From patchwork Mon Oct 14 10:49:39 2019
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
X-Patchwork-Submitter: =?utf-8?q?Alex_Benn=C3=A9e?= <alex.bennee@linaro.org>
X-Patchwork-Id: 176173
Delivered-To: patch@linaro.org
Received: by 2002:a92:7e96:0:0:0:0:0 with SMTP id q22csp4372549ill;
 Mon, 14 Oct 2019 04:20:32 -0700 (PDT)
X-Google-Smtp-Source: APXvYqw1hqKD3dxDDFkxLVFrMoZ5VbxCa7hIcTKvp5NrfaD62+dCg8aHpTrGEXCnCciG4JxbMG0b
X-Received: by 2002:a05:620a:140c:: with SMTP id
 d12mr28354668qkj.419.1571052031642; 
 Mon, 14 Oct 2019 04:20:31 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1571052031; cv=none;
 d=google.com; s=arc-20160816;
 b=B/5N1aeHlvwGY6NALAoN5fdK4g1b3tP9wmqxlr+nOUlMnpmsBndqQxH6j0UMVImrnF
 IY9RQ5gYVBtwvX44dGOu85KbysiiTxIYqcyB9z3bB/5+228cbNyCaxBm3djNUMKORo6k
 8I0IbnQlNQj4AAlJ4s9KOJ0Ub7EP9rVL/io5mSV9ZPQVBPXXvnNoce+jFIQ+BqIMtNGc
 I0H03e1woVcPIciE4NvD8+btwlHyPzjsYeuszUelPVodbVcauOidh810AT8V13vBALPT
 zie5kMmPs4m5C9VGxp99qEjYw2eo8X+PZscoVdulvOO0l5xW808Ynd+Y58eP/lkFuZVu
 cj1A==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com;
 s=arc-20160816; 
 h=sender:errors-to:cc:list-subscribe:list-help:list-post:list-archive
 :list-unsubscribe:list-id:precedence:content-transfer-encoding
 :mime-version:references:in-reply-to:message-id:date:subject:to:from
 :dkim-signature;
 bh=j/zM8w2UQVs1nwStRjcaLSLZ/8bKSPRTKMusEwFjutc=;
 b=jhq3g/fgOosg2CYQ9aOSzz/Cw7SP4YywXQ3gwJRH7fIxp15Te5sCUSgJxRkIOLCtx9
 ipSVVwBtpy1oudEBdVeQB/8Y+qNDjRw6XQ0MiTpUYGrbIJfxZaYue1rH1xyk7COdRF4A
 gBru0sd0g5re2a+VynOLfGO0zhwEpOm5LevEgXaRTsAHWMbzovcNhnlgyFaMVvbzfbBj
 QJgy9eHIkrVEi9E8HmniP3VMkDBN488uJ5+//KF4NsnOHyetccqRHTpWcmxvX97/w60Y
 DZltcf1gD7DqOrmavLMJh6S+b/Fj7eUZXIYw1MkYCp74K9yaI3ZkLukl0mvdIFLJeZaT
 N9pA==
ARC-Authentication-Results: i=1; mx.google.com;
 dkim=fail header.i=@linaro.org header.s=google header.b=Dej9oXWW;
 spf=pass (google.com: domain of
 qemu-devel-bounces+patch=linaro.org@nongnu.org designates
 209.51.188.17 as permitted sender)
 smtp.mailfrom="qemu-devel-bounces+patch=linaro.org@nongnu.org";
 dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=linaro.org
Return-Path: <qemu-devel-bounces+patch=linaro.org@nongnu.org>
Received: from lists.gnu.org (lists.gnu.org. [209.51.188.17])
 by mx.google.com with ESMTPS id
 s9si17621964qtj.335.2019.10.14.04.20.31 for <patch@linaro.org>
 (version=TLS1_2 cipher=ECDHE-RSA-CHACHA20-POLY1305 bits=256/256);
 Mon, 14 Oct 2019 04:20:31 -0700 (PDT)
Received-SPF: pass (google.com: domain of
 qemu-devel-bounces+patch=linaro.org@nongnu.org designates
 209.51.188.17 as permitted sender) client-ip=209.51.188.17; 
Authentication-Results: mx.google.com;
 dkim=fail header.i=@linaro.org header.s=google header.b=Dej9oXWW;
 spf=pass (google.com: domain of
 qemu-devel-bounces+patch=linaro.org@nongnu.org designates
 209.51.188.17 as permitted sender)
 smtp.mailfrom="qemu-devel-bounces+patch=linaro.org@nongnu.org";
 dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=linaro.org
Received: from localhost ([::1]:47604 helo=lists1p.gnu.org)
 by lists.gnu.org with esmtp (Exim 4.90_1)
 (envelope-from <qemu-devel-bounces+patch=linaro.org@nongnu.org>)
 id 1iJyOs-0005tL-HO
 for patch@linaro.org; Mon, 14 Oct 2019 07:20:30 -0400
Received: from eggs.gnu.org ([2001:470:142:3::10]:45379)
 by lists.gnu.org with esmtp (Exim 4.90_1)
 (envelope-from <alex.bennee@linaro.org>) id 1iJy25-0006Uz-TZ
 for qemu-devel@nongnu.org; Mon, 14 Oct 2019 06:56:59 -0400
Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71)
 (envelope-from <alex.bennee@linaro.org>) id 1iJy22-000516-Td
 for qemu-devel@nongnu.org; Mon, 14 Oct 2019 06:56:57 -0400
Received: from mail-wm1-x341.google.com ([2a00:1450:4864:20::341]:50409)
 by eggs.gnu.org with esmtps (TLS1.0:RSA_AES_128_CBC_SHA1:16)
 (Exim 4.71) (envelope-from <alex.bennee@linaro.org>)
 id 1iJy22-00050B-Mx
 for qemu-devel@nongnu.org; Mon, 14 Oct 2019 06:56:54 -0400
Received: by mail-wm1-x341.google.com with SMTP id 5so16783210wmg.0
 for <qemu-devel@nongnu.org>; Mon, 14 Oct 2019 03:56:54 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=linaro.org; s=google; 
 h=from:to:cc:subject:date:message-id:in-reply-to:references
 :mime-version:content-transfer-encoding;
 bh=j/zM8w2UQVs1nwStRjcaLSLZ/8bKSPRTKMusEwFjutc=;
 b=Dej9oXWW14KR5gGGkav99r/Wmz4AauPLq9M20BH1yuz+s0xopUT9eT14R4P+WtVkJ4
 jkhxwWLIavpqaO1CG3hrAp45KpqN4vrxWa+8ZZuQhGdXBBG0TSWvU/5AJMPpbKbtS1Ye
 +kK2o9A5hTq20e3V7isXfbN79POE95Y0hDl3s0T0uz6pwtPiP1klI6mFtTEW7QJ/Ix99
 XYsZTIPJbRg6uP//fse7TU66GJFj6b5iGuEpswr/Iy0kge9pM0kXt6jobYhcmXPF+h1m
 Siau/ACWzmrBOwahnLMICFD6TtxJMDClVOAESaf804NmD0/IND8PMUpXv6LSZ/C2P+VH
 bUKQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=1e100.net; s=20161025;
 h=x-gm-message-state:from:to:cc:subject:date:message-id:in-reply-to
 :references:mime-version:content-transfer-encoding;
 bh=j/zM8w2UQVs1nwStRjcaLSLZ/8bKSPRTKMusEwFjutc=;
 b=nvMlr3Uc6mGF9jGSWXMscFUR1dxET57nyO2sjlL3sLjgUXPnyNJq6nq22xUJ+dEqXz
 dP3+yGYKqHcaTHdHlSkY1Ktw7cI5laDHsm/CdRN5rtS1UUT54rHxFIuT1QPUlzSK7QHg
 ClY6NFVf8UETLv7UUouo6bMQW7n+ZEjSrjplKmT4aiPErpr5dgSNwvhTEHk+0CkdI+9t
 Gi8vUcd/qCpC0qHBxklmoqnRZvvHIV5b/F8ZQfFgbopiSoaiZspYBD/FZXHfwsUHJHmQ
 a+Y3xc94nS2XQFe079Of6wPrKrzCLagU7d5qCYv56GJneJ4XgTPfnuqQ2bqxqRPCjlFP
 /hXg==
X-Gm-Message-State: APjAAAXQUQIIiJ1mSvXgkfFRs2mR2LWl9XoCeEjbrOdyMqQtdrDcF+ZY
 BcuBYu325uXH+fTggJvYaXVMemHGhLk=
X-Received: by 2002:a1c:9d4a:: with SMTP id g71mr15229671wme.26.1571050613553; 
 Mon, 14 Oct 2019 03:56:53 -0700 (PDT)
Received: from zen.linaroharston ([51.148.130.216])
 by smtp.gmail.com with ESMTPSA id
 o9sm25681893wrh.46.2019.10.14.03.56.52
 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);
 Mon, 14 Oct 2019 03:56:52 -0700 (PDT)
Received: from zen.lan (localhost [127.0.0.1])
 by zen.linaroharston (Postfix) with ESMTP id 5A1BE1FFD1;
 Mon, 14 Oct 2019 11:49:59 +0100 (BST)
From: =?utf-8?q?Alex_Benn=C3=A9e?= <alex.bennee@linaro.org>
To: qemu-devel@nongnu.org
Subject: [PATCH  v5 46/55] plugin: add qemu_plugin_insn_disas helper
Date: Mon, 14 Oct 2019 11:49:39 +0100
Message-Id: <20191014104948.4291-47-alex.bennee@linaro.org>
X-Mailer: git-send-email 2.20.1
In-Reply-To: <20191014104948.4291-1-alex.bennee@linaro.org>
References: <20191014104948.4291-1-alex.bennee@linaro.org>
MIME-Version: 1.0
X-detected-operating-system: by eggs.gnu.org: Genre and OS details not
 recognized.
X-Received-From: 2a00:1450:4864:20::341
X-BeenThere: qemu-devel@nongnu.org
X-Mailman-Version: 2.1.23
Precedence: list
List-Id: <qemu-devel.nongnu.org>
List-Unsubscribe: <https://lists.nongnu.org/mailman/options/qemu-devel>,
 <mailto:qemu-devel-request@nongnu.org?subject=unsubscribe>
List-Archive: <https://lists.nongnu.org/archive/html/qemu-devel>
List-Post: <mailto:qemu-devel@nongnu.org>
List-Help: <mailto:qemu-devel-request@nongnu.org?subject=help>
List-Subscribe: <https://lists.nongnu.org/mailman/listinfo/qemu-devel>,
 <mailto:qemu-devel-request@nongnu.org?subject=subscribe>
Cc: robert.foley@futurewei.com, Richard Henderson
 <richard.henderson@linaro.org>, peter.puhov@futurewei.com, 
 aaron@os.amperecomputing.com, cota@braap.org, =?utf-8?q?Alex_Benn?=
 =?utf-8?b?w6ll?= <alex.bennee@linaro.org>
Errors-To: qemu-devel-bounces+patch=linaro.org@nongnu.org
Sender: "Qemu-devel" <qemu-devel-bounces+patch=linaro.org@nongnu.org>

Give the plugins access to the QEMU dissasembler so they don't have to
re-invent the wheel. We generate a warning when there are spare bytes
in the decode buffer. This is usually due to the front end loading in
more bytes than decoded.

Signed-off-by: Alex Bennée <alex.bennee@linaro.org>
Reviewed-by: Richard Henderson <richard.henderson@linaro.org>

---
v5
  - fix plugin_printf to use vprintf with va
  - use __thread storage for string
  - only decode single instruction for bfd case
  - don't assert, warn_report when we have spare bytes in insn buffer
---
 disas.c                      | 110 +++++++++++++++++++++++++++++++++++
 include/disas/disas.h        |   2 +
 include/qemu/qemu-plugin.h   |   9 +++
 plugins/api.c                |   7 +++
 plugins/qemu-plugins.symbols |   1 +
 5 files changed, 129 insertions(+)

-- 
2.20.1

diff --git a/disas.c b/disas.c
index 3e2bfa572b..02f68e92ab 100644
--- a/disas.c
+++ b/disas.c
@@ -418,6 +418,7 @@ static bool cap_disas_monitor(disassemble_info *info, uint64_t pc, int count)
 # define cap_disas_target(i, p, s)  false
 # define cap_disas_host(i, p, s)  false
 # define cap_disas_monitor(i, p, c)  false
+# define cap_disas_plugin(i, p, c) false
 #endif /* CONFIG_CAPSTONE */
 
 /* Disassemble this for me please... (debugging).  */
@@ -475,6 +476,115 @@ void target_disas(FILE *out, CPUState *cpu, target_ulong code,
     }
 }
 
+static __thread GString plugin_disas_output;
+
+static int plugin_printf(FILE *stream, const char *fmt, ...)
+{
+    va_list va;
+    GString *s = &plugin_disas_output;
+    int initial_len = s->len;
+
+    va_start(va, fmt);
+    g_string_append_vprintf(s, fmt, va);
+    va_end(va);
+
+    return s->len - initial_len;
+}
+
+static void plugin_print_address(bfd_vma addr, struct disassemble_info *info)
+{
+    /* does nothing */
+}
+
+
+#ifdef CONFIG_CAPSTONE
+/* Disassemble a single instruction directly into plugin output */
+static
+bool cap_disas_plugin(disassemble_info *info, uint64_t pc, size_t size)
+{
+    uint8_t cap_buf[1024];
+    csh handle;
+    cs_insn *insn;
+    size_t csize = 0;
+    int count;
+    GString *s = &plugin_disas_output;
+
+    if (cap_disas_start(info, &handle) != CS_ERR_OK) {
+        return false;
+    }
+    insn = cap_insn;
+
+    size_t tsize = MIN(sizeof(cap_buf) - csize, size);
+    const uint8_t *cbuf = cap_buf;
+    target_read_memory(pc, cap_buf, tsize, info);
+
+    count = cs_disasm(handle, cbuf, size, 0, 1, &insn);
+
+    if (count) {
+        g_string_printf(s, "%s %s", insn->mnemonic, insn->op_str);
+    } else {
+        g_string_printf(s, "cs_disasm failed");
+    }
+
+    cs_close(&handle);
+    return true;
+}
+#endif
+
+/*
+ * We should only be dissembling one instruction at a time here. If
+ * there is left over it usually indicates the front end has read more
+ * bytes than it needed.
+ */
+char * plugin_disas(CPUState *cpu, uint64_t addr, size_t size)
+{
+    CPUClass *cc = CPU_GET_CLASS(cpu);
+    int count;
+    CPUDebug s;
+    GString *ds = g_string_set_size(&plugin_disas_output, 0);
+
+    g_assert(ds == &plugin_disas_output);
+
+    INIT_DISASSEMBLE_INFO(s.info, NULL, plugin_printf);
+
+    s.cpu = cpu;
+    s.info.read_memory_func = target_read_memory;
+    s.info.buffer_vma = addr;
+    s.info.buffer_length = size;
+    s.info.print_address_func = plugin_print_address;
+    s.info.cap_arch = -1;
+    s.info.cap_mode = 0;
+    s.info.cap_insn_unit = 4;
+    s.info.cap_insn_split = 4;
+
+#ifdef TARGET_WORDS_BIGENDIAN
+    s.info.endian = BFD_ENDIAN_BIG;
+#else
+    s.info.endian = BFD_ENDIAN_LITTLE;
+#endif
+
+    if (cc->disas_set_info) {
+        cc->disas_set_info(cpu, &s.info);
+    }
+
+    if (s.info.cap_arch >= 0 && cap_disas_plugin(&s.info, addr, size)) {
+        return g_strdup(ds->str);
+    }
+
+    if (s.info.print_insn == NULL) {
+        s.info.print_insn = print_insn_od_target;
+    }
+
+    count = s.info.print_insn(addr, &s.info);
+
+    /* The decoder probably read more than it needed it's not critical */
+    if (count < size) {
+        warn_report("%s: %zu bytes left over\n", __func__, size - count);
+    }
+
+    return g_strdup(ds->str);
+}
+
 /* Disassemble this for me please... (debugging). */
 void disas(FILE *out, void *code, unsigned long size)
 {
diff --git a/include/disas/disas.h b/include/disas/disas.h
index ba47e9197c..8481d4a8b3 100644
--- a/include/disas/disas.h
+++ b/include/disas/disas.h
@@ -14,6 +14,8 @@ void target_disas(FILE *out, CPUState *cpu, target_ulong code,
 void monitor_disas(Monitor *mon, CPUState *cpu,
                    target_ulong pc, int nb_insn, int is_physical);
 
+char * plugin_disas(CPUState *cpu, uint64_t addr, size_t size);
+
 /* Look up symbol for debugging purpose.  Returns "" if unknown. */
 const char *lookup_symbol(target_ulong orig_addr);
 #endif
diff --git a/include/qemu/qemu-plugin.h b/include/qemu/qemu-plugin.h
index d9c1ca3b4c..8b403dd615 100644
--- a/include/qemu/qemu-plugin.h
+++ b/include/qemu/qemu-plugin.h
@@ -324,6 +324,15 @@ qemu_plugin_register_vcpu_syscall_ret_cb(qemu_plugin_id_t id,
                                          qemu_plugin_vcpu_syscall_ret_cb_t cb);
 
 
+/**
+ * qemu_plugin_insn_disas() - return disassembly string for instruction
+ * @insn: instruction reference
+ *
+ * Returns an allocated string containing the disassembly
+ */
+
+char * qemu_plugin_insn_disas(const struct qemu_plugin_insn *insn);
+
 /**
  * qemu_plugin_vcpu_for_each() - iterate over the existing vCPU
  * @id: plugin ID
diff --git a/plugins/api.c b/plugins/api.c
index fbacd78df6..a9fa229369 100644
--- a/plugins/api.c
+++ b/plugins/api.c
@@ -40,6 +40,7 @@
 #include "sysemu/sysemu.h"
 #include "tcg/tcg.h"
 #include "exec/exec-all.h"
+#include "disas/disas.h"
 #include "plugin.h"
 #ifndef CONFIG_USER_ONLY
 #include "hw/boards.h"
@@ -211,6 +212,12 @@ void *qemu_plugin_insn_haddr(const struct qemu_plugin_insn *insn)
     return insn->haddr;
 }
 
+char *qemu_plugin_insn_disas(const struct qemu_plugin_insn *insn)
+{
+    CPUState *cpu = current_cpu;
+    return plugin_disas(cpu, insn->vaddr, insn->data->len);
+}
+
 /*
  * The memory queries allow the plugin to query information about a
  * memory access.
diff --git a/plugins/qemu-plugins.symbols b/plugins/qemu-plugins.symbols
index 40c0d1abd2..267ec381b4 100644
--- a/plugins/qemu-plugins.symbols
+++ b/plugins/qemu-plugins.symbols
@@ -25,6 +25,7 @@
   qemu_plugin_insn_size;
   qemu_plugin_insn_vaddr;
   qemu_plugin_insn_haddr;
+  qemu_plugin_insn_disas;
   qemu_plugin_mem_size_shift;
   qemu_plugin_mem_is_sign_extended;
   qemu_plugin_mem_is_big_endian;