IDA Pro 5.0 (March 2006)
Introduction of a graph based used interface. The text interface remains instantly available.
Processor Specific Enhancements
ARM: improved distinction of code and data: conditional instructions do not start a new
â€¢ARM: IDA knows that a function call destroys R0.
â€¢ARM: IDA knows that only GNU AS reverts halves of double data items; for other
assemblers the double number format conforms the standard (IEEE).
â€¢ARM: IDA tries to find out the base register of the stack variables by looking for 'mov rN,
â€¢ARM: MOV R12, SP is recognized as the beginning of a code sequence.
â€¢ARM: new target assembler: ARM/Thumb Macro Assembler.
â€¢ARM: slightly better jump table recognition.
â€¢JAVA: complete rewrite of the Java module to support the new JDK 1.5 (or Java5.0)
â€¢PC: added support for the newly documented 'cmpxchg16b' instruction.
â€¢PC: improved function analysis.
â€¢PC: better test of instruction sanity.
â€¢PC: ins instruction was always displayed in the long form.
â€¢PC: more careful approach to jump table xref construction.
â€¢PC: previously undocumented form of the 'test' instruction is recognized (group 3modrm /1)
â€¢PC: newer versions of SEH_ prolog/epilog functions are recognized
â€¢6812: the HCS12 config file has been updated
â€¢78k0: has been replaced by a rewritten module
â€¢78k0s: has been replaced by a rewritten module
â€¢ELF: added support for SPARC unaligned relocation types.
â€¢ELF: relocations in .gnu.conflict section are ignored since this section is not loaded by
â€¢COFF: MC68K: support for R_PCR24 relocation type has been added (used in PalmOS).
â€¢DBG: ida does not create functions for data names.
â€¢more PalmPilot system trap codes are added.
â€¢if the input file is corrupted, IDA displays an error message without exiting to the OS.
â€¢DDK2003 type library files have been updated; wnet/windows.h types have been added.
â€¢Flow charts of processors with delayed jump slots are generated correctly (this feature
requires support from the processor module).
â€¢a regular function is created instead of a function tail if it makes sense.
analysis: the rule which creates functions because of a dref has been improved.
â€¢better use of fixup information during the final pass of the analysis.
â€¢FLAIR: CodeWarrior library files for 6812 are supported (since the file format is
undocumented, there might be problems).
â€¢IDA does not automatically assign a type to local names because it rarely makes sense
â€¢recognition of function pointer tables has been improved.
â€¢turning off the solid border lines turns off SUBROUTINE lines too.
â€¢a full path is accepted in ida.cfg:GRAPH_VISUALIZER.
â€¢minor improvement of switch table construction (if a jump table crossed through segment
boundaries, IDA would fail to create it)
â€¢signature files have been updated or added: Borland Developer Studio 6, Microsoft
Visual C runtime version 8 (.net) 32-bit and 64-bit libraries, Microsoft MFC 64-bit,
Microsoft Active Template Library 64-bit.
â€¢the MD5 of the input file is saved in the database.
Automated disassembly of windows executables, editing code, exports, imports, names, functions, strings, structures, enums, assembly graph view, assembly text view
What does not
mouse hovering, some text is gabbled in the assembly text view and graph view.
What was not tested
dissassembly of non windows files.
the program is usable, but has some annoyances, especially with some of the font being cut off a bit.
|Operating system||Test date||Wine version||Installs?||Runs?||Used|
|Show||Ubuntu 7.10 "Gutsy" i386 (+ variants like Kubuntu)||Nov 23 2007||0.9.49.||Yes||Yes||Platinum||an anonymous user|
|Current||Ubuntu 7.04 "Feisty" i386 (+ variants like Kubuntu)||Jul 04 2007||0.9.35.||Yes||Yes||Silver||an anonymous user|
|Show||Gentoo Linux||Nov 27 2006||0.9.25.||Yes||Yes||Bronze||an anonymous user|
|Show||Gentoo Linux x86_64||Nov 17 2006||0.9.25.||Yes||Yes||Bronze||an anonymous user|
|Show||Debian GNU/Linux 4.x "Etch"||Jul 22 2006||0.9.15.||Yes||Yes||Platinum||HAARP|
Use winetricks work around the font display problem:
If you get a message box on startup, stating:
ÂÂ"Keyboard layout error: Failed to get the scan code of '~' (VkKeyScaÂn failure)"
Either check the box "don't display that message again" or go to the following directory:
Then open the file "idagui.cfg" with a text editor, and locate the line containing the following:
and comment it out:
save and restart.