]> git.proxmox.com Git - mirror_qemu.git/blame - gdbstub.c
projects / mirror_qemu.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
xics: Add xics_find_source()
[mirror_qemu.git] / gdbstub.c
CommitLineData
b4608c04
FB		 1/*
2 * gdb server stub
5fafdf24 3 *
3475187d 4 * Copyright (c) 2003-2005 Fabrice Bellard
b4608c04
FB		 5 *
6 * This library is free software; you can redistribute it and/or
7 * modify it under the terms of the GNU Lesser General Public
8 * License as published by the Free Software Foundation; either
9 * version 2 of the License, or (at your option) any later version.
10 *
11 * This library is distributed in the hope that it will be useful,
12 * but WITHOUT ANY WARRANTY; without even the implied warranty of
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
14 * Lesser General Public License for more details.
15 *
16 * You should have received a copy of the GNU Lesser General Public
8167ee88 17 * License along with this library; if not, see <http://www.gnu.org/licenses/>.
b4608c04 18 */
978efd6a 19#include "config.h"
56aebc89 20#include "qemu-common.h"
1fddef4b
FB		 21#ifdef CONFIG_USER_ONLY
22#include <stdlib.h>
23#include <stdio.h>
24#include <stdarg.h>
25#include <string.h>
26#include <errno.h>
27#include <unistd.h>
978efd6a 28#include <fcntl.h>
1fddef4b
FB		 29
30#include "qemu.h"
31#else
83c9089e 32#include "monitor/monitor.h"
dccfcd0e 33#include "sysemu/char.h"
9c17d615 34#include "sysemu/sysemu.h"
022c62cb 35#include "exec/gdbstub.h"
1fddef4b 36#endif
67b915a5 37
56aebc89
PB		 38#define MAX_PACKET_LENGTH 4096
39
2b41f10e 40#include "cpu.h"
1de7afc9 41#include "qemu/sockets.h"
9c17d615 42#include "sysemu/kvm.h"
ca587a8e 43
f3659eee
AF		 44static inline int target_memory_rw_debug(CPUState *cpu, target_ulong addr,
45 uint8_t *buf, int len, bool is_write)
44520db1 46{
f3659eee
AF		 47 CPUClass *cc = CPU_GET_CLASS(cpu);
48
49 if (cc->memory_rw_debug) {
50 return cc->memory_rw_debug(cpu, addr, buf, len, is_write);
51 }
52 return cpu_memory_rw_debug(cpu, addr, buf, len, is_write);
44520db1 53}
ca587a8e
AJ		 54
55enum {
56 GDB_SIGNAL_0 = 0,
57 GDB_SIGNAL_INT = 2,
425189a8 58 GDB_SIGNAL_QUIT = 3,
ca587a8e 59 GDB_SIGNAL_TRAP = 5,
425189a8
JK		 60 GDB_SIGNAL_ABRT = 6,
61 GDB_SIGNAL_ALRM = 14,
62 GDB_SIGNAL_IO = 23,
63 GDB_SIGNAL_XCPU = 24,
ca587a8e
AJ		 64 GDB_SIGNAL_UNKNOWN = 143
65};
66
67#ifdef CONFIG_USER_ONLY
68
69/* Map target signal numbers to GDB protocol signal numbers and vice
70 * versa. For user emulation's currently supported systems, we can
71 * assume most signals are defined.
72 */
73
74static int gdb_signal_table[] = {
75 0,
76 TARGET_SIGHUP,
77 TARGET_SIGINT,
78 TARGET_SIGQUIT,
79 TARGET_SIGILL,
80 TARGET_SIGTRAP,
81 TARGET_SIGABRT,
82 -1, /* SIGEMT */
83 TARGET_SIGFPE,
84 TARGET_SIGKILL,
85 TARGET_SIGBUS,
86 TARGET_SIGSEGV,
87 TARGET_SIGSYS,
88 TARGET_SIGPIPE,
89 TARGET_SIGALRM,
90 TARGET_SIGTERM,
91 TARGET_SIGURG,
92 TARGET_SIGSTOP,
93 TARGET_SIGTSTP,
94 TARGET_SIGCONT,
95 TARGET_SIGCHLD,
96 TARGET_SIGTTIN,
97 TARGET_SIGTTOU,
98 TARGET_SIGIO,
99 TARGET_SIGXCPU,
100 TARGET_SIGXFSZ,
101 TARGET_SIGVTALRM,
102 TARGET_SIGPROF,
103 TARGET_SIGWINCH,
104 -1, /* SIGLOST */
105 TARGET_SIGUSR1,
106 TARGET_SIGUSR2,
c72d5bf8 107#ifdef TARGET_SIGPWR
ca587a8e 108 TARGET_SIGPWR,
c72d5bf8
BS		 109#else
110 -1,
111#endif
ca587a8e
AJ		 112 -1, /* SIGPOLL */
113 -1,
114 -1,
115 -1,
116 -1,
117 -1,
118 -1,
119 -1,
120 -1,
121 -1,
122 -1,
123 -1,
c72d5bf8 124#ifdef __SIGRTMIN
ca587a8e
AJ		 125 __SIGRTMIN + 1,
126 __SIGRTMIN + 2,
127 __SIGRTMIN + 3,
128 __SIGRTMIN + 4,
129 __SIGRTMIN + 5,
130 __SIGRTMIN + 6,
131 __SIGRTMIN + 7,
132 __SIGRTMIN + 8,
133 __SIGRTMIN + 9,
134 __SIGRTMIN + 10,
135 __SIGRTMIN + 11,
136 __SIGRTMIN + 12,
137 __SIGRTMIN + 13,
138 __SIGRTMIN + 14,
139 __SIGRTMIN + 15,
140 __SIGRTMIN + 16,
141 __SIGRTMIN + 17,
142 __SIGRTMIN + 18,
143 __SIGRTMIN + 19,
144 __SIGRTMIN + 20,
145 __SIGRTMIN + 21,
146 __SIGRTMIN + 22,
147 __SIGRTMIN + 23,
148 __SIGRTMIN + 24,
149 __SIGRTMIN + 25,
150 __SIGRTMIN + 26,
151 __SIGRTMIN + 27,
152 __SIGRTMIN + 28,
153 __SIGRTMIN + 29,
154 __SIGRTMIN + 30,
155 __SIGRTMIN + 31,
156 -1, /* SIGCANCEL */
157 __SIGRTMIN,
158 __SIGRTMIN + 32,
159 __SIGRTMIN + 33,
160 __SIGRTMIN + 34,
161 __SIGRTMIN + 35,
162 __SIGRTMIN + 36,
163 __SIGRTMIN + 37,
164 __SIGRTMIN + 38,
165 __SIGRTMIN + 39,
166 __SIGRTMIN + 40,
167 __SIGRTMIN + 41,
168 __SIGRTMIN + 42,
169 __SIGRTMIN + 43,
170 __SIGRTMIN + 44,
171 __SIGRTMIN + 45,
172 __SIGRTMIN + 46,
173 __SIGRTMIN + 47,
174 __SIGRTMIN + 48,
175 __SIGRTMIN + 49,
176 __SIGRTMIN + 50,
177 __SIGRTMIN + 51,
178 __SIGRTMIN + 52,
179 __SIGRTMIN + 53,
180 __SIGRTMIN + 54,
181 __SIGRTMIN + 55,
182 __SIGRTMIN + 56,
183 __SIGRTMIN + 57,
184 __SIGRTMIN + 58,
185 __SIGRTMIN + 59,
186 __SIGRTMIN + 60,
187 __SIGRTMIN + 61,
188 __SIGRTMIN + 62,
189 __SIGRTMIN + 63,
190 __SIGRTMIN + 64,
191 __SIGRTMIN + 65,
192 __SIGRTMIN + 66,
193 __SIGRTMIN + 67,
194 __SIGRTMIN + 68,
195 __SIGRTMIN + 69,
196 __SIGRTMIN + 70,
197 __SIGRTMIN + 71,
198 __SIGRTMIN + 72,
199 __SIGRTMIN + 73,
200 __SIGRTMIN + 74,
201 __SIGRTMIN + 75,
202 __SIGRTMIN + 76,
203 __SIGRTMIN + 77,
204 __SIGRTMIN + 78,
205 __SIGRTMIN + 79,
206 __SIGRTMIN + 80,
207 __SIGRTMIN + 81,
208 __SIGRTMIN + 82,
209 __SIGRTMIN + 83,
210 __SIGRTMIN + 84,
211 __SIGRTMIN + 85,
212 __SIGRTMIN + 86,
213 __SIGRTMIN + 87,
214 __SIGRTMIN + 88,
215 __SIGRTMIN + 89,
216 __SIGRTMIN + 90,
217 __SIGRTMIN + 91,
218 __SIGRTMIN + 92,
219 __SIGRTMIN + 93,
220 __SIGRTMIN + 94,
221 __SIGRTMIN + 95,
222 -1, /* SIGINFO */
223 -1, /* UNKNOWN */
224 -1, /* DEFAULT */
225 -1,
226 -1,
227 -1,
228 -1,
229 -1,
230 -1
c72d5bf8 231#endif
ca587a8e 232};
8f447cc7 233#else
ca587a8e
AJ		 234/* In system mode we only need SIGINT and SIGTRAP; other signals
235 are not yet supported. */
236
237enum {
238 TARGET_SIGINT = 2,
239 TARGET_SIGTRAP = 5
240};
241
242static int gdb_signal_table[] = {
243 -1,
244 -1,
245 TARGET_SIGINT,
246 -1,
247 -1,
248 TARGET_SIGTRAP
249};
250#endif
251
252#ifdef CONFIG_USER_ONLY
253static int target_signal_to_gdb (int sig)
254{
255 int i;
256 for (i = 0; i < ARRAY_SIZE (gdb_signal_table); i++)
257 if (gdb_signal_table[i] == sig)
258 return i;
259 return GDB_SIGNAL_UNKNOWN;
260}
8f447cc7 261#endif
b4608c04 262
ca587a8e
AJ		 263static int gdb_signal_to_target (int sig)
264{
265 if (sig < ARRAY_SIZE (gdb_signal_table))
266 return gdb_signal_table[sig];
267 else
268 return -1;
269}
270
4abe615b 271//#define DEBUG_GDB
b4608c04 272
56aebc89
PB		 273typedef struct GDBRegisterState {
274 int base_reg;
275 int num_regs;
276 gdb_reg_cb get_reg;
277 gdb_reg_cb set_reg;
278 const char *xml;
279 struct GDBRegisterState *next;
280} GDBRegisterState;
281
858693c6 282enum RSState {
36556b20 283 RS_INACTIVE,
858693c6
FB		 284 RS_IDLE,
285 RS_GETLINE,
286 RS_CHKSUM1,
287 RS_CHKSUM2,
288};
858693c6 289typedef struct GDBState {
2e0f2cfb
AF		 290 CPUState *c_cpu; /* current CPU for step/continue ops */
291 CPUState *g_cpu; /* current CPU for other ops */
52f34623 292 CPUState *query_cpu; /* for q{f|s}ThreadInfo */
41625033 293 enum RSState state; /* parsing state */
56aebc89 294 char line_buf[MAX_PACKET_LENGTH];
858693c6
FB		 295 int line_buf_index;
296 int line_csum;
56aebc89 297 uint8_t last_packet[MAX_PACKET_LENGTH + 4];
4046d913 298 int last_packet_len;
1f487ee9 299 int signal;
41625033 300#ifdef CONFIG_USER_ONLY
4046d913 301 int fd;
41625033 302 int running_state;
4046d913
PB		 303#else
304 CharDriverState *chr;
8a34a0fb 305 CharDriverState *mon_chr;
41625033 306#endif
cdb432b2
MI		 307 char syscall_buf[256];
308 gdb_syscall_complete_cb current_syscall_cb;
858693c6 309} GDBState;
b4608c04 310
60897d36
EI		 311/* By default use no IRQs and no timers while single stepping so as to
312 * make single stepping like an ICE HW step.
313 */
314static int sstep_flags = SSTEP_ENABLE|SSTEP_NOIRQ|SSTEP_NOTIMER;
315
880a7578
AL		 316static GDBState *gdbserver_state;
317
5b50e790 318bool gdb_has_xml;
56aebc89 319
1fddef4b 320#ifdef CONFIG_USER_ONLY
4046d913
PB		 321/* XXX: This is not thread safe. Do we care? */
322static int gdbserver_fd = -1;
323
858693c6 324static int get_char(GDBState *s)
b4608c04
FB		 325{
326 uint8_t ch;
327 int ret;
328
329 for(;;) {
00aa0040 330 ret = qemu_recv(s->fd, &ch, 1, 0);
b4608c04 331 if (ret < 0) {
1f487ee9
EI		 332 if (errno == ECONNRESET)
333 s->fd = -1;
b4608c04
FB		 334 if (errno != EINTR && errno != EAGAIN)
335 return -1;
336 } else if (ret == 0) {
1f487ee9
EI		 337 close(s->fd);
338 s->fd = -1;
b4608c04
FB		 339 return -1;
340 } else {
341 break;
342 }
343 }
344 return ch;
345}
4046d913 346#endif
b4608c04 347
654efcf3 348static enum {
a2d1ebaf
PB		 349 GDB_SYS_UNKNOWN,
350 GDB_SYS_ENABLED,
351 GDB_SYS_DISABLED,
352} gdb_syscall_mode;
353
354/* If gdb is connected when the first semihosting syscall occurs then use
355 remote gdb syscalls. Otherwise use native file IO. */
356int use_gdb_syscalls(void)
357{
358 if (gdb_syscall_mode == GDB_SYS_UNKNOWN) {
880a7578
AL		 359 gdb_syscall_mode = (gdbserver_state ? GDB_SYS_ENABLED
360 : GDB_SYS_DISABLED);
a2d1ebaf
PB		 361 }
362 return gdb_syscall_mode == GDB_SYS_ENABLED;
363}
364
ba70a624
EI		 365/* Resume execution. */
366static inline void gdb_continue(GDBState *s)
367{
368#ifdef CONFIG_USER_ONLY
369 s->running_state = 1;
370#else
26ac7a31 371 if (!runstate_needs_reset()) {
87f25c12
PB		 372 vm_start();
373 }
ba70a624
EI		 374#endif
375}
376
858693c6 377static void put_buffer(GDBState *s, const uint8_t *buf, int len)
b4608c04 378{
4046d913 379#ifdef CONFIG_USER_ONLY
b4608c04
FB		 380 int ret;
381
382 while (len > 0) {
8f447cc7 383 ret = send(s->fd, buf, len, 0);
b4608c04
FB		 384 if (ret < 0) {
385 if (errno != EINTR && errno != EAGAIN)
386 return;
387 } else {
388 buf += ret;
389 len -= ret;
390 }
391 }
4046d913 392#else
2cc6e0a1 393 qemu_chr_fe_write(s->chr, buf, len);
4046d913 394#endif
b4608c04
FB		 395}
396
397static inline int fromhex(int v)
398{
399 if (v >= '0' && v <= '9')
400 return v - '0';
401 else if (v >= 'A' && v <= 'F')
402 return v - 'A' + 10;
403 else if (v >= 'a' && v <= 'f')
404 return v - 'a' + 10;
405 else
406 return 0;
407}
408
409static inline int tohex(int v)
410{
411 if (v < 10)
412 return v + '0';
413 else
414 return v - 10 + 'a';
415}
416
417static void memtohex(char *buf, const uint8_t *mem, int len)
418{
419 int i, c;
420 char *q;
421 q = buf;
422 for(i = 0; i < len; i++) {
423 c = mem[i];
424 *q++ = tohex(c >> 4);
425 *q++ = tohex(c & 0xf);
426 }
427 *q = '\0';
428}
429
430static void hextomem(uint8_t *mem, const char *buf, int len)
431{
432 int i;
433
434 for(i = 0; i < len; i++) {
435 mem[i] = (fromhex(buf[0]) << 4) | fromhex(buf[1]);
436 buf += 2;
437 }
438}
439
b4608c04 440/* return -1 if error, 0 if OK */
56aebc89 441static int put_packet_binary(GDBState *s, const char *buf, int len)
b4608c04 442{
56aebc89 443 int csum, i;
60fe76f3 444 uint8_t *p;
b4608c04 445
b4608c04 446 for(;;) {
4046d913
PB		 447 p = s->last_packet;
448 *(p++) = '$';
4046d913
PB		 449 memcpy(p, buf, len);
450 p += len;
b4608c04
FB		 451 csum = 0;
452 for(i = 0; i < len; i++) {
453 csum += buf[i];
454 }
4046d913
PB		 455 *(p++) = '#';
456 *(p++) = tohex((csum >> 4) & 0xf);
457 *(p++) = tohex((csum) & 0xf);
b4608c04 458
4046d913 459 s->last_packet_len = p - s->last_packet;
ffe8ab83 460 put_buffer(s, (uint8_t *)s->last_packet, s->last_packet_len);
b4608c04 461
4046d913
PB		 462#ifdef CONFIG_USER_ONLY
463 i = get_char(s);
464 if (i < 0)
b4608c04 465 return -1;
4046d913 466 if (i == '+')
b4608c04 467 break;
4046d913
PB		 468#else
469 break;
470#endif
b4608c04
FB		 471 }
472 return 0;
473}
474
56aebc89
PB		 475/* return -1 if error, 0 if OK */
476static int put_packet(GDBState *s, const char *buf)
477{
478#ifdef DEBUG_GDB
479 printf("reply='%s'\n", buf);
480#endif
79808573 481
56aebc89
PB		 482 return put_packet_binary(s, buf, strlen(buf));
483}
484
56aebc89
PB		 485/* Encode data using the encoding for 'x' packets. */
486static int memtox(char *buf, const char *mem, int len)
487{
488 char *p = buf;
489 char c;
490
491 while (len--) {
492 c = *(mem++);
493 switch (c) {
494 case '#': case '$': case '*': case '}':
495 *(p++) = '}';
496 *(p++) = c ^ 0x20;
497 break;
498 default:
499 *(p++) = c;
500 break;
501 }
502 }
503 return p - buf;
504}
f1ccf904 505
5b24c641
AF		 506static const char *get_feature_xml(const char *p, const char **newp,
507 CPUClass *cc)
56aebc89 508{
56aebc89
PB		 509 size_t len;
510 int i;
511 const char *name;
512 static char target_xml[1024];
513
514 len = 0;
515 while (p[len] && p[len] != ':')
516 len++;
517 *newp = p + len;
518
519 name = NULL;
520 if (strncmp(p, "target.xml", len) == 0) {
521 /* Generate the XML description for this CPU. */
522 if (!target_xml[0]) {
523 GDBRegisterState *r;
eac8b355 524 CPUState *cpu = first_cpu;
56aebc89 525
5b3715bf
BS		 526 snprintf(target_xml, sizeof(target_xml),
527 "<?xml version=\"1.0\"?>"
528 "<!DOCTYPE target SYSTEM \"gdb-target.dtd\">"
529 "<target>"
530 "<xi:include href=\"%s\"/>",
5b24c641 531 cc->gdb_core_xml_file);
56aebc89 532
eac8b355 533 for (r = cpu->gdb_regs; r; r = r->next) {
2dc766da
BS		 534 pstrcat(target_xml, sizeof(target_xml), "<xi:include href=\"");
535 pstrcat(target_xml, sizeof(target_xml), r->xml);
536 pstrcat(target_xml, sizeof(target_xml), "\"/>");
56aebc89 537 }
2dc766da 538 pstrcat(target_xml, sizeof(target_xml), "</target>");
56aebc89
PB		 539 }
540 return target_xml;
541 }
542 for (i = 0; ; i++) {
543 name = xml_builtin[i][0];
544 if (!name || (strncmp(name, p, len) == 0 && strlen(name) == len))
545 break;
546 }
547 return name ? xml_builtin[i][1] : NULL;
548}
f1ccf904 549
385b9f0e 550static int gdb_read_register(CPUState *cpu, uint8_t *mem_buf, int reg)
56aebc89 551{
a0e372f0 552 CPUClass *cc = CPU_GET_CLASS(cpu);
385b9f0e 553 CPUArchState *env = cpu->env_ptr;
56aebc89 554 GDBRegisterState *r;
f1ccf904 555
a0e372f0 556 if (reg < cc->gdb_num_core_regs) {
5b50e790 557 return cc->gdb_read_register(cpu, mem_buf, reg);
a0e372f0 558 }
f1ccf904 559
eac8b355 560 for (r = cpu->gdb_regs; r; r = r->next) {
56aebc89
PB		 561 if (r->base_reg <= reg && reg < r->base_reg + r->num_regs) {
562 return r->get_reg(env, mem_buf, reg - r->base_reg);
563 }
564 }
565 return 0;
f1ccf904
TS		 566}
567
385b9f0e 568static int gdb_write_register(CPUState *cpu, uint8_t *mem_buf, int reg)
f1ccf904 569{
a0e372f0 570 CPUClass *cc = CPU_GET_CLASS(cpu);
385b9f0e 571 CPUArchState *env = cpu->env_ptr;
56aebc89 572 GDBRegisterState *r;
f1ccf904 573
a0e372f0 574 if (reg < cc->gdb_num_core_regs) {
5b50e790 575 return cc->gdb_write_register(cpu, mem_buf, reg);
a0e372f0 576 }
56aebc89 577
eac8b355 578 for (r = cpu->gdb_regs; r; r = r->next) {
56aebc89
PB		 579 if (r->base_reg <= reg && reg < r->base_reg + r->num_regs) {
580 return r->set_reg(env, mem_buf, reg - r->base_reg);
581 }
582 }
6da41eaf
FB		 583 return 0;
584}
585
56aebc89
PB		 586/* Register a supplemental set of CPU registers. If g_pos is nonzero it
587 specifies the first register number and these registers are included in
588 a standard "g" packet. Direction is relative to gdb, i.e. get_reg is
589 gdb reading a CPU register, and set_reg is gdb modifying a CPU register.
590 */
591
22169d41
AF		 592void gdb_register_coprocessor(CPUState *cpu,
593 gdb_reg_cb get_reg, gdb_reg_cb set_reg,
594 int num_regs, const char *xml, int g_pos)
6da41eaf 595{
56aebc89
PB		 596 GDBRegisterState *s;
597 GDBRegisterState **p;
56aebc89 598
eac8b355 599 p = &cpu->gdb_regs;
56aebc89
PB		 600 while (*p) {
601 /* Check for duplicates. */
602 if (strcmp((*p)->xml, xml) == 0)
603 return;
604 p = &(*p)->next;
605 }
9643c25f
SW		 606
607 s = g_new0(GDBRegisterState, 1);
a0e372f0 608 s->base_reg = cpu->gdb_num_regs;
9643c25f
SW		 609 s->num_regs = num_regs;
610 s->get_reg = get_reg;
611 s->set_reg = set_reg;
612 s->xml = xml;
613
56aebc89 614 /* Add to end of list. */
a0e372f0 615 cpu->gdb_num_regs += num_regs;
56aebc89
PB		 616 *p = s;
617 if (g_pos) {
618 if (g_pos != s->base_reg) {
619 fprintf(stderr, "Error: Bad gdb register numbering for '%s'\n"
620 "Expected %d got %d\n", xml, g_pos, s->base_reg);
35143f01
AF		 621 } else {
622 cpu->gdb_num_g_regs = cpu->gdb_num_regs;
56aebc89
PB		 623 }
624 }
6da41eaf
FB		 625}
626
a1d1bb31
AL		 627#ifndef CONFIG_USER_ONLY
628static const int xlat_gdb_type[] = {
629 [GDB_WATCHPOINT_WRITE] = BP_GDB | BP_MEM_WRITE,
630 [GDB_WATCHPOINT_READ] = BP_GDB | BP_MEM_READ,
631 [GDB_WATCHPOINT_ACCESS] = BP_GDB | BP_MEM_ACCESS,
632};
633#endif
634
880a7578 635static int gdb_breakpoint_insert(target_ulong addr, target_ulong len, int type)
a1d1bb31 636{
182735ef 637 CPUState *cpu;
880a7578
AL		 638 int err = 0;
639
62278814 640 if (kvm_enabled()) {
2e0f2cfb 641 return kvm_insert_breakpoint(gdbserver_state->c_cpu, addr, len, type);
62278814 642 }
e22a25c9 643
a1d1bb31
AL		 644 switch (type) {
645 case GDB_BREAKPOINT_SW:
646 case GDB_BREAKPOINT_HW:
bdc44640 647 CPU_FOREACH(cpu) {
b3310ab3
AF		 648 err = cpu_breakpoint_insert(cpu, addr, BP_GDB, NULL);
649 if (err) {
880a7578 650 break;
b3310ab3 651 }
880a7578
AL		 652 }
653 return err;
a1d1bb31
AL		 654#ifndef CONFIG_USER_ONLY
655 case GDB_WATCHPOINT_WRITE:
656 case GDB_WATCHPOINT_READ:
657 case GDB_WATCHPOINT_ACCESS:
bdc44640 658 CPU_FOREACH(cpu) {
75a34036 659 err = cpu_watchpoint_insert(cpu, addr, len, xlat_gdb_type[type],
880a7578
AL		 660 NULL);
661 if (err)
662 break;
663 }
664 return err;
a1d1bb31
AL		 665#endif
666 default:
667 return -ENOSYS;
668 }
669}
670
880a7578 671static int gdb_breakpoint_remove(target_ulong addr, target_ulong len, int type)
a1d1bb31 672{
182735ef 673 CPUState *cpu;
880a7578
AL		 674 int err = 0;
675
62278814 676 if (kvm_enabled()) {
2e0f2cfb 677 return kvm_remove_breakpoint(gdbserver_state->c_cpu, addr, len, type);
62278814 678 }
e22a25c9 679
a1d1bb31
AL		 680 switch (type) {
681 case GDB_BREAKPOINT_SW:
682 case GDB_BREAKPOINT_HW:
bdc44640 683 CPU_FOREACH(cpu) {
b3310ab3
AF		 684 err = cpu_breakpoint_remove(cpu, addr, BP_GDB);
685 if (err) {
880a7578 686 break;
b3310ab3 687 }
880a7578
AL		 688 }
689 return err;
a1d1bb31
AL		 690#ifndef CONFIG_USER_ONLY
691 case GDB_WATCHPOINT_WRITE:
692 case GDB_WATCHPOINT_READ:
693 case GDB_WATCHPOINT_ACCESS:
bdc44640 694 CPU_FOREACH(cpu) {
75a34036 695 err = cpu_watchpoint_remove(cpu, addr, len, xlat_gdb_type[type]);
880a7578
AL		 696 if (err)
697 break;
698 }
699 return err;
a1d1bb31
AL		 700#endif
701 default:
702 return -ENOSYS;
703 }
704}
705
880a7578 706static void gdb_breakpoint_remove_all(void)
a1d1bb31 707{
182735ef 708 CPUState *cpu;
880a7578 709
e22a25c9 710 if (kvm_enabled()) {
2e0f2cfb 711 kvm_remove_all_breakpoints(gdbserver_state->c_cpu);
e22a25c9
AL		 712 return;
713 }
714
bdc44640 715 CPU_FOREACH(cpu) {
b3310ab3 716 cpu_breakpoint_remove_all(cpu, BP_GDB);
a1d1bb31 717#ifndef CONFIG_USER_ONLY
75a34036 718 cpu_watchpoint_remove_all(cpu, BP_GDB);
a1d1bb31 719#endif
880a7578 720 }
a1d1bb31
AL		 721}
722
fab9d284
AJ		 723static void gdb_set_cpu_pc(GDBState *s, target_ulong pc)
724{
2e0f2cfb 725 CPUState *cpu = s->c_cpu;
f45748f1
AF		 726 CPUClass *cc = CPU_GET_CLASS(cpu);
727
728 cpu_synchronize_state(cpu);
729 if (cc->set_pc) {
730 cc->set_pc(cpu, pc);
ff1d1977 731 }
fab9d284
AJ		 732}
733
2e0f2cfb 734static CPUState *find_cpu(uint32_t thread_id)
1e9fa730 735{
0d34282f 736 CPUState *cpu;
1e9fa730 737
bdc44640 738 CPU_FOREACH(cpu) {
aa48dd93 739 if (cpu_index(cpu) == thread_id) {
2e0f2cfb 740 return cpu;
aa48dd93 741 }
1e9fa730 742 }
aa48dd93
AF		 743
744 return NULL;
1e9fa730
NF		 745}
746
880a7578 747static int gdb_handle_packet(GDBState *s, const char *line_buf)
b4608c04 748{
2e0f2cfb 749 CPUState *cpu;
5b24c641 750 CPUClass *cc;
b4608c04 751 const char *p;
1e9fa730
NF		 752 uint32_t thread;
753 int ch, reg_size, type, res;
56aebc89
PB		 754 char buf[MAX_PACKET_LENGTH];
755 uint8_t mem_buf[MAX_PACKET_LENGTH];
756 uint8_t *registers;
9d9754a3 757 target_ulong addr, len;
3b46e624 758
858693c6
FB		 759#ifdef DEBUG_GDB
760 printf("command='%s'\n", line_buf);
761#endif
762 p = line_buf;
763 ch = *p++;
764 switch(ch) {
765 case '?':
1fddef4b 766 /* TODO: Make this return the correct value for user-mode. */
ca587a8e 767 snprintf(buf, sizeof(buf), "T%02xthread:%02x;", GDB_SIGNAL_TRAP,
2e0f2cfb 768 cpu_index(s->c_cpu));
858693c6 769 put_packet(s, buf);
7d03f82f
EI		 770 /* Remove all the breakpoints when this query is issued,
771 * because gdb is doing and initial connect and the state
772 * should be cleaned up.
773 */
880a7578 774 gdb_breakpoint_remove_all();
858693c6
FB		 775 break;
776 case 'c':
777 if (*p != '\0') {
9d9754a3 778 addr = strtoull(p, (char **)&p, 16);
fab9d284 779 gdb_set_cpu_pc(s, addr);
858693c6 780 }
ca587a8e 781 s->signal = 0;
ba70a624 782 gdb_continue(s);
41625033 783 return RS_IDLE;
1f487ee9 784 case 'C':
ca587a8e
AJ		 785 s->signal = gdb_signal_to_target (strtoul(p, (char **)&p, 16));
786 if (s->signal == -1)
787 s->signal = 0;
1f487ee9
EI		 788 gdb_continue(s);
789 return RS_IDLE;
dd32aa10
JK		 790 case 'v':
791 if (strncmp(p, "Cont", 4) == 0) {
792 int res_signal, res_thread;
793
794 p += 4;
795 if (*p == '?') {
796 put_packet(s, "vCont;c;C;s;S");
797 break;
798 }
799 res = 0;
800 res_signal = 0;
801 res_thread = 0;
802 while (*p) {
803 int action, signal;
804
805 if (*p++ != ';') {
806 res = 0;
807 break;
808 }
809 action = *p++;
810 signal = 0;
811 if (action == 'C' || action == 'S') {
812 signal = strtoul(p, (char **)&p, 16);
813 } else if (action != 'c' && action != 's') {
814 res = 0;
815 break;
816 }
817 thread = 0;
818 if (*p == ':') {
819 thread = strtoull(p+1, (char **)&p, 16);
820 }
821 action = tolower(action);
822 if (res == 0 || (res == 'c' && action == 's')) {
823 res = action;
824 res_signal = signal;
825 res_thread = thread;
826 }
827 }
828 if (res) {
829 if (res_thread != -1 && res_thread != 0) {
2e0f2cfb
AF		 830 cpu = find_cpu(res_thread);
831 if (cpu == NULL) {
dd32aa10
JK		 832 put_packet(s, "E22");
833 break;
834 }
2e0f2cfb 835 s->c_cpu = cpu;
dd32aa10
JK		 836 }
837 if (res == 's') {
2e0f2cfb 838 cpu_single_step(s->c_cpu, sstep_flags);
dd32aa10
JK		 839 }
840 s->signal = res_signal;
841 gdb_continue(s);
842 return RS_IDLE;
843 }
844 break;
845 } else {
846 goto unknown_command;
847 }
7d03f82f 848 case 'k':
00e94dbc 849#ifdef CONFIG_USER_ONLY
7d03f82f
EI		 850 /* Kill the target */
851 fprintf(stderr, "\nQEMU: Terminated via GDBstub\n");
852 exit(0);
00e94dbc 853#endif
7d03f82f
EI		 854 case 'D':
855 /* Detach packet */
880a7578 856 gdb_breakpoint_remove_all();
7ea06da3 857 gdb_syscall_mode = GDB_SYS_DISABLED;
7d03f82f
EI		 858 gdb_continue(s);
859 put_packet(s, "OK");
860 break;
858693c6
FB		 861 case 's':
862 if (*p != '\0') {
8fac5803 863 addr = strtoull(p, (char **)&p, 16);
fab9d284 864 gdb_set_cpu_pc(s, addr);
858693c6 865 }
2e0f2cfb 866 cpu_single_step(s->c_cpu, sstep_flags);
ba70a624 867 gdb_continue(s);
41625033 868 return RS_IDLE;
a2d1ebaf
PB		 869 case 'F':
870 {
871 target_ulong ret;
872 target_ulong err;
873
874 ret = strtoull(p, (char **)&p, 16);
875 if (*p == ',') {
876 p++;
877 err = strtoull(p, (char **)&p, 16);
878 } else {
879 err = 0;
880 }
881 if (*p == ',')
882 p++;
883 type = *p;
cdb432b2 884 if (s->current_syscall_cb) {
2e0f2cfb 885 s->current_syscall_cb(s->c_cpu, ret, err);
cdb432b2
MI		 886 s->current_syscall_cb = NULL;
887 }
a2d1ebaf
PB		 888 if (type == 'C') {
889 put_packet(s, "T02");
890 } else {
ba70a624 891 gdb_continue(s);
a2d1ebaf
PB		 892 }
893 }
894 break;
858693c6 895 case 'g':
2e0f2cfb 896 cpu_synchronize_state(s->g_cpu);
56aebc89 897 len = 0;
35143f01 898 for (addr = 0; addr < s->g_cpu->gdb_num_g_regs; addr++) {
2e0f2cfb 899 reg_size = gdb_read_register(s->g_cpu, mem_buf + len, addr);
56aebc89
PB		 900 len += reg_size;
901 }
902 memtohex(buf, mem_buf, len);
858693c6
FB		 903 put_packet(s, buf);
904 break;
905 case 'G':
2e0f2cfb 906 cpu_synchronize_state(s->g_cpu);
56aebc89 907 registers = mem_buf;
858693c6
FB		 908 len = strlen(p) / 2;
909 hextomem((uint8_t *)registers, p, len);
35143f01 910 for (addr = 0; addr < s->g_cpu->gdb_num_g_regs && len > 0; addr++) {
2e0f2cfb 911 reg_size = gdb_write_register(s->g_cpu, registers, addr);
56aebc89
PB		 912 len -= reg_size;
913 registers += reg_size;
914 }
858693c6
FB		 915 put_packet(s, "OK");
916 break;
917 case 'm':
9d9754a3 918 addr = strtoull(p, (char **)&p, 16);
858693c6
FB		 919 if (*p == ',')
920 p++;
9d9754a3 921 len = strtoull(p, NULL, 16);
2e0f2cfb 922 if (target_memory_rw_debug(s->g_cpu, addr, mem_buf, len, false) != 0) {
6f970bd9
FB		 923 put_packet (s, "E14");
924 } else {
925 memtohex(buf, mem_buf, len);
926 put_packet(s, buf);
927 }
858693c6
FB		 928 break;
929 case 'M':
9d9754a3 930 addr = strtoull(p, (char **)&p, 16);
858693c6
FB		 931 if (*p == ',')
932 p++;
9d9754a3 933 len = strtoull(p, (char **)&p, 16);
b328f873 934 if (*p == ':')
858693c6
FB		 935 p++;
936 hextomem(mem_buf, p, len);
2e0f2cfb 937 if (target_memory_rw_debug(s->g_cpu, addr, mem_buf, len,
f3659eee 938 true) != 0) {
905f20b1 939 put_packet(s, "E14");
44520db1 940 } else {
858693c6 941 put_packet(s, "OK");
44520db1 942 }
858693c6 943 break;
56aebc89
PB		 944 case 'p':
945 /* Older gdb are really dumb, and don't use 'g' if 'p' is avaialable.
946 This works, but can be very slow. Anything new enough to
947 understand XML also knows how to use this properly. */
948 if (!gdb_has_xml)
949 goto unknown_command;
950 addr = strtoull(p, (char **)&p, 16);
2e0f2cfb 951 reg_size = gdb_read_register(s->g_cpu, mem_buf, addr);
56aebc89
PB		 952 if (reg_size) {
953 memtohex(buf, mem_buf, reg_size);
954 put_packet(s, buf);
955 } else {
956 put_packet(s, "E14");
957 }
958 break;
959 case 'P':
960 if (!gdb_has_xml)
961 goto unknown_command;
962 addr = strtoull(p, (char **)&p, 16);
963 if (*p == '=')
964 p++;
965 reg_size = strlen(p) / 2;
966 hextomem(mem_buf, p, reg_size);
2e0f2cfb 967 gdb_write_register(s->g_cpu, mem_buf, addr);
56aebc89
PB		 968 put_packet(s, "OK");
969 break;
858693c6 970 case 'Z':
858693c6
FB		 971 case 'z':
972 type = strtoul(p, (char **)&p, 16);
973 if (*p == ',')
974 p++;
9d9754a3 975 addr = strtoull(p, (char **)&p, 16);
858693c6
FB		 976 if (*p == ',')
977 p++;
9d9754a3 978 len = strtoull(p, (char **)&p, 16);
a1d1bb31 979 if (ch == 'Z')
880a7578 980 res = gdb_breakpoint_insert(addr, len, type);
a1d1bb31 981 else
880a7578 982 res = gdb_breakpoint_remove(addr, len, type);
a1d1bb31
AL		 983 if (res >= 0)
984 put_packet(s, "OK");
985 else if (res == -ENOSYS)
0f459d16 986 put_packet(s, "");
a1d1bb31
AL		 987 else
988 put_packet(s, "E22");
858693c6 989 break;
880a7578
AL		 990 case 'H':
991 type = *p++;
992 thread = strtoull(p, (char **)&p, 16);
993 if (thread == -1 || thread == 0) {
994 put_packet(s, "OK");
995 break;
996 }
2e0f2cfb
AF		 997 cpu = find_cpu(thread);
998 if (cpu == NULL) {
880a7578
AL		 999 put_packet(s, "E22");
1000 break;
1001 }
1002 switch (type) {
1003 case 'c':
2e0f2cfb 1004 s->c_cpu = cpu;
880a7578
AL		 1005 put_packet(s, "OK");
1006 break;
1007 case 'g':
2e0f2cfb 1008 s->g_cpu = cpu;
880a7578
AL		 1009 put_packet(s, "OK");
1010 break;
1011 default:
1012 put_packet(s, "E22");
1013 break;
1014 }
1015 break;
1016 case 'T':
1017 thread = strtoull(p, (char **)&p, 16);
2e0f2cfb 1018 cpu = find_cpu(thread);
1e9fa730 1019
2e0f2cfb 1020 if (cpu != NULL) {
1e9fa730
NF		 1021 put_packet(s, "OK");
1022 } else {
880a7578 1023 put_packet(s, "E22");
1e9fa730 1024 }
880a7578 1025 break;
978efd6a 1026 case 'q':
60897d36
EI		 1027 case 'Q':
1028 /* parse any 'q' packets here */
1029 if (!strcmp(p,"qemu.sstepbits")) {
1030 /* Query Breakpoint bit definitions */
363a37d5
BS		 1031 snprintf(buf, sizeof(buf), "ENABLE=%x,NOIRQ=%x,NOTIMER=%x",
1032 SSTEP_ENABLE,
1033 SSTEP_NOIRQ,
1034 SSTEP_NOTIMER);
60897d36
EI		 1035 put_packet(s, buf);
1036 break;
1037 } else if (strncmp(p,"qemu.sstep",10) == 0) {
1038 /* Display or change the sstep_flags */
1039 p += 10;
1040 if (*p != '=') {
1041 /* Display current setting */
363a37d5 1042 snprintf(buf, sizeof(buf), "0x%x", sstep_flags);
60897d36
EI		 1043 put_packet(s, buf);
1044 break;
1045 }
1046 p++;
1047 type = strtoul(p, (char **)&p, 16);
1048 sstep_flags = type;
1049 put_packet(s, "OK");
1050 break;
880a7578
AL		 1051 } else if (strcmp(p,"C") == 0) {
1052 /* "Current thread" remains vague in the spec, so always return
1053 * the first CPU (gdb returns the first thread). */
1054 put_packet(s, "QC1");
1055 break;
1056 } else if (strcmp(p,"fThreadInfo") == 0) {
52f34623 1057 s->query_cpu = first_cpu;
880a7578
AL		 1058 goto report_cpuinfo;
1059 } else if (strcmp(p,"sThreadInfo") == 0) {
1060 report_cpuinfo:
1061 if (s->query_cpu) {
52f34623 1062 snprintf(buf, sizeof(buf), "m%x", cpu_index(s->query_cpu));
880a7578 1063 put_packet(s, buf);
bdc44640 1064 s->query_cpu = CPU_NEXT(s->query_cpu);
880a7578
AL		 1065 } else
1066 put_packet(s, "l");
1067 break;
1068 } else if (strncmp(p,"ThreadExtraInfo,", 16) == 0) {
1069 thread = strtoull(p+16, (char **)&p, 16);
2e0f2cfb
AF		 1070 cpu = find_cpu(thread);
1071 if (cpu != NULL) {
cb446eca 1072 cpu_synchronize_state(cpu);
1e9fa730 1073 len = snprintf((char *)mem_buf, sizeof(mem_buf),
55e5c285 1074 "CPU#%d [%s]", cpu->cpu_index,
259186a7 1075 cpu->halted ? "halted " : "running");
1e9fa730
NF		 1076 memtohex(buf, mem_buf, len);
1077 put_packet(s, buf);
1078 }
880a7578 1079 break;
60897d36 1080 }
0b8a988c 1081#ifdef CONFIG_USER_ONLY
60897d36 1082 else if (strncmp(p, "Offsets", 7) == 0) {
0429a971 1083 TaskState *ts = s->c_cpu->opaque;
978efd6a 1084
363a37d5
BS		 1085 snprintf(buf, sizeof(buf),
1086 "Text=" TARGET_ABI_FMT_lx ";Data=" TARGET_ABI_FMT_lx
1087 ";Bss=" TARGET_ABI_FMT_lx,
1088 ts->info->code_offset,
1089 ts->info->data_offset,
1090 ts->info->data_offset);
978efd6a
PB		 1091 put_packet(s, buf);
1092 break;
1093 }
0b8a988c 1094#else /* !CONFIG_USER_ONLY */
8a34a0fb
AL		 1095 else if (strncmp(p, "Rcmd,", 5) == 0) {
1096 int len = strlen(p + 5);
1097
1098 if ((len % 2) != 0) {
1099 put_packet(s, "E01");
1100 break;
1101 }
1102 hextomem(mem_buf, p + 5, len);
1103 len = len / 2;
1104 mem_buf[len++] = 0;
fa5efccb 1105 qemu_chr_be_write(s->mon_chr, mem_buf, len);
8a34a0fb
AL		 1106 put_packet(s, "OK");
1107 break;
1108 }
0b8a988c 1109#endif /* !CONFIG_USER_ONLY */
56aebc89 1110 if (strncmp(p, "Supported", 9) == 0) {
5b3715bf 1111 snprintf(buf, sizeof(buf), "PacketSize=%x", MAX_PACKET_LENGTH);
5b24c641
AF		 1112 cc = CPU_GET_CLASS(first_cpu);
1113 if (cc->gdb_core_xml_file != NULL) {
1114 pstrcat(buf, sizeof(buf), ";qXfer:features:read+");
1115 }
56aebc89
PB		 1116 put_packet(s, buf);
1117 break;
1118 }
56aebc89
PB		 1119 if (strncmp(p, "Xfer:features:read:", 19) == 0) {
1120 const char *xml;
1121 target_ulong total_len;
1122
5b24c641
AF		 1123 cc = CPU_GET_CLASS(first_cpu);
1124 if (cc->gdb_core_xml_file == NULL) {
1125 goto unknown_command;
1126 }
1127
5b50e790 1128 gdb_has_xml = true;
56aebc89 1129 p += 19;
5b24c641 1130 xml = get_feature_xml(p, &p, cc);
56aebc89 1131 if (!xml) {
5b3715bf 1132 snprintf(buf, sizeof(buf), "E00");
56aebc89
PB		 1133 put_packet(s, buf);
1134 break;
1135 }
1136
1137 if (*p == ':')
1138 p++;
1139 addr = strtoul(p, (char **)&p, 16);
1140 if (*p == ',')
1141 p++;
1142 len = strtoul(p, (char **)&p, 16);
1143
1144 total_len = strlen(xml);
1145 if (addr > total_len) {
5b3715bf 1146 snprintf(buf, sizeof(buf), "E00");
56aebc89
PB		 1147 put_packet(s, buf);
1148 break;
1149 }
1150 if (len > (MAX_PACKET_LENGTH - 5) / 2)
1151 len = (MAX_PACKET_LENGTH - 5) / 2;
1152 if (len < total_len - addr) {
1153 buf[0] = 'm';
1154 len = memtox(buf + 1, xml + addr, len);
1155 } else {
1156 buf[0] = 'l';
1157 len = memtox(buf + 1, xml + addr, total_len - addr);
1158 }
1159 put_packet_binary(s, buf, len + 1);
1160 break;
1161 }
56aebc89
PB		 1162 /* Unrecognised 'q' command. */
1163 goto unknown_command;
1164
858693c6 1165 default:
56aebc89 1166 unknown_command:
858693c6
FB		 1167 /* put empty packet */
1168 buf[0] = '\0';
1169 put_packet(s, buf);
1170 break;
1171 }
1172 return RS_IDLE;
1173}
1174
64f6b346 1175void gdb_set_stop_cpu(CPUState *cpu)
880a7578 1176{
2e0f2cfb
AF		 1177 gdbserver_state->c_cpu = cpu;
1178 gdbserver_state->g_cpu = cpu;
880a7578
AL		 1179}
1180
1fddef4b 1181#ifndef CONFIG_USER_ONLY
1dfb4dd9 1182static void gdb_vm_state_change(void *opaque, int running, RunState state)
858693c6 1183{
880a7578 1184 GDBState *s = gdbserver_state;
2e0f2cfb
AF		 1185 CPUArchState *env = s->c_cpu->env_ptr;
1186 CPUState *cpu = s->c_cpu;
858693c6 1187 char buf[256];
d6fc1b39 1188 const char *type;
858693c6
FB		 1189 int ret;
1190
cdb432b2
MI		 1191 if (running || s->state == RS_INACTIVE) {
1192 return;
1193 }
1194 /* Is there a GDB syscall waiting to be sent? */
1195 if (s->current_syscall_cb) {
1196 put_packet(s, s->syscall_buf);
a2d1ebaf 1197 return;
e07bbac5 1198 }
1dfb4dd9 1199 switch (state) {
0461d5a6 1200 case RUN_STATE_DEBUG:
ff4700b0
AF		 1201 if (cpu->watchpoint_hit) {
1202 switch (cpu->watchpoint_hit->flags & BP_MEM_ACCESS) {
a1d1bb31 1203 case BP_MEM_READ:
d6fc1b39
AL		 1204 type = "r";
1205 break;
a1d1bb31 1206 case BP_MEM_ACCESS:
d6fc1b39
AL		 1207 type = "a";
1208 break;
1209 default:
1210 type = "";
1211 break;
1212 }
880a7578
AL		 1213 snprintf(buf, sizeof(buf),
1214 "T%02xthread:%02x;%swatch:" TARGET_FMT_lx ";",
0d34282f 1215 GDB_SIGNAL_TRAP, cpu_index(cpu), type,
ff4700b0
AF		 1216 (target_ulong)cpu->watchpoint_hit->vaddr);
1217 cpu->watchpoint_hit = NULL;
425189a8 1218 goto send_packet;
6658ffb8 1219 }
425189a8 1220 tb_flush(env);
ca587a8e 1221 ret = GDB_SIGNAL_TRAP;
425189a8 1222 break;
0461d5a6 1223 case RUN_STATE_PAUSED:
9781e040 1224 ret = GDB_SIGNAL_INT;
425189a8 1225 break;
0461d5a6 1226 case RUN_STATE_SHUTDOWN:
425189a8
JK		 1227 ret = GDB_SIGNAL_QUIT;
1228 break;
0461d5a6 1229 case RUN_STATE_IO_ERROR:
425189a8
JK		 1230 ret = GDB_SIGNAL_IO;
1231 break;
0461d5a6 1232 case RUN_STATE_WATCHDOG:
425189a8
JK		 1233 ret = GDB_SIGNAL_ALRM;
1234 break;
0461d5a6 1235 case RUN_STATE_INTERNAL_ERROR:
425189a8
JK		 1236 ret = GDB_SIGNAL_ABRT;
1237 break;
0461d5a6
LC		 1238 case RUN_STATE_SAVE_VM:
1239 case RUN_STATE_RESTORE_VM:
425189a8 1240 return;
0461d5a6 1241 case RUN_STATE_FINISH_MIGRATE:
425189a8
JK		 1242 ret = GDB_SIGNAL_XCPU;
1243 break;
1244 default:
1245 ret = GDB_SIGNAL_UNKNOWN;
1246 break;
bbeb7b5c 1247 }
0d34282f 1248 snprintf(buf, sizeof(buf), "T%02xthread:%02x;", ret, cpu_index(cpu));
425189a8
JK		 1249
1250send_packet:
858693c6 1251 put_packet(s, buf);
425189a8
JK		 1252
1253 /* disable single step if it was enabled */
3825b28f 1254 cpu_single_step(cpu, 0);
858693c6 1255}
1fddef4b 1256#endif
858693c6 1257
a2d1ebaf
PB		 1258/* Send a gdb syscall request.
1259 This accepts limited printf-style format specifiers, specifically:
a87295e8
PB		 1260 %x - target_ulong argument printed in hex.
1261 %lx - 64-bit argument printed in hex.
1262 %s - string pointer (target_ulong) and length (int) pair. */
7ccfb2eb 1263void gdb_do_syscall(gdb_syscall_complete_cb cb, const char *fmt, ...)
a2d1ebaf
PB		 1264{
1265 va_list va;
a2d1ebaf 1266 char *p;
cdb432b2 1267 char *p_end;
a2d1ebaf 1268 target_ulong addr;
a87295e8 1269 uint64_t i64;
a2d1ebaf
PB		 1270 GDBState *s;
1271
880a7578 1272 s = gdbserver_state;
a2d1ebaf
PB		 1273 if (!s)
1274 return;
cdb432b2 1275 s->current_syscall_cb = cb;
a2d1ebaf 1276#ifndef CONFIG_USER_ONLY
0461d5a6 1277 vm_stop(RUN_STATE_DEBUG);
a2d1ebaf 1278#endif
a2d1ebaf 1279 va_start(va, fmt);
cdb432b2
MI		 1280 p = s->syscall_buf;
1281 p_end = &s->syscall_buf[sizeof(s->syscall_buf)];
a2d1ebaf
PB		 1282 *(p++) = 'F';
1283 while (*fmt) {
1284 if (*fmt == '%') {
1285 fmt++;
1286 switch (*fmt++) {
1287 case 'x':
1288 addr = va_arg(va, target_ulong);
cdb432b2 1289 p += snprintf(p, p_end - p, TARGET_FMT_lx, addr);
a2d1ebaf 1290 break;
a87295e8
PB		 1291 case 'l':
1292 if (*(fmt++) != 'x')
1293 goto bad_format;
1294 i64 = va_arg(va, uint64_t);
cdb432b2 1295 p += snprintf(p, p_end - p, "%" PRIx64, i64);
a87295e8 1296 break;
a2d1ebaf
PB		 1297 case 's':
1298 addr = va_arg(va, target_ulong);
cdb432b2 1299 p += snprintf(p, p_end - p, TARGET_FMT_lx "/%x",
363a37d5 1300 addr, va_arg(va, int));
a2d1ebaf
PB		 1301 break;
1302 default:
a87295e8 1303 bad_format:
a2d1ebaf
PB		 1304 fprintf(stderr, "gdbstub: Bad syscall format string '%s'\n",
1305 fmt - 1);
1306 break;
1307 }
1308 } else {
1309 *(p++) = *(fmt++);
1310 }
1311 }
8a93e02a 1312 *p = 0;
a2d1ebaf 1313 va_end(va);
a2d1ebaf 1314#ifdef CONFIG_USER_ONLY
cdb432b2 1315 put_packet(s, s->syscall_buf);
2e0f2cfb 1316 gdb_handlesig(s->c_cpu, 0);
a2d1ebaf 1317#else
cdb432b2
MI		 1318 /* In this case wait to send the syscall packet until notification that
1319 the CPU has stopped. This must be done because if the packet is sent
1320 now the reply from the syscall request could be received while the CPU
1321 is still in the running state, which can cause packets to be dropped
1322 and state transition 'T' packets to be sent while the syscall is still
1323 being processed. */
2e0f2cfb 1324 cpu_exit(s->c_cpu);
a2d1ebaf
PB		 1325#endif
1326}
1327
6a00d601 1328static void gdb_read_byte(GDBState *s, int ch)
858693c6
FB		 1329{
1330 int i, csum;
60fe76f3 1331 uint8_t reply;
858693c6 1332
1fddef4b 1333#ifndef CONFIG_USER_ONLY
4046d913
PB		 1334 if (s->last_packet_len) {
1335 /* Waiting for a response to the last packet. If we see the start
1336 of a new command then abandon the previous response. */
1337 if (ch == '-') {
1338#ifdef DEBUG_GDB
1339 printf("Got NACK, retransmitting\n");
1340#endif
ffe8ab83 1341 put_buffer(s, (uint8_t *)s->last_packet, s->last_packet_len);
4046d913
PB		 1342 }
1343#ifdef DEBUG_GDB
1344 else if (ch == '+')
1345 printf("Got ACK\n");
1346 else
1347 printf("Got '%c' when expecting ACK/NACK\n", ch);
1348#endif
1349 if (ch == '+' || ch == '$')
1350 s->last_packet_len = 0;
1351 if (ch != '$')
1352 return;
1353 }
1354869c 1354 if (runstate_is_running()) {
858693c6
FB		 1355 /* when the CPU is running, we cannot do anything except stop
1356 it when receiving a char */
0461d5a6 1357 vm_stop(RUN_STATE_PAUSED);
5fafdf24 1358 } else
1fddef4b 1359#endif
41625033 1360 {
858693c6
FB		 1361 switch(s->state) {
1362 case RS_IDLE:
1363 if (ch == '$') {
1364 s->line_buf_index = 0;
1365 s->state = RS_GETLINE;
c33a346e 1366 }
b4608c04 1367 break;
858693c6
FB		 1368 case RS_GETLINE:
1369 if (ch == '#') {
1370 s->state = RS_CHKSUM1;
1371 } else if (s->line_buf_index >= sizeof(s->line_buf) - 1) {
1372 s->state = RS_IDLE;
4c3a88a2 1373 } else {
858693c6 1374 s->line_buf[s->line_buf_index++] = ch;
4c3a88a2
FB		 1375 }
1376 break;
858693c6
FB		 1377 case RS_CHKSUM1:
1378 s->line_buf[s->line_buf_index] = '\0';
1379 s->line_csum = fromhex(ch) << 4;
1380 s->state = RS_CHKSUM2;
1381 break;
1382 case RS_CHKSUM2:
1383 s->line_csum |= fromhex(ch);
1384 csum = 0;
1385 for(i = 0; i < s->line_buf_index; i++) {
1386 csum += s->line_buf[i];
1387 }
1388 if (s->line_csum != (csum & 0xff)) {
60fe76f3
TS		 1389 reply = '-';
1390 put_buffer(s, &reply, 1);
858693c6 1391 s->state = RS_IDLE;
4c3a88a2 1392 } else {
60fe76f3
TS		 1393 reply = '+';
1394 put_buffer(s, &reply, 1);
880a7578 1395 s->state = gdb_handle_packet(s, s->line_buf);
4c3a88a2
FB		 1396 }
1397 break;
a2d1ebaf
PB		 1398 default:
1399 abort();
858693c6
FB		 1400 }
1401 }
1402}
1403
0e1c9c54 1404/* Tell the remote gdb that the process has exited. */
9349b4f9 1405void gdb_exit(CPUArchState *env, int code)
0e1c9c54
PB		 1406{
1407 GDBState *s;
1408 char buf[4];
1409
1410 s = gdbserver_state;
1411 if (!s) {
1412 return;
1413 }
1414#ifdef CONFIG_USER_ONLY
1415 if (gdbserver_fd < 0 || s->fd < 0) {
1416 return;
1417 }
1418#endif
1419
1420 snprintf(buf, sizeof(buf), "W%02x", (uint8_t)code);
1421 put_packet(s, buf);
e2af15b2
FC		 1422
1423#ifndef CONFIG_USER_ONLY
1424 if (s->chr) {
70f24fb6 1425 qemu_chr_delete(s->chr);
e2af15b2
FC		 1426 }
1427#endif
0e1c9c54
PB		 1428}
1429
1fddef4b 1430#ifdef CONFIG_USER_ONLY
ca587a8e
AJ		 1431int
1432gdb_queuesig (void)
1433{
1434 GDBState *s;
1435
1436 s = gdbserver_state;
1437
1438 if (gdbserver_fd < 0 || s->fd < 0)
1439 return 0;
1440 else
1441 return 1;
1442}
1443
1fddef4b 1444int
db6b81d4 1445gdb_handlesig(CPUState *cpu, int sig)
1fddef4b 1446{
db6b81d4 1447 CPUArchState *env = cpu->env_ptr;
5ca666c7
AF		 1448 GDBState *s;
1449 char buf[256];
1450 int n;
1fddef4b 1451
5ca666c7
AF		 1452 s = gdbserver_state;
1453 if (gdbserver_fd < 0 || s->fd < 0) {
1454 return sig;
1455 }
1fddef4b 1456
5ca666c7 1457 /* disable single step if it was enabled */
3825b28f 1458 cpu_single_step(cpu, 0);
5ca666c7 1459 tb_flush(env);
1fddef4b 1460
5ca666c7
AF		 1461 if (sig != 0) {
1462 snprintf(buf, sizeof(buf), "S%02x", target_signal_to_gdb(sig));
1463 put_packet(s, buf);
1464 }
1465 /* put_packet() might have detected that the peer terminated the
1466 connection. */
1467 if (s->fd < 0) {
1468 return sig;
1469 }
1fddef4b 1470
5ca666c7
AF		 1471 sig = 0;
1472 s->state = RS_IDLE;
1473 s->running_state = 0;
1474 while (s->running_state == 0) {
1475 n = read(s->fd, buf, 256);
1476 if (n > 0) {
1477 int i;
1478
1479 for (i = 0; i < n; i++) {
1480 gdb_read_byte(s, buf[i]);
1481 }
1482 } else if (n == 0 || errno != EAGAIN) {
1483 /* XXX: Connection closed. Should probably wait for another
1484 connection before continuing. */
1485 return sig;
1fddef4b 1486 }
5ca666c7
AF		 1487 }
1488 sig = s->signal;
1489 s->signal = 0;
1490 return sig;
1fddef4b 1491}
e9009676 1492
ca587a8e 1493/* Tell the remote gdb that the process has exited due to SIG. */
9349b4f9 1494void gdb_signalled(CPUArchState *env, int sig)
ca587a8e 1495{
5ca666c7
AF		 1496 GDBState *s;
1497 char buf[4];
ca587a8e 1498
5ca666c7
AF		 1499 s = gdbserver_state;
1500 if (gdbserver_fd < 0 || s->fd < 0) {
1501 return;
1502 }
ca587a8e 1503
5ca666c7
AF		 1504 snprintf(buf, sizeof(buf), "X%02x", target_signal_to_gdb(sig));
1505 put_packet(s, buf);
ca587a8e 1506}
1fddef4b 1507
880a7578 1508static void gdb_accept(void)
858693c6
FB		 1509{
1510 GDBState *s;
1511 struct sockaddr_in sockaddr;
1512 socklen_t len;
bf1c852a 1513 int fd;
858693c6
FB		 1514
1515 for(;;) {
1516 len = sizeof(sockaddr);
1517 fd = accept(gdbserver_fd, (struct sockaddr *)&sockaddr, &len);
1518 if (fd < 0 && errno != EINTR) {
1519 perror("accept");
1520 return;
1521 } else if (fd >= 0) {
40ff6d7e
KW		 1522#ifndef _WIN32
1523 fcntl(fd, F_SETFD, FD_CLOEXEC);
1524#endif
b4608c04
FB		 1525 break;
1526 }
1527 }
858693c6
FB		 1528
1529 /* set short latency */
bf1c852a 1530 socket_set_nodelay(fd);
3b46e624 1531
7267c094 1532 s = g_malloc0(sizeof(GDBState));
2e0f2cfb
AF		 1533 s->c_cpu = first_cpu;
1534 s->g_cpu = first_cpu;
858693c6 1535 s->fd = fd;
5b50e790 1536 gdb_has_xml = false;
858693c6 1537
880a7578 1538 gdbserver_state = s;
a2d1ebaf 1539
858693c6 1540 fcntl(fd, F_SETFL, O_NONBLOCK);
858693c6
FB		 1541}
1542
1543static int gdbserver_open(int port)
1544{
1545 struct sockaddr_in sockaddr;
6669ca13 1546 int fd, ret;
858693c6
FB		 1547
1548 fd = socket(PF_INET, SOCK_STREAM, 0);
1549 if (fd < 0) {
1550 perror("socket");
1551 return -1;
1552 }
40ff6d7e
KW		 1553#ifndef _WIN32
1554 fcntl(fd, F_SETFD, FD_CLOEXEC);
1555#endif
858693c6 1556
6669ca13 1557 socket_set_fast_reuse(fd);
858693c6
FB		 1558
1559 sockaddr.sin_family = AF_INET;
1560 sockaddr.sin_port = htons(port);
1561 sockaddr.sin_addr.s_addr = 0;
1562 ret = bind(fd, (struct sockaddr *)&sockaddr, sizeof(sockaddr));
1563 if (ret < 0) {
1564 perror("bind");
bb16172c 1565 close(fd);
858693c6
FB		 1566 return -1;
1567 }
1568 ret = listen(fd, 0);
1569 if (ret < 0) {
1570 perror("listen");
bb16172c 1571 close(fd);
858693c6
FB		 1572 return -1;
1573 }
858693c6
FB		 1574 return fd;
1575}
1576
1577int gdbserver_start(int port)
1578{
1579 gdbserver_fd = gdbserver_open(port);
1580 if (gdbserver_fd < 0)
1581 return -1;
1582 /* accept connections */
880a7578 1583 gdb_accept();
4046d913
PB		 1584 return 0;
1585}
2b1319c8
AJ		 1586
1587/* Disable gdb stub for child processes. */
9349b4f9 1588void gdbserver_fork(CPUArchState *env)
2b1319c8 1589{
75a34036 1590 CPUState *cpu = ENV_GET_CPU(env);
2b1319c8 1591 GDBState *s = gdbserver_state;
75a34036
AF		 1592
1593 if (gdbserver_fd < 0 || s->fd < 0) {
1594 return;
1595 }
2b1319c8
AJ		 1596 close(s->fd);
1597 s->fd = -1;
b3310ab3 1598 cpu_breakpoint_remove_all(cpu, BP_GDB);
75a34036 1599 cpu_watchpoint_remove_all(cpu, BP_GDB);
2b1319c8 1600}
1fddef4b 1601#else
aa1f17c1 1602static int gdb_chr_can_receive(void *opaque)
4046d913 1603{
56aebc89
PB		 1604 /* We can handle an arbitrarily large amount of data.
1605 Pick the maximum packet size, which is as good as anything. */
1606 return MAX_PACKET_LENGTH;
4046d913
PB		 1607}
1608
aa1f17c1 1609static void gdb_chr_receive(void *opaque, const uint8_t *buf, int size)
4046d913 1610{
4046d913
PB		 1611 int i;
1612
1613 for (i = 0; i < size; i++) {
880a7578 1614 gdb_read_byte(gdbserver_state, buf[i]);
4046d913
PB		 1615 }
1616}
1617
1618static void gdb_chr_event(void *opaque, int event)
1619{
1620 switch (event) {
b6b8df56 1621 case CHR_EVENT_OPENED:
0461d5a6 1622 vm_stop(RUN_STATE_PAUSED);
5b50e790 1623 gdb_has_xml = false;
4046d913
PB		 1624 break;
1625 default:
1626 break;
1627 }
1628}
1629
8a34a0fb
AL		 1630static void gdb_monitor_output(GDBState *s, const char *msg, int len)
1631{
1632 char buf[MAX_PACKET_LENGTH];
1633
1634 buf[0] = 'O';
1635 if (len > (MAX_PACKET_LENGTH/2) - 1)
1636 len = (MAX_PACKET_LENGTH/2) - 1;
1637 memtohex(buf + 1, (uint8_t *)msg, len);
1638 put_packet(s, buf);
1639}
1640
1641static int gdb_monitor_write(CharDriverState *chr, const uint8_t *buf, int len)
1642{
1643 const char *p = (const char *)buf;
1644 int max_sz;
1645
1646 max_sz = (sizeof(gdbserver_state->last_packet) - 2) / 2;
1647 for (;;) {
1648 if (len <= max_sz) {
1649 gdb_monitor_output(gdbserver_state, p, len);
1650 break;
1651 }
1652 gdb_monitor_output(gdbserver_state, p, max_sz);
1653 p += max_sz;
1654 len -= max_sz;
1655 }
1656 return len;
1657}
1658
59030a8c
AL		 1659#ifndef _WIN32
1660static void gdb_sigterm_handler(int signal)
1661{
1354869c 1662 if (runstate_is_running()) {
0461d5a6 1663 vm_stop(RUN_STATE_PAUSED);
e07bbac5 1664 }
59030a8c
AL		 1665}
1666#endif
1667
1668int gdbserver_start(const char *device)
4046d913
PB		 1669{
1670 GDBState *s;
59030a8c 1671 char gdbstub_device_name[128];
36556b20
AL		 1672 CharDriverState *chr = NULL;
1673 CharDriverState *mon_chr;
cfc3475a 1674
59030a8c
AL		 1675 if (!device)
1676 return -1;
1677 if (strcmp(device, "none") != 0) {
1678 if (strstart(device, "tcp:", NULL)) {
1679 /* enforce required TCP attributes */
1680 snprintf(gdbstub_device_name, sizeof(gdbstub_device_name),
1681 "%s,nowait,nodelay,server", device);
1682 device = gdbstub_device_name;
36556b20 1683 }
59030a8c
AL		 1684#ifndef _WIN32
1685 else if (strcmp(device, "stdio") == 0) {
1686 struct sigaction act;
4046d913 1687
59030a8c
AL		 1688 memset(&act, 0, sizeof(act));
1689 act.sa_handler = gdb_sigterm_handler;
1690 sigaction(SIGINT, &act, NULL);
1691 }
1692#endif
27143a44 1693 chr = qemu_chr_new("gdb", device, NULL);
36556b20
AL		 1694 if (!chr)
1695 return -1;
1696
456d6069 1697 qemu_chr_fe_claim_no_fail(chr);
36556b20
AL		 1698 qemu_chr_add_handlers(chr, gdb_chr_can_receive, gdb_chr_receive,
1699 gdb_chr_event, NULL);
cfc3475a
PB		 1700 }
1701
36556b20
AL		 1702 s = gdbserver_state;
1703 if (!s) {
7267c094 1704 s = g_malloc0(sizeof(GDBState));
36556b20 1705 gdbserver_state = s;
4046d913 1706
36556b20
AL		 1707 qemu_add_vm_change_state_handler(gdb_vm_state_change, NULL);
1708
1709 /* Initialize a monitor terminal for gdb */
7267c094 1710 mon_chr = g_malloc0(sizeof(*mon_chr));
36556b20
AL		 1711 mon_chr->chr_write = gdb_monitor_write;
1712 monitor_init(mon_chr, 0);
1713 } else {
1714 if (s->chr)
70f24fb6 1715 qemu_chr_delete(s->chr);
36556b20
AL		 1716 mon_chr = s->mon_chr;
1717 memset(s, 0, sizeof(GDBState));
1718 }
2e0f2cfb
AF		 1719 s->c_cpu = first_cpu;
1720 s->g_cpu = first_cpu;
4046d913 1721 s->chr = chr;
36556b20
AL		 1722 s->state = chr ? RS_IDLE : RS_INACTIVE;
1723 s->mon_chr = mon_chr;
cdb432b2 1724 s->current_syscall_cb = NULL;
8a34a0fb 1725
b4608c04
FB		 1726 return 0;
1727}
4046d913 1728#endif
QEMU mirror