Blame 0009-target-s390x-split-memory-access-helpers.patch

5544c1
From a44aee2570031bfcf99098d278c53ab39a582ba6 Mon Sep 17 00:00:00 2001
5544c1
From: Blue Swirl <blauwirbel@gmail.com>
5544c1
Date: Sun, 2 Sep 2012 07:33:34 +0000
5544c1
Subject: [PATCH] target-s390x: split memory access helpers
5544c1
5544c1
Move memory access helpers to mem_helper.c.
5544c1
5544c1
Signed-off-by: Blue Swirl <blauwirbel@gmail.com>
5544c1
[agraf: fold softmmu include ifdefs together]
5544c1
Signed-off-by: Alexander Graf <agraf@suse.de>
5544c1
5544c1
Signed-off-by: Michael Roth <mdroth@linux.vnet.ibm.com>
5544c1
---
5544c1
 target-s390x/Makefile.objs |    3 +-
5544c1
 target-s390x/mem_helper.c  | 1190 ++++++++++++++++++++++++++++++++++++++++++++
5544c1
 target-s390x/op_helper.c   | 1159 +-----------------------------------------
5544c1
 3 files changed, 1193 insertions(+), 1159 deletions(-)
5544c1
 create mode 100644 target-s390x/mem_helper.c
5544c1
5544c1
diff --git a/target-s390x/Makefile.objs b/target-s390x/Makefile.objs
5544c1
index e8f66e9..b9b3061 100644
5544c1
--- a/target-s390x/Makefile.objs
5544c1
+++ b/target-s390x/Makefile.objs
5544c1
@@ -1,5 +1,5 @@
5544c1
 obj-y += translate.o op_helper.o helper.o cpu.o interrupt.o
5544c1
-obj-y += int_helper.o fpu_helper.o cc_helper.o
5544c1
+obj-y += int_helper.o fpu_helper.o cc_helper.o mem_helper.o
5544c1
 obj-$(CONFIG_SOFTMMU) += machine.o
5544c1
 obj-$(CONFIG_KVM) += kvm.o
5544c1
 
5544c1
@@ -7,3 +7,4 @@ $(obj)/op_helper.o: QEMU_CFLAGS += $(HELPER_CFLAGS)
5544c1
 $(obj)/int_helper.o: QEMU_CFLAGS += $(HELPER_CFLAGS)
5544c1
 $(obj)/fpu_helper.o: QEMU_CFLAGS += $(HELPER_CFLAGS)
5544c1
 $(obj)/cc_helper.o: QEMU_CFLAGS += $(HELPER_CFLAGS)
5544c1
+$(obj)/mem_helper.o: QEMU_CFLAGS += $(HELPER_CFLAGS)
5544c1
diff --git a/target-s390x/mem_helper.c b/target-s390x/mem_helper.c
5544c1
new file mode 100644
5544c1
index 0000000..ba05e65
5544c1
--- /dev/null
5544c1
+++ b/target-s390x/mem_helper.c
5544c1
@@ -0,0 +1,1190 @@
5544c1
+/*
5544c1
+ *  S/390 memory access helper routines
5544c1
+ *
5544c1
+ *  Copyright (c) 2009 Ulrich Hecht
5544c1
+ *  Copyright (c) 2009 Alexander Graf
5544c1
+ *
5544c1
+ * This library is free software; you can redistribute it and/or
5544c1
+ * modify it under the terms of the GNU Lesser General Public
5544c1
+ * License as published by the Free Software Foundation; either
5544c1
+ * version 2 of the License, or (at your option) any later version.
5544c1
+ *
5544c1
+ * This library is distributed in the hope that it will be useful,
5544c1
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
5544c1
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
5544c1
+ * Lesser General Public License for more details.
5544c1
+ *
5544c1
+ * You should have received a copy of the GNU Lesser General Public
5544c1
+ * License along with this library; if not, see <http://www.gnu.org/licenses/>.
5544c1
+ */
5544c1
+
5544c1
+#include "cpu.h"
5544c1
+#include "dyngen-exec.h"
5544c1
+#include "helper.h"
5544c1
+
5544c1
+/*****************************************************************************/
5544c1
+/* Softmmu support */
5544c1
+#if !defined(CONFIG_USER_ONLY)
5544c1
+#include "softmmu_exec.h"
5544c1
+
5544c1
+#define MMUSUFFIX _mmu
5544c1
+
5544c1
+#define SHIFT 0
5544c1
+#include "softmmu_template.h"
5544c1
+
5544c1
+#define SHIFT 1
5544c1
+#include "softmmu_template.h"
5544c1
+
5544c1
+#define SHIFT 2
5544c1
+#include "softmmu_template.h"
5544c1
+
5544c1
+#define SHIFT 3
5544c1
+#include "softmmu_template.h"
5544c1
+
5544c1
+/* try to fill the TLB and return an exception if error. If retaddr is
5544c1
+   NULL, it means that the function was called in C code (i.e. not
5544c1
+   from generated code or from helper.c) */
5544c1
+/* XXX: fix it to restore all registers */
5544c1
+void tlb_fill(CPUS390XState *env1, target_ulong addr, int is_write, int mmu_idx,
5544c1
+              uintptr_t retaddr)
5544c1
+{
5544c1
+    TranslationBlock *tb;
5544c1
+    CPUS390XState *saved_env;
5544c1
+    int ret;
5544c1
+
5544c1
+    saved_env = env;
5544c1
+    env = env1;
5544c1
+    ret = cpu_s390x_handle_mmu_fault(env, addr, is_write, mmu_idx);
5544c1
+    if (unlikely(ret != 0)) {
5544c1
+        if (likely(retaddr)) {
5544c1
+            /* now we have a real cpu fault */
5544c1
+            tb = tb_find_pc(retaddr);
5544c1
+            if (likely(tb)) {
5544c1
+                /* the PC is inside the translated code. It means that we have
5544c1
+                   a virtual CPU fault */
5544c1
+                cpu_restore_state(tb, env, retaddr);
5544c1
+            }
5544c1
+        }
5544c1
+        cpu_loop_exit(env);
5544c1
+    }
5544c1
+    env = saved_env;
5544c1
+}
5544c1
+
5544c1
+#endif
5544c1
+
5544c1
+/* #define DEBUG_HELPER */
5544c1
+#ifdef DEBUG_HELPER
5544c1
+#define HELPER_LOG(x...) qemu_log(x)
5544c1
+#else
5544c1
+#define HELPER_LOG(x...)
5544c1
+#endif
5544c1
+
5544c1
+#ifndef CONFIG_USER_ONLY
5544c1
+static void mvc_fast_memset(CPUS390XState *env, uint32_t l, uint64_t dest,
5544c1
+                            uint8_t byte)
5544c1
+{
5544c1
+    target_phys_addr_t dest_phys;
5544c1
+    target_phys_addr_t len = l;
5544c1
+    void *dest_p;
5544c1
+    uint64_t asc = env->psw.mask & PSW_MASK_ASC;
5544c1
+    int flags;
5544c1
+
5544c1
+    if (mmu_translate(env, dest, 1, asc, &dest_phys, &flags)) {
5544c1
+        stb(dest, byte);
5544c1
+        cpu_abort(env, "should never reach here");
5544c1
+    }
5544c1
+    dest_phys |= dest & ~TARGET_PAGE_MASK;
5544c1
+
5544c1
+    dest_p = cpu_physical_memory_map(dest_phys, &len, 1);
5544c1
+
5544c1
+    memset(dest_p, byte, len);
5544c1
+
5544c1
+    cpu_physical_memory_unmap(dest_p, 1, len, len);
5544c1
+}
5544c1
+
5544c1
+static void mvc_fast_memmove(CPUS390XState *env, uint32_t l, uint64_t dest,
5544c1
+                             uint64_t src)
5544c1
+{
5544c1
+    target_phys_addr_t dest_phys;
5544c1
+    target_phys_addr_t src_phys;
5544c1
+    target_phys_addr_t len = l;
5544c1
+    void *dest_p;
5544c1
+    void *src_p;
5544c1
+    uint64_t asc = env->psw.mask & PSW_MASK_ASC;
5544c1
+    int flags;
5544c1
+
5544c1
+    if (mmu_translate(env, dest, 1, asc, &dest_phys, &flags)) {
5544c1
+        stb(dest, 0);
5544c1
+        cpu_abort(env, "should never reach here");
5544c1
+    }
5544c1
+    dest_phys |= dest & ~TARGET_PAGE_MASK;
5544c1
+
5544c1
+    if (mmu_translate(env, src, 0, asc, &src_phys, &flags)) {
5544c1
+        ldub(src);
5544c1
+        cpu_abort(env, "should never reach here");
5544c1
+    }
5544c1
+    src_phys |= src & ~TARGET_PAGE_MASK;
5544c1
+
5544c1
+    dest_p = cpu_physical_memory_map(dest_phys, &len, 1);
5544c1
+    src_p = cpu_physical_memory_map(src_phys, &len, 0);
5544c1
+
5544c1
+    memmove(dest_p, src_p, len);
5544c1
+
5544c1
+    cpu_physical_memory_unmap(dest_p, 1, len, len);
5544c1
+    cpu_physical_memory_unmap(src_p, 0, len, len);
5544c1
+}
5544c1
+#endif
5544c1
+
5544c1
+/* and on array */
5544c1
+uint32_t HELPER(nc)(uint32_t l, uint64_t dest, uint64_t src)
5544c1
+{
5544c1
+    int i;
5544c1
+    unsigned char x;
5544c1
+    uint32_t cc = 0;
5544c1
+
5544c1
+    HELPER_LOG("%s l %d dest %" PRIx64 " src %" PRIx64 "\n",
5544c1
+               __func__, l, dest, src);
5544c1
+    for (i = 0; i <= l; i++) {
5544c1
+        x = ldub(dest + i) & ldub(src + i);
5544c1
+        if (x) {
5544c1
+            cc = 1;
5544c1
+        }
5544c1
+        stb(dest + i, x);
5544c1
+    }
5544c1
+    return cc;
5544c1
+}
5544c1
+
5544c1
+/* xor on array */
5544c1
+uint32_t HELPER(xc)(uint32_t l, uint64_t dest, uint64_t src)
5544c1
+{
5544c1
+    int i;
5544c1
+    unsigned char x;
5544c1
+    uint32_t cc = 0;
5544c1
+
5544c1
+    HELPER_LOG("%s l %d dest %" PRIx64 " src %" PRIx64 "\n",
5544c1
+               __func__, l, dest, src);
5544c1
+
5544c1
+#ifndef CONFIG_USER_ONLY
5544c1
+    /* xor with itself is the same as memset(0) */
5544c1
+    if ((l > 32) && (src == dest) &&
5544c1
+        (src & TARGET_PAGE_MASK) == ((src + l) & TARGET_PAGE_MASK)) {
5544c1
+        mvc_fast_memset(env, l + 1, dest, 0);
5544c1
+        return 0;
5544c1
+    }
5544c1
+#else
5544c1
+    if (src == dest) {
5544c1
+        memset(g2h(dest), 0, l + 1);
5544c1
+        return 0;
5544c1
+    }
5544c1
+#endif
5544c1
+
5544c1
+    for (i = 0; i <= l; i++) {
5544c1
+        x = ldub(dest + i) ^ ldub(src + i);
5544c1
+        if (x) {
5544c1
+            cc = 1;
5544c1
+        }
5544c1
+        stb(dest + i, x);
5544c1
+    }
5544c1
+    return cc;
5544c1
+}
5544c1
+
5544c1
+/* or on array */
5544c1
+uint32_t HELPER(oc)(uint32_t l, uint64_t dest, uint64_t src)
5544c1
+{
5544c1
+    int i;
5544c1
+    unsigned char x;
5544c1
+    uint32_t cc = 0;
5544c1
+
5544c1
+    HELPER_LOG("%s l %d dest %" PRIx64 " src %" PRIx64 "\n",
5544c1
+               __func__, l, dest, src);
5544c1
+    for (i = 0; i <= l; i++) {
5544c1
+        x = ldub(dest + i) | ldub(src + i);
5544c1
+        if (x) {
5544c1
+            cc = 1;
5544c1
+        }
5544c1
+        stb(dest + i, x);
5544c1
+    }
5544c1
+    return cc;
5544c1
+}
5544c1
+
5544c1
+/* memmove */
5544c1
+void HELPER(mvc)(uint32_t l, uint64_t dest, uint64_t src)
5544c1
+{
5544c1
+    int i = 0;
5544c1
+    int x = 0;
5544c1
+    uint32_t l_64 = (l + 1) / 8;
5544c1
+
5544c1
+    HELPER_LOG("%s l %d dest %" PRIx64 " src %" PRIx64 "\n",
5544c1
+               __func__, l, dest, src);
5544c1
+
5544c1
+#ifndef CONFIG_USER_ONLY
5544c1
+    if ((l > 32) &&
5544c1
+        (src & TARGET_PAGE_MASK) == ((src + l) & TARGET_PAGE_MASK) &&
5544c1
+        (dest & TARGET_PAGE_MASK) == ((dest + l) & TARGET_PAGE_MASK)) {
5544c1
+        if (dest == (src + 1)) {
5544c1
+            mvc_fast_memset(env, l + 1, dest, ldub(src));
5544c1
+            return;
5544c1
+        } else if ((src & TARGET_PAGE_MASK) != (dest & TARGET_PAGE_MASK)) {
5544c1
+            mvc_fast_memmove(env, l + 1, dest, src);
5544c1
+            return;
5544c1
+        }
5544c1
+    }
5544c1
+#else
5544c1
+    if (dest == (src + 1)) {
5544c1
+        memset(g2h(dest), ldub(src), l + 1);
5544c1
+        return;
5544c1
+    } else {
5544c1
+        memmove(g2h(dest), g2h(src), l + 1);
5544c1
+        return;
5544c1
+    }
5544c1
+#endif
5544c1
+
5544c1
+    /* handle the parts that fit into 8-byte loads/stores */
5544c1
+    if (dest != (src + 1)) {
5544c1
+        for (i = 0; i < l_64; i++) {
5544c1
+            stq(dest + x, ldq(src + x));
5544c1
+            x += 8;
5544c1
+        }
5544c1
+    }
5544c1
+
5544c1
+    /* slow version crossing pages with byte accesses */
5544c1
+    for (i = x; i <= l; i++) {
5544c1
+        stb(dest + i, ldub(src + i));
5544c1
+    }
5544c1
+}
5544c1
+
5544c1
+/* compare unsigned byte arrays */
5544c1
+uint32_t HELPER(clc)(uint32_t l, uint64_t s1, uint64_t s2)
5544c1
+{
5544c1
+    int i;
5544c1
+    unsigned char x, y;
5544c1
+    uint32_t cc;
5544c1
+
5544c1
+    HELPER_LOG("%s l %d s1 %" PRIx64 " s2 %" PRIx64 "\n",
5544c1
+               __func__, l, s1, s2);
5544c1
+    for (i = 0; i <= l; i++) {
5544c1
+        x = ldub(s1 + i);
5544c1
+        y = ldub(s2 + i);
5544c1
+        HELPER_LOG("%02x (%c)/%02x (%c) ", x, x, y, y);
5544c1
+        if (x < y) {
5544c1
+            cc = 1;
5544c1
+            goto done;
5544c1
+        } else if (x > y) {
5544c1
+            cc = 2;
5544c1
+            goto done;
5544c1
+        }
5544c1
+    }
5544c1
+    cc = 0;
5544c1
+ done:
5544c1
+    HELPER_LOG("\n");
5544c1
+    return cc;
5544c1
+}
5544c1
+
5544c1
+/* compare logical under mask */
5544c1
+uint32_t HELPER(clm)(uint32_t r1, uint32_t mask, uint64_t addr)
5544c1
+{
5544c1
+    uint8_t r, d;
5544c1
+    uint32_t cc;
5544c1
+
5544c1
+    HELPER_LOG("%s: r1 0x%x mask 0x%x addr 0x%" PRIx64 "\n", __func__, r1,
5544c1
+               mask, addr);
5544c1
+    cc = 0;
5544c1
+    while (mask) {
5544c1
+        if (mask & 8) {
5544c1
+            d = ldub(addr);
5544c1
+            r = (r1 & 0xff000000UL) >> 24;
5544c1
+            HELPER_LOG("mask 0x%x %02x/%02x (0x%" PRIx64 ") ", mask, r, d,
5544c1
+                       addr);
5544c1
+            if (r < d) {
5544c1
+                cc = 1;
5544c1
+                break;
5544c1
+            } else if (r > d) {
5544c1
+                cc = 2;
5544c1
+                break;
5544c1
+            }
5544c1
+            addr++;
5544c1
+        }
5544c1
+        mask = (mask << 1) & 0xf;
5544c1
+        r1 <<= 8;
5544c1
+    }
5544c1
+    HELPER_LOG("\n");
5544c1
+    return cc;
5544c1
+}
5544c1
+
5544c1
+/* store character under mask */
5544c1
+void HELPER(stcm)(uint32_t r1, uint32_t mask, uint64_t addr)
5544c1
+{
5544c1
+    uint8_t r;
5544c1
+
5544c1
+    HELPER_LOG("%s: r1 0x%x mask 0x%x addr 0x%lx\n", __func__, r1, mask,
5544c1
+               addr);
5544c1
+    while (mask) {
5544c1
+        if (mask & 8) {
5544c1
+            r = (r1 & 0xff000000UL) >> 24;
5544c1
+            stb(addr, r);
5544c1
+            HELPER_LOG("mask 0x%x %02x (0x%lx) ", mask, r, addr);
5544c1
+            addr++;
5544c1
+        }
5544c1
+        mask = (mask << 1) & 0xf;
5544c1
+        r1 <<= 8;
5544c1
+    }
5544c1
+    HELPER_LOG("\n");
5544c1
+}
5544c1
+
5544c1
+static inline uint64_t get_address(int x2, int b2, int d2)
5544c1
+{
5544c1
+    uint64_t r = d2;
5544c1
+
5544c1
+    if (x2) {
5544c1
+        r += env->regs[x2];
5544c1
+    }
5544c1
+
5544c1
+    if (b2) {
5544c1
+        r += env->regs[b2];
5544c1
+    }
5544c1
+
5544c1
+    /* 31-Bit mode */
5544c1
+    if (!(env->psw.mask & PSW_MASK_64)) {
5544c1
+        r &= 0x7fffffff;
5544c1
+    }
5544c1
+
5544c1
+    return r;
5544c1
+}
5544c1
+
5544c1
+static inline uint64_t get_address_31fix(int reg)
5544c1
+{
5544c1
+    uint64_t r = env->regs[reg];
5544c1
+
5544c1
+    /* 31-Bit mode */
5544c1
+    if (!(env->psw.mask & PSW_MASK_64)) {
5544c1
+        r &= 0x7fffffff;
5544c1
+    }
5544c1
+
5544c1
+    return r;
5544c1
+}
5544c1
+
5544c1
+/* search string (c is byte to search, r2 is string, r1 end of string) */
5544c1
+uint32_t HELPER(srst)(uint32_t c, uint32_t r1, uint32_t r2)
5544c1
+{
5544c1
+    uint64_t i;
5544c1
+    uint32_t cc = 2;
5544c1
+    uint64_t str = get_address_31fix(r2);
5544c1
+    uint64_t end = get_address_31fix(r1);
5544c1
+
5544c1
+    HELPER_LOG("%s: c %d *r1 0x%" PRIx64 " *r2 0x%" PRIx64 "\n", __func__,
5544c1
+               c, env->regs[r1], env->regs[r2]);
5544c1
+
5544c1
+    for (i = str; i != end; i++) {
5544c1
+        if (ldub(i) == c) {
5544c1
+            env->regs[r1] = i;
5544c1
+            cc = 1;
5544c1
+            break;
5544c1
+        }
5544c1
+    }
5544c1
+
5544c1
+    return cc;
5544c1
+}
5544c1
+
5544c1
+/* unsigned string compare (c is string terminator) */
5544c1
+uint32_t HELPER(clst)(uint32_t c, uint32_t r1, uint32_t r2)
5544c1
+{
5544c1
+    uint64_t s1 = get_address_31fix(r1);
5544c1
+    uint64_t s2 = get_address_31fix(r2);
5544c1
+    uint8_t v1, v2;
5544c1
+    uint32_t cc;
5544c1
+
5544c1
+    c = c & 0xff;
5544c1
+#ifdef CONFIG_USER_ONLY
5544c1
+    if (!c) {
5544c1
+        HELPER_LOG("%s: comparing '%s' and '%s'\n",
5544c1
+                   __func__, (char *)g2h(s1), (char *)g2h(s2));
5544c1
+    }
5544c1
+#endif
5544c1
+    for (;;) {
5544c1
+        v1 = ldub(s1);
5544c1
+        v2 = ldub(s2);
5544c1
+        if ((v1 == c || v2 == c) || (v1 != v2)) {
5544c1
+            break;
5544c1
+        }
5544c1
+        s1++;
5544c1
+        s2++;
5544c1
+    }
5544c1
+
5544c1
+    if (v1 == v2) {
5544c1
+        cc = 0;
5544c1
+    } else {
5544c1
+        cc = (v1 < v2) ? 1 : 2;
5544c1
+        /* FIXME: 31-bit mode! */
5544c1
+        env->regs[r1] = s1;
5544c1
+        env->regs[r2] = s2;
5544c1
+    }
5544c1
+    return cc;
5544c1
+}
5544c1
+
5544c1
+/* move page */
5544c1
+void HELPER(mvpg)(uint64_t r0, uint64_t r1, uint64_t r2)
5544c1
+{
5544c1
+    /* XXX missing r0 handling */
5544c1
+#ifdef CONFIG_USER_ONLY
5544c1
+    int i;
5544c1
+
5544c1
+    for (i = 0; i < TARGET_PAGE_SIZE; i++) {
5544c1
+        stb(r1 + i, ldub(r2 + i));
5544c1
+    }
5544c1
+#else
5544c1
+    mvc_fast_memmove(env, TARGET_PAGE_SIZE, r1, r2);
5544c1
+#endif
5544c1
+}
5544c1
+
5544c1
+/* string copy (c is string terminator) */
5544c1
+void HELPER(mvst)(uint32_t c, uint32_t r1, uint32_t r2)
5544c1
+{
5544c1
+    uint64_t dest = get_address_31fix(r1);
5544c1
+    uint64_t src = get_address_31fix(r2);
5544c1
+    uint8_t v;
5544c1
+
5544c1
+    c = c & 0xff;
5544c1
+#ifdef CONFIG_USER_ONLY
5544c1
+    if (!c) {
5544c1
+        HELPER_LOG("%s: copy '%s' to 0x%lx\n", __func__, (char *)g2h(src),
5544c1
+                   dest);
5544c1
+    }
5544c1
+#endif
5544c1
+    for (;;) {
5544c1
+        v = ldub(src);
5544c1
+        stb(dest, v);
5544c1
+        if (v == c) {
5544c1
+            break;
5544c1
+        }
5544c1
+        src++;
5544c1
+        dest++;
5544c1
+    }
5544c1
+    env->regs[r1] = dest; /* FIXME: 31-bit mode! */
5544c1
+}
5544c1
+
5544c1
+/* compare and swap 64-bit */
5544c1
+uint32_t HELPER(csg)(uint32_t r1, uint64_t a2, uint32_t r3)
5544c1
+{
5544c1
+    /* FIXME: locking? */
5544c1
+    uint32_t cc;
5544c1
+    uint64_t v2 = ldq(a2);
5544c1
+
5544c1
+    if (env->regs[r1] == v2) {
5544c1
+        cc = 0;
5544c1
+        stq(a2, env->regs[r3]);
5544c1
+    } else {
5544c1
+        cc = 1;
5544c1
+        env->regs[r1] = v2;
5544c1
+    }
5544c1
+    return cc;
5544c1
+}
5544c1
+
5544c1
+/* compare double and swap 64-bit */
5544c1
+uint32_t HELPER(cdsg)(uint32_t r1, uint64_t a2, uint32_t r3)
5544c1
+{
5544c1
+    /* FIXME: locking? */
5544c1
+    uint32_t cc;
5544c1
+    uint64_t v2_hi = ldq(a2);
5544c1
+    uint64_t v2_lo = ldq(a2 + 8);
5544c1
+    uint64_t v1_hi = env->regs[r1];
5544c1
+    uint64_t v1_lo = env->regs[r1 + 1];
5544c1
+
5544c1
+    if ((v1_hi == v2_hi) && (v1_lo == v2_lo)) {
5544c1
+        cc = 0;
5544c1
+        stq(a2, env->regs[r3]);
5544c1
+        stq(a2 + 8, env->regs[r3 + 1]);
5544c1
+    } else {
5544c1
+        cc = 1;
5544c1
+        env->regs[r1] = v2_hi;
5544c1
+        env->regs[r1 + 1] = v2_lo;
5544c1
+    }
5544c1
+
5544c1
+    return cc;
5544c1
+}
5544c1
+
5544c1
+/* compare and swap 32-bit */
5544c1
+uint32_t HELPER(cs)(uint32_t r1, uint64_t a2, uint32_t r3)
5544c1
+{
5544c1
+    /* FIXME: locking? */
5544c1
+    uint32_t cc;
5544c1
+    uint32_t v2 = ldl(a2);
5544c1
+
5544c1
+    HELPER_LOG("%s: r1 %d a2 0x%lx r3 %d\n", __func__, r1, a2, r3);
5544c1
+    if (((uint32_t)env->regs[r1]) == v2) {
5544c1
+        cc = 0;
5544c1
+        stl(a2, (uint32_t)env->regs[r3]);
5544c1
+    } else {
5544c1
+        cc = 1;
5544c1
+        env->regs[r1] = (env->regs[r1] & 0xffffffff00000000ULL) | v2;
5544c1
+    }
5544c1
+    return cc;
5544c1
+}
5544c1
+
5544c1
+static uint32_t helper_icm(uint32_t r1, uint64_t address, uint32_t mask)
5544c1
+{
5544c1
+    int pos = 24; /* top of the lower half of r1 */
5544c1
+    uint64_t rmask = 0xff000000ULL;
5544c1
+    uint8_t val = 0;
5544c1
+    int ccd = 0;
5544c1
+    uint32_t cc = 0;
5544c1
+
5544c1
+    while (mask) {
5544c1
+        if (mask & 8) {
5544c1
+            env->regs[r1] &= ~rmask;
5544c1
+            val = ldub(address);
5544c1
+            if ((val & 0x80) && !ccd) {
5544c1
+                cc = 1;
5544c1
+            }
5544c1
+            ccd = 1;
5544c1
+            if (val && cc == 0) {
5544c1
+                cc = 2;
5544c1
+            }
5544c1
+            env->regs[r1] |= (uint64_t)val << pos;
5544c1
+            address++;
5544c1
+        }
5544c1
+        mask = (mask << 1) & 0xf;
5544c1
+        pos -= 8;
5544c1
+        rmask >>= 8;
5544c1
+    }
5544c1
+
5544c1
+    return cc;
5544c1
+}
5544c1
+
5544c1
+/* execute instruction
5544c1
+   this instruction executes an insn modified with the contents of r1
5544c1
+   it does not change the executed instruction in memory
5544c1
+   it does not change the program counter
5544c1
+   in other words: tricky...
5544c1
+   currently implemented by interpreting the cases it is most commonly used in
5544c1
+*/
5544c1
+uint32_t HELPER(ex)(uint32_t cc, uint64_t v1, uint64_t addr, uint64_t ret)
5544c1
+{
5544c1
+    uint16_t insn = lduw_code(addr);
5544c1
+
5544c1
+    HELPER_LOG("%s: v1 0x%lx addr 0x%lx insn 0x%x\n", __func__, v1, addr,
5544c1
+               insn);
5544c1
+    if ((insn & 0xf0ff) == 0xd000) {
5544c1
+        uint32_t l, insn2, b1, b2, d1, d2;
5544c1
+
5544c1
+        l = v1 & 0xff;
5544c1
+        insn2 = ldl_code(addr + 2);
5544c1
+        b1 = (insn2 >> 28) & 0xf;
5544c1
+        b2 = (insn2 >> 12) & 0xf;
5544c1
+        d1 = (insn2 >> 16) & 0xfff;
5544c1
+        d2 = insn2 & 0xfff;
5544c1
+        switch (insn & 0xf00) {
5544c1
+        case 0x200:
5544c1
+            helper_mvc(l, get_address(0, b1, d1), get_address(0, b2, d2));
5544c1
+            break;
5544c1
+        case 0x500:
5544c1
+            cc = helper_clc(l, get_address(0, b1, d1), get_address(0, b2, d2));
5544c1
+            break;
5544c1
+        case 0x700:
5544c1
+            cc = helper_xc(l, get_address(0, b1, d1), get_address(0, b2, d2));
5544c1
+            break;
5544c1
+        case 0xc00:
5544c1
+            helper_tr(l, get_address(0, b1, d1), get_address(0, b2, d2));
5544c1
+            break;
5544c1
+        default:
5544c1
+            goto abort;
5544c1
+            break;
5544c1
+        }
5544c1
+    } else if ((insn & 0xff00) == 0x0a00) {
5544c1
+        /* supervisor call */
5544c1
+        HELPER_LOG("%s: svc %ld via execute\n", __func__, (insn | v1) & 0xff);
5544c1
+        env->psw.addr = ret - 4;
5544c1
+        env->int_svc_code = (insn | v1) & 0xff;
5544c1
+        env->int_svc_ilc = 4;
5544c1
+        helper_exception(EXCP_SVC);
5544c1
+    } else if ((insn & 0xff00) == 0xbf00) {
5544c1
+        uint32_t insn2, r1, r3, b2, d2;
5544c1
+
5544c1
+        insn2 = ldl_code(addr + 2);
5544c1
+        r1 = (insn2 >> 20) & 0xf;
5544c1
+        r3 = (insn2 >> 16) & 0xf;
5544c1
+        b2 = (insn2 >> 12) & 0xf;
5544c1
+        d2 = insn2 & 0xfff;
5544c1
+        cc = helper_icm(r1, get_address(0, b2, d2), r3);
5544c1
+    } else {
5544c1
+    abort:
5544c1
+        cpu_abort(env, "EXECUTE on instruction prefix 0x%x not implemented\n",
5544c1
+                  insn);
5544c1
+    }
5544c1
+    return cc;
5544c1
+}
5544c1
+
5544c1
+/* store character under mask high operates on the upper half of r1 */
5544c1
+void HELPER(stcmh)(uint32_t r1, uint64_t address, uint32_t mask)
5544c1
+{
5544c1
+    int pos = 56; /* top of the upper half of r1 */
5544c1
+
5544c1
+    while (mask) {
5544c1
+        if (mask & 8) {
5544c1
+            stb(address, (env->regs[r1] >> pos) & 0xff);
5544c1
+            address++;
5544c1
+        }
5544c1
+        mask = (mask << 1) & 0xf;
5544c1
+        pos -= 8;
5544c1
+    }
5544c1
+}
5544c1
+
5544c1
+/* insert character under mask high; same as icm, but operates on the
5544c1
+   upper half of r1 */
5544c1
+uint32_t HELPER(icmh)(uint32_t r1, uint64_t address, uint32_t mask)
5544c1
+{
5544c1
+    int pos = 56; /* top of the upper half of r1 */
5544c1
+    uint64_t rmask = 0xff00000000000000ULL;
5544c1
+    uint8_t val = 0;
5544c1
+    int ccd = 0;
5544c1
+    uint32_t cc = 0;
5544c1
+
5544c1
+    while (mask) {
5544c1
+        if (mask & 8) {
5544c1
+            env->regs[r1] &= ~rmask;
5544c1
+            val = ldub(address);
5544c1
+            if ((val & 0x80) && !ccd) {
5544c1
+                cc = 1;
5544c1
+            }
5544c1
+            ccd = 1;
5544c1
+            if (val && cc == 0) {
5544c1
+                cc = 2;
5544c1
+            }
5544c1
+            env->regs[r1] |= (uint64_t)val << pos;
5544c1
+            address++;
5544c1
+        }
5544c1
+        mask = (mask << 1) & 0xf;
5544c1
+        pos -= 8;
5544c1
+        rmask >>= 8;
5544c1
+    }
5544c1
+
5544c1
+    return cc;
5544c1
+}
5544c1
+
5544c1
+/* load access registers r1 to r3 from memory at a2 */
5544c1
+void HELPER(lam)(uint32_t r1, uint64_t a2, uint32_t r3)
5544c1
+{
5544c1
+    int i;
5544c1
+
5544c1
+    for (i = r1;; i = (i + 1) % 16) {
5544c1
+        env->aregs[i] = ldl(a2);
5544c1
+        a2 += 4;
5544c1
+
5544c1
+        if (i == r3) {
5544c1
+            break;
5544c1
+        }
5544c1
+    }
5544c1
+}
5544c1
+
5544c1
+/* store access registers r1 to r3 in memory at a2 */
5544c1
+void HELPER(stam)(uint32_t r1, uint64_t a2, uint32_t r3)
5544c1
+{
5544c1
+    int i;
5544c1
+
5544c1
+    for (i = r1;; i = (i + 1) % 16) {
5544c1
+        stl(a2, env->aregs[i]);
5544c1
+        a2 += 4;
5544c1
+
5544c1
+        if (i == r3) {
5544c1
+            break;
5544c1
+        }
5544c1
+    }
5544c1
+}
5544c1
+
5544c1
+/* move long */
5544c1
+uint32_t HELPER(mvcl)(uint32_t r1, uint32_t r2)
5544c1
+{
5544c1
+    uint64_t destlen = env->regs[r1 + 1] & 0xffffff;
5544c1
+    uint64_t dest = get_address_31fix(r1);
5544c1
+    uint64_t srclen = env->regs[r2 + 1] & 0xffffff;
5544c1
+    uint64_t src = get_address_31fix(r2);
5544c1
+    uint8_t pad = src >> 24;
5544c1
+    uint8_t v;
5544c1
+    uint32_t cc;
5544c1
+
5544c1
+    if (destlen == srclen) {
5544c1
+        cc = 0;
5544c1
+    } else if (destlen < srclen) {
5544c1
+        cc = 1;
5544c1
+    } else {
5544c1
+        cc = 2;
5544c1
+    }
5544c1
+
5544c1
+    if (srclen > destlen) {
5544c1
+        srclen = destlen;
5544c1
+    }
5544c1
+
5544c1
+    for (; destlen && srclen; src++, dest++, destlen--, srclen--) {
5544c1
+        v = ldub(src);
5544c1
+        stb(dest, v);
5544c1
+    }
5544c1
+
5544c1
+    for (; destlen; dest++, destlen--) {
5544c1
+        stb(dest, pad);
5544c1
+    }
5544c1
+
5544c1
+    env->regs[r1 + 1] = destlen;
5544c1
+    /* can't use srclen here, we trunc'ed it */
5544c1
+    env->regs[r2 + 1] -= src - env->regs[r2];
5544c1
+    env->regs[r1] = dest;
5544c1
+    env->regs[r2] = src;
5544c1
+
5544c1
+    return cc;
5544c1
+}
5544c1
+
5544c1
+/* move long extended another memcopy insn with more bells and whistles */
5544c1
+uint32_t HELPER(mvcle)(uint32_t r1, uint64_t a2, uint32_t r3)
5544c1
+{
5544c1
+    uint64_t destlen = env->regs[r1 + 1];
5544c1
+    uint64_t dest = env->regs[r1];
5544c1
+    uint64_t srclen = env->regs[r3 + 1];
5544c1
+    uint64_t src = env->regs[r3];
5544c1
+    uint8_t pad = a2 & 0xff;
5544c1
+    uint8_t v;
5544c1
+    uint32_t cc;
5544c1
+
5544c1
+    if (!(env->psw.mask & PSW_MASK_64)) {
5544c1
+        destlen = (uint32_t)destlen;
5544c1
+        srclen = (uint32_t)srclen;
5544c1
+        dest &= 0x7fffffff;
5544c1
+        src &= 0x7fffffff;
5544c1
+    }
5544c1
+
5544c1
+    if (destlen == srclen) {
5544c1
+        cc = 0;
5544c1
+    } else if (destlen < srclen) {
5544c1
+        cc = 1;
5544c1
+    } else {
5544c1
+        cc = 2;
5544c1
+    }
5544c1
+
5544c1
+    if (srclen > destlen) {
5544c1
+        srclen = destlen;
5544c1
+    }
5544c1
+
5544c1
+    for (; destlen && srclen; src++, dest++, destlen--, srclen--) {
5544c1
+        v = ldub(src);
5544c1
+        stb(dest, v);
5544c1
+    }
5544c1
+
5544c1
+    for (; destlen; dest++, destlen--) {
5544c1
+        stb(dest, pad);
5544c1
+    }
5544c1
+
5544c1
+    env->regs[r1 + 1] = destlen;
5544c1
+    /* can't use srclen here, we trunc'ed it */
5544c1
+    /* FIXME: 31-bit mode! */
5544c1
+    env->regs[r3 + 1] -= src - env->regs[r3];
5544c1
+    env->regs[r1] = dest;
5544c1
+    env->regs[r3] = src;
5544c1
+
5544c1
+    return cc;
5544c1
+}
5544c1
+
5544c1
+/* compare logical long extended memcompare insn with padding */
5544c1
+uint32_t HELPER(clcle)(uint32_t r1, uint64_t a2, uint32_t r3)
5544c1
+{
5544c1
+    uint64_t destlen = env->regs[r1 + 1];
5544c1
+    uint64_t dest = get_address_31fix(r1);
5544c1
+    uint64_t srclen = env->regs[r3 + 1];
5544c1
+    uint64_t src = get_address_31fix(r3);
5544c1
+    uint8_t pad = a2 & 0xff;
5544c1
+    uint8_t v1 = 0, v2 = 0;
5544c1
+    uint32_t cc = 0;
5544c1
+
5544c1
+    if (!(destlen || srclen)) {
5544c1
+        return cc;
5544c1
+    }
5544c1
+
5544c1
+    if (srclen > destlen) {
5544c1
+        srclen = destlen;
5544c1
+    }
5544c1
+
5544c1
+    for (; destlen || srclen; src++, dest++, destlen--, srclen--) {
5544c1
+        v1 = srclen ? ldub(src) : pad;
5544c1
+        v2 = destlen ? ldub(dest) : pad;
5544c1
+        if (v1 != v2) {
5544c1
+            cc = (v1 < v2) ? 1 : 2;
5544c1
+            break;
5544c1
+        }
5544c1
+    }
5544c1
+
5544c1
+    env->regs[r1 + 1] = destlen;
5544c1
+    /* can't use srclen here, we trunc'ed it */
5544c1
+    env->regs[r3 + 1] -= src - env->regs[r3];
5544c1
+    env->regs[r1] = dest;
5544c1
+    env->regs[r3] = src;
5544c1
+
5544c1
+    return cc;
5544c1
+}
5544c1
+
5544c1
+/* checksum */
5544c1
+void HELPER(cksm)(uint32_t r1, uint32_t r2)
5544c1
+{
5544c1
+    uint64_t src = get_address_31fix(r2);
5544c1
+    uint64_t src_len = env->regs[(r2 + 1) & 15];
5544c1
+    uint64_t cksm = (uint32_t)env->regs[r1];
5544c1
+
5544c1
+    while (src_len >= 4) {
5544c1
+        cksm += ldl(src);
5544c1
+
5544c1
+        /* move to next word */
5544c1
+        src_len -= 4;
5544c1
+        src += 4;
5544c1
+    }
5544c1
+
5544c1
+    switch (src_len) {
5544c1
+    case 0:
5544c1
+        break;
5544c1
+    case 1:
5544c1
+        cksm += ldub(src) << 24;
5544c1
+        break;
5544c1
+    case 2:
5544c1
+        cksm += lduw(src) << 16;
5544c1
+        break;
5544c1
+    case 3:
5544c1
+        cksm += lduw(src) << 16;
5544c1
+        cksm += ldub(src + 2) << 8;
5544c1
+        break;
5544c1
+    }
5544c1
+
5544c1
+    /* indicate we've processed everything */
5544c1
+    env->regs[r2] = src + src_len;
5544c1
+    env->regs[(r2 + 1) & 15] = 0;
5544c1
+
5544c1
+    /* store result */
5544c1
+    env->regs[r1] = (env->regs[r1] & 0xffffffff00000000ULL) |
5544c1
+        ((uint32_t)cksm + (cksm >> 32));
5544c1
+}
5544c1
+
5544c1
+void HELPER(unpk)(uint32_t len, uint64_t dest, uint64_t src)
5544c1
+{
5544c1
+    int len_dest = len >> 4;
5544c1
+    int len_src = len & 0xf;
5544c1
+    uint8_t b;
5544c1
+    int second_nibble = 0;
5544c1
+
5544c1
+    dest += len_dest;
5544c1
+    src += len_src;
5544c1
+
5544c1
+    /* last byte is special, it only flips the nibbles */
5544c1
+    b = ldub(src);
5544c1
+    stb(dest, (b << 4) | (b >> 4));
5544c1
+    src--;
5544c1
+    len_src--;
5544c1
+
5544c1
+    /* now pad every nibble with 0xf0 */
5544c1
+
5544c1
+    while (len_dest > 0) {
5544c1
+        uint8_t cur_byte = 0;
5544c1
+
5544c1
+        if (len_src > 0) {
5544c1
+            cur_byte = ldub(src);
5544c1
+        }
5544c1
+
5544c1
+        len_dest--;
5544c1
+        dest--;
5544c1
+
5544c1
+        /* only advance one nibble at a time */
5544c1
+        if (second_nibble) {
5544c1
+            cur_byte >>= 4;
5544c1
+            len_src--;
5544c1
+            src--;
5544c1
+        }
5544c1
+        second_nibble = !second_nibble;
5544c1
+
5544c1
+        /* digit */
5544c1
+        cur_byte = (cur_byte & 0xf);
5544c1
+        /* zone bits */
5544c1
+        cur_byte |= 0xf0;
5544c1
+
5544c1
+        stb(dest, cur_byte);
5544c1
+    }
5544c1
+}
5544c1
+
5544c1
+void HELPER(tr)(uint32_t len, uint64_t array, uint64_t trans)
5544c1
+{
5544c1
+    int i;
5544c1
+
5544c1
+    for (i = 0; i <= len; i++) {
5544c1
+        uint8_t byte = ldub(array + i);
5544c1
+        uint8_t new_byte = ldub(trans + byte);
5544c1
+
5544c1
+        stb(array + i, new_byte);
5544c1
+    }
5544c1
+}
5544c1
+
5544c1
+#if !defined(CONFIG_USER_ONLY)
5544c1
+void HELPER(lctlg)(uint32_t r1, uint64_t a2, uint32_t r3)
5544c1
+{
5544c1
+    int i;
5544c1
+    uint64_t src = a2;
5544c1
+
5544c1
+    for (i = r1;; i = (i + 1) % 16) {
5544c1
+        env->cregs[i] = ldq(src);
5544c1
+        HELPER_LOG("load ctl %d from 0x%" PRIx64 " == 0x%" PRIx64 "\n",
5544c1
+                   i, src, env->cregs[i]);
5544c1
+        src += sizeof(uint64_t);
5544c1
+
5544c1
+        if (i == r3) {
5544c1
+            break;
5544c1
+        }
5544c1
+    }
5544c1
+
5544c1
+    tlb_flush(env, 1);
5544c1
+}
5544c1
+
5544c1
+void HELPER(lctl)(uint32_t r1, uint64_t a2, uint32_t r3)
5544c1
+{
5544c1
+    int i;
5544c1
+    uint64_t src = a2;
5544c1
+
5544c1
+    for (i = r1;; i = (i + 1) % 16) {
5544c1
+        env->cregs[i] = (env->cregs[i] & 0xFFFFFFFF00000000ULL) | ldl(src);
5544c1
+        src += sizeof(uint32_t);
5544c1
+
5544c1
+        if (i == r3) {
5544c1
+            break;
5544c1
+        }
5544c1
+    }
5544c1
+
5544c1
+    tlb_flush(env, 1);
5544c1
+}
5544c1
+
5544c1
+void HELPER(stctg)(uint32_t r1, uint64_t a2, uint32_t r3)
5544c1
+{
5544c1
+    int i;
5544c1
+    uint64_t dest = a2;
5544c1
+
5544c1
+    for (i = r1;; i = (i + 1) % 16) {
5544c1
+        stq(dest, env->cregs[i]);
5544c1
+        dest += sizeof(uint64_t);
5544c1
+
5544c1
+        if (i == r3) {
5544c1
+            break;
5544c1
+        }
5544c1
+    }
5544c1
+}
5544c1
+
5544c1
+void HELPER(stctl)(uint32_t r1, uint64_t a2, uint32_t r3)
5544c1
+{
5544c1
+    int i;
5544c1
+    uint64_t dest = a2;
5544c1
+
5544c1
+    for (i = r1;; i = (i + 1) % 16) {
5544c1
+        stl(dest, env->cregs[i]);
5544c1
+        dest += sizeof(uint32_t);
5544c1
+
5544c1
+        if (i == r3) {
5544c1
+            break;
5544c1
+        }
5544c1
+    }
5544c1
+}
5544c1
+
5544c1
+uint32_t HELPER(tprot)(uint64_t a1, uint64_t a2)
5544c1
+{
5544c1
+    /* XXX implement */
5544c1
+
5544c1
+    return 0;
5544c1
+}
5544c1
+
5544c1
+/* insert storage key extended */
5544c1
+uint64_t HELPER(iske)(uint64_t r2)
5544c1
+{
5544c1
+    uint64_t addr = get_address(0, 0, r2);
5544c1
+
5544c1
+    if (addr > ram_size) {
5544c1
+        return 0;
5544c1
+    }
5544c1
+
5544c1
+    return env->storage_keys[addr / TARGET_PAGE_SIZE];
5544c1
+}
5544c1
+
5544c1
+/* set storage key extended */
5544c1
+void HELPER(sske)(uint32_t r1, uint64_t r2)
5544c1
+{
5544c1
+    uint64_t addr = get_address(0, 0, r2);
5544c1
+
5544c1
+    if (addr > ram_size) {
5544c1
+        return;
5544c1
+    }
5544c1
+
5544c1
+    env->storage_keys[addr / TARGET_PAGE_SIZE] = r1;
5544c1
+}
5544c1
+
5544c1
+/* reset reference bit extended */
5544c1
+uint32_t HELPER(rrbe)(uint32_t r1, uint64_t r2)
5544c1
+{
5544c1
+    uint8_t re;
5544c1
+    uint8_t key;
5544c1
+
5544c1
+    if (r2 > ram_size) {
5544c1
+        return 0;
5544c1
+    }
5544c1
+
5544c1
+    key = env->storage_keys[r2 / TARGET_PAGE_SIZE];
5544c1
+    re = key & (SK_R | SK_C);
5544c1
+    env->storage_keys[r2 / TARGET_PAGE_SIZE] = (key & ~SK_R);
5544c1
+
5544c1
+    /*
5544c1
+     * cc
5544c1
+     *
5544c1
+     * 0  Reference bit zero; change bit zero
5544c1
+     * 1  Reference bit zero; change bit one
5544c1
+     * 2  Reference bit one; change bit zero
5544c1
+     * 3  Reference bit one; change bit one
5544c1
+     */
5544c1
+
5544c1
+    return re >> 1;
5544c1
+}
5544c1
+
5544c1
+/* compare and swap and purge */
5544c1
+uint32_t HELPER(csp)(uint32_t r1, uint32_t r2)
5544c1
+{
5544c1
+    uint32_t cc;
5544c1
+    uint32_t o1 = env->regs[r1];
5544c1
+    uint64_t a2 = get_address_31fix(r2) & ~3ULL;
5544c1
+    uint32_t o2 = ldl(a2);
5544c1
+
5544c1
+    if (o1 == o2) {
5544c1
+        stl(a2, env->regs[(r1 + 1) & 15]);
5544c1
+        if (env->regs[r2] & 0x3) {
5544c1
+            /* flush TLB / ALB */
5544c1
+            tlb_flush(env, 1);
5544c1
+        }
5544c1
+        cc = 0;
5544c1
+    } else {
5544c1
+        env->regs[r1] = (env->regs[r1] & 0xffffffff00000000ULL) | o2;
5544c1
+        cc = 1;
5544c1
+    }
5544c1
+
5544c1
+    return cc;
5544c1
+}
5544c1
+
5544c1
+static uint32_t mvc_asc(int64_t l, uint64_t a1, uint64_t mode1, uint64_t a2,
5544c1
+                        uint64_t mode2)
5544c1
+{
5544c1
+    target_ulong src, dest;
5544c1
+    int flags, cc = 0, i;
5544c1
+
5544c1
+    if (!l) {
5544c1
+        return 0;
5544c1
+    } else if (l > 256) {
5544c1
+        /* max 256 */
5544c1
+        l = 256;
5544c1
+        cc = 3;
5544c1
+    }
5544c1
+
5544c1
+    if (mmu_translate(env, a1 & TARGET_PAGE_MASK, 1, mode1, &dest, &flags)) {
5544c1
+        cpu_loop_exit(env);
5544c1
+    }
5544c1
+    dest |= a1 & ~TARGET_PAGE_MASK;
5544c1
+
5544c1
+    if (mmu_translate(env, a2 & TARGET_PAGE_MASK, 0, mode2, &src, &flags)) {
5544c1
+        cpu_loop_exit(env);
5544c1
+    }
5544c1
+    src |= a2 & ~TARGET_PAGE_MASK;
5544c1
+
5544c1
+    /* XXX replace w/ memcpy */
5544c1
+    for (i = 0; i < l; i++) {
5544c1
+        /* XXX be more clever */
5544c1
+        if ((((dest + i) & TARGET_PAGE_MASK) != (dest & TARGET_PAGE_MASK)) ||
5544c1
+            (((src + i) & TARGET_PAGE_MASK) != (src & TARGET_PAGE_MASK))) {
5544c1
+            mvc_asc(l - i, a1 + i, mode1, a2 + i, mode2);
5544c1
+            break;
5544c1
+        }
5544c1
+        stb_phys(dest + i, ldub_phys(src + i));
5544c1
+    }
5544c1
+
5544c1
+    return cc;
5544c1
+}
5544c1
+
5544c1
+uint32_t HELPER(mvcs)(uint64_t l, uint64_t a1, uint64_t a2)
5544c1
+{
5544c1
+    HELPER_LOG("%s: %16" PRIx64 " %16" PRIx64 " %16" PRIx64 "\n",
5544c1
+               __func__, l, a1, a2);
5544c1
+
5544c1
+    return mvc_asc(l, a1, PSW_ASC_SECONDARY, a2, PSW_ASC_PRIMARY);
5544c1
+}
5544c1
+
5544c1
+uint32_t HELPER(mvcp)(uint64_t l, uint64_t a1, uint64_t a2)
5544c1
+{
5544c1
+    HELPER_LOG("%s: %16" PRIx64 " %16" PRIx64 " %16" PRIx64 "\n",
5544c1
+               __func__, l, a1, a2);
5544c1
+
5544c1
+    return mvc_asc(l, a1, PSW_ASC_PRIMARY, a2, PSW_ASC_SECONDARY);
5544c1
+}
5544c1
+
5544c1
+/* invalidate pte */
5544c1
+void HELPER(ipte)(uint64_t pte_addr, uint64_t vaddr)
5544c1
+{
5544c1
+    uint64_t page = vaddr & TARGET_PAGE_MASK;
5544c1
+    uint64_t pte = 0;
5544c1
+
5544c1
+    /* XXX broadcast to other CPUs */
5544c1
+
5544c1
+    /* XXX Linux is nice enough to give us the exact pte address.
5544c1
+       According to spec we'd have to find it out ourselves */
5544c1
+    /* XXX Linux is fine with overwriting the pte, the spec requires
5544c1
+       us to only set the invalid bit */
5544c1
+    stq_phys(pte_addr, pte | _PAGE_INVALID);
5544c1
+
5544c1
+    /* XXX we exploit the fact that Linux passes the exact virtual
5544c1
+       address here - it's not obliged to! */
5544c1
+    tlb_flush_page(env, page);
5544c1
+
5544c1
+    /* XXX 31-bit hack */
5544c1
+    if (page & 0x80000000) {
5544c1
+        tlb_flush_page(env, page & ~0x80000000);
5544c1
+    } else {
5544c1
+        tlb_flush_page(env, page | 0x80000000);
5544c1
+    }
5544c1
+}
5544c1
+
5544c1
+/* flush local tlb */
5544c1
+void HELPER(ptlb)(void)
5544c1
+{
5544c1
+    tlb_flush(env, 1);
5544c1
+}
5544c1
+
5544c1
+/* store using real address */
5544c1
+void HELPER(stura)(uint64_t addr, uint32_t v1)
5544c1
+{
5544c1
+    stw_phys(get_address(0, 0, addr), v1);
5544c1
+}
5544c1
+
5544c1
+/* load real address */
5544c1
+uint32_t HELPER(lra)(uint64_t addr, uint32_t r1)
5544c1
+{
5544c1
+    uint32_t cc = 0;
5544c1
+    int old_exc = env->exception_index;
5544c1
+    uint64_t asc = env->psw.mask & PSW_MASK_ASC;
5544c1
+    uint64_t ret;
5544c1
+    int flags;
5544c1
+
5544c1
+    /* XXX incomplete - has more corner cases */
5544c1
+    if (!(env->psw.mask & PSW_MASK_64) && (addr >> 32)) {
5544c1
+        program_interrupt(env, PGM_SPECIAL_OP, 2);
5544c1
+    }
5544c1
+
5544c1
+    env->exception_index = old_exc;
5544c1
+    if (mmu_translate(env, addr, 0, asc, &ret, &flags)) {
5544c1
+        cc = 3;
5544c1
+    }
5544c1
+    if (env->exception_index == EXCP_PGM) {
5544c1
+        ret = env->int_pgm_code | 0x80000000;
5544c1
+    } else {
5544c1
+        ret |= addr & ~TARGET_PAGE_MASK;
5544c1
+    }
5544c1
+    env->exception_index = old_exc;
5544c1
+
5544c1
+    if (!(env->psw.mask & PSW_MASK_64)) {
5544c1
+        env->regs[r1] = (env->regs[r1] & 0xffffffff00000000ULL) |
5544c1
+            (ret & 0xffffffffULL);
5544c1
+    } else {
5544c1
+        env->regs[r1] = ret;
5544c1
+    }
5544c1
+
5544c1
+    return cc;
5544c1
+}
5544c1
+
5544c1
+#endif
5544c1
diff --git a/target-s390x/op_helper.c b/target-s390x/op_helper.c
5544c1
index 3b8b997..bb8dbf5 100644
5544c1
--- a/target-s390x/op_helper.c
5544c1
+++ b/target-s390x/op_helper.c
5544c1
@@ -32,57 +32,8 @@
5544c1
 #endif
5544c1
 
5544c1
 #if !defined(CONFIG_USER_ONLY)
5544c1
-#include "sysemu.h"
5544c1
-#endif
5544c1
-
5544c1
-/*****************************************************************************/
5544c1
-/* Softmmu support */
5544c1
-#if !defined(CONFIG_USER_ONLY)
5544c1
 #include "softmmu_exec.h"
5544c1
-
5544c1
-#define MMUSUFFIX _mmu
5544c1
-
5544c1
-#define SHIFT 0
5544c1
-#include "softmmu_template.h"
5544c1
-
5544c1
-#define SHIFT 1
5544c1
-#include "softmmu_template.h"
5544c1
-
5544c1
-#define SHIFT 2
5544c1
-#include "softmmu_template.h"
5544c1
-
5544c1
-#define SHIFT 3
5544c1
-#include "softmmu_template.h"
5544c1
-
5544c1
-/* try to fill the TLB and return an exception if error. If retaddr is
5544c1
-   NULL, it means that the function was called in C code (i.e. not
5544c1
-   from generated code or from helper.c) */
5544c1
-/* XXX: fix it to restore all registers */
5544c1
-void tlb_fill(CPUS390XState *env1, target_ulong addr, int is_write, int mmu_idx,
5544c1
-              uintptr_t retaddr)
5544c1
-{
5544c1
-    TranslationBlock *tb;
5544c1
-    CPUS390XState *saved_env;
5544c1
-    int ret;
5544c1
-
5544c1
-    saved_env = env;
5544c1
-    env = env1;
5544c1
-    ret = cpu_s390x_handle_mmu_fault(env, addr, is_write, mmu_idx);
5544c1
-    if (unlikely(ret != 0)) {
5544c1
-        if (likely(retaddr)) {
5544c1
-            /* now we have a real cpu fault */
5544c1
-            tb = tb_find_pc(retaddr);
5544c1
-            if (likely(tb)) {
5544c1
-                /* the PC is inside the translated code. It means that we have
5544c1
-                   a virtual CPU fault */
5544c1
-                cpu_restore_state(tb, env, retaddr);
5544c1
-            }
5544c1
-        }
5544c1
-        cpu_loop_exit(env);
5544c1
-    }
5544c1
-    env = saved_env;
5544c1
-}
5544c1
-
5544c1
+#include "sysemu.h"
5544c1
 #endif
5544c1
 
5544c1
 /* #define DEBUG_HELPER */
5544c1
@@ -101,840 +52,6 @@ void HELPER(exception)(uint32_t excp)
5544c1
 }
5544c1
 
5544c1
 #ifndef CONFIG_USER_ONLY
5544c1
-static void mvc_fast_memset(CPUS390XState *env, uint32_t l, uint64_t dest,
5544c1
-                            uint8_t byte)
5544c1
-{
5544c1
-    target_phys_addr_t dest_phys;
5544c1
-    target_phys_addr_t len = l;
5544c1
-    void *dest_p;
5544c1
-    uint64_t asc = env->psw.mask & PSW_MASK_ASC;
5544c1
-    int flags;
5544c1
-
5544c1
-    if (mmu_translate(env, dest, 1, asc, &dest_phys, &flags)) {
5544c1
-        stb(dest, byte);
5544c1
-        cpu_abort(env, "should never reach here");
5544c1
-    }
5544c1
-    dest_phys |= dest & ~TARGET_PAGE_MASK;
5544c1
-
5544c1
-    dest_p = cpu_physical_memory_map(dest_phys, &len, 1);
5544c1
-
5544c1
-    memset(dest_p, byte, len);
5544c1
-
5544c1
-    cpu_physical_memory_unmap(dest_p, 1, len, len);
5544c1
-}
5544c1
-
5544c1
-static void mvc_fast_memmove(CPUS390XState *env, uint32_t l, uint64_t dest,
5544c1
-                             uint64_t src)
5544c1
-{
5544c1
-    target_phys_addr_t dest_phys;
5544c1
-    target_phys_addr_t src_phys;
5544c1
-    target_phys_addr_t len = l;
5544c1
-    void *dest_p;
5544c1
-    void *src_p;
5544c1
-    uint64_t asc = env->psw.mask & PSW_MASK_ASC;
5544c1
-    int flags;
5544c1
-
5544c1
-    if (mmu_translate(env, dest, 1, asc, &dest_phys, &flags)) {
5544c1
-        stb(dest, 0);
5544c1
-        cpu_abort(env, "should never reach here");
5544c1
-    }
5544c1
-    dest_phys |= dest & ~TARGET_PAGE_MASK;
5544c1
-
5544c1
-    if (mmu_translate(env, src, 0, asc, &src_phys, &flags)) {
5544c1
-        ldub(src);
5544c1
-        cpu_abort(env, "should never reach here");
5544c1
-    }
5544c1
-    src_phys |= src & ~TARGET_PAGE_MASK;
5544c1
-
5544c1
-    dest_p = cpu_physical_memory_map(dest_phys, &len, 1);
5544c1
-    src_p = cpu_physical_memory_map(src_phys, &len, 0);
5544c1
-
5544c1
-    memmove(dest_p, src_p, len);
5544c1
-
5544c1
-    cpu_physical_memory_unmap(dest_p, 1, len, len);
5544c1
-    cpu_physical_memory_unmap(src_p, 0, len, len);
5544c1
-}
5544c1
-#endif
5544c1
-
5544c1
-/* and on array */
5544c1
-uint32_t HELPER(nc)(uint32_t l, uint64_t dest, uint64_t src)
5544c1
-{
5544c1
-    int i;
5544c1
-    unsigned char x;
5544c1
-    uint32_t cc = 0;
5544c1
-
5544c1
-    HELPER_LOG("%s l %d dest %" PRIx64 " src %" PRIx64 "\n",
5544c1
-               __func__, l, dest, src);
5544c1
-    for (i = 0; i <= l; i++) {
5544c1
-        x = ldub(dest + i) & ldub(src + i);
5544c1
-        if (x) {
5544c1
-            cc = 1;
5544c1
-        }
5544c1
-        stb(dest + i, x);
5544c1
-    }
5544c1
-    return cc;
5544c1
-}
5544c1
-
5544c1
-/* xor on array */
5544c1
-uint32_t HELPER(xc)(uint32_t l, uint64_t dest, uint64_t src)
5544c1
-{
5544c1
-    int i;
5544c1
-    unsigned char x;
5544c1
-    uint32_t cc = 0;
5544c1
-
5544c1
-    HELPER_LOG("%s l %d dest %" PRIx64 " src %" PRIx64 "\n",
5544c1
-               __func__, l, dest, src);
5544c1
-
5544c1
-#ifndef CONFIG_USER_ONLY
5544c1
-    /* xor with itself is the same as memset(0) */
5544c1
-    if ((l > 32) && (src == dest) &&
5544c1
-        (src & TARGET_PAGE_MASK) == ((src + l) & TARGET_PAGE_MASK)) {
5544c1
-        mvc_fast_memset(env, l + 1, dest, 0);
5544c1
-        return 0;
5544c1
-    }
5544c1
-#else
5544c1
-    if (src == dest) {
5544c1
-        memset(g2h(dest), 0, l + 1);
5544c1
-        return 0;
5544c1
-    }
5544c1
-#endif
5544c1
-
5544c1
-    for (i = 0; i <= l; i++) {
5544c1
-        x = ldub(dest + i) ^ ldub(src + i);
5544c1
-        if (x) {
5544c1
-            cc = 1;
5544c1
-        }
5544c1
-        stb(dest + i, x);
5544c1
-    }
5544c1
-    return cc;
5544c1
-}
5544c1
-
5544c1
-/* or on array */
5544c1
-uint32_t HELPER(oc)(uint32_t l, uint64_t dest, uint64_t src)
5544c1
-{
5544c1
-    int i;
5544c1
-    unsigned char x;
5544c1
-    uint32_t cc = 0;
5544c1
-
5544c1
-    HELPER_LOG("%s l %d dest %" PRIx64 " src %" PRIx64 "\n",
5544c1
-               __func__, l, dest, src);
5544c1
-    for (i = 0; i <= l; i++) {
5544c1
-        x = ldub(dest + i) | ldub(src + i);
5544c1
-        if (x) {
5544c1
-            cc = 1;
5544c1
-        }
5544c1
-        stb(dest + i, x);
5544c1
-    }
5544c1
-    return cc;
5544c1
-}
5544c1
-
5544c1
-/* memmove */
5544c1
-void HELPER(mvc)(uint32_t l, uint64_t dest, uint64_t src)
5544c1
-{
5544c1
-    int i = 0;
5544c1
-    int x = 0;
5544c1
-    uint32_t l_64 = (l + 1) / 8;
5544c1
-
5544c1
-    HELPER_LOG("%s l %d dest %" PRIx64 " src %" PRIx64 "\n",
5544c1
-               __func__, l, dest, src);
5544c1
-
5544c1
-#ifndef CONFIG_USER_ONLY
5544c1
-    if ((l > 32) &&
5544c1
-        (src & TARGET_PAGE_MASK) == ((src + l) & TARGET_PAGE_MASK) &&
5544c1
-        (dest & TARGET_PAGE_MASK) == ((dest + l) & TARGET_PAGE_MASK)) {
5544c1
-        if (dest == (src + 1)) {
5544c1
-            mvc_fast_memset(env, l + 1, dest, ldub(src));
5544c1
-            return;
5544c1
-        } else if ((src & TARGET_PAGE_MASK) != (dest & TARGET_PAGE_MASK)) {
5544c1
-            mvc_fast_memmove(env, l + 1, dest, src);
5544c1
-            return;
5544c1
-        }
5544c1
-    }
5544c1
-#else
5544c1
-    if (dest == (src + 1)) {
5544c1
-        memset(g2h(dest), ldub(src), l + 1);
5544c1
-        return;
5544c1
-    } else {
5544c1
-        memmove(g2h(dest), g2h(src), l + 1);
5544c1
-        return;
5544c1
-    }
5544c1
-#endif
5544c1
-
5544c1
-    /* handle the parts that fit into 8-byte loads/stores */
5544c1
-    if (dest != (src + 1)) {
5544c1
-        for (i = 0; i < l_64; i++) {
5544c1
-            stq(dest + x, ldq(src + x));
5544c1
-            x += 8;
5544c1
-        }
5544c1
-    }
5544c1
-
5544c1
-    /* slow version crossing pages with byte accesses */
5544c1
-    for (i = x; i <= l; i++) {
5544c1
-        stb(dest + i, ldub(src + i));
5544c1
-    }
5544c1
-}
5544c1
-
5544c1
-/* compare unsigned byte arrays */
5544c1
-uint32_t HELPER(clc)(uint32_t l, uint64_t s1, uint64_t s2)
5544c1
-{
5544c1
-    int i;
5544c1
-    unsigned char x, y;
5544c1
-    uint32_t cc;
5544c1
-
5544c1
-    HELPER_LOG("%s l %d s1 %" PRIx64 " s2 %" PRIx64 "\n",
5544c1
-               __func__, l, s1, s2);
5544c1
-    for (i = 0; i <= l; i++) {
5544c1
-        x = ldub(s1 + i);
5544c1
-        y = ldub(s2 + i);
5544c1
-        HELPER_LOG("%02x (%c)/%02x (%c) ", x, x, y, y);
5544c1
-        if (x < y) {
5544c1
-            cc = 1;
5544c1
-            goto done;
5544c1
-        } else if (x > y) {
5544c1
-            cc = 2;
5544c1
-            goto done;
5544c1
-        }
5544c1
-    }
5544c1
-    cc = 0;
5544c1
- done:
5544c1
-    HELPER_LOG("\n");
5544c1
-    return cc;
5544c1
-}
5544c1
-
5544c1
-/* compare logical under mask */
5544c1
-uint32_t HELPER(clm)(uint32_t r1, uint32_t mask, uint64_t addr)
5544c1
-{
5544c1
-    uint8_t r, d;
5544c1
-    uint32_t cc;
5544c1
-
5544c1
-    HELPER_LOG("%s: r1 0x%x mask 0x%x addr 0x%" PRIx64 "\n", __func__, r1,
5544c1
-               mask, addr);
5544c1
-    cc = 0;
5544c1
-    while (mask) {
5544c1
-        if (mask & 8) {
5544c1
-            d = ldub(addr);
5544c1
-            r = (r1 & 0xff000000UL) >> 24;
5544c1
-            HELPER_LOG("mask 0x%x %02x/%02x (0x%" PRIx64 ") ", mask, r, d,
5544c1
-                       addr);
5544c1
-            if (r < d) {
5544c1
-                cc = 1;
5544c1
-                break;
5544c1
-            } else if (r > d) {
5544c1
-                cc = 2;
5544c1
-                break;
5544c1
-            }
5544c1
-            addr++;
5544c1
-        }
5544c1
-        mask = (mask << 1) & 0xf;
5544c1
-        r1 <<= 8;
5544c1
-    }
5544c1
-    HELPER_LOG("\n");
5544c1
-    return cc;
5544c1
-}
5544c1
-
5544c1
-/* store character under mask */
5544c1
-void HELPER(stcm)(uint32_t r1, uint32_t mask, uint64_t addr)
5544c1
-{
5544c1
-    uint8_t r;
5544c1
-
5544c1
-    HELPER_LOG("%s: r1 0x%x mask 0x%x addr 0x%lx\n", __func__, r1, mask,
5544c1
-               addr);
5544c1
-    while (mask) {
5544c1
-        if (mask & 8) {
5544c1
-            r = (r1 & 0xff000000UL) >> 24;
5544c1
-            stb(addr, r);
5544c1
-            HELPER_LOG("mask 0x%x %02x (0x%lx) ", mask, r, addr);
5544c1
-            addr++;
5544c1
-        }
5544c1
-        mask = (mask << 1) & 0xf;
5544c1
-        r1 <<= 8;
5544c1
-    }
5544c1
-    HELPER_LOG("\n");
5544c1
-}
5544c1
-
5544c1
-static inline uint64_t get_address(int x2, int b2, int d2)
5544c1
-{
5544c1
-    uint64_t r = d2;
5544c1
-
5544c1
-    if (x2) {
5544c1
-        r += env->regs[x2];
5544c1
-    }
5544c1
-
5544c1
-    if (b2) {
5544c1
-        r += env->regs[b2];
5544c1
-    }
5544c1
-
5544c1
-    /* 31-Bit mode */
5544c1
-    if (!(env->psw.mask & PSW_MASK_64)) {
5544c1
-        r &= 0x7fffffff;
5544c1
-    }
5544c1
-
5544c1
-    return r;
5544c1
-}
5544c1
-
5544c1
-static inline uint64_t get_address_31fix(int reg)
5544c1
-{
5544c1
-    uint64_t r = env->regs[reg];
5544c1
-
5544c1
-    /* 31-Bit mode */
5544c1
-    if (!(env->psw.mask & PSW_MASK_64)) {
5544c1
-        r &= 0x7fffffff;
5544c1
-    }
5544c1
-
5544c1
-    return r;
5544c1
-}
5544c1
-
5544c1
-/* search string (c is byte to search, r2 is string, r1 end of string) */
5544c1
-uint32_t HELPER(srst)(uint32_t c, uint32_t r1, uint32_t r2)
5544c1
-{
5544c1
-    uint64_t i;
5544c1
-    uint32_t cc = 2;
5544c1
-    uint64_t str = get_address_31fix(r2);
5544c1
-    uint64_t end = get_address_31fix(r1);
5544c1
-
5544c1
-    HELPER_LOG("%s: c %d *r1 0x%" PRIx64 " *r2 0x%" PRIx64 "\n", __func__,
5544c1
-               c, env->regs[r1], env->regs[r2]);
5544c1
-
5544c1
-    for (i = str; i != end; i++) {
5544c1
-        if (ldub(i) == c) {
5544c1
-            env->regs[r1] = i;
5544c1
-            cc = 1;
5544c1
-            break;
5544c1
-        }
5544c1
-    }
5544c1
-
5544c1
-    return cc;
5544c1
-}
5544c1
-
5544c1
-/* unsigned string compare (c is string terminator) */
5544c1
-uint32_t HELPER(clst)(uint32_t c, uint32_t r1, uint32_t r2)
5544c1
-{
5544c1
-    uint64_t s1 = get_address_31fix(r1);
5544c1
-    uint64_t s2 = get_address_31fix(r2);
5544c1
-    uint8_t v1, v2;
5544c1
-    uint32_t cc;
5544c1
-
5544c1
-    c = c & 0xff;
5544c1
-#ifdef CONFIG_USER_ONLY
5544c1
-    if (!c) {
5544c1
-        HELPER_LOG("%s: comparing '%s' and '%s'\n",
5544c1
-                   __func__, (char *)g2h(s1), (char *)g2h(s2));
5544c1
-    }
5544c1
-#endif
5544c1
-    for (;;) {
5544c1
-        v1 = ldub(s1);
5544c1
-        v2 = ldub(s2);
5544c1
-        if ((v1 == c || v2 == c) || (v1 != v2)) {
5544c1
-            break;
5544c1
-        }
5544c1
-        s1++;
5544c1
-        s2++;
5544c1
-    }
5544c1
-
5544c1
-    if (v1 == v2) {
5544c1
-        cc = 0;
5544c1
-    } else {
5544c1
-        cc = (v1 < v2) ? 1 : 2;
5544c1
-        /* FIXME: 31-bit mode! */
5544c1
-        env->regs[r1] = s1;
5544c1
-        env->regs[r2] = s2;
5544c1
-    }
5544c1
-    return cc;
5544c1
-}
5544c1
-
5544c1
-/* move page */
5544c1
-void HELPER(mvpg)(uint64_t r0, uint64_t r1, uint64_t r2)
5544c1
-{
5544c1
-    /* XXX missing r0 handling */
5544c1
-#ifdef CONFIG_USER_ONLY
5544c1
-    int i;
5544c1
-
5544c1
-    for (i = 0; i < TARGET_PAGE_SIZE; i++) {
5544c1
-        stb(r1 + i, ldub(r2 + i));
5544c1
-    }
5544c1
-#else
5544c1
-    mvc_fast_memmove(env, TARGET_PAGE_SIZE, r1, r2);
5544c1
-#endif
5544c1
-}
5544c1
-
5544c1
-/* string copy (c is string terminator) */
5544c1
-void HELPER(mvst)(uint32_t c, uint32_t r1, uint32_t r2)
5544c1
-{
5544c1
-    uint64_t dest = get_address_31fix(r1);
5544c1
-    uint64_t src = get_address_31fix(r2);
5544c1
-    uint8_t v;
5544c1
-
5544c1
-    c = c & 0xff;
5544c1
-#ifdef CONFIG_USER_ONLY
5544c1
-    if (!c) {
5544c1
-        HELPER_LOG("%s: copy '%s' to 0x%lx\n", __func__, (char *)g2h(src),
5544c1
-                   dest);
5544c1
-    }
5544c1
-#endif
5544c1
-    for (;;) {
5544c1
-        v = ldub(src);
5544c1
-        stb(dest, v);
5544c1
-        if (v == c) {
5544c1
-            break;
5544c1
-        }
5544c1
-        src++;
5544c1
-        dest++;
5544c1
-    }
5544c1
-    env->regs[r1] = dest; /* FIXME: 31-bit mode! */
5544c1
-}
5544c1
-
5544c1
-/* compare and swap 64-bit */
5544c1
-uint32_t HELPER(csg)(uint32_t r1, uint64_t a2, uint32_t r3)
5544c1
-{
5544c1
-    /* FIXME: locking? */
5544c1
-    uint32_t cc;
5544c1
-    uint64_t v2 = ldq(a2);
5544c1
-
5544c1
-    if (env->regs[r1] == v2) {
5544c1
-        cc = 0;
5544c1
-        stq(a2, env->regs[r3]);
5544c1
-    } else {
5544c1
-        cc = 1;
5544c1
-        env->regs[r1] = v2;
5544c1
-    }
5544c1
-    return cc;
5544c1
-}
5544c1
-
5544c1
-/* compare double and swap 64-bit */
5544c1
-uint32_t HELPER(cdsg)(uint32_t r1, uint64_t a2, uint32_t r3)
5544c1
-{
5544c1
-    /* FIXME: locking? */
5544c1
-    uint32_t cc;
5544c1
-    uint64_t v2_hi = ldq(a2);
5544c1
-    uint64_t v2_lo = ldq(a2 + 8);
5544c1
-    uint64_t v1_hi = env->regs[r1];
5544c1
-    uint64_t v1_lo = env->regs[r1 + 1];
5544c1
-
5544c1
-    if ((v1_hi == v2_hi) && (v1_lo == v2_lo)) {
5544c1
-        cc = 0;
5544c1
-        stq(a2, env->regs[r3]);
5544c1
-        stq(a2 + 8, env->regs[r3 + 1]);
5544c1
-    } else {
5544c1
-        cc = 1;
5544c1
-        env->regs[r1] = v2_hi;
5544c1
-        env->regs[r1 + 1] = v2_lo;
5544c1
-    }
5544c1
-
5544c1
-    return cc;
5544c1
-}
5544c1
-
5544c1
-/* compare and swap 32-bit */
5544c1
-uint32_t HELPER(cs)(uint32_t r1, uint64_t a2, uint32_t r3)
5544c1
-{
5544c1
-    /* FIXME: locking? */
5544c1
-    uint32_t cc;
5544c1
-    uint32_t v2 = ldl(a2);
5544c1
-
5544c1
-    HELPER_LOG("%s: r1 %d a2 0x%lx r3 %d\n", __func__, r1, a2, r3);
5544c1
-    if (((uint32_t)env->regs[r1]) == v2) {
5544c1
-        cc = 0;
5544c1
-        stl(a2, (uint32_t)env->regs[r3]);
5544c1
-    } else {
5544c1
-        cc = 1;
5544c1
-        env->regs[r1] = (env->regs[r1] & 0xffffffff00000000ULL) | v2;
5544c1
-    }
5544c1
-    return cc;
5544c1
-}
5544c1
-
5544c1
-static uint32_t helper_icm(uint32_t r1, uint64_t address, uint32_t mask)
5544c1
-{
5544c1
-    int pos = 24; /* top of the lower half of r1 */
5544c1
-    uint64_t rmask = 0xff000000ULL;
5544c1
-    uint8_t val = 0;
5544c1
-    int ccd = 0;
5544c1
-    uint32_t cc = 0;
5544c1
-
5544c1
-    while (mask) {
5544c1
-        if (mask & 8) {
5544c1
-            env->regs[r1] &= ~rmask;
5544c1
-            val = ldub(address);
5544c1
-            if ((val & 0x80) && !ccd) {
5544c1
-                cc = 1;
5544c1
-            }
5544c1
-            ccd = 1;
5544c1
-            if (val && cc == 0) {
5544c1
-                cc = 2;
5544c1
-            }
5544c1
-            env->regs[r1] |= (uint64_t)val << pos;
5544c1
-            address++;
5544c1
-        }
5544c1
-        mask = (mask << 1) & 0xf;
5544c1
-        pos -= 8;
5544c1
-        rmask >>= 8;
5544c1
-    }
5544c1
-
5544c1
-    return cc;
5544c1
-}
5544c1
-
5544c1
-/* execute instruction
5544c1
-   this instruction executes an insn modified with the contents of r1
5544c1
-   it does not change the executed instruction in memory
5544c1
-   it does not change the program counter
5544c1
-   in other words: tricky...
5544c1
-   currently implemented by interpreting the cases it is most commonly used in
5544c1
-*/
5544c1
-uint32_t HELPER(ex)(uint32_t cc, uint64_t v1, uint64_t addr, uint64_t ret)
5544c1
-{
5544c1
-    uint16_t insn = lduw_code(addr);
5544c1
-
5544c1
-    HELPER_LOG("%s: v1 0x%lx addr 0x%lx insn 0x%x\n", __func__, v1, addr,
5544c1
-               insn);
5544c1
-    if ((insn & 0xf0ff) == 0xd000) {
5544c1
-        uint32_t l, insn2, b1, b2, d1, d2;
5544c1
-
5544c1
-        l = v1 & 0xff;
5544c1
-        insn2 = ldl_code(addr + 2);
5544c1
-        b1 = (insn2 >> 28) & 0xf;
5544c1
-        b2 = (insn2 >> 12) & 0xf;
5544c1
-        d1 = (insn2 >> 16) & 0xfff;
5544c1
-        d2 = insn2 & 0xfff;
5544c1
-        switch (insn & 0xf00) {
5544c1
-        case 0x200:
5544c1
-            helper_mvc(l, get_address(0, b1, d1), get_address(0, b2, d2));
5544c1
-            break;
5544c1
-        case 0x500:
5544c1
-            cc = helper_clc(l, get_address(0, b1, d1), get_address(0, b2, d2));
5544c1
-            break;
5544c1
-        case 0x700:
5544c1
-            cc = helper_xc(l, get_address(0, b1, d1), get_address(0, b2, d2));
5544c1
-            break;
5544c1
-        case 0xc00:
5544c1
-            helper_tr(l, get_address(0, b1, d1), get_address(0, b2, d2));
5544c1
-            break;
5544c1
-        default:
5544c1
-            goto abort;
5544c1
-            break;
5544c1
-        }
5544c1
-    } else if ((insn & 0xff00) == 0x0a00) {
5544c1
-        /* supervisor call */
5544c1
-        HELPER_LOG("%s: svc %ld via execute\n", __func__, (insn | v1) & 0xff);
5544c1
-        env->psw.addr = ret - 4;
5544c1
-        env->int_svc_code = (insn | v1) & 0xff;
5544c1
-        env->int_svc_ilc = 4;
5544c1
-        helper_exception(EXCP_SVC);
5544c1
-    } else if ((insn & 0xff00) == 0xbf00) {
5544c1
-        uint32_t insn2, r1, r3, b2, d2;
5544c1
-
5544c1
-        insn2 = ldl_code(addr + 2);
5544c1
-        r1 = (insn2 >> 20) & 0xf;
5544c1
-        r3 = (insn2 >> 16) & 0xf;
5544c1
-        b2 = (insn2 >> 12) & 0xf;
5544c1
-        d2 = insn2 & 0xfff;
5544c1
-        cc = helper_icm(r1, get_address(0, b2, d2), r3);
5544c1
-    } else {
5544c1
-    abort:
5544c1
-        cpu_abort(env, "EXECUTE on instruction prefix 0x%x not implemented\n",
5544c1
-                  insn);
5544c1
-    }
5544c1
-    return cc;
5544c1
-}
5544c1
-
5544c1
-/* store character under mask high operates on the upper half of r1 */
5544c1
-void HELPER(stcmh)(uint32_t r1, uint64_t address, uint32_t mask)
5544c1
-{
5544c1
-    int pos = 56; /* top of the upper half of r1 */
5544c1
-
5544c1
-    while (mask) {
5544c1
-        if (mask & 8) {
5544c1
-            stb(address, (env->regs[r1] >> pos) & 0xff);
5544c1
-            address++;
5544c1
-        }
5544c1
-        mask = (mask << 1) & 0xf;
5544c1
-        pos -= 8;
5544c1
-    }
5544c1
-}
5544c1
-
5544c1
-/* insert character under mask high; same as icm, but operates on the
5544c1
-   upper half of r1 */
5544c1
-uint32_t HELPER(icmh)(uint32_t r1, uint64_t address, uint32_t mask)
5544c1
-{
5544c1
-    int pos = 56; /* top of the upper half of r1 */
5544c1
-    uint64_t rmask = 0xff00000000000000ULL;
5544c1
-    uint8_t val = 0;
5544c1
-    int ccd = 0;
5544c1
-    uint32_t cc = 0;
5544c1
-
5544c1
-    while (mask) {
5544c1
-        if (mask & 8) {
5544c1
-            env->regs[r1] &= ~rmask;
5544c1
-            val = ldub(address);
5544c1
-            if ((val & 0x80) && !ccd) {
5544c1
-                cc = 1;
5544c1
-            }
5544c1
-            ccd = 1;
5544c1
-            if (val && cc == 0) {
5544c1
-                cc = 2;
5544c1
-            }
5544c1
-            env->regs[r1] |= (uint64_t)val << pos;
5544c1
-            address++;
5544c1
-        }
5544c1
-        mask = (mask << 1) & 0xf;
5544c1
-        pos -= 8;
5544c1
-        rmask >>= 8;
5544c1
-    }
5544c1
-
5544c1
-    return cc;
5544c1
-}
5544c1
-
5544c1
-/* load access registers r1 to r3 from memory at a2 */
5544c1
-void HELPER(lam)(uint32_t r1, uint64_t a2, uint32_t r3)
5544c1
-{
5544c1
-    int i;
5544c1
-
5544c1
-    for (i = r1;; i = (i + 1) % 16) {
5544c1
-        env->aregs[i] = ldl(a2);
5544c1
-        a2 += 4;
5544c1
-
5544c1
-        if (i == r3) {
5544c1
-            break;
5544c1
-        }
5544c1
-    }
5544c1
-}
5544c1
-
5544c1
-/* store access registers r1 to r3 in memory at a2 */
5544c1
-void HELPER(stam)(uint32_t r1, uint64_t a2, uint32_t r3)
5544c1
-{
5544c1
-    int i;
5544c1
-
5544c1
-    for (i = r1;; i = (i + 1) % 16) {
5544c1
-        stl(a2, env->aregs[i]);
5544c1
-        a2 += 4;
5544c1
-
5544c1
-        if (i == r3) {
5544c1
-            break;
5544c1
-        }
5544c1
-    }
5544c1
-}
5544c1
-
5544c1
-/* move long */
5544c1
-uint32_t HELPER(mvcl)(uint32_t r1, uint32_t r2)
5544c1
-{
5544c1
-    uint64_t destlen = env->regs[r1 + 1] & 0xffffff;
5544c1
-    uint64_t dest = get_address_31fix(r1);
5544c1
-    uint64_t srclen = env->regs[r2 + 1] & 0xffffff;
5544c1
-    uint64_t src = get_address_31fix(r2);
5544c1
-    uint8_t pad = src >> 24;
5544c1
-    uint8_t v;
5544c1
-    uint32_t cc;
5544c1
-
5544c1
-    if (destlen == srclen) {
5544c1
-        cc = 0;
5544c1
-    } else if (destlen < srclen) {
5544c1
-        cc = 1;
5544c1
-    } else {
5544c1
-        cc = 2;
5544c1
-    }
5544c1
-
5544c1
-    if (srclen > destlen) {
5544c1
-        srclen = destlen;
5544c1
-    }
5544c1
-
5544c1
-    for (; destlen && srclen; src++, dest++, destlen--, srclen--) {
5544c1
-        v = ldub(src);
5544c1
-        stb(dest, v);
5544c1
-    }
5544c1
-
5544c1
-    for (; destlen; dest++, destlen--) {
5544c1
-        stb(dest, pad);
5544c1
-    }
5544c1
-
5544c1
-    env->regs[r1 + 1] = destlen;
5544c1
-    /* can't use srclen here, we trunc'ed it */
5544c1
-    env->regs[r2 + 1] -= src - env->regs[r2];
5544c1
-    env->regs[r1] = dest;
5544c1
-    env->regs[r2] = src;
5544c1
-
5544c1
-    return cc;
5544c1
-}
5544c1
-
5544c1
-/* move long extended another memcopy insn with more bells and whistles */
5544c1
-uint32_t HELPER(mvcle)(uint32_t r1, uint64_t a2, uint32_t r3)
5544c1
-{
5544c1
-    uint64_t destlen = env->regs[r1 + 1];
5544c1
-    uint64_t dest = env->regs[r1];
5544c1
-    uint64_t srclen = env->regs[r3 + 1];
5544c1
-    uint64_t src = env->regs[r3];
5544c1
-    uint8_t pad = a2 & 0xff;
5544c1
-    uint8_t v;
5544c1
-    uint32_t cc;
5544c1
-
5544c1
-    if (!(env->psw.mask & PSW_MASK_64)) {
5544c1
-        destlen = (uint32_t)destlen;
5544c1
-        srclen = (uint32_t)srclen;
5544c1
-        dest &= 0x7fffffff;
5544c1
-        src &= 0x7fffffff;
5544c1
-    }
5544c1
-
5544c1
-    if (destlen == srclen) {
5544c1
-        cc = 0;
5544c1
-    } else if (destlen < srclen) {
5544c1
-        cc = 1;
5544c1
-    } else {
5544c1
-        cc = 2;
5544c1
-    }
5544c1
-
5544c1
-    if (srclen > destlen) {
5544c1
-        srclen = destlen;
5544c1
-    }
5544c1
-
5544c1
-    for (; destlen && srclen; src++, dest++, destlen--, srclen--) {
5544c1
-        v = ldub(src);
5544c1
-        stb(dest, v);
5544c1
-    }
5544c1
-
5544c1
-    for (; destlen; dest++, destlen--) {
5544c1
-        stb(dest, pad);
5544c1
-    }
5544c1
-
5544c1
-    env->regs[r1 + 1] = destlen;
5544c1
-    /* can't use srclen here, we trunc'ed it */
5544c1
-    /* FIXME: 31-bit mode! */
5544c1
-    env->regs[r3 + 1] -= src - env->regs[r3];
5544c1
-    env->regs[r1] = dest;
5544c1
-    env->regs[r3] = src;
5544c1
-
5544c1
-    return cc;
5544c1
-}
5544c1
-
5544c1
-/* compare logical long extended memcompare insn with padding */
5544c1
-uint32_t HELPER(clcle)(uint32_t r1, uint64_t a2, uint32_t r3)
5544c1
-{
5544c1
-    uint64_t destlen = env->regs[r1 + 1];
5544c1
-    uint64_t dest = get_address_31fix(r1);
5544c1
-    uint64_t srclen = env->regs[r3 + 1];
5544c1
-    uint64_t src = get_address_31fix(r3);
5544c1
-    uint8_t pad = a2 & 0xff;
5544c1
-    uint8_t v1 = 0, v2 = 0;
5544c1
-    uint32_t cc = 0;
5544c1
-
5544c1
-    if (!(destlen || srclen)) {
5544c1
-        return cc;
5544c1
-    }
5544c1
-
5544c1
-    if (srclen > destlen) {
5544c1
-        srclen = destlen;
5544c1
-    }
5544c1
-
5544c1
-    for (; destlen || srclen; src++, dest++, destlen--, srclen--) {
5544c1
-        v1 = srclen ? ldub(src) : pad;
5544c1
-        v2 = destlen ? ldub(dest) : pad;
5544c1
-        if (v1 != v2) {
5544c1
-            cc = (v1 < v2) ? 1 : 2;
5544c1
-            break;
5544c1
-        }
5544c1
-    }
5544c1
-
5544c1
-    env->regs[r1 + 1] = destlen;
5544c1
-    /* can't use srclen here, we trunc'ed it */
5544c1
-    env->regs[r3 + 1] -= src - env->regs[r3];
5544c1
-    env->regs[r1] = dest;
5544c1
-    env->regs[r3] = src;
5544c1
-
5544c1
-    return cc;
5544c1
-}
5544c1
-
5544c1
-/* checksum */
5544c1
-void HELPER(cksm)(uint32_t r1, uint32_t r2)
5544c1
-{
5544c1
-    uint64_t src = get_address_31fix(r2);
5544c1
-    uint64_t src_len = env->regs[(r2 + 1) & 15];
5544c1
-    uint64_t cksm = (uint32_t)env->regs[r1];
5544c1
-
5544c1
-    while (src_len >= 4) {
5544c1
-        cksm += ldl(src);
5544c1
-
5544c1
-        /* move to next word */
5544c1
-        src_len -= 4;
5544c1
-        src += 4;
5544c1
-    }
5544c1
-
5544c1
-    switch (src_len) {
5544c1
-    case 0:
5544c1
-        break;
5544c1
-    case 1:
5544c1
-        cksm += ldub(src) << 24;
5544c1
-        break;
5544c1
-    case 2:
5544c1
-        cksm += lduw(src) << 16;
5544c1
-        break;
5544c1
-    case 3:
5544c1
-        cksm += lduw(src) << 16;
5544c1
-        cksm += ldub(src + 2) << 8;
5544c1
-        break;
5544c1
-    }
5544c1
-
5544c1
-    /* indicate we've processed everything */
5544c1
-    env->regs[r2] = src + src_len;
5544c1
-    env->regs[(r2 + 1) & 15] = 0;
5544c1
-
5544c1
-    /* store result */
5544c1
-    env->regs[r1] = (env->regs[r1] & 0xffffffff00000000ULL) |
5544c1
-        ((uint32_t)cksm + (cksm >> 32));
5544c1
-}
5544c1
-
5544c1
-void HELPER(unpk)(uint32_t len, uint64_t dest, uint64_t src)
5544c1
-{
5544c1
-    int len_dest = len >> 4;
5544c1
-    int len_src = len & 0xf;
5544c1
-    uint8_t b;
5544c1
-    int second_nibble = 0;
5544c1
-
5544c1
-    dest += len_dest;
5544c1
-    src += len_src;
5544c1
-
5544c1
-    /* last byte is special, it only flips the nibbles */
5544c1
-    b = ldub(src);
5544c1
-    stb(dest, (b << 4) | (b >> 4));
5544c1
-    src--;
5544c1
-    len_src--;
5544c1
-
5544c1
-    /* now pad every nibble with 0xf0 */
5544c1
-
5544c1
-    while (len_dest > 0) {
5544c1
-        uint8_t cur_byte = 0;
5544c1
-
5544c1
-        if (len_src > 0) {
5544c1
-            cur_byte = ldub(src);
5544c1
-        }
5544c1
-
5544c1
-        len_dest--;
5544c1
-        dest--;
5544c1
-
5544c1
-        /* only advance one nibble at a time */
5544c1
-        if (second_nibble) {
5544c1
-            cur_byte >>= 4;
5544c1
-            len_src--;
5544c1
-            src--;
5544c1
-        }
5544c1
-        second_nibble = !second_nibble;
5544c1
-
5544c1
-        /* digit */
5544c1
-        cur_byte = (cur_byte & 0xf);
5544c1
-        /* zone bits */
5544c1
-        cur_byte |= 0xf0;
5544c1
-
5544c1
-        stb(dest, cur_byte);
5544c1
-    }
5544c1
-}
5544c1
-
5544c1
-void HELPER(tr)(uint32_t len, uint64_t array, uint64_t trans)
5544c1
-{
5544c1
-    int i;
5544c1
-
5544c1
-    for (i = 0; i <= len; i++) {
5544c1
-        uint8_t byte = ldub(array + i);
5544c1
-        uint8_t new_byte = ldub(trans + byte);
5544c1
-
5544c1
-        stb(array + i, new_byte);
5544c1
-    }
5544c1
-}
5544c1
-
5544c1
-#ifndef CONFIG_USER_ONLY
5544c1
 void program_interrupt(CPUS390XState *env, uint32_t code, int ilc)
5544c1
 {
5544c1
     qemu_log("program interrupt at %#" PRIx64 "\n", env->psw.addr);
5544c1
@@ -1267,206 +384,6 @@ uint32_t HELPER(stsi)(uint64_t a0, uint32_t r0, uint32_t r1)
5544c1
     return cc;
5544c1
 }
5544c1
 
5544c1
-void HELPER(lctlg)(uint32_t r1, uint64_t a2, uint32_t r3)
5544c1
-{
5544c1
-    int i;
5544c1
-    uint64_t src = a2;
5544c1
-
5544c1
-    for (i = r1;; i = (i + 1) % 16) {
5544c1
-        env->cregs[i] = ldq(src);
5544c1
-        HELPER_LOG("load ctl %d from 0x%" PRIx64 " == 0x%" PRIx64 "\n",
5544c1
-                   i, src, env->cregs[i]);
5544c1
-        src += sizeof(uint64_t);
5544c1
-
5544c1
-        if (i == r3) {
5544c1
-            break;
5544c1
-        }
5544c1
-    }
5544c1
-
5544c1
-    tlb_flush(env, 1);
5544c1
-}
5544c1
-
5544c1
-void HELPER(lctl)(uint32_t r1, uint64_t a2, uint32_t r3)
5544c1
-{
5544c1
-    int i;
5544c1
-    uint64_t src = a2;
5544c1
-
5544c1
-    for (i = r1;; i = (i + 1) % 16) {
5544c1
-        env->cregs[i] = (env->cregs[i] & 0xFFFFFFFF00000000ULL) | ldl(src);
5544c1
-        src += sizeof(uint32_t);
5544c1
-
5544c1
-        if (i == r3) {
5544c1
-            break;
5544c1
-        }
5544c1
-    }
5544c1
-
5544c1
-    tlb_flush(env, 1);
5544c1
-}
5544c1
-
5544c1
-void HELPER(stctg)(uint32_t r1, uint64_t a2, uint32_t r3)
5544c1
-{
5544c1
-    int i;
5544c1
-    uint64_t dest = a2;
5544c1
-
5544c1
-    for (i = r1;; i = (i + 1) % 16) {
5544c1
-        stq(dest, env->cregs[i]);
5544c1
-        dest += sizeof(uint64_t);
5544c1
-
5544c1
-        if (i == r3) {
5544c1
-            break;
5544c1
-        }
5544c1
-    }
5544c1
-}
5544c1
-
5544c1
-void HELPER(stctl)(uint32_t r1, uint64_t a2, uint32_t r3)
5544c1
-{
5544c1
-    int i;
5544c1
-    uint64_t dest = a2;
5544c1
-
5544c1
-    for (i = r1;; i = (i + 1) % 16) {
5544c1
-        stl(dest, env->cregs[i]);
5544c1
-        dest += sizeof(uint32_t);
5544c1
-
5544c1
-        if (i == r3) {
5544c1
-            break;
5544c1
-        }
5544c1
-    }
5544c1
-}
5544c1
-
5544c1
-uint32_t HELPER(tprot)(uint64_t a1, uint64_t a2)
5544c1
-{
5544c1
-    /* XXX implement */
5544c1
-
5544c1
-    return 0;
5544c1
-}
5544c1
-
5544c1
-/* insert storage key extended */
5544c1
-uint64_t HELPER(iske)(uint64_t r2)
5544c1
-{
5544c1
-    uint64_t addr = get_address(0, 0, r2);
5544c1
-
5544c1
-    if (addr > ram_size) {
5544c1
-        return 0;
5544c1
-    }
5544c1
-
5544c1
-    return env->storage_keys[addr / TARGET_PAGE_SIZE];
5544c1
-}
5544c1
-
5544c1
-/* set storage key extended */
5544c1
-void HELPER(sske)(uint32_t r1, uint64_t r2)
5544c1
-{
5544c1
-    uint64_t addr = get_address(0, 0, r2);
5544c1
-
5544c1
-    if (addr > ram_size) {
5544c1
-        return;
5544c1
-    }
5544c1
-
5544c1
-    env->storage_keys[addr / TARGET_PAGE_SIZE] = r1;
5544c1
-}
5544c1
-
5544c1
-/* reset reference bit extended */
5544c1
-uint32_t HELPER(rrbe)(uint32_t r1, uint64_t r2)
5544c1
-{
5544c1
-    uint8_t re;
5544c1
-    uint8_t key;
5544c1
-
5544c1
-    if (r2 > ram_size) {
5544c1
-        return 0;
5544c1
-    }
5544c1
-
5544c1
-    key = env->storage_keys[r2 / TARGET_PAGE_SIZE];
5544c1
-    re = key & (SK_R | SK_C);
5544c1
-    env->storage_keys[r2 / TARGET_PAGE_SIZE] = (key & ~SK_R);
5544c1
-
5544c1
-    /*
5544c1
-     * cc
5544c1
-     *
5544c1
-     * 0  Reference bit zero; change bit zero
5544c1
-     * 1  Reference bit zero; change bit one
5544c1
-     * 2  Reference bit one; change bit zero
5544c1
-     * 3  Reference bit one; change bit one
5544c1
-     */
5544c1
-
5544c1
-    return re >> 1;
5544c1
-}
5544c1
-
5544c1
-/* compare and swap and purge */
5544c1
-uint32_t HELPER(csp)(uint32_t r1, uint32_t r2)
5544c1
-{
5544c1
-    uint32_t cc;
5544c1
-    uint32_t o1 = env->regs[r1];
5544c1
-    uint64_t a2 = get_address_31fix(r2) & ~3ULL;
5544c1
-    uint32_t o2 = ldl(a2);
5544c1
-
5544c1
-    if (o1 == o2) {
5544c1
-        stl(a2, env->regs[(r1 + 1) & 15]);
5544c1
-        if (env->regs[r2] & 0x3) {
5544c1
-            /* flush TLB / ALB */
5544c1
-            tlb_flush(env, 1);
5544c1
-        }
5544c1
-        cc = 0;
5544c1
-    } else {
5544c1
-        env->regs[r1] = (env->regs[r1] & 0xffffffff00000000ULL) | o2;
5544c1
-        cc = 1;
5544c1
-    }
5544c1
-
5544c1
-    return cc;
5544c1
-}
5544c1
-
5544c1
-static uint32_t mvc_asc(int64_t l, uint64_t a1, uint64_t mode1, uint64_t a2,
5544c1
-                        uint64_t mode2)
5544c1
-{
5544c1
-    target_ulong src, dest;
5544c1
-    int flags, cc = 0, i;
5544c1
-
5544c1
-    if (!l) {
5544c1
-        return 0;
5544c1
-    } else if (l > 256) {
5544c1
-        /* max 256 */
5544c1
-        l = 256;
5544c1
-        cc = 3;
5544c1
-    }
5544c1
-
5544c1
-    if (mmu_translate(env, a1 & TARGET_PAGE_MASK, 1, mode1, &dest, &flags)) {
5544c1
-        cpu_loop_exit(env);
5544c1
-    }
5544c1
-    dest |= a1 & ~TARGET_PAGE_MASK;
5544c1
-
5544c1
-    if (mmu_translate(env, a2 & TARGET_PAGE_MASK, 0, mode2, &src, &flags)) {
5544c1
-        cpu_loop_exit(env);
5544c1
-    }
5544c1
-    src |= a2 & ~TARGET_PAGE_MASK;
5544c1
-
5544c1
-    /* XXX replace w/ memcpy */
5544c1
-    for (i = 0; i < l; i++) {
5544c1
-        /* XXX be more clever */
5544c1
-        if ((((dest + i) & TARGET_PAGE_MASK) != (dest & TARGET_PAGE_MASK)) ||
5544c1
-            (((src + i) & TARGET_PAGE_MASK) != (src & TARGET_PAGE_MASK))) {
5544c1
-            mvc_asc(l - i, a1 + i, mode1, a2 + i, mode2);
5544c1
-            break;
5544c1
-        }
5544c1
-        stb_phys(dest + i, ldub_phys(src + i));
5544c1
-    }
5544c1
-
5544c1
-    return cc;
5544c1
-}
5544c1
-
5544c1
-uint32_t HELPER(mvcs)(uint64_t l, uint64_t a1, uint64_t a2)
5544c1
-{
5544c1
-    HELPER_LOG("%s: %16" PRIx64 " %16" PRIx64 " %16" PRIx64 "\n",
5544c1
-               __func__, l, a1, a2);
5544c1
-
5544c1
-    return mvc_asc(l, a1, PSW_ASC_SECONDARY, a2, PSW_ASC_PRIMARY);
5544c1
-}
5544c1
-
5544c1
-uint32_t HELPER(mvcp)(uint64_t l, uint64_t a1, uint64_t a2)
5544c1
-{
5544c1
-    HELPER_LOG("%s: %16" PRIx64 " %16" PRIx64 " %16" PRIx64 "\n",
5544c1
-               __func__, l, a1, a2);
5544c1
-
5544c1
-    return mvc_asc(l, a1, PSW_ASC_PRIMARY, a2, PSW_ASC_SECONDARY);
5544c1
-}
5544c1
-
5544c1
 uint32_t HELPER(sigp)(uint64_t order_code, uint32_t r1, uint64_t cpu_addr)
5544c1
 {
5544c1
     int cc = 0;
5544c1
@@ -1508,78 +425,4 @@ uint32_t HELPER(sigp)(uint64_t order_code, uint32_t r1, uint64_t cpu_addr)
5544c1
 
5544c1
     return cc;
5544c1
 }
5544c1
-
5544c1
-/* invalidate pte */
5544c1
-void HELPER(ipte)(uint64_t pte_addr, uint64_t vaddr)
5544c1
-{
5544c1
-    uint64_t page = vaddr & TARGET_PAGE_MASK;
5544c1
-    uint64_t pte = 0;
5544c1
-
5544c1
-    /* XXX broadcast to other CPUs */
5544c1
-
5544c1
-    /* XXX Linux is nice enough to give us the exact pte address.
5544c1
-       According to spec we'd have to find it out ourselves */
5544c1
-    /* XXX Linux is fine with overwriting the pte, the spec requires
5544c1
-       us to only set the invalid bit */
5544c1
-    stq_phys(pte_addr, pte | _PAGE_INVALID);
5544c1
-
5544c1
-    /* XXX we exploit the fact that Linux passes the exact virtual
5544c1
-       address here - it's not obliged to! */
5544c1
-    tlb_flush_page(env, page);
5544c1
-
5544c1
-    /* XXX 31-bit hack */
5544c1
-    if (page & 0x80000000) {
5544c1
-        tlb_flush_page(env, page & ~0x80000000);
5544c1
-    } else {
5544c1
-        tlb_flush_page(env, page | 0x80000000);
5544c1
-    }
5544c1
-}
5544c1
-
5544c1
-/* flush local tlb */
5544c1
-void HELPER(ptlb)(void)
5544c1
-{
5544c1
-    tlb_flush(env, 1);
5544c1
-}
5544c1
-
5544c1
-/* store using real address */
5544c1
-void HELPER(stura)(uint64_t addr, uint32_t v1)
5544c1
-{
5544c1
-    stw_phys(get_address(0, 0, addr), v1);
5544c1
-}
5544c1
-
5544c1
-/* load real address */
5544c1
-uint32_t HELPER(lra)(uint64_t addr, uint32_t r1)
5544c1
-{
5544c1
-    uint32_t cc = 0;
5544c1
-    int old_exc = env->exception_index;
5544c1
-    uint64_t asc = env->psw.mask & PSW_MASK_ASC;
5544c1
-    uint64_t ret;
5544c1
-    int flags;
5544c1
-
5544c1
-    /* XXX incomplete - has more corner cases */
5544c1
-    if (!(env->psw.mask & PSW_MASK_64) && (addr >> 32)) {
5544c1
-        program_interrupt(env, PGM_SPECIAL_OP, 2);
5544c1
-    }
5544c1
-
5544c1
-    env->exception_index = old_exc;
5544c1
-    if (mmu_translate(env, addr, 0, asc, &ret, &flags)) {
5544c1
-        cc = 3;
5544c1
-    }
5544c1
-    if (env->exception_index == EXCP_PGM) {
5544c1
-        ret = env->int_pgm_code | 0x80000000;
5544c1
-    } else {
5544c1
-        ret |= addr & ~TARGET_PAGE_MASK;
5544c1
-    }
5544c1
-    env->exception_index = old_exc;
5544c1
-
5544c1
-    if (!(env->psw.mask & PSW_MASK_64)) {
5544c1
-        env->regs[r1] = (env->regs[r1] & 0xffffffff00000000ULL) |
5544c1
-            (ret & 0xffffffffULL);
5544c1
-    } else {
5544c1
-        env->regs[r1] = ret;
5544c1
-    }
5544c1
-
5544c1
-    return cc;
5544c1
-}
5544c1
-
5544c1
 #endif
5544c1
-- 
5544c1
1.7.12.1
5544c1