Skip to content

jonpry/sass_fma

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

10 Commits
CuAssembler
CuAssembler
 
 
.gitignore
.gitignore
 
 
CONTROL_SIGNALS.md
CONTROL_SIGNALS.md
 
 
GEMINI.md
GEMINI.md
 
 
Makefile
Makefile
 
 
README.md
README.md
 
 
bit_compare_master.py
bit_compare_master.py
 
 
bit_diff.py
bit_diff.py
 
 
build.sh
build.sh
 
 
check_control.py
check_control.py
 
 
compare_bits.py
compare_bits.py
 
 
comprehensive.cu
comprehensive.cu
 
 
comprehensive_test.cu
comprehensive_test.cu
 
 
cuasm_experiments.py
cuasm_experiments.py
 
 
discovery.cu
discovery.cu
 
 
dump_patched.py
dump_patched.py
 
 
final_patch.py
final_patch.py
 
 
get_sync_bits.py
get_sync_bits.py
 
 
interceptor.cpp
interceptor.cpp
 
 
nop_expander.py
nop_expander.py
 
 
patch_rewriter.py
patch_rewriter.py
 
 
patch_v2.py
patch_v2.py
 
 
requirements.txt
requirements.txt
 
 
rewriter.py
rewriter.py
 
 
run_test.sh
run_test.sh
 
 
runtime_test.cu
runtime_test.cu
 
 
spill_discovery.cu
spill_discovery.cu
 
 
stress_test.cu
stress_test.cu
 
 
test_control_encoding.py
test_control_encoding.py
 
 
test_cuasm_parser.py
test_cuasm_parser.py
 
 
test_kernel.cu
test_kernel.cu
 
 
test_regex.py
test_regex.py
 
 
test_volta_ctrl_pos.py
test_volta_ctrl_pos.py
 
 
verify_correctness.py
verify_correctness.py
 
 
verify_encoding_cuasm.py
verify_encoding_cuasm.py
 
 
verify_fields.py
verify_fields.py
 
 

Repository files navigation

SASS FMA Bypass Tool

Created by Jon Pry.

A high-performance, SASS-level binary translator for NVIDIA GPUs designed to bypass hardware defects by rewriting Streaming Multiprocessor Assembly (SASS) on-the-fly.

Overview

This tool was developed to rescue GPU hardware (specifically NVIDIA Volta/Ampere) where the fused multiply-add (FFMA) instruction is defective. It intercepts CUDA module loading at the Driver API level and surgically replaces every FFMA with a functionally equivalent FMUL followed by an FADD.

Key Features

  • Zero Performance Overhead: Uses direct instruction insertion (manual ELF shifting) to maintain native execution speed.
  • Production-Grade Analysis: Implements full Control Flow Graph (CFG) construction and Iterative Liveness Analysis to safely find spare registers.
  • Multi-Kernel Support: Correctly handles cubins containing multiple kernels through kernel-aware metadata patching.
  • Safe Jump Table Tracing: Uses symbolic tracing to patch switch statements in constant memory without corrupting mathematical literals.
  • Architecture Aware: Automatically detects and supports sm_70 (Volta) and sm_80 (Ampere).
  • Thread Safe: Supports concurrent kernel loading in multi-threaded applications.

Architecture

  1. interceptor.so: A C++ shared library designed for LD_PRELOAD. It hooks cuModuleLoadDataEx and related functions to capture .cubin files before they are loaded.
  2. rewriter.py: A Python 3 engine that disassembles the binary, maps out the entire PC space, performs the instruction split, and manually shifts the ELF headers and sections.

Prerequisites

  • CUDA Toolkit (nvcc, nvdisasm)
  • Python 3.x
  • C++ Compiler (g++)

Installation

  1. Clone the repository.
  2. Install Python dependencies: 
    pip install -r requirements.txt
  3. Build the interceptor: 
    ./build.sh

Usage

To apply the bypass to any CUDA application, simply prefix the command with the interceptor and force PTX JIT to ensure all kernels are captured:

export CUDA_FORCE_PTX_JIT=1
LD_PRELOAD=./interceptor.so ./your_cuda_application

Running Tests

The project includes a comprehensive test suite covering accumulators, predication, loops, and large-scale expansion:

./run_test.sh

License

MIT

About

SASS rewriter

Resources

Readme
Activity

Stars

6 stars

Watchers

2 watching

Forks

2 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages