Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Set LLVM Flag to Disable cmov (select instr) generation #380

Merged
merged 8 commits into from
Aug 7, 2024
Merged

Set LLVM Flag to Disable cmov (select instr) generation #380

Show file tree
Hide file tree
Changes from 7 commits
Commits
Show all changes
8 commits
Select commit Hold shift + click to select a range
8a216ad
Add -simplifycfg-branch-fold-threshold=0 flag to elminate LLVMs selec…
DanBlackwell Aug 2, 2024
75ecc74
Hide simplifycfg-branch-fold-threshold=0 behind flag disable_branch_f…
DanBlackwell Aug 6, 2024
d905034
Set default value for disable_branch_folding
DanBlackwell Aug 6, 2024
160066d
Missing space character
DanBlackwell Aug 6, 2024
7990230
Move disable_branch_folding over to Option<bool> and default false fo…
DanBlackwell Aug 6, 2024
83cb30b
Set disable_branch_folding to default true
DanBlackwell Aug 6, 2024
03d4040
Inline disable_branch_folding explanation to the doc comment
DanBlackwell Aug 7, 2024
9daf1fc
Keep the linter happy
DanBlackwell Aug 7, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
32 changes: 32 additions & 0 deletions src/options.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -134,6 +134,37 @@ pub struct BuildOptions {
/// the `*-trace-compares` instrumentation assumes that the instruction is
/// available.
pub no_trace_compares: bool,

#[arg(long)]
/// Disable transformation of if-statements into `cmov` instructions (when this
/// happens, we get no coverage feedback for that branch). Default setting is true.
/// This is done by setting the `-simplifycfg-branch-fold-threshold=0` LLVM arg.
///
/// For example, in the following program shows the default coverage feedback when
/// compiled with `-Copt-level=3`:
///
/// mark_covered(1); // mark edge 1 as covered
/// let mut res = 1;
/// if x > 5 && y < 6 {
/// res = 2;
/// }
///
/// With `disable_branch_folding` enabled, the code compiles to be equivalent to:
///
/// mark_covered(1);
/// let mut res = 1;
/// if x > 5 {
/// mark_covered(2);
/// if y < 6 {
/// mark_covered(3);
/// res = 2;
/// }
/// }
///
/// Note, that in the second program, there are now 2 new coverage feedback points,
/// and the fuzzer can store an input to the corpus at each condition that it passes;
/// giving it a better chance of producing an input that reaches `res = 2;`.
pub disable_branch_folding: Option<bool>,
}

impl stdfmt::Display for BuildOptions {
Expand Down Expand Up @@ -233,6 +264,7 @@ mod test {
strip_dead_code: false,
no_cfg_fuzzing: false,
no_trace_compares: false,
disable_branch_folding: None,
};

let opts = vec![
Expand Down
4 changes: 4 additions & 0 deletions src/project.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -175,6 +175,10 @@ impl FuzzProject {
rustflags.push_str(" -Cllvm-args=-sanitizer-coverage-trace-compares");
}

if build.disable_branch_folding.unwrap_or(true) {
rustflags.push_str(" -Cllvm-args=-simplifycfg-branch-fold-threshold=0");
}

if !build.no_cfg_fuzzing {
rustflags.push_str(" --cfg fuzzing");
}
Expand Down
Loading