This is an archive of the discontinued LLVM Phabricator instance.

[ELF][RISCV] Resolve branch relocations referencing undefined weak to current location if not using PLT
ClosedPublic

Authored by MaskRay on May 23 2021, 8:55 PM.

Download Raw Diff

Details

Reviewers

bsdjhb
jrtc27
PkmX

Commits

rGc03b6305d841: [ELF][RISCV] Resolve branch relocations referencing undefined weak to current…

Summary

In a -no-pie link we optimize R_PLT_PC to R_PC. Currently we resolve a branch
relocation to the link-time zero address. However such a choice tends to cause
relocation overflow possibility for RISC architectures.

aarch64: GNU ld: rewrite the instruction to a NOP; ld.lld: branch to the next instruction
mips: GNU ld: branch to the start of the text segment (?); ld.lld: branch to zero
ppc32: GNU ld: rewrite the instruction to a NOP; ld.lld: branch to the current instruction
ppc64: GNU ld: rewrite the instruction to a NOP; ld.lld: branch to the current instruction
riscv: GNU ld: branch to the absolute zero address (with instruction rewriting)
i386/x86_64: GNU ld/ld.lld: branch to the link-time zero address

I think that resolving to the same location is a good choice. The instruction,
if triggered, is clearly an undefined behavior. Resolving to the same location
can cause an infinite loop (making the user aware of the issue) while ensuring
no overflow.

Diff Detail

Repository: rG LLVM Github Monorepo

Event Timeline

MaskRay created this revision.May 23 2021, 8:55 PM

Herald added subscribers: vkmr, frasercrmck, evandro and 28 others. · View Herald TranscriptMay 23 2021, 8:55 PM

MaskRay requested review of this revision.May 23 2021, 8:55 PM

Herald added a project: Restricted Project. · View Herald TranscriptMay 23 2021, 8:55 PM

Herald added a subscriber: llvm-commits. · View Herald Transcript

MaskRay mentioned this in D71100: [lld][RISCV] Fixup PC-relative relocations to undefined weak symbols..May 23 2021, 8:55 PM

Looks like GNU as/llvm-mc doesn't use R_RISCV_RVC_JUMP/R_RISCV_RVC_BRANCH for undefined symbols.

improve test

Harbormaster completed remote builds in B105846: Diff 347306.May 23 2021, 10:03 PM

ping

jrtc27 added inline comments.Jun 9 2021, 4:52 PM

lld/ELF/InputSection.cpp
793	Hm, this is a better way of writing it but it's inconsistent with ARM and AArch64.

MaskRay marked an inline comment as done.Jun 9 2021, 5:16 PM

MaskRay added inline comments.

lld/ELF/InputSection.cpp
793	I can change arm/aarch64 to use this style afterward

This isn't specified in the psABI, but I don't think it needs to be (AFAIK Arm's psABI is the only one that does, and it opts for the strange "next instruction" semantics, I guess so you can just skip the NULL check in some cases), it's completely undefined behaviour so should always be in dead code, but not known at compile time so we need to do something.

lld/ELF/InputSection.cpp
793	That's fine with me then

This revision is now accepted and ready to land.Jun 10 2021, 6:09 AM

MaskRay edited the summary of this revision. (Show Details)Jun 10 2021, 1:20 PM

Closed by commit rGc03b6305d841: [ELF][RISCV] Resolve branch relocations referencing undefined weak to current… (authored by MaskRay). · Explain WhyJun 10 2021, 1:25 PM

This revision was automatically updated to reflect the committed changes.

MaskRay marked an inline comment as done.

MaskRay added a commit: rGc03b6305d841: [ELF][RISCV] Resolve branch relocations referencing undefined weak to current….

MaskRay mentioned this in D143137: [RISCV] Permit tail call to an externally-defined function with weak linkage.Feb 2 2023, 10:05 AM

Revision Contents

Path

Size

lld/

ELF/

InputSection.cpp

22 lines

test/

ELF/

riscv-undefined-weak.s

16 lines

Diff 351248

lld/ELF/InputSection.cpp

Show First 20 Lines • Show All 563 Lines • ▼ Show 20 Lines	static uint64_t getAArch64UndefinedRelativeWeakVA(uint64_t type, uint64_t a,
case R_AARCH64_ADR_PREL_LO21:		case R_AARCH64_ADR_PREL_LO21:
case R_AARCH64_LD_PREL_LO19:		case R_AARCH64_LD_PREL_LO19:
case R_AARCH64_PLT32:		case R_AARCH64_PLT32:
return p + a;		return p + a;
}		}
llvm_unreachable("AArch64 pc-relative relocation expected\n");		llvm_unreachable("AArch64 pc-relative relocation expected\n");
}		}

		static uint64_t getRISCVUndefinedRelativeWeakVA(uint64_t type, uint64_t p) {
		switch (type) {
		case R_RISCV_BRANCH:
		case R_RISCV_JAL:
		case R_RISCV_CALL:
		case R_RISCV_CALL_PLT:
		case R_RISCV_RVC_BRANCH:
		case R_RISCV_RVC_JUMP:
		return p;
		default:
		return 0;
		}
		}

// ARM SBREL relocations are of the form S + A - B where B is the static base		// ARM SBREL relocations are of the form S + A - B where B is the static base
// The ARM ABI defines base to be "addressing origin of the output segment		// The ARM ABI defines base to be "addressing origin of the output segment
// defining the symbol S". We defined the "addressing origin"/static base to be		// defining the symbol S". We defined the "addressing origin"/static base to be
// the base of the PT_LOAD segment containing the Sym.		// the base of the PT_LOAD segment containing the Sym.
// The procedure call standard only defines a Read Write Position Independent		// The procedure call standard only defines a Read Write Position Independent
// RWPI variant so in practice we should expect the static base to be the base		// RWPI variant so in practice we should expect the static base to be the base
// of the RW segment.		// of the RW segment.
static uint64_t getARMStaticBase(const Symbol &sym) {		static uint64_t getARMStaticBase(const Symbol &sym) {
▲ Show 20 Lines • Show All 180 Lines • ▼ Show 20 Lines	uint64_t InputSectionBase::getRelocTargetVA(const InputFile *file, RelType type,
}		}
case R_PC:		case R_PC:
case R_ARM_PCA: {		case R_ARM_PCA: {
uint64_t dest;		uint64_t dest;
if (expr == R_ARM_PCA)		if (expr == R_ARM_PCA)
// Some PC relative ARM (Thumb) relocations align down the place.		// Some PC relative ARM (Thumb) relocations align down the place.
p = p & 0xfffffffc;		p = p & 0xfffffffc;
if (sym.isUndefWeak()) {		if (sym.isUndefWeak()) {
// On ARM and AArch64 a branch to an undefined weak resolves to the		// On ARM and AArch64 a branch to an undefined weak resolves to the next
// next instruction, otherwise the place.		// instruction, otherwise the place. On RISCV, resolve an undefined weak
		// to the same instruction to cause an infinite loop (making the user
		// aware of the issue) while ensuring no overflow.
if (config->emachine == EM_ARM)		if (config->emachine == EM_ARM)
dest = getARMUndefinedRelativeWeakVA(type, a, p);		dest = getARMUndefinedRelativeWeakVA(type, a, p);
else if (config->emachine == EM_AARCH64)		else if (config->emachine == EM_AARCH64)
dest = getAArch64UndefinedRelativeWeakVA(type, a, p);		dest = getAArch64UndefinedRelativeWeakVA(type, a, p);
else if (config->emachine == EM_PPC)		else if (config->emachine == EM_PPC)
dest = p;		dest = p;
		else if (config->emachine == EM_RISCV)
		dest = getRISCVUndefinedRelativeWeakVA(type, p) + a;
		jrtc27Unsubmitted Done Reply Inline Actions Hm, this is a better way of writing it but it's inconsistent with ARM and AArch64. jrtc27: Hm, this is a better way of writing it but it's inconsistent with ARM and AArch64.
		MaskRayAuthorUnsubmitted Done Reply Inline Actions I can change arm/aarch64 to use this style afterward MaskRay: I can change arm/aarch64 to use this style afterward
		jrtc27Unsubmitted Not Done Reply Inline Actions That's fine with me then jrtc27: That's fine with me then
else		else
dest = sym.getVA(a);		dest = sym.getVA(a);
} else {		} else {
dest = sym.getVA(a);		dest = sym.getVA(a);
}		}
return dest - p;		return dest - p;
}		}
case R_PLT:		case R_PLT:
▲ Show 20 Lines • Show All 699 Lines • Show Last 20 Lines

lld/test/ELF/riscv-undefined-weak.s

Show First 20 Lines • Show All 42 Lines • ▼ Show 20 Lines	relative:
la a1, target		la a1, target
sd a2, target+2, t1		sd a2, target+2, t1

## Branch relocations		## Branch relocations
## If .dynsym does not exist, an undefined weak symbol is non-preemptible.		## If .dynsym does not exist, an undefined weak symbol is non-preemptible.
## Treat them as PC relative relocations.		## Treat them as PC relative relocations.
# RELOC: 0x18 R_RISCV_CALL target 0x0		# RELOC: 0x18 R_RISCV_CALL target 0x0
# RELOC-NEXT: 0x20 R_RISCV_JAL target 0x0		# RELOC-NEXT: 0x20 R_RISCV_JAL target 0x0
		# RELOC-NEXT: 0x24 R_RISCV_BRANCH target 0x0

# PC-LABEL: <branch>:		# PC-LABEL: <branch>:
# PC-NEXT: auipc ra, 1048559		# PC-NEXT: auipc ra, 0
# PC-NEXT: jalr -368(ra)		# PC-NEXT: jalr ra
# PC-NEXT: j 0x0		# PC-NEXT: [[#%x,ADDR:]]:
		# PC-SAME: j 0x[[#ADDR]]
		# PC-NEXT: [[#%x,ADDR:]]:
		# PC-SAME: beqz zero, 0x[[#ADDR]]

## If .dynsym exists, an undefined weak symbol is preemptible.		## If .dynsym exists, an undefined weak symbol is preemptible.
## We create a PLT entry and redirect the reference to it.		## We create a PLT entry and redirect the reference to it.
# PLT-LABEL: <branch>:		# PLT-LABEL: <branch>:
# PLT-NEXT: auipc ra, 0		# PLT-NEXT: auipc ra, 0
# PLT-NEXT: jalr 56(ra)		# PLT-NEXT: jalr 56(ra)
# PLT-NEXT: j 0x0		# PLT-NEXT: [[#%x,ADDR:]]:
		# PLT-SAME: j 0x[[#ADDR]]
		# PLT-NEXT: [[#%x,ADDR:]]:
		# PLT-SAME: beqz zero, 0x[[#ADDR]]
branch:		branch:
call target		call target
jal x0, target		jal x0, target
		beq x0, x0, target

## Absolute relocations are resolved to 0.		## Absolute relocations are resolved to 0.
# RELOC: 0x0 R_RISCV_64 target 0x3		# RELOC: 0x0 R_RISCV_64 target 0x3
# RELOC-NEXT: 0x8 R_RISCV_32 target 0x4		# RELOC-NEXT: 0x8 R_RISCV_32 target 0x4
# HEX: section '.data':		# HEX: section '.data':
# HEX-NEXT: 03000000 00000000 04000000		# HEX-NEXT: 03000000 00000000 04000000
.data		.data
.p2align 3		.p2align 3
.quad target+3		.quad target+3
.long target+4		.long target+4

# PC-NOT: .plt:		# PC-NOT: .plt:
# PLT: .plt:		# PLT: .plt: