Additionally passing the current Bochs CPU context and instruction cache entry to BochsController (enables detailed instruction analysis and modification)

git-svn-id: https://www4.informatik.uni-erlangen.de/i4svn/danceos/trunk/devel/fail@1361 8c4709b5-6ec9-48aa-a5cd-a96041d1645a
2012-06-15 16:39:14 +00:00
parent 33772f750e
commit bff60aeae3
12 changed files with 702 additions and 251 deletions
--- a/src/experiments/l4-sys/campaign.cc
+++ b/src/experiments/l4-sys/campaign.cc
@ -11,9 +11,24 @@ using namespace std;
 using namespace fail;

 char const * const results_csv = "l4sys.csv";
+const char *l4sys_output_strings[] = { "Unknown", "Done", "Timeout", "Trap", "Interrupt", "Wrong output", "Error" };

-bool L4SysCampaign::run()
-{
+std::string L4SysCampaign::output_result(L4SysProtoMsg_ResultType res) {
+#define OUTPUT_CASE(OUTPUT) case L4SysProtoMsg::OUTPUT: return l4sys_output_strings[L4SysProtoMsg::OUTPUT];
+	switch (res) {
+	OUTPUT_CASE(DONE);
+	OUTPUT_CASE(TIMEOUT);
+	OUTPUT_CASE(TRAP);
+	OUTPUT_CASE(INTR);
+	OUTPUT_CASE(WRONG);
+	OUTPUT_CASE(UNKNOWN);
+	default:
+		return l4sys_output_strings[0];
+	}
+#undef OUTPUT_CASE
+}
+
+bool L4SysCampaign::run() {
 	Logger log("L4SysCampaign");

 #if 0
@ -32,17 +47,17 @@ bool L4SysCampaign::run()
 	log << "startup" << endl;

 	int count = 0;
-	//iterate over one register
-	for (int bit_offset = 0; bit_offset < 1; ++bit_offset) {
-		for (int instr_offset = 0; instr_offset < L4SYS_NUMINSTR; ++instr_offset) {
-			L4SysExperimentData *d = new L4SysExperimentData;
-			d->msg.set_instr_offset(instr_offset);
-			d->msg.set_bit_offset(bit_offset);
-			d->msg.set_bit_offset(0);
-	  
-			campaignmanager.addParam(d);
-			++count;
-		}
+	srand(time(NULL));
+	for (int i = 0; i < 3000; ++i) {
+		L4SysExperimentData *d = new L4SysExperimentData;
+		d->msg.set_exp_type(d->msg.IDCFLIP);
+		d->msg.set_instr_offset(rand() % L4SYS_NUMINSTR);
+		// 15 bytes (120 bits) are the longest instruction Bochs still executes
+		int bit_offset = rand() % 120;
+		d->msg.set_bit_offset(bit_offset);
+
+		campaignmanager.addParam(d);
+		++count;
 	}
 	campaignmanager.noMoreParameters();
 	log << "done enqueueing parameter sets (" << count << ")." << endl;
@ -50,19 +65,19 @@ bool L4SysCampaign::run()
 	// collect results
 	L4SysExperimentData *res;
 	int rescount = 0;
-	results << "injection_ip,instr_offset,injection_bit,resulttype,resultdata,output,details" << endl;
+	results
+			<< "injection_ip,instr_offset,injection_bit,resulttype,resultdata,output,details"
+			<< endl;
 	while ((res = static_cast<L4SysExperimentData *>(campaignmanager.getDone()))) {
 		rescount++;

-		results << hex
-		 << res->msg.injection_ip() << ","
-		 << dec << res->msg.instr_offset() << ","
-		 << res->msg.bit_offset() << ","
-		 << res->msg.resulttype() << ","
-		 << res->msg.resultdata();
-		if(res->msg.has_output())
+		results << hex << res->msg.injection_ip() << "," << dec
+				<< res->msg.instr_offset() << "," << res->msg.bit_offset()
+				<< "," << output_result(res->msg.resulttype()) << ","
+				<< res->msg.resultdata();
+		if (res->msg.has_output())
 			results << "," << res->msg.output();
-		if(res->msg.has_details())
+		if (res->msg.has_details())
 			results << "," << res->msg.details();
 		results << endl;
 		delete res;