dragondance icon indicating copy to clipboard operation
dragondance copied to clipboard

Published 20 hours ago verified publisher icon 0ffffffffh

PIN tool is crashing

Open janbbeck opened this issue 4 years ago • 1 comments

I am using the PIN tool on this binary, which is a reverse engineering challenge, not malware. It is using nanomites, I think, and causes the PIN tool to crash:

$ /home/jan/pin/pin -t ./ddph64.so -- ~/Downloads/nanomites.elf 
++++++++++++++++++++++++++++++++++++++++++++
+                                          +
+      Dragon Dance Pin Helper (ddph)      +
+      Binary Coverage Data Collector      +
+   Build datetime: Mar 22 2020 00:54:57   +
+                                          +
+            oguz kartal - 2019            +
+           http://oguzkartal.net          +
+                                          +
++++++++++++++++++++++++++++++++++++++++++++
A: Source/pin/elfio/img_elf.cpp: ProcessProgramHeaders: 393: assertion failed: phs[i].p_vaddr >= IMG_seg_text_vaddr_i(img).value() + IMG_seg_text_vsize_i(img)

################################################################################
## STACK TRACE
################################################################################
??? at /home/jan/Downloads/dragondance-master/coveragetools/./ddph64.so+0x000109d1b 

LEVEL_IMGIO::IMG_ReadImage+0x0000018f7 at /home/jan/Downloads/dragondance-master/coveragetools/./ddph64.so+0x00010da87 

??? at /home/jan/Downloads/dragondance-master/coveragetools/./ddph64.so+0x00009bf0c 

LEVEL_PINCLIENT::ProcessImageLoad+0x00000004d at /home/jan/Downloads/dragondance-master/coveragetools/./ddph64.so+0x00009e82d 

LEVEL_PINCLIENT::ProcessImageLoad+0x00000000f at /home/jan/Downloads/dragondance-master/coveragetools/./ddph64.so+0x00009e8df 

LEVEL_PINCLIENT::ImageInitialize+0x0000000fd at /home/jan/Downloads/dragondance-master/coveragetools/./ddph64.so+0x0000e02ed 

??? at /home/jan/Downloads/dragondance-master/coveragetools/./ddph64.so+0x0000ba397 

LEVEL_INJECTOR::UNIX_INJECTEE::StartProgram+0x000000101 at /home/jan/pin/intel64/bin/pinbin+0x000396a51 

??? at /home/jan/Downloads/dragondance-master/coveragetools/./ddph64.so+0x0000b6daf 

main+0x0000001f7 at /home/jan/Downloads/dragondance-master/coveragetools/./ddph64.so+0x00005c176 

LEVEL_INJECTOR::UNIX_INJECTEE::StartTool+0x000000212 at /home/jan/pin/intel64/bin/pinbin+0x000395392 

LEVEL_INJECTOR::UNIX_INJECTEE::RunMainThreadOnPinStackAttach+0x000000429 at /home/jan/pin/intel64/bin/pinbin+0x0003981e9 

Pin: pin-3.11-97998-7ecce2dac
Copyright 2002-2019 Intel Corporation.

Aborted (core dumped)

nanomites.zip

janbbeck avatar Mar 22 '20 06:03 janbbeck

Ok i will be investigate the issue with the binary that you shared. Thanks for the feedback, stay safe.

0ffffffffh avatar Mar 24 '20 13:03 0ffffffffh