regehr/overflow.md

Last active April 13, 2016 22:56

Star () You must be signed in to star a gist
Fork () You must be signed in to fork a gist

Learn more about clone URLs
Clone this repository at <script src="https://gist.github.com/regehr/65252e90fb6bad82d533.js"></script>
Save regehr/65252e90fb6bad82d533 to your computer and use it in GitHub Desktop.

implementation sketch for faster integer overflow checking in clang/llvm

Raw

I want to speed up integer overflow checking for hardening purposes by keeping a sticky overflow flag and only trapping when necessary. I want to keep it super simple while hopefully giving the optimizers room to do their thing.

In the codegen part of clang:

each function gets an i1 for storing overflow information, initialized to 0
each integer overflow check ORs its result into the overflow flag
before each function call, return instruction, or other side-effecting operation, execude ud2 if overflow is set

Reasonable?

sanjoy commented Mar 25, 2016

This scheme (saturating has_overflowed bit) will also make
optimizing overflow checks away more difficult. I.e. in

i32 a = ...;
if ((a + 2) sign overflowed) set bit;
...
if ((a + 1) sign overflowed) set bit;

you won't be able to optimize away the second check just by doing
control flow analysis (you'll have to rely on the semantics of set bit), but in

i32 a = ...;
if ((a + 2) sign overflowed) abort();
...
if ((a + 1) sign overflowed) abort();

you can.

Author

regehr commented Mar 25, 2016

Ok, I'm convinced, thanks guys, I'll start reading the passes relevant for check removal.