This is an archive of the discontinued LLVM Phabricator instance.

Differential D158655

[libunwind][AIX] Fix problem with stepping up from a leaf function when unwinding started in a signal handler
ClosedPublic

Authored by xingxue on Aug 23 2023, 11:49 AM.

Details

Reviewers
MaskRay
compnerd
hubert.reinterpretcast
stephenpeckham
daltenty
Group Reviewers
Restricted Project
Commits
rG45d151138008: [libunwind][AIX] Fix problem with stepping up from a leaf function when…
Summary

The implementation of AIX unwinder gets the return address from the link area of the stack frame of a function and uses the return address to walk up functions. However, when unwinding starts from a signal handler and the function that raised the signal happens to be a leaf function and it does not have its own stack frame, the return address of the stack frame of the leaf function points to the caller of the function that calls the leaf function because the leaf function and its caller share the same stack frame. As a result, the caller of the leaf function is skipped. This patch fixes the problem by saving the LR value in sigcontext when the unwinder hits the signal handler trampoline frame and using it as the return address of the leaf function. The LR value from sigcontext is saved in the unwinding context slot for LR currently unused.

Diff Detail

Event Timeline

xingxue created this revision.Aug 23 2023, 11:49 AM
Herald added a project: Restricted Project. · View Herald TranscriptAug 23 2023, 11:49 AM
xingxue requested review of this revision.Aug 23 2023, 11:49 AM
Herald added a project: Restricted Project. · View Herald TranscriptAug 23 2023, 11:49 AM
Herald added a reviewer: Restricted Project. · View Herald Transcript
Herald added subscribers: libcxx-commits, llvm-commits. · View Herald Transcript
xingxue edited the summary of this revision. (Show Details)Aug 23 2023, 12:39 PM
hubert.reinterpretcast added inline comments.Aug 23 2023, 2:37 PM
libunwind/src/UnwindCursor.hpp
2406

Not all branches modify the link register.

Harbormaster completed remote builds in B254423: Diff 552800.Aug 23 2023, 4:17 PM
xingxue updated this revision to Diff 553072.Aug 24 2023, 4:18 AM

Addressed a comment:

  • fix the comment - not all branches change LR.
xingxue marked an inline comment as done.Aug 24 2023, 4:20 AM
xingxue added inline comments.
libunwind/src/UnwindCursor.hpp
2406

Fixed the comment, thanks!

xingxue marked an inline comment as done.Aug 24 2023, 4:21 AM
Harbormaster completed remote builds in B254598: Diff 553072.Aug 24 2023, 6:23 AM
hubert.reinterpretcast added inline comments.Aug 24 2023, 11:20 PM
libunwind/src/UnwindCursor.hpp
2334–2336

This only covers the case when stores_bc is 1 in the traceback table.

2409

The comment should say nothing about buying a stack frame. The link area is usable by a function for saving the return address even when said function does not increment the SP. As @stephenpeckham pointed out "offline", there can be even be non-leaf functions that do not buy a stack frame (e.g., because the functions they call are known to not write to the stack).

2415

Might be good to explicitly set returnAddress to 0 if lastStack is 0. That is, make this else if (lastStack).

2415–2417

https://llvm.org/docs/CodingStandards.html#don-t-use-braces-on-simple-single-statement-bodies-of-if-else-loop-statements now states that braces should be used for each part of an if/else chain when one part needs braces.

2509–2510

If lastStack truly "points to the stack frame of the next routine up" (as claimed where it is declared), then it is fine to restore the SP even given a leaf function.

xingxue updated this revision to Diff 553541.Aug 25 2023, 10:56 AM
xingxue marked 4 inline comments as done.

Addressed comments:

  • removed mentioning of buying stack frame in a code comment
  • added if (!lastStack) and under the condition, set returnAddress to NULL
  • removed condition TBTable->tb.saves_lr || !lastStack when restoring SP
  • added code to initialize the LR value in context to 0
libunwind/src/UnwindCursor.hpp
2409

Removed the mentioning of buying a stack frame, thanks!

2415

Changed as suggested, thanks!

2415–2417

Changed as suggested, thanks!

2509–2510

I agree. Removed those conditions, thanks!

stephenpeckham added inline comments.Aug 25 2023, 12:05 PM
libunwind/src/UnwindCursor.hpp
2511

I think the check should be for TBTable->tb.stores_bc. It is possible for stores_bc to be 0 but saves_lr to be 1. This case can occur if a "leaf" function calls an internal routine that the compiler knows is stackless. In this case, the LR is saved in the stack before calling the internal function, but the stack pointer is not updated.

2543

This code wasn't changed, but the check could be done at the beginning of the function instead of the end. With this change, isSignalFrame does not need to be updated.

hubert.reinterpretcast added inline comments.Aug 25 2023, 1:15 PM
libunwind/src/UnwindCursor.hpp
2334–2336

@xingxue, is a change coming for this? I think this also falls into "cases that arise when unwinding past a signal handler".

2511

I don't think there should a condition here at all. A fix needs to be made at line 2324 (otherwise the wrong link area would be used for retrieving a saved LR when stores_bc is 0 and saves_lr is 1).

xingxue added inline comments.Aug 25 2023, 1:22 PM
libunwind/src/UnwindCursor.hpp
2334–2336

Yes, @stephenpeckham has something that deals with it. I will refresh once that is finalized.

xingxue marked an inline comment as done.Aug 25 2023, 1:30 PM
xingxue added inline comments.
libunwind/src/UnwindCursor.hpp
2543

isSignalFrame needs to be undated for libunwind call unw_is_signal_frame().

Harbormaster completed remote builds in B254938: Diff 553541.Aug 25 2023, 4:33 PM
xingxue updated this revision to Diff 554785.Aug 30 2023, 11:11 AM
xingxue marked 5 inline comments as done.

Addressed comments.

  • add code to handle the case where a function does not store the back chain (stores_bc is 0)
  • swap the order of getting sigcontext from a signal trampoline frame, now trying stack + STKMINALIGN first and then stack + STKMIN
  • remove the condition check when restoring the SP
  • add the test case for the case where a function does not store the back chain
xingxue added inline comments.Aug 30 2023, 11:13 AM
libunwind/src/UnwindCursor.hpp
2334–2336

Incorporated @stephenpeckham's fix and use the current stack as the lastStack if stores_bc is 0. Thanks, Steve!

2511

I don't think there should a condition here at all. A fix needs to be made at line 2324 (otherwise the wrong link area would be used for retrieving a saved LR when stores_bc is 0 and saves_lr is 1).

Code has been added for the case where stores_bc is 0. Removed the condition check here. Thanks!

2511

I think the check should be for TBTable->tb.stores_bc. It is possible for stores_bc to be 0 but saves_lr to be 1. This case can occur if a "leaf" function calls an internal routine that the compiler knows is stackless. In this case, the LR is saved in the stack before calling the internal function, but the stack pointer is not updated.

Code has been added for the case where stores_bc is 0, thanks!

stephenpeckham added inline comments.Aug 31 2023, 7:28 AM
libunwind/src/UnwindCursor.hpp
2543

Retracting this comment. The value of _isSignalFrame can be queried, so the value has to be computed here.

libunwind/test/aix_signal_unwind.pass.sh.S
160

I suggest you add "bl $+4" to modify LR as if an internal function had been called.

209

add "bl $+4"

xingxue updated this revision to Diff 555053.Aug 31 2023, 8:01 AM

Addressed comments:

  • add instruction bl $+4 in the assembly code of the test case
xingxue marked 3 inline comments as done.Aug 31 2023, 8:03 AM
xingxue added inline comments.
libunwind/test/aix_signal_unwind.pass.sh.S
160

Added the instruction as suggested, thanks!

209

Added the instruction as suggested, thanks!

Harbormaster completed remote builds in B256034: Diff 555053.Aug 31 2023, 10:21 AM
stephenpeckham accepted this revision.Aug 31 2023, 12:25 PM

Both the libunwind and testcase changes look good.

This revision was not accepted when it landed; it landed in state Needs Review.Oct 16 2023, 9:25 AM
Closed by commit rG45d151138008: [libunwind][AIX] Fix problem with stepping up from a leaf function when… (authored by xingxue). · Explain Why
This revision was automatically updated to reflect the committed changes.
xingxue marked 2 inline comments as done.
xingxue added a commit: rG45d151138008: [libunwind][AIX] Fix problem with stepping up from a leaf function when….

Revision Contents

PathSize
libunwind/
src/
4 lines
96 lines
14 lines
test/
245 lines

Diff 557714

libunwind/src/Registers.hpp

Show First 20 LinesShow All 613 Lines▼ Show 20 Linespublic:
static int getArch() { return REGISTERS_PPC; } static int getArch() { return REGISTERS_PPC; }
uint64_t getSP() const { return _registers.__r1; } uint64_t getSP() const { return _registers.__r1; }
void setSP(uint32_t value) { _registers.__r1 = value; } void setSP(uint32_t value) { _registers.__r1 = value; }
uint64_t getIP() const { return _registers.__srr0; } uint64_t getIP() const { return _registers.__srr0; }
void setIP(uint32_t value) { _registers.__srr0 = value; } void setIP(uint32_t value) { _registers.__srr0 = value; }
uint64_t getCR() const { return _registers.__cr; } uint64_t getCR() const { return _registers.__cr; }
void setCR(uint32_t value) { _registers.__cr = value; } void setCR(uint32_t value) { _registers.__cr = value; }
uint64_t getLR() const { return _registers.__lr; }
void setLR(uint32_t value) { _registers.__lr = value; }
private: private:
struct ppc_thread_state_t { struct ppc_thread_state_t {
unsigned int __srr0; /* Instruction address register (PC) */ unsigned int __srr0; /* Instruction address register (PC) */
unsigned int __srr1; /* Machine state register (supervisor) */ unsigned int __srr1; /* Machine state register (supervisor) */
unsigned int __r0; unsigned int __r0;
unsigned int __r1; unsigned int __r1;
unsigned int __r2; unsigned int __r2;
▲ Show 20 LinesShow All 554 Lines▼ Show 20 Linespublic:
static int getArch() { return REGISTERS_PPC64; } static int getArch() { return REGISTERS_PPC64; }
uint64_t getSP() const { return _registers.__r1; } uint64_t getSP() const { return _registers.__r1; }
void setSP(uint64_t value) { _registers.__r1 = value; } void setSP(uint64_t value) { _registers.__r1 = value; }
uint64_t getIP() const { return _registers.__srr0; } uint64_t getIP() const { return _registers.__srr0; }
void setIP(uint64_t value) { _registers.__srr0 = value; } void setIP(uint64_t value) { _registers.__srr0 = value; }
uint64_t getCR() const { return _registers.__cr; } uint64_t getCR() const { return _registers.__cr; }
void setCR(uint64_t value) { _registers.__cr = value; } void setCR(uint64_t value) { _registers.__cr = value; }
uint64_t getLR() const { return _registers.__lr; }
void setLR(uint64_t value) { _registers.__lr = value; }
private: private:
struct ppc64_thread_state_t { struct ppc64_thread_state_t {
uint64_t __srr0; // Instruction address register (PC) uint64_t __srr0; // Instruction address register (PC)
uint64_t __srr1; // Machine state register (supervisor) uint64_t __srr1; // Machine state register (supervisor)
uint64_t __r0; uint64_t __r0;
uint64_t __r1; uint64_t __r1;
uint64_t __r2; uint64_t __r2;
▲ Show 20 LinesShow All 4,125 LinesShow Last 20 Lines

libunwind/src/UnwindCursor.hpp

Show First 20 LinesShow All 2,295 Lines▼ Show 20 Linesint UnwindCursor<A, R>::stepWithTBTable(pint_t pc, tbtable *TBTable,
R &registers, bool &isSignalFrame) { R &registers, bool &isSignalFrame) {
if (_LIBUNWIND_TRACING_UNWINDING) { if (_LIBUNWIND_TRACING_UNWINDING) {
char functionBuf[512]; char functionBuf[512];
const char *functionName = functionBuf; const char *functionName = functionBuf;
unw_word_t offset; unw_word_t offset;
if (!getFunctionName(functionBuf, sizeof(functionBuf), &offset)) { if (!getFunctionName(functionBuf, sizeof(functionBuf), &offset)) {
functionName = ".anonymous."; functionName = ".anonymous.";
} }
_LIBUNWIND_TRACE_UNWINDING("%s: Look up traceback table of func=%s at %p", _LIBUNWIND_TRACE_UNWINDING(
__func__, functionName, "%s: Look up traceback table of func=%s at %p, pc=%p, "
reinterpret_cast<void *>(TBTable)); "SP=%p, saves_lr=%d, stores_bc=%d",
__func__, functionName, reinterpret_cast<void *>(TBTable),
reinterpret_cast<void *>(pc),
reinterpret_cast<void *>(registers.getSP()), TBTable->tb.saves_lr,
TBTable->tb.stores_bc);
} }
#if defined(__powerpc64__) #if defined(__powerpc64__)
// Instruction to reload TOC register "l r2,40(r1)" // Instruction to reload TOC register "ld r2,40(r1)"
const uint32_t loadTOCRegInst = 0xe8410028; const uint32_t loadTOCRegInst = 0xe8410028;
const int32_t unwPPCF0Index = UNW_PPC64_F0; const int32_t unwPPCF0Index = UNW_PPC64_F0;
const int32_t unwPPCV0Index = UNW_PPC64_V0; const int32_t unwPPCV0Index = UNW_PPC64_V0;
#else #else
// Instruction to reload TOC register "l r2,20(r1)" // Instruction to reload TOC register "lwz r2,20(r1)"
const uint32_t loadTOCRegInst = 0x80410014; const uint32_t loadTOCRegInst = 0x80410014;
const int32_t unwPPCF0Index = UNW_PPC_F0; const int32_t unwPPCF0Index = UNW_PPC_F0;
const int32_t unwPPCV0Index = UNW_PPC_V0; const int32_t unwPPCV0Index = UNW_PPC_V0;
#endif #endif
// lastStack points to the stack frame of the next routine up.
pint_t curStack = static_cast<pint_t>(registers.getSP());
pint_t lastStack = *reinterpret_cast<pint_t *>(curStack);
if (lastStack == 0)
return UNW_STEP_END;
R newRegisters = registers; R newRegisters = registers;
// lastStack points to the stack frame of the next routine up. // If backchain is not stored, use the current stack frame.
pint_t lastStack = *(reinterpret_cast<pint_t *>(registers.getSP())); if (!TBTable->tb.stores_bc)
lastStack = curStack;
hubert.reinterpretcastUnsubmitted
Done
ReplyInline Actions

This only covers the case when stores_bc is 1 in the traceback table.

hubert.reinterpretcast: This only covers the case when `stores_bc` is `1` in the traceback table.
hubert.reinterpretcastUnsubmitted
Done
ReplyInline Actions

@xingxue, is a change coming for this? I think this also falls into "cases that arise when unwinding past a signal handler".

hubert.reinterpretcast: @xingxue, is a change coming for this? I think this also falls into "cases that arise when…
xingxueAuthorUnsubmitted
Done
ReplyInline Actions

Yes, @stephenpeckham has something that deals with it. I will refresh once that is finalized.

xingxue: Yes, @stephenpeckham has something that deals with it. I will refresh once that is finalized.
xingxueAuthorUnsubmitted
Done
ReplyInline Actions

Incorporated @stephenpeckham's fix and use the current stack as the lastStack if stores_bc is 0. Thanks, Steve!

xingxue: Incorporated @stephenpeckham's fix and use the current stack as the `lastStack` if `stores_bc`…
// Return address is the address after call site instruction. // Return address is the address after call site instruction.
pint_t returnAddress; pint_t returnAddress;
if (isSignalFrame) { if (isSignalFrame) {
_LIBUNWIND_TRACE_UNWINDING("Possible signal handler frame: lastStack=%p", _LIBUNWIND_TRACE_UNWINDING("Possible signal handler frame: lastStack=%p",
reinterpret_cast<void *>(lastStack)); reinterpret_cast<void *>(lastStack));
sigcontext *sigContext = reinterpret_cast<sigcontext *>( sigcontext *sigContext = reinterpret_cast<sigcontext *>(
reinterpret_cast<char *>(lastStack) + STKMIN); reinterpret_cast<char *>(lastStack) + STKMINALIGN);
returnAddress = sigContext->sc_jmpbuf.jmp_context.iar; returnAddress = sigContext->sc_jmpbuf.jmp_context.iar;
_LIBUNWIND_TRACE_UNWINDING("From sigContext=%p, returnAddress=%p\n", bool useSTKMIN = false;
reinterpret_cast<void *>(sigContext),
reinterpret_cast<void *>(returnAddress));
if (returnAddress < 0x10000000) { if (returnAddress < 0x10000000) {
// Try again using STKMINALIGN // Try again using STKMIN.
sigContext = reinterpret_cast<sigcontext *>( sigContext = reinterpret_cast<sigcontext *>(
reinterpret_cast<char *>(lastStack) + STKMINALIGN); reinterpret_cast<char *>(lastStack) + STKMIN);
returnAddress = sigContext->sc_jmpbuf.jmp_context.iar; returnAddress = sigContext->sc_jmpbuf.jmp_context.iar;
if (returnAddress < 0x10000000) { if (returnAddress < 0x10000000) {
_LIBUNWIND_TRACE_UNWINDING("Bad returnAddress=%p\n", _LIBUNWIND_TRACE_UNWINDING("Bad returnAddress=%p from sigcontext=%p",
reinterpret_cast<void *>(returnAddress)); reinterpret_cast<void *>(returnAddress),
reinterpret_cast<void *>(sigContext));
return UNW_EBADFRAME; return UNW_EBADFRAME;
} else { }
_LIBUNWIND_TRACE_UNWINDING("Tried again using STKMINALIGN: " useSTKMIN = true;
}
_LIBUNWIND_TRACE_UNWINDING("Returning from a signal handler %s: "
"sigContext=%p, returnAddress=%p. " "sigContext=%p, returnAddress=%p. "
"Seems to be a valid address\n", "Seems to be a valid address",
useSTKMIN ? "STKMIN" : "STKMINALIGN",
reinterpret_cast<void *>(sigContext), reinterpret_cast<void *>(sigContext),
reinterpret_cast<void *>(returnAddress)); reinterpret_cast<void *>(returnAddress));
}
}
// Restore the condition register from sigcontext. // Restore the condition register from sigcontext.
newRegisters.setCR(sigContext->sc_jmpbuf.jmp_context.cr); newRegisters.setCR(sigContext->sc_jmpbuf.jmp_context.cr);
// Save the LR in sigcontext for stepping up when the function that
// raised the signal is a leaf function. This LR has the return address
// to the caller of the leaf function.
newRegisters.setLR(sigContext->sc_jmpbuf.jmp_context.lr);
_LIBUNWIND_TRACE_UNWINDING(
"Save LR=%p from sigcontext",
reinterpret_cast<void *>(sigContext->sc_jmpbuf.jmp_context.lr));
// Restore GPRs from sigcontext. // Restore GPRs from sigcontext.
for (int i = 0; i < 32; ++i) for (int i = 0; i < 32; ++i)
newRegisters.setRegister(i, sigContext->sc_jmpbuf.jmp_context.gpr[i]); newRegisters.setRegister(i, sigContext->sc_jmpbuf.jmp_context.gpr[i]);
// Restore FPRs from sigcontext. // Restore FPRs from sigcontext.
for (int i = 0; i < 32; ++i) for (int i = 0; i < 32; ++i)
newRegisters.setFloatRegister(i + unwPPCF0Index, newRegisters.setFloatRegister(i + unwPPCF0Index,
sigContext->sc_jmpbuf.jmp_context.fpr[i]); sigContext->sc_jmpbuf.jmp_context.fpr[i]);
// Restore vector registers if there is an associated extended context // Restore vector registers if there is an associated extended context
// structure. // structure.
if (sigContext->sc_jmpbuf.jmp_context.msr & __EXTCTX) { if (sigContext->sc_jmpbuf.jmp_context.msr & __EXTCTX) {
ucontext_t *uContext = reinterpret_cast<ucontext_t *>(sigContext); ucontext_t *uContext = reinterpret_cast<ucontext_t *>(sigContext);
if (uContext->__extctx->__extctx_magic == __EXTCTX_MAGIC) { if (uContext->__extctx->__extctx_magic == __EXTCTX_MAGIC) {
for (int i = 0; i < 32; ++i) for (int i = 0; i < 32; ++i)
newRegisters.setVectorRegister( newRegisters.setVectorRegister(
i + unwPPCV0Index, *(reinterpret_cast<v128 *>( i + unwPPCV0Index, *(reinterpret_cast<v128 *>(
&(uContext->__extctx->__vmx.__vr[i])))); &(uContext->__extctx->__vmx.__vr[i]))));
} }
} }
} else { } else {
// Step up a normal frame. // Step up a normal frame.
if (!TBTable->tb.saves_lr && registers.getLR()) {
// This case should only occur if we were called from a signal handler
// and the signal occurred in a function that doesn't save the LR.
hubert.reinterpretcastUnsubmitted
Done
ReplyInline Actions

Not all branches modify the link register.

hubert.reinterpretcast: Not all branches modify the link register.
xingxueAuthorUnsubmitted
Done
ReplyInline Actions

Fixed the comment, thanks!

xingxue: Fixed the comment, thanks!
returnAddress = registers.getLR();
_LIBUNWIND_TRACE_UNWINDING("Use saved LR=%p",
reinterpret_cast<void *>(returnAddress));
hubert.reinterpretcastUnsubmitted
Done
ReplyInline Actions

The comment should say nothing about buying a stack frame. The link area is usable by a function for saving the return address even when said function does not increment the SP. As @stephenpeckham pointed out "offline", there can be even be non-leaf functions that do not buy a stack frame (e.g., because the functions they call are known to not write to the stack).

hubert.reinterpretcast: The comment should say nothing about buying a stack frame. The link area is usable by a…
xingxueAuthorUnsubmitted
Done
ReplyInline Actions

Removed the mentioning of buying a stack frame, thanks!

xingxue: Removed the mentioning of buying a stack frame, thanks!
} else {
// Otherwise, use the LR value in the stack link area.
returnAddress = reinterpret_cast<pint_t *>(lastStack)[2]; returnAddress = reinterpret_cast<pint_t *>(lastStack)[2];
}
// Reset LR in the current context.
hubert.reinterpretcastUnsubmitted
Done
ReplyInline Actions

Might be good to explicitly set returnAddress to 0 if lastStack is 0. That is, make this else if (lastStack).

hubert.reinterpretcast: Might be good to explicitly set `returnAddress` to `0` if `lastStack` is `0`. That is, make…
xingxueAuthorUnsubmitted
Done
ReplyInline Actions

Changed as suggested, thanks!

xingxue: Changed as suggested, thanks!
newRegisters.setLR(NULL);
hubert.reinterpretcastUnsubmitted
Done
ReplyInline Actions
reinterpret_cast<void *>(returnAddress));
- } else
+ } else {
// Otherwise, use the LR value in the stack link area.
returnAddress = reinterpret_cast<pint_t *>(lastStack)[2];
-
+ }
// Reset LR in the current context.

https://llvm.org/docs/CodingStandards.html#don-t-use-braces-on-simple-single-statement-bodies-of-if-else-loop-statements now states that braces should be used for each part of an if/else chain when one part needs braces.

hubert.reinterpretcast: https://llvm.org/docs/CodingStandards.html#don-t-use-braces-on-simple-single-statement-bodies…
xingxueAuthorUnsubmitted
Done
ReplyInline Actions

Changed as suggested, thanks!

xingxue: Changed as suggested, thanks!
_LIBUNWIND_TRACE_UNWINDING("Extract info from lastStack=%p, " _LIBUNWIND_TRACE_UNWINDING(
"returnAddress=%p\n", "Extract info from lastStack=%p, returnAddress=%p",
reinterpret_cast<void *>(lastStack), reinterpret_cast<void *>(lastStack),
reinterpret_cast<void *>(returnAddress)); reinterpret_cast<void *>(returnAddress));
_LIBUNWIND_TRACE_UNWINDING("fpr_regs=%d, gpr_regs=%d, saves_cr=%d\n", _LIBUNWIND_TRACE_UNWINDING("fpr_regs=%d, gpr_regs=%d, saves_cr=%d",
TBTable->tb.fpr_saved, TBTable->tb.gpr_saved, TBTable->tb.fpr_saved, TBTable->tb.gpr_saved,
TBTable->tb.saves_cr); TBTable->tb.saves_cr);
// Restore FP registers. // Restore FP registers.
char *ptrToRegs = reinterpret_cast<char *>(lastStack); char *ptrToRegs = reinterpret_cast<char *>(lastStack);
double *FPRegs = reinterpret_cast<double *>( double *FPRegs = reinterpret_cast<double *>(
ptrToRegs - (TBTable->tb.fpr_saved * sizeof(double))); ptrToRegs - (TBTable->tb.fpr_saved * sizeof(double)));
for (int i = 0; i < TBTable->tb.fpr_saved; ++i) for (int i = 0; i < TBTable->tb.fpr_saved; ++i)
▲ Show 20 LinesShow All 47 Lines▼ Show 20 Lines if (_info.flags == frameType::frameWithEHInfo && TBTable->tb.has_vec) {
} }
// Skip field alloc_reg if it exists. // Skip field alloc_reg if it exists.
if (TBTable->tb.uses_alloca) if (TBTable->tb.uses_alloca)
++charPtr; ++charPtr;
struct vec_ext *vec_ext = reinterpret_cast<struct vec_ext *>(charPtr); struct vec_ext *vec_ext = reinterpret_cast<struct vec_ext *>(charPtr);
_LIBUNWIND_TRACE_UNWINDING("vr_saved=%d\n", vec_ext->vr_saved); _LIBUNWIND_TRACE_UNWINDING("vr_saved=%d", vec_ext->vr_saved);
// Restore vector register(s) if saved on the stack. // Restore vector register(s) if saved on the stack.
if (vec_ext->vr_saved) { if (vec_ext->vr_saved) {
// Saved vector registers are 16-byte aligned. // Saved vector registers are 16-byte aligned.
if (reinterpret_cast<uintptr_t>(ptrToRegs) % 16) if (reinterpret_cast<uintptr_t>(ptrToRegs) % 16)
ptrToRegs -= reinterpret_cast<uintptr_t>(ptrToRegs) % 16; ptrToRegs -= reinterpret_cast<uintptr_t>(ptrToRegs) % 16;
v128 *VecRegs = reinterpret_cast<v128 *>(ptrToRegs - vec_ext->vr_saved * v128 *VecRegs = reinterpret_cast<v128 *>(ptrToRegs - vec_ext->vr_saved *
sizeof(v128)); sizeof(v128));
for (int i = 0; i < vec_ext->vr_saved; ++i) { for (int i = 0; i < vec_ext->vr_saved; ++i) {
newRegisters.setVectorRegister( newRegisters.setVectorRegister(
32 - vec_ext->vr_saved + i + unwPPCV0Index, VecRegs[i]); 32 - vec_ext->vr_saved + i + unwPPCV0Index, VecRegs[i]);
} }
} }
} }
if (TBTable->tb.saves_cr) { if (TBTable->tb.saves_cr) {
// Get the saved condition register. The condition register is only // Get the saved condition register. The condition register is only
// a single word. // a single word.
newRegisters.setCR( newRegisters.setCR(
*(reinterpret_cast<uint32_t *>(lastStack + sizeof(uintptr_t)))); *(reinterpret_cast<uint32_t *>(lastStack + sizeof(uintptr_t))));
} }
// Restore the SP. // Restore the SP.
newRegisters.setSP(lastStack); newRegisters.setSP(lastStack);
hubert.reinterpretcastUnsubmitted
Done
ReplyInline Actions

If lastStack truly "points to the stack frame of the next routine up" (as claimed where it is declared), then it is fine to restore the SP even given a leaf function.

hubert.reinterpretcast: If `lastStack` truly "points to the stack frame of the next routine up" (as claimed where it is…
xingxueAuthorUnsubmitted
Done
ReplyInline Actions

I agree. Removed those conditions, thanks!

xingxue: I agree. Removed those conditions, thanks!
// The first instruction after return. // The first instruction after return.
stephenpeckhamUnsubmitted
Done
ReplyInline Actions

I think the check should be for TBTable->tb.stores_bc. It is possible for stores_bc to be 0 but saves_lr to be 1. This case can occur if a "leaf" function calls an internal routine that the compiler knows is stackless. In this case, the LR is saved in the stack before calling the internal function, but the stack pointer is not updated.

stephenpeckham: I think the check should be for TBTable->tb.stores_bc. It is possible for stores_bc to be 0 but…
xingxueAuthorUnsubmitted
Done
ReplyInline Actions

I think the check should be for TBTable->tb.stores_bc. It is possible for stores_bc to be 0 but saves_lr to be 1. This case can occur if a "leaf" function calls an internal routine that the compiler knows is stackless. In this case, the LR is saved in the stack before calling the internal function, but the stack pointer is not updated.

Code has been added for the case where stores_bc is 0, thanks!

xingxue: > I think the check should be for TBTable->tb.stores_bc. It is possible for stores_bc to be 0…
hubert.reinterpretcastUnsubmitted
Done
ReplyInline Actions

I don't think there should a condition here at all. A fix needs to be made at line 2324 (otherwise the wrong link area would be used for retrieving a saved LR when stores_bc is 0 and saves_lr is 1).

hubert.reinterpretcast: I don't think there should a condition here at all. A fix needs to be made at line 2324…
xingxueAuthorUnsubmitted
Done
ReplyInline Actions

I don't think there should a condition here at all. A fix needs to be made at line 2324 (otherwise the wrong link area would be used for retrieving a saved LR when stores_bc is 0 and saves_lr is 1).

Code has been added for the case where stores_bc is 0. Removed the condition check here. Thanks!

xingxue: > I don't think there should a condition here at all. A fix needs to be made at line 2324…
uint32_t firstInstruction = *(reinterpret_cast<uint32_t *>(returnAddress)); uint32_t firstInstruction = *(reinterpret_cast<uint32_t *>(returnAddress));
// Do we need to set the TOC register? // Do we need to set the TOC register?
_LIBUNWIND_TRACE_UNWINDING( _LIBUNWIND_TRACE_UNWINDING(
"Current gpr2=%p\n", "Current gpr2=%p",
reinterpret_cast<void *>(newRegisters.getRegister(2))); reinterpret_cast<void *>(newRegisters.getRegister(2)));
if (firstInstruction == loadTOCRegInst) { if (firstInstruction == loadTOCRegInst) {
_LIBUNWIND_TRACE_UNWINDING( _LIBUNWIND_TRACE_UNWINDING(
"Set gpr2=%p from frame\n", "Set gpr2=%p from frame",
reinterpret_cast<void *>(reinterpret_cast<pint_t *>(lastStack)[5])); reinterpret_cast<void *>(reinterpret_cast<pint_t *>(lastStack)[5]));
newRegisters.setRegister(2, reinterpret_cast<pint_t *>(lastStack)[5]); newRegisters.setRegister(2, reinterpret_cast<pint_t *>(lastStack)[5]);
} }
} }
_LIBUNWIND_TRACE_UNWINDING("lastStack=%p, returnAddress=%p, pc=%p\n", _LIBUNWIND_TRACE_UNWINDING("lastStack=%p, returnAddress=%p, pc=%p\n",
reinterpret_cast<void *>(lastStack), reinterpret_cast<void *>(lastStack),
reinterpret_cast<void *>(returnAddress), reinterpret_cast<void *>(returnAddress),
reinterpret_cast<void *>(pc)); reinterpret_cast<void *>(pc));
// The return address is the address after call site instruction, so // The return address is the address after call site instruction, so
// setting IP to that simulates a return. // setting IP to that simulates a return.
newRegisters.setIP(reinterpret_cast<uintptr_t>(returnAddress)); newRegisters.setIP(reinterpret_cast<uintptr_t>(returnAddress));
// Simulate the step by replacing the register set with the new ones. // Simulate the step by replacing the register set with the new ones.
registers = newRegisters; registers = newRegisters;
// Check if the next frame is a signal frame. // Check if the next frame is a signal frame.
pint_t nextStack = *(reinterpret_cast<pint_t *>(registers.getSP())); pint_t nextStack = *(reinterpret_cast<pint_t *>(registers.getSP()));
// Return address is the address after call site instruction. // Return address is the address after call site instruction.
pint_t nextReturnAddress = reinterpret_cast<pint_t *>(nextStack)[2]; pint_t nextReturnAddress = reinterpret_cast<pint_t *>(nextStack)[2];
if (nextReturnAddress > 0x01 && nextReturnAddress < 0x10000) { if (nextReturnAddress > 0x01 && nextReturnAddress < 0x10000) {
stephenpeckhamUnsubmitted
Done
ReplyInline Actions

This code wasn't changed, but the check could be done at the beginning of the function instead of the end. With this change, isSignalFrame does not need to be updated.

stephenpeckham: This code wasn't changed, but the check could be done at the beginning of the function instead…
stephenpeckhamUnsubmitted
Done
ReplyInline Actions

Retracting this comment. The value of _isSignalFrame can be queried, so the value has to be computed here.

stephenpeckham: Retracting this comment. The value of _isSignalFrame can be queried, so the value has to be…
xingxueAuthorUnsubmitted
Done
ReplyInline Actions

isSignalFrame needs to be undated for libunwind call unw_is_signal_frame().

xingxue: `isSignalFrame` needs to be undated for libunwind call `unw_is_signal_frame()`.
_LIBUNWIND_TRACE_UNWINDING("The next is a signal handler frame: " _LIBUNWIND_TRACE_UNWINDING("The next is a signal handler frame: "
"nextStack=%p, next return address=%p\n", "nextStack=%p, next return address=%p\n",
reinterpret_cast<void *>(nextStack), reinterpret_cast<void *>(nextStack),
reinterpret_cast<void *>(nextReturnAddress)); reinterpret_cast<void *>(nextReturnAddress));
isSignalFrame = true; isSignalFrame = true;
} else { } else {
isSignalFrame = false; isSignalFrame = false;
} }
return UNW_STEP_SUCCESS; return UNW_STEP_SUCCESS;
} }
#endif // defined(_LIBUNWIND_SUPPORT_TBTAB_UNWIND) #endif // defined(_LIBUNWIND_SUPPORT_TBTAB_UNWIND)
template <typename A, typename R> template <typename A, typename R>
void UnwindCursor<A, R>::setInfoBasedOnIPRegister(bool isReturnAddress) { void UnwindCursor<A, R>::setInfoBasedOnIPRegister(bool isReturnAddress) {
#if defined(_LIBUNWIND_CHECK_LINUX_SIGRETURN) #if defined(_LIBUNWIND_CHECK_LINUX_SIGRETURN)
_isSigReturn = false; _isSigReturn = false;
▲ Show 20 LinesShow All 426 LinesShow Last 20 Lines

libunwind/src/UnwindRegistersSave.S

Show First 20 LinesShow All 346 Lines▼ Show 20 Lines#endif
PPC64_STR(29) PPC64_STR(29)
PPC64_STR(30) PPC64_STR(30)
PPC64_STR(31) PPC64_STR(31)
mfcr 0 mfcr 0
std 0, PPC64_OFFS_CR(3) std 0, PPC64_OFFS_CR(3)
mfxer 0 mfxer 0
std 0, PPC64_OFFS_XER(3) std 0, PPC64_OFFS_XER(3)
#if defined(_AIX)
// LR value saved from the register is not used, initialize it to 0.
li 0, 0
#else
mflr 0 mflr 0
#endif
std 0, PPC64_OFFS_LR(3) std 0, PPC64_OFFS_LR(3)
mfctr 0 mfctr 0
std 0, PPC64_OFFS_CTR(3) std 0, PPC64_OFFS_CTR(3)
mfvrsave 0 mfvrsave 0
std 0, PPC64_OFFS_VRSAVE(3) std 0, PPC64_OFFS_VRSAVE(3)
#if defined(__VSX__) #if defined(__VSX__)
// save VS registers // save VS registers
▲ Show 20 LinesShow All 196 Lines▼ Show 20 Lines#endif
stw 0, 0(3) // store lr as ssr0 stw 0, 0(3) // store lr as ssr0
stw 1, 12(3) stw 1, 12(3)
stw 4, 24(3) // Save r4 first since it will be used for fixing r2. stw 4, 24(3) // Save r4 first since it will be used for fixing r2.
#if defined(_AIX) #if defined(_AIX)
// The TOC register (r2) was changed by the glue code if unw_getcontext // The TOC register (r2) was changed by the glue code if unw_getcontext
// is called from a different module. Save the original TOC register // is called from a different module. Save the original TOC register
// in the context if this is the case. // in the context if this is the case.
mflr 4 mflr 4
lwz 4, 0(4) // Get the instruction at the return address. lwz 4, 0(4) // Get the instruction at the return address.
xoris 0, 4, 0x8041 // Is it reloading the TOC register "ld 2,40(1)"? xoris 0, 4, 0x8041 // Is it reloading the TOC register "lwz 2,20(1)"?
cmplwi 0, 0x14 cmplwi 0, 0x14
bne 0, LnoR2Fix // No need to fix up r2 if it is not. bne 0, LnoR2Fix // No need to fix up r2 if it is not.
lwz 2, 20(1) // Use the saved TOC register in the stack. lwz 2, 20(1) // Use the saved TOC register in the stack.
LnoR2Fix: LnoR2Fix:
#endif #endif
stw 2, 16(3) stw 2, 16(3)
stw 3, 20(3) stw 3, 20(3)
stw 5, 28(3) stw 5, 28(3)
Show All 27 Lines
#if defined(__ALTIVEC__) #if defined(__ALTIVEC__)
// save VRSave register // save VRSave register
mfspr 0, 256 mfspr 0, 256
stw 0, 156(3) stw 0, 156(3)
#endif #endif
// save CR registers // save CR registers
mfcr 0 mfcr 0
stw 0, 136(3) stw 0, 136(3)
#if defined(_AIX)
// LR value from the register is not used, initialize it to 0.
li 0, 0
stw 0, 144(3)
#endif
// save CTR register // save CTR register
mfctr 0 mfctr 0
stw 0, 148(3) stw 0, 148(3)
#if !defined(__NO_FPRS__) #if !defined(__NO_FPRS__)
// save float registers // save float registers
stfd 0, 160(3) stfd 0, 160(3)
stfd 1, 168(3) stfd 1, 168(3)
▲ Show 20 LinesShow All 552 LinesShow Last 20 Lines

libunwind/test/aix_signal_unwind.pass.sh.S

  • This file was added.
//===----------------------------------------------------------------------===//
//
// Part of the LLVM Project, under the Apache License v2.0 with LLVM Exceptions.
// See https://llvm.org/LICENSE.txt for license information.
// SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception
//
//===----------------------------------------------------------------------===//
// Test that _Unwind_Backtrace() walks up from a signal handler and produces
// a correct traceback when the function raising the signal does not save
// the link register or does not store the stack back chain.
// REQUIRES: target=powerpc{{(64)?}}-ibm-aix
// Test when the function raising the signal does not save the link register
// RUN: %{cxx} -x c++ %s -o %t.exe -DCXX_CODE %{flags} %{compile_flags}
// RUN: %{exec} %t.exe
// Test when the function raising the signal does not store stack back chain.
// RUN: %{cxx} -x c++ -c %s -o %t1.o -DCXX_CODE -DNOBACKCHAIN %{flags} \
// RUN: %{compile_flags}
// RUN: %{cxx} -c %s -o %t2.o %{flags} %{compile_flags}
// RUN: %{cxx} -o %t1.exe %t1.o %t2.o %{flags} %{link_flags}
// RUN: %{exec} %t1.exe
#ifdef CXX_CODE
#undef NDEBUG
#include <assert.h>
#include <signal.h>
#include <stdio.h>
#include <stdlib.h>
#include <string.h>
#include <sys/debug.h>
#include <unwind.h>
#define NAME_ARRAY_SIZE 10
#define NAMES_EXPECTED 6
const char* namesExpected[] = {"handler", "abc", "bar", "foo", "main",
"__start"};
char *namesObtained[NAME_ARRAY_SIZE] = {0, 0, 0, 0, 0, 0, 0, 0, 0, 0};
int funcIndex = 0;
// Get the function name from traceback table.
char *getFuncName(uintptr_t pc, uint16_t *nameLen) {
uint32_t *p = reinterpret_cast<uint32_t *>(pc);
// Keep looking forward until a word of 0 is found. The traceback
// table starts at the following word.
while (*p)
++p;
tbtable *TBTable = reinterpret_cast<tbtable *>(p + 1);
if (!TBTable->tb.name_present)
return NULL;
// Get to the optional portion of the traceback table.
p = reinterpret_cast<uint32_t *>(&TBTable->tb_ext);
// Skip field parminfo if it exists.
if (TBTable->tb.fixedparms || TBTable->tb.floatparms)
++p;
// Skip field tb_offset if it exists.
if (TBTable->tb.has_tboff)
++p;
// Skip field hand_mask if it exists.
if (TBTable->tb.int_hndl)
++p;
// Skip fields ctl_info and ctl_info_disp if they exist.
if (TBTable->tb.has_ctl)
p += 1 + *p;
*nameLen = *reinterpret_cast<uint16_t *>(p);
return reinterpret_cast<char *>(p) + sizeof(uint16_t);
}
_Unwind_Reason_Code callBack(struct _Unwind_Context *uc, void *arg) {
(void)arg;
uint16_t nameLen;
uintptr_t ip = _Unwind_GetIP(uc);
if (funcIndex < NAME_ARRAY_SIZE)
namesObtained[funcIndex++] = strndup(getFuncName(ip, &nameLen), nameLen);
return _URC_NO_REASON;
}
extern "C" void handler(int signum) {
(void)signum;
// Walk stack frames for traceback.
_Unwind_Backtrace(callBack, NULL);
// Verify the traceback.
assert(funcIndex <= NAMES_EXPECTED && "Obtained names more than expected");
for (int i = 0; i < funcIndex; ++i) {
assert(!strcmp(namesExpected[i], namesObtained[i]) &&
"Function names do not match");
free(namesObtained[i]);
}
exit(0);
}
#ifdef NOBACKCHAIN
// abc() is in assembly. It raises signal SIGSEGV and does not store
// the stack back chain.
extern "C" void abc();
#else
volatile int *null = 0;
// abc() raises signal SIGSEGV and does not save the link register.
extern "C" __attribute__((noinline)) void abc() {
// Produce a SIGSEGV.
*null = 0;
}
#endif
extern "C" __attribute__((noinline)) void bar() {
abc();
}
extern "C" __attribute__((noinline)) void foo() {
bar();
}
int main() {
// Set signal handler for SIGSEGV.
signal(SIGSEGV, handler);
foo();
}
#else // Assembly code for abc().
// This assembly code is similar to the following C code but it saves the
// link register.
//
// int *badp = 0;
// void abc() {
// *badp = 0;
// }
#ifdef __64BIT__
.csect [PR],5
.file "abc.c"
.globl abc[DS] # -- Begin function abc
.globl .abc
.align 4
.csect abc[DS],3
.vbyte 8, .abc # @abc
.vbyte 8, TOC[TC0]
.vbyte 8, 0
.csect [PR],5
.abc:
# %bb.0: # %entry
mflr 0
std 0, 16(1)
ld 3, L..C0(2) # @badp
bl $+4
stephenpeckhamUnsubmitted
Done
ReplyInline Actions

I suggest you add "bl $+4" to modify LR as if an internal function had been called.

stephenpeckham: I suggest you add "bl $+4" to modify LR as if an internal function had been called.
xingxueAuthorUnsubmitted
Done
ReplyInline Actions

Added the instruction as suggested, thanks!

xingxue: Added the instruction as suggested, thanks!
ld 4, 0(3)
li 3, 0
stw 3, 0(4)
ld 0, 16(1)
mtlr 0
blr
L..abc0:
.vbyte 4, 0x00000000 # Traceback table begin
.byte 0x00 # Version = 0
.byte 0x09 # Language = CPlusPlus
.byte 0x20 # -IsGlobaLinkage, -IsOutOfLineEpilogOrPrologue
# +HasTraceBackTableOffset, -IsInternalProcedure
# -HasControlledStorage, -IsTOCless
# -IsFloatingPointPresent
# -IsFloatingPointOperationLogOrAbortEnabled
.byte 0x61 # -IsInterruptHandler, +IsFunctionNamePresent, +IsAllocaUsed
# OnConditionDirective = 0, -IsCRSaved, +IsLRSaved
.byte 0x00 # -IsBackChainStored, -IsFixup, NumOfFPRsSaved = 0
.byte 0x01 # -HasExtensionTable, -HasVectorInfo, NumOfGPRsSaved = 1
.byte 0x00 # NumberOfFixedParms = 0
.byte 0x01 # NumberOfFPParms = 0, +HasParmsOnStack
.vbyte 4, L..abc0-.abc # Function size
.vbyte 2, 0x0003 # Function name len = 3
.byte "abc" # Function Name
.byte 0x1f # AllocaUsed
# -- End function
.csect badp[RW],3
.globl badp[RW] # @badp
.align 3
.vbyte 8, 0
.toc
L..C0:
.tc badp[TC],badp[RW]
#else
.csect [PR],5
.file "abc.c"
.globl abc[DS] # -- Begin function abc
.globl .abc
.align 4
.csect abc[DS],2
.vbyte 4, .abc # @abc
.vbyte 4, TOC[TC0]
.vbyte 4, 0
.csect [PR],5
.abc:
# %bb.0: # %entry
mflr 0
stw 0, 8(1)
lwz 3, L..C0(2) # @badp
stephenpeckhamUnsubmitted
Done
ReplyInline Actions

add "bl $+4"

stephenpeckham: add "bl $+4"
xingxueAuthorUnsubmitted
Done
ReplyInline Actions

Added the instruction as suggested, thanks!

xingxue: Added the instruction as suggested, thanks!
bl $+4
lwz 4, 0(3)
li 3, 0
stw 3, 0(4)
lwz 0, 8(1)
mtlr 0
blr
L..abc0:
.vbyte 4, 0x00000000 # Traceback table begin
.byte 0x00 # Version = 0
.byte 0x09 # Language = CPlusPlus
.byte 0x20 # -IsGlobaLinkage, -IsOutOfLineEpilogOrPrologue
# +HasTraceBackTableOffset, -IsInternalProcedure
# -HasControlledStorage, -IsTOCless
# -IsFloatingPointPresent
# -IsFloatingPointOperationLogOrAbortEnabled
.byte 0x61 # -IsInterruptHandler, +IsFunctionNamePresent, +IsAllocaUsed
# OnConditionDirective = 0, -IsCRSaved, +IsLRSaved
.byte 0x00 # -IsBackChainStored, -IsFixup, NumOfFPRsSaved = 0
.byte 0x01 # -HasExtensionTable, -HasVectorInfo, NumOfGPRsSaved = 1
.byte 0x00 # NumberOfFixedParms = 0
.byte 0x01 # NumberOfFPParms = 0, +HasParmsOnStack
.vbyte 4, L..abc0-.abc # Function size
.vbyte 2, 0x0003 # Function name len = 3
.byte "abc" # Function Name
.byte 0x1f # AllocaUsed
# -- End function
.csect badp[RW],2
.globl badp[RW] # @badp
.align 2
.vbyte 4, 0
.toc
L..C0:
.tc badp[TC],badp[RW]
#endif // __64BIT__
#endif // CXX_CODE