analysis_ebc.c File Reference

#include <string.h>
#include <rz_types.h>
#include <rz_lib.h>
#include <rz_asm.h>
#include <rz_analysis.h>
#include <ebc_disas.h>

Go to the source code of this file.

Functions
static void	ebc_analysis_jmp8 (RzAnalysisOp *op, ut64 addr, const ut8 *buf)
static void	ebc_analysis_jmp (RzAnalysisOp *op, ut64 addr, const ut8 *buf)
static void	ebc_analysis_call (RzAnalysisOp *op, ut64 addr, const ut8 *buf)
static int	ebc_op (RzAnalysis *analysis, RzAnalysisOp *op, ut64 addr, const ut8 *buf, int len, RzAnalysisOpMask mask)

Variables
RzAnalysisPlugin	rz_analysis_plugin_ebc
RZ_API RzLibStruct	rizin_plugin

Function Documentation

ebc_analysis_call()

static void ebc_analysis_call ( RzAnalysisOp *  op, ut64  addr, const ut8 *  buf  )

static

Definition at line 43 of file analysis_ebc.c.

                                                                           {
    int32_t addr_call;
 
    op->fail = addr + 6;
    if ((buf[1] & 0x7) == 0 && TEST_BIT(buf[0], 6) == 0 && TEST_BIT(buf[0], 7)) {
        addr_call = *(int32_t *)(buf + 2);
 
        if (TEST_BIT(buf[1], 4)) {
            op->jump = (addr + 6 + addr_call);
        } else {
            op->jump = addr_call;
        }
        op->type = RZ_ANALYSIS_OP_TYPE_CALL;
    } else {
        op->type = RZ_ANALYSIS_OP_TYPE_UCALL;
    }
}

References addr, RZ_ANALYSIS_OP_TYPE_CALL, RZ_ANALYSIS_OP_TYPE_UCALL, and TEST_BIT.

Referenced by ebc_op().

ebc_analysis_jmp()

static void ebc_analysis_jmp ( RzAnalysisOp *  op, ut64  addr, const ut8 *  buf  )

static

Definition at line 26 of file analysis_ebc.c.

                                                                          {
    op->fail = addr + 6;
    op->jump = (ut64) * (int32_t *)(buf + 2);
    if (TEST_BIT(buf[1], 4)) {
        op->jump += addr + 6;
    }
    if (buf[1] & 0x7) {
        op->type = RZ_ANALYSIS_OP_TYPE_UJMP;
    } else {
        if (TEST_BIT(buf[1], 7)) {
            op->type = RZ_ANALYSIS_OP_TYPE_CJMP;
        } else {
            op->type = RZ_ANALYSIS_OP_TYPE_JMP;
        }
    }
}

References addr, RZ_ANALYSIS_OP_TYPE_CJMP, RZ_ANALYSIS_OP_TYPE_JMP, RZ_ANALYSIS_OP_TYPE_UJMP, TEST_BIT, and ut64().

Referenced by ebc_op().

ebc_analysis_jmp8()

static void ebc_analysis_jmp8 ( RzAnalysisOp *  op, ut64  addr, const ut8 *  buf  )

static

Definition at line 13 of file analysis_ebc.c.

                                                                           {
    int jmpadr = (int8_t)buf[1];
    op->jump = addr + 2 + (jmpadr * 2);
    op->addr = addr;
    op->fail = addr + 2;
 
    if (TEST_BIT(buf[0], 7)) {
        op->type = RZ_ANALYSIS_OP_TYPE_CJMP;
    } else {
        op->type = RZ_ANALYSIS_OP_TYPE_JMP;
    }
}

References addr, RZ_ANALYSIS_OP_TYPE_CJMP, RZ_ANALYSIS_OP_TYPE_JMP, and TEST_BIT.

Referenced by ebc_op().

ebc_op()

static int ebc_op ( RzAnalysis *  analysis, RzAnalysisOp *  op, ut64  addr, const ut8 *  buf, int  len, RzAnalysisOpMask  mask  )

static

Definition at line 61 of file analysis_ebc.c.

                                                                                                                     {
    int ret;
    ebc_command_t cmd;
    ut8 opcode = buf[0] & EBC_OPCODE_MASK;
 
    if (!op) {
        return 2;
    }
 
    op->addr = addr;
 
    ret = op->size = ebc_decode_command(buf, &cmd);
 
    if (ret < 0) {
        return ret;
    }
 
    switch (opcode) {
    case EBC_JMP8:
        ebc_analysis_jmp8(op, addr, buf);
        break;
    case EBC_JMP:
        ebc_analysis_jmp(op, addr, buf);
        break;
    case EBC_MOVBW:
    case EBC_MOVWW:
    case EBC_MOVDW:
    case EBC_MOVQW:
    case EBC_MOVBD:
    case EBC_MOVWD:
    case EBC_MOVDD:
    case EBC_MOVQD:
    case EBC_MOVSNW:
    case EBC_MOVSND:
    case EBC_MOVQQ:
    case EBC_MOVNW:
    case EBC_MOVND:
    case EBC_MOVI:
    case EBC_MOVIN:
    case EBC_MOVREL:
        op->type = RZ_ANALYSIS_OP_TYPE_MOV;
        break;
    case EBC_RET:
        op->type = RZ_ANALYSIS_OP_TYPE_RET;
        break;
    case EBC_CMPEQ:
    case EBC_CMPLTE:
    case EBC_CMPGTE:
    case EBC_CMPULTE:
    case EBC_CMPUGTE:
    case EBC_CMPIEQ:
    case EBC_CMPILTE:
    case EBC_CMPIGTE:
    case EBC_CMPIULTE:
    case EBC_CMPIUGTE:
        op->type = RZ_ANALYSIS_OP_TYPE_CMP;
        break;
    case EBC_SHR:
        op->type = RZ_ANALYSIS_OP_TYPE_SHR;
        break;
    case EBC_SHL:
        op->type = RZ_ANALYSIS_OP_TYPE_SHL;
        break;
    case EBC_OR:
        op->type = RZ_ANALYSIS_OP_TYPE_OR;
        break;
    case EBC_XOR:
        op->type = RZ_ANALYSIS_OP_TYPE_XOR;
        break;
    case EBC_MUL:
        op->type = RZ_ANALYSIS_OP_TYPE_MUL;
        break;
    case EBC_PUSH:
        op->type = RZ_ANALYSIS_OP_TYPE_PUSH;
        break;
    case EBC_POP:
        op->type = RZ_ANALYSIS_OP_TYPE_POP;
        break;
    case EBC_AND:
        op->type = RZ_ANALYSIS_OP_TYPE_AND;
        break;
    case EBC_ADD:
        op->type = RZ_ANALYSIS_OP_TYPE_ADD;
        break;
    case EBC_SUB:
        op->type = RZ_ANALYSIS_OP_TYPE_SUB;
        break;
    case EBC_NEG:
        op->type = RZ_ANALYSIS_OP_TYPE_SUB;
        break;
    case EBC_CALL:
        ebc_analysis_call(op, addr, buf);
        break;
    case EBC_BREAK:
        op->type = RZ_ANALYSIS_OP_TYPE_SWI;
        break;
    default:
        op->type = RZ_ANALYSIS_OP_TYPE_UNK;
        break;
    }
 
    return ret;
}

References addr, cmd, EBC_ADD, ebc_analysis_call(), ebc_analysis_jmp(), ebc_analysis_jmp8(), EBC_AND, EBC_BREAK, EBC_CALL, EBC_CMPEQ, EBC_CMPGTE, EBC_CMPIEQ, EBC_CMPIGTE, EBC_CMPILTE, EBC_CMPIUGTE, EBC_CMPIULTE, EBC_CMPLTE, EBC_CMPUGTE, EBC_CMPULTE, ebc_decode_command(), EBC_JMP, EBC_JMP8, EBC_MOVBD, EBC_MOVBW, EBC_MOVDD, EBC_MOVDW, EBC_MOVI, EBC_MOVIN, EBC_MOVND, EBC_MOVNW, EBC_MOVQD, EBC_MOVQQ, EBC_MOVQW, EBC_MOVREL, EBC_MOVSND, EBC_MOVSNW, EBC_MOVWD, EBC_MOVWW, EBC_MUL, EBC_NEG, EBC_OPCODE_MASK, EBC_OR, EBC_POP, EBC_PUSH, EBC_RET, EBC_SHL, EBC_SHR, EBC_SUB, EBC_XOR, RZ_ANALYSIS_OP_TYPE_ADD, RZ_ANALYSIS_OP_TYPE_AND, RZ_ANALYSIS_OP_TYPE_CMP, RZ_ANALYSIS_OP_TYPE_MOV, RZ_ANALYSIS_OP_TYPE_MUL, RZ_ANALYSIS_OP_TYPE_OR, RZ_ANALYSIS_OP_TYPE_POP, RZ_ANALYSIS_OP_TYPE_PUSH, RZ_ANALYSIS_OP_TYPE_RET, RZ_ANALYSIS_OP_TYPE_SHL, RZ_ANALYSIS_OP_TYPE_SHR, RZ_ANALYSIS_OP_TYPE_SUB, RZ_ANALYSIS_OP_TYPE_SWI, RZ_ANALYSIS_OP_TYPE_UNK, and RZ_ANALYSIS_OP_TYPE_XOR.

Variable Documentation

rizin_plugin

RZ_API RzLibStruct rizin_plugin

Initial value:

= {
    .type = RZ_LIB_TYPE_ANALYSIS,
    .data = &rz_analysis_plugin_ebc,
    .version = RZ_VERSION
}

Definition at line 175 of file analysis_ebc.c.

rz_analysis_plugin_ebc

RzAnalysisPlugin rz_analysis_plugin_ebc

Initial value:

= {
    .name = "ebc",
    .desc = "EBC code analysis plugin",
    .license = "LGPL3",
    .arch = "ebc",
    .bits = 64,
    .op = &ebc_op,
}

Definition at line 165 of file analysis_ebc.c.