Fish

> but I don't know how can I recover the complete instruction from the adress to check if it's a bl or not. `if project.factory.block(address_of_the_instruction).capstone.insns[0].mnemonic == "bl": ...`

> I notice the the get_mem_usage is not considered as a function I don't think it matters. Looks like you are setting up SimInspect hooks for each instruction, which means...

There are conflicting symbols in this binary: `0x10c10` is both `badSource` and `goodB2GSource`. angr prioritizes symbol names (which is not a feature. It just happens to work this way) while...

I think it would be nice for angr management to display all symbols that correspond to an address (e.g., as alternative function names).

I wonder if this binary runs under Linux, because the root cause is how we are setting up entry registers in `SimLinux.set_entry_register_values()` works for modern Linux PowerPC binaries, but does...

> To actually ever reach main (another indication of a general other weird ABI) has to be commented out You can override `_extract_args()` in class `__uClibc_main`.

@Cl4sm Good job! Can we have a test case?

@twizmwazin See if it's a flaky test.

> I need these to be considered as function by angr to use them in a calling convention anlysis I am having trouble understanding what exactly you want to do...

@Voxanimus Can you post the binary you are working on or a similar binary that exhibits this issue?