elf-mithril 0.0.1

data/.gitignore

@@ -0,0 +1,17 @@
+*.gem
+*.rbc
+.bundle
+.config
+.yardoc
+Gemfile.lock
+InstalledFiles
+_yardoc
+coverage
+doc/
+lib/bundler/man
+pkg
+rdoc
+spec/reports
+test/tmp
+test/version_tmp
+tmp

data/Gemfile

@@ -0,0 +1,3 @@
+source 'http://rubygems.org'
+gemspec
+gem 'bindata', github: "jbangert/bindata"

data/LICENSE.txt

@@ -0,0 +1,22 @@
+Copyright (c) 2013 Julian Bangert
+
+MIT License
+
+Permission is hereby granted, free of charge, to any person obtaining
+a copy of this software and associated documentation files (the
+"Software"), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish,
+distribute, sublicense, and/or sell copies of the Software, and to
+permit persons to whom the Software is furnished to do so, subject to
+the following conditions:
+
+The above copyright notice and this permission notice shall be
+included in all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
+NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
+LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
+OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
+WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

data/README.md

@@ -0,0 +1,29 @@
+# Mithril
+
+In Soviet Russia, Mithril forges ELF.
+
+## Installation
+
+Add this line to your application's Gemfile:
+
+    gem 'elf-mithril'
+
+And then execute:
+
+    $ bundle
+
+Or install it yourself as:
+
+    $ gem install elf-mithril
+
+## Usage
+
+TODO: Write usage instructions here
+
+## Contributing
+
+1. Fork it
+2. Create your feature branch (`git checkout -b my-new-feature`)
+3. Commit your changes (`git commit -am 'Add some feature'`)
+4. Push to the branch (`git push origin my-new-feature`)
+5. Create new Pull Request

data/Rakefile

@@ -0,0 +1 @@
+require "bundler/gem_tasks"

data/bin/mithril-ld

@@ -0,0 +1,76 @@
+#!/usr/bin/env ruby
+$LOAD_PATH.unshift File.join(File.dirname(__FILE__), '..', 'lib')
+require 'mithril'
+module Elf
+  def self.newfile
+    ElfFile.new.tap {|x|
+      x.filetype = ElfFlags::Type::ET_EXEC
+      x.machine = ElfFlags::Machine::EM_X86_64 
+      x.version = ElfFlags::Version::EV_CURRENT
+      x.flags = 0
+      x.bits = 64
+      x.endian  = :little 
+      x.interp =  "/lib64/ld-linux-x86-64.so.2"
+    }
+  end
+  def self.linkfiles(outfile, infiles)
+    progbits = {}
+    symbols = {}
+    sect_map = {}
+    sect_offsets = {}
+    symbols = {}
+    infiles.each {|infile|
+      #link actual data
+      (infile.progbits + infile.nobits).each {|inbit|
+        outbit = (progbits[inbit.name] ||= Elf::ProgBits.new(inbit.name))
+        outbit.flags |= inbit.flags
+        outbit.align = [inbit.align, outbit.align].max
+        outbit.sect_type = inbit.sect_type
+        sect_offsets[inbit] = outbit.data.tell
+        sect_map[inbit] = outbit
+        outbit.data.write inbit.data.read #TODO: Handle align
+      }
+      # Link together symbol table. Note we do not support versioning in the poc
+      infile.symbols.each {|symbol|
+        next if symbol.name.empty?
+        next unless [Elf::STT::STT_OBJECT, Elf::STT::STT_FUNC, Elf::STT::STT_COMMON, Elf::STT::STT_NOTYPE].include? symbol.type
+
+        if (symbols.include? symbol.name)
+          next if symbol.weak? or symbol.undefined?
+          raise ArgumentError.new "Duplicate definition of symbol #{symbol.name}"  unless symbols[symbol.name].weak?  or symbols[symbol.name].undefined?  
+        end
+        symbols[symbol.name] = symbol.clone.tap{|outsym|
+          unless outsym.undefined?
+            outsym.sectoffset += sect_offsets[outsym.section]
+            outsym.section = sect_map[outsym.section]
+          end
+        }        
+      }
+    }
+    #TODO: mark per-object section symbols
+    progbits.values.each {|progbit| outfile.progbits << progbit   }
+    symbols.values.each {|sym| outfile.symbols << sym}
+    
+    infiles.map(&:relocations).flatten.each {|rela|
+      outfile.relocations << rela.clone.tap{|x|
+        x.offset += sect_offsets[x.section]
+        x.section = sect_map[x.section]
+        name = x.symbol.name
+        x.symbol = symbols[name]
+        x.is_dynamic = true
+        raise ArgumentError.new "Undefined symbol #{name}" if(x.symbol.nil?)
+      }
+    } #TODO: Produce dynsym
+    raise "Undefined entry point _start " unless symbols.include? "_start"
+    entry = symbols["_start"]
+    entry.section.addr = 0x40000
+    outfile.entry = entry.sectoffset + entry.section.addr
+    
+    outfile
+
+  end
+end
+file = Elf::linkfiles(Elf::newfile, ARGV[1..-1].map{|x| Elf::Parser::from_file(x)})
+
+Elf::Writer.to_file(ARGV[0], file)
+`chmod +x '#{ARGV[0]}'`

data/bin/mithril-rewrite

@@ -0,0 +1,14 @@
+#!/usr/bin/env ruby
+$LOAD_PATH.unshift File.join(File.dirname(__FILE__), '..', 'lib')
+require 'mithril'
+
+nginx_path = "/home/julian/important/12W/elf-policy/webserver-samples/nginx-install/sbin/"
+$parse = Elf::Parser.from_file (ARGV[0] || nginx_path + "nginx-ori")
+#binding.pry
+outfile=  ARGV[1] || nginx_path+"nginx"
+Elf::Writer::Writer.to_file(outfile ,$parse)
+`chmod +x #{outfile}`
+
+#pp parse # .instance_variables
+##TODO: Do enums as custom records.
+

data/bin/mithril-section-symbols

@@ -0,0 +1,12 @@
+#!/usr/bin/env ruby
+require 'mithril'
+require 'mithril/inject_symbols'
+
+Elf::rewrite(ARGV[0]){|file|
+  Elf::Policy::inject_symbols(file)
+ # if(file.symbols.include? "_dl_runtime_resolve")
+ #   print "detected ld.so, making _dl_runtime_resolve public"
+ #   file.symbols["_dl_runtime_resolve"].is_dynamic = true
+ # end
+}
+$LOAD_PATH.unshift File.join(File.dirname(__FILE__), '..', 'lib')

data/lib/mithril.rb

@@ -0,0 +1,6 @@
+require "mithril/version"
+require "mithril/elf"
+require "mithril/parser"
+require "mithril/writer"
+require "mithril/policy"
+require "mithril/inject_symbols"

data/lib/mithril/elf.rb

@@ -0,0 +1,220 @@
+# require 'bundler'
+require 'andand'
+require_relative 'elf_enums'
+require_relative 'elf_structs'
+require 'fileutils'
+
+require 'pp'
+require 'set'
+require 'segment_tree'
+require 'rbtree'
+#TODO: freeze some things after parse? 
+module Elf 
+  DT = ElfFlags::DynamicType
+  SHT = ElfFlags::SectionType
+  SHF = ElfFlags::SectionFlags
+  STB = ElfFlags::SymbolBinding
+  SHN = ElfFlags::SpecialSection
+  STT= ElfFlags::SymbolType
+  STV= ElfFlags::SymbolVisibility
+  ET = ElfFlags::Type
+  PT = ElfFlags::PhdrType
+  PF = ElfFlags::PhdrFlags
+  R = ElfFlags::Relocation
+  NOTE_ALIGN = 4
+  NOTE_FLAGS = SHF::SHF_ALLOC
+  NOTE_ENTSIZE =0
+  def self.rewrite(filename,&block)    
+    FileUtils::cp(filename,filename+".bak")
+    file = Elf::Parser::from_file(filename)
+    block.call(file)
+    Elf::Writer::Writer.to_file(filename,file)
+  end
+  class Dynamic
+    attr_accessor :bind_now, :symbolic, :needed, :init, :fini, :pltgot, :debug_val, :soname
+    attr_accessor :extra_dynamic, :soname, :init_array, :fini_array,:rpath
+    attr_accessor :gnu_version_basename #Name of the base GNU version (:global)
+
+    #TODO: I feel this should always be the SONAME, warn otherwise
+    attr_accessor :flags, :flags1
+    def initialize
+      @needed = []
+    end
+  end
+  class ProgBits
+    attr_accessor :data,:name, :addr, :flags, :align, :entsize
+    attr_accessor :phdr, :phdr_flags # Makes a PHDR for this section
+    attr_accessor :sect_type
+    def initialize(name,shdr = nil,data = "")
+      @data = StringIO.new(data)
+      @name = name
+      if shdr.nil?
+        @addr = nil
+        @flags = 0
+        @align = 0
+        @entsize = 0
+        @sect_type = 0
+      else
+        @addr = shdr.vaddr
+        @flags = shdr.flags
+        expect_value "PROGBITS link", shdr.link, 0
+        expect_value "PROGBITS info", shdr.info, 0
+        @align = shdr.addralign
+        @entsize = shdr.entsize # Expect 0 for now?
+        @sect_type = shdr.type.to_i
+        #      expect_value "PROGBITS entsize", @entsize,0
+        expect_value "Progbits must be full present", @data.size, shdr.siz
+      end
+      
+    end
+    def size
+      @data.size
+    end
+  end
+  class NoBits
+    attr_accessor :name, :addr, :flags, :align, :phdr, :phdr_flags, :size
+    def initialize(name,shdr)
+      @name = name
+      @addr = shdr.vaddr
+      @flags = shdr.flags
+      expect_value "NOBITS link", shdr.link, 0
+      expect_value "NOBITS info", shdr.info, 0
+      @align = shdr.addralign
+      @entsize = shdr.entsize # Expect 0 for now?
+      @size = shdr.siz
+      #      expect_value "PROGBITS entsize", @entsize,0
+    end
+    def data
+      StringIO.new().tap{|x|
+        BinData::Array.new(type: :uint8le,initial_length: @size).write x
+      }
+    end
+    def sect_type
+      SHT::SHT_NOBITS
+    end
+    def entsize
+      1
+    end
+   # def size
+   #   @size
+   # end
+  end
+  class GnuVersion 
+    attr_accessor :file,:version,:flags, :needed
+    attr_accessor  :parents
+    def initialize(file,version,flags,needed)
+      @file, @version,@flags,@needed = file,version,flags,needed
+      @parents = []
+    end
+  end
+
+  class Symbol #All values here are section offsets
+    attr_accessor :name, :section ,:type, :sectoffset, :bind, :size,:is_dynamic
+    attr_accessor :gnu_version, :hidden
+    attr_accessor :visibility # One of STV
+    attr_accessor :semantics # Either one of the SHNs or a nil for normal symbols
+    def dynamic?
+      is_dynamic
+    end
+    def undefined?
+      semantics == SHN::SHN_UNDEF
+    end
+    def weak?
+      bind == STB::STB_WEAK
+    end
+    def initialize(name,section,type,sectoffset, bind,size)
+      @name,@section, @type, @sectoffset, @bind, @size = name.to_s,section,type,sectoffset, bind,size
+      @is_dynamic = false
+      @gnu_version =  :global
+      @visibility = ElfFlags::SymbolVisibility::STV_DEFAULT
+      @hidden = false
+    end
+  end
+  class SymbolTable
+    #TODO: hook symbol.version=
+    include Enumerable
+    def initialize
+      @all_symbols = []
+      @named_symbols = {}
+      @versioned_symbols = {}
+    end
+    def each(&block)
+      @all_symbols.each(&block)
+    end
+    def <<(symbol)
+      @all_symbols << symbol
+      unless symbol.hidden
+        name = symbol.name
+        version = symbol.gnu_version
+        @versioned_symbols[version] ||= {}
+        if(@versioned_symbols[version].include? name)
+          #TODO: emit some form of warning!
+          #raise RuntimeError.new "Symbol #{name} version #{version} not unique"
+        else
+          @versioned_symbols[version][name] = symbol
+        end
+        @named_symbols[name] ||= []
+        @named_symbols[name] << symbol
+      end
+    end
+    
+    def lookup(name,version=nil)
+      if(version.nil?)
+        @named_symbols[name].andand {|x|
+          if(x.length > 1)
+            x = x.select{|i| i.gnu_version != :local and i.bind != STB::STB_LOCAL}
+            if(x.length > 1)
+              raise RuntimeError.new("Multiple definitions of symbol #{name}")
+            end
+          end
+          x.first
+        }
+      else
+        @versioned_symbols[version].andand{|x| x[name]}
+      end
+    end
+    def lookup_all(name)
+      @named_symbols[name]
+    end
+    def include?(name,version=nil)
+      if version.nil?
+        @named_symbols.include? name
+      else
+        @versioned_symbols[version].include? name
+      end
+    end
+    def [](name)
+      lookup(name)
+    end
+  end
+  class Relocation
+    attr_accessor :section, :offset, :type, :symbol, :addend
+    attr_accessor :is_dynamic #false for static, true otherwise.
+    attr_accessor :is_lazy # Is in PLT 
+    def initialize
+      @is_dynamic = false
+      @is_lazy = false
+    end
+  end
+  class TLS
+    attr_accessor :tbss,:tdata
+  end
+  class ElfFile
+    attr_accessor :filetype, :machine, :entry, :flags, :version
+    attr_accessor :progbits, :nobits, :dynamic,  :relocations
+    attr_accessor :gnu_tls
+    attr_accessor :symbols#, :relocated_symbols
+    attr_accessor :notes, :bits, :endian, :interp, :extra_phdrs
+    attr_accessor :pinned_sections #Some binaries rely on specific address layouts (esp. ld.so)
+    def initialize
+      @dynamic = Dynamic.new
+      @relocations = []
+      @progbits = []
+      @nobits = []
+      @pinned_sections = {}
+      @notes = []
+      @symbols = SymbolTable.new
+    end
+  end
+end
+

data/lib/mithril/elf_enums.rb

@@ -0,0 +1,581 @@
+#Inspired + partially derived from      http://golang.org/src/cmd/ld/elf.h?m=text
+=begin
+ /*
+ * Derived from:
+ * $FreeBSD: src/sys/sys/elf32.h,v 1.8.14.1 2005/12/30 22:13:58 marcel Exp $
+ * $FreeBSD: src/sys/sys/elf64.h,v 1.10.14.1 2005/12/30 22:13:58 marcel Exp $
+ * $FreeBSD: src/sys/sys/elf_common.h,v 1.15.8.1 2005/12/30 22:13:58 marcel Exp $
+ * $FreeBSD: src/sys/alpha/include/elf.h,v 1.14 2003/09/25 01:10:22 peter Exp $
+ * $FreeBSD: src/sys/amd64/include/elf.h,v 1.18 2004/08/03 08:21:48 dfr Exp $
+ * $FreeBSD: src/sys/arm/include/elf.h,v 1.5.2.1 2006/06/30 21:42:52 cognet Exp $
+ * $FreeBSD: src/sys/i386/include/elf.h,v 1.16 2004/08/02 19:12:17 dfr Exp $
+ * $FreeBSD: src/sys/powerpc/include/elf.h,v 1.7 2004/11/02 09:47:01 ssouhlal Exp $
+ * $FreeBSD: src/sys/sparc64/include/elf.h,v 1.12 2003/09/25 01:10:26 peter Exp $
+ *
+ * Copyright (c) 1996-1998 John D. Polstra.  All rights reserved.
+ * Copyright (c) 2001 David E. O'Brien
+ * Portions Copyright 2009 The Go Authors.  All rights reserved.
+ *
+ * Redistribution and use in source and binary forms, with or without
+ * modification, are permitted provided that the following conditions
+ * are met:
+ * 1. Redistributions of source code must retain the above copyright
+ *    notice, this list of conditions and the following disclaimer.
+ * 2. Redistributions in binary form must reproduce the above copyright
+ *    notice, this list of conditions and the following disclaimer in the
+ *    documentation and/or other materials provided with the distribution.
+ *
+ * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND
+ * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
+ * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
+ * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
+ * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
+ * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
+ * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
+ * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
+ * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
+ * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
+ * SUCH DAMAGE.
+ *
+ */
+=end
+module ElfFlags
+  class Enum
+
+  end
+  class Version < Enum # EV_
+    EV_NONE  =  0
+    EV_CURRENT  =  1
+  end
+  class IdentClass < Enum # ELFCLASS
+    ELFCLASSNONE  =  0
+    ELFCLASS32  =  1
+    ELFCLASS64  =  2
+  end
+  class IdentData < Enum # ELFDATA
+    ELFDATANONE  =  0
+    ELFDATA2LSB  =  1
+    ELFDATA2MSB  =  2
+  end
+  class OsAbi < Enum # ELFOSABI
+    ELFOSABI_NONE  =  0
+    ELFOSABI_HPUX  =  1
+    ELFOSABI_NETBSD  =  2
+    ELFOSABI_LINUX  =  3
+    ELFOSABI_HURD  =  4
+    ELFOSABI_86OPEN  =  5
+    ELFOSABI_SOLARIS  =  6
+    ELFOSABI_AIX  =  7
+    ELFOSABI_IRIX  =  8
+    ELFOSABI_FREEBSD  =  9
+    ELFOSABI_TRU64  =  10
+    ELFOSABI_MODESTO  =  11
+    ELFOSABI_OPENBSD  =  12
+    ELFOSABI_OPENVMS  =  13
+    ELFOSABI_NSK  =  14
+    ELFOSABI_ARM  =  97
+    ELFOSABI_STANDALONE  =  255
+    ELFOSABI_SYSV  =  ELFOSABI_NONE
+    ELFOSABI_MONTEREY  =  ELFOSABI_AIX
+  end
+  class Type < Enum # ET_
+    ET_NONE  =  0
+    ET_REL  =  1
+    ET_EXEC  =  2
+    ET_DYN  =  3
+    ET_CORE  =  4
+    ET_LOOS  =  0xfe00
+    ET_HIOS  =  0xfeff
+    ET_LOPROC  =  0xff00
+    ET_HIPROC  =  0xffff
+  end
+  class Machine < Enum # EM_
+    EM_NONE  =  0
+    EM_M32  =  1
+    EM_SPARC  =  2
+    EM_386  =  3
+    EM_68K  =  4
+    EM_88K  =  5
+    EM_860  =  7
+    EM_MIPS  =  8
+    EM_S370  =  9
+    EM_MIPS_RS3_LE  =  10
+    EM_PARISC  =  15
+    EM_VPP500  =  17
+    EM_SPARC32PLUS  =  18
+    EM_960  =  19
+    EM_PPC  =  20
+    EM_PPC64  =  21
+    EM_S390  =  22
+    EM_V800  =  36
+    EM_FR20  =  37
+    EM_RH32  =  38
+    EM_RCE  =  39
+    EM_ARM  =  40
+    EM_SH  =  42
+    EM_SPARCV9  =  43
+    EM_TRICORE  =  44
+    EM_ARC  =  45
+    EM_H8_300  =  46
+    EM_H8_300H  =  47
+    EM_H8S  =  48
+    EM_H8_500  =  49
+    EM_IA_64  =  50
+    EM_MIPS_X  =  51
+    EM_COLDFIRE  =  52
+    EM_68HC12  =  53
+    EM_MMA  =  54
+    EM_PCP  =  55
+    EM_NCPU  =  56
+    EM_NDR1  =  57
+    EM_STARCORE  =  58
+    EM_ME16  =  59
+    EM_ST100  =  60
+    EM_TINYJ  =  61
+    EM_X86_64  =  62
+    EM_486  =  6
+    EM_MIPS_RS4_BE  =  10
+    EM_ALPHA_STD  =  41
+    EM_ALPHA  =  0x9026
+  end
+  class SpecialSection < Enum # SHN_
+    SHN_UNDEF  =  0
+    SHN_LORESERVE  =  0xff00
+    SHN_LOPROC  =  0xff00
+    SHN_HIPROC  =  0xff1f
+    SHN_LOOS  =  0xff20
+    SHN_HIOS  =  0xff3f
+    SHN_ABS  =  0xfff1
+    SHN_COMMON  =  0xfff2
+    SHN_XINDEX  =  0xffff
+    SHN_HIRESERVE  =  0xffff
+    SHT_SYMTAB_SHNDX  =  18
+  end
+  class SectionType < Enum # SHT_
+    SHT_NULL  =  0
+    SHT_PROGBITS  =  1
+    SHT_SYMTAB  =  2
+    SHT_STRTAB  =  3
+    SHT_RELA  =  4
+    SHT_HASH  =  5
+    SHT_DYNAMIC  =  6
+    SHT_NOTE  =  7
+    SHT_NOBITS  =  8
+    SHT_REL  =  9
+    SHT_SHLIB  =  10
+    SHT_DYNSYM  =  11
+    SHT_INIT_ARRAY  =  14
+    SHT_FINI_ARRAY  =  15
+    SHT_PREINIT_ARRAY  =  16
+    SHT_GROUP  =  17
+    SHT_SYMTAB_SHNDX  =  18
+    SHT_LOOS  =  0x60000000
+    SHT_HIOS  =  0x6fffffff
+    SHT_GNU_VERDEF  =  0x6ffffffd
+    SHT_GNU_VERNEED  =  0x6ffffffe
+    SHT_GNU_VERSYM  =  0x6fffffff
+    SHT_LOPROC  =  0x70000000
+    SHT_HIPROC  =  0x7fffffff
+    SHT_LOUSER  =  0x80000000
+    SHT_HIUSER  =  0xffffffff
+  end
+  class SectionFlags < Enum # SHF_
+    SHF_WRITE  =  0x1
+    SHF_ALLOC  =  0x2
+    SHF_EXECINSTR  =  0x4
+    SHF_MERGE  =  0x10
+    SHF_STRINGS  =  0x20
+    SHF_INFO_LINK  =  0x40
+    SHF_LINK_ORDER  =  0x80
+    SHF_OS_NONCONFORMING  =  0x100
+    SHF_GROUP  =  0x200
+    SHF_TLS  =  0x400
+    SHF_MASKOS  =  0x0ff00000
+    SHF_MASKPROC  =  0xf0000000
+  end
+  class PhdrType < Enum # PT_
+    PT_NULL  =  0
+    PT_LOAD  =  1
+    PT_DYNAMIC  =  2
+    PT_INTERP  =  3
+    PT_NOTE  =  4
+    PT_SHLIB  =  5
+    PT_PHDR  =  6
+    PT_TLS  =  7
+    PT_LOOS  =  0x60000000
+    PT_HIOS  =  0x6fffffff
+    PT_LOPROC  =  0x70000000
+    PT_HIPROC  =  0x7fffffff
+    PT_GNU_STACK  =  0x6474e551
+    PT_ELFBAC = 42 # Nothing to see here ;) - ELFBAC, see Dartmouth
+    # college TR
+    
+  end
+  class PhdrFlags < Enum # PF_
+    PF_X  =  0x1
+    PF_W  =  0x2
+    PF_R  =  0x4
+    PF_MASKOS  =  0x0ff00000
+    PF_MASKPROC  =  0xf0000000
+  end
+  class DynamicType < Enum # DT_
+    DT_NULL  =  0
+    DT_NEEDED  =  1
+    DT_PLTRELSZ  =  2
+    DT_PLTGOT  =  3
+    DT_HASH  =  4
+    DT_STRTAB  =  5
+    DT_SYMTAB  =  6
+    DT_RELA  =  7
+    DT_RELASZ  =  8
+    DT_RELAENT  =  9
+    DT_STRSZ  =  10
+    DT_SYMENT  =  11
+    DT_INIT  =  12
+    DT_FINI  =  13
+    DT_SONAME  =  14
+    DT_RPATH  =  15
+    DT_SYMBOLIC  =  16
+    DT_REL  =  17
+    DT_RELSZ  =  18
+    DT_RELENT  =  19
+    DT_PLTREL  =  20
+    DT_DEBUG  =  21
+    DT_TEXTREL  =  22
+    DT_JMPREL  =  23
+    DT_BIND_NOW  =  24
+    DT_INIT_ARRAY  =  25
+    DT_FINI_ARRAY  =  26
+    DT_INIT_ARRAYSZ  =  27
+    DT_FINI_ARRAYSZ  =  28
+    DT_RUNPATH  =  29
+    DT_FLAGS  =  30
+    DT_ENCODING  =  32
+    DT_PREINIT_ARRAY  =  32
+    DT_PREINIT_ARRAYSZ  =  33
+    DT_LOOS  =  0x6000000d
+    DT_HIOS  =  0x6ffff000
+    DT_LOPROC  =  0x70000000
+    DT_HIPROC  =  0x7fffffff
+    
+    DT_VERNEED  =  0x6ffffffe
+    DT_VERNEEDNUM  =  0x6fffffff
+    DT_VERSYM  =  0x6ffffff0
+    DT_VERDEF = 0x6ffffffc
+    DT_VERDEFNUM = 0x6ffffffd
+    DT_GNU_HASH =  0x6ffffef5
+    DT_RELACOUNT = 0x6ffffff9
+    DT_RELCOUNT  = 0x6ffffffa
+    DT_FLAGS_1 =   0x6ffffffb
+  end
+  class GnuVerFlags < Enum
+    VERFLAG_BASE = 0x1
+    VERFLAG_WEAK = 0x2
+  end
+  class DynamicFlags < Enum # DF_
+    DF_ORIGIN  =  0x0001
+    DF_SYMBOLIC  =  0x0002
+    DF_TEXTREL  =  0x0004
+    DF_BIND_NOW  =  0x0008
+    DF_STATIC_TLS  =  0x0010
+  end
+  class CoreNType < Enum # NT_
+    NT_PRSTATUS  =  1
+    NT_FPREGSET  =  2
+    NT_PRPSINFO  =  3
+  end
+  class SymbolBinding < Enum # STB_
+    STB_LOCAL  =  0
+    STB_GLOBAL  =  1
+    STB_WEAK  =  2
+    STB_LOOS  =  10
+    STB_HIOS  =  12
+    STB_LOPROC  =  13
+    STB_HIPROC  =  15
+  end
+  class SymbolType < Enum # STT_
+    STT_NOTYPE  =  0
+    STT_OBJECT  =  1
+    STT_FUNC  =  2
+    STT_SECTION  =  3
+    STT_FILE  =  4
+    STT_COMMON  =  5
+    STT_TLS  =  6
+    STT_LOOS  =  10
+    STT_HIOS  =  12
+    STT_LOPROC  =  13
+    STT_HIPROC  =  15
+  end
+  class SymbolVisibility < Enum # STV_
+    STV_DEFAULT  =  0x0
+    STV_INTERNAL  =  0x1
+    STV_HIDDEN  =  0x2
+    STV_PROTECTED  =  0x3
+  end
+  class SymbolName < Enum # STN_
+    STN_UNDEF  =  0
+  end
+  class ElfPData < Enum
+    ELFP_RW_READ = 1
+    ELFP_RW_WRITE = 2
+    ELFP_RW_EXEC = 4
+    ELFP_RW_SIZE = 8
+  end
+  class Relocation < Enum # R_
+    R_X86_64_NONE  =  0
+    R_X86_64_64  =  1
+    R_X86_64_PC32  =  2
+    R_X86_64_GOT32  =  3
+    R_X86_64_PLT32  =  4
+    R_X86_64_COPY  =  5
+    R_X86_64_GLOB_DAT  =  6
+    R_X86_64_JMP_SLOT  =  7
+    R_X86_64_RELATIVE  =  8
+    R_X86_64_GOTPCREL  =  9
+    R_X86_64_32  =  10
+    R_X86_64_32S  =  11
+    R_X86_64_16  =  12
+    R_X86_64_PC16  =  13
+    R_X86_64_8  =  14
+    R_X86_64_PC8  =  15
+    R_X86_64_DTPMOD64  =  16
+    R_X86_64_DTPOFF64  =  17
+    R_X86_64_TPOFF64  =  18
+    R_X86_64_TLSGD  =  19
+    R_X86_64_TLSLD  =  20
+    R_X86_64_DTPOFF32  =  21
+    R_X86_64_GOTTPOFF  =  22
+    R_X86_64_TPOFF32  =  23
+    R_X86_64_SIZE64  = 33
+    R_X86_64_COUNT  =  39
+    R_ALPHA_NONE  =  0
+    R_ALPHA_REFLONG  =  1
+    R_ALPHA_REFQUAD  =  2
+    R_ALPHA_GPREL32  =  3
+    R_ALPHA_LITERAL  =  4
+    R_ALPHA_LITUSE  =  5
+    R_ALPHA_GPDISP  =  6
+    R_ALPHA_BRADDR  =  7
+    R_ALPHA_HINT  =  8
+    R_ALPHA_SREL16  =  9
+    R_ALPHA_SREL32  =  10
+    R_ALPHA_SREL64  =  11
+    R_ALPHA_OP_PUSH  =  12
+    R_ALPHA_OP_STORE  =  13
+    R_ALPHA_OP_PSUB  =  14
+    R_ALPHA_OP_PRSHIFT  =  15
+    R_ALPHA_GPVALUE  =  16
+    R_ALPHA_GPRELHIGH  =  17
+    R_ALPHA_GPRELLOW  =  18
+    R_ALPHA_IMMED_GP_16  =  19
+    R_ALPHA_IMMED_GP_HI32  =  20
+    R_ALPHA_IMMED_SCN_HI32  =  21
+    R_ALPHA_IMMED_BR_HI32  =  22
+    R_ALPHA_IMMED_LO32  =  23
+    R_ALPHA_COPY  =  24
+    R_ALPHA_GLOB_DAT  =  25
+    R_ALPHA_JMP_SLOT  =  26
+    R_ALPHA_RELATIVE  =  27
+    R_ALPHA_COUNT  =  28
+    R_ARM_NONE  =  0
+    R_ARM_PC24  =  1
+    R_ARM_ABS32  =  2
+    R_ARM_REL32  =  3
+    R_ARM_PC13  =  4
+    R_ARM_ABS16  =  5
+    R_ARM_ABS12  =  6
+    R_ARM_THM_ABS5  =  7
+    R_ARM_ABS8  =  8
+    R_ARM_SBREL32  =  9
+    R_ARM_THM_PC22  =  10
+    R_ARM_THM_PC8  =  11
+    R_ARM_AMP_VCALL9  =  12
+    R_ARM_SWI24  =  13
+    R_ARM_THM_SWI8  =  14
+    R_ARM_XPC25  =  15
+    R_ARM_THM_XPC22  =  16
+    R_ARM_COPY  =  20
+    R_ARM_GLOB_DAT  =  21
+    R_ARM_JUMP_SLOT  =  22
+    R_ARM_RELATIVE  =  23
+    R_ARM_GOTOFF  =  24
+    R_ARM_GOTPC  =  25
+    R_ARM_GOT32  =  26
+    R_ARM_PLT32  =  27
+    R_ARM_GNU_VTENTRY  =  100
+    R_ARM_GNU_VTINHERIT  =  101
+    R_ARM_RSBREL32  =  250
+    R_ARM_THM_RPC22  =  251
+    R_ARM_RREL32  =  252
+    R_ARM_RABS32  =  253
+    R_ARM_RPC24  =  254
+    R_ARM_RBASE  =  255
+    R_ARM_COUNT  =  33
+    R_386_NONE  =  0
+    R_386_32  =  1
+    R_386_PC32  =  2
+    R_386_GOT32  =  3
+    R_386_PLT32  =  4
+    R_386_COPY  =  5
+    R_386_GLOB_DAT  =  6
+    R_386_JMP_SLOT  =  7
+    R_386_RELATIVE  =  8
+    R_386_GOTOFF  =  9
+    R_386_GOTPC  =  10
+    R_386_TLS_TPOFF  =  14
+    R_386_TLS_IE  =  15
+    R_386_TLS_GOTIE  =  16
+    R_386_TLS_LE  =  17
+    R_386_TLS_GD  =  18
+    R_386_TLS_LDM  =  19
+    R_386_TLS_GD_32  =  24
+    R_386_TLS_GD_PUSH  =  25
+    R_386_TLS_GD_CALL  =  26
+    R_386_TLS_GD_POP  =  27
+    R_386_TLS_LDM_32  =  28
+    R_386_TLS_LDM_PUSH  =  29
+    R_386_TLS_LDM_CALL  =  30
+    R_386_TLS_LDM_POP  =  31
+    R_386_TLS_LDO_32  =  32
+    R_386_TLS_IE_32  =  33
+    R_386_TLS_LE_32  =  34
+    R_386_TLS_DTPMOD32  =  35
+    R_386_TLS_DTPOFF32  =  36
+    R_386_TLS_TPOFF32  =  37
+    R_386_COUNT  =  38
+    R_PPC_NONE  =  0
+    R_PPC_ADDR32  =  1
+    R_PPC_ADDR24  =  2
+    R_PPC_ADDR16  =  3
+    R_PPC_ADDR16_LO  =  4
+    R_PPC_ADDR16_HI  =  5
+    R_PPC_ADDR16_HA  =  6
+    R_PPC_ADDR14  =  7
+    R_PPC_ADDR14_BRTAKEN  =  8
+    R_PPC_ADDR14_BRNTAKEN  =  9
+    R_PPC_REL24  =  10
+    R_PPC_REL14  =  11
+    R_PPC_REL14_BRTAKEN  =  12
+    R_PPC_REL14_BRNTAKEN  =  13
+    R_PPC_GOT16  =  14
+    R_PPC_GOT16_LO  =  15
+    R_PPC_GOT16_HI  =  16
+    R_PPC_GOT16_HA  =  17
+    R_PPC_PLTREL24  =  18
+    R_PPC_COPY  =  19
+    R_PPC_GLOB_DAT  =  20
+    R_PPC_JMP_SLOT  =  21
+    R_PPC_RELATIVE  =  22
+    R_PPC_LOCAL24PC  =  23
+    R_PPC_UADDR32  =  24
+    R_PPC_UADDR16  =  25
+    R_PPC_REL32  =  26
+    R_PPC_PLT32  =  27
+    R_PPC_PLTREL32  =  28
+    R_PPC_PLT16_LO  =  29
+    R_PPC_PLT16_HI  =  30
+    R_PPC_PLT16_HA  =  31
+    R_PPC_SDAREL16  =  32
+    R_PPC_SECTOFF  =  33
+    R_PPC_SECTOFF_LO  =  34
+    R_PPC_SECTOFF_HI  =  35
+    R_PPC_SECTOFF_HA  =  36
+    R_PPC_COUNT  =  37
+    R_PPC_TLS  =  67
+    R_PPC_DTPMOD32  =  68
+    R_PPC_TPREL16  =  69
+    R_PPC_TPREL16_LO  =  70
+    R_PPC_TPREL16_HI  =  71
+    R_PPC_TPREL16_HA  =  72
+    R_PPC_TPREL32  =  73
+    R_PPC_DTPREL16  =  74
+    R_PPC_DTPREL16_LO  =  75
+    R_PPC_DTPREL16_HI  =  76
+    R_PPC_DTPREL16_HA  =  77
+    R_PPC_DTPREL32  =  78
+    R_PPC_GOT_TLSGD16  =  79
+    R_PPC_GOT_TLSGD16_LO  =  80
+    R_PPC_GOT_TLSGD16_HI  =  81
+    R_PPC_GOT_TLSGD16_HA  =  82
+    R_PPC_GOT_TLSLD16  =  83
+    R_PPC_GOT_TLSLD16_LO  =  84
+    R_PPC_GOT_TLSLD16_HI  =  85
+    R_PPC_GOT_TLSLD16_HA  =  86
+    R_PPC_GOT_TPREL16  =  87
+    R_PPC_GOT_TPREL16_LO  =  88
+    R_PPC_GOT_TPREL16_HI  =  89
+    R_PPC_GOT_TPREL16_HA  =  90
+    R_PPC_EMB_NADDR32  =  101
+    R_PPC_EMB_NADDR16  =  102
+    R_PPC_EMB_NADDR16_LO  =  103
+    R_PPC_EMB_NADDR16_HI  =  104
+    R_PPC_EMB_NADDR16_HA  =  105
+    R_PPC_EMB_SDAI16  =  106
+    R_PPC_EMB_SDA2I16  =  107
+    R_PPC_EMB_SDA2REL  =  108
+    R_PPC_EMB_SDA21  =  109
+    R_PPC_EMB_MRKREF  =  110
+    R_PPC_EMB_RELSEC16  =  111
+    R_PPC_EMB_RELST_LO  =  112
+    R_PPC_EMB_RELST_HI  =  113
+    R_PPC_EMB_RELST_HA  =  114
+    R_PPC_EMB_BIT_FLD  =  115
+    R_PPC_EMB_RELSDA  =  116
+    R_SPARC_NONE  =  0
+    R_SPARC_8  =  1
+    R_SPARC_16  =  2
+    R_SPARC_32  =  3
+    R_SPARC_DISP8  =  4
+    R_SPARC_DISP16  =  5
+    R_SPARC_DISP32  =  6
+    R_SPARC_WDISP30  =  7
+    R_SPARC_WDISP22  =  8
+    R_SPARC_HI22  =  9
+    R_SPARC_22  =  10
+    R_SPARC_13  =  11
+    R_SPARC_LO10  =  12
+    R_SPARC_GOT10  =  13
+    R_SPARC_GOT13  =  14
+    R_SPARC_GOT22  =  15
+    R_SPARC_PC10  =  16
+    R_SPARC_PC22  =  17
+    R_SPARC_WPLT30  =  18
+    R_SPARC_COPY  =  19
+    R_SPARC_GLOB_DAT  =  20
+    R_SPARC_JMP_SLOT  =  21
+    R_SPARC_RELATIVE  =  22
+    R_SPARC_UA32  =  23
+    R_SPARC_PLT32  =  24
+    R_SPARC_HIPLT22  =  25
+    R_SPARC_LOPLT10  =  26
+    R_SPARC_PCPLT32  =  27
+    R_SPARC_PCPLT22  =  28
+    R_SPARC_PCPLT10  =  29
+    R_SPARC_10  =  30
+    R_SPARC_11  =  31
+    R_SPARC_64  =  32
+    R_SPARC_OLO10  =  33
+    R_SPARC_HH22  =  34
+    R_SPARC_HM10  =  35
+    R_SPARC_LM22  =  36
+    R_SPARC_PC_HH22  =  37
+    R_SPARC_PC_HM10  =  38
+    R_SPARC_PC_LM22  =  39
+    R_SPARC_WDISP16  =  40
+    R_SPARC_WDISP19  =  41
+    R_SPARC_GLOB_JMP  =  42
+    R_SPARC_7  =  43
+    R_SPARC_5  =  44
+    R_SPARC_6  =  45
+    R_SPARC_DISP64  =  46
+    R_SPARC_PLT64  =  47
+    R_SPARC_HIX22  =  48
+    R_SPARC_LOX10  =  49
+    R_SPARC_H44  =  50
+    R_SPARC_M44  =  51
+    R_SPARC_L44  =  52
+    R_SPARC_REGISTER  =  53
+    R_SPARC_UA64  =  54
+    R_SPARC_UA16  =  55
+  end
+end