This is an archive of the discontinued LLVM Phabricator instance.

Select the correct DWARF location list entry when looking for variable locations
ClosedPublic

Authored by jasonmolenda on Apr 28 2022, 12:21 AM.

Download Raw Diff

Details

Reviewers

jingham
JDevlieghere
clayborg

Commits

rG6e56c4961a10: Decr pc when looking for DWARF loc list entry mid-stack

Summary

When lldb is looking for a location list entry for a variable, it is using the pc value -- or return-pc value when up the stack -- to pick the correct DWARF location list entry. Because it is using return-pc, the entry selected may be an entirely different basic block, or function. We should be using the "pc for symbolication" -- return-pc decremented in most cases -- to select the correct block we should be looking up. I added RegisterContext::GetPCForSymbolication and StackFrame::GetFrameCodeAddressForSymbolication last year in https://reviews.llvm.org/D97644 and this is a simple patch with those in place.

The bug that drove this is in the middle of a complex project, but I can elicit incorrect behavior with a small C file that calls abort() as its last instruction, with a different function immediately after that. It must be built at -O1 with clang (on x86_64, AArch64) so that the debug info tracks variables in different registers during the function lifetime, using a DWARF location list.

I constructed a test case that does this, but it depends on clang's current codegen at -O1 on these two architectures. If the codegen were to shift around, the test could pass without correctly exercising this codepath. One possibility would be to include a test binary, DWARF for it, and corefile; that would eliminate the possibility of codegen changing. But it's a lot of data, and I'm not sure how necessary it is. Given that I get the same codegen on two architectures with clang at -O1, maybe this is a small enough exposure to the optimizer that we can use it in the testsuite. Open to suggestions.

Without this patch, this test case will show argv as unavailable when you try to print it. In the actual bug that I was tracking down, the return-pc pointed to a different location list entry for the variable so lldb showed the wrong value for that variable. A much more subtle and confusing bug for the user.

Diff Detail

Repository: rG LLVM Github Monorepo

Event Timeline

jasonmolenda created this revision.Apr 28 2022, 12:21 AM

Herald added a project: Restricted Project. · View Herald TranscriptApr 28 2022, 12:21 AM

Herald added subscribers: pengfei, kristof.beyls. · View Herald Transcript

jasonmolenda requested review of this revision.Apr 28 2022, 12:21 AM

Herald added a subscriber: lldb-commits. · View Herald TranscriptApr 28 2022, 12:21 AM

Harbormaster completed remote builds in B161744: Diff 425703.Apr 28 2022, 12:24 AM

The change seems correct. Since the test only requires -01, and the test code is quite straightforward, the test seems fine.

This revision is now accepted and ready to land.Apr 29 2022, 11:03 AM

I wonder if this will help optimized code debugging at all!? Good catch

Closed by commit rG6e56c4961a10: Decr pc when looking for DWARF loc list entry mid-stack (authored by jasonmolenda). · Explain WhyApr 29 2022, 2:39 PM

This revision was automatically updated to reflect the committed changes.

jasonmolenda added a commit: rG6e56c4961a10: Decr pc when looking for DWARF loc list entry mid-stack.

In D124597#3483197, @clayborg wrote:

I wonder if this will help optimized code debugging at all!? Good catch

It came up in a kernel debugging session iirc; it was the case of a function doing a noreturn call, and when you went up to that stack frame, the variable was in one register up through the noreturn call, and then it was in a different register after that noreturn -- so we would print the wrong register value. :/ It takes a bit to get this exact issue, but printing an incorrect value was a worst case failure mode. The API test case I came up with will only print that the variable is unavailable, instead of the wrong value.

Revision Contents

Path

Size

lldb/

source/

Expression/

DWARFExpression.cpp

17 lines

test/

API/

functionalities/

location-list-lookup/

Makefile

3 lines

TestLocationListLookup.py

40 lines

main.c

23 lines

Diff 426166

lldb/source/Expression/DWARFExpression.cpp

Show First 20 Lines • Show All 852 Lines • ▼ Show 20 Lines	bool DWARFExpression::Evaluate(ExecutionContext *exe_ctx,
RegisterContext *reg_ctx,		RegisterContext *reg_ctx,
lldb::addr_t func_load_addr,		lldb::addr_t func_load_addr,
const Value *initial_value_ptr,		const Value *initial_value_ptr,
const Value *object_address_ptr, Value &result,		const Value *object_address_ptr, Value &result,
Status *error_ptr) const {		Status *error_ptr) const {
ModuleSP module_sp = m_module_wp.lock();		ModuleSP module_sp = m_module_wp.lock();

if (IsLocationList()) {		if (IsLocationList()) {
addr_t pc;		Address pc;
StackFrame *frame = nullptr;		StackFrame *frame = nullptr;
if (reg_ctx)		if (!reg_ctx \|\| !reg_ctx->GetPCForSymbolication(pc)) {
pc = reg_ctx->GetPC();
else {
frame = exe_ctx->GetFramePtr();		frame = exe_ctx->GetFramePtr();
if (!frame)		if (!frame)
return false;		return false;
RegisterContextSP reg_ctx_sp = frame->GetRegisterContext();		RegisterContextSP reg_ctx_sp = frame->GetRegisterContext();
if (!reg_ctx_sp)		if (!reg_ctx_sp)
return false;		return false;
pc = reg_ctx_sp->GetPC();		reg_ctx_sp->GetPCForSymbolication(pc);
}		}

if (func_load_addr != LLDB_INVALID_ADDRESS) {		if (func_load_addr != LLDB_INVALID_ADDRESS) {
if (pc == LLDB_INVALID_ADDRESS) {		if (!pc.IsValid()) {
if (error_ptr)		if (error_ptr)
error_ptr->SetErrorString("Invalid PC in frame.");		error_ptr->SetErrorString("Invalid PC in frame.");
return false;		return false;
}		}

if (llvm::Optional<DataExtractor> expr =		Target *target = exe_ctx->GetTargetPtr();
GetLocationExpression(func_load_addr, pc)) {		if (llvm::Optional<DataExtractor> expr = GetLocationExpression(
		func_load_addr, pc.GetLoadAddress(target))) {
return DWARFExpression::Evaluate(		return DWARFExpression::Evaluate(
exe_ctx, reg_ctx, module_sp, *expr, m_dwarf_cu, m_reg_kind,		exe_ctx, reg_ctx, module_sp, *expr, m_dwarf_cu, m_reg_kind,
initial_value_ptr, object_address_ptr, result, error_ptr);		initial_value_ptr, object_address_ptr, result, error_ptr);
}		}
}		}
if (error_ptr)		if (error_ptr)
error_ptr->SetErrorString("variable not available");		error_ptr->SetErrorString("variable not available");
return false;		return false;
▲ Show 20 Lines • Show All 1,965 Lines • ▼ Show 20 Lines	if (IsLocationList()) {
if (!sc.function)		if (!sc.function)
return false;		return false;

addr_t load_function_start =		addr_t load_function_start =
sc.function->GetAddressRange().GetBaseAddress().GetFileAddress();		sc.function->GetAddressRange().GetBaseAddress().GetFileAddress();
if (load_function_start == LLDB_INVALID_ADDRESS)		if (load_function_start == LLDB_INVALID_ADDRESS)
return false;		return false;

addr_t pc = frame.GetFrameCodeAddress().GetLoadAddress(		addr_t pc = frame.GetFrameCodeAddressForSymbolication().GetLoadAddress(
frame.CalculateTarget().get());		frame.CalculateTarget().get());

if (llvm::Optional<DataExtractor> expr =		if (llvm::Optional<DataExtractor> expr =
GetLocationExpression(load_function_start, pc))		GetLocationExpression(load_function_start, pc))
opcodes = std::move(*expr);		opcodes = std::move(*expr);
else		else
return false;		return false;
} else		} else
▲ Show 20 Lines • Show All 70 Lines • Show Last 20 Lines

lldb/test/API/functionalities/location-list-lookup/Makefile

This file was added.

				C_SOURCES := main.c
				CFLAGS_EXTRAS := -O1
				include Makefile.rules

lldb/test/API/functionalities/location-list-lookup/TestLocationListLookup.py

This file was added.

				"""Test that lldb picks the correct DWARF location list entry with a return-pc out of bounds."""

				import lldb
				from lldbsuite.test.decorators import *
				from lldbsuite.test.lldbtest import *
				from lldbsuite.test import lldbutil


				class LocationListLookupTestCase(TestBase):

				mydir = TestBase.compute_mydir(__file__)

				def setUp(self):
				# Call super's setUp().
				TestBase.setUp(self)

				def test_loclist(self):
				self.build()
				exe = self.getBuildArtifact("a.out")

				# Create a target by the debugger.
				target = self.dbg.CreateTarget(exe)
				self.assertTrue(target, VALID_TARGET)
				self.dbg.SetAsync(False)

				li = lldb.SBLaunchInfo(["a.out"])
				error = lldb.SBError()
				process = target.Launch(li, error)
				self.assertTrue(process.IsValid())
				self.assertTrue(process.is_stopped)

				# Find `main` on the stack, then
				# find `argv` local variable, then
				# check that we can read the c-string in argv[0]
				for f in process.GetSelectedThread().frames:
				if f.GetDisplayFunctionName() == "main":
				argv = f.GetValueForVariablePath("argv").GetChildAtIndex(0)
				strm = lldb.SBStream()
				argv.GetDescription(strm)
				self.assertNotEqual(strm.GetData().find('a.out'), -1)

lldb/test/API/functionalities/location-list-lookup/main.c

This file was added.

				#include <stdio.h>
				#include <stdlib.h>

				// The goal with this test is:
				// 1. Have main() followed by foo()
				// 2. Have the no-return call to abort() in main be the last instruction
				// 3. Have the next instruction be the start of foo()
				// 4. The debug info for argv uses a location list.
				// clang at -O1 on x86_64 or arm64 has debuginfo like
				// DW_AT_location (0x00000049:
				// [0x0000000100003f15, 0x0000000100003f25): DW_OP_reg4 RSI
				// [0x0000000100003f25, 0x0000000100003f5b): DW_OP_reg15 R15)

				void foo(int);
				int main(int argc, char **argv) {
				char *file = argv[0];
				char f0 = file[0];
				printf("%c\n", f0);
				foo(f0);
				printf("%s %d\n", argv[0], argc);
				abort(); /// argv is still be accessible here
				}
				void foo(int in) { printf("%d\n", in); }