Wrong site_id in notify BB

eurecom-s3 / symqemu

SymQEMU: Compilation-based symbolic execution for binaries

http://www.s3.eurecom.fr/tools/symbolic_execution/symqemu.html

Other

323 stars 42 forks source link

Wrong site_id in notify BB #21

Open ercoppa opened 1 year ago

ercoppa commented 1 year ago

The current code in gen_tb_start:

TCGv_i64 block = tcg_const_i64((uint64_t)tb);

uses as site_id the address of struct TB. This address does not reflect the address of the original BB. The resulting side effect is that the bitmap built by the SymCC runtime may be wrong: the address of the TB may change across runs.

One possible fix could this one. Let me know how to improve it.

ercoppa commented 1 year ago

This is the same issue reported by #10. Sorry for the duplicate entry. My fix is slightly cleaner.