This is an archive of the discontinued LLVM Phabricator instance.

Differential D26133

[ELF] Allow relative relocations to absolute symbols in PIC
Needs ReviewPublic

Authored by phosek on Oct 30 2016, 9:39 PM.

Details

Reviewers
ruiu
pcc
Summary

While these might cause an overflow at runtime on some targets, lld shouldn't reject such a case as it's clearly meaningful and supported by both BFD ld and gold.

Diff Detail

Repository
rL LLVM

Event Timeline

phosek updated this revision to Diff 76350.Oct 30 2016, 9:39 PM
phosek retitled this revision from to [ELF] Relative relocations to absolute symbols in PIC.
phosek updated this object.
phosek added a reviewer: ruiu.
phosek set the repository for this revision to rL LLVM.
phosek added a project: lld.
phosek added a subscriber: llvm-commits.
ruiu added a reviewer: pcc.Oct 30 2016, 9:46 PM

+pcc who wrote this code.

phosek added a comment.Oct 30 2016, 9:48 PM

I ran into this issue while looking a linker script failure described in bug 30406. The failure was caused by the check in ELF/Relocation.cpp. While debugging the issue, I noticed that both BFD ld and gold handle this case and don't throw an error for the relocation-relative-absolute.s test case.

This is really a corner case behavior that's not document very well by the ELF specification, so I got in touch with Ian Lance Taylor and his opinion on this is:

It's an unusual case, but the only possible meaning of this is a call to the absolute address. The linker needs to either generate a dynamic PC-relative relocation to an SHN_ABS symbol (which could of course overflow at runtime on x86_64) or generate a PLT with a JMP_SLOT reference to an SHN_ABS symbol. I don't see how anything else is correct. In particular I don't see how it is correct to reject such a case, it's clearly meaningful and the technique is used on, at least, pre-VDSO GNU/Linux and AIX.

The problem is that neither BFD ld nor gold do this, instead they both generate an absolute jump. This change changes the lld behavior to match the current behavior of ld and gold. If were to implement the behavior Ian suggested, we'd have to also modify the scanRelocs function, in particular the part which handles the constant case and generate a dynamic relocation when the expression is relative relocation to an absolute symbol.

phosek retitled this revision from [ELF] Relative relocations to absolute symbols in PIC to [ELF] Allow relative relocations to absolute symbols in PIC.Oct 30 2016, 9:48 PM
phosek edited edge metadata.
pcc edited edge metadata.Oct 30 2016, 10:24 PM
pcc added a subscriber: rafael.

I don't see why we should switch from rejecting to doing the wrong thing. The right thing to do, as Ian suggested, would be to create either a PLT entry or a dynamic relocation.

Independently of that, as I and Rafael mentioned on the review thread for D25560, we need to fix the synthetic symbols we create for linker scripts.

phosek updated this revision to Diff 80617.Dec 7 2016, 9:19 AM
phosek updated this object.
phosek edited edge metadata.
phosek added a comment.Dec 7 2016, 9:36 AM

We run into this issue again in our codebase when linking the C library (based on musl) with lld. I've reduced that case into a new test case which I've added to the patch. While the solution that Ian suggested may be the "right thing", it's clearly not what BFD ld nor gold implement and it's unlikely that their implementation is going to change. Since there is code out there relying on this behavior, it'd be useful for lld to support it.

meadori mentioned this in D27524: [ELF][MIPS] Make _gp, _gp_disp, __gnu_local_gp global symbols.Dec 7 2016, 11:40 AM
ruiu added a comment.Dec 8 2016, 12:41 PM

Sorry for the belated response. I wonder if it is hard to create a dynamic relocation for this case. Even though it is not what GNU linkers do, I don't think doing the same because they do it wrongly is the right thing, unless we really need a bug-to-bug compatibility. Is this a case that we need a bug-compatibility?

phosek updated this revision to Diff 80864.Dec 8 2016, 8:50 PM

This appears to be working, please take a look. The only question is whether we should be also generating the relocation in the weak case or keep it as a special case same as before?

phosek updated this revision to Diff 87340.Feb 6 2017, 4:52 PM
phosek updated this revision to Diff 87494.Feb 7 2017, 12:05 PM

Added tests.

phosek added a reviewer: mcgrathr.Feb 7 2017, 12:33 PM
phosek removed a reviewer: mcgrathr.
phosek added a subscriber: mcgrathr.
phosek mentioned this in D31147: [ELF] Allow references to reserved symbols in linker scripts.Mar 21 2017, 6:58 PM
emaste added a subscriber: emaste.Jul 17 2017, 6:36 AM

Revision Contents

PathSize
ELF/
2 lines
test/
ELF/
Inputs/
3 lines
linkerscript/
12 lines
13 lines

Diff 87494

ELF/Relocations.cpp

Show First 20 LinesShow All 345 Lines▼ Show 20 Linesstatic bool isStaticLinkTimeConstant(RelExpr E, uint32_t Type,
// but if the relocation refers to a weak undefined symbol, we allow it to // but if the relocation refers to a weak undefined symbol, we allow it to
// resolve to the image base. This is a little strange, but it allows us to // resolve to the image base. This is a little strange, but it allows us to
// link function calls to such symbols. Normally such a call will be guarded // link function calls to such symbols. Normally such a call will be guarded
// with a comparison, which will load a zero from the GOT. // with a comparison, which will load a zero from the GOT.
// Another special case is MIPS _gp_disp symbol which represents offset // Another special case is MIPS _gp_disp symbol which represents offset
// between start of a function and '_gp' value and defined as absolute just // between start of a function and '_gp' value and defined as absolute just
// to simplify the code. // to simplify the code.
if (AbsVal && RelE) { if (AbsVal && RelE) {
if (Body.isLocal() || Body.getVisibility() == STV_HIDDEN)
return true;
if (Body.isUndefined() && !Body.isLocal() && Body.symbol()->isWeak()) if (Body.isUndefined() && !Body.isLocal() && Body.symbol()->isWeak())
return true; return true;
if (&Body == ElfSym<ELFT>::MipsGpDisp) if (&Body == ElfSym<ELFT>::MipsGpDisp)
return true; return true;
error(S.getLocation(RelOff) + ": relocation " + toString(Type) + error(S.getLocation(RelOff) + ": relocation " + toString(Type) +
" cannot refer to absolute symbol '" + toString(Body) + " cannot refer to absolute symbol '" + toString(Body) +
"' defined in " + toString(Body.File)); "' defined in " + toString(Body.File));
return true; return true;
▲ Show 20 LinesShow All 584 LinesShow Last 20 Lines

test/ELF/Inputs/symbol-absolute.s

  • This file was added.
.globl _BASE
.hidden _BASE
_BASE = 0

test/ELF/linkerscript/symbol-absolute.s

  • This file was added.
# REQUIRES: x86
# RUN: llvm-mc -filetype=obj -triple=x86_64-unknown-linux %s -o %t
# RUN: echo "PROVIDE_HIDDEN(_BASE = 0);" > %t.script
# RUN: ld.lld -shared --gc-sections -o %t1 %t %t.script
# RUN: llvm-readobj --elf-output-style=GNU --file-headers --symbols %t1 | FileCheck %s
# CHECK: 0000000000000000 0 NOTYPE LOCAL HIDDEN ABS _BASE
.text
.globl _start
_start:
lea _BASE(%rip),%rax

test/ELF/symbol-absolute.s

  • This file was added.
# REQUIRES: x86
# RUN: llvm-mc -filetype=obj -triple=x86_64-unknown-linux %s -o %tinput1.o
# RUN: llvm-mc -filetype=obj -triple=x86_64-pc-linux \
# RUN: %S/Inputs/symbol-absolute.s -o %tinput2.o
# RUN: ld.lld -shared --gc-sections -o %t %tinput1.o %tinput2.o
# RUN: llvm-readobj --elf-output-style=GNU --file-headers --symbols %t | FileCheck %s
# CHECK: 0000000000000000 0 NOTYPE LOCAL HIDDEN ABS _BASE
.text
.globl _start
_start:
lea _BASE(%rip),%rax