forked from radareorg/radare2
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathcode.c
291 lines (263 loc) · 8.25 KB
/
code.c
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
/* radare - LGPL - Copyright 2007-2016 - pancake */
#include <r_types.h>
#include <r_util.h>
#include <r_list.h>
#include <r_anal.h>
#include <stdio.h>
#include <string.h>
#include <stdlib.h>
#include <stdarg.h>
#include "code.h"
#include "class.h"
#define V if (verbose)
#define DO_THE_DBG 0
#define IFDBG if(DO_THE_DBG)
#ifndef R_API
#define R_API
#endif
static void init_switch_op ();
static int enter_switch_op (ut64 addr, const ut8 * bytes, int len);
static int update_switch_op (ut64 addr, const ut8 * bytes);
static int update_bytes_consumed (int sz);
static int handle_switch_op (ut64 addr, const ut8 * bytes, char *output, int outlen );
static ut8 IN_SWITCH_OP = 0;
typedef struct current_table_switch_t {
ut64 addr;
int def_jmp;
int min_val;
int max_val;
int cur_val;
} CurrentTableSwitch;
static CurrentTableSwitch SWITCH_OP;
static ut64 BYTES_CONSUMED = 0LL;
//static RBinJavaObj *BIN_OBJ = NULL;
static void init_switch_op () {
memset (&SWITCH_OP, 0, sizeof(SWITCH_OP));
}
static int enter_switch_op (ut64 addr, const ut8* bytes, int len) {
#if 0
int sz = ((BYTES_CONSUMED+1) % 4)
? (1 + 4 - (BYTES_CONSUMED+1) % 4)
: 1; // + (BYTES_CONSUMED+1) % 4;
#endif
if (len < 16)
return 0;
int sz = 4;
int sz2 = (4 - (addr+1) % 4) + (addr+1) % 4;
IFDBG eprintf ("Addr approach: 0x%04x and BYTES_CONSUMED approach: 0x%04"PFMT64x", BYTES_CONSUMED%%4 = 0x%04x\n",
sz2, BYTES_CONSUMED, sz);
init_switch_op ();
IN_SWITCH_OP = 1;
SWITCH_OP.addr = addr;
SWITCH_OP.def_jmp = (UINT (bytes, sz));
SWITCH_OP.min_val = (UINT (bytes, sz + 4));
SWITCH_OP.max_val = (UINT (bytes, sz + 8));
sz += 12;
return sz;
}
static int update_bytes_consumed (int sz) {
BYTES_CONSUMED += sz;
return sz;
}
static int update_switch_op (ut64 addr, const ut8 * bytes) {
int sz = 4;
int ccase = SWITCH_OP.cur_val + SWITCH_OP.min_val;
SWITCH_OP.cur_val++;
if (ccase+1 > SWITCH_OP.max_val) {
IN_SWITCH_OP = 0;
}
IFDBG {
eprintf ("Addr approach: 0x%04"PFMT64x
" and BYTES_CONSUMED approach: 0x%04"PFMT64x
"\n", addr, BYTES_CONSUMED);
}
return update_bytes_consumed(sz);
}
static int handle_switch_op (ut64 addr, const ut8 * bytes, char *output, int outlen ) {
int sz = 4;
ut32 jmp = (int)(UINT (bytes, 0)) + SWITCH_OP.addr;
int ccase = SWITCH_OP.cur_val + SWITCH_OP.min_val;
snprintf(output, outlen, "case %d: goto 0x%04x", ccase, jmp);
update_switch_op (addr, bytes);
return update_bytes_consumed(sz);
}
R_API int java_print_opcode(RBinJavaObj *obj, ut64 addr, int idx, const ut8 *bytes, int len, char *output, int outlen) {
char *arg = NULL; //(char *) malloc (1024);
int sz = 0;
ut32 val_one = 0,
val_two = 0;
ut8 op_byte = JAVA_OPS[idx].byte;
if (IN_SWITCH_OP) {
return handle_switch_op (addr, bytes, output, outlen );
}
#if 0
IFDBG eprintf ("Handling the following opcode %s expects: %d bytes, BYTES_CONSUMED: 0x%04"PFMT64x"\n",
JAVA_OPS[idx].name, JAVA_OPS[idx].size, BYTES_CONSUMED);
#endif
switch (op_byte) {
case 0x10: // "bipush"
snprintf (output, outlen, "%s %d", JAVA_OPS[idx].name, (char) bytes[1]);
output[outlen-1] = 0;
return update_bytes_consumed (JAVA_OPS[idx].size);
case 0x11:
snprintf (output, outlen, "%s %d", JAVA_OPS[idx].name, (int)USHORT (bytes, 1));
output[outlen-1] = 0;
return update_bytes_consumed (JAVA_OPS[idx].size);
case 0x15: // "iload"
case 0x16: // "lload"
case 0x17: // "fload"
case 0x18: // "dload"
case 0x19: // "aload"
case 0x37: // "lstore"
case 0x38: // "fstore"
case 0x39: // "dstore"
case 0x3a: // "astore"
case 0xbc: // "newarray"
case 0xa9: // ret <var-num>
snprintf (output, outlen, "%s %d", JAVA_OPS[idx].name, bytes[1]);
output[outlen-1] = 0;
return update_bytes_consumed (JAVA_OPS[idx].size);
case 0x12: // ldc
arg = r_bin_java_resolve_without_space (obj, (ut16)bytes[1]);
if (arg) {
snprintf (output, outlen, "%s %s", JAVA_OPS[idx].name, arg);
free (arg);
} else {
snprintf (output, outlen, "%s #%d", JAVA_OPS[idx].name, USHORT (bytes, 1));
}
output[outlen-1] = 0;
return update_bytes_consumed (JAVA_OPS[idx].size);
case 0x13:
case 0x14:
arg = r_bin_java_resolve_without_space (obj, (int)USHORT (bytes, 1));
if (arg) {
snprintf (output, outlen, "%s %s", JAVA_OPS[idx].name, arg);
free (arg);
} else {
snprintf (output, outlen, "%s #%d", JAVA_OPS[idx].name, USHORT (bytes, 1));
}
output[outlen-1] = 0;
return update_bytes_consumed (JAVA_OPS[idx].size);
case 0x84: // iinc
val_one = (ut32)bytes[1];
val_two = (ut32) bytes[2];
snprintf (output, outlen, "%s %d %d", JAVA_OPS[idx].name, val_one, val_two);
output[outlen-1] = 0;
return update_bytes_consumed (JAVA_OPS[idx].size);
case 0x99: // ifeq
case 0x9a: // ifne
case 0x9b: // iflt
case 0x9c: // ifge
case 0x9d: // ifgt
case 0x9e: // ifle
case 0x9f: // if_icmpeq
case 0xa0: // if_icmpne
case 0xa1: // if_icmplt
case 0xa2: // if_icmpge
case 0xa3: // if_icmpgt
case 0xa4: // if_icmple
case 0xa5: // if_acmpne
case 0xa6: // if_acmpne
case 0xa7: // goto
case 0xa8: // jsr
snprintf (output, outlen, "%s 0x%04"PFMT64x, JAVA_OPS[idx].name,
(addr+(short)USHORT (bytes, 1)));
output[outlen-1] = 0;
return update_bytes_consumed (JAVA_OPS[idx].size);
// XXX - Figure out what constitutes the [<high>] value
case 0xab: // tableswitch
case 0xaa: // tableswitch
sz = enter_switch_op (addr, bytes, len);
snprintf (output, outlen, "%s default: 0x%04"PFMT64x,
JAVA_OPS[idx].name,
(ut64)(SWITCH_OP.def_jmp+SWITCH_OP.addr));
return update_bytes_consumed (sz);
case 0xb6: // invokevirtual
case 0xb7: // invokespecial
case 0xb8: // invokestatic
case 0xb9: // invokeinterface
case 0xba: // invokedynamic
arg = r_bin_java_resolve_without_space (obj, (int)USHORT (bytes, 1));
if (arg) {
snprintf (output, outlen, "%s %s", JAVA_OPS[idx].name, arg);
free (arg);
} else {
snprintf (output, outlen, "%s #%d", JAVA_OPS[idx].name, USHORT (bytes, 1) );
}
output[outlen-1] = 0;
return update_bytes_consumed (JAVA_OPS[idx].size);
case 0xbb: // new
case 0xbd: // anewarray
case 0xc0: // checkcast
case 0xc1: // instance of
arg = r_bin_java_resolve_without_space (obj, (int)USHORT (bytes, 1));
if (arg) {
snprintf (output, outlen, "%s %s", JAVA_OPS[idx].name, arg);
free (arg);
} else {
snprintf (output, outlen, "%s #%d", JAVA_OPS[idx].name, USHORT (bytes, 1) );
}
output[outlen-1] = 0;
return update_bytes_consumed (JAVA_OPS[idx].size);
case 0xb2: // getstatic
case 0xb3: // putstatic
case 0xb4: // getfield
case 0xb5: // putfield
arg = r_bin_java_resolve_with_space (obj, (int)USHORT (bytes, 1));
if (arg) {
snprintf (output, outlen, "%s %s", JAVA_OPS[idx].name, arg);
free (arg);
} else {
snprintf (output, outlen, "%s #%d", JAVA_OPS[idx].name, USHORT (bytes, 1) );
}
output[outlen-1] = 0;
return update_bytes_consumed (JAVA_OPS[idx].size);
}
/* process arguments */
switch (JAVA_OPS[idx].size) {
case 1: snprintf (output, outlen, "%s", JAVA_OPS[idx].name);
break;
case 2: snprintf (output, outlen, "%s %d", JAVA_OPS[idx].name, bytes[1]);
break;
case 3: snprintf (output, outlen, "%s 0x%04x 0x%04x", JAVA_OPS[idx].name, bytes[0], bytes[1]);
break;
case 5: snprintf (output, outlen, "%s %d", JAVA_OPS[idx].name, bytes[1]);
break;
}
return update_bytes_consumed (JAVA_OPS[idx].size);
}
R_API void r_java_new_method () {
IFDBG eprintf ("Reseting the bytes consumed, they were: 0x%04"PFMT64x".\n", BYTES_CONSUMED);
init_switch_op ();
IN_SWITCH_OP = 0;
BYTES_CONSUMED = 0;
}
R_API void U(r_java_set_obj)(RBinJavaObj *obj) {
// eprintf ("SET CP (%p) %d\n", cp, n);
//BIN_OBJ = obj;
}
R_API int r_java_disasm(RBinJavaObj *obj, ut64 addr, const ut8 *bytes, int len, char *output, int outlen) {
//r_cons_printf ("r_java_disasm (allowed %d): 0x%02x, 0x%0x.\n", outlen, bytes[0], addr);
return java_print_opcode (obj, addr, bytes[0], bytes, len, output, outlen);
}
R_API int r_java_assemble(ut8 *bytes, const char *string) {
char name[128];
int a,b,c,d;
int i;
sscanf (string, "%s %d %d %d %d", name, &a, &b, &c, &d);
for (i = 0; JAVA_OPS[i].name != NULL; i++)
if (!strcmp (name, JAVA_OPS[i].name)) {
bytes[0] = JAVA_OPS[i].byte;
switch (JAVA_OPS[i].size) {
case 2: bytes[1] = a; break;
case 3: bytes[1] = a; bytes[2] = b; break;
case 5: bytes[1] = a;
bytes[2] = b;
bytes[3] = c;
bytes[4] = d;
break;
}
return JAVA_OPS[i].size;
}
return 0;
}