编写一个最小的 ELF 程序,来加强对 ELF 文件格式的掌握和理解。(参考:《程序员的自我修养》一书)
这里采用 GCC 内置汇编代码的编写来避免 libc 中自带的库函数代码。
char *str="H3ll0\n";
void print(){
"movl $6,%%edx \n\t"
"movl %0,%%ecx \n\t"
"movl $0,%%ebx \n\t"
"movl $4,%%eax \n\t"
"int $0x80 \n\t"
void exit(){
"movl $42,%ebx \n\t"
"movl $1,%eax \n\t"
"int $0x80 \n\t"
void nomain(){
这里需要编译成 32 位的程序,在 64 位机器下需要使用下面的命令:
gcc -c -m32 -fno-builtin tiny.c
ld -m elf_i386 -static -e nomain -o tiny tiny.o
1112 个字节。还可以继续削减他的大小。
nick@nick-machine:~/testelf$ readelf -S ./tiny
There are 9 section headers, starting at offset 0x2f0:
Section Headers:
[Nr] Name Type Addr Off Size ES Flg Lk Inf Al
[ 0] NULL 00000000 000000 000000 00 0 0 0
[ 1] .text PROGBITS 08048094 000094 000042 00 AX 0 0 1
[ 2] .rodata PROGBITS 080480d6 0000d6 000007 00 A 0 0 1
[ 3] .eh_frame PROGBITS 080480e0 0000e0 00007c 00 A 0 0 4
[ 4] .data PROGBITS 0804915c 00015c 000004 00 WA 0 0 4
[ 5] .comment PROGBITS 00000000 000160 000035 01 MS 0 0 1
[ 6] .shstrtab STRTAB 00000000 0002ae 000042 00 0 0 1
[ 7] .symtab SYMTAB 00000000 000198 0000e0 10 8 7 4
[ 8] .strtab STRTAB 00000000 000278 000036 00 0 0 1
Key to Flags:
W (write), A (alloc), X (execute), M (merge), S (strings)
I (info), L (link order), G (group), T (TLS), E (exclude), x (unknown)
O (extra OS processing required) o (OS specific), p (processor specific)
9 个段,首先 text 、rodata、data
和 comment
通过自定义 ld 脚本的方法,来控制 ld 链接器的行为。
. = 0x8048000+SIZEOF_HEADERS;
tinytext : { *(.text) *(.data) *(.nodata) }
/DISCARD/ : { *(.comment) *(.eh_frame)}
nick@nick-machine:~/testelf$ gcc -m32 -c ./tiny.c -fno-builtin -o tiny.o
nick@nick-machine:~/testelf$ ld -static -m elf_i386 -T tiny.lds ./tiny.o -o tiny
查看段信息,这是被合并成了一个段 tinytext
,权限是 WAX。
nick@nick-machine:~/testelf$ readelf -S tiny
There are 6 section headers, starting at offset 0x190:
Section Headers:
[Nr] Name Type Addr Off Size ES Flg Lk Inf Al
[ 0] NULL 00000000 000000 000000 00 0 0 0
[ 1] .rodata PROGBITS 08048074 000074 000007 00 A 0 0 1
[ 2] tinytext PROGBITS 0804807c 00007c 000048 00 WAX 0 0 4
[ 3] .shstrtab STRTAB 00000000 000162 00002c 00 0 0 1
[ 4] .symtab SYMTAB 00000000 0000c4 000080 10 5 4 4
[ 5] .strtab STRTAB 00000000 000144 00001e 00 0 0 1
Key to Flags:
W (write), A (alloc), X (execute), M (merge), S (strings)
I (info), L (link order), G (group), T (TLS), E (exclude), x (unknown)
O (extra OS processing required) o (OS specific), p (processor specific)
640 个字节,还可以使用 strip 来去除 symbol 信息。
nick@nick-machine:~/testelf$ ls -al ./tiny
-rwxrwxr-x 1 nick nick 640 5月 7 16:40 ./tiny
这里就只有 384 字节。
nick@nick-machine:~/testelf$ strip tiny
nick@nick-machine:~/testelf$ ls -al ./tiny
-rwxrwxr-x 1 nick nick 384 5月 7 16:45 ./tiny