Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Upgrade YARA to newer version #218

Closed
mbandzi opened this issue Feb 9, 2018 · 2 comments
Closed

Upgrade YARA to newer version #218

mbandzi opened this issue Feb 9, 2018 · 2 comments
Labels
C-yaracpp enhancement

Comments

@mbandzi
Copy link
Contributor

mbandzi commented Feb 9, 2018

Decompiler currently uses version based on v3.6.3 release.
New version fixes several bugs in ELF module (#215).

Note: in newer versions, keyword entry_point_for_arch is used instead of old ep_for_arch so Mach-O signatures in support/yara_patterns/tools/macho have to be fixed.
@s3rvac
Copy link
Member

s3rvac commented May 26, 2018

What steps are needed to upgrade YARA to its latest version? It would be useful to have a summary so we do not forget something during the upgrade (e.g. regeneration of our static-code signatures in the support package).

PeterMatula added a commit that referenced this issue Aug 14, 2018
@PeterMatula
CHANGELOG.md: add entry for YARA upgrade #218.
4c42019
@PeterMatula PeterMatula mentioned this issue Aug 14, 2018
Closed
@s3rvac
Copy link
Member

s3rvac commented Feb 7, 2019

I am re-opening this issue as we still use YARA 3.6.3 in RetDec (the upgrade to YARA 3.7 is still in an unmerged branch). As both yaracpp and yaramod use YARA 3.8, we should also use YARA 3.8 in RetDec.

@s3rvac s3rvac reopened this Feb 7, 2019
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
C-yaracpp enhancement
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@s3rvac @mbandzi @PeterMatula