Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Result mask for R_ARM_CALL/R_ARM_JUMP24 #305

Open
rui314 opened this issue Jan 7, 2025 · 1 comment
Open

Result mask for R_ARM_CALL/R_ARM_JUMP24 #305

rui314 opened this issue Jan 7, 2025 · 1 comment

Comments

@rui314
Copy link

rui314 commented Jan 7, 2025

ARM32 ELF psABI defines that the result mask for R_ARM_CALL and R_ARM_JUMP24 relocations is 0x03FFFFFE (search for 0x03FFFFFE in https://github.com/ARM-software/abi-aa/blob/main/aaelf32/aaelf32.rst). But isn't that a typo for 0x03FFFFFC?

R_ARM_CALL and R_ARM_JUMP24 are used for B, BL and BLX instructions whose immediate size is 24. You can see the instruction format at https://developer.arm.com/documentation/ddi0597/2024-12/A32-Instructions-by-Encoding/Branch--branch-with-link--and-block-data-transfer?lang=en.

0x03FFFFFE masks all but the middle 25 bits and yields a 2-byte aligned address. I may be missing something, but it looks like it's simply a typo for 0x03FFFFFC, which yields a 24 bit value with 4-byte alignment.
@smithp35
Copy link
Contributor

smithp35 commented Jan 7, 2025

This is my interpretation. I'll try and check with the original author of the document to see if I've missed anything.

Looking at the table. The intent is to calculate Result_Mask. The X is the 32-bit result of normal relocation processing is the result of ((S + A) | T) - P. Result_Mask is (X & 0x03FFFFFE). We then need to look up what to do with Result_Mask in Arm relocation actions by instruction type.

For B, BL<cond> , BL, BLX the Result_Mask is, strictly speaking, not used. Instead we have a special case See Call and jump relocations . This section talks about the various requirements for interworking between Arm and Thumb, including changing a BL to BLX and adding veneers/thunks, but is not specific about encoding the results. This requires looking at the Arm Architecture Reference Manual and deriving what needs to be done from the encodings.

Going back to the relocation mask I think there's two separate cases:
R_ARM_CALL (unconditional BL, BLX) can target Thumb instructions, which are 2-byte aligned. If the target is Arm the relocation must ensure that a BL is written with the immediate 4-byte aligned. If the target is Thumb the relocation must ensure BLX is written with the immediate 2-byte aligned. 0x03FFFFFE works for both of these cases, although more precisely it could be "0x03FFFFFE for Thumb destination, 0x03FFFFFC for Arm destination".

For R_ARM_JUMP24 which can only target Arm instructions I agree that 0x03FFFFC would be better.

As mentioned above, I'm not sure if the Result_Mask is that useful. I think it could be used to derive an alignment check, but in that case it would be better to mention that directly in the call-and-jump-relocations section.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@rui314 @smithp35