[qemu.git] / gdbstub.c

/*
 * gdb server stub
 * 
 * Copyright (c) 2003 Fabrice Bellard
 *
 * This library is free software; you can redistribute it and/or
 * modify it under the terms of the GNU Lesser General Public
 * License as published by the Free Software Foundation; either
 * version 2 of the License, or (at your option) any later version.
 *
 * This library is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
 * Lesser General Public License for more details.
 *
 * You should have received a copy of the GNU Lesser General Public
 * License along with this library; if not, write to the Free Software
 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA  02111-1307  USA
 */
#include "vl.h"

#include <sys/socket.h>
#include <netinet/in.h>
#include <netinet/tcp.h>
#include <signal.h>

//#define DEBUG_GDB

enum RSState {
    RS_IDLE,
    RS_GETLINE,
    RS_CHKSUM1,
    RS_CHKSUM2,
};

static int gdbserver_fd;

typedef struct GDBState {
    enum RSState state;
    int fd;
    char line_buf[4096];
    int line_buf_index;
    int line_csum;
} GDBState;

static int get_char(GDBState *s)
{
    uint8_t ch;
    int ret;

    for(;;) {
        ret = read(s->fd, &ch, 1);
        if (ret < 0) {
            if (errno != EINTR && errno != EAGAIN)
                return -1;
        } else if (ret == 0) {
            return -1;
        } else {
            break;
        }
    }
    return ch;
}

static void put_buffer(GDBState *s, const uint8_t *buf, int len)
{
    int ret;

    while (len > 0) {
        ret = write(s->fd, buf, len);
        if (ret < 0) {
            if (errno != EINTR && errno != EAGAIN)
                return;
        } else {
            buf += ret;
            len -= ret;
        }
    }
}

static inline int fromhex(int v)
{
    if (v >= '0' && v <= '9')
        return v - '0';
    else if (v >= 'A' && v <= 'F')
        return v - 'A' + 10;
    else if (v >= 'a' && v <= 'f')
        return v - 'a' + 10;
    else
        return 0;
}

static inline int tohex(int v)
{
    if (v < 10)
        return v + '0';
    else
        return v - 10 + 'a';
}

static void memtohex(char *buf, const uint8_t *mem, int len)
{
    int i, c;
    char *q;
    q = buf;
    for(i = 0; i < len; i++) {
        c = mem[i];
        *q++ = tohex(c >> 4);
        *q++ = tohex(c & 0xf);
    }
    *q = '\0';
}

static void hextomem(uint8_t *mem, const char *buf, int len)
{
    int i;

    for(i = 0; i < len; i++) {
        mem[i] = (fromhex(buf[0]) << 4) | fromhex(buf[1]);
        buf += 2;
    }
}

/* return -1 if error, 0 if OK */
static int put_packet(GDBState *s, char *buf)
{
    char buf1[3];
    int len, csum, ch, i;

#ifdef DEBUG_GDB
    printf("reply='%s'\n", buf);
#endif

    for(;;) {
        buf1[0] = '$';
        put_buffer(s, buf1, 1);
        len = strlen(buf);
        put_buffer(s, buf, len);
        csum = 0;
        for(i = 0; i < len; i++) {
            csum += buf[i];
        }
        buf1[0] = '#';
        buf1[1] = tohex((csum >> 4) & 0xf);
        buf1[2] = tohex((csum) & 0xf);

        put_buffer(s, buf1, 3);

        ch = get_char(s);
        if (ch < 0)
            return -1;
        if (ch == '+')
            break;
    }
    return 0;
}

#if defined(TARGET_I386)

static void to_le32(uint8_t *p, int v)
{
    p[0] = v;
    p[1] = v >> 8;
    p[2] = v >> 16;
    p[3] = v >> 24;
}

static int cpu_gdb_read_registers(CPUState *env, uint8_t *mem_buf)
{
    int i, fpus;

    for(i = 0; i < 8; i++) {
        to_le32(mem_buf + i * 4, env->regs[i]);
    }
    to_le32(mem_buf + 8 * 4, env->eip);
    to_le32(mem_buf + 9 * 4, env->eflags);
    to_le32(mem_buf + 10 * 4, env->segs[R_CS].selector);
    to_le32(mem_buf + 11 * 4, env->segs[R_SS].selector);
    to_le32(mem_buf + 12 * 4, env->segs[R_DS].selector);
    to_le32(mem_buf + 13 * 4, env->segs[R_ES].selector);
    to_le32(mem_buf + 14 * 4, env->segs[R_FS].selector);
    to_le32(mem_buf + 15 * 4, env->segs[R_GS].selector);
    /* XXX: convert floats */
    for(i = 0; i < 8; i++) {
        memcpy(mem_buf + 16 * 4 + i * 10, &env->fpregs[i], 10);
    }
    to_le32(mem_buf + 36 * 4, env->fpuc);
    fpus = (env->fpus & ~0x3800) | (env->fpstt & 0x7) << 11;
    to_le32(mem_buf + 37 * 4, fpus);
    to_le32(mem_buf + 38 * 4, 0); /* XXX: convert tags */
    to_le32(mem_buf + 39 * 4, 0); /* fiseg */
    to_le32(mem_buf + 40 * 4, 0); /* fioff */
    to_le32(mem_buf + 41 * 4, 0); /* foseg */
    to_le32(mem_buf + 42 * 4, 0); /* fooff */
    to_le32(mem_buf + 43 * 4, 0); /* fop */
    return 44 * 4;
}

static void cpu_gdb_write_registers(CPUState *env, uint8_t *mem_buf, int size)
{
    uint32_t *registers = (uint32_t *)mem_buf;
    int i;

    for(i = 0; i < 8; i++) {
        env->regs[i] = tswapl(registers[i]);
    }
    env->eip = registers[8];
    env->eflags = registers[9];
#if defined(CONFIG_USER_ONLY)
#define LOAD_SEG(index, sreg)\
            if (tswapl(registers[index]) != env->segs[sreg].selector)\
                cpu_x86_load_seg(env, sreg, tswapl(registers[index]));
            LOAD_SEG(10, R_CS);
            LOAD_SEG(11, R_SS);
            LOAD_SEG(12, R_DS);
            LOAD_SEG(13, R_ES);
            LOAD_SEG(14, R_FS);
            LOAD_SEG(15, R_GS);
#endif
}

#elif defined (TARGET_PPC)
static void to_le32(uint32_t *buf, uint32_t v)
{
    uint8_t *p = (uint8_t *)buf;
    p[3] = v;
    p[2] = v >> 8;
    p[1] = v >> 16;
    p[0] = v >> 24;
}

static uint32_t from_le32 (uint32_t *buf)
{
    uint8_t *p = (uint8_t *)buf;

    return p[0] | (p[1] << 8) | (p[2] << 16) | (p[3] << 24);
}

static int cpu_gdb_read_registers(CPUState *env, uint8_t *mem_buf)
{
    uint32_t *registers = (uint32_t *)mem_buf, tmp;
    int i;

    /* fill in gprs */
    for(i = 0; i < 32; i++) {
        to_le32(&registers[i], env->gpr[i]);
    }
    /* fill in fprs */
    for (i = 0; i < 32; i++) {
        to_le32(&registers[(i * 2) + 32], *((uint32_t *)&env->fpr[i]));
	to_le32(&registers[(i * 2) + 33], *((uint32_t *)&env->fpr[i] + 1));
    }
    /* nip, msr, ccr, lnk, ctr, xer, mq */
    to_le32(&registers[96], (uint32_t)env->nip/* - 4*/);
    to_le32(&registers[97], _load_msr(env));
    tmp = 0;
    for (i = 0; i < 8; i++)
        tmp |= env->crf[i] << (32 - ((i + 1) * 4));
    to_le32(&registers[98], tmp);
    to_le32(&registers[99], env->lr);
    to_le32(&registers[100], env->ctr);
    to_le32(&registers[101], _load_xer(env));
    to_le32(&registers[102], 0);

    return 103 * 4;
}

static void cpu_gdb_write_registers(CPUState *env, uint8_t *mem_buf, int size)
{
    uint32_t *registers = (uint32_t *)mem_buf;
    int i;

    /* fill in gprs */
    for (i = 0; i < 32; i++) {
        env->gpr[i] = from_le32(&registers[i]);
    }
    /* fill in fprs */
    for (i = 0; i < 32; i++) {
        *((uint32_t *)&env->fpr[i]) = from_le32(&registers[(i * 2) + 32]);
	*((uint32_t *)&env->fpr[i] + 1) = from_le32(&registers[(i * 2) + 33]);
    }
    /* nip, msr, ccr, lnk, ctr, xer, mq */
    env->nip = from_le32(&registers[96]);
    _store_msr(env, from_le32(&registers[97]));
    registers[98] = from_le32(&registers[98]);
    for (i = 0; i < 8; i++)
        env->crf[i] = (registers[98] >> (32 - ((i + 1) * 4))) & 0xF;
    env->lr = from_le32(&registers[99]);
    env->ctr = from_le32(&registers[100]);
    _store_xer(env, from_le32(&registers[101]));
}
#else

static int cpu_gdb_read_registers(CPUState *env, uint8_t *mem_buf)
{
    return 0;
}

static void cpu_gdb_write_registers(CPUState *env, uint8_t *mem_buf, int size)
{
}

#endif

/* port = 0 means default port */
static int gdb_handle_packet(GDBState *s, const char *line_buf)
{
    CPUState *env = cpu_single_env;
    const char *p;
    int ch, reg_size, type;
    char buf[4096];
    uint8_t mem_buf[2000];
    uint32_t *registers;
    uint32_t addr, len;
    
#ifdef DEBUG_GDB
    printf("command='%s'\n", line_buf);
#endif
    p = line_buf;
    ch = *p++;
    switch(ch) {
    case '?':
        snprintf(buf, sizeof(buf), "S%02x", SIGTRAP);
        put_packet(s, buf);
        break;
    case 'c':
        if (*p != '\0') {
            addr = strtoul(p, (char **)&p, 16);
#if defined(TARGET_I386)
            env->eip = addr;
#elif defined (TARGET_PPC)
            env->nip = addr;
#endif
        }
        vm_start();
        break;
    case 's':
        if (*p != '\0') {
            addr = strtoul(p, (char **)&p, 16);
#if defined(TARGET_I386)
            env->eip = addr;
#elif defined (TARGET_PPC)
            env->nip = addr;
#endif
        }
        cpu_single_step(env, 1);
        vm_start();
        break;
    case 'g':
        reg_size = cpu_gdb_read_registers(env, mem_buf);
        memtohex(buf, mem_buf, reg_size);
        put_packet(s, buf);
        break;
    case 'G':
        registers = (void *)mem_buf;
        len = strlen(p) / 2;
        hextomem((uint8_t *)registers, p, len);
        cpu_gdb_write_registers(env, mem_buf, len);
        put_packet(s, "OK");
        break;
    case 'm':
        addr = strtoul(p, (char **)&p, 16);
        if (*p == ',')
            p++;
        len = strtoul(p, NULL, 16);
        if (cpu_memory_rw_debug(env, addr, mem_buf, len, 0) != 0)
            memset(mem_buf, 0, len);
        memtohex(buf, mem_buf, len);
        put_packet(s, buf);
        break;
    case 'M':
        addr = strtoul(p, (char **)&p, 16);
        if (*p == ',')
            p++;
        len = strtoul(p, (char **)&p, 16);
        if (*p == ',')
            p++;
        hextomem(mem_buf, p, len);
        if (cpu_memory_rw_debug(env, addr, mem_buf, len, 1) != 0)
            put_packet(s, "ENN");
        else
            put_packet(s, "OK");
        break;
    case 'Z':
        type = strtoul(p, (char **)&p, 16);
        if (*p == ',')
            p++;
        addr = strtoul(p, (char **)&p, 16);
        if (*p == ',')
            p++;
        len = strtoul(p, (char **)&p, 16);
        if (type == 0 || type == 1) {
            if (cpu_breakpoint_insert(env, addr) < 0)
                goto breakpoint_error;
            put_packet(s, "OK");
        } else {
        breakpoint_error:
            put_packet(s, "ENN");
        }
        break;
    case 'z':
        type = strtoul(p, (char **)&p, 16);
        if (*p == ',')
            p++;
        addr = strtoul(p, (char **)&p, 16);
        if (*p == ',')
            p++;
        len = strtoul(p, (char **)&p, 16);
        if (type == 0 || type == 1) {
            cpu_breakpoint_remove(env, addr);
            put_packet(s, "OK");
        } else {
            goto breakpoint_error;
        }
        break;
    default:
        //        unknown_command:
        /* put empty packet */
        buf[0] = '\0';
        put_packet(s, buf);
        break;
    }
    return RS_IDLE;
}

static void gdb_vm_stopped(void *opaque, int reason)
{
    GDBState *s = opaque;
    char buf[256];
    int ret;

    /* disable single step if it was enable */
    cpu_single_step(cpu_single_env, 0);

    if (reason == EXCP_DEBUG)
        ret = SIGTRAP;
    else
        ret = 0;
    snprintf(buf, sizeof(buf), "S%02x", ret);
    put_packet(s, buf);
}

static void gdb_read_byte(GDBState *s, int ch)
{
    int i, csum;
    char reply[1];

    if (vm_running) {
        /* when the CPU is running, we cannot do anything except stop
           it when receiving a char */
        vm_stop(EXCP_INTERRUPT);
    } else {
        switch(s->state) {
        case RS_IDLE:
            if (ch == '$') {
                s->line_buf_index = 0;
                s->state = RS_GETLINE;
            }
            break;
        case RS_GETLINE:
            if (ch == '#') {
            s->state = RS_CHKSUM1;
            } else if (s->line_buf_index >= sizeof(s->line_buf) - 1) {
                s->state = RS_IDLE;
            } else {
            s->line_buf[s->line_buf_index++] = ch;
            }
            break;
        case RS_CHKSUM1:
            s->line_buf[s->line_buf_index] = '\0';
            s->line_csum = fromhex(ch) << 4;
            s->state = RS_CHKSUM2;
            break;
        case RS_CHKSUM2:
            s->line_csum |= fromhex(ch);
            csum = 0;
            for(i = 0; i < s->line_buf_index; i++) {
                csum += s->line_buf[i];
            }
            if (s->line_csum != (csum & 0xff)) {
                reply[0] = '-';
                put_buffer(s, reply, 1);
                s->state = RS_IDLE;
            } else {
                reply[0] = '+';
                put_buffer(s, reply, 1);
                s->state = gdb_handle_packet(s, s->line_buf);
            }
            break;
        }
    }
}

static int gdb_can_read(void *opaque)
{
    return 256;
}

static void gdb_read(void *opaque, const uint8_t *buf, int size)
{
    GDBState *s = opaque;
    int i;
    if (size == 0) {
        /* end of connection */
        qemu_del_vm_stop_handler(gdb_vm_stopped, s);
        qemu_del_fd_read_handler(s->fd);
        qemu_free(s);
        vm_start();
    } else {
        for(i = 0; i < size; i++)
            gdb_read_byte(s, buf[i]);
    }
}

static void gdb_accept(void *opaque, const uint8_t *buf, int size)
{
    GDBState *s;
    struct sockaddr_in sockaddr;
    socklen_t len;
    int val, fd;

    for(;;) {
        len = sizeof(sockaddr);
        fd = accept(gdbserver_fd, (struct sockaddr *)&sockaddr, &len);
        if (fd < 0 && errno != EINTR) {
            perror("accept");
            return;
        } else if (fd >= 0) {
            break;
        }
    }

    /* set short latency */
    val = 1;
    setsockopt(fd, IPPROTO_TCP, TCP_NODELAY, &val, sizeof(val));
    
    s = qemu_mallocz(sizeof(GDBState));
    if (!s) {
        close(fd);
        return;
    }
    s->fd = fd;

    fcntl(fd, F_SETFL, O_NONBLOCK);

    /* stop the VM */
    vm_stop(EXCP_INTERRUPT);

    /* start handling I/O */
    qemu_add_fd_read_handler(s->fd, gdb_can_read, gdb_read, s);
    /* when the VM is stopped, the following callback is called */
    qemu_add_vm_stop_handler(gdb_vm_stopped, s);
}

static int gdbserver_open(int port)
{
    struct sockaddr_in sockaddr;
    int fd, val, ret;

    fd = socket(PF_INET, SOCK_STREAM, 0);
    if (fd < 0) {
        perror("socket");
        return -1;
    }

    /* allow fast reuse */
    val = 1;
    setsockopt(fd, SOL_SOCKET, SO_REUSEADDR, &val, sizeof(val));

    sockaddr.sin_family = AF_INET;
    sockaddr.sin_port = htons(port);
    sockaddr.sin_addr.s_addr = 0;
    ret = bind(fd, (struct sockaddr *)&sockaddr, sizeof(sockaddr));
    if (ret < 0) {
        perror("bind");
        return -1;
    }
    ret = listen(fd, 0);
    if (ret < 0) {
        perror("listen");
        return -1;
    }
    fcntl(fd, F_SETFL, O_NONBLOCK);
    return fd;
}

int gdbserver_start(int port)
{
    gdbserver_fd = gdbserver_open(port);
    if (gdbserver_fd < 0)
        return -1;
    /* accept connections */
    qemu_add_fd_read_handler(gdbserver_fd, NULL, gdb_accept, NULL);
    return 0;
}
Commit	Line	Data
b4608c04 FB	1	/*
	2	* gdb server stub
	3	*
	4	* Copyright (c) 2003 Fabrice Bellard
	5	*
	6	* This library is free software; you can redistribute it and/or
	7	* modify it under the terms of the GNU Lesser General Public
	8	* License as published by the Free Software Foundation; either
	9	* version 2 of the License, or (at your option) any later version.
	10	*
	11	* This library is distributed in the hope that it will be useful,
	12	* but WITHOUT ANY WARRANTY; without even the implied warranty of
	13	* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
	14	* Lesser General Public License for more details.
	15	*
	16	* You should have received a copy of the GNU Lesser General Public
	17	* License along with this library; if not, write to the Free Software
	18	* Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
	19	*/
67b915a5 FB	20	#include "vl.h"
67b915a5 FB	21
b4608c04 FB	22	#include <sys/socket.h>
	23	#include <netinet/in.h>
	24	#include <netinet/tcp.h>
	25	#include <signal.h>
b4608c04	26
4abe615b	27	//#define DEBUG_GDB
b4608c04	28
858693c6 FB	29	enum RSState {
	30	RS_IDLE,
	31	RS_GETLINE,
	32	RS_CHKSUM1,
	33	RS_CHKSUM2,
	34	};
b4608c04	35
858693c6	36	static int gdbserver_fd;
b4608c04	37
858693c6 FB	38	typedef struct GDBState {
	39	enum RSState state;
	40	int fd;
	41	char line_buf[4096];
	42	int line_buf_index;
	43	int line_csum;
	44	} GDBState;
b4608c04	45
858693c6	46	static int get_char(GDBState *s)
b4608c04 FB	47	{
	48	uint8_t ch;
	49	int ret;
	50
	51	for(;;) {
858693c6	52	ret = read(s->fd, &ch, 1);
b4608c04 FB	53	if (ret < 0) {
	54	if (errno != EINTR && errno != EAGAIN)
	55	return -1;
	56	} else if (ret == 0) {
	57	return -1;
	58	} else {
	59	break;
	60	}
	61	}
	62	return ch;
	63	}
	64
858693c6	65	static void put_buffer(GDBState s, const uint8_t buf, int len)
b4608c04 FB	66	{
	67	int ret;
	68
	69	while (len > 0) {
858693c6	70	ret = write(s->fd, buf, len);
b4608c04 FB	71	if (ret < 0) {
	72	if (errno != EINTR && errno != EAGAIN)
	73	return;
	74	} else {
	75	buf += ret;
	76	len -= ret;
	77	}
	78	}
	79	}
	80
	81	static inline int fromhex(int v)
	82	{
	83	if (v >= '0' && v <= '9')
	84	return v - '0';
	85	else if (v >= 'A' && v <= 'F')
	86	return v - 'A' + 10;
	87	else if (v >= 'a' && v <= 'f')
	88	return v - 'a' + 10;
	89	else
	90	return 0;
	91	}
	92
	93	static inline int tohex(int v)
	94	{
	95	if (v < 10)
	96	return v + '0';
	97	else
	98	return v - 10 + 'a';
	99	}
	100
	101	static void memtohex(char buf, const uint8_t mem, int len)
	102	{
	103	int i, c;
	104	char *q;
	105	q = buf;
	106	for(i = 0; i < len; i++) {
	107	c = mem[i];
	108	*q++ = tohex(c >> 4);
	109	*q++ = tohex(c & 0xf);
	110	}
	111	*q = '\0';
	112	}
	113
	114	static void hextomem(uint8_t mem, const char buf, int len)
	115	{
	116	int i;
	117
	118	for(i = 0; i < len; i++) {
	119	mem[i] = (fromhex(buf[0]) << 4) \| fromhex(buf[1]);
	120	buf += 2;
	121	}
	122	}
	123
b4608c04	124	/* return -1 if error, 0 if OK */
858693c6	125	static int put_packet(GDBState s, char buf)
b4608c04 FB	126	{
	127	char buf1[3];
	128	int len, csum, ch, i;
	129
	130	#ifdef DEBUG_GDB
	131	printf("reply='%s'\n", buf);
	132	#endif
	133
	134	for(;;) {
	135	buf1[0] = '$';
858693c6	136	put_buffer(s, buf1, 1);
b4608c04	137	len = strlen(buf);
858693c6	138	put_buffer(s, buf, len);
b4608c04 FB	139	csum = 0;
	140	for(i = 0; i < len; i++) {
	141	csum += buf[i];
	142	}
	143	buf1[0] = '#';
	144	buf1[1] = tohex((csum >> 4) & 0xf);
	145	buf1[2] = tohex((csum) & 0xf);
	146
858693c6	147	put_buffer(s, buf1, 3);
b4608c04	148
858693c6	149	ch = get_char(s);
b4608c04 FB	150	if (ch < 0)
	151	return -1;
	152	if (ch == '+')
	153	break;
	154	}
	155	return 0;
	156	}
	157
6da41eaf FB	158	#if defined(TARGET_I386)
	159
	160	static void to_le32(uint8_t *p, int v)
	161	{
	162	p[0] = v;
	163	p[1] = v >> 8;
	164	p[2] = v >> 16;
	165	p[3] = v >> 24;
	166	}
	167
	168	static int cpu_gdb_read_registers(CPUState env, uint8_t mem_buf)
	169	{
	170	int i, fpus;
	171
	172	for(i = 0; i < 8; i++) {
	173	to_le32(mem_buf + i * 4, env->regs[i]);
	174	}
	175	to_le32(mem_buf + 8 * 4, env->eip);
	176	to_le32(mem_buf + 9 * 4, env->eflags);
	177	to_le32(mem_buf + 10 * 4, env->segs[R_CS].selector);
	178	to_le32(mem_buf + 11 * 4, env->segs[R_SS].selector);
	179	to_le32(mem_buf + 12 * 4, env->segs[R_DS].selector);
	180	to_le32(mem_buf + 13 * 4, env->segs[R_ES].selector);
	181	to_le32(mem_buf + 14 * 4, env->segs[R_FS].selector);
	182	to_le32(mem_buf + 15 * 4, env->segs[R_GS].selector);
	183	/* XXX: convert floats */
	184	for(i = 0; i < 8; i++) {
	185	memcpy(mem_buf + 16 * 4 + i * 10, &env->fpregs[i], 10);
	186	}
	187	to_le32(mem_buf + 36 * 4, env->fpuc);
	188	fpus = (env->fpus & ~0x3800) \| (env->fpstt & 0x7) << 11;
	189	to_le32(mem_buf + 37 * 4, fpus);
	190	to_le32(mem_buf + 38 * 4, 0); /* XXX: convert tags */
	191	to_le32(mem_buf + 39 * 4, 0); /* fiseg */
	192	to_le32(mem_buf + 40 * 4, 0); /* fioff */
	193	to_le32(mem_buf + 41 * 4, 0); /* foseg */
	194	to_le32(mem_buf + 42 * 4, 0); /* fooff */
	195	to_le32(mem_buf + 43 * 4, 0); /* fop */
	196	return 44 * 4;
	197	}
	198
	199	static void cpu_gdb_write_registers(CPUState env, uint8_t mem_buf, int size)
	200	{
	201	uint32_t registers = (uint32_t )mem_buf;
	202	int i;
	203
	204	for(i = 0; i < 8; i++) {
	205	env->regs[i] = tswapl(registers[i]);
	206	}
	207	env->eip = registers[8];
	208	env->eflags = registers[9];
	209	#if defined(CONFIG_USER_ONLY)
	210	#define LOAD_SEG(index, sreg)\
	211	if (tswapl(registers[index]) != env->segs[sreg].selector)\
	212	cpu_x86_load_seg(env, sreg, tswapl(registers[index]));
	213	LOAD_SEG(10, R_CS);
	214	LOAD_SEG(11, R_SS);
	215	LOAD_SEG(12, R_DS);
	216	LOAD_SEG(13, R_ES);
	217	LOAD_SEG(14, R_FS);
	218	LOAD_SEG(15, R_GS);
	219	#endif
	220	}
	221
9e62fd7f	222	#elif defined (TARGET_PPC)
a541f297	223	static void to_le32(uint32_t *buf, uint32_t v)
9e62fd7f	224	{
a541f297	225	uint8_t p = (uint8_t )buf;
9e62fd7f FB	226	p[3] = v;
	227	p[2] = v >> 8;
	228	p[1] = v >> 16;
	229	p[0] = v >> 24;
	230	}
	231
a541f297 FB	232	static uint32_t from_le32 (uint32_t *buf)
	233	{
	234	uint8_t p = (uint8_t )buf;
	235
	236	return p[0] \| (p[1] << 8) \| (p[2] << 16) \| (p[3] << 24);
	237	}
	238
9e62fd7f FB	239	static int cpu_gdb_read_registers(CPUState env, uint8_t mem_buf)
9e62fd7f FB	240	{
a541f297	241	uint32_t registers = (uint32_t )mem_buf, tmp;
9e62fd7f FB	242	int i;
	243
	244	/* fill in gprs */
a541f297 FB	245	for(i = 0; i < 32; i++) {
a541f297 FB	246	to_le32(&registers[i], env->gpr[i]);
9e62fd7f FB	247	}
	248	/* fill in fprs */
	249	for (i = 0; i < 32; i++) {
a541f297 FB	250	to_le32(&registers[(i * 2) + 32], ((uint32_t )&env->fpr[i]));
a541f297 FB	251	to_le32(&registers[(i * 2) + 33], ((uint32_t )&env->fpr[i] + 1));
9e62fd7f FB	252	}
9e62fd7f FB	253	/* nip, msr, ccr, lnk, ctr, xer, mq */
a541f297 FB	254	to_le32(&registers[96], (uint32_t)env->nip/* - 4*/);
a541f297 FB	255	to_le32(&registers[97], _load_msr(env));
9e62fd7f FB	256	tmp = 0;
9e62fd7f FB	257	for (i = 0; i < 8; i++)
a541f297 FB	258	tmp \|= env->crf[i] << (32 - ((i + 1) * 4));
	259	to_le32(&registers[98], tmp);
	260	to_le32(&registers[99], env->lr);
	261	to_le32(&registers[100], env->ctr);
	262	to_le32(&registers[101], _load_xer(env));
	263	to_le32(&registers[102], 0);
	264
	265	return 103 * 4;
9e62fd7f FB	266	}
	267
	268	static void cpu_gdb_write_registers(CPUState env, uint8_t mem_buf, int size)
	269	{
	270	uint32_t registers = (uint32_t )mem_buf;
	271	int i;
	272
	273	/* fill in gprs */
	274	for (i = 0; i < 32; i++) {
a541f297	275	env->gpr[i] = from_le32(&registers[i]);
9e62fd7f FB	276	}
	277	/* fill in fprs */
	278	for (i = 0; i < 32; i++) {
a541f297 FB	279	((uint32_t )&env->fpr[i]) = from_le32(&registers[(i * 2) + 32]);
a541f297 FB	280	((uint32_t )&env->fpr[i] + 1) = from_le32(&registers[(i * 2) + 33]);
9e62fd7f FB	281	}
9e62fd7f FB	282	/* nip, msr, ccr, lnk, ctr, xer, mq */
a541f297 FB	283	env->nip = from_le32(&registers[96]);
	284	_store_msr(env, from_le32(&registers[97]));
	285	registers[98] = from_le32(&registers[98]);
9e62fd7f	286	for (i = 0; i < 8; i++)
a541f297 FB	287	env->crf[i] = (registers[98] >> (32 - ((i + 1) * 4))) & 0xF;
	288	env->lr = from_le32(&registers[99]);
	289	env->ctr = from_le32(&registers[100]);
	290	_store_xer(env, from_le32(&registers[101]));
9e62fd7f	291	}
6da41eaf FB	292	#else
	293
	294	static int cpu_gdb_read_registers(CPUState env, uint8_t mem_buf)
	295	{
	296	return 0;
	297	}
	298
	299	static void cpu_gdb_write_registers(CPUState env, uint8_t mem_buf, int size)
	300	{
	301	}
	302
	303	#endif
b4608c04 FB	304
b4608c04 FB	305	/* port = 0 means default port */
858693c6	306	static int gdb_handle_packet(GDBState s, const char line_buf)
b4608c04	307	{
858693c6	308	CPUState *env = cpu_single_env;
b4608c04	309	const char *p;
858693c6	310	int ch, reg_size, type;
b4608c04 FB	311	char buf[4096];
	312	uint8_t mem_buf[2000];
	313	uint32_t *registers;
	314	uint32_t addr, len;
	315
858693c6 FB	316	#ifdef DEBUG_GDB
	317	printf("command='%s'\n", line_buf);
	318	#endif
	319	p = line_buf;
	320	ch = *p++;
	321	switch(ch) {
	322	case '?':
	323	snprintf(buf, sizeof(buf), "S%02x", SIGTRAP);
	324	put_packet(s, buf);
	325	break;
	326	case 'c':
	327	if (*p != '\0') {
	328	addr = strtoul(p, (char **)&p, 16);
4c3a88a2	329	#if defined(TARGET_I386)
858693c6	330	env->eip = addr;
5be1a8e0	331	#elif defined (TARGET_PPC)
858693c6	332	env->nip = addr;
4c3a88a2	333	#endif
858693c6 FB	334	}
	335	vm_start();
	336	break;
	337	case 's':
	338	if (*p != '\0') {
	339	addr = strtoul(p, (char **)&p, 16);
c33a346e	340	#if defined(TARGET_I386)
858693c6	341	env->eip = addr;
5be1a8e0	342	#elif defined (TARGET_PPC)
858693c6	343	env->nip = addr;
c33a346e	344	#endif
858693c6 FB	345	}
	346	cpu_single_step(env, 1);
	347	vm_start();
	348	break;
	349	case 'g':
	350	reg_size = cpu_gdb_read_registers(env, mem_buf);
	351	memtohex(buf, mem_buf, reg_size);
	352	put_packet(s, buf);
	353	break;
	354	case 'G':
	355	registers = (void *)mem_buf;
	356	len = strlen(p) / 2;
	357	hextomem((uint8_t *)registers, p, len);
	358	cpu_gdb_write_registers(env, mem_buf, len);
	359	put_packet(s, "OK");
	360	break;
	361	case 'm':
	362	addr = strtoul(p, (char **)&p, 16);
	363	if (*p == ',')
	364	p++;
	365	len = strtoul(p, NULL, 16);
	366	if (cpu_memory_rw_debug(env, addr, mem_buf, len, 0) != 0)
	367	memset(mem_buf, 0, len);
	368	memtohex(buf, mem_buf, len);
	369	put_packet(s, buf);
	370	break;
	371	case 'M':
	372	addr = strtoul(p, (char **)&p, 16);
	373	if (*p == ',')
	374	p++;
	375	len = strtoul(p, (char **)&p, 16);
	376	if (*p == ',')
	377	p++;
	378	hextomem(mem_buf, p, len);
	379	if (cpu_memory_rw_debug(env, addr, mem_buf, len, 1) != 0)
	380	put_packet(s, "ENN");
	381	else
	382	put_packet(s, "OK");
	383	break;
	384	case 'Z':
	385	type = strtoul(p, (char **)&p, 16);
	386	if (*p == ',')
	387	p++;
	388	addr = strtoul(p, (char **)&p, 16);
	389	if (*p == ',')
	390	p++;
	391	len = strtoul(p, (char **)&p, 16);
	392	if (type == 0 \|\| type == 1) {
	393	if (cpu_breakpoint_insert(env, addr) < 0)
	394	goto breakpoint_error;
	395	put_packet(s, "OK");
	396	} else {
	397	breakpoint_error:
	398	put_packet(s, "ENN");
	399	}
	400	break;
	401	case 'z':
	402	type = strtoul(p, (char **)&p, 16);
	403	if (*p == ',')
	404	p++;
	405	addr = strtoul(p, (char **)&p, 16);
	406	if (*p == ',')
	407	p++;
	408	len = strtoul(p, (char **)&p, 16);
409	if (type == 0 \|\| type == 1) {
410	cpu_breakpoint_remove(env, addr);
411	put_packet(s, "OK");
412	} else {
413	goto breakpoint_error;
414	}
415	break;
416	default:
417	// unknown_command:
418	/* put empty packet */
419	buf[0] = '\0';
420	put_packet(s, buf);
421	break;
422	}
423	return RS_IDLE;
424	}
425
426	static void gdb_vm_stopped(void *opaque, int reason)
427	{
428	GDBState *s = opaque;
429	char buf[256];
430	int ret;
431
432	/* disable single step if it was enable */
433	cpu_single_step(cpu_single_env, 0);
434
435	if (reason == EXCP_DEBUG)
436	ret = SIGTRAP;
437	else
438	ret = 0;
439	snprintf(buf, sizeof(buf), "S%02x", ret);
440	put_packet(s, buf);
441	}
442
443	static void gdb_read_byte(GDBState *s, int ch)
444	{
445	int i, csum;
446	char reply[1];
447
448	if (vm_running) {
449	/* when the CPU is running, we cannot do anything except stop
450	it when receiving a char */
451	vm_stop(EXCP_INTERRUPT);
452	} else {
453	switch(s->state) {
454	case RS_IDLE:
455	if (ch == '$') {
456	s->line_buf_index = 0;
457	s->state = RS_GETLINE;
c33a346e	458	}
b4608c04	459	break;
858693c6 FB	460	case RS_GETLINE:
	461	if (ch == '#') {
	462	s->state = RS_CHKSUM1;
	463	} else if (s->line_buf_index >= sizeof(s->line_buf) - 1) {
	464	s->state = RS_IDLE;
4c3a88a2	465	} else {
858693c6	466	s->line_buf[s->line_buf_index++] = ch;
4c3a88a2 FB	467	}
4c3a88a2 FB	468	break;
858693c6 FB	469	case RS_CHKSUM1:
	470	s->line_buf[s->line_buf_index] = '\0';
	471	s->line_csum = fromhex(ch) << 4;
	472	s->state = RS_CHKSUM2;
	473	break;
	474	case RS_CHKSUM2:
	475	s->line_csum \|= fromhex(ch);
	476	csum = 0;
	477	for(i = 0; i < s->line_buf_index; i++) {
	478	csum += s->line_buf[i];
	479	}
	480	if (s->line_csum != (csum & 0xff)) {
	481	reply[0] = '-';
	482	put_buffer(s, reply, 1);
	483	s->state = RS_IDLE;
4c3a88a2	484	} else {
858693c6 FB	485	reply[0] = '+';
	486	put_buffer(s, reply, 1);
	487	s->state = gdb_handle_packet(s, s->line_buf);
4c3a88a2 FB	488	}
4c3a88a2 FB	489	break;
858693c6 FB	490	}
	491	}
	492	}
	493
	494	static int gdb_can_read(void *opaque)
	495	{
	496	return 256;
	497	}
	498
	499	static void gdb_read(void opaque, const uint8_t buf, int size)
	500	{
	501	GDBState *s = opaque;
	502	int i;
	503	if (size == 0) {
	504	/* end of connection */
	505	qemu_del_vm_stop_handler(gdb_vm_stopped, s);
	506	qemu_del_fd_read_handler(s->fd);
	507	qemu_free(s);
	508	vm_start();
	509	} else {
	510	for(i = 0; i < size; i++)
	511	gdb_read_byte(s, buf[i]);
	512	}
	513	}
	514
	515	static void gdb_accept(void opaque, const uint8_t buf, int size)
	516	{
	517	GDBState *s;
	518	struct sockaddr_in sockaddr;
	519	socklen_t len;
	520	int val, fd;
	521
	522	for(;;) {
	523	len = sizeof(sockaddr);
	524	fd = accept(gdbserver_fd, (struct sockaddr *)&sockaddr, &len);
	525	if (fd < 0 && errno != EINTR) {
	526	perror("accept");
	527	return;
	528	} else if (fd >= 0) {
b4608c04 FB	529	break;
	530	}
	531	}
858693c6 FB	532
	533	/* set short latency */
	534	val = 1;
7d3505c5	535	setsockopt(fd, IPPROTO_TCP, TCP_NODELAY, &val, sizeof(val));
858693c6 FB	536
	537	s = qemu_mallocz(sizeof(GDBState));
	538	if (!s) {
	539	close(fd);
	540	return;
	541	}
	542	s->fd = fd;
	543
	544	fcntl(fd, F_SETFL, O_NONBLOCK);
	545
	546	/* stop the VM */
	547	vm_stop(EXCP_INTERRUPT);
	548
	549	/* start handling I/O */
	550	qemu_add_fd_read_handler(s->fd, gdb_can_read, gdb_read, s);
	551	/* when the VM is stopped, the following callback is called */
	552	qemu_add_vm_stop_handler(gdb_vm_stopped, s);
	553	}
	554
	555	static int gdbserver_open(int port)
	556	{
	557	struct sockaddr_in sockaddr;
	558	int fd, val, ret;
	559
	560	fd = socket(PF_INET, SOCK_STREAM, 0);
	561	if (fd < 0) {
	562	perror("socket");
	563	return -1;
	564	}
	565
	566	/* allow fast reuse */
	567	val = 1;
	568	setsockopt(fd, SOL_SOCKET, SO_REUSEADDR, &val, sizeof(val));
	569
	570	sockaddr.sin_family = AF_INET;
	571	sockaddr.sin_port = htons(port);
	572	sockaddr.sin_addr.s_addr = 0;
	573	ret = bind(fd, (struct sockaddr *)&sockaddr, sizeof(sockaddr));
	574	if (ret < 0) {
	575	perror("bind");
	576	return -1;
	577	}
	578	ret = listen(fd, 0);
	579	if (ret < 0) {
	580	perror("listen");
	581	return -1;
	582	}
	583	fcntl(fd, F_SETFL, O_NONBLOCK);
	584	return fd;
	585	}
	586
	587	int gdbserver_start(int port)
	588	{
	589	gdbserver_fd = gdbserver_open(port);
	590	if (gdbserver_fd < 0)
	591	return -1;
	592	/* accept connections */
	593	qemu_add_fd_read_handler(gdbserver_fd, NULL, gdb_accept, NULL);
b4608c04 FB	594	return 0;
b4608c04 FB	595	}