1 /* This is the Linux kernel elf-loading code, ported into user space */
16 /* this flag is uneffective under linux too, should be deleted */
18 #define MAP_DENYWRITE 0
21 /* should probably go in elf.h */
28 #define ELF_START_MMAP 0x80000000
31 * This is used to ensure we don't load something for the wrong architecture.
33 #define elf_check_arch(x) ( ((x) == EM_386) || ((x) == EM_486) )
36 * These are used to set parameters in the core dumps.
38 #define ELF_CLASS ELFCLASS32
39 #define ELF_DATA ELFDATA2LSB
40 #define ELF_ARCH EM_386
42 /* SVR4/i386 ABI (pages 3-31, 3-32) says that when the program
43 starts %edx contains a pointer to a function which might be
44 registered using `atexit'. This provides a mean for the
45 dynamic linker to call DT_FINI functions for shared libraries
46 that have been loaded before the code runs.
48 A value of 0 tells we have no such handler. */
49 #define ELF_PLAT_INIT(_r) _r->edx = 0
51 static inline void init_thread(struct target_pt_regs *regs, struct image_info *infop)
53 regs->esp = infop->start_stack;
54 regs->eip = infop->entry;
57 #define USE_ELF_CORE_DUMP
58 #define ELF_EXEC_PAGESIZE 4096
64 #define ELF_START_MMAP 0x80000000
66 #define elf_check_arch(x) ( (x) == EM_ARM )
68 #define ELF_CLASS ELFCLASS32
69 #ifdef TARGET_WORDS_BIGENDIAN
70 #define ELF_DATA ELFDATA2MSB
72 #define ELF_DATA ELFDATA2LSB
74 #define ELF_ARCH EM_ARM
76 #define ELF_PLAT_INIT(_r) _r->ARM_r0 = 0
78 static inline void init_thread(struct target_pt_regs *regs, struct image_info *infop)
80 target_long *stack = (void *)infop->start_stack;
81 memset(regs, 0, sizeof(*regs));
82 regs->ARM_cpsr = 0x10;
83 regs->ARM_pc = infop->entry;
84 regs->ARM_sp = infop->start_stack;
85 regs->ARM_r2 = tswapl(stack[2]); /* envp */
86 regs->ARM_r1 = tswapl(stack[1]); /* argv */
87 /* XXX: it seems that r0 is zeroed after ! */
88 // regs->ARM_r0 = tswapl(stack[0]); /* argc */
91 #define USE_ELF_CORE_DUMP
92 #define ELF_EXEC_PAGESIZE 4096
99 #define ELF_START_MMAP 0x80000000
101 #define elf_check_arch(x) ( (x) == EM_SPARC )
103 #define ELF_CLASS ELFCLASS64
104 #define ELF_DATA ELFDATA2MSB
105 #define ELF_ARCH EM_SPARC
108 #define ELF_PLAT_INIT(_r)
110 static inline void init_thread(struct target_pt_regs *regs, struct image_info *infop)
113 regs->pc = infop->entry;
114 regs->npc = regs->pc + 4;
116 regs->u_regs[14] = infop->start_stack - 16 * 4;
120 #define ELF_START_MMAP 0x80000000
122 #define elf_check_arch(x) ( (x) == EM_SPARC )
124 #define ELF_CLASS ELFCLASS32
125 #define ELF_DATA ELFDATA2MSB
126 #define ELF_ARCH EM_SPARC
129 #define ELF_PLAT_INIT(_r)
131 static inline void init_thread(struct target_pt_regs *regs, struct image_info *infop)
134 regs->pc = infop->entry;
135 regs->npc = regs->pc + 4;
137 regs->u_regs[14] = infop->start_stack - 16 * 4;
145 #define ELF_START_MMAP 0x80000000
147 #define elf_check_arch(x) ( (x) == EM_PPC )
149 #define ELF_CLASS ELFCLASS32
150 #ifdef TARGET_WORDS_BIGENDIAN
151 #define ELF_DATA ELFDATA2MSB
153 #define ELF_DATA ELFDATA2LSB
155 #define ELF_ARCH EM_PPC
157 /* Note that isn't exactly what regular kernel does
158 * but this is what the ABI wants and is needed to allow
159 * execution of PPC BSD programs.
161 #define ELF_PLAT_INIT(_r) \
163 target_ulong *pos = (target_ulong *)bprm->p, tmp = 1; \
164 _r->gpr[3] = bprm->argc; \
165 _r->gpr[4] = (unsigned long)++pos; \
166 for (; tmp != 0; pos++) \
168 _r->gpr[5] = (unsigned long)pos; \
172 * We need to put in some extra aux table entries to tell glibc what
173 * the cache block size is, so it can use the dcbz instruction safely.
175 #define AT_DCACHEBSIZE 19
176 #define AT_ICACHEBSIZE 20
177 #define AT_UCACHEBSIZE 21
178 /* A special ignored type value for PPC, for glibc compatibility. */
179 #define AT_IGNOREPPC 22
181 * The requirements here are:
182 * - keep the final alignment of sp (sp & 0xf)
183 * - make sure the 32-bit value at the first 16 byte aligned position of
184 * AUXV is greater than 16 for glibc compatibility.
185 * AT_IGNOREPPC is used for that.
186 * - for compatibility with glibc ARCH_DLINFO must always be defined on PPC,
187 * even if DLINFO_ARCH_ITEMS goes to zero or is undefined.
189 #define DLINFO_ARCH_ITEMS 3
190 #define ARCH_DLINFO \
192 sp -= DLINFO_ARCH_ITEMS * 2; \
193 NEW_AUX_ENT(0, AT_DCACHEBSIZE, 0x20); \
194 NEW_AUX_ENT(1, AT_ICACHEBSIZE, 0x20); \
195 NEW_AUX_ENT(2, AT_UCACHEBSIZE, 0); \
197 * Now handle glibc compatibility. \
200 NEW_AUX_ENT(0, AT_IGNOREPPC, AT_IGNOREPPC); \
201 NEW_AUX_ENT(1, AT_IGNOREPPC, AT_IGNOREPPC); \
204 static inline void init_thread(struct target_pt_regs *_regs, struct image_info *infop)
206 _regs->msr = 1 << MSR_PR; /* Set user mode */
207 _regs->gpr[1] = infop->start_stack;
208 _regs->nip = infop->entry;
211 #define USE_ELF_CORE_DUMP
212 #define ELF_EXEC_PAGESIZE 4096
219 * MAX_ARG_PAGES defines the number of pages allocated for arguments
220 * and envelope for the new program. 32 should suffice, this gives
221 * a maximum env+arg of 128kB w/4KB pages!
223 #define MAX_ARG_PAGES 32
226 * This structure is used to hold the arguments that are
227 * used when loading binaries.
229 struct linux_binprm {
231 unsigned long page[MAX_ARG_PAGES];
237 char * filename; /* Name of binary */
238 unsigned long loader, exec;
239 int dont_iput; /* binfmt handler has put inode */
244 unsigned int a_info; /* Use macros N_MAGIC, etc for access */
245 unsigned int a_text; /* length of text, in bytes */
246 unsigned int a_data; /* length of data, in bytes */
247 unsigned int a_bss; /* length of uninitialized data area, in bytes */
248 unsigned int a_syms; /* length of symbol table data in file, in bytes */
249 unsigned int a_entry; /* start address */
250 unsigned int a_trsize; /* length of relocation info for text, in bytes */
251 unsigned int a_drsize; /* length of relocation info for data, in bytes */
255 #define N_MAGIC(exec) ((exec).a_info & 0xffff)
261 /* max code+data+bss space allocated to elf interpreter */
262 #define INTERP_MAP_SIZE (32 * 1024 * 1024)
264 /* max code+data+bss+brk space allocated to ET_DYN executables */
265 #define ET_DYN_MAP_SIZE (128 * 1024 * 1024)
267 /* from personality.h */
269 /* Flags for bug emulation. These occupy the top three bytes. */
270 #define STICKY_TIMEOUTS 0x4000000
271 #define WHOLE_SECONDS 0x2000000
273 /* Personality types. These go in the low byte. Avoid using the top bit,
274 * it will conflict with error returns.
276 #define PER_MASK (0x00ff)
277 #define PER_LINUX (0x0000)
278 #define PER_SVR4 (0x0001 | STICKY_TIMEOUTS)
279 #define PER_SVR3 (0x0002 | STICKY_TIMEOUTS)
280 #define PER_SCOSVR3 (0x0003 | STICKY_TIMEOUTS | WHOLE_SECONDS)
281 #define PER_WYSEV386 (0x0004 | STICKY_TIMEOUTS)
282 #define PER_ISCR4 (0x0005 | STICKY_TIMEOUTS)
283 #define PER_BSD (0x0006)
284 #define PER_XENIX (0x0007 | STICKY_TIMEOUTS)
286 /* Necessary parameters */
289 #define TARGET_ELF_EXEC_PAGESIZE TARGET_PAGE_SIZE
290 #define TARGET_ELF_PAGESTART(_v) ((_v) & ~(unsigned long)(TARGET_ELF_EXEC_PAGESIZE-1))
291 #define TARGET_ELF_PAGEOFFSET(_v) ((_v) & (TARGET_ELF_EXEC_PAGESIZE-1))
293 #define INTERPRETER_NONE 0
294 #define INTERPRETER_AOUT 1
295 #define INTERPRETER_ELF 2
297 #define DLINFO_ITEMS 11
299 static inline void memcpy_fromfs(void * to, const void * from, unsigned long n)
304 extern unsigned long x86_stack_size;
306 static int load_aout_interp(void * exptr, int interp_fd);
309 static void bswap_ehdr(struct elfhdr *ehdr)
311 bswap16s(&ehdr->e_type); /* Object file type */
312 bswap16s(&ehdr->e_machine); /* Architecture */
313 bswap32s(&ehdr->e_version); /* Object file version */
314 bswaptls(&ehdr->e_entry); /* Entry point virtual address */
315 bswaptls(&ehdr->e_phoff); /* Program header table file offset */
316 bswaptls(&ehdr->e_shoff); /* Section header table file offset */
317 bswap32s(&ehdr->e_flags); /* Processor-specific flags */
318 bswap16s(&ehdr->e_ehsize); /* ELF header size in bytes */
319 bswap16s(&ehdr->e_phentsize); /* Program header table entry size */
320 bswap16s(&ehdr->e_phnum); /* Program header table entry count */
321 bswap16s(&ehdr->e_shentsize); /* Section header table entry size */
322 bswap16s(&ehdr->e_shnum); /* Section header table entry count */
323 bswap16s(&ehdr->e_shstrndx); /* Section header string table index */
326 static void bswap_phdr(struct elf_phdr *phdr)
328 bswap32s(&phdr->p_type); /* Segment type */
329 bswaptls(&phdr->p_offset); /* Segment file offset */
330 bswaptls(&phdr->p_vaddr); /* Segment virtual address */
331 bswaptls(&phdr->p_paddr); /* Segment physical address */
332 bswaptls(&phdr->p_filesz); /* Segment size in file */
333 bswaptls(&phdr->p_memsz); /* Segment size in memory */
334 bswap32s(&phdr->p_flags); /* Segment flags */
335 bswaptls(&phdr->p_align); /* Segment alignment */
338 static void bswap_shdr(struct elf_shdr *shdr)
340 bswap32s(&shdr->sh_name);
341 bswap32s(&shdr->sh_type);
342 bswaptls(&shdr->sh_flags);
343 bswaptls(&shdr->sh_addr);
344 bswaptls(&shdr->sh_offset);
345 bswaptls(&shdr->sh_size);
346 bswap32s(&shdr->sh_link);
347 bswap32s(&shdr->sh_info);
348 bswaptls(&shdr->sh_addralign);
349 bswaptls(&shdr->sh_entsize);
352 static void bswap_sym(Elf32_Sym *sym)
354 bswap32s(&sym->st_name);
355 bswap32s(&sym->st_value);
356 bswap32s(&sym->st_size);
357 bswap16s(&sym->st_shndx);
361 static void * get_free_page(void)
365 /* User-space version of kernel get_free_page. Returns a page-aligned
366 * page-sized chunk of memory.
368 retval = (void *)target_mmap(0, qemu_host_page_size, PROT_READ|PROT_WRITE,
369 MAP_PRIVATE|MAP_ANONYMOUS, -1, 0);
371 if((long)retval == -1) {
372 perror("get_free_page");
380 static void free_page(void * pageaddr)
382 target_munmap((unsigned long)pageaddr, qemu_host_page_size);
386 * 'copy_string()' copies argument/envelope strings from user
387 * memory to free pages in kernel mem. These are in a format ready
388 * to be put directly into the top of new user memory.
391 static unsigned long copy_strings(int argc,char ** argv,unsigned long *page,
394 char *tmp, *tmp1, *pag = NULL;
398 return 0; /* bullet-proofing */
403 fprintf(stderr, "VFS: argc is wrong");
409 if (p < len) { /* this shouldn't happen - 128kB */
415 offset = p % TARGET_PAGE_SIZE;
416 pag = (char *) page[p/TARGET_PAGE_SIZE];
418 pag = (char *)get_free_page();
419 page[p/TARGET_PAGE_SIZE] = (unsigned long)pag;
424 if (len == 0 || offset == 0) {
425 *(pag + offset) = *tmp;
428 int bytes_to_copy = (len > offset) ? offset : len;
429 tmp -= bytes_to_copy;
431 offset -= bytes_to_copy;
432 len -= bytes_to_copy;
433 memcpy_fromfs(pag + offset, tmp, bytes_to_copy + 1);
440 static int in_group_p(gid_t g)
442 /* return TRUE if we're in the specified group, FALSE otherwise */
445 gid_t grouplist[NGROUPS];
447 ngroup = getgroups(NGROUPS, grouplist);
448 for(i = 0; i < ngroup; i++) {
449 if(grouplist[i] == g) {
456 static int count(char ** vec)
460 for(i = 0; *vec; i++) {
467 static int prepare_binprm(struct linux_binprm *bprm)
471 int retval, id_change;
473 if(fstat(bprm->fd, &st) < 0) {
478 if(!S_ISREG(mode)) { /* Must be regular file */
481 if(!(mode & 0111)) { /* Must have at least one execute bit set */
485 bprm->e_uid = geteuid();
486 bprm->e_gid = getegid();
491 bprm->e_uid = st.st_uid;
492 if(bprm->e_uid != geteuid()) {
499 * If setgid is set but no group execute bit then this
500 * is a candidate for mandatory locking, not a setgid
503 if ((mode & (S_ISGID | S_IXGRP)) == (S_ISGID | S_IXGRP)) {
504 bprm->e_gid = st.st_gid;
505 if (!in_group_p(bprm->e_gid)) {
510 memset(bprm->buf, 0, sizeof(bprm->buf));
511 retval = lseek(bprm->fd, 0L, SEEK_SET);
513 retval = read(bprm->fd, bprm->buf, 128);
516 perror("prepare_binprm");
518 /* return(-errno); */
525 unsigned long setup_arg_pages(unsigned long p, struct linux_binprm * bprm,
526 struct image_info * info)
528 unsigned long stack_base, size, error;
531 /* Create enough stack to hold everything. If we don't use
532 * it for args, we'll use it for something else...
534 size = x86_stack_size;
535 if (size < MAX_ARG_PAGES*TARGET_PAGE_SIZE)
536 size = MAX_ARG_PAGES*TARGET_PAGE_SIZE;
537 error = target_mmap(0,
538 size + qemu_host_page_size,
539 PROT_READ | PROT_WRITE,
540 MAP_PRIVATE | MAP_ANONYMOUS,
546 /* we reserve one extra page at the top of the stack as guard */
547 target_mprotect(error + size, qemu_host_page_size, PROT_NONE);
549 stack_base = error + size - MAX_ARG_PAGES*TARGET_PAGE_SIZE;
553 bprm->loader += stack_base;
555 bprm->exec += stack_base;
557 for (i = 0 ; i < MAX_ARG_PAGES ; i++) {
561 memcpy((void *)stack_base, (void *)bprm->page[i], TARGET_PAGE_SIZE);
562 free_page((void *)bprm->page[i]);
564 stack_base += TARGET_PAGE_SIZE;
569 static void set_brk(unsigned long start, unsigned long end)
571 /* page-align the start and end addresses... */
572 start = HOST_PAGE_ALIGN(start);
573 end = HOST_PAGE_ALIGN(end);
576 if(target_mmap(start, end - start,
577 PROT_READ | PROT_WRITE | PROT_EXEC,
578 MAP_FIXED | MAP_PRIVATE | MAP_ANONYMOUS, -1, 0) == -1) {
579 perror("cannot mmap brk");
585 /* We need to explicitly zero any fractional pages after the data
586 section (i.e. bss). This would contain the junk from the file that
587 should not be in memory. */
588 static void padzero(unsigned long elf_bss)
593 /* XXX: this is really a hack : if the real host page size is
594 smaller than the target page size, some pages after the end
595 of the file may not be mapped. A better fix would be to
596 patch target_mmap(), but it is more complicated as the file
597 size must be known */
598 if (qemu_real_host_page_size < qemu_host_page_size) {
599 unsigned long end_addr, end_addr1;
600 end_addr1 = (elf_bss + qemu_real_host_page_size - 1) &
601 ~(qemu_real_host_page_size - 1);
602 end_addr = HOST_PAGE_ALIGN(elf_bss);
603 if (end_addr1 < end_addr) {
604 mmap((void *)end_addr1, end_addr - end_addr1,
605 PROT_READ|PROT_WRITE|PROT_EXEC,
606 MAP_FIXED|MAP_PRIVATE|MAP_ANONYMOUS, -1, 0);
610 nbyte = elf_bss & (qemu_host_page_size-1);
612 nbyte = qemu_host_page_size - nbyte;
613 fpnt = (char *) elf_bss;
620 static unsigned int * create_elf_tables(char *p, int argc, int envc,
621 struct elfhdr * exec,
622 unsigned long load_addr,
623 unsigned long load_bias,
624 unsigned long interp_load_addr, int ibcs,
625 struct image_info *info)
627 target_ulong *argv, *envp;
628 target_ulong *sp, *csp;
632 * Force 16 byte _final_ alignment here for generality.
634 sp = (unsigned int *) (~15UL & (unsigned long) p);
636 csp -= (DLINFO_ITEMS + 1) * 2;
637 #ifdef DLINFO_ARCH_ITEMS
638 csp -= DLINFO_ARCH_ITEMS*2;
642 csp -= (!ibcs ? 3 : 1); /* argc itself */
643 if ((unsigned long)csp & 15UL)
644 sp -= ((unsigned long)csp & 15UL) / sizeof(*sp);
646 #define NEW_AUX_ENT(nr, id, val) \
647 put_user (id, sp + (nr * 2)); \
648 put_user (val, sp + (nr * 2 + 1))
650 NEW_AUX_ENT (0, AT_NULL, 0);
652 sp -= DLINFO_ITEMS*2;
653 NEW_AUX_ENT( 0, AT_PHDR, (target_ulong)(load_addr + exec->e_phoff));
654 NEW_AUX_ENT( 1, AT_PHENT, (target_ulong)(sizeof (struct elf_phdr)));
655 NEW_AUX_ENT( 2, AT_PHNUM, (target_ulong)(exec->e_phnum));
656 NEW_AUX_ENT( 3, AT_PAGESZ, (target_ulong)(TARGET_PAGE_SIZE));
657 NEW_AUX_ENT( 4, AT_BASE, (target_ulong)(interp_load_addr));
658 NEW_AUX_ENT( 5, AT_FLAGS, (target_ulong)0);
659 NEW_AUX_ENT( 6, AT_ENTRY, load_bias + exec->e_entry);
660 NEW_AUX_ENT( 7, AT_UID, (target_ulong) getuid());
661 NEW_AUX_ENT( 8, AT_EUID, (target_ulong) geteuid());
662 NEW_AUX_ENT( 9, AT_GID, (target_ulong) getgid());
663 NEW_AUX_ENT(11, AT_EGID, (target_ulong) getegid());
666 * ARCH_DLINFO must come last so platform specific code can enforce
667 * special alignment requirements on the AUXV if necessary (eg. PPC).
678 put_user((target_ulong)envp,--sp);
679 put_user((target_ulong)argv,--sp);
682 info->arg_start = (unsigned int)((unsigned long)p & 0xffffffff);
684 put_user((target_ulong)p,argv++);
691 info->arg_end = info->env_start = (unsigned int)((unsigned long)p & 0xffffffff);
693 put_user((target_ulong)p,envp++);
700 info->env_end = (unsigned int)((unsigned long)p & 0xffffffff);
706 static unsigned long load_elf_interp(struct elfhdr * interp_elf_ex,
708 unsigned long *interp_load_addr)
710 struct elf_phdr *elf_phdata = NULL;
711 struct elf_phdr *eppnt;
712 unsigned long load_addr = 0;
713 int load_addr_set = 0;
715 unsigned long last_bss, elf_bss;
724 bswap_ehdr(interp_elf_ex);
726 /* First of all, some simple consistency checks */
727 if ((interp_elf_ex->e_type != ET_EXEC &&
728 interp_elf_ex->e_type != ET_DYN) ||
729 !elf_check_arch(interp_elf_ex->e_machine)) {
734 /* Now read in all of the header information */
736 if (sizeof(struct elf_phdr) * interp_elf_ex->e_phnum > TARGET_PAGE_SIZE)
739 elf_phdata = (struct elf_phdr *)
740 malloc(sizeof(struct elf_phdr) * interp_elf_ex->e_phnum);
746 * If the size of this structure has changed, then punt, since
747 * we will be doing the wrong thing.
749 if (interp_elf_ex->e_phentsize != sizeof(struct elf_phdr)) {
754 retval = lseek(interpreter_fd, interp_elf_ex->e_phoff, SEEK_SET);
756 retval = read(interpreter_fd,
758 sizeof(struct elf_phdr) * interp_elf_ex->e_phnum);
761 perror("load_elf_interp");
768 for (i=0; i<interp_elf_ex->e_phnum; i++, eppnt++) {
773 if (interp_elf_ex->e_type == ET_DYN) {
774 /* in order to avoid harcoding the interpreter load
775 address in qemu, we allocate a big enough memory zone */
776 error = target_mmap(0, INTERP_MAP_SIZE,
777 PROT_NONE, MAP_PRIVATE | MAP_ANON,
788 for(i=0; i<interp_elf_ex->e_phnum; i++, eppnt++)
789 if (eppnt->p_type == PT_LOAD) {
790 int elf_type = MAP_PRIVATE | MAP_DENYWRITE;
792 unsigned long vaddr = 0;
795 if (eppnt->p_flags & PF_R) elf_prot = PROT_READ;
796 if (eppnt->p_flags & PF_W) elf_prot |= PROT_WRITE;
797 if (eppnt->p_flags & PF_X) elf_prot |= PROT_EXEC;
798 if (interp_elf_ex->e_type == ET_EXEC || load_addr_set) {
799 elf_type |= MAP_FIXED;
800 vaddr = eppnt->p_vaddr;
802 error = target_mmap(load_addr+TARGET_ELF_PAGESTART(vaddr),
803 eppnt->p_filesz + TARGET_ELF_PAGEOFFSET(eppnt->p_vaddr),
807 eppnt->p_offset - TARGET_ELF_PAGEOFFSET(eppnt->p_vaddr));
809 if (error > -1024UL) {
811 close(interpreter_fd);
816 if (!load_addr_set && interp_elf_ex->e_type == ET_DYN) {
822 * Find the end of the file mapping for this phdr, and keep
823 * track of the largest address we see for this.
825 k = load_addr + eppnt->p_vaddr + eppnt->p_filesz;
826 if (k > elf_bss) elf_bss = k;
829 * Do the same thing for the memory mapping - between
830 * elf_bss and last_bss is the bss section.
832 k = load_addr + eppnt->p_memsz + eppnt->p_vaddr;
833 if (k > last_bss) last_bss = k;
836 /* Now use mmap to map the library into memory. */
838 close(interpreter_fd);
841 * Now fill out the bss section. First pad the last page up
842 * to the page boundary, and then perform a mmap to make sure
843 * that there are zeromapped pages up to and including the last
847 elf_bss = TARGET_ELF_PAGESTART(elf_bss + qemu_host_page_size - 1); /* What we have mapped so far */
849 /* Map the last of the bss segment */
850 if (last_bss > elf_bss) {
851 target_mmap(elf_bss, last_bss-elf_bss,
852 PROT_READ|PROT_WRITE|PROT_EXEC,
853 MAP_FIXED|MAP_PRIVATE|MAP_ANONYMOUS, -1, 0);
857 *interp_load_addr = load_addr;
858 return ((unsigned long) interp_elf_ex->e_entry) + load_addr;
861 /* Best attempt to load symbols from this ELF object. */
862 static void load_symbols(struct elfhdr *hdr, int fd)
865 struct elf_shdr sechdr, symtab, strtab;
869 lseek(fd, hdr->e_shoff, SEEK_SET);
870 for (i = 0; i < hdr->e_shnum; i++) {
871 if (read(fd, &sechdr, sizeof(sechdr)) != sizeof(sechdr))
876 if (sechdr.sh_type == SHT_SYMTAB) {
878 lseek(fd, hdr->e_shoff
879 + sizeof(sechdr) * sechdr.sh_link, SEEK_SET);
880 if (read(fd, &strtab, sizeof(strtab))
889 return; /* Shouldn't happen... */
892 /* Now know where the strtab and symtab are. Snarf them. */
893 s = malloc(sizeof(*s));
894 s->disas_symtab = malloc(symtab.sh_size);
895 s->disas_strtab = strings = malloc(strtab.sh_size);
896 if (!s->disas_symtab || !s->disas_strtab)
899 lseek(fd, symtab.sh_offset, SEEK_SET);
900 if (read(fd, s->disas_symtab, symtab.sh_size) != symtab.sh_size)
904 for (i = 0; i < symtab.sh_size / sizeof(struct elf_sym); i++)
905 bswap_sym(s->disas_symtab + sizeof(struct elf_sym)*i);
908 lseek(fd, strtab.sh_offset, SEEK_SET);
909 if (read(fd, strings, strtab.sh_size) != strtab.sh_size)
911 s->disas_num_syms = symtab.sh_size / sizeof(struct elf_sym);
916 static int load_elf_binary(struct linux_binprm * bprm, struct target_pt_regs * regs,
917 struct image_info * info)
919 struct elfhdr elf_ex;
920 struct elfhdr interp_elf_ex;
921 struct exec interp_ex;
922 int interpreter_fd = -1; /* avoid warning */
923 unsigned long load_addr, load_bias;
924 int load_addr_set = 0;
925 unsigned int interpreter_type = INTERPRETER_NONE;
926 unsigned char ibcs2_interpreter;
928 unsigned long mapped_addr;
929 struct elf_phdr * elf_ppnt;
930 struct elf_phdr *elf_phdata;
931 unsigned long elf_bss, k, elf_brk;
933 char * elf_interpreter;
934 unsigned long elf_entry, interp_load_addr = 0;
936 unsigned long start_code, end_code, end_data;
937 unsigned long elf_stack;
938 char passed_fileno[6];
940 ibcs2_interpreter = 0;
944 elf_ex = *((struct elfhdr *) bprm->buf); /* exec-header */
949 if (elf_ex.e_ident[0] != 0x7f ||
950 strncmp(&elf_ex.e_ident[1], "ELF",3) != 0) {
954 /* First of all, some simple consistency checks */
955 if ((elf_ex.e_type != ET_EXEC && elf_ex.e_type != ET_DYN) ||
956 (! elf_check_arch(elf_ex.e_machine))) {
960 /* Now read in all of the header information */
961 elf_phdata = (struct elf_phdr *)malloc(elf_ex.e_phentsize*elf_ex.e_phnum);
962 if (elf_phdata == NULL) {
966 retval = lseek(bprm->fd, elf_ex.e_phoff, SEEK_SET);
968 retval = read(bprm->fd, (char *) elf_phdata,
969 elf_ex.e_phentsize * elf_ex.e_phnum);
973 perror("load_elf_binary");
980 elf_ppnt = elf_phdata;
981 for (i=0; i<elf_ex.e_phnum; i++, elf_ppnt++) {
982 bswap_phdr(elf_ppnt);
985 elf_ppnt = elf_phdata;
992 elf_interpreter = NULL;
997 for(i=0;i < elf_ex.e_phnum; i++) {
998 if (elf_ppnt->p_type == PT_INTERP) {
999 if ( elf_interpreter != NULL )
1002 free(elf_interpreter);
1007 /* This is the program interpreter used for
1008 * shared libraries - for now assume that this
1009 * is an a.out format binary
1012 elf_interpreter = (char *)malloc(elf_ppnt->p_filesz);
1014 if (elf_interpreter == NULL) {
1020 retval = lseek(bprm->fd, elf_ppnt->p_offset, SEEK_SET);
1022 retval = read(bprm->fd, elf_interpreter, elf_ppnt->p_filesz);
1025 perror("load_elf_binary2");
1029 /* If the program interpreter is one of these two,
1030 then assume an iBCS2 image. Otherwise assume
1031 a native linux image. */
1033 /* JRP - Need to add X86 lib dir stuff here... */
1035 if (strcmp(elf_interpreter,"/usr/lib/libc.so.1") == 0 ||
1036 strcmp(elf_interpreter,"/usr/lib/ld.so.1") == 0) {
1037 ibcs2_interpreter = 1;
1041 printf("Using ELF interpreter %s\n", elf_interpreter);
1044 retval = open(path(elf_interpreter), O_RDONLY);
1046 interpreter_fd = retval;
1049 perror(elf_interpreter);
1051 /* retval = -errno; */
1056 retval = lseek(interpreter_fd, 0, SEEK_SET);
1058 retval = read(interpreter_fd,bprm->buf,128);
1062 interp_ex = *((struct exec *) bprm->buf); /* aout exec-header */
1063 interp_elf_ex=*((struct elfhdr *) bprm->buf); /* elf exec-header */
1066 perror("load_elf_binary3");
1069 free(elf_interpreter);
1077 /* Some simple consistency checks for the interpreter */
1078 if (elf_interpreter){
1079 interpreter_type = INTERPRETER_ELF | INTERPRETER_AOUT;
1081 /* Now figure out which format our binary is */
1082 if ((N_MAGIC(interp_ex) != OMAGIC) && (N_MAGIC(interp_ex) != ZMAGIC) &&
1083 (N_MAGIC(interp_ex) != QMAGIC)) {
1084 interpreter_type = INTERPRETER_ELF;
1087 if (interp_elf_ex.e_ident[0] != 0x7f ||
1088 strncmp(&interp_elf_ex.e_ident[1], "ELF",3) != 0) {
1089 interpreter_type &= ~INTERPRETER_ELF;
1092 if (!interpreter_type) {
1093 free(elf_interpreter);
1100 /* OK, we are done with that, now set up the arg stuff,
1101 and then start this sucker up */
1103 if (!bprm->sh_bang) {
1106 if (interpreter_type == INTERPRETER_AOUT) {
1107 snprintf(passed_fileno, sizeof(passed_fileno), "%d", bprm->fd);
1108 passed_p = passed_fileno;
1110 if (elf_interpreter) {
1111 bprm->p = copy_strings(1,&passed_p,bprm->page,bprm->p);
1116 if (elf_interpreter) {
1117 free(elf_interpreter);
1125 /* OK, This is the point of no return */
1128 info->start_mmap = (unsigned long)ELF_START_MMAP;
1130 elf_entry = (unsigned long) elf_ex.e_entry;
1132 /* Do this so that we can load the interpreter, if need be. We will
1133 change some of these later */
1135 bprm->p = setup_arg_pages(bprm->p, bprm, info);
1136 info->start_stack = bprm->p;
1138 /* Now we do a little grungy work by mmaping the ELF image into
1139 * the correct location in memory. At this point, we assume that
1140 * the image should be loaded at fixed address, not at a variable
1144 for(i = 0, elf_ppnt = elf_phdata; i < elf_ex.e_phnum; i++, elf_ppnt++) {
1147 unsigned long error;
1149 if (elf_ppnt->p_type != PT_LOAD)
1152 if (elf_ppnt->p_flags & PF_R) elf_prot |= PROT_READ;
1153 if (elf_ppnt->p_flags & PF_W) elf_prot |= PROT_WRITE;
1154 if (elf_ppnt->p_flags & PF_X) elf_prot |= PROT_EXEC;
1155 elf_flags = MAP_PRIVATE | MAP_DENYWRITE;
1156 if (elf_ex.e_type == ET_EXEC || load_addr_set) {
1157 elf_flags |= MAP_FIXED;
1158 } else if (elf_ex.e_type == ET_DYN) {
1159 /* Try and get dynamic programs out of the way of the default mmap
1160 base, as well as whatever program they might try to exec. This
1161 is because the brk will follow the loader, and is not movable. */
1162 /* NOTE: for qemu, we do a big mmap to get enough space
1163 without harcoding any address */
1164 error = target_mmap(0, ET_DYN_MAP_SIZE,
1165 PROT_NONE, MAP_PRIVATE | MAP_ANON,
1171 load_bias = TARGET_ELF_PAGESTART(error - elf_ppnt->p_vaddr);
1174 error = target_mmap(TARGET_ELF_PAGESTART(load_bias + elf_ppnt->p_vaddr),
1175 (elf_ppnt->p_filesz +
1176 TARGET_ELF_PAGEOFFSET(elf_ppnt->p_vaddr)),
1178 (MAP_FIXED | MAP_PRIVATE | MAP_DENYWRITE),
1180 (elf_ppnt->p_offset -
1181 TARGET_ELF_PAGEOFFSET(elf_ppnt->p_vaddr)));
1187 #ifdef LOW_ELF_STACK
1188 if (TARGET_ELF_PAGESTART(elf_ppnt->p_vaddr) < elf_stack)
1189 elf_stack = TARGET_ELF_PAGESTART(elf_ppnt->p_vaddr);
1192 if (!load_addr_set) {
1194 load_addr = elf_ppnt->p_vaddr - elf_ppnt->p_offset;
1195 if (elf_ex.e_type == ET_DYN) {
1196 load_bias += error -
1197 TARGET_ELF_PAGESTART(load_bias + elf_ppnt->p_vaddr);
1198 load_addr += load_bias;
1201 k = elf_ppnt->p_vaddr;
1204 k = elf_ppnt->p_vaddr + elf_ppnt->p_filesz;
1207 if ((elf_ppnt->p_flags & PF_X) && end_code < k)
1211 k = elf_ppnt->p_vaddr + elf_ppnt->p_memsz;
1212 if (k > elf_brk) elf_brk = k;
1215 elf_entry += load_bias;
1216 elf_bss += load_bias;
1217 elf_brk += load_bias;
1218 start_code += load_bias;
1219 end_code += load_bias;
1220 // start_data += load_bias;
1221 end_data += load_bias;
1223 if (elf_interpreter) {
1224 if (interpreter_type & 1) {
1225 elf_entry = load_aout_interp(&interp_ex, interpreter_fd);
1227 else if (interpreter_type & 2) {
1228 elf_entry = load_elf_interp(&interp_elf_ex, interpreter_fd,
1232 close(interpreter_fd);
1233 free(elf_interpreter);
1235 if (elf_entry == ~0UL) {
1236 printf("Unable to load interpreter\n");
1246 load_symbols(&elf_ex, bprm->fd);
1248 if (interpreter_type != INTERPRETER_AOUT) close(bprm->fd);
1249 info->personality = (ibcs2_interpreter ? PER_SVR4 : PER_LINUX);
1251 #ifdef LOW_ELF_STACK
1252 info->start_stack = bprm->p = elf_stack - 4;
1254 bprm->p = (unsigned long)
1255 create_elf_tables((char *)bprm->p,
1259 load_addr, load_bias,
1261 (interpreter_type == INTERPRETER_AOUT ? 0 : 1),
1263 if (interpreter_type == INTERPRETER_AOUT)
1264 info->arg_start += strlen(passed_fileno) + 1;
1265 info->start_brk = info->brk = elf_brk;
1266 info->end_code = end_code;
1267 info->start_code = start_code;
1268 info->end_data = end_data;
1269 info->start_stack = bprm->p;
1271 /* Calling set_brk effectively mmaps the pages that we need for the bss and break
1273 set_brk(elf_bss, elf_brk);
1278 printf("(start_brk) %x\n" , info->start_brk);
1279 printf("(end_code) %x\n" , info->end_code);
1280 printf("(start_code) %x\n" , info->start_code);
1281 printf("(end_data) %x\n" , info->end_data);
1282 printf("(start_stack) %x\n" , info->start_stack);
1283 printf("(brk) %x\n" , info->brk);
1286 if ( info->personality == PER_SVR4 )
1288 /* Why this, you ask??? Well SVr4 maps page 0 as read-only,
1289 and some applications "depend" upon this behavior.
1290 Since we do not have the power to recompile these, we
1291 emulate the SVr4 behavior. Sigh. */
1292 mapped_addr = target_mmap(0, qemu_host_page_size, PROT_READ | PROT_EXEC,
1293 MAP_FIXED | MAP_PRIVATE, -1, 0);
1296 #ifdef ELF_PLAT_INIT
1298 * The ABI may specify that certain registers be set up in special
1299 * ways (on i386 %edx is the address of a DT_FINI function, for
1300 * example. This macro performs whatever initialization to
1301 * the regs structure is required.
1303 ELF_PLAT_INIT(regs);
1307 info->entry = elf_entry;
1314 int elf_exec(const char * filename, char ** argv, char ** envp,
1315 struct target_pt_regs * regs, struct image_info *infop)
1317 struct linux_binprm bprm;
1321 bprm.p = TARGET_PAGE_SIZE*MAX_ARG_PAGES-sizeof(unsigned int);
1322 for (i=0 ; i<MAX_ARG_PAGES ; i++) /* clear page-table */
1324 retval = open(filename, O_RDONLY);
1328 bprm.filename = (char *)filename;
1333 bprm.argc = count(argv);
1334 bprm.envc = count(envp);
1336 retval = prepare_binprm(&bprm);
1339 bprm.p = copy_strings(1, &bprm.filename, bprm.page, bprm.p);
1341 bprm.p = copy_strings(bprm.envc,envp,bprm.page,bprm.p);
1342 bprm.p = copy_strings(bprm.argc,argv,bprm.page,bprm.p);
1349 retval = load_elf_binary(&bprm,regs,infop);
1352 /* success. Initialize important registers */
1353 init_thread(regs, infop);
1357 /* Something went wrong, return the inode and free the argument pages*/
1358 for (i=0 ; i<MAX_ARG_PAGES ; i++) {
1359 free_page((void *)bprm.page[i]);
1365 static int load_aout_interp(void * exptr, int interp_fd)
1367 printf("a.out interpreter not yet supported\n");
projects / qemu / blob