2013-04-21 12:34:20 -07:00
|
|
|
refactor:
|
|
|
|
module gen
|
|
|
|
recompiler (move to cpu)
|
|
|
|
implement:
|
|
|
|
function table
|
|
|
|
exec_module FindFunctionSymbol
|
|
|
|
|
|
|
|
jit:
|
|
|
|
- add imports/exports/etc to module
|
|
|
|
- function generator (thread safe)
|
2013-02-24 11:44:10 -08:00
|
|
|
|
|
|
|
|
|
|
|
|
2013-01-29 20:27:24 -08:00
|
|
|
## Loader
|
|
|
|
|
|
|
|
Set all function variable addresses to the thunks. Since we handle the thunks
|
|
|
|
specially the variables are just used as function pointer storage.
|
|
|
|
|
2013-01-28 03:03:37 -08:00
|
|
|
## Kernel
|
|
|
|
|
2013-01-29 20:27:24 -08:00
|
|
|
Ordered:
|
|
|
|
```
|
|
|
|
RtlInitializeCriticalSection/RtlInitializeCriticalSectionAndSpinCount
|
|
|
|
RtlEnterCriticalSection/RtlLeaveCriticalSection
|
2013-01-31 00:19:48 -08:00
|
|
|
NtCreateEvent
|
|
|
|
NtClose
|
|
|
|
NtWaitForSingleObjectEx
|
|
|
|
RtlFreeAnsiString/RtlFreeUnicodeString
|
|
|
|
RtlUnicodeStringToAnsiString
|
2013-01-29 20:27:24 -08:00
|
|
|
```
|
2013-01-28 03:03:37 -08:00
|
|
|
|
2013-01-29 20:27:24 -08:00
|
|
|
Others:
|
|
|
|
```
|
2013-01-31 00:19:48 -08:00
|
|
|
NtCreateEvent
|
2013-01-29 20:27:24 -08:00
|
|
|
NtWaitForSingleObjectEx
|
|
|
|
|
|
|
|
RtlCompareMemoryUlong
|
|
|
|
RtlNtStatusToDosError
|
|
|
|
RtlRaiseException
|
|
|
|
|
|
|
|
NtCreateFile/NtOpenFile
|
2013-01-31 00:19:48 -08:00
|
|
|
NtClose
|
2013-01-29 20:27:24 -08:00
|
|
|
NtReadFile/NtReadFileScatter
|
|
|
|
NtQueryFullAttributesFile
|
|
|
|
NtQueryInformationFile/NtSetInformationFile
|
|
|
|
NtQueryDirectoryFile/NtQueryVolumeInformationFile
|
|
|
|
|
|
|
|
NtDuplicateObject
|
|
|
|
|
|
|
|
KeBugCheck:
|
|
|
|
// VOID
|
|
|
|
// _In_ ULONG BugCheckCode
|
|
|
|
```
|
|
|
|
|
|
|
|
## Instructions
|
2013-01-22 00:54:49 -08:00
|
|
|
|
2013-01-26 21:51:31 -08:00
|
|
|
```
|
2013-02-03 21:41:38 -08:00
|
|
|
lwarx
|
|
|
|
stwcx
|
2013-02-03 23:26:20 -08:00
|
|
|
|
|
|
|
addcx
|
|
|
|
addicx
|
|
|
|
divwx
|
|
|
|
extswx
|
|
|
|
faddx
|
|
|
|
fcfidx
|
|
|
|
fcmpu
|
|
|
|
fctiwzx
|
|
|
|
fdivx
|
|
|
|
fmaddsx
|
|
|
|
fmrx
|
|
|
|
fmulsx
|
|
|
|
fmulx
|
|
|
|
fnegx
|
|
|
|
frspx
|
|
|
|
mulldx
|
|
|
|
negx
|
|
|
|
rlwimix
|
|
|
|
rldiclx
|
|
|
|
rldicrx
|
|
|
|
sradx
|
|
|
|
srdx
|
|
|
|
srwx
|
|
|
|
subfcx
|
|
|
|
subfzex
|
|
|
|
|
|
|
|
new:
|
|
|
|
extldi
|
|
|
|
mfmsr
|
|
|
|
mtmsrd
|
|
|
|
srdi
|
2013-01-22 00:54:49 -08:00
|
|
|
```
|
|
|
|
|
2013-01-29 20:27:24 -08:00
|
|
|
### XER CA bit (carry)
|
|
|
|
|
|
|
|
Not sure the way I'm doing this is right. addic/subficx/etc set it to the value
|
|
|
|
of the overflow bit from the LLVM *_with_overflow intrinsic.
|
|
|
|
|
|
|
|
### Overflow
|
|
|
|
|
2013-01-22 13:15:02 -08:00
|
|
|
Overflow bits can be set via the intrinsics:
|
|
|
|
`llvm.sadd.with.overflow`/etc
|
|
|
|
It'd be nice to avoid doing this unless absolutely required. The SDB could
|
|
|
|
walk functions to see if they ever read or branch on the SO bit of things.
|
|
|
|
|
2013-01-29 20:27:24 -08:00
|
|
|
### Conditions
|
|
|
|
|
2013-01-25 01:01:11 -08:00
|
|
|
Condition bits are, after each function:
|
|
|
|
```
|
|
|
|
if (target_reg < 0) { CR0 = b100 | XER[SO] }
|
|
|
|
if (target_reg > 0) { CR0 = b010 | XER[SO] }
|
|
|
|
else { CR0 = b001 | XER[SO] }
|
|
|
|
```
|
|
|
|
Most PPC instructions are optimized by the compiler to have Rc=0 and not set the
|
|
|
|
bits if possible. There are some instructions, though, that always set them.
|
|
|
|
For those, it would be nice to remove redundant sets. Maybe LLVM will do it
|
|
|
|
automatically due to the local cr? May need to split that up into a few locals
|
|
|
|
(one for each bit?) to ensure deduping.
|
|
|
|
|
2013-01-29 20:27:24 -08:00
|
|
|
### Branch Hinting
|
|
|
|
|
2013-01-22 13:15:02 -08:00
|
|
|
`@llvm.expect.i32`/`.i64` could be used with the BH bits in branches to
|
|
|
|
indicate expected values.
|
|
|
|
|
2013-01-29 20:27:24 -08:00
|
|
|
### Data Caching
|
|
|
|
|
|
|
|
dcbt and dcbtst could use LLVM intrinsic @llvm.prefetch.
|
|
|
|
|
2013-01-22 00:54:49 -08:00
|
|
|
## Codegen
|
|
|
|
|
2013-01-22 10:50:20 -08:00
|
|
|
### Calling convention
|
|
|
|
|
|
|
|
Experiment with fastcc? May need typedef fn ptrs to call into the JITted code.
|
|
|
|
|
2013-01-25 00:32:42 -08:00
|
|
|
### Function calling convention analysis
|
2013-01-22 13:15:02 -08:00
|
|
|
|
2013-01-25 00:32:42 -08:00
|
|
|
Track functions to see if they follow the standard calling convention.
|
|
|
|
This could use the hints from the EH data in the XEX. Looking specifically for
|
|
|
|
stack prolog/epilog and branches to LR.
|
2013-01-22 00:54:49 -08:00
|
|
|
|
2013-01-25 00:32:42 -08:00
|
|
|
Benefits:
|
|
|
|
- Optimized prolog/epilog generation.
|
|
|
|
- Local variables for stack storage (alloca/etc) instead of user memory.
|
|
|
|
- Better return detection and fast returns.
|
|
|
|
|
|
|
|
### Indirect branches (ctr/lr)
|
2013-01-22 00:54:49 -08:00
|
|
|
|
2013-01-22 10:50:20 -08:00
|
|
|
Return path:
|
|
|
|
- In SDB see if the function follows the 'return' semantic:
|
|
|
|
- mfspr LR / mtspr LR/CTR / bcctr -- at end?
|
|
|
|
- In codegen add a BB that is just return.
|
|
|
|
- If a block 'returns', branch to the return BB.
|
|
|
|
|
|
|
|
Tail calls:
|
|
|
|
- If in a call BB check next BB.
|
|
|
|
- If next is a return, optimize to a tail call.
|
|
|
|
|
2013-01-22 00:54:49 -08:00
|
|
|
Fast path:
|
|
|
|
- Every time LR would be stashed, add the value of LR (some NIA) to a lookup
|
|
|
|
table.
|
|
|
|
- When doing an indirect branch first lookup the address in the table.
|
|
|
|
- If not found, slow path, else jump.
|
|
|
|
|
|
|
|
Slow path:
|
|
|
|
- Call out and do an SDB lookup.
|
|
|
|
- If found, return, add to lookup table, and jump.
|
|
|
|
- If not found, need new function codegen!
|
|
|
|
```
|
2013-01-23 21:59:26 -08:00
|
|
|
|
2013-02-03 23:26:20 -08:00
|
|
|
## Linking/multicore processing
|
|
|
|
|
|
|
|
Need to split up processing of functions.
|
|
|
|
ModuleGenerator::Generate's BuildFunction loop is the real time hog here.
|
|
|
|
Spin up N threads. Each as a module and steals functions from the queue to
|
|
|
|
generate. After the module hits a certain size it's dumped to disk and another
|
|
|
|
is created.
|
|
|
|
Afterwards, all modules are loaded lazily and linked together. The final one
|
|
|
|
is writen out and loaded again lazily.
|
|
|
|
JIT works on that.
|
|
|
|
|
2013-01-23 21:59:26 -08:00
|
|
|
## Debugging
|
|
|
|
|