基于内存保护键值的细粒度访存监控

计算机工程与科学 ›› 2024, Vol. 46 ›› Issue (01): 21-27.

基于内存保护键值的细粒度访存监控

王睿伯，吴振伟，张文喆，邬会军，张于舒晴，卢凯

(国防科技大学计算机学院，湖南长沙 410073)

收稿日期:2022-12-18 修回日期:2023-06-14 接受日期:2024-01-25 出版日期:2024-01-25 发布日期:2024-01-15
基金资助:
国家重点研发计划(2021YFB0300100)；国防科技大学HPCL重点实验室项目(202101-04)

Fine-grained memory access monitoring based on memory protection keys

WANG Rui-bo,WU Zhen-wei,ZHANG Wen-zhe,WU Hui-jun,ZHANG-YU Shu-qing,LU Kai

(College of Computer Science and Technology,National University of Defense Technology,Changsha 410073,China)

Received:2022-12-18 Revised:2023-06-14 Accepted:2024-01-25 Online:2024-01-25 Published:2024-01-15

摘要/Abstract

摘要： 基于内存保护键值硬件扩展，提出了一种轻量化且细粒度的页保护机制。突破了传统页保护方法仅支持页粒度访存监控的技术局限，实现了能够拦截每个访存操作的细粒度页保护机制。充分利用内存保护键值提供的用户态线程局部页访问权限控制，性能开销相比传统页保护的降低了30%以上。通过融合细粒度页保护与编译插桩，弥补了传统编译插桩方法无法覆盖程序中不可重编译部分的局限性。

关键词: 访存监控, 内存保护键值, 页保护, 编译插桩

Abstract: Based on memory protection key hardware extensions, a lightweight and fine-grained page protection mechanism is proposed. This mechanism overcomes the technical limitations of traditional page protection methods that only support page-grained memory access monitoring, and achieves fine-grained page protection that can intercept each memory access operation. By fully utilizing the user-level thread-local page access permission control provided by memory protection keys, the performance overhead is reduced by more than 30% compared to traditional page protection. Through the integration of fine-grained page protection and compiler instrumentation, the limitations of traditional compiler instrumentation methods that cannot cover non-recompilable portions of programs are addressed.

Key words: memory access monitoring, memory protection keys, page protection, compiler instrumentation

王睿伯, 吴振伟, 张文喆, 邬会军, 张于舒晴, 卢凯. 基于内存保护键值的细粒度访存监控[J]. 计算机工程与科学, 2024, 46(01): 21-27.

WANG Rui-bo, WU Zhen-wei, ZHANG Wen-zhe, WU Hui-jun, ZHANG-YU Shu-qing, LU Kai. Fine-grained memory access monitoring based on memory protection keys[J]. Computer Engineering & Science, 2024, 46(01): 21-27.

参考文献［14］

［1］	Neal I,Reeves B,Stoler B,et al. AGAMOTTO: How persistent is your persistent memory application?［C］∥Proc of the 14th USENIX Symposium on Operating Systems Design and Implementation,2020:1047-1064.
［2］	Luk C K,Cohn R, Muth R, et al.Pin: Building customized program analysis tools with dynamic instrumentation［J］.ACM SIGPLAN Notices,2005,40(6):190-200.
［3］	Bellard F.QEMU,a fast and portable dynamic translator［C］∥Proc of the Annual Conference on USENIX Annual Technical Conference,2005:41-46.
［4］	Bruening D L. Efficient,transparent,and comprehensive runtime code manipulation［D］. Cambridge:Massachusetts Institute of Technology,2004.
［5］	Lu K,Zhang W Z,Wang X P,et al.Flexible page-level memory access monitoring based on virtualization hardware［C］∥Proc of the 13th ACM SIGPLAN/SIGOPS International Conference on Virtual Execution Enviroments,2017:201-213.
［6］	Fang J B,Liao X K,Huang C,et al.Performance evaluation of memory-centric ARMv8 many-core architectures: A case study with Phytium 2000+［J］.Journal of Computer Science and Technology,2021,36(1): 33-43.
［7］	Li S S,Jia Z Y,Liao X K.Detecting performance bottlenecks guided by resource usage［J］.IEEE Access,2019,7:117839-117849.
［8］	Wu Z W, Lu K,Nisbet A,et al.PMThreads: Persistent memory threads harnessing versioned shadow copies［C］∥Proc of the 41st ACM SIGPLAN International Conference on Programming Language Design and Implementation,2020:623-637.
［9］	Park S,Lee S,Xu W,et al. Libmpk: Software abstraction for intel memory protection keys［C］∥Proc of the 2019 USENIX Conference on Usenix Annual Technical Conference,2019:241-254.
［10］	Vahldiek-Oberwagner A,Elnikety E,Duarte N O,et al. ERIM: Secure,efficient in-process isolation with protection keys (MPK)［C］∥Proc of the 28th USENIX Conference on Security Symposium, 2019:1221-1238.
［11］	Sung M, Olivier P, Lankes S, et al.Intra-unikernel isolation with intel memory protection keys［C］∥Proc of the 16th ACM SIGPLAN/SIGOPS International Conference on Virtual Execution Environments,2020:143-156.
［12］	Ahmad A, Lee S, Fonseca P, et al.Kard: Lightweight data race detection with per-thread memory protection［C］∥Proc of the 26th ACM International Conference on Architectural Support for Programming Languages and Operating Systems,2021:647-660.
［13］	Fitzpatrick B. Distributed caching with memcached［J］.Linux Journal, 2004,2004(124):60877498.
［14］	Zhang J Q, Yao Z L, Feng J L. NCRedis: An NVM- optimized redis with memory caching［C］∥Proc of the Database and Expert Systems Applications, 2021:27-30.