Linux驱动开发常用调试工具---之内存读写工具devmem和devkmem
来源:互联网 发布:网络用语大全数字 编辑:程序博客网 时间:2024/05/18 00:48
How about Android ? :
code:
system/core/toolbox/r.c
usage:
#/system/bin/r 0x1013000 #/system/bin/r 0x1013004 #/system/bin/r 0x1013008 #/system/bin/r 0x101300C
问题
这段时间实验室要完成一个内存故障注入工具和寄存器故障注入工具,在编写驱动的过程中,调试起来很麻烦(一般都是printk打印出来的,调试起来太不方便),于是想
“可不可以在调试设备驱动的时候,利用一个小工具来读写内存某块区域的值以及CPU中寄存器的值?
这点前辈的大神已经为我们找到了,参见《LDD3》的《第十五章 内存映射和DMA》
目前已经有这样的工具了devmem和devkmem,就是通过mmap映射/dev/mem的。
这个工具的源码简单,google一下到处都是,这里随便给出一两个地址:
http://sources.buildroot.net/devmem2.c
https://dev.openwrt.org/browser/packages/utils/devmem2/src/devmem2.c
/dev/mem和/dev/kmem其实是在同一个驱动中代码中产生的:drivers/char/mem.c
如果想知道具体的情况,建议大家认真学习《LDD3》的《第十五章 内存映射和DMA》,然后自己分析源码。
Linux下/dev/mem和/dev/kmem的区别
/dev/mem: 物理内存的全镜像。可以用来访问物理内存。用来访问物理IO设备,比如X用来访问显卡的物理内存,或嵌入式中访问GPIO。用法一般就是open,然后mmap,接着可以使用map之后的地址来访问物理内存。这其实就是实现用户空间驱动的一种方法。/dev/kmem: kernel看到的虚拟内存的全镜像。可以用来访问kernel的内容。 一般可以用来查看kernel的变量,或者用作rootkit之类的。
devmem
- 使用
Usage: ./devmem { address } [ type [ data ] ] address : memory address to act upon type : access operation type : [b]yte, [h]alfword, [w]ord data : data to be written
参数 描述
address 物理地址,如果是要修改该地址的数据,需要填入下面的参数;如果只是读取,省略即可
type 要访问的数据类型 [b]yte, [h]alfword, [w]ord
data 想要写入的数据
通过使用,发现IO内存和物理内核都可以读写。
- 源码
/* * devmem2.c: Simple program to read/write from/to any location in memory. * * Copyright (C) 2000, Jan-Derk Bakker (J.D.Bakker@its.tudelft.nl) * * * This software has been developed for the LART computing board * (http://www.lart.tudelft.nl/). The development has been sponsored by * the Mobile MultiMedia Communications (http://www.mmc.tudelft.nl/) * and Ubiquitous Communications (http://www.ubicom.tudelft.nl/) * projects. * * The author can be reached at: * * Jan-Derk Bakker * Information and Communication Theory Group * Faculty of Information Technology and Systems * Delft University of Technology * P.O. Box 5031 * 2600 GA Delft * The Netherlands * * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation; either version 2 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program; if not, write to the Free Software * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA * */#include <stdio.h>#include <stdlib.h>#include <unistd.h>#include <string.h>#include <errno.h>#include <signal.h>#include <fcntl.h>#include <ctype.h>#include <termios.h>#include <sys/types.h>#include <sys/mman.h>#define FATAL do { fprintf(stderr, "Error at line %d, file %s (%d) [%s]\n", \ __LINE__, __FILE__, errno, strerror(errno)); exit(1); } while(0)#define MAP_SIZE 4096UL#define MAP_MASK (MAP_SIZE - 1)int main(int argc, char **argv) { int fd; void *map_base, *virt_addr; unsigned long read_result, writeval; off_t target; int access_type = 'w'; if(argc < 2) { fprintf(stderr, "\nUsage:\t%s { address } [ type [ data ] ]\n" "\taddress : memory address to act upon\n" "\ttype : access operation type : [b]yte, [h]alfword, [w]ord\n" "\tdata : data to be written\n\n", argv[0]); exit(1); } target = strtoul(argv[1], 0, 0); if(argc > 2) access_type = tolower(argv[2][0]); if((fd = open("/dev/mem", O_RDWR | O_SYNC)) == -1) FATAL; printf("/dev/mem opened.\n"); fflush(stdout); /* Map one page */ map_base = mmap(0, MAP_SIZE, PROT_READ | PROT_WRITE, MAP_SHARED, fd, target & ~MAP_MASK); if(map_base == (void *) -1) FATAL; printf("Memory mapped at address %p.\n", map_base); fflush(stdout); virt_addr = map_base + (target & MAP_MASK); switch(access_type) { case 'b': read_result = *((unsigned char *) virt_addr); break; case 'h': read_result = *((unsigned short *) virt_addr); break; case 'w': read_result = *((unsigned long *) virt_addr); break; default: fprintf(stderr, "Illegal data type '%c'.\n", access_type); exit(2); } printf("Value at address 0x%X (%p): 0x%X\n", target, virt_addr, read_result); fflush(stdout); if(argc > 3) { writeval = strtoul(argv[3], 0, 0); switch(access_type) { case 'b': *((unsigned char *) virt_addr) = writeval; read_result = *((unsigned char *) virt_addr); break; case 'h': *((unsigned short *) virt_addr) = writeval; read_result = *((unsigned short *) virt_addr); break; case 'w': *((unsigned long *) virt_addr) = writeval; read_result = *((unsigned long *) virt_addr); break; } printf("Written 0x%X; readback 0x%X\n", writeval, read_result); fflush(stdout); } if(munmap(map_base, MAP_SIZE) == -1) FATAL; close(fd); return 0;}
devkmem
- 使用
使用方法: 用cat /proc/kallsyms | grep ***
找到要查看的变量的地址, 这个地址作为本程序的输入参数。
用法:devkmem { address }
参数 描述
address 虚拟地址(内核逻辑地址) - 源码
仅支持读取)内核虚拟地址中的数据。
#include <stdio.h>#include <stdlib.h>#include <fcntl.h>#include <string.h>#include <errno.h>#include <sys/stat.h>#include <sys/types.h>#include <sys/mman.h>#define DEVKMEM "/dev/kmem"#define PAGE_SIZE 0x1000#define PAGE_MASK (~(PAGE_SIZE-1))int main(int argc, char* argv[]){ int fd; char *mbase; char read_buf[10]; unsigned int regAddr; unsigned int varAddr; varAddr = strtoul(argv[1], 0, 16); unsigned int ptr = varAddr & ~(PAGE_MASK); fd = open(DEVKMEM, O_RDONLY); if (fd == -1) { perror("open"); exit(-1); } mbase = mmap(0,PAGE_SIZE,PROT_READ,MAP_SHARED,fd, (varAddr & PAGE_MASK)); if (mbase == MAP_FAILED) { printf("map failed %s\n",strerror(errno)); } printf("varAddr = 0x%X \n", varAddr); printf("mapbase = 0x%X \n", (unsigned int)mbase); printf("value = 0x%X \n",*(unsigned int*)(mbase+ptr)); printf("char = %c%c%c%c \n", *(char *)(mbase+ptr), *(char *)(mbase+ptr+1), *(char *)(mbase+ptr+2), *(char *)(mbase+ptr+3)); close(fd); munmap(mbase,PAGE_SIZE); return 0;}
转载来源:http://blog.csdn.net/fybon/article/details/54632518
0 0
- Linux驱动开发常用调试工具---之内存读写工具devmem和devkmem
- Linux驱动开发常用调试工具---之内存读写工具devmem和devkmem
- Linux驱动开发常用调试工具---之内存读写工具devmem和devkmem
- Linux驱动开发常用调试工具---之内存读写工具devmem
- Linux驱动开发常用调试工具-------之devmem
- Linux驱动开发常用调试工具-------之devmem
- Linux驱动开发常用调试工具-------之devmem
- Linux驱动开发常用调试工具---之devmem
- Linux驱动开发常用调试工具-------之devmem
- Linux驱动开发常用内存调试工具 memtool and devmem
- linux devmem 开发工具
- Linux驱动开发之内存管理基础
- 嵌入式 Linux 对内存的直接读写(devmem)
- 嵌入式 Linux 对内存的直接读写(devmem)
- devmem调试内核驱动
- linux后台开发常用调试工具
- linux后台开发常用调试工具
- linux后台开发常用调试工具
- iOS引导页,可选是视频或者是图片swift版
- 微信小程序(2)-小程序信息完善以及开发前准备,代码审核与发布
- Spring4.1.6常用注解
- Android AsyncTask 那些你不知道的事
- java.lang.IllegalStateException: The specified child already has a parent.
- Linux驱动开发常用调试工具---之内存读写工具devmem和devkmem
- 利用mybatis-generator自动生成代码
- RK3288开发过程中遇到的问题点和解决方法
- 【Android】getActionBar()为null的解决方法总结
- php7 中的 Immutable数组 与 非Immutable数组
- 光波波长划分和无线电波频段划分
- 悼念512汶川大地震遇难同胞 (sdut oj)
- 展望——量化未来真的能跑赢曾经的历史么?(二)
- Sqoop数据导入导出