_OP(pcmpeqq),
3045 [0x2a] = SSE41_SPECIAL, /* movntqda */
3046 [0x2b] = SSE41_OP(packusdw),
3047 [0x30] = SSE41_OP(pmovzxbw),
3048 [0x31] = SSE41_OP(pmovzxbd),
3049 [0x32] = SSE41_OP(pmovzxbq),
3050 [0x33] = SSE41_OP(pmovzxwd),
3051 [0x34] = SSE41_OP(pmovzxwq),
3052 [0x35] = SSE41_OP(pmovzxdq),
3053 [0x37] = SSE42_OP(pcmpgtq),
3054 [0x38] = SSE41_OP(pminsb),
3055 [0x39] = SSE41_OP(pminsd),
3056 [0x3a] = SSE41_OP(pminuw),
3057 [0x3b] = SSE41_OP(pminud),
3058 [0x3c] = SSE41_OP(pmaxsb),
3059 [0x3d] = SSE41_OP(pmaxsd),
3060 [0x3e] = SSE41_OP(pmaxuw),
3061 [0x3f] = SSE41_OP(pmaxud),
3062 [0x40] = SSE41_OP(pmulld),
3063 [0x41] = SSE41_OP(phminposuw),
3066 static struct sse_op_helper_s sse_op_table7[256] = {
3067 [0x08] = SSE41_OP(roundps),
3068 [0x09] = SSE41_OP(roundpd),
3069 [0x0a] = SSE41_OP(roundss),
3070 [0x0b] = SSE41_OP(roundsd),
3071 [0x0c] = SSE41_OP(blendps),
3072 [0x0d] = SSE41_OP(blendpd),
3073 [0x0e] = SSE41_OP(pblendw),
3074 [0x0f] = SSSE3_OP(palignr),
3075 [0x14] = SSE41_SPECIAL, /* pextrb */
3076 [0x15] = SSE41_SPECIAL, /* pextrw */
3077 [0x16] = SSE41_SPECIAL, /* pextrd/pextrq */
3078 [0x17] = SSE41_SPECIAL, /* extractps */
3079 [0x20] = SSE41_SPECIAL, /* pinsrb */
3080 [0x21] = SSE41_SPECIAL, /* insertps */
3081 [0x22] = SSE41_SPECIAL, /* pinsrd/pinsrq */
3082 [0x40] = SSE41_OP(dpps),
3083 [0x41] = SSE41_OP(dppd),
3084 [0x42] = SSE41_OP(mpsadbw),
3085 [0x60] = SSE42_OP(pcmpestrm),
3086 [0x61] = SSE42_OP(pcmpestri),
3087 [0x62] = SSE42_OP(pcmpistrm),
3088 [0x63] = SSE42_OP(pcmpistri),
3091 static void gen_sse(DisasContext *s, int b, target_ulong pc_start, int rex_r)
3093 int b1, op1_offset, op2_offset, is_xmm, val, ot;
3094 int modrm, mod, rm, reg, reg_addr, offset_addr;
3098 if (s->prefix & PREFIX_DATA)
3100 else if (s->prefix & PREFIX_REPZ)
3102 else if (s->prefix & PREFIX_REPNZ)
3106 sse_op2 = sse_op_table1[b][b1];
3109 if ((b <= 0x5f && b >= 0x10) || b == 0xc6 || b == 0xc2) {
3119 /* simple MMX/SSE operation */
3120 if (s->flags & HF_TS_MASK) {
3121 gen_exception(s, EXCP07_PREX, pc_start - s->cs_base);
3124 if (s->flags & HF_EM_MASK) {
3126 gen_exception(s, EXCP06_ILLOP, pc_start - s->cs_base);
3129 if (is_xmm && !(s->flags & HF_OSFXSR_MASK))
3130 if ((b != 0x38 && b != 0x3a) || (s->prefix & PREFIX_DATA))
3133 if (!(s->cpuid_ext2_features & CPUID_EXT2_3DNOW))
3144 /* prepare MMX state (XXX: optimize by storing fptt and fptags in
3145 the static cpu state) */
3147 gen_helper_enter_mmx();
3150 modrm = ldub_code(s->pc++);
3151 reg = ((modrm >> 3) & 7);
3154 mod = (modrm >> 6) & 3;
3155 if (sse_op2 == SSE_SPECIAL) {
3158 case 0x0e7: /* movntq */
3161 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3162 gen_stq_env_A0(s->mem_index, offsetof(CPUX86State,fpregs[reg].mmx));
3164 case 0x1e7: /* movntdq */
3165 case 0x02b: /* movntps */
3166 case 0x12b: /* movntps */
3169 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3170 gen_sto_env_A0(s->mem_index, offsetof(CPUX86State,xmm_regs[reg]));
3172 case 0x3f0: /* lddqu */
3175 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3176 gen_ldo_env_A0(s->mem_index, offsetof(CPUX86State,xmm_regs[reg]));
3178 case 0x22b: /* movntss */
3179 case 0x32b: /* movntsd */
3182 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3184 gen_stq_env_A0(s->mem_index, offsetof(CPUX86State,
3187 tcg_gen_ld32u_tl(cpu_T[0], cpu_env, offsetof(CPUX86State,
3188 xmm_regs[reg].XMM_L(0)));
3189 gen_op_st_T0_A0(OT_LONG + s->mem_index);
3192 case 0x6e: /* movd mm, ea */
3193 #ifdef TARGET_X86_64
3194 if (s->dflag == 2) {
3195 gen_ldst_modrm(s, modrm, OT_QUAD, OR_TMP0, 0);
3196 tcg_gen_st_tl(cpu_T[0], cpu_env, offsetof(CPUX86State,fpregs[reg].mmx));
3200 gen_ldst_modrm(s, modrm, OT_LONG, OR_TMP0, 0);
3201 tcg_gen_addi_ptr(cpu_ptr0, cpu_env,
3202 offsetof(CPUX86State,fpregs[reg].mmx));
3203 tcg_gen_trunc_tl_i32(cpu_tmp2_i32, cpu_T[0]);
3204 gen_helper_movl_mm_T0_mmx(cpu_ptr0, cpu_tmp2_i32);
3207 case 0x16e: /* movd xmm, ea */
3208 #ifdef TARGET_X86_64
3209 if (s->dflag == 2) {
3210 gen_ldst_modrm(s, modrm, OT_QUAD, OR_TMP0, 0);
3211 tcg_gen_addi_ptr(cpu_ptr0, cpu_env,
3212 offsetof(CPUX86State,xmm_regs[reg]));
3213 gen_helper_movq_mm_T0_xmm(cpu_ptr0, cpu_T[0]);
3217 gen_ldst_modrm(s, modrm, OT_LONG, OR_TMP0, 0);
3218 tcg_gen_addi_ptr(cpu_ptr0, cpu_env,
3219 offsetof(CPUX86State,xmm_regs[reg]));
3220 tcg_gen_trunc_tl_i32(cpu_tmp2_i32, cpu_T[0]);
3221 gen_helper_movl_mm_T0_xmm(cpu_ptr0, cpu_tmp2_i32);
3224 case 0x6f: /* movq mm, ea */
3226 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3227 gen_ldq_env_A0(s->mem_index, offsetof(CPUX86State,fpregs[reg].mmx));
3230 tcg_gen_ld_i64(cpu_tmp1_i64, cpu_env,
3231 offsetof(CPUX86State,fpregs[rm].mmx));
3232 tcg_gen_st_i64(cpu_tmp1_i64, cpu_env,
3233 offsetof(CPUX86State,fpregs[reg].mmx));
3236 case 0x010: /* movups */
3237 case 0x110: /* movupd */
3238 case 0x028: /* movaps */
3239 case 0x128: /* movapd */
3240 case 0x16f: /* movdqa xmm, ea */
3241 case 0x26f: /* movdqu xmm, ea */
3243 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3244 gen_ldo_env_A0(s->mem_index, offsetof(CPUX86State,xmm_regs[reg]));
3246 rm = (modrm & 7) | REX_B(s);
3247 gen_op_movo(offsetof(CPUX86State,xmm_regs[reg]),
3248 offsetof(CPUX86State,xmm_regs[rm]));
3251 case 0x210: /* movss xmm, ea */
3253 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3254 gen_op_ld_T0_A0(OT_LONG + s->mem_index);
3255 tcg_gen_st32_tl(cpu_T[0], cpu_env, offsetof(CPUX86State,xmm_regs[reg].XMM_L(0)));
3257 tcg_gen_st32_tl(cpu_T[0], cpu_env, offsetof(CPUX86State,xmm_regs[reg].XMM_L(1)));
3258 tcg_gen_st32_tl(cpu_T[0], cpu_env, offsetof(CPUX86State,xmm_regs[reg].XMM_L(2)));
3259 tcg_gen_st32_tl(cpu_T[0], cpu_env, offsetof(CPUX86State,xmm_regs[reg].XMM_L(3)));
3261 rm = (modrm & 7) | REX_B(s);
3262 gen_op_movl(offsetof(CPUX86State,xmm_regs[reg].XMM_L(0)),
3263 offsetof(CPUX86State,xmm_regs[rm].XMM_L(0)));
3266 case 0x310: /* movsd xmm, ea */
3268 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3269 gen_ldq_env_A0(s->mem_index, offsetof(CPUX86State,xmm_regs[reg].XMM_Q(0)));
3271 tcg_gen_st32_tl(cpu_T[0], cpu_env, offsetof(CPUX86State,xmm_regs[reg].XMM_L(2)));
3272 tcg_gen_st32_tl(cpu_T[0], cpu_env, offsetof(CPUX86State,xmm_regs[reg].XMM_L(3)));
3274 rm = (modrm & 7) | REX_B(s);
3275 gen_op_movq(offsetof(CPUX86State,xmm_regs[reg].XMM_Q(0)),
3276 offsetof(CPUX86State,xmm_regs[rm].XMM_Q(0)));
3279 case 0x012: /* movlps */
3280 case 0x112: /* movlpd */
3282 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3283 gen_ldq_env_A0(s->mem_index, offsetof(CPUX86State,xmm_regs[reg].XMM_Q(0)));
3286 rm = (modrm & 7) | REX_B(s);
3287 gen_op_movq(offsetof(CPUX86State,xmm_regs[reg].XMM_Q(0)),
3288 offsetof(CPUX86State,xmm_regs[rm].XMM_Q(1)));
3291 case 0x212: /* movsldup */
3293 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3294 gen_ldo_env_A0(s->mem_index, offsetof(CPUX86State,xmm_regs[reg]));
3296 rm = (modrm & 7) | REX_B(s);
3297 gen_op_movl(offsetof(CPUX86State,xmm_regs[reg].XMM_L(0)),
3298 offsetof(CPUX86State,xmm_regs[rm].XMM_L(0)));
3299 gen_op_movl(offsetof(CPUX86State,xmm_regs[reg].XMM_L(2)),
3300 offsetof(CPUX86State,xmm_regs[rm].XMM_L(2)));
3302 gen_op_movl(offsetof(CPUX86State,xmm_regs[reg].XMM_L(1)),
3303 offsetof(CPUX86State,xmm_regs[reg].XMM_L(0)));
3304 gen_op_movl(offsetof(CPUX86State,xmm_regs[reg].XMM_L(3)),
3305 offsetof(CPUX86State,xmm_regs[reg].XMM_L(2)));
3307 case 0x312: /* movddup */
3309 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3310 gen_ldq_env_A0(s->mem_index, offsetof(CPUX86State,xmm_regs[reg].XMM_Q(0)));
3312 rm = (modrm & 7) | REX_B(s);
3313 gen_op_movq(offsetof(CPUX86State,xmm_regs[reg].XMM_Q(0)),
3314 offsetof(CPUX86State,xmm_regs[rm].XMM_Q(0)));
3316 gen_op_movq(offsetof(CPUX86State,xmm_regs[reg].XMM_Q(1)),
3317 offsetof(CPUX86State,xmm_regs[reg].XMM_Q(0)));
3319 case 0x016: /* movhps */
3320 case 0x116: /* movhpd */
3322 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3323 gen_ldq_env_A0(s->mem_index, offsetof(CPUX86State,xmm_regs[reg].XMM_Q(1)));
3326 rm = (modrm & 7) | REX_B(s);
3327 gen_op_movq(offsetof(CPUX86State,xmm_regs[reg].XMM_Q(1)),
3328 offsetof(CPUX86State,xmm_regs[rm].XMM_Q(0)));
3331 case 0x216: /* movshdup */
3333 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3334 gen_ldo_env_A0(s->mem_index, offsetof(CPUX86State,xmm_regs[reg]));
3336 rm = (modrm & 7) | REX_B(s);
3337 gen_op_movl(offsetof(CPUX86State,xmm_regs[reg].XMM_L(1)),
3338 offsetof(CPUX86State,xmm_regs[rm].XMM_L(1)));
3339 gen_op_movl(offsetof(CPUX86State,xmm_regs[reg].XMM_L(3)),
3340 offsetof(CPUX86State,xmm_regs[rm].XMM_L(3)));
3342 gen_op_movl(offsetof(CPUX86State,xmm_regs[reg].XMM_L(0)),
3343 offsetof(CPUX86State,xmm_regs[reg].XMM_L(1)));
3344 gen_op_movl(offsetof(CPUX86State,xmm_regs[reg].XMM_L(2)),
3345 offsetof(CPUX86State,xmm_regs[reg].XMM_L(3)));
3350 int bit_index, field_length;
3352 if (b1 == 1 && reg != 0)
3354 field_length = ldub_code(s->pc++) & 0x3F;
3355 bit_index = ldub_code(s->pc++) & 0x3F;
3356 tcg_gen_addi_ptr(cpu_ptr0, cpu_env,
3357 offsetof(CPUX86State,xmm_regs[reg]));
3359 gen_helper_extrq_i(cpu_ptr0, tcg_const_i32(bit_index),
3360 tcg_const_i32(field_length));
3362 gen_helper_insertq_i(cpu_ptr0, tcg_const_i32(bit_index),
3363 tcg_const_i32(field_length));
3366 case 0x7e: /* movd ea, mm */
3367 #ifdef TARGET_X86_64
3368 if (s->dflag == 2) {
3369 tcg_gen_ld_i64(cpu_T[0], cpu_env,
3370 offsetof(CPUX86State,fpregs[reg].mmx));
3371 gen_ldst_modrm(s, modrm, OT_QUAD, OR_TMP0, 1);
3375 tcg_gen_ld32u_tl(cpu_T[0], cpu_env,
3376 offsetof(CPUX86State,fpregs[reg].mmx.MMX_L(0)));
3377 gen_ldst_modrm(s, modrm, OT_LONG, OR_TMP0, 1);
3380 case 0x17e: /* movd ea, xmm */
3381 #ifdef TARGET_X86_64
3382 if (s->dflag == 2) {
3383 tcg_gen_ld_i64(cpu_T[0], cpu_env,
3384 offsetof(CPUX86State,xmm_regs[reg].XMM_Q(0)));
3385 gen_ldst_modrm(s, modrm, OT_QUAD, OR_TMP0, 1);
3389 tcg_gen_ld32u_tl(cpu_T[0], cpu_env,
3390 offsetof(CPUX86State,xmm_regs[reg].XMM_L(0)));
3391 gen_ldst_modrm(s, modrm, OT_LONG, OR_TMP0, 1);
3394 case 0x27e: /* movq xmm, ea */
3396 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3397 gen_ldq_env_A0(s->mem_index, offsetof(CPUX86State,xmm_regs[reg].XMM_Q(0)));
3399 rm = (modrm & 7) | REX_B(s);
3400 gen_op_movq(offsetof(CPUX86State,xmm_regs[reg].XMM_Q(0)),
3401 offsetof(CPUX86State,xmm_regs[rm].XMM_Q(0)));
3403 gen_op_movq_env_0(offsetof(CPUX86State,xmm_regs[reg].XMM_Q(1)));
3405 case 0x7f: /* movq ea, mm */
3407 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3408 gen_stq_env_A0(s->mem_index, offsetof(CPUX86State,fpregs[reg].mmx));
3411 gen_op_movq(offsetof(CPUX86State,fpregs[rm].mmx),
3412 offsetof(CPUX86State,fpregs[reg].mmx));
3415 case 0x011: /* movups */
3416 case 0x111: /* movupd */
3417 case 0x029: /* movaps */
3418 case 0x129: /* movapd */
3419 case 0x17f: /* movdqa ea, xmm */
3420 case 0x27f: /* movdqu ea, xmm */
3422 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3423 gen_sto_env_A0(s->mem_index, offsetof(CPUX86State,xmm_regs[reg]));
3425 rm = (modrm & 7) | REX_B(s);
3426 gen_op_movo(offsetof(CPUX86State,xmm_regs[rm]),
3427 offsetof(CPUX86State,xmm_regs[reg]));
3430 case 0x211: /* movss ea, xmm */
3432 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3433 tcg_gen_ld32u_tl(cpu_T[0], cpu_env, offsetof(CPUX86State,xmm_regs[reg].XMM_L(0)));
3434 gen_op_st_T0_A0(OT_LONG + s->mem_index);
3436 rm = (modrm & 7) | REX_B(s);
3437 gen_op_movl(offsetof(CPUX86State,xmm_regs[rm].XMM_L(0)),
3438 offsetof(CPUX86State,xmm_regs[reg].XMM_L(0)));
3441 case 0x311: /* movsd ea, xmm */
3443 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3444 gen_stq_env_A0(s->mem_index, offsetof(CPUX86State,xmm_regs[reg].XMM_Q(0)));
3446 rm = (modrm & 7) | REX_B(s);
3447 gen_op_movq(offsetof(CPUX86State,xmm_regs[rm].XMM_Q(0)),
3448 offsetof(CPUX86State,xmm_regs[reg].XMM_Q(0)));
3451 case 0x013: /* movlps */
3452 case 0x113: /* movlpd */
3454 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3455 gen_stq_env_A0(s->mem_index, offsetof(CPUX86State,xmm_regs[reg].XMM_Q(0)));
3460 case 0x017: /* movhps */
3461 case 0x117: /* movhpd */
3463 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3464 gen_stq_env_A0(s->mem_index, offsetof(CPUX86State,xmm_regs[reg].XMM_Q(1)));
3469 case 0x71: /* shift mm, im */
3472 case 0x171: /* shift xmm, im */
3478 val = ldub_code(s->pc++);
3480 gen_op_movl_T0_im(val);
3481 tcg_gen_st32_tl(cpu_T[0], cpu_env, offsetof(CPUX86State,xmm_t0.XMM_L(0)));
3483 tcg_gen_st32_tl(cpu_T[0], cpu_env, offsetof(CPUX86State,xmm_t0.XMM_L(1)));
3484 op1_offset = offsetof(CPUX86State,xmm_t0);
3486 gen_op_movl_T0_im(val);
3487 tcg_gen_st32_tl(cpu_T[0], cpu_env, offsetof(CPUX86State,mmx_t0.MMX_L(0)));
3489 tcg_gen_st32_tl(cpu_T[0], cpu_env, offsetof(CPUX86State,mmx_t0.MMX_L(1)));
3490 op1_offset = offsetof(CPUX86State,mmx_t0);
3492 sse_op2 = sse_op_table2[((b - 1) & 3) * 8 + (((modrm >> 3)) & 7)][b1];
3496 rm = (modrm & 7) | REX_B(s);
3497 op2_offset = offsetof(CPUX86State,xmm_regs[rm]);
3500 op2_offset = offsetof(CPUX86State,fpregs[rm].mmx);
3502 tcg_gen_addi_ptr(cpu_ptr0, cpu_env, op2_offset);
3503 tcg_gen_addi_ptr(cpu_ptr1, cpu_env, op1_offset);
3504 ((void (*)(TCGv_ptr, TCGv_ptr))sse_op2)(cpu_ptr0, cpu_ptr1);
3506 case 0x050: /* movmskps */
3507 rm = (modrm & 7) | REX_B(s);
3508 tcg_gen_addi_ptr(cpu_ptr0, cpu_env,
3509 offsetof(CPUX86State,xmm_regs[rm]));
3510 gen_helper_movmskps(cpu_tmp2_i32, cpu_ptr0);
3511 tcg_gen_extu_i32_tl(cpu_T[0], cpu_tmp2_i32);
3512 gen_op_mov_reg_T0(OT_LONG, reg);
3514 case 0x150: /* movmskpd */
3515 rm = (modrm & 7) | REX_B(s);
3516 tcg_gen_addi_ptr(cpu_ptr0, cpu_env,
3517 offsetof(CPUX86State,xmm_regs[rm]));
3518 gen_helper_movmskpd(cpu_tmp2_i32, cpu_ptr0);
3519 tcg_gen_extu_i32_tl(cpu_T[0], cpu_tmp2_i32);
3520 gen_op_mov_reg_T0(OT_LONG, reg);
3522 case 0x02a: /* cvtpi2ps */
3523 case 0x12a: /* cvtpi2pd */
3524 gen_helper_enter_mmx();
3526 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3527 op2_offset = offsetof(CPUX86State,mmx_t0);
3528 gen_ldq_env_A0(s->mem_index, op2_offset);
3531 op2_offset = offsetof(CPUX86State,fpregs[rm].mmx);
3533 op1_offset = offsetof(CPUX86State,xmm_regs[reg]);
3534 tcg_gen_addi_ptr(cpu_ptr0, cpu_env, op1_offset);
3535 tcg_gen_addi_ptr(cpu_ptr1, cpu_env, op2_offset);
3538 gen_helper_cvtpi2ps(cpu_ptr0, cpu_ptr1);
3542 gen_helper_cvtpi2pd(cpu_ptr0, cpu_ptr1);
3546 case 0x22a: /* cvtsi2ss */
3547 case 0x32a: /* cvtsi2sd */
3548 ot = (s->dflag == 2) ? OT_QUAD : OT_LONG;
3549 gen_ldst_modrm(s, modrm, ot, OR_TMP0, 0);
3550 op1_offset = offsetof(CPUX86State,xmm_regs[reg]);
3551 tcg_gen_addi_ptr(cpu_ptr0, cpu_env, op1_offset);
3552 sse_op2 = sse_op_table3[(s->dflag == 2) * 2 + ((b >> 8) - 2)];
3553 if (ot == OT_LONG) {
3554 tcg_gen_trunc_tl_i32(cpu_tmp2_i32, cpu_T[0]);
3555 ((void (*)(TCGv_ptr, TCGv_i32))sse_op2)(cpu_ptr0, cpu_tmp2_i32);
3557 ((void (*)(TCGv_ptr, TCGv))sse_op2)(cpu_ptr0, cpu_T[0]);
3560 case 0x02c: /* cvttps2pi */
3561 case 0x12c: /* cvttpd2pi */
3562 case 0x02d: /* cvtps2pi */
3563 case 0x12d: /* cvtpd2pi */
3564 gen_helper_enter_mmx();
3566 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3567 op2_offset = offsetof(CPUX86State,xmm_t0);
3568 gen_ldo_env_A0(s->mem_index, op2_offset);
3570 rm = (modrm & 7) | REX_B(s);
3571 op2_offset = offsetof(CPUX86State,xmm_regs[rm]);
3573 op1_offset = offsetof(CPUX86State,fpregs[reg & 7].mmx);
3574 tcg_gen_addi_ptr(cpu_ptr0, cpu_env, op1_offset);
3575 tcg_gen_addi_ptr(cpu_ptr1, cpu_env, op2_offset);
3578 gen_helper_cvttps2pi(cpu_ptr0, cpu_ptr1);
3581 gen_helper_cvttpd2pi(cpu_ptr0, cpu_ptr1);
3584 gen_helper_cvtps2pi(cpu_ptr0, cpu_ptr1);
3587 gen_helper_cvtpd2pi(cpu_ptr0, cpu_ptr1);
3591 case 0x22c: /* cvttss2si */
3592 case 0x32c: /* cvttsd2si */
3593 case 0x22d: /* cvtss2si */
3594 case 0x32d: /* cvtsd2si */
3595 ot = (s->dflag == 2) ? OT_QUAD : OT_LONG;
3597 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3599 gen_ldq_env_A0(s->mem_index, offsetof(CPUX86State,xmm_t0.XMM_Q(0)));
3601 gen_op_ld_T0_A0(OT_LONG + s->mem_index);
3602 tcg_gen_st32_tl(cpu_T[0], cpu_env, offsetof(CPUX86State,xmm_t0.XMM_L(0)));
3604 op2_offset = offsetof(CPUX86State,xmm_t0);
3606 rm = (modrm & 7) | REX_B(s);
3607 op2_offset = offsetof(CPUX86State,xmm_regs[rm]);
3609 sse_op2 = sse_op_table3[(s->dflag == 2) * 2 + ((b >> 8) - 2) + 4 +
3611 tcg_gen_addi_ptr(cpu_ptr0, cpu_env, op2_offset);
3612 if (ot == OT_LONG) {
3613 ((void (*)(TCGv_i32, TCGv_ptr))sse_op2)(cpu_tmp2_i32, cpu_ptr0);
3614 tcg_gen_extu_i32_tl(cpu_T[0], cpu_tmp2_i32);
3616 ((void (*)(TCGv, TCGv_ptr))sse_op2)(cpu_T[0], cpu_ptr0);
3618 gen_op_mov_reg_T0(ot, reg);
3620 case 0xc4: /* pinsrw */
3623 gen_ldst_modrm(s, modrm, OT_WORD, OR_TMP0, 0);
3624 val = ldub_code(s->pc++);
3627 tcg_gen_st16_tl(cpu_T[0], cpu_env,
3628 offsetof(CPUX86State,xmm_regs[reg].XMM_W(val)));
3631 tcg_gen_st16_tl(cpu_T[0], cpu_env,
3632 offsetof(CPUX86State,fpregs[reg].mmx.MMX_W(val)));
3635 case 0xc5: /* pextrw */
3639 ot = (s->dflag == 2) ? OT_QUAD : OT_LONG;
3640 val = ldub_code(s->pc++);
3643 rm = (modrm & 7) | REX_B(s);
3644 tcg_gen_ld16u_tl(cpu_T[0], cpu_env,
3645 offsetof(CPUX86State,xmm_regs[rm].XMM_W(val)));
3649 tcg_gen_ld16u_tl(cpu_T[0], cpu_env,
3650 offsetof(CPUX86State,fpregs[rm].mmx.MMX_W(val)));
3652 reg = ((modrm >> 3) & 7) | rex_r;
3653 gen_op_mov_reg_T0(ot, reg);
3655 case 0x1d6: /* movq ea, xmm */
3657 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3658 gen_stq_env_A0(s->mem_index, offsetof(CPUX86State,xmm_regs[reg].XMM_Q(0)));
3660 rm = (modrm & 7) | REX_B(s);
3661 gen_op_movq(offsetof(CPUX86State,xmm_regs[rm].XMM_Q(0)),
3662 offsetof(CPUX86State,xmm_regs[reg].XMM_Q(0)));
3663 gen_op_movq_env_0(offsetof(CPUX86State,xmm_regs[rm].XMM_Q(1)));
3666 case 0x2d6: /* movq2dq */
3667 gen_helper_enter_mmx();
3669 gen_op_movq(offsetof(CPUX86State,xmm_regs[reg].XMM_Q(0)),
3670 offsetof(CPUX86State,fpregs[rm].mmx));
3671 gen_op_movq_env_0(offsetof(CPUX86State,xmm_regs[reg].XMM_Q(1)));
3673 case 0x3d6: /* movdq2q */
3674 gen_helper_enter_mmx();
3675 rm = (modrm & 7) | REX_B(s);
3676 gen_op_movq(offsetof(CPUX86State,fpregs[reg & 7].mmx),
3677 offsetof(CPUX86State,xmm_regs[rm].XMM_Q(0)));
3679 case 0xd7: /* pmovmskb */
3684 rm = (modrm & 7) | REX_B(s);
3685 tcg_gen_addi_ptr(cpu_ptr0, cpu_env, offsetof(CPUX86State,xmm_regs[rm]));
3686 gen_helper_pmovmskb_xmm(cpu_tmp2_i32, cpu_ptr0);
3689 tcg_gen_addi_ptr(cpu_ptr0, cpu_env, offsetof(CPUX86State,fpregs[rm].mmx));
3690 gen_helper_pmovmskb_mmx(cpu_tmp2_i32, cpu_ptr0);
3692 tcg_gen_extu_i32_tl(cpu_T[0], cpu_tmp2_i32);
3693 reg = ((modrm >> 3) & 7) | rex_r;
3694 gen_op_mov_reg_T0(OT_LONG, reg);
3697 if (s->prefix & PREFIX_REPNZ)
3701 modrm = ldub_code(s->pc++);
3703 reg = ((modrm >> 3) & 7) | rex_r;
3704 mod = (modrm >> 6) & 3;
3709 sse_op2 = sse_op_table6[b].op[b1];
3712 if (!(s->cpuid_ext_features & sse_op_table6[b].ext_mask))
3716 op1_offset = offsetof(CPUX86State,xmm_regs[reg]);
3718 op2_offset = offsetof(CPUX86State,xmm_regs[rm | REX_B(s)]);
3720 op2_offset = offsetof(CPUX86State,xmm_t0);
3721 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3723 case 0x20: case 0x30: /* pmovsxbw, pmovzxbw */
3724 case 0x23: case 0x33: /* pmovsxwd, pmovzxwd */
3725 case 0x25: case 0x35: /* pmovsxdq, pmovzxdq */
3726 gen_ldq_env_A0(s->mem_index, op2_offset +
3727 offsetof(XMMReg, XMM_Q(0)));
3729 case 0x21: case 0x31: /* pmovsxbd, pmovzxbd */
3730 case 0x24: case 0x34: /* pmovsxwq, pmovzxwq */
3731 tcg_gen_qemu_ld32u(cpu_tmp0, cpu_A0,
3732 (s->mem_index >> 2) - 1);
3733 tcg_gen_trunc_tl_i32(cpu_tmp2_i32, cpu_tmp0);
3734 tcg_gen_st_i32(cpu_tmp2_i32, cpu_env, op2_offset +
3735 offsetof(XMMReg, XMM_L(0)));
3737 case 0x22: case 0x32: /* pmovsxbq, pmovzxbq */
3738 tcg_gen_qemu_ld16u(cpu_tmp0, cpu_A0,
3739 (s->mem_index >> 2) - 1);
3740 tcg_gen_st16_tl(cpu_tmp0, cpu_env, op2_offset +
3741 offsetof(XMMReg, XMM_W(0)));
3743 case 0x2a: /* movntqda */
3744 gen_ldo_env_A0(s->mem_index, op1_offset);
3747 gen_ldo_env_A0(s->mem_index, op2_offset);
3751 op1_offset = offsetof(CPUX86State,fpregs[reg].mmx);
3753 op2_offset = offsetof(CPUX86State,fpregs[rm].mmx);
3755 op2_offset = offsetof(CPUX86State,mmx_t0);
3756 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3757 gen_ldq_env_A0(s->mem_index, op2_offset);
3760 if (sse_op2 == SSE_SPECIAL)
3763 tcg_gen_addi_ptr(cpu_ptr0, cpu_env, op1_offset);
3764 tcg_gen_addi_ptr(cpu_ptr1, cpu_env, op2_offset);
3765 ((void (*)(TCGv_ptr, TCGv_ptr))sse_op2)(cpu_ptr0, cpu_ptr1);
3768 s->cc_op = CC_OP_EFLAGS;
3770 case 0x338: /* crc32 */
3773 modrm = ldub_code(s->pc++);
3774 reg = ((modrm >> 3) & 7) | rex_r;
3776 if (b != 0xf0 && b != 0xf1)
3778 if (!(s->cpuid_ext_features & CPUID_EXT_SSE42))
3783 else if (b == 0xf1 && s->dflag != 2)
3784 if (s->prefix & PREFIX_DATA)
3791 gen_op_mov_TN_reg(OT_LONG, 0, reg);
3792 tcg_gen_trunc_tl_i32(cpu_tmp2_i32, cpu_T[0]);
3793 gen_ldst_modrm(s, modrm, ot, OR_TMP0, 0);
3794 gen_helper_crc32(cpu_T[0], cpu_tmp2_i32,
3795 cpu_T[0], tcg_const_i32(8 << ot));
3797 ot = (s->dflag == 2) ? OT_QUAD : OT_LONG;
3798 gen_op_mov_reg_T0(ot, reg);
3803 modrm = ldub_code(s->pc++);
3805 reg = ((modrm >> 3) & 7) | rex_r;
3806 mod = (modrm >> 6) & 3;
3811 sse_op2 = sse_op_table7[b].op[b1];
3814 if (!(s->cpuid_ext_features & sse_op_table7[b].ext_mask))
3817 if (sse_op2 == SSE_SPECIAL) {
3818 ot = (s->dflag == 2) ? OT_QUAD : OT_LONG;
3819 rm = (modrm & 7) | REX_B(s);
3821 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3822 reg = ((modrm >> 3) & 7) | rex_r;
3823 val = ldub_code(s->pc++);
3825 case 0x14: /* pextrb */
3826 tcg_gen_ld8u_tl(cpu_T[0], cpu_env, offsetof(CPUX86State,
3827 xmm_regs[reg].XMM_B(val & 15)));
3829 gen_op_mov_reg_T0(ot, rm);
3831 tcg_gen_qemu_st8(cpu_T[0], cpu_A0,
3832 (s->mem_index >> 2) - 1);
3834 case 0x15: /* pextrw */
3835 tcg_gen_ld16u_tl(cpu_T[0], cpu_env, offsetof(CPUX86State,
3836 xmm_regs[reg].XMM_W(val & 7)));
3838 gen_op_mov_reg_T0(ot, rm);
3840 tcg_gen_qemu_st16(cpu_T[0], cpu_A0,
3841 (s->mem_index >> 2) - 1);
3844 if (ot == OT_LONG) { /* pextrd */
3845 tcg_gen_ld_i32(cpu_tmp2_i32, cpu_env,
3846 offsetof(CPUX86State,
3847 xmm_regs[reg].XMM_L(val & 3)));
3848 tcg_gen_extu_i32_tl(cpu_T[0], cpu_tmp2_i32);
3850 gen_op_mov_reg_v(ot, rm, cpu_T[0]);
3852 tcg_gen_qemu_st32(cpu_T[0], cpu_A0,
3853 (s->mem_index >> 2) - 1);
3854 } else { /* pextrq */
3855 #ifdef TARGET_X86_64
3856 tcg_gen_ld_i64(cpu_tmp1_i64, cpu_env,
3857 offsetof(CPUX86State,
3858 xmm_regs[reg].XMM_Q(val & 1)));
3860 gen_op_mov_reg_v(ot, rm, cpu_tmp1_i64);
3862 tcg_gen_qemu_st64(cpu_tmp1_i64, cpu_A0,
3863 (s->mem_index >> 2) - 1);
3869 case 0x17: /* extractps */
3870 tcg_gen_ld32u_tl(cpu_T[0], cpu_env, offsetof(CPUX86State,
3871 xmm_regs[reg].XMM_L(val & 3)));
3873 gen_op_mov_reg_T0(ot, rm);
3875 tcg_gen_qemu_st32(cpu_T[0], cpu_A0,
3876 (s->mem_index >> 2) - 1);
3878 case 0x20: /* pinsrb */
3880 gen_op_mov_TN_reg(OT_LONG, 0, rm);
3882 tcg_gen_qemu_ld8u(cpu_tmp0, cpu_A0,
3883 (s->mem_index >> 2) - 1);
3884 tcg_gen_st8_tl(cpu_tmp0, cpu_env, offsetof(CPUX86State,
3885 xmm_regs[reg].XMM_B(val & 15)));
3887 case 0x21: /* insertps */
3889 tcg_gen_ld_i32(cpu_tmp2_i32, cpu_env,
3890 offsetof(CPUX86State,xmm_regs[rm]
3891 .XMM_L((val >> 6) & 3)));
3893 tcg_gen_qemu_ld32u(cpu_tmp0, cpu_A0,
3894 (s->mem_index >> 2) - 1);
3895 tcg_gen_trunc_tl_i32(cpu_tmp2_i32, cpu_tmp0);
3897 tcg_gen_st_i32(cpu_tmp2_i32, cpu_env,
3898 offsetof(CPUX86State,xmm_regs[reg]
3899 .XMM_L((val >> 4) & 3)));
3901 tcg_gen_st_i32(tcg_const_i32(0 /*float32_zero*/),
3902 cpu_env, offsetof(CPUX86State,
3903 xmm_regs[reg].XMM_L(0)));
3905 tcg_gen_st_i32(tcg_const_i32(0 /*float32_zero*/),
3906 cpu_env, offsetof(CPUX86State,
3907 xmm_regs[reg].XMM_L(1)));
3909 tcg_gen_st_i32(tcg_const_i32(0 /*float32_zero*/),
3910 cpu_env, offsetof(CPUX86State,
3911 xmm_regs[reg].XMM_L(2)));
3913 tcg_gen_st_i32(tcg_const_i32(0 /*float32_zero*/),
3914 cpu_env, offsetof(CPUX86State,
3915 xmm_regs[reg].XMM_L(3)));
3918 if (ot == OT_LONG) { /* pinsrd */
3920 gen_op_mov_v_reg(ot, cpu_tmp0, rm);
3922 tcg_gen_qemu_ld32u(cpu_tmp0, cpu_A0,
3923 (s->mem_index >> 2) - 1);
3924 tcg_gen_trunc_tl_i32(cpu_tmp2_i32, cpu_tmp0);
3925 tcg_gen_st_i32(cpu_tmp2_i32, cpu_env,
3926 offsetof(CPUX86State,
3927 xmm_regs[reg].XMM_L(val & 3)));
3928 } else { /* pinsrq */
3929 #ifdef TARGET_X86_64
3931 gen_op_mov_v_reg(ot, cpu_tmp1_i64, rm);
3933 tcg_gen_qemu_ld64(cpu_tmp1_i64, cpu_A0,
3934 (s->mem_index >> 2) - 1);
3935 tcg_gen_st_i64(cpu_tmp1_i64, cpu_env,
3936 offsetof(CPUX86State,
3937 xmm_regs[reg].XMM_Q(val & 1)));
3948 op1_offset = offsetof(CPUX86State,xmm_regs[reg]);
3950 op2_offset = offsetof(CPUX86State,xmm_regs[rm | REX_B(s)]);
3952 op2_offset = offsetof(CPUX86State,xmm_t0);
3953 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3954 gen_ldo_env_A0(s->mem_index, op2_offset);
3957 op1_offset = offsetof(CPUX86State,fpregs[reg].mmx);
3959 op2_offset = offsetof(CPUX86State,fpregs[rm].mmx);
3961 op2_offset = offsetof(CPUX86State,mmx_t0);
3962 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3963 gen_ldq_env_A0(s->mem_index, op2_offset);
3966 val = ldub_code(s->pc++);
3968 if ((b & 0xfc) == 0x60) { /* pcmpXstrX */
3969 s->cc_op = CC_OP_EFLAGS;
3972 /* The helper must use entire 64-bit gp registers */
3976 tcg_gen_addi_ptr(cpu_ptr0, cpu_env, op1_offset);
3977 tcg_gen_addi_ptr(cpu_ptr1, cpu_env, op2_offset);
3978 ((void (*)(TCGv_ptr, TCGv_ptr, TCGv_i32))sse_op2)(cpu_ptr0, cpu_ptr1, tcg_const_i32(val));
3984 /* generic MMX or SSE operation */
3986 case 0x70: /* pshufx insn */
3987 case 0xc6: /* pshufx insn */
3988 case 0xc2: /* compare insns */
3995 op1_offset = offsetof(CPUX86State,xmm_regs[reg]);
3997 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
3998 op2_offset = offsetof(CPUX86State,xmm_t0);
3999 if (b1 >= 2 && ((b >= 0x50 && b <= 0x5f && b != 0x5b) ||
4001 /* specific case for SSE single instructions */
4004 gen_op_ld_T0_A0(OT_LONG + s->mem_index);
4005 tcg_gen_st32_tl(cpu_T[0], cpu_env, offsetof(CPUX86State,xmm_t0.XMM_L(0)));
4008 gen_ldq_env_A0(s->mem_index, offsetof(CPUX86State,xmm_t0.XMM_D(0)));
4011 gen_ldo_env_A0(s->mem_index, op2_offset);
4014 rm = (modrm & 7) | REX_B(s);
4015 op2_offset = offsetof(CPUX86State,xmm_regs[rm]);
4018 op1_offset = offsetof(CPUX86State,fpregs[reg].mmx);
4020 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
4021 op2_offset = offsetof(CPUX86State,mmx_t0);
4022 gen_ldq_env_A0(s->mem_index, op2_offset);
4025 op2_offset = offsetof(CPUX86State,fpregs[rm].mmx);
4029 case 0x0f: /* 3DNow! data insns */
4030 if (!(s->cpuid_ext2_features & CPUID_EXT2_3DNOW))
4032 val = ldub_code(s->pc++);
4033 sse_op2 = sse_op_table5[val];
4036 tcg_gen_addi_ptr(cpu_ptr0, cpu_env, op1_offset);
4037 tcg_gen_addi_ptr(cpu_ptr1, cpu_env, op2_offset);
4038 ((void (*)(TCGv_ptr, TCGv_ptr))sse_op2)(cpu_ptr0, cpu_ptr1);
4040 case 0x70: /* pshufx insn */
4041 case 0xc6: /* pshufx insn */
4042 val = ldub_code(s->pc++);
4043 tcg_gen_addi_ptr(cpu_ptr0, cpu_env, op1_offset);
4044 tcg_gen_addi_ptr(cpu_ptr1, cpu_env, op2_offset);
4045 ((void (*)(TCGv_ptr, TCGv_ptr, TCGv_i32))sse_op2)(cpu_ptr0, cpu_ptr1, tcg_const_i32(val));
4049 val = ldub_code(s->pc++);
4052 sse_op2 = sse_op_table4[val][b1];
4053 tcg_gen_addi_ptr(cpu_ptr0, cpu_env, op1_offset);
4054 tcg_gen_addi_ptr(cpu_ptr1, cpu_env, op2_offset);
4055 ((void (*)(TCGv_ptr, TCGv_ptr))sse_op2)(cpu_ptr0, cpu_ptr1);
4058 /* maskmov : we must prepare A0 */
4061 #ifdef TARGET_X86_64
4062 if (s->aflag == 2) {
4063 gen_op_movq_A0_reg(R_EDI);
4067 gen_op_movl_A0_reg(R_EDI);
4069 gen_op_andl_A0_ffff();
4071 gen_add_A0_ds_seg(s);
4073 tcg_gen_addi_ptr(cpu_ptr0, cpu_env, op1_offset);
4074 tcg_gen_addi_ptr(cpu_ptr1, cpu_env, op2_offset);
4075 ((void (*)(TCGv_ptr, TCGv_ptr, TCGv))sse_op2)(cpu_ptr0, cpu_ptr1, cpu_A0);
4078 tcg_gen_addi_ptr(cpu_ptr0, cpu_env, op1_offset);
4079 tcg_gen_addi_ptr(cpu_ptr1, cpu_env, op2_offset);
4080 ((void (*)(TCGv_ptr, TCGv_ptr))sse_op2)(cpu_ptr0, cpu_ptr1);
4083 if (b == 0x2e || b == 0x2f) {
4084 s->cc_op = CC_OP_EFLAGS;
4089 /* convert one instruction. s->is_jmp is set if the translation must
4090 be stopped. Return the next pc value */
4091 static target_ulong disas_insn(DisasContext *s, target_ulong pc_start)
4093 int b, prefixes, aflag, dflag;
4095 int modrm, reg, rm, mod, reg_addr, op, opreg, offset_addr, val;
4096 target_ulong next_eip, tval;
4099 if (unlikely(qemu_loglevel_mask(CPU_LOG_TB_OP)))
4100 tcg_gen_debug_insn_start(pc_start);
4108 #ifdef TARGET_X86_64
4113 s->rip_offset = 0; /* for relative ip address */
4115 b = ldub_code(s->pc);
4117 /* check prefixes */
4118 #ifdef TARGET_X86_64
4122 prefixes |= PREFIX_REPZ;
4125 prefixes |= PREFIX_REPNZ;
4128 prefixes |= PREFIX_LOCK;
4149 prefixes |= PREFIX_DATA;
4152 prefixes |= PREFIX_ADR;
4156 rex_w = (b >> 3) & 1;
4157 rex_r = (b & 0x4) << 1;
4158 s->rex_x = (b & 0x2) << 2;
4159 REX_B(s) = (b & 0x1) << 3;
4160 x86_64_hregs = 1; /* select uniform byte register addressing */
4164 /* 0x66 is ignored if rex.w is set */
4167 if (prefixes & PREFIX_DATA)
4170 if (!(prefixes & PREFIX_ADR))
4177 prefixes |= PREFIX_REPZ;
4180 prefixes |= PREFIX_REPNZ;
4183 prefixes |= PREFIX_LOCK;
4204 prefixes |= PREFIX_DATA;
4207 prefixes |= PREFIX_ADR;
4210 if (prefixes & PREFIX_DATA)
4212 if (prefixes & PREFIX_ADR)
4216 s->prefix = prefixes;
4220 /* lock generation */
4221 if (prefixes & PREFIX_LOCK)
4224 /* now check op code */
4228 /**************************/
4229 /* extended op code */
4230 b = ldub_code(s->pc++) | 0x100;
4233 /**************************/
4251 ot = dflag + OT_WORD;
4254 case 0: /* OP Ev, Gv */
4255 modrm = ldub_code(s->pc++);
4256 reg = ((modrm >> 3) & 7) | rex_r;
4257 mod = (modrm >> 6) & 3;
4258 rm = (modrm & 7) | REX_B(s);
4260 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
4262 } else if (op == OP_XORL && rm == reg) {
4264 /* xor reg, reg optimisation */
4266 s->cc_op = CC_OP_LOGICB + ot;
4267 gen_op_mov_reg_T0(ot, reg);
4268 gen_op_update1_cc();
4273 gen_op_mov_TN_reg(ot, 1, reg);
4274 gen_op(s, op, ot, opreg);
4276 case 1: /* OP Gv, Ev */
4277 modrm = ldub_code(s->pc++);
4278 mod = (modrm >> 6) & 3;
4279 reg = ((modrm >> 3) & 7) | rex_r;
4280 rm = (modrm & 7) | REX_B(s);
4282 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
4283 gen_op_ld_T1_A0(ot + s->mem_index);
4284 } else if (op == OP_XORL && rm == reg) {
4287 gen_op_mov_TN_reg(ot, 1, rm);
4289 gen_op(s, op, ot, reg);
4291 case 2: /* OP A, Iv */
4292 val = insn_get(s, ot);
4293 gen_op_movl_T1_im(val);
4294 gen_op(s, op, ot, OR_EAX);
4303 case 0x80: /* GRP1 */
4312 ot = dflag + OT_WORD;
4314 modrm = ldub_code(s->pc++);
4315 mod = (modrm >> 6) & 3;
4316 rm = (modrm & 7) | REX_B(s);
4317 op = (modrm >> 3) & 7;
4323 s->rip_offset = insn_const_size(ot);
4324 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
4335 val = insn_get(s, ot);
4338 val = (int8_t)insn_get(s, OT_BYTE);
4341 gen_op_movl_T1_im(val);
4342 gen_op(s, op, ot, opreg);
4346 /**************************/
4347 /* inc, dec, and other misc arith */
4348 case 0x40 ... 0x47: /* inc Gv */
4349 ot = dflag ? OT_LONG : OT_WORD;
4350 gen_inc(s, ot, OR_EAX + (b & 7), 1);
4352 case 0x48 ... 0x4f: /* dec Gv */
4353 ot = dflag ? OT_LONG : OT_WORD;
4354 gen_inc(s, ot, OR_EAX + (b & 7), -1);
4356 case 0xf6: /* GRP3 */
4361 ot = dflag + OT_WORD;
4363 modrm = ldub_code(s->pc++);
4364 mod = (modrm >> 6) & 3;
4365 rm = (modrm & 7) | REX_B(s);
4366 op = (modrm >> 3) & 7;
4369 s->rip_offset = insn_const_size(ot);
4370 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
4371 gen_op_ld_T0_A0(ot + s->mem_index);
4373 gen_op_mov_TN_reg(ot, 0, rm);
4378 val = insn_get(s, ot);
4379 gen_op_movl_T1_im(val);
4380 gen_op_testl_T0_T1_cc();
4381 s->cc_op = CC_OP_LOGICB + ot;
4384 tcg_gen_not_tl(cpu_T[0], cpu_T[0]);
4386 gen_op_st_T0_A0(ot + s->mem_index);
4388 gen_op_mov_reg_T0(ot, rm);
4392 tcg_gen_neg_tl(cpu_T[0], cpu_T[0]);
4394 gen_op_st_T0_A0(ot + s->mem_index);
4396 gen_op_mov_reg_T0(ot, rm);
4398 gen_op_update_neg_cc();
4399 s->cc_op = CC_OP_SUBB + ot;
4404 gen_op_mov_TN_reg(OT_BYTE, 1, R_EAX);
4405 tcg_gen_ext8u_tl(cpu_T[0], cpu_T[0]);
4406 tcg_gen_ext8u_tl(cpu_T[1], cpu_T[1]);
4407 /* XXX: use 32 bit mul which could be faster */
4408 tcg_gen_mul_tl(cpu_T[0], cpu_T[0], cpu_T[1]);
4409 gen_op_mov_reg_T0(OT_WORD, R_EAX);
4410 tcg_gen_mov_tl(cpu_cc_dst, cpu_T[0]);
4411 tcg_gen_andi_tl(cpu_cc_src, cpu_T[0], 0xff00);
4412 s->cc_op = CC_OP_MULB;
4415 gen_op_mov_TN_reg(OT_WORD, 1, R_EAX);
4416 tcg_gen_ext16u_tl(cpu_T[0], cpu_T[0]);
4417 tcg_gen_ext16u_tl(cpu_T[1], cpu_T[1]);
4418 /* XXX: use 32 bit mul which could be faster */
4419 tcg_gen_mul_tl(cpu_T[0], cpu_T[0], cpu_T[1]);
4420 gen_op_mov_reg_T0(OT_WORD, R_EAX);
4421 tcg_gen_mov_tl(cpu_cc_dst, cpu_T[0]);
4422 tcg_gen_shri_tl(cpu_T[0], cpu_T[0], 16);
4423 gen_op_mov_reg_T0(OT_WORD, R_EDX);
4424 tcg_gen_mov_tl(cpu_cc_src, cpu_T[0]);
4425 s->cc_op = CC_OP_MULW;
4429 #ifdef TARGET_X86_64
4430 gen_op_mov_TN_reg(OT_LONG, 1, R_EAX);
4431 tcg_gen_ext32u_tl(cpu_T[0], cpu_T[0]);
4432 tcg_gen_ext32u_tl(cpu_T[1], cpu_T[1]);
4433 tcg_gen_mul_tl(cpu_T[0], cpu_T[0], cpu_T[1]);
4434 gen_op_mov_reg_T0(OT_LONG, R_EAX);
4435 tcg_gen_mov_tl(cpu_cc_dst, cpu_T[0]);
4436 tcg_gen_shri_tl(cpu_T[0], cpu_T[0], 32);
4437 gen_op_mov_reg_T0(OT_LONG, R_EDX);
4438 tcg_gen_mov_tl(cpu_cc_src, cpu_T[0]);
4442 t0 = tcg_temp_new_i64();
4443 t1 = tcg_temp_new_i64();
4444 gen_op_mov_TN_reg(OT_LONG, 1, R_EAX);
4445 tcg_gen_extu_i32_i64(t0, cpu_T[0]);
4446 tcg_gen_extu_i32_i64(t1, cpu_T[1]);
4447 tcg_gen_mul_i64(t0, t0, t1);
4448 tcg_gen_trunc_i64_i32(cpu_T[0], t0);
4449 gen_op_mov_reg_T0(OT_LONG, R_EAX);
4450 tcg_gen_mov_tl(cpu_cc_dst, cpu_T[0]);
4451 tcg_gen_shri_i64(t0, t0, 32);
4452 tcg_gen_trunc_i64_i32(cpu_T[0], t0);
4453 gen_op_mov_reg_T0(OT_LONG, R_EDX);
4454 tcg_gen_mov_tl(cpu_cc_src, cpu_T[0]);
4457 s->cc_op = CC_OP_MULL;
4459 #ifdef TARGET_X86_64
4461 gen_helper_mulq_EAX_T0(cpu_T[0]);
4462 s->cc_op = CC_OP_MULQ;
4470 gen_op_mov_TN_reg(OT_BYTE, 1, R_EAX);
4471 tcg_gen_ext8s_tl(cpu_T[0], cpu_T[0]);
4472 tcg_gen_ext8s_tl(cpu_T[1], cpu_T[1]);
4473 /* XXX: use 32 bit mul which could be faster */
4474 tcg_gen_mul_tl(cpu_T[0], cpu_T[0], cpu_T[1]);
4475 gen_op_mov_reg_T0(OT_WORD, R_EAX);
4476 tcg_gen_mov_tl(cpu_cc_dst, cpu_T[0]);
4477 tcg_gen_ext8s_tl(cpu_tmp0, cpu_T[0]);
4478 tcg_gen_sub_tl(cpu_cc_src, cpu_T[0], cpu_tmp0);
4479 s->cc_op = CC_OP_MULB;
4482 gen_op_mov_TN_reg(OT_WORD, 1, R_EAX);
4483 tcg_gen_ext16s_tl(cpu_T[0], cpu_T[0]);
4484 tcg_gen_ext16s_tl(cpu_T[1], cpu_T[1]);
4485 /* XXX: use 32 bit mul which could be faster */
4486 tcg_gen_mul_tl(cpu_T[0], cpu_T[0], cpu_T[1]);
4487 gen_op_mov_reg_T0(OT_WORD, R_EAX);
4488 tcg_gen_mov_tl(cpu_cc_dst, cpu_T[0]);
4489 tcg_gen_ext16s_tl(cpu_tmp0, cpu_T[0]);
4490 tcg_gen_sub_tl(cpu_cc_src, cpu_T[0], cpu_tmp0);
4491 tcg_gen_shri_tl(cpu_T[0], cpu_T[0], 16);
4492 gen_op_mov_reg_T0(OT_WORD, R_EDX);
4493 s->cc_op = CC_OP_MULW;
4497 #ifdef TARGET_X86_64
4498 gen_op_mov_TN_reg(OT_LONG, 1, R_EAX);
4499 tcg_gen_ext32s_tl(cpu_T[0], cpu_T[0]);
4500 tcg_gen_ext32s_tl(cpu_T[1], cpu_T[1]);
4501 tcg_gen_mul_tl(cpu_T[0], cpu_T[0], cpu_T[1]);
4502 gen_op_mov_reg_T0(OT_LONG, R_EAX);
4503 tcg_gen_mov_tl(cpu_cc_dst, cpu_T[0]);
4504 tcg_gen_ext32s_tl(cpu_tmp0, cpu_T[0]);
4505 tcg_gen_sub_tl(cpu_cc_src, cpu_T[0], cpu_tmp0);
4506 tcg_gen_shri_tl(cpu_T[0], cpu_T[0], 32);
4507 gen_op_mov_reg_T0(OT_LONG, R_EDX);
4511 t0 = tcg_temp_new_i64();
4512 t1 = tcg_temp_new_i64();
4513 gen_op_mov_TN_reg(OT_LONG, 1, R_EAX);
4514 tcg_gen_ext_i32_i64(t0, cpu_T[0]);
4515 tcg_gen_ext_i32_i64(t1, cpu_T[1]);
4516 tcg_gen_mul_i64(t0, t0, t1);
4517 tcg_gen_trunc_i64_i32(cpu_T[0], t0);
4518 gen_op_mov_reg_T0(OT_LONG, R_EAX);
4519 tcg_gen_mov_tl(cpu_cc_dst, cpu_T[0]);
4520 tcg_gen_sari_tl(cpu_tmp0, cpu_T[0], 31);
4521 tcg_gen_shri_i64(t0, t0, 32);
4522 tcg_gen_trunc_i64_i32(cpu_T[0], t0);
4523 gen_op_mov_reg_T0(OT_LONG, R_EDX);
4524 tcg_gen_sub_tl(cpu_cc_src, cpu_T[0], cpu_tmp0);
4527 s->cc_op = CC_OP_MULL;
4529 #ifdef TARGET_X86_64
4531 gen_helper_imulq_EAX_T0(cpu_T[0]);
4532 s->cc_op = CC_OP_MULQ;
4540 gen_jmp_im(pc_start - s->cs_base);
4541 gen_helper_divb_AL(cpu_T[0]);
4544 gen_jmp_im(pc_start - s->cs_base);
4545 gen_helper_divw_AX(cpu_T[0]);
4549 gen_jmp_im(pc_start - s->cs_base);
4550 gen_helper_divl_EAX(cpu_T[0]);
4552 #ifdef TARGET_X86_64
4554 gen_jmp_im(pc_start - s->cs_base);
4555 gen_helper_divq_EAX(cpu_T[0]);
4563 gen_jmp_im(pc_start - s->cs_base);
4564 gen_helper_idivb_AL(cpu_T[0]);
4567 gen_jmp_im(pc_start - s->cs_base);
4568 gen_helper_idivw_AX(cpu_T[0]);
4572 gen_jmp_im(pc_start - s->cs_base);
4573 gen_helper_idivl_EAX(cpu_T[0]);
4575 #ifdef TARGET_X86_64
4577 gen_jmp_im(pc_start - s->cs_base);
4578 gen_helper_idivq_EAX(cpu_T[0]);
4588 case 0xfe: /* GRP4 */
4589 case 0xff: /* GRP5 */
4593 ot = dflag + OT_WORD;
4595 modrm = ldub_code(s->pc++);
4596 mod = (modrm >> 6) & 3;
4597 rm = (modrm & 7) | REX_B(s);
4598 op = (modrm >> 3) & 7;
4599 if (op >= 2 && b == 0xfe) {
4603 if (op == 2 || op == 4) {
4604 /* operand size for jumps is 64 bit */
4606 } else if (op == 3 || op == 5) {
4607 ot = dflag ? OT_LONG + (rex_w == 1) : OT_WORD;
4608 } else if (op == 6) {
4609 /* default push size is 64 bit */
4610 ot = dflag ? OT_QUAD : OT_WORD;
4614 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
4615 if (op >= 2 && op != 3 && op != 5)
4616 gen_op_ld_T0_A0(ot + s->mem_index);
4618 gen_op_mov_TN_reg(ot, 0, rm);
4622 case 0: /* inc Ev */
4627 gen_inc(s, ot, opreg, 1);
4629 case 1: /* dec Ev */
4634 gen_inc(s, ot, opreg, -1);
4636 case 2: /* call Ev */
4637 /* XXX: optimize if memory (no 'and' is necessary) */
4639 gen_op_andl_T0_ffff();
4640 next_eip = s->pc - s->cs_base;
4641 gen_movtl_T1_im(next_eip);
4646 case 3: /* lcall Ev */
4647 gen_op_ld_T1_A0(ot + s->mem_index);
4648 gen_add_A0_im(s, 1 << (ot - OT_WORD + 1));
4649 gen_op_ldu_T0_A0(OT_WORD + s->mem_index);
4651 if (s->pe && !s->vm86) {
4652 if (s->cc_op != CC_OP_DYNAMIC)
4653 gen_op_set_cc_op(s->cc_op);
4654 gen_jmp_im(pc_start - s->cs_base);
4655 tcg_gen_trunc_tl_i32(cpu_tmp2_i32, cpu_T[0]);
4656 gen_helper_lcall_protected(cpu_tmp2_i32, cpu_T[1],
4657 tcg_const_i32(dflag),
4658 tcg_const_i32(s->pc - pc_start));
4660 tcg_gen_trunc_tl_i32(cpu_tmp2_i32, cpu_T[0]);
4661 gen_helper_lcall_real(cpu_tmp2_i32, cpu_T[1],
4662 tcg_const_i32(dflag),
4663 tcg_const_i32(s->pc - s->cs_base));
4667 case 4: /* jmp Ev */
4669 gen_op_andl_T0_ffff();
4673 case 5: /* ljmp Ev */
4674 gen_op_ld_T1_A0(ot + s->mem_index);
4675 gen_add_A0_im(s, 1 << (ot - OT_WORD + 1));
4676 gen_op_ldu_T0_A0(OT_WORD + s->mem_index);
4678 if (s->pe && !s->vm86) {
4679 if (s->cc_op != CC_OP_DYNAMIC)
4680 gen_op_set_cc_op(s->cc_op);
4681 gen_jmp_im(pc_start - s->cs_base);
4682 tcg_gen_trunc_tl_i32(cpu_tmp2_i32, cpu_T[0]);
4683 gen_helper_ljmp_protected(cpu_tmp2_i32, cpu_T[1],
4684 tcg_const_i32(s->pc - pc_start));
4686 gen_op_movl_seg_T0_vm(R_CS);
4687 gen_op_movl_T0_T1();
4692 case 6: /* push Ev */
4700 case 0x84: /* test Ev, Gv */
4705 ot = dflag + OT_WORD;
4707 modrm = ldub_code(s->pc++);
4708 reg = ((modrm >> 3) & 7) | rex_r;
4710 gen_ldst_modrm(s, modrm, ot, OR_TMP0, 0);
4711 gen_op_mov_TN_reg(ot, 1, reg);
4712 gen_op_testl_T0_T1_cc();
4713 s->cc_op = CC_OP_LOGICB + ot;
4716 case 0xa8: /* test eAX, Iv */
4721 ot = dflag + OT_WORD;
4722 val = insn_get(s, ot);
4724 gen_op_mov_TN_reg(ot, 0, OR_EAX);
4725 gen_op_movl_T1_im(val);
4726 gen_op_testl_T0_T1_cc();
4727 s->cc_op = CC_OP_LOGICB + ot;
4730 case 0x98: /* CWDE/CBW */
4731 #ifdef TARGET_X86_64
4733 gen_op_mov_TN_reg(OT_LONG, 0, R_EAX);
4734 tcg_gen_ext32s_tl(cpu_T[0], cpu_T[0]);
4735 gen_op_mov_reg_T0(OT_QUAD, R_EAX);
4739 gen_op_mov_TN_reg(OT_WORD, 0, R_EAX);
4740 tcg_gen_ext16s_tl(cpu_T[0], cpu_T[0]);
4741 gen_op_mov_reg_T0(OT_LONG, R_EAX);
4743 gen_op_mov_TN_reg(OT_BYTE, 0, R_EAX);
4744 tcg_gen_ext8s_tl(cpu_T[0], cpu_T[0]);
4745 gen_op_mov_reg_T0(OT_WORD, R_EAX);
4748 case 0x99: /* CDQ/CWD */
4749 #ifdef TARGET_X86_64
4751 gen_op_mov_TN_reg(OT_QUAD, 0, R_EAX);
4752 tcg_gen_sari_tl(cpu_T[0], cpu_T[0], 63);
4753 gen_op_mov_reg_T0(OT_QUAD, R_EDX);
4757 gen_op_mov_TN_reg(OT_LONG, 0, R_EAX);
4758 tcg_gen_ext32s_tl(cpu_T[0], cpu_T[0]);
4759 tcg_gen_sari_tl(cpu_T[0], cpu_T[0], 31);
4760 gen_op_mov_reg_T0(OT_LONG, R_EDX);
4762 gen_op_mov_TN_reg(OT_WORD, 0, R_EAX);
4763 tcg_gen_ext16s_tl(cpu_T[0], cpu_T[0]);
4764 tcg_gen_sari_tl(cpu_T[0], cpu_T[0], 15);
4765 gen_op_mov_reg_T0(OT_WORD, R_EDX);
4768 case 0x1af: /* imul Gv, Ev */
4769 case 0x69: /* imul Gv, Ev, I */
4771 ot = dflag + OT_WORD;
4772 modrm = ldub_code(s->pc++);
4773 reg = ((modrm >> 3) & 7) | rex_r;
4775 s->rip_offset = insn_const_size(ot);
4778 gen_ldst_modrm(s, modrm, ot, OR_TMP0, 0);
4780 val = insn_get(s, ot);
4781 gen_op_movl_T1_im(val);
4782 } else if (b == 0x6b) {
4783 val = (int8_t)insn_get(s, OT_BYTE);
4784 gen_op_movl_T1_im(val);
4786 gen_op_mov_TN_reg(ot, 1, reg);
4789 #ifdef TARGET_X86_64
4790 if (ot == OT_QUAD) {
4791 gen_helper_imulq_T0_T1(cpu_T[0], cpu_T[0], cpu_T[1]);
4794 if (ot == OT_LONG) {
4795 #ifdef TARGET_X86_64
4796 tcg_gen_ext32s_tl(cpu_T[0], cpu_T[0]);
4797 tcg_gen_ext32s_tl(cpu_T[1], cpu_T[1]);
4798 tcg_gen_mul_tl(cpu_T[0], cpu_T[0], cpu_T[1]);
4799 tcg_gen_mov_tl(cpu_cc_dst, cpu_T[0]);
4800 tcg_gen_ext32s_tl(cpu_tmp0, cpu_T[0]);
4801 tcg_gen_sub_tl(cpu_cc_src, cpu_T[0], cpu_tmp0);
4805 t0 = tcg_temp_new_i64();
4806 t1 = tcg_temp_new_i64();
4807 tcg_gen_ext_i32_i64(t0, cpu_T[0]);
4808 tcg_gen_ext_i32_i64(t1, cpu_T[1]);
4809 tcg_gen_mul_i64(t0, t0, t1);
4810 tcg_gen_trunc_i64_i32(cpu_T[0], t0);
4811 tcg_gen_mov_tl(cpu_cc_dst, cpu_T[0]);
4812 tcg_gen_sari_tl(cpu_tmp0, cpu_T[0], 31);
4813 tcg_gen_shri_i64(t0, t0, 32);
4814 tcg_gen_trunc_i64_i32(cpu_T[1], t0);
4815 tcg_gen_sub_tl(cpu_cc_src, cpu_T[1], cpu_tmp0);
4819 tcg_gen_ext16s_tl(cpu_T[0], cpu_T[0]);
4820 tcg_gen_ext16s_tl(cpu_T[1], cpu_T[1]);
4821 /* XXX: use 32 bit mul which could be faster */
4822 tcg_gen_mul_tl(cpu_T[0], cpu_T[0], cpu_T[1]);
4823 tcg_gen_mov_tl(cpu_cc_dst, cpu_T[0]);
4824 tcg_gen_ext16s_tl(cpu_tmp0, cpu_T[0]);
4825 tcg_gen_sub_tl(cpu_cc_src, cpu_T[0], cpu_tmp0);
4827 gen_op_mov_reg_T0(ot, reg);
4828 s->cc_op = CC_OP_MULB + ot;
4831 case 0x1c1: /* xadd Ev, Gv */
4835 ot = dflag + OT_WORD;
4836 modrm = ldub_code(s->pc++);
4837 reg = ((modrm >> 3) & 7) | rex_r;
4838 mod = (modrm >> 6) & 3;
4840 rm = (modrm & 7) | REX_B(s);
4841 gen_op_mov_TN_reg(ot, 0, reg);
4842 gen_op_mov_TN_reg(ot, 1, rm);
4843 gen_op_addl_T0_T1();
4844 gen_op_mov_reg_T1(ot, reg);
4845 gen_op_mov_reg_T0(ot, rm);
4847 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
4848 gen_op_mov_TN_reg(ot, 0, reg);
4849 gen_op_ld_T1_A0(ot + s->mem_index);
4850 gen_op_addl_T0_T1();
4851 gen_op_st_T0_A0(ot + s->mem_index);
4852 gen_op_mov_reg_T1(ot, reg);
4854 gen_op_update2_cc();
4855 s->cc_op = CC_OP_ADDB + ot;
4858 case 0x1b1: /* cmpxchg Ev, Gv */
4861 TCGv t0, t1, t2, a0;
4866 ot = dflag + OT_WORD;
4867 modrm = ldub_code(s->pc++);
4868 reg = ((modrm >> 3) & 7) | rex_r;
4869 mod = (modrm >> 6) & 3;
4870 t0 = tcg_temp_local_new();
4871 t1 = tcg_temp_local_new();
4872 t2 = tcg_temp_local_new();
4873 a0 = tcg_temp_local_new();
4874 gen_op_mov_v_reg(ot, t1, reg);
4876 rm = (modrm & 7) | REX_B(s);
4877 gen_op_mov_v_reg(ot, t0, rm);
4879 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
4880 tcg_gen_mov_tl(a0, cpu_A0);
4881 gen_op_ld_v(ot + s->mem_index, t0, a0);
4882 rm = 0; /* avoid warning */
4884 label1 = gen_new_label();
4885 tcg_gen_sub_tl(t2, cpu_regs[R_EAX], t0);
4887 tcg_gen_brcondi_tl(TCG_COND_EQ, t2, 0, label1);
4889 label2 = gen_new_label();
4890 gen_op_mov_reg_v(ot, R_EAX, t0);
4892 gen_set_label(label1);
4893 gen_op_mov_reg_v(ot, rm, t1);
4894 gen_set_label(label2);
4896 tcg_gen_mov_tl(t1, t0);
4897 gen_op_mov_reg_v(ot, R_EAX, t0);
4898 gen_set_label(label1);
4900 gen_op_st_v(ot + s->mem_index, t1, a0);
4902 tcg_gen_mov_tl(cpu_cc_src, t0);
4903 tcg_gen_mov_tl(cpu_cc_dst, t2);
4904 s->cc_op = CC_OP_SUBB + ot;
4911 case 0x1c7: /* cmpxchg8b */
4912 modrm = ldub_code(s->pc++);
4913 mod = (modrm >> 6) & 3;
4914 if ((mod == 3) || ((modrm & 0x38) != 0x8))
4916 #ifdef TARGET_X86_64
4918 if (!(s->cpuid_ext_features & CPUID_EXT_CX16))
4920 gen_jmp_im(pc_start - s->cs_base);
4921 if (s->cc_op != CC_OP_DYNAMIC)
4922 gen_op_set_cc_op(s->cc_op);
4923 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
4924 gen_helper_cmpxchg16b(cpu_A0);
4928 if (!(s->cpuid_features & CPUID_CX8))
4930 gen_jmp_im(pc_start - s->cs_base);
4931 if (s->cc_op != CC_OP_DYNAMIC)
4932 gen_op_set_cc_op(s->cc_op);
4933 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
4934 gen_helper_cmpxchg8b(cpu_A0);
4936 s->cc_op = CC_OP_EFLAGS;
4939 /**************************/
4941 case 0x50 ... 0x57: /* push */
4942 gen_op_mov_TN_reg(OT_LONG, 0, (b & 7) | REX_B(s));
4945 case 0x58 ... 0x5f: /* pop */
4947 ot = dflag ? OT_QUAD : OT_WORD;
4949 ot = dflag + OT_WORD;
4952 /* NOTE: order is important for pop %sp */
4954 gen_op_mov_reg_T0(ot, (b & 7) | REX_B(s));
4956 case 0x60: /* pusha */
4961 case 0x61: /* popa */
4966 case 0x68: /* push Iv */
4969 ot = dflag ? OT_QUAD : OT_WORD;
4971 ot = dflag + OT_WORD;
4974 val = insn_get(s, ot);
4976 val = (int8_t)insn_get(s, OT_BYTE);
4977 gen_op_movl_T0_im(val);
4980 case 0x8f: /* pop Ev */
4982 ot = dflag ? OT_QUAD : OT_WORD;
4984 ot = dflag + OT_WORD;
4986 modrm = ldub_code(s->pc++);
4987 mod = (modrm >> 6) & 3;
4990 /* NOTE: order is important for pop %sp */
4992 rm = (modrm & 7) | REX_B(s);
4993 gen_op_mov_reg_T0(ot, rm);
4995 /* NOTE: order is important too for MMU exceptions */
4996 s->popl_esp_hack = 1 << ot;
4997 gen_ldst_modrm(s, modrm, ot, OR_TMP0, 1);
4998 s->popl_esp_hack = 0;
5002 case 0xc8: /* enter */
5005 val = lduw_code(s->pc);
5007 level = ldub_code(s->pc++);
5008 gen_enter(s, val, level);
5011 case 0xc9: /* leave */
5012 /* XXX: exception not precise (ESP is updated before potential exception) */
5014 gen_op_mov_TN_reg(OT_QUAD, 0, R_EBP);
5015 gen_op_mov_reg_T0(OT_QUAD, R_ESP);
5016 } else if (s->ss32) {
5017 gen_op_mov_TN_reg(OT_LONG, 0, R_EBP);
5018 gen_op_mov_reg_T0(OT_LONG, R_ESP);
5020 gen_op_mov_TN_reg(OT_WORD, 0, R_EBP);
5021 gen_op_mov_reg_T0(OT_WORD, R_ESP);
5025 ot = dflag ? OT_QUAD : OT_WORD;
5027 ot = dflag + OT_WORD;
5029 gen_op_mov_reg_T0(ot, R_EBP);
5032 case 0x06: /* push es */
5033 case 0x0e: /* push cs */
5034 case 0x16: /* push ss */
5035 case 0x1e: /* push ds */
5038 gen_op_movl_T0_seg(b >> 3);
5041 case 0x1a0: /* push fs */
5042 case 0x1a8: /* push gs */
5043 gen_op_movl_T0_seg((b >> 3) & 7);
5046 case 0x07: /* pop es */
5047 case 0x17: /* pop ss */
5048 case 0x1f: /* pop ds */
5053 gen_movl_seg_T0(s, reg, pc_start - s->cs_base);
5056 /* if reg == SS, inhibit interrupts/trace. */
5057 /* If several instructions disable interrupts, only the
5059 if (!(s->tb->flags & HF_INHIBIT_IRQ_MASK))
5060 gen_helper_set_inhibit_irq();
5064 gen_jmp_im(s->pc - s->cs_base);
5068 case 0x1a1: /* pop fs */
5069 case 0x1a9: /* pop gs */
5071 gen_movl_seg_T0(s, (b >> 3) & 7, pc_start - s->cs_base);
5074 gen_jmp_im(s->pc - s->cs_base);
5079 /**************************/
5082 case 0x89: /* mov Gv, Ev */
5086 ot = dflag + OT_WORD;
5087 modrm = ldub_code(s->pc++);
5088 reg = ((modrm >> 3) & 7) | rex_r;
5090 /* generate a generic store */
5091 gen_ldst_modrm(s, modrm, ot, reg, 1);
5094 case 0xc7: /* mov Ev, Iv */
5098 ot = dflag + OT_WORD;
5099 modrm = ldub_code(s->pc++);
5100 mod = (modrm >> 6) & 3;
5102 s->rip_offset = insn_const_size(ot);
5103 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
5105 val = insn_get(s, ot);
5106 gen_op_movl_T0_im(val);
5108 gen_op_st_T0_A0(ot + s->mem_index);
5110 gen_op_mov_reg_T0(ot, (modrm & 7) | REX_B(s));
5113 case 0x8b: /* mov Ev, Gv */
5117 ot = OT_WORD + dflag;
5118 modrm = ldub_code(s->pc++);
5119 reg = ((modrm >> 3) & 7) | rex_r;
5121 gen_ldst_modrm(s, modrm, ot, OR_TMP0, 0);
5122 gen_op_mov_reg_T0(ot, reg);
5124 case 0x8e: /* mov seg, Gv */
5125 modrm = ldub_code(s->pc++);
5126 reg = (modrm >> 3) & 7;
5127 if (reg >= 6 || reg == R_CS)
5129 gen_ldst_modrm(s, modrm, OT_WORD, OR_TMP0, 0);
5130 gen_movl_seg_T0(s, reg, pc_start - s->cs_base);
5132 /* if reg == SS, inhibit interrupts/trace */
5133 /* If several instructions disable interrupts, only the
5135 if (!(s->tb->flags & HF_INHIBIT_IRQ_MASK))
5136 gen_helper_set_inhibit_irq();
5140 gen_jmp_im(s->pc - s->cs_base);
5144 case 0x8c: /* mov Gv, seg */
5145 modrm = ldub_code(s->pc++);
5146 reg = (modrm >> 3) & 7;
5147 mod = (modrm >> 6) & 3;
5150 gen_op_movl_T0_seg(reg);
5152 ot = OT_WORD + dflag;
5155 gen_ldst_modrm(s, modrm, ot, OR_TMP0, 1);
5158 case 0x1b6: /* movzbS Gv, Eb */
5159 case 0x1b7: /* movzwS Gv, Eb */
5160 case 0x1be: /* movsbS Gv, Eb */
5161 case 0x1bf: /* movswS Gv, Eb */
5164 /* d_ot is the size of destination */
5165 d_ot = dflag + OT_WORD;
5166 /* ot is the size of source */
5167 ot = (b & 1) + OT_BYTE;
5168 modrm = ldub_code(s->pc++);
5169 reg = ((modrm >> 3) & 7) | rex_r;
5170 mod = (modrm >> 6) & 3;
5171 rm = (modrm & 7) | REX_B(s);
5174 gen_op_mov_TN_reg(ot, 0, rm);
5175 switch(ot | (b & 8)) {
5177 tcg_gen_ext8u_tl(cpu_T[0], cpu_T[0]);
5180 tcg_gen_ext8s_tl(cpu_T[0], cpu_T[0]);
5183 tcg_gen_ext16u_tl(cpu_T[0], cpu_T[0]);
5187 tcg_gen_ext16s_tl(cpu_T[0], cpu_T[0]);
5190 gen_op_mov_reg_T0(d_ot, reg);
5192 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
5194 gen_op_lds_T0_A0(ot + s->mem_index);
5196 gen_op_ldu_T0_A0(ot + s->mem_index);
5198 gen_op_mov_reg_T0(d_ot, reg);
5203 case 0x8d: /* lea */
5204 ot = dflag + OT_WORD;
5205 modrm = ldub_code(s->pc++);
5206 mod = (modrm >> 6) & 3;
5209 reg = ((modrm >> 3) & 7) | rex_r;
5210 /* we must ensure that no segment is added */
5214 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
5216 gen_op_mov_reg_A0(ot - OT_WORD, reg);
5219 case 0xa0: /* mov EAX, Ov */
5221 case 0xa2: /* mov Ov, EAX */
5224 target_ulong offset_addr;
5229 ot = dflag + OT_WORD;
5230 #ifdef TARGET_X86_64
5231 if (s->aflag == 2) {
5232 offset_addr = ldq_code(s->pc);
5234 gen_op_movq_A0_im(offset_addr);
5239 offset_addr = insn_get(s, OT_LONG);
5241 offset_addr = insn_get(s, OT_WORD);
5243 gen_op_movl_A0_im(offset_addr);
5245 gen_add_A0_ds_seg(s);
5247 gen_op_ld_T0_A0(ot + s->mem_index);
5248 gen_op_mov_reg_T0(ot, R_EAX);
5250 gen_op_mov_TN_reg(ot, 0, R_EAX);
5251 gen_op_st_T0_A0(ot + s->mem_index);
5255 case 0xd7: /* xlat */
5256 #ifdef TARGET_X86_64
5257 if (s->aflag == 2) {
5258 gen_op_movq_A0_reg(R_EBX);
5259 gen_op_mov_TN_reg(OT_QUAD, 0, R_EAX);
5260 tcg_gen_andi_tl(cpu_T[0], cpu_T[0], 0xff);
5261 tcg_gen_add_tl(cpu_A0, cpu_A0, cpu_T[0]);
5265 gen_op_movl_A0_reg(R_EBX);
5266 gen_op_mov_TN_reg(OT_LONG, 0, R_EAX);
5267 tcg_gen_andi_tl(cpu_T[0], cpu_T[0], 0xff);
5268 tcg_gen_add_tl(cpu_A0, cpu_A0, cpu_T[0]);
5270 gen_op_andl_A0_ffff();
5272 tcg_gen_andi_tl(cpu_A0, cpu_A0, 0xffffffff);
5274 gen_add_A0_ds_seg(s);
5275 gen_op_ldu_T0_A0(OT_BYTE + s->mem_index);
5276 gen_op_mov_reg_T0(OT_BYTE, R_EAX);
5278 case 0xb0 ... 0xb7: /* mov R, Ib */
5279 val = insn_get(s, OT_BYTE);
5280 gen_op_movl_T0_im(val);
5281 gen_op_mov_reg_T0(OT_BYTE, (b & 7) | REX_B(s));
5283 case 0xb8 ... 0xbf: /* mov R, Iv */
5284 #ifdef TARGET_X86_64
5288 tmp = ldq_code(s->pc);
5290 reg = (b & 7) | REX_B(s);
5291 gen_movtl_T0_im(tmp);
5292 gen_op_mov_reg_T0(OT_QUAD, reg);
5296 ot = dflag ? OT_LONG : OT_WORD;
5297 val = insn_get(s, ot);
5298 reg = (b & 7) | REX_B(s);
5299 gen_op_movl_T0_im(val);
5300 gen_op_mov_reg_T0(ot, reg);
5304 case 0x91 ... 0x97: /* xchg R, EAX */
5306 ot = dflag + OT_WORD;
5307 reg = (b & 7) | REX_B(s);
5311 case 0x87: /* xchg Ev, Gv */
5315 ot = dflag + OT_WORD;
5316 modrm = ldub_code(s->pc++);
5317 reg = ((modrm >> 3) & 7) | rex_r;
5318 mod = (modrm >> 6) & 3;
5320 rm = (modrm & 7) | REX_B(s);
5322 gen_op_mov_TN_reg(ot, 0, reg);
5323 gen_op_mov_TN_reg(ot, 1, rm);
5324 gen_op_mov_reg_T0(ot, rm);
5325 gen_op_mov_reg_T1(ot, reg);
5327 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
5328 gen_op_mov_TN_reg(ot, 0, reg);
5329 /* for xchg, lock is implicit */
5330 if (!(prefixes & PREFIX_LOCK))
5332 gen_op_ld_T1_A0(ot + s->mem_index);
5333 gen_op_st_T0_A0(ot + s->mem_index);
5334 if (!(prefixes & PREFIX_LOCK))
5335 gen_helper_unlock();
5336 gen_op_mov_reg_T1(ot, reg);
5339 case 0xc4: /* les Gv */
5344 case 0xc5: /* lds Gv */
5349 case 0x1b2: /* lss Gv */
5352 case 0x1b4: /* lfs Gv */
5355 case 0x1b5: /* lgs Gv */
5358 ot = dflag ? OT_LONG : OT_WORD;
5359 modrm = ldub_code(s->pc++);
5360 reg = ((modrm >> 3) & 7) | rex_r;
5361 mod = (modrm >> 6) & 3;
5364 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
5365 gen_op_ld_T1_A0(ot + s->mem_index);
5366 gen_add_A0_im(s, 1 << (ot - OT_WORD + 1));
5367 /* load the segment first to handle exceptions properly */
5368 gen_op_ldu_T0_A0(OT_WORD + s->mem_index);
5369 gen_movl_seg_T0(s, op, pc_start - s->cs_base);
5370 /* then put the data */
5371 gen_op_mov_reg_T1(ot, reg);
5373 gen_jmp_im(s->pc - s->cs_base);
5378 /************************/
5389 ot = dflag + OT_WORD;
5391 modrm = ldub_code(s->pc++);
5392 mod = (modrm >> 6) & 3;
5393 op = (modrm >> 3) & 7;
5399 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
5402 opreg = (modrm & 7) | REX_B(s);
5407 gen_shift(s, op, ot, opreg, OR_ECX);
5410 shift = ldub_code(s->pc++);
5412 gen_shifti(s, op, ot, opreg, shift);
5427 case 0x1a4: /* shld imm */
5431 case 0x1a5: /* shld cl */
5435 case 0x1ac: /* shrd imm */
5439 case 0x1ad: /* shrd cl */
5443 ot = dflag + OT_WORD;
5444 modrm = ldub_code(s->pc++);
5445 mod = (modrm >> 6) & 3;
5446 rm = (modrm & 7) | REX_B(s);
5447 reg = ((modrm >> 3) & 7) | rex_r;
5449 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
5454 gen_op_mov_TN_reg(ot, 1, reg);
5457 val = ldub_code(s->pc++);
5458 tcg_gen_movi_tl(cpu_T3, val);
5460 tcg_gen_mov_tl(cpu_T3, cpu_regs[R_ECX]);
5462 gen_shiftd_rm_T1_T3(s, ot, opreg, op);
5465 /************************/
5468 if (s->flags & (HF_EM_MASK | HF_TS_MASK)) {
5469 /* if CR0.EM or CR0.TS are set, generate an FPU exception */
5470 /* XXX: what to do if illegal op ? */
5471 gen_exception(s, EXCP07_PREX, pc_start - s->cs_base);
5474 modrm = ldub_code(s->pc++);
5475 mod = (modrm >> 6) & 3;
5477 op = ((b & 7) << 3) | ((modrm >> 3) & 7);
5480 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
5482 case 0x00 ... 0x07: /* fxxxs */
5483 case 0x10 ... 0x17: /* fixxxl */
5484 case 0x20 ... 0x27: /* fxxxl */
5485 case 0x30 ... 0x37: /* fixxx */
5492 gen_op_ld_T0_A0(OT_LONG + s->mem_index);
5493 tcg_gen_trunc_tl_i32(cpu_tmp2_i32, cpu_T[0]);
5494 gen_helper_flds_FT0(cpu_tmp2_i32);
5497 gen_op_ld_T0_A0(OT_LONG + s->mem_index);
5498 tcg_gen_trunc_tl_i32(cpu_tmp2_i32, cpu_T[0]);
5499 gen_helper_fildl_FT0(cpu_tmp2_i32);
5502 tcg_gen_qemu_ld64(cpu_tmp1_i64, cpu_A0,
5503 (s->mem_index >> 2) - 1);
5504 gen_helper_fldl_FT0(cpu_tmp1_i64);
5508 gen_op_lds_T0_A0(OT_WORD + s->mem_index);
5509 tcg_gen_trunc_tl_i32(cpu_tmp2_i32, cpu_T[0]);
5510 gen_helper_fildl_FT0(cpu_tmp2_i32);
5514 gen_helper_fp_arith_ST0_FT0(op1);
5516 /* fcomp needs pop */
5521 case 0x08: /* flds */
5522 case 0x0a: /* fsts */
5523 case 0x0b: /* fstps */
5524 case 0x18 ... 0x1b: /* fildl, fisttpl, fistl, fistpl */
5525 case 0x28 ... 0x2b: /* fldl, fisttpll, fstl, fstpl */
5526 case 0x38 ... 0x3b: /* filds, fisttps, fists, fistps */
5531 gen_op_ld_T0_A0(OT_LONG + s->mem_index);
5532 tcg_gen_trunc_tl_i32(cpu_tmp2_i32, cpu_T[0]);
5533 gen_helper_flds_ST0(cpu_tmp2_i32);
5536 gen_op_ld_T0_A0(OT_LONG + s->mem_index);
5537 tcg_gen_trunc_tl_i32(cpu_tmp2_i32, cpu_T[0]);
5538 gen_helper_fildl_ST0(cpu_tmp2_i32);
5541 tcg_gen_qemu_ld64(cpu_tmp1_i64, cpu_A0,
5542 (s->mem_index >> 2) - 1);
5543 gen_helper_fldl_ST0(cpu_tmp1_i64);
5547 gen_op_lds_T0_A0(OT_WORD + s->mem_index);
5548 tcg_gen_trunc_tl_i32(cpu_tmp2_i32, cpu_T[0]);
5549 gen_helper_fildl_ST0(cpu_tmp2_i32);
5554 /* XXX: the corresponding CPUID bit must be tested ! */
5557 gen_helper_fisttl_ST0(cpu_tmp2_i32);
5558 tcg_gen_extu_i32_tl(cpu_T[0], cpu_tmp2_i32);
5559 gen_op_st_T0_A0(OT_LONG + s->mem_index);
5562 gen_helper_fisttll_ST0(cpu_tmp1_i64);
5563 tcg_gen_qemu_st64(cpu_tmp1_i64, cpu_A0,
5564 (s->mem_index >> 2) - 1);
5568 gen_helper_fistt_ST0(cpu_tmp2_i32);
5569 tcg_gen_extu_i32_tl(cpu_T[0], cpu_tmp2_i32);
5570 gen_op_st_T0_A0(OT_WORD + s->mem_index);
5578 gen_helper_fsts_ST0(cpu_tmp2_i32);
5579 tcg_gen_extu_i32_tl(cpu_T[0], cpu_tmp2_i32);
5580 gen_op_st_T0_A0(OT_LONG + s->mem_index);
5583 gen_helper_fistl_ST0(cpu_tmp2_i32);
5584 tcg_gen_extu_i32_tl(cpu_T[0], cpu_tmp2_i32);
5585 gen_op_st_T0_A0(OT_LONG + s->mem_index);
5588 gen_helper_fstl_ST0(cpu_tmp1_i64);
5589 tcg_gen_qemu_st64(cpu_tmp1_i64, cpu_A0,
5590 (s->mem_index >> 2) - 1);
5594 gen_helper_fist_ST0(cpu_tmp2_i32);
5595 tcg_gen_extu_i32_tl(cpu_T[0], cpu_tmp2_i32);
5596 gen_op_st_T0_A0(OT_WORD + s->mem_index);
5604 case 0x0c: /* fldenv mem */
5605 if (s->cc_op != CC_OP_DYNAMIC)
5606 gen_op_set_cc_op(s->cc_op);
5607 gen_jmp_im(pc_start - s->cs_base);
5609 cpu_A0, tcg_const_i32(s->dflag));
5611 case 0x0d: /* fldcw mem */
5612 gen_op_ld_T0_A0(OT_WORD + s->mem_index);
5613 tcg_gen_trunc_tl_i32(cpu_tmp2_i32, cpu_T[0]);
5614 gen_helper_fldcw(cpu_tmp2_i32);
5616 case 0x0e: /* fnstenv mem */
5617 if (s->cc_op != CC_OP_DYNAMIC)
5618 gen_op_set_cc_op(s->cc_op);
5619 gen_jmp_im(pc_start - s->cs_base);
5620 gen_helper_fstenv(cpu_A0, tcg_const_i32(s->dflag));
5622 case 0x0f: /* fnstcw mem */
5623 gen_helper_fnstcw(cpu_tmp2_i32);
5624 tcg_gen_extu_i32_tl(cpu_T[0], cpu_tmp2_i32);
5625 gen_op_st_T0_A0(OT_WORD + s->mem_index);
5627 case 0x1d: /* fldt mem */
5628 if (s->cc_op != CC_OP_DYNAMIC)
5629 gen_op_set_cc_op(s->cc_op);
5630 gen_jmp_im(pc_start - s->cs_base);
5631 gen_helper_fldt_ST0(cpu_A0);
5633 case 0x1f: /* fstpt mem */
5634 if (s->cc_op != CC_OP_DYNAMIC)
5635 gen_op_set_cc_op(s->cc_op);
5636 gen_jmp_im(pc_start - s->cs_base);
5637 gen_helper_fstt_ST0(cpu_A0);
5640 case 0x2c: /* frstor mem */
5641 if (s->cc_op != CC_OP_DYNAMIC)
5642 gen_op_set_cc_op(s->cc_op);
5643 gen_jmp_im(pc_start - s->cs_base);
5644 gen_helper_frstor(cpu_A0, tcg_const_i32(s->dflag));
5646 case 0x2e: /* fnsave mem */
5647 if (s->cc_op != CC_OP_DYNAMIC)
5648 gen_op_set_cc_op(s->cc_op);
5649 gen_jmp_im(pc_start - s->cs_base);
5650 gen_helper_fsave(cpu_A0, tcg_const_i32(s->dflag));
5652 case 0x2f: /* fnstsw mem */
5653 gen_helper_fnstsw(cpu_tmp2_i32);
5654 tcg_gen_extu_i32_tl(cpu_T[0], cpu_tmp2_i32);
5655 gen_op_st_T0_A0(OT_WORD + s->mem_index);
5657 case 0x3c: /* fbld */
5658 if (s->cc_op != CC_OP_DYNAMIC)
5659 gen_op_set_cc_op(s->cc_op);
5660 gen_jmp_im(pc_start - s->cs_base);
5661 gen_helper_fbld_ST0(cpu_A0);
5663 case 0x3e: /* fbstp */
5664 if (s->cc_op != CC_OP_DYNAMIC)
5665 gen_op_set_cc_op(s->cc_op);
5666 gen_jmp_im(pc_start - s->cs_base);
5667 gen_helper_fbst_ST0(cpu_A0);
5670 case 0x3d: /* fildll */
5671 tcg_gen_qemu_ld64(cpu_tmp1_i64, cpu_A0,
5672 (s->mem_index >> 2) - 1);
5673 gen_helper_fildll_ST0(cpu_tmp1_i64);
5675 case 0x3f: /* fistpll */
5676 gen_helper_fistll_ST0(cpu_tmp1_i64);
5677 tcg_gen_qemu_st64(cpu_tmp1_i64, cpu_A0,
5678 (s->mem_index >> 2) - 1);
5685 /* register float ops */
5689 case 0x08: /* fld sti */
5691 gen_helper_fmov_ST0_STN(tcg_const_i32((opreg + 1) & 7));
5693 case 0x09: /* fxchg sti */
5694 case 0x29: /* fxchg4 sti, undocumented op */
5695 case 0x39: /* fxchg7 sti, undocumented op */
5696 gen_helper_fxchg_ST0_STN(tcg_const_i32(opreg));
5698 case 0x0a: /* grp d9/2 */
5701 /* check exceptions (FreeBSD FPU probe) */
5702 if (s->cc_op != CC_OP_DYNAMIC)
5703 gen_op_set_cc_op(s->cc_op);
5704 gen_jmp_im(pc_start - s->cs_base);
5711 case 0x0c: /* grp d9/4 */
5714 gen_helper_fchs_ST0();
5717 gen_helper_fabs_ST0();
5720 gen_helper_fldz_FT0();
5721 gen_helper_fcom_ST0_FT0();
5724 gen_helper_fxam_ST0();
5730 case 0x0d: /* grp d9/5 */
5735 gen_helper_fld1_ST0();
5739 gen_helper_fldl2t_ST0();
5743 gen_helper_fldl2e_ST0();
5747 gen_helper_fldpi_ST0();
5751 gen_helper_fldlg2_ST0();
5755 gen_helper_fldln2_ST0();
5759 gen_helper_fldz_ST0();
5766 case 0x0e: /* grp d9/6 */
5777 case 3: /* fpatan */
5778 gen_helper_fpatan();
5780 case 4: /* fxtract */
5781 gen_helper_fxtract();
5783 case 5: /* fprem1 */
5784 gen_helper_fprem1();
5786 case 6: /* fdecstp */
5787 gen_helper_fdecstp();
5790 case 7: /* fincstp */
5791 gen_helper_fincstp();
5795 case 0x0f: /* grp d9/7 */
5800 case 1: /* fyl2xp1 */
5801 gen_helper_fyl2xp1();
5806 case 3: /* fsincos */
5807 gen_helper_fsincos();
5809 case 5: /* fscale */
5810 gen_helper_fscale();
5812 case 4: /* frndint */
5813 gen_helper_frndint();
5824 case 0x00: case 0x01: case 0x04 ... 0x07: /* fxxx st, sti */
5825 case 0x20: case 0x21: case 0x24 ... 0x27: /* fxxx sti, st */
5826 case 0x30: case 0x31: case 0x34 ... 0x37: /* fxxxp sti, st */
5832 gen_helper_fp_arith_STN_ST0(op1, opreg);
5836 gen_helper_fmov_FT0_STN(tcg_const_i32(opreg));
5837 gen_helper_fp_arith_ST0_FT0(op1);
5841 case 0x02: /* fcom */
5842 case 0x22: /* fcom2, undocumented op */
5843 gen_helper_fmov_FT0_STN(tcg_const_i32(opreg));
5844 gen_helper_fcom_ST0_FT0();
5846 case 0x03: /* fcomp */
5847 case 0x23: /* fcomp3, undocumented op */
5848 case 0x32: /* fcomp5, undocumented op */
5849 gen_helper_fmov_FT0_STN(tcg_const_i32(opreg));
5850 gen_helper_fcom_ST0_FT0();
5853 case 0x15: /* da/5 */
5855 case 1: /* fucompp */
5856 gen_helper_fmov_FT0_STN(tcg_const_i32(1));
5857 gen_helper_fucom_ST0_FT0();
5867 case 0: /* feni (287 only, just do nop here) */
5869 case 1: /* fdisi (287 only, just do nop here) */
5874 case 3: /* fninit */
5875 gen_helper_fninit();
5877 case 4: /* fsetpm (287 only, just do nop here) */
5883 case 0x1d: /* fucomi */
5884 if (s->cc_op != CC_OP_DYNAMIC)
5885 gen_op_set_cc_op(s->cc_op);
5886 gen_helper_fmov_FT0_STN(tcg_const_i32(opreg));
5887 gen_helper_fucomi_ST0_FT0();
5888 s->cc_op = CC_OP_EFLAGS;
5890 case 0x1e: /* fcomi */
5891 if (s->cc_op != CC_OP_DYNAMIC)
5892 gen_op_set_cc_op(s->cc_op);
5893 gen_helper_fmov_FT0_STN(tcg_const_i32(opreg));
5894 gen_helper_fcomi_ST0_FT0();
5895 s->cc_op = CC_OP_EFLAGS;
5897 case 0x28: /* ffree sti */
5898 gen_helper_ffree_STN(tcg_const_i32(opreg));
5900 case 0x2a: /* fst sti */
5901 gen_helper_fmov_STN_ST0(tcg_const_i32(opreg));
5903 case 0x2b: /* fstp sti */
5904 case 0x0b: /* fstp1 sti, undocumented op */
5905 case 0x3a: /* fstp8 sti, undocumented op */
5906 case 0x3b: /* fstp9 sti, undocumented op */
5907 gen_helper_fmov_STN_ST0(tcg_const_i32(opreg));
5910 case 0x2c: /* fucom st(i) */
5911 gen_helper_fmov_FT0_STN(tcg_const_i32(opreg));
5912 gen_helper_fucom_ST0_FT0();
5914 case 0x2d: /* fucomp st(i) */
5915 gen_helper_fmov_FT0_STN(tcg_const_i32(opreg));
5916 gen_helper_fucom_ST0_FT0();
5919 case 0x33: /* de/3 */
5921 case 1: /* fcompp */
5922 gen_helper_fmov_FT0_STN(tcg_const_i32(1));
5923 gen_helper_fcom_ST0_FT0();
5931 case 0x38: /* ffreep sti, undocumented op */
5932 gen_helper_ffree_STN(tcg_const_i32(opreg));
5935 case 0x3c: /* df/4 */
5938 gen_helper_fnstsw(cpu_tmp2_i32);
5939 tcg_gen_extu_i32_tl(cpu_T[0], cpu_tmp2_i32);
5940 gen_op_mov_reg_T0(OT_WORD, R_EAX);
5946 case 0x3d: /* fucomip */
5947 if (s->cc_op != CC_OP_DYNAMIC)
5948 gen_op_set_cc_op(s->cc_op);
5949 gen_helper_fmov_FT0_STN(tcg_const_i32(opreg));
5950 gen_helper_fucomi_ST0_FT0();
5952 s->cc_op = CC_OP_EFLAGS;
5954 case 0x3e: /* fcomip */
5955 if (s->cc_op != CC_OP_DYNAMIC)
5956 gen_op_set_cc_op(s->cc_op);
5957 gen_helper_fmov_FT0_STN(tcg_const_i32(opreg));
5958 gen_helper_fcomi_ST0_FT0();
5960 s->cc_op = CC_OP_EFLAGS;
5962 case 0x10 ... 0x13: /* fcmovxx */
5966 static const uint8_t fcmov_cc[8] = {
5972 op1 = fcmov_cc[op & 3] | (((op >> 3) & 1) ^ 1);
5973 l1 = gen_new_label();
5974 gen_jcc1(s, s->cc_op, op1, l1);
5975 gen_helper_fmov_ST0_STN(tcg_const_i32(opreg));
5984 /************************/
5987 case 0xa4: /* movsS */
5992 ot = dflag + OT_WORD;
5994 if (prefixes & (PREFIX_REPZ | PREFIX_REPNZ)) {
5995 gen_repz_movs(s, ot, pc_start - s->cs_base, s->pc - s->cs_base);
6001 case 0xaa: /* stosS */
6006 ot = dflag + OT_WORD;
6008 if (prefixes & (PREFIX_REPZ | PREFIX_REPNZ)) {
6009 gen_repz_stos(s, ot, pc_start - s->cs_base, s->pc - s->cs_base);
6014 case 0xac: /* lodsS */
6019 ot = dflag + OT_WORD;
6020 if (prefixes & (PREFIX_REPZ | PREFIX_REPNZ)) {
6021 gen_repz_lods(s, ot, pc_start - s->cs_base, s->pc - s->cs_base);
6026 case 0xae: /* scasS */
6031 ot = dflag + OT_WORD;
6032 if (prefixes & PREFIX_REPNZ) {
6033 gen_repz_scas(s, ot, pc_start - s->cs_base, s->pc - s->cs_base, 1);
6034 } else if (prefixes & PREFIX_REPZ) {
6035 gen_repz_scas(s, ot, pc_start - s->cs_base, s->pc - s->cs_base, 0);
6038 s->cc_op = CC_OP_SUBB + ot;
6042 case 0xa6: /* cmpsS */
6047 ot = dflag + OT_WORD;
6048 if (prefixes & PREFIX_REPNZ) {
6049 gen_repz_cmps(s, ot, pc_start - s->cs_base, s->pc - s->cs_base, 1);
6050 } else if (prefixes & PREFIX_REPZ) {
6051 gen_repz_cmps(s, ot, pc_start - s->cs_base, s->pc - s->cs_base, 0);
6054 s->cc_op = CC_OP_SUBB + ot;
6057 case 0x6c: /* insS */
6062 ot = dflag ? OT_LONG : OT_WORD;
6063 gen_op_mov_TN_reg(OT_WORD, 0, R_EDX);
6064 gen_op_andl_T0_ffff();
6065 gen_check_io(s, ot, pc_start - s->cs_base,
6066 SVM_IOIO_TYPE_MASK | svm_is_rep(prefixes) | 4);
6067 if (prefixes & (PREFIX_REPZ | PREFIX_REPNZ)) {
6068 gen_repz_ins(s, ot, pc_start - s->cs_base, s->pc - s->cs_base);
6072 gen_jmp(s, s->pc - s->cs_base);
6076 case 0x6e: /* outsS */
6081 ot = dflag ? OT_LONG : OT_WORD;
6082 gen_op_mov_TN_reg(OT_WORD, 0, R_EDX);
6083 gen_op_andl_T0_ffff();
6084 gen_check_io(s, ot, pc_start - s->cs_base,
6085 svm_is_rep(prefixes) | 4);
6086 if (prefixes & (PREFIX_REPZ | PREFIX_REPNZ)) {
6087 gen_repz_outs(s, ot, pc_start - s->cs_base, s->pc - s->cs_base);
6091 gen_jmp(s, s->pc - s->cs_base);
6096 /************************/
6104 ot = dflag ? OT_LONG : OT_WORD;
6105 val = ldub_code(s->pc++);
6106 gen_op_movl_T0_im(val);
6107 gen_check_io(s, ot, pc_start - s->cs_base,
6108 SVM_IOIO_TYPE_MASK | svm_is_rep(prefixes));
6111 tcg_gen_trunc_tl_i32(cpu_tmp2_i32, cpu_T[0]);
6112 gen_helper_in_func(ot, cpu_T[1], cpu_tmp2_i32);
6113 gen_op_mov_reg_T1(ot, R_EAX);
6116 gen_jmp(s, s->pc - s->cs_base);
6124 ot = dflag ? OT_LONG : OT_WORD;
6125 val = ldub_code(s->pc++);
6126 gen_op_movl_T0_im(val);
6127 gen_check_io(s, ot, pc_start - s->cs_base,
6128 svm_is_rep(prefixes));
6129 gen_op_mov_TN_reg(ot, 1, R_EAX);
6133 tcg_gen_trunc_tl_i32(cpu_tmp2_i32, cpu_T[0]);
6134 tcg_gen_andi_i32(cpu_tmp2_i32, cpu_tmp2_i32, 0xffff);
6135 tcg_gen_trunc_tl_i32(cpu_tmp3_i32, cpu_T[1]);
6136 gen_helper_out_func(ot, cpu_tmp2_i32, cpu_tmp3_i32);
6139 gen_jmp(s, s->pc - s->cs_base);
6147 ot = dflag ? OT_LONG : OT_WORD;
6148 gen_op_mov_TN_reg(OT_WORD, 0, R_EDX);
6149 gen_op_andl_T0_ffff();
6150 gen_check_io(s, ot, pc_start - s->cs_base,
6151 SVM_IOIO_TYPE_MASK | svm_is_rep(prefixes));
6154 tcg_gen_trunc_tl_i32(cpu_tmp2_i32, cpu_T[0]);
6155 gen_helper_in_func(ot, cpu_T[1], cpu_tmp2_i32);
6156 gen_op_mov_reg_T1(ot, R_EAX);
6159 gen_jmp(s, s->pc - s->cs_base);
6167 ot = dflag ? OT_LONG : OT_WORD;
6168 gen_op_mov_TN_reg(OT_WORD, 0, R_EDX);
6169 gen_op_andl_T0_ffff();
6170 gen_check_io(s, ot, pc_start - s->cs_base,
6171 svm_is_rep(prefixes));
6172 gen_op_mov_TN_reg(ot, 1, R_EAX);
6176 tcg_gen_trunc_tl_i32(cpu_tmp2_i32, cpu_T[0]);
6177 tcg_gen_andi_i32(cpu_tmp2_i32, cpu_tmp2_i32, 0xffff);
6178 tcg_gen_trunc_tl_i32(cpu_tmp3_i32, cpu_T[1]);
6179 gen_helper_out_func(ot, cpu_tmp2_i32, cpu_tmp3_i32);
6182 gen_jmp(s, s->pc - s->cs_base);
6186 /************************/
6188 case 0xc2: /* ret im */
6189 val = ldsw_code(s->pc);
6192 if (CODE64(s) && s->dflag)
6194 gen_stack_update(s, val + (2 << s->dflag));
6196 gen_op_andl_T0_ffff();
6200 case 0xc3: /* ret */
6204 gen_op_andl_T0_ffff();
6208 case 0xca: /* lret im */
6209 val = ldsw_code(s->pc);
6212 if (s->pe && !s->vm86) {
6213 if (s->cc_op != CC_OP_DYNAMIC)
6214 gen_op_set_cc_op(s->cc_op);
6215 gen_jmp_im(pc_start - s->cs_base);
6216 gen_helper_lret_protected(tcg_const_i32(s->dflag),
6217 tcg_const_i32(val));
6221 gen_op_ld_T0_A0(1 + s->dflag + s->mem_index);
6223 gen_op_andl_T0_ffff();
6224 /* NOTE: keeping EIP updated is not a problem in case of
6228 gen_op_addl_A0_im(2 << s->dflag);
6229 gen_op_ld_T0_A0(1 + s->dflag + s->mem_index);
6230 gen_op_movl_seg_T0_vm(R_CS);
6231 /* add stack offset */
6232 gen_stack_update(s, val + (4 << s->dflag));
6236 case 0xcb: /* lret */
6239 case 0xcf: /* iret */
6240 gen_svm_check_intercept(s, pc_start, SVM_EXIT_IRET);
6243 gen_helper_iret_real(tcg_const_i32(s->dflag));
6244 s->cc_op = CC_OP_EFLAGS;
6245 } else if (s->vm86) {
6247 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
6249 gen_helper_iret_real(tcg_const_i32(s->dflag));
6250 s->cc_op = CC_OP_EFLAGS;
6253 if (s->cc_op != CC_OP_DYNAMIC)
6254 gen_op_set_cc_op(s->cc_op);
6255 gen_jmp_im(pc_start - s->cs_base);
6256 gen_helper_iret_protected(tcg_const_i32(s->dflag),
6257 tcg_const_i32(s->pc - s->cs_base));
6258 s->cc_op = CC_OP_EFLAGS;
6262 case 0xe8: /* call im */
6265 tval = (int32_t)insn_get(s, OT_LONG);
6267 tval = (int16_t)insn_get(s, OT_WORD);
6268 next_eip = s->pc - s->cs_base;
6274 gen_movtl_T0_im(next_eip);
6279 case 0x9a: /* lcall im */
6281 unsigned int selector, offset;
6285 ot = dflag ? OT_LONG : OT_WORD;
6286 offset = insn_get(s, ot);
6287 selector = insn_get(s, OT_WORD);
6289 gen_op_movl_T0_im(selector);
6290 gen_op_movl_T1_imu(offset);
6293 case 0xe9: /* jmp im */
6295 tval = (int32_t)insn_get(s, OT_LONG);
6297 tval = (int16_t)insn_get(s, OT_WORD);
6298 tval += s->pc - s->cs_base;
6305 case 0xea: /* ljmp im */
6307 unsigned int selector, offset;
6311 ot = dflag ? OT_LONG : OT_WORD;
6312 offset = insn_get(s, ot);
6313 selector = insn_get(s, OT_WORD);
6315 gen_op_movl_T0_im(selector);
6316 gen_op_movl_T1_imu(offset);
6319 case 0xeb: /* jmp Jb */
6320 tval = (int8_t)insn_get(s, OT_BYTE);
6321 tval += s->pc - s->cs_base;
6326 case 0x70 ... 0x7f: /* jcc Jb */
6327 tval = (int8_t)insn_get(s, OT_BYTE);
6329 case 0x180 ... 0x18f: /* jcc Jv */
6331 tval = (int32_t)insn_get(s, OT_LONG);
6333 tval = (int16_t)insn_get(s, OT_WORD);
6336 next_eip = s->pc - s->cs_base;
6340 gen_jcc(s, b, tval, next_eip);
6343 case 0x190 ... 0x19f: /* setcc Gv */
6344 modrm = ldub_code(s->pc++);
6346 gen_ldst_modrm(s, modrm, OT_BYTE, OR_TMP0, 1);
6348 case 0x140 ... 0x14f: /* cmov Gv, Ev */
6353 ot = dflag + OT_WORD;
6354 modrm = ldub_code(s->pc++);
6355 reg = ((modrm >> 3) & 7) | rex_r;
6356 mod = (modrm >> 6) & 3;
6357 t0 = tcg_temp_local_new();
6359 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
6360 gen_op_ld_v(ot + s->mem_index, t0, cpu_A0);
6362 rm = (modrm & 7) | REX_B(s);
6363 gen_op_mov_v_reg(ot, t0, rm);
6365 #ifdef TARGET_X86_64
6366 if (ot == OT_LONG) {
6367 /* XXX: specific Intel behaviour ? */
6368 l1 = gen_new_label();
6369 gen_jcc1(s, s->cc_op, b ^ 1, l1);
6370 tcg_gen_mov_tl(cpu_regs[reg], t0);
6372 tcg_gen_ext32u_tl(cpu_regs[reg], cpu_regs[reg]);
6376 l1 = gen_new_label();
6377 gen_jcc1(s, s->cc_op, b ^ 1, l1);
6378 gen_op_mov_reg_v(ot, reg, t0);
6385 /************************/
6387 case 0x9c: /* pushf */
6388 gen_svm_check_intercept(s, pc_start, SVM_EXIT_PUSHF);
6389 if (s->vm86 && s->iopl != 3) {
6390 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
6392 if (s->cc_op != CC_OP_DYNAMIC)
6393 gen_op_set_cc_op(s->cc_op);
6394 gen_helper_read_eflags(cpu_T[0]);
6398 case 0x9d: /* popf */
6399 gen_svm_check_intercept(s, pc_start, SVM_EXIT_POPF);
6400 if (s->vm86 && s->iopl != 3) {
6401 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
6406 gen_helper_write_eflags(cpu_T[0],
6407 tcg_const_i32((TF_MASK | AC_MASK | ID_MASK | NT_MASK | IF_MASK | IOPL_MASK)));
6409 gen_helper_write_eflags(cpu_T[0],
6410 tcg_const_i32((TF_MASK | AC_MASK | ID_MASK | NT_MASK | IF_MASK | IOPL_MASK) & 0xffff));
6413 if (s->cpl <= s->iopl) {
6415 gen_helper_write_eflags(cpu_T[0],
6416 tcg_const_i32((TF_MASK | AC_MASK | ID_MASK | NT_MASK | IF_MASK)));
6418 gen_helper_write_eflags(cpu_T[0],
6419 tcg_const_i32((TF_MASK | AC_MASK | ID_MASK | NT_MASK | IF_MASK) & 0xffff));
6423 gen_helper_write_eflags(cpu_T[0],
6424 tcg_const_i32((TF_MASK | AC_MASK | ID_MASK | NT_MASK)));
6426 gen_helper_write_eflags(cpu_T[0],
6427 tcg_const_i32((TF_MASK | AC_MASK | ID_MASK | NT_MASK) & 0xffff));
6432 s->cc_op = CC_OP_EFLAGS;
6433 /* abort translation because TF flag may change */
6434 gen_jmp_im(s->pc - s->cs_base);
6438 case 0x9e: /* sahf */
6439 if (CODE64(s) && !(s->cpuid_ext3_features & CPUID_EXT3_LAHF_LM))
6441 gen_op_mov_TN_reg(OT_BYTE, 0, R_AH);
6442 if (s->cc_op != CC_OP_DYNAMIC)
6443 gen_op_set_cc_op(s->cc_op);
6444 gen_compute_eflags(cpu_cc_src);
6445 tcg_gen_andi_tl(cpu_cc_src, cpu_cc_src, CC_O);
6446 tcg_gen_andi_tl(cpu_T[0], cpu_T[0], CC_S | CC_Z | CC_A | CC_P | CC_C);
6447 tcg_gen_or_tl(cpu_cc_src, cpu_cc_src, cpu_T[0]);
6448 s->cc_op = CC_OP_EFLAGS;
6450 case 0x9f: /* lahf */
6451 if (CODE64(s) && !(s->cpuid_ext3_features & CPUID_EXT3_LAHF_LM))
6453 if (s->cc_op != CC_OP_DYNAMIC)
6454 gen_op_set_cc_op(s->cc_op);
6455 gen_compute_eflags(cpu_T[0]);
6456 /* Note: gen_compute_eflags() only gives the condition codes */
6457 tcg_gen_ori_tl(cpu_T[0], cpu_T[0], 0x02);
6458 gen_op_mov_reg_T0(OT_BYTE, R_AH);
6460 case 0xf5: /* cmc */
6461 if (s->cc_op != CC_OP_DYNAMIC)
6462 gen_op_set_cc_op(s->cc_op);
6463 gen_compute_eflags(cpu_cc_src);
6464 tcg_gen_xori_tl(cpu_cc_src, cpu_cc_src, CC_C);
6465 s->cc_op = CC_OP_EFLAGS;
6467 case 0xf8: /* clc */
6468 if (s->cc_op != CC_OP_DYNAMIC)
6469 gen_op_set_cc_op(s->cc_op);
6470 gen_compute_eflags(cpu_cc_src);
6471 tcg_gen_andi_tl(cpu_cc_src, cpu_cc_src, ~CC_C);
6472 s->cc_op = CC_OP_EFLAGS;
6474 case 0xf9: /* stc */
6475 if (s->cc_op != CC_OP_DYNAMIC)
6476 gen_op_set_cc_op(s->cc_op);
6477 gen_compute_eflags(cpu_cc_src);
6478 tcg_gen_ori_tl(cpu_cc_src, cpu_cc_src, CC_C);
6479 s->cc_op = CC_OP_EFLAGS;
6481 case 0xfc: /* cld */
6482 tcg_gen_movi_i32(cpu_tmp2_i32, 1);
6483 tcg_gen_st_i32(cpu_tmp2_i32, cpu_env, offsetof(CPUState, df));
6485 case 0xfd: /* std */
6486 tcg_gen_movi_i32(cpu_tmp2_i32, -1);
6487 tcg_gen_st_i32(cpu_tmp2_i32, cpu_env, offsetof(CPUState, df));
6490 /************************/
6491 /* bit operations */
6492 case 0x1ba: /* bt/bts/btr/btc Gv, im */
6493 ot = dflag + OT_WORD;
6494 modrm = ldub_code(s->pc++);
6495 op = (modrm >> 3) & 7;
6496 mod = (modrm >> 6) & 3;
6497 rm = (modrm & 7) | REX_B(s);
6500 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
6501 gen_op_ld_T0_A0(ot + s->mem_index);
6503 gen_op_mov_TN_reg(ot, 0, rm);
6506 val = ldub_code(s->pc++);
6507 gen_op_movl_T1_im(val);
6512 case 0x1a3: /* bt Gv, Ev */
6515 case 0x1ab: /* bts */
6518 case 0x1b3: /* btr */
6521 case 0x1bb: /* btc */
6524 ot = dflag + OT_WORD;
6525 modrm = ldub_code(s->pc++);
6526 reg = ((modrm >> 3) & 7) | rex_r;
6527 mod = (modrm >> 6) & 3;
6528 rm = (modrm & 7) | REX_B(s);
6529 gen_op_mov_TN_reg(OT_LONG, 1, reg);
6531 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
6532 /* specific case: we need to add a displacement */
6533 gen_exts(ot, cpu_T[1]);
6534 tcg_gen_sari_tl(cpu_tmp0, cpu_T[1], 3 + ot);
6535 tcg_gen_shli_tl(cpu_tmp0, cpu_tmp0, ot);
6536 tcg_gen_add_tl(cpu_A0, cpu_A0, cpu_tmp0);
6537 gen_op_ld_T0_A0(ot + s->mem_index);
6539 gen_op_mov_TN_reg(ot, 0, rm);
6542 tcg_gen_andi_tl(cpu_T[1], cpu_T[1], (1 << (3 + ot)) - 1);
6545 tcg_gen_shr_tl(cpu_cc_src, cpu_T[0], cpu_T[1]);
6546 tcg_gen_movi_tl(cpu_cc_dst, 0);
6549 tcg_gen_shr_tl(cpu_tmp4, cpu_T[0], cpu_T[1]);
6550 tcg_gen_movi_tl(cpu_tmp0, 1);
6551 tcg_gen_shl_tl(cpu_tmp0, cpu_tmp0, cpu_T[1]);
6552 tcg_gen_or_tl(cpu_T[0], cpu_T[0], cpu_tmp0);
6555 tcg_gen_shr_tl(cpu_tmp4, cpu_T[0], cpu_T[1]);
6556 tcg_gen_movi_tl(cpu_tmp0, 1);
6557 tcg_gen_shl_tl(cpu_tmp0, cpu_tmp0, cpu_T[1]);
6558 tcg_gen_not_tl(cpu_tmp0, cpu_tmp0);
6559 tcg_gen_and_tl(cpu_T[0], cpu_T[0], cpu_tmp0);
6563 tcg_gen_shr_tl(cpu_tmp4, cpu_T[0], cpu_T[1]);
6564 tcg_gen_movi_tl(cpu_tmp0, 1);
6565 tcg_gen_shl_tl(cpu_tmp0, cpu_tmp0, cpu_T[1]);
6566 tcg_gen_xor_tl(cpu_T[0], cpu_T[0], cpu_tmp0);
6569 s->cc_op = CC_OP_SARB + ot;
6572 gen_op_st_T0_A0(ot + s->mem_index);
6574 gen_op_mov_reg_T0(ot, rm);
6575 tcg_gen_mov_tl(cpu_cc_src, cpu_tmp4);
6576 tcg_gen_movi_tl(cpu_cc_dst, 0);
6579 case 0x1bc: /* bsf */
6580 case 0x1bd: /* bsr */
6585 ot = dflag + OT_WORD;
6586 modrm = ldub_code(s->pc++);
6587 reg = ((modrm >> 3) & 7) | rex_r;
6588 gen_ldst_modrm(s,modrm, ot, OR_TMP0, 0);
6589 gen_extu(ot, cpu_T[0]);
6590 t0 = tcg_temp_local_new();
6591 tcg_gen_mov_tl(t0, cpu_T[0]);
6592 if ((b & 1) && (prefixes & PREFIX_REPZ) &&
6593 (s->cpuid_ext3_features & CPUID_EXT3_ABM)) {
6595 case OT_WORD: gen_helper_lzcnt(cpu_T[0], t0,
6596 tcg_const_i32(16)); break;
6597 case OT_LONG: gen_helper_lzcnt(cpu_T[0], t0,
6598 tcg_const_i32(32)); break;
6599 case OT_QUAD: gen_helper_lzcnt(cpu_T[0], t0,
6600 tcg_const_i32(64)); break;
6602 gen_op_mov_reg_T0(ot, reg);
6604 label1 = gen_new_label();
6605 tcg_gen_movi_tl(cpu_cc_dst, 0);
6606 tcg_gen_brcondi_tl(TCG_COND_EQ, t0, 0, label1);
6608 gen_helper_bsr(cpu_T[0], t0);
6610 gen_helper_bsf(cpu_T[0], t0);
6612 gen_op_mov_reg_T0(ot, reg);
6613 tcg_gen_movi_tl(cpu_cc_dst, 1);
6614 gen_set_label(label1);
6615 tcg_gen_discard_tl(cpu_cc_src);
6616 s->cc_op = CC_OP_LOGICB + ot;
6621 /************************/
6623 case 0x27: /* daa */
6626 if (s->cc_op != CC_OP_DYNAMIC)
6627 gen_op_set_cc_op(s->cc_op);
6629 s->cc_op = CC_OP_EFLAGS;
6631 case 0x2f: /* das */
6634 if (s->cc_op != CC_OP_DYNAMIC)
6635 gen_op_set_cc_op(s->cc_op);
6637 s->cc_op = CC_OP_EFLAGS;
6639 case 0x37: /* aaa */
6642 if (s->cc_op != CC_OP_DYNAMIC)
6643 gen_op_set_cc_op(s->cc_op);
6645 s->cc_op = CC_OP_EFLAGS;
6647 case 0x3f: /* aas */
6650 if (s->cc_op != CC_OP_DYNAMIC)
6651 gen_op_set_cc_op(s->cc_op);
6653 s->cc_op = CC_OP_EFLAGS;
6655 case 0xd4: /* aam */
6658 val = ldub_code(s->pc++);
6660 gen_exception(s, EXCP00_DIVZ, pc_start - s->cs_base);
6662 gen_helper_aam(tcg_const_i32(val));
6663 s->cc_op = CC_OP_LOGICB;
6666 case 0xd5: /* aad */
6669 val = ldub_code(s->pc++);
6670 gen_helper_aad(tcg_const_i32(val));
6671 s->cc_op = CC_OP_LOGICB;
6673 /************************/
6675 case 0x90: /* nop */
6676 /* XXX: correct lock test for all insn */
6677 if (prefixes & PREFIX_LOCK) {
6680 /* If REX_B is set, then this is xchg eax, r8d, not a nop. */
6682 goto do_xchg_reg_eax;
6684 if (prefixes & PREFIX_REPZ) {
6685 gen_svm_check_intercept(s, pc_start, SVM_EXIT_PAUSE);
6688 case 0x9b: /* fwait */
6689 if ((s->flags & (HF_MP_MASK | HF_TS_MASK)) ==
6690 (HF_MP_MASK | HF_TS_MASK)) {
6691 gen_exception(s, EXCP07_PREX, pc_start - s->cs_base);
6693 if (s->cc_op != CC_OP_DYNAMIC)
6694 gen_op_set_cc_op(s->cc_op);
6695 gen_jmp_im(pc_start - s->cs_base);
6699 case 0xcc: /* int3 */
6700 gen_interrupt(s, EXCP03_INT3, pc_start - s->cs_base, s->pc - s->cs_base);
6702 case 0xcd: /* int N */
6703 val = ldub_code(s->pc++);
6704 if (s->vm86 && s->iopl != 3) {
6705 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
6707 gen_interrupt(s, val, pc_start - s->cs_base, s->pc - s->cs_base);
6710 case 0xce: /* into */
6713 if (s->cc_op != CC_OP_DYNAMIC)
6714 gen_op_set_cc_op(s->cc_op);
6715 gen_jmp_im(pc_start - s->cs_base);
6716 gen_helper_into(tcg_const_i32(s->pc - pc_start));
6719 case 0xf1: /* icebp (undocumented, exits to external debugger) */
6720 gen_svm_check_intercept(s, pc_start, SVM_EXIT_ICEBP);
6722 gen_debug(s, pc_start - s->cs_base);
6725 tb_flush(cpu_single_env);
6726 cpu_set_log(CPU_LOG_INT | CPU_LOG_TB_IN_ASM);
6730 case 0xfa: /* cli */
6732 if (s->cpl <= s->iopl) {
6735 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
6741 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
6745 case 0xfb: /* sti */
6747 if (s->cpl <= s->iopl) {
6750 /* interruptions are enabled only the first insn after sti */
6751 /* If several instructions disable interrupts, only the
6753 if (!(s->tb->flags & HF_INHIBIT_IRQ_MASK))
6754 gen_helper_set_inhibit_irq();
6755 /* give a chance to handle pending irqs */
6756 gen_jmp_im(s->pc - s->cs_base);
6759 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
6765 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
6769 case 0x62: /* bound */
6772 ot = dflag ? OT_LONG : OT_WORD;
6773 modrm = ldub_code(s->pc++);
6774 reg = (modrm >> 3) & 7;
6775 mod = (modrm >> 6) & 3;
6778 gen_op_mov_TN_reg(ot, 0, reg);
6779 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
6780 gen_jmp_im(pc_start - s->cs_base);
6781 tcg_gen_trunc_tl_i32(cpu_tmp2_i32, cpu_T[0]);
6783 gen_helper_boundw(cpu_A0, cpu_tmp2_i32);
6785 gen_helper_boundl(cpu_A0, cpu_tmp2_i32);
6787 case 0x1c8 ... 0x1cf: /* bswap reg */
6788 reg = (b & 7) | REX_B(s);
6789 #ifdef TARGET_X86_64
6791 gen_op_mov_TN_reg(OT_QUAD, 0, reg);
6792 tcg_gen_bswap64_i64(cpu_T[0], cpu_T[0]);
6793 gen_op_mov_reg_T0(OT_QUAD, reg);
6797 gen_op_mov_TN_reg(OT_LONG, 0, reg);
6798 tcg_gen_ext32u_tl(cpu_T[0], cpu_T[0]);
6799 tcg_gen_bswap32_tl(cpu_T[0], cpu_T[0]);
6800 gen_op_mov_reg_T0(OT_LONG, reg);
6803 case 0xd6: /* salc */
6806 if (s->cc_op != CC_OP_DYNAMIC)
6807 gen_op_set_cc_op(s->cc_op);
6808 gen_compute_eflags_c(cpu_T[0]);
6809 tcg_gen_neg_tl(cpu_T[0], cpu_T[0]);
6810 gen_op_mov_reg_T0(OT_BYTE, R_EAX);
6812 case 0xe0: /* loopnz */
6813 case 0xe1: /* loopz */
6814 case 0xe2: /* loop */
6815 case 0xe3: /* jecxz */
6819 tval = (int8_t)insn_get(s, OT_BYTE);
6820 next_eip = s->pc - s->cs_base;
6825 l1 = gen_new_label();
6826 l2 = gen_new_label();
6827 l3 = gen_new_label();
6830 case 0: /* loopnz */
6832 if (s->cc_op != CC_OP_DYNAMIC)
6833 gen_op_set_cc_op(s->cc_op);
6834 gen_op_add_reg_im(s->aflag, R_ECX, -1);
6835 gen_op_jz_ecx(s->aflag, l3);
6836 gen_compute_eflags(cpu_tmp0);
6837 tcg_gen_andi_tl(cpu_tmp0, cpu_tmp0, CC_Z);
6839 tcg_gen_brcondi_tl(TCG_COND_EQ, cpu_tmp0, 0, l1);
6841 tcg_gen_brcondi_tl(TCG_COND_NE, cpu_tmp0, 0, l1);
6845 gen_op_add_reg_im(s->aflag, R_ECX, -1);
6846 gen_op_jnz_ecx(s->aflag, l1);
6850 gen_op_jz_ecx(s->aflag, l1);
6855 gen_jmp_im(next_eip);
6864 case 0x130: /* wrmsr */
6865 case 0x132: /* rdmsr */
6867 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
6869 if (s->cc_op != CC_OP_DYNAMIC)
6870 gen_op_set_cc_op(s->cc_op);
6871 gen_jmp_im(pc_start - s->cs_base);
6879 case 0x131: /* rdtsc */
6880 if (s->cc_op != CC_OP_DYNAMIC)
6881 gen_op_set_cc_op(s->cc_op);
6882 gen_jmp_im(pc_start - s->cs_base);
6888 gen_jmp(s, s->pc - s->cs_base);
6891 case 0x133: /* rdpmc */
6892 if (s->cc_op != CC_OP_DYNAMIC)
6893 gen_op_set_cc_op(s->cc_op);
6894 gen_jmp_im(pc_start - s->cs_base);
6897 case 0x134: /* sysenter */
6898 /* For Intel SYSENTER is valid on 64-bit */
6899 if (CODE64(s) && cpu_single_env->cpuid_vendor1 != CPUID_VENDOR_INTEL_1)
6902 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
6904 if (s->cc_op != CC_OP_DYNAMIC) {
6905 gen_op_set_cc_op(s->cc_op);
6906 s->cc_op = CC_OP_DYNAMIC;
6908 gen_jmp_im(pc_start - s->cs_base);
6909 gen_helper_sysenter();
6913 case 0x135: /* sysexit */
6914 /* For Intel SYSEXIT is valid on 64-bit */
6915 if (CODE64(s) && cpu_single_env->cpuid_vendor1 != CPUID_VENDOR_INTEL_1)
6918 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
6920 if (s->cc_op != CC_OP_DYNAMIC) {
6921 gen_op_set_cc_op(s->cc_op);
6922 s->cc_op = CC_OP_DYNAMIC;
6924 gen_jmp_im(pc_start - s->cs_base);
6925 gen_helper_sysexit(tcg_const_i32(dflag));
6929 #ifdef TARGET_X86_64
6930 case 0x105: /* syscall */
6931 /* XXX: is it usable in real mode ? */
6932 if (s->cc_op != CC_OP_DYNAMIC) {
6933 gen_op_set_cc_op(s->cc_op);
6934 s->cc_op = CC_OP_DYNAMIC;
6936 gen_jmp_im(pc_start - s->cs_base);
6937 gen_helper_syscall(tcg_const_i32(s->pc - pc_start));
6940 case 0x107: /* sysret */
6942 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
6944 if (s->cc_op != CC_OP_DYNAMIC) {
6945 gen_op_set_cc_op(s->cc_op);
6946 s->cc_op = CC_OP_DYNAMIC;
6948 gen_jmp_im(pc_start - s->cs_base);
6949 gen_helper_sysret(tcg_const_i32(s->dflag));
6950 /* condition codes are modified only in long mode */
6952 s->cc_op = CC_OP_EFLAGS;
6957 case 0x1a2: /* cpuid */
6958 if (s->cc_op != CC_OP_DYNAMIC)
6959 gen_op_set_cc_op(s->cc_op);
6960 gen_jmp_im(pc_start - s->cs_base);
6963 case 0xf4: /* hlt */
6965 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
6967 if (s->cc_op != CC_OP_DYNAMIC)
6968 gen_op_set_cc_op(s->cc_op);
6969 gen_jmp_im(pc_start - s->cs_base);
6970 gen_helper_hlt(tcg_const_i32(s->pc - pc_start));
6975 modrm = ldub_code(s->pc++);
6976 mod = (modrm >> 6) & 3;
6977 op = (modrm >> 3) & 7;
6980 if (!s->pe || s->vm86)
6982 gen_svm_check_intercept(s, pc_start, SVM_EXIT_LDTR_READ);
6983 tcg_gen_ld32u_tl(cpu_T[0], cpu_env, offsetof(CPUX86State,ldt.selector));
6987 gen_ldst_modrm(s, modrm, ot, OR_TMP0, 1);
6990 if (!s->pe || s->vm86)
6993 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
6995 gen_svm_check_intercept(s, pc_start, SVM_EXIT_LDTR_WRITE);
6996 gen_ldst_modrm(s, modrm, OT_WORD, OR_TMP0, 0);
6997 gen_jmp_im(pc_start - s->cs_base);
6998 tcg_gen_trunc_tl_i32(cpu_tmp2_i32, cpu_T[0]);
6999 gen_helper_lldt(cpu_tmp2_i32);
7003 if (!s->pe || s->vm86)
7005 gen_svm_check_intercept(s, pc_start, SVM_EXIT_TR_READ);
7006 tcg_gen_ld32u_tl(cpu_T[0], cpu_env, offsetof(CPUX86State,tr.selector));
7010 gen_ldst_modrm(s, modrm, ot, OR_TMP0, 1);
7013 if (!s->pe || s->vm86)
7016 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
7018 gen_svm_check_intercept(s, pc_start, SVM_EXIT_TR_WRITE);
7019 gen_ldst_modrm(s, modrm, OT_WORD, OR_TMP0, 0);
7020 gen_jmp_im(pc_start - s->cs_base);
7021 tcg_gen_trunc_tl_i32(cpu_tmp2_i32, cpu_T[0]);
7022 gen_helper_ltr(cpu_tmp2_i32);
7027 if (!s->pe || s->vm86)
7029 gen_ldst_modrm(s, modrm, OT_WORD, OR_TMP0, 0);
7030 if (s->cc_op != CC_OP_DYNAMIC)
7031 gen_op_set_cc_op(s->cc_op);
7033 gen_helper_verr(cpu_T[0]);
7035 gen_helper_verw(cpu_T[0]);
7036 s->cc_op = CC_OP_EFLAGS;
7043 modrm = ldub_code(s->pc++);
7044 mod = (modrm >> 6) & 3;
7045 op = (modrm >> 3) & 7;
7051 gen_svm_check_intercept(s, pc_start, SVM_EXIT_GDTR_READ);
7052 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
7053 tcg_gen_ld32u_tl(cpu_T[0], cpu_env, offsetof(CPUX86State, gdt.limit));
7054 gen_op_st_T0_A0(OT_WORD + s->mem_index);
7055 gen_add_A0_im(s, 2);
7056 tcg_gen_ld_tl(cpu_T[0], cpu_env, offsetof(CPUX86State, gdt.base));
7058 gen_op_andl_T0_im(0xffffff);
7059 gen_op_st_T0_A0(CODE64(s) + OT_LONG + s->mem_index);
7064 case 0: /* monitor */
7065 if (!(s->cpuid_ext_features & CPUID_EXT_MONITOR) ||
7068 if (s->cc_op != CC_OP_DYNAMIC)
7069 gen_op_set_cc_op(s->cc_op);
7070 gen_jmp_im(pc_start - s->cs_base);
7071 #ifdef TARGET_X86_64
7072 if (s->aflag == 2) {
7073 gen_op_movq_A0_reg(R_EAX);
7077 gen_op_movl_A0_reg(R_EAX);
7079 gen_op_andl_A0_ffff();
7081 gen_add_A0_ds_seg(s);
7082 gen_helper_monitor(cpu_A0);
7085 if (!(s->cpuid_ext_features & CPUID_EXT_MONITOR) ||
7088 if (s->cc_op != CC_OP_DYNAMIC) {
7089 gen_op_set_cc_op(s->cc_op);
7090 s->cc_op = CC_OP_DYNAMIC;
7092 gen_jmp_im(pc_start - s->cs_base);
7093 gen_helper_mwait(tcg_const_i32(s->pc - pc_start));
7100 gen_svm_check_intercept(s, pc_start, SVM_EXIT_IDTR_READ);
7101 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
7102 tcg_gen_ld32u_tl(cpu_T[0], cpu_env, offsetof(CPUX86State, idt.limit));
7103 gen_op_st_T0_A0(OT_WORD + s->mem_index);
7104 gen_add_A0_im(s, 2);
7105 tcg_gen_ld_tl(cpu_T[0], cpu_env, offsetof(CPUX86State, idt.base));
7107 gen_op_andl_T0_im(0xffffff);
7108 gen_op_st_T0_A0(CODE64(s) + OT_LONG + s->mem_index);
7114 if (s->cc_op != CC_OP_DYNAMIC)
7115 gen_op_set_cc_op(s->cc_op);
7116 gen_jmp_im(pc_start - s->cs_base);
7119 if (!(s->flags & HF_SVME_MASK) || !s->pe)
7122 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
7125 gen_helper_vmrun(tcg_const_i32(s->aflag),
7126 tcg_const_i32(s->pc - pc_start));
7131 case 1: /* VMMCALL */
7132 if (!(s->flags & HF_SVME_MASK))
7134 gen_helper_vmmcall();
7136 case 2: /* VMLOAD */
7137 if (!(s->flags & HF_SVME_MASK) || !s->pe)
7140 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
7143 gen_helper_vmload(tcg_const_i32(s->aflag));
7146 case 3: /* VMSAVE */
7147 if (!(s->flags & HF_SVME_MASK) || !s->pe)
7150 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
7153 gen_helper_vmsave(tcg_const_i32(s->aflag));
7157 if ((!(s->flags & HF_SVME_MASK) &&
7158 !(s->cpuid_ext3_features & CPUID_EXT3_SKINIT)) ||
7162 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
7169 if (!(s->flags & HF_SVME_MASK) || !s->pe)
7172 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
7178 case 6: /* SKINIT */
7179 if ((!(s->flags & HF_SVME_MASK) &&
7180 !(s->cpuid_ext3_features & CPUID_EXT3_SKINIT)) ||
7183 gen_helper_skinit();
7185 case 7: /* INVLPGA */
7186 if (!(s->flags & HF_SVME_MASK) || !s->pe)
7189 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
7192 gen_helper_invlpga(tcg_const_i32(s->aflag));
7198 } else if (s->cpl != 0) {
7199 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
7201 gen_svm_check_intercept(s, pc_start,
7202 op==2 ? SVM_EXIT_GDTR_WRITE : SVM_EXIT_IDTR_WRITE);
7203 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
7204 gen_op_ld_T1_A0(OT_WORD + s->mem_index);
7205 gen_add_A0_im(s, 2);
7206 gen_op_ld_T0_A0(CODE64(s) + OT_LONG + s->mem_index);
7208 gen_op_andl_T0_im(0xffffff);
7210 tcg_gen_st_tl(cpu_T[0], cpu_env, offsetof(CPUX86State,gdt.base));
7211 tcg_gen_st32_tl(cpu_T[1], cpu_env, offsetof(CPUX86State,gdt.limit));
7213 tcg_gen_st_tl(cpu_T[0], cpu_env, offsetof(CPUX86State,idt.base));
7214 tcg_gen_st32_tl(cpu_T[1], cpu_env, offsetof(CPUX86State,idt.limit));
7219 gen_svm_check_intercept(s, pc_start, SVM_EXIT_READ_CR0);
7220 #if defined TARGET_X86_64 && defined HOST_WORDS_BIGENDIAN
7221 tcg_gen_ld32u_tl(cpu_T[0], cpu_env, offsetof(CPUX86State,cr[0]) + 4);
7223 tcg_gen_ld32u_tl(cpu_T[0], cpu_env, offsetof(CPUX86State,cr[0]));
7225 gen_ldst_modrm(s, modrm, OT_WORD, OR_TMP0, 1);
7229 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
7231 gen_svm_check_intercept(s, pc_start, SVM_EXIT_WRITE_CR0);
7232 gen_ldst_modrm(s, modrm, OT_WORD, OR_TMP0, 0);
7233 gen_helper_lmsw(cpu_T[0]);
7234 gen_jmp_im(s->pc - s->cs_base);
7239 if (mod != 3) { /* invlpg */
7241 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
7243 if (s->cc_op != CC_OP_DYNAMIC)
7244 gen_op_set_cc_op(s->cc_op);
7245 gen_jmp_im(pc_start - s->cs_base);
7246 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
7247 gen_helper_invlpg(cpu_A0);
7248 gen_jmp_im(s->pc - s->cs_base);
7253 case 0: /* swapgs */
7254 #ifdef TARGET_X86_64
7257 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
7259 tcg_gen_ld_tl(cpu_T[0], cpu_env,
7260 offsetof(CPUX86State,segs[R_GS].base));
7261 tcg_gen_ld_tl(cpu_T[1], cpu_env,
7262 offsetof(CPUX86State,kernelgsbase));
7263 tcg_gen_st_tl(cpu_T[1], cpu_env,
7264 offsetof(CPUX86State,segs[R_GS].base));
7265 tcg_gen_st_tl(cpu_T[0], cpu_env,
7266 offsetof(CPUX86State,kernelgsbase));
7274 case 1: /* rdtscp */
7275 if (!(s->cpuid_ext2_features & CPUID_EXT2_RDTSCP))
7277 if (s->cc_op != CC_OP_DYNAMIC)
7278 gen_op_set_cc_op(s->cc_op);
7279 gen_jmp_im(pc_start - s->cs_base);
7282 gen_helper_rdtscp();
7285 gen_jmp(s, s->pc - s->cs_base);
7297 case 0x108: /* invd */
7298 case 0x109: /* wbinvd */
7300 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
7302 gen_svm_check_intercept(s, pc_start, (b & 2) ? SVM_EXIT_INVD : SVM_EXIT_WBINVD);
7306 case 0x63: /* arpl or movslS (x86_64) */
7307 #ifdef TARGET_X86_64
7310 /* d_ot is the size of destination */
7311 d_ot = dflag + OT_WORD;
7313 modrm = ldub_code(s->pc++);
7314 reg = ((modrm >> 3) & 7) | rex_r;
7315 mod = (modrm >> 6) & 3;
7316 rm = (modrm & 7) | REX_B(s);
7319 gen_op_mov_TN_reg(OT_LONG, 0, rm);
7321 if (d_ot == OT_QUAD)
7322 tcg_gen_ext32s_tl(cpu_T[0], cpu_T[0]);
7323 gen_op_mov_reg_T0(d_ot, reg);
7325 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
7326 if (d_ot == OT_QUAD) {
7327 gen_op_lds_T0_A0(OT_LONG + s->mem_index);
7329 gen_op_ld_T0_A0(OT_LONG + s->mem_index);
7331 gen_op_mov_reg_T0(d_ot, reg);
7337 TCGv t0, t1, t2, a0;
7339 if (!s->pe || s->vm86)
7341 t0 = tcg_temp_local_new();
7342 t1 = tcg_temp_local_new();
7343 t2 = tcg_temp_local_new();
7345 modrm = ldub_code(s->pc++);
7346 reg = (modrm >> 3) & 7;
7347 mod = (modrm >> 6) & 3;
7350 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
7351 gen_op_ld_v(ot + s->mem_index, t0, cpu_A0);
7352 a0 = tcg_temp_local_new();
7353 tcg_gen_mov_tl(a0, cpu_A0);
7355 gen_op_mov_v_reg(ot, t0, rm);
7358 gen_op_mov_v_reg(ot, t1, reg);
7359 tcg_gen_andi_tl(cpu_tmp0, t0, 3);
7360 tcg_gen_andi_tl(t1, t1, 3);
7361 tcg_gen_movi_tl(t2, 0);
7362 label1 = gen_new_label();
7363 tcg_gen_brcond_tl(TCG_COND_GE, cpu_tmp0, t1, label1);
7364 tcg_gen_andi_tl(t0, t0, ~3);
7365 tcg_gen_or_tl(t0, t0, t1);
7366 tcg_gen_movi_tl(t2, CC_Z);
7367 gen_set_label(label1);
7369 gen_op_st_v(ot + s->mem_index, t0, a0);
7372 gen_op_mov_reg_v(ot, rm, t0);
7374 if (s->cc_op != CC_OP_DYNAMIC)
7375 gen_op_set_cc_op(s->cc_op);
7376 gen_compute_eflags(cpu_cc_src);
7377 tcg_gen_andi_tl(cpu_cc_src, cpu_cc_src, ~CC_Z);
7378 tcg_gen_or_tl(cpu_cc_src, cpu_cc_src, t2);
7379 s->cc_op = CC_OP_EFLAGS;
7385 case 0x102: /* lar */
7386 case 0x103: /* lsl */
7390 if (!s->pe || s->vm86)
7392 ot = dflag ? OT_LONG : OT_WORD;
7393 modrm = ldub_code(s->pc++);
7394 reg = ((modrm >> 3) & 7) | rex_r;
7395 gen_ldst_modrm(s, modrm, OT_WORD, OR_TMP0, 0);
7396 t0 = tcg_temp_local_new();
7397 if (s->cc_op != CC_OP_DYNAMIC)
7398 gen_op_set_cc_op(s->cc_op);
7400 gen_helper_lar(t0, cpu_T[0]);
7402 gen_helper_lsl(t0, cpu_T[0]);
7403 tcg_gen_andi_tl(cpu_tmp0, cpu_cc_src, CC_Z);
7404 label1 = gen_new_label();
7405 tcg_gen_brcondi_tl(TCG_COND_EQ, cpu_tmp0, 0, label1);
7406 gen_op_mov_reg_v(ot, reg, t0);
7407 gen_set_label(label1);
7408 s->cc_op = CC_OP_EFLAGS;
7413 modrm = ldub_code(s->pc++);
7414 mod = (modrm >> 6) & 3;
7415 op = (modrm >> 3) & 7;
7417 case 0: /* prefetchnta */
7418 case 1: /* prefetchnt0 */
7419 case 2: /* prefetchnt0 */
7420 case 3: /* prefetchnt0 */
7423 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
7424 /* nothing more to do */
7426 default: /* nop (multi byte) */
7427 gen_nop_modrm(s, modrm);
7431 case 0x119 ... 0x11f: /* nop (multi byte) */
7432 modrm = ldub_code(s->pc++);
7433 gen_nop_modrm(s, modrm);
7435 case 0x120: /* mov reg, crN */
7436 case 0x122: /* mov crN, reg */
7438 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
7440 modrm = ldub_code(s->pc++);
7441 if ((modrm & 0xc0) != 0xc0)
7443 rm = (modrm & 7) | REX_B(s);
7444 reg = ((modrm >> 3) & 7) | rex_r;
7449 if ((prefixes & PREFIX_LOCK) && (reg == 0) &&
7450 (s->cpuid_ext3_features & CPUID_EXT3_CR8LEG)) {
7459 if (s->cc_op != CC_OP_DYNAMIC)
7460 gen_op_set_cc_op(s->cc_op);
7461 gen_jmp_im(pc_start - s->cs_base);
7463 gen_op_mov_TN_reg(ot, 0, rm);
7464 gen_helper_write_crN(tcg_const_i32(reg), cpu_T[0]);
7465 gen_jmp_im(s->pc - s->cs_base);
7468 gen_helper_read_crN(cpu_T[0], tcg_const_i32(reg));
7469 gen_op_mov_reg_T0(ot, rm);
7477 case 0x121: /* mov reg, drN */
7478 case 0x123: /* mov drN, reg */
7480 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
7482 modrm = ldub_code(s->pc++);
7483 if ((modrm & 0xc0) != 0xc0)
7485 rm = (modrm & 7) | REX_B(s);
7486 reg = ((modrm >> 3) & 7) | rex_r;
7491 /* XXX: do it dynamically with CR4.DE bit */
7492 if (reg == 4 || reg == 5 || reg >= 8)
7495 gen_svm_check_intercept(s, pc_start, SVM_EXIT_WRITE_DR0 + reg);
7496 gen_op_mov_TN_reg(ot, 0, rm);
7497 gen_helper_movl_drN_T0(tcg_const_i32(reg), cpu_T[0]);
7498 gen_jmp_im(s->pc - s->cs_base);
7501 gen_svm_check_intercept(s, pc_start, SVM_EXIT_READ_DR0 + reg);
7502 tcg_gen_ld_tl(cpu_T[0], cpu_env, offsetof(CPUX86State,dr[reg]));
7503 gen_op_mov_reg_T0(ot, rm);
7507 case 0x106: /* clts */
7509 gen_exception(s, EXCP0D_GPF, pc_start - s->cs_base);
7511 gen_svm_check_intercept(s, pc_start, SVM_EXIT_WRITE_CR0);
7513 /* abort block because static cpu state changed */
7514 gen_jmp_im(s->pc - s->cs_base);
7518 /* MMX/3DNow!/SSE/SSE2/SSE3/SSSE3/SSE4 support */
7519 case 0x1c3: /* MOVNTI reg, mem */
7520 if (!(s->cpuid_features & CPUID_SSE2))
7522 ot = s->dflag == 2 ? OT_QUAD : OT_LONG;
7523 modrm = ldub_code(s->pc++);
7524 mod = (modrm >> 6) & 3;
7527 reg = ((modrm >> 3) & 7) | rex_r;
7528 /* generate a generic store */
7529 gen_ldst_modrm(s, modrm, ot, reg, 1);
7532 modrm = ldub_code(s->pc++);
7533 mod = (modrm >> 6) & 3;
7534 op = (modrm >> 3) & 7;
7536 case 0: /* fxsave */
7537 if (mod == 3 || !(s->cpuid_features & CPUID_FXSR) ||
7538 (s->prefix & PREFIX_LOCK))
7540 if ((s->flags & HF_EM_MASK) || (s->flags & HF_TS_MASK)) {
7541 gen_exception(s, EXCP07_PREX, pc_start - s->cs_base);
7544 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
7545 if (s->cc_op != CC_OP_DYNAMIC)
7546 gen_op_set_cc_op(s->cc_op);
7547 gen_jmp_im(pc_start - s->cs_base);
7548 gen_helper_fxsave(cpu_A0, tcg_const_i32((s->dflag == 2)));
7550 case 1: /* fxrstor */
7551 if (mod == 3 || !(s->cpuid_features & CPUID_FXSR) ||
7552 (s->prefix & PREFIX_LOCK))
7554 if ((s->flags & HF_EM_MASK) || (s->flags & HF_TS_MASK)) {
7555 gen_exception(s, EXCP07_PREX, pc_start - s->cs_base);
7558 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
7559 if (s->cc_op != CC_OP_DYNAMIC)
7560 gen_op_set_cc_op(s->cc_op);
7561 gen_jmp_im(pc_start - s->cs_base);
7562 gen_helper_fxrstor(cpu_A0, tcg_const_i32((s->dflag == 2)));
7564 case 2: /* ldmxcsr */
7565 case 3: /* stmxcsr */
7566 if (s->flags & HF_TS_MASK) {
7567 gen_exception(s, EXCP07_PREX, pc_start - s->cs_base);
7570 if ((s->flags & HF_EM_MASK) || !(s->flags & HF_OSFXSR_MASK) ||
7573 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
7575 gen_op_ld_T0_A0(OT_LONG + s->mem_index);
7576 tcg_gen_st32_tl(cpu_T[0], cpu_env, offsetof(CPUX86State, mxcsr));
7578 tcg_gen_ld32u_tl(cpu_T[0], cpu_env, offsetof(CPUX86State, mxcsr));
7579 gen_op_st_T0_A0(OT_LONG + s->mem_index);
7582 case 5: /* lfence */
7583 case 6: /* mfence */
7584 if ((modrm & 0xc7) != 0xc0 || !(s->cpuid_features & CPUID_SSE))
7587 case 7: /* sfence / clflush */
7588 if ((modrm & 0xc7) == 0xc0) {
7590 /* XXX: also check for cpuid_ext2_features & CPUID_EXT2_EMMX */
7591 if (!(s->cpuid_features & CPUID_SSE))
7595 if (!(s->cpuid_features & CPUID_CLFLUSH))
7597 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
7604 case 0x10d: /* 3DNow! prefetch(w) */
7605 modrm = ldub_code(s->pc++);
7606 mod = (modrm >> 6) & 3;
7609 gen_lea_modrm(s, modrm, ®_addr, &offset_addr);
7610 /* ignore for now */
7612 case 0x1aa: /* rsm */
7613 gen_svm_check_intercept(s, pc_start, SVM_EXIT_RSM);
7614 if (!(s->flags & HF_SMM_MASK))
7616 if (s->cc_op != CC_OP_DYNAMIC) {
7617 gen_op_set_cc_op(s->cc_op);
7618 s->cc_op = CC_OP_DYNAMIC;
7620 gen_jmp_im(s->pc - s->cs_base);
7624 case 0x1b8: /* SSE4.2 popcnt */
7625 if ((prefixes & (PREFIX_REPZ | PREFIX_LOCK | PREFIX_REPNZ)) !=
7628 if (!(s->cpuid_ext_features & CPUID_EXT_POPCNT))
7631 modrm = ldub_code(s->pc++);
7632 reg = ((modrm >> 3) & 7);
7634 if (s->prefix & PREFIX_DATA)
7636 else if (s->dflag != 2)
7641 gen_ldst_modrm(s, modrm, ot, OR_TMP0, 0);
7642 gen_helper_popcnt(cpu_T[0], cpu_T[0], tcg_const_i32(ot));
7643 gen_op_mov_reg_T0(ot, reg);
7645 s->cc_op = CC_OP_EFLAGS;
7647 case 0x10e ... 0x10f:
7648 /* 3DNow! instructions, ignore prefixes */
7649 s->prefix &= ~(PREFIX_REPZ | PREFIX_REPNZ | PREFIX_DATA);
7650 case 0x110 ... 0x117:
7651 case 0x128 ... 0x12f:
7652 case 0x138 ... 0x13a:
7653 case 0x150 ... 0x179:
7654 case 0x17c ... 0x17f:
7656 case 0x1c4 ... 0x1c6:
7657 case 0x1d0 ... 0x1fe:
7658 gen_sse(s, b, pc_start, rex_r);
7663 /* lock generation */
7664 if (s->prefix & PREFIX_LOCK)
7665 gen_helper_unlock();
7668 if (s->prefix & PREFIX_LOCK)
7669 gen_helper_unlock();
7670 /* XXX: ensure that no lock was generated */
7671 gen_exception(s, EXCP06_ILLOP, pc_start - s->cs_base);
7675 void optimize_flags_init(void)
7677 #if TCG_TARGET_REG_BITS == 32
7678 assert(sizeof(CCTable) == (1 << 3));
7680 assert(sizeof(CCTable) == (1 << 4));
7682 cpu_env = tcg_global_reg_new_ptr(TCG_AREG0, "env");
7683 cpu_cc_op = tcg_global_mem_new_i32(TCG_AREG0,
7684 offsetof(CPUState, cc_op), "cc_op");
7685 cpu_cc_src = tcg_global_mem_new(TCG_AREG0, offsetof(CPUState, cc_src),
7687 cpu_cc_dst = tcg_global_mem_new(TCG_AREG0, offsetof(CPUState, cc_dst),
7689 cpu_cc_tmp = tcg_global_mem_new(TCG_AREG0, offsetof(CPUState, cc_tmp),
7692 #ifdef TARGET_X86_64
7693 cpu_regs[R_EAX] = tcg_global_mem_new_i64(TCG_AREG0,
7694 offsetof(CPUState, regs[R_EAX]), "rax");
7695 cpu_regs[R_ECX] = tcg_global_mem_new_i64(TCG_AREG0,
7696 offsetof(CPUState, regs[R_ECX]), "rcx");
7697 cpu_regs[R_EDX] = tcg_global_mem_new_i64(TCG_AREG0,
7698 offsetof(CPUState, regs[R_EDX]), "rdx");
7699 cpu_regs[R_EBX] = tcg_global_mem_new_i64(TCG_AREG0,
7700 offsetof(CPUState, regs[R_EBX]), "rbx");
7701 cpu_regs[R_ESP] = tcg_global_mem_new_i64(TCG_AREG0,
7702 offsetof(CPUState, regs[R_ESP]), "rsp");
7703 cpu_regs[R_EBP] = tcg_global_mem_new_i64(TCG_AREG0,
7704 offsetof(CPUState, regs[R_EBP]), "rbp");
7705 cpu_regs[R_ESI] = tcg_global_mem_new_i64(TCG_AREG0,
7706 offsetof(CPUState, regs[R_ESI]), "rsi");
7707 cpu_regs[R_EDI] = tcg_global_mem_new_i64(TCG_AREG0,
7708 offsetof(CPUState, regs[R_EDI]), "rdi");
7709 cpu_regs[8] = tcg_global_mem_new_i64(TCG_AREG0,
7710 offsetof(CPUState, regs[8]), "r8");
7711 cpu_regs[9] = tcg_global_mem_new_i64(TCG_AREG0,
7712 offsetof(CPUState, regs[9]), "r9");
7713 cpu_regs[10] = tcg_global_mem_new_i64(TCG_AREG0,
7714 offsetof(CPUState, regs[10]), "r10");
7715 cpu_regs[11] = tcg_global_mem_new_i64(TCG_AREG0,
7716 offsetof(CPUState, regs[11]), "r11");
7717 cpu_regs[12] = tcg_global_mem_new_i64(TCG_AREG0,
7718 offsetof(CPUState, regs[12]), "r12");
7719 cpu_regs[13] = tcg_global_mem_new_i64(TCG_AREG0,
7720 offsetof(CPUState, regs[13]), "r13");
7721 cpu_regs[14] = tcg_global_mem_new_i64(TCG_AREG0,
7722 offsetof(CPUState, regs[14]), "r14");
7723 cpu_regs[15] = tcg_global_mem_new_i64(TCG_AREG0,
7724 offsetof(CPUState, regs[15]), "r15");
7726 cpu_regs[R_EAX] = tcg_global_mem_new_i32(TCG_AREG0,
7727 offsetof(CPUState, regs[R_EAX]), "eax");
7728 cpu_regs[R_ECX] = tcg_global_mem_new_i32(TCG_AREG0,
7729 offsetof(CPUState, regs[R_ECX]), "ecx");
7730 cpu_regs[R_EDX] = tcg_global_mem_new_i32(TCG_AREG0,
7731 offsetof(CPUState, regs[R_EDX]), "edx");
7732 cpu_regs[R_EBX] = tcg_global_mem_new_i32(TCG_AREG0,
7733 offsetof(CPUState, regs[R_EBX]), "ebx");
7734 cpu_regs[R_ESP] = tcg_global_mem_new_i32(TCG_AREG0,
7735 offsetof(CPUState, regs[R_ESP]), "esp");
7736 cpu_regs[R_EBP] = tcg_global_mem_new_i32(TCG_AREG0,
7737 offsetof(CPUState, regs[R_EBP]), "ebp");
7738 cpu_regs[R_ESI] = tcg_global_mem_new_i32(TCG_AREG0,
7739 offsetof(CPUState, regs[R_ESI]), "esi");
7740 cpu_regs[R_EDI] = tcg_global_mem_new_i32(TCG_AREG0,
7741 offsetof(CPUState, regs[R_EDI]), "edi");
7744 /* register helpers */
7745 #define GEN_HELPER 2
7749 /* generate intermediate code in gen_opc_buf and gen_opparam_buf for
7750 basic block 'tb'. If search_pc is TRUE, also generate PC
7751 information for each intermediate instruction. */
7752 static inline void gen_intermediate_code_internal(CPUState *env,
7753 TranslationBlock *tb,
7756 DisasContext dc1, *dc = &dc1;
7757 target_ulong pc_ptr;
7758 uint16_t *gen_opc_end;
7762 target_ulong pc_start;
7763 target_ulong cs_base;
7767 /* generate intermediate code */
7769 cs_base = tb->cs_base;
7772 dc->pe = (flags >> HF_PE_SHIFT) & 1;
7773 dc->code32 = (flags >> HF_CS32_SHIFT) & 1;
7774 dc->ss32 = (flags >> HF_SS32_SHIFT) & 1;
7775 dc->addseg = (flags >> HF_ADDSEG_SHIFT) & 1;
7777 dc->vm86 = (flags >> VM_SHIFT) & 1;
7778 dc->cpl = (flags >> HF_CPL_SHIFT) & 3;
7779 dc->iopl = (flags >> IOPL_SHIFT) & 3;
7780 dc->tf = (flags >> TF_SHIFT) & 1;
7781 dc->singlestep_enabled = env->singlestep_enabled;
7782 dc->cc_op = CC_OP_DYNAMIC;
7783 dc->cs_base = cs_base;
7785 dc->popl_esp_hack = 0;
7786 /* select memory access functions */
7788 if (flags & HF_SOFTMMU_MASK) {
7790 dc->mem_index = 2 * 4;
7792 dc->mem_index = 1 * 4;
7794 dc->cpuid_features = env->cpuid_features;
7795 dc->cpuid_ext_features = env->cpuid_ext_features;
7796 dc->cpuid_ext2_features = env->cpuid_ext2_features;
7797 dc->cpuid_ext3_features = env->cpuid_ext3_features;
7798 #ifdef TARGET_X86_64
7799 dc->lma = (flags >> HF_LMA_SHIFT) & 1;
7800 dc->code64 = (flags >> HF_CS64_SHIFT) & 1;
7803 dc->jmp_opt = !(dc->tf || env->singlestep_enabled ||
7804 (flags & HF_INHIBIT_IRQ_MASK)
7805 #ifndef CONFIG_SOFTMMU
7806 || (flags & HF_SOFTMMU_MASK)
7810 /* check addseg logic */
7811 if (!dc->addseg && (dc->vm86 || !dc->pe || !dc->code32))
7812 printf("ERROR addseg\n");
7815 cpu_T[0] = tcg_temp_new();
7816 cpu_T[1] = tcg_temp_new();
7817 cpu_A0 = tcg_temp_new();
7818 cpu_T3 = tcg_temp_new();
7820 cpu_tmp0 = tcg_temp_new();
7821 cpu_tmp1_i64 = tcg_temp_new_i64();
7822 cpu_tmp2_i32 = tcg_temp_new_i32();
7823 cpu_tmp3_i32 = tcg_temp_new_i32();
7824 cpu_tmp4 = tcg_temp_new();
7825 cpu_tmp5 = tcg_temp_new();
7826 cpu_ptr0 = tcg_temp_new_ptr();
7827 cpu_ptr1 = tcg_temp_new_ptr();
7829 gen_opc_end = gen_opc_buf + OPC_MAX_SIZE;
7831 dc->is_jmp = DISAS_NEXT;
7835 max_insns = tb->cflags & CF_COUNT_MASK;
7837 max_insns = CF_COUNT_MASK;
7841 if (unlikely(!QTAILQ_EMPTY(&env->breakpoints))) {
7842 QTAILQ_FOREACH(bp, &env->breakpoints, entry) {
7843 if (bp->pc == pc_ptr &&
7844 !((bp->flags & BP_CPU) && (tb->flags & HF_RF_MASK))) {
7845 gen_debug(dc, pc_ptr - dc->cs_base);
7851 j = gen_opc_ptr - gen_opc_buf;
7855 gen_opc_instr_start[lj++] = 0;
7857 gen_opc_pc[lj] = pc_ptr;
7858 gen_opc_cc_op[lj] = dc->cc_op;
7859 gen_opc_instr_start[lj] = 1;
7860 gen_opc_icount[lj] = num_insns;
7862 if (num_insns + 1 == max_insns && (tb->cflags & CF_LAST_IO))
7865 pc_ptr = disas_insn(dc, pc_ptr);
7867 /* stop translation if indicated */
7870 /* if single step mode, we generate only one instruction and
7871 generate an exception */
7872 /* if irq were inhibited with HF_INHIBIT_IRQ_MASK, we clear
7873 the flag and abort the translation to give the irqs a
7874 change to be happen */
7875 if (dc->tf || dc->singlestep_enabled ||
7876 (flags & HF_INHIBIT_IRQ_MASK)) {
7877 gen_jmp_im(pc_ptr - dc->cs_base);
7881 /* if too long translation, stop generation too */
7882 if (gen_opc_ptr >= gen_opc_end ||
7883 (pc_ptr - pc_start) >= (TARGET_PAGE_SIZE - 32) ||
7884 num_insns >= max_insns) {
7885 gen_jmp_im(pc_ptr - dc->cs_base);
7890 gen_jmp_im(pc_ptr - dc->cs_base);
7895 if (tb->cflags & CF_LAST_IO)
7897 gen_icount_end(tb, num_insns);
7898 *gen_opc_ptr = INDEX_op_end;
7899 /* we don't forget to fill the last values */
7901 j = gen_opc_ptr - gen_opc_buf;
7904 gen_opc_instr_start[lj++] = 0;
7908 if (qemu_loglevel_mask(CPU_LOG_TB_IN_ASM)) {
7910 qemu_log("----------------\n");
7911 qemu_log("IN: %s\n", lookup_symbol(pc_start));
7912 #ifdef TARGET_X86_64
7917 disas_flags = !dc->code32;
7918 log_target_disas(pc_start, pc_ptr - pc_start, disas_flags);
7924 tb->size = pc_ptr - pc_start;
7925 tb->icount = num_insns;
7929 void gen_intermediate_code(CPUState *env, TranslationBlock *tb)
7931 gen_intermediate_code_internal(env, tb, 0);
7934 void gen_intermediate_code_pc(CPUState *env, TranslationBlock *tb)
7936 gen_intermediate_code_internal(env, tb, 1);
7939 void gen_pc_load(CPUState *env, TranslationBlock *tb,
7940 unsigned long searched_pc, int pc_pos, void *puc)
7944 if (qemu_loglevel_mask(CPU_LOG_TB_OP)) {
7946 qemu_log("RESTORE:\n");
7947 for(i = 0;i <= pc_pos; i++) {
7948 if (gen_opc_instr_start[i]) {
7949 qemu_log("0x%04x: " TARGET_FMT_lx "\n", i, gen_opc_pc[i]);
7952 qemu_log("spc=0x%08lx pc_pos=0x%x eip=" TARGET_FMT_lx " cs_base=%x\n",
7953 searched_pc, pc_pos, gen_opc_pc[pc_pos] - tb->cs_base,
7954 (uint32_t)tb->cs_base);
7957 env->eip = gen_opc_pc[pc_pos] - tb->cs_base;
7958 cc_op = gen_opc_cc_op[pc_pos];
7959 if (cc_op != CC_OP_DYNAMIC)
projects / qemu.git / blob