xref: /openbmc/qemu/target/m68k/helper.c (revision 4e6b1384) 
1 /*
2  *  m68k op helpers
3  *
4  *  Copyright (c) 2006-2007 CodeSourcery
5  *  Written by Paul Brook
6  *
7  * This library is free software; you can redistribute it and/or
8  * modify it under the terms of the GNU Lesser General Public
9  * License as published by the Free Software Foundation; either
10  * version 2.1 of the License, or (at your option) any later version.
11  *
12  * This library is distributed in the hope that it will be useful,
13  * but WITHOUT ANY WARRANTY; without even the implied warranty of
14  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
15  * Lesser General Public License for more details.
16  *
17  * You should have received a copy of the GNU Lesser General Public
18  * License along with this library; if not, see <http://www.gnu.org/licenses/>.
19  */
20 
21 #include "qemu/osdep.h"
22 #include "cpu.h"
23 #include "exec/exec-all.h"
24 #include "exec/gdbstub.h"
25 #include "exec/helper-proto.h"
26 #include "fpu/softfloat.h"
27 #include "qemu/qemu-print.h"
28 
29 #define SIGNBIT (1u << 31)
30 
31 /* Sort alphabetically, except for "any". */
32 static gint m68k_cpu_list_compare(gconstpointer a, gconstpointer b)
33 {
34     ObjectClass *class_a = (ObjectClass *)a;
35     ObjectClass *class_b = (ObjectClass *)b;
36     const char *name_a, *name_b;
37 
38     name_a = object_class_get_name(class_a);
39     name_b = object_class_get_name(class_b);
40     if (strcmp(name_a, "any-" TYPE_M68K_CPU) == 0) {
41         return 1;
42     } else if (strcmp(name_b, "any-" TYPE_M68K_CPU) == 0) {
43         return -1;
44     } else {
45         return strcasecmp(name_a, name_b);
46     }
47 }
48 
49 static void m68k_cpu_list_entry(gpointer data, gpointer user_data)
50 {
51     ObjectClass *c = data;
52     const char *typename;
53     char *name;
54 
55     typename = object_class_get_name(c);
56     name = g_strndup(typename, strlen(typename) - strlen("-" TYPE_M68K_CPU));
57     qemu_printf("%s\n", name);
58     g_free(name);
59 }
60 
61 void m68k_cpu_list(void)
62 {
63     GSList *list;
64 
65     list = object_class_get_list(TYPE_M68K_CPU, false);
66     list = g_slist_sort(list, m68k_cpu_list_compare);
67     g_slist_foreach(list, m68k_cpu_list_entry, NULL);
68     g_slist_free(list);
69 }
70 
71 static int cf_fpu_gdb_get_reg(CPUM68KState *env, uint8_t *mem_buf, int n)
72 {
73     if (n < 8) {
74         float_status s;
75         stfq_p(mem_buf, floatx80_to_float64(env->fregs[n].d, &s));
76         return 8;
77     }
78     switch (n) {
79     case 8: /* fpcontrol */
80         stl_be_p(mem_buf, env->fpcr);
81         return 4;
82     case 9: /* fpstatus */
83         stl_be_p(mem_buf, env->fpsr);
84         return 4;
85     case 10: /* fpiar, not implemented */
86         memset(mem_buf, 0, 4);
87         return 4;
88     }
89     return 0;
90 }
91 
92 static int cf_fpu_gdb_set_reg(CPUM68KState *env, uint8_t *mem_buf, int n)
93 {
94     if (n < 8) {
95         float_status s;
96         env->fregs[n].d = float64_to_floatx80(ldfq_p(mem_buf), &s);
97         return 8;
98     }
99     switch (n) {
100     case 8: /* fpcontrol */
101         cpu_m68k_set_fpcr(env, ldl_p(mem_buf));
102         return 4;
103     case 9: /* fpstatus */
104         env->fpsr = ldl_p(mem_buf);
105         return 4;
106     case 10: /* fpiar, not implemented */
107         return 4;
108     }
109     return 0;
110 }
111 
112 static int m68k_fpu_gdb_get_reg(CPUM68KState *env, uint8_t *mem_buf, int n)
113 {
114     if (n < 8) {
115         stw_be_p(mem_buf, env->fregs[n].l.upper);
116         memset(mem_buf + 2, 0, 2);
117         stq_be_p(mem_buf + 4, env->fregs[n].l.lower);
118         return 12;
119     }
120     switch (n) {
121     case 8: /* fpcontrol */
122         stl_be_p(mem_buf, env->fpcr);
123         return 4;
124     case 9: /* fpstatus */
125         stl_be_p(mem_buf, env->fpsr);
126         return 4;
127     case 10: /* fpiar, not implemented */
128         memset(mem_buf, 0, 4);
129         return 4;
130     }
131     return 0;
132 }
133 
134 static int m68k_fpu_gdb_set_reg(CPUM68KState *env, uint8_t *mem_buf, int n)
135 {
136     if (n < 8) {
137         env->fregs[n].l.upper = lduw_be_p(mem_buf);
138         env->fregs[n].l.lower = ldq_be_p(mem_buf + 4);
139         return 12;
140     }
141     switch (n) {
142     case 8: /* fpcontrol */
143         cpu_m68k_set_fpcr(env, ldl_p(mem_buf));
144         return 4;
145     case 9: /* fpstatus */
146         env->fpsr = ldl_p(mem_buf);
147         return 4;
148     case 10: /* fpiar, not implemented */
149         return 4;
150     }
151     return 0;
152 }
153 
154 void m68k_cpu_init_gdb(M68kCPU *cpu)
155 {
156     CPUState *cs = CPU(cpu);
157     CPUM68KState *env = &cpu->env;
158 
159     if (m68k_feature(env, M68K_FEATURE_CF_FPU)) {
160         gdb_register_coprocessor(cs, cf_fpu_gdb_get_reg, cf_fpu_gdb_set_reg,
161                                  11, "cf-fp.xml", 18);
162     } else if (m68k_feature(env, M68K_FEATURE_FPU)) {
163         gdb_register_coprocessor(cs, m68k_fpu_gdb_get_reg,
164                                  m68k_fpu_gdb_set_reg, 11, "m68k-fp.xml", 18);
165     }
166     /* TODO: Add [E]MAC registers.  */
167 }
168 
169 void HELPER(cf_movec_to)(CPUM68KState *env, uint32_t reg, uint32_t val)
170 {
171     switch (reg) {
172     case M68K_CR_CACR:
173         env->cacr = val;
174         m68k_switch_sp(env);
175         break;
176     case M68K_CR_ACR0:
177     case M68K_CR_ACR1:
178     case M68K_CR_ACR2:
179     case M68K_CR_ACR3:
180         /* TODO: Implement Access Control Registers.  */
181         break;
182     case M68K_CR_VBR:
183         env->vbr = val;
184         break;
185     /* TODO: Implement control registers.  */
186     default:
187         cpu_abort(env_cpu(env),
188                   "Unimplemented control register write 0x%x = 0x%x\n",
189                   reg, val);
190     }
191 }
192 
193 void HELPER(m68k_movec_to)(CPUM68KState *env, uint32_t reg, uint32_t val)
194 {
195     switch (reg) {
196     /* MC680[1234]0 */
197     case M68K_CR_SFC:
198         env->sfc = val & 7;
199         return;
200     case M68K_CR_DFC:
201         env->dfc = val & 7;
202         return;
203     case M68K_CR_VBR:
204         env->vbr = val;
205         return;
206     /* MC680[2346]0 */
207     case M68K_CR_CACR:
208         if (m68k_feature(env, M68K_FEATURE_M68020)) {
209             env->cacr = val & 0x0000000f;
210         } else if (m68k_feature(env, M68K_FEATURE_M68030)) {
211             env->cacr = val & 0x00003f1f;
212         } else if (m68k_feature(env, M68K_FEATURE_M68040)) {
213             env->cacr = val & 0x80008000;
214         } else if (m68k_feature(env, M68K_FEATURE_M68060)) {
215             env->cacr = val & 0xf8e0e000;
216         }
217         m68k_switch_sp(env);
218         return;
219     /* MC680[34]0 */
220     case M68K_CR_TC:
221         env->mmu.tcr = val;
222         return;
223     case M68K_CR_MMUSR:
224         env->mmu.mmusr = val;
225         return;
226     case M68K_CR_SRP:
227         env->mmu.srp = val;
228         return;
229     case M68K_CR_URP:
230         env->mmu.urp = val;
231         return;
232     case M68K_CR_USP:
233         env->sp[M68K_USP] = val;
234         return;
235     case M68K_CR_MSP:
236         env->sp[M68K_SSP] = val;
237         return;
238     case M68K_CR_ISP:
239         env->sp[M68K_ISP] = val;
240         return;
241     /* MC68040/MC68LC040 */
242     case M68K_CR_ITT0:
243         env->mmu.ttr[M68K_ITTR0] = val;
244         return;
245     case M68K_CR_ITT1:
246          env->mmu.ttr[M68K_ITTR1] = val;
247         return;
248     case M68K_CR_DTT0:
249         env->mmu.ttr[M68K_DTTR0] = val;
250         return;
251     case M68K_CR_DTT1:
252         env->mmu.ttr[M68K_DTTR1] = val;
253         return;
254     }
255     cpu_abort(env_cpu(env),
256               "Unimplemented control register write 0x%x = 0x%x\n",
257               reg, val);
258 }
259 
260 uint32_t HELPER(m68k_movec_from)(CPUM68KState *env, uint32_t reg)
261 {
262     switch (reg) {
263     /* MC680[1234]0 */
264     case M68K_CR_SFC:
265         return env->sfc;
266     case M68K_CR_DFC:
267         return env->dfc;
268     case M68K_CR_VBR:
269         return env->vbr;
270     /* MC680[234]0 */
271     case M68K_CR_CACR:
272         return env->cacr;
273     /* MC680[34]0 */
274     case M68K_CR_TC:
275         return env->mmu.tcr;
276     case M68K_CR_MMUSR:
277         return env->mmu.mmusr;
278     case M68K_CR_SRP:
279         return env->mmu.srp;
280     case M68K_CR_USP:
281         return env->sp[M68K_USP];
282     case M68K_CR_MSP:
283         return env->sp[M68K_SSP];
284     case M68K_CR_ISP:
285         return env->sp[M68K_ISP];
286     /* MC68040/MC68LC040 */
287     case M68K_CR_URP:
288         return env->mmu.urp;
289     case M68K_CR_ITT0:
290         return env->mmu.ttr[M68K_ITTR0];
291     case M68K_CR_ITT1:
292         return env->mmu.ttr[M68K_ITTR1];
293     case M68K_CR_DTT0:
294         return env->mmu.ttr[M68K_DTTR0];
295     case M68K_CR_DTT1:
296         return env->mmu.ttr[M68K_DTTR1];
297     }
298     cpu_abort(env_cpu(env), "Unimplemented control register read 0x%x\n",
299               reg);
300 }
301 
302 void HELPER(set_macsr)(CPUM68KState *env, uint32_t val)
303 {
304     uint32_t acc;
305     int8_t exthigh;
306     uint8_t extlow;
307     uint64_t regval;
308     int i;
309     if ((env->macsr ^ val) & (MACSR_FI | MACSR_SU)) {
310         for (i = 0; i < 4; i++) {
311             regval = env->macc[i];
312             exthigh = regval >> 40;
313             if (env->macsr & MACSR_FI) {
314                 acc = regval >> 8;
315                 extlow = regval;
316             } else {
317                 acc = regval;
318                 extlow = regval >> 32;
319             }
320             if (env->macsr & MACSR_FI) {
321                 regval = (((uint64_t)acc) << 8) | extlow;
322                 regval |= ((int64_t)exthigh) << 40;
323             } else if (env->macsr & MACSR_SU) {
324                 regval = acc | (((int64_t)extlow) << 32);
325                 regval |= ((int64_t)exthigh) << 40;
326             } else {
327                 regval = acc | (((uint64_t)extlow) << 32);
328                 regval |= ((uint64_t)(uint8_t)exthigh) << 40;
329             }
330             env->macc[i] = regval;
331         }
332     }
333     env->macsr = val;
334 }
335 
336 void m68k_switch_sp(CPUM68KState *env)
337 {
338     int new_sp;
339 
340     env->sp[env->current_sp] = env->aregs[7];
341     if (m68k_feature(env, M68K_FEATURE_M68000)) {
342         if (env->sr & SR_S) {
343             if (env->sr & SR_M) {
344                 new_sp = M68K_SSP;
345             } else {
346                 new_sp = M68K_ISP;
347             }
348         } else {
349             new_sp = M68K_USP;
350         }
351     } else {
352         new_sp = (env->sr & SR_S && env->cacr & M68K_CACR_EUSP)
353                  ? M68K_SSP : M68K_USP;
354     }
355     env->aregs[7] = env->sp[new_sp];
356     env->current_sp = new_sp;
357 }
358 
359 #if !defined(CONFIG_USER_ONLY)
360 /* MMU: 68040 only */
361 
362 static void print_address_zone(uint32_t logical, uint32_t physical,
363                                uint32_t size, int attr)
364 {
365     qemu_printf("%08x - %08x -> %08x - %08x %c ",
366                 logical, logical + size - 1,
367                 physical, physical + size - 1,
368                 attr & 4 ? 'W' : '-');
369     size >>= 10;
370     if (size < 1024) {
371         qemu_printf("(%d KiB)\n", size);
372     } else {
373         size >>= 10;
374         if (size < 1024) {
375             qemu_printf("(%d MiB)\n", size);
376         } else {
377             size >>= 10;
378             qemu_printf("(%d GiB)\n", size);
379         }
380     }
381 }
382 
383 static void dump_address_map(CPUM68KState *env, uint32_t root_pointer)
384 {
385     int i, j, k;
386     int tic_size, tic_shift;
387     uint32_t tib_mask;
388     uint32_t tia, tib, tic;
389     uint32_t logical = 0xffffffff, physical = 0xffffffff;
390     uint32_t first_logical = 0xffffffff, first_physical = 0xffffffff;
391     uint32_t last_logical, last_physical;
392     int32_t size;
393     int last_attr = -1, attr = -1;
394     CPUState *cs = env_cpu(env);
395     MemTxResult txres;
396 
397     if (env->mmu.tcr & M68K_TCR_PAGE_8K) {
398         /* 8k page */
399         tic_size = 32;
400         tic_shift = 13;
401         tib_mask = M68K_8K_PAGE_MASK;
402     } else {
403         /* 4k page */
404         tic_size = 64;
405         tic_shift = 12;
406         tib_mask = M68K_4K_PAGE_MASK;
407     }
408     for (i = 0; i < M68K_ROOT_POINTER_ENTRIES; i++) {
409         tia = address_space_ldl(cs->as, M68K_POINTER_BASE(root_pointer) + i * 4,
410                                 MEMTXATTRS_UNSPECIFIED, &txres);
411         if (txres != MEMTX_OK || !M68K_UDT_VALID(tia)) {
412             continue;
413         }
414         for (j = 0; j < M68K_ROOT_POINTER_ENTRIES; j++) {
415             tib = address_space_ldl(cs->as, M68K_POINTER_BASE(tia) + j * 4,
416                                     MEMTXATTRS_UNSPECIFIED, &txres);
417             if (txres != MEMTX_OK || !M68K_UDT_VALID(tib)) {
418                 continue;
419             }
420             for (k = 0; k < tic_size; k++) {
421                 tic = address_space_ldl(cs->as, (tib & tib_mask) + k * 4,
422                                         MEMTXATTRS_UNSPECIFIED, &txres);
423                 if (txres != MEMTX_OK || !M68K_PDT_VALID(tic)) {
424                     continue;
425                 }
426                 if (M68K_PDT_INDIRECT(tic)) {
427                     tic = address_space_ldl(cs->as, M68K_INDIRECT_POINTER(tic),
428                                             MEMTXATTRS_UNSPECIFIED, &txres);
429                     if (txres != MEMTX_OK) {
430                         continue;
431                     }
432                 }
433 
434                 last_logical = logical;
435                 logical = (i << M68K_TTS_ROOT_SHIFT) |
436                           (j << M68K_TTS_POINTER_SHIFT) |
437                           (k << tic_shift);
438 
439                 last_physical = physical;
440                 physical = tic & ~((1 << tic_shift) - 1);
441 
442                 last_attr = attr;
443                 attr = tic & ((1 << tic_shift) - 1);
444 
445                 if ((logical != (last_logical + (1 << tic_shift))) ||
446                     (physical != (last_physical + (1 << tic_shift))) ||
447                     (attr & 4) != (last_attr & 4)) {
448 
449                     if (first_logical != 0xffffffff) {
450                         size = last_logical + (1 << tic_shift) -
451                                first_logical;
452                         print_address_zone(first_logical,
453                                            first_physical, size, last_attr);
454                     }
455                     first_logical = logical;
456                     first_physical = physical;
457                 }
458             }
459         }
460     }
461     if (first_logical != logical || (attr & 4) != (last_attr & 4)) {
462         size = logical + (1 << tic_shift) - first_logical;
463         print_address_zone(first_logical, first_physical, size, last_attr);
464     }
465 }
466 
467 #define DUMP_CACHEFLAGS(a) \
468     switch (a & M68K_DESC_CACHEMODE) { \
469     case M68K_DESC_CM_WRTHRU: /* cachable, write-through */ \
470         qemu_printf("T"); \
471         break; \
472     case M68K_DESC_CM_COPYBK: /* cachable, copyback */ \
473         qemu_printf("C"); \
474         break; \
475     case M68K_DESC_CM_SERIAL: /* noncachable, serialized */ \
476         qemu_printf("S"); \
477         break; \
478     case M68K_DESC_CM_NCACHE: /* noncachable */ \
479         qemu_printf("N"); \
480         break; \
481     }
482 
483 static void dump_ttr(uint32_t ttr)
484 {
485     if ((ttr & M68K_TTR_ENABLED) == 0) {
486         qemu_printf("disabled\n");
487         return;
488     }
489     qemu_printf("Base: 0x%08x Mask: 0x%08x Control: ",
490                 ttr & M68K_TTR_ADDR_BASE,
491                 (ttr & M68K_TTR_ADDR_MASK) << M68K_TTR_ADDR_MASK_SHIFT);
492     switch (ttr & M68K_TTR_SFIELD) {
493     case M68K_TTR_SFIELD_USER:
494         qemu_printf("U");
495         break;
496     case M68K_TTR_SFIELD_SUPER:
497         qemu_printf("S");
498         break;
499     default:
500         qemu_printf("*");
501         break;
502     }
503     DUMP_CACHEFLAGS(ttr);
504     if (ttr & M68K_DESC_WRITEPROT) {
505         qemu_printf("R");
506     } else {
507         qemu_printf("W");
508     }
509     qemu_printf(" U: %d\n", (ttr & M68K_DESC_USERATTR) >>
510                                M68K_DESC_USERATTR_SHIFT);
511 }
512 
513 void dump_mmu(CPUM68KState *env)
514 {
515     if ((env->mmu.tcr & M68K_TCR_ENABLED) == 0) {
516         qemu_printf("Translation disabled\n");
517         return;
518     }
519     qemu_printf("Page Size: ");
520     if (env->mmu.tcr & M68K_TCR_PAGE_8K) {
521         qemu_printf("8kB\n");
522     } else {
523         qemu_printf("4kB\n");
524     }
525 
526     qemu_printf("MMUSR: ");
527     if (env->mmu.mmusr & M68K_MMU_B_040) {
528         qemu_printf("BUS ERROR\n");
529     } else {
530         qemu_printf("Phy=%08x Flags: ", env->mmu.mmusr & 0xfffff000);
531         /* flags found on the page descriptor */
532         if (env->mmu.mmusr & M68K_MMU_G_040) {
533             qemu_printf("G"); /* Global */
534         } else {
535             qemu_printf(".");
536         }
537         if (env->mmu.mmusr & M68K_MMU_S_040) {
538             qemu_printf("S"); /* Supervisor */
539         } else {
540             qemu_printf(".");
541         }
542         if (env->mmu.mmusr & M68K_MMU_M_040) {
543             qemu_printf("M"); /* Modified */
544         } else {
545             qemu_printf(".");
546         }
547         if (env->mmu.mmusr & M68K_MMU_WP_040) {
548             qemu_printf("W"); /* Write protect */
549         } else {
550             qemu_printf(".");
551         }
552         if (env->mmu.mmusr & M68K_MMU_T_040) {
553             qemu_printf("T"); /* Transparent */
554         } else {
555             qemu_printf(".");
556         }
557         if (env->mmu.mmusr & M68K_MMU_R_040) {
558             qemu_printf("R"); /* Resident */
559         } else {
560             qemu_printf(".");
561         }
562         qemu_printf(" Cache: ");
563         DUMP_CACHEFLAGS(env->mmu.mmusr);
564         qemu_printf(" U: %d\n", (env->mmu.mmusr >> 8) & 3);
565         qemu_printf("\n");
566     }
567 
568     qemu_printf("ITTR0: ");
569     dump_ttr(env->mmu.ttr[M68K_ITTR0]);
570     qemu_printf("ITTR1: ");
571     dump_ttr(env->mmu.ttr[M68K_ITTR1]);
572     qemu_printf("DTTR0: ");
573     dump_ttr(env->mmu.ttr[M68K_DTTR0]);
574     qemu_printf("DTTR1: ");
575     dump_ttr(env->mmu.ttr[M68K_DTTR1]);
576 
577     qemu_printf("SRP: 0x%08x\n", env->mmu.srp);
578     dump_address_map(env, env->mmu.srp);
579 
580     qemu_printf("URP: 0x%08x\n", env->mmu.urp);
581     dump_address_map(env, env->mmu.urp);
582 }
583 
584 static int check_TTR(uint32_t ttr, int *prot, target_ulong addr,
585                      int access_type)
586 {
587     uint32_t base, mask;
588 
589     /* check if transparent translation is enabled */
590     if ((ttr & M68K_TTR_ENABLED) == 0) {
591         return 0;
592     }
593 
594     /* check mode access */
595     switch (ttr & M68K_TTR_SFIELD) {
596     case M68K_TTR_SFIELD_USER:
597         /* match only if user */
598         if ((access_type & ACCESS_SUPER) != 0) {
599             return 0;
600         }
601         break;
602     case M68K_TTR_SFIELD_SUPER:
603         /* match only if supervisor */
604         if ((access_type & ACCESS_SUPER) == 0) {
605             return 0;
606         }
607         break;
608     default:
609         /* all other values disable mode matching (FC2) */
610         break;
611     }
612 
613     /* check address matching */
614 
615     base = ttr & M68K_TTR_ADDR_BASE;
616     mask = (ttr & M68K_TTR_ADDR_MASK) ^ M68K_TTR_ADDR_MASK;
617     mask <<= M68K_TTR_ADDR_MASK_SHIFT;
618 
619     if ((addr & mask) != (base & mask)) {
620         return 0;
621     }
622 
623     *prot = PAGE_READ | PAGE_EXEC;
624     if ((ttr & M68K_DESC_WRITEPROT) == 0) {
625         *prot |= PAGE_WRITE;
626     }
627 
628     return 1;
629 }
630 
631 static int get_physical_address(CPUM68KState *env, hwaddr *physical,
632                                 int *prot, target_ulong address,
633                                 int access_type, target_ulong *page_size)
634 {
635     CPUState *cs = env_cpu(env);
636     uint32_t entry;
637     uint32_t next;
638     target_ulong page_mask;
639     bool debug = access_type & ACCESS_DEBUG;
640     int page_bits;
641     int i;
642     MemTxResult txres;
643 
644     /* Transparent Translation (physical = logical) */
645     for (i = 0; i < M68K_MAX_TTR; i++) {
646         if (check_TTR(env->mmu.TTR(access_type, i),
647                       prot, address, access_type)) {
648             if (access_type & ACCESS_PTEST) {
649                 /* Transparent Translation Register bit */
650                 env->mmu.mmusr = M68K_MMU_T_040 | M68K_MMU_R_040;
651             }
652             *physical = address & TARGET_PAGE_MASK;
653             *page_size = TARGET_PAGE_SIZE;
654             return 0;
655         }
656     }
657 
658     /* Page Table Root Pointer */
659     *prot = PAGE_READ | PAGE_WRITE;
660     if (access_type & ACCESS_CODE) {
661         *prot |= PAGE_EXEC;
662     }
663     if (access_type & ACCESS_SUPER) {
664         next = env->mmu.srp;
665     } else {
666         next = env->mmu.urp;
667     }
668 
669     /* Root Index */
670     entry = M68K_POINTER_BASE(next) | M68K_ROOT_INDEX(address);
671 
672     next = address_space_ldl(cs->as, entry, MEMTXATTRS_UNSPECIFIED, &txres);
673     if (txres != MEMTX_OK) {
674         goto txfail;
675     }
676     if (!M68K_UDT_VALID(next)) {
677         return -1;
678     }
679     if (!(next & M68K_DESC_USED) && !debug) {
680         address_space_stl(cs->as, entry, next | M68K_DESC_USED,
681                           MEMTXATTRS_UNSPECIFIED, &txres);
682         if (txres != MEMTX_OK) {
683             goto txfail;
684         }
685     }
686     if (next & M68K_DESC_WRITEPROT) {
687         if (access_type & ACCESS_PTEST) {
688             env->mmu.mmusr |= M68K_MMU_WP_040;
689         }
690         *prot &= ~PAGE_WRITE;
691         if (access_type & ACCESS_STORE) {
692             return -1;
693         }
694     }
695 
696     /* Pointer Index */
697     entry = M68K_POINTER_BASE(next) | M68K_POINTER_INDEX(address);
698 
699     next = address_space_ldl(cs->as, entry, MEMTXATTRS_UNSPECIFIED, &txres);
700     if (txres != MEMTX_OK) {
701         goto txfail;
702     }
703     if (!M68K_UDT_VALID(next)) {
704         return -1;
705     }
706     if (!(next & M68K_DESC_USED) && !debug) {
707         address_space_stl(cs->as, entry, next | M68K_DESC_USED,
708                           MEMTXATTRS_UNSPECIFIED, &txres);
709         if (txres != MEMTX_OK) {
710             goto txfail;
711         }
712     }
713     if (next & M68K_DESC_WRITEPROT) {
714         if (access_type & ACCESS_PTEST) {
715             env->mmu.mmusr |= M68K_MMU_WP_040;
716         }
717         *prot &= ~PAGE_WRITE;
718         if (access_type & ACCESS_STORE) {
719             return -1;
720         }
721     }
722 
723     /* Page Index */
724     if (env->mmu.tcr & M68K_TCR_PAGE_8K) {
725         entry = M68K_8K_PAGE_BASE(next) | M68K_8K_PAGE_INDEX(address);
726     } else {
727         entry = M68K_4K_PAGE_BASE(next) | M68K_4K_PAGE_INDEX(address);
728     }
729 
730     next = address_space_ldl(cs->as, entry, MEMTXATTRS_UNSPECIFIED, &txres);
731     if (txres != MEMTX_OK) {
732         goto txfail;
733     }
734 
735     if (!M68K_PDT_VALID(next)) {
736         return -1;
737     }
738     if (M68K_PDT_INDIRECT(next)) {
739         next = address_space_ldl(cs->as, M68K_INDIRECT_POINTER(next),
740                                  MEMTXATTRS_UNSPECIFIED, &txres);
741         if (txres != MEMTX_OK) {
742             goto txfail;
743         }
744     }
745     if (access_type & ACCESS_STORE) {
746         if (next & M68K_DESC_WRITEPROT) {
747             if (!(next & M68K_DESC_USED) && !debug) {
748                 address_space_stl(cs->as, entry, next | M68K_DESC_USED,
749                                   MEMTXATTRS_UNSPECIFIED, &txres);
750                 if (txres != MEMTX_OK) {
751                     goto txfail;
752                 }
753             }
754         } else if ((next & (M68K_DESC_MODIFIED | M68K_DESC_USED)) !=
755                            (M68K_DESC_MODIFIED | M68K_DESC_USED) && !debug) {
756             address_space_stl(cs->as, entry,
757                               next | (M68K_DESC_MODIFIED | M68K_DESC_USED),
758                               MEMTXATTRS_UNSPECIFIED, &txres);
759             if (txres != MEMTX_OK) {
760                 goto txfail;
761             }
762         }
763     } else {
764         if (!(next & M68K_DESC_USED) && !debug) {
765             address_space_stl(cs->as, entry, next | M68K_DESC_USED,
766                               MEMTXATTRS_UNSPECIFIED, &txres);
767             if (txres != MEMTX_OK) {
768                 goto txfail;
769             }
770         }
771     }
772 
773     if (env->mmu.tcr & M68K_TCR_PAGE_8K) {
774         page_bits = 13;
775     } else {
776         page_bits = 12;
777     }
778     *page_size = 1 << page_bits;
779     page_mask = ~(*page_size - 1);
780     *physical = next & page_mask;
781 
782     if (access_type & ACCESS_PTEST) {
783         env->mmu.mmusr |= next & M68K_MMU_SR_MASK_040;
784         env->mmu.mmusr |= *physical & 0xfffff000;
785         env->mmu.mmusr |= M68K_MMU_R_040;
786     }
787 
788     if (next & M68K_DESC_WRITEPROT) {
789         *prot &= ~PAGE_WRITE;
790         if (access_type & ACCESS_STORE) {
791             return -1;
792         }
793     }
794     if (next & M68K_DESC_SUPERONLY) {
795         if ((access_type & ACCESS_SUPER) == 0) {
796             return -1;
797         }
798     }
799 
800     return 0;
801 
802 txfail:
803     /*
804      * A page table load/store failed. TODO: we should really raise a
805      * suitable guest fault here if this is not a debug access.
806      * For now just return that the translation failed.
807      */
808     return -1;
809 }
810 
811 hwaddr m68k_cpu_get_phys_page_debug(CPUState *cs, vaddr addr)
812 {
813     M68kCPU *cpu = M68K_CPU(cs);
814     CPUM68KState *env = &cpu->env;
815     hwaddr phys_addr;
816     int prot;
817     int access_type;
818     target_ulong page_size;
819 
820     if ((env->mmu.tcr & M68K_TCR_ENABLED) == 0) {
821         /* MMU disabled */
822         return addr;
823     }
824 
825     access_type = ACCESS_DATA | ACCESS_DEBUG;
826     if (env->sr & SR_S) {
827         access_type |= ACCESS_SUPER;
828     }
829     if (get_physical_address(env, &phys_addr, &prot,
830                              addr, access_type, &page_size) != 0) {
831         return -1;
832     }
833     return phys_addr;
834 }
835 
836 /*
837  * Notify CPU of a pending interrupt.  Prioritization and vectoring should
838  * be handled by the interrupt controller.  Real hardware only requests
839  * the vector when the interrupt is acknowledged by the CPU.  For
840  * simplicity we calculate it when the interrupt is signalled.
841  */
842 void m68k_set_irq_level(M68kCPU *cpu, int level, uint8_t vector)
843 {
844     CPUState *cs = CPU(cpu);
845     CPUM68KState *env = &cpu->env;
846 
847     env->pending_level = level;
848     env->pending_vector = vector;
849     if (level) {
850         cpu_interrupt(cs, CPU_INTERRUPT_HARD);
851     } else {
852         cpu_reset_interrupt(cs, CPU_INTERRUPT_HARD);
853     }
854 }
855 
856 #endif
857 
858 bool m68k_cpu_tlb_fill(CPUState *cs, vaddr address, int size,
859                        MMUAccessType qemu_access_type, int mmu_idx,
860                        bool probe, uintptr_t retaddr)
861 {
862     M68kCPU *cpu = M68K_CPU(cs);
863     CPUM68KState *env = &cpu->env;
864 
865 #ifndef CONFIG_USER_ONLY
866     hwaddr physical;
867     int prot;
868     int access_type;
869     int ret;
870     target_ulong page_size;
871 
872     if ((env->mmu.tcr & M68K_TCR_ENABLED) == 0) {
873         /* MMU disabled */
874         tlb_set_page(cs, address & TARGET_PAGE_MASK,
875                      address & TARGET_PAGE_MASK,
876                      PAGE_READ | PAGE_WRITE | PAGE_EXEC,
877                      mmu_idx, TARGET_PAGE_SIZE);
878         return true;
879     }
880 
881     if (qemu_access_type == MMU_INST_FETCH) {
882         access_type = ACCESS_CODE;
883     } else {
884         access_type = ACCESS_DATA;
885         if (qemu_access_type == MMU_DATA_STORE) {
886             access_type |= ACCESS_STORE;
887         }
888     }
889     if (mmu_idx != MMU_USER_IDX) {
890         access_type |= ACCESS_SUPER;
891     }
892 
893     ret = get_physical_address(&cpu->env, &physical, &prot,
894                                address, access_type, &page_size);
895     if (likely(ret == 0)) {
896         address &= TARGET_PAGE_MASK;
897         physical += address & (page_size - 1);
898         tlb_set_page(cs, address, physical,
899                      prot, mmu_idx, TARGET_PAGE_SIZE);
900         return true;
901     }
902 
903     if (probe) {
904         return false;
905     }
906 
907     /* page fault */
908     env->mmu.ssw = M68K_ATC_040;
909     switch (size) {
910     case 1:
911         env->mmu.ssw |= M68K_BA_SIZE_BYTE;
912         break;
913     case 2:
914         env->mmu.ssw |= M68K_BA_SIZE_WORD;
915         break;
916     case 4:
917         env->mmu.ssw |= M68K_BA_SIZE_LONG;
918         break;
919     }
920     if (access_type & ACCESS_SUPER) {
921         env->mmu.ssw |= M68K_TM_040_SUPER;
922     }
923     if (access_type & ACCESS_CODE) {
924         env->mmu.ssw |= M68K_TM_040_CODE;
925     } else {
926         env->mmu.ssw |= M68K_TM_040_DATA;
927     }
928     if (!(access_type & ACCESS_STORE)) {
929         env->mmu.ssw |= M68K_RW_040;
930     }
931 #endif
932 
933     cs->exception_index = EXCP_ACCESS;
934     env->mmu.ar = address;
935     cpu_loop_exit_restore(cs, retaddr);
936 }
937 
938 uint32_t HELPER(bitrev)(uint32_t x)
939 {
940     x = ((x >> 1) & 0x55555555u) | ((x << 1) & 0xaaaaaaaau);
941     x = ((x >> 2) & 0x33333333u) | ((x << 2) & 0xccccccccu);
942     x = ((x >> 4) & 0x0f0f0f0fu) | ((x << 4) & 0xf0f0f0f0u);
943     return bswap32(x);
944 }
945 
946 uint32_t HELPER(ff1)(uint32_t x)
947 {
948     int n;
949     for (n = 32; x; n--)
950         x >>= 1;
951     return n;
952 }
953 
954 uint32_t HELPER(sats)(uint32_t val, uint32_t v)
955 {
956     /* The result has the opposite sign to the original value.  */
957     if ((int32_t)v < 0) {
958         val = (((int32_t)val) >> 31) ^ SIGNBIT;
959     }
960     return val;
961 }
962 
963 void cpu_m68k_set_sr(CPUM68KState *env, uint32_t sr)
964 {
965     env->sr = sr & 0xffe0;
966     cpu_m68k_set_ccr(env, sr);
967     m68k_switch_sp(env);
968 }
969 
970 void HELPER(set_sr)(CPUM68KState *env, uint32_t val)
971 {
972     cpu_m68k_set_sr(env, val);
973 }
974 
975 /* MAC unit.  */
976 /*
977  * FIXME: The MAC unit implementation is a bit of a mess.  Some helpers
978  * take values,  others take register numbers and manipulate the contents
979  * in-place.
980  */
981 void HELPER(mac_move)(CPUM68KState *env, uint32_t dest, uint32_t src)
982 {
983     uint32_t mask;
984     env->macc[dest] = env->macc[src];
985     mask = MACSR_PAV0 << dest;
986     if (env->macsr & (MACSR_PAV0 << src))
987         env->macsr |= mask;
988     else
989         env->macsr &= ~mask;
990 }
991 
992 uint64_t HELPER(macmuls)(CPUM68KState *env, uint32_t op1, uint32_t op2)
993 {
994     int64_t product;
995     int64_t res;
996 
997     product = (uint64_t)op1 * op2;
998     res = (product << 24) >> 24;
999     if (res != product) {
1000         env->macsr |= MACSR_V;
1001         if (env->macsr & MACSR_OMC) {
1002             /* Make sure the accumulate operation overflows.  */
1003             if (product < 0)
1004                 res = ~(1ll << 50);
1005             else
1006                 res = 1ll << 50;
1007         }
1008     }
1009     return res;
1010 }
1011 
1012 uint64_t HELPER(macmulu)(CPUM68KState *env, uint32_t op1, uint32_t op2)
1013 {
1014     uint64_t product;
1015 
1016     product = (uint64_t)op1 * op2;
1017     if (product & (0xffffffull << 40)) {
1018         env->macsr |= MACSR_V;
1019         if (env->macsr & MACSR_OMC) {
1020             /* Make sure the accumulate operation overflows.  */
1021             product = 1ll << 50;
1022         } else {
1023             product &= ((1ull << 40) - 1);
1024         }
1025     }
1026     return product;
1027 }
1028 
1029 uint64_t HELPER(macmulf)(CPUM68KState *env, uint32_t op1, uint32_t op2)
1030 {
1031     uint64_t product;
1032     uint32_t remainder;
1033 
1034     product = (uint64_t)op1 * op2;
1035     if (env->macsr & MACSR_RT) {
1036         remainder = product & 0xffffff;
1037         product >>= 24;
1038         if (remainder > 0x800000)
1039             product++;
1040         else if (remainder == 0x800000)
1041             product += (product & 1);
1042     } else {
1043         product >>= 24;
1044     }
1045     return product;
1046 }
1047 
1048 void HELPER(macsats)(CPUM68KState *env, uint32_t acc)
1049 {
1050     int64_t tmp;
1051     int64_t result;
1052     tmp = env->macc[acc];
1053     result = ((tmp << 16) >> 16);
1054     if (result != tmp) {
1055         env->macsr |= MACSR_V;
1056     }
1057     if (env->macsr & MACSR_V) {
1058         env->macsr |= MACSR_PAV0 << acc;
1059         if (env->macsr & MACSR_OMC) {
1060             /*
1061              * The result is saturated to 32 bits, despite overflow occurring
1062              * at 48 bits.  Seems weird, but that's what the hardware docs
1063              * say.
1064              */
1065             result = (result >> 63) ^ 0x7fffffff;
1066         }
1067     }
1068     env->macc[acc] = result;
1069 }
1070 
1071 void HELPER(macsatu)(CPUM68KState *env, uint32_t acc)
1072 {
1073     uint64_t val;
1074 
1075     val = env->macc[acc];
1076     if (val & (0xffffull << 48)) {
1077         env->macsr |= MACSR_V;
1078     }
1079     if (env->macsr & MACSR_V) {
1080         env->macsr |= MACSR_PAV0 << acc;
1081         if (env->macsr & MACSR_OMC) {
1082             if (val > (1ull << 53))
1083                 val = 0;
1084             else
1085                 val = (1ull << 48) - 1;
1086         } else {
1087             val &= ((1ull << 48) - 1);
1088         }
1089     }
1090     env->macc[acc] = val;
1091 }
1092 
1093 void HELPER(macsatf)(CPUM68KState *env, uint32_t acc)
1094 {
1095     int64_t sum;
1096     int64_t result;
1097 
1098     sum = env->macc[acc];
1099     result = (sum << 16) >> 16;
1100     if (result != sum) {
1101         env->macsr |= MACSR_V;
1102     }
1103     if (env->macsr & MACSR_V) {
1104         env->macsr |= MACSR_PAV0 << acc;
1105         if (env->macsr & MACSR_OMC) {
1106             result = (result >> 63) ^ 0x7fffffffffffll;
1107         }
1108     }
1109     env->macc[acc] = result;
1110 }
1111 
1112 void HELPER(mac_set_flags)(CPUM68KState *env, uint32_t acc)
1113 {
1114     uint64_t val;
1115     val = env->macc[acc];
1116     if (val == 0) {
1117         env->macsr |= MACSR_Z;
1118     } else if (val & (1ull << 47)) {
1119         env->macsr |= MACSR_N;
1120     }
1121     if (env->macsr & (MACSR_PAV0 << acc)) {
1122         env->macsr |= MACSR_V;
1123     }
1124     if (env->macsr & MACSR_FI) {
1125         val = ((int64_t)val) >> 40;
1126         if (val != 0 && val != -1)
1127             env->macsr |= MACSR_EV;
1128     } else if (env->macsr & MACSR_SU) {
1129         val = ((int64_t)val) >> 32;
1130         if (val != 0 && val != -1)
1131             env->macsr |= MACSR_EV;
1132     } else {
1133         if ((val >> 32) != 0)
1134             env->macsr |= MACSR_EV;
1135     }
1136 }
1137 
1138 #define EXTSIGN(val, index) (     \
1139     (index == 0) ? (int8_t)(val) : ((index == 1) ? (int16_t)(val) : (val)) \
1140 )
1141 
1142 #define COMPUTE_CCR(op, x, n, z, v, c) {                                   \
1143     switch (op) {                                                          \
1144     case CC_OP_FLAGS:                                                      \
1145         /* Everything in place.  */                                        \
1146         break;                                                             \
1147     case CC_OP_ADDB:                                                       \
1148     case CC_OP_ADDW:                                                       \
1149     case CC_OP_ADDL:                                                       \
1150         res = n;                                                           \
1151         src2 = v;                                                          \
1152         src1 = EXTSIGN(res - src2, op - CC_OP_ADDB);                       \
1153         c = x;                                                             \
1154         z = n;                                                             \
1155         v = (res ^ src1) & ~(src1 ^ src2);                                 \
1156         break;                                                             \
1157     case CC_OP_SUBB:                                                       \
1158     case CC_OP_SUBW:                                                       \
1159     case CC_OP_SUBL:                                                       \
1160         res = n;                                                           \
1161         src2 = v;                                                          \
1162         src1 = EXTSIGN(res + src2, op - CC_OP_SUBB);                       \
1163         c = x;                                                             \
1164         z = n;                                                             \
1165         v = (res ^ src1) & (src1 ^ src2);                                  \
1166         break;                                                             \
1167     case CC_OP_CMPB:                                                       \
1168     case CC_OP_CMPW:                                                       \
1169     case CC_OP_CMPL:                                                       \
1170         src1 = n;                                                          \
1171         src2 = v;                                                          \
1172         res = EXTSIGN(src1 - src2, op - CC_OP_CMPB);                       \
1173         n = res;                                                           \
1174         z = res;                                                           \
1175         c = src1 < src2;                                                   \
1176         v = (res ^ src1) & (src1 ^ src2);                                  \
1177         break;                                                             \
1178     case CC_OP_LOGIC:                                                      \
1179         c = v = 0;                                                         \
1180         z = n;                                                             \
1181         break;                                                             \
1182     default:                                                               \
1183         cpu_abort(env_cpu(env), "Bad CC_OP %d", op);                       \
1184     }                                                                      \
1185 } while (0)
1186 
1187 uint32_t cpu_m68k_get_ccr(CPUM68KState *env)
1188 {
1189     uint32_t x, c, n, z, v;
1190     uint32_t res, src1, src2;
1191 
1192     x = env->cc_x;
1193     n = env->cc_n;
1194     z = env->cc_z;
1195     v = env->cc_v;
1196     c = env->cc_c;
1197 
1198     COMPUTE_CCR(env->cc_op, x, n, z, v, c);
1199 
1200     n = n >> 31;
1201     z = (z == 0);
1202     v = v >> 31;
1203 
1204     return x * CCF_X + n * CCF_N + z * CCF_Z + v * CCF_V + c * CCF_C;
1205 }
1206 
1207 uint32_t HELPER(get_ccr)(CPUM68KState *env)
1208 {
1209     return cpu_m68k_get_ccr(env);
1210 }
1211 
1212 void cpu_m68k_set_ccr(CPUM68KState *env, uint32_t ccr)
1213 {
1214     env->cc_x = (ccr & CCF_X ? 1 : 0);
1215     env->cc_n = (ccr & CCF_N ? -1 : 0);
1216     env->cc_z = (ccr & CCF_Z ? 0 : 1);
1217     env->cc_v = (ccr & CCF_V ? -1 : 0);
1218     env->cc_c = (ccr & CCF_C ? 1 : 0);
1219     env->cc_op = CC_OP_FLAGS;
1220 }
1221 
1222 void HELPER(set_ccr)(CPUM68KState *env, uint32_t ccr)
1223 {
1224     cpu_m68k_set_ccr(env, ccr);
1225 }
1226 
1227 void HELPER(flush_flags)(CPUM68KState *env, uint32_t cc_op)
1228 {
1229     uint32_t res, src1, src2;
1230 
1231     COMPUTE_CCR(cc_op, env->cc_x, env->cc_n, env->cc_z, env->cc_v, env->cc_c);
1232     env->cc_op = CC_OP_FLAGS;
1233 }
1234 
1235 uint32_t HELPER(get_macf)(CPUM68KState *env, uint64_t val)
1236 {
1237     int rem;
1238     uint32_t result;
1239 
1240     if (env->macsr & MACSR_SU) {
1241         /* 16-bit rounding.  */
1242         rem = val & 0xffffff;
1243         val = (val >> 24) & 0xffffu;
1244         if (rem > 0x800000)
1245             val++;
1246         else if (rem == 0x800000)
1247             val += (val & 1);
1248     } else if (env->macsr & MACSR_RT) {
1249         /* 32-bit rounding.  */
1250         rem = val & 0xff;
1251         val >>= 8;
1252         if (rem > 0x80)
1253             val++;
1254         else if (rem == 0x80)
1255             val += (val & 1);
1256     } else {
1257         /* No rounding.  */
1258         val >>= 8;
1259     }
1260     if (env->macsr & MACSR_OMC) {
1261         /* Saturate.  */
1262         if (env->macsr & MACSR_SU) {
1263             if (val != (uint16_t) val) {
1264                 result = ((val >> 63) ^ 0x7fff) & 0xffff;
1265             } else {
1266                 result = val & 0xffff;
1267             }
1268         } else {
1269             if (val != (uint32_t)val) {
1270                 result = ((uint32_t)(val >> 63) & 0x7fffffff);
1271             } else {
1272                 result = (uint32_t)val;
1273             }
1274         }
1275     } else {
1276         /* No saturation.  */
1277         if (env->macsr & MACSR_SU) {
1278             result = val & 0xffff;
1279         } else {
1280             result = (uint32_t)val;
1281         }
1282     }
1283     return result;
1284 }
1285 
1286 uint32_t HELPER(get_macs)(uint64_t val)
1287 {
1288     if (val == (int32_t)val) {
1289         return (int32_t)val;
1290     } else {
1291         return (val >> 61) ^ ~SIGNBIT;
1292     }
1293 }
1294 
1295 uint32_t HELPER(get_macu)(uint64_t val)
1296 {
1297     if ((val >> 32) == 0) {
1298         return (uint32_t)val;
1299     } else {
1300         return 0xffffffffu;
1301     }
1302 }
1303 
1304 uint32_t HELPER(get_mac_extf)(CPUM68KState *env, uint32_t acc)
1305 {
1306     uint32_t val;
1307     val = env->macc[acc] & 0x00ff;
1308     val |= (env->macc[acc] >> 32) & 0xff00;
1309     val |= (env->macc[acc + 1] << 16) & 0x00ff0000;
1310     val |= (env->macc[acc + 1] >> 16) & 0xff000000;
1311     return val;
1312 }
1313 
1314 uint32_t HELPER(get_mac_exti)(CPUM68KState *env, uint32_t acc)
1315 {
1316     uint32_t val;
1317     val = (env->macc[acc] >> 32) & 0xffff;
1318     val |= (env->macc[acc + 1] >> 16) & 0xffff0000;
1319     return val;
1320 }
1321 
1322 void HELPER(set_mac_extf)(CPUM68KState *env, uint32_t val, uint32_t acc)
1323 {
1324     int64_t res;
1325     int32_t tmp;
1326     res = env->macc[acc] & 0xffffffff00ull;
1327     tmp = (int16_t)(val & 0xff00);
1328     res |= ((int64_t)tmp) << 32;
1329     res |= val & 0xff;
1330     env->macc[acc] = res;
1331     res = env->macc[acc + 1] & 0xffffffff00ull;
1332     tmp = (val & 0xff000000);
1333     res |= ((int64_t)tmp) << 16;
1334     res |= (val >> 16) & 0xff;
1335     env->macc[acc + 1] = res;
1336 }
1337 
1338 void HELPER(set_mac_exts)(CPUM68KState *env, uint32_t val, uint32_t acc)
1339 {
1340     int64_t res;
1341     int32_t tmp;
1342     res = (uint32_t)env->macc[acc];
1343     tmp = (int16_t)val;
1344     res |= ((int64_t)tmp) << 32;
1345     env->macc[acc] = res;
1346     res = (uint32_t)env->macc[acc + 1];
1347     tmp = val & 0xffff0000;
1348     res |= (int64_t)tmp << 16;
1349     env->macc[acc + 1] = res;
1350 }
1351 
1352 void HELPER(set_mac_extu)(CPUM68KState *env, uint32_t val, uint32_t acc)
1353 {
1354     uint64_t res;
1355     res = (uint32_t)env->macc[acc];
1356     res |= ((uint64_t)(val & 0xffff)) << 32;
1357     env->macc[acc] = res;
1358     res = (uint32_t)env->macc[acc + 1];
1359     res |= (uint64_t)(val & 0xffff0000) << 16;
1360     env->macc[acc + 1] = res;
1361 }
1362 
1363 #if defined(CONFIG_SOFTMMU)
1364 void HELPER(ptest)(CPUM68KState *env, uint32_t addr, uint32_t is_read)
1365 {
1366     hwaddr physical;
1367     int access_type;
1368     int prot;
1369     int ret;
1370     target_ulong page_size;
1371 
1372     access_type = ACCESS_PTEST;
1373     if (env->dfc & 4) {
1374         access_type |= ACCESS_SUPER;
1375     }
1376     if ((env->dfc & 3) == 2) {
1377         access_type |= ACCESS_CODE;
1378     }
1379     if (!is_read) {
1380         access_type |= ACCESS_STORE;
1381     }
1382 
1383     env->mmu.mmusr = 0;
1384     env->mmu.ssw = 0;
1385     ret = get_physical_address(env, &physical, &prot, addr,
1386                                access_type, &page_size);
1387     if (ret == 0) {
1388         addr &= TARGET_PAGE_MASK;
1389         physical += addr & (page_size - 1);
1390         tlb_set_page(env_cpu(env), addr, physical,
1391                      prot, access_type & ACCESS_SUPER ?
1392                      MMU_KERNEL_IDX : MMU_USER_IDX, page_size);
1393     }
1394 }
1395 
1396 void HELPER(pflush)(CPUM68KState *env, uint32_t addr, uint32_t opmode)
1397 {
1398     CPUState *cs = env_cpu(env);
1399 
1400     switch (opmode) {
1401     case 0: /* Flush page entry if not global */
1402     case 1: /* Flush page entry */
1403         tlb_flush_page(cs, addr);
1404         break;
1405     case 2: /* Flush all except global entries */
1406         tlb_flush(cs);
1407         break;
1408     case 3: /* Flush all entries */
1409         tlb_flush(cs);
1410         break;
1411     }
1412 }
1413 
1414 void HELPER(reset)(CPUM68KState *env)
1415 {
1416     /* FIXME: reset all except CPU */
1417 }
1418 #endif
1419