Re: [Crash-utility] Handle the NT_PRSTATUS lost for the "bt" command

(2012/06/20 3:25), Dave Anderson wrote: A dd->num_prstatus_notes is equal to number of NT_PRSTATUS notes in dump file and unless nt_prstatus_percpu[] is continuous from 0, diskdump_get_prstatus_percpu() can possibly return NULL. I seem to be minor bug, if some of cpus are offline while panic, can't backtrace the same number of cpus from tail because of returning NULL. I think current task's PC/SP can not obtain from thread_struct corectly, then NT_PRSTATUS notes need to be stored for them instead. But anyway, panic under offline is very unlikely condition as same as the NMI failed. At first, my patch is trying to find out tainted note area in base kernel. Such notes can not be found out from dumpfile, however, found out other ones are set continuously into nt_prstatus_percpu[from 0 to found out notes]. I just want to repaire nt_prstatus_percpu[#index] corresponding to cpu#index. [example] cpu#0 cpu#1 cpu#2 cpu#3 saved tainted saved tainted [by looking at base kernel] => nt_prstatus_percpu[0] = cpu#0's note, nt_prstatus_percpu[1] = cpu#3's note I want to repaire array like, => nt_prstatus_percpu[0] = cpu#0's note, nt_prstatus_percpu[3] = cpu#3's note Since ELF note format dose not contain information which cpu saved me, I think there is no way to identify mapping between cpu and nt_prstatus_percpu[] from ELF note when both are not equal to. That's why I try to resolve from base kernel area. I think offline cpus never ack IPI, thus lost notes everytime(not concerned). I only assume the case that cpu was online but could not ack IPI caused by any reasons in interrupts off. I can agree, x86 architecture own NMI which is most reliable way to deliver interrupts to other cpus while powerpc may not own NMI. I am going to rework patch so that it can be effective only in ppc arch. get_diskdump_regs_ppc() is touching dd->nt_prstatus_percpu[bt->tc->processor] when "bt" for panic_task. --------- if (KDUMP_CMPRS_VALID() && (bt->task == tt->panic_task || (is_task_active(bt->task) && (dd->num_prstatus_notes > 1)))) { note = (Elf32_Nhdr*) dd->nt_prstatus_percpu[bt->tc->processor]; if (!note) error(FATAL, "cannot determine NT_PRSTATUS ELF note " "for %s task: %lx\n", (bt->task == tt->panic_task) ? "panic" : "active", bt->task); len = sizeof(Elf32_Nhdr); len = roundup(len + note->n_namesz, 4); bt->machdep = (void *)((char *)note + len + MEMBER_OFFSET("elf_prstatus", "pr_reg")); } machdep->get_stack_frame(bt, eip, esp); --------- In my dumpfile case, bt->tc->processor is 2 and its note is contained at dd->nt_prstatus_percpu[0]. note = (Elf32_Nhdr*) dd->nt_prstatus_percpu[2]; * Here is no note instance which "bt" expects. A dd->nt_prstatus_percpu[] is allocated by malloc() and not initialied with 0. When note->n_namesz is executed, it is cause of segmentation violation. This malloc() is moved to calloc() in my first patch. Other problem which is also appeared in get_netdump_regs_ppc(). A dd->num_prstatus_notes is 1 in my dumpfile although there were 8 online cpus. If next condition "is_task_active(bt->task)" is required by "bt", get_diskdump_regs_ppc() unfortunately do machdep->get_stack_frame() for active tasks and surely failed. "cannot determine NT_PRSTATUS ELF note ..." should be proper. Yes I'm going to rework, and thanks for your reviews. I'm modifying difficult parts this time, very helpful. I'll do more tests before sending reworked PPC only patch. I also have to study about kexectools or makedumpfile more about how NT_PRSTATUS or others are treated, haven't understood enough. Toshi