Merge remote-tracking branch 'origin/patch'

Ghidra/Features/Decompiler/ghidra_scripts/classrecovery/RTTIWindowsClassRecoverer.java

@@ -1516,6 +1516,9 @@ public class RTTIWindowsClassRecoverer extends RTTIClassRecoverer {
 				highFunction, recoveredClass, constructor, vbtableOffset);
 
 			if (vbtableAddress != null) {
+				if (isInvalidVbtable(vbtableAddress)) {
+					continue;
+				}
 				return vbtableAddress;
 			}
 		}
@@ -1541,6 +1544,9 @@ public class RTTIWindowsClassRecoverer extends RTTIClassRecoverer {
 				highFunction, recoveredClass, constructor, vbtableOffset);
 
 			if (vbtableAddress != null) {
+				if (isInvalidVbtable(vbtableAddress)) {
+					continue;
+				}
 				return vbtableAddress;
 			}
 		}
@@ -1549,6 +1555,27 @@ public class RTTIWindowsClassRecoverer extends RTTIClassRecoverer {
 
 	}
 
+	private boolean isInvalidVbtable(Address address) {
+
+		// check to see if already has a non-default symbol that is not vbtable 
+		Symbol symbol = program.getSymbolTable().getPrimarySymbol(address);
+		if (symbol.getSource() != SourceType.DEFAULT &&
+			!symbol.getName().contains("vbtable")) {
+			return true;
+		}
+
+		// check to see if table contains an address reference
+		// if it is an address then is very unlikely this is a vbtable since
+		// it needs offset values and most are either large negatives (FFFFF....) or small offsets
+		// both of which are not valid addresses in a normal PE binary
+		Address referencedAddress = extendedFlatAPI.getPointer(address);
+		if (program.getMemory().contains(referencedAddress)) {
+			return true;
+		}
+		return false;
+
+	}
+
 	/**
 	 * Method to find the address of the vbtable referenced at the given offset in the given function
 	 * @param fillStructHelper a reusable {@link FillOutStructureHelper} instance to be used