Skip to content

rajanmaghera/riscv-analysis

BranchesTags

Repository files navigation

RISC-V Analyzer

A RISC-V assembly static analyzer for coding convention violations.

RISC-V Analyzer (RVA) is a static analyzer for RISC-V assembly code written in Rust. It is designed to detect coding convention violations against RISC-V register conventions and calling conventions. RVA is built on top of the RISC-V Instruction Set Manual.

RVA is available as a command line tool.

Installation

Windows / MacOS / Linux

  1. Download the RVA binary for your platform from the latest release.
  2. Add the RVA binary to your path.
  3. Run rva from the command line.

Build From Source

Install Rust. Clone this repository, or download the source from the latest release. Finally, build RVA with the following command:

cargo build --release

The RVA binary is located at target/release/rva.

Usage

To detect all errors present in an assembly file, run the following command:

rva lint path/to/asm.s

Reporting an Issue

If you have any issues, please open an issue on the GitHub issues page. Please include the assembly code that is causing the issue. If you are unable to share the code, please send an email to rmaghera@ualberta.ca with the code segment. If you are a student in CMPUT 229, this does not count as a sharing violation.

RVA is in active development and has many limitations. Before opening an issue, check the list of known limitations

About the Analysis

This tool consists of two parts: a RISC-V assembly parser and a set of checkers. It is all written from scratch in Rust.

The checkers implement forms of abstract interpretation and data flow analysis. They do 3 main things:

  1. determine what registers are live at each instruction, aka. have a value that is used later in the program.
  2. determine what values are in each register at each instruction.
  3. determine what registers are used to pass arguments to functions.

This information coupled with the control flow graph of the program is used to detect violations of the RISC-V register conventions and calling conventions.

A common example of a violation is using a callee saved register without saving it first. This is a violation because the callee saved registers are not guaranteed to have the same value after a function call. For example, the following code is incorrect.

addi t1, zero, 40
jal ra, foo
addi t2, t1, 1

In this case, t1 is a callee saved register. The value of t1 is not guaranteed to be the same after the function call. This violation is detected by RVA.

About

WIP

Resources

Readme

License

GPL-3.0 license
Activity

Stars

4 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases 3

Winter 2025 Latest
Jan 20, 2025
+ 2 releases

Packages

No packages published

Contributors 4

  •  
  •  
  •  
  •  

Languages