1 //===-- ProcessElfCore.cpp --------------------------------------*- C++ -*-===// 2 // 3 // Part of the LLVM Project, under the Apache License v2.0 with LLVM Exceptions. 4 // See https://llvm.org/LICENSE.txt for license information. 5 // SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception 6 // 7 //===----------------------------------------------------------------------===// 8 9 #include <stdlib.h> 10 11 #include <memory> 12 #include <mutex> 13 14 #include "lldb/Core/Module.h" 15 #include "lldb/Core/ModuleSpec.h" 16 #include "lldb/Core/PluginManager.h" 17 #include "lldb/Core/Section.h" 18 #include "lldb/Target/DynamicLoader.h" 19 #include "lldb/Target/MemoryRegionInfo.h" 20 #include "lldb/Target/Target.h" 21 #include "lldb/Target/UnixSignals.h" 22 #include "lldb/Utility/DataBufferHeap.h" 23 #include "lldb/Utility/Log.h" 24 #include "lldb/Utility/State.h" 25 26 #include "llvm/BinaryFormat/ELF.h" 27 #include "llvm/Support/Threading.h" 28 29 #include "Plugins/DynamicLoader/POSIX-DYLD/DynamicLoaderPOSIXDYLD.h" 30 #include "Plugins/ObjectFile/ELF/ObjectFileELF.h" 31 #include "Plugins/Process/elf-core/RegisterUtilities.h" 32 #include "ProcessElfCore.h" 33 #include "ThreadElfCore.h" 34 35 using namespace lldb_private; 36 37 ConstString ProcessElfCore::GetPluginNameStatic() { 38 static ConstString g_name("elf-core"); 39 return g_name; 40 } 41 42 const char *ProcessElfCore::GetPluginDescriptionStatic() { 43 return "ELF core dump plug-in."; 44 } 45 46 void ProcessElfCore::Terminate() { 47 PluginManager::UnregisterPlugin(ProcessElfCore::CreateInstance); 48 } 49 50 lldb::ProcessSP ProcessElfCore::CreateInstance(lldb::TargetSP target_sp, 51 lldb::ListenerSP listener_sp, 52 const FileSpec *crash_file) { 53 lldb::ProcessSP process_sp; 54 if (crash_file) { 55 // Read enough data for a ELF32 header or ELF64 header Note: Here we care 56 // about e_type field only, so it is safe to ignore possible presence of 57 // the header extension. 58 const size_t header_size = sizeof(llvm::ELF::Elf64_Ehdr); 59 60 auto data_sp = FileSystem::Instance().CreateDataBuffer( 61 crash_file->GetPath(), header_size, 0); 62 if (data_sp && data_sp->GetByteSize() == header_size && 63 elf::ELFHeader::MagicBytesMatch(data_sp->GetBytes())) { 64 elf::ELFHeader elf_header; 65 DataExtractor data(data_sp, lldb::eByteOrderLittle, 4); 66 lldb::offset_t data_offset = 0; 67 if (elf_header.Parse(data, &data_offset)) { 68 if (elf_header.e_type == llvm::ELF::ET_CORE) 69 process_sp = std::make_shared<ProcessElfCore>(target_sp, listener_sp, 70 *crash_file); 71 } 72 } 73 } 74 return process_sp; 75 } 76 77 bool ProcessElfCore::CanDebug(lldb::TargetSP target_sp, 78 bool plugin_specified_by_name) { 79 // For now we are just making sure the file exists for a given module 80 if (!m_core_module_sp && FileSystem::Instance().Exists(m_core_file)) { 81 ModuleSpec core_module_spec(m_core_file, target_sp->GetArchitecture()); 82 Status error(ModuleList::GetSharedModule(core_module_spec, m_core_module_sp, 83 NULL, NULL, NULL)); 84 if (m_core_module_sp) { 85 ObjectFile *core_objfile = m_core_module_sp->GetObjectFile(); 86 if (core_objfile && core_objfile->GetType() == ObjectFile::eTypeCoreFile) 87 return true; 88 } 89 } 90 return false; 91 } 92 93 //---------------------------------------------------------------------- 94 // ProcessElfCore constructor 95 //---------------------------------------------------------------------- 96 ProcessElfCore::ProcessElfCore(lldb::TargetSP target_sp, 97 lldb::ListenerSP listener_sp, 98 const FileSpec &core_file) 99 : Process(target_sp, listener_sp), m_core_file(core_file) {} 100 101 //---------------------------------------------------------------------- 102 // Destructor 103 //---------------------------------------------------------------------- 104 ProcessElfCore::~ProcessElfCore() { 105 Clear(); 106 // We need to call finalize on the process before destroying ourselves to 107 // make sure all of the broadcaster cleanup goes as planned. If we destruct 108 // this class, then Process::~Process() might have problems trying to fully 109 // destroy the broadcaster. 110 Finalize(); 111 } 112 113 //---------------------------------------------------------------------- 114 // PluginInterface 115 //---------------------------------------------------------------------- 116 ConstString ProcessElfCore::GetPluginName() { return GetPluginNameStatic(); } 117 118 uint32_t ProcessElfCore::GetPluginVersion() { return 1; } 119 120 lldb::addr_t ProcessElfCore::AddAddressRangeFromLoadSegment( 121 const elf::ELFProgramHeader &header) { 122 const lldb::addr_t addr = header.p_vaddr; 123 FileRange file_range(header.p_offset, header.p_filesz); 124 VMRangeToFileOffset::Entry range_entry(addr, header.p_memsz, file_range); 125 126 VMRangeToFileOffset::Entry *last_entry = m_core_aranges.Back(); 127 if (last_entry && last_entry->GetRangeEnd() == range_entry.GetRangeBase() && 128 last_entry->data.GetRangeEnd() == range_entry.data.GetRangeBase() && 129 last_entry->GetByteSize() == last_entry->data.GetByteSize()) { 130 last_entry->SetRangeEnd(range_entry.GetRangeEnd()); 131 last_entry->data.SetRangeEnd(range_entry.data.GetRangeEnd()); 132 } else { 133 m_core_aranges.Append(range_entry); 134 } 135 136 // Keep a separate map of permissions that that isn't coalesced so all ranges 137 // are maintained. 138 const uint32_t permissions = 139 ((header.p_flags & llvm::ELF::PF_R) ? lldb::ePermissionsReadable : 0u) | 140 ((header.p_flags & llvm::ELF::PF_W) ? lldb::ePermissionsWritable : 0u) | 141 ((header.p_flags & llvm::ELF::PF_X) ? lldb::ePermissionsExecutable : 0u); 142 143 m_core_range_infos.Append( 144 VMRangeToPermissions::Entry(addr, header.p_memsz, permissions)); 145 146 return addr; 147 } 148 149 //---------------------------------------------------------------------- 150 // Process Control 151 //---------------------------------------------------------------------- 152 Status ProcessElfCore::DoLoadCore() { 153 Status error; 154 if (!m_core_module_sp) { 155 error.SetErrorString("invalid core module"); 156 return error; 157 } 158 159 ObjectFileELF *core = (ObjectFileELF *)(m_core_module_sp->GetObjectFile()); 160 if (core == NULL) { 161 error.SetErrorString("invalid core object file"); 162 return error; 163 } 164 165 llvm::ArrayRef<elf::ELFProgramHeader> segments = core->ProgramHeaders(); 166 if (segments.size() == 0) { 167 error.SetErrorString("core file has no segments"); 168 return error; 169 } 170 171 SetCanJIT(false); 172 173 m_thread_data_valid = true; 174 175 bool ranges_are_sorted = true; 176 lldb::addr_t vm_addr = 0; 177 /// Walk through segments and Thread and Address Map information. 178 /// PT_NOTE - Contains Thread and Register information 179 /// PT_LOAD - Contains a contiguous range of Process Address Space 180 for (const elf::ELFProgramHeader &H : segments) { 181 DataExtractor data = core->GetSegmentData(H); 182 183 // Parse thread contexts and auxv structure 184 if (H.p_type == llvm::ELF::PT_NOTE) { 185 if (llvm::Error error = ParseThreadContextsFromNoteSegment(H, data)) 186 return Status(std::move(error)); 187 } 188 // PT_LOAD segments contains address map 189 if (H.p_type == llvm::ELF::PT_LOAD) { 190 lldb::addr_t last_addr = AddAddressRangeFromLoadSegment(H); 191 if (vm_addr > last_addr) 192 ranges_are_sorted = false; 193 vm_addr = last_addr; 194 } 195 } 196 197 if (!ranges_are_sorted) { 198 m_core_aranges.Sort(); 199 m_core_range_infos.Sort(); 200 } 201 202 // Even if the architecture is set in the target, we need to override it to 203 // match the core file which is always single arch. 204 ArchSpec arch(m_core_module_sp->GetArchitecture()); 205 206 ArchSpec target_arch = GetTarget().GetArchitecture(); 207 ArchSpec core_arch(m_core_module_sp->GetArchitecture()); 208 target_arch.MergeFrom(core_arch); 209 GetTarget().SetArchitecture(target_arch); 210 211 SetUnixSignals(UnixSignals::Create(GetArchitecture())); 212 213 // Ensure we found at least one thread that was stopped on a signal. 214 bool siginfo_signal_found = false; 215 bool prstatus_signal_found = false; 216 // Check we found a signal in a SIGINFO note. 217 for (const auto &thread_data : m_thread_data) { 218 if (thread_data.signo != 0) 219 siginfo_signal_found = true; 220 if (thread_data.prstatus_sig != 0) 221 prstatus_signal_found = true; 222 } 223 if (!siginfo_signal_found) { 224 // If we don't have signal from SIGINFO use the signal from each threads 225 // PRSTATUS note. 226 if (prstatus_signal_found) { 227 for (auto &thread_data : m_thread_data) 228 thread_data.signo = thread_data.prstatus_sig; 229 } else if (m_thread_data.size() > 0) { 230 // If all else fails force the first thread to be SIGSTOP 231 m_thread_data.begin()->signo = 232 GetUnixSignals()->GetSignalNumberFromName("SIGSTOP"); 233 } 234 } 235 236 // Core files are useless without the main executable. See if we can locate 237 // the main executable using data we found in the core file notes. 238 lldb::ModuleSP exe_module_sp = GetTarget().GetExecutableModule(); 239 if (!exe_module_sp) { 240 // The first entry in the NT_FILE might be our executable 241 if (!m_nt_file_entries.empty()) { 242 ModuleSpec exe_module_spec; 243 exe_module_spec.GetArchitecture() = arch; 244 exe_module_spec.GetFileSpec().SetFile( 245 m_nt_file_entries[0].path.GetCString(), FileSpec::Style::native); 246 if (exe_module_spec.GetFileSpec()) { 247 exe_module_sp = GetTarget().GetSharedModule(exe_module_spec); 248 if (exe_module_sp) 249 GetTarget().SetExecutableModule(exe_module_sp, eLoadDependentsNo); 250 } 251 } 252 } 253 return error; 254 } 255 256 lldb_private::DynamicLoader *ProcessElfCore::GetDynamicLoader() { 257 if (m_dyld_up.get() == NULL) 258 m_dyld_up.reset(DynamicLoader::FindPlugin( 259 this, DynamicLoaderPOSIXDYLD::GetPluginNameStatic().GetCString())); 260 return m_dyld_up.get(); 261 } 262 263 bool ProcessElfCore::UpdateThreadList(ThreadList &old_thread_list, 264 ThreadList &new_thread_list) { 265 const uint32_t num_threads = GetNumThreadContexts(); 266 if (!m_thread_data_valid) 267 return false; 268 269 for (lldb::tid_t tid = 0; tid < num_threads; ++tid) { 270 const ThreadData &td = m_thread_data[tid]; 271 lldb::ThreadSP thread_sp(new ThreadElfCore(*this, td)); 272 new_thread_list.AddThread(thread_sp); 273 } 274 return new_thread_list.GetSize(false) > 0; 275 } 276 277 void ProcessElfCore::RefreshStateAfterStop() {} 278 279 Status ProcessElfCore::DoDestroy() { return Status(); } 280 281 //------------------------------------------------------------------ 282 // Process Queries 283 //------------------------------------------------------------------ 284 285 bool ProcessElfCore::IsAlive() { return true; } 286 287 //------------------------------------------------------------------ 288 // Process Memory 289 //------------------------------------------------------------------ 290 size_t ProcessElfCore::ReadMemory(lldb::addr_t addr, void *buf, size_t size, 291 Status &error) { 292 // Don't allow the caching that lldb_private::Process::ReadMemory does since 293 // in core files we have it all cached our our core file anyway. 294 return DoReadMemory(addr, buf, size, error); 295 } 296 297 Status ProcessElfCore::GetMemoryRegionInfo(lldb::addr_t load_addr, 298 MemoryRegionInfo ®ion_info) { 299 region_info.Clear(); 300 const VMRangeToPermissions::Entry *permission_entry = 301 m_core_range_infos.FindEntryThatContainsOrFollows(load_addr); 302 if (permission_entry) { 303 if (permission_entry->Contains(load_addr)) { 304 region_info.GetRange().SetRangeBase(permission_entry->GetRangeBase()); 305 region_info.GetRange().SetRangeEnd(permission_entry->GetRangeEnd()); 306 const Flags permissions(permission_entry->data); 307 region_info.SetReadable(permissions.Test(lldb::ePermissionsReadable) 308 ? MemoryRegionInfo::eYes 309 : MemoryRegionInfo::eNo); 310 region_info.SetWritable(permissions.Test(lldb::ePermissionsWritable) 311 ? MemoryRegionInfo::eYes 312 : MemoryRegionInfo::eNo); 313 region_info.SetExecutable(permissions.Test(lldb::ePermissionsExecutable) 314 ? MemoryRegionInfo::eYes 315 : MemoryRegionInfo::eNo); 316 region_info.SetMapped(MemoryRegionInfo::eYes); 317 } else if (load_addr < permission_entry->GetRangeBase()) { 318 region_info.GetRange().SetRangeBase(load_addr); 319 region_info.GetRange().SetRangeEnd(permission_entry->GetRangeBase()); 320 region_info.SetReadable(MemoryRegionInfo::eNo); 321 region_info.SetWritable(MemoryRegionInfo::eNo); 322 region_info.SetExecutable(MemoryRegionInfo::eNo); 323 region_info.SetMapped(MemoryRegionInfo::eNo); 324 } 325 return Status(); 326 } 327 328 region_info.GetRange().SetRangeBase(load_addr); 329 region_info.GetRange().SetRangeEnd(LLDB_INVALID_ADDRESS); 330 region_info.SetReadable(MemoryRegionInfo::eNo); 331 region_info.SetWritable(MemoryRegionInfo::eNo); 332 region_info.SetExecutable(MemoryRegionInfo::eNo); 333 region_info.SetMapped(MemoryRegionInfo::eNo); 334 return Status(); 335 } 336 337 size_t ProcessElfCore::DoReadMemory(lldb::addr_t addr, void *buf, size_t size, 338 Status &error) { 339 ObjectFile *core_objfile = m_core_module_sp->GetObjectFile(); 340 341 if (core_objfile == NULL) 342 return 0; 343 344 // Get the address range 345 const VMRangeToFileOffset::Entry *address_range = 346 m_core_aranges.FindEntryThatContains(addr); 347 if (address_range == NULL || address_range->GetRangeEnd() < addr) { 348 error.SetErrorStringWithFormat("core file does not contain 0x%" PRIx64, 349 addr); 350 return 0; 351 } 352 353 // Convert the address into core file offset 354 const lldb::addr_t offset = addr - address_range->GetRangeBase(); 355 const lldb::addr_t file_start = address_range->data.GetRangeBase(); 356 const lldb::addr_t file_end = address_range->data.GetRangeEnd(); 357 size_t bytes_to_read = size; // Number of bytes to read from the core file 358 size_t bytes_copied = 0; // Number of bytes actually read from the core file 359 size_t zero_fill_size = 0; // Padding 360 lldb::addr_t bytes_left = 361 0; // Number of bytes available in the core file from the given address 362 363 // Don't proceed if core file doesn't contain the actual data for this 364 // address range. 365 if (file_start == file_end) 366 return 0; 367 368 // Figure out how many on-disk bytes remain in this segment starting at the 369 // given offset 370 if (file_end > file_start + offset) 371 bytes_left = file_end - (file_start + offset); 372 373 // Figure out how many bytes we need to zero-fill if we are reading more 374 // bytes than available in the on-disk segment 375 if (bytes_to_read > bytes_left) { 376 zero_fill_size = bytes_to_read - bytes_left; 377 bytes_to_read = bytes_left; 378 } 379 380 // If there is data available on the core file read it 381 if (bytes_to_read) 382 bytes_copied = 383 core_objfile->CopyData(offset + file_start, bytes_to_read, buf); 384 385 assert(zero_fill_size <= size); 386 // Pad remaining bytes 387 if (zero_fill_size) 388 memset(((char *)buf) + bytes_copied, 0, zero_fill_size); 389 390 return bytes_copied + zero_fill_size; 391 } 392 393 void ProcessElfCore::Clear() { 394 m_thread_list.Clear(); 395 396 SetUnixSignals(std::make_shared<UnixSignals>()); 397 } 398 399 void ProcessElfCore::Initialize() { 400 static llvm::once_flag g_once_flag; 401 402 llvm::call_once(g_once_flag, []() { 403 PluginManager::RegisterPlugin(GetPluginNameStatic(), 404 GetPluginDescriptionStatic(), CreateInstance); 405 }); 406 } 407 408 lldb::addr_t ProcessElfCore::GetImageInfoAddress() { 409 ObjectFile *obj_file = GetTarget().GetExecutableModule()->GetObjectFile(); 410 Address addr = obj_file->GetImageInfoAddress(&GetTarget()); 411 412 if (addr.IsValid()) 413 return addr.GetLoadAddress(&GetTarget()); 414 return LLDB_INVALID_ADDRESS; 415 } 416 417 // Parse a FreeBSD NT_PRSTATUS note - see FreeBSD sys/procfs.h for details. 418 static void ParseFreeBSDPrStatus(ThreadData &thread_data, 419 const DataExtractor &data, 420 const ArchSpec &arch) { 421 lldb::offset_t offset = 0; 422 bool lp64 = (arch.GetMachine() == llvm::Triple::aarch64 || 423 arch.GetMachine() == llvm::Triple::mips64 || 424 arch.GetMachine() == llvm::Triple::ppc64 || 425 arch.GetMachine() == llvm::Triple::x86_64); 426 int pr_version = data.GetU32(&offset); 427 428 Log *log(GetLogIfAllCategoriesSet(LIBLLDB_LOG_PROCESS)); 429 if (log) { 430 if (pr_version > 1) 431 log->Printf("FreeBSD PRSTATUS unexpected version %d", pr_version); 432 } 433 434 // Skip padding, pr_statussz, pr_gregsetsz, pr_fpregsetsz, pr_osreldate 435 if (lp64) 436 offset += 32; 437 else 438 offset += 16; 439 440 thread_data.signo = data.GetU32(&offset); // pr_cursig 441 thread_data.tid = data.GetU32(&offset); // pr_pid 442 if (lp64) 443 offset += 4; 444 445 size_t len = data.GetByteSize() - offset; 446 thread_data.gpregset = DataExtractor(data, offset, len); 447 } 448 449 static llvm::Error ParseNetBSDProcInfo(const DataExtractor &data, 450 uint32_t &cpi_nlwps, 451 uint32_t &cpi_signo, 452 uint32_t &cpi_siglwp, 453 uint32_t &cpi_pid) { 454 lldb::offset_t offset = 0; 455 456 uint32_t version = data.GetU32(&offset); 457 if (version != 1) 458 return llvm::make_error<llvm::StringError>( 459 "Error parsing NetBSD core(5) notes: Unsupported procinfo version", 460 llvm::inconvertibleErrorCode()); 461 462 uint32_t cpisize = data.GetU32(&offset); 463 if (cpisize != NETBSD::NT_PROCINFO_SIZE) 464 return llvm::make_error<llvm::StringError>( 465 "Error parsing NetBSD core(5) notes: Unsupported procinfo size", 466 llvm::inconvertibleErrorCode()); 467 468 cpi_signo = data.GetU32(&offset); /* killing signal */ 469 470 offset += NETBSD::NT_PROCINFO_CPI_SIGCODE_SIZE; 471 offset += NETBSD::NT_PROCINFO_CPI_SIGPEND_SIZE; 472 offset += NETBSD::NT_PROCINFO_CPI_SIGMASK_SIZE; 473 offset += NETBSD::NT_PROCINFO_CPI_SIGIGNORE_SIZE; 474 offset += NETBSD::NT_PROCINFO_CPI_SIGCATCH_SIZE; 475 cpi_pid = data.GetU32(&offset); 476 offset += NETBSD::NT_PROCINFO_CPI_PPID_SIZE; 477 offset += NETBSD::NT_PROCINFO_CPI_PGRP_SIZE; 478 offset += NETBSD::NT_PROCINFO_CPI_SID_SIZE; 479 offset += NETBSD::NT_PROCINFO_CPI_RUID_SIZE; 480 offset += NETBSD::NT_PROCINFO_CPI_EUID_SIZE; 481 offset += NETBSD::NT_PROCINFO_CPI_SVUID_SIZE; 482 offset += NETBSD::NT_PROCINFO_CPI_RGID_SIZE; 483 offset += NETBSD::NT_PROCINFO_CPI_EGID_SIZE; 484 offset += NETBSD::NT_PROCINFO_CPI_SVGID_SIZE; 485 cpi_nlwps = data.GetU32(&offset); /* number of LWPs */ 486 487 offset += NETBSD::NT_PROCINFO_CPI_NAME_SIZE; 488 cpi_siglwp = data.GetU32(&offset); /* LWP target of killing signal */ 489 490 return llvm::Error::success(); 491 } 492 493 static void ParseOpenBSDProcInfo(ThreadData &thread_data, 494 const DataExtractor &data) { 495 lldb::offset_t offset = 0; 496 497 int version = data.GetU32(&offset); 498 if (version != 1) 499 return; 500 501 offset += 4; 502 thread_data.signo = data.GetU32(&offset); 503 } 504 505 llvm::Expected<std::vector<CoreNote>> 506 ProcessElfCore::parseSegment(const DataExtractor &segment) { 507 lldb::offset_t offset = 0; 508 std::vector<CoreNote> result; 509 510 while (offset < segment.GetByteSize()) { 511 ELFNote note = ELFNote(); 512 if (!note.Parse(segment, &offset)) 513 return llvm::make_error<llvm::StringError>( 514 "Unable to parse note segment", llvm::inconvertibleErrorCode()); 515 516 size_t note_start = offset; 517 size_t note_size = llvm::alignTo(note.n_descsz, 4); 518 DataExtractor note_data(segment, note_start, note_size); 519 520 result.push_back({note, note_data}); 521 offset += note_size; 522 } 523 524 return std::move(result); 525 } 526 527 llvm::Error ProcessElfCore::parseFreeBSDNotes(llvm::ArrayRef<CoreNote> notes) { 528 bool have_prstatus = false; 529 bool have_prpsinfo = false; 530 ThreadData thread_data; 531 for (const auto ¬e : notes) { 532 if (note.info.n_name != "FreeBSD") 533 continue; 534 535 if ((note.info.n_type == FREEBSD::NT_PRSTATUS && have_prstatus) || 536 (note.info.n_type == FREEBSD::NT_PRPSINFO && have_prpsinfo)) { 537 assert(thread_data.gpregset.GetByteSize() > 0); 538 // Add the new thread to thread list 539 m_thread_data.push_back(thread_data); 540 thread_data = ThreadData(); 541 have_prstatus = false; 542 have_prpsinfo = false; 543 } 544 545 switch (note.info.n_type) { 546 case FREEBSD::NT_PRSTATUS: 547 have_prstatus = true; 548 ParseFreeBSDPrStatus(thread_data, note.data, GetArchitecture()); 549 break; 550 case FREEBSD::NT_PRPSINFO: 551 have_prpsinfo = true; 552 break; 553 case FREEBSD::NT_THRMISC: { 554 lldb::offset_t offset = 0; 555 thread_data.name = note.data.GetCStr(&offset, 20); 556 break; 557 } 558 case FREEBSD::NT_PROCSTAT_AUXV: 559 // FIXME: FreeBSD sticks an int at the beginning of the note 560 m_auxv = DataExtractor(note.data, 4, note.data.GetByteSize() - 4); 561 break; 562 default: 563 thread_data.notes.push_back(note); 564 break; 565 } 566 } 567 if (!have_prstatus) { 568 return llvm::make_error<llvm::StringError>( 569 "Could not find NT_PRSTATUS note in core file.", 570 llvm::inconvertibleErrorCode()); 571 } 572 m_thread_data.push_back(thread_data); 573 return llvm::Error::success(); 574 } 575 576 /// NetBSD specific Thread context from PT_NOTE segment 577 /// 578 /// NetBSD ELF core files use notes to provide information about 579 /// the process's state. The note name is "NetBSD-CORE" for 580 /// information that is global to the process, and "NetBSD-CORE@nn", 581 /// where "nn" is the lwpid of the LWP that the information belongs 582 /// to (such as register state). 583 /// 584 /// NetBSD uses the following note identifiers: 585 /// 586 /// ELF_NOTE_NETBSD_CORE_PROCINFO (value 1) 587 /// Note is a "netbsd_elfcore_procinfo" structure. 588 /// ELF_NOTE_NETBSD_CORE_AUXV (value 2; since NetBSD 8.0) 589 /// Note is an array of AuxInfo structures. 590 /// 591 /// NetBSD also uses ptrace(2) request numbers (the ones that exist in 592 /// machine-dependent space) to identify register info notes. The 593 /// info in such notes is in the same format that ptrace(2) would 594 /// export that information. 595 /// 596 /// For more information see /usr/include/sys/exec_elf.h 597 /// 598 llvm::Error ProcessElfCore::parseNetBSDNotes(llvm::ArrayRef<CoreNote> notes) { 599 ThreadData thread_data; 600 bool had_nt_regs = false; 601 602 // To be extracted from struct netbsd_elfcore_procinfo 603 // Used to sanity check of the LWPs of the process 604 uint32_t nlwps = 0; 605 uint32_t signo; // killing signal 606 uint32_t siglwp; // LWP target of killing signal 607 uint32_t pr_pid; 608 609 for (const auto ¬e : notes) { 610 llvm::StringRef name = note.info.n_name; 611 612 if (name == "NetBSD-CORE") { 613 if (note.info.n_type == NETBSD::NT_PROCINFO) { 614 llvm::Error error = ParseNetBSDProcInfo(note.data, nlwps, signo, 615 siglwp, pr_pid); 616 if (error) 617 return error; 618 SetID(pr_pid); 619 } else if (note.info.n_type == NETBSD::NT_AUXV) { 620 m_auxv = note.data; 621 } 622 } else if (name.consume_front("NetBSD-CORE@")) { 623 lldb::tid_t tid; 624 if (name.getAsInteger(10, tid)) 625 return llvm::make_error<llvm::StringError>( 626 "Error parsing NetBSD core(5) notes: Cannot convert LWP ID " 627 "to integer", 628 llvm::inconvertibleErrorCode()); 629 630 switch (GetArchitecture().GetMachine()) { 631 case llvm::Triple::aarch64: { 632 // Assume order PT_GETREGS, PT_GETFPREGS 633 if (note.info.n_type == NETBSD::AARCH64::NT_REGS) { 634 // If this is the next thread, push the previous one first. 635 if (had_nt_regs) { 636 m_thread_data.push_back(thread_data); 637 thread_data = ThreadData(); 638 had_nt_regs = false; 639 } 640 641 thread_data.gpregset = note.data; 642 thread_data.tid = tid; 643 if (thread_data.gpregset.GetByteSize() == 0) 644 return llvm::make_error<llvm::StringError>( 645 "Could not find general purpose registers note in core file.", 646 llvm::inconvertibleErrorCode()); 647 had_nt_regs = true; 648 } else if (note.info.n_type == NETBSD::AARCH64::NT_FPREGS) { 649 if (!had_nt_regs || tid != thread_data.tid) 650 return llvm::make_error<llvm::StringError>( 651 "Error parsing NetBSD core(5) notes: Unexpected order " 652 "of NOTEs PT_GETFPREG before PT_GETREG", 653 llvm::inconvertibleErrorCode()); 654 thread_data.notes.push_back(note); 655 } 656 } break; 657 case llvm::Triple::x86_64: { 658 // Assume order PT_GETREGS, PT_GETFPREGS 659 if (note.info.n_type == NETBSD::AMD64::NT_REGS) { 660 // If this is the next thread, push the previous one first. 661 if (had_nt_regs) { 662 m_thread_data.push_back(thread_data); 663 thread_data = ThreadData(); 664 had_nt_regs = false; 665 } 666 667 thread_data.gpregset = note.data; 668 thread_data.tid = tid; 669 if (thread_data.gpregset.GetByteSize() == 0) 670 return llvm::make_error<llvm::StringError>( 671 "Could not find general purpose registers note in core file.", 672 llvm::inconvertibleErrorCode()); 673 had_nt_regs = true; 674 } else if (note.info.n_type == NETBSD::AMD64::NT_FPREGS) { 675 if (!had_nt_regs || tid != thread_data.tid) 676 return llvm::make_error<llvm::StringError>( 677 "Error parsing NetBSD core(5) notes: Unexpected order " 678 "of NOTEs PT_GETFPREG before PT_GETREG", 679 llvm::inconvertibleErrorCode()); 680 thread_data.notes.push_back(note); 681 } 682 } break; 683 default: 684 break; 685 } 686 } 687 } 688 689 // Push the last thread. 690 if (had_nt_regs) 691 m_thread_data.push_back(thread_data); 692 693 if (m_thread_data.empty()) 694 return llvm::make_error<llvm::StringError>( 695 "Error parsing NetBSD core(5) notes: No threads information " 696 "specified in notes", 697 llvm::inconvertibleErrorCode()); 698 699 if (m_thread_data.size() != nlwps) 700 return llvm::make_error<llvm::StringError>( 701 "Error parsing NetBSD core(5) notes: Mismatch between the number " 702 "of LWPs in netbsd_elfcore_procinfo and the number of LWPs specified " 703 "by MD notes", 704 llvm::inconvertibleErrorCode()); 705 706 // Signal targeted at the whole process. 707 if (siglwp == 0) { 708 for (auto &data : m_thread_data) 709 data.signo = signo; 710 } 711 // Signal destined for a particular LWP. 712 else { 713 bool passed = false; 714 715 for (auto &data : m_thread_data) { 716 if (data.tid == siglwp) { 717 data.signo = signo; 718 passed = true; 719 break; 720 } 721 } 722 723 if (!passed) 724 return llvm::make_error<llvm::StringError>( 725 "Error parsing NetBSD core(5) notes: Signal passed to unknown LWP", 726 llvm::inconvertibleErrorCode()); 727 } 728 729 return llvm::Error::success(); 730 } 731 732 llvm::Error ProcessElfCore::parseOpenBSDNotes(llvm::ArrayRef<CoreNote> notes) { 733 ThreadData thread_data; 734 for (const auto ¬e : notes) { 735 // OpenBSD per-thread information is stored in notes named "OpenBSD@nnn" so 736 // match on the initial part of the string. 737 if (!llvm::StringRef(note.info.n_name).startswith("OpenBSD")) 738 continue; 739 740 switch (note.info.n_type) { 741 case OPENBSD::NT_PROCINFO: 742 ParseOpenBSDProcInfo(thread_data, note.data); 743 break; 744 case OPENBSD::NT_AUXV: 745 m_auxv = note.data; 746 break; 747 case OPENBSD::NT_REGS: 748 thread_data.gpregset = note.data; 749 break; 750 default: 751 thread_data.notes.push_back(note); 752 break; 753 } 754 } 755 if (thread_data.gpregset.GetByteSize() == 0) { 756 return llvm::make_error<llvm::StringError>( 757 "Could not find general purpose registers note in core file.", 758 llvm::inconvertibleErrorCode()); 759 } 760 m_thread_data.push_back(thread_data); 761 return llvm::Error::success(); 762 } 763 764 /// A description of a linux process usually contains the following NOTE 765 /// entries: 766 /// - NT_PRPSINFO - General process information like pid, uid, name, ... 767 /// - NT_SIGINFO - Information about the signal that terminated the process 768 /// - NT_AUXV - Process auxiliary vector 769 /// - NT_FILE - Files mapped into memory 770 /// 771 /// Additionally, for each thread in the process the core file will contain at 772 /// least the NT_PRSTATUS note, containing the thread id and general purpose 773 /// registers. It may include additional notes for other register sets (floating 774 /// point and vector registers, ...). The tricky part here is that some of these 775 /// notes have "CORE" in their owner fields, while other set it to "LINUX". 776 llvm::Error ProcessElfCore::parseLinuxNotes(llvm::ArrayRef<CoreNote> notes) { 777 const ArchSpec &arch = GetArchitecture(); 778 bool have_prstatus = false; 779 bool have_prpsinfo = false; 780 ThreadData thread_data; 781 for (const auto ¬e : notes) { 782 if (note.info.n_name != "CORE" && note.info.n_name != "LINUX") 783 continue; 784 785 if ((note.info.n_type == LINUX::NT_PRSTATUS && have_prstatus) || 786 (note.info.n_type == LINUX::NT_PRPSINFO && have_prpsinfo)) { 787 assert(thread_data.gpregset.GetByteSize() > 0); 788 // Add the new thread to thread list 789 m_thread_data.push_back(thread_data); 790 thread_data = ThreadData(); 791 have_prstatus = false; 792 have_prpsinfo = false; 793 } 794 795 switch (note.info.n_type) { 796 case LINUX::NT_PRSTATUS: { 797 have_prstatus = true; 798 ELFLinuxPrStatus prstatus; 799 Status status = prstatus.Parse(note.data, arch); 800 if (status.Fail()) 801 return status.ToError(); 802 thread_data.prstatus_sig = prstatus.pr_cursig; 803 thread_data.tid = prstatus.pr_pid; 804 uint32_t header_size = ELFLinuxPrStatus::GetSize(arch); 805 size_t len = note.data.GetByteSize() - header_size; 806 thread_data.gpregset = DataExtractor(note.data, header_size, len); 807 break; 808 } 809 case LINUX::NT_PRPSINFO: { 810 have_prpsinfo = true; 811 ELFLinuxPrPsInfo prpsinfo; 812 Status status = prpsinfo.Parse(note.data, arch); 813 if (status.Fail()) 814 return status.ToError(); 815 thread_data.name.assign (prpsinfo.pr_fname, strnlen (prpsinfo.pr_fname, sizeof (prpsinfo.pr_fname))); 816 SetID(prpsinfo.pr_pid); 817 break; 818 } 819 case LINUX::NT_SIGINFO: { 820 ELFLinuxSigInfo siginfo; 821 Status status = siginfo.Parse(note.data, arch); 822 if (status.Fail()) 823 return status.ToError(); 824 thread_data.signo = siginfo.si_signo; 825 break; 826 } 827 case LINUX::NT_FILE: { 828 m_nt_file_entries.clear(); 829 lldb::offset_t offset = 0; 830 const uint64_t count = note.data.GetAddress(&offset); 831 note.data.GetAddress(&offset); // Skip page size 832 for (uint64_t i = 0; i < count; ++i) { 833 NT_FILE_Entry entry; 834 entry.start = note.data.GetAddress(&offset); 835 entry.end = note.data.GetAddress(&offset); 836 entry.file_ofs = note.data.GetAddress(&offset); 837 m_nt_file_entries.push_back(entry); 838 } 839 for (uint64_t i = 0; i < count; ++i) { 840 const char *path = note.data.GetCStr(&offset); 841 if (path && path[0]) 842 m_nt_file_entries[i].path.SetCString(path); 843 } 844 break; 845 } 846 case LINUX::NT_AUXV: 847 m_auxv = note.data; 848 break; 849 default: 850 thread_data.notes.push_back(note); 851 break; 852 } 853 } 854 // Add last entry in the note section 855 if (have_prstatus) 856 m_thread_data.push_back(thread_data); 857 return llvm::Error::success(); 858 } 859 860 /// Parse Thread context from PT_NOTE segment and store it in the thread list 861 /// A note segment consists of one or more NOTE entries, but their types and 862 /// meaning differ depending on the OS. 863 llvm::Error ProcessElfCore::ParseThreadContextsFromNoteSegment( 864 const elf::ELFProgramHeader &segment_header, DataExtractor segment_data) { 865 assert(segment_header.p_type == llvm::ELF::PT_NOTE); 866 867 auto notes_or_error = parseSegment(segment_data); 868 if(!notes_or_error) 869 return notes_or_error.takeError(); 870 switch (GetArchitecture().GetTriple().getOS()) { 871 case llvm::Triple::FreeBSD: 872 return parseFreeBSDNotes(*notes_or_error); 873 case llvm::Triple::Linux: 874 return parseLinuxNotes(*notes_or_error); 875 case llvm::Triple::NetBSD: 876 return parseNetBSDNotes(*notes_or_error); 877 case llvm::Triple::OpenBSD: 878 return parseOpenBSDNotes(*notes_or_error); 879 default: 880 return llvm::make_error<llvm::StringError>( 881 "Don't know how to parse core file. Unsupported OS.", 882 llvm::inconvertibleErrorCode()); 883 } 884 } 885 886 uint32_t ProcessElfCore::GetNumThreadContexts() { 887 if (!m_thread_data_valid) 888 DoLoadCore(); 889 return m_thread_data.size(); 890 } 891 892 ArchSpec ProcessElfCore::GetArchitecture() { 893 ArchSpec arch = m_core_module_sp->GetObjectFile()->GetArchitecture(); 894 895 ArchSpec target_arch = GetTarget().GetArchitecture(); 896 arch.MergeFrom(target_arch); 897 898 // On MIPS there is no way to differentiate betwenn 32bit and 64bit core 899 // files and this information can't be merged in from the target arch so we 900 // fail back to unconditionally returning the target arch in this config. 901 if (target_arch.IsMIPS()) { 902 return target_arch; 903 } 904 905 return arch; 906 } 907 908 const lldb::DataBufferSP ProcessElfCore::GetAuxvData() { 909 const uint8_t *start = m_auxv.GetDataStart(); 910 size_t len = m_auxv.GetByteSize(); 911 lldb::DataBufferSP buffer(new lldb_private::DataBufferHeap(start, len)); 912 return buffer; 913 } 914 915 bool ProcessElfCore::GetProcessInfo(ProcessInstanceInfo &info) { 916 info.Clear(); 917 info.SetProcessID(GetID()); 918 info.SetArchitecture(GetArchitecture()); 919 lldb::ModuleSP module_sp = GetTarget().GetExecutableModule(); 920 if (module_sp) { 921 const bool add_exe_file_as_first_arg = false; 922 info.SetExecutableFile(GetTarget().GetExecutableModule()->GetFileSpec(), 923 add_exe_file_as_first_arg); 924 } 925 return true; 926 } 927