嵌入式Linux下通过IDA+gdb调试死机问题
背景
经过去符号、混淆、重定位等保密操作的应用程序,崩溃时产生的core文件往往无法使用gdb调试来找到详细的错误信息(显示的都是in ??())。但通过IDA逆向+GDB查看寄存器相配合,也是可以自己回溯出错误信息的。
环境及工具
IDA:自行百度下载
GDB:GNU gdb (Ubuntu 9.2-0ubuntu1~20.04.2) 9.2
板卡:rk3588
GDB调试core文件
rook@rk3588:~/crash# gdb ./Backend1 Backend_core-2024-10-12
GNU gdb (Ubuntu 9.2-0ubuntu1~20.04.2) 9.2
Copyright (C) 2020 Free Software Foundation, Inc.
License GPLv3+: GNU GPL version 3 or later <http://gnu.org/licenses/gpl.html>
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law.
Type "show copying" and "show warranty" for details.
This GDB was configured as "aarch64-linux-gnu".
Type "show configuration" for configuration details.
For bug reporting instructions, please see:
<http://www.gnu.org/software/gdb/bugs/>.
Find the GDB manual and other documentation resources online at:
<http://www.gnu.org/software/gdb/documentation/>.
For help, type "help".
Type "apropos word" to search for commands related to "word"...
Reading symbols from ./Backend1...
(No debugging symbols found in ./Backend1)
warning: core file may not match specified executable file.
[New LWP 1592]
[New LWP 1481]
[New LWP 1501]
[New LWP 1489]
[New LWP 1460]
[New LWP 1486]
[New LWP 1507]
[New LWP 1484]
[New LWP 1505]
[New LWP 1587]
[New LWP 1621]
[New LWP 1487]
[New LWP 1593]
[New LWP 1589]
[New LWP 1623]
[New LWP 1617]
[New LWP 1622]
[New LWP 1619]
[New LWP 1624]
[New LWP 1586]
[New LWP 1625]
[New LWP 1494]
[New LWP 1490]
[New LWP 1462]
[New LWP 1483]
[New LWP 1485]
[New LWP 1585]
[New LWP 1463]
[New LWP 1464]
[New LWP 1465]
[New LWP 1506]
[New LWP 1482]
[New LWP 1510]
[New LWP 1503]
[New LWP 1491]
[New LWP 1594]
[New LWP 1508]
[New LWP 1496]
[New LWP 1511]
[New LWP 1504]
[New LWP 1588]
[New LWP 1493]
[New LWP 1502]
[New LWP 1509]
[New LWP 1591]
[New LWP 1590]
[New LWP 1500]
[New LWP 1618]
[New LWP 1488]
[New LWP 
最低0.47元/天 解锁文章
扫一扫
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
