Counts the instructions executed within a single function.
When developing constant-time code, it can be helpful to validate that several executions of a given function have the same number of instructions, and that the same instructions were used.
The approach used by this crate is to single-step the function using the operating system debug API, optionally recording the address of each instruction. This is currently implemented only for Linux; for other operating systems, it will fail with an error.
Using the debug API to single-step the function has several drawbacks:
- It can be very slow, especially when not compiled in release mode;
- It cannot be used while another debugger is attached to the process;
- Its use might be restricted by several system hardening mechanisms.
On the other hand, using the debug API has the advantage of tracing the real code executed by the CPU, as generated by the compiler, instead of symbolic execution of the source code, or emulation on another architecture.
Licensed under either of
- Apache License, Version 2.0, (LICENSE-APACHE or http://www.apache.org/licenses/LICENSE-2.0)
- MIT license (LICENSE-MIT or http://opensource.org/licenses/MIT)
at your option.