[panda-users] replay records with PANDROID

gilles B gillusg75 at gmail.com
Tue Jul 12 10:18:08 EDT 2016 

Ho sorry, I have now added the "-android" and it works, amazing !
To be noted that the "-android" is present in the tutorial of the doc:
https://github.com/moyix/panda/blob/master/docs/LINE_Censorship.md
however it is not present in the command of PANDA share website:
http://www.rrshare.org/detail/35/

It's still surprising when I run the same replay command multiple times
consecutively, from time to time I still have the error of
"log_replay2.txt" (see my first post), e.g.: I had to run this command 4
times to get a successful replay

Ohterwise the output log seems fine (log_replay_ok.txt enclosed) although
there are some attempts to connect to ADB, which is strange for a replay
mode + other errors like "qemu-system-arm: Error -22 while loading VM
state" that don't seem to be a problem for the success of the replay.
At least I'm able to use different plugins that work like a charm)

2016-07-11 13:06 GMT+01:00 Brendan Dolan-Gavitt <brendandg at nyu.edu>:

> Hi,
>
> It looks like you are missing the "-android" option when replaying line2.
>
> Also, if you are using the most recent git version of PANDA, note that
> a recent change introduced a regression to the ARM record/replay
> support. If you roll back to commit 38e9caf ARM record/replay will
> work correctly. This issue is currently being tracked at
> https://github.com/moyix/panda/issues/91 and we'll try to get it fixed
> soon.
>
> -Brendan
>
> On Mon, Jul 11, 2016 at 7:34 AM, gilles B <gillusg75 at gmail.com> wrote:
> > Actually in the example above, I don't use both dummy.qcow2 and
> dummy2.qcow2
> > like in the tutorial, however even if I use both, I have the same issue:
> >
> > root at pandavm:/home/panda/Desktop/line_android_test#
> > /home/panda/panda/qemu/arm-softmmu/qemu-system-arm -m 2048 -replay line2
> -M
> > android_arm -cpu cortex-a9 -kernel /dev/null -global
> > goldfish_mmc.sd_path=/dev/null -global
> >
> goldfish_nand.system_path=/home/panda/Desktop/line_android_test/dummy2.qcow2
> > -global
> >
> goldfish_nand.user_data_path=/home/panda/Desktop/line_android_test/dummy.qcow2
> > goldfish_add_device: goldfish_device_bus, base ff001000 1000, irq 1 1
> > goldfish_device_bus: ff001000  30
> > goldfish_add_device: goldfish_int, base ff000000 1000, irq 0 0
> > goldfish_int: ff000000  38
> > goldfish_add_device: goldfish_timer, base ff003000 1000, irq 3 1
> > goldfish_timer: ff003000  40
> > goldfish_add_device: goldfish_rtc, base ff010000 1000, irq 10 1
> > goldfish_rtc: ff010000  48
> > goldfish_add_device: goldfish_tty, base ff002000 1000, irq 4 1
> > goldfish_tty: ff002000  50
> > android_arm_init serial 1 0
> > android_arm_init serial 2 0
> > android_arm_init serial 3 0
> > goldfish_add_device: smc91x, base ff011000 1000, irq 11 1
> > goldfish_add_device: goldfish_fb, base ff012000 1000, irq 12 1
> > goldfish_fb: ff012000  68
> > goldfish_add_device: goldfish_mmc, base ff005000 1000, irq 13 1
> > goldfish_mmc: ff005000  70
> > goldfish_add_device: goldfish_memlog, base ff006000 1000, irq 0 0
> > goldfish_memlog: ff006000  78
> > goldfish_add_device: goldfish-battery, base ff013000 1000, irq 14 1
> > goldfish-battery: ff013000  80
> > goldfish_add_device: goldfish_events, base ff014000 1000, irq 15 1
> > goldfish_events: ff014000  88
> > Using event IRQ
> > Invalid system partition size for non-QCOW image: 0emulator: geometry
> says
> > there are 2048 blocks
> >
> > emulator: rounding devsize up to a full eraseunit, now e7000
> >
> > emulator: Dev size of /home/panda/Desktop/line_android_test/dummy2.qcow2
> is
> > e7000
> >
> > Invalid data partition size for non-QCOW image: 0emulator: Dev size 0x0
> came
> > from argument
> >
> > emulator: geometry says there are 2048 blocks
> >
> > emulator: rounding devsize up to a full eraseunit, now e7000
> >
> > emulator: Dev size of /home/panda/Desktop/line_android_test/dummy.qcow2
> is
> > e7000
> >
> > emulator: Dev size 0x0 came from argument
> >
> > emulator: geometry says there are 0 blocks
> >
> > emulator: Dev size of /tmp/android-root/emulator-sPg44b is 0
> >
> > goldfish_add_device: goldfish_nand, base ff015000 1000, irq 16 1
> > goldfish_nand: ff015000  90
> > goldfish_add_device: qemu_pipe, base ff016000 2000, irq 17 1
> > qemu_pipe: ff016000  98
> > emulator: control console listening on port 5554, ADB on port 5555
> > emulator: can't connect to ADB server: Connection refused
> > emulator: Realistic sensor emulation is not available, since the remote
> > controller is not accessible:
> >  Connection refused
> > loading snapshot
> > qemu: warning: error while loading state for instance 0x0 of device
> 'qemud'
> > qemu-system-arm: Error -5 while loading VM state
> > ... done.
> > opening nondet log for read : ./line2-rr-nondet.log
> > Infinite loop detected during replay, aborting.
> > {guest_instr_count=1 pc=0x00000000, secondary=0x00000000}
> > line2:           1 (  0.00%) instrs.    1.64 sec.  2.04 GB ram.
> > total_instr in replay: 10367712943
> > ERROR: replay failed!
> > Time taken was: 0 seconds.
> > Stats:
> > RR_INPUT_1 number = 0, size = 0 bytes
> > RR_INPUT_2 number = 0, size = 0 bytes
> > RR_INPUT_4 number = 0, size = 0 bytes
> > RR_INPUT_8 number = 0, size = 0 bytes
> > RR_INTERRUPT_REQUEST number = 3, size = 84 bytes
> > RR_EXIT_REQUEST number = 0, size = 0 bytes
> > RR_SKIPPED_CALL number = 0, size = 0 bytes
> > RR_DEBUG number = 0, size = 0 bytes
> > max_queue_len = 1
> > 0 items on recycle list, 0 bytes total
> > ERROR: replay failed!
> > Aborted
> > root at pandavm:/home/panda/Desktop/line_android_test#
> >
> >
> > 2016-07-11 12:16 GMT+01:00 gilles B <gillusg75 at gmail.com>:
> >>
> >> Hello guys,
> >>
> >> Hope you are doing well.
> >> I've been playing with PANDA on x86 using different plugins over the
> last
> >> months and I quite like it )
> >> I would like now to go further and to use it with Android on ARM. I am
> now
> >> able to create some records of my Android OS running in QEMU,
> unfortunately
> >> I cannot replay any of my Android records with PANDA.
> >> In order to see if this came from my records, I have tried to replay a
> >> record from rrsahre.org, I have done exactly the same steps as for this
> >> example:
> >> https://github.com/moyix/panda/blob/master/docs/LINE_Censorship.md
> >> When I replay the record of "line2" I have some issues: see logs
> enclosed.
> >> Surprisingly if I run twice the same replay command consecutively, I
> have
> >> either the error of log_replay.txt or the one of log_replay2.txt, but
> it is
> >> the first one most of the time...
> >> Did anybody ever have this problem ?
> >>
> >> I have also been able to create my own Android records based on
> >> https://github.com/moyix/panda/blob/master/docs/Android.md
> >> Unfortunately I end up with the same errors.
> >>
> >> Regards,
> >>
> >> Gilles
> >
> >
> >
> > _______________________________________________
> > panda-users mailing list
> > panda-users at mit.edu
> > http://mailman.mit.edu/mailman/listinfo/panda-users
> >
>
>
>
> --
> Brendan Dolan-Gavitt
> Assistant Professor, Department of Computer Science and Engineering
> NYU Tandon School of Engineering
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.mit.edu/pipermail/panda-users/attachments/20160712/98bc5953/attachment-0001.html
-------------- next part --------------
root at pandavm:/home/panda/Desktop/line_android_test# /home/panda/panda/qemu/arm-softmmu/qemu-system-arm -m 2048 -replay line2 -M android_arm -android -cpu cortex-a9 -kernel /dev/null -global goldfish_mmc.sd_path=/dev/null -global goldfish_nand.system_path=/home/panda/Desktop/line_android_test/dummy2.qcow2 -global goldfish_nand.user_data_path=/home/panda/Desktop/line_android_test/dummy.qcow2
emulator: registered 'boot-properties' qemud service
emulator: Adding boot property: 'dalvik.vm.heapsize' = '48m'
emulator: Adding boot property: 'qemu.sf.fake_camera' = 'both'
emulator: Adding boot property: 'qemu.hw.mainkeys' = '0'
goldfish_add_device: goldfish_device_bus, base ff001000 1000, irq 1 1
goldfish_device_bus: ff001000	 30
goldfish_add_device: goldfish_int, base ff000000 1000, irq 0 0
goldfish_int: ff000000	 38
goldfish_add_device: goldfish_timer, base ff003000 1000, irq 3 1
goldfish_timer: ff003000	 40
goldfish_add_device: goldfish_rtc, base ff010000 1000, irq 10 1
goldfish_rtc: ff010000	 48
goldfish_add_device: goldfish_tty, base ff002000 1000, irq 4 1
goldfish_tty: ff002000	 50
android_arm_init serial 1 0
android_arm_init serial 2 0
android_arm_init serial 3 0
goldfish_add_device: smc91x, base ff011000 1000, irq 11 1
goldfish_add_device: goldfish_fb, base ff012000 1000, irq 12 1
goldfish_fb: ff012000	 68
goldfish_add_device: goldfish_mmc, base ff005000 1000, irq 13 1
goldfish_mmc: ff005000	 70
goldfish_add_device: goldfish_memlog, base ff006000 1000, irq 0 0
goldfish_memlog: ff006000	 78
goldfish_add_device: goldfish-battery, base ff013000 1000, irq 14 1
goldfish-battery: ff013000	 80
goldfish_add_device: goldfish_events, base ff014000 1000, irq 15 1
goldfish_events: ff014000	 88
Using event IRQ
Invalid system partition size for non-QCOW image: 0emulator: geometry says there are 2048 blocks

emulator: rounding devsize up to a full eraseunit, now e7000

emulator: Dev size of /home/panda/Desktop/line_android_test/dummy2.qcow2 is e7000

Invalid data partition size for non-QCOW image: 0emulator: Dev size 0x0 came from argument

emulator: geometry says there are 2048 blocks

emulator: rounding devsize up to a full eraseunit, now e7000

emulator: Dev size of /home/panda/Desktop/line_android_test/dummy.qcow2 is e7000

emulator: Dev size 0x0 came from argument

emulator: geometry says there are 0 blocks

emulator: Dev size of /tmp/android-root/emulator-xskFxj is 0

goldfish_add_device: goldfish_nand, base ff015000 1000, irq 16 1
goldfish_nand: ff015000	 90
goldfish_add_device: qemu_pipe, base ff016000 2000, irq 17 1
qemu_pipe: ff016000	 98
emulator: control console listening on port 5554, ADB on port 5555
emulator: can't connect to ADB server: Connection refused
emulator: Realistic sensor emulation is not available, since the remote controller is not accessible:
 Connection refused
loading snapshot
emulator: Adding boot property: 'dalvik.vm.heapsize' = '48m'
emulator: Adding boot property: 'qemu.sf.fake_camera' = 'both'
emulator: Adding boot property: 'qemu.hw.mainkeys' = '0'
emulator: Adding boot property: 'qemu.hw.keyboard' = '0'
Unknown savevm section or instance 'goldfish_tty' 1
Unknown savevm section type 18
qemu-system-arm: Error -22 while loading VM state
... done.
opening nondet log for read :	./line2-rr-nondet.log
line2:   103817324 (  1.00%) instrs.    4.00 sec.  2.08 GB ram.
total_instr in replay: 10367712943
line2:   208214984 (  2.01%) instrs.    5.43 sec.  2.08 GB ram.
line2:   313003250 (  3.02%) instrs.    6.46 sec.  2.08 GB ram.
line2:   415792563 (  4.01%) instrs.    9.24 sec.  2.08 GB ram.
line2:   518970321 (  5.01%) instrs.   10.91 sec.  2.08 GB ram.
line2:   623105792 (  6.01%) instrs.   12.79 sec.  2.09 GB ram.
line2:   726229901 (  7.00%) instrs.   14.16 sec.  2.09 GB ram.
line2:   829488749 (  8.00%) instrs.   15.99 sec.  2.09 GB ram.
line2:   934801741 (  9.02%) instrs.   17.67 sec.  2.10 GB ram.
line2:  1036818817 ( 10.00%) instrs.   18.85 sec.  2.10 GB ram.
line2:  1140449735 ( 11.00%) instrs.   21.82 sec.  2.10 GB ram.
line2:  1246129884 ( 12.02%) instrs.   23.98 sec.  2.10 GB ram.
line2:  1348007474 ( 13.00%) instrs.   25.17 sec.  2.10 GB ram.
line2:  1452330162 ( 14.01%) instrs.   27.60 sec.  2.11 GB ram.
line2:  1555168582 ( 15.00%) instrs.   30.05 sec.  2.12 GB ram.
line2:  1658838327 ( 16.00%) instrs.   32.06 sec.  2.12 GB ram.
line2:  1762513295 ( 17.00%) instrs.   36.02 sec.  2.12 GB ram.
line2:  1866218128 ( 18.00%) instrs.   39.03 sec.  2.12 GB ram.
line2:  1969919380 ( 19.00%) instrs.   41.89 sec.  2.12 GB ram.
line2:  2074012965 ( 20.00%) instrs.   45.10 sec.  2.13 GB ram.
line2:  2178010326 ( 21.01%) instrs.   47.33 sec.  2.13 GB ram.
line2:  2280968537 ( 22.00%) instrs.   49.57 sec.  2.13 GB ram.
line2:  2384579671 ( 23.00%) instrs.   52.36 sec.  2.13 GB ram.
line2:  2488575150 ( 24.00%) instrs.   56.65 sec.  2.13 GB ram.
line2:  2592444095 ( 25.00%) instrs.   59.98 sec.  2.14 GB ram.
line2:  2695812320 ( 26.00%) instrs.   62.94 sec.  2.14 GB ram.
line2:  2800359242 ( 27.01%) instrs.   65.16 sec.  2.14 GB ram.
line2:  2902990399 ( 28.00%) instrs.   68.23 sec.  2.14 GB ram.
line2:  3006742125 ( 29.00%) instrs.   71.27 sec.  2.15 GB ram.
line2:  3110326073 ( 30.00%) instrs.   74.32 sec.  2.15 GB ram.
line2:  3214037231 ( 31.00%) instrs.   77.80 sec.  2.15 GB ram.
line2:  3317674945 ( 32.00%) instrs.   81.43 sec.  2.15 GB ram.
line2:  3421376717 ( 33.00%) instrs.   84.73 sec.  2.15 GB ram.
line2:  3526353933 ( 34.01%) instrs.   87.23 sec.  2.15 GB ram.
line2:  3629005332 ( 35.00%) instrs.   90.20 sec.  2.16 GB ram.
line2:  3733193795 ( 36.01%) instrs.   93.28 sec.  2.16 GB ram.
line2:  3836069523 ( 37.00%) instrs.   96.73 sec.  2.16 GB ram.
line2:  3939731134 ( 38.00%) instrs.   99.32 sec.  2.16 GB ram.
line2:  4043410347 ( 39.00%) instrs.  102.79 sec.  2.16 GB ram.
line2:  4147157527 ( 40.00%) instrs.  105.45 sec.  2.16 GB ram.
line2:  4251398565 ( 41.01%) instrs.  107.35 sec.  2.16 GB ram.
line2:  4354657380 ( 42.00%) instrs.  110.24 sec.  2.16 GB ram.
line2:  4458132568 ( 43.00%) instrs.  112.28 sec.  2.16 GB ram.
line2:  4562425318 ( 44.01%) instrs.  115.25 sec.  2.16 GB ram.
line2:  4665494699 ( 45.00%) instrs.  118.04 sec.  2.16 GB ram.
line2:  4769557171 ( 46.00%) instrs.  120.25 sec.  2.16 GB ram.
line2:  4874313211 ( 47.01%) instrs.  122.56 sec.  2.16 GB ram.
line2:  4976503150 ( 48.00%) instrs.  124.52 sec.  2.16 GB ram.
line2:  5080268104 ( 49.00%) instrs.  126.65 sec.  2.17 GB ram.
line2:  5184643469 ( 50.01%) instrs.  129.06 sec.  2.17 GB ram.
line2:  5288169376 ( 51.01%) instrs.  131.71 sec.  2.17 GB ram.
line2:  5391678026 ( 52.00%) instrs.  134.39 sec.  2.17 GB ram.
line2:  5495367814 ( 53.00%) instrs.  137.51 sec.  2.17 GB ram.
line2:  5599732316 ( 54.01%) instrs.  140.08 sec.  2.17 GB ram.
line2:  5703870166 ( 55.02%) instrs.  142.96 sec.  2.17 GB ram.
line2:  5805925510 ( 56.00%) instrs.  145.61 sec.  2.17 GB ram.
line2:  5911132089 ( 57.01%) instrs.  148.23 sec.  2.17 GB ram.
line2:  6013283556 ( 58.00%) instrs.  150.77 sec.  2.17 GB ram.
line2:  6117111021 ( 59.00%) instrs.  153.54 sec.  2.17 GB ram.
line2:  6221046470 ( 60.00%) instrs.  155.95 sec.  2.17 GB ram.
line2:  6324628777 ( 61.00%) instrs.  158.38 sec.  2.17 GB ram.
line2:  6427982362 ( 62.00%) instrs.  160.78 sec.  2.17 GB ram.
line2:  6533191466 ( 63.01%) instrs.  163.01 sec.  2.17 GB ram.
line2:  6635345537 ( 64.00%) instrs.  164.53 sec.  2.17 GB ram.
line2:  6740239379 ( 65.01%) instrs.  167.22 sec.  2.17 GB ram.
line2:  6842873956 ( 66.00%) instrs.  169.83 sec.  2.17 GB ram.
line2:  6946491394 ( 67.00%) instrs.  171.38 sec.  2.17 GB ram.
line2:  7050280953 ( 68.00%) instrs.  173.37 sec.  2.17 GB ram.
line2:  7154696479 ( 69.01%) instrs.  174.59 sec.  2.17 GB ram.
line2:  7257484071 ( 70.00%) instrs.  176.12 sec.  2.18 GB ram.
line2:  7362941462 ( 71.02%) instrs.  177.68 sec.  2.18 GB ram.
line2:  7465635249 ( 72.01%) instrs.  179.26 sec.  2.18 GB ram.
line2:  7568657448 ( 73.00%) instrs.  180.76 sec.  2.18 GB ram.
line2:  7672974052 ( 74.01%) instrs.  182.22 sec.  2.18 GB ram.
line2:  7778109627 ( 75.02%) instrs.  183.79 sec.  2.18 GB ram.
line2:  7879724757 ( 76.00%) instrs.  185.00 sec.  2.18 GB ram.
line2:  7985103495 ( 77.02%) instrs.  186.58 sec.  2.18 GB ram.
line2:  8087362778 ( 78.01%) instrs.  187.91 sec.  2.18 GB ram.
line2:  8190562565 ( 79.00%) instrs.  189.87 sec.  2.18 GB ram.
line2:  8294807369 ( 80.01%) instrs.  191.45 sec.  2.18 GB ram.
line2:  8399478093 ( 81.02%) instrs.  193.34 sec.  2.18 GB ram.
line2:  8501526548 ( 82.00%) instrs.  195.06 sec.  2.18 GB ram.
line2:  8605529071 ( 83.00%) instrs.  196.99 sec.  2.18 GB ram.
line2:  8708953971 ( 84.00%) instrs.  198.75 sec.  2.18 GB ram.
line2:  8812558828 ( 85.00%) instrs.  200.33 sec.  2.18 GB ram.
line2:  8917231196 ( 86.01%) instrs.  202.06 sec.  2.18 GB ram.
line2:  9020324402 ( 87.00%) instrs.  203.52 sec.  2.18 GB ram.
line2:  9123594544 ( 88.00%) instrs.  204.95 sec.  2.18 GB ram.
line2:  9227438759 ( 89.00%) instrs.  206.11 sec.  2.18 GB ram.
line2:  9332905750 ( 90.02%) instrs.  208.15 sec.  2.18 GB ram.
line2:  9434825622 ( 91.00%) instrs.  209.47 sec.  2.18 GB ram.
line2:  9538318827 ( 92.00%) instrs.  210.79 sec.  2.18 GB ram.
line2:  9641973701 ( 93.00%) instrs.  212.33 sec.  2.18 GB ram.
line2:  9747239886 ( 94.02%) instrs.  213.53 sec.  2.18 GB ram.
line2:  9850457476 ( 95.01%) instrs.  215.63 sec.  2.18 GB ram.
line2:  9953047333 ( 96.00%) instrs.  217.32 sec.  2.18 GB ram.
line2:  10057761635 ( 97.01%) instrs.  218.74 sec.  2.18 GB ram.
line2:  10161234914 ( 98.01%) instrs.  220.10 sec.  2.18 GB ram.
line2:  10264674601 ( 99.01%) instrs.  221.37 sec.  2.18 GB ram.
./line2-rr-nondet.log:  log is empty.
Replay completed successfully. 1
Time taken was: 226 seconds.
Stats:
RR_INPUT_1 number = 948, size = 25596 bytes
RR_INPUT_2 number = 366, size = 10248 bytes
RR_INPUT_4 number = 577971, size = 17339130 bytes
RR_INPUT_8 number = 0, size = 0 bytes
RR_INTERRUPT_REQUEST number = 1328728, size = 37204384 bytes
RR_EXIT_REQUEST number = 0, size = 0 bytes
RR_SKIPPED_CALL number = 16753, size = 11777049 bytes
RR_DEBUG number = 0, size = 0 bytes
max_queue_len = 1009
1008 items on recycle list, 88704 bytes total
Replay completed successfully 2.
root at pandavm:/home/panda/Desktop/line_android_test#

More information about the panda-users mailing list