linux

mirror of https://github.com/torvalds/linux.git synced 2024-12-23 11:21:33 +00:00

History

Adrian Hunter 886b37baa6 perf annotate: Fix objdump line parsing offset validation When parsing lines from objdump a line containing source code starting with a numeric label is mistaken for a line of disassembly starting with a memory address. Current validation fails to recognise that the "memory address" is out of range and calculates an invalid offset which later causes this segfault: Program received signal SIGSEGV, Segmentation fault. 0x0000000000457315 in disasm__calc_percent (notes=0xc98970, evidx=0, offset=143705, end=2127526177, path=0x7fffffffbf50) at util/annotate.c:631 631 hits += h->addr[offset++]; (gdb) bt #0 0x0000000000457315 in disasm__calc_percent (notes=0xc98970, evidx=0, offset=143705, end=2127526177, path=0x7fffffffbf50) at util/annotate.c:631 #1 0x00000000004d65e3 in annotate_browser__calc_percent (browser=0x7fffffffd130, evsel=0xa01da0) at ui/browsers/annotate.c:364 #2 0x00000000004d7433 in annotate_browser__run (browser=0x7fffffffd130, evsel=0xa01da0, hbt=0x0) at ui/browsers/annotate.c:672 #3 0x00000000004d80c9 in symbol__tui_annotate (sym=0xc989a0, map=0xa02660, evsel=0xa01da0, hbt=0x0) at ui/browsers/annotate.c:962 #4 0x00000000004d7aa0 in hist_entry__tui_annotate (he=0xdf73f0, evsel=0xa01da0, hbt=0x0) at ui/browsers/annotate.c:823 #5 0x00000000004dd648 in perf_evsel__hists_browse (evsel=0xa01da0, nr_events=1, helpline= 0x58b768 "For a higher level overview, try: perf report --sort comm,dso", ev_name=0xa02cd0 "cycles", left_exits=false, hbt= 0x0, min_pcnt=0, env=0xa011e0) at ui/browsers/hists.c:1659 #6 0x00000000004de372 in perf_evlist__tui_browse_hists (evlist=0xa01520, help= 0x58b768 "For a higher level overview, try: perf report --sort comm,dso", hbt=0x0, min_pcnt=0, env=0xa011e0) at ui/browsers/hists.c:1950 #7 0x000000000042cf6b in __cmd_report (rep=0x7fffffffd6c0) at builtin-report.c:581 #8 0x000000000042e25d in cmd_report (argc=0, argv=0x7fffffffe4b0, prefix=0x0) at builtin-report.c:965 #9 0x000000000041a0e1 in run_builtin (p=0x801548, argc=1, argv=0x7fffffffe4b0) at perf.c:319 #10 0x000000000041a319 in handle_internal_command (argc=1, argv=0x7fffffffe4b0) at perf.c:376 #11 0x000000000041a465 in run_argv (argcp=0x7fffffffe38c, argv=0x7fffffffe380) at perf.c:420 #12 0x000000000041a707 in main (argc=1, argv=0x7fffffffe4b0) at perf.c:521 After the fix is applied the symbol can be annotated showing the problematic line "1: rep" copy_user_generic_string /usr/lib/debug/lib/modules/3.9.10-100.fc17.x86_64/vmlinux / ENTRY(copy_user_generic_string) CFI_STARTPROC ASM_STAC andl %edx,%edx and %edx,%edx jz 4f je 37 cmpl $8,%edx cmp $0x8,%edx jb 2f / less than 8 bytes, go to byte copy loop */ jb 33 ALIGN_DESTINATION mov %edi,%ecx and $0x7,%ecx je 28 sub $0x8,%ecx neg %ecx sub %ecx,%edx 1a: mov (%rsi),%al mov %al,(%rdi) inc %rsi inc %rdi dec %ecx jne 1a movl %edx,%ecx 28: mov %edx,%ecx shrl $3,%ecx shr $0x3,%ecx andl $7,%edx and $0x7,%edx 1: rep 100.00 rep movsq %ds:(%rsi),%es:(%rdi) movsq 2: movl %edx,%ecx 33: mov %edx,%ecx 3: rep rep movsb %ds:(%rsi),%es:(%rdi) movsb 4: xorl %eax,%eax 37: xor %eax,%eax data32 xchg %ax,%ax ASM_CLAC ret retq Signed-off-by: Adrian Hunter <adrian.hunter@intel.com> Cc: David Ahern <dsahern@gmail.com> Cc: Frederic Weisbecker <fweisbec@gmail.com> Cc: Ingo Molnar <mingo@kernel.org> Cc: Jiri Olsa <jolsa@redhat.com> Cc: Mike Galbraith <efault@gmx.de> Cc: Namhyung Kim <namhyung@gmail.com> Cc: Paul Mackerras <paulus@samba.org> Cc: Peter Zijlstra <peterz@infradead.org> Cc: Stephane Eranian <eranian@google.com> Link: http://lkml.kernel.org/r/1379009721-27667-1-git-send-email-adrian.hunter@intel.com Signed-off-by: Arnaldo Carvalho de Melo <acme@redhat.com>		2013-09-19 11:32:17 -03:00
..
arch	perf tools: Fix compile of util/tsc.c	2013-08-07 17:35:24 -03:00
bench	perf bench: Fix memcpy benchmark for large sizes	2013-07-22 12:41:56 -03:00
config	perf tools: Sharpen the libaudit dependencies test	2013-09-19 11:32:17 -03:00
Documentation	perf trace: Add option to analyze events in a file versus live	2013-08-29 17:42:34 -03:00
python	perf python: Remove duplicate TID bit from mask	2013-08-07 17:35:25 -03:00
scripts	perf script: Fix broken include in Context.xs	2013-07-10 13:47:00 -03:00
tests	perf tools: Add attr->mmap2 support	2013-09-11 10:09:32 -03:00
ui	perf hists: Fix formatting of long symbol names	2013-09-05 16:18:28 -03:00
util	perf annotate: Fix objdump line parsing offset validation	2013-09-19 11:32:17 -03:00
.gitignore	perf tools: Ignore compiled python binaries	2012-09-07 12:10:58 -03:00
bash_completion	perf tools: Complete tracepoint event names	2012-10-04 12:44:52 -03:00
builtin-annotate.c	perf tools: Add attr->mmap2 support	2013-09-11 10:09:32 -03:00
builtin-bench.c	perf tools: Make numa benchmark optional	2013-01-30 10:36:21 -03:00
builtin-buildid-cache.c	perf buildid-cache: Add --update option	2013-02-14 14:59:27 -03:00
builtin-buildid-list.c	perf symbols: Generalize filter in __fprintf_buildid methods	2012-12-09 08:46:07 -03:00
builtin-diff.c	perf tools: Remove filter parameter of perf_event__preprocess_sample()	2013-08-12 10:31:11 -03:00
builtin-evlist.c	perf evlist: Pass the event_group info via perf_attr_details	2013-02-06 18:09:28 -03:00
builtin-help.c	perf help: Fix --help for builtins	2012-10-22 12:35:49 -02:00
builtin-inject.c	perf tools: Add attr->mmap2 support	2013-09-11 10:09:32 -03:00
builtin-kmem.c	perf tools: Remove references to struct ip_event	2013-08-29 15:29:28 -03:00
builtin-kvm.c	perf kvm: Fix sample_type manipulation	2013-09-09 16:13:11 -03:00
builtin-list.c	perf list: List kernel supplied event aliases	2013-07-12 13:53:53 -03:00
builtin-lock.c	perf tools: change machine__findnew_thread() to set thread pid	2013-08-29 11:51:31 -03:00
builtin-mem.c	perf tools: Add attr->mmap2 support	2013-09-11 10:09:32 -03:00
builtin-probe.c	perf tools: Introduce tools/lib/lk library	2013-03-15 13:06:00 -03:00
builtin-record.c	perf tools: Remove event types framework completely	2013-07-15 16:28:22 -03:00
builtin-report.c	perf tools: Add attr->mmap2 support	2013-09-11 10:09:32 -03:00
builtin-sched.c	perf tools: change machine__findnew_thread() to set thread pid	2013-08-29 11:51:31 -03:00
builtin-script.c	perf tools: Add attr->mmap2 support	2013-09-11 10:09:32 -03:00
builtin-stat.c	perf stat: Flush output after each line in interval mode	2013-08-07 17:35:29 -03:00
builtin-timechart.c	perf timechart: Remove event types framework only user	2013-07-15 16:14:47 -03:00
builtin-top.c	perf tools: Remove references to struct ip_event	2013-08-29 15:29:28 -03:00
builtin-trace.c	perf tools: Fill in new definitions for madvise()/mmap() flags	2013-09-19 11:32:17 -03:00
builtin.h	perf tools: Add new mem command for memory access profiling	2013-04-01 12:21:44 -03:00
command-list.txt	perf tools: Add new mem command for memory access profiling	2013-04-01 12:21:44 -03:00
CREDITS
design.txt	perf tools: Update ioctl documentation for PERF_IOC_FLAG_GROUP	2012-05-31 11:38:42 -03:00
Makefile	perf tools: Add test for parsing with no sample_id_all bit	2013-09-05 16:17:46 -03:00
MANIFEST	perf tools: Introduce tools/lib/lk library	2013-03-15 13:06:00 -03:00
perf-archive.sh	perf archive: Make 'f' the last parameter for tar	2012-09-17 13:10:42 -03:00
perf.c	perf tools: Convert needless static variable to local	2013-04-01 12:22:48 -03:00
perf.h	perf kvm: Option to print events that exceed a duration	2013-08-12 10:31:04 -03:00