BTIGhidra
BTIGhidra copied to clipboard
trailofbits
Binary Type Inference Ghidra Plugin
``` (These messages are also written to the application log file) Cannot invoke "ghidra.program.model.data.DataType.getLength()" because "dt" is null java.lang.NullPointerException: Cannot invoke "ghidra.program.model.data.DataType.getLength()" because "dt" is null at binary_type_inference.TypeLattice.FieldMember(TypeLattice.java:165) at binary_type_inference.TypeLattice.get_ptr_dtv_for_type(TypeLattice.java:176)...
I threw `BTIGhidra` up against a stripped `vmlinux` ELF with the intent to test it against the debug version with `BTIEval` and it failed after about 80 minutes. Backtrace is...
I tried multiple times.....it looks like it's doing something, but the the progress bar not moving beyond 0% After a few hours, it eventually crashes Ghidra. Not sure how to...
Hi, it seems that the LZCOUNT opcode is not implemented in cwe-checker and does not permit to complete the analysis.
Currently known signatures for thunks are not getting ingested properly because thunks are effectively ignored. We resolve thunks before passing IR to binary_type_inference so we don't impose constraints on thunks...
Connected to https://github.com/trailofbits/BTIGhidra/issues/22
In mooosl at address `0010160f` a store occurs of the value returned by key_hash to the calloced pointer at field offset 32. The constraints are setup such that we know...
When starting the `Type Inference` analysis I get the following error message: ``` (These messages are also written to the application log file) got element group but expected start element...
Even if "Save to debug directory" is unchecked, BTIGhidra always passes `--debug_out_dir` (due to https://github.com/trailofbits/BTIGhidra/blob/28dee6a31d00d171ef37765f933d22a44ae95998/plugin/src/main/java/binary_type_inference/BinaryTypeInferenceRunner.java#L121-L122 being hard-coded) and this causes problems on some binaries. Specifically, if we take (a stripped...
When testing BTIGhidra on a simple example (below), the types in Ghidra are not updated. It _does_ work fine on the file in [DEMO.md](https://github.com/trailofbits/BTIGhidra/blob/main/DEMO.md), so my setup is correct and...