2 * linux/fs/binfmt_elf.c
4 * These are the functions used to load ELF format executables as used
5 * on SVr4 machines. Information on the format may be found in the book
6 * "UNIX SYSTEM V RELEASE 4 Programmers Guide: Ansi C and Programming Support
9 * Copyright 1993, 1994: Eric Youngdale (ericy@cais.com).
12 #include <linux/module.h>
13 #include <linux/kernel.h>
15 #include <linux/stat.h>
16 #include <linux/time.h>
18 #include <linux/mman.h>
19 #include <linux/a.out.h>
20 #include <linux/errno.h>
21 #include <linux/signal.h>
22 #include <linux/binfmts.h>
23 #include <linux/string.h>
24 #include <linux/file.h>
25 #include <linux/fcntl.h>
26 #include <linux/ptrace.h>
27 #include <linux/slab.h>
28 #include <linux/shm.h>
29 #include <linux/personality.h>
30 #include <linux/elfcore.h>
31 #include <linux/init.h>
32 #include <linux/highuid.h>
33 #include <linux/smp.h>
34 #include <linux/compiler.h>
35 #include <linux/highmem.h>
36 #include <linux/pagemap.h>
37 #include <linux/security.h>
38 #include <linux/syscalls.h>
39 #include <linux/random.h>
40 #include <linux/elf.h>
41 #include <linux/utsname.h>
42 #include <asm/uaccess.h>
43 #include <asm/param.h>
46 static int load_elf_binary(struct linux_binprm *bprm, struct pt_regs *regs);
47 static int load_elf_library(struct file *);
48 static unsigned long elf_map(struct file *, unsigned long, struct elf_phdr *,
49 int, int, unsigned long);
52 * If we don't support core dumping, then supply a NULL so we
55 #if defined(USE_ELF_CORE_DUMP) && defined(CONFIG_ELF_CORE)
56 static int elf_core_dump(long signr, struct pt_regs *regs, struct file *file, unsigned long limit);
58 #define elf_core_dump NULL
61 #if ELF_EXEC_PAGESIZE > PAGE_SIZE
62 #define ELF_MIN_ALIGN ELF_EXEC_PAGESIZE
64 #define ELF_MIN_ALIGN PAGE_SIZE
67 #ifndef ELF_CORE_EFLAGS
68 #define ELF_CORE_EFLAGS 0
71 #define ELF_PAGESTART(_v) ((_v) & ~(unsigned long)(ELF_MIN_ALIGN-1))
72 #define ELF_PAGEOFFSET(_v) ((_v) & (ELF_MIN_ALIGN-1))
73 #define ELF_PAGEALIGN(_v) (((_v) + ELF_MIN_ALIGN - 1) & ~(ELF_MIN_ALIGN - 1))
75 static struct linux_binfmt elf_format = {
76 .module = THIS_MODULE,
77 .load_binary = load_elf_binary,
78 .load_shlib = load_elf_library,
79 .core_dump = elf_core_dump,
80 .min_coredump = ELF_EXEC_PAGESIZE,
84 #define BAD_ADDR(x) ((unsigned long)(x) >= TASK_SIZE)
86 static int set_brk(unsigned long start, unsigned long end)
88 start = ELF_PAGEALIGN(start);
89 end = ELF_PAGEALIGN(end);
92 down_write(¤t->mm->mmap_sem);
93 addr = do_brk(start, end - start);
94 up_write(¤t->mm->mmap_sem);
98 current->mm->start_brk = current->mm->brk = end;
102 /* We need to explicitly zero any fractional pages
103 after the data section (i.e. bss). This would
104 contain the junk from the file that should not
107 static int padzero(unsigned long elf_bss)
111 nbyte = ELF_PAGEOFFSET(elf_bss);
113 nbyte = ELF_MIN_ALIGN - nbyte;
114 if (clear_user((void __user *) elf_bss, nbyte))
120 /* Let's use some macros to make this stack manipulation a litle clearer */
121 #ifdef CONFIG_STACK_GROWSUP
122 #define STACK_ADD(sp, items) ((elf_addr_t __user *)(sp) + (items))
123 #define STACK_ROUND(sp, items) \
124 ((15 + (unsigned long) ((sp) + (items))) &~ 15UL)
125 #define STACK_ALLOC(sp, len) ({ \
126 elf_addr_t __user *old_sp = (elf_addr_t __user *)sp; sp += len; \
129 #define STACK_ADD(sp, items) ((elf_addr_t __user *)(sp) - (items))
130 #define STACK_ROUND(sp, items) \
131 (((unsigned long) (sp - items)) &~ 15UL)
132 #define STACK_ALLOC(sp, len) ({ sp -= len ; sp; })
136 create_elf_tables(struct linux_binprm *bprm, struct elfhdr *exec,
137 int interp_aout, unsigned long load_addr,
138 unsigned long interp_load_addr)
140 unsigned long p = bprm->p;
141 int argc = bprm->argc;
142 int envc = bprm->envc;
143 elf_addr_t __user *argv;
144 elf_addr_t __user *envp;
145 elf_addr_t __user *sp;
146 elf_addr_t __user *u_platform;
147 const char *k_platform = ELF_PLATFORM;
149 elf_addr_t *elf_info;
151 struct task_struct *tsk = current;
152 struct vm_area_struct *vma;
155 * In some cases (e.g. Hyper-Threading), we want to avoid L1
156 * evictions by the processes running on the same package. One
157 * thing we can do is to shuffle the initial stack for them.
160 p = arch_align_stack(p);
163 * If this architecture has a platform capability string, copy it
164 * to userspace. In some cases (Sparc), this info is impossible
165 * for userspace to get any other way, in others (i386) it is
170 size_t len = strlen(k_platform) + 1;
172 u_platform = (elf_addr_t __user *)STACK_ALLOC(p, len);
173 if (__copy_to_user(u_platform, k_platform, len))
177 /* Create the ELF interpreter info */
178 elf_info = (elf_addr_t *)current->mm->saved_auxv;
179 /* update AT_VECTOR_SIZE_BASE if the number of NEW_AUX_ENT() changes */
180 #define NEW_AUX_ENT(id, val) \
182 elf_info[ei_index++] = id; \
183 elf_info[ei_index++] = val; \
188 * ARCH_DLINFO must come first so PPC can do its special alignment of
190 * update AT_VECTOR_SIZE_ARCH if the number of NEW_AUX_ENT() in
191 * ARCH_DLINFO changes
195 NEW_AUX_ENT(AT_HWCAP, ELF_HWCAP);
196 NEW_AUX_ENT(AT_PAGESZ, ELF_EXEC_PAGESIZE);
197 NEW_AUX_ENT(AT_CLKTCK, CLOCKS_PER_SEC);
198 NEW_AUX_ENT(AT_PHDR, load_addr + exec->e_phoff);
199 NEW_AUX_ENT(AT_PHENT, sizeof(struct elf_phdr));
200 NEW_AUX_ENT(AT_PHNUM, exec->e_phnum);
201 NEW_AUX_ENT(AT_BASE, interp_load_addr);
202 NEW_AUX_ENT(AT_FLAGS, 0);
203 NEW_AUX_ENT(AT_ENTRY, exec->e_entry);
204 NEW_AUX_ENT(AT_UID, tsk->uid);
205 NEW_AUX_ENT(AT_EUID, tsk->euid);
206 NEW_AUX_ENT(AT_GID, tsk->gid);
207 NEW_AUX_ENT(AT_EGID, tsk->egid);
208 NEW_AUX_ENT(AT_SECURE, security_bprm_secureexec(bprm));
210 NEW_AUX_ENT(AT_PLATFORM,
211 (elf_addr_t)(unsigned long)u_platform);
213 if (bprm->interp_flags & BINPRM_FLAGS_EXECFD) {
214 NEW_AUX_ENT(AT_EXECFD, bprm->interp_data);
217 /* AT_NULL is zero; clear the rest too */
218 memset(&elf_info[ei_index], 0,
219 sizeof current->mm->saved_auxv - ei_index * sizeof elf_info[0]);
221 /* And advance past the AT_NULL entry. */
224 sp = STACK_ADD(p, ei_index);
226 items = (argc + 1) + (envc + 1);
228 items += 3; /* a.out interpreters require argv & envp too */
230 items += 1; /* ELF interpreters only put argc on the stack */
232 bprm->p = STACK_ROUND(sp, items);
234 /* Point sp at the lowest address on the stack */
235 #ifdef CONFIG_STACK_GROWSUP
236 sp = (elf_addr_t __user *)bprm->p - items - ei_index;
237 bprm->exec = (unsigned long)sp; /* XXX: PARISC HACK */
239 sp = (elf_addr_t __user *)bprm->p;
244 * Grow the stack manually; some architectures have a limit on how
245 * far ahead a user-space access may be in order to grow the stack.
247 vma = find_extend_vma(current->mm, bprm->p);
251 /* Now, let's put argc (and argv, envp if appropriate) on the stack */
252 if (__put_user(argc, sp++))
256 envp = argv + argc + 1;
257 if (__put_user((elf_addr_t)(unsigned long)argv, sp++) ||
258 __put_user((elf_addr_t)(unsigned long)envp, sp++))
262 envp = argv + argc + 1;
265 /* Populate argv and envp */
266 p = current->mm->arg_end = current->mm->arg_start;
269 if (__put_user((elf_addr_t)p, argv++))
271 len = strnlen_user((void __user *)p, MAX_ARG_STRLEN);
272 if (!len || len > MAX_ARG_STRLEN)
276 if (__put_user(0, argv))
278 current->mm->arg_end = current->mm->env_start = p;
281 if (__put_user((elf_addr_t)p, envp++))
283 len = strnlen_user((void __user *)p, MAX_ARG_STRLEN);
284 if (!len || len > MAX_ARG_STRLEN)
288 if (__put_user(0, envp))
290 current->mm->env_end = p;
292 /* Put the elf_info on the stack in the right place. */
293 sp = (elf_addr_t __user *)envp + 1;
294 if (copy_to_user(sp, elf_info, ei_index * sizeof(elf_addr_t)))
301 static unsigned long elf_map(struct file *filep, unsigned long addr,
302 struct elf_phdr *eppnt, int prot, int type,
303 unsigned long total_size)
305 unsigned long map_addr;
306 unsigned long size = eppnt->p_filesz + ELF_PAGEOFFSET(eppnt->p_vaddr);
307 unsigned long off = eppnt->p_offset - ELF_PAGEOFFSET(eppnt->p_vaddr);
308 addr = ELF_PAGESTART(addr);
309 size = ELF_PAGEALIGN(size);
311 /* mmap() will return -EINVAL if given a zero size, but a
312 * segment with zero filesize is perfectly valid */
316 down_write(¤t->mm->mmap_sem);
318 * total_size is the size of the ELF (interpreter) image.
319 * The _first_ mmap needs to know the full size, otherwise
320 * randomization might put this image into an overlapping
321 * position with the ELF binary image. (since size < total_size)
322 * So we first map the 'big' image - and unmap the remainder at
323 * the end. (which unmap is needed for ELF images with holes.)
326 total_size = ELF_PAGEALIGN(total_size);
327 map_addr = do_mmap(filep, addr, total_size, prot, type, off);
328 if (!BAD_ADDR(map_addr))
329 do_munmap(current->mm, map_addr+size, total_size-size);
331 map_addr = do_mmap(filep, addr, size, prot, type, off);
333 up_write(¤t->mm->mmap_sem);
337 #endif /* !elf_map */
339 static unsigned long total_mapping_size(struct elf_phdr *cmds, int nr)
341 int i, first_idx = -1, last_idx = -1;
343 for (i = 0; i < nr; i++) {
344 if (cmds[i].p_type == PT_LOAD) {
353 return cmds[last_idx].p_vaddr + cmds[last_idx].p_memsz -
354 ELF_PAGESTART(cmds[first_idx].p_vaddr);
358 /* This is much more generalized than the library routine read function,
359 so we keep this separate. Technically the library read function
360 is only provided so that we can read a.out libraries that have
363 static unsigned long load_elf_interp(struct elfhdr *interp_elf_ex,
364 struct file *interpreter, unsigned long *interp_map_addr,
365 unsigned long no_base)
367 struct elf_phdr *elf_phdata;
368 struct elf_phdr *eppnt;
369 unsigned long load_addr = 0;
370 int load_addr_set = 0;
371 unsigned long last_bss = 0, elf_bss = 0;
372 unsigned long error = ~0UL;
373 unsigned long total_size;
376 /* First of all, some simple consistency checks */
377 if (interp_elf_ex->e_type != ET_EXEC &&
378 interp_elf_ex->e_type != ET_DYN)
380 if (!elf_check_arch(interp_elf_ex))
382 if (!interpreter->f_op || !interpreter->f_op->mmap)
386 * If the size of this structure has changed, then punt, since
387 * we will be doing the wrong thing.
389 if (interp_elf_ex->e_phentsize != sizeof(struct elf_phdr))
391 if (interp_elf_ex->e_phnum < 1 ||
392 interp_elf_ex->e_phnum > 65536U / sizeof(struct elf_phdr))
395 /* Now read in all of the header information */
396 size = sizeof(struct elf_phdr) * interp_elf_ex->e_phnum;
397 if (size > ELF_MIN_ALIGN)
399 elf_phdata = kmalloc(size, GFP_KERNEL);
403 retval = kernel_read(interpreter, interp_elf_ex->e_phoff,
404 (char *)elf_phdata,size);
406 if (retval != size) {
412 total_size = total_mapping_size(elf_phdata, interp_elf_ex->e_phnum);
419 for (i = 0; i < interp_elf_ex->e_phnum; i++, eppnt++) {
420 if (eppnt->p_type == PT_LOAD) {
421 int elf_type = MAP_PRIVATE | MAP_DENYWRITE;
423 unsigned long vaddr = 0;
424 unsigned long k, map_addr;
426 if (eppnt->p_flags & PF_R)
427 elf_prot = PROT_READ;
428 if (eppnt->p_flags & PF_W)
429 elf_prot |= PROT_WRITE;
430 if (eppnt->p_flags & PF_X)
431 elf_prot |= PROT_EXEC;
432 vaddr = eppnt->p_vaddr;
433 if (interp_elf_ex->e_type == ET_EXEC || load_addr_set)
434 elf_type |= MAP_FIXED;
435 else if (no_base && interp_elf_ex->e_type == ET_DYN)
438 map_addr = elf_map(interpreter, load_addr + vaddr,
439 eppnt, elf_prot, elf_type, total_size);
441 if (!*interp_map_addr)
442 *interp_map_addr = map_addr;
444 if (BAD_ADDR(map_addr))
447 if (!load_addr_set &&
448 interp_elf_ex->e_type == ET_DYN) {
449 load_addr = map_addr - ELF_PAGESTART(vaddr);
454 * Check to see if the section's size will overflow the
455 * allowed task size. Note that p_filesz must always be
456 * <= p_memsize so it's only necessary to check p_memsz.
458 k = load_addr + eppnt->p_vaddr;
460 eppnt->p_filesz > eppnt->p_memsz ||
461 eppnt->p_memsz > TASK_SIZE ||
462 TASK_SIZE - eppnt->p_memsz < k) {
468 * Find the end of the file mapping for this phdr, and
469 * keep track of the largest address we see for this.
471 k = load_addr + eppnt->p_vaddr + eppnt->p_filesz;
476 * Do the same thing for the memory mapping - between
477 * elf_bss and last_bss is the bss section.
479 k = load_addr + eppnt->p_memsz + eppnt->p_vaddr;
486 * Now fill out the bss section. First pad the last page up
487 * to the page boundary, and then perform a mmap to make sure
488 * that there are zero-mapped pages up to and including the
491 if (padzero(elf_bss)) {
496 /* What we have mapped so far */
497 elf_bss = ELF_PAGESTART(elf_bss + ELF_MIN_ALIGN - 1);
499 /* Map the last of the bss segment */
500 if (last_bss > elf_bss) {
501 down_write(¤t->mm->mmap_sem);
502 error = do_brk(elf_bss, last_bss - elf_bss);
503 up_write(¤t->mm->mmap_sem);
516 static unsigned long load_aout_interp(struct exec *interp_ex,
517 struct file *interpreter)
519 unsigned long text_data, elf_entry = ~0UL;
523 current->mm->end_code = interp_ex->a_text;
524 text_data = interp_ex->a_text + interp_ex->a_data;
525 current->mm->end_data = text_data;
526 current->mm->brk = interp_ex->a_bss + text_data;
528 switch (N_MAGIC(*interp_ex)) {
531 addr = (char __user *)0;
535 offset = N_TXTOFF(*interp_ex);
536 addr = (char __user *)N_TXTADDR(*interp_ex);
542 down_write(¤t->mm->mmap_sem);
543 do_brk(0, text_data);
544 up_write(¤t->mm->mmap_sem);
545 if (!interpreter->f_op || !interpreter->f_op->read)
547 if (interpreter->f_op->read(interpreter, addr, text_data, &offset) < 0)
549 flush_icache_range((unsigned long)addr,
550 (unsigned long)addr + text_data);
552 down_write(¤t->mm->mmap_sem);
553 do_brk(ELF_PAGESTART(text_data + ELF_MIN_ALIGN - 1),
555 up_write(¤t->mm->mmap_sem);
556 elf_entry = interp_ex->a_entry;
563 * These are the functions used to load ELF style executables and shared
564 * libraries. There is no binary dependent code anywhere else.
567 #define INTERPRETER_NONE 0
568 #define INTERPRETER_AOUT 1
569 #define INTERPRETER_ELF 2
571 #ifndef STACK_RND_MASK
572 #define STACK_RND_MASK (0x7ff >> (PAGE_SHIFT - 12)) /* 8MB of VA */
575 static unsigned long randomize_stack_top(unsigned long stack_top)
577 unsigned int random_variable = 0;
579 if ((current->flags & PF_RANDOMIZE) &&
580 !(current->personality & ADDR_NO_RANDOMIZE)) {
581 random_variable = get_random_int() & STACK_RND_MASK;
582 random_variable <<= PAGE_SHIFT;
584 #ifdef CONFIG_STACK_GROWSUP
585 return PAGE_ALIGN(stack_top) + random_variable;
587 return PAGE_ALIGN(stack_top) - random_variable;
591 static int load_elf_binary(struct linux_binprm *bprm, struct pt_regs *regs)
593 struct file *interpreter = NULL; /* to shut gcc up */
594 unsigned long load_addr = 0, load_bias = 0;
595 int load_addr_set = 0;
596 char * elf_interpreter = NULL;
597 unsigned int interpreter_type = INTERPRETER_NONE;
598 unsigned char ibcs2_interpreter = 0;
600 struct elf_phdr *elf_ppnt, *elf_phdata;
601 unsigned long elf_bss, elf_brk;
605 unsigned long elf_entry;
606 unsigned long interp_load_addr = 0;
607 unsigned long start_code, end_code, start_data, end_data;
608 unsigned long reloc_func_desc = 0;
609 char passed_fileno[6];
610 struct files_struct *files;
611 int executable_stack = EXSTACK_DEFAULT;
612 unsigned long def_flags = 0;
614 struct elfhdr elf_ex;
615 struct elfhdr interp_elf_ex;
616 struct exec interp_ex;
619 loc = kmalloc(sizeof(*loc), GFP_KERNEL);
625 /* Get the exec-header */
626 loc->elf_ex = *((struct elfhdr *)bprm->buf);
629 /* First of all, some simple consistency checks */
630 if (memcmp(loc->elf_ex.e_ident, ELFMAG, SELFMAG) != 0)
633 if (loc->elf_ex.e_type != ET_EXEC && loc->elf_ex.e_type != ET_DYN)
635 if (!elf_check_arch(&loc->elf_ex))
637 if (!bprm->file->f_op||!bprm->file->f_op->mmap)
640 /* Now read in all of the header information */
641 if (loc->elf_ex.e_phentsize != sizeof(struct elf_phdr))
643 if (loc->elf_ex.e_phnum < 1 ||
644 loc->elf_ex.e_phnum > 65536U / sizeof(struct elf_phdr))
646 size = loc->elf_ex.e_phnum * sizeof(struct elf_phdr);
648 elf_phdata = kmalloc(size, GFP_KERNEL);
652 retval = kernel_read(bprm->file, loc->elf_ex.e_phoff,
653 (char *)elf_phdata, size);
654 if (retval != size) {
660 files = current->files; /* Refcounted so ok */
661 retval = unshare_files();
664 if (files == current->files) {
665 put_files_struct(files);
669 /* exec will make our files private anyway, but for the a.out
670 loader stuff we need to do it earlier */
671 retval = get_unused_fd();
674 get_file(bprm->file);
675 fd_install(elf_exec_fileno = retval, bprm->file);
677 elf_ppnt = elf_phdata;
686 for (i = 0; i < loc->elf_ex.e_phnum; i++) {
687 if (elf_ppnt->p_type == PT_INTERP) {
688 /* This is the program interpreter used for
689 * shared libraries - for now assume that this
690 * is an a.out format binary
693 if (elf_ppnt->p_filesz > PATH_MAX ||
694 elf_ppnt->p_filesz < 2)
698 elf_interpreter = kmalloc(elf_ppnt->p_filesz,
700 if (!elf_interpreter)
703 retval = kernel_read(bprm->file, elf_ppnt->p_offset,
706 if (retval != elf_ppnt->p_filesz) {
709 goto out_free_interp;
711 /* make sure path is NULL terminated */
713 if (elf_interpreter[elf_ppnt->p_filesz - 1] != '\0')
714 goto out_free_interp;
716 /* If the program interpreter is one of these two,
717 * then assume an iBCS2 image. Otherwise assume
718 * a native linux image.
720 if (strcmp(elf_interpreter,"/usr/lib/libc.so.1") == 0 ||
721 strcmp(elf_interpreter,"/usr/lib/ld.so.1") == 0)
722 ibcs2_interpreter = 1;
725 * The early SET_PERSONALITY here is so that the lookup
726 * for the interpreter happens in the namespace of the
727 * to-be-execed image. SET_PERSONALITY can select an
730 * However, SET_PERSONALITY is NOT allowed to switch
731 * this task into the new images's memory mapping
732 * policy - that is, TASK_SIZE must still evaluate to
733 * that which is appropriate to the execing application.
734 * This is because exit_mmap() needs to have TASK_SIZE
735 * evaluate to the size of the old image.
737 * So if (say) a 64-bit application is execing a 32-bit
738 * application it is the architecture's responsibility
739 * to defer changing the value of TASK_SIZE until the
740 * switch really is going to happen - do this in
741 * flush_thread(). - akpm
743 SET_PERSONALITY(loc->elf_ex, ibcs2_interpreter);
745 interpreter = open_exec(elf_interpreter);
746 retval = PTR_ERR(interpreter);
747 if (IS_ERR(interpreter))
748 goto out_free_interp;
751 * If the binary is not readable then enforce
752 * mm->dumpable = 0 regardless of the interpreter's
755 if (file_permission(interpreter, MAY_READ) < 0)
756 bprm->interp_flags |= BINPRM_FLAGS_ENFORCE_NONDUMP;
758 retval = kernel_read(interpreter, 0, bprm->buf,
760 if (retval != BINPRM_BUF_SIZE) {
763 goto out_free_dentry;
766 /* Get the exec headers */
767 loc->interp_ex = *((struct exec *)bprm->buf);
768 loc->interp_elf_ex = *((struct elfhdr *)bprm->buf);
774 elf_ppnt = elf_phdata;
775 for (i = 0; i < loc->elf_ex.e_phnum; i++, elf_ppnt++)
776 if (elf_ppnt->p_type == PT_GNU_STACK) {
777 if (elf_ppnt->p_flags & PF_X)
778 executable_stack = EXSTACK_ENABLE_X;
780 executable_stack = EXSTACK_DISABLE_X;
784 /* Some simple consistency checks for the interpreter */
785 if (elf_interpreter) {
787 interpreter_type = INTERPRETER_ELF | INTERPRETER_AOUT;
789 /* Now figure out which format our binary is */
790 if ((N_MAGIC(loc->interp_ex) != OMAGIC) &&
791 (N_MAGIC(loc->interp_ex) != ZMAGIC) &&
792 (N_MAGIC(loc->interp_ex) != QMAGIC))
793 interpreter_type = INTERPRETER_ELF;
795 if (memcmp(loc->interp_elf_ex.e_ident, ELFMAG, SELFMAG) != 0)
796 interpreter_type &= ~INTERPRETER_ELF;
798 if (interpreter_type == INTERPRETER_AOUT && warn < 10) {
799 printk(KERN_WARNING "a.out ELF interpreter %s is "
800 "deprecated and will not be supported "
801 "after Linux 2.6.25\n", elf_interpreter);
806 if (!interpreter_type)
807 goto out_free_dentry;
809 /* Make sure only one type was selected */
810 if ((interpreter_type & INTERPRETER_ELF) &&
811 interpreter_type != INTERPRETER_ELF) {
812 // FIXME - ratelimit this before re-enabling
813 // printk(KERN_WARNING "ELF: Ambiguous type, using ELF\n");
814 interpreter_type = INTERPRETER_ELF;
816 /* Verify the interpreter has a valid arch */
817 if ((interpreter_type == INTERPRETER_ELF) &&
818 !elf_check_arch(&loc->interp_elf_ex))
819 goto out_free_dentry;
821 /* Executables without an interpreter also need a personality */
822 SET_PERSONALITY(loc->elf_ex, ibcs2_interpreter);
825 /* OK, we are done with that, now set up the arg stuff,
826 and then start this sucker up */
827 if ((!bprm->sh_bang) && (interpreter_type == INTERPRETER_AOUT)) {
828 char *passed_p = passed_fileno;
829 sprintf(passed_fileno, "%d", elf_exec_fileno);
831 if (elf_interpreter) {
832 retval = copy_strings_kernel(1, &passed_p, bprm);
834 goto out_free_dentry;
839 /* Flush all traces of the currently running executable */
840 retval = flush_old_exec(bprm);
842 goto out_free_dentry;
844 /* Discard our unneeded old files struct */
846 put_files_struct(files);
850 /* OK, This is the point of no return */
851 current->flags &= ~PF_FORKNOEXEC;
852 current->mm->def_flags = def_flags;
854 /* Do this immediately, since STACK_TOP as used in setup_arg_pages
855 may depend on the personality. */
856 SET_PERSONALITY(loc->elf_ex, ibcs2_interpreter);
857 if (elf_read_implies_exec(loc->elf_ex, executable_stack))
858 current->personality |= READ_IMPLIES_EXEC;
860 if (!(current->personality & ADDR_NO_RANDOMIZE) && randomize_va_space)
861 current->flags |= PF_RANDOMIZE;
862 arch_pick_mmap_layout(current->mm);
864 /* Do this so that we can load the interpreter, if need be. We will
865 change some of these later */
866 current->mm->free_area_cache = current->mm->mmap_base;
867 current->mm->cached_hole_size = 0;
868 retval = setup_arg_pages(bprm, randomize_stack_top(STACK_TOP),
871 send_sig(SIGKILL, current, 0);
872 goto out_free_dentry;
875 current->mm->start_stack = bprm->p;
877 /* Now we do a little grungy work by mmaping the ELF image into
878 the correct location in memory. */
879 for(i = 0, elf_ppnt = elf_phdata;
880 i < loc->elf_ex.e_phnum; i++, elf_ppnt++) {
881 int elf_prot = 0, elf_flags;
882 unsigned long k, vaddr;
884 if (elf_ppnt->p_type != PT_LOAD)
887 if (unlikely (elf_brk > elf_bss)) {
890 /* There was a PT_LOAD segment with p_memsz > p_filesz
891 before this one. Map anonymous pages, if needed,
892 and clear the area. */
893 retval = set_brk (elf_bss + load_bias,
894 elf_brk + load_bias);
896 send_sig(SIGKILL, current, 0);
897 goto out_free_dentry;
899 nbyte = ELF_PAGEOFFSET(elf_bss);
901 nbyte = ELF_MIN_ALIGN - nbyte;
902 if (nbyte > elf_brk - elf_bss)
903 nbyte = elf_brk - elf_bss;
904 if (clear_user((void __user *)elf_bss +
907 * This bss-zeroing can fail if the ELF
908 * file specifies odd protections. So
909 * we don't check the return value
915 if (elf_ppnt->p_flags & PF_R)
916 elf_prot |= PROT_READ;
917 if (elf_ppnt->p_flags & PF_W)
918 elf_prot |= PROT_WRITE;
919 if (elf_ppnt->p_flags & PF_X)
920 elf_prot |= PROT_EXEC;
922 elf_flags = MAP_PRIVATE | MAP_DENYWRITE | MAP_EXECUTABLE;
924 vaddr = elf_ppnt->p_vaddr;
925 if (loc->elf_ex.e_type == ET_EXEC || load_addr_set) {
926 elf_flags |= MAP_FIXED;
927 } else if (loc->elf_ex.e_type == ET_DYN) {
928 /* Try and get dynamic programs out of the way of the
929 * default mmap base, as well as whatever program they
930 * might try to exec. This is because the brk will
931 * follow the loader, and is not movable. */
935 load_bias = ELF_PAGESTART(ELF_ET_DYN_BASE - vaddr);
939 error = elf_map(bprm->file, load_bias + vaddr, elf_ppnt,
940 elf_prot, elf_flags, 0);
941 if (BAD_ADDR(error)) {
942 send_sig(SIGKILL, current, 0);
943 retval = IS_ERR((void *)error) ?
944 PTR_ERR((void*)error) : -EINVAL;
945 goto out_free_dentry;
948 if (!load_addr_set) {
950 load_addr = (elf_ppnt->p_vaddr - elf_ppnt->p_offset);
951 if (loc->elf_ex.e_type == ET_DYN) {
953 ELF_PAGESTART(load_bias + vaddr);
954 load_addr += load_bias;
955 reloc_func_desc = load_bias;
958 k = elf_ppnt->p_vaddr;
965 * Check to see if the section's size will overflow the
966 * allowed task size. Note that p_filesz must always be
967 * <= p_memsz so it is only necessary to check p_memsz.
969 if (BAD_ADDR(k) || elf_ppnt->p_filesz > elf_ppnt->p_memsz ||
970 elf_ppnt->p_memsz > TASK_SIZE ||
971 TASK_SIZE - elf_ppnt->p_memsz < k) {
972 /* set_brk can never work. Avoid overflows. */
973 send_sig(SIGKILL, current, 0);
975 goto out_free_dentry;
978 k = elf_ppnt->p_vaddr + elf_ppnt->p_filesz;
982 if ((elf_ppnt->p_flags & PF_X) && end_code < k)
986 k = elf_ppnt->p_vaddr + elf_ppnt->p_memsz;
991 loc->elf_ex.e_entry += load_bias;
992 elf_bss += load_bias;
993 elf_brk += load_bias;
994 start_code += load_bias;
995 end_code += load_bias;
996 start_data += load_bias;
997 end_data += load_bias;
999 /* Calling set_brk effectively mmaps the pages that we need
1000 * for the bss and break sections. We must do this before
1001 * mapping in the interpreter, to make sure it doesn't wind
1002 * up getting placed where the bss needs to go.
1004 retval = set_brk(elf_bss, elf_brk);
1006 send_sig(SIGKILL, current, 0);
1007 goto out_free_dentry;
1009 if (likely(elf_bss != elf_brk) && unlikely(padzero(elf_bss))) {
1010 send_sig(SIGSEGV, current, 0);
1011 retval = -EFAULT; /* Nobody gets to see this, but.. */
1012 goto out_free_dentry;
1015 if (elf_interpreter) {
1016 if (interpreter_type == INTERPRETER_AOUT) {
1017 elf_entry = load_aout_interp(&loc->interp_ex,
1020 unsigned long uninitialized_var(interp_map_addr);
1022 elf_entry = load_elf_interp(&loc->interp_elf_ex,
1026 if (!IS_ERR((void *)elf_entry)) {
1028 * load_elf_interp() returns relocation
1031 interp_load_addr = elf_entry;
1032 elf_entry += loc->interp_elf_ex.e_entry;
1035 if (BAD_ADDR(elf_entry)) {
1036 force_sig(SIGSEGV, current);
1037 retval = IS_ERR((void *)elf_entry) ?
1038 (int)elf_entry : -EINVAL;
1039 goto out_free_dentry;
1041 reloc_func_desc = interp_load_addr;
1043 allow_write_access(interpreter);
1045 kfree(elf_interpreter);
1047 elf_entry = loc->elf_ex.e_entry;
1048 if (BAD_ADDR(elf_entry)) {
1049 force_sig(SIGSEGV, current);
1051 goto out_free_dentry;
1057 if (interpreter_type != INTERPRETER_AOUT)
1058 sys_close(elf_exec_fileno);
1060 set_binfmt(&elf_format);
1062 #ifdef ARCH_HAS_SETUP_ADDITIONAL_PAGES
1063 retval = arch_setup_additional_pages(bprm, executable_stack);
1065 send_sig(SIGKILL, current, 0);
1068 #endif /* ARCH_HAS_SETUP_ADDITIONAL_PAGES */
1070 compute_creds(bprm);
1071 current->flags &= ~PF_FORKNOEXEC;
1072 retval = create_elf_tables(bprm, &loc->elf_ex,
1073 (interpreter_type == INTERPRETER_AOUT),
1074 load_addr, interp_load_addr);
1076 send_sig(SIGKILL, current, 0);
1079 /* N.B. passed_fileno might not be initialized? */
1080 if (interpreter_type == INTERPRETER_AOUT)
1081 current->mm->arg_start += strlen(passed_fileno) + 1;
1082 current->mm->end_code = end_code;
1083 current->mm->start_code = start_code;
1084 current->mm->start_data = start_data;
1085 current->mm->end_data = end_data;
1086 current->mm->start_stack = bprm->p;
1088 #ifdef arch_randomize_brk
1089 if (current->flags & PF_RANDOMIZE)
1090 current->mm->brk = current->mm->start_brk =
1091 arch_randomize_brk(current->mm);
1094 if (current->personality & MMAP_PAGE_ZERO) {
1095 /* Why this, you ask??? Well SVr4 maps page 0 as read-only,
1096 and some applications "depend" upon this behavior.
1097 Since we do not have the power to recompile these, we
1098 emulate the SVr4 behavior. Sigh. */
1099 down_write(¤t->mm->mmap_sem);
1100 error = do_mmap(NULL, 0, PAGE_SIZE, PROT_READ | PROT_EXEC,
1101 MAP_FIXED | MAP_PRIVATE, 0);
1102 up_write(¤t->mm->mmap_sem);
1105 #ifdef ELF_PLAT_INIT
1107 * The ABI may specify that certain registers be set up in special
1108 * ways (on i386 %edx is the address of a DT_FINI function, for
1109 * example. In addition, it may also specify (eg, PowerPC64 ELF)
1110 * that the e_entry field is the address of the function descriptor
1111 * for the startup routine, rather than the address of the startup
1112 * routine itself. This macro performs whatever initialization to
1113 * the regs structure is required as well as any relocations to the
1114 * function descriptor entries when executing dynamically links apps.
1116 ELF_PLAT_INIT(regs, reloc_func_desc);
1119 start_thread(regs, elf_entry, bprm->p);
1120 if (unlikely(current->ptrace & PT_PTRACED)) {
1121 if (current->ptrace & PT_TRACE_EXEC)
1122 ptrace_notify ((PTRACE_EVENT_EXEC << 8) | SIGTRAP);
1124 send_sig(SIGTRAP, current, 0);
1134 allow_write_access(interpreter);
1138 kfree(elf_interpreter);
1140 sys_close(elf_exec_fileno);
1143 reset_files_struct(current, files);
1149 /* This is really simpleminded and specialized - we are loading an
1150 a.out library that is given an ELF header. */
1151 static int load_elf_library(struct file *file)
1153 struct elf_phdr *elf_phdata;
1154 struct elf_phdr *eppnt;
1155 unsigned long elf_bss, bss, len;
1156 int retval, error, i, j;
1157 struct elfhdr elf_ex;
1160 retval = kernel_read(file, 0, (char *)&elf_ex, sizeof(elf_ex));
1161 if (retval != sizeof(elf_ex))
1164 if (memcmp(elf_ex.e_ident, ELFMAG, SELFMAG) != 0)
1167 /* First of all, some simple consistency checks */
1168 if (elf_ex.e_type != ET_EXEC || elf_ex.e_phnum > 2 ||
1169 !elf_check_arch(&elf_ex) || !file->f_op || !file->f_op->mmap)
1172 /* Now read in all of the header information */
1174 j = sizeof(struct elf_phdr) * elf_ex.e_phnum;
1175 /* j < ELF_MIN_ALIGN because elf_ex.e_phnum <= 2 */
1178 elf_phdata = kmalloc(j, GFP_KERNEL);
1184 retval = kernel_read(file, elf_ex.e_phoff, (char *)eppnt, j);
1188 for (j = 0, i = 0; i<elf_ex.e_phnum; i++)
1189 if ((eppnt + i)->p_type == PT_LOAD)
1194 while (eppnt->p_type != PT_LOAD)
1197 /* Now use mmap to map the library into memory. */
1198 down_write(¤t->mm->mmap_sem);
1199 error = do_mmap(file,
1200 ELF_PAGESTART(eppnt->p_vaddr),
1202 ELF_PAGEOFFSET(eppnt->p_vaddr)),
1203 PROT_READ | PROT_WRITE | PROT_EXEC,
1204 MAP_FIXED | MAP_PRIVATE | MAP_DENYWRITE,
1206 ELF_PAGEOFFSET(eppnt->p_vaddr)));
1207 up_write(¤t->mm->mmap_sem);
1208 if (error != ELF_PAGESTART(eppnt->p_vaddr))
1211 elf_bss = eppnt->p_vaddr + eppnt->p_filesz;
1212 if (padzero(elf_bss)) {
1217 len = ELF_PAGESTART(eppnt->p_filesz + eppnt->p_vaddr +
1219 bss = eppnt->p_memsz + eppnt->p_vaddr;
1221 down_write(¤t->mm->mmap_sem);
1222 do_brk(len, bss - len);
1223 up_write(¤t->mm->mmap_sem);
1234 * Note that some platforms still use traditional core dumps and not
1235 * the ELF core dump. Each platform can select it as appropriate.
1237 #if defined(USE_ELF_CORE_DUMP) && defined(CONFIG_ELF_CORE)
1242 * Modelled on fs/exec.c:aout_core_dump()
1243 * Jeremy Fitzhardinge <jeremy@sw.oz.au>
1246 * These are the only things you should do on a core-file: use only these
1247 * functions to write out all the necessary info.
1249 static int dump_write(struct file *file, const void *addr, int nr)
1251 return file->f_op->write(file, addr, nr, &file->f_pos) == nr;
1254 static int dump_seek(struct file *file, loff_t off)
1256 if (file->f_op->llseek && file->f_op->llseek != no_llseek) {
1257 if (file->f_op->llseek(file, off, SEEK_CUR) < 0)
1260 char *buf = (char *)get_zeroed_page(GFP_KERNEL);
1264 unsigned long n = off;
1267 if (!dump_write(file, buf, n))
1271 free_page((unsigned long)buf);
1277 * Decide what to dump of a segment, part, all or none.
1279 static unsigned long vma_dump_size(struct vm_area_struct *vma,
1280 unsigned long mm_flags)
1282 /* The vma can be set up to tell us the answer directly. */
1283 if (vma->vm_flags & VM_ALWAYSDUMP)
1286 /* Do not dump I/O mapped devices or special mappings */
1287 if (vma->vm_flags & (VM_IO | VM_RESERVED))
1290 #define FILTER(type) (mm_flags & (1UL << MMF_DUMP_##type))
1292 /* By default, dump shared memory if mapped from an anonymous file. */
1293 if (vma->vm_flags & VM_SHARED) {
1294 if (vma->vm_file->f_path.dentry->d_inode->i_nlink == 0 ?
1295 FILTER(ANON_SHARED) : FILTER(MAPPED_SHARED))
1300 /* Dump segments that have been written to. */
1301 if (vma->anon_vma && FILTER(ANON_PRIVATE))
1303 if (vma->vm_file == NULL)
1306 if (FILTER(MAPPED_PRIVATE))
1310 * If this looks like the beginning of a DSO or executable mapping,
1311 * check for an ELF header. If we find one, dump the first page to
1312 * aid in determining what was mapped here.
1314 if (FILTER(ELF_HEADERS) && vma->vm_file != NULL && vma->vm_pgoff == 0) {
1315 u32 __user *header = (u32 __user *) vma->vm_start;
1318 * Doing it this way gets the constant folded by GCC.
1322 char elfmag[SELFMAG];
1324 BUILD_BUG_ON(SELFMAG != sizeof word);
1325 magic.elfmag[EI_MAG0] = ELFMAG0;
1326 magic.elfmag[EI_MAG1] = ELFMAG1;
1327 magic.elfmag[EI_MAG2] = ELFMAG2;
1328 magic.elfmag[EI_MAG3] = ELFMAG3;
1329 if (get_user(word, header) == 0 && word == magic.cmp)
1338 return vma->vm_end - vma->vm_start;
1341 /* An ELF note in memory */
1346 unsigned int datasz;
1350 static int notesize(struct memelfnote *en)
1354 sz = sizeof(struct elf_note);
1355 sz += roundup(strlen(en->name) + 1, 4);
1356 sz += roundup(en->datasz, 4);
1361 #define DUMP_WRITE(addr, nr, foffset) \
1362 do { if (!dump_write(file, (addr), (nr))) return 0; *foffset += (nr); } while(0)
1364 static int alignfile(struct file *file, loff_t *foffset)
1366 static const char buf[4] = { 0, };
1367 DUMP_WRITE(buf, roundup(*foffset, 4) - *foffset, foffset);
1371 static int writenote(struct memelfnote *men, struct file *file,
1375 en.n_namesz = strlen(men->name) + 1;
1376 en.n_descsz = men->datasz;
1377 en.n_type = men->type;
1379 DUMP_WRITE(&en, sizeof(en), foffset);
1380 DUMP_WRITE(men->name, en.n_namesz, foffset);
1381 if (!alignfile(file, foffset))
1383 DUMP_WRITE(men->data, men->datasz, foffset);
1384 if (!alignfile(file, foffset))
1391 #define DUMP_WRITE(addr, nr) \
1392 if ((size += (nr)) > limit || !dump_write(file, (addr), (nr))) \
1394 #define DUMP_SEEK(off) \
1395 if (!dump_seek(file, (off))) \
1398 static void fill_elf_header(struct elfhdr *elf, int segs)
1400 memcpy(elf->e_ident, ELFMAG, SELFMAG);
1401 elf->e_ident[EI_CLASS] = ELF_CLASS;
1402 elf->e_ident[EI_DATA] = ELF_DATA;
1403 elf->e_ident[EI_VERSION] = EV_CURRENT;
1404 elf->e_ident[EI_OSABI] = ELF_OSABI;
1405 memset(elf->e_ident+EI_PAD, 0, EI_NIDENT-EI_PAD);
1407 elf->e_type = ET_CORE;
1408 elf->e_machine = ELF_ARCH;
1409 elf->e_version = EV_CURRENT;
1411 elf->e_phoff = sizeof(struct elfhdr);
1413 elf->e_flags = ELF_CORE_EFLAGS;
1414 elf->e_ehsize = sizeof(struct elfhdr);
1415 elf->e_phentsize = sizeof(struct elf_phdr);
1416 elf->e_phnum = segs;
1417 elf->e_shentsize = 0;
1419 elf->e_shstrndx = 0;
1423 static void fill_elf_note_phdr(struct elf_phdr *phdr, int sz, loff_t offset)
1425 phdr->p_type = PT_NOTE;
1426 phdr->p_offset = offset;
1429 phdr->p_filesz = sz;
1436 static void fill_note(struct memelfnote *note, const char *name, int type,
1437 unsigned int sz, void *data)
1447 * fill up all the fields in prstatus from the given task struct, except
1448 * registers which need to be filled up separately.
1450 static void fill_prstatus(struct elf_prstatus *prstatus,
1451 struct task_struct *p, long signr)
1453 prstatus->pr_info.si_signo = prstatus->pr_cursig = signr;
1454 prstatus->pr_sigpend = p->pending.signal.sig[0];
1455 prstatus->pr_sighold = p->blocked.sig[0];
1456 prstatus->pr_pid = task_pid_vnr(p);
1457 prstatus->pr_ppid = task_pid_vnr(p->real_parent);
1458 prstatus->pr_pgrp = task_pgrp_vnr(p);
1459 prstatus->pr_sid = task_session_vnr(p);
1460 if (thread_group_leader(p)) {
1462 * This is the record for the group leader. Add in the
1463 * cumulative times of previous dead threads. This total
1464 * won't include the time of each live thread whose state
1465 * is included in the core dump. The final total reported
1466 * to our parent process when it calls wait4 will include
1467 * those sums as well as the little bit more time it takes
1468 * this and each other thread to finish dying after the
1469 * core dump synchronization phase.
1471 cputime_to_timeval(cputime_add(p->utime, p->signal->utime),
1472 &prstatus->pr_utime);
1473 cputime_to_timeval(cputime_add(p->stime, p->signal->stime),
1474 &prstatus->pr_stime);
1476 cputime_to_timeval(p->utime, &prstatus->pr_utime);
1477 cputime_to_timeval(p->stime, &prstatus->pr_stime);
1479 cputime_to_timeval(p->signal->cutime, &prstatus->pr_cutime);
1480 cputime_to_timeval(p->signal->cstime, &prstatus->pr_cstime);
1483 static int fill_psinfo(struct elf_prpsinfo *psinfo, struct task_struct *p,
1484 struct mm_struct *mm)
1486 unsigned int i, len;
1488 /* first copy the parameters from user space */
1489 memset(psinfo, 0, sizeof(struct elf_prpsinfo));
1491 len = mm->arg_end - mm->arg_start;
1492 if (len >= ELF_PRARGSZ)
1493 len = ELF_PRARGSZ-1;
1494 if (copy_from_user(&psinfo->pr_psargs,
1495 (const char __user *)mm->arg_start, len))
1497 for(i = 0; i < len; i++)
1498 if (psinfo->pr_psargs[i] == 0)
1499 psinfo->pr_psargs[i] = ' ';
1500 psinfo->pr_psargs[len] = 0;
1502 psinfo->pr_pid = task_pid_vnr(p);
1503 psinfo->pr_ppid = task_pid_vnr(p->real_parent);
1504 psinfo->pr_pgrp = task_pgrp_vnr(p);
1505 psinfo->pr_sid = task_session_vnr(p);
1507 i = p->state ? ffz(~p->state) + 1 : 0;
1508 psinfo->pr_state = i;
1509 psinfo->pr_sname = (i > 5) ? '.' : "RSDTZW"[i];
1510 psinfo->pr_zomb = psinfo->pr_sname == 'Z';
1511 psinfo->pr_nice = task_nice(p);
1512 psinfo->pr_flag = p->flags;
1513 SET_UID(psinfo->pr_uid, p->uid);
1514 SET_GID(psinfo->pr_gid, p->gid);
1515 strncpy(psinfo->pr_fname, p->comm, sizeof(psinfo->pr_fname));
1520 /* Here is the structure in which status of each thread is captured. */
1521 struct elf_thread_status
1523 struct list_head list;
1524 struct elf_prstatus prstatus; /* NT_PRSTATUS */
1525 elf_fpregset_t fpu; /* NT_PRFPREG */
1526 struct task_struct *thread;
1527 #ifdef ELF_CORE_COPY_XFPREGS
1528 elf_fpxregset_t xfpu; /* ELF_CORE_XFPREG_TYPE */
1530 struct memelfnote notes[3];
1535 * In order to add the specific thread information for the elf file format,
1536 * we need to keep a linked list of every threads pr_status and then create
1537 * a single section for them in the final core file.
1539 static int elf_dump_thread_status(long signr, struct elf_thread_status *t)
1542 struct task_struct *p = t->thread;
1545 fill_prstatus(&t->prstatus, p, signr);
1546 elf_core_copy_task_regs(p, &t->prstatus.pr_reg);
1548 fill_note(&t->notes[0], "CORE", NT_PRSTATUS, sizeof(t->prstatus),
1551 sz += notesize(&t->notes[0]);
1553 if ((t->prstatus.pr_fpvalid = elf_core_copy_task_fpregs(p, NULL,
1555 fill_note(&t->notes[1], "CORE", NT_PRFPREG, sizeof(t->fpu),
1558 sz += notesize(&t->notes[1]);
1561 #ifdef ELF_CORE_COPY_XFPREGS
1562 if (elf_core_copy_task_xfpregs(p, &t->xfpu)) {
1563 fill_note(&t->notes[2], "LINUX", ELF_CORE_XFPREG_TYPE,
1564 sizeof(t->xfpu), &t->xfpu);
1566 sz += notesize(&t->notes[2]);
1572 static struct vm_area_struct *first_vma(struct task_struct *tsk,
1573 struct vm_area_struct *gate_vma)
1575 struct vm_area_struct *ret = tsk->mm->mmap;
1582 * Helper function for iterating across a vma list. It ensures that the caller
1583 * will visit `gate_vma' prior to terminating the search.
1585 static struct vm_area_struct *next_vma(struct vm_area_struct *this_vma,
1586 struct vm_area_struct *gate_vma)
1588 struct vm_area_struct *ret;
1590 ret = this_vma->vm_next;
1593 if (this_vma == gate_vma)
1601 * This is a two-pass process; first we find the offsets of the bits,
1602 * and then they are actually written out. If we run out of core limit
1605 static int elf_core_dump(long signr, struct pt_regs *regs, struct file *file, unsigned long limit)
1613 struct vm_area_struct *vma, *gate_vma;
1614 struct elfhdr *elf = NULL;
1615 loff_t offset = 0, dataoff, foffset;
1617 struct memelfnote *notes = NULL;
1618 struct elf_prstatus *prstatus = NULL; /* NT_PRSTATUS */
1619 struct elf_prpsinfo *psinfo = NULL; /* NT_PRPSINFO */
1620 struct task_struct *g, *p;
1621 LIST_HEAD(thread_list);
1622 struct list_head *t;
1623 elf_fpregset_t *fpu = NULL;
1624 #ifdef ELF_CORE_COPY_XFPREGS
1625 elf_fpxregset_t *xfpu = NULL;
1627 int thread_status_size = 0;
1629 unsigned long mm_flags;
1632 * We no longer stop all VM operations.
1634 * This is because those proceses that could possibly change map_count
1635 * or the mmap / vma pages are now blocked in do_exit on current
1636 * finishing this core dump.
1638 * Only ptrace can touch these memory addresses, but it doesn't change
1639 * the map_count or the pages allocated. So no possibility of crashing
1640 * exists while dumping the mm->vm_next areas to the core file.
1643 /* alloc memory for large data structures: too large to be on stack */
1644 elf = kmalloc(sizeof(*elf), GFP_KERNEL);
1647 prstatus = kmalloc(sizeof(*prstatus), GFP_KERNEL);
1650 psinfo = kmalloc(sizeof(*psinfo), GFP_KERNEL);
1653 notes = kmalloc(NUM_NOTES * sizeof(struct memelfnote), GFP_KERNEL);
1656 fpu = kmalloc(sizeof(*fpu), GFP_KERNEL);
1659 #ifdef ELF_CORE_COPY_XFPREGS
1660 xfpu = kmalloc(sizeof(*xfpu), GFP_KERNEL);
1666 struct elf_thread_status *tmp;
1669 if (current->mm == p->mm && current != p) {
1670 tmp = kzalloc(sizeof(*tmp), GFP_ATOMIC);
1676 list_add(&tmp->list, &thread_list);
1678 while_each_thread(g,p);
1680 list_for_each(t, &thread_list) {
1681 struct elf_thread_status *tmp;
1684 tmp = list_entry(t, struct elf_thread_status, list);
1685 sz = elf_dump_thread_status(signr, tmp);
1686 thread_status_size += sz;
1689 /* now collect the dump for the current */
1690 memset(prstatus, 0, sizeof(*prstatus));
1691 fill_prstatus(prstatus, current, signr);
1692 elf_core_copy_regs(&prstatus->pr_reg, regs);
1694 segs = current->mm->map_count;
1695 #ifdef ELF_CORE_EXTRA_PHDRS
1696 segs += ELF_CORE_EXTRA_PHDRS;
1699 gate_vma = get_gate_vma(current);
1700 if (gate_vma != NULL)
1704 fill_elf_header(elf, segs + 1); /* including notes section */
1707 current->flags |= PF_DUMPCORE;
1710 * Set up the notes in similar form to SVR4 core dumps made
1711 * with info from their /proc.
1714 fill_note(notes + 0, "CORE", NT_PRSTATUS, sizeof(*prstatus), prstatus);
1715 fill_psinfo(psinfo, current->group_leader, current->mm);
1716 fill_note(notes + 1, "CORE", NT_PRPSINFO, sizeof(*psinfo), psinfo);
1720 auxv = (elf_addr_t *)current->mm->saved_auxv;
1725 while (auxv[i - 2] != AT_NULL);
1726 fill_note(¬es[numnote++], "CORE", NT_AUXV,
1727 i * sizeof(elf_addr_t), auxv);
1729 /* Try to dump the FPU. */
1730 if ((prstatus->pr_fpvalid =
1731 elf_core_copy_task_fpregs(current, regs, fpu)))
1732 fill_note(notes + numnote++,
1733 "CORE", NT_PRFPREG, sizeof(*fpu), fpu);
1734 #ifdef ELF_CORE_COPY_XFPREGS
1735 if (elf_core_copy_task_xfpregs(current, xfpu))
1736 fill_note(notes + numnote++,
1737 "LINUX", ELF_CORE_XFPREG_TYPE, sizeof(*xfpu), xfpu);
1743 DUMP_WRITE(elf, sizeof(*elf));
1744 offset += sizeof(*elf); /* Elf header */
1745 offset += (segs + 1) * sizeof(struct elf_phdr); /* Program headers */
1748 /* Write notes phdr entry */
1750 struct elf_phdr phdr;
1753 for (i = 0; i < numnote; i++)
1754 sz += notesize(notes + i);
1756 sz += thread_status_size;
1758 sz += elf_coredump_extra_notes_size();
1760 fill_elf_note_phdr(&phdr, sz, offset);
1762 DUMP_WRITE(&phdr, sizeof(phdr));
1765 dataoff = offset = roundup(offset, ELF_EXEC_PAGESIZE);
1768 * We must use the same mm->flags while dumping core to avoid
1769 * inconsistency between the program headers and bodies, otherwise an
1770 * unusable core file can be generated.
1772 mm_flags = current->mm->flags;
1774 /* Write program headers for segments dump */
1775 for (vma = first_vma(current, gate_vma); vma != NULL;
1776 vma = next_vma(vma, gate_vma)) {
1777 struct elf_phdr phdr;
1779 phdr.p_type = PT_LOAD;
1780 phdr.p_offset = offset;
1781 phdr.p_vaddr = vma->vm_start;
1783 phdr.p_filesz = vma_dump_size(vma, mm_flags);
1784 phdr.p_memsz = vma->vm_end - vma->vm_start;
1785 offset += phdr.p_filesz;
1786 phdr.p_flags = vma->vm_flags & VM_READ ? PF_R : 0;
1787 if (vma->vm_flags & VM_WRITE)
1788 phdr.p_flags |= PF_W;
1789 if (vma->vm_flags & VM_EXEC)
1790 phdr.p_flags |= PF_X;
1791 phdr.p_align = ELF_EXEC_PAGESIZE;
1793 DUMP_WRITE(&phdr, sizeof(phdr));
1796 #ifdef ELF_CORE_WRITE_EXTRA_PHDRS
1797 ELF_CORE_WRITE_EXTRA_PHDRS;
1800 /* write out the notes section */
1801 for (i = 0; i < numnote; i++)
1802 if (!writenote(notes + i, file, &foffset))
1805 if (elf_coredump_extra_notes_write(file, &foffset))
1808 /* write out the thread status notes section */
1809 list_for_each(t, &thread_list) {
1810 struct elf_thread_status *tmp =
1811 list_entry(t, struct elf_thread_status, list);
1813 for (i = 0; i < tmp->num_notes; i++)
1814 if (!writenote(&tmp->notes[i], file, &foffset))
1819 DUMP_SEEK(dataoff - foffset);
1821 for (vma = first_vma(current, gate_vma); vma != NULL;
1822 vma = next_vma(vma, gate_vma)) {
1826 end = vma->vm_start + vma_dump_size(vma, mm_flags);
1828 for (addr = vma->vm_start; addr < end; addr += PAGE_SIZE) {
1830 struct vm_area_struct *vma;
1832 if (get_user_pages(current, current->mm, addr, 1, 0, 1,
1833 &page, &vma) <= 0) {
1834 DUMP_SEEK(PAGE_SIZE);
1836 if (page == ZERO_PAGE(0)) {
1837 if (!dump_seek(file, PAGE_SIZE)) {
1838 page_cache_release(page);
1843 flush_cache_page(vma, addr,
1846 if ((size += PAGE_SIZE) > limit ||
1847 !dump_write(file, kaddr,
1850 page_cache_release(page);
1855 page_cache_release(page);
1860 #ifdef ELF_CORE_WRITE_EXTRA_DATA
1861 ELF_CORE_WRITE_EXTRA_DATA;
1868 while (!list_empty(&thread_list)) {
1869 struct list_head *tmp = thread_list.next;
1871 kfree(list_entry(tmp, struct elf_thread_status, list));
1879 #ifdef ELF_CORE_COPY_XFPREGS
1886 #endif /* USE_ELF_CORE_DUMP */
1888 static int __init init_elf_binfmt(void)
1890 return register_binfmt(&elf_format);
1893 static void __exit exit_elf_binfmt(void)
1895 /* Remove the COFF and ELF loaders. */
1896 unregister_binfmt(&elf_format);
1899 core_initcall(init_elf_binfmt);
1900 module_exit(exit_elf_binfmt);
1901 MODULE_LICENSE("GPL");
git://ftp.safe.ca / safe / jmp / linux-2.6 / blob