English

Return-Oriented Programming in RISC-V

Cryptography and Security 2020-07-31 v1
Authors: Garrett Gu , Hovav Shacham
View on arXiv PDF

Abstract

RISC-V is an open-source hardware ISA based on the RISC design principles, and has been the subject of some novel ROP mitigation technique proposals due to its open-source nature. However, very little work has actually evaluated whether such an attack is feasible assuming a typical RISC-V implementation. We show that RISC-V ROP can be used to perform Turing complete calculation and arbitrary function calls by leveraging gadgets found in a version of the GNU libc library. Using techniques such as self-modifying ROP chains and algorithmic ROP chain generation, we demonstrate the power of RISC-V ROP by creating a compiler that converts code of arbitrary complexity written in a popular Turing-complete language into RISC-V ROP chains.

Cite

@article{arxiv.2007.14995,
  title  = {Return-Oriented Programming in RISC-V},
  author = {Garrett Gu and Hovav Shacham},
  journal= {arXiv preprint arXiv:2007.14995},
  year   = {2020}
}

Related papers

View all related →
Cryptography and Security · Computer Science
Return-Oriented Programming on RISC-V
Georges-Axel Jaloyan, Konstantinos Markantonakis, Raja Naeem Akram, David Robin +2
2021-03-16
Cryptography and Security · Computer Science
Control-Flow Integrity at RISC: Attacking RISC-V by Jump-Oriented Programming
Olivier Gilles, Franck Viguier, Nikolai Kosmatov, Daniel Gracia Pérez
2022-11-30
Cryptography and Security · Computer Science
Execution at RISC: Stealth JOP Attacks on RISC-V Applications
Loïc Buckwell, Olivier Gilles, Daniel Gracia Pérez, Nikolai Kosmatov
2023-07-25
Hardware Architecture · Computer Science
32-Bit RISC-V CPU Core on Logisim
Siddesh D. Patil, Premraj V. Jadhav, Siddharth Sankhe
2023-12-05
Cryptography and Security · Computer Science
A practical analysis of ROP attacks
Ayush Bansal, Debadatta Mishra
2021-11-08
Hardware Architecture · Computer Science
Pedagogically Motivated and Composable Open-Source RISC-V Processors for Computer Science Education
Ian McDougall, Harish Batchu, Michael Davies, Karthikeyan Sankaralingam
2025-09-26
Cryptography and Security · Computer Science
The never ending war in the stack and the reincarnation of ROP attacks
Ammari Nader, Joan Calvet, Jose M. Fernandez
2020-05-26
Hardware Architecture · Computer Science
A RISC-V SystemC-TLM simulator
Màrius Montón
2020-10-21
Programming Languages · Computer Science
Supporting CUDA for an extended RISC-V GPU architecture
Ruobing Han, Blaise Tine, Jaewon Lee, Jaewoong Sim +1
2021-09-03
Hardware Architecture · Computer Science
RVCoreP : An optimized RISC-V soft processor of five-stage pipelining
Hiromu Miyazaki, Takuto Kanamori, Md Ashraful Islam, Kenji Kise
2020-12-30
Hardware Architecture · Computer Science
A portable and Linux capable RISC-V computer system in Verilog HDL
Junya Miura, Hiromu Miyazaki, Kenji Kise
2020-03-30
Cryptography and Security · Computer Science
Return Oriented Programming - Exploit Implementation using functions
Sunil Kumar Sathyanarayan, Dr. Makan Pourzandi, Katayoun Aliyari
2017-06-28
Operating Systems · Computer Science
Porting of eChronos RTOS on RISC-V Architecture
Shubhendra Pal Singhal, M. Sridevi, N Sathya Narayanan, M J Shankar Raman
2019-12-30
Cryptography and Security · Computer Science
Translating Common Security Assertions Across Processor Designs: A RISC-V Case Study
Sharjeel Imtiaz, Uljana Reinsalu, Tara Ghasempouri
2025-02-17
Cryptography and Security · Computer Science
A Survey on RISC-V Security: Hardware and Architecture
Tao Lu
2021-07-12
Hardware Architecture · Computer Science
RISC-V processor enhanced with a dynamic micro-decoder unit
Juliette Pottier, Thomas Nieddu, Bertrand Le Gal, Sébastien Pillement +1
2024-06-24
Cryptography and Security · Computer Science
Software Mitigation of RISC-V Spectre Attacks
Ruxandra Bălucea, Paul Irofti
2023-11-08
Hardware Architecture · Computer Science
The Renewed Case for the Reduced Instruction Set Computer: Avoiding ISA Bloat with Macro-Op Fusion for RISC-V
Christopher Celio, Palmer Dabbelt, David A. Patterson, Krste Asanović
2016-07-11
Cryptography and Security · Computer Science
Zipper Stack: Shadow Stacks Without Shadow
Jinfeng Li, Liwei Chen, Qizhen Xu, Linan Tian +3
2020-07-16
Hardware Architecture · Computer Science
Design and Implementation of a RISC-V SoC with Custom DSP Accelerators for Edge Computing
Priyanshu Yadav
2025-06-10
Cryptography and Security · Computer Science
Design and Implementation of a Secure RISC-V Microprocessor
Kleber Stangherlin, Manoj Sachdev
2022-10-04
Cryptography and Security · Computer Science
MAMBO-V: Dynamic Side-Channel Leakage Analysis on RISC-V
Jan Wichelmann, Christopher Peredy, Florian Sieck, Anna Pätschke +1
2023-09-28
Hardware Architecture · Computer Science
The Cost of Application-Class Processing: Energy and Performance Analysis of a Linux-ready 1.7GHz 64bit RISC-V Core in 22nm FDSOI Technology
Florian Zaruba, Luca Benini
2019-11-26
Machine Learning · Computer Science
Tensor Program Optimization for the RISC-V Vector Extension Using Probabilistic Programs
Federico Nicolas Peccia, Frederik Haxel, Oliver Bringmann
2025-08-20
Hardware Architecture · Computer Science
basic_RV32s: An Open-Source Microarchitectural Roadmap for RISC-V RV32I
Hyun Woo Kang, Ji Woong Choi
2025-10-21