Comments (4)
The crash site is within libasan __sanitizer_get_allocated_size and from assembly code I have no idea why this happens.
from hase.
A possible solution is to change angr irop returning unconstrained while zero division happening.
from hase.
Like this. hase-project/angr@2461603
from hase.
Could you print out that basic block? There are cases where the following combination occurs:
- VEX doesn't put the correct guards to explicitly check against the denominator being non-zero (and explicitly raise a signal).
- Z3 actually doesn't handle symbolic division by zero properly, which is crazy but kinda makes sense.
- At some point later, enough things get concretized that claripy ends up using the concrete backend, which does handle zero-division, and things explode.
We try to patch up VEX output to put the explicit exits in (here: https://github.com/angr/pyvex/blob/master/pyvex_c/postprocess.c#L328), but we could have missed something.
from hase.
Related Issues (20)
- Evaluate recording overhead of system calls
- Re-Implement recording single processes
- Missing the last instruction HOT 1
- Some traces are not correctly decoded HOT 4
- Data constraints are not enabled due to rsp and rip mismatch HOT 1
- coreutils-7.2-sort.tar.gz trace seems not complete HOT 1
- Support partial trace
- Replay Evaluation
- mprotect cannot handle symbolic addresses HOT 3
- sym_struct has no c_cls attribute HOT 2
- strstr passes None to solver. HOT 9
- WrTmp object has no attribute 'guard' HOT 15
- Evaluation status HOT 5
- Unsupported operation: Iop_MAddF64 HOT 4
- What is 'hase'? HOT 2
- w3m-27 trace misses valid sections (maybe library) HOT 11
- Exception: target of reg_concrete is symbolic! HOT 2
- hase: cannot return from a system call loopy HOT 1
- How about a closer collaboration? HOT 5
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from hase.