| blob | 14096d4f67896b5e1419cece24a89ab7bea69ec8 |
1 /* -*- mode: C; c-basic-offset: 3; -*- */
3 /*--------------------------------------------------------------------*/
4 /*--- Read DWARF1/2/3/4 debug info. readdwarf.c ---*/
5 /*--------------------------------------------------------------------*/
7 /*
8 This file is part of Valgrind, a dynamic binary instrumentation
9 framework.
11 Copyright (C) 2000-2013 Julian Seward
12 jseward@acm.org
14 This program is free software; you can redistribute it and/or
15 modify it under the terms of the GNU General Public License as
16 published by the Free Software Foundation; either version 2 of the
17 License, or (at your option) any later version.
19 This program is distributed in the hope that it will be useful, but
20 WITHOUT ANY WARRANTY; without even the implied warranty of
21 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
22 General Public License for more details.
24 You should have received a copy of the GNU General Public License
25 along with this program; if not, write to the Free Software
26 Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA
27 02111-1307, USA.
29 The GNU General Public License is contained in the file COPYING.
30 */
32 #if defined(VGO_linux) || defined(VGO_darwin)
50 /*------------------------------------------------------------*/
51 /*--- ---*/
52 /*--- Read line number and CFI info from DWARF1, DWARF2 ---*/
53 /*--- and to some extent DWARF3 sections. ---*/
54 /*--- ---*/
55 /*------------------------------------------------------------*/
57 /* The below "safe_*ix" functions allow to resist to malformed dwarf info:
58 if dwarf info contains wrong file or dirname indexes, these are (silently!)
59 ignored. */
61 /* if xa_ix is a valid index in fndn_ix_xa,
62 return the element (i.e. the UInt indexing in fndnpool).
63 If xa_ix is invalid, return 0 (i.e. the "null" element in fndnpool). */
65 {
69 }
71 /* if xa_ix is a valid index in dirname_xa,
72 return the element (i.e. the HChar*).
73 If xa_ix is invalid, return NULL. */
75 {
79 }
81 /*------------------------------------------------------------*/
82 /*--- Read DWARF2 format line number info. ---*/
83 /*------------------------------------------------------------*/
85 /* Structure holding info extracted from the a .debug_line
86 section. */
88 {
89 ULong li_length;
90 UShort li_version;
91 ULong li_header_length;
92 UChar li_min_insn_length;
93 UChar li_max_ops_per_insn;
94 UChar li_default_is_stmt;
95 Int li_line_base;
96 UChar li_line_range;
97 UChar li_opcode_base;
98 }
99 DebugLineInfo;
101 /* Structure holding additional infos found from a .debug_info
102 * compilation unit block */
104 {
105 /* Feel free to add more members here if you need ! */
110 }
111 UnitInfo;
113 /* Line number opcodes. */
114 enum dwarf_line_number_ops
115 {
126 /* DWARF 3. */
130 };
132 /* Line number extended opcodes. */
133 enum dwarf_line_number_x_ops
134 {
139 };
142 {
143 /* Information for the last statement boundary.
144 * Needed to calculate statement lengths. */
145 Addr last_address;
146 UInt last_file;
147 UInt last_line;
149 Addr address;
150 UInt file;
151 UInt line;
152 UInt column;
153 Int is_stmt;
154 Int basic_block;
155 UChar end_sequence;
159 /* FIXME: duplicated in readdwarf3.c */
160 /* Read a 'leb128' and advance *data accordingly. */
162 {
165 UChar byte;
173 }
180 }
182 /* FIXME: duplicated in readdwarf3.c */
185 }
187 /* FIXME: duplicated in readdwarf3.c */
190 }
192 /* Read what the DWARF3 spec calls an "initial length field". This
193 uses up either 4 or 12 bytes of the input and produces a 32-bit or
194 64-bit number respectively.
196 Read 32-bit value from p. If it is 0xFFFFFFFF, instead read a
197 64-bit bit value from p+4. This is used in 64-bit dwarf to encode
198 some table lengths. Advance the cursor (p) accordingly.
200 XXX this is a hack: the endianness of the initial length field is
201 specified by the DWARF we're reading. This happens to work only
202 because we don't do cross-arch jitting, hence this code runs on a
203 platform of the same endianness as the DWARF it is reading. Same
204 applies for initial lengths for CIE/FDEs and probably in zillions
205 of other places -- to be precise, exactly the places where
206 binutils/dwarf.c calls byte_get().
207 */
208 static
210 {
218 }
219 }
221 static
223 {
224 /* Something of a roundabout approach .. the modification to p_img
225 is abandoned. */
227 }
232 static
234 {
246 }
248 ////////////////////////////////////////////////////////////////////
249 ////////////////////////////////////////////////////////////////////
251 /* Handled an extended line op starting at *data, and advance *data
252 accordingly. */
253 static
257 {
261 "Warning: DWARF2 reader: "
264 }
273 /* JRS: added for compliance with spec; is pointless due to
274 reset_state_machine below */
280 di,
286 );
287 }
288 }
302 }
315 }
325 }
326 }
328 ////////////////////////////////////////////////////////////////////
329 ////////////////////////////////////////////////////////////////////
331 /* read a .debug_line section block for a compilation unit
332 *
333 * Input: - theBlock must point to the start of the block
334 * for the given compilation unit
335 * - ui contains additional info like the compilation dir
336 * for this unit
337 *
338 * Output: - si debug info structures get updated
339 */
340 static
344 Int noLargerThan )
345 {
346 Int i;
347 DebugLineInfo info;
348 Bool is64;
350 UInt fndn_ix;
357 /* fndn_ix_xa is an xarray of fndn_ix (indexes in di->fndnpool) which
358 are build from file names harvested from the DWARF2
359 info. Entry [0] is the "null" pool index and is never referred to
360 by the state machine.
362 Similarly, dirname_xa is an xarray of directory names. Entry [0]
363 is also NULL and denotes "we don't know what the path is", since
364 that is different from "the path is the empty string". Unlike
365 the fndn_ix_xa table, the state machine does refer to entry [0],
366 which basically means "." ("the current directory of the
367 compilation", whatever that means, according to the DWARF3
368 spec.)
369 */
371 /* Fails due to gcc padding ...
372 vg_assert(sizeof(DWARF2_External_LineInfo)
373 == sizeof(DWARF2_Internal_LineInfo));
374 */
381 /* DWARF2 starts numbering filename entries at 1, so we need to
382 add a dummy zeroth entry to the table. */
388 else
397 /* Check the length of the block. */
400 "DWARF line info appears to be corrupt "
403 }
405 /* Check its version number. */
413 "Only DWARF version 2, 3 and 4 line info "
416 }
429 /* We only support machines with one opcode per instruction
430 for now. If we ever want to support VLIW machines there is
431 code to handle multiple opcodes per instruction in the
432 patch attached to BZ#233595.
433 */
440 }
446 }
453 /* Josef Weidendorfer (20021021) writes:
455 It seems to me that the Intel Fortran compiler generates bad
456 DWARF2 line info code: It sets "is_stmt" of the state machine in
457 the the line info reader to be always false. Thus, there is
458 never a statement boundary generated and therefore never a
459 instruction range/line number mapping generated for valgrind.
461 Please have a look at the DWARF2 specification, Ch. 6.2
462 (x86.ddj.com/ftp/manuals/tools/dwarf.pdf). Perhaps I understand
463 this wrong, but I don't think so.
465 I just had a look at the GDB DWARF2 reader... They completely
466 ignore "is_stmt" when recording line info ;-) That's the reason
467 "objdump -S" works on files from the the intel fortran compiler.
469 Therefore: */
472 /* JRS: changed (UInt*) to (UChar*) */
494 DiCursor end_of_sequence
499 /* Read the contents of the Opcodes table. */
508 }
510 }
511 /* skip over "standard_opcode_lengths" */
514 /* Read the contents of the Directory table. */
521 # define NBUF 4096
528 /* If data[0] is '/', then 'data' is an absolute path and we
529 don't mess with it. Otherwise, if we can, construct the
530 path 'ui->compdir' ++ "/" ++ 'data'. */
533 /* not an absolute path */
535 /* actually got something sensible for compdir */
539 {
551 /* just use 'data'. */
555 }
560 # undef NBUF
561 }
570 }
573 /* Read the contents of the File Name table. This produces a bunch
574 of fndn_ix in fndn_ix_xa. */
578 }
594 i++;
596 }
605 }
611 /* Now display the statements. */
638 /* only add a statement if there was a previous boundary */
641 di,
647 0
648 );
649 }
653 }
654 }
669 /* only add a statement if there was a previous boundary */
672 di,
678 0
679 );
680 }
684 }
698 }
706 }
714 }
721 }
729 }
735 }
745 }
747 /* XXX: Need something to get 2 bytes */
754 }
772 Int j;
778 }
782 }
792 out:
795 }
797 ////////////////////////////////////////////////////////////////////
798 ////////////////////////////////////////////////////////////////////
800 /* Return abbrev for given code
801 * Returned cursor points to the tag
802 * */
804 {
811 ULong name;
815 }
817 }
818 }
820 /* Read general information for a particular compile unit block in
821 * the .debug_info section. In particular read the name, compdir and
822 * stmt_list needed to parse the line number information.
823 *
824 * Input: - unitblock is the start of a compilation
825 * unit block in .debuginfo section
826 * - debugabbrev is start of .debug_abbrev section
827 * - debugstr is start of .debug_str section
828 * - debugstr_alt_img is start of .debug_str section in alt debug file
829 *
830 * Output: Fill members of ui pertaining to the compilation unit:
831 * - ui->name is the name of the compilation unit
832 * - ui->compdir is the compilation unit directory
833 * - ui->stmt_list is the offset in .debug_line section
834 * for the dbginfos of this compilation unit
835 *
836 * Note : the output strings are not allocated and point
837 * directly to the memory-mapped section.
838 */
839 static
841 DiCursor unitblock_img,
842 DiCursor debugabbrev_img,
843 DiCursor debugstr_img,
844 DiCursor debugstr_alt_img )
845 {
848 UShort ver;
850 UChar addr_size;
852 DiCursor end_img;
853 DiCursor abbrev_img;
858 /* Read the compilation unit header in .debug_info section - See p 70 */
860 /* This block length */
863 /* version should be 2, 3 or 4 */
866 /* get offset in abbrev */
870 /* Address size */
873 /* End of this block */
876 /* Abbreviation data for this block */
879 /* Read the compilation unit entry - this is always the first DIE.
880 * See DWARF4 para 7.5. */
882 UInt tag;
886 /* Read abbreviation header */
889 /* This isn't illegal, but somewhat unlikely. Normally the
890 * first abbrev describes the first DIE, the compile_unit.
891 * But maybe this abbrevation data is shared with another
892 * or it is a NULL entry used for padding. See para 7.5.3. */
894 acode );
895 }
902 /* DW_CHILDREN_yes or DW_CHILDREN_no */
905 /* And loop on entries */
907 /* Read entry definition */
915 /* Read data */
916 /* Attributes encoding explained p 71 */
919 /* Decode form. For most kinds, Just skip the amount of data since
920 we don't use it for now */
921 /* JRS 9 Feb 06: This now handles 64-bit DWARF too. In
922 64-bit DWARF, lineptr (and loclistptr,macptr,rangelistptr
923 classes) use FORM_data8, not FORM_data4. Also,
924 FORM_ref_addr and FORM_strp are 64-bit values, not 32-bit
925 values. */
926 /* TJH 27 Apr 10: in DWARF 4 lineptr (and loclistptr,macptr,
927 rangelistptr classes) use FORM_sec_offset which is 64 bits
928 in 64 bit DWARF and 32 bits in 32 bit DWARF. */
929 /* JRS 20 Apr 11: LLVM-2.9 encodes DW_AT_stmt_list using
930 FORM_addr rather than the FORM_data4 that GCC uses. Hence
931 handle FORM_addr too. */
933 /* Those cases extract the data properly */
941 /* 2006-01-01: only generate a value if a debug_str
942 section was found) */
961 };
966 /* perhaps should assign unconditionally to cval? */
968 /* TODO : Following ones just skip data - implement if you need */
983 }
1035 form );
1037 }
1039 /* Now store the members we need in the UnitInfo structure */
1044 }
1045 }
1047 * this might have been a partial unit or broken DWARF info.
1048 * That's enough info for us, and we are not gdb ! */
1049 }
1052 ////////////////////////////////////////////////////////////////////
1053 ////////////////////////////////////////////////////////////////////
1055 /* Collect the debug info from DWARF3 debugging sections
1056 * of a given module.
1057 *
1058 * Inputs: given .debug_xxx sections
1059 * Output: update di to contain all the DWARF3 debug infos
1060 */
1069 {
1070 UnitInfo ui;
1071 UShort ver;
1072 ULong blklen;
1073 Bool blklen_is_64;
1075 /* Make sure we at least have a header for the first block */
1080 }
1087 /* Iterate on all the blocks we find in .debug_info */
1092 /* Read the compilation unit header in .debug_info section - See
1093 p 70 */
1094 /* This block length */
1099 end1_img )) {
1103 }
1105 /* version should be 2 */
1111 }
1113 /* Fill ui with offset in .debug_line and compdir */
1130 }
1132 /* Ignore blocks with no .debug_line associated block */
1141 }
1143 /* Read the .debug_line block for this compile unit */
1148 );
1149 }
1150 }
1153 ////////////////////////////////////////////////////////////////////
1154 ////////////////////////////////////////////////////////////////////
1156 /*------------------------------------------------------------*/
1157 /*--- Read DWARF1 format line number info. ---*/
1158 /*------------------------------------------------------------*/
1160 /* DWARF1 appears to be redundant, but nevertheless the Lahey Fortran
1161 compiler generates it.
1162 */
1164 /* The following three enums (dwarf_tag, dwarf_form, dwarf_attribute)
1165 are taken from the file include/elf/dwarf.h in the GNU gdb-6.0
1166 sources, which are Copyright 1992, 1993, 1995, 1999 Free Software
1167 Foundation, Inc and naturally licensed under the GNU General Public
1168 License version 2 or later.
1169 */
1171 /* Tag names and codes. */
1182 /* 0x0008 -- reserved */
1183 /* 0x0009 -- reserved */
1188 /* 0x000e -- reserved */
1210 /* GNU extensions */
1216 };
1218 /* Form names and codes. */
1229 };
1231 /* Attribute names and codes. */
1246 /* (0x00e0|FORM_xxxx) -- reserved */
1255 /* (0x0170|FORM_xxxx) -- reserved */
1256 /* (0x0180|FORM_xxxx) -- reserved */
1296 /* GNU extensions. */
1304 };
1306 /* end of enums taken from gdb-6.0 sources */
1307 #if 0
1312 {
1313 UInt stmt_list;
1314 Bool stmt_list_found;
1324 /* This loop scans the DIEs. */
1332 /* We're only interested in compile_unit DIEs; ignore others. */
1336 }
1342 /* We've got a compile_unit DIE starting at (dwarf1d +
1343 die_offset+6). Try and find the AT_name and AT_stmt_list
1344 attributes. Then, finally, we can read the line number info
1345 for this source file. */
1347 /* The next 3 are set as we find the relevant attrs. */
1352 /* This loop scans the Attrs inside compile_unit DIEs. */
1362 /* We have to examine the attribute to figure out its
1363 length. */
1371 }
1379 /* Zero terminated string, step over it. */
1383 at_offset++;
1384 at_offset++;
1393 /* So, did we find the required stuff for a line number table in
1394 this DIE? If yes, read it. */
1397 ) {
1398 /* Table starts:
1399 Length:
1400 4 bytes, includes the entire table
1401 Base address:
1402 unclear (4? 8?), assuming native pointer size here.
1403 Then a sequence of triples
1404 (source line number -- 32 bits
1405 source line column -- 16 bits
1406 address delta -- 32 bits)
1407 */
1408 Addr base;
1409 Int len;
1422 UInt line;
1423 UShort col;
1424 UInt delta;
1438 }
1441 }
1442 }
1444 /* Move on the the next DIE. */
1449 }
1450 #endif
1452 /*------------------------------------------------------------*/
1453 /*--- Read call-frame info from an .eh_frame section ---*/
1454 /*------------------------------------------------------------*/
1456 /* Sources of info:
1458 The DWARF3 spec, available from http://www.dwarfstd.org/Download.php
1460 This describes how to read CFA data from .debug_frame sections.
1461 So as to maximise everybody's annoyance and confusion, .eh_frame
1462 sections are almost the same as .debug_frame sections, but differ
1463 in a few subtle and ill documented but important aspects.
1465 Generic ELF Specification, sections 7.5 (DWARF Extensions) and 7.6
1466 (Exception Frames), available from
1468 http://www.linux-foundation.org/spec/book/ELF-generic/ELF-generic.html
1470 This really does describe .eh_frame, at least the aspects that
1471 differ from standard DWARF3. It's better than guessing, and
1472 (marginally) more fun than reading the gdb source code.
1473 */
1475 /* Useful info ..
1477 In general:
1478 gdb-6.3/gdb/dwarf2-frame.c
1480 gdb-6.3/gdb/i386-tdep.c:
1482 DWARF2/GCC uses the stack address *before* the function call as a
1483 frame's CFA. [jrs: I presume this means %esp before the call as
1484 the CFA].
1486 JRS: on amd64, the dwarf register numbering is, as per
1487 gdb-6.3/gdb/amd64-tdep.c and also amd64-abi-0.98.pdf:
1489 0 1 2 3 4 5 6 7
1490 RAX RDX RCX RBX RSI RDI RBP RSP
1492 8 ... 15
1493 R8 ... R15
1495 16 is the return address (RIP)
1496 "The table defines Return Address to have a register number,
1497 even though the address is stored in 0(%rsp) and not in a
1498 physical register."
1500 17 ... 24
1501 XMM0 ... XMM7
1503 25 ... 32
1504 XMM8 ... XMM15
1506 33 ... 40
1507 ST0 ... ST7
1509 41 ... 48
1510 MM0 ... MM7
1512 49 RFLAGS
1513 50,51,52,53,54,55 ES,CS,SS,DS,FS,GS
1514 58 FS.BASE (what's that?)
1515 59 GS.BASE (what's that?)
1516 62 TR (task register)
1517 63 LDTR (LDT register)
1518 64 MXCSR
1519 65 FCW (x87 control word)
1520 66 FSW (x86 status word)
1522 On x86 I cannot find any documentation. It _appears_ to be the
1523 actual instruction encoding, viz:
1525 0 1 2 3 4 5 6 7
1526 EAX ECX EDX EBX ESP EBP ESI EDI
1528 8 is the return address (EIP) */
1531 /* Comments re DW_CFA_set_loc, 16 Nov 06.
1533 JRS:
1534 Someone recently sent me a libcrypto.so.0.9.8 as distributed with
1535 Ubuntu of some flavour, compiled with gcc 4.1.2 on amd64. It
1536 causes V's CF reader to complain a lot:
1538 >> --19976-- DWARF2 CFI reader: unhandled CFI instruction 0:24
1539 >> --19976-- DWARF2 CFI reader: unhandled CFI instruction 0:24
1540 >> --19976-- DWARF2 CFI reader: unhandled CFI instruction 0:24
1541 >> --19976-- DWARF2 CFI reader: unhandled CFI instruction 0:24
1542 >> --19976-- DWARF2 CFI reader: unhandled CFI instruction 0:48
1543 >> --19976-- DWARF2 CFI reader: unhandled CFI instruction 0:24
1545 After chasing this around a bit it seems that the CF bytecode
1546 parser lost sync at a DW_CFA_set_loc, which has a single argument
1547 denoting an address.
1549 As it stands that address is extracted by read_Addr(). On amd64
1550 that just fetches 8 bytes regardless of anything else.
1552 read_encoded_Addr() is more sophisticated. This appears to take
1553 into account some kind of encoding flag. When I replace the uses
1554 of read_Addr by read_encoded_Addr for DW_CFA_set_loc, the
1555 complaints go away, there is no loss of sync, and the parsed CF
1556 instructions are the same as shown by readelf --debug-dump=frames.
1558 So it seems a plausible fix. The problem is I looked in the DWARF3
1559 spec and completely failed to figure out whether or not the arg to
1560 DW_CFA_set_loc is supposed to be encoded in a way suitable for
1561 read_encoded_Addr, nor for that matter any description of what it
1562 is that read_encoded_Addr is really decoding.
1564 TomH:
1565 The problem is that the encoding is not standard - the eh_frame
1566 section uses the same encoding as the dwarf_frame section except
1567 for a few small changes, and this is one of them. So this is not
1568 something the DWARF standard covers.
1570 There is an augmentation string to indicate what is going on though
1571 so that programs can recognise it.
1573 What we are doing seems to match what gdb 6.5 and libdwarf 20060614
1574 do though. I'm not sure about readelf though.
1576 (later): Well dwarfdump barfs on it:
1578 dwarfdump ERROR: dwarf_get_fde_info_for_reg:
1579 DW_DLE_DF_FRAME_DECODING_ERROR(193) (193)
1581 I've looked at binutils as well now, and the code in readelf agrees
1582 with your patch - ie it treats set_loc as having an encoded address
1583 if there is a zR augmentation indicating an encoding.
1585 Quite why gdb and libdwarf don't understand this is an interesting
1586 question...
1588 Final outcome: all uses of read_Addr were replaced by
1589 read_encoded_Addr. A new type AddressDecodingInfo was added to
1590 make it relatively clean to plumb through the extra info needed by
1591 read_encoded_Addr.
1592 */
1594 /* More badness re address encoding, 12 Jan 07.
1596 Most gcc provided CIEs have a "zR" augmentation, which means they
1597 supply their own address encoding, and that works fine. However,
1598 some icc9 supplied CIEs have no augmentation, which means they use
1599 the default_Addr_encoding(). That says to use a machine-word sized
1600 value, literally unmodified.
1602 Since .so's are, in general, relocated when loaded, having absolute
1603 addresses in the CFI data makes no sense when read_encoded_Addr is
1604 used to find the initial location for a FDE. The resulting saga:
1606 TomH:
1607 > I'm chasing a stack backtrace failure for an amd64 .so which was
1608 > created I believe by icc 9.1. After a while I wound up looking at
1609 > this: (readdwarf.c)
1610 >
1611 > 5083 tom static UChar default_Addr_encoding ( void )
1612 > 3584 tom {
1613 > 3584 tom switch (sizeof(Addr)) {
1614 > 3584 tom case 4: return DW_EH_PE_udata4;
1615 > 3584 tom case 8: return DW_EH_PE_udata8;
1616 > 3584 tom default: vg_assert(0);
1617 > 3584 tom }
1618 > 3584 tom }
1619 >
1620 > If a CIE does not have an "augmentation string" (typically "zR") then
1621 > addresses are decoded as described by default_Addr_encoding. If there
1622 > is an 'R' in the augmentation string then the encoding to use
1623 > is specified by the CIE itself, which works fine with GCC compiled code
1624 > since that always appears to specify zR.
1626 Correct.
1628 > Problem is this .so has no augmentation string and so uses the
1629 > default encoding, viz DW_EH_PE_udata8. That appears to mean
1630 > "read a 64 bit number" and use that as-is (for the starting value
1631 > of the program counter when running the CFA program).
1633 Strictly speaking the default is DW_EH_PE_absptr, but that amounts
1634 to either udata4 or udata8 depending on the platform's pointer size
1635 which is a shortcut I used.
1637 > For this .so that gives nonsense (very small) PCs which are later
1638 > rejected by the sanity check which ensures PC ranges fall inside
1639 > the mapped text segment. It seems like the .so expects to have the
1640 > start VMA of the text segment added on. This would correspond to
1641 >
1642 > static UChar default_Addr_encoding ( void )
1643 > {
1644 > switch (sizeof(Addr)) {
1645 > case 4: return DW_EH_PE_textrel + DW_EH_PE_udata4;
1646 > case 8: return DW_EH_PE_textrel + DW_EH_PE_udata8;
1647 > default: vg_assert(0);
1648 > }
1649 > }
1651 The problem you're seeing is that you have absolute pointers inside
1652 a shared library, which obviously makes little sense on the face of
1653 things as how would the linker know where the library will be
1654 loaded?
1656 The answer of course is that it doesn't, so if it points absolute
1657 pointers in the frame unwind data is has to include relocations for
1658 them, and I'm betting that if you look at the relocations in the
1659 library you will there are some for that data.
1661 That is fine of course when ld.so maps the library - it will
1662 relocate the eh_frame data as it maps it (or prelinking will
1663 already have done so) and when the g++ exception code kicks in and
1664 unwinds the stack it will see relocated data.
1666 We of course are mapping the section from the ELF file ourselves
1667 and are not applying the relocations, hence the problem you are
1668 seeing.
1670 Strictly speaking we should apply the relocations but the cheap
1671 solution is essentially to do what you've done - strictly speaking
1672 you should adjust by the difference between the address the library
1673 was linked for and the address it has been loaded at, but a shared
1674 library will normally be linked for address zero I believe. It's
1675 possible that prelinking might change that though?
1677 JRS:
1678 That all syncs with what I am seeing.
1680 So what I am inclined to do is:
1682 - Leave default_Addr_encoding as it is
1684 - Change read_encoded_Addr's handling of "case DW_EH_PE_absptr" so
1685 it sets base to, as you say, the difference between the address
1686 the library was linked for and the address it has been loaded at
1687 (== the SegInfo's text_bias)
1689 Does that sound sane? I think it should even handle the prelinked
1690 case.
1692 (JRS, later)
1694 Hmm. Plausible as it sounds, it doesn't work. It now produces
1695 bogus backtraces for locations inside the (statically linked)
1696 memcheck executable.
1698 Besides, there are a couple of other places where read_encoded_Addr
1699 is used -- one of which is used to establish the length of the
1700 address range covered by the current FDE:
1702 fde_arange = read_encoded_Addr(&nbytes, &adi, data);
1704 and it doesn't seem to make any sense for read_encoded_Addr to add
1705 on the text segment bias in that context. The DWARF3 spec says
1706 that both the initial_location and address_range (length) fields
1707 are encoded the same way ("target address"), so it is unclear at
1708 what stage in the process it would be appropriate to relocate the
1709 former but not the latter.
1711 One unprincipled kludge that does work is the following: just
1712 before handing one of the address range fragments off to
1713 ML_(addDiCfSI) for permanent storage, check its start address. If
1714 that is very low (less than 2 M), and is far below the mapped text
1715 segment, and adding the text bias would move the fragment entirely
1716 inside the mapped text segment, then do so. A kind of kludged
1717 last-minute relocation, if you like.
1719 12 Jan 07: committing said kludge (see kludge_then_addDiCfSI). If
1720 the situation clarifies, it can easily enough be backed out and
1721 replaced by a better fix.
1722 */
1724 /* --------------- Decls --------------- */
1726 #if defined(VGP_x86_linux)
1727 # define FP_REG 5
1728 # define SP_REG 4
1729 # define RA_REG_DEFAULT 8
1730 #elif defined(VGP_amd64_linux)
1731 # define FP_REG 6
1732 # define SP_REG 7
1733 # define RA_REG_DEFAULT 16
1734 #elif defined(VGP_ppc32_linux)
1735 # define FP_REG 1
1736 # define SP_REG 1
1737 # define RA_REG_DEFAULT 65
1738 #elif defined(VGP_ppc64be_linux) || defined(VGP_ppc64le_linux)
1739 # define FP_REG 1
1740 # define SP_REG 1
1741 # define RA_REG_DEFAULT 65
1742 #elif defined(VGP_arm_linux)
1743 # define FP_REG 12
1744 # define SP_REG 13
1745 # define RA_REG_DEFAULT 14
1746 #elif defined(VGP_arm64_linux)
1747 # define FP_REG 29
1748 # define SP_REG 31
1749 # define RA_REG_DEFAULT 30
1750 #elif defined(VGP_x86_darwin)
1751 # define FP_REG 5
1752 # define SP_REG 4
1753 # define RA_REG_DEFAULT 8
1754 #elif defined(VGP_amd64_darwin)
1755 # define FP_REG 6
1756 # define SP_REG 7
1757 # define RA_REG_DEFAULT 16
1758 #elif defined(VGP_s390x_linux)
1762 #elif defined(VGP_mips32_linux)
1763 # define FP_REG 30
1764 # define SP_REG 29
1765 # define RA_REG_DEFAULT 31
1766 #elif defined(VGP_mips64_linux)
1767 # define FP_REG 30
1768 # define SP_REG 29
1769 # define RA_REG_DEFAULT 31
1770 #else
1772 #endif
1774 /* The number of regs we are prepared to unwind. The number for
1775 arm-linux (320) seems ludicrously high, but the ARM IHI 0040A page
1776 7 (DWARF for the ARM Architecture) specifies that values up to 320
1777 might exist, for Neon/VFP-v3. */
1778 #if defined(VGP_ppc32_linux) || defined(VGP_ppc64be_linux) \
1779 || defined(VGP_ppc64le_linux) || defined(VGP_mips32_linux) \
1780 || defined(VGP_mips64_linux)
1781 # define N_CFI_REGS 72
1782 #elif defined(VGP_arm_linux)
1783 # define N_CFI_REGS 320
1784 #elif defined(VGP_arm64_linux)
1785 # define N_CFI_REGS 128
1786 #else
1787 # define N_CFI_REGS 20
1788 #endif
1790 /* Instructions for the automaton */
1791 enum dwarf_cfa_primary_ops
1792 {
1797 };
1799 enum dwarf_cfa_secondary_ops
1800 {
1829 };
1831 #define DW_EH_PE_absptr 0x00
1832 #define DW_EH_PE_omit 0xff
1834 #define DW_EH_PE_uleb128 0x01
1835 #define DW_EH_PE_udata2 0x02
1836 #define DW_EH_PE_udata4 0x03
1837 #define DW_EH_PE_udata8 0x04
1838 #define DW_EH_PE_sleb128 0x09
1839 #define DW_EH_PE_sdata2 0x0A
1840 #define DW_EH_PE_sdata4 0x0B
1841 #define DW_EH_PE_sdata8 0x0C
1842 #define DW_EH_PE_signed 0x08
1844 #define DW_EH_PE_pcrel 0x10
1845 #define DW_EH_PE_textrel 0x20
1846 #define DW_EH_PE_datarel 0x30
1847 #define DW_EH_PE_funcrel 0x40
1848 #define DW_EH_PE_aligned 0x50
1850 #define DW_EH_PE_indirect 0x80
1853 /* RegRule and UnwindContext are used temporarily to do the unwinding.
1854 The result is then summarised into a sequence of CfiSIs, if
1855 possible. UnwindContext effectively holds the state of the
1856 abstract machine whilst it is running.
1858 The CFA can either be a signed offset from a register,
1859 or an expression:
1861 CFA = cfa_reg + cfa_off when UnwindContext.cfa_is_regoff==True
1862 | [[ cfa_expr_id ]]
1864 When .cfa_is_regoff == True, cfa_expr_id must be zero
1865 When .cfa_is_regoff == False, cfa_reg must be zero
1866 and cfa_off must be zero
1868 RegRule describes, for each register, how to get its
1869 value in the previous frame, where 'cfa' denotes the cfa
1870 for the frame as a whole:
1872 RegRule = RR_Undef -- undefined
1873 | RR_Same -- same as in previous frame
1874 | RR_CFAOff arg -- is at * ( cfa + arg )
1875 | RR_CFAValOff arg -- is ( cfa + arg )
1876 | RR_Reg arg -- is in register 'arg'
1877 | RR_Expr arg -- is at * [[ arg ]]
1878 | RR_ValExpr arg -- is [[ arg ]]
1879 | RR_Arch -- dunno
1881 Note that RR_Expr is redundant since the same can be represented
1882 using RR_ValExpr with an explicit dereference (CfiExpr_Deref) at
1883 the outermost level.
1885 All expressions are stored in exprs in the containing
1886 UnwindContext. Since the UnwindContext gets reinitialised for each
1887 new FDE, summarise_context needs to copy out any expressions it
1888 wants to keep into the cfsi_exprs field of the containing SegInfo.
1889 */
1890 typedef
1894 /* meaning: int offset for CFAoff/CFAValOff
1895 reg # for Reg
1896 expr index for Expr/ValExpr */
1897 Int arg;
1898 }
1899 RegRule;
1902 {
1916 }
1917 }
1920 /* Size of the stack of register unwind rules. This is only
1921 exceedingly rarely used, so a stack of size 1 should actually work
1922 with almost all compiler-generated CFA. */
1923 #define N_RR_STACK 4
1925 typedef
1927 /* Read-only fields (set by the CIE) */
1928 Int code_a_f;
1929 Int data_a_f;
1930 Addr initloc;
1931 Int ra_reg;
1932 /* The rest of these fields can be modifed by
1933 run_CF_instruction. */
1934 /* The LOC entry */
1935 Addr loc;
1936 /* We need a stack of these in order to handle
1937 DW_CFA_{remember,restore}_state. */
1939 /* The CFA entry. This can be either reg+/-offset or an expr. */
1941 Int cfa_reg;
1944 /* Register unwind rules. */
1946 }
1949 currently-in-use rule set. */
1950 /* array of CfiExpr, shared by reg[] and cfa_expr_ix */
1952 }
1953 UnwindContext;
1956 {
1969 }
1974 }
1976 }
1979 {
1982 /* ctx->code_a_f = 0;
1983 ctx->data_a_f = 0;
1984 ctx->initloc = 0; */
1986 /* ctx->loc = 0;
1987 ctx->exprs = NULL;
1988 ctx->state_sp = 0; */
1991 /* ctx->state[j].cfa_reg = 0;
1992 ctx->state[j].cfa_off = 0;
1993 ctx->state[j].cfa_expr_ix = 0; */
1997 /* ctx->state[j].reg[i].arg = 0; */
1998 }
1999 # if defined(VGA_arm)
2000 /* All callee-saved registers (or at least the ones we are
2001 summarising for) should start out as RR_Same, on ARM. */
2003 /* ctx->state[j].reg[13].tag = RR_Same; */
2007 /* this can't be right though: R12 (IP) isn't callee saved. */
2008 # elif defined(VGA_arm64)
2009 /* Callee-saved registers (that we are interested in) should
2010 start out as RR_Same. */
2013 # endif
2014 }
2015 }
2018 /* A structure which holds information needed by read_encoded_Addr().
2019 */
2020 typedef
2022 UChar encoding;
2023 DiCursor ehframe_image;
2024 Addr ehframe_avma;
2025 Addr text_bias;
2026 }
2027 AddressDecodingInfo;
2030 /* ------------ Deal with summary-info records ------------ */
2032 /* --------------- Summarisation --------------- */
2034 /* Forward */
2035 static
2037 Int nd );
2039 /* Summarise ctx into si, if possible. Returns True if successful.
2040 This is taken to be just after ctx's loc advances; hence the
2041 summary is up to but not including the current loc. This works
2042 on both x86 and amd64.
2043 */
2047 Addr loc_start,
2050 {
2059 /* Guard against obviously stupid settings of the reg-rule stack
2060 pointer. */
2065 /* First, summarise the method for generating the CFA */
2067 /* it was set by DW_CFA_def_cfa_expression; try to convert */
2069 Int conv;
2076 }
2077 conv = copy_convert_CfiExpr_tree
2085 }
2086 else
2089 # if defined(VGA_x86) || defined(VGA_amd64) || defined(VGA_s390x) \
2090 || defined(VGA_mips32) || defined(VGA_mips64)
2092 # elif defined(VGA_arm)
2094 # elif defined(VGA_arm64)
2096 # else
2098 # endif
2099 }
2100 else
2103 # if defined(VGA_x86) || defined(VGA_amd64) || defined(VGA_s390x) \
2104 || defined(VGA_mips32) || defined(VGA_mips64)
2106 # elif defined(VGA_arm)
2108 # elif defined(VGA_arm64)
2110 # else
2112 # endif
2113 }
2114 # if defined(VGA_arm)
2115 else
2119 }
2120 else
2124 }
2125 # elif defined(VGA_arm64)
2126 // do we need any arm64 specifics here?
2127 # endif
2131 }
2133 # define SUMMARISE_HOW(_how, _off, _ctxreg) \
2134 switch (_ctxreg.tag) { \
2135 case RR_Undef: \
2136 _how = CFIR_UNKNOWN; _off = 0; break; \
2137 case RR_Same: \
2138 _how = CFIR_SAME; _off = 0; break; \
2139 case RR_CFAOff: \
2140 _how = CFIR_MEMCFAREL; _off = _ctxreg.arg; break; \
2141 case RR_CFAValOff: \
2142 _how = CFIR_CFAREL; _off = _ctxreg.arg; break; \
2143 case RR_ValExpr: { \
2144 XArray *src, *dst; \
2145 Int conv; \
2146 src = ctx->exprs; \
2147 dst = debuginfo->cfsi_exprs; \
2148 if (src && (VG_(sizeXA)(src) > 0) && (!dst)) { \
2149 dst = VG_(newXA)( ML_(dinfo_zalloc), \
2151 ML_(dinfo_free), \
2152 sizeof(CfiExpr) ); \
2153 debuginfo->cfsi_exprs = dst; \
2154 } \
2155 conv = copy_convert_CfiExpr_tree \
2156 ( dst, ctx, _ctxreg.arg ); \
2157 vg_assert(conv >= -1); \
2158 if (conv == -1) { why = 7; goto failed; } \
2159 _how = CFIR_EXPR; \
2160 _off = conv; \
2161 if (0 && debuginfo->ddump_frames) \
2162 ML_(ppCfiExpr)(dst, conv); \
2163 break; \
2164 } \
2165 default: \
2167 }
2170 # if defined(VGA_x86) || defined(VGA_amd64)
2172 /* --- entire tail of this fn specialised for x86/amd64 --- */
2179 /* on x86/amd64, it seems the old %{e,r}sp value before the call is
2180 always the same as the CFA. Therefore ... */
2184 /* also, gcc says "Undef" for %{e,r}bp when it is unchanged. So
2185 .. */
2189 /* knock out some obviously stupid cases */
2193 /* bogus looking range? Note, we require that the difference is
2194 representable in 32 bits. */
2205 # elif defined(VGA_arm)
2207 /* ---- entire tail of this fn specialised for arm ---- */
2212 //SUMMARISE_HOW(si_m->r13_how, si_m->r13_off,
2213 // ctxs->reg[13] );
2226 /* Generate a trivial CfiExpr, which merely says "r14". First
2227 ensure this DebugInfo has a cfsi_expr array in which to park
2228 it. */
2235 Creg_ARM_R14);
2238 /* Just summarise it in the normal way */
2241 }
2243 /* on arm, it seems the old r13 (SP) value before the call is
2244 always the same as the CFA. Therefore ... */
2248 /* bogus looking range? Note, we require that the difference is
2249 representable in 32 bits. */
2260 # elif defined(VGA_arm64)
2262 /* --- entire tail of this fn specialised for arm64 --- */
2269 /* Generate a trivial CfiExpr, which merely says "x30". First
2270 ensure this DebugInfo has a cfsi_expr array in which to park
2271 it. */
2278 Creg_ARM64_X30);
2281 /* Just summarise it in the normal way */
2283 }
2285 /* on arm64, it seems the old SP value before the call is always
2286 the same as the CFA. Therefore ... */
2290 /* bogus looking range? Note, we require that the difference is
2291 representable in 32 bits. */
2302 # elif defined(VGA_s390x)
2304 /* --- entire tail of this fn specialised for s390 --- */
2313 /* change some defaults to consumable values */
2323 }
2332 Creg_S390_R14);
2333 }
2335 /* knock out some obviously stupid cases */
2339 /* bogus looking range? Note, we require that the difference is
2340 representable in 32 bits. */
2351 # elif defined(VGA_mips32) || defined(VGA_mips64)
2353 /* --- entire tail of this fn specialised for mips --- */
2369 }
2378 Creg_MIPS_RA);
2379 }
2394 # elif defined(VGA_ppc32) || defined(VGA_ppc64be) || defined(VGA_ppc64le)
2395 /* These don't use CFI based unwinding (is that really true?) */
2397 # else
2399 # endif
2401 /* --- non-specialised code after this point --- */
2403 # undef SUMMARISE_HOW
2405 failed:
2408 "summarise_context(loc_start = %#lx)"
2411 }
2413 }
2415 /* Copy the tree rooted at srcuc->exprs node srcix to dstxa, on the
2416 way converting any DwReg regs (regs numbered using the Dwarf scheme
2417 defined by each architecture's ABI) into CfiRegs, which are
2418 platform independent. If the conversion isn't possible because
2419 there is no equivalent register, return -1. This has the
2420 undesirable side effect of de-dagifying the input; oh well. */
2423 Int srcix )
2424 {
2451 /* should not see these in input (are created only by this
2452 conversion step!) */
2455 /* This is the only place where the conversion can fail. */
2458 # if defined(VGA_x86) || defined(VGA_amd64)
2465 # elif defined(VGA_arm)
2472 # elif defined(VGA_s390x)
2479 # elif defined(VGA_mips32) || defined(VGA_mips64)
2486 # elif defined(VGA_arm64)
2487 I_die_here;
2488 # elif defined(VGA_ppc32) || defined(VGA_ppc64be) \
2489 || defined(VGA_ppc64le)
2490 # else
2492 # endif
2493 /* else we must fail - can't represent the reg */
2495 }
2498 }
2499 }
2503 {
2515 }
2523 }
2526 /* ------------ Pick apart DWARF2 byte streams ------------ */
2529 {
2536 }
2537 }
2540 {
2548 }
2550 }
2553 {
2558 }
2559 }
2562 {
2572 }
2573 }
2577 {
2578 /* Regarding the handling of DW_EH_PE_absptr. DWARF3 says this
2579 denotes an absolute address, hence you would think 'base' is
2580 zero. However, that is nonsensical (unless relocations are to
2581 be applied to the unwind data before reading it, which sounds
2582 unlikely). My interpretation is that DW_EH_PE_absptr indicates
2583 an address relative to where the object was loaded (technically,
2584 relative to its stated load VMA, hence the use of text_bias
2585 rather than text_avma). Hmm, should we use text_bias or
2586 text_avma here? Not sure.
2588 This view appears to be supported by DWARF3 spec sec 7.3
2589 "Executable Objects and Shared Objects":
2591 This requirement makes the debugging information for shared
2592 objects position independent. Virtual addresses in a shared
2593 object may be calculated by adding the offset to the base
2594 address at which the object was attached. This offset is
2595 available in the run-time linker's data structures.
2596 */
2597 Addr base;
2598 Word offset;
2629 }
2633 }
2653 }
2654 }
2657 /* ------------ Run/show DWARF3 expressions ---------- */
2659 /* Convert the DWARF3 expression in expr[0 .. exprlen-1] into a dag
2660 (of CfiExprs) stored in ctx->exprs, and return the index in
2661 ctx->exprs of the root node. Or fail in which case return -1. */
2662 /* IMPORTANT: when adding expression forms here, also remember to
2663 add suitable evaluation code in evalCfiExpr in debuginfo.c. */
2666 Bool push_cfa_at_start,
2667 Bool ddump_frames )
2668 {
2669 # define N_EXPR_STACK 20
2671 # define PUSH(_arg) \
2672 do { \
2673 vg_assert(sp >= -1 && sp < N_EXPR_STACK); \
2674 if (sp == N_EXPR_STACK-1) \
2675 return -1; \
2676 sp++; \
2677 stack[sp] = (_arg); \
2678 } while (0)
2680 # define POP(_lval) \
2681 do { \
2682 vg_assert(sp >= -1 && sp < N_EXPR_STACK); \
2683 if (sp == -1) \
2684 return -1; \
2685 _lval = stack[sp]; \
2686 sp--; \
2687 } while (0)
2690 UChar opcode;
2691 Word sw;
2692 UWord uw;
2693 CfiUnop uop;
2694 CfiBinop bop;
2709 /* Synthesise the CFA as a CfiExpr */
2712 /* cfa is reg +/- offset */
2714 Cbinop_Add,
2717 );
2720 /* CFA is already an expr; use its root node */
2722 }
2723 }
2733 /* end of expr - return expr on the top of stack. */
2736 else
2738 }
2746 /* push: literal 0 .. 31 */
2755 /* push: reg + sleb128 */
2760 Cbinop_Add,
2763 );
2770 /* push: reg */
2790 /* push: 32-bit signed immediate */
2798 /* push: 16-bit signed immediate */
2806 /* push: 8-bit signed immediate */
2814 /* push: 8-bit unsigned immediate */
2822 /* push: 16-bit unsigned immediate */
2830 /* push: 32-bit unsigned immediate */
2843 unop:
2874 binop:
2892 "Warning: DWARF2 CFI reader: unhandled DW_OP_ "
2895 }
2900 }
2910 # undef POP
2911 # undef PUSH
2912 # undef N_EXPR_STACK
2913 }
2916 /* ------------ Run/show CFI instructions ------------ */
2918 /* Run a CFI instruction, and also return its length.
2919 Returns 0 if the instruction could not be executed.
2920 */
2922 DiCursor instrIN,
2926 {
2928 UInt delta;
2949 }
2952 /* Set rule for reg 'lo6' to CFAOff(off * data_af) */
2965 }
2977 }
2987 /* WAS:
2988 ctx->loc = read_Addr(&instr[i]) - ctx->initloc; i+= sizeof(Addr);
2989 Was this ever right? */
2990 /* 2007 Feb 23: No. binutils/dwarf.c treats it as an encoded
2991 address and that appears to be in accordance with the
2992 DWARF3 spec. */
3082 reg,
3138 /* ->cfa_off unchanged */
3147 /* ->reg is unchanged */
3157 /* ->reg is unchanged */
3184 /* No idea what is supposed to happen. gdb-6.3 simply
3185 ignores these. */
3192 /* Identical to DW_CFA_val_expression except that the value
3193 computed is an address and so needs one final
3194 dereference. */
3195 DiCursor expr;
3205 /* Convert the expression into a dag rooted at ctx->exprs index j,
3206 or fail. */
3215 }
3218 /* Add an extra dereference */
3223 }
3226 DiCursor expr;
3236 /* Convert the expression into a dag rooted at ctx->exprs index j,
3237 or fail. */
3246 }
3252 }
3255 DiCursor expr;
3261 /* Convert the expression into a dag rooted at ctx->exprs index j,
3262 or fail. */
3272 }
3275 /* Ignored. This appears to be sparc-specific; quite why it
3276 turns up in SuSE-supplied x86 .so's beats me. */
3284 /* we just checked this at entry, so: */
3288 /* stack overflow. We're hosed. */
3296 }
3302 /* we just checked this at entry, so: */
3305 /* stack undefflow. Give up. */
3308 /* simply fall back to previous entry */
3310 }
3319 /*NOTREACHED*/
3320 }
3323 }
3326 /* Show a CFI instruction, and also return its length. Show it as
3327 close as possible (preferably identical) to how GNU binutils
3328 readelf --debug-dump=frames would. */
3333 {
3335 UInt delta;
3336 Addr loc;
3354 }
3359 }
3367 }
3372 }
3383 /* WAS: loc = read_Addr(&instr[i]); i+= sizeof(Addr);
3384 (now known to be incorrect -- the address is encoded) */
3529 }
3532 }
3535 /* Show the instructions in instrs[0 .. ilen-1]. */
3539 {
3545 }
3546 }
3549 /* Run the CF instructions in instrs[0 .. ilen-1], until the end is
3550 reached, or until there is a failure. Return True iff success.
3551 */
3552 static
3554 Bool record,
3556 UWord fde_arange,
3559 {
3560 Addr base;
3561 UInt len;
3562 DiCfSI_m cfsi_m;
3563 Bool summ_ok;
3565 Addr loc_prev;
3586 }
3587 }
3588 }
3599 }
3600 }
3601 }
3603 }
3606 /* ------------ Main entry point for CFI reading ------------ */
3608 typedef
3610 /* This gives the CIE an identity to which FDEs will refer. */
3611 ULong offset;
3612 /* Code, data factors. */
3613 Int code_a_f;
3614 Int data_a_f;
3615 /* Return-address pseudo-register. */
3616 Int ra_reg;
3617 UChar address_encoding;
3618 /* Where are the instrs? */
3619 DiCursor instrs;
3620 Int ilen;
3621 /* God knows .. don't ask */
3622 Bool saw_z_augmentation;
3623 }
3624 CIE;
3627 {
3636 }
3638 #define N_CIEs 8000
3642 /* Read, summarise and store CFA unwind info from .eh_frame and
3643 .debug_frame sections. is_ehframe tells us which kind we are
3644 dealing with -- they are slightly different. */
3648 {
3654 UWord cfsi_used_orig;
3656 /* If we're dealing with a .debug_frame, assume zero frame_avma. */
3660 # if defined(VGP_ppc32_linux) || defined(VGP_ppc64be_linux) \
3661 || defined(VGP_ppc64le_linux)
3662 /* These targets don't use CFI-based stack unwinding. */
3664 # endif
3666 /* If we read more than one .debug_frame or .eh_frame for this
3667 DebugInfo*, the second and subsequent reads should only add FDEs
3668 for address ranges not already covered by the FDEs already
3669 present. To be able to quickly check which address ranges are
3670 already present, any existing records (DiCFSIs) must be sorted,
3671 so we can binary-search them in the code below. We also record
3672 di->cfsi_used so that we know where the boundary is between
3673 existing and new records. */
3676 }
3684 }
3686 /* Loop over CIEs/FDEs */
3688 /* Conceptually, the frame info is a sequence of FDEs, one for each
3689 function. Inside an FDE is a miniature program for a special
3690 state machine, which, when run, produces the stack-unwinding
3691 info for that function.
3693 Because the FDEs typically have much in common, and because the
3694 DWARF designers appear to have been fanatical about space
3695 saving, the common parts are factored out into so-called CIEs.
3696 That means that what we traverse is a sequence of structs, each
3697 of which is either a FDE (usually) or a CIE (occasionally).
3698 Each FDE has a field indicating which CIE is the one pertaining
3699 to it.
3701 The following loop traverses the sequence. FDEs are dealt with
3702 immediately; once we harvest the useful info in an FDE, it is
3703 then forgotten about. By contrast, CIEs are validated and
3704 dumped into an array, because later FDEs may refer to any
3705 previously-seen CIE.
3706 */
3708 DiCursor ciefde_start;
3709 ULong ciefde_len;
3710 ULong cie_pointer;
3711 Bool dw64;
3713 /* Are we done? */
3717 /* Overshot the end? Means something is wrong */
3721 }
3723 /* Ok, we must be looking at the start of a new CIE or FDE.
3724 Figure out which it is. */
3735 /* Apparently, if the .length field is zero, we are at the end
3736 of the sequence. This is stated in the Generic Elf
3737 Specification (see comments far above here) and is one of the
3738 places where .eh_frame and .debug_frame data differ. */
3744 }
3746 /* If the .length field is 0xFFFFFFFF then we're dealing with
3747 64-bit DWARF, and the real length is stored as a 64-bit
3748 number immediately following it. */
3753 }
3755 /* Now get the CIE ID, whose size depends on the DWARF 32 vs
3756 64-ness. */
3758 /* see XXX below */
3761 /* see XXX below */
3763 }
3768 /* If cie_pointer is zero for .eh_frame or all ones for .debug_frame,
3769 we've got a CIE; else it's an FDE. */
3773 Int this_CIE;
3774 UChar cie_version;
3775 DiCursor cie_augmentation;
3777 /* --------- CIE --------- */
3782 /* Allocate a new CIE record. */
3787 }
3790 n_CIEs++;
3793 /* Record its offset. This is how we will find it again
3794 later when looking at an FDE. */
3812 }
3824 }
3831 }
3837 }
3841 }
3842 }
3864 }
3876 }
3885 UInt i;
3891 }
3894 }
3922 }
3925 }
3926 }
3928 done_augmentation:
3938 //VG_(printf)("cie.instrs = %p\n", the_CIEs[this_CIE].instrs);
3940 }
3946 }
3950 /* Show the CIE's instructions (the preamble for each FDE
3951 that uses this CIE). */
3956 AddressDecodingInfo adi;
3965 }
3972 AddressDecodingInfo adi;
3974 Int cie;
3975 ULong look_for;
3976 Bool ok;
3977 Addr fde_initloc;
3978 UWord fde_arange;
3979 DiCursor fde_instrs;
3980 Int fde_ilen;
3982 /* --------- FDE --------- */
3984 /* Find the relevant CIE. The CIE we want is located
3985 cie_pointer bytes back from here. */
3987 /* re sizeof(UInt) / sizeof(ULong), matches XXX above. */
3992 else
4000 }
4005 }
4020 /* WAS (incorrectly):
4021 fde_arange = read_encoded_Addr(&nbytes, &adi, data);
4022 data += nbytes;
4023 The following corresponds to what binutils/dwarf.c does:
4024 */
4028 fde_arange
4034 }
4035 }
4052 UInt i;
4058 }
4060 }
4066 //VG_(printf)("fde.instrs = %p\n", fde_instrs);
4068 }
4073 }
4077 /* If this object's DebugInfo* had some DiCFSIs from a
4078 previous .eh_frame or .debug_frame read, we must check
4079 that we're not adding a duplicate. */
4086 /* current unsearched space is from lo to hi, inclusive. */
4095 }
4098 }
4100 /* The range this .debug_frame FDE covers has been already
4101 covered in .eh_frame section. Don't add it from .debug_frame
4102 section again. */
4105 }
4126 /* Run the CIE's instructions. Ugly hack: if
4127 --debug-dump=frames is in effect, suppress output for
4128 these instructions since they will already have been shown
4129 at the time the CIE was first encountered. Note, not
4130 thread safe - if this reader is ever made threaded, should
4131 fix properly. */
4138 );
4140 }
4141 /* And now run the instructions for the FDE, starting from
4142 the state created by running the CIE preamble
4143 instructions. */
4149 );
4152 }
4155 }
4156 }
4160 bad:
4165 }
4169 /*--------------------------------------------------------------------*/
4170 /*--- end ---*/
4171 /*--------------------------------------------------------------------*/