LibAFL icon indicating copy to clipboard operation
LibAFL copied to clipboard
verified publisher icon AFLplusplus

Windows frida support

Open s1341 opened this issue 2 years ago • 13 comments

Supercedes #1298

s1341 avatar Oct 05 '23 05:10 s1341

Let's merge this soon? :)

domenukk avatar Nov 02 '23 11:11 domenukk

I need something from frida gum before I can merge. And Ole has yet to get to it.

s1341 avatar Nov 02 '23 11:11 s1341

This is the fix I was waiting for: https://github.com/frida/frida-gum/pull/754

s1341 avatar Nov 15 '23 07:11 s1341

Sweet so now we need to wait for updated bindings and then this can be merged?

domenukk avatar Nov 15 '23 11:11 domenukk

I still have to test the new solution... but yeah. It's a step closer.

s1341 avatar Nov 15 '23 12:11 s1341

I'm now encountering the frida/capstone issue when trying to build for windows. I think we will need to merge #1720 and #1723 before I can continue in any significant way.

s1341 avatar Dec 14 '23 06:12 s1341

Ok. merged main after #1720 and #1723 were merged and migrated the hook_rt to yaxpeax (at least for x86_64). Now I can continue to test.

s1341 avatar Dec 17 '23 07:12 s1341

Is this ready? what are left to be done?

tokatoka avatar Jan 14 '24 00:01 tokatoka

Tests now running and passing on linux and windows.

I noticed that there is a bug with register printing in the ASAN output.... incorrect registers are shown.

s1341 avatar Jan 14 '24 18:01 s1341

Looks like we need another new feature in frida in order to progress with this PR. I'm working on it...

s1341 avatar Jan 16 '24 06:01 s1341

what's missing?

tokatoka avatar Feb 23 '24 16:02 tokatoka

Still waiting for a fix in frida to land.

s1341 avatar Feb 25 '24 07:02 s1341

image

domenukk avatar Apr 17 '24 01:04 domenukk

@s1341 from my PoV this looks good now, feel free to merge

domenukk avatar May 13 '24 15:05 domenukk

Any reason to keep frida_to_cs for aarch64? It's not in use

domenukk avatar May 13 '24 15:05 domenukk