[Bug gdb/30547] [gdb, s390x, ppc64] segfault in for_each_block

public inbox for gdb-prs@sourceware.org
help / color / mirror / Atom feed

From: "cvs-commit at gcc dot gnu.org" <sourceware-bugzilla@sourceware.org>
To: gdb-prs@sourceware.org
Subject: [Bug gdb/30547] [gdb, s390x, ppc64] segfault in for_each_block
Date: Tue, 28 Nov 2023 09:31:41 +0000	[thread overview]
Message-ID: <bug-30547-4717-EdyVAfEVKk@http.sourceware.org/bugzilla/> (raw)
In-Reply-To: <bug-30547-4717@http.sourceware.org/bugzilla/>

https://sourceware.org/bugzilla/show_bug.cgi?id=30547

--- Comment #9 from Sourceware Commits <cvs-commit at gcc dot gnu.org> ---
The master branch has been updated by Tom de Vries <vries@sourceware.org>:

https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=14414227bfac8ef1803715b3b642f8ba0ab6fff8

commit 14414227bfac8ef1803715b3b642f8ba0ab6fff8
Author: Tom de Vries <tdevries@suse.de>
Date:   Tue Nov 28 10:31:25 2023 +0100

    [gdb] Fix segfault in for_each_block, part 2

    The previous commit describes PR gdb/30547, a segfault when running
test-case
    gdb.base/vfork-follow-parent.exp on powerpc64 (likewise on s390x).

    The root cause for the segmentation fault is that linux_is_uclinux gives an
    incorrect result: it returns true instead of false.

    So, why does linux_is_uclinux:
    ...
    int
    linux_is_uclinux (void)
    {
      CORE_ADDR dummy;

      return (target_auxv_search (AT_NULL, &dummy) > 0
              && target_auxv_search (AT_PAGESZ, &dummy) == 0);
    ...
    return true?

    This is because ppc_linux_target_wordsize returns 4 instead of 8, causing
    ppc_linux_nat_target::auxv_parse to misinterpret the auxv vector.

    So, why does ppc_linux_target_wordsize:
    ...
    int
    ppc_linux_target_wordsize (int tid)
    {
      int wordsize = 4;

      /* Check for 64-bit inferior process.  This is the case when the host is
         64-bit, and in addition the top bit of the MSR register is set.  */
      long msr;

      errno = 0;
      msr = (long) ptrace (PTRACE_PEEKUSER, tid, PT_MSR * 8, 0);
      if (errno == 0 && ppc64_64bit_inferior_p (msr))
        wordsize = 8;

      return wordsize;
    }
    ...
    return 4?

    Specifically, we get this result because because tid == 0, so we get
    errno == ESRCH.

    The tid == 0 is caused by the switch_to_no_thread in
    handle_vfork_child_exec_or_exit:
    ...
              /* Switch to no-thread while running clone_program_space, so
                 that clone_program_space doesn't want to read the
                 selected frame of a dead process.  */
              scoped_restore_current_thread restore_thread;
              switch_to_no_thread ();

              inf->pspace = new program_space (maybe_new_address_space ());
    ...
    but moving the maybe_new_address_space call to before that gives us the
    same result.  The tid is no longer 0, but we still get ESRCH because the
    thread has exited.

    Fix this in handle_vfork_child_exec_or_exit by doing the
    maybe_new_address_space call in the context of the vfork parent.

    Tested on top of trunk on x86_64-linux and ppc64le-linux.
    Tested on top of gdb-14-branch on ppc64-linux.

    Co-Authored-By: Simon Marchi <simon.marchi@polymtl.ca>

    PR gdb/30547
    Bug: https://sourceware.org/bugzilla/show_bug.cgi?id=30547

-- 
You are receiving this mail because:
You are on the CC list for the bug.

next prev parent reply	other threads:[~2023-11-28  9:31 UTC|newest]

Thread overview: 11+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2023-06-13 13:16 [Bug gdb/30547] New: [gdb, s390x] " vries at gcc dot gnu.org
2023-10-31  8:02 ` [Bug gdb/30547] [gdb, s390x, ppc64] " vries at gcc dot gnu.org
2023-10-31  8:28 ` vries at gcc dot gnu.org
2023-10-31 15:53 ` vries at gcc dot gnu.org
2023-11-01  9:42 ` vries at gcc dot gnu.org
2023-11-01  9:56 ` vries at gcc dot gnu.org
2023-11-02 10:49 ` vries at gcc dot gnu.org
2023-11-04 15:57 ` vries at gcc dot gnu.org
2023-11-28  9:31 ` cvs-commit at gcc dot gnu.org
2023-11-28  9:31 ` cvs-commit at gcc dot gnu.org [this message]
2023-11-28  9:54 ` vries at gcc dot gnu.org

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=bug-30547-4717-EdyVAfEVKk@http.sourceware.org/bugzilla/ \
    --to=sourceware-bugzilla@sourceware.org \
    --cc=gdb-prs@sourceware.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).