L4Android servicemanager segfault

Matthias Lange mlange at sec.t-labs.tu-berlin.de
Thu Sep 1 11:49:58 CEST 2011


On 08/30/2011 11:25 PM, LeMay, Michael D wrote:
> Thank you for the explanation.  Having access to the prebuilt root and system images used in the ARM demo would be helpful.  Are they already posted online?  I only saw X86 images listed on this page: http://l4android.org/download/download.html  Thanks.

I now uploaded the images. Make sure to boot L4Android with
androidboot.harware=l4android on the cmdline.

Matthias.

> 
> Best regards,
> Michael LeMay
> http://m.lemays.org
> 
> 
> -----Original Message-----
> From: Matthias Lange [mailto:mlange at sec.t-labs.tu-berlin.de] 
> Sent: Tuesday, August 30, 2011 12:36
> Cc: LeMay, Michael D; l4-hackers at os.inf.tu-dresden.de
> Subject: Re: L4Android servicemanager segfault
> 
> Hi,
> 
> I think, that this problem is related to the way the TLS is handled.
> Thus init times out waiting for the ueventd to create all necessary devices. Init then starts the servicemanager which does no checks on opening devices.
> 
> We have an internal solution but this is not yet ready to be pushed to the public. However it should work with the prebuilt images.
> 
> Br,
> Matthias.
> 
> On 08/30/2011 05:23 AM, LeMay, Michael D wrote:
>> Hello,
>>
>>  
>>
>> I’m trying to configure L4Android for the RealView PBX A9 emulated by 
>> QEMU, but I’m experiencing the segfault indicated near the end of this 
>> bootstrap log:
>>
>>  
>>
>> L4 Bootstrapper
>>
>>   Build: #25 Mon Aug 29 22:02:55 CDT 2011, 4.5.2
>>
>>   Scanning up to 256 MB RAM
>>
>>   Memory size is 256MB (00000000 - 10000000)
>>
>>   RAM: 0000000000000000 - 000000000fffffff: 262144kB
>>
>>   Total RAM: 256MB
>>
>>   mod13: 0174b000-03a96000: system-arm-ginger.img
>>
>>   mod12: 0164b000-0174b000: root-arm-ginger.img
>>
>>   mod11: 012a9000-0164a448: vmlinuz.android
>>
>>   mod10: 012a8000-012a810a: l4_android-arm.vbus
>>
>>   mod09: 012a7000-012a74c1: arm-rv-eb.devs
>>
>>   mod08: 012a6000-012a665f: l4_gingerbread-arm.cfg
>>
>>   mod07: 0127c000-012a55b8: fb-drv
>>
>>   mod06: 011ee000-0127b46c: mag
>>
>>   mod05: 01113000-011edb58: io
>>
>>   mod04: 010bf000-011121b8: ned
>>
>>   mod03: 010a5000-010be510: l4re
>>
>>   mod02: 0106b000-010a45f0: moe
>>
>>   mod01: 01061000-0106a33c: sigma0
>>
>>   mod00: 01015000-0106036c: fiasco
>>
>>   Moving 14 modules to 1100000 with offset eb000
>>
>>   moving module 14 { 174b000-3a96000 } -> { 1836000-3b81000 }
>>
>>   moving module 13 { 164b000-174b000 } -> { 1736000-1836000 }
>>
>>   moving module 12 { 12a9000-164a448 } -> { 1394000-1735448 }
>>
>>   moving module 11 { 12a8000-12a810a } -> { 1393000-139310a }
>>
>>   moving module 10 { 12a7000-12a74c1 } -> { 1392000-13924c1 }
>>
>>   moving module 09 { 12a6000-12a665f } -> { 1391000-139165f }
>>
>>   moving module 08 { 127c000-12a55b8 } -> { 1367000-13905b8 }
>>
>>   moving module 07 { 11ee000-127b46c } -> { 12d9000-136646c }
>>
>>   moving module 06 { 1113000-11edb58 } -> { 11fe000-12d8b58 }
>>
>>   moving module 05 { 10bf000-11121b8 } -> { 11aa000-11fd1b8 }
>>
>>   moving module 04 { 10a5000-10be510 } -> { 1190000-11a9510 }
>>
>>   moving module 03 { 106b000-10a45f0 } -> { 1156000-118f5f0 }
>>
>>   moving module 02 { 1061000-106a33c } -> { 114c000-115533c }
>>
>>   moving module 01 { 1015000-106036c } -> { 1100000-114b36c }
>>
>>   Scanning fiasco -serial_esc
>>
>>   Scanning sigma0
>>
>>   Scanning moe rom/l4_gingerbread-arm.cfg
>>
>>   Relocated mbi to [0x100f000-0x100f1fc]
>>
>>   Loading fiasco
>>
>>   Loading sigma0
>>
>>   Loading moe
>>
>>   find kernel info page...
>>
>>   found kernel info page at 0x2000
>>
>> Regions of list regions
>>
>>     [     1000,      19ff] {      a00} Kern   fiasco
>>
>>     [     2000,     5cfff] {    5b000} Kern   fiasco
>>
>>     [    90000,     9e17b] {     e17c} Sigma0 sigma0
>>
>>     [   140000,    17160b] {    3160c} Root   moe
>>
>>     [   178000,    18eec7] {    16ec8} Root   moe
>>
>>     [  1000000,   10143eb] {    143ec} Boot   bootstrap
>>
>>     [  100f000,   100f2f9] {      2fa} Root   Multiboot info
>>
>>     [  1190000,   3b80fff] {  29f1000} Root   Modules Memory
>>
>>   API Version: (87) experimental
>>
>>   Sigma0 config    ip:000900e0 sp:01013044
>>
>>   Roottask config  ip:00140178 sp:00000000
>>
>>   Starting kernel fiasco at 00001000
>>
>> Realview System ID: Rev=0 HBI=178 Build=0 Arch=5 FPGA=00
>>
>> L2: ID=00000000 Type=00000000
>>
>> L2 cache enabled
>>
>> Hello from Startup::stage2
>>
>> Initialize page table
>>
>> Number of IRQs available at this GIC: 96
>>
>> Vmem_alloc::init()
>>
>> Cache config: ON
>>
>> ID_PFR0:  00001031
>>
>> ID_PFR1:  00000011
>>
>> ID_DFR0:  00000000
>>
>> ID_AFR0:  00000000
>>
>> ID_MMFR0: 00100103
>>
>> ID_MMFR1: 20000000
>>
>> ID_MMFR2: 01230000
>>
>> ID_MMFR3: 00002111
>>
>> SERIAL ESC: allocated IRQ 44 for serial uart
>>
>> Not using serial hack in slow timer handler.
>>
>> [1;32mWelcome to Fiasco.OC (arm)!
>>
>> [0;32mL4/Fiasco.OC arm microkernel (C) 1998-2011 TU Dresden
>>
>> Rev: r36 compiled with gcc 4.5.2 for Realview    []
>>
>> Build: #1 Mon Aug 29 13:29:34 CDT 2011
>>
>> [0m
>>
>> Calibrating timer loop... done.
>>
>> SIGMA0: Hello!
>>
>>   KIP @ 2000
>>
>>   allocated 4KB for maintenance structures
>>
>> SIGMA0: Dump of all resource maps
>>
>> RAM:------------------------
>>
>> [0:0;fff]
>>
>> [0:5d000;8ffff]
>>
>> [0:9f000;13ffff]
>>
>> [4:140000;171fff]
>>
>> [0:172000;177fff]
>>
>> [4:178000;18efff]
>>
>> [0:18f000;100efff]
>>
>> [4:100f000;100ffff]
>>
>> [0:1010000;118ffff]
>>
>> [4:1190000;3b80fff]
>>
>> [0:3b81000;effffff]
>>
>> IOMEM:----------------------
>>
>> [0:10000000;ffffffff]
>>
>> MOE: Hello world
>>
>> MOE: found 202084 KByte free memory
>>
>> MOE: found RAM from 5d000 to f000000
>>
>> MOE: allocated 239 KByte for the page array @0x9f000
>>
>> MOE: virtual user address space [0-bfffffff]
>>
>> MOE: rom name space cap -> [C:501000]
>>
>>   BOOTFS: [1190000-11a9510] [C:503000] l4re
>>
>>   BOOTFS: [11aa000-11fd1b8] [C:504000] ned
>>
>>   BOOTFS: [11fe000-12d8b58] [C:505000] io
>>
>>   BOOTFS: [12d9000-136646c] [C:506000] mag
>>
>>   BOOTFS: [1367000-13905b8] [C:507000] fb-drv
>>
>>   BOOTFS: [1391000-139165f] [C:508000] l4_gingerbread-arm.cfg
>>
>>   BOOTFS: [1392000-13924c1] [C:509000] arm-rv-eb.devs
>>
>>   BOOTFS: [1393000-139310a] [C:50a000] l4_android-arm.vbus
>>
>>   BOOTFS: [1394000-1735448] [C:50b000] vmlinuz.android
>>
>>   BOOTFS: [1736000-1836000] [C:50c000] root-arm-ginger.img
>>
>>   BOOTFS: [1836000-3b81000] [C:50d000] system-arm-ginger.img
>>
>> MOE: cmdline: moe rom/l4_gingerbread-arm.cfg
>>
>> MOE: Starting: rom/ned rom/l4_gingerbread-arm.cfg
>>
>> MOE: loading 'rom/ned'
>>
>> Ned says: Hi World!
>>
>> Ned: loading file: 'rom/l4_gingerbread-arm.cfg'
>>
>> [31mio      | Io service[0m
>>
>> [31mio      | Ready. Waiting for request.[0m
>>
>> [36mfb      | libio: Warning: Finding 'icu' in system bus failed with
>> 'No such object found'[0m
>>
>> [36mfb      | Using LCD driver: ARM AMBA PrimeCell 11x[0m
>>
>> [32mmag     | Hello from MAG[0m
>>
>> [36mfb      | Running on QEmu (assuming PL111).[0m
>>
>> [36mfb      | Video memory is at virtual 0x4000 (size: 0x180000 Bytes)[0m
>>
>> [36mfb      | Physical video memory is at 0x48c000[0m
>>
>> [36mfb      | Color mode: 11:5:0  5:6:5[0m
>>
>> [36mfb      | Detected a 'ARM AMBA PrimeCell PL111' device.[0m
>>
>> [36mfb      | Configure 8.4 CLCD[0m
>>
>> [36mfb      | Starting server loop[0m
>>
>> [32mmag     | mapped frame buffer at 0x200000[0m
>>
>> [32mmag     | View::Info:[0m
>>
>> [32mmag     |   flags: 0[0m
>>
>> [32mmag     |   size:  1024x768  pos: 0, 0[0m
>>
>> [32mmag     |   bytes_per_line: 2048[0m
>>
>> [32mmag     |   buffer_offset:  0[0m
>>
>> [32mmag     |   RGBA(2): 5(11):6(5):5(0):0(0)[0m
>>
>> [32mmag     |   memory 200000-380000[0m
>>
>> [32mmag     | Plugin: Mag_client service started[0m
>>
>> [32mmag     | Plugin: Frame-buffer service started[0m
>>
>> [32mmag     | L4INPUT native mode activated[0m
>>
>> [32mmag     | L4INPUT:                !!! W A R N I N G !!![0m
>>
>> [32mmag     | L4INPUT:  Please, do not use Fiasco's "-esc" with L4INPUT.[0m
>>
>> [32mmag     | L4INPUT:                !!! W A R N I N G !!![0m[32m[0m
>>
>> [32mmag     | pl050: got memory 10006000, virtual base at 0x102000, IRQ
>> 52[0m
>>
>> [32mmag     | input: AT Raw Set 2 keyboard on AMBA KMI Kbd[0m
>>
>> [32mmag     | pl050: got memory 10007000, virtual base at 0x103000, IRQ
>> 53[0m
>>
>> [32mmag     | input: ImExPS/2 Generic Explorer Mouse on AMBA KMI mou[0m
>>
>> [32mmag     | l4drv: Could not find driver for OMAP_TSC.[0m
>>
>> [32mmag     | l4drv: Could not find driver for OMAP_KP.[0m
>>
>> [32mmag     | connect "AT Raw Set 2 keyboard", AMBA KMI Kbd/input0[0m
>>
>> [32mmag     | connect "ImExPS/2 Generic Explorer Mouse", AMBA KMI
>> mou/input0[0m
>>
>> [33mandroid | libio: Warning: Finding 'icu' in system bus failed with 
>> 'No such device'[0m
>>
>> [33mandroid | PH  0 (t:        1) offs=00008000 vaddr=00100000
>> vend=0050efe4[0m
>>
>> [33mandroid |                     f_sz=[0m[33m00388538 memsz=0040efe4
>> flgs=rwx[0m
>>
>> [33mandroid | PH  1 (t:        4) offs=00390514 vaddr=00488514
>> vend=00488538[0m
>>
>> [33mandroid |                     f_sz=[0m[33m00000024 memsz=00000024
>> flgs=r-x[0m
>>
>> [33mandroid | PH  2 (t: 1685382481) offs=00000000 vaddr=00000000 
>> vend=00000000[0m
>>
>> [33mandroid |                     f_sz=[0m[33m00000000 memsz=00000000
>> flgs=rwx[0m
>>
>> [33mandroid | Starting binary at 0x129498, argc=15 argv=0x80007f6c 
>> *argv=0xb1007fec argv0=rom/vmlinuz.android[0m
>>
>> [33mandroid | External resolver is at 0xa8000670[0m
>>
>> [33mandroid | [34;1m======> L4Linux 2.6 starting... <========[0m[0m
>>
>> [33mandroid | Linux version 2.6.39-l4+ (mdlemay2 at ...) (gcc version 
>> 4.5.2 (Sourcery G++ Lite 2011.03-41) ) #3 SMP Mon Aug 29 21:01:42 CDT 
>> 2011[0m
>>
>> [33mandroid | Binary name: rom/vmlinuz.android[0m
>>
>> [33mandroid |    This is an AEABI build.[0m
>>
>> [33mandroid | Linux kernel command line (14 args): 
>> [0m[33mconsole=ttyLv0
>> androidboot.console=ttyLv0 mem=128M
>> l4bdds.add=rom/system-arm-ginger.img,rw boot=local android.ril=ttyLv1 
>> ip=dhcp l4x_rd=rom/root-arm-ginger.img rw root=1:0 ramdisk_size=1500 
>> init=/init --debug l4fb.touchscreen=1[0m[33m[0m
>>
>> [33mandroid | CPU mapping (l:p)[1]: 0:0[0m
>>
>> [33mandroid | Image: 00100000 - 00600000 [5120 KiB].[0m
>>
>> [33mandroid | Areas: Text:     00100000 - 00466000 [3480kB] (a bit
>> longer)[0m
>>
>> [33mandroid |        Data:     00466000 - 00483dc0 [119kB][0m
>>
>> [33mandroid |        Initdata: 00100000 - 00128000 [160kB][0m
>>
>> [33mandroid |        BSS:      00488538 - 0050efe4 [538kB][0m
>>
>> [33mandroid | Device scan:[0m
>>
>> [33mandroid | l4lx_thread_create: Created thread 415 (cpu0) 
>> (u:b3000400, v:b3000600, sp:00467ff0)[0m
>>
>> [33mandroid | main thread will be 415[0m
>>
>> [33mandroid | l4x_register_pointer_section: addr = 00100000 size = 
>> 4255744[0m
>>
>> [33mandroid | section-with-init: virt: 0x100000 to 0x50efe3 [4155 
>> KiB][0m
>>
>> [33mandroid | section-with-init: Phys: 0x00722000 to 0x00b30fe4, Size: 
>> 4255716[0m
>>
>> [33mandroid | l4x_linux_startup: thread 415.[0m
>>
>> [33mandroid | Main thread running, waiting...[0m
>>
>> [33mandroid | main thread: received startup message.[0m
>>
>> [33mandroid | utcb 0xb3000400[0m
>>
>> [33mandroid | l4x_setup_memory: Forcing superpages for main memory[0m
>>
>> [33mandroid | l4re_global_env: 0xb1007e54[0m
>>
>> [33mandroid | Main memory size: 128MB[0m
>>
>> [33mandroid |     Main memory: virt: 0x600000 to 0x85fffff [131072 KiB][0m
>>
>> [33mandroid |     Main memory: Phys: 0x03c00000 to 0x0bc00000, Size:
>> 134217728[0m
>>
>> [33mandroid | Filling lower ptabs...[0m
>>
>> [33mandroid | Done (495 entries).[0m
>>
>> [33mandroid | l4x_register_pointer_section: addr = 005ff000 size = 
>> 4096[0m
>>
>> [33mandroid |             end: virt: 0x5ff000 to 0x5fffff [4 KiB][0m
>>
>> [33mandroid |             end: Phys: 0x00bc8000 to 0x00bc9000, Size:    
>> 4096[0m
>>
>> [33mandroid | l4x_rd_path: rom/root-arm-ginger.img[0m
>>
>> [33mandroid | Loading: rom/root-arm-ginger.img[0m
>>
>> [33mandroid | INITRD: Size of RAMdisk is 1024KiB[0m
>>
>> [33mandroid | RAMdisk from 10600000 to 10700000 [1024KiB][0m
>>
>> [33mandroid | l4lx_thread_create: Created thread 41c (timer.i0) 
>> (u:b3000800, v:00000000, sp:004a5ff4)[0m
>>
>> [33mandroid | timer_irq_thread: Starting timer IRQ thread.[0m
>>
>> Linux version 2.6.39-l4+ (mdlemay2 at ...) (gcc version 4.5.2 (Sourcery 
>> G++ Lite 2011.03-41) ) #3 SMP Mon Aug 29 21:01:42 CDT 2011
>>
>> CPU: Fiasco [860f0001] revision 1 (ARMvundefined/unknown), cr=00000000
>>
>> CPU: unknown data cache, unknown instruction cache
>>
>> cpu_v7_proc_init
>>
>> Machine: L4
>>
>> Memory policy: ECC disabled, Data cache writealloc
>>
>> arm926_flush_kern_cache_all()
>>
>> INITRD: 10600000 - 10700000
>>
>> PERCPU: Embedded 5 pages/cpu @00713000 s6208 r0 d14272 u32768
>>
>> Built 1 zonelists in Zone order, mobility grouping on.  Total pages: 
>> 33781
>>
>> Kernel command line: console=ttyLv0 androidboot.console=ttyLv0 
>> mem=128M l4bdds.add=rom/system-arm-ginger.img,rw boot=local 
>> android.ril=ttyLv1 ip=dhcp l4x_rd=rom/root-arm-ginger.img rw root=1:0 
>> ramdisk_size=1500 init=/init --debug l4fb.touchscreKernePID hash table 
>> entries: 1024
>> (order: 0, 4096 bytes)
>>
>> Dentry cache hash table entries: 32768 (order: 5, 131072 bytes)
>>
>> Inode-cache hash table entries: 16384 (order: 4, 65536 bytes)
>>
>> Memory: 0MB 133MB = 133MB total
>>
>> Memory: 129740k/129740k available, 6456k reserved, 0K highmem
>>
>> Virtual kernel memory layout:
>>
>>     vector  : 0xbffff000 - 0xc0000000   (   4 kB)
>>
>>     fixmap  : 0xfff00000 - 0xfffe0000   ( 896 kB)
>>
>>     DMA     : 0xffc00000 - 0xffe00000   (   2 MB)
>>
>>     vmalloc : 0x08600000 - 0x10600000   ( 128 MB)
>>
>>     lowmem  : 0x00000000 - 0x08600000   ( 134 MB)
>>
>>     modules : 0xff100000 - 0x00100000   (  16 MB)
>>
>>       .init : 0x00100000 - 0x00128000   ( 160 kB)
>>
>>       .text : 0x00129000 - 0x00464744   (3310 kB)
>>
>>       .data : 0x00466000 - 0x00483dc0   ( 120 kB)
>>
>> Hierarchical RCU implementation.
>>
>> NR_IRQS:220
>>
>> l4lx_irq_init: l4lx_irq_max = 220
>>
>> l4lx_irq_dev_startup_timer(0)
>>
>> Console: colour dummy device 80x30
>>
>> console [ttyLv0] enabled
>>
>> Calibrating delay loop... 269.10 BogoMIPS (lpj=1345536)
>>
>> pid_max: default: 32768 minimum: 301
>>
>> Mount-cache hash table entries: 512
>>
>> CPU: Testing write buffer coherency: ok
>>
>> Brought up 1 CPUs
>>
>> SMP: Total of 1 processors activated (269.10 BogoMIPS).
>>
>> NET: Registered protocol family 16
>>
>> bio: create slab <bio-0> at 0
>>
>> Switching to clocksource kip
>>
>> NET: Registered protocol family 2
>>
>> IP route cache hash table entries: 2048 (order: 1, 8192 bytes)
>>
>> TCP established hash table entries: 8192 (order: 4, 65536 bytes)
>>
>> TCP bind hash table entries: 8192 (order: 4, 65536 bytes)
>>
>> TCP: Hash tables configured (established 8192 bind 8192)
>>
>> TCP reno registered
>>
>> UDP hash table entries: 128 (order: 0, 4096 bytes)
>>
>> UDP-Lite hash table entries: 128 (order: 0, 4096 bytes)
>>
>> NET: Registered protocol family 1
>>
>> RPC: Registered udp transport module.
>>
>> RPC: Registered tcp transport module.
>>
>> RPC: Registered tcp NFSv4.1 backchannel transport module.
>>
>> Trying to unpack rootfs image as initramfs...
>>
>> rootfs image is not initramfs (junk in compressed archive); looks like 
>> an initrd
>>
>> INITRD: Freeing memory.
>>
>> Hi from the sample module
>>
>> [33mandroid | sample module: Also a warm welcome to the console[0m
>>
>> msgmni has been set to 253
>>
>> io scheduler noop registered
>>
>> io scheduler deadline registered
>>
>> io scheduler cfq registered (default)
>>
>> l4fb l4fb.0: look for capability 'fb' as goos session
>>
>> l4fb l4fb.0: 640x480 at 16 2bypp, size: 614400 @ 10600000
>>
>> l4fb l4fb.0: 5:6:5 11:5:0 linelen=1280 visual=2
>>
>> Console: switching to colour frame buffer device 80x30
>>
>> l4fb l4fb.0: l4fb L4 frame buffer device (refresh: 10jiffies)
>>
>> input: L4keyb '0' as /devices/virtual/input/input0
>>
>> input: L4mouse '0' as /devices/virtual/input/input1
>>
>> L4 serial driver
>>
>> ttyLv0 at MMIO 0x1 (irq = 210) is a L4
>>
>> L4 shared mem serial driver
>>
>> l4cdds: No name given, not starting.
>>
>> brd: module loaded
>>
>> l4bdds: Disk 'rom/system-arm-ginger.img' size = 36140 KB (35 MB)
>> flags=101 addr=10697000
>>
>> ------------[ cut here ]------------
>>
>> WARNING: at /home/mdlemay2/tmp/l4android/kernel/softirq.c:159
>> local_bh_enable_ip+0xa0/0xac()
>>
>> [<001360ac>] (unwind_backtrace+0x0/0xf8) from [<00147b7c>]
>> (warn_slowpath_common+0x50/0x60)
>>
>> [<00147b7c>] (warn_slowpath_common+0x50/0x60) from [<00147c40>]
>> (warn_slowpath_null+0x1c/0x24)
>>
>> [<00147c40>] (warn_slowpath_null+0x1c/0x24) from [<0014de44>]
>> (local_bh_enable_ip+0xa0/0xac)
>>
>> [<0014de44>] (local_bh_enable_ip+0xa0/0xac) from [<0019594c>]
>> (bdi_register+0xec/0x150)
>>
>> [<0019594c>] (bdi_register+0xec/0x150) from [<001959dc>]
>> (bdi_register_dev+0x2c/0x34)
>>
>> [<001959dc>] (bdi_register_dev+0x2c/0x34) from [<002ad8b8>]
>> (add_disk+0x9c/0x27c)
>>
>> [<002ad8b8>] (add_disk+0x9c/0x27c) from [<001138fc>]
>> (l4bdds_init+0x234/0x28c)
>>
>> [<001138fc>] (l4bdds_init+0x234/0x28c) from [<00100780>]
>> (do_one_initcall+0xa0/0x16c)
>>
>> [<00100780>] (do_one_initcall+0xa0/0x16c) from [<00100918>]
>> (kernel_init+0xcc/0x15c)
>>
>> [<00100918>] (kernel_init+0xcc/0x15c) from [<0012e5d0>]
>> (kernel_thread_exit+0x0/0x8)
>>
>> ---[ end trace 9feec23bbcf28fc1 ]---
>>
>> l4bdds0: detected capacity change from 0 to 37007360
>>
>> l4bdds0: unknown partition table
>>
>> mousedev: PS/2 mouse device common for all mice
>>
>> TCP cubic registered
>>
>> NET: Registered protocol family 17
>>
>> Registering the dns_resolver key type
>>
>> [32mmag     | Input: new keyboard device (src='userdata: 0x1e2e8'
>> stream='userdata: 0x13560')[0m
>>
>> [32mmag     |                            bus='i8042' vendor=0x1
>> product=0x2 version=43907[0m[32m[0m
>>
>> RAMDISK: ext2 filesystem found at block 0
>>
>> RAMDISK: Loading 1024KiB [1 disk] into ram disk... 
>> |/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\done.
>>
>> EXT2-fs (ram0): warning: mounting unchecked fs, running e2fsck is 
>> recommended
>>
>> VFS: Mounted root (ext2 filesystem) on device 1:0.
>>
>> Freeing init memory: 160K
>>
>> init: cannot open '/initlogo.rle'
>>
>> init: Unable to open persistent property directory /data/property 
>> errno: 2
>>
>> init (1): /proc/1/oom_adj is deprecated, please use 
>> /proc/1/oom_score_adj instead.
>>
>> init: cannot find '/system/etc/install-recovery.sh', disabling 
>> 'flash_recovery'
>>
>> [33mandroid | cpu0: segfault for servicemanager(24) [T:a5] at 
>> 00000000, ip=00008ca2, pferror = 4[0m
>>
>> [33mandroid | 00008000 - 0000a000 r-xp 00000 
>> /system/bin/servicemanager <====[0m
>>
>> [33mandroid | 0000a000 - 0000b000 rwxp 00002 
>> /system/bin/servicemanager[0m
>>
>> [33mandroid | 0000b000 - 0000c000 rwxp[0m
>>
>> [33mandroid | 400ed000 - 400f5000 r-xs 00000 /dev/__properties__ 
>> (deleted)[0m
>>
>> [33mandroid | 40118000 - 40119000 r-xp[0m
>>
>> [33mandroid | afa00000 - afa03000 r-xp 00000 /system/lib/liblog.so[0m
>>
>> [33mandroid | afa03000 - afa04000 rwxp 00003 /system/lib/liblog.so[0m
>>
>> [33mandroid | afb00000 - afb20000 r-xp 00000 /system/lib/libm.so[0m
>>
>> [33mandroid | afb20000 - afb21000 rwxp 00020 /system/lib/libm.so[0m
>>
>> [33mandroid | afc00000 - afc01000 r-xp 00000 
>> /system/lib/libstdc++.so[0m
>>
>> [33mandroid | afc01000 - afc02000 rwxp 00001 
>> /system/lib/libstdc++.so[0m
>>
>> [33mandroid | afd00000 - afd40000 r-xp 00000 /system/lib/libc.so[0m
>>
>> [33mandroid | afd40000 - afd43000 rwxp 00040 /system/lib/libc.so[0m
>>
>> [33mandroid | afd43000 - afd4e000 rwxp[0m
>>
>> [33mandroid | b0001000 - b0009000 r-xp 00001 /system/bin/linker[0m
>>
>> [33mandroid | b0009000 - b000a000 rwxp 00009 /system/bin/linker[0m
>>
>> [33mandroid | b000a000 - b0013000 rwxp[0m
>>
>> [33mandroid | bf96f000 - bf991000 rw-p[0m
>>
>> [33mandroid | ffff0000 - ffff1000 r-xp[0m
>>
>> [33mandroid | 0: 00000000 00000000 afd46608 00000001  4: 0000a170
>> 00000000 afd41504 bf990ccc[0m
>>
>> [33mandroid | 8: 00000000 00000000 00000000 00000000 12: 0000a1ac 
>> [01;34mbf990c88[0m 00008795 [01;34m00008ca2[0m[0m
>>
>> [33mandroid | CPSR: 40000030 Err: 00000004[0m
>>
>> [1;25r[25;1H
>>
>> [32m   
>> ---------------------------------------------------------------------[m     
>>
>>
>>     CPU 0 [f0012190]: segfault
>>
>> [25;1H[32m[       l4lx.cpu0] jdb: [m[K
>>
>>  
>>
>> I built the Android userspace from source using the generic-user 
>> configuration.
>>
>>  
>>
>> Here is my L4Re configuration file:
>>
>>  
>>
>> BUILD_SYSTEMS=arm_armv7a arm_armv7a-l4f
>>
>> COLOR_TERMINAL=y
>>
>> CONFIG_ARM_PLATFORM_TYPE="rv"
>>
>> CONFIG_BUILD_ABI="l4f"
>>
>> CONFIG_BUILD_ABI_l4f=y
>>
>> CONFIG_BUILD_ARCH="arm"
>>
>> CONFIG_BUILD_ARCH_arm=y
>>
>> CONFIG_CPU_ARM_ARMV7A=y
>>
>> CONFIG_CPU_ARMV6KPLUS=y
>>
>> CONFIG_CPU_ARMV6PLUS=y
>>
>> CONFIG_CPU="armv7a"
>>
>> CONFIG_CTAGS="ctags"
>>
>> CONFIG_DROPS_INSTDIR="/path/to/l4re"
>>
>> CONFIG_DROPS_STDDIR="/path/to/l4re"
>>
>> CONFIG_ETAGS="etags"
>>
>> CONFIG_LABEL=""
>>
>> CONFIG_LEX="flex"
>>
>> CONFIG_PLATFORM_ARM_rv=y
>>
>> CONFIG_RAM_BASE=0x0
>>
>> CONFIG_RAM_SIZE_MB=256
>>
>> CONFIG_YACC="yacc"
>>
>> GCCDIR=/opt/armgcc/bin/../lib/gcc/arm-none-linux-gnueabi/4.5.2
>>
>> GCCLIBDIR=/opt/armgcc/bin/../lib/gcc/arm-none-linux-gnueabi/4.5.2/
>>
>> GCCLIB_EH=/opt/armgcc/bin/../lib/gcc/arm-none-linux-gnueabi/4.5.2/libg
>> cc_eh.a
>>
>> GCCLIB=/opt/armgcc/bin/../lib/gcc/arm-none-linux-gnueabi/4.5.2/libgcc.
>> a
>>
>> GCCMAJORVERSION=4
>>
>> GCCMINORVERSION=5
>>
>> GCCNOSTACKPROTOPT=-fno-stack-protector
>>
>> GCCSUBVERSION=2
>>
>> GCCSYSLIBDIRS=-L=/opt/armgcc/bin/../lib/gcc/arm-none-linux-gnueabi/4.5
>> .2/ -L/opt/armgcc/bin/../lib/gcc/ 
>> -L/opt/armgcc/bin/../lib/gcc/arm-none-linux-gnueabi/4.5.2/../../../../
>> arm-none-linux-gnueabi/lib/arm-none-linux-gnueabi/4.5.2/
>> -L/opt/armgcc/bin/../lib/gcc/arm-none-linux-gnueabi/4.5.2/../../../../
>> arm-none-linux-gnueabi/lib/ 
>> -L/opt/armgcc/bin/../arm-none-linux-gnueabi/libc/lib/arm-none-linux-gn
>> ueabi/4.5.2/ -L/opt/armgcc/bin/../arm-none-linux-gnueabi/libc/lib/
>> -L/opt/armgcc/bin/../arm-none-linux-gnueabi/libc/usr/lib/arm-none-linu
>> x-gnueabi/4.5.2/ 
>> -L/opt/armgcc/bin/../arm-none-linux-gnueabi/libc/usr/lib/
>>
>> GCCVERSION=4.5
>>
>> HOST_SYSTEM=linux
>>
>> INT_CPP_NAME=cc1
>>
>> INT_CXX_NAME=cc1plus
>>
>> INT_LD_NAME=arm-none-linux-gnueabi-ld
>>
>> LD_EMULATION=armelf_linux_eabi
>>
>> LD_GENDEP_PREFIX=LD_PRELOAD=libgendep.so
>> LD_LIBRARY_PATH=/home/mdlemay2/tmp/l4re/l4/build/tool/gendep/64:/home/
>> mdlemay2/tmp/l4re/l4/build/tool/gendep/32
>>
>> LD_HAS_HASH_STYLE_OPTION=y
>>
>> LDVERSION=220
>>
>> include /home/mdlemay2/tmp/l4re/l4/build/.config.indep
>>
>>  
>>
>> Here is my Fiasco (r36) configuration file:
>>
>>  
>>
>> #
>>
>> # Automatically generated make config: don't edit
>>
>> # Fiasco configuration
>>
>> # Mon Aug 29 13:29:25 2011
>>
>> #
>>
>>  
>>
>> #
>>
>> # Target configuration
>>
>> #
>>
>> # CONFIG_IA32 is not set
>>
>> # CONFIG_AMD64 is not set
>>
>> CONFIG_ARM=y
>>
>> CONFIG_PF_REALVIEW=y
>>
>> # CONFIG_PF_IMX is not set
>>
>> # CONFIG_PF_S3C2410 is not set
>>
>> # CONFIG_PF_TEGRA2 is not set
>>
>> # CONFIG_PF_OMAP is not set
>>
>> # CONFIG_PF_XSCALE is not set
>>
>> # CONFIG_PF_SA1100 is not set
>>
>> # CONFIG_PF_KIRKWOOD is not set
>>
>> # CONFIG_PF_INTEGRATOR is not set
>>
>> CONFIG_BSP_NAME="realview"
>>
>> # CONFIG_PF_REALVIEW_EB is not set
>>
>> # CONFIG_PF_REALVIEW_PB11MP is not set
>>
>> CONFIG_PF_REALVIEW_PBX=y
>>
>> # CONFIG_PF_REALVIEW_VEXPRESS is not set
>>
>> CONFIG_PF_REALVIEW_RAM_PHYS_BASE_0x0=y
>>
>> # CONFIG_PF_REALVIEW_RAM_PHYS_BASE_0x2 is not set
>>
>> # CONFIG_PF_REALVIEW_RAM_PHYS_BASE_0x7 is not set
>>
>> CONFIG_PF_REALVIEW_RAM_PHYS_BASE=0x0
>>
>> CONFIG_PF_REALVIEW_L2CACHE=y
>>
>> CONFIG_ABI_VF=y
>>
>> CONFIG_PF_ARM_MP_CAPABLE=y
>>
>> CONFIG_CAN_ARM_CPU_CORTEX_A9=y
>>
>> CONFIG_ARM_CORTEX_A9=y
>>
>> # CONFIG_ARM_ALIGNMENT_CHECK is not set
>>
>> # CONFIG_ARM_CA9_ENABLE_SWP is not set
>>
>> # CONFIG_FPU is not set
>>
>>  
>>
>> #
>>
>> # Kernel options
>>
>> #
>>
>> CONFIG_CONTEXT_4K=y
>>
>> # CONFIG_FINE_GRAINED_CPUTIME is not set
>>
>> CONFIG_SCHED_FIXED_PRIO=y
>>
>>  
>>
>> #
>>
>> # Debugging
>>
>> #
>>
>> CONFIG_INLINE=y
>>
>> # CONFIG_NDEBUG is not set
>>
>> CONFIG_NO_FRAME_PTR=y
>>
>> # CONFIG_STACK_DEPTH is not set
>>
>> # CONFIG_LIST_ALLOC_SANITY is not set
>>
>> CONFIG_SERIAL=y
>>
>> CONFIG_JDB=y
>>
>> # CONFIG_JDB_LOGGING is not set
>>
>> # CONFIG_JDB_DISASM is not set
>>
>> # CONFIG_JDB_GZIP is not set
>>
>> # CONFIG_VMEM_ALLOC_TEST is not set
>>
>> # CONFIG_DEBUG_KERNEL_PAGE_FAULTS is not set
>>
>> # CONFIG_WARN_NONE is not set
>>
>> CONFIG_WARN_WARNING=y
>>
>> # CONFIG_WARN_ANY is not set
>>
>>  
>>
>> #
>>
>> # Compiling
>>
>> #
>>
>> CONFIG_CC="gcc"
>>
>> CONFIG_CXX="g++"
>>
>> CONFIG_HOST_CC="gcc"
>>
>> CONFIG_HOST_CXX="g++"
>>
>> # CONFIG_VERBOSE is not set
>>
>> # CONFIG_MAINTAINER_MODE is not set
>>
>> CONFIG_LABEL=""
>>
>> # CONFIG_EXPERIMENTAL is not set
>>
>> CONFIG_PERF_CNT=y
>>
>> CONFIG_BIT32=y
>>
>> CONFIG_ARM_V7=y
>>
>> CONFIG_ARM_V6PLUS=y
>>
>> CONFIG_WARN_LEVEL=1
>>
>> CONFIG_XARCH="arm"
>>
>> CONFIG_ABI="vf"
>>
>>  
>>
>>  
>>
>> I built an ELF image for QEMU and executed it with this command:
>> qemu-system-arm -kernel build/images/bootstrap_lx_ginger-arm.elf -M
>> realview-pbx-a9 -serial stdio -m 256
>>
>>  
>>
>> Any ideas on what’s going wrong or next steps I can take to diagnose 
>> the issue?  Thanks!
>>
>>  
>>
>> Best regards,
>>
>> Michael LeMay
>>
>> http://m.lemays.org
>>
>>  
>>
>>
>>
>> _______________________________________________
>> l4-hackers mailing list
>> l4-hackers at os.inf.tu-dresden.de
>> http://os.inf.tu-dresden.de/mailman/listinfo/l4-hackers
> 
> --
> Dipl.-Inf. Matthias Lange <mlange at sec.t-labs.tu-berlin.de> Security in Telecommunications TU Berlin / Deutsche Telekom Laboratories Ernst-Reuter-Platz 7, 10587 Berlin
> Phone: +49 - 30 - 8353 58 553
> Mobile: +49 - 160 - 587 28 07
> Web: http://www.t-labs.tu-berlin.de/sect

-- 
Dipl.-Inf. Matthias Lange <mlange at sec.t-labs.tu-berlin.de>
Security in Telecommunications
TU Berlin / Deutsche Telekom Laboratories
Ernst-Reuter-Platz 7, 10587 Berlin
Phone: +49 - 30 - 8353 58 553
Mobile: +49 - 160 - 587 28 07
Web: http://www.t-labs.tu-berlin.de/sect




More information about the l4-hackers mailing list