tags:

views:

461

answers:

2
+1  Q: 

ARM Undefined Instruction error

I'm getting an Undefined Instruction error while running an embedded system, no coprocessor, no MMU, Atmel 9263. The embedded system has memory in the range 0x20000000 - 0x23FFFFFF. I've had two cases so far:

  1. SP 0x0030B840, LR 2000AE78 - the LR points at valid code, so I'm not sure what causes the exception, although the SP is bogus. What other addresses, registers, memory locations should I look at?

  2. SP 0x20D384A8, LR 0x1FFCA59C - SP is ok, LR is bogus. Is there some kind of post mortem that I can do to find out how the LR got crushed? Looks like it rolled backwards off the end of the address space, but I can't figure out how.

Right now I am just replacing large chunks of code with simulations and running the tests agin to try and isolate the issue - the problem is sometimes it takes 4 hours to show the problem.

Any hints out there would be appreciated, thanks!

The chip is the AT91SAM9263, and we are using the IAR EWARM toolchain. I'm pretty sure it is straight ARM, but I will check.

EDIT

Another example of the Undef Instruct - this time SP/LR look fine. LR = 0x2000b0c4, and when I disassemble near there:

2000b0bc e5922000 LDR R2, [R2, #+0]
2000b0c0 e12fff32 BLX R2
2000b0c4 e1b00004 MOVS R0, R4

since LR is the instruction following the Undef Exception - how is BLX identified as Undefined? Note that CPSR is 0x00000013, so this is all ARM mode. However, R2 is 0x226d2a08 which is in the heap area, and I think is incorrect - the disassmbly there is ANDEQ R0,R0,R12, the instruction is 0x0000000C, and the other instructions there look like data to me. So I think the bad R2 is the problem, I'm just trying to understand why the Undef at the BLX?

thanks!

+1  A: 

Check the T bit in the CPSR. If you are inadvertently changing from ARM mode to Thumb mode (or vice versa), undefined instructions will occur.

As far as the SP or LR getting corrupted, it could be that you execute a few instructions in the wrong mode that corrupt them before hitting the undefined instruction.

EDIT

Responding to the new error case in the edit of the question:

LR contains the return address from the BLX R2, so it makes sense that it points to one instruction after the BLX.

If R2 was pointing to the heap when the BLX R2 was executed, you'll jump into the heap and start executing the data as if they were instructions. This will cause an undefined instruction exception in short order...

If you want to see the exact instruction that was undefined, look at the R14_und register (defined while you're in the undefined instruction handler) - it contains the address of the next instruction after the Undefined one.

The root cause is the bad value in R2. Assuming this is C code, my guess is a bad pointer dereference, but I'd need to see the source to know for sure.

Brent  2009-09-02 23:48:25
CPSR = 0x00000013 which means ARM mode, right?
Jeff  2009-09-03 14:34:12
Yep, bit 5 is the T bit, and 0 means ARM.
Brent  2009-09-03 22:05:41
+1  A: 

Is this an undefined instruction or a data abort because you are reading from an unaligned address?

edit:

On an undefined exception CPSR[4:0] should be 0b11011 or 0x1B not 0x13, 0x13 is a reset according to the arm arm.

dwelch  2009-09-03 21:05:25

related questions

How can I set breakpoints in an external JS script in Firebug
How to remove debug statements from production code in Java
How to make the process of debugging ASP.NET Sharepoint applications less time consuming?
Visual Studio 2008 debugging issue...
Attaching to a foreign executable in Visual C++ 2003
Remote debugging accross domains
.NET Compiler -- DEBUG vs. RELEASE
How do I change the locations of source files in a symbols file (pdb)
Remote Debugging PHP Command Line Scripts with Zend?
Debugging asp.net with firefox and visual studio.net - very slow compared to IE
TCL development: debug environment
Standalone tools for debugging stored procedures
How do you configure VS2008 to only open one webserver in a solution with multiple projects?
Getting the subversion repository number into code...
In Visual Studio you must be a member of Debug Users or Administrators to start debugging. What if you are but it doesn't work?
IL level code debugger
MSVC6: Breakpoint stops program - WTF?
How do I debug Javascript in Visual Studio 2005?
Firebug for IE
I can't get my debugger to stop breaking on first-chance exceptions
Debugging: IE6 + SSL + AJAX + post form = 404 error
Best Debugging Tools for JavaScript/xulrunner Development
Visual Studio 2008 debugger already attached work-around
Heap corruption under Win32; how to locate?
How do you debug PHP scripts?