3:57 a.m.
Hi Naveen,
On Wed, Apr 3, 2024 at 12:48 PM Naveen Chaudhary
<naveenchaudhary2010(a)hotmail.com> wrote:
I am analyzing the kdump in latest crash utility 8.0.4++.
I think I loaded the module symbols correctly :
crash> mod
MODULE NAME TEXT_BASE SIZE OBJECT FILE
ffff80007a7e2040 npdereference ffff80007a7e0000 12288 (not loaded)
[CONFIG_KALLSYMS]
crash>
crash> mod -s npdereference
/home/naveen/.repos/src/arm64/linux/drivers/naveen/npdereference.ko
MODULE NAME TEXT_BASE SIZE OBJECT FILE
ffff80007a7e2040 npdereference ffff80007a7e0000 12288
/home/naveen/.repos/src/arm64/linux/drivers/naveen/npdereference.ko
But still my backtrace doesn't say the correct symbol name :
#12 [ffff800082c6ba60] _MODULE_INIT_TEXT_START_npdereference at ffff80007a7e602c
[npdereference]
The "sym" command also doesn't point me to the source file :
crash> sym ffff80007a7e602c
ffff80007a7e602c (m) _MODULE_INIT_TEXT_START_npdereference+44 [npdereference]
crash>
I think this is correct and expected output from crash. The
"_MODULE_INIT_TEXT_START_npdereference" represents the module_init
function null_deref_module_init(). I know you are expecting the same
string as the latter, but the internal is a little different from your
thought:
The "_MODULE_INIT_TEXT_START_npdereference", or "_MODULE_INIT_START_ +
module_name", is created intentionally as a pseudo-symbol in
crash:symbols.c:store_module_symbols_v2(), as I quote it here:
st->ext_module_symtable[mcnt].value = lm->mod_init_module_ptr;
st->ext_module_symtable[mcnt].type = 'm';
st->ext_module_symtable[mcnt].flags |= MODULE_SYMBOL;
sprintf(buf3, "%s%s", "_MODULE_INIT_START_", mod_name);
The value/address of the symbol is mod_init_module_ptr, aka the
module_init function.
I don't have the history background why it is designed like this.
Let's disassemble nfsv4.ko as an example:
$ objdump -S nfsv4.ko
...
Disassembly of section .init.text:
0000000000000000 <init_module>:
static int __init init_nfs_v4(void)
{
0: e8 00 00 00 00 callq 5 <init_module+0x5>
5: 53 push %rbx
err = nfs_dns_resolver_init();
if (err)
goto out;
err = nfs_idmap_init();
6: e8 00 00 00 00 callq b <init_module+0xb>
b: 89 c3 mov %eax,%ebx
if (err)
The function name is taken as init_module instead of init_nfs_v4. So
just by guessing, such a pseudo name is better for identification.
Thanks,
Tao Liu
Is there a way to make this work correctly or at least make the "sym" command
point to right source file. The kernel module here is called "npdereference.ko"
and is in-tree (part of kernel source repo).
Regards,
Naveen
--
Crash-utility mailing list -- devel(a)lists.crash-utility.osci.io
To unsubscribe send an email to devel-leave(a)lists.crash-utility.osci.io
https://${domain_name}/admin/lists/devel.lists.crash-utility.osci.io/
Contribution Guidelines: https://github.com/crash-utility/crash/wiki
12:51 p.m.
New subject: How to get module symbols working ?
Understood Tao. That makes sense to me now.
To verify this, I moved the faulty code to a separate function and called that helper
function from my module_init function and that indeed produced the expected results.
[...]
#12 [ffff800082b8ba40] helper at ffff80007a7e003c [npdereference]
#13 [ffff800082b8ba60] _MODULE_INIT_TEXT_START_npdereference at ffff80007a7e6024
[npdereference]
#14 [ffff800082b8bac0] do_one_initcall at ffff800080014db0
#15 [ffff800082b8baf0] do_init_module at ffff80008011ee14
#16 [ffff800082b8bc30] load_module at ffff800080120ed8
#17 [ffff800082b8bd20] init_module_from_file at ffff8000801211bc
[...]
And post loading the module, "sym" pin-pointed to the exact faulty location.
Thanks for the pointers.
crash> sym ffff80007a7e003c
ffff80007a7e003c (t) helper+60 [npdereference]
/home/naveen/.repos/src/arm64/linux/drivers/naveen/npdereference.c: 18
crash>
11:48 p.m.
New subject: How to get module symbols working ?
One of the original concern is still unanswered. I understood the bakctrace is expected to
have " _MODULE_INIT_TEXT_START_" because compiler re-arranged code for the init
function. However, the sym doesn't point us to the source file. Is that also
expected?
#12 [ffff800082c1ba60] _MODULE_INIT_TEXT_START_npdereference at ffff80007a7e602c
[npdereference]
#13 [ffff800082c1bac0] do_one_initcall at ffff800080014db0
#14 [ffff800082c1baf0] do_init_module at ffff80008011ee14
#15 [ffff800082c1bc30] load_module at ffff800080120ed8
crash> sym ffff80007a7e602c
ffff80007a7e602c (m) _MODULE_INIT_TEXT_START_npdereference+44 [npdereference]
crash> sym null_deref_module_exit
Is this expected?
2:46 a.m.
New subject: How to get module symbols working ?
On Fri, Apr 5, 2024 at 12:48 PM <naveenchaudhary2010(a)hotmail.com> wrote:
One of the original concern is still unanswered. I understood the bakctrace is expected
to have " _MODULE_INIT_TEXT_START_" because compiler re-arranged code for the
init function. However, the sym doesn't point us to the source file. Is that also
expected?
#12 [ffff800082c1ba60] _MODULE_INIT_TEXT_START_npdereference at ffff80007a7e602c
[npdereference]
#13 [ffff800082c1bac0] do_one_initcall at ffff800080014db0
#14 [ffff800082c1baf0] do_init_module at ffff80008011ee14
#15 [ffff800082c1bc30] load_module at ffff800080120ed8
crash> sym ffff80007a7e602c
ffff80007a7e602c (m) _MODULE_INIT_TEXT_START_npdereference+44 [npdereference]
crash> sym null_deref_module_exit
I guess it is not expected. Maybe you can provide me with your ko file
so I can have a debug.
Is this expected?
--
Crash-utility mailing list -- devel(a)lists.crash-utility.osci.io
To unsubscribe send an email to devel-leave(a)lists.crash-utility.osci.io
https://${domain_name}/admin/lists/devel.lists.crash-utility.osci.io/
Contribution Guidelines: https://github.com/crash-utility/crash/wiki
3:39 a.m.
New subject: How to get module symbols working ?
You can find the vmlinux, kdump and module file here :
https://drive.google.com/file/d/1j-ZUnkRvLD1KDIxvphQpYlilrlgXMn57/view?us...
8:55 p.m.
New subject: How to get module symbols working ?
Hi Naveen,
On Fri, Apr 5, 2024 at 4:39 PM <naveenchaudhary2010(a)hotmail.com> wrote:
You can find the vmlinux, kdump and module file here :
https://drive.google.com/file/d/1j-ZUnkRvLD1KDIxvphQpYlilrlgXMn57/view?us...
I debugged the files you provided. There do have some problems with
the line info showing for .init.text code. I even made a trial patch
which can make it work for your case. But I think the case is 1) not
often encountered/reported, 2) not urgent. So for now I prefer to keep
the current code as it is, unless more cases or reports are
encountered, so I can make the trial patch adaptable for a wider
range.
Thanks,
Tao Liu
--
Crash-utility mailing list -- devel(a)lists.crash-utility.osci.io
To unsubscribe send an email to devel-leave(a)lists.crash-utility.osci.io
https://${domain_name}/admin/lists/devel.lists.crash-utility.osci.io/
Contribution Guidelines: https://github.com/crash-utility/crash/wiki
230
days inactive
236
days old
devel@lists.crash-utility.osci.io
6 comments
2 participants
participants (2)
-
naveenchaudhary2010@hotmail.com -
Tao Liu