This is an archive of the discontinued LLVM Phabricator instance.

Differential D100546

[ARM][AArch64] SLSHardening: make non-comdat thunks possible
ClosedPublic

Authored by danielkiss on Apr 15 2021, 4:18 AM.

Details

Reviewers
kristof.beyls
srhines
Commits
rG801ab71032e1: [ARM][AArch64] SLSHardening: make non-comdat thunks possible
Summary

Linker scripts might not handle COMDAT sections. SLSHardeing adds
new section for each __llvm_slsblr_thunk_xN. This new option allows
the generation of the thunks into the normal text section to handle these
exceptional cases.
,comdat or ,noncomdat can be added to harden-sls to control the codegen.
-mharden-sls=[all|retbr|blr],nocomdat.

Diff Detail

Event Timeline

danielkiss created this revision.Apr 15 2021, 4:18 AM
Herald added a subscriber: hiraditya. · View Herald TranscriptApr 15 2021, 4:18 AM
danielkiss requested review of this revision.Apr 15 2021, 4:18 AM
Herald added a project: Restricted Project. · View Herald TranscriptApr 15 2021, 4:18 AM
Herald added a subscriber: llvm-commits. · View Herald Transcript
tamas.petz added inline comments.Apr 15 2021, 4:22 AM
llvm/include/llvm/CodeGen/IndirectThunks.h
56

NIT: tabs to spaces

kristof.beyls added a comment.Apr 15 2021, 4:48 AM

Apart from maybe needing to run clang-format on the patch, the code changes look good to me.
Before this could be committed, this needs tests.

llvm/include/llvm/CodeGen/IndirectThunks.h
43–44

I'm not entirely sure, but is this how clang-format formats these lines?

Harbormaster completed remote builds in B98873: Diff 337706.Apr 15 2021, 5:20 AM
danielkiss updated this revision to Diff 344079.May 10 2021, 9:17 AM
danielkiss edited the summary of this revision. (Show Details)

Adding a fronted flag and tests.
comdat is still the default, feels fine but I'm not sure.

danielkiss marked 2 inline comments as done.May 10 2021, 9:19 AM
danielkiss added inline comments.
llvm/include/llvm/CodeGen/IndirectThunks.h
43–44

yes, patch went thru git clang-format

tamas.petz added a comment.May 10 2021, 9:30 AM

I have just a few small comments.

llvm/include/llvm/CodeGen/IndirectThunks.h
31

Is the default argument really required?

57

There are still TABs there.

danielkiss marked an inline comment as done.May 10 2021, 9:34 AM
danielkiss added inline comments.
llvm/include/llvm/CodeGen/IndirectThunks.h
31

yes, this function is called from x86 backed and I'd not change that.

57

I think these are spaces, could you please take a look at the raw diff?

Harbormaster completed remote builds in B103507: Diff 344079.May 10 2021, 9:40 AM
kristof.beyls added inline comments.May 11 2021, 5:57 AM
clang/lib/Driver/ToolChains/Arch/ARM.cpp
841–844

I think it would be better if comdat/nocomdat were also communicated through Features.
It keeps the interface on this part of the code base consistent (no need to introduce a CmdArgs feature); and also makes sure that LTO vs non-LTO builds keep on behaving the same way, as the feature is set per function, not per translation unit.

I haven't really thought about how to best specify that feature. Maybe just have an extra 2 features: +harden-sls-comdat and +harden-sls-nocomdat?

llvm/test/CodeGen/AArch64/speculation-hardening-sls.ll
218–220

Would it be possible to also have check lines for HARDEN-COMDAT-OFF, i.e. look for lines that HARDEN-COMDAT-OFF should produce?

llvm/test/CodeGen/ARM/speculation-hardening-sls.ll
249–251

Would it be possible to also have check lines for HARDEN-COMDAT-OFF, i.e. look for lines that HARDEN-COMDAT-OFF should produce?

danielkiss added inline comments.May 11 2021, 1:27 PM
clang/lib/Driver/ToolChains/Arch/ARM.cpp
841–844

I almost added a feature for the harden-sls-noncomdat but that is not really a HW feature so felt the backed flag is better.
One feature bit seems enough to describe the two states.

danielkiss updated this revision to Diff 346151.May 18 2021, 5:41 AM

address review comments.

danielkiss marked 5 inline comments as done.May 18 2021, 5:42 AM
kristof.beyls accepted this revision.May 18 2021, 7:48 AM

Thanks @danielkiss !
I only have a few nit picky remarks.
Overall looks good!

clang/lib/Driver/ToolChains/Arch/AArch64.cpp
275

I'm wondering if the '(EnableRetBr || EnableBlr)' condition is needed here?
Just dropping it would make this code a little bit simpler.
I'm assuming here of course that the semantics of the +harden-sls-comdat target feature is to not produce comdat sections in case any of the other sls-hardening target features would produce thunks.
I agree this is a bit of a nit pick though.

clang/lib/Driver/ToolChains/Arch/ARM.cpp
841

Same comment/thought on the "(EnableRetBr || EnableBlr)" condition as on the AArch64 side.

llvm/lib/Target/AArch64/AArch64.td
528

I think it would be more accurate if the word "thunk" would be present in the documentation.
What about the following:
"Generate thunk code for SLS mitigation in the normal text section"?

llvm/lib/Target/ARM/ARM.td
578

Same comment as on the AArch64 side on using the word "thunk" somewhere in the help text.

This revision is now accepted and ready to land.May 18 2021, 7:48 AM
Harbormaster completed remote builds in B105024: Diff 346151.May 18 2021, 9:19 AM
danielkiss updated this revision to Diff 346425.May 19 2021, 6:00 AM
danielkiss marked 4 inline comments as done.
danielkiss added inline comments.
clang/lib/Driver/ToolChains/Arch/AArch64.cpp
275

the check is a bit overkill, the backend won't do anything anyway without the EnableRetBr || EnableBlr

Harbormaster completed remote builds in B105214: Diff 346425.May 19 2021, 6:26 AM
kristof.beyls accepted this revision.May 19 2021, 9:41 AM

LGTM.

jcai19 added a subscriber: jcai19.May 19 2021, 9:44 AM
This revision was landed with ongoing or failed builds.May 20 2021, 8:07 AM
Closed by commit rG801ab71032e1: [ARM][AArch64] SLSHardening: make non-comdat thunks possible (authored by danielkiss). · Explain Why
This revision was automatically updated to reflect the committed changes.
danielkiss marked an inline comment as done.
danielkiss added a commit: rG801ab71032e1: [ARM][AArch64] SLSHardening: make non-comdat thunks possible.
Herald added a project: Restricted Project. · View Herald TranscriptMay 20 2021, 8:07 AM
Herald added a subscriber: cfe-commits. · View Herald Transcript

Revision Contents

PathSize
clang/
lib/
Driver/
ToolChains/
Arch/
22 lines
22 lines
test/
Driver/
69 lines
llvm/
include/
llvm/
CodeGen/
17 lines
lib/
Target/
AArch64/
3 lines
6 lines
2 lines
ARM/
5 lines
6 lines
4 lines
test/
CodeGen/
AArch64/
14 lines
ARM/
32 lines

Diff 346743

clang/lib/Driver/ToolChains/Arch/AArch64.cpp

Show First 20 LinesShow All 229 Lines▼ Show 20 Lines else if (Mtp != "el0")
D.Diag(diag::err_drv_invalid_mtp) << A->getAsString(Args); D.Diag(diag::err_drv_invalid_mtp) << A->getAsString(Args);
} }
// Enable/disable straight line speculation hardening. // Enable/disable straight line speculation hardening.
if (Arg *A = Args.getLastArg(options::OPT_mharden_sls_EQ)) { if (Arg *A = Args.getLastArg(options::OPT_mharden_sls_EQ)) {
StringRef Scope = A->getValue(); StringRef Scope = A->getValue();
bool EnableRetBr = false; bool EnableRetBr = false;
bool EnableBlr = false; bool EnableBlr = false;
if (Scope != "none" && Scope != "all") { bool DisableComdat = false;
if (Scope != "none") {
SmallVector<StringRef, 4> Opts; SmallVector<StringRef, 4> Opts;
Scope.split(Opts, ","); Scope.split(Opts, ",");
for (auto Opt : Opts) { for (auto Opt : Opts) {
Opt = Opt.trim(); Opt = Opt.trim();
if (Opt == "all") {
EnableBlr = true;
EnableRetBr = true;
continue;
}
if (Opt == "retbr") { if (Opt == "retbr") {
EnableRetBr = true; EnableRetBr = true;
continue; continue;
} }
if (Opt == "blr") { if (Opt == "blr") {
EnableBlr = true; EnableBlr = true;
continue; continue;
} }
if (Opt == "comdat") {
DisableComdat = false;
continue;
}
if (Opt == "nocomdat") {
DisableComdat = true;
continue;
}
D.Diag(diag::err_invalid_sls_hardening) D.Diag(diag::err_invalid_sls_hardening)
<< Scope << A->getAsString(Args); << Scope << A->getAsString(Args);
break; break;
} }
} else if (Scope == "all") {
EnableRetBr = true;
EnableBlr = true;
} }
if (EnableRetBr) if (EnableRetBr)
Features.push_back("+harden-sls-retbr"); Features.push_back("+harden-sls-retbr");
if (EnableBlr) if (EnableBlr)
Features.push_back("+harden-sls-blr"); Features.push_back("+harden-sls-blr");
if (DisableComdat) {
kristof.beylsUnsubmitted
Done
ReplyInline Actions

I'm wondering if the '(EnableRetBr || EnableBlr)' condition is needed here?
Just dropping it would make this code a little bit simpler.
I'm assuming here of course that the semantics of the +harden-sls-comdat target feature is to not produce comdat sections in case any of the other sls-hardening target features would produce thunks.
I agree this is a bit of a nit pick though.

kristof.beyls: I'm wondering if the '(EnableRetBr || EnableBlr)' condition is needed here? Just dropping it…
danielkissAuthorUnsubmitted
Done
ReplyInline Actions

the check is a bit overkill, the backend won't do anything anyway without the EnableRetBr || EnableBlr

danielkiss: the check is a bit overkill, the backend won't do anything anyway without the `EnableRetBr ||…
Features.push_back("+harden-sls-nocomdat");
}
} }
// En/disable crc // En/disable crc
if (Arg *A = Args.getLastArg(options::OPT_mcrc, options::OPT_mnocrc)) { if (Arg *A = Args.getLastArg(options::OPT_mcrc, options::OPT_mnocrc)) {
if (A->getOption().matches(options::OPT_mcrc)) if (A->getOption().matches(options::OPT_mcrc))
Features.push_back("+crc"); Features.push_back("+crc");
else else
Features.push_back("-crc"); Features.push_back("-crc");
▲ Show 20 LinesShow All 224 LinesShow Last 20 Lines

clang/lib/Driver/ToolChains/Arch/ARM.cpp

Show First 20 LinesShow All 790 Lines▼ Show 20 Linesfp16_fml_fallthrough:
if (Args.hasArg(options::OPT_mno_neg_immediates)) if (Args.hasArg(options::OPT_mno_neg_immediates))
Features.push_back("+no-neg-immediates"); Features.push_back("+no-neg-immediates");
// Enable/disable straight line speculation hardening. // Enable/disable straight line speculation hardening.
if (Arg *A = Args.getLastArg(options::OPT_mharden_sls_EQ)) { if (Arg *A = Args.getLastArg(options::OPT_mharden_sls_EQ)) {
StringRef Scope = A->getValue(); StringRef Scope = A->getValue();
bool EnableRetBr = false; bool EnableRetBr = false;
bool EnableBlr = false; bool EnableBlr = false;
if (Scope != "none" && Scope != "all") { bool DisableComdat = false;
if (Scope != "none") {
SmallVector<StringRef, 4> Opts; SmallVector<StringRef, 4> Opts;
Scope.split(Opts, ","); Scope.split(Opts, ",");
for (auto Opt : Opts) { for (auto Opt : Opts) {
Opt = Opt.trim(); Opt = Opt.trim();
if (Opt == "all") {
EnableBlr = true;
EnableRetBr = true;
continue;
}
if (Opt == "retbr") { if (Opt == "retbr") {
EnableRetBr = true; EnableRetBr = true;
continue; continue;
} }
if (Opt == "blr") { if (Opt == "blr") {
EnableBlr = true; EnableBlr = true;
continue; continue;
} }
if (Opt == "comdat") {
DisableComdat = false;
continue;
}
if (Opt == "nocomdat") {
DisableComdat = true;
continue;
}
D.Diag(diag::err_invalid_sls_hardening) D.Diag(diag::err_invalid_sls_hardening)
<< Scope << A->getAsString(Args); << Scope << A->getAsString(Args);
break; break;
} }
} else if (Scope == "all") {
EnableRetBr = true;
EnableBlr = true;
} }
if (EnableRetBr || EnableBlr) if (EnableRetBr || EnableBlr)
if (!(isARMAProfile(Triple) && getARMSubArchVersionNumber(Triple) >= 7)) if (!(isARMAProfile(Triple) && getARMSubArchVersionNumber(Triple) >= 7))
D.Diag(diag::err_sls_hardening_arm_not_supported) D.Diag(diag::err_sls_hardening_arm_not_supported)
<< Scope << A->getAsString(Args); << Scope << A->getAsString(Args);
if (EnableRetBr) if (EnableRetBr)
Features.push_back("+harden-sls-retbr"); Features.push_back("+harden-sls-retbr");
if (EnableBlr) if (EnableBlr)
Features.push_back("+harden-sls-blr"); Features.push_back("+harden-sls-blr");
if (DisableComdat) {
kristof.beylsUnsubmitted
Done
ReplyInline Actions

Same comment/thought on the "(EnableRetBr || EnableBlr)" condition as on the AArch64 side.

kristof.beyls: Same comment/thought on the "(EnableRetBr || EnableBlr)" condition as on the AArch64 side.
Features.push_back("+harden-sls-nocomdat");
}
} }
kristof.beylsUnsubmitted
Done
ReplyInline Actions

I think it would be better if comdat/nocomdat were also communicated through Features.
It keeps the interface on this part of the code base consistent (no need to introduce a CmdArgs feature); and also makes sure that LTO vs non-LTO builds keep on behaving the same way, as the feature is set per function, not per translation unit.

I haven't really thought about how to best specify that feature. Maybe just have an extra 2 features: +harden-sls-comdat and +harden-sls-nocomdat?

kristof.beyls: I think it would be better if comdat/nocomdat were also communicated through Features. It keeps…
danielkissAuthorUnsubmitted
Done
ReplyInline Actions

I almost added a feature for the harden-sls-noncomdat but that is not really a HW feature so felt the backed flag is better.
One feature bit seems enough to describe the two states.

danielkiss: I almost added a feature for the `harden-sls-noncomdat` but that is not really a HW feature so…
} }
const std::string arm::getARMArch(StringRef Arch, const llvm::Triple &Triple) { const std::string arm::getARMArch(StringRef Arch, const llvm::Triple &Triple) {
std::string MArch; std::string MArch;
if (!Arch.empty()) if (!Arch.empty())
MArch = std::string(Arch); MArch = std::string(Arch);
else else
▲ Show 20 LinesShow All 96 LinesShow Last 20 Lines

clang/test/Driver/sls-hardening-options.c

// Check the -mharden-sls= option, which has a required argument to select // Check the -mharden-sls= option, which has a required argument to select
// scope. // scope.
// RUN: %clang -target aarch64--none-eabi -c %s -### 2>&1 | \ // RUN: %clang -target aarch64--none-eabi -c %s -### 2>&1 | \
// RUN: FileCheck %s --check-prefix=RETBR-OFF --check-prefix=BLR-OFF // RUN: FileCheck %s --check-prefix=RETBR-OFF --check-prefix=BLR-OFF --check-prefix=NOCOMDAT-OFF
// RUN: %clang -target armv7a--none-eabi -c %s -### 2>&1 | \ // RUN: %clang -target armv7a--none-eabi -c %s -### 2>&1 | \
// RUN: FileCheck %s --check-prefix=RETBR-OFF --check-prefix=BLR-OFF // RUN: FileCheck %s --check-prefix=RETBR-OFF --check-prefix=BLR-OFF --check-prefix=NOCOMDAT-OFF
// RUN: %clang -target aarch64--none-eabi -c %s -### -mharden-sls=none 2>&1 | \ // RUN: %clang -target aarch64--none-eabi -c %s -### -mharden-sls=none 2>&1 | \
// RUN: FileCheck %s --check-prefix=RETBR-OFF --check-prefix=BLR-OFF // RUN: FileCheck %s --check-prefix=RETBR-OFF --check-prefix=BLR-OFF --check-prefix=NOCOMDAT-OFF
// RUN: %clang -target armv7a--none-eabi -c %s -### -mharden-sls=none 2>&1 | \ // RUN: %clang -target armv7a--none-eabi -c %s -### -mharden-sls=none 2>&1 | \
// RUN: FileCheck %s --check-prefix=RETBR-OFF --check-prefix=BLR-OFF // RUN: FileCheck %s --check-prefix=RETBR-OFF --check-prefix=BLR-OFF --check-prefix=NOCOMDAT-OFF
// RUN: %clang -target aarch64--none-eabi -c %s -### -mharden-sls=retbr 2>&1 | \ // RUN: %clang -target aarch64--none-eabi -c %s -### -mharden-sls=retbr 2>&1 | \
// RUN: FileCheck %s --check-prefix=RETBR-ON --check-prefix=BLR-OFF // RUN: FileCheck %s --check-prefix=RETBR-ON --check-prefix=BLR-OFF --check-prefix=NOCOMDAT-OFF
// RUN: %clang -target armv7a--none-eabi -c %s -### -mharden-sls=retbr 2>&1 | \ // RUN: %clang -target armv7a--none-eabi -c %s -### -mharden-sls=retbr 2>&1 | \
// RUN: FileCheck %s --check-prefix=RETBR-ON --check-prefix=BLR-OFF // RUN: FileCheck %s --check-prefix=RETBR-ON --check-prefix=BLR-OFF --check-prefix=NOCOMDAT-OFF
// RUN: %clang -target aarch64--none-eabi -c %s -### -mharden-sls=blr 2>&1 | \ // RUN: %clang -target aarch64--none-eabi -c %s -### -mharden-sls=blr 2>&1 | \
// RUN: FileCheck %s --check-prefix=RETBR-OFF --check-prefix=BLR-ON // RUN: FileCheck %s --check-prefix=RETBR-OFF --check-prefix=BLR-ON --check-prefix=NOCOMDAT-OFF
// RUN: %clang -target armv7a--none-eabi -c %s -### -mharden-sls=blr 2>&1 | \ // RUN: %clang -target armv7a--none-eabi -c %s -### -mharden-sls=blr 2>&1 | \
// RUN: FileCheck %s --check-prefix=RETBR-OFF --check-prefix=BLR-ON // RUN: FileCheck %s --check-prefix=RETBR-OFF --check-prefix=BLR-ON --check-prefix=NOCOMDAT-OFF
// RUN: %clang -target aarch64--none-eabi -c %s -### -mharden-sls=blr -mharden-sls=none 2>&1 | \ // RUN: %clang -target aarch64--none-eabi -c %s -### -mharden-sls=blr -mharden-sls=none 2>&1 | \
// RUN: FileCheck %s --check-prefix=RETBR-OFF --check-prefix=BLR-OFF // RUN: FileCheck %s --check-prefix=RETBR-OFF --check-prefix=BLR-OFF --check-prefix=NOCOMDAT-OFF
// RUN: %clang -target armv7a--none-eabi -c %s -### -mharden-sls=blr -mharden-sls=none 2>&1 | \ // RUN: %clang -target armv7a--none-eabi -c %s -### -mharden-sls=blr -mharden-sls=none 2>&1 | \
// RUN: FileCheck %s --check-prefix=RETBR-OFF --check-prefix=BLR-OFF // RUN: FileCheck %s --check-prefix=RETBR-OFF --check-prefix=BLR-OFF --check-prefix=NOCOMDAT-OFF
// RUN: %clang -target aarch64--none-eabi -c %s -### -mharden-sls=blr -mharden-sls=retbr 2>&1 | \ // RUN: %clang -target aarch64--none-eabi -c %s -### -mharden-sls=blr -mharden-sls=retbr 2>&1 | \
// RUN: FileCheck %s --check-prefix=RETBR-ON --check-prefix=BLR-OFF // RUN: FileCheck %s --check-prefix=RETBR-ON --check-prefix=BLR-OFF --check-prefix=NOCOMDAT-OFF
// RUN: %clang -target armv7a--none-eabi -c %s -### -mharden-sls=blr -mharden-sls=retbr 2>&1 | \ // RUN: %clang -target armv7a--none-eabi -c %s -### -mharden-sls=blr -mharden-sls=retbr 2>&1 | \
// RUN: FileCheck %s --check-prefix=RETBR-ON --check-prefix=BLR-OFF // RUN: FileCheck %s --check-prefix=RETBR-ON --check-prefix=BLR-OFF --check-prefix=NOCOMDAT-OFF
// RUN: %clang -target aarch64--none-eabi -c %s -### -mharden-sls=retbr,blr 2>&1 | \ // RUN: %clang -target aarch64--none-eabi -c %s -### -mharden-sls=retbr,blr 2>&1 | \
// RUN: FileCheck %s --check-prefix=RETBR-ON --check-prefix=BLR-ON // RUN: FileCheck %s --check-prefix=RETBR-ON --check-prefix=BLR-ON --check-prefix=NOCOMDAT-OFF
// RUN: %clang -target armv7a--none-eabi -c %s -### -mharden-sls=retbr,blr 2>&1 | \ // RUN: %clang -target armv7a--none-eabi -c %s -### -mharden-sls=retbr,blr 2>&1 | \
// RUN: FileCheck %s --check-prefix=RETBR-ON --check-prefix=BLR-ON // RUN: FileCheck %s --check-prefix=RETBR-ON --check-prefix=BLR-ON --check-prefix=NOCOMDAT-OFF
// RUN: %clang -target aarch64--none-eabi -c %s -### -mharden-sls=all 2>&1 | \ // RUN: %clang -target aarch64--none-eabi -c %s -### -mharden-sls=all 2>&1 | \
// RUN: FileCheck %s --check-prefix=RETBR-ON --check-prefix=BLR-ON // RUN: FileCheck %s --check-prefix=RETBR-ON --check-prefix=BLR-ON --check-prefix=NOCOMDAT-OFF
// RUN: %clang -target armv7a--none-eabi -c %s -### -mharden-sls=all 2>&1 | \ // RUN: %clang -target armv7a--none-eabi -c %s -### -mharden-sls=all 2>&1 | \
// RUN: FileCheck %s --check-prefix=RETBR-ON --check-prefix=BLR-ON // RUN: FileCheck %s --check-prefix=RETBR-ON --check-prefix=BLR-ON --check-prefix=NOCOMDAT-OFF
// RUN: %clang -target aarch64--none-eabi -c %s -### -mharden-sls=retbr,blr,retbr 2>&1 | \ // RUN: %clang -target aarch64--none-eabi -c %s -### -mharden-sls=retbr,blr,retbr 2>&1 | \
// RUN: FileCheck %s --check-prefix=RETBR-ON --check-prefix=BLR-ON // RUN: FileCheck %s --check-prefix=RETBR-ON --check-prefix=BLR-ON --check-prefix=NOCOMDAT-OFF
// RUN: %clang -target armv7a--none-eabi -c %s -### -mharden-sls=retbr,blr,retbr 2>&1 | \ // RUN: %clang -target armv7a--none-eabi -c %s -### -mharden-sls=retbr,blr,retbr 2>&1 | \
// RUN: FileCheck %s --check-prefix=RETBR-ON --check-prefix=BLR-ON // RUN: FileCheck %s --check-prefix=RETBR-ON --check-prefix=BLR-ON --check-prefix=NOCOMDAT-OFF
// RUN: %clang -target aarch64--none-eabi -c %s -### -mharden-sls=retbr,blr,r 2>&1 | \ // RUN: %clang -target aarch64--none-eabi -c %s -### -mharden-sls=retbr,blr,r 2>&1 | \
// RUN: FileCheck %s --check-prefix=BAD-SLS-SPEC // RUN: FileCheck %s --check-prefix=BAD-SLS-SPEC
// RUN: %clang -target armv7a--none-eabi -c %s -### -mharden-sls=retbr,blr,r 2>&1 | \ // RUN: %clang -target armv7a--none-eabi -c %s -### -mharden-sls=retbr,blr,r 2>&1 | \
// RUN: FileCheck %s --check-prefix=BAD-SLS-SPEC // RUN: FileCheck %s --check-prefix=BAD-SLS-SPEC
// RUN: %clang -target aarch64--none-eabi -c %s -### -mharden-sls=none,blr 2>&1 | \ // RUN: %clang -target aarch64--none-eabi -c %s -### -mharden-sls=none,blr 2>&1 | \
// RUN: FileCheck %s --check-prefix=BAD-SLS-SPEC // RUN: FileCheck %s --check-prefix=BAD-SLS-SPEC
// RUN: %clang -target armv7a--none-eabi -c %s -### -mharden-sls=none,blr 2>&1 | \ // RUN: %clang -target armv7a--none-eabi -c %s -### -mharden-sls=none,blr 2>&1 | \
// RUN: FileCheck %s --check-prefix=BAD-SLS-SPEC // RUN: FileCheck %s --check-prefix=BAD-SLS-SPEC
// RUN: %clang -target aarch64--none-eabi -c %s -### -mharden-sls=all,-blr 2>&1 | \ // RUN: %clang -target aarch64--none-eabi -c %s -### -mharden-sls=all,-blr 2>&1 | \
// RUN: FileCheck %s --check-prefix=BAD-SLS-SPEC // RUN: FileCheck %s --check-prefix=BAD-SLS-SPEC
// RUN: %clang -target armv7a--none-eabi -c %s -### -mharden-sls=all,-blr 2>&1 | \ // RUN: %clang -target armv7a--none-eabi -c %s -### -mharden-sls=all,-blr 2>&1 | \
// RUN: FileCheck %s --check-prefix=BAD-SLS-SPEC // RUN: FileCheck %s --check-prefix=BAD-SLS-SPEC
// RUN: %clang -target aarch64--none-eabi -c %s -### -mharden-sls=retbr,blr,nocomdat 2>&1 | \
// RUN: FileCheck %s --check-prefix=RETBR-ON --check-prefix=BLR-ON --check-prefix=NOCOMDAT
// RUN: %clang -target armv7a--none-eabi -c %s -### -mharden-sls=retbr,blr,nocomdat 2>&1 | \
// RUN: FileCheck %s --check-prefix=RETBR-ON --check-prefix=BLR-ON --check-prefix=NOCOMDAT
// RUN: %clang -target aarch64--none-eabi -c %s -### -mharden-sls=all,nocomdat 2>&1 | \
// RUN: FileCheck %s --check-prefix=RETBR-ON --check-prefix=BLR-ON --check-prefix=NOCOMDAT
// RUN: %clang -target armv7a--none-eabi -c %s -### -mharden-sls=all,nocomdat 2>&1 | \
// RUN: FileCheck %s --check-prefix=RETBR-ON --check-prefix=BLR-ON --check-prefix=NOCOMDAT
// RUN: %clang -target aarch64--none-eabi -c %s -### -mharden-sls=retbr,blr,retbr,nocomdat 2>&1 | \
// RUN: FileCheck %s --check-prefix=RETBR-ON --check-prefix=BLR-ON --check-prefix=NOCOMDAT
// RUN: %clang -target armv7a--none-eabi -c %s -### -mharden-sls=retbr,blr,retbr,nocomdat 2>&1 | \
// RUN: FileCheck %s --check-prefix=RETBR-ON --check-prefix=BLR-ON --check-prefix=NOCOMDAT
// RUN: %clang -target aarch64--none-eabi -c %s -### -mharden-sls=retbr,comdat,r 2>&1 | \
// RUN: FileCheck %s --check-prefix=BAD-SLS-SPEC
// RUN: %clang -target armv7a--none-eabi -c %s -### -mharden-sls=retbr,comdat,r 2>&1 | \
// RUN: FileCheck %s --check-prefix=BAD-SLS-SPEC
// RUN: %clang -target aarch64--none-eabi -c %s -### -mharden-sls=none,comdat 2>&1 | \
// RUN: FileCheck %s --check-prefix=BAD-SLS-SPEC
// RUN: %clang -target armv7a--none-eabi -c %s -### -mharden-sls=none,comdat 2>&1 | \
// RUN: FileCheck %s --check-prefix=BAD-SLS-SPEC
// RUN: %clang -target aarch64--none-eabi -c %s -### -mharden-sls=all,-comdat 2>&1 | \
// RUN: FileCheck %s --check-prefix=BAD-SLS-SPEC
// RUN: %clang -target armv7a--none-eabi -c %s -### -mharden-sls=all,-comdat 2>&1 | \
// RUN: FileCheck %s --check-prefix=BAD-SLS-SPEC
// RETBR-OFF-NOT: "harden-sls-retbr" // RETBR-OFF-NOT: "harden-sls-retbr"
// RETBR-ON: "+harden-sls-retbr" // RETBR-ON: "+harden-sls-retbr"
// BLR-OFF-NOT: "harden-sls-blr" // BLR-OFF-NOT: "harden-sls-blr"
// BLR-ON: "+harden-sls-blr" // BLR-ON: "+harden-sls-blr"
// NOCOMDAT-OFF-NOT: "harden-sls-nocomdat"
// NOCOMDAT: "+harden-sls-nocomdat"
// BAD-SLS-SPEC: invalid sls hardening option '{{[^']+}}' in '-mharden-sls= // BAD-SLS-SPEC: invalid sls hardening option '{{[^']+}}' in '-mharden-sls=
// RUN: %clang -target armv6a--none-eabi -c %s -### -mharden-sls=all 2>&1 | \ // RUN: %clang -target armv6a--none-eabi -c %s -### -mharden-sls=all 2>&1 | \
// RUN: FileCheck %s --check-prefix=SLS-NOT-SUPPORTED // RUN: FileCheck %s --check-prefix=SLS-NOT-SUPPORTED
// RUN: %clang -target armv6a--none-eabi -c %s -### -mharden-sls=retbr 2>&1 | \ // RUN: %clang -target armv6a--none-eabi -c %s -### -mharden-sls=retbr 2>&1 | \
// RUN: FileCheck %s --check-prefix=SLS-NOT-SUPPORTED // RUN: FileCheck %s --check-prefix=SLS-NOT-SUPPORTED
Show All 21 Lines

llvm/include/llvm/CodeGen/IndirectThunks.h

Show All 21 Lines
namespace llvm { namespace llvm {
template <typename Derived> class ThunkInserter { template <typename Derived> class ThunkInserter {
Derived &getDerived() { return *static_cast<Derived *>(this); } Derived &getDerived() { return *static_cast<Derived *>(this); }
protected: protected:
bool InsertedThunks; bool InsertedThunks;
void doInitialization(Module &M) {} void doInitialization(Module &M) {}
void createThunkFunction(MachineModuleInfo &MMI, StringRef Name); void createThunkFunction(MachineModuleInfo &MMI, StringRef Name,
bool Comdat = true);
tamas.petzUnsubmitted
Done
ReplyInline Actions

Is the default argument really required?

tamas.petz: Is the default argument really required?
danielkissAuthorUnsubmitted
Done
ReplyInline Actions

yes, this function is called from x86 backed and I'd not change that.

danielkiss: yes, this function is called from x86 backed and I'd not change that.
public: public:
void init(Module &M) { void init(Module &M) {
InsertedThunks = false; InsertedThunks = false;
getDerived().doInitialization(M); getDerived().doInitialization(M);
} }
// return `true` if `MMI` or `MF` was modified // return `true` if `MMI` or `MF` was modified
bool run(MachineModuleInfo &MMI, MachineFunction &MF); bool run(MachineModuleInfo &MMI, MachineFunction &MF);
}; };
template <typename Derived> template <typename Derived>
void ThunkInserter<Derived>::createThunkFunction(MachineModuleInfo &MMI, void ThunkInserter<Derived>::createThunkFunction(MachineModuleInfo &MMI,
StringRef Name) { StringRef Name, bool Comdat) {
kristof.beylsUnsubmitted
Done
ReplyInline Actions

I'm not entirely sure, but is this how clang-format formats these lines?

kristof.beyls: I'm not entirely sure, but is this how clang-format formats these lines?
danielkissAuthorUnsubmitted
Done
ReplyInline Actions

yes, patch went thru git clang-format

danielkiss: yes, patch went thru `git clang-format`
assert(Name.startswith(getDerived().getThunkPrefix()) && assert(Name.startswith(getDerived().getThunkPrefix()) &&
"Created a thunk with an unexpected prefix!"); "Created a thunk with an unexpected prefix!");
Module &M = const_cast<Module &>(*MMI.getModule()); Module &M = const_cast<Module &>(*MMI.getModule());
LLVMContext &Ctx = M.getContext(); LLVMContext &Ctx = M.getContext();
auto Type = FunctionType::get(Type::getVoidTy(Ctx), false); auto Type = FunctionType::get(Type::getVoidTy(Ctx), false);
Function *F = Function *F = Function::Create(Type,
Function::Create(Type, GlobalValue::LinkOnceODRLinkage, Name, &M); Comdat ? GlobalValue::LinkOnceODRLinkage
: GlobalValue::InternalLinkage,
Name, &M);
if (Comdat) {
F->setVisibility(GlobalValue::HiddenVisibility); F->setVisibility(GlobalValue::HiddenVisibility);
tamas.petzUnsubmitted
Done
ReplyInline Actions

NIT: tabs to spaces

tamas.petz: NIT: tabs to spaces
F->setComdat(M.getOrInsertComdat(Name)); F->setComdat(M.getOrInsertComdat(Name));
tamas.petzUnsubmitted
Done
ReplyInline Actions

There are still TABs there.

tamas.petz: There are still TABs there.
danielkissAuthorUnsubmitted
Done
ReplyInline Actions

I think these are spaces, could you please take a look at the raw diff?

danielkiss: I think these are spaces, could you please take a look at the raw diff?
}
// Add Attributes so that we don't create a frame, unwind information, or // Add Attributes so that we don't create a frame, unwind information, or
// inline. // inline.
AttrBuilder B; AttrBuilder B;
B.addAttribute(llvm::Attribute::NoUnwind); B.addAttribute(llvm::Attribute::NoUnwind);
B.addAttribute(llvm::Attribute::Naked); B.addAttribute(llvm::Attribute::Naked);
F->addAttributes(llvm::AttributeList::FunctionIndex, B); F->addAttributes(llvm::AttributeList::FunctionIndex, B);
▲ Show 20 LinesShow All 49 LinesShow Last 20 Lines

llvm/lib/Target/AArch64/AArch64.td

Show First 20 LinesShow All 517 Lines▼ Show 20 Lines
//===----------------------------------------------------------------------===// //===----------------------------------------------------------------------===//
def FeatureHardenSlsRetBr : SubtargetFeature<"harden-sls-retbr", def FeatureHardenSlsRetBr : SubtargetFeature<"harden-sls-retbr",
"HardenSlsRetBr", "true", "HardenSlsRetBr", "true",
"Harden against straight line speculation across RET and BR instructions">; "Harden against straight line speculation across RET and BR instructions">;
def FeatureHardenSlsBlr : SubtargetFeature<"harden-sls-blr", def FeatureHardenSlsBlr : SubtargetFeature<"harden-sls-blr",
"HardenSlsBlr", "true", "HardenSlsBlr", "true",
"Harden against straight line speculation across BLR instructions">; "Harden against straight line speculation across BLR instructions">;
def FeatureHardenSlsNoComdat : SubtargetFeature<"harden-sls-nocomdat",
"HardenSlsNoComdat", "true",
"Generate thunk code for SLS mitigation in the normal text section">;
kristof.beylsUnsubmitted
Done
ReplyInline Actions

I think it would be more accurate if the word "thunk" would be present in the documentation.
What about the following:
"Generate thunk code for SLS mitigation in the normal text section"?

kristof.beyls: I think it would be more accurate if the word "thunk" would be present in the documentation.
//===----------------------------------------------------------------------===// //===----------------------------------------------------------------------===//
// AArch64 Processors supported. // AArch64 Processors supported.
// //
//===----------------------------------------------------------------------===// //===----------------------------------------------------------------------===//
// Unsupported features to disable for scheduling models // Unsupported features to disable for scheduling models
//===----------------------------------------------------------------------===// //===----------------------------------------------------------------------===//
▲ Show 20 LinesShow All 735 LinesShow Last 20 Lines

llvm/lib/Target/AArch64/AArch64SLSHardening.cpp

Show First 20 LinesShow All 180 Lines▼ Show 20 Linesstatic const struct ThunkNameAndReg {
// missing. // missing.
{ "__llvm_slsblr_thunk_x31", AArch64::XZR}, { "__llvm_slsblr_thunk_x31", AArch64::XZR},
}; };
namespace { namespace {
struct SLSBLRThunkInserter : ThunkInserter<SLSBLRThunkInserter> { struct SLSBLRThunkInserter : ThunkInserter<SLSBLRThunkInserter> {
const char *getThunkPrefix() { return SLSBLRNamePrefix; } const char *getThunkPrefix() { return SLSBLRNamePrefix; }
bool mayUseThunk(const MachineFunction &MF) { bool mayUseThunk(const MachineFunction &MF) {
ComdatThunks &= !MF.getSubtarget<AArch64Subtarget>().hardenSlsNoComdat();
// FIXME: This could also check if there are any BLRs in the function // FIXME: This could also check if there are any BLRs in the function
// to more accurately reflect if a thunk will be needed. // to more accurately reflect if a thunk will be needed.
return MF.getSubtarget<AArch64Subtarget>().hardenSlsBlr(); return MF.getSubtarget<AArch64Subtarget>().hardenSlsBlr();
} }
void insertThunks(MachineModuleInfo &MMI); void insertThunks(MachineModuleInfo &MMI);
void populateThunk(MachineFunction &MF); void populateThunk(MachineFunction &MF);
private:
bool ComdatThunks = true;
}; };
} // namespace } // namespace
void SLSBLRThunkInserter::insertThunks(MachineModuleInfo &MMI) { void SLSBLRThunkInserter::insertThunks(MachineModuleInfo &MMI) {
// FIXME: It probably would be possible to filter which thunks to produce // FIXME: It probably would be possible to filter which thunks to produce
// based on which registers are actually used in BLR instructions in this // based on which registers are actually used in BLR instructions in this
// function. But would that be a worthwhile optimization? // function. But would that be a worthwhile optimization?
for (auto T : SLSBLRThunks) for (auto T : SLSBLRThunks)
createThunkFunction(MMI, T.Name); createThunkFunction(MMI, T.Name, ComdatThunks);
} }
void SLSBLRThunkInserter::populateThunk(MachineFunction &MF) { void SLSBLRThunkInserter::populateThunk(MachineFunction &MF) {
// FIXME: How to better communicate Register number, rather than through // FIXME: How to better communicate Register number, rather than through
// name and lookup table? // name and lookup table?
assert(MF.getName().startswith(getThunkPrefix())); assert(MF.getName().startswith(getThunkPrefix()));
auto ThunkIt = llvm::find_if( auto ThunkIt = llvm::find_if(
SLSBLRThunks, [&MF](auto T) { return T.Name == MF.getName(); }); SLSBLRThunks, [&MF](auto T) { return T.Name == MF.getName(); });
▲ Show 20 LinesShow All 232 LinesShow Last 20 Lines

llvm/lib/Target/AArch64/AArch64Subtarget.h

Show First 20 LinesShow All 235 Lines▼ Show 20 Linesprotected:
bool UseRSqrt = false; bool UseRSqrt = false;
bool Force32BitJumpTables = false; bool Force32BitJumpTables = false;
bool UseEL1ForTP = false; bool UseEL1ForTP = false;
bool UseEL2ForTP = false; bool UseEL2ForTP = false;
bool UseEL3ForTP = false; bool UseEL3ForTP = false;
bool AllowTaggedGlobals = false; bool AllowTaggedGlobals = false;
bool HardenSlsRetBr = false; bool HardenSlsRetBr = false;
bool HardenSlsBlr = false; bool HardenSlsBlr = false;
bool HardenSlsNoComdat = false;
uint8_t MaxInterleaveFactor = 2; uint8_t MaxInterleaveFactor = 2;
uint8_t VectorInsertExtractBaseCost = 3; uint8_t VectorInsertExtractBaseCost = 3;
uint16_t CacheLineSize = 0; uint16_t CacheLineSize = 0;
uint16_t PrefetchDistance = 0; uint16_t PrefetchDistance = 0;
uint16_t MinPrefetchStride = 1; uint16_t MinPrefetchStride = 1;
unsigned MaxPrefetchIterationsAhead = UINT_MAX; unsigned MaxPrefetchIterationsAhead = UINT_MAX;
unsigned PrefFunctionLogAlignment = 0; unsigned PrefFunctionLogAlignment = 0;
unsigned PrefLoopLogAlignment = 0; unsigned PrefLoopLogAlignment = 0;
▲ Show 20 LinesShow All 142 Lines▼ Show 20 Linespublic:
bool hasFusion() const { bool hasFusion() const {
return hasArithmeticBccFusion() || hasArithmeticCbzFusion() || return hasArithmeticBccFusion() || hasArithmeticCbzFusion() ||
hasFuseAES() || hasFuseArithmeticLogic() || hasFuseAES() || hasFuseArithmeticLogic() ||
hasFuseCCSelect() || hasFuseLiterals(); hasFuseCCSelect() || hasFuseLiterals();
} }
bool hardenSlsRetBr() const { return HardenSlsRetBr; } bool hardenSlsRetBr() const { return HardenSlsRetBr; }
bool hardenSlsBlr() const { return HardenSlsBlr; } bool hardenSlsBlr() const { return HardenSlsBlr; }
bool hardenSlsNoComdat() const { return HardenSlsNoComdat; }
bool useEL1ForTP() const { return UseEL1ForTP; } bool useEL1ForTP() const { return UseEL1ForTP; }
bool useEL2ForTP() const { return UseEL2ForTP; } bool useEL2ForTP() const { return UseEL2ForTP; }
bool useEL3ForTP() const { return UseEL3ForTP; } bool useEL3ForTP() const { return UseEL3ForTP; }
bool useRSqrt() const { return UseRSqrt; } bool useRSqrt() const { return UseRSqrt; }
bool force32BitJumpTables() const { return Force32BitJumpTables; } bool force32BitJumpTables() const { return Force32BitJumpTables; }
unsigned getMaxInterleaveFactor() const { return MaxInterleaveFactor; } unsigned getMaxInterleaveFactor() const { return MaxInterleaveFactor; }
▲ Show 20 LinesShow All 183 LinesShow Last 20 Lines

llvm/lib/Target/ARM/ARM.td

Show First 20 LinesShow All 567 Lines▼ Show 20 Lines
def FeatureHardenSlsRetBr : SubtargetFeature<"harden-sls-retbr", def FeatureHardenSlsRetBr : SubtargetFeature<"harden-sls-retbr",
"HardenSlsRetBr", "true", "HardenSlsRetBr", "true",
"Harden against straight line speculation across RETurn and BranchRegister " "Harden against straight line speculation across RETurn and BranchRegister "
"instructions">; "instructions">;
def FeatureHardenSlsBlr : SubtargetFeature<"harden-sls-blr", def FeatureHardenSlsBlr : SubtargetFeature<"harden-sls-blr",
"HardenSlsBlr", "true", "HardenSlsBlr", "true",
"Harden against straight line speculation across indirect calls">; "Harden against straight line speculation across indirect calls">;
def FeatureHardenSlsNoComdat : SubtargetFeature<"harden-sls-nocomdat",
"HardenSlsNoComdat", "true",
"Generate thunk code for SLS mitigation in the normal text section">;
kristof.beylsUnsubmitted
Done
ReplyInline Actions

Same comment as on the AArch64 side on using the word "thunk" somewhere in the help text.

kristof.beyls: Same comment as on the AArch64 side on using the word "thunk" somewhere in the help text.
//===----------------------------------------------------------------------===// //===----------------------------------------------------------------------===//
// ARM Processor subtarget features. // ARM Processor subtarget features.
// //
def ProcA5 : SubtargetFeature<"a5", "ARMProcFamily", "CortexA5", def ProcA5 : SubtargetFeature<"a5", "ARMProcFamily", "CortexA5",
"Cortex-A5 ARM processors", []>; "Cortex-A5 ARM processors", []>;
def ProcA7 : SubtargetFeature<"a7", "ARMProcFamily", "CortexA7", def ProcA7 : SubtargetFeature<"a7", "ARMProcFamily", "CortexA7",
▲ Show 20 LinesShow All 832 LinesShow Last 20 Lines

llvm/lib/Target/ARM/ARMSLSHardening.cpp

Show First 20 LinesShow All 159 Lines▼ Show 20 Lines bool isThumb;
{"__llvm_slsblr_thunk_thumb_sp", ARM::SP, true}, {"__llvm_slsblr_thunk_thumb_sp", ARM::SP, true},
{"__llvm_slsblr_thunk_thumb_pc", ARM::PC, true}, {"__llvm_slsblr_thunk_thumb_pc", ARM::PC, true},
}; };
namespace { namespace {
struct SLSBLRThunkInserter : ThunkInserter<SLSBLRThunkInserter> { struct SLSBLRThunkInserter : ThunkInserter<SLSBLRThunkInserter> {
const char *getThunkPrefix() { return SLSBLRNamePrefix; } const char *getThunkPrefix() { return SLSBLRNamePrefix; }
bool mayUseThunk(const MachineFunction &MF) { bool mayUseThunk(const MachineFunction &MF) {
ComdatThunks &= !MF.getSubtarget<ARMSubtarget>().hardenSlsNoComdat();
// FIXME: This could also check if there are any indirect calls in the // FIXME: This could also check if there are any indirect calls in the
// function to more accurately reflect if a thunk will be needed. // function to more accurately reflect if a thunk will be needed.
return MF.getSubtarget<ARMSubtarget>().hardenSlsBlr(); return MF.getSubtarget<ARMSubtarget>().hardenSlsBlr();
} }
void insertThunks(MachineModuleInfo &MMI); void insertThunks(MachineModuleInfo &MMI);
void populateThunk(MachineFunction &MF); void populateThunk(MachineFunction &MF);
private:
bool ComdatThunks = true;
}; };
} // namespace } // namespace
void SLSBLRThunkInserter::insertThunks(MachineModuleInfo &MMI) { void SLSBLRThunkInserter::insertThunks(MachineModuleInfo &MMI) {
// FIXME: It probably would be possible to filter which thunks to produce // FIXME: It probably would be possible to filter which thunks to produce
// based on which registers are actually used in indirect calls in this // based on which registers are actually used in indirect calls in this
// function. But would that be a worthwhile optimization? // function. But would that be a worthwhile optimization?
for (auto T : SLSBLRThunks) for (auto T : SLSBLRThunks)
createThunkFunction(MMI, T.Name); createThunkFunction(MMI, T.Name, ComdatThunks);
} }
void SLSBLRThunkInserter::populateThunk(MachineFunction &MF) { void SLSBLRThunkInserter::populateThunk(MachineFunction &MF) {
// FIXME: How to better communicate Register number, rather than through // FIXME: How to better communicate Register number, rather than through
// name and lookup table? // name and lookup table?
assert(MF.getName().startswith(getThunkPrefix())); assert(MF.getName().startswith(getThunkPrefix()));
auto ThunkIt = llvm::find_if( auto ThunkIt = llvm::find_if(
SLSBLRThunks, [&MF](auto T) { return T.Name == MF.getName(); }); SLSBLRThunks, [&MF](auto T) { return T.Name == MF.getName(); });
▲ Show 20 LinesShow All 226 LinesShow Last 20 Lines

llvm/lib/Target/ARM/ARMSubtarget.h

Show First 20 LinesShow All 469 Lines▼ Show 20 Linesprotected:
/// Harden against Straight Line Speculation for Returns and Indirect /// Harden against Straight Line Speculation for Returns and Indirect
/// Branches. /// Branches.
bool HardenSlsRetBr = false; bool HardenSlsRetBr = false;
/// Harden against Straight Line Speculation for indirect calls. /// Harden against Straight Line Speculation for indirect calls.
bool HardenSlsBlr = false; bool HardenSlsBlr = false;
/// Generate thunk code for SLS mitigation in the normal text section.
bool HardenSlsNoComdat = false;
/// stackAlignment - The minimum alignment known to hold of the stack frame on /// stackAlignment - The minimum alignment known to hold of the stack frame on
/// entry to the function and which must be maintained by every function. /// entry to the function and which must be maintained by every function.
Align stackAlignment = Align(4); Align stackAlignment = Align(4);
/// CPUString - String name of used CPU. /// CPUString - String name of used CPU.
std::string CPUString; std::string CPUString;
unsigned MaxInterleaveFactor = 1; unsigned MaxInterleaveFactor = 1;
▲ Show 20 LinesShow All 440 Lines▼ Show 20 Linespublic:
} }
bool ignoreCSRForAllocationOrder(const MachineFunction &MF, bool ignoreCSRForAllocationOrder(const MachineFunction &MF,
unsigned PhysReg) const override; unsigned PhysReg) const override;
unsigned getGPRAllocationOrder(const MachineFunction &MF) const; unsigned getGPRAllocationOrder(const MachineFunction &MF) const;
bool hardenSlsRetBr() const { return HardenSlsRetBr; } bool hardenSlsRetBr() const { return HardenSlsRetBr; }
bool hardenSlsBlr() const { return HardenSlsBlr; } bool hardenSlsBlr() const { return HardenSlsBlr; }
bool hardenSlsNoComdat() const { return HardenSlsNoComdat; }
}; };
} // end namespace llvm } // end namespace llvm
#endif // LLVM_LIB_TARGET_ARM_ARMSUBTARGET_H #endif // LLVM_LIB_TARGET_ARM_ARMSUBTARGET_H

llvm/test/CodeGen/AArch64/speculation-hardening-sls.ll

; RUN: llc -mattr=harden-sls-retbr,harden-sls-blr -verify-machineinstrs -mtriple=aarch64-none-linux-gnu < %s | FileCheck %s --check-prefixes=CHECK,HARDEN,ISBDSB,ISBDSBDAGISEL ; RUN: llc -mattr=harden-sls-retbr,harden-sls-blr -verify-machineinstrs -mtriple=aarch64-none-linux-gnu < %s | FileCheck %s --check-prefixes=CHECK,HARDEN,HARDEN-COMDAT,ISBDSB,ISBDSBDAGISEL
; RUN: llc -mattr=harden-sls-retbr,harden-sls-blr,harden-sls-nocomdat -verify-machineinstrs -mtriple=aarch64-none-linux-gnu < %s | FileCheck %s --check-prefixes=CHECK,HARDEN,HARDEN-COMDAT-OFF,ISBDSB,ISBDSBDAGISEL
; RUN: llc -mattr=harden-sls-retbr,harden-sls-blr -mattr=+sb -verify-machineinstrs -mtriple=aarch64-none-linux-gnu < %s | FileCheck %s --check-prefixes=CHECK,HARDEN,SB,SBDAGISEL ; RUN: llc -mattr=harden-sls-retbr,harden-sls-blr -mattr=+sb -verify-machineinstrs -mtriple=aarch64-none-linux-gnu < %s | FileCheck %s --check-prefixes=CHECK,HARDEN,SB,SBDAGISEL
; RUN: llc -global-isel -global-isel-abort=0 -mattr=harden-sls-retbr,harden-sls-blr -verify-machineinstrs -mtriple=aarch64-none-linux-gnu < %s | FileCheck %s --check-prefixes=CHECK,HARDEN,HARDEN-COMDAT,ISBDSB
; RUN: llc -verify-machineinstrs -mtriple=aarch64-none-linux-gnu < %s | FileCheck %s --check-prefixes=CHECK,NOHARDEN ; RUN: llc -verify-machineinstrs -mtriple=aarch64-none-linux-gnu < %s | FileCheck %s --check-prefixes=CHECK,NOHARDEN
; RUN: llc -global-isel -global-isel-abort=0 -mattr=harden-sls-retbr,harden-sls-blr -verify-machineinstrs -mtriple=aarch64-none-linux-gnu < %s | FileCheck %s --check-prefixes=CHECK,HARDEN,ISBDSB ; RUN: llc -global-isel -global-isel-abort=0 -mattr=harden-sls-retbr,harden-sls-blr,harden-sls-nocomdat -verify-machineinstrs -mtriple=aarch64-none-linux-gnu < %s | FileCheck %s --check-prefixes=CHECK,HARDEN,HARDEN-COMDAT-OFF,ISBDSB
; RUN: llc -global-isel -global-isel-abort=0 -mattr=harden-sls-retbr,harden-sls-blr -mattr=+sb -verify-machineinstrs -mtriple=aarch64-none-linux-gnu < %s | FileCheck %s --check-prefixes=CHECK,HARDEN,SB ; RUN: llc -global-isel -global-isel-abort=0 -mattr=harden-sls-retbr,harden-sls-blr -mattr=+sb -verify-machineinstrs -mtriple=aarch64-none-linux-gnu < %s | FileCheck %s --check-prefixes=CHECK,HARDEN,SB
; Function Attrs: norecurse nounwind readnone ; Function Attrs: norecurse nounwind readnone
define dso_local i32 @double_return(i32 %a, i32 %b) local_unnamed_addr { define dso_local i32 @double_return(i32 %a, i32 %b) local_unnamed_addr {
entry: entry:
%cmp = icmp sgt i32 %a, 0 %cmp = icmp sgt i32 %a, 0
br i1 %cmp, label %if.then, label %if.else br i1 %cmp, label %if.then, label %if.else
▲ Show 20 LinesShow All 192 Lines▼ Show 20 Lines
; HARDEN-label: __llvm_slsblr_thunk_x0: ; HARDEN-label: __llvm_slsblr_thunk_x0:
; HARDEN: mov x16, x0 ; HARDEN: mov x16, x0
; HARDEN: br x16 ; HARDEN: br x16
; ISBDSB-NEXT: dsb sy ; ISBDSB-NEXT: dsb sy
; ISBDSB-NEXT: isb ; ISBDSB-NEXT: isb
; SB-NEXT: dsb sy ; SB-NEXT: dsb sy
; SB-NEXT: isb ; SB-NEXT: isb
; HARDEN-NEXT: .Lfunc_end ; HARDEN-NEXT: .Lfunc_end
; HARDEN-COMDAT: .section .text.__llvm_slsblr_thunk_x19
; HARDEN-COMDAT: .hidden __llvm_slsblr_thunk_x19
; HARDEN-COMDAT: .weak __llvm_slsblr_thunk_x19
; HARDEN-COMDAT: .type __llvm_slsblr_thunk_x19,@function
; HARDEN-COMDAT-OFF-NOT: .section .text.__llvm_slsblr_thunk_x19
; HARDEN-COMDAT-OFF-NOT: .hidden __llvm_slsblr_thunk_x19
kristof.beylsUnsubmitted
Done
ReplyInline Actions

Would it be possible to also have check lines for HARDEN-COMDAT-OFF, i.e. look for lines that HARDEN-COMDAT-OFF should produce?

kristof.beyls: Would it be possible to also have check lines for HARDEN-COMDAT-OFF, i.e. look for lines that…
; HARDEN-COMDAT-OFF-NOT: .weak __llvm_slsblr_thunk_x19
; HARDEN-COMDAT-OFF: .type __llvm_slsblr_thunk_x19,@function
; HARDEN-label: __llvm_slsblr_thunk_x19: ; HARDEN-label: __llvm_slsblr_thunk_x19:
; HARDEN: mov x16, x19 ; HARDEN: mov x16, x19
; HARDEN: br x16 ; HARDEN: br x16
; ISBDSB-NEXT: dsb sy ; ISBDSB-NEXT: dsb sy
; ISBDSB-NEXT: isb ; ISBDSB-NEXT: isb
; SB-NEXT: dsb sy ; SB-NEXT: dsb sy
; SB-NEXT: isb ; SB-NEXT: isb
; HARDEN-NEXT: .Lfunc_end ; HARDEN-NEXT: .Lfunc_end

llvm/test/CodeGen/ARM/speculation-hardening-sls.ll

; RUN: llc -mattr=harden-sls-retbr -mattr=harden-sls-blr -verify-machineinstrs -mtriple=armv8-linux-gnueabi < %s | FileCheck %s --check-prefixes=CHECK,ARM,HARDEN,ISBDSB -dump-input-context=100 ; RUN: llc -mattr=harden-sls-retbr -mattr=harden-sls-blr -verify-machineinstrs -mtriple=armv8-linux-gnueabi < %s | FileCheck %s --check-prefixes=CHECK,ARM,HARDEN,HARDEN-COMDAT,ISBDSB -dump-input-context=100
; RUN: llc -mattr=harden-sls-retbr -mattr=harden-sls-blr -verify-machineinstrs -mtriple=thumbv8-linux-gnueabi < %s | FileCheck %s --check-prefixes=CHECK,THUMB,HARDENTHUMB,HARDEN,ISBDSB -dump-input-context=100 ; RUN: llc -mattr=harden-sls-retbr -mattr=harden-sls-blr -verify-machineinstrs -mtriple=thumbv8-linux-gnueabi < %s | FileCheck %s --check-prefixes=CHECK,THUMB,HARDENTHUMB,HARDEN,HARDEN-COMDAT,ISBDSB -dump-input-context=100
; RUN: llc -mattr=harden-sls-retbr -mattr=harden-sls-blr -mattr=+sb -verify-machineinstrs -mtriple=armv8-linux-gnueabi < %s | FileCheck %s --check-prefixes=CHECK,ARM,HARDEN,SB -dump-input-context=100 ; RUN: llc -mattr=harden-sls-retbr -mattr=harden-sls-blr -mattr=+sb -verify-machineinstrs -mtriple=armv8-linux-gnueabi < %s | FileCheck %s --check-prefixes=CHECK,ARM,HARDEN,HARDEN-COMDAT,SB -dump-input-context=100
; RUN: llc -mattr=harden-sls-retbr -mattr=harden-sls-blr -mattr=+sb -verify-machineinstrs -mtriple=thumbv8-linux-gnueabi < %s | FileCheck %s --check-prefixes=CHECK,THUMB,HARDENTHUMB,HARDEN,SB -dump-input-context=100 ; RUN: llc -mattr=harden-sls-retbr -mattr=harden-sls-blr -mattr=+sb -verify-machineinstrs -mtriple=thumbv8-linux-gnueabi < %s | FileCheck %s --check-prefixes=CHECK,THUMB,HARDENTHUMB,HARDEN,HARDEN-COMDAT,SB -dump-input-context=100
; RUN: llc -mattr=harden-sls-retbr -mattr=harden-sls-blr -mattr=harden-sls-nocomdat -verify-machineinstrs -mtriple=armv8-linux-gnueabi < %s | FileCheck %s --check-prefixes=CHECK,ARM,HARDEN,HARDEN-COMDAT-OFF,ISBDSB -dump-input-context=100
; RUN: llc -mattr=harden-sls-retbr -mattr=harden-sls-blr -mattr=harden-sls-nocomdat -verify-machineinstrs -mtriple=thumbv8-linux-gnueabi < %s | FileCheck %s --check-prefixes=CHECK,THUMB,HARDENTHUMB,HARDEN,HARDEN-COMDAT-OFF,ISBDSB -dump-input-context=100
; RUN: llc -mattr=harden-sls-retbr -mattr=harden-sls-blr -mattr=harden-sls-nocomdat -mattr=+sb -verify-machineinstrs -mtriple=armv8-linux-gnueabi < %s | FileCheck %s --check-prefixes=CHECK,ARM,HARDEN,HARDEN-COMDAT-OFF,SB -dump-input-context=100
; RUN: llc -mattr=harden-sls-retbr -mattr=harden-sls-blr -mattr=harden-sls-nocomdat -mattr=+sb -verify-machineinstrs -mtriple=thumbv8-linux-gnueabi < %s | FileCheck %s --check-prefixes=CHECK,THUMB,HARDENTHUMB,HARDEN,HARDEN-COMDAT-OFF,SB -dump-input-context=100
; RUN: llc -verify-machineinstrs -mtriple=armv8-linux-gnueabi < %s | FileCheck %s --check-prefixes=CHECK,ARM,NOHARDENARM -dump-input-context=100 ; RUN: llc -verify-machineinstrs -mtriple=armv8-linux-gnueabi < %s | FileCheck %s --check-prefixes=CHECK,ARM,NOHARDENARM -dump-input-context=100
; RUN: llc -verify-machineinstrs -mtriple=thumbv8-linux-gnueabi < %s | FileCheck %s --check-prefixes=CHECK,THUMB,NOHARDENTHUMB ; RUN: llc -verify-machineinstrs -mtriple=thumbv8-linux-gnueabi < %s | FileCheck %s --check-prefixes=CHECK,THUMB,NOHARDENTHUMB
; RUN: llc -global-isel -global-isel-abort=0 -mattr=harden-sls-retbr -mattr=harden-sls-blr -verify-machineinstrs -mtriple=armv8-linux-gnueabi < %s | FileCheck %s --check-prefixes=CHECK,ARM,HARDEN,ISBDSB ; RUN: llc -global-isel -global-isel-abort=0 -mattr=harden-sls-retbr -mattr=harden-sls-blr -verify-machineinstrs -mtriple=armv8-linux-gnueabi < %s | FileCheck %s --check-prefixes=CHECK,ARM,HARDEN,HARDEN-COMDAT,ISBDSB
; RUN: llc -global-isel -global-isel-abort=0 -mattr=harden-sls-retbr -mattr=harden-sls-blr -verify-machineinstrs -mtriple=thumbv8-linux-gnueabi < %s | FileCheck %s --check-prefixes=CHECK,THUMB,HARDENTHUMB,HARDEN,ISBDSB ; RUN: llc -global-isel -global-isel-abort=0 -mattr=harden-sls-retbr -mattr=harden-sls-blr -verify-machineinstrs -mtriple=thumbv8-linux-gnueabi < %s | FileCheck %s --check-prefixes=CHECK,THUMB,HARDENTHUMB,HARDEN,HARDEN-COMDAT,ISBDSB
; RUN: llc -global-isel -global-isel-abort=0 -mattr=harden-sls-retbr -mattr=harden-sls-nocomdat -mattr=harden-sls-blr -verify-machineinstrs -mtriple=armv8-linux-gnueabi < %s | FileCheck %s --check-prefixes=CHECK,ARM,HARDEN,HARDEN-COMDAT-OFF,ISBDSB
; RUN: llc -global-isel -global-isel-abort=0 -mattr=harden-sls-retbr -mattr=harden-sls-nocomdat -mattr=harden-sls-blr -verify-machineinstrs -mtriple=thumbv8-linux-gnueabi < %s | FileCheck %s --check-prefixes=CHECK,THUMB,HARDENTHUMB,HARDEN,HARDEN-COMDAT-OFF,ISBDSB
; RUN: llc -global-isel -global-isel-abort=0 -mattr=harden-sls-retbr -mattr=harden-sls-blr -mattr=+sb -verify-machineinstrs -mtriple=armv8-linux-gnueabi < %s | FileCheck %s --check-prefixes=CHECK,ARM,HARDEN,SB ; RUN: llc -global-isel -global-isel-abort=0 -mattr=harden-sls-retbr -mattr=harden-sls-blr -mattr=+sb -verify-machineinstrs -mtriple=armv8-linux-gnueabi < %s | FileCheck %s --check-prefixes=CHECK,ARM,HARDEN,SB
; RUN: llc -global-isel -global-isel-abort=0 -mattr=harden-sls-retbr -mattr=harden-sls-blr -mattr=+sb -verify-machineinstrs -mtriple=thumbv8-linux-gnueabi < %s | FileCheck %s --check-prefixes=CHECK,THUMB,HARDENTHUMB,HARDEN,SB ; RUN: llc -global-isel -global-isel-abort=0 -mattr=harden-sls-retbr -mattr=harden-sls-blr -mattr=+sb -verify-machineinstrs -mtriple=thumbv8-linux-gnueabi < %s | FileCheck %s --check-prefixes=CHECK,THUMB,HARDENTHUMB,HARDEN,SB
; RUN: llc -fast-isel -mattr=harden-sls-retbr -mattr=harden-sls-blr -verify-machineinstrs -mtriple=armv8-linux-gnueabi < %s | FileCheck %s --check-prefixes=CHECK,ARM,HARDEN,ISBDSB ; RUN: llc -fast-isel -mattr=harden-sls-retbr -mattr=harden-sls-blr -verify-machineinstrs -mtriple=armv8-linux-gnueabi < %s | FileCheck %s --check-prefixes=CHECK,ARM,HARDEN,HARDEN-COMDAT,ISBDSB
; RUN: llc -fast-isel -mattr=harden-sls-retbr -mattr=harden-sls-blr -verify-machineinstrs -mtriple=thumbv8-linux-gnueabi < %s | FileCheck %s --check-prefixes=CHECK,THUMB,HARDENTHUMB,HARDEN,ISBDSB ; RUN: llc -fast-isel -mattr=harden-sls-retbr -mattr=harden-sls-blr -verify-machineinstrs -mtriple=thumbv8-linux-gnueabi < %s | FileCheck %s --check-prefixes=CHECK,THUMB,HARDENTHUMB,HARDEN,HARDEN-COMDAT,ISBDSB
; RUN: llc -fast-isel -mattr=harden-sls-retbr -mattr=harden-sls-blr -mattr=harden-sls-nocomdat -verify-machineinstrs -mtriple=armv8-linux-gnueabi < %s | FileCheck %s --check-prefixes=CHECK,ARM,HARDEN,HARDEN-COMDAT-OFF,ISBDSB
; RUN: llc -fast-isel -mattr=harden-sls-retbr -mattr=harden-sls-blr -mattr=harden-sls-nocomdat -verify-machineinstrs -mtriple=thumbv8-linux-gnueabi < %s | FileCheck %s --check-prefixes=CHECK,THUMB,HARDENTHUMB,HARDEN,HARDEN-COMDAT-OFF,ISBDSB
; RUN: llc -fast-isel -mattr=harden-sls-retbr -mattr=harden-sls-blr -mattr=+sb -verify-machineinstrs -mtriple=armv8-linux-gnueabi < %s | FileCheck %s --check-prefixes=CHECK,ARM,HARDEN,SB ; RUN: llc -fast-isel -mattr=harden-sls-retbr -mattr=harden-sls-blr -mattr=+sb -verify-machineinstrs -mtriple=armv8-linux-gnueabi < %s | FileCheck %s --check-prefixes=CHECK,ARM,HARDEN,SB
; RUN: llc -fast-isel -mattr=harden-sls-retbr -mattr=harden-sls-blr -mattr=+sb -verify-machineinstrs -mtriple=thumbv8-linux-gnueabi < %s | FileCheck %s --check-prefixes=CHECK,THUMB,HARDENTHUMB,HARDEN,SB ; RUN: llc -fast-isel -mattr=harden-sls-retbr -mattr=harden-sls-blr -mattr=+sb -verify-machineinstrs -mtriple=thumbv8-linux-gnueabi < %s | FileCheck %s --check-prefixes=CHECK,THUMB,HARDENTHUMB,HARDEN,SB
; Function Attrs: norecurse nounwind readnone ; Function Attrs: norecurse nounwind readnone
define dso_local i32 @double_return(i32 %a, i32 %b) local_unnamed_addr { define dso_local i32 @double_return(i32 %a, i32 %b) local_unnamed_addr {
entry: entry:
%cmp = icmp sgt i32 %a, 0 %cmp = icmp sgt i32 %a, 0
br i1 %cmp, label %if.then, label %if.else br i1 %cmp, label %if.then, label %if.else
▲ Show 20 LinesShow All 209 Lines▼ Show 20 Lines; CHECK: blx r12
ret void ret void
; CHECK: {{bx lr$}} ; CHECK: {{bx lr$}}
; ISBDSB-NEXT: dsb sy ; ISBDSB-NEXT: dsb sy
; ISBDSB-NEXT: isb ; ISBDSB-NEXT: isb
; SB-NEXT: {{ sb$}} ; SB-NEXT: {{ sb$}}
; CHECK: .Lfunc_end ; CHECK: .Lfunc_end
} }
; HARDEN-COMDAT: .section {{.text.__llvm_slsblr_thunk_(arm|thumb)_r5}}
; HARDEN-COMDAT: .hidden {{__llvm_slsblr_thunk_(arm|thumb)_r5}}
; HARDEN-COMDAT: .weak {{__llvm_slsblr_thunk_(arm|thumb)_r5}}
; HARDEN-COMDAT: .type {{__llvm_slsblr_thunk_(arm|thumb)_r5}},%function
; HARDEN-COMDAT-OFF-NOT: .section {{.text.__llvm_slsblr_thunk_(arm|thumb)_r5}}
; HARDEN-COMDAT-OFF-NOT: .hidden {{__llvm_slsblr_thunk_(arm|thumb)_r5}}
kristof.beylsUnsubmitted
Done
ReplyInline Actions

Would it be possible to also have check lines for HARDEN-COMDAT-OFF, i.e. look for lines that HARDEN-COMDAT-OFF should produce?

kristof.beyls: Would it be possible to also have check lines for HARDEN-COMDAT-OFF, i.e. look for lines that…
; HARDEN-COMDAT-OFF-NOT: .weak {{__llvm_slsblr_thunk_(arm|thumb)_r5}}
; HARDEN-COMDAT-OFF: .type {{__llvm_slsblr_thunk_(arm|thumb)_r5}},%function
; HARDEN-label: {{__llvm_slsblr_thunk_(arm|thumb)_r5}}: ; HARDEN-label: {{__llvm_slsblr_thunk_(arm|thumb)_r5}}:
; HARDEN: bx r5 ; HARDEN: bx r5
; ISBDSB-NEXT: dsb sy ; ISBDSB-NEXT: dsb sy
; ISBDSB-NEXT: isb ; ISBDSB-NEXT: isb
; SB-NEXT: dsb sy ; SB-NEXT: dsb sy
; SB-NEXT: isb ; SB-NEXT: isb
; HARDEN-NEXT: .Lfunc_end ; HARDEN-NEXT: .Lfunc_end