projects / soc.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
history | raw | HEAD
first cut at qemu memory dump and compare
[soc.git] / src / soc / simulator / qemu.py
1 from pygdbmi.gdbcontroller import GdbController
2 import subprocess
3
4 launch_args = ['qemu-system-ppc64',
5 '-machine', 'powernv9',
6 '-nographic',
7 '-s', '-S']
8
9
10 class QemuController:
11 def __init__(self, kernel):
12 args = launch_args + ['-kernel', kernel]
13 self.qemu_popen = subprocess.Popen(args,
14 stdout=subprocess.PIPE,
15 stdin=subprocess.PIPE)
16 self.gdb = GdbController(gdb_path='powerpc64-linux-gnu-gdb')
17
18 def __enter__(self):
19 return self
20
21 def __exit__(self, type, value, traceback):
22 self.exit()
23
24 def connect(self):
25 return self.gdb.write('-target-select remote localhost:1234')
26
27 def break_address(self, addr):
28 cmd = '-break-insert *0x{:x}'.format(addr)
29 return self.gdb.write(cmd)
30
31 def delete_breakpoint(self, breakpoint=None):
32 breakstring = ''
33 if breakpoint:
34 breakstring = f' {breakpoint}'
35 return self.gdb.write('-break-delete' + breakstring)
36
37 def get_mem(self, addr, nbytes):
38 res = self.gdb.write("-data-read-memory %d u 8 1 %d" % (addr, nbytes))
39 print ("get_mem", res)
40 for x in res:
41 if(x["type"]=="result"):
42 return x['payload']['memory'][0]['data']
43 return None
44
45 def get_registers(self):
46 return self.gdb.write('-data-list-register-values x')
47
48 def _get_register(self, fmt):
49 res = self.gdb.write('-data-list-register-values '+fmt,
50 timeout_sec=1.0) # increase this timeout if needed
51 for x in res:
52 if(x["type"]=="result"):
53 assert 'register-values' in x['payload']
54 return int(x['payload']['register-values'][0]['value'], 0)
55 return None
56
57 # TODO: use -data-list-register-names instead of hardcoding the values
58 def get_pc(self): return self._get_register('x 64')
59 def get_msr(self): return self._get_register('x 65')
60 def get_cr(self): return self._get_register('x 66')
61 def get_lr(self): return self._get_register('x 67')
62 def get_ctr(self): return self._get_register('x 68') # probably
63 def get_xer(self): return self._get_register('x 69')
64 def get_fpscr(self): return self._get_register('x 70')
65 def get_mq(self): return self._get_register('x 71')
66 def get_register(self, num):
67 return self._get_register('x {}'.format(num))
68
69 def step(self):
70 return self.gdb.write('-exec-next-instruction')
71
72 def gdb_continue(self):
73 return self.gdb.write('-exec-continue')
74
75 def gdb_eval(self, expr):
76 return self.gdb.write(f'-data-evaluate-expression {expr}')
77
78 def exit(self):
79 self.gdb.exit()
80 self.qemu_popen.kill()
81 outs, errs = self.qemu_popen.communicate()
82 self.qemu_popen.stdout.close()
83 self.qemu_popen.stdin.close()
84
85
86 def run_program(program):
87 q = QemuController(program.binfile.name)
88 q.connect()
89 # Run to the start of the program
90 q.break_address(0x20000000)
91 q.gdb_continue()
92 # set the CR to 0, matching the simulator
93 q.gdb_eval('$cr=0')
94 # delete the previous breakpoint so loops don't screw things up
95 q.delete_breakpoint()
96 # run to completion
97 q.break_address(0x20000000 + program.size())
98 q.gdb_continue()
99 return q
100
101
102 if __name__ == '__main__':
103 q = QemuController("qemu_test/kernel.bin")
104 q.connect()
105 q.break_address(0x20000000)
106 q.gdb_continue()
107 print(q.get_register(1))
108 print(q.step())
109 print(q.get_register(1))
110 q.exit()