Lift-offline: Instruction Lifter Generators (SAS 2024)

Sun 20 - Fri 25 October 2024 Pasadena, California, United States

Who

Nicholas Coughlin, Alistair Michael, Kait Lam

Track

SAS 2024

Time Zone

The program is currently displayed in (GMT-07:00) Pacific Time (US & Canada).

Use conference time zone: (GMT-07:00) Pacific Time (US & Canada)Select other time zone

The GMT offsets shown reflect the offsets at the moment of the conference.

Time Band

By setting a time band, the program will dim events that are outside this time window. This is useful for (virtual) conferences with a continuous program (with repeated sessions).
The time band will also limit the events that are included in the personal iCalendar subscription service.

Display full programSpecify a time band

Save

When

Tue 22 Oct 2024 12:00 - 12:30 at San Gabriel - Tracing bugs and flaws Chair(s): Aditya V. Thakur

Abstract

Binary analysis techniques depend on instruction lifters to map instruction encodings to their semantic effects. Existing work has demonstrated automatic methods to extract such semantics from trustworthy architecture specifications, on a per-instruction basis. We extend these results to extract the semantics of all instructions at once, effectively generating an instruction lifter. We attain this result through the offline partial evaluation of formal architecture specifications, along with their analysis via instruction opcode sensitive abstract domains. To illustrate the approach, we generate a generic instruction lifter for ARMv8 and specialise it to a series of use cases. In addition to the static analysis of architecture specifications, this approach permits the static analysis of the generated lifter. We exploit this to establish bounds on lifter behaviours and its produced semantics.

Link to Preprint

https://www.dropbox.com/scl/fi/ndkmiexbdwvg1w6iau8ge/149950087-copy.pdf?rlkey=o6qmkh6dhf8afwccywotqcl1z&dl=0

Nicholas Coughlin

Defence Science and Technology Group, Australia

Alistair Michael

Kait Lam