From: Maximilian Schneider <max@schneidersoft.net>
To: Simon Marchi <simon.marchi@polymtl.ca>, gdb@sourceware.org
Subject: Re: GDB call and p func() on embedded target
Date: Wed, 18 Aug 2021 21:31:41 +0100 [thread overview]
Message-ID: <d796cd29afa49d704df187624ee7f07cf167544b.camel@schneidersoft.net> (raw)
In-Reply-To: <774bfb5f-7117-911f-58fc-c884ce92993c@polymtl.ca>
On Sun, 2021-08-15 at 21:14 -0400, Simon Marchi wrote:
> On 2021-08-14 11:54 a.m., Maximilian Schneider wrote:
> > Hello,
> >
> > Some more information:
> >
> > I'm working on an stm32l475.
> >
> > using openocd like so:
> > openocd -v
> > Open On-Chip Debugger 0.10.0+dev-g436782b (2019-03-05-19:20)
> >
> > openocd -f interface/stlink-v2-1.cfg -f target/stm32l4x.cfg -d3
> > And the executable I debug is compiled like this:
> > arm-none-eabi-gcc -Wall -Werror -Tscript.ld -Wl,-n,-N -nostartfiles
> > -ggdb -g -nostdlib -FPIC -FPIE -mcpu=cortex-m4 $(INCLUDES)
> > $(DEFINES)
> > src/loader.c -o loader.elf
> >
> > I use a linker script to put the code section into RAM.
> >
> > I should als mention the gdb version:
> > arm-none-eabi-gdb -v
> > GNU gdb (7.12-6+9+b2) 7.12.0.20161007-git
> >
> > I will try compiling the latest gdb from source, and debug it a
> > little
> > later. In the mean time I can demonstrate gdb is creating stack
> > frames.
> > Maybe you can spot something wrong with them?
> >
> > (gdb) set debug infrun 1
> > (gdb) p Init()
> > infrun: clear_proceed_status_thread (Remote target)
> > infrun: proceed (addr=0x20000aac, signal=GDB_SIGNAL_0)
> > infrun: resume (step=0, signal=GDB_SIGNAL_0), trap_expected=0,
> > current thread [Remote target] at 0x20000aac
> > infrun: infrun_async(1)
> > infrun: prepare_to_wait
> > infrun: target_wait (-1.0.0, status) =
> > infrun: -1.0.0 [Thread 0],
> > infrun: status->kind = ignore
> > infrun: TARGET_WAITKIND_IGNORE
> > infrun: prepare_to_wait
> >
> > * just sits here *
> >
> > I don't see any comments about creating a stack frame.
> > But gdb definately creates one.
> > I can inspect the stack frame after the call is made
> >
> > eg:
> > I place a breakpoint in Init. and use p Init() twice.
> > (gdb) p Init()
> > ...
> > (gdb) p Init()
> > ..
> > (gdb) info frame
> > Stack level 0, frame at 0x2000ffe0:
> > pc = 0x20000ab2 in Init (src/loader.c:718); saved pc = 0x0
> > called by frame at 0x2000ffe0
> > source language c.
> > Arglist at 0x2000ffd0, args:
> > Locals at 0x2000ffd0, Previous frame's sp is 0x2000ffe0
> > Saved registers:
> > r7 at 0x2000ffd8, lr at 0x2000ffdc
> > (gdb) info frame 1
> > Stack frame at 0x2000ffe0:
> > pc = 0x0; saved pc = 0x20000ab2
> > called by frame at 0x2000fff8, caller of frame at 0x2000ffe0
> > Arglist at unknown address.
> > Locals at unknown address, Previous frame's sp is 0x2000ffe8
> > (gdb) info symbol 0x20000ab2
> > Init + 6 in section PrgCode
> >
> > This is creating two stack frames as expected, and I can step the
> > inner
> > function.
> > When I step through the return there is a pop instruction that
> > restores
> > the PC from the stack frame and execution resumes in the calee.
> >
> > What is pc= vs saved pc=? Is it relevant that pc=0x0?
>
> The execution out of the manual function call isn't expected to end
> "just like that", with a return. Normally, when the called function
> returns, it should return to some code (the dummy stack frame) that
> generates some exception, so that GDB gets back control. How this is
> done varies from arch to arch. This is where it happens:
>
>
> https://gitlab.com/gnutools/binutils-gdb/-/blob/master/gdb/infcall.c#L956-1012
>
> For ARM, it seems like gdbarch_call_dummy_location uses the default
> AT_ENTRY_POINT, meaning that GDB puts a breakpoint at the address
> returned by entry_point_address(), and sets up the stack frame
> created
> to call Init to return there. Maybe with your executable the entry
> point returns 0, and that's why you see frame 1 having pc == 0?
>
> Simon
Thank you for the great information!
Turns out it was the start address. Since gdb is setting up a frame to
call my function and then return to the start address; it is no wonder
that it does not work. 0 is neither ram not flash so sw breakpoints
will not work there. HW breakpoints probably won't work there either.
I added -e 0x2000000 to the compilation to set an explicit entry point
and huzza it works :)
If gdb is already putting code on the stack to call my function why not
implement a sw breakpoint there? Why return to start?
Why does gdb care at all what the start address is? Since this is an
external loader that lives in ram and has no main() i don't see what
the point of the entry point is.
M.
next prev parent reply other threads:[~2021-08-18 20:31 UTC|newest]
Thread overview: 6+ messages / expand[flat|nested] mbox.gz Atom feed top
2021-08-14 10:28 Maximilian Schneider
2021-08-14 13:05 ` Simon Marchi
2021-08-14 15:54 ` Maximilian Schneider
2021-08-16 1:14 ` Simon Marchi
2021-08-18 20:31 ` Maximilian Schneider [this message]
2021-08-18 20:49 ` Simon Marchi
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=d796cd29afa49d704df187624ee7f07cf167544b.camel@schneidersoft.net \
--to=max@schneidersoft.net \
--cc=gdb@sourceware.org \
--cc=simon.marchi@polymtl.ca \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).