This is an archive of the discontinued LLVM Phabricator instance.

Differential D63003

[ELF] Don't emit dynamic relocations with weak undef in writable sections
ClosedPublic

Authored by MaskRay on Jun 7 2019, 3:48 AM.

Details

Reviewers
grimar
pcc
ruiu
espindola
Commits
rGe05ca381010d: [ELF] Don't emit dynamic relocations with weak undef in writable sections
rL363399: [ELF] Don't emit dynamic relocations with weak undef in writable sections
rLLD363399: [ELF] Don't emit dynamic relocations with weak undef in writable sections
Summary

In processRelocAux(), our handling of 1) link-time constant and 2) weak
undef is the same, so put them together to simplify the logic.

This moves the weak undef code around. The result is that:

For a writable section, we will not emit dynamic relocations for weak undefined
symbols.

Since this simplifies the logic, improves consistency with the readonly
case, and also seems to match what GNU linkers do, so this is probably
good to do.

The condition !Config->Shared was there probably because it is common
for a -shared link not to specify full dependencies. Keep it now but we
may revisit the decision in the future.

gABI says:

The behavior of weak symbols in areas not specified by this document is
implementation defined. Weak symbols are intended primarily for use in
system software. Applications using weak symbols are unreliable since
changes in the runtime environment might cause the execution to fail.

With this change, we can simplify another place
Symbol::includeInDynsym() (see D59549) a bit.

Diff Detail

Repository
rL LLVM

Event Timeline

MaskRay created this revision.Jun 7 2019, 3:48 AM
Herald added a reviewer: espindola. · View Herald TranscriptJun 7 2019, 3:48 AM
Herald added a project: Restricted Project. · View Herald Transcript
Herald added subscribers: llvm-commits, arichardson, emaste. · View Herald Transcript
Harbormaster completed remote builds in B33054: Diff 203528.Jun 7 2019, 3:51 AM
grimar added inline comments.Jun 7 2019, 3:56 AM
test/ELF/weak-undef-rw.s
10 ↗(On Diff #203528)

What is GNU linkers behavior in this case?

MaskRay updated this revision to Diff 203529.Jun 7 2019, 3:57 AM
MaskRay edited the summary of this revision. (Show Details)

Emphasize the benefits

Harbormaster completed remote builds in B33055: Diff 203529.Jun 7 2019, 3:58 AM
MaskRay marked an inline comment as done.Jun 7 2019, 3:59 AM
MaskRay added inline comments.
test/ELF/weak-undef-rw.s
10 ↗(On Diff #203528)

GNU linkers don't emit dynamic relocations for executables, so this change seems to improves compatibility.

ruiu added a comment.Jun 7 2019, 4:18 AM

Does this mean that we previously emit a dynamic relocation for a weak undefined symbol that couldn't have been resolved at link time, and this patch changes the behavior so that weak undefined symbols must be resolved to some symbol at link time. Am I correct?

If so, that change seems a little risky, as it will silently change a program behavior. If the following three conditions are met, a program will behave differently.

  1. An object file contains a weak undefined symbol
  2. No DSOs define the weak undefined symbol at link time
  3. But some DSO defines the weak undefined symbol at run time

I'd think that the above conditions are minor, and you generally shouldn't rely on that kind of edge cases, though.

Ultimately, it seems like it is ultimately a programming language and ELF's failure that they underrepresents the difference between global variables defined in other modules and global variables defined in the same module. The ELF's model tries to hide the difference between static linking and dynamic linking, but the difference leaks at various places like this. We have only one type of "weak" undefined type, but in dynamic linking, a symbol is given two chances to be resolved (static link time and run time), so it is hard to say what is a correct behavior.

ruiu added inline comments.Jun 7 2019, 4:19 AM
test/ELF/weak-undef-rw.s
10 ↗(On Diff #203528)

Hm, if this is the same as GNU linker, I believe it's a safe change in practice.

MaskRay updated this revision to Diff 203535.Jun 7 2019, 4:41 AM

In weak-undef-rw.s, mention this matches ld.bfd and gold

Harbormaster completed remote builds in B33059: Diff 203535.Jun 7 2019, 4:45 AM
MaskRay added a comment.Jun 9 2019, 9:48 PM

I've tested this internally. This is a safe change.

ruiu added a comment.Jun 9 2019, 10:46 PM

Was my previous comment correct? (I'm not suggesting any change at the moment but I'd like to make sure that we are on the same page.)

MaskRay added a comment.Jun 10 2019, 1:12 AM

Your previous comment is correct.

  1. An object file contains a weak undefined symbol
  1. No DSOs define the weak undefined symbol at link time
  1. But some DSO defines the weak undefined symbol at run time

Currently:

  • If !CanWrite, no dynamic relocation is created (cannot be preempted by a runtime DSO).
  • If CanWrite, a dynamic relocation is created (can be preempted by a runtime DSO).

This patch makes it:

  • If !CanWrite, no dynamic relocation is created
  • If CanWrite, no dynamic relocation is created

This also appears to be what ld.bfd and gold do.

MaskRay added a comment.Jun 12 2019, 12:35 AM

Shall we give it a try?

ruiu accepted this revision.Jun 14 2019, 6:32 AM

Yes, let's land this. LGTM

This revision is now accepted and ready to land.Jun 14 2019, 6:32 AM
Closed by commit rL363399: [ELF] Don't emit dynamic relocations with weak undef in writable sections (authored by MaskRay). · Explain WhyJun 14 2019, 7:08 AM
This revision was automatically updated to reflect the committed changes.

Revision Contents

PathSize
lld/
trunk/
ELF/
18 lines
test/
ELF/
8 lines

Diff 204762

lld/trunk/ELF/Relocations.cpp

Show First 20 LinesShow All 918 Lines▼ Show 20 Lines
// is needed after applying relocations. If it is, it will go after rw and rx // is needed after applying relocations. If it is, it will go after rw and rx
// sections. Given that it is ro, we will need an extra PT_LOAD. This // sections. Given that it is ro, we will need an extra PT_LOAD. This
// complicates things for the dynamic linker and means we would have to reserve // complicates things for the dynamic linker and means we would have to reserve
// space for the extra PT_LOAD even if we end up not using it. // space for the extra PT_LOAD even if we end up not using it.
template <class ELFT, class RelTy> template <class ELFT, class RelTy>
static void processRelocAux(InputSectionBase &Sec, RelExpr Expr, RelType Type, static void processRelocAux(InputSectionBase &Sec, RelExpr Expr, RelType Type,
uint64_t Offset, Symbol &Sym, const RelTy &Rel, uint64_t Offset, Symbol &Sym, const RelTy &Rel,
int64_t Addend) { int64_t Addend) {
if (isStaticLinkTimeConstant(Expr, Type, Sym, Sec, Offset)) { // If the relocation is known to be a link-time constant, we know no dynamic
// relocation will be created, pass the control to relocateAlloc() or
// relocateNonAlloc() to resolve it.
//
// The behavior of an undefined weak reference is implementation defined. If
// the relocation is to a weak undef, and we are producing an executable, let
// relocate{,Non}Alloc() resolve it.
if (isStaticLinkTimeConstant(Expr, Type, Sym, Sec, Offset) ||
(!Config->Shared && Sym.isUndefWeak())) {
Sec.Relocations.push_back({Expr, Type, Offset, Addend, &Sym}); Sec.Relocations.push_back({Expr, Type, Offset, Addend, &Sym});
return; return;
} }
bool CanWrite = (Sec.Flags & SHF_WRITE) || !Config->ZText; bool CanWrite = (Sec.Flags & SHF_WRITE) || !Config->ZText;
if (CanWrite) { if (CanWrite) {
// FIXME Improve the way we handle absolute relocation types that will // FIXME Improve the way we handle absolute relocation types that will
// change to relative relocations. ARM has a relocation type R_ARM_TARGET1 // change to relative relocations. ARM has a relocation type R_ARM_TARGET1
// that is similar to SymbolicRel. PPC64 may have similar relocation types. // that is similar to SymbolicRel. PPC64 may have similar relocation types.
if ((!Sym.IsPreemptible && if ((!Sym.IsPreemptible &&
(Config->EMachine == EM_ARM || Config->EMachine == EM_PPC64 || (Config->EMachine == EM_ARM || Config->EMachine == EM_PPC64 ||
Type == Target->SymbolicRel)) || Type == Target->SymbolicRel)) ||
Show All 23 Lines if ((!Sym.IsPreemptible &&
// a dynamic relocation. // a dynamic relocation.
// ftp://www.linux-mips.org/pub/linux/mips/doc/ABI/mipsabi.pdf p.4-19 // ftp://www.linux-mips.org/pub/linux/mips/doc/ABI/mipsabi.pdf p.4-19
if (Config->EMachine == EM_MIPS) if (Config->EMachine == EM_MIPS)
In.MipsGot->addEntry(*Sec.File, Sym, Addend, Expr); In.MipsGot->addEntry(*Sec.File, Sym, Addend, Expr);
return; return;
} }
} }
// If the relocation is to a weak undef, and we are producing
// executable, give up on it and produce a non preemptible 0.
if (!Config->Shared && Sym.isUndefWeak()) {
Sec.Relocations.push_back({Expr, Type, Offset, Addend, &Sym});
return;
}
if (!CanWrite && (Config->Pic && !isRelExpr(Expr))) { if (!CanWrite && (Config->Pic && !isRelExpr(Expr))) {
error( error(
"can't create dynamic relocation " + toString(Type) + " against " + "can't create dynamic relocation " + toString(Type) + " against " +
(Sym.getName().empty() ? "local symbol" : "symbol: " + toString(Sym)) + (Sym.getName().empty() ? "local symbol" : "symbol: " + toString(Sym)) +
" in readonly segment; recompile object files with -fPIC " " in readonly segment; recompile object files with -fPIC "
"or pass '-Wl,-z,notext' to allow text relocations in the output" + "or pass '-Wl,-z,notext' to allow text relocations in the output" +
getLocation(Sec, Sym, Offset)); getLocation(Sec, Sym, Offset));
return; return;
▲ Show 20 LinesShow All 807 LinesShow Last 20 Lines

lld/trunk/test/ELF/weak-undef-rw.s

# REQUIRES: x86 # REQUIRES: x86
# RUN: llvm-mc -filetype=obj -triple=x86_64-pc-linux %s -o %t.o # RUN: llvm-mc -filetype=obj -triple=x86_64-pc-linux %s -o %t.o
# RUN: ld.lld %t.o -o %t --export-dynamic # RUN: ld.lld %t.o -o %t --export-dynamic
# RUN: llvm-readobj -r %t | FileCheck %s # RUN: llvm-readelf -r %t | FileCheck %s
# CHECK: R_X86_64_64 foobar 0x0 ## gABI leaves the behavior of weak undefined references implementation defined.
## We choose to resolve it statically and not create a dynamic relocation for
## implementation simplicity. This also matches ld.bfd and gold.
# CHECK: no relocations
.global _start .global _start
_start: _start:
.data .data
.weak foobar .weak foobar
.quad foobar .quad foobar