elf linking what it means and why it matters
play

ELF linking: what it means and why it matters Stephen Kell - PowerPoint PPT Presentation

May 19, 2023 •303 likes •821 views

ELF linking: what it means and why it matters Stephen Kell stephen.kell@cl.cam.ac.uk joint work with Dominic P. Mulligan and Peter Sewell Computer Laboratory University of Cambridge 1 A kernel is born ld -m elf_x86_64 --build-id -o vmlinux \

  1. ELF linking: what it means and why it matters Stephen Kell stephen.kell@cl.cam.ac.uk joint work with Dominic P. Mulligan and Peter Sewell Computer Laboratory University of Cambridge 1

  2. A kernel is born ld -m elf_x86_64 --build-id -o vmlinux \ -T arch/x86/kernel/vmlinux.lds \ arch/x86/kernel/head{_64,64,}.o \ arch/x86/kernel/init_task.o init/built-in.o \ --start-group \ {usr,arch/x86,kernel,mm,fs}/built-in.o \ {ipc,security,crypto,block}/built-in.o \ lib/lib.a arch/x86/lib/lib.a \ lib/built-in.o arch/x86/lib/built-in.o \ {drivers,sound,firmware}/built-in.o \ {arch/x86/{pci,power,video},net}/built-in.o \ --end-group \ .tmp_kallsyms2.o How can we get strong guarantees about software like this? 2

  3. Shopping list � specify the architecture(s) � specify the C source language � verify the compiler � specify & verify the hardware � specify & verify functional properties... All good stuff, but � what was actually happening in that link command? � ... something we can hand-wave away, right? 3

  4. Of POPLs past (1) Cardelli “Program Fragments, Linking and Modularization” POPL ’97 4

  5. Of POPLs past (2) Is separate compilation really the substance of linking? � hint: no 5

  6. That kernel again ld -m elf_x86_64 --build-id -o vmlinux \ -T arch/x86/kernel/vmlinux.lds \ arch/x86/kernel/head{_64,64,}.o \ arch/x86/kernel/init_task.o init/built-in.o \ --start-group \ {usr,arch/x86,kernel,mm,fs}/built-in.o \ {ipc,security,crypto,block}/built-in.o \ lib/lib.a arch/x86/lib/lib.a \ lib/built-in.o arch/x86/lib/built-in.o \ {drivers,sound,firmware}/built-in.o \ {arch/x86/{pci,power,video},net}/built-in.o \ --end-group \ .tmp_kallsyms2.o 6

  7. Another shopping list 1. specify the object file formats 2. specify the linker’s own language(s!) 3. verify the linker 4. go back to the other shopping list The rest of this talk: our start on tackling these. � non-idealised spec of Unix linking � ... ELF object format... � ... and (static) linking of ELF files � ambition: usable as test oracle + some experience from a “systems person” 7

  8. Systems software is written in... ... in C, mostly, right? With a bit of assembly? 8

  9. Systems software is written in... ... in C, mostly, right? With a bit of assembly? / ∗ NOTE: gcc doesn’t actually guarantee that global objects will be ∗ laid out in memory in the order of declaration, so put these in ∗ different sections and use the linker script to order them. ∗ / 8

  10. Systems software is written in... ... in C, mostly, right? With a bit of assembly? / ∗ NOTE: gcc doesn’t actually guarantee that global objects will be ∗ laid out in memory in the order of declaration, so put these in ∗ different sections and use the linker script to order them. ∗ / pmd t pmd0[PTRS PER PMD] attribute (( section (”. data..vm0.pmd”), aligned(PAGE SIZE))); pgd t swapper pg dir[PTRS PER PGD] attribute (( section (”. data..vm0.pgd”), aligned(PAGE SIZE))); pte t pg0[PT INITIAL ∗ PTRS PER PTE] attribute (( section (”. data..vm0.pte”), aligned(PAGE SIZE))); 8

  11. Systems software is written in... ... in C, mostly, right? With a bit of assembly? / ∗ NOTE: gcc doesn’t actually guarantee that global objects will be ∗ laid out in memory in the order of declaration, so put these in ∗ different sections and use the linker script to order them. ∗ / pmd t pmd0[PTRS PER PMD] attribute (( section (”. data..vm0.pmd”), aligned(PAGE SIZE))); pgd t swapper pg dir[PTRS PER PGD] attribute (( section (”. data..vm0.pgd”), aligned(PAGE SIZE))); pte t pg0[PT INITIAL ∗ PTRS PER PTE] attribute (( section (”. data..vm0.pte”), aligned(PAGE SIZE))); Semantically, this is crucial! 8

  12. It’s this whole other language / ∗ Put page table entries (swapper pg dir) as the first thing ∗ in .bss. This ensures that it has bss alignment (PAGE SIZE). ∗ / . = ALIGN(bss align); .bss : AT(ADDR(.bss) − LOAD OFFSET) { ∗ (.data..vm0.pmd) ∗ (.data..vm0.pgd) ∗ (.data..vm0.pte) ∗ (.bss..page aligned) ∗ (.dynbss) ∗ (.bss) ∗ (COMMON) } 9

  13. Command lines are languages too Usage: /usr/local/bin/ld.bfd [options] file... Options: -e ADDRESS, --entry ADDRESS Set start address -E, --export-dynamic Export all dynamic symbols -O Optimise output file -r, -i, --relocatable Generate relocatable output -R FILE, --just-symbols FILE Just link symbols -T FILE, --script FILE Read linker script -(, --start-group Start a group -), --end-group End a group --as-needed Only set DT_NEEDED for following d -Bstatic, -dn, -static Do not link against shared librari -Bsymbolic Bind global references locally --defsym SYMBOL=EXPRESSION Define a symbol --gc-sections Remove unused sections (on some ta 10 --sort-section name|align Sort sections by name or maximum a

  14. Doesn’t this matter only for obscure systems code? void *malloc(size_t sz) { /* my own malloc */ } int main(void) { // ... int *is = malloc(42 * sizeof (int)); } Will it call my malloc() or the “other” one? Depends: � statically or dynamically linked? � what linker options? � what compiler options? � where does the other malloc() come from? 11

  15. Linker-speak: what it’s used for � memory layout � memory placement � inter-module encapsulation � inter-module binding � inter-module versioning � link-time deduplication � build-time flexibility & configuration � extensibility � instrumentation � introspection � ... 12

  16. Linker-speak: where it’s specified � early Unix documentation � man pages � folklore � source code � the minds of hackers 13

  17. One good linker deserves another � 1972: AT&T Unix linker � 1977: BSD linker � c.1983: original GNU linker � 1988: System V r4 linker (introduces ELF) � c.1990: GNU BFD linker � 2008: GNU gold linker � c.2012: LLVM lld linker A common ambition � be “mostly like that other linker” � can I link my programs yet? do they seem to work? Other platforms are available... 14

  18. Back to the kernel ld -m elf_x86_64 --build-id -o vmlinux \ -T arch/x86/kernel/vmlinux.lds \ arch/x86/kernel/head{_64,64,}.o \ arch/x86/kernel/init_task.o init/built-in.o \ --start-group \ ... # snip Questions we could ask: � does the output binary do the right thing? � are we using the linker the right way [for that]? � did the linker do its job correctly? 15

  19. Back to the kernel ld -m elf_x86_64 --build-id -o vmlinux \ -T arch/x86/kernel/vmlinux.lds \ arch/x86/kernel/head{_64,64,}.o \ arch/x86/kernel/init_task.o init/built-in.o \ --start-group \ ... # snip Questions we could ask: � does the output binary do the right thing? � are we using the linker the right way [for that]? � did the linker do its job correctly? 15

  20. First step: executable spec for an ELF static linker Lem spec of ELF static linking � ELF file format � executable, actually working linker! � architectures: x86-64 and partial AArch64, PPC64 � readable! comments, factoring About 2 person-years of effort so far... 16

  21. What it can do Link small programs against a small/real libc (uClibc) � hello, bzip2, ... � GNU C library exercises a lot of linker features � “almost works” Next step: link checker � take a link job + output, answers y/n � challenge: accommodate looseness � ordering, padding, merging, discarding, relax / opt ... 17

  22. What’s involved � read command line � gather input files (incl. archives, scripts) � resolve symbols � discard unneeded inputs � size support structures (GOT, PLT, ...) � interpret linker script... � ... one pass to define & size output � ... another pass to place output � complete support structures � apply relocations � write output file 18

  23. A specification of sorts ld -o OUTPUT /lib/crt0.o hello.o -lc � -lc maps to the archive libc.a Other linkers sometimes do something slightly different... 19

  24. A more precise specification def is eligible = ( fun ( ∗ ... ∗ ) − > let let ( ∗ snip more supporting definitions ... ∗ ) in let ref and def are in same archive = match (def coords, ref coords) with (InArchive(x1, ) :: , InArchive(x2, ) :: ) − > x1 = x2 | − > false end in ( ∗ main eligibility predicate ∗ ) if ref is defined or common symbol then def sym is ref sym else if ref is unnamed then false ( ∗ never match empty names ∗ ) else if def in archive <> Nothing then 20

  25. Is that enough? Is it correct? ELF file format spec is quite well validated. Linking spec is not quite a complete spec of real linking � some looseness (e.g. in link order) not captured yet � ABI-specific optimisations not modelled → not yet usable as test oracle, but not far off... More than a reference implementation � ... capture space of permitted links � usable in proof 21

  26. Use in proof � extracted to Isabelle/HOL ( 33,150 lines) � proved termination of linker on all inputs � (around 1,500 lines) � proved a sample correctness theorem � about (very simple) relocation on AMD64 � around 4,500 lines � ... mostly re-usable lemmas 22

  27. Reflections of a systems hacker Getting used to functional style is no biggie. But � can’t forget performance � tool maturity matters � linguistic convenience matters � type-theoretic errors/problems can be inscrutable � even to the fp-competent 23

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Final Salary Linking Quiz time What is final salary linking ? A final salary link means when

Final Salary Linking Quiz time What is final salary linking ? A final salary link means when

Final Salary Linking Quiz time What is final salary linking ? A final salary link means when a member retires, if they have membership in the 1995/2008 Scheme, their benefits will based on their pensionable pay on or near their retirement

307 views • 17 slides
TAX REFORM: WHAT IT DOES, WHAT IT MEANS TO YOU DISCLAIMER These materials, and the accompanying

TAX REFORM: WHAT IT DOES, WHAT IT MEANS TO YOU DISCLAIMER These materials, and the accompanying

TAX REFORM: WHAT IT DOES, WHAT IT MEANS TO YOU DISCLAIMER These materials, and the accompanying oral presentation, are for educational purposes only and are not intended to be written advice concerning one or more Federal tax matters

793 views • 75 slides
When (Low ) Pow er Really Matters When (Low ) Pow er Really Matters When (Low ) Pow er Really

When (Low ) Pow er Really Matters When (Low ) Pow er Really Matters When (Low ) Pow er Really

When (Low ) Pow er Really Matters When (Low ) Pow er Really Matters When (Low ) Pow er Really Matters When (Low ) Pow er Really Matters Yogesh K. Ramadass, AnanthaGroup Microsystems Technology Laboratory Outline Outline Outline Outline

507 views • 36 slides
Linking Linking the the Digital Ag Digital Agend enda to r to rur ural al and spar and

Linking Linking the the Digital Ag Digital Agend enda to r to rur ural al and spar and

SEDEC Commission Meeting, Committee of the Regions Brussels, 20 April 2016 Linking Linking the the Digital Ag Digital Agend enda to r to rur ural al and spar and sparsel sely popula y populated ted ar areas eas to to boost boost

428 views • 12 slides
Using Hospital Data to Measure Quality of Care and Linking it to DRG of Care and Linking it to

Using Hospital Data to Measure Quality of Care and Linking it to DRG of Care and Linking it to

Using Hospital Data to Measure Quality of Care and Linking it to DRG of Care and Linking it to DRG (Case-Mix) Payments Presented by Jugna Shah, MPH President, Nimitt Consulting Inc. Nordic Case-Mix Conference Helsinki, Finland J ne 2010

450 views • 21 slides
Entity Linking Enityt Linking Laura Dietz dietz@cs.umass.edu University of Massachusetts Use

Entity Linking Enityt Linking Laura Dietz dietz@cs.umass.edu University of Massachusetts Use

Entity Linking Enityt Linking Laura Dietz dietz@cs.umass.edu University of Massachusetts Use cursor keys to fl ip through slides. Problem: Entity Linking Query Entity NIL Given query mention in a source document, identify which Wikipedia

938 views • 59 slides
linking, cross-lingual entity linking) TAC 2011 Summarization Track Guided Summarization task

linking, cross-lingual entity linking) TAC 2011 Summarization Track Guided Summarization task

Overview of the TAC2011 Summarization (Guided, AESOP, MultiLing) RTE (within a corpus including novelty detection and ablation testing) Knowledge Base Population (monolingual entity linking, cross-lingual entity linking) TAC 2011 Summarization

596 views • 10 slides
DYNAMIC LINKING CONSIDERED HARMFUL 1 WHY WE NEED LINKING Want to access code/data defined

DYNAMIC LINKING CONSIDERED HARMFUL 1 WHY WE NEED LINKING Want to access code/data defined

DYNAMIC LINKING CONSIDERED HARMFUL 1 WHY WE NEED LINKING Want to access code/data defined somewhere else (another file in our project, a library, etc) In compiler-speak, we want symbols with external linkage I only really care

563 views • 39 slides
Titus 1:5-9 It matters who you are as a leader and it matters what you do as a leader. God is

Titus 1:5-9 It matters who you are as a leader and it matters what you do as a leader. God is

Leadership Matters (Verb) I Titus 1:5-9 It matters who you are as a leader and it matters what you do as a leader. God is primarily interested in who you are and then what you do (Daniel Akin). The Pastoral Crucible I.

600 views • 23 slides
Linking Land Use and Water Marjo Curgus Del Corazon Consulting Why Does Linking Land Use and

Linking Land Use and Water Marjo Curgus Del Corazon Consulting Why Does Linking Land Use and

Linking Land Use and Water Marjo Curgus Del Corazon Consulting Why Does Linking Land Use and Water Matter? Your Logo or Name Here Paradigm Shift From S u p p l y S i d e Trea eatment tment Acq Acquisition uisition Infr Infrastr

217 views • 18 slides
(CLOJURE) ENTITY LINKING IN FOR FUN @Sojoner AGENDA Motivation Entity linking

(CLOJURE) ENTITY LINKING IN FOR FUN @Sojoner AGENDA Motivation Entity linking

(CLOJURE) ENTITY LINKING IN FOR FUN @Sojoner AGENDA Motivation Entity linking Reflector overview Represent the data A bit code Learnings MOTIVATION practicing Clojure How will the backend &amp;

739 views • 25 slides
S et the Bar Low. Be a WINNER every time. Public Power Matters Public Power Matters Innovation

S et the Bar Low. Be a WINNER every time. Public Power Matters Public Power Matters Innovation

S et the Bar Low. Be a WINNER every time. Public Power Matters Public Power Matters Innovation Workforce Advocacy Y our S tory Rates Matter Matters Matters Matters Matters Its the Rates, S tupid! Innovation Matters We must

280 views • 26 slides
1 K-means clustering The K-means clustering algorithm can be seen as applying the EM algorithm to

1 K-means clustering The K-means clustering algorithm can be seen as applying the EM algorithm to

Statistical Modeling and Analysis of Neural Data (NEU 560) Princeton University, Spring 2018 Jonathan Pillow Lecture 18 notes: K-means and Factor Analysis Tues, 4.17 1 K-means clustering The K-means clustering algorithm can be seen as

547 views • 3 slides
Linking Today Static linking Object files Static &amp; dynamically linked libraries

Linking Today Static linking Object files Static &amp; dynamically linked libraries

Linking Today Static linking Object files Static &amp; dynamically linked libraries Next time Exceptional control flows Chris Riesbeck, Fall 2011 Original: Fabian Bustamante Wednesday, November 16, 2011 Checkpoint Wednesday,

507 views • 29 slides
Linking linking Weak forms Linking Weak forms Elision (sound cut)

Linking linking Weak forms Linking Weak forms Elision (sound cut)

Linking linking Weak forms Linking Weak forms Elision (sound cut) Linking Weak forms Elision Assimilation (sound change) Linking Weak forms Elision Assimilation Homophones Linking

658 views • 27 slides
Clustering with k-means and Gaussian mixture distributions Machine Learning and Object Recognition

Clustering with k-means and Gaussian mixture distributions Machine Learning and Object Recognition

Clustering with k-means and Gaussian mixture distributions Machine Learning and Object Recognition 2016-2017 Jakob Verbeek Practical matters Online course information Schedule, slides, papers

439 views • 39 slides
Mobile Networks 2015.08.08 10:30 2015.08.08 10:48 2015.08.08 11:01 2015.08.08 11:29

Mobile Networks 2015.08.08 10:30 2015.08.08 10:48 2015.08.08 11:01 2015.08.08 11:29

CoupledLP: Link Prediction in Coupled Networks Yuxiao Dong # , Jing Zhang + , Jie Tang + , Nitesh V. Chawla # , Bai Wang* * Beijing University of Posts # University of Notre Dame + Tsinghua University and Telecommunications 1 Mobile Networks

559 views • 43 slides
Linking 15-213: Introduc0on to Computer Systems 11 th Lecture,

Linking 15-213: Introduc0on to Computer Systems 11 th Lecture,

Carnegie Mellon Linking 15-213: Introduc0on to Computer Systems 11 th Lecture, Sept. 30, 2010 Instructors: Randy Bryant and Dave OHallaron 1 Carnegie Mellon Today

1.09k views • 51 slides
ARM Cortex-M4 Programming Model Stacks and Subroutines Textbook: Chapter 8.1 - Subroutine

ARM Cortex-M4 Programming Model Stacks and Subroutines Textbook: Chapter 8.1 - Subroutine

ARM Cortex-M4 Programming Model Stacks and Subroutines Textbook: Chapter 8.1 - Subroutine call/return Chapter 8.2,8.3 Stack operations Chapter 8.4, 8.5 Passing arguments to/from subroutines ARM Cortex-M Users Manual, Chapter 3

875 views • 32 slides
VI.3 Named Entity Reconciliation Problem: Same entity appears in Different spellings

VI.3 Named Entity Reconciliation Problem: Same entity appears in Different spellings

VI.3 Named Entity Reconciliation Problem: Same entity appears in Different spellings (incl. misspellings, abbr., multilingual, etc.) E.g.: Brittnee Speers vs. Britney Spears, M-31 vs. NGC 224, Microsoft Research vs. MS Research, Rome vs.

396 views • 27 slides
Practical Bioinformatics Mark Voorhies 5/15/2015 Mark Voorhies Practical Bioinformatics

Practical Bioinformatics Mark Voorhies 5/15/2015 Mark Voorhies Practical Bioinformatics

Practical Bioinformatics Mark Voorhies 5/15/2015 Mark Voorhies Practical Bioinformatics Gotchas Indentation matters Mark Voorhies Practical Bioinformatics Clustering exercises Visualizing the distance matrix Mark Voorhies Practical

705 views • 46 slides
Stratification and intergenerational Mobility in Africa - Examining Linkages with Pre-colonial

Stratification and intergenerational Mobility in Africa - Examining Linkages with Pre-colonial

Stratification and intergenerational Mobility in Africa - Examining Linkages with Pre-colonial African Society Patricia Funjika Department of Economics - University of Pretoria June 3, 2019 1 / 28 Outline Motivation 1 Objectives 2

474 views • 28 slides
October October October October 27 27 27-28, 28, 28, 28, 2014 2014 2014 2014 HHS,

October October October October 27 27 27-28, 28, 28, 28, 2014 2014 2014 2014 HHS,

October October October October 27 27 27-28, 28, 28, 28, 2014 2014 2014 2014 HHS, Washington, DC HHS, Washington, DC Part of a multi-year NCVHS effort to understand how communities can become learning systems for health

487 views • 14 slides
diameter, radius, discrete radius D : M M R distance function, S M , | S | &lt;

diameter, radius, discrete radius D : M M R distance function, S M , | S | &lt;

diameter, radius, discrete radius D : M M R distance function, S M , | S | &lt; diam D ( S ) := max x , y S D ( x , y ) (diameter of S ) rad D ( S ) := min m M max x S D ( x , m ) (radius of S ) drad D ( S ) :=

352 views • 22 slides

More recommend