llext: Support non-paired RISC-V PCREL Relocation

[WorldofJARcraft]

Currently, RISC-V's architecture-specific relocations assume that all relocations of type R_RISCV_PCREL_LO12_I and _S are processed immediately after the R_RISCV_PCREL_HI20 relocation that they share a relocation target with. While this is the case most of the time, the RISC-V PSABI specification does not guarantee that. This commit corrects this by determining the R_RISCV_PCREL_HI20 relocation based on the symbol value of the R_RISCV_PCREL_LO12 relocation, as specified in the PSABI.

[lyakh]

Some clean up around function return codes and arguments is needed, some further comments are optional

[lyakh]

I see that this is the original text just moved by you, but maybe we can make the guess that "ex" stands for "example" to help future readers

[WorldofJARcraft]

Updated the comment

[lyakh]

by convention LLEXT functions have ldr and ext as their first parameters

[WorldofJARcraft]

Changed it accordingly in both new functions

[lyakh]

same about argument order and removing section_idx and entry_idx. In general this looks like quite a large number of arguments, it often means, that some can be eliminated relatively easily

[WorldofJARcraft]

I have removed the parameters that can be computed efficiently.

[lyakh]

would it fit within 100 characters if you join the two lines? You need to check the error code

[WorldofJARcraft]

Added the error check and reformatted the line

[lyakh]

section_idx and entry_idx are only used in this print. Move it out of the function and remove the function arguments.

[WorldofJARcraft]

Done

[lyakh]

missing dereference asterisk *

[WorldofJARcraft]

Added *

[lyakh]

this isn't in the original code and is superfluous - as long as you add an error check in the caller

[WorldofJARcraft]

Removed

[pillo79]

Agree with all comments from @lyakh.
Also, for easier review, can you split the refactor that creates llext_lookup_symbol in a separate commit? Thanks!

[WorldofJARcraft]

Agree with all comments from @lyakh. Also, for easier review, can you split the refactor that creates llext_lookup_symbol in a separate commit? Thanks!

I have split the refactor into a separate commit.

[pillo79]

Thanks for the refactor!
This PR adds a lot of RISCV-specific stuff to the common LLEXT code; I think it's a pity and I'm not yet convinced this is necessary.

If the llext_lookup_symbol() function was exported in include/llext/llext_internal.h, it should be possible to move the whole llext_riscv_find_sym_pcrel() function to the arch-specific arch/riscv/core/elf.c and only invoke it when those relocations are encountered.
But I am probably missing something big! 🙂

[WorldofJARcraft]

I can move the new llext_riscv_find_sym_pcrel function into the architecture-specific elf.c, that would not be a problem. You are right, the function is architecture-specific.
However, the function needs access to the struct llext_loader and the struct llext which are currently not provided via the arch_elf_relocate api, which is why it needs to be called from llext_link. I can add these additional parameters to arch_elf_relocate and remove the RISCV-specific code from llext_link.c if you prefer.

[WorldofJARcraft]

I believe the RISC-V PSABI breaks one of the fundamental assumptions that were made when originally designing the API: the PCREL_LO12 relocations cannot be relocated with just the information in the ELF relocation entry and symbol. The symbol value for these relocations is actually an instruction offset from the beginning of the current segment. The instruction at this offset is of type PCREL_HI20. The immediate for the PCREL_LO12 instruction is the lower 12 bits of the relocation target computed for the PCREL_HI20 relocation; together, these two types of relocation allow accesses within a 32-bit distance from the PCREL_HI20 relocation.
This causes the following problem: when a PCREL_LO12 relocation is encountered, I need to find the PCREL_HI20 relocation and compute the relocation target from here, using the lower 12 bits for the PCREL_LO12 relocation. To be able to do that, I need the additional parameters mentioned above that arch_elf_relocate does not currently provide.

[WorldofJARcraft]

My original code used the assumption that the PCREL_LO12 is always processed immediately after the matching PCREL_HI20. This allowed me to store the jump target in a variable.
However, I realized this is not guaranteed by the specification. I also managed to break this with one of my llext extensions.

[pillo79]

Not a fan of the new llext_text_start but otherwise LGTM, thanks for your efforts!

[WorldofJARcraft]

I will try to build a regression test for this feature, similar to the one in #83198. I have not yet understood how to trigger the edge case from C reliably, so I will use another assembly listing for this.

[teburd]

Since we now have the symbol table accessible to us from the loader, perhaps giving an index into the symbol table is enough rather than the elf_sym_t, sym_name, and sym_base_addr?

Those things could be obtained via accessors/helper functions.

[WorldofJARcraft]

I will try to build a regression test for this feature, similar to the one in #83198. I have not yet understood how to trigger the edge case from C reliably, so I will use another assembly listing for this.

I have added a commit with this test. I have verified manually that it fails with the changes from this PR not applied and that that it passes when the changes are applied.
Currently, RISC-V tests do not run in the CI with twister (#85960), so you have to execute the test manually to check my work. Also, there appears to be an assertion failure in an unrelated test on RISC-V (test_inspect, probably due to linker flags).

[WorldofJARcraft]

Since we now have the symbol table accessible to us from the loader, perhaps giving an index into the symbol table is enough rather than the elf_sym_t, sym_name, and sym_base_addr?

Those things could be obtained via accessors/helper functions.

I will eliminate the loc, sym, sym_base_addr, sym_name arguments and replace them with helper functions, as they can be computed from data that is already in memory.

[pillo79]

[...] there appears to be an assertion failure in an unrelated test on RISC-V (test_inspect, probably due to linker flags).

Thanks for noticing, did not realize RISC-V was disabled in Twister! (why?)
Submitted a fix for this in #85989.

[WorldofJARcraft]

RISC-V tests currently do not run because of the min_ram and min_flash attributes in testcase.yaml. The qemu "boards" for RISC-V do not specify RAM and flash, so twister deems them unsuitable.

[pillo79]

Comments on the new functions in llext_internal.h should be addressed IMO.

Not blocking since the latest changes were requested by Tom, but I feel that this will bring LLEXT to a more fragmented situation and I would like to avoid that if possible.

[pillo79]

This and the following "writing relocation symbol" LOG_DBGs have provided very useful information when trying to debug linker issues, and are now lost to arch-specific code.

IMHO losing this common part will make LLEXT more fragmented and difficult to debug in the future.

[teburd]

This can still be done but would require calling the accessors (cheap). The LOG_DBG and lookups can be wrapped in an ifdef CONFIG_LLEXT_LOG_LEVEL_DBG to avoid doing stuff we don't need to when its not debug logging.

I agree having these log messages can be invaluable in debugging relocation/linking issues. Please do try and maintain common log messages, if needed as noted here wrap a block in an ifdef.

[WorldofJARcraft]

I have kept these log messages (at the expense of extra load calls when LOG_INF/LOG_DBG is enabled).

[teburd]

Patch set looks really nice now, thank you for the hard work!

[pillo79]

Looks awesome. Thank you for your efforts, much appreciated! 🙇

[WorldofJARcraft]

I added an ifdef guard to cover cases where CONFIG_LOG is disabled - this should fix the checks.