octopus/README.md

OCTOPUS
---

Samuel AUBERTIN - EURECOM - 2022

![SPECTRE Octopus Logo](logo.png "SPECTRE Octopus Logo")

**OCTOPUS** is a [Spectre](https://spectreattack.com/spectre.pdf) V1 (_Bounds Check Bypass_) + V2 (_Branch Target Injection_) compiler flag tester.

It measures the success rate of the attacks using different compilers:

- GCC
- CLANG 

And compilation/linking flags such as:

- Optimisation levels (```-O```)
- Static/dynamic linking
- Masking and lfence as mitigation against Spectre V1
- RETPOLINE as mitigation against Spectre V2

## Results

Results are stored as JSON objects in an unique file for each run, following this pattern: ```result-$(UUID).json```

## Dependencies

- ```clang``` and ```lld```
- ```gcc```
- ```sftp```
- ```uuid```
- The libC static symbols: ```glibc-static```

## Execution

Will build, execute and upload the results.

```make```

### Build only 

```make [-j XXX] build``` where ```XXX``` is the number of parallel processes.

## Results aggregation

Results are automatically uploaded to a server with a dedicated account using ```sftp```.

Here is an exhaustive list of the data sent:
- CPU model name and microcode version.
- Kernel version and compilation date.
- GCC and clang versions.
- The list of mitigations enabled at runtime.
- The cache timings of the processor computed by the ```calibrate_threshold()``` function.
- Each spectre execution success rate.

**NONE** of this data will be used for anyhting else except this experiment.

## References

Both implementations are heavily inspired by:

- [ErikAugust gist](https://gist.github.com/ErikAugust/724d4a969fb2c6ae1bbd7b2a9e3d4bb6)
- [genua GmbH PoC](https://github.com/genua/meltdown)
first 2022-01-22 15:04:17 +01:00			`OCTOPUS`
			`---`

more readme 2022-01-22 15:09:33 +01:00			`Samuel AUBERTIN - EURECOM - 2022`
first 2022-01-22 15:04:17 +01:00
			`![SPECTRE Octopus Logo](logo.png "SPECTRE Octopus Logo")`

Typo in Makefile 2022-01-27 15:37:10 +01:00			`OCTOPUS is a [Spectre](https://spectreattack.com/spectre.pdf) V1 (_Bounds Check Bypass_) + V2 (_Branch Target Injection_) compiler flag tester.`
first 2022-01-22 15:04:17 +01:00
Add the missing Makefile ! 2022-01-27 15:36:02 +01:00			`It measures the success rate of the attacks using different compilers:`
Refactor spectre.c and add multiple targets to the Makefile: - GCC support - RETPOLINE for both GCC and clang - LLD dynamic linker to support RETPOLINE mitigations on dynamic executables - Results aggregation using SFTP 2022-01-23 19:37:24 +01:00
			`- GCC`
			`- CLANG`

			`And compilation/linking flags such as:`
more readme 2022-01-22 15:09:33 +01:00
			- Optimisation levels (```-O```)
Style, more doc in README 2022-01-28 16:42:43 +01:00			`- Static/dynamic linking`
			`- Masking and lfence as mitigation against Spectre V1`
			`- RETPOLINE as mitigation against Spectre V2`

			`## Results`

			Results are stored as JSON objects in an unique file for each run, following this pattern: ```result-$(UUID).json```
more readme 2022-01-22 15:09:33 +01:00
			`## Dependencies`
first 2022-01-22 15:04:17 +01:00
Add LLD to the dependencies 2022-01-23 20:00:32 +01:00			- ```clang``` and ```lld```
Refactor spectre.c and add multiple targets to the Makefile: - GCC support - RETPOLINE for both GCC and clang - LLD dynamic linker to support RETPOLINE mitigations on dynamic executables - Results aggregation using SFTP 2022-01-23 19:37:24 +01:00			- ```gcc```
			- ```sftp```
			- ```uuid```
Style, more doc in README 2022-01-28 16:42:43 +01:00			- The libC static symbols: ```glibc-static```
first 2022-01-22 15:04:17 +01:00
more readme 2022-01-22 15:09:33 +01:00			`## Execution`
first 2022-01-22 15:04:17 +01:00
Style, more doc in README 2022-01-28 16:42:43 +01:00			`Will build, execute and upload the results.`
first 2022-01-22 15:04:17 +01:00
Style, more doc in README 2022-01-28 16:42:43 +01:00			```make```
Add the missing Makefile ! 2022-01-27 15:36:02 +01:00
			`### Build only`

Style, more doc in README 2022-01-28 16:42:43 +01:00			```make [-j XXX] build``` where ```XXX``` is the number of parallel processes.
Add the missing Makefile ! 2022-01-27 15:36:02 +01:00
more readme 2022-01-22 15:09:33 +01:00			`## Results aggregation`
first 2022-01-22 15:04:17 +01:00
Style, more doc in README 2022-01-28 16:42:43 +01:00			Results are automatically uploaded to a server with a dedicated account using ```sftp```.
Refactor spectre.c and add multiple targets to the Makefile: - GCC support - RETPOLINE for both GCC and clang - LLD dynamic linker to support RETPOLINE mitigations on dynamic executables - Results aggregation using SFTP 2022-01-23 19:37:24 +01:00
			`Here is an exhaustive list of the data sent:`
			`- CPU model name and microcode version.`
			`- Kernel version and compilation date.`
			`- GCC and clang versions.`
			`- The list of mitigations enabled at runtime.`
			- The cache timings of the processor computed by the ```calibrate_threshold()``` function.
			`- Each spectre execution success rate.`

			`NONE of this data will be used for anyhting else except this experiment.`
more readme 2022-01-22 15:09:33 +01:00
Style, more doc in README 2022-01-28 16:42:43 +01:00			`## References`

			`Both implementations are heavily inspired by:`
more readme 2022-01-22 15:09:33 +01:00
			`- [ErikAugust gist](https://gist.github.com/ErikAugust/724d4a969fb2c6ae1bbd7b2a9e3d4bb6)`
			`- [genua GmbH PoC](https://github.com/genua/meltdown)`