2 * UNIX signal handling for processor emulation for support of ntoskrnl of libcaptive
3 * Copyright (C) 2002 Jan Kratochvil <project-captive@jankratochvil.net>
5 * This program is free software; you can redistribute it and/or modify
6 * it under the terms of the GNU General Public License as published by
7 * the Free Software Foundation; exactly version 2 of June 1991 is required
9 * This program is distributed in the hope that it will be useful,
10 * but WITHOUT ANY WARRANTY; without even the implied warranty of
11 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
12 * GNU General Public License for more details.
14 * You should have received a copy of the GNU General Public License
15 * along with this program; if not, write to the Free Software
16 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
20 #define _GNU_SOURCE 1 /* for sys/ucontext.h for REG_* */
24 #include "captive/signal.h" /* self */
25 #include <glib/gtypes.h>
26 #include <glib/gmessages.h>
28 #include "captive/macros.h"
29 #include <sys/ucontext.h> /* for struct ucontext */
30 #include "captive/mm.h" /* for captive_mmap_map_get() */
32 #include "reactos/internal/mm.h" /* for PAGE_SIZE */
33 #include "captive/ldr.h" /* for captive_ModuleList_patchpoint_find() */
34 #include "captive/ldr_exports.h" /* for struct captive_ModuleList_patchpoint */
37 int _abnormal_termination_orig(void);
38 extern greg_t fs_KPCR_ExceptionList;
41 * _abnormal_termination_wrap:
43 * This call can be also accessed as AbnormalTermination() or _abnormal_termination().
44 * It is a captive wrapper around _abnormal_termination() function.
46 * Returns whether some exception occured in the current #try block we are currently
47 * #finish -ing. Any functions called from current #finish block will be considered
48 * for returning zero back again. It is forbidden to call this function outside
49 * of #finish block, result of such call is undefined.
51 * Exception handlers are registered from W32 binary in stack frames stored in "fs:[0x00000000]"
52 * value which gets mapped by libcaptive/ps/signal.c to #fs_KPCR_ExceptionList
55 * If no exception handler was registered yet this function returns zero.
57 * See also RtlpDispatchException().
59 * Returns: non-zero if some exception is now being handled as pending.
61 int _abnormal_termination_wrap(void)
63 /* No handler registered yet? ntoskrnl _abnormal_termination() does not handle it
64 * and I do not want to bother with registering toplevel handler.
66 if (fs_KPCR_ExceptionList==(greg_t)-1)
69 return _abnormal_termination_orig();
76 * RtlpDispatchException:
77 * @ExceptionRecord: Ignored by libcaptive.
78 * @Context: Ignored by libcaptive.
80 * Function definition to prevent inclusion of real RtlpDispatchException() implementation.
81 * Currently libcaptive never raises any exception - fix _abnormal_termination() if it changes.
83 * Returns: Never returns. Value %0 if it returns although it is impossible.
85 ULONG RtlpDispatchException(IN PEXCEPTION_RECORD ExceptionRecord,IN PCONTEXT Context)
87 g_assert_not_reached();
88 g_return_val_if_reached(0);
94 /* =='KeGetCurrentKPCR()->ExceptionList';
95 * libcaptive has reduced KPCR (named 'captive_KPCR') which
96 * does not contain this field
98 greg_t fs_KPCR_ExceptionList=(greg_t)-1;
101 static greg_t fs_KPCR_Unknown638=0;
104 static gboolean instr_mov_greg_to_fsmem(int greg,const void *fsmem,struct ucontext *ucontext)
106 if (fsmem==(const void *)0x00000000) { /* exception stack top pointer */
107 /* moving from %esp is required to pass! */
108 fs_KPCR_ExceptionList=ucontext->uc_mcontext.gregs[greg];
111 g_return_val_if_reached(FALSE);
114 static gboolean instr_mov_immed_to_fsmem(greg_t immed,const void *fsmem,struct ucontext *ucontext)
116 if (fsmem==(const void *)0x00000000) { /* exception stack top pointer */
117 fs_KPCR_ExceptionList=immed;
120 g_return_val_if_reached(FALSE);
123 static gboolean instr_mov_fsmem_to_greg(const void *fsmem,int greg,struct ucontext *ucontext)
125 if (fsmem==(const void *)0x00000000) { /* exception stack top pointer */
126 /* moving to %esp is required to pass! */
127 ucontext->uc_mcontext.gregs[greg]=fs_KPCR_ExceptionList;
130 if (fsmem==(const void *)0x00000051) { /* =='KeGetCurrentKPCR()->Number' */
131 g_return_val_if_fail(greg!=REG_ESP,FALSE);
132 ucontext->uc_mcontext.gregs[greg]=(greg_t)0; /* ==libcaptive version of KeGetCurrentProcessorNumber() */
135 if (fsmem==(const void *)0x00000124) { /* =='KeGetCurrentKPCR()->CurrentThread' */
136 g_return_val_if_fail(greg!=REG_ESP,FALSE);
137 ucontext->uc_mcontext.gregs[greg]=(greg_t)captive_KeGetCurrentKPCR()->CurrentThread;
140 g_return_val_if_reached(FALSE);
143 static gboolean instr_push_fsmem(const void *fsmem,struct ucontext *ucontext)
145 if (fsmem==(const void *)0x00000000) { /* exception stack top pointer */
146 ucontext->uc_mcontext.gregs[REG_ESP]-=4;
147 *(greg_t *)ucontext->uc_mcontext.gregs[REG_ESP]=fs_KPCR_ExceptionList;
150 g_return_val_if_reached(FALSE);
153 static gboolean instr_pop_fsmem(const void *fsmem,struct ucontext *ucontext)
155 if (fsmem==(const void *)0x00000000) { /* exception stack top pointer */
156 fs_KPCR_ExceptionList=*(greg_t *)ucontext->uc_mcontext.gregs[REG_ESP];
157 ucontext->uc_mcontext.gregs[REG_ESP]+=4;
160 g_return_val_if_reached(FALSE);
163 static gboolean instr_incl_fsmem(const void *fsmem,struct ucontext *ucontext)
165 if (fsmem==(const void *)0x00000638) { /* Unknown638 */
166 fs_KPCR_Unknown638++;
169 g_return_val_if_reached(FALSE);
172 static int op_regcode_to_greg(guint8 regcode)
175 case 0x00: return REG_EAX;
176 case 0x01: return REG_ECX;
177 case 0x02: return REG_EDX;
178 case 0x03: return REG_EBX;
179 case 0x04: return REG_ESP;
180 case 0x05: return REG_EBP;
181 case 0x06: return REG_ESI;
182 case 0x07: return REG_EDI;
184 g_return_val_if_reached(REG_EAX);
187 static void sigaction_SIGSEGV(int signo,siginfo_t *siginfo,struct ucontext *ucontext)
190 const void *reg_eip_aligned;
191 static const void *reg_eip_aligned_last_valid=NULL; /* performance cache */
193 g_return_if_fail(signo==SIGSEGV);
194 g_return_if_fail(siginfo->si_signo==SIGSEGV);
195 /* siginfo->si_code is weird, seen to have value 128 */
197 reg_eip=(void *)ucontext->uc_mcontext.gregs[REG_EIP];
199 /* 'reg_eip' is not yet PAGE_SIZE-aligned but we need the aligned ptr for captive_mmap_map_get().
200 * glib NOTE: YOU MAY NOT STORE POINTERS IN INTEGERS.
202 reg_eip_aligned=(const void *)(((char *)reg_eip)-(GPOINTER_TO_UINT(reg_eip)&(PAGE_SIZE-1)));
203 g_assert(reg_eip_aligned!=NULL);
205 /* We do not expect any pages can get un-PROT_EXEC-ed
206 * and therefore we never invalidate our cache 'reg_eip_aligned_last_valid'.
208 if (reg_eip_aligned_last_valid!=reg_eip_aligned) {
209 g_return_if_fail(!(captive_mmap_map_get(reg_eip_aligned)&PROT_EXEC));
210 reg_eip_aligned_last_valid=reg_eip_aligned;
213 /* all instruction notation comments are written in AT&T 'instr src,dest' syntax! */
214 if (*reg_eip==0x64) { /* prefix '%fs:' */
216 /* TODO:thread; %fs: is CPU-dependent */
217 if (*reg_eip==0x0F) { /* two-byte opcode */
219 if (*reg_eip==0xB6) { /* ??? */
221 if (*reg_eip==0x05) { /* movzbl %fs:{reg_eip[1..4]},%eax */
223 if (instr_mov_fsmem_to_greg(*(const void **)reg_eip,REG_EAX,ucontext)) {
227 g_assert_not_reached();
229 g_assert_not_reached();
231 g_assert_not_reached();
233 if (*reg_eip==0xA3) { /* 'mov %eax,%fs:{reg_eip[1..4]}' */
235 if (instr_mov_greg_to_fsmem(REG_EAX,*(const void **)reg_eip,ucontext)) {
239 g_assert_not_reached();
241 if (*reg_eip==0x89) { /* prefix 0x89 */
243 if ((*reg_eip & ~0x38)==0x05) { /* 'mov %{op_regcode_to_greg(*reg_eip[b3..b5])},%fs:{reg_eip[1..4]} */
245 if (instr_mov_greg_to_fsmem(op_regcode_to_greg(reg_eip[-1]>>3U),*(const void **)reg_eip,ucontext)) {
249 g_assert_not_reached();
251 g_assert_not_reached();
253 if (*reg_eip==0xA1) { /* 'mov %fs:{reg_eip[1..4]},%eax' */
255 if (instr_mov_fsmem_to_greg(*(const void **)reg_eip,REG_EAX,ucontext)) {
259 g_assert_not_reached();
261 if (*reg_eip==0x8B) { /* prefix 0x8B */
263 if ((*reg_eip & ~0x38)==0x05) { /* 'mov %fs:{reg_eip[1..4]},%{op_regcode_to_greg(*reg_eip[b3..b5])}' */
265 if (instr_mov_fsmem_to_greg(*(const void **)reg_eip,op_regcode_to_greg(reg_eip[-1]>>3U),ucontext)) {
269 g_assert_not_reached();
271 g_assert_not_reached();
273 if (*reg_eip==0xFF) { /* prefix 0xFF */
275 if (*reg_eip==0x05) { /* 'incl %fs:{reg_eip[1..4]}' */
277 if (instr_incl_fsmem(*(const void **)reg_eip,ucontext)) {
281 g_assert_not_reached();
283 if (*reg_eip==0x35) { /* 'pushl %fs:{reg_eip[1..4]}' */
285 if (instr_push_fsmem(*(const void **)reg_eip,ucontext)) {
289 g_assert_not_reached();
291 g_assert_not_reached();
293 if (*reg_eip==0x8F) { /* prefix 0x0F */
295 if (*reg_eip==0x05) { /* 'popl %fs:{reg_eip[1..4]}' */
297 if (instr_pop_fsmem(*(const void **)reg_eip,ucontext)) {
301 g_assert_not_reached();
303 g_assert_not_reached();
305 if (*reg_eip==0xC7) { /* prefix 0xC7 */
307 if (*reg_eip==0x05) { /* 'movl ${reg_eip[5..8]},%fs:{reg_eip[1..4]}' */
309 if (instr_mov_immed_to_fsmem(((greg_t *)reg_eip)[1],*(const void **)reg_eip,ucontext)) {
313 g_assert_not_reached();
315 g_assert_not_reached();
317 g_assert_not_reached();
320 /* all instruction notation comments are written in AT&T 'instr src,dest' syntax! */
321 if (*reg_eip==0x66) { /* prefix '%fs:' */
323 /* TODO:thread; %fs: is CPU-dependent */
324 if (*reg_eip==0x8E) { /* two-byte opcode */
326 if (*reg_eip==0xE3) { /* 'mov %bx,%fs' */
328 g_assert(0x30==(0xFFFF&ucontext->uc_mcontext.gregs[REG_EBX]));
329 /* 'reload' of %fs can be ignored */
332 g_assert_not_reached();
334 g_assert_not_reached();
337 if (*reg_eip==0xF4) { /* hlt; from captive_ModuleList_patch() */
338 struct captive_ModuleList_patchpoint *patchpoint;
339 const gchar *funcname_disabled;
341 g_log(G_LOG_DOMAIN,G_LOG_LEVEL_DEBUG,"%s: reg_eip=%p; 0xF4 hit",G_STRLOC,reg_eip);
343 if ((funcname_disabled=captive_ModuleList_function_disable_find(
344 reg_eip))) { /* ExportAddress */
345 g_error("%s: Reached disabled W32 function: %s",G_STRLOC,funcname_disabled);
346 g_assert_not_reached();
348 patchpoint=captive_ModuleList_patchpoint_find(
349 reg_eip); /* ExportAddress */
350 g_assert(patchpoint!=NULL);
351 if (reg_eip==patchpoint->orig_w32_func) {
352 g_assert(0xF4 /* hlt */ ==*patchpoint->orig_w32_func);
353 g_assert(patchpoint->orig_w32_2ndinstr_byte ==*patchpoint->orig_w32_2ndinstr);
354 if (patchpoint->through_w32_func) {
355 *patchpoint->orig_w32_func=patchpoint->orig_w32_func_byte;
356 *patchpoint->orig_w32_2ndinstr=0xF4; /* hlt */
358 else { /* !patchpoint->through_w32_func */
359 reg_eip=(guint8 *)patchpoint->wrap_wrap_func;
363 if (reg_eip==patchpoint->orig_w32_2ndinstr) {
364 g_assert(patchpoint->orig_w32_func_byte ==*patchpoint->orig_w32_func);
365 g_assert(0xF4 /* hlt */ ==*patchpoint->orig_w32_2ndinstr);
366 g_assert(patchpoint->through_w32_func==TRUE);
367 *patchpoint->orig_w32_func=0xF4; /* hlt */
368 *patchpoint->orig_w32_2ndinstr=patchpoint->orig_w32_2ndinstr_byte;
369 patchpoint->through_w32_func=FALSE;
372 g_assert_not_reached();
375 if (*reg_eip==0xFA) { /* cli */
376 g_log(G_LOG_DOMAIN,G_LOG_LEVEL_DEBUG,"%s: reg_eip=%p; CLI neutralized",G_STRLOC,reg_eip);
377 *reg_eip=0x90; /* nop */
381 if (*reg_eip==0xFB) { /* sti */
382 g_log(G_LOG_DOMAIN,G_LOG_LEVEL_DEBUG,"%s: reg_eip=%p; STI neutralized",G_STRLOC,reg_eip);
383 *reg_eip=0x90; /* nop */
387 g_assert_not_reached();
390 ucontext->uc_mcontext.gregs[REG_EIP]=(greg_t)reg_eip;
395 * captive_signal_init:
397 * Initialize UNIX signal handling to be able to emulate foreign W32
398 * instructions. These instructions must be located inside address
399 * space of foreign W32 binary code which is identified by successful
400 * call to captive_mmap_map_get() returning #PROT_EXEC bit set.
401 * This bit should be set from MmAllocateSection() called from
402 * ntoskrnl/ldr/loader.c/LdrPEProcessModule().
404 * Currently emulated set is the access to %fs register offset %0
405 * where the exception stack top pointer is located.
407 * Returns: %TRUE if successful.
409 gboolean captive_signal_init(void)
412 struct sigaction sigaction_struct;
415 CAPTIVE_MEMZERO(&sigaction_struct); /* this structure may have unpredictable fields */
417 /* Init 'sigaction_struct.sa_mask'. */
418 errint=sigemptyset(&sigaction_struct.sa_mask);
419 g_return_val_if_fail(errint==0,FALSE);
420 errint=sigaddset(&sigaction_struct.sa_mask,SIGSEGV);
421 g_return_val_if_fail(errint==0,FALSE);
423 /* Set the signal sigaction handler. */
424 sigaction_struct.sa_sigaction=(void (*)(int,siginfo_t *,void *))sigaction_SIGSEGV;
425 sigaction_struct.sa_flags=0
426 |SA_SIGINFO; /* Use 'sa_sigaction' (not 'sa_handler') */
427 errint=sigaction(SIGSEGV,
428 &sigaction_struct, /* act */
430 g_return_val_if_fail(errint==0,FALSE);
432 /* Enable SIGSEGV signal (should be default). */
433 errint=sigemptyset(&sigset);
434 g_return_val_if_fail(errint==0,FALSE);
435 errint=sigaddset(&sigset,SIGSEGV);
436 g_return_val_if_fail(errint==0,FALSE);
437 errint=sigprocmask(SIG_UNBLOCK,
440 g_return_val_if_fail(errint==0,FALSE);
git://git.jankratochvil.net / captive.git / blob