initial implementation of the Sail-generated RISCV disassembler module

[moste00]

Your checklist for this pull request

• I've documented or updated the documentation of every API function and struct this PR changes.
• I've added tests that prove my fix is effective or that my feature works (if possible)

Detailed description

This PR aims to replace the LLVM-derieved RISCV module with a Sail-derieved RISCV module. The generator tool is being developed here, and for the Sail model of RISCV is here.

Sail is an architecture description language being developed here, it's an imperative language inspired in syntax and semantics by OCaml, with some syntax sugar and innovative features designed specifically for describing computer architectures. See here for a detailed tour and explanation of major features.

The RISCV foundation has adopted the Sail model of RISCV as the "official" definition of the architecture, and therefore it's desirable to generate a C implementation of the any RISCV-related logic from the sail-riscv model, as it will be up-to-date and compliant by construction.

Test plan

The current state of the module doesn't compile, this will be updated as work continues on the module. The initial goal of the work is to be able to invoke cstool and obtain useful results (e.g. the instruction in string form, as a start). Hopefully this goal is not too far.

Closing issues

...

[wargio]

Overall is a very good progress, i would suggest tho to maybe split arch/RISCV/riscv_ast2str.gen.inc into multiple files since it too big, maybe split it by RV32 and RV64

@XVilka

[XVilka]

@thestr4ng3r take a look too, please, when you have time.

[Rot127]

For the prototype/first implementation the decode is fine like this. But before we can merge it into next we need to optimize two things:

Size

      uint64_t rd = (binary_stream & 0x0000000000000F80)>>7 ;
      uint64_t rs1 = (binary_stream & 0x00000000000F8000)>>15 ;
      uint64_t rs2 = (binary_stream & 0x0000000001F00000)>>20 ;
      tree->ast_node_type = RISCV_RTYPE ;
      tree->ast_node.rtype.rs2 = rs2;
      tree->ast_node.rtype.rs1 = rs1;
      tree->ast_node.rtype.rd = rd;

These specific lines are repeated 10 times in the decoder.
I assume there are other decoding patterns happening just as often. In the final version we should not have any duplicated code in here.

Runtime complexity

I greped for ^ if and found 505 if cases in the decode function. This means for an illegal instructions it does at least 505 comparisons (assuming the compiler doesn't optimize something out). Which is something more than ~O(n * 10) (n = number of bits).
But we should reach in worst case O(n * 1) and O(log(n)) on average before we merge it to next.

The current structure is fine. Also because you have the RzIL task as well. So no worries.

What is important though, is that the decoded details (operand details) are stable. No matter how the architecture of this decoder is. Because on once you finished RzIL we would not want to refactor the whole RzIL work, just because we optimized the Capstone decoder :)

That said, good job! Looks like a lot of work! Well done!

[Rot127]

Suggested change

	#include "capstone.h"
	#include <capstone/capstone.h>

[Rot127]

These /* bits : 1 */ comments, what do they mean?

1. aq encodes bit 1 of instruction.
2. aq is one bit wide.

Please make this more clear. E.g. for the first meaning you could replace it with insn_bits[1:1]. And for the second meaning: bit_width : 1.

[Rot127]

Guess it means the last, though being more descriptive doesn't hurt. This one has a low priority though.

[XVilka]

@moste00 please update the PR with your latest state of the generated code

[wargio]

this is not ok, but we can write a script to update this.

[Rot127]

Very much like what I see! Awesome job!
Especially the changes to riscv_decode.gen.inc :)

Please focus on just making it work. You can ignore my comments for now. They are just there so we don't forget about it.

Because I could only take a shallow look, I'll check again in the next days.

[Rot127]

Set your copyright. Please use SPDX header style:

# Copyright © 2022 Rot127 <[email protected]>
# SPDX-License-Identifier: BSD-3

[XVilka]

Maybe think about converting these into Doxygen, if it's ever possible?

[XVilka]

Add Doxygen comments for these helper functions. Also, maybe move to the capstone utils instead? cc @Rot127

[Rot127]

Yes, please move it to `utils.c

[Rot127]

Actually, you can just use sprintf(). We depend on libc anyways.

[Rot127]

Sorry, ignore it. See my comment in the final review message.

[Rot127]

• For all the string operations: It is better to use SStream everywhere. And don't do direct operations on char *. This is what it was implement for anyways. Is better tested and is convenient to use.

Edit: Sorry, pressed the "review" button by accident. Will add some more comments.

[Rot127]

Yes, please move it to `utils.c

[Rot127]

Actually, you can just use sprintf(). We depend on libc anyways.

[Rot127]

Sorry, ignore it. See my comment in the final review message.

[Rot127]

Well done! This is a really nice basis to develop further.
I just pushed a new experimental branch (based on newest next). Please rebase your PR on top of it.

[Rot127]

Doxygen please. Also for the Void2Bool callback.

[Rot127]

Suggested change

CS_ASSERT(str_len > 0);

Always true.

[Rot127]

This generates too many functions :D
If you have hex_bits_X() in the generated code, it is better to pass the number of bits as argument.

[moste00]

Sorry for sleeping on this review. Was finishing up the generator.

Yeah there is a lot of those hex_bits_* functions but their implementations are all simple one-liners that delegate to their mother function, which does take a bit width parameter. I guess I'm doing this in direct imitation to the sail implementation, which does something very similar using mappings.

I can't control how it's called from the generated code because the generator doesn't understand anything about hex_bits_X, it just sees an opaque function that it couldn't derieve automatically (only very simple mapping are parsed and understood as basically string->string tables), so it just emits the call as-is with all the arguments plus an SS buffer and a context argument. It's up to some human-in-the-loop to implement those opaque functions so that the calls make sense. I implemented them as thin wrappers over a general function which does take the bit width parameter.

[Rot127]

Can be done with something like "0123456789abcdef"[bitvec & 0xf].

[moste00]

Very nice, thanks

[Rot127]

Suggested change

	if (ma) {
	SStream_concat(ss, "ma");
	return;
	}
	if (!ma) {
	return;
	}
	SStream_concat(ss, "ma");

General rule, returning early from errors makes the code look cleaner.

[Rot127]

It seems to be only used as bool. Better replace RVBool with bool.
Otherwise the compiler can't apply possible optimizations.

[moste00]

Are there a standard bool in the C version we're using though? I thought C pre C99 doesn't have bools and even C99 fakes it by a typedef, only C11 or something later introduces a true bool.

Is it okay if I used C99/C11 though knowing that Capstone is compiled for so many architectures and by so many compilers? I remember that I had to change the generator code using binary number literals some time ago because some compilers don't support it.

[Rot127]

global/static variables

Highly advice to never get started with them :D

[moste00]

Yeah :'D, just wanted to throw all the alternatives out there, wasn't thinking seriously about them.

I guess what I'm doing is kinda okay and isn't that brittle because I'm not serializing that binary buffer anywhere or anytime else, I'm just binary-dumping a struct then reviving it from the binary dump in another function of the same running program. It's still very hacky and could make a lot of people go "wtf" when reading it, but I legit thought about it so hard for days and couldn't find anything better than that or malloc, and I really hate malloc.