CoCalc -- MIPSAnalyst.cpp

GitHub Repository: hrydgard/ppsspp
Path: blob/master/Core/MIPS/MIPSAnalyst.cpp
³¹⁸⁶ views
1
// Copyright (c) 2012- PPSSPP Project.
2

3
// This program is free software: you can redistribute it and/or modify
4
// it under the terms of the GNU General Public License as published by
5
// the Free Software Foundation, version 2.0 or later versions.
6

7
// This program is distributed in the hope that it will be useful,
8
// but WITHOUT ANY WARRANTY; without even the implied warranty of
9
// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
10
// GNU General Public License 2.0 for more details.
11

12
// A copy of the GPL 2.0 should have been included with the program.
13
// If not, see http://www.gnu.org/licenses/
14

15
// Official git repository and contact information can be found at
16
// https://github.com/hrydgard/ppsspp and http://www.ppsspp.org/.
17

18
#include "ppsspp_config.h"
19
#include <algorithm>
20
#include <unordered_map>
21
#include <unordered_set>
22
#include <mutex>
23

24
#include "ext/cityhash/city.h"
25
#include "ext/xxhash.h"
26

27
#include "Common/File/FileUtil.h"
28
#include "Common/Log.h"
29
#include "Common/StringUtils.h"
30
#include "Common/TimeUtil.h"
31
#include "Core/Config.h"
32
#include "Core/MemMap.h"
33
#include "Core/System.h"
34
#include "Core/MIPS/MIPS.h"
35
#include "Core/MIPS/MIPSVFPUUtils.h"
36
#include "Core/MIPS/MIPSTables.h"
37
#include "Core/MIPS/MIPSAnalyst.h"
38
#include "Core/MIPS/MIPSCodeUtils.h"
39
#include "Core/Debugger/SymbolMap.h"
40
#include "Core/Debugger/DebugInterface.h"
41
#include "Core/HLE/ReplaceTables.h"
42

43
using namespace MIPSCodeUtils;
44

45
// Not in a namespace because MSVC's debugger doesn't like it
46
typedef std::vector<MIPSAnalyst::AnalyzedFunction> FunctionsVector;
47
static FunctionsVector functions;
48
std::recursive_mutex functions_lock;
49

50
// One function can appear in multiple copies in memory, and they will all have 
51
// the same hash and should all be replaced if possible.
52
static std::unordered_multimap<u64, MIPSAnalyst::AnalyzedFunction *> hashToFunction;
53

54
struct HashMapFunc {
55
	char name[64];
56
	u64 hash;
57
	u32 size; //number of bytes
58
	bool hardcoded;  // should not be saved
59

60
	bool operator < (const HashMapFunc &other) const {
61
		return hash < other.hash || (hash == other.hash && size < other.size);
62
	}
63

64
	bool operator == (const HashMapFunc &other) const {
65
		return hash == other.hash && size == other.size;
66
	}
67
};
68

69
namespace std {
70
	template <>
71
	struct hash<HashMapFunc> {
72
		size_t operator()(const HashMapFunc &f) const {
73
			return std::hash<u64>()(f.hash) ^ f.size;
74
		}
75
	};
76
}
77

78
static std::unordered_set<HashMapFunc> hashMap;
79

80
static Path hashmapFileName;
81

82
#define MIPSTABLE_IMM_MASK 0xFC000000
83

84
// Similar to HashMapFunc but has a char pointer for the name for efficiency.
85
struct HardHashTableEntry {
86
	uint64_t hash;
87
	int funcSize;
88
	const char *funcName;
89

90
	bool operator <(const HardHashTableEntry &e) const {
91
		if (hash < e.hash) return true;
92
		if (hash > e.hash) return false;
93
		return funcSize < e.funcSize;
94
	}
95
};
96

97
// Some hardcoded hashes.  Some have a comment specifying at least one game they are found in.
98
static const HardHashTableEntry hardcodedHashes[] = {
99
	{ 0x006b570008068310, 184, "strtok_r", },
100
	{ 0x019ba2099fb88f3c, 48, "vector_normalize_t", },
101
	{ 0x0266f96d740c7e03, 912, "memcpy", }, // Final Fantasy 4 (US)
102
	{ 0x02bd2859045d2383, 240, "bcmp", },
103
	{ 0x030507c9a1f0fc85, 92, "sceVfpuMatrix4RotX", },
104
	{ 0x0483fceefa4557ff, 1360, "__udivdi3", },
105
	{ 0x0558ad5c5be00ca1, 76, "vtfm_t", },
106
	{ 0x05aceb23092fd6a1, 36, "zettai_hero_update_minimap_tex", }, // Zettai Hero Project (US)
107
	{ 0x05aedd0c04b451a1, 356, "sqrt", },
108
	{ 0x0654fc8adbe16ef7, 28, "vmul_q", },
109
	{ 0x06628f6052cda3c1, 1776, "toheart2_download_frame", }, // To Heart 2 Portable
110
	{ 0x06b243c926fa6ab5, 24, "vf2in_q", },
111
	{ 0x06e2826e02056114, 56, "wcslen", },
112
	{ 0x073cf0b61d3b875a, 416, "hexyzforce_monoclome_thread", }, // Hexyz Force (US)
113
	{ 0x075fa9b234b41e9b, 32, "fmodf", },
114
	{ 0x0a051019bdd786c3, 184, "strcasecmp", },
115
	{ 0x0a1bed70958935d2, 644, "youkosohitsujimura_download_frame", }, // Youkoso Hitsuji-Mura Portable
116
	{ 0x0a46dc426054bb9d, 24, "vector_add_t", },
117
	{ 0x0c0173ed70f84f66, 48, "vnormalize_t", },
118
	{ 0x0c65188f5bfb3915, 24, "vsgn_q", },
119
	{ 0x0d898513a722ea3c, 40, "copysignf", },
120
	{ 0x0e99b037b852c8ea, 68, "isnan", },
121
	// Unsafe due to immediates.
122
	//{ 0x0eb5f2e95f59276a, 40, "dl_write_lightmode", },
123
	{ 0x0f1e7533a546f6a1, 228, "dl_write_bone_matrix_4", },
124
	{ 0x0f2a1106ad84fb74, 52, "strcmp", },
125
	{ 0x0ffa5db8396d4274, 64, "memcpy_jak", }, // CRUSH
126
	{ 0x1252e902d0b49bfb, 44, "vector_sub_q_2", },
127
	{ 0x12df3d33a58d0298, 52, "sceVfpuMatrix3Unit", },
128
	{ 0x12feef7b017d3431, 700, "memmove", },
129
	{ 0x1322c7e3fe6dff4d, 784, "_free_r", },
130
	{ 0x1376c115d5f1d90c, 36, "strlen", },
131
	{ 0x1448134dd3acd1f9, 240, "memchr", },
132
	{ 0x14800e59c04968d7, 100, "wcsstr", },
133
	{ 0x14b56e858a27a8a4, 24, "vi2f_q", },
134
	{ 0x15c4662d5d3c728e, 308, "acosf", },
135
	{ 0x1616ee7052542059, 48, "vtfm_t", },
136
	{ 0x16965ca11a4e7dac, 104, "vmmul_q_transp", },
137
	{ 0x16afe830a5dd2de2, 40, "vdiv_q", },
138
	{ 0x184e834a63a79016, 32, "isnanf", },
139
	{ 0x1874ee898c7b9f16, 512, "kokoroconnect_download_frame", }, // Kokoro Connect Yochi Random
140
	{ 0x189212bda9c94df1, 736, "atanf", },
141
	{ 0x199821ce500ef9d2, 24, "vocp_t", },
142
	{ 0x1a3c8e9d637ed421, 104, "__adddf3", },
143
	{ 0x1a7564fa3e25c992, 844, "memcpy", }, // Valkyria Chronicles 3
144
	{ 0x1aad94c0723edfc0, 124, "sceVfpuMatrix3Mul", },
145
	{ 0x1ab33b12b3cb8cb0, 28, "vqmul_q", },
146
	{ 0x1ac05627df1f87f4, 112, "memcpy16", }, // Valkyria Chronicles 3
147
	{ 0x1bdf3600844373fd, 112, "strstr", },
148
	{ 0x1c967be07917ddc9, 92, "strcat", },
149
	{ 0x1d03fa48334ca966, 556, "_strtol_r", },
150
	{ 0x1d1311966d2243e9, 428, "suikoden1_and_2_download_frame_1", }, // Gensou Suikoden 1&2
151
	{ 0x1d7de04b4e87d00b, 680, "kankabanchoutbr_download_frame", }, // Kenka Banchou Bros: Tokyo Battle Royale
152
	{ 0x1daf6eaf0442391d, 1024, "utawarerumono_download_frame", }, // Utawarerumono portable
153
	{ 0x1e1525e3bc2f6703, 676, "rint", },
154
	{ 0x1ec055f28bb9f4d1, 88, "_sceGuUpdateStallAddr", },
155
	{ 0x1ef9cfe6afd3c035, 180, "memset", }, // Kingdom Hearts (US)
156
	{ 0x1f53eac122f96b37, 224, "cosf", },
157
	{ 0x2097a8b75c8fe651, 436, "atan2", },
158
	{ 0x21411b3c860822c0, 36, "matrix_scale_q_t", },
159
	{ 0x2161ea81a06bcacd, 1032, "soltrigger_render_ucschar", }, // Sol Trigger
160
	{ 0x24d82a8675800808, 220, "ceilf", },
161
	{ 0x26cc90cb25af9d27, 476, "log10", },
162
	{ 0x275c79791a2bab83, 116, "rezel_cross_download_frame", }, // Rezel Cross
163
	{ 0x2774614d57d4baa2, 28, "vsub_q", },
164
	{ 0x279c6bf9cf99cc85, 436, "strncpy", },
165
	{ 0x2876ed93c5fd1211, 328, "dl_write_matrix_4", },
166
	{ 0x2965b1ad3ca15cc1, 44, "vtfm_t", },
167
	{ 0x299a370587df078f, 116, "strange_copy_routine", },
168
	{ 0x2aa9634a9951c7df, 212, "sdgundamggenerationportable_download_frame", }, // SD Gundam G Generation Portable
169
	{ 0x2abca53599f09ea7, 608, "dl_write_matrix_3", },
170
	{ 0x2adb92e8855c454e, 48, "vtfm_q", },
171
	{ 0x2adc229bef7bbc75, 40, "isnan", },
172
	{ 0x2bcf5268dd26345a, 340, "acos", },
173
	{ 0x2c4cb2028a1735bf, 600, "floor", },
174
	{ 0x2c61a9a06a345b43, 1084, "otomenoheihou_download_frame", }, // Sangoku Koi Senki Otome no Heihou
175
	{ 0x2ca5958bb816c72e, 44, "sceVfpuVector3FromIVector", },
176
	{ 0x2e7022d9767c9018, 2100, "atan", },
177
	{ 0x2f10d3faec84b5bb, 276, "sinf", },
178
	{ 0x2f639673670caa0e, 772, "sceGupSetMatrix", },
179
	{ 0x2f718936b371fc44, 40, "sceVfpuScalarCos", },
180
	{ 0x3024e961d1811dea, 396, "fmod", },
181
	{ 0x3050bfd0e729dfbf, 220, "atvoffroadfuryblazintrails_download_frame", }, // ATV Offroad Fury Blazin' Trails (US)
182
	{ 0x30c9c4f420573eb6, 540, "expf", },
183
	{ 0x311779b4db21dbf3, 124, "motorstorm_pixel_read" }, // Motorstorm Arctic Edge (US)
184
	{ 0x317afeb882ff324a, 212, "memcpy", }, // Mimana (US)
185
	{ 0x31ea2e192f5095a1, 52, "vector_add_t", },
186
	{ 0x31f523ef18898e0e, 420, "logf", },
187
	{ 0x32215b1d2196377f, 844, "godseaterburst_blit_texture", }, // Gods Eater Burst (US)
188
	{ 0x32806967fe81568b, 40, "vector_sub_t_2", },
189
	{ 0x32ceb9a7f72b9385, 440, "_strtoul_r", },
190
	{ 0x32e6bc7c151491ed, 68, "memchr", },
191
	{ 0x335df69db1073a8d, 96, "wcscpy", },
192
	{ 0x33dc6b144cb302c1, 304, "memmove", }, // Kingdom Hearts (US)
193
	{ 0x35d3527ff8c22ff2, 56, "matrix_scale_q", },
194
	{ 0x368f6cf979709a31, 744, "memmove", }, // Jui Dr. Touma Jotarou
195
	{ 0x373ce518eee5a2d2, 20, "matrix300_store_q", },
196
	{ 0x3840f5766fada4b1, 592, "dissidia_recordframe_avi", }, // Dissidia (US), Dissidia 012 (US)
197
	{ 0x388043e96b0e11fd, 144, "sceGupMaterial", },
198
	{ 0x38f19bc3be215acc, 388, "log10f", },
199
	{ 0x3913b81ddcbe1efe, 880, "katamari_render_check", }, // Me and My Katamari (US)
200
	{ 0x393047f06eceaba1, 96, "strcspn", },
201
	{ 0x39a651942a0b3861, 204, "tan", },
202
	{ 0x3a3bc2b20a55bf02, 68, "memchr", },
203
	{ 0x3ab08b5659de1746, 40, "sceVfpuScalarSin", },
204
	{ 0x3c421a9265f37ebc, 700, "memmove", }, // Final Fantasy 4 (US)
205
	{ 0x3cbc2d50a3db59e9, 100, "strncmp", },
206
	{ 0x3ce1806699a91d9d, 148, "sceGupLight", },
207
	{ 0x3d5e914011c181d4, 444, "scalbnf", },
208
	{ 0x3ea41eafb53fc99a, 388, "logf", },
209
	{ 0x3fe38bff09ac3da0, 436, "_strtoul_r", },
210
	{ 0x40a25c7e1fd44fe2, 24, "fabsf", },
211
	// Unsafe due to immediates.
212
	//{ 0x410d48d9b6580b4a, 36, "dl_write_ztest", },
213
	{ 0x42dc17c8018f30f2, 44, "sceVfpuScalarTan", },
214
	{ 0x436b07caa2aab931, 352, "acos", },
215
	{ 0x444472537eedf966, 32, "sceVfpuMatrix4Zero", },
216
	{ 0x449ff96982626338, 28, "vmidt_q", },
217
	{ 0x44f65b1a72c45703, 36, "strlen", },
218
	{ 0x45528de3948615dc, 64, "memcpy", },
219
	{ 0x456a0d78ac318d15, 164, "gta_dl_write_matrix", },
220
	{ 0x497248c9d12f44fd, 68, "strcpy", },
221
	{ 0x4a70207212a4c497, 24, "strlen", },
222
	{ 0x4b16a5c602c74c6c, 24, "vsub_t", },
223
	{ 0x4bb677dace6ca526, 184, "memset", }, // Final FantasyTactics (JPN)
224
	{ 0x4c4bdedcc13ac77c, 624, "dl_write_matrix_5", },
225
	{ 0x4c91c556d1aa896b, 104, "dl_write_material_3", },
226
	{ 0x4cf38c368078181e, 616, "dl_write_matrix", },
227
	{ 0x4d3e7085e01d30e4, 324, "memcpy", }, // PoPoLoCrois (JPN)
228
	{ 0x4d72b294501cddfb, 80, "copysign", },
229
	{ 0x4ddd83b7f4ed8d4e, 844, "memcpy", },
230
	{ 0x4e266783291b0220, 28, "vsub_t", },
231
	{ 0x4e5950928c0bb082, 44, "vmmul_q_transp4", },
232
	{ 0x4f34fc596ecf5b25, 40, "vdiv_t", },
233
	{ 0x500a949afb39133f, 24, "vf2iu_q", },
234
	{ 0x50d8f01ea8fa713d, 48, "send_commandi", },
235
	{ 0x50fa6db2fb14814a, 544, "rint", },
236
	{ 0x513ce13cd7ce97ea, 332, "scalbnf", },
237
	{ 0x514161da54d37416, 1416, "__umoddi3", },
238
	{ 0x51c52d7dd4d2191c, 360, "cos", },
239
	{ 0x5287d4b8abd5806b, 768, "_strtoll_r", },
240
	{ 0x52d5141545a75eda, 60, "sceGuClutMode", },
241
	{ 0x530cbe1ce9b45d58, 108, "sceGuLightAtt", },
242
	{ 0x53c9aa23504a630f, 96, "vmmul_q_5", },
243
	{ 0x54015ccbcbc75374, 24, "strlen", }, // Metal Gear Solid: Peace Walker demo
244
	{ 0x5550d87a851c218c, 168, "dl_write_viewport", },
245
	{ 0x55c1294280bfade0, 88, "sceGuBlendFunc", },
246
	{ 0x5642a63f3802a792, 456, "orenoimouto_download_frame", }, // Ore no Imouto ga Konnani Kawaii Wake ga Nai
247
	{ 0x56c9929e8c8c5768, 24, "fabsf", },
248
	{ 0x572b2d9e57e6e363, 788, "memcpy_thingy", },
249
	{ 0x580200b840b47c58, 1856, "_realloc_r", },
250
	{ 0x5961f681bbd69035, 28, "vfad_q", },
251
	{ 0x598b91c64cf7e036, 2388, "qsort", },
252
	{ 0x59a0cb08f5ecf8b6, 28, "copysignf", },
253
	{ 0x5ae4ec2a5e133de3, 28, "vector_cross_t", },
254
	{ 0x5b005f8375d7c364, 236, "floorf", },
255
	{ 0x5b103d973fd1dd94, 92, "sceVfpuMatrix4RotY", },
256
	{ 0x5b9d7e9d4c905694, 196, "_calloc_r", },
257
	{ 0x5bf7a77b028e9f66, 324, "sqrtf", },
258
	{ 0x5c0b3edc0e48852c, 148, "memmove", }, // Dissidia 1 (US)
259
	{ 0x5e898df42c4af6b8, 76, "wcsncmp", },
260
	{ 0x5f473780835e3458, 52, "vclamp_q", },
261
	{ 0x5fc58ed2c4d48b79, 40, "sceVfpuMatrix4Transform", },
262
	{ 0x6145029ef86f0365, 76, "__extendsfdf2", },
263
	{ 0x62815f41fa86a131, 656, "scalbn", },
264
	{ 0x6301fa5149bd973a, 120, "wcscat", },
265
	{ 0x658b07240a690dbd, 36, "strlen", },
266
	{ 0x66122f0ab50b2ef9, 296, "dl_write_dither_matrix_5", },
267
	{ 0x66f7f1beccbc104a, 256, "memcpy_swizzled", }, // God Eater 2
268
	{ 0x679e647e34ecf7f1, 132, "roundf", },
269
	{ 0x67afe74d9ec72f52, 4380, "_strtod_r", },
270
	{ 0x68b22c2aa4b8b915, 400, "sqrt", },
271
	{ 0x6962da85a6dad937, 60, "strrchr", },
272
	{ 0x69a3c4f774859404, 64, "vmmul_q_transp2", },
273
	{ 0x6ab54910104ef000, 628, "sd_gundam_g_generation_download_frame", }, // SD Gundam G Generation World
274
	{ 0x6ac2cd44e042592b, 252, "atvoffroadfurypro_download_frame", }, // ATV Offroad Fury Pro (US)
275
	{ 0x6b022e20ee3fa733, 68, "__negdf2", },
276
	{ 0x6b2a6347c0dfcb57, 152, "strcpy", },
277
	{ 0x6b4148322c569cb3, 240, "wmemchr", },
278
	{ 0x6c4cb6d25851553a, 44, "vtfm_t", },
279
	{ 0x6c7b2462b9ec7bc7, 56, "vmmul_q", },
280
	{ 0x6ca9cc8fa485d096, 304, "__ieee754_sqrtf", },
281
	{ 0x6ccffc753d2c148e, 96, "strlwr", },
282
	{ 0x6e40ec681fb5c571, 40, "matrix_copy_q", },
283
	{ 0x6e9884c842a51142, 236, "strncasecmp", },
284
	{ 0x6f101c5c4311c144, 276, "floorf", },
285
	{ 0x6f1731f84bbf76c3, 116, "strcmp", },
286
	{ 0x6f4e1a1a84df1da0, 68, "sceGupTexMode", },
287
	{ 0x6f7c9109b5b8fa47, 688, "danganronpa1_2_download_frame", }, // Danganronpa 1
288
	{ 0x70649c7211f6a8da, 16, "fabsf", },
289
	{ 0x70a6152b265228e8, 296, "unendingbloodycall_download_frame", }, // unENDing Bloody Call
290
	{ 0x7245b74db370ae72, 64, "sceVfpuMatrix4Mul", },
291
	{ 0x7259d52b21814a5a, 40, "sceVfpuMatrix4TransformXYZ", },
292
	{ 0x730f59cc6c0f5732, 452, "godseaterburst_depthmask_5551", }, // Gods Eater Burst (US)
293
	{ 0x7354fd206796d817, 864, "flowers_download_frame", }, // Flowers
294
	{ 0x736b34ebc702d873, 104, "vmmul_q_transp", },
295
	{ 0x73a614c08f777d52, 792, "danganronpa2_2_download_frame", }, // Danganronpa 2
296
	{ 0x7499a2ce8b60d801, 12, "abs", },
297
	{ 0x74c77fb521740cd2, 284, "toheart2_download_frame_2", }, // To Heart 2 Portable
298
	{ 0x74ebbe7d341463f3, 72, "sceGuColorFunc", },
299
	{ 0x755a41f9183bb89a, 60, "vmmul_q", },
300
	{ 0x757d7ab0afbc03f5, 948, "kirameki_school_life_download_frame", }, // Toradora! Portable
301
	{ 0x759834c69bb12c12, 68, "strcpy", },
302
	{ 0x75c5a88d62c9c99f, 276, "sinf", },
303
	{ 0x76c661fecbb39990, 364, "sin", },
304
	{ 0x770c9c07bf58fd14, 16, "fabsf", },
305
	{ 0x774e479eb9634525, 464, "_strtol_r", },
306
	{ 0x77aeb1c23f9aa2ad, 56, "strchr", },
307
	{ 0x78e8c65b5a458f33, 148, "memcmp", },
308
	{ 0x794d1b073c183c77, 24, "fabsf", },
309
	{ 0x7978a886cf70b1c9, 56, "wcschr", },
310
	{ 0x79faa339fff5a80c, 28, "finitef", },
311
	{ 0x7c50728008c288e3, 36, "vector_transform_q_4x4", },
312
	{ 0x7e33d4eaf573f937, 208, "memset", }, // Toukiden (JPN)
313
	{ 0x7f1fc0dce6be120a, 404, "fmod", },
314
	{ 0x8126a59ffa504614, 540, "brandish_download_frame", }, // Brandish, Zero no Kiseki, and Ao no Kiseki
315
	{ 0x828b98925af9ff8f, 40, "vector_distance_t", },
316
	{ 0x83ac39971df4b966, 336, "sqrtf", },
317
	{ 0x84c6cd47834f4c79, 1284, "powf", },
318
	{ 0x8734dc1d155ea493, 24, "vf2iz_q", },
319
	{ 0x87fe3f7e621ddebb, 212, "memcpy", },
320
	{ 0x891ca854e1c664e9, 2392, "qsort", },
321
	{ 0x8965d4b004adad28, 420, "log10f", },
322
	{ 0x89e1858ba11b84e4, 52, "memset", },
323
	{ 0x8a00e7207e7dbc81, 232, "_exit", },
324
	{ 0x8a1f9daadecbaf7f, 104, "vmmul_q_transp", },
325
	{ 0x8a610f34078ce360, 32, "vector_copy_q_t", },
326
	{ 0x8c3fd997a544d0b1, 268, "memcpy", }, // Valkyrie Profile (US)
327
	{ 0x8da0164e69e9b531, 1040, "grisaianokajitsu_download_frame", }, // Grisaia no Kajitsu La Fruit de la Grisaia
328
	{ 0x8dd0546db930ef25, 992, "memmove", }, // PoPoLoCrois (JPN)
329
	{ 0x8df2928848857e97, 164, "strcat", },
330
	{ 0x8e48cabd529ca6b5, 52, "sceVfpuVector3Mul", },
331
	{ 0x8e97dcb03fbaba5c, 104, "vmmul_q_transp", },
332
	{ 0x8ecf804bbe7922e5, 572, "worms_copy_normalize_alpha" }, // Worms Battle Islands (US)
333
	{ 0x8ee81b03d2eef1e7, 28, "vmul_t", },
334
	{ 0x8f09fb8693c3c49d, 992, "kirameki_school_life_download_frame", }, // Hentai Ouji To Warawanai Neko
335
	{ 0x8f19c41e8b987e18, 100, "matrix_mogrify", },
336
	{ 0x8ff11e9bed387401, 700, "memmove", }, // God Eater 2
337
	{ 0x910140c1a07aa59e, 256, "sceVfpuMatrix4Rot", },
338
	{ 0x91606bd72ae90481, 44, "wmemcpy", },
339
	{ 0x92c7d2de74068c9c, 32, "vcross_t", },
340
	{ 0x93d8a275ba288b26, 32, "vdot_t", },
341
	{ 0x94c7083b64a946b4, 2028, "powf", },
342
	{ 0x94eb1e7dccca76a4, 680, "shinigamitoshoujo_download_frame", }, // Shinigami to Shoujo (JP)
343
	{ 0x95a52ce1bc460108, 2036, "_malloc_r", },
344
	{ 0x95bd33ac373c019a, 24, "fabsf", },
345
	{ 0x9705934b0950d68d, 280, "dl_write_framebuffer_ptr", },
346
	{ 0x9734cf721bc0f3a1, 732, "atanf", },
347
	{ 0x99b85c5fce389911, 408, "mytranwars_upload_frame", }, // Mytran Wars
348
	{ 0x99c9288185c352ea, 592, "orenoimouto_download_frame_2", }, // Ore no Imouto ga Konnani Kawaii Wake ga Nai
349
	{ 0x9a06b9d5c16c4c20, 76, "dl_write_clut_ptrload", },
350
	{ 0x9b88b739267d189e, 88, "strrchr", },
351
	{ 0x9ce53975bb88c0e7, 96, "strncpy", },
352
	{ 0x9d4f5f56b52f07f2, 808, "memmove", }, // Jeanne d'Arc (US)
353
	{ 0x9e2941c4a5c5e847, 792, "memcpy", }, // LittleBigPlanet (US)
354
	{ 0x9e6ce11f9d49f954, 292, "memcpy", }, // Jeanne d'Arc (US)
355
	{ 0x9f269daa6f0da803, 128, "sceGupScissor", },
356
	{ 0x9f7919eeb43982b0, 208, "__fixdfsi", },
357
	{ 0xa1c9b0a2c71235bf, 1752, "marvelalliance1_copy" }, // Marvel Ultimate Alliance 1 (EU)
358
	{ 0x9b76c7f2a41aa805, 1752, "marvelalliance1_copy" }, // Marvel Ultimate alliance 1 (US)
359
	{ 0xa1ca0640f11182e7, 72, "strcspn", },
360
	{ 0xa243486be51ce224, 272, "cosf", },
361
	{ 0xa2bcef60a550a3ef, 92, "sceVfpuMatrix4RotZ", },
362
	{ 0xa373f55c65cd757a, 312, "memcpy_swizzled" }, // God Eater Burst Demo
363
	{ 0xa41989db0f9bf97e, 1304, "pow", },
364
	{ 0xa44f6227fdbc12b1, 132, "memcmp", }, // Popolocrois (US)
365
	{ 0xa46cc6ea720d5775, 44, "sceGupFrontFace", },
366
	{ 0xa54967288afe8f26, 600, "ceil", },
367
	{ 0xa5ddbbc688e89a4d, 56, "isinf", },
368
	{ 0xa615f6bd33195dae, 220, "atvoffroadfuryprodemo_download_frame", }, // ATV Offroad Fury Pro (US) demo
369
	{ 0xa662359e30b829e4, 148, "memcmp", },
370
	{ 0xa6a03f0487a911b0, 392, "danganronpa1_1_download_frame", }, // Danganronpa 1
371
	{ 0xa8390e65fa087c62, 140, "vtfm_t_q", },
372
	{ 0xa85e48ee10b2dc50, 432, "omertachinmokunookitethelegacy_download_frame", }, // Omerta Chinmoku No Okite The Legacy
373
	{ 0xa85fe8abb88b1c6f, 52, "vector_sub_t", },
374
	{ 0xa9194e55cc586557, 268, "memcpy", },
375
	{ 0xa91b3d60bd75105b, 28, "vadd_t", },
376
	{ 0xab97ec58c58a7c75, 52, "sceVfpuVector3Div", },
377
	{ 0xac84fa7571895c9a, 68, "memcpy", }, // Marvel Ultimate Alliance 2
378
	{ 0xacc2c11c3ea28320, 268, "ceilf", },
379
	{ 0xad67add5122b8c64, 52, "sceVfpuMatrix4Transfer", },
380
	{ 0xada952a1adcea4f5, 60, "vmmul_q_transp5", },
381
	{ 0xadfbf8fb8c933193, 56, "fabs", },
382
	{ 0xae39bac51fd6e76b, 628, "gakuenheaven_download_frame", }, // Gakuen Heaven: Boy's Love Scramble!
383
	{ 0xae50226363135bdd, 24, "vector_sub_t", },
384
	{ 0xae6cd7dfac82c244, 48, "sceVfpuScalarPow", },
385
	{ 0xaf85d47f95ad2921, 1936, "pow", },
386
	{ 0xafb2c7e56c04c8e9, 48, "vtfm_q", },
387
	{ 0xafc9968e7d246a5e, 1588, "atan", },
388
	{ 0xafcb7dfbc4d72588, 44, "vector_transform_3x4", },
389
	{ 0xb07f9d82d79deea9, 536, "brandish_download_frame", },  // Brandish, and Sora no kiseki 3rd
390
	{ 0xb09c9bc1343a774c, 456, "danganronpa2_1_download_frame", }, // Danganronpa 2
391
	{ 0xb0db731f27d3aa1b, 40, "sceVfpuScalarMax", },
392
	{ 0xb0ef265e87899f0a, 32, "vector_divide_t_s", },
393
	{ 0xb183a37baa12607b, 32, "vscl_t", },
394
	{ 0xb1a3e60a89af9857, 20, "fabs", },
395
	{ 0xb25670ff47b4843d, 232, "starocean_clear_framebuf" },
396
	{ 0xb3fef47fb27d57c9, 44, "vector_scale_t", },
397
	{ 0xb43fd5078ae78029, 84, "send_commandi_stall", },
398
	{ 0xb43ffbd4dc446dd2, 324, "atan2f", },
399
	{ 0xb5fdb3083e6f4b3f, 36, "vhtfm_t", },
400
	{ 0xb6a04277fb1e1a1a, 104, "vmmul_q_transp", },
401
	{ 0xb726917d688ac95b, 268, "kagaku_no_ensemble_download_frame", }, // Toaru Majutsu to Kagaku no Ensemble
402
	{ 0xb7448c5ffdd3b0fc, 356, "atan2f", },
403
	{ 0xb7d88567dc22aab1, 820, "memcpy", }, // Trails in the Sky (US)
404
	{ 0xb877d3c37a7aaa5d, 60, "vmmul_q_2", },
405
	{ 0xb89aa73b6f94ba95, 52, "vclamp_t", },
406
	{ 0xb8bd1f0e02e9ad87, 156, "sceGuLightSpot", },
407
	{ 0xb8cfaeebfeb2de20, 7548, "_vfprintf_r", },
408
	{ 0xb97f352e85661af6, 32, "finitef", },
409
	{ 0xba76a8e853426baa, 544, "soranokiseki_fc_download_frame", }, // Sora no kiseki FC
410
	{ 0xbb3c6592ed319ba4, 132, "sceGuFog", },
411
	{ 0xbb7d7c93e4c08577, 124, "__truncdfsf2", },
412
	{ 0xbdf54d66079afb96, 200, "sceGuBoneMatrix", },
413
	{ 0xbe773f78afd1a70f, 128, "rand", },
414
	{ 0xbf5d02ccb8514881, 108, "strcmp", },
415
	{ 0xbf791954ebef4afb, 396, "expf", },
416
	{ 0xbfa8c16038b7753d, 868, "sakurasou_download_frame", }, // Sakurasou No Pet Na Kanojo
417
	{ 0xbfe07e305abc4cd1, 808, "memmove" }, // Final Fantasy Tactics (US)
418
	{ 0xc062f2545ef5dc39, 1076, "kirameki_school_life_download_frame", },// Kirameki School Life SP,and Boku wa Tomodati ga Sukunai
419
	{ 0xc0feb88cc04a1dc7, 48, "sceVfpuVector3Neg", },
420
	{ 0xc1220040b0599a75, 472, "soranokiseki_sc_download_frame", }, // Sora no kiseki SC
421
	{ 0xc1f34599d0b9146b, 116, "__subdf3", },
422
	{ 0xc3089f66ee6f0a24, 464, "growlanser_create_saveicon", }, // Growlanswer IV
423
	{ 0xc319f0d107dd2f45, 888, "__muldf3", },
424
	{ 0xc35c10300b6b6091, 620, "floor", },
425
	{ 0xc3dbf3e6c80a0a51, 164, "dl_write_bone_matrix", },
426
	{ 0xc51519f5dab342d4, 224, "cosf", },
427
	{ 0xc52c14b9af8c3008, 76, "memcmp", },
428
	{ 0xc54eae62622f1e11, 164, "dl_write_bone_matrix_2", },
429
	{ 0xc6b29de7d3245198, 656, "starocean_write_stencil" }, // Star Ocean 1 (US)
430
	{ 0xc7b1113cfdfedab6, 104, "tonyhawkp8_upload_tutorial_frame", }, // Tony Hawk's Project 8 (US)
431
	{ 0xc96e3a087ebf49a9, 100, "dl_write_light_color", },
432
	{ 0xca7cb2c0b9410618, 680, "kudwafter_download_frame", }, // Kud Wafter
433
	{ 0xcb22120018386319, 692, "photokano_download_frame", }, // Photo Kano
434
	{ 0xcb7a2edd603ecfef, 48, "vtfm_p", },
435
	{ 0xcdf64d21418b2667, 24, "vzero_q", },
436
	{ 0xce1c95ee25b8e2ea, 448, "fmod", },
437
	{ 0xce4d18a75b98859f, 40, "vector_add_t_2", },
438
	// Unsafe due to immediates.
439
	//{ 0xceb5372d0003d951, 52, "dl_write_stenciltest", },
440
	{ 0xcee11483b550ce8f, 24, "vocp_q", },
441
	{ 0xcfecf208769ed5fd, 272, "cosf", },
442
	{ 0xd019b067b58cf6c3, 700, "memmove", }, // Star Ocean 1 (US)
443
	{ 0xd12a3a91e0040229, 524, "sceGupSetStatus", },
444
	{ 0xd141d1efbfe13ca3, 968, "kirameki_school_life_download_frame", }, // Kirameki School Life SP,and Boku wa Tomodati ga Sukunai
445
	{ 0xd1db467a23ebe00d, 724, "rewrite_download_frame", }, // Rewrite Portable
446
	{ 0xd1faacfc711d61e8, 68, "__negdf2", },
447
	{ 0xd207b0650a41dd9c, 28, "vmin_q", },
448
	{ 0xd6d6e0bb21654778, 24, "vneg_t", },
449
	{ 0xd7229fee680e7851, 40, "sceVfpuScalarMin", },
450
	{ 0xd75670860a7f4b05, 144, "wcsncpy", },
451
	{ 0xd76d1a8804c7ec2c, 100, "sceGupModelColor", },
452
	{ 0xd7d350c0b33a4662, 28, "vadd_q", },
453
	{ 0xd80051931427dca0, 116, "__subdf3", },
454
	{ 0xd96ba6e4ff86f1bf, 276, "katamari_screenshot_to_565", }, // Me and My Katamari (US)
455
	{ 0xda51dab503b06979, 32, "vmidt_q", },
456
	{ 0xdc0cc8b400ecfbf2, 36, "strcmp", },
457
	{ 0xdcab869acf2bacab, 292, "strncasecmp", },
458
	{ 0xdcdf7e1c1a3dc260, 372, "strncmp", },
459
	{ 0xdcfc28e624a81bf1, 5476, "_dtoa_r", },
460
	{ 0xddfa5a85937aa581, 32, "vdot_q", },
461
	{ 0xdeb6a583659e3948, 1080, "littlebustersce_download_frame", }, // Little Busters! Converted Edition (JP)
462
	{ 0xe0214719d8a0aa4e, 104, "strstr", },
463
	{ 0xe029f0699ca3a886, 76, "matrix300_transform_by", },
464
	{ 0xe086d5c9ce89148f, 212, "bokunonatsuyasumi4_download_frame", }, // Boku no Natsuyasumi 2 and 4,
465
	{ 0xe093c2b0194d52b3, 820, "ff1_battle_effect", }, // Final Fantasy 1 (US)
466
	{ 0xe1107cf3892724a0, 460, "_memalign_r", },
467
	{ 0xe1724e6e29209d97, 24, "vector_length_t_2", },
468
	{ 0xe1a5d939cc308195, 68, "wcscmp", },
469
	{ 0xe2d9106e5b9e39e6, 80, "strnlen", },
470
	{ 0xe3154c81a76515fa, 208, "narisokonai_download_frame", }, // Narisokonai Eiyuutan
471
	{ 0xe32cb5c062d1a1c4, 700, "_strtoull_r", },
472
	{ 0xe3835fb2c9c04e59, 44, "vmmul_q", },
473
	{ 0xe527c62d8613f297, 136, "strcpy", },
474
	{ 0xe6002fc9affd678e, 480, "topx_create_saveicon", }, // Tales of Phantasia X
475
	{ 0xe7b36c2c1348551d, 148, "tan", },
476
	{ 0xe83a7a9d80a21c11, 4448, "_strtod_r", },
477
	{ 0xe894bda909a8a8f9, 1064, "expensive_wipeout_pulse", },
478
	{ 0xe8ad7719be44e7c8, 276, "strchr", },
479
	{ 0xeabb9c1b4f83d2b4, 52, "memset_jak", }, // Crisis Core (US), Jak and Daxter (this is a slow memset and needs to have slow timing)
480
	{ 0xeb0f7bf63d52ece9, 88, "strncat", },
481
	{ 0xeb8c0834d8bbc28c, 416, "fmodf", },
482
	{ 0xed8918f378e9a563, 628, "sd_gundam_g_generation_download_frame", }, // SD Gundam G Generation Overworld
483
	{ 0xedbbe9bf9fbceca8, 172, "dl_write_viewport2", },
484
	{ 0xedc3f476221f96e6, 148, "tanf", },
485
	{ 0xf1f660fdf349eac2, 1588, "_malloc_r", },
486
	{ 0xf38a356a359dbe06, 28, "vmax_q", },
487
	{ 0xf3fc2220ed0f2703, 32, "send_commandf", },
488
	{ 0xf4d797cef4ac88cd, 684, "_free_r", },
489
	{ 0xf4ea7d2ec943fa02, 224, "sinf", },
490
	{ 0xf4f8cdf479dfc4a4, 224, "sinf", },
491
	{ 0xf527d906d69005a0, 848, "photokano_download_frame_2", }, // Photo Kano
492
	{ 0xf52f993e444b6c52, 44, "sceGupShadeModel", },
493
	{ 0xf56641884b36c638, 468, "scalbn", },
494
	{ 0xf5e91870b5b76ddc, 288, "motorstorm_download_frame", }, // MotorStorm: Arctic Edge
495
	{ 0xf5f7826b4a61767c, 40, "matrix_copy_q", },
496
	{ 0xf73c094e492bc163, 396, "hypot", },
497
	{ 0xf773297d89ff7a63, 532, "kumonohatateni_download_frame", }, // Amatsumi Sora ni Kumo no Hatate ni, and Hanakisou
498
	{ 0xf7fc691db0147e25, 96, "strspn", },
499
	{ 0xf842aea3baa61f29, 32, "vector_length_t", },
500
	{ 0xf8e0902f4099a9d6, 2260, "qsort", },
501
	{ 0xf972543ab7df071a, 32, "sceVfpuScalarSqrt", },
502
	{ 0xf9b00ef163e8b9d4, 32, "vscl_q", },
503
	{ 0xf9ea1bf2a897ef24, 588, "ceil", },
504
	{ 0xfa156c48461eeeb9, 24, "vf2id_q", },
505
	{ 0xfb4253a1d9d9df9f, 20, "isnanf", },
506
	{ 0xfd34a9ad94fa6241, 76, "__extendsfdf2", },
507
	{ 0xfe2566ad957054b7, 232, "suikoden1_and_2_download_frame_2", }, // Gensou Suikoden 1&2
508
	{ 0xfe4f0280240008e9, 28, "vavg_q", },
509
	{ 0xfe5dd338ab862291, 216, "memset", }, // Metal Gear Solid: Peace Walker demo
510
	{ 0xffc8f5f8f946152c, 192, "dl_write_light_color", },
511
	{ 0x249a3c5981c73480, 1472, "openseason_data_decode", },  // Open Season
512
	{ 0x795d940ad0a605f8, 40, "gow_fps_hack", }, // God of War (all)
513
	{ 0x4c75043b7b0c643b, 512, "gow_vortex_hack", }, // God of War: Ghost of Sparta vortex timer hack, avoids softlock #8299
514
	{ 0x7624dde603717640, 288, "ZZT3_select_hack", }, // Zettai Zetsumei Toshi 3 - bypasses softlock on character select screen #4901
515
	{ 0x0dc5ca84f707863c, 452, "blitz_fps_hack", }, // Blitz: Overtime
516
	{ 0xf93d3cd093595a6c, 856, "brian_lara_fps_hack", }, // Brian Lara 2007: Pressure Play
517
	{ 0xc1d4af42a4c8860f, 964, "persona1_download_frame", },  // Persona 1 (issue #13079)
518
	{ 0xde4286b2e7f6d3c1, 304, "persona2_download_frame", },  // Persona 2 (issue #13079)
519
	{ 0x478c9c93d02011af, 1068, "steinsgate_download_frame", }, // Steins;Gate (issue #18262)
520
	{ 0xb85dbe639f7acf13, 312, "infinity_download_frame", },  // Never7, Ever17, Remember11
521
	{ 0x649d3305344f7afd, 464, "takuyo_1_download_frame", },
522
	{ 0x505ad2073e4381d7, 428, "takuyo_2_download_frame", },
523
	{ 0x0f4dbf28320798d7, 1160, "takuyo_3_download_frame", },
524
	{ 0xf2bbff4807c5dab2, 556, "kingdomhearts_download_frame", },
525
};
526

527
namespace MIPSAnalyst {
528
	// Only can ever output a single reg.
529
	MIPSGPReg GetOutGPReg(MIPSOpcode op) {
530
		MIPSInfo opinfo = MIPSGetInfo(op);
531
		if (opinfo & OUT_RT) {
532
			return MIPS_GET_RT(op);
533
		}
534
		if (opinfo & OUT_RD) {
535
			return MIPS_GET_RD(op);
536
		}
537
		if (opinfo & OUT_RA) {
538
			return MIPS_REG_RA;
539
		}
540
		return MIPS_REG_INVALID;
541
	}
542

543
	bool ReadsFromGPReg(MIPSOpcode op, MIPSGPReg reg) {
544
		MIPSInfo info = MIPSGetInfo(op);
545
		if ((info & IN_RS) != 0 && MIPS_GET_RS(op) == reg) {
546
			return true;
547
		}
548
		if ((info & IN_RT) != 0 && MIPS_GET_RT(op) == reg) {
549
			return true;
550
		}
551
		return false;
552
	}
553

554
	bool IsDelaySlotNiceReg(MIPSOpcode branchOp, MIPSOpcode op, MIPSGPReg reg1, MIPSGPReg reg2) {
555
		MIPSInfo branchInfo = MIPSGetInfo(branchOp);
556
		MIPSInfo info = MIPSGetInfo(op);
557
		if (info & IS_CONDBRANCH) {
558
			return false;
559
		}
560
		// $0 is never an out reg, it's always 0.
561
		if (reg1 != MIPS_REG_ZERO && GetOutGPReg(op) == reg1) {
562
			return false;
563
		}
564
		if (reg2 != MIPS_REG_ZERO && GetOutGPReg(op) == reg2) {
565
			return false;
566
		}
567
		// If the branch is an "and link" branch, check the delay slot for RA.
568
		if ((branchInfo & OUT_RA) != 0) {
569
			return GetOutGPReg(op) != MIPS_REG_RA && !ReadsFromGPReg(op, MIPS_REG_RA);
570
		}
571
		return true;
572
	}
573

574
	bool IsDelaySlotNiceVFPU(MIPSOpcode branchOp, MIPSOpcode op) {
575
		MIPSInfo info = MIPSGetInfo(op);
576
		if (info & IS_CONDBRANCH) {
577
			return false;
578
		}
579
		return (info & OUT_VFPU_CC) == 0;
580
	}
581

582
	bool IsDelaySlotNiceFPU(MIPSOpcode branchOp, MIPSOpcode op) {
583
		MIPSInfo info = MIPSGetInfo(op);
584
		if (info & IS_CONDBRANCH) {
585
			return false;
586
		}
587
		return (info & OUT_FPUFLAG) == 0;
588
	}
589

590
	bool IsSyscall(MIPSOpcode op) {
591
		// Syscalls look like this: 0000 00-- ---- ---- ---- --00 1100
592
		return (op >> 26) == 0 && (op & 0x3f) == 12;
593
	}
594

595
	static bool IsSWInstr(MIPSOpcode op) {
596
		return (op & MIPSTABLE_IMM_MASK) == 0xAC000000;
597
	}
598
	static bool IsSBInstr(MIPSOpcode op) {
599
		return (op & MIPSTABLE_IMM_MASK) == 0xA0000000;
600
	}
601
	static bool IsSHInstr(MIPSOpcode op) {
602
		return (op & MIPSTABLE_IMM_MASK) == 0xA4000000;
603
	}
604

605
	static bool IsSWLInstr(MIPSOpcode op) {
606
		return (op & MIPSTABLE_IMM_MASK) == 0xA8000000;
607
	}
608
	static bool IsSWRInstr(MIPSOpcode op) {
609
		return (op & MIPSTABLE_IMM_MASK) == 0xB8000000;
610
	}
611

612
	static bool IsSWC1Instr(MIPSOpcode op) {
613
		return (op & MIPSTABLE_IMM_MASK) == 0xE4000000;
614
	}
615
	static bool IsSVSInstr(MIPSOpcode op) {
616
		return (op & MIPSTABLE_IMM_MASK) == 0xE8000000;
617
	}
618
	static bool IsSVQInstr(MIPSOpcode op) {
619
		return (op & MIPSTABLE_IMM_MASK) == 0xF8000000;
620
	}
621

622
	int OpMemoryAccessSize(u32 pc) {
623
		const auto op = Memory::Read_Instruction(pc, true);
624
		return MIPSGetMemoryAccessSize(op);
625
	}
626

627
	bool IsOpMemoryWrite(u32 pc) {
628
		const auto op = Memory::Read_Instruction(pc, true);
629
		MIPSInfo info = MIPSGetInfo(op);
630
		return (info & OUT_MEM) != 0;
631
	}
632

633
	bool OpHasDelaySlot(u32 pc) {
634
		const auto op = Memory::Read_Instruction(pc, true);
635
		MIPSInfo info = MIPSGetInfo(op);
636
		return (info & DELAYSLOT) != 0;
637
	}
638

639
	bool OpWouldChangeMemory(u32 pc, u32 addr, u32 size) {
640
		const auto op = Memory::Read_Instruction(pc, true);
641

642
		// TODO: Trap sc/ll, svl.q, svr.q?
643

644
		int gprMask = 0;
645
		if (IsSWInstr(op))
646
			gprMask = 0xFFFFFFFF;
647
		if (IsSHInstr(op))
648
			gprMask = 0x0000FFFF;
649
		if (IsSBInstr(op))
650
			gprMask = 0x000000FF;
651
		if (IsSWLInstr(op)) {
652
			const u32 shift = (addr & 3) * 8;
653
			gprMask = 0xFFFFFFFF >> (24 - shift);
654
		}
655
		if (IsSWRInstr(op)) {
656
			const u32 shift = (addr & 3) * 8;
657
			gprMask = 0xFFFFFFFF << shift;
658
		}
659

660
		u32 writeVal = 0xFFFFFFFF;
661
		u32 prevVal = 0x00000000;
662

663
		if (gprMask != 0)
664
		{
665
			MIPSGPReg rt = MIPS_GET_RT(op);
666
			writeVal = currentMIPS->r[rt] & gprMask;
667
			prevVal = Memory::Read_U32(addr) & gprMask;
668
		}
669

670
		if (IsSWC1Instr(op)) {
671
			int ft = MIPS_GET_FT(op);
672
			writeVal = currentMIPS->fi[ft];
673
			prevVal = Memory::Read_U32(addr);
674
		}
675

676
		if (IsSVSInstr(op)) {
677
			int vt = ((op >> 16) & 0x1f) | ((op & 3) << 5);
678
			writeVal = currentMIPS->vi[voffset[vt]];
679
			prevVal = Memory::Read_U32(addr);
680
		}
681

682
		if (IsSVQInstr(op)) {
683
			int vt = (((op >> 16) & 0x1f)) | ((op & 1) << 5);
684
			float rd[4];
685
			ReadVector(rd, V_Quad, vt);
686
			return memcmp(rd, Memory::GetPointerRange(addr, 16), sizeof(float) * 4) != 0;
687
		}
688

689
		return writeVal != prevVal;
690
	}
691

692
	AnalysisResults Analyze(u32 address) {
693
		const int MAX_ANALYZE = 10000;
694

695
		AnalysisResults results;
696

697
		//set everything to -1 (FF)
698
		memset(&results, 255, sizeof(AnalysisResults));
699
		for (int i = 0; i < MIPS_NUM_GPRS; i++) {
700
			results.r[i].used = false;
701
			results.r[i].readCount = 0;
702
			results.r[i].writeCount = 0;
703
			results.r[i].readAsAddrCount = 0;
704
		}
705

706
		for (u32 addr = address, endAddr = address + MAX_ANALYZE; addr <= endAddr; addr += 4) {
707
			MIPSOpcode op = Memory::Read_Instruction(addr, true);
708
			MIPSInfo info = MIPSGetInfo(op);
709

710
			MIPSGPReg rs = MIPS_GET_RS(op);
711
			MIPSGPReg rt = MIPS_GET_RT(op);
712

713
			if (info & IN_RS) {
714
				if ((info & IN_RS_ADDR) == IN_RS_ADDR) {
715
					results.r[rs].MarkReadAsAddr(addr);
716
				} else {
717
					results.r[rs].MarkRead(addr);
718
				}
719
			}
720

721
			if (info & IN_RT) {
722
				results.r[rt].MarkRead(addr);
723
			}
724

725
			MIPSGPReg outReg = GetOutGPReg(op);
726
			if (outReg != MIPS_REG_INVALID) {
727
				results.r[outReg].MarkWrite(addr);
728
			}
729

730
			if (info & DELAYSLOT) {
731
				// Let's just finish the delay slot before bailing.
732
				endAddr = addr + 4;
733
			}
734
		}
735

736
		int numUsedRegs = 0;
737
		static int totalUsedRegs = 0;
738
		static int numAnalyzings = 0;
739
		for (int i = 0; i < MIPS_NUM_GPRS; i++) {
740
			if (results.r[i].used) {
741
				numUsedRegs++;
742
			}
743
		}
744
		totalUsedRegs += numUsedRegs;
745
		numAnalyzings++;
746
		VERBOSE_LOG(Log::CPU, "[ %08x ] Used regs: %i Average: %f", address, numUsedRegs, (float)totalUsedRegs / (float)numAnalyzings);
747

748
		return results;
749
	}
750
	
751
	void Reset() {
752
		std::lock_guard<std::recursive_mutex> guard(functions_lock);
753
		functions.clear();
754
		hashToFunction.clear();
755
	}
756

757
	void UpdateHashToFunctionMap() {
758
		std::lock_guard<std::recursive_mutex> guard(functions_lock);
759
		hashToFunction.clear();
760
		// Really need to detect C++11 features with better defines.
761
#if !PPSSPP_PLATFORM(IOS)
762
		hashToFunction.reserve(functions.size());
763
#endif
764
		for (auto iter = functions.begin(); iter != functions.end(); iter++) {
765
			AnalyzedFunction &f = *iter;
766
			if (f.hasHash && f.size > 16) {
767
				hashToFunction.emplace(f.hash, &f);
768
			}
769
		}
770
	}
771

772
	enum RegisterUsage {
773
		USAGE_CLOBBERED,
774
		USAGE_INPUT,
775
		USAGE_UNKNOWN,
776
	};
777

778
	static RegisterUsage DetermineInOutUsage(u64 inFlag, u64 outFlag, u32 addr, int instrs) {
779
		const u32 start = addr;
780
		u32 end = addr + instrs * sizeof(u32);
781
		bool canClobber = true;
782
		while (addr < end) {
783
			const MIPSOpcode op = Memory::Read_Instruction(addr, true);
784
			const MIPSInfo info = MIPSGetInfo(op);
785

786
			// Yes, used.
787
			if (info & inFlag)
788
				return USAGE_INPUT;
789

790
			// Clobbered, so not used.
791
			if (info & outFlag)
792
				return canClobber ? USAGE_CLOBBERED : USAGE_UNKNOWN;
793

794
			// Bail early if we hit a branch (could follow each path for continuing?)
795
			if ((info & IS_CONDBRANCH) || (info & IS_JUMP)) {
796
				// Still need to check the delay slot (so end after it.)
797
				// We'll assume likely are taken.
798
				end = addr + 8;
799
				// The reason for the start != addr check is that we compile delay slots before branches.
800
				// That means if we're starting at the branch, it's not safe to allow the delay slot
801
				// to clobber, since it might have already been compiled.
802
				// As for LIKELY, we don't know if it'll run the branch or not.
803
				canClobber = (info & LIKELY) == 0 && start != addr;
804
			}
805
			addr += 4;
806
		}
807
		return USAGE_UNKNOWN;
808
	}
809

810
	static RegisterUsage DetermineRegisterUsage(MIPSGPReg reg, u32 addr, int instrs) {
811
		switch (reg) {
812
		case MIPS_REG_HI:
813
			return DetermineInOutUsage(IN_HI, OUT_HI, addr, instrs);
814
		case MIPS_REG_LO:
815
			return DetermineInOutUsage(IN_LO, OUT_LO, addr, instrs);
816
		case MIPS_REG_FPCOND:
817
			return DetermineInOutUsage(IN_FPUFLAG, OUT_FPUFLAG, addr, instrs);
818
		case MIPS_REG_VFPUCC:
819
			return DetermineInOutUsage(IN_VFPU_CC, OUT_VFPU_CC, addr, instrs);
820
		default:
821
			break;
822
		}
823

824
		if (reg >= 32) {
825
			return USAGE_UNKNOWN;
826
		}
827

828
		const u32 start = addr;
829
		u32 end = addr + instrs * sizeof(u32);
830
		bool canClobber = true;
831
		while (addr < end) {
832
			const MIPSOpcode op = Memory::Read_Instruction(addr, true);
833
			const MIPSInfo info = MIPSGetInfo(op);
834

835
			// Yes, used.
836
			if ((info & IN_RS) && (MIPS_GET_RS(op) == reg))
837
				return USAGE_INPUT;
838
			if ((info & IN_RT) && (MIPS_GET_RT(op) == reg))
839
				return USAGE_INPUT;
840

841
			// Clobbered, so not used.
842
			bool clobbered = false;
843
			if ((info & OUT_RT) && (MIPS_GET_RT(op) == reg))
844
				clobbered = true;
845
			if ((info & OUT_RD) && (MIPS_GET_RD(op) == reg))
846
				clobbered = true;
847
			if ((info & OUT_RA) && (reg == MIPS_REG_RA))
848
				clobbered = true;
849
			if (clobbered) {
850
				if (!canClobber || (info & IS_CONDMOVE))
851
					return USAGE_UNKNOWN;
852
				return USAGE_CLOBBERED;
853
			}
854

855
			// Bail early if we hit a branch (could follow each path for continuing?)
856
			if ((info & IS_CONDBRANCH) || (info & IS_JUMP)) {
857
				// Still need to check the delay slot (so end after it.)
858
				// We'll assume likely are taken.
859
				end = addr + 8;
860
				// The reason for the start != addr check is that we compile delay slots before branches.
861
				// That means if we're starting at the branch, it's not safe to allow the delay slot
862
				// to clobber, since it might have already been compiled.
863
				// As for LIKELY, we don't know if it'll run the branch or not.
864
				canClobber = (info & LIKELY) == 0 && start != addr;
865
			}
866
			addr += 4;
867
		}
868
		return USAGE_UNKNOWN;
869
	}
870

871
	bool IsRegisterUsed(MIPSGPReg reg, u32 addr, int instrs) {
872
		return DetermineRegisterUsage(reg, addr, instrs) == USAGE_INPUT;
873
	}
874

875
	bool IsRegisterClobbered(MIPSGPReg reg, u32 addr, int instrs) {
876
		return DetermineRegisterUsage(reg, addr, instrs) == USAGE_CLOBBERED;
877
	}
878

879
	void HashFunctions() {
880
		std::lock_guard<std::recursive_mutex> guard(functions_lock);
881
		std::vector<u32> buffer;
882

883
		for (auto iter = functions.begin(), end = functions.end(); iter != end; iter++) {
884
			AnalyzedFunction &f = *iter;
885
			if (!Memory::IsValidRange(f.start, f.end - f.start + 4)) {
886
				continue;
887
			}
888

889
			// This is unfortunate.  In case of emuhacks or relocs, we have to make a copy.
890
			buffer.resize((f.end - f.start + 4) / 4);
891
			size_t pos = 0;
892
			for (u32 addr = f.start; addr <= f.end; addr += 4) {
893
				u32 validbits = 0xFFFFFFFF;
894
				MIPSOpcode instr = Memory::ReadUnchecked_Instruction(addr, true);
895
				if (MIPS_IS_EMUHACK(instr)) {
896
					f.hasHash = false;
897
					goto skip;
898
				}
899

900
				MIPSInfo flags = MIPSGetInfo(instr);
901
				if (flags & IN_IMM16)
902
					validbits &= ~0xFFFF;
903
				if (flags & IN_IMM26)
904
					validbits &= ~0x03FFFFFF;
905
				buffer[pos++] = instr & validbits;
906
			}
907

908
			f.hash = CityHash64((const char *) &buffer[0], buffer.size() * sizeof(u32));
909
			f.hasHash = true;
910
skip:
911
			;
912
		}
913
	}
914

915
	static const char *DefaultFunctionName(char buffer[256], u32 startAddr) {
916
		snprintf(buffer, 256, "z_un_%08x", startAddr);
917
		return buffer;
918
	}
919

920
	static bool IsDefaultFunction(const char *name) {
921
		if (name == NULL) {
922
			// Must be I guess?
923
			return true;
924
		}
925

926
		// Un named stubs, just in case.
927
		if (!strncmp(name, "[UNK:", strlen("[UNK:")))
928
			return true;
929

930
		// Assume any z_un, not just the address, is a default func.
931
		return !strncmp(name, "z_un_", strlen("z_un_")) || !strncmp(name, "u_un_", strlen("u_un_"));
932
	}
933

934
	static bool IsDefaultFunction(const std::string &name) {
935
		if (name.empty()) {
936
			// Must be I guess?
937
			return true;
938
		}
939

940
		return IsDefaultFunction(name.c_str());
941
	}
942

943
	static u32 ScanAheadForJumpback(u32 fromAddr, u32 knownStart, u32 knownEnd) {
944
		static const u32 MAX_AHEAD_SCAN = 0x1000;
945
		// Maybe a bit high... just to make sure we don't get confused by recursive tail recursion.
946
		static const u32 MAX_FUNC_SIZE = 0x20000;
947

948
		if (fromAddr > knownEnd + MAX_FUNC_SIZE) {
949
			return INVALIDTARGET;
950
		}
951

952
		// Code might jump halfway up to before fromAddr, but after knownEnd.
953
		// In that area, there could be another jump up to the valid range.
954
		// So we track that for a second scan.
955
		u32 closestJumpbackAddr = INVALIDTARGET;
956
		u32 closestJumpbackTarget = fromAddr;
957

958
		// We assume the furthest jumpback is within the func.
959
		u32 furthestJumpbackAddr = INVALIDTARGET;
960

961
		const u32 scanEnd = fromAddr + Memory::ValidSize(fromAddr, MAX_AHEAD_SCAN);
962
		for (u32 ahead = fromAddr; ahead < scanEnd; ahead += 4) {
963
			MIPSOpcode aheadOp = Memory::Read_Instruction(ahead, true);
964
			u32 target = GetBranchTargetNoRA(ahead, aheadOp);
965
			if (target == INVALIDTARGET && ((aheadOp & 0xFC000000) == 0x08000000)) {
966
				target = GetJumpTarget(ahead);
967
			}
968

969
			if (target != INVALIDTARGET) {
970
				// Only if it comes back up to known code within this func.
971
				if (target >= knownStart && target <= knownEnd) {
972
					furthestJumpbackAddr = ahead;
973
				}
974
				// But if it jumps above fromAddr, we should scan that area too...
975
				if (target < closestJumpbackTarget && target < fromAddr && target > knownEnd) {
976
					closestJumpbackAddr = ahead;
977
					closestJumpbackTarget = target;
978
				}
979
			}
980
			if (aheadOp == MIPS_MAKE_JR_RA()) {
981
				break;
982
			}
983
		}
984

985
		if (closestJumpbackAddr != INVALIDTARGET && furthestJumpbackAddr == INVALIDTARGET) {
986
			for (u32 behind = closestJumpbackTarget; behind < fromAddr; behind += 4) {
987
				MIPSOpcode behindOp = Memory::Read_Instruction(behind, true);
988
				u32 target = GetBranchTargetNoRA(behind, behindOp);
989
				if (target == INVALIDTARGET && ((behindOp & 0xFC000000) == 0x08000000)) {
990
					target = GetJumpTarget(behind);
991
				}
992

993
				if (target != INVALIDTARGET) {
994
					if (target >= knownStart && target <= knownEnd) {
995
						furthestJumpbackAddr = closestJumpbackAddr;
996
					}
997
				}
998
			}
999
		}
1000

1001
		return furthestJumpbackAddr;
1002
	}
1003

1004
	bool ScanForFunctions(u32 startAddr, u32 endAddr, bool insertSymbols) {
1005
		_assert_((startAddr & 3) == 0);
1006

1007
		std::lock_guard<std::recursive_mutex> guard(functions_lock);
1008

1009
		FunctionsVector new_functions;
1010

1011
		AnalyzedFunction currentFunction = {startAddr};
1012

1013
		u32 furthestBranch = 0;
1014
		bool looking = false;
1015
		bool end = false;
1016
		bool isStraightLeaf = true;
1017
		bool decreasedSp = false;
1018

1019
		u32 addr;
1020
		for (addr = startAddr; addr <= endAddr; addr += 4) {
1021
			MIPSOpcode op = Memory::Read_Instruction(addr, true);
1022
			u32 target = GetBranchTargetNoRA(addr, op);
1023
			if (target != INVALIDTARGET) {
1024
				isStraightLeaf = false;
1025
				if (target > furthestBranch) {
1026
					furthestBranch = target;
1027
				}
1028
			// j X
1029
			} else if ((op & 0xFC000000) == 0x08000000) {
1030
				u32 sureTarget = GetJumpTarget(addr);
1031
				// Check for a tail call.  Might not even have a jr ra.
1032
				if (sureTarget != INVALIDTARGET && sureTarget < currentFunction.start) {
1033
					if (furthestBranch > addr) {
1034
						looking = true;
1035
						addr += 4;
1036
					} else {
1037
						end = true;
1038
					}
1039
				} else if (sureTarget != INVALIDTARGET && sureTarget > addr && sureTarget > furthestBranch) {
1040
					static const u32 MAX_JUMP_FORWARD = 128;
1041
					// If it's a nearby forward jump, and not a stackless leaf, assume not a tail call.
1042
					if (sureTarget <= addr + MAX_JUMP_FORWARD && decreasedSp) {
1043
						// But let's check the delay slot.
1044
						MIPSOpcode op = Memory::Read_Instruction(addr + 4, true);
1045
						// addiu sp, sp, +X
1046
						if ((op & 0xFFFF8000) != 0x27BD0000) {
1047
							furthestBranch = sureTarget;
1048
							continue;
1049
						}
1050
					}
1051

1052
					// A jump later.  Probably tail, but let's check if it jumps back.
1053
					// We use + 8 here in case it jumps right back to the delay slot.  We'll consider that inside the func.
1054
					u32 knownEnd = furthestBranch == 0 ? addr + 8 : furthestBranch;
1055
					u32 jumpback = ScanAheadForJumpback(sureTarget, currentFunction.start, knownEnd);
1056
					if (jumpback != INVALIDTARGET && jumpback > addr && jumpback > knownEnd) {
1057
						furthestBranch = jumpback;
1058
					} else {
1059
						if (furthestBranch > addr) {
1060
							looking = true;
1061
							addr += 4;
1062
						} else {
1063
							end = true;
1064
						}
1065
					}
1066
				}
1067
			}
1068
			if (op == MIPS_MAKE_JR_RA()) {
1069
				// If a branch goes to the jr ra, it's still ending here.
1070
				if (furthestBranch > addr) {
1071
					looking = true;
1072
					addr += 4;
1073
				} else {
1074
					end = true;
1075
				}
1076
			}
1077
			// addiu sp, sp, -X
1078
			if ((op & 0xFFFF8000) == 0x27BD8000) {
1079
				decreasedSp = true;
1080
			}
1081
			// addiu sp, sp, +X
1082
			if ((op & 0xFFFF8000) == 0x27BD0000) {
1083
				decreasedSp = false;
1084
			}
1085
			if (op == MIPS_MAKE_NOP() && currentFunction.start == addr) {
1086
				// Skip nop padding at the beginning of functions (alignment?)
1087
				currentFunction.start += 4;
1088
			}
1089

1090
			if (looking) {
1091
				if (addr >= furthestBranch) {
1092
					u32 sureTarget = GetSureBranchTarget(addr);
1093
					// Regular j only, jals are to new funcs.
1094
					if (sureTarget == INVALIDTARGET && ((op & 0xFC000000) == 0x08000000)) {
1095
						sureTarget = GetJumpTarget(addr);
1096
					}
1097

1098
					if (sureTarget != INVALIDTARGET && sureTarget < addr) {
1099
						end = true;
1100
					} else if (sureTarget != INVALIDTARGET) {
1101
						// Okay, we have a downward jump.  Might be an else or a tail call...
1102
						// If there's a jump back upward in spitting distance of it, it's an else.
1103
						u32 knownEnd = furthestBranch == 0 ? addr : furthestBranch;
1104
						u32 jumpback = ScanAheadForJumpback(sureTarget, currentFunction.start, knownEnd);
1105
						if (jumpback != INVALIDTARGET && jumpback > addr && jumpback > knownEnd) {
1106
							furthestBranch = jumpback;
1107
						}
1108
					}
1109
				}
1110
			}
1111

1112
			if (end) {
1113
				currentFunction.end = addr + 4;
1114
				currentFunction.isStraightLeaf = isStraightLeaf;
1115

1116
				// Check if we already have symbol info starting here.  If so, skip insertion.
1117
				// We used to use the symbols to find the functions, but sometimes we'd find
1118
				// wrong ones due to two modules with the same name.
1119
				u32 existingSize = g_symbolMap->GetFunctionSize(currentFunction.start);
1120
				if (existingSize != SymbolMap::INVALID_ADDRESS) {
1121
					currentFunction.foundInSymbolMap = true;
1122

1123
					// If we run into a func with a different size, skip updating the hash map.
1124
					// This will prevent us saving incorrectly named funcs with wrong hashes.
1125
					u32 detectedSize = currentFunction.end - currentFunction.start + 4;
1126
					if (existingSize != detectedSize) {
1127
						insertSymbols = false;
1128
					}
1129
				}
1130

1131
				new_functions.push_back(currentFunction);
1132

1133
				furthestBranch = 0;
1134
				addr += 4;
1135
				looking = false;
1136
				end = false;
1137
				isStraightLeaf = true;
1138
				decreasedSp = false;
1139
				currentFunction.start = addr + 4;
1140
				currentFunction.foundInSymbolMap = false;
1141
			}
1142
		}
1143

1144
		if (addr <= endAddr) {
1145
			currentFunction.end = addr + 4;
1146
			new_functions.push_back(currentFunction);
1147
		}
1148

1149
		for (auto iter = new_functions.begin(); iter != new_functions.end(); iter++) {
1150
			iter->size = iter->end - iter->start + 4;
1151
			if (insertSymbols && !iter->foundInSymbolMap) {
1152
				char temp[256];
1153
				g_symbolMap->AddFunction(DefaultFunctionName(temp, iter->start), iter->start, iter->end - iter->start + 4);
1154
			}
1155
		}
1156

1157
		// Concatenate the new functions to the end of the old ones.
1158
		functions.insert(functions.end(), new_functions.begin(), new_functions.end());
1159
		return insertSymbols;
1160
	}
1161

1162
	void FinalizeScan(bool insertSymbols) {
1163
		HashFunctions();
1164

1165
		if (g_Config.bFuncHashMap || g_Config.bFuncReplacements) {
1166
			LoadBuiltinHashMap();
1167
			if (g_Config.bFuncHashMap) {
1168
				Path hashMapFilename = GetSysDirectory(DIRECTORY_SYSTEM) / "knownfuncs.ini";
1169
				LoadHashMap(hashMapFilename);
1170
				StoreHashMap(hashMapFilename);
1171
			}
1172
			if (insertSymbols) {
1173
				ApplyHashMap();
1174
			}
1175
			if (g_Config.bFuncReplacements) {
1176
				ReplaceFunctions();
1177
			}
1178
		}
1179
	}
1180

1181
	bool SkipFuncHash(const std::string &name) {
1182
		std::vector<std::string> funcs;
1183
		SplitString(g_Config.sSkipFuncHashMap, ',', funcs);
1184
		return std::find(funcs.begin(), funcs.end(), name) != funcs.end();
1185
	}
1186

1187
	void RegisterFunction(u32 startAddr, u32 size, const char *name) {
1188
		_assert_((startAddr & 3) == 0);
1189

1190
		std::lock_guard<std::recursive_mutex> guard(functions_lock);
1191

1192
		// Check if we have this already
1193
		for (auto iter = functions.begin(); iter != functions.end(); iter++) {
1194
			if (iter->start == startAddr) {
1195
				// Let's just add it to the hashmap.
1196
				if (iter->hasHash && size > 16 && SkipFuncHash(name)) {
1197
					HashMapFunc hfun;
1198
					hfun.hash = iter->hash;
1199
					strncpy(hfun.name, name, 64);
1200
					hfun.name[63] = 0;
1201
					hfun.size = size;
1202
					hashMap.insert(hfun);
1203
					return;
1204
				} else if (!iter->hasHash || size == 0) {
1205
					ERROR_LOG(Log::HLE, "%s: %08x %08x : match but no hash (%i) or no size", name, startAddr, size, iter->hasHash);
1206
				}
1207
			}
1208
		}
1209

1210
		// Cheats a little.
1211
		AnalyzedFunction fun;
1212
		fun.start = startAddr;
1213
		fun.end = startAddr + size - 4;
1214
		fun.isStraightLeaf = false;  // dunno really
1215
		strncpy(fun.name, name, 64);
1216
		fun.name[63] = 0;
1217
		functions.push_back(fun);
1218

1219
		HashFunctions();
1220
	}
1221

1222
	void ForgetFunctions(u32 startAddr, u32 endAddr) {
1223
		_assert_(((startAddr | endAddr) & 3) == 0);
1224

1225
		std::lock_guard<std::recursive_mutex> guard(functions_lock);
1226

1227
		// It makes sense to forget functions as modules are unloaded but it breaks
1228
		// the easy way of saving a hashmap by unloading and loading a game. I added
1229
		// an alternative way.
1230

1231
		// Most of the time, functions from the same module will be contiguous in functions.
1232
		FunctionsVector::iterator prevMatch = functions.end();
1233
		size_t originalSize = functions.size();
1234
		for (auto iter = functions.begin(); iter != functions.end(); ++iter) {
1235
			const bool hadPrevMatch = prevMatch != functions.end();
1236
			const bool match = iter->start >= startAddr && iter->start <= endAddr;
1237

1238
			if (!hadPrevMatch && match) {
1239
				// Entering a range.
1240
				prevMatch = iter;
1241
			} else if (hadPrevMatch && !match) {
1242
				// Left a range.
1243
				iter = functions.erase(prevMatch, iter);
1244
				prevMatch = functions.end();
1245
			}
1246
		}
1247
		if (prevMatch != functions.end()) {
1248
			// Cool, this is the fastest way.
1249
			functions.erase(prevMatch, functions.end());
1250
		}
1251

1252
		RestoreReplacedInstructions(startAddr, endAddr);
1253

1254
		if (functions.empty()) {
1255
			hashToFunction.clear();
1256
		} else if (originalSize != functions.size()) {
1257
			UpdateHashToFunctionMap();
1258
		}
1259
	}
1260

1261
	void ReplaceFunctions() {
1262
		std::lock_guard<std::recursive_mutex> guard(functions_lock);
1263

1264
		for (size_t i = 0; i < functions.size(); i++) {
1265
			WriteReplaceInstructions(functions[i].start, functions[i].hash, functions[i].size);
1266
		}
1267
	}
1268

1269
	void UpdateHashMap() {
1270
		std::lock_guard<std::recursive_mutex> guard(functions_lock);
1271

1272
		for (auto it = functions.begin(), end = functions.end(); it != end; ++it) {
1273
			const AnalyzedFunction &f = *it;
1274
			// Small functions aren't very interesting.
1275
			if (!f.hasHash || f.size <= 16) {
1276
				continue;
1277
			}
1278
			// Functions with default names aren't very interesting either.
1279
			const std::string name = g_symbolMap->GetLabelString(f.start);
1280
			if (IsDefaultFunction(name) || SkipFuncHash(name)) {
1281
				continue;
1282
			}
1283

1284
			HashMapFunc mf = { "", f.hash, f.size };
1285
			strncpy(mf.name, name.c_str(), sizeof(mf.name) - 1);
1286
			hashMap.insert(mf);
1287
		}
1288
	}
1289

1290
	const char *LookupHash(u64 hash, u32 funcsize) {
1291
		const HashMapFunc f = { "", hash, funcsize };
1292
		auto it = hashMap.find(f);
1293
		if (it != hashMap.end()) {
1294
			return it->name;
1295
		}
1296
		return 0;
1297
	}
1298

1299
	void SetHashMapFilename(const std::string& filename) {
1300
		if (filename.empty())
1301
			hashmapFileName = GetSysDirectory(DIRECTORY_SYSTEM) / "knownfuncs.ini";
1302
		else
1303
			hashmapFileName = Path(filename);
1304
	}
1305

1306
	void StoreHashMap(Path filename) {
1307
		if (filename.empty())
1308
			filename = hashmapFileName;
1309

1310
		UpdateHashMap();
1311
		if (hashMap.empty()) {
1312
			return;
1313
		}
1314

1315
		FILE *file = File::OpenCFile(filename, "wt");
1316
		if (!file) {
1317
			WARN_LOG(Log::Loader, "Could not store hash map: %s", filename.c_str());
1318
			return;
1319
		}
1320

1321
		for (auto it = hashMap.begin(), end = hashMap.end(); it != end; ++it) {
1322
			const HashMapFunc &mf = *it;
1323
			if (!mf.hardcoded) {
1324
				if (fprintf(file, "%016llx:%d = %s\n", mf.hash, mf.size, mf.name) <= 0) {
1325
					WARN_LOG(Log::Loader, "Could not store hash map: %s", filename.c_str());
1326
					break;
1327
				}
1328
			}
1329
		}
1330
		fclose(file);
1331
	}
1332

1333
	void ApplyHashMap() {
1334
		UpdateHashToFunctionMap();
1335

1336
		for (auto mf = hashMap.begin(), end = hashMap.end(); mf != end; ++mf) {
1337
			auto range = hashToFunction.equal_range(mf->hash);
1338
			if (range.first == range.second) {
1339
				continue;
1340
			}
1341

1342
			// Yay, found a function.
1343
			for (auto iter = range.first; iter != range.second; ++iter) {
1344
				AnalyzedFunction &f = *iter->second;
1345
				if (f.hash == mf->hash && f.size == mf->size) {
1346
					strncpy(f.name, mf->name, sizeof(mf->name) - 1);
1347

1348
					std::string existingLabel = g_symbolMap->GetLabelString(f.start);
1349
					char defaultLabel[256];
1350
					// If it was renamed, keep it.  Only change the name if it's still the default.
1351
					if (existingLabel.empty() || existingLabel == DefaultFunctionName(defaultLabel, f.start)) {
1352
						g_symbolMap->SetLabelName(mf->name, f.start);
1353
					}
1354
				}
1355
			}
1356
		}
1357
	}
1358

1359
	void LoadBuiltinHashMap() {
1360
		HashMapFunc mf;
1361
		for (size_t i = 0; i < ARRAY_SIZE(hardcodedHashes); i++) {
1362
			mf.hash = hardcodedHashes[i].hash;
1363
			mf.size = hardcodedHashes[i].funcSize;
1364
			strncpy(mf.name, hardcodedHashes[i].funcName, sizeof(mf.name));
1365
			mf.name[sizeof(mf.name) - 1] = 0;
1366
			mf.hardcoded = true;
1367
			hashMap.insert(mf);
1368
		}
1369
	}
1370

1371
	void LoadHashMap(const Path &filename) {
1372
		FILE *file = File::OpenCFile(filename, "rt");
1373
		if (!file) {
1374
			WARN_LOG(Log::Loader, "Could not load hash map: %s", filename.c_str());
1375
			return;
1376
		}
1377
		hashmapFileName = filename;
1378

1379
		while (!feof(file)) {
1380
			HashMapFunc mf = { "" };
1381
			mf.hardcoded = false;
1382
			if (fscanf(file, "%llx:%d = %63s\n", &mf.hash, &mf.size, mf.name) < 3) {
1383
				char temp[1024];
1384
				if (!fgets(temp, 1024, file)) {
1385
					WARN_LOG(Log::Loader, "Could not read from hash map: %s", filename.c_str());
1386
				}
1387
				continue;
1388
			}
1389

1390
			hashMap.insert(mf);
1391
		}
1392
		fclose(file);
1393
	}
1394

1395
	std::vector<MIPSGPReg> GetInputRegs(MIPSOpcode op) {
1396
		std::vector<MIPSGPReg> vec;
1397
		MIPSInfo info = MIPSGetInfo(op);
1398
		if (info & IN_RS) vec.push_back(MIPS_GET_RS(op));
1399
		if (info & IN_RT) vec.push_back(MIPS_GET_RT(op));
1400
		return vec;
1401
	}
1402

1403
	std::vector<MIPSGPReg> GetOutputRegs(MIPSOpcode op) {
1404
		std::vector<MIPSGPReg> vec;
1405
		MIPSInfo info = MIPSGetInfo(op);
1406
		if (info & OUT_RD) vec.push_back(MIPS_GET_RD(op));
1407
		if (info & OUT_RT) vec.push_back(MIPS_GET_RT(op));
1408
		if (info & OUT_RA) vec.push_back(MIPS_REG_RA);
1409
		return vec;
1410
	}
1411

1412
	MipsOpcodeInfo GetOpcodeInfo(DebugInterface *cpu, u32 address) {
1413
		MipsOpcodeInfo info;
1414
		memset(&info, 0, sizeof(info));
1415

1416
		if (!Memory::IsValidAddress(address)) {
1417
			info.opcodeAddress = address;
1418
			return info;
1419
		}
1420

1421
		info.cpu = cpu;
1422
		info.opcodeAddress = address;
1423
		info.encodedOpcode = Memory::Read_Instruction(address);
1424

1425
		MIPSOpcode op = info.encodedOpcode;
1426
		MIPSInfo opInfo = MIPSGetInfo(op);
1427
		info.isLikelyBranch = (opInfo & LIKELY) != 0;
1428

1429
		// gather relevant address for alu operations
1430
		// that's usually the value of the dest register
1431
		switch (MIPS_GET_OP(op)) {
1432
		case 0:		// special
1433
			switch (MIPS_GET_FUNC(op)) {
1434
			case 0x20:	// add
1435
			case 0x21:	// addu
1436
				info.hasRelevantAddress = true;
1437
				info.relevantAddress = cpu->GetRegValue(0,MIPS_GET_RS(op))+cpu->GetRegValue(0,MIPS_GET_RT(op));
1438
				break;
1439
			case 0x22:	// sub
1440
			case 0x23:	// subu
1441
				info.hasRelevantAddress = true;
1442
				info.relevantAddress = cpu->GetRegValue(0,MIPS_GET_RS(op))-cpu->GetRegValue(0,MIPS_GET_RT(op));
1443
				break;
1444
			}
1445
			break;
1446
		case 0x08:	// addi
1447
		case 0x09:	// addiu
1448
			info.hasRelevantAddress = true;
1449
			info.relevantAddress = cpu->GetRegValue(0, MIPS_GET_RS(op)) + SignExtend16ToS32(op & 0xFFFF);
1450
			break;
1451
		}
1452

1453
		//j , jal, ...
1454
		if (opInfo & IS_JUMP) {
1455
			info.isBranch = true;
1456
			if ((opInfo & OUT_RA) || (opInfo & OUT_RD)) {	// link
1457
				info.isLinkedBranch = true;
1458
			}
1459

1460
			if (opInfo & IN_RS) { // to register
1461
				info.isBranchToRegister = true;
1462
				info.branchRegisterNum = (int)MIPS_GET_RS(op);
1463
				info.branchTarget = cpu->GetRegValue(0,info.branchRegisterNum);
1464
			} else {				// to immediate
1465
				info.branchTarget = GetJumpTarget(address);
1466
			}
1467
		}
1468

1469
		// movn, movz
1470
		if (opInfo & IS_CONDMOVE) {
1471
			info.isConditional = true;
1472

1473
			u32 rt = cpu->GetRegValue(0, (int)MIPS_GET_RT(op));
1474
			switch (opInfo & CONDTYPE_MASK) {
1475
			case CONDTYPE_EQ:
1476
				info.conditionMet = (rt == 0);
1477
				break;
1478
			case CONDTYPE_NE:
1479
				info.conditionMet = (rt != 0);
1480
				break;
1481
			}
1482
		}
1483

1484
		// beq, bgtz, ...
1485
		if (opInfo & IS_CONDBRANCH) {
1486
			info.isBranch = true;
1487
			info.isConditional = true;
1488
			info.branchTarget = GetBranchTarget(address);
1489

1490
			if (opInfo & OUT_RA) {  // link
1491
				info.isLinkedBranch = true;
1492
			}
1493

1494
			u32 rt = cpu->GetRegValue(0, (int)MIPS_GET_RT(op));
1495
			u32 rs = cpu->GetRegValue(0, (int)MIPS_GET_RS(op));
1496
			switch (opInfo & CONDTYPE_MASK) {
1497
			case CONDTYPE_EQ:
1498
				if (opInfo & IN_FPUFLAG) {	// fpu branch
1499
					info.conditionMet = currentMIPS->fpcond == 0;
1500
				} else {
1501
					info.conditionMet = (rt == rs);
1502
					if (MIPS_GET_RT(op) == MIPS_GET_RS(op))	{	// always true
1503
						info.isConditional = false;
1504
					}
1505
				}
1506
				break;
1507
			case CONDTYPE_NE:
1508
				if (opInfo & IN_FPUFLAG) {	// fpu branch
1509
					info.conditionMet = currentMIPS->fpcond != 0;
1510
				} else {
1511
					info.conditionMet = (rt != rs);
1512
					if (MIPS_GET_RT(op) == MIPS_GET_RS(op))	{	// always true
1513
						info.isConditional = false;
1514
					}
1515
				}
1516
				break;
1517
			case CONDTYPE_LEZ:
1518
				info.conditionMet = (((s32)rs) <= 0);
1519
				break;
1520
			case CONDTYPE_GTZ:
1521
				info.conditionMet = (((s32)rs) > 0);
1522
				break;
1523
			case CONDTYPE_LTZ:
1524
				info.conditionMet = (((s32)rs) < 0);
1525
				break;
1526
			case CONDTYPE_GEZ:
1527
				info.conditionMet = (((s32)rs) >= 0);
1528
				break;
1529
			}
1530
		}
1531

1532
		// lw, sh, ...
1533
		if (!IsSyscall(op) && (opInfo & (IN_MEM | OUT_MEM)) != 0) {
1534
			info.isDataAccess = true;
1535
			info.dataSize = MIPSGetMemoryAccessSize(op);
1536

1537
			u32 rs = cpu->GetRegValue(0, (int)MIPS_GET_RS(op));
1538
			s16 imm16 = op & 0xFFFF;
1539
			info.dataAddress = rs + imm16;
1540

1541
			info.hasRelevantAddress = true;
1542
			info.relevantAddress = info.dataAddress;
1543
		}
1544

1545
		return info;
1546
	}
1547
}
1548

1549
Product

Resources

Company
