2 * SPDX-License-Identifier: MIT-CMU
4 * Mach Operating System
5 * Copyright (c) 1991,1990 Carnegie Mellon University
8 * Permission to use, copy, modify and distribute this software and its
9 * documentation is hereby granted, provided that both the copyright
10 * notice and this permission notice appear in all copies of the
11 * software, derivative works or modified versions, and any portions
12 * thereof, and that both notices appear in supporting documentation.
14 * CARNEGIE MELLON ALLOWS FREE USE OF THIS SOFTWARE IN ITS
15 * CONDITION. CARNEGIE MELLON DISCLAIMS ANY LIABILITY OF ANY KIND FOR
16 * ANY DAMAGES WHATSOEVER RESULTING FROM THE USE OF THIS SOFTWARE.
18 * Carnegie Mellon requests users of this software to return to
20 * Software Distribution Coordinator or Software.Distribution@CS.CMU.EDU
21 * School of Computer Science
22 * Carnegie Mellon University
23 * Pittsburgh PA 15213-3890
25 * any improvements or extensions that they make and grant Carnegie the
26 * rights to redistribute these changes.
29 * Author: David B. Golub, Carnegie Mellon University
36 #include <sys/cdefs.h>
37 #include <sys/param.h>
40 #include <sys/eventhandler.h>
42 #include <sys/kernel.h>
43 #include <sys/linker_set.h>
45 #include <sys/mutex.h>
47 #include <sys/reboot.h>
48 #include <sys/signalvar.h>
49 #include <sys/systm.h>
50 #include <sys/watchdog.h>
53 #include <ddb/db_command.h>
54 #include <ddb/db_lex.h>
55 #include <ddb/db_output.h>
57 #include <machine/cpu.h>
58 #include <machine/setjmp.h>
60 #include <security/mac/mac_framework.h>
63 * Exported global variables
67 db_addr_t db_last_addr;
71 static db_cmdfcn_t db_dump;
72 static db_cmdfcn_t db_fncall;
73 static db_cmdfcn_t db_gdb;
74 static db_cmdfcn_t db_halt;
75 static db_cmdfcn_t db_kill;
76 static db_cmdfcn_t db_reset;
77 static db_cmdfcn_t db_stack_trace;
78 static db_cmdfcn_t db_stack_trace_active;
79 static db_cmdfcn_t db_stack_trace_all;
80 static db_cmdfcn_t db_watchdog;
82 #define DB_CMD(_name, _func, _flags) \
89 #define DB_TABLE(_name, _more) \
96 static struct db_command db_show_active_cmds[] = {
97 DB_CMD("trace", db_stack_trace_active, DB_CMD_MEMSAFE),
99 struct db_command_table db_show_active_table =
100 LIST_HEAD_INITIALIZER(db_show_active_table);
102 static struct db_command db_show_all_cmds[] = {
103 DB_CMD("trace", db_stack_trace_all, DB_CMD_MEMSAFE),
105 struct db_command_table db_show_all_table =
106 LIST_HEAD_INITIALIZER(db_show_all_table);
108 static struct db_command db_show_cmds[] = {
109 DB_TABLE("active", &db_show_active_table),
110 DB_TABLE("all", &db_show_all_table),
111 DB_CMD("registers", db_show_regs, DB_CMD_MEMSAFE),
112 DB_CMD("breaks", db_listbreak_cmd, DB_CMD_MEMSAFE),
113 DB_CMD("threads", db_show_threads, DB_CMD_MEMSAFE),
115 struct db_command_table db_show_table = LIST_HEAD_INITIALIZER(db_show_table);
117 static struct db_command db_cmds[] = {
118 DB_TABLE("show", &db_show_table),
119 DB_CMD("print", db_print_cmd, 0),
120 DB_CMD("p", db_print_cmd, 0),
121 DB_CMD("examine", db_examine_cmd, CS_SET_DOT),
122 DB_CMD("x", db_examine_cmd, CS_SET_DOT),
123 DB_CMD("search", db_search_cmd, CS_OWN|CS_SET_DOT),
124 DB_CMD("set", db_set_cmd, CS_OWN|DB_CMD_MEMSAFE),
125 DB_CMD("write", db_write_cmd, CS_MORE|CS_SET_DOT),
126 DB_CMD("w", db_write_cmd, CS_MORE|CS_SET_DOT),
127 DB_CMD("delete", db_delete_cmd, 0),
128 DB_CMD("d", db_delete_cmd, 0),
129 DB_CMD("dump", db_dump, DB_CMD_MEMSAFE),
130 DB_CMD("break", db_breakpoint_cmd, 0),
131 DB_CMD("b", db_breakpoint_cmd, 0),
132 DB_CMD("dwatch", db_deletewatch_cmd, 0),
133 DB_CMD("watch", db_watchpoint_cmd, CS_MORE),
134 DB_CMD("dhwatch", db_deletehwatch_cmd, 0),
135 DB_CMD("hwatch", db_hwatchpoint_cmd, 0),
136 DB_CMD("step", db_single_step_cmd, DB_CMD_MEMSAFE),
137 DB_CMD("s", db_single_step_cmd, DB_CMD_MEMSAFE),
138 DB_CMD("continue", db_continue_cmd, DB_CMD_MEMSAFE),
139 DB_CMD("c", db_continue_cmd, DB_CMD_MEMSAFE),
140 DB_CMD("until", db_trace_until_call_cmd, DB_CMD_MEMSAFE),
141 DB_CMD("next", db_trace_until_matching_cmd, DB_CMD_MEMSAFE),
142 DB_CMD("match", db_trace_until_matching_cmd, 0),
143 DB_CMD("trace", db_stack_trace, CS_OWN|DB_CMD_MEMSAFE),
144 DB_CMD("t", db_stack_trace, CS_OWN|DB_CMD_MEMSAFE),
145 /* XXX alias for active trace */
146 DB_CMD("acttrace", db_stack_trace_active, DB_CMD_MEMSAFE),
147 /* XXX alias for all trace */
148 DB_CMD("alltrace", db_stack_trace_all, DB_CMD_MEMSAFE),
149 DB_CMD("where", db_stack_trace, CS_OWN|DB_CMD_MEMSAFE),
150 DB_CMD("bt", db_stack_trace, CS_OWN|DB_CMD_MEMSAFE),
151 DB_CMD("call", db_fncall, CS_OWN),
152 DB_CMD("ps", db_ps, DB_CMD_MEMSAFE),
153 DB_CMD("gdb", db_gdb, 0),
154 DB_CMD("halt", db_halt, DB_CMD_MEMSAFE),
155 DB_CMD("reboot", db_reset, DB_CMD_MEMSAFE),
156 DB_CMD("reset", db_reset, DB_CMD_MEMSAFE),
157 DB_CMD("kill", db_kill, CS_OWN|DB_CMD_MEMSAFE),
158 DB_CMD("watchdog", db_watchdog, CS_OWN|DB_CMD_MEMSAFE),
159 DB_CMD("thread", db_set_thread, 0),
160 DB_CMD("run", db_run_cmd, CS_OWN|DB_CMD_MEMSAFE),
161 DB_CMD("script", db_script_cmd, CS_OWN|DB_CMD_MEMSAFE),
162 DB_CMD("scripts", db_scripts_cmd, DB_CMD_MEMSAFE),
163 DB_CMD("unscript", db_unscript_cmd, CS_OWN|DB_CMD_MEMSAFE),
164 DB_CMD("capture", db_capture_cmd, CS_OWN|DB_CMD_MEMSAFE),
165 DB_CMD("textdump", db_textdump_cmd, CS_OWN|DB_CMD_MEMSAFE),
166 DB_CMD("findstack", db_findstack_cmd, 0),
168 struct db_command_table db_cmd_table = LIST_HEAD_INITIALIZER(db_cmd_table);
173 static struct db_command *db_last_command = NULL;
176 * if 'ed' style: 'dot' is set at start of last item printed,
177 * and '+' points to next line.
178 * Otherwise: 'dot' points to next item, '..' points to last.
180 static bool db_ed_style = true;
183 * Utility routine - discard tokens through end-of-line.
196 * Results of command search.
201 #define CMD_AMBIGUOUS 3
204 static void db_cmd_match(char *name, struct db_command *cmd,
205 struct db_command **cmdp, int *resultp);
206 static void db_cmd_list(struct db_command_table *table);
207 static int db_cmd_search(char *name, struct db_command_table *table,
208 struct db_command **cmdp);
209 static void db_command(struct db_command **last_cmdp,
210 struct db_command_table *cmd_table, bool dopager);
213 * Initialize the command lists from the static tables.
216 db_command_init(void)
220 for (i = 0; i < nitems(db_cmds); i++)
221 db_command_register(&db_cmd_table, &db_cmds[i]);
222 for (i = 0; i < nitems(db_show_cmds); i++)
223 db_command_register(&db_show_table, &db_show_cmds[i]);
224 for (i = 0; i < nitems(db_show_active_cmds); i++)
225 db_command_register(&db_show_active_table,
226 &db_show_active_cmds[i]);
227 for (i = 0; i < nitems(db_show_all_cmds); i++)
228 db_command_register(&db_show_all_table, &db_show_all_cmds[i]);
232 * Register a command.
235 db_command_register(struct db_command_table *list, struct db_command *cmd)
237 struct db_command *c, *last;
240 if (mac_ddb_command_register(list, cmd)) {
241 printf("%s: MAC policy refused registration of command %s\n",
242 __func__, cmd->name);
247 LIST_FOREACH(c, list, next) {
248 int n = strcmp(cmd->name, c->name);
250 /* Check that the command is not already present. */
252 printf("%s: Warning, the command \"%s\" already exists;"
253 " ignoring request\n", __func__, cmd->name);
257 /* NB: keep list sorted lexicographically */
258 LIST_INSERT_BEFORE(c, cmd, next);
264 LIST_INSERT_HEAD(list, cmd, next);
266 LIST_INSERT_AFTER(last, cmd, next);
270 * Remove a command previously registered with db_command_register.
273 db_command_unregister(struct db_command_table *list, struct db_command *cmd)
275 struct db_command *c;
277 LIST_FOREACH(c, list, next) {
279 LIST_REMOVE(cmd, next);
283 /* NB: intentionally quiet */
287 * Helper function to match a single command.
290 db_cmd_match(char *name, struct db_command *cmd, struct db_command **cmdp,
298 while ((c = *lp) == *rp) {
302 *resultp = CMD_UNIQUE;
309 /* end of name, not end of command -
311 if (*resultp == CMD_FOUND) {
312 *resultp = CMD_AMBIGUOUS;
313 /* but keep looking for a full match -
314 this lets us match single letters */
315 } else if (*resultp == CMD_NONE) {
317 *resultp = CMD_FOUND;
323 * Search for command prefix.
326 db_cmd_search(char *name, struct db_command_table *table,
327 struct db_command **cmdp)
329 struct db_command *cmd;
330 int result = CMD_NONE;
332 LIST_FOREACH(cmd, table, next) {
333 db_cmd_match(name,cmd,cmdp,&result);
334 if (result == CMD_UNIQUE)
338 if (result == CMD_NONE) {
339 /* check for 'help' */
340 if (name[0] == 'h' && name[1] == 'e'
341 && name[2] == 'l' && name[3] == 'p')
348 db_cmd_list(struct db_command_table *table)
350 struct db_command *cmd;
351 int have_subcommands;
353 have_subcommands = 0;
354 LIST_FOREACH(cmd, table, next) {
355 if (cmd->more != NULL)
357 db_printf("%-16s", cmd->name);
361 if (have_subcommands > 0) {
362 db_printf("\nThe following have subcommands; append \"help\" "
363 "to list (e.g. \"show help\"):\n");
364 LIST_FOREACH(cmd, table, next) {
365 if (cmd->more == NULL)
367 db_printf("%-16s", cmd->name);
374 db_command(struct db_command **last_cmdp, struct db_command_table *cmd_table,
377 char modif[TOK_STRING_SIZE];
378 struct db_command *cmd = NULL;
379 db_expr_t addr, count;
381 bool have_addr = false;
385 /* empty line repeats last command, at 'next' */
387 addr = (db_expr_t)db_next;
391 } else if (t == tEXCL) {
392 db_fncall((db_expr_t)0, false, (db_expr_t)0, NULL);
394 } else if (t != tIDENT) {
395 db_printf("Unrecognized input; use \"help\" "
396 "to list available commands\n");
403 while (cmd_table != NULL) {
404 result = db_cmd_search(db_tok_string, cmd_table, &cmd);
407 db_printf("No such command; use \"help\" "
408 "to list available commands\n");
412 db_printf("Ambiguous\n");
416 if (cmd_table == &db_cmd_table) {
417 db_printf("This is ddb(4), the kernel debugger; "
418 "see https://man.FreeBSD.org/ddb/4 for help.\n");
419 db_printf("Use \"bt\" for backtrace, \"dump\" for "
420 "kernel core dump, \"reset\" to reboot.\n");
421 db_printf("Available commands:\n");
423 db_cmd_list(cmd_table);
430 if ((cmd_table = cmd->more) != NULL) {
433 db_printf("Subcommand required; "
434 "available subcommands:\n");
435 db_cmd_list(cmd_table);
442 if ((cmd->flag & CS_OWN) == 0) {
445 * command [/modifier] [addr] [,count]
451 db_printf("Bad modifier\n");
455 db_strcpy(modif, db_tok_string);
461 if (db_expression(&addr)) {
462 db_dot = (db_addr_t) addr;
463 db_last_addr = db_dot;
466 addr = (db_expr_t) db_dot;
472 if (!db_expression(&count)) {
473 db_printf("Count missing\n");
482 if ((cmd->flag & CS_MORE) == 0) {
491 if (mac_ddb_command_exec(cmd, addr, have_addr, count, modif)) {
492 db_printf("MAC prevented execution of command %s\n",
498 * Execute the command.
504 (*cmd->fcn)(addr, have_addr, count, modif);
508 if (cmd->flag & CS_SET_DOT) {
510 * If command changes dot, set dot to previous address
511 * displayed (if 'ed' style).
513 db_dot = db_ed_style ? db_prev : db_next;
516 * If command does not change dot, set 'next' location
525 * At least one non-optional command must be implemented using
526 * DB_COMMAND() so that db_cmd_set gets created. Here is one.
528 DB_COMMAND_FLAGS(panic, db_panic, DB_CMD_MEMSAFE)
531 panic("from debugger");
535 db_command_loop(void)
538 * Initialize 'prev' and 'next' to dot.
543 db_cmd_loop_done = 0;
544 while (!db_cmd_loop_done) {
545 if (db_print_position() != 0)
549 (void)db_read_line();
551 db_command(&db_last_command, &db_cmd_table, /* dopager */ true);
556 * Execute a command on behalf of a script. The caller is responsible for
557 * making sure that the command string is < DB_MAXLINE or it will be
560 * XXXRW: Runs by injecting faked input into DDB input stream; it would be
561 * nicer to use an alternative approach that didn't mess with the previous
565 db_command_script(const char *command)
567 db_prev = db_next = db_dot;
568 db_inject_line(command);
569 db_command(&db_last_command, &db_cmd_table, /* dopager */ false);
573 db_error(const char *s)
578 kdb_reenter_silent();
582 db_dump(db_expr_t dummy, bool dummy2, db_expr_t dummy3, char *dummy4)
586 if (textdump_pending) {
587 db_printf("textdump_pending set.\n"
588 "run \"textdump unset\" first or \"textdump dump\" for a textdump.\n");
591 error = doadump(false);
593 db_printf("Cannot dump: ");
596 db_printf("debugger got invoked while dumping.\n");
599 db_printf("no dump device specified.\n");
602 db_printf("unknown error (error=%d).\n", error);
609 * Call random function:
613 /* The generic implementation supports a maximum of 10 arguments. */
614 typedef db_expr_t __db_f(db_expr_t, db_expr_t, db_expr_t, db_expr_t,
615 db_expr_t, db_expr_t, db_expr_t, db_expr_t, db_expr_t, db_expr_t);
618 db_fncall_generic(db_expr_t addr, db_expr_t *rv, int nargs, db_expr_t args[])
620 __db_f *f = (__db_f *)addr;
623 db_printf("Too many arguments (max 10)\n");
626 *rv = (*f)(args[0], args[1], args[2], args[3], args[4], args[5],
627 args[6], args[7], args[8], args[9]);
632 db_fncall(db_expr_t dummy1, bool dummy2, db_expr_t dummy3, char *dummy4)
635 db_expr_t args[DB_MAXARGS];
640 if (!db_expression(&fn_addr)) {
641 db_printf("Bad function\n");
648 if (db_expression(&args[0])) {
650 while ((t = db_read_token()) == tCOMMA) {
651 if (nargs == DB_MAXARGS) {
652 db_printf("Too many arguments (max %d)\n", DB_MAXARGS);
656 if (!db_expression(&args[nargs])) {
657 db_printf("Argument missing\n");
665 if (db_read_token() != tRPAREN) {
666 db_printf("Mismatched parens\n");
674 if (DB_CALL(fn_addr, &retval, nargs, args))
675 db_printf("= %#lr\n", (long)retval);
679 db_halt(db_expr_t dummy, bool dummy2, db_expr_t dummy3, char *dummy4)
686 db_kill(db_expr_t dummy1, bool dummy2, db_expr_t dummy3, char *dummy4)
688 db_expr_t old_radix, pid, sig;
691 #define DB_ERROR(f) do { db_printf f; db_flush_lex(); goto out; } while (0)
694 * PIDs and signal numbers are typically represented in base
695 * 10, so make that the default here. It can, of course, be
696 * overridden by specifying a prefix.
698 old_radix = db_radix;
700 /* Retrieve arguments. */
701 if (!db_expression(&sig))
702 DB_ERROR(("Missing signal number\n"));
703 if (!db_expression(&pid))
704 DB_ERROR(("Missing process ID\n"));
706 if (!_SIG_VALID(sig))
707 DB_ERROR(("Signal number out of range\n"));
710 * Find the process in question. allproc_lock is not needed
711 * since we're in DDB.
713 /* sx_slock(&allproc_lock); */
714 FOREACH_PROC_IN_SYSTEM(p)
717 /* sx_sunlock(&allproc_lock); */
719 DB_ERROR(("Can't find process with pid %ld\n", (long) pid));
721 /* If it's already locked, bail; otherwise, do the deed. */
722 if (PROC_TRYLOCK(p) == 0)
723 DB_ERROR(("Can't lock process with pid %ld\n", (long) pid));
725 pksignal(p, sig, NULL);
730 db_radix = old_radix;
735 * Reboot. In case there is an additional argument, take it as delay in
736 * seconds. Default to 15s if we cannot parse it and make sure we will
737 * never wait longer than 1 week. Some code is similar to
738 * kern_shutdown.c:shutdown_panic().
740 #ifndef DB_RESET_MAXDELAY
741 #define DB_RESET_MAXDELAY (3600 * 24 * 7)
745 db_reset(db_expr_t addr, bool have_addr, db_expr_t count __unused,
751 delay = (int)db_hex2dec(addr);
753 /* If we parse to fail, use 15s. */
757 /* Cap at one week. */
758 if ((uintmax_t)delay > (uintmax_t)DB_RESET_MAXDELAY)
759 delay = DB_RESET_MAXDELAY;
761 db_printf("Automatic reboot in %d seconds - "
762 "press a key on the console to abort\n", delay);
763 for (loop = delay * 10; loop > 0; --loop) {
764 DELAY(1000 * 100); /* 1/10th second */
765 /* Did user type a key? */
766 if (cncheckc() != -1)
772 * Conditionally try the standard reboot path, so any registered
773 * shutdown/reset handlers have a chance to run first. Some platforms
774 * may not support the machine-dependent mechanism used by cpu_reset()
775 * and rely on some other non-standard mechanism to perform the reset.
776 * For example, the BCM2835 watchdog driver or gpio-poweroff driver.
778 if (modif[0] != 's') {
779 kern_reboot(RB_NOSYNC);
787 db_watchdog(db_expr_t dummy1, bool dummy2, db_expr_t dummy3, char *dummy4)
789 db_expr_t old_radix, tout;
792 old_radix = db_radix;
794 err = db_expression(&tout);
796 db_radix = old_radix;
798 /* If no argument is provided the watchdog will just be disabled. */
800 db_printf("No argument provided, disabling watchdog\n");
802 } else if ((tout & WD_INTERVAL) == WD_TO_NEVER) {
803 db_error("Out of range watchdog interval\n");
806 EVENTHANDLER_INVOKE(watchdog_list, tout, &i);
810 db_gdb(db_expr_t dummy1, bool dummy2, db_expr_t dummy3, char *dummy4)
813 if (kdb_dbbe_select("gdb") != 0) {
814 db_printf("The remote GDB backend could not be selected.\n");
818 * Mark that we are done in the debugger. kdb_trap()
819 * should re-enter with the new backend.
821 db_cmd_loop_done = 1;
822 db_printf("(ctrl-c will return control to ddb)\n");
826 db_stack_trace(db_expr_t tid, bool hastid, db_expr_t count, char *modif)
834 * We parse our own arguments. We don't like the default radix.
838 hastid = db_expression(&tid);
841 if (!db_expression(&count)) {
842 db_printf("Count missing\n");
855 td = kdb_thr_lookup((lwpid_t)tid);
857 td = kdb_thr_from_pid((pid_t)tid);
859 db_printf("Thread %d not found\n", (int)tid);
864 if (td->td_proc != NULL)
865 pid = td->td_proc->p_pid;
868 db_printf("Tracing pid %d tid %ld td %p\n", pid, (long)td->td_tid, td);
869 if (td->td_proc != NULL && (td->td_proc->p_flag & P_INMEM) == 0)
870 db_printf("--- swapped out\n");
872 db_trace_thread(td, count);
876 _db_stack_trace_all(bool active_only)
882 for (td = kdb_thr_first(); td != NULL; td = kdb_thr_next(td)) {
883 prev_jb = kdb_jmpbuf(jb);
884 if (setjmp(jb) == 0) {
885 if (TD_IS_RUNNING(td))
886 db_printf("\nTracing command %s pid %d"
887 " tid %ld td %p (CPU %d)\n",
888 td->td_proc->p_comm, td->td_proc->p_pid,
889 (long)td->td_tid, td, td->td_oncpu);
890 else if (active_only)
893 db_printf("\nTracing command %s pid %d"
894 " tid %ld td %p\n", td->td_proc->p_comm,
895 td->td_proc->p_pid, (long)td->td_tid, td);
896 if (td->td_proc->p_flag & P_INMEM)
897 db_trace_thread(td, -1);
899 db_printf("--- swapped out\n");
910 db_stack_trace_active(db_expr_t dummy, bool dummy2, db_expr_t dummy3,
914 _db_stack_trace_all(true);
918 db_stack_trace_all(db_expr_t dummy, bool dummy2, db_expr_t dummy3,
922 _db_stack_trace_all(false);
926 * Take the parsed expression value from the command line that was parsed
927 * as a hexadecimal value and convert it as if the expression was parsed
928 * as a decimal value. Returns -1 if the expression was not a valid
932 db_hex2dec(db_expr_t expr)
943 val += (x % 16) * (y);