[Qemu-devel] More MIPS panics - Daniel Jacobowitz

qemu-devel.nongnu.org archive mirror
 help / color / mirror / Atom feed

From: Daniel Jacobowitz <drow@false.org>
To: qemu-devel@nongnu.org
Subject: [Qemu-devel] More MIPS panics
Date: Thu, 13 Sep 2007 17:31:32 -0400	[thread overview]
Message-ID: <20070913213132.GA22441@caradoc.them.org> (raw)

When fixing the breakpoint failure Jason's reproducible testcase was
very helpful, so I'll return the favor in case someone else wants to
fix this one...

Running huge.exp from the gdb testsuite over gdbserver, with the
gdbserver inside a mips or mipsel qemu, reliably crashes the kernel.
It will end up taking a recursive fault, and when it runs out of stack
it'll start overwriting other helpful things like the page tables.

All you need is a file with a single huge static array full of zero
bytes.  0x800000 bytes works nicely.  If you tell gdb to print it
while running a native MIPS gdb, it reads the contents from
/proc/PID/mem using pread in a single huge lump; this works fine.  If
you tell gdb to print it while connected to gdbserver, gdbserver will
use ptrace to read it one word at a time.  This does not work fine.
At some random point in the array the kernel will go belly-up.
Therefore I assume this is something to do with frequently mapping and
unmapping pages in the kmap area.

So far I have not had any luck figuring out what's going on.  It seems
like a zero word appears in the wrong place, though, so my suspect is
the mapping and unmapping in copy_to_user_page...

-- 
Daniel Jacobowitz
CodeSourcery

                 reply	other threads:[~2007-09-13 21:31 UTC|newest]

Thread overview: [no followups] expand[flat|nested]  mbox.gz  Atom feed

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=20070913213132.GA22441@caradoc.them.org \
    --to=drow@false.org \
    --cc=qemu-devel@nongnu.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).