New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

LibAFL_QEMU: Issues switching between thumb and non-thumb on ARM #2622

Open

domenukk opened this issue Oct 17, 2024 · 0 comments

Assignees

Labels

bug qemu

Member

domenukk commented Oct 17, 2024

A breakpoint that switches to non-thumb and setting PC to thumb will lead to non-thumb execution:

In LibAFL_QEMU on arm

Set Lr to a non-thumb addr
Set Breakpoint on that address
Run a thumb function until return (first exec runs fine, in thumb)
After the breakpoint on non-thumb triggers, re-run that same function by placing the Pc to the entry of the thumb function (with last bit set)
=> The second execution is happening in non-thumb mode

A workaround is to set the return address to thumb, but this is not a general solution

domenukk added the bug label

domenukk assigned rmalmain

domenukk added the qemu label

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment