mirror of
https://github.com/RIOT-OS/RIOT.git
synced 2025-01-18 01:12:44 +01:00
80116651c2
Presently, RIOT just emits a warning when a stack overflow is encountered but still resumes execution. In my view, execution should be aborted as the detection of a stack overflows via the heuristic provided by the scheduler is an unrecoverable error. I ran into this while performing automated tests of a RIOT application where a stack overflow occurred but I only noticed this after inspecting the application output more closely. Similar to SSP failures, I added crash_code for stack overflows.
94 lines
2.6 KiB
C
94 lines
2.6 KiB
C
/*
|
|
* Copyright (C) 2014, 2015 INRIA
|
|
*
|
|
* This file is subject to the terms and conditions of the GNU Lesser
|
|
* General Public License v2.1. See the file LICENSE in the top level
|
|
* directory for more details.
|
|
*/
|
|
|
|
/**
|
|
* @ingroup core_util
|
|
* @{
|
|
*
|
|
* @file
|
|
* @brief Crash handling header
|
|
*
|
|
* Define a ::core_panic function that allows to stop/reboot the system
|
|
* when an unrecoverable problem has occurred.
|
|
*
|
|
* @author Kévin Roussel <Kevin.Roussel@inria.fr>
|
|
*/
|
|
|
|
#ifndef PANIC_H
|
|
#define PANIC_H
|
|
|
|
#include "kernel_defines.h"
|
|
|
|
#ifdef __cplusplus
|
|
extern "C" {
|
|
#endif
|
|
|
|
/**
|
|
* @brief Definition of available panic modes
|
|
*/
|
|
typedef enum {
|
|
PANIC_GENERAL_ERROR,
|
|
PANIC_SOFT_REBOOT,
|
|
PANIC_HARD_REBOOT,
|
|
PANIC_ASSERT_FAIL,
|
|
PANIC_EXPECT_FAIL,
|
|
#ifdef MODULE_CORTEXM_COMMON
|
|
PANIC_NMI_HANDLER, /**< non maskable interrupt */
|
|
PANIC_HARD_FAULT, /**< hard fault */
|
|
#if defined(CPU_CORE_CORTEX_M3) || defined(CPU_CORE_CORTEX_M33) || \
|
|
defined(CPU_CORE_CORTEX_M4) || defined(CPU_CORE_CORTEX_M4F) || \
|
|
defined(CPU_CORE_CORTEX_M7)
|
|
PANIC_MEM_MANAGE, /**< memory controller interrupt */
|
|
PANIC_BUS_FAULT, /**< bus fault */
|
|
PANIC_USAGE_FAULT, /**< undefined instruction or unaligned access */
|
|
PANIC_DEBUG_MON, /**< debug interrupt */
|
|
#endif
|
|
PANIC_DUMMY_HANDLER, /**< unhandled interrupt */
|
|
#endif
|
|
PANIC_SSP, /**< stack smashing protector failure */
|
|
PANIC_STACK_OVERFLOW, /**< stack overflow detected */
|
|
PANIC_UNDEFINED
|
|
} core_panic_t;
|
|
|
|
/**
|
|
* @brief Handle an unrecoverable error by halting or rebooting the system
|
|
*
|
|
* A numeric code indicating the failure reason can be given
|
|
* as the *crash_code* parameter.
|
|
*
|
|
* Detailing the failure is possible using the *message* parameter.
|
|
* This function should serve a similar purpose as the panic()
|
|
* function of Unix/Linux kernels.
|
|
*
|
|
* If the DEVELHELP macro is defined, the system will be halted;
|
|
* the system will be rebooted otherwise.
|
|
*
|
|
* @warning this function NEVER returns!
|
|
*
|
|
* @param[in] crash_code a unique code for identifying the crash reason
|
|
* @param[in] message a human readable reason for the crash
|
|
*
|
|
* @return this function never returns
|
|
* */
|
|
NORETURN void core_panic(core_panic_t crash_code, const char *message);
|
|
|
|
/**
|
|
* @brief architecture dependent handling of a panic case
|
|
*
|
|
* This function gives the CPU the possibility to execute architecture
|
|
* dependent code in case of a severe error.
|
|
*/
|
|
void panic_arch(void);
|
|
|
|
#ifdef __cplusplus
|
|
}
|
|
#endif
|
|
|
|
#endif /* PANIC_H */
|
|
/** @} */
|