Hey, a few days ago, I had this idea for an HLE interpreter. Ok, let's say that I'm emulating an x86 CPU. Would it be possible to do this?


switch( dwOpcode )
{
...
case 0x38354fae: // Let's say... mov eax, ebx
__asm mov eax, ebx
...
}

It's just an Idea that I havent gotten around to trying for myself, but has anyone ever done anything similar?

Yeah, but that would mean putting a case for thousands of different cases. You'd need to extract the opcode first and no the data... unless that isn't what you're doing, because that sure doesn't seem like an instruction.

Well, that really isn't HLE, that's an interpreter written with assembly (which is faster than a C interpreter, if done right). The purpose of HLE is to override cpu instructions with fast, exact, C code. You don't execute per opcode, instead you detect a function from the game's engine or sdk, and you replace the cpu instructions with an emulator function that does the equivelent. And thus you can override the need for real cpu and hardware emulation, at the expense of compatibility. Some stuff you might HLE are OS calls (OSEnableInterrupts, OSDisableInterupts, OSSelectThread), or graphics vector math, etc.

Well, that really isn't HLE, that's an interpreter written with assembly (which is faster than a C interpreter, if done right). The purpose of HLE is to override cpu instructions with fast, exact, C code. You don't execute per opcode, instead you detect a function from the game's engine or sdk, and you replace the cpu instructions with an emulator function that does the equivelent. And thus you can override the need for real cpu and hardware emulation, at the expense of compatibility. Some stuff you might HLE are OS calls (OSEnableInterrupts, OSDisableInterupts, OSSelectThread), or graphics vector math, etc.

ShizZy your making my head spin! :P

You gus certainly know your stuff on HLE!

doing operations such as changing the actual eax, ebx of the machine currently running the interpretation will mess up the state/execution of the emulator...

Should not be writing cores in c or other high level languages because u have do lots of preprocessing in identifying the insts and ophs. In addition, the way suggested on the first post is like...having a case statement for all the combinations of instructions and values.

Oh? So you suggest doing a core in assembly, then?
It doesn't matter which language you use, you still need to identify the opcode. Unless it IS the system being emulated, of course.

I think part of what he's suggesting is having a switch case for every possible instruction to avoid decoding the operands or other opcode fields. For platforms with fixed width 16bit instructions this is possible (like SH, Thumb, etc). For platforms with 32bit instructions this isn't feasible, there are too many possible cases. For platforms with variable length instructions (x86 falls under this, as per your example) it's not possible, you have to fetch in multiple steps, although if you fetch to the largest size and pad the remainder with something producing otherwise invalid opcodes (they'd probably have to be) and switch on that it might work. This is only possibly feasible with instructions that vary between 1 and 2 or 3 bytes like 6502. It's really a trade-off between speed and space, but very large switch sets will thrash cache (and possibly RAM at that) pretty quickly.

Ok, so I'm gonna scratch that idea. :P

Anyway, forgive me if I see this incorrectly, but you all are saying that it's not a good idea to do an interpreter on an x86 CPU? This is my first time emulating a RISC cpu btw. So used to the CISC stuff. Also, to do it the normal way, should I set up my union this way? I'll be honest, out of all the years I've been programming (started with basic in 1989) the one thing I never learned how to use in C were unions, but I know everything else lol.


typedef union
{
DWORD w;
WORD w;

struct
{
unsigned char h,l;
}b;
}iPIIIReg;

The union looks fine, but keep in mind a Word is 32bits (well, on most systems), and 2 bytes is only 16. So for that to work, you'd have to map 4 bytes in that switch, or two 2byte switches in a switch within the union. As for a risc interpreter on x86 - why not? What else would you write it on, a MAC? ;)

Here's a crash course in RISC arcitecture emulation- (using PPC as an example)
Unlike CISC, where opcodes are of variable size, and can be identified simply by a one or 2 byte field, RISC is as you know fixed length opcodes, usually 32bit. Take a pseudo PPC opcode:

--------------32 Bits----------------------------------------------
[Bits 0-5][Bits 6-10][Bits 11-15][Bits 16-20][Bits 21-30][Bit 31]

As you know, it's divided up into sections (PPC is big endian btw). In this example, the first 6 bits, 0-5, are the opcode identifier, which has a possible range from zero to 64. Each identifier specifies an instruction, or, in some cases, a branch to other instructions. So, a simple way to do this, would be to do:

switch((opcode >> 26)&0x3F)
{
case 0: Opcode_NOP(); break;
case 1: Opcode_OR(); break;
...
case 31: Opcode_31(); break;
In this case, the value of 31 has multiple opcodes, so you'd call a function with another switch, and this time, check the opcode extension. On PPC, this extension is bits 21-30. It's probably different on the cpu your emulating. So, just do switch((opcode >> 1)&0x3FF).

Tada... instruction decoding on RISC, no strings attached. It's really very easy to do an interpreter like this. Now, take the other sections. Bits 6-10, 11-15, and 16-20 are register fields in this example. Thus, each field represents a value of the GPR to manipulate by the instruction. In this example, the first would be REGD, the second REGA, and the third REGC. Each is 5 bits, thus can have a value from 0-31, which points to one of the PPC's 32 general purpose registers, respectivly. Here's a pseudo op:

In your cpu manual, it might say something like this:

Opcode: MUL
regDest = regSrcA * regSrcB

Now, in C++:

void Opcode_MUL(u32 opcode)
{
reg.gpr[(opcode>>21)&0x1F] = reg.gpr[(opcode>>16)&0x1F] * reg.gpr[(opcode>>11)&0x1F] ;
}

A good tip is to use macros for all that shifting, ie #define REG_D ([(opcode>>21)&0x1F) - so you are less prone to making mistakes. As for Bit31, it could be on anything, on PPC though it's a flag called Rc to calculate a field of the CR register.

There you have it. As for most of the other parts, it acts pretty much in the same nature as a CISC processor, to an extent. Hope that helps a little :)

Hmmmm, interesting :)

You have an interesting way of emulating RISC cpu's. Your advice is greatly appreciated. I guess the RISC cpu stuff sounds more complicated than it really is, lol. Assuming you know I'm emulating a Pentium III.

Pentium 3? Why would you emulate it on an x86 system when you can already run native files? What happened to PSP?

Anyways, if that's your plan, why not start with a much easier x86 processor, like the 80386? Once you get that running, and trust me it'll be a bit easier, modifying it up to P3 standards won't be hard.

He's going for the box if you didn't know that by now :P
Good luck Zlinky !

The union looks fine, but keep in mind a Word is 32bits (well, on most systems), and 2 bytes is only 16.
Isn't a WORD supposed to be 2 bytes and not 4? Does this apply to other architectures than the PC? A WORD is a short int if I'm not mistaken and int is long int, aka 4 bytes.

Isn't a WORD supposed to be 2 bytes and not 4? Does this apply to other architectures than the PC? A WORD is a short int if I'm not mistaken and int is long int, aka 4 bytes.

I thought the same thing, but apparently a WORD is now associated with 32-bits.

Check it out and see for yourself :P



#include<limits.h>
#include<stdio.h>
#include<windows.h>

int main()
{
printf("There are %d bits in a WORD under this Windows OS.\r\n", sizeof(WORD) * CHAR_BIT);
return 0;
}



I get 16 as the result under Windows XP Pro 32 bit edition.

Indeed, and this is what I get:


// Test2.cpp : Defines the entry point for the console application.
//

#include "stdafx.h"
#include <windows.h>
#include <iostream>
using namespace std;

int _tmain(int argc, _TCHAR* argv[])
{
WORD test;
cout << sizeof(test) << endl;
return 0;
}

Output: 2

1) Think VIRTUALIZATION. Remember your emulator should not change the state of your CURRENT machine. If the program has a nasty bug.. your emulator will suddenly have a nasty bug. Don't let someone elses bad programing kill the machine in other words.
2) It is always best to start with an interpretor. Try a few things as well. I recomend using an Opcode matrix or the CPU developers opcode encoding information. Much of this you can find on the manufacturers web site. PPC (FreeScale or IBM), ARM7/9 and various other instruction mixes (ARM thumb ARM 9 T etc) you might be able to get from ARM (though they seem to be tight arsed about information .. parinoid lot they are).
3) HLE - High Level Emulation... what you are discusing isn't HLE it's translation / recompilation. :)
4) WORD... what is microsoft now screwing with the language? LOL

WORD does not mean 16 32 or 64.. none of the above. if you want to be precise (which I tend to be weird about) the original meaning was from the VAX PDP11 it ment 16 bits since the byte (8 bits) was already in existance along with ye olde nybble ( 4 bits). Now to further complicate things was that word was used for the size of the opcode. IE PDP11's were 16bit machines (not 8 bit). So when 32 bit machines came along.. they called them 32 bit WORDs or Double word.

People who use WORD for 32 bits should in all cases say double or 32 bit. However taking into account just how damned lazy people really are.. you now see that we have 64 bit machines... it a few years WORD may refer to 64 bits. Just how dumb we human beings really are? Hmmmmm. :D I recomend sticking with 16 bits refering to a WORD. Everytime someone says word when discusing computers, ask "is that 32 64 or 16 bits". Because people are lazy, they tend to do what's easiest for them, not what is correct.

And now back to that emulation thing ;)

Cyb

Doom/Bcrew/Seth: Depends on the arcitecture :P but yeah, word IS 16 bits on x86, but 32 on PPC(and many other cpus). Nonetheless, you shouldn't really use that termonology in an emulator, simply because the target cpu and platform cpu are usually different.

Edit: what cyb said too :P

Yeah, I prefer to use the number of bits when I'm talking about things like that. It's too easy to misunderstand. Instead of saying word, long, int, etc, why not just say the number of bits? Come on, it can't be that hard :P.

That's why my test used the size of a "WORD" times the number of bits in a byte :P

Why bits? We aren't living in the stone age :P Use bytes.

Why bits? We aren't living in the stone age :P Use bytes.Your comment is a bit odd :D
Maybe you just bit off more than you can chew?
However your assertion may be misguided. The age old bit is still live and well, and although bytes are nice, bits are used quite heavily still. an example would be network masks (lots of bits there 32 IPV 4 and 64 IPV6) also for example in IPV4 they use byte sizes per word (192.168.0.1) IPV6 uses 16 instead. So 192.169.0.1 is still the same although you could have 327.9841.1120.10001 in IPV6.

Bits and bytes are units of measure. What you are saying is similar to "Heck we don't need no stinking inches or mm we'll use feet and meters instead!"

hehehe

:D

Cyb

Your comment is a bit odd :D
Maybe you just bit off more than you can chew?
However your assertion may be misguided. The age old bit is still live and well, and although bytes are nice, bits are used quite heavily still. an example would be network masks (lots of bits there 32 IPV 4 and 64 IPV6) also for example in IPV4 they use byte sizes per word (192.168.0.1) IPV6 uses 16 instead. So 192.169.0.1 is still the same although you could have 327.9841.1120.10001 in IPV6.

Bits and bytes are units of measure. What you are saying is similar to "Heck we don't need no stinking inches or mm we'll use feet and meters instead!"

hehehe

:D

Cyb
I know full well what I wrote and of course I mention, that if possible, measure is bytes instead of bits. Saying like 16 bits, instead you can say 2 bytes. It's like saying 64 mbits instead of 8 mb, which is annoying is most cases and is used to trick a lot of people out there...

I know full well what I wrote and of course I mention, that if possible, measure is bytes instead of bits. Saying like 16 bits, instead you can say 2 bytes. It's like saying 64 mbits instead of 8 mb, which is annoying is most cases and is used to trick a lot of people out there...

Though most are, not all bytes are 8 bits. :P

@Shizzy: You must not have read this :)

Anyway, I'm gonna set the PSP emu project aside for the time being, since the PSP emu scene is actually "alive", plus I have a freind working on a PSP emu himself, so there is really no need for me
Anyway, I am looking at the i386 stuff from the MAME source to get a better understanding of it before beginning my PIII core. And yes, I'm going for the box now since I have a friend working on a PSP emu himself, and the PSP emuscene is "alive" :P but the Xbox emuscene is dead/dying, so this is my chance to bring it back to life :)

@Shizzy: You must not have read this :)

Anyway, I am looking at the i386 stuff from the MAME source to get a better understanding of it before beginning my PIII core. And yes, I'm going for the box now since I have a friend working on a PSP emu himself, and the PSP emuscene is "alive" :P but the Xbox emuscene is dead/dying, so this is my chance to bring it back to life :)
Interesting notes here. WinCE I believe is used for the 'core OS' on that beast right? This means that the programs can be examined during load up. Perhaps a 'core' wraper for the executable and some careful service call insertions will get you started. Of course the real beast is the GPU core. I don't want to get near that beast, I suspect MS pushed some of the complex 3d processing to the GPU core, since not much is available on it.


I know full well what I wrote and of course I mention, that if possible, measure is bytes instead of bits. Saying like 16 bits, instead you can say 2 bytes. It's like saying 64 mbits instead of 8 mb, which is annoying is most cases and is used to trick a lot of people out there...
Doom I was giving you a hard time hehehe!
However this seems more like an issue with people who make things 'bigger' than they are. bits bytes nybbles do not matter too me. Did you know that there has been a deep ISO discussion on 64mb versus 64mB? It's pretty funny. mb they would like to represent bits and mB bytes :D
In any case it's prefered when refering to words one uses the bit reference.
For embeded programing many use this convention for variables.
uint8 <-- unsigned byte
int8 <-- signed byte
uint16 <--16 bit unsigned int
int16 <- 16 bit signed int
etc. This is because they do have bit sized variables in embeded archetectures.

Cyb -- assumption is the mother of all screw ups

Interesting notes here. WinCE I believe is used for the 'core OS' on that beast right? This means that the programs can be examined during load up. Perhaps a 'core' wraper for the executable and some careful service call insertions will get you started. Of course the real beast is the GPU core. I don't want to get near that beast, I suspect MS pushed some of the complex 3d processing to the GPU core, since not much is available on it.

Actually, the core OS is based off of Win2k, but might have some WinCE stuff in it too. It's possible to use HLE for the kernel functions and isn't too hard. But as you suspect the real issue is the GPU core. It is pretty much like a standard VGA in many ways, so the best thing to do is to find documentation on another GPU like the NV11 (Geforce2) or the NV20 (Geforce3). I have some documentation on the DMA registers and some of the FIFO registers (mainly the 2D ones). There are alot more registers that remain a mystery, but I'm slowly but surely finding more information on it.

Cyberman, an optimized version of Windows CE was used on the Dreamcast, not on the XBox.

As far I know, usually the size of a WORD is defined by the CPU architecture. It's like "int"s in the C programming language, that is, for 32-bit architectures a WORD is 32-bits, for 16-bits CPUs a WORD is 16-bit wide, etc.

Why Microsoft defined WORD as a 16-bit value in Windows? Probably because it was designed on a 16-bit platform (PC XT/AT with 8086/80286 CPUs).

My $2 cents.