compiler guaranteed safety in code copying virtual
play

Compiler-guaranteed Safety in Code-copying Virtual Machines Gregory - PowerPoint PPT Presentation

Apr 13, 2023 •184 likes •496 views

Background and Motivation Our Design and Implementation Results and Conclusions Compiler-guaranteed Safety in Code-copying Virtual Machines Gregory B. Prokopski Clark Verbrugge School of Computer Science Sable Research Group McGill

  1. Background and Motivation Our Design and Implementation Results and Conclusions Compiler-guaranteed Safety in Code-copying Virtual Machines Gregory B. Prokopski Clark Verbrugge School of Computer Science Sable Research Group McGill University Montreal, Canada International Conference on Compiler Construction, 2008 Compiler-guaranteed Safety in Code-copying, Virtual Machines 1 / 19

  2. Background and Motivation Our Design and Implementation Results and Conclusions Taxonomy Virtual Machine Interpreter Compiler switch- Ahead- code-copying threaded Of-Time Just-In-Time direct-threaded Code-copying technique Interpreter and also a JIT. Compiler-guaranteed Safety in Code-copying, Virtual Machines 2 / 19

  3. Background and Motivation Our Design and Implementation Results and Conclusions Speed Comparison costs optimizing compilers naive compilers code- Interpreters direct copying runtime switch speed Code-copying technique Bridges the performance gap while keeping costs low. 1.2–3.0 times faster than direct-threading. Compiler-guaranteed Safety in Code-copying, Virtual Machines 3 / 19

  4. Background and Motivation Our Design and Implementation Results and Conclusions Direct-threading vs. Code-copying interpreter main loop single superinstruction (direct-threaded) (code-copying) IADD: IADD ILOAD_1 . . . ILOAD_0: ILOAD_0 ILOAD_0 IADD ILOAD_1: ISTORE_2 ILOAD_1 . . . ISTORE_2: superinstruction ILOAD1_ILOAD0_IADD_ISTORE2 ISTORE_2 . . . Code-copying technique Reduces number of dispatches and improves branch prediction. Compiler-guaranteed Safety in Code-copying, Virtual Machines 4 / 19

  5. Background and Motivation Our Design and Implementation Results and Conclusions Code-copying Disaster Example BCODE_START: How it happens? if (...) { Direct-threading - one label // then part } else { // else part } Compiler-guaranteed Safety in Code-copying, Virtual Machines 5 / 19

  6. Background and Motivation Our Design and Implementation Results and Conclusions Code-copying Disaster Example BCODE_START: How it happens? if (...) { Direct-threading - one label // then part Code-copying - two bracketing } labels else { // else part } BCODE_END: Compiler-guaranteed Safety in Code-copying, Virtual Machines 5 / 19

  7. Background and Motivation Our Design and Implementation Results and Conclusions Code-copying Disaster Example BCODE_START: How it happens? if (...) { Direct-threading - one label // then part Code-copying - two bracketing } labels BCODE_END: . . . Optimizations move basic { blocks // else part } Compiler-guaranteed Safety in Code-copying, Virtual Machines 5 / 19

  8. Background and Motivation Our Design and Implementation Results and Conclusions Code-copying Disaster Example BCODE_START: How it happens? if (...) { Direct-threading - one label // then part Code-copying - two bracketing } labels BCODE_END: Optimizations move basic . . . blocks // else ??? Incomplete copied code Compiler-guaranteed Safety in Code-copying, Virtual Machines 5 / 19

  9. Background and Motivation Our Design and Implementation Results and Conclusions Code-copying Disaster Example BCODE_START: How it happens? if (...) { Direct-threading - one label // then part Code-copying - two bracketing } labels BCODE_END: Optimizations move basic . . . blocks // else ??? Incomplete copied code CRASH!!! Compiler-guaranteed Safety in Code-copying, Virtual Machines 5 / 19

  10. Background and Motivation Our Design and Implementation Results and Conclusions Code-copying Disaster Example BCODE_START: How it happens? if (...) { Direct-threading - one label // then part Code-copying - two bracketing } labels BCODE_END: Optimizations move basic . . . blocks // else ??? Incomplete copied code CRASH!!! Problems always arise when a compiler uses relative addressing to reach outside a bytecode. Compiler-guaranteed Safety in Code-copying, Virtual Machines 5 / 19

  11. Background and Motivation Our Design and Implementation Results and Conclusions Motivation Code-copying Easy, cheap to implement Great performance Not reliable (with modern compilers) - current approaches: Ignore the problem. Hand-check the assembly. Trial and error testing. Approximate runtime checks. Compiler-guaranteed Safety in Code-copying, Virtual Machines 6 / 19

  12. Background and Motivation Our Design and Implementation Results and Conclusions Outline Background and Motivation 1 Interpreters vs. Compilers Gap Code-copying and Its (Lack of) Safety Our Design and Implementation 2 Copied Code Tracking Verification Results and Conclusions 3 Performance Compiler Maintainability Impact Compiler-guaranteed Safety in Code-copying, Virtual Machines 7 / 19

  13. Background and Motivation Our Design and Implementation Results and Conclusions Copyable Code - What Is It? Copyable Code ”Chunk” Requirements Contiguous in memory between two labels Control flow ”top” to ”bottom” Jumps to outside and calls are absolute Jumps within chunk are relative Consistent registers use at entry and exit Compiler-guaranteed Safety in Code-copying, Virtual Machines 8 / 19

  14. Background and Motivation Our Design and Implementation Results and Conclusions Solution overview Optimizing compiler (GCC) enhancement Programmer-friendly #pragma Track copyable code ”chunks” Dozens of passes — Do not touch! Selective restore of code properties Final code verification Compiler-guaranteed Safety in Code-copying, Virtual Machines 9 / 19

  15. Background and Motivation Our Design and Implementation Results and Conclusions Solution overview Inserted new passes Identify basic blocks of copyable code chunks Enforce absolute jumps and calls ⇒ Run existing optimizations Basic block order fixup ⇒ Legacy existing optimizations Copyable code verification Compiler-guaranteed Safety in Code-copying, Virtual Machines 10 / 19

  16. Background and Motivation Our Design and Implementation Results and Conclusions Pragma Handling . . . BCODE_START: if (...) { . . . } else { . . . } BCODE_END: . . . Compiler-guaranteed Safety in Code-copying, Virtual Machines 11 / 19

  17. Background and Motivation Our Design and Implementation Results and Conclusions Pragma Handling . . . #pragma copyable start BCODE_START: if (...) { . . . } else { . . . } #pragma copyable end BCODE_END: . . . Compiler-guaranteed Safety in Code-copying, Virtual Machines 11 / 19

  18. Background and Motivation Our Design and Implementation Results and Conclusions Pragma Handling Basic blocks Statements stream . . . area = 0 #pragma copyable start BCODE_START: a r e a = 5 if (...) { flags = START . . . } else { a r e a = 5 . . . } a r e a = 5 #pragma copyable end a r e a = 5 BCODE_END: flags = TARGET . . . area = 0 First and past-last basic blocks are marked as Start and Target. Compiler-guaranteed Safety in Code-copying, Virtual Machines 11 / 19

  19. Background and Motivation Our Design and Implementation Results and Conclusions Enforcing Absolute Gotos and Calls BCODE_START: . . . if (ptr==NULL) goto NPE_handler; . . . BCODE_END: Need to correct relative addressing within ”chunks”. External assembler decides on addressing mode — not GCC. Needed an architecture-agnostic solution. Compiler-guaranteed Safety in Code-copying, Virtual Machines 12 / 19

  20. Background and Motivation Our Design and Implementation Results and Conclusions Enforcing Absolute Gotos and Calls { void *target = &NPE_handler; BCODE_START: __asm__ __volatile__ ( "" : . . . if (ptr==NULL) "=r" (target) : goto NPE_handler; "0" (target) : . . . "memory"); BCODE_END: goto *target; } Need to correct relative addressing within ”chunks”. External assembler decides on addressing mode — not GCC. Needed an architecture-agnostic solution. Goto to the outside of chunk is forced into a computed goto. Each call is forced into call via function pointer. Compiler-guaranteed Safety in Code-copying, Virtual Machines 12 / 19

  21. Background and Motivation Our Design and Implementation Results and Conclusions Compiler Runs Largerly Unaffected Once Start and Target basic blocks are marked and absolute addressing enforced all optimizations are performed as usual. A lot of work to modify several dozens of passes — don’t! Start and Target block are never removed or duplicated. Able to find all copyable code of each chunk via CFG. Traverse CFG from Start until Target or computed goto is reached. No heuristics. Compiler-guaranteed Safety in Code-copying, Virtual Machines 13 / 19

  22. Background and Motivation Our Design and Implementation Results and Conclusions Ensuring Copyable Code Contiguity 1. area = 5 1 BB1 flags = START area = 5 BB2 4 6 flags = TARGET area = 0 BB3 2 area = 0 BB4 3 area = 0 BB5 area = 0 5 BB6 Compiler moved basic blocks. 1 Compiler-guaranteed Safety in Code-copying, Virtual Machines 14 / 19

  23. Background and Motivation Our Design and Implementation Results and Conclusions Ensuring Copyable Code Contiguity 2. area = 5 1 BB1 flags = START area = 5 4 6 BB2 flags = TARGET area = 0 BB3 2 area = 5 BB4 3 area = 0 BB5 5 area = 5 BB6 Compiler moved basic blocks. 1 Follow CFG to find blocks of each chunk. 2 Compiler-guaranteed Safety in Code-copying, Virtual Machines 14 / 19

Recommend

What does the compiler actually do with my code? An introduction to the C++ ABI Filip

What does the compiler actually do with my code? An introduction to the C++ ABI Filip

What does the compiler actually do with my code? An introduction to the C++ ABI Filip Strmbck 1 Introduction 2 What is an ABI? 3 Object layout 4 Function calls 5 Virtual functions 6 Exceptions What does the compiler actually do with my

714 views • 60 slides
What is a Compiler? Compiler A program that translates code in one language (source code) to

What is a Compiler? Compiler A program that translates code in one language (source code) to

CS 426 Lecture 1: Course Overview What is a Compiler? Compiler A program that translates code in one language (source code) to code in another language (target code). Usually, target code is semantically equivalent to source code, but not

905 views • 11 slides
Code Generation Chapter 9 1 Compiler Construction Code Generation Issues in Code Generation

Code Generation Chapter 9 1 Compiler Construction Code Generation Issues in Code Generation

Code Generation Chapter 9 1 Compiler Construction Code Generation Issues in Code Generation Target language Relocatable machine code Commercial compilers produce this Absolute machine code OS code must start at a particular memory

503 views • 19 slides
Code Generation 22 November 2019 OSU CSE 1 BL Compiler Structure Code Tokenizer Parser

Code Generation 22 November 2019 OSU CSE 1 BL Compiler Structure Code Tokenizer Parser

Code Generation 22 November 2019 OSU CSE 1 BL Compiler Structure Code Tokenizer Parser Generator string of string of abstract string of characters tokens program integers (source code) (words) (object code) The code

1.05k views • 55 slides
Compiler Construction Lecture 19: Code Generation V (Compiler Backend) Winter Semester 2018/19

Compiler Construction Lecture 19: Code Generation V (Compiler Backend) Winter Semester 2018/19

Compiler Construction Lecture 19: Code Generation V (Compiler Backend) Winter Semester 2018/19 Thomas Noll Software Modeling and Verification Group RWTH Aachen University https://moves.rwth-aachen.de/teaching/ws-1819/cc/ The Compiler Backend

1.27k views • 59 slides
INF5110 Compiler Construction Code generation Spring 2016 1 / 123 Outline 1. Code

INF5110 Compiler Construction Code generation Spring 2016 1 / 123 Outline 1. Code

INF5110 Compiler Construction Code generation Spring 2016 1 / 123 Outline 1. Code generation Intro 2AC and costs of instructions Basic blocks and control-flow graphs Code generation algo Global analysis Bibs 2 / 123 Outline 1. Code

1.61k views • 123 slides
CS 2112 Lab: Inheritance September 24 / 26, 2018 Inheritance Overview Language mechanism for

CS 2112 Lab: Inheritance September 24 / 26, 2018 Inheritance Overview Language mechanism for

CS 2112 Lab: Inheritance September 24 / 26, 2018 Inheritance Overview Language mechanism for extending and reusing code Different from subtyping! Two basic functions: Copying and Editing Copying and Editing Copying is provided by

510 views • 16 slides
Iterative copying cheaper than recursive copying Allocation in copying collector init() {

Iterative copying cheaper than recursive copying Allocation in copying collector init() {

Iterative copying cheaper than recursive copying Allocation in copying collector init() { to_space = Heap_bottom space_size = Heap_size / 2 top_of_space = to_space + space_size from_space = top_of_space + 1 free = to_space } new(n){ if

465 views • 20 slides
Code Generation OSU CSE 2 April 2015 BL Compiler Structure Code Tokenizer Parser Generator

Code Generation OSU CSE 2 April 2015 BL Compiler Structure Code Tokenizer Parser Generator

1 Code Generation OSU CSE 2 April 2015 BL Compiler Structure Code Tokenizer Parser Generator string of string of abstract string of characters tokens integers program (source code) (words) (object code) The code generator

919 views • 55 slides
Code Placement, Code Motion Compiler Construction Course Winter Term 2009/2010 saarland

Code Placement, Code Motion Compiler Construction Course Winter Term 2009/2010 saarland

Code Placement, Code Motion Compiler Construction Course Winter Term 2009/2010 saarland university computer science Why? Loop-invariant code motion Global value numbering destroys block membership Remove redundant computations 2 GVN Recap

410 views • 21 slides
PaX (http://pageexec.virtualave.net) The Guaranteed End of Arbitrary Code Execution Who am I?

PaX (http://pageexec.virtualave.net) The Guaranteed End of Arbitrary Code Execution Who am I?

PaX (http://pageexec.virtualave.net) The Guaranteed End of Arbitrary Code Execution Who am I? Brad Spengler The only grsecurity developer NOT a PaX developer Computer Engineering major, Mathematics minor What is PaX? Quite

596 views • 37 slides
INF5110 Compiler Construction Spring 2016 1 / 98 Outline 1. Intermediate code generation

INF5110 Compiler Construction Spring 2016 1 / 98 Outline 1. Intermediate code generation

INF5110 Compiler Construction Spring 2016 1 / 98 Outline 1. Intermediate code generation Intro Intermediate code Three-address code P-code Generating P-code Generation of three address code Basic: From P-code to TA-Code and back:

1.41k views • 98 slides
INF5110 Compiler Construction Spring 2017 1 / 97 Outline 1. Intermediate code generation

INF5110 Compiler Construction Spring 2017 1 / 97 Outline 1. Intermediate code generation

INF5110 Compiler Construction Spring 2017 1 / 97 Outline 1. Intermediate code generation Intro Intermediate code Three-address code P-code Generating P-code Generation of three address code Basic: From P-code to TA-Code and back:

1.18k views • 97 slides
Some Improvements of the Byte-code Compiler Problems in Existing R/C Code Tomas Kalibera With

Some Improvements of the Byte-code Compiler Problems in Existing R/C Code Tomas Kalibera With

Some Improvements of the Byte-code Compiler Problems in Existing R/C Code Tomas Kalibera With Luke Tierney, Jan Vitek Fighting PROTECT bugs PROTECT(sb = coerceVector (CADR(args), CPLXSXP)); nb = XLENGTH(sb); if (nb == 0) return allocVector

432 views • 11 slides
Survivable and Bandwidth- Guaranteed Embedding of Virtual Clusters in Cloud Data Centers Ruozhou

Survivable and Bandwidth- Guaranteed Embedding of Virtual Clusters in Cloud Data Centers Ruozhou

IEEE INFOCOM 2017 Datacenter Networks 1 Survivable and Bandwidth- Guaranteed Embedding of Virtual Clusters in Cloud Data Centers Ruozhou Yu , Guoliang Xue, and Xiang Zhang Arizona State University Dan Li Tsinghua University 1/25 Outlines q

314 views • 28 slides
Subject Matter Compiler-based code improvement techniques > Sometimes called

Subject Matter Compiler-based code improvement techniques > Sometimes called

C OMP 512 This is C OMP 512 Advanced Compiler Construction Subject Matter Compiler-based code improvement techniques > Sometimes called optimization Analysis required to support them > No vector or multiprocessor

438 views • 20 slides
Compiler Design Spring 2018 2.3 Templates (for code generation) 2.4 Template-based code

Compiler Design Spring 2018 2.3 Templates (for code generation) 2.4 Template-based code

Compiler Design Spring 2018 2.3 Templates (for code generation) 2.4 Template-based code generator Thomas R. Gross Computer Science Department ETH Zurich, Switzerland 26 2.3 Templates Templates decide how code generator behaves

776 views • 61 slides
Code Generation and Optimization ALSU Textbook Chapters 8.4, 8.5, 8.7, 8.8, 9.1 Tsan-sheng Hsu

Code Generation and Optimization ALSU Textbook Chapters 8.4, 8.5, 8.7, 8.8, 9.1 Tsan-sheng Hsu

Code Generation and Optimization ALSU Textbook Chapters 8.4, 8.5, 8.7, 8.8, 9.1 Tsan-sheng Hsu tshsu@iis.sinica.edu.tw http://www.iis.sinica.edu.tw/~tshsu 1 Introduction For some compiler, the intermediate code is a pseudo code of a virtual

400 views • 15 slides
Recursive-Descent Parsing 22 March 2019 OSU CSE 1 BL Compiler Structure Code Tokenizer

Recursive-Descent Parsing 22 March 2019 OSU CSE 1 BL Compiler Structure Code Tokenizer

Recursive-Descent Parsing 22 March 2019 OSU CSE 1 BL Compiler Structure Code Tokenizer Parser Generator string of string of abstract string of characters tokens program integers (source code) (words) (object code) Note that

615 views • 43 slides
Operating Systems WT 2019/20 Memory Management Shared Memory Process 1 virtual memory most

Operating Systems WT 2019/20 Memory Management Shared Memory Process 1 virtual memory most

Operating Systems WT 2019/20 Memory Management Shared Memory Process 1 virtual memory most modern OSs provide a way for processes to share Physical memory memory compiler e.g. code pages for image executables Process 2 virtual

511 views • 29 slides
Compiler Design and Construction Code Generation Pop Quiz/Review What options do we have for

Compiler Design and Construction Code Generation Pop Quiz/Review What options do we have for

Compiler Design and Construction Code Generation Pop Quiz/Review What options do we have for generating code? If we choose IR, what options do we have for IR? 2 Code Generation April, 2011 Intermediate Code Generation A OR B AND NOT C

532 views • 50 slides
Program Generation Workflow C**program compiler assembly*code nd* library*object*code

Program Generation Workflow C**program compiler assembly*code nd* library*object*code

Program Generation Workflow C**program compiler assembly*code nd* library*object*code assembler de. . object*code on* linker bels* executable *how* Sean Barker 1 Linking Schematic Executable*file Object*file main:*****

390 views • 4 slides
Code Generation Wilhelm/Maurer: Compiler Design, Chapter 12 Reinhard Wilhelm

Code Generation Wilhelm/Maurer: Compiler Design, Chapter 12 Reinhard Wilhelm

Code Generation Code Generation Wilhelm/Maurer: Compiler Design, Chapter 12 Reinhard Wilhelm Universitt des Saarlandes wilhelm@cs.uni-sb.de and Mooly Sagiv Tel Aviv University 11. Januar 2010 Code Generation Standard

867 views • 52 slides
Writing better code with Writing better code with help from the compiler help from the compiler

Writing better code with Writing better code with help from the compiler help from the compiler

Writing better code with Writing better code with help from the compiler help from the compiler Thiago Macieira Thiago Macieira Qt Developer Days & LinuxCon Europe October/2014 Qt Developer Days & LinuxCon Europe October/2014

593 views • 32 slides

More recommend