亚洲av成人无遮挡网站在线观看,少妇性bbb搡bbb爽爽爽,亚洲av日韩精品久久久久久,兔费看少妇性l交大片免费,无码少妇一区二区三区

  免費注冊 查看新帖 |

Chinaunix

  平臺 論壇 博客 文庫
最近訪問板塊 發(fā)新帖
查看: 5738 | 回復(fù): 0
打印 上一主題 下一主題

FreeBSD7.0遠(yuǎn)程調(diào)試內(nèi)核時,回溯匯編棧幀出現(xiàn)異常的一種規(guī)避方法 [復(fù)制鏈接]

論壇徽章:
0
跳轉(zhuǎn)到指定樓層
1 [收藏(0)] [報告]
發(fā)表于 2008-03-10 16:21 |只看該作者 |倒序瀏覽
雙機(jī)遠(yuǎn)程串口調(diào)試FreeBSD7.0內(nèi)核,建立調(diào)試連接之后,在vm_fault()函數(shù)處打斷點,讓目標(biāo)機(jī)
繼續(xù)運行并遇到vm_fault()斷點時,若用backtrace命令查看調(diào)用棧,會在進(jìn)入?yún)R編語言棧幀之后
出現(xiàn)segmentation fault。

  1. #
  2. # kgdb -r /dev/cuad0 /sys/i386/compile/DEBUGKERNEL/kernel.debug
  3. [GDB will not be able to debug user-mode threads: /usr/lib/libthread_db.so: Undefined symbol "ps_pglobal_lookup"]
  4. GNU gdb 6.1.1 [FreeBSD]
  5. Copyright 2004 Free Software Foundation, Inc.
  6. GDB is free software, covered by the GNU General Public License, and you are
  7. welcome to change it and/or distribute copies of it under certain conditions.
  8. Type "show copying" to see the conditions.
  9. There is absolutely no warranty for GDB.  Type "show warranty" for details.
  10. This GDB was configured as "i386-marcel-freebsd".
  11. Switching to remote protocol
  12. kdb_enter (msg=0xc0aed472 "sysctl debug.kdb.enter") at ../../../kern/subr_kdb.c:310
  13. 310     }

  15. Unread portion of the kernel message buffer:
  16. KDB: enter: sysctl debug.kdb.enter

  18. #0  kdb_enter (msg=0xc0aed472 "sysctl debug.kdb.enter") at ../../../kern/subr_kdb.c:310
  19. 310     }
  20. (kgdb) b vm_fault
  21. Breakpoint 1 at 0xc097a066: file ../../../vm/vm_fault.c, line 222.
  22. (kgdb) c
  23. Continuing.
  24. [New Thread 100068]
  25. [Switching to Thread 100068]

  27. Breakpoint 1, vm_fault (map=0xc211cae0, vaddr=673189888, fault_type=3 '\003', fault_flags=1) at ../../../vm/vm_fault.c:222
  28. 222             PCPU_INC(cnt.v_vm_faults);
  29. (kgdb) bt
  30. #0  vm_fault (map=0xc211cae0, vaddr=673189888, fault_type=3 '\003', fault_flags=1) at ../../../vm/vm_fault.c:222
  31. #1  0xc097c12a in vm_fault_wire (map=0xc211cae0, start=673189888, end=673193984, user_wire=0, fictitious=0)
  32.     at ../../../vm/vm_fault.c:1025
  33. #2  0xc0981576 in vm_map_wire (map=0xc211cae0, start=673189888, end=673193984, flags=0) at ../../../vm/vm_map.c:2068
  34. #3  0xc097d1d5 in vslock (addr=0x28201040, len=4) at ../../../vm/vm_glue.c:226
  35. #4  0xc076877e in sysctl_wire_old_buffer (req=0xcd0c9ba4, len=4) at ../../../kern/kern_sysctl.c:1179
  36. #5  0xc0785c8f in kdb_sysctl_enter (oidp=0xc0b96460, arg1=0x0, arg2=0, req=0xcd0c9ba4) at ../../../kern/subr_kdb.c:157
  37. #6  0xc0768277 in sysctl_root (oidp=Variable "oidp" is not available.
  38. ) at ../../../kern/kern_sysctl.c:1306
  39. #7  0xc07683c4 in userland_sysctl (td=0xc251f210, name=0xcd0c9c14, namelen=3, old=0x28201040, oldlenp=0xbfbfe430, inkernel=0,
  40.     new=0x0, newlen=0, retval=0xcd0c9c10, flags=0) at ../../../kern/kern_sysctl.c:1401
  41. #8  0xc076915e in __sysctl (td=0xc251f210, uap=0xcd0c9cfc) at ../../../kern/kern_sysctl.c:1336
  42. #9  0xc0a5aa85 in syscall (frame=0xcd0c9d38) at ../../../i386/i386/trap.c:1035
  43. #10 0xc0a406b0 in Xint0x80_syscall () at ../../../i386/i386/exception.s:196
  44. Segmentation fault (core dumped)
  45. #
復(fù)制代碼

kgdb至出異常時的調(diào)用棧為:

  1. Program received signal SIGSEGV, Segmentation fault.
  2. 0x2829ec87 in kvm_nlist () from /lib/libkvm.so.4
  3. (gdb) bt
  4. #0  0x2829ec87 in kvm_nlist () from /lib/libkvm.so.4
  5. #1  0x0804d548 in kgdb_lookup (sym=0x81e70a4 "calltrap") at kthr.c:62
  6. #2  0x0804e8a6 in kgdb_trgt_trapframe_prev_register (next_frame=0x285808ec, this_cache=0x28580d3c, regnum=8,
  7.     optimizedp=0xbfbfe184, lvalp=0xbfbfe170, addrp=0xbfbfe178, realnump=0xbfbfe174, valuep=0xbfbfe1b0) at trgt_i386.c:303
  8. #3  0x0811668e in frame_register_unwind (frame=0x28580d2c, regnum=8, optimizedp=0xbfbfe184, lvalp=0xbfbfe170, addrp=0xbfbfe178,
  9.     realnump=0xbfbfe174, bufferp=0xbfbfe1b0) at /usr/src/gnu/usr.bin/gdb/libgdb/../../../../contrib/gdb/gdb/frame.c:547
  10. #4  0x08116a8b in frame_unwind_register (frame=0x28580d2c, regnum=8, buf=0xbfbfe1b0)
  11.     at /usr/src/gnu/usr.bin/gdb/libgdb/../../../../contrib/gdb/gdb/frame.c:626
  12. #5  0x0817f40b in i386_unwind_pc (gdbarch=0x285a0008, next_frame=0x28580d2c)
  13.     at /usr/src/gnu/usr.bin/gdb/libgdb/../../../../contrib/gdb/gdb/i386-tdep.c:754
  14. #6  0x081124b8 in gdbarch_unwind_pc (gdbarch=0x285a0008, next_frame=0x28580d2c)
  15.     at /usr/src/gnu/usr.bin/gdb/libgdb/../../../../contrib/gdb/gdb/gdbarch.c:4595
  16. #7  0x0811627a in frame_pc_unwind (this_frame=0x28580d2c)
  17.     at /usr/src/gnu/usr.bin/gdb/libgdb/../../../../contrib/gdb/gdb/frame.c:399
  18. #8  0x0811a1f1 in dummy_frame_sniffer (next_frame=0x28580d2c)
  19.     at /usr/src/gnu/usr.bin/gdb/libgdb/../../../../contrib/gdb/gdb/dummy-frame.c:413
  20. #9  0x081195a6 in frame_unwind_find_by_frame (next_frame=0x28580d2c) at frame-unwind-kluge.c:90
  21. #10 0x08118d88 in get_frame_type (frame=0x28580da0) at /usr/src/gnu/usr.bin/gdb/libgdb/../../../../contrib/gdb/gdb/frame.c:2127
  22. #11 0x0809e076 in print_frame_info (fi=0x28580da0, level=4, source=0, args=1)
  23.     at /usr/src/gnu/usr.bin/gdb/libgdb/../../../../contrib/gdb/gdb/stack.c:427
  24. #12 0x0809f83b in backtrace_command_1 (count_exp=0x0, show_locals=0, from_tty=1)
  25.     at /usr/src/gnu/usr.bin/gdb/libgdb/../../../../contrib/gdb/gdb/stack.c:1223
  26. #13 0x0809fa96 in backtrace_command (arg=0x0, from_tty=1)
  27.     at /usr/src/gnu/usr.bin/gdb/libgdb/../../../../contrib/gdb/gdb/stack.c:1289
  28. #14 0x0817aa2b in do_cfunc (c=0x28567c10, args=0x0, from_tty=1)
  29.     at /usr/src/gnu/usr.bin/gdb/libgdb/../../../../contrib/gdb/gdb/cli/cli-decode.c:57
  30. #15 0x0817d0a1 in cmd_func (cmd=0x28567c10, args=0x0, from_tty=1)
  31.     at /usr/src/gnu/usr.bin/gdb/libgdb/../../../../contrib/gdb/gdb/cli/cli-decode.c:1541
  32. #16 0x0806cd8d in execute_command (p=0x28504082 "", from_tty=1)
  33.     at /usr/src/gnu/usr.bin/gdb/libgdb/../../../../contrib/gdb/gdb/top.c:743
  34. #17 0x0806cf86 in command_loop () at /usr/src/gnu/usr.bin/gdb/libgdb/../../../../contrib/gdb/gdb/top.c:822
  35. #18 0x0804cc2c in kgdb_interp_command_loop (data=0x0) at main.c:275
  36. #19 0x080f45b8 in current_interp_command_loop () at /usr/src/gnu/usr.bin/gdb/libgdb/../../../../contrib/gdb/gdb/interps.c:277
  37. #20 0x080e913b in captured_command_loop (data=0x0) at /usr/src/gnu/usr.bin/gdb/libgdb/../../../../contrib/gdb/gdb/main.c:97
  38. #21 0x0806c93c in do_catch_errors (uiout=0x28525800, data=0xbfbfe598)
  39.     at /usr/src/gnu/usr.bin/gdb/libgdb/../../../../contrib/gdb/gdb/top.c:523
  40. #22 0x0806c6e0 in catcher (func=0x806c920 <do_catch_errors>, func_uiout=0x28525800, func_args=0xbfbfe598, func_val=0xbfbfe5a4,
  41.     func_caught=0xbfbfe5a0, errstring=0x8213b70 "", gdberrmsg=0x0, mask=6)
  42.     at /usr/src/gnu/usr.bin/gdb/libgdb/../../../../contrib/gdb/gdb/top.c:430
  43. #23 0x0806c993 in catch_errors (func=0x80e9130 <captured_command_loop>, func_args=0x0, errstring=0x8213b70 "", mask=6)
  44.     at /usr/src/gnu/usr.bin/gdb/libgdb/../../../../contrib/gdb/gdb/top.c:535
  45. #24 0x080e9f27 in captured_main (data=0xbfbfe864) at /usr/src/gnu/usr.bin/gdb/libgdb/../../../../contrib/gdb/gdb/main.c:805
  46. #25 0x0806c93c in do_catch_errors (uiout=0x826d420, data=0xbfbfe7f8)
  47.     at /usr/src/gnu/usr.bin/gdb/libgdb/../../../../contrib/gdb/gdb/top.c:523
  48. #26 0x0806c6e0 in catcher (func=0x806c920 <do_catch_errors>, func_uiout=0x826d420, func_args=0xbfbfe7f8, func_val=0xbfbfe804,
  49.     func_caught=0xbfbfe800, errstring=0x8213b70 "", gdberrmsg=0x0, mask=6)
  50.     at /usr/src/gnu/usr.bin/gdb/libgdb/../../../../contrib/gdb/gdb/top.c:430
  51. #27 0x0806c993 in catch_errors (func=0x80e9180 <captured_main>, func_args=0xbfbfe864, errstring=0x8213b70 "", mask=6)
  52.     at /usr/src/gnu/usr.bin/gdb/libgdb/../../../../contrib/gdb/gdb/top.c:535
  53. #28 0x080e9fa4 in gdb_main (args=0xbfbfe864) at /usr/src/gnu/usr.bin/gdb/libgdb/../../../../contrib/gdb/gdb/main.c:814
  54. #29 0x0804d513 in main (argc=4, argv=0xbfbfed20) at main.c:495
復(fù)制代碼


從現(xiàn)象上看,故障原因是啟動kgdb的時候指定了-r /dev/cuad0參數(shù),kgdb因此不會去打開kvm文件操作符,
參見/usr/src/gnu/usr.bin/gdb/kgdb/main.c的main()函數(shù):

  1.         if (remote == NULL) {
  2.                 kvm = kvm_openfiles(kernel, vmcore, NULL,
  3.                     writecore ? O_RDWR : O_RDONLY, kvm_err);
  4.                 if (kvm == NULL)
  5.                         errx(1, kvm_err);
  6.                 atexit(kgdb_atexit);
  7.                 kgdb_thr_init();
  8.         }
復(fù)制代碼


因此,以這種方式啟動時,kvm指針為空。而在后面的棧幀回溯過程中,kgdb調(diào)用到了kgdb_lookup()函數(shù),
參見/usr/src/gnu/usr.bin/gdb/kgdb/kthr.c:

  1. uintptr_t
  2. kgdb_lookup(const char *sym)
  3. {
  4.         struct nlist nl[2];

  6.         nl[0].n_name = (char *)(uintptr_t)sym;
  7.         nl[1].n_name = NULL;
  8.         if (kvm_nlist(kvm, nl) != 0) {
  9.                 warnx("kvm_nlist(%s): %s", sym, kvm_geterr(kvm));
  10.                 return (0);
  11.         }
  12.         return (nl[0].n_value);
  13. }
復(fù)制代碼


由于kvm為空,導(dǎo)致在kvm_nlist()函數(shù)中出現(xiàn)segmentation fault。如果不想去深究gdb棧幀回溯算法的
問題,可以直接在kgdb_lookup()函數(shù)中加一個簡單的保護(hù)來規(guī)避這個問題:

  1. uintptr_t
  2. kgdb_lookup(const char *sym)
  3. {
  4.         struct nlist nl[2];

  6.         if (kvm == 0)
  7.                 return (0);

  9.         nl[0].n_name = (char *)(uintptr_t)sym;
  10.         nl[1].n_name = NULL;
  11.         if (kvm_nlist(kvm, nl) != 0) {
  12.                 warnx("kvm_nlist(%s): %s", sym, kvm_geterr(kvm));
  13.                 return (0);
  14.         }
  15.         return (nl[0].n_value);
  16. }
復(fù)制代碼


重新編譯kgdb(如果之前沒有在本地編譯過gdb代碼/usr/src/gnu/usr.bin中的gdb代碼,則需要在
/usr/src/gnu/usr.bin/gdb目錄下make,并根據(jù)錯誤提示到上一級目錄中對應(yīng)的庫目錄下make。)
這樣修改之后,雖然在原故障位置之后的棧幀信息多少有些莫名其妙,但kgdb不會再因segmentation fault
而退出了,我們可以繼續(xù)跟蹤感興趣的內(nèi)核代碼:

  1. #
  2. # /usr/src/gnu/usr.bin/gdb/kgdb/kgdb -r /dev/cuad0 /sys/i386/compile/DEBUGKERNEL/kernel.debug
  3. [GDB will not be able to debug user-mode threads: /usr/lib/libthread_db.so: Undefined symbol "ps_pglobal_lookup"]
  4. GNU gdb 6.1.1 [FreeBSD]
  5. Copyright 2004 Free Software Foundation, Inc.
  6. GDB is free software, covered by the GNU General Public License, and you are
  7. welcome to change it and/or distribute copies of it under certain conditions.
  8. Type "show copying" to see the conditions.
  9. There is absolutely no warranty for GDB.  Type "show warranty" for details.
  10. This GDB was configured as "i386-marcel-freebsd".
  11. Switching to remote protocol
  12. vm_fault (map=0xc211cae0, vaddr=673189888, fault_type=3 '\003', fault_flags=1) at ../../../vm/vm_fault.c:222
  13. 222             PCPU_INC(cnt.v_vm_faults);

  15. Unread portion of the kernel message buffer:
  16. KDB: enter: sysctl debug.kdb.enter

  18. #0  vm_fault (map=0xc211cae0, vaddr=673189888, fault_type=3 '\003', fault_flags=1) at ../../../vm/vm_fault.c:222
  19. 222             PCPU_INC(cnt.v_vm_faults);
  20. (kgdb) bt
  21. #0  vm_fault (map=0xc211cae0, vaddr=673189888, fault_type=3 '\003', fault_flags=1) at ../../../vm/vm_fault.c:222
  22. #1  0xc097c12a in vm_fault_wire (map=0xc211cae0, start=673189888, end=673193984, user_wire=0, fictitious=0)
  23.     at ../../../vm/vm_fault.c:1025
  24. #2  0xc0981576 in vm_map_wire (map=0xc211cae0, start=673189888, end=673193984, flags=0) at ../../../vm/vm_map.c:2068
  25. #3  0xc097d1d5 in vslock (addr=0x28201040, len=4) at ../../../vm/vm_glue.c:226
  26. #4  0xc076877e in sysctl_wire_old_buffer (req=0xcd0c9ba4, len=4) at ../../../kern/kern_sysctl.c:1179
  27. #5  0xc0785c8f in kdb_sysctl_enter (oidp=0xc0b96460, arg1=0x0, arg2=0, req=0xcd0c9ba4) at ../../../kern/subr_kdb.c:157
  28. #6  0xc0768277 in sysctl_root (oidp=Variable "oidp" is not available.
  29. ) at ../../../kern/kern_sysctl.c:1306
  30. #7  0xc07683c4 in userland_sysctl (td=0xc251f210, name=0xcd0c9c14, namelen=3, old=0x28201040, oldlenp=0xbfbfe430, inkernel=0,
  31.     new=0x0, newlen=0, retval=0xcd0c9c10, flags=0) at ../../../kern/kern_sysctl.c:1401
  32. #8  0xc076915e in __sysctl (td=0xc251f210, uap=0xcd0c9cfc) at ../../../kern/kern_sysctl.c:1336
  33. #9  0xc0a5aa85 in syscall (frame=0xcd0c9d38) at ../../../i386/i386/trap.c:1035
  34. #10 0xc0a406b0 in Xint0x80_syscall () at ../../../i386/i386/exception.s:196
  35. #11 0x2815566f in ?? ()
  36. Previous frame inner to this frame (corrupt stack?)
  37. (kgdb)
復(fù)制代碼

[ 本帖最后由 雨絲風(fēng)片 于 2008-3-10 16:44 編輯 ]
您需要登錄后才可以回帖 登錄 | 注冊

本版積分規(guī)則 發(fā)表回復(fù)

  

北京盛拓優(yōu)訊信息技術(shù)有限公司. 版權(quán)所有 京ICP備16024965號-6 北京市公安局海淀分局網(wǎng)監(jiān)中心備案編號:11010802020122 niuxiaotong@pcpop.com 17352615567
未成年舉報專區(qū)
中國互聯(lián)網(wǎng)協(xié)會會員  聯(lián)系我們:huangweiwei@itpub.net
感謝所有關(guān)心和支持過ChinaUnix的朋友們 轉(zhuǎn)載本站內(nèi)容請注明原作者名及出處

清除 Cookies - ChinaUnix - Archiver - WAP - TOP