This is an archive of the discontinued LLVM Phabricator instance.

Differential D50203

Find PLT entries for x86, x86_64, and AArch64
ClosedPublic

Authored by jgalenson on Aug 2 2018, 3:40 PM.

Details

Reviewers
pcc
eugenis
javed.absar
Commits
rGd36fb48a274b: Find PLT entries for x86, x86_64, and AArch64.
rL340610: Find PLT entries for x86, x86_64, and AArch64.
Summary

This adds a new method to ELFObjectFileBase that returns the symbols and addresses of PLT entries.

This design was suggested by pcc and eugenis in https://reviews.llvm.org/D49383.

Diff Detail

Repository
rL LLVM

Event Timeline

jgalenson created this revision.Aug 2 2018, 3:40 PM
Herald added a reviewer: javed.absar. · View Herald TranscriptAug 2 2018, 3:40 PM
Herald added subscribers: llvm-commits, kristof.beyls. · View Herald Transcript
jgalenson added a comment.Aug 2 2018, 3:40 PM

I'm not at all familiar with ELF or parsing x86 and ARM, so I'd appreciate feedback on how this works and if there's a way to do it more cleanly (especially the parsing).

I'm also not sure how to test this. The two child patches both use the new APIs and have tests for themselves, so perhaps that's good enough?

jgalenson added a child revision: D50204: [llvm-objdump] Label calls to the PLT.Aug 2 2018, 3:41 PM
jgalenson added a child revision: D49383: [cfi-verify] Support cross-DSO.
paulsemel added a subscriber: paulsemel.Aug 3 2018, 1:32 AM
paulsemel added inline comments.
lib/Object/ELFObjectFile.cpp
357–360 ↗(On Diff #158845)

As explained here, this is in my opinion not the right way to get the plt/got etc..

jgalenson added inline comments.Aug 8 2018, 8:35 AM
lib/Object/ELFObjectFile.cpp
357–360 ↗(On Diff #158845)

It seems like we decided over there to keep it this way.

jgalenson added a comment.Aug 13 2018, 8:01 AM

Friendly ping.

pcc added inline comments.Aug 13 2018, 5:29 PM
lib/Object/ELFObjectFile.cpp
340 ↗(On Diff #158845)

Maybe this should be named JumpSlotReloc?

lib/Target/AArch64/MCTargetDesc/AArch64MCTargetDesc.cpp
165 ↗(On Diff #158845)

You could use the support::endian::read32le function here (and elsewhere in the patch).

170 ↗(On Diff #158845)

To avoid excessive indentation I'd write this with an early continue.

if (Insn >> 31 != 1 || ((Insn >> 24) & 0x1f) != 0x10)
  continue;
uint64_t Imm = ...;

I might also simplify the condition like this:

if ((Insn & 0x9f000000) != 0x90000000)
  continue;
176 ↗(On Diff #158845)

I'd write out the instruction: ldr Xt, [Xn, #pimm] so that it's clear which ldr variant you're matching for.

lib/Target/X86/MCTargetDesc/X86MCTargetDesc.cpp
449 ↗(On Diff #158845)

I wouldn't try to match the push here (and in the 64-bit version) since it's not essential for decoding the plt entry. It's also theoretically possible for it to be missing, e.g. a linker would be able to avoid emitting it when passed -z now.

450 ↗(On Diff #158845)

I think you also need to be able to decode the 0xff 0x25 form here, it's used in non-PIC executables.

jgalenson updated this revision to Diff 160597.Aug 14 2018, 8:30 AM
jgalenson marked 4 inline comments as done.
jgalenson added inline comments.
lib/Target/AArch64/MCTargetDesc/AArch64MCTargetDesc.cpp
165 ↗(On Diff #158845)

Ooh, I didn't know about that. Thanks!

170 ↗(On Diff #158845)

Good ideas. Thanks.

lib/Target/X86/MCTargetDesc/X86MCTargetDesc.cpp
449 ↗(On Diff #158845)

I didn't know that. Thanks.

450 ↗(On Diff #158845)

I extended the condition to handle that case. But does anything else change with that form, or just these bits of the opcode?

pcc added inline comments.Aug 14 2018, 2:24 PM
lib/Object/ELFObjectFile.cpp
357–368 ↗(On Diff #160597)

I don't think these find_if calls will do what you expect if the section is not found. In that case find_if will return the end iterator, and dereferencing it is UB.

I'd rewrite this as a single loop over sections().

lib/Target/AArch64/MCTargetDesc/AArch64MCTargetDesc.cpp
171 ↗(On Diff #160597)

Move the declaration of Imm onto this line.

lib/Target/X86/MCTargetDesc/X86MCTargetDesc.cpp
450 ↗(On Diff #158845)

0xff 0x25 is similar to the equivalent 64-bit instruction, except that in 32-bit mode the immediate is not PC-relative. So I think you will need a separate block of code to handle it.

jgalenson updated this revision to Diff 160832.Aug 15 2018, 9:35 AM
jgalenson marked 3 inline comments as done.
pcc accepted this revision.Aug 16 2018, 1:27 PM

LGTM

This revision is now accepted and ready to land.Aug 16 2018, 1:27 PM
Closed by commit rL340610: Find PLT entries for x86, x86_64, and AArch64. (authored by jgalenson). · Explain WhyAug 24 2018, 8:22 AM
This revision was automatically updated to reflect the committed changes.

Revision Contents

PathSize
llvm/
trunk/
include/
llvm/
MC/
8 lines
Object/
2 lines
lib/
Object/
65 lines
Target/
AArch64/
MCTargetDesc/
26 lines
X86/
MCTargetDesc/
61 lines

Diff 162383

llvm/trunk/include/llvm/MC/MCInstrAnalysis.h

Show All 17 Lines
#include "llvm/MC/MCInst.h" #include "llvm/MC/MCInst.h"
#include "llvm/MC/MCInstrDesc.h" #include "llvm/MC/MCInstrDesc.h"
#include "llvm/MC/MCInstrInfo.h" #include "llvm/MC/MCInstrInfo.h"
#include <cstdint> #include <cstdint>
namespace llvm { namespace llvm {
class MCRegisterInfo; class MCRegisterInfo;
class Triple;
class MCInstrAnalysis { class MCInstrAnalysis {
protected: protected:
friend class Target; friend class Target;
const MCInstrInfo *Info; const MCInstrInfo *Info;
public: public:
▲ Show 20 LinesShow All 66 Lines▼ Show 20 Linespublic:
virtual bool isDependencyBreaking(const MCSubtargetInfo &STI, virtual bool isDependencyBreaking(const MCSubtargetInfo &STI,
const MCInst &Inst) const; const MCInst &Inst) const;
/// Given a branch instruction try to get the address the branch /// Given a branch instruction try to get the address the branch
/// targets. Return true on success, and the address in Target. /// targets. Return true on success, and the address in Target.
virtual bool virtual bool
evaluateBranch(const MCInst &Inst, uint64_t Addr, uint64_t Size, evaluateBranch(const MCInst &Inst, uint64_t Addr, uint64_t Size,
uint64_t &Target) const; uint64_t &Target) const;
/// Returns (PLT virtual address, GOT virtual address) pairs for PLT entries.
virtual std::vector<std::pair<uint64_t, uint64_t>>
findPltEntries(uint64_t PltSectionVA, ArrayRef<uint8_t> PltContents,
uint64_t GotPltSectionVA, const Triple &TargetTriple) const {
return {};
}
}; };
} // end namespace llvm } // end namespace llvm
#endif // LLVM_MC_MCINSTRANALYSIS_H #endif // LLVM_MC_MCINSTRANALYSIS_H

llvm/trunk/include/llvm/Object/ELFObjectFile.h

Show First 20 LinesShow All 80 Lines▼ Show 20 Linespublic:
SubtargetFeatures getARMFeatures() const; SubtargetFeatures getARMFeatures() const;
SubtargetFeatures getRISCVFeatures() const; SubtargetFeatures getRISCVFeatures() const;
void setARMSubArch(Triple &TheTriple) const override; void setARMSubArch(Triple &TheTriple) const override;
virtual uint16_t getEType() const = 0; virtual uint16_t getEType() const = 0;
std::vector<std::pair<DataRefImpl, uint64_t>> getPltAddresses() const;
}; };
class ELFSectionRef : public SectionRef { class ELFSectionRef : public SectionRef {
public: public:
ELFSectionRef(const SectionRef &B) : SectionRef(B) { ELFSectionRef(const SectionRef &B) : SectionRef(B) {
assert(isa<ELFObjectFileBase>(SectionRef::getObject())); assert(isa<ELFObjectFileBase>(SectionRef::getObject()));
} }
▲ Show 20 LinesShow All 1,059 LinesShow Last 20 Lines

llvm/trunk/lib/Object/ELFObjectFile.cpp

//===- ELFObjectFile.cpp - ELF object file implementation -----------------===// //===- ELFObjectFile.cpp - ELF object file implementation -----------------===//
// //
// The LLVM Compiler Infrastructure // The LLVM Compiler Infrastructure
// //
// This file is distributed under the University of Illinois Open Source // This file is distributed under the University of Illinois Open Source
// License. See LICENSE.TXT for details. // License. See LICENSE.TXT for details.
// //
//===----------------------------------------------------------------------===// //===----------------------------------------------------------------------===//
// //
// Part of the ELFObjectFile class implementation. // Part of the ELFObjectFile class implementation.
// //
//===----------------------------------------------------------------------===// //===----------------------------------------------------------------------===//
#include "llvm/Object/ELFObjectFile.h" #include "llvm/Object/ELFObjectFile.h"
#include "llvm/ADT/Triple.h" #include "llvm/ADT/Triple.h"
#include "llvm/BinaryFormat/ELF.h" #include "llvm/BinaryFormat/ELF.h"
#include "llvm/MC/MCInstrAnalysis.h"
#include "llvm/MC/SubtargetFeature.h" #include "llvm/MC/SubtargetFeature.h"
#include "llvm/Object/ELF.h" #include "llvm/Object/ELF.h"
#include "llvm/Object/ELFTypes.h" #include "llvm/Object/ELFTypes.h"
#include "llvm/Object/Error.h" #include "llvm/Object/Error.h"
#include "llvm/Support/ARMAttributeParser.h" #include "llvm/Support/ARMAttributeParser.h"
#include "llvm/Support/ARMBuildAttributes.h" #include "llvm/Support/ARMBuildAttributes.h"
#include "llvm/Support/Endian.h" #include "llvm/Support/Endian.h"
#include "llvm/Support/ErrorHandling.h" #include "llvm/Support/ErrorHandling.h"
#include "llvm/Support/MathExtras.h" #include "llvm/Support/MathExtras.h"
#include "llvm/Support/TargetRegistry.h"
#include <algorithm> #include <algorithm>
#include <cstddef> #include <cstddef>
#include <cstdint> #include <cstdint>
#include <memory> #include <memory>
#include <string> #include <string>
#include <system_error> #include <system_error>
#include <utility> #include <utility>
▲ Show 20 LinesShow All 288 Lines▼ Show 20 Lines case ARMBuildAttrs::v7E_M:
break; break;
} }
} }
if (!isLittleEndian()) if (!isLittleEndian())
Triple += "eb"; Triple += "eb";
TheTriple.setArchName(Triple); TheTriple.setArchName(Triple);
} }
std::vector<std::pair<DataRefImpl, uint64_t>>
ELFObjectFileBase::getPltAddresses() const {
std::string Err;
const auto Triple = makeTriple();
const auto *T = TargetRegistry::lookupTarget(Triple.str(), Err);
if (!T)
return {};
uint64_t JumpSlotReloc = 0;
switch (Triple.getArch()) {
case Triple::x86:
JumpSlotReloc = ELF::R_386_JUMP_SLOT;
break;
case Triple::x86_64:
JumpSlotReloc = ELF::R_X86_64_JUMP_SLOT;
break;
case Triple::aarch64:
JumpSlotReloc = ELF::R_AARCH64_JUMP_SLOT;
break;
default:
return {};
}
const auto *MIA = T->createMCInstrAnalysis(T->createMCInstrInfo());
if (!MIA)
return {};
Optional<SectionRef> Plt = None, RelaPlt = None, GotPlt = None;
for (const SectionRef &Section : sections()) {
StringRef Name;
if (Section.getName(Name))
continue;
if (Name == ".plt")
Plt = Section;
else if (Name == ".rela.plt" || Name == ".rel.plt")
RelaPlt = Section;
else if (Name == ".got.plt")
GotPlt = Section;
}
if (!Plt || !RelaPlt || !GotPlt)
return {};
StringRef PltContents;
if (Plt->getContents(PltContents))
return {};
ArrayRef<uint8_t> PltBytes((const uint8_t *)PltContents.data(),
Plt->getSize());
auto PltEntries = MIA->findPltEntries(Plt->getAddress(), PltBytes,
GotPlt->getAddress(), Triple);
// Build a map from GOT entry virtual address to PLT entry virtual address.
DenseMap<uint64_t, uint64_t> GotToPlt;
for (const auto &Entry : PltEntries)
GotToPlt.insert(std::make_pair(Entry.second, Entry.first));
// Find the relocations in the dynamic relocation table that point to
// locations in the GOT for which we know the corresponding PLT entry.
std::vector<std::pair<DataRefImpl, uint64_t>> Result;
for (const auto &Relocation : RelaPlt->relocations()) {
if (Relocation.getType() != JumpSlotReloc)
continue;
auto PltEntryIter = GotToPlt.find(Relocation.getOffset());
if (PltEntryIter != GotToPlt.end())
Result.push_back(std::make_pair(
Relocation.getSymbol()->getRawDataRefImpl(), PltEntryIter->second));
}
return Result;
}

llvm/trunk/lib/Target/AArch64/MCTargetDesc/AArch64MCTargetDesc.cpp

Show All 18 Lines
#include "llvm/MC/MCAsmBackend.h" #include "llvm/MC/MCAsmBackend.h"
#include "llvm/MC/MCCodeEmitter.h" #include "llvm/MC/MCCodeEmitter.h"
#include "llvm/MC/MCInstrAnalysis.h" #include "llvm/MC/MCInstrAnalysis.h"
#include "llvm/MC/MCInstrInfo.h" #include "llvm/MC/MCInstrInfo.h"
#include "llvm/MC/MCObjectWriter.h" #include "llvm/MC/MCObjectWriter.h"
#include "llvm/MC/MCRegisterInfo.h" #include "llvm/MC/MCRegisterInfo.h"
#include "llvm/MC/MCStreamer.h" #include "llvm/MC/MCStreamer.h"
#include "llvm/MC/MCSubtargetInfo.h" #include "llvm/MC/MCSubtargetInfo.h"
#include "llvm/Support/Endian.h"
#include "llvm/Support/ErrorHandling.h" #include "llvm/Support/ErrorHandling.h"
#include "llvm/Support/TargetRegistry.h" #include "llvm/Support/TargetRegistry.h"
using namespace llvm; using namespace llvm;
#define GET_INSTRINFO_MC_DESC #define GET_INSTRINFO_MC_DESC
#include "AArch64GenInstrInfo.inc" #include "AArch64GenInstrInfo.inc"
▲ Show 20 LinesShow All 113 Lines▼ Show 20 Lines for (unsigned i = 0, e = Inst.getNumOperands(); i != e; i++) {
if (Desc.OpInfo[i].OperandType == MCOI::OPERAND_PCREL) { if (Desc.OpInfo[i].OperandType == MCOI::OPERAND_PCREL) {
int64_t Imm = Inst.getOperand(i).getImm() * 4; int64_t Imm = Inst.getOperand(i).getImm() * 4;
Target = Addr + Imm; Target = Addr + Imm;
return true; return true;
} }
} }
return false; return false;
} }
std::vector<std::pair<uint64_t, uint64_t>>
findPltEntries(uint64_t PltSectionVA, ArrayRef<uint8_t> PltContents,
uint64_t GotPltSectionVA,
const Triple &TargetTriple) const override {
// Do a lightweight parsing of PLT entries.
std::vector<std::pair<uint64_t, uint64_t>> Result;
for (uint64_t Byte = 0, End = PltContents.size(); Byte + 7 < End;
Byte += 4) {
uint32_t Insn = support::endian::read32le(PltContents.data() + Byte);
// Check for adrp.
if ((Insn & 0x9f000000) != 0x90000000)
continue;
uint64_t Imm = (((PltSectionVA + Byte) >> 12) << 12) +
(((Insn >> 29) & 3) << 12) + (((Insn >> 5) & 0x3ffff) << 14);
uint32_t Insn2 = support::endian::read32le(PltContents.data() + Byte + 4);
// Check for: ldr Xt, [Xn, #pimm].
if (Insn2 >> 22 == 0x3e5) {
Imm += ((Insn2 >> 10) & 0xfff) << 3;
Result.push_back(std::make_pair(PltSectionVA + Byte, Imm));
Byte += 4;
}
}
return Result;
}
}; };
} // end anonymous namespace } // end anonymous namespace
static MCInstrAnalysis *createAArch64InstrAnalysis(const MCInstrInfo *Info) { static MCInstrAnalysis *createAArch64InstrAnalysis(const MCInstrInfo *Info) {
return new AArch64MCInstrAnalysis(Info); return new AArch64MCInstrAnalysis(Info);
} }
▲ Show 20 LinesShow All 44 LinesShow Last 20 Lines

llvm/trunk/lib/Target/X86/MCTargetDesc/X86MCTargetDesc.cpp

Show First 20 LinesShow All 378 Lines▼ Show 20 Lines
public: public:
X86MCInstrAnalysis(const MCInstrInfo *MCII) : MCInstrAnalysis(MCII) {} X86MCInstrAnalysis(const MCInstrInfo *MCII) : MCInstrAnalysis(MCII) {}
bool isDependencyBreaking(const MCSubtargetInfo &STI, bool isDependencyBreaking(const MCSubtargetInfo &STI,
const MCInst &Inst) const override; const MCInst &Inst) const override;
bool clearsSuperRegisters(const MCRegisterInfo &MRI, const MCInst &Inst, bool clearsSuperRegisters(const MCRegisterInfo &MRI, const MCInst &Inst,
APInt &Mask) const override; APInt &Mask) const override;
std::vector<std::pair<uint64_t, uint64_t>>
findPltEntries(uint64_t PltSectionVA, ArrayRef<uint8_t> PltContents,
uint64_t GotSectionVA, const Triple &TargetTriple) const;
}; };
bool X86MCInstrAnalysis::isDependencyBreaking(const MCSubtargetInfo &STI, bool X86MCInstrAnalysis::isDependencyBreaking(const MCSubtargetInfo &STI,
const MCInst &Inst) const { const MCInst &Inst) const {
if (STI.getCPU() == "btver2") { if (STI.getCPU() == "btver2") {
// Reference: Agner Fog's microarchitecture.pdf - Section 20 "AMD Bobcat and // Reference: Agner Fog's microarchitecture.pdf - Section 20 "AMD Bobcat and
// Jaguar pipeline", subsection 8 "Dependency-breaking instructions". // Jaguar pipeline", subsection 8 "Dependency-breaking instructions".
switch (Inst.getOpcode()) { switch (Inst.getOpcode()) {
▲ Show 20 LinesShow All 110 Lines▼ Show 20 Lines for (unsigned I = 0, E = NumImplicitDefs; I < E; ++I) {
const MCPhysReg Reg = Desc.getImplicitDefs()[I]; const MCPhysReg Reg = Desc.getImplicitDefs()[I];
if (ClearsSuperReg(Reg)) if (ClearsSuperReg(Reg))
Mask.setBit(NumDefs + I); Mask.setBit(NumDefs + I);
} }
return Mask.getBoolValue(); return Mask.getBoolValue();
} }
static std::vector<std::pair<uint64_t, uint64_t>>
findX86PltEntries(uint64_t PltSectionVA, ArrayRef<uint8_t> PltContents,
uint64_t GotPltSectionVA) {
// Do a lightweight parsing of PLT entries.
std::vector<std::pair<uint64_t, uint64_t>> Result;
for (uint64_t Byte = 0, End = PltContents.size(); Byte + 6 < End; ) {
// Recognize a jmp.
if (PltContents[Byte] == 0xff && PltContents[Byte + 1] == 0xa3) {
// The jmp instruction at the beginning of each PLT entry jumps to the
// address of the base of the .got.plt section plus the immediate.
uint32_t Imm = support::endian::read32le(PltContents.data() + Byte + 2);
Result.push_back(
std::make_pair(PltSectionVA + Byte, GotPltSectionVA + Imm));
Byte += 6;
} else if (PltContents[Byte] == 0xff && PltContents[Byte + 1] == 0x25) {
// The jmp instruction at the beginning of each PLT entry jumps to the
// immediate.
uint32_t Imm = support::endian::read32le(PltContents.data() + Byte + 2);
Result.push_back(std::make_pair(PltSectionVA + Byte, Imm));
Byte += 6;
} else
Byte++;
}
return Result;
}
static std::vector<std::pair<uint64_t, uint64_t>>
findX86_64PltEntries(uint64_t PltSectionVA, ArrayRef<uint8_t> PltContents) {
// Do a lightweight parsing of PLT entries.
std::vector<std::pair<uint64_t, uint64_t>> Result;
for (uint64_t Byte = 0, End = PltContents.size(); Byte + 6 < End; ) {
// Recognize a jmp.
if (PltContents[Byte] == 0xff && PltContents[Byte + 1] == 0x25) {
// The jmp instruction at the beginning of each PLT entry jumps to the
// address of the next instruction plus the immediate.
uint32_t Imm = support::endian::read32le(PltContents.data() + Byte + 2);
Result.push_back(
std::make_pair(PltSectionVA + Byte, PltSectionVA + Byte + 6 + Imm));
Byte += 6;
} else
Byte++;
}
return Result;
}
std::vector<std::pair<uint64_t, uint64_t>> X86MCInstrAnalysis::findPltEntries(
uint64_t PltSectionVA, ArrayRef<uint8_t> PltContents,
uint64_t GotPltSectionVA, const Triple &TargetTriple) const {
switch (TargetTriple.getArch()) {
case Triple::x86:
return findX86PltEntries(PltSectionVA, PltContents, GotPltSectionVA);
case Triple::x86_64:
return findX86_64PltEntries(PltSectionVA, PltContents);
default:
return {};
}
}
} // end of namespace X86_MC } // end of namespace X86_MC
} // end of namespace llvm } // end of namespace llvm
static MCInstrAnalysis *createX86MCInstrAnalysis(const MCInstrInfo *Info) { static MCInstrAnalysis *createX86MCInstrAnalysis(const MCInstrInfo *Info) {
return new X86_MC::X86MCInstrAnalysis(Info); return new X86_MC::X86MCInstrAnalysis(Info);
} }
▲ Show 20 LinesShow All 225 LinesShow Last 20 Lines