PyPI - angr - Versions diffs - 9.2.192__cp311-cp311-macosx_10_12_x86_64.whl - Mend

angr 9.2.192__cp311-cp311-macosx_10_12_x86_64.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (1442) hide show

angr/__init__.py +366 -0
angr/__main__.py +182 -0
angr/ail_callable.py +79 -0
angr/ailment/__init__.py +83 -0
angr/ailment/block.py +88 -0
angr/ailment/block_walker.py +856 -0
angr/ailment/constant.py +3 -0
angr/ailment/converter_common.py +11 -0
angr/ailment/converter_pcode.py +648 -0
angr/ailment/converter_vex.py +829 -0
angr/ailment/expression.py +1655 -0
angr/ailment/manager.py +34 -0
angr/ailment/statement.py +973 -0
angr/ailment/tagged_object.py +58 -0
angr/ailment/utils.py +114 -0
angr/analyses/__init__.py +117 -0
angr/analyses/analysis.py +429 -0
angr/analyses/backward_slice.py +686 -0
angr/analyses/binary_optimizer.py +670 -0
angr/analyses/bindiff.py +1512 -0
angr/analyses/boyscout.py +76 -0
angr/analyses/callee_cleanup_finder.py +74 -0
angr/analyses/calling_convention/__init__.py +6 -0
angr/analyses/calling_convention/calling_convention.py +1113 -0
angr/analyses/calling_convention/fact_collector.py +647 -0
angr/analyses/calling_convention/utils.py +60 -0
angr/analyses/cdg.py +189 -0
angr/analyses/cfg/__init__.py +23 -0
angr/analyses/cfg/cfb.py +451 -0
angr/analyses/cfg/cfg.py +74 -0
angr/analyses/cfg/cfg_arch_options.py +95 -0
angr/analyses/cfg/cfg_base.py +2954 -0
angr/analyses/cfg/cfg_emulated.py +3451 -0
angr/analyses/cfg/cfg_fast.py +5431 -0
angr/analyses/cfg/cfg_fast_soot.py +662 -0
angr/analyses/cfg/cfg_job_base.py +203 -0
angr/analyses/cfg/indirect_jump_resolvers/__init__.py +30 -0
angr/analyses/cfg/indirect_jump_resolvers/aarch64_macho_got.py +77 -0
angr/analyses/cfg/indirect_jump_resolvers/amd64_elf_got.py +62 -0
angr/analyses/cfg/indirect_jump_resolvers/amd64_pe_iat.py +51 -0
angr/analyses/cfg/indirect_jump_resolvers/arm_elf_fast.py +159 -0
angr/analyses/cfg/indirect_jump_resolvers/const_resolver.py +339 -0
angr/analyses/cfg/indirect_jump_resolvers/constant_value_manager.py +107 -0
angr/analyses/cfg/indirect_jump_resolvers/default_resolvers.py +82 -0
angr/analyses/cfg/indirect_jump_resolvers/jumptable.py +2490 -0
angr/analyses/cfg/indirect_jump_resolvers/memload_resolver.py +81 -0
angr/analyses/cfg/indirect_jump_resolvers/mips_elf_fast.py +286 -0
angr/analyses/cfg/indirect_jump_resolvers/mips_elf_got.py +148 -0
angr/analyses/cfg/indirect_jump_resolvers/propagator_utils.py +46 -0
angr/analyses/cfg/indirect_jump_resolvers/resolver.py +74 -0
angr/analyses/cfg/indirect_jump_resolvers/syscall_resolver.py +92 -0
angr/analyses/cfg/indirect_jump_resolvers/x86_elf_pic_plt.py +88 -0
angr/analyses/cfg/indirect_jump_resolvers/x86_pe_iat.py +47 -0
angr/analyses/cfg_slice_to_sink/__init__.py +11 -0
angr/analyses/cfg_slice_to_sink/cfg_slice_to_sink.py +117 -0
angr/analyses/cfg_slice_to_sink/graph.py +87 -0
angr/analyses/cfg_slice_to_sink/transitions.py +27 -0
angr/analyses/class_identifier.py +63 -0
angr/analyses/code_tagging.py +123 -0
angr/analyses/codecave.py +77 -0
angr/analyses/complete_calling_conventions.py +475 -0
angr/analyses/congruency_check.py +377 -0
angr/analyses/data_dep/__init__.py +16 -0
angr/analyses/data_dep/data_dependency_analysis.py +595 -0
angr/analyses/data_dep/dep_nodes.py +171 -0
angr/analyses/data_dep/sim_act_location.py +49 -0
angr/analyses/datagraph_meta.py +105 -0
angr/analyses/ddg.py +1670 -0
angr/analyses/decompiler/__init__.py +41 -0
angr/analyses/decompiler/ail_simplifier.py +2246 -0
angr/analyses/decompiler/ailgraph_walker.py +49 -0
angr/analyses/decompiler/block_io_finder.py +302 -0
angr/analyses/decompiler/block_similarity.py +199 -0
angr/analyses/decompiler/block_simplifier.py +397 -0
angr/analyses/decompiler/callsite_maker.py +579 -0
angr/analyses/decompiler/ccall_rewriters/__init__.py +9 -0
angr/analyses/decompiler/ccall_rewriters/amd64_ccalls.py +618 -0
angr/analyses/decompiler/ccall_rewriters/rewriter_base.py +24 -0
angr/analyses/decompiler/ccall_rewriters/x86_ccalls.py +354 -0
angr/analyses/decompiler/clinic.py +3662 -0
angr/analyses/decompiler/condition_processor.py +1323 -0
angr/analyses/decompiler/counters/__init__.py +16 -0
angr/analyses/decompiler/counters/boolean_counter.py +27 -0
angr/analyses/decompiler/counters/call_counter.py +77 -0
angr/analyses/decompiler/counters/expression_counters.py +77 -0
angr/analyses/decompiler/counters/seq_cf_structure_counter.py +63 -0
angr/analyses/decompiler/decompilation_cache.py +54 -0
angr/analyses/decompiler/decompilation_options.py +317 -0
angr/analyses/decompiler/decompiler.py +796 -0
angr/analyses/decompiler/dephication/__init__.py +6 -0
angr/analyses/decompiler/dephication/dephication_base.py +100 -0
angr/analyses/decompiler/dephication/graph_dephication.py +70 -0
angr/analyses/decompiler/dephication/graph_rewriting.py +112 -0
angr/analyses/decompiler/dephication/graph_vvar_mapping.py +357 -0
angr/analyses/decompiler/dephication/rewriting_engine.py +528 -0
angr/analyses/decompiler/dephication/seqnode_dephication.py +156 -0
angr/analyses/decompiler/dirty_rewriters/__init__.py +7 -0
angr/analyses/decompiler/dirty_rewriters/amd64_dirty.py +74 -0
angr/analyses/decompiler/dirty_rewriters/rewriter_base.py +27 -0
angr/analyses/decompiler/empty_node_remover.py +212 -0
angr/analyses/decompiler/expression_narrower.py +290 -0
angr/analyses/decompiler/goto_manager.py +112 -0
angr/analyses/decompiler/graph_region.py +441 -0
angr/analyses/decompiler/jump_target_collector.py +37 -0
angr/analyses/decompiler/jumptable_entry_condition_rewriter.py +67 -0
angr/analyses/decompiler/label_collector.py +32 -0
angr/analyses/decompiler/node_replacer.py +42 -0
angr/analyses/decompiler/notes/__init__.py +9 -0
angr/analyses/decompiler/notes/decompilation_note.py +48 -0
angr/analyses/decompiler/notes/deobfuscated_strings.py +56 -0
angr/analyses/decompiler/optimization_passes/__init__.py +164 -0
angr/analyses/decompiler/optimization_passes/base_ptr_save_simplifier.py +157 -0
angr/analyses/decompiler/optimization_passes/call_stmt_rewriter.py +46 -0
angr/analyses/decompiler/optimization_passes/code_motion.py +362 -0
angr/analyses/decompiler/optimization_passes/condition_constprop.py +211 -0
angr/analyses/decompiler/optimization_passes/const_derefs.py +127 -0
angr/analyses/decompiler/optimization_passes/const_prop_reverter.py +365 -0
angr/analyses/decompiler/optimization_passes/cross_jump_reverter.py +106 -0
angr/analyses/decompiler/optimization_passes/deadblock_remover.py +82 -0
angr/analyses/decompiler/optimization_passes/determine_load_sizes.py +64 -0
angr/analyses/decompiler/optimization_passes/div_simplifier.py +425 -0
angr/analyses/decompiler/optimization_passes/duplication_reverter/__init__.py +5 -0
angr/analyses/decompiler/optimization_passes/duplication_reverter/ail_merge_graph.py +503 -0
angr/analyses/decompiler/optimization_passes/duplication_reverter/duplication_reverter.py +1221 -0
angr/analyses/decompiler/optimization_passes/duplication_reverter/errors.py +16 -0
angr/analyses/decompiler/optimization_passes/duplication_reverter/similarity.py +126 -0
angr/analyses/decompiler/optimization_passes/duplication_reverter/utils.py +167 -0
angr/analyses/decompiler/optimization_passes/eager_std_string_concatenation.py +236 -0
angr/analyses/decompiler/optimization_passes/eager_std_string_eval.py +186 -0
angr/analyses/decompiler/optimization_passes/engine_base.py +502 -0
angr/analyses/decompiler/optimization_passes/expr_op_swapper.py +138 -0
angr/analyses/decompiler/optimization_passes/flip_boolean_cmp.py +113 -0
angr/analyses/decompiler/optimization_passes/inlined_string_transformation_simplifier.py +618 -0
angr/analyses/decompiler/optimization_passes/inlined_strlen_simplifier.py +274 -0
angr/analyses/decompiler/optimization_passes/ite_expr_converter.py +224 -0
angr/analyses/decompiler/optimization_passes/ite_region_converter.py +337 -0
angr/analyses/decompiler/optimization_passes/lowered_switch_simplifier.py +939 -0
angr/analyses/decompiler/optimization_passes/mod_simplifier.py +99 -0
angr/analyses/decompiler/optimization_passes/optimization_pass.py +710 -0
angr/analyses/decompiler/optimization_passes/peephole_simplifier.py +75 -0
angr/analyses/decompiler/optimization_passes/register_save_area_simplifier.py +263 -0
angr/analyses/decompiler/optimization_passes/register_save_area_simplifier_adv.py +198 -0
angr/analyses/decompiler/optimization_passes/ret_addr_save_simplifier.py +171 -0
angr/analyses/decompiler/optimization_passes/ret_deduplicator.py +222 -0
angr/analyses/decompiler/optimization_passes/return_duplicator_base.py +632 -0
angr/analyses/decompiler/optimization_passes/return_duplicator_high.py +61 -0
angr/analyses/decompiler/optimization_passes/return_duplicator_low.py +166 -0
angr/analyses/decompiler/optimization_passes/stack_canary_simplifier.py +333 -0
angr/analyses/decompiler/optimization_passes/static_vvar_rewriter.py +336 -0
angr/analyses/decompiler/optimization_passes/switch_default_case_duplicator.py +166 -0
angr/analyses/decompiler/optimization_passes/switch_reused_entry_rewriter.py +102 -0
angr/analyses/decompiler/optimization_passes/tag_slicer.py +41 -0
angr/analyses/decompiler/optimization_passes/win_stack_canary_simplifier.py +477 -0
angr/analyses/decompiler/optimization_passes/x86_gcc_getpc_simplifier.py +88 -0
angr/analyses/decompiler/peephole_optimizations/__init__.py +136 -0
angr/analyses/decompiler/peephole_optimizations/a_div_const_add_a_mul_n_div_const.py +42 -0
angr/analyses/decompiler/peephole_optimizations/a_mul_const_div_shr_const.py +38 -0
angr/analyses/decompiler/peephole_optimizations/a_mul_const_sub_a.py +34 -0
angr/analyses/decompiler/peephole_optimizations/a_shl_const_sub_a.py +34 -0
angr/analyses/decompiler/peephole_optimizations/a_sub_a_div.py +25 -0
angr/analyses/decompiler/peephole_optimizations/a_sub_a_shr_const_shr_const.py +37 -0
angr/analyses/decompiler/peephole_optimizations/a_sub_a_sub_n.py +23 -0
angr/analyses/decompiler/peephole_optimizations/arm_cmpf.py +236 -0
angr/analyses/decompiler/peephole_optimizations/base.py +157 -0
angr/analyses/decompiler/peephole_optimizations/basepointeroffset_add_n.py +34 -0
angr/analyses/decompiler/peephole_optimizations/basepointeroffset_and_mask.py +36 -0
angr/analyses/decompiler/peephole_optimizations/bitwise_or_to_logical_or.py +34 -0
angr/analyses/decompiler/peephole_optimizations/bool_expr_xor_1.py +27 -0
angr/analyses/decompiler/peephole_optimizations/bswap.py +142 -0
angr/analyses/decompiler/peephole_optimizations/cas_intrinsics.py +182 -0
angr/analyses/decompiler/peephole_optimizations/cmpord_rewriter.py +71 -0
angr/analyses/decompiler/peephole_optimizations/coalesce_adjacent_shrs.py +39 -0
angr/analyses/decompiler/peephole_optimizations/coalesce_same_cascading_ifs.py +28 -0
angr/analyses/decompiler/peephole_optimizations/constant_derefs.py +44 -0
angr/analyses/decompiler/peephole_optimizations/conv_a_sub0_shr_and.py +69 -0
angr/analyses/decompiler/peephole_optimizations/conv_shl_shr.py +52 -0
angr/analyses/decompiler/peephole_optimizations/eager_eval.py +436 -0
angr/analyses/decompiler/peephole_optimizations/extended_byte_and_mask.py +56 -0
angr/analyses/decompiler/peephole_optimizations/inlined_memcpy.py +78 -0
angr/analyses/decompiler/peephole_optimizations/inlined_memset.py +262 -0
angr/analyses/decompiler/peephole_optimizations/inlined_strcpy.py +217 -0
angr/analyses/decompiler/peephole_optimizations/inlined_strcpy_consolidation.py +106 -0
angr/analyses/decompiler/peephole_optimizations/inlined_wcscpy.py +256 -0
angr/analyses/decompiler/peephole_optimizations/inlined_wcscpy_consolidation.py +296 -0
angr/analyses/decompiler/peephole_optimizations/invert_negated_logical_conjuction_disjunction.py +50 -0
angr/analyses/decompiler/peephole_optimizations/modulo_simplifier.py +89 -0
angr/analyses/decompiler/peephole_optimizations/one_sub_bool.py +33 -0
angr/analyses/decompiler/peephole_optimizations/optimized_div_simplifier.py +356 -0
angr/analyses/decompiler/peephole_optimizations/remove_cascading_conversions.py +45 -0
angr/analyses/decompiler/peephole_optimizations/remove_cxx_destructor_calls.py +32 -0
angr/analyses/decompiler/peephole_optimizations/remove_empty_if_body.py +46 -0
angr/analyses/decompiler/peephole_optimizations/remove_noop_conversions.py +47 -0
angr/analyses/decompiler/peephole_optimizations/remove_redundant_bitmasks.py +125 -0
angr/analyses/decompiler/peephole_optimizations/remove_redundant_conversions.py +273 -0
angr/analyses/decompiler/peephole_optimizations/remove_redundant_derefs.py +21 -0
angr/analyses/decompiler/peephole_optimizations/remove_redundant_ite_branch.py +30 -0
angr/analyses/decompiler/peephole_optimizations/remove_redundant_ite_comparisons.py +54 -0
angr/analyses/decompiler/peephole_optimizations/remove_redundant_nots.py +36 -0
angr/analyses/decompiler/peephole_optimizations/remove_redundant_reinterprets.py +44 -0
angr/analyses/decompiler/peephole_optimizations/remove_redundant_shifts.py +95 -0
angr/analyses/decompiler/peephole_optimizations/remove_redundant_shifts_around_comparators.py +115 -0
angr/analyses/decompiler/peephole_optimizations/rewrite_bit_extractions.py +85 -0
angr/analyses/decompiler/peephole_optimizations/rewrite_conv_mul.py +40 -0
angr/analyses/decompiler/peephole_optimizations/rewrite_cxx_operator_calls.py +90 -0
angr/analyses/decompiler/peephole_optimizations/rewrite_mips_gp_loads.py +49 -0
angr/analyses/decompiler/peephole_optimizations/rol_ror.py +130 -0
angr/analyses/decompiler/peephole_optimizations/sar_to_signed_div.py +143 -0
angr/analyses/decompiler/peephole_optimizations/shl_to_mul.py +25 -0
angr/analyses/decompiler/peephole_optimizations/simplify_pc_relative_loads.py +51 -0
angr/analyses/decompiler/peephole_optimizations/single_bit_cond_to_boolexpr.py +28 -0
angr/analyses/decompiler/peephole_optimizations/single_bit_xor.py +29 -0
angr/analyses/decompiler/peephole_optimizations/tidy_stack_addr.py +131 -0
angr/analyses/decompiler/peephole_optimizations/utils.py +18 -0
angr/analyses/decompiler/presets/__init__.py +22 -0
angr/analyses/decompiler/presets/basic.py +36 -0
angr/analyses/decompiler/presets/fast.py +66 -0
angr/analyses/decompiler/presets/full.py +76 -0
angr/analyses/decompiler/presets/malware.py +70 -0
angr/analyses/decompiler/presets/preset.py +37 -0
angr/analyses/decompiler/redundant_label_remover.py +141 -0
angr/analyses/decompiler/region_identifier.py +1319 -0
angr/analyses/decompiler/region_simplifiers/__init__.py +5 -0
angr/analyses/decompiler/region_simplifiers/cascading_cond_transformer.py +95 -0
angr/analyses/decompiler/region_simplifiers/cascading_ifs.py +82 -0
angr/analyses/decompiler/region_simplifiers/expr_folding.py +838 -0
angr/analyses/decompiler/region_simplifiers/goto.py +178 -0
angr/analyses/decompiler/region_simplifiers/if_.py +135 -0
angr/analyses/decompiler/region_simplifiers/ifelse.py +91 -0
angr/analyses/decompiler/region_simplifiers/loop.py +143 -0
angr/analyses/decompiler/region_simplifiers/node_address_finder.py +24 -0
angr/analyses/decompiler/region_simplifiers/region_simplifier.py +270 -0
angr/analyses/decompiler/region_simplifiers/switch_cluster_simplifier.py +654 -0
angr/analyses/decompiler/region_simplifiers/switch_expr_simplifier.py +87 -0
angr/analyses/decompiler/region_walker.py +24 -0
angr/analyses/decompiler/return_maker.py +72 -0
angr/analyses/decompiler/semantic_naming/__init__.py +37 -0
angr/analyses/decompiler/semantic_naming/array_index_naming.py +196 -0
angr/analyses/decompiler/semantic_naming/boolean_naming.py +264 -0
angr/analyses/decompiler/semantic_naming/call_result_naming.py +220 -0
angr/analyses/decompiler/semantic_naming/naming_base.py +166 -0
angr/analyses/decompiler/semantic_naming/orchestrator.py +107 -0
angr/analyses/decompiler/semantic_naming/pointer_naming.py +334 -0
angr/analyses/decompiler/semantic_naming/region_loop_counter_naming.py +246 -0
angr/analyses/decompiler/semantic_naming/size_naming.py +137 -0
angr/analyses/decompiler/seq_to_blocks.py +20 -0
angr/analyses/decompiler/sequence_walker.py +261 -0
angr/analyses/decompiler/ssailification/__init__.py +4 -0
angr/analyses/decompiler/ssailification/rewriting.py +451 -0
angr/analyses/decompiler/ssailification/rewriting_engine.py +1091 -0
angr/analyses/decompiler/ssailification/rewriting_state.py +61 -0
angr/analyses/decompiler/ssailification/ssailification.py +283 -0
angr/analyses/decompiler/ssailification/traversal.py +127 -0
angr/analyses/decompiler/ssailification/traversal_engine.py +323 -0
angr/analyses/decompiler/ssailification/traversal_state.py +48 -0
angr/analyses/decompiler/stack_item.py +36 -0
angr/analyses/decompiler/structured_codegen/__init__.py +25 -0
angr/analyses/decompiler/structured_codegen/base.py +193 -0
angr/analyses/decompiler/structured_codegen/c.py +4257 -0
angr/analyses/decompiler/structured_codegen/dummy.py +15 -0
angr/analyses/decompiler/structured_codegen/dwarf_import.py +190 -0
angr/analyses/decompiler/structuring/__init__.py +30 -0
angr/analyses/decompiler/structuring/dream.py +1217 -0
angr/analyses/decompiler/structuring/phoenix.py +3636 -0
angr/analyses/decompiler/structuring/recursive_structurer.py +187 -0
angr/analyses/decompiler/structuring/sailr.py +120 -0
angr/analyses/decompiler/structuring/structurer_base.py +1140 -0
angr/analyses/decompiler/structuring/structurer_nodes.py +442 -0
angr/analyses/decompiler/utils.py +1224 -0
angr/analyses/deobfuscator/__init__.py +23 -0
angr/analyses/deobfuscator/api_obf_finder.py +333 -0
angr/analyses/deobfuscator/api_obf_peephole_optimizer.py +80 -0
angr/analyses/deobfuscator/api_obf_type2_finder.py +166 -0
angr/analyses/deobfuscator/data_transformation_embedder.py +633 -0
angr/analyses/deobfuscator/hash_lookup_api_deobfuscator.py +156 -0
angr/analyses/deobfuscator/irsb_reg_collector.py +54 -0
angr/analyses/deobfuscator/scope_ops_analyzer.py +68 -0
angr/analyses/deobfuscator/string_obf_finder.py +983 -0
angr/analyses/deobfuscator/string_obf_opt_passes.py +136 -0
angr/analyses/deobfuscator/string_obf_peephole_optimizer.py +47 -0
angr/analyses/disassembly.py +1351 -0
angr/analyses/disassembly_utils.py +101 -0
angr/analyses/dominance_frontier.py +57 -0
angr/analyses/fcp/__init__.py +4 -0
angr/analyses/fcp/fcp.py +427 -0
angr/analyses/find_objects_static.py +205 -0
angr/analyses/flirt/__init__.py +47 -0
angr/analyses/flirt/consts.py +160 -0
angr/analyses/flirt/flirt.py +249 -0
angr/analyses/flirt/flirt_function.py +20 -0
angr/analyses/flirt/flirt_matcher.py +352 -0
angr/analyses/flirt/flirt_module.py +32 -0
angr/analyses/flirt/flirt_node.py +23 -0
angr/analyses/flirt/flirt_sig.py +359 -0
angr/analyses/flirt/flirt_utils.py +31 -0
angr/analyses/forward_analysis/__init__.py +12 -0
angr/analyses/forward_analysis/forward_analysis.py +619 -0
angr/analyses/forward_analysis/job_info.py +64 -0
angr/analyses/forward_analysis/visitors/__init__.py +14 -0
angr/analyses/forward_analysis/visitors/call_graph.py +29 -0
angr/analyses/forward_analysis/visitors/function_graph.py +86 -0
angr/analyses/forward_analysis/visitors/graph.py +242 -0
angr/analyses/forward_analysis/visitors/loop.py +29 -0
angr/analyses/forward_analysis/visitors/single_node_graph.py +38 -0
angr/analyses/identifier/__init__.py +5 -0
angr/analyses/identifier/custom_callable.py +137 -0
angr/analyses/identifier/errors.py +10 -0
angr/analyses/identifier/func.py +60 -0
angr/analyses/identifier/functions/__init__.py +37 -0
angr/analyses/identifier/functions/atoi.py +73 -0
angr/analyses/identifier/functions/based_atoi.py +125 -0
angr/analyses/identifier/functions/fdprintf.py +123 -0
angr/analyses/identifier/functions/free.py +64 -0
angr/analyses/identifier/functions/int2str.py +287 -0
angr/analyses/identifier/functions/malloc.py +111 -0
angr/analyses/identifier/functions/memcmp.py +67 -0
angr/analyses/identifier/functions/memcpy.py +89 -0
angr/analyses/identifier/functions/memset.py +43 -0
angr/analyses/identifier/functions/printf.py +123 -0
angr/analyses/identifier/functions/recv_until.py +312 -0
angr/analyses/identifier/functions/skip_calloc.py +73 -0
angr/analyses/identifier/functions/skip_realloc.py +97 -0
angr/analyses/identifier/functions/skip_recv_n.py +105 -0
angr/analyses/identifier/functions/snprintf.py +112 -0
angr/analyses/identifier/functions/sprintf.py +116 -0
angr/analyses/identifier/functions/strcasecmp.py +33 -0
angr/analyses/identifier/functions/strcmp.py +113 -0
angr/analyses/identifier/functions/strcpy.py +43 -0
angr/analyses/identifier/functions/strlen.py +27 -0
angr/analyses/identifier/functions/strncmp.py +104 -0
angr/analyses/identifier/functions/strncpy.py +65 -0
angr/analyses/identifier/functions/strtol.py +89 -0
angr/analyses/identifier/identify.py +825 -0
angr/analyses/identifier/runner.py +360 -0
angr/analyses/init_finder.py +289 -0
angr/analyses/loop_analysis/__init__.py +4 -0
angr/analyses/loop_analysis/loop_analysis.py +464 -0
angr/analyses/loop_analysis.py +349 -0
angr/analyses/loop_unroller/__init__.py +4 -0
angr/analyses/loop_unroller/loop_unroller.py +222 -0
angr/analyses/loopfinder.py +171 -0
angr/analyses/outliner/__init__.py +7 -0
angr/analyses/outliner/outliner.py +402 -0
angr/analyses/patchfinder.py +137 -0
angr/analyses/pathfinder.py +282 -0
angr/analyses/propagator/__init__.py +5 -0
angr/analyses/propagator/engine_base.py +62 -0
angr/analyses/propagator/engine_vex.py +297 -0
angr/analyses/propagator/propagator.py +361 -0
angr/analyses/propagator/top_checker_mixin.py +218 -0
angr/analyses/propagator/values.py +117 -0
angr/analyses/propagator/vex_vars.py +68 -0
angr/analyses/proximity_graph.py +444 -0
angr/analyses/purity/__init__.py +15 -0
angr/analyses/purity/analysis.py +78 -0
angr/analyses/purity/engine.py +593 -0
angr/analyses/reaching_definitions/__init__.py +67 -0
angr/analyses/reaching_definitions/call_trace.py +73 -0
angr/analyses/reaching_definitions/dep_graph.py +433 -0
angr/analyses/reaching_definitions/engine_ail.py +1128 -0
angr/analyses/reaching_definitions/engine_vex.py +1128 -0
angr/analyses/reaching_definitions/external_codeloc.py +0 -0
angr/analyses/reaching_definitions/function_handler.py +639 -0
angr/analyses/reaching_definitions/function_handler_library/__init__.py +12 -0
angr/analyses/reaching_definitions/function_handler_library/stdio.py +269 -0
angr/analyses/reaching_definitions/function_handler_library/stdlib.py +195 -0
angr/analyses/reaching_definitions/function_handler_library/string.py +158 -0
angr/analyses/reaching_definitions/function_handler_library/unistd.py +51 -0
angr/analyses/reaching_definitions/heap_allocator.py +70 -0
angr/analyses/reaching_definitions/rd_initializer.py +237 -0
angr/analyses/reaching_definitions/rd_state.py +579 -0
angr/analyses/reaching_definitions/reaching_definitions.py +581 -0
angr/analyses/reaching_definitions/subject.py +65 -0
angr/analyses/reassembler.py +2900 -0
angr/analyses/s_liveness.py +254 -0
angr/analyses/s_propagator.py +575 -0
angr/analyses/s_reaching_definitions/__init__.py +12 -0
angr/analyses/s_reaching_definitions/s_rda_model.py +145 -0
angr/analyses/s_reaching_definitions/s_rda_view.py +344 -0
angr/analyses/s_reaching_definitions/s_reaching_definitions.py +230 -0
angr/analyses/smc.py +160 -0
angr/analyses/soot_class_hierarchy.py +273 -0
angr/analyses/stack_pointer_tracker.py +954 -0
angr/analyses/static_hooker.py +53 -0
angr/analyses/typehoon/__init__.py +5 -0
angr/analyses/typehoon/dfa.py +118 -0
angr/analyses/typehoon/lifter.py +133 -0
angr/analyses/typehoon/simple_solver.py +2009 -0
angr/analyses/typehoon/translator.py +283 -0
angr/analyses/typehoon/typeconsts.py +439 -0
angr/analyses/typehoon/typehoon.py +338 -0
angr/analyses/typehoon/typevars.py +633 -0
angr/analyses/typehoon/variance.py +11 -0
angr/analyses/unpacker/__init__.py +6 -0
angr/analyses/unpacker/obfuscation_detector.py +103 -0
angr/analyses/unpacker/packing_detector.py +138 -0
angr/analyses/variable_recovery/__init__.py +9 -0
angr/analyses/variable_recovery/annotations.py +58 -0
angr/analyses/variable_recovery/engine_ail.py +978 -0
angr/analyses/variable_recovery/engine_base.py +1256 -0
angr/analyses/variable_recovery/engine_vex.py +594 -0
angr/analyses/variable_recovery/irsb_scanner.py +143 -0
angr/analyses/variable_recovery/variable_recovery.py +574 -0
angr/analyses/variable_recovery/variable_recovery_base.py +489 -0
angr/analyses/variable_recovery/variable_recovery_fast.py +669 -0
angr/analyses/veritesting.py +626 -0
angr/analyses/vfg.py +1898 -0
angr/analyses/vsa_ddg.py +420 -0
angr/analyses/vtable.py +92 -0
angr/analyses/xrefs.py +286 -0
angr/angrdb/__init__.py +14 -0
angr/angrdb/db.py +215 -0
angr/angrdb/models.py +184 -0
angr/angrdb/serializers/__init__.py +10 -0
angr/angrdb/serializers/cfg_model.py +41 -0
angr/angrdb/serializers/comments.py +60 -0
angr/angrdb/serializers/funcs.py +61 -0
angr/angrdb/serializers/kb.py +111 -0
angr/angrdb/serializers/labels.py +59 -0
angr/angrdb/serializers/loader.py +165 -0
angr/angrdb/serializers/structured_code.py +167 -0
angr/angrdb/serializers/variables.py +58 -0
angr/angrdb/serializers/xrefs.py +48 -0
angr/annocfg.py +317 -0
angr/blade.py +431 -0
angr/block.py +509 -0
angr/callable.py +176 -0
angr/calling_conventions.py +2613 -0
angr/code_location.py +249 -0
angr/codenode.py +145 -0
angr/concretization_strategies/__init__.py +32 -0
angr/concretization_strategies/any.py +17 -0
angr/concretization_strategies/any_named.py +35 -0
angr/concretization_strategies/base.py +81 -0
angr/concretization_strategies/controlled_data.py +58 -0
angr/concretization_strategies/eval.py +19 -0
angr/concretization_strategies/logging.py +35 -0
angr/concretization_strategies/max.py +25 -0
angr/concretization_strategies/nonzero.py +16 -0
angr/concretization_strategies/nonzero_range.py +22 -0
angr/concretization_strategies/norepeats.py +37 -0
angr/concretization_strategies/norepeats_range.py +37 -0
angr/concretization_strategies/range.py +19 -0
angr/concretization_strategies/signed_add.py +31 -0
angr/concretization_strategies/single.py +15 -0
angr/concretization_strategies/solutions.py +20 -0
angr/concretization_strategies/unlimited_range.py +17 -0
angr/distributed/__init__.py +9 -0
angr/distributed/server.py +197 -0
angr/distributed/worker.py +185 -0
angr/emulator.py +144 -0
angr/engines/__init__.py +69 -0
angr/engines/ail/__init__.py +16 -0
angr/engines/ail/callstack.py +58 -0
angr/engines/ail/engine_light.py +903 -0
angr/engines/ail/engine_successors.py +24 -0
angr/engines/ail/setup.py +57 -0
angr/engines/concrete.py +66 -0
angr/engines/engine.py +29 -0
angr/engines/failure.py +27 -0
angr/engines/hook.py +93 -0
angr/engines/icicle.py +294 -0
angr/engines/light/__init__.py +23 -0
angr/engines/light/data.py +681 -0
angr/engines/light/engine.py +1297 -0
angr/engines/pcode/__init__.py +9 -0
angr/engines/pcode/behavior.py +998 -0
angr/engines/pcode/cc.py +148 -0
angr/engines/pcode/emulate.py +440 -0
angr/engines/pcode/engine.py +242 -0
angr/engines/pcode/lifter.py +1428 -0
angr/engines/procedure.py +70 -0
angr/engines/soot/__init__.py +5 -0
angr/engines/soot/engine.py +410 -0
angr/engines/soot/exceptions.py +17 -0
angr/engines/soot/expressions/__init__.py +87 -0
angr/engines/soot/expressions/arrayref.py +22 -0
angr/engines/soot/expressions/base.py +21 -0
angr/engines/soot/expressions/binop.py +28 -0
angr/engines/soot/expressions/cast.py +22 -0
angr/engines/soot/expressions/condition.py +35 -0
angr/engines/soot/expressions/constants.py +47 -0
angr/engines/soot/expressions/instanceOf.py +15 -0
angr/engines/soot/expressions/instancefieldref.py +8 -0
angr/engines/soot/expressions/invoke.py +114 -0
angr/engines/soot/expressions/length.py +8 -0
angr/engines/soot/expressions/local.py +8 -0
angr/engines/soot/expressions/new.py +16 -0
angr/engines/soot/expressions/newArray.py +54 -0
angr/engines/soot/expressions/newMultiArray.py +86 -0
angr/engines/soot/expressions/paramref.py +8 -0
angr/engines/soot/expressions/phi.py +30 -0
angr/engines/soot/expressions/staticfieldref.py +8 -0
angr/engines/soot/expressions/thisref.py +7 -0
angr/engines/soot/expressions/unsupported.py +7 -0
angr/engines/soot/field_dispatcher.py +46 -0
angr/engines/soot/method_dispatcher.py +46 -0
angr/engines/soot/statements/__init__.py +44 -0
angr/engines/soot/statements/assign.py +30 -0
angr/engines/soot/statements/base.py +79 -0
angr/engines/soot/statements/goto.py +14 -0
angr/engines/soot/statements/identity.py +15 -0
angr/engines/soot/statements/if_.py +19 -0
angr/engines/soot/statements/invoke.py +12 -0
angr/engines/soot/statements/return_.py +20 -0
angr/engines/soot/statements/switch.py +41 -0
angr/engines/soot/statements/throw.py +15 -0
angr/engines/soot/values/__init__.py +38 -0
angr/engines/soot/values/arrayref.py +122 -0
angr/engines/soot/values/base.py +7 -0
angr/engines/soot/values/constants.py +18 -0
angr/engines/soot/values/instancefieldref.py +44 -0
angr/engines/soot/values/local.py +18 -0
angr/engines/soot/values/paramref.py +18 -0
angr/engines/soot/values/staticfieldref.py +38 -0
angr/engines/soot/values/strref.py +38 -0
angr/engines/soot/values/thisref.py +149 -0
angr/engines/successors.py +608 -0
angr/engines/syscall.py +51 -0
angr/engines/unicorn.py +490 -0
angr/engines/vex/__init__.py +20 -0
angr/engines/vex/claripy/__init__.py +5 -0
angr/engines/vex/claripy/ccall.py +2097 -0
angr/engines/vex/claripy/datalayer.py +141 -0
angr/engines/vex/claripy/irop.py +1276 -0
angr/engines/vex/heavy/__init__.py +16 -0
angr/engines/vex/heavy/actions.py +231 -0
angr/engines/vex/heavy/concretizers.py +403 -0
angr/engines/vex/heavy/dirty.py +466 -0
angr/engines/vex/heavy/heavy.py +370 -0
angr/engines/vex/heavy/inspect.py +52 -0
angr/engines/vex/heavy/resilience.py +85 -0
angr/engines/vex/heavy/super_fastpath.py +34 -0
angr/engines/vex/lifter.py +420 -0
angr/engines/vex/light/__init__.py +11 -0
angr/engines/vex/light/light.py +551 -0
angr/engines/vex/light/resilience.py +74 -0
angr/engines/vex/light/slicing.py +52 -0
angr/errors.py +611 -0
angr/exploration_techniques/__init__.py +53 -0
angr/exploration_techniques/base.py +126 -0
angr/exploration_techniques/bucketizer.py +94 -0
angr/exploration_techniques/common.py +56 -0
angr/exploration_techniques/dfs.py +37 -0
angr/exploration_techniques/director.py +520 -0
angr/exploration_techniques/driller_core.py +100 -0
angr/exploration_techniques/explorer.py +152 -0
angr/exploration_techniques/lengthlimiter.py +22 -0
angr/exploration_techniques/local_loop_seer.py +65 -0
angr/exploration_techniques/loop_seer.py +236 -0
angr/exploration_techniques/manual_mergepoint.py +82 -0
angr/exploration_techniques/memory_watcher.py +43 -0
angr/exploration_techniques/oppologist.py +92 -0
angr/exploration_techniques/slicecutor.py +118 -0
angr/exploration_techniques/spiller.py +280 -0
angr/exploration_techniques/spiller_db.py +27 -0
angr/exploration_techniques/stochastic.py +56 -0
angr/exploration_techniques/stub_stasher.py +19 -0
angr/exploration_techniques/suggestions.py +159 -0
angr/exploration_techniques/tech_builder.py +49 -0
angr/exploration_techniques/threading.py +69 -0
angr/exploration_techniques/timeout.py +34 -0
angr/exploration_techniques/tracer.py +1098 -0
angr/exploration_techniques/unique.py +106 -0
angr/exploration_techniques/veritesting.py +37 -0
angr/factory.py +413 -0
angr/flirt/__init__.py +124 -0
angr/flirt/build_sig.py +305 -0
angr/graph_utils.py +0 -0
angr/keyed_region.py +525 -0
angr/knowledge_base.py +146 -0
angr/knowledge_plugins/__init__.py +43 -0
angr/knowledge_plugins/callsite_prototypes.py +95 -0
angr/knowledge_plugins/cfg/__init__.py +18 -0
angr/knowledge_plugins/cfg/cfg_manager.py +95 -0
angr/knowledge_plugins/cfg/cfg_model.py +1043 -0
angr/knowledge_plugins/cfg/cfg_node.py +536 -0
angr/knowledge_plugins/cfg/indirect_jump.py +131 -0
angr/knowledge_plugins/cfg/memory_data.py +156 -0
angr/knowledge_plugins/comments.py +16 -0
angr/knowledge_plugins/custom_strings.py +38 -0
angr/knowledge_plugins/data.py +22 -0
angr/knowledge_plugins/debug_variables.py +216 -0
angr/knowledge_plugins/functions/__init__.py +9 -0
angr/knowledge_plugins/functions/function.py +1830 -0
angr/knowledge_plugins/functions/function_manager.py +621 -0
angr/knowledge_plugins/functions/function_parser.py +360 -0
angr/knowledge_plugins/functions/soot_function.py +128 -0
angr/knowledge_plugins/indirect_jumps.py +35 -0
angr/knowledge_plugins/key_definitions/__init__.py +17 -0
angr/knowledge_plugins/key_definitions/atoms.py +374 -0
angr/knowledge_plugins/key_definitions/constants.py +29 -0
angr/knowledge_plugins/key_definitions/definition.py +216 -0
angr/knowledge_plugins/key_definitions/environment.py +96 -0
angr/knowledge_plugins/key_definitions/heap_address.py +33 -0
angr/knowledge_plugins/key_definitions/key_definition_manager.py +82 -0
angr/knowledge_plugins/key_definitions/live_definitions.py +1020 -0
angr/knowledge_plugins/key_definitions/liveness.py +165 -0
angr/knowledge_plugins/key_definitions/rd_model.py +171 -0
angr/knowledge_plugins/key_definitions/tag.py +78 -0
angr/knowledge_plugins/key_definitions/undefined.py +70 -0
angr/knowledge_plugins/key_definitions/unknown_size.py +86 -0
angr/knowledge_plugins/key_definitions/uses.py +178 -0
angr/knowledge_plugins/labels.py +110 -0
angr/knowledge_plugins/obfuscations.py +40 -0
angr/knowledge_plugins/patches.py +126 -0
angr/knowledge_plugins/plugin.py +24 -0
angr/knowledge_plugins/propagations/__init__.py +10 -0
angr/knowledge_plugins/propagations/prop_value.py +191 -0
angr/knowledge_plugins/propagations/propagation_manager.py +60 -0
angr/knowledge_plugins/propagations/propagation_model.py +80 -0
angr/knowledge_plugins/propagations/states.py +552 -0
angr/knowledge_plugins/structured_code.py +63 -0
angr/knowledge_plugins/types.py +95 -0
angr/knowledge_plugins/variables/__init__.py +8 -0
angr/knowledge_plugins/variables/variable_access.py +113 -0
angr/knowledge_plugins/variables/variable_manager.py +1375 -0
angr/knowledge_plugins/xrefs/__init__.py +12 -0
angr/knowledge_plugins/xrefs/xref.py +150 -0
angr/knowledge_plugins/xrefs/xref_manager.py +127 -0
angr/knowledge_plugins/xrefs/xref_types.py +16 -0
angr/misc/__init__.py +19 -0
angr/misc/ansi.py +47 -0
angr/misc/autoimport.py +90 -0
angr/misc/bug_report.py +126 -0
angr/misc/hookset.py +106 -0
angr/misc/loggers.py +130 -0
angr/misc/picklable_lock.py +46 -0
angr/misc/plugins.py +289 -0
angr/misc/telemetry.py +54 -0
angr/misc/testing.py +24 -0
angr/misc/ux.py +31 -0
angr/procedures/__init__.py +12 -0
angr/procedures/advapi32/__init__.py +0 -0
angr/procedures/cgc/__init__.py +3 -0
angr/procedures/cgc/_terminate.py +11 -0
angr/procedures/cgc/allocate.py +75 -0
angr/procedures/cgc/deallocate.py +67 -0
angr/procedures/cgc/fdwait.py +65 -0
angr/procedures/cgc/random.py +67 -0
angr/procedures/cgc/receive.py +93 -0
angr/procedures/cgc/transmit.py +65 -0
angr/procedures/definitions/__init__.py +1043 -0
angr/procedures/definitions/cgc.py +23 -0
angr/procedures/definitions/common/glibc.json +3516 -0
angr/procedures/definitions/gnulib.py +41 -0
angr/procedures/definitions/libstdcpp.py +25 -0
angr/procedures/definitions/linux_kernel.py +8382 -0
angr/procedures/definitions/linux_loader.py +7 -0
angr/procedures/definitions/macho_libsystem.py +18 -0
angr/procedures/definitions/msvcr.py +25 -0
angr/procedures/definitions/parse_glibc.py +77 -0
angr/procedures/definitions/parse_syscalls_from_local_system.py +54 -0
angr/procedures/definitions/parse_win32json.py +2540 -0
angr/procedures/definitions/types_stl.py +22 -0
angr/procedures/definitions/wdk/api-ms-win-dx-d3dkmt-l1-1-4.json +24 -0
angr/procedures/definitions/wdk/api-ms-win-dx-d3dkmt-l1-1-6.json +18 -0
angr/procedures/definitions/wdk/clfs.json +189 -0
angr/procedures/definitions/wdk/fltmgr.json +813 -0
angr/procedures/definitions/wdk/fwpkclnt.json +24 -0
angr/procedures/definitions/wdk/fwpuclnt.json +453 -0
angr/procedures/definitions/wdk/gdi32.json +528 -0
angr/procedures/definitions/wdk/hal.json +96 -0
angr/procedures/definitions/wdk/ksecdd.json +72 -0
angr/procedures/definitions/wdk/ndis.json +336 -0
angr/procedures/definitions/wdk/ntoskrnl.json +5158 -0
angr/procedures/definitions/wdk/offreg.json +87 -0
angr/procedures/definitions/wdk/pshed.json +33 -0
angr/procedures/definitions/wdk/secur32.json +39 -0
angr/procedures/definitions/wdk/vhfum.json +30 -0
angr/procedures/definitions/win32/_types_win32.json +34480 -0
angr/procedures/definitions/win32/aclui.json +24 -0
angr/procedures/definitions/win32/activeds.json +81 -0
angr/procedures/definitions/win32/advapi32.json +2505 -0
angr/procedures/definitions/win32/advpack.json +165 -0
angr/procedures/definitions/win32/amsi.json +36 -0
angr/procedures/definitions/win32/api-ms-win-appmodel-runtime-l1-1-1.json +45 -0
angr/procedures/definitions/win32/api-ms-win-appmodel-runtime-l1-1-3.json +30 -0
angr/procedures/definitions/win32/api-ms-win-appmodel-runtime-l1-1-6.json +18 -0
angr/procedures/definitions/win32/api-ms-win-core-apiquery-l2-1-0.json +18 -0
angr/procedures/definitions/win32/api-ms-win-core-backgroundtask-l1-1-0.json +18 -0
angr/procedures/definitions/win32/api-ms-win-core-comm-l1-1-1.json +18 -0
angr/procedures/definitions/win32/api-ms-win-core-comm-l1-1-2.json +18 -0
angr/procedures/definitions/win32/api-ms-win-core-enclave-l1-1-1.json +24 -0
angr/procedures/definitions/win32/api-ms-win-core-errorhandling-l1-1-3.json +18 -0
angr/procedures/definitions/win32/api-ms-win-core-featurestaging-l1-1-0.json +30 -0
angr/procedures/definitions/win32/api-ms-win-core-featurestaging-l1-1-1.json +18 -0
angr/procedures/definitions/win32/api-ms-win-core-file-fromapp-l1-1-0.json +48 -0
angr/procedures/definitions/win32/api-ms-win-core-handle-l1-1-0.json +18 -0
angr/procedures/definitions/win32/api-ms-win-core-ioring-l1-1-0.json +51 -0
angr/procedures/definitions/win32/api-ms-win-core-marshal-l1-1-0.json +27 -0
angr/procedures/definitions/win32/api-ms-win-core-memory-l1-1-3.json +27 -0
angr/procedures/definitions/win32/api-ms-win-core-memory-l1-1-4.json +18 -0
angr/procedures/definitions/win32/api-ms-win-core-memory-l1-1-5.json +24 -0
angr/procedures/definitions/win32/api-ms-win-core-memory-l1-1-6.json +27 -0
angr/procedures/definitions/win32/api-ms-win-core-memory-l1-1-7.json +21 -0
angr/procedures/definitions/win32/api-ms-win-core-memory-l1-1-8.json +24 -0
angr/procedures/definitions/win32/api-ms-win-core-path-l1-1-0.json +81 -0
angr/procedures/definitions/win32/api-ms-win-core-psm-appnotify-l1-1-0.json +21 -0
angr/procedures/definitions/win32/api-ms-win-core-psm-appnotify-l1-1-1.json +21 -0
angr/procedures/definitions/win32/api-ms-win-core-realtime-l1-1-1.json +24 -0
angr/procedures/definitions/win32/api-ms-win-core-realtime-l1-1-2.json +24 -0
angr/procedures/definitions/win32/api-ms-win-core-slapi-l1-1-0.json +18 -0
angr/procedures/definitions/win32/api-ms-win-core-state-helpers-l1-1-0.json +18 -0
angr/procedures/definitions/win32/api-ms-win-core-synch-l1-2-0.json +24 -0
angr/procedures/definitions/win32/api-ms-win-core-sysinfo-l1-2-0.json +18 -0
angr/procedures/definitions/win32/api-ms-win-core-sysinfo-l1-2-3.json +21 -0
angr/procedures/definitions/win32/api-ms-win-core-sysinfo-l1-2-4.json +21 -0
angr/procedures/definitions/win32/api-ms-win-core-sysinfo-l1-2-6.json +18 -0
angr/procedures/definitions/win32/api-ms-win-core-util-l1-1-1.json +21 -0
angr/procedures/definitions/win32/api-ms-win-core-wow64-l1-1-1.json +24 -0
angr/procedures/definitions/win32/api-ms-win-devices-query-l1-1-0.json +42 -0
angr/procedures/definitions/win32/api-ms-win-devices-query-l1-1-1.json +30 -0
angr/procedures/definitions/win32/api-ms-win-dx-d3dkmt-l1-1-0.json +18 -0
angr/procedures/definitions/win32/api-ms-win-gaming-deviceinformation-l1-1-0.json +18 -0
angr/procedures/definitions/win32/api-ms-win-gaming-expandedresources-l1-1-0.json +24 -0
angr/procedures/definitions/win32/api-ms-win-gaming-tcui-l1-1-0.json +36 -0
angr/procedures/definitions/win32/api-ms-win-gaming-tcui-l1-1-1.json +21 -0
angr/procedures/definitions/win32/api-ms-win-gaming-tcui-l1-1-2.json +36 -0
angr/procedures/definitions/win32/api-ms-win-gaming-tcui-l1-1-3.json +21 -0
angr/procedures/definitions/win32/api-ms-win-gaming-tcui-l1-1-4.json +39 -0
angr/procedures/definitions/win32/api-ms-win-mm-misc-l1-1-1.json +18 -0
angr/procedures/definitions/win32/api-ms-win-net-isolation-l1-1-0.json +39 -0
angr/procedures/definitions/win32/api-ms-win-security-base-l1-2-2.json +18 -0
angr/procedures/definitions/win32/api-ms-win-security-isolatedcontainer-l1-1-0.json +18 -0
angr/procedures/definitions/win32/api-ms-win-security-isolatedcontainer-l1-1-1.json +18 -0
angr/procedures/definitions/win32/api-ms-win-service-core-l1-1-3.json +18 -0
angr/procedures/definitions/win32/api-ms-win-service-core-l1-1-4.json +18 -0
angr/procedures/definitions/win32/api-ms-win-service-core-l1-1-5.json +21 -0
angr/procedures/definitions/win32/api-ms-win-shcore-scaling-l1-1-0.json +24 -0
angr/procedures/definitions/win32/api-ms-win-shcore-scaling-l1-1-1.json +33 -0
angr/procedures/definitions/win32/api-ms-win-shcore-scaling-l1-1-2.json +18 -0
angr/procedures/definitions/win32/api-ms-win-wsl-api-l1-1-0.json +36 -0
angr/procedures/definitions/win32/apphelp.json +18 -0
angr/procedures/definitions/win32/authz.json +114 -0
angr/procedures/definitions/win32/avicap32.json +27 -0
angr/procedures/definitions/win32/avifil32.json +195 -0
angr/procedures/definitions/win32/avrt.json +57 -0
angr/procedures/definitions/win32/bcp47mrm.json +21 -0
angr/procedures/definitions/win32/bcrypt.json +174 -0
angr/procedures/definitions/win32/bcryptprimitives.json +21 -0
angr/procedures/definitions/win32/bluetoothapis.json +138 -0
angr/procedures/definitions/win32/bthprops_cpl.json +33 -0
angr/procedures/definitions/win32/cabinet.json +81 -0
angr/procedures/definitions/win32/certadm.json +69 -0
angr/procedures/definitions/win32/certpoleng.json +39 -0
angr/procedures/definitions/win32/cfgmgr32.json +732 -0
angr/procedures/definitions/win32/chakra.json +270 -0
angr/procedures/definitions/win32/cldapi.json +123 -0
angr/procedures/definitions/win32/clfsw32.json +192 -0
angr/procedures/definitions/win32/clusapi.json +855 -0
angr/procedures/definitions/win32/comctl32.json +360 -0
angr/procedures/definitions/win32/comdlg32.json +78 -0
angr/procedures/definitions/win32/compstui.json +27 -0
angr/procedures/definitions/win32/computecore.json +177 -0
angr/procedures/definitions/win32/computenetwork.json +144 -0
angr/procedures/definitions/win32/computestorage.json +51 -0
angr/procedures/definitions/win32/comsvcs.json +36 -0
angr/procedures/definitions/win32/credui.json +72 -0
angr/procedures/definitions/win32/crypt32.json +702 -0
angr/procedures/definitions/win32/cryptnet.json +30 -0
angr/procedures/definitions/win32/cryptui.json +45 -0
angr/procedures/definitions/win32/cryptxml.json +72 -0
angr/procedures/definitions/win32/cscapi.json +27 -0
angr/procedures/definitions/win32/d2d1.json +54 -0
angr/procedures/definitions/win32/d3d10.json +96 -0
angr/procedures/definitions/win32/d3d10_1.json +21 -0
angr/procedures/definitions/win32/d3d11.json +24 -0
angr/procedures/definitions/win32/d3d12.json +39 -0
angr/procedures/definitions/win32/d3d9.json +48 -0
angr/procedures/definitions/win32/d3dcompiler_47.json +93 -0
angr/procedures/definitions/win32/d3dcsx.json +42 -0
angr/procedures/definitions/win32/davclnt.json +69 -0
angr/procedures/definitions/win32/dbgeng.json +27 -0
angr/procedures/definitions/win32/dbghelp.json +663 -0
angr/procedures/definitions/win32/dbgmodel.json +18 -0
angr/procedures/definitions/win32/dciman32.json +75 -0
angr/procedures/definitions/win32/dcomp.json +51 -0
angr/procedures/definitions/win32/ddraw.json +36 -0
angr/procedures/definitions/win32/deviceaccess.json +18 -0
angr/procedures/definitions/win32/dflayout.json +18 -0
angr/procedures/definitions/win32/dhcpcsvc.json +60 -0
angr/procedures/definitions/win32/dhcpcsvc6.json +33 -0
angr/procedures/definitions/win32/dhcpsapi.json +603 -0
angr/procedures/definitions/win32/diagnosticdataquery.json +120 -0
angr/procedures/definitions/win32/dinput8.json +18 -0
angr/procedures/definitions/win32/directml.json +21 -0
angr/procedures/definitions/win32/dmprocessxmlfiltered.json +18 -0
angr/procedures/definitions/win32/dnsapi.json +207 -0
angr/procedures/definitions/win32/drt.json +63 -0
angr/procedures/definitions/win32/drtprov.json +42 -0
angr/procedures/definitions/win32/drttransport.json +21 -0
angr/procedures/definitions/win32/dsound.json +45 -0
angr/procedures/definitions/win32/dsparse.json +72 -0
angr/procedures/definitions/win32/dsprop.json +36 -0
angr/procedures/definitions/win32/dssec.json +27 -0
angr/procedures/definitions/win32/dsuiext.json +27 -0
angr/procedures/definitions/win32/dwmapi.json +108 -0
angr/procedures/definitions/win32/dwrite.json +18 -0
angr/procedures/definitions/win32/dxcompiler.json +21 -0
angr/procedures/definitions/win32/dxcore.json +18 -0
angr/procedures/definitions/win32/dxgi.json +33 -0
angr/procedures/definitions/win32/dxva2.json +129 -0
angr/procedures/definitions/win32/eappcfg.json +57 -0
angr/procedures/definitions/win32/eappprxy.json +69 -0
angr/procedures/definitions/win32/efswrt.json +21 -0
angr/procedures/definitions/win32/elscore.json +30 -0
angr/procedures/definitions/win32/esent.json +702 -0
angr/procedures/definitions/win32/evr.json +36 -0
angr/procedures/definitions/win32/faultrep.json +27 -0
angr/procedures/definitions/win32/fhsvcctl.json +36 -0
angr/procedures/definitions/win32/firewallapi.json +24 -0
angr/procedures/definitions/win32/fltlib.json +99 -0
angr/procedures/definitions/win32/fontsub.json +21 -0
angr/procedures/definitions/win32/forceinline.json +24 -0
angr/procedures/definitions/win32/fwpuclnt.json +591 -0
angr/procedures/definitions/win32/fxsutility.json +21 -0
angr/procedures/definitions/win32/gdi32.json +1308 -0
angr/procedures/definitions/win32/gdiplus.json +1902 -0
angr/procedures/definitions/win32/glu32.json +171 -0
angr/procedures/definitions/win32/gpedit.json +33 -0
angr/procedures/definitions/win32/hhctrl_ocx.json +21 -0
angr/procedures/definitions/win32/hid.json +150 -0
angr/procedures/definitions/win32/hlink.json +99 -0
angr/procedures/definitions/win32/hrtfapo.json +18 -0
angr/procedures/definitions/win32/httpapi.json +144 -0
angr/procedures/definitions/win32/icm32.json +78 -0
angr/procedures/definitions/win32/icmui.json +21 -0
angr/procedures/definitions/win32/icu.json +3090 -0
angr/procedures/definitions/win32/ieframe.json +102 -0
angr/procedures/definitions/win32/imagehlp.json +84 -0
angr/procedures/definitions/win32/imgutil.json +42 -0
angr/procedures/definitions/win32/imm32.json +261 -0
angr/procedures/definitions/win32/infocardapi.json +66 -0
angr/procedures/definitions/win32/inkobjcore.json +96 -0
angr/procedures/definitions/win32/iphlpapi.json +618 -0
angr/procedures/definitions/win32/iscsidsc.json +252 -0
angr/procedures/definitions/win32/isolatedwindowsenvironmentutils.json +21 -0
angr/procedures/definitions/win32/kernel32.json +4566 -0
angr/procedures/definitions/win32/kernelbase.json +33 -0
angr/procedures/definitions/win32/keycredmgr.json +27 -0
angr/procedures/definitions/win32/ksproxy_ax.json +33 -0
angr/procedures/definitions/win32/ksuser.json +39 -0
angr/procedures/definitions/win32/ktmw32.json +132 -0
angr/procedures/definitions/win32/licenseprotection.json +21 -0
angr/procedures/definitions/win32/loadperf.json +51 -0
angr/procedures/definitions/win32/magnification.json +72 -0
angr/procedures/definitions/win32/mapi32.json +213 -0
angr/procedures/definitions/win32/mdmlocalmanagement.json +24 -0
angr/procedures/definitions/win32/mdmregistration.json +60 -0
angr/procedures/definitions/win32/mf.json +201 -0
angr/procedures/definitions/win32/mfcore.json +21 -0
angr/procedures/definitions/win32/mfplat.json +450 -0
angr/procedures/definitions/win32/mfplay.json +18 -0
angr/procedures/definitions/win32/mfreadwrite.json +30 -0
angr/procedures/definitions/win32/mfsensorgroup.json +45 -0
angr/procedures/definitions/win32/mfsrcsnk.json +21 -0
angr/procedures/definitions/win32/mgmtapi.json +42 -0
angr/procedures/definitions/win32/mi.json +18 -0
angr/procedures/definitions/win32/mmdevapi.json +18 -0
angr/procedures/definitions/win32/mpr.json +156 -0
angr/procedures/definitions/win32/mprapi.json +351 -0
angr/procedures/definitions/win32/mqrt.json +117 -0
angr/procedures/definitions/win32/mrmsupport.json +96 -0
angr/procedures/definitions/win32/msacm32.json +141 -0
angr/procedures/definitions/win32/msajapi.json +1656 -0
angr/procedures/definitions/win32/mscms.json +252 -0
angr/procedures/definitions/win32/mscoree.json +96 -0
angr/procedures/definitions/win32/msctfmonitor.json +24 -0
angr/procedures/definitions/win32/msdelta.json +63 -0
angr/procedures/definitions/win32/msdmo.json +48 -0
angr/procedures/definitions/win32/msdrm.json +267 -0
angr/procedures/definitions/win32/msi.json +807 -0
angr/procedures/definitions/win32/msimg32.json +24 -0
angr/procedures/definitions/win32/mspatcha.json +63 -0
angr/procedures/definitions/win32/mspatchc.json +42 -0
angr/procedures/definitions/win32/msports.json +36 -0
angr/procedures/definitions/win32/msrating.json +72 -0
angr/procedures/definitions/win32/mssign32.json +45 -0
angr/procedures/definitions/win32/mstask.json +21 -0
angr/procedures/definitions/win32/msvfw32.json +144 -0
angr/procedures/definitions/win32/mswsock.json +63 -0
angr/procedures/definitions/win32/mtxdm.json +18 -0
angr/procedures/definitions/win32/ncrypt.json +132 -0
angr/procedures/definitions/win32/ndfapi.json +63 -0
angr/procedures/definitions/win32/netapi32.json +633 -0
angr/procedures/definitions/win32/netsh.json +39 -0
angr/procedures/definitions/win32/netshell.json +21 -0
angr/procedures/definitions/win32/newdev.json +48 -0
angr/procedures/definitions/win32/ninput.json +105 -0
angr/procedures/definitions/win32/normaliz.json +21 -0
angr/procedures/definitions/win32/ntdll.json +234 -0
angr/procedures/definitions/win32/ntdllk.json +18 -0
angr/procedures/definitions/win32/ntdsapi.json +258 -0
angr/procedures/definitions/win32/ntlanman.json +45 -0
angr/procedures/definitions/win32/odbc32.json +477 -0
angr/procedures/definitions/win32/odbcbcp.json +96 -0
angr/procedures/definitions/win32/ole32.json +966 -0
angr/procedures/definitions/win32/oleacc.json +66 -0
angr/procedures/definitions/win32/oleaut32.json +1230 -0
angr/procedures/definitions/win32/oledlg.json +84 -0
angr/procedures/definitions/win32/ondemandconnroutehelper.json +30 -0
angr/procedures/definitions/win32/opengl32.json +1080 -0
angr/procedures/definitions/win32/opmxbox.json +24 -0
angr/procedures/definitions/win32/p2p.json +339 -0
angr/procedures/definitions/win32/p2pgraph.json +126 -0
angr/procedures/definitions/win32/pdh.json +309 -0
angr/procedures/definitions/win32/peerdist.json +99 -0
angr/procedures/definitions/win32/powrprof.json +267 -0
angr/procedures/definitions/win32/prntvpt.json +48 -0
angr/procedures/definitions/win32/projectedfslib.json +72 -0
angr/procedures/definitions/win32/propsys.json +669 -0
angr/procedures/definitions/win32/psapi.json +96 -0
angr/procedures/definitions/win32/quartz.json +21 -0
angr/procedures/definitions/win32/query.json +27 -0
angr/procedures/definitions/win32/qwave.json +48 -0
angr/procedures/definitions/win32/rasapi32.json +267 -0
angr/procedures/definitions/win32/rasdlg.json +33 -0
angr/procedures/definitions/win32/resutils.json +375 -0
angr/procedures/definitions/win32/rpcns4.json +198 -0
angr/procedures/definitions/win32/rpcproxy.json +27 -0
angr/procedures/definitions/win32/rpcrt4.json +1356 -0
angr/procedures/definitions/win32/rstrtmgr.json +48 -0
angr/procedures/definitions/win32/rtm.json +243 -0
angr/procedures/definitions/win32/rtutils.json +138 -0
angr/procedures/definitions/win32/rtworkq.json +114 -0
angr/procedures/definitions/win32/sas.json +18 -0
angr/procedures/definitions/win32/scarddlg.json +30 -0
angr/procedures/definitions/win32/schannel.json +42 -0
angr/procedures/definitions/win32/sechost.json +21 -0
angr/procedures/definitions/win32/secur32.json +282 -0
angr/procedures/definitions/win32/sensapi.json +24 -0
angr/procedures/definitions/win32/sensorsutilsv2.json +135 -0
angr/procedures/definitions/win32/setupapi.json +1017 -0
angr/procedures/definitions/win32/sfc.json +33 -0
angr/procedures/definitions/win32/shdocvw.json +24 -0
angr/procedures/definitions/win32/shell32.json +747 -0
angr/procedures/definitions/win32/shlwapi.json +1095 -0
angr/procedures/definitions/win32/slc.json +111 -0
angr/procedures/definitions/win32/slcext.json +27 -0
angr/procedures/definitions/win32/slwga.json +18 -0
angr/procedures/definitions/win32/snmpapi.json +93 -0
angr/procedures/definitions/win32/spoolss.json +93 -0
angr/procedures/definitions/win32/srclient.json +18 -0
angr/procedures/definitions/win32/srpapi.json +48 -0
angr/procedures/definitions/win32/sspicli.json +36 -0
angr/procedures/definitions/win32/sti.json +18 -0
angr/procedures/definitions/win32/t2embed.json +57 -0
angr/procedures/definitions/win32/tapi32.json +762 -0
angr/procedures/definitions/win32/tbs.json +57 -0
angr/procedures/definitions/win32/tdh.json +96 -0
angr/procedures/definitions/win32/tokenbinding.json +45 -0
angr/procedures/definitions/win32/traffic.json +75 -0
angr/procedures/definitions/win32/txfw32.json +42 -0
angr/procedures/definitions/win32/ualapi.json +27 -0
angr/procedures/definitions/win32/uiautomationcore.json +309 -0
angr/procedures/definitions/win32/urlmon.json +246 -0
angr/procedures/definitions/win32/user32.json +2298 -0
angr/procedures/definitions/win32/userenv.json +147 -0
angr/procedures/definitions/win32/usp10.json +135 -0
angr/procedures/definitions/win32/uxtheme.json +246 -0
angr/procedures/definitions/win32/verifier.json +18 -0
angr/procedures/definitions/win32/version.json +57 -0
angr/procedures/definitions/win32/vertdll.json +36 -0
angr/procedures/definitions/win32/virtdisk.json +102 -0
angr/procedures/definitions/win32/vmdevicehost.json +54 -0
angr/procedures/definitions/win32/vmsavedstatedumpprovider.json +144 -0
angr/procedures/definitions/win32/vssapi.json +18 -0
angr/procedures/definitions/win32/wcmapi.json +30 -0
angr/procedures/definitions/win32/wdsbp.json +36 -0
angr/procedures/definitions/win32/wdsclientapi.json +126 -0
angr/procedures/definitions/win32/wdsmc.json +33 -0
angr/procedures/definitions/win32/wdspxe.json +108 -0
angr/procedures/definitions/win32/wdstptc.json +54 -0
angr/procedures/definitions/win32/webauthn.json +54 -0
angr/procedures/definitions/win32/webservices.json +594 -0
angr/procedures/definitions/win32/websocket.json +54 -0
angr/procedures/definitions/win32/wecapi.json +60 -0
angr/procedures/definitions/win32/wer.json +78 -0
angr/procedures/definitions/win32/wevtapi.json +120 -0
angr/procedures/definitions/win32/winbio.json +177 -0
angr/procedures/definitions/win32/windows_ai_machinelearning.json +18 -0
angr/procedures/definitions/win32/windows_media_mediacontrol.json +39 -0
angr/procedures/definitions/win32/windows_networking.json +18 -0
angr/procedures/definitions/win32/windows_ui_xaml.json +21 -0
angr/procedures/definitions/win32/windowscodecs.json +42 -0
angr/procedures/definitions/win32/winfax.json +183 -0
angr/procedures/definitions/win32/winhttp.json +183 -0
angr/procedures/definitions/win32/winhvemulation.json +27 -0
angr/procedures/definitions/win32/winhvplatform.json +213 -0
angr/procedures/definitions/win32/wininet.json +903 -0
angr/procedures/definitions/win32/winml.json +18 -0
angr/procedures/definitions/win32/winmm.json +543 -0
angr/procedures/definitions/win32/winscard.json +225 -0
angr/procedures/definitions/win32/winspool_drv.json +531 -0
angr/procedures/definitions/win32/wintrust.json +195 -0
angr/procedures/definitions/win32/winusb.json +117 -0
angr/procedures/definitions/win32/wlanapi.json +195 -0
angr/procedures/definitions/win32/wlanui.json +18 -0
angr/procedures/definitions/win32/wldap32.json +744 -0
angr/procedures/definitions/win32/wldp.json +42 -0
angr/procedures/definitions/win32/wmvcore.json +48 -0
angr/procedures/definitions/win32/wnvapi.json +21 -0
angr/procedures/definitions/win32/wofutil.json +48 -0
angr/procedures/definitions/win32/ws2_32.json +495 -0
angr/procedures/definitions/win32/wscapi.json +33 -0
angr/procedures/definitions/win32/wsclient.json +24 -0
angr/procedures/definitions/win32/wsdapi.json +111 -0
angr/procedures/definitions/win32/wsmsvc.json +114 -0
angr/procedures/definitions/win32/wsnmp32.json +162 -0
angr/procedures/definitions/win32/wtsapi32.json +204 -0
angr/procedures/definitions/win32/xaudio2_8.json +27 -0
angr/procedures/definitions/win32/xinput1_4.json +36 -0
angr/procedures/definitions/win32/xmllite.json +33 -0
angr/procedures/definitions/win32/xolehlp.json +27 -0
angr/procedures/definitions/win32/xpsprint.json +21 -0
angr/procedures/glibc/__ctype_b_loc.py +21 -0
angr/procedures/glibc/__ctype_tolower_loc.py +21 -0
angr/procedures/glibc/__ctype_toupper_loc.py +21 -0
angr/procedures/glibc/__errno_location.py +7 -0
angr/procedures/glibc/__init__.py +3 -0
angr/procedures/glibc/__libc_init.py +37 -0
angr/procedures/glibc/__libc_start_main.py +301 -0
angr/procedures/glibc/dynamic_loading.py +20 -0
angr/procedures/glibc/scanf.py +19 -0
angr/procedures/glibc/sscanf.py +10 -0
angr/procedures/gnulib/__init__.py +3 -0
angr/procedures/gnulib/xalloc_die.py +14 -0
angr/procedures/gnulib/xstrtol_fatal.py +14 -0
angr/procedures/java/__init__.py +42 -0
angr/procedures/java/unconstrained.py +65 -0
angr/procedures/java_io/__init__.py +0 -0
angr/procedures/java_io/read.py +12 -0
angr/procedures/java_io/write.py +17 -0
angr/procedures/java_jni/__init__.py +482 -0
angr/procedures/java_jni/array_operations.py +312 -0
angr/procedures/java_jni/class_and_interface_operations.py +31 -0
angr/procedures/java_jni/field_access.py +173 -0
angr/procedures/java_jni/global_and_local_refs.py +57 -0
angr/procedures/java_jni/method_calls.py +365 -0
angr/procedures/java_jni/not_implemented.py +26 -0
angr/procedures/java_jni/object_operations.py +94 -0
angr/procedures/java_jni/string_operations.py +87 -0
angr/procedures/java_jni/version_information.py +12 -0
angr/procedures/java_lang/__init__.py +0 -0
angr/procedures/java_lang/character.py +30 -0
angr/procedures/java_lang/double.py +24 -0
angr/procedures/java_lang/exit.py +13 -0
angr/procedures/java_lang/getsimplename.py +18 -0
angr/procedures/java_lang/integer.py +43 -0
angr/procedures/java_lang/load_library.py +9 -0
angr/procedures/java_lang/math.py +15 -0
angr/procedures/java_lang/string.py +78 -0
angr/procedures/java_lang/stringbuilder.py +44 -0
angr/procedures/java_lang/system.py +18 -0
angr/procedures/java_util/__init__.py +0 -0
angr/procedures/java_util/collection.py +35 -0
angr/procedures/java_util/iterator.py +46 -0
angr/procedures/java_util/list.py +99 -0
angr/procedures/java_util/map.py +131 -0
angr/procedures/java_util/random.py +14 -0
angr/procedures/java_util/scanner_nextline.py +23 -0
angr/procedures/libc/__init__.py +3 -0
angr/procedures/libc/abort.py +9 -0
angr/procedures/libc/access.py +13 -0
angr/procedures/libc/atoi.py +14 -0
angr/procedures/libc/atol.py +13 -0
angr/procedures/libc/calloc.py +8 -0
angr/procedures/libc/closelog.py +10 -0
angr/procedures/libc/err.py +14 -0
angr/procedures/libc/error.py +54 -0
angr/procedures/libc/exit.py +11 -0
angr/procedures/libc/fclose.py +19 -0
angr/procedures/libc/feof.py +21 -0
angr/procedures/libc/fflush.py +16 -0
angr/procedures/libc/fgetc.py +27 -0
angr/procedures/libc/fgets.py +69 -0
angr/procedures/libc/fopen.py +63 -0
angr/procedures/libc/fprintf.py +25 -0
angr/procedures/libc/fputc.py +23 -0
angr/procedures/libc/fputs.py +24 -0
angr/procedures/libc/fread.py +24 -0
angr/procedures/libc/free.py +9 -0
angr/procedures/libc/fscanf.py +20 -0
angr/procedures/libc/fseek.py +34 -0
angr/procedures/libc/ftell.py +22 -0
angr/procedures/libc/fwrite.py +19 -0
angr/procedures/libc/getchar.py +13 -0
angr/procedures/libc/getdelim.py +99 -0
angr/procedures/libc/getegid.py +8 -0
angr/procedures/libc/geteuid.py +8 -0
angr/procedures/libc/getgid.py +8 -0
angr/procedures/libc/gets.py +68 -0
angr/procedures/libc/getuid.py +8 -0
angr/procedures/libc/malloc.py +12 -0
angr/procedures/libc/memcmp.py +69 -0
angr/procedures/libc/memcpy.py +45 -0
angr/procedures/libc/memset.py +72 -0
angr/procedures/libc/openlog.py +10 -0
angr/procedures/libc/perror.py +13 -0
angr/procedures/libc/printf.py +34 -0
angr/procedures/libc/putchar.py +13 -0
angr/procedures/libc/puts.py +19 -0
angr/procedures/libc/rand.py +8 -0
angr/procedures/libc/realloc.py +8 -0
angr/procedures/libc/rewind.py +12 -0
angr/procedures/libc/scanf.py +20 -0
angr/procedures/libc/setbuf.py +9 -0
angr/procedures/libc/setvbuf.py +7 -0
angr/procedures/libc/snprintf.py +36 -0
angr/procedures/libc/sprintf.py +25 -0
angr/procedures/libc/srand.py +7 -0
angr/procedures/libc/sscanf.py +13 -0
angr/procedures/libc/stpcpy.py +18 -0
angr/procedures/libc/strcat.py +14 -0
angr/procedures/libc/strchr.py +48 -0
angr/procedures/libc/strcmp.py +31 -0
angr/procedures/libc/strcpy.py +13 -0
angr/procedures/libc/strlen.py +114 -0
angr/procedures/libc/strncat.py +19 -0
angr/procedures/libc/strncmp.py +183 -0
angr/procedures/libc/strncpy.py +22 -0
angr/procedures/libc/strnlen.py +13 -0
angr/procedures/libc/strstr.py +101 -0
angr/procedures/libc/strtol.py +261 -0
angr/procedures/libc/strtoul.py +9 -0
angr/procedures/libc/system.py +13 -0
angr/procedures/libc/time.py +9 -0
angr/procedures/libc/tmpnam.py +20 -0
angr/procedures/libc/tolower.py +10 -0
angr/procedures/libc/toupper.py +10 -0
angr/procedures/libc/ungetc.py +20 -0
angr/procedures/libc/vsnprintf.py +17 -0
angr/procedures/libc/wchar.py +16 -0
angr/procedures/libstdcpp/__init__.py +0 -0
angr/procedures/libstdcpp/_unwind_resume.py +11 -0
angr/procedures/libstdcpp/std____throw_bad_alloc.py +13 -0
angr/procedures/libstdcpp/std____throw_bad_cast.py +13 -0
angr/procedures/libstdcpp/std____throw_length_error.py +13 -0
angr/procedures/libstdcpp/std____throw_logic_error.py +13 -0
angr/procedures/libstdcpp/std__terminate.py +13 -0
angr/procedures/linux_kernel/__init__.py +3 -0
angr/procedures/linux_kernel/access.py +18 -0
angr/procedures/linux_kernel/arch_prctl.py +34 -0
angr/procedures/linux_kernel/arm_user_helpers.py +59 -0
angr/procedures/linux_kernel/brk.py +18 -0
angr/procedures/linux_kernel/cwd.py +28 -0
angr/procedures/linux_kernel/fstat.py +138 -0
angr/procedures/linux_kernel/fstat64.py +170 -0
angr/procedures/linux_kernel/futex.py +17 -0
angr/procedures/linux_kernel/getegid.py +17 -0
angr/procedures/linux_kernel/geteuid.py +17 -0
angr/procedures/linux_kernel/getgid.py +17 -0
angr/procedures/linux_kernel/getpid.py +14 -0
angr/procedures/linux_kernel/getrlimit.py +24 -0
angr/procedures/linux_kernel/gettid.py +9 -0
angr/procedures/linux_kernel/getuid.py +17 -0
angr/procedures/linux_kernel/iovec.py +47 -0
angr/procedures/linux_kernel/lseek.py +42 -0
angr/procedures/linux_kernel/mmap.py +16 -0
angr/procedures/linux_kernel/mprotect.py +42 -0
angr/procedures/linux_kernel/munmap.py +8 -0
angr/procedures/linux_kernel/openat.py +26 -0
angr/procedures/linux_kernel/set_tid_address.py +8 -0
angr/procedures/linux_kernel/sigaction.py +19 -0
angr/procedures/linux_kernel/sigprocmask.py +23 -0
angr/procedures/linux_kernel/stat.py +23 -0
angr/procedures/linux_kernel/sysinfo.py +59 -0
angr/procedures/linux_kernel/tgkill.py +10 -0
angr/procedures/linux_kernel/time.py +34 -0
angr/procedures/linux_kernel/uid.py +30 -0
angr/procedures/linux_kernel/uname.py +29 -0
angr/procedures/linux_kernel/unlink.py +22 -0
angr/procedures/linux_kernel/vsyscall.py +16 -0
angr/procedures/linux_loader/__init__.py +3 -0
angr/procedures/linux_loader/_dl_initial_error_catch_tsd.py +7 -0
angr/procedures/linux_loader/_dl_rtld_lock.py +15 -0
angr/procedures/linux_loader/sim_loader.py +54 -0
angr/procedures/linux_loader/tls.py +40 -0
angr/procedures/msvcr/__getmainargs.py +16 -0
angr/procedures/msvcr/__init__.py +4 -0
angr/procedures/msvcr/_initterm.py +38 -0
angr/procedures/msvcr/fmode.py +31 -0
angr/procedures/ntdll/__init__.py +0 -0
angr/procedures/ntdll/exceptions.py +60 -0
angr/procedures/posix/__init__.py +3 -0
angr/procedures/posix/accept.py +29 -0
angr/procedures/posix/bind.py +13 -0
angr/procedures/posix/bzero.py +9 -0
angr/procedures/posix/chroot.py +27 -0
angr/procedures/posix/close.py +9 -0
angr/procedures/posix/closedir.py +7 -0
angr/procedures/posix/dup.py +56 -0
angr/procedures/posix/fcntl.py +10 -0
angr/procedures/posix/fdopen.py +76 -0
angr/procedures/posix/fileno.py +18 -0
angr/procedures/posix/fork.py +13 -0
angr/procedures/posix/getenv.py +35 -0
angr/procedures/posix/gethostbyname.py +43 -0
angr/procedures/posix/getpass.py +19 -0
angr/procedures/posix/getsockopt.py +11 -0
angr/procedures/posix/htonl.py +11 -0
angr/procedures/posix/htons.py +11 -0
angr/procedures/posix/inet_ntoa.py +59 -0
angr/procedures/posix/listen.py +13 -0
angr/procedures/posix/mmap.py +144 -0
angr/procedures/posix/open.py +18 -0
angr/procedures/posix/opendir.py +10 -0
angr/procedures/posix/poll.py +55 -0
angr/procedures/posix/pread64.py +46 -0
angr/procedures/posix/pthread.py +87 -0
angr/procedures/posix/pwrite64.py +46 -0
angr/procedures/posix/read.py +13 -0
angr/procedures/posix/readdir.py +62 -0
angr/procedures/posix/recv.py +13 -0
angr/procedures/posix/recvfrom.py +13 -0
angr/procedures/posix/select.py +48 -0
angr/procedures/posix/send.py +23 -0
angr/procedures/posix/setsockopt.py +9 -0
angr/procedures/posix/sigaction.py +23 -0
angr/procedures/posix/sim_time.py +48 -0
angr/procedures/posix/sleep.py +8 -0
angr/procedures/posix/socket.py +18 -0
angr/procedures/posix/strcasecmp.py +26 -0
angr/procedures/posix/strdup.py +18 -0
angr/procedures/posix/strtok_r.py +64 -0
angr/procedures/posix/syslog.py +15 -0
angr/procedures/posix/tz.py +9 -0
angr/procedures/posix/unlink.py +11 -0
angr/procedures/posix/usleep.py +8 -0
angr/procedures/posix/write.py +13 -0
angr/procedures/procedure_dict.py +50 -0
angr/procedures/stubs/CallReturn.py +13 -0
angr/procedures/stubs/NoReturnUnconstrained.py +13 -0
angr/procedures/stubs/Nop.py +7 -0
angr/procedures/stubs/PathTerminator.py +9 -0
angr/procedures/stubs/Redirect.py +18 -0
angr/procedures/stubs/ReturnChar.py +11 -0
angr/procedures/stubs/ReturnUnconstrained.py +24 -0
angr/procedures/stubs/UnresolvableCallTarget.py +9 -0
angr/procedures/stubs/UnresolvableJumpTarget.py +9 -0
angr/procedures/stubs/UserHook.py +18 -0
angr/procedures/stubs/__init__.py +3 -0
angr/procedures/stubs/b64_decode.py +15 -0
angr/procedures/stubs/caller.py +14 -0
angr/procedures/stubs/crazy_scanf.py +20 -0
angr/procedures/stubs/format_parser.py +669 -0
angr/procedures/stubs/syscall_stub.py +24 -0
angr/procedures/testing/__init__.py +3 -0
angr/procedures/testing/manyargs.py +9 -0
angr/procedures/testing/retreg.py +8 -0
angr/procedures/tracer/__init__.py +4 -0
angr/procedures/tracer/random.py +9 -0
angr/procedures/tracer/receive.py +23 -0
angr/procedures/tracer/transmit.py +26 -0
angr/procedures/uclibc/__init__.py +3 -0
angr/procedures/uclibc/__uClibc_main.py +10 -0
angr/procedures/win32/EncodePointer.py +7 -0
angr/procedures/win32/ExitProcess.py +9 -0
angr/procedures/win32/GetCommandLine.py +12 -0
angr/procedures/win32/GetCurrentProcessId.py +7 -0
angr/procedures/win32/GetCurrentThreadId.py +7 -0
angr/procedures/win32/GetLastInputInfo.py +40 -0
angr/procedures/win32/GetModuleHandle.py +29 -0
angr/procedures/win32/GetProcessAffinityMask.py +37 -0
angr/procedures/win32/InterlockedExchange.py +15 -0
angr/procedures/win32/IsProcessorFeaturePresent.py +7 -0
angr/procedures/win32/VirtualAlloc.py +114 -0
angr/procedures/win32/VirtualProtect.py +60 -0
angr/procedures/win32/__init__.py +3 -0
angr/procedures/win32/critical_section.py +12 -0
angr/procedures/win32/dynamic_loading.py +104 -0
angr/procedures/win32/file_handles.py +47 -0
angr/procedures/win32/gethostbyname.py +12 -0
angr/procedures/win32/heap.py +45 -0
angr/procedures/win32/is_bad_ptr.py +26 -0
angr/procedures/win32/local_storage.py +88 -0
angr/procedures/win32/mutex.py +11 -0
angr/procedures/win32/sim_time.py +135 -0
angr/procedures/win32/system_paths.py +35 -0
angr/procedures/win32_kernel/ExAllocatePool.py +13 -0
angr/procedures/win32_kernel/ExFreePoolWithTag.py +8 -0
angr/procedures/win32_kernel/__fastfail.py +15 -0
angr/procedures/win32_kernel/__init__.py +3 -0
angr/procedures/win_user32/__init__.py +0 -0
angr/procedures/win_user32/chars.py +15 -0
angr/procedures/win_user32/keyboard.py +14 -0
angr/procedures/win_user32/messagebox.py +49 -0
angr/project.py +860 -0
angr/protos/__init__.py +19 -0
angr/protos/cfg_pb2.py +42 -0
angr/protos/function_pb2.py +38 -0
angr/protos/primitives_pb2.py +59 -0
angr/protos/variables_pb2.py +55 -0
angr/protos/xrefs_pb2.py +36 -0
angr/py.typed +1 -0
angr/rustylib.cpython-311-darwin.so +0 -0
angr/serializable.py +66 -0
angr/sim_manager.py +971 -0
angr/sim_options.py +436 -0
angr/sim_procedure.py +626 -0
angr/sim_state.py +926 -0
angr/sim_state_options.py +403 -0
angr/sim_type.py +4026 -0
angr/sim_variable.py +470 -0
angr/simos/__init__.py +47 -0
angr/simos/cgc.py +153 -0
angr/simos/javavm.py +458 -0
angr/simos/linux.py +509 -0
angr/simos/simos.py +444 -0
angr/simos/snimmuc_nxp.py +149 -0
angr/simos/userland.py +163 -0
angr/simos/windows.py +615 -0
angr/simos/xbox.py +32 -0
angr/slicer.py +352 -0
angr/state_hierarchy.py +262 -0
angr/state_plugins/__init__.py +84 -0
angr/state_plugins/callstack.py +478 -0
angr/state_plugins/cgc.py +155 -0
angr/state_plugins/debug_variables.py +192 -0
angr/state_plugins/filesystem.py +463 -0
angr/state_plugins/gdb.py +148 -0
angr/state_plugins/globals.py +65 -0
angr/state_plugins/heap/__init__.py +15 -0
angr/state_plugins/heap/heap_base.py +128 -0
angr/state_plugins/heap/heap_brk.py +136 -0
angr/state_plugins/heap/heap_freelist.py +213 -0
angr/state_plugins/heap/heap_libc.py +46 -0
angr/state_plugins/heap/heap_ptmalloc.py +620 -0
angr/state_plugins/heap/utils.py +22 -0
angr/state_plugins/history.py +564 -0
angr/state_plugins/inspect.py +375 -0
angr/state_plugins/javavm_classloader.py +134 -0
angr/state_plugins/jni_references.py +95 -0
angr/state_plugins/libc.py +1263 -0
angr/state_plugins/light_registers.py +168 -0
angr/state_plugins/log.py +84 -0
angr/state_plugins/loop_data.py +92 -0
angr/state_plugins/plugin.py +176 -0
angr/state_plugins/posix.py +703 -0
angr/state_plugins/preconstrainer.py +196 -0
angr/state_plugins/scratch.py +173 -0
angr/state_plugins/sim_action.py +326 -0
angr/state_plugins/sim_action_object.py +271 -0
angr/state_plugins/sim_event.py +59 -0
angr/state_plugins/solver.py +1128 -0
angr/state_plugins/symbolizer.py +291 -0
angr/state_plugins/trace_additions.py +738 -0
angr/state_plugins/uc_manager.py +94 -0
angr/state_plugins/unicorn_engine.py +1920 -0
angr/state_plugins/view.py +340 -0
angr/storage/__init__.py +15 -0
angr/storage/file.py +1210 -0
angr/storage/memory_mixins/__init__.py +317 -0
angr/storage/memory_mixins/actions_mixin.py +72 -0
angr/storage/memory_mixins/address_concretization_mixin.py +384 -0
angr/storage/memory_mixins/bvv_conversion_mixin.py +73 -0
angr/storage/memory_mixins/clouseau_mixin.py +137 -0
angr/storage/memory_mixins/conditional_store_mixin.py +25 -0
angr/storage/memory_mixins/convenient_mappings_mixin.py +256 -0
angr/storage/memory_mixins/default_filler_mixin.py +144 -0
angr/storage/memory_mixins/dirty_addrs_mixin.py +11 -0
angr/storage/memory_mixins/hex_dumper_mixin.py +82 -0
angr/storage/memory_mixins/javavm_memory_mixin.py +392 -0
angr/storage/memory_mixins/keyvalue_memory_mixin.py +43 -0
angr/storage/memory_mixins/label_merger_mixin.py +31 -0
angr/storage/memory_mixins/memory_mixin.py +175 -0
angr/storage/memory_mixins/multi_value_merger_mixin.py +79 -0
angr/storage/memory_mixins/name_resolution_mixin.py +67 -0
angr/storage/memory_mixins/paged_memory/__init__.py +0 -0
angr/storage/memory_mixins/paged_memory/page_backer_mixins.py +266 -0
angr/storage/memory_mixins/paged_memory/paged_memory_mixin.py +743 -0
angr/storage/memory_mixins/paged_memory/paged_memory_multivalue_mixin.py +65 -0
angr/storage/memory_mixins/paged_memory/pages/__init__.py +26 -0
angr/storage/memory_mixins/paged_memory/pages/base.py +31 -0
angr/storage/memory_mixins/paged_memory/pages/cooperation.py +341 -0
angr/storage/memory_mixins/paged_memory/pages/history_tracking_mixin.py +92 -0
angr/storage/memory_mixins/paged_memory/pages/ispo_mixin.py +55 -0
angr/storage/memory_mixins/paged_memory/pages/list_page.py +338 -0
angr/storage/memory_mixins/paged_memory/pages/multi_values.py +324 -0
angr/storage/memory_mixins/paged_memory/pages/mv_list_page.py +419 -0
angr/storage/memory_mixins/paged_memory/pages/permissions_mixin.py +36 -0
angr/storage/memory_mixins/paged_memory/pages/refcount_mixin.py +52 -0
angr/storage/memory_mixins/paged_memory/pages/ultra_page.py +529 -0
angr/storage/memory_mixins/paged_memory/privileged_mixin.py +36 -0
angr/storage/memory_mixins/paged_memory/stack_allocation_mixin.py +74 -0
angr/storage/memory_mixins/regioned_memory/__init__.py +17 -0
angr/storage/memory_mixins/regioned_memory/abstract_address_descriptor.py +36 -0
angr/storage/memory_mixins/regioned_memory/abstract_merger_mixin.py +31 -0
angr/storage/memory_mixins/regioned_memory/region_category_mixin.py +9 -0
angr/storage/memory_mixins/regioned_memory/region_data.py +246 -0
angr/storage/memory_mixins/regioned_memory/region_meta_mixin.py +241 -0
angr/storage/memory_mixins/regioned_memory/regioned_address_concretization_mixin.py +119 -0
angr/storage/memory_mixins/regioned_memory/regioned_memory_mixin.py +442 -0
angr/storage/memory_mixins/regioned_memory/static_find_mixin.py +69 -0
angr/storage/memory_mixins/simple_interface_mixin.py +71 -0
angr/storage/memory_mixins/simplification_mixin.py +15 -0
angr/storage/memory_mixins/size_resolution_mixin.py +143 -0
angr/storage/memory_mixins/slotted_memory.py +140 -0
angr/storage/memory_mixins/smart_find_mixin.py +161 -0
angr/storage/memory_mixins/symbolic_merger_mixin.py +16 -0
angr/storage/memory_mixins/top_merger_mixin.py +25 -0
angr/storage/memory_mixins/underconstrained_mixin.py +67 -0
angr/storage/memory_mixins/unwrapper_mixin.py +26 -0
angr/storage/memory_object.py +195 -0
angr/tablespecs.py +91 -0
angr/unicornlib.dylib +0 -0
angr/utils/__init__.py +46 -0
angr/utils/ail.py +176 -0
angr/utils/algo.py +34 -0
angr/utils/balancer.py +776 -0
angr/utils/bits.py +46 -0
angr/utils/constants.py +9 -0
angr/utils/cowdict.py +63 -0
angr/utils/cpp.py +17 -0
angr/utils/doms.py +150 -0
angr/utils/dynamic_dictlist.py +89 -0
angr/utils/endness.py +18 -0
angr/utils/enums_conv.py +97 -0
angr/utils/env.py +12 -0
angr/utils/formatting.py +128 -0
angr/utils/funcid.py +244 -0
angr/utils/graph.py +981 -0
angr/utils/lazy_import.py +13 -0
angr/utils/library.py +236 -0
angr/utils/loader.py +55 -0
angr/utils/mp.py +66 -0
angr/utils/orderedset.py +74 -0
angr/utils/ssa/__init__.py +455 -0
angr/utils/ssa/tmp_uses_collector.py +23 -0
angr/utils/ssa/vvar_uses_collector.py +36 -0
angr/utils/strings.py +20 -0
angr/utils/tagged_interval_map.py +112 -0
angr/utils/timing.py +74 -0
angr/utils/types.py +193 -0
angr/utils/vex.py +11 -0
angr/vaults.py +367 -0
angr-9.2.192.dist-info/METADATA +112 -0
angr-9.2.192.dist-info/RECORD +1442 -0
angr-9.2.192.dist-info/WHEEL +6 -0
angr-9.2.192.dist-info/entry_points.txt +2 -0
angr-9.2.192.dist-info/licenses/LICENSE +27 -0
angr-9.2.192.dist-info/top_level.txt +1 -0

angr/analyses/decompiler/structuring/dream.py ADDED Viewed

@@ -0,0 +1,1217 @@
+# pylint:disable=multiple-statements,line-too-long,consider-using-enumerate
+from __future__ import annotations
+from typing import Any, TYPE_CHECKING
+import logging
+from collections import defaultdict, OrderedDict
+import networkx
+import claripy
+import angr.ailment as ailment
+from angr.utils.graph import GraphUtils
+from angr.knowledge_plugins.cfg import IndirectJumpType
+from angr.analyses.decompiler.graph_region import GraphRegion
+from angr.analyses.decompiler.empty_node_remover import EmptyNodeRemover
+from angr.analyses.decompiler.jumptable_entry_condition_rewriter import JumpTableEntryConditionRewriter
+from angr.analyses.decompiler.condition_processor import ConditionProcessor
+from angr.analyses.decompiler.region_simplifiers.cascading_cond_transformer import CascadingConditionTransformer
+from angr.analyses.decompiler.utils import (
+    extract_jump_targets,
+    get_ast_subexprs,
+    switch_extract_cmp_bounds,
+    remove_last_statement,
+    first_nonlabel_nonphi_node,
+)
+from .structurer_nodes import (
+    SequenceNode,
+    CodeNode,
+    ConditionNode,
+    ConditionalBreakNode,
+    LoopNode,
+    SwitchCaseNode,
+    BreakNode,
+    ContinueNode,
+    MultiNode,
+    CascadingConditionNode,
+    BaseNode,
+    EmptyBlockNotice,
+)
+from .structurer_base import StructurerBase
+if TYPE_CHECKING:
+    from angr.knowledge_plugins.functions import Function
+l = logging.getLogger(name=__name__)
+#
+# The main analysis
+#
+class DreamStructurer(StructurerBase):
+    """
+    Structure a region using a structuring algorithm that is similar to the one in Dream decompiler (described in the
+    "no more gotos" paper). Note that this implementation has quite a few improvements over the original described
+    version and *should not* be used to evaluate the performance of the original algorithm described in that paper.
+    The current function graph is provided so that we can detect certain edge cases, for example, jump table entries no
+    longer exist due to empty node removal during structuring or prior steps.
+    """
+    NAME = "dream"
+    def __init__(
+        self,
+        region,
+        parent_map=None,
+        condition_processor=None,
+        func: Function | None = None,
+        case_entry_to_switch_head: dict[int, int] | None = None,
+        parent_region=None,
+        **kwargs,
+    ):
+        super().__init__(
+            region,
+            parent_map=parent_map,
+            condition_processor=condition_processor,
+            func=func,
+            case_entry_to_switch_head=case_entry_to_switch_head,
+            parent_region=parent_region,
+            **kwargs,
+        )
+        self._analyze()
+    def _analyze(self):
+        has_cycle = self._has_cycle()
+        # sanity checks
+        if self._region.cyclic:
+            if not has_cycle:
+                l.critical(
+                    "Region %r is supposed to be a cyclic region but there is no cycle inside. This is usually "
+                    "due to the existence of loop headers with more than one in-edges, which angr decompiler "
+                    "does not support yet. The decompilation result will be wrong.",
+                    self._region,
+                )
+            self._analyze_cyclic()
+        else:
+            if has_cycle:
+                l.critical(
+                    "Region %r is supposed to be an acyclic region but there are cycles inside. This is usually "
+                    "due to the existence of loop headers with more than one in-edges, which angr decompiler "
+                    "does not support yet. The decompilation result will be wrong.",
+                    self._region,
+                )
+            self._analyze_acyclic()
+    def _analyze_cyclic(self):
+        loop_head = self._region.head
+        loop_subgraph = self._region.graph
+        successors = self._region.successors
+        assert successors is not None
+        assert len(successors) <= 1
+        loop_node = self._make_endless_loop(loop_head, loop_subgraph, successors)
+        loop_node = self._refine_loop(loop_node)
+        seq = SequenceNode(
+            loop_head.addr, nodes=[loop_node] + [succ for succ in successors if succ in self._region.graph]
+        )
+        self.result = seq
+    def _analyze_acyclic(self):
+        # let's generate conditions first
+        self.cond_proc.recover_reaching_conditions(
+            self._region, with_successors=True, case_entry_to_switch_head=self._case_entry_to_switch_head
+        )
+        # make the sequence node and pack reaching conditions into CodeNode instances
+        seq = self._make_sequence()
+        self._new_sequences.append(seq)
+        while self._new_sequences:
+            seq_ = self._new_sequences.pop(0)
+            if len(seq_.nodes) <= 1:
+                continue
+            self._structure_sequence(seq_)
+        seq = EmptyNodeRemover(seq).result
+        # unpack nodes and remove CodeNode wrappers
+        seq = self._unpack_sequence(seq)
+        self.result = seq
+    def _find_loop_nodes_and_successors(self):
+        graph = self._region.graph
+        head = self._region.head
+        # find initial loop nodes
+        loop_nodes = None
+        components = networkx.strongly_connected_components(graph)
+        for component in components:
+            if head in component:
+                loop_nodes = component
+                break
+        if loop_nodes is None:
+            # this should never happen - loop head always forms a cycle
+            raise TypeError("A bug (impossible case) in the algorithm is triggered.")
+        # extend loop nodes
+        while True:
+            loop_nodes_updated = False
+            for loop_node in loop_nodes:
+                for succ in graph.successors(loop_node):
+                    if succ not in loop_nodes:
+                        # determine if this successor's all predecessors are in the loop
+                        predecessors = graph.predecessors(succ)
+                        if all(pred in loop_nodes for pred in predecessors):
+                            # yes!
+                            loop_nodes.add(succ)
+                            loop_nodes_updated = True
+                            break
+                if loop_nodes_updated:
+                    break
+            if not loop_nodes_updated:
+                break
+        # find loop nodes and successors
+        loop_subgraph = networkx.subgraph(graph, loop_nodes)
+        loop_node_addrs = {node.addr for node in loop_subgraph}
+        # Case A: The loop successor is inside the current region (does it happen at all?)
+        loop_successors = set()
+        for node, successors in networkx.bfs_successors(graph, head):
+            if node.addr in loop_node_addrs:
+                for suc in successors:
+                    if suc not in loop_subgraph:
+                        loop_successors.add(suc)
+        # Case B: The loop successor is the successor to this region in the parent graph
+        if not loop_successors and self._parent_map is not None:
+            current_region = self._region
+            parent_region = self._parent_map.get(current_region, None)
+            while parent_region and not loop_successors:
+                parent_graph = parent_region.graph
+                for node, successors in networkx.bfs_successors(parent_graph, current_region):
+                    if node.addr == current_region.addr:
+                        for suc in successors:
+                            if suc not in loop_subgraph:
+                                loop_successors.add(suc)
+                current_region = parent_region
+                parent_region = self._parent_map.get(current_region, None)
+        return loop_subgraph, loop_successors
+    def _make_endless_loop(self, loop_head, loop_subgraph, loop_successors):
+        loop_body = self._to_loop_body_sequence(loop_head, loop_subgraph, loop_successors)
+        # create a while(true) loop with sequence node being the loop body
+        return LoopNode("while", None, loop_body, addr=loop_head.addr)
+    def _refine_loop(self, loop_node):
+        while True:
+            # while
+            r, loop_node = self._refine_loop_while(loop_node)
+            if r:
+                continue
+            # do-while
+            r, loop_node = self._refine_loop_dowhile(loop_node)
+            if r:
+                continue
+            # no more changes
+            break
+        return loop_node
+    @staticmethod
+    def _refine_loop_while(loop_node):
+        if loop_node.sort == "while" and loop_node.condition is None and loop_node.sequence_node.nodes:
+            # it's an endless loop
+            first_node = first_nonlabel_nonphi_node(loop_node.sequence_node)
+            inner_first_node = first_node.node if type(first_node) is CodeNode else first_node
+            if type(inner_first_node) is ConditionalBreakNode:
+                while_cond = ConditionProcessor.simplify_condition(claripy.Not(inner_first_node.condition))
+                new_seq = loop_node.sequence_node.copy()
+                new_seq.nodes = [nn for nn in new_seq.nodes if nn is not first_node]
+                new_loop_node = LoopNode("while", while_cond, new_seq, addr=loop_node.addr)
+                return True, new_loop_node
+        return False, loop_node
+    @staticmethod
+    def _refine_loop_dowhile(loop_node):
+        if loop_node.sort == "while" and loop_node.condition is None and loop_node.sequence_node.nodes:
+            # it's an endless loop
+            last_node = loop_node.sequence_node.nodes[-1]
+            if type(last_node) is ConditionalBreakNode:
+                while_cond = ConditionProcessor.simplify_condition(claripy.Not(last_node.condition))
+                new_seq = loop_node.sequence_node.copy()
+                new_seq.nodes = new_seq.nodes[:-1]
+                new_loop_node = LoopNode("do-while", while_cond, new_seq)
+                return True, new_loop_node
+        return False, loop_node
+    def _to_loop_body_sequence(self, loop_head, loop_subgraph, loop_successors):
+        graph = self._region.graph_with_successors
+        assert graph is not None
+        loop_region_graph = networkx.DiGraph()
+        # TODO: Make sure the loop body has been structured
+        queue = [loop_head]
+        traversed = set()
+        loop_successor_addrs = {succ.addr for succ in loop_successors}
+        replaced_nodes = {}
+        outedges = []
+        while queue:
+            node = queue[0]
+            queue = queue[1:]
+            loop_region_graph.add_node(node)
+            traversed.add(node)
+            successors_and_data = list(graph.out_edges(node, data=True))  # successors are all inside the current region
+            for _, dst, edge_data in successors_and_data:
+                # sanity check
+                if dst.addr in loop_successor_addrs:
+                    outedges.append((node, dst, edge_data))
+                    continue
+                if dst not in loop_subgraph and dst.addr not in loop_successor_addrs:
+                    # what's this node?
+                    l.error("Found a node that belongs to neither loop body nor loop successors. Something is wrong.")
+                    # raise Exception()
+                if replaced_nodes.get(dst, dst) is not loop_head:
+                    loop_region_graph.add_edge(node, replaced_nodes.get(dst, dst), **edge_data)
+                if dst in traversed or dst in queue:
+                    continue
+                queue.append(dst)
+        # Create a graph region and structure it
+        loop_region_graph_with_successors = networkx.DiGraph(loop_region_graph)
+        loop_successors = set()  # update loop_successors with nodes in outedges
+        for src, dst, edge_data in outedges:
+            loop_region_graph_with_successors.add_edge(src, dst, **edge_data)
+            loop_successors.add(dst)
+        region = GraphRegion(
+            loop_head, loop_region_graph, successors=None, graph_with_successors=None, cyclic=False, full_graph=None
+        )
+        structurer = self.project.analyses[DreamStructurer].prep()(
+            region, condition_processor=self.cond_proc, func=self.function, jump_tables=self.jump_tables
+        )
+        seq = structurer.result
+        # traverse this node and rewrite all conditional jumps that go outside the loop to breaks
+        self._rewrite_conditional_jumps_to_breaks(seq, loop_successor_addrs)
+        # traverse this node and rewrite all jumps that go to the beginning of the loop to continue
+        self._rewrite_jumps_to_continues(seq)
+        seq = self._remove_redundant_jumps(seq)
+        seq = self._remove_conditional_jumps(seq)
+        seq = EmptyNodeRemover(seq).result
+        while True:
+            r, seq = self._merge_conditional_breaks(seq)
+            if r:
+                continue
+            r, seq = self._merge_nesting_conditionals(seq)
+            if r:
+                continue
+            break
+        return EmptyNodeRemover(seq).result
+    def _make_sequence(self):
+        seq = SequenceNode(None)
+        for node in GraphUtils.quasi_topological_sort_nodes(self._region.graph):
+            seq.add_node(CodeNode(node, self.cond_proc.reaching_conditions.get(node, None)))
+        if seq.nodes:
+            seq.addr = seq.nodes[0].addr
+        return seq
+    @staticmethod
+    def _unpack_sequence(seq):
+        def _handle_Code(node, **kwargs):  # pylint:disable=unused-argument
+            node = node.node
+            return walker._handle(node)
+        def _handle_Sequence(node, **kwargs):  # pylint:disable=unused-argument
+            for i in range(len(node.nodes)):  # pylint:disable=consider-using-enumerate
+                node.nodes[i] = walker._handle(node.nodes[i])
+            return node
+        def _handle_ConditionNode(node, **kwargs):  # pylint:disable=unused-argument
+            if node.true_node is not None:
+                node.true_node = walker._handle(node.true_node)
+            if node.false_node is not None:
+                node.false_node = walker._handle(node.false_node)
+            return node
+        def _handle_CascadingConditionNode(node: CascadingConditionNode, **kwargs):  # pylint:disable=unused-argument
+            new_cond_and_nodes = []
+            for cond, child_node in node.condition_and_nodes:
+                new_cond_and_nodes.append((cond, walker._handle(child_node)))
+            node.condition_and_nodes = new_cond_and_nodes
+            if node.else_node is not None:
+                node.else_node = walker._handle(node.else_node)  # type: ignore
+            return node
+        def _handle_SwitchCaseNode(node, **kwargs):  # pylint:disable=unused-argument
+            for i in list(node.cases.keys()):
+                node.cases[i] = walker._handle(node.cases[i])
+            if node.default_node is not None:
+                node.default_node = walker._handle(node.default_node)
+            return node
+        def _handle_Default(node, **kwargs):  # pylint:disable=unused-argument
+            return node
+        handlers = {
+            CodeNode: _handle_Code,
+            SequenceNode: _handle_Sequence,
+            ConditionNode: _handle_ConditionNode,
+            CascadingConditionNode: _handle_CascadingConditionNode,
+            SwitchCaseNode: _handle_SwitchCaseNode,
+            # don't do anything
+            LoopNode: _handle_Default,
+            ContinueNode: _handle_Default,
+            ConditionalBreakNode: _handle_Default,
+            BreakNode: _handle_Default,
+            MultiNode: _handle_Default,
+            ailment.Block: _handle_Default,
+        }
+        walker = SequenceWalker(handlers=handlers)
+        walker.walk(seq)
+        return seq
+    def _structure_sequence(self, seq):
+        self._make_switch_cases(seq)
+        # this is hackish...
+        # seq.nodes = new_seq.nodes
+        self._merge_same_conditioned_nodes(seq)
+        self._structure_common_subexpression_conditions(seq)
+        self._make_ites(seq)
+        self._remove_redundant_jumps(seq)
+        empty_node_remover = EmptyNodeRemover(seq)
+        new_seq = empty_node_remover.result
+        # update self._new_sequences
+        self._update_new_sequences(set(empty_node_remover.removed_sequences), empty_node_remover.replaced_sequences)
+        # we need to do it in-place
+        seq.nodes = new_seq.nodes
+        self._replace_complex_reaching_conditions(seq)
+        self._make_condition_nodes(seq)
+        self._make_cascading_condition_nodes(seq)
+        while True:
+            r, seq = self._merge_conditional_breaks(seq)
+            if r:
+                continue
+            r, seq = self._merge_nesting_conditionals(seq)
+            if r:
+                continue
+            break
+    def _merge_same_conditioned_nodes(self, seq):
+        # search for nodes with the same reaching condition and then merge them into one sequence node
+        i = 0
+        while i < len(seq.nodes) - 1:
+            node_0 = seq.nodes[i]
+            if type(node_0) is not CodeNode:
+                i += 1
+                continue
+            rcond_0 = node_0.reaching_condition
+            if rcond_0 is None:
+                i += 1
+                continue
+            node_1 = seq.nodes[i + 1]
+            if type(node_1) is not CodeNode:
+                i += 1
+                continue
+            rcond_1 = node_1.reaching_condition
+            if rcond_1 is None:
+                i += 1
+                continue
+            r = claripy.simplify(rcond_0 == rcond_1)
+            if claripy.is_true(r):
+                # node_0 and node_1 should be put into the same sequence node
+                new_node = CodeNode(
+                    self._merge_nodes(node_0.node, node_1.node),
+                    node_0.reaching_condition,
+                )
+                seq.nodes = [*seq.nodes[:i], new_node, *seq.nodes[i + 2 :]]
+                continue
+            i += 1
+    #
+    # Dealing with switch-case structures
+    #
+    def _make_switch_cases(self, seq):
+        """
+        Search for nodes that look like switch-cases and convert them to switch cases.
+        :param seq:     The Sequence node.
+        :return:        None
+        """
+        addr2nodes: dict[int, set[CodeNode]] = defaultdict(set)
+        for node in seq.nodes:
+            addr2nodes[node.addr].add(node)
+        while True:
+            for i in range(len(seq.nodes)):
+                node = seq.nodes[i]
+                # Jumptable_AddressLoadedFromMemory
+                r = self._make_switch_cases_address_loaded_from_memory(seq, i, node, addr2nodes)
+                if r:
+                    # we found a node that looks like a switch-case. seq.nodes are changed. resume to find the next such
+                    # case
+                    break
+                # Jumptable_AddressComputed
+                r = self._make_switch_cases_address_computed(seq, i, node, addr2nodes)
+                if r:
+                    break
+            else:
+                # we did not find any node that looks like a switch-case. exit.
+                break
+    def _make_switch_cases_address_loaded_from_memory(self, seq, i, node, addr2nodes: dict[int, set[CodeNode]]) -> bool:
+        """
+        A typical jump table involves multiple nodes, which look like the following:
+        Head:  s_50 = Conv(32->64, (Load(addr=stack_base-28, size=4, endness=Iend_LE) - 0x3f<32>))<8>
+               if (((Load(addr=stack_base-28, size=4, endness=Iend_LE) - 0x3f<32>) <= 0x36<32>))
+                    { Goto A<64> } else { Goto B<64> }
+        A:     (with an indirect jump)
+               Goto((
+                Conv(32->64, Load(addr=(0x40964c<64> + (Load(addr=stack_base-80, size=8, endness=Iend_LE) Mul 0x4<8>)),
+                size=4, endness=Iend_LE)) + 0x40964c<64>))
+        B:     (the default case)
+        """
+        try:
+            last_stmt = self.cond_proc.get_last_statement(node)
+            if not isinstance(last_stmt, ailment.Stmt.ConditionalJump):
+                return False
+        except EmptyBlockNotice:
+            return False
+        successor_addrs = extract_jump_targets(last_stmt)
+        if len(successor_addrs) != 2:
+            return False
+        for t in successor_addrs:
+            if t in addr2nodes and t in self.jump_tables:
+                # this is a candidate!
+                target = t
+                break
+        else:
+            return False
+        jump_table = self.jump_tables[target]
+        if jump_table.type != IndirectJumpType.Jumptable_AddressLoadedFromMemory:
+            return False
+        # extract the comparison expression, lower-, and upper-bounds from the last statement
+        cmp = switch_extract_cmp_bounds(last_stmt)
+        if not cmp:
+            return False
+        cmp_expr, cmp_lb, _cmp_ub = cmp  # pylint:disable=unused-variable
+        # the real indirect jump
+        if len(addr2nodes[target]) != 1:
+            return False
+        node_a = next(iter(addr2nodes[target]))
+        # the default case
+        node_b_addr = next(iter(t for t in successor_addrs if t != target))
+        # Node A might have been structured. Un-structure it if that is the case.
+        r, node_a = self._switch_unpack_sequence_node(seq, node_a, node_b_addr, jump_table, addr2nodes)
+        if not r:
+            return False
+        # build switch-cases
+        assert jump_table.jumptable_entries is not None
+        cases, node_default, to_remove = self._switch_build_cases(
+            seq, cmp_lb, jump_table.jumptable_entries, i, node_b_addr, addr2nodes
+        )
+        # if we don't know what the end address of this switch-case structure is, let's figure it out
+        switch_end_addr = (
+            node_b_addr
+            if node_default is None
+            else self._switch_find_switch_end_addr(cases, node_default, {nn.addr for nn in self._region.graph})
+        )
+        if switch_end_addr is not None:
+            self._switch_handle_gotos(cases, node_default, switch_end_addr)
+        assert last_stmt.tags["ins_addr"] is not None
+        self._make_switch_cases_core(
+            seq,
+            i,
+            node,
+            cmp_expr,
+            cases,
+            node_default,
+            last_stmt.tags["ins_addr"],
+            addr2nodes,
+            to_remove,
+            node_a=node_a,
+            jumptable_addr=jump_table.addr,
+        )
+        return True
+    def _make_switch_cases_address_computed(self, seq, i, node, addr2nodes: dict[int, set[CodeNode]]) -> bool:
+        if node.addr not in self.jump_tables:
+            return False
+        jump_table = self.jump_tables[node.addr]
+        if jump_table.type != IndirectJumpType.Jumptable_AddressComputed:
+            return False
+        try:
+            last_stmts = self.cond_proc.get_last_statements(node)
+        except EmptyBlockNotice:
+            return False
+        if len(last_stmts) != 1:
+            return False
+        last_stmt = last_stmts[0]
+        if not isinstance(last_stmt, ailment.Stmt.ConditionalJump):
+            return False
+        # Typical look:
+        #   t2 = (r5<4> - 0x22<32>)
+        #   if ((t2 <= 0x1c<32>)) { Goto (0x41d10c<32> + (t2 << 0x2<8>)) } else { Goto 0x41d108<32> }
+        #
+        # extract the comparison expression, lower-, and upper-bounds from the last statement
+        cmp = switch_extract_cmp_bounds(last_stmt)
+        if not cmp:
+            return False
+        cmp_expr, cmp_lb, _cmp_ub = cmp  # pylint:disable=unused-variable
+        jumptable_entries = jump_table.jumptable_entries
+        assert jumptable_entries is not None
+        if isinstance(last_stmt.false_target, ailment.Expr.Const):
+            default_addr = last_stmt.false_target.value
+            assert isinstance(default_addr, int)
+        else:
+            return False
+        cases, node_default, to_remove = self._switch_build_cases(
+            seq, cmp_lb, jumptable_entries, i, default_addr, addr2nodes
+        )
+        if node_default is None:
+            # there must be a default case
+            return False
+        self._make_switch_cases_core(
+            seq,
+            i,
+            node,
+            cmp_expr,
+            cases,
+            node_default,
+            node.addr,
+            addr2nodes,
+            to_remove,
+            jumptable_addr=jump_table.addr,
+        )
+        return True
+    def _make_switch_cases_core(
+        self,
+        seq,
+        i,
+        node,
+        cmp_expr,
+        cases: OrderedDict,
+        node_default,
+        addr,
+        addr2nodes,
+        to_remove,
+        *,
+        jumptable_addr: int,
+        node_a=None,
+    ):
+        scnode = SwitchCaseNode(cmp_expr, cases, node_default, addr=addr)
+        scnode = CodeNode(scnode, node.reaching_condition)
+        # insert the switch-case node
+        seq.insert_node(i + 1, scnode)
+        # remove all those entry nodes
+        if node_default is not None:
+            to_remove.add(node_default)
+        for node_ in to_remove:
+            seq.remove_node(node_)
+            addr2nodes[node_.addr].discard(node_)
+            if not addr2nodes[node_.addr]:
+                del addr2nodes[node_.addr]
+        # remove the last statement in node
+        remove_last_statement(node)
+        if BaseNode.test_empty_node(node):
+            seq.remove_node(node)
+        if node_a is not None:
+            # remove the last statement in node_a
+            remove_last_statement(node_a)
+            if BaseNode.test_empty_node(node_a):
+                seq.remove_node(node_a)
+        # rewrite conditions in the entire SequenceNode to remove jump table entry conditions
+        rewriter = JumpTableEntryConditionRewriter(self.cond_proc.jump_table_conds[jumptable_addr])
+        rewriter.walk(seq)  # update SequenceNodes in-place
+    def _switch_unpack_sequence_node(
+        self, seq: SequenceNode, node_a, node_b_addr: int, jumptable, addr2nodes: dict[int, set[CodeNode]]
+    ) -> tuple[bool, CodeNode | None]:
+        """
+        We might have already structured the actual body of the switch-case structure into a single Sequence node (node
+        A). If that is the case, we un-structure the sequence node in this method.
+        :param seq:                 The original Sequence node.
+        :param node_a:              Node A.
+        :param node_b_addr:         Address of node B.
+        :param jumptable:           The corresponding jump table instance.
+        :param addr2nodes:          A dict of addresses to their corresponding nodes in `seq`.
+        :return:                    A boolean value indicating the result and an updated node_a. The boolean value is
+                                    True if unpacking is not necessary or we successfully unpacked the sequence node,
+                                    False otherwise.
+        """
+        jumptable_entries = jumptable.jumptable_entries
+        node_a_block_addrs = {n.addr for n in node_a.node.nodes} if isinstance(node_a.node, SequenceNode) else set()
+        #
+        # if that is the case, we un-structure it here
+        if all(entry_addr in addr2nodes for entry_addr in jumptable_entries):
+            return True, node_a
+        if self._switch_check_existence_of_jumptable_entries(
+            jumptable_entries, node_a_block_addrs, set(addr2nodes.keys()), node_a.addr, node_b_addr
+        ):
+            # unpacking is needed
+            for n in node_a.node.nodes:
+                assert n.addr is not None
+                if isinstance(n, ConditionNode):
+                    unpacked = self._switch_unpack_condition_node(n, jumptable)
+                    if unpacked is None:
+                        # unsupported. bail
+                        return False, None
+                    if n.addr in addr2nodes:
+                        del addr2nodes[n.addr]
+                    addr2nodes[n.addr].add(unpacked)
+                    seq.add_node(unpacked)
+                else:
+                    the_node = CodeNode(n, None)
+                    if n.addr in addr2nodes:
+                        del addr2nodes[n.addr]
+                    addr2nodes[n.addr].add(the_node)
+                    seq.add_node(the_node)
+            if node_a != addr2nodes[node_a.addr]:
+                # update node_a
+                seq.remove_node(node_a)
+                node_a = next(iter(addr2nodes[node_a.addr]))
+            return True, node_a
+        # a jumptable entry is missing. it's very likely marked as the successor of the entire switch-case region. we
+        # should have been handling it when dealing with multi-exit regions. ignore it here.
+        return True, node_a
+    def _switch_unpack_condition_node(self, cond_node: ConditionNode, jumptable) -> CodeNode | None:
+        """
+        Unpack condition nodes by only removing one condition in the form of
+        <Bool jump_table_402020 == 0x402ac4>.
+        :param cond_node:   The condition node to unpack.
+        :return:            The new unpacked node.
+        """
+        # FIXME: With the new jump table entry condition, this function is probably never used. Remove sequence node
+        # FIXME: unpacking logic if that is the case.
+        cond = cond_node.condition
+        # look for a condition in the form of xxx == jump_target
+        eq_condition = None
+        remaining_cond = None
+        true_node = None
+        false_node = None
+        jumptable_var = self.cond_proc.create_jump_target_var(jumptable.addr)
+        if cond.op == "And":
+            for arg in cond.args:
+                if (
+                    arg.op == "__eq__"
+                    and arg.args[0] is jumptable_var
+                    and isinstance(arg.args[1], claripy.ast.Bits)
+                    and arg.args[1].concrete
+                ):
+                    # found it
+                    eq_condition = arg
+                    remaining_cond = claripy.And(*(arg_ for arg_ in cond.args if arg_ is not arg))
+                    true_node = cond_node.true_node
+                    false_node = cond_node.false_node
+                    break
+            else:
+                # unsupported
+                return None
+        elif cond.op == "__eq__":
+            if cond.args[0] is jumptable_var and isinstance(cond.args[1], claripy.ast.Bits) and cond.args[1].concrete:
+                # found it
+                eq_condition = cond
+                true_node = cond_node.true_node
+                false_node = cond_node.false_node
+                remaining_cond = None
+            else:
+                # unsupported
+                return None
+        else:
+            # unsupported
+            return None
+        if remaining_cond is None:
+            if true_node is not None and false_node is None:
+                return CodeNode(true_node, eq_condition)
+            # unsupported
+            return None
+        return CodeNode(
+            ConditionNode(cond_node.addr, claripy.true(), remaining_cond, true_node, false_node=false_node),
+            eq_condition,
+        )
+    def _switch_check_existence_of_jumptable_entries(
+        self,
+        jumptable_entries,
+        node_a_block_addrs: set[int],
+        known_node_addrs: set[int],
+        node_a_addr: int,
+        node_b_addr: int,
+    ) -> bool:
+        """
+        Check if all entries in the given jump table exist in the given set of nodes of a SequenceNode.
+        :param jumptable_entries:   Addresses of jump table entries.
+        :param node_a_block_addrs:  A set of addresses for nodes that belong to Node A.
+        :return:                    True if the check passes, False otherwise.
+        """
+        all_node_addrs = node_a_block_addrs | known_node_addrs | {node_b_addr}
+        expected_node_a_addrs = set()
+        for entry_addr in jumptable_entries:
+            if entry_addr in all_node_addrs:
+                expected_node_a_addrs.add(entry_addr)
+                continue
+            # the entry may go missing if the entire node has been folded into its successor node.
+            # in this case, we check if (a) this entry node has only one successor, and (b) this successor exists in
+            # seq_node_addrs.
+            if self.function is not None:
+                entry_node = self.function.get_node(entry_addr)
+                if entry_node is not None:
+                    successors = []
+                    for _, dst, data in self.function.graph.out_edges(entry_node, data=True):
+                        if data.get("type", "transition") != "call":
+                            successors.append(dst)
+                    if len(successors) == 1 and successors[0].addr in all_node_addrs:
+                        # found the single successor
+                        expected_node_a_addrs.add(successors[0].addr)
+                        continue
+            # it's also possible that this is just a jump that breaks out of the switch-case. we simply ignore it.
+            continue
+        # finally, make sure all expected nodes exist
+        # not sure what is going on... if it's false
+        return node_a_block_addrs.issuperset((expected_node_a_addrs | {node_a_addr}) - {node_b_addr})
+    def _switch_find_jumptable_entry_node(self, entry_addr: int, addr2nodes: dict[int, set[CodeNode]]) -> Any | None:
+        """
+        Find the correct node for a given jump table entry address in addr2nodes.
+        This method is needed because prior optimization steps may remove some blocks (e.g., empty blocks or blocks that
+        only have branch instructions). If the given jump table entry address corresponds to a removed block, it will
+        not be found inside addr2nodes dict. In such cases, we need to follow graph edges in the CFG and find the first
+        block whose address is inside addr2nodes dict.
+        :param entry_addr:  Address of the jump table entry.
+        :return:            The correct node if we can find it, or None if we fail to find one.
+        """
+        if entry_addr in addr2nodes and len(addr2nodes[entry_addr]) == 1:
+            return next(iter(addr2nodes[entry_addr]))
+        # magic
+        if self.function is None:
+            return None
+        addr = entry_addr
+        node = self.function.get_node(addr)
+        for _ in range(5):  # we try at most five steps
+            if node is None:
+                return None
+            successors = []
+            for _, dst, data in self.function.graph.out_edges(node, data=True):
+                if data.get("type", "transition") != "call":
+                    successors.append(dst)
+            if len(successors) != 1:
+                return None
+            successor = successors[0]
+            if successor.addr in addr2nodes:
+                # found it!
+                return next(iter(addr2nodes[successor.addr]))
+            # keep looking
+            node = successor
+        return None
+    def _switch_build_cases(
+        self,
+        seq: SequenceNode,
+        cmp_lb: int,
+        jumptable_entries: list[int],
+        head_node_idx: int,
+        node_b_addr: int,
+        addr2nodes: dict[int, set[CodeNode]],
+    ) -> tuple[OrderedDict, Any, Any]:
+        """
+        Discover all cases for the switch-case structure and build the switch-cases dict.
+        :param seq:                 The original Sequence node.
+        :param cmp_lb:              The lower bound of the jump table comparison.
+        :param jumptable_entries:   Addresses of indirect jump targets in the jump table.
+        :param head_node_addr:      The index of the head block of this jump table in `seq`.
+        :param node_b_addr:         Address of node B. Potentially, node B is the default node.
+        :param addr2nodes:          A dict of addresses to their corresponding nodes in `seq`.
+        :return:                    A tuple of (dict of cases, the default node if exists, nodes to remove).
+        """
+        cases: OrderedDict[int | tuple[int, ...], SequenceNode] = OrderedDict()
+        to_remove = set()
+        node_default = addr2nodes.get(node_b_addr)
+        if node_default is not None:
+            node_default = next(iter(node_default))
+        entry_addrs_set = set(jumptable_entries)
+        converted_nodes: dict[int, Any] = {}
+        entry_addr_to_ids = defaultdict(set)
+        for j, entry_addr in enumerate(jumptable_entries):
+            cases_idx = cmp_lb + j
+            if entry_addr == node_b_addr:
+                # jump to default or end of the switch-case structure - ignore this case
+                continue
+            entry_addr_to_ids[entry_addr].add(cases_idx)
+            if entry_addr in converted_nodes:
+                continue
+            entry_node = self._switch_find_jumptable_entry_node(entry_addr, addr2nodes)
+            if entry_node is None:
+                # Missing entries. They are probably *after* the entire switch-case construct. Replace it with an empty
+                # Goto node.
+                case_inner_node = ailment.Block(
+                    0,
+                    0,
+                    statements=[
+                        ailment.Stmt.Jump(
+                            None,
+                            ailment.Expr.Const(None, None, entry_addr, self.project.arch.bits),
+                            ins_addr=0,
+                            stmt_idx=0,
+                        )
+                    ],
+                )
+                case_node = SequenceNode(0, nodes=[CodeNode(case_inner_node, claripy.true())])
+                converted_nodes[entry_addr] = case_node
+                continue
+            case_node = SequenceNode(entry_node.addr, nodes=[CodeNode(entry_node.node, claripy.true())])
+            to_remove.add(entry_node)
+            entry_node_idx = seq.nodes.index(entry_node)
+            if entry_node_idx <= head_node_idx:
+                # it's jumping to a block that dominates the head. it's likely to be an optimized continue; statement
+                # in a switch-case wrapped inside a while loop.
+                # replace it with an empty Goto node
+                case_inner_node = ailment.Block(
+                    0,
+                    0,
+                    statements=[
+                        ailment.Stmt.Jump(
+                            None,
+                            ailment.Expr.Const(None, None, entry_addr, self.project.arch.bits),
+                            ins_addr=0,
+                            stmt_idx=0,
+                        )
+                    ],
+                )
+                case_node = SequenceNode(0, nodes=[CodeNode(case_inner_node, claripy.true())])
+                converted_nodes[entry_addr] = case_node
+                continue
+            # find nodes that this entry node dominates
+            cond_subexprs = list(get_ast_subexprs(entry_node.reaching_condition))
+            guarded_nodes = None
+            for subexpr in cond_subexprs:
+                guarded_node_candidates = self._nodes_guarded_by_common_subexpr(seq, subexpr, entry_node_idx + 1)
+                if guarded_nodes is None:
+                    guarded_nodes = {node_ for _, node_, _ in guarded_node_candidates}
+                else:
+                    guarded_nodes = guarded_nodes.intersection({node_ for _, node_, _ in guarded_node_candidates})
+            if guarded_nodes is not None:
+                # keep the topological order of nodes in Sequence node
+                sorted_guarded_nodes = [node_ for node_ in seq.nodes[entry_node_idx + 1 :] if node_ in guarded_nodes]
+                for node_ in sorted_guarded_nodes:
+                    if node_ is not entry_node and node_.addr not in entry_addrs_set:
+                        # fix reaching condition
+                        reaching_condition_subexprs = set(get_ast_subexprs(node_.reaching_condition)).difference(
+                            set(cond_subexprs)
+                        )
+                        new_reaching_condition = claripy.And(*reaching_condition_subexprs)
+                        new_node = CodeNode(node_.node, new_reaching_condition)
+                        case_node.add_node(new_node)
+                        to_remove.add(node_)
+            # do we have a default node?
+            case_last_stmt = self.cond_proc.get_last_statement(case_node)
+            if isinstance(case_last_stmt, ailment.Stmt.Jump):
+                targets = extract_jump_targets(case_last_stmt)
+                if len(targets) == 1 and targets[0] == node_b_addr:
+                    # jump to the default case is rare - it's more likely that there is no default for this
+                    # switch-case struct
+                    node_default = None
+            converted_nodes[entry_addr] = case_node
+        for entry_addr, converted_node in converted_nodes.items():
+            cases_ids = entry_addr_to_ids[entry_addr]
+            if len(cases_ids) == 1:
+                cases[next(iter(cases_ids))] = converted_node
+            else:
+                cases[tuple(sorted(cases_ids))] = converted_node
+            self._new_sequences.append(converted_node)
+        # reorganize cases to handle fallthroughs
+        cases = self._reorganize_switch_cases(cases)
+        return cases, node_default, to_remove
+    #
+    # Dealing with If-Then-Else structures
+    #
+    def _make_ites(self, seq):
+        # search for a == ^a pairs
+        while True:
+            break_hard = False
+            for i in range(len(seq.nodes)):
+                node_0 = seq.nodes[i]
+                if type(node_0) is not CodeNode:
+                    continue
+                rcond_0 = node_0.reaching_condition
+                if rcond_0 is None:
+                    continue
+                if claripy.is_true(rcond_0) or claripy.is_false(rcond_0):
+                    continue
+                for j in range(i + 1, len(seq.nodes)):
+                    node_1 = seq.nodes[j]
+                    if type(node_1) is not CodeNode:
+                        continue
+                    if node_0 is node_1:
+                        continue
+                    rcond_1 = node_1.reaching_condition
+                    if rcond_1 is None:
+                        continue
+                    cond_ = claripy.simplify(claripy.Not(rcond_0) == rcond_1)
+                    if claripy.is_true(cond_):
+                        # node_0 and node_1 should be structured using an if-then-else
+                        self._make_ite(seq, node_0, node_1)
+                        break_hard = True
+                        break
+                if break_hard:
+                    break
+            else:
+                break
+    def _structure_common_subexpression_conditions(self, seq):
+        # use common subexpressions to structure nodes and create more if-then-else instances
+        i = 0
+        while i < len(seq.nodes) - 1:
+            structured = False
+            node_0 = seq.nodes[i]
+            if not isinstance(node_0, CodeNode):
+                i += 1
+                continue
+            rcond_0 = node_0.reaching_condition
+            if rcond_0 is None:
+                i += 1
+                continue
+            subexprs_0 = list(get_ast_subexprs(rcond_0))
+            for common_subexpr in subexprs_0:
+                if claripy.is_true(common_subexpr):
+                    continue
+                candidates = self._nodes_guarded_by_common_subexpr(seq, common_subexpr, i + 1)
+                if candidates:
+                    candidates.insert(0, (i, node_0, subexprs_0))
+                    new_node = self._create_seq_node_guarded_by_common_subexpr(common_subexpr, candidates)
+                    self._new_sequences.append(new_node)
+                    # remove all old nodes and replace them with the new node
+                    for idx, _, _ in candidates:
+                        seq.nodes[idx] = None
+                    seq.nodes[i] = CodeNode(new_node, common_subexpr)
+                    seq.nodes = [n for n in seq.nodes if n is not None]
+                    structured = True
+                    break
+            if not structured:
+                i += 1
+    @staticmethod
+    def _nodes_guarded_by_common_subexpr(seq, common_subexpr, starting_idx):
+        candidates = []
+        if common_subexpr is claripy.true():
+            return []
+        for j, node_1 in enumerate(seq.nodes[starting_idx:]):
+            rcond_1 = getattr(node_1, "reaching_condition", None)
+            if rcond_1 is None:
+                continue
+            subexprs_1 = list(get_ast_subexprs(rcond_1))
+            if any(subexpr_1 is common_subexpr for subexpr_1 in subexprs_1):
+                # we found one!
+                candidates.append((starting_idx + j, node_1, subexprs_1))
+        return candidates
+    @staticmethod
+    def _create_seq_node_guarded_by_common_subexpr(common_subexpr, candidates):
+        new_nodes = []
+        for _, node, subexprs in candidates:
+            # :)
+            new_subexprs = [ex for ex in subexprs if ex is not common_subexpr]
+            new_node = CodeNode(
+                node.node,
+                claripy.And(*new_subexprs),
+            )
+            new_nodes.append(new_node)
+        return SequenceNode(None if not new_nodes else new_nodes[0].addr, nodes=new_nodes)
+    def _replace_complex_reaching_conditions(self, seq: SequenceNode):
+        for i in range(len(seq.nodes)):
+            node = seq.nodes[i]
+            if (
+                isinstance(node, CodeNode)
+                and node.reaching_condition is not None
+                and node.reaching_condition.op == "Or"
+                and node.node in self.cond_proc.guarding_conditions
+            ):
+                guarding_condition = self.cond_proc.guarding_conditions[node.node]
+                # the op of guarding condition is always "Or"
+                if (
+                    len(guarding_condition.args) < len(node.reaching_condition.args)
+                    and guarding_condition.depth < node.reaching_condition.depth
+                ):
+                    node.reaching_condition = guarding_condition
+    def _make_condition_nodes(self, seq):
+        # make all conditionally-reachable nodes ConditionNodes
+        for i in range(len(seq.nodes)):
+            node = seq.nodes[i]
+            if isinstance(node, CodeNode):
+                if isinstance(node.node, SequenceNode) and node.node not in self._new_sequences:
+                    self._make_condition_nodes(node.node)
+                if node.reaching_condition is not None and not claripy.is_true(node.reaching_condition):
+                    if isinstance(node.node, ConditionalBreakNode):
+                        # Put conditions together and simplify them
+                        cond = claripy.And(node.reaching_condition, node.node.condition)
+                        new_node = CodeNode(ConditionalBreakNode(node.node.addr, cond, node.node.target), None)
+                    else:
+                        new_node = ConditionNode(node.addr, None, node.reaching_condition, node, None)
+                    seq.nodes[i] = new_node
+    @staticmethod
+    def _make_cascading_condition_nodes(seq: SequenceNode):
+        """
+        Convert nested condition nodes into a CascadingConditionNode.
+        """
+        CascadingConditionTransformer(seq)
+    def _make_ite(self, seq, node_0, node_1):
+        # ensure order
+        if node_0.addr > node_1.addr:
+            node_0, node_1 = node_1, node_0
+        node_0_pos = seq.node_position(node_0)
+        node_1_pos = seq.node_position(node_1)
+        pos = max(node_0_pos, node_1_pos)
+        node_0_, node_1_ = node_0.copy(), node_1.copy()
+        # clear their reaching conditions
+        node_0_.reaching_condition = None
+        node_1_.reaching_condition = None
+        node_0_kids = self._nodes_guarded_by_common_subexpr(seq, node_0.reaching_condition, node_0_pos + 1)
+        node_0_kids.insert(0, (node_0_pos, node_0_, [node_0.reaching_condition]))
+        node_1_kids = self._nodes_guarded_by_common_subexpr(seq, node_1.reaching_condition, node_1_pos + 1)
+        node_1_kids.insert(0, (node_1_pos, node_1_, [node_1.reaching_condition]))
+        new_node_0 = self._create_seq_node_guarded_by_common_subexpr(node_0.reaching_condition, node_0_kids)
+        new_node_1 = self._create_seq_node_guarded_by_common_subexpr(node_1.reaching_condition, node_1_kids)
+        self._new_sequences.append(new_node_0)
+        self._new_sequences.append(new_node_1)
+        seq_addr = seq.addr
+        # erase all nodes in the candidates
+        for idx, _, _ in node_0_kids + node_1_kids:
+            seq.nodes[idx] = None
+        seq.insert_node(pos, ConditionNode(seq_addr, None, node_0.reaching_condition, new_node_0, new_node_1))
+        seq.nodes = [n for n in seq.nodes if n is not None]
+# delayed import
+from angr.analyses.decompiler.sequence_walker import SequenceWalker  # pylint:disable=wrong-import-position