4 * Copyright (c) 2003-2004 Fabrice Bellard
6 * Permission is hereby granted, free of charge, to any person obtaining a copy
7 * of this software and associated documentation files (the "Software"), to deal
8 * in the Software without restriction, including without limitation the rights
9 * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
10 * copies of the Software, and to permit persons to whom the Software is
11 * furnished to do so, subject to the following conditions:
13 * The above copyright notice and this permission notice shall be included in
14 * all copies or substantial portions of the Software.
16 * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
17 * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
18 * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL
19 * THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
20 * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
21 * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
25 #include "qemu/osdep.h"
29 #include "monitor/qdev.h"
31 #include "hw/pci/pci.h"
32 #include "sysemu/watchdog.h"
33 #include "hw/loader.h"
34 #include "exec/gdbstub.h"
36 #include "net/slirp.h"
37 #include "chardev/char-fe.h"
38 #include "chardev/char-io.h"
39 #include "chardev/char-mux.h"
40 #include "ui/qemu-spice.h"
41 #include "sysemu/numa.h"
42 #include "monitor/monitor.h"
43 #include "qemu/config-file.h"
44 #include "qemu/readline.h"
45 #include "ui/console.h"
47 #include "sysemu/block-backend.h"
48 #include "audio/audio.h"
49 #include "disas/disas.h"
50 #include "sysemu/balloon.h"
51 #include "qemu/timer.h"
52 #include "sysemu/hw_accel.h"
54 #include "sysemu/tpm.h"
55 #include "qapi/qmp/qdict.h"
56 #include "qapi/qmp/qerror.h"
57 #include "qapi/qmp/qnum.h"
58 #include "qapi/qmp/qstring.h"
59 #include "qapi/qmp/qjson.h"
60 #include "qapi/qmp/json-streamer.h"
61 #include "qapi/qmp/json-parser.h"
62 #include "qapi/qmp/qlist.h"
63 #include "qom/object_interfaces.h"
64 #include "trace-root.h"
65 #include "trace/control.h"
66 #include "monitor/hmp-target.h"
67 #ifdef CONFIG_TRACE_SIMPLE
68 #include "trace/simple.h"
70 #include "exec/memory.h"
71 #include "exec/exec-all.h"
73 #include "qemu/option.h"
75 #include "qemu/thread.h"
76 #include "block/qapi.h"
77 #include "qapi/qapi-commands.h"
78 #include "qapi/qapi-events.h"
79 #include "qapi/error.h"
80 #include "qapi/qmp-event.h"
81 #include "qapi/qapi-introspect.h"
82 #include "sysemu/qtest.h"
83 #include "sysemu/cpus.h"
84 #include "sysemu/iothread.h"
85 #include "qemu/cutils.h"
87 #if defined(TARGET_S390X)
88 #include "hw/s390x/storage-keys.h"
89 #include "hw/s390x/storage-attributes.h"
96 * 'B' block device name
97 * 's' string (accept optional quote)
98 * 'S' it just appends the rest of the string (accept optional quote)
99 * 'O' option string of the form NAME=VALUE,...
100 * parsed according to QemuOptsList given by its name
101 * Example: 'device:O' uses qemu_device_opts.
102 * Restriction: only lists with empty desc are supported
103 * TODO lift the restriction
105 * 'l' target long (32 or 64 bit)
106 * 'M' Non-negative target long (32 or 64 bit), in user mode the
107 * value is multiplied by 2^20 (think Mebibyte)
108 * 'o' octets (aka bytes)
109 * user mode accepts an optional E, e, P, p, T, t, G, g, M, m,
110 * K, k suffix, which multiplies the value by 2^60 for suffixes E
111 * and e, 2^50 for suffixes P and p, 2^40 for suffixes T and t,
112 * 2^30 for suffixes G and g, 2^20 for M and m, 2^10 for K and k
114 * user mode accepts an optional ms, us, ns suffix,
115 * which divides the value by 1e3, 1e6, 1e9, respectively
116 * '/' optional gdb-like print format (like "/10x")
118 * '?' optional type (for all types, except '/')
119 * '.' other form of optional type (for 'i' and 'l')
121 * user mode accepts "on" or "off"
122 * '-' optional parameter (eg. '-f')
126 typedef struct mon_cmd_t {
128 const char *args_type;
131 const char *flags; /* p=preconfig */
132 void (*cmd)(Monitor *mon, const QDict *qdict);
133 /* @sub_table is a list of 2nd level of commands. If it does not exist,
134 * cmd should be used. If it exists, sub_table[?].cmd should be
135 * used, and cmd of 1st level plays the role of help function.
137 struct mon_cmd_t *sub_table;
138 void (*command_completion)(ReadLineState *rs, int nb_args, const char *str);
141 /* file descriptors passed via SCM_RIGHTS */
142 typedef struct mon_fd_t mon_fd_t;
146 QLIST_ENTRY(mon_fd_t) next;
149 /* file descriptor associated with a file descriptor set */
150 typedef struct MonFdsetFd MonFdsetFd;
155 QLIST_ENTRY(MonFdsetFd) next;
158 /* file descriptor set containing fds passed via SCM_RIGHTS */
159 typedef struct MonFdset MonFdset;
162 QLIST_HEAD(, MonFdsetFd) fds;
163 QLIST_HEAD(, MonFdsetFd) dup_fds;
164 QLIST_ENTRY(MonFdset) next;
168 JSONMessageParser parser;
170 * When a client connects, we're in capabilities negotiation mode.
171 * When command qmp_capabilities succeeds, we go into command
174 QmpCommandList *commands;
175 bool qmp_caps[QMP_CAPABILITY__MAX];
177 * Protects qmp request/response queue. Please take monitor_lock
178 * first when used together.
180 QemuMutex qmp_queue_lock;
181 /* Input queue that holds all the parsed QMP requests */
182 GQueue *qmp_requests;
183 /* Output queue contains all the QMP responses in order */
184 GQueue *qmp_responses;
188 * To prevent flooding clients, events can be throttled. The
189 * throttling is calculated globally, rather than per-Monitor
192 typedef struct MonitorQAPIEventState {
193 QAPIEvent event; /* Throttling state for this event type and... */
194 QDict *data; /* ... data, see qapi_event_throttle_equal() */
195 QEMUTimer *timer; /* Timer for handling delayed events */
196 QDict *qdict; /* Delayed event (if any) */
197 } MonitorQAPIEventState;
200 int64_t rate; /* Minimum time (in ns) between two events */
201 } MonitorQAPIEventConf;
207 int suspend_cnt; /* Needs to be accessed atomically */
212 * State used only in the thread "owning" the monitor.
213 * If @use_io_thr, this is mon_global.mon_iothread.
214 * Else, it's the main thread.
215 * These members can be safely accessed without locks.
221 BlockCompletionFunc *password_completion_cb;
222 void *password_opaque;
223 mon_cmd_t *cmd_table;
224 QTAILQ_ENTRY(Monitor) entry;
227 * The per-monitor lock. We can't access guest memory when holding
233 * Fields that are protected by the per-monitor lock.
235 QLIST_HEAD(, mon_fd_t) fds;
238 /* Read under either BQL or mon_lock, written with BQL+mon_lock. */
242 /* Let's add monitor global variables to this struct. */
244 IOThread *mon_iothread;
245 /* Bottom half to dispatch the requests received from IO thread */
246 QEMUBH *qmp_dispatcher_bh;
247 /* Bottom half to deliver the responses back to clients */
248 QEMUBH *qmp_respond_bh;
252 /* Owner of the request */
254 /* "id" field of the request */
256 /* Request object to be handled */
259 * Whether we need to resume the monitor afterward. This flag is
260 * used to emulate the old QMP server behavior that the current
261 * command must be completed before execution of the next one.
265 typedef struct QMPRequest QMPRequest;
267 /* QMP checker flags */
268 #define QMP_ACCEPT_UNKNOWNS 1
270 /* Protects mon_list, monitor_qapi_event_state. */
271 static QemuMutex monitor_lock;
272 static GHashTable *monitor_qapi_event_state;
273 static QTAILQ_HEAD(mon_list, Monitor) mon_list;
275 /* Protects mon_fdsets */
276 static QemuMutex mon_fdsets_lock;
277 static QLIST_HEAD(mon_fdsets, MonFdset) mon_fdsets;
279 static int mon_refcount;
281 static mon_cmd_t mon_cmds[];
282 static mon_cmd_t info_cmds[];
284 QmpCommandList qmp_commands, qmp_cap_negotiation_commands;
288 static void monitor_command_cb(void *opaque, const char *cmdline,
289 void *readline_opaque);
292 * Is @mon a QMP monitor?
294 static inline bool monitor_is_qmp(const Monitor *mon)
296 return (mon->flags & MONITOR_USE_CONTROL);
300 * Whether @mon is using readline? Note: not all HMP monitors use
301 * readline, e.g., gdbserver has a non-interactive HMP monitor, so
302 * readline is not used there.
304 static inline bool monitor_uses_readline(const Monitor *mon)
306 return mon->flags & MONITOR_USE_READLINE;
309 static inline bool monitor_is_hmp_non_interactive(const Monitor *mon)
311 return !monitor_is_qmp(mon) && !monitor_uses_readline(mon);
315 * Return the clock to use for recording an event's time.
316 * Beware: result is invalid before configure_accelerator().
318 static inline QEMUClockType monitor_get_event_clock(void)
321 * This allows us to perform tests on the monitor queues to verify
322 * that the rate limits are enforced.
324 return qtest_enabled() ? QEMU_CLOCK_VIRTUAL : QEMU_CLOCK_REALTIME;
328 * Is the current monitor, if any, a QMP monitor?
330 bool monitor_cur_is_qmp(void)
332 return cur_mon && monitor_is_qmp(cur_mon);
335 void monitor_read_command(Monitor *mon, int show_prompt)
340 readline_start(mon->rs, "(qemu) ", 0, monitor_command_cb, NULL);
342 readline_show_prompt(mon->rs);
345 int monitor_read_password(Monitor *mon, ReadLineFunc *readline_func,
349 readline_start(mon->rs, "Password: ", 1, readline_func, opaque);
350 /* prompt is printed on return from the command handler */
353 monitor_printf(mon, "terminal does not support password prompting\n");
358 static void qmp_request_free(QMPRequest *req)
360 qobject_unref(req->id);
361 qobject_unref(req->req);
365 /* Must with the mon->qmp.qmp_queue_lock held */
366 static void monitor_qmp_cleanup_req_queue_locked(Monitor *mon)
368 while (!g_queue_is_empty(mon->qmp.qmp_requests)) {
369 qmp_request_free(g_queue_pop_head(mon->qmp.qmp_requests));
373 /* Must with the mon->qmp.qmp_queue_lock held */
374 static void monitor_qmp_cleanup_resp_queue_locked(Monitor *mon)
376 while (!g_queue_is_empty(mon->qmp.qmp_responses)) {
377 qobject_unref((QObject *)g_queue_pop_head(mon->qmp.qmp_responses));
381 static void monitor_qmp_cleanup_queues(Monitor *mon)
383 qemu_mutex_lock(&mon->qmp.qmp_queue_lock);
384 monitor_qmp_cleanup_req_queue_locked(mon);
385 monitor_qmp_cleanup_resp_queue_locked(mon);
386 qemu_mutex_unlock(&mon->qmp.qmp_queue_lock);
390 static void monitor_flush_locked(Monitor *mon);
392 static gboolean monitor_unblocked(GIOChannel *chan, GIOCondition cond,
395 Monitor *mon = opaque;
397 qemu_mutex_lock(&mon->mon_lock);
399 monitor_flush_locked(mon);
400 qemu_mutex_unlock(&mon->mon_lock);
404 /* Called with mon->mon_lock held. */
405 static void monitor_flush_locked(Monitor *mon)
411 if (mon->skip_flush) {
415 buf = qstring_get_str(mon->outbuf);
416 len = qstring_get_length(mon->outbuf);
418 if (len && !mon->mux_out) {
419 rc = qemu_chr_fe_write(&mon->chr, (const uint8_t *) buf, len);
420 if ((rc < 0 && errno != EAGAIN) || (rc == len)) {
421 /* all flushed or error */
422 qobject_unref(mon->outbuf);
423 mon->outbuf = qstring_new();
428 QString *tmp = qstring_from_str(buf + rc);
429 qobject_unref(mon->outbuf);
432 if (mon->out_watch == 0) {
434 qemu_chr_fe_add_watch(&mon->chr, G_IO_OUT | G_IO_HUP,
435 monitor_unblocked, mon);
440 void monitor_flush(Monitor *mon)
442 qemu_mutex_lock(&mon->mon_lock);
443 monitor_flush_locked(mon);
444 qemu_mutex_unlock(&mon->mon_lock);
447 /* flush at every end of line */
448 static void monitor_puts(Monitor *mon, const char *str)
452 qemu_mutex_lock(&mon->mon_lock);
458 qstring_append_chr(mon->outbuf, '\r');
460 qstring_append_chr(mon->outbuf, c);
462 monitor_flush_locked(mon);
465 qemu_mutex_unlock(&mon->mon_lock);
468 void monitor_vprintf(Monitor *mon, const char *fmt, va_list ap)
475 if (monitor_is_qmp(mon)) {
479 buf = g_strdup_vprintf(fmt, ap);
480 monitor_puts(mon, buf);
484 void monitor_printf(Monitor *mon, const char *fmt, ...)
488 monitor_vprintf(mon, fmt, ap);
492 int monitor_fprintf(FILE *stream, const char *fmt, ...)
496 monitor_vprintf((Monitor *)stream, fmt, ap);
501 static void monitor_json_emitter_raw(Monitor *mon,
506 json = mon->flags & MONITOR_USE_PRETTY ? qobject_to_json_pretty(data) :
507 qobject_to_json(data);
508 assert(json != NULL);
510 qstring_append_chr(json, '\n');
511 monitor_puts(mon, qstring_get_str(json));
516 static void monitor_json_emitter(Monitor *mon, QObject *data)
518 if (mon->use_io_thr) {
520 * If using IO thread, we need to queue the item so that IO
521 * thread will do the rest for us. Take refcount so that
522 * caller won't free the data (which will be finally freed in
525 qemu_mutex_lock(&mon->qmp.qmp_queue_lock);
526 g_queue_push_tail(mon->qmp.qmp_responses, qobject_ref(data));
527 qemu_mutex_unlock(&mon->qmp.qmp_queue_lock);
528 qemu_bh_schedule(mon_global.qmp_respond_bh);
531 * If not using monitor IO thread, then we are in main thread.
532 * Do the emission right away.
534 monitor_json_emitter_raw(mon, data);
542 typedef struct QMPResponse QMPResponse;
545 * Return one QMPResponse. The response is only valid if
546 * response.data is not NULL.
548 static QMPResponse monitor_qmp_response_pop_one(void)
551 QObject *data = NULL;
553 qemu_mutex_lock(&monitor_lock);
554 QTAILQ_FOREACH(mon, &mon_list, entry) {
555 qemu_mutex_lock(&mon->qmp.qmp_queue_lock);
556 data = g_queue_pop_head(mon->qmp.qmp_responses);
557 qemu_mutex_unlock(&mon->qmp.qmp_queue_lock);
562 qemu_mutex_unlock(&monitor_lock);
563 return (QMPResponse) { .mon = mon, .data = data };
566 static void monitor_qmp_bh_responder(void *opaque)
568 QMPResponse response;
571 response = monitor_qmp_response_pop_one();
572 if (!response.data) {
575 monitor_json_emitter_raw(response.mon, response.data);
576 qobject_unref(response.data);
580 static MonitorQAPIEventConf monitor_qapi_event_conf[QAPI_EVENT__MAX] = {
581 /* Limit guest-triggerable events to 1 per second */
582 [QAPI_EVENT_RTC_CHANGE] = { 1000 * SCALE_MS },
583 [QAPI_EVENT_WATCHDOG] = { 1000 * SCALE_MS },
584 [QAPI_EVENT_BALLOON_CHANGE] = { 1000 * SCALE_MS },
585 [QAPI_EVENT_QUORUM_REPORT_BAD] = { 1000 * SCALE_MS },
586 [QAPI_EVENT_QUORUM_FAILURE] = { 1000 * SCALE_MS },
587 [QAPI_EVENT_VSERPORT_CHANGE] = { 1000 * SCALE_MS },
591 * Emits the event to every monitor instance, @event is only used for trace
592 * Called with monitor_lock held.
594 static void monitor_qapi_event_emit(QAPIEvent event, QDict *qdict)
598 trace_monitor_protocol_event_emit(event, qdict);
599 QTAILQ_FOREACH(mon, &mon_list, entry) {
600 if (monitor_is_qmp(mon)
601 && mon->qmp.commands != &qmp_cap_negotiation_commands) {
602 monitor_json_emitter(mon, QOBJECT(qdict));
607 static void monitor_qapi_event_handler(void *opaque);
610 * Queue a new event for emission to Monitor instances,
611 * applying any rate limiting if required.
614 monitor_qapi_event_queue(QAPIEvent event, QDict *qdict, Error **errp)
616 MonitorQAPIEventConf *evconf;
617 MonitorQAPIEventState *evstate;
619 assert(event < QAPI_EVENT__MAX);
620 evconf = &monitor_qapi_event_conf[event];
621 trace_monitor_protocol_event_queue(event, qdict, evconf->rate);
623 qemu_mutex_lock(&monitor_lock);
626 /* Unthrottled event */
627 monitor_qapi_event_emit(event, qdict);
629 QDict *data = qobject_to(QDict, qdict_get(qdict, "data"));
630 MonitorQAPIEventState key = { .event = event, .data = data };
632 evstate = g_hash_table_lookup(monitor_qapi_event_state, &key);
633 assert(!evstate || timer_pending(evstate->timer));
637 * Timer is pending for (at least) evconf->rate ns after
638 * last send. Store event for sending when timer fires,
639 * replacing a prior stored event if any.
641 qobject_unref(evstate->qdict);
642 evstate->qdict = qobject_ref(qdict);
645 * Last send was (at least) evconf->rate ns ago.
646 * Send immediately, and arm the timer to call
647 * monitor_qapi_event_handler() in evconf->rate ns. Any
648 * events arriving before then will be delayed until then.
650 int64_t now = qemu_clock_get_ns(monitor_get_event_clock());
652 monitor_qapi_event_emit(event, qdict);
654 evstate = g_new(MonitorQAPIEventState, 1);
655 evstate->event = event;
656 evstate->data = qobject_ref(data);
657 evstate->qdict = NULL;
658 evstate->timer = timer_new_ns(monitor_get_event_clock(),
659 monitor_qapi_event_handler,
661 g_hash_table_add(monitor_qapi_event_state, evstate);
662 timer_mod_ns(evstate->timer, now + evconf->rate);
666 qemu_mutex_unlock(&monitor_lock);
670 * This function runs evconf->rate ns after sending a throttled
672 * If another event has since been stored, send it.
674 static void monitor_qapi_event_handler(void *opaque)
676 MonitorQAPIEventState *evstate = opaque;
677 MonitorQAPIEventConf *evconf = &monitor_qapi_event_conf[evstate->event];
679 trace_monitor_protocol_event_handler(evstate->event, evstate->qdict);
680 qemu_mutex_lock(&monitor_lock);
682 if (evstate->qdict) {
683 int64_t now = qemu_clock_get_ns(monitor_get_event_clock());
685 monitor_qapi_event_emit(evstate->event, evstate->qdict);
686 qobject_unref(evstate->qdict);
687 evstate->qdict = NULL;
688 timer_mod_ns(evstate->timer, now + evconf->rate);
690 g_hash_table_remove(monitor_qapi_event_state, evstate);
691 qobject_unref(evstate->data);
692 timer_free(evstate->timer);
696 qemu_mutex_unlock(&monitor_lock);
699 static unsigned int qapi_event_throttle_hash(const void *key)
701 const MonitorQAPIEventState *evstate = key;
702 unsigned int hash = evstate->event * 255;
704 if (evstate->event == QAPI_EVENT_VSERPORT_CHANGE) {
705 hash += g_str_hash(qdict_get_str(evstate->data, "id"));
708 if (evstate->event == QAPI_EVENT_QUORUM_REPORT_BAD) {
709 hash += g_str_hash(qdict_get_str(evstate->data, "node-name"));
715 static gboolean qapi_event_throttle_equal(const void *a, const void *b)
717 const MonitorQAPIEventState *eva = a;
718 const MonitorQAPIEventState *evb = b;
720 if (eva->event != evb->event) {
724 if (eva->event == QAPI_EVENT_VSERPORT_CHANGE) {
725 return !strcmp(qdict_get_str(eva->data, "id"),
726 qdict_get_str(evb->data, "id"));
729 if (eva->event == QAPI_EVENT_QUORUM_REPORT_BAD) {
730 return !strcmp(qdict_get_str(eva->data, "node-name"),
731 qdict_get_str(evb->data, "node-name"));
737 static void monitor_qapi_event_init(void)
739 monitor_qapi_event_state = g_hash_table_new(qapi_event_throttle_hash,
740 qapi_event_throttle_equal);
741 qmp_event_set_func_emit(monitor_qapi_event_queue);
744 static void handle_hmp_command(Monitor *mon, const char *cmdline);
746 static void monitor_data_init(Monitor *mon, bool skip_flush,
749 memset(mon, 0, sizeof(Monitor));
750 qemu_mutex_init(&mon->mon_lock);
751 qemu_mutex_init(&mon->qmp.qmp_queue_lock);
752 mon->outbuf = qstring_new();
753 /* Use *mon_cmds by default. */
754 mon->cmd_table = mon_cmds;
755 mon->skip_flush = skip_flush;
756 mon->use_io_thr = use_io_thr;
757 mon->qmp.qmp_requests = g_queue_new();
758 mon->qmp.qmp_responses = g_queue_new();
761 static void monitor_data_destroy(Monitor *mon)
763 g_free(mon->mon_cpu_path);
764 qemu_chr_fe_deinit(&mon->chr, false);
765 if (monitor_is_qmp(mon)) {
766 json_message_parser_destroy(&mon->qmp.parser);
768 readline_free(mon->rs);
769 qobject_unref(mon->outbuf);
770 qemu_mutex_destroy(&mon->mon_lock);
771 qemu_mutex_destroy(&mon->qmp.qmp_queue_lock);
772 monitor_qmp_cleanup_req_queue_locked(mon);
773 monitor_qmp_cleanup_resp_queue_locked(mon);
774 g_queue_free(mon->qmp.qmp_requests);
775 g_queue_free(mon->qmp.qmp_responses);
778 char *qmp_human_monitor_command(const char *command_line, bool has_cpu_index,
779 int64_t cpu_index, Error **errp)
782 Monitor *old_mon, hmp;
784 monitor_data_init(&hmp, true, false);
790 int ret = monitor_set_cpu(cpu_index);
793 error_setg(errp, QERR_INVALID_PARAMETER_VALUE, "cpu-index",
799 handle_hmp_command(&hmp, command_line);
802 qemu_mutex_lock(&hmp.mon_lock);
803 if (qstring_get_length(hmp.outbuf) > 0) {
804 output = g_strdup(qstring_get_str(hmp.outbuf));
806 output = g_strdup("");
808 qemu_mutex_unlock(&hmp.mon_lock);
811 monitor_data_destroy(&hmp);
815 static int compare_cmd(const char *name, const char *list)
817 const char *p, *pstart;
823 p = qemu_strchrnul(p, '|');
824 if ((p - pstart) == len && !memcmp(pstart, name, len))
833 static int get_str(char *buf, int buf_size, const char **pp)
841 while (qemu_isspace(*p)) {
852 while (*p != '\0' && *p != '\"') {
868 printf("unsupported escape code: '\\%c'\n", c);
871 if ((q - buf) < buf_size - 1) {
875 if ((q - buf) < buf_size - 1) {
882 printf("unterminated string\n");
887 while (*p != '\0' && !qemu_isspace(*p)) {
888 if ((q - buf) < buf_size - 1) {
901 static void free_cmdline_args(char **args, int nb_args)
905 assert(nb_args <= MAX_ARGS);
907 for (i = 0; i < nb_args; i++) {
914 * Parse the command line to get valid args.
915 * @cmdline: command line to be parsed.
916 * @pnb_args: location to store the number of args, must NOT be NULL.
917 * @args: location to store the args, which should be freed by caller, must
920 * Returns 0 on success, negative on failure.
922 * NOTE: this parser is an approximate form of the real command parser. Number
923 * of args have a limit of MAX_ARGS. If cmdline contains more, it will
924 * return with failure.
926 static int parse_cmdline(const char *cmdline,
927 int *pnb_args, char **args)
936 while (qemu_isspace(*p)) {
942 if (nb_args >= MAX_ARGS) {
945 ret = get_str(buf, sizeof(buf), &p);
949 args[nb_args] = g_strdup(buf);
956 free_cmdline_args(args, nb_args);
961 * Returns true if the command can be executed in preconfig mode
962 * i.e. it has the 'p' flag.
964 static bool cmd_can_preconfig(const mon_cmd_t *cmd)
970 return strchr(cmd->flags, 'p');
973 static void help_cmd_dump_one(Monitor *mon,
974 const mon_cmd_t *cmd,
980 if (runstate_check(RUN_STATE_PRECONFIG) && !cmd_can_preconfig(cmd)) {
984 for (i = 0; i < prefix_args_nb; i++) {
985 monitor_printf(mon, "%s ", prefix_args[i]);
987 monitor_printf(mon, "%s %s -- %s\n", cmd->name, cmd->params, cmd->help);
990 /* @args[@arg_index] is the valid command need to find in @cmds */
991 static void help_cmd_dump(Monitor *mon, const mon_cmd_t *cmds,
992 char **args, int nb_args, int arg_index)
994 const mon_cmd_t *cmd;
996 /* No valid arg need to compare with, dump all in *cmds */
997 if (arg_index >= nb_args) {
998 for (cmd = cmds; cmd->name != NULL; cmd++) {
999 help_cmd_dump_one(mon, cmd, args, arg_index);
1004 /* Find one entry to dump */
1005 for (cmd = cmds; cmd->name != NULL; cmd++) {
1006 if (compare_cmd(args[arg_index], cmd->name) &&
1007 ((!runstate_check(RUN_STATE_PRECONFIG) ||
1008 cmd_can_preconfig(cmd)))) {
1009 if (cmd->sub_table) {
1010 /* continue with next arg */
1011 help_cmd_dump(mon, cmd->sub_table,
1012 args, nb_args, arg_index + 1);
1014 help_cmd_dump_one(mon, cmd, args, arg_index);
1021 static void help_cmd(Monitor *mon, const char *name)
1023 char *args[MAX_ARGS];
1026 /* 1. parse user input */
1028 /* special case for log, directly dump and return */
1029 if (!strcmp(name, "log")) {
1030 const QEMULogItem *item;
1031 monitor_printf(mon, "Log items (comma separated):\n");
1032 monitor_printf(mon, "%-10s %s\n", "none", "remove all logs");
1033 for (item = qemu_log_items; item->mask != 0; item++) {
1034 monitor_printf(mon, "%-10s %s\n", item->name, item->help);
1039 if (parse_cmdline(name, &nb_args, args) < 0) {
1044 /* 2. dump the contents according to parsed args */
1045 help_cmd_dump(mon, mon->cmd_table, args, nb_args, 0);
1047 free_cmdline_args(args, nb_args);
1050 static void do_help_cmd(Monitor *mon, const QDict *qdict)
1052 help_cmd(mon, qdict_get_try_str(qdict, "name"));
1055 static void hmp_trace_event(Monitor *mon, const QDict *qdict)
1057 const char *tp_name = qdict_get_str(qdict, "name");
1058 bool new_state = qdict_get_bool(qdict, "option");
1059 bool has_vcpu = qdict_haskey(qdict, "vcpu");
1060 int vcpu = qdict_get_try_int(qdict, "vcpu", 0);
1061 Error *local_err = NULL;
1064 monitor_printf(mon, "argument vcpu must be positive");
1068 qmp_trace_event_set_state(tp_name, new_state, true, true, has_vcpu, vcpu, &local_err);
1070 error_report_err(local_err);
1074 #ifdef CONFIG_TRACE_SIMPLE
1075 static void hmp_trace_file(Monitor *mon, const QDict *qdict)
1077 const char *op = qdict_get_try_str(qdict, "op");
1078 const char *arg = qdict_get_try_str(qdict, "arg");
1081 st_print_trace_file_status((FILE *)mon, &monitor_fprintf);
1082 } else if (!strcmp(op, "on")) {
1083 st_set_trace_file_enabled(true);
1084 } else if (!strcmp(op, "off")) {
1085 st_set_trace_file_enabled(false);
1086 } else if (!strcmp(op, "flush")) {
1087 st_flush_trace_buffer();
1088 } else if (!strcmp(op, "set")) {
1090 st_set_trace_file(arg);
1093 monitor_printf(mon, "unexpected argument \"%s\"\n", op);
1094 help_cmd(mon, "trace-file");
1099 static void hmp_info_help(Monitor *mon, const QDict *qdict)
1101 help_cmd(mon, "info");
1104 static void query_commands_cb(QmpCommand *cmd, void *opaque)
1106 CommandInfoList *info, **list = opaque;
1108 if (!cmd->enabled) {
1112 info = g_malloc0(sizeof(*info));
1113 info->value = g_malloc0(sizeof(*info->value));
1114 info->value->name = g_strdup(cmd->name);
1119 CommandInfoList *qmp_query_commands(Error **errp)
1121 CommandInfoList *list = NULL;
1123 qmp_for_each_command(cur_mon->qmp.commands, query_commands_cb, &list);
1128 EventInfoList *qmp_query_events(Error **errp)
1130 EventInfoList *info, *ev_list = NULL;
1133 for (e = 0 ; e < QAPI_EVENT__MAX ; e++) {
1134 const char *event_name = QAPIEvent_str(e);
1135 assert(event_name != NULL);
1136 info = g_malloc0(sizeof(*info));
1137 info->value = g_malloc0(sizeof(*info->value));
1138 info->value->name = g_strdup(event_name);
1140 info->next = ev_list;
1148 * Minor hack: generated marshalling suppressed for this command
1149 * ('gen': false in the schema) so we can parse the JSON string
1150 * directly into QObject instead of first parsing it with
1151 * visit_type_SchemaInfoList() into a SchemaInfoList, then marshal it
1152 * to QObject with generated output marshallers, every time. Instead,
1153 * we do it in test-qobject-input-visitor.c, just to make sure
1154 * qapi-gen.py's output actually conforms to the schema.
1156 static void qmp_query_qmp_schema(QDict *qdict, QObject **ret_data,
1159 *ret_data = qobject_from_qlit(&qmp_schema_qlit);
1163 * We used to define commands in qmp-commands.hx in addition to the
1164 * QAPI schema. This permitted defining some of them only in certain
1165 * configurations. query-commands has always reflected that (good,
1166 * because it lets QMP clients figure out what's actually available),
1167 * while query-qmp-schema never did (not so good). This function is a
1168 * hack to keep the configuration-specific commands defined exactly as
1169 * before, even though qmp-commands.hx is gone.
1171 * FIXME Educate the QAPI schema on configuration-specific commands,
1172 * and drop this hack.
1174 static void qmp_unregister_commands_hack(void)
1176 #ifndef CONFIG_SPICE
1177 qmp_unregister_command(&qmp_commands, "query-spice");
1179 #ifndef CONFIG_REPLICATION
1180 qmp_unregister_command(&qmp_commands, "xen-set-replication");
1181 qmp_unregister_command(&qmp_commands, "query-xen-replication-status");
1182 qmp_unregister_command(&qmp_commands, "xen-colo-do-checkpoint");
1185 qmp_unregister_command(&qmp_commands, "rtc-reset-reinjection");
1186 qmp_unregister_command(&qmp_commands, "query-sev");
1187 qmp_unregister_command(&qmp_commands, "query-sev-launch-measure");
1188 qmp_unregister_command(&qmp_commands, "query-sev-capabilities");
1190 #ifndef TARGET_S390X
1191 qmp_unregister_command(&qmp_commands, "dump-skeys");
1194 qmp_unregister_command(&qmp_commands, "query-gic-capabilities");
1196 #if !defined(TARGET_S390X) && !defined(TARGET_I386)
1197 qmp_unregister_command(&qmp_commands, "query-cpu-model-expansion");
1199 #if !defined(TARGET_S390X)
1200 qmp_unregister_command(&qmp_commands, "query-cpu-model-baseline");
1201 qmp_unregister_command(&qmp_commands, "query-cpu-model-comparison");
1203 #if !defined(TARGET_PPC) && !defined(TARGET_ARM) && !defined(TARGET_I386) \
1204 && !defined(TARGET_S390X)
1205 qmp_unregister_command(&qmp_commands, "query-cpu-definitions");
1209 static void monitor_init_qmp_commands(void)
1212 * Two command lists:
1213 * - qmp_commands contains all QMP commands
1214 * - qmp_cap_negotiation_commands contains just
1215 * "qmp_capabilities", to enforce capability negotiation
1218 qmp_init_marshal(&qmp_commands);
1220 qmp_register_command(&qmp_commands, "query-qmp-schema",
1221 qmp_query_qmp_schema, QCO_ALLOW_PRECONFIG);
1222 qmp_register_command(&qmp_commands, "device_add", qmp_device_add,
1224 qmp_register_command(&qmp_commands, "netdev_add", qmp_netdev_add,
1227 qmp_unregister_commands_hack();
1229 QTAILQ_INIT(&qmp_cap_negotiation_commands);
1230 qmp_register_command(&qmp_cap_negotiation_commands, "qmp_capabilities",
1231 qmp_marshal_qmp_capabilities, QCO_ALLOW_PRECONFIG);
1234 static bool qmp_cap_enabled(Monitor *mon, QMPCapability cap)
1236 return mon->qmp.qmp_caps[cap];
1239 static bool qmp_oob_enabled(Monitor *mon)
1241 return qmp_cap_enabled(mon, QMP_CAPABILITY_OOB);
1244 static void qmp_caps_check(Monitor *mon, QMPCapabilityList *list,
1247 for (; list; list = list->next) {
1248 assert(list->value < QMP_CAPABILITY__MAX);
1249 switch (list->value) {
1250 case QMP_CAPABILITY_OOB:
1251 if (!mon->use_io_thr) {
1253 * Out-Of-Band only works with monitors that are
1254 * running on dedicated IOThread.
1256 error_setg(errp, "This monitor does not support "
1257 "Out-Of-Band (OOB)");
1267 /* This function should only be called after capabilities are checked. */
1268 static void qmp_caps_apply(Monitor *mon, QMPCapabilityList *list)
1270 for (; list; list = list->next) {
1271 mon->qmp.qmp_caps[list->value] = true;
1276 * Return true if check successful, or false otherwise. When false is
1277 * returned, detailed error will be in errp if provided.
1279 static bool qmp_cmd_oob_check(Monitor *mon, QDict *req, Error **errp)
1281 const char *command;
1284 command = qdict_get_try_str(req, "execute");
1286 error_setg(errp, "Command field 'execute' missing");
1290 cmd = qmp_find_command(mon->qmp.commands, command);
1292 if (mon->qmp.commands == &qmp_cap_negotiation_commands) {
1293 error_set(errp, ERROR_CLASS_COMMAND_NOT_FOUND,
1294 "Expecting capabilities negotiation "
1295 "with 'qmp_capabilities'");
1297 error_set(errp, ERROR_CLASS_COMMAND_NOT_FOUND,
1298 "The command %s has not been found", command);
1303 if (qmp_is_oob(req)) {
1304 if (!qmp_oob_enabled(mon)) {
1305 error_setg(errp, "Please enable Out-Of-Band first "
1306 "for the session during capabilities negotiation");
1309 if (!(cmd->options & QCO_ALLOW_OOB)) {
1310 error_setg(errp, "The command %s does not support OOB",
1319 void qmp_qmp_capabilities(bool has_enable, QMPCapabilityList *enable,
1322 Error *local_err = NULL;
1324 if (cur_mon->qmp.commands == &qmp_commands) {
1325 error_set(errp, ERROR_CLASS_COMMAND_NOT_FOUND,
1326 "Capabilities negotiation is already complete, command "
1331 /* Enable QMP capabilities provided by the client if applicable. */
1333 qmp_caps_check(cur_mon, enable, &local_err);
1336 * Failed check on any of the capabilities will fail the
1337 * entire command (and thus not apply any of the other
1338 * capabilities that were also requested).
1340 error_propagate(errp, local_err);
1343 qmp_caps_apply(cur_mon, enable);
1346 cur_mon->qmp.commands = &qmp_commands;
1349 /* Set the current CPU defined by the user. Callers must hold BQL. */
1350 int monitor_set_cpu(int cpu_index)
1354 cpu = qemu_get_cpu(cpu_index);
1358 g_free(cur_mon->mon_cpu_path);
1359 cur_mon->mon_cpu_path = object_get_canonical_path(OBJECT(cpu));
1363 /* Callers must hold BQL. */
1364 static CPUState *mon_get_cpu_sync(bool synchronize)
1368 if (cur_mon->mon_cpu_path) {
1369 cpu = (CPUState *) object_resolve_path_type(cur_mon->mon_cpu_path,
1372 g_free(cur_mon->mon_cpu_path);
1373 cur_mon->mon_cpu_path = NULL;
1376 if (!cur_mon->mon_cpu_path) {
1380 monitor_set_cpu(first_cpu->cpu_index);
1384 cpu_synchronize_state(cpu);
1389 CPUState *mon_get_cpu(void)
1391 return mon_get_cpu_sync(true);
1394 CPUArchState *mon_get_cpu_env(void)
1396 CPUState *cs = mon_get_cpu();
1398 return cs ? cs->env_ptr : NULL;
1401 int monitor_get_cpu_index(void)
1403 CPUState *cs = mon_get_cpu_sync(false);
1405 return cs ? cs->cpu_index : UNASSIGNED_CPU_INDEX;
1408 static void hmp_info_registers(Monitor *mon, const QDict *qdict)
1410 bool all_cpus = qdict_get_try_bool(qdict, "cpustate_all", false);
1415 monitor_printf(mon, "\nCPU#%d\n", cs->cpu_index);
1416 cpu_dump_state(cs, (FILE *)mon, monitor_fprintf, CPU_DUMP_FPU);
1422 monitor_printf(mon, "No CPU available\n");
1426 cpu_dump_state(cs, (FILE *)mon, monitor_fprintf, CPU_DUMP_FPU);
1431 static void hmp_info_jit(Monitor *mon, const QDict *qdict)
1433 if (!tcg_enabled()) {
1434 error_report("JIT information is only available with accel=tcg");
1438 dump_exec_info((FILE *)mon, monitor_fprintf);
1439 dump_drift_info((FILE *)mon, monitor_fprintf);
1442 static void hmp_info_opcount(Monitor *mon, const QDict *qdict)
1444 dump_opcount_info((FILE *)mon, monitor_fprintf);
1448 static void hmp_info_history(Monitor *mon, const QDict *qdict)
1457 str = readline_get_history(mon->rs, i);
1460 monitor_printf(mon, "%d: '%s'\n", i, str);
1465 static void hmp_info_cpustats(Monitor *mon, const QDict *qdict)
1467 CPUState *cs = mon_get_cpu();
1470 monitor_printf(mon, "No CPU available\n");
1473 cpu_dump_statistics(cs, (FILE *)mon, &monitor_fprintf, 0);
1476 static void hmp_info_trace_events(Monitor *mon, const QDict *qdict)
1478 const char *name = qdict_get_try_str(qdict, "name");
1479 bool has_vcpu = qdict_haskey(qdict, "vcpu");
1480 int vcpu = qdict_get_try_int(qdict, "vcpu", 0);
1481 TraceEventInfoList *events;
1482 TraceEventInfoList *elem;
1483 Error *local_err = NULL;
1489 monitor_printf(mon, "argument vcpu must be positive");
1493 events = qmp_trace_event_get_state(name, has_vcpu, vcpu, &local_err);
1495 error_report_err(local_err);
1499 for (elem = events; elem != NULL; elem = elem->next) {
1500 monitor_printf(mon, "%s : state %u\n",
1502 elem->value->state == TRACE_EVENT_STATE_ENABLED ? 1 : 0);
1504 qapi_free_TraceEventInfoList(events);
1507 void qmp_client_migrate_info(const char *protocol, const char *hostname,
1508 bool has_port, int64_t port,
1509 bool has_tls_port, int64_t tls_port,
1510 bool has_cert_subject, const char *cert_subject,
1513 if (strcmp(protocol, "spice") == 0) {
1514 if (!qemu_using_spice(errp)) {
1518 if (!has_port && !has_tls_port) {
1519 error_setg(errp, QERR_MISSING_PARAMETER, "port/tls-port");
1523 if (qemu_spice_migrate_info(hostname,
1524 has_port ? port : -1,
1525 has_tls_port ? tls_port : -1,
1527 error_setg(errp, QERR_UNDEFINED_ERROR);
1533 error_setg(errp, QERR_INVALID_PARAMETER_VALUE, "protocol", "spice");
1536 static void hmp_logfile(Monitor *mon, const QDict *qdict)
1540 qemu_set_log_filename(qdict_get_str(qdict, "filename"), &err);
1542 error_report_err(err);
1546 static void hmp_log(Monitor *mon, const QDict *qdict)
1549 const char *items = qdict_get_str(qdict, "items");
1551 if (!strcmp(items, "none")) {
1554 mask = qemu_str_to_log_mask(items);
1556 help_cmd(mon, "log");
1563 static void hmp_singlestep(Monitor *mon, const QDict *qdict)
1565 const char *option = qdict_get_try_str(qdict, "option");
1566 if (!option || !strcmp(option, "on")) {
1568 } else if (!strcmp(option, "off")) {
1571 monitor_printf(mon, "unexpected option %s\n", option);
1575 static void hmp_gdbserver(Monitor *mon, const QDict *qdict)
1577 const char *device = qdict_get_try_str(qdict, "device");
1579 device = "tcp::" DEFAULT_GDBSTUB_PORT;
1580 if (gdbserver_start(device) < 0) {
1581 monitor_printf(mon, "Could not open gdbserver on device '%s'\n",
1583 } else if (strcmp(device, "none") == 0) {
1584 monitor_printf(mon, "Disabled gdbserver\n");
1586 monitor_printf(mon, "Waiting for gdb connection on device '%s'\n",
1591 static void hmp_watchdog_action(Monitor *mon, const QDict *qdict)
1593 const char *action = qdict_get_str(qdict, "action");
1594 if (select_watchdog_action(action) == -1) {
1595 monitor_printf(mon, "Unknown watchdog action '%s'\n", action);
1599 static void monitor_printc(Monitor *mon, int c)
1601 monitor_printf(mon, "'");
1604 monitor_printf(mon, "\\'");
1607 monitor_printf(mon, "\\\\");
1610 monitor_printf(mon, "\\n");
1613 monitor_printf(mon, "\\r");
1616 if (c >= 32 && c <= 126) {
1617 monitor_printf(mon, "%c", c);
1619 monitor_printf(mon, "\\x%02x", c);
1623 monitor_printf(mon, "'");
1626 static void memory_dump(Monitor *mon, int count, int format, int wsize,
1627 hwaddr addr, int is_physical)
1629 int l, line_size, i, max_digits, len;
1632 CPUState *cs = mon_get_cpu();
1634 if (!cs && (format == 'i' || !is_physical)) {
1635 monitor_printf(mon, "Can not dump without CPU\n");
1639 if (format == 'i') {
1640 monitor_disas(mon, cs, addr, count, is_physical);
1644 len = wsize * count;
1653 max_digits = DIV_ROUND_UP(wsize * 8, 3);
1657 max_digits = (wsize * 8) / 4;
1661 max_digits = DIV_ROUND_UP(wsize * 8 * 10, 33);
1670 monitor_printf(mon, TARGET_FMT_plx ":", addr);
1672 monitor_printf(mon, TARGET_FMT_lx ":", (target_ulong)addr);
1677 cpu_physical_memory_read(addr, buf, l);
1679 if (cpu_memory_rw_debug(cs, addr, buf, l, 0) < 0) {
1680 monitor_printf(mon, " Cannot access memory\n");
1689 v = ldub_p(buf + i);
1692 v = lduw_p(buf + i);
1695 v = (uint32_t)ldl_p(buf + i);
1701 monitor_printf(mon, " ");
1704 monitor_printf(mon, "%#*" PRIo64, max_digits, v);
1707 monitor_printf(mon, "0x%0*" PRIx64, max_digits, v);
1710 monitor_printf(mon, "%*" PRIu64, max_digits, v);
1713 monitor_printf(mon, "%*" PRId64, max_digits, v);
1716 monitor_printc(mon, v);
1721 monitor_printf(mon, "\n");
1727 static void hmp_memory_dump(Monitor *mon, const QDict *qdict)
1729 int count = qdict_get_int(qdict, "count");
1730 int format = qdict_get_int(qdict, "format");
1731 int size = qdict_get_int(qdict, "size");
1732 target_long addr = qdict_get_int(qdict, "addr");
1734 memory_dump(mon, count, format, size, addr, 0);
1737 static void hmp_physical_memory_dump(Monitor *mon, const QDict *qdict)
1739 int count = qdict_get_int(qdict, "count");
1740 int format = qdict_get_int(qdict, "format");
1741 int size = qdict_get_int(qdict, "size");
1742 hwaddr addr = qdict_get_int(qdict, "addr");
1744 memory_dump(mon, count, format, size, addr, 1);
1747 static void *gpa2hva(MemoryRegion **p_mr, hwaddr addr, Error **errp)
1749 MemoryRegionSection mrs = memory_region_find(get_system_memory(),
1753 error_setg(errp, "No memory is mapped at address 0x%" HWADDR_PRIx, addr);
1757 if (!memory_region_is_ram(mrs.mr) && !memory_region_is_romd(mrs.mr)) {
1758 error_setg(errp, "Memory at address 0x%" HWADDR_PRIx "is not RAM", addr);
1759 memory_region_unref(mrs.mr);
1764 return qemu_map_ram_ptr(mrs.mr->ram_block, mrs.offset_within_region);
1767 static void hmp_gpa2hva(Monitor *mon, const QDict *qdict)
1769 hwaddr addr = qdict_get_int(qdict, "addr");
1770 Error *local_err = NULL;
1771 MemoryRegion *mr = NULL;
1774 ptr = gpa2hva(&mr, addr, &local_err);
1776 error_report_err(local_err);
1780 monitor_printf(mon, "Host virtual address for 0x%" HWADDR_PRIx
1782 addr, mr->name, ptr);
1784 memory_region_unref(mr);
1788 static uint64_t vtop(void *ptr, Error **errp)
1792 uintptr_t addr = (uintptr_t) ptr;
1793 uintptr_t pagesize = getpagesize();
1794 off_t offset = addr / pagesize * sizeof(pinfo);
1797 fd = open("/proc/self/pagemap", O_RDONLY);
1799 error_setg_errno(errp, errno, "Cannot open /proc/self/pagemap");
1803 /* Force copy-on-write if necessary. */
1804 atomic_add((uint8_t *)ptr, 0);
1806 if (pread(fd, &pinfo, sizeof(pinfo), offset) != sizeof(pinfo)) {
1807 error_setg_errno(errp, errno, "Cannot read pagemap");
1810 if ((pinfo & (1ull << 63)) == 0) {
1811 error_setg(errp, "Page not present");
1814 ret = ((pinfo & 0x007fffffffffffffull) * pagesize) | (addr & (pagesize - 1));
1821 static void hmp_gpa2hpa(Monitor *mon, const QDict *qdict)
1823 hwaddr addr = qdict_get_int(qdict, "addr");
1824 Error *local_err = NULL;
1825 MemoryRegion *mr = NULL;
1829 ptr = gpa2hva(&mr, addr, &local_err);
1831 error_report_err(local_err);
1835 physaddr = vtop(ptr, &local_err);
1837 error_report_err(local_err);
1839 monitor_printf(mon, "Host physical address for 0x%" HWADDR_PRIx
1840 " (%s) is 0x%" PRIx64 "\n",
1841 addr, mr->name, (uint64_t) physaddr);
1844 memory_region_unref(mr);
1848 static void do_print(Monitor *mon, const QDict *qdict)
1850 int format = qdict_get_int(qdict, "format");
1851 hwaddr val = qdict_get_int(qdict, "val");
1855 monitor_printf(mon, "%#" HWADDR_PRIo, val);
1858 monitor_printf(mon, "%#" HWADDR_PRIx, val);
1861 monitor_printf(mon, "%" HWADDR_PRIu, val);
1865 monitor_printf(mon, "%" HWADDR_PRId, val);
1868 monitor_printc(mon, val);
1871 monitor_printf(mon, "\n");
1874 static void hmp_sum(Monitor *mon, const QDict *qdict)
1878 uint32_t start = qdict_get_int(qdict, "start");
1879 uint32_t size = qdict_get_int(qdict, "size");
1882 for(addr = start; addr < (start + size); addr++) {
1883 uint8_t val = address_space_ldub(&address_space_memory, addr,
1884 MEMTXATTRS_UNSPECIFIED, NULL);
1885 /* BSD sum algorithm ('sum' Unix command) */
1886 sum = (sum >> 1) | (sum << 15);
1889 monitor_printf(mon, "%05d\n", sum);
1892 static int mouse_button_state;
1894 static void hmp_mouse_move(Monitor *mon, const QDict *qdict)
1896 int dx, dy, dz, button;
1897 const char *dx_str = qdict_get_str(qdict, "dx_str");
1898 const char *dy_str = qdict_get_str(qdict, "dy_str");
1899 const char *dz_str = qdict_get_try_str(qdict, "dz_str");
1901 dx = strtol(dx_str, NULL, 0);
1902 dy = strtol(dy_str, NULL, 0);
1903 qemu_input_queue_rel(NULL, INPUT_AXIS_X, dx);
1904 qemu_input_queue_rel(NULL, INPUT_AXIS_Y, dy);
1907 dz = strtol(dz_str, NULL, 0);
1909 button = (dz > 0) ? INPUT_BUTTON_WHEEL_UP : INPUT_BUTTON_WHEEL_DOWN;
1910 qemu_input_queue_btn(NULL, button, true);
1911 qemu_input_event_sync();
1912 qemu_input_queue_btn(NULL, button, false);
1915 qemu_input_event_sync();
1918 static void hmp_mouse_button(Monitor *mon, const QDict *qdict)
1920 static uint32_t bmap[INPUT_BUTTON__MAX] = {
1921 [INPUT_BUTTON_LEFT] = MOUSE_EVENT_LBUTTON,
1922 [INPUT_BUTTON_MIDDLE] = MOUSE_EVENT_MBUTTON,
1923 [INPUT_BUTTON_RIGHT] = MOUSE_EVENT_RBUTTON,
1925 int button_state = qdict_get_int(qdict, "button_state");
1927 if (mouse_button_state == button_state) {
1930 qemu_input_update_buttons(NULL, bmap, mouse_button_state, button_state);
1931 qemu_input_event_sync();
1932 mouse_button_state = button_state;
1935 static void hmp_ioport_read(Monitor *mon, const QDict *qdict)
1937 int size = qdict_get_int(qdict, "size");
1938 int addr = qdict_get_int(qdict, "addr");
1939 int has_index = qdict_haskey(qdict, "index");
1944 int index = qdict_get_int(qdict, "index");
1945 cpu_outb(addr & IOPORTS_MASK, index & 0xff);
1953 val = cpu_inb(addr);
1957 val = cpu_inw(addr);
1961 val = cpu_inl(addr);
1965 monitor_printf(mon, "port%c[0x%04x] = %#0*x\n",
1966 suffix, addr, size * 2, val);
1969 static void hmp_ioport_write(Monitor *mon, const QDict *qdict)
1971 int size = qdict_get_int(qdict, "size");
1972 int addr = qdict_get_int(qdict, "addr");
1973 int val = qdict_get_int(qdict, "val");
1975 addr &= IOPORTS_MASK;
1980 cpu_outb(addr, val);
1983 cpu_outw(addr, val);
1986 cpu_outl(addr, val);
1991 static void hmp_boot_set(Monitor *mon, const QDict *qdict)
1993 Error *local_err = NULL;
1994 const char *bootdevice = qdict_get_str(qdict, "bootdevice");
1996 qemu_boot_set(bootdevice, &local_err);
1998 error_report_err(local_err);
2000 monitor_printf(mon, "boot device list now set to %s\n", bootdevice);
2004 static void hmp_info_mtree(Monitor *mon, const QDict *qdict)
2006 bool flatview = qdict_get_try_bool(qdict, "flatview", false);
2007 bool dispatch_tree = qdict_get_try_bool(qdict, "dispatch_tree", false);
2008 bool owner = qdict_get_try_bool(qdict, "owner", false);
2010 mtree_info((fprintf_function)monitor_printf, mon, flatview, dispatch_tree,
2014 static void hmp_info_numa(Monitor *mon, const QDict *qdict)
2017 NumaNodeMem *node_mem;
2018 CpuInfoList *cpu_list, *cpu;
2020 cpu_list = qmp_query_cpus(&error_abort);
2021 node_mem = g_new0(NumaNodeMem, nb_numa_nodes);
2023 query_numa_node_mem(node_mem);
2024 monitor_printf(mon, "%d nodes\n", nb_numa_nodes);
2025 for (i = 0; i < nb_numa_nodes; i++) {
2026 monitor_printf(mon, "node %d cpus:", i);
2027 for (cpu = cpu_list; cpu; cpu = cpu->next) {
2028 if (cpu->value->has_props && cpu->value->props->has_node_id &&
2029 cpu->value->props->node_id == i) {
2030 monitor_printf(mon, " %" PRIi64, cpu->value->CPU);
2033 monitor_printf(mon, "\n");
2034 monitor_printf(mon, "node %d size: %" PRId64 " MB\n", i,
2035 node_mem[i].node_mem >> 20);
2036 monitor_printf(mon, "node %d plugged: %" PRId64 " MB\n", i,
2037 node_mem[i].node_plugged_mem >> 20);
2039 qapi_free_CpuInfoList(cpu_list);
2043 #ifdef CONFIG_PROFILER
2048 static void hmp_info_profile(Monitor *mon, const QDict *qdict)
2050 monitor_printf(mon, "async time %" PRId64 " (%0.3f)\n",
2051 dev_time, dev_time / (double)NANOSECONDS_PER_SECOND);
2052 monitor_printf(mon, "qemu time %" PRId64 " (%0.3f)\n",
2053 tcg_time, tcg_time / (double)NANOSECONDS_PER_SECOND);
2058 static void hmp_info_profile(Monitor *mon, const QDict *qdict)
2060 monitor_printf(mon, "Internal profiler not compiled\n");
2064 /* Capture support */
2065 static QLIST_HEAD (capture_list_head, CaptureState) capture_head;
2067 static void hmp_info_capture(Monitor *mon, const QDict *qdict)
2072 for (s = capture_head.lh_first, i = 0; s; s = s->entries.le_next, ++i) {
2073 monitor_printf(mon, "[%d]: ", i);
2074 s->ops.info (s->opaque);
2078 static void hmp_stopcapture(Monitor *mon, const QDict *qdict)
2081 int n = qdict_get_int(qdict, "n");
2084 for (s = capture_head.lh_first, i = 0; s; s = s->entries.le_next, ++i) {
2086 s->ops.destroy (s->opaque);
2087 QLIST_REMOVE (s, entries);
2094 static void hmp_wavcapture(Monitor *mon, const QDict *qdict)
2096 const char *path = qdict_get_str(qdict, "path");
2097 int has_freq = qdict_haskey(qdict, "freq");
2098 int freq = qdict_get_try_int(qdict, "freq", -1);
2099 int has_bits = qdict_haskey(qdict, "bits");
2100 int bits = qdict_get_try_int(qdict, "bits", -1);
2101 int has_channels = qdict_haskey(qdict, "nchannels");
2102 int nchannels = qdict_get_try_int(qdict, "nchannels", -1);
2105 s = g_malloc0 (sizeof (*s));
2107 freq = has_freq ? freq : 44100;
2108 bits = has_bits ? bits : 16;
2109 nchannels = has_channels ? nchannels : 2;
2111 if (wav_start_capture (s, path, freq, bits, nchannels)) {
2112 monitor_printf(mon, "Failed to add wave capture\n");
2116 QLIST_INSERT_HEAD (&capture_head, s, entries);
2119 static qemu_acl *find_acl(Monitor *mon, const char *name)
2121 qemu_acl *acl = qemu_acl_find(name);
2124 monitor_printf(mon, "acl: unknown list '%s'\n", name);
2129 static void hmp_acl_show(Monitor *mon, const QDict *qdict)
2131 const char *aclname = qdict_get_str(qdict, "aclname");
2132 qemu_acl *acl = find_acl(mon, aclname);
2133 qemu_acl_entry *entry;
2137 monitor_printf(mon, "policy: %s\n",
2138 acl->defaultDeny ? "deny" : "allow");
2139 QTAILQ_FOREACH(entry, &acl->entries, next) {
2141 monitor_printf(mon, "%d: %s %s\n", i,
2142 entry->deny ? "deny" : "allow", entry->match);
2147 static void hmp_acl_reset(Monitor *mon, const QDict *qdict)
2149 const char *aclname = qdict_get_str(qdict, "aclname");
2150 qemu_acl *acl = find_acl(mon, aclname);
2153 qemu_acl_reset(acl);
2154 monitor_printf(mon, "acl: removed all rules\n");
2158 static void hmp_acl_policy(Monitor *mon, const QDict *qdict)
2160 const char *aclname = qdict_get_str(qdict, "aclname");
2161 const char *policy = qdict_get_str(qdict, "policy");
2162 qemu_acl *acl = find_acl(mon, aclname);
2165 if (strcmp(policy, "allow") == 0) {
2166 acl->defaultDeny = 0;
2167 monitor_printf(mon, "acl: policy set to 'allow'\n");
2168 } else if (strcmp(policy, "deny") == 0) {
2169 acl->defaultDeny = 1;
2170 monitor_printf(mon, "acl: policy set to 'deny'\n");
2172 monitor_printf(mon, "acl: unknown policy '%s', "
2173 "expected 'deny' or 'allow'\n", policy);
2178 static void hmp_acl_add(Monitor *mon, const QDict *qdict)
2180 const char *aclname = qdict_get_str(qdict, "aclname");
2181 const char *match = qdict_get_str(qdict, "match");
2182 const char *policy = qdict_get_str(qdict, "policy");
2183 int has_index = qdict_haskey(qdict, "index");
2184 int index = qdict_get_try_int(qdict, "index", -1);
2185 qemu_acl *acl = find_acl(mon, aclname);
2189 if (strcmp(policy, "allow") == 0) {
2191 } else if (strcmp(policy, "deny") == 0) {
2194 monitor_printf(mon, "acl: unknown policy '%s', "
2195 "expected 'deny' or 'allow'\n", policy);
2199 ret = qemu_acl_insert(acl, deny, match, index);
2201 ret = qemu_acl_append(acl, deny, match);
2203 monitor_printf(mon, "acl: unable to add acl entry\n");
2205 monitor_printf(mon, "acl: added rule at position %d\n", ret);
2209 static void hmp_acl_remove(Monitor *mon, const QDict *qdict)
2211 const char *aclname = qdict_get_str(qdict, "aclname");
2212 const char *match = qdict_get_str(qdict, "match");
2213 qemu_acl *acl = find_acl(mon, aclname);
2217 ret = qemu_acl_remove(acl, match);
2219 monitor_printf(mon, "acl: no matching acl entry\n");
2221 monitor_printf(mon, "acl: removed rule at position %d\n", ret);
2225 void qmp_getfd(const char *fdname, Error **errp)
2230 fd = qemu_chr_fe_get_msgfd(&cur_mon->chr);
2232 error_setg(errp, QERR_FD_NOT_SUPPLIED);
2236 if (qemu_isdigit(fdname[0])) {
2238 error_setg(errp, QERR_INVALID_PARAMETER_VALUE, "fdname",
2239 "a name not starting with a digit");
2243 qemu_mutex_lock(&cur_mon->mon_lock);
2244 QLIST_FOREACH(monfd, &cur_mon->fds, next) {
2245 if (strcmp(monfd->name, fdname) != 0) {
2251 qemu_mutex_unlock(&cur_mon->mon_lock);
2252 /* Make sure close() is out of critical section */
2257 monfd = g_malloc0(sizeof(mon_fd_t));
2258 monfd->name = g_strdup(fdname);
2261 QLIST_INSERT_HEAD(&cur_mon->fds, monfd, next);
2262 qemu_mutex_unlock(&cur_mon->mon_lock);
2265 void qmp_closefd(const char *fdname, Error **errp)
2270 qemu_mutex_lock(&cur_mon->mon_lock);
2271 QLIST_FOREACH(monfd, &cur_mon->fds, next) {
2272 if (strcmp(monfd->name, fdname) != 0) {
2276 QLIST_REMOVE(monfd, next);
2278 g_free(monfd->name);
2280 qemu_mutex_unlock(&cur_mon->mon_lock);
2281 /* Make sure close() is out of critical section */
2286 qemu_mutex_unlock(&cur_mon->mon_lock);
2287 error_setg(errp, QERR_FD_NOT_FOUND, fdname);
2290 int monitor_get_fd(Monitor *mon, const char *fdname, Error **errp)
2294 qemu_mutex_lock(&mon->mon_lock);
2295 QLIST_FOREACH(monfd, &mon->fds, next) {
2298 if (strcmp(monfd->name, fdname) != 0) {
2304 /* caller takes ownership of fd */
2305 QLIST_REMOVE(monfd, next);
2306 g_free(monfd->name);
2308 qemu_mutex_unlock(&mon->mon_lock);
2313 qemu_mutex_unlock(&mon->mon_lock);
2314 error_setg(errp, "File descriptor named '%s' has not been found", fdname);
2318 static void monitor_fdset_cleanup(MonFdset *mon_fdset)
2320 MonFdsetFd *mon_fdset_fd;
2321 MonFdsetFd *mon_fdset_fd_next;
2323 QLIST_FOREACH_SAFE(mon_fdset_fd, &mon_fdset->fds, next, mon_fdset_fd_next) {
2324 if ((mon_fdset_fd->removed ||
2325 (QLIST_EMPTY(&mon_fdset->dup_fds) && mon_refcount == 0)) &&
2326 runstate_is_running()) {
2327 close(mon_fdset_fd->fd);
2328 g_free(mon_fdset_fd->opaque);
2329 QLIST_REMOVE(mon_fdset_fd, next);
2330 g_free(mon_fdset_fd);
2334 if (QLIST_EMPTY(&mon_fdset->fds) && QLIST_EMPTY(&mon_fdset->dup_fds)) {
2335 QLIST_REMOVE(mon_fdset, next);
2340 static void monitor_fdsets_cleanup(void)
2342 MonFdset *mon_fdset;
2343 MonFdset *mon_fdset_next;
2345 qemu_mutex_lock(&mon_fdsets_lock);
2346 QLIST_FOREACH_SAFE(mon_fdset, &mon_fdsets, next, mon_fdset_next) {
2347 monitor_fdset_cleanup(mon_fdset);
2349 qemu_mutex_unlock(&mon_fdsets_lock);
2352 AddfdInfo *qmp_add_fd(bool has_fdset_id, int64_t fdset_id, bool has_opaque,
2353 const char *opaque, Error **errp)
2356 Monitor *mon = cur_mon;
2359 fd = qemu_chr_fe_get_msgfd(&mon->chr);
2361 error_setg(errp, QERR_FD_NOT_SUPPLIED);
2365 fdinfo = monitor_fdset_add_fd(fd, has_fdset_id, fdset_id,
2366 has_opaque, opaque, errp);
2378 void qmp_remove_fd(int64_t fdset_id, bool has_fd, int64_t fd, Error **errp)
2380 MonFdset *mon_fdset;
2381 MonFdsetFd *mon_fdset_fd;
2384 qemu_mutex_lock(&mon_fdsets_lock);
2385 QLIST_FOREACH(mon_fdset, &mon_fdsets, next) {
2386 if (mon_fdset->id != fdset_id) {
2389 QLIST_FOREACH(mon_fdset_fd, &mon_fdset->fds, next) {
2391 if (mon_fdset_fd->fd != fd) {
2394 mon_fdset_fd->removed = true;
2397 mon_fdset_fd->removed = true;
2400 if (has_fd && !mon_fdset_fd) {
2403 monitor_fdset_cleanup(mon_fdset);
2404 qemu_mutex_unlock(&mon_fdsets_lock);
2409 qemu_mutex_unlock(&mon_fdsets_lock);
2411 snprintf(fd_str, sizeof(fd_str), "fdset-id:%" PRId64 ", fd:%" PRId64,
2414 snprintf(fd_str, sizeof(fd_str), "fdset-id:%" PRId64, fdset_id);
2416 error_setg(errp, QERR_FD_NOT_FOUND, fd_str);
2419 FdsetInfoList *qmp_query_fdsets(Error **errp)
2421 MonFdset *mon_fdset;
2422 MonFdsetFd *mon_fdset_fd;
2423 FdsetInfoList *fdset_list = NULL;
2425 qemu_mutex_lock(&mon_fdsets_lock);
2426 QLIST_FOREACH(mon_fdset, &mon_fdsets, next) {
2427 FdsetInfoList *fdset_info = g_malloc0(sizeof(*fdset_info));
2428 FdsetFdInfoList *fdsetfd_list = NULL;
2430 fdset_info->value = g_malloc0(sizeof(*fdset_info->value));
2431 fdset_info->value->fdset_id = mon_fdset->id;
2433 QLIST_FOREACH(mon_fdset_fd, &mon_fdset->fds, next) {
2434 FdsetFdInfoList *fdsetfd_info;
2436 fdsetfd_info = g_malloc0(sizeof(*fdsetfd_info));
2437 fdsetfd_info->value = g_malloc0(sizeof(*fdsetfd_info->value));
2438 fdsetfd_info->value->fd = mon_fdset_fd->fd;
2439 if (mon_fdset_fd->opaque) {
2440 fdsetfd_info->value->has_opaque = true;
2441 fdsetfd_info->value->opaque = g_strdup(mon_fdset_fd->opaque);
2443 fdsetfd_info->value->has_opaque = false;
2446 fdsetfd_info->next = fdsetfd_list;
2447 fdsetfd_list = fdsetfd_info;
2450 fdset_info->value->fds = fdsetfd_list;
2452 fdset_info->next = fdset_list;
2453 fdset_list = fdset_info;
2455 qemu_mutex_unlock(&mon_fdsets_lock);
2460 AddfdInfo *monitor_fdset_add_fd(int fd, bool has_fdset_id, int64_t fdset_id,
2461 bool has_opaque, const char *opaque,
2464 MonFdset *mon_fdset = NULL;
2465 MonFdsetFd *mon_fdset_fd;
2468 qemu_mutex_lock(&mon_fdsets_lock);
2470 QLIST_FOREACH(mon_fdset, &mon_fdsets, next) {
2471 /* Break if match found or match impossible due to ordering by ID */
2472 if (fdset_id <= mon_fdset->id) {
2473 if (fdset_id < mon_fdset->id) {
2481 if (mon_fdset == NULL) {
2482 int64_t fdset_id_prev = -1;
2483 MonFdset *mon_fdset_cur = QLIST_FIRST(&mon_fdsets);
2487 error_setg(errp, QERR_INVALID_PARAMETER_VALUE, "fdset-id",
2488 "a non-negative value");
2489 qemu_mutex_unlock(&mon_fdsets_lock);
2492 /* Use specified fdset ID */
2493 QLIST_FOREACH(mon_fdset, &mon_fdsets, next) {
2494 mon_fdset_cur = mon_fdset;
2495 if (fdset_id < mon_fdset_cur->id) {
2500 /* Use first available fdset ID */
2501 QLIST_FOREACH(mon_fdset, &mon_fdsets, next) {
2502 mon_fdset_cur = mon_fdset;
2503 if (fdset_id_prev == mon_fdset_cur->id - 1) {
2504 fdset_id_prev = mon_fdset_cur->id;
2511 mon_fdset = g_malloc0(sizeof(*mon_fdset));
2513 mon_fdset->id = fdset_id;
2515 mon_fdset->id = fdset_id_prev + 1;
2518 /* The fdset list is ordered by fdset ID */
2519 if (!mon_fdset_cur) {
2520 QLIST_INSERT_HEAD(&mon_fdsets, mon_fdset, next);
2521 } else if (mon_fdset->id < mon_fdset_cur->id) {
2522 QLIST_INSERT_BEFORE(mon_fdset_cur, mon_fdset, next);
2524 QLIST_INSERT_AFTER(mon_fdset_cur, mon_fdset, next);
2528 mon_fdset_fd = g_malloc0(sizeof(*mon_fdset_fd));
2529 mon_fdset_fd->fd = fd;
2530 mon_fdset_fd->removed = false;
2532 mon_fdset_fd->opaque = g_strdup(opaque);
2534 QLIST_INSERT_HEAD(&mon_fdset->fds, mon_fdset_fd, next);
2536 fdinfo = g_malloc0(sizeof(*fdinfo));
2537 fdinfo->fdset_id = mon_fdset->id;
2538 fdinfo->fd = mon_fdset_fd->fd;
2540 qemu_mutex_unlock(&mon_fdsets_lock);
2544 int monitor_fdset_get_fd(int64_t fdset_id, int flags)
2549 MonFdset *mon_fdset;
2550 MonFdsetFd *mon_fdset_fd;
2554 qemu_mutex_lock(&mon_fdsets_lock);
2555 QLIST_FOREACH(mon_fdset, &mon_fdsets, next) {
2556 if (mon_fdset->id != fdset_id) {
2559 QLIST_FOREACH(mon_fdset_fd, &mon_fdset->fds, next) {
2560 mon_fd_flags = fcntl(mon_fdset_fd->fd, F_GETFL);
2561 if (mon_fd_flags == -1) {
2566 if ((flags & O_ACCMODE) == (mon_fd_flags & O_ACCMODE)) {
2567 ret = mon_fdset_fd->fd;
2577 qemu_mutex_unlock(&mon_fdsets_lock);
2582 int monitor_fdset_dup_fd_add(int64_t fdset_id, int dup_fd)
2584 MonFdset *mon_fdset;
2585 MonFdsetFd *mon_fdset_fd_dup;
2587 qemu_mutex_lock(&mon_fdsets_lock);
2588 QLIST_FOREACH(mon_fdset, &mon_fdsets, next) {
2589 if (mon_fdset->id != fdset_id) {
2592 QLIST_FOREACH(mon_fdset_fd_dup, &mon_fdset->dup_fds, next) {
2593 if (mon_fdset_fd_dup->fd == dup_fd) {
2597 mon_fdset_fd_dup = g_malloc0(sizeof(*mon_fdset_fd_dup));
2598 mon_fdset_fd_dup->fd = dup_fd;
2599 QLIST_INSERT_HEAD(&mon_fdset->dup_fds, mon_fdset_fd_dup, next);
2600 qemu_mutex_unlock(&mon_fdsets_lock);
2605 qemu_mutex_unlock(&mon_fdsets_lock);
2609 static int monitor_fdset_dup_fd_find_remove(int dup_fd, bool remove)
2611 MonFdset *mon_fdset;
2612 MonFdsetFd *mon_fdset_fd_dup;
2614 qemu_mutex_lock(&mon_fdsets_lock);
2615 QLIST_FOREACH(mon_fdset, &mon_fdsets, next) {
2616 QLIST_FOREACH(mon_fdset_fd_dup, &mon_fdset->dup_fds, next) {
2617 if (mon_fdset_fd_dup->fd == dup_fd) {
2619 QLIST_REMOVE(mon_fdset_fd_dup, next);
2620 if (QLIST_EMPTY(&mon_fdset->dup_fds)) {
2621 monitor_fdset_cleanup(mon_fdset);
2625 qemu_mutex_unlock(&mon_fdsets_lock);
2626 return mon_fdset->id;
2633 qemu_mutex_unlock(&mon_fdsets_lock);
2637 int monitor_fdset_dup_fd_find(int dup_fd)
2639 return monitor_fdset_dup_fd_find_remove(dup_fd, false);
2642 void monitor_fdset_dup_fd_remove(int dup_fd)
2644 monitor_fdset_dup_fd_find_remove(dup_fd, true);
2647 int monitor_fd_param(Monitor *mon, const char *fdname, Error **errp)
2650 Error *local_err = NULL;
2652 if (!qemu_isdigit(fdname[0]) && mon) {
2653 fd = monitor_get_fd(mon, fdname, &local_err);
2655 fd = qemu_parse_fd(fdname);
2657 error_setg(&local_err, "Invalid file descriptor number '%s'",
2662 error_propagate(errp, local_err);
2671 /* Please update hmp-commands.hx when adding or changing commands */
2672 static mon_cmd_t info_cmds[] = {
2673 #include "hmp-commands-info.h"
2677 /* mon_cmds and info_cmds would be sorted at runtime */
2678 static mon_cmd_t mon_cmds[] = {
2679 #include "hmp-commands.h"
2683 /*******************************************************************/
2685 static const char *pch;
2686 static sigjmp_buf expr_env;
2689 static void GCC_FMT_ATTR(2, 3) QEMU_NORETURN
2690 expr_error(Monitor *mon, const char *fmt, ...)
2694 monitor_vprintf(mon, fmt, ap);
2695 monitor_printf(mon, "\n");
2697 siglongjmp(expr_env, 1);
2700 /* return 0 if OK, -1 if not found */
2701 static int get_monitor_def(target_long *pval, const char *name)
2703 const MonitorDef *md = target_monitor_defs();
2704 CPUState *cs = mon_get_cpu();
2709 if (cs == NULL || md == NULL) {
2713 for(; md->name != NULL; md++) {
2714 if (compare_cmd(name, md->name)) {
2715 if (md->get_value) {
2716 *pval = md->get_value(md, md->offset);
2718 CPUArchState *env = mon_get_cpu_env();
2719 ptr = (uint8_t *)env + md->offset;
2722 *pval = *(int32_t *)ptr;
2725 *pval = *(target_long *)ptr;
2736 ret = target_get_monitor_def(cs, name, &tmp);
2738 *pval = (target_long) tmp;
2744 static void next(void)
2748 while (qemu_isspace(*pch))
2753 static int64_t expr_sum(Monitor *mon);
2755 static int64_t expr_unary(Monitor *mon)
2764 n = expr_unary(mon);
2768 n = -expr_unary(mon);
2772 n = ~expr_unary(mon);
2778 expr_error(mon, "')' expected");
2785 expr_error(mon, "character constant expected");
2789 expr_error(mon, "missing terminating \' character");
2799 while ((*pch >= 'a' && *pch <= 'z') ||
2800 (*pch >= 'A' && *pch <= 'Z') ||
2801 (*pch >= '0' && *pch <= '9') ||
2802 *pch == '_' || *pch == '.') {
2803 if ((q - buf) < sizeof(buf) - 1)
2807 while (qemu_isspace(*pch))
2810 ret = get_monitor_def(®, buf);
2812 expr_error(mon, "unknown register");
2817 expr_error(mon, "unexpected end of expression");
2822 n = strtoull(pch, &p, 0);
2823 if (errno == ERANGE) {
2824 expr_error(mon, "number too large");
2827 expr_error(mon, "invalid char '%c' in expression", *p);
2830 while (qemu_isspace(*pch))
2838 static int64_t expr_prod(Monitor *mon)
2843 val = expr_unary(mon);
2846 if (op != '*' && op != '/' && op != '%')
2849 val2 = expr_unary(mon);
2858 expr_error(mon, "division by zero");
2869 static int64_t expr_logic(Monitor *mon)
2874 val = expr_prod(mon);
2877 if (op != '&' && op != '|' && op != '^')
2880 val2 = expr_prod(mon);
2897 static int64_t expr_sum(Monitor *mon)
2902 val = expr_logic(mon);
2905 if (op != '+' && op != '-')
2908 val2 = expr_logic(mon);
2917 static int get_expr(Monitor *mon, int64_t *pval, const char **pp)
2920 if (sigsetjmp(expr_env, 0)) {
2924 while (qemu_isspace(*pch))
2926 *pval = expr_sum(mon);
2931 static int get_double(Monitor *mon, double *pval, const char **pp)
2933 const char *p = *pp;
2937 d = strtod(p, &tailp);
2939 monitor_printf(mon, "Number expected\n");
2942 if (d != d || d - d != 0) {
2943 /* NaN or infinity */
2944 monitor_printf(mon, "Bad number\n");
2953 * Store the command-name in cmdname, and return a pointer to
2954 * the remaining of the command string.
2956 static const char *get_command_name(const char *cmdline,
2957 char *cmdname, size_t nlen)
2960 const char *p, *pstart;
2963 while (qemu_isspace(*p))
2968 while (*p != '\0' && *p != '/' && !qemu_isspace(*p))
2973 memcpy(cmdname, pstart, len);
2974 cmdname[len] = '\0';
2979 * Read key of 'type' into 'key' and return the current
2982 static char *key_get_info(const char *type, char **key)
2990 p = strchr(type, ':');
2997 str = g_malloc(len + 1);
2998 memcpy(str, type, len);
3005 static int default_fmt_format = 'x';
3006 static int default_fmt_size = 4;
3008 static int is_valid_option(const char *c, const char *typestr)
3016 typestr = strstr(typestr, option);
3017 return (typestr != NULL);
3020 static const mon_cmd_t *search_dispatch_table(const mon_cmd_t *disp_table,
3021 const char *cmdname)
3023 const mon_cmd_t *cmd;
3025 for (cmd = disp_table; cmd->name != NULL; cmd++) {
3026 if (compare_cmd(cmdname, cmd->name)) {
3035 * Parse command name from @cmdp according to command table @table.
3036 * If blank, return NULL.
3037 * Else, if no valid command can be found, report to @mon, and return
3039 * Else, change @cmdp to point right behind the name, and return its
3040 * command table entry.
3041 * Do not assume the return value points into @table! It doesn't when
3042 * the command is found in a sub-command table.
3044 static const mon_cmd_t *monitor_parse_command(Monitor *mon,
3045 const char *cmdp_start,
3050 const mon_cmd_t *cmd;
3053 /* extract the command name */
3054 p = get_command_name(*cmdp, cmdname, sizeof(cmdname));
3058 cmd = search_dispatch_table(table, cmdname);
3060 monitor_printf(mon, "unknown command: '%.*s'\n",
3061 (int)(p - cmdp_start), cmdp_start);
3064 if (runstate_check(RUN_STATE_PRECONFIG) && !cmd_can_preconfig(cmd)) {
3065 monitor_printf(mon, "Command '%.*s' not available with -preconfig "
3066 "until after exit_preconfig.\n",
3067 (int)(p - cmdp_start), cmdp_start);
3071 /* filter out following useless space */
3072 while (qemu_isspace(*p)) {
3077 /* search sub command */
3078 if (cmd->sub_table != NULL && *p != '\0') {
3079 return monitor_parse_command(mon, cmdp_start, cmdp, cmd->sub_table);
3086 * Parse arguments for @cmd.
3087 * If it can't be parsed, report to @mon, and return NULL.
3088 * Else, insert command arguments into a QDict, and return it.
3089 * Note: On success, caller has to free the QDict structure.
3092 static QDict *monitor_parse_arguments(Monitor *mon,
3094 const mon_cmd_t *cmd)
3096 const char *typestr;
3099 const char *p = *endp;
3101 QDict *qdict = qdict_new();
3103 /* parse the parameters */
3104 typestr = cmd->args_type;
3106 typestr = key_get_info(typestr, &key);
3118 while (qemu_isspace(*p))
3120 if (*typestr == '?') {
3123 /* no optional string: NULL argument */
3127 ret = get_str(buf, sizeof(buf), &p);
3131 monitor_printf(mon, "%s: filename expected\n",
3135 monitor_printf(mon, "%s: block device name expected\n",
3139 monitor_printf(mon, "%s: string expected\n", cmd->name);
3144 qdict_put_str(qdict, key, buf);
3149 QemuOptsList *opts_list;
3152 opts_list = qemu_find_opts(key);
3153 if (!opts_list || opts_list->desc->name) {
3156 while (qemu_isspace(*p)) {
3161 if (get_str(buf, sizeof(buf), &p) < 0) {
3164 opts = qemu_opts_parse_noisily(opts_list, buf, true);
3168 qemu_opts_to_qdict(opts, qdict);
3169 qemu_opts_del(opts);
3174 int count, format, size;
3176 while (qemu_isspace(*p))
3182 if (qemu_isdigit(*p)) {
3184 while (qemu_isdigit(*p)) {
3185 count = count * 10 + (*p - '0');
3223 if (*p != '\0' && !qemu_isspace(*p)) {
3224 monitor_printf(mon, "invalid char in format: '%c'\n",
3229 format = default_fmt_format;
3230 if (format != 'i') {
3231 /* for 'i', not specifying a size gives -1 as size */
3233 size = default_fmt_size;
3234 default_fmt_size = size;
3236 default_fmt_format = format;
3239 format = default_fmt_format;
3240 if (format != 'i') {
3241 size = default_fmt_size;
3246 qdict_put_int(qdict, "count", count);
3247 qdict_put_int(qdict, "format", format);
3248 qdict_put_int(qdict, "size", size);
3257 while (qemu_isspace(*p))
3259 if (*typestr == '?' || *typestr == '.') {
3260 if (*typestr == '?') {
3268 while (qemu_isspace(*p))
3277 if (get_expr(mon, &val, &p))
3279 /* Check if 'i' is greater than 32-bit */
3280 if ((c == 'i') && ((val >> 32) & 0xffffffff)) {
3281 monitor_printf(mon, "\'%s\' has failed: ", cmd->name);
3282 monitor_printf(mon, "integer is for 32-bit values\n");
3284 } else if (c == 'M') {
3286 monitor_printf(mon, "enter a positive value\n");
3291 qdict_put_int(qdict, key, val);
3300 while (qemu_isspace(*p)) {
3303 if (*typestr == '?') {
3309 ret = qemu_strtosz_MiB(p, &end, &val);
3310 if (ret < 0 || val > INT64_MAX) {
3311 monitor_printf(mon, "invalid size\n");
3314 qdict_put_int(qdict, key, val);
3322 while (qemu_isspace(*p))
3324 if (*typestr == '?') {
3330 if (get_double(mon, &val, &p) < 0) {
3333 if (p[0] && p[1] == 's') {
3336 val /= 1e3; p += 2; break;
3338 val /= 1e6; p += 2; break;
3340 val /= 1e9; p += 2; break;
3343 if (*p && !qemu_isspace(*p)) {
3344 monitor_printf(mon, "Unknown unit suffix\n");
3347 qdict_put(qdict, key, qnum_from_double(val));
3355 while (qemu_isspace(*p)) {
3359 while (qemu_isgraph(*p)) {
3362 if (p - beg == 2 && !memcmp(beg, "on", p - beg)) {
3364 } else if (p - beg == 3 && !memcmp(beg, "off", p - beg)) {
3367 monitor_printf(mon, "Expected 'on' or 'off'\n");
3370 qdict_put_bool(qdict, key, val);
3375 const char *tmp = p;
3382 while (qemu_isspace(*p))
3387 if(!is_valid_option(p, typestr)) {
3389 monitor_printf(mon, "%s: unsupported option -%c\n",
3401 qdict_put_bool(qdict, key, true);
3408 /* package all remaining string */
3411 while (qemu_isspace(*p)) {
3414 if (*typestr == '?') {
3417 /* no remaining string: NULL argument */
3423 monitor_printf(mon, "%s: string expected\n",
3427 qdict_put_str(qdict, key, p);
3433 monitor_printf(mon, "%s: unknown type '%c'\n", cmd->name, c);
3439 /* check that all arguments were parsed */
3440 while (qemu_isspace(*p))
3443 monitor_printf(mon, "%s: extraneous characters at the end of line\n",
3451 qobject_unref(qdict);
3456 static void handle_hmp_command(Monitor *mon, const char *cmdline)
3459 const mon_cmd_t *cmd;
3460 const char *cmd_start = cmdline;
3462 trace_handle_hmp_command(mon, cmdline);
3464 cmd = monitor_parse_command(mon, cmdline, &cmdline, mon->cmd_table);
3469 qdict = monitor_parse_arguments(mon, &cmdline, cmd);
3471 while (cmdline > cmd_start && qemu_isspace(cmdline[-1])) {
3474 monitor_printf(mon, "Try \"help %.*s\" for more information\n",
3475 (int)(cmdline - cmd_start), cmd_start);
3479 cmd->cmd(mon, qdict);
3480 qobject_unref(qdict);
3483 static void cmd_completion(Monitor *mon, const char *name, const char *list)
3485 const char *p, *pstart;
3492 p = qemu_strchrnul(p, '|');
3494 if (len > sizeof(cmd) - 2)
3495 len = sizeof(cmd) - 2;
3496 memcpy(cmd, pstart, len);
3498 if (name[0] == '\0' || !strncmp(name, cmd, strlen(name))) {
3499 readline_add_completion(mon->rs, cmd);
3507 static void file_completion(Monitor *mon, const char *input)
3512 char file[1024], file_prefix[1024];
3516 p = strrchr(input, '/');
3519 pstrcpy(file_prefix, sizeof(file_prefix), input);
3520 pstrcpy(path, sizeof(path), ".");
3522 input_path_len = p - input + 1;
3523 memcpy(path, input, input_path_len);
3524 if (input_path_len > sizeof(path) - 1)
3525 input_path_len = sizeof(path) - 1;
3526 path[input_path_len] = '\0';
3527 pstrcpy(file_prefix, sizeof(file_prefix), p + 1);
3530 ffs = opendir(path);
3539 if (strcmp(d->d_name, ".") == 0 || strcmp(d->d_name, "..") == 0) {
3543 if (strstart(d->d_name, file_prefix, NULL)) {
3544 memcpy(file, input, input_path_len);
3545 if (input_path_len < sizeof(file))
3546 pstrcpy(file + input_path_len, sizeof(file) - input_path_len,
3548 /* stat the file to find out if it's a directory.
3549 * In that case add a slash to speed up typing long paths
3551 if (stat(file, &sb) == 0 && S_ISDIR(sb.st_mode)) {
3552 pstrcat(file, sizeof(file), "/");
3554 readline_add_completion(mon->rs, file);
3560 static const char *next_arg_type(const char *typestr)
3562 const char *p = strchr(typestr, ':');
3563 return (p != NULL ? ++p : typestr);
3566 static void add_completion_option(ReadLineState *rs, const char *str,
3569 if (!str || !option) {
3572 if (!strncmp(option, str, strlen(str))) {
3573 readline_add_completion(rs, option);
3577 void chardev_add_completion(ReadLineState *rs, int nb_args, const char *str)
3580 ChardevBackendInfoList *list, *start;
3586 readline_set_completion_index(rs, len);
3588 start = list = qmp_query_chardev_backends(NULL);
3590 const char *chr_name = list->value->name;
3592 if (!strncmp(chr_name, str, len)) {
3593 readline_add_completion(rs, chr_name);
3597 qapi_free_ChardevBackendInfoList(start);
3600 void netdev_add_completion(ReadLineState *rs, int nb_args, const char *str)
3609 readline_set_completion_index(rs, len);
3610 for (i = 0; i < NET_CLIENT_DRIVER__MAX; i++) {
3611 add_completion_option(rs, str, NetClientDriver_str(i));
3615 void device_add_completion(ReadLineState *rs, int nb_args, const char *str)
3625 readline_set_completion_index(rs, len);
3626 list = elt = object_class_get_list(TYPE_DEVICE, false);
3629 DeviceClass *dc = OBJECT_CLASS_CHECK(DeviceClass, elt->data,
3631 name = object_class_get_name(OBJECT_CLASS(dc));
3633 if (dc->user_creatable
3634 && !strncmp(name, str, len)) {
3635 readline_add_completion(rs, name);
3642 void object_add_completion(ReadLineState *rs, int nb_args, const char *str)
3652 readline_set_completion_index(rs, len);
3653 list = elt = object_class_get_list(TYPE_USER_CREATABLE, false);
3657 name = object_class_get_name(OBJECT_CLASS(elt->data));
3658 if (!strncmp(name, str, len) && strcmp(name, TYPE_USER_CREATABLE)) {
3659 readline_add_completion(rs, name);
3666 static void peripheral_device_del_completion(ReadLineState *rs,
3667 const char *str, size_t len)
3669 Object *peripheral = container_get(qdev_get_machine(), "/peripheral");
3670 GSList *list, *item;
3672 list = qdev_build_hotpluggable_device_list(peripheral);
3677 for (item = list; item; item = g_slist_next(item)) {
3678 DeviceState *dev = item->data;
3680 if (dev->id && !strncmp(str, dev->id, len)) {
3681 readline_add_completion(rs, dev->id);
3688 void chardev_remove_completion(ReadLineState *rs, int nb_args, const char *str)
3691 ChardevInfoList *list, *start;
3697 readline_set_completion_index(rs, len);
3699 start = list = qmp_query_chardev(NULL);
3701 ChardevInfo *chr = list->value;
3703 if (!strncmp(chr->label, str, len)) {
3704 readline_add_completion(rs, chr->label);
3708 qapi_free_ChardevInfoList(start);
3711 static void ringbuf_completion(ReadLineState *rs, const char *str)
3714 ChardevInfoList *list, *start;
3717 readline_set_completion_index(rs, len);
3719 start = list = qmp_query_chardev(NULL);
3721 ChardevInfo *chr_info = list->value;
3723 if (!strncmp(chr_info->label, str, len)) {
3724 Chardev *chr = qemu_chr_find(chr_info->label);
3725 if (chr && CHARDEV_IS_RINGBUF(chr)) {
3726 readline_add_completion(rs, chr_info->label);
3731 qapi_free_ChardevInfoList(start);
3734 void ringbuf_write_completion(ReadLineState *rs, int nb_args, const char *str)
3739 ringbuf_completion(rs, str);
3742 void device_del_completion(ReadLineState *rs, int nb_args, const char *str)
3751 readline_set_completion_index(rs, len);
3752 peripheral_device_del_completion(rs, str, len);
3755 void object_del_completion(ReadLineState *rs, int nb_args, const char *str)
3757 ObjectPropertyInfoList *list, *start;
3764 readline_set_completion_index(rs, len);
3766 start = list = qmp_qom_list("/objects", NULL);
3768 ObjectPropertyInfo *info = list->value;
3770 if (!strncmp(info->type, "child<", 5)
3771 && !strncmp(info->name, str, len)) {
3772 readline_add_completion(rs, info->name);
3776 qapi_free_ObjectPropertyInfoList(start);
3779 void sendkey_completion(ReadLineState *rs, int nb_args, const char *str)
3788 sep = strrchr(str, '-');
3793 readline_set_completion_index(rs, len);
3794 for (i = 0; i < Q_KEY_CODE__MAX; i++) {
3795 if (!strncmp(str, QKeyCode_str(i), len)) {
3796 readline_add_completion(rs, QKeyCode_str(i));
3801 void set_link_completion(ReadLineState *rs, int nb_args, const char *str)
3806 readline_set_completion_index(rs, len);
3808 NetClientState *ncs[MAX_QUEUE_NUM];
3810 count = qemu_find_net_clients_except(NULL, ncs,
3811 NET_CLIENT_DRIVER_NONE,
3813 for (i = 0; i < MIN(count, MAX_QUEUE_NUM); i++) {
3814 const char *name = ncs[i]->name;
3815 if (!strncmp(str, name, len)) {
3816 readline_add_completion(rs, name);
3819 } else if (nb_args == 3) {
3820 add_completion_option(rs, str, "on");
3821 add_completion_option(rs, str, "off");
3825 void netdev_del_completion(ReadLineState *rs, int nb_args, const char *str)
3828 NetClientState *ncs[MAX_QUEUE_NUM];
3835 readline_set_completion_index(rs, len);
3836 count = qemu_find_net_clients_except(NULL, ncs, NET_CLIENT_DRIVER_NIC,
3838 for (i = 0; i < MIN(count, MAX_QUEUE_NUM); i++) {
3840 const char *name = ncs[i]->name;
3841 if (strncmp(str, name, len)) {
3844 opts = qemu_opts_find(qemu_find_opts_err("netdev", NULL), name);
3846 readline_add_completion(rs, name);
3851 void info_trace_events_completion(ReadLineState *rs, int nb_args, const char *str)
3856 readline_set_completion_index(rs, len);
3858 TraceEventIter iter;
3860 char *pattern = g_strdup_printf("%s*", str);
3861 trace_event_iter_init(&iter, pattern);
3862 while ((ev = trace_event_iter_next(&iter)) != NULL) {
3863 readline_add_completion(rs, trace_event_get_name(ev));
3869 void trace_event_completion(ReadLineState *rs, int nb_args, const char *str)
3874 readline_set_completion_index(rs, len);
3876 TraceEventIter iter;
3878 char *pattern = g_strdup_printf("%s*", str);
3879 trace_event_iter_init(&iter, pattern);
3880 while ((ev = trace_event_iter_next(&iter)) != NULL) {
3881 readline_add_completion(rs, trace_event_get_name(ev));
3884 } else if (nb_args == 3) {
3885 add_completion_option(rs, str, "on");
3886 add_completion_option(rs, str, "off");
3890 void watchdog_action_completion(ReadLineState *rs, int nb_args, const char *str)
3897 readline_set_completion_index(rs, strlen(str));
3898 for (i = 0; i < WATCHDOG_ACTION__MAX; i++) {
3899 add_completion_option(rs, str, WatchdogAction_str(i));
3903 void migrate_set_capability_completion(ReadLineState *rs, int nb_args,
3909 readline_set_completion_index(rs, len);
3912 for (i = 0; i < MIGRATION_CAPABILITY__MAX; i++) {
3913 const char *name = MigrationCapability_str(i);
3914 if (!strncmp(str, name, len)) {
3915 readline_add_completion(rs, name);
3918 } else if (nb_args == 3) {
3919 add_completion_option(rs, str, "on");
3920 add_completion_option(rs, str, "off");
3924 void migrate_set_parameter_completion(ReadLineState *rs, int nb_args,
3930 readline_set_completion_index(rs, len);
3933 for (i = 0; i < MIGRATION_PARAMETER__MAX; i++) {
3934 const char *name = MigrationParameter_str(i);
3935 if (!strncmp(str, name, len)) {
3936 readline_add_completion(rs, name);
3942 static void vm_completion(ReadLineState *rs, const char *str)
3945 BlockDriverState *bs;
3946 BdrvNextIterator it;
3949 readline_set_completion_index(rs, len);
3951 for (bs = bdrv_first(&it); bs; bs = bdrv_next(&it)) {
3952 SnapshotInfoList *snapshots, *snapshot;
3953 AioContext *ctx = bdrv_get_aio_context(bs);
3956 aio_context_acquire(ctx);
3957 if (bdrv_can_snapshot(bs)) {
3958 ok = bdrv_query_snapshot_info_list(bs, &snapshots, NULL) == 0;
3960 aio_context_release(ctx);
3965 snapshot = snapshots;
3967 char *completion = snapshot->value->name;
3968 if (!strncmp(str, completion, len)) {
3969 readline_add_completion(rs, completion);
3971 completion = snapshot->value->id;
3972 if (!strncmp(str, completion, len)) {
3973 readline_add_completion(rs, completion);
3975 snapshot = snapshot->next;
3977 qapi_free_SnapshotInfoList(snapshots);
3982 void delvm_completion(ReadLineState *rs, int nb_args, const char *str)
3985 vm_completion(rs, str);
3989 void loadvm_completion(ReadLineState *rs, int nb_args, const char *str)
3992 vm_completion(rs, str);
3996 static void monitor_find_completion_by_table(Monitor *mon,
3997 const mon_cmd_t *cmd_table,
4001 const char *cmdname;
4003 const char *ptype, *old_ptype, *str, *name;
4004 const mon_cmd_t *cmd;
4005 BlockBackend *blk = NULL;
4008 /* command completion */
4013 readline_set_completion_index(mon->rs, strlen(cmdname));
4014 for (cmd = cmd_table; cmd->name != NULL; cmd++) {
4015 if (!runstate_check(RUN_STATE_PRECONFIG) ||
4016 cmd_can_preconfig(cmd)) {
4017 cmd_completion(mon, cmdname, cmd->name);
4021 /* find the command */
4022 for (cmd = cmd_table; cmd->name != NULL; cmd++) {
4023 if (compare_cmd(args[0], cmd->name) &&
4024 (!runstate_check(RUN_STATE_PRECONFIG) ||
4025 cmd_can_preconfig(cmd))) {
4033 if (cmd->sub_table) {
4034 /* do the job again */
4035 monitor_find_completion_by_table(mon, cmd->sub_table,
4036 &args[1], nb_args - 1);
4039 if (cmd->command_completion) {
4040 cmd->command_completion(mon->rs, nb_args, args[nb_args - 1]);
4044 ptype = next_arg_type(cmd->args_type);
4045 for(i = 0; i < nb_args - 2; i++) {
4046 if (*ptype != '\0') {
4047 ptype = next_arg_type(ptype);
4048 while (*ptype == '?')
4049 ptype = next_arg_type(ptype);
4052 str = args[nb_args - 1];
4054 while (*ptype == '-' && old_ptype != ptype) {
4056 ptype = next_arg_type(ptype);
4060 /* file completion */
4061 readline_set_completion_index(mon->rs, strlen(str));
4062 file_completion(mon, str);
4065 /* block device name completion */
4066 readline_set_completion_index(mon->rs, strlen(str));
4067 while ((blk = blk_next(blk)) != NULL) {
4068 name = blk_name(blk);
4069 if (str[0] == '\0' ||
4070 !strncmp(name, str, strlen(str))) {
4071 readline_add_completion(mon->rs, name);
4077 if (!strcmp(cmd->name, "help|?")) {
4078 monitor_find_completion_by_table(mon, cmd_table,
4079 &args[1], nb_args - 1);
4088 static void monitor_find_completion(void *opaque,
4089 const char *cmdline)
4091 Monitor *mon = opaque;
4092 char *args[MAX_ARGS];
4095 /* 1. parse the cmdline */
4096 if (parse_cmdline(cmdline, &nb_args, args) < 0) {
4100 /* if the line ends with a space, it means we want to complete the
4102 len = strlen(cmdline);
4103 if (len > 0 && qemu_isspace(cmdline[len - 1])) {
4104 if (nb_args >= MAX_ARGS) {
4107 args[nb_args++] = g_strdup("");
4110 /* 2. auto complete according to args */
4111 monitor_find_completion_by_table(mon, mon->cmd_table, args, nb_args);
4114 free_cmdline_args(args, nb_args);
4117 static int monitor_can_read(void *opaque)
4119 Monitor *mon = opaque;
4121 return !atomic_mb_read(&mon->suspend_cnt);
4125 * 1. This function takes ownership of rsp, err, and id.
4126 * 2. rsp, err, and id may be NULL.
4127 * 3. If err != NULL then rsp must be NULL.
4129 static void monitor_qmp_respond(Monitor *mon, QObject *rsp,
4130 Error *err, QObject *id)
4132 QDict *qdict = NULL;
4136 qdict = qdict_new();
4137 qdict_put_obj(qdict, "error", qmp_build_error_object(err));
4139 rsp = QOBJECT(qdict);
4144 qdict_put_obj(qobject_to(QDict, rsp), "id", qobject_ref(id));
4147 monitor_json_emitter(mon, rsp);
4155 * Dispatch one single QMP request. The function will free the req_obj
4156 * and objects inside it before return.
4158 static void monitor_qmp_dispatch_one(QMPRequest *req_obj)
4160 Monitor *mon, *old_mon;
4161 QObject *req, *rsp = NULL, *id;
4167 need_resume = req_obj->need_resume;
4171 if (trace_event_get_state_backends(TRACE_HANDLE_QMP_COMMAND)) {
4172 QString *req_json = qobject_to_json(req);
4173 trace_handle_qmp_command(mon, qstring_get_str(req_json));
4174 qobject_unref(req_json);
4180 rsp = qmp_dispatch(mon->qmp.commands, req);
4184 /* Respond if necessary */
4185 monitor_qmp_respond(mon, rsp, NULL, id);
4187 /* This pairs with the monitor_suspend() in handle_qmp_command(). */
4189 monitor_resume(mon);
4196 * Pop one QMP request from monitor queues, return NULL if not found.
4197 * We are using round-robin fashion to pop the request, to avoid
4198 * processing commands only on a very busy monitor. To achieve that,
4199 * when we process one request on a specific monitor, we put that
4200 * monitor to the end of mon_list queue.
4202 static QMPRequest *monitor_qmp_requests_pop_one(void)
4204 QMPRequest *req_obj = NULL;
4207 qemu_mutex_lock(&monitor_lock);
4209 QTAILQ_FOREACH(mon, &mon_list, entry) {
4210 qemu_mutex_lock(&mon->qmp.qmp_queue_lock);
4211 req_obj = g_queue_pop_head(mon->qmp.qmp_requests);
4212 qemu_mutex_unlock(&mon->qmp.qmp_queue_lock);
4220 * We found one request on the monitor. Degrade this monitor's
4221 * priority to lowest by re-inserting it to end of queue.
4223 QTAILQ_REMOVE(&mon_list, mon, entry);
4224 QTAILQ_INSERT_TAIL(&mon_list, mon, entry);
4227 qemu_mutex_unlock(&monitor_lock);
4232 static void monitor_qmp_bh_dispatcher(void *data)
4234 QMPRequest *req_obj = monitor_qmp_requests_pop_one();
4237 trace_monitor_qmp_cmd_in_band(qobject_get_try_str(req_obj->id) ?: "");
4238 monitor_qmp_dispatch_one(req_obj);
4239 /* Reschedule instead of looping so the main loop stays responsive */
4240 qemu_bh_schedule(mon_global.qmp_dispatcher_bh);
4244 #define QMP_REQ_QUEUE_LEN_MAX (8)
4246 static void handle_qmp_command(JSONMessageParser *parser, GQueue *tokens)
4248 QObject *req, *id = NULL;
4249 QDict *qdict = NULL;
4250 MonitorQMP *mon_qmp = container_of(parser, MonitorQMP, parser);
4251 Monitor *mon = container_of(mon_qmp, Monitor, qmp);
4253 QMPRequest *req_obj;
4255 req = json_parser_parse_err(tokens, NULL, &err);
4257 /* json_parser_parse_err() sucks: can fail without setting @err */
4258 error_setg(&err, QERR_JSON_PARSING);
4264 /* Check against the request in general layout */
4265 qdict = qmp_dispatch_check_obj(req, &err);
4270 /* Check against OOB specific */
4271 if (!qmp_cmd_oob_check(mon, qdict, &err)) {
4275 id = qdict_get(qdict, "id");
4277 /* When OOB is enabled, the "id" field is mandatory. */
4278 if (qmp_oob_enabled(mon) && !id) {
4279 error_setg(&err, "Out-Of-Band capability requires that "
4280 "every command contains an 'id' field");
4284 req_obj = g_new0(QMPRequest, 1);
4286 req_obj->id = qobject_ref(id);
4288 req_obj->need_resume = false;
4290 qdict_del(qdict, "id");
4292 if (qmp_is_oob(qdict)) {
4293 /* Out-Of-Band (OOB) requests are executed directly in parser. */
4294 trace_monitor_qmp_cmd_out_of_band(qobject_get_try_str(req_obj->id)
4296 monitor_qmp_dispatch_one(req_obj);
4300 /* Protect qmp_requests and fetching its length. */
4301 qemu_mutex_lock(&mon->qmp.qmp_queue_lock);
4304 * If OOB is not enabled on the current monitor, we'll emulate the
4305 * old behavior that we won't process the current monitor any more
4306 * until it has responded. This helps make sure that as long as
4307 * OOB is not enabled, the server will never drop any command.
4309 if (!qmp_oob_enabled(mon)) {
4310 monitor_suspend(mon);
4311 req_obj->need_resume = true;
4313 /* Drop the request if queue is full. */
4314 if (mon->qmp.qmp_requests->length >= QMP_REQ_QUEUE_LEN_MAX) {
4315 qemu_mutex_unlock(&mon->qmp.qmp_queue_lock);
4316 qapi_event_send_command_dropped(id,
4317 COMMAND_DROP_REASON_QUEUE_FULL,
4319 qmp_request_free(req_obj);
4325 * Put the request to the end of queue so that requests will be
4326 * handled in time order. Ownership for req_obj, req, id,
4327 * etc. will be delivered to the handler side.
4329 g_queue_push_tail(mon->qmp.qmp_requests, req_obj);
4330 qemu_mutex_unlock(&mon->qmp.qmp_queue_lock);
4332 /* Kick the dispatcher routine */
4333 qemu_bh_schedule(mon_global.qmp_dispatcher_bh);
4337 monitor_qmp_respond(mon, NULL, err, NULL);
4341 static void monitor_qmp_read(void *opaque, const uint8_t *buf, int size)
4343 Monitor *mon = opaque;
4345 json_message_parser_feed(&mon->qmp.parser, (const char *) buf, size);
4348 static void monitor_read(void *opaque, const uint8_t *buf, int size)
4350 Monitor *old_mon = cur_mon;
4356 for (i = 0; i < size; i++)
4357 readline_handle_byte(cur_mon->rs, buf[i]);
4359 if (size == 0 || buf[size - 1] != 0)
4360 monitor_printf(cur_mon, "corrupted command\n");
4362 handle_hmp_command(cur_mon, (char *)buf);
4368 static void monitor_command_cb(void *opaque, const char *cmdline,
4369 void *readline_opaque)
4371 Monitor *mon = opaque;
4373 monitor_suspend(mon);
4374 handle_hmp_command(mon, cmdline);
4375 monitor_resume(mon);
4378 int monitor_suspend(Monitor *mon)
4380 if (monitor_is_hmp_non_interactive(mon)) {
4384 atomic_inc(&mon->suspend_cnt);
4386 if (monitor_is_qmp(mon)) {
4388 * Kick iothread to make sure this takes effect. It'll be
4389 * evaluated again in prepare() of the watch object.
4391 aio_notify(iothread_get_aio_context(mon_global.mon_iothread));
4394 trace_monitor_suspend(mon, 1);
4398 void monitor_resume(Monitor *mon)
4400 if (monitor_is_hmp_non_interactive(mon)) {
4404 if (atomic_dec_fetch(&mon->suspend_cnt) == 0) {
4405 if (monitor_is_qmp(mon)) {
4407 * For QMP monitors that are running in IOThread, let's
4408 * kick the thread in case it's sleeping.
4410 if (mon->use_io_thr) {
4411 aio_notify(iothread_get_aio_context(mon_global.mon_iothread));
4415 readline_show_prompt(mon->rs);
4418 trace_monitor_suspend(mon, -1);
4421 static QObject *get_qmp_greeting(Monitor *mon)
4423 QList *cap_list = qlist_new();
4424 QObject *ver = NULL;
4427 qmp_marshal_query_version(NULL, &ver, NULL);
4429 for (cap = 0; cap < QMP_CAPABILITY__MAX; cap++) {
4430 if (!mon->use_io_thr && cap == QMP_CAPABILITY_OOB) {
4431 /* Monitors that are not using IOThread won't support OOB */
4434 qlist_append_str(cap_list, QMPCapability_str(cap));
4437 return qobject_from_jsonf("{'QMP': {'version': %p, 'capabilities': %p}}",
4441 static void monitor_qmp_caps_reset(Monitor *mon)
4443 memset(mon->qmp.qmp_caps, 0, sizeof(mon->qmp.qmp_caps));
4446 static void monitor_qmp_event(void *opaque, int event)
4449 Monitor *mon = opaque;
4452 case CHR_EVENT_OPENED:
4453 mon->qmp.commands = &qmp_cap_negotiation_commands;
4454 monitor_qmp_caps_reset(mon);
4455 data = get_qmp_greeting(mon);
4456 monitor_json_emitter(mon, data);
4457 qobject_unref(data);
4460 case CHR_EVENT_CLOSED:
4461 monitor_qmp_cleanup_queues(mon);
4462 json_message_parser_destroy(&mon->qmp.parser);
4463 json_message_parser_init(&mon->qmp.parser, handle_qmp_command);
4465 monitor_fdsets_cleanup();
4470 static void monitor_event(void *opaque, int event)
4472 Monitor *mon = opaque;
4475 case CHR_EVENT_MUX_IN:
4476 qemu_mutex_lock(&mon->mon_lock);
4478 qemu_mutex_unlock(&mon->mon_lock);
4479 if (mon->reset_seen) {
4480 readline_restart(mon->rs);
4481 monitor_resume(mon);
4484 atomic_mb_set(&mon->suspend_cnt, 0);
4488 case CHR_EVENT_MUX_OUT:
4489 if (mon->reset_seen) {
4490 if (atomic_mb_read(&mon->suspend_cnt) == 0) {
4491 monitor_printf(mon, "\n");
4494 monitor_suspend(mon);
4496 atomic_inc(&mon->suspend_cnt);
4498 qemu_mutex_lock(&mon->mon_lock);
4500 qemu_mutex_unlock(&mon->mon_lock);
4503 case CHR_EVENT_OPENED:
4504 monitor_printf(mon, "QEMU %s monitor - type 'help' for more "
4505 "information\n", QEMU_VERSION);
4506 if (!mon->mux_out) {
4507 readline_restart(mon->rs);
4508 readline_show_prompt(mon->rs);
4510 mon->reset_seen = 1;
4514 case CHR_EVENT_CLOSED:
4516 monitor_fdsets_cleanup();
4522 compare_mon_cmd(const void *a, const void *b)
4524 return strcmp(((const mon_cmd_t *)a)->name,
4525 ((const mon_cmd_t *)b)->name);
4528 static void sortcmdlist(void)
4531 int elem_size = sizeof(mon_cmd_t);
4533 array_num = sizeof(mon_cmds)/elem_size-1;
4534 qsort((void *)mon_cmds, array_num, elem_size, compare_mon_cmd);
4536 array_num = sizeof(info_cmds)/elem_size-1;
4537 qsort((void *)info_cmds, array_num, elem_size, compare_mon_cmd);
4540 static GMainContext *monitor_get_io_context(void)
4542 return iothread_get_g_main_context(mon_global.mon_iothread);
4545 static AioContext *monitor_get_aio_context(void)
4547 return iothread_get_aio_context(mon_global.mon_iothread);
4550 static void monitor_iothread_init(void)
4552 mon_global.mon_iothread = iothread_create("mon_iothread",
4556 * This MUST be on main loop thread since we have commands that
4557 * have assumption to be run on main loop thread. It would be
4558 * nice that one day we can remove this assumption in the future.
4560 mon_global.qmp_dispatcher_bh = aio_bh_new(iohandler_get_aio_context(),
4561 monitor_qmp_bh_dispatcher,
4565 * Unlike the dispatcher BH, this must be run on the monitor IO
4566 * thread, so that monitors that are using IO thread will make
4567 * sure read/write operations are all done on the IO thread.
4569 mon_global.qmp_respond_bh = aio_bh_new(monitor_get_aio_context(),
4570 monitor_qmp_bh_responder,
4574 void monitor_init_globals(void)
4576 monitor_init_qmp_commands();
4577 monitor_qapi_event_init();
4579 qemu_mutex_init(&monitor_lock);
4580 qemu_mutex_init(&mon_fdsets_lock);
4581 monitor_iothread_init();
4584 /* These functions just adapt the readline interface in a typesafe way. We
4585 * could cast function pointers but that discards compiler checks.
4587 static void GCC_FMT_ATTR(2, 3) monitor_readline_printf(void *opaque,
4588 const char *fmt, ...)
4592 monitor_vprintf(opaque, fmt, ap);
4596 static void monitor_readline_flush(void *opaque)
4598 monitor_flush(opaque);
4602 * Print to current monitor if we have one, else to stderr.
4603 * TODO should return int, so callers can calculate width, but that
4604 * requires surgery to monitor_vprintf(). Left for another day.
4606 void error_vprintf(const char *fmt, va_list ap)
4608 if (cur_mon && !monitor_cur_is_qmp()) {
4609 monitor_vprintf(cur_mon, fmt, ap);
4611 vfprintf(stderr, fmt, ap);
4615 void error_vprintf_unless_qmp(const char *fmt, va_list ap)
4617 if (cur_mon && !monitor_cur_is_qmp()) {
4618 monitor_vprintf(cur_mon, fmt, ap);
4619 } else if (!cur_mon) {
4620 vfprintf(stderr, fmt, ap);
4624 static void monitor_list_append(Monitor *mon)
4626 qemu_mutex_lock(&monitor_lock);
4627 QTAILQ_INSERT_HEAD(&mon_list, mon, entry);
4628 qemu_mutex_unlock(&monitor_lock);
4631 static void monitor_qmp_setup_handlers_bh(void *opaque)
4633 Monitor *mon = opaque;
4634 GMainContext *context;
4636 if (mon->use_io_thr) {
4638 * When use_io_thr is set, we use the global shared dedicated
4639 * IO thread for this monitor to handle input/output.
4641 context = monitor_get_io_context();
4642 /* We should have inited globals before reaching here. */
4645 /* The default main loop, which is the main thread */
4649 qemu_chr_fe_set_handlers(&mon->chr, monitor_can_read, monitor_qmp_read,
4650 monitor_qmp_event, NULL, mon, context, true);
4651 monitor_list_append(mon);
4654 void monitor_init(Chardev *chr, int flags)
4656 Monitor *mon = g_malloc(sizeof(*mon));
4657 bool use_readline = flags & MONITOR_USE_READLINE;
4658 bool use_oob = flags & MONITOR_USE_OOB;
4661 if (CHARDEV_IS_MUX(chr)) {
4662 error_report("Monitor Out-Of-Band is not supported with "
4663 "MUX typed chardev backend");
4667 error_report("Monitor Out-Of-band is only supported by QMP");
4672 monitor_data_init(mon, false, use_oob);
4674 qemu_chr_fe_init(&mon->chr, chr, &error_abort);
4677 mon->rs = readline_init(monitor_readline_printf,
4678 monitor_readline_flush,
4680 monitor_find_completion);
4681 monitor_read_command(mon, 0);
4684 if (monitor_is_qmp(mon)) {
4685 qemu_chr_fe_set_echo(&mon->chr, true);
4686 json_message_parser_init(&mon->qmp.parser, handle_qmp_command);
4687 if (mon->use_io_thr) {
4689 * Make sure the old iowatch is gone. It's possible when
4690 * e.g. the chardev is in client mode, with wait=on.
4692 remove_fd_in_watch(chr);
4694 * We can't call qemu_chr_fe_set_handlers() directly here
4695 * since during the procedure the chardev will be active
4696 * and running in monitor iothread, while we'll still do
4697 * something before returning from it, which is a possible
4698 * race too. To avoid that, we just create a BH to setup
4701 aio_bh_schedule_oneshot(monitor_get_aio_context(),
4702 monitor_qmp_setup_handlers_bh, mon);
4703 /* We'll add this to mon_list in the BH when setup done */
4706 qemu_chr_fe_set_handlers(&mon->chr, monitor_can_read,
4707 monitor_qmp_read, monitor_qmp_event,
4708 NULL, mon, NULL, true);
4711 qemu_chr_fe_set_handlers(&mon->chr, monitor_can_read, monitor_read,
4712 monitor_event, NULL, mon, NULL, true);
4715 monitor_list_append(mon);
4718 void monitor_cleanup(void)
4720 Monitor *mon, *next;
4723 * We need to explicitly stop the iothread (but not destroy it),
4724 * cleanup the monitor resources, then destroy the iothread since
4725 * we need to unregister from chardev below in
4726 * monitor_data_destroy(), and chardev is not thread-safe yet
4728 iothread_stop(mon_global.mon_iothread);
4731 * After we have IOThread to send responses, it's possible that
4732 * when we stop the IOThread there are still replies queued in the
4733 * responder queue. Flush all of them. Note that even after this
4734 * flush it's still possible that out buffer is not flushed.
4735 * It'll be done in below monitor_flush() as the last resort.
4737 monitor_qmp_bh_responder(NULL);
4739 qemu_mutex_lock(&monitor_lock);
4740 QTAILQ_FOREACH_SAFE(mon, &mon_list, entry, next) {
4741 QTAILQ_REMOVE(&mon_list, mon, entry);
4743 monitor_data_destroy(mon);
4746 qemu_mutex_unlock(&monitor_lock);
4748 /* QEMUBHs needs to be deleted before destroying the IOThread. */
4749 qemu_bh_delete(mon_global.qmp_dispatcher_bh);
4750 mon_global.qmp_dispatcher_bh = NULL;
4751 qemu_bh_delete(mon_global.qmp_respond_bh);
4752 mon_global.qmp_respond_bh = NULL;
4754 iothread_destroy(mon_global.mon_iothread);
4755 mon_global.mon_iothread = NULL;
4758 QemuOptsList qemu_mon_opts = {
4760 .implied_opt_name = "chardev",
4761 .head = QTAILQ_HEAD_INITIALIZER(qemu_mon_opts.head),
4765 .type = QEMU_OPT_STRING,
4768 .type = QEMU_OPT_STRING,
4771 .type = QEMU_OPT_BOOL,
4774 .type = QEMU_OPT_BOOL,
4776 { /* end of list */ }
4781 void qmp_rtc_reset_reinjection(Error **errp)
4783 error_setg(errp, QERR_FEATURE_DISABLED, "rtc-reset-reinjection");
4786 SevInfo *qmp_query_sev(Error **errp)
4788 error_setg(errp, QERR_FEATURE_DISABLED, "query-sev");
4792 SevLaunchMeasureInfo *qmp_query_sev_launch_measure(Error **errp)
4794 error_setg(errp, QERR_FEATURE_DISABLED, "query-sev-launch-measure");
4798 SevCapability *qmp_query_sev_capabilities(Error **errp)
4800 error_setg(errp, QERR_FEATURE_DISABLED, "query-sev-capabilities");
4805 #ifndef TARGET_S390X
4806 void qmp_dump_skeys(const char *filename, Error **errp)
4808 error_setg(errp, QERR_FEATURE_DISABLED, "dump-skeys");
4813 GICCapabilityList *qmp_query_gic_capabilities(Error **errp)
4815 error_setg(errp, QERR_FEATURE_DISABLED, "query-gic-capabilities");
4820 HotpluggableCPUList *qmp_query_hotpluggable_cpus(Error **errp)
4822 MachineState *ms = MACHINE(qdev_get_machine());
4823 MachineClass *mc = MACHINE_GET_CLASS(ms);
4825 if (!mc->has_hotpluggable_cpus) {
4826 error_setg(errp, QERR_FEATURE_DISABLED, "query-hotpluggable-cpus");
4830 return machine_query_hotpluggable_cpus(ms);
projects / qemu.git / blob