Analysing indirect jump based on critical semantic subtree

Author

Bai, Lili ; Pang, Jianmin ; Zhang, Ping ; Zhu, Jiafeng

Author_Institution

Nat. Digital Switching Syst. Eng. & Technol. Res. Center, Zhengzhou, China

Volume

1

fYear

2010

fDate

25-27 June 2010

Abstract

Indirect jump has been widely adopted in implementing multi-way branches due to its flexibility of jump targets, which makes it difficult to carry out reverse analysis of binary. To deal with this, the traditional approach is to summarize characteristics how compilers generate instructions, using the corresponding pattern to match and process. However, it is limited to specific platform and compiler, failing to cope with unknown compilation mode. In this paper, an approach independent of platform and compiler is proposed. We focus on the semantic character of switch-case table, the most representative form of indirect jump, and extract relevant elements to the computation of jump targets to get corresponding addresses automatically. Platform and compiler is ignored throughout the whole process. Good generality and practicability of the method has been proved in the test.

Keywords

pattern clustering; program compilers; tree data structures; compilation mode; critical semantic subtree; indirect jump analysis; semantic character; switch-case table; Cascading style sheets; Character generation; Computer architecture; Data mining; Decoding; Design engineering; Pattern matching; Switching systems; Systems engineering and theory; Testing; Critical Semantic Subtree (CSS); Indirect Jump; Switch-case table;

fLanguage

English

Publisher

ieee

Conference_Titel

Computer Design and Applications (ICCDA), 2010 International Conference on

Conference_Location

Qinhuangdao

Print_ISBN

978-1-4244-7164-5

Electronic_ISBN

978-1-4244-7164-5

Type

conf

DOI

10.1109/ICCDA.2010.5540930

Filename

5540930