package binsec
Semantic analysis of binary executables
Install
dune-project
Dependency
Authors
-
AAdel Djoudi
-
BBenjamin Farinier
-
CChakib Foulani
-
DDorian Lesbre
-
FFrédéric Recoules
-
GGuillaume Girol
-
JJosselin Feist
-
LLesly-Ann Daniel
-
MMahmudul Faisal Al Ameen
-
MManh-Dung Nguyen
-
MMathéo Vergnolle
-
MMathilde Ollivier
-
MMatthieu Lemerre
-
NNicolas Bellec
-
OOlivier Nicole
-
RRichard Bonichon
-
RRobin David
-
SSébastien Bardin
-
SSoline Ducousso
-
TTa Thanh Dinh
-
YYaëlle Vinçont
-
YYanis Sellami
Maintainers
Sources
binsec-0.11.0.tbz
sha256=4cf70a0367fef6f33ee3165f05255914513ea0539b94ddfef0bd46fc9b42fa8a
sha512=cd67a5b7617f661a7786bef0c828ee55307cef5260dfecbb700a618be795d81b1ac49fc1a18c4904fd2eb8a182dc862b0159093028651e78e7dc743f5babf9e3
doc/src/binsec_cli_disasm/disasm_cfg.ml.html
Source file disasm_cfg.ml
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67(**************************************************************************) (* This file is part of BINSEC. *) (* *) (* Copyright (C) 2016-2026 *) (* CEA (Commissariat à l'énergie atomique et aux énergies *) (* alternatives) *) (* *) (* you can redistribute it and/or modify it under the terms of the GNU *) (* Lesser General Public License as published by the Free Software *) (* Foundation, version 2.1. *) (* *) (* It is distributed in the hope that it will be useful, *) (* but WITHOUT ANY WARRANTY; without even the implied warranty of *) (* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *) (* GNU Lesser General Public License for more details. *) (* *) (* See the GNU Lesser General Public License version 2.1 *) (* for more details (enclosed in the file licenses/LGPLv2.1). *) (* *) (**************************************************************************) module H = Hashtbl.Make (Virtual_address) let do_disasm entry = let htbl = H.create 257 in let callees = H.create 17 in let lo, hi = Loader_utils.(section_slice_by_name ".text" (Kernel_functions.get_img ())) in let cfg = Disasm_core.fold (fun cfg wlst inst set -> H.add htbl inst.Instruction.address inst; Instr_cfg.add_inst cfg inst.Instruction.address inst; let set = Virtual_address.Set.filter (fun ins -> ins >= lo && ins <= hi) set in Virtual_address.Set.iter (Instr_cfg.add_edge_a cfg inst.Instruction.address) set; let block_callees = Dhunk.callees inst.Instruction.dba_block in Virtual_address.Set.iter (fun vaddr -> H.add callees vaddr ()) block_callees; let set = Virtual_address.Set.filter (fun ins -> not (H.mem htbl ins)) set in (cfg, Disasm_core.W.add_set wlst set)) (Instr_cfg.create 257) (Disasm_core.W.singleton entry) in (cfg, H.fold (fun c _ l -> c :: l) callees []) let run () = let ventry = match Kernel_functions.get_ep () with | Some e -> e | None -> Kernel_functions.get_img () |> Loader.Img.entry in let entry = Instr_cfg.V.of_addr ventry in try let cfg, callees = do_disasm ventry in let channel = open_out "cfg.dot" in Instr_cfg.output_graph channel cfg ~entry callees; close_out channel with Unix.Unix_error (e, _, _) -> Disasm_options.Logger.error "%s" (Unix.error_message e)