儲存庫 kStuff 的更動 22

時間撮記:

2009-1-30 上午06:29:43 (16 年 以前)

作者:

bird

訊息:

kLdrModMachO.c: Initial 64-bit support (MH_OBJECT).

檔案:

• trunk/kLdr/kLdrModMachO.c (修改) (39 筆差異)

trunk/kLdr/kLdrModMachO.c

@@ -55 +55 @@
 #endif
 
+/** @def KLDRMODMACHO_CHECK_RETURN
+ * Checks that an expression is true and return if it isn't.
+ * This is a debug aid.
+ */
+#ifdef KLDRMODMACHO_STRICT2
+# define KLDRMODMACHO_CHECK_RETURN(expr, rc)  kHlpAssertReturn(expr, rc)
+#else
+# define KLDRMODMACHO_CHECK_RETURN(expr, rc)  do { if (!(expr)) { return (rc); } } while (0)
+#endif
+
 
 /*******************************************************************************
@@ -121 +131 @@
     /** The size of the mapped image. */
     KLDRADDR                cbImage;
+    /** The RVA of the Global Offset Table.  */
+    KLDRADDR                GotRVA;
+    /** Whether we're creating a global offset table segment.
+     * This dependes on the cputype and image type. */
+    KBOOL                   fMakeGot;
     /** When set the sections in the load command segments must be used when
      * mapping or loading the image. */
-    int                     fMapUsingLoadCommandSections;
-
+    KBOOL                   fMapUsingLoadCommandSections;
     /** Pointer to the load commands. (endian converted) */
     KU8                    *pbLoadCommands;
@@ -178 +192 @@
                                            KU32 cchStrings, KLDRADDR BaseAddress, KU32 iSymbol, const char *pchSymbol,
                                            KSIZE cchSymbol, PKLDRADDR puValue, KU32 *pfKind);
+static int  kldrModMachODoQuerySymbol64Bit(PKLDRMODMACHO pModMachO, const macho_nlist_64_t *paSyms, KU32 cSyms, const char *pchStrings,
+                                           KU32 cchStrings, KLDRADDR BaseAddress, KU32 iSymbol, const char *pchSymbol,
+                                           KSIZE cchSymbol, PKLDRADDR puValue, KU32 *pfKind);
 static int  kldrModMachODoEnumSymbols32Bit(PKLDRMODMACHO pModMachO, const macho_nlist_32_t *paSyms, KU32 cSyms,
+                                           const char *pchStrings, KU32 cchStrings, KLDRADDR BaseAddress,
+                                           KU32 fFlags, PFNKLDRMODENUMSYMS pfnCallback, void *pvUser);
+static int  kldrModMachODoEnumSymbols64Bit(PKLDRMODMACHO pModMachO, const macho_nlist_64_t *paSyms, KU32 cSyms,
                                            const char *pchStrings, KU32 cchStrings, KLDRADDR BaseAddress,
                                            KU32 fFlags, PFNKLDRMODENUMSYMS pfnCallback, void *pvUser);
@@ -185 +205 @@
 static int  kldrModMachOFixupSectionGeneric32Bit(PKLDRMODMACHO pModMachO, KU8 *pbSectBits, PKLDRMODMACHOSECT pFixupSect,
                                                  macho_nlist_32_t *paSyms, KU32 cSyms, KLDRADDR NewBaseAddress);
+static int  kldrModMachOFixupSectionAMD64(PKLDRMODMACHO pModMachO, KU8 *pbSectBits, PKLDRMODMACHOSECT pFixupSect,
+                                          macho_nlist_64_t *paSyms, KU32 cSyms, KLDRADDR NewBaseAddress);
+
+static int  kldrModMachOMakeGOT(PKLDRMODMACHO pModMachO, void *pvBits, KLDRADDR NewBaseAddress);
 
 /*static int  kldrModMachODoFixups(PKLDRMODMACHO pModMachO, void *pvMapping, KLDRADDR NewBaseAddress, KLDRADDR OldBaseAddress);
@@ -227 +251 @@
 
 /**
- * Separate function for reading creating the PE module instance to
+ * Separate function for reading creating the Mach-O module instance to
  * simplify cleanup on failure.
  */
@@ -245 +269 @@
     KSIZE cchFilename;
     KSIZE cb;
+    KBOOL fMakeGot;
     int rc;
     *ppModMachO = NULL;
+
+    kHlpAssert(&s.Hdr32.magic == &s.Hdr64.magic);
+    kHlpAssert(&s.Hdr32.flags == &s.Hdr64.flags);
 
     /*
@@ -254 +282 @@
     if (rc)
         return rc;
-    if (s.Hdr32.magic != IMAGE_MACHO32_SIGNATURE)
+    if (    s.Hdr32.magic != IMAGE_MACHO32_SIGNATURE
+        &&  s.Hdr32.magic != IMAGE_MACHO64_SIGNATURE
+        )
     {
         if (    s.Hdr32.magic == IMAGE_MACHO32_SIGNATURE_OE
             ||  s.Hdr32.magic == IMAGE_MACHO64_SIGNATURE_OE)
             return KLDR_ERR_MACHO_OTHER_ENDIAN_NOT_SUPPORTED;
-        if (s.Hdr32.magic == IMAGE_MACHO64_SIGNATURE)
-            return KLDR_ERR_MACHO_64BIT_NOT_SUPPORTED;
         return KLDR_ERR_UNKNOWN_FORMAT;
     }
@@ -272 +300 @@
     {
         case CPU_TYPE_X86:
+            fMakeGot = K_FALSE;
+            break;
         case CPU_TYPE_X86_64:
+            fMakeGot = s.Hdr32.filetype == MH_OBJECT;
             break;
         default:
@@ -297 +328 @@
         return rc;
     }
+    cSegments += fMakeGot;
 
 
@@ -361 +393 @@
             pMod->enmArch = KCPUARCH_AMD64;
             pMod->enmEndian = KLDRENDIAN_LITTLE;
-            switch (s.Hdr32.cpusubtype)
+            switch (s.Hdr32.cpusubtype & ~CPU_SUBTYPE_MASK)
             {
                 case CPU_SUBTYPE_X86_64_ALL:        pMod->enmCpu = KCPU_AMD64_BLEND; break;
@@ -394 +426 @@
     pModMachO->LinkAddress = 0;
     pModMachO->cbImage = 0;
-    pModMachO->fMapUsingLoadCommandSections = 0;
+    pModMachO->GotRVA = NIL_KLDRADDR;
+    pModMachO->fMakeGot = fMakeGot;
+    pModMachO->fMapUsingLoadCommandSections = K_FALSE;
     pModMachO->offSymbols = 0;
     pModMachO->cSymbols = 0;
@@ -577 +611 @@
                         case S_LAZY_SYMBOL_POINTERS:
                         case S_SYMBOL_STUBS:
+                            return KLDR_ERR_MACHO_UNSUPPORTED_SECTION;
                         case S_MOD_INIT_FUNC_POINTERS:
+                            return KLDR_ERR_MACHO_UNSUPPORTED_INIT_SECTION;
                         case S_MOD_TERM_FUNC_POINTERS:
-                            return KLDR_ERR_MACHO_UNSUPPORTED_SECTION;
+                            return KLDR_ERR_MACHO_UNSUPPORTED_TERM_SECTION;
 
                         default:
@@ -625 +661 @@
                                 ||  kHlpStrNComp(pSect->segname, (pSect - 1)->segname, sizeof(pSect->segname)))
                             {
-#if 0 /** @todo This  doesn't work because of BSS. */
+#if 0 /** @todo This doesn't work because of BSS. */
                                 /* verify that the linker/assembler has ordered sections correctly. */
                                 section_32_t *pCur = (pSect - 2);
@@ -653 +689 @@
             }
 
-            /*case LC_SEGMENT_64:
-                 copy 32-bit code
+            case LC_SEGMENT_64:
+            {
+                section_64_t *pSect;
+                section_64_t *pFirstSect;
+                KU32 cSectionsLeft;
+
+                /* convert and verify*/
+                if (u.pLoadCmd->cmdsize < sizeof(segment_command_64_t))
+                    return KLDR_ERR_MACHO_BAD_LOAD_COMMAND;
+                if (    pHdr->magic != IMAGE_MACHO64_SIGNATURE_OE
+                    &&  pHdr->magic != IMAGE_MACHO64_SIGNATURE)
+                    return KLDR_ERR_MACHO_BIT_MIX;
+                if (fConvertEndian)
+                {
+                    u.pSeg64->vmaddr   = K_E2E_U64(u.pSeg64->vmaddr);
+                    u.pSeg64->vmsize   = K_E2E_U64(u.pSeg64->vmsize);
+                    u.pSeg64->fileoff  = K_E2E_U64(u.pSeg64->fileoff);
+                    u.pSeg64->filesize = K_E2E_U64(u.pSeg64->filesize);
+                    u.pSeg64->maxprot  = K_E2E_U32(u.pSeg64->maxprot);
+                    u.pSeg64->initprot = K_E2E_U32(u.pSeg64->initprot);
+                    u.pSeg64->nsects   = K_E2E_U32(u.pSeg64->nsects);
+                    u.pSeg64->flags    = K_E2E_U32(u.pSeg64->flags);
+                }
+
+                if (    u.pSeg64->filesize
+                    &&  (   u.pSeg64->fileoff > cbFile
+                         || u.pSeg64->fileoff + u.pSeg64->filesize > cbFile))
+                    return KLDR_ERR_MACHO_BAD_LOAD_COMMAND;
+                if (!u.pSeg64->filesize && u.pSeg64->fileoff)
+                    return KLDR_ERR_MACHO_BAD_LOAD_COMMAND;
+                if (u.pSeg64->vmsize < u.pSeg64->filesize)
+                    return KLDR_ERR_MACHO_BAD_LOAD_COMMAND;
+                if ((u.pSeg64->maxprot & u.pSeg64->initprot) != u.pSeg64->initprot)
+                    return KLDR_ERR_MACHO_BAD_LOAD_COMMAND;
+                if (u.pSeg64->flags & ~(SG_HIGHVM | SG_FVMLIB | SG_NORELOC | SG_PROTECTED_VERSION_1))
+                    return KLDR_ERR_MACHO_BAD_LOAD_COMMAND;
+                if (u.pSeg64->nsects * sizeof(section_64_t) > u.pLoadCmd->cmdsize - sizeof(segment_command_64_t))
+                    return KLDR_ERR_MACHO_BAD_LOAD_COMMAND;
+                if (    pHdr->filetype == MH_OBJECT
+                    &&  cSegmentCommands > 0)
+                    return KLDR_ERR_MACHO_BAD_OBJECT_FILE;
+                cSegmentCommands++;
+
+                /*
+                 * convert, validate and parse the sections.
+                 */
+                cSectionsLeft = u.pSeg64->nsects;
+                pFirstSect = pSect = (section_64_t *)(u.pSeg64 + 1);
+                while (cSectionsLeft-- > 0)
+                {
+                    int fFileBits;
+
+                    if (fConvertEndian)
+                    {
+                        pSect->addr      = K_E2E_U64(pSect->addr);
+                        pSect->size      = K_E2E_U64(pSect->size);
+                        pSect->offset    = K_E2E_U32(pSect->offset);
+                        pSect->align     = K_E2E_U32(pSect->align);
+                        pSect->reloff    = K_E2E_U32(pSect->reloff);
+                        pSect->nreloc    = K_E2E_U32(pSect->nreloc);
+                        pSect->flags     = K_E2E_U32(pSect->flags);
+                        pSect->reserved1 = K_E2E_U32(pSect->reserved1);
+                        pSect->reserved2 = K_E2E_U32(pSect->reserved2);
+                    }
+
+                    /* validate */
+                    switch (pSect->flags & SECTION_TYPE)
+                    {
+                        case S_ZEROFILL:
+                            if (pSect->reserved1 || pSect->reserved2)
+                                return KLDR_ERR_MACHO_BAD_SECTION;
+                            fFileBits = 0;
+                            break;
+                        case S_REGULAR:
+                        case S_CSTRING_LITERALS:
+                        case S_COALESCED:
+                        case S_4BYTE_LITERALS:
+                        case S_8BYTE_LITERALS:
+                        case S_16BYTE_LITERALS:
+                            if (pSect->reserved1 || pSect->reserved2)
+                                return KLDR_ERR_MACHO_BAD_SECTION;
+                            fFileBits = 1;
+                            break;
+
+                        case S_LITERAL_POINTERS:
+                        case S_INTERPOSING:
+                        case S_GB_ZEROFILL:
+                        case S_NON_LAZY_SYMBOL_POINTERS:
+                        case S_LAZY_SYMBOL_POINTERS:
+                        case S_SYMBOL_STUBS:
+                            return KLDR_ERR_MACHO_UNSUPPORTED_SECTION;
+#if 1 /** @todo this requires a query API or flag... */
+                        case S_MOD_INIT_FUNC_POINTERS:
+                            return KLDR_ERR_MACHO_UNSUPPORTED_INIT_SECTION;
+                        case S_MOD_TERM_FUNC_POINTERS:
+                            return KLDR_ERR_MACHO_UNSUPPORTED_TERM_SECTION;
+#else
+                        case S_MOD_INIT_FUNC_POINTERS:
+                        case S_MOD_TERM_FUNC_POINTERS:
+                            fFileBits = 1;
+                            break; /* ignored */
+#endif
+
+                        default:
+                            return KLDR_ERR_MACHO_UNKNOWN_SECTION;
+                    }
+                    if (pSect->flags & ~(  S_ATTR_PURE_INSTRUCTIONS | S_ATTR_NO_TOC | S_ATTR_STRIP_STATIC_SYMS
+                                         | S_ATTR_NO_DEAD_STRIP | S_ATTR_LIVE_SUPPORT | S_ATTR_SELF_MODIFYING_CODE
+                                         | S_ATTR_DEBUG | S_ATTR_SOME_INSTRUCTIONS | S_ATTR_EXT_RELOC
+                                         | S_ATTR_LOC_RELOC | SECTION_TYPE))
+                        return KLDR_ERR_MACHO_BAD_SECTION;
+                    if (    pSect->addr - u.pSeg64->vmaddr > u.pSeg64->vmsize
+                        ||  pSect->addr - u.pSeg64->vmaddr + pSect->size > u.pSeg64->vmsize)
+                        return KLDR_ERR_MACHO_BAD_SECTION;
+                    if (    pSect->align >= 31
+                        ||  (((1 << pSect->align) - 1) & pSect->addr)
+                        ||  (((1 << pSect->align) - 1) & u.pSeg64->vmaddr))
+                        return KLDR_ERR_MACHO_BAD_SECTION;
+                    if (    fFileBits
+                        &&  (   pSect->offset > cbFile
+                             || (KU64)pSect->offset + pSect->size > cbFile))
+                        return KLDR_ERR_MACHO_BAD_SECTION;
+                    if (!fFileBits && pSect->offset)
+                        return KLDR_ERR_MACHO_BAD_SECTION;
+                    if (!pSect->nreloc && pSect->reloff)
+                        return KLDR_ERR_MACHO_BAD_SECTION;
+                    if (    pSect->nreloc
+                        &&  (   pSect->reloff > cbFile
+                             || (KU64)pSect->reloff + (KLDRFOFF)pSect->nreloc * sizeof(macho_relocation_info_t)) > cbFile)
+                        return KLDR_ERR_MACHO_BAD_SECTION;
+
+
+                    /* count segments and strings */
+                    switch (pHdr->filetype)
+                    {
+                        case MH_OBJECT:
+                        {
+                            cSections++;
+
+                            /* Don't load debug symbols. (test this) */
+                            if (pSect->flags & S_ATTR_DEBUG)
+                                break;
+
+                            /* a new segment? */
+                            if (    !cSegments
+                                ||  kHlpStrNComp(pSect->segname, (pSect - 1)->segname, sizeof(pSect->segname)))
+                            {
+#if 0 /** @todo This doesn't work because of BSS. */
+                                /* verify that the linker/assembler has ordered sections correctly. */
+                                section_64_t *pCur = (pSect - 2);
+                                while ((KUPTR)pCur >= (KUPTR)pFirstSect)
+                                {
+                                    if (!kHlpStrNComp(pCur->segname, pSect->segname, sizeof(pSect->segname)))
+                                        return KLDR_ERR_MACHO_BAD_SECTION_ORDER;
+                                    pCur--;
+                                }
+#endif
+
+                                /* ok. count it and the string. */
+                                cSegments++;
+                                cbStringPool += kHlpStrNLen(&pSect->segname[0], sizeof(pSect->segname)) + 1;
+                            }
+                            break;
+                        }
+
+                        default:
+                            return KERR_INVALID_PARAMETER;
+                    }
+
+                    /* next */
+                    pSect++;
+                }
                 break;
-            */
+            } /* LC_SEGMENT_64 */
+
 
             case LC_SYMTAB:
@@ -732 +939 @@
                 break;
 
-            case LC_SEGMENT_64:
             case LC_LOADFVMLIB:
             case LC_IDFVMLIB:
@@ -918 +1124 @@
 
                                         pSeg[-1].cbFile = pSeg[-1].offFile = -1;
-                                        pModMachO->fMapUsingLoadCommandSections = 1;
+                                        pModMachO->fMapUsingLoadCommandSections = K_TRUE;
+                                    }
+                                }
+                                pSeg[-1].cb = pSect->addr - pSeg[-1].LinkAddress + pSect->size;
+
+                                /** @todo update the protection... */
+                            }
+                            pSectExtra++;
+                            break;
+                        }
+
+                        default:
+                            return KERR_INVALID_PARAMETER;
+                    }
+
+                    /* next */
+                    pSect++;
+                }
+                break;
+            }
+
+            case LC_SEGMENT_64:
+            {
+                section_64_t *pSect;
+                section_64_t *pFirstSect;
+                KU32 cSectionsLeft;
+
+                pModMachO->LinkAddress = u.pSeg64->vmaddr;
+
+                /*
+                 * convert, validate and parse the sections.
+                 */
+                cSectionsLeft = u.pSeg64->nsects;
+                pFirstSect = pSect = (section_64_t *)(u.pSeg64 + 1);
+                while (cSectionsLeft-- > 0)
+                {
+                    switch (pModMachO->Hdr.filetype)
+                    {
+                        case MH_OBJECT:
+                        {
+                            /* Section data extract. */
+                            pSectExtra->cb = pSect->size;
+                            pSectExtra->RVA = pSect->addr;
+                            pSectExtra->LinkAddress = pSect->addr;
+                            pSectExtra->offFile = pSect->offset ? pSect->offset : -1;
+                            pSectExtra->cFixups = pSect->nreloc;
+                            pSectExtra->paFixups = NULL;
+                            pSectExtra->offFixups = pSect->nreloc ? pSect->reloff : -1;
+                            pSectExtra->fFlags = pSect->flags;
+                            pSectExtra->iSegment = pSegExtra - &pModMachO->aSegments[0];
+                            pSectExtra->pvMachoSection = pSect;
+
+                            /* Don't load debug symbols. (test this!) */
+                            if (pSect->flags & S_ATTR_DEBUG)
+                            {
+                                pSectExtra++;
+                                /** @todo */
+                                break;
+                            }
+
+                            if (    fFirstSegment
+                                ||  kHlpStrNComp(pSect->segname, (pSect - 1)->segname, sizeof(pSect->segname)))
+                            {
+                                /* close the previous segment */
+                                if (pSegExtra != &pModMachO->aSegments[0])
+                                    pSegExtra[-1].cSections = pSectExtra - pSegExtra[-1].paSections;
+
+                                /* new segment. */
+                                pSeg->pvUser = NULL;
+                                pSeg->pchName = pbStringPool;
+                                pSeg->cchName = (KU32)kHlpStrNLen(&pSect->segname[0], sizeof(pSect->sectname));
+                                kHlpMemCopy(pbStringPool, &pSect->segname[0], pSeg->cchName);
+                                pbStringPool += pSeg->cchName;
+                                *pbStringPool++ = '\0';
+                                pSeg->SelFlat = 0;
+                                pSeg->Sel16bit = 0;
+                                pSeg->fFlags = 0;
+                                pSeg->enmProt = KPROT_EXECUTE_WRITECOPY; /** @todo fixme! */
+                                pSeg->cb = pSect->size;
+                                pSeg->Alignment = (1 << pSect->align);
+                                pSeg->LinkAddress = pSect->addr;
+                                pSeg->offFile = pSect->offset ? pSect->offset : -1;
+                                pSeg->cbFile  = pSect->offset ? pSect->size : -1;
+                                pSeg->RVA = pSect->addr - pModMachO->LinkAddress;
+                                pSeg->cbMapped = 0;
+                                pSeg->MapAddress = 0;
+
+                                pSegExtra->cSections = 0;
+                                pSegExtra->paSections = pSectExtra;
+
+                                pSeg++;
+                                pSegExtra++;
+                                fFirstSegment = 0;
+                            }
+                            else
+                            {
+                                /* update exiting segment */
+                                if (pSeg[-1].Alignment < (1 << pSect->align))
+                                    pSeg[-1].Alignment = (1 << pSect->align);
+                                if (pSect->addr < pSeg[-1].LinkAddress)
+                                    return KLDR_ERR_MACHO_BAD_SECTION; /** @todo move up! */
+
+                                /* If there are file bits, ensure they are in the current flow.
+                                   (yes, we are very very careful here, I know.) */
+                                if (    pSect->offset
+                                    &&  pSeg[-1].cbFile == pSeg[-1].cb)
+                                {
+                                    int fOk = pSeg[-1].offFile + (pSect->addr - pSeg[-1].LinkAddress) == pSect->offset
+                                           && pSect[-1].offset
+                                           && pSeg[-1].offFile + pSeg[-1].cbFile == pSect[-1].offset + pSect[-1].size;
+                                    /* more checks? */
+                                    if (fOk)
+                                        pSeg[-1].cbFile = (KLDRFOFF)(pSect->addr - pSeg[-1].LinkAddress) + pSect->size;
+                                    else
+                                    {
+
+                                        pSeg[-1].cbFile = pSeg[-1].offFile = -1;
+                                        pModMachO->fMapUsingLoadCommandSections = K_TRUE;
                                     }
                                 }
@@ -963 +1286 @@
 
     /*
+     * Make the GOT segment if necessary.
+     */
+    if (pModMachO->fMakeGot)
+    {
+        KSIZE cbPtr = (   pModMachO->Hdr.magic == IMAGE_MACHO32_SIGNATURE
+                       || pModMachO->Hdr.magic == IMAGE_MACHO32_SIGNATURE_OE)
+                    ? sizeof(KU32)
+                    : sizeof(KU64);
+
+        if (pSeg != &pModMachO->pMod->aSegments[0])
+            pModMachO->GotRVA = pSeg[-1].RVA + KLDR_ALIGN_ADDR(pSeg[-1].cb, pSeg[-1].Alignment);
+        else
+            pModMachO->GotRVA = 0;
+
+        pSeg->pvUser = NULL;
+        pSeg->pchName = "GOT";
+        pSeg->cchName = 3;
+        pSeg->SelFlat = 0;
+        pSeg->Sel16bit = 0;
+        pSeg->fFlags = 0;
+        pSeg->enmProt = KPROT_READONLY;
+        pSeg->cb = cbPtr * pModMachO->cSymbols;
+        pSeg->Alignment = 64;
+        pSeg->LinkAddress = pModMachO->LinkAddress + pModMachO->GotRVA;
+        pSeg->offFile = -1;
+        pSeg->cbFile  = -1;
+        pSeg->RVA = pModMachO->GotRVA;
+        pSeg->cbMapped = 0;
+        pSeg->MapAddress = 0;
+
+        pSegExtra->cSections = 0;
+        pSegExtra->paSections = NULL;
+    }
+
+    /*
      * Adjust mapping addresses calculating the image size.
      */
@@ -987 +1345 @@
         }
     }
+
 
     return 0;
@@ -1070 +1429 @@
      * Refuse segmented requests for now.
      */
-    if (    pfKind
-        &&  (*pfKind & KLDRSYMKIND_REQ_TYPE_MASK) != KLDRSYMKIND_REQ_FLAT)
-        return KLDR_ERR_TODO;
+    KLDRMODMACHO_CHECK_RETURN(   !pfKind
+                              || (*pfKind & KLDRSYMKIND_REQ_TYPE_MASK) == KLDRSYMKIND_REQ_FLAT,
+                              KLDR_ERR_TODO);
 
     /*
@@ -1088 +1447 @@
                                                     cchSymbol, puValue, pfKind);
             else
-                rc = KLDR_ERR_TODO; /** @todo duplicate kldrModMachOQuerySymbol32 for parsing 64-bit symbols when everything is working. */
-                /*rc = kldrModMachODoQuerySymbol64Bit(pModMachO, (macho_nlist_64_t *)pModMachO->pvaSymbols, pModMachO->cSymbols,
+                rc = kldrModMachODoQuerySymbol64Bit(pModMachO, (macho_nlist_64_t *)pModMachO->pvaSymbols, pModMachO->cSymbols,
                                                     pModMachO->pchStrings, pModMachO->cchStrings, BaseAddress, iSymbol, pchSymbol,
-                                                    cchSymbol, puValue, pfKind);*/
-
+                                                    cchSymbol, puValue, pfKind);
         }
     }
@@ -1100 +1457 @@
     return rc;
 }
-
 
 
@@ -1222 +1578 @@
             /** @todo implement indirect and prebound symbols. */
         default:
-            KLDRMODMACHO_ASSERT(0);
-            return KLDR_ERR_TODO;
+            KLDRMODMACHO_CHECK_RETURN(0, KLDR_ERR_TODO);
+    }
+
+    return 0;
+}
+
+
+/**
+ * Lookup a symbol in a 64-bit symbol table.
+ *
+ * @returns See kLdrModQuerySymbol.
+ * @param   pModMachO
+ * @param   paSyms      Pointer to the symbol table.
+ * @param   cSyms       Number of symbols in the table.
+ * @param   pchStrings  Pointer to the string table.
+ * @param   cchStrings  Size of the string table.
+ * @param   BaseAddress Adjusted base address, see kLdrModQuerySymbol.
+ * @param   iSymbol     See kLdrModQuerySymbol.
+ * @param   pchSymbol   See kLdrModQuerySymbol.
+ * @param   cchSymbol   See kLdrModQuerySymbol.
+ * @param   puValue     See kLdrModQuerySymbol.
+ * @param   pfKind      See kLdrModQuerySymbol.
+ */
+static int kldrModMachODoQuerySymbol64Bit(PKLDRMODMACHO pModMachO, const macho_nlist_64_t *paSyms, KU32 cSyms, const char *pchStrings,
+                                          KU32 cchStrings, KLDRADDR BaseAddress, KU32 iSymbol, const char *pchSymbol, KSIZE cchSymbol,
+                                          PKLDRADDR puValue, KU32 *pfKind)
+{
+    /*
+     * Find a valid symbol matching the search criteria.
+     */
+    if (iSymbol == NIL_KLDRMOD_SYM_ORDINAL)
+    {
+        /* simplify validation. */
+        if (cchStrings <= cchSymbol)
+            return KLDR_ERR_SYMBOL_NOT_FOUND;
+        cchStrings -= cchSymbol;
+
+        /* external symbols are usually at the end, so search the other way. */
+        for (iSymbol = cSyms - 1; iSymbol != KU32_MAX; iSymbol--)
+        {
+            const char *psz;
+
+            /* Skip irrellevant and non-public symbols. */
+            if (paSyms[iSymbol].n_type & MACHO_N_STAB)
+                continue;
+            if ((paSyms[iSymbol].n_type & MACHO_N_TYPE) == MACHO_N_UNDF)
+                continue;
+            if (!(paSyms[iSymbol].n_type & MACHO_N_EXT)) /*??*/
+                continue;
+            if (paSyms[iSymbol].n_type & MACHO_N_PEXT) /*??*/
+                continue;
+
+            /* get name */
+            if (!paSyms[iSymbol].n_un.n_strx)
+                continue;
+            if ((KU32)paSyms[iSymbol].n_un.n_strx >= cchStrings)
+                continue;
+            psz = &pchStrings[paSyms[iSymbol].n_un.n_strx];
+            if (psz[cchSymbol])
+                continue;
+            if (kHlpMemComp(psz, pchSymbol, cchSymbol))
+                continue;
+
+            /* match! */
+            break;
+        }
+        if (iSymbol == KU32_MAX)
+            return KLDR_ERR_SYMBOL_NOT_FOUND;
+    }
+    else
+    {
+        if (iSymbol >= cSyms)
+            return KLDR_ERR_SYMBOL_NOT_FOUND;
+        if (paSyms[iSymbol].n_type & MACHO_N_STAB)
+            return KLDR_ERR_SYMBOL_NOT_FOUND;
+        if ((paSyms[iSymbol].n_type & MACHO_N_TYPE) == MACHO_N_UNDF)
+            return KLDR_ERR_SYMBOL_NOT_FOUND;
+    }
+
+    /*
+     * Calc the return values.
+     */
+    if (pfKind)
+    {
+        if (    pModMachO->Hdr.magic == IMAGE_MACHO32_SIGNATURE
+            ||  pModMachO->Hdr.magic == IMAGE_MACHO32_SIGNATURE_OE)
+            *pfKind = KLDRSYMKIND_32BIT | KLDRSYMKIND_NO_TYPE;
+        else
+            *pfKind = KLDRSYMKIND_64BIT | KLDRSYMKIND_NO_TYPE;
+        if (paSyms[iSymbol].n_desc & N_WEAK_DEF)
+            *pfKind |= KLDRSYMKIND_WEAK;
+    }
+
+    switch (paSyms[iSymbol].n_type & MACHO_N_TYPE)
+    {
+        case MACHO_N_SECT:
+        {
+            PKLDRMODMACHOSECT pSect;
+            KLDRADDR RVA;
+            if ((KU32)(paSyms[iSymbol].n_sect - 1) >= pModMachO->cSections)
+                return KLDR_ERR_MACHO_BAD_SYMBOL;
+            pSect = &pModMachO->paSections[paSyms[iSymbol].n_sect - 1];
+
+            RVA = paSyms[iSymbol].n_value - pModMachO->LinkAddress;
+            if (RVA - pSect->RVA >= pSect->cb)
+                return KLDR_ERR_MACHO_BAD_SYMBOL;
+            if (puValue)
+                *puValue = RVA + BaseAddress;
+
+            if (    pfKind
+                &&  (pSect->fFlags & (S_ATTR_PURE_INSTRUCTIONS | S_ATTR_SELF_MODIFYING_CODE)))
+                *pfKind = (*pfKind & ~KLDRSYMKIND_TYPE_MASK) | KLDRSYMKIND_CODE;
+            break;
+        }
+
+        case MACHO_N_ABS:
+            if (puValue)
+                *puValue = paSyms[iSymbol].n_value;
+            /*if (pfKind)
+                pfKind |= KLDRSYMKIND_ABS;*/
+            break;
+
+        case MACHO_N_PBUD:
+        case MACHO_N_INDR:
+            /** @todo implement indirect and prebound symbols. */
+        default:
+            KLDRMODMACHO_CHECK_RETURN(0, KLDR_ERR_TODO);
     }
 
@@ -1258 +1739 @@
                                                     fFlags, pfnCallback, pvUser);
             else
-                rc = KLDR_ERR_TODO; /** @todo duplicate kldrModMachOQuerySymbol32 for parsing 64-bit symbols when everything is working. */
-                /*rc = kldrModMachODoEnumSymbols32Bit(pModMachO, (macho_nlist_32_t *)pModMachO->pvaSymbols, pModMachO->cSymbols,
-                                                    pModMachO->pchStrings, pModMachO->cchStrings, BaseAddress, pfnCallback, pvUser);*/
+                rc = kldrModMachODoEnumSymbols64Bit(pModMachO, (macho_nlist_64_t *)pModMachO->pvaSymbols, pModMachO->cSymbols,
+                                                    pModMachO->pchStrings, pModMachO->cchStrings, BaseAddress,
+                                                    fFlags, pfnCallback, pvUser);
         }
     }
     else
-        rc = KLDR_ERR_TODO;
+        KLDRMODMACHO_CHECK_RETURN(0, KLDR_ERR_TODO);
 
     return rc;
@@ -1288 +1769 @@
                                           KU32 fFlags, PFNKLDRMODENUMSYMS pfnCallback, void *pvUser)
 {
-    const KU32 fKindBase = pModMachO->Hdr.magic == IMAGE_MACHO32_SIGNATURE
-                            || pModMachO->Hdr.magic == IMAGE_MACHO32_SIGNATURE_OE
-                             ? KLDRSYMKIND_32BIT : KLDRSYMKIND_64BIT;
+    const KU32 fKindBase =    pModMachO->Hdr.magic == IMAGE_MACHO32_SIGNATURE
+                           || pModMachO->Hdr.magic == IMAGE_MACHO32_SIGNATURE_OE
+                         ? KLDRSYMKIND_32BIT : KLDRSYMKIND_64BIT;
     KU32 iSym;
     int rc;
@@ -1367 +1848 @@
                 /** @todo implement indirect and prebound symbols. */
             default:
-                KLDRMODMACHO_ASSERT(0);
-                return KLDR_ERR_TODO;
+                KLDRMODMACHO_CHECK_RETURN(0, KLDR_ERR_TODO);
+        }
+
+        /*
+         * Do callback.
+         */
+        rc = pfnCallback(pModMachO->pMod, iSym, psz, cch, NULL, uValue, fKind, pvUser);
+        if (rc)
+            return rc;
+    }
+    return 0;
+}
+
+
+/**
+ * Enum a 64-bit symbol table.
+ *
+ * @returns See kLdrModQuerySymbol.
+ * @param   pModMachO
+ * @param   paSyms      Pointer to the symbol table.
+ * @param   cSyms       Number of symbols in the table.
+ * @param   pchStrings  Pointer to the string table.
+ * @param   cchStrings  Size of the string table.
+ * @param   BaseAddress Adjusted base address, see kLdrModEnumSymbols.
+ * @param   fFlags      See kLdrModEnumSymbols.
+ * @param   pfnCallback See kLdrModEnumSymbols.
+ * @param   pvUser      See kLdrModEnumSymbols.
+ */
+static int kldrModMachODoEnumSymbols64Bit(PKLDRMODMACHO pModMachO, const macho_nlist_64_t *paSyms, KU32 cSyms,
+                                          const char *pchStrings, KU32 cchStrings, KLDRADDR BaseAddress,
+                                          KU32 fFlags, PFNKLDRMODENUMSYMS pfnCallback, void *pvUser)
+{
+    const KU32 fKindBase =    pModMachO->Hdr.magic == IMAGE_MACHO64_SIGNATURE
+                           || pModMachO->Hdr.magic == IMAGE_MACHO64_SIGNATURE_OE
+                         ? KLDRSYMKIND_64BIT : KLDRSYMKIND_32BIT;
+    KU32 iSym;
+    int rc;
+
+    /*
+     * Iterate the symbol table.
+     */
+    for (iSym = 0; iSym < cSyms; iSym++)
+    {
+        KU32 fKind;
+        KLDRADDR uValue;
+        const char *psz;
+        KSIZE cch;
+
+        /* Skip debug symbols and undefined symbols. */
+        if (paSyms[iSym].n_type & MACHO_N_STAB)
+            continue;
+        if ((paSyms[iSym].n_type & MACHO_N_TYPE) == MACHO_N_UNDF)
+            continue;
+
+        /* Skip non-public symbols unless they are requested explicitly. */
+        if (!(fFlags & KLDRMOD_ENUM_SYMS_FLAGS_ALL))
+        {
+            if (!(paSyms[iSym].n_type & MACHO_N_EXT)) /*??*/
+                continue;
+            if (paSyms[iSym].n_type & MACHO_N_PEXT) /*??*/
+                continue;
+            if (!paSyms[iSym].n_un.n_strx)
+                continue;
+        }
+
+        /*
+         * Gather symbol info
+         */
+
+        /* name */
+        if ((KU32)paSyms[iSym].n_un.n_strx >= cchStrings)
+            return KLDR_ERR_MACHO_BAD_SYMBOL;
+        psz = &pchStrings[paSyms[iSym].n_un.n_strx];
+        cch = kHlpStrLen(psz);
+        if (!cch)
+            psz = NULL;
+
+        /* kind & value */
+        fKind = fKindBase;
+        if (paSyms[iSym].n_desc & N_WEAK_DEF)
+            fKind |= KLDRSYMKIND_WEAK;
+        switch (paSyms[iSym].n_type & MACHO_N_TYPE)
+        {
+            case MACHO_N_SECT:
+            {
+                PKLDRMODMACHOSECT pSect;
+                if ((KU32)(paSyms[iSym].n_sect - 1) >= pModMachO->cSections)
+                    return KLDR_ERR_MACHO_BAD_SYMBOL;
+                pSect = &pModMachO->paSections[paSyms[iSym].n_sect - 1];
+
+                uValue = paSyms[iSym].n_value - pModMachO->LinkAddress;
+                if (uValue - pSect->RVA >= pSect->cb)
+                    return KLDR_ERR_MACHO_BAD_SYMBOL;
+                uValue += BaseAddress;
+
+                if (pSect->fFlags & (S_ATTR_PURE_INSTRUCTIONS | S_ATTR_SELF_MODIFYING_CODE))
+                    fKind |= KLDRSYMKIND_CODE;
+                else
+                    fKind |= KLDRSYMKIND_NO_TYPE;
+                break;
+            }
+
+            case MACHO_N_ABS:
+                uValue = paSyms[iSym].n_value;
+                fKind |= KLDRSYMKIND_NO_TYPE /*KLDRSYMKIND_ABS*/;
+                break;
+
+            case MACHO_N_PBUD:
+            case MACHO_N_INDR:
+                /** @todo implement indirect and prebound symbols. */
+            default:
+                KLDRMODMACHO_CHECK_RETURN(0, KLDR_ERR_TODO);
         }
 
@@ -1574 +2165 @@
     /* try do the prepare */
     if (pModMachO->fMapUsingLoadCommandSections)
-        return KLDR_ERR_TODO; /* deal with this if it ever occurs. */
+        KLDRMODMACHO_CHECK_RETURN(0, KLDR_ERR_TODO); /* deal with this if it ever occurs. */
     else
     {
@@ -1613 +2204 @@
      */
     if (pModMachO->fMapUsingLoadCommandSections)
-        return KLDR_ERR_TODO; /* deal with this if it ever occurs. */
+        KLDRMODMACHO_CHECK_RETURN(0, KLDR_ERR_TODO); /* deal with this if it ever occurs. */
     else
     {
@@ -1684 +2275 @@
      */
     if (pModMachO->fMapUsingLoadCommandSections)
-        return KLDR_ERR_TODO; /* deal with this if it ever occurs. */
+        KLDRMODMACHO_CHECK_RETURN(0, KLDR_ERR_TODO); /* deal with this if it ever occurs. */
     else
     {
@@ -1754 +2345 @@
 
                 /** @todo Implement N_REF_TO_WEAK. */
-                if (paSyms[iSym].n_desc & N_REF_TO_WEAK)
-                    return KLDR_ERR_TODO;
+                KLDRMODMACHO_CHECK_RETURN(!(paSyms[iSym].n_desc & N_REF_TO_WEAK), KLDR_ERR_TODO);
 
                 /* Get the symbol name and try resolve it. */
@@ -1805 +2395 @@
 
                 /** @todo Implement N_REF_TO_WEAK. */
-                if (paSyms[iSym].n_desc & N_REF_TO_WEAK)
-                    return KLDR_ERR_TODO;
-
-                /* Get the symbol name and try resolve it. */
+                KLDRMODMACHO_CHECK_RETURN(!(paSyms[iSym].n_desc & N_REF_TO_WEAK), KLDR_ERR_TODO);
+
+                 /* Get the symbol name and try resolve it. */
                 if (paSyms[iSym].n_un.n_strx >= pModMachO->cchStrings)
                     return KLDR_ERR_MACHO_BAD_SYMBOL;
@@ -1898 +2487 @@
                                                           (macho_nlist_32_t *)pModMachO->pvaSymbols,
                                                           pModMachO->cSymbols, NewBaseAddress);
+            else if (   pModMachO->Hdr.magic == IMAGE_MACHO64_SIGNATURE
+                     && pModMachO->Hdr.cputype == CPU_TYPE_X86_64)
+                rc = kldrModMachOFixupSectionAMD64(pModMachO, pbSectBits, pSect,
+                                                   (macho_nlist_64_t *)pModMachO->pvaSymbols,
+                                                   pModMachO->cSymbols, NewBaseAddress);
             else
-                rc = KLDR_ERR_TODO; /* save space for now. */
+                KLDRMODMACHO_CHECK_RETURN(0, KLDR_ERR_TODO);
             if (rc)
                 break;
@@ -2013 +2607 @@
                     case MACHO_N_INDR:
                     case MACHO_N_PBUD:
-                        return KLDR_ERR_TODO;
+                        KLDRMODMACHO_CHECK_RETURN(0, KLDR_ERR_TODO);
                     default:
-                        return KLDR_ERR_MACHO_BAD_SYMBOL;
+                        KLDRMODMACHO_CHECK_RETURN(0, KLDR_ERR_MACHO_BAD_SYMBOL);
                 }
             }
@@ -2113 +2707 @@
 
 /**
+ * Applies AMD64 fixups to a section.
+ *
+ * @returns 0 on success, non-zero kLdr status code on failure.
+ * @param   pModMachO       The Mach-O module interpreter instance.
+ * @param   pbSectBits      Pointer to the section bits.
+ * @param   pFixupSect      The section being fixed up.
+ * @param   NewBaseAddress  The new base image address.
+ */
+static int  kldrModMachOFixupSectionAMD64(PKLDRMODMACHO pModMachO, KU8 *pbSectBits, PKLDRMODMACHOSECT pFixupSect,
+                                          macho_nlist_64_t *paSyms, KU32 cSyms, KLDRADDR NewBaseAddress)
+{
+    const macho_relocation_info_t *paFixups = pFixupSect->paFixups;
+    const KU32 cFixups = pFixupSect->cFixups;
+    KSIZE cbSectBits = (KSIZE)pFixupSect->cb;
+    const KU8 *pbSectVirginBits;
+    KU32 iFixup;
+    KLDRPU uFixVirgin;
+    KLDRPU uFix;
+    KLDRADDR SymAddr;
+    int rc;
+
+    /*
+     * Find the virgin bits.
+     */
+    if (pFixupSect->offFile != -1)
+    {
+        rc = kldrModMachOMapVirginBits(pModMachO);
+        if (rc)
+            return rc;
+        pbSectVirginBits = (const KU8 *)pModMachO->pvBits + pFixupSect->offFile;
+    }
+    else
+        pbSectVirginBits = NULL;
+
+    /*
+     * Iterate the fixups and apply them.
+     */
+    for (iFixup = 0; iFixup < cFixups; iFixup++)
+    {
+        union
+        {
+            macho_relocation_info_t     r;
+            scattered_relocation_info_t s;
+        } Fixup;
+        Fixup.r = paFixups[iFixup];
+
+        /* AMD64 doesn't use scattered fixups. */
+        KLDRMODMACHO_CHECK_RETURN(!(Fixup.r.r_address & R_SCATTERED), KLDR_ERR_BAD_FIXUP);
+
+        /* sanity */
+        KLDRMODMACHO_CHECK_RETURN((KU32)Fixup.r.r_address < cbSectBits, KLDR_ERR_BAD_FIXUP);
+
+        /* calc fixup addresses. */
+        uFix.pv = pbSectBits + Fixup.r.r_address;
+        uFixVirgin.pv = pbSectVirginBits ? (KU8 *)pbSectVirginBits + Fixup.r.r_address : 0;
+
+        /*
+         * Calc the symbol value.
+         */
+        /* Calc the linked symbol address / addend. */
+        switch (Fixup.r.r_length)
+        {
+            /** @todo Deal with unaligned accesses on non x86 platforms. */
+            case 2: SymAddr = *uFixVirgin.pi32; break;
+            case 3: SymAddr = *uFixVirgin.pi64; break;
+            default:
+                KLDRMODMACHO_CHECK_RETURN(0, KLDR_ERR_BAD_FIXUP);
+        }
+        if (Fixup.r.r_pcrel)
+            SymAddr += Fixup.r.r_address + pFixupSect->LinkAddress;
+
+        /* Add symbol / section address. */
+        if (Fixup.r.r_extern)
+        {
+            const macho_nlist_64_t *pSym;
+
+            KLDRMODMACHO_CHECK_RETURN(Fixup.r.r_symbolnum < cSyms, KLDR_ERR_BAD_FIXUP);
+            pSym = &paSyms[Fixup.r.r_symbolnum];
+            KLDRMODMACHO_CHECK_RETURN(!(pSym->n_type & MACHO_N_STAB), KLDR_ERR_BAD_FIXUP);
+
+            switch (Fixup.r.r_type)
+            {
+                /* GOT references just needs to have their symbol verified.
+                   Later, we'll optimize GOT building here using a parallel sym->got array. */
+                case X86_64_RELOC_GOT_LOAD:
+                case X86_64_RELOC_GOT:
+                    switch (pSym->n_type & MACHO_N_TYPE)
+                    {
+                        case MACHO_N_SECT:
+                        case MACHO_N_UNDF:
+                        case MACHO_N_ABS:
+                            break;
+                        case MACHO_N_INDR:
+                        case MACHO_N_PBUD:
+                            KLDRMODMACHO_CHECK_RETURN(0, KLDR_ERR_TODO);
+                        default:
+                            KLDRMODMACHO_CHECK_RETURN(0, KLDR_ERR_MACHO_BAD_SYMBOL);
+                    }
+                    SymAddr = sizeof(KU64) * Fixup.r.r_symbolnum + pModMachO->GotRVA + NewBaseAddress;
+                    break;
+
+                /* Verify the r_pcrel field for signed fixups on the way into the default case. */
+                case X86_64_RELOC_BRANCH:
+                case X86_64_RELOC_SIGNED:
+                case X86_64_RELOC_SIGNED_1:
+                case X86_64_RELOC_SIGNED_2:
+                case X86_64_RELOC_SIGNED_4:
+                    KLDRMODMACHO_CHECK_RETURN(Fixup.r.r_pcrel, KLDR_ERR_BAD_FIXUP);
+                default:
+                {
+                    /* Adjust with fixup specific addend and vierfy unsigned/r_pcrel. */
+                    switch (Fixup.r.r_type)
+                    {
+                        case X86_64_RELOC_UNSIGNED:
+                            KLDRMODMACHO_CHECK_RETURN(!Fixup.r.r_pcrel, KLDR_ERR_BAD_FIXUP);
+                            break;
+                        case X86_64_RELOC_SIGNED:
+                            break;
+                        case X86_64_RELOC_BRANCH:
+                            switch (Fixup.r.r_length)
+                            {
+                                case 0: SymAddr -= 1; break;
+                                case 1: SymAddr -= 2; break;
+                                case 2: SymAddr -= 4; break;
+                                case 3: SymAddr -= 8; break;
+                            }
+                            break;
+                        case X86_64_RELOC_SIGNED_1: SymAddr -= 1; break;
+                        case X86_64_RELOC_SIGNED_2: SymAddr -= 2; break;
+                        case X86_64_RELOC_SIGNED_4: SymAddr -= 4; break;
+                        default:
+                            KLDRMODMACHO_CHECK_RETURN(0, KLDR_ERR_BAD_FIXUP);
+                    }
+
+                    switch (pSym->n_type & MACHO_N_TYPE)
+                    {
+                        case MACHO_N_SECT:
+                        {
+                            PKLDRMODMACHOSECT pSymSect;
+                            KLDRMODMACHO_CHECK_RETURN((KU32)pSym->n_sect - 1 <= pModMachO->cSections, KLDR_ERR_MACHO_BAD_SYMBOL);
+                            pSymSect = &pModMachO->paSections[pSym->n_sect - 1];
+                            SymAddr += pSym->n_value - pSymSect->LinkAddress + pSymSect->RVA + NewBaseAddress;
+                            break;
+                        }
+
+                        case MACHO_N_UNDF:
+                        case MACHO_N_ABS:
+                            SymAddr += pSym->n_value;
+                            break;
+
+                        case MACHO_N_INDR:
+                        case MACHO_N_PBUD:
+                            KLDRMODMACHO_CHECK_RETURN(0, KLDR_ERR_TODO);
+                        default:
+                            KLDRMODMACHO_CHECK_RETURN(0, KLDR_ERR_MACHO_BAD_SYMBOL);
+                    }
+                    break;
+                }
+
+                /*
+                 * This is a weird customer, it will always be follows by an UNSIGNED fixup.
+                 */
+                case X86_64_RELOC_SUBTRACTOR:
+                {
+                    macho_relocation_info_t Fixup2;
+
+                    /* Deal with the SUBTRACT symbol first, by subtracting it from SymAddr. */
+                    switch (pSym->n_type & MACHO_N_TYPE)
+                    {
+                        case MACHO_N_SECT:
+                        {
+                            PKLDRMODMACHOSECT pSymSect;
+                            KLDRMODMACHO_CHECK_RETURN((KU32)pSym->n_sect - 1 <= pModMachO->cSections, KLDR_ERR_MACHO_BAD_SYMBOL);
+                            pSymSect = &pModMachO->paSections[pSym->n_sect - 1];
+                            SymAddr -= pSym->n_value - pSymSect->LinkAddress + pSymSect->RVA + NewBaseAddress;
+                            break;
+                        }
+
+                        case MACHO_N_UNDF:
+                        case MACHO_N_ABS:
+                            SymAddr -= pSym->n_value;
+                            break;
+
+                        case MACHO_N_INDR:
+                        case MACHO_N_PBUD:
+                            KLDRMODMACHO_CHECK_RETURN(0,KLDR_ERR_TODO);
+                        default:
+                            KLDRMODMACHO_CHECK_RETURN(0, KLDR_ERR_MACHO_BAD_SYMBOL);
+                    }
+
+                    /* Load the 2nd fixup, check sanity. */
+                    iFixup++;
+                    KLDRMODMACHO_CHECK_RETURN(!Fixup.r.r_pcrel && iFixup < cFixups, KLDR_ERR_BAD_FIXUP);
+                    Fixup2 = paFixups[iFixup];
+                    KLDRMODMACHO_CHECK_RETURN(   Fixup2.r_address == Fixup.r.r_address
+                                              && Fixup2.r_length == Fixup.r.r_length
+                                              && Fixup2.r_type == X86_64_RELOC_UNSIGNED
+                                              && !Fixup2.r_pcrel
+                                              && Fixup2.r_extern /*??*/
+                                              && Fixup2.r_symbolnum < cSyms,
+                                              KLDR_ERR_BAD_FIXUP);
+
+                    pSym = &paSyms[Fixup.r.r_symbolnum];
+                    KLDRMODMACHO_CHECK_RETURN(!(pSym->n_type & MACHO_N_STAB), KLDR_ERR_BAD_FIXUP);
+
+                    /* Add it's value to SymAddr. */
+                    switch (pSym->n_type & MACHO_N_TYPE)
+                    {
+                        case MACHO_N_SECT:
+                        {
+                            PKLDRMODMACHOSECT pSymSect;
+                            KLDRMODMACHO_CHECK_RETURN((KU32)pSym->n_sect - 1 <= pModMachO->cSections, KLDR_ERR_MACHO_BAD_SYMBOL);
+                            pSymSect = &pModMachO->paSections[pSym->n_sect - 1];
+                            SymAddr += pSym->n_value - pSymSect->LinkAddress + pSymSect->RVA + NewBaseAddress;
+                            break;
+                        }
+
+                        case MACHO_N_UNDF:
+                        case MACHO_N_ABS:
+                            SymAddr += pSym->n_value;
+                            break;
+
+                        case MACHO_N_INDR:
+                        case MACHO_N_PBUD:
+                            KLDRMODMACHO_CHECK_RETURN(0, KLDR_ERR_TODO);
+                        default:
+                            KLDRMODMACHO_CHECK_RETURN(0, KLDR_ERR_MACHO_BAD_SYMBOL);
+                    }
+                }
+                break;
+            }
+        }
+        else
+        {
+            /* verify against fixup type */
+            switch (Fixup.r.r_type)
+            {
+                case X86_64_RELOC_UNSIGNED:
+                case X86_64_RELOC_SIGNED:
+                case X86_64_RELOC_BRANCH:
+                /*case X86_64_RELOC_GOT_LOAD:*/
+                /*case X86_64_RELOC_GOT: */
+                /*case X86_64_RELOC_SUBTRACTOR: - ???*/
+                case X86_64_RELOC_SIGNED_1:
+                case X86_64_RELOC_SIGNED_2:
+                case X86_64_RELOC_SIGNED_4:
+                    break;
+                default:
+                    KLDRMODMACHO_CHECK_RETURN(0, KLDR_ERR_BAD_FIXUP);
+            }
+            if (Fixup.r.r_symbolnum != R_ABS)
+            {
+                PKLDRMODMACHOSECT pSymSect;
+                KLDRMODMACHO_CHECK_RETURN(Fixup.r.r_symbolnum <= pModMachO->cSections, KLDR_ERR_BAD_FIXUP);
+                pSymSect = &pModMachO->paSections[Fixup.r.r_symbolnum - 1];
+
+                SymAddr -= pSymSect->LinkAddress;
+                SymAddr += pSymSect->RVA + NewBaseAddress;
+            }
+        }
+
+        /* adjust for PC relative */
+        if (Fixup.r.r_pcrel)
+            SymAddr -= Fixup.r.r_address + pFixupSect->RVA + NewBaseAddress;
+
+        /*
+         * Write back the fixed up value.
+         */
+        switch (Fixup.r.r_length)
+        {
+            case 3:
+                *uFix.pu64 = (KU64)SymAddr;
+                break;
+            case 2:
+                KLDRMODMACHO_CHECK_RETURN(Fixup.r.r_pcrel || Fixup.r.r_type == X86_64_RELOC_SUBTRACTOR, KLDR_ERR_BAD_FIXUP);
+                KLDRMODMACHO_CHECK_RETURN((KI32)SymAddr == (KI64)SymAddr, KLDR_ERR_ADDRESS_OVERFLOW);
+                *uFix.pu32 = (KU32)SymAddr;
+                break;
+            default:
+                KLDRMODMACHO_CHECK_RETURN(0, KLDR_ERR_BAD_FIXUP);
+        }
+    }
+
+    return 0;
+}
+
+
+/**
  * Loads the symbol table for a MH_OBJECT file.
  *
@@ -2133 +3015 @@
 
         /* sanity */
-        if (    !pModMachO->offSymbols
-            ||  (pModMachO->cchStrings && !pModMachO->offStrings))
-            return KLDR_ERR_MACHO_BAD_OBJECT_FILE;
+        KLDRMODMACHO_CHECK_RETURN(   pModMachO->offSymbols
+                                  && (!pModMachO->cchStrings || pModMachO->offStrings),
+                                  KLDR_ERR_MACHO_BAD_OBJECT_FILE);
 
         /* allocate */
@@ -2143 +3025 @@
              : sizeof(macho_nlist_64_t);
         cbSyms = pModMachO->cSymbols * cbSym;
-        if (cbSyms / cbSym != pModMachO->cSymbols)
-            return KLDR_ERR_SIZE_OVERFLOW;
+        KLDRMODMACHO_CHECK_RETURN(cbSyms / cbSym == pModMachO->cSymbols, KLDR_ERR_SIZE_OVERFLOW);
         rc = KERR_NO_MEMORY;
         pvSyms = kHlpAlloc(cbSyms);
@@ -2222 +3103 @@
     /* allocate the memory. */
     cbFixups = cFixups * sizeof(*paFixups);
-    if (cbFixups / sizeof(*paFixups) != cFixups)
-        return KLDR_ERR_SIZE_OVERFLOW;
+    KLDRMODMACHO_CHECK_RETURN(cbFixups / sizeof(*paFixups) == cFixups, KLDR_ERR_SIZE_OVERFLOW);
     paFixups = (macho_relocation_info_t *)kHlpAlloc(cbFixups);
     if (!paFixups)
@@ -2317 +3197 @@
      */
     if (pModMachO->fMapUsingLoadCommandSections)
-        return KLDR_ERR_TODO; /* deal with this if it ever occurs. */
+        KLDRMODMACHO_CHECK_RETURN(0, KLDR_ERR_TODO); /* deal with this if it ever occurs. */
     else
     {
@@ -2329 +3209 @@
                 continue;
             rc = kRdrRead(pMod->pRdr,
-                             (KU8 *)pvBits + (pMod->aSegments[i].LinkAddress - pModMachO->LinkAddress),
-                             pMod->aSegments[i].cbFile,
-                             pMod->aSegments[i].offFile);
+                          (KU8 *)pvBits + (pMod->aSegments[i].LinkAddress - pModMachO->LinkAddress),
+                          pMod->aSegments[i].cbFile,
+                          pMod->aSegments[i].offFile);
             if (rc)
                 return rc;
@@ -2340 +3220 @@
      * Perform relocations.
      */
-    return kldrModMachORelocateBits(pMod, pvBits, BaseAddress, pModMachO->LinkAddress, pfnGetImport, pvUser);
+    rc = kldrModMachORelocateBits(pMod, pvBits, BaseAddress, pModMachO->LinkAddress, pfnGetImport, pvUser);
+    if (rc)
+        return rc;
+
+    /*
+     * Construct the global offset table if necessary, it's always the last
+     * segment when present.
+     */
+    if (pModMachO->fMakeGot)
+        rc = kldrModMachOMakeGOT(pModMachO, pvBits, BaseAddress);
+    return rc;
+}
+
+
+/**
+ * Builds the GOT.
+ *
+ * Assumes the symbol table has all external symbols resolved correctly and that
+ * the bits has been cleared up front.
+ */
+static int kldrModMachOMakeGOT(PKLDRMODMACHO pModMachO, void *pvBits, KLDRADDR NewBaseAddress)
+{
+    KU32  iSym = pModMachO->cSymbols;
+    if (    pModMachO->Hdr.magic == IMAGE_MACHO32_SIGNATURE
+        ||  pModMachO->Hdr.magic == IMAGE_MACHO32_SIGNATURE_OE)
+    {
+        macho_nlist_32_t const *paSyms = (macho_nlist_32_t const *)pModMachO->pvaSymbols;
+        KU32 *paGOT = (KU32 *)((KU8 *)pvBits + pModMachO->GotRVA);
+        while (iSym-- > 0)
+            switch (paSyms[iSym].n_type & MACHO_N_TYPE)
+            {
+                case MACHO_N_SECT:
+                {
+                    PKLDRMODMACHOSECT pSymSect;
+                    KLDRMODMACHO_CHECK_RETURN((KU32)paSyms[iSym].n_sect - 1 <= pModMachO->cSections, KLDR_ERR_MACHO_BAD_SYMBOL);
+                    pSymSect = &pModMachO->paSections[paSyms[iSym].n_sect - 1];
+                    paGOT[iSym] = paSyms[iSym].n_value - pSymSect->LinkAddress + pSymSect->RVA + NewBaseAddress;
+                    break;
+                }
+
+                case MACHO_N_UNDF:
+                case MACHO_N_ABS:
+                    paGOT[iSym] = paSyms[iSym].n_value;
+                    break;
+            }
+    }
+    else
+    {
+        macho_nlist_64_t const *paSyms = (macho_nlist_64_t const *)pModMachO->pvaSymbols;
+        KU64 *paGOT = (KU64 *)((KU8 *)pvBits + pModMachO->GotRVA);
+        while (iSym-- > 0)
+            switch (paSyms[iSym].n_type & MACHO_N_TYPE)
+            {
+                case MACHO_N_SECT:
+                {
+                    PKLDRMODMACHOSECT pSymSect;
+                    KLDRMODMACHO_CHECK_RETURN((KU32)paSyms[iSym].n_sect - 1 <= pModMachO->cSections, KLDR_ERR_MACHO_BAD_SYMBOL);
+                    pSymSect = &pModMachO->paSections[paSyms[iSym].n_sect - 1];
+                    paGOT[iSym] = paSyms[iSym].n_value - pSymSect->LinkAddress + pSymSect->RVA + NewBaseAddress;
+                    break;
+                }
+
+                case MACHO_N_UNDF:
+                case MACHO_N_ABS:
+                    paGOT[iSym] = paSyms[iSym].n_value;
+                    break;
+            }
+    }
+    return 0;
 }