A GDB plugin to provide Ghidra's decompilation within GDB. To achieve this, the plugin uses r2ghidra underneath. r2ghidra abstracts all interactions with Ghidra's native decompiler and combined with r2pipe, provides a clean interface to use in Python.
Because Ghidra provides very good decompilation under most circumstances. It would be useful to have this feature without having to install the entire Dragon.
First, the plugin initializes an instance of radare2 using r2pipe. It loads the instance with the same binary as the one being debugged. Next, whenever a decompilation is requested, it runs the pdg command in the pipe to call the underlying r2ghidra plugin and retrieve the decompilation at the given address. The underlying Ghidra specific details are handled by r2ghidra.
Further improvements will come in, with the major one being dropping radare2 as the middleman between Ghidra's native deompiler and the plugin, and creating a cleaner interface with the native binary.
Add the following line in your gdbinit
source /path/to/gdbghidra/gdbinit.py
This will give you access to the decompileGhidra function within GDB.
decompileGhidra [ADDRESS|FUNC_NAME]
You can run the function in two ways:
- With an argument, where the argument can be the name of the function or an address
- Without an argument, at which point the function will decompile whatever is at the current Program Counter.
I have tested this only on the x86-64 architecture. Other architectures have not been tested yet, but feel free to report any bugs!
- r2pipe
- r2ghidra