On Mar 17 17:39, Jeremy Drake via Cygwin-patches wrote: > On Sat, 1 Mar 2025, Johannes Schindelin wrote: > > > Note: In the long run, we may very well want to follow the insightful > > suggestion by a helpful Windows kernel engineer who pointed out that it > > may be less fragile to implement kind of a disassembler that has a > > better chance to adapt to the ever-changing code of > > `ntdll!RtlpReferenceCurrentDirectory` by skipping uninteresting > > instructions such as `mov %rsp,%rax`, `mov %rbx,0x20(%rax)`, `push %rsi` > > `sub $0x70,%rsp`, etc, and focuses on finding the `lea`, `call > > ntdll!RtlEnterCriticalSection` and `mov ..., rbx` instructions, much > > like it was prototyped out for ARM64 at > > https://gist.github.com/jeremyd2019/aa167df0a0ae422fa6ebaea5b60c80c9 > > Since you kind of asked, here's a proof-of-concept that uses udis86 (I > left a whole bunch of pointer<->integer warnings since this is a PoC). > Tested on windows 11 and 8:
Cool. I like the idea. But obviously, this can't make it into 3.6 anymore. As for the original patch, if a release of Windows comes out which actually needs this change, we will certainly merge it into 3.6.x bugfix releases, so there's no actual pressure to put it into 3.6.0. Corinna
