From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from mailman by lists.gnu.org with tmda-scanned (Exim 4.43)
	id 1LZmRT-0005xr-OW
	for qemu-devel@nongnu.org; Wed, 18 Feb 2009 08:26:23 -0500
Received: from exim by lists.gnu.org with spam-scanned (Exim 4.43)
	id 1LZmRR-0005x4-UX
	for qemu-devel@nongnu.org; Wed, 18 Feb 2009 08:26:22 -0500
Received: from [199.232.76.173] (port=36178 helo=monty-python.gnu.org)
	by lists.gnu.org with esmtp (Exim 4.43) id 1LZmRR-0005wx-Nq
	for qemu-devel@nongnu.org; Wed, 18 Feb 2009 08:26:21 -0500
Received: from fg-out-1718.google.com ([72.14.220.155]:2633)
	by monty-python.gnu.org with esmtp (Exim 4.60)
	(envelope-from <laurent.desnogues@gmail.com>) id 1LZmRR-0000S3-2e
	for qemu-devel@nongnu.org; Wed, 18 Feb 2009 08:26:21 -0500
Received: by fg-out-1718.google.com with SMTP id e21so795142fga.8
	for <qemu-devel@nongnu.org>; Wed, 18 Feb 2009 05:26:19 -0800 (PST)
MIME-Version: 1.0
In-Reply-To: <499C0A81.8090106@gmail.com>
References: <499C03A9.6040003@gmail.com>
	<761ea48b0902180500wbe676d4x3895d37df10e495b@mail.gmail.com>
	<499C0A81.8090106@gmail.com>
Date: Wed, 18 Feb 2009 14:26:19 +0100
Message-ID: <761ea48b0902180526q1be52725x748c7c14b5d907de@mail.gmail.com>
Subject: Re: [Qemu-devel] Monitor Memory Accesses
From: Laurent Desnogues <laurent.desnogues@gmail.com>
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
Reply-To: qemu-devel@nongnu.org
List-Id: qemu-devel.nongnu.org
List-Unsubscribe: <http://lists.nongnu.org/mailman/listinfo/qemu-devel>,
	<mailto:qemu-devel-request@nongnu.org?subject=unsubscribe>
List-Archive: <http://lists.gnu.org/pipermail/qemu-devel>
List-Post: <mailto:qemu-devel@nongnu.org>
List-Help: <mailto:qemu-devel-request@nongnu.org?subject=help>
List-Subscribe: <http://lists.nongnu.org/mailman/listinfo/qemu-devel>,
	<mailto:qemu-devel-request@nongnu.org?subject=subscribe>
To: qemu-devel@nongnu.org

On Wed, Feb 18, 2009 at 2:17 PM, Andrea Pellegrini
<andrea.pellegrini@gmail.com> wrote:
> Thanks for the quick reply!
>
> I obtain the instruction addresses through the function
> static TranslationBlock *tb_find_slow(target_ulong pc,
>                                     target_ulong cs_base,
>                                     uint64_t flags)
>
> ......
> // Andrea, let's check the pc
>   printf("PC: 0x%x\n", pc);
> ....
>
> in cpu_exec.c. So far it worked but maybe there is a better way to do it.

No, it doesn't work.  Try to track the PC of a loop and you'll see
what I mean.

You should start by learning what is run-time code generation ;)

> Where can I find more informations about the "helper"?
> I'm just starting working with Qemu so I'm still not 100% sure about what is
> going on.  :-P

The documentation is the source.  It's not easy to enter, but once
you've understood the basic inner-workings, doing what you're
after should not be very difficult.

> I searched in target-i386/translate.c for
> tcg_gen_qemu_ld
> or
> tcg_gen_qemu_lst
> and nothing pops up. Am I looking at the right thing?

I talked about tcg_gen_qemu_ld*.

Just to make it clear, I am talking of svn version of qemu.  If you're
using 0.9.1 then it's a completely different story, and I invite you to
take a look at Vince Weaver's work:

http://www.csl.cornell.edu/~vince/projects/qemusim/
http://www.csl.cornell.edu/~vince/projects/qemu-trace/


Laurent