1 /* General "disassemble this chunk" code. Used for debugging. */
2 #include "qemu/osdep.h"
3 #include "disas/dis-asm.h"
5 #include "qemu/qemu-print.h"
7 #include "disas/disas.h"
8 #include "disas/capstone.h"
10 typedef struct CPUDebug
{
11 struct disassemble_info info
;
15 /* Filled in by elfload.c. Simplistic, but will do for now. */
16 struct syminfo
*syminfos
= NULL
;
19 * Get LENGTH bytes from info's buffer, at host address memaddr.
20 * Transfer them to myaddr.
22 static int host_read_memory(bfd_vma memaddr
, bfd_byte
*myaddr
, int length
,
23 struct disassemble_info
*info
)
25 if (memaddr
< info
->buffer_vma
26 || memaddr
+ length
> info
->buffer_vma
+ info
->buffer_length
) {
27 /* Out of bounds. Use EIO because GDB uses it. */
30 memcpy (myaddr
, info
->buffer
+ (memaddr
- info
->buffer_vma
), length
);
35 * Get LENGTH bytes from info's buffer, at target address memaddr.
36 * Transfer them to myaddr.
38 static int target_read_memory(bfd_vma memaddr
, bfd_byte
*myaddr
, int length
,
39 struct disassemble_info
*info
)
41 CPUDebug
*s
= container_of(info
, CPUDebug
, info
);
42 int r
= cpu_memory_rw_debug(s
->cpu
, memaddr
, myaddr
, length
, 0);
47 * Print an error message. We can assume that this is in response to
48 * an error return from {host,target}_read_memory.
50 static void perror_memory(int status
, bfd_vma memaddr
,
51 struct disassemble_info
*info
)
55 info
->fprintf_func(info
->stream
, "Unknown error %d\n", status
);
57 /* Address between memaddr and memaddr + len was out of bounds. */
58 info
->fprintf_func(info
->stream
,
59 "Address 0x%" PRIx64
" is out of bounds.\n",
64 /* Print address in hex. */
65 static void print_address(bfd_vma addr
, struct disassemble_info
*info
)
67 info
->fprintf_func(info
->stream
, "0x%" PRIx64
, addr
);
70 /* Print address in hex, truncated to the width of a host virtual address. */
71 static void host_print_address(bfd_vma addr
, struct disassemble_info
*info
)
73 print_address((uintptr_t)addr
, info
);
76 /* Stub prevents some fruitless earching in optabs disassemblers. */
77 static int symbol_at_address(bfd_vma addr
, struct disassemble_info
*info
)
82 static int print_insn_objdump(bfd_vma pc
, disassemble_info
*info
,
85 int i
, n
= info
->buffer_length
;
86 uint8_t *buf
= g_malloc(n
);
88 info
->read_memory_func(pc
, buf
, n
, info
);
90 for (i
= 0; i
< n
; ++i
) {
92 info
->fprintf_func(info
->stream
, "\n%s: ", prefix
);
94 info
->fprintf_func(info
->stream
, "%02x", buf
[i
]);
101 static int print_insn_od_host(bfd_vma pc
, disassemble_info
*info
)
103 return print_insn_objdump(pc
, info
, "OBJD-H");
106 static int print_insn_od_target(bfd_vma pc
, disassemble_info
*info
)
108 return print_insn_objdump(pc
, info
, "OBJD-T");
111 static void initialize_debug(CPUDebug
*s
)
113 memset(s
, 0, sizeof(*s
));
114 s
->info
.arch
= bfd_arch_unknown
;
115 s
->info
.cap_arch
= -1;
116 s
->info
.cap_insn_unit
= 4;
117 s
->info
.cap_insn_split
= 4;
118 s
->info
.memory_error_func
= perror_memory
;
119 s
->info
.symbol_at_address_func
= symbol_at_address
;
122 static void initialize_debug_target(CPUDebug
*s
, CPUState
*cpu
)
127 s
->info
.read_memory_func
= target_read_memory
;
128 s
->info
.print_address_func
= print_address
;
129 #if TARGET_BIG_ENDIAN
130 s
->info
.endian
= BFD_ENDIAN_BIG
;
132 s
->info
.endian
= BFD_ENDIAN_LITTLE
;
135 CPUClass
*cc
= CPU_GET_CLASS(cpu
);
136 if (cc
->disas_set_info
) {
137 cc
->disas_set_info(cpu
, &s
->info
);
141 static void initialize_debug_host(CPUDebug
*s
)
145 s
->info
.read_memory_func
= host_read_memory
;
146 s
->info
.print_address_func
= host_print_address
;
148 s
->info
.endian
= BFD_ENDIAN_BIG
;
150 s
->info
.endian
= BFD_ENDIAN_LITTLE
;
152 #if defined(CONFIG_TCG_INTERPRETER)
153 s
->info
.print_insn
= print_insn_tci
;
154 #elif defined(__i386__)
155 s
->info
.mach
= bfd_mach_i386_i386
;
156 s
->info
.print_insn
= print_insn_i386
;
157 s
->info
.cap_arch
= CS_ARCH_X86
;
158 s
->info
.cap_mode
= CS_MODE_32
;
159 s
->info
.cap_insn_unit
= 1;
160 s
->info
.cap_insn_split
= 8;
161 #elif defined(__x86_64__)
162 s
->info
.mach
= bfd_mach_x86_64
;
163 s
->info
.print_insn
= print_insn_i386
;
164 s
->info
.cap_arch
= CS_ARCH_X86
;
165 s
->info
.cap_mode
= CS_MODE_64
;
166 s
->info
.cap_insn_unit
= 1;
167 s
->info
.cap_insn_split
= 8;
168 #elif defined(_ARCH_PPC)
169 s
->info
.disassembler_options
= (char *)"any";
170 s
->info
.print_insn
= print_insn_ppc
;
171 s
->info
.cap_arch
= CS_ARCH_PPC
;
173 s
->info
.cap_mode
= CS_MODE_64
;
175 #elif defined(__riscv) && defined(CONFIG_RISCV_DIS)
176 #if defined(_ILP32) || (__riscv_xlen == 32)
177 s
->info
.print_insn
= print_insn_riscv32
;
179 s
->info
.print_insn
= print_insn_riscv64
;
181 #error unsupported RISC-V ABI
183 #elif defined(__aarch64__)
184 s
->info
.cap_arch
= CS_ARCH_ARM64
;
185 # ifdef CONFIG_ARM_A64_DIS
186 s
->info
.print_insn
= print_insn_arm_a64
;
188 #elif defined(__alpha__)
189 s
->info
.print_insn
= print_insn_alpha
;
190 #elif defined(__sparc__)
191 s
->info
.print_insn
= print_insn_sparc
;
192 s
->info
.mach
= bfd_mach_sparc_v9b
;
193 #elif defined(__arm__)
194 /* TCG only generates code for arm mode. */
195 s
->info
.print_insn
= print_insn_arm
;
196 s
->info
.cap_arch
= CS_ARCH_ARM
;
197 #elif defined(__MIPSEB__)
198 s
->info
.print_insn
= print_insn_big_mips
;
199 #elif defined(__MIPSEL__)
200 s
->info
.print_insn
= print_insn_little_mips
;
201 #elif defined(__m68k__)
202 s
->info
.print_insn
= print_insn_m68k
;
203 #elif defined(__s390__)
204 s
->info
.print_insn
= print_insn_s390
;
205 s
->info
.cap_arch
= CS_ARCH_SYSZ
;
206 s
->info
.cap_insn_unit
= 2;
207 s
->info
.cap_insn_split
= 6;
208 #elif defined(__hppa__)
209 s
->info
.print_insn
= print_insn_hppa
;
213 /* Disassemble this for me please... (debugging). */
214 void target_disas(FILE *out
, CPUState
*cpu
, target_ulong code
,
221 initialize_debug_target(&s
, cpu
);
222 s
.info
.fprintf_func
= fprintf
;
224 s
.info
.buffer_vma
= code
;
225 s
.info
.buffer_length
= size
;
227 if (s
.info
.cap_arch
>= 0 && cap_disas_target(&s
.info
, code
, size
)) {
231 if (s
.info
.print_insn
== NULL
) {
232 s
.info
.print_insn
= print_insn_od_target
;
235 for (pc
= code
; size
> 0; pc
+= count
, size
-= count
) {
236 fprintf(out
, "0x" TARGET_FMT_lx
": ", pc
);
237 count
= s
.info
.print_insn(pc
, &s
.info
);
243 "Disassembler disagrees with translator over instruction "
245 "Please report this to qemu-devel@nongnu.org\n");
251 static int plugin_printf(FILE *stream
, const char *fmt
, ...)
253 /* We abuse the FILE parameter to pass a GString. */
254 GString
*s
= (GString
*)stream
;
255 int initial_len
= s
->len
;
259 g_string_append_vprintf(s
, fmt
, va
);
262 return s
->len
- initial_len
;
265 static void plugin_print_address(bfd_vma addr
, struct disassemble_info
*info
)
272 * We should only be dissembling one instruction at a time here. If
273 * there is left over it usually indicates the front end has read more
274 * bytes than it needed.
276 char *plugin_disas(CPUState
*cpu
, uint64_t addr
, size_t size
)
279 GString
*ds
= g_string_new(NULL
);
281 initialize_debug_target(&s
, cpu
);
282 s
.info
.fprintf_func
= plugin_printf
;
283 s
.info
.stream
= (FILE *)ds
; /* abuse this slot */
284 s
.info
.buffer_vma
= addr
;
285 s
.info
.buffer_length
= size
;
286 s
.info
.print_address_func
= plugin_print_address
;
288 if (s
.info
.cap_arch
>= 0 && cap_disas_plugin(&s
.info
, addr
, size
)) {
290 } else if (s
.info
.print_insn
) {
291 s
.info
.print_insn(addr
, &s
.info
);
293 ; /* cannot disassemble -- return empty string */
296 /* Return the buffer, freeing the GString container. */
297 return g_string_free(ds
, false);
300 /* Disassemble this for me please... (debugging). */
301 void disas(FILE *out
, const void *code
, unsigned long size
)
307 initialize_debug_host(&s
);
308 s
.info
.fprintf_func
= fprintf
;
310 s
.info
.buffer
= code
;
311 s
.info
.buffer_vma
= (uintptr_t)code
;
312 s
.info
.buffer_length
= size
;
314 if (s
.info
.cap_arch
>= 0 && cap_disas_host(&s
.info
, code
, size
)) {
318 if (s
.info
.print_insn
== NULL
) {
319 s
.info
.print_insn
= print_insn_od_host
;
321 for (pc
= (uintptr_t)code
; size
> 0; pc
+= count
, size
-= count
) {
322 fprintf(out
, "0x%08" PRIxPTR
": ", pc
);
323 count
= s
.info
.print_insn(pc
, &s
.info
);
332 /* Look up symbol for debugging purpose. Returns "" if unknown. */
333 const char *lookup_symbol(target_ulong orig_addr
)
335 const char *symbol
= "";
338 for (s
= syminfos
; s
; s
= s
->next
) {
339 symbol
= s
->lookup_symbol(s
, orig_addr
);
340 if (symbol
[0] != '\0') {
348 #if !defined(CONFIG_USER_ONLY)
350 #include "monitor/monitor.h"
353 physical_read_memory(bfd_vma memaddr
, bfd_byte
*myaddr
, int length
,
354 struct disassemble_info
*info
)
356 CPUDebug
*s
= container_of(info
, CPUDebug
, info
);
359 res
= address_space_read(s
->cpu
->as
, memaddr
, MEMTXATTRS_UNSPECIFIED
,
361 return res
== MEMTX_OK
? 0 : EIO
;
364 /* Disassembler for the monitor. */
365 void monitor_disas(Monitor
*mon
, CPUState
*cpu
,
366 target_ulong pc
, int nb_insn
, int is_physical
)
371 initialize_debug_target(&s
, cpu
);
372 s
.info
.fprintf_func
= qemu_fprintf
;
374 s
.info
.read_memory_func
= physical_read_memory
;
376 s
.info
.buffer_vma
= pc
;
378 if (s
.info
.cap_arch
>= 0 && cap_disas_monitor(&s
.info
, pc
, nb_insn
)) {
382 if (!s
.info
.print_insn
) {
383 monitor_printf(mon
, "0x" TARGET_FMT_lx
384 ": Asm output not supported on this arch\n", pc
);
388 for(i
= 0; i
< nb_insn
; i
++) {
389 monitor_printf(mon
, "0x" TARGET_FMT_lx
": ", pc
);
390 count
= s
.info
.print_insn(pc
, &s
.info
);
391 monitor_printf(mon
, "\n");