Re: [PATCH] WTF is VLI?

From: Keith Owens
Date: Sat Nov 20 2004 - 23:01:12 EST

Next message: Greg KH: "Re: [2.6 PATCH] visor: Always do generic_startup"
Previous message: Trent Lloyd: "Re: can netfilter help me....."
In reply to: Avi Kivity: "Re: [PATCH] WTF is VLI?"
Next in thread: Bodo Eggert: "Re: [PATCH] WTF is VLI?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Thu, 18 Nov 2004 17:47:14 +0200,
Avi Kivity <avi@xxxxxxxxxx> wrote:
>Keith Owens wrote:
>
>>So for VLI code, ksymoops splits the code line into two separate pieces
>>and processes each one seperately. ksymoops prints the first bit with
>>a warning that it may not be reliable. The second bit, and all the
>>code line for non-VLI architectures, is reliable and is printed without
>>a warning.
>
>ksymoops can disasemble the entire code line, but starting at different
>offsets (up to the maximum instruction length) from the start. the first
>disassembly to include the program counter in the output would be deemed
>correct.

I originally tried that and rejected it, there are far too many false
positives on i386. It does not matter where you start the disassembly,
it converges to the correct instructions fairly quickly.

Run this test case through ksymoops 2.4.9 or later. It is the same
Code: line repeated 6 times, stripping one byte off the front of the
code for each repeat. That has the same effect as your suggestion of
starting at different offsets, without having to write any C code.

EIP: 0010:[<c0113f8c>] VLI
Code: 8b 15 2c e4 09 08 89 e5 83 ec 08 85 d2 75 49 8b 15 28 e4 09 08 8b 02 85 c0 74 1a 8d 74 26 00 <8d> 42 04
EIP: 0010:[<c0113f8c>] VLI
Code: 15 2c e4 09 08 89 e5 83 ec 08 85 d2 75 49 8b 15 28 e4 09 08 8b 02 85 c0 74 1a 8d 74 26 00 <8d> 42 04
EIP: 0010:[<c0113f8c>] VLI
Code: 2c e4 09 08 89 e5 83 ec 08 85 d2 75 49 8b 15 28 e4 09 08 8b 02 85 c0 74 1a 8d 74 26 00 <8d> 42 04
EIP: 0010:[<c0113f8c>] VLI
Code: e4 09 08 89 e5 83 ec 08 85 d2 75 49 8b 15 28 e4 09 08 8b 02 85 c0 74 1a 8d 74 26 00 <8d> 42 04
EIP: 0010:[<c0113f8c>] VLI
Code: 09 08 89 e5 83 ec 08 85 d2 75 49 8b 15 28 e4 09 08 8b 02 85 c0 74 1a 8d 74 26 00 <8d> 42 04
EIP: 0010:[<c0113f8c>] VLI
Code: 08 89 e5 83 ec 08 85 d2 75 49 8b 15 28 e4 09 08 8b 02 85 c0 74 1a 8d 74 26 00 <8d> 42 04

For all six inputs, the disassembler converges to the correct sequence.
The "unreliable" sequences always end with the correct set of
instructions, test, jne, mov, mov, test, je, lea.

There is no way to tell which interpretation is correct, but it does
not matter. The instructions just before EIP are valid, which is all
that we care about.

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Greg KH: "Re: [2.6 PATCH] visor: Always do generic_startup"
Previous message: Trent Lloyd: "Re: can netfilter help me....."
In reply to: Avi Kivity: "Re: [PATCH] WTF is VLI?"
Next in thread: Bodo Eggert: "Re: [PATCH] WTF is VLI?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]