]> git.proxmox.com Git - mirror_qemu.git/blame - gdbstub.c
projects / mirror_qemu.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
target-ppc: Move cpu_exec_init() call to realize function
[mirror_qemu.git] / gdbstub.c
CommitLineData
b4608c04
FB		 1/*
2 * gdb server stub
5fafdf24 3 *
3475187d 4 * Copyright (c) 2003-2005 Fabrice Bellard
b4608c04
FB		 5 *
6 * This library is free software; you can redistribute it and/or
7 * modify it under the terms of the GNU Lesser General Public
8 * License as published by the Free Software Foundation; either
9 * version 2 of the License, or (at your option) any later version.
10 *
11 * This library is distributed in the hope that it will be useful,
12 * but WITHOUT ANY WARRANTY; without even the implied warranty of
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
14 * Lesser General Public License for more details.
15 *
16 * You should have received a copy of the GNU Lesser General Public
8167ee88 17 * License along with this library; if not, see <http://www.gnu.org/licenses/>.
b4608c04 18 */
978efd6a 19#include "config.h"
56aebc89 20#include "qemu-common.h"
1fddef4b
FB		 21#ifdef CONFIG_USER_ONLY
22#include <stdlib.h>
23#include <stdio.h>
24#include <stdarg.h>
25#include <string.h>
26#include <errno.h>
27#include <unistd.h>
978efd6a 28#include <fcntl.h>
1fddef4b
FB		 29
30#include "qemu.h"
31#else
83c9089e 32#include "monitor/monitor.h"
dccfcd0e 33#include "sysemu/char.h"
9c17d615 34#include "sysemu/sysemu.h"
022c62cb 35#include "exec/gdbstub.h"
1fddef4b 36#endif
67b915a5 37
56aebc89
PB		 38#define MAX_PACKET_LENGTH 4096
39
2b41f10e 40#include "cpu.h"
1de7afc9 41#include "qemu/sockets.h"
9c17d615 42#include "sysemu/kvm.h"
cfe67cef 43#include "exec/semihost.h"
ca587a8e 44
a3919386
JK		 45#ifdef CONFIG_USER_ONLY
46#define GDB_ATTACHED "0"
47#else
48#define GDB_ATTACHED "1"
49#endif
50
f3659eee
AF		 51static inline int target_memory_rw_debug(CPUState *cpu, target_ulong addr,
52 uint8_t *buf, int len, bool is_write)
44520db1 53{
f3659eee
AF		 54 CPUClass *cc = CPU_GET_CLASS(cpu);
55
56 if (cc->memory_rw_debug) {
57 return cc->memory_rw_debug(cpu, addr, buf, len, is_write);
58 }
59 return cpu_memory_rw_debug(cpu, addr, buf, len, is_write);
44520db1 60}
ca587a8e
AJ		 61
62enum {
63 GDB_SIGNAL_0 = 0,
64 GDB_SIGNAL_INT = 2,
425189a8 65 GDB_SIGNAL_QUIT = 3,
ca587a8e 66 GDB_SIGNAL_TRAP = 5,
425189a8
JK		 67 GDB_SIGNAL_ABRT = 6,
68 GDB_SIGNAL_ALRM = 14,
69 GDB_SIGNAL_IO = 23,
70 GDB_SIGNAL_XCPU = 24,
ca587a8e
AJ		 71 GDB_SIGNAL_UNKNOWN = 143
72};
73
74#ifdef CONFIG_USER_ONLY
75
76/* Map target signal numbers to GDB protocol signal numbers and vice
77 * versa. For user emulation's currently supported systems, we can
78 * assume most signals are defined.
79 */
80
81static int gdb_signal_table[] = {
82 0,
83 TARGET_SIGHUP,
84 TARGET_SIGINT,
85 TARGET_SIGQUIT,
86 TARGET_SIGILL,
87 TARGET_SIGTRAP,
88 TARGET_SIGABRT,
89 -1, /* SIGEMT */
90 TARGET_SIGFPE,
91 TARGET_SIGKILL,
92 TARGET_SIGBUS,
93 TARGET_SIGSEGV,
94 TARGET_SIGSYS,
95 TARGET_SIGPIPE,
96 TARGET_SIGALRM,
97 TARGET_SIGTERM,
98 TARGET_SIGURG,
99 TARGET_SIGSTOP,
100 TARGET_SIGTSTP,
101 TARGET_SIGCONT,
102 TARGET_SIGCHLD,
103 TARGET_SIGTTIN,
104 TARGET_SIGTTOU,
105 TARGET_SIGIO,
106 TARGET_SIGXCPU,
107 TARGET_SIGXFSZ,
108 TARGET_SIGVTALRM,
109 TARGET_SIGPROF,
110 TARGET_SIGWINCH,
111 -1, /* SIGLOST */
112 TARGET_SIGUSR1,
113 TARGET_SIGUSR2,
c72d5bf8 114#ifdef TARGET_SIGPWR
ca587a8e 115 TARGET_SIGPWR,
c72d5bf8
BS		 116#else
117 -1,
118#endif
ca587a8e
AJ		 119 -1, /* SIGPOLL */
120 -1,
121 -1,
122 -1,
123 -1,
124 -1,
125 -1,
126 -1,
127 -1,
128 -1,
129 -1,
130 -1,
c72d5bf8 131#ifdef __SIGRTMIN
ca587a8e
AJ		 132 __SIGRTMIN + 1,
133 __SIGRTMIN + 2,
134 __SIGRTMIN + 3,
135 __SIGRTMIN + 4,
136 __SIGRTMIN + 5,
137 __SIGRTMIN + 6,
138 __SIGRTMIN + 7,
139 __SIGRTMIN + 8,
140 __SIGRTMIN + 9,
141 __SIGRTMIN + 10,
142 __SIGRTMIN + 11,
143 __SIGRTMIN + 12,
144 __SIGRTMIN + 13,
145 __SIGRTMIN + 14,
146 __SIGRTMIN + 15,
147 __SIGRTMIN + 16,
148 __SIGRTMIN + 17,
149 __SIGRTMIN + 18,
150 __SIGRTMIN + 19,
151 __SIGRTMIN + 20,
152 __SIGRTMIN + 21,
153 __SIGRTMIN + 22,
154 __SIGRTMIN + 23,
155 __SIGRTMIN + 24,
156 __SIGRTMIN + 25,
157 __SIGRTMIN + 26,
158 __SIGRTMIN + 27,
159 __SIGRTMIN + 28,
160 __SIGRTMIN + 29,
161 __SIGRTMIN + 30,
162 __SIGRTMIN + 31,
163 -1, /* SIGCANCEL */
164 __SIGRTMIN,
165 __SIGRTMIN + 32,
166 __SIGRTMIN + 33,
167 __SIGRTMIN + 34,
168 __SIGRTMIN + 35,
169 __SIGRTMIN + 36,
170 __SIGRTMIN + 37,
171 __SIGRTMIN + 38,
172 __SIGRTMIN + 39,
173 __SIGRTMIN + 40,
174 __SIGRTMIN + 41,
175 __SIGRTMIN + 42,
176 __SIGRTMIN + 43,
177 __SIGRTMIN + 44,
178 __SIGRTMIN + 45,
179 __SIGRTMIN + 46,
180 __SIGRTMIN + 47,
181 __SIGRTMIN + 48,
182 __SIGRTMIN + 49,
183 __SIGRTMIN + 50,
184 __SIGRTMIN + 51,
185 __SIGRTMIN + 52,
186 __SIGRTMIN + 53,
187 __SIGRTMIN + 54,
188 __SIGRTMIN + 55,
189 __SIGRTMIN + 56,
190 __SIGRTMIN + 57,
191 __SIGRTMIN + 58,
192 __SIGRTMIN + 59,
193 __SIGRTMIN + 60,
194 __SIGRTMIN + 61,
195 __SIGRTMIN + 62,
196 __SIGRTMIN + 63,
197 __SIGRTMIN + 64,
198 __SIGRTMIN + 65,
199 __SIGRTMIN + 66,
200 __SIGRTMIN + 67,
201 __SIGRTMIN + 68,
202 __SIGRTMIN + 69,
203 __SIGRTMIN + 70,
204 __SIGRTMIN + 71,
205 __SIGRTMIN + 72,
206 __SIGRTMIN + 73,
207 __SIGRTMIN + 74,
208 __SIGRTMIN + 75,
209 __SIGRTMIN + 76,
210 __SIGRTMIN + 77,
211 __SIGRTMIN + 78,
212 __SIGRTMIN + 79,
213 __SIGRTMIN + 80,
214 __SIGRTMIN + 81,
215 __SIGRTMIN + 82,
216 __SIGRTMIN + 83,
217 __SIGRTMIN + 84,
218 __SIGRTMIN + 85,
219 __SIGRTMIN + 86,
220 __SIGRTMIN + 87,
221 __SIGRTMIN + 88,
222 __SIGRTMIN + 89,
223 __SIGRTMIN + 90,
224 __SIGRTMIN + 91,
225 __SIGRTMIN + 92,
226 __SIGRTMIN + 93,
227 __SIGRTMIN + 94,
228 __SIGRTMIN + 95,
229 -1, /* SIGINFO */
230 -1, /* UNKNOWN */
231 -1, /* DEFAULT */
232 -1,
233 -1,
234 -1,
235 -1,
236 -1,
237 -1
c72d5bf8 238#endif
ca587a8e 239};
8f447cc7 240#else
ca587a8e
AJ		 241/* In system mode we only need SIGINT and SIGTRAP; other signals
242 are not yet supported. */
243
244enum {
245 TARGET_SIGINT = 2,
246 TARGET_SIGTRAP = 5
247};
248
249static int gdb_signal_table[] = {
250 -1,
251 -1,
252 TARGET_SIGINT,
253 -1,
254 -1,
255 TARGET_SIGTRAP
256};
257#endif
258
259#ifdef CONFIG_USER_ONLY
260static int target_signal_to_gdb (int sig)
261{
262 int i;
263 for (i = 0; i < ARRAY_SIZE (gdb_signal_table); i++)
264 if (gdb_signal_table[i] == sig)
265 return i;
266 return GDB_SIGNAL_UNKNOWN;
267}
8f447cc7 268#endif
b4608c04 269
ca587a8e
AJ		 270static int gdb_signal_to_target (int sig)
271{
272 if (sig < ARRAY_SIZE (gdb_signal_table))
273 return gdb_signal_table[sig];
274 else
275 return -1;
276}
277
4abe615b 278//#define DEBUG_GDB
b4608c04 279
56aebc89
PB		 280typedef struct GDBRegisterState {
281 int base_reg;
282 int num_regs;
283 gdb_reg_cb get_reg;
284 gdb_reg_cb set_reg;
285 const char *xml;
286 struct GDBRegisterState *next;
287} GDBRegisterState;
288
858693c6 289enum RSState {
36556b20 290 RS_INACTIVE,
858693c6
FB		 291 RS_IDLE,
292 RS_GETLINE,
293 RS_CHKSUM1,
294 RS_CHKSUM2,
295};
858693c6 296typedef struct GDBState {
2e0f2cfb
AF		 297 CPUState *c_cpu; /* current CPU for step/continue ops */
298 CPUState *g_cpu; /* current CPU for other ops */
52f34623 299 CPUState *query_cpu; /* for q{f|s}ThreadInfo */
41625033 300 enum RSState state; /* parsing state */
56aebc89 301 char line_buf[MAX_PACKET_LENGTH];
858693c6
FB		 302 int line_buf_index;
303 int line_csum;
56aebc89 304 uint8_t last_packet[MAX_PACKET_LENGTH + 4];
4046d913 305 int last_packet_len;
1f487ee9 306 int signal;
41625033 307#ifdef CONFIG_USER_ONLY
4046d913 308 int fd;
41625033 309 int running_state;
4046d913
PB		 310#else
311 CharDriverState *chr;
8a34a0fb 312 CharDriverState *mon_chr;
41625033 313#endif
cdb432b2
MI		 314 char syscall_buf[256];
315 gdb_syscall_complete_cb current_syscall_cb;
858693c6 316} GDBState;
b4608c04 317
60897d36
EI		 318/* By default use no IRQs and no timers while single stepping so as to
319 * make single stepping like an ICE HW step.
320 */
321static int sstep_flags = SSTEP_ENABLE|SSTEP_NOIRQ|SSTEP_NOTIMER;
322
880a7578
AL		 323static GDBState *gdbserver_state;
324
5b50e790 325bool gdb_has_xml;
56aebc89 326
1fddef4b 327#ifdef CONFIG_USER_ONLY
4046d913
PB		 328/* XXX: This is not thread safe. Do we care? */
329static int gdbserver_fd = -1;
330
858693c6 331static int get_char(GDBState *s)
b4608c04
FB		 332{
333 uint8_t ch;
334 int ret;
335
336 for(;;) {
00aa0040 337 ret = qemu_recv(s->fd, &ch, 1, 0);
b4608c04 338 if (ret < 0) {
1f487ee9
EI		 339 if (errno == ECONNRESET)
340 s->fd = -1;
b4608c04
FB		 341 if (errno != EINTR && errno != EAGAIN)
342 return -1;
343 } else if (ret == 0) {
1f487ee9
EI		 344 close(s->fd);
345 s->fd = -1;
b4608c04
FB		 346 return -1;
347 } else {
348 break;
349 }
350 }
351 return ch;
352}
4046d913 353#endif
b4608c04 354
654efcf3 355static enum {
a2d1ebaf
PB		 356 GDB_SYS_UNKNOWN,
357 GDB_SYS_ENABLED,
358 GDB_SYS_DISABLED,
359} gdb_syscall_mode;
360
a38bb079 361/* Decide if either remote gdb syscalls or native file IO should be used. */
a2d1ebaf
PB		 362int use_gdb_syscalls(void)
363{
cfe67cef
LA		 364 SemihostingTarget target = semihosting_get_target();
365 if (target == SEMIHOSTING_TARGET_NATIVE) {
a38bb079
LI		 366 /* -semihosting-config target=native */
367 return false;
cfe67cef 368 } else if (target == SEMIHOSTING_TARGET_GDB) {
a38bb079
LI		 369 /* -semihosting-config target=gdb */
370 return true;
371 }
372
373 /* -semihosting-config target=auto */
374 /* On the first call check if gdb is connected and remember. */
a2d1ebaf 375 if (gdb_syscall_mode == GDB_SYS_UNKNOWN) {
880a7578
AL		 376 gdb_syscall_mode = (gdbserver_state ? GDB_SYS_ENABLED
377 : GDB_SYS_DISABLED);
a2d1ebaf
PB		 378 }
379 return gdb_syscall_mode == GDB_SYS_ENABLED;
380}
381
ba70a624
EI		 382/* Resume execution. */
383static inline void gdb_continue(GDBState *s)
384{
385#ifdef CONFIG_USER_ONLY
386 s->running_state = 1;
387#else
26ac7a31 388 if (!runstate_needs_reset()) {
87f25c12
PB		 389 vm_start();
390 }
ba70a624
EI		 391#endif
392}
393
858693c6 394static void put_buffer(GDBState *s, const uint8_t *buf, int len)
b4608c04 395{
4046d913 396#ifdef CONFIG_USER_ONLY
b4608c04
FB		 397 int ret;
398
399 while (len > 0) {
8f447cc7 400 ret = send(s->fd, buf, len, 0);
b4608c04
FB		 401 if (ret < 0) {
402 if (errno != EINTR && errno != EAGAIN)
403 return;
404 } else {
405 buf += ret;
406 len -= ret;
407 }
408 }
4046d913 409#else
2cc6e0a1 410 qemu_chr_fe_write(s->chr, buf, len);
4046d913 411#endif
b4608c04
FB		 412}
413
414static inline int fromhex(int v)
415{
416 if (v >= '0' && v <= '9')
417 return v - '0';
418 else if (v >= 'A' && v <= 'F')
419 return v - 'A' + 10;
420 else if (v >= 'a' && v <= 'f')
421 return v - 'a' + 10;
422 else
423 return 0;
424}
425
426static inline int tohex(int v)
427{
428 if (v < 10)
429 return v + '0';
430 else
431 return v - 10 + 'a';
432}
433
434static void memtohex(char *buf, const uint8_t *mem, int len)
435{
436 int i, c;
437 char *q;
438 q = buf;
439 for(i = 0; i < len; i++) {
440 c = mem[i];
441 *q++ = tohex(c >> 4);
442 *q++ = tohex(c & 0xf);
443 }
444 *q = '\0';
445}
446
447static void hextomem(uint8_t *mem, const char *buf, int len)
448{
449 int i;
450
451 for(i = 0; i < len; i++) {
452 mem[i] = (fromhex(buf[0]) << 4) | fromhex(buf[1]);
453 buf += 2;
454 }
455}
456
b4608c04 457/* return -1 if error, 0 if OK */
56aebc89 458static int put_packet_binary(GDBState *s, const char *buf, int len)
b4608c04 459{
56aebc89 460 int csum, i;
60fe76f3 461 uint8_t *p;
b4608c04 462
b4608c04 463 for(;;) {
4046d913
PB		 464 p = s->last_packet;
465 *(p++) = '$';
4046d913
PB		 466 memcpy(p, buf, len);
467 p += len;
b4608c04
FB		 468 csum = 0;
469 for(i = 0; i < len; i++) {
470 csum += buf[i];
471 }
4046d913
PB		 472 *(p++) = '#';
473 *(p++) = tohex((csum >> 4) & 0xf);
474 *(p++) = tohex((csum) & 0xf);
b4608c04 475
4046d913 476 s->last_packet_len = p - s->last_packet;
ffe8ab83 477 put_buffer(s, (uint8_t *)s->last_packet, s->last_packet_len);
b4608c04 478
4046d913
PB		 479#ifdef CONFIG_USER_ONLY
480 i = get_char(s);
481 if (i < 0)
b4608c04 482 return -1;
4046d913 483 if (i == '+')
b4608c04 484 break;
4046d913
PB		 485#else
486 break;
487#endif
b4608c04
FB		 488 }
489 return 0;
490}
491
56aebc89
PB		 492/* return -1 if error, 0 if OK */
493static int put_packet(GDBState *s, const char *buf)
494{
495#ifdef DEBUG_GDB
496 printf("reply='%s'\n", buf);
497#endif
79808573 498
56aebc89
PB		 499 return put_packet_binary(s, buf, strlen(buf));
500}
501
56aebc89
PB		 502/* Encode data using the encoding for 'x' packets. */
503static int memtox(char *buf, const char *mem, int len)
504{
505 char *p = buf;
506 char c;
507
508 while (len--) {
509 c = *(mem++);
510 switch (c) {
511 case '#': case '$': case '*': case '}':
512 *(p++) = '}';
513 *(p++) = c ^ 0x20;
514 break;
515 default:
516 *(p++) = c;
517 break;
518 }
519 }
520 return p - buf;
521}
f1ccf904 522
5b24c641
AF		 523static const char *get_feature_xml(const char *p, const char **newp,
524 CPUClass *cc)
56aebc89 525{
56aebc89
PB		 526 size_t len;
527 int i;
528 const char *name;
529 static char target_xml[1024];
530
531 len = 0;
532 while (p[len] && p[len] != ':')
533 len++;
534 *newp = p + len;
535
536 name = NULL;
537 if (strncmp(p, "target.xml", len) == 0) {
538 /* Generate the XML description for this CPU. */
539 if (!target_xml[0]) {
540 GDBRegisterState *r;
eac8b355 541 CPUState *cpu = first_cpu;
56aebc89 542
5b3715bf
BS		 543 snprintf(target_xml, sizeof(target_xml),
544 "<?xml version=\"1.0\"?>"
545 "<!DOCTYPE target SYSTEM \"gdb-target.dtd\">"
546 "<target>"
547 "<xi:include href=\"%s\"/>",
5b24c641 548 cc->gdb_core_xml_file);
56aebc89 549
eac8b355 550 for (r = cpu->gdb_regs; r; r = r->next) {
2dc766da
BS		 551 pstrcat(target_xml, sizeof(target_xml), "<xi:include href=\"");
552 pstrcat(target_xml, sizeof(target_xml), r->xml);
553 pstrcat(target_xml, sizeof(target_xml), "\"/>");
56aebc89 554 }
2dc766da 555 pstrcat(target_xml, sizeof(target_xml), "</target>");
56aebc89
PB		 556 }
557 return target_xml;
558 }
559 for (i = 0; ; i++) {
560 name = xml_builtin[i][0];
561 if (!name || (strncmp(name, p, len) == 0 && strlen(name) == len))
562 break;
563 }
564 return name ? xml_builtin[i][1] : NULL;
565}
f1ccf904 566
385b9f0e 567static int gdb_read_register(CPUState *cpu, uint8_t *mem_buf, int reg)
56aebc89 568{
a0e372f0 569 CPUClass *cc = CPU_GET_CLASS(cpu);
385b9f0e 570 CPUArchState *env = cpu->env_ptr;
56aebc89 571 GDBRegisterState *r;
f1ccf904 572
a0e372f0 573 if (reg < cc->gdb_num_core_regs) {
5b50e790 574 return cc->gdb_read_register(cpu, mem_buf, reg);
a0e372f0 575 }
f1ccf904 576
eac8b355 577 for (r = cpu->gdb_regs; r; r = r->next) {
56aebc89
PB		 578 if (r->base_reg <= reg && reg < r->base_reg + r->num_regs) {
579 return r->get_reg(env, mem_buf, reg - r->base_reg);
580 }
581 }
582 return 0;
f1ccf904
TS		 583}
584
385b9f0e 585static int gdb_write_register(CPUState *cpu, uint8_t *mem_buf, int reg)
f1ccf904 586{
a0e372f0 587 CPUClass *cc = CPU_GET_CLASS(cpu);
385b9f0e 588 CPUArchState *env = cpu->env_ptr;
56aebc89 589 GDBRegisterState *r;
f1ccf904 590
a0e372f0 591 if (reg < cc->gdb_num_core_regs) {
5b50e790 592 return cc->gdb_write_register(cpu, mem_buf, reg);
a0e372f0 593 }
56aebc89 594
eac8b355 595 for (r = cpu->gdb_regs; r; r = r->next) {
56aebc89
PB		 596 if (r->base_reg <= reg && reg < r->base_reg + r->num_regs) {
597 return r->set_reg(env, mem_buf, reg - r->base_reg);
598 }
599 }
6da41eaf
FB		 600 return 0;
601}
602
56aebc89
PB		 603/* Register a supplemental set of CPU registers. If g_pos is nonzero it
604 specifies the first register number and these registers are included in
605 a standard "g" packet. Direction is relative to gdb, i.e. get_reg is
606 gdb reading a CPU register, and set_reg is gdb modifying a CPU register.
607 */
608
22169d41
AF		 609void gdb_register_coprocessor(CPUState *cpu,
610 gdb_reg_cb get_reg, gdb_reg_cb set_reg,
611 int num_regs, const char *xml, int g_pos)
6da41eaf 612{
56aebc89
PB		 613 GDBRegisterState *s;
614 GDBRegisterState **p;
56aebc89 615
eac8b355 616 p = &cpu->gdb_regs;
56aebc89
PB		 617 while (*p) {
618 /* Check for duplicates. */
619 if (strcmp((*p)->xml, xml) == 0)
620 return;
621 p = &(*p)->next;
622 }
9643c25f
SW		 623
624 s = g_new0(GDBRegisterState, 1);
a0e372f0 625 s->base_reg = cpu->gdb_num_regs;
9643c25f
SW		 626 s->num_regs = num_regs;
627 s->get_reg = get_reg;
628 s->set_reg = set_reg;
629 s->xml = xml;
630
56aebc89 631 /* Add to end of list. */
a0e372f0 632 cpu->gdb_num_regs += num_regs;
56aebc89
PB		 633 *p = s;
634 if (g_pos) {
635 if (g_pos != s->base_reg) {
636 fprintf(stderr, "Error: Bad gdb register numbering for '%s'\n"
637 "Expected %d got %d\n", xml, g_pos, s->base_reg);
35143f01
AF		 638 } else {
639 cpu->gdb_num_g_regs = cpu->gdb_num_regs;
56aebc89
PB		 640 }
641 }
6da41eaf
FB		 642}
643
a1d1bb31 644#ifndef CONFIG_USER_ONLY
2472b6c0
PM		 645/* Translate GDB watchpoint type to a flags value for cpu_watchpoint_* */
646static inline int xlat_gdb_type(CPUState *cpu, int gdbtype)
647{
648 static const int xlat[] = {
649 [GDB_WATCHPOINT_WRITE] = BP_GDB | BP_MEM_WRITE,
650 [GDB_WATCHPOINT_READ] = BP_GDB | BP_MEM_READ,
651 [GDB_WATCHPOINT_ACCESS] = BP_GDB | BP_MEM_ACCESS,
652 };
653
654 CPUClass *cc = CPU_GET_CLASS(cpu);
655 int cputype = xlat[gdbtype];
656
657 if (cc->gdb_stop_before_watchpoint) {
658 cputype |= BP_STOP_BEFORE_ACCESS;
659 }
660 return cputype;
661}
a1d1bb31
AL		 662#endif
663
880a7578 664static int gdb_breakpoint_insert(target_ulong addr, target_ulong len, int type)
a1d1bb31 665{
182735ef 666 CPUState *cpu;
880a7578
AL		 667 int err = 0;
668
62278814 669 if (kvm_enabled()) {
2e0f2cfb 670 return kvm_insert_breakpoint(gdbserver_state->c_cpu, addr, len, type);
62278814 671 }
e22a25c9 672
a1d1bb31
AL		 673 switch (type) {
674 case GDB_BREAKPOINT_SW:
675 case GDB_BREAKPOINT_HW:
bdc44640 676 CPU_FOREACH(cpu) {
b3310ab3
AF		 677 err = cpu_breakpoint_insert(cpu, addr, BP_GDB, NULL);
678 if (err) {
880a7578 679 break;
b3310ab3 680 }
880a7578
AL		 681 }
682 return err;
a1d1bb31
AL		 683#ifndef CONFIG_USER_ONLY
684 case GDB_WATCHPOINT_WRITE:
685 case GDB_WATCHPOINT_READ:
686 case GDB_WATCHPOINT_ACCESS:
bdc44640 687 CPU_FOREACH(cpu) {
2472b6c0
PM		 688 err = cpu_watchpoint_insert(cpu, addr, len,
689 xlat_gdb_type(cpu, type), NULL);
690 if (err) {
880a7578 691 break;
2472b6c0 692 }
880a7578
AL		 693 }
694 return err;
a1d1bb31
AL		 695#endif
696 default:
697 return -ENOSYS;
698 }
699}
700
880a7578 701static int gdb_breakpoint_remove(target_ulong addr, target_ulong len, int type)
a1d1bb31 702{
182735ef 703 CPUState *cpu;
880a7578
AL		 704 int err = 0;
705
62278814 706 if (kvm_enabled()) {
2e0f2cfb 707 return kvm_remove_breakpoint(gdbserver_state->c_cpu, addr, len, type);
62278814 708 }
e22a25c9 709
a1d1bb31
AL		 710 switch (type) {
711 case GDB_BREAKPOINT_SW:
712 case GDB_BREAKPOINT_HW:
bdc44640 713 CPU_FOREACH(cpu) {
b3310ab3
AF		 714 err = cpu_breakpoint_remove(cpu, addr, BP_GDB);
715 if (err) {
880a7578 716 break;
b3310ab3 717 }
880a7578
AL		 718 }
719 return err;
a1d1bb31
AL		 720#ifndef CONFIG_USER_ONLY
721 case GDB_WATCHPOINT_WRITE:
722 case GDB_WATCHPOINT_READ:
723 case GDB_WATCHPOINT_ACCESS:
bdc44640 724 CPU_FOREACH(cpu) {
2472b6c0
PM		 725 err = cpu_watchpoint_remove(cpu, addr, len,
726 xlat_gdb_type(cpu, type));
880a7578
AL		 727 if (err)
728 break;
729 }
730 return err;
a1d1bb31
AL		 731#endif
732 default:
733 return -ENOSYS;
734 }
735}
736
880a7578 737static void gdb_breakpoint_remove_all(void)
a1d1bb31 738{
182735ef 739 CPUState *cpu;
880a7578 740
e22a25c9 741 if (kvm_enabled()) {
2e0f2cfb 742 kvm_remove_all_breakpoints(gdbserver_state->c_cpu);
e22a25c9
AL		 743 return;
744 }
745
bdc44640 746 CPU_FOREACH(cpu) {
b3310ab3 747 cpu_breakpoint_remove_all(cpu, BP_GDB);
a1d1bb31 748#ifndef CONFIG_USER_ONLY
75a34036 749 cpu_watchpoint_remove_all(cpu, BP_GDB);
a1d1bb31 750#endif
880a7578 751 }
a1d1bb31
AL		 752}
753
fab9d284
AJ		 754static void gdb_set_cpu_pc(GDBState *s, target_ulong pc)
755{
2e0f2cfb 756 CPUState *cpu = s->c_cpu;
f45748f1
AF		 757 CPUClass *cc = CPU_GET_CLASS(cpu);
758
759 cpu_synchronize_state(cpu);
760 if (cc->set_pc) {
761 cc->set_pc(cpu, pc);
ff1d1977 762 }
fab9d284
AJ		 763}
764
2e0f2cfb 765static CPUState *find_cpu(uint32_t thread_id)
1e9fa730 766{
0d34282f 767 CPUState *cpu;
1e9fa730 768
bdc44640 769 CPU_FOREACH(cpu) {
aa48dd93 770 if (cpu_index(cpu) == thread_id) {
2e0f2cfb 771 return cpu;
aa48dd93 772 }
1e9fa730 773 }
aa48dd93
AF		 774
775 return NULL;
1e9fa730
NF		 776}
777
4dabe747
JK		 778static int is_query_packet(const char *p, const char *query, char separator)
779{
780 unsigned int query_len = strlen(query);
781
782 return strncmp(p, query, query_len) == 0 &&
783 (p[query_len] == '\0' || p[query_len] == separator);
784}
785
880a7578 786static int gdb_handle_packet(GDBState *s, const char *line_buf)
b4608c04 787{
2e0f2cfb 788 CPUState *cpu;
5b24c641 789 CPUClass *cc;
b4608c04 790 const char *p;
1e9fa730
NF		 791 uint32_t thread;
792 int ch, reg_size, type, res;
56aebc89
PB		 793 char buf[MAX_PACKET_LENGTH];
794 uint8_t mem_buf[MAX_PACKET_LENGTH];
795 uint8_t *registers;
9d9754a3 796 target_ulong addr, len;
3b46e624 797
858693c6
FB		 798#ifdef DEBUG_GDB
799 printf("command='%s'\n", line_buf);
800#endif
801 p = line_buf;
802 ch = *p++;
803 switch(ch) {
804 case '?':
1fddef4b 805 /* TODO: Make this return the correct value for user-mode. */
ca587a8e 806 snprintf(buf, sizeof(buf), "T%02xthread:%02x;", GDB_SIGNAL_TRAP,
2e0f2cfb 807 cpu_index(s->c_cpu));
858693c6 808 put_packet(s, buf);
7d03f82f
EI		 809 /* Remove all the breakpoints when this query is issued,
810 * because gdb is doing and initial connect and the state
811 * should be cleaned up.
812 */
880a7578 813 gdb_breakpoint_remove_all();
858693c6
FB		 814 break;
815 case 'c':
816 if (*p != '\0') {
9d9754a3 817 addr = strtoull(p, (char **)&p, 16);
fab9d284 818 gdb_set_cpu_pc(s, addr);
858693c6 819 }
ca587a8e 820 s->signal = 0;
ba70a624 821 gdb_continue(s);
41625033 822 return RS_IDLE;
1f487ee9 823 case 'C':
ca587a8e
AJ		 824 s->signal = gdb_signal_to_target (strtoul(p, (char **)&p, 16));
825 if (s->signal == -1)
826 s->signal = 0;
1f487ee9
EI		 827 gdb_continue(s);
828 return RS_IDLE;
dd32aa10
JK		 829 case 'v':
830 if (strncmp(p, "Cont", 4) == 0) {
831 int res_signal, res_thread;
832
833 p += 4;
834 if (*p == '?') {
835 put_packet(s, "vCont;c;C;s;S");
836 break;
837 }
838 res = 0;
839 res_signal = 0;
840 res_thread = 0;
841 while (*p) {
842 int action, signal;
843
844 if (*p++ != ';') {
845 res = 0;
846 break;
847 }
848 action = *p++;
849 signal = 0;
850 if (action == 'C' || action == 'S') {
f17b0690
MS		 851 signal = gdb_signal_to_target(strtoul(p, (char **)&p, 16));
852 if (signal == -1) {
853 signal = 0;
854 }
dd32aa10
JK		 855 } else if (action != 'c' && action != 's') {
856 res = 0;
857 break;
858 }
859 thread = 0;
860 if (*p == ':') {
861 thread = strtoull(p+1, (char **)&p, 16);
862 }
863 action = tolower(action);
864 if (res == 0 || (res == 'c' && action == 's')) {
865 res = action;
866 res_signal = signal;
867 res_thread = thread;
868 }
869 }
870 if (res) {
871 if (res_thread != -1 && res_thread != 0) {
2e0f2cfb
AF		 872 cpu = find_cpu(res_thread);
873 if (cpu == NULL) {
dd32aa10
JK		 874 put_packet(s, "E22");
875 break;
876 }
2e0f2cfb 877 s->c_cpu = cpu;
dd32aa10
JK		 878 }
879 if (res == 's') {
2e0f2cfb 880 cpu_single_step(s->c_cpu, sstep_flags);
dd32aa10
JK		 881 }
882 s->signal = res_signal;
883 gdb_continue(s);
884 return RS_IDLE;
885 }
886 break;
887 } else {
888 goto unknown_command;
889 }
7d03f82f
EI		 890 case 'k':
891 /* Kill the target */
892 fprintf(stderr, "\nQEMU: Terminated via GDBstub\n");
893 exit(0);
894 case 'D':
895 /* Detach packet */
880a7578 896 gdb_breakpoint_remove_all();
7ea06da3 897 gdb_syscall_mode = GDB_SYS_DISABLED;
7d03f82f
EI		 898 gdb_continue(s);
899 put_packet(s, "OK");
900 break;
858693c6
FB		 901 case 's':
902 if (*p != '\0') {
8fac5803 903 addr = strtoull(p, (char **)&p, 16);
fab9d284 904 gdb_set_cpu_pc(s, addr);
858693c6 905 }
2e0f2cfb 906 cpu_single_step(s->c_cpu, sstep_flags);
ba70a624 907 gdb_continue(s);
41625033 908 return RS_IDLE;
a2d1ebaf
PB		 909 case 'F':
910 {
911 target_ulong ret;
912 target_ulong err;
913
914 ret = strtoull(p, (char **)&p, 16);
915 if (*p == ',') {
916 p++;
917 err = strtoull(p, (char **)&p, 16);
918 } else {
919 err = 0;
920 }
921 if (*p == ',')
922 p++;
923 type = *p;
cdb432b2 924 if (s->current_syscall_cb) {
2e0f2cfb 925 s->current_syscall_cb(s->c_cpu, ret, err);
cdb432b2
MI		 926 s->current_syscall_cb = NULL;
927 }
a2d1ebaf
PB		 928 if (type == 'C') {
929 put_packet(s, "T02");
930 } else {
ba70a624 931 gdb_continue(s);
a2d1ebaf
PB		 932 }
933 }
934 break;
858693c6 935 case 'g':
2e0f2cfb 936 cpu_synchronize_state(s->g_cpu);
56aebc89 937 len = 0;
35143f01 938 for (addr = 0; addr < s->g_cpu->gdb_num_g_regs; addr++) {
2e0f2cfb 939 reg_size = gdb_read_register(s->g_cpu, mem_buf + len, addr);
56aebc89
PB		 940 len += reg_size;
941 }
942 memtohex(buf, mem_buf, len);
858693c6
FB		 943 put_packet(s, buf);
944 break;
945 case 'G':
2e0f2cfb 946 cpu_synchronize_state(s->g_cpu);
56aebc89 947 registers = mem_buf;
858693c6
FB		 948 len = strlen(p) / 2;
949 hextomem((uint8_t *)registers, p, len);
35143f01 950 for (addr = 0; addr < s->g_cpu->gdb_num_g_regs && len > 0; addr++) {
2e0f2cfb 951 reg_size = gdb_write_register(s->g_cpu, registers, addr);
56aebc89
PB		 952 len -= reg_size;
953 registers += reg_size;
954 }
858693c6
FB		 955 put_packet(s, "OK");
956 break;
957 case 'm':
9d9754a3 958 addr = strtoull(p, (char **)&p, 16);
858693c6
FB		 959 if (*p == ',')
960 p++;
9d9754a3 961 len = strtoull(p, NULL, 16);
2e0f2cfb 962 if (target_memory_rw_debug(s->g_cpu, addr, mem_buf, len, false) != 0) {
6f970bd9
FB		 963 put_packet (s, "E14");
964 } else {
965 memtohex(buf, mem_buf, len);
966 put_packet(s, buf);
967 }
858693c6
FB		 968 break;
969 case 'M':
9d9754a3 970 addr = strtoull(p, (char **)&p, 16);
858693c6
FB		 971 if (*p == ',')
972 p++;
9d9754a3 973 len = strtoull(p, (char **)&p, 16);
b328f873 974 if (*p == ':')
858693c6
FB		 975 p++;
976 hextomem(mem_buf, p, len);
2e0f2cfb 977 if (target_memory_rw_debug(s->g_cpu, addr, mem_buf, len,
f3659eee 978 true) != 0) {
905f20b1 979 put_packet(s, "E14");
44520db1 980 } else {
858693c6 981 put_packet(s, "OK");
44520db1 982 }
858693c6 983 break;
56aebc89
PB		 984 case 'p':
985 /* Older gdb are really dumb, and don't use 'g' if 'p' is avaialable.
986 This works, but can be very slow. Anything new enough to
987 understand XML also knows how to use this properly. */
988 if (!gdb_has_xml)
989 goto unknown_command;
990 addr = strtoull(p, (char **)&p, 16);
2e0f2cfb 991 reg_size = gdb_read_register(s->g_cpu, mem_buf, addr);
56aebc89
PB		 992 if (reg_size) {
993 memtohex(buf, mem_buf, reg_size);
994 put_packet(s, buf);
995 } else {
996 put_packet(s, "E14");
997 }
998 break;
999 case 'P':
1000 if (!gdb_has_xml)
1001 goto unknown_command;
1002 addr = strtoull(p, (char **)&p, 16);
1003 if (*p == '=')
1004 p++;
1005 reg_size = strlen(p) / 2;
1006 hextomem(mem_buf, p, reg_size);
2e0f2cfb 1007 gdb_write_register(s->g_cpu, mem_buf, addr);
56aebc89
PB		 1008 put_packet(s, "OK");
1009 break;
858693c6 1010 case 'Z':
858693c6
FB		 1011 case 'z':
1012 type = strtoul(p, (char **)&p, 16);
1013 if (*p == ',')
1014 p++;
9d9754a3 1015 addr = strtoull(p, (char **)&p, 16);
858693c6
FB		 1016 if (*p == ',')
1017 p++;
9d9754a3 1018 len = strtoull(p, (char **)&p, 16);
a1d1bb31 1019 if (ch == 'Z')
880a7578 1020 res = gdb_breakpoint_insert(addr, len, type);
a1d1bb31 1021 else
880a7578 1022 res = gdb_breakpoint_remove(addr, len, type);
a1d1bb31
AL		 1023 if (res >= 0)
1024 put_packet(s, "OK");
1025 else if (res == -ENOSYS)
0f459d16 1026 put_packet(s, "");
a1d1bb31
AL		 1027 else
1028 put_packet(s, "E22");
858693c6 1029 break;
880a7578
AL		 1030 case 'H':
1031 type = *p++;
1032 thread = strtoull(p, (char **)&p, 16);
1033 if (thread == -1 || thread == 0) {
1034 put_packet(s, "OK");
1035 break;
1036 }
2e0f2cfb
AF		 1037 cpu = find_cpu(thread);
1038 if (cpu == NULL) {
880a7578
AL		 1039 put_packet(s, "E22");
1040 break;
1041 }
1042 switch (type) {
1043 case 'c':
2e0f2cfb 1044 s->c_cpu = cpu;
880a7578
AL		 1045 put_packet(s, "OK");
1046 break;
1047 case 'g':
2e0f2cfb 1048 s->g_cpu = cpu;
880a7578
AL		 1049 put_packet(s, "OK");
1050 break;
1051 default:
1052 put_packet(s, "E22");
1053 break;
1054 }
1055 break;
1056 case 'T':
1057 thread = strtoull(p, (char **)&p, 16);
2e0f2cfb 1058 cpu = find_cpu(thread);
1e9fa730 1059
2e0f2cfb 1060 if (cpu != NULL) {
1e9fa730
NF		 1061 put_packet(s, "OK");
1062 } else {
880a7578 1063 put_packet(s, "E22");
1e9fa730 1064 }
880a7578 1065 break;
978efd6a 1066 case 'q':
60897d36
EI		 1067 case 'Q':
1068 /* parse any 'q' packets here */
1069 if (!strcmp(p,"qemu.sstepbits")) {
1070 /* Query Breakpoint bit definitions */
363a37d5
BS		 1071 snprintf(buf, sizeof(buf), "ENABLE=%x,NOIRQ=%x,NOTIMER=%x",
1072 SSTEP_ENABLE,
1073 SSTEP_NOIRQ,
1074 SSTEP_NOTIMER);
60897d36
EI		 1075 put_packet(s, buf);
1076 break;
4dabe747 1077 } else if (is_query_packet(p, "qemu.sstep", '=')) {
60897d36
EI		 1078 /* Display or change the sstep_flags */
1079 p += 10;
1080 if (*p != '=') {
1081 /* Display current setting */
363a37d5 1082 snprintf(buf, sizeof(buf), "0x%x", sstep_flags);
60897d36
EI		 1083 put_packet(s, buf);
1084 break;
1085 }
1086 p++;
1087 type = strtoul(p, (char **)&p, 16);
1088 sstep_flags = type;
1089 put_packet(s, "OK");
1090 break;
880a7578
AL		 1091 } else if (strcmp(p,"C") == 0) {
1092 /* "Current thread" remains vague in the spec, so always return
1093 * the first CPU (gdb returns the first thread). */
1094 put_packet(s, "QC1");
1095 break;
1096 } else if (strcmp(p,"fThreadInfo") == 0) {
52f34623 1097 s->query_cpu = first_cpu;
880a7578
AL		 1098 goto report_cpuinfo;
1099 } else if (strcmp(p,"sThreadInfo") == 0) {
1100 report_cpuinfo:
1101 if (s->query_cpu) {
52f34623 1102 snprintf(buf, sizeof(buf), "m%x", cpu_index(s->query_cpu));
880a7578 1103 put_packet(s, buf);
bdc44640 1104 s->query_cpu = CPU_NEXT(s->query_cpu);
880a7578
AL		 1105 } else
1106 put_packet(s, "l");
1107 break;
1108 } else if (strncmp(p,"ThreadExtraInfo,", 16) == 0) {
1109 thread = strtoull(p+16, (char **)&p, 16);
2e0f2cfb
AF		 1110 cpu = find_cpu(thread);
1111 if (cpu != NULL) {
cb446eca 1112 cpu_synchronize_state(cpu);
1e9fa730 1113 len = snprintf((char *)mem_buf, sizeof(mem_buf),
55e5c285 1114 "CPU#%d [%s]", cpu->cpu_index,
259186a7 1115 cpu->halted ? "halted " : "running");
1e9fa730
NF		 1116 memtohex(buf, mem_buf, len);
1117 put_packet(s, buf);
1118 }
880a7578 1119 break;
60897d36 1120 }
0b8a988c 1121#ifdef CONFIG_USER_ONLY
070949f3 1122 else if (strcmp(p, "Offsets") == 0) {
0429a971 1123 TaskState *ts = s->c_cpu->opaque;
978efd6a 1124
363a37d5
BS		 1125 snprintf(buf, sizeof(buf),
1126 "Text=" TARGET_ABI_FMT_lx ";Data=" TARGET_ABI_FMT_lx
1127 ";Bss=" TARGET_ABI_FMT_lx,
1128 ts->info->code_offset,
1129 ts->info->data_offset,
1130 ts->info->data_offset);
978efd6a
PB		 1131 put_packet(s, buf);
1132 break;
1133 }
0b8a988c 1134#else /* !CONFIG_USER_ONLY */
8a34a0fb
AL		 1135 else if (strncmp(p, "Rcmd,", 5) == 0) {
1136 int len = strlen(p + 5);
1137
1138 if ((len % 2) != 0) {
1139 put_packet(s, "E01");
1140 break;
1141 }
1142 hextomem(mem_buf, p + 5, len);
1143 len = len / 2;
1144 mem_buf[len++] = 0;
fa5efccb 1145 qemu_chr_be_write(s->mon_chr, mem_buf, len);
8a34a0fb
AL		 1146 put_packet(s, "OK");
1147 break;
1148 }
0b8a988c 1149#endif /* !CONFIG_USER_ONLY */
4dabe747 1150 if (is_query_packet(p, "Supported", ':')) {
5b3715bf 1151 snprintf(buf, sizeof(buf), "PacketSize=%x", MAX_PACKET_LENGTH);
5b24c641
AF		 1152 cc = CPU_GET_CLASS(first_cpu);
1153 if (cc->gdb_core_xml_file != NULL) {
1154 pstrcat(buf, sizeof(buf), ";qXfer:features:read+");
1155 }
56aebc89
PB		 1156 put_packet(s, buf);
1157 break;
1158 }
56aebc89
PB		 1159 if (strncmp(p, "Xfer:features:read:", 19) == 0) {
1160 const char *xml;
1161 target_ulong total_len;
1162
5b24c641
AF		 1163 cc = CPU_GET_CLASS(first_cpu);
1164 if (cc->gdb_core_xml_file == NULL) {
1165 goto unknown_command;
1166 }
1167
5b50e790 1168 gdb_has_xml = true;
56aebc89 1169 p += 19;
5b24c641 1170 xml = get_feature_xml(p, &p, cc);
56aebc89 1171 if (!xml) {
5b3715bf 1172 snprintf(buf, sizeof(buf), "E00");
56aebc89
PB		 1173 put_packet(s, buf);
1174 break;
1175 }
1176
1177 if (*p == ':')
1178 p++;
1179 addr = strtoul(p, (char **)&p, 16);
1180 if (*p == ',')
1181 p++;
1182 len = strtoul(p, (char **)&p, 16);
1183
1184 total_len = strlen(xml);
1185 if (addr > total_len) {
5b3715bf 1186 snprintf(buf, sizeof(buf), "E00");
56aebc89
PB		 1187 put_packet(s, buf);
1188 break;
1189 }
1190 if (len > (MAX_PACKET_LENGTH - 5) / 2)
1191 len = (MAX_PACKET_LENGTH - 5) / 2;
1192 if (len < total_len - addr) {
1193 buf[0] = 'm';
1194 len = memtox(buf + 1, xml + addr, len);
1195 } else {
1196 buf[0] = 'l';
1197 len = memtox(buf + 1, xml + addr, total_len - addr);
1198 }
1199 put_packet_binary(s, buf, len + 1);
1200 break;
1201 }
a3919386
JK		 1202 if (is_query_packet(p, "Attached", ':')) {
1203 put_packet(s, GDB_ATTACHED);
1204 break;
1205 }
56aebc89
PB		 1206 /* Unrecognised 'q' command. */
1207 goto unknown_command;
1208
858693c6 1209 default:
56aebc89 1210 unknown_command:
858693c6
FB		 1211 /* put empty packet */
1212 buf[0] = '\0';
1213 put_packet(s, buf);
1214 break;
1215 }
1216 return RS_IDLE;
1217}
1218
64f6b346 1219void gdb_set_stop_cpu(CPUState *cpu)
880a7578 1220{
2e0f2cfb
AF		 1221 gdbserver_state->c_cpu = cpu;
1222 gdbserver_state->g_cpu = cpu;
880a7578
AL		 1223}
1224
1fddef4b 1225#ifndef CONFIG_USER_ONLY
1dfb4dd9 1226static void gdb_vm_state_change(void *opaque, int running, RunState state)
858693c6 1227{
880a7578 1228 GDBState *s = gdbserver_state;
2e0f2cfb
AF		 1229 CPUArchState *env = s->c_cpu->env_ptr;
1230 CPUState *cpu = s->c_cpu;
858693c6 1231 char buf[256];
d6fc1b39 1232 const char *type;
858693c6
FB		 1233 int ret;
1234
cdb432b2
MI		 1235 if (running || s->state == RS_INACTIVE) {
1236 return;
1237 }
1238 /* Is there a GDB syscall waiting to be sent? */
1239 if (s->current_syscall_cb) {
1240 put_packet(s, s->syscall_buf);
a2d1ebaf 1241 return;
e07bbac5 1242 }
1dfb4dd9 1243 switch (state) {
0461d5a6 1244 case RUN_STATE_DEBUG:
ff4700b0
AF		 1245 if (cpu->watchpoint_hit) {
1246 switch (cpu->watchpoint_hit->flags & BP_MEM_ACCESS) {
a1d1bb31 1247 case BP_MEM_READ:
d6fc1b39
AL		 1248 type = "r";
1249 break;
a1d1bb31 1250 case BP_MEM_ACCESS:
d6fc1b39
AL		 1251 type = "a";
1252 break;
1253 default:
1254 type = "";
1255 break;
1256 }
880a7578
AL		 1257 snprintf(buf, sizeof(buf),
1258 "T%02xthread:%02x;%swatch:" TARGET_FMT_lx ";",
0d34282f 1259 GDB_SIGNAL_TRAP, cpu_index(cpu), type,
ff4700b0
AF		 1260 (target_ulong)cpu->watchpoint_hit->vaddr);
1261 cpu->watchpoint_hit = NULL;
425189a8 1262 goto send_packet;
6658ffb8 1263 }
425189a8 1264 tb_flush(env);
ca587a8e 1265 ret = GDB_SIGNAL_TRAP;
425189a8 1266 break;
0461d5a6 1267 case RUN_STATE_PAUSED:
9781e040 1268 ret = GDB_SIGNAL_INT;
425189a8 1269 break;
0461d5a6 1270 case RUN_STATE_SHUTDOWN:
425189a8
JK		 1271 ret = GDB_SIGNAL_QUIT;
1272 break;
0461d5a6 1273 case RUN_STATE_IO_ERROR:
425189a8
JK		 1274 ret = GDB_SIGNAL_IO;
1275 break;
0461d5a6 1276 case RUN_STATE_WATCHDOG:
425189a8
JK		 1277 ret = GDB_SIGNAL_ALRM;
1278 break;
0461d5a6 1279 case RUN_STATE_INTERNAL_ERROR:
425189a8
JK		 1280 ret = GDB_SIGNAL_ABRT;
1281 break;
0461d5a6
LC		 1282 case RUN_STATE_SAVE_VM:
1283 case RUN_STATE_RESTORE_VM:
425189a8 1284 return;
0461d5a6 1285 case RUN_STATE_FINISH_MIGRATE:
425189a8
JK		 1286 ret = GDB_SIGNAL_XCPU;
1287 break;
1288 default:
1289 ret = GDB_SIGNAL_UNKNOWN;
1290 break;
bbeb7b5c 1291 }
0d34282f 1292 snprintf(buf, sizeof(buf), "T%02xthread:%02x;", ret, cpu_index(cpu));
425189a8
JK		 1293
1294send_packet:
858693c6 1295 put_packet(s, buf);
425189a8
JK		 1296
1297 /* disable single step if it was enabled */
3825b28f 1298 cpu_single_step(cpu, 0);
858693c6 1299}
1fddef4b 1300#endif
858693c6 1301
a2d1ebaf
PB		 1302/* Send a gdb syscall request.
1303 This accepts limited printf-style format specifiers, specifically:
a87295e8
PB		 1304 %x - target_ulong argument printed in hex.
1305 %lx - 64-bit argument printed in hex.
1306 %s - string pointer (target_ulong) and length (int) pair. */
7ccfb2eb 1307void gdb_do_syscall(gdb_syscall_complete_cb cb, const char *fmt, ...)
a2d1ebaf
PB		 1308{
1309 va_list va;
a2d1ebaf 1310 char *p;
cdb432b2 1311 char *p_end;
a2d1ebaf 1312 target_ulong addr;
a87295e8 1313 uint64_t i64;
a2d1ebaf
PB		 1314 GDBState *s;
1315
880a7578 1316 s = gdbserver_state;
a2d1ebaf
PB		 1317 if (!s)
1318 return;
cdb432b2 1319 s->current_syscall_cb = cb;
a2d1ebaf 1320#ifndef CONFIG_USER_ONLY
0461d5a6 1321 vm_stop(RUN_STATE_DEBUG);
a2d1ebaf 1322#endif
a2d1ebaf 1323 va_start(va, fmt);
cdb432b2
MI		 1324 p = s->syscall_buf;
1325 p_end = &s->syscall_buf[sizeof(s->syscall_buf)];
a2d1ebaf
PB		 1326 *(p++) = 'F';
1327 while (*fmt) {
1328 if (*fmt == '%') {
1329 fmt++;
1330 switch (*fmt++) {
1331 case 'x':
1332 addr = va_arg(va, target_ulong);
cdb432b2 1333 p += snprintf(p, p_end - p, TARGET_FMT_lx, addr);
a2d1ebaf 1334 break;
a87295e8
PB		 1335 case 'l':
1336 if (*(fmt++) != 'x')
1337 goto bad_format;
1338 i64 = va_arg(va, uint64_t);
cdb432b2 1339 p += snprintf(p, p_end - p, "%" PRIx64, i64);
a87295e8 1340 break;
a2d1ebaf
PB		 1341 case 's':
1342 addr = va_arg(va, target_ulong);
cdb432b2 1343 p += snprintf(p, p_end - p, TARGET_FMT_lx "/%x",
363a37d5 1344 addr, va_arg(va, int));
a2d1ebaf
PB		 1345 break;
1346 default:
a87295e8 1347 bad_format:
a2d1ebaf
PB		 1348 fprintf(stderr, "gdbstub: Bad syscall format string '%s'\n",
1349 fmt - 1);
1350 break;
1351 }
1352 } else {
1353 *(p++) = *(fmt++);
1354 }
1355 }
8a93e02a 1356 *p = 0;
a2d1ebaf 1357 va_end(va);
a2d1ebaf 1358#ifdef CONFIG_USER_ONLY
cdb432b2 1359 put_packet(s, s->syscall_buf);
2e0f2cfb 1360 gdb_handlesig(s->c_cpu, 0);
a2d1ebaf 1361#else
cdb432b2
MI		 1362 /* In this case wait to send the syscall packet until notification that
1363 the CPU has stopped. This must be done because if the packet is sent
1364 now the reply from the syscall request could be received while the CPU
1365 is still in the running state, which can cause packets to be dropped
1366 and state transition 'T' packets to be sent while the syscall is still
1367 being processed. */
2e0f2cfb 1368 cpu_exit(s->c_cpu);
a2d1ebaf
PB		 1369#endif
1370}
1371
6a00d601 1372static void gdb_read_byte(GDBState *s, int ch)
858693c6
FB		 1373{
1374 int i, csum;
60fe76f3 1375 uint8_t reply;
858693c6 1376
1fddef4b 1377#ifndef CONFIG_USER_ONLY
4046d913
PB		 1378 if (s->last_packet_len) {
1379 /* Waiting for a response to the last packet. If we see the start
1380 of a new command then abandon the previous response. */
1381 if (ch == '-') {
1382#ifdef DEBUG_GDB
1383 printf("Got NACK, retransmitting\n");
1384#endif
ffe8ab83 1385 put_buffer(s, (uint8_t *)s->last_packet, s->last_packet_len);
4046d913
PB		 1386 }
1387#ifdef DEBUG_GDB
1388 else if (ch == '+')
1389 printf("Got ACK\n");
1390 else
1391 printf("Got '%c' when expecting ACK/NACK\n", ch);
1392#endif
1393 if (ch == '+' || ch == '$')
1394 s->last_packet_len = 0;
1395 if (ch != '$')
1396 return;
1397 }
1354869c 1398 if (runstate_is_running()) {
858693c6
FB		 1399 /* when the CPU is running, we cannot do anything except stop
1400 it when receiving a char */
0461d5a6 1401 vm_stop(RUN_STATE_PAUSED);
5fafdf24 1402 } else
1fddef4b 1403#endif
41625033 1404 {
858693c6
FB		 1405 switch(s->state) {
1406 case RS_IDLE:
1407 if (ch == '$') {
1408 s->line_buf_index = 0;
1409 s->state = RS_GETLINE;
c33a346e 1410 }
b4608c04 1411 break;
858693c6
FB		 1412 case RS_GETLINE:
1413 if (ch == '#') {
1414 s->state = RS_CHKSUM1;
1415 } else if (s->line_buf_index >= sizeof(s->line_buf) - 1) {
1416 s->state = RS_IDLE;
4c3a88a2 1417 } else {
858693c6 1418 s->line_buf[s->line_buf_index++] = ch;
4c3a88a2
FB		 1419 }
1420 break;
858693c6
FB		 1421 case RS_CHKSUM1:
1422 s->line_buf[s->line_buf_index] = '\0';
1423 s->line_csum = fromhex(ch) << 4;
1424 s->state = RS_CHKSUM2;
1425 break;
1426 case RS_CHKSUM2:
1427 s->line_csum |= fromhex(ch);
1428 csum = 0;
1429 for(i = 0; i < s->line_buf_index; i++) {
1430 csum += s->line_buf[i];
1431 }
1432 if (s->line_csum != (csum & 0xff)) {
60fe76f3
TS		 1433 reply = '-';
1434 put_buffer(s, &reply, 1);
858693c6 1435 s->state = RS_IDLE;
4c3a88a2 1436 } else {
60fe76f3
TS		 1437 reply = '+';
1438 put_buffer(s, &reply, 1);
880a7578 1439 s->state = gdb_handle_packet(s, s->line_buf);
4c3a88a2
FB		 1440 }
1441 break;
a2d1ebaf
PB		 1442 default:
1443 abort();
858693c6
FB		 1444 }
1445 }
1446}
1447
0e1c9c54 1448/* Tell the remote gdb that the process has exited. */
9349b4f9 1449void gdb_exit(CPUArchState *env, int code)
0e1c9c54
PB		 1450{
1451 GDBState *s;
1452 char buf[4];
1453
1454 s = gdbserver_state;
1455 if (!s) {
1456 return;
1457 }
1458#ifdef CONFIG_USER_ONLY
1459 if (gdbserver_fd < 0 || s->fd < 0) {
1460 return;
1461 }
3d0f4418
PB		 1462#else
1463 if (!s->chr) {
1464 return;
1465 }
0e1c9c54
PB		 1466#endif
1467
1468 snprintf(buf, sizeof(buf), "W%02x", (uint8_t)code);
1469 put_packet(s, buf);
e2af15b2
FC		 1470
1471#ifndef CONFIG_USER_ONLY
3d0f4418 1472 qemu_chr_delete(s->chr);
e2af15b2 1473#endif
0e1c9c54
PB		 1474}
1475
1fddef4b 1476#ifdef CONFIG_USER_ONLY
ca587a8e
AJ		 1477int
1478gdb_queuesig (void)
1479{
1480 GDBState *s;
1481
1482 s = gdbserver_state;
1483
1484 if (gdbserver_fd < 0 || s->fd < 0)
1485 return 0;
1486 else
1487 return 1;
1488}
1489
1fddef4b 1490int
db6b81d4 1491gdb_handlesig(CPUState *cpu, int sig)
1fddef4b 1492{
db6b81d4 1493 CPUArchState *env = cpu->env_ptr;
5ca666c7
AF		 1494 GDBState *s;
1495 char buf[256];
1496 int n;
1fddef4b 1497
5ca666c7
AF		 1498 s = gdbserver_state;
1499 if (gdbserver_fd < 0 || s->fd < 0) {
1500 return sig;
1501 }
1fddef4b 1502
5ca666c7 1503 /* disable single step if it was enabled */
3825b28f 1504 cpu_single_step(cpu, 0);
5ca666c7 1505 tb_flush(env);
1fddef4b 1506
5ca666c7
AF		 1507 if (sig != 0) {
1508 snprintf(buf, sizeof(buf), "S%02x", target_signal_to_gdb(sig));
1509 put_packet(s, buf);
1510 }
1511 /* put_packet() might have detected that the peer terminated the
1512 connection. */
1513 if (s->fd < 0) {
1514 return sig;
1515 }
1fddef4b 1516
5ca666c7
AF		 1517 sig = 0;
1518 s->state = RS_IDLE;
1519 s->running_state = 0;
1520 while (s->running_state == 0) {
1521 n = read(s->fd, buf, 256);
1522 if (n > 0) {
1523 int i;
1524
1525 for (i = 0; i < n; i++) {
1526 gdb_read_byte(s, buf[i]);
1527 }
1528 } else if (n == 0 || errno != EAGAIN) {
1529 /* XXX: Connection closed. Should probably wait for another
1530 connection before continuing. */
1531 return sig;
1fddef4b 1532 }
5ca666c7
AF		 1533 }
1534 sig = s->signal;
1535 s->signal = 0;
1536 return sig;
1fddef4b 1537}
e9009676 1538
ca587a8e 1539/* Tell the remote gdb that the process has exited due to SIG. */
9349b4f9 1540void gdb_signalled(CPUArchState *env, int sig)
ca587a8e 1541{
5ca666c7
AF		 1542 GDBState *s;
1543 char buf[4];
ca587a8e 1544
5ca666c7
AF		 1545 s = gdbserver_state;
1546 if (gdbserver_fd < 0 || s->fd < 0) {
1547 return;
1548 }
ca587a8e 1549
5ca666c7
AF		 1550 snprintf(buf, sizeof(buf), "X%02x", target_signal_to_gdb(sig));
1551 put_packet(s, buf);
ca587a8e 1552}
1fddef4b 1553
880a7578 1554static void gdb_accept(void)
858693c6
FB		 1555{
1556 GDBState *s;
1557 struct sockaddr_in sockaddr;
1558 socklen_t len;
bf1c852a 1559 int fd;
858693c6
FB		 1560
1561 for(;;) {
1562 len = sizeof(sockaddr);
1563 fd = accept(gdbserver_fd, (struct sockaddr *)&sockaddr, &len);
1564 if (fd < 0 && errno != EINTR) {
1565 perror("accept");
1566 return;
1567 } else if (fd >= 0) {
40ff6d7e
KW		 1568#ifndef _WIN32
1569 fcntl(fd, F_SETFD, FD_CLOEXEC);
1570#endif
b4608c04
FB		 1571 break;
1572 }
1573 }
858693c6
FB		 1574
1575 /* set short latency */
bf1c852a 1576 socket_set_nodelay(fd);
3b46e624 1577
7267c094 1578 s = g_malloc0(sizeof(GDBState));
2e0f2cfb
AF		 1579 s->c_cpu = first_cpu;
1580 s->g_cpu = first_cpu;
858693c6 1581 s->fd = fd;
5b50e790 1582 gdb_has_xml = false;
858693c6 1583
880a7578 1584 gdbserver_state = s;
a2d1ebaf 1585
858693c6 1586 fcntl(fd, F_SETFL, O_NONBLOCK);
858693c6
FB		 1587}
1588
1589static int gdbserver_open(int port)
1590{
1591 struct sockaddr_in sockaddr;
6669ca13 1592 int fd, ret;
858693c6
FB		 1593
1594 fd = socket(PF_INET, SOCK_STREAM, 0);
1595 if (fd < 0) {
1596 perror("socket");
1597 return -1;
1598 }
40ff6d7e
KW		 1599#ifndef _WIN32
1600 fcntl(fd, F_SETFD, FD_CLOEXEC);
1601#endif
858693c6 1602
6669ca13 1603 socket_set_fast_reuse(fd);
858693c6
FB		 1604
1605 sockaddr.sin_family = AF_INET;
1606 sockaddr.sin_port = htons(port);
1607 sockaddr.sin_addr.s_addr = 0;
1608 ret = bind(fd, (struct sockaddr *)&sockaddr, sizeof(sockaddr));
1609 if (ret < 0) {
1610 perror("bind");
bb16172c 1611 close(fd);
858693c6
FB		 1612 return -1;
1613 }
1614 ret = listen(fd, 0);
1615 if (ret < 0) {
1616 perror("listen");
bb16172c 1617 close(fd);
858693c6
FB		 1618 return -1;
1619 }
858693c6
FB		 1620 return fd;
1621}
1622
1623int gdbserver_start(int port)
1624{
1625 gdbserver_fd = gdbserver_open(port);
1626 if (gdbserver_fd < 0)
1627 return -1;
1628 /* accept connections */
880a7578 1629 gdb_accept();
4046d913
PB		 1630 return 0;
1631}
2b1319c8
AJ		 1632
1633/* Disable gdb stub for child processes. */
9349b4f9 1634void gdbserver_fork(CPUArchState *env)
2b1319c8 1635{
75a34036 1636 CPUState *cpu = ENV_GET_CPU(env);
2b1319c8 1637 GDBState *s = gdbserver_state;
75a34036
AF		 1638
1639 if (gdbserver_fd < 0 || s->fd < 0) {
1640 return;
1641 }
2b1319c8
AJ		 1642 close(s->fd);
1643 s->fd = -1;
b3310ab3 1644 cpu_breakpoint_remove_all(cpu, BP_GDB);
75a34036 1645 cpu_watchpoint_remove_all(cpu, BP_GDB);
2b1319c8 1646}
1fddef4b 1647#else
aa1f17c1 1648static int gdb_chr_can_receive(void *opaque)
4046d913 1649{
56aebc89
PB		 1650 /* We can handle an arbitrarily large amount of data.
1651 Pick the maximum packet size, which is as good as anything. */
1652 return MAX_PACKET_LENGTH;
4046d913
PB		 1653}
1654
aa1f17c1 1655static void gdb_chr_receive(void *opaque, const uint8_t *buf, int size)
4046d913 1656{
4046d913
PB		 1657 int i;
1658
1659 for (i = 0; i < size; i++) {
880a7578 1660 gdb_read_byte(gdbserver_state, buf[i]);
4046d913
PB		 1661 }
1662}
1663
1664static void gdb_chr_event(void *opaque, int event)
1665{
1666 switch (event) {
b6b8df56 1667 case CHR_EVENT_OPENED:
0461d5a6 1668 vm_stop(RUN_STATE_PAUSED);
5b50e790 1669 gdb_has_xml = false;
4046d913
PB		 1670 break;
1671 default:
1672 break;
1673 }
1674}
1675
8a34a0fb
AL		 1676static void gdb_monitor_output(GDBState *s, const char *msg, int len)
1677{
1678 char buf[MAX_PACKET_LENGTH];
1679
1680 buf[0] = 'O';
1681 if (len > (MAX_PACKET_LENGTH/2) - 1)
1682 len = (MAX_PACKET_LENGTH/2) - 1;
1683 memtohex(buf + 1, (uint8_t *)msg, len);
1684 put_packet(s, buf);
1685}
1686
1687static int gdb_monitor_write(CharDriverState *chr, const uint8_t *buf, int len)
1688{
1689 const char *p = (const char *)buf;
1690 int max_sz;
1691
1692 max_sz = (sizeof(gdbserver_state->last_packet) - 2) / 2;
1693 for (;;) {
1694 if (len <= max_sz) {
1695 gdb_monitor_output(gdbserver_state, p, len);
1696 break;
1697 }
1698 gdb_monitor_output(gdbserver_state, p, max_sz);
1699 p += max_sz;
1700 len -= max_sz;
1701 }
1702 return len;
1703}
1704
59030a8c
AL		 1705#ifndef _WIN32
1706static void gdb_sigterm_handler(int signal)
1707{
1354869c 1708 if (runstate_is_running()) {
0461d5a6 1709 vm_stop(RUN_STATE_PAUSED);
e07bbac5 1710 }
59030a8c
AL		 1711}
1712#endif
1713
1714int gdbserver_start(const char *device)
4046d913
PB		 1715{
1716 GDBState *s;
59030a8c 1717 char gdbstub_device_name[128];
36556b20
AL		 1718 CharDriverState *chr = NULL;
1719 CharDriverState *mon_chr;
cfc3475a 1720
59030a8c
AL		 1721 if (!device)
1722 return -1;
1723 if (strcmp(device, "none") != 0) {
1724 if (strstart(device, "tcp:", NULL)) {
1725 /* enforce required TCP attributes */
1726 snprintf(gdbstub_device_name, sizeof(gdbstub_device_name),
1727 "%s,nowait,nodelay,server", device);
1728 device = gdbstub_device_name;
36556b20 1729 }
59030a8c
AL		 1730#ifndef _WIN32
1731 else if (strcmp(device, "stdio") == 0) {
1732 struct sigaction act;
4046d913 1733
59030a8c
AL		 1734 memset(&act, 0, sizeof(act));
1735 act.sa_handler = gdb_sigterm_handler;
1736 sigaction(SIGINT, &act, NULL);
1737 }
1738#endif
27143a44 1739 chr = qemu_chr_new("gdb", device, NULL);
36556b20
AL		 1740 if (!chr)
1741 return -1;
1742
456d6069 1743 qemu_chr_fe_claim_no_fail(chr);
36556b20
AL		 1744 qemu_chr_add_handlers(chr, gdb_chr_can_receive, gdb_chr_receive,
1745 gdb_chr_event, NULL);
cfc3475a
PB		 1746 }
1747
36556b20
AL		 1748 s = gdbserver_state;
1749 if (!s) {
7267c094 1750 s = g_malloc0(sizeof(GDBState));
36556b20 1751 gdbserver_state = s;
4046d913 1752
36556b20
AL		 1753 qemu_add_vm_change_state_handler(gdb_vm_state_change, NULL);
1754
1755 /* Initialize a monitor terminal for gdb */
462efe9e 1756 mon_chr = qemu_chr_alloc();
36556b20
AL		 1757 mon_chr->chr_write = gdb_monitor_write;
1758 monitor_init(mon_chr, 0);
1759 } else {
1760 if (s->chr)
70f24fb6 1761 qemu_chr_delete(s->chr);
36556b20
AL		 1762 mon_chr = s->mon_chr;
1763 memset(s, 0, sizeof(GDBState));
1764 }
2e0f2cfb
AF		 1765 s->c_cpu = first_cpu;
1766 s->g_cpu = first_cpu;
4046d913 1767 s->chr = chr;
36556b20
AL		 1768 s->state = chr ? RS_IDLE : RS_INACTIVE;
1769 s->mon_chr = mon_chr;
cdb432b2 1770 s->current_syscall_cb = NULL;
8a34a0fb 1771
b4608c04
FB		 1772 return 0;
1773}
4046d913 1774#endif
QEMU mirror