2 * linux/fs/binfmt_elf.c
4 * These are the functions used to load ELF format executables as used
5 * on SVr4 machines. Information on the format may be found in the book
6 * "UNIX SYSTEM V RELEASE 4 Programmers Guide: Ansi C and Programming Support
9 * Copyright 1993, 1994: Eric Youngdale (ericy@cais.com).
12 #include <linux/module.h>
13 #include <linux/kernel.h>
15 #include <linux/stat.h>
16 #include <linux/time.h>
18 #include <linux/mman.h>
19 #include <linux/errno.h>
20 #include <linux/signal.h>
21 #include <linux/binfmts.h>
22 #include <linux/string.h>
23 #include <linux/file.h>
24 #include <linux/fcntl.h>
25 #include <linux/ptrace.h>
26 #include <linux/slab.h>
27 #include <linux/shm.h>
28 #include <linux/personality.h>
29 #include <linux/elfcore.h>
30 #include <linux/init.h>
31 #include <linux/highuid.h>
32 #include <linux/smp.h>
33 #include <linux/compiler.h>
34 #include <linux/highmem.h>
35 #include <linux/pagemap.h>
36 #include <linux/security.h>
37 #include <linux/syscalls.h>
38 #include <linux/random.h>
39 #include <linux/elf.h>
40 #include <linux/utsname.h>
41 #include <asm/uaccess.h>
42 #include <asm/param.h>
45 static int load_elf_binary(struct linux_binprm *bprm, struct pt_regs *regs);
46 static int load_elf_library(struct file *);
47 static unsigned long elf_map(struct file *, unsigned long, struct elf_phdr *,
48 int, int, unsigned long);
51 * If we don't support core dumping, then supply a NULL so we
54 #if defined(USE_ELF_CORE_DUMP) && defined(CONFIG_ELF_CORE)
55 static int elf_core_dump(long signr, struct pt_regs *regs, struct file *file, unsigned long limit);
57 #define elf_core_dump NULL
60 #if ELF_EXEC_PAGESIZE > PAGE_SIZE
61 #define ELF_MIN_ALIGN ELF_EXEC_PAGESIZE
63 #define ELF_MIN_ALIGN PAGE_SIZE
66 #ifndef ELF_CORE_EFLAGS
67 #define ELF_CORE_EFLAGS 0
70 #define ELF_PAGESTART(_v) ((_v) & ~(unsigned long)(ELF_MIN_ALIGN-1))
71 #define ELF_PAGEOFFSET(_v) ((_v) & (ELF_MIN_ALIGN-1))
72 #define ELF_PAGEALIGN(_v) (((_v) + ELF_MIN_ALIGN - 1) & ~(ELF_MIN_ALIGN - 1))
74 static struct linux_binfmt elf_format = {
75 .module = THIS_MODULE,
76 .load_binary = load_elf_binary,
77 .load_shlib = load_elf_library,
78 .core_dump = elf_core_dump,
79 .min_coredump = ELF_EXEC_PAGESIZE,
83 #define BAD_ADDR(x) ((unsigned long)(x) >= TASK_SIZE)
85 static int set_brk(unsigned long start, unsigned long end)
87 start = ELF_PAGEALIGN(start);
88 end = ELF_PAGEALIGN(end);
91 down_write(¤t->mm->mmap_sem);
92 addr = do_brk(start, end - start);
93 up_write(¤t->mm->mmap_sem);
97 current->mm->start_brk = current->mm->brk = end;
101 /* We need to explicitly zero any fractional pages
102 after the data section (i.e. bss). This would
103 contain the junk from the file that should not
106 static int padzero(unsigned long elf_bss)
110 nbyte = ELF_PAGEOFFSET(elf_bss);
112 nbyte = ELF_MIN_ALIGN - nbyte;
113 if (clear_user((void __user *) elf_bss, nbyte))
119 /* Let's use some macros to make this stack manipulation a little clearer */
120 #ifdef CONFIG_STACK_GROWSUP
121 #define STACK_ADD(sp, items) ((elf_addr_t __user *)(sp) + (items))
122 #define STACK_ROUND(sp, items) \
123 ((15 + (unsigned long) ((sp) + (items))) &~ 15UL)
124 #define STACK_ALLOC(sp, len) ({ \
125 elf_addr_t __user *old_sp = (elf_addr_t __user *)sp; sp += len; \
128 #define STACK_ADD(sp, items) ((elf_addr_t __user *)(sp) - (items))
129 #define STACK_ROUND(sp, items) \
130 (((unsigned long) (sp - items)) &~ 15UL)
131 #define STACK_ALLOC(sp, len) ({ sp -= len ; sp; })
135 create_elf_tables(struct linux_binprm *bprm, struct elfhdr *exec,
136 unsigned long load_addr, unsigned long interp_load_addr)
138 unsigned long p = bprm->p;
139 int argc = bprm->argc;
140 int envc = bprm->envc;
141 elf_addr_t __user *argv;
142 elf_addr_t __user *envp;
143 elf_addr_t __user *sp;
144 elf_addr_t __user *u_platform;
145 const char *k_platform = ELF_PLATFORM;
147 elf_addr_t *elf_info;
149 struct task_struct *tsk = current;
150 struct vm_area_struct *vma;
153 * In some cases (e.g. Hyper-Threading), we want to avoid L1
154 * evictions by the processes running on the same package. One
155 * thing we can do is to shuffle the initial stack for them.
158 p = arch_align_stack(p);
161 * If this architecture has a platform capability string, copy it
162 * to userspace. In some cases (Sparc), this info is impossible
163 * for userspace to get any other way, in others (i386) it is
168 size_t len = strlen(k_platform) + 1;
170 u_platform = (elf_addr_t __user *)STACK_ALLOC(p, len);
171 if (__copy_to_user(u_platform, k_platform, len))
175 /* Create the ELF interpreter info */
176 elf_info = (elf_addr_t *)current->mm->saved_auxv;
177 /* update AT_VECTOR_SIZE_BASE if the number of NEW_AUX_ENT() changes */
178 #define NEW_AUX_ENT(id, val) \
180 elf_info[ei_index++] = id; \
181 elf_info[ei_index++] = val; \
186 * ARCH_DLINFO must come first so PPC can do its special alignment of
188 * update AT_VECTOR_SIZE_ARCH if the number of NEW_AUX_ENT() in
189 * ARCH_DLINFO changes
193 NEW_AUX_ENT(AT_HWCAP, ELF_HWCAP);
194 NEW_AUX_ENT(AT_PAGESZ, ELF_EXEC_PAGESIZE);
195 NEW_AUX_ENT(AT_CLKTCK, CLOCKS_PER_SEC);
196 NEW_AUX_ENT(AT_PHDR, load_addr + exec->e_phoff);
197 NEW_AUX_ENT(AT_PHENT, sizeof(struct elf_phdr));
198 NEW_AUX_ENT(AT_PHNUM, exec->e_phnum);
199 NEW_AUX_ENT(AT_BASE, interp_load_addr);
200 NEW_AUX_ENT(AT_FLAGS, 0);
201 NEW_AUX_ENT(AT_ENTRY, exec->e_entry);
202 NEW_AUX_ENT(AT_UID, tsk->uid);
203 NEW_AUX_ENT(AT_EUID, tsk->euid);
204 NEW_AUX_ENT(AT_GID, tsk->gid);
205 NEW_AUX_ENT(AT_EGID, tsk->egid);
206 NEW_AUX_ENT(AT_SECURE, security_bprm_secureexec(bprm));
207 NEW_AUX_ENT(AT_EXECFN, bprm->exec);
209 NEW_AUX_ENT(AT_PLATFORM,
210 (elf_addr_t)(unsigned long)u_platform);
212 if (bprm->interp_flags & BINPRM_FLAGS_EXECFD) {
213 NEW_AUX_ENT(AT_EXECFD, bprm->interp_data);
216 /* AT_NULL is zero; clear the rest too */
217 memset(&elf_info[ei_index], 0,
218 sizeof current->mm->saved_auxv - ei_index * sizeof elf_info[0]);
220 /* And advance past the AT_NULL entry. */
223 sp = STACK_ADD(p, ei_index);
225 items = (argc + 1) + (envc + 1) + 1;
226 bprm->p = STACK_ROUND(sp, items);
228 /* Point sp at the lowest address on the stack */
229 #ifdef CONFIG_STACK_GROWSUP
230 sp = (elf_addr_t __user *)bprm->p - items - ei_index;
231 bprm->exec = (unsigned long)sp; /* XXX: PARISC HACK */
233 sp = (elf_addr_t __user *)bprm->p;
238 * Grow the stack manually; some architectures have a limit on how
239 * far ahead a user-space access may be in order to grow the stack.
241 vma = find_extend_vma(current->mm, bprm->p);
245 /* Now, let's put argc (and argv, envp if appropriate) on the stack */
246 if (__put_user(argc, sp++))
249 envp = argv + argc + 1;
251 /* Populate argv and envp */
252 p = current->mm->arg_end = current->mm->arg_start;
255 if (__put_user((elf_addr_t)p, argv++))
257 len = strnlen_user((void __user *)p, MAX_ARG_STRLEN);
258 if (!len || len > MAX_ARG_STRLEN)
262 if (__put_user(0, argv))
264 current->mm->arg_end = current->mm->env_start = p;
267 if (__put_user((elf_addr_t)p, envp++))
269 len = strnlen_user((void __user *)p, MAX_ARG_STRLEN);
270 if (!len || len > MAX_ARG_STRLEN)
274 if (__put_user(0, envp))
276 current->mm->env_end = p;
278 /* Put the elf_info on the stack in the right place. */
279 sp = (elf_addr_t __user *)envp + 1;
280 if (copy_to_user(sp, elf_info, ei_index * sizeof(elf_addr_t)))
287 static unsigned long elf_map(struct file *filep, unsigned long addr,
288 struct elf_phdr *eppnt, int prot, int type,
289 unsigned long total_size)
291 unsigned long map_addr;
292 unsigned long size = eppnt->p_filesz + ELF_PAGEOFFSET(eppnt->p_vaddr);
293 unsigned long off = eppnt->p_offset - ELF_PAGEOFFSET(eppnt->p_vaddr);
294 addr = ELF_PAGESTART(addr);
295 size = ELF_PAGEALIGN(size);
297 /* mmap() will return -EINVAL if given a zero size, but a
298 * segment with zero filesize is perfectly valid */
302 down_write(¤t->mm->mmap_sem);
304 * total_size is the size of the ELF (interpreter) image.
305 * The _first_ mmap needs to know the full size, otherwise
306 * randomization might put this image into an overlapping
307 * position with the ELF binary image. (since size < total_size)
308 * So we first map the 'big' image - and unmap the remainder at
309 * the end. (which unmap is needed for ELF images with holes.)
312 total_size = ELF_PAGEALIGN(total_size);
313 map_addr = do_mmap(filep, addr, total_size, prot, type, off);
314 if (!BAD_ADDR(map_addr))
315 do_munmap(current->mm, map_addr+size, total_size-size);
317 map_addr = do_mmap(filep, addr, size, prot, type, off);
319 up_write(¤t->mm->mmap_sem);
323 #endif /* !elf_map */
325 static unsigned long total_mapping_size(struct elf_phdr *cmds, int nr)
327 int i, first_idx = -1, last_idx = -1;
329 for (i = 0; i < nr; i++) {
330 if (cmds[i].p_type == PT_LOAD) {
339 return cmds[last_idx].p_vaddr + cmds[last_idx].p_memsz -
340 ELF_PAGESTART(cmds[first_idx].p_vaddr);
344 /* This is much more generalized than the library routine read function,
345 so we keep this separate. Technically the library read function
346 is only provided so that we can read a.out libraries that have
349 static unsigned long load_elf_interp(struct elfhdr *interp_elf_ex,
350 struct file *interpreter, unsigned long *interp_map_addr,
351 unsigned long no_base)
353 struct elf_phdr *elf_phdata;
354 struct elf_phdr *eppnt;
355 unsigned long load_addr = 0;
356 int load_addr_set = 0;
357 unsigned long last_bss = 0, elf_bss = 0;
358 unsigned long error = ~0UL;
359 unsigned long total_size;
362 /* First of all, some simple consistency checks */
363 if (interp_elf_ex->e_type != ET_EXEC &&
364 interp_elf_ex->e_type != ET_DYN)
366 if (!elf_check_arch(interp_elf_ex))
368 if (!interpreter->f_op || !interpreter->f_op->mmap)
372 * If the size of this structure has changed, then punt, since
373 * we will be doing the wrong thing.
375 if (interp_elf_ex->e_phentsize != sizeof(struct elf_phdr))
377 if (interp_elf_ex->e_phnum < 1 ||
378 interp_elf_ex->e_phnum > 65536U / sizeof(struct elf_phdr))
381 /* Now read in all of the header information */
382 size = sizeof(struct elf_phdr) * interp_elf_ex->e_phnum;
383 if (size > ELF_MIN_ALIGN)
385 elf_phdata = kmalloc(size, GFP_KERNEL);
389 retval = kernel_read(interpreter, interp_elf_ex->e_phoff,
390 (char *)elf_phdata,size);
392 if (retval != size) {
398 total_size = total_mapping_size(elf_phdata, interp_elf_ex->e_phnum);
405 for (i = 0; i < interp_elf_ex->e_phnum; i++, eppnt++) {
406 if (eppnt->p_type == PT_LOAD) {
407 int elf_type = MAP_PRIVATE | MAP_DENYWRITE;
409 unsigned long vaddr = 0;
410 unsigned long k, map_addr;
412 if (eppnt->p_flags & PF_R)
413 elf_prot = PROT_READ;
414 if (eppnt->p_flags & PF_W)
415 elf_prot |= PROT_WRITE;
416 if (eppnt->p_flags & PF_X)
417 elf_prot |= PROT_EXEC;
418 vaddr = eppnt->p_vaddr;
419 if (interp_elf_ex->e_type == ET_EXEC || load_addr_set)
420 elf_type |= MAP_FIXED;
421 else if (no_base && interp_elf_ex->e_type == ET_DYN)
424 map_addr = elf_map(interpreter, load_addr + vaddr,
425 eppnt, elf_prot, elf_type, total_size);
427 if (!*interp_map_addr)
428 *interp_map_addr = map_addr;
430 if (BAD_ADDR(map_addr))
433 if (!load_addr_set &&
434 interp_elf_ex->e_type == ET_DYN) {
435 load_addr = map_addr - ELF_PAGESTART(vaddr);
440 * Check to see if the section's size will overflow the
441 * allowed task size. Note that p_filesz must always be
442 * <= p_memsize so it's only necessary to check p_memsz.
444 k = load_addr + eppnt->p_vaddr;
446 eppnt->p_filesz > eppnt->p_memsz ||
447 eppnt->p_memsz > TASK_SIZE ||
448 TASK_SIZE - eppnt->p_memsz < k) {
454 * Find the end of the file mapping for this phdr, and
455 * keep track of the largest address we see for this.
457 k = load_addr + eppnt->p_vaddr + eppnt->p_filesz;
462 * Do the same thing for the memory mapping - between
463 * elf_bss and last_bss is the bss section.
465 k = load_addr + eppnt->p_memsz + eppnt->p_vaddr;
472 * Now fill out the bss section. First pad the last page up
473 * to the page boundary, and then perform a mmap to make sure
474 * that there are zero-mapped pages up to and including the
477 if (padzero(elf_bss)) {
482 /* What we have mapped so far */
483 elf_bss = ELF_PAGESTART(elf_bss + ELF_MIN_ALIGN - 1);
485 /* Map the last of the bss segment */
486 if (last_bss > elf_bss) {
487 down_write(¤t->mm->mmap_sem);
488 error = do_brk(elf_bss, last_bss - elf_bss);
489 up_write(¤t->mm->mmap_sem);
503 * These are the functions used to load ELF style executables and shared
504 * libraries. There is no binary dependent code anywhere else.
507 #define INTERPRETER_NONE 0
508 #define INTERPRETER_ELF 2
510 #ifndef STACK_RND_MASK
511 #define STACK_RND_MASK (0x7ff >> (PAGE_SHIFT - 12)) /* 8MB of VA */
514 static unsigned long randomize_stack_top(unsigned long stack_top)
516 unsigned int random_variable = 0;
518 if ((current->flags & PF_RANDOMIZE) &&
519 !(current->personality & ADDR_NO_RANDOMIZE)) {
520 random_variable = get_random_int() & STACK_RND_MASK;
521 random_variable <<= PAGE_SHIFT;
523 #ifdef CONFIG_STACK_GROWSUP
524 return PAGE_ALIGN(stack_top) + random_variable;
526 return PAGE_ALIGN(stack_top) - random_variable;
530 static int load_elf_binary(struct linux_binprm *bprm, struct pt_regs *regs)
532 struct file *interpreter = NULL; /* to shut gcc up */
533 unsigned long load_addr = 0, load_bias = 0;
534 int load_addr_set = 0;
535 char * elf_interpreter = NULL;
537 struct elf_phdr *elf_ppnt, *elf_phdata;
538 unsigned long elf_bss, elf_brk;
542 unsigned long elf_entry;
543 unsigned long interp_load_addr = 0;
544 unsigned long start_code, end_code, start_data, end_data;
545 unsigned long reloc_func_desc = 0;
546 int executable_stack = EXSTACK_DEFAULT;
547 unsigned long def_flags = 0;
549 struct elfhdr elf_ex;
550 struct elfhdr interp_elf_ex;
553 loc = kmalloc(sizeof(*loc), GFP_KERNEL);
559 /* Get the exec-header */
560 loc->elf_ex = *((struct elfhdr *)bprm->buf);
563 /* First of all, some simple consistency checks */
564 if (memcmp(loc->elf_ex.e_ident, ELFMAG, SELFMAG) != 0)
567 if (loc->elf_ex.e_type != ET_EXEC && loc->elf_ex.e_type != ET_DYN)
569 if (!elf_check_arch(&loc->elf_ex))
571 if (!bprm->file->f_op||!bprm->file->f_op->mmap)
574 /* Now read in all of the header information */
575 if (loc->elf_ex.e_phentsize != sizeof(struct elf_phdr))
577 if (loc->elf_ex.e_phnum < 1 ||
578 loc->elf_ex.e_phnum > 65536U / sizeof(struct elf_phdr))
580 size = loc->elf_ex.e_phnum * sizeof(struct elf_phdr);
582 elf_phdata = kmalloc(size, GFP_KERNEL);
586 retval = kernel_read(bprm->file, loc->elf_ex.e_phoff,
587 (char *)elf_phdata, size);
588 if (retval != size) {
594 retval = get_unused_fd();
597 get_file(bprm->file);
598 fd_install(elf_exec_fileno = retval, bprm->file);
600 elf_ppnt = elf_phdata;
609 for (i = 0; i < loc->elf_ex.e_phnum; i++) {
610 if (elf_ppnt->p_type == PT_INTERP) {
611 /* This is the program interpreter used for
612 * shared libraries - for now assume that this
613 * is an a.out format binary
616 if (elf_ppnt->p_filesz > PATH_MAX ||
617 elf_ppnt->p_filesz < 2)
621 elf_interpreter = kmalloc(elf_ppnt->p_filesz,
623 if (!elf_interpreter)
626 retval = kernel_read(bprm->file, elf_ppnt->p_offset,
629 if (retval != elf_ppnt->p_filesz) {
632 goto out_free_interp;
634 /* make sure path is NULL terminated */
636 if (elf_interpreter[elf_ppnt->p_filesz - 1] != '\0')
637 goto out_free_interp;
640 * The early SET_PERSONALITY here is so that the lookup
641 * for the interpreter happens in the namespace of the
642 * to-be-execed image. SET_PERSONALITY can select an
645 * However, SET_PERSONALITY is NOT allowed to switch
646 * this task into the new images's memory mapping
647 * policy - that is, TASK_SIZE must still evaluate to
648 * that which is appropriate to the execing application.
649 * This is because exit_mmap() needs to have TASK_SIZE
650 * evaluate to the size of the old image.
652 * So if (say) a 64-bit application is execing a 32-bit
653 * application it is the architecture's responsibility
654 * to defer changing the value of TASK_SIZE until the
655 * switch really is going to happen - do this in
656 * flush_thread(). - akpm
658 SET_PERSONALITY(loc->elf_ex, 0);
660 interpreter = open_exec(elf_interpreter);
661 retval = PTR_ERR(interpreter);
662 if (IS_ERR(interpreter))
663 goto out_free_interp;
666 * If the binary is not readable then enforce
667 * mm->dumpable = 0 regardless of the interpreter's
670 if (file_permission(interpreter, MAY_READ) < 0)
671 bprm->interp_flags |= BINPRM_FLAGS_ENFORCE_NONDUMP;
673 retval = kernel_read(interpreter, 0, bprm->buf,
675 if (retval != BINPRM_BUF_SIZE) {
678 goto out_free_dentry;
681 /* Get the exec headers */
682 loc->interp_elf_ex = *((struct elfhdr *)bprm->buf);
688 elf_ppnt = elf_phdata;
689 for (i = 0; i < loc->elf_ex.e_phnum; i++, elf_ppnt++)
690 if (elf_ppnt->p_type == PT_GNU_STACK) {
691 if (elf_ppnt->p_flags & PF_X)
692 executable_stack = EXSTACK_ENABLE_X;
694 executable_stack = EXSTACK_DISABLE_X;
698 /* Some simple consistency checks for the interpreter */
699 if (elf_interpreter) {
701 /* Not an ELF interpreter */
702 if (memcmp(loc->interp_elf_ex.e_ident, ELFMAG, SELFMAG) != 0)
703 goto out_free_dentry;
704 /* Verify the interpreter has a valid arch */
705 if (!elf_check_arch(&loc->interp_elf_ex))
706 goto out_free_dentry;
708 /* Executables without an interpreter also need a personality */
709 SET_PERSONALITY(loc->elf_ex, 0);
712 /* Flush all traces of the currently running executable */
713 retval = flush_old_exec(bprm);
715 goto out_free_dentry;
717 /* OK, This is the point of no return */
718 current->flags &= ~PF_FORKNOEXEC;
719 current->mm->def_flags = def_flags;
721 /* Do this immediately, since STACK_TOP as used in setup_arg_pages
722 may depend on the personality. */
723 SET_PERSONALITY(loc->elf_ex, 0);
724 if (elf_read_implies_exec(loc->elf_ex, executable_stack))
725 current->personality |= READ_IMPLIES_EXEC;
727 if (!(current->personality & ADDR_NO_RANDOMIZE) && randomize_va_space)
728 current->flags |= PF_RANDOMIZE;
729 arch_pick_mmap_layout(current->mm);
731 /* Do this so that we can load the interpreter, if need be. We will
732 change some of these later */
733 current->mm->free_area_cache = current->mm->mmap_base;
734 current->mm->cached_hole_size = 0;
735 retval = setup_arg_pages(bprm, randomize_stack_top(STACK_TOP),
738 send_sig(SIGKILL, current, 0);
739 goto out_free_dentry;
742 current->mm->start_stack = bprm->p;
744 /* Now we do a little grungy work by mmaping the ELF image into
745 the correct location in memory. */
746 for(i = 0, elf_ppnt = elf_phdata;
747 i < loc->elf_ex.e_phnum; i++, elf_ppnt++) {
748 int elf_prot = 0, elf_flags;
749 unsigned long k, vaddr;
751 if (elf_ppnt->p_type != PT_LOAD)
754 if (unlikely (elf_brk > elf_bss)) {
757 /* There was a PT_LOAD segment with p_memsz > p_filesz
758 before this one. Map anonymous pages, if needed,
759 and clear the area. */
760 retval = set_brk (elf_bss + load_bias,
761 elf_brk + load_bias);
763 send_sig(SIGKILL, current, 0);
764 goto out_free_dentry;
766 nbyte = ELF_PAGEOFFSET(elf_bss);
768 nbyte = ELF_MIN_ALIGN - nbyte;
769 if (nbyte > elf_brk - elf_bss)
770 nbyte = elf_brk - elf_bss;
771 if (clear_user((void __user *)elf_bss +
774 * This bss-zeroing can fail if the ELF
775 * file specifies odd protections. So
776 * we don't check the return value
782 if (elf_ppnt->p_flags & PF_R)
783 elf_prot |= PROT_READ;
784 if (elf_ppnt->p_flags & PF_W)
785 elf_prot |= PROT_WRITE;
786 if (elf_ppnt->p_flags & PF_X)
787 elf_prot |= PROT_EXEC;
789 elf_flags = MAP_PRIVATE | MAP_DENYWRITE | MAP_EXECUTABLE;
791 vaddr = elf_ppnt->p_vaddr;
792 if (loc->elf_ex.e_type == ET_EXEC || load_addr_set) {
793 elf_flags |= MAP_FIXED;
794 } else if (loc->elf_ex.e_type == ET_DYN) {
795 /* Try and get dynamic programs out of the way of the
796 * default mmap base, as well as whatever program they
797 * might try to exec. This is because the brk will
798 * follow the loader, and is not movable. */
802 load_bias = ELF_PAGESTART(ELF_ET_DYN_BASE - vaddr);
806 error = elf_map(bprm->file, load_bias + vaddr, elf_ppnt,
807 elf_prot, elf_flags, 0);
808 if (BAD_ADDR(error)) {
809 send_sig(SIGKILL, current, 0);
810 retval = IS_ERR((void *)error) ?
811 PTR_ERR((void*)error) : -EINVAL;
812 goto out_free_dentry;
815 if (!load_addr_set) {
817 load_addr = (elf_ppnt->p_vaddr - elf_ppnt->p_offset);
818 if (loc->elf_ex.e_type == ET_DYN) {
820 ELF_PAGESTART(load_bias + vaddr);
821 load_addr += load_bias;
822 reloc_func_desc = load_bias;
825 k = elf_ppnt->p_vaddr;
832 * Check to see if the section's size will overflow the
833 * allowed task size. Note that p_filesz must always be
834 * <= p_memsz so it is only necessary to check p_memsz.
836 if (BAD_ADDR(k) || elf_ppnt->p_filesz > elf_ppnt->p_memsz ||
837 elf_ppnt->p_memsz > TASK_SIZE ||
838 TASK_SIZE - elf_ppnt->p_memsz < k) {
839 /* set_brk can never work. Avoid overflows. */
840 send_sig(SIGKILL, current, 0);
842 goto out_free_dentry;
845 k = elf_ppnt->p_vaddr + elf_ppnt->p_filesz;
849 if ((elf_ppnt->p_flags & PF_X) && end_code < k)
853 k = elf_ppnt->p_vaddr + elf_ppnt->p_memsz;
858 loc->elf_ex.e_entry += load_bias;
859 elf_bss += load_bias;
860 elf_brk += load_bias;
861 start_code += load_bias;
862 end_code += load_bias;
863 start_data += load_bias;
864 end_data += load_bias;
866 /* Calling set_brk effectively mmaps the pages that we need
867 * for the bss and break sections. We must do this before
868 * mapping in the interpreter, to make sure it doesn't wind
869 * up getting placed where the bss needs to go.
871 retval = set_brk(elf_bss, elf_brk);
873 send_sig(SIGKILL, current, 0);
874 goto out_free_dentry;
876 if (likely(elf_bss != elf_brk) && unlikely(padzero(elf_bss))) {
877 send_sig(SIGSEGV, current, 0);
878 retval = -EFAULT; /* Nobody gets to see this, but.. */
879 goto out_free_dentry;
882 if (elf_interpreter) {
883 unsigned long uninitialized_var(interp_map_addr);
885 elf_entry = load_elf_interp(&loc->interp_elf_ex,
889 if (!IS_ERR((void *)elf_entry)) {
891 * load_elf_interp() returns relocation
894 interp_load_addr = elf_entry;
895 elf_entry += loc->interp_elf_ex.e_entry;
897 if (BAD_ADDR(elf_entry)) {
898 force_sig(SIGSEGV, current);
899 retval = IS_ERR((void *)elf_entry) ?
900 (int)elf_entry : -EINVAL;
901 goto out_free_dentry;
903 reloc_func_desc = interp_load_addr;
905 allow_write_access(interpreter);
907 kfree(elf_interpreter);
909 elf_entry = loc->elf_ex.e_entry;
910 if (BAD_ADDR(elf_entry)) {
911 force_sig(SIGSEGV, current);
913 goto out_free_dentry;
919 sys_close(elf_exec_fileno);
921 set_binfmt(&elf_format);
923 #ifdef ARCH_HAS_SETUP_ADDITIONAL_PAGES
924 retval = arch_setup_additional_pages(bprm, executable_stack);
926 send_sig(SIGKILL, current, 0);
929 #endif /* ARCH_HAS_SETUP_ADDITIONAL_PAGES */
932 current->flags &= ~PF_FORKNOEXEC;
933 retval = create_elf_tables(bprm, &loc->elf_ex,
934 load_addr, interp_load_addr);
936 send_sig(SIGKILL, current, 0);
939 /* N.B. passed_fileno might not be initialized? */
940 current->mm->end_code = end_code;
941 current->mm->start_code = start_code;
942 current->mm->start_data = start_data;
943 current->mm->end_data = end_data;
944 current->mm->start_stack = bprm->p;
946 #ifdef arch_randomize_brk
947 if ((current->flags & PF_RANDOMIZE) && (randomize_va_space > 1))
948 current->mm->brk = current->mm->start_brk =
949 arch_randomize_brk(current->mm);
952 if (current->personality & MMAP_PAGE_ZERO) {
953 /* Why this, you ask??? Well SVr4 maps page 0 as read-only,
954 and some applications "depend" upon this behavior.
955 Since we do not have the power to recompile these, we
956 emulate the SVr4 behavior. Sigh. */
957 down_write(¤t->mm->mmap_sem);
958 error = do_mmap(NULL, 0, PAGE_SIZE, PROT_READ | PROT_EXEC,
959 MAP_FIXED | MAP_PRIVATE, 0);
960 up_write(¤t->mm->mmap_sem);
965 * The ABI may specify that certain registers be set up in special
966 * ways (on i386 %edx is the address of a DT_FINI function, for
967 * example. In addition, it may also specify (eg, PowerPC64 ELF)
968 * that the e_entry field is the address of the function descriptor
969 * for the startup routine, rather than the address of the startup
970 * routine itself. This macro performs whatever initialization to
971 * the regs structure is required as well as any relocations to the
972 * function descriptor entries when executing dynamically links apps.
974 ELF_PLAT_INIT(regs, reloc_func_desc);
977 start_thread(regs, elf_entry, bprm->p);
978 if (unlikely(current->ptrace & PT_PTRACED)) {
979 if (current->ptrace & PT_TRACE_EXEC)
980 ptrace_notify ((PTRACE_EVENT_EXEC << 8) | SIGTRAP);
982 send_sig(SIGTRAP, current, 0);
992 allow_write_access(interpreter);
996 kfree(elf_interpreter);
998 sys_close(elf_exec_fileno);
1004 /* This is really simpleminded and specialized - we are loading an
1005 a.out library that is given an ELF header. */
1006 static int load_elf_library(struct file *file)
1008 struct elf_phdr *elf_phdata;
1009 struct elf_phdr *eppnt;
1010 unsigned long elf_bss, bss, len;
1011 int retval, error, i, j;
1012 struct elfhdr elf_ex;
1015 retval = kernel_read(file, 0, (char *)&elf_ex, sizeof(elf_ex));
1016 if (retval != sizeof(elf_ex))
1019 if (memcmp(elf_ex.e_ident, ELFMAG, SELFMAG) != 0)
1022 /* First of all, some simple consistency checks */
1023 if (elf_ex.e_type != ET_EXEC || elf_ex.e_phnum > 2 ||
1024 !elf_check_arch(&elf_ex) || !file->f_op || !file->f_op->mmap)
1027 /* Now read in all of the header information */
1029 j = sizeof(struct elf_phdr) * elf_ex.e_phnum;
1030 /* j < ELF_MIN_ALIGN because elf_ex.e_phnum <= 2 */
1033 elf_phdata = kmalloc(j, GFP_KERNEL);
1039 retval = kernel_read(file, elf_ex.e_phoff, (char *)eppnt, j);
1043 for (j = 0, i = 0; i<elf_ex.e_phnum; i++)
1044 if ((eppnt + i)->p_type == PT_LOAD)
1049 while (eppnt->p_type != PT_LOAD)
1052 /* Now use mmap to map the library into memory. */
1053 down_write(¤t->mm->mmap_sem);
1054 error = do_mmap(file,
1055 ELF_PAGESTART(eppnt->p_vaddr),
1057 ELF_PAGEOFFSET(eppnt->p_vaddr)),
1058 PROT_READ | PROT_WRITE | PROT_EXEC,
1059 MAP_FIXED | MAP_PRIVATE | MAP_DENYWRITE,
1061 ELF_PAGEOFFSET(eppnt->p_vaddr)));
1062 up_write(¤t->mm->mmap_sem);
1063 if (error != ELF_PAGESTART(eppnt->p_vaddr))
1066 elf_bss = eppnt->p_vaddr + eppnt->p_filesz;
1067 if (padzero(elf_bss)) {
1072 len = ELF_PAGESTART(eppnt->p_filesz + eppnt->p_vaddr +
1074 bss = eppnt->p_memsz + eppnt->p_vaddr;
1076 down_write(¤t->mm->mmap_sem);
1077 do_brk(len, bss - len);
1078 up_write(¤t->mm->mmap_sem);
1089 * Note that some platforms still use traditional core dumps and not
1090 * the ELF core dump. Each platform can select it as appropriate.
1092 #if defined(USE_ELF_CORE_DUMP) && defined(CONFIG_ELF_CORE)
1097 * Modelled on fs/exec.c:aout_core_dump()
1098 * Jeremy Fitzhardinge <jeremy@sw.oz.au>
1101 * These are the only things you should do on a core-file: use only these
1102 * functions to write out all the necessary info.
1104 static int dump_write(struct file *file, const void *addr, int nr)
1106 return file->f_op->write(file, addr, nr, &file->f_pos) == nr;
1109 static int dump_seek(struct file *file, loff_t off)
1111 if (file->f_op->llseek && file->f_op->llseek != no_llseek) {
1112 if (file->f_op->llseek(file, off, SEEK_CUR) < 0)
1115 char *buf = (char *)get_zeroed_page(GFP_KERNEL);
1119 unsigned long n = off;
1122 if (!dump_write(file, buf, n))
1126 free_page((unsigned long)buf);
1132 * Decide what to dump of a segment, part, all or none.
1134 static unsigned long vma_dump_size(struct vm_area_struct *vma,
1135 unsigned long mm_flags)
1137 /* The vma can be set up to tell us the answer directly. */
1138 if (vma->vm_flags & VM_ALWAYSDUMP)
1141 /* Do not dump I/O mapped devices or special mappings */
1142 if (vma->vm_flags & (VM_IO | VM_RESERVED))
1145 #define FILTER(type) (mm_flags & (1UL << MMF_DUMP_##type))
1147 /* By default, dump shared memory if mapped from an anonymous file. */
1148 if (vma->vm_flags & VM_SHARED) {
1149 if (vma->vm_file->f_path.dentry->d_inode->i_nlink == 0 ?
1150 FILTER(ANON_SHARED) : FILTER(MAPPED_SHARED))
1155 /* Dump segments that have been written to. */
1156 if (vma->anon_vma && FILTER(ANON_PRIVATE))
1158 if (vma->vm_file == NULL)
1161 if (FILTER(MAPPED_PRIVATE))
1165 * If this looks like the beginning of a DSO or executable mapping,
1166 * check for an ELF header. If we find one, dump the first page to
1167 * aid in determining what was mapped here.
1169 if (FILTER(ELF_HEADERS) && vma->vm_file != NULL && vma->vm_pgoff == 0) {
1170 u32 __user *header = (u32 __user *) vma->vm_start;
1173 * Doing it this way gets the constant folded by GCC.
1177 char elfmag[SELFMAG];
1179 BUILD_BUG_ON(SELFMAG != sizeof word);
1180 magic.elfmag[EI_MAG0] = ELFMAG0;
1181 magic.elfmag[EI_MAG1] = ELFMAG1;
1182 magic.elfmag[EI_MAG2] = ELFMAG2;
1183 magic.elfmag[EI_MAG3] = ELFMAG3;
1184 if (get_user(word, header) == 0 && word == magic.cmp)
1193 return vma->vm_end - vma->vm_start;
1196 /* An ELF note in memory */
1201 unsigned int datasz;
1205 static int notesize(struct memelfnote *en)
1209 sz = sizeof(struct elf_note);
1210 sz += roundup(strlen(en->name) + 1, 4);
1211 sz += roundup(en->datasz, 4);
1216 #define DUMP_WRITE(addr, nr, foffset) \
1217 do { if (!dump_write(file, (addr), (nr))) return 0; *foffset += (nr); } while(0)
1219 static int alignfile(struct file *file, loff_t *foffset)
1221 static const char buf[4] = { 0, };
1222 DUMP_WRITE(buf, roundup(*foffset, 4) - *foffset, foffset);
1226 static int writenote(struct memelfnote *men, struct file *file,
1230 en.n_namesz = strlen(men->name) + 1;
1231 en.n_descsz = men->datasz;
1232 en.n_type = men->type;
1234 DUMP_WRITE(&en, sizeof(en), foffset);
1235 DUMP_WRITE(men->name, en.n_namesz, foffset);
1236 if (!alignfile(file, foffset))
1238 DUMP_WRITE(men->data, men->datasz, foffset);
1239 if (!alignfile(file, foffset))
1246 #define DUMP_WRITE(addr, nr) \
1247 if ((size += (nr)) > limit || !dump_write(file, (addr), (nr))) \
1249 #define DUMP_SEEK(off) \
1250 if (!dump_seek(file, (off))) \
1253 static void fill_elf_header(struct elfhdr *elf, int segs,
1254 u16 machine, u32 flags, u8 osabi)
1256 memset(elf, 0, sizeof(*elf));
1258 memcpy(elf->e_ident, ELFMAG, SELFMAG);
1259 elf->e_ident[EI_CLASS] = ELF_CLASS;
1260 elf->e_ident[EI_DATA] = ELF_DATA;
1261 elf->e_ident[EI_VERSION] = EV_CURRENT;
1262 elf->e_ident[EI_OSABI] = ELF_OSABI;
1264 elf->e_type = ET_CORE;
1265 elf->e_machine = machine;
1266 elf->e_version = EV_CURRENT;
1267 elf->e_phoff = sizeof(struct elfhdr);
1268 elf->e_flags = flags;
1269 elf->e_ehsize = sizeof(struct elfhdr);
1270 elf->e_phentsize = sizeof(struct elf_phdr);
1271 elf->e_phnum = segs;
1276 static void fill_elf_note_phdr(struct elf_phdr *phdr, int sz, loff_t offset)
1278 phdr->p_type = PT_NOTE;
1279 phdr->p_offset = offset;
1282 phdr->p_filesz = sz;
1289 static void fill_note(struct memelfnote *note, const char *name, int type,
1290 unsigned int sz, void *data)
1300 * fill up all the fields in prstatus from the given task struct, except
1301 * registers which need to be filled up separately.
1303 static void fill_prstatus(struct elf_prstatus *prstatus,
1304 struct task_struct *p, long signr)
1306 prstatus->pr_info.si_signo = prstatus->pr_cursig = signr;
1307 prstatus->pr_sigpend = p->pending.signal.sig[0];
1308 prstatus->pr_sighold = p->blocked.sig[0];
1309 prstatus->pr_pid = task_pid_vnr(p);
1310 prstatus->pr_ppid = task_pid_vnr(p->real_parent);
1311 prstatus->pr_pgrp = task_pgrp_vnr(p);
1312 prstatus->pr_sid = task_session_vnr(p);
1313 if (thread_group_leader(p)) {
1315 * This is the record for the group leader. Add in the
1316 * cumulative times of previous dead threads. This total
1317 * won't include the time of each live thread whose state
1318 * is included in the core dump. The final total reported
1319 * to our parent process when it calls wait4 will include
1320 * those sums as well as the little bit more time it takes
1321 * this and each other thread to finish dying after the
1322 * core dump synchronization phase.
1324 cputime_to_timeval(cputime_add(p->utime, p->signal->utime),
1325 &prstatus->pr_utime);
1326 cputime_to_timeval(cputime_add(p->stime, p->signal->stime),
1327 &prstatus->pr_stime);
1329 cputime_to_timeval(p->utime, &prstatus->pr_utime);
1330 cputime_to_timeval(p->stime, &prstatus->pr_stime);
1332 cputime_to_timeval(p->signal->cutime, &prstatus->pr_cutime);
1333 cputime_to_timeval(p->signal->cstime, &prstatus->pr_cstime);
1336 static int fill_psinfo(struct elf_prpsinfo *psinfo, struct task_struct *p,
1337 struct mm_struct *mm)
1339 unsigned int i, len;
1341 /* first copy the parameters from user space */
1342 memset(psinfo, 0, sizeof(struct elf_prpsinfo));
1344 len = mm->arg_end - mm->arg_start;
1345 if (len >= ELF_PRARGSZ)
1346 len = ELF_PRARGSZ-1;
1347 if (copy_from_user(&psinfo->pr_psargs,
1348 (const char __user *)mm->arg_start, len))
1350 for(i = 0; i < len; i++)
1351 if (psinfo->pr_psargs[i] == 0)
1352 psinfo->pr_psargs[i] = ' ';
1353 psinfo->pr_psargs[len] = 0;
1355 psinfo->pr_pid = task_pid_vnr(p);
1356 psinfo->pr_ppid = task_pid_vnr(p->real_parent);
1357 psinfo->pr_pgrp = task_pgrp_vnr(p);
1358 psinfo->pr_sid = task_session_vnr(p);
1360 i = p->state ? ffz(~p->state) + 1 : 0;
1361 psinfo->pr_state = i;
1362 psinfo->pr_sname = (i > 5) ? '.' : "RSDTZW"[i];
1363 psinfo->pr_zomb = psinfo->pr_sname == 'Z';
1364 psinfo->pr_nice = task_nice(p);
1365 psinfo->pr_flag = p->flags;
1366 SET_UID(psinfo->pr_uid, p->uid);
1367 SET_GID(psinfo->pr_gid, p->gid);
1368 strncpy(psinfo->pr_fname, p->comm, sizeof(psinfo->pr_fname));
1373 static void fill_auxv_note(struct memelfnote *note, struct mm_struct *mm)
1375 elf_addr_t *auxv = (elf_addr_t *) mm->saved_auxv;
1379 while (auxv[i - 2] != AT_NULL);
1380 fill_note(note, "CORE", NT_AUXV, i * sizeof(elf_addr_t), auxv);
1383 #ifdef CORE_DUMP_USE_REGSET
1384 #include <linux/regset.h>
1386 struct elf_thread_core_info {
1387 struct elf_thread_core_info *next;
1388 struct task_struct *task;
1389 struct elf_prstatus prstatus;
1390 struct memelfnote notes[0];
1393 struct elf_note_info {
1394 struct elf_thread_core_info *thread;
1395 struct memelfnote psinfo;
1396 struct memelfnote auxv;
1402 * When a regset has a writeback hook, we call it on each thread before
1403 * dumping user memory. On register window machines, this makes sure the
1404 * user memory backing the register data is up to date before we read it.
1406 static void do_thread_regset_writeback(struct task_struct *task,
1407 const struct user_regset *regset)
1409 if (regset->writeback)
1410 regset->writeback(task, regset, 1);
1413 static int fill_thread_core_info(struct elf_thread_core_info *t,
1414 const struct user_regset_view *view,
1415 long signr, size_t *total)
1420 * NT_PRSTATUS is the one special case, because the regset data
1421 * goes into the pr_reg field inside the note contents, rather
1422 * than being the whole note contents. We fill the reset in here.
1423 * We assume that regset 0 is NT_PRSTATUS.
1425 fill_prstatus(&t->prstatus, t->task, signr);
1426 (void) view->regsets[0].get(t->task, &view->regsets[0],
1427 0, sizeof(t->prstatus.pr_reg),
1428 &t->prstatus.pr_reg, NULL);
1430 fill_note(&t->notes[0], "CORE", NT_PRSTATUS,
1431 sizeof(t->prstatus), &t->prstatus);
1432 *total += notesize(&t->notes[0]);
1434 do_thread_regset_writeback(t->task, &view->regsets[0]);
1437 * Each other regset might generate a note too. For each regset
1438 * that has no core_note_type or is inactive, we leave t->notes[i]
1439 * all zero and we'll know to skip writing it later.
1441 for (i = 1; i < view->n; ++i) {
1442 const struct user_regset *regset = &view->regsets[i];
1443 do_thread_regset_writeback(t->task, regset);
1444 if (regset->core_note_type &&
1445 (!regset->active || regset->active(t->task, regset))) {
1447 size_t size = regset->n * regset->size;
1448 void *data = kmalloc(size, GFP_KERNEL);
1449 if (unlikely(!data))
1451 ret = regset->get(t->task, regset,
1452 0, size, data, NULL);
1456 if (regset->core_note_type != NT_PRFPREG)
1457 fill_note(&t->notes[i], "LINUX",
1458 regset->core_note_type,
1461 t->prstatus.pr_fpvalid = 1;
1462 fill_note(&t->notes[i], "CORE",
1463 NT_PRFPREG, size, data);
1465 *total += notesize(&t->notes[i]);
1473 static int fill_note_info(struct elfhdr *elf, int phdrs,
1474 struct elf_note_info *info,
1475 long signr, struct pt_regs *regs)
1477 struct task_struct *dump_task = current;
1478 const struct user_regset_view *view = task_user_regset_view(dump_task);
1479 struct elf_thread_core_info *t;
1480 struct elf_prpsinfo *psinfo;
1481 struct core_thread *ct;
1485 info->thread = NULL;
1487 psinfo = kmalloc(sizeof(*psinfo), GFP_KERNEL);
1488 fill_note(&info->psinfo, "CORE", NT_PRPSINFO, sizeof(*psinfo), psinfo);
1494 * Figure out how many notes we're going to need for each thread.
1496 info->thread_notes = 0;
1497 for (i = 0; i < view->n; ++i)
1498 if (view->regsets[i].core_note_type != 0)
1499 ++info->thread_notes;
1502 * Sanity check. We rely on regset 0 being in NT_PRSTATUS,
1503 * since it is our one special case.
1505 if (unlikely(info->thread_notes == 0) ||
1506 unlikely(view->regsets[0].core_note_type != NT_PRSTATUS)) {
1512 * Initialize the ELF file header.
1514 fill_elf_header(elf, phdrs,
1515 view->e_machine, view->e_flags, view->ei_osabi);
1518 * Allocate a structure for each thread.
1520 for (ct = &dump_task->mm->core_state->dumper; ct; ct = ct->next) {
1521 t = kzalloc(offsetof(struct elf_thread_core_info,
1522 notes[info->thread_notes]),
1528 if (ct->task == dump_task || !info->thread) {
1529 t->next = info->thread;
1533 * Make sure to keep the original task at
1534 * the head of the list.
1536 t->next = info->thread->next;
1537 info->thread->next = t;
1542 * Now fill in each thread's information.
1544 for (t = info->thread; t != NULL; t = t->next)
1545 if (!fill_thread_core_info(t, view, signr, &info->size))
1549 * Fill in the two process-wide notes.
1551 fill_psinfo(psinfo, dump_task->group_leader, dump_task->mm);
1552 info->size += notesize(&info->psinfo);
1554 fill_auxv_note(&info->auxv, current->mm);
1555 info->size += notesize(&info->auxv);
1560 static size_t get_note_info_size(struct elf_note_info *info)
1566 * Write all the notes for each thread. When writing the first thread, the
1567 * process-wide notes are interleaved after the first thread-specific note.
1569 static int write_note_info(struct elf_note_info *info,
1570 struct file *file, loff_t *foffset)
1573 struct elf_thread_core_info *t = info->thread;
1578 if (!writenote(&t->notes[0], file, foffset))
1581 if (first && !writenote(&info->psinfo, file, foffset))
1583 if (first && !writenote(&info->auxv, file, foffset))
1586 for (i = 1; i < info->thread_notes; ++i)
1587 if (t->notes[i].data &&
1588 !writenote(&t->notes[i], file, foffset))
1598 static void free_note_info(struct elf_note_info *info)
1600 struct elf_thread_core_info *threads = info->thread;
1603 struct elf_thread_core_info *t = threads;
1605 WARN_ON(t->notes[0].data && t->notes[0].data != &t->prstatus);
1606 for (i = 1; i < info->thread_notes; ++i)
1607 kfree(t->notes[i].data);
1610 kfree(info->psinfo.data);
1615 /* Here is the structure in which status of each thread is captured. */
1616 struct elf_thread_status
1618 struct list_head list;
1619 struct elf_prstatus prstatus; /* NT_PRSTATUS */
1620 elf_fpregset_t fpu; /* NT_PRFPREG */
1621 struct task_struct *thread;
1622 #ifdef ELF_CORE_COPY_XFPREGS
1623 elf_fpxregset_t xfpu; /* ELF_CORE_XFPREG_TYPE */
1625 struct memelfnote notes[3];
1630 * In order to add the specific thread information for the elf file format,
1631 * we need to keep a linked list of every threads pr_status and then create
1632 * a single section for them in the final core file.
1634 static int elf_dump_thread_status(long signr, struct elf_thread_status *t)
1637 struct task_struct *p = t->thread;
1640 fill_prstatus(&t->prstatus, p, signr);
1641 elf_core_copy_task_regs(p, &t->prstatus.pr_reg);
1643 fill_note(&t->notes[0], "CORE", NT_PRSTATUS, sizeof(t->prstatus),
1646 sz += notesize(&t->notes[0]);
1648 if ((t->prstatus.pr_fpvalid = elf_core_copy_task_fpregs(p, NULL,
1650 fill_note(&t->notes[1], "CORE", NT_PRFPREG, sizeof(t->fpu),
1653 sz += notesize(&t->notes[1]);
1656 #ifdef ELF_CORE_COPY_XFPREGS
1657 if (elf_core_copy_task_xfpregs(p, &t->xfpu)) {
1658 fill_note(&t->notes[2], "LINUX", ELF_CORE_XFPREG_TYPE,
1659 sizeof(t->xfpu), &t->xfpu);
1661 sz += notesize(&t->notes[2]);
1667 struct elf_note_info {
1668 struct memelfnote *notes;
1669 struct elf_prstatus *prstatus; /* NT_PRSTATUS */
1670 struct elf_prpsinfo *psinfo; /* NT_PRPSINFO */
1671 struct list_head thread_list;
1672 elf_fpregset_t *fpu;
1673 #ifdef ELF_CORE_COPY_XFPREGS
1674 elf_fpxregset_t *xfpu;
1676 int thread_status_size;
1680 static int fill_note_info(struct elfhdr *elf, int phdrs,
1681 struct elf_note_info *info,
1682 long signr, struct pt_regs *regs)
1685 struct list_head *t;
1688 info->prstatus = NULL;
1689 info->psinfo = NULL;
1691 #ifdef ELF_CORE_COPY_XFPREGS
1694 INIT_LIST_HEAD(&info->thread_list);
1696 info->notes = kmalloc(NUM_NOTES * sizeof(struct memelfnote),
1700 info->psinfo = kmalloc(sizeof(*info->psinfo), GFP_KERNEL);
1703 info->prstatus = kmalloc(sizeof(*info->prstatus), GFP_KERNEL);
1704 if (!info->prstatus)
1706 info->fpu = kmalloc(sizeof(*info->fpu), GFP_KERNEL);
1709 #ifdef ELF_CORE_COPY_XFPREGS
1710 info->xfpu = kmalloc(sizeof(*info->xfpu), GFP_KERNEL);
1715 info->thread_status_size = 0;
1717 struct core_thread *ct;
1718 struct elf_thread_status *ets;
1720 for (ct = current->mm->core_state->dumper.next;
1721 ct; ct = ct->next) {
1722 ets = kzalloc(sizeof(*ets), GFP_KERNEL);
1726 ets->thread = ct->task;
1727 list_add(&ets->list, &info->thread_list);
1730 list_for_each(t, &info->thread_list) {
1733 ets = list_entry(t, struct elf_thread_status, list);
1734 sz = elf_dump_thread_status(signr, ets);
1735 info->thread_status_size += sz;
1738 /* now collect the dump for the current */
1739 memset(info->prstatus, 0, sizeof(*info->prstatus));
1740 fill_prstatus(info->prstatus, current, signr);
1741 elf_core_copy_regs(&info->prstatus->pr_reg, regs);
1744 fill_elf_header(elf, phdrs, ELF_ARCH, ELF_CORE_EFLAGS, ELF_OSABI);
1747 * Set up the notes in similar form to SVR4 core dumps made
1748 * with info from their /proc.
1751 fill_note(info->notes + 0, "CORE", NT_PRSTATUS,
1752 sizeof(*info->prstatus), info->prstatus);
1753 fill_psinfo(info->psinfo, current->group_leader, current->mm);
1754 fill_note(info->notes + 1, "CORE", NT_PRPSINFO,
1755 sizeof(*info->psinfo), info->psinfo);
1759 fill_auxv_note(&info->notes[info->numnote++], current->mm);
1761 /* Try to dump the FPU. */
1762 info->prstatus->pr_fpvalid = elf_core_copy_task_fpregs(current, regs,
1764 if (info->prstatus->pr_fpvalid)
1765 fill_note(info->notes + info->numnote++,
1766 "CORE", NT_PRFPREG, sizeof(*info->fpu), info->fpu);
1767 #ifdef ELF_CORE_COPY_XFPREGS
1768 if (elf_core_copy_task_xfpregs(current, info->xfpu))
1769 fill_note(info->notes + info->numnote++,
1770 "LINUX", ELF_CORE_XFPREG_TYPE,
1771 sizeof(*info->xfpu), info->xfpu);
1779 static size_t get_note_info_size(struct elf_note_info *info)
1784 for (i = 0; i < info->numnote; i++)
1785 sz += notesize(info->notes + i);
1787 sz += info->thread_status_size;
1792 static int write_note_info(struct elf_note_info *info,
1793 struct file *file, loff_t *foffset)
1796 struct list_head *t;
1798 for (i = 0; i < info->numnote; i++)
1799 if (!writenote(info->notes + i, file, foffset))
1802 /* write out the thread status notes section */
1803 list_for_each(t, &info->thread_list) {
1804 struct elf_thread_status *tmp =
1805 list_entry(t, struct elf_thread_status, list);
1807 for (i = 0; i < tmp->num_notes; i++)
1808 if (!writenote(&tmp->notes[i], file, foffset))
1815 static void free_note_info(struct elf_note_info *info)
1817 while (!list_empty(&info->thread_list)) {
1818 struct list_head *tmp = info->thread_list.next;
1820 kfree(list_entry(tmp, struct elf_thread_status, list));
1823 kfree(info->prstatus);
1824 kfree(info->psinfo);
1827 #ifdef ELF_CORE_COPY_XFPREGS
1834 static struct vm_area_struct *first_vma(struct task_struct *tsk,
1835 struct vm_area_struct *gate_vma)
1837 struct vm_area_struct *ret = tsk->mm->mmap;
1844 * Helper function for iterating across a vma list. It ensures that the caller
1845 * will visit `gate_vma' prior to terminating the search.
1847 static struct vm_area_struct *next_vma(struct vm_area_struct *this_vma,
1848 struct vm_area_struct *gate_vma)
1850 struct vm_area_struct *ret;
1852 ret = this_vma->vm_next;
1855 if (this_vma == gate_vma)
1863 * This is a two-pass process; first we find the offsets of the bits,
1864 * and then they are actually written out. If we run out of core limit
1867 static int elf_core_dump(long signr, struct pt_regs *regs, struct file *file, unsigned long limit)
1873 struct vm_area_struct *vma, *gate_vma;
1874 struct elfhdr *elf = NULL;
1875 loff_t offset = 0, dataoff, foffset;
1876 unsigned long mm_flags;
1877 struct elf_note_info info;
1880 * We no longer stop all VM operations.
1882 * This is because those proceses that could possibly change map_count
1883 * or the mmap / vma pages are now blocked in do_exit on current
1884 * finishing this core dump.
1886 * Only ptrace can touch these memory addresses, but it doesn't change
1887 * the map_count or the pages allocated. So no possibility of crashing
1888 * exists while dumping the mm->vm_next areas to the core file.
1891 /* alloc memory for large data structures: too large to be on stack */
1892 elf = kmalloc(sizeof(*elf), GFP_KERNEL);
1896 segs = current->mm->map_count;
1897 #ifdef ELF_CORE_EXTRA_PHDRS
1898 segs += ELF_CORE_EXTRA_PHDRS;
1901 gate_vma = get_gate_vma(current);
1902 if (gate_vma != NULL)
1906 * Collect all the non-memory information about the process for the
1907 * notes. This also sets up the file header.
1909 if (!fill_note_info(elf, segs + 1, /* including notes section */
1910 &info, signr, regs))
1914 current->flags |= PF_DUMPCORE;
1919 DUMP_WRITE(elf, sizeof(*elf));
1920 offset += sizeof(*elf); /* Elf header */
1921 offset += (segs + 1) * sizeof(struct elf_phdr); /* Program headers */
1924 /* Write notes phdr entry */
1926 struct elf_phdr phdr;
1927 size_t sz = get_note_info_size(&info);
1929 sz += elf_coredump_extra_notes_size();
1931 fill_elf_note_phdr(&phdr, sz, offset);
1933 DUMP_WRITE(&phdr, sizeof(phdr));
1936 dataoff = offset = roundup(offset, ELF_EXEC_PAGESIZE);
1939 * We must use the same mm->flags while dumping core to avoid
1940 * inconsistency between the program headers and bodies, otherwise an
1941 * unusable core file can be generated.
1943 mm_flags = current->mm->flags;
1945 /* Write program headers for segments dump */
1946 for (vma = first_vma(current, gate_vma); vma != NULL;
1947 vma = next_vma(vma, gate_vma)) {
1948 struct elf_phdr phdr;
1950 phdr.p_type = PT_LOAD;
1951 phdr.p_offset = offset;
1952 phdr.p_vaddr = vma->vm_start;
1954 phdr.p_filesz = vma_dump_size(vma, mm_flags);
1955 phdr.p_memsz = vma->vm_end - vma->vm_start;
1956 offset += phdr.p_filesz;
1957 phdr.p_flags = vma->vm_flags & VM_READ ? PF_R : 0;
1958 if (vma->vm_flags & VM_WRITE)
1959 phdr.p_flags |= PF_W;
1960 if (vma->vm_flags & VM_EXEC)
1961 phdr.p_flags |= PF_X;
1962 phdr.p_align = ELF_EXEC_PAGESIZE;
1964 DUMP_WRITE(&phdr, sizeof(phdr));
1967 #ifdef ELF_CORE_WRITE_EXTRA_PHDRS
1968 ELF_CORE_WRITE_EXTRA_PHDRS;
1971 /* write out the notes section */
1972 if (!write_note_info(&info, file, &foffset))
1975 if (elf_coredump_extra_notes_write(file, &foffset))
1979 DUMP_SEEK(dataoff - foffset);
1981 for (vma = first_vma(current, gate_vma); vma != NULL;
1982 vma = next_vma(vma, gate_vma)) {
1986 end = vma->vm_start + vma_dump_size(vma, mm_flags);
1988 for (addr = vma->vm_start; addr < end; addr += PAGE_SIZE) {
1990 struct vm_area_struct *tmp_vma;
1992 if (get_user_pages(current, current->mm, addr, 1, 0, 1,
1993 &page, &tmp_vma) <= 0) {
1994 DUMP_SEEK(PAGE_SIZE);
1996 if (page == ZERO_PAGE(0)) {
1997 if (!dump_seek(file, PAGE_SIZE)) {
1998 page_cache_release(page);
2003 flush_cache_page(tmp_vma, addr,
2006 if ((size += PAGE_SIZE) > limit ||
2007 !dump_write(file, kaddr,
2010 page_cache_release(page);
2015 page_cache_release(page);
2020 #ifdef ELF_CORE_WRITE_EXTRA_DATA
2021 ELF_CORE_WRITE_EXTRA_DATA;
2028 free_note_info(&info);
2034 #endif /* USE_ELF_CORE_DUMP */
2036 static int __init init_elf_binfmt(void)
2038 return register_binfmt(&elf_format);
2041 static void __exit exit_elf_binfmt(void)
2043 /* Remove the COFF and ELF loaders. */
2044 unregister_binfmt(&elf_format);
2047 core_initcall(init_elf_binfmt);
2048 module_exit(exit_elf_binfmt);
2049 MODULE_LICENSE("GPL");
git.openpandora.org / pandora-kernel.git / blob