mirror of https://github.com/pwndbg/pwndbg.git
Refactor nearpc (#1498)
Gulshan Singh
3 years ago
committed by
GitHub
parent
b52d72525f
commit
65462f63dd
@ -0,0 +1,206 @@
|
||||
from typing import List
|
||||
|
||||
import gdb
|
||||
from capstone import * # noqa: F403
|
||||
|
||||
import pwndbg.arguments
|
||||
import pwndbg.color
|
||||
import pwndbg.color.context as C
|
||||
import pwndbg.color.disasm as D
|
||||
import pwndbg.color.theme
|
||||
import pwndbg.commands.comments
|
||||
import pwndbg.disasm
|
||||
import pwndbg.gdblib.config
|
||||
import pwndbg.gdblib.regs
|
||||
import pwndbg.gdblib.strings
|
||||
import pwndbg.gdblib.symbol
|
||||
import pwndbg.gdblib.vmmap
|
||||
import pwndbg.ida
|
||||
import pwndbg.lib.functions
|
||||
import pwndbg.ui
|
||||
from pwndbg.color import ColorConfig
|
||||
from pwndbg.color import ColorParamSpec
|
||||
from pwndbg.color import message
|
||||
|
||||
|
||||
def ljust_padding(lst):
|
||||
longest_len = max(map(len, lst)) if lst else 0
|
||||
return [s.ljust(longest_len) for s in lst]
|
||||
|
||||
|
||||
c = ColorConfig(
|
||||
"nearpc",
|
||||
[
|
||||
ColorParamSpec("symbol", "normal", "color for nearpc command (symbol)"),
|
||||
ColorParamSpec("address", "normal", "color for nearpc command (address)"),
|
||||
ColorParamSpec("prefix", "none", "color for nearpc command (prefix marker)"),
|
||||
ColorParamSpec("syscall-name", "red", "color for nearpc command (resolved syscall name)"),
|
||||
ColorParamSpec("argument", "bold", "color for nearpc command (target argument)"),
|
||||
ColorParamSpec("ida-anterior", "bold", "color for nearpc command (IDA anterior)"),
|
||||
ColorParamSpec("branch-marker", "normal", "color for nearpc command (branch marker line)"),
|
||||
],
|
||||
)
|
||||
|
||||
nearpc_branch_marker = pwndbg.color.theme.add_param(
|
||||
"nearpc-branch-marker", " ↓", "branch marker line for nearpc command"
|
||||
)
|
||||
nearpc_branch_marker_contiguous = pwndbg.color.theme.add_param(
|
||||
"nearpc-branch-marker-contiguous", " ", "contiguous branch marker line for nearpc command"
|
||||
)
|
||||
pwndbg.color.theme.add_param("highlight-pc", True, "whether to highlight the current instruction")
|
||||
pwndbg.color.theme.add_param("nearpc-prefix", "►", "prefix marker for nearpc command")
|
||||
pwndbg.gdblib.config.add_param("left-pad-disasm", True, "whether to left-pad disassembly")
|
||||
nearpc_lines = pwndbg.gdblib.config.add_param(
|
||||
"nearpc-lines", 10, "number of additional lines to print for the nearpc command"
|
||||
)
|
||||
show_args = pwndbg.gdblib.config.add_param(
|
||||
"nearpc-show-args", True, "show call arguments below instruction"
|
||||
)
|
||||
|
||||
|
||||
def nearpc(pc=None, lines=None, emulate=False, repeat=False) -> List[str]:
|
||||
"""
|
||||
Disassemble near a specified address.
|
||||
"""
|
||||
|
||||
# Repeating nearpc (pressing enter) makes it show next addresses
|
||||
# (writing nearpc explicitly again will reset its state)
|
||||
if repeat:
|
||||
# TODO: It would be better to do this in the nearpc command itself, but
|
||||
# that would require a larger refactor
|
||||
pc = nearpc.next_pc
|
||||
|
||||
result = []
|
||||
|
||||
if pc is not None:
|
||||
pc = gdb.Value(pc).cast(pwndbg.gdblib.typeinfo.pvoid)
|
||||
|
||||
# Fix the case where we only have one argument, and
|
||||
# it's a small value.
|
||||
if lines is None and (pc is None or int(pc) < 0x100):
|
||||
lines = pc
|
||||
pc = None
|
||||
|
||||
if pc is None:
|
||||
pc = pwndbg.gdblib.regs.pc
|
||||
|
||||
if lines is None:
|
||||
lines = nearpc_lines // 2
|
||||
|
||||
pc = int(pc)
|
||||
lines = int(lines)
|
||||
|
||||
# Check whether we can even read this address
|
||||
if not pwndbg.gdblib.memory.peek(pc):
|
||||
result.append(message.error("Invalid address %#x" % pc))
|
||||
|
||||
# # Load source data if it's available
|
||||
# pc_to_linenos = collections.defaultdict(lambda: [])
|
||||
# lineno_to_src = {}
|
||||
# frame = gdb.selected_frame()
|
||||
# if frame:
|
||||
# sal = frame.find_sal()
|
||||
# if sal:
|
||||
# symtab = sal.symtab
|
||||
# objfile = symtab.objfile
|
||||
# sourcefilename = symtab.filename
|
||||
# with open(sourcefilename, 'r') as sourcefile:
|
||||
# lineno_to_src = {i:l for i,l in enumerate(sourcefile.readlines())}
|
||||
|
||||
# for line in symtab.linetable():
|
||||
# pc_to_linenos[line.pc].append(line.line)
|
||||
instructions = pwndbg.disasm.near(pc, lines, emulate=emulate, show_prev_insns=not repeat)
|
||||
|
||||
if pwndbg.gdblib.memory.peek(pc) and not instructions:
|
||||
result.append(message.error("Invalid instructions at %#x" % pc))
|
||||
|
||||
# In case $pc is in a new map we don't know about,
|
||||
# this will trigger an exploratory search.
|
||||
pwndbg.gdblib.vmmap.find(pc)
|
||||
|
||||
# Gather all addresses and symbols for each instruction
|
||||
symbols = [pwndbg.gdblib.symbol.get(i.address) for i in instructions]
|
||||
addresses = ["%#x" % i.address for i in instructions]
|
||||
|
||||
nearpc.next_pc = instructions[-1].address + instructions[-1].size if instructions else 0
|
||||
|
||||
# Format the symbol name for each instruction
|
||||
symbols = ["<%s> " % sym if sym else "" for sym in symbols]
|
||||
|
||||
# Pad out all of the symbols and addresses
|
||||
if pwndbg.gdblib.config.left_pad_disasm and not repeat:
|
||||
symbols = ljust_padding(symbols)
|
||||
addresses = ljust_padding(addresses)
|
||||
|
||||
prev = None
|
||||
|
||||
first_pc = True
|
||||
|
||||
# Print out each instruction
|
||||
for address_str, symbol, instr in zip(addresses, symbols, instructions):
|
||||
asm = D.instruction(instr)
|
||||
prefix_sign = pwndbg.gdblib.config.nearpc_prefix
|
||||
|
||||
# Show prefix only on the specified address and don't show it while in repeat-mode
|
||||
# or when showing current instruction for the second time
|
||||
show_prefix = instr.address == pc and not repeat and first_pc
|
||||
prefix = " %s" % (prefix_sign if show_prefix else " " * len(prefix_sign))
|
||||
prefix = c.prefix(prefix)
|
||||
|
||||
pre = pwndbg.ida.Anterior(instr.address)
|
||||
if pre:
|
||||
result.append(c.ida_anterior(pre))
|
||||
|
||||
# Colorize address and symbol if not highlighted
|
||||
# symbol is fetched from gdb and it can be e.g. '<main+8>'
|
||||
if instr.address != pc or not pwndbg.gdblib.config.highlight_pc or repeat:
|
||||
address_str = c.address(address_str)
|
||||
symbol = c.symbol(symbol)
|
||||
elif pwndbg.gdblib.config.highlight_pc and first_pc:
|
||||
prefix = C.highlight(prefix)
|
||||
address_str = C.highlight(address_str)
|
||||
symbol = C.highlight(symbol)
|
||||
first_pc = False
|
||||
|
||||
line = " ".join((prefix, address_str, symbol, asm))
|
||||
|
||||
# If there was a branch before this instruction which was not
|
||||
# contiguous, put in some ellipses.
|
||||
if prev and prev.address + prev.size != instr.address:
|
||||
result.append(c.branch_marker("%s" % nearpc_branch_marker))
|
||||
|
||||
# Otherwise if it's a branch and it *is* contiguous, just put
|
||||
# and empty line.
|
||||
elif prev and any(g in prev.groups for g in (CS_GRP_CALL, CS_GRP_JUMP, CS_GRP_RET)):
|
||||
if nearpc_branch_marker_contiguous:
|
||||
result.append("%s" % nearpc_branch_marker_contiguous)
|
||||
|
||||
# For syscall instructions, put the name on the side
|
||||
if instr.address == pc:
|
||||
syscall_name = pwndbg.arguments.get_syscall_name(instr)
|
||||
if syscall_name:
|
||||
line += " <%s>" % c.syscall_name("SYS_" + syscall_name)
|
||||
|
||||
# For Comment Function
|
||||
try:
|
||||
line += " " * 10 + C.comment(
|
||||
pwndbg.commands.comments.file_lists[pwndbg.gdblib.proc.exe][hex(instr.address)]
|
||||
)
|
||||
except Exception:
|
||||
pass
|
||||
|
||||
result.append(line)
|
||||
|
||||
# For call instructions, attempt to resolve the target and
|
||||
# determine the number of arguments.
|
||||
if show_args:
|
||||
result.extend(
|
||||
("%8s%s" % ("", arg) for arg in pwndbg.arguments.format_args(instruction=instr))
|
||||
)
|
||||
|
||||
prev = instr
|
||||
|
||||
return result
|
||||
|
||||
|
||||
nearpc.next_pc = 0
|
||||
Loading…
Reference in new issue