问题
I know the name of the symbols are in the shstrtab. But I don't get how to catch them. Should I cast my shstrab into a Elf64_Sym so that I can use the st_name?
Elf64_Shdr *shdr = (Elf64_Shdr *) (data + elf->e_shoff);
Elf64_Shdr *symtab;
Elf64_Shdr *shstrtab;
Elf64_Shdr *strtab;
char *str = (char *) (data + shdr[elf->e_shstrndx].sh_offset);
for (int i = 0; i < elf->e_shnum; i++) {
if (shdr[i].sh_size) {
printf("%s\n", &str[shdr[i].sh_name]);
if (strcmp(&str[shdr[i].sh_name], ".symtab") == 0)
symtab = (Elf64_Shdr *) &shdr[i];
if (strcmp(&str[shdr[i].sh_name], ".shstrtab") == 0)
shstrtab = (Elf64_Shdr *) &shdr[i];
if (strcmp(&str[shdr[i].sh_name], ".strtab") == 0)
strtab = (Elf64_Shdr *) &shdr[i];
}
}
str = (char *) shstrtab;
for (size_t i = 0; i < (symtab->sh_size / sizeof(Elf64_Sym *)); i ++) {
printf("%s\n", &str[shstrtab[i].sh_name]);
}
回答1:
Should I cast my shstrab into a Elf64_Sym so that I can use the st_name?
No.
Here is the loop you want:
Elf64_Sym *sym = (Elf64_Sym*) (data + symtab->sh_offset);
str = (char*) (data + strtab->sh_offset);
for (size_t i = 0; i < symtab->sh_size / sizeof(Elf64_Sym); i++) {
printf("%s\n", str + sym[i].st_name);
}
回答2:
You have to write symtab->sh_size / symtab->sh_entsize not like symtab->sh_size / sizeof(Elf64_Sym *) as the post above says
来源:https://stackoverflow.com/questions/48833887/how-to-print-the-name-of-the-symbols-of-elf-files-like-the-nm