]> git.proxmox.com Git - qemu.git/blame - gdbstub.c
projects / qemu.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
a15mpcore: Use qemu_get_cpu() for generic timers
[qemu.git] / gdbstub.c
CommitLineData
b4608c04
FB		 1/*
2 * gdb server stub
5fafdf24 3 *
3475187d 4 * Copyright (c) 2003-2005 Fabrice Bellard
b4608c04
FB		 5 *
6 * This library is free software; you can redistribute it and/or
7 * modify it under the terms of the GNU Lesser General Public
8 * License as published by the Free Software Foundation; either
9 * version 2 of the License, or (at your option) any later version.
10 *
11 * This library is distributed in the hope that it will be useful,
12 * but WITHOUT ANY WARRANTY; without even the implied warranty of
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
14 * Lesser General Public License for more details.
15 *
16 * You should have received a copy of the GNU Lesser General Public
8167ee88 17 * License along with this library; if not, see <http://www.gnu.org/licenses/>.
b4608c04 18 */
978efd6a 19#include "config.h"
56aebc89 20#include "qemu-common.h"
1fddef4b
FB		 21#ifdef CONFIG_USER_ONLY
22#include <stdlib.h>
23#include <stdio.h>
24#include <stdarg.h>
25#include <string.h>
26#include <errno.h>
27#include <unistd.h>
978efd6a 28#include <fcntl.h>
1fddef4b
FB		 29
30#include "qemu.h"
31#else
83c9089e 32#include "monitor/monitor.h"
dccfcd0e 33#include "sysemu/char.h"
9c17d615 34#include "sysemu/sysemu.h"
022c62cb 35#include "exec/gdbstub.h"
1fddef4b 36#endif
67b915a5 37
56aebc89
PB		 38#define MAX_PACKET_LENGTH 4096
39
2b41f10e 40#include "cpu.h"
1de7afc9 41#include "qemu/sockets.h"
9c17d615 42#include "sysemu/kvm.h"
ca587a8e 43
f3659eee
AF		 44static inline int target_memory_rw_debug(CPUState *cpu, target_ulong addr,
45 uint8_t *buf, int len, bool is_write)
44520db1 46{
f3659eee
AF		 47 CPUClass *cc = CPU_GET_CLASS(cpu);
48
49 if (cc->memory_rw_debug) {
50 return cc->memory_rw_debug(cpu, addr, buf, len, is_write);
51 }
52 return cpu_memory_rw_debug(cpu, addr, buf, len, is_write);
44520db1 53}
ca587a8e
AJ		 54
55enum {
56 GDB_SIGNAL_0 = 0,
57 GDB_SIGNAL_INT = 2,
425189a8 58 GDB_SIGNAL_QUIT = 3,
ca587a8e 59 GDB_SIGNAL_TRAP = 5,
425189a8
JK		 60 GDB_SIGNAL_ABRT = 6,
61 GDB_SIGNAL_ALRM = 14,
62 GDB_SIGNAL_IO = 23,
63 GDB_SIGNAL_XCPU = 24,
ca587a8e
AJ		 64 GDB_SIGNAL_UNKNOWN = 143
65};
66
67#ifdef CONFIG_USER_ONLY
68
69/* Map target signal numbers to GDB protocol signal numbers and vice
70 * versa. For user emulation's currently supported systems, we can
71 * assume most signals are defined.
72 */
73
74static int gdb_signal_table[] = {
75 0,
76 TARGET_SIGHUP,
77 TARGET_SIGINT,
78 TARGET_SIGQUIT,
79 TARGET_SIGILL,
80 TARGET_SIGTRAP,
81 TARGET_SIGABRT,
82 -1, /* SIGEMT */
83 TARGET_SIGFPE,
84 TARGET_SIGKILL,
85 TARGET_SIGBUS,
86 TARGET_SIGSEGV,
87 TARGET_SIGSYS,
88 TARGET_SIGPIPE,
89 TARGET_SIGALRM,
90 TARGET_SIGTERM,
91 TARGET_SIGURG,
92 TARGET_SIGSTOP,
93 TARGET_SIGTSTP,
94 TARGET_SIGCONT,
95 TARGET_SIGCHLD,
96 TARGET_SIGTTIN,
97 TARGET_SIGTTOU,
98 TARGET_SIGIO,
99 TARGET_SIGXCPU,
100 TARGET_SIGXFSZ,
101 TARGET_SIGVTALRM,
102 TARGET_SIGPROF,
103 TARGET_SIGWINCH,
104 -1, /* SIGLOST */
105 TARGET_SIGUSR1,
106 TARGET_SIGUSR2,
c72d5bf8 107#ifdef TARGET_SIGPWR
ca587a8e 108 TARGET_SIGPWR,
c72d5bf8
BS		 109#else
110 -1,
111#endif
ca587a8e
AJ		 112 -1, /* SIGPOLL */
113 -1,
114 -1,
115 -1,
116 -1,
117 -1,
118 -1,
119 -1,
120 -1,
121 -1,
122 -1,
123 -1,
c72d5bf8 124#ifdef __SIGRTMIN
ca587a8e
AJ		 125 __SIGRTMIN + 1,
126 __SIGRTMIN + 2,
127 __SIGRTMIN + 3,
128 __SIGRTMIN + 4,
129 __SIGRTMIN + 5,
130 __SIGRTMIN + 6,
131 __SIGRTMIN + 7,
132 __SIGRTMIN + 8,
133 __SIGRTMIN + 9,
134 __SIGRTMIN + 10,
135 __SIGRTMIN + 11,
136 __SIGRTMIN + 12,
137 __SIGRTMIN + 13,
138 __SIGRTMIN + 14,
139 __SIGRTMIN + 15,
140 __SIGRTMIN + 16,
141 __SIGRTMIN + 17,
142 __SIGRTMIN + 18,
143 __SIGRTMIN + 19,
144 __SIGRTMIN + 20,
145 __SIGRTMIN + 21,
146 __SIGRTMIN + 22,
147 __SIGRTMIN + 23,
148 __SIGRTMIN + 24,
149 __SIGRTMIN + 25,
150 __SIGRTMIN + 26,
151 __SIGRTMIN + 27,
152 __SIGRTMIN + 28,
153 __SIGRTMIN + 29,
154 __SIGRTMIN + 30,
155 __SIGRTMIN + 31,
156 -1, /* SIGCANCEL */
157 __SIGRTMIN,
158 __SIGRTMIN + 32,
159 __SIGRTMIN + 33,
160 __SIGRTMIN + 34,
161 __SIGRTMIN + 35,
162 __SIGRTMIN + 36,
163 __SIGRTMIN + 37,
164 __SIGRTMIN + 38,
165 __SIGRTMIN + 39,
166 __SIGRTMIN + 40,
167 __SIGRTMIN + 41,
168 __SIGRTMIN + 42,
169 __SIGRTMIN + 43,
170 __SIGRTMIN + 44,
171 __SIGRTMIN + 45,
172 __SIGRTMIN + 46,
173 __SIGRTMIN + 47,
174 __SIGRTMIN + 48,
175 __SIGRTMIN + 49,
176 __SIGRTMIN + 50,
177 __SIGRTMIN + 51,
178 __SIGRTMIN + 52,
179 __SIGRTMIN + 53,
180 __SIGRTMIN + 54,
181 __SIGRTMIN + 55,
182 __SIGRTMIN + 56,
183 __SIGRTMIN + 57,
184 __SIGRTMIN + 58,
185 __SIGRTMIN + 59,
186 __SIGRTMIN + 60,
187 __SIGRTMIN + 61,
188 __SIGRTMIN + 62,
189 __SIGRTMIN + 63,
190 __SIGRTMIN + 64,
191 __SIGRTMIN + 65,
192 __SIGRTMIN + 66,
193 __SIGRTMIN + 67,
194 __SIGRTMIN + 68,
195 __SIGRTMIN + 69,
196 __SIGRTMIN + 70,
197 __SIGRTMIN + 71,
198 __SIGRTMIN + 72,
199 __SIGRTMIN + 73,
200 __SIGRTMIN + 74,
201 __SIGRTMIN + 75,
202 __SIGRTMIN + 76,
203 __SIGRTMIN + 77,
204 __SIGRTMIN + 78,
205 __SIGRTMIN + 79,
206 __SIGRTMIN + 80,
207 __SIGRTMIN + 81,
208 __SIGRTMIN + 82,
209 __SIGRTMIN + 83,
210 __SIGRTMIN + 84,
211 __SIGRTMIN + 85,
212 __SIGRTMIN + 86,
213 __SIGRTMIN + 87,
214 __SIGRTMIN + 88,
215 __SIGRTMIN + 89,
216 __SIGRTMIN + 90,
217 __SIGRTMIN + 91,
218 __SIGRTMIN + 92,
219 __SIGRTMIN + 93,
220 __SIGRTMIN + 94,
221 __SIGRTMIN + 95,
222 -1, /* SIGINFO */
223 -1, /* UNKNOWN */
224 -1, /* DEFAULT */
225 -1,
226 -1,
227 -1,
228 -1,
229 -1,
230 -1
c72d5bf8 231#endif
ca587a8e 232};
8f447cc7 233#else
ca587a8e
AJ		 234/* In system mode we only need SIGINT and SIGTRAP; other signals
235 are not yet supported. */
236
237enum {
238 TARGET_SIGINT = 2,
239 TARGET_SIGTRAP = 5
240};
241
242static int gdb_signal_table[] = {
243 -1,
244 -1,
245 TARGET_SIGINT,
246 -1,
247 -1,
248 TARGET_SIGTRAP
249};
250#endif
251
252#ifdef CONFIG_USER_ONLY
253static int target_signal_to_gdb (int sig)
254{
255 int i;
256 for (i = 0; i < ARRAY_SIZE (gdb_signal_table); i++)
257 if (gdb_signal_table[i] == sig)
258 return i;
259 return GDB_SIGNAL_UNKNOWN;
260}
8f447cc7 261#endif
b4608c04 262
ca587a8e
AJ		 263static int gdb_signal_to_target (int sig)
264{
265 if (sig < ARRAY_SIZE (gdb_signal_table))
266 return gdb_signal_table[sig];
267 else
268 return -1;
269}
270
4abe615b 271//#define DEBUG_GDB
b4608c04 272
56aebc89
PB		 273typedef struct GDBRegisterState {
274 int base_reg;
275 int num_regs;
276 gdb_reg_cb get_reg;
277 gdb_reg_cb set_reg;
278 const char *xml;
279 struct GDBRegisterState *next;
280} GDBRegisterState;
281
858693c6 282enum RSState {
36556b20 283 RS_INACTIVE,
858693c6
FB		 284 RS_IDLE,
285 RS_GETLINE,
286 RS_CHKSUM1,
287 RS_CHKSUM2,
288};
858693c6 289typedef struct GDBState {
2e0f2cfb
AF		 290 CPUState *c_cpu; /* current CPU for step/continue ops */
291 CPUState *g_cpu; /* current CPU for other ops */
52f34623 292 CPUState *query_cpu; /* for q{f|s}ThreadInfo */
41625033 293 enum RSState state; /* parsing state */
56aebc89 294 char line_buf[MAX_PACKET_LENGTH];
858693c6
FB		 295 int line_buf_index;
296 int line_csum;
56aebc89 297 uint8_t last_packet[MAX_PACKET_LENGTH + 4];
4046d913 298 int last_packet_len;
1f487ee9 299 int signal;
41625033 300#ifdef CONFIG_USER_ONLY
4046d913 301 int fd;
41625033 302 int running_state;
4046d913
PB		 303#else
304 CharDriverState *chr;
8a34a0fb 305 CharDriverState *mon_chr;
41625033 306#endif
cdb432b2
MI		 307 char syscall_buf[256];
308 gdb_syscall_complete_cb current_syscall_cb;
858693c6 309} GDBState;
b4608c04 310
60897d36
EI		 311/* By default use no IRQs and no timers while single stepping so as to
312 * make single stepping like an ICE HW step.
313 */
314static int sstep_flags = SSTEP_ENABLE|SSTEP_NOIRQ|SSTEP_NOTIMER;
315
880a7578
AL		 316static GDBState *gdbserver_state;
317
5b50e790 318bool gdb_has_xml;
56aebc89 319
1fddef4b 320#ifdef CONFIG_USER_ONLY
4046d913
PB		 321/* XXX: This is not thread safe. Do we care? */
322static int gdbserver_fd = -1;
323
858693c6 324static int get_char(GDBState *s)
b4608c04
FB		 325{
326 uint8_t ch;
327 int ret;
328
329 for(;;) {
00aa0040 330 ret = qemu_recv(s->fd, &ch, 1, 0);
b4608c04 331 if (ret < 0) {
1f487ee9
EI		 332 if (errno == ECONNRESET)
333 s->fd = -1;
b4608c04
FB		 334 if (errno != EINTR && errno != EAGAIN)
335 return -1;
336 } else if (ret == 0) {
1f487ee9
EI		 337 close(s->fd);
338 s->fd = -1;
b4608c04
FB		 339 return -1;
340 } else {
341 break;
342 }
343 }
344 return ch;
345}
4046d913 346#endif
b4608c04 347
654efcf3 348static enum {
a2d1ebaf
PB		 349 GDB_SYS_UNKNOWN,
350 GDB_SYS_ENABLED,
351 GDB_SYS_DISABLED,
352} gdb_syscall_mode;
353
354/* If gdb is connected when the first semihosting syscall occurs then use
355 remote gdb syscalls. Otherwise use native file IO. */
356int use_gdb_syscalls(void)
357{
358 if (gdb_syscall_mode == GDB_SYS_UNKNOWN) {
880a7578
AL		 359 gdb_syscall_mode = (gdbserver_state ? GDB_SYS_ENABLED
360 : GDB_SYS_DISABLED);
a2d1ebaf
PB		 361 }
362 return gdb_syscall_mode == GDB_SYS_ENABLED;
363}
364
ba70a624
EI		 365/* Resume execution. */
366static inline void gdb_continue(GDBState *s)
367{
368#ifdef CONFIG_USER_ONLY
369 s->running_state = 1;
370#else
bc7d0e66
PB		 371 if (runstate_check(RUN_STATE_GUEST_PANICKED)) {
372 runstate_set(RUN_STATE_DEBUG);
373 }
26ac7a31 374 if (!runstate_needs_reset()) {
87f25c12
PB		 375 vm_start();
376 }
ba70a624
EI		 377#endif
378}
379
858693c6 380static void put_buffer(GDBState *s, const uint8_t *buf, int len)
b4608c04 381{
4046d913 382#ifdef CONFIG_USER_ONLY
b4608c04
FB		 383 int ret;
384
385 while (len > 0) {
8f447cc7 386 ret = send(s->fd, buf, len, 0);
b4608c04
FB		 387 if (ret < 0) {
388 if (errno != EINTR && errno != EAGAIN)
389 return;
390 } else {
391 buf += ret;
392 len -= ret;
393 }
394 }
4046d913 395#else
2cc6e0a1 396 qemu_chr_fe_write(s->chr, buf, len);
4046d913 397#endif
b4608c04
FB		 398}
399
400static inline int fromhex(int v)
401{
402 if (v >= '0' && v <= '9')
403 return v - '0';
404 else if (v >= 'A' && v <= 'F')
405 return v - 'A' + 10;
406 else if (v >= 'a' && v <= 'f')
407 return v - 'a' + 10;
408 else
409 return 0;
410}
411
412static inline int tohex(int v)
413{
414 if (v < 10)
415 return v + '0';
416 else
417 return v - 10 + 'a';
418}
419
420static void memtohex(char *buf, const uint8_t *mem, int len)
421{
422 int i, c;
423 char *q;
424 q = buf;
425 for(i = 0; i < len; i++) {
426 c = mem[i];
427 *q++ = tohex(c >> 4);
428 *q++ = tohex(c & 0xf);
429 }
430 *q = '\0';
431}
432
433static void hextomem(uint8_t *mem, const char *buf, int len)
434{
435 int i;
436
437 for(i = 0; i < len; i++) {
438 mem[i] = (fromhex(buf[0]) << 4) | fromhex(buf[1]);
439 buf += 2;
440 }
441}
442
b4608c04 443/* return -1 if error, 0 if OK */
56aebc89 444static int put_packet_binary(GDBState *s, const char *buf, int len)
b4608c04 445{
56aebc89 446 int csum, i;
60fe76f3 447 uint8_t *p;
b4608c04 448
b4608c04 449 for(;;) {
4046d913
PB		 450 p = s->last_packet;
451 *(p++) = '$';
4046d913
PB		 452 memcpy(p, buf, len);
453 p += len;
b4608c04
FB		 454 csum = 0;
455 for(i = 0; i < len; i++) {
456 csum += buf[i];
457 }
4046d913
PB		 458 *(p++) = '#';
459 *(p++) = tohex((csum >> 4) & 0xf);
460 *(p++) = tohex((csum) & 0xf);
b4608c04 461
4046d913 462 s->last_packet_len = p - s->last_packet;
ffe8ab83 463 put_buffer(s, (uint8_t *)s->last_packet, s->last_packet_len);
b4608c04 464
4046d913
PB		 465#ifdef CONFIG_USER_ONLY
466 i = get_char(s);
467 if (i < 0)
b4608c04 468 return -1;
4046d913 469 if (i == '+')
b4608c04 470 break;
4046d913
PB		 471#else
472 break;
473#endif
b4608c04
FB		 474 }
475 return 0;
476}
477
56aebc89
PB		 478/* return -1 if error, 0 if OK */
479static int put_packet(GDBState *s, const char *buf)
480{
481#ifdef DEBUG_GDB
482 printf("reply='%s'\n", buf);
483#endif
79808573 484
56aebc89
PB		 485 return put_packet_binary(s, buf, strlen(buf));
486}
487
56aebc89
PB		 488/* Encode data using the encoding for 'x' packets. */
489static int memtox(char *buf, const char *mem, int len)
490{
491 char *p = buf;
492 char c;
493
494 while (len--) {
495 c = *(mem++);
496 switch (c) {
497 case '#': case '$': case '*': case '}':
498 *(p++) = '}';
499 *(p++) = c ^ 0x20;
500 break;
501 default:
502 *(p++) = c;
503 break;
504 }
505 }
506 return p - buf;
507}
f1ccf904 508
5b24c641
AF		 509static const char *get_feature_xml(const char *p, const char **newp,
510 CPUClass *cc)
56aebc89 511{
56aebc89
PB		 512 size_t len;
513 int i;
514 const char *name;
515 static char target_xml[1024];
516
517 len = 0;
518 while (p[len] && p[len] != ':')
519 len++;
520 *newp = p + len;
521
522 name = NULL;
523 if (strncmp(p, "target.xml", len) == 0) {
524 /* Generate the XML description for this CPU. */
525 if (!target_xml[0]) {
526 GDBRegisterState *r;
eac8b355 527 CPUState *cpu = first_cpu;
56aebc89 528
5b3715bf
BS		 529 snprintf(target_xml, sizeof(target_xml),
530 "<?xml version=\"1.0\"?>"
531 "<!DOCTYPE target SYSTEM \"gdb-target.dtd\">"
532 "<target>"
533 "<xi:include href=\"%s\"/>",
5b24c641 534 cc->gdb_core_xml_file);
56aebc89 535
eac8b355 536 for (r = cpu->gdb_regs; r; r = r->next) {
2dc766da
BS		 537 pstrcat(target_xml, sizeof(target_xml), "<xi:include href=\"");
538 pstrcat(target_xml, sizeof(target_xml), r->xml);
539 pstrcat(target_xml, sizeof(target_xml), "\"/>");
56aebc89 540 }
2dc766da 541 pstrcat(target_xml, sizeof(target_xml), "</target>");
56aebc89
PB		 542 }
543 return target_xml;
544 }
545 for (i = 0; ; i++) {
546 name = xml_builtin[i][0];
547 if (!name || (strncmp(name, p, len) == 0 && strlen(name) == len))
548 break;
549 }
550 return name ? xml_builtin[i][1] : NULL;
551}
f1ccf904 552
385b9f0e 553static int gdb_read_register(CPUState *cpu, uint8_t *mem_buf, int reg)
56aebc89 554{
a0e372f0 555 CPUClass *cc = CPU_GET_CLASS(cpu);
385b9f0e 556 CPUArchState *env = cpu->env_ptr;
56aebc89 557 GDBRegisterState *r;
f1ccf904 558
a0e372f0 559 if (reg < cc->gdb_num_core_regs) {
5b50e790 560 return cc->gdb_read_register(cpu, mem_buf, reg);
a0e372f0 561 }
f1ccf904 562
eac8b355 563 for (r = cpu->gdb_regs; r; r = r->next) {
56aebc89
PB		 564 if (r->base_reg <= reg && reg < r->base_reg + r->num_regs) {
565 return r->get_reg(env, mem_buf, reg - r->base_reg);
566 }
567 }
568 return 0;
f1ccf904
TS		 569}
570
385b9f0e 571static int gdb_write_register(CPUState *cpu, uint8_t *mem_buf, int reg)
f1ccf904 572{
a0e372f0 573 CPUClass *cc = CPU_GET_CLASS(cpu);
385b9f0e 574 CPUArchState *env = cpu->env_ptr;
56aebc89 575 GDBRegisterState *r;
f1ccf904 576
a0e372f0 577 if (reg < cc->gdb_num_core_regs) {
5b50e790 578 return cc->gdb_write_register(cpu, mem_buf, reg);
a0e372f0 579 }
56aebc89 580
eac8b355 581 for (r = cpu->gdb_regs; r; r = r->next) {
56aebc89
PB		 582 if (r->base_reg <= reg && reg < r->base_reg + r->num_regs) {
583 return r->set_reg(env, mem_buf, reg - r->base_reg);
584 }
585 }
6da41eaf
FB		 586 return 0;
587}
588
56aebc89
PB		 589/* Register a supplemental set of CPU registers. If g_pos is nonzero it
590 specifies the first register number and these registers are included in
591 a standard "g" packet. Direction is relative to gdb, i.e. get_reg is
592 gdb reading a CPU register, and set_reg is gdb modifying a CPU register.
593 */
594
22169d41
AF		 595void gdb_register_coprocessor(CPUState *cpu,
596 gdb_reg_cb get_reg, gdb_reg_cb set_reg,
597 int num_regs, const char *xml, int g_pos)
6da41eaf 598{
56aebc89
PB		 599 GDBRegisterState *s;
600 GDBRegisterState **p;
56aebc89 601
eac8b355 602 p = &cpu->gdb_regs;
56aebc89
PB		 603 while (*p) {
604 /* Check for duplicates. */
605 if (strcmp((*p)->xml, xml) == 0)
606 return;
607 p = &(*p)->next;
608 }
9643c25f
SW		 609
610 s = g_new0(GDBRegisterState, 1);
a0e372f0 611 s->base_reg = cpu->gdb_num_regs;
9643c25f
SW		 612 s->num_regs = num_regs;
613 s->get_reg = get_reg;
614 s->set_reg = set_reg;
615 s->xml = xml;
616
56aebc89 617 /* Add to end of list. */
a0e372f0 618 cpu->gdb_num_regs += num_regs;
56aebc89
PB		 619 *p = s;
620 if (g_pos) {
621 if (g_pos != s->base_reg) {
622 fprintf(stderr, "Error: Bad gdb register numbering for '%s'\n"
623 "Expected %d got %d\n", xml, g_pos, s->base_reg);
35143f01
AF		 624 } else {
625 cpu->gdb_num_g_regs = cpu->gdb_num_regs;
56aebc89
PB		 626 }
627 }
6da41eaf
FB		 628}
629
a1d1bb31
AL		 630#ifndef CONFIG_USER_ONLY
631static const int xlat_gdb_type[] = {
632 [GDB_WATCHPOINT_WRITE] = BP_GDB | BP_MEM_WRITE,
633 [GDB_WATCHPOINT_READ] = BP_GDB | BP_MEM_READ,
634 [GDB_WATCHPOINT_ACCESS] = BP_GDB | BP_MEM_ACCESS,
635};
636#endif
637
880a7578 638static int gdb_breakpoint_insert(target_ulong addr, target_ulong len, int type)
a1d1bb31 639{
182735ef 640 CPUState *cpu;
9349b4f9 641 CPUArchState *env;
880a7578
AL		 642 int err = 0;
643
62278814 644 if (kvm_enabled()) {
2e0f2cfb 645 return kvm_insert_breakpoint(gdbserver_state->c_cpu, addr, len, type);
62278814 646 }
e22a25c9 647
a1d1bb31
AL		 648 switch (type) {
649 case GDB_BREAKPOINT_SW:
650 case GDB_BREAKPOINT_HW:
182735ef
AF		 651 for (cpu = first_cpu; cpu != NULL; cpu = cpu->next_cpu) {
652 env = cpu->env_ptr;
880a7578
AL		 653 err = cpu_breakpoint_insert(env, addr, BP_GDB, NULL);
654 if (err)
655 break;
656 }
657 return err;
a1d1bb31
AL		 658#ifndef CONFIG_USER_ONLY
659 case GDB_WATCHPOINT_WRITE:
660 case GDB_WATCHPOINT_READ:
661 case GDB_WATCHPOINT_ACCESS:
182735ef
AF		 662 for (cpu = first_cpu; cpu != NULL; cpu = cpu->next_cpu) {
663 env = cpu->env_ptr;
880a7578
AL		 664 err = cpu_watchpoint_insert(env, addr, len, xlat_gdb_type[type],
665 NULL);
666 if (err)
667 break;
668 }
669 return err;
a1d1bb31
AL		 670#endif
671 default:
672 return -ENOSYS;
673 }
674}
675
880a7578 676static int gdb_breakpoint_remove(target_ulong addr, target_ulong len, int type)
a1d1bb31 677{
182735ef 678 CPUState *cpu;
9349b4f9 679 CPUArchState *env;
880a7578
AL		 680 int err = 0;
681
62278814 682 if (kvm_enabled()) {
2e0f2cfb 683 return kvm_remove_breakpoint(gdbserver_state->c_cpu, addr, len, type);
62278814 684 }
e22a25c9 685
a1d1bb31
AL		 686 switch (type) {
687 case GDB_BREAKPOINT_SW:
688 case GDB_BREAKPOINT_HW:
182735ef
AF		 689 for (cpu = first_cpu; cpu != NULL; cpu = cpu->next_cpu) {
690 env = cpu->env_ptr;
880a7578
AL		 691 err = cpu_breakpoint_remove(env, addr, BP_GDB);
692 if (err)
693 break;
694 }
695 return err;
a1d1bb31
AL		 696#ifndef CONFIG_USER_ONLY
697 case GDB_WATCHPOINT_WRITE:
698 case GDB_WATCHPOINT_READ:
699 case GDB_WATCHPOINT_ACCESS:
182735ef
AF		 700 for (cpu = first_cpu; cpu != NULL; cpu = cpu->next_cpu) {
701 env = cpu->env_ptr;
880a7578
AL		 702 err = cpu_watchpoint_remove(env, addr, len, xlat_gdb_type[type]);
703 if (err)
704 break;
705 }
706 return err;
a1d1bb31
AL		 707#endif
708 default:
709 return -ENOSYS;
710 }
711}
712
880a7578 713static void gdb_breakpoint_remove_all(void)
a1d1bb31 714{
182735ef 715 CPUState *cpu;
9349b4f9 716 CPUArchState *env;
880a7578 717
e22a25c9 718 if (kvm_enabled()) {
2e0f2cfb 719 kvm_remove_all_breakpoints(gdbserver_state->c_cpu);
e22a25c9
AL		 720 return;
721 }
722
182735ef
AF		 723 for (cpu = first_cpu; cpu != NULL; cpu = cpu->next_cpu) {
724 env = cpu->env_ptr;
880a7578 725 cpu_breakpoint_remove_all(env, BP_GDB);
a1d1bb31 726#ifndef CONFIG_USER_ONLY
880a7578 727 cpu_watchpoint_remove_all(env, BP_GDB);
a1d1bb31 728#endif
880a7578 729 }
a1d1bb31
AL		 730}
731
fab9d284
AJ		 732static void gdb_set_cpu_pc(GDBState *s, target_ulong pc)
733{
2e0f2cfb 734 CPUState *cpu = s->c_cpu;
f45748f1
AF		 735 CPUClass *cc = CPU_GET_CLASS(cpu);
736
737 cpu_synchronize_state(cpu);
738 if (cc->set_pc) {
739 cc->set_pc(cpu, pc);
ff1d1977 740 }
fab9d284
AJ		 741}
742
2e0f2cfb 743static CPUState *find_cpu(uint32_t thread_id)
1e9fa730 744{
0d34282f 745 CPUState *cpu;
1e9fa730 746
182735ef 747 for (cpu = first_cpu; cpu != NULL; cpu = cpu->next_cpu) {
aa48dd93 748 if (cpu_index(cpu) == thread_id) {
2e0f2cfb 749 return cpu;
aa48dd93 750 }
1e9fa730 751 }
aa48dd93
AF		 752
753 return NULL;
1e9fa730
NF		 754}
755
880a7578 756static int gdb_handle_packet(GDBState *s, const char *line_buf)
b4608c04 757{
2e0f2cfb 758 CPUState *cpu;
5b24c641 759 CPUClass *cc;
b4608c04 760 const char *p;
1e9fa730
NF		 761 uint32_t thread;
762 int ch, reg_size, type, res;
56aebc89
PB		 763 char buf[MAX_PACKET_LENGTH];
764 uint8_t mem_buf[MAX_PACKET_LENGTH];
765 uint8_t *registers;
9d9754a3 766 target_ulong addr, len;
3b46e624 767
858693c6
FB		 768#ifdef DEBUG_GDB
769 printf("command='%s'\n", line_buf);
770#endif
771 p = line_buf;
772 ch = *p++;
773 switch(ch) {
774 case '?':
1fddef4b 775 /* TODO: Make this return the correct value for user-mode. */
ca587a8e 776 snprintf(buf, sizeof(buf), "T%02xthread:%02x;", GDB_SIGNAL_TRAP,
2e0f2cfb 777 cpu_index(s->c_cpu));
858693c6 778 put_packet(s, buf);
7d03f82f
EI		 779 /* Remove all the breakpoints when this query is issued,
780 * because gdb is doing and initial connect and the state
781 * should be cleaned up.
782 */
880a7578 783 gdb_breakpoint_remove_all();
858693c6
FB		 784 break;
785 case 'c':
786 if (*p != '\0') {
9d9754a3 787 addr = strtoull(p, (char **)&p, 16);
fab9d284 788 gdb_set_cpu_pc(s, addr);
858693c6 789 }
ca587a8e 790 s->signal = 0;
ba70a624 791 gdb_continue(s);
41625033 792 return RS_IDLE;
1f487ee9 793 case 'C':
ca587a8e
AJ		 794 s->signal = gdb_signal_to_target (strtoul(p, (char **)&p, 16));
795 if (s->signal == -1)
796 s->signal = 0;
1f487ee9
EI		 797 gdb_continue(s);
798 return RS_IDLE;
dd32aa10
JK		 799 case 'v':
800 if (strncmp(p, "Cont", 4) == 0) {
801 int res_signal, res_thread;
802
803 p += 4;
804 if (*p == '?') {
805 put_packet(s, "vCont;c;C;s;S");
806 break;
807 }
808 res = 0;
809 res_signal = 0;
810 res_thread = 0;
811 while (*p) {
812 int action, signal;
813
814 if (*p++ != ';') {
815 res = 0;
816 break;
817 }
818 action = *p++;
819 signal = 0;
820 if (action == 'C' || action == 'S') {
821 signal = strtoul(p, (char **)&p, 16);
822 } else if (action != 'c' && action != 's') {
823 res = 0;
824 break;
825 }
826 thread = 0;
827 if (*p == ':') {
828 thread = strtoull(p+1, (char **)&p, 16);
829 }
830 action = tolower(action);
831 if (res == 0 || (res == 'c' && action == 's')) {
832 res = action;
833 res_signal = signal;
834 res_thread = thread;
835 }
836 }
837 if (res) {
838 if (res_thread != -1 && res_thread != 0) {
2e0f2cfb
AF		 839 cpu = find_cpu(res_thread);
840 if (cpu == NULL) {
dd32aa10
JK		 841 put_packet(s, "E22");
842 break;
843 }
2e0f2cfb 844 s->c_cpu = cpu;
dd32aa10
JK		 845 }
846 if (res == 's') {
2e0f2cfb 847 cpu_single_step(s->c_cpu, sstep_flags);
dd32aa10
JK		 848 }
849 s->signal = res_signal;
850 gdb_continue(s);
851 return RS_IDLE;
852 }
853 break;
854 } else {
855 goto unknown_command;
856 }
7d03f82f 857 case 'k':
00e94dbc 858#ifdef CONFIG_USER_ONLY
7d03f82f
EI		 859 /* Kill the target */
860 fprintf(stderr, "\nQEMU: Terminated via GDBstub\n");
861 exit(0);
00e94dbc 862#endif
7d03f82f
EI		 863 case 'D':
864 /* Detach packet */
880a7578 865 gdb_breakpoint_remove_all();
7ea06da3 866 gdb_syscall_mode = GDB_SYS_DISABLED;
7d03f82f
EI		 867 gdb_continue(s);
868 put_packet(s, "OK");
869 break;
858693c6
FB		 870 case 's':
871 if (*p != '\0') {
8fac5803 872 addr = strtoull(p, (char **)&p, 16);
fab9d284 873 gdb_set_cpu_pc(s, addr);
858693c6 874 }
2e0f2cfb 875 cpu_single_step(s->c_cpu, sstep_flags);
ba70a624 876 gdb_continue(s);
41625033 877 return RS_IDLE;
a2d1ebaf
PB		 878 case 'F':
879 {
880 target_ulong ret;
881 target_ulong err;
882
883 ret = strtoull(p, (char **)&p, 16);
884 if (*p == ',') {
885 p++;
886 err = strtoull(p, (char **)&p, 16);
887 } else {
888 err = 0;
889 }
890 if (*p == ',')
891 p++;
892 type = *p;
cdb432b2 893 if (s->current_syscall_cb) {
2e0f2cfb 894 s->current_syscall_cb(s->c_cpu, ret, err);
cdb432b2
MI		 895 s->current_syscall_cb = NULL;
896 }
a2d1ebaf
PB		 897 if (type == 'C') {
898 put_packet(s, "T02");
899 } else {
ba70a624 900 gdb_continue(s);
a2d1ebaf
PB		 901 }
902 }
903 break;
858693c6 904 case 'g':
2e0f2cfb 905 cpu_synchronize_state(s->g_cpu);
56aebc89 906 len = 0;
35143f01 907 for (addr = 0; addr < s->g_cpu->gdb_num_g_regs; addr++) {
2e0f2cfb 908 reg_size = gdb_read_register(s->g_cpu, mem_buf + len, addr);
56aebc89
PB		 909 len += reg_size;
910 }
911 memtohex(buf, mem_buf, len);
858693c6
FB		 912 put_packet(s, buf);
913 break;
914 case 'G':
2e0f2cfb 915 cpu_synchronize_state(s->g_cpu);
56aebc89 916 registers = mem_buf;
858693c6
FB		 917 len = strlen(p) / 2;
918 hextomem((uint8_t *)registers, p, len);
35143f01 919 for (addr = 0; addr < s->g_cpu->gdb_num_g_regs && len > 0; addr++) {
2e0f2cfb 920 reg_size = gdb_write_register(s->g_cpu, registers, addr);
56aebc89
PB		 921 len -= reg_size;
922 registers += reg_size;
923 }
858693c6
FB		 924 put_packet(s, "OK");
925 break;
926 case 'm':
9d9754a3 927 addr = strtoull(p, (char **)&p, 16);
858693c6
FB		 928 if (*p == ',')
929 p++;
9d9754a3 930 len = strtoull(p, NULL, 16);
2e0f2cfb 931 if (target_memory_rw_debug(s->g_cpu, addr, mem_buf, len, false) != 0) {
6f970bd9
FB		 932 put_packet (s, "E14");
933 } else {
934 memtohex(buf, mem_buf, len);
935 put_packet(s, buf);
936 }
858693c6
FB		 937 break;
938 case 'M':
9d9754a3 939 addr = strtoull(p, (char **)&p, 16);
858693c6
FB		 940 if (*p == ',')
941 p++;
9d9754a3 942 len = strtoull(p, (char **)&p, 16);
b328f873 943 if (*p == ':')
858693c6
FB		 944 p++;
945 hextomem(mem_buf, p, len);
2e0f2cfb 946 if (target_memory_rw_debug(s->g_cpu, addr, mem_buf, len,
f3659eee 947 true) != 0) {
905f20b1 948 put_packet(s, "E14");
44520db1 949 } else {
858693c6 950 put_packet(s, "OK");
44520db1 951 }
858693c6 952 break;
56aebc89
PB		 953 case 'p':
954 /* Older gdb are really dumb, and don't use 'g' if 'p' is avaialable.
955 This works, but can be very slow. Anything new enough to
956 understand XML also knows how to use this properly. */
957 if (!gdb_has_xml)
958 goto unknown_command;
959 addr = strtoull(p, (char **)&p, 16);
2e0f2cfb 960 reg_size = gdb_read_register(s->g_cpu, mem_buf, addr);
56aebc89
PB		 961 if (reg_size) {
962 memtohex(buf, mem_buf, reg_size);
963 put_packet(s, buf);
964 } else {
965 put_packet(s, "E14");
966 }
967 break;
968 case 'P':
969 if (!gdb_has_xml)
970 goto unknown_command;
971 addr = strtoull(p, (char **)&p, 16);
972 if (*p == '=')
973 p++;
974 reg_size = strlen(p) / 2;
975 hextomem(mem_buf, p, reg_size);
2e0f2cfb 976 gdb_write_register(s->g_cpu, mem_buf, addr);
56aebc89
PB		 977 put_packet(s, "OK");
978 break;
858693c6 979 case 'Z':
858693c6
FB		 980 case 'z':
981 type = strtoul(p, (char **)&p, 16);
982 if (*p == ',')
983 p++;
9d9754a3 984 addr = strtoull(p, (char **)&p, 16);
858693c6
FB		 985 if (*p == ',')
986 p++;
9d9754a3 987 len = strtoull(p, (char **)&p, 16);
a1d1bb31 988 if (ch == 'Z')
880a7578 989 res = gdb_breakpoint_insert(addr, len, type);
a1d1bb31 990 else
880a7578 991 res = gdb_breakpoint_remove(addr, len, type);
a1d1bb31
AL		 992 if (res >= 0)
993 put_packet(s, "OK");
994 else if (res == -ENOSYS)
0f459d16 995 put_packet(s, "");
a1d1bb31
AL		 996 else
997 put_packet(s, "E22");
858693c6 998 break;
880a7578
AL		 999 case 'H':
1000 type = *p++;
1001 thread = strtoull(p, (char **)&p, 16);
1002 if (thread == -1 || thread == 0) {
1003 put_packet(s, "OK");
1004 break;
1005 }
2e0f2cfb
AF		 1006 cpu = find_cpu(thread);
1007 if (cpu == NULL) {
880a7578
AL		 1008 put_packet(s, "E22");
1009 break;
1010 }
1011 switch (type) {
1012 case 'c':
2e0f2cfb 1013 s->c_cpu = cpu;
880a7578
AL		 1014 put_packet(s, "OK");
1015 break;
1016 case 'g':
2e0f2cfb 1017 s->g_cpu = cpu;
880a7578
AL		 1018 put_packet(s, "OK");
1019 break;
1020 default:
1021 put_packet(s, "E22");
1022 break;
1023 }
1024 break;
1025 case 'T':
1026 thread = strtoull(p, (char **)&p, 16);
2e0f2cfb 1027 cpu = find_cpu(thread);
1e9fa730 1028
2e0f2cfb 1029 if (cpu != NULL) {
1e9fa730
NF		 1030 put_packet(s, "OK");
1031 } else {
880a7578 1032 put_packet(s, "E22");
1e9fa730 1033 }
880a7578 1034 break;
978efd6a 1035 case 'q':
60897d36
EI		 1036 case 'Q':
1037 /* parse any 'q' packets here */
1038 if (!strcmp(p,"qemu.sstepbits")) {
1039 /* Query Breakpoint bit definitions */
363a37d5
BS		 1040 snprintf(buf, sizeof(buf), "ENABLE=%x,NOIRQ=%x,NOTIMER=%x",
1041 SSTEP_ENABLE,
1042 SSTEP_NOIRQ,
1043 SSTEP_NOTIMER);
60897d36
EI		 1044 put_packet(s, buf);
1045 break;
1046 } else if (strncmp(p,"qemu.sstep",10) == 0) {
1047 /* Display or change the sstep_flags */
1048 p += 10;
1049 if (*p != '=') {
1050 /* Display current setting */
363a37d5 1051 snprintf(buf, sizeof(buf), "0x%x", sstep_flags);
60897d36
EI		 1052 put_packet(s, buf);
1053 break;
1054 }
1055 p++;
1056 type = strtoul(p, (char **)&p, 16);
1057 sstep_flags = type;
1058 put_packet(s, "OK");
1059 break;
880a7578
AL		 1060 } else if (strcmp(p,"C") == 0) {
1061 /* "Current thread" remains vague in the spec, so always return
1062 * the first CPU (gdb returns the first thread). */
1063 put_packet(s, "QC1");
1064 break;
1065 } else if (strcmp(p,"fThreadInfo") == 0) {
52f34623 1066 s->query_cpu = first_cpu;
880a7578
AL		 1067 goto report_cpuinfo;
1068 } else if (strcmp(p,"sThreadInfo") == 0) {
1069 report_cpuinfo:
1070 if (s->query_cpu) {
52f34623 1071 snprintf(buf, sizeof(buf), "m%x", cpu_index(s->query_cpu));
880a7578 1072 put_packet(s, buf);
52f34623 1073 s->query_cpu = s->query_cpu->next_cpu;
880a7578
AL		 1074 } else
1075 put_packet(s, "l");
1076 break;
1077 } else if (strncmp(p,"ThreadExtraInfo,", 16) == 0) {
1078 thread = strtoull(p+16, (char **)&p, 16);
2e0f2cfb
AF		 1079 cpu = find_cpu(thread);
1080 if (cpu != NULL) {
cb446eca 1081 cpu_synchronize_state(cpu);
1e9fa730 1082 len = snprintf((char *)mem_buf, sizeof(mem_buf),
55e5c285 1083 "CPU#%d [%s]", cpu->cpu_index,
259186a7 1084 cpu->halted ? "halted " : "running");
1e9fa730
NF		 1085 memtohex(buf, mem_buf, len);
1086 put_packet(s, buf);
1087 }
880a7578 1088 break;
60897d36 1089 }
0b8a988c 1090#ifdef CONFIG_USER_ONLY
60897d36 1091 else if (strncmp(p, "Offsets", 7) == 0) {
2e0f2cfb
AF		 1092 CPUArchState *env = s->c_cpu->env_ptr;
1093 TaskState *ts = env->opaque;
978efd6a 1094
363a37d5
BS		 1095 snprintf(buf, sizeof(buf),
1096 "Text=" TARGET_ABI_FMT_lx ";Data=" TARGET_ABI_FMT_lx
1097 ";Bss=" TARGET_ABI_FMT_lx,
1098 ts->info->code_offset,
1099 ts->info->data_offset,
1100 ts->info->data_offset);
978efd6a
PB		 1101 put_packet(s, buf);
1102 break;
1103 }
0b8a988c 1104#else /* !CONFIG_USER_ONLY */
8a34a0fb
AL		 1105 else if (strncmp(p, "Rcmd,", 5) == 0) {
1106 int len = strlen(p + 5);
1107
1108 if ((len % 2) != 0) {
1109 put_packet(s, "E01");
1110 break;
1111 }
1112 hextomem(mem_buf, p + 5, len);
1113 len = len / 2;
1114 mem_buf[len++] = 0;
fa5efccb 1115 qemu_chr_be_write(s->mon_chr, mem_buf, len);
8a34a0fb
AL		 1116 put_packet(s, "OK");
1117 break;
1118 }
0b8a988c 1119#endif /* !CONFIG_USER_ONLY */
56aebc89 1120 if (strncmp(p, "Supported", 9) == 0) {
5b3715bf 1121 snprintf(buf, sizeof(buf), "PacketSize=%x", MAX_PACKET_LENGTH);
5b24c641
AF		 1122 cc = CPU_GET_CLASS(first_cpu);
1123 if (cc->gdb_core_xml_file != NULL) {
1124 pstrcat(buf, sizeof(buf), ";qXfer:features:read+");
1125 }
56aebc89
PB		 1126 put_packet(s, buf);
1127 break;
1128 }
56aebc89
PB		 1129 if (strncmp(p, "Xfer:features:read:", 19) == 0) {
1130 const char *xml;
1131 target_ulong total_len;
1132
5b24c641
AF		 1133 cc = CPU_GET_CLASS(first_cpu);
1134 if (cc->gdb_core_xml_file == NULL) {
1135 goto unknown_command;
1136 }
1137
5b50e790 1138 gdb_has_xml = true;
56aebc89 1139 p += 19;
5b24c641 1140 xml = get_feature_xml(p, &p, cc);
56aebc89 1141 if (!xml) {
5b3715bf 1142 snprintf(buf, sizeof(buf), "E00");
56aebc89
PB		 1143 put_packet(s, buf);
1144 break;
1145 }
1146
1147 if (*p == ':')
1148 p++;
1149 addr = strtoul(p, (char **)&p, 16);
1150 if (*p == ',')
1151 p++;
1152 len = strtoul(p, (char **)&p, 16);
1153
1154 total_len = strlen(xml);
1155 if (addr > total_len) {
5b3715bf 1156 snprintf(buf, sizeof(buf), "E00");
56aebc89
PB		 1157 put_packet(s, buf);
1158 break;
1159 }
1160 if (len > (MAX_PACKET_LENGTH - 5) / 2)
1161 len = (MAX_PACKET_LENGTH - 5) / 2;
1162 if (len < total_len - addr) {
1163 buf[0] = 'm';
1164 len = memtox(buf + 1, xml + addr, len);
1165 } else {
1166 buf[0] = 'l';
1167 len = memtox(buf + 1, xml + addr, total_len - addr);
1168 }
1169 put_packet_binary(s, buf, len + 1);
1170 break;
1171 }
56aebc89
PB		 1172 /* Unrecognised 'q' command. */
1173 goto unknown_command;
1174
858693c6 1175 default:
56aebc89 1176 unknown_command:
858693c6
FB		 1177 /* put empty packet */
1178 buf[0] = '\0';
1179 put_packet(s, buf);
1180 break;
1181 }
1182 return RS_IDLE;
1183}
1184
64f6b346 1185void gdb_set_stop_cpu(CPUState *cpu)
880a7578 1186{
2e0f2cfb
AF		 1187 gdbserver_state->c_cpu = cpu;
1188 gdbserver_state->g_cpu = cpu;
880a7578
AL		 1189}
1190
1fddef4b 1191#ifndef CONFIG_USER_ONLY
1dfb4dd9 1192static void gdb_vm_state_change(void *opaque, int running, RunState state)
858693c6 1193{
880a7578 1194 GDBState *s = gdbserver_state;
2e0f2cfb
AF		 1195 CPUArchState *env = s->c_cpu->env_ptr;
1196 CPUState *cpu = s->c_cpu;
858693c6 1197 char buf[256];
d6fc1b39 1198 const char *type;
858693c6
FB		 1199 int ret;
1200
cdb432b2
MI		 1201 if (running || s->state == RS_INACTIVE) {
1202 return;
1203 }
1204 /* Is there a GDB syscall waiting to be sent? */
1205 if (s->current_syscall_cb) {
1206 put_packet(s, s->syscall_buf);
a2d1ebaf 1207 return;
e07bbac5 1208 }
1dfb4dd9 1209 switch (state) {
0461d5a6 1210 case RUN_STATE_DEBUG:
880a7578
AL		 1211 if (env->watchpoint_hit) {
1212 switch (env->watchpoint_hit->flags & BP_MEM_ACCESS) {
a1d1bb31 1213 case BP_MEM_READ:
d6fc1b39
AL		 1214 type = "r";
1215 break;
a1d1bb31 1216 case BP_MEM_ACCESS:
d6fc1b39
AL		 1217 type = "a";
1218 break;
1219 default:
1220 type = "";
1221 break;
1222 }
880a7578
AL		 1223 snprintf(buf, sizeof(buf),
1224 "T%02xthread:%02x;%swatch:" TARGET_FMT_lx ";",
0d34282f 1225 GDB_SIGNAL_TRAP, cpu_index(cpu), type,
880a7578 1226 env->watchpoint_hit->vaddr);
880a7578 1227 env->watchpoint_hit = NULL;
425189a8 1228 goto send_packet;
6658ffb8 1229 }
425189a8 1230 tb_flush(env);
ca587a8e 1231 ret = GDB_SIGNAL_TRAP;
425189a8 1232 break;
0461d5a6 1233 case RUN_STATE_PAUSED:
9781e040 1234 ret = GDB_SIGNAL_INT;
425189a8 1235 break;
0461d5a6 1236 case RUN_STATE_SHUTDOWN:
425189a8
JK		 1237 ret = GDB_SIGNAL_QUIT;
1238 break;
0461d5a6 1239 case RUN_STATE_IO_ERROR:
425189a8
JK		 1240 ret = GDB_SIGNAL_IO;
1241 break;
0461d5a6 1242 case RUN_STATE_WATCHDOG:
425189a8
JK		 1243 ret = GDB_SIGNAL_ALRM;
1244 break;
0461d5a6 1245 case RUN_STATE_INTERNAL_ERROR:
425189a8
JK		 1246 ret = GDB_SIGNAL_ABRT;
1247 break;
0461d5a6
LC		 1248 case RUN_STATE_SAVE_VM:
1249 case RUN_STATE_RESTORE_VM:
425189a8 1250 return;
0461d5a6 1251 case RUN_STATE_FINISH_MIGRATE:
425189a8
JK		 1252 ret = GDB_SIGNAL_XCPU;
1253 break;
1254 default:
1255 ret = GDB_SIGNAL_UNKNOWN;
1256 break;
bbeb7b5c 1257 }
0d34282f 1258 snprintf(buf, sizeof(buf), "T%02xthread:%02x;", ret, cpu_index(cpu));
425189a8
JK		 1259
1260send_packet:
858693c6 1261 put_packet(s, buf);
425189a8
JK		 1262
1263 /* disable single step if it was enabled */
3825b28f 1264 cpu_single_step(cpu, 0);
858693c6 1265}
1fddef4b 1266#endif
858693c6 1267
a2d1ebaf
PB		 1268/* Send a gdb syscall request.
1269 This accepts limited printf-style format specifiers, specifically:
a87295e8
PB		 1270 %x - target_ulong argument printed in hex.
1271 %lx - 64-bit argument printed in hex.
1272 %s - string pointer (target_ulong) and length (int) pair. */
7ccfb2eb 1273void gdb_do_syscall(gdb_syscall_complete_cb cb, const char *fmt, ...)
a2d1ebaf
PB		 1274{
1275 va_list va;
a2d1ebaf 1276 char *p;
cdb432b2 1277 char *p_end;
a2d1ebaf 1278 target_ulong addr;
a87295e8 1279 uint64_t i64;
a2d1ebaf
PB		 1280 GDBState *s;
1281
880a7578 1282 s = gdbserver_state;
a2d1ebaf
PB		 1283 if (!s)
1284 return;
cdb432b2 1285 s->current_syscall_cb = cb;
a2d1ebaf 1286#ifndef CONFIG_USER_ONLY
0461d5a6 1287 vm_stop(RUN_STATE_DEBUG);
a2d1ebaf 1288#endif
a2d1ebaf 1289 va_start(va, fmt);
cdb432b2
MI		 1290 p = s->syscall_buf;
1291 p_end = &s->syscall_buf[sizeof(s->syscall_buf)];
a2d1ebaf
PB		 1292 *(p++) = 'F';
1293 while (*fmt) {
1294 if (*fmt == '%') {
1295 fmt++;
1296 switch (*fmt++) {
1297 case 'x':
1298 addr = va_arg(va, target_ulong);
cdb432b2 1299 p += snprintf(p, p_end - p, TARGET_FMT_lx, addr);
a2d1ebaf 1300 break;
a87295e8
PB		 1301 case 'l':
1302 if (*(fmt++) != 'x')
1303 goto bad_format;
1304 i64 = va_arg(va, uint64_t);
cdb432b2 1305 p += snprintf(p, p_end - p, "%" PRIx64, i64);
a87295e8 1306 break;
a2d1ebaf
PB		 1307 case 's':
1308 addr = va_arg(va, target_ulong);
cdb432b2 1309 p += snprintf(p, p_end - p, TARGET_FMT_lx "/%x",
363a37d5 1310 addr, va_arg(va, int));
a2d1ebaf
PB		 1311 break;
1312 default:
a87295e8 1313 bad_format:
a2d1ebaf
PB		 1314 fprintf(stderr, "gdbstub: Bad syscall format string '%s'\n",
1315 fmt - 1);
1316 break;
1317 }
1318 } else {
1319 *(p++) = *(fmt++);
1320 }
1321 }
8a93e02a 1322 *p = 0;
a2d1ebaf 1323 va_end(va);
a2d1ebaf 1324#ifdef CONFIG_USER_ONLY
cdb432b2 1325 put_packet(s, s->syscall_buf);
2e0f2cfb 1326 gdb_handlesig(s->c_cpu, 0);
a2d1ebaf 1327#else
cdb432b2
MI		 1328 /* In this case wait to send the syscall packet until notification that
1329 the CPU has stopped. This must be done because if the packet is sent
1330 now the reply from the syscall request could be received while the CPU
1331 is still in the running state, which can cause packets to be dropped
1332 and state transition 'T' packets to be sent while the syscall is still
1333 being processed. */
2e0f2cfb 1334 cpu_exit(s->c_cpu);
a2d1ebaf
PB		 1335#endif
1336}
1337
6a00d601 1338static void gdb_read_byte(GDBState *s, int ch)
858693c6
FB		 1339{
1340 int i, csum;
60fe76f3 1341 uint8_t reply;
858693c6 1342
1fddef4b 1343#ifndef CONFIG_USER_ONLY
4046d913
PB		 1344 if (s->last_packet_len) {
1345 /* Waiting for a response to the last packet. If we see the start
1346 of a new command then abandon the previous response. */
1347 if (ch == '-') {
1348#ifdef DEBUG_GDB
1349 printf("Got NACK, retransmitting\n");
1350#endif
ffe8ab83 1351 put_buffer(s, (uint8_t *)s->last_packet, s->last_packet_len);
4046d913
PB		 1352 }
1353#ifdef DEBUG_GDB
1354 else if (ch == '+')
1355 printf("Got ACK\n");
1356 else
1357 printf("Got '%c' when expecting ACK/NACK\n", ch);
1358#endif
1359 if (ch == '+' || ch == '$')
1360 s->last_packet_len = 0;
1361 if (ch != '$')
1362 return;
1363 }
1354869c 1364 if (runstate_is_running()) {
858693c6
FB		 1365 /* when the CPU is running, we cannot do anything except stop
1366 it when receiving a char */
0461d5a6 1367 vm_stop(RUN_STATE_PAUSED);
5fafdf24 1368 } else
1fddef4b 1369#endif
41625033 1370 {
858693c6
FB		 1371 switch(s->state) {
1372 case RS_IDLE:
1373 if (ch == '$') {
1374 s->line_buf_index = 0;
1375 s->state = RS_GETLINE;
c33a346e 1376 }
b4608c04 1377 break;
858693c6
FB		 1378 case RS_GETLINE:
1379 if (ch == '#') {
1380 s->state = RS_CHKSUM1;
1381 } else if (s->line_buf_index >= sizeof(s->line_buf) - 1) {
1382 s->state = RS_IDLE;
4c3a88a2 1383 } else {
858693c6 1384 s->line_buf[s->line_buf_index++] = ch;
4c3a88a2
FB		 1385 }
1386 break;
858693c6
FB		 1387 case RS_CHKSUM1:
1388 s->line_buf[s->line_buf_index] = '\0';
1389 s->line_csum = fromhex(ch) << 4;
1390 s->state = RS_CHKSUM2;
1391 break;
1392 case RS_CHKSUM2:
1393 s->line_csum |= fromhex(ch);
1394 csum = 0;
1395 for(i = 0; i < s->line_buf_index; i++) {
1396 csum += s->line_buf[i];
1397 }
1398 if (s->line_csum != (csum & 0xff)) {
60fe76f3
TS		 1399 reply = '-';
1400 put_buffer(s, &reply, 1);
858693c6 1401 s->state = RS_IDLE;
4c3a88a2 1402 } else {
60fe76f3
TS		 1403 reply = '+';
1404 put_buffer(s, &reply, 1);
880a7578 1405 s->state = gdb_handle_packet(s, s->line_buf);
4c3a88a2
FB		 1406 }
1407 break;
a2d1ebaf
PB		 1408 default:
1409 abort();
858693c6
FB		 1410 }
1411 }
1412}
1413
0e1c9c54 1414/* Tell the remote gdb that the process has exited. */
9349b4f9 1415void gdb_exit(CPUArchState *env, int code)
0e1c9c54
PB		 1416{
1417 GDBState *s;
1418 char buf[4];
1419
1420 s = gdbserver_state;
1421 if (!s) {
1422 return;
1423 }
1424#ifdef CONFIG_USER_ONLY
1425 if (gdbserver_fd < 0 || s->fd < 0) {
1426 return;
1427 }
1428#endif
1429
1430 snprintf(buf, sizeof(buf), "W%02x", (uint8_t)code);
1431 put_packet(s, buf);
e2af15b2
FC		 1432
1433#ifndef CONFIG_USER_ONLY
1434 if (s->chr) {
70f24fb6 1435 qemu_chr_delete(s->chr);
e2af15b2
FC		 1436 }
1437#endif
0e1c9c54
PB		 1438}
1439
1fddef4b 1440#ifdef CONFIG_USER_ONLY
ca587a8e
AJ		 1441int
1442gdb_queuesig (void)
1443{
1444 GDBState *s;
1445
1446 s = gdbserver_state;
1447
1448 if (gdbserver_fd < 0 || s->fd < 0)
1449 return 0;
1450 else
1451 return 1;
1452}
1453
1fddef4b 1454int
db6b81d4 1455gdb_handlesig(CPUState *cpu, int sig)
1fddef4b 1456{
db6b81d4 1457 CPUArchState *env = cpu->env_ptr;
5ca666c7
AF		 1458 GDBState *s;
1459 char buf[256];
1460 int n;
1fddef4b 1461
5ca666c7
AF		 1462 s = gdbserver_state;
1463 if (gdbserver_fd < 0 || s->fd < 0) {
1464 return sig;
1465 }
1fddef4b 1466
5ca666c7 1467 /* disable single step if it was enabled */
3825b28f 1468 cpu_single_step(cpu, 0);
5ca666c7 1469 tb_flush(env);
1fddef4b 1470
5ca666c7
AF		 1471 if (sig != 0) {
1472 snprintf(buf, sizeof(buf), "S%02x", target_signal_to_gdb(sig));
1473 put_packet(s, buf);
1474 }
1475 /* put_packet() might have detected that the peer terminated the
1476 connection. */
1477 if (s->fd < 0) {
1478 return sig;
1479 }
1fddef4b 1480
5ca666c7
AF		 1481 sig = 0;
1482 s->state = RS_IDLE;
1483 s->running_state = 0;
1484 while (s->running_state == 0) {
1485 n = read(s->fd, buf, 256);
1486 if (n > 0) {
1487 int i;
1488
1489 for (i = 0; i < n; i++) {
1490 gdb_read_byte(s, buf[i]);
1491 }
1492 } else if (n == 0 || errno != EAGAIN) {
1493 /* XXX: Connection closed. Should probably wait for another
1494 connection before continuing. */
1495 return sig;
1fddef4b 1496 }
5ca666c7
AF		 1497 }
1498 sig = s->signal;
1499 s->signal = 0;
1500 return sig;
1fddef4b 1501}
e9009676 1502
ca587a8e 1503/* Tell the remote gdb that the process has exited due to SIG. */
9349b4f9 1504void gdb_signalled(CPUArchState *env, int sig)
ca587a8e 1505{
5ca666c7
AF		 1506 GDBState *s;
1507 char buf[4];
ca587a8e 1508
5ca666c7
AF		 1509 s = gdbserver_state;
1510 if (gdbserver_fd < 0 || s->fd < 0) {
1511 return;
1512 }
ca587a8e 1513
5ca666c7
AF		 1514 snprintf(buf, sizeof(buf), "X%02x", target_signal_to_gdb(sig));
1515 put_packet(s, buf);
ca587a8e 1516}
1fddef4b 1517
880a7578 1518static void gdb_accept(void)
858693c6
FB		 1519{
1520 GDBState *s;
1521 struct sockaddr_in sockaddr;
1522 socklen_t len;
bf1c852a 1523 int fd;
858693c6
FB		 1524
1525 for(;;) {
1526 len = sizeof(sockaddr);
1527 fd = accept(gdbserver_fd, (struct sockaddr *)&sockaddr, &len);
1528 if (fd < 0 && errno != EINTR) {
1529 perror("accept");
1530 return;
1531 } else if (fd >= 0) {
40ff6d7e
KW		 1532#ifndef _WIN32
1533 fcntl(fd, F_SETFD, FD_CLOEXEC);
1534#endif
b4608c04
FB		 1535 break;
1536 }
1537 }
858693c6
FB		 1538
1539 /* set short latency */
bf1c852a 1540 socket_set_nodelay(fd);
3b46e624 1541
7267c094 1542 s = g_malloc0(sizeof(GDBState));
2e0f2cfb
AF		 1543 s->c_cpu = first_cpu;
1544 s->g_cpu = first_cpu;
858693c6 1545 s->fd = fd;
5b50e790 1546 gdb_has_xml = false;
858693c6 1547
880a7578 1548 gdbserver_state = s;
a2d1ebaf 1549
858693c6 1550 fcntl(fd, F_SETFL, O_NONBLOCK);
858693c6
FB		 1551}
1552
1553static int gdbserver_open(int port)
1554{
1555 struct sockaddr_in sockaddr;
1556 int fd, val, ret;
1557
1558 fd = socket(PF_INET, SOCK_STREAM, 0);
1559 if (fd < 0) {
1560 perror("socket");
1561 return -1;
1562 }
40ff6d7e
KW		 1563#ifndef _WIN32
1564 fcntl(fd, F_SETFD, FD_CLOEXEC);
1565#endif
858693c6
FB		 1566
1567 /* allow fast reuse */
1568 val = 1;
9957fc7f 1569 qemu_setsockopt(fd, SOL_SOCKET, SO_REUSEADDR, &val, sizeof(val));
858693c6
FB		 1570
1571 sockaddr.sin_family = AF_INET;
1572 sockaddr.sin_port = htons(port);
1573 sockaddr.sin_addr.s_addr = 0;
1574 ret = bind(fd, (struct sockaddr *)&sockaddr, sizeof(sockaddr));
1575 if (ret < 0) {
1576 perror("bind");
bb16172c 1577 close(fd);
858693c6
FB		 1578 return -1;
1579 }
1580 ret = listen(fd, 0);
1581 if (ret < 0) {
1582 perror("listen");
bb16172c 1583 close(fd);
858693c6
FB		 1584 return -1;
1585 }
858693c6
FB		 1586 return fd;
1587}
1588
1589int gdbserver_start(int port)
1590{
1591 gdbserver_fd = gdbserver_open(port);
1592 if (gdbserver_fd < 0)
1593 return -1;
1594 /* accept connections */
880a7578 1595 gdb_accept();
4046d913
PB		 1596 return 0;
1597}
2b1319c8
AJ		 1598
1599/* Disable gdb stub for child processes. */
9349b4f9 1600void gdbserver_fork(CPUArchState *env)
2b1319c8
AJ		 1601{
1602 GDBState *s = gdbserver_state;
9f6164d6 1603 if (gdbserver_fd < 0 || s->fd < 0)
2b1319c8
AJ		 1604 return;
1605 close(s->fd);
1606 s->fd = -1;
1607 cpu_breakpoint_remove_all(env, BP_GDB);
1608 cpu_watchpoint_remove_all(env, BP_GDB);
1609}
1fddef4b 1610#else
aa1f17c1 1611static int gdb_chr_can_receive(void *opaque)
4046d913 1612{
56aebc89
PB		 1613 /* We can handle an arbitrarily large amount of data.
1614 Pick the maximum packet size, which is as good as anything. */
1615 return MAX_PACKET_LENGTH;
4046d913
PB		 1616}
1617
aa1f17c1 1618static void gdb_chr_receive(void *opaque, const uint8_t *buf, int size)
4046d913 1619{
4046d913
PB		 1620 int i;
1621
1622 for (i = 0; i < size; i++) {
880a7578 1623 gdb_read_byte(gdbserver_state, buf[i]);
4046d913
PB		 1624 }
1625}
1626
1627static void gdb_chr_event(void *opaque, int event)
1628{
1629 switch (event) {
b6b8df56 1630 case CHR_EVENT_OPENED:
0461d5a6 1631 vm_stop(RUN_STATE_PAUSED);
5b50e790 1632 gdb_has_xml = false;
4046d913
PB		 1633 break;
1634 default:
1635 break;
1636 }
1637}
1638
8a34a0fb
AL		 1639static void gdb_monitor_output(GDBState *s, const char *msg, int len)
1640{
1641 char buf[MAX_PACKET_LENGTH];
1642
1643 buf[0] = 'O';
1644 if (len > (MAX_PACKET_LENGTH/2) - 1)
1645 len = (MAX_PACKET_LENGTH/2) - 1;
1646 memtohex(buf + 1, (uint8_t *)msg, len);
1647 put_packet(s, buf);
1648}
1649
1650static int gdb_monitor_write(CharDriverState *chr, const uint8_t *buf, int len)
1651{
1652 const char *p = (const char *)buf;
1653 int max_sz;
1654
1655 max_sz = (sizeof(gdbserver_state->last_packet) - 2) / 2;
1656 for (;;) {
1657 if (len <= max_sz) {
1658 gdb_monitor_output(gdbserver_state, p, len);
1659 break;
1660 }
1661 gdb_monitor_output(gdbserver_state, p, max_sz);
1662 p += max_sz;
1663 len -= max_sz;
1664 }
1665 return len;
1666}
1667
59030a8c
AL		 1668#ifndef _WIN32
1669static void gdb_sigterm_handler(int signal)
1670{
1354869c 1671 if (runstate_is_running()) {
0461d5a6 1672 vm_stop(RUN_STATE_PAUSED);
e07bbac5 1673 }
59030a8c
AL		 1674}
1675#endif
1676
1677int gdbserver_start(const char *device)
4046d913
PB		 1678{
1679 GDBState *s;
59030a8c 1680 char gdbstub_device_name[128];
36556b20
AL		 1681 CharDriverState *chr = NULL;
1682 CharDriverState *mon_chr;
cfc3475a 1683
59030a8c
AL		 1684 if (!device)
1685 return -1;
1686 if (strcmp(device, "none") != 0) {
1687 if (strstart(device, "tcp:", NULL)) {
1688 /* enforce required TCP attributes */
1689 snprintf(gdbstub_device_name, sizeof(gdbstub_device_name),
1690 "%s,nowait,nodelay,server", device);
1691 device = gdbstub_device_name;
36556b20 1692 }
59030a8c
AL		 1693#ifndef _WIN32
1694 else if (strcmp(device, "stdio") == 0) {
1695 struct sigaction act;
4046d913 1696
59030a8c
AL		 1697 memset(&act, 0, sizeof(act));
1698 act.sa_handler = gdb_sigterm_handler;
1699 sigaction(SIGINT, &act, NULL);
1700 }
1701#endif
27143a44 1702 chr = qemu_chr_new("gdb", device, NULL);
36556b20
AL		 1703 if (!chr)
1704 return -1;
1705
456d6069 1706 qemu_chr_fe_claim_no_fail(chr);
36556b20
AL		 1707 qemu_chr_add_handlers(chr, gdb_chr_can_receive, gdb_chr_receive,
1708 gdb_chr_event, NULL);
cfc3475a
PB		 1709 }
1710
36556b20
AL		 1711 s = gdbserver_state;
1712 if (!s) {
7267c094 1713 s = g_malloc0(sizeof(GDBState));
36556b20 1714 gdbserver_state = s;
4046d913 1715
36556b20
AL		 1716 qemu_add_vm_change_state_handler(gdb_vm_state_change, NULL);
1717
1718 /* Initialize a monitor terminal for gdb */
7267c094 1719 mon_chr = g_malloc0(sizeof(*mon_chr));
36556b20
AL		 1720 mon_chr->chr_write = gdb_monitor_write;
1721 monitor_init(mon_chr, 0);
1722 } else {
1723 if (s->chr)
70f24fb6 1724 qemu_chr_delete(s->chr);
36556b20
AL		 1725 mon_chr = s->mon_chr;
1726 memset(s, 0, sizeof(GDBState));
1727 }
2e0f2cfb
AF		 1728 s->c_cpu = first_cpu;
1729 s->g_cpu = first_cpu;
4046d913 1730 s->chr = chr;
36556b20
AL		 1731 s->state = chr ? RS_IDLE : RS_INACTIVE;
1732 s->mon_chr = mon_chr;
cdb432b2 1733 s->current_syscall_cb = NULL;
8a34a0fb 1734
b4608c04
FB		 1735 return 0;
1736}
4046d913 1737#endif
Qemu copy for testing