Rizin
unix-like reverse engineering framework and cli tools
bin_le.c
Go to the documentation of this file.
1 // SPDX-FileCopyrightText: 2019 GustavoLCR <gugulcr@gmail.com>
2 // SPDX-License-Identifier: LGPL-3.0-only
3 
4 #include <rz_bin.h>
5 #include "../format/le/le.h"
6 
7 static bool check_buffer(RzBuffer *b) {
8  ut64 length = rz_buf_size(b);
9  if (length < 2) {
10  return false;
11  }
12 
13  ut16 idx;
14  if (!rz_buf_read_le16_at(b, 0x3c, &idx)) {
15  return false;
16  }
17 
18  if ((ut64)idx + 26 < length) {
19  ut8 buf[2];
20  rz_buf_read_at(b, 0, buf, sizeof(buf));
21  if (!memcmp(buf, "LX", 2) || !memcmp(buf, "LE", 2)) {
22  return true;
23  }
24  if (!memcmp(buf, "MZ", 2)) {
25  rz_buf_read_at(b, idx, buf, sizeof(buf));
26  if (!memcmp(buf, "LX", 2) || !memcmp(buf, "LE", 2)) {
27  return true;
28  }
29  }
30  }
31  return false;
32 }
33 
34 static bool load_buffer(RzBinFile *bf, RzBinObject *obj, RzBuffer *buf, Sdb *sdb) {
35  rz_return_val_if_fail(bf && obj && buf, false);
36  rz_bin_le_obj_t *res = rz_bin_le_new_buf(buf);
37  if (res) {
38  obj->bin_obj = res;
39  return true;
40  }
41  return false;
42 }
43 
44 static void destroy(RzBinFile *bf) {
45  rz_bin_le_free(bf->o->bin_obj);
46 }
47 
48 static void header(RzBinFile *bf) {
49  rz_return_if_fail(bf && bf->rbin && bf->o && bf->o->bin_obj);
50  RzBin *rbin = bf->rbin;
51  rz_bin_le_obj_t *bin = bf->o->bin_obj;
52  LE_image_header *h = bin->header;
53  PrintfCallback p = rbin->cb_printf;
54  if (!h || !p) {
55  return;
56  }
57  p("Signature: %2s\n", h->magic);
58  p("Byte Order: %s\n", h->border ? "Big" : "Little");
59  p("Word Order: %s\n", h->worder ? "Big" : "Little");
60  p("Format Level: %u\n", h->level);
61  p("CPU: %s\n", bin->cpu);
62  p("OS: %s\n", bin->os);
63  p("Version: %u\n", h->ver);
64  p("Flags: 0x%04x\n", h->mflags);
65  p("Pages: %u\n", h->mpages);
66  p("InitialEipObj: %u\n", h->startobj);
67  p("InitialEip: 0x%04x\n", h->eip);
68  p("InitialStackObj: %u\n", h->stackobj);
69  p("InitialEsp: 0x%04x\n", h->esp);
70  p("Page Size: 0x%04x\n", h->pagesize);
71  if (bin->is_le) {
72  p("Last Page Size: 0x%04x\n", h->pageshift);
73  } else {
74  p("Page Shift: 0x%04x\n", h->pageshift);
75  }
76  p("Fixup Size: 0x%04x\n", h->fixupsize);
77  p("Fixup Checksum: 0x%04x\n", h->fixupsum);
78  p("Loader Size: 0x%04x\n", h->ldrsize);
79  p("Loader Checksum: 0x%04x\n", h->ldrsum);
80  p("Obj Table: 0x%04x\n", h->objtab);
81  p("Obj Count: %u\n", h->objcnt);
82  p("Obj Page Map: 0x%04x\n", h->objmap);
83  p("Obj Iter Data Map: 0x%04x\n", h->itermap);
84  p("Resource Table: 0x%04x\n", h->rsrctab);
85  p("Resource Count: %u\n", h->rsrccnt);
86  p("Resident Name Table: 0x%04x\n", h->restab);
87  p("Entry Table: 0x%04x\n", h->enttab);
88  p("Directives Table: 0x%04x\n", h->dirtab);
89  p("Directives Count: %u\n", h->dircnt);
90  p("Fixup Page Table: 0x%04x\n", h->fpagetab);
91  p("Fixup Record Table: 0x%04x\n", h->frectab);
92  p("Import Module Name Table: 0x%04x\n", h->impmod);
93  p("Import Module Name Count: %u\n", h->impmodcnt);
94  p("Import Procedure Name Table: 0x%04x\n", h->impproc);
95  p("Per-Page Checksum Table: 0x%04x\n", h->pagesum);
96  p("Enumerated Data Pages: 0x%04x\n", h->datapage);
97  p("Number of preload pages: %u\n", h->preload);
98  p("Non-resident Names Table: 0x%04x\n", h->nrestab);
99  p("Size Non-resident Names: %u\n", h->cbnrestab);
100  p("Checksum Non-resident Names: 0x%04x\n", h->nressum);
101  p("Autodata Obj: %u\n", h->autodata);
102  p("Debug Info: 0x%04x\n", h->debuginfo);
103  p("Debug Length: 0x%04x\n", h->debuglen);
104  p("Preload pages: %u\n", h->instpreload);
105  p("Demand pages: %u\n", h->instdemand);
106  p("Heap Size: 0x%04x\n", h->heapsize);
107  p("Stack Size: 0x%04x\n", h->stacksize);
108 }
109 
110 static RzList *sections(RzBinFile *bf) {
111  return rz_bin_le_get_sections(bf->o->bin_obj);
112 }
113 
114 static RzList *entries(RzBinFile *bf) {
115  return rz_bin_le_get_entrypoints(bf->o->bin_obj);
116 }
117 
118 static RzList *symbols(RzBinFile *bf) {
119  return rz_bin_le_get_symbols(bf->o->bin_obj);
120 }
121 
122 static RzList *imports(RzBinFile *bf) {
123  return rz_bin_le_get_imports(bf->o->bin_obj);
124 }
125 
126 static RzList *libs(RzBinFile *bf) {
127  return rz_bin_le_get_libs(bf->o->bin_obj);
128 }
129 
130 static RzList *relocs(RzBinFile *bf) {
131  return rz_bin_le_get_relocs(bf->o->bin_obj);
132 }
133 
134 static RzBinInfo *info(RzBinFile *bf) {
135  RzBinInfo *info = RZ_NEW0(RzBinInfo);
136  if (info) {
137  rz_bin_le_obj_t *bin = bf->o->bin_obj;
138  LE_image_header *h = bin->header;
139  info->bits = 32;
140  info->type = strdup(bin->type);
141  info->cpu = strdup(bin->cpu);
142  info->os = strdup(bin->os);
143  info->arch = strdup(bin->arch);
144  info->file = strdup(bin->filename ? bin->filename : "");
145  info->big_endian = h->worder;
146  info->has_va = true;
147  info->baddr = 0;
148  }
149  return info;
150 }
151 
152 static RzList *strings(RzBinFile *bf) {
153  return rz_bin_file_strings(bf, 0, false);
154 }
155 
156 RzBinPlugin rz_bin_plugin_le = {
157  .name = "le",
158  .desc = "LE/LX format plugin",
159  .author = "GustavoLCR",
160  .license = "LGPL3",
161  .check_buffer = &check_buffer,
162  .load_buffer = &load_buffer,
163  .destroy = &destroy,
164  .info = &info,
165  .header = &header,
166  .maps = &rz_bin_maps_of_file_sections,
167  .sections = &sections,
168  .entries = &entries,
169  .symbols = &symbols,
170  .imports = &imports,
171  .strings = &strings,
172  .libs = &libs,
173  .relocs = &relocs,
174  .minstrlen = 4
175  // .regstate = &regstate
176 };
177 
178 #ifndef RZ_PLUGIN_INCORE
179 RZ_API RzLibStruct rizin_plugin = {
180  .type = RZ_LIB_TYPE_BIN,
181  .data = &rz_bin_plugin_le,
182  .version = RZ_VERSION
183 };
184 #endif
rz_bin_file_strings
RZ_API RZ_OWN RzList * rz_bin_file_strings(RZ_NONNULL RzBinFile *bf, size_t min_length, bool raw_strings)
Generates a RzList struct containing RzBinString from a given RzBinFile.
Definition: bfile_string.c:325
rz_bin_maps_of_file_sections
RZ_API RZ_OWN RzList * rz_bin_maps_of_file_sections(RZ_NONNULL RzBinFile *binfile)
Create a list of RzBinMap from RzBinSections queried from the given file.
Definition: bin.c:1040
load_buffer
static bool load_buffer(RzBinFile *bf, RzBinObject *obj, RzBuffer *buf, Sdb *sdb)
Definition: bin_le.c:34
symbols
static RzList * symbols(RzBinFile *bf)
Definition: bin_le.c:118
libs
static RzList * libs(RzBinFile *bf)
Definition: bin_le.c:126
header
static void header(RzBinFile *bf)
Definition: bin_le.c:48
strings
static RzList * strings(RzBinFile *bf)
Definition: bin_le.c:152
destroy
static void destroy(RzBinFile *bf)
Definition: bin_le.c:44
rizin_plugin
RZ_API RzLibStruct rizin_plugin
Definition: bin_le.c:179
check_buffer
static bool check_buffer(RzBuffer *b)
Definition: bin_le.c:7
rz_bin_plugin_le
RzBinPlugin rz_bin_plugin_le
Definition: bin_le.c:156
info
static RzBinInfo * info(RzBinFile *bf)
Definition: bin_le.c:134
entries
static RzList * entries(RzBinFile *bf)
Definition: bin_le.c:114
sections
static RzList * sections(RzBinFile *bf)
Definition: bin_le.c:110
imports
static RzList * imports(RzBinFile *bf)
Definition: bin_le.c:122
relocs
static RzList * relocs(RzBinFile *bf)
Definition: bin_le.c:130
RZ_API
#define RZ_API
Definition: core_plugin_example.c:36
length
static static sync static getppid static getegid const char static filename char static len const char char static bufsiz static mask static vfork const void static prot static getpgrp const char static swapflags static arg static fd static protocol static who struct sockaddr static addrlen static backlog struct timeval struct timezone static tz const struct iovec static count static mode const void const struct sockaddr static tolen const char static pathname void static offset struct stat static buf void long static basep static whence static length const void static len static semflg const void static shmflg const struct timespec struct timespec static rem const char static group const void length
Definition: sflib.h:133
ut16
uint16_t ut16
Definition: demangler_util.h:30
buf
voidpf void * buf
Definition: ioapi.h:138
rz_bin_le_get_symbols
RzList * rz_bin_le_get_symbols(rz_bin_le_obj_t *bin)
Definition: le.c:191
rz_bin_le_get_imports
RzList * rz_bin_le_get_imports(rz_bin_le_obj_t *bin)
Definition: le.c:205
rz_bin_le_free
void rz_bin_le_free(rz_bin_le_obj_t *bin)
Definition: le.c:795
rz_bin_le_get_libs
RzList * rz_bin_le_get_libs(rz_bin_le_obj_t *bin)
Definition: le.c:245
rz_bin_le_get_entrypoints
RzList * rz_bin_le_get_entrypoints(rz_bin_le_obj_t *bin)
Definition: le.c:229
rz_bin_le_get_sections
RzList * rz_bin_le_get_sections(rz_bin_le_obj_t *bin)
Definition: le.c:338
rz_bin_le_get_relocs
RzList * rz_bin_le_get_relocs(rz_bin_le_obj_t *bin)
Definition: le.c:453
rz_bin_le_new_buf
rz_bin_le_obj_t * rz_bin_le_new_buf(RzBuffer *buf)
Definition: le.c:803
ut8
uint8_t ut8
Definition: lh5801.h:11
p
void * p
Definition: libc.cpp:67
strdup
return strdup("=SP r13\n" "=LR r14\n" "=PC r15\n" "=A0 r0\n" "=A1 r1\n" "=A2 r2\n" "=A3 r3\n" "=ZF zf\n" "=SF nf\n" "=OF vf\n" "=CF cf\n" "=SN or0\n" "gpr lr .32 56 0\n" "gpr pc .32 60 0\n" "gpr cpsr .32 64 0 ____tfiae_________________qvczn\n" "gpr or0 .32 68 0\n" "gpr tf .1 64.5 0 thumb\n" "gpr ef .1 64.9 0 endian\n" "gpr jf .1 64.24 0 java\n" "gpr qf .1 64.27 0 sticky_overflow\n" "gpr vf .1 64.28 0 overflow\n" "gpr cf .1 64.29 0 carry\n" "gpr zf .1 64.30 0 zero\n" "gpr nf .1 64.31 0 negative\n" "gpr itc .4 64.10 0 if_then_count\n" "gpr gef .4 64.16 0 great_or_equal\n" "gpr r0 .32 0 0\n" "gpr r1 .32 4 0\n" "gpr r2 .32 8 0\n" "gpr r3 .32 12 0\n" "gpr r4 .32 16 0\n" "gpr r5 .32 20 0\n" "gpr r6 .32 24 0\n" "gpr r7 .32 28 0\n" "gpr r8 .32 32 0\n" "gpr r9 .32 36 0\n" "gpr r10 .32 40 0\n" "gpr r11 .32 44 0\n" "gpr r12 .32 48 0\n" "gpr r13 .32 52 0\n" "gpr r14 .32 56 0\n" "gpr r15 .32 60 0\n" "gpr r16 .32 64 0\n" "gpr r17 .32 68 0\n")
setup.idx
int idx
Definition: setup.py:197
rz_return_if_fail
#define rz_return_if_fail(expr)
Definition: rz_assert.h:100
rz_return_val_if_fail
#define rz_return_val_if_fail(expr, val)
Definition: rz_assert.h:108
rz_bin.h
rz_buf_read_le16_at
#define rz_buf_read_le16_at(b, addr, result)
Definition: rz_buf.h:270
rz_buf_read_at
RZ_API st64 rz_buf_read_at(RZ_NONNULL RzBuffer *b, ut64 addr, RZ_NONNULL RZ_OUT ut8 *buf, ut64 len)
Read len bytes of the buffer at the specified address.
Definition: buf.c:1136
rz_buf_size
RZ_API ut64 rz_buf_size(RZ_NONNULL RzBuffer *b)
Return the size of the buffer.
Definition: buf.c:1225
RZ_LIB_TYPE_BIN
@ RZ_LIB_TYPE_BIN
Definition: rz_lib.h:75
RZ_NEW0
#define RZ_NEW0(x)
Definition: rz_types.h:284
PrintfCallback
int(* PrintfCallback)(const char *str,...) RZ_PRINTF_CHECK(1
Definition: rz_types.h:233
RZ_VERSION
#define RZ_VERSION
Definition: rz_version.h:8
b
#define b(i)
Definition: sha256.c:42
h
#define h(i)
Definition: sha256.c:48
LE_image_header_s
Definition: le_specs.h:172
bin
Definition: malloc.c:26
rz_bin_file_t
XX curplugin == o->plugin.
Definition: rz_bin.h:298
rz_bin_file_t::o
RzBinObject * o
Definition: rz_bin.h:305
rz_bin_file_t::rbin
struct rz_bin_t * rbin
Definition: rz_bin.h:316
rz_bin_info_t
Definition: rz_bin.h:209
rz_bin_info_t::has_va
int has_va
Definition: rz_bin.h:228
rz_bin_info_t::type
char * type
Definition: rz_bin.h:211
rz_bin_info_t::bits
int bits
Definition: rz_bin.h:227
rz_bin_info_t::os
char * os
Definition: rz_bin.h:219
rz_bin_info_t::file
char * file
Definition: rz_bin.h:210
rz_bin_info_t::baddr
ut64 baddr
Definition: rz_bin.h:242
rz_bin_info_t::cpu
char * cpu
Definition: rz_bin.h:215
rz_bin_info_t::arch
char * arch
Definition: rz_bin.h:214
rz_bin_info_t::big_endian
int big_endian
Definition: rz_bin.h:235
rz_bin_le_obj_s
Definition: le.h:9
rz_bin_object_t
Definition: rz_bin.h:259
rz_bin_object_t::bin_obj
void * bin_obj
Definition: rz_bin.h:293
rz_bin_plugin_t
Definition: rz_bin.h:508
rz_bin_plugin_t::name
char * name
Definition: rz_bin.h:509
rz_bin_plugin_t::version
char * version
Definition: rz_bin.h:512
rz_bin_t
Definition: rz_bin.h:328
rz_bin_t::cb_printf
PrintfCallback cb_printf
Definition: rz_bin.h:345
rz_buf_t
Definition: rz_buf.h:43
rz_lib_struct_t
Definition: rz_lib.h:57
rz_lib_struct_t::type
int type
Definition: rz_lib.h:58
rz_list_t
Definition: rz_list.h:18
sdb_t
Definition: sdb.h:63
ut64
ut64(WINAPI *w32_GetEnabledXStateFeatures)()