search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
dmake: do not set MAKEFLAGS=k
[unleashed/tickless.git] / usr / src / lib / libproc / common / Pcore.c
blob369575c23ee6d9f05123fb67f8d9c846cc28b924
1 /*
2 * CDDL HEADER START
3 *
4 * The contents of this file are subject to the terms of the
5 * Common Development and Distribution License (the "License").
6 * You may not use this file except in compliance with the License.
7 *
8 * You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
9 * or http://www.opensolaris.org/os/licensing.
10 * See the License for the specific language governing permissions
11 * and limitations under the License.
12 *
13 * When distributing Covered Code, include this CDDL HEADER in each
14 * file and include the License file at usr/src/OPENSOLARIS.LICENSE.
15 * If applicable, add the following below this CDDL HEADER, with the
16 * fields enclosed by brackets "[]" replaced with your own identifying
17 * information: Portions Copyright [yyyy] [name of copyright owner]
18 *
19 * CDDL HEADER END
20 */
21 /*
22 * Copyright 2009 Sun Microsystems, Inc. All rights reserved.
23 * Use is subject to license terms.
24 */
25 /*
26 * Copyright 2012 DEY Storage Systems, Inc. All rights reserved.
27 * Copyright (c) 2014, Joyent, Inc. All rights reserved.
28 * Copyright (c) 2013 by Delphix. All rights reserved.
29 * Copyright 2015 Gary Mills
30 */
31
32 #include <sys/types.h>
33 #include <sys/utsname.h>
34 #include <sys/sysmacros.h>
35 #include <sys/cfgparam.h>
36 #include <sys/proc.h>
37
38 #include <alloca.h>
39 #include <rtld_db.h>
40 #include <libgen.h>
41 #include <limits.h>
42 #include <string.h>
43 #include <stdlib.h>
44 #include <unistd.h>
45 #include <errno.h>
46 #include <gelf.h>
47 #include <stddef.h>
48 #include <signal.h>
49
50 #include "libproc.h"
51 #include "Pcontrol.h"
52 #include "P32ton.h"
53 #include "Putil.h"
54 #ifdef CONFIG_LINUX_CORE_SUPPORT
55 #include "Pcore_linux.h"
56 #endif
57
58 /*
59 * Pcore.c - Code to initialize a ps_prochandle from a core dump. We
60 * allocate an additional structure to hold information from the core
61 * file, and attach this to the standard ps_prochandle in place of the
62 * ability to examine /proc/<pid>/ files.
63 */
64
65 /*
66 * Basic i/o function for reading and writing from the process address space
67 * stored in the core file and associated shared libraries. We compute the
68 * appropriate fd and offsets, and let the provided prw function do the rest.
69 */
70 static ssize_t
71 core_rw(struct ps_prochandle *P, void *buf, size_t n, uintptr_t addr,
72 ssize_t (*prw)(int, void *, size_t, off64_t))
73 {
74 ssize_t resid = n;
75
76 while (resid != 0) {
77 map_info_t *mp = Paddr2mptr(P, addr);
78
79 uintptr_t mapoff;
80 ssize_t len;
81 off64_t off;
82 int fd;
83
84 if (mp == NULL)
85 break; /* No mapping for this address */
86
87 if (mp->map_pmap.pr_mflags & MA_RESERVED1) {
88 if (mp->map_file == NULL || mp->map_file->file_fd < 0)
89 break; /* No file or file not open */
90
91 fd = mp->map_file->file_fd;
92 } else
93 fd = P->asfd;
94
95 mapoff = addr - mp->map_pmap.pr_vaddr;
96 len = MIN(resid, mp->map_pmap.pr_size - mapoff);
97 off = mp->map_offset + mapoff;
98
99 if ((len = prw(fd, buf, len, off)) <= 0)
100 break;
101
102 resid -= len;
103 addr += len;
104 buf = (char *)buf + len;
105 }
106
107 /*
108 * Important: Be consistent with the behavior of i/o on the as file:
109 * writing to an invalid address yields EIO; reading from an invalid
110 * address falls through to returning success and zero bytes.
111 */
112 if (resid == n && n != 0 && prw != pread64) {
113 errno = EIO;
114 return (-1);
115 }
116
117 return (n - resid);
118 }
119
120 /*ARGSUSED*/
121 static ssize_t
122 Pread_core(struct ps_prochandle *P, void *buf, size_t n, uintptr_t addr,
123 void *data)
124 {
125 return (core_rw(P, buf, n, addr, pread64));
126 }
127
128 /*ARGSUSED*/
129 static ssize_t
130 Pwrite_core(struct ps_prochandle *P, const void *buf, size_t n, uintptr_t addr,
131 void *data)
132 {
133 return (core_rw(P, (void *)buf, n, addr,
134 (ssize_t (*)(int, void *, size_t, off64_t)) pwrite64));
135 }
136
137 /*ARGSUSED*/
138 static int
139 Pcred_core(struct ps_prochandle *P, prcred_t *pcrp, int ngroups, void *data)
140 {
141 core_info_t *core = data;
142
143 if (core->core_cred != NULL) {
144 /*
145 * Avoid returning more supplementary group data than the
146 * caller has allocated in their buffer. We expect them to
147 * check pr_ngroups afterward and potentially call us again.
148 */
149 ngroups = MIN(ngroups, core->core_cred->pr_ngroups);
150
151 (void) memcpy(pcrp, core->core_cred,
152 sizeof (prcred_t) + (ngroups - 1) * sizeof (gid_t));
153
154 return (0);
155 }
156
157 errno = ENODATA;
158 return (-1);
159 }
160
161 /*ARGSUSED*/
162 static int
163 Psecflags_core(struct ps_prochandle *P, prsecflags_t **psf, void *data)
164 {
165 core_info_t *core = data;
166
167 if (core->core_secflags == NULL) {
168 errno = ENODATA;
169 return (-1);
170 }
171
172 if ((*psf = calloc(1, sizeof (prsecflags_t))) == NULL)
173 return (-1);
174
175 (void) memcpy(*psf, core->core_secflags, sizeof (prsecflags_t));
176
177 return (0);
178 }
179
180 /*ARGSUSED*/
181 static int
182 Ppriv_core(struct ps_prochandle *P, prpriv_t **pprv, void *data)
183 {
184 core_info_t *core = data;
185
186 if (core->core_priv == NULL) {
187 errno = ENODATA;
188 return (-1);
189 }
190
191 *pprv = malloc(core->core_priv_size);
192 if (*pprv == NULL) {
193 return (-1);
194 }
195
196 (void) memcpy(*pprv, core->core_priv, core->core_priv_size);
197 return (0);
198 }
199
200 /*ARGSUSED*/
201 static const psinfo_t *
202 Ppsinfo_core(struct ps_prochandle *P, psinfo_t *psinfo, void *data)
203 {
204 return (&P->psinfo);
205 }
206
207 /*ARGSUSED*/
208 static void
209 Pfini_core(struct ps_prochandle *P, void *data)
210 {
211 core_info_t *core = data;
212
213 if (core != NULL) {
214 extern void __priv_free_info(void *);
215 lwp_info_t *nlwp, *lwp = list_next(&core->core_lwp_head);
216 int i;
217
218 for (i = 0; i < core->core_nlwp; i++, lwp = nlwp) {
219 nlwp = list_next(lwp);
220 free(lwp);
221 }
222
223 free(core->core_platform);
224 free(core->core_uts);
225 free(core->core_cred);
226 free(core->core_priv);
227 if (core->core_privinfo != NULL)
228 __priv_free_info(core->core_privinfo);
229 free(core->core_ppii);
230 free(core->core_zonename);
231 free(core->core_secflags);
232 #ifdef __x86
233 free(core->core_ldt);
234 #endif
235
236 free(core);
237 }
238 }
239
240 /*ARGSUSED*/
241 static char *
242 Pplatform_core(struct ps_prochandle *P, char *s, size_t n, void *data)
243 {
244 core_info_t *core = data;
245
246 if (core->core_platform == NULL) {
247 errno = ENODATA;
248 return (NULL);
249 }
250 (void) strncpy(s, core->core_platform, n - 1);
251 s[n - 1] = '\0';
252 return (s);
253 }
254
255 /*ARGSUSED*/
256 static int
257 Puname_core(struct ps_prochandle *P, struct utsname *u, void *data)
258 {
259 core_info_t *core = data;
260
261 if (core->core_uts == NULL) {
262 errno = ENODATA;
263 return (-1);
264 }
265 (void) memcpy(u, core->core_uts, sizeof (struct utsname));
266 return (0);
267 }
268
269 /*ARGSUSED*/
270 static char *
271 Pzonename_core(struct ps_prochandle *P, char *s, size_t n, void *data)
272 {
273 core_info_t *core = data;
274
275 if (core->core_zonename == NULL) {
276 errno = ENODATA;
277 return (NULL);
278 }
279 (void) strlcpy(s, core->core_zonename, n);
280 return (s);
281 }
282
283 #ifdef __x86
284 /*ARGSUSED*/
285 static int
286 Pldt_core(struct ps_prochandle *P, struct ssd *pldt, int nldt, void *data)
287 {
288 core_info_t *core = data;
289
290 if (pldt == NULL || nldt == 0)
291 return (core->core_nldt);
292
293 if (core->core_ldt != NULL) {
294 nldt = MIN(nldt, core->core_nldt);
295
296 (void) memcpy(pldt, core->core_ldt,
297 nldt * sizeof (struct ssd));
298
299 return (nldt);
300 }
301
302 errno = ENODATA;
303 return (-1);
304 }
305 #endif
306
307 static const ps_ops_t P_core_ops = {
308 .pop_pread = Pread_core,
309 .pop_pwrite = Pwrite_core,
310 .pop_cred = Pcred_core,
311 .pop_priv = Ppriv_core,
312 .pop_psinfo = Ppsinfo_core,
313 .pop_fini = Pfini_core,
314 .pop_platform = Pplatform_core,
315 .pop_uname = Puname_core,
316 .pop_zonename = Pzonename_core,
317 .pop_secflags = Psecflags_core,
318 #ifdef __x86
319 .pop_ldt = Pldt_core
320 #endif
321 };
322
323 /*
324 * Return the lwp_info_t for the given lwpid. If no such lwpid has been
325 * encountered yet, allocate a new structure and return a pointer to it.
326 * Create a list of lwp_info_t structures sorted in decreasing lwp_id order.
327 */
328 static lwp_info_t *
329 lwpid2info(struct ps_prochandle *P, lwpid_t id)
330 {
331 core_info_t *core = P->data;
332 lwp_info_t *lwp = list_next(&core->core_lwp_head);
333 lwp_info_t *next;
334 uint_t i;
335
336 for (i = 0; i < core->core_nlwp; i++, lwp = list_next(lwp)) {
337 if (lwp->lwp_id == id) {
338 core->core_lwp = lwp;
339 return (lwp);
340 }
341 if (lwp->lwp_id < id) {
342 break;
343 }
344 }
345
346 next = lwp;
347 if ((lwp = calloc(1, sizeof (lwp_info_t))) == NULL)
348 return (NULL);
349
350 list_link(lwp, next);
351 lwp->lwp_id = id;
352
353 core->core_lwp = lwp;
354 core->core_nlwp++;
355
356 return (lwp);
357 }
358
359 /*
360 * The core file itself contains a series of NOTE segments containing saved
361 * structures from /proc at the time the process died. For each note we
362 * comprehend, we define a function to read it in from the core file,
363 * convert it to our native data model if necessary, and store it inside
364 * the ps_prochandle. Each function is invoked by Pfgrab_core() with the
365 * seek pointer on P->asfd positioned appropriately. We populate a table
366 * of pointers to these note functions below.
367 */
368
369 static int
370 note_pstatus(struct ps_prochandle *P, size_t nbytes)
371 {
372 #ifdef _LP64
373 core_info_t *core = P->data;
374
375 if (core->core_dmodel == PR_MODEL_ILP32) {
376 pstatus32_t ps32;
377
378 if (nbytes < sizeof (pstatus32_t) ||
379 read(P->asfd, &ps32, sizeof (ps32)) != sizeof (ps32))
380 goto err;
381
382 pstatus_32_to_n(&ps32, &P->status);
383
384 } else
385 #endif
386 if (nbytes < sizeof (pstatus_t) ||
387 read(P->asfd, &P->status, sizeof (pstatus_t)) != sizeof (pstatus_t))
388 goto err;
389
390 P->orig_status = P->status;
391 P->pid = P->status.pr_pid;
392
393 return (0);
394
395 err:
396 dprintf("Pgrab_core: failed to read NT_PSTATUS\n");
397 return (-1);
398 }
399
400 static int
401 note_lwpstatus(struct ps_prochandle *P, size_t nbytes)
402 {
403 lwp_info_t *lwp;
404 lwpstatus_t lps;
405
406 #ifdef _LP64
407 core_info_t *core = P->data;
408
409 if (core->core_dmodel == PR_MODEL_ILP32) {
410 lwpstatus32_t l32;
411
412 if (nbytes < sizeof (lwpstatus32_t) ||
413 read(P->asfd, &l32, sizeof (l32)) != sizeof (l32))
414 goto err;
415
416 lwpstatus_32_to_n(&l32, &lps);
417 } else
418 #endif
419 if (nbytes < sizeof (lwpstatus_t) ||
420 read(P->asfd, &lps, sizeof (lps)) != sizeof (lps))
421 goto err;
422
423 if ((lwp = lwpid2info(P, lps.pr_lwpid)) == NULL) {
424 dprintf("Pgrab_core: failed to add NT_LWPSTATUS\n");
425 return (-1);
426 }
427
428 /*
429 * Erase a useless and confusing artifact of the kernel implementation:
430 * the lwps which did *not* create the core will show SIGKILL. We can
431 * be assured this is bogus because SIGKILL can't produce core files.
432 */
433 if (lps.pr_cursig == SIGKILL)
434 lps.pr_cursig = 0;
435
436 (void) memcpy(&lwp->lwp_status, &lps, sizeof (lps));
437 return (0);
438
439 err:
440 dprintf("Pgrab_core: failed to read NT_LWPSTATUS\n");
441 return (-1);
442 }
443
444 #ifdef CONFIG_LINUX_CORE_SUPPORT
445
446 static void
447 lx_prpsinfo32_to_psinfo(lx_prpsinfo32_t *p32, psinfo_t *psinfo)
448 {
449 psinfo->pr_flag = p32->pr_flag;
450 psinfo->pr_pid = p32->pr_pid;
451 psinfo->pr_ppid = p32->pr_ppid;
452 psinfo->pr_uid = p32->pr_uid;
453 psinfo->pr_gid = p32->pr_gid;
454 psinfo->pr_sid = p32->pr_sid;
455 psinfo->pr_pgid = p32->pr_pgrp;
456
457 (void) memcpy(psinfo->pr_fname, p32->pr_fname,
458 sizeof (psinfo->pr_fname));
459 (void) memcpy(psinfo->pr_psargs, p32->pr_psargs,
460 sizeof (psinfo->pr_psargs));
461 }
462
463 static void
464 lx_prpsinfo64_to_psinfo(lx_prpsinfo64_t *p64, psinfo_t *psinfo)
465 {
466 psinfo->pr_flag = p64->pr_flag;
467 psinfo->pr_pid = p64->pr_pid;
468 psinfo->pr_ppid = p64->pr_ppid;
469 psinfo->pr_uid = p64->pr_uid;
470 psinfo->pr_gid = p64->pr_gid;
471 psinfo->pr_sid = p64->pr_sid;
472 psinfo->pr_pgid = p64->pr_pgrp;
473 psinfo->pr_pgid = p64->pr_pgrp;
474
475 (void) memcpy(psinfo->pr_fname, p64->pr_fname,
476 sizeof (psinfo->pr_fname));
477 (void) memcpy(psinfo->pr_psargs, p64->pr_psargs,
478 sizeof (psinfo->pr_psargs));
479 }
480
481 static int
482 note_linux_psinfo(struct ps_prochandle *P, size_t nbytes)
483 {
484 core_info_t *core = P->data;
485 lx_prpsinfo32_t p32;
486 lx_prpsinfo64_t p64;
487
488 if (core->core_dmodel == PR_MODEL_ILP32) {
489 if (nbytes < sizeof (p32) ||
490 read(P->asfd, &p32, sizeof (p32)) != sizeof (p32))
491 goto err;
492
493 lx_prpsinfo32_to_psinfo(&p32, &P->psinfo);
494 } else {
495 if (nbytes < sizeof (p64) ||
496 read(P->asfd, &p64, sizeof (p64)) != sizeof (p64))
497 goto err;
498
499 lx_prpsinfo64_to_psinfo(&p64, &P->psinfo);
500 }
501
502
503 P->status.pr_pid = P->psinfo.pr_pid;
504 P->status.pr_ppid = P->psinfo.pr_ppid;
505 P->status.pr_pgid = P->psinfo.pr_pgid;
506 P->status.pr_sid = P->psinfo.pr_sid;
507
508 P->psinfo.pr_nlwp = 0;
509 P->status.pr_nlwp = 0;
510
511 return (0);
512 err:
513 dprintf("Pgrab_core: failed to read NT_PSINFO\n");
514 return (-1);
515 }
516
517 static void
518 lx_prstatus64_to_lwp(lx_prstatus64_t *prs64, lwp_info_t *lwp)
519 {
520 LTIME_TO_TIMESPEC(lwp->lwp_status.pr_utime, prs64->pr_utime);
521 LTIME_TO_TIMESPEC(lwp->lwp_status.pr_stime, prs64->pr_stime);
522
523 lwp->lwp_status.pr_reg[REG_R15] = prs64->pr_reg.lxr_r15;
524 lwp->lwp_status.pr_reg[REG_R14] = prs64->pr_reg.lxr_r14;
525 lwp->lwp_status.pr_reg[REG_R13] = prs64->pr_reg.lxr_r13;
526 lwp->lwp_status.pr_reg[REG_R12] = prs64->pr_reg.lxr_r12;
527 lwp->lwp_status.pr_reg[REG_R11] = prs64->pr_reg.lxr_r11;
528 lwp->lwp_status.pr_reg[REG_R10] = prs64->pr_reg.lxr_r10;
529 lwp->lwp_status.pr_reg[REG_R9] = prs64->pr_reg.lxr_r9;
530 lwp->lwp_status.pr_reg[REG_R8] = prs64->pr_reg.lxr_r8;
531
532 lwp->lwp_status.pr_reg[REG_RDI] = prs64->pr_reg.lxr_rdi;
533 lwp->lwp_status.pr_reg[REG_RSI] = prs64->pr_reg.lxr_rsi;
534 lwp->lwp_status.pr_reg[REG_RBP] = prs64->pr_reg.lxr_rbp;
535 lwp->lwp_status.pr_reg[REG_RBX] = prs64->pr_reg.lxr_rbx;
536 lwp->lwp_status.pr_reg[REG_RDX] = prs64->pr_reg.lxr_rdx;
537 lwp->lwp_status.pr_reg[REG_RCX] = prs64->pr_reg.lxr_rcx;
538 lwp->lwp_status.pr_reg[REG_RAX] = prs64->pr_reg.lxr_rax;
539
540 lwp->lwp_status.pr_reg[REG_RIP] = prs64->pr_reg.lxr_rip;
541 lwp->lwp_status.pr_reg[REG_CS] = prs64->pr_reg.lxr_cs;
542 lwp->lwp_status.pr_reg[REG_RSP] = prs64->pr_reg.lxr_rsp;
543 lwp->lwp_status.pr_reg[REG_FS] = prs64->pr_reg.lxr_fs;
544 lwp->lwp_status.pr_reg[REG_SS] = prs64->pr_reg.lxr_ss;
545 lwp->lwp_status.pr_reg[REG_GS] = prs64->pr_reg.lxr_gs;
546 lwp->lwp_status.pr_reg[REG_ES] = prs64->pr_reg.lxr_es;
547 lwp->lwp_status.pr_reg[REG_DS] = prs64->pr_reg.lxr_ds;
548
549 lwp->lwp_status.pr_reg[REG_GSBASE] = prs64->pr_reg.lxr_gs_base;
550 lwp->lwp_status.pr_reg[REG_FSBASE] = prs64->pr_reg.lxr_fs_base;
551 }
552
553 static void
554 lx_prstatus32_to_lwp(lx_prstatus32_t *prs32, lwp_info_t *lwp)
555 {
556 LTIME_TO_TIMESPEC(lwp->lwp_status.pr_utime, prs32->pr_utime);
557 LTIME_TO_TIMESPEC(lwp->lwp_status.pr_stime, prs32->pr_stime);
558
559 #if defined(__amd64)
560 lwp->lwp_status.pr_reg[REG_GS] = prs32->pr_reg.lxr_gs;
561 lwp->lwp_status.pr_reg[REG_FS] = prs32->pr_reg.lxr_fs;
562 lwp->lwp_status.pr_reg[REG_DS] = prs32->pr_reg.lxr_ds;
563 lwp->lwp_status.pr_reg[REG_ES] = prs32->pr_reg.lxr_es;
564 lwp->lwp_status.pr_reg[REG_RDI] = prs32->pr_reg.lxr_di;
565 lwp->lwp_status.pr_reg[REG_RSI] = prs32->pr_reg.lxr_si;
566 lwp->lwp_status.pr_reg[REG_RBP] = prs32->pr_reg.lxr_bp;
567 lwp->lwp_status.pr_reg[REG_RBX] = prs32->pr_reg.lxr_bx;
568 lwp->lwp_status.pr_reg[REG_RDX] = prs32->pr_reg.lxr_dx;
569 lwp->lwp_status.pr_reg[REG_RCX] = prs32->pr_reg.lxr_cx;
570 lwp->lwp_status.pr_reg[REG_RAX] = prs32->pr_reg.lxr_ax;
571 lwp->lwp_status.pr_reg[REG_RIP] = prs32->pr_reg.lxr_ip;
572 lwp->lwp_status.pr_reg[REG_CS] = prs32->pr_reg.lxr_cs;
573 lwp->lwp_status.pr_reg[REG_RFL] = prs32->pr_reg.lxr_flags;
574 lwp->lwp_status.pr_reg[REG_RSP] = prs32->pr_reg.lxr_sp;
575 lwp->lwp_status.pr_reg[REG_SS] = prs32->pr_reg.lxr_ss;
576 #elif defined(__i386)
577 lwp->lwp_status.pr_reg[EBX] = prs32->pr_reg.lxr_bx;
578 lwp->lwp_status.pr_reg[ECX] = prs32->pr_reg.lxr_cx;
579 lwp->lwp_status.pr_reg[EDX] = prs32->pr_reg.lxr_dx;
580 lwp->lwp_status.pr_reg[ESI] = prs32->pr_reg.lxr_si;
581 lwp->lwp_status.pr_reg[EDI] = prs32->pr_reg.lxr_di;
582 lwp->lwp_status.pr_reg[EBP] = prs32->pr_reg.lxr_bp;
583 lwp->lwp_status.pr_reg[EAX] = prs32->pr_reg.lxr_ax;
584 lwp->lwp_status.pr_reg[EIP] = prs32->pr_reg.lxr_ip;
585 lwp->lwp_status.pr_reg[UESP] = prs32->pr_reg.lxr_sp;
586
587 lwp->lwp_status.pr_reg[DS] = prs32->pr_reg.lxr_ds;
588 lwp->lwp_status.pr_reg[ES] = prs32->pr_reg.lxr_es;
589 lwp->lwp_status.pr_reg[FS] = prs32->pr_reg.lxr_fs;
590 lwp->lwp_status.pr_reg[GS] = prs32->pr_reg.lxr_gs;
591 lwp->lwp_status.pr_reg[CS] = prs32->pr_reg.lxr_cs;
592 lwp->lwp_status.pr_reg[SS] = prs32->pr_reg.lxr_ss;
593
594 lwp->lwp_status.pr_reg[EFL] = prs32->pr_reg.lxr_flags;
595 #else
596 #error "port me"
597 #endif
598 }
599
600 static int
601 note_linux_prstatus(struct ps_prochandle *P, size_t nbytes)
602 {
603 core_info_t *core = P->data;
604
605 lx_prstatus64_t prs64;
606 lx_prstatus32_t prs32;
607 lwp_info_t *lwp;
608 lwpid_t tid;
609
610 dprintf("looking for model %d, %ld/%ld\n", core->core_dmodel,
611 (ulong_t)nbytes, (ulong_t)sizeof (prs32));
612 if (core->core_dmodel == PR_MODEL_ILP32) {
613 if (nbytes < sizeof (prs32) ||
614 read(P->asfd, &prs32, sizeof (prs32)) != nbytes)
615 goto err;
616 tid = prs32.pr_pid;
617 } else {
618 if (nbytes < sizeof (prs64) ||
619 read(P->asfd, &prs64, sizeof (prs64)) != nbytes)
620 goto err;
621 tid = prs64.pr_pid;
622 }
623
624 if ((lwp = lwpid2info(P, tid)) == NULL) {
625 dprintf("Pgrab_core: failed to add lwpid2info "
626 "linux_prstatus\n");
627 return (-1);
628 }
629
630 P->psinfo.pr_nlwp++;
631 P->status.pr_nlwp++;
632
633 lwp->lwp_status.pr_lwpid = tid;
634
635 if (core->core_dmodel == PR_MODEL_ILP32)
636 lx_prstatus32_to_lwp(&prs32, lwp);
637 else
638 lx_prstatus64_to_lwp(&prs64, lwp);
639
640 return (0);
641 err:
642 dprintf("Pgrab_core: failed to read NT_PRSTATUS\n");
643 return (-1);
644 }
645
646 #endif /* CONFIG_LINUX_CORE_SUPPORT */
647
648 static int
649 note_psinfo(struct ps_prochandle *P, size_t nbytes)
650 {
651 #ifdef _LP64
652 core_info_t *core = P->data;
653
654 if (core->core_dmodel == PR_MODEL_ILP32) {
655 psinfo32_t ps32;
656
657 if (nbytes < sizeof (psinfo32_t) ||
658 read(P->asfd, &ps32, sizeof (ps32)) != sizeof (ps32))
659 goto err;
660
661 psinfo_32_to_n(&ps32, &P->psinfo);
662 } else
663 #endif
664 if (nbytes < sizeof (psinfo_t) ||
665 read(P->asfd, &P->psinfo, sizeof (psinfo_t)) != sizeof (psinfo_t))
666 goto err;
667
668 dprintf("pr_fname = <%s>\n", P->psinfo.pr_fname);
669 dprintf("pr_psargs = <%s>\n", P->psinfo.pr_psargs);
670 dprintf("pr_wstat = 0x%x\n", P->psinfo.pr_wstat);
671
672 return (0);
673
674 err:
675 dprintf("Pgrab_core: failed to read NT_PSINFO\n");
676 return (-1);
677 }
678
679 static int
680 note_lwpsinfo(struct ps_prochandle *P, size_t nbytes)
681 {
682 lwp_info_t *lwp;
683 lwpsinfo_t lps;
684
685 #ifdef _LP64
686 core_info_t *core = P->data;
687
688 if (core->core_dmodel == PR_MODEL_ILP32) {
689 lwpsinfo32_t l32;
690
691 if (nbytes < sizeof (lwpsinfo32_t) ||
692 read(P->asfd, &l32, sizeof (l32)) != sizeof (l32))
693 goto err;
694
695 lwpsinfo_32_to_n(&l32, &lps);
696 } else
697 #endif
698 if (nbytes < sizeof (lwpsinfo_t) ||
699 read(P->asfd, &lps, sizeof (lps)) != sizeof (lps))
700 goto err;
701
702 if ((lwp = lwpid2info(P, lps.pr_lwpid)) == NULL) {
703 dprintf("Pgrab_core: failed to add NT_LWPSINFO\n");
704 return (-1);
705 }
706
707 (void) memcpy(&lwp->lwp_psinfo, &lps, sizeof (lps));
708 return (0);
709
710 err:
711 dprintf("Pgrab_core: failed to read NT_LWPSINFO\n");
712 return (-1);
713 }
714
715 static int
716 note_fdinfo(struct ps_prochandle *P, size_t nbytes)
717 {
718 prfdinfo_t prfd;
719 fd_info_t *fip;
720
721 if ((nbytes < sizeof (prfd)) ||
722 (read(P->asfd, &prfd, sizeof (prfd)) != sizeof (prfd))) {
723 dprintf("Pgrab_core: failed to read NT_FDINFO\n");
724 return (-1);
725 }
726
727 if ((fip = Pfd2info(P, prfd.pr_fd)) == NULL) {
728 dprintf("Pgrab_core: failed to add NT_FDINFO\n");
729 return (-1);
730 }
731 (void) memcpy(&fip->fd_info, &prfd, sizeof (prfd));
732 return (0);
733 }
734
735 static int
736 note_platform(struct ps_prochandle *P, size_t nbytes)
737 {
738 core_info_t *core = P->data;
739 char *plat;
740
741 if (core->core_platform != NULL)
742 return (0); /* Already seen */
743
744 if (nbytes != 0 && ((plat = malloc(nbytes + 1)) != NULL)) {
745 if (read(P->asfd, plat, nbytes) != nbytes) {
746 dprintf("Pgrab_core: failed to read NT_PLATFORM\n");
747 free(plat);
748 return (-1);
749 }
750 plat[nbytes - 1] = '\0';
751 core->core_platform = plat;
752 }
753
754 return (0);
755 }
756
757 static int
758 note_secflags(struct ps_prochandle *P, size_t nbytes)
759 {
760 core_info_t *core = P->data;
761 prsecflags_t *psf;
762
763 if (core->core_secflags != NULL)
764 return (0); /* Already seen */
765
766 if (sizeof (*psf) != nbytes) {
767 dprintf("Pgrab_core: NT_SECFLAGS changed size."
768 " Need to handle a version change?\n");
769 return (-1);
770 }
771
772 if (nbytes != 0 && ((psf = malloc(nbytes)) != NULL)) {
773 if (read(P->asfd, psf, nbytes) != nbytes) {
774 dprintf("Pgrab_core: failed to read NT_SECFLAGS\n");
775 free(psf);
776 return (-1);
777 }
778
779 core->core_secflags = psf;
780 }
781
782 return (0);
783 }
784
785 static int
786 note_utsname(struct ps_prochandle *P, size_t nbytes)
787 {
788 core_info_t *core = P->data;
789 size_t ubytes = sizeof (struct utsname);
790 struct utsname *utsp;
791
792 if (core->core_uts != NULL || nbytes < ubytes)
793 return (0); /* Already seen or bad size */
794
795 if ((utsp = malloc(ubytes)) == NULL)
796 return (-1);
797
798 if (read(P->asfd, utsp, ubytes) != ubytes) {
799 dprintf("Pgrab_core: failed to read NT_UTSNAME\n");
800 free(utsp);
801 return (-1);
802 }
803
804 if (_libproc_debug) {
805 dprintf("uts.sysname = \"%s\"\n", utsp->sysname);
806 dprintf("uts.nodename = \"%s\"\n", utsp->nodename);
807 dprintf("uts.release = \"%s\"\n", utsp->release);
808 dprintf("uts.version = \"%s\"\n", utsp->version);
809 dprintf("uts.machine = \"%s\"\n", utsp->machine);
810 }
811
812 core->core_uts = utsp;
813 return (0);
814 }
815
816 static int
817 note_content(struct ps_prochandle *P, size_t nbytes)
818 {
819 core_info_t *core = P->data;
820 core_content_t content;
821
822 if (sizeof (core->core_content) != nbytes)
823 return (-1);
824
825 if (read(P->asfd, &content, sizeof (content)) != sizeof (content))
826 return (-1);
827
828 core->core_content = content;
829
830 dprintf("core content = %llx\n", content);
831
832 return (0);
833 }
834
835 static int
836 note_cred(struct ps_prochandle *P, size_t nbytes)
837 {
838 core_info_t *core = P->data;
839 prcred_t *pcrp;
840 int ngroups;
841 const size_t min_size = sizeof (prcred_t) - sizeof (gid_t);
842
843 /*
844 * We allow for prcred_t notes that are actually smaller than a
845 * prcred_t since the last member isn't essential if there are
846 * no group memberships. This allows for more flexibility when it
847 * comes to slightly malformed -- but still valid -- notes.
848 */
849 if (core->core_cred != NULL || nbytes < min_size)
850 return (0); /* Already seen or bad size */
851
852 ngroups = (nbytes - min_size) / sizeof (gid_t);
853 nbytes = sizeof (prcred_t) + (ngroups - 1) * sizeof (gid_t);
854
855 if ((pcrp = malloc(nbytes)) == NULL)
856 return (-1);
857
858 if (read(P->asfd, pcrp, nbytes) != nbytes) {
859 dprintf("Pgrab_core: failed to read NT_PRCRED\n");
860 free(pcrp);
861 return (-1);
862 }
863
864 if (pcrp->pr_ngroups > ngroups) {
865 dprintf("pr_ngroups = %d; resetting to %d based on note size\n",
866 pcrp->pr_ngroups, ngroups);
867 pcrp->pr_ngroups = ngroups;
868 }
869
870 core->core_cred = pcrp;
871 return (0);
872 }
873
874 #ifdef __x86
875 static int
876 note_ldt(struct ps_prochandle *P, size_t nbytes)
877 {
878 core_info_t *core = P->data;
879 struct ssd *pldt;
880 uint_t nldt;
881
882 if (core->core_ldt != NULL || nbytes < sizeof (struct ssd))
883 return (0); /* Already seen or bad size */
884
885 nldt = nbytes / sizeof (struct ssd);
886 nbytes = nldt * sizeof (struct ssd);
887
888 if ((pldt = malloc(nbytes)) == NULL)
889 return (-1);
890
891 if (read(P->asfd, pldt, nbytes) != nbytes) {
892 dprintf("Pgrab_core: failed to read NT_LDT\n");
893 free(pldt);
894 return (-1);
895 }
896
897 core->core_ldt = pldt;
898 core->core_nldt = nldt;
899 return (0);
900 }
901 #endif /* __i386 */
902
903 static int
904 note_priv(struct ps_prochandle *P, size_t nbytes)
905 {
906 core_info_t *core = P->data;
907 prpriv_t *pprvp;
908
909 if (core->core_priv != NULL || nbytes < sizeof (prpriv_t))
910 return (0); /* Already seen or bad size */
911
912 if ((pprvp = malloc(nbytes)) == NULL)
913 return (-1);
914
915 if (read(P->asfd, pprvp, nbytes) != nbytes) {
916 dprintf("Pgrab_core: failed to read NT_PRPRIV\n");
917 free(pprvp);
918 return (-1);
919 }
920
921 core->core_priv = pprvp;
922 core->core_priv_size = nbytes;
923 return (0);
924 }
925
926 static int
927 note_priv_info(struct ps_prochandle *P, size_t nbytes)
928 {
929 core_info_t *core = P->data;
930 extern void *__priv_parse_info();
931 priv_impl_info_t *ppii;
932
933 if (core->core_privinfo != NULL ||
934 nbytes < sizeof (priv_impl_info_t))
935 return (0); /* Already seen or bad size */
936
937 if ((ppii = malloc(nbytes)) == NULL)
938 return (-1);
939
940 if (read(P->asfd, ppii, nbytes) != nbytes ||
941 PRIV_IMPL_INFO_SIZE(ppii) != nbytes) {
942 dprintf("Pgrab_core: failed to read NT_PRPRIVINFO\n");
943 free(ppii);
944 return (-1);
945 }
946
947 core->core_privinfo = __priv_parse_info(ppii);
948 core->core_ppii = ppii;
949 return (0);
950 }
951
952 static int
953 note_zonename(struct ps_prochandle *P, size_t nbytes)
954 {
955 core_info_t *core = P->data;
956 char *zonename;
957
958 if (core->core_zonename != NULL)
959 return (0); /* Already seen */
960
961 if (nbytes != 0) {
962 if ((zonename = malloc(nbytes)) == NULL)
963 return (-1);
964 if (read(P->asfd, zonename, nbytes) != nbytes) {
965 dprintf("Pgrab_core: failed to read NT_ZONENAME\n");
966 free(zonename);
967 return (-1);
968 }
969 zonename[nbytes - 1] = '\0';
970 core->core_zonename = zonename;
971 }
972
973 return (0);
974 }
975
976 static int
977 note_auxv(struct ps_prochandle *P, size_t nbytes)
978 {
979 size_t n, i;
980
981 #ifdef _LP64
982 core_info_t *core = P->data;
983
984 if (core->core_dmodel == PR_MODEL_ILP32) {
985 auxv32_t *a32;
986
987 n = nbytes / sizeof (auxv32_t);
988 nbytes = n * sizeof (auxv32_t);
989 a32 = alloca(nbytes);
990
991 if (read(P->asfd, a32, nbytes) != nbytes) {
992 dprintf("Pgrab_core: failed to read NT_AUXV\n");
993 return (-1);
994 }
995
996 if ((P->auxv = malloc(sizeof (auxv_t) * (n + 1))) == NULL)
997 return (-1);
998
999 for (i = 0; i < n; i++)
1000 auxv_32_to_n(&a32[i], &P->auxv[i]);
1001
1002 } else {
1003 #endif
1004 n = nbytes / sizeof (auxv_t);
1005 nbytes = n * sizeof (auxv_t);
1006
1007 if ((P->auxv = malloc(nbytes + sizeof (auxv_t))) == NULL)
1008 return (-1);
1009
1010 if (read(P->asfd, P->auxv, nbytes) != nbytes) {
1011 free(P->auxv);
1012 P->auxv = NULL;
1013 return (-1);
1014 }
1015 #ifdef _LP64
1016 }
1017 #endif
1018
1019 if (_libproc_debug) {
1020 for (i = 0; i < n; i++) {
1021 dprintf("P->auxv[%lu] = ( %d, 0x%lx )\n", (ulong_t)i,
1022 P->auxv[i].a_type, P->auxv[i].a_un.a_val);
1023 }
1024 }
1025
1026 /*
1027 * Defensive coding for loops which depend upon the auxv array being
1028 * terminated by an AT_NULL element; in each case, we've allocated
1029 * P->auxv to have an additional element which we force to be AT_NULL.
1030 */
1031 P->auxv[n].a_type = AT_NULL;
1032 P->auxv[n].a_un.a_val = 0L;
1033 P->nauxv = (int)n;
1034
1035 return (0);
1036 }
1037
1038
1039 static int
1040 note_spymaster(struct ps_prochandle *P, size_t nbytes)
1041 {
1042 #ifdef _LP64
1043 core_info_t *core = P->data;
1044
1045 if (core->core_dmodel == PR_MODEL_ILP32) {
1046 psinfo32_t ps32;
1047
1048 if (nbytes < sizeof (psinfo32_t) ||
1049 read(P->asfd, &ps32, sizeof (ps32)) != sizeof (ps32))
1050 goto err;
1051
1052 psinfo_32_to_n(&ps32, &P->spymaster);
1053 } else
1054 #endif
1055 if (nbytes < sizeof (psinfo_t) || read(P->asfd,
1056 &P->spymaster, sizeof (psinfo_t)) != sizeof (psinfo_t))
1057 goto err;
1058
1059 dprintf("spymaster pr_fname = <%s>\n", P->psinfo.pr_fname);
1060 dprintf("spymaster pr_psargs = <%s>\n", P->psinfo.pr_psargs);
1061 dprintf("spymaster pr_wstat = 0x%x\n", P->psinfo.pr_wstat);
1062
1063 return (0);
1064
1065 err:
1066 dprintf("Pgrab_core: failed to read NT_SPYMASTER\n");
1067 return (-1);
1068 }
1069
1070 /*ARGSUSED*/
1071 static int
1072 note_notsup(struct ps_prochandle *P, size_t nbytes)
1073 {
1074 dprintf("skipping unsupported note type of size %ld bytes\n",
1075 (ulong_t)nbytes);
1076 return (0);
1077 }
1078
1079 /*
1080 * Populate a table of function pointers indexed by Note type with our
1081 * functions to process each type of core file note:
1082 */
1083 static int (*nhdlrs[])(struct ps_prochandle *, size_t) = {
1084 note_notsup, /* 0 unassigned */
1085 #ifdef CONFIG_LINUX_CORE_SUPPORT
1086 note_linux_prstatus, /* 1 NT_PRSTATUS (old) */
1087 #else
1088 note_notsup, /* 1 NT_PRSTATUS (old) */
1089 #endif
1090 note_notsup, /* 2 NT_PRFPREG (old) */
1091 #ifdef CONFIG_LINUX_CORE_SUPPORT
1092 note_linux_psinfo, /* 3 NT_PRPSINFO (old) */
1093 #else
1094 note_notsup, /* 3 NT_PRPSINFO (old) */
1095 #endif
1096 note_notsup, /* 4 NT_PRXREG */
1097 note_platform, /* 5 NT_PLATFORM */
1098 note_auxv, /* 6 NT_AUXV */
1099 note_notsup, /* 7 NT_GWINDOWS */
1100 note_notsup, /* 8 NT_ASRS */
1101 #ifdef __x86
1102 note_ldt, /* 9 NT_LDT */
1103 #else
1104 note_notsup, /* 9 NT_LDT */
1105 #endif
1106 note_pstatus, /* 10 NT_PSTATUS */
1107 note_notsup, /* 11 unassigned */
1108 note_notsup, /* 12 unassigned */
1109 note_psinfo, /* 13 NT_PSINFO */
1110 note_cred, /* 14 NT_PRCRED */
1111 note_utsname, /* 15 NT_UTSNAME */
1112 note_lwpstatus, /* 16 NT_LWPSTATUS */
1113 note_lwpsinfo, /* 17 NT_LWPSINFO */
1114 note_priv, /* 18 NT_PRPRIV */
1115 note_priv_info, /* 19 NT_PRPRIVINFO */
1116 note_content, /* 20 NT_CONTENT */
1117 note_zonename, /* 21 NT_ZONENAME */
1118 note_fdinfo, /* 22 NT_FDINFO */
1119 note_spymaster, /* 23 NT_SPYMASTER */
1120 note_secflags, /* 24 NT_SECFLAGS */
1121 };
1122
1123 static void
1124 core_report_mapping(struct ps_prochandle *P, GElf_Phdr *php)
1125 {
1126 prkillinfo_t killinfo;
1127 siginfo_t *si = &killinfo.prk_info;
1128 char signame[SIG2STR_MAX], sig[64], info[64];
1129 void *addr = (void *)(uintptr_t)php->p_vaddr;
1130
1131 const char *errfmt = "core file data for mapping at %p not saved: %s\n";
1132 const char *incfmt = "core file incomplete due to %s%s\n";
1133 const char *msgfmt = "mappings at and above %p are missing\n";
1134
1135 if (!(php->p_flags & PF_SUNW_KILLED)) {
1136 int err = 0;
1137
1138 (void) pread64(P->asfd, &err,
1139 sizeof (err), (off64_t)php->p_offset);
1140
1141 Perror_printf(P, errfmt, addr, strerror(err));
1142 dprintf(errfmt, addr, strerror(err));
1143 return;
1144 }
1145
1146 if (!(php->p_flags & PF_SUNW_SIGINFO))
1147 return;
1148
1149 (void) memset(&killinfo, 0, sizeof (killinfo));
1150
1151 (void) pread64(P->asfd, &killinfo,
1152 sizeof (killinfo), (off64_t)php->p_offset);
1153
1154 /*
1155 * While there is (or at least should be) only one segment that has
1156 * PF_SUNW_SIGINFO set, the signal information there is globally
1157 * useful (even if only to those debugging libproc consumers); we hang
1158 * the signal information gleaned here off of the ps_prochandle.
1159 */
1160 P->map_missing = php->p_vaddr;
1161 P->killinfo = killinfo.prk_info;
1162
1163 if (sig2str(si->si_signo, signame) == -1) {
1164 (void) snprintf(sig, sizeof (sig),
1165 "<Unknown signal: 0x%x>, ", si->si_signo);
1166 } else {
1167 (void) snprintf(sig, sizeof (sig), "SIG%s, ", signame);
1168 }
1169
1170 if (si->si_code == SI_USER || si->si_code == SI_QUEUE) {
1171 (void) snprintf(info, sizeof (info),
1172 "pid=%d uid=%d zone=%d ctid=%d",
1173 si->si_pid, si->si_uid, si->si_zoneid, si->si_ctid);
1174 } else {
1175 (void) snprintf(info, sizeof (info),
1176 "code=%d", si->si_code);
1177 }
1178
1179 Perror_printf(P, incfmt, sig, info);
1180 Perror_printf(P, msgfmt, addr);
1181
1182 dprintf(incfmt, sig, info);
1183 dprintf(msgfmt, addr);
1184 }
1185
1186 /*
1187 * Add information on the address space mapping described by the given
1188 * PT_LOAD program header. We fill in more information on the mapping later.
1189 */
1190 static int
1191 core_add_mapping(struct ps_prochandle *P, GElf_Phdr *php)
1192 {
1193 core_info_t *core = P->data;
1194 prmap_t pmap;
1195
1196 dprintf("mapping base %llx filesz %llx memsz %llx offset %llx\n",
1197 (u_longlong_t)php->p_vaddr, (u_longlong_t)php->p_filesz,
1198 (u_longlong_t)php->p_memsz, (u_longlong_t)php->p_offset);
1199
1200 pmap.pr_vaddr = (uintptr_t)php->p_vaddr;
1201 pmap.pr_size = php->p_memsz;
1202
1203 /*
1204 * If Pgcore() or elfcore() fail to write a mapping, they will set
1205 * PF_SUNW_FAILURE in the Phdr and try to stash away the errno for us.
1206 */
1207 if (php->p_flags & PF_SUNW_FAILURE) {
1208 core_report_mapping(P, php);
1209 } else if (php->p_filesz != 0 && php->p_offset >= core->core_size) {
1210 Perror_printf(P, "core file may be corrupt -- data for mapping "
1211 "at %p is missing\n", (void *)(uintptr_t)php->p_vaddr);
1212 dprintf("core file may be corrupt -- data for mapping "
1213 "at %p is missing\n", (void *)(uintptr_t)php->p_vaddr);
1214 }
1215
1216 /*
1217 * The mapping name and offset will hopefully be filled in
1218 * by the librtld_db agent. Unfortunately, if it isn't a
1219 * shared library mapping, this information is gone forever.
1220 */
1221 pmap.pr_mapname[0] = '\0';
1222 pmap.pr_offset = 0;
1223
1224 pmap.pr_mflags = 0;
1225 if (php->p_flags & PF_R)
1226 pmap.pr_mflags |= MA_READ;
1227 if (php->p_flags & PF_W)
1228 pmap.pr_mflags |= MA_WRITE;
1229 if (php->p_flags & PF_X)
1230 pmap.pr_mflags |= MA_EXEC;
1231
1232 if (php->p_filesz == 0)
1233 pmap.pr_mflags |= MA_RESERVED1;
1234
1235 /*
1236 * At the time of adding this mapping, we just zero the pagesize.
1237 * Once we've processed more of the core file, we'll have the
1238 * pagesize from the auxv's AT_PAGESZ element and we can fill this in.
1239 */
1240 pmap.pr_pagesize = 0;
1241
1242 /*
1243 * Unfortunately whether or not the mapping was a System V
1244 * shared memory segment is lost. We use -1 to mark it as not shm.
1245 */
1246 pmap.pr_shmid = -1;
1247
1248 return (Padd_mapping(P, php->p_offset, NULL, &pmap));
1249 }
1250
1251 /*
1252 * Given a virtual address, name the mapping at that address using the
1253 * specified name, and return the map_info_t pointer.
1254 */
1255 static map_info_t *
1256 core_name_mapping(struct ps_prochandle *P, uintptr_t addr, const char *name)
1257 {
1258 map_info_t *mp = Paddr2mptr(P, addr);
1259
1260 if (mp != NULL) {
1261 (void) strncpy(mp->map_pmap.pr_mapname, name, PRMAPSZ);
1262 mp->map_pmap.pr_mapname[PRMAPSZ - 1] = '\0';
1263 }
1264
1265 return (mp);
1266 }
1267
1268 /*
1269 * libproc uses libelf for all of its symbol table manipulation. This function
1270 * takes a symbol table and string table from a core file and places them
1271 * in a memory backed elf file.
1272 */
1273 static void
1274 fake_up_symtab(struct ps_prochandle *P, const elf_file_header_t *ehdr,
1275 GElf_Shdr *symtab, GElf_Shdr *strtab)
1276 {
1277 size_t size;
1278 off64_t off, base;
1279 map_info_t *mp;
1280 file_info_t *fp;
1281 Elf_Scn *scn;
1282 Elf_Data *data;
1283
1284 if (symtab->sh_addr == 0 ||
1285 (mp = Paddr2mptr(P, symtab->sh_addr)) == NULL ||
1286 (fp = mp->map_file) == NULL) {
1287 dprintf("fake_up_symtab: invalid section\n");
1288 return;
1289 }
1290
1291 if (fp->file_symtab.sym_data_pri != NULL) {
1292 dprintf("Symbol table already loaded (sh_addr 0x%lx)\n",
1293 (long)symtab->sh_addr);
1294 return;
1295 }
1296
1297 if (P->status.pr_dmodel == PR_MODEL_ILP32) {
1298 struct {
1299 Elf32_Ehdr ehdr;
1300 Elf32_Shdr shdr[3];
1301 char data[1];
1302 } *b;
1303
1304 base = sizeof (b->ehdr) + sizeof (b->shdr);
1305 size = base + symtab->sh_size + strtab->sh_size;
1306
1307 if ((b = calloc(1, size)) == NULL)
1308 return;
1309
1310 (void) memcpy(b->ehdr.e_ident, ehdr->e_ident,
1311 sizeof (ehdr->e_ident));
1312 b->ehdr.e_type = ehdr->e_type;
1313 b->ehdr.e_machine = ehdr->e_machine;
1314 b->ehdr.e_version = ehdr->e_version;
1315 b->ehdr.e_flags = ehdr->e_flags;
1316 b->ehdr.e_ehsize = sizeof (b->ehdr);
1317 b->ehdr.e_shoff = sizeof (b->ehdr);
1318 b->ehdr.e_shentsize = sizeof (b->shdr[0]);
1319 b->ehdr.e_shnum = 3;
1320 off = 0;
1321
1322 b->shdr[1].sh_size = symtab->sh_size;
1323 b->shdr[1].sh_type = SHT_SYMTAB;
1324 b->shdr[1].sh_offset = off + base;
1325 b->shdr[1].sh_entsize = sizeof (Elf32_Sym);
1326 b->shdr[1].sh_link = 2;
1327 b->shdr[1].sh_info = symtab->sh_info;
1328 b->shdr[1].sh_addralign = symtab->sh_addralign;
1329
1330 if (pread64(P->asfd, &b->data[off], b->shdr[1].sh_size,
1331 symtab->sh_offset) != b->shdr[1].sh_size) {
1332 dprintf("fake_up_symtab: pread of symtab[1] failed\n");
1333 free(b);
1334 return;
1335 }
1336
1337 off += b->shdr[1].sh_size;
1338
1339 b->shdr[2].sh_flags = SHF_STRINGS;
1340 b->shdr[2].sh_size = strtab->sh_size;
1341 b->shdr[2].sh_type = SHT_STRTAB;
1342 b->shdr[2].sh_offset = off + base;
1343 b->shdr[2].sh_info = strtab->sh_info;
1344 b->shdr[2].sh_addralign = 1;
1345
1346 if (pread64(P->asfd, &b->data[off], b->shdr[2].sh_size,
1347 strtab->sh_offset) != b->shdr[2].sh_size) {
1348 dprintf("fake_up_symtab: pread of symtab[2] failed\n");
1349 free(b);
1350 return;
1351 }
1352
1353 off += b->shdr[2].sh_size;
1354
1355 fp->file_symtab.sym_elf = elf_memory((char *)b, size);
1356 if (fp->file_symtab.sym_elf == NULL) {
1357 free(b);
1358 return;
1359 }
1360
1361 fp->file_symtab.sym_elfmem = b;
1362 #ifdef _LP64
1363 } else {
1364 struct {
1365 Elf64_Ehdr ehdr;
1366 Elf64_Shdr shdr[3];
1367 char data[1];
1368 } *b;
1369
1370 base = sizeof (b->ehdr) + sizeof (b->shdr);
1371 size = base + symtab->sh_size + strtab->sh_size;
1372
1373 if ((b = calloc(1, size)) == NULL)
1374 return;
1375
1376 (void) memcpy(b->ehdr.e_ident, ehdr->e_ident,
1377 sizeof (ehdr->e_ident));
1378 b->ehdr.e_type = ehdr->e_type;
1379 b->ehdr.e_machine = ehdr->e_machine;
1380 b->ehdr.e_version = ehdr->e_version;
1381 b->ehdr.e_flags = ehdr->e_flags;
1382 b->ehdr.e_ehsize = sizeof (b->ehdr);
1383 b->ehdr.e_shoff = sizeof (b->ehdr);
1384 b->ehdr.e_shentsize = sizeof (b->shdr[0]);
1385 b->ehdr.e_shnum = 3;
1386 off = 0;
1387
1388 b->shdr[1].sh_size = symtab->sh_size;
1389 b->shdr[1].sh_type = SHT_SYMTAB;
1390 b->shdr[1].sh_offset = off + base;
1391 b->shdr[1].sh_entsize = sizeof (Elf64_Sym);
1392 b->shdr[1].sh_link = 2;
1393 b->shdr[1].sh_info = symtab->sh_info;
1394 b->shdr[1].sh_addralign = symtab->sh_addralign;
1395
1396 if (pread64(P->asfd, &b->data[off], b->shdr[1].sh_size,
1397 symtab->sh_offset) != b->shdr[1].sh_size) {
1398 free(b);
1399 return;
1400 }
1401
1402 off += b->shdr[1].sh_size;
1403
1404 b->shdr[2].sh_flags = SHF_STRINGS;
1405 b->shdr[2].sh_size = strtab->sh_size;
1406 b->shdr[2].sh_type = SHT_STRTAB;
1407 b->shdr[2].sh_offset = off + base;
1408 b->shdr[2].sh_info = strtab->sh_info;
1409 b->shdr[2].sh_addralign = 1;
1410
1411 if (pread64(P->asfd, &b->data[off], b->shdr[2].sh_size,
1412 strtab->sh_offset) != b->shdr[2].sh_size) {
1413 free(b);
1414 return;
1415 }
1416
1417 off += b->shdr[2].sh_size;
1418
1419 fp->file_symtab.sym_elf = elf_memory((char *)b, size);
1420 if (fp->file_symtab.sym_elf == NULL) {
1421 free(b);
1422 return;
1423 }
1424
1425 fp->file_symtab.sym_elfmem = b;
1426 #endif
1427 }
1428
1429 if ((scn = elf_getscn(fp->file_symtab.sym_elf, 1)) == NULL ||
1430 (fp->file_symtab.sym_data_pri = elf_getdata(scn, NULL)) == NULL ||
1431 (scn = elf_getscn(fp->file_symtab.sym_elf, 2)) == NULL ||
1432 (data = elf_getdata(scn, NULL)) == NULL) {
1433 dprintf("fake_up_symtab: failed to get section data at %p\n",
1434 (void *)scn);
1435 goto err;
1436 }
1437
1438 fp->file_symtab.sym_strs = data->d_buf;
1439 fp->file_symtab.sym_strsz = data->d_size;
1440 fp->file_symtab.sym_symn = symtab->sh_size / symtab->sh_entsize;
1441 fp->file_symtab.sym_hdr_pri = *symtab;
1442 fp->file_symtab.sym_strhdr = *strtab;
1443
1444 optimize_symtab(&fp->file_symtab);
1445
1446 return;
1447 err:
1448 (void) elf_end(fp->file_symtab.sym_elf);
1449 free(fp->file_symtab.sym_elfmem);
1450 fp->file_symtab.sym_elf = NULL;
1451 fp->file_symtab.sym_elfmem = NULL;
1452 }
1453
1454 static void
1455 core_phdr_to_gelf(const Elf32_Phdr *src, GElf_Phdr *dst)
1456 {
1457 dst->p_type = src->p_type;
1458 dst->p_flags = src->p_flags;
1459 dst->p_offset = (Elf64_Off)src->p_offset;
1460 dst->p_vaddr = (Elf64_Addr)src->p_vaddr;
1461 dst->p_paddr = (Elf64_Addr)src->p_paddr;
1462 dst->p_filesz = (Elf64_Xword)src->p_filesz;
1463 dst->p_memsz = (Elf64_Xword)src->p_memsz;
1464 dst->p_align = (Elf64_Xword)src->p_align;
1465 }
1466
1467 static void
1468 core_shdr_to_gelf(const Elf32_Shdr *src, GElf_Shdr *dst)
1469 {
1470 dst->sh_name = src->sh_name;
1471 dst->sh_type = src->sh_type;
1472 dst->sh_flags = (Elf64_Xword)src->sh_flags;
1473 dst->sh_addr = (Elf64_Addr)src->sh_addr;
1474 dst->sh_offset = (Elf64_Off)src->sh_offset;
1475 dst->sh_size = (Elf64_Xword)src->sh_size;
1476 dst->sh_link = src->sh_link;
1477 dst->sh_info = src->sh_info;
1478 dst->sh_addralign = (Elf64_Xword)src->sh_addralign;
1479 dst->sh_entsize = (Elf64_Xword)src->sh_entsize;
1480 }
1481
1482 /*
1483 * Perform elf_begin on efp->e_fd and verify the ELF file's type and class.
1484 */
1485 static int
1486 core_elf_fdopen(elf_file_t *efp, GElf_Half type, int *perr)
1487 {
1488 #ifdef _BIG_ENDIAN
1489 uchar_t order = ELFDATA2MSB;
1490 #else
1491 uchar_t order = ELFDATA2LSB;
1492 #endif
1493 Elf32_Ehdr e32;
1494 int is_noelf = -1;
1495 int isa_err = 0;
1496
1497 /*
1498 * Because 32-bit libelf cannot deal with large files, we need to read,
1499 * check, and convert the file header manually in case type == ET_CORE.
1500 */
1501 if (pread64(efp->e_fd, &e32, sizeof (e32), 0) != sizeof (e32)) {
1502 if (perr != NULL)
1503 *perr = G_FORMAT;
1504 goto err;
1505 }
1506 if ((is_noelf = memcmp(&e32.e_ident[EI_MAG0], ELFMAG, SELFMAG)) != 0 ||
1507 e32.e_type != type || (isa_err = (e32.e_ident[EI_DATA] != order)) ||
1508 e32.e_version != EV_CURRENT) {
1509 if (perr != NULL) {
1510 if (is_noelf == 0 && isa_err) {
1511 *perr = G_ISAINVAL;
1512 } else {
1513 *perr = G_FORMAT;
1514 }
1515 }
1516 goto err;
1517 }
1518
1519 /*
1520 * If the file is 64-bit and we are 32-bit, fail with G_LP64. If the
1521 * file is 64-bit and we are 64-bit, re-read the header as a Elf64_Ehdr,
1522 * and convert it to a elf_file_header_t. Otherwise, the file is
1523 * 32-bit, so convert e32 to a elf_file_header_t.
1524 */
1525 if (e32.e_ident[EI_CLASS] == ELFCLASS64) {
1526 #ifdef _LP64
1527 Elf64_Ehdr e64;
1528
1529 if (pread64(efp->e_fd, &e64, sizeof (e64), 0) != sizeof (e64)) {
1530 if (perr != NULL)
1531 *perr = G_FORMAT;
1532 goto err;
1533 }
1534
1535 (void) memcpy(efp->e_hdr.e_ident, e64.e_ident, EI_NIDENT);
1536 efp->e_hdr.e_type = e64.e_type;
1537 efp->e_hdr.e_machine = e64.e_machine;
1538 efp->e_hdr.e_version = e64.e_version;
1539 efp->e_hdr.e_entry = e64.e_entry;
1540 efp->e_hdr.e_phoff = e64.e_phoff;
1541 efp->e_hdr.e_shoff = e64.e_shoff;
1542 efp->e_hdr.e_flags = e64.e_flags;
1543 efp->e_hdr.e_ehsize = e64.e_ehsize;
1544 efp->e_hdr.e_phentsize = e64.e_phentsize;
1545 efp->e_hdr.e_phnum = (Elf64_Word)e64.e_phnum;
1546 efp->e_hdr.e_shentsize = e64.e_shentsize;
1547 efp->e_hdr.e_shnum = (Elf64_Word)e64.e_shnum;
1548 efp->e_hdr.e_shstrndx = (Elf64_Word)e64.e_shstrndx;
1549 #else /* _LP64 */
1550 if (perr != NULL)
1551 *perr = G_LP64;
1552 goto err;
1553 #endif /* _LP64 */
1554 } else {
1555 (void) memcpy(efp->e_hdr.e_ident, e32.e_ident, EI_NIDENT);
1556 efp->e_hdr.e_type = e32.e_type;
1557 efp->e_hdr.e_machine = e32.e_machine;
1558 efp->e_hdr.e_version = e32.e_version;
1559 efp->e_hdr.e_entry = (Elf64_Addr)e32.e_entry;
1560 efp->e_hdr.e_phoff = (Elf64_Off)e32.e_phoff;
1561 efp->e_hdr.e_shoff = (Elf64_Off)e32.e_shoff;
1562 efp->e_hdr.e_flags = e32.e_flags;
1563 efp->e_hdr.e_ehsize = e32.e_ehsize;
1564 efp->e_hdr.e_phentsize = e32.e_phentsize;
1565 efp->e_hdr.e_phnum = (Elf64_Word)e32.e_phnum;
1566 efp->e_hdr.e_shentsize = e32.e_shentsize;
1567 efp->e_hdr.e_shnum = (Elf64_Word)e32.e_shnum;
1568 efp->e_hdr.e_shstrndx = (Elf64_Word)e32.e_shstrndx;
1569 }
1570
1571 /*
1572 * If the number of section headers or program headers or the section
1573 * header string table index would overflow their respective fields
1574 * in the ELF header, they're stored in the section header at index
1575 * zero. To simplify use elsewhere, we look for those sentinel values
1576 * here.
1577 */
1578 if ((efp->e_hdr.e_shnum == 0 && efp->e_hdr.e_shoff != 0) ||
1579 efp->e_hdr.e_shstrndx == SHN_XINDEX ||
1580 efp->e_hdr.e_phnum == PN_XNUM) {
1581 GElf_Shdr shdr;
1582
1583 dprintf("extended ELF header\n");
1584
1585 if (efp->e_hdr.e_shoff == 0) {
1586 if (perr != NULL)
1587 *perr = G_FORMAT;
1588 goto err;
1589 }
1590
1591 if (efp->e_hdr.e_ident[EI_CLASS] == ELFCLASS32) {
1592 Elf32_Shdr shdr32;
1593
1594 if (pread64(efp->e_fd, &shdr32, sizeof (shdr32),
1595 efp->e_hdr.e_shoff) != sizeof (shdr32)) {
1596 if (perr != NULL)
1597 *perr = G_FORMAT;
1598 goto err;
1599 }
1600
1601 core_shdr_to_gelf(&shdr32, &shdr);
1602 } else {
1603 if (pread64(efp->e_fd, &shdr, sizeof (shdr),
1604 efp->e_hdr.e_shoff) != sizeof (shdr)) {
1605 if (perr != NULL)
1606 *perr = G_FORMAT;
1607 goto err;
1608 }
1609 }
1610
1611 if (efp->e_hdr.e_shnum == 0) {
1612 efp->e_hdr.e_shnum = shdr.sh_size;
1613 dprintf("section header count %lu\n",
1614 (ulong_t)shdr.sh_size);
1615 }
1616
1617 if (efp->e_hdr.e_shstrndx == SHN_XINDEX) {
1618 efp->e_hdr.e_shstrndx = shdr.sh_link;
1619 dprintf("section string index %u\n", shdr.sh_link);
1620 }
1621
1622 if (efp->e_hdr.e_phnum == PN_XNUM && shdr.sh_info != 0) {
1623 efp->e_hdr.e_phnum = shdr.sh_info;
1624 dprintf("program header count %u\n", shdr.sh_info);
1625 }
1626
1627 } else if (efp->e_hdr.e_phoff != 0) {
1628 GElf_Phdr phdr;
1629 uint64_t phnum;
1630
1631 /*
1632 * It's possible this core file came from a system that
1633 * accidentally truncated the e_phnum field without correctly
1634 * using the extended format in the section header at index
1635 * zero. We try to detect and correct that specific type of
1636 * corruption by using the knowledge that the core dump
1637 * routines usually place the data referenced by the first
1638 * program header immediately after the last header element.
1639 */
1640 if (efp->e_hdr.e_ident[EI_CLASS] == ELFCLASS32) {
1641 Elf32_Phdr phdr32;
1642
1643 if (pread64(efp->e_fd, &phdr32, sizeof (phdr32),
1644 efp->e_hdr.e_phoff) != sizeof (phdr32)) {
1645 if (perr != NULL)
1646 *perr = G_FORMAT;
1647 goto err;
1648 }
1649
1650 core_phdr_to_gelf(&phdr32, &phdr);
1651 } else {
1652 if (pread64(efp->e_fd, &phdr, sizeof (phdr),
1653 efp->e_hdr.e_phoff) != sizeof (phdr)) {
1654 if (perr != NULL)
1655 *perr = G_FORMAT;
1656 goto err;
1657 }
1658 }
1659
1660 phnum = phdr.p_offset - efp->e_hdr.e_ehsize -
1661 (uint64_t)efp->e_hdr.e_shnum * efp->e_hdr.e_shentsize;
1662 phnum /= efp->e_hdr.e_phentsize;
1663
1664 if (phdr.p_offset != 0 && phnum != efp->e_hdr.e_phnum) {
1665 dprintf("suspicious program header count %u %u\n",
1666 (uint_t)phnum, efp->e_hdr.e_phnum);
1667
1668 /*
1669 * If the new program header count we computed doesn't
1670 * jive with count in the ELF header, we'll use the
1671 * data that's there and hope for the best.
1672 *
1673 * If it does, it's also possible that the section
1674 * header offset is incorrect; we'll check that and
1675 * possibly try to fix it.
1676 */
1677 if (phnum <= INT_MAX &&
1678 (uint16_t)phnum == efp->e_hdr.e_phnum) {
1679
1680 if (efp->e_hdr.e_shoff == efp->e_hdr.e_phoff +
1681 efp->e_hdr.e_phentsize *
1682 (uint_t)efp->e_hdr.e_phnum) {
1683 efp->e_hdr.e_shoff =
1684 efp->e_hdr.e_phoff +
1685 efp->e_hdr.e_phentsize * phnum;
1686 }
1687
1688 efp->e_hdr.e_phnum = (Elf64_Word)phnum;
1689 dprintf("using new program header count\n");
1690 } else {
1691 dprintf("inconsistent program header count\n");
1692 }
1693 }
1694 }
1695
1696 /*
1697 * The libelf implementation was never ported to be large-file aware.
1698 * This is typically not a problem for your average executable or
1699 * shared library, but a large 32-bit core file can exceed 2GB in size.
1700 * So if type is ET_CORE, we don't bother doing elf_begin; the code
1701 * in Pfgrab_core() below will do its own i/o and struct conversion.
1702 */
1703
1704 if (type == ET_CORE) {
1705 efp->e_elf = NULL;
1706 return (0);
1707 }
1708
1709 if ((efp->e_elf = elf_begin(efp->e_fd, ELF_C_READ, NULL)) == NULL) {
1710 if (perr != NULL)
1711 *perr = G_ELF;
1712 goto err;
1713 }
1714
1715 return (0);
1716
1717 err:
1718 efp->e_elf = NULL;
1719 return (-1);
1720 }
1721
1722 /*
1723 * Open the specified file and then do a core_elf_fdopen on it.
1724 */
1725 static int
1726 core_elf_open(elf_file_t *efp, const char *path, GElf_Half type, int *perr)
1727 {
1728 (void) memset(efp, 0, sizeof (elf_file_t));
1729
1730 if ((efp->e_fd = open64(path, O_RDONLY)) >= 0) {
1731 if (core_elf_fdopen(efp, type, perr) == 0)
1732 return (0);
1733
1734 (void) close(efp->e_fd);
1735 efp->e_fd = -1;
1736 }
1737
1738 return (-1);
1739 }
1740
1741 /*
1742 * Close the ELF handle and file descriptor.
1743 */
1744 static void
1745 core_elf_close(elf_file_t *efp)
1746 {
1747 if (efp->e_elf != NULL) {
1748 (void) elf_end(efp->e_elf);
1749 efp->e_elf = NULL;
1750 }
1751
1752 if (efp->e_fd != -1) {
1753 (void) close(efp->e_fd);
1754 efp->e_fd = -1;
1755 }
1756 }
1757
1758 /*
1759 * Given an ELF file for a statically linked executable, locate the likely
1760 * primary text section and fill in rl_base with its virtual address.
1761 */
1762 static map_info_t *
1763 core_find_text(struct ps_prochandle *P, Elf *elf, rd_loadobj_t *rlp)
1764 {
1765 GElf_Phdr phdr;
1766 uint_t i;
1767 size_t nphdrs;
1768
1769 if (elf_getphdrnum(elf, &nphdrs) == -1)
1770 return (NULL);
1771
1772 for (i = 0; i < nphdrs; i++) {
1773 if (gelf_getphdr(elf, i, &phdr) != NULL &&
1774 phdr.p_type == PT_LOAD && (phdr.p_flags & PF_X)) {
1775 rlp->rl_base = phdr.p_vaddr;
1776 return (Paddr2mptr(P, rlp->rl_base));
1777 }
1778 }
1779
1780 return (NULL);
1781 }
1782
1783 /*
1784 * Given an ELF file and the librtld_db structure corresponding to its primary
1785 * text mapping, deduce where its data segment was loaded and fill in
1786 * rl_data_base and prmap_t.pr_offset accordingly.
1787 */
1788 static map_info_t *
1789 core_find_data(struct ps_prochandle *P, Elf *elf, rd_loadobj_t *rlp)
1790 {
1791 GElf_Ehdr ehdr;
1792 GElf_Phdr phdr;
1793 map_info_t *mp;
1794 uint_t i, pagemask;
1795 size_t nphdrs;
1796
1797 rlp->rl_data_base = 0;
1798
1799 /*
1800 * Find the first loadable, writeable Phdr and compute rl_data_base
1801 * as the virtual address at which is was loaded.
1802 */
1803 if (gelf_getehdr(elf, &ehdr) == NULL ||
1804 elf_getphdrnum(elf, &nphdrs) == -1)
1805 return (NULL);
1806
1807 for (i = 0; i < nphdrs; i++) {
1808 if (gelf_getphdr(elf, i, &phdr) != NULL &&
1809 phdr.p_type == PT_LOAD && (phdr.p_flags & PF_W)) {
1810 rlp->rl_data_base = phdr.p_vaddr;
1811 if (ehdr.e_type == ET_DYN)
1812 rlp->rl_data_base += rlp->rl_base;
1813 break;
1814 }
1815 }
1816
1817 /*
1818 * If we didn't find an appropriate phdr or if the address we
1819 * computed has no mapping, return NULL.
1820 */
1821 if (rlp->rl_data_base == 0 ||
1822 (mp = Paddr2mptr(P, rlp->rl_data_base)) == NULL)
1823 return (NULL);
1824
1825 /*
1826 * It wouldn't be procfs-related code if we didn't make use of
1827 * unclean knowledge of segvn, even in userland ... the prmap_t's
1828 * pr_offset field will be the segvn offset from mmap(2)ing the
1829 * data section, which will be the file offset & PAGEMASK.
1830 */
1831 pagemask = ~(mp->map_pmap.pr_pagesize - 1);
1832 mp->map_pmap.pr_offset = phdr.p_offset & pagemask;
1833
1834 return (mp);
1835 }
1836
1837 /*
1838 * Librtld_db agent callback for iterating over load object mappings.
1839 * For each load object, we allocate a new file_info_t, perform naming,
1840 * and attempt to construct a symbol table for the load object.
1841 */
1842 static int
1843 core_iter_mapping(const rd_loadobj_t *rlp, struct ps_prochandle *P)
1844 {
1845 core_info_t *core = P->data;
1846 char lname[PATH_MAX], buf[PATH_MAX];
1847 file_info_t *fp;
1848 map_info_t *mp;
1849
1850 if (Pread_string(P, lname, PATH_MAX, (off_t)rlp->rl_nameaddr) <= 0) {
1851 dprintf("failed to read name %p\n", (void *)rlp->rl_nameaddr);
1852 return (1); /* Keep going; forget this if we can't get a name */
1853 }
1854
1855 dprintf("rd_loadobj name = \"%s\" rl_base = %p\n",
1856 lname, (void *)rlp->rl_base);
1857
1858 if ((mp = Paddr2mptr(P, rlp->rl_base)) == NULL) {
1859 dprintf("no mapping for %p\n", (void *)rlp->rl_base);
1860 return (1); /* No mapping; advance to next mapping */
1861 }
1862
1863 /*
1864 * Create a new file_info_t for this mapping, and therefore for
1865 * this load object.
1866 *
1867 * If there's an ELF header at the beginning of this mapping,
1868 * file_info_new() will try to use its section headers to
1869 * identify any other mappings that belong to this load object.
1870 */
1871 if ((fp = mp->map_file) == NULL &&
1872 (fp = file_info_new(P, mp)) == NULL) {
1873 core->core_errno = errno;
1874 dprintf("failed to malloc mapping data\n");
1875 return (0); /* Abort */
1876 }
1877 fp->file_map = mp;
1878
1879 /* Create a local copy of the load object representation */
1880 if ((fp->file_lo = calloc(1, sizeof (rd_loadobj_t))) == NULL) {
1881 core->core_errno = errno;
1882 dprintf("failed to malloc mapping data\n");
1883 return (0); /* Abort */
1884 }
1885 *fp->file_lo = *rlp;
1886
1887 if (lname[0] != '\0') {
1888 /*
1889 * Naming dance part 1: if we got a name from librtld_db, then
1890 * copy this name to the prmap_t if it is unnamed. If the
1891 * file_info_t is unnamed, name it after the lname.
1892 */
1893 if (mp->map_pmap.pr_mapname[0] == '\0') {
1894 (void) strncpy(mp->map_pmap.pr_mapname, lname, PRMAPSZ);
1895 mp->map_pmap.pr_mapname[PRMAPSZ - 1] = '\0';
1896 }
1897
1898 if (fp->file_lname == NULL)
1899 fp->file_lname = strdup(lname);
1900
1901 } else if (fp->file_lname == NULL &&
1902 mp->map_pmap.pr_mapname[0] != '\0') {
1903 /*
1904 * Naming dance part 2: if the mapping is named and the
1905 * file_info_t is not, name the file after the mapping.
1906 */
1907 fp->file_lname = strdup(mp->map_pmap.pr_mapname);
1908 }
1909
1910 if ((fp->file_rname == NULL) &&
1911 (Pfindmap(P, mp, buf, sizeof (buf)) != NULL))
1912 fp->file_rname = strdup(buf);
1913
1914 if (fp->file_lname != NULL)
1915 fp->file_lbase = basename(fp->file_lname);
1916 if (fp->file_rname != NULL)
1917 fp->file_rbase = basename(fp->file_rname);
1918
1919 /* Associate the file and the mapping. */
1920 (void) strncpy(fp->file_pname, mp->map_pmap.pr_mapname, PRMAPSZ);
1921 fp->file_pname[PRMAPSZ - 1] = '\0';
1922
1923 /*
1924 * If no section headers were available then we'll have to
1925 * identify this load object's other mappings with what we've
1926 * got: the start and end of the object's corresponding
1927 * address space.
1928 */
1929 if (fp->file_saddrs == NULL) {
1930 for (mp = fp->file_map + 1; mp < P->mappings + P->map_count &&
1931 mp->map_pmap.pr_vaddr < rlp->rl_bend; mp++) {
1932
1933 if (mp->map_file == NULL) {
1934 dprintf("core_iter_mapping %s: associating "
1935 "segment at %p\n",
1936 fp->file_pname,
1937 (void *)mp->map_pmap.pr_vaddr);
1938 mp->map_file = fp;
1939 fp->file_ref++;
1940 } else {
1941 dprintf("core_iter_mapping %s: segment at "
1942 "%p already associated with %s\n",
1943 fp->file_pname,
1944 (void *)mp->map_pmap.pr_vaddr,
1945 (mp == fp->file_map ? "this file" :
1946 mp->map_file->file_pname));
1947 }
1948 }
1949 }
1950
1951 /* Ensure that all this file's mappings are named. */
1952 for (mp = fp->file_map; mp < P->mappings + P->map_count &&
1953 mp->map_file == fp; mp++) {
1954 if (mp->map_pmap.pr_mapname[0] == '\0' &&
1955 !(mp->map_pmap.pr_mflags & MA_BREAK)) {
1956 (void) strncpy(mp->map_pmap.pr_mapname, fp->file_pname,
1957 PRMAPSZ);
1958 mp->map_pmap.pr_mapname[PRMAPSZ - 1] = '\0';
1959 }
1960 }
1961
1962 /* Attempt to build a symbol table for this file. */
1963 Pbuild_file_symtab(P, fp);
1964 if (fp->file_elf == NULL)
1965 dprintf("core_iter_mapping: no symtab for %s\n",
1966 fp->file_pname);
1967
1968 /* Locate the start of a data segment associated with this file. */
1969 if ((mp = core_find_data(P, fp->file_elf, fp->file_lo)) != NULL) {
1970 dprintf("found data for %s at %p (pr_offset 0x%llx)\n",
1971 fp->file_pname, (void *)fp->file_lo->rl_data_base,
1972 mp->map_pmap.pr_offset);
1973 } else {
1974 dprintf("core_iter_mapping: no data found for %s\n",
1975 fp->file_pname);
1976 }
1977
1978 return (1); /* Advance to next mapping */
1979 }
1980
1981 /*
1982 * Callback function for Pfindexec(). In order to confirm a given pathname,
1983 * we verify that we can open it as an ELF file of type ET_EXEC or ET_DYN.
1984 */
1985 static int
1986 core_exec_open(const char *path, void *efp)
1987 {
1988 if (core_elf_open(efp, path, ET_EXEC, NULL) == 0)
1989 return (1);
1990 if (core_elf_open(efp, path, ET_DYN, NULL) == 0)
1991 return (1);
1992 return (0);
1993 }
1994
1995 /*
1996 * Attempt to load any section headers found in the core file. If present,
1997 * this will refer to non-loadable data added to the core file by the kernel
1998 * based on coreadm(1M) settings, including CTF data and the symbol table.
1999 */
2000 static void
2001 core_load_shdrs(struct ps_prochandle *P, elf_file_t *efp)
2002 {
2003 GElf_Shdr *shp, *shdrs = NULL;
2004 char *shstrtab = NULL;
2005 ulong_t shstrtabsz;
2006 const char *name;
2007 map_info_t *mp;
2008
2009 size_t nbytes;
2010 void *buf;
2011 int i;
2012
2013 if (efp->e_hdr.e_shstrndx >= efp->e_hdr.e_shnum) {
2014 dprintf("corrupt shstrndx (%u) exceeds shnum (%u)\n",
2015 efp->e_hdr.e_shstrndx, efp->e_hdr.e_shnum);
2016 return;
2017 }
2018
2019 /*
2020 * Read the section header table from the core file and then iterate
2021 * over the section headers, converting each to a GElf_Shdr.
2022 */
2023 if ((shdrs = malloc(efp->e_hdr.e_shnum * sizeof (GElf_Shdr))) == NULL) {
2024 dprintf("failed to malloc %u section headers: %s\n",
2025 (uint_t)efp->e_hdr.e_shnum, strerror(errno));
2026 return;
2027 }
2028
2029 nbytes = efp->e_hdr.e_shnum * efp->e_hdr.e_shentsize;
2030 if ((buf = malloc(nbytes)) == NULL) {
2031 dprintf("failed to malloc %d bytes: %s\n", (int)nbytes,
2032 strerror(errno));
2033 free(shdrs);
2034 goto out;
2035 }
2036
2037 if (pread64(efp->e_fd, buf, nbytes, efp->e_hdr.e_shoff) != nbytes) {
2038 dprintf("failed to read section headers at off %lld: %s\n",
2039 (longlong_t)efp->e_hdr.e_shoff, strerror(errno));
2040 free(buf);
2041 goto out;
2042 }
2043
2044 for (i = 0; i < efp->e_hdr.e_shnum; i++) {
2045 void *p = (uchar_t *)buf + efp->e_hdr.e_shentsize * i;
2046
2047 if (efp->e_hdr.e_ident[EI_CLASS] == ELFCLASS32)
2048 core_shdr_to_gelf(p, &shdrs[i]);
2049 else
2050 (void) memcpy(&shdrs[i], p, sizeof (GElf_Shdr));
2051 }
2052
2053 free(buf);
2054 buf = NULL;
2055
2056 /*
2057 * Read the .shstrtab section from the core file, terminating it with
2058 * an extra \0 so that a corrupt section will not cause us to die.
2059 */
2060 shp = &shdrs[efp->e_hdr.e_shstrndx];
2061 shstrtabsz = shp->sh_size;
2062
2063 if ((shstrtab = malloc(shstrtabsz + 1)) == NULL) {
2064 dprintf("failed to allocate %lu bytes for shstrtab\n",
2065 (ulong_t)shstrtabsz);
2066 goto out;
2067 }
2068
2069 if (pread64(efp->e_fd, shstrtab, shstrtabsz,
2070 shp->sh_offset) != shstrtabsz) {
2071 dprintf("failed to read %lu bytes of shstrs at off %lld: %s\n",
2072 shstrtabsz, (longlong_t)shp->sh_offset, strerror(errno));
2073 goto out;
2074 }
2075
2076 shstrtab[shstrtabsz] = '\0';
2077
2078 /*
2079 * Now iterate over each section in the section header table, locating
2080 * sections of interest and initializing more of the ps_prochandle.
2081 */
2082 for (i = 0; i < efp->e_hdr.e_shnum; i++) {
2083 shp = &shdrs[i];
2084 name = shstrtab + shp->sh_name;
2085
2086 if (shp->sh_name >= shstrtabsz) {
2087 dprintf("skipping section [%d]: corrupt sh_name\n", i);
2088 continue;
2089 }
2090
2091 if (shp->sh_link >= efp->e_hdr.e_shnum) {
2092 dprintf("skipping section [%d]: corrupt sh_link\n", i);
2093 continue;
2094 }
2095
2096 dprintf("found section header %s (sh_addr 0x%llx)\n",
2097 name, (u_longlong_t)shp->sh_addr);
2098
2099 if (strcmp(name, ".SUNW_ctf") == 0) {
2100 if ((mp = Paddr2mptr(P, shp->sh_addr)) == NULL) {
2101 dprintf("no map at addr 0x%llx for %s [%d]\n",
2102 (u_longlong_t)shp->sh_addr, name, i);
2103 continue;
2104 }
2105
2106 if (mp->map_file == NULL ||
2107 mp->map_file->file_ctf_buf != NULL) {
2108 dprintf("no mapping file or duplicate buffer "
2109 "for %s [%d]\n", name, i);
2110 continue;
2111 }
2112
2113 if ((buf = malloc(shp->sh_size)) == NULL ||
2114 pread64(efp->e_fd, buf, shp->sh_size,
2115 shp->sh_offset) != shp->sh_size) {
2116 dprintf("skipping section %s [%d]: %s\n",
2117 name, i, strerror(errno));
2118 free(buf);
2119 continue;
2120 }
2121
2122 mp->map_file->file_ctf_size = shp->sh_size;
2123 mp->map_file->file_ctf_buf = buf;
2124
2125 if (shdrs[shp->sh_link].sh_type == SHT_DYNSYM)
2126 mp->map_file->file_ctf_dyn = 1;
2127
2128 } else if (strcmp(name, ".symtab") == 0) {
2129 fake_up_symtab(P, &efp->e_hdr,
2130 shp, &shdrs[shp->sh_link]);
2131 }
2132 }
2133 out:
2134 free(shstrtab);
2135 free(shdrs);
2136 }
2137
2138 /*
2139 * Main engine for core file initialization: given an fd for the core file
2140 * and an optional pathname, construct the ps_prochandle. The aout_path can
2141 * either be a suggested executable pathname, or a suggested directory to
2142 * use as a possible current working directory.
2143 */
2144 struct ps_prochandle *
2145 Pfgrab_core(int core_fd, const char *aout_path, int *perr)
2146 {
2147 struct ps_prochandle *P;
2148 core_info_t *core_info;
2149 map_info_t *stk_mp, *brk_mp;
2150 const char *execname;
2151 char *interp;
2152 int i, notes, pagesize;
2153 uintptr_t addr, base_addr;
2154 struct stat64 stbuf;
2155 void *phbuf, *php;
2156 size_t nbytes;
2157 #ifdef CONFIG_LINUX_CORE_SUPPORT
2158 boolean_t from_linux = B_FALSE;
2159 #endif
2160
2161 elf_file_t aout;
2162 elf_file_t core;
2163
2164 Elf_Scn *scn, *intp_scn = NULL;
2165 Elf_Data *dp;
2166
2167 GElf_Phdr phdr, note_phdr;
2168 GElf_Shdr shdr;
2169 GElf_Xword nleft;
2170
2171 if (elf_version(EV_CURRENT) == EV_NONE) {
2172 dprintf("libproc ELF version is more recent than libelf\n");
2173 *perr = G_ELF;
2174 return (NULL);
2175 }
2176
2177 aout.e_elf = NULL;
2178 aout.e_fd = -1;
2179
2180 core.e_elf = NULL;
2181 core.e_fd = core_fd;
2182
2183 /*
2184 * Allocate and initialize a ps_prochandle structure for the core.
2185 * There are several key pieces of initialization here:
2186 *
2187 * 1. The PS_DEAD state flag marks this prochandle as a core file.
2188 * PS_DEAD also thus prevents all operations which require state
2189 * to be PS_STOP from operating on this handle.
2190 *
2191 * 2. We keep the core file fd in P->asfd since the core file contains
2192 * the remnants of the process address space.
2193 *
2194 * 3. We set the P->info_valid bit because all information about the
2195 * core is determined by the end of this function; there is no need
2196 * for proc_update_maps() to reload mappings at any later point.
2197 *
2198 * 4. The read/write ops vector uses our core_rw() function defined
2199 * above to handle i/o requests.
2200 */
2201 if ((P = malloc(sizeof (struct ps_prochandle))) == NULL) {
2202 *perr = G_STRANGE;
2203 return (NULL);
2204 }
2205
2206 (void) memset(P, 0, sizeof (struct ps_prochandle));
2207 (void) mutex_init(&P->proc_lock, USYNC_THREAD, NULL);
2208 P->state = PS_DEAD;
2209 P->pid = (pid_t)-1;
2210 P->asfd = core.e_fd;
2211 P->ctlfd = -1;
2212 P->statfd = -1;
2213 P->agentctlfd = -1;
2214 P->agentstatfd = -1;
2215 P->zoneroot = NULL;
2216 P->info_valid = 1;
2217 Pinit_ops(&P->ops, &P_core_ops);
2218
2219 Pinitsym(P);
2220
2221 /*
2222 * Fstat and open the core file and make sure it is a valid ELF core.
2223 */
2224 if (fstat64(P->asfd, &stbuf) == -1) {
2225 *perr = G_STRANGE;
2226 goto err;
2227 }
2228
2229 if (core_elf_fdopen(&core, ET_CORE, perr) == -1)
2230 goto err;
2231
2232 /*
2233 * Allocate and initialize a core_info_t to hang off the ps_prochandle
2234 * structure. We keep all core-specific information in this structure.
2235 */
2236 if ((core_info = calloc(1, sizeof (core_info_t))) == NULL) {
2237 *perr = G_STRANGE;
2238 goto err;
2239 }
2240
2241 P->data = core_info;
2242 list_link(&core_info->core_lwp_head, NULL);
2243 core_info->core_size = stbuf.st_size;
2244 /*
2245 * In the days before adjustable core file content, this was the
2246 * default core file content. For new core files, this value will
2247 * be overwritten by the NT_CONTENT note section.
2248 */
2249 core_info->core_content = CC_CONTENT_STACK | CC_CONTENT_HEAP |
2250 CC_CONTENT_DATA | CC_CONTENT_RODATA | CC_CONTENT_ANON |
2251 CC_CONTENT_SHANON;
2252
2253 switch (core.e_hdr.e_ident[EI_CLASS]) {
2254 case ELFCLASS32:
2255 core_info->core_dmodel = PR_MODEL_ILP32;
2256 break;
2257 case ELFCLASS64:
2258 core_info->core_dmodel = PR_MODEL_LP64;
2259 break;
2260 default:
2261 *perr = G_FORMAT;
2262 goto err;
2263 }
2264 core_info->core_osabi = core.e_hdr.e_ident[EI_OSABI];
2265
2266 /*
2267 * Because the core file may be a large file, we can't use libelf to
2268 * read the Phdrs. We use e_phnum and e_phentsize to simplify things.
2269 */
2270 nbytes = core.e_hdr.e_phnum * core.e_hdr.e_phentsize;
2271
2272 if ((phbuf = malloc(nbytes)) == NULL) {
2273 *perr = G_STRANGE;
2274 goto err;
2275 }
2276
2277 if (pread64(core_fd, phbuf, nbytes, core.e_hdr.e_phoff) != nbytes) {
2278 *perr = G_STRANGE;
2279 free(phbuf);
2280 goto err;
2281 }
2282
2283 /*
2284 * Iterate through the program headers in the core file.
2285 * We're interested in two types of Phdrs: PT_NOTE (which
2286 * contains a set of saved /proc structures), and PT_LOAD (which
2287 * represents a memory mapping from the process's address space).
2288 * In the case of PT_NOTE, we're interested in the last PT_NOTE
2289 * in the core file; currently the first PT_NOTE (if present)
2290 * contains /proc structs in the pre-2.6 unstructured /proc format.
2291 */
2292 for (php = phbuf, notes = 0, i = 0; i < core.e_hdr.e_phnum; i++) {
2293 if (core.e_hdr.e_ident[EI_CLASS] == ELFCLASS64)
2294 (void) memcpy(&phdr, php, sizeof (GElf_Phdr));
2295 else
2296 core_phdr_to_gelf(php, &phdr);
2297
2298 switch (phdr.p_type) {
2299 case PT_NOTE:
2300 note_phdr = phdr;
2301 notes++;
2302 break;
2303
2304 case PT_LOAD:
2305 if (core_add_mapping(P, &phdr) == -1) {
2306 *perr = G_STRANGE;
2307 free(phbuf);
2308 goto err;
2309 }
2310 break;
2311 default:
2312 dprintf("Pgrab_core: unknown phdr %d\n", phdr.p_type);
2313 break;
2314 }
2315
2316 php = (char *)php + core.e_hdr.e_phentsize;
2317 }
2318
2319 free(phbuf);
2320
2321 Psort_mappings(P);
2322
2323 /*
2324 * If we couldn't find anything of type PT_NOTE, or only one PT_NOTE
2325 * was present, abort. The core file is either corrupt or too old.
2326 */
2327 if (notes == 0 || (notes == 1 && core_info->core_osabi ==
2328 ELFOSABI_SOLARIS)) {
2329 *perr = G_NOTE;
2330 goto err;
2331 }
2332
2333 /*
2334 * Advance the seek pointer to the start of the PT_NOTE data
2335 */
2336 if (lseek64(P->asfd, note_phdr.p_offset, SEEK_SET) == (off64_t)-1) {
2337 dprintf("Pgrab_core: failed to lseek to PT_NOTE data\n");
2338 *perr = G_STRANGE;
2339 goto err;
2340 }
2341
2342 /*
2343 * Now process the PT_NOTE structures. Each one is preceded by
2344 * an Elf{32/64}_Nhdr structure describing its type and size.
2345 *
2346 * +--------+
2347 * | header |
2348 * +--------+
2349 * | name |
2350 * | ... |
2351 * +--------+
2352 * | desc |
2353 * | ... |
2354 * +--------+
2355 */
2356 for (nleft = note_phdr.p_filesz; nleft > 0; ) {
2357 Elf64_Nhdr nhdr;
2358 off64_t off, namesz, descsz;
2359
2360 /*
2361 * Although <sys/elf.h> defines both Elf32_Nhdr and Elf64_Nhdr
2362 * as different types, they are both of the same content and
2363 * size, so we don't need to worry about 32/64 conversion here.
2364 */
2365 if (read(P->asfd, &nhdr, sizeof (nhdr)) != sizeof (nhdr)) {
2366 dprintf("Pgrab_core: failed to read ELF note header\n");
2367 *perr = G_NOTE;
2368 goto err;
2369 }
2370
2371 /*
2372 * According to the System V ABI, the amount of padding
2373 * following the name field should align the description
2374 * field on a 4 byte boundary for 32-bit binaries or on an 8
2375 * byte boundary for 64-bit binaries. However, this change
2376 * was not made correctly during the 64-bit port so all
2377 * descriptions can assume only 4-byte alignment. We ignore
2378 * the name field and the padding to 4-byte alignment.
2379 */
2380 namesz = P2ROUNDUP((off64_t)nhdr.n_namesz, (off64_t)4);
2381
2382 if (lseek64(P->asfd, namesz, SEEK_CUR) == (off64_t)-1) {
2383 dprintf("failed to seek past name and padding\n");
2384 *perr = G_STRANGE;
2385 goto err;
2386 }
2387
2388 dprintf("Note hdr n_type=%u n_namesz=%u n_descsz=%u\n",
2389 nhdr.n_type, nhdr.n_namesz, nhdr.n_descsz);
2390
2391 off = lseek64(P->asfd, (off64_t)0L, SEEK_CUR);
2392
2393 /*
2394 * Invoke the note handler function from our table
2395 */
2396 if (nhdr.n_type < sizeof (nhdlrs) / sizeof (nhdlrs[0])) {
2397 if (nhdlrs[nhdr.n_type](P, nhdr.n_descsz) < 0) {
2398 dprintf("handler for type %d returned < 0",
2399 nhdr.n_type);
2400 *perr = G_NOTE;
2401 goto err;
2402 }
2403 #ifdef CONFIG_LINUX_CORE_SUPPORT
2404 /*
2405 * The presence of either of these notes indicates that
2406 * the dump was generated on Linux.
2407 */
2408 if (nhdr.n_type == NT_PRSTATUS ||
2409 nhdr.n_type == NT_PRPSINFO)
2410 from_linux = B_TRUE;
2411 #endif
2412 } else {
2413 (void) note_notsup(P, nhdr.n_descsz);
2414 }
2415
2416 /*
2417 * Seek past the current note data to the next Elf_Nhdr
2418 */
2419 descsz = P2ROUNDUP((off64_t)nhdr.n_descsz, (off64_t)4);
2420 if (lseek64(P->asfd, off + descsz, SEEK_SET) == (off64_t)-1) {
2421 dprintf("Pgrab_core: failed to seek to next nhdr\n");
2422 *perr = G_STRANGE;
2423 goto err;
2424 }
2425
2426 /*
2427 * Subtract the size of the header and its data from what
2428 * we have left to process.
2429 */
2430 nleft -= sizeof (nhdr) + namesz + descsz;
2431 }
2432
2433 #ifdef CONFIG_LINUX_CORE_SUPPORT
2434 if (from_linux) {
2435 size_t tcount, pid;
2436 lwp_info_t *lwp;
2437
2438 P->status.pr_dmodel = core_info->core_dmodel;
2439
2440 lwp = list_next(&core_info->core_lwp_head);
2441
2442 pid = P->status.pr_pid;
2443
2444 for (tcount = 0; tcount < core_info->core_nlwp;
2445 tcount++, lwp = list_next(lwp)) {
2446 dprintf("Linux thread with id %d\n", lwp->lwp_id);
2447
2448 /*
2449 * In the case we don't have a valid psinfo (i.e. pid is
2450 * 0, probably because of gdb creating the core) assume
2451 * lowest pid count is the first thread (what if the
2452 * next thread wraps the pid around?)
2453 */
2454 if (P->status.pr_pid == 0 &&
2455 ((pid == 0 && lwp->lwp_id > 0) ||
2456 (lwp->lwp_id < pid))) {
2457 pid = lwp->lwp_id;
2458 }
2459 }
2460
2461 if (P->status.pr_pid != pid) {
2462 dprintf("No valid pid, setting to %ld\n", (ulong_t)pid);
2463 P->status.pr_pid = pid;
2464 P->psinfo.pr_pid = pid;
2465 }
2466
2467 /*
2468 * Consumers like mdb expect the first thread to actually have
2469 * an id of 1, on linux that is actually the pid. Find the the
2470 * thread with our process id, and set the id to 1
2471 */
2472 if ((lwp = lwpid2info(P, pid)) == NULL) {
2473 dprintf("Couldn't find first thread\n");
2474 *perr = G_STRANGE;
2475 goto err;
2476 }
2477
2478 dprintf("setting representative thread: %d\n", lwp->lwp_id);
2479
2480 lwp->lwp_id = 1;
2481 lwp->lwp_status.pr_lwpid = 1;
2482
2483 /* set representative thread */
2484 (void) memcpy(&P->status.pr_lwp, &lwp->lwp_status,
2485 sizeof (P->status.pr_lwp));
2486 }
2487 #endif /* CONFIG_LINUX_CORE_SUPPORT */
2488
2489 if (nleft != 0) {
2490 dprintf("Pgrab_core: note section malformed\n");
2491 *perr = G_STRANGE;
2492 goto err;
2493 }
2494
2495 if ((pagesize = Pgetauxval(P, AT_PAGESZ)) == -1) {
2496 pagesize = getpagesize();
2497 dprintf("AT_PAGESZ missing; defaulting to %d\n", pagesize);
2498 }
2499
2500 /*
2501 * Locate and label the mappings corresponding to the end of the
2502 * heap (MA_BREAK) and the base of the stack (MA_STACK).
2503 */
2504 if ((P->status.pr_brkbase != 0 || P->status.pr_brksize != 0) &&
2505 (brk_mp = Paddr2mptr(P, P->status.pr_brkbase +
2506 P->status.pr_brksize - 1)) != NULL)
2507 brk_mp->map_pmap.pr_mflags |= MA_BREAK;
2508 else
2509 brk_mp = NULL;
2510
2511 if ((stk_mp = Paddr2mptr(P, P->status.pr_stkbase)) != NULL)
2512 stk_mp->map_pmap.pr_mflags |= MA_STACK;
2513
2514 /*
2515 * At this point, we have enough information to look for the
2516 * executable and open it: we have access to the auxv, a psinfo_t,
2517 * and the ability to read from mappings provided by the core file.
2518 */
2519 (void) Pfindexec(P, aout_path, core_exec_open, &aout);
2520 dprintf("P->execname = \"%s\"\n", P->execname ? P->execname : "NULL");
2521 execname = P->execname ? P->execname : "a.out";
2522
2523 /*
2524 * Iterate through the sections, looking for the .dynamic and .interp
2525 * sections. If we encounter them, remember their section pointers.
2526 */
2527 for (scn = NULL; (scn = elf_nextscn(aout.e_elf, scn)) != NULL; ) {
2528 char *sname;
2529
2530 if ((gelf_getshdr(scn, &shdr) == NULL) ||
2531 (sname = elf_strptr(aout.e_elf, aout.e_hdr.e_shstrndx,
2532 (size_t)shdr.sh_name)) == NULL)
2533 continue;
2534
2535 if (strcmp(sname, ".interp") == 0)
2536 intp_scn = scn;
2537 }
2538
2539 /*
2540 * Get the AT_BASE auxv element. If this is missing (-1), then
2541 * we assume this is a statically-linked executable.
2542 */
2543 base_addr = Pgetauxval(P, AT_BASE);
2544
2545 /*
2546 * In order to get librtld_db initialized, we'll need to identify
2547 * and name the mapping corresponding to the run-time linker. The
2548 * AT_BASE auxv element tells us the address where it was mapped,
2549 * and the .interp section of the executable tells us its path.
2550 * If for some reason that doesn't pan out, just use ld.so.1.
2551 */
2552 if (intp_scn != NULL && (dp = elf_getdata(intp_scn, NULL)) != NULL &&
2553 dp->d_size != 0) {
2554 dprintf(".interp = <%s>\n", (char *)dp->d_buf);
2555 interp = dp->d_buf;
2556
2557 } else if (base_addr != (uintptr_t)-1L) {
2558 if (core_info->core_dmodel == PR_MODEL_LP64)
2559 interp = "/usr/lib/64/ld.so.1";
2560 else
2561 interp = "/usr/lib/ld.so.1";
2562
2563 dprintf(".interp section is missing or could not be read; "
2564 "defaulting to %s\n", interp);
2565 } else
2566 dprintf("detected statically linked executable\n");
2567
2568 /*
2569 * If we have an AT_BASE element, name the mapping at that address
2570 * using the interpreter pathname. Name the corresponding data
2571 * mapping after the interpreter as well.
2572 */
2573 if (base_addr != (uintptr_t)-1L) {
2574 elf_file_t intf;
2575
2576 P->map_ldso = core_name_mapping(P, base_addr, interp);
2577
2578 if (core_elf_open(&intf, interp, ET_DYN, NULL) == 0) {
2579 rd_loadobj_t rl;
2580 map_info_t *dmp;
2581
2582 rl.rl_base = base_addr;
2583 dmp = core_find_data(P, intf.e_elf, &rl);
2584
2585 if (dmp != NULL) {
2586 dprintf("renamed data at %p to %s\n",
2587 (void *)rl.rl_data_base, interp);
2588 (void) strncpy(dmp->map_pmap.pr_mapname,
2589 interp, PRMAPSZ);
2590 dmp->map_pmap.pr_mapname[PRMAPSZ - 1] = '\0';
2591 }
2592 }
2593
2594 core_elf_close(&intf);
2595 }
2596
2597 /*
2598 * If we have an AT_ENTRY element, name the mapping at that address
2599 * using the special name "a.out" just like /proc does.
2600 */
2601 if ((addr = Pgetauxval(P, AT_ENTRY)) != (uintptr_t)-1L)
2602 P->map_exec = core_name_mapping(P, addr, "a.out");
2603
2604 /*
2605 * If we're a statically linked executable (or we're looking at a
2606 * Linux core dump), then just locate the executable's text and data
2607 * and name them after the executable.
2608 */
2609 #ifndef CONFIG_LINUX_CORE_SUPPORT
2610 if (base_addr == (uintptr_t)-1L) {
2611 #else
2612 if (base_addr == (uintptr_t)-1L || from_linux) {
2613 #endif
2614 dprintf("looking for text and data: %s\n", execname);
2615 map_info_t *tmp, *dmp;
2616 file_info_t *fp;
2617 rd_loadobj_t rl;
2618
2619 if ((tmp = core_find_text(P, aout.e_elf, &rl)) != NULL &&
2620 (dmp = core_find_data(P, aout.e_elf, &rl)) != NULL) {
2621 (void) strncpy(tmp->map_pmap.pr_mapname,
2622 execname, PRMAPSZ);
2623 tmp->map_pmap.pr_mapname[PRMAPSZ - 1] = '\0';
2624 (void) strncpy(dmp->map_pmap.pr_mapname,
2625 execname, PRMAPSZ);
2626 dmp->map_pmap.pr_mapname[PRMAPSZ - 1] = '\0';
2627 }
2628
2629 if ((P->map_exec = tmp) != NULL &&
2630 (fp = malloc(sizeof (file_info_t))) != NULL) {
2631
2632 (void) memset(fp, 0, sizeof (file_info_t));
2633
2634 list_link(fp, &P->file_head);
2635 tmp->map_file = fp;
2636 P->num_files++;
2637
2638 fp->file_ref = 1;
2639 fp->file_fd = -1;
2640
2641 fp->file_lo = malloc(sizeof (rd_loadobj_t));
2642 fp->file_lname = strdup(execname);
2643
2644 if (fp->file_lo)
2645 *fp->file_lo = rl;
2646 if (fp->file_lname)
2647 fp->file_lbase = basename(fp->file_lname);
2648 if (fp->file_rname)
2649 fp->file_rbase = basename(fp->file_rname);
2650
2651 (void) strcpy(fp->file_pname,
2652 P->mappings[0].map_pmap.pr_mapname);
2653 fp->file_map = tmp;
2654
2655 Pbuild_file_symtab(P, fp);
2656
2657 if (dmp != NULL) {
2658 dmp->map_file = fp;
2659 fp->file_ref++;
2660 }
2661 }
2662 }
2663
2664 core_elf_close(&aout);
2665
2666 /*
2667 * We now have enough information to initialize librtld_db.
2668 * After it warms up, we can iterate through the load object chain
2669 * in the core, which will allow us to construct the file info
2670 * we need to provide symbol information for the other shared
2671 * libraries, and also to fill in the missing mapping names.
2672 */
2673 rd_log(_libproc_debug);
2674
2675 if ((P->rap = rd_new(P)) != NULL) {
2676 (void) rd_loadobj_iter(P->rap, (rl_iter_f *)
2677 core_iter_mapping, P);
2678
2679 if (core_info->core_errno != 0) {
2680 errno = core_info->core_errno;
2681 *perr = G_STRANGE;
2682 goto err;
2683 }
2684 } else
2685 dprintf("failed to initialize rtld_db agent\n");
2686
2687 /*
2688 * If there are sections, load them and process the data from any
2689 * sections that we can use to annotate the file_info_t's.
2690 */
2691 core_load_shdrs(P, &core);
2692
2693 /*
2694 * If we previously located a stack or break mapping, and they are
2695 * still anonymous, we now assume that they were MAP_ANON mappings.
2696 * If brk_mp turns out to now have a name, then the heap is still
2697 * sitting at the end of the executable's data+bss mapping: remove
2698 * the previous MA_BREAK setting to be consistent with /proc.
2699 */
2700 if (stk_mp != NULL && stk_mp->map_pmap.pr_mapname[0] == '\0')
2701 stk_mp->map_pmap.pr_mflags |= MA_ANON;
2702 if (brk_mp != NULL && brk_mp->map_pmap.pr_mapname[0] == '\0')
2703 brk_mp->map_pmap.pr_mflags |= MA_ANON;
2704 else if (brk_mp != NULL)
2705 brk_mp->map_pmap.pr_mflags &= ~MA_BREAK;
2706
2707 *perr = 0;
2708 return (P);
2709
2710 err:
2711 Pfree(P);
2712 core_elf_close(&aout);
2713 return (NULL);
2714 }
2715
2716 /*
2717 * Grab a core file using a pathname. We just open it and call Pfgrab_core().
2718 */
2719 struct ps_prochandle *
2720 Pgrab_core(const char *core, const char *aout, int gflag, int *perr)
2721 {
2722 int fd, oflag = (gflag & PGRAB_RDONLY) ? O_RDONLY : O_RDWR;
2723
2724 if ((fd = open64(core, oflag)) >= 0)
2725 return (Pfgrab_core(fd, aout, perr));
2726
2727 if (errno != ENOENT)
2728 *perr = G_STRANGE;
2729 else
2730 *perr = G_NOCORE;
2731
2732 return (NULL);
2733 }
unleashed repo fork