Re: Questionable SIGSEGV signal handling bug concerning siginfo.si_addr on i386-linux 2.4.2

From: Brian Gerst (bgerst@didntduck.org)
Date: Tue Jun 26 2001 - 09:49:29 EST

Next message: Bulent Abali: "Re: all processes waiting in TASK_UNINTERRUPTIBLE state"
Previous message: Hugo Mildenberger: "Questionable SIGSEGV signal handling bug concerning siginfo.si_addr on i386-linux 2.4.2"
In reply to: Hugo Mildenberger: "Questionable SIGSEGV signal handling bug concerning siginfo.si_addr on i386-linux 2.4.2"
Next in thread: Hugo Mildenberger: "AW: Questionable SIGSEGV signal handling bug concerning siginfo.si_addr on i386-linux 2.4.2"
Reply: Hugo Mildenberger: "AW: Questionable SIGSEGV signal handling bug concerning siginfo.si_addr on i386-linux 2.4.2"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hugo Mildenberger wrote:
>
> Dear friends,
>
> I'm working on a library, which is able to map (at least synchronous) kernel
> signals to c++ exceptions in a way, that c++ exception handlers can
> determine reason and location of failure in a very detailed manner. Within
> that context, I detected a surprising difference in the behaviour of my test
> programs, depending on if they have been compiled by gcc-2.9.2 or gcc-3.0.
> When I compiled the program with gcc-3.0, siginfo.si_addr contained an
> address, which was always by a value of +4 too large when compared to the
> original invalid pointer value (e.g.0x1238 versus 0x1234 or 0x4 versus 0x0).
> By contrast, the gcc-2.9.2 compiled program behaved correctly.
>
> That symptom, as I thought, may have been caused by a subtile processor bug,
> which depends on register usage or instruction ordering. And I tracked it
> down to the following difference in offending instructions (both are located
> in the same routine of my test program and causing the expected SIGSEGV,
> suppose eax would contain a value of 0x1234):
>
> ->gcc-2.95.2: 807c38a: dd 00 fldl (%eax)
> ->gcc-3.0: 806e457: 8b 70 04 mov 0x4(%eax),%esi
>
> siginfo.si_addr contained a correct value in the first case, but an offset
> of +4 compared to the original eax value in the second case.

What you are seeing is the correct behavior. The address in si_addr is
the exact address that caused the page fault (from register %cr2). It
appears that you were trying to access an element of a structure, where
the structure pointer was in %eax and the offset of the element within
the structure is 4 bytes. I suggest that if you are trying to find out
if a fault happened inside a structure you check the whole range of
addresses in that structure, because any of them could have faulted.

Brian Gerst - To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/

Next message: Bulent Abali: "Re: all processes waiting in TASK_UNINTERRUPTIBLE state"
Previous message: Hugo Mildenberger: "Questionable SIGSEGV signal handling bug concerning siginfo.si_addr on i386-linux 2.4.2"
In reply to: Hugo Mildenberger: "Questionable SIGSEGV signal handling bug concerning siginfo.si_addr on i386-linux 2.4.2"
Next in thread: Hugo Mildenberger: "AW: Questionable SIGSEGV signal handling bug concerning siginfo.si_addr on i386-linux 2.4.2"
Reply: Hugo Mildenberger: "AW: Questionable SIGSEGV signal handling bug concerning siginfo.si_addr on i386-linux 2.4.2"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Sat Jun 30 2001 - 21:00:14 EST