|
From: Eric L. <ew...@an...> - 2006-06-13 18:48:31
|
Sorry about dragging this thread out, i'm just having some difficulty with this. All the help and advice is very much appreciated, though! Two things: 1. If I write a simple tool, and just get the IR that way from inside the instrumentation functions, is there a way to get all BB's of the target executable translated to IR? As far as I can see, only the BB's on the path of execution got translated. 2. I'm passing BB's to LibVEX_Translate with the orig_addr argument set to point to the first instruction in the BB but the translation that comes out does not match the translation from just running valgrind --tool=none --trace-flags=10000000 --trace-notbelow=0. And it's not a pre/post IR optimization issue because I also compared against all the other --trace-flags. Any suggestions as to what could be the cause? Is there a particular format the BB's have to be in for VEX, e.g. have some kinda header? Thanks, Eric |