starry-kernel 0.6.1

A Linux-compatible OS kernel built on ArceOS unikernel
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
508
509
510
511
512
513
514
515
516
517
518
519
520
521
522
523
524
525
526
527
528
529
530
531
532
533
534
535
536
537
538
539
540
541
542
543
544
545
546
547
548
549
550
551
552
553
554
555
556
557
558
559
560
561
562
563
564
565
566
567
568
569
570
571
572
573
574
575
576
577
578
579
580
581
582
583
584
585
586
587
588
589
590
591
592
593
594
595
596
597
598
599
600
601
602
603
604
605
606
607
608
609
610
611
612
613
614
615
616
617
618
619
620
621
622
623
624
625
626
627
628
629
630
631
632
633
634
635
636
637
638
639

//! Kernel probe (kprobe) subsystem for StarryOS.
//!
//! This module provides dynamic tracing support by allowing breakpoint
//! insertion at kernel function entry/return points. It integrates the
//! [`kprobe`] crate with StarryOS kernel infrastructure.
//!
//! # Architecture Support
//!
//! All four supported architectures are enabled: x86_64, riscv64, aarch64,
//! and loongarch64. Each architecture provides TrapFrame↔PtRegs register
//! conversion to bridge the kernel's trap frame format with the kprobe
//! crate's portable `PtRegs` type.
//!
//! # Key Components
//!
//! - [`KernelKprobeOps`]: Platform-specific auxiliary operations for the kprobe crate
//! - [`handle_breakpoint`]: Entry point for breakpoint exceptions (INT3/EBREAK/BRK)
//! - [`handle_debug`]: Entry point for debug exceptions (x86_64 single-step only)

use alloc::{sync::Arc, vec::Vec};

use ax_kspin::{RawSpinNoIrq, SpinNoIrq};
use ax_memory_addr::{MemoryAddr, PAGE_SIZE_4K, VirtAddr, VirtAddrRange};
use ax_runtime::hal::paging::{MappingFlags, PageSize};
use kprobe::{
    KprobeAuxiliaryOps, KretprobeBuilder, ProbeBuilder, ProbePointList,
    register_kprobe as kprobe_crate_register_kprobe,
    register_kretprobe as kprobe_crate_register_kretprobe, retprobe::RetprobeInstance,
    unregister_kprobe as kprobe_crate_unregister_kprobe,
    unregister_kretprobe as kprobe_crate_unregister_kretprobe,
};

use crate::task::AsThread;

/// Raw mutex used as the `L` type parameter for the `kprobe` crate's
/// `ProbeManager` / `Kprobe` / `Kretprobe` (the perf subsystem refers to the
/// concrete probe types parameterized on it — see [`KernelKprobe`] /
/// [`KernelKretprobe`]).
///
/// Backed by [`ax_kspin::RawSpinNoIrq`], which disables kernel preemption and
/// local IRQs across the critical section (`NoPreemptIrqSave` semantics, the
/// same as the rest of the kernel's spin locks). This matters because the lock
/// is taken on trap / kprobe-callback paths: a plain atomic spin lock that left
/// preemption and IRQs enabled could be re-entered on the same CPU and would
/// then deadlock spinning on a lock it already holds.
pub type KernelRawMutex = RawSpinNoIrq;

#[derive(Debug)]
pub struct KernelKprobeOps;

impl KprobeAuxiliaryOps for KernelKprobeOps {
    fn copy_memory(src: *const u8, dst: *mut u8, len: usize, user_pid: Option<i32>) {
        if let Some(pid) = user_pid {
            // Uprobe arm/disarm reads the target process' original text bytes
            // while the per-process kprobe manager spin-lock is held (IRQs
            // disabled), so the faultable user-access path (`vm_read_slice`,
            // which asserts IRQs enabled) cannot be used. Read through the
            // *kernel* direct-map alias of the target page's physical frame
            // instead — the same aliasing `set_writeable_for_address` uses to
            // write. The text page is already resident (the loader executes the
            // probed function before arming).
            let task = crate::task::get_task(pid as _).expect("Failed to get task for uprobe");
            let aspace = task.as_thread().proc_data.aspace();
            let mm = aspace.lock();
            let pt = mm.page_table();
            let mut copied = 0;
            while copied < len {
                let vaddr = VirtAddr::from(src as usize + copied);
                let Ok((paddr, ..)) = pt.query(vaddr) else {
                    warn!(
                        "kprobe copy_memory: user addr {:#x} not mapped",
                        vaddr.as_usize()
                    );
                    return;
                };
                let page_off = vaddr.as_usize() & (PAGE_SIZE_4K - 1);
                let chunk = core::cmp::min(len - copied, PAGE_SIZE_4K - page_off);
                let kvaddr = ax_runtime::hal::mem::phys_to_virt(paddr);
                unsafe {
                    core::ptr::copy_nonoverlapping(kvaddr.as_ptr(), dst.add(copied), chunk);
                }
                copied += chunk;
            }
        } else {
            unsafe {
                core::ptr::copy_nonoverlapping(src, dst, len);
            }
        }
    }

    fn set_writeable_for_address<F: FnOnce(*mut u8)>(
        address: usize,
        len: usize,
        user_pid: Option<i32>,
        action: F,
    ) {
        if let Some(pid) = user_pid {
            // User-space probe (uprobe): patch the target process' text by
            // writing through the *kernel* direct-map alias of the page's
            // physical frame. The user PTE keeps its read-only/exec flags
            // untouched (no per-fire `protect` dance needed — uprobe single-step
            // is out-of-line, see `alloc_user_exec_memory`). This runs at
            // arm/disarm time (syscall context), so taking the sleeping aspace
            // lock is fine. The instruction patch (≤ a few bytes) stays within
            // the resolved page.
            let task = crate::task::get_task(pid as _).expect("uprobe: target task gone");
            let aspace = task.as_thread().proc_data.aspace();
            let mm = aspace.lock();
            let vaddr = VirtAddr::from(address);
            let (paddr, ..) = mm
                .page_table()
                .query(vaddr)
                .expect("uprobe: target address not mapped");
            let kvaddr = ax_runtime::hal::mem::phys_to_virt(paddr);
            action(kvaddr.as_mut_ptr());
            crate::mm::flush_tlb_range(vaddr.align_down_4k(), PAGE_SIZE_4K);
            ax_runtime::hal::cpu::asm::flush_icache_all();
            return;
        }
        let addr = VirtAddr::from(address);
        crate::mm::patch_kernel_text(addr, len, action)
            .expect("kprobe: set_writeable: patch kernel text failed");
    }

    fn alloc_kernel_exec_memory() -> *mut u8 {
        let mut guard = ax_mm::kernel_aspace().lock();
        let range = VirtAddrRange::new(guard.base(), guard.end());
        let vaddr = guard
            .find_free_area(guard.base(), PAGE_SIZE_4K, range)
            .expect("kprobe: no free virtual address for exec memory");
        guard
            .map_alloc(
                vaddr,
                PAGE_SIZE_4K,
                MappingFlags::READ | MappingFlags::WRITE | MappingFlags::EXECUTE,
                true,
            )
            .expect("kprobe: map_alloc for exec memory failed");
        vaddr.as_mut_ptr()
    }

    fn free_kernel_exec_memory(ptr: *mut u8) {
        let vaddr = VirtAddr::from(ptr as usize);
        let mut guard = ax_mm::kernel_aspace().lock();
        guard
            .unmap(vaddr, PAGE_SIZE_4K)
            .expect("kprobe: unmap exec memory failed");
    }

    fn alloc_user_exec_memory<F: FnOnce(*mut u8)>(pid: Option<i32>, action: F) -> *mut u8 {
        // Allocate one anonymous, user-executable page in the target process for
        // out-of-line single-stepping (the displaced original instruction is
        // copied here so the planted `int3` can stay armed). `action` writes
        // that instruction through the kernel alias of the freshly-mapped frame.
        let pid = pid.expect("uprobe: alloc_user_exec_memory needs a pid");
        let task = crate::task::get_task(pid as _).expect("uprobe: target task gone");
        let aspace = task.as_thread().proc_data.aspace();
        let mut mm = aspace.lock();
        let range = VirtAddrRange::new(mm.base(), mm.end());
        let vaddr = mm
            .find_free_area(mm.base(), PAGE_SIZE_4K, range, PAGE_SIZE_4K)
            .expect("uprobe: no free user va for exec memory");
        let backend = crate::mm::Backend::new_alloc(vaddr, PageSize::Size4K, "uprobe-ols");
        mm.map(
            vaddr,
            PAGE_SIZE_4K,
            MappingFlags::READ | MappingFlags::EXECUTE | MappingFlags::USER,
            true,
            backend,
        )
        .expect("uprobe: map user exec memory failed");
        let (paddr, ..) = mm
            .page_table()
            .query(vaddr)
            .expect("uprobe: exec page not mapped after populate");
        let kvaddr = ax_runtime::hal::mem::phys_to_virt(paddr);
        action(kvaddr.as_mut_ptr());
        crate::mm::flush_tlb_range(vaddr, PAGE_SIZE_4K);
        ax_runtime::hal::cpu::asm::flush_icache_all();
        vaddr.as_mut_ptr()
    }

    fn free_user_exec_memory(pid: Option<i32>, ptr: *mut u8) {
        let pid = pid.expect("uprobe: free_user_exec_memory needs a pid");
        let task = crate::task::get_task(pid as _).expect("uprobe: target task gone");
        let aspace = task.as_thread().proc_data.aspace();
        let mut mm = aspace.lock();
        mm.unmap(VirtAddr::from(ptr as usize), PAGE_SIZE_4K)
            .expect("uprobe: unmap user exec memory failed");
    }

    fn insert_kretprobe_instance_to_task(instance: RetprobeInstance) {
        let task = ax_task::current_may_uninit();
        if let Some(task) = task {
            let thread = task.try_as_thread();
            if let Some(thread) = thread {
                let mut kretprobe_instances = thread.kretprobe_stack.lock();
                kretprobe_instances.push(instance);
                return;
            }
        }
        // If the current task is None, we can store it in a static variable
        let mut instances = INSTANCE.lock();
        instances.push(instance);
    }

    fn pop_kretprobe_instance_from_task() -> RetprobeInstance {
        let task = ax_task::current_may_uninit();
        if let Some(task) = task {
            let thread = task.try_as_thread();
            if let Some(thread) = thread {
                let mut kretprobe_instances = thread.kretprobe_stack.lock();
                return kretprobe_instances
                    .pop()
                    .expect("kretprobe instance stack underflow");
            }
        }
        // If the current task is None, we can pop it from the static variable
        let mut instances = INSTANCE.lock();
        instances.pop().unwrap()
    }
}

pub(crate) type KprobeManager = kprobe::ProbeManager<KernelRawMutex, KernelKprobeOps>;
pub(crate) type KprobePointList = ProbePointList<KernelKprobeOps>;

/// Concrete `kprobe::Kprobe` parameterized on the kernel's `RawMutex` and
/// auxiliary ops, named to match what the perf module expects.
pub type KernelKprobe = kprobe::Kprobe<KernelRawMutex, KernelKprobeOps>;
/// Concrete `kprobe::Kretprobe`.
pub type KernelKretprobe = kprobe::Kretprobe<KernelRawMutex, KernelKprobeOps>;
/// The `KprobeAuxiliaryOps` impl, aliased under the name the perf module uses.
pub type KprobeAuxiliary = KernelKprobeOps;

static KPROBE_MANAGER: KprobeManager = KprobeManager::new();
static KPROBE_POINT_LIST: SpinNoIrq<KprobePointList> = SpinNoIrq::new(KprobePointList::new());
static INSTANCE: SpinNoIrq<Vec<RetprobeInstance>> = SpinNoIrq::new(Vec::new());

fn with_manager<F, R>(f: F) -> R
where
    F: FnOnce(&KprobeManager) -> R,
{
    f(&KPROBE_MANAGER)
}

fn with_manager_and_list<F, R>(f: F) -> R
where
    F: FnOnce(&KprobeManager, &mut KprobePointList) -> R,
{
    let mut list = KPROBE_POINT_LIST.try_lock().unwrap();
    f(&KPROBE_MANAGER, &mut list)
}

/// Register a kprobe into the global manager, returning the live handle.
pub fn register_kprobe(builder: ProbeBuilder<KernelKprobeOps>) -> Arc<KernelKprobe> {
    with_manager_and_list(|mgr, list| {
        kprobe_crate_register_kprobe(mgr, list, builder).expect("Failed to register kprobe")
    })
}

/// Unregister a previously registered kprobe.
pub fn unregister_kprobe(kprobe: Arc<KernelKprobe>) {
    with_manager_and_list(|mgr, list| kprobe_crate_unregister_kprobe(mgr, list, kprobe));
}

/// Register a kretprobe and return its live handle.
pub fn register_kretprobe(builder: KretprobeBuilder<KernelRawMutex>) -> Arc<KernelKretprobe> {
    with_manager_and_list(|mgr, list| {
        kprobe_crate_register_kretprobe(mgr, list, builder).expect("Failed to register kretprobe")
    })
}

/// Unregister a previously registered kretprobe.
pub fn unregister_kretprobe(kretprobe: Arc<KernelKretprobe>) {
    with_manager_and_list(|mgr, list| kprobe_crate_unregister_kretprobe(mgr, list, kretprobe));
}

pub(crate) fn trapframe_to_ptregs(tf: &ax_runtime::hal::cpu::TrapFrame) -> kprobe::PtRegs {
    #[cfg(target_arch = "x86_64")]
    {
        kprobe::PtRegs {
            r15: tf.r15 as usize,
            r14: tf.r14 as usize,
            r13: tf.r13 as usize,
            r12: tf.r12 as usize,
            rbp: tf.rbp as usize,
            rbx: tf.rbx as usize,
            r11: tf.r11 as usize,
            r10: tf.r10 as usize,
            r9: tf.r9 as usize,
            r8: tf.r8 as usize,
            rax: tf.rax as usize,
            rcx: tf.rcx as usize,
            rdx: tf.rdx as usize,
            rsi: tf.rsi as usize,
            rdi: tf.rdi as usize,
            orig_rax: tf.vector as usize,
            rip: tf.rip as usize,
            cs: tf.cs as usize,
            rflags: tf.rflags as usize,
            rsp: tf.rsp as usize,
            ss: tf.ss as usize,
        }
    }
    #[cfg(target_arch = "riscv64")]
    {
        kprobe::PtRegs {
            epc: tf.sepc,
            ra: tf.regs.ra,
            sp: tf.regs.sp,
            gp: tf.regs.gp,
            tp: tf.regs.tp,
            t0: tf.regs.t0,
            t1: tf.regs.t1,
            t2: tf.regs.t2,
            s0: tf.regs.s0,
            s1: tf.regs.s1,
            a0: tf.regs.a0,
            a1: tf.regs.a1,
            a2: tf.regs.a2,
            a3: tf.regs.a3,
            a4: tf.regs.a4,
            a5: tf.regs.a5,
            a6: tf.regs.a6,
            a7: tf.regs.a7,
            s2: tf.regs.s2,
            s3: tf.regs.s3,
            s4: tf.regs.s4,
            s5: tf.regs.s5,
            s6: tf.regs.s6,
            s7: tf.regs.s7,
            s8: tf.regs.s8,
            s9: tf.regs.s9,
            s10: tf.regs.s10,
            s11: tf.regs.s11,
            t3: tf.regs.t3,
            t4: tf.regs.t4,
            t5: tf.regs.t5,
            t6: tf.regs.t6,
            status: tf.sstatus.bits(),
            badaddr: 0,
            cause: 0,
            orig_a0: tf.regs.a0,
        }
    }
    #[cfg(target_arch = "aarch64")]
    {
        kprobe::PtRegs {
            regs: tf.x,
            sp: 0, // aarch64 SP is not saved in TrapFrame
            pc: tf.elr,
            pstate: tf.spsr,
            orig_x0: tf.x[0],
            syscallno: -1,
            unused2: 0,
        }
    }
    #[cfg(target_arch = "loongarch64")]
    {
        kprobe::PtRegs {
            regs: [
                tf.regs.zero,
                tf.regs.ra,
                tf.regs.tp,
                tf.regs.sp,
                tf.regs.a0,
                tf.regs.a1,
                tf.regs.a2,
                tf.regs.a3,
                tf.regs.a4,
                tf.regs.a5,
                tf.regs.a6,
                tf.regs.a7,
                tf.regs.t0,
                tf.regs.t1,
                tf.regs.t2,
                tf.regs.t3,
                tf.regs.t4,
                tf.regs.t5,
                tf.regs.t6,
                tf.regs.t7,
                tf.regs.t8,
                tf.regs.u0,
                tf.regs.fp,
                tf.regs.s0,
                tf.regs.s1,
                tf.regs.s2,
                tf.regs.s3,
                tf.regs.s4,
                tf.regs.s5,
                tf.regs.s6,
                tf.regs.s7,
                tf.regs.s8,
            ],
            orig_a0: 0,
            csr_era: tf.era,
            csr_badvaddr: 0,
            csr_crmd: 0,
            csr_prmd: tf.prmd,
            csr_euen: 0,
            csr_ecfg: 0,
            csr_estat: 0,
        }
    }
}

pub(crate) fn ptregs_write_back(pt: &kprobe::PtRegs, tf: &mut ax_runtime::hal::cpu::TrapFrame) {
    #[cfg(target_arch = "x86_64")]
    {
        tf.r15 = pt.r15 as u64;
        tf.r14 = pt.r14 as u64;
        tf.r13 = pt.r13 as u64;
        tf.r12 = pt.r12 as u64;
        tf.rbp = pt.rbp as u64;
        tf.rbx = pt.rbx as u64;
        tf.r11 = pt.r11 as u64;
        tf.r10 = pt.r10 as u64;
        tf.r9 = pt.r9 as u64;
        tf.r8 = pt.r8 as u64;
        tf.rax = pt.rax as u64;
        tf.rcx = pt.rcx as u64;
        tf.rdx = pt.rdx as u64;
        tf.rsi = pt.rsi as u64;
        tf.rdi = pt.rdi as u64;
        tf.rip = pt.rip as u64;
        tf.cs = pt.cs as u64;
        tf.vector = pt.orig_rax as u64;
        tf.rflags = pt.rflags as u64;
        tf.rsp = pt.rsp as u64;
        tf.ss = pt.ss as u64;
    }
    #[cfg(target_arch = "riscv64")]
    {
        tf.sepc = pt.epc;
        tf.regs.ra = pt.ra;
        tf.regs.sp = pt.sp;
        tf.regs.gp = pt.gp;
        tf.regs.tp = pt.tp;
        tf.regs.t0 = pt.t0;
        tf.regs.t1 = pt.t1;
        tf.regs.t2 = pt.t2;
        tf.regs.s0 = pt.s0;
        tf.regs.s1 = pt.s1;
        tf.regs.a0 = pt.a0;
        tf.regs.a1 = pt.a1;
        tf.regs.a2 = pt.a2;
        tf.regs.a3 = pt.a3;
        tf.regs.a4 = pt.a4;
        tf.regs.a5 = pt.a5;
        tf.regs.a6 = pt.a6;
        tf.regs.a7 = pt.a7;
        tf.regs.s2 = pt.s2;
        tf.regs.s3 = pt.s3;
        tf.regs.s4 = pt.s4;
        tf.regs.s5 = pt.s5;
        tf.regs.s6 = pt.s6;
        tf.regs.s7 = pt.s7;
        tf.regs.s8 = pt.s8;
        tf.regs.s9 = pt.s9;
        tf.regs.s10 = pt.s10;
        tf.regs.s11 = pt.s11;
        tf.regs.t3 = pt.t3;
        tf.regs.t4 = pt.t4;
        tf.regs.t5 = pt.t5;
        tf.regs.t6 = pt.t6;
    }
    #[cfg(target_arch = "aarch64")]
    {
        tf.x = pt.regs;
        tf.elr = pt.pc;
        tf.spsr = pt.pstate;
    }
    #[cfg(target_arch = "loongarch64")]
    {
        tf.regs.zero = pt.regs[0];
        tf.regs.ra = pt.regs[1];
        tf.regs.tp = pt.regs[2];
        tf.regs.sp = pt.regs[3];
        tf.regs.a0 = pt.regs[4];
        tf.regs.a1 = pt.regs[5];
        tf.regs.a2 = pt.regs[6];
        tf.regs.a3 = pt.regs[7];
        tf.regs.a4 = pt.regs[8];
        tf.regs.a5 = pt.regs[9];
        tf.regs.a6 = pt.regs[10];
        tf.regs.a7 = pt.regs[11];
        tf.regs.t0 = pt.regs[12];
        tf.regs.t1 = pt.regs[13];
        tf.regs.t2 = pt.regs[14];
        tf.regs.t3 = pt.regs[15];
        tf.regs.t4 = pt.regs[16];
        tf.regs.t5 = pt.regs[17];
        tf.regs.t6 = pt.regs[18];
        tf.regs.t7 = pt.regs[19];
        tf.regs.t8 = pt.regs[20];
        tf.regs.u0 = pt.regs[21];
        tf.regs.fp = pt.regs[22];
        tf.regs.s0 = pt.regs[23];
        tf.regs.s1 = pt.regs[24];
        tf.regs.s2 = pt.regs[25];
        tf.regs.s3 = pt.regs[26];
        tf.regs.s4 = pt.regs[27];
        tf.regs.s5 = pt.regs[28];
        tf.regs.s6 = pt.regs[29];
        tf.regs.s7 = pt.regs[30];
        tf.regs.s8 = pt.regs[31];
        tf.era = pt.csr_era;
        tf.prmd = pt.csr_prmd;
    }
}

pub fn handle_breakpoint(tf: &mut ax_runtime::hal::cpu::TrapFrame) -> bool {
    let mut pt_regs = trapframe_to_ptregs(tf);
    let handled = with_manager(|manager| kprobe::kprobe_handler_from_break(manager, &mut pt_regs));
    if handled.is_some() {
        ptregs_write_back(&pt_regs, tf);
        return true;
    }
    false
}

#[cfg(target_arch = "x86_64")]
pub fn handle_debug(tf: &mut ax_runtime::hal::cpu::TrapFrame) -> bool {
    let mut pt_regs = trapframe_to_ptregs(tf);
    let handled = with_manager(|manager| kprobe::kprobe_handler_from_debug(manager, &mut pt_regs));
    if handled.is_some() {
        ptregs_write_back(&pt_regs, tf);
        return true;
    }
    false
}

#[cfg(feature = "kprobe_test")]
mod kprobe_test {
    use alloc::string::ToString;

    use kprobe::{KretprobeBuilder, ProbeBuilder, ProbeData, PtRegs};

    use crate::kprobe::{register_kprobe, unregister_kprobe};
    #[inline(never)]
    #[unsafe(no_mangle)]
    fn detect_func(x: usize, y: usize, z: Option<usize>) -> Option<usize> {
        let hart = 0;
        ax_println!("detect_func: hart_id: {}, x: {}, y:{}", hart, x, y);
        z.map(|z| x + y + z)
    }

    fn pre_handler(_data: &dyn ProbeData, pt_regs: &mut PtRegs) {
        ax_println!(
            "[kprobe] pre_handler: arg0: {}, arg1: {}, arg2: {}",
            pt_regs.args()[0],
            pt_regs.args()[1],
            pt_regs.args()[2]
        );
    }

    fn post_handler(_data: &dyn ProbeData, pt_regs: &mut PtRegs) {
        ax_println!(
            "[kprobe] post_handler: arg0: {}, arg1: {}, arg2: {}",
            pt_regs.args()[0],
            pt_regs.args()[1],
            pt_regs.args()[2]
        );
    }

    fn kret_post_handler(_data: &dyn ProbeData, pt_regs: &mut PtRegs) {
        ax_println!(
            "[kretprobe] post_handler: ret_value(a0): {}, ret_value(a1): {}",
            pt_regs.first_ret_value(),
            pt_regs.second_ret_value()
        );
    }

    pub fn kprobe_test() {
        ax_println!(
            "[kprobe] kprobe test for [detect_func]: {:#x}",
            detect_func as *const () as usize
        );
        let kprobe_builder = ProbeBuilder::new()
            .with_symbol_addr(detect_func as *const () as usize)
            .with_offset(0)
            .with_enable(true)
            .with_pre_handler(pre_handler)
            .with_post_handler(post_handler);

        let kprobe = register_kprobe(kprobe_builder);
        let new_pre_handler = |_data: &dyn ProbeData, pt_regs: &mut PtRegs| {
            ax_println!(
                "[kprobe] new_pre_handler: arg0: {}, arg1: {}, arg2: {}",
                pt_regs.args()[0],
                pt_regs.args()[1],
                pt_regs.args()[2]
            );
        };

        let builder2 = ProbeBuilder::new()
            .with_symbol("kprobe::detect_func".to_string())
            .with_symbol_addr(detect_func as *const () as usize)
            .with_offset(0)
            .with_enable(true)
            .with_pre_handler(new_pre_handler)
            .with_post_handler(post_handler);

        let kprobe2 = register_kprobe(builder2);
        ax_println!(
            "[kprobe] install 2 kprobes at [detect_func]: {:#x}",
            detect_func as *const () as usize
        );

        detect_func(1, 2, Some(3));

        unregister_kprobe(kprobe);
        unregister_kprobe(kprobe2);
        ax_println!(
            "[kprobe] uninstall 2 kprobes at [detect_func]: {:#x}",
            detect_func as *const () as usize
        );

        let kretprobe_builder = KretprobeBuilder::new(10)
            .with_symbol_addr(detect_func as *const () as usize)
            .with_enable(true)
            .with_ret_handler(kret_post_handler);

        let kretprobe = crate::kprobe::register_kretprobe(kretprobe_builder);
        ax_println!(
            "[kretprobe] install kretprobe at [detect_func]: {:#x}",
            detect_func as *const () as usize
        );
        detect_func(0xff, 0, Some(1));

        crate::kprobe::unregister_kretprobe(kretprobe);

        detect_func(3, 4, None);
        ax_println!("[kprobe] [kretprobe] test passed");
    }
}

#[cfg(feature = "kprobe_test")]
pub use kprobe_test::kprobe_test;