You can insert tracing code into the functions from the “include\exec\softmmu_template.h” file: like helper_le_ld_name, helper_le_st_name and so on.
These functions are used for CPU emulation.
However, you may also need to trace DMA accesses, that are executed through other functions and files.
From: address@hidden [mailto:address@hidden On Behalf Of Pete Stevenson
Sent: Friday, April 18, 2014 3:31 AM
Subject: [Qemu-devel] memory access trace from qemu
Hi All -
I would like to generate a trace of all memory accesses (i.e. read or write, physical address, and data content/payload). The end goal is to use this trace to drive a separate memory system simulator. Ideally, the trace would also provide core-id and a timestamp (but I am not as optimistic that qemu will give me these).
I have noted that several previous threads address this topic, so perhaps the question becomes can I get in contact with those who have successfully done this before? I'd like to do as little as possible here :) to get what I want, and I'm hoping that either this has been rolled into the new qemu release or that a previously existing patch does most of what I want (i.e. which patch?).
I would be happy to hack the qemu source code if there is only one or two places where I need to do invasive surgery.