radeco icon indicating copy to clipboard operation
radeco copied to clipboard

Published 20 hours ago verified publisher icon radareorg

Handle syscall in RadecoIL

Open ZhangZhuoSJTU opened this issue 7 years ago • 2 comments

What I am wondering is to make a fake function to handle syscall, which is lacked in RadecoIL.

ZhangZhuoSJTU avatar Oct 26 '17 02:10 ZhangZhuoSJTU

I think the same applies to TODO opcode, so radeco would take original instructions and insert it as a function-intrinsics. Same applies for imported functions, may be some builtins, etc. So it has the benefits for the readability by the user, and also an ability to reason about.

XVilka avatar Oct 26 '17 03:10 XVilka

Could we leverage existing OpCall opcode for this? We could parametrize it suitably to allow for undefined/built-ins/syscall based functions. Another advantage of this would be in inter-functional analyses in rune (so as to skip these functions).

Thoughts?

chinmaydd avatar Jan 03 '18 19:01 chinmaydd