Skip to content
/ pinchecker Public

Rust memory safety & undefined behavior detector aimed at FFI usages.

4 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

yxdai-nju/pinchecker

BranchesTags

Repository files navigation

cargo-pinch

Rust memory safety & undefined behavior detector aimed at FFI usages.

Pinch is an Contract Violation detection tool for Rust crates. It can analyze libraries to detect unsafe code that fails to uphold its safety requirements. For instance:

  • Obtaining &mut T out of Pin<Box<T>>, where T: !Unpin
  • ...

Using Pinch

Install Python dependencies:

pip install -r requirements.txt

Next, encode the Rust crate to be analyzed. This part is currently manual but will be automated. To encode, edit pinch.py:

  1. Encode function signatures in fn_tmps, e.g.,
    • Original: fn deref_mut<T>(_: MoveRef<T>) -> &mut T;
    • Encoded: "deref_mut": (1, lambda t1: (("MoveRef", t1), ("MutRef", t1))),
  2. Encode the detection goal in the reachable variable, e.g.,
    • Goal: Is &mut Unmovable obtainable from Pin<Box<Unmovable>>?
    • Encoded: solver.reachable(ty_from=("Pin", ("Box", "Unmovable")), ty_to=("MutRef", "Unmovable"))

Now you can run pinch.py:

python pinch.py

You will get True if obtainable, and False otherwise.

About

Rust memory safety & undefined behavior detector aimed at FFI usages.

Resources

Readme
Activity

Stars

4 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages