]> git.proxmox.com Git - mirror_qemu.git/blob - monitor.c
projects / mirror_qemu.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
monitor error: Make printf()-like functions return a value
[mirror_qemu.git] / monitor.c
1 /*
2 * QEMU monitor
3 *
4 * Copyright (c) 2003-2004 Fabrice Bellard
5 *
6 * Permission is hereby granted, free of charge, to any person obtaining a copy
7 * of this software and associated documentation files (the "Software"), to deal
8 * in the Software without restriction, including without limitation the rights
9 * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
10 * copies of the Software, and to permit persons to whom the Software is
11 * furnished to do so, subject to the following conditions:
12 *
13 * The above copyright notice and this permission notice shall be included in
14 * all copies or substantial portions of the Software.
15 *
16 * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
17 * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
18 * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL
19 * THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
20 * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
21 * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
22 * THE SOFTWARE.
23 */
24
25 #include "qemu/osdep.h"
26 #include "qemu/units.h"
27 #include <dirent.h>
28 #include "cpu.h"
29 #include "hw/hw.h"
30 #include "monitor/qdev.h"
31 #include "hw/usb.h"
32 #include "hw/pci/pci.h"
33 #include "sysemu/watchdog.h"
34 #include "hw/loader.h"
35 #include "exec/gdbstub.h"
36 #include "net/net.h"
37 #include "net/slirp.h"
38 #include "chardev/char-fe.h"
39 #include "chardev/char-io.h"
40 #include "chardev/char-mux.h"
41 #include "ui/qemu-spice.h"
42 #include "sysemu/numa.h"
43 #include "monitor/monitor.h"
44 #include "qemu/config-file.h"
45 #include "qemu/readline.h"
46 #include "ui/console.h"
47 #include "ui/input.h"
48 #include "sysemu/block-backend.h"
49 #include "audio/audio.h"
50 #include "disas/disas.h"
51 #include "sysemu/balloon.h"
52 #include "qemu/timer.h"
53 #include "sysemu/hw_accel.h"
54 #include "authz/list.h"
55 #include "qapi/util.h"
56 #include "sysemu/tpm.h"
57 #include "qapi/qmp/qdict.h"
58 #include "qapi/qmp/qerror.h"
59 #include "qapi/qmp/qnum.h"
60 #include "qapi/qmp/qstring.h"
61 #include "qapi/qmp/qjson.h"
62 #include "qapi/qmp/json-parser.h"
63 #include "qapi/qmp/qlist.h"
64 #include "qom/object_interfaces.h"
65 #include "trace-root.h"
66 #include "trace/control.h"
67 #include "monitor/hmp-target.h"
68 #ifdef CONFIG_TRACE_SIMPLE
69 #include "trace/simple.h"
70 #endif
71 #include "exec/memory.h"
72 #include "exec/exec-all.h"
73 #include "qemu/log.h"
74 #include "qemu/option.h"
75 #include "hmp.h"
76 #include "qemu/thread.h"
77 #include "block/qapi.h"
78 #include "qapi/qapi-commands.h"
79 #include "qapi/qapi-emit-events.h"
80 #include "qapi/error.h"
81 #include "qapi/qmp-event.h"
82 #include "qapi/qapi-introspect.h"
83 #include "sysemu/qtest.h"
84 #include "sysemu/cpus.h"
85 #include "sysemu/iothread.h"
86 #include "qemu/cutils.h"
87 #include "tcg/tcg.h"
88
89 #if defined(TARGET_S390X)
90 #include "hw/s390x/storage-keys.h"
91 #include "hw/s390x/storage-attributes.h"
92 #endif
93
94 /*
95 * Supported types:
96 *
97 * 'F' filename
98 * 'B' block device name
99 * 's' string (accept optional quote)
100 * 'S' it just appends the rest of the string (accept optional quote)
101 * 'O' option string of the form NAME=VALUE,...
102 * parsed according to QemuOptsList given by its name
103 * Example: 'device:O' uses qemu_device_opts.
104 * Restriction: only lists with empty desc are supported
105 * TODO lift the restriction
106 * 'i' 32 bit integer
107 * 'l' target long (32 or 64 bit)
108 * 'M' Non-negative target long (32 or 64 bit), in user mode the
109 * value is multiplied by 2^20 (think Mebibyte)
110 * 'o' octets (aka bytes)
111 * user mode accepts an optional E, e, P, p, T, t, G, g, M, m,
112 * K, k suffix, which multiplies the value by 2^60 for suffixes E
113 * and e, 2^50 for suffixes P and p, 2^40 for suffixes T and t,
114 * 2^30 for suffixes G and g, 2^20 for M and m, 2^10 for K and k
115 * 'T' double
116 * user mode accepts an optional ms, us, ns suffix,
117 * which divides the value by 1e3, 1e6, 1e9, respectively
118 * '/' optional gdb-like print format (like "/10x")
119 *
120 * '?' optional type (for all types, except '/')
121 * '.' other form of optional type (for 'i' and 'l')
122 * 'b' boolean
123 * user mode accepts "on" or "off"
124 * '-' optional parameter (eg. '-f')
125 *
126 */
127
128 typedef struct mon_cmd_t {
129 const char *name;
130 const char *args_type;
131 const char *params;
132 const char *help;
133 const char *flags; /* p=preconfig */
134 void (*cmd)(Monitor *mon, const QDict *qdict);
135 /* @sub_table is a list of 2nd level of commands. If it does not exist,
136 * cmd should be used. If it exists, sub_table[?].cmd should be
137 * used, and cmd of 1st level plays the role of help function.
138 */
139 struct mon_cmd_t *sub_table;
140 void (*command_completion)(ReadLineState *rs, int nb_args, const char *str);
141 } mon_cmd_t;
142
143 /* file descriptors passed via SCM_RIGHTS */
144 typedef struct mon_fd_t mon_fd_t;
145 struct mon_fd_t {
146 char *name;
147 int fd;
148 QLIST_ENTRY(mon_fd_t) next;
149 };
150
151 /* file descriptor associated with a file descriptor set */
152 typedef struct MonFdsetFd MonFdsetFd;
153 struct MonFdsetFd {
154 int fd;
155 bool removed;
156 char *opaque;
157 QLIST_ENTRY(MonFdsetFd) next;
158 };
159
160 /* file descriptor set containing fds passed via SCM_RIGHTS */
161 typedef struct MonFdset MonFdset;
162 struct MonFdset {
163 int64_t id;
164 QLIST_HEAD(, MonFdsetFd) fds;
165 QLIST_HEAD(, MonFdsetFd) dup_fds;
166 QLIST_ENTRY(MonFdset) next;
167 };
168
169 typedef struct {
170 JSONMessageParser parser;
171 /*
172 * When a client connects, we're in capabilities negotiation mode.
173 * @commands is &qmp_cap_negotiation_commands then. When command
174 * qmp_capabilities succeeds, we go into command mode, and
175 * @command becomes &qmp_commands.
176 */
177 QmpCommandList *commands;
178 bool capab_offered[QMP_CAPABILITY__MAX]; /* capabilities offered */
179 bool capab[QMP_CAPABILITY__MAX]; /* offered and accepted */
180 /*
181 * Protects qmp request/response queue.
182 * Take monitor_lock first when you need both.
183 */
184 QemuMutex qmp_queue_lock;
185 /* Input queue that holds all the parsed QMP requests */
186 GQueue *qmp_requests;
187 } MonitorQMP;
188
189 /*
190 * To prevent flooding clients, events can be throttled. The
191 * throttling is calculated globally, rather than per-Monitor
192 * instance.
193 */
194 typedef struct MonitorQAPIEventState {
195 QAPIEvent event; /* Throttling state for this event type and... */
196 QDict *data; /* ... data, see qapi_event_throttle_equal() */
197 QEMUTimer *timer; /* Timer for handling delayed events */
198 QDict *qdict; /* Delayed event (if any) */
199 } MonitorQAPIEventState;
200
201 typedef struct {
202 int64_t rate; /* Minimum time (in ns) between two events */
203 } MonitorQAPIEventConf;
204
205 struct Monitor {
206 CharBackend chr;
207 int reset_seen;
208 int flags;
209 int suspend_cnt; /* Needs to be accessed atomically */
210 bool skip_flush;
211 bool use_io_thread;
212
213 /*
214 * State used only in the thread "owning" the monitor.
215 * If @use_io_thread, this is @mon_iothread.
216 * Else, it's the main thread.
217 * These members can be safely accessed without locks.
218 */
219 ReadLineState *rs;
220
221 MonitorQMP qmp;
222 gchar *mon_cpu_path;
223 BlockCompletionFunc *password_completion_cb;
224 void *password_opaque;
225 mon_cmd_t *cmd_table;
226 QTAILQ_ENTRY(Monitor) entry;
227
228 /*
229 * The per-monitor lock. We can't access guest memory when holding
230 * the lock.
231 */
232 QemuMutex mon_lock;
233
234 /*
235 * Members that are protected by the per-monitor lock
236 */
237 QLIST_HEAD(, mon_fd_t) fds;
238 QString *outbuf;
239 guint out_watch;
240 /* Read under either BQL or mon_lock, written with BQL+mon_lock. */
241 int mux_out;
242 };
243
244 /* Shared monitor I/O thread */
245 IOThread *mon_iothread;
246
247 /* Bottom half to dispatch the requests received from I/O thread */
248 QEMUBH *qmp_dispatcher_bh;
249
250 struct QMPRequest {
251 /* Owner of the request */
252 Monitor *mon;
253 /*
254 * Request object to be handled or Error to be reported
255 * (exactly one of them is non-null)
256 */
257 QObject *req;
258 Error *err;
259 };
260 typedef struct QMPRequest QMPRequest;
261
262 /* QMP checker flags */
263 #define QMP_ACCEPT_UNKNOWNS 1
264
265 /* Protects mon_list, monitor_qapi_event_state, monitor_destroyed. */
266 static QemuMutex monitor_lock;
267 static GHashTable *monitor_qapi_event_state;
268 static QTAILQ_HEAD(, Monitor) mon_list;
269 static bool monitor_destroyed;
270
271 /* Protects mon_fdsets */
272 static QemuMutex mon_fdsets_lock;
273 static QLIST_HEAD(, MonFdset) mon_fdsets;
274
275 static int mon_refcount;
276
277 static mon_cmd_t mon_cmds[];
278 static mon_cmd_t info_cmds[];
279
280 QmpCommandList qmp_commands, qmp_cap_negotiation_commands;
281
282 __thread Monitor *cur_mon;
283
284 static void monitor_command_cb(void *opaque, const char *cmdline,
285 void *readline_opaque);
286
287 /**
288 * Is @mon a QMP monitor?
289 */
290 static inline bool monitor_is_qmp(const Monitor *mon)
291 {
292 return (mon->flags & MONITOR_USE_CONTROL);
293 }
294
295 /**
296 * Is @mon is using readline?
297 * Note: not all HMP monitors use readline, e.g., gdbserver has a
298 * non-interactive HMP monitor, so readline is not used there.
299 */
300 static inline bool monitor_uses_readline(const Monitor *mon)
301 {
302 return mon->flags & MONITOR_USE_READLINE;
303 }
304
305 static inline bool monitor_is_hmp_non_interactive(const Monitor *mon)
306 {
307 return !monitor_is_qmp(mon) && !monitor_uses_readline(mon);
308 }
309
310 /*
311 * Return the clock to use for recording an event's time.
312 * It's QEMU_CLOCK_REALTIME, except for qtests it's
313 * QEMU_CLOCK_VIRTUAL, to support testing rate limits.
314 * Beware: result is invalid before configure_accelerator().
315 */
316 static inline QEMUClockType monitor_get_event_clock(void)
317 {
318 return qtest_enabled() ? QEMU_CLOCK_VIRTUAL : QEMU_CLOCK_REALTIME;
319 }
320
321 /**
322 * Is the current monitor, if any, a QMP monitor?
323 */
324 bool monitor_cur_is_qmp(void)
325 {
326 return cur_mon && monitor_is_qmp(cur_mon);
327 }
328
329 void monitor_read_command(Monitor *mon, int show_prompt)
330 {
331 if (!mon->rs)
332 return;
333
334 readline_start(mon->rs, "(qemu) ", 0, monitor_command_cb, NULL);
335 if (show_prompt)
336 readline_show_prompt(mon->rs);
337 }
338
339 int monitor_read_password(Monitor *mon, ReadLineFunc *readline_func,
340 void *opaque)
341 {
342 if (mon->rs) {
343 readline_start(mon->rs, "Password: ", 1, readline_func, opaque);
344 /* prompt is printed on return from the command handler */
345 return 0;
346 } else {
347 monitor_printf(mon, "terminal does not support password prompting\n");
348 return -ENOTTY;
349 }
350 }
351
352 static void qmp_request_free(QMPRequest *req)
353 {
354 qobject_unref(req->req);
355 error_free(req->err);
356 g_free(req);
357 }
358
359 /* Caller must hold mon->qmp.qmp_queue_lock */
360 static void monitor_qmp_cleanup_req_queue_locked(Monitor *mon)
361 {
362 while (!g_queue_is_empty(mon->qmp.qmp_requests)) {
363 qmp_request_free(g_queue_pop_head(mon->qmp.qmp_requests));
364 }
365 }
366
367 static void monitor_qmp_cleanup_queues(Monitor *mon)
368 {
369 qemu_mutex_lock(&mon->qmp.qmp_queue_lock);
370 monitor_qmp_cleanup_req_queue_locked(mon);
371 qemu_mutex_unlock(&mon->qmp.qmp_queue_lock);
372 }
373
374
375 static void monitor_flush_locked(Monitor *mon);
376
377 static gboolean monitor_unblocked(GIOChannel *chan, GIOCondition cond,
378 void *opaque)
379 {
380 Monitor *mon = opaque;
381
382 qemu_mutex_lock(&mon->mon_lock);
383 mon->out_watch = 0;
384 monitor_flush_locked(mon);
385 qemu_mutex_unlock(&mon->mon_lock);
386 return FALSE;
387 }
388
389 /* Caller must hold mon->mon_lock */
390 static void monitor_flush_locked(Monitor *mon)
391 {
392 int rc;
393 size_t len;
394 const char *buf;
395
396 if (mon->skip_flush) {
397 return;
398 }
399
400 buf = qstring_get_str(mon->outbuf);
401 len = qstring_get_length(mon->outbuf);
402
403 if (len && !mon->mux_out) {
404 rc = qemu_chr_fe_write(&mon->chr, (const uint8_t *) buf, len);
405 if ((rc < 0 && errno != EAGAIN) || (rc == len)) {
406 /* all flushed or error */
407 qobject_unref(mon->outbuf);
408 mon->outbuf = qstring_new();
409 return;
410 }
411 if (rc > 0) {
412 /* partial write */
413 QString *tmp = qstring_from_str(buf + rc);
414 qobject_unref(mon->outbuf);
415 mon->outbuf = tmp;
416 }
417 if (mon->out_watch == 0) {
418 mon->out_watch =
419 qemu_chr_fe_add_watch(&mon->chr, G_IO_OUT | G_IO_HUP,
420 monitor_unblocked, mon);
421 }
422 }
423 }
424
425 void monitor_flush(Monitor *mon)
426 {
427 qemu_mutex_lock(&mon->mon_lock);
428 monitor_flush_locked(mon);
429 qemu_mutex_unlock(&mon->mon_lock);
430 }
431
432 /* flush at every end of line */
433 static int monitor_puts(Monitor *mon, const char *str)
434 {
435 int i;
436 char c;
437
438 qemu_mutex_lock(&mon->mon_lock);
439 for (i = 0; str[i]; i++) {
440 c = str[i];
441 if (c == '\n') {
442 qstring_append_chr(mon->outbuf, '\r');
443 }
444 qstring_append_chr(mon->outbuf, c);
445 if (c == '\n') {
446 monitor_flush_locked(mon);
447 }
448 }
449 qemu_mutex_unlock(&mon->mon_lock);
450
451 return i;
452 }
453
454 int monitor_vprintf(Monitor *mon, const char *fmt, va_list ap)
455 {
456 char *buf;
457 int n;
458
459 if (!mon)
460 return -1;
461
462 if (monitor_is_qmp(mon)) {
463 return -1;
464 }
465
466 buf = g_strdup_vprintf(fmt, ap);
467 n = monitor_puts(mon, buf);
468 g_free(buf);
469 return n;
470 }
471
472 int monitor_printf(Monitor *mon, const char *fmt, ...)
473 {
474 int ret;
475
476 va_list ap;
477 va_start(ap, fmt);
478 ret = monitor_vprintf(mon, fmt, ap);
479 va_end(ap);
480 return ret;
481 }
482
483 int monitor_fprintf(FILE *stream, const char *fmt, ...)
484 {
485 int ret;
486
487 va_list ap;
488 va_start(ap, fmt);
489 ret = monitor_vprintf((Monitor *)stream, fmt, ap);
490 va_end(ap);
491 return ret;
492 }
493
494 static void qmp_send_response(Monitor *mon, const QDict *rsp)
495 {
496 const QObject *data = QOBJECT(rsp);
497 QString *json;
498
499 json = mon->flags & MONITOR_USE_PRETTY ? qobject_to_json_pretty(data) :
500 qobject_to_json(data);
501 assert(json != NULL);
502
503 qstring_append_chr(json, '\n');
504 monitor_puts(mon, qstring_get_str(json));
505
506 qobject_unref(json);
507 }
508
509 static MonitorQAPIEventConf monitor_qapi_event_conf[QAPI_EVENT__MAX] = {
510 /* Limit guest-triggerable events to 1 per second */
511 [QAPI_EVENT_RTC_CHANGE] = { 1000 * SCALE_MS },
512 [QAPI_EVENT_WATCHDOG] = { 1000 * SCALE_MS },
513 [QAPI_EVENT_BALLOON_CHANGE] = { 1000 * SCALE_MS },
514 [QAPI_EVENT_QUORUM_REPORT_BAD] = { 1000 * SCALE_MS },
515 [QAPI_EVENT_QUORUM_FAILURE] = { 1000 * SCALE_MS },
516 [QAPI_EVENT_VSERPORT_CHANGE] = { 1000 * SCALE_MS },
517 };
518
519 /*
520 * Broadcast an event to all monitors.
521 * @qdict is the event object. Its member "event" must match @event.
522 * Caller must hold monitor_lock.
523 */
524 static void monitor_qapi_event_emit(QAPIEvent event, QDict *qdict)
525 {
526 Monitor *mon;
527
528 trace_monitor_protocol_event_emit(event, qdict);
529 QTAILQ_FOREACH(mon, &mon_list, entry) {
530 if (monitor_is_qmp(mon)
531 && mon->qmp.commands != &qmp_cap_negotiation_commands) {
532 qmp_send_response(mon, qdict);
533 }
534 }
535 }
536
537 static void monitor_qapi_event_handler(void *opaque);
538
539 /*
540 * Queue a new event for emission to Monitor instances,
541 * applying any rate limiting if required.
542 */
543 static void
544 monitor_qapi_event_queue_no_reenter(QAPIEvent event, QDict *qdict)
545 {
546 MonitorQAPIEventConf *evconf;
547 MonitorQAPIEventState *evstate;
548
549 assert(event < QAPI_EVENT__MAX);
550 evconf = &monitor_qapi_event_conf[event];
551 trace_monitor_protocol_event_queue(event, qdict, evconf->rate);
552
553 qemu_mutex_lock(&monitor_lock);
554
555 if (!evconf->rate) {
556 /* Unthrottled event */
557 monitor_qapi_event_emit(event, qdict);
558 } else {
559 QDict *data = qobject_to(QDict, qdict_get(qdict, "data"));
560 MonitorQAPIEventState key = { .event = event, .data = data };
561
562 evstate = g_hash_table_lookup(monitor_qapi_event_state, &key);
563 assert(!evstate || timer_pending(evstate->timer));
564
565 if (evstate) {
566 /*
567 * Timer is pending for (at least) evconf->rate ns after
568 * last send. Store event for sending when timer fires,
569 * replacing a prior stored event if any.
570 */
571 qobject_unref(evstate->qdict);
572 evstate->qdict = qobject_ref(qdict);
573 } else {
574 /*
575 * Last send was (at least) evconf->rate ns ago.
576 * Send immediately, and arm the timer to call
577 * monitor_qapi_event_handler() in evconf->rate ns. Any
578 * events arriving before then will be delayed until then.
579 */
580 int64_t now = qemu_clock_get_ns(monitor_get_event_clock());
581
582 monitor_qapi_event_emit(event, qdict);
583
584 evstate = g_new(MonitorQAPIEventState, 1);
585 evstate->event = event;
586 evstate->data = qobject_ref(data);
587 evstate->qdict = NULL;
588 evstate->timer = timer_new_ns(monitor_get_event_clock(),
589 monitor_qapi_event_handler,
590 evstate);
591 g_hash_table_add(monitor_qapi_event_state, evstate);
592 timer_mod_ns(evstate->timer, now + evconf->rate);
593 }
594 }
595
596 qemu_mutex_unlock(&monitor_lock);
597 }
598
599 void qapi_event_emit(QAPIEvent event, QDict *qdict)
600 {
601 /*
602 * monitor_qapi_event_queue_no_reenter() is not reentrant: it
603 * would deadlock on monitor_lock. Work around by queueing
604 * events in thread-local storage.
605 * TODO: remove this, make it re-enter safe.
606 */
607 typedef struct MonitorQapiEvent {
608 QAPIEvent event;
609 QDict *qdict;
610 QSIMPLEQ_ENTRY(MonitorQapiEvent) entry;
611 } MonitorQapiEvent;
612 static __thread QSIMPLEQ_HEAD(, MonitorQapiEvent) event_queue;
613 static __thread bool reentered;
614 MonitorQapiEvent *ev;
615
616 if (!reentered) {
617 QSIMPLEQ_INIT(&event_queue);
618 }
619
620 ev = g_new(MonitorQapiEvent, 1);
621 ev->qdict = qobject_ref(qdict);
622 ev->event = event;
623 QSIMPLEQ_INSERT_TAIL(&event_queue, ev, entry);
624 if (reentered) {
625 return;
626 }
627
628 reentered = true;
629
630 while ((ev = QSIMPLEQ_FIRST(&event_queue)) != NULL) {
631 QSIMPLEQ_REMOVE_HEAD(&event_queue, entry);
632 monitor_qapi_event_queue_no_reenter(ev->event, ev->qdict);
633 qobject_unref(ev->qdict);
634 g_free(ev);
635 }
636
637 reentered = false;
638 }
639
640 /*
641 * This function runs evconf->rate ns after sending a throttled
642 * event.
643 * If another event has since been stored, send it.
644 */
645 static void monitor_qapi_event_handler(void *opaque)
646 {
647 MonitorQAPIEventState *evstate = opaque;
648 MonitorQAPIEventConf *evconf = &monitor_qapi_event_conf[evstate->event];
649
650 trace_monitor_protocol_event_handler(evstate->event, evstate->qdict);
651 qemu_mutex_lock(&monitor_lock);
652
653 if (evstate->qdict) {
654 int64_t now = qemu_clock_get_ns(monitor_get_event_clock());
655
656 monitor_qapi_event_emit(evstate->event, evstate->qdict);
657 qobject_unref(evstate->qdict);
658 evstate->qdict = NULL;
659 timer_mod_ns(evstate->timer, now + evconf->rate);
660 } else {
661 g_hash_table_remove(monitor_qapi_event_state, evstate);
662 qobject_unref(evstate->data);
663 timer_free(evstate->timer);
664 g_free(evstate);
665 }
666
667 qemu_mutex_unlock(&monitor_lock);
668 }
669
670 static unsigned int qapi_event_throttle_hash(const void *key)
671 {
672 const MonitorQAPIEventState *evstate = key;
673 unsigned int hash = evstate->event * 255;
674
675 if (evstate->event == QAPI_EVENT_VSERPORT_CHANGE) {
676 hash += g_str_hash(qdict_get_str(evstate->data, "id"));
677 }
678
679 if (evstate->event == QAPI_EVENT_QUORUM_REPORT_BAD) {
680 hash += g_str_hash(qdict_get_str(evstate->data, "node-name"));
681 }
682
683 return hash;
684 }
685
686 static gboolean qapi_event_throttle_equal(const void *a, const void *b)
687 {
688 const MonitorQAPIEventState *eva = a;
689 const MonitorQAPIEventState *evb = b;
690
691 if (eva->event != evb->event) {
692 return FALSE;
693 }
694
695 if (eva->event == QAPI_EVENT_VSERPORT_CHANGE) {
696 return !strcmp(qdict_get_str(eva->data, "id"),
697 qdict_get_str(evb->data, "id"));
698 }
699
700 if (eva->event == QAPI_EVENT_QUORUM_REPORT_BAD) {
701 return !strcmp(qdict_get_str(eva->data, "node-name"),
702 qdict_get_str(evb->data, "node-name"));
703 }
704
705 return TRUE;
706 }
707
708 static void monitor_qapi_event_init(void)
709 {
710 monitor_qapi_event_state = g_hash_table_new(qapi_event_throttle_hash,
711 qapi_event_throttle_equal);
712 }
713
714 static void handle_hmp_command(Monitor *mon, const char *cmdline);
715
716 static void monitor_iothread_init(void);
717
718 static void monitor_data_init(Monitor *mon, bool skip_flush,
719 bool use_io_thread)
720 {
721 if (use_io_thread && !mon_iothread) {
722 monitor_iothread_init();
723 }
724 memset(mon, 0, sizeof(Monitor));
725 qemu_mutex_init(&mon->mon_lock);
726 qemu_mutex_init(&mon->qmp.qmp_queue_lock);
727 mon->outbuf = qstring_new();
728 /* Use *mon_cmds by default. */
729 mon->cmd_table = mon_cmds;
730 mon->skip_flush = skip_flush;
731 mon->use_io_thread = use_io_thread;
732 mon->qmp.qmp_requests = g_queue_new();
733 }
734
735 static void monitor_data_destroy(Monitor *mon)
736 {
737 g_free(mon->mon_cpu_path);
738 qemu_chr_fe_deinit(&mon->chr, false);
739 if (monitor_is_qmp(mon)) {
740 json_message_parser_destroy(&mon->qmp.parser);
741 }
742 readline_free(mon->rs);
743 qobject_unref(mon->outbuf);
744 qemu_mutex_destroy(&mon->mon_lock);
745 qemu_mutex_destroy(&mon->qmp.qmp_queue_lock);
746 monitor_qmp_cleanup_req_queue_locked(mon);
747 g_queue_free(mon->qmp.qmp_requests);
748 }
749
750 char *qmp_human_monitor_command(const char *command_line, bool has_cpu_index,
751 int64_t cpu_index, Error **errp)
752 {
753 char *output = NULL;
754 Monitor *old_mon, hmp;
755
756 monitor_data_init(&hmp, true, false);
757
758 old_mon = cur_mon;
759 cur_mon = &hmp;
760
761 if (has_cpu_index) {
762 int ret = monitor_set_cpu(cpu_index);
763 if (ret < 0) {
764 cur_mon = old_mon;
765 error_setg(errp, QERR_INVALID_PARAMETER_VALUE, "cpu-index",
766 "a CPU number");
767 goto out;
768 }
769 }
770
771 handle_hmp_command(&hmp, command_line);
772 cur_mon = old_mon;
773
774 qemu_mutex_lock(&hmp.mon_lock);
775 if (qstring_get_length(hmp.outbuf) > 0) {
776 output = g_strdup(qstring_get_str(hmp.outbuf));
777 } else {
778 output = g_strdup("");
779 }
780 qemu_mutex_unlock(&hmp.mon_lock);
781
782 out:
783 monitor_data_destroy(&hmp);
784 return output;
785 }
786
787 static int compare_cmd(const char *name, const char *list)
788 {
789 const char *p, *pstart;
790 int len;
791 len = strlen(name);
792 p = list;
793 for(;;) {
794 pstart = p;
795 p = qemu_strchrnul(p, '|');
796 if ((p - pstart) == len && !memcmp(pstart, name, len))
797 return 1;
798 if (*p == '\0')
799 break;
800 p++;
801 }
802 return 0;
803 }
804
805 static int get_str(char *buf, int buf_size, const char **pp)
806 {
807 const char *p;
808 char *q;
809 int c;
810
811 q = buf;
812 p = *pp;
813 while (qemu_isspace(*p)) {
814 p++;
815 }
816 if (*p == '\0') {
817 fail:
818 *q = '\0';
819 *pp = p;
820 return -1;
821 }
822 if (*p == '\"') {
823 p++;
824 while (*p != '\0' && *p != '\"') {
825 if (*p == '\\') {
826 p++;
827 c = *p++;
828 switch (c) {
829 case 'n':
830 c = '\n';
831 break;
832 case 'r':
833 c = '\r';
834 break;
835 case '\\':
836 case '\'':
837 case '\"':
838 break;
839 default:
840 printf("unsupported escape code: '\\%c'\n", c);
841 goto fail;
842 }
843 if ((q - buf) < buf_size - 1) {
844 *q++ = c;
845 }
846 } else {
847 if ((q - buf) < buf_size - 1) {
848 *q++ = *p;
849 }
850 p++;
851 }
852 }
853 if (*p != '\"') {
854 printf("unterminated string\n");
855 goto fail;
856 }
857 p++;
858 } else {
859 while (*p != '\0' && !qemu_isspace(*p)) {
860 if ((q - buf) < buf_size - 1) {
861 *q++ = *p;
862 }
863 p++;
864 }
865 }
866 *q = '\0';
867 *pp = p;
868 return 0;
869 }
870
871 #define MAX_ARGS 16
872
873 static void free_cmdline_args(char **args, int nb_args)
874 {
875 int i;
876
877 assert(nb_args <= MAX_ARGS);
878
879 for (i = 0; i < nb_args; i++) {
880 g_free(args[i]);
881 }
882
883 }
884
885 /*
886 * Parse the command line to get valid args.
887 * @cmdline: command line to be parsed.
888 * @pnb_args: location to store the number of args, must NOT be NULL.
889 * @args: location to store the args, which should be freed by caller, must
890 * NOT be NULL.
891 *
892 * Returns 0 on success, negative on failure.
893 *
894 * NOTE: this parser is an approximate form of the real command parser. Number
895 * of args have a limit of MAX_ARGS. If cmdline contains more, it will
896 * return with failure.
897 */
898 static int parse_cmdline(const char *cmdline,
899 int *pnb_args, char **args)
900 {
901 const char *p;
902 int nb_args, ret;
903 char buf[1024];
904
905 p = cmdline;
906 nb_args = 0;
907 for (;;) {
908 while (qemu_isspace(*p)) {
909 p++;
910 }
911 if (*p == '\0') {
912 break;
913 }
914 if (nb_args >= MAX_ARGS) {
915 goto fail;
916 }
917 ret = get_str(buf, sizeof(buf), &p);
918 if (ret < 0) {
919 goto fail;
920 }
921 args[nb_args] = g_strdup(buf);
922 nb_args++;
923 }
924 *pnb_args = nb_args;
925 return 0;
926
927 fail:
928 free_cmdline_args(args, nb_args);
929 return -1;
930 }
931
932 /*
933 * Can command @cmd be executed in preconfig state?
934 */
935 static bool cmd_can_preconfig(const mon_cmd_t *cmd)
936 {
937 if (!cmd->flags) {
938 return false;
939 }
940
941 return strchr(cmd->flags, 'p');
942 }
943
944 static void help_cmd_dump_one(Monitor *mon,
945 const mon_cmd_t *cmd,
946 char **prefix_args,
947 int prefix_args_nb)
948 {
949 int i;
950
951 if (runstate_check(RUN_STATE_PRECONFIG) && !cmd_can_preconfig(cmd)) {
952 return;
953 }
954
955 for (i = 0; i < prefix_args_nb; i++) {
956 monitor_printf(mon, "%s ", prefix_args[i]);
957 }
958 monitor_printf(mon, "%s %s -- %s\n", cmd->name, cmd->params, cmd->help);
959 }
960
961 /* @args[@arg_index] is the valid command need to find in @cmds */
962 static void help_cmd_dump(Monitor *mon, const mon_cmd_t *cmds,
963 char **args, int nb_args, int arg_index)
964 {
965 const mon_cmd_t *cmd;
966 size_t i;
967
968 /* No valid arg need to compare with, dump all in *cmds */
969 if (arg_index >= nb_args) {
970 for (cmd = cmds; cmd->name != NULL; cmd++) {
971 help_cmd_dump_one(mon, cmd, args, arg_index);
972 }
973 return;
974 }
975
976 /* Find one entry to dump */
977 for (cmd = cmds; cmd->name != NULL; cmd++) {
978 if (compare_cmd(args[arg_index], cmd->name) &&
979 ((!runstate_check(RUN_STATE_PRECONFIG) ||
980 cmd_can_preconfig(cmd)))) {
981 if (cmd->sub_table) {
982 /* continue with next arg */
983 help_cmd_dump(mon, cmd->sub_table,
984 args, nb_args, arg_index + 1);
985 } else {
986 help_cmd_dump_one(mon, cmd, args, arg_index);
987 }
988 return;
989 }
990 }
991
992 /* Command not found */
993 monitor_printf(mon, "unknown command: '");
994 for (i = 0; i <= arg_index; i++) {
995 monitor_printf(mon, "%s%s", args[i], i == arg_index ? "'\n" : " ");
996 }
997 }
998
999 static void help_cmd(Monitor *mon, const char *name)
1000 {
1001 char *args[MAX_ARGS];
1002 int nb_args = 0;
1003
1004 /* 1. parse user input */
1005 if (name) {
1006 /* special case for log, directly dump and return */
1007 if (!strcmp(name, "log")) {
1008 const QEMULogItem *item;
1009 monitor_printf(mon, "Log items (comma separated):\n");
1010 monitor_printf(mon, "%-10s %s\n", "none", "remove all logs");
1011 for (item = qemu_log_items; item->mask != 0; item++) {
1012 monitor_printf(mon, "%-10s %s\n", item->name, item->help);
1013 }
1014 return;
1015 }
1016
1017 if (parse_cmdline(name, &nb_args, args) < 0) {
1018 return;
1019 }
1020 }
1021
1022 /* 2. dump the contents according to parsed args */
1023 help_cmd_dump(mon, mon->cmd_table, args, nb_args, 0);
1024
1025 free_cmdline_args(args, nb_args);
1026 }
1027
1028 static void do_help_cmd(Monitor *mon, const QDict *qdict)
1029 {
1030 help_cmd(mon, qdict_get_try_str(qdict, "name"));
1031 }
1032
1033 static void hmp_trace_event(Monitor *mon, const QDict *qdict)
1034 {
1035 const char *tp_name = qdict_get_str(qdict, "name");
1036 bool new_state = qdict_get_bool(qdict, "option");
1037 bool has_vcpu = qdict_haskey(qdict, "vcpu");
1038 int vcpu = qdict_get_try_int(qdict, "vcpu", 0);
1039 Error *local_err = NULL;
1040
1041 if (vcpu < 0) {
1042 monitor_printf(mon, "argument vcpu must be positive");
1043 return;
1044 }
1045
1046 qmp_trace_event_set_state(tp_name, new_state, true, true, has_vcpu, vcpu, &local_err);
1047 if (local_err) {
1048 error_report_err(local_err);
1049 }
1050 }
1051
1052 #ifdef CONFIG_TRACE_SIMPLE
1053 static void hmp_trace_file(Monitor *mon, const QDict *qdict)
1054 {
1055 const char *op = qdict_get_try_str(qdict, "op");
1056 const char *arg = qdict_get_try_str(qdict, "arg");
1057
1058 if (!op) {
1059 st_print_trace_file_status((FILE *)mon, &monitor_fprintf);
1060 } else if (!strcmp(op, "on")) {
1061 st_set_trace_file_enabled(true);
1062 } else if (!strcmp(op, "off")) {
1063 st_set_trace_file_enabled(false);
1064 } else if (!strcmp(op, "flush")) {
1065 st_flush_trace_buffer();
1066 } else if (!strcmp(op, "set")) {
1067 if (arg) {
1068 st_set_trace_file(arg);
1069 }
1070 } else {
1071 monitor_printf(mon, "unexpected argument \"%s\"\n", op);
1072 help_cmd(mon, "trace-file");
1073 }
1074 }
1075 #endif
1076
1077 static void hmp_info_help(Monitor *mon, const QDict *qdict)
1078 {
1079 help_cmd(mon, "info");
1080 }
1081
1082 static void query_commands_cb(QmpCommand *cmd, void *opaque)
1083 {
1084 CommandInfoList *info, **list = opaque;
1085
1086 if (!cmd->enabled) {
1087 return;
1088 }
1089
1090 info = g_malloc0(sizeof(*info));
1091 info->value = g_malloc0(sizeof(*info->value));
1092 info->value->name = g_strdup(cmd->name);
1093 info->next = *list;
1094 *list = info;
1095 }
1096
1097 CommandInfoList *qmp_query_commands(Error **errp)
1098 {
1099 CommandInfoList *list = NULL;
1100
1101 qmp_for_each_command(cur_mon->qmp.commands, query_commands_cb, &list);
1102
1103 return list;
1104 }
1105
1106 EventInfoList *qmp_query_events(Error **errp)
1107 {
1108 /*
1109 * TODO This deprecated command is the only user of
1110 * QAPIEvent_str() and QAPIEvent_lookup[]. When the command goes,
1111 * they should go, too.
1112 */
1113 EventInfoList *info, *ev_list = NULL;
1114 QAPIEvent e;
1115
1116 for (e = 0 ; e < QAPI_EVENT__MAX ; e++) {
1117 const char *event_name = QAPIEvent_str(e);
1118 assert(event_name != NULL);
1119 info = g_malloc0(sizeof(*info));
1120 info->value = g_malloc0(sizeof(*info->value));
1121 info->value->name = g_strdup(event_name);
1122
1123 info->next = ev_list;
1124 ev_list = info;
1125 }
1126
1127 return ev_list;
1128 }
1129
1130 /*
1131 * Minor hack: generated marshalling suppressed for this command
1132 * ('gen': false in the schema) so we can parse the JSON string
1133 * directly into QObject instead of first parsing it with
1134 * visit_type_SchemaInfoList() into a SchemaInfoList, then marshal it
1135 * to QObject with generated output marshallers, every time. Instead,
1136 * we do it in test-qobject-input-visitor.c, just to make sure
1137 * qapi-gen.py's output actually conforms to the schema.
1138 */
1139 static void qmp_query_qmp_schema(QDict *qdict, QObject **ret_data,
1140 Error **errp)
1141 {
1142 *ret_data = qobject_from_qlit(&qmp_schema_qlit);
1143 }
1144
1145 static void monitor_init_qmp_commands(void)
1146 {
1147 /*
1148 * Two command lists:
1149 * - qmp_commands contains all QMP commands
1150 * - qmp_cap_negotiation_commands contains just
1151 * "qmp_capabilities", to enforce capability negotiation
1152 */
1153
1154 qmp_init_marshal(&qmp_commands);
1155
1156 qmp_register_command(&qmp_commands, "query-qmp-schema",
1157 qmp_query_qmp_schema, QCO_ALLOW_PRECONFIG);
1158 qmp_register_command(&qmp_commands, "device_add", qmp_device_add,
1159 QCO_NO_OPTIONS);
1160 qmp_register_command(&qmp_commands, "netdev_add", qmp_netdev_add,
1161 QCO_NO_OPTIONS);
1162
1163 QTAILQ_INIT(&qmp_cap_negotiation_commands);
1164 qmp_register_command(&qmp_cap_negotiation_commands, "qmp_capabilities",
1165 qmp_marshal_qmp_capabilities, QCO_ALLOW_PRECONFIG);
1166 }
1167
1168 static bool qmp_oob_enabled(Monitor *mon)
1169 {
1170 return mon->qmp.capab[QMP_CAPABILITY_OOB];
1171 }
1172
1173 static void monitor_qmp_caps_reset(Monitor *mon)
1174 {
1175 memset(mon->qmp.capab_offered, 0, sizeof(mon->qmp.capab_offered));
1176 memset(mon->qmp.capab, 0, sizeof(mon->qmp.capab));
1177 mon->qmp.capab_offered[QMP_CAPABILITY_OOB] = mon->use_io_thread;
1178 }
1179
1180 /*
1181 * Accept QMP capabilities in @list for @mon.
1182 * On success, set mon->qmp.capab[], and return true.
1183 * On error, set @errp, and return false.
1184 */
1185 static bool qmp_caps_accept(Monitor *mon, QMPCapabilityList *list,
1186 Error **errp)
1187 {
1188 GString *unavailable = NULL;
1189 bool capab[QMP_CAPABILITY__MAX];
1190
1191 memset(capab, 0, sizeof(capab));
1192
1193 for (; list; list = list->next) {
1194 if (!mon->qmp.capab_offered[list->value]) {
1195 if (!unavailable) {
1196 unavailable = g_string_new(QMPCapability_str(list->value));
1197 } else {
1198 g_string_append_printf(unavailable, ", %s",
1199 QMPCapability_str(list->value));
1200 }
1201 }
1202 capab[list->value] = true;
1203 }
1204
1205 if (unavailable) {
1206 error_setg(errp, "Capability %s not available", unavailable->str);
1207 g_string_free(unavailable, true);
1208 return false;
1209 }
1210
1211 memcpy(mon->qmp.capab, capab, sizeof(capab));
1212 return true;
1213 }
1214
1215 void qmp_qmp_capabilities(bool has_enable, QMPCapabilityList *enable,
1216 Error **errp)
1217 {
1218 if (cur_mon->qmp.commands == &qmp_commands) {
1219 error_set(errp, ERROR_CLASS_COMMAND_NOT_FOUND,
1220 "Capabilities negotiation is already complete, command "
1221 "ignored");
1222 return;
1223 }
1224
1225 if (!qmp_caps_accept(cur_mon, enable, errp)) {
1226 return;
1227 }
1228
1229 cur_mon->qmp.commands = &qmp_commands;
1230 }
1231
1232 /* Set the current CPU defined by the user. Callers must hold BQL. */
1233 int monitor_set_cpu(int cpu_index)
1234 {
1235 CPUState *cpu;
1236
1237 cpu = qemu_get_cpu(cpu_index);
1238 if (cpu == NULL) {
1239 return -1;
1240 }
1241 g_free(cur_mon->mon_cpu_path);
1242 cur_mon->mon_cpu_path = object_get_canonical_path(OBJECT(cpu));
1243 return 0;
1244 }
1245
1246 /* Callers must hold BQL. */
1247 static CPUState *mon_get_cpu_sync(bool synchronize)
1248 {
1249 CPUState *cpu;
1250
1251 if (cur_mon->mon_cpu_path) {
1252 cpu = (CPUState *) object_resolve_path_type(cur_mon->mon_cpu_path,
1253 TYPE_CPU, NULL);
1254 if (!cpu) {
1255 g_free(cur_mon->mon_cpu_path);
1256 cur_mon->mon_cpu_path = NULL;
1257 }
1258 }
1259 if (!cur_mon->mon_cpu_path) {
1260 if (!first_cpu) {
1261 return NULL;
1262 }
1263 monitor_set_cpu(first_cpu->cpu_index);
1264 cpu = first_cpu;
1265 }
1266 if (synchronize) {
1267 cpu_synchronize_state(cpu);
1268 }
1269 return cpu;
1270 }
1271
1272 CPUState *mon_get_cpu(void)
1273 {
1274 return mon_get_cpu_sync(true);
1275 }
1276
1277 CPUArchState *mon_get_cpu_env(void)
1278 {
1279 CPUState *cs = mon_get_cpu();
1280
1281 return cs ? cs->env_ptr : NULL;
1282 }
1283
1284 int monitor_get_cpu_index(void)
1285 {
1286 CPUState *cs = mon_get_cpu_sync(false);
1287
1288 return cs ? cs->cpu_index : UNASSIGNED_CPU_INDEX;
1289 }
1290
1291 static void hmp_info_registers(Monitor *mon, const QDict *qdict)
1292 {
1293 bool all_cpus = qdict_get_try_bool(qdict, "cpustate_all", false);
1294 CPUState *cs;
1295
1296 if (all_cpus) {
1297 CPU_FOREACH(cs) {
1298 monitor_printf(mon, "\nCPU#%d\n", cs->cpu_index);
1299 cpu_dump_state(cs, (FILE *)mon, monitor_fprintf, CPU_DUMP_FPU);
1300 }
1301 } else {
1302 cs = mon_get_cpu();
1303
1304 if (!cs) {
1305 monitor_printf(mon, "No CPU available\n");
1306 return;
1307 }
1308
1309 cpu_dump_state(cs, (FILE *)mon, monitor_fprintf, CPU_DUMP_FPU);
1310 }
1311 }
1312
1313 #ifdef CONFIG_TCG
1314 static void hmp_info_jit(Monitor *mon, const QDict *qdict)
1315 {
1316 if (!tcg_enabled()) {
1317 error_report("JIT information is only available with accel=tcg");
1318 return;
1319 }
1320
1321 dump_exec_info((FILE *)mon, monitor_fprintf);
1322 dump_drift_info((FILE *)mon, monitor_fprintf);
1323 }
1324
1325 static void hmp_info_opcount(Monitor *mon, const QDict *qdict)
1326 {
1327 dump_opcount_info((FILE *)mon, monitor_fprintf);
1328 }
1329 #endif
1330
1331 static void hmp_info_sync_profile(Monitor *mon, const QDict *qdict)
1332 {
1333 int64_t max = qdict_get_try_int(qdict, "max", 10);
1334 bool mean = qdict_get_try_bool(qdict, "mean", false);
1335 bool coalesce = !qdict_get_try_bool(qdict, "no_coalesce", false);
1336 enum QSPSortBy sort_by;
1337
1338 sort_by = mean ? QSP_SORT_BY_AVG_WAIT_TIME : QSP_SORT_BY_TOTAL_WAIT_TIME;
1339 qsp_report((FILE *)mon, monitor_fprintf, max, sort_by, coalesce);
1340 }
1341
1342 static void hmp_info_history(Monitor *mon, const QDict *qdict)
1343 {
1344 int i;
1345 const char *str;
1346
1347 if (!mon->rs)
1348 return;
1349 i = 0;
1350 for(;;) {
1351 str = readline_get_history(mon->rs, i);
1352 if (!str)
1353 break;
1354 monitor_printf(mon, "%d: '%s'\n", i, str);
1355 i++;
1356 }
1357 }
1358
1359 static void hmp_info_cpustats(Monitor *mon, const QDict *qdict)
1360 {
1361 CPUState *cs = mon_get_cpu();
1362
1363 if (!cs) {
1364 monitor_printf(mon, "No CPU available\n");
1365 return;
1366 }
1367 cpu_dump_statistics(cs, (FILE *)mon, &monitor_fprintf, 0);
1368 }
1369
1370 static void hmp_info_trace_events(Monitor *mon, const QDict *qdict)
1371 {
1372 const char *name = qdict_get_try_str(qdict, "name");
1373 bool has_vcpu = qdict_haskey(qdict, "vcpu");
1374 int vcpu = qdict_get_try_int(qdict, "vcpu", 0);
1375 TraceEventInfoList *events;
1376 TraceEventInfoList *elem;
1377 Error *local_err = NULL;
1378
1379 if (name == NULL) {
1380 name = "*";
1381 }
1382 if (vcpu < 0) {
1383 monitor_printf(mon, "argument vcpu must be positive");
1384 return;
1385 }
1386
1387 events = qmp_trace_event_get_state(name, has_vcpu, vcpu, &local_err);
1388 if (local_err) {
1389 error_report_err(local_err);
1390 return;
1391 }
1392
1393 for (elem = events; elem != NULL; elem = elem->next) {
1394 monitor_printf(mon, "%s : state %u\n",
1395 elem->value->name,
1396 elem->value->state == TRACE_EVENT_STATE_ENABLED ? 1 : 0);
1397 }
1398 qapi_free_TraceEventInfoList(events);
1399 }
1400
1401 void qmp_client_migrate_info(const char *protocol, const char *hostname,
1402 bool has_port, int64_t port,
1403 bool has_tls_port, int64_t tls_port,
1404 bool has_cert_subject, const char *cert_subject,
1405 Error **errp)
1406 {
1407 if (strcmp(protocol, "spice") == 0) {
1408 if (!qemu_using_spice(errp)) {
1409 return;
1410 }
1411
1412 if (!has_port && !has_tls_port) {
1413 error_setg(errp, QERR_MISSING_PARAMETER, "port/tls-port");
1414 return;
1415 }
1416
1417 if (qemu_spice_migrate_info(hostname,
1418 has_port ? port : -1,
1419 has_tls_port ? tls_port : -1,
1420 cert_subject)) {
1421 error_setg(errp, QERR_UNDEFINED_ERROR);
1422 return;
1423 }
1424 return;
1425 }
1426
1427 error_setg(errp, QERR_INVALID_PARAMETER_VALUE, "protocol", "spice");
1428 }
1429
1430 static void hmp_logfile(Monitor *mon, const QDict *qdict)
1431 {
1432 Error *err = NULL;
1433
1434 qemu_set_log_filename(qdict_get_str(qdict, "filename"), &err);
1435 if (err) {
1436 error_report_err(err);
1437 }
1438 }
1439
1440 static void hmp_log(Monitor *mon, const QDict *qdict)
1441 {
1442 int mask;
1443 const char *items = qdict_get_str(qdict, "items");
1444
1445 if (!strcmp(items, "none")) {
1446 mask = 0;
1447 } else {
1448 mask = qemu_str_to_log_mask(items);
1449 if (!mask) {
1450 help_cmd(mon, "log");
1451 return;
1452 }
1453 }
1454 qemu_set_log(mask);
1455 }
1456
1457 static void hmp_singlestep(Monitor *mon, const QDict *qdict)
1458 {
1459 const char *option = qdict_get_try_str(qdict, "option");
1460 if (!option || !strcmp(option, "on")) {
1461 singlestep = 1;
1462 } else if (!strcmp(option, "off")) {
1463 singlestep = 0;
1464 } else {
1465 monitor_printf(mon, "unexpected option %s\n", option);
1466 }
1467 }
1468
1469 static void hmp_gdbserver(Monitor *mon, const QDict *qdict)
1470 {
1471 const char *device = qdict_get_try_str(qdict, "device");
1472 if (!device)
1473 device = "tcp::" DEFAULT_GDBSTUB_PORT;
1474 if (gdbserver_start(device) < 0) {
1475 monitor_printf(mon, "Could not open gdbserver on device '%s'\n",
1476 device);
1477 } else if (strcmp(device, "none") == 0) {
1478 monitor_printf(mon, "Disabled gdbserver\n");
1479 } else {
1480 monitor_printf(mon, "Waiting for gdb connection on device '%s'\n",
1481 device);
1482 }
1483 }
1484
1485 static void hmp_watchdog_action(Monitor *mon, const QDict *qdict)
1486 {
1487 const char *action = qdict_get_str(qdict, "action");
1488 if (select_watchdog_action(action) == -1) {
1489 monitor_printf(mon, "Unknown watchdog action '%s'\n", action);
1490 }
1491 }
1492
1493 static void monitor_printc(Monitor *mon, int c)
1494 {
1495 monitor_printf(mon, "'");
1496 switch(c) {
1497 case '\'':
1498 monitor_printf(mon, "\\'");
1499 break;
1500 case '\\':
1501 monitor_printf(mon, "\\\\");
1502 break;
1503 case '\n':
1504 monitor_printf(mon, "\\n");
1505 break;
1506 case '\r':
1507 monitor_printf(mon, "\\r");
1508 break;
1509 default:
1510 if (c >= 32 && c <= 126) {
1511 monitor_printf(mon, "%c", c);
1512 } else {
1513 monitor_printf(mon, "\\x%02x", c);
1514 }
1515 break;
1516 }
1517 monitor_printf(mon, "'");
1518 }
1519
1520 static void memory_dump(Monitor *mon, int count, int format, int wsize,
1521 hwaddr addr, int is_physical)
1522 {
1523 int l, line_size, i, max_digits, len;
1524 uint8_t buf[16];
1525 uint64_t v;
1526 CPUState *cs = mon_get_cpu();
1527
1528 if (!cs && (format == 'i' || !is_physical)) {
1529 monitor_printf(mon, "Can not dump without CPU\n");
1530 return;
1531 }
1532
1533 if (format == 'i') {
1534 monitor_disas(mon, cs, addr, count, is_physical);
1535 return;
1536 }
1537
1538 len = wsize * count;
1539 if (wsize == 1)
1540 line_size = 8;
1541 else
1542 line_size = 16;
1543 max_digits = 0;
1544
1545 switch(format) {
1546 case 'o':
1547 max_digits = DIV_ROUND_UP(wsize * 8, 3);
1548 break;
1549 default:
1550 case 'x':
1551 max_digits = (wsize * 8) / 4;
1552 break;
1553 case 'u':
1554 case 'd':
1555 max_digits = DIV_ROUND_UP(wsize * 8 * 10, 33);
1556 break;
1557 case 'c':
1558 wsize = 1;
1559 break;
1560 }
1561
1562 while (len > 0) {
1563 if (is_physical)
1564 monitor_printf(mon, TARGET_FMT_plx ":", addr);
1565 else
1566 monitor_printf(mon, TARGET_FMT_lx ":", (target_ulong)addr);
1567 l = len;
1568 if (l > line_size)
1569 l = line_size;
1570 if (is_physical) {
1571 AddressSpace *as = cs ? cs->as : &address_space_memory;
1572 MemTxResult r = address_space_read(as, addr,
1573 MEMTXATTRS_UNSPECIFIED, buf, l);
1574 if (r != MEMTX_OK) {
1575 monitor_printf(mon, " Cannot access memory\n");
1576 break;
1577 }
1578 } else {
1579 if (cpu_memory_rw_debug(cs, addr, buf, l, 0) < 0) {
1580 monitor_printf(mon, " Cannot access memory\n");
1581 break;
1582 }
1583 }
1584 i = 0;
1585 while (i < l) {
1586 switch(wsize) {
1587 default:
1588 case 1:
1589 v = ldub_p(buf + i);
1590 break;
1591 case 2:
1592 v = lduw_p(buf + i);
1593 break;
1594 case 4:
1595 v = (uint32_t)ldl_p(buf + i);
1596 break;
1597 case 8:
1598 v = ldq_p(buf + i);
1599 break;
1600 }
1601 monitor_printf(mon, " ");
1602 switch(format) {
1603 case 'o':
1604 monitor_printf(mon, "%#*" PRIo64, max_digits, v);
1605 break;
1606 case 'x':
1607 monitor_printf(mon, "0x%0*" PRIx64, max_digits, v);
1608 break;
1609 case 'u':
1610 monitor_printf(mon, "%*" PRIu64, max_digits, v);
1611 break;
1612 case 'd':
1613 monitor_printf(mon, "%*" PRId64, max_digits, v);
1614 break;
1615 case 'c':
1616 monitor_printc(mon, v);
1617 break;
1618 }
1619 i += wsize;
1620 }
1621 monitor_printf(mon, "\n");
1622 addr += l;
1623 len -= l;
1624 }
1625 }
1626
1627 static void hmp_memory_dump(Monitor *mon, const QDict *qdict)
1628 {
1629 int count = qdict_get_int(qdict, "count");
1630 int format = qdict_get_int(qdict, "format");
1631 int size = qdict_get_int(qdict, "size");
1632 target_long addr = qdict_get_int(qdict, "addr");
1633
1634 memory_dump(mon, count, format, size, addr, 0);
1635 }
1636
1637 static void hmp_physical_memory_dump(Monitor *mon, const QDict *qdict)
1638 {
1639 int count = qdict_get_int(qdict, "count");
1640 int format = qdict_get_int(qdict, "format");
1641 int size = qdict_get_int(qdict, "size");
1642 hwaddr addr = qdict_get_int(qdict, "addr");
1643
1644 memory_dump(mon, count, format, size, addr, 1);
1645 }
1646
1647 static void *gpa2hva(MemoryRegion **p_mr, hwaddr addr, Error **errp)
1648 {
1649 MemoryRegionSection mrs = memory_region_find(get_system_memory(),
1650 addr, 1);
1651
1652 if (!mrs.mr) {
1653 error_setg(errp, "No memory is mapped at address 0x%" HWADDR_PRIx, addr);
1654 return NULL;
1655 }
1656
1657 if (!memory_region_is_ram(mrs.mr) && !memory_region_is_romd(mrs.mr)) {
1658 error_setg(errp, "Memory at address 0x%" HWADDR_PRIx "is not RAM", addr);
1659 memory_region_unref(mrs.mr);
1660 return NULL;
1661 }
1662
1663 *p_mr = mrs.mr;
1664 return qemu_map_ram_ptr(mrs.mr->ram_block, mrs.offset_within_region);
1665 }
1666
1667 static void hmp_gpa2hva(Monitor *mon, const QDict *qdict)
1668 {
1669 hwaddr addr = qdict_get_int(qdict, "addr");
1670 Error *local_err = NULL;
1671 MemoryRegion *mr = NULL;
1672 void *ptr;
1673
1674 ptr = gpa2hva(&mr, addr, &local_err);
1675 if (local_err) {
1676 error_report_err(local_err);
1677 return;
1678 }
1679
1680 monitor_printf(mon, "Host virtual address for 0x%" HWADDR_PRIx
1681 " (%s) is %p\n",
1682 addr, mr->name, ptr);
1683
1684 memory_region_unref(mr);
1685 }
1686
1687 #ifdef CONFIG_LINUX
1688 static uint64_t vtop(void *ptr, Error **errp)
1689 {
1690 uint64_t pinfo;
1691 uint64_t ret = -1;
1692 uintptr_t addr = (uintptr_t) ptr;
1693 uintptr_t pagesize = getpagesize();
1694 off_t offset = addr / pagesize * sizeof(pinfo);
1695 int fd;
1696
1697 fd = open("/proc/self/pagemap", O_RDONLY);
1698 if (fd == -1) {
1699 error_setg_errno(errp, errno, "Cannot open /proc/self/pagemap");
1700 return -1;
1701 }
1702
1703 /* Force copy-on-write if necessary. */
1704 atomic_add((uint8_t *)ptr, 0);
1705
1706 if (pread(fd, &pinfo, sizeof(pinfo), offset) != sizeof(pinfo)) {
1707 error_setg_errno(errp, errno, "Cannot read pagemap");
1708 goto out;
1709 }
1710 if ((pinfo & (1ull << 63)) == 0) {
1711 error_setg(errp, "Page not present");
1712 goto out;
1713 }
1714 ret = ((pinfo & 0x007fffffffffffffull) * pagesize) | (addr & (pagesize - 1));
1715
1716 out:
1717 close(fd);
1718 return ret;
1719 }
1720
1721 static void hmp_gpa2hpa(Monitor *mon, const QDict *qdict)
1722 {
1723 hwaddr addr = qdict_get_int(qdict, "addr");
1724 Error *local_err = NULL;
1725 MemoryRegion *mr = NULL;
1726 void *ptr;
1727 uint64_t physaddr;
1728
1729 ptr = gpa2hva(&mr, addr, &local_err);
1730 if (local_err) {
1731 error_report_err(local_err);
1732 return;
1733 }
1734
1735 physaddr = vtop(ptr, &local_err);
1736 if (local_err) {
1737 error_report_err(local_err);
1738 } else {
1739 monitor_printf(mon, "Host physical address for 0x%" HWADDR_PRIx
1740 " (%s) is 0x%" PRIx64 "\n",
1741 addr, mr->name, (uint64_t) physaddr);
1742 }
1743
1744 memory_region_unref(mr);
1745 }
1746 #endif
1747
1748 static void do_print(Monitor *mon, const QDict *qdict)
1749 {
1750 int format = qdict_get_int(qdict, "format");
1751 hwaddr val = qdict_get_int(qdict, "val");
1752
1753 switch(format) {
1754 case 'o':
1755 monitor_printf(mon, "%#" HWADDR_PRIo, val);
1756 break;
1757 case 'x':
1758 monitor_printf(mon, "%#" HWADDR_PRIx, val);
1759 break;
1760 case 'u':
1761 monitor_printf(mon, "%" HWADDR_PRIu, val);
1762 break;
1763 default:
1764 case 'd':
1765 monitor_printf(mon, "%" HWADDR_PRId, val);
1766 break;
1767 case 'c':
1768 monitor_printc(mon, val);
1769 break;
1770 }
1771 monitor_printf(mon, "\n");
1772 }
1773
1774 static void hmp_sum(Monitor *mon, const QDict *qdict)
1775 {
1776 uint32_t addr;
1777 uint16_t sum;
1778 uint32_t start = qdict_get_int(qdict, "start");
1779 uint32_t size = qdict_get_int(qdict, "size");
1780
1781 sum = 0;
1782 for(addr = start; addr < (start + size); addr++) {
1783 uint8_t val = address_space_ldub(&address_space_memory, addr,
1784 MEMTXATTRS_UNSPECIFIED, NULL);
1785 /* BSD sum algorithm ('sum' Unix command) */
1786 sum = (sum >> 1) | (sum << 15);
1787 sum += val;
1788 }
1789 monitor_printf(mon, "%05d\n", sum);
1790 }
1791
1792 static int mouse_button_state;
1793
1794 static void hmp_mouse_move(Monitor *mon, const QDict *qdict)
1795 {
1796 int dx, dy, dz, button;
1797 const char *dx_str = qdict_get_str(qdict, "dx_str");
1798 const char *dy_str = qdict_get_str(qdict, "dy_str");
1799 const char *dz_str = qdict_get_try_str(qdict, "dz_str");
1800
1801 dx = strtol(dx_str, NULL, 0);
1802 dy = strtol(dy_str, NULL, 0);
1803 qemu_input_queue_rel(NULL, INPUT_AXIS_X, dx);
1804 qemu_input_queue_rel(NULL, INPUT_AXIS_Y, dy);
1805
1806 if (dz_str) {
1807 dz = strtol(dz_str, NULL, 0);
1808 if (dz != 0) {
1809 button = (dz > 0) ? INPUT_BUTTON_WHEEL_UP : INPUT_BUTTON_WHEEL_DOWN;
1810 qemu_input_queue_btn(NULL, button, true);
1811 qemu_input_event_sync();
1812 qemu_input_queue_btn(NULL, button, false);
1813 }
1814 }
1815 qemu_input_event_sync();
1816 }
1817
1818 static void hmp_mouse_button(Monitor *mon, const QDict *qdict)
1819 {
1820 static uint32_t bmap[INPUT_BUTTON__MAX] = {
1821 [INPUT_BUTTON_LEFT] = MOUSE_EVENT_LBUTTON,
1822 [INPUT_BUTTON_MIDDLE] = MOUSE_EVENT_MBUTTON,
1823 [INPUT_BUTTON_RIGHT] = MOUSE_EVENT_RBUTTON,
1824 };
1825 int button_state = qdict_get_int(qdict, "button_state");
1826
1827 if (mouse_button_state == button_state) {
1828 return;
1829 }
1830 qemu_input_update_buttons(NULL, bmap, mouse_button_state, button_state);
1831 qemu_input_event_sync();
1832 mouse_button_state = button_state;
1833 }
1834
1835 static void hmp_ioport_read(Monitor *mon, const QDict *qdict)
1836 {
1837 int size = qdict_get_int(qdict, "size");
1838 int addr = qdict_get_int(qdict, "addr");
1839 int has_index = qdict_haskey(qdict, "index");
1840 uint32_t val;
1841 int suffix;
1842
1843 if (has_index) {
1844 int index = qdict_get_int(qdict, "index");
1845 cpu_outb(addr & IOPORTS_MASK, index & 0xff);
1846 addr++;
1847 }
1848 addr &= 0xffff;
1849
1850 switch(size) {
1851 default:
1852 case 1:
1853 val = cpu_inb(addr);
1854 suffix = 'b';
1855 break;
1856 case 2:
1857 val = cpu_inw(addr);
1858 suffix = 'w';
1859 break;
1860 case 4:
1861 val = cpu_inl(addr);
1862 suffix = 'l';
1863 break;
1864 }
1865 monitor_printf(mon, "port%c[0x%04x] = %#0*x\n",
1866 suffix, addr, size * 2, val);
1867 }
1868
1869 static void hmp_ioport_write(Monitor *mon, const QDict *qdict)
1870 {
1871 int size = qdict_get_int(qdict, "size");
1872 int addr = qdict_get_int(qdict, "addr");
1873 int val = qdict_get_int(qdict, "val");
1874
1875 addr &= IOPORTS_MASK;
1876
1877 switch (size) {
1878 default:
1879 case 1:
1880 cpu_outb(addr, val);
1881 break;
1882 case 2:
1883 cpu_outw(addr, val);
1884 break;
1885 case 4:
1886 cpu_outl(addr, val);
1887 break;
1888 }
1889 }
1890
1891 static void hmp_boot_set(Monitor *mon, const QDict *qdict)
1892 {
1893 Error *local_err = NULL;
1894 const char *bootdevice = qdict_get_str(qdict, "bootdevice");
1895
1896 qemu_boot_set(bootdevice, &local_err);
1897 if (local_err) {
1898 error_report_err(local_err);
1899 } else {
1900 monitor_printf(mon, "boot device list now set to %s\n", bootdevice);
1901 }
1902 }
1903
1904 static void hmp_info_mtree(Monitor *mon, const QDict *qdict)
1905 {
1906 bool flatview = qdict_get_try_bool(qdict, "flatview", false);
1907 bool dispatch_tree = qdict_get_try_bool(qdict, "dispatch_tree", false);
1908 bool owner = qdict_get_try_bool(qdict, "owner", false);
1909
1910 mtree_info((fprintf_function)monitor_printf, mon, flatview, dispatch_tree,
1911 owner);
1912 }
1913
1914 static void hmp_info_numa(Monitor *mon, const QDict *qdict)
1915 {
1916 int i;
1917 NumaNodeMem *node_mem;
1918 CpuInfoList *cpu_list, *cpu;
1919
1920 cpu_list = qmp_query_cpus(&error_abort);
1921 node_mem = g_new0(NumaNodeMem, nb_numa_nodes);
1922
1923 query_numa_node_mem(node_mem);
1924 monitor_printf(mon, "%d nodes\n", nb_numa_nodes);
1925 for (i = 0; i < nb_numa_nodes; i++) {
1926 monitor_printf(mon, "node %d cpus:", i);
1927 for (cpu = cpu_list; cpu; cpu = cpu->next) {
1928 if (cpu->value->has_props && cpu->value->props->has_node_id &&
1929 cpu->value->props->node_id == i) {
1930 monitor_printf(mon, " %" PRIi64, cpu->value->CPU);
1931 }
1932 }
1933 monitor_printf(mon, "\n");
1934 monitor_printf(mon, "node %d size: %" PRId64 " MB\n", i,
1935 node_mem[i].node_mem >> 20);
1936 monitor_printf(mon, "node %d plugged: %" PRId64 " MB\n", i,
1937 node_mem[i].node_plugged_mem >> 20);
1938 }
1939 qapi_free_CpuInfoList(cpu_list);
1940 g_free(node_mem);
1941 }
1942
1943 #ifdef CONFIG_PROFILER
1944
1945 int64_t dev_time;
1946
1947 static void hmp_info_profile(Monitor *mon, const QDict *qdict)
1948 {
1949 static int64_t last_cpu_exec_time;
1950 int64_t cpu_exec_time;
1951 int64_t delta;
1952
1953 cpu_exec_time = tcg_cpu_exec_time();
1954 delta = cpu_exec_time - last_cpu_exec_time;
1955
1956 monitor_printf(mon, "async time %" PRId64 " (%0.3f)\n",
1957 dev_time, dev_time / (double)NANOSECONDS_PER_SECOND);
1958 monitor_printf(mon, "qemu time %" PRId64 " (%0.3f)\n",
1959 delta, delta / (double)NANOSECONDS_PER_SECOND);
1960 last_cpu_exec_time = cpu_exec_time;
1961 dev_time = 0;
1962 }
1963 #else
1964 static void hmp_info_profile(Monitor *mon, const QDict *qdict)
1965 {
1966 monitor_printf(mon, "Internal profiler not compiled\n");
1967 }
1968 #endif
1969
1970 /* Capture support */
1971 static QLIST_HEAD (capture_list_head, CaptureState) capture_head;
1972
1973 static void hmp_info_capture(Monitor *mon, const QDict *qdict)
1974 {
1975 int i;
1976 CaptureState *s;
1977
1978 for (s = capture_head.lh_first, i = 0; s; s = s->entries.le_next, ++i) {
1979 monitor_printf(mon, "[%d]: ", i);
1980 s->ops.info (s->opaque);
1981 }
1982 }
1983
1984 static void hmp_stopcapture(Monitor *mon, const QDict *qdict)
1985 {
1986 int i;
1987 int n = qdict_get_int(qdict, "n");
1988 CaptureState *s;
1989
1990 for (s = capture_head.lh_first, i = 0; s; s = s->entries.le_next, ++i) {
1991 if (i == n) {
1992 s->ops.destroy (s->opaque);
1993 QLIST_REMOVE (s, entries);
1994 g_free (s);
1995 return;
1996 }
1997 }
1998 }
1999
2000 static void hmp_wavcapture(Monitor *mon, const QDict *qdict)
2001 {
2002 const char *path = qdict_get_str(qdict, "path");
2003 int has_freq = qdict_haskey(qdict, "freq");
2004 int freq = qdict_get_try_int(qdict, "freq", -1);
2005 int has_bits = qdict_haskey(qdict, "bits");
2006 int bits = qdict_get_try_int(qdict, "bits", -1);
2007 int has_channels = qdict_haskey(qdict, "nchannels");
2008 int nchannels = qdict_get_try_int(qdict, "nchannels", -1);
2009 CaptureState *s;
2010
2011 s = g_malloc0 (sizeof (*s));
2012
2013 freq = has_freq ? freq : 44100;
2014 bits = has_bits ? bits : 16;
2015 nchannels = has_channels ? nchannels : 2;
2016
2017 if (wav_start_capture (s, path, freq, bits, nchannels)) {
2018 monitor_printf(mon, "Failed to add wave capture\n");
2019 g_free (s);
2020 return;
2021 }
2022 QLIST_INSERT_HEAD (&capture_head, s, entries);
2023 }
2024
2025 static QAuthZList *find_auth(Monitor *mon, const char *name)
2026 {
2027 Object *obj;
2028 Object *container;
2029
2030 container = object_get_objects_root();
2031 obj = object_resolve_path_component(container, name);
2032 if (!obj) {
2033 monitor_printf(mon, "acl: unknown list '%s'\n", name);
2034 return NULL;
2035 }
2036
2037 return QAUTHZ_LIST(obj);
2038 }
2039
2040 static bool warn_acl;
2041 static void hmp_warn_acl(void)
2042 {
2043 if (warn_acl) {
2044 return;
2045 }
2046 error_report("The acl_show, acl_reset, acl_policy, acl_add, acl_remove "
2047 "commands are deprecated with no replacement. Authorization "
2048 "for VNC should be performed using the pluggable QAuthZ "
2049 "objects");
2050 warn_acl = true;
2051 }
2052
2053 static void hmp_acl_show(Monitor *mon, const QDict *qdict)
2054 {
2055 const char *aclname = qdict_get_str(qdict, "aclname");
2056 QAuthZList *auth = find_auth(mon, aclname);
2057 QAuthZListRuleList *rules;
2058 size_t i = 0;
2059
2060 hmp_warn_acl();
2061
2062 if (!auth) {
2063 return;
2064 }
2065
2066 monitor_printf(mon, "policy: %s\n",
2067 QAuthZListPolicy_str(auth->policy));
2068
2069 rules = auth->rules;
2070 while (rules) {
2071 QAuthZListRule *rule = rules->value;
2072 i++;
2073 monitor_printf(mon, "%zu: %s %s\n", i,
2074 QAuthZListPolicy_str(rule->policy),
2075 rule->match);
2076 rules = rules->next;
2077 }
2078 }
2079
2080 static void hmp_acl_reset(Monitor *mon, const QDict *qdict)
2081 {
2082 const char *aclname = qdict_get_str(qdict, "aclname");
2083 QAuthZList *auth = find_auth(mon, aclname);
2084
2085 hmp_warn_acl();
2086
2087 if (!auth) {
2088 return;
2089 }
2090
2091 auth->policy = QAUTHZ_LIST_POLICY_DENY;
2092 qapi_free_QAuthZListRuleList(auth->rules);
2093 auth->rules = NULL;
2094 monitor_printf(mon, "acl: removed all rules\n");
2095 }
2096
2097 static void hmp_acl_policy(Monitor *mon, const QDict *qdict)
2098 {
2099 const char *aclname = qdict_get_str(qdict, "aclname");
2100 const char *policy = qdict_get_str(qdict, "policy");
2101 QAuthZList *auth = find_auth(mon, aclname);
2102 int val;
2103 Error *err = NULL;
2104
2105 hmp_warn_acl();
2106
2107 if (!auth) {
2108 return;
2109 }
2110
2111 val = qapi_enum_parse(&QAuthZListPolicy_lookup,
2112 policy,
2113 QAUTHZ_LIST_POLICY_DENY,
2114 &err);
2115 if (err) {
2116 error_free(err);
2117 monitor_printf(mon, "acl: unknown policy '%s', "
2118 "expected 'deny' or 'allow'\n", policy);
2119 } else {
2120 auth->policy = val;
2121 if (auth->policy == QAUTHZ_LIST_POLICY_ALLOW) {
2122 monitor_printf(mon, "acl: policy set to 'allow'\n");
2123 } else {
2124 monitor_printf(mon, "acl: policy set to 'deny'\n");
2125 }
2126 }
2127 }
2128
2129 static QAuthZListFormat hmp_acl_get_format(const char *match)
2130 {
2131 if (strchr(match, '*')) {
2132 return QAUTHZ_LIST_FORMAT_GLOB;
2133 } else {
2134 return QAUTHZ_LIST_FORMAT_EXACT;
2135 }
2136 }
2137
2138 static void hmp_acl_add(Monitor *mon, const QDict *qdict)
2139 {
2140 const char *aclname = qdict_get_str(qdict, "aclname");
2141 const char *match = qdict_get_str(qdict, "match");
2142 const char *policystr = qdict_get_str(qdict, "policy");
2143 int has_index = qdict_haskey(qdict, "index");
2144 int index = qdict_get_try_int(qdict, "index", -1);
2145 QAuthZList *auth = find_auth(mon, aclname);
2146 Error *err = NULL;
2147 QAuthZListPolicy policy;
2148 QAuthZListFormat format;
2149 size_t i = 0;
2150
2151 hmp_warn_acl();
2152
2153 if (!auth) {
2154 return;
2155 }
2156
2157 policy = qapi_enum_parse(&QAuthZListPolicy_lookup,
2158 policystr,
2159 QAUTHZ_LIST_POLICY_DENY,
2160 &err);
2161 if (err) {
2162 error_free(err);
2163 monitor_printf(mon, "acl: unknown policy '%s', "
2164 "expected 'deny' or 'allow'\n", policystr);
2165 return;
2166 }
2167
2168 format = hmp_acl_get_format(match);
2169
2170 if (has_index && index == 0) {
2171 monitor_printf(mon, "acl: unable to add acl entry\n");
2172 return;
2173 }
2174
2175 if (has_index) {
2176 i = qauthz_list_insert_rule(auth, match, policy,
2177 format, index - 1, &err);
2178 } else {
2179 i = qauthz_list_append_rule(auth, match, policy,
2180 format, &err);
2181 }
2182 if (err) {
2183 monitor_printf(mon, "acl: unable to add rule: %s",
2184 error_get_pretty(err));
2185 error_free(err);
2186 } else {
2187 monitor_printf(mon, "acl: added rule at position %zu\n", i + 1);
2188 }
2189 }
2190
2191 static void hmp_acl_remove(Monitor *mon, const QDict *qdict)
2192 {
2193 const char *aclname = qdict_get_str(qdict, "aclname");
2194 const char *match = qdict_get_str(qdict, "match");
2195 QAuthZList *auth = find_auth(mon, aclname);
2196 ssize_t i = 0;
2197
2198 hmp_warn_acl();
2199
2200 if (!auth) {
2201 return;
2202 }
2203
2204 i = qauthz_list_delete_rule(auth, match);
2205 if (i >= 0) {
2206 monitor_printf(mon, "acl: removed rule at position %zu\n", i + 1);
2207 } else {
2208 monitor_printf(mon, "acl: no matching acl entry\n");
2209 }
2210 }
2211
2212 void qmp_getfd(const char *fdname, Error **errp)
2213 {
2214 mon_fd_t *monfd;
2215 int fd, tmp_fd;
2216
2217 fd = qemu_chr_fe_get_msgfd(&cur_mon->chr);
2218 if (fd == -1) {
2219 error_setg(errp, QERR_FD_NOT_SUPPLIED);
2220 return;
2221 }
2222
2223 if (qemu_isdigit(fdname[0])) {
2224 close(fd);
2225 error_setg(errp, QERR_INVALID_PARAMETER_VALUE, "fdname",
2226 "a name not starting with a digit");
2227 return;
2228 }
2229
2230 qemu_mutex_lock(&cur_mon->mon_lock);
2231 QLIST_FOREACH(monfd, &cur_mon->fds, next) {
2232 if (strcmp(monfd->name, fdname) != 0) {
2233 continue;
2234 }
2235
2236 tmp_fd = monfd->fd;
2237 monfd->fd = fd;
2238 qemu_mutex_unlock(&cur_mon->mon_lock);
2239 /* Make sure close() is outside critical section */
2240 close(tmp_fd);
2241 return;
2242 }
2243
2244 monfd = g_malloc0(sizeof(mon_fd_t));
2245 monfd->name = g_strdup(fdname);
2246 monfd->fd = fd;
2247
2248 QLIST_INSERT_HEAD(&cur_mon->fds, monfd, next);
2249 qemu_mutex_unlock(&cur_mon->mon_lock);
2250 }
2251
2252 void qmp_closefd(const char *fdname, Error **errp)
2253 {
2254 mon_fd_t *monfd;
2255 int tmp_fd;
2256
2257 qemu_mutex_lock(&cur_mon->mon_lock);
2258 QLIST_FOREACH(monfd, &cur_mon->fds, next) {
2259 if (strcmp(monfd->name, fdname) != 0) {
2260 continue;
2261 }
2262
2263 QLIST_REMOVE(monfd, next);
2264 tmp_fd = monfd->fd;
2265 g_free(monfd->name);
2266 g_free(monfd);
2267 qemu_mutex_unlock(&cur_mon->mon_lock);
2268 /* Make sure close() is outside critical section */
2269 close(tmp_fd);
2270 return;
2271 }
2272
2273 qemu_mutex_unlock(&cur_mon->mon_lock);
2274 error_setg(errp, QERR_FD_NOT_FOUND, fdname);
2275 }
2276
2277 int monitor_get_fd(Monitor *mon, const char *fdname, Error **errp)
2278 {
2279 mon_fd_t *monfd;
2280
2281 qemu_mutex_lock(&mon->mon_lock);
2282 QLIST_FOREACH(monfd, &mon->fds, next) {
2283 int fd;
2284
2285 if (strcmp(monfd->name, fdname) != 0) {
2286 continue;
2287 }
2288
2289 fd = monfd->fd;
2290
2291 /* caller takes ownership of fd */
2292 QLIST_REMOVE(monfd, next);
2293 g_free(monfd->name);
2294 g_free(monfd);
2295 qemu_mutex_unlock(&mon->mon_lock);
2296
2297 return fd;
2298 }
2299
2300 qemu_mutex_unlock(&mon->mon_lock);
2301 error_setg(errp, "File descriptor named '%s' has not been found", fdname);
2302 return -1;
2303 }
2304
2305 static void monitor_fdset_cleanup(MonFdset *mon_fdset)
2306 {
2307 MonFdsetFd *mon_fdset_fd;
2308 MonFdsetFd *mon_fdset_fd_next;
2309
2310 QLIST_FOREACH_SAFE(mon_fdset_fd, &mon_fdset->fds, next, mon_fdset_fd_next) {
2311 if ((mon_fdset_fd->removed ||
2312 (QLIST_EMPTY(&mon_fdset->dup_fds) && mon_refcount == 0)) &&
2313 runstate_is_running()) {
2314 close(mon_fdset_fd->fd);
2315 g_free(mon_fdset_fd->opaque);
2316 QLIST_REMOVE(mon_fdset_fd, next);
2317 g_free(mon_fdset_fd);
2318 }
2319 }
2320
2321 if (QLIST_EMPTY(&mon_fdset->fds) && QLIST_EMPTY(&mon_fdset->dup_fds)) {
2322 QLIST_REMOVE(mon_fdset, next);
2323 g_free(mon_fdset);
2324 }
2325 }
2326
2327 static void monitor_fdsets_cleanup(void)
2328 {
2329 MonFdset *mon_fdset;
2330 MonFdset *mon_fdset_next;
2331
2332 qemu_mutex_lock(&mon_fdsets_lock);
2333 QLIST_FOREACH_SAFE(mon_fdset, &mon_fdsets, next, mon_fdset_next) {
2334 monitor_fdset_cleanup(mon_fdset);
2335 }
2336 qemu_mutex_unlock(&mon_fdsets_lock);
2337 }
2338
2339 AddfdInfo *qmp_add_fd(bool has_fdset_id, int64_t fdset_id, bool has_opaque,
2340 const char *opaque, Error **errp)
2341 {
2342 int fd;
2343 Monitor *mon = cur_mon;
2344 AddfdInfo *fdinfo;
2345
2346 fd = qemu_chr_fe_get_msgfd(&mon->chr);
2347 if (fd == -1) {
2348 error_setg(errp, QERR_FD_NOT_SUPPLIED);
2349 goto error;
2350 }
2351
2352 fdinfo = monitor_fdset_add_fd(fd, has_fdset_id, fdset_id,
2353 has_opaque, opaque, errp);
2354 if (fdinfo) {
2355 return fdinfo;
2356 }
2357
2358 error:
2359 if (fd != -1) {
2360 close(fd);
2361 }
2362 return NULL;
2363 }
2364
2365 void qmp_remove_fd(int64_t fdset_id, bool has_fd, int64_t fd, Error **errp)
2366 {
2367 MonFdset *mon_fdset;
2368 MonFdsetFd *mon_fdset_fd;
2369 char fd_str[60];
2370
2371 qemu_mutex_lock(&mon_fdsets_lock);
2372 QLIST_FOREACH(mon_fdset, &mon_fdsets, next) {
2373 if (mon_fdset->id != fdset_id) {
2374 continue;
2375 }
2376 QLIST_FOREACH(mon_fdset_fd, &mon_fdset->fds, next) {
2377 if (has_fd) {
2378 if (mon_fdset_fd->fd != fd) {
2379 continue;
2380 }
2381 mon_fdset_fd->removed = true;
2382 break;
2383 } else {
2384 mon_fdset_fd->removed = true;
2385 }
2386 }
2387 if (has_fd && !mon_fdset_fd) {
2388 goto error;
2389 }
2390 monitor_fdset_cleanup(mon_fdset);
2391 qemu_mutex_unlock(&mon_fdsets_lock);
2392 return;
2393 }
2394
2395 error:
2396 qemu_mutex_unlock(&mon_fdsets_lock);
2397 if (has_fd) {
2398 snprintf(fd_str, sizeof(fd_str), "fdset-id:%" PRId64 ", fd:%" PRId64,
2399 fdset_id, fd);
2400 } else {
2401 snprintf(fd_str, sizeof(fd_str), "fdset-id:%" PRId64, fdset_id);
2402 }
2403 error_setg(errp, QERR_FD_NOT_FOUND, fd_str);
2404 }
2405
2406 FdsetInfoList *qmp_query_fdsets(Error **errp)
2407 {
2408 MonFdset *mon_fdset;
2409 MonFdsetFd *mon_fdset_fd;
2410 FdsetInfoList *fdset_list = NULL;
2411
2412 qemu_mutex_lock(&mon_fdsets_lock);
2413 QLIST_FOREACH(mon_fdset, &mon_fdsets, next) {
2414 FdsetInfoList *fdset_info = g_malloc0(sizeof(*fdset_info));
2415 FdsetFdInfoList *fdsetfd_list = NULL;
2416
2417 fdset_info->value = g_malloc0(sizeof(*fdset_info->value));
2418 fdset_info->value->fdset_id = mon_fdset->id;
2419
2420 QLIST_FOREACH(mon_fdset_fd, &mon_fdset->fds, next) {
2421 FdsetFdInfoList *fdsetfd_info;
2422
2423 fdsetfd_info = g_malloc0(sizeof(*fdsetfd_info));
2424 fdsetfd_info->value = g_malloc0(sizeof(*fdsetfd_info->value));
2425 fdsetfd_info->value->fd = mon_fdset_fd->fd;
2426 if (mon_fdset_fd->opaque) {
2427 fdsetfd_info->value->has_opaque = true;
2428 fdsetfd_info->value->opaque = g_strdup(mon_fdset_fd->opaque);
2429 } else {
2430 fdsetfd_info->value->has_opaque = false;
2431 }
2432
2433 fdsetfd_info->next = fdsetfd_list;
2434 fdsetfd_list = fdsetfd_info;
2435 }
2436
2437 fdset_info->value->fds = fdsetfd_list;
2438
2439 fdset_info->next = fdset_list;
2440 fdset_list = fdset_info;
2441 }
2442 qemu_mutex_unlock(&mon_fdsets_lock);
2443
2444 return fdset_list;
2445 }
2446
2447 AddfdInfo *monitor_fdset_add_fd(int fd, bool has_fdset_id, int64_t fdset_id,
2448 bool has_opaque, const char *opaque,
2449 Error **errp)
2450 {
2451 MonFdset *mon_fdset = NULL;
2452 MonFdsetFd *mon_fdset_fd;
2453 AddfdInfo *fdinfo;
2454
2455 qemu_mutex_lock(&mon_fdsets_lock);
2456 if (has_fdset_id) {
2457 QLIST_FOREACH(mon_fdset, &mon_fdsets, next) {
2458 /* Break if match found or match impossible due to ordering by ID */
2459 if (fdset_id <= mon_fdset->id) {
2460 if (fdset_id < mon_fdset->id) {
2461 mon_fdset = NULL;
2462 }
2463 break;
2464 }
2465 }
2466 }
2467
2468 if (mon_fdset == NULL) {
2469 int64_t fdset_id_prev = -1;
2470 MonFdset *mon_fdset_cur = QLIST_FIRST(&mon_fdsets);
2471
2472 if (has_fdset_id) {
2473 if (fdset_id < 0) {
2474 error_setg(errp, QERR_INVALID_PARAMETER_VALUE, "fdset-id",
2475 "a non-negative value");
2476 qemu_mutex_unlock(&mon_fdsets_lock);
2477 return NULL;
2478 }
2479 /* Use specified fdset ID */
2480 QLIST_FOREACH(mon_fdset, &mon_fdsets, next) {
2481 mon_fdset_cur = mon_fdset;
2482 if (fdset_id < mon_fdset_cur->id) {
2483 break;
2484 }
2485 }
2486 } else {
2487 /* Use first available fdset ID */
2488 QLIST_FOREACH(mon_fdset, &mon_fdsets, next) {
2489 mon_fdset_cur = mon_fdset;
2490 if (fdset_id_prev == mon_fdset_cur->id - 1) {
2491 fdset_id_prev = mon_fdset_cur->id;
2492 continue;
2493 }
2494 break;
2495 }
2496 }
2497
2498 mon_fdset = g_malloc0(sizeof(*mon_fdset));
2499 if (has_fdset_id) {
2500 mon_fdset->id = fdset_id;
2501 } else {
2502 mon_fdset->id = fdset_id_prev + 1;
2503 }
2504
2505 /* The fdset list is ordered by fdset ID */
2506 if (!mon_fdset_cur) {
2507 QLIST_INSERT_HEAD(&mon_fdsets, mon_fdset, next);
2508 } else if (mon_fdset->id < mon_fdset_cur->id) {
2509 QLIST_INSERT_BEFORE(mon_fdset_cur, mon_fdset, next);
2510 } else {
2511 QLIST_INSERT_AFTER(mon_fdset_cur, mon_fdset, next);
2512 }
2513 }
2514
2515 mon_fdset_fd = g_malloc0(sizeof(*mon_fdset_fd));
2516 mon_fdset_fd->fd = fd;
2517 mon_fdset_fd->removed = false;
2518 if (has_opaque) {
2519 mon_fdset_fd->opaque = g_strdup(opaque);
2520 }
2521 QLIST_INSERT_HEAD(&mon_fdset->fds, mon_fdset_fd, next);
2522
2523 fdinfo = g_malloc0(sizeof(*fdinfo));
2524 fdinfo->fdset_id = mon_fdset->id;
2525 fdinfo->fd = mon_fdset_fd->fd;
2526
2527 qemu_mutex_unlock(&mon_fdsets_lock);
2528 return fdinfo;
2529 }
2530
2531 int monitor_fdset_get_fd(int64_t fdset_id, int flags)
2532 {
2533 #ifdef _WIN32
2534 return -ENOENT;
2535 #else
2536 MonFdset *mon_fdset;
2537 MonFdsetFd *mon_fdset_fd;
2538 int mon_fd_flags;
2539 int ret;
2540
2541 qemu_mutex_lock(&mon_fdsets_lock);
2542 QLIST_FOREACH(mon_fdset, &mon_fdsets, next) {
2543 if (mon_fdset->id != fdset_id) {
2544 continue;
2545 }
2546 QLIST_FOREACH(mon_fdset_fd, &mon_fdset->fds, next) {
2547 mon_fd_flags = fcntl(mon_fdset_fd->fd, F_GETFL);
2548 if (mon_fd_flags == -1) {
2549 ret = -errno;
2550 goto out;
2551 }
2552
2553 if ((flags & O_ACCMODE) == (mon_fd_flags & O_ACCMODE)) {
2554 ret = mon_fdset_fd->fd;
2555 goto out;
2556 }
2557 }
2558 ret = -EACCES;
2559 goto out;
2560 }
2561 ret = -ENOENT;
2562
2563 out:
2564 qemu_mutex_unlock(&mon_fdsets_lock);
2565 return ret;
2566 #endif
2567 }
2568
2569 int monitor_fdset_dup_fd_add(int64_t fdset_id, int dup_fd)
2570 {
2571 MonFdset *mon_fdset;
2572 MonFdsetFd *mon_fdset_fd_dup;
2573
2574 qemu_mutex_lock(&mon_fdsets_lock);
2575 QLIST_FOREACH(mon_fdset, &mon_fdsets, next) {
2576 if (mon_fdset->id != fdset_id) {
2577 continue;
2578 }
2579 QLIST_FOREACH(mon_fdset_fd_dup, &mon_fdset->dup_fds, next) {
2580 if (mon_fdset_fd_dup->fd == dup_fd) {
2581 goto err;
2582 }
2583 }
2584 mon_fdset_fd_dup = g_malloc0(sizeof(*mon_fdset_fd_dup));
2585 mon_fdset_fd_dup->fd = dup_fd;
2586 QLIST_INSERT_HEAD(&mon_fdset->dup_fds, mon_fdset_fd_dup, next);
2587 qemu_mutex_unlock(&mon_fdsets_lock);
2588 return 0;
2589 }
2590
2591 err:
2592 qemu_mutex_unlock(&mon_fdsets_lock);
2593 return -1;
2594 }
2595
2596 static int monitor_fdset_dup_fd_find_remove(int dup_fd, bool remove)
2597 {
2598 MonFdset *mon_fdset;
2599 MonFdsetFd *mon_fdset_fd_dup;
2600
2601 qemu_mutex_lock(&mon_fdsets_lock);
2602 QLIST_FOREACH(mon_fdset, &mon_fdsets, next) {
2603 QLIST_FOREACH(mon_fdset_fd_dup, &mon_fdset->dup_fds, next) {
2604 if (mon_fdset_fd_dup->fd == dup_fd) {
2605 if (remove) {
2606 QLIST_REMOVE(mon_fdset_fd_dup, next);
2607 if (QLIST_EMPTY(&mon_fdset->dup_fds)) {
2608 monitor_fdset_cleanup(mon_fdset);
2609 }
2610 goto err;
2611 } else {
2612 qemu_mutex_unlock(&mon_fdsets_lock);
2613 return mon_fdset->id;
2614 }
2615 }
2616 }
2617 }
2618
2619 err:
2620 qemu_mutex_unlock(&mon_fdsets_lock);
2621 return -1;
2622 }
2623
2624 int monitor_fdset_dup_fd_find(int dup_fd)
2625 {
2626 return monitor_fdset_dup_fd_find_remove(dup_fd, false);
2627 }
2628
2629 void monitor_fdset_dup_fd_remove(int dup_fd)
2630 {
2631 monitor_fdset_dup_fd_find_remove(dup_fd, true);
2632 }
2633
2634 int monitor_fd_param(Monitor *mon, const char *fdname, Error **errp)
2635 {
2636 int fd;
2637 Error *local_err = NULL;
2638
2639 if (!qemu_isdigit(fdname[0]) && mon) {
2640 fd = monitor_get_fd(mon, fdname, &local_err);
2641 } else {
2642 fd = qemu_parse_fd(fdname);
2643 if (fd == -1) {
2644 error_setg(&local_err, "Invalid file descriptor number '%s'",
2645 fdname);
2646 }
2647 }
2648 if (local_err) {
2649 error_propagate(errp, local_err);
2650 assert(fd == -1);
2651 } else {
2652 assert(fd != -1);
2653 }
2654
2655 return fd;
2656 }
2657
2658 /* Please update hmp-commands.hx when adding or changing commands */
2659 static mon_cmd_t info_cmds[] = {
2660 #include "hmp-commands-info.h"
2661 { NULL, NULL, },
2662 };
2663
2664 /* mon_cmds and info_cmds would be sorted at runtime */
2665 static mon_cmd_t mon_cmds[] = {
2666 #include "hmp-commands.h"
2667 { NULL, NULL, },
2668 };
2669
2670 /*******************************************************************/
2671
2672 static const char *pch;
2673 static sigjmp_buf expr_env;
2674
2675
2676 static void GCC_FMT_ATTR(2, 3) QEMU_NORETURN
2677 expr_error(Monitor *mon, const char *fmt, ...)
2678 {
2679 va_list ap;
2680 va_start(ap, fmt);
2681 monitor_vprintf(mon, fmt, ap);
2682 monitor_printf(mon, "\n");
2683 va_end(ap);
2684 siglongjmp(expr_env, 1);
2685 }
2686
2687 /* return 0 if OK, -1 if not found */
2688 static int get_monitor_def(target_long *pval, const char *name)
2689 {
2690 const MonitorDef *md = target_monitor_defs();
2691 CPUState *cs = mon_get_cpu();
2692 void *ptr;
2693 uint64_t tmp = 0;
2694 int ret;
2695
2696 if (cs == NULL || md == NULL) {
2697 return -1;
2698 }
2699
2700 for(; md->name != NULL; md++) {
2701 if (compare_cmd(name, md->name)) {
2702 if (md->get_value) {
2703 *pval = md->get_value(md, md->offset);
2704 } else {
2705 CPUArchState *env = mon_get_cpu_env();
2706 ptr = (uint8_t *)env + md->offset;
2707 switch(md->type) {
2708 case MD_I32:
2709 *pval = *(int32_t *)ptr;
2710 break;
2711 case MD_TLONG:
2712 *pval = *(target_long *)ptr;
2713 break;
2714 default:
2715 *pval = 0;
2716 break;
2717 }
2718 }
2719 return 0;
2720 }
2721 }
2722
2723 ret = target_get_monitor_def(cs, name, &tmp);
2724 if (!ret) {
2725 *pval = (target_long) tmp;
2726 }
2727
2728 return ret;
2729 }
2730
2731 static void next(void)
2732 {
2733 if (*pch != '\0') {
2734 pch++;
2735 while (qemu_isspace(*pch))
2736 pch++;
2737 }
2738 }
2739
2740 static int64_t expr_sum(Monitor *mon);
2741
2742 static int64_t expr_unary(Monitor *mon)
2743 {
2744 int64_t n;
2745 char *p;
2746 int ret;
2747
2748 switch(*pch) {
2749 case '+':
2750 next();
2751 n = expr_unary(mon);
2752 break;
2753 case '-':
2754 next();
2755 n = -expr_unary(mon);
2756 break;
2757 case '~':
2758 next();
2759 n = ~expr_unary(mon);
2760 break;
2761 case '(':
2762 next();
2763 n = expr_sum(mon);
2764 if (*pch != ')') {
2765 expr_error(mon, "')' expected");
2766 }
2767 next();
2768 break;
2769 case '\'':
2770 pch++;
2771 if (*pch == '\0')
2772 expr_error(mon, "character constant expected");
2773 n = *pch;
2774 pch++;
2775 if (*pch != '\'')
2776 expr_error(mon, "missing terminating \' character");
2777 next();
2778 break;
2779 case '$':
2780 {
2781 char buf[128], *q;
2782 target_long reg=0;
2783
2784 pch++;
2785 q = buf;
2786 while ((*pch >= 'a' && *pch <= 'z') ||
2787 (*pch >= 'A' && *pch <= 'Z') ||
2788 (*pch >= '0' && *pch <= '9') ||
2789 *pch == '_' || *pch == '.') {
2790 if ((q - buf) < sizeof(buf) - 1)
2791 *q++ = *pch;
2792 pch++;
2793 }
2794 while (qemu_isspace(*pch))
2795 pch++;
2796 *q = 0;
2797 ret = get_monitor_def(&reg, buf);
2798 if (ret < 0)
2799 expr_error(mon, "unknown register");
2800 n = reg;
2801 }
2802 break;
2803 case '\0':
2804 expr_error(mon, "unexpected end of expression");
2805 n = 0;
2806 break;
2807 default:
2808 errno = 0;
2809 n = strtoull(pch, &p, 0);
2810 if (errno == ERANGE) {
2811 expr_error(mon, "number too large");
2812 }
2813 if (pch == p) {
2814 expr_error(mon, "invalid char '%c' in expression", *p);
2815 }
2816 pch = p;
2817 while (qemu_isspace(*pch))
2818 pch++;
2819 break;
2820 }
2821 return n;
2822 }
2823
2824
2825 static int64_t expr_prod(Monitor *mon)
2826 {
2827 int64_t val, val2;
2828 int op;
2829
2830 val = expr_unary(mon);
2831 for(;;) {
2832 op = *pch;
2833 if (op != '*' && op != '/' && op != '%')
2834 break;
2835 next();
2836 val2 = expr_unary(mon);
2837 switch(op) {
2838 default:
2839 case '*':
2840 val *= val2;
2841 break;
2842 case '/':
2843 case '%':
2844 if (val2 == 0)
2845 expr_error(mon, "division by zero");
2846 if (op == '/')
2847 val /= val2;
2848 else
2849 val %= val2;
2850 break;
2851 }
2852 }
2853 return val;
2854 }
2855
2856 static int64_t expr_logic(Monitor *mon)
2857 {
2858 int64_t val, val2;
2859 int op;
2860
2861 val = expr_prod(mon);
2862 for(;;) {
2863 op = *pch;
2864 if (op != '&' && op != '|' && op != '^')
2865 break;
2866 next();
2867 val2 = expr_prod(mon);
2868 switch(op) {
2869 default:
2870 case '&':
2871 val &= val2;
2872 break;
2873 case '|':
2874 val |= val2;
2875 break;
2876 case '^':
2877 val ^= val2;
2878 break;
2879 }
2880 }
2881 return val;
2882 }
2883
2884 static int64_t expr_sum(Monitor *mon)
2885 {
2886 int64_t val, val2;
2887 int op;
2888
2889 val = expr_logic(mon);
2890 for(;;) {
2891 op = *pch;
2892 if (op != '+' && op != '-')
2893 break;
2894 next();
2895 val2 = expr_logic(mon);
2896 if (op == '+')
2897 val += val2;
2898 else
2899 val -= val2;
2900 }
2901 return val;
2902 }
2903
2904 static int get_expr(Monitor *mon, int64_t *pval, const char **pp)
2905 {
2906 pch = *pp;
2907 if (sigsetjmp(expr_env, 0)) {
2908 *pp = pch;
2909 return -1;
2910 }
2911 while (qemu_isspace(*pch))
2912 pch++;
2913 *pval = expr_sum(mon);
2914 *pp = pch;
2915 return 0;
2916 }
2917
2918 static int get_double(Monitor *mon, double *pval, const char **pp)
2919 {
2920 const char *p = *pp;
2921 char *tailp;
2922 double d;
2923
2924 d = strtod(p, &tailp);
2925 if (tailp == p) {
2926 monitor_printf(mon, "Number expected\n");
2927 return -1;
2928 }
2929 if (d != d || d - d != 0) {
2930 /* NaN or infinity */
2931 monitor_printf(mon, "Bad number\n");
2932 return -1;
2933 }
2934 *pval = d;
2935 *pp = tailp;
2936 return 0;
2937 }
2938
2939 /*
2940 * Store the command-name in cmdname, and return a pointer to
2941 * the remaining of the command string.
2942 */
2943 static const char *get_command_name(const char *cmdline,
2944 char *cmdname, size_t nlen)
2945 {
2946 size_t len;
2947 const char *p, *pstart;
2948
2949 p = cmdline;
2950 while (qemu_isspace(*p))
2951 p++;
2952 if (*p == '\0')
2953 return NULL;
2954 pstart = p;
2955 while (*p != '\0' && *p != '/' && !qemu_isspace(*p))
2956 p++;
2957 len = p - pstart;
2958 if (len > nlen - 1)
2959 len = nlen - 1;
2960 memcpy(cmdname, pstart, len);
2961 cmdname[len] = '\0';
2962 return p;
2963 }
2964
2965 /**
2966 * Read key of 'type' into 'key' and return the current
2967 * 'type' pointer.
2968 */
2969 static char *key_get_info(const char *type, char **key)
2970 {
2971 size_t len;
2972 char *p, *str;
2973
2974 if (*type == ',')
2975 type++;
2976
2977 p = strchr(type, ':');
2978 if (!p) {
2979 *key = NULL;
2980 return NULL;
2981 }
2982 len = p - type;
2983
2984 str = g_malloc(len + 1);
2985 memcpy(str, type, len);
2986 str[len] = '\0';
2987
2988 *key = str;
2989 return ++p;
2990 }
2991
2992 static int default_fmt_format = 'x';
2993 static int default_fmt_size = 4;
2994
2995 static int is_valid_option(const char *c, const char *typestr)
2996 {
2997 char option[3];
2998
2999 option[0] = '-';
3000 option[1] = *c;
3001 option[2] = '\0';
3002
3003 typestr = strstr(typestr, option);
3004 return (typestr != NULL);
3005 }
3006
3007 static const mon_cmd_t *search_dispatch_table(const mon_cmd_t *disp_table,
3008 const char *cmdname)
3009 {
3010 const mon_cmd_t *cmd;
3011
3012 for (cmd = disp_table; cmd->name != NULL; cmd++) {
3013 if (compare_cmd(cmdname, cmd->name)) {
3014 return cmd;
3015 }
3016 }
3017
3018 return NULL;
3019 }
3020
3021 /*
3022 * Parse command name from @cmdp according to command table @table.
3023 * If blank, return NULL.
3024 * Else, if no valid command can be found, report to @mon, and return
3025 * NULL.
3026 * Else, change @cmdp to point right behind the name, and return its
3027 * command table entry.
3028 * Do not assume the return value points into @table! It doesn't when
3029 * the command is found in a sub-command table.
3030 */
3031 static const mon_cmd_t *monitor_parse_command(Monitor *mon,
3032 const char *cmdp_start,
3033 const char **cmdp,
3034 mon_cmd_t *table)
3035 {
3036 const char *p;
3037 const mon_cmd_t *cmd;
3038 char cmdname[256];
3039
3040 /* extract the command name */
3041 p = get_command_name(*cmdp, cmdname, sizeof(cmdname));
3042 if (!p)
3043 return NULL;
3044
3045 cmd = search_dispatch_table(table, cmdname);
3046 if (!cmd) {
3047 monitor_printf(mon, "unknown command: '%.*s'\n",
3048 (int)(p - cmdp_start), cmdp_start);
3049 return NULL;
3050 }
3051 if (runstate_check(RUN_STATE_PRECONFIG) && !cmd_can_preconfig(cmd)) {
3052 monitor_printf(mon, "Command '%.*s' not available with -preconfig "
3053 "until after exit_preconfig.\n",
3054 (int)(p - cmdp_start), cmdp_start);
3055 return NULL;
3056 }
3057
3058 /* filter out following useless space */
3059 while (qemu_isspace(*p)) {
3060 p++;
3061 }
3062
3063 *cmdp = p;
3064 /* search sub command */
3065 if (cmd->sub_table != NULL && *p != '\0') {
3066 return monitor_parse_command(mon, cmdp_start, cmdp, cmd->sub_table);
3067 }
3068
3069 return cmd;
3070 }
3071
3072 /*
3073 * Parse arguments for @cmd.
3074 * If it can't be parsed, report to @mon, and return NULL.
3075 * Else, insert command arguments into a QDict, and return it.
3076 * Note: On success, caller has to free the QDict structure.
3077 */
3078
3079 static QDict *monitor_parse_arguments(Monitor *mon,
3080 const char **endp,
3081 const mon_cmd_t *cmd)
3082 {
3083 const char *typestr;
3084 char *key;
3085 int c;
3086 const char *p = *endp;
3087 char buf[1024];
3088 QDict *qdict = qdict_new();
3089
3090 /* parse the parameters */
3091 typestr = cmd->args_type;
3092 for(;;) {
3093 typestr = key_get_info(typestr, &key);
3094 if (!typestr)
3095 break;
3096 c = *typestr;
3097 typestr++;
3098 switch(c) {
3099 case 'F':
3100 case 'B':
3101 case 's':
3102 {
3103 int ret;
3104
3105 while (qemu_isspace(*p))
3106 p++;
3107 if (*typestr == '?') {
3108 typestr++;
3109 if (*p == '\0') {
3110 /* no optional string: NULL argument */
3111 break;
3112 }
3113 }
3114 ret = get_str(buf, sizeof(buf), &p);
3115 if (ret < 0) {
3116 switch(c) {
3117 case 'F':
3118 monitor_printf(mon, "%s: filename expected\n",
3119 cmd->name);
3120 break;
3121 case 'B':
3122 monitor_printf(mon, "%s: block device name expected\n",
3123 cmd->name);
3124 break;
3125 default:
3126 monitor_printf(mon, "%s: string expected\n", cmd->name);
3127 break;
3128 }
3129 goto fail;
3130 }
3131 qdict_put_str(qdict, key, buf);
3132 }
3133 break;
3134 case 'O':
3135 {
3136 QemuOptsList *opts_list;
3137 QemuOpts *opts;
3138
3139 opts_list = qemu_find_opts(key);
3140 if (!opts_list || opts_list->desc->name) {
3141 goto bad_type;
3142 }
3143 while (qemu_isspace(*p)) {
3144 p++;
3145 }
3146 if (!*p)
3147 break;
3148 if (get_str(buf, sizeof(buf), &p) < 0) {
3149 goto fail;
3150 }
3151 opts = qemu_opts_parse_noisily(opts_list, buf, true);
3152 if (!opts) {
3153 goto fail;
3154 }
3155 qemu_opts_to_qdict(opts, qdict);
3156 qemu_opts_del(opts);
3157 }
3158 break;
3159 case '/':
3160 {
3161 int count, format, size;
3162
3163 while (qemu_isspace(*p))
3164 p++;
3165 if (*p == '/') {
3166 /* format found */
3167 p++;
3168 count = 1;
3169 if (qemu_isdigit(*p)) {
3170 count = 0;
3171 while (qemu_isdigit(*p)) {
3172 count = count * 10 + (*p - '0');
3173 p++;
3174 }
3175 }
3176 size = -1;
3177 format = -1;
3178 for(;;) {
3179 switch(*p) {
3180 case 'o':
3181 case 'd':
3182 case 'u':
3183 case 'x':
3184 case 'i':
3185 case 'c':
3186 format = *p++;
3187 break;
3188 case 'b':
3189 size = 1;
3190 p++;
3191 break;
3192 case 'h':
3193 size = 2;
3194 p++;
3195 break;
3196 case 'w':
3197 size = 4;
3198 p++;
3199 break;
3200 case 'g':
3201 case 'L':
3202 size = 8;
3203 p++;
3204 break;
3205 default:
3206 goto next;
3207 }
3208 }
3209 next:
3210 if (*p != '\0' && !qemu_isspace(*p)) {
3211 monitor_printf(mon, "invalid char in format: '%c'\n",
3212 *p);
3213 goto fail;
3214 }
3215 if (format < 0)
3216 format = default_fmt_format;
3217 if (format != 'i') {
3218 /* for 'i', not specifying a size gives -1 as size */
3219 if (size < 0)
3220 size = default_fmt_size;
3221 default_fmt_size = size;
3222 }
3223 default_fmt_format = format;
3224 } else {
3225 count = 1;
3226 format = default_fmt_format;
3227 if (format != 'i') {
3228 size = default_fmt_size;
3229 } else {
3230 size = -1;
3231 }
3232 }
3233 qdict_put_int(qdict, "count", count);
3234 qdict_put_int(qdict, "format", format);
3235 qdict_put_int(qdict, "size", size);
3236 }
3237 break;
3238 case 'i':
3239 case 'l':
3240 case 'M':
3241 {
3242 int64_t val;
3243
3244 while (qemu_isspace(*p))
3245 p++;
3246 if (*typestr == '?' || *typestr == '.') {
3247 if (*typestr == '?') {
3248 if (*p == '\0') {
3249 typestr++;
3250 break;
3251 }
3252 } else {
3253 if (*p == '.') {
3254 p++;
3255 while (qemu_isspace(*p))
3256 p++;
3257 } else {
3258 typestr++;
3259 break;
3260 }
3261 }
3262 typestr++;
3263 }
3264 if (get_expr(mon, &val, &p))
3265 goto fail;
3266 /* Check if 'i' is greater than 32-bit */
3267 if ((c == 'i') && ((val >> 32) & 0xffffffff)) {
3268 monitor_printf(mon, "\'%s\' has failed: ", cmd->name);
3269 monitor_printf(mon, "integer is for 32-bit values\n");
3270 goto fail;
3271 } else if (c == 'M') {
3272 if (val < 0) {
3273 monitor_printf(mon, "enter a positive value\n");
3274 goto fail;
3275 }
3276 val *= MiB;
3277 }
3278 qdict_put_int(qdict, key, val);
3279 }
3280 break;
3281 case 'o':
3282 {
3283 int ret;
3284 uint64_t val;
3285 const char *end;
3286
3287 while (qemu_isspace(*p)) {
3288 p++;
3289 }
3290 if (*typestr == '?') {
3291 typestr++;
3292 if (*p == '\0') {
3293 break;
3294 }
3295 }
3296 ret = qemu_strtosz_MiB(p, &end, &val);
3297 if (ret < 0 || val > INT64_MAX) {
3298 monitor_printf(mon, "invalid size\n");
3299 goto fail;
3300 }
3301 qdict_put_int(qdict, key, val);
3302 p = end;
3303 }
3304 break;
3305 case 'T':
3306 {
3307 double val;
3308
3309 while (qemu_isspace(*p))
3310 p++;
3311 if (*typestr == '?') {
3312 typestr++;
3313 if (*p == '\0') {
3314 break;
3315 }
3316 }
3317 if (get_double(mon, &val, &p) < 0) {
3318 goto fail;
3319 }
3320 if (p[0] && p[1] == 's') {
3321 switch (*p) {
3322 case 'm':
3323 val /= 1e3; p += 2; break;
3324 case 'u':
3325 val /= 1e6; p += 2; break;
3326 case 'n':
3327 val /= 1e9; p += 2; break;
3328 }
3329 }
3330 if (*p && !qemu_isspace(*p)) {
3331 monitor_printf(mon, "Unknown unit suffix\n");
3332 goto fail;
3333 }
3334 qdict_put(qdict, key, qnum_from_double(val));
3335 }
3336 break;
3337 case 'b':
3338 {
3339 const char *beg;
3340 bool val;
3341
3342 while (qemu_isspace(*p)) {
3343 p++;
3344 }
3345 beg = p;
3346 while (qemu_isgraph(*p)) {
3347 p++;
3348 }
3349 if (p - beg == 2 && !memcmp(beg, "on", p - beg)) {
3350 val = true;
3351 } else if (p - beg == 3 && !memcmp(beg, "off", p - beg)) {
3352 val = false;
3353 } else {
3354 monitor_printf(mon, "Expected 'on' or 'off'\n");
3355 goto fail;
3356 }
3357 qdict_put_bool(qdict, key, val);
3358 }
3359 break;
3360 case '-':
3361 {
3362 const char *tmp = p;
3363 int skip_key = 0;
3364 /* option */
3365
3366 c = *typestr++;
3367 if (c == '\0')
3368 goto bad_type;
3369 while (qemu_isspace(*p))
3370 p++;
3371 if (*p == '-') {
3372 p++;
3373 if(c != *p) {
3374 if(!is_valid_option(p, typestr)) {
3375
3376 monitor_printf(mon, "%s: unsupported option -%c\n",
3377 cmd->name, *p);
3378 goto fail;
3379 } else {
3380 skip_key = 1;
3381 }
3382 }
3383 if(skip_key) {
3384 p = tmp;
3385 } else {
3386 /* has option */
3387 p++;
3388 qdict_put_bool(qdict, key, true);
3389 }
3390 }
3391 }
3392 break;
3393 case 'S':
3394 {
3395 /* package all remaining string */
3396 int len;
3397
3398 while (qemu_isspace(*p)) {
3399 p++;
3400 }
3401 if (*typestr == '?') {
3402 typestr++;
3403 if (*p == '\0') {
3404 /* no remaining string: NULL argument */
3405 break;
3406 }
3407 }
3408 len = strlen(p);
3409 if (len <= 0) {
3410 monitor_printf(mon, "%s: string expected\n",
3411 cmd->name);
3412 goto fail;
3413 }
3414 qdict_put_str(qdict, key, p);
3415 p += len;
3416 }
3417 break;
3418 default:
3419 bad_type:
3420 monitor_printf(mon, "%s: unknown type '%c'\n", cmd->name, c);
3421 goto fail;
3422 }
3423 g_free(key);
3424 key = NULL;
3425 }
3426 /* check that all arguments were parsed */
3427 while (qemu_isspace(*p))
3428 p++;
3429 if (*p != '\0') {
3430 monitor_printf(mon, "%s: extraneous characters at the end of line\n",
3431 cmd->name);
3432 goto fail;
3433 }
3434
3435 return qdict;
3436
3437 fail:
3438 qobject_unref(qdict);
3439 g_free(key);
3440 return NULL;
3441 }
3442
3443 static void handle_hmp_command(Monitor *mon, const char *cmdline)
3444 {
3445 QDict *qdict;
3446 const mon_cmd_t *cmd;
3447 const char *cmd_start = cmdline;
3448
3449 trace_handle_hmp_command(mon, cmdline);
3450
3451 cmd = monitor_parse_command(mon, cmdline, &cmdline, mon->cmd_table);
3452 if (!cmd) {
3453 return;
3454 }
3455
3456 qdict = monitor_parse_arguments(mon, &cmdline, cmd);
3457 if (!qdict) {
3458 while (cmdline > cmd_start && qemu_isspace(cmdline[-1])) {
3459 cmdline--;
3460 }
3461 monitor_printf(mon, "Try \"help %.*s\" for more information\n",
3462 (int)(cmdline - cmd_start), cmd_start);
3463 return;
3464 }
3465
3466 cmd->cmd(mon, qdict);
3467 qobject_unref(qdict);
3468 }
3469
3470 static void cmd_completion(Monitor *mon, const char *name, const char *list)
3471 {
3472 const char *p, *pstart;
3473 char cmd[128];
3474 int len;
3475
3476 p = list;
3477 for(;;) {
3478 pstart = p;
3479 p = qemu_strchrnul(p, '|');
3480 len = p - pstart;
3481 if (len > sizeof(cmd) - 2)
3482 len = sizeof(cmd) - 2;
3483 memcpy(cmd, pstart, len);
3484 cmd[len] = '\0';
3485 if (name[0] == '\0' || !strncmp(name, cmd, strlen(name))) {
3486 readline_add_completion(mon->rs, cmd);
3487 }
3488 if (*p == '\0')
3489 break;
3490 p++;
3491 }
3492 }
3493
3494 static void file_completion(Monitor *mon, const char *input)
3495 {
3496 DIR *ffs;
3497 struct dirent *d;
3498 char path[1024];
3499 char file[1024], file_prefix[1024];
3500 int input_path_len;
3501 const char *p;
3502
3503 p = strrchr(input, '/');
3504 if (!p) {
3505 input_path_len = 0;
3506 pstrcpy(file_prefix, sizeof(file_prefix), input);
3507 pstrcpy(path, sizeof(path), ".");
3508 } else {
3509 input_path_len = p - input + 1;
3510 memcpy(path, input, input_path_len);
3511 if (input_path_len > sizeof(path) - 1)
3512 input_path_len = sizeof(path) - 1;
3513 path[input_path_len] = '\0';
3514 pstrcpy(file_prefix, sizeof(file_prefix), p + 1);
3515 }
3516
3517 ffs = opendir(path);
3518 if (!ffs)
3519 return;
3520 for(;;) {
3521 struct stat sb;
3522 d = readdir(ffs);
3523 if (!d)
3524 break;
3525
3526 if (strcmp(d->d_name, ".") == 0 || strcmp(d->d_name, "..") == 0) {
3527 continue;
3528 }
3529
3530 if (strstart(d->d_name, file_prefix, NULL)) {
3531 memcpy(file, input, input_path_len);
3532 if (input_path_len < sizeof(file))
3533 pstrcpy(file + input_path_len, sizeof(file) - input_path_len,
3534 d->d_name);
3535 /* stat the file to find out if it's a directory.
3536 * In that case add a slash to speed up typing long paths
3537 */
3538 if (stat(file, &sb) == 0 && S_ISDIR(sb.st_mode)) {
3539 pstrcat(file, sizeof(file), "/");
3540 }
3541 readline_add_completion(mon->rs, file);
3542 }
3543 }
3544 closedir(ffs);
3545 }
3546
3547 static const char *next_arg_type(const char *typestr)
3548 {
3549 const char *p = strchr(typestr, ':');
3550 return (p != NULL ? ++p : typestr);
3551 }
3552
3553 static void add_completion_option(ReadLineState *rs, const char *str,
3554 const char *option)
3555 {
3556 if (!str || !option) {
3557 return;
3558 }
3559 if (!strncmp(option, str, strlen(str))) {
3560 readline_add_completion(rs, option);
3561 }
3562 }
3563
3564 void chardev_add_completion(ReadLineState *rs, int nb_args, const char *str)
3565 {
3566 size_t len;
3567 ChardevBackendInfoList *list, *start;
3568
3569 if (nb_args != 2) {
3570 return;
3571 }
3572 len = strlen(str);
3573 readline_set_completion_index(rs, len);
3574
3575 start = list = qmp_query_chardev_backends(NULL);
3576 while (list) {
3577 const char *chr_name = list->value->name;
3578
3579 if (!strncmp(chr_name, str, len)) {
3580 readline_add_completion(rs, chr_name);
3581 }
3582 list = list->next;
3583 }
3584 qapi_free_ChardevBackendInfoList(start);
3585 }
3586
3587 void netdev_add_completion(ReadLineState *rs, int nb_args, const char *str)
3588 {
3589 size_t len;
3590 int i;
3591
3592 if (nb_args != 2) {
3593 return;
3594 }
3595 len = strlen(str);
3596 readline_set_completion_index(rs, len);
3597 for (i = 0; i < NET_CLIENT_DRIVER__MAX; i++) {
3598 add_completion_option(rs, str, NetClientDriver_str(i));
3599 }
3600 }
3601
3602 void device_add_completion(ReadLineState *rs, int nb_args, const char *str)
3603 {
3604 GSList *list, *elt;
3605 size_t len;
3606
3607 if (nb_args != 2) {
3608 return;
3609 }
3610
3611 len = strlen(str);
3612 readline_set_completion_index(rs, len);
3613 list = elt = object_class_get_list(TYPE_DEVICE, false);
3614 while (elt) {
3615 const char *name;
3616 DeviceClass *dc = OBJECT_CLASS_CHECK(DeviceClass, elt->data,
3617 TYPE_DEVICE);
3618 name = object_class_get_name(OBJECT_CLASS(dc));
3619
3620 if (dc->user_creatable
3621 && !strncmp(name, str, len)) {
3622 readline_add_completion(rs, name);
3623 }
3624 elt = elt->next;
3625 }
3626 g_slist_free(list);
3627 }
3628
3629 void object_add_completion(ReadLineState *rs, int nb_args, const char *str)
3630 {
3631 GSList *list, *elt;
3632 size_t len;
3633
3634 if (nb_args != 2) {
3635 return;
3636 }
3637
3638 len = strlen(str);
3639 readline_set_completion_index(rs, len);
3640 list = elt = object_class_get_list(TYPE_USER_CREATABLE, false);
3641 while (elt) {
3642 const char *name;
3643
3644 name = object_class_get_name(OBJECT_CLASS(elt->data));
3645 if (!strncmp(name, str, len) && strcmp(name, TYPE_USER_CREATABLE)) {
3646 readline_add_completion(rs, name);
3647 }
3648 elt = elt->next;
3649 }
3650 g_slist_free(list);
3651 }
3652
3653 static void peripheral_device_del_completion(ReadLineState *rs,
3654 const char *str, size_t len)
3655 {
3656 Object *peripheral = container_get(qdev_get_machine(), "/peripheral");
3657 GSList *list, *item;
3658
3659 list = qdev_build_hotpluggable_device_list(peripheral);
3660 if (!list) {
3661 return;
3662 }
3663
3664 for (item = list; item; item = g_slist_next(item)) {
3665 DeviceState *dev = item->data;
3666
3667 if (dev->id && !strncmp(str, dev->id, len)) {
3668 readline_add_completion(rs, dev->id);
3669 }
3670 }
3671
3672 g_slist_free(list);
3673 }
3674
3675 void chardev_remove_completion(ReadLineState *rs, int nb_args, const char *str)
3676 {
3677 size_t len;
3678 ChardevInfoList *list, *start;
3679
3680 if (nb_args != 2) {
3681 return;
3682 }
3683 len = strlen(str);
3684 readline_set_completion_index(rs, len);
3685
3686 start = list = qmp_query_chardev(NULL);
3687 while (list) {
3688 ChardevInfo *chr = list->value;
3689
3690 if (!strncmp(chr->label, str, len)) {
3691 readline_add_completion(rs, chr->label);
3692 }
3693 list = list->next;
3694 }
3695 qapi_free_ChardevInfoList(start);
3696 }
3697
3698 static void ringbuf_completion(ReadLineState *rs, const char *str)
3699 {
3700 size_t len;
3701 ChardevInfoList *list, *start;
3702
3703 len = strlen(str);
3704 readline_set_completion_index(rs, len);
3705
3706 start = list = qmp_query_chardev(NULL);
3707 while (list) {
3708 ChardevInfo *chr_info = list->value;
3709
3710 if (!strncmp(chr_info->label, str, len)) {
3711 Chardev *chr = qemu_chr_find(chr_info->label);
3712 if (chr && CHARDEV_IS_RINGBUF(chr)) {
3713 readline_add_completion(rs, chr_info->label);
3714 }
3715 }
3716 list = list->next;
3717 }
3718 qapi_free_ChardevInfoList(start);
3719 }
3720
3721 void ringbuf_write_completion(ReadLineState *rs, int nb_args, const char *str)
3722 {
3723 if (nb_args != 2) {
3724 return;
3725 }
3726 ringbuf_completion(rs, str);
3727 }
3728
3729 void device_del_completion(ReadLineState *rs, int nb_args, const char *str)
3730 {
3731 size_t len;
3732
3733 if (nb_args != 2) {
3734 return;
3735 }
3736
3737 len = strlen(str);
3738 readline_set_completion_index(rs, len);
3739 peripheral_device_del_completion(rs, str, len);
3740 }
3741
3742 void object_del_completion(ReadLineState *rs, int nb_args, const char *str)
3743 {
3744 ObjectPropertyInfoList *list, *start;
3745 size_t len;
3746
3747 if (nb_args != 2) {
3748 return;
3749 }
3750 len = strlen(str);
3751 readline_set_completion_index(rs, len);
3752
3753 start = list = qmp_qom_list("/objects", NULL);
3754 while (list) {
3755 ObjectPropertyInfo *info = list->value;
3756
3757 if (!strncmp(info->type, "child<", 5)
3758 && !strncmp(info->name, str, len)) {
3759 readline_add_completion(rs, info->name);
3760 }
3761 list = list->next;
3762 }
3763 qapi_free_ObjectPropertyInfoList(start);
3764 }
3765
3766 void sendkey_completion(ReadLineState *rs, int nb_args, const char *str)
3767 {
3768 int i;
3769 char *sep;
3770 size_t len;
3771
3772 if (nb_args != 2) {
3773 return;
3774 }
3775 sep = strrchr(str, '-');
3776 if (sep) {
3777 str = sep + 1;
3778 }
3779 len = strlen(str);
3780 readline_set_completion_index(rs, len);
3781 for (i = 0; i < Q_KEY_CODE__MAX; i++) {
3782 if (!strncmp(str, QKeyCode_str(i), len)) {
3783 readline_add_completion(rs, QKeyCode_str(i));
3784 }
3785 }
3786 }
3787
3788 void set_link_completion(ReadLineState *rs, int nb_args, const char *str)
3789 {
3790 size_t len;
3791
3792 len = strlen(str);
3793 readline_set_completion_index(rs, len);
3794 if (nb_args == 2) {
3795 NetClientState *ncs[MAX_QUEUE_NUM];
3796 int count, i;
3797 count = qemu_find_net_clients_except(NULL, ncs,
3798 NET_CLIENT_DRIVER_NONE,
3799 MAX_QUEUE_NUM);
3800 for (i = 0; i < MIN(count, MAX_QUEUE_NUM); i++) {
3801 const char *name = ncs[i]->name;
3802 if (!strncmp(str, name, len)) {
3803 readline_add_completion(rs, name);
3804 }
3805 }
3806 } else if (nb_args == 3) {
3807 add_completion_option(rs, str, "on");
3808 add_completion_option(rs, str, "off");
3809 }
3810 }
3811
3812 void netdev_del_completion(ReadLineState *rs, int nb_args, const char *str)
3813 {
3814 int len, count, i;
3815 NetClientState *ncs[MAX_QUEUE_NUM];
3816
3817 if (nb_args != 2) {
3818 return;
3819 }
3820
3821 len = strlen(str);
3822 readline_set_completion_index(rs, len);
3823 count = qemu_find_net_clients_except(NULL, ncs, NET_CLIENT_DRIVER_NIC,
3824 MAX_QUEUE_NUM);
3825 for (i = 0; i < MIN(count, MAX_QUEUE_NUM); i++) {
3826 QemuOpts *opts;
3827 const char *name = ncs[i]->name;
3828 if (strncmp(str, name, len)) {
3829 continue;
3830 }
3831 opts = qemu_opts_find(qemu_find_opts_err("netdev", NULL), name);
3832 if (opts) {
3833 readline_add_completion(rs, name);
3834 }
3835 }
3836 }
3837
3838 void info_trace_events_completion(ReadLineState *rs, int nb_args, const char *str)
3839 {
3840 size_t len;
3841
3842 len = strlen(str);
3843 readline_set_completion_index(rs, len);
3844 if (nb_args == 2) {
3845 TraceEventIter iter;
3846 TraceEvent *ev;
3847 char *pattern = g_strdup_printf("%s*", str);
3848 trace_event_iter_init(&iter, pattern);
3849 while ((ev = trace_event_iter_next(&iter)) != NULL) {
3850 readline_add_completion(rs, trace_event_get_name(ev));
3851 }
3852 g_free(pattern);
3853 }
3854 }
3855
3856 void trace_event_completion(ReadLineState *rs, int nb_args, const char *str)
3857 {
3858 size_t len;
3859
3860 len = strlen(str);
3861 readline_set_completion_index(rs, len);
3862 if (nb_args == 2) {
3863 TraceEventIter iter;
3864 TraceEvent *ev;
3865 char *pattern = g_strdup_printf("%s*", str);
3866 trace_event_iter_init(&iter, pattern);
3867 while ((ev = trace_event_iter_next(&iter)) != NULL) {
3868 readline_add_completion(rs, trace_event_get_name(ev));
3869 }
3870 g_free(pattern);
3871 } else if (nb_args == 3) {
3872 add_completion_option(rs, str, "on");
3873 add_completion_option(rs, str, "off");
3874 }
3875 }
3876
3877 void watchdog_action_completion(ReadLineState *rs, int nb_args, const char *str)
3878 {
3879 int i;
3880
3881 if (nb_args != 2) {
3882 return;
3883 }
3884 readline_set_completion_index(rs, strlen(str));
3885 for (i = 0; i < WATCHDOG_ACTION__MAX; i++) {
3886 add_completion_option(rs, str, WatchdogAction_str(i));
3887 }
3888 }
3889
3890 void migrate_set_capability_completion(ReadLineState *rs, int nb_args,
3891 const char *str)
3892 {
3893 size_t len;
3894
3895 len = strlen(str);
3896 readline_set_completion_index(rs, len);
3897 if (nb_args == 2) {
3898 int i;
3899 for (i = 0; i < MIGRATION_CAPABILITY__MAX; i++) {
3900 const char *name = MigrationCapability_str(i);
3901 if (!strncmp(str, name, len)) {
3902 readline_add_completion(rs, name);
3903 }
3904 }
3905 } else if (nb_args == 3) {
3906 add_completion_option(rs, str, "on");
3907 add_completion_option(rs, str, "off");
3908 }
3909 }
3910
3911 void migrate_set_parameter_completion(ReadLineState *rs, int nb_args,
3912 const char *str)
3913 {
3914 size_t len;
3915
3916 len = strlen(str);
3917 readline_set_completion_index(rs, len);
3918 if (nb_args == 2) {
3919 int i;
3920 for (i = 0; i < MIGRATION_PARAMETER__MAX; i++) {
3921 const char *name = MigrationParameter_str(i);
3922 if (!strncmp(str, name, len)) {
3923 readline_add_completion(rs, name);
3924 }
3925 }
3926 }
3927 }
3928
3929 static void vm_completion(ReadLineState *rs, const char *str)
3930 {
3931 size_t len;
3932 BlockDriverState *bs;
3933 BdrvNextIterator it;
3934
3935 len = strlen(str);
3936 readline_set_completion_index(rs, len);
3937
3938 for (bs = bdrv_first(&it); bs; bs = bdrv_next(&it)) {
3939 SnapshotInfoList *snapshots, *snapshot;
3940 AioContext *ctx = bdrv_get_aio_context(bs);
3941 bool ok = false;
3942
3943 aio_context_acquire(ctx);
3944 if (bdrv_can_snapshot(bs)) {
3945 ok = bdrv_query_snapshot_info_list(bs, &snapshots, NULL) == 0;
3946 }
3947 aio_context_release(ctx);
3948 if (!ok) {
3949 continue;
3950 }
3951
3952 snapshot = snapshots;
3953 while (snapshot) {
3954 char *completion = snapshot->value->name;
3955 if (!strncmp(str, completion, len)) {
3956 readline_add_completion(rs, completion);
3957 }
3958 completion = snapshot->value->id;
3959 if (!strncmp(str, completion, len)) {
3960 readline_add_completion(rs, completion);
3961 }
3962 snapshot = snapshot->next;
3963 }
3964 qapi_free_SnapshotInfoList(snapshots);
3965 }
3966
3967 }
3968
3969 void delvm_completion(ReadLineState *rs, int nb_args, const char *str)
3970 {
3971 if (nb_args == 2) {
3972 vm_completion(rs, str);
3973 }
3974 }
3975
3976 void loadvm_completion(ReadLineState *rs, int nb_args, const char *str)
3977 {
3978 if (nb_args == 2) {
3979 vm_completion(rs, str);
3980 }
3981 }
3982
3983 static void monitor_find_completion_by_table(Monitor *mon,
3984 const mon_cmd_t *cmd_table,
3985 char **args,
3986 int nb_args)
3987 {
3988 const char *cmdname;
3989 int i;
3990 const char *ptype, *old_ptype, *str, *name;
3991 const mon_cmd_t *cmd;
3992 BlockBackend *blk = NULL;
3993
3994 if (nb_args <= 1) {
3995 /* command completion */
3996 if (nb_args == 0)
3997 cmdname = "";
3998 else
3999 cmdname = args[0];
4000 readline_set_completion_index(mon->rs, strlen(cmdname));
4001 for (cmd = cmd_table; cmd->name != NULL; cmd++) {
4002 if (!runstate_check(RUN_STATE_PRECONFIG) ||
4003 cmd_can_preconfig(cmd)) {
4004 cmd_completion(mon, cmdname, cmd->name);
4005 }
4006 }
4007 } else {
4008 /* find the command */
4009 for (cmd = cmd_table; cmd->name != NULL; cmd++) {
4010 if (compare_cmd(args[0], cmd->name) &&
4011 (!runstate_check(RUN_STATE_PRECONFIG) ||
4012 cmd_can_preconfig(cmd))) {
4013 break;
4014 }
4015 }
4016 if (!cmd->name) {
4017 return;
4018 }
4019
4020 if (cmd->sub_table) {
4021 /* do the job again */
4022 monitor_find_completion_by_table(mon, cmd->sub_table,
4023 &args[1], nb_args - 1);
4024 return;
4025 }
4026 if (cmd->command_completion) {
4027 cmd->command_completion(mon->rs, nb_args, args[nb_args - 1]);
4028 return;
4029 }
4030
4031 ptype = next_arg_type(cmd->args_type);
4032 for(i = 0; i < nb_args - 2; i++) {
4033 if (*ptype != '\0') {
4034 ptype = next_arg_type(ptype);
4035 while (*ptype == '?')
4036 ptype = next_arg_type(ptype);
4037 }
4038 }
4039 str = args[nb_args - 1];
4040 old_ptype = NULL;
4041 while (*ptype == '-' && old_ptype != ptype) {
4042 old_ptype = ptype;
4043 ptype = next_arg_type(ptype);
4044 }
4045 switch(*ptype) {
4046 case 'F':
4047 /* file completion */
4048 readline_set_completion_index(mon->rs, strlen(str));
4049 file_completion(mon, str);
4050 break;
4051 case 'B':
4052 /* block device name completion */
4053 readline_set_completion_index(mon->rs, strlen(str));
4054 while ((blk = blk_next(blk)) != NULL) {
4055 name = blk_name(blk);
4056 if (str[0] == '\0' ||
4057 !strncmp(name, str, strlen(str))) {
4058 readline_add_completion(mon->rs, name);
4059 }
4060 }
4061 break;
4062 case 's':
4063 case 'S':
4064 if (!strcmp(cmd->name, "help|?")) {
4065 monitor_find_completion_by_table(mon, cmd_table,
4066 &args[1], nb_args - 1);
4067 }
4068 break;
4069 default:
4070 break;
4071 }
4072 }
4073 }
4074
4075 static void monitor_find_completion(void *opaque,
4076 const char *cmdline)
4077 {
4078 Monitor *mon = opaque;
4079 char *args[MAX_ARGS];
4080 int nb_args, len;
4081
4082 /* 1. parse the cmdline */
4083 if (parse_cmdline(cmdline, &nb_args, args) < 0) {
4084 return;
4085 }
4086
4087 /* if the line ends with a space, it means we want to complete the
4088 next arg */
4089 len = strlen(cmdline);
4090 if (len > 0 && qemu_isspace(cmdline[len - 1])) {
4091 if (nb_args >= MAX_ARGS) {
4092 goto cleanup;
4093 }
4094 args[nb_args++] = g_strdup("");
4095 }
4096
4097 /* 2. auto complete according to args */
4098 monitor_find_completion_by_table(mon, mon->cmd_table, args, nb_args);
4099
4100 cleanup:
4101 free_cmdline_args(args, nb_args);
4102 }
4103
4104 static int monitor_can_read(void *opaque)
4105 {
4106 Monitor *mon = opaque;
4107
4108 return !atomic_mb_read(&mon->suspend_cnt);
4109 }
4110
4111 /*
4112 * Emit QMP response @rsp with ID @id to @mon.
4113 * Null @rsp can only happen for commands with QCO_NO_SUCCESS_RESP.
4114 * Nothing is emitted then.
4115 */
4116 static void monitor_qmp_respond(Monitor *mon, QDict *rsp)
4117 {
4118 if (rsp) {
4119 qmp_send_response(mon, rsp);
4120 }
4121 }
4122
4123 static void monitor_qmp_dispatch(Monitor *mon, QObject *req)
4124 {
4125 Monitor *old_mon;
4126 QDict *rsp;
4127 QDict *error;
4128
4129 old_mon = cur_mon;
4130 cur_mon = mon;
4131
4132 rsp = qmp_dispatch(mon->qmp.commands, req, qmp_oob_enabled(mon));
4133
4134 cur_mon = old_mon;
4135
4136 if (mon->qmp.commands == &qmp_cap_negotiation_commands) {
4137 error = qdict_get_qdict(rsp, "error");
4138 if (error
4139 && !g_strcmp0(qdict_get_try_str(error, "class"),
4140 QapiErrorClass_str(ERROR_CLASS_COMMAND_NOT_FOUND))) {
4141 /* Provide a more useful error message */
4142 qdict_del(error, "desc");
4143 qdict_put_str(error, "desc", "Expecting capabilities negotiation"
4144 " with 'qmp_capabilities'");
4145 }
4146 }
4147
4148 monitor_qmp_respond(mon, rsp);
4149 qobject_unref(rsp);
4150 }
4151
4152 /*
4153 * Pop a QMP request from a monitor request queue.
4154 * Return the request, or NULL all request queues are empty.
4155 * We are using round-robin fashion to pop the request, to avoid
4156 * processing commands only on a very busy monitor. To achieve that,
4157 * when we process one request on a specific monitor, we put that
4158 * monitor to the end of mon_list queue.
4159 *
4160 * Note: if the function returned with non-NULL, then the caller will
4161 * be with mon->qmp.qmp_queue_lock held, and the caller is responsible
4162 * to release it.
4163 */
4164 static QMPRequest *monitor_qmp_requests_pop_any_with_lock(void)
4165 {
4166 QMPRequest *req_obj = NULL;
4167 Monitor *mon;
4168
4169 qemu_mutex_lock(&monitor_lock);
4170
4171 QTAILQ_FOREACH(mon, &mon_list, entry) {
4172 qemu_mutex_lock(&mon->qmp.qmp_queue_lock);
4173 req_obj = g_queue_pop_head(mon->qmp.qmp_requests);
4174 if (req_obj) {
4175 /* With the lock of corresponding queue held */
4176 break;
4177 }
4178 qemu_mutex_unlock(&mon->qmp.qmp_queue_lock);
4179 }
4180
4181 if (req_obj) {
4182 /*
4183 * We found one request on the monitor. Degrade this monitor's
4184 * priority to lowest by re-inserting it to end of queue.
4185 */
4186 QTAILQ_REMOVE(&mon_list, mon, entry);
4187 QTAILQ_INSERT_TAIL(&mon_list, mon, entry);
4188 }
4189
4190 qemu_mutex_unlock(&monitor_lock);
4191
4192 return req_obj;
4193 }
4194
4195 static void monitor_qmp_bh_dispatcher(void *data)
4196 {
4197 QMPRequest *req_obj = monitor_qmp_requests_pop_any_with_lock();
4198 QDict *rsp;
4199 bool need_resume;
4200 Monitor *mon;
4201
4202 if (!req_obj) {
4203 return;
4204 }
4205
4206 mon = req_obj->mon;
4207 /* qmp_oob_enabled() might change after "qmp_capabilities" */
4208 need_resume = !qmp_oob_enabled(mon) ||
4209 mon->qmp.qmp_requests->length == QMP_REQ_QUEUE_LEN_MAX - 1;
4210 qemu_mutex_unlock(&mon->qmp.qmp_queue_lock);
4211 if (req_obj->req) {
4212 QDict *qdict = qobject_to(QDict, req_obj->req);
4213 QObject *id = qdict ? qdict_get(qdict, "id") : NULL;
4214 trace_monitor_qmp_cmd_in_band(qobject_get_try_str(id) ?: "");
4215 monitor_qmp_dispatch(mon, req_obj->req);
4216 } else {
4217 assert(req_obj->err);
4218 rsp = qmp_error_response(req_obj->err);
4219 req_obj->err = NULL;
4220 monitor_qmp_respond(mon, rsp);
4221 qobject_unref(rsp);
4222 }
4223
4224 if (need_resume) {
4225 /* Pairs with the monitor_suspend() in handle_qmp_command() */
4226 monitor_resume(mon);
4227 }
4228 qmp_request_free(req_obj);
4229
4230 /* Reschedule instead of looping so the main loop stays responsive */
4231 qemu_bh_schedule(qmp_dispatcher_bh);
4232 }
4233
4234 static void handle_qmp_command(void *opaque, QObject *req, Error *err)
4235 {
4236 Monitor *mon = opaque;
4237 QObject *id = NULL;
4238 QDict *qdict;
4239 QMPRequest *req_obj;
4240
4241 assert(!req != !err);
4242
4243 qdict = qobject_to(QDict, req);
4244 if (qdict) {
4245 id = qdict_get(qdict, "id");
4246 } /* else will fail qmp_dispatch() */
4247
4248 if (req && trace_event_get_state_backends(TRACE_HANDLE_QMP_COMMAND)) {
4249 QString *req_json = qobject_to_json(req);
4250 trace_handle_qmp_command(mon, qstring_get_str(req_json));
4251 qobject_unref(req_json);
4252 }
4253
4254 if (qdict && qmp_is_oob(qdict)) {
4255 /* OOB commands are executed immediately */
4256 trace_monitor_qmp_cmd_out_of_band(qobject_get_try_str(id) ?: "");
4257 monitor_qmp_dispatch(mon, req);
4258 qobject_unref(req);
4259 return;
4260 }
4261
4262 req_obj = g_new0(QMPRequest, 1);
4263 req_obj->mon = mon;
4264 req_obj->req = req;
4265 req_obj->err = err;
4266
4267 /* Protect qmp_requests and fetching its length. */
4268 qemu_mutex_lock(&mon->qmp.qmp_queue_lock);
4269
4270 /*
4271 * Suspend the monitor when we can't queue more requests after
4272 * this one. Dequeuing in monitor_qmp_bh_dispatcher() will resume
4273 * it. Note that when OOB is disabled, we queue at most one
4274 * command, for backward compatibility.
4275 */
4276 if (!qmp_oob_enabled(mon) ||
4277 mon->qmp.qmp_requests->length == QMP_REQ_QUEUE_LEN_MAX - 1) {
4278 monitor_suspend(mon);
4279 }
4280
4281 /*
4282 * Put the request to the end of queue so that requests will be
4283 * handled in time order. Ownership for req_obj, req,
4284 * etc. will be delivered to the handler side.
4285 */
4286 assert(mon->qmp.qmp_requests->length < QMP_REQ_QUEUE_LEN_MAX);
4287 g_queue_push_tail(mon->qmp.qmp_requests, req_obj);
4288 qemu_mutex_unlock(&mon->qmp.qmp_queue_lock);
4289
4290 /* Kick the dispatcher routine */
4291 qemu_bh_schedule(qmp_dispatcher_bh);
4292 }
4293
4294 static void monitor_qmp_read(void *opaque, const uint8_t *buf, int size)
4295 {
4296 Monitor *mon = opaque;
4297
4298 json_message_parser_feed(&mon->qmp.parser, (const char *) buf, size);
4299 }
4300
4301 static void monitor_read(void *opaque, const uint8_t *buf, int size)
4302 {
4303 Monitor *old_mon = cur_mon;
4304 int i;
4305
4306 cur_mon = opaque;
4307
4308 if (cur_mon->rs) {
4309 for (i = 0; i < size; i++)
4310 readline_handle_byte(cur_mon->rs, buf[i]);
4311 } else {
4312 if (size == 0 || buf[size - 1] != 0)
4313 monitor_printf(cur_mon, "corrupted command\n");
4314 else
4315 handle_hmp_command(cur_mon, (char *)buf);
4316 }
4317
4318 cur_mon = old_mon;
4319 }
4320
4321 static void monitor_command_cb(void *opaque, const char *cmdline,
4322 void *readline_opaque)
4323 {
4324 Monitor *mon = opaque;
4325
4326 monitor_suspend(mon);
4327 handle_hmp_command(mon, cmdline);
4328 monitor_resume(mon);
4329 }
4330
4331 int monitor_suspend(Monitor *mon)
4332 {
4333 if (monitor_is_hmp_non_interactive(mon)) {
4334 return -ENOTTY;
4335 }
4336
4337 atomic_inc(&mon->suspend_cnt);
4338
4339 if (mon->use_io_thread) {
4340 /*
4341 * Kick I/O thread to make sure this takes effect. It'll be
4342 * evaluated again in prepare() of the watch object.
4343 */
4344 aio_notify(iothread_get_aio_context(mon_iothread));
4345 }
4346
4347 trace_monitor_suspend(mon, 1);
4348 return 0;
4349 }
4350
4351 static void monitor_accept_input(void *opaque)
4352 {
4353 Monitor *mon = opaque;
4354
4355 qemu_chr_fe_accept_input(&mon->chr);
4356 }
4357
4358 void monitor_resume(Monitor *mon)
4359 {
4360 if (monitor_is_hmp_non_interactive(mon)) {
4361 return;
4362 }
4363
4364 if (atomic_dec_fetch(&mon->suspend_cnt) == 0) {
4365 AioContext *ctx;
4366
4367 if (mon->use_io_thread) {
4368 ctx = iothread_get_aio_context(mon_iothread);
4369 } else {
4370 ctx = qemu_get_aio_context();
4371 }
4372
4373 if (!monitor_is_qmp(mon)) {
4374 assert(mon->rs);
4375 readline_show_prompt(mon->rs);
4376 }
4377
4378 aio_bh_schedule_oneshot(ctx, monitor_accept_input, mon);
4379 }
4380
4381 trace_monitor_suspend(mon, -1);
4382 }
4383
4384 static QDict *qmp_greeting(Monitor *mon)
4385 {
4386 QList *cap_list = qlist_new();
4387 QObject *ver = NULL;
4388 QMPCapability cap;
4389
4390 qmp_marshal_query_version(NULL, &ver, NULL);
4391
4392 for (cap = 0; cap < QMP_CAPABILITY__MAX; cap++) {
4393 if (mon->qmp.capab_offered[cap]) {
4394 qlist_append_str(cap_list, QMPCapability_str(cap));
4395 }
4396 }
4397
4398 return qdict_from_jsonf_nofail(
4399 "{'QMP': {'version': %p, 'capabilities': %p}}",
4400 ver, cap_list);
4401 }
4402
4403 static void monitor_qmp_event(void *opaque, int event)
4404 {
4405 QDict *data;
4406 Monitor *mon = opaque;
4407
4408 switch (event) {
4409 case CHR_EVENT_OPENED:
4410 mon->qmp.commands = &qmp_cap_negotiation_commands;
4411 monitor_qmp_caps_reset(mon);
4412 data = qmp_greeting(mon);
4413 qmp_send_response(mon, data);
4414 qobject_unref(data);
4415 mon_refcount++;
4416 break;
4417 case CHR_EVENT_CLOSED:
4418 /*
4419 * Note: this is only useful when the output of the chardev
4420 * backend is still open. For example, when the backend is
4421 * stdio, it's possible that stdout is still open when stdin
4422 * is closed.
4423 */
4424 monitor_qmp_cleanup_queues(mon);
4425 json_message_parser_destroy(&mon->qmp.parser);
4426 json_message_parser_init(&mon->qmp.parser, handle_qmp_command,
4427 mon, NULL);
4428 mon_refcount--;
4429 monitor_fdsets_cleanup();
4430 break;
4431 }
4432 }
4433
4434 static void monitor_event(void *opaque, int event)
4435 {
4436 Monitor *mon = opaque;
4437
4438 switch (event) {
4439 case CHR_EVENT_MUX_IN:
4440 qemu_mutex_lock(&mon->mon_lock);
4441 mon->mux_out = 0;
4442 qemu_mutex_unlock(&mon->mon_lock);
4443 if (mon->reset_seen) {
4444 readline_restart(mon->rs);
4445 monitor_resume(mon);
4446 monitor_flush(mon);
4447 } else {
4448 atomic_mb_set(&mon->suspend_cnt, 0);
4449 }
4450 break;
4451
4452 case CHR_EVENT_MUX_OUT:
4453 if (mon->reset_seen) {
4454 if (atomic_mb_read(&mon->suspend_cnt) == 0) {
4455 monitor_printf(mon, "\n");
4456 }
4457 monitor_flush(mon);
4458 monitor_suspend(mon);
4459 } else {
4460 atomic_inc(&mon->suspend_cnt);
4461 }
4462 qemu_mutex_lock(&mon->mon_lock);
4463 mon->mux_out = 1;
4464 qemu_mutex_unlock(&mon->mon_lock);
4465 break;
4466
4467 case CHR_EVENT_OPENED:
4468 monitor_printf(mon, "QEMU %s monitor - type 'help' for more "
4469 "information\n", QEMU_VERSION);
4470 if (!mon->mux_out) {
4471 readline_restart(mon->rs);
4472 readline_show_prompt(mon->rs);
4473 }
4474 mon->reset_seen = 1;
4475 mon_refcount++;
4476 break;
4477
4478 case CHR_EVENT_CLOSED:
4479 mon_refcount--;
4480 monitor_fdsets_cleanup();
4481 break;
4482 }
4483 }
4484
4485 static int
4486 compare_mon_cmd(const void *a, const void *b)
4487 {
4488 return strcmp(((const mon_cmd_t *)a)->name,
4489 ((const mon_cmd_t *)b)->name);
4490 }
4491
4492 static void sortcmdlist(void)
4493 {
4494 int array_num;
4495 int elem_size = sizeof(mon_cmd_t);
4496
4497 array_num = sizeof(mon_cmds)/elem_size-1;
4498 qsort((void *)mon_cmds, array_num, elem_size, compare_mon_cmd);
4499
4500 array_num = sizeof(info_cmds)/elem_size-1;
4501 qsort((void *)info_cmds, array_num, elem_size, compare_mon_cmd);
4502 }
4503
4504 static void monitor_iothread_init(void)
4505 {
4506 mon_iothread = iothread_create("mon_iothread", &error_abort);
4507 }
4508
4509 void monitor_init_globals(void)
4510 {
4511 monitor_init_qmp_commands();
4512 monitor_qapi_event_init();
4513 sortcmdlist();
4514 qemu_mutex_init(&monitor_lock);
4515 qemu_mutex_init(&mon_fdsets_lock);
4516
4517 /*
4518 * The dispatcher BH must run in the main loop thread, since we
4519 * have commands assuming that context. It would be nice to get
4520 * rid of those assumptions.
4521 */
4522 qmp_dispatcher_bh = aio_bh_new(iohandler_get_aio_context(),
4523 monitor_qmp_bh_dispatcher,
4524 NULL);
4525 }
4526
4527 /* These functions just adapt the readline interface in a typesafe way. We
4528 * could cast function pointers but that discards compiler checks.
4529 */
4530 static void GCC_FMT_ATTR(2, 3) monitor_readline_printf(void *opaque,
4531 const char *fmt, ...)
4532 {
4533 va_list ap;
4534 va_start(ap, fmt);
4535 monitor_vprintf(opaque, fmt, ap);
4536 va_end(ap);
4537 }
4538
4539 static void monitor_readline_flush(void *opaque)
4540 {
4541 monitor_flush(opaque);
4542 }
4543
4544 /*
4545 * Print to current monitor if we have one, else to stream.
4546 */
4547 int monitor_vfprintf(FILE *stream, const char *fmt, va_list ap)
4548 {
4549 if (cur_mon && !monitor_cur_is_qmp()) {
4550 return monitor_vprintf(cur_mon, fmt, ap);
4551 }
4552 return vfprintf(stream, fmt, ap);
4553 }
4554
4555 /*
4556 * Print to current monitor if we have one, else to stderr.
4557 */
4558 int error_vprintf(const char *fmt, va_list ap)
4559 {
4560 return monitor_vfprintf(stderr, fmt, ap);
4561 }
4562
4563 int error_vprintf_unless_qmp(const char *fmt, va_list ap)
4564 {
4565 if (!cur_mon) {
4566 return vfprintf(stderr, fmt, ap);
4567 }
4568 if (!monitor_cur_is_qmp()) {
4569 return monitor_vprintf(cur_mon, fmt, ap);
4570 }
4571 return -1;
4572 }
4573
4574 static void monitor_list_append(Monitor *mon)
4575 {
4576 qemu_mutex_lock(&monitor_lock);
4577 /*
4578 * This prevents inserting new monitors during monitor_cleanup().
4579 * A cleaner solution would involve the main thread telling other
4580 * threads to terminate, waiting for their termination.
4581 */
4582 if (!monitor_destroyed) {
4583 QTAILQ_INSERT_HEAD(&mon_list, mon, entry);
4584 mon = NULL;
4585 }
4586 qemu_mutex_unlock(&monitor_lock);
4587
4588 if (mon) {
4589 monitor_data_destroy(mon);
4590 g_free(mon);
4591 }
4592 }
4593
4594 static void monitor_qmp_setup_handlers_bh(void *opaque)
4595 {
4596 Monitor *mon = opaque;
4597 GMainContext *context;
4598
4599 assert(mon->use_io_thread);
4600 context = iothread_get_g_main_context(mon_iothread);
4601 assert(context);
4602 qemu_chr_fe_set_handlers(&mon->chr, monitor_can_read, monitor_qmp_read,
4603 monitor_qmp_event, NULL, mon, context, true);
4604 monitor_list_append(mon);
4605 }
4606
4607 void monitor_init(Chardev *chr, int flags)
4608 {
4609 Monitor *mon = g_malloc(sizeof(*mon));
4610 bool use_readline = flags & MONITOR_USE_READLINE;
4611
4612 /* Note: we run QMP monitor in I/O thread when @chr supports that */
4613 monitor_data_init(mon, false,
4614 (flags & MONITOR_USE_CONTROL)
4615 && qemu_chr_has_feature(chr,
4616 QEMU_CHAR_FEATURE_GCONTEXT));
4617
4618 qemu_chr_fe_init(&mon->chr, chr, &error_abort);
4619 mon->flags = flags;
4620 if (use_readline) {
4621 mon->rs = readline_init(monitor_readline_printf,
4622 monitor_readline_flush,
4623 mon,
4624 monitor_find_completion);
4625 monitor_read_command(mon, 0);
4626 }
4627
4628 if (monitor_is_qmp(mon)) {
4629 qemu_chr_fe_set_echo(&mon->chr, true);
4630 json_message_parser_init(&mon->qmp.parser, handle_qmp_command,
4631 mon, NULL);
4632 if (mon->use_io_thread) {
4633 /*
4634 * Make sure the old iowatch is gone. It's possible when
4635 * e.g. the chardev is in client mode, with wait=on.
4636 */
4637 remove_fd_in_watch(chr);
4638 /*
4639 * We can't call qemu_chr_fe_set_handlers() directly here
4640 * since chardev might be running in the monitor I/O
4641 * thread. Schedule a bottom half.
4642 */
4643 aio_bh_schedule_oneshot(iothread_get_aio_context(mon_iothread),
4644 monitor_qmp_setup_handlers_bh, mon);
4645 /* The bottom half will add @mon to @mon_list */
4646 return;
4647 } else {
4648 qemu_chr_fe_set_handlers(&mon->chr, monitor_can_read,
4649 monitor_qmp_read, monitor_qmp_event,
4650 NULL, mon, NULL, true);
4651 }
4652 } else {
4653 qemu_chr_fe_set_handlers(&mon->chr, monitor_can_read, monitor_read,
4654 monitor_event, NULL, mon, NULL, true);
4655 }
4656
4657 monitor_list_append(mon);
4658 }
4659
4660 void monitor_cleanup(void)
4661 {
4662 /*
4663 * We need to explicitly stop the I/O thread (but not destroy it),
4664 * clean up the monitor resources, then destroy the I/O thread since
4665 * we need to unregister from chardev below in
4666 * monitor_data_destroy(), and chardev is not thread-safe yet
4667 */
4668 if (mon_iothread) {
4669 iothread_stop(mon_iothread);
4670 }
4671
4672 /* Flush output buffers and destroy monitors */
4673 qemu_mutex_lock(&monitor_lock);
4674 monitor_destroyed = true;
4675 while (!QTAILQ_EMPTY(&mon_list)) {
4676 Monitor *mon = QTAILQ_FIRST(&mon_list);
4677 QTAILQ_REMOVE(&mon_list, mon, entry);
4678 /* Permit QAPI event emission from character frontend release */
4679 qemu_mutex_unlock(&monitor_lock);
4680 monitor_flush(mon);
4681 monitor_data_destroy(mon);
4682 qemu_mutex_lock(&monitor_lock);
4683 g_free(mon);
4684 }
4685 qemu_mutex_unlock(&monitor_lock);
4686
4687 /* QEMUBHs needs to be deleted before destroying the I/O thread */
4688 qemu_bh_delete(qmp_dispatcher_bh);
4689 qmp_dispatcher_bh = NULL;
4690 if (mon_iothread) {
4691 iothread_destroy(mon_iothread);
4692 mon_iothread = NULL;
4693 }
4694 }
4695
4696 QemuOptsList qemu_mon_opts = {
4697 .name = "mon",
4698 .implied_opt_name = "chardev",
4699 .head = QTAILQ_HEAD_INITIALIZER(qemu_mon_opts.head),
4700 .desc = {
4701 {
4702 .name = "mode",
4703 .type = QEMU_OPT_STRING,
4704 },{
4705 .name = "chardev",
4706 .type = QEMU_OPT_STRING,
4707 },{
4708 .name = "pretty",
4709 .type = QEMU_OPT_BOOL,
4710 },
4711 { /* end of list */ }
4712 },
4713 };
4714
4715 HotpluggableCPUList *qmp_query_hotpluggable_cpus(Error **errp)
4716 {
4717 MachineState *ms = MACHINE(qdev_get_machine());
4718 MachineClass *mc = MACHINE_GET_CLASS(ms);
4719
4720 if (!mc->has_hotpluggable_cpus) {
4721 error_setg(errp, QERR_FEATURE_DISABLED, "query-hotpluggable-cpus");
4722 return NULL;
4723 }
4724
4725 return machine_query_hotpluggable_cpus(ms);
4726 }
QEMU mirror