Skip to content
Snippets Groups Projects
Select Git revision
  • master default
  • add-u24
  • add_arm32_eh
  • 21-job-failed-248429
  • testCapstoneFix
  • debug_palignr
  • newStars
  • fix-calls-fix
  • 19-need-ubuntu22-support
  • bugfixes
  • intentionally_broken_build
  • unpin_type4
  • rida_speedup
  • SRL_kernelModules
  • SRL-Windows
  • 13-keystone-should-return-an-error-when-assembling-instruction
  • ZS-91-opensrc-zipr
  • libkeystone-integrate
  • aware-sw-delivery
  • copyright-headers
  • gt_eval
  • Release-2-26-2021
  • cfar-phase3-final
  • CFAR_AEI
  • CfarJuly2018Eval
  • pre-las-vegas
26 results
Search by author
  • Any Author
  • Anh Nguyen-Tuong Anh Nguyen-Tuong an7s
  • Bruno Dutertre Bruno Dutertre bruno
  • Chris Timperley Chris Timperley ChrisTimps
  • Clark Coleman Clark Coleman clc
  • Daniel Chen Daniel Chen dc3pe
  • GitLab Runner GitLab Runner gitlab-runner
  • Jack Davidson Jack Davidson jwd
  • Jason Hiser Jason Hiser jdh8d
  • Jessica Jones Jessica Jones Jjones203
  • Jonathan Rowanhill Jonathan Rowanhill jonathan.rowanhill
  • Jorge Navas Jorge Navas jorge.navas
  • Matthew McGill Matthew McGill mm8bx
  • Michele Co Michele Co mc2zk
  • Stefan Nagy Stefan Nagy stevenagy
  • Will Hawkins Will Hawkins whh8b
  • Yonghwi Kwon Yonghwi Kwon yonghwi
  • zafl_guest zafl_guest test_user
17 authors
  1. Aug 05, 2021
  3. Aug 04, 2021
  5. Jul 28, 2021
  7. Jul 27, 2021
    • Jason Hiser's avatar
      ZS-86 issue in parsing dynsym section. · d678a840
      Jason Hiser authored 
      The dynsym section is parsed by objdump/grep.  It's terrible and
needs to be implemented in C++ to reduce dependence on external tools
knowing what they are doing.

In this case, the terrible pattern matching with grep caused a symbol
defined in the binary to be missed, because `grep -v UND` was used
to determine whether a symbol "mattered".  1) symbol names might have
UND and get eliminated accidentally, but 2) (what really happened)
was that the symbol was defined in a section without a "link" field
in the dynsym section, thus objdump displayed the section name as UND
and thus the code skipped the symbol.  Don't use objdump to parse ELF
files!
      d678a840
    • Jason Hiser's avatar
      ZS-86: Dealt with sledding and KS-asm issues · 69b50a5a
      Jason Hiser authored 
      Large ints as constant operands are weird in ks-asm.  Need to use
positive value, in hex, for less than max-signed-int, and negative
hex values for values between max-signed-int and max-unsigned-int.
      69b50a5a
  9. Jul 22, 2021
  11. Jul 20, 2021
    • Jason Hiser's avatar
      Fix x86/32 issues for Ubuntu 20.04 · 8546a654
      Jason Hiser authored 
      Rida: Parsing of .plt.sec section added for x86/64 ubuntu 20 needed to be
updated to support x86/32 in ubuntu 20.

Fix-calls: Thunk checks aged poorly.  Revived/fixed some of them.
      8546a654
  13. Jun 12, 2021
    • Jason Hiser's avatar
      Updated rodata scanner to skip pins without relocs in shared libs · 6e68317a
      Jason Hiser authored 
      Shared libs need a reloc for a code pointer to live in rodata.
I found in ffmpeg that many spurious pins were occuring because constant
(particularly with relatively small values) data looked like code poitners
(because the code's load point is address 0 in a shared library).

To avoid these spuriosu pins, I extended the code pin algorithm
to check isDLL() (which includes shared objects) and for a reloc
before attempting to pin in the rodata.

A perf. optimization verifies that it _might_ result in a pin
before checking for a reloc, as checking for a reloc can be slow,
while checking for a possible pin location is fast.
      6e68317a
  15. Jun 06, 2021
  17. Jun 05, 2021
  19. Jun 04, 2021
  21. May 24, 2021
  23. May 07, 2021
  25. May 06, 2021
  27. May 02, 2021
  29. Apr 29, 2021
  31. Apr 27, 2021
  33. Apr 26, 2021
  35. Apr 24, 2021
  37. Apr 21, 2021