initial implementation of the Sail-generated RISCV disassembler module

[moste00]

Your checklist for this pull request

• I've documented or updated the documentation of every API function and struct this PR changes.
• I've added tests that prove my fix is effective or that my feature works (if possible)

Detailed description

This PR aims to replace the LLVM-derieved RISCV module with a Sail-derieved RISCV module. The generator tool is being developed here, and for the Sail model of RISCV is here.

Sail is an architecture description language being developed here, it's an imperative language inspired in syntax and semantics by OCaml, with some syntax sugar and innovative features designed specifically for describing computer architectures. See here for a detailed tour and explanation of major features.

The RISCV foundation has adopted the Sail model of RISCV as the "official" definition of the architecture, and therefore it's desirable to generate a C implementation of the any RISCV-related logic from the sail-riscv model, as it will be up-to-date and compliant by construction.

Test plan

The current state of the module doesn't compile, this will be updated as work continues on the module. The initial goal of the work is to be able to invoke cstool and obtain useful results (e.g. the instruction in string form, as a start). Hopefully this goal is not too far.

Closing issues

...

[wargio]

This ifdef is required by capstone to slim down the build when you compile only for certain archs.

[wargio]

maybe add at the beginning a multiline comment saying that this SAIL generated from the riscv repository YYYYYY with commit UUUUU

[XVilka]

Also the copyright. Will be necessary for the SPDX in the future: #2132

[wargio]

i'm sure the compiler is smart enough to compile out | (0x0 << 0) but this is essentially dead code, maybe add a check in the sail2c code that checks for this pattern and omit the value.

[Rot127]

This can also go into a helper function imho. Something like inline void concat_bits(uint8_t *dest, ...);. For which the vargs should be of the form: uint64_t bits, uint64_t offset.

I think the following reads better:

concat_bits((uint8_t*)&tree->ast_node.riscv_jal.imm, imm_19, 23, imm_7_0, 15, imm_8, 14, imm_18_13, 8, imm_12_9, 4);

Also passing bytes as pointer to uint8_t array to support future 192 bit extension.

What are your guys opinions @XVilka @wargio?

[wargio]

not sure if concat_bits is needed since is just an OR. i think as is now is ok.

[wargio]

Overall is a very good progress, i would suggest tho to maybe split arch/RISCV/riscv_ast2str.gen.inc into multiple files since it too big, maybe split it by RV32 and RV64

@XVilka

[XVilka]

@thestr4ng3r take a look too, please, when you have time.

[XVilka]

Also the copyright. Will be necessary for the SPDX in the future: #2132

[XVilka]

Unnecessary space. Also, I think, enums could be extracted to the top level

[XVilka]

Please split these too long lines in the generator into two.

[Rot127]

For the prototype/first implementation the decode is fine like this. But before we can merge it into next we need to optimize two things:

Size

      uint64_t rd = (binary_stream & 0x0000000000000F80)>>7 ;
      uint64_t rs1 = (binary_stream & 0x00000000000F8000)>>15 ;
      uint64_t rs2 = (binary_stream & 0x0000000001F00000)>>20 ;
      tree->ast_node_type = RISCV_RTYPE ;
      tree->ast_node.rtype.rs2 = rs2;
      tree->ast_node.rtype.rs1 = rs1;
      tree->ast_node.rtype.rd = rd;

These specific lines are repeated 10 times in the decoder.
I assume there are other decoding patterns happening just as often. In the final version we should not have any duplicated code in here.

Runtime complexity

I greped for ^ if and found 505 if cases in the decode function. This means for an illegal instructions it does at least 505 comparisons (assuming the compiler doesn't optimize something out). Which is something more than ~O(n * 10) (n = number of bits).
But we should reach in worst case O(n * 1) and O(log(n)) on average before we merge it to next.

The current structure is fine. Also because you have the RzIL task as well. So no worries.

What is important though, is that the decoded details (operand details) are stable. No matter how the architecture of this decoder is. Because on once you finished RzIL we would not want to refactor the whole RzIL work, just because we optimized the Capstone decoder :)

That said, good job! Looks like a lot of work! Well done!

[Rot127]

Please fprintf a warning here that instructions >64bit are not supported yet.

[Rot127]

Or do it below where you check the result of this function. Either way, just please inform the user about it.

[Rot127]

Suggested change

	#include "capstone.h"
	#include <capstone/capstone.h>

[Rot127]

Suggested change

	#include "../../include/capstone/capstone.h"
	#include <capstone/capstone.h>

[Rot127]

These /* bits : 1 */ comments, what do they mean?

1. aq encodes bit 1 of instruction.
2. aq is one bit wide.

Please make this more clear. E.g. for the first meaning you could replace it with insn_bits[1:1]. And for the second meaning: bit_width : 1.

[Rot127]

Guess it means the last, though being more descriptive doesn't hurt. This one has a low priority though.

[Rot127]

Please implement a helper function like inline uint64_t get_bit_field(uint8_t *bytes, size_t start, size_t n); for those. It can be in utils.h

Mind that the bytes are passed as a pointer! So we can go beyond 64bit in the future. The array size of bytes can be assumed by the requested bits. If start > 64 we know the array should be at >8bytes.

[Rot127]

These helper functions are important because they allow bit extraction of >64bit instructions. The currently generated code has a maximum of 64bit supported.

[Rot127]

This can also go into a helper function imho. Something like inline void concat_bits(uint8_t *dest, ...);. For which the vargs should be of the form: uint64_t bits, uint64_t offset.

I think the following reads better:

concat_bits((uint8_t*)&tree->ast_node.riscv_jal.imm, imm_19, 23, imm_7_0, 15, imm_8, 14, imm_18_13, 8, imm_12_9, 4);

Also passing bytes as pointer to uint8_t array to support future 192 bit extension.

What are your guys opinions @XVilka @wargio?

[Rot127]

The binary_stream & 0x000000000000007F == 0x67 also in a helper please. E.g.
inline bool test_bits64(uint64_t bytes, size_t start, size_t n, uint64_t expected)

[XVilka]

@moste00 please update the PR with your latest state of the generated code

[wargio]

this is not ok, but we can write a script to update this.

[Rot127]

Very much like what I see! Awesome job!
Especially the changes to riscv_decode.gen.inc :)

Please focus on just making it work. You can ignore my comments for now. They are just there so we don't forget about it.

Because I could only take a shallow look, I'll check again in the next days.

[Rot127]

Suggested change

	#include "../include/capstone/capstone.h"
	#include <capstone/capstone.h>

[Rot127]

For these byte extractions we have readBytes32 and others in utils.c. Please use those.

[Rot127]

Please use strchr for this. You can get the length by subtracting the pointers.

[Rot127]

Same here.

[Rot127]

Suggested change

} else {

[Rot127]

Set your copyright. Please use SPDX header style:

# Copyright © 2022 Rot127 <[email protected]>
# SPDX-License-Identifier: BSD-3

[XVilka]

Either make these functions inline, or do not put into header file

[XVilka]

1. Should rename the project, maybe since it's capstone auto-sync, something like capstone-autosync-sail?
2. Once the repository transferred to rizinorg, also update the URL

cc @wargio

[XVilka]

Please use capital letters for include guards

[Rot127]

Also above in the other files please.

[XVilka]

Unnecessary empty line between includes

[XVilka]

Maybe think about converting these into Doxygen, if it's ever possible?

[XVilka]

Unnecessary additional {} braces

[moste00]

Oh those are necessary, because many of the If conditions and the associated context use variables with the same identifier. This wasn't a problem in the original Sail because every rule match forms a different scope, but it's a problem now in C.

The single easiest solution is adding those braces to start a new scope for each rule. I guess I could also solve the problem by making a new function decode_<instruction_case> for every rule to achieve the same effect, but that would complicate the generator a bit.

[XVilka]

Add Doxygen comments for these helper functions. Also, maybe move to the capstone utils instead? cc @Rot127

[Rot127]

Yes, please move it to `utils.c

[Rot127]

Actually, you can just use sprintf(). We depend on libc anyways.

[Rot127]

Sorry, ignore it. See my comment in the final review message.

[Rot127]

• For all the string operations: It is better to use SStream everywhere. And don't do direct operations on char *. This is what it was implement for anyways. Is better tested and is convenient to use.

Edit: Sorry, pressed the "review" button by accident. Will add some more comments.

[Rot127]

We should rename them before merging to CamelCase

[Rot127]

Add your copyright please in SPDX form:

// Copyright © 2024 Rot127 <[email protected]>
// SPDX-License-Identifier: BSD-3

[Rot127]

Add include guard and your copyright please.

[Rot127]

Add your copyright.

[Rot127]

Copyright please

[Rot127]

Your copyright.

[Rot127]

These if cases are ok for the prototype. Especially, since they more comprehensible. But for the final version we have to reduce runtime complexity again to something like O(log n).

[Rot127]

Yes, please move it to `utils.c

[Rot127]

Actually, you can just use sprintf(). We depend on libc anyways.

[Rot127]

Sorry, ignore it. See my comment in the final review message.

[Rot127]

Well done! This is a really nice basis to develop further.
I just pushed a new experimental branch (based on newest next). Please rebase your PR on top of it.

[Rot127]

Doxygen please. Also for the Void2Bool callback.

[Rot127]

Copyright.

[Rot127]

Also above in the other files please.