This is an archive of the discontinued LLVM Phabricator instance.

Differential D123334

[BOLT] Update skipRelocation for aarch64
ClosedPublic

Authored by yota9 on Apr 7 2022, 12:35 PM.

Details

Reviewers
maksfb
rafauler
Amir
Commits
rG2f98c5febce2: [BOLT] Update skipRelocation for aarch64
Summary

The ld might relax ADRP+ADD or ADRP+LDR sequences to the ADR+NOP, add
the new case to the skipRelocation for aarch64.

Vladislav Khmelevsky,
Advanced Software Technology Lab, Huawei

Diff Detail

Event Timeline

yota9 created this revision.Apr 7 2022, 12:35 PM
Herald added a project: Restricted Project. · View Herald TranscriptApr 7 2022, 12:35 PM
Herald added subscribers: ayermolo, kristof.beyls. · View Herald Transcript
yota9 requested review of this revision.Apr 7 2022, 12:35 PM
Herald added a project: Restricted Project. · View Herald TranscriptApr 7 2022, 12:35 PM
Herald added a subscriber: llvm-commits. · View Herald Transcript
Harbormaster completed remote builds in B158555: Diff 421314.Apr 7 2022, 1:53 PM
yota9 added a subscriber: rafaelauler.Apr 11 2022, 11:20 AM

@rafaelauler Gentle ping

rafauler added inline comments.Apr 11 2022, 12:53 PM
bolt/lib/Core/Relocation.cpp
227

By ld, do you mean GNU ld? How is the test testing for that? (since it uses lld)

yota9 added inline comments.Apr 11 2022, 12:57 PM
bolt/lib/Core/Relocation.cpp
227

No, I meant generic linker, not bfd. The lld has this optimization too (https://reviews.llvm.org/D117614)

rafauler added inline comments.Apr 11 2022, 1:03 PM
bolt/test/runtime/plt-lld.test
1–2

Is it possible to add a check by dumping the binary symbol table to verify that these are properly updated? having the test as is (checking if a binary runs) is quite opaque for reviewers and makes it a bit hard for us to be helpful and understand what is going on and what your patch is fixing. If we treat these relocations that were relaxed to ADR as real relocs (meaning, we do not have your patch), what does it happen? Does BOLT crash? Do PLT pointers get messed up?

rafauler added inline comments.Apr 11 2022, 1:04 PM
bolt/lib/Core/Relocation.cpp
227

Can you replace ld by "linker", then?

yota9 marked 2 inline comments as done.Apr 13 2022, 7:22 AM
yota9 added inline comments.
bolt/test/runtime/plt-lld.test
1–2

I will add extra test now.

what does it happen?

The pointers in code are messed up, so we will have runtime problems. E.g.
Let's suppose the GOT relocations were relaxed to the local symbol definition

1036c:       d503201f        nop
                     1036c: R_AARCH64_ADR_GOT_PAGE   foo2
10370:       10000080        adr     x0, 10380 <foo2>
                     10370: R_AARCH64_LD64_GOT_LO12_NC       foo2

After bolt without this patch we will have:

400024:       90ffe000        adrp    x0, 0 <_DYNAMIC-0x20388>
400028:       91000000        add     x0, x0, #0x0

Because the extracted value was messed up (we were expecting other instruction)

yota9 updated this revision to Diff 422514.Apr 13 2022, 7:31 AM
yota9 marked an inline comment as done.

Add test

Harbormaster completed remote builds in B159448: Diff 422514.Apr 13 2022, 7:37 AM
yota9 updated this revision to Diff 422565.Apr 13 2022, 10:50 AM

Nit

Harbormaster completed remote builds in B159479: Diff 422565.Apr 13 2022, 10:57 AM
rafauler accepted this revision.Apr 13 2022, 11:10 AM

Looks good, thanks!

This revision is now accepted and ready to land.Apr 13 2022, 11:10 AM
Closed by commit rG2f98c5febce2: [BOLT] Update skipRelocation for aarch64 (authored by yota9). · Explain WhyApr 13 2022, 12:54 PM
This revision was automatically updated to reflect the committed changes.
yota9 added a commit: rG2f98c5febce2: [BOLT] Update skipRelocation for aarch64.

Revision Contents

PathSize
bolt/
lib/
Core/
27 lines
test/
AArch64/
Inputs/
172 lines
8 lines
runtime/
17 lines

Diff 422617

bolt/lib/Core/Relocation.cpp

Show First 20 LinesShow All 162 Lines▼ Show 20 Lines
bool skipRelocationProcessX86(uint64_t Type, uint64_t Contents) { bool skipRelocationProcessX86(uint64_t Type, uint64_t Contents) {
return false; return false;
} }
bool skipRelocationProcessAArch64(uint64_t Type, uint64_t Contents) { bool skipRelocationProcessAArch64(uint64_t Type, uint64_t Contents) {
auto IsMov = [](uint64_t Contents) -> bool { auto IsMov = [](uint64_t Contents) -> bool {
// The bits 28-23 are 0b100101 // The bits 28-23 are 0b100101
if ((Contents & 0x1f800000) == 0x12800000) return (Contents & 0x1f800000) == 0x12800000;
return true;
return false;
}; };
auto IsB = [](uint64_t Contents) -> bool { auto IsB = [](uint64_t Contents) -> bool {
// The bits 31-26 are 0b000101 // The bits 31-26 are 0b000101
if ((Contents & 0xfc000000) == 0x14000000) return (Contents & 0xfc000000) == 0x14000000;
return true; };
return false;
auto IsAdr = [](uint64_t Contents) -> bool {
// The bits 31-24 are 0b0xx10000
return (Contents & 0x9f000000) == 0x10000000;
}; };
auto IsNop = [](uint64_t Contents) -> bool { return Contents == 0xd503201f; }; auto IsNop = [](uint64_t Contents) -> bool { return Contents == 0xd503201f; };
// The linker might eliminate the instruction and replace it with NOP, ignore // The linker might eliminate the instruction and replace it with NOP, ignore
if (IsNop(Contents)) if (IsNop(Contents))
return true; return true;
Show All 11 Linesbool skipRelocationProcessAArch64(uint64_t Type, uint64_t Contents) {
case ELF::R_AARCH64_TLSDESC_ADR_PAGE21: case ELF::R_AARCH64_TLSDESC_ADR_PAGE21:
case ELF::R_AARCH64_TLSIE_LD64_GOTTPREL_LO12_NC: case ELF::R_AARCH64_TLSIE_LD64_GOTTPREL_LO12_NC:
case ELF::R_AARCH64_TLSIE_ADR_GOTTPREL_PAGE21: { case ELF::R_AARCH64_TLSIE_ADR_GOTTPREL_PAGE21: {
if (IsMov(Contents)) if (IsMov(Contents))
return true; return true;
} }
} }
// The ld might replace load/store instruction with jump and // The linker might replace load/store instruction with jump and
// veneer due to errata 843419 // veneer due to errata 843419
// https://documentation-service.arm.com/static/5fa29fddb209f547eebd361d // https://documentation-service.arm.com/static/5fa29fddb209f547eebd361d
// Thus load/store relocations for these instructions must be ignored // Thus load/store relocations for these instructions must be ignored
// NOTE: We only process GOT and TLS relocations this way since the // NOTE: We only process GOT and TLS relocations this way since the
// addend used in load/store instructions won't change after bolt // addend used in load/store instructions won't change after bolt
// (it is important since the instruction in veneer won't have relocation) // (it is important since the instruction in veneer won't have relocation)
switch (Type) { switch (Type) {
default: default:
break; break;
case ELF::R_AARCH64_LD64_GOT_LO12_NC: case ELF::R_AARCH64_LD64_GOT_LO12_NC:
case ELF::R_AARCH64_TLSIE_LD64_GOTTPREL_LO12_NC: case ELF::R_AARCH64_TLSIE_LD64_GOTTPREL_LO12_NC:
case ELF::R_AARCH64_TLSDESC_LD64_LO12: { case ELF::R_AARCH64_TLSDESC_LD64_LO12: {
if (IsB(Contents)) if (IsB(Contents))
return true; return true;
} }
} }
// The linker might relax ADRP+ADD or ADRP+LDR sequences to the ADR+NOP
rafaulerUnsubmitted
Not Done
ReplyInline Actions

By ld, do you mean GNU ld? How is the test testing for that? (since it uses lld)

rafauler: By ld, do you mean GNU ld? How is the test testing for that? (since it uses lld)
yota9AuthorUnsubmitted
Done
ReplyInline Actions

No, I meant generic linker, not bfd. The lld has this optimization too (https://reviews.llvm.org/D117614)

yota9: No, I meant generic linker, not bfd. The lld has this optimization too (https://reviews.llvm.
rafaulerUnsubmitted
Done
ReplyInline Actions

Can you replace ld by "linker", then?

rafauler: Can you replace ld by "linker", then?
switch (Type) {
default:
break;
case ELF::R_AARCH64_ADR_PREL_PG_HI21:
case ELF::R_AARCH64_ADD_ABS_LO12_NC:
case ELF::R_AARCH64_ADR_GOT_PAGE:
case ELF::R_AARCH64_LD64_GOT_LO12_NC:
if (IsAdr(Contents))
return true;
}
return false; return false;
} }
uint64_t adjustValueX86(uint64_t Type, uint64_t Value, uint64_t PC) { uint64_t adjustValueX86(uint64_t Type, uint64_t Value, uint64_t PC) {
switch (Type) { switch (Type) {
default: default:
llvm_unreachable("not supported relocation"); llvm_unreachable("not supported relocation");
case ELF::R_X86_64_32: case ELF::R_X86_64_32:
▲ Show 20 LinesShow All 410 LinesShow Last 20 Lines

bolt/test/AArch64/Inputs/skip-got-rel.yaml

  • This file was added.
--- !ELF
FileHeader:
Class: ELFCLASS64
Data: ELFDATA2LSB
Type: ET_DYN
Machine: EM_AARCH64
Entry: 0x10364
ProgramHeaders:
- Type: PT_PHDR
Flags: [ PF_R ]
VAddr: 0x40
Align: 0x8
- Type: PT_INTERP
Flags: [ PF_R ]
FirstSec: .interp
LastSec: .interp
VAddr: 0x238
- Type: PT_LOAD
Flags: [ PF_R ]
FirstSec: .interp
LastSec: .dynamic
Align: 0x10000
- Type: PT_LOAD
Flags: [ PF_X, PF_R ]
FirstSec: .text
LastSec: .text
VAddr: 0x10348
Align: 0x10000
- Type: PT_LOAD
Flags: [ PF_W, PF_R ]
FirstSec: .dynamic
LastSec: .got
VAddr: 0x20388
Align: 0x10000
- Type: PT_DYNAMIC
Flags: [ PF_W, PF_R ]
FirstSec: .dynamic
LastSec: .dynamic
VAddr: 0x20388
Align: 0x8
- Type: PT_GNU_RELRO
Flags: [ PF_R ]
FirstSec: .dynamic
LastSec: .got
VAddr: 0x20388
- Type: PT_GNU_STACK
Flags: [ PF_W, PF_R ]
Align: 0x0
Sections:
- Name: .interp
Type: SHT_PROGBITS
Flags: [ SHF_ALLOC ]
Address: 0x238
AddressAlign: 0x1
Content: 2F6C69622F6C642D6C696E75782D616172636836342E736F2E3100
- Name: .dynsym
Type: SHT_DYNSYM
Flags: [ SHF_ALLOC ]
Address: 0x258
Link: .dynstr
AddressAlign: 0x8
- Name: .dynstr
Type: SHT_STRTAB
Flags: [ SHF_ALLOC ]
Address: 0x28C
AddressAlign: 0x1
- Name: .rela.dyn
Type: SHT_RELA
Flags: [ SHF_ALLOC ]
Address: 0x290
Link: .dynsym
AddressAlign: 0x8
Relocations:
- Offset: 0x20448
Type: R_AARCH64_RELATIVE
Addend: 66432
- Name: .text
Type: SHT_PROGBITS
Flags: [ SHF_ALLOC, SHF_EXECINSTR ]
Address: 0x10348
AddressAlign: 0x4
Content: FF4300D1E00700F9E80740F908014092E003082AFF430091C0035FD6FD7BBFA9FD0300911F2003D580000010F5FFFF97FD7BC1A8C0035FD6C0035FD6
- Name: .dynamic
Type: SHT_DYNAMIC
Flags: [ SHF_WRITE, SHF_ALLOC ]
Address: 0x20388
Link: .dynstr
AddressAlign: 0x8
Entries:
- Tag: DT_FLAGS_1
Value: 0x8000000
- Tag: DT_RELA
Value: 0x290
- Tag: DT_RELASZ
Value: 0x18
- Tag: DT_RELAENT
Value: 0x18
- Tag: DT_RELACOUNT
Value: 0x1
- Tag: DT_SYMTAB
Value: 0x258
- Tag: DT_SYMENT
Value: 0x18
- Tag: DT_STRTAB
Value: 0x28C
- Tag: DT_STRSZ
Value: 0x1
- Tag: DT_GNU_HASH
Value: 0x270
- Tag: DT_NULL
Value: 0x0
- Name: .got
Type: SHT_PROGBITS
Flags: [ SHF_WRITE, SHF_ALLOC ]
Address: 0x20448
AddressAlign: 0x8
Content: '0000000000000000'
- Name: .rela.text
Type: SHT_RELA
Flags: [ SHF_INFO_LINK ]
Link: .symtab
AddressAlign: 0x8
Info: .text
Relocations:
- Offset: 0x1036C
Symbol: foo2
Type: R_AARCH64_ADR_GOT_PAGE
- Offset: 0x10370
Symbol: foo2
Type: R_AARCH64_LD64_GOT_LO12_NC
- Offset: 0x10374
Symbol: foo
Type: R_AARCH64_CALL26
Symbols:
- Name: .text
Type: STT_SECTION
Section: .text
Value: 0x10348
- Name: ex2.c
Type: STT_FILE
Index: SHN_ABS
- Name: '$x.0 (1)'
Section: .text
Value: 0x10380
- Name: .interp
Type: STT_SECTION
Section: .interp
Value: 0x238
- Name: _DYNAMIC
Section: .dynamic
Value: 0x20388
Other: [ STV_HIDDEN ]
- Name: foo
Type: STT_FUNC
Section: .text
Binding: STB_GLOBAL
Value: 0x10348
Size: 0x1C
- Name: _start
Type: STT_FUNC
Section: .text
Binding: STB_GLOBAL
Value: 0x10364
Size: 0x1C
- Name: foo2
Type: STT_FUNC
Section: .text
Binding: STB_GLOBAL
Value: 0x10380
Size: 0x4
DynamicSymbols: []
...

bolt/test/AArch64/skip-got-rel.test

  • This file was added.
// This test checks that the binary with relaxed ADRP+LDR instructions is
// processed normally with BOLT and the ADR instruction address is recognized
// normally.
RUN: yaml2obj %p/Inputs/skip-got-rel.yaml &> %t.exe
RUN: llvm-bolt %t.exe -o /dev/null -print-cfg -print-only=_start | FileCheck %s
CHECK: adr x0, foo2

bolt/test/runtime/plt-lld.test

// This test checks that the pointers to PLT are properly updated. // This test checks that the pointers to PLT are properly updated.
// The test is using lld linker. // The test is using lld linker.
rafaulerUnsubmitted
Done
ReplyInline Actions

Is it possible to add a check by dumping the binary symbol table to verify that these are properly updated? having the test as is (checking if a binary runs) is quite opaque for reviewers and makes it a bit hard for us to be helpful and understand what is going on and what your patch is fixing. If we treat these relocations that were relaxed to ADR as real relocs (meaning, we do not have your patch), what does it happen? Does BOLT crash? Do PLT pointers get messed up?

rafauler: Is it possible to add a check by dumping the binary symbol table to verify that these are…
yota9AuthorUnsubmitted
Done
ReplyInline Actions

I will add extra test now.

what does it happen?

The pointers in code are messed up, so we will have runtime problems. E.g.
Let's suppose the GOT relocations were relaxed to the local symbol definition

1036c:       d503201f        nop
                     1036c: R_AARCH64_ADR_GOT_PAGE   foo2
10370:       10000080        adr     x0, 10380 <foo2>
                     10370: R_AARCH64_LD64_GOT_LO12_NC       foo2

After bolt without this patch we will have:

400024:       90ffe000        adrp    x0, 0 <_DYNAMIC-0x20388>
400028:       91000000        add     x0, x0, #0x0

Because the extracted value was messed up (we were expecting other instruction)

yota9: I will add extra test now. >> what does it happen? The pointers in code are messed up, so we…
// RUN: %clang %cflags -no-pie %p/../Inputs/plt.c -fuse-ld=lld \ // Non-PIE:
// RUN: -o %t.lld.exe -Wl,-q RUN: %clang %cflags -no-pie %p/../Inputs/plt.c -fuse-ld=lld \
// RUN: llvm-bolt %t.lld.exe -o %t.lld.bolt.exe -use-old-text=0 -lite=0 RUN: -o %t.lld.exe -Wl,-q
// RUN: %t.lld.bolt.exe | FileCheck %s RUN: llvm-bolt %t.lld.exe -o %t.lld.bolt.exe -use-old-text=0 -lite=0
RUN: %t.lld.bolt.exe | FileCheck %s
// CHECK: Test completed // PIE:
RUN: %clang %cflags -fPIC -pie %p/../Inputs/plt.c -fuse-ld=lld \
RUN: -o %t.lld.pie.exe -Wl,-q
RUN: llvm-bolt %t.lld.pie.exe -o %t.lld.bolt.pie.exe -use-old-text=0 -lite=0
RUN: %t.lld.bolt.pie.exe | FileCheck %s
CHECK: Test completed