Comments (7)
0ca
commented on August 25, 2024
1
Hi @nikhilh-20 some images are not updated.
We removed some configuration to simplify the usage. But that shouldn't be related with your issue.
I bet this issue is related with the function term executed when IDA closes:
Line 177 in 0211658
We will try to replicate it.
from ponce.
illera88
commented on August 25, 2024
Does it only crash when exiting IDA?
The stack trace is not helpful in this case. What we can do is adding an option in the config so it can save debug info to a file and you can send that so we can figure out what is going on.
from ponce.
nikhilh-20
commented on August 25, 2024
That's what I've observed so far. I tried the following steps to see if it crashes
- Breakpoint on
test eax, eax - Start debugger
Enable ponce tracingSymbolic -> Symbolize eax register- Resume debugging
This did not crash Ponce. Snippets like the following were seen in the console:
...
...
[+] Triton asking IDA for already syncronized register: edx. IDA returns value: 0x50 (P)
[+] Triton at 0x701019 : test edx, edx (Thread id: 3260)
[+] Triton asking IDA for already syncronized register: zf. IDA returns value: 0x0
[+] Triton at 0x70101b : je 0x70103c (Thread id: 3260)
[+] Triton asking IDA for already syncronized register: ebp. IDA returns value: 0xaffa4c (�)
[+] Triton asking IDA for already syncronized memory address: 0xaffa48 Size: 4. Value: 0xaffc5f (�)
...
...
Is there an existing option to save the debug info to a file? I see there are two options for verbosity, Show Ponce debug info and Show EXTRA Ponce debug info but there's no option to save it to a user-defined file. It seems to print to IDA's console. Below is what prints to the console when I startup IDA and choose Show EXTRA Ponce debug info
[i] Config file Ponce.cfg not found
limitTime: 60
limitInstructionsTracingMode: 10000
use_symbolic_engine: symbolic engine enabled
showDebugInfo: true
showExtraDebugInfo: true
CONCRETIZE_UNDEFINED_REGISTERS: false
CONSTANT_FOLDING: false
SYMBOLIZE_INDEX_ROTATION: false
AST_OPTIMIZATIONS: false
TAINT_THROUGH_POINTERS: false
addCommentsControlledOperands: true
RenameTaintedFunctionNames: true
addCommentssymbolizexpresions: false
color_tainted: 99ffce
color_tainted_execution: e6e6e6
color_tainted_condition: b377
[+] Ponce plugin running!
Also, if it's relevant I don't see a Tainting options in the config file like I see in the Negate and inject a condition section in the README. Maybe, it's related to some features not loading or faulty loading which causes a crash later.
from ponce.
nikhilh-20
commented on August 25, 2024
I noticed there's the Optimizations section in my config file but not in the README illustrations. Is the README updated?
from ponce.
illera88
commented on August 25, 2024
Hi @nikhilh-20 ,
Sorry for the delay.
Can you try something? Can you delete the config file created by Ponce and try to run it again? It will create a new config file.
Let me know if it crashes.
from ponce.
nikhilh-20
commented on August 25, 2024
Interesting, I tried that. Ponce v0.3 doesn't seem to crash on 32-bit IDA Pro 7.5 (decompiler included) but it still crashes on 64-bit IDA Pro 7.5.
from ponce.
illera88
commented on August 25, 2024
Hi @nikhilh-20, There is a couple new versions of Ponce that hopefully address the issue you were facing. I'm closing this issue but feel free to reopen if problem persist in the last version.
Cheers
from ponce.
Related Issues (20)
- When using Taint Engine tainted operands are not shown HOT 3
- Use vcpkg to build z3 on linux github action HOT 2
- Make sure we do not restart engines after disable Ponce HOT 1
- Provide solution for large number of solve actions
- Build link doesn't work HOT 4
- IDA 7.5 plugin for MAC doesn't work HOT 2
- Is there a python version HOT 1
- Unable to configure solver timeout from configuration HOT 3
- IDA 7.5 plugin for Windows doesn't work HOT 1
- Triton "addCallback" API has changed HOT 3
- IDA 7.5 using Ponce v0.31 will warn "Duplicate field id 3" HOT 1
- SOFTWARE_NX_FAULT_c0000005_Ponce64.dll!Unknown HOT 1
- Crashed HOT 1
- IDA Pro crash due to invalid pointer dereference HOT 2
- Ponce v0.3.4 causing crash in IDA 7.7.220118 HOT 1
- Unsupported error for every instruction HOT 1
- Ponce standard instructions not supported windbg HOT 4
- Unhandled C++ exception: x8664Cpu::setConcreteRegisterValue() HOT 1
- Maybe it's a bug? I symbolized 15 SymVars, but in the end it could only solve 13 ones. HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from ponce.