Missing changelog item?

[affinepoly]

In the new Ghidra release, a new item appeared in the changelog:

Decompiler. Implemented low-pcode-based abstract interpretation via the Università Ca’ Foscari's Library for Static Analysis (LiSA). (GP-5566)

However, it seems that there is no actual reference to this feature other than a stub for AbsInt. Does this make sense? Where should I look for an example?

There's only a stub here.

[d-millar]

@affinepoly Apologies, you're going to need some additional code, and the team has differing opinions on how this should be distributed. In the short term / within a few days (fingers crossed), we'll have an additional repo, called something like "ghidra-lisa". Like "ghidra-volatility" and "ghidra-frida", this will contain a loadable extension with the bridge between LiSA and Ghidra. You'll still need to download LiSA, but this will enable its use from the GUI.

[affinepoly]

thanks!

[d-millar]

OK, that took a bit longer than I expected, but there's a new github archive under NationalSecurityAgency/ghidra-lisa (shout out to our GitHub gurus) that contains the relevant bridge code for the LiSA abstract interpretation libraries in the form of an extension. The README provides a brief explanation of how to get started that I hope will be useful, and there are help pages that explain the various options. I would, however, recommend perusing at least casually the LiSA pages themselves, as they provide considerably more information and, of course, reflect the considerable understanding and insights of the developers of the library.

I should also mention that, after discusions with the team, we have decided to add this code to our next release, so it will be available without the extra effort required to build and install it as an extension. Let us know how you fair and whether it proves interesting/useful!

[d-millar]

One more follow-up: the LiSA extension is now in master. No need to import it as a separate extension from "ghidra-lisa".