没有合适的资源？快使用搜索试试~ 我知道了~

文库首页操作系统LinuxQemu Detailed Study

Qemu Detailed Study

qemu

5星 · 超过95%的资源需积分: 50 88 下载量 139 浏览量 2013-05-02 17:47:28 上传评论 3 收藏 120KB PDF 举报

温馨提示

试读

19页

Qemu Detailed Study 第七章的文档，对qemu做了详尽的讲价，是个很好的文档

资源推荐

资源详情

资源评论

Chapter-7

Qemu Detailed Study

As discussed in chapter 6 QEMU is a machine emulator and thus can

emulate a given number of processor architectures on machine in which it is

running. For QEMU the emulated architectures is called the Target. And the real

machine on which QEMU is running, emulating the target, is called the Host. The

dynamic translation of virtual machine (target ) code to Host code is done by a

module in QEMU called the Tiny Code Generator or TCG for short. When it

comes to TCG the term ‘target’ gets a different meaning. TCG creates the code to

emulate the target thus the code created by TCG is called its target .Thus when it

comes to TCG target means the generated Host code. Figure 7.1 clarifies this

varied terminology.

Figure 7.1: Use of term ‘Target’

TARGET

HOST

QEMU

GUEST

CODE

HOST CODE

(TCG target)

TCG

Qemu Detailed Study 29

Thus one may call the code (OS + USER TOOLS) being run by the

emulated processor the guest code. QEMU functions by extracting the Guest

code and converting it to Host specific code. The whole translation task thus

consists of two parts: First a block of target code - Translation Block (TB) is

converted into TCG ops - a kind of machine-independent intermediate notation,

and subsequently the TCG ops for the TB is converted to Host code for the host's

architecture by TCG. Optional optimization passes are performed between them.

7.1 Codebase

A clear understanding of the QEMU codebase is required to add new

functionality that will extend the machine emulator to migrate its generated code

to execute in remote nodes. The QEMU codebase has over 1300 files which are

well organized into specific sections. Even though the code is well organized it is

complex enough to leave any new developer perplexed. This section will throw

light on the organization of QEMU codebase.

In this section the shallowest directory depth in the codebase will be represented

by a ‘/’ , and consecutive directory depths will follow the usual Unix file path

notations.

Start of Execution:

The major C files in the / that are important for the study are ; /vl.c,/cpus.c, /exec-

all.c, /exec.c, /cpu-exec.c. The ‘main’ function where the execution starts is

defined in /vl.c. The functions in this file sets up a virtual machine environment

as per the given virtual machine specification such as size of ram, available

30 Qemu Detailed Study

devices, number of CPUs etc. From the main function, after the virtual machine

is set up, execution branches out through files such as /cpus.c, /exec-all.c, /exec.c,

/cpu-exec.c.

Emulated Hardware:

The code that emulates all virtual hardware in the virtual machine can be found in

/hw/. QEMU emulates a considerable number of hardware but detailed

understanding of how the hardware are emulated is not necessary in this study.

Guest (Target) Specific:

The processor architectures currently emulated in QEMU are; Alpha, ARM, Cris,

i386, M68K, PPC, Sparc, Mips, MicroBlaze, S390X and SH4. The code specific

to these architectures necessary to convert TBs to TCG ops are available in

/target-xyz/ where xyz can any of the above given architecture names. Therefore

the code specific to i386 can be found in /target-i386/. This part can be called as

the frontend of TCG.

Host (TCG) Specific:

The host specific code for generating the host code from the TCG ops are placed

in /tcg/ . Inside TCG one can find /xyz/ where xyz can be i386 ,sparc etc which

contain the code that converts TCG ops to architecture specific code. This part

can be called as the backend of TCG.

Qemu Detailed Study 31

Summary:

/vl.c : The main emulator loop, the virtual

machine is setup and CPUs are executed.

/target-xyz/translate.c : The extracted guest code (guest specific

ISA) is converted into architecture

independent TCG ops

/tcg/tcg.c : The main code for TCG.

/tcg/*/tcg-target.c : Code that converts the TCG ops to host

code (host specific ISA).

/cpu-exec.c : Function cpu-exec() in /cpu-exec.c finds the

next translation block (TB), if not found

calls are made to generate the next TB and

finally to execute the generated code.

7.2 TCG - Dynamic translation

As mentioned earlier in this document dynamic translation in QEMU

before version 0.9.1 was carried out by DynGen. TBs were converted to C code

by DynGen and GCC (the GNU C compiler) converted the C code into host

specific code. The issue with the procedure was that DynGen was tightly tied to

剩余18页未读，继续阅读

评论收藏

内容反馈

资源评论

资源反馈

评论星级较低，若资源使用遇到问题可联系上传者，3个工作日内问题未解决可申请退款~

sbeidao

2015-10-30

确实很好，不过这个书确实只有第七章
laiwg1234

2016-04-06

很好，不过qemu只有一章
99-107

2018-03-28

可以的，初步入门可看

IT山IT水

粉丝: 79
资源: 24

上传资源快速赚钱

我的内容管理展开

我的资源快来上传第一个资源

我的收益

登录查看自己的收益

我的积分登录查看自己的积分

我的C币登录后查看C币余额

我的收藏

我的下载

下载帮助

前往需求广场，查看用户热搜

Qemu Detailed Study

qemu代码分析.pdf

介绍QEMU 原理的文档资料

Qemu使用手册中文版

Qemu Manager v7.0 (April 2010) with Qemu 0.11.1 and KQEMU Support

Qemu模拟器运行AIX 7.2 系统.docx

Qemu虚拟机安装教程

QEMU for windows+安装说明

qemu-kvm-1.1 源码下载

qemu-8.0.0.tar.xz qemu源码

QEMU PCIe设备实现

银河麒麟QEMUARM架构虚拟机

qemu虚拟机 bios源码

QEMU Binaries for Windows (64 bit) qemu-w64-setup-20220831.exe

win10系统下利用QEMU安装ARM架构的银河麒麟桌面操作系统V10

qemu-5.1.0.tar.xz

QEMU虚拟机网卡及网络配置

qemu相关编译包

银河麒麟arm桌面版qemu虚拟机

qemu-0.12.2-windows

qemu-kvm源码分析

qemu-seabios-tpm

max30102实战资料，全部免费开源，包含硬件设计，下位机程序，上位机程序，结构设计

VMware Workstation 16虚拟机安装包

FinalShell安装包，让用户通过SSH、Telnet或者RDP等协议连接到远程服务器或设备，实现远程控制和管理

Ubuntu微信Linux版（非Wine版）

iStoreOS-PassWall

vdhcoapp 2.0.19 linux版本，配合video downloadhelper使用

黑白群晖 DSM7.X 监控套件 SurveillanceStation-x86-64-9.1.1-10728 学习版

Kylin-Server-V10-SP3-General-Release-2212-X86-64.7z.001

最新资源