]> git.ipfire.org Git - thirdparty/qemu.git/blame - gdbstub.c
projects / thirdparty / qemu.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
contrib: Clean up includes
[thirdparty/qemu.git] / gdbstub.c
CommitLineData
b4608c04
FB		 1/*
2 * gdb server stub
5fafdf24 3 *
3475187d 4 * Copyright (c) 2003-2005 Fabrice Bellard
b4608c04
FB		 5 *
6 * This library is free software; you can redistribute it and/or
7 * modify it under the terms of the GNU Lesser General Public
8 * License as published by the Free Software Foundation; either
9 * version 2 of the License, or (at your option) any later version.
10 *
11 * This library is distributed in the hope that it will be useful,
12 * but WITHOUT ANY WARRANTY; without even the implied warranty of
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
14 * Lesser General Public License for more details.
15 *
16 * You should have received a copy of the GNU Lesser General Public
8167ee88 17 * License along with this library; if not, see <http://www.gnu.org/licenses/>.
b4608c04 18 */
978efd6a 19#include "config.h"
56aebc89 20#include "qemu-common.h"
1fddef4b
FB		 21#ifdef CONFIG_USER_ONLY
22#include <stdlib.h>
23#include <stdio.h>
24#include <stdarg.h>
25#include <string.h>
26#include <errno.h>
27#include <unistd.h>
978efd6a 28#include <fcntl.h>
1fddef4b
FB		 29
30#include "qemu.h"
31#else
83c9089e 32#include "monitor/monitor.h"
dccfcd0e 33#include "sysemu/char.h"
9c17d615 34#include "sysemu/sysemu.h"
022c62cb 35#include "exec/gdbstub.h"
1fddef4b 36#endif
67b915a5 37
56aebc89
PB		 38#define MAX_PACKET_LENGTH 4096
39
2b41f10e 40#include "cpu.h"
1de7afc9 41#include "qemu/sockets.h"
9c17d615 42#include "sysemu/kvm.h"
cfe67cef 43#include "exec/semihost.h"
ca587a8e 44
a3919386
JK		 45#ifdef CONFIG_USER_ONLY
46#define GDB_ATTACHED "0"
47#else
48#define GDB_ATTACHED "1"
49#endif
50
f3659eee
AF		 51static inline int target_memory_rw_debug(CPUState *cpu, target_ulong addr,
52 uint8_t *buf, int len, bool is_write)
44520db1 53{
f3659eee
AF		 54 CPUClass *cc = CPU_GET_CLASS(cpu);
55
56 if (cc->memory_rw_debug) {
57 return cc->memory_rw_debug(cpu, addr, buf, len, is_write);
58 }
59 return cpu_memory_rw_debug(cpu, addr, buf, len, is_write);
44520db1 60}
ca587a8e
AJ		 61
62enum {
63 GDB_SIGNAL_0 = 0,
64 GDB_SIGNAL_INT = 2,
425189a8 65 GDB_SIGNAL_QUIT = 3,
ca587a8e 66 GDB_SIGNAL_TRAP = 5,
425189a8
JK		 67 GDB_SIGNAL_ABRT = 6,
68 GDB_SIGNAL_ALRM = 14,
69 GDB_SIGNAL_IO = 23,
70 GDB_SIGNAL_XCPU = 24,
ca587a8e
AJ		 71 GDB_SIGNAL_UNKNOWN = 143
72};
73
74#ifdef CONFIG_USER_ONLY
75
76/* Map target signal numbers to GDB protocol signal numbers and vice
77 * versa. For user emulation's currently supported systems, we can
78 * assume most signals are defined.
79 */
80
81static int gdb_signal_table[] = {
82 0,
83 TARGET_SIGHUP,
84 TARGET_SIGINT,
85 TARGET_SIGQUIT,
86 TARGET_SIGILL,
87 TARGET_SIGTRAP,
88 TARGET_SIGABRT,
89 -1, /* SIGEMT */
90 TARGET_SIGFPE,
91 TARGET_SIGKILL,
92 TARGET_SIGBUS,
93 TARGET_SIGSEGV,
94 TARGET_SIGSYS,
95 TARGET_SIGPIPE,
96 TARGET_SIGALRM,
97 TARGET_SIGTERM,
98 TARGET_SIGURG,
99 TARGET_SIGSTOP,
100 TARGET_SIGTSTP,
101 TARGET_SIGCONT,
102 TARGET_SIGCHLD,
103 TARGET_SIGTTIN,
104 TARGET_SIGTTOU,
105 TARGET_SIGIO,
106 TARGET_SIGXCPU,
107 TARGET_SIGXFSZ,
108 TARGET_SIGVTALRM,
109 TARGET_SIGPROF,
110 TARGET_SIGWINCH,
111 -1, /* SIGLOST */
112 TARGET_SIGUSR1,
113 TARGET_SIGUSR2,
c72d5bf8 114#ifdef TARGET_SIGPWR
ca587a8e 115 TARGET_SIGPWR,
c72d5bf8
BS		 116#else
117 -1,
118#endif
ca587a8e
AJ		 119 -1, /* SIGPOLL */
120 -1,
121 -1,
122 -1,
123 -1,
124 -1,
125 -1,
126 -1,
127 -1,
128 -1,
129 -1,
130 -1,
c72d5bf8 131#ifdef __SIGRTMIN
ca587a8e
AJ		 132 __SIGRTMIN + 1,
133 __SIGRTMIN + 2,
134 __SIGRTMIN + 3,
135 __SIGRTMIN + 4,
136 __SIGRTMIN + 5,
137 __SIGRTMIN + 6,
138 __SIGRTMIN + 7,
139 __SIGRTMIN + 8,
140 __SIGRTMIN + 9,
141 __SIGRTMIN + 10,
142 __SIGRTMIN + 11,
143 __SIGRTMIN + 12,
144 __SIGRTMIN + 13,
145 __SIGRTMIN + 14,
146 __SIGRTMIN + 15,
147 __SIGRTMIN + 16,
148 __SIGRTMIN + 17,
149 __SIGRTMIN + 18,
150 __SIGRTMIN + 19,
151 __SIGRTMIN + 20,
152 __SIGRTMIN + 21,
153 __SIGRTMIN + 22,
154 __SIGRTMIN + 23,
155 __SIGRTMIN + 24,
156 __SIGRTMIN + 25,
157 __SIGRTMIN + 26,
158 __SIGRTMIN + 27,
159 __SIGRTMIN + 28,
160 __SIGRTMIN + 29,
161 __SIGRTMIN + 30,
162 __SIGRTMIN + 31,
163 -1, /* SIGCANCEL */
164 __SIGRTMIN,
165 __SIGRTMIN + 32,
166 __SIGRTMIN + 33,
167 __SIGRTMIN + 34,
168 __SIGRTMIN + 35,
169 __SIGRTMIN + 36,
170 __SIGRTMIN + 37,
171 __SIGRTMIN + 38,
172 __SIGRTMIN + 39,
173 __SIGRTMIN + 40,
174 __SIGRTMIN + 41,
175 __SIGRTMIN + 42,
176 __SIGRTMIN + 43,
177 __SIGRTMIN + 44,
178 __SIGRTMIN + 45,
179 __SIGRTMIN + 46,
180 __SIGRTMIN + 47,
181 __SIGRTMIN + 48,
182 __SIGRTMIN + 49,
183 __SIGRTMIN + 50,
184 __SIGRTMIN + 51,
185 __SIGRTMIN + 52,
186 __SIGRTMIN + 53,
187 __SIGRTMIN + 54,
188 __SIGRTMIN + 55,
189 __SIGRTMIN + 56,
190 __SIGRTMIN + 57,
191 __SIGRTMIN + 58,
192 __SIGRTMIN + 59,
193 __SIGRTMIN + 60,
194 __SIGRTMIN + 61,
195 __SIGRTMIN + 62,
196 __SIGRTMIN + 63,
197 __SIGRTMIN + 64,
198 __SIGRTMIN + 65,
199 __SIGRTMIN + 66,
200 __SIGRTMIN + 67,
201 __SIGRTMIN + 68,
202 __SIGRTMIN + 69,
203 __SIGRTMIN + 70,
204 __SIGRTMIN + 71,
205 __SIGRTMIN + 72,
206 __SIGRTMIN + 73,
207 __SIGRTMIN + 74,
208 __SIGRTMIN + 75,
209 __SIGRTMIN + 76,
210 __SIGRTMIN + 77,
211 __SIGRTMIN + 78,
212 __SIGRTMIN + 79,
213 __SIGRTMIN + 80,
214 __SIGRTMIN + 81,
215 __SIGRTMIN + 82,
216 __SIGRTMIN + 83,
217 __SIGRTMIN + 84,
218 __SIGRTMIN + 85,
219 __SIGRTMIN + 86,
220 __SIGRTMIN + 87,
221 __SIGRTMIN + 88,
222 __SIGRTMIN + 89,
223 __SIGRTMIN + 90,
224 __SIGRTMIN + 91,
225 __SIGRTMIN + 92,
226 __SIGRTMIN + 93,
227 __SIGRTMIN + 94,
228 __SIGRTMIN + 95,
229 -1, /* SIGINFO */
230 -1, /* UNKNOWN */
231 -1, /* DEFAULT */
232 -1,
233 -1,
234 -1,
235 -1,
236 -1,
237 -1
c72d5bf8 238#endif
ca587a8e 239};
8f447cc7 240#else
ca587a8e
AJ		 241/* In system mode we only need SIGINT and SIGTRAP; other signals
242 are not yet supported. */
243
244enum {
245 TARGET_SIGINT = 2,
246 TARGET_SIGTRAP = 5
247};
248
249static int gdb_signal_table[] = {
250 -1,
251 -1,
252 TARGET_SIGINT,
253 -1,
254 -1,
255 TARGET_SIGTRAP
256};
257#endif
258
259#ifdef CONFIG_USER_ONLY
260static int target_signal_to_gdb (int sig)
261{
262 int i;
263 for (i = 0; i < ARRAY_SIZE (gdb_signal_table); i++)
264 if (gdb_signal_table[i] == sig)
265 return i;
266 return GDB_SIGNAL_UNKNOWN;
267}
8f447cc7 268#endif
b4608c04 269
ca587a8e
AJ		 270static int gdb_signal_to_target (int sig)
271{
272 if (sig < ARRAY_SIZE (gdb_signal_table))
273 return gdb_signal_table[sig];
274 else
275 return -1;
276}
277
4abe615b 278//#define DEBUG_GDB
b4608c04 279
56aebc89
PB		 280typedef struct GDBRegisterState {
281 int base_reg;
282 int num_regs;
283 gdb_reg_cb get_reg;
284 gdb_reg_cb set_reg;
285 const char *xml;
286 struct GDBRegisterState *next;
287} GDBRegisterState;
288
858693c6 289enum RSState {
36556b20 290 RS_INACTIVE,
858693c6
FB		 291 RS_IDLE,
292 RS_GETLINE,
293 RS_CHKSUM1,
294 RS_CHKSUM2,
295};
858693c6 296typedef struct GDBState {
2e0f2cfb
AF		 297 CPUState *c_cpu; /* current CPU for step/continue ops */
298 CPUState *g_cpu; /* current CPU for other ops */
52f34623 299 CPUState *query_cpu; /* for q{f|s}ThreadInfo */
41625033 300 enum RSState state; /* parsing state */
56aebc89 301 char line_buf[MAX_PACKET_LENGTH];
858693c6
FB		 302 int line_buf_index;
303 int line_csum;
56aebc89 304 uint8_t last_packet[MAX_PACKET_LENGTH + 4];
4046d913 305 int last_packet_len;
1f487ee9 306 int signal;
41625033 307#ifdef CONFIG_USER_ONLY
4046d913 308 int fd;
41625033 309 int running_state;
4046d913
PB		 310#else
311 CharDriverState *chr;
8a34a0fb 312 CharDriverState *mon_chr;
41625033 313#endif
cdb432b2
MI		 314 char syscall_buf[256];
315 gdb_syscall_complete_cb current_syscall_cb;
858693c6 316} GDBState;
b4608c04 317
60897d36
EI		 318/* By default use no IRQs and no timers while single stepping so as to
319 * make single stepping like an ICE HW step.
320 */
321static int sstep_flags = SSTEP_ENABLE|SSTEP_NOIRQ|SSTEP_NOTIMER;
322
880a7578
AL		 323static GDBState *gdbserver_state;
324
5b50e790 325bool gdb_has_xml;
56aebc89 326
1fddef4b 327#ifdef CONFIG_USER_ONLY
4046d913
PB		 328/* XXX: This is not thread safe. Do we care? */
329static int gdbserver_fd = -1;
330
858693c6 331static int get_char(GDBState *s)
b4608c04
FB		 332{
333 uint8_t ch;
334 int ret;
335
336 for(;;) {
00aa0040 337 ret = qemu_recv(s->fd, &ch, 1, 0);
b4608c04 338 if (ret < 0) {
1f487ee9
EI		 339 if (errno == ECONNRESET)
340 s->fd = -1;
b4608c04
FB		 341 if (errno != EINTR && errno != EAGAIN)
342 return -1;
343 } else if (ret == 0) {
1f487ee9
EI		 344 close(s->fd);
345 s->fd = -1;
b4608c04
FB		 346 return -1;
347 } else {
348 break;
349 }
350 }
351 return ch;
352}
4046d913 353#endif
b4608c04 354
654efcf3 355static enum {
a2d1ebaf
PB		 356 GDB_SYS_UNKNOWN,
357 GDB_SYS_ENABLED,
358 GDB_SYS_DISABLED,
359} gdb_syscall_mode;
360
a38bb079 361/* Decide if either remote gdb syscalls or native file IO should be used. */
a2d1ebaf
PB		 362int use_gdb_syscalls(void)
363{
cfe67cef
LA		 364 SemihostingTarget target = semihosting_get_target();
365 if (target == SEMIHOSTING_TARGET_NATIVE) {
a38bb079
LI		 366 /* -semihosting-config target=native */
367 return false;
cfe67cef 368 } else if (target == SEMIHOSTING_TARGET_GDB) {
a38bb079
LI		 369 /* -semihosting-config target=gdb */
370 return true;
371 }
372
373 /* -semihosting-config target=auto */
374 /* On the first call check if gdb is connected and remember. */
a2d1ebaf 375 if (gdb_syscall_mode == GDB_SYS_UNKNOWN) {
880a7578
AL		 376 gdb_syscall_mode = (gdbserver_state ? GDB_SYS_ENABLED
377 : GDB_SYS_DISABLED);
a2d1ebaf
PB		 378 }
379 return gdb_syscall_mode == GDB_SYS_ENABLED;
380}
381
ba70a624
EI		 382/* Resume execution. */
383static inline void gdb_continue(GDBState *s)
384{
385#ifdef CONFIG_USER_ONLY
386 s->running_state = 1;
387#else
26ac7a31 388 if (!runstate_needs_reset()) {
87f25c12
PB		 389 vm_start();
390 }
ba70a624
EI		 391#endif
392}
393
858693c6 394static void put_buffer(GDBState *s, const uint8_t *buf, int len)
b4608c04 395{
4046d913 396#ifdef CONFIG_USER_ONLY
b4608c04
FB		 397 int ret;
398
399 while (len > 0) {
8f447cc7 400 ret = send(s->fd, buf, len, 0);
b4608c04
FB		 401 if (ret < 0) {
402 if (errno != EINTR && errno != EAGAIN)
403 return;
404 } else {
405 buf += ret;
406 len -= ret;
407 }
408 }
4046d913 409#else
2cc6e0a1 410 qemu_chr_fe_write(s->chr, buf, len);
4046d913 411#endif
b4608c04
FB		 412}
413
414static inline int fromhex(int v)
415{
416 if (v >= '0' && v <= '9')
417 return v - '0';
418 else if (v >= 'A' && v <= 'F')
419 return v - 'A' + 10;
420 else if (v >= 'a' && v <= 'f')
421 return v - 'a' + 10;
422 else
423 return 0;
424}
425
426static inline int tohex(int v)
427{
428 if (v < 10)
429 return v + '0';
430 else
431 return v - 10 + 'a';
432}
433
434static void memtohex(char *buf, const uint8_t *mem, int len)
435{
436 int i, c;
437 char *q;
438 q = buf;
439 for(i = 0; i < len; i++) {
440 c = mem[i];
441 *q++ = tohex(c >> 4);
442 *q++ = tohex(c & 0xf);
443 }
444 *q = '\0';
445}
446
447static void hextomem(uint8_t *mem, const char *buf, int len)
448{
449 int i;
450
451 for(i = 0; i < len; i++) {
452 mem[i] = (fromhex(buf[0]) << 4) | fromhex(buf[1]);
453 buf += 2;
454 }
455}
456
b4608c04 457/* return -1 if error, 0 if OK */
56aebc89 458static int put_packet_binary(GDBState *s, const char *buf, int len)
b4608c04 459{
56aebc89 460 int csum, i;
60fe76f3 461 uint8_t *p;
b4608c04 462
b4608c04 463 for(;;) {
4046d913
PB		 464 p = s->last_packet;
465 *(p++) = '$';
4046d913
PB		 466 memcpy(p, buf, len);
467 p += len;
b4608c04
FB		 468 csum = 0;
469 for(i = 0; i < len; i++) {
470 csum += buf[i];
471 }
4046d913
PB		 472 *(p++) = '#';
473 *(p++) = tohex((csum >> 4) & 0xf);
474 *(p++) = tohex((csum) & 0xf);
b4608c04 475
4046d913 476 s->last_packet_len = p - s->last_packet;
ffe8ab83 477 put_buffer(s, (uint8_t *)s->last_packet, s->last_packet_len);
b4608c04 478
4046d913
PB		 479#ifdef CONFIG_USER_ONLY
480 i = get_char(s);
481 if (i < 0)
b4608c04 482 return -1;
4046d913 483 if (i == '+')
b4608c04 484 break;
4046d913
PB		 485#else
486 break;
487#endif
b4608c04
FB		 488 }
489 return 0;
490}
491
56aebc89
PB		 492/* return -1 if error, 0 if OK */
493static int put_packet(GDBState *s, const char *buf)
494{
495#ifdef DEBUG_GDB
496 printf("reply='%s'\n", buf);
497#endif
79808573 498
56aebc89
PB		 499 return put_packet_binary(s, buf, strlen(buf));
500}
501
56aebc89
PB		 502/* Encode data using the encoding for 'x' packets. */
503static int memtox(char *buf, const char *mem, int len)
504{
505 char *p = buf;
506 char c;
507
508 while (len--) {
509 c = *(mem++);
510 switch (c) {
511 case '#': case '$': case '*': case '}':
512 *(p++) = '}';
513 *(p++) = c ^ 0x20;
514 break;
515 default:
516 *(p++) = c;
517 break;
518 }
519 }
520 return p - buf;
521}
f1ccf904 522
5b24c641
AF		 523static const char *get_feature_xml(const char *p, const char **newp,
524 CPUClass *cc)
56aebc89 525{
56aebc89
PB		 526 size_t len;
527 int i;
528 const char *name;
529 static char target_xml[1024];
530
531 len = 0;
532 while (p[len] && p[len] != ':')
533 len++;
534 *newp = p + len;
535
536 name = NULL;
537 if (strncmp(p, "target.xml", len) == 0) {
538 /* Generate the XML description for this CPU. */
539 if (!target_xml[0]) {
540 GDBRegisterState *r;
eac8b355 541 CPUState *cpu = first_cpu;
56aebc89 542
b3820e6c
DH		 543 pstrcat(target_xml, sizeof(target_xml),
544 "<?xml version=\"1.0\"?>"
545 "<!DOCTYPE target SYSTEM \"gdb-target.dtd\">"
546 "<target>");
547 if (cc->gdb_arch_name) {
548 gchar *arch = cc->gdb_arch_name(cpu);
549 pstrcat(target_xml, sizeof(target_xml), "<architecture>");
550 pstrcat(target_xml, sizeof(target_xml), arch);
551 pstrcat(target_xml, sizeof(target_xml), "</architecture>");
552 g_free(arch);
553 }
554 pstrcat(target_xml, sizeof(target_xml), "<xi:include href=\"");
555 pstrcat(target_xml, sizeof(target_xml), cc->gdb_core_xml_file);
556 pstrcat(target_xml, sizeof(target_xml), "\"/>");
eac8b355 557 for (r = cpu->gdb_regs; r; r = r->next) {
2dc766da
BS		 558 pstrcat(target_xml, sizeof(target_xml), "<xi:include href=\"");
559 pstrcat(target_xml, sizeof(target_xml), r->xml);
560 pstrcat(target_xml, sizeof(target_xml), "\"/>");
56aebc89 561 }
2dc766da 562 pstrcat(target_xml, sizeof(target_xml), "</target>");
56aebc89
PB		 563 }
564 return target_xml;
565 }
566 for (i = 0; ; i++) {
567 name = xml_builtin[i][0];
568 if (!name || (strncmp(name, p, len) == 0 && strlen(name) == len))
569 break;
570 }
571 return name ? xml_builtin[i][1] : NULL;
572}
f1ccf904 573
385b9f0e 574static int gdb_read_register(CPUState *cpu, uint8_t *mem_buf, int reg)
56aebc89 575{
a0e372f0 576 CPUClass *cc = CPU_GET_CLASS(cpu);
385b9f0e 577 CPUArchState *env = cpu->env_ptr;
56aebc89 578 GDBRegisterState *r;
f1ccf904 579
a0e372f0 580 if (reg < cc->gdb_num_core_regs) {
5b50e790 581 return cc->gdb_read_register(cpu, mem_buf, reg);
a0e372f0 582 }
f1ccf904 583
eac8b355 584 for (r = cpu->gdb_regs; r; r = r->next) {
56aebc89
PB		 585 if (r->base_reg <= reg && reg < r->base_reg + r->num_regs) {
586 return r->get_reg(env, mem_buf, reg - r->base_reg);
587 }
588 }
589 return 0;
f1ccf904
TS		 590}
591
385b9f0e 592static int gdb_write_register(CPUState *cpu, uint8_t *mem_buf, int reg)
f1ccf904 593{
a0e372f0 594 CPUClass *cc = CPU_GET_CLASS(cpu);
385b9f0e 595 CPUArchState *env = cpu->env_ptr;
56aebc89 596 GDBRegisterState *r;
f1ccf904 597
a0e372f0 598 if (reg < cc->gdb_num_core_regs) {
5b50e790 599 return cc->gdb_write_register(cpu, mem_buf, reg);
a0e372f0 600 }
56aebc89 601
eac8b355 602 for (r = cpu->gdb_regs; r; r = r->next) {
56aebc89
PB		 603 if (r->base_reg <= reg && reg < r->base_reg + r->num_regs) {
604 return r->set_reg(env, mem_buf, reg - r->base_reg);
605 }
606 }
6da41eaf
FB		 607 return 0;
608}
609
56aebc89
PB		 610/* Register a supplemental set of CPU registers. If g_pos is nonzero it
611 specifies the first register number and these registers are included in
612 a standard "g" packet. Direction is relative to gdb, i.e. get_reg is
613 gdb reading a CPU register, and set_reg is gdb modifying a CPU register.
614 */
615
22169d41
AF		 616void gdb_register_coprocessor(CPUState *cpu,
617 gdb_reg_cb get_reg, gdb_reg_cb set_reg,
618 int num_regs, const char *xml, int g_pos)
6da41eaf 619{
56aebc89
PB		 620 GDBRegisterState *s;
621 GDBRegisterState **p;
56aebc89 622
eac8b355 623 p = &cpu->gdb_regs;
56aebc89
PB		 624 while (*p) {
625 /* Check for duplicates. */
626 if (strcmp((*p)->xml, xml) == 0)
627 return;
628 p = &(*p)->next;
629 }
9643c25f
SW		 630
631 s = g_new0(GDBRegisterState, 1);
a0e372f0 632 s->base_reg = cpu->gdb_num_regs;
9643c25f
SW		 633 s->num_regs = num_regs;
634 s->get_reg = get_reg;
635 s->set_reg = set_reg;
636 s->xml = xml;
637
56aebc89 638 /* Add to end of list. */
a0e372f0 639 cpu->gdb_num_regs += num_regs;
56aebc89
PB		 640 *p = s;
641 if (g_pos) {
642 if (g_pos != s->base_reg) {
643 fprintf(stderr, "Error: Bad gdb register numbering for '%s'\n"
644 "Expected %d got %d\n", xml, g_pos, s->base_reg);
35143f01
AF		 645 } else {
646 cpu->gdb_num_g_regs = cpu->gdb_num_regs;
56aebc89
PB		 647 }
648 }
6da41eaf
FB		 649}
650
a1d1bb31 651#ifndef CONFIG_USER_ONLY
2472b6c0
PM		 652/* Translate GDB watchpoint type to a flags value for cpu_watchpoint_* */
653static inline int xlat_gdb_type(CPUState *cpu, int gdbtype)
654{
655 static const int xlat[] = {
656 [GDB_WATCHPOINT_WRITE] = BP_GDB | BP_MEM_WRITE,
657 [GDB_WATCHPOINT_READ] = BP_GDB | BP_MEM_READ,
658 [GDB_WATCHPOINT_ACCESS] = BP_GDB | BP_MEM_ACCESS,
659 };
660
661 CPUClass *cc = CPU_GET_CLASS(cpu);
662 int cputype = xlat[gdbtype];
663
664 if (cc->gdb_stop_before_watchpoint) {
665 cputype |= BP_STOP_BEFORE_ACCESS;
666 }
667 return cputype;
668}
a1d1bb31
AL		 669#endif
670
880a7578 671static int gdb_breakpoint_insert(target_ulong addr, target_ulong len, int type)
a1d1bb31 672{
182735ef 673 CPUState *cpu;
880a7578
AL		 674 int err = 0;
675
62278814 676 if (kvm_enabled()) {
2e0f2cfb 677 return kvm_insert_breakpoint(gdbserver_state->c_cpu, addr, len, type);
62278814 678 }
e22a25c9 679
a1d1bb31
AL		 680 switch (type) {
681 case GDB_BREAKPOINT_SW:
682 case GDB_BREAKPOINT_HW:
bdc44640 683 CPU_FOREACH(cpu) {
b3310ab3
AF		 684 err = cpu_breakpoint_insert(cpu, addr, BP_GDB, NULL);
685 if (err) {
880a7578 686 break;
b3310ab3 687 }
880a7578
AL		 688 }
689 return err;
a1d1bb31
AL		 690#ifndef CONFIG_USER_ONLY
691 case GDB_WATCHPOINT_WRITE:
692 case GDB_WATCHPOINT_READ:
693 case GDB_WATCHPOINT_ACCESS:
bdc44640 694 CPU_FOREACH(cpu) {
2472b6c0
PM		 695 err = cpu_watchpoint_insert(cpu, addr, len,
696 xlat_gdb_type(cpu, type), NULL);
697 if (err) {
880a7578 698 break;
2472b6c0 699 }
880a7578
AL		 700 }
701 return err;
a1d1bb31
AL		 702#endif
703 default:
704 return -ENOSYS;
705 }
706}
707
880a7578 708static int gdb_breakpoint_remove(target_ulong addr, target_ulong len, int type)
a1d1bb31 709{
182735ef 710 CPUState *cpu;
880a7578
AL		 711 int err = 0;
712
62278814 713 if (kvm_enabled()) {
2e0f2cfb 714 return kvm_remove_breakpoint(gdbserver_state->c_cpu, addr, len, type);
62278814 715 }
e22a25c9 716
a1d1bb31
AL		 717 switch (type) {
718 case GDB_BREAKPOINT_SW:
719 case GDB_BREAKPOINT_HW:
bdc44640 720 CPU_FOREACH(cpu) {
b3310ab3
AF		 721 err = cpu_breakpoint_remove(cpu, addr, BP_GDB);
722 if (err) {
880a7578 723 break;
b3310ab3 724 }
880a7578
AL		 725 }
726 return err;
a1d1bb31
AL		 727#ifndef CONFIG_USER_ONLY
728 case GDB_WATCHPOINT_WRITE:
729 case GDB_WATCHPOINT_READ:
730 case GDB_WATCHPOINT_ACCESS:
bdc44640 731 CPU_FOREACH(cpu) {
2472b6c0
PM		 732 err = cpu_watchpoint_remove(cpu, addr, len,
733 xlat_gdb_type(cpu, type));
880a7578
AL		 734 if (err)
735 break;
736 }
737 return err;
a1d1bb31
AL		 738#endif
739 default:
740 return -ENOSYS;
741 }
742}
743
880a7578 744static void gdb_breakpoint_remove_all(void)
a1d1bb31 745{
182735ef 746 CPUState *cpu;
880a7578 747
e22a25c9 748 if (kvm_enabled()) {
2e0f2cfb 749 kvm_remove_all_breakpoints(gdbserver_state->c_cpu);
e22a25c9
AL		 750 return;
751 }
752
bdc44640 753 CPU_FOREACH(cpu) {
b3310ab3 754 cpu_breakpoint_remove_all(cpu, BP_GDB);
a1d1bb31 755#ifndef CONFIG_USER_ONLY
75a34036 756 cpu_watchpoint_remove_all(cpu, BP_GDB);
a1d1bb31 757#endif
880a7578 758 }
a1d1bb31
AL		 759}
760
fab9d284
AJ		 761static void gdb_set_cpu_pc(GDBState *s, target_ulong pc)
762{
2e0f2cfb 763 CPUState *cpu = s->c_cpu;
f45748f1
AF		 764
765 cpu_synchronize_state(cpu);
4a2b24ed 766 cpu_set_pc(cpu, pc);
fab9d284
AJ		 767}
768
2e0f2cfb 769static CPUState *find_cpu(uint32_t thread_id)
1e9fa730 770{
0d34282f 771 CPUState *cpu;
1e9fa730 772
bdc44640 773 CPU_FOREACH(cpu) {
aa48dd93 774 if (cpu_index(cpu) == thread_id) {
2e0f2cfb 775 return cpu;
aa48dd93 776 }
1e9fa730 777 }
aa48dd93
AF		 778
779 return NULL;
1e9fa730
NF		 780}
781
4dabe747
JK		 782static int is_query_packet(const char *p, const char *query, char separator)
783{
784 unsigned int query_len = strlen(query);
785
786 return strncmp(p, query, query_len) == 0 &&
787 (p[query_len] == '\0' || p[query_len] == separator);
788}
789
880a7578 790static int gdb_handle_packet(GDBState *s, const char *line_buf)
b4608c04 791{
2e0f2cfb 792 CPUState *cpu;
5b24c641 793 CPUClass *cc;
b4608c04 794 const char *p;
1e9fa730
NF		 795 uint32_t thread;
796 int ch, reg_size, type, res;
56aebc89
PB		 797 char buf[MAX_PACKET_LENGTH];
798 uint8_t mem_buf[MAX_PACKET_LENGTH];
799 uint8_t *registers;
9d9754a3 800 target_ulong addr, len;
3b46e624 801
858693c6
FB		 802#ifdef DEBUG_GDB
803 printf("command='%s'\n", line_buf);
804#endif
805 p = line_buf;
806 ch = *p++;
807 switch(ch) {
808 case '?':
1fddef4b 809 /* TODO: Make this return the correct value for user-mode. */
ca587a8e 810 snprintf(buf, sizeof(buf), "T%02xthread:%02x;", GDB_SIGNAL_TRAP,
2e0f2cfb 811 cpu_index(s->c_cpu));
858693c6 812 put_packet(s, buf);
7d03f82f
EI		 813 /* Remove all the breakpoints when this query is issued,
814 * because gdb is doing and initial connect and the state
815 * should be cleaned up.
816 */
880a7578 817 gdb_breakpoint_remove_all();
858693c6
FB		 818 break;
819 case 'c':
820 if (*p != '\0') {
9d9754a3 821 addr = strtoull(p, (char **)&p, 16);
fab9d284 822 gdb_set_cpu_pc(s, addr);
858693c6 823 }
ca587a8e 824 s->signal = 0;
ba70a624 825 gdb_continue(s);
41625033 826 return RS_IDLE;
1f487ee9 827 case 'C':
ca587a8e
AJ		 828 s->signal = gdb_signal_to_target (strtoul(p, (char **)&p, 16));
829 if (s->signal == -1)
830 s->signal = 0;
1f487ee9
EI		 831 gdb_continue(s);
832 return RS_IDLE;
dd32aa10
JK		 833 case 'v':
834 if (strncmp(p, "Cont", 4) == 0) {
835 int res_signal, res_thread;
836
837 p += 4;
838 if (*p == '?') {
839 put_packet(s, "vCont;c;C;s;S");
840 break;
841 }
842 res = 0;
843 res_signal = 0;
844 res_thread = 0;
845 while (*p) {
846 int action, signal;
847
848 if (*p++ != ';') {
849 res = 0;
850 break;
851 }
852 action = *p++;
853 signal = 0;
854 if (action == 'C' || action == 'S') {
f17b0690
MS		 855 signal = gdb_signal_to_target(strtoul(p, (char **)&p, 16));
856 if (signal == -1) {
857 signal = 0;
858 }
dd32aa10
JK		 859 } else if (action != 'c' && action != 's') {
860 res = 0;
861 break;
862 }
863 thread = 0;
864 if (*p == ':') {
865 thread = strtoull(p+1, (char **)&p, 16);
866 }
867 action = tolower(action);
868 if (res == 0 || (res == 'c' && action == 's')) {
869 res = action;
870 res_signal = signal;
871 res_thread = thread;
872 }
873 }
874 if (res) {
875 if (res_thread != -1 && res_thread != 0) {
2e0f2cfb
AF		 876 cpu = find_cpu(res_thread);
877 if (cpu == NULL) {
dd32aa10
JK		 878 put_packet(s, "E22");
879 break;
880 }
2e0f2cfb 881 s->c_cpu = cpu;
dd32aa10
JK		 882 }
883 if (res == 's') {
2e0f2cfb 884 cpu_single_step(s->c_cpu, sstep_flags);
dd32aa10
JK		 885 }
886 s->signal = res_signal;
887 gdb_continue(s);
888 return RS_IDLE;
889 }
890 break;
891 } else {
892 goto unknown_command;
893 }
7d03f82f
EI		 894 case 'k':
895 /* Kill the target */
896 fprintf(stderr, "\nQEMU: Terminated via GDBstub\n");
897 exit(0);
898 case 'D':
899 /* Detach packet */
880a7578 900 gdb_breakpoint_remove_all();
7ea06da3 901 gdb_syscall_mode = GDB_SYS_DISABLED;
7d03f82f
EI		 902 gdb_continue(s);
903 put_packet(s, "OK");
904 break;
858693c6
FB		 905 case 's':
906 if (*p != '\0') {
8fac5803 907 addr = strtoull(p, (char **)&p, 16);
fab9d284 908 gdb_set_cpu_pc(s, addr);
858693c6 909 }
2e0f2cfb 910 cpu_single_step(s->c_cpu, sstep_flags);
ba70a624 911 gdb_continue(s);
41625033 912 return RS_IDLE;
a2d1ebaf
PB		 913 case 'F':
914 {
915 target_ulong ret;
916 target_ulong err;
917
918 ret = strtoull(p, (char **)&p, 16);
919 if (*p == ',') {
920 p++;
921 err = strtoull(p, (char **)&p, 16);
922 } else {
923 err = 0;
924 }
925 if (*p == ',')
926 p++;
927 type = *p;
cdb432b2 928 if (s->current_syscall_cb) {
2e0f2cfb 929 s->current_syscall_cb(s->c_cpu, ret, err);
cdb432b2
MI		 930 s->current_syscall_cb = NULL;
931 }
a2d1ebaf
PB		 932 if (type == 'C') {
933 put_packet(s, "T02");
934 } else {
ba70a624 935 gdb_continue(s);
a2d1ebaf
PB		 936 }
937 }
938 break;
858693c6 939 case 'g':
2e0f2cfb 940 cpu_synchronize_state(s->g_cpu);
56aebc89 941 len = 0;
35143f01 942 for (addr = 0; addr < s->g_cpu->gdb_num_g_regs; addr++) {
2e0f2cfb 943 reg_size = gdb_read_register(s->g_cpu, mem_buf + len, addr);
56aebc89
PB		 944 len += reg_size;
945 }
946 memtohex(buf, mem_buf, len);
858693c6
FB		 947 put_packet(s, buf);
948 break;
949 case 'G':
2e0f2cfb 950 cpu_synchronize_state(s->g_cpu);
56aebc89 951 registers = mem_buf;
858693c6
FB		 952 len = strlen(p) / 2;
953 hextomem((uint8_t *)registers, p, len);
35143f01 954 for (addr = 0; addr < s->g_cpu->gdb_num_g_regs && len > 0; addr++) {
2e0f2cfb 955 reg_size = gdb_write_register(s->g_cpu, registers, addr);
56aebc89
PB		 956 len -= reg_size;
957 registers += reg_size;
958 }
858693c6
FB		 959 put_packet(s, "OK");
960 break;
961 case 'm':
9d9754a3 962 addr = strtoull(p, (char **)&p, 16);
858693c6
FB		 963 if (*p == ',')
964 p++;
9d9754a3 965 len = strtoull(p, NULL, 16);
5accecb3
KW		 966
967 /* memtohex() doubles the required space */
968 if (len > MAX_PACKET_LENGTH / 2) {
969 put_packet (s, "E22");
970 break;
971 }
972
2e0f2cfb 973 if (target_memory_rw_debug(s->g_cpu, addr, mem_buf, len, false) != 0) {
6f970bd9
FB		 974 put_packet (s, "E14");
975 } else {
976 memtohex(buf, mem_buf, len);
977 put_packet(s, buf);
978 }
858693c6
FB		 979 break;
980 case 'M':
9d9754a3 981 addr = strtoull(p, (char **)&p, 16);
858693c6
FB		 982 if (*p == ',')
983 p++;
9d9754a3 984 len = strtoull(p, (char **)&p, 16);
b328f873 985 if (*p == ':')
858693c6 986 p++;
5accecb3
KW		 987
988 /* hextomem() reads 2*len bytes */
989 if (len > strlen(p) / 2) {
990 put_packet (s, "E22");
991 break;
992 }
858693c6 993 hextomem(mem_buf, p, len);
2e0f2cfb 994 if (target_memory_rw_debug(s->g_cpu, addr, mem_buf, len,
f3659eee 995 true) != 0) {
905f20b1 996 put_packet(s, "E14");
44520db1 997 } else {
858693c6 998 put_packet(s, "OK");
44520db1 999 }
858693c6 1000 break;
56aebc89
PB		 1001 case 'p':
1002 /* Older gdb are really dumb, and don't use 'g' if 'p' is avaialable.
1003 This works, but can be very slow. Anything new enough to
1004 understand XML also knows how to use this properly. */
1005 if (!gdb_has_xml)
1006 goto unknown_command;
1007 addr = strtoull(p, (char **)&p, 16);
2e0f2cfb 1008 reg_size = gdb_read_register(s->g_cpu, mem_buf, addr);
56aebc89
PB		 1009 if (reg_size) {
1010 memtohex(buf, mem_buf, reg_size);
1011 put_packet(s, buf);
1012 } else {
1013 put_packet(s, "E14");
1014 }
1015 break;
1016 case 'P':
1017 if (!gdb_has_xml)
1018 goto unknown_command;
1019 addr = strtoull(p, (char **)&p, 16);
1020 if (*p == '=')
1021 p++;
1022 reg_size = strlen(p) / 2;
1023 hextomem(mem_buf, p, reg_size);
2e0f2cfb 1024 gdb_write_register(s->g_cpu, mem_buf, addr);
56aebc89
PB		 1025 put_packet(s, "OK");
1026 break;
858693c6 1027 case 'Z':
858693c6
FB		 1028 case 'z':
1029 type = strtoul(p, (char **)&p, 16);
1030 if (*p == ',')
1031 p++;
9d9754a3 1032 addr = strtoull(p, (char **)&p, 16);
858693c6
FB		 1033 if (*p == ',')
1034 p++;
9d9754a3 1035 len = strtoull(p, (char **)&p, 16);
a1d1bb31 1036 if (ch == 'Z')
880a7578 1037 res = gdb_breakpoint_insert(addr, len, type);
a1d1bb31 1038 else
880a7578 1039 res = gdb_breakpoint_remove(addr, len, type);
a1d1bb31
AL		 1040 if (res >= 0)
1041 put_packet(s, "OK");
1042 else if (res == -ENOSYS)
0f459d16 1043 put_packet(s, "");
a1d1bb31
AL		 1044 else
1045 put_packet(s, "E22");
858693c6 1046 break;
880a7578
AL		 1047 case 'H':
1048 type = *p++;
1049 thread = strtoull(p, (char **)&p, 16);
1050 if (thread == -1 || thread == 0) {
1051 put_packet(s, "OK");
1052 break;
1053 }
2e0f2cfb
AF		 1054 cpu = find_cpu(thread);
1055 if (cpu == NULL) {
880a7578
AL		 1056 put_packet(s, "E22");
1057 break;
1058 }
1059 switch (type) {
1060 case 'c':
2e0f2cfb 1061 s->c_cpu = cpu;
880a7578
AL		 1062 put_packet(s, "OK");
1063 break;
1064 case 'g':
2e0f2cfb 1065 s->g_cpu = cpu;
880a7578
AL		 1066 put_packet(s, "OK");
1067 break;
1068 default:
1069 put_packet(s, "E22");
1070 break;
1071 }
1072 break;
1073 case 'T':
1074 thread = strtoull(p, (char **)&p, 16);
2e0f2cfb 1075 cpu = find_cpu(thread);
1e9fa730 1076
2e0f2cfb 1077 if (cpu != NULL) {
1e9fa730
NF		 1078 put_packet(s, "OK");
1079 } else {
880a7578 1080 put_packet(s, "E22");
1e9fa730 1081 }
880a7578 1082 break;
978efd6a 1083 case 'q':
60897d36
EI		 1084 case 'Q':
1085 /* parse any 'q' packets here */
1086 if (!strcmp(p,"qemu.sstepbits")) {
1087 /* Query Breakpoint bit definitions */
363a37d5
BS		 1088 snprintf(buf, sizeof(buf), "ENABLE=%x,NOIRQ=%x,NOTIMER=%x",
1089 SSTEP_ENABLE,
1090 SSTEP_NOIRQ,
1091 SSTEP_NOTIMER);
60897d36
EI		 1092 put_packet(s, buf);
1093 break;
4dabe747 1094 } else if (is_query_packet(p, "qemu.sstep", '=')) {
60897d36
EI		 1095 /* Display or change the sstep_flags */
1096 p += 10;
1097 if (*p != '=') {
1098 /* Display current setting */
363a37d5 1099 snprintf(buf, sizeof(buf), "0x%x", sstep_flags);
60897d36
EI		 1100 put_packet(s, buf);
1101 break;
1102 }
1103 p++;
1104 type = strtoul(p, (char **)&p, 16);
1105 sstep_flags = type;
1106 put_packet(s, "OK");
1107 break;
880a7578
AL		 1108 } else if (strcmp(p,"C") == 0) {
1109 /* "Current thread" remains vague in the spec, so always return
1110 * the first CPU (gdb returns the first thread). */
1111 put_packet(s, "QC1");
1112 break;
1113 } else if (strcmp(p,"fThreadInfo") == 0) {
52f34623 1114 s->query_cpu = first_cpu;
880a7578
AL		 1115 goto report_cpuinfo;
1116 } else if (strcmp(p,"sThreadInfo") == 0) {
1117 report_cpuinfo:
1118 if (s->query_cpu) {
52f34623 1119 snprintf(buf, sizeof(buf), "m%x", cpu_index(s->query_cpu));
880a7578 1120 put_packet(s, buf);
bdc44640 1121 s->query_cpu = CPU_NEXT(s->query_cpu);
880a7578
AL		 1122 } else
1123 put_packet(s, "l");
1124 break;
1125 } else if (strncmp(p,"ThreadExtraInfo,", 16) == 0) {
1126 thread = strtoull(p+16, (char **)&p, 16);
2e0f2cfb
AF		 1127 cpu = find_cpu(thread);
1128 if (cpu != NULL) {
cb446eca 1129 cpu_synchronize_state(cpu);
5accecb3
KW		 1130 /* memtohex() doubles the required space */
1131 len = snprintf((char *)mem_buf, sizeof(buf) / 2,
55e5c285 1132 "CPU#%d [%s]", cpu->cpu_index,
259186a7 1133 cpu->halted ? "halted " : "running");
1e9fa730
NF		 1134 memtohex(buf, mem_buf, len);
1135 put_packet(s, buf);
1136 }
880a7578 1137 break;
60897d36 1138 }
0b8a988c 1139#ifdef CONFIG_USER_ONLY
070949f3 1140 else if (strcmp(p, "Offsets") == 0) {
0429a971 1141 TaskState *ts = s->c_cpu->opaque;
978efd6a 1142
363a37d5
BS		 1143 snprintf(buf, sizeof(buf),
1144 "Text=" TARGET_ABI_FMT_lx ";Data=" TARGET_ABI_FMT_lx
1145 ";Bss=" TARGET_ABI_FMT_lx,
1146 ts->info->code_offset,
1147 ts->info->data_offset,
1148 ts->info->data_offset);
978efd6a
PB		 1149 put_packet(s, buf);
1150 break;
1151 }
0b8a988c 1152#else /* !CONFIG_USER_ONLY */
8a34a0fb
AL		 1153 else if (strncmp(p, "Rcmd,", 5) == 0) {
1154 int len = strlen(p + 5);
1155
1156 if ((len % 2) != 0) {
1157 put_packet(s, "E01");
1158 break;
1159 }
8a34a0fb 1160 len = len / 2;
5accecb3 1161 hextomem(mem_buf, p + 5, len);
8a34a0fb 1162 mem_buf[len++] = 0;
fa5efccb 1163 qemu_chr_be_write(s->mon_chr, mem_buf, len);
8a34a0fb
AL		 1164 put_packet(s, "OK");
1165 break;
1166 }
0b8a988c 1167#endif /* !CONFIG_USER_ONLY */
4dabe747 1168 if (is_query_packet(p, "Supported", ':')) {
5b3715bf 1169 snprintf(buf, sizeof(buf), "PacketSize=%x", MAX_PACKET_LENGTH);
5b24c641
AF		 1170 cc = CPU_GET_CLASS(first_cpu);
1171 if (cc->gdb_core_xml_file != NULL) {
1172 pstrcat(buf, sizeof(buf), ";qXfer:features:read+");
1173 }
56aebc89
PB		 1174 put_packet(s, buf);
1175 break;
1176 }
56aebc89
PB		 1177 if (strncmp(p, "Xfer:features:read:", 19) == 0) {
1178 const char *xml;
1179 target_ulong total_len;
1180
5b24c641
AF		 1181 cc = CPU_GET_CLASS(first_cpu);
1182 if (cc->gdb_core_xml_file == NULL) {
1183 goto unknown_command;
1184 }
1185
5b50e790 1186 gdb_has_xml = true;
56aebc89 1187 p += 19;
5b24c641 1188 xml = get_feature_xml(p, &p, cc);
56aebc89 1189 if (!xml) {
5b3715bf 1190 snprintf(buf, sizeof(buf), "E00");
56aebc89
PB		 1191 put_packet(s, buf);
1192 break;
1193 }
1194
1195 if (*p == ':')
1196 p++;
1197 addr = strtoul(p, (char **)&p, 16);
1198 if (*p == ',')
1199 p++;
1200 len = strtoul(p, (char **)&p, 16);
1201
1202 total_len = strlen(xml);
1203 if (addr > total_len) {
5b3715bf 1204 snprintf(buf, sizeof(buf), "E00");
56aebc89
PB		 1205 put_packet(s, buf);
1206 break;
1207 }
1208 if (len > (MAX_PACKET_LENGTH - 5) / 2)
1209 len = (MAX_PACKET_LENGTH - 5) / 2;
1210 if (len < total_len - addr) {
1211 buf[0] = 'm';
1212 len = memtox(buf + 1, xml + addr, len);
1213 } else {
1214 buf[0] = 'l';
1215 len = memtox(buf + 1, xml + addr, total_len - addr);
1216 }
1217 put_packet_binary(s, buf, len + 1);
1218 break;
1219 }
a3919386
JK		 1220 if (is_query_packet(p, "Attached", ':')) {
1221 put_packet(s, GDB_ATTACHED);
1222 break;
1223 }
56aebc89
PB		 1224 /* Unrecognised 'q' command. */
1225 goto unknown_command;
1226
858693c6 1227 default:
56aebc89 1228 unknown_command:
858693c6
FB		 1229 /* put empty packet */
1230 buf[0] = '\0';
1231 put_packet(s, buf);
1232 break;
1233 }
1234 return RS_IDLE;
1235}
1236
64f6b346 1237void gdb_set_stop_cpu(CPUState *cpu)
880a7578 1238{
2e0f2cfb
AF		 1239 gdbserver_state->c_cpu = cpu;
1240 gdbserver_state->g_cpu = cpu;
880a7578
AL		 1241}
1242
1fddef4b 1243#ifndef CONFIG_USER_ONLY
1dfb4dd9 1244static void gdb_vm_state_change(void *opaque, int running, RunState state)
858693c6 1245{
880a7578 1246 GDBState *s = gdbserver_state;
2e0f2cfb 1247 CPUState *cpu = s->c_cpu;
858693c6 1248 char buf[256];
d6fc1b39 1249 const char *type;
858693c6
FB		 1250 int ret;
1251
cdb432b2
MI		 1252 if (running || s->state == RS_INACTIVE) {
1253 return;
1254 }
1255 /* Is there a GDB syscall waiting to be sent? */
1256 if (s->current_syscall_cb) {
1257 put_packet(s, s->syscall_buf);
a2d1ebaf 1258 return;
e07bbac5 1259 }
1dfb4dd9 1260 switch (state) {
0461d5a6 1261 case RUN_STATE_DEBUG:
ff4700b0
AF		 1262 if (cpu->watchpoint_hit) {
1263 switch (cpu->watchpoint_hit->flags & BP_MEM_ACCESS) {
a1d1bb31 1264 case BP_MEM_READ:
d6fc1b39
AL		 1265 type = "r";
1266 break;
a1d1bb31 1267 case BP_MEM_ACCESS:
d6fc1b39
AL		 1268 type = "a";
1269 break;
1270 default:
1271 type = "";
1272 break;
1273 }
880a7578
AL		 1274 snprintf(buf, sizeof(buf),
1275 "T%02xthread:%02x;%swatch:" TARGET_FMT_lx ";",
0d34282f 1276 GDB_SIGNAL_TRAP, cpu_index(cpu), type,
ff4700b0
AF		 1277 (target_ulong)cpu->watchpoint_hit->vaddr);
1278 cpu->watchpoint_hit = NULL;
425189a8 1279 goto send_packet;
6658ffb8 1280 }
bbd77c18 1281 tb_flush(cpu);
ca587a8e 1282 ret = GDB_SIGNAL_TRAP;
425189a8 1283 break;
0461d5a6 1284 case RUN_STATE_PAUSED:
9781e040 1285 ret = GDB_SIGNAL_INT;
425189a8 1286 break;
0461d5a6 1287 case RUN_STATE_SHUTDOWN:
425189a8
JK		 1288 ret = GDB_SIGNAL_QUIT;
1289 break;
0461d5a6 1290 case RUN_STATE_IO_ERROR:
425189a8
JK		 1291 ret = GDB_SIGNAL_IO;
1292 break;
0461d5a6 1293 case RUN_STATE_WATCHDOG:
425189a8
JK		 1294 ret = GDB_SIGNAL_ALRM;
1295 break;
0461d5a6 1296 case RUN_STATE_INTERNAL_ERROR:
425189a8
JK		 1297 ret = GDB_SIGNAL_ABRT;
1298 break;
0461d5a6
LC		 1299 case RUN_STATE_SAVE_VM:
1300 case RUN_STATE_RESTORE_VM:
425189a8 1301 return;
0461d5a6 1302 case RUN_STATE_FINISH_MIGRATE:
425189a8
JK		 1303 ret = GDB_SIGNAL_XCPU;
1304 break;
1305 default:
1306 ret = GDB_SIGNAL_UNKNOWN;
1307 break;
bbeb7b5c 1308 }
226d007d 1309 gdb_set_stop_cpu(cpu);
0d34282f 1310 snprintf(buf, sizeof(buf), "T%02xthread:%02x;", ret, cpu_index(cpu));
425189a8
JK		 1311
1312send_packet:
858693c6 1313 put_packet(s, buf);
425189a8
JK		 1314
1315 /* disable single step if it was enabled */
3825b28f 1316 cpu_single_step(cpu, 0);
858693c6 1317}
1fddef4b 1318#endif
858693c6 1319
a2d1ebaf
PB		 1320/* Send a gdb syscall request.
1321 This accepts limited printf-style format specifiers, specifically:
a87295e8
PB		 1322 %x - target_ulong argument printed in hex.
1323 %lx - 64-bit argument printed in hex.
1324 %s - string pointer (target_ulong) and length (int) pair. */
19239b39 1325void gdb_do_syscallv(gdb_syscall_complete_cb cb, const char *fmt, va_list va)
a2d1ebaf 1326{
a2d1ebaf 1327 char *p;
cdb432b2 1328 char *p_end;
a2d1ebaf 1329 target_ulong addr;
a87295e8 1330 uint64_t i64;
a2d1ebaf
PB		 1331 GDBState *s;
1332
880a7578 1333 s = gdbserver_state;
a2d1ebaf
PB		 1334 if (!s)
1335 return;
cdb432b2 1336 s->current_syscall_cb = cb;
a2d1ebaf 1337#ifndef CONFIG_USER_ONLY
0461d5a6 1338 vm_stop(RUN_STATE_DEBUG);
a2d1ebaf 1339#endif
cdb432b2
MI		 1340 p = s->syscall_buf;
1341 p_end = &s->syscall_buf[sizeof(s->syscall_buf)];
a2d1ebaf
PB		 1342 *(p++) = 'F';
1343 while (*fmt) {
1344 if (*fmt == '%') {
1345 fmt++;
1346 switch (*fmt++) {
1347 case 'x':
1348 addr = va_arg(va, target_ulong);
cdb432b2 1349 p += snprintf(p, p_end - p, TARGET_FMT_lx, addr);
a2d1ebaf 1350 break;
a87295e8
PB		 1351 case 'l':
1352 if (*(fmt++) != 'x')
1353 goto bad_format;
1354 i64 = va_arg(va, uint64_t);
cdb432b2 1355 p += snprintf(p, p_end - p, "%" PRIx64, i64);
a87295e8 1356 break;
a2d1ebaf
PB		 1357 case 's':
1358 addr = va_arg(va, target_ulong);
cdb432b2 1359 p += snprintf(p, p_end - p, TARGET_FMT_lx "/%x",
363a37d5 1360 addr, va_arg(va, int));
a2d1ebaf
PB		 1361 break;
1362 default:
a87295e8 1363 bad_format:
a2d1ebaf
PB		 1364 fprintf(stderr, "gdbstub: Bad syscall format string '%s'\n",
1365 fmt - 1);
1366 break;
1367 }
1368 } else {
1369 *(p++) = *(fmt++);
1370 }
1371 }
8a93e02a 1372 *p = 0;
a2d1ebaf 1373#ifdef CONFIG_USER_ONLY
cdb432b2 1374 put_packet(s, s->syscall_buf);
2e0f2cfb 1375 gdb_handlesig(s->c_cpu, 0);
a2d1ebaf 1376#else
cdb432b2
MI		 1377 /* In this case wait to send the syscall packet until notification that
1378 the CPU has stopped. This must be done because if the packet is sent
1379 now the reply from the syscall request could be received while the CPU
1380 is still in the running state, which can cause packets to be dropped
1381 and state transition 'T' packets to be sent while the syscall is still
1382 being processed. */
9102deda 1383 qemu_cpu_kick(s->c_cpu);
a2d1ebaf
PB		 1384#endif
1385}
1386
19239b39
PM		 1387void gdb_do_syscall(gdb_syscall_complete_cb cb, const char *fmt, ...)
1388{
1389 va_list va;
1390
1391 va_start(va, fmt);
1392 gdb_do_syscallv(cb, fmt, va);
1393 va_end(va);
1394}
1395
6a00d601 1396static void gdb_read_byte(GDBState *s, int ch)
858693c6
FB		 1397{
1398 int i, csum;
60fe76f3 1399 uint8_t reply;
858693c6 1400
1fddef4b 1401#ifndef CONFIG_USER_ONLY
4046d913
PB		 1402 if (s->last_packet_len) {
1403 /* Waiting for a response to the last packet. If we see the start
1404 of a new command then abandon the previous response. */
1405 if (ch == '-') {
1406#ifdef DEBUG_GDB
1407 printf("Got NACK, retransmitting\n");
1408#endif
ffe8ab83 1409 put_buffer(s, (uint8_t *)s->last_packet, s->last_packet_len);
4046d913
PB		 1410 }
1411#ifdef DEBUG_GDB
1412 else if (ch == '+')
1413 printf("Got ACK\n");
1414 else
1415 printf("Got '%c' when expecting ACK/NACK\n", ch);
1416#endif
1417 if (ch == '+' || ch == '$')
1418 s->last_packet_len = 0;
1419 if (ch != '$')
1420 return;
1421 }
1354869c 1422 if (runstate_is_running()) {
858693c6
FB		 1423 /* when the CPU is running, we cannot do anything except stop
1424 it when receiving a char */
0461d5a6 1425 vm_stop(RUN_STATE_PAUSED);
5fafdf24 1426 } else
1fddef4b 1427#endif
41625033 1428 {
858693c6
FB		 1429 switch(s->state) {
1430 case RS_IDLE:
1431 if (ch == '$') {
1432 s->line_buf_index = 0;
1433 s->state = RS_GETLINE;
c33a346e 1434 }
b4608c04 1435 break;
858693c6
FB		 1436 case RS_GETLINE:
1437 if (ch == '#') {
1438 s->state = RS_CHKSUM1;
1439 } else if (s->line_buf_index >= sizeof(s->line_buf) - 1) {
1440 s->state = RS_IDLE;
4c3a88a2 1441 } else {
858693c6 1442 s->line_buf[s->line_buf_index++] = ch;
4c3a88a2
FB		 1443 }
1444 break;
858693c6
FB		 1445 case RS_CHKSUM1:
1446 s->line_buf[s->line_buf_index] = '\0';
1447 s->line_csum = fromhex(ch) << 4;
1448 s->state = RS_CHKSUM2;
1449 break;
1450 case RS_CHKSUM2:
1451 s->line_csum |= fromhex(ch);
1452 csum = 0;
1453 for(i = 0; i < s->line_buf_index; i++) {
1454 csum += s->line_buf[i];
1455 }
1456 if (s->line_csum != (csum & 0xff)) {
60fe76f3
TS		 1457 reply = '-';
1458 put_buffer(s, &reply, 1);
858693c6 1459 s->state = RS_IDLE;
4c3a88a2 1460 } else {
60fe76f3
TS		 1461 reply = '+';
1462 put_buffer(s, &reply, 1);
880a7578 1463 s->state = gdb_handle_packet(s, s->line_buf);
4c3a88a2
FB		 1464 }
1465 break;
a2d1ebaf
PB		 1466 default:
1467 abort();
858693c6
FB		 1468 }
1469 }
1470}
1471
0e1c9c54 1472/* Tell the remote gdb that the process has exited. */
9349b4f9 1473void gdb_exit(CPUArchState *env, int code)
0e1c9c54
PB		 1474{
1475 GDBState *s;
1476 char buf[4];
1477
1478 s = gdbserver_state;
1479 if (!s) {
1480 return;
1481 }
1482#ifdef CONFIG_USER_ONLY
1483 if (gdbserver_fd < 0 || s->fd < 0) {
1484 return;
1485 }
3d0f4418
PB		 1486#else
1487 if (!s->chr) {
1488 return;
1489 }
0e1c9c54
PB		 1490#endif
1491
1492 snprintf(buf, sizeof(buf), "W%02x", (uint8_t)code);
1493 put_packet(s, buf);
e2af15b2
FC		 1494
1495#ifndef CONFIG_USER_ONLY
3d0f4418 1496 qemu_chr_delete(s->chr);
e2af15b2 1497#endif
0e1c9c54
PB		 1498}
1499
1fddef4b 1500#ifdef CONFIG_USER_ONLY
ca587a8e
AJ		 1501int
1502gdb_queuesig (void)
1503{
1504 GDBState *s;
1505
1506 s = gdbserver_state;
1507
1508 if (gdbserver_fd < 0 || s->fd < 0)
1509 return 0;
1510 else
1511 return 1;
1512}
1513
1fddef4b 1514int
db6b81d4 1515gdb_handlesig(CPUState *cpu, int sig)
1fddef4b 1516{
5ca666c7
AF		 1517 GDBState *s;
1518 char buf[256];
1519 int n;
1fddef4b 1520
5ca666c7
AF		 1521 s = gdbserver_state;
1522 if (gdbserver_fd < 0 || s->fd < 0) {
1523 return sig;
1524 }
1fddef4b 1525
5ca666c7 1526 /* disable single step if it was enabled */
3825b28f 1527 cpu_single_step(cpu, 0);
bbd77c18 1528 tb_flush(cpu);
1fddef4b 1529
5ca666c7
AF		 1530 if (sig != 0) {
1531 snprintf(buf, sizeof(buf), "S%02x", target_signal_to_gdb(sig));
1532 put_packet(s, buf);
1533 }
1534 /* put_packet() might have detected that the peer terminated the
1535 connection. */
1536 if (s->fd < 0) {
1537 return sig;
1538 }
1fddef4b 1539
5ca666c7
AF		 1540 sig = 0;
1541 s->state = RS_IDLE;
1542 s->running_state = 0;
1543 while (s->running_state == 0) {
1544 n = read(s->fd, buf, 256);
1545 if (n > 0) {
1546 int i;
1547
1548 for (i = 0; i < n; i++) {
1549 gdb_read_byte(s, buf[i]);
1550 }
1551 } else if (n == 0 || errno != EAGAIN) {
1552 /* XXX: Connection closed. Should probably wait for another
1553 connection before continuing. */
1554 return sig;
1fddef4b 1555 }
5ca666c7
AF		 1556 }
1557 sig = s->signal;
1558 s->signal = 0;
1559 return sig;
1fddef4b 1560}
e9009676 1561
ca587a8e 1562/* Tell the remote gdb that the process has exited due to SIG. */
9349b4f9 1563void gdb_signalled(CPUArchState *env, int sig)
ca587a8e 1564{
5ca666c7
AF		 1565 GDBState *s;
1566 char buf[4];
ca587a8e 1567
5ca666c7
AF		 1568 s = gdbserver_state;
1569 if (gdbserver_fd < 0 || s->fd < 0) {
1570 return;
1571 }
ca587a8e 1572
5ca666c7
AF		 1573 snprintf(buf, sizeof(buf), "X%02x", target_signal_to_gdb(sig));
1574 put_packet(s, buf);
ca587a8e 1575}
1fddef4b 1576
880a7578 1577static void gdb_accept(void)
858693c6
FB		 1578{
1579 GDBState *s;
1580 struct sockaddr_in sockaddr;
1581 socklen_t len;
bf1c852a 1582 int fd;
858693c6
FB		 1583
1584 for(;;) {
1585 len = sizeof(sockaddr);
1586 fd = accept(gdbserver_fd, (struct sockaddr *)&sockaddr, &len);
1587 if (fd < 0 && errno != EINTR) {
1588 perror("accept");
1589 return;
1590 } else if (fd >= 0) {
40ff6d7e
KW		 1591#ifndef _WIN32
1592 fcntl(fd, F_SETFD, FD_CLOEXEC);
1593#endif
b4608c04
FB		 1594 break;
1595 }
1596 }
858693c6
FB		 1597
1598 /* set short latency */
bf1c852a 1599 socket_set_nodelay(fd);
3b46e624 1600
7267c094 1601 s = g_malloc0(sizeof(GDBState));
2e0f2cfb
AF		 1602 s->c_cpu = first_cpu;
1603 s->g_cpu = first_cpu;
858693c6 1604 s->fd = fd;
5b50e790 1605 gdb_has_xml = false;
858693c6 1606
880a7578 1607 gdbserver_state = s;
a2d1ebaf 1608
858693c6 1609 fcntl(fd, F_SETFL, O_NONBLOCK);
858693c6
FB		 1610}
1611
1612static int gdbserver_open(int port)
1613{
1614 struct sockaddr_in sockaddr;
6669ca13 1615 int fd, ret;
858693c6
FB		 1616
1617 fd = socket(PF_INET, SOCK_STREAM, 0);
1618 if (fd < 0) {
1619 perror("socket");
1620 return -1;
1621 }
40ff6d7e
KW		 1622#ifndef _WIN32
1623 fcntl(fd, F_SETFD, FD_CLOEXEC);
1624#endif
858693c6 1625
6669ca13 1626 socket_set_fast_reuse(fd);
858693c6
FB		 1627
1628 sockaddr.sin_family = AF_INET;
1629 sockaddr.sin_port = htons(port);
1630 sockaddr.sin_addr.s_addr = 0;
1631 ret = bind(fd, (struct sockaddr *)&sockaddr, sizeof(sockaddr));
1632 if (ret < 0) {
1633 perror("bind");
bb16172c 1634 close(fd);
858693c6
FB		 1635 return -1;
1636 }
1637 ret = listen(fd, 0);
1638 if (ret < 0) {
1639 perror("listen");
bb16172c 1640 close(fd);
858693c6
FB		 1641 return -1;
1642 }
858693c6
FB		 1643 return fd;
1644}
1645
1646int gdbserver_start(int port)
1647{
1648 gdbserver_fd = gdbserver_open(port);
1649 if (gdbserver_fd < 0)
1650 return -1;
1651 /* accept connections */
880a7578 1652 gdb_accept();
4046d913
PB		 1653 return 0;
1654}
2b1319c8
AJ		 1655
1656/* Disable gdb stub for child processes. */
f7ec7f7b 1657void gdbserver_fork(CPUState *cpu)
2b1319c8
AJ		 1658{
1659 GDBState *s = gdbserver_state;
75a34036
AF		 1660
1661 if (gdbserver_fd < 0 || s->fd < 0) {
1662 return;
1663 }
2b1319c8
AJ		 1664 close(s->fd);
1665 s->fd = -1;
b3310ab3 1666 cpu_breakpoint_remove_all(cpu, BP_GDB);
75a34036 1667 cpu_watchpoint_remove_all(cpu, BP_GDB);
2b1319c8 1668}
1fddef4b 1669#else
aa1f17c1 1670static int gdb_chr_can_receive(void *opaque)
4046d913 1671{
56aebc89
PB		 1672 /* We can handle an arbitrarily large amount of data.
1673 Pick the maximum packet size, which is as good as anything. */
1674 return MAX_PACKET_LENGTH;
4046d913
PB		 1675}
1676
aa1f17c1 1677static void gdb_chr_receive(void *opaque, const uint8_t *buf, int size)
4046d913 1678{
4046d913
PB		 1679 int i;
1680
1681 for (i = 0; i < size; i++) {
880a7578 1682 gdb_read_byte(gdbserver_state, buf[i]);
4046d913
PB		 1683 }
1684}
1685
1686static void gdb_chr_event(void *opaque, int event)
1687{
1688 switch (event) {
b6b8df56 1689 case CHR_EVENT_OPENED:
0461d5a6 1690 vm_stop(RUN_STATE_PAUSED);
5b50e790 1691 gdb_has_xml = false;
4046d913
PB		 1692 break;
1693 default:
1694 break;
1695 }
1696}
1697
8a34a0fb
AL		 1698static void gdb_monitor_output(GDBState *s, const char *msg, int len)
1699{
1700 char buf[MAX_PACKET_LENGTH];
1701
1702 buf[0] = 'O';
1703 if (len > (MAX_PACKET_LENGTH/2) - 1)
1704 len = (MAX_PACKET_LENGTH/2) - 1;
1705 memtohex(buf + 1, (uint8_t *)msg, len);
1706 put_packet(s, buf);
1707}
1708
1709static int gdb_monitor_write(CharDriverState *chr, const uint8_t *buf, int len)
1710{
1711 const char *p = (const char *)buf;
1712 int max_sz;
1713
1714 max_sz = (sizeof(gdbserver_state->last_packet) - 2) / 2;
1715 for (;;) {
1716 if (len <= max_sz) {
1717 gdb_monitor_output(gdbserver_state, p, len);
1718 break;
1719 }
1720 gdb_monitor_output(gdbserver_state, p, max_sz);
1721 p += max_sz;
1722 len -= max_sz;
1723 }
1724 return len;
1725}
1726
59030a8c
AL		 1727#ifndef _WIN32
1728static void gdb_sigterm_handler(int signal)
1729{
1354869c 1730 if (runstate_is_running()) {
0461d5a6 1731 vm_stop(RUN_STATE_PAUSED);
e07bbac5 1732 }
59030a8c
AL		 1733}
1734#endif
1735
1736int gdbserver_start(const char *device)
4046d913
PB		 1737{
1738 GDBState *s;
59030a8c 1739 char gdbstub_device_name[128];
36556b20
AL		 1740 CharDriverState *chr = NULL;
1741 CharDriverState *mon_chr;
d0d7708b 1742 ChardevCommon common = { 0 };
cfc3475a 1743
59030a8c
AL		 1744 if (!device)
1745 return -1;
1746 if (strcmp(device, "none") != 0) {
1747 if (strstart(device, "tcp:", NULL)) {
1748 /* enforce required TCP attributes */
1749 snprintf(gdbstub_device_name, sizeof(gdbstub_device_name),
1750 "%s,nowait,nodelay,server", device);
1751 device = gdbstub_device_name;
36556b20 1752 }
59030a8c
AL		 1753#ifndef _WIN32
1754 else if (strcmp(device, "stdio") == 0) {
1755 struct sigaction act;
4046d913 1756
59030a8c
AL		 1757 memset(&act, 0, sizeof(act));
1758 act.sa_handler = gdb_sigterm_handler;
1759 sigaction(SIGINT, &act, NULL);
1760 }
1761#endif
27143a44 1762 chr = qemu_chr_new("gdb", device, NULL);
36556b20
AL		 1763 if (!chr)
1764 return -1;
1765
456d6069 1766 qemu_chr_fe_claim_no_fail(chr);
36556b20
AL		 1767 qemu_chr_add_handlers(chr, gdb_chr_can_receive, gdb_chr_receive,
1768 gdb_chr_event, NULL);
cfc3475a
PB		 1769 }
1770
36556b20
AL		 1771 s = gdbserver_state;
1772 if (!s) {
7267c094 1773 s = g_malloc0(sizeof(GDBState));
36556b20 1774 gdbserver_state = s;
4046d913 1775
36556b20
AL		 1776 qemu_add_vm_change_state_handler(gdb_vm_state_change, NULL);
1777
1778 /* Initialize a monitor terminal for gdb */
d0d7708b 1779 mon_chr = qemu_chr_alloc(&common, &error_abort);
36556b20
AL		 1780 mon_chr->chr_write = gdb_monitor_write;
1781 monitor_init(mon_chr, 0);
1782 } else {
1783 if (s->chr)
70f24fb6 1784 qemu_chr_delete(s->chr);
36556b20
AL		 1785 mon_chr = s->mon_chr;
1786 memset(s, 0, sizeof(GDBState));
1787 }
2e0f2cfb
AF		 1788 s->c_cpu = first_cpu;
1789 s->g_cpu = first_cpu;
4046d913 1790 s->chr = chr;
36556b20
AL		 1791 s->state = chr ? RS_IDLE : RS_INACTIVE;
1792 s->mon_chr = mon_chr;
cdb432b2 1793 s->current_syscall_cb = NULL;
8a34a0fb 1794
b4608c04
FB		 1795 return 0;
1796}
4046d913 1797#endif
Mirror of https://git.qemu.org/git/qemu.git