1 /* This is the Linux kernel elf-loading code, ported into user space */
15 /* this flag is uneffective under linux too, should be deleted */
17 #define MAP_DENYWRITE 0
20 /* should probably go in elf.h */
27 #define ELF_PLATFORM get_elf_platform()
29 static const char *get_elf_platform(void)
31 static char elf_platform[] = "i386";
32 int family = (global_env->cpuid_version >> 8) & 0xff;
36 elf_platform[1] = '0' + family;
40 #define ELF_HWCAP get_elf_hwcap()
42 static uint32_t get_elf_hwcap(void)
44 return global_env->cpuid_features;
47 #define ELF_START_MMAP 0x80000000
50 * This is used to ensure we don't load something for the wrong architecture.
52 #define elf_check_arch(x) ( ((x) == EM_386) || ((x) == EM_486) )
55 * These are used to set parameters in the core dumps.
57 #define ELF_CLASS ELFCLASS32
58 #define ELF_DATA ELFDATA2LSB
59 #define ELF_ARCH EM_386
61 static inline void init_thread(struct target_pt_regs *regs, struct image_info *infop)
63 regs->esp = infop->start_stack;
64 regs->eip = infop->entry;
66 /* SVR4/i386 ABI (pages 3-31, 3-32) says that when the program
67 starts %edx contains a pointer to a function which might be
68 registered using `atexit'. This provides a mean for the
69 dynamic linker to call DT_FINI functions for shared libraries
70 that have been loaded before the code runs.
72 A value of 0 tells we have no such handler. */
76 #define USE_ELF_CORE_DUMP
77 #define ELF_EXEC_PAGESIZE 4096
83 #define ELF_START_MMAP 0x80000000
85 #define elf_check_arch(x) ( (x) == EM_ARM )
87 #define ELF_CLASS ELFCLASS32
88 #ifdef TARGET_WORDS_BIGENDIAN
89 #define ELF_DATA ELFDATA2MSB
91 #define ELF_DATA ELFDATA2LSB
93 #define ELF_ARCH EM_ARM
95 static inline void init_thread(struct target_pt_regs *regs, struct image_info *infop)
97 target_long stack = infop->start_stack;
98 memset(regs, 0, sizeof(*regs));
99 regs->ARM_cpsr = 0x10;
100 if (infop->entry & 1)
101 regs->ARM_cpsr |= CPSR_T;
102 regs->ARM_pc = infop->entry & 0xfffffffe;
103 regs->ARM_sp = infop->start_stack;
104 regs->ARM_r2 = tgetl(stack + 8); /* envp */
105 regs->ARM_r1 = tgetl(stack + 4); /* envp */
106 /* XXX: it seems that r0 is zeroed after ! */
108 /* For uClinux PIC binaries. */
109 regs->ARM_r10 = infop->start_data;
112 #define USE_ELF_CORE_DUMP
113 #define ELF_EXEC_PAGESIZE 4096
117 ARM_HWCAP_ARM_SWP = 1 << 0,
118 ARM_HWCAP_ARM_HALF = 1 << 1,
119 ARM_HWCAP_ARM_THUMB = 1 << 2,
120 ARM_HWCAP_ARM_26BIT = 1 << 3,
121 ARM_HWCAP_ARM_FAST_MULT = 1 << 4,
122 ARM_HWCAP_ARM_FPA = 1 << 5,
123 ARM_HWCAP_ARM_VFP = 1 << 6,
124 ARM_HWCAP_ARM_EDSP = 1 << 7,
127 #define ELF_HWCAP (ARM_HWCAP_ARM_SWP | ARM_HWCAP_ARM_HALF \
128 | ARM_HWCAP_ARM_THUMB | ARM_HWCAP_ARM_FAST_MULT \
129 | ARM_HWCAP_ARM_FPA | ARM_HWCAP_ARM_VFP)
134 #ifdef TARGET_SPARC64
136 #define ELF_START_MMAP 0x80000000
138 #define elf_check_arch(x) ( (x) == EM_SPARCV9 )
140 #define ELF_CLASS ELFCLASS64
141 #define ELF_DATA ELFDATA2MSB
142 #define ELF_ARCH EM_SPARCV9
144 #define STACK_BIAS 2047
146 static inline void init_thread(struct target_pt_regs *regs, struct image_info *infop)
149 regs->pc = infop->entry;
150 regs->npc = regs->pc + 4;
152 regs->u_regs[14] = infop->start_stack - 16 * 8 - STACK_BIAS;
156 #define ELF_START_MMAP 0x80000000
158 #define elf_check_arch(x) ( (x) == EM_SPARC )
160 #define ELF_CLASS ELFCLASS32
161 #define ELF_DATA ELFDATA2MSB
162 #define ELF_ARCH EM_SPARC
164 static inline void init_thread(struct target_pt_regs *regs, struct image_info *infop)
167 regs->pc = infop->entry;
168 regs->npc = regs->pc + 4;
170 regs->u_regs[14] = infop->start_stack - 16 * 4;
178 #define ELF_START_MMAP 0x80000000
180 #define elf_check_arch(x) ( (x) == EM_PPC )
182 #define ELF_CLASS ELFCLASS32
183 #ifdef TARGET_WORDS_BIGENDIAN
184 #define ELF_DATA ELFDATA2MSB
186 #define ELF_DATA ELFDATA2LSB
188 #define ELF_ARCH EM_PPC
191 * We need to put in some extra aux table entries to tell glibc what
192 * the cache block size is, so it can use the dcbz instruction safely.
194 #define AT_DCACHEBSIZE 19
195 #define AT_ICACHEBSIZE 20
196 #define AT_UCACHEBSIZE 21
197 /* A special ignored type value for PPC, for glibc compatibility. */
198 #define AT_IGNOREPPC 22
200 * The requirements here are:
201 * - keep the final alignment of sp (sp & 0xf)
202 * - make sure the 32-bit value at the first 16 byte aligned position of
203 * AUXV is greater than 16 for glibc compatibility.
204 * AT_IGNOREPPC is used for that.
205 * - for compatibility with glibc ARCH_DLINFO must always be defined on PPC,
206 * even if DLINFO_ARCH_ITEMS goes to zero or is undefined.
208 #define DLINFO_ARCH_ITEMS 5
209 #define ARCH_DLINFO \
211 NEW_AUX_ENT(AT_DCACHEBSIZE, 0x20); \
212 NEW_AUX_ENT(AT_ICACHEBSIZE, 0x20); \
213 NEW_AUX_ENT(AT_UCACHEBSIZE, 0); \
215 * Now handle glibc compatibility. \
217 NEW_AUX_ENT(AT_IGNOREPPC, AT_IGNOREPPC); \
218 NEW_AUX_ENT(AT_IGNOREPPC, AT_IGNOREPPC); \
221 static inline void init_thread(struct target_pt_regs *_regs, struct image_info *infop)
223 target_ulong pos = infop->start_stack;
226 _regs->msr = 1 << MSR_PR; /* Set user mode */
227 _regs->gpr[1] = infop->start_stack;
228 _regs->nip = infop->entry;
229 /* Note that isn't exactly what regular kernel does
230 * but this is what the ABI wants and is needed to allow
231 * execution of PPC BSD programs.
233 _regs->gpr[3] = tgetl(pos);
234 pos += sizeof(target_ulong);
236 for (tmp = 1; tmp != 0; pos += sizeof(target_ulong))
241 #define USE_ELF_CORE_DUMP
242 #define ELF_EXEC_PAGESIZE 4096
248 #define ELF_START_MMAP 0x80000000
250 #define elf_check_arch(x) ( (x) == EM_MIPS )
252 #define ELF_CLASS ELFCLASS32
253 #ifdef TARGET_WORDS_BIGENDIAN
254 #define ELF_DATA ELFDATA2MSB
256 #define ELF_DATA ELFDATA2LSB
258 #define ELF_ARCH EM_MIPS
260 static inline void init_thread(struct target_pt_regs *regs, struct image_info *infop)
262 regs->cp0_status = CP0St_UM;
263 regs->cp0_epc = infop->entry;
264 regs->regs[29] = infop->start_stack;
267 #endif /* TARGET_MIPS */
271 #define ELF_START_MMAP 0x80000000
273 #define elf_check_arch(x) ( (x) == EM_SH )
275 #define ELF_CLASS ELFCLASS32
276 #define ELF_DATA ELFDATA2LSB
277 #define ELF_ARCH EM_SH
279 static inline void init_thread(struct target_pt_regs *regs, struct image_info *infop)
281 /* Check other registers XXXXX */
282 regs->pc = infop->entry;
283 regs->regs[15] = infop->start_stack - 16 * 4;
286 #define USE_ELF_CORE_DUMP
287 #define ELF_EXEC_PAGESIZE 4096
293 #define ELF_START_MMAP 0x80000000
295 #define elf_check_arch(x) ( (x) == EM_68K )
297 #define ELF_CLASS ELFCLASS32
298 #define ELF_DATA ELFDATA2MSB
299 #define ELF_ARCH EM_68K
301 /* ??? Does this need to do anything?
302 #define ELF_PLAT_INIT(_r) */
304 static inline void init_thread(struct target_pt_regs *regs, struct image_info *infop)
306 regs->usp = infop->start_stack;
308 regs->pc = infop->entry;
311 #define USE_ELF_CORE_DUMP
312 #define ELF_EXEC_PAGESIZE 8192
317 #define ELF_PLATFORM (NULL)
328 unsigned int a_info; /* Use macros N_MAGIC, etc for access */
329 unsigned int a_text; /* length of text, in bytes */
330 unsigned int a_data; /* length of data, in bytes */
331 unsigned int a_bss; /* length of uninitialized data area, in bytes */
332 unsigned int a_syms; /* length of symbol table data in file, in bytes */
333 unsigned int a_entry; /* start address */
334 unsigned int a_trsize; /* length of relocation info for text, in bytes */
335 unsigned int a_drsize; /* length of relocation info for data, in bytes */
339 #define N_MAGIC(exec) ((exec).a_info & 0xffff)
345 /* max code+data+bss space allocated to elf interpreter */
346 #define INTERP_MAP_SIZE (32 * 1024 * 1024)
348 /* max code+data+bss+brk space allocated to ET_DYN executables */
349 #define ET_DYN_MAP_SIZE (128 * 1024 * 1024)
351 /* from personality.h */
353 /* Flags for bug emulation. These occupy the top three bytes. */
354 #define STICKY_TIMEOUTS 0x4000000
355 #define WHOLE_SECONDS 0x2000000
357 /* Personality types. These go in the low byte. Avoid using the top bit,
358 * it will conflict with error returns.
360 #define PER_MASK (0x00ff)
361 #define PER_LINUX (0x0000)
362 #define PER_SVR4 (0x0001 | STICKY_TIMEOUTS)
363 #define PER_SVR3 (0x0002 | STICKY_TIMEOUTS)
364 #define PER_SCOSVR3 (0x0003 | STICKY_TIMEOUTS | WHOLE_SECONDS)
365 #define PER_WYSEV386 (0x0004 | STICKY_TIMEOUTS)
366 #define PER_ISCR4 (0x0005 | STICKY_TIMEOUTS)
367 #define PER_BSD (0x0006)
368 #define PER_XENIX (0x0007 | STICKY_TIMEOUTS)
370 /* Necessary parameters */
371 #define TARGET_ELF_EXEC_PAGESIZE TARGET_PAGE_SIZE
372 #define TARGET_ELF_PAGESTART(_v) ((_v) & ~(unsigned long)(TARGET_ELF_EXEC_PAGESIZE-1))
373 #define TARGET_ELF_PAGEOFFSET(_v) ((_v) & (TARGET_ELF_EXEC_PAGESIZE-1))
375 #define INTERPRETER_NONE 0
376 #define INTERPRETER_AOUT 1
377 #define INTERPRETER_ELF 2
379 #define DLINFO_ITEMS 12
381 static inline void memcpy_fromfs(void * to, const void * from, unsigned long n)
386 extern unsigned long x86_stack_size;
388 static int load_aout_interp(void * exptr, int interp_fd);
391 static void bswap_ehdr(struct elfhdr *ehdr)
393 bswap16s(&ehdr->e_type); /* Object file type */
394 bswap16s(&ehdr->e_machine); /* Architecture */
395 bswap32s(&ehdr->e_version); /* Object file version */
396 bswaptls(&ehdr->e_entry); /* Entry point virtual address */
397 bswaptls(&ehdr->e_phoff); /* Program header table file offset */
398 bswaptls(&ehdr->e_shoff); /* Section header table file offset */
399 bswap32s(&ehdr->e_flags); /* Processor-specific flags */
400 bswap16s(&ehdr->e_ehsize); /* ELF header size in bytes */
401 bswap16s(&ehdr->e_phentsize); /* Program header table entry size */
402 bswap16s(&ehdr->e_phnum); /* Program header table entry count */
403 bswap16s(&ehdr->e_shentsize); /* Section header table entry size */
404 bswap16s(&ehdr->e_shnum); /* Section header table entry count */
405 bswap16s(&ehdr->e_shstrndx); /* Section header string table index */
408 static void bswap_phdr(struct elf_phdr *phdr)
410 bswap32s(&phdr->p_type); /* Segment type */
411 bswaptls(&phdr->p_offset); /* Segment file offset */
412 bswaptls(&phdr->p_vaddr); /* Segment virtual address */
413 bswaptls(&phdr->p_paddr); /* Segment physical address */
414 bswaptls(&phdr->p_filesz); /* Segment size in file */
415 bswaptls(&phdr->p_memsz); /* Segment size in memory */
416 bswap32s(&phdr->p_flags); /* Segment flags */
417 bswaptls(&phdr->p_align); /* Segment alignment */
420 static void bswap_shdr(struct elf_shdr *shdr)
422 bswap32s(&shdr->sh_name);
423 bswap32s(&shdr->sh_type);
424 bswaptls(&shdr->sh_flags);
425 bswaptls(&shdr->sh_addr);
426 bswaptls(&shdr->sh_offset);
427 bswaptls(&shdr->sh_size);
428 bswap32s(&shdr->sh_link);
429 bswap32s(&shdr->sh_info);
430 bswaptls(&shdr->sh_addralign);
431 bswaptls(&shdr->sh_entsize);
434 static void bswap_sym(Elf32_Sym *sym)
436 bswap32s(&sym->st_name);
437 bswap32s(&sym->st_value);
438 bswap32s(&sym->st_size);
439 bswap16s(&sym->st_shndx);
444 * 'copy_elf_strings()' copies argument/envelope strings from user
445 * memory to free pages in kernel mem. These are in a format ready
446 * to be put directly into the top of new user memory.
449 static unsigned long copy_elf_strings(int argc,char ** argv, void **page,
452 char *tmp, *tmp1, *pag = NULL;
456 return 0; /* bullet-proofing */
461 fprintf(stderr, "VFS: argc is wrong");
467 if (p < len) { /* this shouldn't happen - 128kB */
473 offset = p % TARGET_PAGE_SIZE;
474 pag = (char *)page[p/TARGET_PAGE_SIZE];
476 pag = (char *)malloc(TARGET_PAGE_SIZE);
477 page[p/TARGET_PAGE_SIZE] = pag;
482 if (len == 0 || offset == 0) {
483 *(pag + offset) = *tmp;
486 int bytes_to_copy = (len > offset) ? offset : len;
487 tmp -= bytes_to_copy;
489 offset -= bytes_to_copy;
490 len -= bytes_to_copy;
491 memcpy_fromfs(pag + offset, tmp, bytes_to_copy + 1);
498 unsigned long setup_arg_pages(target_ulong p, struct linux_binprm * bprm,
499 struct image_info * info)
501 target_ulong stack_base, size, error;
504 /* Create enough stack to hold everything. If we don't use
505 * it for args, we'll use it for something else...
507 size = x86_stack_size;
508 if (size < MAX_ARG_PAGES*TARGET_PAGE_SIZE)
509 size = MAX_ARG_PAGES*TARGET_PAGE_SIZE;
510 error = target_mmap(0,
511 size + qemu_host_page_size,
512 PROT_READ | PROT_WRITE,
513 MAP_PRIVATE | MAP_ANONYMOUS,
519 /* we reserve one extra page at the top of the stack as guard */
520 target_mprotect(error + size, qemu_host_page_size, PROT_NONE);
522 stack_base = error + size - MAX_ARG_PAGES*TARGET_PAGE_SIZE;
525 for (i = 0 ; i < MAX_ARG_PAGES ; i++) {
529 memcpy_to_target(stack_base, bprm->page[i], TARGET_PAGE_SIZE);
532 stack_base += TARGET_PAGE_SIZE;
537 static void set_brk(unsigned long start, unsigned long end)
539 /* page-align the start and end addresses... */
540 start = HOST_PAGE_ALIGN(start);
541 end = HOST_PAGE_ALIGN(end);
544 if(target_mmap(start, end - start,
545 PROT_READ | PROT_WRITE | PROT_EXEC,
546 MAP_FIXED | MAP_PRIVATE | MAP_ANONYMOUS, -1, 0) == -1) {
547 perror("cannot mmap brk");
553 /* We need to explicitly zero any fractional pages after the data
554 section (i.e. bss). This would contain the junk from the file that
555 should not be in memory. */
556 static void padzero(unsigned long elf_bss, unsigned long last_bss)
560 if (elf_bss >= last_bss)
563 /* XXX: this is really a hack : if the real host page size is
564 smaller than the target page size, some pages after the end
565 of the file may not be mapped. A better fix would be to
566 patch target_mmap(), but it is more complicated as the file
567 size must be known */
568 if (qemu_real_host_page_size < qemu_host_page_size) {
569 unsigned long end_addr, end_addr1;
570 end_addr1 = (elf_bss + qemu_real_host_page_size - 1) &
571 ~(qemu_real_host_page_size - 1);
572 end_addr = HOST_PAGE_ALIGN(elf_bss);
573 if (end_addr1 < end_addr) {
574 mmap((void *)end_addr1, end_addr - end_addr1,
575 PROT_READ|PROT_WRITE|PROT_EXEC,
576 MAP_FIXED|MAP_PRIVATE|MAP_ANONYMOUS, -1, 0);
580 nbyte = elf_bss & (qemu_host_page_size-1);
582 nbyte = qemu_host_page_size - nbyte;
591 static unsigned long create_elf_tables(target_ulong p, int argc, int envc,
592 struct elfhdr * exec,
593 unsigned long load_addr,
594 unsigned long load_bias,
595 unsigned long interp_load_addr, int ibcs,
596 struct image_info *info)
600 target_ulong u_platform;
601 const char *k_platform;
602 const int n = sizeof(target_ulong);
606 k_platform = ELF_PLATFORM;
608 size_t len = strlen(k_platform) + 1;
609 sp -= (len + n - 1) & ~(n - 1);
611 memcpy_to_target(sp, k_platform, len);
614 * Force 16 byte _final_ alignment here for generality.
616 sp = sp &~ (target_ulong)15;
617 size = (DLINFO_ITEMS + 1) * 2;
620 #ifdef DLINFO_ARCH_ITEMS
621 size += DLINFO_ARCH_ITEMS * 2;
623 size += envc + argc + 2;
624 size += (!ibcs ? 3 : 1); /* argc itself */
627 sp -= 16 - (size & 15);
629 #define NEW_AUX_ENT(id, val) do { \
630 sp -= n; tputl(sp, val); \
631 sp -= n; tputl(sp, id); \
633 NEW_AUX_ENT (AT_NULL, 0);
635 /* There must be exactly DLINFO_ITEMS entries here. */
636 NEW_AUX_ENT(AT_PHDR, (target_ulong)(load_addr + exec->e_phoff));
637 NEW_AUX_ENT(AT_PHENT, (target_ulong)(sizeof (struct elf_phdr)));
638 NEW_AUX_ENT(AT_PHNUM, (target_ulong)(exec->e_phnum));
639 NEW_AUX_ENT(AT_PAGESZ, (target_ulong)(TARGET_PAGE_SIZE));
640 NEW_AUX_ENT(AT_BASE, (target_ulong)(interp_load_addr));
641 NEW_AUX_ENT(AT_FLAGS, (target_ulong)0);
642 NEW_AUX_ENT(AT_ENTRY, load_bias + exec->e_entry);
643 NEW_AUX_ENT(AT_UID, (target_ulong) getuid());
644 NEW_AUX_ENT(AT_EUID, (target_ulong) geteuid());
645 NEW_AUX_ENT(AT_GID, (target_ulong) getgid());
646 NEW_AUX_ENT(AT_EGID, (target_ulong) getegid());
647 NEW_AUX_ENT(AT_HWCAP, (target_ulong) ELF_HWCAP);
649 NEW_AUX_ENT(AT_PLATFORM, u_platform);
652 * ARCH_DLINFO must come last so platform specific code can enforce
653 * special alignment requirements on the AUXV if necessary (eg. PPC).
659 sp = loader_build_argptr(envc, argc, sp, p, !ibcs);
664 static unsigned long load_elf_interp(struct elfhdr * interp_elf_ex,
666 unsigned long *interp_load_addr)
668 struct elf_phdr *elf_phdata = NULL;
669 struct elf_phdr *eppnt;
670 unsigned long load_addr = 0;
671 int load_addr_set = 0;
673 unsigned long last_bss, elf_bss;
682 bswap_ehdr(interp_elf_ex);
684 /* First of all, some simple consistency checks */
685 if ((interp_elf_ex->e_type != ET_EXEC &&
686 interp_elf_ex->e_type != ET_DYN) ||
687 !elf_check_arch(interp_elf_ex->e_machine)) {
692 /* Now read in all of the header information */
694 if (sizeof(struct elf_phdr) * interp_elf_ex->e_phnum > TARGET_PAGE_SIZE)
697 elf_phdata = (struct elf_phdr *)
698 malloc(sizeof(struct elf_phdr) * interp_elf_ex->e_phnum);
704 * If the size of this structure has changed, then punt, since
705 * we will be doing the wrong thing.
707 if (interp_elf_ex->e_phentsize != sizeof(struct elf_phdr)) {
712 retval = lseek(interpreter_fd, interp_elf_ex->e_phoff, SEEK_SET);
714 retval = read(interpreter_fd,
716 sizeof(struct elf_phdr) * interp_elf_ex->e_phnum);
719 perror("load_elf_interp");
726 for (i=0; i<interp_elf_ex->e_phnum; i++, eppnt++) {
731 if (interp_elf_ex->e_type == ET_DYN) {
732 /* in order to avoid harcoding the interpreter load
733 address in qemu, we allocate a big enough memory zone */
734 error = target_mmap(0, INTERP_MAP_SIZE,
735 PROT_NONE, MAP_PRIVATE | MAP_ANON,
746 for(i=0; i<interp_elf_ex->e_phnum; i++, eppnt++)
747 if (eppnt->p_type == PT_LOAD) {
748 int elf_type = MAP_PRIVATE | MAP_DENYWRITE;
750 unsigned long vaddr = 0;
753 if (eppnt->p_flags & PF_R) elf_prot = PROT_READ;
754 if (eppnt->p_flags & PF_W) elf_prot |= PROT_WRITE;
755 if (eppnt->p_flags & PF_X) elf_prot |= PROT_EXEC;
756 if (interp_elf_ex->e_type == ET_EXEC || load_addr_set) {
757 elf_type |= MAP_FIXED;
758 vaddr = eppnt->p_vaddr;
760 error = target_mmap(load_addr+TARGET_ELF_PAGESTART(vaddr),
761 eppnt->p_filesz + TARGET_ELF_PAGEOFFSET(eppnt->p_vaddr),
765 eppnt->p_offset - TARGET_ELF_PAGEOFFSET(eppnt->p_vaddr));
769 close(interpreter_fd);
774 if (!load_addr_set && interp_elf_ex->e_type == ET_DYN) {
780 * Find the end of the file mapping for this phdr, and keep
781 * track of the largest address we see for this.
783 k = load_addr + eppnt->p_vaddr + eppnt->p_filesz;
784 if (k > elf_bss) elf_bss = k;
787 * Do the same thing for the memory mapping - between
788 * elf_bss and last_bss is the bss section.
790 k = load_addr + eppnt->p_memsz + eppnt->p_vaddr;
791 if (k > last_bss) last_bss = k;
794 /* Now use mmap to map the library into memory. */
796 close(interpreter_fd);
799 * Now fill out the bss section. First pad the last page up
800 * to the page boundary, and then perform a mmap to make sure
801 * that there are zeromapped pages up to and including the last
804 padzero(elf_bss, last_bss);
805 elf_bss = TARGET_ELF_PAGESTART(elf_bss + qemu_host_page_size - 1); /* What we have mapped so far */
807 /* Map the last of the bss segment */
808 if (last_bss > elf_bss) {
809 target_mmap(elf_bss, last_bss-elf_bss,
810 PROT_READ|PROT_WRITE|PROT_EXEC,
811 MAP_FIXED|MAP_PRIVATE|MAP_ANONYMOUS, -1, 0);
815 *interp_load_addr = load_addr;
816 return ((unsigned long) interp_elf_ex->e_entry) + load_addr;
819 /* Best attempt to load symbols from this ELF object. */
820 static void load_symbols(struct elfhdr *hdr, int fd)
823 struct elf_shdr sechdr, symtab, strtab;
827 lseek(fd, hdr->e_shoff, SEEK_SET);
828 for (i = 0; i < hdr->e_shnum; i++) {
829 if (read(fd, &sechdr, sizeof(sechdr)) != sizeof(sechdr))
834 if (sechdr.sh_type == SHT_SYMTAB) {
836 lseek(fd, hdr->e_shoff
837 + sizeof(sechdr) * sechdr.sh_link, SEEK_SET);
838 if (read(fd, &strtab, sizeof(strtab))
847 return; /* Shouldn't happen... */
850 /* Now know where the strtab and symtab are. Snarf them. */
851 s = malloc(sizeof(*s));
852 s->disas_symtab = malloc(symtab.sh_size);
853 s->disas_strtab = strings = malloc(strtab.sh_size);
854 if (!s->disas_symtab || !s->disas_strtab)
857 lseek(fd, symtab.sh_offset, SEEK_SET);
858 if (read(fd, s->disas_symtab, symtab.sh_size) != symtab.sh_size)
862 for (i = 0; i < symtab.sh_size / sizeof(struct elf_sym); i++)
863 bswap_sym(s->disas_symtab + sizeof(struct elf_sym)*i);
866 lseek(fd, strtab.sh_offset, SEEK_SET);
867 if (read(fd, strings, strtab.sh_size) != strtab.sh_size)
869 s->disas_num_syms = symtab.sh_size / sizeof(struct elf_sym);
874 int load_elf_binary(struct linux_binprm * bprm, struct target_pt_regs * regs,
875 struct image_info * info)
877 struct elfhdr elf_ex;
878 struct elfhdr interp_elf_ex;
879 struct exec interp_ex;
880 int interpreter_fd = -1; /* avoid warning */
881 unsigned long load_addr, load_bias;
882 int load_addr_set = 0;
883 unsigned int interpreter_type = INTERPRETER_NONE;
884 unsigned char ibcs2_interpreter;
886 unsigned long mapped_addr;
887 struct elf_phdr * elf_ppnt;
888 struct elf_phdr *elf_phdata;
889 unsigned long elf_bss, k, elf_brk;
891 char * elf_interpreter;
892 unsigned long elf_entry, interp_load_addr = 0;
894 unsigned long start_code, end_code, end_data;
895 unsigned long elf_stack;
896 char passed_fileno[6];
898 ibcs2_interpreter = 0;
902 elf_ex = *((struct elfhdr *) bprm->buf); /* exec-header */
907 /* First of all, some simple consistency checks */
908 if ((elf_ex.e_type != ET_EXEC && elf_ex.e_type != ET_DYN) ||
909 (! elf_check_arch(elf_ex.e_machine))) {
913 bprm->p = copy_elf_strings(1, &bprm->filename, bprm->page, bprm->p);
914 bprm->p = copy_elf_strings(bprm->envc,bprm->envp,bprm->page,bprm->p);
915 bprm->p = copy_elf_strings(bprm->argc,bprm->argv,bprm->page,bprm->p);
920 /* Now read in all of the header information */
921 elf_phdata = (struct elf_phdr *)malloc(elf_ex.e_phentsize*elf_ex.e_phnum);
922 if (elf_phdata == NULL) {
926 retval = lseek(bprm->fd, elf_ex.e_phoff, SEEK_SET);
928 retval = read(bprm->fd, (char *) elf_phdata,
929 elf_ex.e_phentsize * elf_ex.e_phnum);
933 perror("load_elf_binary");
940 elf_ppnt = elf_phdata;
941 for (i=0; i<elf_ex.e_phnum; i++, elf_ppnt++) {
942 bswap_phdr(elf_ppnt);
945 elf_ppnt = elf_phdata;
952 elf_interpreter = NULL;
957 for(i=0;i < elf_ex.e_phnum; i++) {
958 if (elf_ppnt->p_type == PT_INTERP) {
959 if ( elf_interpreter != NULL )
962 free(elf_interpreter);
967 /* This is the program interpreter used for
968 * shared libraries - for now assume that this
969 * is an a.out format binary
972 elf_interpreter = (char *)malloc(elf_ppnt->p_filesz);
974 if (elf_interpreter == NULL) {
980 retval = lseek(bprm->fd, elf_ppnt->p_offset, SEEK_SET);
982 retval = read(bprm->fd, elf_interpreter, elf_ppnt->p_filesz);
985 perror("load_elf_binary2");
989 /* If the program interpreter is one of these two,
990 then assume an iBCS2 image. Otherwise assume
991 a native linux image. */
993 /* JRP - Need to add X86 lib dir stuff here... */
995 if (strcmp(elf_interpreter,"/usr/lib/libc.so.1") == 0 ||
996 strcmp(elf_interpreter,"/usr/lib/ld.so.1") == 0) {
997 ibcs2_interpreter = 1;
1001 printf("Using ELF interpreter %s\n", elf_interpreter);
1004 retval = open(path(elf_interpreter), O_RDONLY);
1006 interpreter_fd = retval;
1009 perror(elf_interpreter);
1011 /* retval = -errno; */
1016 retval = lseek(interpreter_fd, 0, SEEK_SET);
1018 retval = read(interpreter_fd,bprm->buf,128);
1022 interp_ex = *((struct exec *) bprm->buf); /* aout exec-header */
1023 interp_elf_ex=*((struct elfhdr *) bprm->buf); /* elf exec-header */
1026 perror("load_elf_binary3");
1029 free(elf_interpreter);
1037 /* Some simple consistency checks for the interpreter */
1038 if (elf_interpreter){
1039 interpreter_type = INTERPRETER_ELF | INTERPRETER_AOUT;
1041 /* Now figure out which format our binary is */
1042 if ((N_MAGIC(interp_ex) != OMAGIC) && (N_MAGIC(interp_ex) != ZMAGIC) &&
1043 (N_MAGIC(interp_ex) != QMAGIC)) {
1044 interpreter_type = INTERPRETER_ELF;
1047 if (interp_elf_ex.e_ident[0] != 0x7f ||
1048 strncmp(&interp_elf_ex.e_ident[1], "ELF",3) != 0) {
1049 interpreter_type &= ~INTERPRETER_ELF;
1052 if (!interpreter_type) {
1053 free(elf_interpreter);
1060 /* OK, we are done with that, now set up the arg stuff,
1061 and then start this sucker up */
1066 if (interpreter_type == INTERPRETER_AOUT) {
1067 snprintf(passed_fileno, sizeof(passed_fileno), "%d", bprm->fd);
1068 passed_p = passed_fileno;
1070 if (elf_interpreter) {
1071 bprm->p = copy_elf_strings(1,&passed_p,bprm->page,bprm->p);
1076 if (elf_interpreter) {
1077 free(elf_interpreter);
1085 /* OK, This is the point of no return */
1088 info->start_mmap = (unsigned long)ELF_START_MMAP;
1090 elf_entry = (unsigned long) elf_ex.e_entry;
1092 /* Do this so that we can load the interpreter, if need be. We will
1093 change some of these later */
1095 bprm->p = setup_arg_pages(bprm->p, bprm, info);
1096 info->start_stack = bprm->p;
1098 /* Now we do a little grungy work by mmaping the ELF image into
1099 * the correct location in memory. At this point, we assume that
1100 * the image should be loaded at fixed address, not at a variable
1104 for(i = 0, elf_ppnt = elf_phdata; i < elf_ex.e_phnum; i++, elf_ppnt++) {
1107 unsigned long error;
1109 if (elf_ppnt->p_type != PT_LOAD)
1112 if (elf_ppnt->p_flags & PF_R) elf_prot |= PROT_READ;
1113 if (elf_ppnt->p_flags & PF_W) elf_prot |= PROT_WRITE;
1114 if (elf_ppnt->p_flags & PF_X) elf_prot |= PROT_EXEC;
1115 elf_flags = MAP_PRIVATE | MAP_DENYWRITE;
1116 if (elf_ex.e_type == ET_EXEC || load_addr_set) {
1117 elf_flags |= MAP_FIXED;
1118 } else if (elf_ex.e_type == ET_DYN) {
1119 /* Try and get dynamic programs out of the way of the default mmap
1120 base, as well as whatever program they might try to exec. This
1121 is because the brk will follow the loader, and is not movable. */
1122 /* NOTE: for qemu, we do a big mmap to get enough space
1123 without harcoding any address */
1124 error = target_mmap(0, ET_DYN_MAP_SIZE,
1125 PROT_NONE, MAP_PRIVATE | MAP_ANON,
1131 load_bias = TARGET_ELF_PAGESTART(error - elf_ppnt->p_vaddr);
1134 error = target_mmap(TARGET_ELF_PAGESTART(load_bias + elf_ppnt->p_vaddr),
1135 (elf_ppnt->p_filesz +
1136 TARGET_ELF_PAGEOFFSET(elf_ppnt->p_vaddr)),
1138 (MAP_FIXED | MAP_PRIVATE | MAP_DENYWRITE),
1140 (elf_ppnt->p_offset -
1141 TARGET_ELF_PAGEOFFSET(elf_ppnt->p_vaddr)));
1147 #ifdef LOW_ELF_STACK
1148 if (TARGET_ELF_PAGESTART(elf_ppnt->p_vaddr) < elf_stack)
1149 elf_stack = TARGET_ELF_PAGESTART(elf_ppnt->p_vaddr);
1152 if (!load_addr_set) {
1154 load_addr = elf_ppnt->p_vaddr - elf_ppnt->p_offset;
1155 if (elf_ex.e_type == ET_DYN) {
1156 load_bias += error -
1157 TARGET_ELF_PAGESTART(load_bias + elf_ppnt->p_vaddr);
1158 load_addr += load_bias;
1161 k = elf_ppnt->p_vaddr;
1164 k = elf_ppnt->p_vaddr + elf_ppnt->p_filesz;
1167 if ((elf_ppnt->p_flags & PF_X) && end_code < k)
1171 k = elf_ppnt->p_vaddr + elf_ppnt->p_memsz;
1172 if (k > elf_brk) elf_brk = k;
1175 elf_entry += load_bias;
1176 elf_bss += load_bias;
1177 elf_brk += load_bias;
1178 start_code += load_bias;
1179 end_code += load_bias;
1180 // start_data += load_bias;
1181 end_data += load_bias;
1183 if (elf_interpreter) {
1184 if (interpreter_type & 1) {
1185 elf_entry = load_aout_interp(&interp_ex, interpreter_fd);
1187 else if (interpreter_type & 2) {
1188 elf_entry = load_elf_interp(&interp_elf_ex, interpreter_fd,
1192 close(interpreter_fd);
1193 free(elf_interpreter);
1195 if (elf_entry == ~0UL) {
1196 printf("Unable to load interpreter\n");
1206 load_symbols(&elf_ex, bprm->fd);
1208 if (interpreter_type != INTERPRETER_AOUT) close(bprm->fd);
1209 info->personality = (ibcs2_interpreter ? PER_SVR4 : PER_LINUX);
1211 #ifdef LOW_ELF_STACK
1212 info->start_stack = bprm->p = elf_stack - 4;
1214 bprm->p = create_elf_tables(bprm->p,
1218 load_addr, load_bias,
1220 (interpreter_type == INTERPRETER_AOUT ? 0 : 1),
1222 info->start_brk = info->brk = elf_brk;
1223 info->end_code = end_code;
1224 info->start_code = start_code;
1225 info->start_data = end_code;
1226 info->end_data = end_data;
1227 info->start_stack = bprm->p;
1229 /* Calling set_brk effectively mmaps the pages that we need for the bss and break
1231 set_brk(elf_bss, elf_brk);
1233 padzero(elf_bss, elf_brk);
1236 printf("(start_brk) %x\n" , info->start_brk);
1237 printf("(end_code) %x\n" , info->end_code);
1238 printf("(start_code) %x\n" , info->start_code);
1239 printf("(end_data) %x\n" , info->end_data);
1240 printf("(start_stack) %x\n" , info->start_stack);
1241 printf("(brk) %x\n" , info->brk);
1244 if ( info->personality == PER_SVR4 )
1246 /* Why this, you ask??? Well SVr4 maps page 0 as read-only,
1247 and some applications "depend" upon this behavior.
1248 Since we do not have the power to recompile these, we
1249 emulate the SVr4 behavior. Sigh. */
1250 mapped_addr = target_mmap(0, qemu_host_page_size, PROT_READ | PROT_EXEC,
1251 MAP_FIXED | MAP_PRIVATE, -1, 0);
1254 info->entry = elf_entry;
1259 static int load_aout_interp(void * exptr, int interp_fd)
1261 printf("a.out interpreter not yet supported\n");
1265 void do_init_thread(struct target_pt_regs *regs, struct image_info *infop)
1267 init_thread(regs, infop);
projects / qemu / blob