fix ending of chain

4 years ago · e0e32dca79
parent bd7c3aa2d2
commit e0e32dca79
2 changed files with 5 additions and 2 deletions
--- a/pwndbg/chain.py
+++ b/pwndbg/chain.py
@ -115,7 +115,7 @@ def format(value, limit=LIMIT, code=True, offset=0, hard_stop=None, hard_end=0,
    # We want to enhance the last pointer value. If an offset was used
    # chain failed at that offset, so display that offset.
    elif len(chain) < limit + 1:
-        enhanced = pwndbg.enhance.enhance(chain[-2] + offset, code=code)
+        enhanced = pwndbg.enhance.enhance(chain[-2] + offset, code=code, safe_linking=safe_linking)

    else:
        enhanced = C.contiguous('%s' % config_contiguous)
--- a/pwndbg/enhance.py
+++ b/pwndbg/enhance.py
@ -50,7 +50,7 @@ def int_str(value):


 # @pwndbg.memoize.reset_on_stop
-def enhance(value, code = True):
+def enhance(value, code = True, safe_linking = False):
    """
    Given the last pointer in a chain, attempt to characterize

@ -64,6 +64,7 @@ def enhance(value, code = True):
    Arguments:
        value(obj): Value to enhance
        code(bool): Hint that indicates the value may be an instruction
+        safe_linking(bool): Whether this chain use safe-linking
    """
    value = int(value)

@ -111,6 +112,8 @@ def enhance(value, code = True):
        return E.integer(int_str(value))

    intval  = int(pwndbg.memory.poi(pwndbg.typeinfo.pvoid, value))
+    if safe_linking:
+        intval ^= value >> 12
    intval0 = intval
    if 0 <= intval < 10:
        intval = E.integer(str(intval))