[qemu.git] / target-i386 / bpt_helper.c

/*
 *  i386 breakpoint helpers
 *
 *  Copyright (c) 2003 Fabrice Bellard
 *
 * This library is free software; you can redistribute it and/or
 * modify it under the terms of the GNU Lesser General Public
 * License as published by the Free Software Foundation; either
 * version 2 of the License, or (at your option) any later version.
 *
 * This library is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
 * Lesser General Public License for more details.
 *
 * You should have received a copy of the GNU Lesser General Public
 * License along with this library; if not, see <http://www.gnu.org/licenses/>.
 */

#include "cpu.h"
#include "exec/helper-proto.h"


#ifndef CONFIG_USER_ONLY
static inline bool hw_local_breakpoint_enabled(unsigned long dr7, int index)
{
    return (dr7 >> (index * 2)) & 1;
}

static inline bool hw_global_breakpoint_enabled(unsigned long dr7, int index)
{
    return (dr7 >> (index * 2)) & 2;

}
static inline bool hw_breakpoint_enabled(unsigned long dr7, int index)
{
    return hw_global_breakpoint_enabled(dr7, index) ||
           hw_local_breakpoint_enabled(dr7, index);
}

static inline int hw_breakpoint_type(unsigned long dr7, int index)
{
    return (dr7 >> (DR7_TYPE_SHIFT + (index * 4))) & 3;
}

static inline int hw_breakpoint_len(unsigned long dr7, int index)
{
    int len = ((dr7 >> (DR7_LEN_SHIFT + (index * 4))) & 3);
    return (len == 2) ? 8 : len + 1;
}

static int hw_breakpoint_insert(CPUX86State *env, int index)
{
    CPUState *cs = CPU(x86_env_get_cpu(env));
    target_ulong dr7 = env->dr[7];
    target_ulong drN = env->dr[index];
    int err = 0;

    switch (hw_breakpoint_type(dr7, index)) {
    case DR7_TYPE_BP_INST:
        if (hw_breakpoint_enabled(dr7, index)) {
            err = cpu_breakpoint_insert(cs, drN, BP_CPU,
                                        &env->cpu_breakpoint[index]);
        }
        break;

    case DR7_TYPE_IO_RW:
        /* Notice when we should enable calls to bpt_io.  */
        return hw_breakpoint_enabled(env->dr[7], index)
               ? HF_IOBPT_MASK : 0;

    case DR7_TYPE_DATA_WR:
        if (hw_breakpoint_enabled(dr7, index)) {
            err = cpu_watchpoint_insert(cs, drN,
                                        hw_breakpoint_len(dr7, index),
                                        BP_CPU | BP_MEM_WRITE,
                                        &env->cpu_watchpoint[index]);
        }
        break;

    case DR7_TYPE_DATA_RW:
        if (hw_breakpoint_enabled(dr7, index)) {
            err = cpu_watchpoint_insert(cs, drN,
                                        hw_breakpoint_len(dr7, index),
                                        BP_CPU | BP_MEM_ACCESS,
                                        &env->cpu_watchpoint[index]);
        }
        break;
    }
    if (err) {
        env->cpu_breakpoint[index] = NULL;
    }
    return 0;
}

static void hw_breakpoint_remove(CPUX86State *env, int index)
{
    CPUState *cs = CPU(x86_env_get_cpu(env));

    switch (hw_breakpoint_type(env->dr[7], index)) {
    case DR7_TYPE_BP_INST:
        if (env->cpu_breakpoint[index]) {
            cpu_breakpoint_remove_by_ref(cs, env->cpu_breakpoint[index]);
            env->cpu_breakpoint[index] = NULL;
        }
        break;

    case DR7_TYPE_DATA_WR:
    case DR7_TYPE_DATA_RW:
        if (env->cpu_breakpoint[index]) {
            cpu_watchpoint_remove_by_ref(cs, env->cpu_watchpoint[index]);
            env->cpu_breakpoint[index] = NULL;
        }
        break;

    case DR7_TYPE_IO_RW:
        /* HF_IOBPT_MASK cleared elsewhere.  */
        break;
    }
}

void cpu_x86_update_dr7(CPUX86State *env, uint32_t new_dr7)
{
    target_ulong old_dr7 = env->dr[7];
    int iobpt = 0;
    int i;

    new_dr7 |= DR7_FIXED_1;

    /* If nothing is changing except the global/local enable bits,
       then we can make the change more efficient.  */
    if (((old_dr7 ^ new_dr7) & ~0xff) == 0) {
        /* Fold the global and local enable bits together into the
           global fields, then xor to show which registers have
           changed collective enable state.  */
        int mod = ((old_dr7 | old_dr7 * 2) ^ (new_dr7 | new_dr7 * 2)) & 0xff;

        for (i = 0; i < DR7_MAX_BP; i++) {
            if ((mod & (2 << i * 2)) && !hw_breakpoint_enabled(new_dr7, i)) {
                hw_breakpoint_remove(env, i);
            }
        }
        env->dr[7] = new_dr7;
        for (i = 0; i < DR7_MAX_BP; i++) {
            if (mod & (2 << i * 2) && hw_breakpoint_enabled(new_dr7, i)) {
                iobpt |= hw_breakpoint_insert(env, i);
            } else if (hw_breakpoint_type(new_dr7, i) == DR7_TYPE_IO_RW
                       && hw_breakpoint_enabled(new_dr7, i)) {
                iobpt |= HF_IOBPT_MASK;
            }
        }
    } else {
        for (i = 0; i < DR7_MAX_BP; i++) {
            hw_breakpoint_remove(env, i);
        }
        env->dr[7] = new_dr7;
        for (i = 0; i < DR7_MAX_BP; i++) {
            iobpt |= hw_breakpoint_insert(env, i);
        }
    }

    env->hflags = (env->hflags & ~HF_IOBPT_MASK) | iobpt;
}

static bool check_hw_breakpoints(CPUX86State *env, bool force_dr6_update)
{
    target_ulong dr6;
    int reg;
    bool hit_enabled = false;

    dr6 = env->dr[6] & ~0xf;
    for (reg = 0; reg < DR7_MAX_BP; reg++) {
        bool bp_match = false;
        bool wp_match = false;

        switch (hw_breakpoint_type(env->dr[7], reg)) {
        case DR7_TYPE_BP_INST:
            if (env->dr[reg] == env->eip) {
                bp_match = true;
            }
            break;
        case DR7_TYPE_DATA_WR:
        case DR7_TYPE_DATA_RW:
            if (env->cpu_watchpoint[reg] &&
                env->cpu_watchpoint[reg]->flags & BP_WATCHPOINT_HIT) {
                wp_match = true;
            }
            break;
        case DR7_TYPE_IO_RW:
            break;
        }
        if (bp_match || wp_match) {
            dr6 |= 1 << reg;
            if (hw_breakpoint_enabled(env->dr[7], reg)) {
                hit_enabled = true;
            }
        }
    }

    if (hit_enabled || force_dr6_update) {
        env->dr[6] = dr6;
    }

    return hit_enabled;
}

void breakpoint_handler(CPUState *cs)
{
    X86CPU *cpu = X86_CPU(cs);
    CPUX86State *env = &cpu->env;
    CPUBreakpoint *bp;

    if (cs->watchpoint_hit) {
        if (cs->watchpoint_hit->flags & BP_CPU) {
            cs->watchpoint_hit = NULL;
            if (check_hw_breakpoints(env, false)) {
                raise_exception(env, EXCP01_DB);
            } else {
                cpu_resume_from_signal(cs, NULL);
            }
        }
    } else {
        QTAILQ_FOREACH(bp, &cs->breakpoints, entry) {
            if (bp->pc == env->eip) {
                if (bp->flags & BP_CPU) {
                    check_hw_breakpoints(env, true);
                    raise_exception(env, EXCP01_DB);
                }
                break;
            }
        }
    }
}
#endif

void helper_single_step(CPUX86State *env)
{
#ifndef CONFIG_USER_ONLY
    check_hw_breakpoints(env, true);
    env->dr[6] |= DR6_BS;
#endif
    raise_exception(env, EXCP01_DB);
}

void helper_set_dr(CPUX86State *env, int reg, target_ulong t0)
{
#ifndef CONFIG_USER_ONLY
    switch (reg) {
    case 0: case 1: case 2: case 3:
        if (hw_breakpoint_enabled(env->dr[7], reg)
            && hw_breakpoint_type(env->dr[7], reg) != DR7_TYPE_IO_RW) {
            hw_breakpoint_remove(env, reg);
            env->dr[reg] = t0;
            hw_breakpoint_insert(env, reg);
        } else {
            env->dr[reg] = t0;
        }
        return;
    case 4:
        if (env->cr[4] & CR4_DE_MASK) {
            break;
        }
        /* fallthru */
    case 6:
        env->dr[6] = t0 | DR6_FIXED_1;
        return;
    case 5:
        if (env->cr[4] & CR4_DE_MASK) {
            break;
        }
        /* fallthru */
    case 7:
        cpu_x86_update_dr7(env, t0);
        return;
    }
    raise_exception_err_ra(env, EXCP06_ILLOP, 0, GETPC());
#endif
}

target_ulong helper_get_dr(CPUX86State *env, int reg)
{
    switch (reg) {
    case 0: case 1: case 2: case 3: case 6: case 7:
        return env->dr[reg];
    case 4:
        if (env->cr[4] & CR4_DE_MASK) {
            break;
        } else {
            return env->dr[6];
        }
    case 5:
        if (env->cr[4] & CR4_DE_MASK) {
            break;
        } else {
            return env->dr[7];
        }
    }
    raise_exception_err_ra(env, EXCP06_ILLOP, 0, GETPC());
}

/* Check if Port I/O is trapped by a breakpoint.  */
void helper_bpt_io(CPUX86State *env, uint32_t port,
                   uint32_t size, target_ulong next_eip)
{
#ifndef CONFIG_USER_ONLY
    target_ulong dr7 = env->dr[7];
    int i, hit = 0;

    for (i = 0; i < DR7_MAX_BP; ++i) {
        if (hw_breakpoint_type(dr7, i) == DR7_TYPE_IO_RW
            && hw_breakpoint_enabled(dr7, i)) {
            int bpt_len = hw_breakpoint_len(dr7, i);
            if (port + size - 1 >= env->dr[i]
                && port <= env->dr[i] + bpt_len - 1) {
                hit |= 1 << i;
            }
        }
    }

    if (hit) {
        env->dr[6] = (env->dr[6] & ~0xf) | hit;
        env->eip = next_eip;
        raise_exception(env, EXCP01_DB);
    }
#endif
}
Commit	Line	Data
ba4b5c65 RH	1	/*
	2	* i386 breakpoint helpers
	3	*
	4	* Copyright (c) 2003 Fabrice Bellard
	5	*
	6	* This library is free software; you can redistribute it and/or
	7	* modify it under the terms of the GNU Lesser General Public
	8	* License as published by the Free Software Foundation; either
	9	* version 2 of the License, or (at your option) any later version.
	10	*
	11	* This library is distributed in the hope that it will be useful,
	12	* but WITHOUT ANY WARRANTY; without even the implied warranty of
	13	* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
	14	* Lesser General Public License for more details.
	15	*
	16	* You should have received a copy of the GNU Lesser General Public
	17	* License along with this library; if not, see <http://www.gnu.org/licenses/>.
	18	*/
	19
	20	#include "cpu.h"
	21	#include "exec/helper-proto.h"
	22
	23
93d00d0f	24	#ifndef CONFIG_USER_ONLY
696ad9e4 RH	25	static inline bool hw_local_breakpoint_enabled(unsigned long dr7, int index)
	26	{
	27	return (dr7 >> (index * 2)) & 1;
	28	}
	29
	30	static inline bool hw_global_breakpoint_enabled(unsigned long dr7, int index)
	31	{
	32	return (dr7 >> (index * 2)) & 2;
	33
	34	}
	35	static inline bool hw_breakpoint_enabled(unsigned long dr7, int index)
	36	{
	37	return hw_global_breakpoint_enabled(dr7, index) \|\|
	38	hw_local_breakpoint_enabled(dr7, index);
	39	}
	40
	41	static inline int hw_breakpoint_type(unsigned long dr7, int index)
	42	{
	43	return (dr7 >> (DR7_TYPE_SHIFT + (index * 4))) & 3;
	44	}
	45
	46	static inline int hw_breakpoint_len(unsigned long dr7, int index)
	47	{
	48	int len = ((dr7 >> (DR7_LEN_SHIFT + (index * 4))) & 3);
	49	return (len == 2) ? 8 : len + 1;
	50	}
	51
5223a942	52	static int hw_breakpoint_insert(CPUX86State *env, int index)
ba4b5c65 RH	53	{
ba4b5c65 RH	54	CPUState *cs = CPU(x86_env_get_cpu(env));
5223a942 EH	55	target_ulong dr7 = env->dr[7];
	56	target_ulong drN = env->dr[index];
	57	int err = 0;
ba4b5c65	58
5223a942	59	switch (hw_breakpoint_type(dr7, index)) {
ba4b5c65	60	case DR7_TYPE_BP_INST:
5223a942 EH	61	if (hw_breakpoint_enabled(dr7, index)) {
5223a942 EH	62	err = cpu_breakpoint_insert(cs, drN, BP_CPU,
ba4b5c65 RH	63	&env->cpu_breakpoint[index]);
	64	}
	65	break;
5223a942	66
ba4b5c65	67	case DR7_TYPE_IO_RW:
5223a942 EH	68	/* Notice when we should enable calls to bpt_io. */
	69	return hw_breakpoint_enabled(env->dr[7], index)
	70	? HF_IOBPT_MASK : 0;
	71
	72	case DR7_TYPE_DATA_WR:
	73	if (hw_breakpoint_enabled(dr7, index)) {
	74	err = cpu_watchpoint_insert(cs, drN,
	75	hw_breakpoint_len(dr7, index),
	76	BP_CPU \| BP_MEM_WRITE,
	77	&env->cpu_watchpoint[index]);
	78	}
ba4b5c65	79	break;
5223a942	80
ba4b5c65	81	case DR7_TYPE_DATA_RW:
5223a942 EH	82	if (hw_breakpoint_enabled(dr7, index)) {
	83	err = cpu_watchpoint_insert(cs, drN,
	84	hw_breakpoint_len(dr7, index),
	85	BP_CPU \| BP_MEM_ACCESS,
	86	&env->cpu_watchpoint[index]);
	87	}
ba4b5c65 RH	88	break;
ba4b5c65 RH	89	}
ba4b5c65 RH	90	if (err) {
	91	env->cpu_breakpoint[index] = NULL;
	92	}
5223a942	93	return 0;
ba4b5c65 RH	94	}
ba4b5c65 RH	95
93d00d0f	96	static void hw_breakpoint_remove(CPUX86State *env, int index)
ba4b5c65	97	{
5223a942	98	CPUState *cs = CPU(x86_env_get_cpu(env));
ba4b5c65	99
ba4b5c65 RH	100	switch (hw_breakpoint_type(env->dr[7], index)) {
ba4b5c65 RH	101	case DR7_TYPE_BP_INST:
5223a942	102	if (env->cpu_breakpoint[index]) {
ba4b5c65	103	cpu_breakpoint_remove_by_ref(cs, env->cpu_breakpoint[index]);
5223a942	104	env->cpu_breakpoint[index] = NULL;
ba4b5c65 RH	105	}
ba4b5c65 RH	106	break;
5223a942	107
ba4b5c65 RH	108	case DR7_TYPE_DATA_WR:
ba4b5c65 RH	109	case DR7_TYPE_DATA_RW:
5223a942 EH	110	if (env->cpu_breakpoint[index]) {
	111	cpu_watchpoint_remove_by_ref(cs, env->cpu_watchpoint[index]);
	112	env->cpu_breakpoint[index] = NULL;
	113	}
ba4b5c65	114	break;
5223a942	115
ba4b5c65	116	case DR7_TYPE_IO_RW:
5223a942	117	/* HF_IOBPT_MASK cleared elsewhere. */
ba4b5c65 RH	118	break;
	119	}
	120	}
	121
93d00d0f RH	122	void cpu_x86_update_dr7(CPUX86State *env, uint32_t new_dr7)
93d00d0f RH	123	{
36eb6e09	124	target_ulong old_dr7 = env->dr[7];
5223a942	125	int iobpt = 0;
93d00d0f RH	126	int i;
93d00d0f RH	127
9055330f EH	128	new_dr7 \|= DR7_FIXED_1;
9055330f EH	129
36eb6e09 RH	130	/* If nothing is changing except the global/local enable bits,
	131	then we can make the change more efficient. */
	132	if (((old_dr7 ^ new_dr7) & ~0xff) == 0) {
	133	/* Fold the global and local enable bits together into the
	134	global fields, then xor to show which registers have
	135	changed collective enable state. */
	136	int mod = ((old_dr7 \| old_dr7 * 2) ^ (new_dr7 \| new_dr7 * 2)) & 0xff;
	137
	138	for (i = 0; i < DR7_MAX_BP; i++) {
	139	if ((mod & (2 << i * 2)) && !hw_breakpoint_enabled(new_dr7, i)) {
	140	hw_breakpoint_remove(env, i);
	141	}
	142	}
	143	env->dr[7] = new_dr7;
	144	for (i = 0; i < DR7_MAX_BP; i++) {
	145	if (mod & (2 << i * 2) && hw_breakpoint_enabled(new_dr7, i)) {
5223a942 EH	146	iobpt \|= hw_breakpoint_insert(env, i);
	147	} else if (hw_breakpoint_type(new_dr7, i) == DR7_TYPE_IO_RW
	148	&& hw_breakpoint_enabled(new_dr7, i)) {
	149	iobpt \|= HF_IOBPT_MASK;
36eb6e09 RH	150	}
	151	}
	152	} else {
	153	for (i = 0; i < DR7_MAX_BP; i++) {
	154	hw_breakpoint_remove(env, i);
	155	}
	156	env->dr[7] = new_dr7;
	157	for (i = 0; i < DR7_MAX_BP; i++) {
5223a942	158	iobpt \|= hw_breakpoint_insert(env, i);
36eb6e09	159	}
93d00d0f	160	}
5223a942 EH	161
5223a942 EH	162	env->hflags = (env->hflags & ~HF_IOBPT_MASK) \| iobpt;
93d00d0f	163	}
93d00d0f	164
dd941cdc	165	static bool check_hw_breakpoints(CPUX86State *env, bool force_dr6_update)
ba4b5c65 RH	166	{
	167	target_ulong dr6;
	168	int reg;
	169	bool hit_enabled = false;
	170
	171	dr6 = env->dr[6] & ~0xf;
	172	for (reg = 0; reg < DR7_MAX_BP; reg++) {
	173	bool bp_match = false;
	174	bool wp_match = false;
	175
	176	switch (hw_breakpoint_type(env->dr[7], reg)) {
	177	case DR7_TYPE_BP_INST:
	178	if (env->dr[reg] == env->eip) {
	179	bp_match = true;
	180	}
	181	break;
	182	case DR7_TYPE_DATA_WR:
	183	case DR7_TYPE_DATA_RW:
	184	if (env->cpu_watchpoint[reg] &&
	185	env->cpu_watchpoint[reg]->flags & BP_WATCHPOINT_HIT) {
	186	wp_match = true;
	187	}
	188	break;
	189	case DR7_TYPE_IO_RW:
	190	break;
	191	}
	192	if (bp_match \|\| wp_match) {
	193	dr6 \|= 1 << reg;
	194	if (hw_breakpoint_enabled(env->dr[7], reg)) {
	195	hit_enabled = true;
	196	}
	197	}
	198	}
	199
	200	if (hit_enabled \|\| force_dr6_update) {
	201	env->dr[6] = dr6;
	202	}
	203
	204	return hit_enabled;
	205	}
	206
	207	void breakpoint_handler(CPUState *cs)
	208	{
	209	X86CPU *cpu = X86_CPU(cs);
	210	CPUX86State *env = &cpu->env;
	211	CPUBreakpoint *bp;
	212
	213	if (cs->watchpoint_hit) {
	214	if (cs->watchpoint_hit->flags & BP_CPU) {
	215	cs->watchpoint_hit = NULL;
	216	if (check_hw_breakpoints(env, false)) {
	217	raise_exception(env, EXCP01_DB);
	218	} else {
	219	cpu_resume_from_signal(cs, NULL);
	220	}
	221	}
	222	} else {
	223	QTAILQ_FOREACH(bp, &cs->breakpoints, entry) {
	224	if (bp->pc == env->eip) {
	225	if (bp->flags & BP_CPU) {
	226	check_hw_breakpoints(env, true);
	227	raise_exception(env, EXCP01_DB);
	228	}
	229	break;
230	}
231	}
232	}
233	}
696ad9e4	234	#endif
ba4b5c65 RH	235
	236	void helper_single_step(CPUX86State *env)
	237	{
	238	#ifndef CONFIG_USER_ONLY
	239	check_hw_breakpoints(env, true);
	240	env->dr[6] \|= DR6_BS;
	241	#endif
	242	raise_exception(env, EXCP01_DB);
	243	}
	244
d0052339	245	void helper_set_dr(CPUX86State *env, int reg, target_ulong t0)
ba4b5c65 RH	246	{
ba4b5c65 RH	247	#ifndef CONFIG_USER_ONLY
d0052339 RH	248	switch (reg) {
d0052339 RH	249	case 0: case 1: case 2: case 3:
7525b550 RH	250	if (hw_breakpoint_enabled(env->dr[7], reg)
	251	&& hw_breakpoint_type(env->dr[7], reg) != DR7_TYPE_IO_RW) {
	252	hw_breakpoint_remove(env, reg);
	253	env->dr[reg] = t0;
	254	hw_breakpoint_insert(env, reg);
	255	} else {
	256	env->dr[reg] = t0;
	257	}
d0052339 RH	258	return;
	259	case 4:
	260	if (env->cr[4] & CR4_DE_MASK) {
	261	break;
	262	}
	263	/* fallthru */
	264	case 6:
462f8ed1	265	env->dr[6] = t0 \| DR6_FIXED_1;
d0052339 RH	266	return;
	267	case 5:
	268	if (env->cr[4] & CR4_DE_MASK) {
	269	break;
	270	}
	271	/* fallthru */
	272	case 7:
93d00d0f	273	cpu_x86_update_dr7(env, t0);
d0052339	274	return;
ba4b5c65	275	}
d0052339	276	raise_exception_err_ra(env, EXCP06_ILLOP, 0, GETPC());
ba4b5c65 RH	277	#endif
ba4b5c65 RH	278	}
5223a942	279
d0052339 RH	280	target_ulong helper_get_dr(CPUX86State *env, int reg)
	281	{
	282	switch (reg) {
	283	case 0: case 1: case 2: case 3: case 6: case 7:
	284	return env->dr[reg];
	285	case 4:
	286	if (env->cr[4] & CR4_DE_MASK) {
	287	break;
	288	} else {
	289	return env->dr[6];
	290	}
	291	case 5:
	292	if (env->cr[4] & CR4_DE_MASK) {
	293	break;
	294	} else {
	295	return env->dr[7];
	296	}
	297	}
	298	raise_exception_err_ra(env, EXCP06_ILLOP, 0, GETPC());
	299	}
	300
5223a942 EH	301	/* Check if Port I/O is trapped by a breakpoint. */
	302	void helper_bpt_io(CPUX86State *env, uint32_t port,
	303	uint32_t size, target_ulong next_eip)
	304	{
	305	#ifndef CONFIG_USER_ONLY
	306	target_ulong dr7 = env->dr[7];
	307	int i, hit = 0;
	308
	309	for (i = 0; i < DR7_MAX_BP; ++i) {
	310	if (hw_breakpoint_type(dr7, i) == DR7_TYPE_IO_RW
	311	&& hw_breakpoint_enabled(dr7, i)) {
	312	int bpt_len = hw_breakpoint_len(dr7, i);
	313	if (port + size - 1 >= env->dr[i]
	314	&& port <= env->dr[i] + bpt_len - 1) {
	315	hit \|= 1 << i;
	316	}
	317	}
	318	}
	319
	320	if (hit) {
	321	env->dr[6] = (env->dr[6] & ~0xf) \| hit;
	322	env->eip = next_eip;
	323	raise_exception(env, EXCP01_DB);
	324	}
	325	#endif
	326	}