--- trunk/TODO	2007/10/08 16:19:37	22
+++ trunk/TODO	2007/10/08 16:19:56	24
@@ -1,35 +1,174 @@
-$Id: TODO,v 1.209 2006/02/18 21:03:09 debug Exp $
+$Id: TODO,v 1.292 2006/06/23 09:13:34 debug Exp $
 
 Hm. This file is in random order, and not all parts of it are up-to-date.
 
-Algor:	PCI and ISA and LOCAL interrupts! --> wdc could start working
-	Add interrupt controller in dev_algor.c.
+--------------
+
+Possible release schedule:
+
+0.4.0:
+	x)  Quick release, even though performance for non-R3000 MIPS dyntrans
+	    is really poor. (Assuming everything mentioned in the documentation
+	    works as expected.)
+
+0.4.1:
+	x)  FIX THE NON-R3000 TRANSLATION CACHE INVALIDATION BOTTLENECKS!
+	x)  Fix the interrupt problems with Ultrix!
+	x)  Find/fix bug which is triggered when building the emulator inside
+	    NetBSD/pmax 3.0 inside the emulator!
+
+0.4.2 ...?
+	x)  Clean-up!
+	x)  Clock framework? Go through all clock devices, make sure they
+	    return correct data, and run at correct speeds!
+	x)  Optimizations, continuing on 64-bit issues etc with dyntrans
+	x)  Dyntrans with SMP... lots of work to be done here.
+	x)  Dyntrans with cache emulation... lots of work here as well.
+	x)  Actually use the settings object, better debugger stuff, etc.
+	x)  Wait for new releases of NetBSD, and test with those.
+
+--------------
+
+SMP:
+	o)  dev_mp doesn't work well with dyntrans yet
+	o)  In general, IPIs, CAS, LL/SC etc must be made to work with dyntrans
+
+MIPS:
+	o)  Fix invalidate_asid so it works well for non-R3000 too!
+	x)  [Re]add an interrupt-asserted bit for MIPS, to speed up
+	    interrupt handling slightly?
+	+)  Print a warning on the first reserved instruction.
+	+)  Some more work on opcodes.
+		x) MIPS64 revision 2.
+		x) _MAYBE_ TX79 and R5900 actually differ in their
+		   opcodes? Check this carefully!
+	o)  Dyntrans: Count register updates are probably not 100% correct yet.
+	o)  Dyntrans: SMP correctness
+	o)  Refactor code for performance and readability/maintainability.
+	o)  Instruction combinations? Possible candidates (but profile first!):
+		o)  multiple loads/stores in a row
+		o)  strlen, memset loops etc
+		o)  compare + branch
+	o)  DROTR32 and similar MIPS64 rev 2 instructions, which have
+	    a rotation bit which differs from previous ISAs.
+	o)  EI and DI instructions for MIPS64/32 rev 2. NOTE: These are
+	    _NOT_ the same as for R5900!
+	o)  R4000 and others:
+		x)  watchhi/watchlo exceptions, and other exception
+		    handling details
+	o)  R10000 and others:  (R12000, R14000 ?)
+		x)  memory space, exceptions, ...
+		x)  use cop0 framemask for tlb lookups
+		    (http://techpubs.sgi.com/library/tpl/cgi-bin/getdoc.cgi/hdwr/bks/SGI_Developer/books/R10K_UM/sgi_html/t5.Ver.2.0.book_284.html)
 
 Dyntrans:
-	TOP Priority:
-		x)  64-bit stuff: good generic virtual memory translation, and
-		    other structures. not all 64 bits need to be used
-		    (e.g. Alpha)
-		x)  Delay slots!
-		x)  Old MIPS -> dyntrans!
-	Other stuff:
+	x)  Move the mips_init_64bit_dummy_tables() etc calls into
+	    src/cpu.c, for all 64-bit cpus?
+	x)  64-bit "phystranslation" lookup as in 32-bit mode? Would probably
+		help performance a bit.
+	x)  Common fatal_abort() function, which drops into the debugger
+		without continuing.
 	x)  INVALIDATION should cause translations in _all_ cpus to be
 	    invalidated, e.g. on a write to a write-protected page
 	    (containing code)
-	x)  Think about sharing code between CPUs of the same
-	    arch/bitlength/endianness (the translation caches).
-	    (Eg. a little-endian R4000 and a little-endian R5000 could
-	    share code, but not an R3000 and an R4000.)
-	x)  better (meaningful) instr call statistics
+	x)  better (formally defined) instr call statistics (-s command
+	    line option?), multiple different types? (virtual pc, physical pc)
 	x)  Call/return hints?
 	x)  16-bit encodings? (MIPS16, ARM Thumb, SH3, ...)
-	x)  PPC optimizations; instr combs
-	x)  Alpha
-	x)  SPARC
-	x)  PPC (64-bit stuff)
+	x)  H8?
 	x)  Lots of other stuff: see src/cpus/README_DYNTRANS
 	x)  true recompilation backend? think carefully about this,
 	    experiment in a separate project (not in GXemul)
+	x)  Remove the dyntrans_alignment_check functionality; although
+	    it gives slightly higher peformance sometimes, it increases
+	    the complexity of the code too much!
+
+Alpha:
+	o)  Virtual memory (tlbs etc)
+	o)  Get {NetBSD,OpenBSD,Linux}/alpha booting. :)
+
+SPARC:
+	o)  Add all registers (floating point, control regs etc)
+	o)  Save/restore register windows etc!
+	o)  Disassemly of some more instructions.
+	o)  Are sll etc 32-bit sign-extending or zero-extending?
+	o)  Finish the cmp (subcc) flag computation code.
+	o)  Finish the GDB register stuff.
+
+Debugger:
+	o)  How does SMP debugging work? Does it simply use "threads"?
+		What if the guest OS (running on an emulated SMP machine)
+		has a usertask running, with userland threads?
+	o)  Try to make the debugger more modular and, if possible, reentrant!
+	o)  Remove the emul command? (But show network info if showing
+		machines?)
+	o)  Generalize the expression evaluator. (debugger_expr.c?)
+		settable variables	("show nr of instructions on average")
+		emul[x]			defaults to current emul
+		machine[x]		defaults to current machine
+		cpu[x]			defaults to currently focused cpu
+		registers		cpu arch dependent (#-prefix)
+		symbols			@-prefix
+		numeric constants	decimal, hex, and octal ($-prefix)
+		boolean			yes,no, true,false
+		operators (+ - * / % & | ^ !)
+		parentheses for grouping subexpressions
+		NOTE: the change from % to # for register prefix!
+		examples:
+				emul[0].machine[2].cpu[0].pc
+				machine[test2].cpu[1].ra = main
+				settings.show_trace_tree = yes
+
+		Settings:
+			o)  Remove a setting.
+			o)  Read/write a setting given a name. (Read as
+			    string and/or int64_t simultaneously?)
+
+		Help command should have subsections! One for "expressions",
+		mirrored in the documentation, but the internal help should
+		be the one that should be considered correct.
+	o)  see src/debugger.c for more
+
+POWER/PowerPC:
+	x)  PPC optimizations; instr combs
+	x)  64-bit stuff
+	x)  find and fix the bug which causes NetBSD/macppc to fail after
+	    an install!
+	x)  macppc: adb controller; keyboard (for framebuffer mode)
+	x)  make OpenBSD/macppc work (PCI controller stuff)
+
+Algor:
+	PCI and ISA and LOCAL interrupts! --> wdc could start working
+	Add interrupt controller in dev_algor.c.
+
+ARM:
+	o)  try to get netbsd/evbarm 3.x running (iq80321)
+	o)  make the xscale counter registers (ccnt) work
+	o)  make the ata controller usable for FreeBSD!
+	o)  zaurus for openbsd...
+	o)  debian/cats crashes because of unimplemented coproc stuff.
+	    fix this?
+
+Cache simulation:
+	o)  Separate from the CPU concept, so that multi-core CPUs sharing
+	    e.g. a L2 cache can be simulated (?)
+	o)  Instruction cache emulation is easiest (if separate from the
+	    data cache); similar hack as the S;I; hack in cpu_dyntrans.c.
+	    NOTE: if the architecture has a delay slot, then an instruction
+	    slot can actually be executed as 2 instructions.
+	o)  Data cache emulation = harder; each arch's load/store routines
+	    must include support? running one instruction at a time and
+	    having a cpu-dependant lookup function for each instruction
+	    is another option (easier to implement, but very very slow).
+
+Documentation:
+	o)  machines, cpus, devices.
+	o)  Automagic documentation generation:
+		x)  REMEMBER that several machines/devices can be in
+			the same source file!
+	o)  Try to rewrite the install instructions for those machines
+	    that use 3MAX into using CATS? (To remove the need to a raw
+	    ffs partition using up all of the disk image.)
 
 More generic out_of_memory error reporting, and check everywhere!
 	Causes:	OpenBSD has low default limits for normal users.
@@ -51,23 +190,25 @@
 	x)  allow devices to be moved and/or changed in size (down to a
 	    minimum size, etc, or up to a max size)
 	x)  keep track of interrupts and busses? actually, allowing any device
-	    to be a bus might be a nice idea
+	    to be a bus might be a nice idea.
+	x)  turn interrupt controllers into devices? :-)
 	x)  refactor various clocks/nvram/cmos into one device?
 
-ARM:
-	o)  add ID for "i80321 600MHz rev 2 (XScale core)"
-	o)  make the ata controller usable for FreeBSD!
-	x)  zaurus for openbsd...
+Clocks:
+	x)  General framework for automagic clock adjustment for _all_
+	    kinds of clocks and timers. (Which should be possible to turn
+	    off, of course, like the way DECstation emulation works now.)
 
 PCI:
+	x)  last write was ffffffff ==> fix this, it should be used
+	    together with a mask to get the correct bits. also, not ALL
+	    bits are size bits! (lowest 4 vs lowest 2?)
 	x)  add support for address fixups
 	x)  generalize the interrupt routing stuff (lines etc). this should
 	    be per machine? or per bus, that's better
-
-MacPPC:
-	x)  dev_zs / interrupts?
-	x)  adb controller; keyboard
-	x)  make OpenBSD/macppc work (PCI controller stuff)
+	x)  add a "pcn" NIC (AMD PCnet32 Lance 79c970 (PCI 1022:2000)),
+	    could be useful for several machine modes (Malta, Algor, evbarm,
+	    hp700?, macppc, etc.)
 
 Network layer:
 	o)  DHCP (for Debian and BSD installers :-)
@@ -87,17 +228,14 @@
 	o)  dev->bus: TurboChannel, PCMCIA, ADB?
 
 Config file parser:
-	o)  Refresh/rewrite it :)
+	o)  Rewrite it from scratch!
 	o)  Usage of any expression available through the debugger
-	o)  Expressions such as "add device" would be nice to be able
-	    to do on the command line manually.
-	o)  Allow machine() entries even if there is no emul() entry (but
-	    then don't allow any emul() entries at all).
 	o)  Support for running debugger commands (like the -c
 	    command line option)
 
 Floating point layer:
 	o)  make it common enough to be used by _all_ emulation modes
+	o)  implement more stuff
 	o)  non-IEEE modes (i.e. x86)?
 
 Userland emulation:
@@ -108,6 +246,12 @@
 	x)  generic sound framework
 	x)  add one or more sound cards as devices
 
+ASC SCSI controller:
+	x)  NetBSD/arc 2.0 uses the ASC controller in a way which GXemul
+	    cannot yet handle. (NetBSD 1.6.2 works ok.) (Possibly a problem
+	    in NetBSD itself, http://mail-index.netbsd.org/source-changes/
+	    2005/11/06/0024.html suggests that.)
+
 Caches / memory hierarchies: (this is mostly MIPS-specific)
 	o)  MIPS coproc.c: bits in config registers should reflect
 	    correct cache sizes for _all_ CPU types. (currently only
@@ -128,58 +272,12 @@
 	    memory latencies should be emulated as correctly as
 	    possible.
 
-MIPS CPU emulation:  (note: this is for the OLD mips stuff)
-	o)  i386 bintrans backend: movn etc, slt[u] for
-		64-bit mode, 64-bit shifts etc
-	o)  Instructions:
-		o)  All ISAs:
-			o)  Floating point exception handling, and
-				add more instructions.
-			o)  Finish the MIPS16 translator, and test it!
-			o)  MIPS ISA I, II, III, IV
-			o)  MIPS V (SIMD vector stuff?)
-			o)  MDMX  (MIPS Digital Media Extension)
-			o)  MIPS 3D
-			o)  MIPS MT (Multi-thread stuff) (What's this?)
-		o)  Warn about mis-used bit fields (ie bits that
-		    should be all zeroes, warn about if they are not)!
-		    Both for coprocessor registers and for instruction
-		    opcodes.
-		o)  the special2 stuff is a mess right now
-		o)  warn and/or cause exceptions for unimplemented
-		    instructions (depending on CPU type)
-	o)  R2000/R3000:
-		x)  R3000 "tri-byte stores". (What's this?)
-	o)  R4000 and others:
-		x)  watchhi/watchlo exceptions, and other exception
-		    handling details
-	o)  R10000 and others:  (R12000, R14000 ?)
-		x)  memory space, exceptions, ...
-		x)  use cop0 framemask for tlb lookups
-		    (http://techpubs.sgi.com/library/tpl/cgi-bin/getdoc.cgi/hdwr/bks/SGI_Developer/books/R10K_UM/sgi_html/t5.Ver.2.0.book_284.html)
-	o)  Implement load delays?  Warnings on interlocks.
-	o)  Implement all coprocessor 0 bits / functions.
-		x)  coproc 0 selectors! (R4000 ?)
-	o)  R4300 (nintendo64, no mmu?), R5900 (playstation2, weird
-		TLB/cache? 128-bit GPRs, new instructions),
-		4K (note: NOT R4000), 5K (note: NOT R5000),
-		R6000 (ISA II), R8000
-	o)  Multi-cpu stuff:
-		+)  Interrupt routing (ie devices vs mainbus, or
-		    connect each device to a fixed cpu)
-		+)  SGI's NUMA architecture. Study
-			x)  Linux sources
-			x)  SGI's specs on NUMA address space
-		+)  Ultrix?  NetBSD doesn't do SMP on MIPS yet :-(
-		+)  Own experiments with ycx2.
-
 File/disk/symbol handling:
 	o)  Better handling of tape files
 	o)  Read function argument count and types from binaries? (ELF?)
-	o)  Demangle C++ names.
-
-Debugger:
-	o)  see src/debugger.c for more
+	o)  Better demangling of C++ names. Note: GNU's C++ differs from e.g.
+	    Microsoft's C++, so multiple schemes must be possible. See
+	    URL at top of src/symbol_demangle.c for more info.
 
 Userland ABI emulation:
 	o)  see src/useremul.c
@@ -206,6 +304,8 @@
 		on size (and center the image, with a black border).
 	o)  Different scaledown on different windows?
 	o)  Switch scaledown during runtime? (Ala CTRL-ALT-plus/minus)
+	o)  Bug reported by Elijah Rutschman on MacOS with weird
+	    keys (F5 = cursor down?).
 	o)  Keyboard and mouse events:
 		x)  Do this for more machines than just DECstation
 		x)  more X11 cursor keycodes