This is an archive of the discontinued LLVM Phabricator instance.

Paths

Table of Contentst

-
lld/
-
ELF/
-
Relocations.cpp
-
test/ELF/
-
ELF/
-
aarch64-thunk-reuse2.s

Differential D124653

[ELF] Fix branch range computation when picking ThunkSection
ClosedPublic

Authored by MaskRay on Apr 28 2022, 7:09 PM.

Download Raw Diff

Details

Reviewers

peter.smith

Commits

rG3bc79808d063: [ELF] Fix branch range computation when picking ThunkSection

Summary

Similar to D117734. Take AArch64 as an example when the branch range is +-0x8000000.

getISDThunkSec returns ts when src-0x8000000-r_addend <= tsBase < src-0x8000000
and the new thunk will be placed in ts (ts->addThunk(t)). However, the new
thunk (at the end of ts) may be unreachable from src. In the next pass,
normalizeExistingThunk reverts the relocation back to the original target.
Then a new thunk is created and the same ts is picked as before. The ts is
still unreachable.

I have observed it in one test with a sufficiently large r_addend (47664): there
are initially 245 Thunk's, then in each pass 14 new Thunk's are created and get
appended to the unreachable ThunkSection. After 15 passes lld fails with
thunk creation not converged.

The new test aarch64-thunk-reuse2.s checks the case.

Without - pcBias, arm-thumb-thunk-empty-pass.s and arm-thunk-multipass-plt.s
will fail.

Diff Detail

Repository: rG LLVM Github Monorepo

Event Timeline

MaskRay created this revision.Apr 28 2022, 7:09 PM

Herald added a project: Restricted Project. · View Herald TranscriptApr 28 2022, 7:09 PM

Herald added subscribers: StephenFan, kristof.beyls, arichardson, emaste. · View Herald Transcript

MaskRay requested review of this revision.Apr 28 2022, 7:09 PM

Herald added a project: Restricted Project. · View Herald TranscriptApr 28 2022, 7:09 PM

Herald added a subscriber: llvm-commits. · View Herald Transcript

MaskRay retitled this revision from [ELF] Fix ThunkSection distance computation to [ELF] Fix branch range computation when picking ThunkSection.Apr 28 2022, 7:10 PM

Harbormaster completed remote builds in B161911: Diff 425945.Apr 28 2022, 7:22 PM

add a test

MaskRay edited the summary of this revision. (Show Details)Apr 28 2022, 9:14 PM

Harbormaster completed remote builds in B161922: Diff 425966.Apr 28 2022, 9:27 PM

I'll push this today to fix some breakage.

Looks good to me.

IIUC the problem case is triggered by relocations with addends. Something like:

ThunkSection selected which is in range of the branch, but not branch + offset.
Later code identifies the thunk is out of branch range which removes the thunk from the branch
Branch chooses the same thunk section as before.
Repeat, until error message.

This revision is now accepted and ready to land.May 3 2022, 5:42 AM

In D124653#3488163, @peter.smith wrote:

Looks good to me.

IIUC the problem case is triggered by relocations with addends. Something like:

ThunkSection selected which is in range of the branch, but not branch + offset.

Later code identifies the thunk is out of branch range which removes the thunk from the branch

Branch chooses the same thunk section as before.

Repeat, until error message.

Yes, this. Thanks!

MaskRay edited the summary of this revision. (Show Details)May 3 2022, 8:39 AM

Closed by commit rG3bc79808d063: [ELF] Fix branch range computation when picking ThunkSection (authored by MaskRay). · Explain WhyMay 3 2022, 8:46 AM

This revision was automatically updated to reflect the committed changes.

MaskRay added a commit: rG3bc79808d063: [ELF] Fix branch range computation when picking ThunkSection.

Revision Contents

Path

Size

lld/

ELF/

Relocations.cpp

32 lines

test/

ELF/

aarch64-thunk-reuse2.s

38 lines

Diff 426730

lld/ELF/Relocations.cpp

Show First 20 Lines • Show All 1,856 Lines • ▼ Show 20 Lines	forEachInputSectionDescription(
std::merge(isd->sections.begin(), isd->sections.end(),		std::merge(isd->sections.begin(), isd->sections.end(),
newThunks.begin(), newThunks.end(), std::back_inserter(tmp),		newThunks.begin(), newThunks.end(), std::back_inserter(tmp),
mergeCmp);		mergeCmp);

isd->sections = std::move(tmp);		isd->sections = std::move(tmp);
});		});
}		}

		static int64_t getPCBias(RelType type) {
		if (config->emachine != EM_ARM)
		return 0;
		switch (type) {
		case R_ARM_THM_JUMP19:
		case R_ARM_THM_JUMP24:
		case R_ARM_THM_CALL:
		return 4;
		default:
		return 8;
		}
		}

// Find or create a ThunkSection within the InputSectionDescription (ISD) that		// Find or create a ThunkSection within the InputSectionDescription (ISD) that
// is in range of Src. An ISD maps to a range of InputSections described by a		// is in range of Src. An ISD maps to a range of InputSections described by a
// linker script section pattern such as { .text .text.* }.		// linker script section pattern such as { .text .text.* }.
ThunkSection ThunkCreator::getISDThunkSec(OutputSection os,		ThunkSection ThunkCreator::getISDThunkSec(OutputSection os,
InputSection *isec,		InputSection *isec,
InputSectionDescription *isd,		InputSectionDescription *isd,
const Relocation &rel,		const Relocation &rel,
uint64_t src) {		uint64_t src) {
		// See the comment in getThunk for -pcBias below.
		const int64_t pcBias = getPCBias(rel.type);
for (std::pair<ThunkSection *, uint32_t> tp : isd->thunkSections) {		for (std::pair<ThunkSection *, uint32_t> tp : isd->thunkSections) {
ThunkSection *ts = tp.first;		ThunkSection *ts = tp.first;
uint64_t tsBase = os->addr + ts->outSecOff + rel.addend;		uint64_t tsBase = os->addr + ts->outSecOff - pcBias;
uint64_t tsLimit = tsBase + ts->getSize() + rel.addend;		uint64_t tsLimit = tsBase + ts->getSize();
if (target->inBranchRange(rel.type, src,		if (target->inBranchRange(rel.type, src,
(src > tsLimit) ? tsBase : tsLimit))		(src > tsLimit) ? tsBase : tsLimit))
return ts;		return ts;
}		}

// No suitable ThunkSection exists. This can happen when there is a branch		// No suitable ThunkSection exists. This can happen when there is a branch
// with lower range than the ThunkSection spacing or when there are too		// with lower range than the ThunkSection spacing or when there are too
// many Thunks. Create a new ThunkSection as close to the InputSection as		// many Thunks. Create a new ThunkSection as close to the InputSection as
▲ Show 20 Lines • Show All 134 Lines • ▼ Show 20 Lines	static bool isThunkSectionCompatible(InputSection *source,
SectionBase *target) {		SectionBase *target) {
// We can't reuse thunks in different loadable partitions because they might		// We can't reuse thunks in different loadable partitions because they might
// not be loaded. But partition 1 (the main partition) will always be loaded.		// not be loaded. But partition 1 (the main partition) will always be loaded.
if (source->partition != target->partition)		if (source->partition != target->partition)
return target->partition == 1;		return target->partition == 1;
return true;		return true;
}		}

static int64_t getPCBias(RelType type) {
if (config->emachine != EM_ARM)
return 0;
switch (type) {
case R_ARM_THM_JUMP19:
case R_ARM_THM_JUMP24:
case R_ARM_THM_CALL:
return 4;
default:
return 8;
}
}

std::pair<Thunk , bool> ThunkCreator::getThunk(InputSection isec,		std::pair<Thunk , bool> ThunkCreator::getThunk(InputSection isec,
Relocation &rel, uint64_t src) {		Relocation &rel, uint64_t src) {
std::vector<Thunk > thunkVec = nullptr;		std::vector<Thunk > thunkVec = nullptr;
// Arm and Thumb have a PC Bias of 8 and 4 respectively, this is cancelled		// Arm and Thumb have a PC Bias of 8 and 4 respectively, this is cancelled
// out in the relocation addend. We compensate for the PC bias so that		// out in the relocation addend. We compensate for the PC bias so that
// an Arm and Thumb relocation to the same destination get the same keyAddend,		// an Arm and Thumb relocation to the same destination get the same keyAddend,
// which is usually 0.		// which is usually 0.
const int64_t pcBias = getPCBias(rel.type);		const int64_t pcBias = getPCBias(rel.type);
▲ Show 20 Lines • Show All 178 Lines • Show Last 20 Lines

lld/test/ELF/aarch64-thunk-reuse2.s

This file was added.

				# REQUIRES: aarch64
				# RUN: llvm-mc -filetype=obj -triple=aarch64 %s -o %t.o
				# RUN: ld.lld -pie -Ttext=0x10300 %t.o -o %t
				# RUN: llvm-objdump -d --no-show-raw-insn --disassemble-symbols=dest,__AArch64ADRPThunk_,high %t \| FileCheck %s

				## We create initial ThunkSection before the gap. Because the ThunkSection
				## selection code isn't so precise, we may create an unused thunk there (0x10704).
				## In the next pass we will create a ThunkSection after the gap. There used to be
				## a bug reusing the first ThunkSection (unreachable) due to the large r_addend.
				# CHECK: <dest>:
				# CHECK-NEXT: 10700: ret
				# CHECK: <__AArch64ADRPThunk_>:
				# CHECK-NEXT: 10704: adrp x16, 0x10000
				# CHECK-NEXT: add x16, x16, #1792
				# CHECK-NEXT: br x16
				# CHECK-EMPTY:
				# CHECK: <__AArch64ADRPThunk_>:
				# CHECK-NEXT: 8010710: adrp x16, 0x10000
				# CHECK-NEXT: add x16, x16, #1792
				# CHECK-NEXT: br x16
				# CHECK-LABEL: <high>:
				# CHECK-NEXT: 801071c: bl 0x8010710 <__AArch64ADRPThunk_>
				# CHECK-NEXT: b 0x8010710 <__AArch64ADRPThunk_>

				.section .text._start, "ax", %progbits
				.globl _start
				_start:
				.space 0x400
				dest:
				ret

				.section .text.gap, "ax", %progbits
				.space 0x8000000

				.section .text.high, "ax", %progbits
				high:
				bl dest
				b dest