Changeset 84458 in vbox

Timestamp:

May 22, 2020 12:51:49 PM (5 years ago)

Author:

vboxsync

svn:sync-xref-src-repo-rev:

138165

Message:

VMM/DBGF: First commit of new tracing facility, bugref:9210

The new DBGF tracing facility allows efficient capturing of events to a compact binary
trace log for later analysis. It is primarily intended for recording device/guest
interactions for now but can be extended easily for other types of events later on.
It supports capturing events happening in both R0 and R3 by using a shared ring buffer
to post events to. The events are processed by a dedicated I/O thread which writes
new events into the binary trace log file.

This is only the core VMM/DBGF part providing the API, the integration with PDM
comes in a separate commit.

Disabled by default for now because it is still work in progress,
enable with VBOX_WITH_DBGF_TRACING.

Location:

trunk

Files:

• include/VBox/err.h (modified) (1 diff)
• include/VBox/types.h (modified) (1 diff)
• include/VBox/vmm/dbgf.h (modified) (2 diffs)
• include/VBox/vmm/gvm.h (modified) (1 diff)
• include/VBox/vmm/mm.h (modified) (1 diff)
• include/VBox/vmm/vmm.h (modified) (1 diff)
• src/VBox/VMM/Makefile.kmk (modified) (5 diffs)
• src/VBox/VMM/VMMAll/DBGFAllTracer.cpp (added)
• src/VBox/VMM/VMMAll/MMAll.cpp (modified) (1 diff)
• src/VBox/VMM/VMMR0/DBGFR0Tracer.cpp (added)
• src/VBox/VMM/VMMR0/VMMR0.cpp (modified) (1 diff)
• src/VBox/VMM/VMMR3/DBGF.cpp (modified) (2 diffs)
• src/VBox/VMM/VMMR3/DBGFR3Tracer.cpp (added)
• src/VBox/VMM/include/DBGFInternal.h (modified) (5 diffs)

trunk/include/VBox/err.h

@@ -321 +321 @@
 /** No trace buffer available, please change the VM config. */
 #define VERR_DBGF_NO_TRACE_BUFFER           (-1220)
+/** Internal processing error \#1 in the DBGF event tracing code. */
+#define VERR_DBGF_TRACER_IPE_1              (-1221)
 /** @} */
 

trunk/include/VBox/types.h

@@ -498 +498 @@
 typedef const struct CPUMSELREG *PCCPUMSELREGHID;
 
+/** A cross context DBGF tracer event source handle. */
+typedef uint64_t                DBGFTRACEREVTSRC;
+/** Pointer to a cross context DBGF tracer event source handle. */
+typedef DBGFTRACEREVTSRC        *PDBGFTRACEREVTSRC;
+/** A NIL DBGF tracer event source handle. */
+#define NIL_DBGFTRACEREVTSRC    ((uint64_t)UINT64_MAX)
+
+/** Pointer to a DBGF tracer instance for the current context. */
+#ifdef IN_RING3
+typedef struct DBGFTRACERINSR3 *PDBGFTRACERINSCC;
+#elif defined(IN_RING0) || defined(DOXYGEN_RUNNING)
+typedef struct DBGFTRACERINSR0 *PDBGFTRACERINSCC;
+#else
+typedef struct DBGFTRACERINSRC *PDBGFTRACERINSCC;
+#endif
+/** Pointer to a pointer a DBGF tracer instance for the current context. */
+typedef PDBGFTRACERINSCC *PPDBGFTRACERINSCC;
+/** R3 pointer to a DBGF tracer instance. */
+typedef R3PTRTYPE(struct DBGFTRACERINSR3 *) PDBGFTRACERINSR3;
+/** R0 pointer to a DBGF tracer instance. */
+typedef R0PTRTYPE(struct DBGFTRACERINSR0 *) PDBGFTRACERINSR0;
+/** RC pointer to a DBGF tracer instance. */
+typedef RCPTRTYPE(struct DBGFTRACERINSRC *) PDBGFTRACERINSRC;
 /** @} */
 

trunk/include/VBox/vmm/dbgf.h

@@ -55 +55 @@
 #endif
 
+
+/** @defgroup grp_dbgf_r0  The R0 DBGF API
+ * @{
+ */
+/**
+ * Request buffer for DBGFR0TracerCreateReqHandler / VMMR0_DO_DBGF_TRACER_CREATE.
+ * @see DBGFR0TracerCreateReqHandler.
+ */
+typedef struct DBGFTRACERCREATEREQ
+{
+    /** The header. */
+    SUPVMMR0REQHDR          Hdr;
+    /** Out: Where to return the address of the ring-3 tracer instance. */
+    PDBGFTRACERINSR3        pTracerInsR3;
+
+    /** Number of bytes for the shared event ring buffer. */
+    uint32_t                cbRingBuf;
+
+    /** Set if the raw-mode component is desired. */
+    bool                    fRCEnabled;
+    /** Explicit padding. */
+    bool                    afReserved[3];
+
+} DBGFTRACERCREATEREQ;
+/** Pointer to a DBGFR0TracerCreate / VMMR0_DO_DBGF_TRACER_CREATE request buffer. */
+typedef DBGFTRACERCREATEREQ *PDBGFTRACERCREATEREQ;
+
+VMMR0_INT_DECL(int) DBGFR0TracerCreateReqHandler(PGVM pGVM, PDBGFTRACERCREATEREQ pReq);
+/** @} */
 
 
@@ -2789 +2818 @@
 #endif /* IN_RING3 */
 
+
+/** @defgroup grp_dbgf_tracer  DBGF event tracing.
+ * @{ */
+#ifdef IN_RING3
+VMMR3_INT_DECL(int) DBGFR3TracerRegisterEvtSrc(PVM pVM, const char *pszName, PDBGFTRACEREVTSRC phEvtSrc);
+VMMR3_INT_DECL(int) DBGFR3TracerDeregisterEvtSrc(PVM pVM, DBGFTRACEREVTSRC hEvtSrc);
+#endif
+
+VMM_INT_DECL(int)   DBGFTracerEvtMmioMap(PVMCC pVM, DBGFTRACEREVTSRC hEvtSrc, uint64_t hRegion, RTGCPHYS GCPhysMmio);
+VMM_INT_DECL(int)   DBGFTracerEvtMmioUnmap(PVMCC pVM, DBGFTRACEREVTSRC hEvtSrc, uint64_t hRegion);
+VMM_INT_DECL(int)   DBGFTracerEvtMmioRead(PVMCC pVM, DBGFTRACEREVTSRC hEvtSrc, uint64_t hRegion, RTGCPHYS offMmio, const void *pvVal, size_t cbVal);
+VMM_INT_DECL(int)   DBGFTracerEvtMmioWrite(PVMCC pVM, DBGFTRACEREVTSRC hEvtSrc, uint64_t hRegion, RTGCPHYS offMmio, const void *pvVal, size_t cbVal);
+VMM_INT_DECL(int)   DBGFTracerEvtMmioFill(PVMCC pVM, DBGFTRACEREVTSRC hEvtSrc, uint64_t hRegion, RTGCPHYS offMmio, uint32_t u32Item, uint32_t cbItem, uint32_t cItems);
+VMM_INT_DECL(int)   DBGFTracerEvtIoPortMap(PVMCC pVM, DBGFTRACEREVTSRC hEvtSrc, uint64_t hIoPorts, RTIOPORT IoPortBase);
+VMM_INT_DECL(int)   DBGFTracerEvtIoPortUnmap(PVMCC pVM, DBGFTRACEREVTSRC hEvtSrc, uint64_t hIoPorts);
+VMM_INT_DECL(int)   DBGFTracerEvtIoPortRead(PVMCC pVM, DBGFTRACEREVTSRC hEvtSrc, uint64_t hIoPorts, RTIOPORT offPort, const void *pvVal, size_t cbVal);
+VMM_INT_DECL(int)   DBGFTracerEvtIoPortWrite(PVMCC pVM, DBGFTRACEREVTSRC hEvtSrc, uint64_t hIoPorts, RTIOPORT offPort, const void *pvVal, size_t cbVal);
+VMM_INT_DECL(int)   DBGFTracerEvtIrq(PVMCC pVM, DBGFTRACEREVTSRC hEvtSrc, int32_t iIrq, int32_t fIrqLvl);
+VMM_INT_DECL(int)   DBGFTracerEvtIoApicMsi(PVMCC pVM, DBGFTRACEREVTSRC hEvtSrc, RTGCPHYS GCPhys, uint32_t u32Val);
+VMM_INT_DECL(int)   DBGFTracerEvtGCPhysRead(PVMCC pVM, DBGFTRACEREVTSRC hEvtSrc, RTGCPHYS GCPhys, const void *pvBuf, size_t cbRead);
+VMM_INT_DECL(int)   DBGFTracerEvtGCPhysWrite(PVMCC pVM, DBGFTRACEREVTSRC hEvtSrc, RTGCPHYS GCPhys, const void *pvBuf, size_t cbWrite);
 /** @} */
 
+/** @} */
 
 RT_C_DECLS_END

trunk/include/VBox/vmm/gvm.h

@@ -229 +229 @@
     } apicr0;
 
+    union
+    {
+#if defined(VMM_INCLUDED_SRC_include_DBGFInternal_h) && defined(IN_RING0)
+        struct DBGFR0PERVM   s;
+#endif
+        uint8_t             padding[64];
+    } dbgfr0;
+
     /** Padding so aCpus starts on a page boundrary.  */
 #ifdef VBOX_WITH_NEM_R0
-    uint8_t         abPadding2[4096*2 - 64 - 256 - 1024 - 256 - 64 - 2176 - 640 - 512 - 64 - sizeof(PGVMCPU) * VMM_MAX_CPU_COUNT];
-#else
-    uint8_t         abPadding2[4096*2 - 64 - 256 - 1024       - 64 - 2176 - 640 - 512 - 64 - sizeof(PGVMCPU) * VMM_MAX_CPU_COUNT];
+    uint8_t         abPadding2[4096*2 - 64 - 256 - 1024 - 256 - 64 - 2176 - 640 - 512 - 64 - 64 - sizeof(PGVMCPU) * VMM_MAX_CPU_COUNT];
+#else
+    uint8_t         abPadding2[4096*2 - 64 - 256 - 1024       - 64 - 2176 - 640 - 512 - 64 - 64 - sizeof(PGVMCPU) * VMM_MAX_CPU_COUNT];
 #endif
 

trunk/include/VBox/vmm/mm.h

@@ -79 +79 @@
     MM_TAG_DBGF_SYMBOL_DUP,
     MM_TAG_DBGF_TYPE,
+    MM_TAG_DBGF_TRACER,
 
     MM_TAG_EM,

trunk/include/VBox/vmm/vmm.h

@@ -426 +426 @@
     /** Official call we use for testing Ring-0 APIs. */
     VMMR0_DO_TESTS = 704,
+
+    /** Call DBGFR0TraceCreateReqHandler. */
+    VMMR0_DO_DBGF_TRACER_CREATE = 710,
+    /** Call DBGFR0TraceCallReqHandler. */
+    VMMR0_DO_DBGF_TRACER_CALL_REQ_HANDLER,
 
     /** The usual 32-bit type blow up. */

trunk/src/VBox/VMM/Makefile.kmk

@@ -68 +68 @@
 ifdef VBOX_WITH_IOMMU_AMD
 VBoxVMM_DEFS    += VBOX_WITH_IOMMU_AMD
+endif
+ifdef VBOX_WITH_DBGF_TRACING
+VBoxVMM_DEFS    += VBOX_WITH_DBGF_TRACING
 endif
 ifdef VBOX_WITH_RAW_MODE
@@ -112 +115 @@
         VMMR3/DBGFR3Flow.cpp \
         VMMR3/DBGFR3Trace.cpp \
+        $(if-expr defined(VBOX_WITH_DBGF_TRACING), VMMR3/DBGFR3Tracer.cpp,) \
         VMMR3/DBGFR3Type.cpp \
         VMMR3/EM.cpp \
@@ -177 +181 @@
         VMMAll/CPUMAllMsrs.cpp \
         VMMAll/DBGFAll.cpp \
+        $(if-expr defined(VBOX_WITH_DBGF_TRACING), VMMAll/DBGFAllTracer.cpp,) \
         VMMAll/HMAll.cpp \
         VMMAll/HMSVMAll.cpp \
@@ -487 +492 @@
         VMMR0/CPUMR0.cpp \
         VMMR0/CPUMR0A.asm \
+        $(if-expr defined(VBOX_WITH_DBGF_TRACING), VMMR0/DBGFR0Tracer.cpp,) \
         VMMR0/GIMR0.cpp \
         VMMR0/GIMR0Hv.cpp \
@@ -515 +521 @@
         VMMAll/CPUMAllMsrs.cpp \
         VMMAll/DBGFAll.cpp \
+        $(if-expr defined(VBOX_WITH_DBGF_TRACING), VMMAll/DBGFAllTracer.cpp,) \
         VMMAll/EMAll.cpp \
         VMMAll/GIMAll.cpp \

trunk/src/VBox/VMM/VMMAll/MMAll.cpp

@@ -585 +585 @@
         TAG2STR(DBGF_SYMBOL_DUP);
         TAG2STR(DBGF_TYPE);
+        TAG2STR(DBGF_TRACER);
 
         TAG2STR(EM);

trunk/src/VBox/VMM/VMMR0/VMMR0.cpp

@@ -2226 +2226 @@
         }
 
+#ifdef VBOX_WITH_DBGF_TRACING
+        case VMMR0_DO_DBGF_TRACER_CREATE:
+        {
+            if (!pReqHdr || u64Arg || idCpu != 0)
+                return VERR_INVALID_PARAMETER;
+            rc = DBGFR0TracerCreateReqHandler(pGVM, (PDBGFTRACERCREATEREQ)pReqHdr);
+            VMM_CHECK_SMAP_CHECK2(pGVM, RT_NOTHING);
+            break;
+        }
+
+        case VMMR0_DO_DBGF_TRACER_CALL_REQ_HANDLER:
+        {
+            if (!pReqHdr || u64Arg)
+                return VERR_INVALID_PARAMETER;
+#if 0 /** @todo */
+            rc = DBGFR0TracerGenCallReqHandler(pGVM, (PDBGFTRACERGENCALLREQ)pReqHdr, idCpu);
+#else
+            rc = VERR_NOT_IMPLEMENTED;
+#endif
+            VMM_CHECK_SMAP_CHECK2(pGVM, RT_NOTHING);
+            break;
+        }
+#endif
+
         /*
          * For profiling.

trunk/src/VBox/VMM/VMMR3/DBGF.cpp

@@ -186 +186 @@
                                 if (RT_SUCCESS(rc))
                                 {
-                                    return VINF_SUCCESS;
+#ifdef VBOX_WITH_DBGF_TRACING
+                                    rc = dbgfR3TracerInit(pVM);
+#endif
+                                    if (RT_SUCCESS(rc))
+                                    {
+                                        return VINF_SUCCESS;
+                                    }
                                 }
                                 dbgfR3PlugInTerm(pUVM);
@@ -216 +222 @@
     PUVM pUVM = pVM->pUVM;
 
+#ifdef VBOX_WITH_DBGF_TRACING
+    dbgfR3TracerTerm(pVM);
+#endif
     dbgfR3OSTermPart1(pUVM);
     dbgfR3PlugInTerm(pUVM);

trunk/src/VBox/VMM/include/DBGFInternal.h

@@ -32 +32 @@
 #include <iprt/avl.h>
 #include <iprt/dbg.h>
+#include <iprt/tracelog.h>
 #include <VBox/vmm/dbgf.h>
 
@@ -41 +42 @@
  * @{
  */
+
+/** The maximum tracer instance (total) size, ring-0/raw-mode capable tracers. */
+#define DBGF_MAX_TRACER_INSTANCE_SIZE    _8M
+/** The maximum tracers instance (total) size, ring-3 only tracers. */
+#define DBGF_MAX_TRACER_INSTANCE_SIZE_R3 _16M
+/** Event ringbuffer header size. */
+#define DBGF_TRACER_EVT_HDR_SZ           (32)
+/** Event ringbuffer payload size. */
+#define DBGF_TRACER_EVT_PAYLOAD_SZ       (32)
+/** Event ringbuffer entry size. */
+#define DBGF_TRACER_EVT_SZ               (DBGF_TRACER_EVT_HDR_SZ + DBGF_TRACER_EVT_PAYLOAD_SZ)
+
+
+
+/*******************************************************************************
+*   Structures and Typedefs                                                    *
+*******************************************************************************/
+
+/**
+ * Event entry types.
+ */
+typedef enum DBGFTRACEREVT
+{
+    /** Invalid type. */
+    DBGFTRACEREVT_INVALID = 0,
+    /** MMIO map region event. */
+    DBGFTRACEREVT_MMIO_MAP,
+    /** MMIO unmap region event. */
+    DBGFTRACEREVT_MMIO_UNMAP,
+    /** MMIO read event. */
+    DBGFTRACEREVT_MMIO_READ,
+    /** MMIO write event. */
+    DBGFTRACEREVT_MMIO_WRITE,
+    /** MMIO fill event. */
+    DBGFTRACEREVT_MMIO_FILL,
+    /** I/O port map event. */
+    DBGFTRACEREVT_IOPORT_MAP,
+    /** I/O port unmap event. */
+    DBGFTRACEREVT_IOPORT_UNMAP,
+    /** I/O port read event. */
+    DBGFTRACEREVT_IOPORT_READ,
+    /** I/O port write event. */
+    DBGFTRACEREVT_IOPORT_WRITE,
+    /** IRQ event. */
+    DBGFTRACEREVT_IRQ,
+    /** I/O APIC MSI event. */
+    DBGFTRACEREVT_IOAPIC_MSI,
+    /** Read from guest physical memory. */
+    DBGFTRACEREVT_GCPHYS_READ,
+    /** Write to guest physical memory. */
+    DBGFTRACEREVT_GCPHYS_WRITE,
+    /** 32bit hack. */
+    DBGFTRACEREVT_32BIT_HACK
+} DBGFTRACEREVT;
+/** Pointer to a trace event entry type. */
+typedef DBGFTRACEREVT *PDBGFTRACEREVT;
+
+
+/**
+ * MMIO region map event.
+ */
+typedef struct DBGFTRACEREVTMMIOMAP
+{
+    /** Unique region handle for the event source. */
+    uint64_t                                hMmioRegion;
+    /** The base guest physical address of the MMIO region. */
+    RTGCPHYS                                GCPhysMmioBase;
+    /** Padding to 32byte. */
+    uint64_t                                au64Pad0[2];
+} DBGFTRACEREVTMMIOMAP;
+/** Pointer to a MMIO map event. */
+typedef DBGFTRACEREVTMMIOMAP *PDBGFTRACEREVTMMIOMAP;
+/** Pointer to a const MMIO map event. */
+typedef const DBGFTRACEREVTMMIOMAP *PCDBGFTRACEREVTMMIOMAP;
+
+AssertCompileSize(DBGFTRACEREVTMMIOMAP, DBGF_TRACER_EVT_PAYLOAD_SZ);
+
+
+/**
+ * MMIO region unmap event.
+ */
+typedef struct DBGFTRACEREVTMMIOUNMAP
+{
+    /** Unique region handle for the event source. */
+    uint64_t                                hMmioRegion;
+    /** Padding to 32byte. */
+    uint64_t                                au64Pad0[3];
+} DBGFTRACEREVTMMIOUNMAP;
+/** Pointer to a MMIO map event. */
+typedef DBGFTRACEREVTMMIOUNMAP *PDBGFTRACEREVTMMIOUNMAP;
+/** Pointer to a const MMIO map event. */
+typedef const DBGFTRACEREVTMMIOUNMAP *PCDBGFTRACEREVTMMIOUNMAP;
+
+AssertCompileSize(DBGFTRACEREVTMMIOUNMAP, DBGF_TRACER_EVT_PAYLOAD_SZ);
+
+
+/**
+ * MMIO event.
+ */
+typedef struct DBGFTRACEREVTMMIO
+{
+    /** Unique region handle for the event source. */
+    uint64_t                                hMmioRegion;
+    /** Offset into the region the access happened. */
+    RTGCPHYS                                offMmio;
+    /** Number of bytes transfered (the direction is in the event header). */
+    uint64_t                                cbXfer;
+    /** The value transfered. */
+    uint64_t                                u64Val;
+} DBGFTRACEREVTMMIO;
+/** Pointer to a MMIO event. */
+typedef DBGFTRACEREVTMMIO *PDBGFTRACEREVTMMIO;
+/** Pointer to a const MMIO event. */
+typedef const DBGFTRACEREVTMMIO *PCDBGFTRACEREVTMMIO;
+
+AssertCompileSize(DBGFTRACEREVTMMIO, DBGF_TRACER_EVT_PAYLOAD_SZ);
+
+
+/**
+ * MMIO fill event.
+ */
+typedef struct DBGFTRACEREVTMMIOFILL
+{
+    /** Unique region handle for the event source. */
+    uint64_t                                hMmioRegion;
+    /** Offset into the region the access happened. */
+    RTGCPHYS                                offMmio;
+    /** Item size in bytes. */
+    uint32_t                                cbItem;
+    /** Amount of items being filled. */
+    uint32_t                                cItems;
+    /** The fill value. */
+    uint32_t                                u32Item;
+    /** Padding to 32bytes. */
+    uint32_t                                u32Pad0;
+} DBGFTRACEREVTMMIOFILL;
+/** Pointer to a MMIO event. */
+typedef DBGFTRACEREVTMMIOFILL *PDBGFTRACEREVTMMIOFILL;
+/** Pointer to a const MMIO event. */
+typedef const DBGFTRACEREVTMMIOFILL *PCDBGFTRACEREVTMMIOFILL;
+
+AssertCompileSize(DBGFTRACEREVTMMIOFILL, DBGF_TRACER_EVT_PAYLOAD_SZ);
+
+
+/**
+ * I/O port region map event.
+ */
+typedef struct DBGFTRACEREVTIOPORTMAP
+{
+    /** Unique I/O port region handle for the event source. */
+    uint64_t                                hIoPorts;
+    /** The base I/O port for the region. */
+    RTIOPORT                                IoPortBase;
+    /** Padding to 32byte. */
+    uint16_t                                au16Pad0[11];
+} DBGFTRACEREVTIOPORTMAP;
+/** Pointer to a MMIO map event. */
+typedef DBGFTRACEREVTIOPORTMAP *PDBGFTRACEREVTIOPORTMAP;
+/** Pointer to a const MMIO map event. */
+typedef const DBGFTRACEREVTIOPORTMAP *PCDBGFTRACEREVTIOPORTMAP;
+
+AssertCompileSize(DBGFTRACEREVTIOPORTMAP, DBGF_TRACER_EVT_PAYLOAD_SZ);
+
+
+/**
+ * MMIO region unmap event.
+ */
+typedef struct DBGFTRACEREVTIOPORTUNMAP
+{
+    /** Unique region handle for the event source. */
+    uint64_t                                hIoPorts;
+    /** Padding to 32byte. */
+    uint64_t                                au64Pad0[3];
+} DBGFTRACEREVTIOPORTUNMAP;
+/** Pointer to a MMIO map event. */
+typedef DBGFTRACEREVTIOPORTUNMAP *PDBGFTRACEREVTIOPORTUNMAP;
+/** Pointer to a const MMIO map event. */
+typedef const DBGFTRACEREVTIOPORTUNMAP *PCDBGFTRACEREVTIOPORTUNMAP;
+
+AssertCompileSize(DBGFTRACEREVTIOPORTUNMAP, DBGF_TRACER_EVT_PAYLOAD_SZ);
+
+
+/**
+ * I/O port event.
+ */
+typedef struct DBGFTRACEREVTIOPORT
+{
+    /** Unique region handle for the event source. */
+    uint64_t                                hIoPorts;
+    /** Offset into the I/O port region. */
+    RTIOPORT                                offPort;
+    /** 8 byte alignment. */
+    uint8_t                                 abPad0[6];
+    /** Number of bytes transfered (the direction is in the event header). */
+    uint64_t                                cbXfer;
+    /** The value transfered. */
+    uint32_t                                u32Val;
+    /** Padding to 32bytes. */
+    uint8_t                                 abPad1[4];
+} DBGFTRACEREVTIOPORT;
+/** Pointer to a MMIO event. */
+typedef DBGFTRACEREVTIOPORT *PDBGFTRACEREVTIOPORT;
+/** Pointer to a const MMIO event. */
+typedef const DBGFTRACEREVTIOPORT *PCDBGFTRACEREVTIOPORT;
+
+AssertCompileSize(DBGFTRACEREVTIOPORT, DBGF_TRACER_EVT_PAYLOAD_SZ);
+
+
+/**
+ * IRQ event.
+ */
+typedef struct DBGFTRACEREVTIRQ
+{
+    /** The IRQ line. */
+    int32_t                                 iIrq;
+    /** IRQ level flags. */
+    int32_t                                 fIrqLvl;
+    /** Padding to 32bytes. */
+    uint32_t                                au32Pad0[6];
+} DBGFTRACEREVTIRQ;
+/** Pointer to a MMIO event. */
+typedef DBGFTRACEREVTIRQ *PDBGFTRACEREVTIRQ;
+/** Pointer to a const MMIO event. */
+typedef const DBGFTRACEREVTIRQ *PCDBGFTRACEREVTIRQ;
+
+AssertCompileSize(DBGFTRACEREVTIRQ, DBGF_TRACER_EVT_PAYLOAD_SZ);
+
+
+/**
+ * I/O APIC MSI event.
+ */
+typedef struct DBGFTRACEREVTIOAPICMSI
+{
+    /** The guest physical address being written. */
+    RTGCPHYS                                GCPhys;
+    /** The value being written. */
+    uint32_t                                u32Val;
+    /** Padding to 32bytes. */
+    uint32_t                                au32Pad0[5];
+} DBGFTRACEREVTIOAPICMSI;
+/** Pointer to a MMIO event. */
+typedef DBGFTRACEREVTIOAPICMSI *PDBGFTRACEREVTIOAPICMSI;
+/** Pointer to a const MMIO event. */
+typedef const DBGFTRACEREVTIOAPICMSI *PCDBGFTRACEREVTIOAPICMSI;
+
+AssertCompileSize(DBGFTRACEREVTIOAPICMSI, DBGF_TRACER_EVT_PAYLOAD_SZ);
+
+
+/**
+ * Guest physical memory transfer.
+ */
+typedef struct DBGFTRACEREVTGCPHYS
+{
+    /** Guest physical address of the access. */
+    RTGCPHYS                                GCPhys;
+    /** Number of bytes transfered (the direction is in the event header).
+     * If the number is small enough to fit into the remaining space of the entry
+     * it is stored here, otherwise it will be stored in the next entry (and following
+     * entries). */
+    uint64_t                                cbXfer;
+    /** Guest data being transfered. */
+    uint8_t                                 abData[16];
+} DBGFTRACEREVTGCPHYS;
+/** Pointer to a guest physical memory transfer event. */
+typedef DBGFTRACEREVTGCPHYS *PDBGFTRACEREVTGCPHYS;
+/** Pointer to a const uest physical memory transfer event. */
+typedef const DBGFTRACEREVTGCPHYS *PCDBGFTRACEREVTGCPHYS;
+
+AssertCompileSize(DBGFTRACEREVTGCPHYS, DBGF_TRACER_EVT_PAYLOAD_SZ);
+
+
+/**
+ * A trace event header in the shared ring buffer.
+ */
+typedef struct DBGFTRACEREVTHDR
+{
+    /** Event ID. */
+    volatile uint64_t                       idEvt;
+    /** The previous event ID this one links to,
+     * DBGF_TRACER_EVT_HDR_ID_INVALID if it links to no other event. */
+    uint64_t                                idEvtPrev;
+    /** Event source. */
+    DBGFTRACEREVTSRC                        hEvtSrc;
+    /** The event entry type. */
+    DBGFTRACEREVT                           enmEvt;
+    /** Flags for this event. */
+    uint32_t                                fFlags;
+} DBGFTRACEREVTHDR;
+/** Pointer to a trace event header. */
+typedef DBGFTRACEREVTHDR *PDBGFTRACEREVTHDR;
+/** Pointer to a const trace event header. */
+typedef const DBGFTRACEREVTHDR *PCDBGFTRACEREVTHDR;
+
+AssertCompileSize(DBGFTRACEREVTHDR, DBGF_TRACER_EVT_HDR_SZ);
+
+/** Invalid event ID, this is always set by the flush thread after processing one entry
+ * so the producers know when they are about to overwrite not yet processed entries in the ring buffer. */
+#define DBGF_TRACER_EVT_HDR_ID_INVALID      UINT64_C(0xffffffffffffffff)
+
+/** The event came from R0. */
+#define DBGF_TRACER_EVT_HDR_F_R0            RT_BIT(0)
+
+/** Default event header tracer flags. */
+#ifdef IN_RING0
+# define DBGF_TRACER_EVT_HDR_F_DEFAULT      DBGF_TRACER_EVT_HDR_F_R0
+#else
+# define DBGF_TRACER_EVT_HDR_F_DEFAULT      (0)
+#endif
+
+
+/**
+ * Tracer instance data, shared structure.
+ */
+typedef struct DBGFTRACERSHARED
+{
+    /** The global event ID counter, monotonically increasing.
+     * Accessed by all threads causing a trace event. */
+    volatile uint64_t                       idEvt;
+    /** The SUP event semaphore for poking the flush thread. */
+    SUPSEMEVENT                             hSupSemEvtFlush;
+    /** Ring buffer size. */
+    size_t                                  cbRingBuf;
+    /** Flag whether there are events in the ring buffer to get processed. */
+    volatile bool                           fEvtsWaiting;
+    /** Flag whether the flush thread is actively running or was kicked. */
+    volatile bool                           fFlushThrdActive;
+    /** Padding to a 64byte alignment. */
+    uint8_t                                 abAlignment0[32];
+} DBGFTRACERSHARED;
+/** Pointer to the shared tarcer instance data. */
+typedef DBGFTRACERSHARED *PDBGFTRACERSHARED;
+
+AssertCompileSizeAlignment(DBGFTRACERSHARED, 64);
+
+
+/**
+ * Tracer instance data, ring-3
+ */
+typedef struct DBGFTRACERINSR3
+{
+    /** Pointer to the next instance.
+     * (Head is pointed to by PDM::pTracerInstances.) */
+    R3PTRTYPE(struct DBGFTRACERINSR3 *)     pNextR3;
+    /** R3 pointer to the VM this instance was created for. */
+    PVMR3                                   pVMR3;
+    /** Tracer instance number. */
+    uint32_t                                idTracer;
+    /** Flag whether the tracer has the R0 part enabled. */
+    bool                                    fR0Enabled;
+    /** Flag whether the tracer flush thread should shut down. */
+    volatile bool                           fShutdown;
+    /** Padding. */
+    bool                                    afPad0[6];
+    /** Next event source ID to return for a source registration. */
+    volatile DBGFTRACEREVTSRC               hEvtSrcNext;
+    /** Pointer to the shared tracer instance data. */
+    R3PTRTYPE(PDBGFTRACERSHARED)            pSharedR3;
+    /** The I/O thread writing the log from the shared event ringbuffer. */
+    RTTHREAD                                hThrdFlush;
+    /** Pointer to the start of the ring buffer. */
+    R3PTRTYPE(uint8_t *)                    pbRingBufR3;
+    /** The last processed event ID. */
+    uint64_t                                idEvtLast;
+    /** The trace log writer handle. */
+    RTTRACELOGWR                            hTraceLog;
+} DBGFTRACERINSR3;
+/** Pointer to a tarcer instance - Ring-3 Ptr. */
+typedef R3PTRTYPE(DBGFTRACERINSR3 *) PDBGFTRACERINSR3;
+
+
+/**
+ * Private tracer instance data, ring-0
+ */
+typedef struct DBGFTRACERINSR0
+{
+    /** Pointer to the VM this instance was created for. */
+    R0PTRTYPE(PGVM)                         pGVM;
+    /** The tracer instance memory. */
+    RTR0MEMOBJ                              hMemObj;
+    /** The ring-3 mapping object. */
+    RTR0MEMOBJ                              hMapObj;
+    /** Pointer to the shared tracer instance data. */
+    R0PTRTYPE(PDBGFTRACERSHARED)            pSharedR0;
+    /** Size of the ring buffer in bytes, kept here so R3 can not manipulate the ring buffer
+     * size afterwards to trick R0 into doing something harmful. */
+    size_t                                  cbRingBuf;
+    /** Pointer to the start of the ring buffer. */
+    R0PTRTYPE(uint8_t *)                    pbRingBufR0;
+} DBGFTRACERINSR0;
+/** Pointer to a VM - Ring-0 Ptr. */
+typedef R0PTRTYPE(DBGFTRACERINSR0 *) PDBGFTRACERINSR0;
+
+
+/**
+ * Private device instance data, raw-mode
+ */
+typedef struct DBGFTRACERINSRC
+{
+    /** Pointer to the VM this instance was created for. */
+    RGPTRTYPE(PVM)                          pVMRC;
+} DBGFTRACERINSRC;
 
 
@@ -482 +884 @@
 
 /**
+ * DBGF data kept in the ring-0 GVM.
+ */
+typedef struct DBGFR0PERVM
+{
+    /** Pointer to the tracer instance if enabled. */
+    R0PTRTYPE(struct DBGFTRACERINSR0 *) pTracerR0;
+} DBGFR0PERVM;
+
+/**
  * The DBGF data kept in the UVM.
  */
@@ -529 +940 @@
     /** List of registered info handlers. */
     R3PTRTYPE(PDBGFINFO)        pInfoFirst;
+
+    /** The configured tracer. */
+    PDBGFTRACERINSR3            pTracerR3;
 
     /** The type database lock. */
@@ -577 +991 @@
 void dbgfR3PlugInTerm(PUVM pUVM);
 int  dbgfR3BugCheckInit(PVM pVM);
+DECLHIDDEN(int) dbgfR3TracerInit(PVM pVM);
+DECLHIDDEN(void) dbgfR3TracerTerm(PVM pVM);
 
 /**