1 //===-- ProcessElfCore.cpp ------------------------------------------------===// 2 // 3 // Part of the LLVM Project, under the Apache License v2.0 with LLVM Exceptions. 4 // See https://llvm.org/LICENSE.txt for license information. 5 // SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception 6 // 7 //===----------------------------------------------------------------------===// 8 9 #include <cstdlib> 10 11 #include <memory> 12 #include <mutex> 13 14 #include "lldb/Core/Module.h" 15 #include "lldb/Core/ModuleSpec.h" 16 #include "lldb/Core/PluginManager.h" 17 #include "lldb/Core/Section.h" 18 #include "lldb/Target/DynamicLoader.h" 19 #include "lldb/Target/MemoryRegionInfo.h" 20 #include "lldb/Target/Target.h" 21 #include "lldb/Target/UnixSignals.h" 22 #include "lldb/Utility/DataBufferHeap.h" 23 #include "lldb/Utility/Log.h" 24 #include "lldb/Utility/State.h" 25 26 #include "llvm/BinaryFormat/ELF.h" 27 #include "llvm/Support/Threading.h" 28 29 #include "Plugins/DynamicLoader/POSIX-DYLD/DynamicLoaderPOSIXDYLD.h" 30 #include "Plugins/ObjectFile/ELF/ObjectFileELF.h" 31 #include "Plugins/Process/elf-core/RegisterUtilities.h" 32 #include "ProcessElfCore.h" 33 #include "ThreadElfCore.h" 34 35 using namespace lldb_private; 36 namespace ELF = llvm::ELF; 37 38 LLDB_PLUGIN_DEFINE(ProcessElfCore) 39 40 ConstString ProcessElfCore::GetPluginNameStatic() { 41 static ConstString g_name("elf-core"); 42 return g_name; 43 } 44 45 const char *ProcessElfCore::GetPluginDescriptionStatic() { 46 return "ELF core dump plug-in."; 47 } 48 49 void ProcessElfCore::Terminate() { 50 PluginManager::UnregisterPlugin(ProcessElfCore::CreateInstance); 51 } 52 53 lldb::ProcessSP ProcessElfCore::CreateInstance(lldb::TargetSP target_sp, 54 lldb::ListenerSP listener_sp, 55 const FileSpec *crash_file, 56 bool can_connect) { 57 lldb::ProcessSP process_sp; 58 if (crash_file && !can_connect) { 59 // Read enough data for a ELF32 header or ELF64 header Note: Here we care 60 // about e_type field only, so it is safe to ignore possible presence of 61 // the header extension. 62 const size_t header_size = sizeof(llvm::ELF::Elf64_Ehdr); 63 64 auto data_sp = FileSystem::Instance().CreateDataBuffer( 65 crash_file->GetPath(), header_size, 0); 66 if (data_sp && data_sp->GetByteSize() == header_size && 67 elf::ELFHeader::MagicBytesMatch(data_sp->GetBytes())) { 68 elf::ELFHeader elf_header; 69 DataExtractor data(data_sp, lldb::eByteOrderLittle, 4); 70 lldb::offset_t data_offset = 0; 71 if (elf_header.Parse(data, &data_offset)) { 72 if (elf_header.e_type == llvm::ELF::ET_CORE) 73 process_sp = std::make_shared<ProcessElfCore>(target_sp, listener_sp, 74 *crash_file); 75 } 76 } 77 } 78 return process_sp; 79 } 80 81 bool ProcessElfCore::CanDebug(lldb::TargetSP target_sp, 82 bool plugin_specified_by_name) { 83 // For now we are just making sure the file exists for a given module 84 if (!m_core_module_sp && FileSystem::Instance().Exists(m_core_file)) { 85 ModuleSpec core_module_spec(m_core_file, target_sp->GetArchitecture()); 86 Status error(ModuleList::GetSharedModule(core_module_spec, m_core_module_sp, 87 nullptr, nullptr, nullptr)); 88 if (m_core_module_sp) { 89 ObjectFile *core_objfile = m_core_module_sp->GetObjectFile(); 90 if (core_objfile && core_objfile->GetType() == ObjectFile::eTypeCoreFile) 91 return true; 92 } 93 } 94 return false; 95 } 96 97 // ProcessElfCore constructor 98 ProcessElfCore::ProcessElfCore(lldb::TargetSP target_sp, 99 lldb::ListenerSP listener_sp, 100 const FileSpec &core_file) 101 : PostMortemProcess(target_sp, listener_sp), m_core_file(core_file) {} 102 103 // Destructor 104 ProcessElfCore::~ProcessElfCore() { 105 Clear(); 106 // We need to call finalize on the process before destroying ourselves to 107 // make sure all of the broadcaster cleanup goes as planned. If we destruct 108 // this class, then Process::~Process() might have problems trying to fully 109 // destroy the broadcaster. 110 Finalize(); 111 } 112 113 // PluginInterface 114 ConstString ProcessElfCore::GetPluginName() { return GetPluginNameStatic(); } 115 116 uint32_t ProcessElfCore::GetPluginVersion() { return 1; } 117 118 lldb::addr_t ProcessElfCore::AddAddressRangeFromLoadSegment( 119 const elf::ELFProgramHeader &header) { 120 const lldb::addr_t addr = header.p_vaddr; 121 FileRange file_range(header.p_offset, header.p_filesz); 122 VMRangeToFileOffset::Entry range_entry(addr, header.p_memsz, file_range); 123 124 // Only add to m_core_aranges if the file size is non zero. Some core files 125 // have PT_LOAD segments for all address ranges, but set f_filesz to zero for 126 // the .text sections since they can be retrieved from the object files. 127 if (header.p_filesz > 0) { 128 VMRangeToFileOffset::Entry *last_entry = m_core_aranges.Back(); 129 if (last_entry && last_entry->GetRangeEnd() == range_entry.GetRangeBase() && 130 last_entry->data.GetRangeEnd() == range_entry.data.GetRangeBase() && 131 last_entry->GetByteSize() == last_entry->data.GetByteSize()) { 132 last_entry->SetRangeEnd(range_entry.GetRangeEnd()); 133 last_entry->data.SetRangeEnd(range_entry.data.GetRangeEnd()); 134 } else { 135 m_core_aranges.Append(range_entry); 136 } 137 } 138 // Keep a separate map of permissions that that isn't coalesced so all ranges 139 // are maintained. 140 const uint32_t permissions = 141 ((header.p_flags & llvm::ELF::PF_R) ? lldb::ePermissionsReadable : 0u) | 142 ((header.p_flags & llvm::ELF::PF_W) ? lldb::ePermissionsWritable : 0u) | 143 ((header.p_flags & llvm::ELF::PF_X) ? lldb::ePermissionsExecutable : 0u); 144 145 m_core_range_infos.Append( 146 VMRangeToPermissions::Entry(addr, header.p_memsz, permissions)); 147 148 return addr; 149 } 150 151 // Process Control 152 Status ProcessElfCore::DoLoadCore() { 153 Status error; 154 if (!m_core_module_sp) { 155 error.SetErrorString("invalid core module"); 156 return error; 157 } 158 159 ObjectFileELF *core = (ObjectFileELF *)(m_core_module_sp->GetObjectFile()); 160 if (core == nullptr) { 161 error.SetErrorString("invalid core object file"); 162 return error; 163 } 164 165 llvm::ArrayRef<elf::ELFProgramHeader> segments = core->ProgramHeaders(); 166 if (segments.size() == 0) { 167 error.SetErrorString("core file has no segments"); 168 return error; 169 } 170 171 SetCanJIT(false); 172 173 m_thread_data_valid = true; 174 175 bool ranges_are_sorted = true; 176 lldb::addr_t vm_addr = 0; 177 /// Walk through segments and Thread and Address Map information. 178 /// PT_NOTE - Contains Thread and Register information 179 /// PT_LOAD - Contains a contiguous range of Process Address Space 180 for (const elf::ELFProgramHeader &H : segments) { 181 DataExtractor data = core->GetSegmentData(H); 182 183 // Parse thread contexts and auxv structure 184 if (H.p_type == llvm::ELF::PT_NOTE) { 185 if (llvm::Error error = ParseThreadContextsFromNoteSegment(H, data)) 186 return Status(std::move(error)); 187 } 188 // PT_LOAD segments contains address map 189 if (H.p_type == llvm::ELF::PT_LOAD) { 190 lldb::addr_t last_addr = AddAddressRangeFromLoadSegment(H); 191 if (vm_addr > last_addr) 192 ranges_are_sorted = false; 193 vm_addr = last_addr; 194 } 195 } 196 197 if (!ranges_are_sorted) { 198 m_core_aranges.Sort(); 199 m_core_range_infos.Sort(); 200 } 201 202 // Even if the architecture is set in the target, we need to override it to 203 // match the core file which is always single arch. 204 ArchSpec arch(m_core_module_sp->GetArchitecture()); 205 206 ArchSpec target_arch = GetTarget().GetArchitecture(); 207 ArchSpec core_arch(m_core_module_sp->GetArchitecture()); 208 target_arch.MergeFrom(core_arch); 209 GetTarget().SetArchitecture(target_arch); 210 211 SetUnixSignals(UnixSignals::Create(GetArchitecture())); 212 213 // Ensure we found at least one thread that was stopped on a signal. 214 bool siginfo_signal_found = false; 215 bool prstatus_signal_found = false; 216 // Check we found a signal in a SIGINFO note. 217 for (const auto &thread_data : m_thread_data) { 218 if (thread_data.signo != 0) 219 siginfo_signal_found = true; 220 if (thread_data.prstatus_sig != 0) 221 prstatus_signal_found = true; 222 } 223 if (!siginfo_signal_found) { 224 // If we don't have signal from SIGINFO use the signal from each threads 225 // PRSTATUS note. 226 if (prstatus_signal_found) { 227 for (auto &thread_data : m_thread_data) 228 thread_data.signo = thread_data.prstatus_sig; 229 } else if (m_thread_data.size() > 0) { 230 // If all else fails force the first thread to be SIGSTOP 231 m_thread_data.begin()->signo = 232 GetUnixSignals()->GetSignalNumberFromName("SIGSTOP"); 233 } 234 } 235 236 // Core files are useless without the main executable. See if we can locate 237 // the main executable using data we found in the core file notes. 238 lldb::ModuleSP exe_module_sp = GetTarget().GetExecutableModule(); 239 if (!exe_module_sp) { 240 // The first entry in the NT_FILE might be our executable 241 if (!m_nt_file_entries.empty()) { 242 ModuleSpec exe_module_spec; 243 exe_module_spec.GetArchitecture() = arch; 244 exe_module_spec.GetFileSpec().SetFile( 245 m_nt_file_entries[0].path.GetCString(), FileSpec::Style::native); 246 if (exe_module_spec.GetFileSpec()) { 247 exe_module_sp = GetTarget().GetOrCreateModule(exe_module_spec, 248 true /* notify */); 249 if (exe_module_sp) 250 GetTarget().SetExecutableModule(exe_module_sp, eLoadDependentsNo); 251 } 252 } 253 } 254 return error; 255 } 256 257 lldb_private::DynamicLoader *ProcessElfCore::GetDynamicLoader() { 258 if (m_dyld_up.get() == nullptr) 259 m_dyld_up.reset(DynamicLoader::FindPlugin( 260 this, DynamicLoaderPOSIXDYLD::GetPluginNameStatic().GetCString())); 261 return m_dyld_up.get(); 262 } 263 264 bool ProcessElfCore::DoUpdateThreadList(ThreadList &old_thread_list, 265 ThreadList &new_thread_list) { 266 const uint32_t num_threads = GetNumThreadContexts(); 267 if (!m_thread_data_valid) 268 return false; 269 270 for (lldb::tid_t tid = 0; tid < num_threads; ++tid) { 271 const ThreadData &td = m_thread_data[tid]; 272 lldb::ThreadSP thread_sp(new ThreadElfCore(*this, td)); 273 new_thread_list.AddThread(thread_sp); 274 } 275 return new_thread_list.GetSize(false) > 0; 276 } 277 278 void ProcessElfCore::RefreshStateAfterStop() {} 279 280 Status ProcessElfCore::DoDestroy() { return Status(); } 281 282 // Process Queries 283 284 bool ProcessElfCore::IsAlive() { return true; } 285 286 // Process Memory 287 size_t ProcessElfCore::ReadMemory(lldb::addr_t addr, void *buf, size_t size, 288 Status &error) { 289 // Don't allow the caching that lldb_private::Process::ReadMemory does since 290 // in core files we have it all cached our our core file anyway. 291 return DoReadMemory(addr, buf, size, error); 292 } 293 294 Status ProcessElfCore::GetMemoryRegionInfo(lldb::addr_t load_addr, 295 MemoryRegionInfo ®ion_info) { 296 region_info.Clear(); 297 const VMRangeToPermissions::Entry *permission_entry = 298 m_core_range_infos.FindEntryThatContainsOrFollows(load_addr); 299 if (permission_entry) { 300 if (permission_entry->Contains(load_addr)) { 301 region_info.GetRange().SetRangeBase(permission_entry->GetRangeBase()); 302 region_info.GetRange().SetRangeEnd(permission_entry->GetRangeEnd()); 303 const Flags permissions(permission_entry->data); 304 region_info.SetReadable(permissions.Test(lldb::ePermissionsReadable) 305 ? MemoryRegionInfo::eYes 306 : MemoryRegionInfo::eNo); 307 region_info.SetWritable(permissions.Test(lldb::ePermissionsWritable) 308 ? MemoryRegionInfo::eYes 309 : MemoryRegionInfo::eNo); 310 region_info.SetExecutable(permissions.Test(lldb::ePermissionsExecutable) 311 ? MemoryRegionInfo::eYes 312 : MemoryRegionInfo::eNo); 313 region_info.SetMapped(MemoryRegionInfo::eYes); 314 } else if (load_addr < permission_entry->GetRangeBase()) { 315 region_info.GetRange().SetRangeBase(load_addr); 316 region_info.GetRange().SetRangeEnd(permission_entry->GetRangeBase()); 317 region_info.SetReadable(MemoryRegionInfo::eNo); 318 region_info.SetWritable(MemoryRegionInfo::eNo); 319 region_info.SetExecutable(MemoryRegionInfo::eNo); 320 region_info.SetMapped(MemoryRegionInfo::eNo); 321 } 322 return Status(); 323 } 324 325 region_info.GetRange().SetRangeBase(load_addr); 326 region_info.GetRange().SetRangeEnd(LLDB_INVALID_ADDRESS); 327 region_info.SetReadable(MemoryRegionInfo::eNo); 328 region_info.SetWritable(MemoryRegionInfo::eNo); 329 region_info.SetExecutable(MemoryRegionInfo::eNo); 330 region_info.SetMapped(MemoryRegionInfo::eNo); 331 return Status(); 332 } 333 334 size_t ProcessElfCore::DoReadMemory(lldb::addr_t addr, void *buf, size_t size, 335 Status &error) { 336 ObjectFile *core_objfile = m_core_module_sp->GetObjectFile(); 337 338 if (core_objfile == nullptr) 339 return 0; 340 341 // Get the address range 342 const VMRangeToFileOffset::Entry *address_range = 343 m_core_aranges.FindEntryThatContains(addr); 344 if (address_range == nullptr || address_range->GetRangeEnd() < addr) { 345 error.SetErrorStringWithFormat("core file does not contain 0x%" PRIx64, 346 addr); 347 return 0; 348 } 349 350 // Convert the address into core file offset 351 const lldb::addr_t offset = addr - address_range->GetRangeBase(); 352 const lldb::addr_t file_start = address_range->data.GetRangeBase(); 353 const lldb::addr_t file_end = address_range->data.GetRangeEnd(); 354 size_t bytes_to_read = size; // Number of bytes to read from the core file 355 size_t bytes_copied = 0; // Number of bytes actually read from the core file 356 lldb::addr_t bytes_left = 357 0; // Number of bytes available in the core file from the given address 358 359 // Don't proceed if core file doesn't contain the actual data for this 360 // address range. 361 if (file_start == file_end) 362 return 0; 363 364 // Figure out how many on-disk bytes remain in this segment starting at the 365 // given offset 366 if (file_end > file_start + offset) 367 bytes_left = file_end - (file_start + offset); 368 369 if (bytes_to_read > bytes_left) 370 bytes_to_read = bytes_left; 371 372 // If there is data available on the core file read it 373 if (bytes_to_read) 374 bytes_copied = 375 core_objfile->CopyData(offset + file_start, bytes_to_read, buf); 376 377 return bytes_copied; 378 } 379 380 void ProcessElfCore::Clear() { 381 m_thread_list.Clear(); 382 383 SetUnixSignals(std::make_shared<UnixSignals>()); 384 } 385 386 void ProcessElfCore::Initialize() { 387 static llvm::once_flag g_once_flag; 388 389 llvm::call_once(g_once_flag, []() { 390 PluginManager::RegisterPlugin(GetPluginNameStatic(), 391 GetPluginDescriptionStatic(), CreateInstance); 392 }); 393 } 394 395 lldb::addr_t ProcessElfCore::GetImageInfoAddress() { 396 ObjectFile *obj_file = GetTarget().GetExecutableModule()->GetObjectFile(); 397 Address addr = obj_file->GetImageInfoAddress(&GetTarget()); 398 399 if (addr.IsValid()) 400 return addr.GetLoadAddress(&GetTarget()); 401 return LLDB_INVALID_ADDRESS; 402 } 403 404 // Parse a FreeBSD NT_PRSTATUS note - see FreeBSD sys/procfs.h for details. 405 static void ParseFreeBSDPrStatus(ThreadData &thread_data, 406 const DataExtractor &data, 407 bool lp64) { 408 lldb::offset_t offset = 0; 409 int pr_version = data.GetU32(&offset); 410 411 Log *log(GetLogIfAllCategoriesSet(LIBLLDB_LOG_PROCESS)); 412 if (log) { 413 if (pr_version > 1) 414 LLDB_LOGF(log, "FreeBSD PRSTATUS unexpected version %d", pr_version); 415 } 416 417 // Skip padding, pr_statussz, pr_gregsetsz, pr_fpregsetsz, pr_osreldate 418 if (lp64) 419 offset += 32; 420 else 421 offset += 16; 422 423 thread_data.signo = data.GetU32(&offset); // pr_cursig 424 thread_data.tid = data.GetU32(&offset); // pr_pid 425 if (lp64) 426 offset += 4; 427 428 size_t len = data.GetByteSize() - offset; 429 thread_data.gpregset = DataExtractor(data, offset, len); 430 } 431 432 // Parse a FreeBSD NT_PRPSINFO note - see FreeBSD sys/procfs.h for details. 433 static void ParseFreeBSDPrPsInfo(ProcessElfCore &process, 434 const DataExtractor &data, 435 bool lp64) { 436 lldb::offset_t offset = 0; 437 int pr_version = data.GetU32(&offset); 438 439 Log *log(GetLogIfAllCategoriesSet(LIBLLDB_LOG_PROCESS)); 440 if (log) { 441 if (pr_version > 1) 442 LLDB_LOGF(log, "FreeBSD PRPSINFO unexpected version %d", pr_version); 443 } 444 445 // Skip pr_psinfosz, pr_fname, pr_psargs 446 offset += 108; 447 if (lp64) 448 offset += 4; 449 450 process.SetID(data.GetU32(&offset)); // pr_pid 451 } 452 453 static llvm::Error ParseNetBSDProcInfo(const DataExtractor &data, 454 uint32_t &cpi_nlwps, 455 uint32_t &cpi_signo, 456 uint32_t &cpi_siglwp, 457 uint32_t &cpi_pid) { 458 lldb::offset_t offset = 0; 459 460 uint32_t version = data.GetU32(&offset); 461 if (version != 1) 462 return llvm::make_error<llvm::StringError>( 463 "Error parsing NetBSD core(5) notes: Unsupported procinfo version", 464 llvm::inconvertibleErrorCode()); 465 466 uint32_t cpisize = data.GetU32(&offset); 467 if (cpisize != NETBSD::NT_PROCINFO_SIZE) 468 return llvm::make_error<llvm::StringError>( 469 "Error parsing NetBSD core(5) notes: Unsupported procinfo size", 470 llvm::inconvertibleErrorCode()); 471 472 cpi_signo = data.GetU32(&offset); /* killing signal */ 473 474 offset += NETBSD::NT_PROCINFO_CPI_SIGCODE_SIZE; 475 offset += NETBSD::NT_PROCINFO_CPI_SIGPEND_SIZE; 476 offset += NETBSD::NT_PROCINFO_CPI_SIGMASK_SIZE; 477 offset += NETBSD::NT_PROCINFO_CPI_SIGIGNORE_SIZE; 478 offset += NETBSD::NT_PROCINFO_CPI_SIGCATCH_SIZE; 479 cpi_pid = data.GetU32(&offset); 480 offset += NETBSD::NT_PROCINFO_CPI_PPID_SIZE; 481 offset += NETBSD::NT_PROCINFO_CPI_PGRP_SIZE; 482 offset += NETBSD::NT_PROCINFO_CPI_SID_SIZE; 483 offset += NETBSD::NT_PROCINFO_CPI_RUID_SIZE; 484 offset += NETBSD::NT_PROCINFO_CPI_EUID_SIZE; 485 offset += NETBSD::NT_PROCINFO_CPI_SVUID_SIZE; 486 offset += NETBSD::NT_PROCINFO_CPI_RGID_SIZE; 487 offset += NETBSD::NT_PROCINFO_CPI_EGID_SIZE; 488 offset += NETBSD::NT_PROCINFO_CPI_SVGID_SIZE; 489 cpi_nlwps = data.GetU32(&offset); /* number of LWPs */ 490 491 offset += NETBSD::NT_PROCINFO_CPI_NAME_SIZE; 492 cpi_siglwp = data.GetU32(&offset); /* LWP target of killing signal */ 493 494 return llvm::Error::success(); 495 } 496 497 static void ParseOpenBSDProcInfo(ThreadData &thread_data, 498 const DataExtractor &data) { 499 lldb::offset_t offset = 0; 500 501 int version = data.GetU32(&offset); 502 if (version != 1) 503 return; 504 505 offset += 4; 506 thread_data.signo = data.GetU32(&offset); 507 } 508 509 llvm::Expected<std::vector<CoreNote>> 510 ProcessElfCore::parseSegment(const DataExtractor &segment) { 511 lldb::offset_t offset = 0; 512 std::vector<CoreNote> result; 513 514 while (offset < segment.GetByteSize()) { 515 ELFNote note = ELFNote(); 516 if (!note.Parse(segment, &offset)) 517 return llvm::make_error<llvm::StringError>( 518 "Unable to parse note segment", llvm::inconvertibleErrorCode()); 519 520 size_t note_start = offset; 521 size_t note_size = llvm::alignTo(note.n_descsz, 4); 522 523 result.push_back({note, DataExtractor(segment, note_start, note_size)}); 524 offset += note_size; 525 } 526 527 return std::move(result); 528 } 529 530 llvm::Error ProcessElfCore::parseFreeBSDNotes(llvm::ArrayRef<CoreNote> notes) { 531 ArchSpec arch = GetArchitecture(); 532 bool lp64 = (arch.GetMachine() == llvm::Triple::aarch64 || 533 arch.GetMachine() == llvm::Triple::mips64 || 534 arch.GetMachine() == llvm::Triple::ppc64 || 535 arch.GetMachine() == llvm::Triple::x86_64); 536 bool have_prstatus = false; 537 bool have_prpsinfo = false; 538 ThreadData thread_data; 539 for (const auto ¬e : notes) { 540 if (note.info.n_name != "FreeBSD") 541 continue; 542 543 if ((note.info.n_type == ELF::NT_PRSTATUS && have_prstatus) || 544 (note.info.n_type == ELF::NT_PRPSINFO && have_prpsinfo)) { 545 assert(thread_data.gpregset.GetByteSize() > 0); 546 // Add the new thread to thread list 547 m_thread_data.push_back(thread_data); 548 thread_data = ThreadData(); 549 have_prstatus = false; 550 have_prpsinfo = false; 551 } 552 553 switch (note.info.n_type) { 554 case ELF::NT_PRSTATUS: 555 have_prstatus = true; 556 ParseFreeBSDPrStatus(thread_data, note.data, lp64); 557 break; 558 case ELF::NT_PRPSINFO: 559 have_prpsinfo = true; 560 ParseFreeBSDPrPsInfo(*this, note.data, lp64); 561 break; 562 case ELF::NT_FREEBSD_THRMISC: { 563 lldb::offset_t offset = 0; 564 thread_data.name = note.data.GetCStr(&offset, 20); 565 break; 566 } 567 case ELF::NT_FREEBSD_PROCSTAT_AUXV: 568 // FIXME: FreeBSD sticks an int at the beginning of the note 569 m_auxv = DataExtractor(note.data, 4, note.data.GetByteSize() - 4); 570 break; 571 default: 572 thread_data.notes.push_back(note); 573 break; 574 } 575 } 576 if (!have_prstatus) { 577 return llvm::make_error<llvm::StringError>( 578 "Could not find NT_PRSTATUS note in core file.", 579 llvm::inconvertibleErrorCode()); 580 } 581 m_thread_data.push_back(thread_data); 582 return llvm::Error::success(); 583 } 584 585 /// NetBSD specific Thread context from PT_NOTE segment 586 /// 587 /// NetBSD ELF core files use notes to provide information about 588 /// the process's state. The note name is "NetBSD-CORE" for 589 /// information that is global to the process, and "NetBSD-CORE@nn", 590 /// where "nn" is the lwpid of the LWP that the information belongs 591 /// to (such as register state). 592 /// 593 /// NetBSD uses the following note identifiers: 594 /// 595 /// ELF_NOTE_NETBSD_CORE_PROCINFO (value 1) 596 /// Note is a "netbsd_elfcore_procinfo" structure. 597 /// ELF_NOTE_NETBSD_CORE_AUXV (value 2; since NetBSD 8.0) 598 /// Note is an array of AuxInfo structures. 599 /// 600 /// NetBSD also uses ptrace(2) request numbers (the ones that exist in 601 /// machine-dependent space) to identify register info notes. The 602 /// info in such notes is in the same format that ptrace(2) would 603 /// export that information. 604 /// 605 /// For more information see /usr/include/sys/exec_elf.h 606 /// 607 llvm::Error ProcessElfCore::parseNetBSDNotes(llvm::ArrayRef<CoreNote> notes) { 608 ThreadData thread_data; 609 bool had_nt_regs = false; 610 611 // To be extracted from struct netbsd_elfcore_procinfo 612 // Used to sanity check of the LWPs of the process 613 uint32_t nlwps = 0; 614 uint32_t signo; // killing signal 615 uint32_t siglwp; // LWP target of killing signal 616 uint32_t pr_pid; 617 618 for (const auto ¬e : notes) { 619 llvm::StringRef name = note.info.n_name; 620 621 if (name == "NetBSD-CORE") { 622 if (note.info.n_type == NETBSD::NT_PROCINFO) { 623 llvm::Error error = ParseNetBSDProcInfo(note.data, nlwps, signo, 624 siglwp, pr_pid); 625 if (error) 626 return error; 627 SetID(pr_pid); 628 } else if (note.info.n_type == NETBSD::NT_AUXV) { 629 m_auxv = note.data; 630 } 631 } else if (name.consume_front("NetBSD-CORE@")) { 632 lldb::tid_t tid; 633 if (name.getAsInteger(10, tid)) 634 return llvm::make_error<llvm::StringError>( 635 "Error parsing NetBSD core(5) notes: Cannot convert LWP ID " 636 "to integer", 637 llvm::inconvertibleErrorCode()); 638 639 switch (GetArchitecture().GetMachine()) { 640 case llvm::Triple::aarch64: { 641 // Assume order PT_GETREGS, PT_GETFPREGS 642 if (note.info.n_type == NETBSD::AARCH64::NT_REGS) { 643 // If this is the next thread, push the previous one first. 644 if (had_nt_regs) { 645 m_thread_data.push_back(thread_data); 646 thread_data = ThreadData(); 647 had_nt_regs = false; 648 } 649 650 thread_data.gpregset = note.data; 651 thread_data.tid = tid; 652 if (thread_data.gpregset.GetByteSize() == 0) 653 return llvm::make_error<llvm::StringError>( 654 "Could not find general purpose registers note in core file.", 655 llvm::inconvertibleErrorCode()); 656 had_nt_regs = true; 657 } else if (note.info.n_type == NETBSD::AARCH64::NT_FPREGS) { 658 if (!had_nt_regs || tid != thread_data.tid) 659 return llvm::make_error<llvm::StringError>( 660 "Error parsing NetBSD core(5) notes: Unexpected order " 661 "of NOTEs PT_GETFPREG before PT_GETREG", 662 llvm::inconvertibleErrorCode()); 663 thread_data.notes.push_back(note); 664 } 665 } break; 666 case llvm::Triple::x86: { 667 // Assume order PT_GETREGS, PT_GETFPREGS 668 if (note.info.n_type == NETBSD::I386::NT_REGS) { 669 // If this is the next thread, push the previous one first. 670 if (had_nt_regs) { 671 m_thread_data.push_back(thread_data); 672 thread_data = ThreadData(); 673 had_nt_regs = false; 674 } 675 676 thread_data.gpregset = note.data; 677 thread_data.tid = tid; 678 if (thread_data.gpregset.GetByteSize() == 0) 679 return llvm::make_error<llvm::StringError>( 680 "Could not find general purpose registers note in core file.", 681 llvm::inconvertibleErrorCode()); 682 had_nt_regs = true; 683 } else if (note.info.n_type == NETBSD::I386::NT_FPREGS) { 684 if (!had_nt_regs || tid != thread_data.tid) 685 return llvm::make_error<llvm::StringError>( 686 "Error parsing NetBSD core(5) notes: Unexpected order " 687 "of NOTEs PT_GETFPREG before PT_GETREG", 688 llvm::inconvertibleErrorCode()); 689 thread_data.notes.push_back(note); 690 } 691 } break; 692 case llvm::Triple::x86_64: { 693 // Assume order PT_GETREGS, PT_GETFPREGS 694 if (note.info.n_type == NETBSD::AMD64::NT_REGS) { 695 // If this is the next thread, push the previous one first. 696 if (had_nt_regs) { 697 m_thread_data.push_back(thread_data); 698 thread_data = ThreadData(); 699 had_nt_regs = false; 700 } 701 702 thread_data.gpregset = note.data; 703 thread_data.tid = tid; 704 if (thread_data.gpregset.GetByteSize() == 0) 705 return llvm::make_error<llvm::StringError>( 706 "Could not find general purpose registers note in core file.", 707 llvm::inconvertibleErrorCode()); 708 had_nt_regs = true; 709 } else if (note.info.n_type == NETBSD::AMD64::NT_FPREGS) { 710 if (!had_nt_regs || tid != thread_data.tid) 711 return llvm::make_error<llvm::StringError>( 712 "Error parsing NetBSD core(5) notes: Unexpected order " 713 "of NOTEs PT_GETFPREG before PT_GETREG", 714 llvm::inconvertibleErrorCode()); 715 thread_data.notes.push_back(note); 716 } 717 } break; 718 default: 719 break; 720 } 721 } 722 } 723 724 // Push the last thread. 725 if (had_nt_regs) 726 m_thread_data.push_back(thread_data); 727 728 if (m_thread_data.empty()) 729 return llvm::make_error<llvm::StringError>( 730 "Error parsing NetBSD core(5) notes: No threads information " 731 "specified in notes", 732 llvm::inconvertibleErrorCode()); 733 734 if (m_thread_data.size() != nlwps) 735 return llvm::make_error<llvm::StringError>( 736 "Error parsing NetBSD core(5) notes: Mismatch between the number " 737 "of LWPs in netbsd_elfcore_procinfo and the number of LWPs specified " 738 "by MD notes", 739 llvm::inconvertibleErrorCode()); 740 741 // Signal targeted at the whole process. 742 if (siglwp == 0) { 743 for (auto &data : m_thread_data) 744 data.signo = signo; 745 } 746 // Signal destined for a particular LWP. 747 else { 748 bool passed = false; 749 750 for (auto &data : m_thread_data) { 751 if (data.tid == siglwp) { 752 data.signo = signo; 753 passed = true; 754 break; 755 } 756 } 757 758 if (!passed) 759 return llvm::make_error<llvm::StringError>( 760 "Error parsing NetBSD core(5) notes: Signal passed to unknown LWP", 761 llvm::inconvertibleErrorCode()); 762 } 763 764 return llvm::Error::success(); 765 } 766 767 llvm::Error ProcessElfCore::parseOpenBSDNotes(llvm::ArrayRef<CoreNote> notes) { 768 ThreadData thread_data; 769 for (const auto ¬e : notes) { 770 // OpenBSD per-thread information is stored in notes named "OpenBSD@nnn" so 771 // match on the initial part of the string. 772 if (!llvm::StringRef(note.info.n_name).startswith("OpenBSD")) 773 continue; 774 775 switch (note.info.n_type) { 776 case OPENBSD::NT_PROCINFO: 777 ParseOpenBSDProcInfo(thread_data, note.data); 778 break; 779 case OPENBSD::NT_AUXV: 780 m_auxv = note.data; 781 break; 782 case OPENBSD::NT_REGS: 783 thread_data.gpregset = note.data; 784 break; 785 default: 786 thread_data.notes.push_back(note); 787 break; 788 } 789 } 790 if (thread_data.gpregset.GetByteSize() == 0) { 791 return llvm::make_error<llvm::StringError>( 792 "Could not find general purpose registers note in core file.", 793 llvm::inconvertibleErrorCode()); 794 } 795 m_thread_data.push_back(thread_data); 796 return llvm::Error::success(); 797 } 798 799 /// A description of a linux process usually contains the following NOTE 800 /// entries: 801 /// - NT_PRPSINFO - General process information like pid, uid, name, ... 802 /// - NT_SIGINFO - Information about the signal that terminated the process 803 /// - NT_AUXV - Process auxiliary vector 804 /// - NT_FILE - Files mapped into memory 805 /// 806 /// Additionally, for each thread in the process the core file will contain at 807 /// least the NT_PRSTATUS note, containing the thread id and general purpose 808 /// registers. It may include additional notes for other register sets (floating 809 /// point and vector registers, ...). The tricky part here is that some of these 810 /// notes have "CORE" in their owner fields, while other set it to "LINUX". 811 llvm::Error ProcessElfCore::parseLinuxNotes(llvm::ArrayRef<CoreNote> notes) { 812 const ArchSpec &arch = GetArchitecture(); 813 bool have_prstatus = false; 814 bool have_prpsinfo = false; 815 ThreadData thread_data; 816 for (const auto ¬e : notes) { 817 if (note.info.n_name != "CORE" && note.info.n_name != "LINUX") 818 continue; 819 820 if ((note.info.n_type == ELF::NT_PRSTATUS && have_prstatus) || 821 (note.info.n_type == ELF::NT_PRPSINFO && have_prpsinfo)) { 822 assert(thread_data.gpregset.GetByteSize() > 0); 823 // Add the new thread to thread list 824 m_thread_data.push_back(thread_data); 825 thread_data = ThreadData(); 826 have_prstatus = false; 827 have_prpsinfo = false; 828 } 829 830 switch (note.info.n_type) { 831 case ELF::NT_PRSTATUS: { 832 have_prstatus = true; 833 ELFLinuxPrStatus prstatus; 834 Status status = prstatus.Parse(note.data, arch); 835 if (status.Fail()) 836 return status.ToError(); 837 thread_data.prstatus_sig = prstatus.pr_cursig; 838 thread_data.tid = prstatus.pr_pid; 839 uint32_t header_size = ELFLinuxPrStatus::GetSize(arch); 840 size_t len = note.data.GetByteSize() - header_size; 841 thread_data.gpregset = DataExtractor(note.data, header_size, len); 842 break; 843 } 844 case ELF::NT_PRPSINFO: { 845 have_prpsinfo = true; 846 ELFLinuxPrPsInfo prpsinfo; 847 Status status = prpsinfo.Parse(note.data, arch); 848 if (status.Fail()) 849 return status.ToError(); 850 thread_data.name.assign (prpsinfo.pr_fname, strnlen (prpsinfo.pr_fname, sizeof (prpsinfo.pr_fname))); 851 SetID(prpsinfo.pr_pid); 852 break; 853 } 854 case ELF::NT_SIGINFO: { 855 ELFLinuxSigInfo siginfo; 856 Status status = siginfo.Parse(note.data, arch); 857 if (status.Fail()) 858 return status.ToError(); 859 thread_data.signo = siginfo.si_signo; 860 break; 861 } 862 case ELF::NT_FILE: { 863 m_nt_file_entries.clear(); 864 lldb::offset_t offset = 0; 865 const uint64_t count = note.data.GetAddress(&offset); 866 note.data.GetAddress(&offset); // Skip page size 867 for (uint64_t i = 0; i < count; ++i) { 868 NT_FILE_Entry entry; 869 entry.start = note.data.GetAddress(&offset); 870 entry.end = note.data.GetAddress(&offset); 871 entry.file_ofs = note.data.GetAddress(&offset); 872 m_nt_file_entries.push_back(entry); 873 } 874 for (uint64_t i = 0; i < count; ++i) { 875 const char *path = note.data.GetCStr(&offset); 876 if (path && path[0]) 877 m_nt_file_entries[i].path.SetCString(path); 878 } 879 break; 880 } 881 case ELF::NT_AUXV: 882 m_auxv = note.data; 883 break; 884 default: 885 thread_data.notes.push_back(note); 886 break; 887 } 888 } 889 // Add last entry in the note section 890 if (have_prstatus) 891 m_thread_data.push_back(thread_data); 892 return llvm::Error::success(); 893 } 894 895 /// Parse Thread context from PT_NOTE segment and store it in the thread list 896 /// A note segment consists of one or more NOTE entries, but their types and 897 /// meaning differ depending on the OS. 898 llvm::Error ProcessElfCore::ParseThreadContextsFromNoteSegment( 899 const elf::ELFProgramHeader &segment_header, 900 const DataExtractor &segment_data) { 901 assert(segment_header.p_type == llvm::ELF::PT_NOTE); 902 903 auto notes_or_error = parseSegment(segment_data); 904 if(!notes_or_error) 905 return notes_or_error.takeError(); 906 switch (GetArchitecture().GetTriple().getOS()) { 907 case llvm::Triple::FreeBSD: 908 return parseFreeBSDNotes(*notes_or_error); 909 case llvm::Triple::Linux: 910 return parseLinuxNotes(*notes_or_error); 911 case llvm::Triple::NetBSD: 912 return parseNetBSDNotes(*notes_or_error); 913 case llvm::Triple::OpenBSD: 914 return parseOpenBSDNotes(*notes_or_error); 915 default: 916 return llvm::make_error<llvm::StringError>( 917 "Don't know how to parse core file. Unsupported OS.", 918 llvm::inconvertibleErrorCode()); 919 } 920 } 921 922 uint32_t ProcessElfCore::GetNumThreadContexts() { 923 if (!m_thread_data_valid) 924 DoLoadCore(); 925 return m_thread_data.size(); 926 } 927 928 ArchSpec ProcessElfCore::GetArchitecture() { 929 ArchSpec arch = m_core_module_sp->GetObjectFile()->GetArchitecture(); 930 931 ArchSpec target_arch = GetTarget().GetArchitecture(); 932 arch.MergeFrom(target_arch); 933 934 // On MIPS there is no way to differentiate betwenn 32bit and 64bit core 935 // files and this information can't be merged in from the target arch so we 936 // fail back to unconditionally returning the target arch in this config. 937 if (target_arch.IsMIPS()) { 938 return target_arch; 939 } 940 941 return arch; 942 } 943 944 DataExtractor ProcessElfCore::GetAuxvData() { 945 const uint8_t *start = m_auxv.GetDataStart(); 946 size_t len = m_auxv.GetByteSize(); 947 lldb::DataBufferSP buffer(new lldb_private::DataBufferHeap(start, len)); 948 return DataExtractor(buffer, GetByteOrder(), GetAddressByteSize()); 949 } 950 951 bool ProcessElfCore::GetProcessInfo(ProcessInstanceInfo &info) { 952 info.Clear(); 953 info.SetProcessID(GetID()); 954 info.SetArchitecture(GetArchitecture()); 955 lldb::ModuleSP module_sp = GetTarget().GetExecutableModule(); 956 if (module_sp) { 957 const bool add_exe_file_as_first_arg = false; 958 info.SetExecutableFile(GetTarget().GetExecutableModule()->GetFileSpec(), 959 add_exe_file_as_first_arg); 960 } 961 return true; 962 } 963