Reland "Add postmortem debugging helper library"
This is a reland of 517ab73fd7e3fdb70220b9699bca4c69a32e212e
Updates since original: now compressed pointers passed to the function
GetObjectProperties are required to be sign-extended. Previously, the
function allowed zero-extended values, but that led to ambiguity on
pointers like 0x88044919: is it compressed or is the heap range actually
centered on 0x100000000?
Original change's description:
> Add postmortem debugging helper library
>
> This change begins to implement the functionality described in
> https://docs.google.com/document/d/1evHnb1uLlSbvHAAsmOXyc25x3uh1DjgNa8u1RHvwVhk/edit#
> for investigating V8 state in crash dumps.
>
> This change adds a new library, v8_debug_helper, for providing platform-
> agnostic assistance with postmortem debugging. This library can be used
> by extensions built for debuggers such as WinDbg or lldb. Its public API
> is described by debug-helper.h; currently the only method it exposes is
> GetObjectProperties, but we'd like to add more functionality over time.
> The API surface is restricted to plain C-style structs and pointers, so
> that it's easy to link from a debugger extension built with a different
> toolchain.
>
> This change also adds a new cctest file to exercise some basic
> interaction with the new library.
>
> The API function GetObjectProperties takes an object pointer (which
> could be compressed, or weak, or a SMI), and returns a string
> description of the object and a list of properties the object contains.
> For now, the list of properties is entirely based on Torque object
> definitions, but we expect to add custom properties in future updates so
> that it can be easier to make sense of complex data structures such as
> dictionaries.
>
> GetObjectProperties does several things that are intended to generate
> somewhat useful results even in cases where memory may be corrupt or
> unavailable:
> - The caller may optionally provide a type string which will be used if
> the memory for the object's Map is inaccessible.
> - All object pointers are compared against the list of known objects
> generated by mkgrokdump. The caller may optionally provide the
> pointers for the first pages of various heap spaces, to avoid spurious
> matches. If those pointers are not provided, then any matches are
> prefixed with "maybe" in the resulting description string, such as
> "maybe UndefinedValue (0x4288000341 <Oddball>)".
>
> Bug: v8:9376
>
> Change-Id: Iebf3cc2dea3133c7811bcefcdf38d9458b02fded
> Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/1628012
> Commit-Queue: Seth Brenith <seth.brenith@microsoft.com>
> Reviewed-by: Yang Guo <yangguo@chromium.org>
> Reviewed-by: Michael Stanton <mvstanton@chromium.org>
> Cr-Commit-Position: refs/heads/master@{#62882}
Bug: v8:9376
Change-Id: I866a1cc9d4c34bfe10c7b98462451fe69763cf3f
Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/1717090
Reviewed-by: Michael Achenbach <machenbach@chromium.org>
Reviewed-by: Michael Stanton <mvstanton@chromium.org>
Commit-Queue: Seth Brenith <seth.brenith@microsoft.com>
Cr-Commit-Position: refs/heads/master@{#63008}
2019-07-30 14:38:15 +00:00
|
|
|
#!/usr/bin/env python
|
|
|
|
# Copyright 2019 the V8 project authors. All rights reserved.
|
|
|
|
# Use of this source code is governed by a BSD-style license that can be
|
|
|
|
# found in the LICENSE file.
|
|
|
|
|
|
|
|
"""This program writes a C++ file that can be used to look up whether a given
|
|
|
|
address matches known object locations. The first argument is the directory
|
|
|
|
containing the file v8heapconst.py; the second argument is the output .cc file.
|
|
|
|
"""
|
|
|
|
|
|
|
|
import sys
|
|
|
|
sys.path.insert(0, sys.argv[1])
|
|
|
|
import v8heapconst
|
|
|
|
|
|
|
|
out = """
|
|
|
|
#include <cstdint>
|
|
|
|
#include <string>
|
|
|
|
|
2019-09-05 18:50:33 +00:00
|
|
|
#include "src/common/ptr-compr-inl.h"
|
|
|
|
#include "tools/debug_helper/debug-helper-internal.h"
|
|
|
|
|
Reland "Add postmortem debugging helper library"
This is a reland of 517ab73fd7e3fdb70220b9699bca4c69a32e212e
Updates since original: now compressed pointers passed to the function
GetObjectProperties are required to be sign-extended. Previously, the
function allowed zero-extended values, but that led to ambiguity on
pointers like 0x88044919: is it compressed or is the heap range actually
centered on 0x100000000?
Original change's description:
> Add postmortem debugging helper library
>
> This change begins to implement the functionality described in
> https://docs.google.com/document/d/1evHnb1uLlSbvHAAsmOXyc25x3uh1DjgNa8u1RHvwVhk/edit#
> for investigating V8 state in crash dumps.
>
> This change adds a new library, v8_debug_helper, for providing platform-
> agnostic assistance with postmortem debugging. This library can be used
> by extensions built for debuggers such as WinDbg or lldb. Its public API
> is described by debug-helper.h; currently the only method it exposes is
> GetObjectProperties, but we'd like to add more functionality over time.
> The API surface is restricted to plain C-style structs and pointers, so
> that it's easy to link from a debugger extension built with a different
> toolchain.
>
> This change also adds a new cctest file to exercise some basic
> interaction with the new library.
>
> The API function GetObjectProperties takes an object pointer (which
> could be compressed, or weak, or a SMI), and returns a string
> description of the object and a list of properties the object contains.
> For now, the list of properties is entirely based on Torque object
> definitions, but we expect to add custom properties in future updates so
> that it can be easier to make sense of complex data structures such as
> dictionaries.
>
> GetObjectProperties does several things that are intended to generate
> somewhat useful results even in cases where memory may be corrupt or
> unavailable:
> - The caller may optionally provide a type string which will be used if
> the memory for the object's Map is inaccessible.
> - All object pointers are compared against the list of known objects
> generated by mkgrokdump. The caller may optionally provide the
> pointers for the first pages of various heap spaces, to avoid spurious
> matches. If those pointers are not provided, then any matches are
> prefixed with "maybe" in the resulting description string, such as
> "maybe UndefinedValue (0x4288000341 <Oddball>)".
>
> Bug: v8:9376
>
> Change-Id: Iebf3cc2dea3133c7811bcefcdf38d9458b02fded
> Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/1628012
> Commit-Queue: Seth Brenith <seth.brenith@microsoft.com>
> Reviewed-by: Yang Guo <yangguo@chromium.org>
> Reviewed-by: Michael Stanton <mvstanton@chromium.org>
> Cr-Commit-Position: refs/heads/master@{#62882}
Bug: v8:9376
Change-Id: I866a1cc9d4c34bfe10c7b98462451fe69763cf3f
Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/1717090
Reviewed-by: Michael Achenbach <machenbach@chromium.org>
Reviewed-by: Michael Stanton <mvstanton@chromium.org>
Commit-Queue: Seth Brenith <seth.brenith@microsoft.com>
Cr-Commit-Position: refs/heads/master@{#63008}
2019-07-30 14:38:15 +00:00
|
|
|
namespace v8_debug_helper_internal {
|
|
|
|
"""
|
|
|
|
|
|
|
|
def iterate_objects(target_space, camel_space_name):
|
|
|
|
global out
|
|
|
|
result = []
|
|
|
|
for (space, offset), (instance_type, name) in v8heapconst.KNOWN_MAPS.items():
|
|
|
|
if space == target_space:
|
|
|
|
result.append((offset, name))
|
|
|
|
for (space, offset), name in v8heapconst.KNOWN_OBJECTS.items():
|
|
|
|
if space == target_space:
|
|
|
|
result.append((offset, name))
|
|
|
|
out = out + '\nstd::string FindKnownObjectIn' + camel_space_name \
|
|
|
|
+ '(uintptr_t offset) {\n switch (offset) {\n'
|
|
|
|
for offset, name in result:
|
|
|
|
out = out + ' case ' + str(offset) + ': return "' + name + '";\n'
|
|
|
|
out = out + ' default: return "";\n }\n}\n'
|
|
|
|
|
|
|
|
iterate_objects('map_space', 'MapSpace')
|
|
|
|
iterate_objects('read_only_space', 'ReadOnlySpace')
|
|
|
|
iterate_objects('old_space', 'OldSpace')
|
|
|
|
|
|
|
|
def iterate_maps(target_space, camel_space_name):
|
|
|
|
global out
|
|
|
|
out = out + '\nint FindKnownMapInstanceTypeIn' + camel_space_name \
|
|
|
|
+ '(uintptr_t offset) {\n switch (offset) {\n'
|
|
|
|
for (space, offset), (instance_type, name) in v8heapconst.KNOWN_MAPS.items():
|
|
|
|
if space == target_space:
|
|
|
|
out = out + ' case ' + str(offset) + ': return ' + str(instance_type) \
|
|
|
|
+ ';\n'
|
|
|
|
out = out + ' default: return -1;\n }\n}\n'
|
|
|
|
|
|
|
|
iterate_maps('map_space', 'MapSpace')
|
|
|
|
iterate_maps('read_only_space', 'ReadOnlySpace')
|
|
|
|
|
2019-09-05 18:50:33 +00:00
|
|
|
out = out + '\nvoid FillInUnknownHeapAddresses(' + \
|
|
|
|
'd::HeapAddresses* heap_addresses, uintptr_t any_uncompressed_ptr) {\n'
|
|
|
|
if (hasattr(v8heapconst, 'HEAP_FIRST_PAGES')): # Only exists in ptr-compr builds.
|
|
|
|
out = out + ' if (heap_addresses->any_heap_pointer == 0) {\n'
|
|
|
|
out = out + ' heap_addresses->any_heap_pointer = any_uncompressed_ptr;\n'
|
|
|
|
out = out + ' }\n'
|
|
|
|
expected_spaces = set(['map_space', 'read_only_space', 'old_space'])
|
|
|
|
for offset, space_name in v8heapconst.HEAP_FIRST_PAGES.items():
|
|
|
|
# Turn 32-bit unsigned value into signed.
|
|
|
|
if offset >= 0x80000000:
|
|
|
|
offset -= 0x100000000
|
|
|
|
if (space_name in expected_spaces):
|
|
|
|
out = out + ' if (heap_addresses->' + space_name + '_first_page == 0) {\n'
|
|
|
|
out = out + ' heap_addresses->' + space_name + \
|
|
|
|
'_first_page = i::DecompressTaggedPointer(any_uncompressed_ptr, ' + \
|
|
|
|
str(offset) + ');\n'
|
|
|
|
out = out + ' }\n'
|
|
|
|
out = out + '}\n'
|
|
|
|
|
Reland "Add postmortem debugging helper library"
This is a reland of 517ab73fd7e3fdb70220b9699bca4c69a32e212e
Updates since original: now compressed pointers passed to the function
GetObjectProperties are required to be sign-extended. Previously, the
function allowed zero-extended values, but that led to ambiguity on
pointers like 0x88044919: is it compressed or is the heap range actually
centered on 0x100000000?
Original change's description:
> Add postmortem debugging helper library
>
> This change begins to implement the functionality described in
> https://docs.google.com/document/d/1evHnb1uLlSbvHAAsmOXyc25x3uh1DjgNa8u1RHvwVhk/edit#
> for investigating V8 state in crash dumps.
>
> This change adds a new library, v8_debug_helper, for providing platform-
> agnostic assistance with postmortem debugging. This library can be used
> by extensions built for debuggers such as WinDbg or lldb. Its public API
> is described by debug-helper.h; currently the only method it exposes is
> GetObjectProperties, but we'd like to add more functionality over time.
> The API surface is restricted to plain C-style structs and pointers, so
> that it's easy to link from a debugger extension built with a different
> toolchain.
>
> This change also adds a new cctest file to exercise some basic
> interaction with the new library.
>
> The API function GetObjectProperties takes an object pointer (which
> could be compressed, or weak, or a SMI), and returns a string
> description of the object and a list of properties the object contains.
> For now, the list of properties is entirely based on Torque object
> definitions, but we expect to add custom properties in future updates so
> that it can be easier to make sense of complex data structures such as
> dictionaries.
>
> GetObjectProperties does several things that are intended to generate
> somewhat useful results even in cases where memory may be corrupt or
> unavailable:
> - The caller may optionally provide a type string which will be used if
> the memory for the object's Map is inaccessible.
> - All object pointers are compared against the list of known objects
> generated by mkgrokdump. The caller may optionally provide the
> pointers for the first pages of various heap spaces, to avoid spurious
> matches. If those pointers are not provided, then any matches are
> prefixed with "maybe" in the resulting description string, such as
> "maybe UndefinedValue (0x4288000341 <Oddball>)".
>
> Bug: v8:9376
>
> Change-Id: Iebf3cc2dea3133c7811bcefcdf38d9458b02fded
> Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/1628012
> Commit-Queue: Seth Brenith <seth.brenith@microsoft.com>
> Reviewed-by: Yang Guo <yangguo@chromium.org>
> Reviewed-by: Michael Stanton <mvstanton@chromium.org>
> Cr-Commit-Position: refs/heads/master@{#62882}
Bug: v8:9376
Change-Id: I866a1cc9d4c34bfe10c7b98462451fe69763cf3f
Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/1717090
Reviewed-by: Michael Achenbach <machenbach@chromium.org>
Reviewed-by: Michael Stanton <mvstanton@chromium.org>
Commit-Queue: Seth Brenith <seth.brenith@microsoft.com>
Cr-Commit-Position: refs/heads/master@{#63008}
2019-07-30 14:38:15 +00:00
|
|
|
out = out + '\n}\n'
|
|
|
|
|
|
|
|
try:
|
|
|
|
with open(sys.argv[2], "r") as out_file:
|
|
|
|
if out == out_file.read():
|
|
|
|
sys.exit(0) # No modification needed.
|
|
|
|
except:
|
|
|
|
pass # File probably doesn't exist; write it.
|
|
|
|
with open(sys.argv[2], "w") as out_file:
|
|
|
|
out_file.write(out)
|