Bad memory access in GUI_Init()

    Hello,

    Recently, I encountered an annoying issue causing freezing.
    It seems like dereferencing a null pointer.
    Please refer to the image below:


    It appears to happen in a call to LCD_INIT->GUI_SelectLayer->GUI_SelectLCD->LCD_UpdateColorIndices->LCD_SetColorIndex.
    Within that function r1 is loaded from a location with an offset of 0x3C, so probably a structure member.
    The content is loaded in r1, but is zero. The next instruction (see yellow arrow) stores r0 back to location zero and thus overwriting the initial stackpointer.

    I checked the soruce code:

    C: LCD.c
    void LCD_SetColorIndex(unsigned PixelIndex) {
  if (GUI_pContext->DrawMode & LCD_DRAWMODE_REV) {
    LCD__SetBkColorIndex(PixelIndex);
  } else {
    LCD__SetColorIndex(PixelIndex);
  }
}
    C: GUI_Private.h
    #define LCD__SetBkColorIndex(Index) (*GUI_pContext->LCD_pBkColorIndex = Index)
#define LCD__SetColorIndex(Index)   (*GUI_pContext->LCD_pColorIndex   = Index)
#define LCD__GetBkColorIndex()      (*GUI_pContext->LCD_pBkColorIndex)
#define LCD__GetColorIndex()        (*GUI_pContext->LCD_pColorIndex)

    From the image, you can get that: the value of GUI_pContext->LCD_pColorIndex is null!
    So, any solutions? Please save me!

    My project using:
    1) i.MX RT1050
    2) KEIL RTX OS2
    3) emWin v5.48j

    PS:
    To catch this, I set ITCM read only to MPU.

    Thanks,
    Kenmux

    Edited 2 times, last by kenmux (March 8, 2019 at 7:58 AM).

    Hi,

    Hard to say why pColorIndex is 0. In emWin are only two places where this pointer gets set. It gets set while GUI_Init(), initializing the context and when calling GUITASK_CopyContext(). GUITASK_CopyContext() has to be called by the user, so this is really strange.


    Do you have a chance to check at which point pColorIndex gets 0?
    On initialization it gets the address of GUI_pContext->uLCD.aColorIndex32[1], does it also has a strange address?


    Regards,
    Sven

    Please read the forum rules before posting.

    Keep in mind, this is *not* a support forum.
    Our engineers will try to answer your questions between their projects if possible but this can be delayed by longer periods of time.
    Should you be entitled to support you can contact us via our support system: https://www.segger.com/ticket/
    Or you can contact us via e-mail.

    Hi Sven,

    Today I step into the vary functions.

    First, the values in the struct pointed by GUI_pContext seems okay after first initial:

    But, after calling GUI_LOCK() in the function GUI_SelectLayer() all cleared to 0:

    by this:

    Code: GUI_Task.c
    GUI_pContext = &_pSave[TaskNo].Context;

    It seems a context switching occurred.
    Then this pointer GUI_pContext->LCD_pColorIndex (its value is 0) is dereferenced.

    Edited once, last by kenmux (March 12, 2019 at 7:04 AM).

    Hi,

    do you use emWin from multiple tasks?

    If not you could build emWin with the GUI_OS set to 0. Setting the define to 0 will cause GUI_LOCK() to be defined as nothing.

    If you do, did you implemented the functions below properly?

    void GUI_X_Unlock(void);
    void GUI_X_Lock(void);
    U32 GUI_X_GetTaskId(void);

    Attached are some examples for different operating systems.

    Regards,
    Sven

    Files

    GUI_X.zip 5.23 kB – 519 Downloads

    Please read the forum rules before posting.

    Keep in mind, this is *not* a support forum.
    Our engineers will try to answer your questions between their projects if possible but this can be delayed by longer periods of time.
    Should you be entitled to support you can contact us via our support system: https://www.segger.com/ticket/
    Or you can contact us via e-mail.

    Hi Sven,

    I check the project over and over again and still the same story.
    For I step into this issue using the source codes, so it should not be the library.

    If I set ITCM read write to MPU, then the code runs well.
    (Yes, this bad memory access occurred, too.)

    For the address of ITCM start from 0x00000000, and we decide to put crucial code to it.
    So this issue makes the code crashing from the very beginning.

    Attached's the config file & OS specific file.
    I've removed the file header for the license info.

    I also check the two tasks: system tick task, background task, and they're running well.
    Before the function GUI_SelectLayer() being called, the two tasks run several times.

    So what should be the problem? Any ideas?

    Thanks,
    Kenmux

    Hi,

    which device are you using?

    Regards,
    Sven

    Please read the forum rules before posting.

    Keep in mind, this is *not* a support forum.
    Our engineers will try to answer your questions between their projects if possible but this can be delayed by longer periods of time.
    Should you be entitled to support you can contact us via our support system: https://www.segger.com/ticket/
    Or you can contact us via e-mail.

    Hi,

    unfortunately, I'm no familiar with the MPU of the iMXRT1052.

    I just know that there where some issues with the MPU of the STM32F7 in the future. If it wasn't configured properly strange errors could occur (like pointers having strange addresses).

    I'm sorry, but maybe NXP can help you here.

    Regards,
    Sven

    Please read the forum rules before posting.

    Keep in mind, this is *not* a support forum.
    Our engineers will try to answer your questions between their projects if possible but this can be delayed by longer periods of time.
    Should you be entitled to support you can contact us via our support system: https://www.segger.com/ticket/
    Or you can contact us via e-mail.

Participate now!

Don’t have an account yet? Register yourself now and be a part of our community!

Register Yourself Login