From: "Ulrich Weigand" <uweigand@de.ibm.com>
To: gdb-patches@sourceware.org
Cc: drow@false.org
Subject: [rfa/gdbserver] Fix crash in thread_db_get_tls_address
Date: Wed, 21 Jan 2009 22:57:00 -0000 [thread overview]
Message-ID: <200901212257.n0LMvkTQ029040@d12av02.megacenter.de.ibm.com> (raw)
Hello,
when debugging remotely using a GDB with private modifcations, I'm running
into a crash in gdbserver, which I believe to be a real bug (even if latent
with mainline GDB).
The problem occurs when the thread_db_get_tls_address routine is invoked
(as a result of processing a qGetTLSAddr: query) on an inferior that
actually has no threads (or where the thread layer is not initialized yet).
This is caused by thread_db_get_tls_address calling find_one_thread,
which in the end calls down into the libthread_db td_ta_map_lwp2thr
routine -- at a time libthread_db is not yet initialized, and in fact
the "thread_agent" handle passed to td_ta_map_lwp2thr was not yet
set up. This results in a segfault within libthread_db.
Now I guess it is debatable whether or not sending a qGetTLSAddr:
query in this situation is a useful thing, but it seems to me that
gdbserver shouldn't just *crash* ...
The following patch fixes this by returning failure from
thread_db_get_tls_address if called before the thread layer
is properly initialized.
Tested on powerpc64-linux (64-bit / 32-bit) using local gdbserver.
OK for mainline?
Bye,
Ulrich
ChangeLog:
* thread-db.c (thread_db_get_tls_address): Do not crash if
called when thread layer is not yet initialized.
Index: src/gdb/gdbserver/thread-db.c
===================================================================
--- src.orig/gdb/gdbserver/thread-db.c
+++ src/gdb/gdbserver/thread-db.c
@@ -388,6 +388,10 @@ thread_db_get_tls_address (struct thread
td_err_e err;
struct process_info *process;
+ /* If the thread layer is not (yet) initialized, fail. */
+ if (!all_symbols_looked_up)
+ return -1;
+
process = get_thread_process (thread);
if (!process->thread_known)
find_one_thread (process->lwpid);
--
Dr. Ulrich Weigand
GNU Toolchain for Linux on System z and Cell BE
Ulrich.Weigand@de.ibm.com
next reply other threads:[~2009-01-21 22:57 UTC|newest]
Thread overview: 10+ messages / expand[flat|nested] mbox.gz Atom feed top
2009-01-21 22:57 Ulrich Weigand [this message]
2009-01-22 9:18 ` Doug Evans
2009-01-22 15:06 ` Ulrich Weigand
2009-01-23 1:08 ` Doug Evans
2009-04-03 18:07 ` [rfa/gdbserver] Updated: " Ulrich Weigand
2009-04-03 18:26 ` Pedro Alves
2009-04-03 19:20 ` Ulrich Weigand
2009-04-03 19:24 ` Pedro Alves
2009-04-03 20:17 ` Ulrich Weigand
2009-04-03 18:29 ` Daniel Jacobowitz
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=200901212257.n0LMvkTQ029040@d12av02.megacenter.de.ibm.com \
--to=uweigand@de.ibm.com \
--cc=drow@false.org \
--cc=gdb-patches@sourceware.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox