alive2
mcsema
alive2 | mcsema | |
---|---|---|
5 | 2 | |
688 | 2,366 | |
3.1% | - | |
9.3 | 4.9 | |
8 days ago | about 2 years ago | |
C++ | C++ | |
MIT License | GNU Affero General Public License v3.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
alive2
-
CBMC: C bounded model checker. (2021)
Another problem with LLVM I’ve heard about is that it’s intermediate language or API or something is a moving, informally-specified target. People who know LLVM internals might weigh in on that claim. If true, it’s actually easier to target C or a subset of Rust just because it’s static and well-understood.
Two projects sought to mitigate these issues by going in different directions. One was a compiler backend that aimed to be easy to learn with well-specified IL. The other aimed to formalize LLVM’s IL.
http://c9x.me/compile/
https://github.com/AliveToolkit/alive2
There have also been typed, assembly languages to support verification from groups like FLINT. One can also compile language-specific analysis with a certified to LLVM IL compiler. Integrating pieces from different languages can have risks. That (IIRC) is being mitigated by people doing secure, abstract compilation.
-
Basic SAT model of x86 instructions using Z3, autogenerated from Intel docs
You can use it to (mostly) validate small snippets are the same. See Alive2 for the application of Z3/formalization of programs as SMT for that [1]. As far as I'm aware there are some problems scaling up to arbitrarily sized programs due to a lack of formalization in higher level languages in addition to computational constraints. With a lot of time and effort it can be done though [2].
1. https://github.com/AliveToolkit/alive2
2. https://sel4.systems/
- John Regehr: Alive2 LLVM optims verification
-
Verifying GCC optimizations using an SMT solver
Yeah, this kind of thing is nice.
Alive had been used for years (almost a decade actually) by people to verify LLVM instcombine transforms.
Alive2 (https://github.com/AliveToolkit/alive2) makes it easier to do the same with most optimization passes.
-
Programming in Z3 by learning to think like a compiler
Alive/Alive2 [1] is one of the most famous frameworks for compiler transformation verification using BitVec logic
[1] https://github.com/AliveToolkit/alive2
mcsema
- fcd – LLVM-based native program optimizing decompiler
-
Is something similar to Rosetta 2 possible on Linux?
I was actually looking at this today because I was curious. But you can look here this project plus the project it references would be a good start doing as a binary translator: https://github.com/lifting-bits/mcsema
What are some alternatives?
CrossHair - An analysis tool for Python that blurs the line between testing and type systems.
asmjit - Low-latency machine code generation
klee - KLEE Symbolic Execution Engine
zasm - x86-64 Assembler based on Zydis
recreational-rosette - Some fun examples of solving problems with symbolic execution
sleighcraft - sleigh craft!
zz - 🍺🐙 ZetZ a zymbolic verifier and tranzpiler to bare metal C
XOpcodeCalc - Opcode calculator / ASM calculator
Symbolica - Symbolica's open-source symbolic execution engine. [Moved to: https://github.com/Symbolica/Symbolica]
suniversal - USB adapter for SUN keyboards
llvm-tutor - A collection of out-of-tree LLVM passes for teaching and learning
anvill - anvill forges beautiful LLVM bitcode out of raw machine code