|
|
|
@ -54,14 +54,16 @@ def get_syscall_name(instruction):
|
|
|
|
if CS_GRP_INT not in instruction.groups:
|
|
|
|
if CS_GRP_INT not in instruction.groups:
|
|
|
|
return None
|
|
|
|
return None
|
|
|
|
|
|
|
|
|
|
|
|
try:
|
|
|
|
syscall_register = pwndbg.abi.ABI.syscall().syscall_register
|
|
|
|
abi = pwndbg.abi.ABI.syscall()
|
|
|
|
|
|
|
|
syscall = getattr(pwndbg.regs, abi.syscall_register)
|
|
|
|
|
|
|
|
name = pwndbg.constants.syscall(syscall)
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
return 'SYS_' + name
|
|
|
|
# If we are on x86/x64, return no syscall name for other instructions than syscall and int 0x80
|
|
|
|
except:
|
|
|
|
if syscall_register in ('eax', 'rax'):
|
|
|
|
return None
|
|
|
|
mnemonic = instruction.mnemonic
|
|
|
|
|
|
|
|
if not (mnemonic == 'syscall' or (mnemonic == 'int' and instruction.op_str == '0x80')):
|
|
|
|
|
|
|
|
return None
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
syscall_number = getattr(pwndbg.regs, syscall_register)
|
|
|
|
|
|
|
|
return pwndbg.constants.syscall(syscall_number) or '<unk_%d>' % syscall_number
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
def get(instruction):
|
|
|
|
def get(instruction):
|
|
|
|
@ -76,12 +78,12 @@ def get(instruction):
|
|
|
|
if instruction.address != pwndbg.regs.pc:
|
|
|
|
if instruction.address != pwndbg.regs.pc:
|
|
|
|
return []
|
|
|
|
return []
|
|
|
|
|
|
|
|
|
|
|
|
try:
|
|
|
|
|
|
|
|
abi = pwndbg.abi.ABI.default()
|
|
|
|
|
|
|
|
except KeyError:
|
|
|
|
|
|
|
|
return []
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
if CS_GRP_CALL in instruction.groups:
|
|
|
|
if CS_GRP_CALL in instruction.groups:
|
|
|
|
|
|
|
|
try:
|
|
|
|
|
|
|
|
abi = pwndbg.abi.ABI.default()
|
|
|
|
|
|
|
|
except KeyError:
|
|
|
|
|
|
|
|
return []
|
|
|
|
|
|
|
|
|
|
|
|
# Not sure of any OS which allows multiple operands on
|
|
|
|
# Not sure of any OS which allows multiple operands on
|
|
|
|
# a call instruction.
|
|
|
|
# a call instruction.
|
|
|
|
assert len(instruction.operands) == 1
|
|
|
|
assert len(instruction.operands) == 1
|
|
|
|
@ -96,11 +98,12 @@ def get(instruction):
|
|
|
|
return []
|
|
|
|
return []
|
|
|
|
elif CS_GRP_INT in instruction.groups:
|
|
|
|
elif CS_GRP_INT in instruction.groups:
|
|
|
|
# Get the syscall number and name
|
|
|
|
# Get the syscall number and name
|
|
|
|
|
|
|
|
name = get_syscall_name(instruction)
|
|
|
|
abi = pwndbg.abi.ABI.syscall()
|
|
|
|
abi = pwndbg.abi.ABI.syscall()
|
|
|
|
|
|
|
|
target = None
|
|
|
|
|
|
|
|
|
|
|
|
target = None
|
|
|
|
if name is None:
|
|
|
|
syscall = getattr(pwndbg.regs, abi.syscall_register)
|
|
|
|
return []
|
|
|
|
name = pwndbg.constants.syscall(syscall)
|
|
|
|
|
|
|
|
else:
|
|
|
|
else:
|
|
|
|
return []
|
|
|
|
return []
|
|
|
|
|
|
|
|
|
|
|
|
@ -147,7 +150,7 @@ def get(instruction):
|
|
|
|
if func:
|
|
|
|
if func:
|
|
|
|
args = func.args
|
|
|
|
args = func.args
|
|
|
|
else:
|
|
|
|
else:
|
|
|
|
args = [pwndbg.functions.Argument('int', 0, argname(i, abi)) for i in range(n_args_default)]
|
|
|
|
args = (pwndbg.functions.Argument('int', 0, argname(i, abi)) for i in range(n_args_default))
|
|
|
|
|
|
|
|
|
|
|
|
for i, arg in enumerate(args):
|
|
|
|
for i, arg in enumerate(args):
|
|
|
|
result.append((arg, argument(i, abi)))
|
|
|
|
result.append((arg, argument(i, abi)))
|
|
|
|
|
disconnect3d
3 years ago