UAE debugger updates (executable debugging, segment tracking, symbols and more)

[selco]

>winuae.7z updated, added one more path variant test..



It is still the older file from May,28th ?

[Toni Wilen]

Sometimes cached data is returned even when file is updated. Reuploaded today, try again..

[FlynnTheAvatar]

Hi Toni,

WinUAE Public Beta 11 crashes hard when I try to debug a minimal assembler program linked with NDK2.0 astartup.obj:

Code:

	opt	l+

	XDEF	_main
_main:
	rts

Compiling with Devpac 3.18 and linking with BLINK 5.10B (SAS/C 5.10B):
genam minimal.s
blink from include2.0:startups/Astartup.obj,minimal.o lib include3.9:linker_libs/amiga.lib to minimal

uaedbg minimal

Quote:

Automatically allocated debugmem location: 70000000 - 7fffffff 10000000
Loaded 'amiga.lib', 76 libraries, 1295 LVOs.
Loading executable, exe=0781e3f8
Hunk 0: 32 symbols loaded.
Hunk 1: 8 symbols loaded.
Segment 1: 000003e9 70008000 - 70008293 (660)
Segment 2: 000003ea 70010300 - 7001032b (44)
Segment 3: 000003e9 70018400 - 7001840b (12)
Segment 4: 0000ffff 70020500 - 700214ff (4096)
Executable load complete.
19 libraries matched with library symbols.
D0 00000001 D1 01E073F9 D2 00001000 D3 07802394
D4 00000008 D5 01E06EB1 D6 01E05E87 D7 0781CFE4
A0 0780239C A1 0781D3F8 A2 07810C84 A3 0781CFE4
A4 0781E3F0 A5 00F959E6 A6 00F959DA A7 700214F8
USP 700214F8 ISP 07802288 SFC 00000000 DFC 00000000
CACR 00002001 VBR 00000000 CAAR 00000000 MSP 00000000
T=00 S=0 M=0 X=1 N=0 Z=0 V=0 C=0 IMASK=0 STP=0
0: 7FFF-FFFFFFFF-FFFFFFFF +nan 7FFF-FFFFFFFF-FFFFFFFF +nan
2: 7FFF-FFFFFFFF-FFFFFFFF +nan 7FFF-FFFFFFFF-FFFFFFFF +nan
4: 7FFF-FFFFFFFF-FFFFFFFF +nan 7FFF-FFFFFFFF-FFFFFFFF +nan
6: 7FFF-FFFFFFFF-FFFFFFFF +nan 7FFF-FFFFFFFF-FFFFFFFF +nan
FPSR: 00000000 FPCR: 00000000 FPIAR: 00000000 N=0 Z=0 I=0 NAN=0
Segment 1: 000003e9 70008000-70008293
startup:
70008008 [000000] 2400 MOVE.L D0,D2
Next PC: 7000800a
>g
AllocMem ID= 5: 00000000 70029500 - 7002951d (30) AllocFlags: 00010001 PC: 7000806a

Please find the configuration, log files and dump attached.

Thank you.

[selco]

You must disable JIT before. Did you?

[FlynnTheAvatar]

Yes, I know. I configured a 68030 with 68882 and JIT disabled.

[Toni Wilen]

Attach also your test executable. It probably is needed, at least to confirm the fix quickly.

[FlynnTheAvatar]

Sure, please find the test executable attached.

The crash happens right after the AllocMem call for parsing the command line.

[Toni Wilen]

Fixed, redownload uaedbg.zip. Startup code uses pr_ReturnAddr which was not adjusted.

[FlynnTheAvatar]

Thank you very much for fixing it so quickly. No more crashes.

[Toni Wilen]

Quick new feature: break to debugger when debugged task causes any unexpected exception. Uses tc_TrapCode so if debugged program also sets it, it should properly call old handler if program's own handler gets unexpected exception.

Note: currently debugger breaks to internal uaedbg trap code routine. You need to manually trace few following instructions to get back to user code. EDIT: Fixed, now it automatically executes out of exception routine and then breaks to debugger.

Also note that it automatically adjusts stack and returns to following instruction even if 68k documentation says it should have returned to instruction that caused the exception.

[selco]

Stupid question:
What is "uninitialized memory"? How is that detected? What marks memory "initialized"?


I am testing here an gcc/libnix-compiled program and get the messeage in fread()-call when inside fread() the stream-buffer is acessed. The buffer was filled before from an AmigaOS-Read()-call and the program works just fine.


Invalid access. Addr=70149510 RW=R Size=1: Reading uninitialized memory
Page: 70149500 - 701495ff. State=R Modified=-, Start=00, End=100
D0 000000DD D1 7014950D D2 00000000 D3 00000000
D4 00000000 D5 00000000 D6 00000000 D7 401B41CC
A0 70216B28 A1 70149510 A2 700A848C A3 700A84C8
A4 4021FD80 A5 701202B4 A6 40000830 A7 7012028C
USP 7012028C ISP 400022A8 SFC 00000000 DFC 00000000
CACR 00000001 VBR 00000000 CAAR 00000000 MSP 00000000
T=00 S=0 M=0 X=1 N=1 Z=0 V=0 C=0 IMASK=0 STP=0
0: 7FFF-FFFFFFFF-FFFFFFFF +nan 7FFF-FFFFFFFF-FFFFFFFF +nan
2: 7FFF-FFFFFFFF-FFFFFFFF +nan 7FFF-FFFFFFFF-FFFFFFFF +nan
4: 7FFF-FFFFFFFF-FFFFFFFF +nan 7FFF-FFFFFFFF-FFFFFFFF +nan
6: 7FFF-FFFFFFFF-FFFFFFFF +nan 7FFF-FFFFFFFF-FFFFFFFF +nan
FPSR: 00000000 FPCR: 00000090 FPIAR: 00f8161a N=0 Z=0 I=0 NAN=0
70045F1E [03DF16] 1011 MOVE.B (A1) [6d],D0
Segment 1: 000003e9 70008000-700a03b3
70045F20 [03DF18] 1080 MOVE.B D0,(A0) [00]
Next PC: 70045f22

[Toni Wilen]

Uninitialized = memory was allocated with allocmem/allocvec without MEMF_CLEAR flag and someone read from address that wasn't previously written to at least once.

It is not always a bug.

[selco]

Thanks for explaination!


Does that always work?


I have file with "1234567890abcdf..." as contents. That file is beeing fopened and fread.


fread() does internally an AmigaOS Read() to a internal stream buffer. Then the internal stream buffer is copied to the fread-argument. This copy stops the debugger. I see however in the debugger the internal stream buffer and it contains the values from the file, so the file was read and the values have been stored into the stream buffer. So the stream buffer cannot be uninitalited any more!?


Can AmigaOS Read() somehow outsmart your memory-not-initialised detection?


Invalid access. Addr=70149710 RW=R Size=1: Reading uninitialized memory
Page: 70149700 - 701497ff. State=R Modified=-, Start=00, End=100
D0 000000DD D1 7014970D D2 00000000 D3 00000000
D4 00000000 D5 00000000 D6 00000000 D7 401B4614
A0 70149710 A1 7014970F A2 700A868C A3 700A86C8
A4 4021FE98 A5 701204B4 A6 40000830 A7 7012048C
USP 7012048C ISP 400022A8 SFC 00000000 DFC 00000000
CACR 00000001 VBR 00000000 CAAR 00000000 MSP 00000000
T=00 S=0 M=0 X=0 N=1 Z=0 V=0 C=0 IMASK=0 STP=0
0: 7FFF-FFFFFFFF-FFFFFFFF +nan 7FFF-FFFFFFFF-FFFFFFFF +nan
2: 7FFF-FFFFFFFF-FFFFFFFF +nan 7FFF-FFFFFFFF-FFFFFFFF +nan
4: 7FFF-FFFFFFFF-FFFFFFFF +nan 7FFF-FFFFFFFF-FFFFFFFF +nan
6: 7FFF-FFFFFFFF-FFFFFFFF +nan 7FFF-FFFFFFFF-FFFFFFFF +nan
FPSR: 00000000 FPCR: 00000090 FPIAR: 00f8161a N=0 Z=0 I=0 NAN=0
70045FD2 [03DFCA] 1010 MOVE.B (A0) [35],D0
Segment 1: 000003e9 70008000-700a057b
70045FD4 [03DFCC] 1000 MOVE.B D0,D0
Next PC: 70045fd6
>m 7014970d
7014970D 3233 3435 3637 3839 3061 6263 6465 6667 234567890abcdefg
7014971D 6869 6A6C 6B6D 6E6F 7071 7273 7475 7677 hijlkmnopqrstuvw
7014972D 7879 7A0A 9999 9999 9999 9999 9999 9999 xyz.............
7014973D 9999 9999 9999 9999 9999 9999 9999 9999 ................
7014974D 9999 9999 9999 9999 9999 9999 9999 9999 ................

[Toni Wilen]

Right, directory filesystem and uae hardfiles bypass all normal memory access functions and access the host RAM directly (DMA-like) so debugger can't see it either..

Workaround added that forces indirect mode when debugger is enabled.

[selco]

Your fix seemes to have solved my fread() issue.
Thnx!


Now I get a unitilized access later which I am inverstigating currently.
I wanted to see where it happened and entered "rs" to show the stackframe. It shows the following lines and then crashes. Please find dump and bootloag attached.

Code:

>rs
70008066 -> 7000a4b0 SP=7011f488 [0024A8] Segment 1: 000003e9 70008000-7009f62f _main
70008066 [00005E] 4eb9 7000 a4b0           JSR $7000a4b0 _main
7000806C [000064] 2f40 0004                MOVE.L D0,(A7, $0004) == $7011f48c [00000003]

7000b9cc -> 70009fe4 SP=7011f404 [001FDC] Segment 1: 000003e9 70008000-7009f62f
7000B9CC [0039C4] 4eba e616                JSR (PC,$e616) == $70009fe4
7000B9D0 [0039C8] 2039 700b 90cc           MOVE.L $700b90cc [00000000],D0

7000a124 -> 7004601c SP=7011f3e8 [03E014] Segment 1: 000003e9 70008000-7009f62f __Z10LoadPhDataPi
7000A124 [00211C] 4eb9 7004 601c           JSR $7004601c __Z10LoadPhDataPi
7000A12A [002122] 588f                     ADDA.L #$04,A7

7004644e -> 7009b6a0 SP=7011f3ac [093698] Segment 1: 000003e9 70008000-7009f62f _memcpy
memcpy (F)
7004644E [03E446] 4eb9 7009 b6a0           JSR $7009b6a0 _memcpy
memcpy (F)
70046454 [03E44C] 4fef 000c                LEA.L (A7, $000c) == $7011f3b8,A7

7009b6cc -> 400005c0 SP=7011f394

[sigma63]

Hello Toni,

for debugging i sometimes print out the address of a function, Press Shift-F12 for debugger, set a breakpoint to the printed address and continue with g.

What do you think, is it a good idea to have some kind of API for the debugger?
So you could set the breakpoint from within the running Amiga-Program?
Also it will be good to have a function to clear the breakpoint before the program exits, because the next time this old breakpoint may be "stalled".

I think of using the uae.resource like a library with LVOs so one can check if running under WinUAE to use these functions only in this case.

Cheers and keep up that marvellous work!

[Toni Wilen]

Quote:

Originally Posted by selco

Now I get a unitilized access later which I am inverstigating currently.
I wanted to see where it happened and entered "rs" to show the stackframe. It shows the following lines and then crashes. Please find dump and bootloag attached.

Use official beta (4010b1), dump files from winuae.7z are useless. EDIT: or b2.

[Toni Wilen]

Quote:

Originally Posted by sigma63

Hello Toni,

for debugging i sometimes print out the address of a function, Press Shift-F12 for debugger, set a breakpoint to the printed address and continue with g.

What do you think, is it a good idea to have some kind of API for the debugger?
So you could set the breakpoint from within the running Amiga-Program?
Also it will be good to have a function to clear the breakpoint before the program exits, because the next time this old breakpoint may be "stalled".

I think of using the uae.resource like a library with LVOs so one can check if running under WinUAE to use these functions only in this case.

Cheers and keep up that marvellous work!

It is already possible to inject debugger commands from emulation using uae-configuration but it probably isn't that good solution

Lots of work to do..

[sigma63]

Quote:

Originally Posted by Toni Wilen

It is already possible to inject debugger commands from emulation using uae-configuration

Could anybody give an example, please?

[Toni Wilen]

Quote:

Originally Posted by sigma63

Could anybody give an example, please?

uae-configuration dbg "debugger command". Whole command must be in quotes.

for example uae-configuration dbg "f 123456" to set break point.