delorie.com/archives/browse.cgi   search  
Mail Archives: cygwin/2013/09/04/01:09:49

X-Recipient: archive-cygwin AT delorie DOT com
DomainKey-Signature: a=rsa-sha1; c=nofws; d=sourceware.org; h=list-id
:list-unsubscribe:list-subscribe:list-archive:list-post
:list-help:sender:mime-version:from:date:message-id:subject:to
:content-type; q=dns; s=default; b=Itn323JzgWu3qMcqNIaEmmbdMgLIW
+pIQbBiV32cwST/3K5h2g0HnT5jn9zWcospNhlIG7YEyJi2E0LpssAbaoVGolj6v
/UXJz1Dpt9sgK0LJKpO1vivQe6RMqzXJx9SkiCy1tFYC4pF/4JtEyhr7VfTKFNgE
KwhjXRoiZJPegE=
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=sourceware.org; h=list-id
:list-unsubscribe:list-subscribe:list-archive:list-post
:list-help:sender:mime-version:from:date:message-id:subject:to
:content-type; s=default; bh=arecFP5ppYr65+fRuXFM3uiwcOs=; b=IVw
CN8NbM90JvNbLlmwHnEFZzeYLNQHm2yWjKO/AfKIFRbKxXs/wrPNoZTaYXXVUa/E
f0CgEZFPvf1kmsXZ5sFV6BEdTdT9djM0jKfm2X3gxyA/F+d9V4hqtLs8q92MCiXr
tl15idl/gnf7/AL+Pj8eiWtHPg101GR1SBKjHQ0g=
Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm
List-Id: <cygwin.cygwin.com>
List-Subscribe: <mailto:cygwin-subscribe AT cygwin DOT com>
List-Archive: <http://sourceware.org/ml/cygwin/>
List-Post: <mailto:cygwin AT cygwin DOT com>
List-Help: <mailto:cygwin-help AT cygwin DOT com>, <http://sourceware.org/ml/#faqs>
Sender: cygwin-owner AT cygwin DOT com
Mail-Followup-To: cygwin AT cygwin DOT com
Delivered-To: mailing list cygwin AT cygwin DOT com
Authentication-Results: sourceware.org; auth=none
X-Virus-Found: No
X-Spam-SWARE-Status: No, score=-1.9 required=5.0 tests=BAYES_00,FREEMAIL_FROM,NO_RELAYS autolearn=ham version=3.3.2
X-HELO: mail-wi0-f181.google.com
X-Received: by 10.194.104.42 with SMTP id gb10mr844831wjb.16.1378271364658; Tue, 03 Sep 2013 22:09:24 -0700 (PDT)
MIME-Version: 1.0
From: Austin English <austinenglish AT gmail DOT com>
Date: Tue, 3 Sep 2013 22:08:44 -0700
Message-ID: <CACC5Q1eGcbCvqxmik+s_9yQgyT9Bz9gqTE_7dhH7t-FVkM_eXg@mail.gmail.com>
Subject: bug report: 64-bit cygwin setup crashes under Wine
To: cygwin AT cygwin DOT com 

Howdy,

I recently noticed the 64-bit cygwin installer crashes under wine.
After further debugging, it appears that the issue is that cygwin is
misaligning the stack, causing a crash. I've copy/pasted the analysis
below:

Hello folks,

confirming.

Reminded me of bug 27680 (violation of the Windows 64-bit ABI, stack pointer
(RSP) must be 16-byte aligned when making a call to Win64 API)...

Similarly the gcc generated prologue code for MSABI (SSE2 callee save) causes a
crash due to misaligned stack (needs to be 16-byte aligned).

--- snip ---
...
0027:Starting process L"Z:\\home\\focht\\Downloads\\setup-x86_64.exe"
(entryproc=0x691616)
0027:Call KERNEL32.GetModuleHandleA(0057ce81 "KERNEL32") ret=0057ce90
0027:Ret  KERNEL32.GetModuleHandleA() retval=7b820000 ret=0057ce90
0027:Call KERNEL32.GetProcAddress(7b820000,0057ce9a "VirtualProtect")
ret=0057ceb1
0027:Ret  KERNEL32.GetProcAddress() retval=7b83007c ret=0057ceb1
0027:trace:seh:raise_exception code=c0000005 flags=0 addr=0x7fb738137842
ip=7fb738137842 tid=0027
0027:trace:seh:raise_exception  rax=000000007b83007c rbx=000000007b83007c
rcx=000000007bae33d0 rdx=00000000000403dc
0027:trace:seh:raise_exception  rsi=0000000000690000 rdi=000000000040016f
rbp=000000000033fc08 rsp=000000000033fb18
0027:trace:seh:raise_exception   r8=000000000033fc80  r9=000000000033fc88
r10=0000000000000000 r11=0000003629581400
0027:trace:seh:raise_exception  r12=000000007bf00c50 r13=00007fffb49477a0
r14=0000000000000000 r15=0000000000000000
...
--- snip ---

Winedbg isn't useful here because it doesn't support SSE2 instructions.
Running winedbg --gdb yields more useful results.

Debug session:

--- snip ---
...
Dump of assembler code for function NtProtectVirtualMemory:
=> 0x00007f8e5e51703a <+0>:    push   %rbp
   0x00007f8e5e51703b <+1>:    mov    %rsp,%rbp
   0x00007f8e5e51703e <+4>:    push   %rdi
   0x00007f8e5e51703f <+5>:    push   %rsi
   0x00007f8e5e517040 <+6>:    sub    $0x1d0,%rsp
   0x00007f8e5e517047 <+13>:    movaps %xmm6,-0xb0(%rbp)
   0x00007f8e5e51704e <+20>:    movaps %xmm7,-0xa0(%rbp)
   0x00007f8e5e517055 <+27>:    movaps %xmm8,-0x90(%rbp)
   0x00007f8e5e51705d <+35>:    movaps %xmm9,-0x80(%rbp)
   0x00007f8e5e517062 <+40>:    movaps %xmm10,-0x70(%rbp)
   0x00007f8e5e517067 <+45>:    movaps %xmm11,-0x60(%rbp)
   0x00007f8e5e51706c <+50>:    movaps %xmm12,-0x50(%rbp)
   0x00007f8e5e517071 <+55>:    movaps %xmm13,-0x40(%rbp)
   0x00007f8e5e517076 <+60>:    movaps %xmm14,-0x30(%rbp)
   0x00007f8e5e51707b <+65>:    movaps %xmm15,-0x20(%rbp)
   0x00007f8e5e517080 <+70>:    mov    %rcx,0x10(%rbp)
   0x00007f8e5e517084 <+74>:    mov    %rdx,0x18(%rbp)
   0x00007f8e5e517088 <+78>:    mov    %r8,0x20(%rbp)
   0x00007f8e5e51708c <+82>:    mov    %r9d,0x28(%rbp)
   0x00007f8e5e517090 <+86>:    movl   $0x0,-0xb4(%rbp)
   0x00007f8e5e51709a <+96>:    mov    0x20(%rbp),%rax
   0x00007f8e5e51709e <+100>:    mov    (%rax),%rax
...
--- snip ---

Reg dump before faulting instruction (xmm6 save):

--- snip ---
Wine-gdb> info reg
rax            0x33fc50    3406928
rbx            0x7b89f360    2072638304
rcx            0xffffffffffffffff    -1
rdx            0x33fc50    3406928
rsi            0x690000    6881280
rdi            0x40016f    4194671
rbp            0x33fbe8    0x33fbe8
rsp            0x33fa08    0x33fa08
r8             0x33fc58    3406936
r9             0x4    4
r10            0x3629532710    232621549328
r11            0x0    0
r12            0x7bf00c50    2079329360
r13            0x7fff237e6030    140733788872752
r14            0x0    0
r15            0x0    0
rip            0x7f8e5e517047    0x7f8e5e517047 <NtProtectVirtualMemory+13>
eflags         0x202    [ IF ]
cs             0x33    51
ss             0x2b    43
ds             0x0    0
es             0x0    0
fs             0x0    0
gs             0x0    0

Program received signal SIGSEGV, Segmentation fault.
...
0x00007f8e5e517047 in NtProtectVirtualMemory (process=0x0, addr_ptr=0x0,
size_ptr=0x0, new_prot=6881280, old_prot=0x33fc88)
    at /home/focht/projects/wine/wine-git/dlls/ntdll/virtual.c:2120
2120    {

--- snip ---

Windows x86_64 ABI specifies that registers xmm6-xmm15 be callee saved.
Gcc generates the MSABI prologue accordingly (see previous disassembly).

At the entry point of VirtualProtect() the stack is 16-byte aligned ...

--- snip ---
Stopped on breakpoint 1 at 0x000000007b89f360 VirtualProtect
[/home/focht/projects/wine/wine-git/dlls/kernel32/virtual.c:214] in kernel32
VirtualProtect () at
/home/focht/projects/wine/wine-git/dlls/kernel32/virtual.c:214
214    {
Wine-dbg>info reg
Register dump:
 rip:000000007b89f360 rsp:000000000033fc80 rbp:000000000033fd20 eflags:00000206
(   - --  I   - -P- )
 rax:000000007b89f360 rbx:000000007b89f360 rcx:000000000040016f
rdx:0000000000000078
 rsi:0000000000690000 rdi:000000000040016f  r8:0000000000000004
r9:000000000033fc88 r10:0000003629532710
 r11:0000000000000000 r12:000000007bf00c50 r13:00007fffff7bdb10
r14:0000000000000000 r15:0000000000000000
Wine-dbg>
--- snip ---

*dingding*

At time of performing the call instruction the stack has to be 16-byte aligned!
Hence the callee messed this up.

The tested wine version was 1.6 (recent stable release).

See http://bugs.winehq.org/show_bug.cgi?id=34258 for more info.

Note: I'm not subscribed, please CC me on reply.

-Austin

--
Problem reports:       http://cygwin.com/problems.html
FAQ:                   http://cygwin.com/faq/
Documentation:         http://cygwin.com/docs.html
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple

- Raw text -


  webmaster     delorie software   privacy  
  Copyright © 2019   by DJ Delorie     Updated Jul 2019