| blob | 4b67ee13247fd653574d2948782b87d337ac7eff |
1 /*
2 * File elf.c - processing of ELF files
3 *
4 * Copyright (C) 1996, Eric Youngdale.
5 * 1999-2007 Eric Pouech
6 *
7 * This library is free software; you can redistribute it and/or
8 * modify it under the terms of the GNU Lesser General Public
9 * License as published by the Free Software Foundation; either
10 * version 2.1 of the License, or (at your option) any later version.
11 *
12 * This library is distributed in the hope that it will be useful,
13 * but WITHOUT ANY WARRANTY; without even the implied warranty of
14 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
15 * Lesser General Public License for more details.
16 *
17 * You should have received a copy of the GNU Lesser General Public
18 * License along with this library; if not, write to the Free Software
19 * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301, USA
20 */
25 #if defined(__svr4__) || defined(__sun)
26 #define __ELF__
27 /* large files are not supported by libelf */
28 #undef _FILE_OFFSET_BITS
29 #define _FILE_OFFSET_BITS 32
30 #endif
32 #include <assert.h>
33 #include <stdio.h>
34 #include <stdlib.h>
35 #ifdef HAVE_SYS_STAT_H
36 # include <sys/stat.h>
37 #endif
38 #include <fcntl.h>
39 #ifdef HAVE_SYS_MMAN_H
40 #include <sys/mman.h>
41 #endif
42 #ifdef HAVE_UNISTD_H
43 # include <unistd.h>
44 #endif
45 #ifndef PATH_MAX
46 #define PATH_MAX MAX_PATH
47 #endif
51 #ifdef HAVE_ELF_H
52 # include <elf.h>
53 #endif
54 #ifdef HAVE_SYS_ELF32_H
55 # include <sys/elf32.h>
56 #endif
57 #ifdef HAVE_SYS_EXEC_ELF_H
58 # include <sys/exec_elf.h>
59 #endif
60 #if !defined(DT_NUM)
61 # if defined(DT_COUNT)
62 # define DT_NUM DT_COUNT
63 # else
64 /* this seems to be a satisfactory value on Solaris, which doesn't support this AFAICT */
65 # define DT_NUM 24
66 # endif
67 #endif
68 #ifdef HAVE_LINK_H
69 # include <link.h>
70 #endif
71 #ifdef HAVE_SYS_LINK_H
72 # include <sys/link.h>
73 #endif
78 struct elf_module_info
79 {
83 };
85 #ifdef __ELF__
87 #define ELF_INFO_DEBUG_HEADER 0x0001
88 #define ELF_INFO_MODULE 0x0002
89 #define ELF_INFO_NAME 0x0004
93 struct elf_info
94 {
99 };
101 /* structure holding information while handling an ELF image
102 * allows one by one section mapping for memory savings
103 */
104 struct elf_file_map
105 {
106 Elf32_Ehdr elfhdr;
109 struct
110 {
111 Elf32_Shdr shdr;
117 };
119 struct elf_section_map
120 {
123 };
125 struct symtab_elt
126 {
131 };
133 struct elf_thunk_area
134 {
136 THUNK_ORDINAL ordinal;
139 };
141 /******************************************************************
142 * elf_map_section
143 *
144 * Maps a single section into memory from an ELF file
145 */
147 {
155 /* align required information on page size (we assume pagesize is a power of 2) */
162 return esm->fmap->sect[esm->sidx].mapped + (esm->fmap->sect[esm->sidx].shdr.sh_offset & (pgsz - 1));
163 }
165 /******************************************************************
166 * elf_find_section
167 *
168 * Finds a section by name (and type) into memory from an ELF file
169 * or its alternate if any
170 */
173 {
177 {
179 {
183 }
185 {
188 {
192 }
193 }
195 }
197 }
199 /******************************************************************
200 * elf_unmap_section
201 *
202 * Unmaps a single section from memory
203 */
205 {
206 if (esm->sidx >= 0 && esm->sidx < esm->fmap->elfhdr.e_shnum && esm->fmap->sect[esm->sidx].mapped != ELF_NO_MAP)
207 {
217 }
218 }
221 {
225 {
231 }
232 }
234 /******************************************************************
235 * elf_get_map_size
236 *
237 * Get the size of an ELF section
238 */
240 {
244 }
246 /******************************************************************
247 * elf_map_file
248 *
249 * Maps an ELF file into memory (and checks it's a real ELF file)
250 */
252 {
256 Elf32_Phdr phdr;
270 /* check that the file exists, and that the module hasn't been loaded yet */
273 /* Now open the file, so that we can mmap() it. */
278 /* and check for an ELF header */
288 {
291 }
293 /* grab size of module once loaded in memory */
298 {
301 {
305 }
306 }
307 /* if non relocatable ELF, then remove fixed address from computation
308 * otherwise, all addresses are zero based and start has no effect
309 */
312 done:
315 }
317 /******************************************************************
318 * elf_unmap_file
319 *
320 * Unmaps an ELF file from memory (previously mapped with elf_map_file)
321 */
323 {
325 {
327 {
331 {
333 }
336 }
338 }
339 }
341 /******************************************************************
342 * elf_is_in_thunk_area
343 *
344 * Check whether an address lies within one of the thunk area we
345 * know of.
346 */
349 {
353 {
356 }
358 }
360 /******************************************************************
361 * elf_hash_symtab
362 *
363 * creating an internal hash table to ease use ELF symtab information lookup
364 */
368 {
391 {
392 /* Ignore certain types of entries which really aren't of that much
393 * interest.
394 */
400 {
402 }
406 /* handle some specific symtab (that we'll throw away when done) */
408 {
413 else
417 /* we are only interested in wine markers inserted by winebuild */
419 {
421 {
425 }
426 }
428 }
430 /* FIXME: we don't need to handle them (GCC internals)
431 * Moreover, they screw up our symbol lookup :-/
432 */
438 /* GCC emits, in some cases, a .<digit>+ suffix.
439 * This is used for static variable inside functions, so
440 * that we can have several such variables with same name in
441 * the same compilation unit
442 * We simply ignore that suffix when present (we also get rid
443 * of it in stabs parsing)
444 */
447 {
450 {
455 }
456 }
461 }
462 /* as we added in the ht_symtab pointers to the symbols themselves,
463 * we cannot unmap yet the sections, it will be done when we're over
464 * with this ELF file
465 */
466 }
468 /******************************************************************
469 * elf_lookup_symtab
470 *
471 * lookup a symbol by name in our internal hash table for the symtab
472 */
476 {
485 /* we need weak match up (at least) when symbols of same name,
486 * defined several times in different compilation units,
487 * are merged in a single one (hence a different filename for c.u.)
488 */
490 {
495 }
500 {
507 {
510 {
514 }
515 }
517 {
522 }
523 else
524 {
527 }
528 }
530 {
534 }
536 }
538 /******************************************************************
539 * elf_finish_stabs_info
540 *
541 * - get any relevant information (address & size) from the bits we got from the
542 * stabs debugging information
543 */
545 {
553 {
556 {
560 {
562 }
566 {
584 {
592 {
605 }
610 }
611 }
612 /* since we may have changed some addresses & sizes, mark the module to be resorted */
614 }
616 /******************************************************************
617 * elf_load_wine_thunks
618 *
619 * creating the thunk objects for a wine native DLL
620 */
623 {
627 DWORD addr;
632 {
639 {
642 }
643 else
644 {
645 ULONG64 ref_addr;
651 {
652 /* creating public symbols for all the ELF symbols which haven't been
653 * used yet (ie we have no debug information on them)
654 * That's the case, for example, of the .spec.c files
655 */
657 {
670 }
671 /* FIXME: this is a hack !!!
672 * we are adding new symbols, but as we're parsing a symbol table
673 * (hopefully without duplicate symbols) we delay rebuilding the sorted
674 * module table until we're done with the symbol table
675 * Otherwise, as we intertwine symbols's add and lookup, performance
676 * is rather bad
677 */
679 }
681 {
689 /* If none of symbols has a correct size, we consider they are both markers
690 * Hence, we can silence this warning
691 * Also, we check that we don't have two symbols, one local, the other
692 * global which is legal
693 */
701 }
702 }
703 }
704 /* see comment above */
707 }
709 /******************************************************************
710 * elf_new_public_symbols
711 *
712 * Creates a set of public symbols from an ELF symtab
713 */
715 {
721 /* FIXME: we're missing the ELF entry point here */
725 {
730 }
732 }
734 /* Copyright (C) 1986 Gary S. Brown. Modified by Robert Shearman. You may use
735 the following calc_crc32 code or tables extracted from it, as desired without
736 restriction. */
738 /**********************************************************************\
739 |* Demonstration program to compute the 32-bit CRC used as the frame *|
740 |* check sequence in ADCCP (ANSI X3.66, also known as FIPS PUB 71 *|
741 |* and FED-STD-1003, the U.S. versions of CCITT's X.25 link-level *|
742 |* protocol). The 32-bit FCS was added via the Federal Register, *|
743 |* 1 June 1982, p.23798. I presume but don't know for certain that *|
744 |* this polynomial is or will be included in CCITT V.41, which *|
745 |* defines the 16-bit CRC (often called CRC-CCITT) polynomial. FIPS *|
746 |* PUB 78 says that the 32-bit FCS reduces otherwise undetected *|
747 |* errors by a factor of 10^-5 over 16-bit FCS. *|
748 \**********************************************************************/
750 /* First, the polynomial itself and its table of feedback terms. The */
751 /* polynomial is */
752 /* X^32+X^26+X^23+X^22+X^16+X^12+X^11+X^10+X^8+X^7+X^5+X^4+X^2+X^1+X^0 */
753 /* Note that we take it "backwards" and put the highest-order term in */
754 /* the lowest-order bit. The X^32 term is "implied"; the LSB is the */
755 /* X^31 term, etc. The X^0 term (usually shown as "+1") results in */
756 /* the MSB being 1. */
758 /* Note that the usual hardware shift register implementation, which */
759 /* is what we're using (we're merely optimizing it by doing eight-bit */
760 /* chunks at a time) shifts bits into the lowest-order term. In our */
761 /* implementation, that means shifting towards the right. Why do we */
762 /* do it this way? Because the calculated CRC must be transmitted in */
763 /* order from highest-order term to lowest-order term. UARTs transmit */
764 /* characters in order from LSB to MSB. By storing the CRC this way, */
765 /* we hand it to the UART in the order low-byte to high-byte; the UART */
766 /* sends each low-bit to hight-bit; and the result is transmission bit */
767 /* by bit from highest- to lowest-order term without requiring any bit */
768 /* shuffling on our part. Reception works similarly. */
770 /* The feedback terms table consists of 256, 32-bit entries. Notes: */
771 /* */
772 /* 1. The table can be generated at runtime if desired; code to do so */
773 /* is shown later. It might not be obvious, but the feedback */
774 /* terms simply represent the results of eight shift/xor opera- */
775 /* tions for all combinations of data and CRC register values. */
776 /* */
777 /* 2. The CRC accumulation logic is the same for all CRC polynomials, */
778 /* be they sixteen or thirty-two bits wide. You simply choose the */
779 /* appropriate table. Alternatively, because the table can be */
780 /* generated at runtime, you can start by generating the table for */
781 /* the polynomial in question and use exactly the same "updcrc", */
782 /* if your application needn't simultaneously handle two CRC */
783 /* polynomials. (Note, however, that XMODEM is strange.) */
784 /* */
785 /* 3. For 16-bit CRCs, the table entries need be only 16 bits wide; */
786 /* of course, 32-bit entries work OK if the high 16 bits are zero. */
787 /* */
788 /* 4. The values must be right-shifted by eight bits by the "updcrc" */
789 /* logic; the shift must be unsigned (bring in zeroes). On some */
790 /* hardware you could probably optimize the shift in assembler by */
791 /* using byte-swap instructions. */
795 {
796 #define UPDC32(octet,crc) (crc_32_tab[((crc) ^ (octet)) & 0xff] ^ ((crc) >> 8))
842 };
849 {
851 }
853 #undef UPDC32
854 }
857 {
858 BOOL ret;
861 {
865 }
867 }
869 /******************************************************************
870 * elf_locate_debug_link
871 *
872 * Locate a filename from a .gnu_debuglink section, using the same
873 * strategy as gdb:
874 * "If the full name of the directory containing the executable is
875 * execdir, and the executable has a debug link that specifies the
876 * name debugfile, then GDB will automatically search for the
877 * debugging information file in three places:
878 * - the directory containing the executable file (that is, it
879 * will look for a file named `execdir/debugfile',
880 * - a subdirectory of that directory named `.debug' (that is, the
881 * file `execdir/.debug/debugfile', and
882 * - a subdirectory of the global debug file directory that includes
883 * the executable's full path, and the name from the link (that is,
884 * the file `globaldebugdir/execdir/debugfile', where globaldebugdir
885 * is the global debug file directory, and execdir has been turned
886 * into a relative path)." (from GDB manual)
887 */
890 {
891 static const WCHAR globalDebugDirW[] = {'/','u','s','r','/','l','i','b','/','d','e','b','u','g','/'};
907 /* we prebuild the string with "execdir" */
912 /* testing execdir/filename */
916 /* testing execdir/.debug/filename */
918 MultiByteToWideChar(CP_UNIXCP, 0, filename, -1, slash + sizeof(dotDebugW) / sizeof(WCHAR), filename_len);
921 /* testing globaldebugdir/execdir/filename */
928 /* finally testing filename */
937 found:
942 }
944 /******************************************************************
945 * elf_debuglink_parse
946 *
947 * Parses a .gnu_debuglink section and loads the debug info from
948 * the external file specified there.
949 */
952 {
953 /* The content of a debug link section is:
954 * 1/ a NULL terminated string, containing the file name for the
955 * debug info
956 * 2/ padding on 4 byte boundary
957 * 3/ CRC of the linked ELF file
958 */
960 DWORD crc;
964 }
966 /******************************************************************
967 * elf_load_debug_info_from_map
968 *
969 * Loads the symbolic information from ELF module which mapping is described
970 * in fmap
971 * the module has been loaded at 'load_offset' address, so symbols' address
972 * relocation is performed.
973 * CRC is checked if fmap->with_crc is TRUE
974 * returns
975 * 0 if the file doesn't contain symbolic info (or this info cannot be
976 * read or parsed)
977 * 1 on success
978 */
983 {
986 {
994 };
998 /* create a hash table for the symtab */
1002 {
1008 /* if present, add the .gnu_debuglink file as an alternate to current one */
1010 {
1015 {
1021 }
1023 }
1026 {
1033 {
1034 /* OK, now just parse all of the stabs. */
1039 /* and fill in the missing information for stabs */
1041 else
1044 }
1048 }
1050 {
1051 /* Dwarf 2 debug information */
1071 {
1072 /* OK, now just parse dwarf2 debug infos. */
1083 }
1089 }
1090 }
1093 {
1094 /* add the thunks for native libraries */
1097 }
1098 /* add all the public symbols from symtab */
1102 }
1104 /******************************************************************
1105 * elf_load_debug_info
1106 *
1107 * Loads ELF debugging information from the module image file.
1108 */
1110 {
1117 {
1120 }
1126 {
1129 }
1136 }
1138 /******************************************************************
1139 * elf_fetch_file_info
1140 *
1141 * Gathers some more information for an ELF module from a given file
1142 */
1145 {
1154 }
1156 /******************************************************************
1157 * elf_load_file
1158 *
1159 * Loads the information for ELF module stored in 'filename'
1160 * the module has been loaded at 'load_offset' address
1161 * returns
1162 * -1 if the file cannot be found/opened
1163 * 0 if the file doesn't contain symbolic info (or this info cannot be
1164 * read or parsed)
1165 * 1 on success
1166 */
1169 {
1177 /* Next, we need to find a few of the internal ELF headers within
1178 * this thing. We need the main executable header, and the section
1179 * table.
1180 */
1185 {
1189 }
1192 {
1196 {
1197 Elf32_Dyn dyn;
1201 do
1202 {
1207 {
1210 }
1214 }
1216 }
1219 {
1227 {
1230 }
1235 {
1238 }
1246 {
1250 {
1253 }
1255 }
1256 leave:
1260 }
1262 /******************************************************************
1263 * elf_load_file_from_path
1264 * tries to load an ELF file from a set of paths (separated by ':')
1265 */
1271 {
1285 {
1288 fn = HeapAlloc(GetProcessHeap(), 0, (lstrlenW(filename) + 1 + lstrlenW(s) + 1) * sizeof(WCHAR));
1297 }
1301 }
1303 /******************************************************************
1304 * elf_load_file_from_dll_path
1305 *
1306 * Tries to load an ELF file from the dll path
1307 */
1312 {
1318 {
1333 }
1335 }
1337 /******************************************************************
1338 * elf_search_and_load_file
1339 *
1340 * lookup a file in standard ELF locations, and if found, load it
1341 */
1345 {
1352 {
1356 }
1360 /* if relative pathname, try some absolute base dirs */
1362 {
1368 }
1371 }
1373 /******************************************************************
1374 * elf_enum_modules_internal
1375 *
1376 * Enumerate ELF modules from a running process
1377 */
1381 {
1393 /* Now walk the linked list. In all known ELF implementations,
1394 * the dynamic loader maintains this linked list for us. In some
1395 * cases the first entry doesn't appear with a name, in other cases it
1396 * does.
1397 */
1399 {
1406 {
1411 }
1412 }
1414 }
1416 struct elf_sync
1417 {
1420 };
1423 {
1428 }
1430 /******************************************************************
1431 * elf_synchronize_module_list
1432 *
1433 * this functions rescans the debuggee module's list and synchronizes it with
1434 * the one from 'pcs', ie:
1435 * - if a module is in debuggee and not in pcs, it's loaded into pcs
1436 * - if a module is in pcs and not in debuggee, it's unloaded from pcs
1437 */
1439 {
1444 {
1447 }
1456 {
1459 {
1461 /* restart all over */
1463 }
1465 }
1467 }
1469 /******************************************************************
1470 * elf_search_loader
1471 *
1472 * Lookup in a running ELF process the loader, and sets its ELF link
1473 * address (for accessing the list of loaded .so libs) in pcs.
1474 * If flags is ELF_INFO_MODULE, the module for the loader is also
1475 * added as a module into pcs.
1476 */
1478 {
1479 BOOL ret;
1482 /* All binaries are loaded with WINELOADER (if run from tree) or by the
1483 * main executable (either wine-kthread or wine-pthread)
1484 * FIXME: the heuristic used to know whether we need to load wine-pthread
1485 * or wine-kthread is not 100% safe
1486 */
1488 {
1492 }
1493 else
1494 {
1497 }
1499 }
1501 /******************************************************************
1502 * elf_read_wine_loader_dbg_info
1503 *
1504 * Try to find a decent wine executable which could have loaded the debuggee
1505 */
1507 {
1515 }
1517 /******************************************************************
1518 * elf_enum_modules
1519 *
1520 * Enumerates the ELF loaded modules from a running target (hProc)
1521 * This function doesn't require that someone has called SymInitialize
1522 * on this very process.
1523 */
1525 {
1528 BOOL ret;
1538 }
1540 struct elf_load
1541 {
1545 BOOL ret;
1546 };
1548 /******************************************************************
1549 * elf_load_cb
1550 *
1551 * Callback for elf_load_module, used to walk the list of loaded
1552 * modules.
1553 */
1555 {
1559 /* memcmp is needed for matches when bufstr contains also version information
1560 * el->name: libc.so, name: libc.so.6.0
1561 */
1565 {
1568 }
1570 }
1572 /******************************************************************
1573 * elf_load_module
1574 *
1575 * loads an ELF module and stores it in process' module list
1576 * Also, find module real name and load address from
1577 * the real loaded modules list in pcs address space
1578 */
1580 {
1589 {
1591 /* do only the lookup from the filename, not the path (as we lookup module
1592 * name in the process' loaded module list)
1593 */
1600 }
1602 {
1605 }
1609 }
1614 {
1616 }
1620 {
1622 }
1625 {
1627 }
1630 {
1632 }
1635 {
1637 }
1640 {
1642 }
1646 {
1648 }