Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

ARM branching bugfix #22156

Open
wants to merge 4 commits into
base: master
Choose a base branch
from
Open

ARM branching bugfix #22156

wants to merge 4 commits into from

Conversation

sha0coder
Copy link

On a "bx lr" it was not considering the LSB of anddress on LR

...
284 0x0007414c push {r0, r1, lr}
285 0x0007414e bl 0x740cc    ---------- call
286 0x000740cc movs r3, 1
287 0x000740ce movs r2, 0
288 0x000740d0 push {r4}
289 0x000740d2 cmp r0, r1
290 0x000740d4 blo 0x74130
291 0x00074130 adds r0, r2, 0
292 0x00074132 pop {r4}
293 0x00074134 bx lr        -------------- return to lr
esil bug triggered
> aer pc
0x00074150
                                                                                                        
> aer lr                                                                                                
0x00074152                                                                                              
                                                                                                        
> pi 1                                                                                                  
vdup.8 d11, d14[6]

is returning to LR -2 instead of LR because is not thumb mode:

bin(0x00074152)
'0b1110100000101010010'

trufae
trufae reviewed Aug 14, 2023
View reviewed changes
libr/arch/p/arm/plugin_cs.c Outdated Show resolved Hide resolved
@sha0coder
Copy link
Author

this works for ARM32 but should be tested on ARM16:

    case ARM_INS_BLX:
        r_strbuf_appendf (&op->esil, "1,%s,&,tf,:=", ARG (0));
case ARM_INS_B: 
        if (ISREG (0) && REGID (0) == ARM_REG_PC) {
            r_strbuf_appendf (&op->esil, "0x%" PFMT64x ",pc,:=",
                (ut64)((addr & ~3LL) + pcdelta));
        } else {
            if (ISIMM (0)) {
                r_strbuf_appendf (&op->esil, "%s,pc,:=", ARG (0));
            } else {
                r_strbuf_appendf (&op->esil, "tf,%s,-,pc,:=", ARG (0));
            }
        }
        break;

@trufae
Copy link
Collaborator

trufae commented Apr 16, 2024

Can you please rebae this pr? i think one of the prlblems is that the tf register is not resetted when emulating different codepaths, causing wrong assumptions in other situations.

@trufae trufae added this to the 6.0.0 milestone Apr 16, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@trufae trufae trufae left review comments

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
6.0.0
Development

Successfully merging this pull request may close these issues.

None yet
2 participants
@sha0coder @trufae