Skip to content

hoseinyavarzadeh/HalfHalf-LLVM

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

510,243 Commits
.ci
.ci
 
 
.github
.github
 
 
bolt
bolt
 
 
clang-tools-extra
clang-tools-extra
 
 
clang
clang
 
 
cmake
cmake
 
 
compiler-rt
compiler-rt
 
 
cross-project-tests
cross-project-tests
 
 
flang
flang
 
 
libc
libc
 
 
libclc
libclc
 
 
libcxx
libcxx
 
 
libcxxabi
libcxxabi
 
 
libunwind
libunwind
 
 
lld
lld
 
 
lldb
lldb
 
 
llvm-libgcc
llvm-libgcc
 
 
llvm
llvm
 
 
mlir
mlir
 
 
offload
offload
 
 
openmp
openmp
 
 
polly
polly
 
 
pstl
pstl
 
 
runtimes
runtimes
 
 
third-party
third-party
 
 
utils/bazel
utils/bazel
 
 
.clang-format
.clang-format
 
 
.clang-tidy
.clang-tidy
 
 
.git-blame-ignore-revs
.git-blame-ignore-revs
 
 
.gitattributes
.gitattributes
 
 
.gitignore
.gitignore
 
 
.mailmap
.mailmap
 
 
CODE_OF_CONDUCT.md
CODE_OF_CONDUCT.md
 
 
CONTRIBUTING.md
CONTRIBUTING.md
 
 
LICENSE.TXT
LICENSE.TXT
 
 
README.md
README.md
 
 
SECURITY.md
SECURITY.md
 
 
pyproject.toml
pyproject.toml
 
 

Repository files navigation

Half&Half Implementation on LLVM Compiler for X86 Machines

Half&Half is a software-only solution to branch predictor isolation that requires no changes to the hardware or ISA, and only requires minor modifications to be supported in existing compilers.

Paper: Half&Half: Demystifying Intel's Directional Branch Predictors for Fast, Secure Partitioned Execution

Authors: Hosein Yavarzadeh, Mohammadkazem Taram, Shravan Narayan, Deian Stefan, Dean Tullsen

Conference: IEEE Symposium on Security and Privacy (IEEE S&P), May 2023.

Website: https://halfandhalf.cpusec.org/

Also, you can find the paper here: https://ieeexplore.ieee.org/document/10179415

How To Build the Compiler

git clone https://github.com/hoseinyavarzadeh/HalfHalf-LLVM.git
cd HalfHalf-LLVM
git branch -v -a
git checkout halfhalf
cmake -S llvm -B build -G Ninja -DCMAKE_BUILD_TYPE=Release -DLLVM_ENABLE_PROJECTS=clang
cmake --build build -j32

Half&Half Examples

To compile code so that all its conditional branches have bit 5 set to 0, use the following command:

build/bin/clang++ -o something.o something.cpp -mllvm --x86-align-branch-boundary=64 -mllvm --x86-align-skew=0 -mllvm --x86-align-branch=fused+jcc

To set bit 5 to 1 for all conditional branches, use this command:

build/bin/clang++ -o something.o something.cpp -mllvm --x86-align-branch-boundary=64 -mllvm --x86-align-skew=32 -mllvm --x86-align-branch=fused+jcc

Description of Compiler Runtime Parameters

  1. --x86-align-branch-boundary : This parameter specifies the bit in the branch address that you want to pin. To set bit n, you should provide 2^(n+1) as the value. For example, to pin bit 5, you would provide 64.

  2. --x86-align-skew : This parameter determines whether bit n will be set to 0 or 1. To set the bit to 0, provide 0 as the value; to set it to 1, provide 2^n.

  3. --x86-align-branch : This parameter specifies the types of branches to align. Possible options include jcc, fused, jmp, call, ret, and indirect. For Half&Half purposes, only conditional branches are aligned, so you would use --x86-align-branch=fused+jcc.

  4. --x86-branch-before-nops : This option controls whether a jump instruction is emitted before padding with NOP instructions, which optimizes the process by jumping over the NOPs. The default value is 17.

About

The LLVM Project is a collection of modular and reusable compiler and toolchain technologies.

llvm.org

Resources

Readme

License

View license

Code of conduct

Code of conduct

Security policy

Security policy
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

272 tags

Packages

No packages published

Languages

  • LLVM 37.2%
  • C++ 32.9%
  • C 16.8%
  • Assembly 9.0%
  • MLIR 1.3%
  • Python 0.9%
  • Other 1.9%