1*e3723e1fSApple OSS Distributions /*
2*e3723e1fSApple OSS Distributions * Copyright (c) 2015 Apple Inc. All rights reserved.
3*e3723e1fSApple OSS Distributions *
4*e3723e1fSApple OSS Distributions * @APPLE_OSREFERENCE_LICENSE_HEADER_START@
5*e3723e1fSApple OSS Distributions *
6*e3723e1fSApple OSS Distributions * This file contains Original Code and/or Modifications of Original Code
7*e3723e1fSApple OSS Distributions * as defined in and that are subject to the Apple Public Source License
8*e3723e1fSApple OSS Distributions * Version 2.0 (the 'License'). You may not use this file except in
9*e3723e1fSApple OSS Distributions * compliance with the License. The rights granted to you under the License
10*e3723e1fSApple OSS Distributions * may not be used to create, or enable the creation or redistribution of,
11*e3723e1fSApple OSS Distributions * unlawful or unlicensed copies of an Apple operating system, or to
12*e3723e1fSApple OSS Distributions * circumvent, violate, or enable the circumvention or violation of, any
13*e3723e1fSApple OSS Distributions * terms of an Apple operating system software license agreement.
14*e3723e1fSApple OSS Distributions *
15*e3723e1fSApple OSS Distributions * Please obtain a copy of the License at
16*e3723e1fSApple OSS Distributions * http://www.opensource.apple.com/apsl/ and read it before using this file.
17*e3723e1fSApple OSS Distributions *
18*e3723e1fSApple OSS Distributions * The Original Code and all software distributed under the License are
19*e3723e1fSApple OSS Distributions * distributed on an 'AS IS' basis, WITHOUT WARRANTY OF ANY KIND, EITHER
20*e3723e1fSApple OSS Distributions * EXPRESS OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES,
21*e3723e1fSApple OSS Distributions * INCLUDING WITHOUT LIMITATION, ANY WARRANTIES OF MERCHANTABILITY,
22*e3723e1fSApple OSS Distributions * FITNESS FOR A PARTICULAR PURPOSE, QUIET ENJOYMENT OR NON-INFRINGEMENT.
23*e3723e1fSApple OSS Distributions * Please see the License for the specific language governing rights and
24*e3723e1fSApple OSS Distributions * limitations under the License.
25*e3723e1fSApple OSS Distributions *
26*e3723e1fSApple OSS Distributions * @APPLE_OSREFERENCE_LICENSE_HEADER_END@
27*e3723e1fSApple OSS Distributions */
28*e3723e1fSApple OSS Distributions
29*e3723e1fSApple OSS Distributions
30*e3723e1fSApple OSS Distributions /*
31*e3723e1fSApple OSS Distributions *
32*e3723e1fSApple OSS Distributions * THE KCDATA MANIFESTO
33*e3723e1fSApple OSS Distributions *
34*e3723e1fSApple OSS Distributions * Kcdata is a self-describing data serialization format. It is meant to get
35*e3723e1fSApple OSS Distributions * nested data structures out of xnu with minimum fuss, but also for that data
36*e3723e1fSApple OSS Distributions * to be easy to parse. It is also meant to allow us to add new fields and
37*e3723e1fSApple OSS Distributions * evolve the data format without breaking old parsers.
38*e3723e1fSApple OSS Distributions *
39*e3723e1fSApple OSS Distributions * Kcdata is a permanent data format suitable for long-term storage including
40*e3723e1fSApple OSS Distributions * in files. It is very important that we continue to be able to parse old
41*e3723e1fSApple OSS Distributions * versions of kcdata-based formats. To this end, there are several
42*e3723e1fSApple OSS Distributions * invariants you MUST MAINTAIN if you alter this file.
43*e3723e1fSApple OSS Distributions *
44*e3723e1fSApple OSS Distributions * * None of the magic numbers should ever be a byteswap of themselves or
45*e3723e1fSApple OSS Distributions * of any of the other magic numbers.
46*e3723e1fSApple OSS Distributions *
47*e3723e1fSApple OSS Distributions * * Never remove any type.
48*e3723e1fSApple OSS Distributions *
49*e3723e1fSApple OSS Distributions * * All kcdata structs must be packed, and must exclusively use fixed-size
50*e3723e1fSApple OSS Distributions * types.
51*e3723e1fSApple OSS Distributions *
52*e3723e1fSApple OSS Distributions * * Never change the definition of any type, except to add new fields to
53*e3723e1fSApple OSS Distributions * the end.
54*e3723e1fSApple OSS Distributions *
55*e3723e1fSApple OSS Distributions * * If you do add new fields to the end of a type, do not actually change
56*e3723e1fSApple OSS Distributions * the definition of the old structure. Instead, define a new structure
57*e3723e1fSApple OSS Distributions * with the new fields. See thread_snapshot_v3 as an example. This
58*e3723e1fSApple OSS Distributions * provides source compatibility for old readers, and also documents where
59*e3723e1fSApple OSS Distributions * the potential size cutoffs are.
60*e3723e1fSApple OSS Distributions *
61*e3723e1fSApple OSS Distributions * * If you change libkdd, or kcdata.py run the unit tests under libkdd.
62*e3723e1fSApple OSS Distributions *
63*e3723e1fSApple OSS Distributions * * If you add a type or extend an existing one, add a sample test to
64*e3723e1fSApple OSS Distributions * libkdd/tests so future changes to libkdd will always parse your struct
65*e3723e1fSApple OSS Distributions * correctly.
66*e3723e1fSApple OSS Distributions *
67*e3723e1fSApple OSS Distributions * For example to add a field to this:
68*e3723e1fSApple OSS Distributions *
69*e3723e1fSApple OSS Distributions * struct foobar {
70*e3723e1fSApple OSS Distributions * uint32_t baz;
71*e3723e1fSApple OSS Distributions * uint32_t quux;
72*e3723e1fSApple OSS Distributions * } __attribute__ ((packed));
73*e3723e1fSApple OSS Distributions *
74*e3723e1fSApple OSS Distributions * Define an evolved structure alongside it like this:
75*e3723e1fSApple OSS Distributions *
76*e3723e1fSApple OSS Distributions * struct foobar_v2 {
77*e3723e1fSApple OSS Distributions * uint32_t baz;
78*e3723e1fSApple OSS Distributions * uint32_t quux;
79*e3723e1fSApple OSS Distributions * ///////// This is where the original structure's layout ended! sizeof(struct foobar) was 8 ////////
80*e3723e1fSApple OSS Distributions * uint32_t frozzle;
81*e3723e1fSApple OSS Distributions * } __attribute__ ((packed));
82*e3723e1fSApple OSS Distributions *
83*e3723e1fSApple OSS Distributions * If you are parsing kcdata formats, you MUST
84*e3723e1fSApple OSS Distributions *
85*e3723e1fSApple OSS Distributions * * Check the length field of each struct, including array elements. If the
86*e3723e1fSApple OSS Distributions * struct is longer than you expect, you must ignore the extra data.
87*e3723e1fSApple OSS Distributions *
88*e3723e1fSApple OSS Distributions * * Ignore any data types you do not understand.
89*e3723e1fSApple OSS Distributions *
90*e3723e1fSApple OSS Distributions * Additionally, we want to be as forward compatible as we can. Meaning old
91*e3723e1fSApple OSS Distributions * tools should still be able to use new data whenever possible. To this end,
92*e3723e1fSApple OSS Distributions * you should:
93*e3723e1fSApple OSS Distributions *
94*e3723e1fSApple OSS Distributions * * Try not to add new versions of types that supplant old ones. Instead
95*e3723e1fSApple OSS Distributions * extend the length of existing types or add supplemental types.
96*e3723e1fSApple OSS Distributions *
97*e3723e1fSApple OSS Distributions * * Try not to remove information from existing kcdata formats, unless
98*e3723e1fSApple OSS Distributions * removal was explicitly asked for. For example it is fine to add a
99*e3723e1fSApple OSS Distributions * stackshot flag to remove unwanted information, but you should not
100*e3723e1fSApple OSS Distributions * remove it from the default stackshot if the new flag is absent.
101*e3723e1fSApple OSS Distributions *
102*e3723e1fSApple OSS Distributions * * (TBD) If you do break old readers by removing information or
103*e3723e1fSApple OSS Distributions * supplanting old structs, then increase the major version number.
104*e3723e1fSApple OSS Distributions *
105*e3723e1fSApple OSS Distributions *
106*e3723e1fSApple OSS Distributions *
107*e3723e1fSApple OSS Distributions * The following is a description of the kcdata format.
108*e3723e1fSApple OSS Distributions *
109*e3723e1fSApple OSS Distributions *
110*e3723e1fSApple OSS Distributions * The format for data is setup in a generic format as follows
111*e3723e1fSApple OSS Distributions *
112*e3723e1fSApple OSS Distributions * Layout of data structure:
113*e3723e1fSApple OSS Distributions *
114*e3723e1fSApple OSS Distributions * | 8 - bytes |
115*e3723e1fSApple OSS Distributions * | type = MAGIC | LENGTH |
116*e3723e1fSApple OSS Distributions * | 0 |
117*e3723e1fSApple OSS Distributions * | type | size |
118*e3723e1fSApple OSS Distributions * | flags |
119*e3723e1fSApple OSS Distributions * | data |
120*e3723e1fSApple OSS Distributions * |___________data____________|
121*e3723e1fSApple OSS Distributions * | type | size |
122*e3723e1fSApple OSS Distributions * | flags |
123*e3723e1fSApple OSS Distributions * |___________data____________|
124*e3723e1fSApple OSS Distributions * | type = END | size=0 |
125*e3723e1fSApple OSS Distributions * | 0 |
126*e3723e1fSApple OSS Distributions *
127*e3723e1fSApple OSS Distributions *
128*e3723e1fSApple OSS Distributions * The type field describes what kind of data is passed. For example type = TASK_CRASHINFO_UUID means the following data is a uuid.
129*e3723e1fSApple OSS Distributions * These types need to be defined in task_corpse.h for easy consumption by userspace inspection tools.
130*e3723e1fSApple OSS Distributions *
131*e3723e1fSApple OSS Distributions * Some range of types is reserved for special types like ints, longs etc. A cool new functionality made possible with this
132*e3723e1fSApple OSS Distributions * extensible data format is that kernel can decide to put more information as required without requiring user space tools to
133*e3723e1fSApple OSS Distributions * re-compile to be compatible. The case of rusage struct versions could be introduced without breaking existing tools.
134*e3723e1fSApple OSS Distributions *
135*e3723e1fSApple OSS Distributions * Feature description: Generic data with description
136*e3723e1fSApple OSS Distributions * -------------------
137*e3723e1fSApple OSS Distributions * Further more generic data with description is very much possible now. For example
138*e3723e1fSApple OSS Distributions *
139*e3723e1fSApple OSS Distributions * - kcdata_add_uint64_with_description(cdatainfo, 0x700, "NUM MACH PORTS");
140*e3723e1fSApple OSS Distributions * - and more functions that allow adding description.
141*e3723e1fSApple OSS Distributions * The userspace tools can then look at the description and print the data even if they are not compiled with knowledge of the field apriori.
142*e3723e1fSApple OSS Distributions *
143*e3723e1fSApple OSS Distributions * Example data:
144*e3723e1fSApple OSS Distributions * 0000 57 f1 ad de 00 00 00 00 00 00 00 00 00 00 00 00 W...............
145*e3723e1fSApple OSS Distributions * 0010 01 00 00 00 00 00 00 00 30 00 00 00 00 00 00 00 ........0.......
146*e3723e1fSApple OSS Distributions * 0020 50 49 44 00 00 00 00 00 00 00 00 00 00 00 00 00 PID.............
147*e3723e1fSApple OSS Distributions * 0030 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
148*e3723e1fSApple OSS Distributions * 0040 9c 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
149*e3723e1fSApple OSS Distributions * 0050 01 00 00 00 00 00 00 00 30 00 00 00 00 00 00 00 ........0.......
150*e3723e1fSApple OSS Distributions * 0060 50 41 52 45 4e 54 20 50 49 44 00 00 00 00 00 00 PARENT PID......
151*e3723e1fSApple OSS Distributions * 0070 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
152*e3723e1fSApple OSS Distributions * 0080 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
153*e3723e1fSApple OSS Distributions * 0090 ed 58 91 f1
154*e3723e1fSApple OSS Distributions *
155*e3723e1fSApple OSS Distributions * Feature description: Container markers for compound data
156*e3723e1fSApple OSS Distributions * ------------------
157*e3723e1fSApple OSS Distributions * If a given kernel data type is complex and requires adding multiple optional fields inside a container
158*e3723e1fSApple OSS Distributions * object for a consumer to understand arbitrary data, we package it using container markers.
159*e3723e1fSApple OSS Distributions *
160*e3723e1fSApple OSS Distributions * For example, the stackshot code gathers information and describes the state of a given task with respect
161*e3723e1fSApple OSS Distributions * to many subsystems. It includes data such as io stats, vm counters, process names/flags and syscall counts.
162*e3723e1fSApple OSS Distributions *
163*e3723e1fSApple OSS Distributions * kcdata_add_container_marker(kcdata_p, KCDATA_TYPE_CONTAINER_BEGIN, STACKSHOT_KCCONTAINER_TASK, task_uniqueid);
164*e3723e1fSApple OSS Distributions * // add multiple data, or add_<type>_with_description()s here
165*e3723e1fSApple OSS Distributions *
166*e3723e1fSApple OSS Distributions * kcdata_add_container_marker(kcdata_p, KCDATA_TYPE_CONTAINER_END, STACKSHOT_KCCONTAINER_TASK, task_uniqueid);
167*e3723e1fSApple OSS Distributions *
168*e3723e1fSApple OSS Distributions * Feature description: Custom Data formats on demand
169*e3723e1fSApple OSS Distributions * --------------------
170*e3723e1fSApple OSS Distributions * With the self describing nature of format, the kernel provider can describe a data type (uniquely identified by a number) and use
171*e3723e1fSApple OSS Distributions * it in the buffer for sending data. The consumer can parse the type information and have knowledge of describing incoming data.
172*e3723e1fSApple OSS Distributions * Following is an example of how we can describe a kernel specific struct sample_disk_io_stats in buffer.
173*e3723e1fSApple OSS Distributions *
174*e3723e1fSApple OSS Distributions * struct sample_disk_io_stats {
175*e3723e1fSApple OSS Distributions * uint64_t disk_reads_count;
176*e3723e1fSApple OSS Distributions * uint64_t disk_reads_size;
177*e3723e1fSApple OSS Distributions * uint64_t io_priority_count[4];
178*e3723e1fSApple OSS Distributions * uint64_t io_priority_size;
179*e3723e1fSApple OSS Distributions * } __attribute__ ((packed));
180*e3723e1fSApple OSS Distributions *
181*e3723e1fSApple OSS Distributions *
182*e3723e1fSApple OSS Distributions * struct kcdata_subtype_descriptor disk_io_stats_def[] = {
183*e3723e1fSApple OSS Distributions * {KCS_SUBTYPE_FLAGS_NONE, KC_ST_UINT64, 0 * sizeof(uint64_t), sizeof(uint64_t), "disk_reads_count"},
184*e3723e1fSApple OSS Distributions * {KCS_SUBTYPE_FLAGS_NONE, KC_ST_UINT64, 1 * sizeof(uint64_t), sizeof(uint64_t), "disk_reads_size"},
185*e3723e1fSApple OSS Distributions * {KCS_SUBTYPE_FLAGS_ARRAY, KC_ST_UINT64, 2 * sizeof(uint64_t), KCS_SUBTYPE_PACK_SIZE(4, sizeof(uint64_t)), "io_priority_count"},
186*e3723e1fSApple OSS Distributions * {KCS_SUBTYPE_FLAGS_ARRAY, KC_ST_UINT64, (2 + 4) * sizeof(uint64_t), sizeof(uint64_t), "io_priority_size"},
187*e3723e1fSApple OSS Distributions * };
188*e3723e1fSApple OSS Distributions *
189*e3723e1fSApple OSS Distributions * Now you can add this custom type definition into the buffer as
190*e3723e1fSApple OSS Distributions * kcdata_add_type_definition(kcdata_p, KCTYPE_SAMPLE_DISK_IO_STATS, "sample_disk_io_stats",
191*e3723e1fSApple OSS Distributions * &disk_io_stats_def[0], sizeof(disk_io_stats_def)/sizeof(struct kcdata_subtype_descriptor));
192*e3723e1fSApple OSS Distributions *
193*e3723e1fSApple OSS Distributions * Feature description: Compression
194*e3723e1fSApple OSS Distributions * --------------------
195*e3723e1fSApple OSS Distributions * In order to avoid keeping large amounts of memory reserved for a panic stackshot, kcdata has support
196*e3723e1fSApple OSS Distributions * for compressing the buffer in a streaming fashion. New data pushed to the kcdata buffer will be
197*e3723e1fSApple OSS Distributions * automatically compressed using an algorithm selected by the API user (currently, we only support
198*e3723e1fSApple OSS Distributions * pass-through and zlib, in the future we plan to add WKDM support, see: 57913859).
199*e3723e1fSApple OSS Distributions *
200*e3723e1fSApple OSS Distributions * To start using compression, call:
201*e3723e1fSApple OSS Distributions * kcdata_init_compress(kcdata_p, hdr_tag, memcpy_f, comp_type);
202*e3723e1fSApple OSS Distributions * where:
203*e3723e1fSApple OSS Distributions * `kcdata_p` is the kcdata buffer that will be used
204*e3723e1fSApple OSS Distributions * `hdr_tag` is the usual header tag denoting what type of kcdata buffer this will be
205*e3723e1fSApple OSS Distributions * `memcpy_f` a memcpy(3) function to use to copy into the buffer, optional.
206*e3723e1fSApple OSS Distributions * `compy_type` is the compression type, see KCDCT_ZLIB for an example.
207*e3723e1fSApple OSS Distributions *
208*e3723e1fSApple OSS Distributions * Once compression is initialized:
209*e3723e1fSApple OSS Distributions * (1) all self-describing APIs will automatically compress
210*e3723e1fSApple OSS Distributions * (2) you can now use the following APIs to compress data into the buffer:
211*e3723e1fSApple OSS Distributions * (None of the following will compress unless kcdata_init_compress() has been called)
212*e3723e1fSApple OSS Distributions *
213*e3723e1fSApple OSS Distributions * - kcdata_push_data(kcdata_descriptor_t data, uint32_t type, uint32_t size, const void *input_data)
214*e3723e1fSApple OSS Distributions * Pushes the buffer of kctype @type at[@input_data, @input_data + @size]
215*e3723e1fSApple OSS Distributions * into the kcdata buffer @data, compressing if needed.
216*e3723e1fSApple OSS Distributions *
217*e3723e1fSApple OSS Distributions * - kcdata_push_array(kcdata_descriptor_t data, uint32_t type_of_element,
218*e3723e1fSApple OSS Distributions * uint32_t size_of_element, uint32_t count, const void *input_data)
219*e3723e1fSApple OSS Distributions * Pushes the array found at @input_data, with element type @type_of_element, where
220*e3723e1fSApple OSS Distributions * each element is of size @size_of_element and there are @count elements into the kcdata buffer
221*e3723e1fSApple OSS Distributions * at @data.
222*e3723e1fSApple OSS Distributions *
223*e3723e1fSApple OSS Distributions * - kcdata_compression_window_open/close(kcdata_descriptor_t data)
224*e3723e1fSApple OSS Distributions * In case the data you are trying to push to the kcdata buffer @data is difficult to predict,
225*e3723e1fSApple OSS Distributions * you can open a "compression window". Between an open and a close, no compression will be done.
226*e3723e1fSApple OSS Distributions * Once you close the window, the underlying compression algorithm will compress the data into the buffer
227*e3723e1fSApple OSS Distributions * and automatically rewind the current end marker of the kcdata buffer.
228*e3723e1fSApple OSS Distributions * There is an ASCII art in kern_cdata.c to aid the reader in understanding
229*e3723e1fSApple OSS Distributions * this.
230*e3723e1fSApple OSS Distributions *
231*e3723e1fSApple OSS Distributions * - kcdata_finish_compression(kcdata_descriptor_t data)
232*e3723e1fSApple OSS Distributions * Must be called at the end to flush any underlying buffers used by the compression algorithms.
233*e3723e1fSApple OSS Distributions * This function will also add some statistics about the compression to the buffer which helps with
234*e3723e1fSApple OSS Distributions * decompressing later.
235*e3723e1fSApple OSS Distributions *
236*e3723e1fSApple OSS Distributions */
237*e3723e1fSApple OSS Distributions
238*e3723e1fSApple OSS Distributions
239*e3723e1fSApple OSS Distributions #ifndef _KCDATA_H_
240*e3723e1fSApple OSS Distributions #define _KCDATA_H_
241*e3723e1fSApple OSS Distributions
242*e3723e1fSApple OSS Distributions #include <stdint.h>
243*e3723e1fSApple OSS Distributions #include <string.h>
244*e3723e1fSApple OSS Distributions #include <uuid/uuid.h>
245*e3723e1fSApple OSS Distributions
246*e3723e1fSApple OSS Distributions #define KCDATA_DESC_MAXLEN 32 /* including NULL byte at end */
247*e3723e1fSApple OSS Distributions
248*e3723e1fSApple OSS Distributions #define KCDATA_FLAGS_STRUCT_PADDING_MASK 0xf
249*e3723e1fSApple OSS Distributions #define KCDATA_FLAGS_STRUCT_HAS_PADDING 0x80
250*e3723e1fSApple OSS Distributions
251*e3723e1fSApple OSS Distributions /*
252*e3723e1fSApple OSS Distributions * kcdata aligns elements to 16 byte boundaries.
253*e3723e1fSApple OSS Distributions */
254*e3723e1fSApple OSS Distributions #define KCDATA_ALIGNMENT_SIZE 0x10
255*e3723e1fSApple OSS Distributions
256*e3723e1fSApple OSS Distributions struct kcdata_item {
257*e3723e1fSApple OSS Distributions uint32_t type;
258*e3723e1fSApple OSS Distributions uint32_t size; /* len(data) */
259*e3723e1fSApple OSS Distributions /* flags.
260*e3723e1fSApple OSS Distributions *
261*e3723e1fSApple OSS Distributions * For structures:
262*e3723e1fSApple OSS Distributions * padding = flags & 0xf
263*e3723e1fSApple OSS Distributions * has_padding = (flags & 0x80) >> 7
264*e3723e1fSApple OSS Distributions *
265*e3723e1fSApple OSS Distributions * has_padding is needed to disambiguate cases such as
266*e3723e1fSApple OSS Distributions * thread_snapshot_v2 and thread_snapshot_v3. Their
267*e3723e1fSApple OSS Distributions * respective sizes are 0x68 and 0x70, and thread_snapshot_v2
268*e3723e1fSApple OSS Distributions * was emitted by old kernels *before* we started recording
269*e3723e1fSApple OSS Distributions * padding. Since legacy thread_snapsht_v2 and modern
270*e3723e1fSApple OSS Distributions * thread_snapshot_v3 will both record 0 for the padding
271*e3723e1fSApple OSS Distributions * flags, we need some other bit which will be nonzero in the
272*e3723e1fSApple OSS Distributions * flags to disambiguate.
273*e3723e1fSApple OSS Distributions *
274*e3723e1fSApple OSS Distributions * This is why we hardcode a special case for
275*e3723e1fSApple OSS Distributions * STACKSHOT_KCTYPE_THREAD_SNAPSHOT into the iterator
276*e3723e1fSApple OSS Distributions * functions below. There is only a finite number of such
277*e3723e1fSApple OSS Distributions * hardcodings which will ever be needed. They can occur
278*e3723e1fSApple OSS Distributions * when:
279*e3723e1fSApple OSS Distributions *
280*e3723e1fSApple OSS Distributions * * We have a legacy structure that predates padding flags
281*e3723e1fSApple OSS Distributions *
282*e3723e1fSApple OSS Distributions * * which we want to extend without changing the kcdata type
283*e3723e1fSApple OSS Distributions *
284*e3723e1fSApple OSS Distributions * * by only so many bytes as would fit in the space that
285*e3723e1fSApple OSS Distributions * was previously unused padding.
286*e3723e1fSApple OSS Distributions *
287*e3723e1fSApple OSS Distributions * For containers:
288*e3723e1fSApple OSS Distributions * container_id = flags
289*e3723e1fSApple OSS Distributions *
290*e3723e1fSApple OSS Distributions * For arrays:
291*e3723e1fSApple OSS Distributions * element_count = flags & UINT32_MAX
292*e3723e1fSApple OSS Distributions * element_type = (flags >> 32) & UINT32_MAX
293*e3723e1fSApple OSS Distributions */
294*e3723e1fSApple OSS Distributions uint64_t flags;
295*e3723e1fSApple OSS Distributions char data[]; /* must be at the end */
296*e3723e1fSApple OSS Distributions };
297*e3723e1fSApple OSS Distributions
298*e3723e1fSApple OSS Distributions typedef struct kcdata_item * kcdata_item_t;
299*e3723e1fSApple OSS Distributions
300*e3723e1fSApple OSS Distributions enum KCDATA_SUBTYPE_TYPES { KC_ST_CHAR = 1, KC_ST_INT8, KC_ST_UINT8, KC_ST_INT16, KC_ST_UINT16, KC_ST_INT32, KC_ST_UINT32, KC_ST_INT64, KC_ST_UINT64 };
301*e3723e1fSApple OSS Distributions typedef enum KCDATA_SUBTYPE_TYPES kctype_subtype_t;
302*e3723e1fSApple OSS Distributions
303*e3723e1fSApple OSS Distributions /*
304*e3723e1fSApple OSS Distributions * A subtype description structure that defines
305*e3723e1fSApple OSS Distributions * how a compound data is laid out in memory. This
306*e3723e1fSApple OSS Distributions * provides on the fly definition of types and consumption
307*e3723e1fSApple OSS Distributions * by the parser.
308*e3723e1fSApple OSS Distributions */
309*e3723e1fSApple OSS Distributions struct kcdata_subtype_descriptor {
310*e3723e1fSApple OSS Distributions uint8_t kcs_flags;
311*e3723e1fSApple OSS Distributions #define KCS_SUBTYPE_FLAGS_NONE 0x0
312*e3723e1fSApple OSS Distributions #define KCS_SUBTYPE_FLAGS_ARRAY 0x1
313*e3723e1fSApple OSS Distributions /* Force struct type even if only one element.
314*e3723e1fSApple OSS Distributions *
315*e3723e1fSApple OSS Distributions * Normally a kcdata_type_definition is treated as a structure if it has
316*e3723e1fSApple OSS Distributions * more than one subtype descriptor. Otherwise it is treated as a simple
317*e3723e1fSApple OSS Distributions * type. For example libkdd will represent a simple integer 42 as simply
318*e3723e1fSApple OSS Distributions * 42, but it will represent a structure containing an integer 42 as
319*e3723e1fSApple OSS Distributions * {"field_name": 42}..
320*e3723e1fSApple OSS Distributions *
321*e3723e1fSApple OSS Distributions * If a kcdata_type_definition has only single subtype, then it will be
322*e3723e1fSApple OSS Distributions * treated as a structure iff KCS_SUBTYPE_FLAGS_STRUCT is set. If it has
323*e3723e1fSApple OSS Distributions * multiple subtypes, it will always be treated as a structure.
324*e3723e1fSApple OSS Distributions *
325*e3723e1fSApple OSS Distributions * KCS_SUBTYPE_FLAGS_MERGE has the opposite effect. If this flag is used then
326*e3723e1fSApple OSS Distributions * even if there are multiple elements, they will all be treated as individual
327*e3723e1fSApple OSS Distributions * properties of the parent dictionary.
328*e3723e1fSApple OSS Distributions */
329*e3723e1fSApple OSS Distributions #define KCS_SUBTYPE_FLAGS_STRUCT 0x2 /* force struct type even if only one element */
330*e3723e1fSApple OSS Distributions #define KCS_SUBTYPE_FLAGS_MERGE 0x4 /* treat as multiple elements of parents instead of struct */
331*e3723e1fSApple OSS Distributions uint8_t kcs_elem_type; /* restricted to kctype_subtype_t */
332*e3723e1fSApple OSS Distributions uint16_t kcs_elem_offset; /* offset in struct where data is found */
333*e3723e1fSApple OSS Distributions uint32_t kcs_elem_size; /* size of element (or) packed state for array type */
334*e3723e1fSApple OSS Distributions char kcs_name[KCDATA_DESC_MAXLEN]; /* max 31 bytes for name of field */
335*e3723e1fSApple OSS Distributions };
336*e3723e1fSApple OSS Distributions
337*e3723e1fSApple OSS Distributions typedef struct kcdata_subtype_descriptor * kcdata_subtype_descriptor_t;
338*e3723e1fSApple OSS Distributions
339*e3723e1fSApple OSS Distributions /*
340*e3723e1fSApple OSS Distributions * In case of array of basic c types in kctype_subtype_t,
341*e3723e1fSApple OSS Distributions * size is packed in lower 16 bits and
342*e3723e1fSApple OSS Distributions * count is packed in upper 16 bits of kcs_elem_size field.
343*e3723e1fSApple OSS Distributions */
344*e3723e1fSApple OSS Distributions #define KCS_SUBTYPE_PACK_SIZE(e_count, e_size) (((e_count)&0xffffu) << 16 | ((e_size)&0xffffu))
345*e3723e1fSApple OSS Distributions
346*e3723e1fSApple OSS Distributions static inline uint32_t
kcs_get_elem_size(kcdata_subtype_descriptor_t d)347*e3723e1fSApple OSS Distributions kcs_get_elem_size(kcdata_subtype_descriptor_t d)
348*e3723e1fSApple OSS Distributions {
349*e3723e1fSApple OSS Distributions if (d->kcs_flags & KCS_SUBTYPE_FLAGS_ARRAY) {
350*e3723e1fSApple OSS Distributions /* size is composed as ((count &0xffff)<<16 | (elem_size & 0xffff)) */
351*e3723e1fSApple OSS Distributions return (uint32_t)((d->kcs_elem_size & 0xffff) * ((d->kcs_elem_size & 0xffff0000) >> 16));
352*e3723e1fSApple OSS Distributions }
353*e3723e1fSApple OSS Distributions return d->kcs_elem_size;
354*e3723e1fSApple OSS Distributions }
355*e3723e1fSApple OSS Distributions
356*e3723e1fSApple OSS Distributions static inline uint32_t
kcs_get_elem_count(kcdata_subtype_descriptor_t d)357*e3723e1fSApple OSS Distributions kcs_get_elem_count(kcdata_subtype_descriptor_t d)
358*e3723e1fSApple OSS Distributions {
359*e3723e1fSApple OSS Distributions if (d->kcs_flags & KCS_SUBTYPE_FLAGS_ARRAY) {
360*e3723e1fSApple OSS Distributions return (d->kcs_elem_size >> 16) & 0xffff;
361*e3723e1fSApple OSS Distributions }
362*e3723e1fSApple OSS Distributions return 1;
363*e3723e1fSApple OSS Distributions }
364*e3723e1fSApple OSS Distributions
365*e3723e1fSApple OSS Distributions static inline int
kcs_set_elem_size(kcdata_subtype_descriptor_t d,uint32_t size,uint32_t count)366*e3723e1fSApple OSS Distributions kcs_set_elem_size(kcdata_subtype_descriptor_t d, uint32_t size, uint32_t count)
367*e3723e1fSApple OSS Distributions {
368*e3723e1fSApple OSS Distributions if (count > 1) {
369*e3723e1fSApple OSS Distributions /* means we are setting up an array */
370*e3723e1fSApple OSS Distributions if (size > 0xffff || count > 0xffff) {
371*e3723e1fSApple OSS Distributions return -1; //invalid argument
372*e3723e1fSApple OSS Distributions }
373*e3723e1fSApple OSS Distributions d->kcs_elem_size = ((count & 0xffff) << 16 | (size & 0xffff));
374*e3723e1fSApple OSS Distributions } else {
375*e3723e1fSApple OSS Distributions d->kcs_elem_size = size;
376*e3723e1fSApple OSS Distributions }
377*e3723e1fSApple OSS Distributions return 0;
378*e3723e1fSApple OSS Distributions }
379*e3723e1fSApple OSS Distributions
380*e3723e1fSApple OSS Distributions struct kcdata_type_definition {
381*e3723e1fSApple OSS Distributions uint32_t kct_type_identifier;
382*e3723e1fSApple OSS Distributions uint32_t kct_num_elements;
383*e3723e1fSApple OSS Distributions char kct_name[KCDATA_DESC_MAXLEN];
384*e3723e1fSApple OSS Distributions struct kcdata_subtype_descriptor kct_elements[];
385*e3723e1fSApple OSS Distributions };
386*e3723e1fSApple OSS Distributions
387*e3723e1fSApple OSS Distributions
388*e3723e1fSApple OSS Distributions /* chunk type definitions. 0 - 0x7ff are reserved and defined here
389*e3723e1fSApple OSS Distributions * NOTE: Please update kcdata/libkdd/kcdtypes.c if you make any changes
390*e3723e1fSApple OSS Distributions * in STACKSHOT_KCTYPE_* types.
391*e3723e1fSApple OSS Distributions */
392*e3723e1fSApple OSS Distributions
393*e3723e1fSApple OSS Distributions /*
394*e3723e1fSApple OSS Distributions * Types with description value.
395*e3723e1fSApple OSS Distributions * these will have KCDATA_DESC_MAXLEN-1 length string description
396*e3723e1fSApple OSS Distributions * and rest of kcdata_iter_size() - KCDATA_DESC_MAXLEN bytes as data
397*e3723e1fSApple OSS Distributions */
398*e3723e1fSApple OSS Distributions #define KCDATA_TYPE_INVALID 0x0u
399*e3723e1fSApple OSS Distributions #define KCDATA_TYPE_STRING_DESC 0x1u
400*e3723e1fSApple OSS Distributions #define KCDATA_TYPE_UINT32_DESC 0x2u
401*e3723e1fSApple OSS Distributions #define KCDATA_TYPE_UINT64_DESC 0x3u
402*e3723e1fSApple OSS Distributions #define KCDATA_TYPE_INT32_DESC 0x4u
403*e3723e1fSApple OSS Distributions #define KCDATA_TYPE_INT64_DESC 0x5u
404*e3723e1fSApple OSS Distributions #define KCDATA_TYPE_BINDATA_DESC 0x6u
405*e3723e1fSApple OSS Distributions
406*e3723e1fSApple OSS Distributions /*
407*e3723e1fSApple OSS Distributions * Compound type definitions
408*e3723e1fSApple OSS Distributions */
409*e3723e1fSApple OSS Distributions #define KCDATA_TYPE_ARRAY 0x11u /* Array of data OBSOLETE DONT USE THIS*/
410*e3723e1fSApple OSS Distributions #define KCDATA_TYPE_TYPEDEFINTION 0x12u /* Meta type that describes a type on the fly. */
411*e3723e1fSApple OSS Distributions #define KCDATA_TYPE_CONTAINER_BEGIN \
412*e3723e1fSApple OSS Distributions 0x13u /* Container type which has corresponding CONTAINER_END header. \
413*e3723e1fSApple OSS Distributions * KCDATA_TYPE_CONTAINER_BEGIN has type in the data segment. \
414*e3723e1fSApple OSS Distributions * Both headers have (uint64_t) ID for matching up nested data. \
415*e3723e1fSApple OSS Distributions */
416*e3723e1fSApple OSS Distributions #define KCDATA_TYPE_CONTAINER_END 0x14u
417*e3723e1fSApple OSS Distributions
418*e3723e1fSApple OSS Distributions #define KCDATA_TYPE_ARRAY_PAD0 0x20u /* Array of data with 0 byte of padding*/
419*e3723e1fSApple OSS Distributions #define KCDATA_TYPE_ARRAY_PAD1 0x21u /* Array of data with 1 byte of padding*/
420*e3723e1fSApple OSS Distributions #define KCDATA_TYPE_ARRAY_PAD2 0x22u /* Array of data with 2 byte of padding*/
421*e3723e1fSApple OSS Distributions #define KCDATA_TYPE_ARRAY_PAD3 0x23u /* Array of data with 3 byte of padding*/
422*e3723e1fSApple OSS Distributions #define KCDATA_TYPE_ARRAY_PAD4 0x24u /* Array of data with 4 byte of padding*/
423*e3723e1fSApple OSS Distributions #define KCDATA_TYPE_ARRAY_PAD5 0x25u /* Array of data with 5 byte of padding*/
424*e3723e1fSApple OSS Distributions #define KCDATA_TYPE_ARRAY_PAD6 0x26u /* Array of data with 6 byte of padding*/
425*e3723e1fSApple OSS Distributions #define KCDATA_TYPE_ARRAY_PAD7 0x27u /* Array of data with 7 byte of padding*/
426*e3723e1fSApple OSS Distributions #define KCDATA_TYPE_ARRAY_PAD8 0x28u /* Array of data with 8 byte of padding*/
427*e3723e1fSApple OSS Distributions #define KCDATA_TYPE_ARRAY_PAD9 0x29u /* Array of data with 9 byte of padding*/
428*e3723e1fSApple OSS Distributions #define KCDATA_TYPE_ARRAY_PADa 0x2au /* Array of data with a byte of padding*/
429*e3723e1fSApple OSS Distributions #define KCDATA_TYPE_ARRAY_PADb 0x2bu /* Array of data with b byte of padding*/
430*e3723e1fSApple OSS Distributions #define KCDATA_TYPE_ARRAY_PADc 0x2cu /* Array of data with c byte of padding*/
431*e3723e1fSApple OSS Distributions #define KCDATA_TYPE_ARRAY_PADd 0x2du /* Array of data with d byte of padding*/
432*e3723e1fSApple OSS Distributions #define KCDATA_TYPE_ARRAY_PADe 0x2eu /* Array of data with e byte of padding*/
433*e3723e1fSApple OSS Distributions #define KCDATA_TYPE_ARRAY_PADf 0x2fu /* Array of data with f byte of padding*/
434*e3723e1fSApple OSS Distributions
435*e3723e1fSApple OSS Distributions /*
436*e3723e1fSApple OSS Distributions * Generic data types that are most commonly used
437*e3723e1fSApple OSS Distributions */
438*e3723e1fSApple OSS Distributions #define KCDATA_TYPE_LIBRARY_LOADINFO 0x30u /* struct dyld_uuid_info_32 */
439*e3723e1fSApple OSS Distributions #define KCDATA_TYPE_LIBRARY_LOADINFO64 0x31u /* struct dyld_uuid_info_64 */
440*e3723e1fSApple OSS Distributions #define KCDATA_TYPE_TIMEBASE 0x32u /* struct mach_timebase_info */
441*e3723e1fSApple OSS Distributions #define KCDATA_TYPE_MACH_ABSOLUTE_TIME 0x33u /* uint64_t */
442*e3723e1fSApple OSS Distributions #define KCDATA_TYPE_TIMEVAL 0x34u /* struct timeval64 */
443*e3723e1fSApple OSS Distributions #define KCDATA_TYPE_USECS_SINCE_EPOCH 0x35u /* time in usecs uint64_t */
444*e3723e1fSApple OSS Distributions #define KCDATA_TYPE_PID 0x36u /* int32_t */
445*e3723e1fSApple OSS Distributions #define KCDATA_TYPE_PROCNAME 0x37u /* char * */
446*e3723e1fSApple OSS Distributions #define KCDATA_TYPE_NESTED_KCDATA 0x38u /* nested kcdata buffer */
447*e3723e1fSApple OSS Distributions #define KCDATA_TYPE_LIBRARY_AOTINFO 0x39u /* struct user64_dyld_aot_info */
448*e3723e1fSApple OSS Distributions
449*e3723e1fSApple OSS Distributions #define KCDATA_TYPE_BUFFER_END 0xF19158EDu
450*e3723e1fSApple OSS Distributions
451*e3723e1fSApple OSS Distributions /* MAGIC numbers defined for each class of chunked data
452*e3723e1fSApple OSS Distributions *
453*e3723e1fSApple OSS Distributions * To future-proof against big-endian arches, make sure none of these magic
454*e3723e1fSApple OSS Distributions * numbers are byteswaps of each other
455*e3723e1fSApple OSS Distributions */
456*e3723e1fSApple OSS Distributions
457*e3723e1fSApple OSS Distributions #define KCDATA_BUFFER_BEGIN_CRASHINFO 0xDEADF157u /* owner: corpses/task_corpse.h */
458*e3723e1fSApple OSS Distributions /* type-range: 0x800 - 0x8ff */
459*e3723e1fSApple OSS Distributions #define KCDATA_BUFFER_BEGIN_STACKSHOT 0x59a25807u /* owner: sys/stackshot.h */
460*e3723e1fSApple OSS Distributions /* type-range: 0x900 - 0x93f */
461*e3723e1fSApple OSS Distributions #define KCDATA_BUFFER_BEGIN_COMPRESSED 0x434f4d50u /* owner: sys/stackshot.h */
462*e3723e1fSApple OSS Distributions /* type-range: 0x900 - 0x93f */
463*e3723e1fSApple OSS Distributions #define KCDATA_BUFFER_BEGIN_DELTA_STACKSHOT 0xDE17A59Au /* owner: sys/stackshot.h */
464*e3723e1fSApple OSS Distributions /* type-range: 0x940 - 0x9ff */
465*e3723e1fSApple OSS Distributions #define KCDATA_BUFFER_BEGIN_BTINFO 0x46414E47u /* owner: kern/kern_exit.c */
466*e3723e1fSApple OSS Distributions /* type-range: 0xa01 - 0xaff */
467*e3723e1fSApple OSS Distributions #define KCDATA_BUFFER_BEGIN_OS_REASON 0x53A20900u /* owner: sys/reason.h */
468*e3723e1fSApple OSS Distributions /* type-range: 0x1000-0x103f */
469*e3723e1fSApple OSS Distributions #define KCDATA_BUFFER_BEGIN_XNUPOST_CONFIG 0x1e21c09fu /* owner: osfmk/tests/kernel_tests.c */
470*e3723e1fSApple OSS Distributions /* type-range: 0x1040-0x105f */
471*e3723e1fSApple OSS Distributions
472*e3723e1fSApple OSS Distributions /* next type range number available 0x1060 */
473*e3723e1fSApple OSS Distributions /**************** definitions for XNUPOST *********************/
474*e3723e1fSApple OSS Distributions #define XNUPOST_KCTYPE_TESTCONFIG 0x1040
475*e3723e1fSApple OSS Distributions
476*e3723e1fSApple OSS Distributions /**************** definitions for stackshot *********************/
477*e3723e1fSApple OSS Distributions
478*e3723e1fSApple OSS Distributions /* This value must always match IO_NUM_PRIORITIES defined in thread_info.h */
479*e3723e1fSApple OSS Distributions #define STACKSHOT_IO_NUM_PRIORITIES 4
480*e3723e1fSApple OSS Distributions /* This value must always match MAXTHREADNAMESIZE used in bsd */
481*e3723e1fSApple OSS Distributions #define STACKSHOT_MAX_THREAD_NAME_SIZE 64
482*e3723e1fSApple OSS Distributions
483*e3723e1fSApple OSS Distributions /*
484*e3723e1fSApple OSS Distributions * NOTE: Please update kcdata/libkdd/kcdtypes.c if you make any changes
485*e3723e1fSApple OSS Distributions * in STACKSHOT_KCTYPE_* types.
486*e3723e1fSApple OSS Distributions */
487*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_IOSTATS 0x901u /* io_stats_snapshot */
488*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_GLOBAL_MEM_STATS 0x902u /* struct mem_and_io_snapshot */
489*e3723e1fSApple OSS Distributions #define STACKSHOT_KCCONTAINER_TASK 0x903u
490*e3723e1fSApple OSS Distributions #define STACKSHOT_KCCONTAINER_THREAD 0x904u
491*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_TASK_SNAPSHOT 0x905u /* task_snapshot_v2 */
492*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_THREAD_SNAPSHOT 0x906u /* thread_snapshot_v2, thread_snapshot_v3 */
493*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_DONATING_PIDS 0x907u /* int[] */
494*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_SHAREDCACHE_LOADINFO 0x908u /* dyld_shared_cache_loadinfo */
495*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_THREAD_NAME 0x909u /* char[] */
496*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_KERN_STACKFRAME 0x90Au /* struct stack_snapshot_frame32 */
497*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_KERN_STACKFRAME64 0x90Bu /* struct stack_snapshot_frame64 */
498*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_USER_STACKFRAME 0x90Cu /* struct stack_snapshot_frame32 */
499*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_USER_STACKFRAME64 0x90Du /* struct stack_snapshot_frame64 */
500*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_BOOTARGS 0x90Eu /* boot args string */
501*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_OSVERSION 0x90Fu /* os version string, same as running uname -a */
502*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_KERN_PAGE_SIZE 0x910u /* kernel page size in uint32_t */
503*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_JETSAM_LEVEL 0x911u /* jetsam level in uint32_t */
504*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_DELTA_SINCE_TIMESTAMP 0x912u /* timestamp used for the delta stackshot */
505*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_KERN_STACKLR 0x913u /* uint32_t */
506*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_KERN_STACKLR64 0x914u /* uint64_t */
507*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_USER_STACKLR 0x915u /* uint32_t */
508*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_USER_STACKLR64 0x916u /* uint64_t */
509*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_NONRUNNABLE_TIDS 0x917u /* uint64_t */
510*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_NONRUNNABLE_TASKS 0x918u /* uint64_t */
511*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_CPU_TIMES 0x919u /* struct stackshot_cpu_times or stackshot_cpu_times_v2 */
512*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_STACKSHOT_DURATION 0x91au /* struct stackshot_duration */
513*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_STACKSHOT_FAULT_STATS 0x91bu /* struct stackshot_fault_stats */
514*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_KERNELCACHE_LOADINFO 0x91cu /* kernelcache UUID -- same as KCDATA_TYPE_LIBRARY_LOADINFO64 */
515*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_THREAD_WAITINFO 0x91du /* struct stackshot_thread_waitinfo */
516*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_THREAD_GROUP_SNAPSHOT 0x91eu /* struct thread_group_snapshot{,_v2,_v3} */
517*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_THREAD_GROUP 0x91fu /* uint64_t */
518*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_JETSAM_COALITION_SNAPSHOT 0x920u /* struct jetsam_coalition_snapshot */
519*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_JETSAM_COALITION 0x921u /* uint64_t */
520*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_THREAD_POLICY_VERSION 0x922u /* THREAD_POLICY_INTERNAL_STRUCT_VERSION in uint32 */
521*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_INSTRS_CYCLES 0x923u /* struct instrs_cycles_snapshot_v2 */
522*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_USER_STACKTOP 0x924u /* struct stack_snapshot_stacktop */
523*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_ASID 0x925u /* uint32_t */
524*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_PAGE_TABLES 0x926u /* uint64_t */
525*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_SYS_SHAREDCACHE_LAYOUT 0x927u /* same as KCDATA_TYPE_LIBRARY_LOADINFO64 */
526*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_THREAD_DISPATCH_QUEUE_LABEL 0x928u /* dispatch queue label */
527*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_THREAD_TURNSTILEINFO 0x929u /* struct stackshot_thread_turnstileinfo */
528*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_TASK_CPU_ARCHITECTURE 0x92au /* struct stackshot_cpu_architecture */
529*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_LATENCY_INFO 0x92bu /* struct stackshot_latency_collection_v2 */
530*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_LATENCY_INFO_TASK 0x92cu /* struct stackshot_latency_task */
531*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_LATENCY_INFO_THREAD 0x92du /* struct stackshot_latency_thread */
532*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_LOADINFO64_TEXT_EXEC 0x92eu /* TEXT_EXEC load info -- same as KCDATA_TYPE_LIBRARY_LOADINFO64 */
533*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_AOTCACHE_LOADINFO 0x92fu /* struct dyld_aot_cache_uuid_info */
534*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_TRANSITIONING_TASK_SNAPSHOT 0x930u /* transitioning_task_snapshot */
535*e3723e1fSApple OSS Distributions #define STACKSHOT_KCCONTAINER_TRANSITIONING_TASK 0x931u
536*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_USER_ASYNC_START_INDEX 0x932u /* uint32_t index in user_stack of beginning of async stack */
537*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_USER_ASYNC_STACKLR64 0x933u /* uint64_t async stack pointers */
538*e3723e1fSApple OSS Distributions #define STACKSHOT_KCCONTAINER_PORTLABEL 0x934u /* container for port label info */
539*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_PORTLABEL 0x935u /* struct stackshot_portlabel */
540*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_PORTLABEL_NAME 0x936u /* string port name */
541*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_DYLD_COMPACTINFO 0x937u /* binary blob of dyld info (variable size) */
542*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_SUSPENSION_INFO 0x938u /* struct stackshot_suspension_info */
543*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_SUSPENSION_SOURCE 0x939u /* struct stackshot_suspension_source */
544*e3723e1fSApple OSS Distributions
545*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_TASK_DELTA_SNAPSHOT 0x940u /* task_delta_snapshot_v2 */
546*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_THREAD_DELTA_SNAPSHOT 0x941u /* thread_delta_snapshot_v* */
547*e3723e1fSApple OSS Distributions #define STACKSHOT_KCCONTAINER_SHAREDCACHE 0x942u /* container for shared cache info */
548*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_SHAREDCACHE_INFO 0x943u /* dyld_shared_cache_loadinfo_v2 */
549*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_SHAREDCACHE_AOTINFO 0x944u /* struct dyld_aot_cache_uuid_info */
550*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_SHAREDCACHE_ID 0x945u /* uint32_t in task: if we aren't attached to Primary, which one */
551*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_CODESIGNING_INFO 0x946u /* struct stackshot_task_codesigning_info */
552*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_OS_BUILD_VERSION 0x947u /* os build version string (ex: 20A123) */
553*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_KERN_EXCLAVES_THREADINFO 0x948u /* struct thread_exclaves_info */
554*e3723e1fSApple OSS Distributions #define STACKSHOT_KCCONTAINER_EXCLAVES 0x949u /* exclave threads info */
555*e3723e1fSApple OSS Distributions #define STACKSHOT_KCCONTAINER_EXCLAVE_SCRESULT 0x94au /* exclave thread container for one scid */
556*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_EXCLAVE_SCRESULT_INFO 0x94bu /* struct exclave_scresult_info */
557*e3723e1fSApple OSS Distributions #define STACKSHOT_KCCONTAINER_EXCLAVE_IPCSTACKENTRY 0x94cu /* container for one chunk of exclave IPC chain */
558*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_EXCLAVE_IPCSTACKENTRY_INFO 0x94du /* struct exclave_ipcstackentry_info */
559*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_EXCLAVE_IPCSTACKENTRY_ECSTACK 0x94eu /* exclave_ecstackentry_addr_t */
560*e3723e1fSApple OSS Distributions #define STACKSHOT_KCCONTAINER_EXCLAVE_ADDRESSSPACE 0x94fu /* exclave address space container */
561*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_EXCLAVE_ADDRESSSPACE_INFO 0x950u /* struct exclave_addressspace_info */
562*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_EXCLAVE_ADDRESSSPACE_NAME 0x951u /* exclave component name */
563*e3723e1fSApple OSS Distributions #define STACKSHOT_KCCONTAINER_EXCLAVE_TEXTLAYOUT 0x952u /* exclave text layout container */
564*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_EXCLAVE_TEXTLAYOUT_INFO 0x953u /* struct exclave_textlayout_info */
565*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_EXCLAVE_TEXTLAYOUT_SEGMENTS 0x954u /* struct exclave_textlayout_segment_v2 */
566*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_KERN_EXCLAVES_CRASH_THREADINFO 0x955u /* struct thread_crash_exclaves_info */
567*e3723e1fSApple OSS Distributions #define STACKSHOT_KCTYPE_LATENCY_INFO_CPU 0x956u /* struct stackshot_latency_cpu */
568*e3723e1fSApple OSS Distributions
569*e3723e1fSApple OSS Distributions struct stack_snapshot_frame32 {
570*e3723e1fSApple OSS Distributions uint32_t lr;
571*e3723e1fSApple OSS Distributions uint32_t sp;
572*e3723e1fSApple OSS Distributions };
573*e3723e1fSApple OSS Distributions
574*e3723e1fSApple OSS Distributions struct stack_snapshot_frame64 {
575*e3723e1fSApple OSS Distributions uint64_t lr;
576*e3723e1fSApple OSS Distributions uint64_t sp;
577*e3723e1fSApple OSS Distributions };
578*e3723e1fSApple OSS Distributions
579*e3723e1fSApple OSS Distributions struct dyld_uuid_info_32 {
580*e3723e1fSApple OSS Distributions uint32_t imageLoadAddress; /* base address image is mapped at */
581*e3723e1fSApple OSS Distributions uuid_t imageUUID;
582*e3723e1fSApple OSS Distributions };
583*e3723e1fSApple OSS Distributions
584*e3723e1fSApple OSS Distributions struct dyld_uuid_info_64 {
585*e3723e1fSApple OSS Distributions uint64_t imageLoadAddress; /* XXX image slide */
586*e3723e1fSApple OSS Distributions uuid_t imageUUID;
587*e3723e1fSApple OSS Distributions };
588*e3723e1fSApple OSS Distributions
589*e3723e1fSApple OSS Distributions /*
590*e3723e1fSApple OSS Distributions * N.B.: Newer kernels output dyld_shared_cache_loadinfo structures
591*e3723e1fSApple OSS Distributions * instead of this, since the field names match their contents better.
592*e3723e1fSApple OSS Distributions */
593*e3723e1fSApple OSS Distributions struct dyld_uuid_info_64_v2 {
594*e3723e1fSApple OSS Distributions uint64_t imageLoadAddress; /* XXX image slide */
595*e3723e1fSApple OSS Distributions uuid_t imageUUID;
596*e3723e1fSApple OSS Distributions /* end of version 1 of dyld_uuid_info_64. sizeof v1 was 24 */
597*e3723e1fSApple OSS Distributions uint64_t imageSlidBaseAddress; /* slid base address or slid first mapping of image */
598*e3723e1fSApple OSS Distributions };
599*e3723e1fSApple OSS Distributions
600*e3723e1fSApple OSS Distributions enum dyld_shared_cache_flags {
601*e3723e1fSApple OSS Distributions kSharedCacheSystemPrimary = 0x1, /* primary shared cache on the system; attached tasks will have kTaskSharedRegionSystem set */
602*e3723e1fSApple OSS Distributions kSharedCacheDriverkit = 0x2, /* driverkit shared cache */
603*e3723e1fSApple OSS Distributions kSharedCacheAOT = 0x4, /* Rosetta shared cache */
604*e3723e1fSApple OSS Distributions };
605*e3723e1fSApple OSS Distributions
606*e3723e1fSApple OSS Distributions /*
607*e3723e1fSApple OSS Distributions * This is the renamed version of dyld_uuid_info_64 with more accurate
608*e3723e1fSApple OSS Distributions * field names, for STACKSHOT_KCTYPE_SHAREDCACHE_LOADINFO. Any users
609*e3723e1fSApple OSS Distributions * must be aware of the dyld_uuid_info_64* version history and ensure
610*e3723e1fSApple OSS Distributions * the fields they are accessing are within the actual bounds.
611*e3723e1fSApple OSS Distributions *
612*e3723e1fSApple OSS Distributions * OLD_FIELD NEW_FIELD
613*e3723e1fSApple OSS Distributions * imageLoadAddress sharedCacheSlide
614*e3723e1fSApple OSS Distributions * imageUUID sharedCacheUUID
615*e3723e1fSApple OSS Distributions * imageSlidBaseAddress sharedCacheUnreliableSlidBaseAddress
616*e3723e1fSApple OSS Distributions * - sharedCacheSlidFirstMapping
617*e3723e1fSApple OSS Distributions * - sharedCacheID
618*e3723e1fSApple OSS Distributions * - sharedCacheFlags
619*e3723e1fSApple OSS Distributions */
620*e3723e1fSApple OSS Distributions struct dyld_shared_cache_loadinfo_v2 {
621*e3723e1fSApple OSS Distributions uint64_t sharedCacheSlide; /* image slide value */
622*e3723e1fSApple OSS Distributions uuid_t sharedCacheUUID;
623*e3723e1fSApple OSS Distributions /* end of version 1 of dyld_uuid_info_64. sizeof v1 was 24 */
624*e3723e1fSApple OSS Distributions uint64_t sharedCacheUnreliableSlidBaseAddress; /* for backwards-compatibility; use sharedCacheSlidFirstMapping if available */
625*e3723e1fSApple OSS Distributions /* end of version 2 of dyld_uuid_info_64. sizeof v2 was 32 */
626*e3723e1fSApple OSS Distributions uint64_t sharedCacheSlidFirstMapping; /* slid base address of first mapping */
627*e3723e1fSApple OSS Distributions /* end of version 1 of dyld_shared_cache_loadinfo. sizeof was 40 */
628*e3723e1fSApple OSS Distributions uint32_t sharedCacheID; /* ID of shared cache */
629*e3723e1fSApple OSS Distributions uint32_t sharedCacheFlags;
630*e3723e1fSApple OSS Distributions };
631*e3723e1fSApple OSS Distributions
632*e3723e1fSApple OSS Distributions struct dyld_shared_cache_loadinfo {
633*e3723e1fSApple OSS Distributions uint64_t sharedCacheSlide; /* image slide value */
634*e3723e1fSApple OSS Distributions uuid_t sharedCacheUUID;
635*e3723e1fSApple OSS Distributions /* end of version 1 of dyld_uuid_info_64. sizeof v1 was 24 */
636*e3723e1fSApple OSS Distributions uint64_t sharedCacheUnreliableSlidBaseAddress; /* for backwards-compatibility; use sharedCacheSlidFirstMapping if available */
637*e3723e1fSApple OSS Distributions /* end of version 2 of dyld_uuid_info_64. sizeof v2 was 32 */
638*e3723e1fSApple OSS Distributions uint64_t sharedCacheSlidFirstMapping; /* slid base address of first mapping */
639*e3723e1fSApple OSS Distributions };
640*e3723e1fSApple OSS Distributions
641*e3723e1fSApple OSS Distributions struct dyld_aot_cache_uuid_info {
642*e3723e1fSApple OSS Distributions uint64_t x86SlidBaseAddress; /* slid first mapping address of x86 shared cache */
643*e3723e1fSApple OSS Distributions uuid_t x86UUID; /* UUID of x86 shared cache */
644*e3723e1fSApple OSS Distributions uint64_t aotSlidBaseAddress; /* slide first mapping address of aot cache */
645*e3723e1fSApple OSS Distributions uuid_t aotUUID; /* UUID of aot shared cache */
646*e3723e1fSApple OSS Distributions };
647*e3723e1fSApple OSS Distributions
648*e3723e1fSApple OSS Distributions struct user32_dyld_uuid_info {
649*e3723e1fSApple OSS Distributions uint32_t imageLoadAddress; /* base address image is mapped into */
650*e3723e1fSApple OSS Distributions uuid_t imageUUID; /* UUID of image */
651*e3723e1fSApple OSS Distributions };
652*e3723e1fSApple OSS Distributions
653*e3723e1fSApple OSS Distributions struct user64_dyld_uuid_info {
654*e3723e1fSApple OSS Distributions uint64_t imageLoadAddress; /* base address image is mapped into */
655*e3723e1fSApple OSS Distributions uuid_t imageUUID; /* UUID of image */
656*e3723e1fSApple OSS Distributions };
657*e3723e1fSApple OSS Distributions
658*e3723e1fSApple OSS Distributions #define DYLD_AOT_IMAGE_KEY_SIZE 32
659*e3723e1fSApple OSS Distributions
660*e3723e1fSApple OSS Distributions struct user64_dyld_aot_info {
661*e3723e1fSApple OSS Distributions uint64_t x86LoadAddress;
662*e3723e1fSApple OSS Distributions uint64_t aotLoadAddress;
663*e3723e1fSApple OSS Distributions uint64_t aotImageSize;
664*e3723e1fSApple OSS Distributions uint8_t aotImageKey[DYLD_AOT_IMAGE_KEY_SIZE];
665*e3723e1fSApple OSS Distributions };
666*e3723e1fSApple OSS Distributions
667*e3723e1fSApple OSS Distributions enum task_snapshot_flags {
668*e3723e1fSApple OSS Distributions /* k{User,Kernel}64_p (values 0x1 and 0x2) are defined in generic_snapshot_flags */
669*e3723e1fSApple OSS Distributions kTaskRsrcFlagged = 0x4, // In the EXC_RESOURCE danger zone?
670*e3723e1fSApple OSS Distributions kTerminatedSnapshot = 0x8,
671*e3723e1fSApple OSS Distributions kPidSuspended = 0x10, // true for suspended task
672*e3723e1fSApple OSS Distributions kFrozen = 0x20, // true for hibernated task (along with pidsuspended)
673*e3723e1fSApple OSS Distributions kTaskDarwinBG = 0x40,
674*e3723e1fSApple OSS Distributions kTaskExtDarwinBG = 0x80,
675*e3723e1fSApple OSS Distributions kTaskVisVisible = 0x100,
676*e3723e1fSApple OSS Distributions kTaskVisNonvisible = 0x200,
677*e3723e1fSApple OSS Distributions kTaskIsForeground = 0x400,
678*e3723e1fSApple OSS Distributions kTaskIsBoosted = 0x800,
679*e3723e1fSApple OSS Distributions kTaskIsSuppressed = 0x1000,
680*e3723e1fSApple OSS Distributions kTaskIsTimerThrottled = 0x2000, /* deprecated */
681*e3723e1fSApple OSS Distributions kTaskIsImpDonor = 0x4000,
682*e3723e1fSApple OSS Distributions kTaskIsLiveImpDonor = 0x8000,
683*e3723e1fSApple OSS Distributions kTaskIsDirty = 0x10000,
684*e3723e1fSApple OSS Distributions kTaskWqExceededConstrainedThreadLimit = 0x20000,
685*e3723e1fSApple OSS Distributions kTaskWqExceededTotalThreadLimit = 0x40000,
686*e3723e1fSApple OSS Distributions kTaskWqFlagsAvailable = 0x80000,
687*e3723e1fSApple OSS Distributions kTaskUUIDInfoFaultedIn = 0x100000, /* successfully faulted in some UUID info */
688*e3723e1fSApple OSS Distributions kTaskUUIDInfoMissing = 0x200000, /* some UUID info was paged out */
689*e3723e1fSApple OSS Distributions kTaskUUIDInfoTriedFault = 0x400000, /* tried to fault in UUID info */
690*e3723e1fSApple OSS Distributions kTaskSharedRegionInfoUnavailable = 0x800000, /* shared region info unavailable */
691*e3723e1fSApple OSS Distributions kTaskTALEngaged = 0x1000000,
692*e3723e1fSApple OSS Distributions /* 0x2000000 unused */
693*e3723e1fSApple OSS Distributions kTaskIsDirtyTracked = 0x4000000,
694*e3723e1fSApple OSS Distributions kTaskAllowIdleExit = 0x8000000,
695*e3723e1fSApple OSS Distributions kTaskIsTranslated = 0x10000000,
696*e3723e1fSApple OSS Distributions kTaskSharedRegionNone = 0x20000000, /* task doesn't have a shared region */
697*e3723e1fSApple OSS Distributions kTaskSharedRegionSystem = 0x40000000, /* task attached to region with kSharedCacheSystemPrimary set */
698*e3723e1fSApple OSS Distributions kTaskSharedRegionOther = 0x80000000, /* task is attached to a different shared region */
699*e3723e1fSApple OSS Distributions kTaskDyldCompactInfoNone = 0x100000000,
700*e3723e1fSApple OSS Distributions kTaskDyldCompactInfoTooBig = 0x200000000,
701*e3723e1fSApple OSS Distributions kTaskDyldCompactInfoFaultedIn = 0x400000000,
702*e3723e1fSApple OSS Distributions kTaskDyldCompactInfoMissing = 0x800000000,
703*e3723e1fSApple OSS Distributions kTaskDyldCompactInfoTriedFault = 0x1000000000,
704*e3723e1fSApple OSS Distributions kTaskWqExceededCooperativeThreadLimit = 0x2000000000,
705*e3723e1fSApple OSS Distributions kTaskWqExceededActiveConstrainedThreadLimit = 0x4000000000,
706*e3723e1fSApple OSS Distributions }; // Note: Add any new flags to kcdata.py (ts_ss_flags)
707*e3723e1fSApple OSS Distributions
708*e3723e1fSApple OSS Distributions enum task_transition_type {
709*e3723e1fSApple OSS Distributions kTaskIsTerminated = 0x1,// Past LPEXIT
710*e3723e1fSApple OSS Distributions };
711*e3723e1fSApple OSS Distributions
712*e3723e1fSApple OSS Distributions enum thread_snapshot_flags {
713*e3723e1fSApple OSS Distributions /* k{User,Kernel}64_p (values 0x1 and 0x2) are defined in generic_snapshot_flags */
714*e3723e1fSApple OSS Distributions kHasDispatchSerial = 0x4,
715*e3723e1fSApple OSS Distributions kStacksPCOnly = 0x8, /* Stack traces have no frame pointers. */
716*e3723e1fSApple OSS Distributions kThreadDarwinBG = 0x10, /* Thread is darwinbg */
717*e3723e1fSApple OSS Distributions kThreadIOPassive = 0x20, /* Thread uses passive IO */
718*e3723e1fSApple OSS Distributions kThreadSuspended = 0x40, /* Thread is suspended */
719*e3723e1fSApple OSS Distributions kThreadTruncatedBT = 0x80, /* Unmapped pages caused truncated backtrace */
720*e3723e1fSApple OSS Distributions kGlobalForcedIdle = 0x100, /* Thread performs global forced idle */
721*e3723e1fSApple OSS Distributions kThreadFaultedBT = 0x200, /* Some thread stack pages were faulted in as part of BT */
722*e3723e1fSApple OSS Distributions kThreadTriedFaultBT = 0x400, /* We tried to fault in thread stack pages as part of BT */
723*e3723e1fSApple OSS Distributions kThreadOnCore = 0x800, /* Thread was on-core when we entered debugger context */
724*e3723e1fSApple OSS Distributions kThreadIdleWorker = 0x1000, /* Thread is an idle libpthread worker thread */
725*e3723e1fSApple OSS Distributions kThreadMain = 0x2000, /* Thread is the main thread */
726*e3723e1fSApple OSS Distributions kThreadTruncKernBT = 0x4000, /* Unmapped pages caused truncated kernel BT */
727*e3723e1fSApple OSS Distributions kThreadTruncUserBT = 0x8000, /* Unmapped pages caused truncated user BT */
728*e3723e1fSApple OSS Distributions kThreadTruncUserAsyncBT = 0x10000, /* Unmapped pages caused truncated user async BT */
729*e3723e1fSApple OSS Distributions }; // Note: Add any new flags to kcdata.py (ths_ss_flags)
730*e3723e1fSApple OSS Distributions
731*e3723e1fSApple OSS Distributions struct mem_and_io_snapshot {
732*e3723e1fSApple OSS Distributions uint32_t snapshot_magic;
733*e3723e1fSApple OSS Distributions uint32_t free_pages;
734*e3723e1fSApple OSS Distributions uint32_t active_pages;
735*e3723e1fSApple OSS Distributions uint32_t inactive_pages;
736*e3723e1fSApple OSS Distributions uint32_t purgeable_pages;
737*e3723e1fSApple OSS Distributions uint32_t wired_pages;
738*e3723e1fSApple OSS Distributions uint32_t speculative_pages;
739*e3723e1fSApple OSS Distributions uint32_t throttled_pages;
740*e3723e1fSApple OSS Distributions uint32_t filebacked_pages;
741*e3723e1fSApple OSS Distributions uint32_t compressions;
742*e3723e1fSApple OSS Distributions uint32_t decompressions;
743*e3723e1fSApple OSS Distributions uint32_t compressor_size;
744*e3723e1fSApple OSS Distributions int32_t busy_buffer_count;
745*e3723e1fSApple OSS Distributions uint32_t pages_wanted;
746*e3723e1fSApple OSS Distributions uint32_t pages_reclaimed;
747*e3723e1fSApple OSS Distributions uint8_t pages_wanted_reclaimed_valid; // did mach_vm_pressure_monitor succeed?
748*e3723e1fSApple OSS Distributions } __attribute__((packed));
749*e3723e1fSApple OSS Distributions
750*e3723e1fSApple OSS Distributions /* SS_TH_* macros are for ths_state */
751*e3723e1fSApple OSS Distributions #define SS_TH_WAIT 0x01 /* queued for waiting */
752*e3723e1fSApple OSS Distributions #define SS_TH_SUSP 0x02 /* stopped or requested to stop */
753*e3723e1fSApple OSS Distributions #define SS_TH_RUN 0x04 /* running or on runq */
754*e3723e1fSApple OSS Distributions #define SS_TH_UNINT 0x08 /* waiting uninteruptibly */
755*e3723e1fSApple OSS Distributions #define SS_TH_TERMINATE 0x10 /* halted at termination */
756*e3723e1fSApple OSS Distributions #define SS_TH_TERMINATE2 0x20 /* added to termination queue */
757*e3723e1fSApple OSS Distributions #define SS_TH_IDLE 0x80 /* idling processor */
758*e3723e1fSApple OSS Distributions
759*e3723e1fSApple OSS Distributions struct thread_snapshot_v2 {
760*e3723e1fSApple OSS Distributions uint64_t ths_thread_id;
761*e3723e1fSApple OSS Distributions uint64_t ths_wait_event;
762*e3723e1fSApple OSS Distributions uint64_t ths_continuation;
763*e3723e1fSApple OSS Distributions uint64_t ths_total_syscalls;
764*e3723e1fSApple OSS Distributions uint64_t ths_voucher_identifier;
765*e3723e1fSApple OSS Distributions uint64_t ths_dqserialnum;
766*e3723e1fSApple OSS Distributions uint64_t ths_user_time;
767*e3723e1fSApple OSS Distributions uint64_t ths_sys_time;
768*e3723e1fSApple OSS Distributions uint64_t ths_ss_flags;
769*e3723e1fSApple OSS Distributions uint64_t ths_last_run_time;
770*e3723e1fSApple OSS Distributions uint64_t ths_last_made_runnable_time;
771*e3723e1fSApple OSS Distributions uint32_t ths_state;
772*e3723e1fSApple OSS Distributions uint32_t ths_sched_flags;
773*e3723e1fSApple OSS Distributions int16_t ths_base_priority;
774*e3723e1fSApple OSS Distributions int16_t ths_sched_priority;
775*e3723e1fSApple OSS Distributions uint8_t ths_eqos;
776*e3723e1fSApple OSS Distributions uint8_t ths_rqos;
777*e3723e1fSApple OSS Distributions uint8_t ths_rqos_override;
778*e3723e1fSApple OSS Distributions uint8_t ths_io_tier;
779*e3723e1fSApple OSS Distributions } __attribute__((packed));
780*e3723e1fSApple OSS Distributions
781*e3723e1fSApple OSS Distributions struct thread_snapshot_v3 {
782*e3723e1fSApple OSS Distributions uint64_t ths_thread_id;
783*e3723e1fSApple OSS Distributions uint64_t ths_wait_event;
784*e3723e1fSApple OSS Distributions uint64_t ths_continuation;
785*e3723e1fSApple OSS Distributions uint64_t ths_total_syscalls;
786*e3723e1fSApple OSS Distributions uint64_t ths_voucher_identifier;
787*e3723e1fSApple OSS Distributions uint64_t ths_dqserialnum;
788*e3723e1fSApple OSS Distributions uint64_t ths_user_time;
789*e3723e1fSApple OSS Distributions uint64_t ths_sys_time;
790*e3723e1fSApple OSS Distributions uint64_t ths_ss_flags;
791*e3723e1fSApple OSS Distributions uint64_t ths_last_run_time;
792*e3723e1fSApple OSS Distributions uint64_t ths_last_made_runnable_time;
793*e3723e1fSApple OSS Distributions uint32_t ths_state;
794*e3723e1fSApple OSS Distributions uint32_t ths_sched_flags;
795*e3723e1fSApple OSS Distributions int16_t ths_base_priority;
796*e3723e1fSApple OSS Distributions int16_t ths_sched_priority;
797*e3723e1fSApple OSS Distributions uint8_t ths_eqos;
798*e3723e1fSApple OSS Distributions uint8_t ths_rqos;
799*e3723e1fSApple OSS Distributions uint8_t ths_rqos_override;
800*e3723e1fSApple OSS Distributions uint8_t ths_io_tier;
801*e3723e1fSApple OSS Distributions uint64_t ths_thread_t;
802*e3723e1fSApple OSS Distributions } __attribute__((packed));
803*e3723e1fSApple OSS Distributions
804*e3723e1fSApple OSS Distributions
805*e3723e1fSApple OSS Distributions struct thread_snapshot_v4 {
806*e3723e1fSApple OSS Distributions uint64_t ths_thread_id;
807*e3723e1fSApple OSS Distributions uint64_t ths_wait_event;
808*e3723e1fSApple OSS Distributions uint64_t ths_continuation;
809*e3723e1fSApple OSS Distributions uint64_t ths_total_syscalls;
810*e3723e1fSApple OSS Distributions uint64_t ths_voucher_identifier;
811*e3723e1fSApple OSS Distributions uint64_t ths_dqserialnum;
812*e3723e1fSApple OSS Distributions uint64_t ths_user_time;
813*e3723e1fSApple OSS Distributions uint64_t ths_sys_time;
814*e3723e1fSApple OSS Distributions uint64_t ths_ss_flags;
815*e3723e1fSApple OSS Distributions uint64_t ths_last_run_time;
816*e3723e1fSApple OSS Distributions uint64_t ths_last_made_runnable_time;
817*e3723e1fSApple OSS Distributions uint32_t ths_state;
818*e3723e1fSApple OSS Distributions uint32_t ths_sched_flags;
819*e3723e1fSApple OSS Distributions int16_t ths_base_priority;
820*e3723e1fSApple OSS Distributions int16_t ths_sched_priority;
821*e3723e1fSApple OSS Distributions uint8_t ths_eqos;
822*e3723e1fSApple OSS Distributions uint8_t ths_rqos;
823*e3723e1fSApple OSS Distributions uint8_t ths_rqos_override;
824*e3723e1fSApple OSS Distributions uint8_t ths_io_tier;
825*e3723e1fSApple OSS Distributions uint64_t ths_thread_t;
826*e3723e1fSApple OSS Distributions uint64_t ths_requested_policy;
827*e3723e1fSApple OSS Distributions uint64_t ths_effective_policy;
828*e3723e1fSApple OSS Distributions } __attribute__((packed));
829*e3723e1fSApple OSS Distributions
830*e3723e1fSApple OSS Distributions
831*e3723e1fSApple OSS Distributions struct thread_group_snapshot {
832*e3723e1fSApple OSS Distributions uint64_t tgs_id;
833*e3723e1fSApple OSS Distributions char tgs_name[16];
834*e3723e1fSApple OSS Distributions } __attribute__((packed));
835*e3723e1fSApple OSS Distributions
836*e3723e1fSApple OSS Distributions /*
837*e3723e1fSApple OSS Distributions * In general these flags mirror their THREAD_GROUP_FLAGS_ counterparts.
838*e3723e1fSApple OSS Distributions * THREAD_GROUP_FLAGS_UI_APP was repurposed and THREAD_GROUP_FLAGS_APPLICATION
839*e3723e1fSApple OSS Distributions * introduced to take its place. To remain compatible, kThreadGroupUIApp is
840*e3723e1fSApple OSS Distributions * kept around and kThreadGroupUIApplication introduced.
841*e3723e1fSApple OSS Distributions */
842*e3723e1fSApple OSS Distributions enum thread_group_flags {
843*e3723e1fSApple OSS Distributions kThreadGroupEfficient = 0x1,
844*e3723e1fSApple OSS Distributions kThreadGroupApplication = 0x2,
845*e3723e1fSApple OSS Distributions kThreadGroupUIApp = 0x2,
846*e3723e1fSApple OSS Distributions kThreadGroupCritical = 0x4,
847*e3723e1fSApple OSS Distributions kThreadGroupBestEffort = 0x8,
848*e3723e1fSApple OSS Distributions kThreadGroupUIApplication = 0x100,
849*e3723e1fSApple OSS Distributions kThreadGroupManaged = 0x200,
850*e3723e1fSApple OSS Distributions kThreadGroupStrictTimers = 0x400,
851*e3723e1fSApple OSS Distributions }; // Note: Add any new flags to kcdata.py (tgs_flags)
852*e3723e1fSApple OSS Distributions
853*e3723e1fSApple OSS Distributions struct thread_group_snapshot_v2 {
854*e3723e1fSApple OSS Distributions uint64_t tgs_id;
855*e3723e1fSApple OSS Distributions char tgs_name[16];
856*e3723e1fSApple OSS Distributions uint64_t tgs_flags;
857*e3723e1fSApple OSS Distributions } __attribute__((packed));
858*e3723e1fSApple OSS Distributions
859*e3723e1fSApple OSS Distributions struct thread_group_snapshot_v3 {
860*e3723e1fSApple OSS Distributions uint64_t tgs_id;
861*e3723e1fSApple OSS Distributions char tgs_name[16];
862*e3723e1fSApple OSS Distributions uint64_t tgs_flags;
863*e3723e1fSApple OSS Distributions char tgs_name_cont[16];
864*e3723e1fSApple OSS Distributions } __attribute__((packed));
865*e3723e1fSApple OSS Distributions
866*e3723e1fSApple OSS Distributions enum coalition_flags {
867*e3723e1fSApple OSS Distributions kCoalitionTermRequested = 0x1,
868*e3723e1fSApple OSS Distributions kCoalitionTerminated = 0x2,
869*e3723e1fSApple OSS Distributions kCoalitionReaped = 0x4,
870*e3723e1fSApple OSS Distributions kCoalitionPrivileged = 0x8,
871*e3723e1fSApple OSS Distributions }; // Note: Add any new flags to kcdata.py (jcs_flags)
872*e3723e1fSApple OSS Distributions
873*e3723e1fSApple OSS Distributions struct jetsam_coalition_snapshot {
874*e3723e1fSApple OSS Distributions uint64_t jcs_id;
875*e3723e1fSApple OSS Distributions uint64_t jcs_flags;
876*e3723e1fSApple OSS Distributions uint64_t jcs_thread_group;
877*e3723e1fSApple OSS Distributions uint64_t jcs_leader_task_uniqueid;
878*e3723e1fSApple OSS Distributions } __attribute__((packed));
879*e3723e1fSApple OSS Distributions
880*e3723e1fSApple OSS Distributions struct instrs_cycles_snapshot {
881*e3723e1fSApple OSS Distributions uint64_t ics_instructions;
882*e3723e1fSApple OSS Distributions uint64_t ics_cycles;
883*e3723e1fSApple OSS Distributions } __attribute__((packed));
884*e3723e1fSApple OSS Distributions
885*e3723e1fSApple OSS Distributions struct instrs_cycles_snapshot_v2 {
886*e3723e1fSApple OSS Distributions uint64_t ics_instructions;
887*e3723e1fSApple OSS Distributions uint64_t ics_cycles;
888*e3723e1fSApple OSS Distributions uint64_t ics_p_instructions;
889*e3723e1fSApple OSS Distributions uint64_t ics_p_cycles;
890*e3723e1fSApple OSS Distributions } __attribute__((packed));
891*e3723e1fSApple OSS Distributions
892*e3723e1fSApple OSS Distributions struct thread_delta_snapshot_v2 {
893*e3723e1fSApple OSS Distributions uint64_t tds_thread_id;
894*e3723e1fSApple OSS Distributions uint64_t tds_voucher_identifier;
895*e3723e1fSApple OSS Distributions uint64_t tds_ss_flags;
896*e3723e1fSApple OSS Distributions uint64_t tds_last_made_runnable_time;
897*e3723e1fSApple OSS Distributions uint32_t tds_state;
898*e3723e1fSApple OSS Distributions uint32_t tds_sched_flags;
899*e3723e1fSApple OSS Distributions int16_t tds_base_priority;
900*e3723e1fSApple OSS Distributions int16_t tds_sched_priority;
901*e3723e1fSApple OSS Distributions uint8_t tds_eqos;
902*e3723e1fSApple OSS Distributions uint8_t tds_rqos;
903*e3723e1fSApple OSS Distributions uint8_t tds_rqos_override;
904*e3723e1fSApple OSS Distributions uint8_t tds_io_tier;
905*e3723e1fSApple OSS Distributions } __attribute__ ((packed));
906*e3723e1fSApple OSS Distributions
907*e3723e1fSApple OSS Distributions struct thread_delta_snapshot_v3 {
908*e3723e1fSApple OSS Distributions uint64_t tds_thread_id;
909*e3723e1fSApple OSS Distributions uint64_t tds_voucher_identifier;
910*e3723e1fSApple OSS Distributions uint64_t tds_ss_flags;
911*e3723e1fSApple OSS Distributions uint64_t tds_last_made_runnable_time;
912*e3723e1fSApple OSS Distributions uint32_t tds_state;
913*e3723e1fSApple OSS Distributions uint32_t tds_sched_flags;
914*e3723e1fSApple OSS Distributions int16_t tds_base_priority;
915*e3723e1fSApple OSS Distributions int16_t tds_sched_priority;
916*e3723e1fSApple OSS Distributions uint8_t tds_eqos;
917*e3723e1fSApple OSS Distributions uint8_t tds_rqos;
918*e3723e1fSApple OSS Distributions uint8_t tds_rqos_override;
919*e3723e1fSApple OSS Distributions uint8_t tds_io_tier;
920*e3723e1fSApple OSS Distributions uint64_t tds_requested_policy;
921*e3723e1fSApple OSS Distributions uint64_t tds_effective_policy;
922*e3723e1fSApple OSS Distributions } __attribute__ ((packed));
923*e3723e1fSApple OSS Distributions
924*e3723e1fSApple OSS Distributions struct io_stats_snapshot {
925*e3723e1fSApple OSS Distributions /*
926*e3723e1fSApple OSS Distributions * I/O Statistics
927*e3723e1fSApple OSS Distributions * XXX: These fields must be together.
928*e3723e1fSApple OSS Distributions */
929*e3723e1fSApple OSS Distributions uint64_t ss_disk_reads_count;
930*e3723e1fSApple OSS Distributions uint64_t ss_disk_reads_size;
931*e3723e1fSApple OSS Distributions uint64_t ss_disk_writes_count;
932*e3723e1fSApple OSS Distributions uint64_t ss_disk_writes_size;
933*e3723e1fSApple OSS Distributions uint64_t ss_io_priority_count[STACKSHOT_IO_NUM_PRIORITIES];
934*e3723e1fSApple OSS Distributions uint64_t ss_io_priority_size[STACKSHOT_IO_NUM_PRIORITIES];
935*e3723e1fSApple OSS Distributions uint64_t ss_paging_count;
936*e3723e1fSApple OSS Distributions uint64_t ss_paging_size;
937*e3723e1fSApple OSS Distributions uint64_t ss_non_paging_count;
938*e3723e1fSApple OSS Distributions uint64_t ss_non_paging_size;
939*e3723e1fSApple OSS Distributions uint64_t ss_data_count;
940*e3723e1fSApple OSS Distributions uint64_t ss_data_size;
941*e3723e1fSApple OSS Distributions uint64_t ss_metadata_count;
942*e3723e1fSApple OSS Distributions uint64_t ss_metadata_size;
943*e3723e1fSApple OSS Distributions /* XXX: I/O Statistics end */
944*e3723e1fSApple OSS Distributions } __attribute__ ((packed));
945*e3723e1fSApple OSS Distributions
946*e3723e1fSApple OSS Distributions struct task_snapshot_v2 {
947*e3723e1fSApple OSS Distributions uint64_t ts_unique_pid;
948*e3723e1fSApple OSS Distributions uint64_t ts_ss_flags;
949*e3723e1fSApple OSS Distributions uint64_t ts_user_time_in_terminated_threads;
950*e3723e1fSApple OSS Distributions uint64_t ts_system_time_in_terminated_threads;
951*e3723e1fSApple OSS Distributions uint64_t ts_p_start_sec;
952*e3723e1fSApple OSS Distributions uint64_t ts_task_size;
953*e3723e1fSApple OSS Distributions uint64_t ts_max_resident_size;
954*e3723e1fSApple OSS Distributions uint32_t ts_suspend_count;
955*e3723e1fSApple OSS Distributions uint32_t ts_faults;
956*e3723e1fSApple OSS Distributions uint32_t ts_pageins;
957*e3723e1fSApple OSS Distributions uint32_t ts_cow_faults;
958*e3723e1fSApple OSS Distributions uint32_t ts_was_throttled;
959*e3723e1fSApple OSS Distributions uint32_t ts_did_throttle;
960*e3723e1fSApple OSS Distributions uint32_t ts_latency_qos;
961*e3723e1fSApple OSS Distributions int32_t ts_pid;
962*e3723e1fSApple OSS Distributions char ts_p_comm[32];
963*e3723e1fSApple OSS Distributions } __attribute__ ((packed));
964*e3723e1fSApple OSS Distributions
965*e3723e1fSApple OSS Distributions struct transitioning_task_snapshot {
966*e3723e1fSApple OSS Distributions uint64_t tts_unique_pid;
967*e3723e1fSApple OSS Distributions uint64_t tts_ss_flags;
968*e3723e1fSApple OSS Distributions uint64_t tts_transition_type;
969*e3723e1fSApple OSS Distributions int32_t tts_pid;
970*e3723e1fSApple OSS Distributions char tts_p_comm[32];
971*e3723e1fSApple OSS Distributions } __attribute__ ((packed));
972*e3723e1fSApple OSS Distributions
973*e3723e1fSApple OSS Distributions struct task_delta_snapshot_v2 {
974*e3723e1fSApple OSS Distributions uint64_t tds_unique_pid;
975*e3723e1fSApple OSS Distributions uint64_t tds_ss_flags;
976*e3723e1fSApple OSS Distributions uint64_t tds_user_time_in_terminated_threads;
977*e3723e1fSApple OSS Distributions uint64_t tds_system_time_in_terminated_threads;
978*e3723e1fSApple OSS Distributions uint64_t tds_task_size;
979*e3723e1fSApple OSS Distributions uint64_t tds_max_resident_size;
980*e3723e1fSApple OSS Distributions uint32_t tds_suspend_count;
981*e3723e1fSApple OSS Distributions uint32_t tds_faults;
982*e3723e1fSApple OSS Distributions uint32_t tds_pageins;
983*e3723e1fSApple OSS Distributions uint32_t tds_cow_faults;
984*e3723e1fSApple OSS Distributions uint32_t tds_was_throttled;
985*e3723e1fSApple OSS Distributions uint32_t tds_did_throttle;
986*e3723e1fSApple OSS Distributions uint32_t tds_latency_qos;
987*e3723e1fSApple OSS Distributions } __attribute__ ((packed));
988*e3723e1fSApple OSS Distributions
989*e3723e1fSApple OSS Distributions #define KCDATA_INVALID_CS_TRUST_LEVEL 0xffffffff
990*e3723e1fSApple OSS Distributions struct stackshot_task_codesigning_info {
991*e3723e1fSApple OSS Distributions uint64_t csflags;
992*e3723e1fSApple OSS Distributions uint32_t cs_trust_level;
993*e3723e1fSApple OSS Distributions } __attribute__ ((packed));
994*e3723e1fSApple OSS Distributions
995*e3723e1fSApple OSS Distributions struct stackshot_cpu_times {
996*e3723e1fSApple OSS Distributions uint64_t user_usec;
997*e3723e1fSApple OSS Distributions uint64_t system_usec;
998*e3723e1fSApple OSS Distributions } __attribute__((packed));
999*e3723e1fSApple OSS Distributions
1000*e3723e1fSApple OSS Distributions struct stackshot_cpu_times_v2 {
1001*e3723e1fSApple OSS Distributions uint64_t user_usec;
1002*e3723e1fSApple OSS Distributions uint64_t system_usec;
1003*e3723e1fSApple OSS Distributions uint64_t runnable_usec;
1004*e3723e1fSApple OSS Distributions } __attribute__((packed));
1005*e3723e1fSApple OSS Distributions
1006*e3723e1fSApple OSS Distributions struct stackshot_duration {
1007*e3723e1fSApple OSS Distributions uint64_t stackshot_duration;
1008*e3723e1fSApple OSS Distributions uint64_t stackshot_duration_outer;
1009*e3723e1fSApple OSS Distributions } __attribute__((packed));
1010*e3723e1fSApple OSS Distributions
1011*e3723e1fSApple OSS Distributions struct stackshot_duration_v2 {
1012*e3723e1fSApple OSS Distributions uint64_t stackshot_duration;
1013*e3723e1fSApple OSS Distributions uint64_t stackshot_duration_outer;
1014*e3723e1fSApple OSS Distributions uint64_t stackshot_duration_prior;
1015*e3723e1fSApple OSS Distributions } __attribute__((packed));
1016*e3723e1fSApple OSS Distributions
1017*e3723e1fSApple OSS Distributions struct stackshot_fault_stats {
1018*e3723e1fSApple OSS Distributions uint32_t sfs_pages_faulted_in; /* number of pages faulted in using KDP fault path */
1019*e3723e1fSApple OSS Distributions uint64_t sfs_time_spent_faulting; /* MATUs spent faulting */
1020*e3723e1fSApple OSS Distributions uint64_t sfs_system_max_fault_time; /* MATUs fault time limit per stackshot */
1021*e3723e1fSApple OSS Distributions uint8_t sfs_stopped_faulting; /* we stopped decompressing because we hit the limit */
1022*e3723e1fSApple OSS Distributions } __attribute__((packed));
1023*e3723e1fSApple OSS Distributions
1024*e3723e1fSApple OSS Distributions typedef struct stackshot_thread_waitinfo {
1025*e3723e1fSApple OSS Distributions uint64_t owner; /* The thread that owns the object */
1026*e3723e1fSApple OSS Distributions uint64_t waiter; /* The thread that's waiting on the object */
1027*e3723e1fSApple OSS Distributions uint64_t context; /* A context uniquely identifying the object */
1028*e3723e1fSApple OSS Distributions uint8_t wait_type; /* The type of object that the thread is waiting on */
1029*e3723e1fSApple OSS Distributions } __attribute__((packed)) thread_waitinfo_t;
1030*e3723e1fSApple OSS Distributions
1031*e3723e1fSApple OSS Distributions typedef struct stackshot_thread_waitinfo_v2 {
1032*e3723e1fSApple OSS Distributions uint64_t owner; /* The thread that owns the object */
1033*e3723e1fSApple OSS Distributions uint64_t waiter; /* The thread that's waiting on the object */
1034*e3723e1fSApple OSS Distributions uint64_t context; /* A context uniquely identifying the object */
1035*e3723e1fSApple OSS Distributions uint8_t wait_type; /* The type of object that the thread is waiting on */
1036*e3723e1fSApple OSS Distributions int16_t portlabel_id; /* matches to a stackshot_portlabel, or NONE or MISSING */
1037*e3723e1fSApple OSS Distributions uint32_t wait_flags; /* info about the wait */
1038*e3723e1fSApple OSS Distributions #define STACKSHOT_WAITINFO_FLAGS_SPECIALREPLY 0x1 /* We're waiting on a special reply port */
1039*e3723e1fSApple OSS Distributions } __attribute__((packed)) thread_waitinfo_v2_t;
1040*e3723e1fSApple OSS Distributions
1041*e3723e1fSApple OSS Distributions
1042*e3723e1fSApple OSS Distributions typedef struct stackshot_thread_turnstileinfo {
1043*e3723e1fSApple OSS Distributions uint64_t waiter; /* The thread that's waiting on the object */
1044*e3723e1fSApple OSS Distributions uint64_t turnstile_context; /* Associated data (either thread id, or workq addr) */
1045*e3723e1fSApple OSS Distributions uint8_t turnstile_priority;
1046*e3723e1fSApple OSS Distributions uint8_t number_of_hops;
1047*e3723e1fSApple OSS Distributions uint64_t turnstile_flags; /* see below */
1048*e3723e1fSApple OSS Distributions } __attribute__((packed)) thread_turnstileinfo_t;
1049*e3723e1fSApple OSS Distributions
1050*e3723e1fSApple OSS Distributions typedef struct stackshot_thread_turnstileinfo_v2 {
1051*e3723e1fSApple OSS Distributions uint64_t waiter; /* The thread that's waiting on the object */
1052*e3723e1fSApple OSS Distributions uint64_t turnstile_context; /* Associated data (either thread id, or workq addr) */
1053*e3723e1fSApple OSS Distributions uint8_t turnstile_priority;
1054*e3723e1fSApple OSS Distributions uint8_t number_of_hops;
1055*e3723e1fSApple OSS Distributions #define STACKSHOT_TURNSTILE_STATUS_UNKNOWN 0x01 /* The final inheritor is unknown (bug?) */
1056*e3723e1fSApple OSS Distributions #define STACKSHOT_TURNSTILE_STATUS_LOCKED_WAITQ 0x02 /* A waitq was found to be locked */
1057*e3723e1fSApple OSS Distributions #define STACKSHOT_TURNSTILE_STATUS_WORKQUEUE 0x04 /* The final inheritor is a workqueue */
1058*e3723e1fSApple OSS Distributions #define STACKSHOT_TURNSTILE_STATUS_THREAD 0x08 /* The final inheritor is a thread */
1059*e3723e1fSApple OSS Distributions #define STACKSHOT_TURNSTILE_STATUS_BLOCKED_ON_TASK 0x10 /* blocked on task, dind't find thread */
1060*e3723e1fSApple OSS Distributions #define STACKSHOT_TURNSTILE_STATUS_HELD_IPLOCK 0x20 /* the ip_lock was held */
1061*e3723e1fSApple OSS Distributions #define STACKSHOT_TURNSTILE_STATUS_SENDPORT 0x40 /* port_labelid was from a send port */
1062*e3723e1fSApple OSS Distributions #define STACKSHOT_TURNSTILE_STATUS_RECEIVEPORT 0x80 /* port_labelid was from a receive port */
1063*e3723e1fSApple OSS Distributions uint64_t turnstile_flags; // Note: Add any new flags to kcdata.py (turnstile_flags)
1064*e3723e1fSApple OSS Distributions int16_t portlabel_id; /* matches to a stackshot_portlabel, or NONE or MISSING */
1065*e3723e1fSApple OSS Distributions } __attribute__((packed)) thread_turnstileinfo_v2_t;
1066*e3723e1fSApple OSS Distributions
1067*e3723e1fSApple OSS Distributions #define STACKSHOT_TURNSTILE_STATUS_PORTFLAGS (STACKSHOT_TURNSTILE_STATUS_SENDPORT | STACKSHOT_TURNSTILE_STATUS_RECEIVEPORT)
1068*e3723e1fSApple OSS Distributions
1069*e3723e1fSApple OSS Distributions #define STACKSHOT_PORTLABELID_NONE (0) /* No port label found */
1070*e3723e1fSApple OSS Distributions #define STACKSHOT_PORTLABELID_MISSING (-1) /* portlabel found, but stackshot ran out of space to track it */
1071*e3723e1fSApple OSS Distributions
1072*e3723e1fSApple OSS Distributions #define STACKSHOT_WAITOWNER_KERNEL (UINT64_MAX - 1)
1073*e3723e1fSApple OSS Distributions #define STACKSHOT_WAITOWNER_PORT_LOCKED (UINT64_MAX - 2)
1074*e3723e1fSApple OSS Distributions #define STACKSHOT_WAITOWNER_PSET_LOCKED (UINT64_MAX - 3)
1075*e3723e1fSApple OSS Distributions #define STACKSHOT_WAITOWNER_INTRANSIT (UINT64_MAX - 4)
1076*e3723e1fSApple OSS Distributions #define STACKSHOT_WAITOWNER_MTXSPIN (UINT64_MAX - 5)
1077*e3723e1fSApple OSS Distributions #define STACKSHOT_WAITOWNER_THREQUESTED (UINT64_MAX - 6) /* workloop waiting for a new worker thread */
1078*e3723e1fSApple OSS Distributions #define STACKSHOT_WAITOWNER_SUSPENDED (UINT64_MAX - 7) /* workloop is suspended */
1079*e3723e1fSApple OSS Distributions
1080*e3723e1fSApple OSS Distributions #define STACKSHOT_PORTLABEL_READFAILED 0x1 /* could not read port information */
1081*e3723e1fSApple OSS Distributions #define STACKSHOT_PORTLABEL_THROTTLED 0x2 /* service port is marked as throttled */
1082*e3723e1fSApple OSS Distributions
1083*e3723e1fSApple OSS Distributions struct portlabel_info {
1084*e3723e1fSApple OSS Distributions int16_t portlabel_id; /* kcdata-specific ID for this port label */
1085*e3723e1fSApple OSS Distributions uint16_t portlabel_flags; /* STACKSHOT_PORTLABEL_* */
1086*e3723e1fSApple OSS Distributions uint8_t portlabel_domain; /* launchd domain */
1087*e3723e1fSApple OSS Distributions } __attribute__((packed));
1088*e3723e1fSApple OSS Distributions
1089*e3723e1fSApple OSS Distributions struct stackshot_cpu_architecture {
1090*e3723e1fSApple OSS Distributions int32_t cputype;
1091*e3723e1fSApple OSS Distributions int32_t cpusubtype;
1092*e3723e1fSApple OSS Distributions } __attribute__((packed));
1093*e3723e1fSApple OSS Distributions
1094*e3723e1fSApple OSS Distributions struct stack_snapshot_stacktop {
1095*e3723e1fSApple OSS Distributions uint64_t sp;
1096*e3723e1fSApple OSS Distributions uint8_t stack_contents[8];
1097*e3723e1fSApple OSS Distributions };
1098*e3723e1fSApple OSS Distributions
1099*e3723e1fSApple OSS Distributions /* only collected if STACKSHOT_COLLECTS_LATENCY_INFO is set to !0 */
1100*e3723e1fSApple OSS Distributions struct stackshot_latency_collection {
1101*e3723e1fSApple OSS Distributions uint64_t latency_version;
1102*e3723e1fSApple OSS Distributions uint64_t setup_latency;
1103*e3723e1fSApple OSS Distributions uint64_t total_task_iteration_latency;
1104*e3723e1fSApple OSS Distributions uint64_t total_terminated_task_iteration_latency;
1105*e3723e1fSApple OSS Distributions } __attribute__((packed));
1106*e3723e1fSApple OSS Distributions
1107*e3723e1fSApple OSS Distributions /* only collected if STACKSHOT_COLLECTS_LATENCY_INFO is set to !0 */
1108*e3723e1fSApple OSS Distributions struct stackshot_latency_collection_v2 {
1109*e3723e1fSApple OSS Distributions uint64_t latency_version;
1110*e3723e1fSApple OSS Distributions uint64_t setup_latency_mt;
1111*e3723e1fSApple OSS Distributions uint64_t total_task_iteration_latency_mt;
1112*e3723e1fSApple OSS Distributions uint64_t total_terminated_task_iteration_latency_mt;
1113*e3723e1fSApple OSS Distributions uint64_t task_queue_building_latency_mt;
1114*e3723e1fSApple OSS Distributions uint64_t terminated_task_queue_building_latency_mt;
1115*e3723e1fSApple OSS Distributions uint64_t cpu_wait_latency_mt;
1116*e3723e1fSApple OSS Distributions int32_t main_cpu_number;
1117*e3723e1fSApple OSS Distributions int32_t calling_cpu_number;
1118*e3723e1fSApple OSS Distributions uint64_t buffer_size;
1119*e3723e1fSApple OSS Distributions uint64_t buffer_used;
1120*e3723e1fSApple OSS Distributions uint64_t buffer_overhead;
1121*e3723e1fSApple OSS Distributions uint64_t buffer_count;
1122*e3723e1fSApple OSS Distributions } __attribute__((packed));
1123*e3723e1fSApple OSS Distributions
1124*e3723e1fSApple OSS Distributions /* only collected if STACKSHOT_COLLECTS_LATENCY_INFO is set to !0 */
1125*e3723e1fSApple OSS Distributions struct stackshot_latency_cpu {
1126*e3723e1fSApple OSS Distributions int32_t cpu_number;
1127*e3723e1fSApple OSS Distributions int32_t cluster_type;
1128*e3723e1fSApple OSS Distributions uint64_t init_latency_mt;
1129*e3723e1fSApple OSS Distributions uint64_t workqueue_latency_mt;
1130*e3723e1fSApple OSS Distributions uint64_t total_latency_mt;
1131*e3723e1fSApple OSS Distributions uint64_t total_cycles;
1132*e3723e1fSApple OSS Distributions uint64_t total_instrs;
1133*e3723e1fSApple OSS Distributions uint64_t tasks_processed;
1134*e3723e1fSApple OSS Distributions uint64_t threads_processed;
1135*e3723e1fSApple OSS Distributions uint64_t faulting_time_mt;
1136*e3723e1fSApple OSS Distributions uint64_t total_buf;
1137*e3723e1fSApple OSS Distributions uint64_t intercluster_buf_used;
1138*e3723e1fSApple OSS Distributions } __attribute__((packed));
1139*e3723e1fSApple OSS Distributions
1140*e3723e1fSApple OSS Distributions /* only collected if STACKSHOT_COLLECTS_LATENCY_INFO is set to !0 */
1141*e3723e1fSApple OSS Distributions struct stackshot_latency_task {
1142*e3723e1fSApple OSS Distributions uint64_t task_uniqueid;
1143*e3723e1fSApple OSS Distributions uint64_t setup_latency;
1144*e3723e1fSApple OSS Distributions uint64_t task_thread_count_loop_latency;
1145*e3723e1fSApple OSS Distributions uint64_t task_thread_data_loop_latency;
1146*e3723e1fSApple OSS Distributions uint64_t cur_tsnap_latency;
1147*e3723e1fSApple OSS Distributions uint64_t pmap_latency;
1148*e3723e1fSApple OSS Distributions uint64_t bsd_proc_ids_latency;
1149*e3723e1fSApple OSS Distributions uint64_t misc_latency;
1150*e3723e1fSApple OSS Distributions uint64_t misc2_latency;
1151*e3723e1fSApple OSS Distributions uint64_t end_latency;
1152*e3723e1fSApple OSS Distributions } __attribute__((packed));
1153*e3723e1fSApple OSS Distributions
1154*e3723e1fSApple OSS Distributions /* only collected if STACKSHOT_COLLECTS_LATENCY_INFO is set to !0 */
1155*e3723e1fSApple OSS Distributions struct stackshot_latency_thread {
1156*e3723e1fSApple OSS Distributions uint64_t thread_id;
1157*e3723e1fSApple OSS Distributions uint64_t cur_thsnap1_latency;
1158*e3723e1fSApple OSS Distributions uint64_t dispatch_serial_latency;
1159*e3723e1fSApple OSS Distributions uint64_t dispatch_label_latency;
1160*e3723e1fSApple OSS Distributions uint64_t cur_thsnap2_latency;
1161*e3723e1fSApple OSS Distributions uint64_t thread_name_latency;
1162*e3723e1fSApple OSS Distributions uint64_t sur_times_latency;
1163*e3723e1fSApple OSS Distributions uint64_t user_stack_latency;
1164*e3723e1fSApple OSS Distributions uint64_t kernel_stack_latency;
1165*e3723e1fSApple OSS Distributions uint64_t misc_latency;
1166*e3723e1fSApple OSS Distributions } __attribute__((packed));
1167*e3723e1fSApple OSS Distributions
1168*e3723e1fSApple OSS Distributions struct stackshot_suspension_info {
1169*e3723e1fSApple OSS Distributions uint64_t tss_last_start; /* mach_absolute_time of beginning of last suspension*/
1170*e3723e1fSApple OSS Distributions uint64_t tss_last_end; /* mach_absolute_time of end of last suspension */
1171*e3723e1fSApple OSS Distributions uint64_t tss_count; /* number of times this task has been suspended */
1172*e3723e1fSApple OSS Distributions uint64_t tss_duration; /* sum(mach_absolute_time) of time spend suspended */
1173*e3723e1fSApple OSS Distributions } __attribute__((packed));
1174*e3723e1fSApple OSS Distributions
1175*e3723e1fSApple OSS Distributions struct stackshot_suspension_source {
1176*e3723e1fSApple OSS Distributions uint64_t tss_time; /* mach_absolute_time of suspend */
1177*e3723e1fSApple OSS Distributions uint64_t tss_tid; /* tid of suspending thread */
1178*e3723e1fSApple OSS Distributions int tss_pid; /* pid of suspending task */
1179*e3723e1fSApple OSS Distributions char tss_procname[65]; /* name of suspending task */
1180*e3723e1fSApple OSS Distributions } __attribute__((packed));
1181*e3723e1fSApple OSS Distributions
1182*e3723e1fSApple OSS Distributions /**************** definitions for exclaves *********************/
1183*e3723e1fSApple OSS Distributions
1184*e3723e1fSApple OSS Distributions enum thread_exclaves_flags : uint32_t {
1185*e3723e1fSApple OSS Distributions kExclaveRPCActive = 0x1, /* Thread is handling RPC call in secure world */
1186*e3723e1fSApple OSS Distributions kExclaveUpcallActive = 0x2, /* Thread has upcalled back into xnu while handling RPC */
1187*e3723e1fSApple OSS Distributions kExclaveSchedulerRequest = 0x4, /* Thread is handling scheduler request */
1188*e3723e1fSApple OSS Distributions };
1189*e3723e1fSApple OSS Distributions
1190*e3723e1fSApple OSS Distributions struct thread_exclaves_info {
1191*e3723e1fSApple OSS Distributions uint64_t tei_scid; /* Scheduling context for exclave IPC stack */
1192*e3723e1fSApple OSS Distributions uint32_t tei_thread_offset; /* # frames from top of stack exclave frames should be inserted */
1193*e3723e1fSApple OSS Distributions uint32_t tei_flags; /* A combination of enum thread_exclaves_flags values */
1194*e3723e1fSApple OSS Distributions } __attribute__((packed));
1195*e3723e1fSApple OSS Distributions
1196*e3723e1fSApple OSS Distributions struct thread_crash_exclaves_info {
1197*e3723e1fSApple OSS Distributions uint64_t tcei_scid; /* Scheduling context for exclave IPC stack */
1198*e3723e1fSApple OSS Distributions uint64_t tcei_thread_id; /* Corresponding xnu thread id */
1199*e3723e1fSApple OSS Distributions uint32_t tcei_flags; /* A combination of enum thread_exclaves_flags values */
1200*e3723e1fSApple OSS Distributions } __attribute__((packed));
1201*e3723e1fSApple OSS Distributions
1202*e3723e1fSApple OSS Distributions enum exclave_scresult_flags : uint64_t {
1203*e3723e1fSApple OSS Distributions kExclaveScresultHaveIPCStack = 0x1,
1204*e3723e1fSApple OSS Distributions };
1205*e3723e1fSApple OSS Distributions
1206*e3723e1fSApple OSS Distributions struct exclave_scresult_info {
1207*e3723e1fSApple OSS Distributions uint64_t esc_id;
1208*e3723e1fSApple OSS Distributions uint64_t esc_flags; /* A combination of enum exclave_scresult_flags values */
1209*e3723e1fSApple OSS Distributions } __attribute__((packed));
1210*e3723e1fSApple OSS Distributions
1211*e3723e1fSApple OSS Distributions enum exclave_ipcstackentry_flags : uint64_t {
1212*e3723e1fSApple OSS Distributions kExclaveIpcStackEntryHaveInvocationID = 0x1,
1213*e3723e1fSApple OSS Distributions kExclaveIpcStackEntryHaveStack = 0x2,
1214*e3723e1fSApple OSS Distributions };
1215*e3723e1fSApple OSS Distributions
1216*e3723e1fSApple OSS Distributions struct exclave_ipcstackentry_info {
1217*e3723e1fSApple OSS Distributions uint64_t eise_asid; /* ASID */
1218*e3723e1fSApple OSS Distributions uint64_t eise_tnid; /* Thread numeric ID, may be UINT64_MAX if ommitted */
1219*e3723e1fSApple OSS Distributions uint64_t eise_invocationid; /* Invocation ID, may be UINT64_MAX if ommitted */
1220*e3723e1fSApple OSS Distributions uint64_t eise_flags; /* A combination of enum exclave_ipcstackentry_flags values */
1221*e3723e1fSApple OSS Distributions } __attribute__((packed));
1222*e3723e1fSApple OSS Distributions
1223*e3723e1fSApple OSS Distributions typedef uint64_t exclave_ecstackentry_addr_t;
1224*e3723e1fSApple OSS Distributions
1225*e3723e1fSApple OSS Distributions enum exclave_addressspace_flags : uint64_t {
1226*e3723e1fSApple OSS Distributions kExclaveAddressSpaceHaveSlide = 0x1, /* slide info provided */
1227*e3723e1fSApple OSS Distributions };
1228*e3723e1fSApple OSS Distributions
1229*e3723e1fSApple OSS Distributions struct exclave_addressspace_info {
1230*e3723e1fSApple OSS Distributions uint64_t eas_id; /* ASID */
1231*e3723e1fSApple OSS Distributions uint64_t eas_flags; /* A combination of enum exclave_addressspace_flags values */
1232*e3723e1fSApple OSS Distributions uint64_t eas_layoutid; /* textLayout for this address space */
1233*e3723e1fSApple OSS Distributions uint64_t eas_slide; /* slide to apply to textlayout, or UINT64_MAX if omitted */
1234*e3723e1fSApple OSS Distributions uint64_t eas_asroot; /* ASRoot/TTBR0 value used as an identifier for the address space by cL4 */
1235*e3723e1fSApple OSS Distributions } __attribute__((packed));
1236*e3723e1fSApple OSS Distributions
1237*e3723e1fSApple OSS Distributions enum exclave_textlayout_flags : uint64_t {
1238*e3723e1fSApple OSS Distributions kExclaveTextLayoutLoadAddressesSynthetic = 0x1, /* Load Addresses are synthetic */
1239*e3723e1fSApple OSS Distributions kExclaveTextLayoutLoadAddressesUnslid = 0x2, /* Load Addresses are accurate and unslid */
1240*e3723e1fSApple OSS Distributions kExclaveTextLayoutHasSharedCache = 0x4, /* sharedcache_index is valid, refers to entry # in STACKSHOT_KCTYPE_EXCLAVE_TEXTLAYOUT_SEGMENTS array */
1241*e3723e1fSApple OSS Distributions };
1242*e3723e1fSApple OSS Distributions
1243*e3723e1fSApple OSS Distributions struct exclave_textlayout_info_v1 {
1244*e3723e1fSApple OSS Distributions uint64_t layout_id;
1245*e3723e1fSApple OSS Distributions uint64_t etl_flags; /* A combination of enum exclave_textlayout_flags values */
1246*e3723e1fSApple OSS Distributions } __attribute__((packed));
1247*e3723e1fSApple OSS Distributions
1248*e3723e1fSApple OSS Distributions struct exclave_textlayout_info {
1249*e3723e1fSApple OSS Distributions uint64_t layout_id;
1250*e3723e1fSApple OSS Distributions uint64_t etl_flags; /* A combination of enum exclave_textlayout_flags values */
1251*e3723e1fSApple OSS Distributions uint32_t sharedcache_index; /* index in SEGMENTs, or UINT32_MAX */
1252*e3723e1fSApple OSS Distributions } __attribute__((packed));
1253*e3723e1fSApple OSS Distributions
1254*e3723e1fSApple OSS Distributions struct exclave_textlayout_segment {
1255*e3723e1fSApple OSS Distributions uuid_t layoutSegment_uuid;
1256*e3723e1fSApple OSS Distributions uint64_t layoutSegment_loadAddress; /* Synthetic Load Address */
1257*e3723e1fSApple OSS Distributions } __attribute__((packed));
1258*e3723e1fSApple OSS Distributions
1259*e3723e1fSApple OSS Distributions struct exclave_textlayout_segment_v2 {
1260*e3723e1fSApple OSS Distributions uuid_t layoutSegment_uuid;
1261*e3723e1fSApple OSS Distributions uint64_t layoutSegment_loadAddress; /* Synthetic Load Address */
1262*e3723e1fSApple OSS Distributions uint64_t layoutSegment_rawLoadAddress; /* Raw Load Address when unslided */
1263*e3723e1fSApple OSS Distributions } __attribute__((packed));
1264*e3723e1fSApple OSS Distributions
1265*e3723e1fSApple OSS Distributions /**************** definitions for crashinfo *********************/
1266*e3723e1fSApple OSS Distributions
1267*e3723e1fSApple OSS Distributions /*
1268*e3723e1fSApple OSS Distributions * NOTE: Please update kcdata/libkdd/kcdtypes.c if you make any changes
1269*e3723e1fSApple OSS Distributions * in TASK_CRASHINFO_* types.
1270*e3723e1fSApple OSS Distributions */
1271*e3723e1fSApple OSS Distributions
1272*e3723e1fSApple OSS Distributions /* FIXME some of these types aren't clean (fixed width, packed, and defined *here*) */
1273*e3723e1fSApple OSS Distributions
1274*e3723e1fSApple OSS Distributions struct crashinfo_proc_uniqidentifierinfo {
1275*e3723e1fSApple OSS Distributions uint8_t p_uuid[16]; /* UUID of the main executable */
1276*e3723e1fSApple OSS Distributions uint64_t p_uniqueid; /* 64 bit unique identifier for process */
1277*e3723e1fSApple OSS Distributions uint64_t p_puniqueid; /* unique identifier for process's parent */
1278*e3723e1fSApple OSS Distributions uint64_t p_reserve2; /* reserved for future use */
1279*e3723e1fSApple OSS Distributions uint64_t p_reserve3; /* reserved for future use */
1280*e3723e1fSApple OSS Distributions uint64_t p_reserve4; /* reserved for future use */
1281*e3723e1fSApple OSS Distributions } __attribute__((packed));
1282*e3723e1fSApple OSS Distributions
1283*e3723e1fSApple OSS Distributions #define MAX_TRIAGE_STRING_LEN (128)
1284*e3723e1fSApple OSS Distributions
1285*e3723e1fSApple OSS Distributions struct kernel_triage_info_v1 {
1286*e3723e1fSApple OSS Distributions char triage_string1[MAX_TRIAGE_STRING_LEN];
1287*e3723e1fSApple OSS Distributions char triage_string2[MAX_TRIAGE_STRING_LEN];
1288*e3723e1fSApple OSS Distributions char triage_string3[MAX_TRIAGE_STRING_LEN];
1289*e3723e1fSApple OSS Distributions char triage_string4[MAX_TRIAGE_STRING_LEN];
1290*e3723e1fSApple OSS Distributions char triage_string5[MAX_TRIAGE_STRING_LEN];
1291*e3723e1fSApple OSS Distributions } __attribute__((packed));
1292*e3723e1fSApple OSS Distributions
1293*e3723e1fSApple OSS Distributions struct crashinfo_jit_address_range {
1294*e3723e1fSApple OSS Distributions uint64_t start_address;
1295*e3723e1fSApple OSS Distributions uint64_t end_address;
1296*e3723e1fSApple OSS Distributions } __attribute__((packed));
1297*e3723e1fSApple OSS Distributions
1298*e3723e1fSApple OSS Distributions struct crashinfo_mb {
1299*e3723e1fSApple OSS Distributions uint64_t start_address;
1300*e3723e1fSApple OSS Distributions uint64_t data[64];
1301*e3723e1fSApple OSS Distributions } __attribute__((packed));
1302*e3723e1fSApple OSS Distributions
1303*e3723e1fSApple OSS Distributions
1304*e3723e1fSApple OSS Distributions #define MAX_CRASHINFO_SIGNING_ID_LEN 64
1305*e3723e1fSApple OSS Distributions #define MAX_CRASHINFO_TEAM_ID_LEN 32
1306*e3723e1fSApple OSS Distributions
1307*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_BEGIN KCDATA_BUFFER_BEGIN_CRASHINFO
1308*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_STRING_DESC KCDATA_TYPE_STRING_DESC
1309*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_UINT32_DESC KCDATA_TYPE_UINT32_DESC
1310*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_UINT64_DESC KCDATA_TYPE_UINT64_DESC
1311*e3723e1fSApple OSS Distributions
1312*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_EXTMODINFO 0x801
1313*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_BSDINFOWITHUNIQID 0x802 /* struct crashinfo_proc_uniqidentifierinfo */
1314*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_TASKDYLD_INFO 0x803
1315*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_UUID 0x804
1316*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_PID 0x805
1317*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_PPID 0x806
1318*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_RUSAGE 0x807 /* struct rusage DEPRECATED do not use.
1319*e3723e1fSApple OSS Distributions * This struct has longs in it */
1320*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_RUSAGE_INFO 0x808 /* struct rusage_info_v3 from resource.h */
1321*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_PROC_NAME 0x809 /* char * */
1322*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_PROC_STARTTIME 0x80B /* struct timeval64 */
1323*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_USERSTACK 0x80C /* uint64_t */
1324*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_ARGSLEN 0x80D
1325*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_EXCEPTION_CODES 0x80E /* mach_exception_data_t */
1326*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_PROC_PATH 0x80F /* string of len MAXPATHLEN */
1327*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_PROC_CSFLAGS 0x810 /* uint32_t */
1328*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_PROC_STATUS 0x811 /* char */
1329*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_UID 0x812 /* uid_t */
1330*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_GID 0x813 /* gid_t */
1331*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_PROC_ARGC 0x814 /* int */
1332*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_PROC_FLAGS 0x815 /* unsigned int */
1333*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_CPUTYPE 0x816 /* cpu_type_t */
1334*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_WORKQUEUEINFO 0x817 /* struct proc_workqueueinfo */
1335*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_RESPONSIBLE_PID 0x818 /* pid_t */
1336*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_DIRTY_FLAGS 0x819 /* int */
1337*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_CRASHED_THREADID 0x81A /* uint64_t */
1338*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_COALITION_ID 0x81B /* uint64_t */
1339*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_UDATA_PTRS 0x81C /* uint64_t */
1340*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_MEMORY_LIMIT 0x81D /* uint64_t */
1341*e3723e1fSApple OSS Distributions
1342*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_LEDGER_INTERNAL 0x81E /* uint64_t */
1343*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_LEDGER_INTERNAL_COMPRESSED 0x81F /* uint64_t */
1344*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_LEDGER_IOKIT_MAPPED 0x820 /* uint64_t */
1345*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_LEDGER_ALTERNATE_ACCOUNTING 0x821 /* uint64_t */
1346*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_LEDGER_ALTERNATE_ACCOUNTING_COMPRESSED 0x822 /* uint64_t */
1347*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_LEDGER_PURGEABLE_NONVOLATILE 0x823 /* uint64_t */
1348*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_LEDGER_PURGEABLE_NONVOLATILE_COMPRESSED 0x824 /* uint64_t */
1349*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_LEDGER_PAGE_TABLE 0x825 /* uint64_t */
1350*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_LEDGER_PHYS_FOOTPRINT 0x826 /* uint64_t */
1351*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_LEDGER_PHYS_FOOTPRINT_LIFETIME_MAX 0x827 /* uint64_t */
1352*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_LEDGER_NETWORK_NONVOLATILE 0x828 /* uint64_t */
1353*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_LEDGER_NETWORK_NONVOLATILE_COMPRESSED 0x829 /* uint64_t */
1354*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_LEDGER_WIRED_MEM 0x82A /* uint64_t */
1355*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_PROC_PERSONA_ID 0x82B /* uid_t */
1356*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_MEMORY_LIMIT_INCREASE 0x82C /* uint32_t */
1357*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_LEDGER_TAGGED_FOOTPRINT 0x82D /* uint64_t */
1358*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_LEDGER_TAGGED_FOOTPRINT_COMPRESSED 0x82E /* uint64_t */
1359*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_LEDGER_MEDIA_FOOTPRINT 0x82F /* uint64_t */
1360*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_LEDGER_MEDIA_FOOTPRINT_COMPRESSED 0x830 /* uint64_t */
1361*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_LEDGER_GRAPHICS_FOOTPRINT 0x831 /* uint64_t */
1362*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_LEDGER_GRAPHICS_FOOTPRINT_COMPRESSED 0x832 /* uint64_t */
1363*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_LEDGER_NEURAL_FOOTPRINT 0x833 /* uint64_t */
1364*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_LEDGER_NEURAL_FOOTPRINT_COMPRESSED 0x834 /* uint64_t */
1365*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_MEMORYSTATUS_EFFECTIVE_PRIORITY 0x835 /* int32_t */
1366*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_KERNEL_TRIAGE_INFO_V1 0x836 /* struct kernel_triage_info_v1 */
1367*e3723e1fSApple OSS Distributions
1368*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_TASK_IS_CORPSE_FORK 0x837 /* boolean_t */
1369*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_EXCEPTION_TYPE 0x838 /* int */
1370*e3723e1fSApple OSS Distributions
1371*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_CRASH_COUNT 0x839 /* int */
1372*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_THROTTLE_TIMEOUT 0x83A /* int */
1373*e3723e1fSApple OSS Distributions
1374*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_CS_SIGNING_ID 0x83B /* string of len MAX_CRASHINFO_SIGNING_ID_LEN */
1375*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_CS_TEAM_ID 0x83C /* string of len MAX_CRASHINFO_TEAM_ID_LEN */
1376*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_CS_VALIDATION_CATEGORY 0x83D /* uint32_t */
1377*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_CS_TRUST_LEVEL 0x83E /* uint32_t */
1378*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_PROC_CPUTYPE 0x83F /* cpu_type_t */
1379*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_JIT_ADDRESS_RANGE 0x840 /* struct crashinfo_jit_address_range */
1380*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_MB 0x841 /* struct crashinfo_mb */
1381*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_CS_AUXILIARY_INFO 0x842 /* uint64_t */
1382*e3723e1fSApple OSS Distributions
1383*e3723e1fSApple OSS Distributions #define TASK_CRASHINFO_END KCDATA_TYPE_BUFFER_END
1384*e3723e1fSApple OSS Distributions
1385*e3723e1fSApple OSS Distributions /**************** definitions for backtrace info *********************/
1386*e3723e1fSApple OSS Distributions
1387*e3723e1fSApple OSS Distributions /* tstate is variable length with count elements */
1388*e3723e1fSApple OSS Distributions struct btinfo_thread_state_data_t {
1389*e3723e1fSApple OSS Distributions uint32_t flavor;
1390*e3723e1fSApple OSS Distributions uint32_t count;
1391*e3723e1fSApple OSS Distributions int tstate[];
1392*e3723e1fSApple OSS Distributions };
1393*e3723e1fSApple OSS Distributions
1394*e3723e1fSApple OSS Distributions struct btinfo_sc_load_info64 {
1395*e3723e1fSApple OSS Distributions uint64_t sharedCacheSlide;
1396*e3723e1fSApple OSS Distributions uuid_t sharedCacheUUID;
1397*e3723e1fSApple OSS Distributions uint64_t sharedCacheBaseAddress;
1398*e3723e1fSApple OSS Distributions };
1399*e3723e1fSApple OSS Distributions
1400*e3723e1fSApple OSS Distributions struct btinfo_sc_load_info {
1401*e3723e1fSApple OSS Distributions uint32_t sharedCacheSlide;
1402*e3723e1fSApple OSS Distributions uuid_t sharedCacheUUID;
1403*e3723e1fSApple OSS Distributions uint32_t sharedCacheBaseAddress;
1404*e3723e1fSApple OSS Distributions };
1405*e3723e1fSApple OSS Distributions
1406*e3723e1fSApple OSS Distributions #define TASK_BTINFO_BEGIN KCDATA_BUFFER_BEGIN_BTINFO
1407*e3723e1fSApple OSS Distributions
1408*e3723e1fSApple OSS Distributions /* Shared keys with CRASHINFO */
1409*e3723e1fSApple OSS Distributions #define TASK_BTINFO_PID 0xA01
1410*e3723e1fSApple OSS Distributions #define TASK_BTINFO_PPID 0xA02
1411*e3723e1fSApple OSS Distributions #define TASK_BTINFO_PROC_NAME 0xA03
1412*e3723e1fSApple OSS Distributions #define TASK_BTINFO_PROC_PATH 0xA04
1413*e3723e1fSApple OSS Distributions #define TASK_BTINFO_UID 0xA05
1414*e3723e1fSApple OSS Distributions #define TASK_BTINFO_GID 0xA06
1415*e3723e1fSApple OSS Distributions #define TASK_BTINFO_PROC_FLAGS 0xA07
1416*e3723e1fSApple OSS Distributions #define TASK_BTINFO_CPUTYPE 0xA08
1417*e3723e1fSApple OSS Distributions #define TASK_BTINFO_EXCEPTION_CODES 0xA09
1418*e3723e1fSApple OSS Distributions #define TASK_BTINFO_EXCEPTION_TYPE 0xA0A
1419*e3723e1fSApple OSS Distributions #define TASK_BTINFO_RUSAGE_INFO 0xA0B
1420*e3723e1fSApple OSS Distributions #define TASK_BTINFO_COALITION_ID 0xA0C
1421*e3723e1fSApple OSS Distributions #define TASK_BTINFO_CRASH_COUNT 0xA0D
1422*e3723e1fSApple OSS Distributions #define TASK_BTINFO_THROTTLE_TIMEOUT 0xA0E
1423*e3723e1fSApple OSS Distributions
1424*e3723e1fSApple OSS Distributions /* Only in BTINFO */
1425*e3723e1fSApple OSS Distributions #define TASK_BTINFO_THREAD_ID 0xA20 /* uint64_t */
1426*e3723e1fSApple OSS Distributions #define TASK_BTINFO_THREAD_NAME 0xA21 /* string of len MAXTHREADNAMESIZE */
1427*e3723e1fSApple OSS Distributions #define TASK_BTINFO_THREAD_STATE 0xA22 /* struct btinfo_thread_state_data_t */
1428*e3723e1fSApple OSS Distributions #define TASK_BTINFO_THREAD_EXCEPTION_STATE 0xA23 /* struct btinfo_thread_state_data_t */
1429*e3723e1fSApple OSS Distributions #define TASK_BTINFO_BACKTRACE 0xA24 /* array of uintptr_t */
1430*e3723e1fSApple OSS Distributions #define TASK_BTINFO_BACKTRACE64 0xA25 /* array of uintptr_t */
1431*e3723e1fSApple OSS Distributions #define TASK_BTINFO_ASYNC_BACKTRACE64 0xA26 /* array of uintptr_t */
1432*e3723e1fSApple OSS Distributions #define TASK_BTINFO_ASYNC_START_INDEX 0xA27 /* uint32_t */
1433*e3723e1fSApple OSS Distributions #define TASK_BTINFO_PLATFORM 0xA28 /* uint32_t */
1434*e3723e1fSApple OSS Distributions #define TASK_BTINFO_SC_LOADINFO 0xA29 /* struct btinfo_sc_load_info */
1435*e3723e1fSApple OSS Distributions #define TASK_BTINFO_SC_LOADINFO64 0xA2A /* struct btinfo_sc_load_info64 */
1436*e3723e1fSApple OSS Distributions
1437*e3723e1fSApple OSS Distributions #define TASK_BTINFO_DYLD_LOADINFO KCDATA_TYPE_LIBRARY_LOADINFO
1438*e3723e1fSApple OSS Distributions #define TASK_BTINFO_DYLD_LOADINFO64 KCDATA_TYPE_LIBRARY_LOADINFO64
1439*e3723e1fSApple OSS Distributions
1440*e3723e1fSApple OSS Distributions /* Last one */
1441*e3723e1fSApple OSS Distributions #define TASK_BTINFO_FLAGS 0xAFF /* uint32_t */
1442*e3723e1fSApple OSS Distributions #define TASK_BTINFO_FLAG_BT_TRUNCATED 0x1
1443*e3723e1fSApple OSS Distributions #define TASK_BTINFO_FLAG_ASYNC_BT_TRUNCATED 0x2
1444*e3723e1fSApple OSS Distributions #define TASK_BTINFO_FLAG_TASK_TERMINATED 0x4 /* task is terminated */
1445*e3723e1fSApple OSS Distributions #define TASK_BTINFO_FLAG_KCDATA_INCOMPLETE 0x8 /* lw corpse collection is incomplete */
1446*e3723e1fSApple OSS Distributions
1447*e3723e1fSApple OSS Distributions #define TASK_BTINFO_END KCDATA_TYPE_BUFFER_END
1448*e3723e1fSApple OSS Distributions
1449*e3723e1fSApple OSS Distributions /**************** definitions for os reasons *********************/
1450*e3723e1fSApple OSS Distributions
1451*e3723e1fSApple OSS Distributions #define EXIT_REASON_SNAPSHOT 0x1001
1452*e3723e1fSApple OSS Distributions #define EXIT_REASON_USER_DESC 0x1002 /* string description of reason */
1453*e3723e1fSApple OSS Distributions #define EXIT_REASON_USER_PAYLOAD 0x1003 /* user payload data */
1454*e3723e1fSApple OSS Distributions #define EXIT_REASON_CODESIGNING_INFO 0x1004
1455*e3723e1fSApple OSS Distributions #define EXIT_REASON_WORKLOOP_ID 0x1005
1456*e3723e1fSApple OSS Distributions #define EXIT_REASON_DISPATCH_QUEUE_NO 0x1006
1457*e3723e1fSApple OSS Distributions
1458*e3723e1fSApple OSS Distributions struct exit_reason_snapshot {
1459*e3723e1fSApple OSS Distributions uint32_t ers_namespace;
1460*e3723e1fSApple OSS Distributions uint64_t ers_code;
1461*e3723e1fSApple OSS Distributions /* end of version 1 of exit_reason_snapshot. sizeof v1 was 12 */
1462*e3723e1fSApple OSS Distributions uint64_t ers_flags;
1463*e3723e1fSApple OSS Distributions } __attribute__((packed));
1464*e3723e1fSApple OSS Distributions
1465*e3723e1fSApple OSS Distributions #define EXIT_REASON_CODESIG_PATH_MAX 1024
1466*e3723e1fSApple OSS Distributions
1467*e3723e1fSApple OSS Distributions struct codesigning_exit_reason_info {
1468*e3723e1fSApple OSS Distributions uint64_t ceri_virt_addr;
1469*e3723e1fSApple OSS Distributions uint64_t ceri_file_offset;
1470*e3723e1fSApple OSS Distributions char ceri_pathname[EXIT_REASON_CODESIG_PATH_MAX];
1471*e3723e1fSApple OSS Distributions char ceri_filename[EXIT_REASON_CODESIG_PATH_MAX];
1472*e3723e1fSApple OSS Distributions uint64_t ceri_codesig_modtime_secs;
1473*e3723e1fSApple OSS Distributions uint64_t ceri_codesig_modtime_nsecs;
1474*e3723e1fSApple OSS Distributions uint64_t ceri_page_modtime_secs;
1475*e3723e1fSApple OSS Distributions uint64_t ceri_page_modtime_nsecs;
1476*e3723e1fSApple OSS Distributions uint8_t ceri_path_truncated;
1477*e3723e1fSApple OSS Distributions uint8_t ceri_object_codesigned;
1478*e3723e1fSApple OSS Distributions uint8_t ceri_page_codesig_validated;
1479*e3723e1fSApple OSS Distributions uint8_t ceri_page_codesig_tainted;
1480*e3723e1fSApple OSS Distributions uint8_t ceri_page_codesig_nx;
1481*e3723e1fSApple OSS Distributions uint8_t ceri_page_wpmapped;
1482*e3723e1fSApple OSS Distributions uint8_t ceri_page_slid;
1483*e3723e1fSApple OSS Distributions uint8_t ceri_page_dirty;
1484*e3723e1fSApple OSS Distributions uint32_t ceri_page_shadow_depth;
1485*e3723e1fSApple OSS Distributions } __attribute__((packed));
1486*e3723e1fSApple OSS Distributions
1487*e3723e1fSApple OSS Distributions #define EXIT_REASON_USER_DESC_MAX_LEN 1024
1488*e3723e1fSApple OSS Distributions #define EXIT_REASON_PAYLOAD_MAX_LEN 2048
1489*e3723e1fSApple OSS Distributions /**************** safe iterators *********************/
1490*e3723e1fSApple OSS Distributions #if !__has_ptrcheck
1491*e3723e1fSApple OSS Distributions
1492*e3723e1fSApple OSS Distributions typedef struct kcdata_iter {
1493*e3723e1fSApple OSS Distributions kcdata_item_t item;
1494*e3723e1fSApple OSS Distributions void *end;
1495*e3723e1fSApple OSS Distributions } kcdata_iter_t;
1496*e3723e1fSApple OSS Distributions
1497*e3723e1fSApple OSS Distributions
1498*e3723e1fSApple OSS Distributions static inline
1499*e3723e1fSApple OSS Distributions kcdata_iter_t
kcdata_iter(void * buffer,unsigned long size)1500*e3723e1fSApple OSS Distributions kcdata_iter(void *buffer, unsigned long size)
1501*e3723e1fSApple OSS Distributions {
1502*e3723e1fSApple OSS Distributions kcdata_iter_t iter;
1503*e3723e1fSApple OSS Distributions iter.item = (kcdata_item_t) buffer;
1504*e3723e1fSApple OSS Distributions iter.end = (void*) (((uintptr_t)buffer) + size);
1505*e3723e1fSApple OSS Distributions return iter;
1506*e3723e1fSApple OSS Distributions }
1507*e3723e1fSApple OSS Distributions
1508*e3723e1fSApple OSS Distributions static inline
1509*e3723e1fSApple OSS Distributions kcdata_iter_t kcdata_iter_unsafe(void *buffer) __attribute__((deprecated));
1510*e3723e1fSApple OSS Distributions
1511*e3723e1fSApple OSS Distributions static inline
1512*e3723e1fSApple OSS Distributions kcdata_iter_t
kcdata_iter_unsafe(void * buffer)1513*e3723e1fSApple OSS Distributions kcdata_iter_unsafe(void *buffer)
1514*e3723e1fSApple OSS Distributions {
1515*e3723e1fSApple OSS Distributions kcdata_iter_t iter;
1516*e3723e1fSApple OSS Distributions iter.item = (kcdata_item_t) buffer;
1517*e3723e1fSApple OSS Distributions iter.end = (void*) (uintptr_t) ~0;
1518*e3723e1fSApple OSS Distributions return iter;
1519*e3723e1fSApple OSS Distributions }
1520*e3723e1fSApple OSS Distributions
1521*e3723e1fSApple OSS Distributions static const kcdata_iter_t kcdata_invalid_iter = { .item = NULL, .end = NULL };
1522*e3723e1fSApple OSS Distributions
1523*e3723e1fSApple OSS Distributions static inline
1524*e3723e1fSApple OSS Distributions int
kcdata_iter_valid(kcdata_iter_t iter)1525*e3723e1fSApple OSS Distributions kcdata_iter_valid(kcdata_iter_t iter)
1526*e3723e1fSApple OSS Distributions {
1527*e3723e1fSApple OSS Distributions return
1528*e3723e1fSApple OSS Distributions ((uintptr_t)iter.item + sizeof(struct kcdata_item) <= (uintptr_t)iter.end) &&
1529*e3723e1fSApple OSS Distributions ((uintptr_t)iter.item + sizeof(struct kcdata_item) + iter.item->size <= (uintptr_t)iter.end);
1530*e3723e1fSApple OSS Distributions }
1531*e3723e1fSApple OSS Distributions
1532*e3723e1fSApple OSS Distributions
1533*e3723e1fSApple OSS Distributions static inline
1534*e3723e1fSApple OSS Distributions kcdata_iter_t
kcdata_iter_next(kcdata_iter_t iter)1535*e3723e1fSApple OSS Distributions kcdata_iter_next(kcdata_iter_t iter)
1536*e3723e1fSApple OSS Distributions {
1537*e3723e1fSApple OSS Distributions iter.item = (kcdata_item_t) (((uintptr_t)iter.item) + sizeof(struct kcdata_item) + (iter.item->size));
1538*e3723e1fSApple OSS Distributions return iter;
1539*e3723e1fSApple OSS Distributions }
1540*e3723e1fSApple OSS Distributions
1541*e3723e1fSApple OSS Distributions static inline uint32_t
kcdata_iter_type(kcdata_iter_t iter)1542*e3723e1fSApple OSS Distributions kcdata_iter_type(kcdata_iter_t iter)
1543*e3723e1fSApple OSS Distributions {
1544*e3723e1fSApple OSS Distributions if ((iter.item->type & ~0xfu) == KCDATA_TYPE_ARRAY_PAD0) {
1545*e3723e1fSApple OSS Distributions return KCDATA_TYPE_ARRAY;
1546*e3723e1fSApple OSS Distributions } else {
1547*e3723e1fSApple OSS Distributions return iter.item->type;
1548*e3723e1fSApple OSS Distributions }
1549*e3723e1fSApple OSS Distributions }
1550*e3723e1fSApple OSS Distributions
1551*e3723e1fSApple OSS Distributions static inline uint32_t
kcdata_calc_padding(uint32_t size)1552*e3723e1fSApple OSS Distributions kcdata_calc_padding(uint32_t size)
1553*e3723e1fSApple OSS Distributions {
1554*e3723e1fSApple OSS Distributions /* calculate number of bytes to add to size to get something divisible by 16 */
1555*e3723e1fSApple OSS Distributions return (-size) & 0xf;
1556*e3723e1fSApple OSS Distributions }
1557*e3723e1fSApple OSS Distributions
1558*e3723e1fSApple OSS Distributions static inline uint32_t
kcdata_flags_get_padding(uint64_t flags)1559*e3723e1fSApple OSS Distributions kcdata_flags_get_padding(uint64_t flags)
1560*e3723e1fSApple OSS Distributions {
1561*e3723e1fSApple OSS Distributions return flags & KCDATA_FLAGS_STRUCT_PADDING_MASK;
1562*e3723e1fSApple OSS Distributions }
1563*e3723e1fSApple OSS Distributions
1564*e3723e1fSApple OSS Distributions /* see comment above about has_padding */
1565*e3723e1fSApple OSS Distributions static inline int
kcdata_iter_is_legacy_item(kcdata_iter_t iter,uint32_t legacy_size)1566*e3723e1fSApple OSS Distributions kcdata_iter_is_legacy_item(kcdata_iter_t iter, uint32_t legacy_size)
1567*e3723e1fSApple OSS Distributions {
1568*e3723e1fSApple OSS Distributions uint32_t legacy_size_padded = legacy_size + kcdata_calc_padding(legacy_size);
1569*e3723e1fSApple OSS Distributions return iter.item->size == legacy_size_padded &&
1570*e3723e1fSApple OSS Distributions (iter.item->flags & (KCDATA_FLAGS_STRUCT_PADDING_MASK | KCDATA_FLAGS_STRUCT_HAS_PADDING)) == 0;
1571*e3723e1fSApple OSS Distributions }
1572*e3723e1fSApple OSS Distributions
1573*e3723e1fSApple OSS Distributions static inline uint32_t
kcdata_iter_size(kcdata_iter_t iter)1574*e3723e1fSApple OSS Distributions kcdata_iter_size(kcdata_iter_t iter)
1575*e3723e1fSApple OSS Distributions {
1576*e3723e1fSApple OSS Distributions uint32_t legacy_size = 0;
1577*e3723e1fSApple OSS Distributions
1578*e3723e1fSApple OSS Distributions switch (kcdata_iter_type(iter)) {
1579*e3723e1fSApple OSS Distributions case KCDATA_TYPE_ARRAY:
1580*e3723e1fSApple OSS Distributions case KCDATA_TYPE_CONTAINER_BEGIN:
1581*e3723e1fSApple OSS Distributions return iter.item->size;
1582*e3723e1fSApple OSS Distributions case STACKSHOT_KCTYPE_THREAD_SNAPSHOT: {
1583*e3723e1fSApple OSS Distributions legacy_size = sizeof(struct thread_snapshot_v2);
1584*e3723e1fSApple OSS Distributions if (kcdata_iter_is_legacy_item(iter, legacy_size)) {
1585*e3723e1fSApple OSS Distributions return legacy_size;
1586*e3723e1fSApple OSS Distributions }
1587*e3723e1fSApple OSS Distributions
1588*e3723e1fSApple OSS Distributions goto not_legacy;
1589*e3723e1fSApple OSS Distributions }
1590*e3723e1fSApple OSS Distributions case STACKSHOT_KCTYPE_SHAREDCACHE_LOADINFO: {
1591*e3723e1fSApple OSS Distributions legacy_size = sizeof(struct dyld_uuid_info_64);
1592*e3723e1fSApple OSS Distributions if (kcdata_iter_is_legacy_item(iter, legacy_size)) {
1593*e3723e1fSApple OSS Distributions return legacy_size;
1594*e3723e1fSApple OSS Distributions }
1595*e3723e1fSApple OSS Distributions
1596*e3723e1fSApple OSS Distributions goto not_legacy;
1597*e3723e1fSApple OSS Distributions }
1598*e3723e1fSApple OSS Distributions not_legacy:
1599*e3723e1fSApple OSS Distributions default:
1600*e3723e1fSApple OSS Distributions if (iter.item->size < kcdata_flags_get_padding(iter.item->flags)) {
1601*e3723e1fSApple OSS Distributions return 0;
1602*e3723e1fSApple OSS Distributions } else {
1603*e3723e1fSApple OSS Distributions return iter.item->size - kcdata_flags_get_padding(iter.item->flags);
1604*e3723e1fSApple OSS Distributions }
1605*e3723e1fSApple OSS Distributions }
1606*e3723e1fSApple OSS Distributions }
1607*e3723e1fSApple OSS Distributions
1608*e3723e1fSApple OSS Distributions static inline uint64_t
kcdata_iter_flags(kcdata_iter_t iter)1609*e3723e1fSApple OSS Distributions kcdata_iter_flags(kcdata_iter_t iter)
1610*e3723e1fSApple OSS Distributions {
1611*e3723e1fSApple OSS Distributions return iter.item->flags;
1612*e3723e1fSApple OSS Distributions }
1613*e3723e1fSApple OSS Distributions
1614*e3723e1fSApple OSS Distributions static inline
1615*e3723e1fSApple OSS Distributions void *
kcdata_iter_payload(kcdata_iter_t iter)1616*e3723e1fSApple OSS Distributions kcdata_iter_payload(kcdata_iter_t iter)
1617*e3723e1fSApple OSS Distributions {
1618*e3723e1fSApple OSS Distributions return &iter.item->data;
1619*e3723e1fSApple OSS Distributions }
1620*e3723e1fSApple OSS Distributions
1621*e3723e1fSApple OSS Distributions
1622*e3723e1fSApple OSS Distributions static inline
1623*e3723e1fSApple OSS Distributions uint32_t
kcdata_iter_array_elem_type(kcdata_iter_t iter)1624*e3723e1fSApple OSS Distributions kcdata_iter_array_elem_type(kcdata_iter_t iter)
1625*e3723e1fSApple OSS Distributions {
1626*e3723e1fSApple OSS Distributions return (iter.item->flags >> 32) & UINT32_MAX;
1627*e3723e1fSApple OSS Distributions }
1628*e3723e1fSApple OSS Distributions
1629*e3723e1fSApple OSS Distributions static inline
1630*e3723e1fSApple OSS Distributions uint32_t
kcdata_iter_array_elem_count(kcdata_iter_t iter)1631*e3723e1fSApple OSS Distributions kcdata_iter_array_elem_count(kcdata_iter_t iter)
1632*e3723e1fSApple OSS Distributions {
1633*e3723e1fSApple OSS Distributions return (iter.item->flags) & UINT32_MAX;
1634*e3723e1fSApple OSS Distributions }
1635*e3723e1fSApple OSS Distributions
1636*e3723e1fSApple OSS Distributions /* KCDATA_TYPE_ARRAY is ambiguous about the size of the array elements. Size is
1637*e3723e1fSApple OSS Distributions * calculated as total_size / elements_count, but total size got padded out to a
1638*e3723e1fSApple OSS Distributions * 16 byte alignment. New kernels will generate KCDATA_TYPE_ARRAY_PAD* instead
1639*e3723e1fSApple OSS Distributions * to explicitly tell us how much padding was used. Here we have a fixed, never
1640*e3723e1fSApple OSS Distributions * to be altered list of the sizes of array elements that were used before I
1641*e3723e1fSApple OSS Distributions * discovered this issue. If you find a KCDATA_TYPE_ARRAY that is not one of
1642*e3723e1fSApple OSS Distributions * these types, treat it as invalid data. */
1643*e3723e1fSApple OSS Distributions
1644*e3723e1fSApple OSS Distributions static inline
1645*e3723e1fSApple OSS Distributions uint32_t
kcdata_iter_array_size_switch(kcdata_iter_t iter)1646*e3723e1fSApple OSS Distributions kcdata_iter_array_size_switch(kcdata_iter_t iter)
1647*e3723e1fSApple OSS Distributions {
1648*e3723e1fSApple OSS Distributions switch (kcdata_iter_array_elem_type(iter)) {
1649*e3723e1fSApple OSS Distributions case KCDATA_TYPE_LIBRARY_LOADINFO:
1650*e3723e1fSApple OSS Distributions return sizeof(struct dyld_uuid_info_32);
1651*e3723e1fSApple OSS Distributions case KCDATA_TYPE_LIBRARY_LOADINFO64:
1652*e3723e1fSApple OSS Distributions return sizeof(struct dyld_uuid_info_64);
1653*e3723e1fSApple OSS Distributions case STACKSHOT_KCTYPE_KERN_STACKFRAME:
1654*e3723e1fSApple OSS Distributions case STACKSHOT_KCTYPE_USER_STACKFRAME:
1655*e3723e1fSApple OSS Distributions return sizeof(struct stack_snapshot_frame32);
1656*e3723e1fSApple OSS Distributions case STACKSHOT_KCTYPE_KERN_STACKFRAME64:
1657*e3723e1fSApple OSS Distributions case STACKSHOT_KCTYPE_USER_STACKFRAME64:
1658*e3723e1fSApple OSS Distributions return sizeof(struct stack_snapshot_frame64);
1659*e3723e1fSApple OSS Distributions case STACKSHOT_KCTYPE_DONATING_PIDS:
1660*e3723e1fSApple OSS Distributions return sizeof(int32_t);
1661*e3723e1fSApple OSS Distributions case STACKSHOT_KCTYPE_THREAD_DELTA_SNAPSHOT:
1662*e3723e1fSApple OSS Distributions return sizeof(struct thread_delta_snapshot_v2);
1663*e3723e1fSApple OSS Distributions // This one is only here to make some unit tests work. It should be OK to
1664*e3723e1fSApple OSS Distributions // remove.
1665*e3723e1fSApple OSS Distributions case TASK_CRASHINFO_CRASHED_THREADID:
1666*e3723e1fSApple OSS Distributions return sizeof(uint64_t);
1667*e3723e1fSApple OSS Distributions default:
1668*e3723e1fSApple OSS Distributions return 0;
1669*e3723e1fSApple OSS Distributions }
1670*e3723e1fSApple OSS Distributions }
1671*e3723e1fSApple OSS Distributions
1672*e3723e1fSApple OSS Distributions static inline
1673*e3723e1fSApple OSS Distributions int
kcdata_iter_array_valid(kcdata_iter_t iter)1674*e3723e1fSApple OSS Distributions kcdata_iter_array_valid(kcdata_iter_t iter)
1675*e3723e1fSApple OSS Distributions {
1676*e3723e1fSApple OSS Distributions if (!kcdata_iter_valid(iter)) {
1677*e3723e1fSApple OSS Distributions return 0;
1678*e3723e1fSApple OSS Distributions }
1679*e3723e1fSApple OSS Distributions if (kcdata_iter_type(iter) != KCDATA_TYPE_ARRAY) {
1680*e3723e1fSApple OSS Distributions return 0;
1681*e3723e1fSApple OSS Distributions }
1682*e3723e1fSApple OSS Distributions if (kcdata_iter_array_elem_count(iter) == 0) {
1683*e3723e1fSApple OSS Distributions return iter.item->size == 0;
1684*e3723e1fSApple OSS Distributions }
1685*e3723e1fSApple OSS Distributions if (iter.item->type == KCDATA_TYPE_ARRAY) {
1686*e3723e1fSApple OSS Distributions uint32_t elem_size = kcdata_iter_array_size_switch(iter);
1687*e3723e1fSApple OSS Distributions if (elem_size == 0) {
1688*e3723e1fSApple OSS Distributions return 0;
1689*e3723e1fSApple OSS Distributions }
1690*e3723e1fSApple OSS Distributions /* sizes get aligned to the nearest 16. */
1691*e3723e1fSApple OSS Distributions return
1692*e3723e1fSApple OSS Distributions kcdata_iter_array_elem_count(iter) <= iter.item->size / elem_size &&
1693*e3723e1fSApple OSS Distributions iter.item->size % kcdata_iter_array_elem_count(iter) < 16;
1694*e3723e1fSApple OSS Distributions } else {
1695*e3723e1fSApple OSS Distributions return
1696*e3723e1fSApple OSS Distributions (iter.item->type & 0xf) <= iter.item->size &&
1697*e3723e1fSApple OSS Distributions kcdata_iter_array_elem_count(iter) <= iter.item->size - (iter.item->type & 0xf) &&
1698*e3723e1fSApple OSS Distributions (iter.item->size - (iter.item->type & 0xf)) % kcdata_iter_array_elem_count(iter) == 0;
1699*e3723e1fSApple OSS Distributions }
1700*e3723e1fSApple OSS Distributions }
1701*e3723e1fSApple OSS Distributions
1702*e3723e1fSApple OSS Distributions
1703*e3723e1fSApple OSS Distributions static inline
1704*e3723e1fSApple OSS Distributions uint32_t
kcdata_iter_array_elem_size(kcdata_iter_t iter)1705*e3723e1fSApple OSS Distributions kcdata_iter_array_elem_size(kcdata_iter_t iter)
1706*e3723e1fSApple OSS Distributions {
1707*e3723e1fSApple OSS Distributions if (iter.item->type == KCDATA_TYPE_ARRAY) {
1708*e3723e1fSApple OSS Distributions return kcdata_iter_array_size_switch(iter);
1709*e3723e1fSApple OSS Distributions }
1710*e3723e1fSApple OSS Distributions if (kcdata_iter_array_elem_count(iter) == 0) {
1711*e3723e1fSApple OSS Distributions return 0;
1712*e3723e1fSApple OSS Distributions }
1713*e3723e1fSApple OSS Distributions return (iter.item->size - (iter.item->type & 0xf)) / kcdata_iter_array_elem_count(iter);
1714*e3723e1fSApple OSS Distributions }
1715*e3723e1fSApple OSS Distributions
1716*e3723e1fSApple OSS Distributions static inline
1717*e3723e1fSApple OSS Distributions int
kcdata_iter_container_valid(kcdata_iter_t iter)1718*e3723e1fSApple OSS Distributions kcdata_iter_container_valid(kcdata_iter_t iter)
1719*e3723e1fSApple OSS Distributions {
1720*e3723e1fSApple OSS Distributions return
1721*e3723e1fSApple OSS Distributions kcdata_iter_valid(iter) &&
1722*e3723e1fSApple OSS Distributions kcdata_iter_type(iter) == KCDATA_TYPE_CONTAINER_BEGIN &&
1723*e3723e1fSApple OSS Distributions iter.item->size >= sizeof(uint32_t);
1724*e3723e1fSApple OSS Distributions }
1725*e3723e1fSApple OSS Distributions
1726*e3723e1fSApple OSS Distributions static inline
1727*e3723e1fSApple OSS Distributions uint32_t
kcdata_iter_container_type(kcdata_iter_t iter)1728*e3723e1fSApple OSS Distributions kcdata_iter_container_type(kcdata_iter_t iter)
1729*e3723e1fSApple OSS Distributions {
1730*e3723e1fSApple OSS Distributions return *(uint32_t *) kcdata_iter_payload(iter);
1731*e3723e1fSApple OSS Distributions }
1732*e3723e1fSApple OSS Distributions
1733*e3723e1fSApple OSS Distributions static inline
1734*e3723e1fSApple OSS Distributions uint64_t
kcdata_iter_container_id(kcdata_iter_t iter)1735*e3723e1fSApple OSS Distributions kcdata_iter_container_id(kcdata_iter_t iter)
1736*e3723e1fSApple OSS Distributions {
1737*e3723e1fSApple OSS Distributions return iter.item->flags;
1738*e3723e1fSApple OSS Distributions }
1739*e3723e1fSApple OSS Distributions
1740*e3723e1fSApple OSS Distributions
1741*e3723e1fSApple OSS Distributions #define KCDATA_ITER_FOREACH(iter) for(; kcdata_iter_valid(iter) && iter.item->type != KCDATA_TYPE_BUFFER_END; iter = kcdata_iter_next(iter))
1742*e3723e1fSApple OSS Distributions #define KCDATA_ITER_FOREACH_FAILED(iter) (!kcdata_iter_valid(iter) || (iter).item->type != KCDATA_TYPE_BUFFER_END)
1743*e3723e1fSApple OSS Distributions
1744*e3723e1fSApple OSS Distributions static inline
1745*e3723e1fSApple OSS Distributions kcdata_iter_t
kcdata_iter_find_type(kcdata_iter_t iter,uint32_t type)1746*e3723e1fSApple OSS Distributions kcdata_iter_find_type(kcdata_iter_t iter, uint32_t type)
1747*e3723e1fSApple OSS Distributions {
1748*e3723e1fSApple OSS Distributions KCDATA_ITER_FOREACH(iter)
1749*e3723e1fSApple OSS Distributions {
1750*e3723e1fSApple OSS Distributions if (kcdata_iter_type(iter) == type) {
1751*e3723e1fSApple OSS Distributions return iter;
1752*e3723e1fSApple OSS Distributions }
1753*e3723e1fSApple OSS Distributions }
1754*e3723e1fSApple OSS Distributions return kcdata_invalid_iter;
1755*e3723e1fSApple OSS Distributions }
1756*e3723e1fSApple OSS Distributions
1757*e3723e1fSApple OSS Distributions static inline
1758*e3723e1fSApple OSS Distributions int
kcdata_iter_data_with_desc_valid(kcdata_iter_t iter,uint32_t minsize)1759*e3723e1fSApple OSS Distributions kcdata_iter_data_with_desc_valid(kcdata_iter_t iter, uint32_t minsize)
1760*e3723e1fSApple OSS Distributions {
1761*e3723e1fSApple OSS Distributions return
1762*e3723e1fSApple OSS Distributions kcdata_iter_valid(iter) &&
1763*e3723e1fSApple OSS Distributions kcdata_iter_size(iter) >= KCDATA_DESC_MAXLEN + minsize &&
1764*e3723e1fSApple OSS Distributions ((char*)kcdata_iter_payload(iter))[KCDATA_DESC_MAXLEN - 1] == 0;
1765*e3723e1fSApple OSS Distributions }
1766*e3723e1fSApple OSS Distributions
1767*e3723e1fSApple OSS Distributions static inline
1768*e3723e1fSApple OSS Distributions char *
kcdata_iter_string(kcdata_iter_t iter,uint32_t offset)1769*e3723e1fSApple OSS Distributions kcdata_iter_string(kcdata_iter_t iter, uint32_t offset)
1770*e3723e1fSApple OSS Distributions {
1771*e3723e1fSApple OSS Distributions if (offset > kcdata_iter_size(iter)) {
1772*e3723e1fSApple OSS Distributions return NULL;
1773*e3723e1fSApple OSS Distributions }
1774*e3723e1fSApple OSS Distributions uint32_t maxlen = kcdata_iter_size(iter) - offset;
1775*e3723e1fSApple OSS Distributions char *s = ((char*)kcdata_iter_payload(iter)) + offset;
1776*e3723e1fSApple OSS Distributions if (strnlen(s, maxlen) < maxlen) {
1777*e3723e1fSApple OSS Distributions return s;
1778*e3723e1fSApple OSS Distributions } else {
1779*e3723e1fSApple OSS Distributions return NULL;
1780*e3723e1fSApple OSS Distributions }
1781*e3723e1fSApple OSS Distributions }
1782*e3723e1fSApple OSS Distributions
1783*e3723e1fSApple OSS Distributions static inline void
kcdata_iter_get_data_with_desc(kcdata_iter_t iter,char ** desc_ptr,void ** data_ptr,uint32_t * size_ptr)1784*e3723e1fSApple OSS Distributions kcdata_iter_get_data_with_desc(kcdata_iter_t iter, char **desc_ptr, void **data_ptr, uint32_t *size_ptr)
1785*e3723e1fSApple OSS Distributions {
1786*e3723e1fSApple OSS Distributions if (desc_ptr) {
1787*e3723e1fSApple OSS Distributions *desc_ptr = (char *)kcdata_iter_payload(iter);
1788*e3723e1fSApple OSS Distributions }
1789*e3723e1fSApple OSS Distributions if (data_ptr) {
1790*e3723e1fSApple OSS Distributions *data_ptr = (void *)((uintptr_t)kcdata_iter_payload(iter) + KCDATA_DESC_MAXLEN);
1791*e3723e1fSApple OSS Distributions }
1792*e3723e1fSApple OSS Distributions if (size_ptr) {
1793*e3723e1fSApple OSS Distributions *size_ptr = kcdata_iter_size(iter) - KCDATA_DESC_MAXLEN;
1794*e3723e1fSApple OSS Distributions }
1795*e3723e1fSApple OSS Distributions }
1796*e3723e1fSApple OSS Distributions
1797*e3723e1fSApple OSS Distributions #endif /* !__has_ptrcheck */
1798*e3723e1fSApple OSS Distributions #endif
1799