If I understand correctly, the most advanced MMU that QEMU emulates for MIPS is "R4000-style" MMU - i.e. a "software-managed" TLB, where on TLB miss QEMU just emulates exception that should be handled by the guest OS. So, QEMU doesn't walk through the page directory, like it does when emulating e.g. x86. While this approach works for the guest code, it results in inability to read guest virtual memory "externally" - from within a monitor command, for debugging purposes etc. That is, cpu_memory_rw_debug() doesn't work reliably for mapped segments - it fails because of TLB miss, but no one tries to fill the TLB. If all the above correct, is there any work-around that can be used to read the guest memory in qemu-system-mips?
Thanks.
