[cfe-dev] How to determine whether two instructions access the same variable in binary
Balázs Benics via cfe-dev
cfe-dev at lists.llvm.org
Wed Nov 18 11:07:22 PST 2020
Hi, might taint analysis is what you are looking for.
Unfortunately I haven't tried any dynamic taint analysis framework yet so I
can not help you with that.
TBH I'm more interested in *static* taint analysis. Especially improving
the Clang Static Analyzer on that regard.
Here is talk about dynamic taint analysis:
https://www.youtube.com/watch?v=ERJnLYn7M5I
But there must be several other resources.
PS: if you find something interesting, let me know.
Regards, Balazs.
On Wed, Nov 18, 2020, 18:41 x visitor via cfe-dev <cfe-dev at lists.llvm.org>
wrote:
> Hello,
>
>
>
> I'm trying to trace the variable access sequence from a binary.
>
>
>
> I tried to list all possible way compilers assign variables to registers,
> and found
>
> it's so challenging. There're so many optimization techniques in compiler
> writing
>
> such as SSA, and compilers are so free to handle variables between
> registers.
>
>
>
> Then I rethink the goal and realize that the key is to determine whether
> two
>
> instructions access the same variable (or say object). It sounds like an
> alias analysis
>
> technique in binary is needed. I got that alias analysis aiming at source
> code is an
>
> active research field but found almost nothing for binary analysis.
>
>
>
> Are there any materials about alias analysis in binary? Or any other hint
> for tracing
>
> variable access sequence in binary?
>
>
>
>
>
>
> _______________________________________________
> cfe-dev mailing list
> cfe-dev at lists.llvm.org
> https://lists.llvm.org/cgi-bin/mailman/listinfo/cfe-dev
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.llvm.org/pipermail/cfe-dev/attachments/20201118/e81da9ea/attachment.html>
More information about the cfe-dev
mailing list