yetangitu/ghidra
1
0
Fork 0
mirror of https://github.com/NationalSecurityAgency/ghidra.git synced 2025-10-05 19:42:36 +02:00
Code Issues Releases Wiki Activity

GP-2391 added evaluation of return address, allow thunking addresses to externals. Added new arem thunk pattern.

Browse source
This commit is contained in:
emteere 2022-10-11 18:25:09 -04:00
parent 35b58b3105
commit ca5a6204c3
12 changed files with 490 additions and 85 deletions
Download patch file Download diff file Expand all files Collapse all files

62
Ghidra/Framework/SoftwareModeling/src/main/java/ghidra/app/util/PseudoDisassembler.java
View file

@ -575,34 +575,86 @@ public class PseudoDisassembler {
* If a bad instruction is hit or it does not flow well, then return
* false.
*
* @param target - taraget address to disassemble
* @param entryPoint address to check
*
* @return true if this is a probable subroutine.
* @return true if entryPoint is the probable subroutine start
*/
private boolean checkValidSubroutine(Address entryPoint, boolean allowExistingInstructions) {
return checkValidSubroutine(entryPoint, allowExistingInstructions, true);
}
/**
* Check if there is a valid subroutine at the target address
*
* @param entryPoint address to check
* @param allowExistingInstructions true to allow running into existing instructions
* @param mustTerminate true if the subroutine must hit a terminator (return) instruction
*
* @return true if entryPoint is the probable subroutine start
*/
private boolean checkValidSubroutine(Address entryPoint, boolean allowExistingInstructions,
boolean mustTerminate) {
return checkValidSubroutine(entryPoint, allowExistingInstructions,
mustTerminate, false);
}
/**
* Check if there is a valid subroutine at the target address
*
* @param entryPoint address to check
* @param allowExistingInstructions true to allow running into existing instructions
* @param mustTerminate true if the subroutine must hit a terminator (return) instruction
* @param requireContiguous true if the caller will require some number of contiguous instructions
* call getLastCheckValidInstructionCount() to get the initial number of contiguous instructions
* if this is true
*
* @return true if entryPoint is the probable subroutine start
*/
public boolean checkValidSubroutine(Address entryPoint,
boolean allowExistingInstructions, boolean mustTerminate, boolean requireContiguous) {
PseudoDisassemblerContext procContext = new PseudoDisassemblerContext(programContext);
return checkValidSubroutine(entryPoint, procContext, allowExistingInstructions,
mustTerminate);
mustTerminate, requireContiguous);
}
/**
* Check if there is a valid subroutine at the target address
*
* @param entryPoint address to check
* @param procContext processor context to use when pseudo disassembling instructions
* @param allowExistingInstructions true to allow running into existing instructions
* @param mustTerminate true if the subroutine must hit a terminator (return) instruction
*
* @return true if entryPoint is the probable subroutine start
*/
public boolean checkValidSubroutine(Address entryPoint, PseudoDisassemblerContext procContext,
boolean allowExistingInstructions, boolean mustTerminate) {
return checkValidSubroutine(entryPoint, procContext, allowExistingInstructions, mustTerminate, false);
}
/**
* Check if there is a valid subroutine at the target address
*
* @param entryPoint address to check
* @param procContext processor context to use when pseudo disassembling instructions
* @param allowExistingInstructions true to allow running into existing instructions
* @param mustTerminate true if the subroutine must hit a terminator (return) instruction
* @param requireContiguous true if the caller will require some number of contiguous instructions
* call getLastCheckValidInstructionCount() to get the initial number of contiguous instructions
* if this is true
*
* @return true if entryPoint is the probable subroutine start
*/
public boolean checkValidSubroutine(Address entryPoint, PseudoDisassemblerContext procContext,
boolean allowExistingInstructions, boolean mustTerminate, boolean requireContiguous) {
AddressSet contiguousSet = new AddressSet();
lastCheckValidDisassemblyCount = 0;
if (!entryPoint.isMemoryAddress()) {
return false;
}