Thanks for the reply, Andrzej!
Some clarifications below ...
On 7/13/07, andrzej zaborowski <[EMAIL PROTECTED]> wrote:
>
> ************************************************
> /* convert one instruction. s->is_jmp is set if the translation must
> be stopped. Return the next pc value */
> static target_ulong disas_insn(DisasContext *s, target_ulong pc_start)
> {
> int b, prefixes, aflag, dflag;
> int shift, ot;
> int modrm, reg, rm, mod, reg_addr, op, opreg, offset_addr, val;
> target_ulong next_eip, tval;
> int rex_w, rex_r;
>
> s->pc = pc_start; // This s->pc is what I am using to extract all
> executed PC values
This s->pc doesn't correspond to executed PC values, qemu is a translator.
Can you tell me what s->pc is, in this context? Is the the start PC of a
basic block that is about to be executed? Is there any way in which I could
extract the trace of executed PCs in QEMU?
Regards,
-Shashi.
