rz-bindgen/doxygen/bin__mz_8c_source.html

 // SPDX-FileCopyrightText: 2015-2019 nodepad <nod3pad@gmail.com>

 // SPDX-License-Identifier: LGPL-3.0-only


 #include <rz_types.h>

 #include <rz_bin.h>

 #include <rz_lib.h>

 #include "mz/mz.h"


 /* half-magic */

 #define HM(x) (int)((int)(x[0] << 8) | (int)(x[1]))


 static Sdb *get_sdb(RzBinFile *bf) {

     const struct rz_bin_mz_obj_t *bin;

     if (bf && bf->o && bf->o->bin_obj) {

         bin = (struct rz_bin_mz_obj_t *)bf->o->bin_obj;

         if (bin && bin->kv) {

             return bin->kv;

         }

     }

     return NULL;

 }


 static bool knownHeaderBuffer(RzBuffer *b, ut16 offset) {

     ut8 h[2];

     if (rz_buf_read_at(b, offset, h, sizeof(h)) != sizeof(h)) {

         return false;

     }

     if (!memcmp(h, "PE", 2)) {

         if (offset + 0x20 < rz_buf_size(b)) {

             if (rz_buf_read_at(b, offset + 0x18, h, sizeof(h)) != 2) {

                 return false;

             }

             if (!memcmp(h, "\x0b\x01", 2)) {

                 return true;

             }

         }

     } else {

         if (!memcmp(h, "NE", 2) || !memcmp(h, "LE", 2) || !memcmp(h, "LX", 2) || !memcmp(h, "PL", 2)) {

             return true;

         }

     }

     return false;

 }


 static bool checkEntrypointBuffer(RzBuffer *b) {

     ut16 cs;

     if (!rz_buf_read_le16_at(b, 0x16, &cs)) {

         return false;

     }


     ut16 ip;

     if (!rz_buf_read_le16_at(b, 0x14, &ip)) {

         return false;

     }


     ut16 tmp;

     if (!rz_buf_read_le16_at(b, 0x08, &tmp)) {

         return false;

     }


     ut32 pa = ((tmp + cs) << 4) + ip;


     /* A minimal MZ header is 0x1B bytes.  Header length is measured in

      * 16-byte paragraphs so the minimum header must occupy 2 paragraphs.

      * This means that the entrypoint should be at least 0x20 unless someone

      * cleverly fit a few instructions inside the header.

      */

     pa &= 0xffff;

     ut64 length = rz_buf_size(b);

     if (pa >= 0x20 && pa + 1 < length) {

         ut16 pe;

         if (!rz_buf_read_le16_at(b, 0x3c, &pe)) {

             return false;

         }


         if (pe + 2 < length && length > 0x104) {

             ut8 h[2];

             if (rz_buf_read_at(b, pe, h, 2) == 2) {

                 if (!memcmp(h, "PE", 2)) {

                     return false;

                 }

             }

         }

         return true;

     }

     return false;

 }


 static bool check_buffer(RzBuffer *b) {

     rz_return_val_if_fail(b, false);

     ut64 b_size = rz_buf_size(b);

     if (b_size <= 0x3d) {

         return false;

     }


     // Check for MZ magic.

     ut8 h[2];

     if (rz_buf_read_at(b, 0, h, 2) != 2) {

         return false;

     }

     if (memcmp(h, "MZ", 2)) {

         return false;

     }


     // See if there is a new exe header.

     ut16 new_exe_header_offset;

     if (!rz_buf_read_le16_at(b, 0x3c, &new_exe_header_offset)) {

         return false;

     }


     if (b_size > new_exe_header_offset + 2) {

         if (knownHeaderBuffer(b, new_exe_header_offset)) {

             return false;

         }

     }


     // Raw plain MZ executable (watcom)

     if (!checkEntrypointBuffer(b)) {

         return false;

     }

     return true;

 }


 static bool load(RzBinFile *bf, RzBinObject *obj, RzBuffer *buf, Sdb *sdb) {

     struct rz_bin_mz_obj_t *mz_obj = rz_bin_mz_new_buf(buf);

     if (mz_obj) {

         sdb_ns_set(sdb, "info", mz_obj->kv);

         obj->bin_obj = mz_obj;

         return true;

     }

     return false;

 }


 static void destroy(RzBinFile *bf) {

     rz_bin_mz_free((struct rz_bin_mz_obj_t *)bf->o->bin_obj);

 }


 static RzBinAddr *binsym(RzBinFile *bf, RzBinSpecialSymbol type) {

     RzBinAddr *mzaddr = NULL;

     if (bf && bf->o && bf->o->bin_obj) {

         switch (type) {

         case RZ_BIN_SPECIAL_SYMBOL_MAIN:

             mzaddr = rz_bin_mz_get_main_vaddr(bf->o->bin_obj);

             break;

         default:

             break;

         }

     }

     return mzaddr;

 }


 static RzList *entries(RzBinFile *bf) {

     RzBinAddr *ptr = NULL;

     RzList *res = NULL;

     if (!(res = rz_list_newf(free))) {

         return NULL;

     }

     ptr = rz_bin_mz_get_entrypoint(bf->o->bin_obj);

     if (ptr) {

         rz_list_append(res, ptr);

     }

     return res;

 }


 static RzList *sections(RzBinFile *bf) {

     return rz_bin_mz_get_segments(bf->o->bin_obj);

 }


 static RzBinInfo *info(RzBinFile *bf) {

     RzBinInfo *const ret = RZ_NEW0(RzBinInfo);

     if (!ret) {

         return NULL;

     }

     ret->file = strdup(bf->file);

     ret->bclass = strdup("MZ");

     ret->rclass = strdup("mz");

     ret->os = strdup("DOS");

     ret->arch = strdup("x86");

     ret->machine = strdup("i386");

     ret->type = strdup("EXEC (Executable file)");

     ret->subsystem = strdup("DOS");

     ret->bits = 16;

     ret->dbg_info = 0;

     ret->big_endian = false;

     ret->has_crypto = false;

     ret->has_canary = false;

     ret->has_retguard = -1;

     ret->has_nx = false;

     ret->has_pi = false;

     ret->has_va = true;

     return ret;

 }


 static void header(RzBinFile *bf) {

     const struct rz_bin_mz_obj_t *mz = (struct rz_bin_mz_obj_t *)bf->o->bin_obj;

     eprintf("[0000:0000]  Signature           %c%c\n",

         mz->dos_header->signature & 0xFF,

         mz->dos_header->signature >> 8);

     eprintf("[0000:0002]  BytesInLastBlock    0x%04x\n",

         mz->dos_header->bytes_in_last_block);

     eprintf("[0000:0004]  BlocksInFile        0x%04x\n",

         mz->dos_header->blocks_in_file);

     eprintf("[0000:0006]  NumRelocs           0x%04x\n",

         mz->dos_header->num_relocs);

     eprintf("[0000:0008]  HeaderParagraphs    0x%04x\n",

         mz->dos_header->header_paragraphs);

     eprintf("[0000:000a]  MinExtraParagraphs  0x%04x\n",

         mz->dos_header->min_extra_paragraphs);

     eprintf("[0000:000c]  MaxExtraParagraphs  0x%04x\n",

         mz->dos_header->max_extra_paragraphs);

     eprintf("[0000:000e]  InitialSs           0x%04x\n",

         mz->dos_header->ss);

     eprintf("[0000:0010]  InitialSp           0x%04x\n",

         mz->dos_header->sp);

     eprintf("[0000:0012]  Checksum            0x%04x\n",

         mz->dos_header->checksum);

     eprintf("[0000:0014]  InitialIp           0x%04x\n",

         mz->dos_header->ip);

     eprintf("[0000:0016]  InitialCs           0x%04x\n",

         mz->dos_header->cs);

     eprintf("[0000:0018]  RelocTableOffset    0x%04x\n",

         mz->dos_header->reloc_table_offset);

     eprintf("[0000:001a]  OverlayNumber       0x%04x\n",

         mz->dos_header->overlay_number);

 }


 static RzList *relocs(RzBinFile *bf) {

     RzList *ret = NULL;

     RzBinReloc *rel = NULL;

     const struct rz_bin_mz_reloc_t *relocs = NULL;

     int i;


     if (!bf || !bf->o || !bf->o->bin_obj) {

         return NULL;

     }

     if (!(ret = rz_list_newf(free))) {

         return NULL;

     }

     if (!(relocs = rz_bin_mz_get_relocs(bf->o->bin_obj))) {

         return ret;

     }

     for (i = 0; !relocs[i].last; i++) {

         if (!(rel = RZ_NEW0(RzBinReloc))) {

             free((void *)relocs);

             rz_list_free(ret);

             return NULL;

         }

         rel->type = RZ_BIN_RELOC_16;

         rel->vaddr = relocs[i].vaddr;

         rel->paddr = relocs[i].paddr;

         rz_list_append(ret, rel);

     }

     free((void *)relocs);

     return ret;

 }


 RzBinPlugin rz_bin_plugin_mz = {

     .name = "mz",

     .desc = "MZ bin plugin",

     .license = "MIT",

     .get_sdb = &get_sdb,

     .load_buffer = &load,

     .destroy = &destroy,

     .check_buffer = &check_buffer,

     .binsym = &binsym,

     .entries = &entries,

     .maps = &rz_bin_maps_of_file_sections,

     .sections = &sections,

     .info = &info,

     .header = &header,

     .relocs = &relocs,

     .minstrlen = 4,

 };


 #ifndef RZ_PLUGIN_INCORE

 RZ_API RzLibStruct rizin_plugin = {

     .type = RZ_LIB_TYPE_BIN,

     .data = &rz_bin_plugin_mz,

     .version = RZ_VERSION

 };

 #endif

i
lzma_index ** i
Definition: index.h:629

rz_bin_maps_of_file_sections
RZ_API RZ_OWN RzList * rz_bin_maps_of_file_sections(RZ_NONNULL RzBinFile *binfile)
Create a list of RzBinMap from RzBinSections queried from the given file.
Definition: bin.c:1040

get_sdb
static Sdb * get_sdb(RzBinFile *bf)
Definition: bin_mz.c:12

knownHeaderBuffer
static bool knownHeaderBuffer(RzBuffer *b, ut16 offset)
Definition: bin_mz.c:23

binsym
static RzBinAddr * binsym(RzBinFile *bf, RzBinSpecialSymbol type)
Definition: bin_mz.c:138

header
static void header(RzBinFile *bf)
Definition: bin_mz.c:194

destroy
static void destroy(RzBinFile *bf)
Definition: bin_mz.c:134

rizin_plugin
RZ_API RzLibStruct rizin_plugin
Definition: bin_mz.c:276

check_buffer
static bool check_buffer(RzBuffer *b)
Definition: bin_mz.c:89

info
static RzBinInfo * info(RzBinFile *bf)
Definition: bin_mz.c:169

rz_bin_plugin_mz
RzBinPlugin rz_bin_plugin_mz
Definition: bin_mz.c:257

checkEntrypointBuffer
static bool checkEntrypointBuffer(RzBuffer *b)
Definition: bin_mz.c:45

entries
static RzList * entries(RzBinFile *bf)
Definition: bin_mz.c:152

load
static bool load(RzBinFile *bf, RzBinObject *obj, RzBuffer *buf, Sdb *sdb)
Definition: bin_mz.c:124

sections
static RzList * sections(RzBinFile *bf)
Definition: bin_mz.c:165

relocs
static RzList * relocs(RzBinFile *bf)
Definition: bin_mz.c:227

RZ_API
#define RZ_API
Definition: core_plugin_example.c:36

NULL
#define NULL
Definition: cris-opc.c:27

length
static static sync static getppid static getegid const char static filename char static len const char char static bufsiz static mask static vfork const void static prot static getpgrp const char static swapflags static arg static fd static protocol static who struct sockaddr static addrlen static backlog struct timeval struct timezone static tz const struct iovec static count static mode const void const struct sockaddr static tolen const char static pathname void static offset struct stat static buf void long static basep static whence static length const void static len static semflg const void static shmflg const struct timespec struct timespec static rem const char static group const void length
Definition: sflib.h:133

ut16
uint16_t ut16
Definition: demangler_util.h:30

ut32
uint32_t ut32
Definition: demangler_util.h:31

free
RZ_API void Ht_() free(HtName_(Ht) *ht)
Definition: ht_inc.c:130

offset
voidpf uLong offset
Definition: ioapi.h:144

buf
voidpf void * buf
Definition: ioapi.h:138

ut8
uint8_t ut8
Definition: lh5801.h:11

rz_list_newf
RZ_API RZ_OWN RzList * rz_list_newf(RzListFree f)
Returns a new initialized RzList pointer and sets the free method.
Definition: list.c:248

rz_list_append
RZ_API RZ_BORROW RzListIter * rz_list_append(RZ_NONNULL RzList *list, void *data)
Appends at the end of the list a new element.
Definition: list.c:288

rz_list_free
RZ_API void rz_list_free(RZ_NONNULL RzList *list)
Empties the list and frees the list pointer.
Definition: list.c:137

strdup
return strdup("=SP	r13\n" "=LR	r14\n" "=PC	r15\n" "=A0	r0\n" "=A1	r1\n" "=A2	r2\n" "=A3	r3\n" "=ZF	zf\n" "=SF	nf\n" "=OF	vf\n" "=CF	cf\n" "=SN	or0\n" "gpr	lr	.32	56	0\n" "gpr	pc	.32	60	0\n" "gpr	cpsr	.32	64	0	____tfiae_________________qvczn\n" "gpr	or0	.32	68	0\n" "gpr	tf	.1	64.5	0	thumb\n" "gpr	ef	.1	64.9	0	endian\n" "gpr	jf	.1	64.24	0	java\n" "gpr	qf	.1	64.27	0	sticky_overflow\n" "gpr	vf	.1	64.28	0	overflow\n" "gpr	cf	.1	64.29	0	carry\n" "gpr	zf	.1	64.30	0	zero\n" "gpr	nf	.1	64.31	0	negative\n" "gpr	itc	.4	64.10	0	if_then_count\n" "gpr	gef	.4	64.16	0	great_or_equal\n" "gpr	r0	.32	0	0\n" "gpr	r1	.32	4	0\n" "gpr	r2	.32	8	0\n" "gpr	r3	.32	12	0\n" "gpr	r4	.32	16	0\n" "gpr	r5	.32	20	0\n" "gpr	r6	.32	24	0\n" "gpr	r7	.32	28	0\n" "gpr	r8	.32	32	0\n" "gpr	r9	.32	36	0\n" "gpr	r10	.32	40	0\n" "gpr	r11	.32	44	0\n" "gpr	r12	.32	48	0\n" "gpr	r13	.32	52	0\n" "gpr	r14	.32	56	0\n" "gpr	r15	.32	60	0\n" "gpr	r16	.32	64	0\n" "gpr	r17	.32	68	0\n")

ip
#define ip

type
int type
Definition: mipsasm.c:17

rz_bin_mz_get_segments
RzList * rz_bin_mz_get_segments(const struct rz_bin_mz_obj_t *bin)
Definition: mz.c:62

rz_bin_mz_get_entrypoint
RzBinAddr * rz_bin_mz_get_entrypoint(const struct rz_bin_mz_obj_t *bin)
Definition: mz.c:16

rz_bin_mz_new_buf
struct rz_bin_mz_obj_t * rz_bin_mz_new_buf(RzBuffer *buf)
Definition: mz.c:317

rz_bin_mz_free
void * rz_bin_mz_free(struct rz_bin_mz_obj_t *bin)
Definition: mz.c:188

rz_bin_mz_get_main_vaddr
RzBinAddr * rz_bin_mz_get_main_vaddr(struct rz_bin_mz_obj_t *bin)
Definition: mz.c:330

rz_bin_mz_get_relocs
struct rz_bin_mz_reloc_t * rz_bin_mz_get_relocs(const struct rz_bin_mz_obj_t *bin)
Definition: mz.c:163

mz.h

autogen_x86imm.tmp
tmp
Definition: autogen_x86imm.py:12

test_evm.cs
cs
Definition: test_evm.py:8

sdb_ns_set
RZ_API int sdb_ns_set(Sdb *s, const char *name, Sdb *r)
Definition: ns.c:156

eprintf
#define eprintf(x, y...)
Definition: rlcc.c:7

rz_return_val_if_fail
#define rz_return_val_if_fail(expr, val)
Definition: rz_assert.h:108

rz_bin.h

RZ_BIN_RELOC_16
@ RZ_BIN_RELOC_16
Definition: rz_bin.h:174

RzBinSpecialSymbol
RzBinSpecialSymbol
Definition: rz_bin.h:136

RZ_BIN_SPECIAL_SYMBOL_MAIN
@ RZ_BIN_SPECIAL_SYMBOL_MAIN
Definition: rz_bin.h:139

rz_buf_read_le16_at
#define rz_buf_read_le16_at(b, addr, result)
Definition: rz_buf.h:270

rz_buf_read_at
RZ_API st64 rz_buf_read_at(RZ_NONNULL RzBuffer *b, ut64 addr, RZ_NONNULL RZ_OUT ut8 *buf, ut64 len)
Read len bytes of the buffer at the specified address.
Definition: buf.c:1136

rz_buf_size
RZ_API ut64 rz_buf_size(RZ_NONNULL RzBuffer *b)
Return the size of the buffer.
Definition: buf.c:1225

rz_lib.h

RZ_LIB_TYPE_BIN
@ RZ_LIB_TYPE_BIN
Definition: rz_lib.h:75

rz_types.h

RZ_NEW0
#define RZ_NEW0(x)
Definition: rz_types.h:284

RZ_VERSION
#define RZ_VERSION
Definition: rz_version.h:8

b
#define b(i)
Definition: sha256.c:42

h
#define h(i)
Definition: sha256.c:48

MZ_image_dos_header::min_extra_paragraphs
ut16 min_extra_paragraphs
Definition: mz_specs.h:10

MZ_image_dos_header::checksum
ut16 checksum
Definition: mz_specs.h:14

MZ_image_dos_header::sp
ut16 sp
Definition: mz_specs.h:13

MZ_image_dos_header::ip
ut16 ip
Definition: mz_specs.h:15

MZ_image_dos_header::bytes_in_last_block
ut16 bytes_in_last_block
Definition: mz_specs.h:6

MZ_image_dos_header::reloc_table_offset
ut16 reloc_table_offset
Definition: mz_specs.h:17

MZ_image_dos_header::ss
ut16 ss
Definition: mz_specs.h:12

MZ_image_dos_header::cs
ut16 cs
Definition: mz_specs.h:16

MZ_image_dos_header::max_extra_paragraphs
ut16 max_extra_paragraphs
Definition: mz_specs.h:11

MZ_image_dos_header::blocks_in_file
ut16 blocks_in_file
Definition: mz_specs.h:7

MZ_image_dos_header::num_relocs
ut16 num_relocs
Definition: mz_specs.h:8

MZ_image_dos_header::overlay_number
ut16 overlay_number
Definition: mz_specs.h:18

MZ_image_dos_header::signature
ut16 signature
Definition: mz_specs.h:5

MZ_image_dos_header::header_paragraphs
ut16 header_paragraphs
Definition: mz_specs.h:9

bin
Definition: malloc.c:26

rz_bin_addr_t
Definition: rz_bin.h:185

rz_bin_file_t
XX curplugin == o->plugin.
Definition: rz_bin.h:298

rz_bin_file_t::o
RzBinObject * o
Definition: rz_bin.h:305

rz_bin_file_t::file
char * file
Definition: rz_bin.h:299

rz_bin_info_t
Definition: rz_bin.h:209

rz_bin_info_t::has_va
int has_va
Definition: rz_bin.h:228

rz_bin_info_t::type
char * type
Definition: rz_bin.h:211

rz_bin_info_t::has_crypto
int has_crypto
Definition: rz_bin.h:233

rz_bin_info_t::has_canary
int has_canary
Definition: rz_bin.h:230

rz_bin_info_t::bits
int bits
Definition: rz_bin.h:227

rz_bin_info_t::os
char * os
Definition: rz_bin.h:219

rz_bin_info_t::subsystem
char * subsystem
Definition: rz_bin.h:220

rz_bin_info_t::has_pi
int has_pi
Definition: rz_bin.h:229

rz_bin_info_t::has_nx
int has_nx
Definition: rz_bin.h:234

rz_bin_info_t::machine
char * machine
Definition: rz_bin.h:216

rz_bin_info_t::bclass
char * bclass
Definition: rz_bin.h:212

rz_bin_info_t::file
char * file
Definition: rz_bin.h:210

rz_bin_info_t::dbg_info
ut64 dbg_info
Definition: rz_bin.h:240

rz_bin_info_t::has_retguard
int has_retguard
Definition: rz_bin.h:231

rz_bin_info_t::rclass
char * rclass
Definition: rz_bin.h:213

rz_bin_info_t::arch
char * arch
Definition: rz_bin.h:214

rz_bin_info_t::big_endian
int big_endian
Definition: rz_bin.h:235

rz_bin_mz_obj_t
Definition: mz.h:26

rz_bin_mz_obj_t::kv
Sdb * kv
Definition: mz.h:38

rz_bin_mz_obj_t::dos_header
const MZ_image_dos_header * dos_header
Definition: mz.h:27

rz_bin_mz_reloc_t
Definition: mz.h:20

rz_bin_object_t
Definition: rz_bin.h:259

rz_bin_object_t::bin_obj
void * bin_obj
Definition: rz_bin.h:293

rz_bin_plugin_t
Definition: rz_bin.h:508

rz_bin_plugin_t::name
char * name
Definition: rz_bin.h:509

rz_bin_plugin_t::version
char * version
Definition: rz_bin.h:512

rz_bin_reloc_t
Definition: rz_bin.h:711

rz_bin_reloc_t::paddr
ut64 paddr
the paddr where the value should be patched into
Definition: rz_bin.h:717

rz_bin_reloc_t::type
RzBinRelocType type
Definition: rz_bin.h:712

rz_bin_reloc_t::vaddr
ut64 vaddr
the vaddr where the value should be patched into
Definition: rz_bin.h:716

rz_buf_t
Definition: rz_buf.h:43

rz_lib_struct_t
Definition: rz_lib.h:57

rz_lib_struct_t::type
int type
Definition: rz_lib.h:58

rz_list_t
Definition: rz_list.h:18

sdb_t
Definition: sdb.h:63

if
if(dbg->bits==RZ_SYS_BITS_64)
Definition: windows-arm64.h:4

ut64
ut64(WINAPI *w32_GetEnabledXStateFeatures)()