Re: [Qemu-ppc] pseudo-op for ".long"

[Alexander Graf]

On 30.06.2014, at 15:45, Brandon Williams <address@hidden> wrote:

Thanks for your reply.  Here is the command that I'm using:

Please don't top post on this mailing list :).

sudo qemu-system-ppc -m 1024 -cpu G2leGP3 -bios ~/Bstrap.bin

So this is ppc softmmu.  The specific binary that I'm trying to run is a Flight Management System trainer that would normally run on this:
http://www.universalavionics.com/products/uns1fw.aspx

but I'm obviously trying to emulate it with Qemu.  I load a Bstrap.bin into 0xFFF00000 and the FMS.bin into 0x0100000.  It seems to get through the Bstrap fine but it crashes on that invalid opcode with .long instruction on the first line of the FMS.bin at 0x0100000.

I've opened the FMS.bin in IDA to look around.  It looks like the .long instruction appears in there, too.  Is it possible that IDA doesn't know how to translate that instruction as well?

Maybe it's not even an instruction that it should ever get to, but rather some data lying around with the code. However, the most important bit you'll have to figure out first is that you need to write a completely new board model including all the hardware peripherals your device wants to see. The default machine that qemu-system-ppc emulates is an ancient G3 Beige Mac computer. I very much doubt that this machine even remotely resembles the device you're targeting here.

Also, are you sure the CPU core in there is a G2?

Alex