angr.analyses.identifier.identify

class angr.analyses.identifier.identify.FuncInfo

Bases: object

__init__()

class angr.analyses.identifier.identify.Identifier

Bases: Analysis

__init__(cfg=None, require_predecessors=True, only_find=None)

run(only_find=None)

can_call_same_name(addr, name)

get_func_info(func)

static constrain_all_zero(before_state, state, regs)

identify_func(function)

check_tests(cfg_func, match_func)

map_callsites()

do_trace(addr_trace, reverse_accesses, func_info)

get_call_args(func, callsite)

static get_reg_name(arch, reg_offset)

Parameters:

• arch – the architecture

• reg_offset – Tries to find the name of a register given the offset in the registers.

Returns:

The register name

find_stack_vars_x86(func)

static make_initial_state(project, stack_length)

Returns:

an initial state with a symbolic stack and good options for rop

static make_symbolic_state(project, reg_list, stack_length=80)

converts an input state into a state with symbolic registers :return: the symbolic state