Abstract: The traditional techniques for indirect jump analysis are limited to special platform or compiler pattern. To deal with the problem, this paper proposes an indirect jump analysis method based on Critical Semantic Subtree(CSS), which is extracted from the semantic tree created by machine instruction semantic specification. Since it focuses on the semantic character and makes jump destination to be computed automatically, this method can recover jump target addresses in a machine and compiler-independent way. Experimental results prove that the method has good generality.

Key words: Critical Semantic Subtree(CSS), indirect jump, jump table recognition

摘要： 针对传统间接跳转解析方法受限于特定模板或模式的局限性，提出一种基于关键语义子树的间接跳转目标解析技术，在为机器指令语义映射生成的语义树上，提取间接跳转典型形式的语义特征，忽略与跳转生成无关的指令，自动生成跳转目标计算函数，实现与编译器及优化选项均无关的间接跳转目标的自动解析。实验结果证明，该方法普适性良好。

关键词: 关键语义子树, 间接跳转, 跳转表识别

CLC Number: 

• TP311