]> git.proxmox.com Git - mirror_qemu.git/blame - gdbstub.c
projects / mirror_qemu.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
qcow2: Inform block layer about discard boundaries
[mirror_qemu.git] / gdbstub.c
CommitLineData
b4608c04
FB		 1/*
2 * gdb server stub
5fafdf24 3 *
3475187d 4 * Copyright (c) 2003-2005 Fabrice Bellard
b4608c04
FB		 5 *
6 * This library is free software; you can redistribute it and/or
7 * modify it under the terms of the GNU Lesser General Public
8 * License as published by the Free Software Foundation; either
9 * version 2 of the License, or (at your option) any later version.
10 *
11 * This library is distributed in the hope that it will be useful,
12 * but WITHOUT ANY WARRANTY; without even the implied warranty of
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
14 * Lesser General Public License for more details.
15 *
16 * You should have received a copy of the GNU Lesser General Public
8167ee88 17 * License along with this library; if not, see <http://www.gnu.org/licenses/>.
b4608c04 18 */
d38ea87a 19#include "qemu/osdep.h"
da34e65c 20#include "qapi/error.h"
f348b6d1 21#include "qemu/cutils.h"
33c11879 22#include "cpu.h"
f348b6d1 23#ifdef CONFIG_USER_ONLY
1fddef4b
FB		 24#include "qemu.h"
25#else
83c9089e 26#include "monitor/monitor.h"
dccfcd0e 27#include "sysemu/char.h"
9c17d615 28#include "sysemu/sysemu.h"
022c62cb 29#include "exec/gdbstub.h"
1fddef4b 30#endif
67b915a5 31
56aebc89
PB		 32#define MAX_PACKET_LENGTH 4096
33
2b41f10e 34#include "cpu.h"
1de7afc9 35#include "qemu/sockets.h"
9c17d615 36#include "sysemu/kvm.h"
cfe67cef 37#include "exec/semihost.h"
63c91552 38#include "exec/exec-all.h"
ca587a8e 39
a3919386
JK		 40#ifdef CONFIG_USER_ONLY
41#define GDB_ATTACHED "0"
42#else
43#define GDB_ATTACHED "1"
44#endif
45
f3659eee
AF		 46static inline int target_memory_rw_debug(CPUState *cpu, target_ulong addr,
47 uint8_t *buf, int len, bool is_write)
44520db1 48{
f3659eee
AF		 49 CPUClass *cc = CPU_GET_CLASS(cpu);
50
51 if (cc->memory_rw_debug) {
52 return cc->memory_rw_debug(cpu, addr, buf, len, is_write);
53 }
54 return cpu_memory_rw_debug(cpu, addr, buf, len, is_write);
44520db1 55}
ca587a8e
AJ		 56
57enum {
58 GDB_SIGNAL_0 = 0,
59 GDB_SIGNAL_INT = 2,
425189a8 60 GDB_SIGNAL_QUIT = 3,
ca587a8e 61 GDB_SIGNAL_TRAP = 5,
425189a8
JK		 62 GDB_SIGNAL_ABRT = 6,
63 GDB_SIGNAL_ALRM = 14,
64 GDB_SIGNAL_IO = 23,
65 GDB_SIGNAL_XCPU = 24,
ca587a8e
AJ		 66 GDB_SIGNAL_UNKNOWN = 143
67};
68
69#ifdef CONFIG_USER_ONLY
70
71/* Map target signal numbers to GDB protocol signal numbers and vice
72 * versa. For user emulation's currently supported systems, we can
73 * assume most signals are defined.
74 */
75
76static int gdb_signal_table[] = {
77 0,
78 TARGET_SIGHUP,
79 TARGET_SIGINT,
80 TARGET_SIGQUIT,
81 TARGET_SIGILL,
82 TARGET_SIGTRAP,
83 TARGET_SIGABRT,
84 -1, /* SIGEMT */
85 TARGET_SIGFPE,
86 TARGET_SIGKILL,
87 TARGET_SIGBUS,
88 TARGET_SIGSEGV,
89 TARGET_SIGSYS,
90 TARGET_SIGPIPE,
91 TARGET_SIGALRM,
92 TARGET_SIGTERM,
93 TARGET_SIGURG,
94 TARGET_SIGSTOP,
95 TARGET_SIGTSTP,
96 TARGET_SIGCONT,
97 TARGET_SIGCHLD,
98 TARGET_SIGTTIN,
99 TARGET_SIGTTOU,
100 TARGET_SIGIO,
101 TARGET_SIGXCPU,
102 TARGET_SIGXFSZ,
103 TARGET_SIGVTALRM,
104 TARGET_SIGPROF,
105 TARGET_SIGWINCH,
106 -1, /* SIGLOST */
107 TARGET_SIGUSR1,
108 TARGET_SIGUSR2,
c72d5bf8 109#ifdef TARGET_SIGPWR
ca587a8e 110 TARGET_SIGPWR,
c72d5bf8
BS		 111#else
112 -1,
113#endif
ca587a8e
AJ		 114 -1, /* SIGPOLL */
115 -1,
116 -1,
117 -1,
118 -1,
119 -1,
120 -1,
121 -1,
122 -1,
123 -1,
124 -1,
125 -1,
c72d5bf8 126#ifdef __SIGRTMIN
ca587a8e
AJ		 127 __SIGRTMIN + 1,
128 __SIGRTMIN + 2,
129 __SIGRTMIN + 3,
130 __SIGRTMIN + 4,
131 __SIGRTMIN + 5,
132 __SIGRTMIN + 6,
133 __SIGRTMIN + 7,
134 __SIGRTMIN + 8,
135 __SIGRTMIN + 9,
136 __SIGRTMIN + 10,
137 __SIGRTMIN + 11,
138 __SIGRTMIN + 12,
139 __SIGRTMIN + 13,
140 __SIGRTMIN + 14,
141 __SIGRTMIN + 15,
142 __SIGRTMIN + 16,
143 __SIGRTMIN + 17,
144 __SIGRTMIN + 18,
145 __SIGRTMIN + 19,
146 __SIGRTMIN + 20,
147 __SIGRTMIN + 21,
148 __SIGRTMIN + 22,
149 __SIGRTMIN + 23,
150 __SIGRTMIN + 24,
151 __SIGRTMIN + 25,
152 __SIGRTMIN + 26,
153 __SIGRTMIN + 27,
154 __SIGRTMIN + 28,
155 __SIGRTMIN + 29,
156 __SIGRTMIN + 30,
157 __SIGRTMIN + 31,
158 -1, /* SIGCANCEL */
159 __SIGRTMIN,
160 __SIGRTMIN + 32,
161 __SIGRTMIN + 33,
162 __SIGRTMIN + 34,
163 __SIGRTMIN + 35,
164 __SIGRTMIN + 36,
165 __SIGRTMIN + 37,
166 __SIGRTMIN + 38,
167 __SIGRTMIN + 39,
168 __SIGRTMIN + 40,
169 __SIGRTMIN + 41,
170 __SIGRTMIN + 42,
171 __SIGRTMIN + 43,
172 __SIGRTMIN + 44,
173 __SIGRTMIN + 45,
174 __SIGRTMIN + 46,
175 __SIGRTMIN + 47,
176 __SIGRTMIN + 48,
177 __SIGRTMIN + 49,
178 __SIGRTMIN + 50,
179 __SIGRTMIN + 51,
180 __SIGRTMIN + 52,
181 __SIGRTMIN + 53,
182 __SIGRTMIN + 54,
183 __SIGRTMIN + 55,
184 __SIGRTMIN + 56,
185 __SIGRTMIN + 57,
186 __SIGRTMIN + 58,
187 __SIGRTMIN + 59,
188 __SIGRTMIN + 60,
189 __SIGRTMIN + 61,
190 __SIGRTMIN + 62,
191 __SIGRTMIN + 63,
192 __SIGRTMIN + 64,
193 __SIGRTMIN + 65,
194 __SIGRTMIN + 66,
195 __SIGRTMIN + 67,
196 __SIGRTMIN + 68,
197 __SIGRTMIN + 69,
198 __SIGRTMIN + 70,
199 __SIGRTMIN + 71,
200 __SIGRTMIN + 72,
201 __SIGRTMIN + 73,
202 __SIGRTMIN + 74,
203 __SIGRTMIN + 75,
204 __SIGRTMIN + 76,
205 __SIGRTMIN + 77,
206 __SIGRTMIN + 78,
207 __SIGRTMIN + 79,
208 __SIGRTMIN + 80,
209 __SIGRTMIN + 81,
210 __SIGRTMIN + 82,
211 __SIGRTMIN + 83,
212 __SIGRTMIN + 84,
213 __SIGRTMIN + 85,
214 __SIGRTMIN + 86,
215 __SIGRTMIN + 87,
216 __SIGRTMIN + 88,
217 __SIGRTMIN + 89,
218 __SIGRTMIN + 90,
219 __SIGRTMIN + 91,
220 __SIGRTMIN + 92,
221 __SIGRTMIN + 93,
222 __SIGRTMIN + 94,
223 __SIGRTMIN + 95,
224 -1, /* SIGINFO */
225 -1, /* UNKNOWN */
226 -1, /* DEFAULT */
227 -1,
228 -1,
229 -1,
230 -1,
231 -1,
232 -1
c72d5bf8 233#endif
ca587a8e 234};
8f447cc7 235#else
ca587a8e
AJ		 236/* In system mode we only need SIGINT and SIGTRAP; other signals
237 are not yet supported. */
238
239enum {
240 TARGET_SIGINT = 2,
241 TARGET_SIGTRAP = 5
242};
243
244static int gdb_signal_table[] = {
245 -1,
246 -1,
247 TARGET_SIGINT,
248 -1,
249 -1,
250 TARGET_SIGTRAP
251};
252#endif
253
254#ifdef CONFIG_USER_ONLY
255static int target_signal_to_gdb (int sig)
256{
257 int i;
258 for (i = 0; i < ARRAY_SIZE (gdb_signal_table); i++)
259 if (gdb_signal_table[i] == sig)
260 return i;
261 return GDB_SIGNAL_UNKNOWN;
262}
8f447cc7 263#endif
b4608c04 264
ca587a8e
AJ		 265static int gdb_signal_to_target (int sig)
266{
267 if (sig < ARRAY_SIZE (gdb_signal_table))
268 return gdb_signal_table[sig];
269 else
270 return -1;
271}
272
4abe615b 273//#define DEBUG_GDB
b4608c04 274
56aebc89
PB		 275typedef struct GDBRegisterState {
276 int base_reg;
277 int num_regs;
278 gdb_reg_cb get_reg;
279 gdb_reg_cb set_reg;
280 const char *xml;
281 struct GDBRegisterState *next;
282} GDBRegisterState;
283
858693c6 284enum RSState {
36556b20 285 RS_INACTIVE,
858693c6
FB		 286 RS_IDLE,
287 RS_GETLINE,
288 RS_CHKSUM1,
289 RS_CHKSUM2,
290};
858693c6 291typedef struct GDBState {
2e0f2cfb
AF		 292 CPUState *c_cpu; /* current CPU for step/continue ops */
293 CPUState *g_cpu; /* current CPU for other ops */
52f34623 294 CPUState *query_cpu; /* for q{f|s}ThreadInfo */
41625033 295 enum RSState state; /* parsing state */
56aebc89 296 char line_buf[MAX_PACKET_LENGTH];
858693c6
FB		 297 int line_buf_index;
298 int line_csum;
56aebc89 299 uint8_t last_packet[MAX_PACKET_LENGTH + 4];
4046d913 300 int last_packet_len;
1f487ee9 301 int signal;
41625033 302#ifdef CONFIG_USER_ONLY
4046d913 303 int fd;
41625033 304 int running_state;
4046d913
PB		 305#else
306 CharDriverState *chr;
8a34a0fb 307 CharDriverState *mon_chr;
41625033 308#endif
cdb432b2
MI		 309 char syscall_buf[256];
310 gdb_syscall_complete_cb current_syscall_cb;
858693c6 311} GDBState;
b4608c04 312
60897d36
EI		 313/* By default use no IRQs and no timers while single stepping so as to
314 * make single stepping like an ICE HW step.
315 */
316static int sstep_flags = SSTEP_ENABLE|SSTEP_NOIRQ|SSTEP_NOTIMER;
317
880a7578
AL		 318static GDBState *gdbserver_state;
319
5b50e790 320bool gdb_has_xml;
56aebc89 321
1fddef4b 322#ifdef CONFIG_USER_ONLY
4046d913
PB		 323/* XXX: This is not thread safe. Do we care? */
324static int gdbserver_fd = -1;
325
858693c6 326static int get_char(GDBState *s)
b4608c04
FB		 327{
328 uint8_t ch;
329 int ret;
330
331 for(;;) {
00aa0040 332 ret = qemu_recv(s->fd, &ch, 1, 0);
b4608c04 333 if (ret < 0) {
1f487ee9
EI		 334 if (errno == ECONNRESET)
335 s->fd = -1;
5819e3e0 336 if (errno != EINTR)
b4608c04
FB		 337 return -1;
338 } else if (ret == 0) {
1f487ee9
EI		 339 close(s->fd);
340 s->fd = -1;
b4608c04
FB		 341 return -1;
342 } else {
343 break;
344 }
345 }
346 return ch;
347}
4046d913 348#endif
b4608c04 349
654efcf3 350static enum {
a2d1ebaf
PB		 351 GDB_SYS_UNKNOWN,
352 GDB_SYS_ENABLED,
353 GDB_SYS_DISABLED,
354} gdb_syscall_mode;
355
a38bb079 356/* Decide if either remote gdb syscalls or native file IO should be used. */
a2d1ebaf
PB		 357int use_gdb_syscalls(void)
358{
cfe67cef
LA		 359 SemihostingTarget target = semihosting_get_target();
360 if (target == SEMIHOSTING_TARGET_NATIVE) {
a38bb079
LI		 361 /* -semihosting-config target=native */
362 return false;
cfe67cef 363 } else if (target == SEMIHOSTING_TARGET_GDB) {
a38bb079
LI		 364 /* -semihosting-config target=gdb */
365 return true;
366 }
367
368 /* -semihosting-config target=auto */
369 /* On the first call check if gdb is connected and remember. */
a2d1ebaf 370 if (gdb_syscall_mode == GDB_SYS_UNKNOWN) {
880a7578
AL		 371 gdb_syscall_mode = (gdbserver_state ? GDB_SYS_ENABLED
372 : GDB_SYS_DISABLED);
a2d1ebaf
PB		 373 }
374 return gdb_syscall_mode == GDB_SYS_ENABLED;
375}
376
ba70a624
EI		 377/* Resume execution. */
378static inline void gdb_continue(GDBState *s)
379{
380#ifdef CONFIG_USER_ONLY
381 s->running_state = 1;
382#else
26ac7a31 383 if (!runstate_needs_reset()) {
87f25c12
PB		 384 vm_start();
385 }
ba70a624
EI		 386#endif
387}
388
858693c6 389static void put_buffer(GDBState *s, const uint8_t *buf, int len)
b4608c04 390{
4046d913 391#ifdef CONFIG_USER_ONLY
b4608c04
FB		 392 int ret;
393
394 while (len > 0) {
8f447cc7 395 ret = send(s->fd, buf, len, 0);
b4608c04 396 if (ret < 0) {
5819e3e0 397 if (errno != EINTR)
b4608c04
FB		 398 return;
399 } else {
400 buf += ret;
401 len -= ret;
402 }
403 }
4046d913 404#else
2cc6e0a1 405 qemu_chr_fe_write(s->chr, buf, len);
4046d913 406#endif
b4608c04
FB		 407}
408
409static inline int fromhex(int v)
410{
411 if (v >= '0' && v <= '9')
412 return v - '0';
413 else if (v >= 'A' && v <= 'F')
414 return v - 'A' + 10;
415 else if (v >= 'a' && v <= 'f')
416 return v - 'a' + 10;
417 else
418 return 0;
419}
420
421static inline int tohex(int v)
422{
423 if (v < 10)
424 return v + '0';
425 else
426 return v - 10 + 'a';
427}
428
429static void memtohex(char *buf, const uint8_t *mem, int len)
430{
431 int i, c;
432 char *q;
433 q = buf;
434 for(i = 0; i < len; i++) {
435 c = mem[i];
436 *q++ = tohex(c >> 4);
437 *q++ = tohex(c & 0xf);
438 }
439 *q = '\0';
440}
441
442static void hextomem(uint8_t *mem, const char *buf, int len)
443{
444 int i;
445
446 for(i = 0; i < len; i++) {
447 mem[i] = (fromhex(buf[0]) << 4) | fromhex(buf[1]);
448 buf += 2;
449 }
450}
451
b4608c04 452/* return -1 if error, 0 if OK */
56aebc89 453static int put_packet_binary(GDBState *s, const char *buf, int len)
b4608c04 454{
56aebc89 455 int csum, i;
60fe76f3 456 uint8_t *p;
b4608c04 457
b4608c04 458 for(;;) {
4046d913
PB		 459 p = s->last_packet;
460 *(p++) = '$';
4046d913
PB		 461 memcpy(p, buf, len);
462 p += len;
b4608c04
FB		 463 csum = 0;
464 for(i = 0; i < len; i++) {
465 csum += buf[i];
466 }
4046d913
PB		 467 *(p++) = '#';
468 *(p++) = tohex((csum >> 4) & 0xf);
469 *(p++) = tohex((csum) & 0xf);
b4608c04 470
4046d913 471 s->last_packet_len = p - s->last_packet;
ffe8ab83 472 put_buffer(s, (uint8_t *)s->last_packet, s->last_packet_len);
b4608c04 473
4046d913
PB		 474#ifdef CONFIG_USER_ONLY
475 i = get_char(s);
476 if (i < 0)
b4608c04 477 return -1;
4046d913 478 if (i == '+')
b4608c04 479 break;
4046d913
PB		 480#else
481 break;
482#endif
b4608c04
FB		 483 }
484 return 0;
485}
486
56aebc89
PB		 487/* return -1 if error, 0 if OK */
488static int put_packet(GDBState *s, const char *buf)
489{
490#ifdef DEBUG_GDB
491 printf("reply='%s'\n", buf);
492#endif
79808573 493
56aebc89
PB		 494 return put_packet_binary(s, buf, strlen(buf));
495}
496
56aebc89
PB		 497/* Encode data using the encoding for 'x' packets. */
498static int memtox(char *buf, const char *mem, int len)
499{
500 char *p = buf;
501 char c;
502
503 while (len--) {
504 c = *(mem++);
505 switch (c) {
506 case '#': case '$': case '*': case '}':
507 *(p++) = '}';
508 *(p++) = c ^ 0x20;
509 break;
510 default:
511 *(p++) = c;
512 break;
513 }
514 }
515 return p - buf;
516}
f1ccf904 517
5b24c641
AF		 518static const char *get_feature_xml(const char *p, const char **newp,
519 CPUClass *cc)
56aebc89 520{
56aebc89
PB		 521 size_t len;
522 int i;
523 const char *name;
524 static char target_xml[1024];
525
526 len = 0;
527 while (p[len] && p[len] != ':')
528 len++;
529 *newp = p + len;
530
531 name = NULL;
532 if (strncmp(p, "target.xml", len) == 0) {
533 /* Generate the XML description for this CPU. */
534 if (!target_xml[0]) {
535 GDBRegisterState *r;
eac8b355 536 CPUState *cpu = first_cpu;
56aebc89 537
b3820e6c
DH		 538 pstrcat(target_xml, sizeof(target_xml),
539 "<?xml version=\"1.0\"?>"
540 "<!DOCTYPE target SYSTEM \"gdb-target.dtd\">"
541 "<target>");
542 if (cc->gdb_arch_name) {
543 gchar *arch = cc->gdb_arch_name(cpu);
544 pstrcat(target_xml, sizeof(target_xml), "<architecture>");
545 pstrcat(target_xml, sizeof(target_xml), arch);
546 pstrcat(target_xml, sizeof(target_xml), "</architecture>");
547 g_free(arch);
548 }
549 pstrcat(target_xml, sizeof(target_xml), "<xi:include href=\"");
550 pstrcat(target_xml, sizeof(target_xml), cc->gdb_core_xml_file);
551 pstrcat(target_xml, sizeof(target_xml), "\"/>");
eac8b355 552 for (r = cpu->gdb_regs; r; r = r->next) {
2dc766da
BS		 553 pstrcat(target_xml, sizeof(target_xml), "<xi:include href=\"");
554 pstrcat(target_xml, sizeof(target_xml), r->xml);
555 pstrcat(target_xml, sizeof(target_xml), "\"/>");
56aebc89 556 }
2dc766da 557 pstrcat(target_xml, sizeof(target_xml), "</target>");
56aebc89
PB		 558 }
559 return target_xml;
560 }
561 for (i = 0; ; i++) {
562 name = xml_builtin[i][0];
563 if (!name || (strncmp(name, p, len) == 0 && strlen(name) == len))
564 break;
565 }
566 return name ? xml_builtin[i][1] : NULL;
567}
f1ccf904 568
385b9f0e 569static int gdb_read_register(CPUState *cpu, uint8_t *mem_buf, int reg)
56aebc89 570{
a0e372f0 571 CPUClass *cc = CPU_GET_CLASS(cpu);
385b9f0e 572 CPUArchState *env = cpu->env_ptr;
56aebc89 573 GDBRegisterState *r;
f1ccf904 574
a0e372f0 575 if (reg < cc->gdb_num_core_regs) {
5b50e790 576 return cc->gdb_read_register(cpu, mem_buf, reg);
a0e372f0 577 }
f1ccf904 578
eac8b355 579 for (r = cpu->gdb_regs; r; r = r->next) {
56aebc89
PB		 580 if (r->base_reg <= reg && reg < r->base_reg + r->num_regs) {
581 return r->get_reg(env, mem_buf, reg - r->base_reg);
582 }
583 }
584 return 0;
f1ccf904
TS		 585}
586
385b9f0e 587static int gdb_write_register(CPUState *cpu, uint8_t *mem_buf, int reg)
f1ccf904 588{
a0e372f0 589 CPUClass *cc = CPU_GET_CLASS(cpu);
385b9f0e 590 CPUArchState *env = cpu->env_ptr;
56aebc89 591 GDBRegisterState *r;
f1ccf904 592
a0e372f0 593 if (reg < cc->gdb_num_core_regs) {
5b50e790 594 return cc->gdb_write_register(cpu, mem_buf, reg);
a0e372f0 595 }
56aebc89 596
eac8b355 597 for (r = cpu->gdb_regs; r; r = r->next) {
56aebc89
PB		 598 if (r->base_reg <= reg && reg < r->base_reg + r->num_regs) {
599 return r->set_reg(env, mem_buf, reg - r->base_reg);
600 }
601 }
6da41eaf
FB		 602 return 0;
603}
604
56aebc89
PB		 605/* Register a supplemental set of CPU registers. If g_pos is nonzero it
606 specifies the first register number and these registers are included in
607 a standard "g" packet. Direction is relative to gdb, i.e. get_reg is
608 gdb reading a CPU register, and set_reg is gdb modifying a CPU register.
609 */
610
22169d41
AF		 611void gdb_register_coprocessor(CPUState *cpu,
612 gdb_reg_cb get_reg, gdb_reg_cb set_reg,
613 int num_regs, const char *xml, int g_pos)
6da41eaf 614{
56aebc89
PB		 615 GDBRegisterState *s;
616 GDBRegisterState **p;
56aebc89 617
eac8b355 618 p = &cpu->gdb_regs;
56aebc89
PB		 619 while (*p) {
620 /* Check for duplicates. */
621 if (strcmp((*p)->xml, xml) == 0)
622 return;
623 p = &(*p)->next;
624 }
9643c25f
SW		 625
626 s = g_new0(GDBRegisterState, 1);
a0e372f0 627 s->base_reg = cpu->gdb_num_regs;
9643c25f
SW		 628 s->num_regs = num_regs;
629 s->get_reg = get_reg;
630 s->set_reg = set_reg;
631 s->xml = xml;
632
56aebc89 633 /* Add to end of list. */
a0e372f0 634 cpu->gdb_num_regs += num_regs;
56aebc89
PB		 635 *p = s;
636 if (g_pos) {
637 if (g_pos != s->base_reg) {
638 fprintf(stderr, "Error: Bad gdb register numbering for '%s'\n"
639 "Expected %d got %d\n", xml, g_pos, s->base_reg);
35143f01
AF		 640 } else {
641 cpu->gdb_num_g_regs = cpu->gdb_num_regs;
56aebc89
PB		 642 }
643 }
6da41eaf
FB		 644}
645
a1d1bb31 646#ifndef CONFIG_USER_ONLY
2472b6c0
PM		 647/* Translate GDB watchpoint type to a flags value for cpu_watchpoint_* */
648static inline int xlat_gdb_type(CPUState *cpu, int gdbtype)
649{
650 static const int xlat[] = {
651 [GDB_WATCHPOINT_WRITE] = BP_GDB | BP_MEM_WRITE,
652 [GDB_WATCHPOINT_READ] = BP_GDB | BP_MEM_READ,
653 [GDB_WATCHPOINT_ACCESS] = BP_GDB | BP_MEM_ACCESS,
654 };
655
656 CPUClass *cc = CPU_GET_CLASS(cpu);
657 int cputype = xlat[gdbtype];
658
659 if (cc->gdb_stop_before_watchpoint) {
660 cputype |= BP_STOP_BEFORE_ACCESS;
661 }
662 return cputype;
663}
a1d1bb31
AL		 664#endif
665
880a7578 666static int gdb_breakpoint_insert(target_ulong addr, target_ulong len, int type)
a1d1bb31 667{
182735ef 668 CPUState *cpu;
880a7578
AL		 669 int err = 0;
670
62278814 671 if (kvm_enabled()) {
2e0f2cfb 672 return kvm_insert_breakpoint(gdbserver_state->c_cpu, addr, len, type);
62278814 673 }
e22a25c9 674
a1d1bb31
AL		 675 switch (type) {
676 case GDB_BREAKPOINT_SW:
677 case GDB_BREAKPOINT_HW:
bdc44640 678 CPU_FOREACH(cpu) {
b3310ab3
AF		 679 err = cpu_breakpoint_insert(cpu, addr, BP_GDB, NULL);
680 if (err) {
880a7578 681 break;
b3310ab3 682 }
880a7578
AL		 683 }
684 return err;
a1d1bb31
AL		 685#ifndef CONFIG_USER_ONLY
686 case GDB_WATCHPOINT_WRITE:
687 case GDB_WATCHPOINT_READ:
688 case GDB_WATCHPOINT_ACCESS:
bdc44640 689 CPU_FOREACH(cpu) {
2472b6c0
PM		 690 err = cpu_watchpoint_insert(cpu, addr, len,
691 xlat_gdb_type(cpu, type), NULL);
692 if (err) {
880a7578 693 break;
2472b6c0 694 }
880a7578
AL		 695 }
696 return err;
a1d1bb31
AL		 697#endif
698 default:
699 return -ENOSYS;
700 }
701}
702
880a7578 703static int gdb_breakpoint_remove(target_ulong addr, target_ulong len, int type)
a1d1bb31 704{
182735ef 705 CPUState *cpu;
880a7578
AL		 706 int err = 0;
707
62278814 708 if (kvm_enabled()) {
2e0f2cfb 709 return kvm_remove_breakpoint(gdbserver_state->c_cpu, addr, len, type);
62278814 710 }
e22a25c9 711
a1d1bb31
AL		 712 switch (type) {
713 case GDB_BREAKPOINT_SW:
714 case GDB_BREAKPOINT_HW:
bdc44640 715 CPU_FOREACH(cpu) {
b3310ab3
AF		 716 err = cpu_breakpoint_remove(cpu, addr, BP_GDB);
717 if (err) {
880a7578 718 break;
b3310ab3 719 }
880a7578
AL		 720 }
721 return err;
a1d1bb31
AL		 722#ifndef CONFIG_USER_ONLY
723 case GDB_WATCHPOINT_WRITE:
724 case GDB_WATCHPOINT_READ:
725 case GDB_WATCHPOINT_ACCESS:
bdc44640 726 CPU_FOREACH(cpu) {
2472b6c0
PM		 727 err = cpu_watchpoint_remove(cpu, addr, len,
728 xlat_gdb_type(cpu, type));
880a7578
AL		 729 if (err)
730 break;
731 }
732 return err;
a1d1bb31
AL		 733#endif
734 default:
735 return -ENOSYS;
736 }
737}
738
880a7578 739static void gdb_breakpoint_remove_all(void)
a1d1bb31 740{
182735ef 741 CPUState *cpu;
880a7578 742
e22a25c9 743 if (kvm_enabled()) {
2e0f2cfb 744 kvm_remove_all_breakpoints(gdbserver_state->c_cpu);
e22a25c9
AL		 745 return;
746 }
747
bdc44640 748 CPU_FOREACH(cpu) {
b3310ab3 749 cpu_breakpoint_remove_all(cpu, BP_GDB);
a1d1bb31 750#ifndef CONFIG_USER_ONLY
75a34036 751 cpu_watchpoint_remove_all(cpu, BP_GDB);
a1d1bb31 752#endif
880a7578 753 }
a1d1bb31
AL		 754}
755
fab9d284
AJ		 756static void gdb_set_cpu_pc(GDBState *s, target_ulong pc)
757{
2e0f2cfb 758 CPUState *cpu = s->c_cpu;
f45748f1
AF		 759
760 cpu_synchronize_state(cpu);
4a2b24ed 761 cpu_set_pc(cpu, pc);
fab9d284
AJ		 762}
763
2e0f2cfb 764static CPUState *find_cpu(uint32_t thread_id)
1e9fa730 765{
0d34282f 766 CPUState *cpu;
1e9fa730 767
bdc44640 768 CPU_FOREACH(cpu) {
aa48dd93 769 if (cpu_index(cpu) == thread_id) {
2e0f2cfb 770 return cpu;
aa48dd93 771 }
1e9fa730 772 }
aa48dd93
AF		 773
774 return NULL;
1e9fa730
NF		 775}
776
4dabe747
JK		 777static int is_query_packet(const char *p, const char *query, char separator)
778{
779 unsigned int query_len = strlen(query);
780
781 return strncmp(p, query, query_len) == 0 &&
782 (p[query_len] == '\0' || p[query_len] == separator);
783}
784
880a7578 785static int gdb_handle_packet(GDBState *s, const char *line_buf)
b4608c04 786{
2e0f2cfb 787 CPUState *cpu;
5b24c641 788 CPUClass *cc;
b4608c04 789 const char *p;
1e9fa730
NF		 790 uint32_t thread;
791 int ch, reg_size, type, res;
56aebc89
PB		 792 char buf[MAX_PACKET_LENGTH];
793 uint8_t mem_buf[MAX_PACKET_LENGTH];
794 uint8_t *registers;
9d9754a3 795 target_ulong addr, len;
3b46e624 796
858693c6
FB		 797#ifdef DEBUG_GDB
798 printf("command='%s'\n", line_buf);
799#endif
800 p = line_buf;
801 ch = *p++;
802 switch(ch) {
803 case '?':
1fddef4b 804 /* TODO: Make this return the correct value for user-mode. */
ca587a8e 805 snprintf(buf, sizeof(buf), "T%02xthread:%02x;", GDB_SIGNAL_TRAP,
2e0f2cfb 806 cpu_index(s->c_cpu));
858693c6 807 put_packet(s, buf);
7d03f82f
EI		 808 /* Remove all the breakpoints when this query is issued,
809 * because gdb is doing and initial connect and the state
810 * should be cleaned up.
811 */
880a7578 812 gdb_breakpoint_remove_all();
858693c6
FB		 813 break;
814 case 'c':
815 if (*p != '\0') {
9d9754a3 816 addr = strtoull(p, (char **)&p, 16);
fab9d284 817 gdb_set_cpu_pc(s, addr);
858693c6 818 }
ca587a8e 819 s->signal = 0;
ba70a624 820 gdb_continue(s);
41625033 821 return RS_IDLE;
1f487ee9 822 case 'C':
ca587a8e
AJ		 823 s->signal = gdb_signal_to_target (strtoul(p, (char **)&p, 16));
824 if (s->signal == -1)
825 s->signal = 0;
1f487ee9
EI		 826 gdb_continue(s);
827 return RS_IDLE;
dd32aa10
JK		 828 case 'v':
829 if (strncmp(p, "Cont", 4) == 0) {
830 int res_signal, res_thread;
831
832 p += 4;
833 if (*p == '?') {
834 put_packet(s, "vCont;c;C;s;S");
835 break;
836 }
837 res = 0;
838 res_signal = 0;
839 res_thread = 0;
840 while (*p) {
841 int action, signal;
842
843 if (*p++ != ';') {
844 res = 0;
845 break;
846 }
847 action = *p++;
848 signal = 0;
849 if (action == 'C' || action == 'S') {
f17b0690
MS		 850 signal = gdb_signal_to_target(strtoul(p, (char **)&p, 16));
851 if (signal == -1) {
852 signal = 0;
853 }
dd32aa10
JK		 854 } else if (action != 'c' && action != 's') {
855 res = 0;
856 break;
857 }
858 thread = 0;
859 if (*p == ':') {
860 thread = strtoull(p+1, (char **)&p, 16);
861 }
862 action = tolower(action);
863 if (res == 0 || (res == 'c' && action == 's')) {
864 res = action;
865 res_signal = signal;
866 res_thread = thread;
867 }
868 }
869 if (res) {
870 if (res_thread != -1 && res_thread != 0) {
2e0f2cfb
AF		 871 cpu = find_cpu(res_thread);
872 if (cpu == NULL) {
dd32aa10
JK		 873 put_packet(s, "E22");
874 break;
875 }
2e0f2cfb 876 s->c_cpu = cpu;
dd32aa10
JK		 877 }
878 if (res == 's') {
2e0f2cfb 879 cpu_single_step(s->c_cpu, sstep_flags);
dd32aa10
JK		 880 }
881 s->signal = res_signal;
882 gdb_continue(s);
883 return RS_IDLE;
884 }
885 break;
886 } else {
887 goto unknown_command;
888 }
7d03f82f
EI		 889 case 'k':
890 /* Kill the target */
891 fprintf(stderr, "\nQEMU: Terminated via GDBstub\n");
892 exit(0);
893 case 'D':
894 /* Detach packet */
880a7578 895 gdb_breakpoint_remove_all();
7ea06da3 896 gdb_syscall_mode = GDB_SYS_DISABLED;
7d03f82f
EI		 897 gdb_continue(s);
898 put_packet(s, "OK");
899 break;
858693c6
FB		 900 case 's':
901 if (*p != '\0') {
8fac5803 902 addr = strtoull(p, (char **)&p, 16);
fab9d284 903 gdb_set_cpu_pc(s, addr);
858693c6 904 }
2e0f2cfb 905 cpu_single_step(s->c_cpu, sstep_flags);
ba70a624 906 gdb_continue(s);
41625033 907 return RS_IDLE;
a2d1ebaf
PB		 908 case 'F':
909 {
910 target_ulong ret;
911 target_ulong err;
912
913 ret = strtoull(p, (char **)&p, 16);
914 if (*p == ',') {
915 p++;
916 err = strtoull(p, (char **)&p, 16);
917 } else {
918 err = 0;
919 }
920 if (*p == ',')
921 p++;
922 type = *p;
cdb432b2 923 if (s->current_syscall_cb) {
2e0f2cfb 924 s->current_syscall_cb(s->c_cpu, ret, err);
cdb432b2
MI		 925 s->current_syscall_cb = NULL;
926 }
a2d1ebaf
PB		 927 if (type == 'C') {
928 put_packet(s, "T02");
929 } else {
ba70a624 930 gdb_continue(s);
a2d1ebaf
PB		 931 }
932 }
933 break;
858693c6 934 case 'g':
2e0f2cfb 935 cpu_synchronize_state(s->g_cpu);
56aebc89 936 len = 0;
35143f01 937 for (addr = 0; addr < s->g_cpu->gdb_num_g_regs; addr++) {
2e0f2cfb 938 reg_size = gdb_read_register(s->g_cpu, mem_buf + len, addr);
56aebc89
PB		 939 len += reg_size;
940 }
941 memtohex(buf, mem_buf, len);
858693c6
FB		 942 put_packet(s, buf);
943 break;
944 case 'G':
2e0f2cfb 945 cpu_synchronize_state(s->g_cpu);
56aebc89 946 registers = mem_buf;
858693c6
FB		 947 len = strlen(p) / 2;
948 hextomem((uint8_t *)registers, p, len);
35143f01 949 for (addr = 0; addr < s->g_cpu->gdb_num_g_regs && len > 0; addr++) {
2e0f2cfb 950 reg_size = gdb_write_register(s->g_cpu, registers, addr);
56aebc89
PB		 951 len -= reg_size;
952 registers += reg_size;
953 }
858693c6
FB		 954 put_packet(s, "OK");
955 break;
956 case 'm':
9d9754a3 957 addr = strtoull(p, (char **)&p, 16);
858693c6
FB		 958 if (*p == ',')
959 p++;
9d9754a3 960 len = strtoull(p, NULL, 16);
5accecb3
KW		 961
962 /* memtohex() doubles the required space */
963 if (len > MAX_PACKET_LENGTH / 2) {
964 put_packet (s, "E22");
965 break;
966 }
967
2e0f2cfb 968 if (target_memory_rw_debug(s->g_cpu, addr, mem_buf, len, false) != 0) {
6f970bd9
FB		 969 put_packet (s, "E14");
970 } else {
971 memtohex(buf, mem_buf, len);
972 put_packet(s, buf);
973 }
858693c6
FB		 974 break;
975 case 'M':
9d9754a3 976 addr = strtoull(p, (char **)&p, 16);
858693c6
FB		 977 if (*p == ',')
978 p++;
9d9754a3 979 len = strtoull(p, (char **)&p, 16);
b328f873 980 if (*p == ':')
858693c6 981 p++;
5accecb3
KW		 982
983 /* hextomem() reads 2*len bytes */
984 if (len > strlen(p) / 2) {
985 put_packet (s, "E22");
986 break;
987 }
858693c6 988 hextomem(mem_buf, p, len);
2e0f2cfb 989 if (target_memory_rw_debug(s->g_cpu, addr, mem_buf, len,
f3659eee 990 true) != 0) {
905f20b1 991 put_packet(s, "E14");
44520db1 992 } else {
858693c6 993 put_packet(s, "OK");
44520db1 994 }
858693c6 995 break;
56aebc89
PB		 996 case 'p':
997 /* Older gdb are really dumb, and don't use 'g' if 'p' is avaialable.
998 This works, but can be very slow. Anything new enough to
999 understand XML also knows how to use this properly. */
1000 if (!gdb_has_xml)
1001 goto unknown_command;
1002 addr = strtoull(p, (char **)&p, 16);
2e0f2cfb 1003 reg_size = gdb_read_register(s->g_cpu, mem_buf, addr);
56aebc89
PB		 1004 if (reg_size) {
1005 memtohex(buf, mem_buf, reg_size);
1006 put_packet(s, buf);
1007 } else {
1008 put_packet(s, "E14");
1009 }
1010 break;
1011 case 'P':
1012 if (!gdb_has_xml)
1013 goto unknown_command;
1014 addr = strtoull(p, (char **)&p, 16);
1015 if (*p == '=')
1016 p++;
1017 reg_size = strlen(p) / 2;
1018 hextomem(mem_buf, p, reg_size);
2e0f2cfb 1019 gdb_write_register(s->g_cpu, mem_buf, addr);
56aebc89
PB		 1020 put_packet(s, "OK");
1021 break;
858693c6 1022 case 'Z':
858693c6
FB		 1023 case 'z':
1024 type = strtoul(p, (char **)&p, 16);
1025 if (*p == ',')
1026 p++;
9d9754a3 1027 addr = strtoull(p, (char **)&p, 16);
858693c6
FB		 1028 if (*p == ',')
1029 p++;
9d9754a3 1030 len = strtoull(p, (char **)&p, 16);
a1d1bb31 1031 if (ch == 'Z')
880a7578 1032 res = gdb_breakpoint_insert(addr, len, type);
a1d1bb31 1033 else
880a7578 1034 res = gdb_breakpoint_remove(addr, len, type);
a1d1bb31
AL		 1035 if (res >= 0)
1036 put_packet(s, "OK");
1037 else if (res == -ENOSYS)
0f459d16 1038 put_packet(s, "");
a1d1bb31
AL		 1039 else
1040 put_packet(s, "E22");
858693c6 1041 break;
880a7578
AL		 1042 case 'H':
1043 type = *p++;
1044 thread = strtoull(p, (char **)&p, 16);
1045 if (thread == -1 || thread == 0) {
1046 put_packet(s, "OK");
1047 break;
1048 }
2e0f2cfb
AF		 1049 cpu = find_cpu(thread);
1050 if (cpu == NULL) {
880a7578
AL		 1051 put_packet(s, "E22");
1052 break;
1053 }
1054 switch (type) {
1055 case 'c':
2e0f2cfb 1056 s->c_cpu = cpu;
880a7578
AL		 1057 put_packet(s, "OK");
1058 break;
1059 case 'g':
2e0f2cfb 1060 s->g_cpu = cpu;
880a7578
AL		 1061 put_packet(s, "OK");
1062 break;
1063 default:
1064 put_packet(s, "E22");
1065 break;
1066 }
1067 break;
1068 case 'T':
1069 thread = strtoull(p, (char **)&p, 16);
2e0f2cfb 1070 cpu = find_cpu(thread);
1e9fa730 1071
2e0f2cfb 1072 if (cpu != NULL) {
1e9fa730
NF		 1073 put_packet(s, "OK");
1074 } else {
880a7578 1075 put_packet(s, "E22");
1e9fa730 1076 }
880a7578 1077 break;
978efd6a 1078 case 'q':
60897d36
EI		 1079 case 'Q':
1080 /* parse any 'q' packets here */
1081 if (!strcmp(p,"qemu.sstepbits")) {
1082 /* Query Breakpoint bit definitions */
363a37d5
BS		 1083 snprintf(buf, sizeof(buf), "ENABLE=%x,NOIRQ=%x,NOTIMER=%x",
1084 SSTEP_ENABLE,
1085 SSTEP_NOIRQ,
1086 SSTEP_NOTIMER);
60897d36
EI		 1087 put_packet(s, buf);
1088 break;
4dabe747 1089 } else if (is_query_packet(p, "qemu.sstep", '=')) {
60897d36
EI		 1090 /* Display or change the sstep_flags */
1091 p += 10;
1092 if (*p != '=') {
1093 /* Display current setting */
363a37d5 1094 snprintf(buf, sizeof(buf), "0x%x", sstep_flags);
60897d36
EI		 1095 put_packet(s, buf);
1096 break;
1097 }
1098 p++;
1099 type = strtoul(p, (char **)&p, 16);
1100 sstep_flags = type;
1101 put_packet(s, "OK");
1102 break;
880a7578
AL		 1103 } else if (strcmp(p,"C") == 0) {
1104 /* "Current thread" remains vague in the spec, so always return
1105 * the first CPU (gdb returns the first thread). */
1106 put_packet(s, "QC1");
1107 break;
1108 } else if (strcmp(p,"fThreadInfo") == 0) {
52f34623 1109 s->query_cpu = first_cpu;
880a7578
AL		 1110 goto report_cpuinfo;
1111 } else if (strcmp(p,"sThreadInfo") == 0) {
1112 report_cpuinfo:
1113 if (s->query_cpu) {
52f34623 1114 snprintf(buf, sizeof(buf), "m%x", cpu_index(s->query_cpu));
880a7578 1115 put_packet(s, buf);
bdc44640 1116 s->query_cpu = CPU_NEXT(s->query_cpu);
880a7578
AL		 1117 } else
1118 put_packet(s, "l");
1119 break;
1120 } else if (strncmp(p,"ThreadExtraInfo,", 16) == 0) {
1121 thread = strtoull(p+16, (char **)&p, 16);
2e0f2cfb
AF		 1122 cpu = find_cpu(thread);
1123 if (cpu != NULL) {
cb446eca 1124 cpu_synchronize_state(cpu);
5accecb3
KW		 1125 /* memtohex() doubles the required space */
1126 len = snprintf((char *)mem_buf, sizeof(buf) / 2,
55e5c285 1127 "CPU#%d [%s]", cpu->cpu_index,
259186a7 1128 cpu->halted ? "halted " : "running");
1e9fa730
NF		 1129 memtohex(buf, mem_buf, len);
1130 put_packet(s, buf);
1131 }
880a7578 1132 break;
60897d36 1133 }
0b8a988c 1134#ifdef CONFIG_USER_ONLY
070949f3 1135 else if (strcmp(p, "Offsets") == 0) {
0429a971 1136 TaskState *ts = s->c_cpu->opaque;
978efd6a 1137
363a37d5
BS		 1138 snprintf(buf, sizeof(buf),
1139 "Text=" TARGET_ABI_FMT_lx ";Data=" TARGET_ABI_FMT_lx
1140 ";Bss=" TARGET_ABI_FMT_lx,
1141 ts->info->code_offset,
1142 ts->info->data_offset,
1143 ts->info->data_offset);
978efd6a
PB		 1144 put_packet(s, buf);
1145 break;
1146 }
0b8a988c 1147#else /* !CONFIG_USER_ONLY */
8a34a0fb
AL		 1148 else if (strncmp(p, "Rcmd,", 5) == 0) {
1149 int len = strlen(p + 5);
1150
1151 if ((len % 2) != 0) {
1152 put_packet(s, "E01");
1153 break;
1154 }
8a34a0fb 1155 len = len / 2;
5accecb3 1156 hextomem(mem_buf, p + 5, len);
8a34a0fb 1157 mem_buf[len++] = 0;
fa5efccb 1158 qemu_chr_be_write(s->mon_chr, mem_buf, len);
8a34a0fb
AL		 1159 put_packet(s, "OK");
1160 break;
1161 }
0b8a988c 1162#endif /* !CONFIG_USER_ONLY */
4dabe747 1163 if (is_query_packet(p, "Supported", ':')) {
5b3715bf 1164 snprintf(buf, sizeof(buf), "PacketSize=%x", MAX_PACKET_LENGTH);
5b24c641
AF		 1165 cc = CPU_GET_CLASS(first_cpu);
1166 if (cc->gdb_core_xml_file != NULL) {
1167 pstrcat(buf, sizeof(buf), ";qXfer:features:read+");
1168 }
56aebc89
PB		 1169 put_packet(s, buf);
1170 break;
1171 }
56aebc89
PB		 1172 if (strncmp(p, "Xfer:features:read:", 19) == 0) {
1173 const char *xml;
1174 target_ulong total_len;
1175
5b24c641
AF		 1176 cc = CPU_GET_CLASS(first_cpu);
1177 if (cc->gdb_core_xml_file == NULL) {
1178 goto unknown_command;
1179 }
1180
5b50e790 1181 gdb_has_xml = true;
56aebc89 1182 p += 19;
5b24c641 1183 xml = get_feature_xml(p, &p, cc);
56aebc89 1184 if (!xml) {
5b3715bf 1185 snprintf(buf, sizeof(buf), "E00");
56aebc89
PB		 1186 put_packet(s, buf);
1187 break;
1188 }
1189
1190 if (*p == ':')
1191 p++;
1192 addr = strtoul(p, (char **)&p, 16);
1193 if (*p == ',')
1194 p++;
1195 len = strtoul(p, (char **)&p, 16);
1196
1197 total_len = strlen(xml);
1198 if (addr > total_len) {
5b3715bf 1199 snprintf(buf, sizeof(buf), "E00");
56aebc89
PB		 1200 put_packet(s, buf);
1201 break;
1202 }
1203 if (len > (MAX_PACKET_LENGTH - 5) / 2)
1204 len = (MAX_PACKET_LENGTH - 5) / 2;
1205 if (len < total_len - addr) {
1206 buf[0] = 'm';
1207 len = memtox(buf + 1, xml + addr, len);
1208 } else {
1209 buf[0] = 'l';
1210 len = memtox(buf + 1, xml + addr, total_len - addr);
1211 }
1212 put_packet_binary(s, buf, len + 1);
1213 break;
1214 }
a3919386
JK		 1215 if (is_query_packet(p, "Attached", ':')) {
1216 put_packet(s, GDB_ATTACHED);
1217 break;
1218 }
56aebc89
PB		 1219 /* Unrecognised 'q' command. */
1220 goto unknown_command;
1221
858693c6 1222 default:
56aebc89 1223 unknown_command:
858693c6
FB		 1224 /* put empty packet */
1225 buf[0] = '\0';
1226 put_packet(s, buf);
1227 break;
1228 }
1229 return RS_IDLE;
1230}
1231
64f6b346 1232void gdb_set_stop_cpu(CPUState *cpu)
880a7578 1233{
2e0f2cfb
AF		 1234 gdbserver_state->c_cpu = cpu;
1235 gdbserver_state->g_cpu = cpu;
880a7578
AL		 1236}
1237
1fddef4b 1238#ifndef CONFIG_USER_ONLY
1dfb4dd9 1239static void gdb_vm_state_change(void *opaque, int running, RunState state)
858693c6 1240{
880a7578 1241 GDBState *s = gdbserver_state;
2e0f2cfb 1242 CPUState *cpu = s->c_cpu;
858693c6 1243 char buf[256];
d6fc1b39 1244 const char *type;
858693c6
FB		 1245 int ret;
1246
cdb432b2
MI		 1247 if (running || s->state == RS_INACTIVE) {
1248 return;
1249 }
1250 /* Is there a GDB syscall waiting to be sent? */
1251 if (s->current_syscall_cb) {
1252 put_packet(s, s->syscall_buf);
a2d1ebaf 1253 return;
e07bbac5 1254 }
1dfb4dd9 1255 switch (state) {
0461d5a6 1256 case RUN_STATE_DEBUG:
ff4700b0
AF		 1257 if (cpu->watchpoint_hit) {
1258 switch (cpu->watchpoint_hit->flags & BP_MEM_ACCESS) {
a1d1bb31 1259 case BP_MEM_READ:
d6fc1b39
AL		 1260 type = "r";
1261 break;
a1d1bb31 1262 case BP_MEM_ACCESS:
d6fc1b39
AL		 1263 type = "a";
1264 break;
1265 default:
1266 type = "";
1267 break;
1268 }
880a7578
AL		 1269 snprintf(buf, sizeof(buf),
1270 "T%02xthread:%02x;%swatch:" TARGET_FMT_lx ";",
0d34282f 1271 GDB_SIGNAL_TRAP, cpu_index(cpu), type,
ff4700b0
AF		 1272 (target_ulong)cpu->watchpoint_hit->vaddr);
1273 cpu->watchpoint_hit = NULL;
425189a8 1274 goto send_packet;
6658ffb8 1275 }
bbd77c18 1276 tb_flush(cpu);
ca587a8e 1277 ret = GDB_SIGNAL_TRAP;
425189a8 1278 break;
0461d5a6 1279 case RUN_STATE_PAUSED:
9781e040 1280 ret = GDB_SIGNAL_INT;
425189a8 1281 break;
0461d5a6 1282 case RUN_STATE_SHUTDOWN:
425189a8
JK		 1283 ret = GDB_SIGNAL_QUIT;
1284 break;
0461d5a6 1285 case RUN_STATE_IO_ERROR:
425189a8
JK		 1286 ret = GDB_SIGNAL_IO;
1287 break;
0461d5a6 1288 case RUN_STATE_WATCHDOG:
425189a8
JK		 1289 ret = GDB_SIGNAL_ALRM;
1290 break;
0461d5a6 1291 case RUN_STATE_INTERNAL_ERROR:
425189a8
JK		 1292 ret = GDB_SIGNAL_ABRT;
1293 break;
0461d5a6
LC		 1294 case RUN_STATE_SAVE_VM:
1295 case RUN_STATE_RESTORE_VM:
425189a8 1296 return;
0461d5a6 1297 case RUN_STATE_FINISH_MIGRATE:
425189a8
JK		 1298 ret = GDB_SIGNAL_XCPU;
1299 break;
1300 default:
1301 ret = GDB_SIGNAL_UNKNOWN;
1302 break;
bbeb7b5c 1303 }
226d007d 1304 gdb_set_stop_cpu(cpu);
0d34282f 1305 snprintf(buf, sizeof(buf), "T%02xthread:%02x;", ret, cpu_index(cpu));
425189a8
JK		 1306
1307send_packet:
858693c6 1308 put_packet(s, buf);
425189a8
JK		 1309
1310 /* disable single step if it was enabled */
3825b28f 1311 cpu_single_step(cpu, 0);
858693c6 1312}
1fddef4b 1313#endif
858693c6 1314
a2d1ebaf
PB		 1315/* Send a gdb syscall request.
1316 This accepts limited printf-style format specifiers, specifically:
a87295e8
PB		 1317 %x - target_ulong argument printed in hex.
1318 %lx - 64-bit argument printed in hex.
1319 %s - string pointer (target_ulong) and length (int) pair. */
19239b39 1320void gdb_do_syscallv(gdb_syscall_complete_cb cb, const char *fmt, va_list va)
a2d1ebaf 1321{
a2d1ebaf 1322 char *p;
cdb432b2 1323 char *p_end;
a2d1ebaf 1324 target_ulong addr;
a87295e8 1325 uint64_t i64;
a2d1ebaf
PB		 1326 GDBState *s;
1327
880a7578 1328 s = gdbserver_state;
a2d1ebaf
PB		 1329 if (!s)
1330 return;
cdb432b2 1331 s->current_syscall_cb = cb;
a2d1ebaf 1332#ifndef CONFIG_USER_ONLY
0461d5a6 1333 vm_stop(RUN_STATE_DEBUG);
a2d1ebaf 1334#endif
cdb432b2
MI		 1335 p = s->syscall_buf;
1336 p_end = &s->syscall_buf[sizeof(s->syscall_buf)];
a2d1ebaf
PB		 1337 *(p++) = 'F';
1338 while (*fmt) {
1339 if (*fmt == '%') {
1340 fmt++;
1341 switch (*fmt++) {
1342 case 'x':
1343 addr = va_arg(va, target_ulong);
cdb432b2 1344 p += snprintf(p, p_end - p, TARGET_FMT_lx, addr);
a2d1ebaf 1345 break;
a87295e8
PB		 1346 case 'l':
1347 if (*(fmt++) != 'x')
1348 goto bad_format;
1349 i64 = va_arg(va, uint64_t);
cdb432b2 1350 p += snprintf(p, p_end - p, "%" PRIx64, i64);
a87295e8 1351 break;
a2d1ebaf
PB		 1352 case 's':
1353 addr = va_arg(va, target_ulong);
cdb432b2 1354 p += snprintf(p, p_end - p, TARGET_FMT_lx "/%x",
363a37d5 1355 addr, va_arg(va, int));
a2d1ebaf
PB		 1356 break;
1357 default:
a87295e8 1358 bad_format:
a2d1ebaf
PB		 1359 fprintf(stderr, "gdbstub: Bad syscall format string '%s'\n",
1360 fmt - 1);
1361 break;
1362 }
1363 } else {
1364 *(p++) = *(fmt++);
1365 }
1366 }
8a93e02a 1367 *p = 0;
a2d1ebaf 1368#ifdef CONFIG_USER_ONLY
cdb432b2 1369 put_packet(s, s->syscall_buf);
2e0f2cfb 1370 gdb_handlesig(s->c_cpu, 0);
a2d1ebaf 1371#else
cdb432b2
MI		 1372 /* In this case wait to send the syscall packet until notification that
1373 the CPU has stopped. This must be done because if the packet is sent
1374 now the reply from the syscall request could be received while the CPU
1375 is still in the running state, which can cause packets to be dropped
1376 and state transition 'T' packets to be sent while the syscall is still
1377 being processed. */
9102deda 1378 qemu_cpu_kick(s->c_cpu);
a2d1ebaf
PB		 1379#endif
1380}
1381
19239b39
PM		 1382void gdb_do_syscall(gdb_syscall_complete_cb cb, const char *fmt, ...)
1383{
1384 va_list va;
1385
1386 va_start(va, fmt);
1387 gdb_do_syscallv(cb, fmt, va);
1388 va_end(va);
1389}
1390
6a00d601 1391static void gdb_read_byte(GDBState *s, int ch)
858693c6
FB		 1392{
1393 int i, csum;
60fe76f3 1394 uint8_t reply;
858693c6 1395
1fddef4b 1396#ifndef CONFIG_USER_ONLY
4046d913
PB		 1397 if (s->last_packet_len) {
1398 /* Waiting for a response to the last packet. If we see the start
1399 of a new command then abandon the previous response. */
1400 if (ch == '-') {
1401#ifdef DEBUG_GDB
1402 printf("Got NACK, retransmitting\n");
1403#endif
ffe8ab83 1404 put_buffer(s, (uint8_t *)s->last_packet, s->last_packet_len);
4046d913
PB		 1405 }
1406#ifdef DEBUG_GDB
1407 else if (ch == '+')
1408 printf("Got ACK\n");
1409 else
1410 printf("Got '%c' when expecting ACK/NACK\n", ch);
1411#endif
1412 if (ch == '+' || ch == '$')
1413 s->last_packet_len = 0;
1414 if (ch != '$')
1415 return;
1416 }
1354869c 1417 if (runstate_is_running()) {
858693c6
FB		 1418 /* when the CPU is running, we cannot do anything except stop
1419 it when receiving a char */
0461d5a6 1420 vm_stop(RUN_STATE_PAUSED);
5fafdf24 1421 } else
1fddef4b 1422#endif
41625033 1423 {
858693c6
FB		 1424 switch(s->state) {
1425 case RS_IDLE:
1426 if (ch == '$') {
1427 s->line_buf_index = 0;
1428 s->state = RS_GETLINE;
c33a346e 1429 }
b4608c04 1430 break;
858693c6
FB		 1431 case RS_GETLINE:
1432 if (ch == '#') {
1433 s->state = RS_CHKSUM1;
1434 } else if (s->line_buf_index >= sizeof(s->line_buf) - 1) {
1435 s->state = RS_IDLE;
4c3a88a2 1436 } else {
858693c6 1437 s->line_buf[s->line_buf_index++] = ch;
4c3a88a2
FB		 1438 }
1439 break;
858693c6
FB		 1440 case RS_CHKSUM1:
1441 s->line_buf[s->line_buf_index] = '\0';
1442 s->line_csum = fromhex(ch) << 4;
1443 s->state = RS_CHKSUM2;
1444 break;
1445 case RS_CHKSUM2:
1446 s->line_csum |= fromhex(ch);
1447 csum = 0;
1448 for(i = 0; i < s->line_buf_index; i++) {
1449 csum += s->line_buf[i];
1450 }
1451 if (s->line_csum != (csum & 0xff)) {
60fe76f3
TS		 1452 reply = '-';
1453 put_buffer(s, &reply, 1);
858693c6 1454 s->state = RS_IDLE;
4c3a88a2 1455 } else {
60fe76f3
TS		 1456 reply = '+';
1457 put_buffer(s, &reply, 1);
880a7578 1458 s->state = gdb_handle_packet(s, s->line_buf);
4c3a88a2
FB		 1459 }
1460 break;
a2d1ebaf
PB		 1461 default:
1462 abort();
858693c6
FB		 1463 }
1464 }
1465}
1466
0e1c9c54 1467/* Tell the remote gdb that the process has exited. */
9349b4f9 1468void gdb_exit(CPUArchState *env, int code)
0e1c9c54
PB		 1469{
1470 GDBState *s;
1471 char buf[4];
1472
1473 s = gdbserver_state;
1474 if (!s) {
1475 return;
1476 }
1477#ifdef CONFIG_USER_ONLY
1478 if (gdbserver_fd < 0 || s->fd < 0) {
1479 return;
1480 }
3d0f4418
PB		 1481#else
1482 if (!s->chr) {
1483 return;
1484 }
0e1c9c54
PB		 1485#endif
1486
1487 snprintf(buf, sizeof(buf), "W%02x", (uint8_t)code);
1488 put_packet(s, buf);
e2af15b2
FC		 1489
1490#ifndef CONFIG_USER_ONLY
3d0f4418 1491 qemu_chr_delete(s->chr);
e2af15b2 1492#endif
0e1c9c54
PB		 1493}
1494
1fddef4b
FB		 1495#ifdef CONFIG_USER_ONLY
1496int
db6b81d4 1497gdb_handlesig(CPUState *cpu, int sig)
1fddef4b 1498{
5ca666c7
AF		 1499 GDBState *s;
1500 char buf[256];
1501 int n;
1fddef4b 1502
5ca666c7
AF		 1503 s = gdbserver_state;
1504 if (gdbserver_fd < 0 || s->fd < 0) {
1505 return sig;
1506 }
1fddef4b 1507
5ca666c7 1508 /* disable single step if it was enabled */
3825b28f 1509 cpu_single_step(cpu, 0);
bbd77c18 1510 tb_flush(cpu);
1fddef4b 1511
5ca666c7
AF		 1512 if (sig != 0) {
1513 snprintf(buf, sizeof(buf), "S%02x", target_signal_to_gdb(sig));
1514 put_packet(s, buf);
1515 }
1516 /* put_packet() might have detected that the peer terminated the
1517 connection. */
1518 if (s->fd < 0) {
1519 return sig;
1520 }
1fddef4b 1521
5ca666c7
AF		 1522 sig = 0;
1523 s->state = RS_IDLE;
1524 s->running_state = 0;
1525 while (s->running_state == 0) {
1526 n = read(s->fd, buf, 256);
1527 if (n > 0) {
1528 int i;
1529
1530 for (i = 0; i < n; i++) {
1531 gdb_read_byte(s, buf[i]);
1532 }
5819e3e0 1533 } else {
5ca666c7
AF		 1534 /* XXX: Connection closed. Should probably wait for another
1535 connection before continuing. */
5819e3e0
PW		 1536 if (n == 0) {
1537 close(s->fd);
1538 }
1539 s->fd = -1;
5ca666c7 1540 return sig;
1fddef4b 1541 }
5ca666c7
AF		 1542 }
1543 sig = s->signal;
1544 s->signal = 0;
1545 return sig;
1fddef4b 1546}
e9009676 1547
ca587a8e 1548/* Tell the remote gdb that the process has exited due to SIG. */
9349b4f9 1549void gdb_signalled(CPUArchState *env, int sig)
ca587a8e 1550{
5ca666c7
AF		 1551 GDBState *s;
1552 char buf[4];
ca587a8e 1553
5ca666c7
AF		 1554 s = gdbserver_state;
1555 if (gdbserver_fd < 0 || s->fd < 0) {
1556 return;
1557 }
ca587a8e 1558
5ca666c7
AF		 1559 snprintf(buf, sizeof(buf), "X%02x", target_signal_to_gdb(sig));
1560 put_packet(s, buf);
ca587a8e 1561}
1fddef4b 1562
880a7578 1563static void gdb_accept(void)
858693c6
FB		 1564{
1565 GDBState *s;
1566 struct sockaddr_in sockaddr;
1567 socklen_t len;
bf1c852a 1568 int fd;
858693c6
FB		 1569
1570 for(;;) {
1571 len = sizeof(sockaddr);
1572 fd = accept(gdbserver_fd, (struct sockaddr *)&sockaddr, &len);
1573 if (fd < 0 && errno != EINTR) {
1574 perror("accept");
1575 return;
1576 } else if (fd >= 0) {
40ff6d7e
KW		 1577#ifndef _WIN32
1578 fcntl(fd, F_SETFD, FD_CLOEXEC);
1579#endif
b4608c04
FB		 1580 break;
1581 }
1582 }
858693c6
FB		 1583
1584 /* set short latency */
bf1c852a 1585 socket_set_nodelay(fd);
3b46e624 1586
7267c094 1587 s = g_malloc0(sizeof(GDBState));
2e0f2cfb
AF		 1588 s->c_cpu = first_cpu;
1589 s->g_cpu = first_cpu;
858693c6 1590 s->fd = fd;
5b50e790 1591 gdb_has_xml = false;
858693c6 1592
880a7578 1593 gdbserver_state = s;
858693c6
FB		 1594}
1595
1596static int gdbserver_open(int port)
1597{
1598 struct sockaddr_in sockaddr;
6669ca13 1599 int fd, ret;
858693c6
FB		 1600
1601 fd = socket(PF_INET, SOCK_STREAM, 0);
1602 if (fd < 0) {
1603 perror("socket");
1604 return -1;
1605 }
40ff6d7e
KW		 1606#ifndef _WIN32
1607 fcntl(fd, F_SETFD, FD_CLOEXEC);
1608#endif
858693c6 1609
6669ca13 1610 socket_set_fast_reuse(fd);
858693c6
FB		 1611
1612 sockaddr.sin_family = AF_INET;
1613 sockaddr.sin_port = htons(port);
1614 sockaddr.sin_addr.s_addr = 0;
1615 ret = bind(fd, (struct sockaddr *)&sockaddr, sizeof(sockaddr));
1616 if (ret < 0) {
1617 perror("bind");
bb16172c 1618 close(fd);
858693c6
FB		 1619 return -1;
1620 }
96165b9e 1621 ret = listen(fd, 1);
858693c6
FB		 1622 if (ret < 0) {
1623 perror("listen");
bb16172c 1624 close(fd);
858693c6
FB		 1625 return -1;
1626 }
858693c6
FB		 1627 return fd;
1628}
1629
1630int gdbserver_start(int port)
1631{
1632 gdbserver_fd = gdbserver_open(port);
1633 if (gdbserver_fd < 0)
1634 return -1;
1635 /* accept connections */
880a7578 1636 gdb_accept();
4046d913
PB		 1637 return 0;
1638}
2b1319c8
AJ		 1639
1640/* Disable gdb stub for child processes. */
f7ec7f7b 1641void gdbserver_fork(CPUState *cpu)
2b1319c8
AJ		 1642{
1643 GDBState *s = gdbserver_state;
75a34036
AF		 1644
1645 if (gdbserver_fd < 0 || s->fd < 0) {
1646 return;
1647 }
2b1319c8
AJ		 1648 close(s->fd);
1649 s->fd = -1;
b3310ab3 1650 cpu_breakpoint_remove_all(cpu, BP_GDB);
75a34036 1651 cpu_watchpoint_remove_all(cpu, BP_GDB);
2b1319c8 1652}
1fddef4b 1653#else
aa1f17c1 1654static int gdb_chr_can_receive(void *opaque)
4046d913 1655{
56aebc89
PB		 1656 /* We can handle an arbitrarily large amount of data.
1657 Pick the maximum packet size, which is as good as anything. */
1658 return MAX_PACKET_LENGTH;
4046d913
PB		 1659}
1660
aa1f17c1 1661static void gdb_chr_receive(void *opaque, const uint8_t *buf, int size)
4046d913 1662{
4046d913
PB		 1663 int i;
1664
1665 for (i = 0; i < size; i++) {
880a7578 1666 gdb_read_byte(gdbserver_state, buf[i]);
4046d913
PB		 1667 }
1668}
1669
1670static void gdb_chr_event(void *opaque, int event)
1671{
1672 switch (event) {
b6b8df56 1673 case CHR_EVENT_OPENED:
0461d5a6 1674 vm_stop(RUN_STATE_PAUSED);
5b50e790 1675 gdb_has_xml = false;
4046d913
PB		 1676 break;
1677 default:
1678 break;
1679 }
1680}
1681
8a34a0fb
AL		 1682static void gdb_monitor_output(GDBState *s, const char *msg, int len)
1683{
1684 char buf[MAX_PACKET_LENGTH];
1685
1686 buf[0] = 'O';
1687 if (len > (MAX_PACKET_LENGTH/2) - 1)
1688 len = (MAX_PACKET_LENGTH/2) - 1;
1689 memtohex(buf + 1, (uint8_t *)msg, len);
1690 put_packet(s, buf);
1691}
1692
1693static int gdb_monitor_write(CharDriverState *chr, const uint8_t *buf, int len)
1694{
1695 const char *p = (const char *)buf;
1696 int max_sz;
1697
1698 max_sz = (sizeof(gdbserver_state->last_packet) - 2) / 2;
1699 for (;;) {
1700 if (len <= max_sz) {
1701 gdb_monitor_output(gdbserver_state, p, len);
1702 break;
1703 }
1704 gdb_monitor_output(gdbserver_state, p, max_sz);
1705 p += max_sz;
1706 len -= max_sz;
1707 }
1708 return len;
1709}
1710
59030a8c
AL		 1711#ifndef _WIN32
1712static void gdb_sigterm_handler(int signal)
1713{
1354869c 1714 if (runstate_is_running()) {
0461d5a6 1715 vm_stop(RUN_STATE_PAUSED);
e07bbac5 1716 }
59030a8c
AL		 1717}
1718#endif
1719
1720int gdbserver_start(const char *device)
4046d913
PB		 1721{
1722 GDBState *s;
59030a8c 1723 char gdbstub_device_name[128];
36556b20
AL		 1724 CharDriverState *chr = NULL;
1725 CharDriverState *mon_chr;
d0d7708b 1726 ChardevCommon common = { 0 };
cfc3475a 1727
59030a8c
AL		 1728 if (!device)
1729 return -1;
1730 if (strcmp(device, "none") != 0) {
1731 if (strstart(device, "tcp:", NULL)) {
1732 /* enforce required TCP attributes */
1733 snprintf(gdbstub_device_name, sizeof(gdbstub_device_name),
1734 "%s,nowait,nodelay,server", device);
1735 device = gdbstub_device_name;
36556b20 1736 }
59030a8c
AL		 1737#ifndef _WIN32
1738 else if (strcmp(device, "stdio") == 0) {
1739 struct sigaction act;
4046d913 1740
59030a8c
AL		 1741 memset(&act, 0, sizeof(act));
1742 act.sa_handler = gdb_sigterm_handler;
1743 sigaction(SIGINT, &act, NULL);
1744 }
1745#endif
33577b47 1746 chr = qemu_chr_new_noreplay("gdb", device, NULL);
36556b20
AL		 1747 if (!chr)
1748 return -1;
1749
456d6069 1750 qemu_chr_fe_claim_no_fail(chr);
36556b20
AL		 1751 qemu_chr_add_handlers(chr, gdb_chr_can_receive, gdb_chr_receive,
1752 gdb_chr_event, NULL);
cfc3475a
PB		 1753 }
1754
36556b20
AL		 1755 s = gdbserver_state;
1756 if (!s) {
7267c094 1757 s = g_malloc0(sizeof(GDBState));
36556b20 1758 gdbserver_state = s;
4046d913 1759
36556b20
AL		 1760 qemu_add_vm_change_state_handler(gdb_vm_state_change, NULL);
1761
1762 /* Initialize a monitor terminal for gdb */
d0d7708b 1763 mon_chr = qemu_chr_alloc(&common, &error_abort);
36556b20
AL		 1764 mon_chr->chr_write = gdb_monitor_write;
1765 monitor_init(mon_chr, 0);
1766 } else {
1767 if (s->chr)
70f24fb6 1768 qemu_chr_delete(s->chr);
36556b20
AL		 1769 mon_chr = s->mon_chr;
1770 memset(s, 0, sizeof(GDBState));
1771 }
2e0f2cfb
AF		 1772 s->c_cpu = first_cpu;
1773 s->g_cpu = first_cpu;
4046d913 1774 s->chr = chr;
36556b20
AL		 1775 s->state = chr ? RS_IDLE : RS_INACTIVE;
1776 s->mon_chr = mon_chr;
cdb432b2 1777 s->current_syscall_cb = NULL;
8a34a0fb 1778
b4608c04
FB		 1779 return 0;
1780}
4046d913 1781#endif
QEMU mirror