- #1390 adds the flattening pass to the library interface
- #1389 adds
insn-code
to theTheory.Semantics
class - #1394 adds the
Bitvec.modular
function - #1395 adds LLVM 13/14 compatibility
- #1408 adds support for mips64el target
- #1409 adds the
--print-missing
option to print unlifed instructions - #1410 adds several new Primus Lisp primitives and new instructions
- #1428 adds the monad choice interface to the knowledge base
- #1429 refines the
Theory.Target.matches
and adds thematching
function - #1434 adds arm unpredicated BL instruction
- #1444 adds the x86/amd64 plt corrector component to the Primus base system
- #1445 updates the
Sub.compute_liveness
function to handle SSA form - #1446 provides the new liveness analysis
- #1452 implements pcode floating-point and special operators
- #1457 adds optional
join
forKnowledge.Domain.mapping
- #1461 enables v8.{1,2,3,4,5,6}a revisions for the aarch64 target
- #1464 adds arbitrary-precision loopless clz and popcount to Primus Lisp
- #1460 adds compatibility with Core_kernel >= 0.15
- #1466 adds semantics for the x86 SSE floating-point instructions
- #1469 adds the jump destination addresses/names to the assembly output
- #1458 adds more aarch64 instructions
- #1473 adds an
--arm-features
command-line option - #1476 implements the naming scheme for interrupts
- #1479 reifies external subroutines and intrinsics into I
- #1482 enables BIR subroutines without an explicit return
- #1481 enables disabling the patterns plugin
- #1483 implements floating-point intrinsic subroutines
- #1488 adds compatibility with OCaml 4.14 and Core v0.15
- #1489 adds some missing functionality to Primus Lisp POSIX
- #1490 adds some missing C POSIX APIs
- #1492 makes bit-twiddling operations easier to read and analyze
- #1493 adds smart constructors and destructors to the C types library
- #1491 adds semantics for the x86-64
popq
instruction - #1497 extends the C.Abi library
- #1498 adds the extended lvalue assignment to Primus Interpreter
- #1499 makes BIL smart constructors smart
- #1500 makes argument passing well-typed
- #1503 reimplements C types printing functions
- #1504 extends the demanglers library to the new targets infrastructure
- #1505 rewrites x86 abi using the new infrastructure
- #1511 implements some missing Thumb instructions
- #1513 implements the x86_64 padd instructions
- #1515 allows target overriding
- #1516 adds armv8 BFM instructions
- #1517 publishes Theory.Target.nicknames and extends Primus Contexts
- #1519 extends Core Theory with target registration and lookup
- #1520 adds the high-level calling convention specification language
- #1521 reimplements x86 targets using the new infrastructure
- #1522 reimplements ARM ABI and target specification
- #1523 rewrites mips targets and abi
- #1524 adds C data type layout
- #1525 adds the pass by reference argument passing method
- #1526 restructures powerpc targets and reimplements ppc32 eabi
- #1529 makes the ABI processors usable programmatically
- #1391 fixes ARM/Thumb
movt
semantics - #1396 fixes the path plugin loader path handling
- #1414 fixes the pc value in pc-relative thumb ldr
- #1420 fixes the low-level Disasm_expert.Basic.create function
- #1421 fixes the core-theory plugin semantics tags
- #1426 fixes arm predication
- #1438 reads correctly unqualified system names
- #1439 fixes a bug in the KB update function, adds new functions
- #1448 fixes an accidental dependency on the bap-traces internal module
- #1449 fixes unconditional pop with return in thumb
- #1455 fixes register assignments in p-code semantics
- #1462 fixes the
cast-signed
Primus Lisp primitive - #1463 fixes the arithmetic modulus in Primus Lisp primitives
- #1465 fixes handling of
jmp term
s in the flatten pass - #1467 fixes a sporadic internal error in the cache garbage collector
- #1468 fixes the relocation symbolizer incorrect handling of intrinsics
- #1458 fixes aarch64 bitmask immediate encoding
- #1486 fixes type unification on binary operation application
- #1485 fixes little-endian MIPS disassembling
- #1494 fixes the encoding of the comparison operators
- #1496 fixes registers allocation in the abi specification DSL
- #1502 fixes the bitvector order function
- #1528 fixes armv4t name that was missing the arm prefix
- #1393 improves the Primus Lisp documentation generator
- #1397 fixes the macOS CI build
- #1399 updates the url of the testing repo to use the encrypted version
- #1432 updates the docker image
- #1435 selects specific llvm components for linking
- #1447 updates to the git+https in the dockerfiles
- #1470 corrects linking of Unix library in configure
- #1478 fixes the opam/opam dev-repo protocol which broke the release action
- #1480 adds an automation to build a docker image for the latest release
- #1514 adds the mmap dependency
- #1386 adds missing ARM target ABI information
- #1388 adds aliasing information for x86
- #1392 adds an option to directly use ogre files as a loader
- #1398 provides the assembly string as a promise (removes #undefined)
- #1400 improves the computation of the instruction properties
- #1401 improves the KB.Value merge operation
- #1402 moves promises and theories into the core-theory plugin
- #1403 moves knowledge base rules from the library to the plugin
- #1404 improves the peformance of the byte patterns matcher (1/3)
- #1405 improves the performance of bitvectors (2/3)
- #1411 [optimization] do not store empty objects in the knowledge base
- #1412 updates the KB version number and adds a few more microoptimizations
- #1413 updates bap to latest OCaml, switches to newer bitstrings
- #1415 switches to patricia trees in the KB implementation
- #1416 Reimplements x86 bitscan and popcnt
- #1418 uses the builtin clz function from base, instead of the custom one
- #1417 relaxes the speculative disassembler constraints
- #1419 allows bapbuild to work when bap and other defaults are not present
- #1422 relaxes interpreters to allow ill-typed operations
- #1425 applies ARM modified immediate (MIC) decoding in more places
- #1423 reimplements clz using the branchless/loopless algorithm
- #1427 removes unnecessary units from the knowledge base
- #1430 refines and extends target definitions
- #1431 partially upgrades byteweight to work with the modern bap
- #1441 uses Allen's Interval Algebra in the KB.Value merge implementation
- #1442 wraps proposals into with_empty and adds more guards
- #1443 adds subinstruction contraction to improve the ghidra lifter output
- #1433 adds mode events to traces
- #1450 hushes bil lifters
- #1451 removes falls-through from unconditional branches in IR reification
- #1454 improves the setw function used
- #1456 removes Thumb2 branches from the legacy ARM lifter
- #1471 uses function starts as the entires when building the symtab
- #1472 improves disassembler performance
- #1475 unifies name generation for IR subroutines
- #1477 removes the special Primus Lisp primitive
- #1484 disables byteweight
- #1487 reduces memory footprint
- #1501 makes all C data type sizes a multitude of their alignment
- #1506 optimizes encoding computation for x86
- #1510 adds an example on how to create a monad transformer stack (#1354)
- #1518 uses signed casts for promoting arguments
- #1530 turns x86 endbr instructions into nops
- #1531 adds patterns to recognize certain x86 endbr as function starts
- #1532 improves the main subroutine discovery within glibc runtime
- #1535 prevents knowledge conflicts on mangled names
- #1325 adds armeb abi
- #1326 adds experimental Ghidra disassembler and lifting backend
- #1332 adds the flatten pass
- #1341 adds context variables to the knowledge base
- #1343 adds register aliases to the Core Theory
- #1358 adds LLVM 12 support
- #1360 extends the knowledge monad interface
- #1363 adds forward-chaining rules and Primus Lisp methods
- #1364 adds a generic byte pattern matcher based on Ghidra
- #1365 adds support for the Thumb IT blocks
- #1369 adds some missing
t2LDR.-i12
instructions to the Thumb lifter
- #1336 improves the
main
function discovery heuristics - #1337 adds more Primus Lisp stubs and fixes some existing
- #1342 uses context variables to store the current theory
- #1344 uses the context variables to store the Primus Lisp state
- #1355 tweaks symbolization and function start identification facilities
- #1353 improves arm-family support
- #1356 stops proposing aliases as potential subroutine names
- #1361 rewrites knowledge and primus monads
- #1370 tweaks Primus Lisp' method resolution to keep super methods
- #1375 error handling and performance tweaks
- #1378 improves reification of calls in the IR theory (part I)
- #1379 improves semantics of some ITT instructions
- #1380 Fixes handling of fallthroughs in IR theory
- #1328 fixes C.ABI.Args
popn
andalign_even
operators - #1329 fixes frame layout calculation in the Primus loader
- #1330 fixes the address size computation in the llvm backend
- #1333 fixes and improves label handling in the IR theor
- #1338 fixes core:eff theory
- #1340 fixes the Node.update for graphs with unlabeled nodes
- #1347 fixes a knowledge base race condition in the run plugin
- #1348 fixes endianness in the raw loader
- #1349 short-circuits evaluation of terms in Bap_main.init
- #1350 fixes variable rewriter and some Primus Lisp symbolic functions
- #1351 fixes and improves aarch64 lifter
- #1352 fixes several Primus Lisp stubs
- #1357 fixes some T32 instructions that are accessing to PC
- #1359 fixes handling of let-bound variables in flatten pass
- #1366 fixes a bug in the
cmp
semantics - #1374 fixes handling modified immediate constants in ARM T32 encoding
- #1376 fixes fresh variable generation
- #1377 fixes the IR theory implementation
- #1319 fixes the shared folder in deb packages
- #1320 removes sudo from postinst and postrm actions in the deb packages
- #1321 enables push flag in the publish-docker-image action
- #1323 fixes the ppx_bap version in the dev-repo opam file
- #1331 fixes the docker publisher, also enables manual triggering
- #1327 fixes a typo in the ubuntu dockerfiles
- #1345 fixes bapdoc
- #1346 nightly tests are failing due to a bug upstream
- #1263 fixes PE/COFF sections decoding
- #1265 introduces BIL special encodings and publishes BIL CT parser
- #1266 introduces the BIL code slot and a few convenience functions
- #1268 adds a Primus Lisp fronted
- #1273 rewrites the read-symbols plugin to enable multiple files support
- #1274 updates the raw loader to enable better support for targets
- #1275 overhauls target/value abstraction and introduces roles (4/n)
- #1276 adds the --target parameter to disassemble and compare commands
- #1277 enables writing program semantics (lifting) in Primus Lisp
- #1278 moves to centralized and uniform path handling
- #1286 adds namepspaces (packages) to Primus Lisp
- #1287 adds riscv32 and riscv64 support
- #1288 restores output for non-empty instructions
- #1289 fixes the unit tracking mechanism
- #1290 implements ABI description eDSL
- #1291 adds armv8 (aarch64) lifter
- #1293 implements the array to pointer conversion in C ABI processor
- #1294 introduces bap dependencies command
- #1296 uses ARM EABI for Thumb binaries
- #1295 adds YAML as an alternative output of the specification command
- #1297 adds the missing ux*, sx*, s?bz instructions
- #1298 adds more thumb-specific instructions
- #1304 adds the --show-knowledge option to bap mc
- #1303 preserves the encoding name of the instruction
- #1307 renames the core-theory package to just core
- #1306 adds
bap primus-lisp-documentation
command - #1309 adds support for big-endian arm and thumb architectures
- #1272 fixes two bugs in the Memory module
- #1280 fixes, cleans, and optimizes KB AVL tree implementation
- #1281 prunes empty segments
- #1282 fixes recipes search paths
- #1285 fixes a missing str dependency in the x86 plugin
- #1308 fixes a bug in the method that computes C padding.
- #1310 removes the old unit tracking module, fixes the modern one
- #1132 adds the missing toupper and tolower prototypes
- #1134 implements better support for cross memory disassembling
- #1142 Tweak jumping and eval cond
- #1112 adds symbolizer based on radare2
- #1155 removes the buffer tracking
- #1160 makes build_plugin.sh more portable
- #1164 splits oasis multipackages into sub-packages
- #1171 creates a separate package for the strings plugin
- #1170 prevents delay slots from becoming a basic block start
- #1173 publishes and documents the new disassembler engine
- #1177 enables unallocated memories in symbolic executor
- #1119 enables multiple projects in the same knowledge base
- #1187 renovates the LLVM backend
- #1198 adds is-executable and format attributes and fixes glibc rt check
- #1197 adds the specification command
- #1196 implements support for ARM Modified Immediate Constants
- #1209 improves symbolization facilities
- #1212 enables enumeration of objects in the knowledge base
- #1200 optimizes functional tests
- #1217 a new portable and efficient knowledge base representation
- #1217 a REPL for querying and modifying the knowledge base
- #1220 removes section and other symbols from the ELF loader output
- #1221 switches to Fowler-Noll-Vo hash algorithm for hashing names
- #1225 optimizes the merge function for OGRE documents
- #1225 implements bin_io and sexp protocol for OGRE docs
- #1225 uses real names for Knowledge.Name.t sexp-serialization
- #1225 overhauls the target/architecture abstraction (1/n)
- #1226 overhauls the target/architecture abstraction (2/n)
- #1227 overhauls the target/architecture abstraction (3/n)
- #1229 upgrades bap to LLVM 11
- #1230 adds a proper handling of unitialized memory in Primus.Memory.map
- #1178 enables ARM Thumb/Thumb2 and interworking
- #1116 updates to OCaml 4.{10,11}, drops 4.07, switches to core_kernel v0.14
- #1234 adds binding operators to the monads library
- #1235 prints only code regions, use sections for names
- #1237 initializes the default policy in primus taint analyzers
- #1241 makes the taint-attached observation on taint introductions
- #1243 enables intermachine communication
- #1244 tweaks the Taint Engine and partially rewrites the Taint GC
- #1245 propagates stub resolver results to program term attributes
- #1246 protects symbolic executor from segfaults when setting memory inputs
- #1255 x86 floating-point lifter
- #1123 fixes an inifinite loop in certain Primus Lisp analysis
- #1129 handles correctly XDG_CACHE_HOME
- #1140 fixes getenv Lisp stub
- #1147 fixes taint propagation for unmodeled subroutines
- #1143 fixes the
fgetc
stub and thechannel-input
primitive return type - #1128 fix rev16 instruction
- #1165 fixes barrier instructions with delay slots
- #1219 fixes the implementation of strncasecmp and strcmp models
- #1224 fixes a trivial typo in the symbolic fread implementation
- #1222 Fix Pcmp instruction
- #1233 fixes Machine.Observation.watch function and publishes fork/switch
- #1238 fixes improper compartmentalization of project computations
- #1240 fixes-bap-taint-gc fixes the sign handling in the atoi stub
- #1251 fixes Primus Lisp typechecker (was missing errors)
- #957 switches to OCaml 4.0.{7,8,9} and core_kernel v0.12
- #1024 optimizes the Knowledge run function
- #1026 adds
--show-invalid
and--stop-on-error
bap to mc/objdump - #1027 adds the
command
stanza to the recipes grammar - #1028 improves the build time
- #1039 adds an optional omake backend
- #1042 revamps Primus Lisp type checker
- #1053 tweaks primus-mark-visited to mark called stubs as visited
- #1051 adds liveness analysis
- #1055 caches the dissasembler state
- #1061 optimizes Primus observations
- #1061 adds clocks to the Primus interpreter
- #1061 switches to clock ticks as the default limited in primus-limit
- #1059 adds an ability to lift instruction into intrinsics calls
- #1059 adds IEEE754 Primus library
- #1059 allows referencing any variable in a project from Primus Lisp
- #1059 adds the
lisp-primitive
observation - #1035 adds stubs for
realloc
in Primus Lisp - #1071 exposes the commit ID in
bap --version
- #1075 integrates Primus with the Knowledge base
- #1075 introduces Primus systems and components
- #1075 adds restricted mode to Primus Machine monad
- #1075 adds an option to run Primus on marked subroutines
- #1075 refines the timeline of a Primus machine
- #1075 adds an ability to run multiple instances of Primus
- #1079 switches to odig
- #1084 removes the outdated docker images
- #1086 relaxes variables name restriction allowing any character
- #1093 gives programmatic access to ABI processors
- #1036 adds an ABI pass that redirects stubs to implementations
- #1101 updates to LLVM 10
- #1095 prunes unreachable code in the optimization pass
- #1099 adds support for windows PDB files
- #1105 adds support for modern C runtime
- #1105 adds the default C prototype
- #1105 better error reports, no backtraces unless BAP_DEBUG is set
- #1105 adds
ite
,branch
, andrepeat
Primus operations - #1105 complete rewrite of Primus generators (wide generators)
- #1105 completely overhauls the random generators implementation
- #1105 new primus-random plugin that controls Primus randomness
- #1105 adds Primus.Env and Primus.Memory generated observations
- #1105 extends the Priumus.Memory interface
- #1105 extends the Primus.Env interface
- #1105 new less heavy interface for Lisp primitives
- #1105 relaxes Primus Interpreter typing rules
- #1105 makes Primus Lisp interpreter more transparent
- #1105 adds static and global variables to Primus Lisp
- #1105 fixes Lisp msg operator
- #1105 enables overloading based on systems and components
- #1105 adds the Primus.Memory.add_region function
- #1105 allows Primus execution from any basic block
- #1105 makes values unique across different machines
- #1105 adds the primus track visited library
- #1105 adds the primus symbolic executor plugin
- #1105 adds symblolic IO system
- #1105 adds many new stubs
- #1105 extends Primus Lisp's Dictionary interface
- #1105 adds the default limit to Primus Limiter
- #1105 reimplements Primus Lisp memory allocator (malloc)
- #1105 adds the
symbol-of-string
primitive - #1105 adds the
eval-lisp
bap command - #1105 fixes the multisystem run observation subscription
- #1105 splits the promiscuous mode into subcomponents
- #1105 adds new primitives to the Primus region library
- #1105 tweaks the core systems
- #1105 fixes memcheck-malloc on strn* operations
- #1105 adds incident deduplication
- #1105 adds x86 non-standard registers intialization
- #1105 extends the run plugin
- #1025 compels plugins to respect the Bap_main rules
- #1026 fixes
--show-size
and--show-kinds
inbap mc
- #1027 removes the default command hack in
bap
- #1037 makes dynamic loading sound
- #1042 fixes the visited attribute attaching in primus-mark-visited
- #1045 prevents cmdliner from fetching plugins path from environment
- #1034 fixes arguments attributes in the
callsites
plugin - #1032 fixes taint garbage collector
- #1048 fixes the missing filename attribute
- #1049 prevents overwriting of a file in the input channel redirection
- #1054 fixes CFG partitioning based on call destinations information
- #1073 fixes the installation of man pages
- #1083 fixes the entry point in docker images
- #1082 disables broken llvm (< 8.0) for aarch64 targets
- #1085 handles correctly ELF files without sections
- #1102 fixes Bil.eval with non-standard memory sizes
- #1016 adds unknown architecture
- #1014 restores postinstall and man pages
- #1013 tweaks the cache plugin
- #1011 tweaks the subroutine ordering in the run plugin
- #1006 extends the test coverage on Travis
- #1005 introduces Bap_main the entry point to BAP
- #1005 new command line interface and library
- #1005 a new
raw
loader for opening unknown files and raw code - #1005 a new
objdump
command for linearly disassembling binaries - #1005 a new Byteweight threshold using the Bayes Factors procedure
- #1005 adds more control over byteweight thresholding
- #1005 implements custom thresholding procedures for Byteweight
- #1005 extends the Trie module with iterators and printers
- #1005 new toplevel based on utop
- #1005 new bytecode frontend for debugging
- #1005 adds a central location for regular readers and writers
- #999 tweaks Graphlibs fixpoint to preserve previous solution
- #998 represents rep prefix with while in x86
- #993 prevents Primus from going to deep into PLT entries
- #991 tweaks the print plugin
- #990 represents ARM conditionals with ite expressions when possible
- #998 implements more fine granular view on the image memory
- #979 parametrize Lisp malloc with an initialization strategy
- #960 new subroutine packing algorithm
- #960 new incremental disassembler
- #960 new knowledge representation library
- #960 new representation of program semantics
- #960 new bitvectors library
- #948 disables Primus' taint GC by default
- #1013 resolves leaking files in the cache plugin
- #1003 rectifies Primus semantics in case of exceptions
- #1002 fixes bind operator in the Future library
- #1000 fixes instruction properties computation for barriers
- #985 fixes atexit Lisp stub
- #980 fixes a bug in the configure script
- #971 limits continuations at forks in the promiscuous mode
- #970 fixes the argument evaluation order in call-return
- #964 fixes Primus random generators
- #962 fixes the semantics of signed division by zero in x86
- #958 fixes Primus memory semantics with randomized memories
- #955 improves stack handling in Primus for x86
- #950 fixes the taint sanitization procedure
- #893 adds integration with ida 7
- #892 implements helper functions for creating and manipulating partitions
- #906 makes dead code elimination less conservative
- #914 preserves brancher information in the BIL code of an instruction
- #820 Jane Street 0.11.x library compatibility + minor fixes
- #922 few x86 enhancements
- #923 SSE XMM0 ABI
- #933 enables bap-elf
- #934 adds the compiler option to byteweight
- #932 enables memory sharing between instructions
- #938 removed upper bound for llvm version, compatibility with LLVM 8.0
- #926 enables functions with multiple entry
- #907 fixes the free-vars-by-dominators computation algorithm
- #915 fixed building on travis
- #920 fix the i64 import error
- #927 fixes ADT printer
- #939 fixes the order of arguments in the callsites plugin
- #937 fixes TOCTOU bug in bap log
- #941 fixes a dependency bug in primus lisp docs
- #887 Llvm 7.0 compatibility
- #872 Constant tracking analysis
- #871 Information sensitivity analysis
- #868 IDA Pro brancher.
- #866 Bap-elf compilation for ocaml >= 4.04.1
- #857 Optimization pass
- #855 Better reconstructor, symtab, and brancher performance
- #840 Traps for memory and division operations in Primus
- #833 Support for x86 CDQ, CDQE, CQO, CWD, CWDE, CBW opcodes
- #830 BIL passes
- #821 Interface for binable interval trees
- #815 Recipes enhancements
- #813 Mangling of duplicated subroutines
- #799 Macho loader enhancements
- #798 Primus Lisp enhancements
- #795 Llvm 6.0 compatibility
- #863 Fixes calls search in reconstructor
- #856 Fixes the bug that was producing unreachable blocks
- #853 Cleans /tmp/ida every time ida is called
- #847 Fixes type inference
- #841 Several Primus fixes
- #836 Fixes packed x86 instructions
- #832 Fixes function names in docstrings
- #827 Fixes compilations issue on 32 bit machine
- #817 Hardens IDA plugin
- #804 Removes duplicated sections in disassemble output
- #796 Fixes paths comprehension in api plugin
- #792 Restores the section view
- #791 Produces correct callgraphs if there are no calls in a program
- #789 Fixes BIL normalization procedure
- #733 Fixed bugs in x86 shift instructions
- PR#762 MIPS and MIPS64 lifters
- PR#739 PowerPC and PowerPC64 lifters
- PR#744 LLVM 5.0 compatibility
- PR#734 BARE Binary Analysis Rule Engine
- PR#734 New Taint Analysis Framework
- PR#734 Primus Lisp 2.0 with symbols and methods
- PR#734 Recipes
- PR#734 Primus Test Framework
- PR#734 Dataflow and Abstract Interpretation Framework
- PR#734 Progress Reports and Profilers
- PR#773 New primitives for BML
- PR#782 Incorrect error handling in x86 lifter
- PR#734 Failure to decode ICC binaries
- PR#772 Fixes equiv type in Graphlib
- PR#771 Unhardcodes llvm backed in the linear sweep disassembler
- PR#770 Fixes the memory printer
- PR#761 Fixes handling relocations in reconstructor
- PR#759 Fixes race condition in the source merge procedure
- PR#758 Restores the source-type command line option
- PR#755 Proper handling of tail calls in IR lifter
- PR#754 Fixes segment registers in mov instruction
- PR#746 Fixes xor in the BIL simplfication procedure
- PR#728 Fixes flag calculation in the x86 sub instruction
- PR#727 Fixes numerous missed sign extensions in x86 lifter
- PR#725 Adds modulo operation to x86 rot/rol instructions
- PR#724 Fixes operands order in the x86 xadd instruction
- PR#723 Fixes segment duplication
- PR#700 LLVM-4.0 is now supported
- PR#688 Primus - the microexecution framework
- PR#688 BIL type checker and normalizer
- PR#688 New constant folding with effect analysis
- PR#688 SSA transformation plugin
- PR#688 Dead code elimination plugin
- PR#688 New pretty-printer for BIL and bitvectors
- PR#684 Support for cmdliner 1.0
- PR#682 Severely reduces memory consumption
- PR#680 New thin bitvector representation
- PR#663 Adds topic tags to bundle
- PR#654 New OGRE based loader that supports:
- Linux Kernel Modules
- MachO Kernel Bundles (LLVM 3.8+ only)
- Plain object files
- Shared libraries
- PR#630 Enhancements in IDA plugin
- PR#688 Type errors in the x86 lifter
- PR#688 Type errors in the ARM lifter
- PR#688 Fixes constant folding
- PR#672 Fixes demangler plugin
- PR#665 Fixes symbol cases in objdump
- PR#644 Robustness fixes in x86 lifter
- PR#609 compilation with ocaml 4.04.0
- PR#621 don't store api files in api plugin
- PR#627 beagle - obfuscated string solver
- binary release (deb, rpm, tgs)
- c-bindings
- PR#586 segfault with short or damaged files fed to bap.
- PR#590 llvm 3.8 specific issues
- PR#592 a bug in lifting x86 PSHUFD/PSHUFB instructions
- PR#595 bap exit status
- PR#596 most of the compilation warnings
- PR#593 bapbundle: it is no longer needed to specify the .plugin extension
- PR#597 API pass will stop processing in case of the error
- PR#599 print backtraces from passes
- PR#600 documented memory interface
- A powerful plugin system
- Split Bap.Std into several libraries.
- The disassembler layer is severely rewritten
- Made project storable and loadable
- Added new injection points
- Added BIL interpreters
- Removed bap-server
- New python interface (see https://BinaryAnalysisPlatform/bap-python)
- New ida integration, that works in both directions
- Multipass disassembling
- llvm-3.8 support (#546)
- new x86 lifter (#549)
- new testsuite with functional tests (#520)
- extensible API/ABI (#448)