This is an archive of the discontinued LLVM Phabricator instance.

Differential D29095

Open ELF core dumps with more than 64K sections
ClosedPublic

Authored by EugeneBi on Jan 24 2017, 12:56 PM.

Details

Reviewers
labath
Commits
rG23ccc29197fd: Open ELF core dumps with more than 64K sections
rLLDB293714: Open ELF core dumps with more than 64K sections
rL293714: Open ELF core dumps with more than 64K sections
Summary

Problem:

There are three filelds in the ELF header - e_phnum, e_shnum, and e_shstrndx -
that could be bigger than 64K and therefore do not fit in 16 bits reserved for
them in the header. If this happens, pretty often there is a special section at
index 0 which contains their real values for these fields in the section header
in the fields sh_info, sh_size, and sh_link respectively.

Fix:

  • Rename original fields in the header declaration. We want to have them around

just in case.

  • Reintroduce these fields as 32-bit members at the end of the header. By default

they are initialized from the header in Parse() method.

  • In Parse(), detect the situation when the header might have been extended into

section info #0 and try to read it from the same data source.

  • ObjectFileELF::GetModuleSpecifications accesses some of these fields but the

original parse uses too small data source. Re-parse the header if necessary
using bigger data source.

  • ProcessElfCore::CreateInstance uses header with potentially sentinel values,

but it does not access these fields, so a comment here is enough.

Diff Detail

Event Timeline

EugeneBi created this revision.Jan 24 2017, 12:56 PM
EugeneBi added a reviewer: labath.
labath edited edge metadata.Jan 25 2017, 3:09 AM

The changes themselves look fine. However:

  • this diff seems to be based on some very old snapshot, as it still uses the old 4-char indentation and everything. Please rebase the change on current master.
  • have given any thoughts on how to test this? It sounds like testing the whole pipeline would be quite hard. But we could at least add a unit test for the ELFHeader::Parse function. It seems quite doable - just create some elf-looking data in memory and pass it to this function. Currently there is no unittests/ObjectFile/ELF folder, so please create one and put the test there.
source/Plugins/ObjectFile/ELF/ELFHeader.h
56–57

I am wondering whether these is any use in keeping these old values. It sounds like it's a recipe for someone getting confused and using the wrong ones. What do you think about just deleting these?

EugeneBi added a comment.Jan 25 2017, 12:26 PM
  1. Yes, this is based on release_39 branch. OK, I'll rebase it on current master.
  2. Sorry, I am not familiar with LLDB testing and unfortunately I do not have time to do it. I am testing it on the core dumps I have. If this is not acceptable, I'll keep using my private copy and wait until somebody with more resources to spend on LLDB picks it up.
  3. I thought about keeping vs. discarding values from the original header. I slightly inclined to keep them because:
  • They are not necessary if everything works, but if something goes wrong it could be useful to see in the debugger what was the original header
  • They are used in HasHeaderExtension method which is quite simple right now, I do not want it get complicated.
  • To avoid confusion, I added "_hdr" suffix to the original values. Well, we can invent better name - maybe "_orig" or what?
EugeneBi updated this revision to Diff 85827.Jan 25 2017, 3:43 PM

Rebased to recent master

EugeneBi abandoned this revision.Jan 25 2017, 3:49 PM

Sorry, messed up.
Will upload correct change soon

EugeneBi added a comment.Jan 25 2017, 9:01 PM

Hmm... This fix does not work with the recent sources :(
I'll debug some more tomorrow.

source/Plugins/ObjectFile/ELF/ELFHeader.h
67

Accidentally deleted this line

EugeneBi updated this revision to Diff 85931.Jan 26 2017, 10:10 AM

This compiles, builds, and run.

Unfortunately, unlike release_39 branch, I cannot open my core dump, but the problem seems unrelated.
So I think I want to push it through and continue investigation what is not working this time.

EugeneBi added inline comments.Jan 26 2017, 10:13 AM
source/Plugins/ObjectFile/ELF/ELFHeader.h
56–57

I will leave it to you - just tell me what you prefer. I see both pros and cons of my current code.

labath updated this revision to Diff 86048.Jan 27 2017, 7:16 AM
labath edited the summary of this revision. (Show Details)

Add a unittest for the header parse function

Herald added a subscriber: mgorny. · View Herald TranscriptJan 27 2017, 7:16 AM
labath accepted this revision.Jan 27 2017, 7:25 AM
labath added a subscriber: lldb-commits.

I've added a quick test to demonstrate what I had in mind.

Unfortunately, unlike release_39 branch, I cannot open my core dump, but the problem seems unrelated. So I think I want to push it through and continue investigation what is not working this time.

That's kinda the reason I wanted to add tests. :)
This test would not have actually caught your new problem, but it could add at least some protection for the future, as I doubt many people will run into real files with this many sections.

I think this should be ok to put in if there are no objections from anyone else.

source/Plugins/ObjectFile/ELF/ELFHeader.h
56–57

Ok, let's leave it this way then.

This revision is now accepted and ready to land.Jan 27 2017, 7:25 AM
davidb added a subscriber: davidb.Jan 27 2017, 7:54 AM
davidb added inline comments.
source/Plugins/ObjectFile/ELF/ELFHeader.cpp
108

Would this make more sense to compare against a named constant ELF::PN_XNUM?

110

And this with SHN_UNDEF?

112

and this with ELF::SHN_XINDEX.

EugeneBi added inline comments.Jan 27 2017, 4:55 PM
source/Plugins/ObjectFile/ELF/ELFHeader.cpp
108

Would be nice, but - where is it defined? I tried ELF::PN_XNUM, elf::PN_XNUM, PN_XNUM - compiler barks anyway.

EugeneBi added inline comments.Jan 27 2017, 5:15 PM
source/Plugins/ObjectFile/ELF/ELFHeader.cpp
108

OK, I see the other two are defined in Support/ELF.h, I'll put PN_XNUM there then.

EugeneBi added inline comments.Jan 27 2017, 5:22 PM
source/Plugins/ObjectFile/ELF/ELFHeader.cpp
108

Oh, this ELF.h is a part of a different git repo - it lives in llvm. I am not sure what to do about it.

EugeneBi updated this revision to Diff 86148.Jan 27 2017, 5:51 PM

Used named constants for SHN_UNDEF and SHN_XINDEX sentinels.
Unfortunately ELF.h lacks definition of PN_XNUM, so left it as a comment.

EugeneBi added a comment.Jan 30 2017, 11:30 AM

So, what's now? Can somebody commit it, please?
I do not see any option to do it myself.

Closed by commit rL293714: Open ELF core dumps with more than 64K sections (authored by labath). · Explain WhyJan 31 2017, 3:21 PM
This revision was automatically updated to reflect the committed changes.
labath added a comment.Jan 31 2017, 3:21 PM

Sorry, I have been a bit busy.

I've committed this in now. Thank you for the patch.

Revision Contents

PathSize
source/
Plugins/
ObjectFile/
ELF/
32 lines
43 lines
25 lines
Process/
elf-core/
2 lines

Diff 85827

source/Plugins/ObjectFile/ELF/ELFHeader.h

Show First 20 LinesShow All 47 Lines▼ Show 20 Lines
typedef int64_t elf_sxword; typedef int64_t elf_sxword;
//@} //@}
//------------------------------------------------------------------------------ //------------------------------------------------------------------------------
/// @class ELFHeader /// @class ELFHeader
/// @brief Generic representation of an ELF file header. /// @brief Generic representation of an ELF file header.
/// ///
/// This object is used to identify the general attributes on an ELF file and to /// This object is used to identify the general attributes on an ELF file and to
/// locate additional sections within the file. /// locate additional sections within the file.
struct ELFHeader { struct ELFHeader {
labathUnsubmitted
Not Done
ReplyInline Actions

I am wondering whether these is any use in keeping these old values. It sounds like it's a recipe for someone getting confused and using the wrong ones. What do you think about just deleting these?

labath: I am wondering whether these is any use in keeping these old values. It sounds like it's a…
EugeneBiAuthorUnsubmitted
Not Done
ReplyInline Actions

I will leave it to you - just tell me what you prefer. I see both pros and cons of my current code.

EugeneBi: I will leave it to you - just tell me what you prefer. I see both pros and cons of my current…
labathUnsubmitted
Not Done
ReplyInline Actions

Ok, let's leave it this way then.

labath: Ok, let's leave it this way then.
unsigned char e_ident[llvm::ELF::EI_NIDENT]; ///< ELF file identification. unsigned char e_ident[llvm::ELF::EI_NIDENT]; ///< ELF file identification.
elf_addr e_entry; ///< Virtual address program entry point. elf_addr e_entry; ///< Virtual address program entry point.
elf_off e_phoff; ///< File offset of program header table. elf_off e_phoff; ///< File offset of program header table.
elf_off e_shoff; ///< File offset of section header table. elf_off e_shoff; ///< File offset of section header table.
elf_word e_flags; ///< Processor specific flags. elf_word e_flags; ///< Processor specific flags.
elf_word e_version; ///< Version of object file (always 1). elf_word e_version; ///< Version of object file (always 1).
elf_half e_type; ///< Object file type. elf_half e_type; ///< Object file type.
elf_half e_machine; ///< Target architecture. elf_half e_machine; ///< Target architecture.
elf_half e_ehsize; ///< Byte size of the ELF header. elf_half e_ehsize; ///< Byte size of the ELF header.
elf_half e_phentsize; ///< Size of a program header table entry. elf_half e_phnum_hdr; ///< Number of program header entries.
EugeneBiAuthorUnsubmitted
Not Done
ReplyInline Actions

Accidentally deleted this line

EugeneBi: Accidentally deleted this line
elf_half e_phnum; ///< Number of program header entries.
elf_half e_shentsize; ///< Size of a section header table entry. elf_half e_shentsize; ///< Size of a section header table entry.
elf_half e_shnum; ///< Number of section header entries. elf_half e_shnum_hdr; ///< Number of section header entries.
elf_half e_shstrndx; ///< String table section index. elf_half e_shstrndx_hdr; ///< String table section index.
// In some cases these numbers do not fit in 16 bits and they are
// stored outside of the header in section #0. Here are the actual
// values.
elf_word e_phnum; ///< Number of program header entries.
elf_word e_shnum; ///< Number of section header entries.
elf_word e_shstrndx; ///< String table section index.
ELFHeader(); ELFHeader();
//-------------------------------------------------------------------------- //--------------------------------------------------------------------------
/// Returns true if this is a 32 bit ELF file header. /// Returns true if this is a 32 bit ELF file header.
/// ///
/// @return /// @return
/// True if this is a 32 bit ELF file header. /// True if this is a 32 bit ELF file header.
Show All 17 Linesstruct ELFHeader {
/// The byte order of this ELF file as described by the header. /// The byte order of this ELF file as described by the header.
lldb::ByteOrder GetByteOrder() const; lldb::ByteOrder GetByteOrder() const;
//-------------------------------------------------------------------------- //--------------------------------------------------------------------------
/// The jump slot relocation type of this ELF. /// The jump slot relocation type of this ELF.
unsigned GetRelocationJumpSlotType() const; unsigned GetRelocationJumpSlotType() const;
//-------------------------------------------------------------------------- //--------------------------------------------------------------------------
/// Check if there should be header extension in section header #0
///
/// @return
/// True if parsing the ELFHeader requires reading header extension
/// and false otherwise.
bool HasHeaderExtension() const;
//--------------------------------------------------------------------------
/// Parse an ELFHeader entry starting at position \p offset and /// Parse an ELFHeader entry starting at position \p offset and
/// update the data extractor with the address size and byte order /// update the data extractor with the address size and byte order
/// attributes as defined by the header. /// attributes as defined by the header.
/// ///
/// @param[in,out] data /// @param[in,out] data
/// The DataExtractor to read from. Updated with the address size and /// The DataExtractor to read from. Updated with the address size and
/// byte order attributes appropriate to this header. /// byte order attributes appropriate to this header.
/// ///
Show All 19 Linesstruct ELFHeader {
/// determines the address size of the underlying ELF file. This function /// determines the address size of the underlying ELF file. This function
/// should only be called on an pointer for which MagicBytesMatch returns /// should only be called on an pointer for which MagicBytesMatch returns
/// true. /// true.
/// ///
/// @return /// @return
/// The number of bytes forming an address in the ELF file (either 4 or /// The number of bytes forming an address in the ELF file (either 4 or
/// 8), else zero if the address size could not be determined. /// 8), else zero if the address size could not be determined.
static unsigned AddressSizeInBytes(const uint8_t *magic); static unsigned AddressSizeInBytes(const uint8_t *magic);
private:
//--------------------------------------------------------------------------
/// Parse an ELFHeader header extension entry. This method is called
/// by Parse().
///
/// @param[in] data
/// The DataExtractor to read from.
void ParseHeaderExtension(lldb_private::DataExtractor &data);
}; };
//------------------------------------------------------------------------------ //------------------------------------------------------------------------------
/// @class ELFSectionHeader /// @class ELFSectionHeader
/// @brief Generic representation of an ELF section header. /// @brief Generic representation of an ELF section header.
struct ELFSectionHeader { struct ELFSectionHeader {
elf_word sh_name; ///< Section name string index. elf_word sh_name; ///< Section name string index.
elf_word sh_type; ///< Section type. elf_word sh_type; ///< Section type.
▲ Show 20 LinesShow All 239 LinesShow Last 20 Lines

source/Plugins/ObjectFile/ELF/ELFHeader.cpp

Show First 20 LinesShow All 75 Lines▼ Show 20 Lines
ByteOrder ELFHeader::GetByteOrder() const { ByteOrder ELFHeader::GetByteOrder() const {
if (e_ident[EI_DATA] == ELFDATA2MSB) if (e_ident[EI_DATA] == ELFDATA2MSB)
return eByteOrderBig; return eByteOrderBig;
if (e_ident[EI_DATA] == ELFDATA2LSB) if (e_ident[EI_DATA] == ELFDATA2LSB)
return eByteOrderLittle; return eByteOrderLittle;
return eByteOrderInvalid; return eByteOrderInvalid;
} }
bool ELFHeader::HasHeaderExtension() const {
bool result = false;
// Check if any of these values looks like sentinel.
result |= e_phnum_hdr == 0xFFFF;
result |= e_shnum_hdr == 0;
result |= e_shstrndx_hdr == 0xFFFF;
// If header extension is present, the section offset cannot be null.
result &= e_shoff != 0;
// Done.
return result;
}
void ELFHeader::ParseHeaderExtension(lldb_private::DataExtractor &data) {
// Extract section #0 header.
ELFSectionHeader section_zero;
lldb::offset_t offset = 0;
lldb_private::DataExtractor sh_data(data, e_shoff, e_shentsize);
bool ok = section_zero.Parse(sh_data, &offset);
// If we succeeded, fix the header.
if (ok) {
if (e_phnum_hdr == 0xFFFF)
davidbUnsubmitted
Not Done
ReplyInline Actions

Would this make more sense to compare against a named constant ELF::PN_XNUM?

davidb: Would this make more sense to compare against a named constant ELF::PN_XNUM?
EugeneBiAuthorUnsubmitted
Not Done
ReplyInline Actions

Would be nice, but - where is it defined? I tried ELF::PN_XNUM, elf::PN_XNUM, PN_XNUM - compiler barks anyway.

EugeneBi: Would be nice, but - where is it defined? I tried ELF::PN_XNUM, elf::PN_XNUM, PN_XNUM…
EugeneBiAuthorUnsubmitted
Not Done
ReplyInline Actions

OK, I see the other two are defined in Support/ELF.h, I'll put PN_XNUM there then.

EugeneBi: OK, I see the other two are defined in Support/ELF.h, I'll put PN_XNUM there then.
EugeneBiAuthorUnsubmitted
Not Done
ReplyInline Actions

Oh, this ELF.h is a part of a different git repo - it lives in llvm. I am not sure what to do about it.

EugeneBi: Oh, this ELF.h is a part of a different git repo - it lives in llvm. I am not sure what to do…
e_phnum = section_zero.sh_info;
if (e_shnum_hdr == 0)
davidbUnsubmitted
Not Done
ReplyInline Actions

And this with SHN_UNDEF?

davidb: And this with SHN_UNDEF?
e_shnum = section_zero.sh_size;
if (e_shstrndx_hdr == 0xFFFF)
davidbUnsubmitted
Not Done
ReplyInline Actions

and this with ELF::SHN_XINDEX.

davidb: and this with ELF::SHN_XINDEX.
e_shstrndx = section_zero.sh_link;
}
}
bool ELFHeader::Parse(lldb_private::DataExtractor &data, bool ELFHeader::Parse(lldb_private::DataExtractor &data,
lldb::offset_t *offset) { lldb::offset_t *offset) {
// Read e_ident. This provides byte order and address size info. // Read e_ident. This provides byte order and address size info.
if (data.GetU8(offset, &e_ident, EI_NIDENT) == NULL) if (data.GetU8(offset, &e_ident, EI_NIDENT) == NULL)
return false; return false;
const unsigned byte_size = Is32Bit() ? 4 : 8; const unsigned byte_size = Is32Bit() ? 4 : 8;
data.SetByteOrder(GetByteOrder()); data.SetByteOrder(GetByteOrder());
Show All 15 Linesbool ELFHeader::Parse(lldb_private::DataExtractor &data,
if (data.GetU32(offset, &e_flags, 1) == NULL) if (data.GetU32(offset, &e_flags, 1) == NULL)
return false; return false;
// Read e_ehsize, e_phentsize, e_phnum, e_shentsize, e_shnum and // Read e_ehsize, e_phentsize, e_phnum, e_shentsize, e_shnum and
// e_shstrndx. // e_shstrndx.
if (data.GetU16(offset, &e_ehsize, 6) == NULL) if (data.GetU16(offset, &e_ehsize, 6) == NULL)
return false; return false;
// Initialize e_phnum, e_shnum, and e_shstrndx with the values
// read from the header.
e_phnum = e_phnum_hdr;
e_shnum = e_shnum_hdr;
e_shstrndx = e_shstrndx_hdr;
// See if we have extended header in section #0.
if (HasHeaderExtension())
ParseHeaderExtension(data);
return true; return true;
} }
bool ELFHeader::MagicBytesMatch(const uint8_t *magic) { bool ELFHeader::MagicBytesMatch(const uint8_t *magic) {
return memcmp(magic, ElfMagic, strlen(ElfMagic)) == 0; return memcmp(magic, ElfMagic, strlen(ElfMagic)) == 0;
} }
unsigned ELFHeader::AddressSizeInBytes(const uint8_t *magic) { unsigned ELFHeader::AddressSizeInBytes(const uint8_t *magic) {
▲ Show 20 LinesShow All 283 LinesShow Last 20 Lines

source/Plugins/ObjectFile/ELF/ObjectFileELF.cpp

Show First 20 LinesShow All 604 Lines▼ Show 20 Linessize_t ObjectFileELF::GetModuleSpecifications(
Log *log(lldb_private::GetLogIfAllCategoriesSet(LIBLLDB_LOG_MODULES)); Log *log(lldb_private::GetLogIfAllCategoriesSet(LIBLLDB_LOG_MODULES));
const size_t initial_count = specs.GetSize(); const size_t initial_count = specs.GetSize();
if (ObjectFileELF::MagicBytesMatch(data_sp, 0, data_sp->GetByteSize())) { if (ObjectFileELF::MagicBytesMatch(data_sp, 0, data_sp->GetByteSize())) {
DataExtractor data; DataExtractor data;
data.SetData(data_sp); data.SetData(data_sp);
elf::ELFHeader header; elf::ELFHeader header;
if (header.Parse(data, &data_offset)) { lldb::offset_t header_offset = data_offset;
if (header.Parse(data, &header_offset)) {
if (data_sp) { if (data_sp) {
ModuleSpec spec(file); ModuleSpec spec(file);
const uint32_t sub_type = subTypeFromElfHeader(header); const uint32_t sub_type = subTypeFromElfHeader(header);
spec.GetArchitecture().SetArchitecture( spec.GetArchitecture().SetArchitecture(
eArchTypeELF, header.e_machine, sub_type, header.e_ident[EI_OSABI]); eArchTypeELF, header.e_machine, sub_type, header.e_ident[EI_OSABI]);
if (spec.GetArchitecture().IsValid()) { if (spec.GetArchitecture().IsValid()) {
Show All 18 Lines if (header.Parse(data, &header_offset)) {
assert(spec_ostype == ostype); assert(spec_ostype == ostype);
if (spec_ostype != llvm::Triple::OSType::UnknownOS) { if (spec_ostype != llvm::Triple::OSType::UnknownOS) {
if (log) if (log)
log->Printf("ObjectFileELF::%s file '%s' set ELF module OS type " log->Printf("ObjectFileELF::%s file '%s' set ELF module OS type "
"from ELF header OSABI.", "from ELF header OSABI.",
__FUNCTION__, file.GetPath().c_str()); __FUNCTION__, file.GetPath().c_str());
} }
// In case there is header extension in the section #0, the header
// we parsed above could have sentinel values for e_phnum, e_shnum,
// and e_shstrndx. In this case we need to reparse the header
// with a bigger data source to get the actual values.
size_t section_header_end = header.e_shoff + header.e_shentsize;
if (header.HasHeaderExtension() &&
section_header_end > data_sp->GetByteSize()) {
data_sp = file.MemoryMapFileContentsIfLocal (file_offset,
section_header_end);
data.SetData(data_sp);
lldb::offset_t header_offset = data_offset;
header.Parse(data, &header_offset);
}
// Try to get the UUID from the section list. Usually that's at the // Try to get the UUID from the section list. Usually that's at the
// end, so // end, so
// map the file in if we don't have it already. // map the file in if we don't have it already.
size_t section_header_end = section_header_end =
header.e_shoff + header.e_shnum * header.e_shentsize; header.e_shoff + header.e_shnum * header.e_shentsize;
if (section_header_end > data_sp->GetByteSize()) { if (section_header_end > data_sp->GetByteSize()) {
data_sp = file.MemoryMapFileContentsIfLocal(file_offset, data_sp = file.MemoryMapFileContentsIfLocal(file_offset,
section_header_end); section_header_end);
data.SetData(data_sp); data.SetData(data_sp);
} }
uint32_t gnu_debuglink_crc = 0; uint32_t gnu_debuglink_crc = 0;
▲ Show 20 LinesShow All 2,402 Lines▼ Show 20 Linesvoid ObjectFileELF::DumpELFHeader(Stream *s, const ELFHeader &header) {
s->Printf("\ne_machine = 0x%4.4x\n", header.e_machine); s->Printf("\ne_machine = 0x%4.4x\n", header.e_machine);
s->Printf("e_version = 0x%8.8x\n", header.e_version); s->Printf("e_version = 0x%8.8x\n", header.e_version);
s->Printf("e_entry = 0x%8.8" PRIx64 "\n", header.e_entry); s->Printf("e_entry = 0x%8.8" PRIx64 "\n", header.e_entry);
s->Printf("e_phoff = 0x%8.8" PRIx64 "\n", header.e_phoff); s->Printf("e_phoff = 0x%8.8" PRIx64 "\n", header.e_phoff);
s->Printf("e_shoff = 0x%8.8" PRIx64 "\n", header.e_shoff); s->Printf("e_shoff = 0x%8.8" PRIx64 "\n", header.e_shoff);
s->Printf("e_flags = 0x%8.8x\n", header.e_flags); s->Printf("e_flags = 0x%8.8x\n", header.e_flags);
s->Printf("e_ehsize = 0x%4.4x\n", header.e_ehsize); s->Printf("e_ehsize = 0x%4.4x\n", header.e_ehsize);
s->Printf("e_phentsize = 0x%4.4x\n", header.e_phentsize); s->Printf("e_phentsize = 0x%4.4x\n", header.e_phentsize);
s->Printf("e_phnum = 0x%4.4x\n", header.e_phnum); s->Printf("e_phnum = 0x%8.8x\n", header.e_phnum);
s->Printf("e_shentsize = 0x%4.4x\n", header.e_shentsize); s->Printf("e_shentsize = 0x%4.4x\n", header.e_shentsize);
s->Printf("e_shnum = 0x%4.4x\n", header.e_shnum); s->Printf("e_shnum = 0x%8.8x\n", header.e_shnum);
s->Printf("e_shstrndx = 0x%4.4x\n", header.e_shstrndx); s->Printf("e_shstrndx = 0x%8.8x\n", header.e_shstrndx);
} }
//---------------------------------------------------------------------- //----------------------------------------------------------------------
// DumpELFHeader_e_type // DumpELFHeader_e_type
// //
// Dump an token value for the ELF header member e_type // Dump an token value for the ELF header member e_type
//---------------------------------------------------------------------- //----------------------------------------------------------------------
void ObjectFileELF::DumpELFHeader_e_type(Stream *s, elf_half e_type) { void ObjectFileELF::DumpELFHeader_e_type(Stream *s, elf_half e_type) {
▲ Show 20 LinesShow All 320 LinesShow Last 20 Lines

source/Plugins/Process/elf-core/ProcessElfCore.cpp

Show First 20 LinesShow All 50 Lines▼ Show 20 Lines
} }
lldb::ProcessSP ProcessElfCore::CreateInstance(lldb::TargetSP target_sp, lldb::ProcessSP ProcessElfCore::CreateInstance(lldb::TargetSP target_sp,
lldb::ListenerSP listener_sp, lldb::ListenerSP listener_sp,
const FileSpec *crash_file) { const FileSpec *crash_file) {
lldb::ProcessSP process_sp; lldb::ProcessSP process_sp;
if (crash_file) { if (crash_file) {
// Read enough data for a ELF32 header or ELF64 header // Read enough data for a ELF32 header or ELF64 header
// Note: Here we care about e_type field only, so it is safe
// to ignore possible presence of the header extension.
const size_t header_size = sizeof(llvm::ELF::Elf64_Ehdr); const size_t header_size = sizeof(llvm::ELF::Elf64_Ehdr);
lldb::DataBufferSP data_sp(crash_file->ReadFileContents(0, header_size)); lldb::DataBufferSP data_sp(crash_file->ReadFileContents(0, header_size));
if (data_sp && data_sp->GetByteSize() == header_size && if (data_sp && data_sp->GetByteSize() == header_size &&
elf::ELFHeader::MagicBytesMatch(data_sp->GetBytes())) { elf::ELFHeader::MagicBytesMatch(data_sp->GetBytes())) {
elf::ELFHeader elf_header; elf::ELFHeader elf_header;
DataExtractor data(data_sp, lldb::eByteOrderLittle, 4); DataExtractor data(data_sp, lldb::eByteOrderLittle, 4);
lldb::offset_t data_offset = 0; lldb::offset_t data_offset = 0;
▲ Show 20 LinesShow All 608 LinesShow Last 20 Lines