| blob | edeac638e9d96d6258c7e37e83ec93cf2fafbf21 |
1 /*
2 * CDDL HEADER START
3 *
4 * The contents of this file are subject to the terms of the
5 * Common Development and Distribution License (the "License").
6 * You may not use this file except in compliance with the License.
7 *
8 * You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
9 * or http://www.opensolaris.org/os/licensing.
10 * See the License for the specific language governing permissions
11 * and limitations under the License.
12 *
13 * When distributing Covered Code, include this CDDL HEADER in each
14 * file and include the License file at usr/src/OPENSOLARIS.LICENSE.
15 * If applicable, add the following below this CDDL HEADER, with the
16 * fields enclosed by brackets "[]" replaced with your own identifying
17 * information: Portions Copyright [yyyy] [name of copyright owner]
18 *
19 * CDDL HEADER END
20 */
21 /*
22 * Copyright 2009 Sun Microsystems, Inc. All rights reserved.
23 * Use is subject to license terms.
24 *
25 * Copyright 2018 Joyent, Inc.
26 */
28 /*
29 * MDB Target Layer
30 *
31 * The *target* is the program being inspected by the debugger. The MDB target
32 * layer provides a set of functions that insulate common debugger code,
33 * including the MDB Module API, from the implementation details of how the
34 * debugger accesses information from a given target. Each target exports a
35 * standard set of properties, including one or more address spaces, one or
36 * more symbol tables, a set of load objects, and a set of threads that can be
37 * examined using the interfaces in <mdb/mdb_target.h>. This technique has
38 * been employed successfully in other debuggers, including [1], primarily
39 * to improve portability, although the term "target" often refers to the
40 * encapsulation of architectural or operating system-specific details. The
41 * target abstraction is useful for MDB because it allows us to easily extend
42 * the debugger to examine a variety of different program forms. Primarily,
43 * the target functions validate input arguments and then call an appropriate
44 * function in the target ops vector, defined in <mdb/mdb_target_impl.h>.
45 * However, this interface layer provides a very high level of flexibility for
46 * separating the debugger interface from instrumentation details. Experience
47 * has shown this kind of design can facilitate separating out debugger
48 * instrumentation into an external agent [2] and enable the development of
49 * advanced instrumentation frameworks [3]. We want MDB to be an ideal
50 * extensible framework for the development of such applications.
51 *
52 * Aside from a set of wrapper functions, the target layer also provides event
53 * management for targets that represent live executing programs. Our model of
54 * events is also extensible, and is based upon work in [3] and [4]. We define
55 * a *software event* as a state transition in the target program (for example,
56 * the transition of the program counter to a location of interest) that is
57 * observed by the debugger or its agent. A *software event specifier* is a
58 * description of a class of software events that is used by the debugger to
59 * instrument the target so that the corresponding software events can be
60 * observed. In MDB, software event specifiers are represented by the
61 * mdb_sespec_t structure, defined in <mdb/mdb_target_impl.h>. As the user,
62 * the internal debugger code, and MDB modules may all wish to observe software
63 * events and receive appropriate notification and callbacks, we do not expose
64 * software event specifiers directly as part of the user interface. Instead,
65 * clients of the target layer request that events be observed by creating
66 * new *virtual event specifiers*. Each virtual specifier is named by a unique
67 * non-zero integer (the VID), and is represented by a mdb_vespec_t structure.
68 * One or more virtual specifiers are then associated with each underlying
69 * software event specifier. This design enforces the constraint that the
70 * target must only insert one set of instrumentation, regardless of how many
71 * times the target layer was asked to trace a given event. For example, if
72 * multiple clients request a breakpoint at a particular address, the virtual
73 * specifiers will map to the same sespec, ensuring that only one breakpoint
74 * trap instruction is actually planted at the given target address. When no
75 * virtual specifiers refer to an sespec, it is no longer needed and can be
76 * removed, along with the corresponding instrumentation.
77 *
78 * The following state transition diagram illustrates the life cycle of a
79 * software event specifier and example transitions:
80 *
81 * cont/
82 * +--------+ delete +--------+ stop +-------+
83 * (|( DEAD )|) <------- ( ACTIVE ) <------> ( ARMED )
84 * +--------+ +--------+ +-------+
85 * ^ load/unload ^ ^ failure/ |
86 * delete | object / \ reset | failure
87 * | v v |
88 * | +--------+ +-------+ |
89 * +---- ( IDLE ) ( ERR ) <----+
90 * | +--------+ +-------+
91 * | |
92 * +------------------------------+
93 *
94 * The MDB execution control model is based upon the synchronous debugging
95 * model exported by Solaris proc(4). A target program is set running or the
96 * debugger is attached to a running target. On ISTOP (stop on event of
97 * interest), one target thread is selected as the representative. The
98 * algorithm for selecting the representative is target-specific, but we assume
99 * that if an observed software event has occurred, the target will select the
100 * thread that triggered the state transition of interest. The other threads
101 * are stopped in sympathy with the representative as soon as possible. Prior
102 * to continuing the target, we plant our instrumentation, transitioning event
103 * specifiers from the ACTIVE to the ARMED state, and then back again when the
104 * target stops. We then query each active event specifier to learn which ones
105 * are matched, and then invoke the callbacks associated with their vespecs.
106 * If an OS error occurs while attempting to arm or disarm a specifier, the
107 * specifier is transitioned to the ERROR state; we will attempt to arm it
108 * again at the next continue. If no target process is under our control or
109 * if an event is not currently applicable (e.g. a deferred breakpoint on an
110 * object that is not yet loaded), it remains in the IDLE state. The target
111 * implementation should intercept object load events and then transition the
112 * specifier to the ACTIVE state when the corresponding object is loaded.
113 *
114 * To simplify the debugger implementation and allow targets to easily provide
115 * new types of observable events, most of the event specifier management is
116 * done by the target layer. Each software event specifier provides an ops
117 * vector of subroutines that the target layer can call to perform the
118 * various state transitions described above. The target maintains two lists
119 * of mdb_sespec_t's: the t_idle list (IDLE state) and the t_active list
120 * (ACTIVE, ARMED, and ERROR states). Each mdb_sespec_t maintains a list of
121 * associated mdb_vespec_t's. If an sespec is IDLE or ERROR, its se_errno
122 * field will have an errno value specifying the reason for its inactivity.
123 * The vespec stores the client's callback function and private data, and the
124 * arguments used to construct the sespec. All objects are reference counted
125 * so we can destroy an object when it is no longer needed. The mdb_sespec_t
126 * invariants for the respective states are as follows:
127 *
128 * IDLE: on t_idle list, se_data == NULL, se_errno != 0, se_ctor not called
129 * ACTIVE: on t_active list, se_data valid, se_errno == 0, se_ctor called
130 * ARMED: on t_active list, se_data valid, se_errno == 0, se_ctor called
131 * ERROR: on t_active list, se_data valid, se_errno != 0, se_ctor called
132 *
133 * Additional commentary on specific state transitions and issues involving
134 * event management can be found below near the target layer functions.
135 *
136 * References
137 *
138 * [1] John Gilmore, "Working in GDB", Technical Report, Cygnus Support,
139 * 1.84 edition, 1994.
140 *
141 * [2] David R. Hanson and Mukund Raghavachari, "A Machine-Independent
142 * Debugger", Software--Practice and Experience, 26(11), 1277-1299(1996).
143 *
144 * [3] Michael W. Shapiro, "RDB: A System for Incremental Replay Debugging",
145 * Technical Report CS-97-12, Department of Computer Science,
146 * Brown University.
147 *
148 * [4] Daniel B. Price, "New Techniques for Replay Debugging", Technical
149 * Report CS-98-05, Department of Computer Science, Brown University.
150 */
152 #include <mdb/mdb_target_impl.h>
153 #include <mdb/mdb_debug.h>
154 #include <mdb/mdb_modapi.h>
155 #include <mdb/mdb_err.h>
156 #include <mdb/mdb_callb.h>
157 #include <mdb/mdb_gelf.h>
158 #include <mdb/mdb_io_impl.h>
159 #include <mdb/mdb_string.h>
160 #include <mdb/mdb_signal.h>
161 #include <mdb/mdb_frame.h>
162 #include <mdb/mdb.h>
164 #include <sys/stat.h>
165 #include <sys/param.h>
166 #include <sys/signal.h>
167 #include <strings.h>
168 #include <stdlib.h>
169 #include <errno.h>
171 /*
172 * Define convenience macros for referencing the set of vespec flag bits that
173 * are preserved by the target implementation, and the set of bits that
174 * determine automatic ve_hits == ve_limit behavior.
175 */
176 #define T_IMPL_BITS \
177 (MDB_TGT_SPEC_INTERNAL | MDB_TGT_SPEC_SILENT | MDB_TGT_SPEC_MATCHED | \
178 MDB_TGT_SPEC_DELETED)
180 #define T_AUTO_BITS \
181 (MDB_TGT_SPEC_AUTOSTOP | MDB_TGT_SPEC_AUTODEL | MDB_TGT_SPEC_AUTODIS)
183 /*
184 * Define convenience macro for referencing target flag pending continue bits.
185 */
186 #define T_CONT_BITS \
187 (MDB_TGT_F_STEP | MDB_TGT_F_STEP_OUT | MDB_TGT_F_NEXT | MDB_TGT_F_CONT)
189 mdb_tgt_t *
191 {
198 }
213 }
214 }
220 }
227 }
229 int
231 {
233 }
235 int
237 {
242 }
244 int
246 {
248 }
250 /*ARGSUSED*/
251 static int
253 {
256 }
258 void
260 {
268 }
277 }
288 }
290 void
292 {
299 }
307 /*
308 * If the root was explicitly set with -R and contains %V,
309 * expand it like a path. If the resulting directory is
310 * not present, then replace %V with "latest" and re-evaluate.
311 */
315 #ifndef _KMDB
317 #endif
326 #ifndef _KMDB
333 }
334 #endif
335 }
337 /*
338 * Re-evaluate the macro and dmod paths now that we have the
339 * new target set and m_root figured out.
340 */
344 }
347 }
348 }
350 void
352 {
354 }
358 {
360 }
364 {
366 }
370 {
372 }
374 int
376 {
378 }
380 int
382 {
384 }
386 int
388 {
390 }
392 ssize_t
395 {
408 }
410 }
412 ssize_t
415 {
431 }
433 }
435 ssize_t
437 {
439 }
441 ssize_t
443 {
448 }
450 ssize_t
452 {
454 }
456 ssize_t
458 {
463 }
465 ssize_t
467 {
469 }
471 ssize_t
473 {
478 }
480 ssize_t
482 {
484 }
486 ssize_t
488 {
493 }
495 int
497 {
499 }
501 ssize_t
504 {
512 }
520 nread++;
521 addr++;
522 p++;
523 }
528 done:
533 }
535 ssize_t
538 {
541 }
543 int
546 {
547 mdb_syminfo_t info;
548 GElf_Sym sym;
549 uint_t id;
559 }
566 found:
572 }
574 int
577 {
578 mdb_syminfo_t info;
579 GElf_Sym sym;
591 }
594 }
596 /*
597 * The mdb_tgt_lookup_by_scope function is a convenience routine for code that
598 * wants to look up a scoped symbol name such as "object`symbol". It is
599 * implemented as a simple wrapper around mdb_tgt_lookup_by_name. Note that
600 * we split on the *last* occurrence of "`", so the object name itself may
601 * contain additional scopes whose evaluation is left to the target. This
602 * allows targets to implement additional scopes, such as source files,
603 * function names, link map identifiers, etc.
604 */
605 int
608 {
629 }
630 }
633 }
635 int
638 {
644 }
646 ssize_t
649 {
650 GElf_Sym sym;
656 }
658 ssize_t
661 {
662 GElf_Sym sym;
668 }
670 int
672 {
674 }
676 int
678 {
680 }
684 {
686 }
690 {
692 }
696 {
698 }
702 {
704 }
706 /*
707 * Return the latest target status. We just copy out our cached copy. The
708 * status only needs to change when the target is run, stepped, or continued.
709 */
710 int
712 {
720 /*
721 * If we're called with the address of the target's internal status,
722 * then call down to update it; otherwise copy out the saved status.
723 */
727 /*
728 * Assert that our state is valid before returning it. The state must
729 * be valid, and DSTOP and ISTOP cannot be set simultaneously. ISTOP
730 * is only valid when stopped. DSTOP is only valid when running or
731 * stopped. If any test fails, abort the debugger.
732 */
746 }
748 /*
749 * For the given sespec, scan its list of vespecs for ones that are marked
750 * temporary and delete them. We use the same method as vespec_delete below.
751 */
752 /*ARGSUSED*/
753 void
755 {
765 }
766 }
767 }
769 /*
770 * Prune each sespec on the active list of temporary vespecs. This function
771 * is called, for example, after the target finishes a continue operation.
772 */
773 void
775 {
781 }
782 }
784 /*
785 * Transition the given sespec to the IDLE state. We invoke the destructor,
786 * and then move the sespec from the active list to the idle list.
787 */
788 void
790 {
806 }
808 /*
809 * Transition each sespec on the active list to the IDLE state. This function
810 * is called, for example, after the target terminates execution.
811 */
812 void
814 {
822 }
827 }
832 }
833 }
835 /*
836 * Attempt to transition the given sespec from the IDLE to ACTIVE state. We
837 * do this by invoking se_ctor -- if this fails, we save the reason in se_errno
838 * and return -1 with errno set. One strange case we need to deal with here is
839 * the possibility that a given vespec is sitting on the idle list with its
840 * corresponding sespec, but it is actually a duplicate of another sespec on the
841 * active list. This can happen if the sespec is associated with a
842 * MDB_TGT_SPEC_DISABLED vespec that was just enabled, and is now ready to be
843 * activated. A more interesting reason this situation might arise is the case
844 * where a virtual address breakpoint is set at an address just mmap'ed by
845 * dlmopen. Since no symbol table information is available for this mapping
846 * yet, a pre-existing deferred symbolic breakpoint may already exist for this
847 * address, but it is on the idle list. When the symbol table is ready and the
848 * DLACTIVITY event occurs, we now discover that the virtual address obtained by
849 * evaluating the symbolic breakpoint matches the explicit virtual address of
850 * the active virtual breakpoint. To resolve this conflict in either case, we
851 * destroy the idle sespec, and attach its list of vespecs to the existing
852 * active sespec.
853 */
854 int
856 {
868 /*
869 * First search the active list for an existing, duplicate sespec to
870 * handle the special case described above.
871 */
877 }
878 }
880 /*
881 * If a duplicate is found, destroy the existing, idle sespec, and
882 * attach all of its vespecs to the duplicate sespec.
883 */
901 }
906 }
908 /*
909 * If no duplicate is found, call the sespec's constructor. If this
910 * is successful, move the sespec to the active list.
911 */
917 }
922 }
929 }
931 /*
932 * Transition each sespec on the idle list to the ACTIVE state. This function
933 * is called, for example, after the target's t_run() function returns. If
934 * the se_ctor() function fails, the specifier is not yet applicable; it will
935 * remain on the idle list and can be activated later.
936 *
937 * Returns 1 if there weren't any unexpected activation failures; 0 if there
938 * were.
939 */
940 int
942 {
952 }
955 }
957 /*
958 * Transition the given sespec to the ARMED state. Note that we attempt to
959 * re-arm sespecs previously in the ERROR state. If se_arm() fails the sespec
960 * transitions to the ERROR state but stays on the active list.
961 */
962 void
964 {
976 }
977 }
979 /*
980 * Transition each sespec on the active list (except matched specs) to the
981 * ARMED state. This function is called prior to continuing the target.
982 */
983 void
985 {
992 }
993 }
995 /*
996 * Transition each sespec on the active list that is in the ARMED state to
997 * the ACTIVE state. If se_disarm() fails, the sespec is transitioned to
998 * the ERROR state instead, but left on the active list.
999 */
1000 static void
1002 {
1015 }
1016 }
1017 }
1019 /*
1020 * Determine if the software event that triggered the most recent stop matches
1021 * any of the active event specifiers. If 'all' is TRUE, we consider all
1022 * sespecs in our search. If 'all' is FALSE, we only consider ARMED sespecs.
1023 * If we successfully match an event, we add it to the t_matched list and
1024 * place an additional hold on it.
1025 */
1028 {
1041 }
1042 }
1045 }
1047 /*
1048 * This function provides the low-level target continue algorithm. We proceed
1049 * in three phases: (1) we arm the active sespecs, except the specs matched at
1050 * the time we last stopped, (2) we call se_cont() on any matched sespecs to
1051 * step over these event transitions, and then arm the corresponding sespecs,
1052 * and (3) we call the appropriate low-level continue routine. Once the
1053 * target stops again, we determine which sespecs were matched, and invoke the
1054 * appropriate vespec callbacks and perform other vespec maintenance.
1055 */
1056 static int
1059 {
1072 /*
1073 * If the target is undead, dead, or lost, we no longer allow continue.
1074 * This effectively forces the user to use ::kill or ::run after death.
1075 */
1083 /*
1084 * If any of single-step, step-over, or step-out is pending, it takes
1085 * precedence over an explicit or pending continue, because these are
1086 * all different specialized forms of continue.
1087 */
1095 /*
1096 * To handle step-over, we ask the target to find the address past the
1097 * next control transfer instruction. If an address is found, we plant
1098 * a temporary breakpoint there and continue; otherwise just step.
1099 */
1108 }
1110 /*
1111 * To handle step-out, we ask the target to find the return address of
1112 * the current frame, plant a temporary breakpoint there, and continue.
1113 */
1121 }
1138 /*
1139 * Iterate over the matched sespec list, performing autostop processing
1140 * and clearing the matched bit for each associated vespec. We then
1141 * invoke each sespec's se_cont callback in order to continue past
1142 * the corresponding event. If the matched list has more than one
1143 * sespec, we assume that the se_cont callbacks are non-interfering.
1144 */
1153 }
1159 }
1168 }
1169 }
1171 /*
1172 * Clear the se_matched field for each matched sespec, and drop the
1173 * reference count since the sespec is no longer on the matched list.
1174 */
1179 }
1181 /*
1182 * If the matched list was non-empty, see if we hit another event while
1183 * performing se_cont() processing. If so, don't bother continuing any
1184 * further. If not, arm the sespecs on the old matched list by calling
1185 * mdb_tgt_sespec_arm_all() again and then continue by calling t_cont.
1186 */
1194 }
1197 }
1202 }
1215 out:
1224 /*
1225 * When we invoke a ve_callback, it may in turn request that the
1226 * target continue immediately after callback processing is
1227 * complete. We only allow this to occur if *all* callbacks
1228 * agree to continue. To implement this behavior, we keep a
1229 * count (ncont) of such requests, and only apply the cumulative
1230 * continue bits (cbits) to the target if ncont is equal to the
1231 * total number of callbacks that are invoked (n).
1232 */
1235 /*
1236 * Place an extra hold on the current vespec and pick
1237 * up the next pointer before invoking the callback: we
1238 * must be prepared for the vespec to be deleted or
1239 * moved to a different list by the callback.
1240 */
1264 }
1269 }
1272 }
1273 }
1290 }
1292 /*
1293 * This function is the common glue that connects the high-level target layer
1294 * continue functions (e.g. step and cont below) with the low-level
1295 * tgt_continue() function above. Since vespec callbacks may perform any
1296 * actions, including attempting to continue the target itself, we must be
1297 * prepared to be called while the target is still marked F_BUSY. In this
1298 * case, we just set a pending bit and return. When we return from the call
1299 * to tgt_continue() that made us busy into the tgt_request_continue() call
1300 * that is still on the stack, we will loop around and call tgt_continue()
1301 * again. This allows vespecs to continue the target without recursion.
1302 */
1303 static int
1306 {
1307 mdb_tgt_spec_desc_t desc;
1315 }
1332 }
1333 }
1336 }
1340 }
1342 /*
1343 * Restart target execution: we rely upon the underlying target implementation
1344 * to do most of the work for us. In particular, we assume it will properly
1345 * preserve the state of our event lists if the run fails for some reason,
1346 * and that it will reset all events to the IDLE state if the run succeeds.
1347 * If it is successful, we attempt to activate all of the idle sespecs. The
1348 * t_run() operation is defined to leave the target stopped at the earliest
1349 * possible point in execution, and then return control to the debugger,
1350 * awaiting a step or continue operation to set it running again.
1351 */
1352 int
1354 {
1360 }
1372 }
1374 int
1376 {
1378 }
1380 int
1382 {
1385 }
1387 int
1389 {
1392 }
1394 int
1396 {
1398 }
1400 int
1402 {
1404 }
1408 {
1414 }
1417 }
1419 /*
1420 * Return a structured description and comment string for the given vespec.
1421 * We fill in the common information from the vespec, and then call down to
1422 * the underlying sespec to provide the comment string and modify any
1423 * event type-specific information.
1424 */
1428 {
1431 mdb_tgt_spec_desc_t desc;
1439 }
1457 }
1459 /*
1460 * Qsort callback for sorting vespecs by VID, used below.
1461 */
1462 static int
1464 {
1466 }
1468 /*
1469 * Iterate over all vespecs and call the specified callback function with the
1470 * corresponding VID and caller data pointer. We want the callback function
1471 * to see a consistent, sorted snapshot of the vespecs, and allow the callback
1472 * to take actions such as deleting the vespec itself, so we cannot simply
1473 * iterate over the lists. Instead, we pre-allocate an array of vespec
1474 * pointers, fill it in and place an additional hold on each vespec, and then
1475 * sort it. After the callback has been executed on each vespec in the
1476 * sorted array, we remove our hold and free the temporary array.
1477 */
1478 int
1480 {
1496 }
1497 }
1504 }
1505 }
1510 }
1518 }
1525 }
1527 /*
1528 * Reset the vespec flags, match limit, and callback data to the specified
1529 * values. We silently correct invalid parameters, except for the VID.
1530 * The caller is required to query the existing properties and pass back
1531 * the existing values for any properties that should not be modified.
1532 * If the callback data is modified, the caller is responsible for cleaning
1533 * up any state associated with the previous value.
1534 */
1535 int
1538 {
1544 /*
1545 * If the value of the MDB_TGT_SPEC_DISABLED bit is changing, call the
1546 * appropriate vespec function to do the enable/disable work.
1547 */
1552 else
1554 }
1556 /*
1557 * Make that only one MDB_TGT_SPEC_AUTO* bit is set in the new flags
1558 * value: extra bits are cleared according to order of precedence.
1559 */
1565 /*
1566 * The TEMPORARY property always takes precedence over STICKY.
1567 */
1571 /*
1572 * If any MDB_TGT_SPEC_AUTO* bits are changing, reset the hit count
1573 * back to zero and clear all of the old auto bits.
1574 */
1578 }
1583 /*
1584 * If any MDB_TGT_SPEC_AUTO* flags are set, make sure the limit is at
1585 * least one. If none are set, reset it back to zero.
1586 */
1589 else
1592 /*
1593 * As a convenience, we allow the caller to specify SPEC_DELETED in
1594 * the flags field as indication that the event should be deleted.
1595 */
1600 }
1602 /*
1603 * Remove the user disabled bit from the specified vespec, and attempt to
1604 * activate the underlying sespec and move it to the active list if possible.
1605 */
1606 int
1608 {
1619 }
1622 }
1624 /*
1625 * Set the user disabled bit on the specified vespec, and move it to the idle
1626 * list. If the vespec is not alone with its sespec or if it is a currently
1627 * matched event, we must always create a new idle sespec and move the vespec
1628 * there. If the vespec was alone and active, we can simply idle the sespec.
1629 */
1630 int
1632 {
1661 }
1663 /*
1664 * Delete the given vespec. We use the MDB_TGT_SPEC_DELETED flag to ensure that
1665 * multiple calls to mdb_tgt_vespec_delete to not attempt to decrement the
1666 * reference count on the vespec more than once. This is because the vespec
1667 * may remain referenced if it is currently held by another routine (e.g.
1668 * vespec_iter), and so the user could attempt to delete it more than once
1669 * since it reference count will be >= 2 prior to the first delete call.
1670 */
1671 int
1673 {
1685 }
1687 int
1690 {
1692 }
1694 int
1697 {
1699 }
1701 int
1704 {
1708 }
1713 }
1716 }
1718 int
1721 {
1725 }
1730 }
1733 }
1735 int
1738 {
1742 }
1747 }
1750 }
1752 int
1755 {
1757 }
1759 int
1762 {
1764 }
1766 int
1769 {
1771 }
1773 int
1776 {
1778 }
1780 int
1783 {
1785 }
1787 int
1790 {
1792 }
1794 int
1797 {
1799 }
1801 int
1803 {
1810 }
1813 }
1815 ssize_t
1817 {
1823 }
1826 }
1828 long
1830 {
1832 }
1836 {
1839 }
1841 long
1843 {
1845 }
1847 int
1850 {
1856 }
1866 }
1868 int
1870 {
1878 }
1879 }
1882 }
1884 int
1886 {
1887 #if STT_NUM != (STT_TLS + 1)
1889 #endif
1894 /*
1895 * In case you haven't already guessed, this relies on the bitmask
1896 * used by <mdb/mdb_target.h> and <libproc.h> for encoding symbol
1897 * type and binding matching the order of STB and STT constants
1898 * in <sys/elf.h>. Changes to ELF must maintain binary
1899 * compatibility, so I think this is reasonably fair game.
1900 */
1904 }
1907 }
1909 void
1911 {
1917 /*
1918 * Reset legacy adb variables based on the specified ELF object file
1919 * provided by the target. We define these variables:
1920 *
1921 * b - the address of the data segment (first writeable Phdr)
1922 * d - the size of the data segment
1923 * e - the address of the entry point
1924 * m - the magic number identifying the file
1925 * t - the address of the text segment (first executable Phdr)
1926 */
1939 }
1946 }
1947 }
1959 }
1961 /*ARGSUSED*/
1962 void
1964 {
1967 }
1969 void
1971 {
1985 }
1986 }
1988 mdb_sespec_t *
1990 {
1995 else
2001 }
2003 mdb_sespec_t *
2005 {
2011 }
2014 }
2016 mdb_sespec_t *
2018 {
2025 }
2028 }
2030 /*ARGSUSED*/
2031 void
2033 {
2036 }
2038 void
2040 {
2044 /*
2045 * Remove this vespec from the sespec's velist and decrement
2046 * the reference count on the sespec.
2047 */
2051 /*
2052 * If we are deleting the most recently assigned VID, reset
2053 * t_vepos or t_veneg as appropriate to re-use that number.
2054 * This could be enhanced to re-use any free number by
2055 * maintaining a bitmap or hash of the allocated IDs.
2056 */
2062 /*
2063 * Call the destructor to clean up ve_args, and then free
2064 * the actual vespec structure.
2065 */
2071 }
2072 }
2074 int
2077 {
2083 /*
2084 * Make that only one MDB_TGT_SPEC_AUTO* bit is set in the new flags
2085 * value: extra bits are cleared according to order of precedence.
2086 */
2092 /*
2093 * The TEMPORARY property always takes precedence over STICKY.
2094 */
2098 /*
2099 * Find a matching sespec or create a new one on the appropriate list.
2100 * We always create a new sespec if the vespec is created disabled.
2101 */
2108 /*
2109 * Generate a new ID for the vespec. Increasing positive integers are
2110 * assigned to visible vespecs; decreasing negative integers are
2111 * assigned to hidden vespecs. The target saves our most recent choice.
2112 */
2119 }
2142 /*
2143 * If this vespec is the first reference to the sespec and it's active,
2144 * then it is newly created and we should attempt to initialize it.
2145 * If se_ctor fails, then move the sespec back to the idle list.
2146 */
2156 }
2158 /*
2159 * If the sespec is active and the target is currently running (because
2160 * we grabbed it using PGRAB_NOSTOP), then go ahead and attempt to arm
2161 * the sespec so it will take effect immediately.
2162 */
2171 }
2173 /*
2174 * Search the target's active, idle, and disabled lists for the vespec matching
2175 * the specified VID, and return a pointer to it, or NULL if no match is found.
2176 */
2177 mdb_vespec_t *
2179 {
2191 }
2192 }
2199 }
2200 }
2203 }
2205 /*ARGSUSED*/
2206 void
2208 {
2209 /* default destructor does nothing */
2210 }
2212 /*ARGSUSED*/
2213 void
2215 {
2216 /* default callback does nothing */
2217 }
2219 /*ARGSUSED*/
2220 void
2222 {
2223 /* default destructor does nothing */
2224 }
2226 /*ARGSUSED*/
2227 int
2229 {
2231 }
2233 /*ARGSUSED*/
2234 int
2236 {
2238 }
2240 /*ARGSUSED*/
2241 int
2243 {
2245 }
2247 /*ARGSUSED*/
2248 int
2250 {
2252 }
2254 /*ARGSUSED*/
2255 int
2257 {
2262 }
2264 int
2266 {
2272 fail++;
2273 }
2274 }
2277 }
2279 int
2281 {
2287 fail++;
2288 }
2289 }
2292 }
2294 void
2297 {
2307 }
2308 }