From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from eggs.gnu.org ([140.186.70.92]:53417)
	by lists.gnu.org with esmtp (Exim 4.71)
	(envelope-from <jan.kiszka@siemens.com>) id 1Qwxb2-00046j-Hz
	for qemu-devel@nongnu.org; Fri, 26 Aug 2011 10:41:25 -0400
Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71)
	(envelope-from <jan.kiszka@siemens.com>) id 1Qwxb1-0006nT-Ia
	for qemu-devel@nongnu.org; Fri, 26 Aug 2011 10:41:24 -0400
Received: from goliath.siemens.de ([192.35.17.28]:23277)
	by eggs.gnu.org with esmtp (Exim 4.71)
	(envelope-from <jan.kiszka@siemens.com>) id 1Qwxb1-0006n3-2P
	for qemu-devel@nongnu.org; Fri, 26 Aug 2011 10:41:23 -0400
Message-ID: <4E57B08E.2090304@siemens.com>
Date: Fri, 26 Aug 2011 16:41:18 +0200
From: Jan Kiszka <jan.kiszka@siemens.com>
MIME-Version: 1.0
References: <CAPgvYs4JVz6G2JuzF15Z9ChxBCrfWF_kCAMJuWORq0TghR4SSg@mail.gmail.com>
In-Reply-To: <CAPgvYs4JVz6G2JuzF15Z9ChxBCrfWF_kCAMJuWORq0TghR4SSg@mail.gmail.com>
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: quoted-printable
Subject: Re: [Qemu-devel] Physical address debugging
List-Id: <qemu-devel.nongnu.org>
List-Unsubscribe: <https://lists.nongnu.org/mailman/options/qemu-devel>,
	<mailto:qemu-devel-request@nongnu.org?subject=unsubscribe>
List-Archive: <http://lists.nongnu.org/archive/html/qemu-devel>
List-Post: <mailto:qemu-devel@nongnu.org>
List-Help: <mailto:qemu-devel-request@nongnu.org?subject=help>
List-Subscribe: <https://lists.nongnu.org/mailman/listinfo/qemu-devel>,
	<mailto:qemu-devel-request@nongnu.org?subject=subscribe>
To: =?ISO-8859-1?Q?Zeus_G=F3mez_Marmolejo?= <zeus@aluzina.org>
Cc: qemu-devel@nongnu.org

On 2011-08-26 16:21, Zeus G=F3mez Marmolejo wrote:
> Hi all,
>=20
> I just want to do a very simple task. I'm using QEMU for debugging a ne=
w OS
> and I see that there is a memory region that is being updated by an unk=
nown
> task. I don't know if it's another process or the kernel itself.
>=20
> So I would like to put a physical memory watchpoint. I don't know how t=
o do
> that. As the GDB stub is operating using virtual addressing, I cannot p=
lace
> a watchpoint on an address as it's not stopping.
>=20
> To make it short, I want the equivalent of the Bochs command "watch wri=
te
> addr", which inserts a write watch point at physical address 'addr'. I
> haven't seen this is possible on the QEMU monitor...

Indeed, it isn't. It's impossible with KVM (due to lacking hardware
support) but would be feasible with TCG if you extend (or ad-hoc hack)
QEMU code accordingly.

The alternative is to trace the guest OS's page mapping and set watches
on all virtual addresses that refer to the physical one in question. But
I guess that is already part of what you want to debug...

Jan

--=20
Siemens AG, Corporate Technology, CT T DE IT 1
Corporate Competence Center Embedded Linux