2 * linux/fs/binfmt_elf.c
4 * These are the functions used to load ELF format executables as used
5 * on SVr4 machines. Information on the format may be found in the book
6 * "UNIX SYSTEM V RELEASE 4 Programmers Guide: Ansi C and Programming Support
9 * Copyright 1993, 1994: Eric Youngdale (ericy@cais.com).
12 #include <linux/module.h>
13 #include <linux/kernel.h>
16 #include <linux/mman.h>
17 #include <linux/errno.h>
18 #include <linux/signal.h>
19 #include <linux/binfmts.h>
20 #include <linux/string.h>
21 #include <linux/file.h>
22 #include <linux/slab.h>
23 #include <linux/personality.h>
24 #include <linux/elfcore.h>
25 #include <linux/init.h>
26 #include <linux/highuid.h>
27 #include <linux/compiler.h>
28 #include <linux/highmem.h>
29 #include <linux/pagemap.h>
30 #include <linux/vmalloc.h>
31 #include <linux/security.h>
32 #include <linux/random.h>
33 #include <linux/elf.h>
34 #include <linux/utsname.h>
35 #include <linux/coredump.h>
36 #include <linux/sched.h>
37 #include <asm/uaccess.h>
38 #include <asm/param.h>
42 #define user_long_t long
44 #ifndef user_siginfo_t
45 #define user_siginfo_t siginfo_t
48 static int load_elf_binary(struct linux_binprm *bprm);
49 static int load_elf_library(struct file *);
50 static unsigned long elf_map(struct file *, unsigned long, struct elf_phdr *,
51 int, int, unsigned long);
54 * If we don't support core dumping, then supply a NULL so we
57 #ifdef CONFIG_ELF_CORE
58 static int elf_core_dump(struct coredump_params *cprm);
60 #define elf_core_dump NULL
63 #if ELF_EXEC_PAGESIZE > PAGE_SIZE
64 #define ELF_MIN_ALIGN ELF_EXEC_PAGESIZE
66 #define ELF_MIN_ALIGN PAGE_SIZE
69 #ifndef ELF_CORE_EFLAGS
70 #define ELF_CORE_EFLAGS 0
73 #define ELF_PAGESTART(_v) ((_v) & ~(unsigned long)(ELF_MIN_ALIGN-1))
74 #define ELF_PAGEOFFSET(_v) ((_v) & (ELF_MIN_ALIGN-1))
75 #define ELF_PAGEALIGN(_v) (((_v) + ELF_MIN_ALIGN - 1) & ~(ELF_MIN_ALIGN - 1))
77 static struct linux_binfmt elf_format = {
78 .module = THIS_MODULE,
79 .load_binary = load_elf_binary,
80 .load_shlib = load_elf_library,
81 .core_dump = elf_core_dump,
82 .min_coredump = ELF_EXEC_PAGESIZE,
85 #define BAD_ADDR(x) ((unsigned long)(x) >= TASK_SIZE)
87 static int set_brk(unsigned long start, unsigned long end)
89 start = ELF_PAGEALIGN(start);
90 end = ELF_PAGEALIGN(end);
93 addr = vm_brk(start, end - start);
97 current->mm->start_brk = current->mm->brk = end;
101 /* We need to explicitly zero any fractional pages
102 after the data section (i.e. bss). This would
103 contain the junk from the file that should not
106 static int padzero(unsigned long elf_bss)
110 nbyte = ELF_PAGEOFFSET(elf_bss);
112 nbyte = ELF_MIN_ALIGN - nbyte;
113 if (clear_user((void __user *) elf_bss, nbyte))
119 /* Let's use some macros to make this stack manipulation a little clearer */
120 #ifdef CONFIG_STACK_GROWSUP
121 #define STACK_ADD(sp, items) ((elf_addr_t __user *)(sp) + (items))
122 #define STACK_ROUND(sp, items) \
123 ((15 + (unsigned long) ((sp) + (items))) &~ 15UL)
124 #define STACK_ALLOC(sp, len) ({ \
125 elf_addr_t __user *old_sp = (elf_addr_t __user *)sp; sp += len; \
128 #define STACK_ADD(sp, items) ((elf_addr_t __user *)(sp) - (items))
129 #define STACK_ROUND(sp, items) \
130 (((unsigned long) (sp - items)) &~ 15UL)
131 #define STACK_ALLOC(sp, len) ({ sp -= len ; sp; })
134 #ifndef ELF_BASE_PLATFORM
136 * AT_BASE_PLATFORM indicates the "real" hardware/microarchitecture.
137 * If the arch defines ELF_BASE_PLATFORM (in asm/elf.h), the value
138 * will be copied to the user stack in the same manner as AT_PLATFORM.
140 #define ELF_BASE_PLATFORM NULL
144 create_elf_tables(struct linux_binprm *bprm, struct elfhdr *exec,
145 unsigned long load_addr, unsigned long interp_load_addr)
147 unsigned long p = bprm->p;
148 int argc = bprm->argc;
149 int envc = bprm->envc;
150 elf_addr_t __user *argv;
151 elf_addr_t __user *envp;
152 elf_addr_t __user *sp;
153 elf_addr_t __user *u_platform;
154 elf_addr_t __user *u_base_platform;
155 elf_addr_t __user *u_rand_bytes;
156 const char *k_platform = ELF_PLATFORM;
157 const char *k_base_platform = ELF_BASE_PLATFORM;
158 unsigned char k_rand_bytes[16];
160 elf_addr_t *elf_info;
162 const struct cred *cred = current_cred();
163 struct vm_area_struct *vma;
166 * In some cases (e.g. Hyper-Threading), we want to avoid L1
167 * evictions by the processes running on the same package. One
168 * thing we can do is to shuffle the initial stack for them.
171 p = arch_align_stack(p);
174 * If this architecture has a platform capability string, copy it
175 * to userspace. In some cases (Sparc), this info is impossible
176 * for userspace to get any other way, in others (i386) it is
181 size_t len = strlen(k_platform) + 1;
183 u_platform = (elf_addr_t __user *)STACK_ALLOC(p, len);
184 if (__copy_to_user(u_platform, k_platform, len))
189 * If this architecture has a "base" platform capability
190 * string, copy it to userspace.
192 u_base_platform = NULL;
193 if (k_base_platform) {
194 size_t len = strlen(k_base_platform) + 1;
196 u_base_platform = (elf_addr_t __user *)STACK_ALLOC(p, len);
197 if (__copy_to_user(u_base_platform, k_base_platform, len))
202 * Generate 16 random bytes for userspace PRNG seeding.
204 get_random_bytes(k_rand_bytes, sizeof(k_rand_bytes));
205 u_rand_bytes = (elf_addr_t __user *)
206 STACK_ALLOC(p, sizeof(k_rand_bytes));
207 if (__copy_to_user(u_rand_bytes, k_rand_bytes, sizeof(k_rand_bytes)))
210 /* Create the ELF interpreter info */
211 elf_info = (elf_addr_t *)current->mm->saved_auxv;
212 /* update AT_VECTOR_SIZE_BASE if the number of NEW_AUX_ENT() changes */
213 #define NEW_AUX_ENT(id, val) \
215 elf_info[ei_index++] = id; \
216 elf_info[ei_index++] = val; \
221 * ARCH_DLINFO must come first so PPC can do its special alignment of
223 * update AT_VECTOR_SIZE_ARCH if the number of NEW_AUX_ENT() in
224 * ARCH_DLINFO changes
228 NEW_AUX_ENT(AT_HWCAP, ELF_HWCAP);
229 NEW_AUX_ENT(AT_PAGESZ, ELF_EXEC_PAGESIZE);
230 NEW_AUX_ENT(AT_CLKTCK, CLOCKS_PER_SEC);
231 NEW_AUX_ENT(AT_PHDR, load_addr + exec->e_phoff);
232 NEW_AUX_ENT(AT_PHENT, sizeof(struct elf_phdr));
233 NEW_AUX_ENT(AT_PHNUM, exec->e_phnum);
234 NEW_AUX_ENT(AT_BASE, interp_load_addr);
235 NEW_AUX_ENT(AT_FLAGS, 0);
236 NEW_AUX_ENT(AT_ENTRY, exec->e_entry);
237 NEW_AUX_ENT(AT_UID, from_kuid_munged(cred->user_ns, cred->uid));
238 NEW_AUX_ENT(AT_EUID, from_kuid_munged(cred->user_ns, cred->euid));
239 NEW_AUX_ENT(AT_GID, from_kgid_munged(cred->user_ns, cred->gid));
240 NEW_AUX_ENT(AT_EGID, from_kgid_munged(cred->user_ns, cred->egid));
241 NEW_AUX_ENT(AT_SECURE, security_bprm_secureexec(bprm));
242 NEW_AUX_ENT(AT_RANDOM, (elf_addr_t)(unsigned long)u_rand_bytes);
243 NEW_AUX_ENT(AT_EXECFN, bprm->exec);
245 NEW_AUX_ENT(AT_PLATFORM,
246 (elf_addr_t)(unsigned long)u_platform);
248 if (k_base_platform) {
249 NEW_AUX_ENT(AT_BASE_PLATFORM,
250 (elf_addr_t)(unsigned long)u_base_platform);
252 if (bprm->interp_flags & BINPRM_FLAGS_EXECFD) {
253 NEW_AUX_ENT(AT_EXECFD, bprm->interp_data);
256 /* AT_NULL is zero; clear the rest too */
257 memset(&elf_info[ei_index], 0,
258 sizeof current->mm->saved_auxv - ei_index * sizeof elf_info[0]);
260 /* And advance past the AT_NULL entry. */
263 sp = STACK_ADD(p, ei_index);
265 items = (argc + 1) + (envc + 1) + 1;
266 bprm->p = STACK_ROUND(sp, items);
268 /* Point sp at the lowest address on the stack */
269 #ifdef CONFIG_STACK_GROWSUP
270 sp = (elf_addr_t __user *)bprm->p - items - ei_index;
271 bprm->exec = (unsigned long)sp; /* XXX: PARISC HACK */
273 sp = (elf_addr_t __user *)bprm->p;
278 * Grow the stack manually; some architectures have a limit on how
279 * far ahead a user-space access may be in order to grow the stack.
281 vma = find_extend_vma(current->mm, bprm->p);
285 /* Now, let's put argc (and argv, envp if appropriate) on the stack */
286 if (__put_user(argc, sp++))
289 envp = argv + argc + 1;
291 /* Populate argv and envp */
292 p = current->mm->arg_end = current->mm->arg_start;
295 if (__put_user((elf_addr_t)p, argv++))
297 len = strnlen_user((void __user *)p, MAX_ARG_STRLEN);
298 if (!len || len > MAX_ARG_STRLEN)
302 if (__put_user(0, argv))
304 current->mm->arg_end = current->mm->env_start = p;
307 if (__put_user((elf_addr_t)p, envp++))
309 len = strnlen_user((void __user *)p, MAX_ARG_STRLEN);
310 if (!len || len > MAX_ARG_STRLEN)
314 if (__put_user(0, envp))
316 current->mm->env_end = p;
318 /* Put the elf_info on the stack in the right place. */
319 sp = (elf_addr_t __user *)envp + 1;
320 if (copy_to_user(sp, elf_info, ei_index * sizeof(elf_addr_t)))
327 static unsigned long elf_map(struct file *filep, unsigned long addr,
328 struct elf_phdr *eppnt, int prot, int type,
329 unsigned long total_size)
331 unsigned long map_addr;
332 unsigned long size = eppnt->p_filesz + ELF_PAGEOFFSET(eppnt->p_vaddr);
333 unsigned long off = eppnt->p_offset - ELF_PAGEOFFSET(eppnt->p_vaddr);
334 addr = ELF_PAGESTART(addr);
335 size = ELF_PAGEALIGN(size);
337 /* mmap() will return -EINVAL if given a zero size, but a
338 * segment with zero filesize is perfectly valid */
343 * total_size is the size of the ELF (interpreter) image.
344 * The _first_ mmap needs to know the full size, otherwise
345 * randomization might put this image into an overlapping
346 * position with the ELF binary image. (since size < total_size)
347 * So we first map the 'big' image - and unmap the remainder at
348 * the end. (which unmap is needed for ELF images with holes.)
351 total_size = ELF_PAGEALIGN(total_size);
352 map_addr = vm_mmap(filep, addr, total_size, prot, type, off);
353 if (!BAD_ADDR(map_addr))
354 vm_munmap(map_addr+size, total_size-size);
356 map_addr = vm_mmap(filep, addr, size, prot, type, off);
361 #endif /* !elf_map */
363 static unsigned long total_mapping_size(struct elf_phdr *cmds, int nr)
365 int i, first_idx = -1, last_idx = -1;
367 for (i = 0; i < nr; i++) {
368 if (cmds[i].p_type == PT_LOAD) {
377 return cmds[last_idx].p_vaddr + cmds[last_idx].p_memsz -
378 ELF_PAGESTART(cmds[first_idx].p_vaddr);
382 /* This is much more generalized than the library routine read function,
383 so we keep this separate. Technically the library read function
384 is only provided so that we can read a.out libraries that have
387 static unsigned long load_elf_interp(struct elfhdr *interp_elf_ex,
388 struct file *interpreter, unsigned long *interp_map_addr,
389 unsigned long no_base)
391 struct elf_phdr *elf_phdata;
392 struct elf_phdr *eppnt;
393 unsigned long load_addr = 0;
394 int load_addr_set = 0;
395 unsigned long last_bss = 0, elf_bss = 0;
396 unsigned long error = ~0UL;
397 unsigned long total_size;
400 /* First of all, some simple consistency checks */
401 if (interp_elf_ex->e_type != ET_EXEC &&
402 interp_elf_ex->e_type != ET_DYN)
404 if (!elf_check_arch(interp_elf_ex))
406 if (!interpreter->f_op || !interpreter->f_op->mmap)
410 * If the size of this structure has changed, then punt, since
411 * we will be doing the wrong thing.
413 if (interp_elf_ex->e_phentsize != sizeof(struct elf_phdr))
415 if (interp_elf_ex->e_phnum < 1 ||
416 interp_elf_ex->e_phnum > 65536U / sizeof(struct elf_phdr))
419 /* Now read in all of the header information */
420 size = sizeof(struct elf_phdr) * interp_elf_ex->e_phnum;
421 if (size > ELF_MIN_ALIGN)
423 elf_phdata = kmalloc(size, GFP_KERNEL);
427 retval = kernel_read(interpreter, interp_elf_ex->e_phoff,
428 (char *)elf_phdata, size);
430 if (retval != size) {
436 total_size = total_mapping_size(elf_phdata, interp_elf_ex->e_phnum);
443 for (i = 0; i < interp_elf_ex->e_phnum; i++, eppnt++) {
444 if (eppnt->p_type == PT_LOAD) {
445 int elf_type = MAP_PRIVATE | MAP_DENYWRITE;
447 unsigned long vaddr = 0;
448 unsigned long k, map_addr;
450 if (eppnt->p_flags & PF_R)
451 elf_prot = PROT_READ;
452 if (eppnt->p_flags & PF_W)
453 elf_prot |= PROT_WRITE;
454 if (eppnt->p_flags & PF_X)
455 elf_prot |= PROT_EXEC;
456 vaddr = eppnt->p_vaddr;
457 if (interp_elf_ex->e_type == ET_EXEC || load_addr_set)
458 elf_type |= MAP_FIXED;
459 else if (no_base && interp_elf_ex->e_type == ET_DYN)
462 map_addr = elf_map(interpreter, load_addr + vaddr,
463 eppnt, elf_prot, elf_type, total_size);
465 if (!*interp_map_addr)
466 *interp_map_addr = map_addr;
468 if (BAD_ADDR(map_addr))
471 if (!load_addr_set &&
472 interp_elf_ex->e_type == ET_DYN) {
473 load_addr = map_addr - ELF_PAGESTART(vaddr);
478 * Check to see if the section's size will overflow the
479 * allowed task size. Note that p_filesz must always be
480 * <= p_memsize so it's only necessary to check p_memsz.
482 k = load_addr + eppnt->p_vaddr;
484 eppnt->p_filesz > eppnt->p_memsz ||
485 eppnt->p_memsz > TASK_SIZE ||
486 TASK_SIZE - eppnt->p_memsz < k) {
492 * Find the end of the file mapping for this phdr, and
493 * keep track of the largest address we see for this.
495 k = load_addr + eppnt->p_vaddr + eppnt->p_filesz;
500 * Do the same thing for the memory mapping - between
501 * elf_bss and last_bss is the bss section.
503 k = load_addr + eppnt->p_memsz + eppnt->p_vaddr;
509 if (last_bss > elf_bss) {
511 * Now fill out the bss section. First pad the last page up
512 * to the page boundary, and then perform a mmap to make sure
513 * that there are zero-mapped pages up to and including the
516 if (padzero(elf_bss)) {
521 /* What we have mapped so far */
522 elf_bss = ELF_PAGESTART(elf_bss + ELF_MIN_ALIGN - 1);
524 /* Map the last of the bss segment */
525 error = vm_brk(elf_bss, last_bss - elf_bss);
539 * These are the functions used to load ELF style executables and shared
540 * libraries. There is no binary dependent code anywhere else.
543 #define INTERPRETER_NONE 0
544 #define INTERPRETER_ELF 2
546 #ifndef STACK_RND_MASK
547 #define STACK_RND_MASK (0x7ff >> (PAGE_SHIFT - 12)) /* 8MB of VA */
550 static unsigned long randomize_stack_top(unsigned long stack_top)
552 unsigned int random_variable = 0;
554 if ((current->flags & PF_RANDOMIZE) &&
555 !(current->personality & ADDR_NO_RANDOMIZE)) {
556 random_variable = get_random_int() & STACK_RND_MASK;
557 random_variable <<= PAGE_SHIFT;
559 #ifdef CONFIG_STACK_GROWSUP
560 return PAGE_ALIGN(stack_top) + random_variable;
562 return PAGE_ALIGN(stack_top) - random_variable;
566 static int load_elf_binary(struct linux_binprm *bprm)
568 struct file *interpreter = NULL; /* to shut gcc up */
569 unsigned long load_addr = 0, load_bias = 0;
570 int load_addr_set = 0;
571 char * elf_interpreter = NULL;
573 struct elf_phdr *elf_ppnt, *elf_phdata;
574 unsigned long elf_bss, elf_brk;
577 unsigned long elf_entry;
578 unsigned long interp_load_addr = 0;
579 unsigned long start_code, end_code, start_data, end_data;
580 unsigned long reloc_func_desc __maybe_unused = 0;
581 int executable_stack = EXSTACK_DEFAULT;
582 unsigned long def_flags = 0;
583 struct pt_regs *regs = current_pt_regs();
585 struct elfhdr elf_ex;
586 struct elfhdr interp_elf_ex;
589 loc = kmalloc(sizeof(*loc), GFP_KERNEL);
595 /* Get the exec-header */
596 loc->elf_ex = *((struct elfhdr *)bprm->buf);
599 /* First of all, some simple consistency checks */
600 if (memcmp(loc->elf_ex.e_ident, ELFMAG, SELFMAG) != 0)
603 if (loc->elf_ex.e_type != ET_EXEC && loc->elf_ex.e_type != ET_DYN)
605 if (!elf_check_arch(&loc->elf_ex))
607 if (!bprm->file->f_op || !bprm->file->f_op->mmap)
610 /* Now read in all of the header information */
611 if (loc->elf_ex.e_phentsize != sizeof(struct elf_phdr))
613 if (loc->elf_ex.e_phnum < 1 ||
614 loc->elf_ex.e_phnum > 65536U / sizeof(struct elf_phdr))
616 size = loc->elf_ex.e_phnum * sizeof(struct elf_phdr);
618 elf_phdata = kmalloc(size, GFP_KERNEL);
622 retval = kernel_read(bprm->file, loc->elf_ex.e_phoff,
623 (char *)elf_phdata, size);
624 if (retval != size) {
630 elf_ppnt = elf_phdata;
639 for (i = 0; i < loc->elf_ex.e_phnum; i++) {
640 if (elf_ppnt->p_type == PT_INTERP) {
641 /* This is the program interpreter used for
642 * shared libraries - for now assume that this
643 * is an a.out format binary
646 if (elf_ppnt->p_filesz > PATH_MAX ||
647 elf_ppnt->p_filesz < 2)
651 elf_interpreter = kmalloc(elf_ppnt->p_filesz,
653 if (!elf_interpreter)
656 retval = kernel_read(bprm->file, elf_ppnt->p_offset,
659 if (retval != elf_ppnt->p_filesz) {
662 goto out_free_interp;
664 /* make sure path is NULL terminated */
666 if (elf_interpreter[elf_ppnt->p_filesz - 1] != '\0')
667 goto out_free_interp;
669 interpreter = open_exec(elf_interpreter);
670 retval = PTR_ERR(interpreter);
671 if (IS_ERR(interpreter))
672 goto out_free_interp;
675 * If the binary is not readable then enforce
676 * mm->dumpable = 0 regardless of the interpreter's
679 would_dump(bprm, interpreter);
681 retval = kernel_read(interpreter, 0, bprm->buf,
683 if (retval != BINPRM_BUF_SIZE) {
686 goto out_free_dentry;
689 /* Get the exec headers */
690 loc->interp_elf_ex = *((struct elfhdr *)bprm->buf);
696 elf_ppnt = elf_phdata;
697 for (i = 0; i < loc->elf_ex.e_phnum; i++, elf_ppnt++)
698 if (elf_ppnt->p_type == PT_GNU_STACK) {
699 if (elf_ppnt->p_flags & PF_X)
700 executable_stack = EXSTACK_ENABLE_X;
702 executable_stack = EXSTACK_DISABLE_X;
706 /* Some simple consistency checks for the interpreter */
707 if (elf_interpreter) {
709 /* Not an ELF interpreter */
710 if (memcmp(loc->interp_elf_ex.e_ident, ELFMAG, SELFMAG) != 0)
711 goto out_free_dentry;
712 /* Verify the interpreter has a valid arch */
713 if (!elf_check_arch(&loc->interp_elf_ex))
714 goto out_free_dentry;
717 /* Flush all traces of the currently running executable */
718 retval = flush_old_exec(bprm);
720 goto out_free_dentry;
722 /* OK, This is the point of no return */
723 current->mm->def_flags = def_flags;
725 /* Do this immediately, since STACK_TOP as used in setup_arg_pages
726 may depend on the personality. */
727 SET_PERSONALITY(loc->elf_ex);
728 if (elf_read_implies_exec(loc->elf_ex, executable_stack))
729 current->personality |= READ_IMPLIES_EXEC;
731 if (!(current->personality & ADDR_NO_RANDOMIZE) && randomize_va_space)
732 current->flags |= PF_RANDOMIZE;
734 setup_new_exec(bprm);
736 /* Do this so that we can load the interpreter, if need be. We will
737 change some of these later */
738 current->mm->free_area_cache = current->mm->mmap_base;
739 current->mm->cached_hole_size = 0;
740 retval = setup_arg_pages(bprm, randomize_stack_top(STACK_TOP),
743 send_sig(SIGKILL, current, 0);
744 goto out_free_dentry;
747 current->mm->start_stack = bprm->p;
749 /* Now we do a little grungy work by mmapping the ELF image into
750 the correct location in memory. */
751 for(i = 0, elf_ppnt = elf_phdata;
752 i < loc->elf_ex.e_phnum; i++, elf_ppnt++) {
753 int elf_prot = 0, elf_flags;
754 unsigned long k, vaddr;
756 if (elf_ppnt->p_type != PT_LOAD)
759 if (unlikely (elf_brk > elf_bss)) {
762 /* There was a PT_LOAD segment with p_memsz > p_filesz
763 before this one. Map anonymous pages, if needed,
764 and clear the area. */
765 retval = set_brk(elf_bss + load_bias,
766 elf_brk + load_bias);
768 send_sig(SIGKILL, current, 0);
769 goto out_free_dentry;
771 nbyte = ELF_PAGEOFFSET(elf_bss);
773 nbyte = ELF_MIN_ALIGN - nbyte;
774 if (nbyte > elf_brk - elf_bss)
775 nbyte = elf_brk - elf_bss;
776 if (clear_user((void __user *)elf_bss +
779 * This bss-zeroing can fail if the ELF
780 * file specifies odd protections. So
781 * we don't check the return value
787 if (elf_ppnt->p_flags & PF_R)
788 elf_prot |= PROT_READ;
789 if (elf_ppnt->p_flags & PF_W)
790 elf_prot |= PROT_WRITE;
791 if (elf_ppnt->p_flags & PF_X)
792 elf_prot |= PROT_EXEC;
794 elf_flags = MAP_PRIVATE | MAP_DENYWRITE | MAP_EXECUTABLE;
796 vaddr = elf_ppnt->p_vaddr;
797 if (loc->elf_ex.e_type == ET_EXEC || load_addr_set) {
798 elf_flags |= MAP_FIXED;
799 } else if (loc->elf_ex.e_type == ET_DYN) {
800 /* Try and get dynamic programs out of the way of the
801 * default mmap base, as well as whatever program they
802 * might try to exec. This is because the brk will
803 * follow the loader, and is not movable. */
804 #ifdef CONFIG_ARCH_BINFMT_ELF_RANDOMIZE_PIE
805 /* Memory randomization might have been switched off
806 * in runtime via sysctl.
807 * If that is the case, retain the original non-zero
808 * load_bias value in order to establish proper
809 * non-randomized mappings.
811 if (current->flags & PF_RANDOMIZE)
814 load_bias = ELF_PAGESTART(ELF_ET_DYN_BASE - vaddr);
816 load_bias = ELF_PAGESTART(ELF_ET_DYN_BASE - vaddr);
820 error = elf_map(bprm->file, load_bias + vaddr, elf_ppnt,
821 elf_prot, elf_flags, 0);
822 if (BAD_ADDR(error)) {
823 send_sig(SIGKILL, current, 0);
824 retval = IS_ERR((void *)error) ?
825 PTR_ERR((void*)error) : -EINVAL;
826 goto out_free_dentry;
829 if (!load_addr_set) {
831 load_addr = (elf_ppnt->p_vaddr - elf_ppnt->p_offset);
832 if (loc->elf_ex.e_type == ET_DYN) {
834 ELF_PAGESTART(load_bias + vaddr);
835 load_addr += load_bias;
836 reloc_func_desc = load_bias;
839 k = elf_ppnt->p_vaddr;
846 * Check to see if the section's size will overflow the
847 * allowed task size. Note that p_filesz must always be
848 * <= p_memsz so it is only necessary to check p_memsz.
850 if (BAD_ADDR(k) || elf_ppnt->p_filesz > elf_ppnt->p_memsz ||
851 elf_ppnt->p_memsz > TASK_SIZE ||
852 TASK_SIZE - elf_ppnt->p_memsz < k) {
853 /* set_brk can never work. Avoid overflows. */
854 send_sig(SIGKILL, current, 0);
856 goto out_free_dentry;
859 k = elf_ppnt->p_vaddr + elf_ppnt->p_filesz;
863 if ((elf_ppnt->p_flags & PF_X) && end_code < k)
867 k = elf_ppnt->p_vaddr + elf_ppnt->p_memsz;
872 loc->elf_ex.e_entry += load_bias;
873 elf_bss += load_bias;
874 elf_brk += load_bias;
875 start_code += load_bias;
876 end_code += load_bias;
877 start_data += load_bias;
878 end_data += load_bias;
880 /* Calling set_brk effectively mmaps the pages that we need
881 * for the bss and break sections. We must do this before
882 * mapping in the interpreter, to make sure it doesn't wind
883 * up getting placed where the bss needs to go.
885 retval = set_brk(elf_bss, elf_brk);
887 send_sig(SIGKILL, current, 0);
888 goto out_free_dentry;
890 if (likely(elf_bss != elf_brk) && unlikely(padzero(elf_bss))) {
891 send_sig(SIGSEGV, current, 0);
892 retval = -EFAULT; /* Nobody gets to see this, but.. */
893 goto out_free_dentry;
896 if (elf_interpreter) {
897 unsigned long interp_map_addr = 0;
899 elf_entry = load_elf_interp(&loc->interp_elf_ex,
903 if (!IS_ERR((void *)elf_entry)) {
905 * load_elf_interp() returns relocation
908 interp_load_addr = elf_entry;
909 elf_entry += loc->interp_elf_ex.e_entry;
911 if (BAD_ADDR(elf_entry)) {
912 force_sig(SIGSEGV, current);
913 retval = IS_ERR((void *)elf_entry) ?
914 (int)elf_entry : -EINVAL;
915 goto out_free_dentry;
917 reloc_func_desc = interp_load_addr;
919 allow_write_access(interpreter);
921 kfree(elf_interpreter);
923 elf_entry = loc->elf_ex.e_entry;
924 if (BAD_ADDR(elf_entry)) {
925 force_sig(SIGSEGV, current);
927 goto out_free_dentry;
933 set_binfmt(&elf_format);
935 #ifdef ARCH_HAS_SETUP_ADDITIONAL_PAGES
936 retval = arch_setup_additional_pages(bprm, !!elf_interpreter);
938 send_sig(SIGKILL, current, 0);
941 #endif /* ARCH_HAS_SETUP_ADDITIONAL_PAGES */
943 install_exec_creds(bprm);
944 retval = create_elf_tables(bprm, &loc->elf_ex,
945 load_addr, interp_load_addr);
947 send_sig(SIGKILL, current, 0);
950 /* N.B. passed_fileno might not be initialized? */
951 current->mm->end_code = end_code;
952 current->mm->start_code = start_code;
953 current->mm->start_data = start_data;
954 current->mm->end_data = end_data;
955 current->mm->start_stack = bprm->p;
957 #ifdef arch_randomize_brk
958 if ((current->flags & PF_RANDOMIZE) && (randomize_va_space > 1)) {
959 current->mm->brk = current->mm->start_brk =
960 arch_randomize_brk(current->mm);
961 #ifdef CONFIG_COMPAT_BRK
962 current->brk_randomized = 1;
967 if (current->personality & MMAP_PAGE_ZERO) {
968 /* Why this, you ask??? Well SVr4 maps page 0 as read-only,
969 and some applications "depend" upon this behavior.
970 Since we do not have the power to recompile these, we
971 emulate the SVr4 behavior. Sigh. */
972 error = vm_mmap(NULL, 0, PAGE_SIZE, PROT_READ | PROT_EXEC,
973 MAP_FIXED | MAP_PRIVATE, 0);
978 * The ABI may specify that certain registers be set up in special
979 * ways (on i386 %edx is the address of a DT_FINI function, for
980 * example. In addition, it may also specify (eg, PowerPC64 ELF)
981 * that the e_entry field is the address of the function descriptor
982 * for the startup routine, rather than the address of the startup
983 * routine itself. This macro performs whatever initialization to
984 * the regs structure is required as well as any relocations to the
985 * function descriptor entries when executing dynamically links apps.
987 ELF_PLAT_INIT(regs, reloc_func_desc);
990 start_thread(regs, elf_entry, bprm->p);
999 allow_write_access(interpreter);
1003 kfree(elf_interpreter);
1009 /* This is really simpleminded and specialized - we are loading an
1010 a.out library that is given an ELF header. */
1011 static int load_elf_library(struct file *file)
1013 struct elf_phdr *elf_phdata;
1014 struct elf_phdr *eppnt;
1015 unsigned long elf_bss, bss, len;
1016 int retval, error, i, j;
1017 struct elfhdr elf_ex;
1020 retval = kernel_read(file, 0, (char *)&elf_ex, sizeof(elf_ex));
1021 if (retval != sizeof(elf_ex))
1024 if (memcmp(elf_ex.e_ident, ELFMAG, SELFMAG) != 0)
1027 /* First of all, some simple consistency checks */
1028 if (elf_ex.e_type != ET_EXEC || elf_ex.e_phnum > 2 ||
1029 !elf_check_arch(&elf_ex) || !file->f_op || !file->f_op->mmap)
1032 /* Now read in all of the header information */
1034 j = sizeof(struct elf_phdr) * elf_ex.e_phnum;
1035 /* j < ELF_MIN_ALIGN because elf_ex.e_phnum <= 2 */
1038 elf_phdata = kmalloc(j, GFP_KERNEL);
1044 retval = kernel_read(file, elf_ex.e_phoff, (char *)eppnt, j);
1048 for (j = 0, i = 0; i<elf_ex.e_phnum; i++)
1049 if ((eppnt + i)->p_type == PT_LOAD)
1054 while (eppnt->p_type != PT_LOAD)
1057 /* Now use mmap to map the library into memory. */
1058 error = vm_mmap(file,
1059 ELF_PAGESTART(eppnt->p_vaddr),
1061 ELF_PAGEOFFSET(eppnt->p_vaddr)),
1062 PROT_READ | PROT_WRITE | PROT_EXEC,
1063 MAP_FIXED | MAP_PRIVATE | MAP_DENYWRITE,
1065 ELF_PAGEOFFSET(eppnt->p_vaddr)));
1066 if (error != ELF_PAGESTART(eppnt->p_vaddr))
1069 elf_bss = eppnt->p_vaddr + eppnt->p_filesz;
1070 if (padzero(elf_bss)) {
1075 len = ELF_PAGESTART(eppnt->p_filesz + eppnt->p_vaddr +
1077 bss = eppnt->p_memsz + eppnt->p_vaddr;
1079 vm_brk(len, bss - len);
1088 #ifdef CONFIG_ELF_CORE
1092 * Modelled on fs/exec.c:aout_core_dump()
1093 * Jeremy Fitzhardinge <jeremy@sw.oz.au>
1097 * The purpose of always_dump_vma() is to make sure that special kernel mappings
1098 * that are useful for post-mortem analysis are included in every core dump.
1099 * In that way we ensure that the core dump is fully interpretable later
1100 * without matching up the same kernel and hardware config to see what PC values
1101 * meant. These special mappings include - vDSO, vsyscall, and other
1102 * architecture specific mappings
1104 static bool always_dump_vma(struct vm_area_struct *vma)
1106 /* Any vsyscall mappings? */
1107 if (vma == get_gate_vma(vma->vm_mm))
1110 * arch_vma_name() returns non-NULL for special architecture mappings,
1111 * such as vDSO sections.
1113 if (arch_vma_name(vma))
1120 * Decide what to dump of a segment, part, all or none.
1122 static unsigned long vma_dump_size(struct vm_area_struct *vma,
1123 unsigned long mm_flags)
1125 #define FILTER(type) (mm_flags & (1UL << MMF_DUMP_##type))
1127 /* always dump the vdso and vsyscall sections */
1128 if (always_dump_vma(vma))
1131 if (vma->vm_flags & VM_DONTDUMP)
1134 /* Hugetlb memory check */
1135 if (vma->vm_flags & VM_HUGETLB) {
1136 if ((vma->vm_flags & VM_SHARED) && FILTER(HUGETLB_SHARED))
1138 if (!(vma->vm_flags & VM_SHARED) && FILTER(HUGETLB_PRIVATE))
1143 /* Do not dump I/O mapped devices or special mappings */
1144 if (vma->vm_flags & VM_IO)
1147 /* By default, dump shared memory if mapped from an anonymous file. */
1148 if (vma->vm_flags & VM_SHARED) {
1149 if (file_inode(vma->vm_file)->i_nlink == 0 ?
1150 FILTER(ANON_SHARED) : FILTER(MAPPED_SHARED))
1155 /* Dump segments that have been written to. */
1156 if (vma->anon_vma && FILTER(ANON_PRIVATE))
1158 if (vma->vm_file == NULL)
1161 if (FILTER(MAPPED_PRIVATE))
1165 * If this looks like the beginning of a DSO or executable mapping,
1166 * check for an ELF header. If we find one, dump the first page to
1167 * aid in determining what was mapped here.
1169 if (FILTER(ELF_HEADERS) &&
1170 vma->vm_pgoff == 0 && (vma->vm_flags & VM_READ)) {
1171 u32 __user *header = (u32 __user *) vma->vm_start;
1173 mm_segment_t fs = get_fs();
1175 * Doing it this way gets the constant folded by GCC.
1179 char elfmag[SELFMAG];
1181 BUILD_BUG_ON(SELFMAG != sizeof word);
1182 magic.elfmag[EI_MAG0] = ELFMAG0;
1183 magic.elfmag[EI_MAG1] = ELFMAG1;
1184 magic.elfmag[EI_MAG2] = ELFMAG2;
1185 magic.elfmag[EI_MAG3] = ELFMAG3;
1187 * Switch to the user "segment" for get_user(),
1188 * then put back what elf_core_dump() had in place.
1191 if (unlikely(get_user(word, header)))
1194 if (word == magic.cmp)
1203 return vma->vm_end - vma->vm_start;
1206 /* An ELF note in memory */
1211 unsigned int datasz;
1215 static int notesize(struct memelfnote *en)
1219 sz = sizeof(struct elf_note);
1220 sz += roundup(strlen(en->name) + 1, 4);
1221 sz += roundup(en->datasz, 4);
1226 #define DUMP_WRITE(addr, nr, foffset) \
1227 do { if (!dump_write(file, (addr), (nr))) return 0; *foffset += (nr); } while(0)
1229 static int alignfile(struct file *file, loff_t *foffset)
1231 static const char buf[4] = { 0, };
1232 DUMP_WRITE(buf, roundup(*foffset, 4) - *foffset, foffset);
1236 static int writenote(struct memelfnote *men, struct file *file,
1240 en.n_namesz = strlen(men->name) + 1;
1241 en.n_descsz = men->datasz;
1242 en.n_type = men->type;
1244 DUMP_WRITE(&en, sizeof(en), foffset);
1245 DUMP_WRITE(men->name, en.n_namesz, foffset);
1246 if (!alignfile(file, foffset))
1248 DUMP_WRITE(men->data, men->datasz, foffset);
1249 if (!alignfile(file, foffset))
1256 static void fill_elf_header(struct elfhdr *elf, int segs,
1257 u16 machine, u32 flags)
1259 memset(elf, 0, sizeof(*elf));
1261 memcpy(elf->e_ident, ELFMAG, SELFMAG);
1262 elf->e_ident[EI_CLASS] = ELF_CLASS;
1263 elf->e_ident[EI_DATA] = ELF_DATA;
1264 elf->e_ident[EI_VERSION] = EV_CURRENT;
1265 elf->e_ident[EI_OSABI] = ELF_OSABI;
1267 elf->e_type = ET_CORE;
1268 elf->e_machine = machine;
1269 elf->e_version = EV_CURRENT;
1270 elf->e_phoff = sizeof(struct elfhdr);
1271 elf->e_flags = flags;
1272 elf->e_ehsize = sizeof(struct elfhdr);
1273 elf->e_phentsize = sizeof(struct elf_phdr);
1274 elf->e_phnum = segs;
1279 static void fill_elf_note_phdr(struct elf_phdr *phdr, int sz, loff_t offset)
1281 phdr->p_type = PT_NOTE;
1282 phdr->p_offset = offset;
1285 phdr->p_filesz = sz;
1292 static void fill_note(struct memelfnote *note, const char *name, int type,
1293 unsigned int sz, void *data)
1303 * fill up all the fields in prstatus from the given task struct, except
1304 * registers which need to be filled up separately.
1306 static void fill_prstatus(struct elf_prstatus *prstatus,
1307 struct task_struct *p, long signr)
1309 prstatus->pr_info.si_signo = prstatus->pr_cursig = signr;
1310 prstatus->pr_sigpend = p->pending.signal.sig[0];
1311 prstatus->pr_sighold = p->blocked.sig[0];
1313 prstatus->pr_ppid = task_pid_vnr(rcu_dereference(p->real_parent));
1315 prstatus->pr_pid = task_pid_vnr(p);
1316 prstatus->pr_pgrp = task_pgrp_vnr(p);
1317 prstatus->pr_sid = task_session_vnr(p);
1318 if (thread_group_leader(p)) {
1319 struct task_cputime cputime;
1322 * This is the record for the group leader. It shows the
1323 * group-wide total, not its individual thread total.
1325 thread_group_cputime(p, &cputime);
1326 cputime_to_timeval(cputime.utime, &prstatus->pr_utime);
1327 cputime_to_timeval(cputime.stime, &prstatus->pr_stime);
1329 cputime_t utime, stime;
1331 task_cputime(p, &utime, &stime);
1332 cputime_to_timeval(utime, &prstatus->pr_utime);
1333 cputime_to_timeval(stime, &prstatus->pr_stime);
1335 cputime_to_timeval(p->signal->cutime, &prstatus->pr_cutime);
1336 cputime_to_timeval(p->signal->cstime, &prstatus->pr_cstime);
1339 static int fill_psinfo(struct elf_prpsinfo *psinfo, struct task_struct *p,
1340 struct mm_struct *mm)
1342 const struct cred *cred;
1343 unsigned int i, len;
1345 /* first copy the parameters from user space */
1346 memset(psinfo, 0, sizeof(struct elf_prpsinfo));
1348 len = mm->arg_end - mm->arg_start;
1349 if (len >= ELF_PRARGSZ)
1350 len = ELF_PRARGSZ-1;
1351 if (copy_from_user(&psinfo->pr_psargs,
1352 (const char __user *)mm->arg_start, len))
1354 for(i = 0; i < len; i++)
1355 if (psinfo->pr_psargs[i] == 0)
1356 psinfo->pr_psargs[i] = ' ';
1357 psinfo->pr_psargs[len] = 0;
1360 psinfo->pr_ppid = task_pid_vnr(rcu_dereference(p->real_parent));
1362 psinfo->pr_pid = task_pid_vnr(p);
1363 psinfo->pr_pgrp = task_pgrp_vnr(p);
1364 psinfo->pr_sid = task_session_vnr(p);
1366 i = p->state ? ffz(~p->state) + 1 : 0;
1367 psinfo->pr_state = i;
1368 psinfo->pr_sname = (i > 5) ? '.' : "RSDTZW"[i];
1369 psinfo->pr_zomb = psinfo->pr_sname == 'Z';
1370 psinfo->pr_nice = task_nice(p);
1371 psinfo->pr_flag = p->flags;
1373 cred = __task_cred(p);
1374 SET_UID(psinfo->pr_uid, from_kuid_munged(cred->user_ns, cred->uid));
1375 SET_GID(psinfo->pr_gid, from_kgid_munged(cred->user_ns, cred->gid));
1377 strncpy(psinfo->pr_fname, p->comm, sizeof(psinfo->pr_fname));
1382 static void fill_auxv_note(struct memelfnote *note, struct mm_struct *mm)
1384 elf_addr_t *auxv = (elf_addr_t *) mm->saved_auxv;
1388 while (auxv[i - 2] != AT_NULL);
1389 fill_note(note, "CORE", NT_AUXV, i * sizeof(elf_addr_t), auxv);
1392 static void fill_siginfo_note(struct memelfnote *note, user_siginfo_t *csigdata,
1395 mm_segment_t old_fs = get_fs();
1397 copy_siginfo_to_user((user_siginfo_t __user *) csigdata, siginfo);
1399 fill_note(note, "CORE", NT_SIGINFO, sizeof(*csigdata), csigdata);
1402 #define MAX_FILE_NOTE_SIZE (4*1024*1024)
1404 * Format of NT_FILE note:
1406 * long count -- how many files are mapped
1407 * long page_size -- units for file_ofs
1408 * array of [COUNT] elements of
1412 * followed by COUNT filenames in ASCII: "FILE1" NUL "FILE2" NUL...
1414 static void fill_files_note(struct memelfnote *note)
1416 struct vm_area_struct *vma;
1417 unsigned count, size, names_ofs, remaining, n;
1419 user_long_t *start_end_ofs;
1420 char *name_base, *name_curpos;
1422 /* *Estimated* file count and total data size needed */
1423 count = current->mm->map_count;
1426 names_ofs = (2 + 3 * count) * sizeof(data[0]);
1428 if (size >= MAX_FILE_NOTE_SIZE) /* paranoia check */
1430 size = round_up(size, PAGE_SIZE);
1431 data = vmalloc(size);
1435 start_end_ofs = data + 2;
1436 name_base = name_curpos = ((char *)data) + names_ofs;
1437 remaining = size - names_ofs;
1439 for (vma = current->mm->mmap; vma != NULL; vma = vma->vm_next) {
1441 const char *filename;
1443 file = vma->vm_file;
1446 filename = d_path(&file->f_path, name_curpos, remaining);
1447 if (IS_ERR(filename)) {
1448 if (PTR_ERR(filename) == -ENAMETOOLONG) {
1450 size = size * 5 / 4;
1456 /* d_path() fills at the end, move name down */
1457 /* n = strlen(filename) + 1: */
1458 n = (name_curpos + remaining) - filename;
1459 remaining = filename - name_curpos;
1460 memmove(name_curpos, filename, n);
1463 *start_end_ofs++ = vma->vm_start;
1464 *start_end_ofs++ = vma->vm_end;
1465 *start_end_ofs++ = vma->vm_pgoff;
1469 /* Now we know exact count of files, can store it */
1471 data[1] = PAGE_SIZE;
1473 * Count usually is less than current->mm->map_count,
1474 * we need to move filenames down.
1476 n = current->mm->map_count - count;
1478 unsigned shift_bytes = n * 3 * sizeof(data[0]);
1479 memmove(name_base - shift_bytes, name_base,
1480 name_curpos - name_base);
1481 name_curpos -= shift_bytes;
1484 size = name_curpos - (char *)data;
1485 fill_note(note, "CORE", NT_FILE, size, data);
1489 #ifdef CORE_DUMP_USE_REGSET
1490 #include <linux/regset.h>
1492 struct elf_thread_core_info {
1493 struct elf_thread_core_info *next;
1494 struct task_struct *task;
1495 struct elf_prstatus prstatus;
1496 struct memelfnote notes[0];
1499 struct elf_note_info {
1500 struct elf_thread_core_info *thread;
1501 struct memelfnote psinfo;
1502 struct memelfnote signote;
1503 struct memelfnote auxv;
1504 struct memelfnote files;
1505 user_siginfo_t csigdata;
1511 * When a regset has a writeback hook, we call it on each thread before
1512 * dumping user memory. On register window machines, this makes sure the
1513 * user memory backing the register data is up to date before we read it.
1515 static void do_thread_regset_writeback(struct task_struct *task,
1516 const struct user_regset *regset)
1518 if (regset->writeback)
1519 regset->writeback(task, regset, 1);
1523 #define PR_REG_SIZE(S) sizeof(S)
1526 #ifndef PRSTATUS_SIZE
1527 #define PRSTATUS_SIZE(S) sizeof(S)
1531 #define PR_REG_PTR(S) (&((S)->pr_reg))
1534 #ifndef SET_PR_FPVALID
1535 #define SET_PR_FPVALID(S, V) ((S)->pr_fpvalid = (V))
1538 static int fill_thread_core_info(struct elf_thread_core_info *t,
1539 const struct user_regset_view *view,
1540 long signr, size_t *total)
1545 * NT_PRSTATUS is the one special case, because the regset data
1546 * goes into the pr_reg field inside the note contents, rather
1547 * than being the whole note contents. We fill the reset in here.
1548 * We assume that regset 0 is NT_PRSTATUS.
1550 fill_prstatus(&t->prstatus, t->task, signr);
1551 (void) view->regsets[0].get(t->task, &view->regsets[0],
1552 0, PR_REG_SIZE(t->prstatus.pr_reg),
1553 PR_REG_PTR(&t->prstatus), NULL);
1555 fill_note(&t->notes[0], "CORE", NT_PRSTATUS,
1556 PRSTATUS_SIZE(t->prstatus), &t->prstatus);
1557 *total += notesize(&t->notes[0]);
1559 do_thread_regset_writeback(t->task, &view->regsets[0]);
1562 * Each other regset might generate a note too. For each regset
1563 * that has no core_note_type or is inactive, we leave t->notes[i]
1564 * all zero and we'll know to skip writing it later.
1566 for (i = 1; i < view->n; ++i) {
1567 const struct user_regset *regset = &view->regsets[i];
1568 do_thread_regset_writeback(t->task, regset);
1569 if (regset->core_note_type && regset->get &&
1570 (!regset->active || regset->active(t->task, regset))) {
1572 size_t size = regset->n * regset->size;
1573 void *data = kmalloc(size, GFP_KERNEL);
1574 if (unlikely(!data))
1576 ret = regset->get(t->task, regset,
1577 0, size, data, NULL);
1581 if (regset->core_note_type != NT_PRFPREG)
1582 fill_note(&t->notes[i], "LINUX",
1583 regset->core_note_type,
1586 SET_PR_FPVALID(&t->prstatus, 1);
1587 fill_note(&t->notes[i], "CORE",
1588 NT_PRFPREG, size, data);
1590 *total += notesize(&t->notes[i]);
1598 static int fill_note_info(struct elfhdr *elf, int phdrs,
1599 struct elf_note_info *info,
1600 siginfo_t *siginfo, struct pt_regs *regs)
1602 struct task_struct *dump_task = current;
1603 const struct user_regset_view *view = task_user_regset_view(dump_task);
1604 struct elf_thread_core_info *t;
1605 struct elf_prpsinfo *psinfo;
1606 struct core_thread *ct;
1610 info->thread = NULL;
1612 psinfo = kmalloc(sizeof(*psinfo), GFP_KERNEL);
1613 if (psinfo == NULL) {
1614 info->psinfo.data = NULL; /* So we don't free this wrongly */
1618 fill_note(&info->psinfo, "CORE", NT_PRPSINFO, sizeof(*psinfo), psinfo);
1621 * Figure out how many notes we're going to need for each thread.
1623 info->thread_notes = 0;
1624 for (i = 0; i < view->n; ++i)
1625 if (view->regsets[i].core_note_type != 0)
1626 ++info->thread_notes;
1629 * Sanity check. We rely on regset 0 being in NT_PRSTATUS,
1630 * since it is our one special case.
1632 if (unlikely(info->thread_notes == 0) ||
1633 unlikely(view->regsets[0].core_note_type != NT_PRSTATUS)) {
1639 * Initialize the ELF file header.
1641 fill_elf_header(elf, phdrs,
1642 view->e_machine, view->e_flags);
1645 * Allocate a structure for each thread.
1647 for (ct = &dump_task->mm->core_state->dumper; ct; ct = ct->next) {
1648 t = kzalloc(offsetof(struct elf_thread_core_info,
1649 notes[info->thread_notes]),
1655 if (ct->task == dump_task || !info->thread) {
1656 t->next = info->thread;
1660 * Make sure to keep the original task at
1661 * the head of the list.
1663 t->next = info->thread->next;
1664 info->thread->next = t;
1669 * Now fill in each thread's information.
1671 for (t = info->thread; t != NULL; t = t->next)
1672 if (!fill_thread_core_info(t, view, siginfo->si_signo, &info->size))
1676 * Fill in the two process-wide notes.
1678 fill_psinfo(psinfo, dump_task->group_leader, dump_task->mm);
1679 info->size += notesize(&info->psinfo);
1681 fill_siginfo_note(&info->signote, &info->csigdata, siginfo);
1682 info->size += notesize(&info->signote);
1684 fill_auxv_note(&info->auxv, current->mm);
1685 info->size += notesize(&info->auxv);
1687 fill_files_note(&info->files);
1688 info->size += notesize(&info->files);
1693 static size_t get_note_info_size(struct elf_note_info *info)
1699 * Write all the notes for each thread. When writing the first thread, the
1700 * process-wide notes are interleaved after the first thread-specific note.
1702 static int write_note_info(struct elf_note_info *info,
1703 struct file *file, loff_t *foffset)
1706 struct elf_thread_core_info *t = info->thread;
1711 if (!writenote(&t->notes[0], file, foffset))
1714 if (first && !writenote(&info->psinfo, file, foffset))
1716 if (first && !writenote(&info->signote, file, foffset))
1718 if (first && !writenote(&info->auxv, file, foffset))
1720 if (first && !writenote(&info->files, file, foffset))
1723 for (i = 1; i < info->thread_notes; ++i)
1724 if (t->notes[i].data &&
1725 !writenote(&t->notes[i], file, foffset))
1735 static void free_note_info(struct elf_note_info *info)
1737 struct elf_thread_core_info *threads = info->thread;
1740 struct elf_thread_core_info *t = threads;
1742 WARN_ON(t->notes[0].data && t->notes[0].data != &t->prstatus);
1743 for (i = 1; i < info->thread_notes; ++i)
1744 kfree(t->notes[i].data);
1747 kfree(info->psinfo.data);
1748 vfree(info->files.data);
1753 /* Here is the structure in which status of each thread is captured. */
1754 struct elf_thread_status
1756 struct list_head list;
1757 struct elf_prstatus prstatus; /* NT_PRSTATUS */
1758 elf_fpregset_t fpu; /* NT_PRFPREG */
1759 struct task_struct *thread;
1760 #ifdef ELF_CORE_COPY_XFPREGS
1761 elf_fpxregset_t xfpu; /* ELF_CORE_XFPREG_TYPE */
1763 struct memelfnote notes[3];
1768 * In order to add the specific thread information for the elf file format,
1769 * we need to keep a linked list of every threads pr_status and then create
1770 * a single section for them in the final core file.
1772 static int elf_dump_thread_status(long signr, struct elf_thread_status *t)
1775 struct task_struct *p = t->thread;
1778 fill_prstatus(&t->prstatus, p, signr);
1779 elf_core_copy_task_regs(p, &t->prstatus.pr_reg);
1781 fill_note(&t->notes[0], "CORE", NT_PRSTATUS, sizeof(t->prstatus),
1784 sz += notesize(&t->notes[0]);
1786 if ((t->prstatus.pr_fpvalid = elf_core_copy_task_fpregs(p, NULL,
1788 fill_note(&t->notes[1], "CORE", NT_PRFPREG, sizeof(t->fpu),
1791 sz += notesize(&t->notes[1]);
1794 #ifdef ELF_CORE_COPY_XFPREGS
1795 if (elf_core_copy_task_xfpregs(p, &t->xfpu)) {
1796 fill_note(&t->notes[2], "LINUX", ELF_CORE_XFPREG_TYPE,
1797 sizeof(t->xfpu), &t->xfpu);
1799 sz += notesize(&t->notes[2]);
1805 struct elf_note_info {
1806 struct memelfnote *notes;
1807 struct elf_prstatus *prstatus; /* NT_PRSTATUS */
1808 struct elf_prpsinfo *psinfo; /* NT_PRPSINFO */
1809 struct list_head thread_list;
1810 elf_fpregset_t *fpu;
1811 #ifdef ELF_CORE_COPY_XFPREGS
1812 elf_fpxregset_t *xfpu;
1814 user_siginfo_t csigdata;
1815 int thread_status_size;
1819 static int elf_note_info_init(struct elf_note_info *info)
1821 memset(info, 0, sizeof(*info));
1822 INIT_LIST_HEAD(&info->thread_list);
1824 /* Allocate space for ELF notes */
1825 info->notes = kmalloc(8 * sizeof(struct memelfnote), GFP_KERNEL);
1828 info->psinfo = kmalloc(sizeof(*info->psinfo), GFP_KERNEL);
1831 info->prstatus = kmalloc(sizeof(*info->prstatus), GFP_KERNEL);
1832 if (!info->prstatus)
1834 info->fpu = kmalloc(sizeof(*info->fpu), GFP_KERNEL);
1837 #ifdef ELF_CORE_COPY_XFPREGS
1838 info->xfpu = kmalloc(sizeof(*info->xfpu), GFP_KERNEL);
1845 static int fill_note_info(struct elfhdr *elf, int phdrs,
1846 struct elf_note_info *info,
1847 siginfo_t *siginfo, struct pt_regs *regs)
1849 struct list_head *t;
1851 if (!elf_note_info_init(info))
1854 if (siginfo->si_signo) {
1855 struct core_thread *ct;
1856 struct elf_thread_status *ets;
1858 for (ct = current->mm->core_state->dumper.next;
1859 ct; ct = ct->next) {
1860 ets = kzalloc(sizeof(*ets), GFP_KERNEL);
1864 ets->thread = ct->task;
1865 list_add(&ets->list, &info->thread_list);
1868 list_for_each(t, &info->thread_list) {
1871 ets = list_entry(t, struct elf_thread_status, list);
1872 sz = elf_dump_thread_status(siginfo->si_signo, ets);
1873 info->thread_status_size += sz;
1876 /* now collect the dump for the current */
1877 memset(info->prstatus, 0, sizeof(*info->prstatus));
1878 fill_prstatus(info->prstatus, current, siginfo->si_signo);
1879 elf_core_copy_regs(&info->prstatus->pr_reg, regs);
1882 fill_elf_header(elf, phdrs, ELF_ARCH, ELF_CORE_EFLAGS);
1885 * Set up the notes in similar form to SVR4 core dumps made
1886 * with info from their /proc.
1889 fill_note(info->notes + 0, "CORE", NT_PRSTATUS,
1890 sizeof(*info->prstatus), info->prstatus);
1891 fill_psinfo(info->psinfo, current->group_leader, current->mm);
1892 fill_note(info->notes + 1, "CORE", NT_PRPSINFO,
1893 sizeof(*info->psinfo), info->psinfo);
1895 fill_siginfo_note(info->notes + 2, &info->csigdata, siginfo);
1896 fill_auxv_note(info->notes + 3, current->mm);
1897 fill_files_note(info->notes + 4);
1901 /* Try to dump the FPU. */
1902 info->prstatus->pr_fpvalid = elf_core_copy_task_fpregs(current, regs,
1904 if (info->prstatus->pr_fpvalid)
1905 fill_note(info->notes + info->numnote++,
1906 "CORE", NT_PRFPREG, sizeof(*info->fpu), info->fpu);
1907 #ifdef ELF_CORE_COPY_XFPREGS
1908 if (elf_core_copy_task_xfpregs(current, info->xfpu))
1909 fill_note(info->notes + info->numnote++,
1910 "LINUX", ELF_CORE_XFPREG_TYPE,
1911 sizeof(*info->xfpu), info->xfpu);
1917 static size_t get_note_info_size(struct elf_note_info *info)
1922 for (i = 0; i < info->numnote; i++)
1923 sz += notesize(info->notes + i);
1925 sz += info->thread_status_size;
1930 static int write_note_info(struct elf_note_info *info,
1931 struct file *file, loff_t *foffset)
1934 struct list_head *t;
1936 for (i = 0; i < info->numnote; i++)
1937 if (!writenote(info->notes + i, file, foffset))
1940 /* write out the thread status notes section */
1941 list_for_each(t, &info->thread_list) {
1942 struct elf_thread_status *tmp =
1943 list_entry(t, struct elf_thread_status, list);
1945 for (i = 0; i < tmp->num_notes; i++)
1946 if (!writenote(&tmp->notes[i], file, foffset))
1953 static void free_note_info(struct elf_note_info *info)
1955 while (!list_empty(&info->thread_list)) {
1956 struct list_head *tmp = info->thread_list.next;
1958 kfree(list_entry(tmp, struct elf_thread_status, list));
1961 /* Free data allocated by fill_files_note(): */
1962 vfree(info->notes[4].data);
1964 kfree(info->prstatus);
1965 kfree(info->psinfo);
1968 #ifdef ELF_CORE_COPY_XFPREGS
1975 static struct vm_area_struct *first_vma(struct task_struct *tsk,
1976 struct vm_area_struct *gate_vma)
1978 struct vm_area_struct *ret = tsk->mm->mmap;
1985 * Helper function for iterating across a vma list. It ensures that the caller
1986 * will visit `gate_vma' prior to terminating the search.
1988 static struct vm_area_struct *next_vma(struct vm_area_struct *this_vma,
1989 struct vm_area_struct *gate_vma)
1991 struct vm_area_struct *ret;
1993 ret = this_vma->vm_next;
1996 if (this_vma == gate_vma)
2001 static void fill_extnum_info(struct elfhdr *elf, struct elf_shdr *shdr4extnum,
2002 elf_addr_t e_shoff, int segs)
2004 elf->e_shoff = e_shoff;
2005 elf->e_shentsize = sizeof(*shdr4extnum);
2007 elf->e_shstrndx = SHN_UNDEF;
2009 memset(shdr4extnum, 0, sizeof(*shdr4extnum));
2011 shdr4extnum->sh_type = SHT_NULL;
2012 shdr4extnum->sh_size = elf->e_shnum;
2013 shdr4extnum->sh_link = elf->e_shstrndx;
2014 shdr4extnum->sh_info = segs;
2017 static size_t elf_core_vma_data_size(struct vm_area_struct *gate_vma,
2018 unsigned long mm_flags)
2020 struct vm_area_struct *vma;
2023 for (vma = first_vma(current, gate_vma); vma != NULL;
2024 vma = next_vma(vma, gate_vma))
2025 size += vma_dump_size(vma, mm_flags);
2032 * This is a two-pass process; first we find the offsets of the bits,
2033 * and then they are actually written out. If we run out of core limit
2036 static int elf_core_dump(struct coredump_params *cprm)
2042 struct vm_area_struct *vma, *gate_vma;
2043 struct elfhdr *elf = NULL;
2044 loff_t offset = 0, dataoff, foffset;
2045 struct elf_note_info info;
2046 struct elf_phdr *phdr4note = NULL;
2047 struct elf_shdr *shdr4extnum = NULL;
2052 * We no longer stop all VM operations.
2054 * This is because those proceses that could possibly change map_count
2055 * or the mmap / vma pages are now blocked in do_exit on current
2056 * finishing this core dump.
2058 * Only ptrace can touch these memory addresses, but it doesn't change
2059 * the map_count or the pages allocated. So no possibility of crashing
2060 * exists while dumping the mm->vm_next areas to the core file.
2063 /* alloc memory for large data structures: too large to be on stack */
2064 elf = kmalloc(sizeof(*elf), GFP_KERNEL);
2068 * The number of segs are recored into ELF header as 16bit value.
2069 * Please check DEFAULT_MAX_MAP_COUNT definition when you modify here.
2071 segs = current->mm->map_count;
2072 segs += elf_core_extra_phdrs();
2074 gate_vma = get_gate_vma(current->mm);
2075 if (gate_vma != NULL)
2078 /* for notes section */
2081 /* If segs > PN_XNUM(0xffff), then e_phnum overflows. To avoid
2082 * this, kernel supports extended numbering. Have a look at
2083 * include/linux/elf.h for further information. */
2084 e_phnum = segs > PN_XNUM ? PN_XNUM : segs;
2087 * Collect all the non-memory information about the process for the
2088 * notes. This also sets up the file header.
2090 if (!fill_note_info(elf, e_phnum, &info, cprm->siginfo, cprm->regs))
2094 current->flags |= PF_DUMPCORE;
2099 offset += sizeof(*elf); /* Elf header */
2100 offset += segs * sizeof(struct elf_phdr); /* Program headers */
2103 /* Write notes phdr entry */
2105 size_t sz = get_note_info_size(&info);
2107 sz += elf_coredump_extra_notes_size();
2109 phdr4note = kmalloc(sizeof(*phdr4note), GFP_KERNEL);
2113 fill_elf_note_phdr(phdr4note, sz, offset);
2117 dataoff = offset = roundup(offset, ELF_EXEC_PAGESIZE);
2119 offset += elf_core_vma_data_size(gate_vma, cprm->mm_flags);
2120 offset += elf_core_extra_data_size();
2123 if (e_phnum == PN_XNUM) {
2124 shdr4extnum = kmalloc(sizeof(*shdr4extnum), GFP_KERNEL);
2127 fill_extnum_info(elf, shdr4extnum, e_shoff, segs);
2132 size += sizeof(*elf);
2133 if (size > cprm->limit || !dump_write(cprm->file, elf, sizeof(*elf)))
2136 size += sizeof(*phdr4note);
2137 if (size > cprm->limit
2138 || !dump_write(cprm->file, phdr4note, sizeof(*phdr4note)))
2141 /* Write program headers for segments dump */
2142 for (vma = first_vma(current, gate_vma); vma != NULL;
2143 vma = next_vma(vma, gate_vma)) {
2144 struct elf_phdr phdr;
2146 phdr.p_type = PT_LOAD;
2147 phdr.p_offset = offset;
2148 phdr.p_vaddr = vma->vm_start;
2150 phdr.p_filesz = vma_dump_size(vma, cprm->mm_flags);
2151 phdr.p_memsz = vma->vm_end - vma->vm_start;
2152 offset += phdr.p_filesz;
2153 phdr.p_flags = vma->vm_flags & VM_READ ? PF_R : 0;
2154 if (vma->vm_flags & VM_WRITE)
2155 phdr.p_flags |= PF_W;
2156 if (vma->vm_flags & VM_EXEC)
2157 phdr.p_flags |= PF_X;
2158 phdr.p_align = ELF_EXEC_PAGESIZE;
2160 size += sizeof(phdr);
2161 if (size > cprm->limit
2162 || !dump_write(cprm->file, &phdr, sizeof(phdr)))
2166 if (!elf_core_write_extra_phdrs(cprm->file, offset, &size, cprm->limit))
2169 /* write out the notes section */
2170 if (!write_note_info(&info, cprm->file, &foffset))
2173 if (elf_coredump_extra_notes_write(cprm->file, &foffset))
2177 if (!dump_seek(cprm->file, dataoff - foffset))
2180 for (vma = first_vma(current, gate_vma); vma != NULL;
2181 vma = next_vma(vma, gate_vma)) {
2185 end = vma->vm_start + vma_dump_size(vma, cprm->mm_flags);
2187 for (addr = vma->vm_start; addr < end; addr += PAGE_SIZE) {
2191 page = get_dump_page(addr);
2193 void *kaddr = kmap(page);
2194 stop = ((size += PAGE_SIZE) > cprm->limit) ||
2195 !dump_write(cprm->file, kaddr,
2198 page_cache_release(page);
2200 stop = !dump_seek(cprm->file, PAGE_SIZE);
2206 if (!elf_core_write_extra_data(cprm->file, &size, cprm->limit))
2209 if (e_phnum == PN_XNUM) {
2210 size += sizeof(*shdr4extnum);
2211 if (size > cprm->limit
2212 || !dump_write(cprm->file, shdr4extnum,
2213 sizeof(*shdr4extnum)))
2221 free_note_info(&info);
2229 #endif /* CONFIG_ELF_CORE */
2231 static int __init init_elf_binfmt(void)
2233 register_binfmt(&elf_format);
2237 static void __exit exit_elf_binfmt(void)
2239 /* Remove the COFF and ELF loaders. */
2240 unregister_binfmt(&elf_format);
2243 core_initcall(init_elf_binfmt);
2244 module_exit(exit_elf_binfmt);
2245 MODULE_LICENSE("GPL");
projects / platform / adaptation / renesas_rcar / renesas_kernel.git / blob