[CRIU] criu check --extra output and dump failure

Dmitry Safonov 0x7f454c46 at gmail.com
Thu Apr 20 07:36:05 PDT 2017 

2017-04-20 15:50 GMT+03:00 Brinkmann, Harald
<Harald.Brinkmann at bst-international.com>:
>
> Hi Dmitry,
>
> On Thu, 2017-04-20 at 15:00 +0300, Dmitry Safonov wrote:
>> 2017-04-20 11:08 GMT+03:00 Brinkmann, Harald
>> <Harald.Brinkmann at bst-international.com>:
>> > On Wed, 2017-04-19 at 22:48 +0300, Dmitry Safonov wrote:
>> >> 2017-04-19 15:26 GMT+03:00 Brinkmann, Harald
>> >> <Harald.Brinkmann at bst-international.com>:
>> >>
>> >> > The bad news is that I still cannot successfully run that "Simple
>> >> > Loop"-example, although the crash looks different:
>> >> > (...)
>> >>
>> >> Hmm, so from dmesg and logs I don't see obvious reasons, why
>> >> it has crashed. All looks quite normal (except PC) :-/
>> >>
>> >> Could you send me your parasite.built-in.o - so I'll dissect it with gdb/etc?
>> >> Crashdump may be also useful.
>> >
>> > Done.
>> >
>> > These should be from the same test run as the stuff above and
>> > yesterday's attachments.
>>
>> Hi Harald,
>>
>> So the fun thing - is that dumping worked on RPI2 with your parasite blob :)
>> I've double checked, that criu loaded your parasite in a task.
>>
>> As your parasite is compiled with THUMB mode, could you check that
>> your kernel has CONFIG_ARM_THUMB enabled?
>>
>> To make sure that the issue here is no more in parasite, but in
>> environment/kernel/criu/etc, could you make test with parasite blob from
>> my compilation?
>> Just replace criu/pie/parasite.built-in.o with mine and run `make` - so
>> it'll regenerate parasite-blob.h header.
>
> Yes, CONFIG_ARM_THUMB is enabled. Just to make sure I haven't missed
> anything else, I am attaching the complete kernel config file.
>
> I did use your blob and the same thing happens. :-( Not sure whether
> that was expected, though.

Hmm, it looks like, the problem is not in parasite - if it fails with
the same blob
for you and succeed for me.

But as it results in segfault in parasite - I've no other idea then
start debugging
from there.
Could you run with attached diff to see, where parasite stops with SIGTRAP?
(please, clear previous pie before building with `git clean -fdx criu/pie`)
It *should* stop in parasite_service() as it does for me, you can check it
from dump message:
(00.090640) Putting parasite blob into 0x76c3a000->0x76fb1000

and from dmesg message:
[14771.879711] Unhandled prefetch abort: breakpoint debug exception
(0x002) at 0x76fb37d4

Where parasite_service is:
000027c8 <parasite_service>:
    27c8:       e92d4070        push    {r4, r5, r6, lr}
    27cc:       e1a04000        mov     r4, r0
    27d0:       e1a05001        mov     r5, r1
    27d4:       e1200071        bkpt    0x0001

So, afterward moving this:
+       asm volatile ("\tbkpt #1\n");
around you can find, what causes segfault in parasite.

If you have gdb on target, you can debug it by single-stepping:
1. change
asm volatile ("\tbkpt #1\n");
to
asm volatile ("\tbl .\n"); /* busyloop */
2. try to dump - it'll hang in busyloop
3. kill criu process (as there can be only one tracer)
4. attach to busylooping dumpee and jump over bl instruction
by setting PC like: `set $pc = <addr after bl>`
5. single-step to segfault

By either of this ways, you can find the point which results in segfault.
As from your dmesg segfault message I have no clue, what causes it.

-- 
             Dmitry
-------------- next part --------------
diff --git a/compel/arch/arm/plugins/std/parasite-head.S b/compel/arch/arm/plugins/std/parasite-head.S
index e72646b50804..d9835ce28ad9 100644
--- a/compel/arch/arm/plugins/std/parasite-head.S
+++ b/compel/arch/arm/plugins/std/parasite-head.S
@@ -12,7 +12,9 @@ ENTRY(__export_parasite_head_start)
 	add	r1, r1, r2			@ fixup __export_parasite_args
 
 	bl	parasite_service
-	.byte   0xf0, 0x01, 0xf0, 0xe7		@ the instruction UDF #32 generates the signal SIGTRAP in Linux
+
+	/* Guard generates the signal SIGTRAP in Linux */
+	bkpt	#0
 
 parasite_args_ptr:
 	.long __export_parasite_args
diff --git a/compel/plugins/std/infect.c b/compel/plugins/std/infect.c
index 2d3aa3df80d1..b70c230a4297 100644
--- a/compel/plugins/std/infect.c
+++ b/compel/plugins/std/infect.c
@@ -181,6 +181,7 @@ err:
 
 int __used __parasite_entry parasite_service(unsigned int cmd, void *args)
 {
+	asm volatile ("\tbkpt #1\n");
 	pr_info("Parasite cmd %d/%x process\n", cmd, cmd);
 
 	if (cmd == PARASITE_CMD_INIT_DAEMON)

More information about the CRIU mailing list