-
-
Notifications
You must be signed in to change notification settings - Fork 45
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Update ELF part #103
Draft
DeanoBurrito
wants to merge
1
commit into
master
Choose a base branch
from
dt-elf-update
base: master
Could not load branches
Branch not found: {{ refName }}
Loading
Could not load tags
Nothing to show
Loading
Are you sure you want to change the base?
Some commits from the old base branch may be removed from the timeline,
and old review comments may become outdated.
Draft
Update ELF part #103
Changes from all commits
Commits
File filter
Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -1,6 +1,11 @@ | ||
| # Loading ELFs | ||
|
|
||
| In this part we're going to look at the following topics: | ||
| In this part we're going to look at the executable and linker file (ELF) format, and how we can write a loader for it. This will let us load programs along the kernel (like hardware drivers we detect at runtime), or load programs into userspace! | ||
|
|
||
| This part is organised as follows: | ||
|
|
||
| - [High-level Overview](01_Overview.md) A high level look at how the ELF specifications are structured, how to approach them and get the info we need. | ||
| - [Theory](02_Elf_Theory.md) We'll look at what the pieces of an ELF file are, which ones are important to us, and how they fit together. | ||
| - [Simple Loader](03_Simple_Loader.md) In this chapter we'll implement a simple loader for fixed-position executables. | ||
| - [Position Independent Loader])(04_Position_Independent_Loader.md) Here we'll look at extending our loader to handle position-independent executables and shared objects. | ||
|
|
||
| - [General ELF Theory](01_Elf_Theory.md) How loading an executable works, and the ELF format | ||
| - [Loading A Program](02_Loading_And_Running.md) What is needed to execute an "ELF" file | ||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,85 @@ | ||
| # Executable and Linkable Format | ||
|
|
||
| The *executable and linkable format* is an open standard for programs, libraries, object files waiting to be linked. It's flexible enough that it's been adapted over time as new technologies have come about, while remaining backwards compatible. It's also the default format for most open operating systems. | ||
|
|
||
| That's not to say ELF is the only format available, there are others like mach-o or portable executable (PE), but these are intended for use with their associated operating systems - so there can be some friction when using them elsewhere. We'll be using ELF as it's the most suitable for our purposes. | ||
|
|
||
| There is also the option of using our own custom file format, but that presents more challeneges, like adding support for it to our compiler and linker (or even writing our own!), and possibly other parts of the toolchain. This approach is not recommended. | ||
|
|
||
| ## ELF Specifications | ||
|
|
||
| - how to get them | ||
|
|
||
| Jumping into the elf64 specification might seem confusing as it contains a lot of definitions but doesn't explain what to do with them. It's because elf64 is treated as an extension to the original elf specification (now referred to as elf32). The elf32 spec contains more descriptions and sets out how the mechanical parts of ELF work. So it's best to look at the original ELF document for the details, but keep in mind any changes made in the elf64 extension. These changes are limited to re-arranging structure layouts and updating the types used. | ||
|
|
||
| There is one more part of ELF that we'll need for the complete picture: the platform-specific spec. This is sometimes referred to as the *ps-abi* (platform specific ABI). Because different architectures like to run code in different ways, ELF leaves room in some areas for the cpu architecture to define certain details. These parts of the specification are obvious and we'll know when we need to consult the ps-abi. Since we're targeting x86_64, we're interested in the x86_64 elf ps-abi. | ||
|
|
||
| Armed with these three documents we can begin to look at the format itself! | ||
|
|
||
| ### ELF Data Types | ||
|
|
||
| The ELF specifications define some basic types used throughout the rest of the specification. We're also going to define them, so we can reference them later, it's important to note that these types have different definitions in elf32 and elf64. Since we are targeting x86_64, we're going to use the elf64 versions. | ||
|
|
||
| ```c | ||
| typedef uint64_t Elf64_Addr; | ||
| typedef uint64_t Elf64_Off; | ||
| typedef uint16_t Elf64_Half; | ||
| typedef uint32_t Elf64_Word; | ||
| typedef int32_t Elf64_Sword; | ||
| typedef uint64_t Elf64_Xword; | ||
| typedef int64_t Elf64_Sxword; | ||
| typedef unsigned char Elf64_UChar; | ||
| ``` | ||
|
|
||
| ELF64 also specifies an alignment for all of these types, however it's the types naturally alignment, which any reputable compiler should take care of. If we wanted to be pedantic we could add the alignment info to those types ourselves with `__attribute__((aligned(your_alignment_here)))` before the type name (remember this is a gcc/clang compiler extension). | ||
|
|
||
| ### Abstracting Away the Specifics | ||
| - if you want to support both (or think you might, use a macro for the types) - np-syslib ref | ||
|
|
||
| ## Parts of an ELF file | ||
|
|
||
| At a high level an ELF can have up to four main parts: the ELF header, an array of section headers, an array of program headers, and then space for the data referred to by those headers. There's not much to say about the data area, it's simply storage space for the data referred to by the section/program headers. | ||
|
|
||
| ### ELF Header | ||
|
|
||
| The start of a valid ELF file contains the ELF header, which gives us high level info about the file. All of this info should be validated to be correct for the machine the program is being loaded on. | ||
|
|
||
| Let's take a look at the layout of the ELF header, and some associated magic numbers. | ||
|
|
||
| ```c | ||
| struct Elf64_Ehdr | ||
| { | ||
| Elf64_UChar e_ident[16]; | ||
| Elf64_Half e_type; | ||
| Elf64_Half e_machine; | ||
| Elf64_Word e_version; | ||
| Elf64_Addr e_entry; | ||
| Elf64_Off e_phoff; | ||
| Elf64_Off e_shoff; | ||
| Elf64_Word e_flags; | ||
| Elf64_Half e_ehsize; | ||
| Elf64_Half e_phentsize; | ||
| Elf64_Half e_phnum; | ||
| Elf64_Half e_shentsize; | ||
| Elf64_Half e_shnum; | ||
| Elf64_Half e_shstrndx; | ||
| }; | ||
|
|
||
| #define EI_MAG0 0 | ||
| #define EI_MAG1 1 | ||
| #define EI_MAG2 2 | ||
| #define EI_MAG3 3 | ||
| #define EI_CLASS 4 | ||
| #define EI_DATA 5 | ||
| #define EI_VERSION 6 | ||
| #define EI_OSABI 7 | ||
| #define EI_ABIVERSION 8 | ||
| ``` | ||
|
|
||
| *Authors note: the names given to the magic numbers from the ELF specs are constructed in a way that makes them easy to figure out. For example EI_CLASS is the _E_lf header struct, _I_dent field and then the value of CLASS. Another example is EM_X86_64, which is _E_lf header, _M_achine field, with a value for x86_64.* | ||
|
|
||
| Starting with the `e_ident` field: this is an array of values describing what environment the ELF is intended for and a magic number to verify this is an ELF. The first 4 elements of the `e_ident` array (`EI_MAG0` to `EI_MAG3`) should be `{ 'E', 'L', 'F', 0x77 }`. | ||
|
|
||
| ### Sections | ||
|
|
||
| ### Segments |
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
There is a syntax error on the parenthesis.