patch submission: x86 trapsleds

Hal Finkel via llvm-commits llvm-commits at lists.llvm.org
Sat Jul 22 22:11:24 PDT 2017 

On 07/22/2017 11:34 PM, Todd Mortimer via llvm-commits wrote:
> On Thu, Jul 20, 2017 at 11:02:16AM +0200, Joerg Sonnenberger wrote:
>> On Wed, Jul 19, 2017 at 09:35:58PM -0400, Todd Mortimer via llvm-commits wrote:
>>> I have attached a patch that converts NOP padding emitted by
>>> X86AsmBackend::writeNopData into a short JMP over a sequence of INT3
>>> insructions. The idea is to remove potentially convenient NOP sleds
>>> which may be used in ROP attacks. Programs which would have normally
>>> executed through a NOP sled will now just JMP over the INT3s, but an
>>> attacker hoping to hit the NOP sled on their way to some code will now
>>> get a core dump.
>> I don't believe turning a single padding instruction into a jump is a
>> good idea for any intra-function place. You should at the very least
>> demonstrate the performance (non-)regression by running LNT. You will
>> also need at least a functional test case before this can be further
>> considered. Note that the lld case is completely different -- it is only
>> about inter-function padding.
> Okay, I have run LNT with this, and compared to the baseline
> performance. I ran lnt nightly, with --user-perf=1 and --multisample=5.
>
> The build with trapsleds showed
>
> Performace improvement on:
> SingleSource/Benchmarks/Misc/salsa20:              4.70s vs 4.83s
>
> Performance regression on:
> SingleSource/Benchmarks/Shootout-C++/fibo:         1.51s vs 1.40s
> MultiSource/Benchmarks/Ptrdist/yacr2/yar2:         0.55s vs 0.51s
> SingleSource/Benchmarks/Shootout-C++/ackermann:    0.97s vs 0.91s
> SingleSource/Benchmarks/BenchmarkGame/recursive:   0.53s vs 0.52s
> MultiSource/Applications/lambda-0_1_1/lambda:      2.86s vs 2.81s
> MultiSource/Applications/ash/aha:                  1.53s vs 1.50s
> SingleSource/Benchmarks/Adobe-C++/functionobjects: 2.77s vs 2.74s
>
> All other performance tests benched the same.
>
> I don't know if these results are significant enough to be of concern,
> of it it would be preferable to put trapsled generation behind an option.

I think we'd want a target option so that we could turn this off (or 
turn it on, as the case may be). That's nearly an 8% slowdown on 
Shootout-C++/fibo and nearly a 7% slowdown on Shootout-C++/ackermann.

Also, I highly recommend that you submit patches via Phabricator, see: 
http://llvm.org/docs/Phabricator.html#requesting-a-review-via-the-web-interface

  -Hal

>
> What is the next step to moving this along, if it can be considered for
> inclusion?
>
> Thank you,
> Todd
> _______________________________________________
> llvm-commits mailing list
> llvm-commits at lists.llvm.org
> http://lists.llvm.org/cgi-bin/mailman/listinfo/llvm-commits

-- 
Hal Finkel
Lead, Compiler Technology and Programming Languages
Leadership Computing Facility
Argonne National Laboratory

More information about the llvm-commits mailing list