Dan

I thought about this a bit when designing the thing, but there's a disconnect between p-code injection for static analysis and for dynamic analysis. The injects in the pspecs, cspecs,...

So, I also just took a look at the referenced ticket, and yeah, that's a fun one. My suggestion would be to make an equivalent `PcodeUseropLibrary` for the emulator. You'd...

So, you don't need to override the emulator's context. In fact, you probably want to leave it in 16-bit mode, so it can continue in that mode once it has...

As for the wrapping the inject option, missing the program could be a hard stop. The only way I can think of getting one of those in there is to...

As for PC being off, I haven't examined carefully, but since this involves execution of a second decoded instruction by reference, some of our usual conventions get broken (this is...

You can change the default context values in the pspec file. Not sure that's relevant. Register value bits do have three states: 0, 1, and unspecified (when mask==0). Not sure...

I suppose I should read a little more deeply into your question. You're now trying to figure out how to make this into a contributable component, as opposed to something...

Such is the lifecycle of software.... So, this goes a little beyond my domain, as I'm not the maintainer of Sleigh itself, but of the p-code emulator that consumes it....

I think this is the first I've seen a non-linear mapping of sections within the same module, i.e., one static mapping cannot properly encompass all sections within. We do have...

Is this after re-launching with each auto-map option? The complete steps: 1. Kill the target, if you already have one running. 2. Change the Auto-Map option to By Sections. 3....