投稿
  1. 清一色财经首页
  2. 科技
  3. IT

记一次Linux内核崩溃Kdump,Crash,Vmcore

清一色 IT 阅读 9442

Linux内核发送崩溃时,kdump会生成一个内核转储文件vmcore。 可以通过分析vmcore分析出内核崩溃的原因。 2021-03-05 07:14:08 Linuxcrashvmcore 使用Fiddler抓包微信公众号和小程序 目前微信公众号和小程序应用越来越多,那么我们如何对二者进行抓包进而在测试中更加准确的定位问题呢?目前通常有三种解决方案,在这里我会一一道来。

Linux内核发送崩溃时,kdump会生成一个内核转储文件vmcore。 可以通过分析vmcore分析出内核崩溃的原因。

[[385368]]

原理

Linux内核发送崩溃时,kdump会生成一个内核转储文件vmcore。 可以通过分析vmcore分析出内核崩溃的原因。

crash是一个被广泛应用的内核崩溃转储文件分析工具。使用crash调试内核转储文件,需要安装crash工具和内核调试工具kernel-debuginfo。

安装需要的软件

1、查看系统内核

  1. [root@qd01-stop-free015~]#uname-r
  2. 3.10.0-1160.15.2.el7.x86_64

2、安装kdump,crash

  1. yuminstallcrashkexec-tools-y

3、安装kernel-debuginfo

下载链接http://debuginfo.centos.org/7/x86_64/

  1. rpm-ivhkernel-debuginfo-3.10.0-1160.15.2.el7.x86_64.rpmkernel-debuginfo-common-x86_64-3.10.0-1160.15.2.el7.x86_64.rpm

crash报告分析

1、使用crash命令加载vmcore文件

  1. [root@qd01-stop-free015kdump]#crash/usr/lib/debug/lib/modules/3.10.0-1160.15.2.el7.x86_64/vmlinuxvmcore
  3. crash7.2.3-11.el7_9.1
  4. Copyright(C)2002-2017RedHat,Inc.
  5. Copyright(C)2004,2005,2006,2010IBMCorporation
  6. Copyright(C)1999-2006Hewlett-PackardCo
  7. Copyright(C)2005,2006,2011,2012FujitsuLimited
  8. Copyright(C)2006,2007VALinuxSystemsJapanK.K.
  9. Copyright(C)2005,2011NECCorporation
  10. Copyright(C)1999,2002,2007SiliconGraphics,Inc.
  11. Copyright(C)1999,2000,2001,2002MissionCriticalLinux,Inc.
  12. Thisprogramisfreesoftware,coveredbytheGNUGeneralPublicLicense,
  13. andyouarewelcometochangeitand/ordistributecopiesofitunder
  14. certainconditions.Enter"helpcopying"toseetheconditions.
  15. Thisprogramhasabsolutelynowarranty.Enter"helpwarranty"fordetails.
  17. GNUgdb(GDB)7.6
  18. Copyright(C)2013FreeSoftwareFoundation,Inc.
  19. LicenseGPLv3+:GNUGPLversion3orlater<http://gnu.org/licenses/gpl.html>
  20. Thisisfreesoftware:youarefreetochangeandredistributeit.
  21. ThereisNOWARRANTY,totheextentpermittedbylaw.Type"showcopying"
  22. and"showwarranty"fordetails.
  23. ThisGDBwasconfiguredas"x86_64-unknown-linux-gnu"...
  25. WARNING:kernelrelocated[274MB]:patching87300gdbminimal_symbolvalues
  27. KERNEL:/usr/lib/debug/lib/modules/3.10.0-1160.15.2.el7.x86_64/vmlinux
  28. DUMPFILE:vmcore[PARTIALDUMP]
  29. CPUS:8
  30. DATE:ThuMar410:12:382021
  31. UPTIME:00:05:04
  32. LOADAVERAGE:5.28,3.20,1.38
  33. TASKS:256
  34. NODENAME:zf-dbslave001
  35. RELEASE:3.10.0-1160.15.2.el7.x86_64
  36. VERSION:#1SMPWedFeb315:06:38UTC2021
  37. MACHINE:x86_64(2500Mhz)
  38. MEMORY:63GB
  39. PANIC:"BUG:unabletohandlekernelNULLpointerdereferenceat0000000000000074"
  40. PID:1362
  41. COMMAND:"AliYunDun"
  42. TASK:ffff90f972365280[THREAD_INFO:ffff90f9767a4000]
  43. CPU:5
  44. STATE:TASK_RUNNING(PANIC)

输出注释如下:

  • KERNEL:系统崩溃时运行的 kernel 文件
  • DUMPFILE: 内核转储文件
  • CPUS: 所在机器的 CPU 数量
  • DATE:系统崩溃的时间
  • TASKS:系统崩溃时内存中的任务数
  • NODENAME:崩溃的系统主机名
  • RELEASE: 和 VERSION:内核版本号
  • MACHINE:CPU 架构
  • MEMORY:崩溃主机的物理内存
  • PANIC:崩溃类型,常见的崩溃类型包括:
  • SysRq (System Request):通过魔法组合键导致的系统崩溃,通常是测试使用。通过 echo c > /proc/sysrq-trigger,就可以触发系统崩溃。
  • oops:可以看成是内核级的 Segmentation Fault。应用程序如果进行了非法内存访问或执行了非法指令,会得到 Segfault 信号,一般行为是 coredump,应用程序也可以自己截获 Segfault 信号,自行处理。如果内核自己犯了这样的错误,则会弹出 oops 信息。

从以上输出可以知道,本次系统崩溃的原因是:PANIC: "BUG: unable to handle kernel NULL pointer dereference at 0000000000000074",然后导致AliYunDun把系统重启了。

PS:搞不懂阿里云的破逻辑,服务器被黑了居然只会不断重启服务器?

2、使用bt 命令用于查看系统崩溃前的堆栈信息。

  1. crash>bt
  2. PID:1362TASK:ffff90f972365280CPU:5COMMAND:"AliYunDun"
  3. #0[ffff90f9767a77a0]machine_kexecatffffffff922662c4
  4. #1[ffff90f9767a7800]__crash_kexecatffffffff923227a2
  5. #2[ffff90f9767a78d0]crash_kexecatffffffff92322890
  6. #3[ffff90f9767a78e8]oops_endatffffffff9298c798
  7. #4[ffff90f9767a7910]no_contextatffffffff92275d14
  8. #5[ffff90f9767a7960]__bad_area_nosemaphoreatffffffff92275fe2
  9. #6[ffff90f9767a79b0]bad_area_nosemaphoreatffffffff92276104
  10. #7[ffff90f9767a79c0]__do_page_faultatffffffff9298f750
  11. #8[ffff90f9767a7a30]trace_do_page_faultatffffffff9298fa26
  12. #9[ffff90f9767a7a70]do_async_page_faultatffffffff9298efa2
  13. #10[ffff90f9767a7a90]async_page_faultatffffffff9298b7a8
  14. #11[ffff90f9767a7b98]kmem_cache_alloc_traceatffffffff92428a0c
  15. #12[ffff90f9767a7c98]mntputatffffffff92471d94
  16. #13[ffff90f9767a7d88]kvm_sched_clock_readatffffffff9226d3be
  17. #14[ffff90f9767a7ec8]putnameatffffffff9245fd3d
  18. #15[ffff90f9767a7f50]system_call_fastpathatffffffff92994f92
  19. RIP:00007f84fd928315RSP:00007f84fb011af8RFLAGS:00000206
  20. RAX:000000000000004eRBX:000000000244e010RCX:ffffffffffffffff
  21. RDX:0000000000008000RSI:000000000244e010RDI:0000000000000012
  22. RBP:000000000244e010R8:0000000000000020R9:0000000000008030
  23. R10:0000000000000076R11:0000000000000246R12:ffffffffffffff30
  24. R13:0000000000000000R14:000000000244dfe0R15:000000000000052a
  25. ORIG_RAX:000000000000004eCS:0033SS:002b

3、log 命令可以打印系统消息缓冲区,从而可能找到系统崩溃的线索。输出太多,这里只截取部分信息。

  1. crash>log
  2. [0.000000]Initializingcgroupsubsyscpuset
  3. [0.000000]Initializingcgroupsubsyscpu
  4. [0.000000]Initializingcgroupsubsyscpuacct
  5. [0.000000]Linuxversion3.10.0-1160.15.2.el7.x86_64(mockbuild@kbuilder.bsys.centos.org)(gccversion4.8.520150623(RedHat4.8.5-44)(GCC))#1SMPWedFeb315:06:38UTC2021
  6. [0.000000]Commandline:BOOT_IMAGE=/boot/vmlinuz-3.10.0-1160.15.2.el7.x86_64root=UUID=1114fe9e-2309-4580-b183-d778e6d97397rocrashkernel=autorhgbquietLANG=en_US.UTF-8idle=haltbiosdevname=0net.ifnames=0console=tty0console=ttyS0,115200n8noibrs
  7. [0.000000]e820:BIOS-providedphysicalRAMmap:
  8. [0.000000]BIOS-e820:[mem0x0000000000000000-0x000000000009fbff]usable
  9. [0.000000]BIOS-e820:[mem0x000000000009fc00-0x000000000009ffff]reserved
  10. [0.000000]BIOS-e820:[mem0x00000000000f0000-0x00000000000fffff]reserved
  11. [0.000000]BIOS-e820:[mem0x0000000000100000-0x0000000013ffffff]usable
  12. [0.000000]BIOS-e820:[mem0x0000000014000000-0x000000001511ffff]reserved
  13. [0.000000]BIOS-e820:[mem0x0000000015120000-0x00000000bffcdfff]usable
  14. [0.000000]BIOS-e820:[mem0x00000000bffce000-0x00000000bfffffff]reserved
  15. [0.000000]BIOS-e820:[mem0x00000000feffc000-0x00000000feffffff]reserved
  16. [0.000000]BIOS-e820:[mem0x00000000fffc0000-0x00000000ffffffff]reserved
  17. [0.000000]BIOS-e820:[mem0x0000000100000000-0x0000000fffffffff]usable
  18. [0.000000]BIOS-e820:[mem0x0000001000000000-0x000000103fffffff]reserved
  19. [0.000000]NX(ExecuteDisable)protection:active
  20. [0.000000]SMBIOS2.8present.
  21. [0.000000]DMI:AlibabaCloudAlibabaCloudECS,BIOSe62364704/01/2014
  22. [0.000000]Hypervisordetected:KVM
  23. [0.000000]e820:update[mem0x00000000-0x00000fff]usable==>reserved
  24. [0.000000]e820:remove[mem0x000a0000-0x000fffff]usable
  25. [0.000000]e820:last_pfn=0x1000000max_arch_pfn=0x400000000
  26. [0.000000]MTRRdefaulttype:write-back
  27. [0.000000]MTRRfixedrangesenabled:
  28. [0.000000]00000-9FFFFwrite-back
  29. [0.000000]A0000-BFFFFuncachable
  30. [0.000000]C0000-FFFFFwrite-protect
  31. [0.000000]MTRRvariablerangesenabled:
  32. [0.000000]0base0000C0000000mask3FFFC0000000uncachable
  33. [0.000000]1disabled
  34. [0.000000]2disabled
  35. [0.000000]3disabled
  36. [0.000000]4disabled
  37. [0.000000]5disabled
  38. [0.000000]6disabled
  39. [0.000000]7disabled
  40. [0.000000]PATconfiguration[0-7]:WBWCUC-UCWBWPUC-UC
  41. [0.000000]e820:last_pfn=0xbffcemax_arch_pfn=0x400000000
  42. [0.000000]foundSMPMP-tableat[mem0x000f5a00-0x000f5a0f]mappedat[ffffffffff200a00]
  43. [0.000000]Basememorytrampolineat[ffff90f800099000]99000size24576
  44. [0.000000]UsingGBpagesfordirectmapping
  45. [0.000000]BRK[0x70e74000,0x70e74fff]PGTABLE
  46. [0.000000]BRK[0x70e75000,0x70e75fff]PGTABLE
  47. [0.000000]BRK[0x70e76000,0x70e76fff]PGTABLE
  48. [0.000000]BRK[0x70e77000,0x70e77fff]PGTABLE
  49. [0.000000]BRK[0x70e78000,0x70e78fff]PGTABLE
  50. [0.000000]RAMDISK:[mem0x3625c000-0x37125fff]
  51. [0.000000]Earlytablechecksumverificationdisabled
  52. [0.000000]ACPI:RSDP00000000000f59b000014(v00BOCHS)
  53. [0.000000]ACPI:RSDT00000000bffe218500034(v01BOCHSBXPCRSDT00000001BXPC00000001)
  54. [0.000000]ACPI:FACP00000000bffe093e00074(v01BOCHSBXPCFACP00000001BXPC00000001)
  55. [0.000000]ACPI:DSDT00000000bffdfd8000BBE(v01BOCHSBXPCDSDT00000001BXPC00000001)
  56. [0.000000]ACPI:FACS00000000bffdfd4000040
  57. [0.000000]ACPI:SSDT00000000bffe09b2015FB(v01BOCHSBXPCSSDT00000001BXPC00000001)
  58. [0.000000]ACPI:APIC00000000bffe1fad000B0(v01BOCHSBXPCAPIC00000001BXPC00000001)
  59. [0.000000]ACPI:SRAT00000000bffe205d00128(v01BOCHSBXPCSRAT00000001BXPC00000001)
  61. [4.722250]Adding33554428kswapon/data/swapfile.Priority:-2extents:24across:35823612kFS
  62. [5.841211]input:QEMUQEMUUSBTabletas/devices/pci0000:00/0000:00:01.2/usb1/1-1/1-1:1.0/input/input5
  63. [5.841325]hid-generic0003:0627:0001.0001:input,hidraw0:USBHIDv0.01Pointer[QEMUQEMUUSBTablet]onusb-0000:00:01.2-1/input0
  64. [13.615575]mzoneinfo:loadingout-of-treemoduletaintskernel.
  65. [13.615611]mzoneinfo:moduleverificationfailed:signatureand/orrequiredkeymissing-taintingkernel
  66. [305.100071]BUG:unabletohandlekernelNULLpointerdereferenceat0000000000000074
  67. [305.101048]IP:[<ffffffffc02d74c0>]0xffffffffc02d74c0
  68. [305.101653]PGD800000010d7ed067PUD176f9c067PMD0
  69. [305.102276]Oops:0000[#1]SMP
  70. [305.102675]Moduleslinkedin:tcp_diaginet_diagcirrusttmnfitdrm_kms_helperlibnvdimmsyscopyareappdevsysfillrectintel_powerclampsysimgbltfb_sys_fopsdrmiosf_mbiparport_pccrc32_pclmulvirtio_balloonparportghash_clmulni_intelaesni_intellrwgf128muldrm_panel_orientation_quirksglue_helperpcspkri2c_piix4joydevablk_helpercryptdip_tablesext4mbcachejbd2ata_genericpata_acpivirtio_netvirtio_consolenet_failovervirtio_blkfailoverata_piixlibatacrct10dif_pclmulcrct10dif_commoncrc32c_intelvirtio_pcivirtio_ringfloppyserio_rawvirtio
  71. [305.109021]CPU:5PID:1362Comm:AliYunDunKdump:loadedTainted:GOE------------3.10.0-1160.15.2.el7.x86_64#1
  72. [305.110306]Hardwarename:AlibabaCloudAlibabaCloudECS,BIOSe62364704/01/2014
  73. [305.111150]task:ffff90f972365280ti:ffff90f9767a4000task.ti:ffff90f9767a4000
  74. [305.111977]RIP:0010:[<ffffffffc02d74c0>][<ffffffffc02d74c0>]0xffffffffc02d74c0
  75. [305.112843]RSP:0018:ffff90f9767a7b48EFLAGS:00010283
  76. [305.113437]RAX:fffffffffffffbd0RBX:0000000000000240RCX:00000000000007cd
  77. [305.114228]RDX:0000000000000000RSI:ffff90f972365280RDI:00000000ffffffff
  78. [305.115014]RBP:ffff90f9767a7b88R08:0000000040000000R09:0000000000000400
  79. [305.115804]R10:0000000000000000R11:ffffd9d105c1ea00R12:0000000000000240
  80. [305.116586]R13:0000000000000258R14:0000000000000018R15:ffff90f9707aa000
  81. [305.117377]FS:00007f84fb012700(0000)GS:ffff9107ffd40000(0000)knlGS:0000000000000000
  82. [305.118276]CS:0010DS:0000ES:0000CR0:0000000080050033
  83. [305.118921]CR2:0000000000000074CR3:000000017839e000CR4:00000000003606e0
  84. [305.119710]DR0:0000000000000000DR1:0000000000000000DR2:0000000000000000
  85. [305.120502]DR3:0000000000000000DR6:00000000fffe0ff0DR7:0000000000000400
  86. [305.121291]CallTrace:
  87. [305.121581][<ffffffff92428a0c>]?kmem_cache_alloc_trace+0x3c/0x200
  88. [305.122304][<ffffffff9242832e>]?__kmalloc+0x2e/0x230
  89. [305.122898][<ffffffff92471d94>]?mntput+0x24/0x40
  90. [305.123458][<ffffffff9226d3be>]?kvm_sched_clock_read+0x1e/0x30
  91. [305.124162][<ffffffff9245fd3d>]?putname+0x3d/0x60
  92. [305.124733][<ffffffff92994f92>]?system_call_fastpath+0x25/0x2a
  93. [305.125417]Code:65488b3425c00e0100488b9630040000488d82d0fbffff4839c6742c3b7a74742ab9d0070000eb0d0f1f00<3b>7a74741b83e9017413488b9030040000488d82d0
  94. [305.128647]RIP[<ffffffffc02d74c0>]0xffffffffc02d74c0
  95. [305.129263]RSP<ffff90f9767a7b48>
  96. [305.129660]CR2:0000000000000074

4、ps 命令用于显示进程的状态,带 > 标识代表是活跃的进程。

  1. crash>ps
  2. PIDPPIDCPUTASKST%MEMVSZRSSCOMM
  3. 000ffffffff92e18480RU0.000[swapper/0]
  4. >001ffff90f964f74200RU0.000[swapper/1]
  5. 002ffff90f964f75280RU0.000[swapper/2]
  6. >003ffff90f964f76300RU0.000[swapper/3]
  7. 004ffff90f965760000RU0.000[swapper/4]
  8. 005ffff90f965761080RU0.000[swapper/5]
  9. 006ffff90f965762100RU0.000[swapper/6]
  10. >007ffff90f965763180RU0.000[swapper/7]
  11. 103ffff90f964b60000IN0.0434603816systemd
  12. 这里忽略部分信息......
  13. 104516ffff90f91038c200IN0.0110208880agetty
  14. 114413ffff90f966f6a100IN0.0325444304AliYunDunUpdate
  15. 114513ffff90f90b3a3180IN0.0325444304AliYunDunUpdate
  16. 114611ffff90f90b3a2100IN0.0325444304AliYunDunUpdate
  17. 116117ffff90f978bcb180IN0.0325444304AliYunDunUpdate
  18. 116511ffff90f910389080IN0.080287211300aliyun-service
  19. 116613ffff90f978bcc200IN0.080287211300aliyun-service
  20. 117015ffff90f978bc8000IN0.080287211300aliyun-service
  21. 118013ffff90f90c3f2100IN0.080287211300aliyun-service
  22. 118815ffff90f91038d280IN0.049362556matchpathcond
  23. 119115ffff90f91038b180IN0.0328208postcated
  24. 119317ffff90f977398000IN0.03304184telinited
  25. 119411935ffff90f910388000IN0.034361244telinited
  26. 120610ffff90f966f68000IN0.050881676devlinked
  27. 120911ffff90f970b40000IN0.017240logrotated
  28. 131311ffff90f90f7d4200IN0.057428417500gmain
  29. 131417ffff90f90f7d2100IN0.057428417500tuned
  30. 132215ffff90f9783b8000IN0.013953622220AliYunDun
  31. 132311ffff90f9533eb180IN0.013953622220AliYunDun
  32. 132415ffff90f9533ed280IN0.013953622220AliYunDun
  33. 134513ffff90f91279d280IN0.057428417500tuned
  34. 134615ffff90f91279e300IN0.057428417500tuned
  35. 134715ffff90f90eb84200IN0.07182407536rs:mainQ:Reg
  36. 134911ffff90f91279b180IN0.013953622220AliYunDun
  37. 135011ffff90f91279c200IN0.013953622220AliYunDun
  38. 135111ffff90f90b3a5280IN0.013953622220AliYunDun
  39. 135214ffff90f90b3a1080IN0.013953622220AliYunDun
  40. 135315ffff90f90b3a6300IN0.013953622220AliYunDun
  41. 135415ffff90f90b3a4200IN0.013953622220AliYunDun
  42. 135511ffff90f90b3a0000IN0.013953622220AliYunDun
  43. 135717ffff90f90b780000IN0.013953622220AliYunDun
  44. 135815ffff90f90b781080IN0.013953622220AliYunDun
  45. 135913ffff90f972361080IN0.013953622220AliYunDun
  46. 136013ffff90f972364200IN0.013953622220AliYunDun
  47. 136117ffff90f972366300IN0.013953622220AliYunDun
  48. >136215ffff90f972365280RU0.013953622220AliYunDun
  49. 136315ffff90f97b76d280IN0.013953622220AliYunDun
  50. 140113ffff90f97638d280IN0.013953622220AliYunDun
  51. 140211ffff90f97638e300IN0.013953622220AliYunDun
  52. 140317ffff90f97638b180IN0.013953622220AliYunDun
  53. 140417ffff90f97b76b180IN0.013953622220AliYunDun
  54. 140515ffff90f97b76c200IN0.013953622220AliYunDun
  55. 140615ffff90f97b76e300IN0.013953622220AliYunDun
  56. 148315ffff90f970b45280IN0.01129364344sshd
  57. 157014837ffff90f90e386300IN0.01576406308sshd
  58. 203611ffff90f975791080IN0.080287211300aliyun-service
  59. 206015701ffff90f90c3f4200IN0.01576402508sshd
  60. 206620601ffff90f90cf8d280IN0.01155482084bash
  61. 296315ffff90f9767d3180IN0.0328264postcated
  62. 297312ffff90f9767cb180IN0.050841672devlinked
  63. 297717ffff90f9767d1080IN0.017244logrotated
  64. 392320667ffff90f9783be300IN0.02413604640sudo
  65. 392439235ffff90f975be0000IN0.01918722360su
  66. 392539241ffff90f90eb86300IN0.01156802160bash
  67. 450711ffff90f90c3f0000IN0.0178162096assist_daemon
  68. 450817ffff90f90c3f3180IN0.0178162096Timerthread
  69. 450911ffff90f90c3f6300IN0.0178162096assist_daemon
  70. 451011ffff90f90c3f1080IN0.0178162096Timerthread
  71. 582017ffff90f90eb83180IN0.0328208postcated
  72. 582414ffff90f9767cc200IN0.050841672devlinked
  73. 582813ffff90f975b83180IN0.017240logrotated
  74. 998915ffff90f90df95280IN0.0328204postcated
  75. 999316ffff90f9767b4200IN0.050881676devlinked
  76. 999713ffff90f967b7e300IN0.017240logrotated
  77. 1550212ffff90f966f6b180IN0.0328208postcated
  78. 1552814ffff90f9533ee300IN0.050841668devlinked
  79. 1553211ffff90f9533e8000IN0.017240logrotated
  80. 2238813ffff90f90f7c5280IN0.0328208postcated
  81. 2239214ffff90f975be3180IN0.050881676devlinked
  82. 2239615ffff90f977399080IN0.017240logrotated
  83. 3064715ffff90f9767b6300IN0.0328208postcated
  84. 3065116ffff90f975b81080IN0.050921676devlinked
  85. 3065515ffff90f975b85280IN0.017240logrotated
  86. 3077913ffff90f9757b8000IN0.024426083784mountinfo
  87. 3078012ffff90f975b86300IN0.024426083784mountinfo
  88. 3078114ffff90f975b82100IN0.024426083784mountinfo
  89. 3078317ffff90f975b84200IN0.024426083784mountinfo
  90. 3078411ffff90f90ebc1080IN0.024426083784mountinfo
  91. 3078511ffff90f8bb941080IN0.024426083784mountinfo
  92. >3174510ffff90f90f7d3180RU0.024426083784mountinfo
  93. >3174612ffff90f90f7d6300RU0.024426083784mountinfo
  94. >3174714ffff90f90f7d0000RU0.024426083784mountinfo
  95. >3174816ffff90f97b76a100RU0.024426083784mountinfo

从输出看出,mountinfo明显是异常进程,是导致本次系统重启的罪魁祸首

5、这里再次bt 命令来看一下堆栈

  1. crash>bt
  2. PID:1362TASK:ffff90f972365280CPU:5COMMAND:"AliYunDun"
  3. #0[ffff90f9767a77a0]machine_kexecatffffffff922662c4
  4. #1[ffff90f9767a7800]__crash_kexecatffffffff923227a2
  5. #2[ffff90f9767a78d0]crash_kexecatffffffff92322890
  6. #3[ffff90f9767a78e8]oops_endatffffffff9298c798
  7. #4[ffff90f9767a7910]no_contextatffffffff92275d14
  8. #5[ffff90f9767a7960]__bad_area_nosemaphoreatffffffff92275fe2
  9. #6[ffff90f9767a79b0]bad_area_nosemaphoreatffffffff92276104
  10. #7[ffff90f9767a79c0]__do_page_faultatffffffff9298f750
  11. #8[ffff90f9767a7a30]trace_do_page_faultatffffffff9298fa26
  12. #9[ffff90f9767a7a70]do_async_page_faultatffffffff9298efa2
  13. #10[ffff90f9767a7a90]async_page_faultatffffffff9298b7a8
  14. #11[ffff90f9767a7b98]kmem_cache_alloc_traceatffffffff92428a0c
  15. #12[ffff90f9767a7c98]mntputatffffffff92471d94
  16. #13[ffff90f9767a7d88]kvm_sched_clock_readatffffffff9226d3be
  17. #14[ffff90f9767a7ec8]putnameatffffffff9245fd3d
  18. #15[ffff90f9767a7f50]system_call_fastpathatffffffff92994f92
  19. RIP:00007f84fd928315RSP:00007f84fb011af8RFLAGS:00000206
  20. RAX:000000000000004eRBX:000000000244e010RCX:ffffffffffffffff
  21. RDX:0000000000008000RSI:000000000244e010RDI:0000000000000012
  22. RBP:000000000244e010R8:0000000000000020R9:0000000000008030
  23. R10:0000000000000076R11:0000000000000246R12:ffffffffffffff30
  24. R13:0000000000000000R14:000000000244dfe0R15:000000000000052a
  25. ORIG_RAX:000000000000004eCS:0033SS:002b

我们看到系统崩溃前的最后一个调用是“#15 [ffff90f9767a7f50] system_call_fastpath at ffffffff92994f92”,现在用 dis 命令来看一下该地址的反汇编结果

6、dis 反编译

  1. crash>dis-lffffffff92994f92
  2. /usr/src/debug/kernel-3.10.0-1160.15.2.el7/linux-3.10.0-1160.15.2.el7.x86_64/arch/x86/kernel/entry_64.S:511
  3. 0xffffffff92994f92<system_call_fastpath+37>:mov%rax,0x50(%rsp)

7、查看源码

从上面的反汇编结果中,我们看到问题出在entry_64.S: 第511行代码,翻开源码的相应位置,如下;

  1. 492system_call_fastpath:
  2. 493#if__SYSCALL_MASK==~0
  3. 494cmpq$__NR_syscall_max+1,%rax
  4. 495#else
  5. 496andl$__SYSCALL_MASK,%eax
  6. 497cmpl$__NR_syscall_max+1,%eax
  7. 498#endif
  8. 499jaebadsys
  9. 500ARRAY_INDEX_NOSPEC_SYSCALLclobber_reg=%rcx
  10. 501movq%r10,%rcx
  11. 502
  12. 503#ifdefCONFIG_RETPOLINE
  13. 504movqsys_call_table(,%rax,8),%rax
  14. 505call__x86_indirect_thunk_rax
  15. 506#else
  16. 507call*sys_call_table(,%rax,8)#XXX:riprelative
  17. 508#endif
  18. 509
  19. 510UNWIND_END_OF_STACK
  20. 511movq%rax,RAX(%rsp)
  21. 512/*

【编辑推荐】

  1. Windows10这功能已如同残废!教你如何彻底关闭它
  2. C++和C++程序员谁先完蛋?
  3. 2021年值得关注的人工智能趋势
  4. RAID磁盘阵列到底适不适合你?一文读懂
  5. Windows 10是绝唱!微软新系统开始换版本号了

©本文为清一色官方代发,观点仅代表作者本人,与清一色无关。清一色对文中陈述、观点判断保持中立,不对所包含内容的准确性、可靠性或完整性提供任何明示或暗示的保证。本文不作为投资理财建议,请读者仅作参考,并请自行承担全部责任。文中部分文字/图片/视频/音频等来源于网络,如侵犯到著作权人的权利,请与我们联系(微信/QQ:1074760229)。转载请注明出处:清一色财经

(0)
打赏 微信扫码打赏 微信扫码打赏 支付宝扫码打赏 支付宝扫码打赏
清一色的头像清一色管理团队
0 0
上一篇 2023年5月6日 13:07
下一篇 2023年5月6日 13:07

相关推荐

发表评论

登录后才能评论

联系我们

在线咨询:1643011589-QQbutton

手机:13798586780

QQ/微信:1074760229

QQ群:551893940

工作时间:工作日9:00-18:00,节假日休息

关注微信