from xnu import *
import xnudefines
+from scheduler import *
+
+@lldb_command('showlogstream')
+def showLogStream(cmd_args=None):
+ """
+ Dump the state of the kernel log stream
+ """
+ mbp = kern.globals.oslog_streambufp
+ print "streaming buffer space avail: {0:>#x} of {1:>#x} bytes\n".format(kern.globals.oslog_stream_buf_bytesavail, kern.globals.oslog_stream_buf_size)
+ print " read head: offset {0:>#x}\nwrite head: offset {1:>#x}\n".format(mbp.msg_bufr, mbp.msg_bufx)
+ count = 0
+ print " id timestamp offset size off+size type metadata"
+ for entry in IterateSTAILQ_HEAD(kern.globals.oslog_stream_buf_head, "buf_entries"):
+ next_start = entry.offset + entry.size
+ if (next_start > 0x1000):
+ next_start = next_start - 0x1000
+ print "{0:>4d}: {1:<d} {2:>5x} {3:>4d} {4:>5x} {5:<d} {6:<d}".format(count, entry.timestamp, entry.offset, entry.size, next_start, entry.type, entry.metadata)
+ count = count + 1
+ print "found {} entries".format(count)
+
+ count = 0
+ for entry in IterateSTAILQ_HEAD(kern.globals.oslog_stream_free_head, "buf_entries"):
+ count = count + 1
+ print "free list: {} entries".format(count)
+
+ count = 0
+ for outer in IterateSTAILQ_HEAD(kern.globals.oslog_stream_buf_head, "buf_entries"):
+ for inner in IterateSTAILQ_HEAD(kern.globals.oslog_stream_buf_head, "buf_entries"):
+ if ((outer.offset > inner.offset) and
+ (outer.offset < inner.offset + inner.size)):
+ print "error: overlapping entries: {:>3x} <--> {:>3x}".format(outer.offset, inner.offset)
+ count = count + 1
+
@lldb_command('showmcastate')
def showMCAstate(cmd_args=None):
"""
print lldb_run_command('p/x *(x86_saved_state_t *) ' + hex(reg))
cpu = cpu + 1
-def dumpTimerList(anchor):
+def dumpTimerList(mpqueue):
"""
Utility function to dump the timer entries in list (anchor).
+ anchor is a struct mpqueue_head.
"""
- entry = Cast(anchor.head, 'queue_t')
- if entry == addressof(anchor):
+
+ if mpqueue.count == 0:
print '(empty)'
return
- thdr = ' {:<22s}{:<17s}{:<16s} {:<14s} {:<18s}'
- print thdr.format('entry:','deadline','soft_deadline','to go','(*func)(param0,param1')
- while entry != addressof(anchor):
- timer_call = Cast(entry, 'timer_call_t')
- call_entry = Cast(entry, 'struct call_entry *')
- debugger_entry = kern.globals.debugger_entry_time
- if (debugger_entry < call_entry.deadline):
+ thdr = ' {:<24s}{:<17s}{:<16s} {:<14s} {:<18s} count: {:d} '
+ tval = ' {:#018x}: {:16d} {:16d} {:s}{:3d}.{:09d} ({:#018x})({:#018x}, {:#018x}) ({:s}) {:s}'
+
+ print thdr.format('Entry', 'Deadline', 'soft_deadline', 'Secs To Go', '(*func)(param0, param1)', mpqueue.count)
+
+ for timer_call in ParanoidIterateLinkageChain(mpqueue.head, 'struct timer_call *', 'tc_qlink'):
+ recent_timestamp = GetRecentTimestamp()
+ if (recent_timestamp < timer_call.tc_pqlink.deadline):
delta_sign = ' '
- timer_fire = call_entry.deadline - debugger_entry
+ timer_fire = timer_call.tc_pqlink.deadline - recent_timestamp
else:
delta_sign = '-'
- timer_fire = debugger_entry - call_entry.deadline
- tval = ' {:#018x}: {:16d} {:16d} {:s}{:3d}.{:09d} ({:#018x})({:#018x},{:#018x})'
- print tval.format(entry,
- call_entry.deadline,
- timer_call.soft_deadline,
+ timer_fire = recent_timestamp - timer_call.tc_pqlink.deadline
+
+ func_name = kern.Symbolicate(timer_call.tc_func)
+
+ extra_string = ""
+
+ strip_func = kern.StripKernelPAC(unsigned(timer_call.tc_func))
+
+ func_syms = kern.SymbolicateFromAddress(strip_func)
+ # returns an array of SBSymbol
+
+ if func_syms and func_syms[0] :
+ func_sym = func_syms[0]
+ func_name = func_sym.GetName()
+ try :
+
+ if "thread_call_delayed_timer" in func_name :
+ group = Cast(timer_call.tc_param0, 'struct thread_call_group *')
+ flavor = Cast(timer_call.tc_param1, 'thread_call_flavor_t')
+
+ # There's got to be a better way to stringify the enum
+ flavorname = str(flavor).partition(" = ")[2]
+
+ extra_string += "{:s} {:s}".format(group.tcg_name, flavorname)
+
+ if "thread_timer_expire" in func_name :
+ thread = Cast(timer_call.tc_param0, 'thread_t')
+
+ tid = thread.thread_id
+ name = GetThreadName(thread)
+ pid = GetProcPIDForTask(thread.task)
+ procname = GetProcNameForTask(thread.task)
+
+ extra_string += "thread: 0x{:x} {:s} task:{:s}[{:d}]".format(
+ tid, name, procname, pid)
+ except:
+ print "exception generating extra_string for call: {:#018x}".format(timer_call)
+ if dumpTimerList.enable_debug :
+ raise
+
+ tval = ' {:#018x}: {:16d} {:16d} {:s}{:3d}.{:09d} ({:#018x})({:#018x},{:#018x}) ({:s}) {:s}'
+ print tval.format(timer_call,
+ timer_call.tc_pqlink.deadline,
+ timer_call.tc_soft_deadline,
delta_sign,
timer_fire/1000000000,
timer_fire%1000000000,
- call_entry.func,
- call_entry.param0,
- call_entry.param1)
- entry = entry.next
+ timer_call.tc_func,
+ timer_call.tc_param0,
+ timer_call.tc_param1,
+ func_name, extra_string)
+
+dumpTimerList.enable_debug = False
+
+def GetCpuDataForCpuID(cpu_id):
+ """
+ Find struct cpu_data for a CPU
+ ARM is complicated
+ """
+ if kern.arch == 'x86_64':
+ cpu_data = kern.globals.cpu_data_ptr[cpu_id]
+ return cpu_data
+ elif kern.arch.startswith('arm'):
+ data_entries_addr = kern.GetLoadAddressForSymbol('CpuDataEntries')
+ data_entries = kern.GetValueFromAddress(data_entries_addr, 'cpu_data_entry_t *')
+ data_entry = data_entries[cpu_id];
+ cpu_data_addr = data_entry.cpu_data_vaddr
+ return Cast(cpu_data_addr, 'cpu_data_t*')
@lldb_command('longtermtimers')
def longtermTimers(cmd_args=None):
"""
Print details of long-term timers and stats.
"""
- if kern.arch != 'x86_64':
- print "Not available for current architecture."
- return
lt = kern.globals.timer_longterm
ltt = lt.threshold
- EndofAllTime = -1
- if ltt.interval == EndofAllTime:
+ EndofAllTime = long(-1)
+ if long(ltt.interval) == EndofAllTime:
print "Longterm timers disabled"
return
print ' enqueues/escalates : {:d}' .format(ratio)
print ' threshold.interval : {:d}' .format(ltt.interval)
print ' threshold.margin : {:d}' .format(ltt.margin)
- print ' scan_time : {:d}' .format(lt.scan_time)
- if ltt.preempted == EndofAllTime:
+ print ' scan_time : {:#018x} ({:d})'.format(lt.scan_time, lt.scan_time)
+ if long(ltt.preempted) == EndofAllTime:
print ' threshold.preempted : None'
else:
- print ' threshold.preempted : {:d}' .format(ltt.preempted)
- if ltt.deadline == EndofAllTime:
+ print ' threshold.preempted : {:#018x} ({:d})'.format(ltt.preempted, ltt.preempted)
+ if long(ltt.deadline) == EndofAllTime:
print ' threshold.deadline : None'
else:
- print ' threshold.deadline : {:d}' .format(ltt.deadline)
+ print ' threshold.deadline : {:#018x} ({:d})'.format(ltt.deadline, ltt.deadline)
print ' threshold.call : {:#018x}'.format(ltt.call)
- print ' actual deadline set : {:d}' .format(ltt.deadline_set)
+ print ' actual deadline set : {:#018x} ({:d})'.format(ltt.deadline_set, ltt.deadline_set)
print ' threshold.scans : {:d}' .format(ltt.scans)
print ' threshold.preempts : {:d}' .format(ltt.preempts)
print ' threshold.latency : {:d}' .format(ltt.latency)
Print details of processor timers, noting anything suspicious
Also include long-term timer details
"""
- hdr = '{:<32s}{:<18s} {:<18s} {:<18s}'
- print hdr.format('Processor','Last dispatch','Next deadline','difference')
+ hdr = '{:15s}{:<18s} {:<18s} {:<18s} {:<18s}'
+ print hdr.format('Processor #', 'Processor pointer', 'Last dispatch', 'Next deadline', 'Difference')
+ print "=" * 82
p = kern.globals.processor_list
+ EndOfAllTime = long(-1)
while p:
cpu = p.cpu_id
- rt_timer = kern.globals.cpu_data_ptr[cpu].rtclock_timer
- diff = p.last_dispatch - rt_timer.deadline
- tmr = 'Processor {:d}: {:#018x} {:#018x} {:#018x} {:#018x} {:s}'
+ cpu_data = GetCpuDataForCpuID(cpu)
+ rt_timer = cpu_data.rtclock_timer
+ diff = long(rt_timer.deadline) - long(p.last_dispatch)
+ valid_deadline = long(rt_timer.deadline) != EndOfAllTime
+ tmr = 'Processor {:<3d}: {:#018x} {:#018x} {:18s} {:18s} {:s}'
print tmr.format(cpu,
p,
p.last_dispatch,
- rt_timer.deadline,
- diff,
- ['probably BAD', '(ok)'][int(diff < 0)])
- if kern.arch == 'x86_64':
- print 'Next deadline set at: {:#018x}. Timer call list:'.format(rt_timer.when_set)
+ "{:#018x}".format(rt_timer.deadline) if valid_deadline else "None",
+ "{:#018x}".format(diff) if valid_deadline else "N/A",
+ ['(PAST DEADLINE)', '(ok)'][int(diff > 0)] if valid_deadline else "")
+ if valid_deadline:
+ if kern.arch == 'x86_64':
+ print 'Next deadline set at: {:#018x}. Timer call list:'.format(rt_timer.when_set)
dumpTimerList(rt_timer.queue)
p = p.processor_list
+ print "-" * 82
longtermTimers()
+ ShowRunningTimers()
@lldb_command('showtimerwakeupstats')
print dereference(task)
print '{:d}({:s}), terminated thread timer wakeups: {:d} {:d} 2ms: {:d} 5ms: {:d} UT: {:d} ST: {:d}'.format(
proc.p_pid,
- proc.p_comm,
+ GetProcName(proc),
# Commented-out references below to be addressed by rdar://13009660.
0, #task.task_interrupt_wakeups,
0, #task.task_platform_idle_wakeups,
tot_wakes = 0 #task.task_interrupt_wakeups
tot_platform_wakes = 0 #task.task_platform_idle_wakeups
for thread in IterateQueue(task.threads, 'thread_t', 'task_threads'):
-# if thread.thread_interrupt_wakeups == 0:
-# continue
+## if thread.thread_interrupt_wakeups == 0:
+## continue
print '\tThread ID 0x{:x}, Tag 0x{:x}, timer wakeups: {:d} {:d} {:d} {:d} <2ms: {:d}, <5ms: {:d} UT: {:d} ST: {:d}'.format(
thread.thread_id,
thread.thread_tag,
print 'Task total wakeups: {:d} {:d}'.format(
tot_wakes, tot_platform_wakes)
+@lldb_command('showrunningtimers')
+def ShowRunningTimers(cmd_args=None):
+ """
+ Print the state of all running timers.
+
+ Usage: showrunningtimers
+ """
+ pset = addressof(kern.globals.pset0)
+ processor_array = kern.globals.processor_array
+
+ i = 0
+ while processor_array[i] != 0:
+ processor = processor_array[i]
+ print('{}: {}'.format(
+ i, 'on' if processor.running_timers_active else 'off'))
+ print('\tquantum: {}'.format(
+ unsigned(processor.running_timers[0].tc_pqlink.deadline)))
+ print('\tkperf: {}'.format(
+ unsigned(processor.running_timers[1].tc_pqlink.deadline)))
+ i += 1
+
def DoReadMsr64(msr_address, lcpu):
""" Read a 64-bit MSR from the specified CPU
Params:
if not DoWriteMsr64(msr_address, lcpu, write_val):
print "writemsr64 FAILED"
-def GetEVFlags(debug_arg):
- """ Return the EV Flags for the given kernel debug arg value
- params:
- debug_arg - value from arg member of kernel debug buffer entry
- returns:
- str - string representing the EV Flag for given input arg value
- """
- out_str = ""
- if debug_arg & 1:
- out_str += "EV_RE "
- if debug_arg & 2:
- out_str += "EV_WR "
- if debug_arg & 4:
- out_str += "EV_EX "
- if debug_arg & 8:
- out_str += "EV_RM "
- if debug_arg & 0x00100:
- out_str += "EV_RBYTES "
- if debug_arg & 0x00200:
- out_str += "EV_WBYTES "
- if debug_arg & 0x00400:
- out_str += "EV_RCLOSED "
- if debug_arg & 0x00800:
- out_str += "EV_RCONN "
- if debug_arg & 0x01000:
- out_str += "EV_WCLOSED "
- if debug_arg & 0x02000:
- out_str += "EV_WCONN "
- if debug_arg & 0x04000:
- out_str += "EV_OOB "
- if debug_arg & 0x08000:
- out_str += "EV_FIN "
- if debug_arg & 0x10000:
- out_str += "EV_RESET "
- if debug_arg & 0x20000:
- out_str += "EV_TIMEOUT "
-
- return out_str
-
def GetKernelDebugBufferEntry(kdbg_entry):
""" Extract the information from given kernel debug buffer entry and return the summary
params:
kdebug_arg3 = kdebug_entry.arg3
kdebug_arg4 = kdebug_entry.arg4
- if kern.arch in ('x86_64', 'arm64'):
+ if kern.arch == 'x86_64' or kern.arch.startswith('arm64'):
kdebug_cpu = kdebug_entry.cpuid
ts_hi = (kdebug_entry.timestamp >> 32) & 0xFFFFFFFF
ts_lo = kdebug_entry.timestamp & 0xFFFFFFFF
out_str += " {:>#5x} {:>8d} ".format(kdebug_subclass, kdebug_code)
# space for debugid-specific processing
- # EVPROC from bsd/kern/sys_generic.c
- # MISCDBG_CODE(DBG_EVENT,DBG_WAIT)
- if debugid == 0x14100048:
- code_info_str += "waitevent "
- if kdebug_arg1 == 1:
- code_info_str += "before sleep"
- elif kdebug_arg1 == 2:
- code_info_str += "after sleep"
- else:
- code_info_str += "????????????"
- code_info_str += " chan={:#08x} ".format(kdebug_arg2)
- elif debugid == 0x14100049:
- # MISCDBG_CODE(DBG_EVENT,DBG_WAIT|DBG_FUNC_START)
- code_info_str += "waitevent "
- elif debugid == 0x1410004a:
- # MISCDBG_CODE(DBG_EVENT,DBG_WAIT|DBG_FUNC_END)
- code_info_str += "waitevent error={:d} ".format(kdebug_arg1)
- code_info_str += "eqp={:#08x} ".format(kdebug_arg4)
- code_info_str += GetEVFlags(kdebug_arg3)
- code_info_str += "er_handle={:d} ".format(kdebug_arg2)
- elif debugid == 0x14100059:
- # MISCDBG_CODE(DBG_EVENT,DBG_DEQUEUE|DBG_FUNC_START)
- code_info_str += "evprocdeque proc={:#08x} ".format(kdebug_arg1)
- if kdebug_arg2 == 0:
- code_info_str += "remove first "
- else:
- code_info_str += "remove {:#08x} ".format(kdebug_arg2)
- elif debugid == 0x1410005a:
- # MISCDBG_CODE(DBG_EVENT,DBG_DEQUEUE|DBG_FUNC_END)
- code_info_str += "evprocdeque "
- if kdebug_arg1 == 0:
- code_info_str += "result=NULL "
- else:
- code_info_str += "result={:#08x} ".format(kdebug_arg1)
- elif debugid == 0x14100041:
- # MISCDBG_CODE(DBG_EVENT,DBG_POST|DBG_FUNC_START)
- code_info_str += "postevent "
- code_info_str += GetEVFlags(kdebug_arg1)
- elif debugid == 0x14100040:
- # MISCDBG_CODE(DBG_EVENT,DBG_POST)
- code_info_str += "postevent "
- code_info_str += "evq={:#08x} ".format(kdebug_arg1)
- code_info_str += "er_eventbits="
- code_info_str += GetEVFlags(kdebug_arg2)
- code_info_str +="mask="
- code_info_str += GetEVFlags(kdebug_arg3)
- elif debugid == 0x14100042:
- # MISCDBG_CODE(DBG_EVENT,DBG_POST|DBG_FUNC_END)
- code_info_str += "postevent "
- elif debugid == 0x14100055:
- # MISCDBG_CODE(DBG_EVENT,DBG_ENQUEUE|DBG_FUNC_START)
- code_info_str += "evprocenque eqp={:#08x} ".format(kdebug_arg1)
- if kdebug_arg2 & 1:
- code_info_str += "EV_QUEUED "
- code_info_str += GetEVFlags(kdebug_arg3)
- elif debugid == 0x14100050:
- # MISCDBG_CODE(DBG_EVENT,DBG_EWAKEUP)
- code_info_str += "evprocenque before wakeup eqp={:#08x} ".format(kdebug_arg4)
- elif debugid == 0x14100056:
- # MISCDBG_CODE(DBG_EVENT,DBG_ENQUEUE|DBG_FUNC_END)
- code_info_str += "evprocenque "
- elif debugid == 0x1410004d:
- # MISCDBG_CODE(DBG_EVENT,DBG_MOD|DBG_FUNC_START)
- code_info_str += "modwatch "
- elif debugid == 0x1410004c:
- # MISCDBG_CODE(DBG_EVENT,DBG_MOD)
- code_info_str += "modwatch er_handle={:d} ".format(kdebug_arg1)
- code_info_str += GetEVFlags(kdebug_arg2)
- code_info_str += "evq={:#08x} ", kdebug_arg3
- elif debugid == 0x1410004e:
- # MISCDBG_CODE(DBG_EVENT,DBG_MOD|DBG_FUNC_END)
- code_info_str += "modwatch er_handle={:d} ".format(kdebug_arg1)
- code_info_str += "ee_eventmask="
- code_info_str += GetEVFlags(kdebug_arg2)
- code_info_str += "sp={:#08x} ".format(kdebug_arg3)
- code_info_str += "flag="
- code_info_str += GetEVFlags(kdebug_arg4)
- else:
- code_info_str += "arg1={:#010x} ".format(kdebug_arg1)
- code_info_str += "arg2={:#010x} ".format(kdebug_arg2)
- code_info_str += "arg3={:#010x} ".format(kdebug_arg3)
- code_info_str += "arg4={:#010x} ".format(kdebug_arg4)
-
+ code_info_str += "arg1={:#010x} ".format(kdebug_arg1)
+ code_info_str += "arg2={:#010x} ".format(kdebug_arg2)
+ code_info_str += "arg3={:#010x} ".format(kdebug_arg3)
+ code_info_str += "arg4={:#010x} ".format(kdebug_arg4)
+
# finish up
out_str += "{:<25s}\n".format(code_info_str)
return out_str
cpu_num += 1
else:
print "Trace buffer not enabled\n"
+
+@lldb_command('dumprawtracefile','U:')
+def DumpRawTraceFile(cmd_args=[], cmd_options={}):
+ """
+ support for ktrace(1)
+
+ NB: trace is not wordsize flexible, so use ktrace(1) compiled for the compatible model,
+ e.g. if you dump from __LP64__ system, you will need to run ktrace(1) compiled __LP64__ to process the raw data file.
+
+ read the kernel's debug trace buffer, and dump to a "raw" ktrace(1) file
+ Usage: dumprawtracefile <output_filename>
+ -U <uptime> : specify system uptime in nsec, obtained e.g. from paniclog
+ Be patient, it is teh slow.
+
+ cf. kdbg_read()\bsd/kern/kdebug.c
+ """
+
+ # Check if KDBG_BFINIT (0x80000000) is set in kdebug_flags
+ if (kern.globals.kd_ctrl_page.kdebug_flags & xnudefines.KDBG_BFINIT) == 0 :
+ print "Trace buffer not enabled\n"
+ return
+
+ if ((kern.arch == "x86_64") or kern.arch.startswith("arm64")) :
+ lp64 = True
+ elif kern.arch == "arm" :
+ lp64 = False
+ else :
+ print "unknown kern.arch {:s}\n".format(kern.arch)
+ return
+
+ # Various kern.globals are hashed by address, to
+ # a) avoid redundant kdp fetch from, and
+ # b) avoid all stores to
+ # the target system kernel structures.
+ # Stores to hashed structures remain strictly local to the lldb host,
+ # they are never written back to the target.
+ htab = {}
+
+ if lp64 :
+ KDBG_TIMESTAMP_MASK = 0xffffffffffffffff
+ KDBG_CPU_SHIFT = 0
+ else :
+ KDBG_TIMESTAMP_MASK = 0x00ffffffffffffff
+ KDBG_CPU_SHIFT = 56
+
+ barrier_min = 0
+ barrier_max = 0
+ out_of_events = False
+ lostevents = False
+ lostevent_timestamp = 0
+ lostevent_debugid = (((xnudefines.DBG_TRACE & 0xff) << 24) | ((xnudefines.DBG_TRACE_INFO & 0xff) << 16) | ((2 & 0x3fff) << 2)) # 0x01020008
+ events_count_lost = 0
+ events_count_found = 0
+
+ opt_verbose = config['verbosity']
+ opt_progress = (opt_verbose > vHUMAN) and (opt_verbose < vDETAIL)
+ progress_count = 0
+ progress_stride = 32
+
+ output_filename = str(cmd_args[0])
+ if opt_verbose > vHUMAN :
+ print "output file : {:s}".format(output_filename)
+ wfd = open(output_filename, "wb")
+
+ uptime = long(-1)
+ if "-U" in cmd_options:
+ uptime = long(cmd_options["-U"])
+ if opt_verbose > vHUMAN :
+ print "uptime : {:d}".format(uptime)
+
+ nkdbufs = kern.globals.nkdbufs
+
+ kd_ctrl_page = kern.globals.kd_ctrl_page
+ if not kd_ctrl_page in htab :
+ htab[kd_ctrl_page] = kern.globals.kd_ctrl_page
+
+ if opt_verbose > vHUMAN :
+ print "nkdbufs {0:#x}, enabled {1:#x}, flags {2:#x}, cpus {3:#x}".format(nkdbufs, htab[kd_ctrl_page].enabled, htab[kd_ctrl_page].kdebug_flags, htab[kd_ctrl_page].kdebug_cpus)
+
+ if nkdbufs == 0 :
+ print "0 nkdbufs, nothing extracted"
+ return
+
+ if htab[kd_ctrl_page].enabled != 0 :
+ barrier_max = uptime & KDBG_TIMESTAMP_MASK
+
+ f = htab[kd_ctrl_page].kdebug_flags
+ wrapped = f & xnudefines.KDBG_WRAPPED
+ if wrapped != 0 :
+ barrier_min = htab[kd_ctrl_page].oldest_time
+ htab[kd_ctrl_page].kdebug_flags = htab[kd_ctrl_page].kdebug_flags & ~xnudefines.KDBG_WRAPPED
+ htab[kd_ctrl_page].oldest_time = 0
+
+ for cpu in range(htab[kd_ctrl_page].kdebug_cpus) :
+ kdbp = unsigned(addressof(kern.globals.kdbip[cpu]))
+ if not kdbp in htab :
+ htab[kdbp] = kern.globals.kdbip[cpu]
+
+ kdsp = htab[kdbp].kd_list_head.raw
+ if kdsp == xnudefines.KDS_PTR_NULL :
+ continue
+
+ ix = htab[kdbp].kd_list_head.buffer_index
+ off = htab[kdbp].kd_list_head.offset
+ kdsp_actual = unsigned(addressof(kern.globals.kd_bufs[ix].kdsb_addr[off]))
+ if not kdsp_actual in htab :
+ htab[kdsp_actual] = kern.globals.kd_bufs[ix].kdsb_addr[off]
+ htab[kdsp_actual].kds_lostevents = False
+
+
+ # generate trace file header; threadmap is stubbed/TBD
+ version_no = xnudefines.RAW_VERSION1
+ thread_count = 0
+ TOD_secs = uptime
+ TOD_usecs = 0
+ header = struct.pack('IIqI', version_no, thread_count, TOD_secs, TOD_usecs)
+ pad_bytes = 4096 - (len(header) & 4095)
+ header += "\x00" * pad_bytes
+ wfd.write(buffer(header))
+
+ count = nkdbufs
+ while count != 0 :
+ tempbuf = ""
+ tempbuf_number = 0
+ tempbuf_count = min(count, xnudefines.KDCOPYBUF_COUNT)
+
+ # while space
+ while tempbuf_count != 0 :
+
+ if opt_progress == True :
+ progress_count += 1
+ if (progress_count % progress_stride) == 0 :
+ sys.stderr.write('.')
+ sys.stderr.flush()
+
+ earliest_time = 0xffffffffffffffff
+ min_kdbp = None
+ min_cpu = 0
+
+ # Check all CPUs
+ for cpu in range(htab[kd_ctrl_page].kdebug_cpus) :
+
+ kdbp = unsigned(addressof(kern.globals.kdbip[cpu]))
+ if not kdbp in htab :
+ htab[kdbp] = kern.globals.kdbip[cpu]
+
+ # Skip CPUs without data.
+ kdsp = htab[kdbp].kd_list_head
+ if kdsp.raw == xnudefines.KDS_PTR_NULL :
+ continue
+
+ kdsp_shadow = kdsp
+
+ # Get from cpu data to buffer header to buffer
+ ix = kdsp.buffer_index
+ off = kdsp.offset
+ kdsp_actual = unsigned(addressof(kern.globals.kd_bufs[ix].kdsb_addr[off]))
+ if not kdsp_actual in htab :
+ htab[kdsp_actual] = kern.globals.kd_bufs[ix].kdsb_addr[off]
+
+ kdsp_actual_shadow = kdsp_actual
+
+ # Skip buffer if there are no events left.
+ rcursor = htab[kdsp_actual].kds_readlast
+ if rcursor == htab[kdsp_actual].kds_bufindx :
+ continue
+
+ t = htab[kdsp_actual].kds_records[rcursor].timestamp & KDBG_TIMESTAMP_MASK
+
+ # Ignore events that have aged out due to wrapping.
+ goto_next_cpu = False;
+ while (t < unsigned(barrier_min)) :
+ r = htab[kdsp_actual].kds_readlast
+ htab[kdsp_actual].kds_readlast = r + 1
+ rcursor = r + 1
+
+ if rcursor >= xnudefines.EVENTS_PER_STORAGE_UNIT :
+
+ kdsp = htab[kdbp].kd_list_head
+ if kdsp.raw == xnudefines.KDS_PTR_NULL :
+ goto_next_cpu = True
+ break
+
+ kdsp_shadow = kdsp;
+
+ ix = kdsp.buffer_index
+ off = kdsp.offset
+ kdsp_actual = unsigned(addressof(kern.globals.kd_bufs[ix].kdsb_addr[off]))
+
+ kdsp_actual_shadow = kdsp_actual;
+ rcursor = htab[kdsp_actual].kds_readlast;
+
+ t = htab[kdsp_actual].kds_records[rcursor].timestamp & KDBG_TIMESTAMP_MASK
+
+ if goto_next_cpu == True :
+ continue
+
+ if (t > barrier_max) and (barrier_max > 0) :
+ # Need to flush IOPs again before we
+ # can sort any more data from the
+ # buffers.
+ out_of_events = True
+ break
+
+ if t < (htab[kdsp_actual].kds_timestamp & KDBG_TIMESTAMP_MASK) :
+ # indicates we've not yet completed filling
+ # in this event...
+ # this should only occur when we're looking
+ # at the buf that the record head is utilizing
+ # we'll pick these events up on the next
+ # call to kdbg_read
+ # we bail at this point so that we don't
+ # get an out-of-order timestream by continuing
+ # to read events from the other CPUs' timestream(s)
+ out_of_events = True
+ break
+
+ if t < earliest_time :
+ earliest_time = t
+ min_kdbp = kdbp
+ min_cpu = cpu
+
+
+ if (min_kdbp is None) or (out_of_events == True) :
+ # all buffers ran empty
+ out_of_events = True
+ break
+
+ kdsp = htab[min_kdbp].kd_list_head
+
+ ix = kdsp.buffer_index
+ off = kdsp.offset
+ kdsp_actual = unsigned(addressof(kern.globals.kd_bufs[ix].kdsb_addr[off]))
+ if not kdsp_actual in htab :
+ htab[kdsp_actual] = kern.globals.kd_bufs[ix].kdsb_addr[off]
+
+ # Copy earliest event into merged events scratch buffer.
+ r = htab[kdsp_actual].kds_readlast
+ htab[kdsp_actual].kds_readlast = r + 1
+ e = htab[kdsp_actual].kds_records[r]
+
+ # Concatenate event into buffer
+ # XXX condition here is on __LP64__
+ if lp64 :
+ tempbuf += struct.pack('QQQQQQIIQ',
+ unsigned(e.timestamp),
+ unsigned(e.arg1),
+ unsigned(e.arg2),
+ unsigned(e.arg3),
+ unsigned(e.arg4),
+ unsigned(e.arg5),
+ unsigned(e.debugid),
+ unsigned(e.cpuid),
+ unsigned(e.unused))
+ else :
+ tempbuf += struct.pack('QIIIIII',
+ unsigned(e.timestamp),
+ unsigned(e.arg1),
+ unsigned(e.arg2),
+ unsigned(e.arg3),
+ unsigned(e.arg4),
+ unsigned(e.arg5),
+ unsigned(e.debugid))
+
+ # Watch for out of order timestamps
+ if earliest_time < (htab[min_kdbp].kd_prev_timebase & KDBG_TIMESTAMP_MASK) :
+ ## if so, use the previous timestamp + 1 cycle
+ htab[min_kdbp].kd_prev_timebase += 1
+
+ e.timestamp = htab[min_kdbp].kd_prev_timebase & KDBG_TIMESTAMP_MASK
+ if not lp64:
+ e.timestamp |= (min_cpu << KDBG_CPU_SHIFT)
+ else :
+ htab[min_kdbp].kd_prev_timebase = earliest_time
+
+ if opt_verbose >= vDETAIL :
+ print "{0:#018x} {1:#018x} {2:#018x} {3:#018x} {4:#018x} {5:#018x} {6:#010x} {7:#010x} {8:#018x}".format(
+ e.timestamp, e.arg1, e.arg2, e.arg3, e.arg4, e.arg5, e.debugid, e.cpuid, e.unused)
+
+ events_count_found += 1
+
+ # nextevent:
+ tempbuf_count -= 1
+ tempbuf_number += 1
+
+ if opt_progress == True :
+ sys.stderr.write('\n')
+ sys.stderr.flush()
+
+ if opt_verbose > vHUMAN :
+ print "events_count_lost {0:#x}, events_count_found {1:#x}, progress_count {2:#x}".format(events_count_lost, events_count_found, progress_count)
+
+ # write trace events to output file
+ if tempbuf_number != 0 :
+ count -= tempbuf_number
+ wfd.write(buffer(tempbuf))
+
+ if out_of_events == True :
+ # all trace buffers are empty
+ if opt_verbose > vHUMAN :
+ print "out of events"
+ break
+
+ wfd.close()
+
+ return
+
+
+def GetTimebaseInfo():
+ try:
+ tb = kern.GetValueFromAddress(
+ 'RTClockData', '_rtclock_data_').rtc_timebase_const
+ numer = tb.numer
+ denom = tb.denom
+ except NameError:
+ # Intel -- use the 1-1 timebase.
+ numer = 1
+ denom = 1
+ return numer, denom
+
+
+def PrintIteratedElem(i, elem, elem_type, do_summary, summary, regex):
+ try:
+ if do_summary and summary:
+ s = summary(elem)
+ if regex:
+ if regex.match(s):
+ print "[{:d}] {:s}".format(i, s)
+ else:
+ print "[{:d}] {:s}".format(i, s)
+ else:
+ if regex:
+ if regex.match(str(elem)):
+ print "[{:4d}] ({:s}){:#x}".format(i, elem_type, unsigned(elem))
+ else:
+ print "[{:4d}] ({:s}){:#x}".format(i, elem_type, unsigned(elem))
+ except:
+ print "Exception while looking at elem {:#x}".format(unsigned(elem))
+ return
+
+@lldb_command('q_iterate', "LQSG:")
+def QIterate(cmd_args=None, cmd_options={}):
+ """ Iterate over a LinkageChain or Queue (osfmk/kern/queue.h method 1 or 2 respectively)
+ This is equivalent to the qe_foreach_element() macro
+ usage:
+ iterate [options] {queue_head_ptr} {element_type} {field_name}
+ option:
+ -L iterate over a linkage chain (method 1) [default]
+ -Q iterate over a queue (method 2)
+
+ -S auto-summarize known types
+ -G regex to filter the output
+ e.g.
+ iterate_linkage `&coalitions_q` 'coalition *' coalitions
+ """
+ if not cmd_args:
+ raise ArgumentError("usage: iterate_linkage {queue_head_ptr} {element_type} {field_name}")
+
+ qhead = kern.GetValueFromAddress(cmd_args[0], 'struct queue_entry *')
+ if not qhead:
+ raise ArgumentError("Unknown queue_head pointer: %r" % cmd_args)
+ elem_type = cmd_args[1]
+ field_name = cmd_args[2]
+ if not elem_type or not field_name:
+ raise ArgumentError("usage: iterate_linkage {queue_head_ptr} {element_type} {field_name}")
+
+ do_queue_iterate = False
+ do_linkage_iterate = True
+ if "-Q" in cmd_options:
+ do_queue_iterate = True
+ do_linkage_iterate = False
+ if "-L" in cmd_options:
+ do_queue_iterate = False
+ do_linkage_iterate = True
+
+ do_summary = False
+ if "-S" in cmd_options:
+ do_summary = True
+ regex = None
+ if "-G" in cmd_options:
+ regex = re.compile(".*{:s}.*".format(cmd_options["-G"]))
+ print "Looking for: {:s}".format(regex.pattern)
+
+ global lldb_summary_definitions
+ summary = None
+ if elem_type in lldb_summary_definitions:
+ summary = lldb_summary_definitions[elem_type]
+ if do_summary:
+ print summary.header
+
+ try:
+ i = 0
+ if do_linkage_iterate:
+ for elem in IterateLinkageChain(qhead, elem_type, field_name):
+ PrintIteratedElem(i, elem, elem_type, do_summary, summary, regex)
+ i = i + 1
+ elif do_queue_iterate:
+ for elem in IterateQueue(qhead, elem_type, field_name):
+ PrintIteratedElem(i, elem, elem_type, do_summary, summary, regex)
+ i = i + 1
+ except:
+ print "Exception while looking at queue_head: {:#x}".format(unsigned(qhead))