godzil/dcc
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Start moving parser functionality from Function class.

Browse Source 
Add state switching operation to Function interface
This commit is contained in:
nemerle 2016-05-10 12:36:31 +02:00
parent 6f7bfbddf8
commit 41e9faec0e
6 changed files with 105 additions and 65 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
CMakeLists.txt
View File

@ -79,6 +79,7 @@ set(dcc_LIB_SOURCES
src/idioms/xor_idioms.cpp src/idioms/xor_idioms.cpp
src/locident.cpp src/locident.cpp
src/liveness_set.cpp src/liveness_set.cpp
src/parser.h
src/parser.cpp src/parser.cpp
src/procs.cpp src/procs.cpp
src/project.cpp src/project.cpp

3
include/Procedure.h
View File

@ -231,7 +231,6 @@ public:
void createCFG(); void createCFG();
void markImpure(); void markImpure();
void findImmedDom(); void findImmedDom();
void FollowCtrl(CALL_GRAPH *pcallGraph, STATE *pstate);
void process_operands(ICODE &pIcode, STATE *pstate); void process_operands(ICODE &pIcode, STATE *pstate);
bool process_JMP(ICODE &pIcode, STATE *pstate, CALL_GRAPH *pcallGraph); bool process_JMP(ICODE &pIcode, STATE *pstate, CALL_GRAPH *pcallGraph);
bool process_CALL(ICODE &pIcode, CALL_GRAPH *pcallGraph, STATE *pstate); bool process_CALL(ICODE &pIcode, CALL_GRAPH *pcallGraph, STATE *pstate);
@ -256,6 +255,8 @@ public:
void processDosInt(STATE *pstate, PROG &prog, bool done); void processDosInt(STATE *pstate, PROG &prog, bool done);
ICODE *translate_DIV(LLInst *ll, ICODE &_Icode); ICODE *translate_DIV(LLInst *ll, ICODE &_Icode);
ICODE *translate_XCHG(LLInst *ll, ICODE &_Icode); ICODE *translate_XCHG(LLInst *ll, ICODE &_Icode);
void switchState(DecompilationStep s);
protected: protected:
void extractJumpTableRange(ICODE& pIcode, STATE *pstate, JumpTable &table); void extractJumpTableRange(ICODE& pIcode, STATE *pstate, JumpTable &table);
bool followAllTableEntries(JumpTable &table, uint32_t cs, ICODE &pIcode, CALL_GRAPH *pcallGraph, STATE *pstate); bool followAllTableEntries(JumpTable &table, uint32_t cs, ICODE &pIcode, CALL_GRAPH *pcallGraph, STATE *pstate);

4
src/FollowControlFlow.cpp
View File

@ -1,6 +1,7 @@
#include "FollowControlFlow.h" #include "FollowControlFlow.h"
#include "project.h" #include "project.h"
#include "parser.h"
QString FollowControlFlow::instanceDescription() const QString FollowControlFlow::instanceDescription() const
{ {
@ -11,6 +12,7 @@ bool FollowControlFlow::execute(CommandContext *ctx)
{ {
Project &proj(*ctx->m_project); Project &proj(*ctx->m_project);
PtrFunction scanned_func(ctx->m_func); PtrFunction scanned_func(ctx->m_func);
scanned_func->FollowCtrl(proj.callGraph, &m_start_state); scanned_func->switchState(eDisassemblyInProgress);
FollowCtrl(*scanned_func,proj.callGraph, &m_start_state);
return false; return false;
} }

4
src/Procedure.cpp
View File

@ -131,3 +131,7 @@ void FunctionType::setCallingConvention(CConv::CC_Type cc)
m_call_conv=CConv::create(cc); m_call_conv=CConv::create(cc);
assert(m_call_conv); assert(m_call_conv);
} }
void Function::switchState(DecompilationStep s)
{
nStep = s;
}

151
src/parser.cpp
View File

@ -2,6 +2,8 @@
* dcc project procedure list builder * dcc project procedure list builder
* (C) Cristina Cifuentes, Mike van Emmerik, Jeff Ledermann * (C) Cristina Cifuentes, Mike van Emmerik, Jeff Ledermann
****************************************************************************/ ****************************************************************************/
#include "parser.h"
#include "dcc.h" #include "dcc.h"
#include "project.h" #include "project.h"
#include "CallGraph.h" #include "CallGraph.h"
@ -19,6 +21,12 @@
#include <QMap> #include <QMap>
#include <QtCore/QDebug> #include <QtCore/QDebug>
//TODO: The OS service resolution should be done iteratively:
// for every unprocessed INT instruction, that calls OS service that does not terminate execution
// mark INT as non-termination instruction
// follow execution flow from next instruction
// recheck OS services
using namespace std; using namespace std;
//static void FollowCtrl (Function * pProc, CALL_GRAPH * pcallGraph, STATE * pstate); //static void FollowCtrl (Function * pProc, CALL_GRAPH * pcallGraph, STATE * pstate);
@ -111,11 +119,60 @@ ICODE *Function::translate_XCHG(LLInst *ll,ICODE &_Icode)
eIcode.ll()->label = Project::get()->SynthLab++; eIcode.ll()->label = Project::get()->SynthLab++;
return Icode.addIcode(&eIcode); return Icode.addIcode(&eIcode);
} }
/**
* @brief resolveOSServices
* @param ll
* @param pstate
* @return true if given OS service will terminate the program
*/
//TODO: convert into command
bool resolveOSServices(LLInst *ll, STATE *pstate)
{
PROG &prog(Project::get()->prog);
SYMTAB &global_symbol_table(Project::get()->symtab);
bool terminates=false;
if(pstate->isKnown(rAX))
assert(pstate->isKnown(rAH));
if (ll->src().getImm2() == 0x21 and pstate->isKnown(rAH))
{
int funcNum = pstate->r[rAH];
int operand;
int size;
/* Save function number */
ll->m_dst.off = (int16_t)funcNum;
//Icode.GetIcode(Icode.GetNumIcodes() - 1)->
/* Program termination: int21h, fn 00h, 31h, 4Ch */
terminates = (bool)(funcNum == 0x00 or funcNum == 0x31 or funcNum == 0x4C);
/* String functions: int21h, fn 09h */
/* offset goes into DX */
if (pstate->isKnown(rDX))
if (funcNum == 0x09)
{
operand = ((uint32_t)(uint16_t)pstate->r[rDS]<<4) + (uint32_t)(uint16_t)pstate->r[rDX];
size = prog.fCOM ?
strSize (&prog.image()[operand], '$') :
strSize (&prog.image()[operand], '$'); // + 0x100
global_symbol_table.updateSymType (operand, TypeContainer(TYPE_STR, size));
}
}
else if ((ll->src().getImm2() == 0x2F) and pstate->isKnown(rAH))
{
ll->m_dst.off = pstate->r[rAH];
}
else /* Program termination: int20h, int27h */
terminates = (ll->src().getImm2() == 0x20 or ll->src().getImm2() == 0x27);
return terminates;
}
/** FollowCtrl - Given an initial procedure, state information and symbol table /** FollowCtrl - Given an initial procedure, state information and symbol table
* builds a list of procedures reachable from the initial procedure * builds a list of procedures reachable from the initial procedure
* using a depth first search. */ * using a depth first search. */
void Function::FollowCtrl(CALL_GRAPH * pcallGraph, STATE *pstate) void FollowCtrl(Function &func,CALL_GRAPH * pcallGraph, STATE *pstate)
{ {
Project *project(Project::get()); Project *project(Project::get());
PROG &prog(Project::get()->prog); PROG &prog(Project::get()->prog);
@ -124,20 +181,20 @@ void Function::FollowCtrl(CALL_GRAPH * pcallGraph, STATE *pstate)
uint32_t offset; uint32_t offset;
eErrorId err; eErrorId err;
bool done = false; bool done = false;
SYMTAB &global_symbol_table(Project::get()->symtab);
if (name.contains("chkstk")) if (func.name.contains("chkstk"))
{ {
// Danger! Dcc will likely fall over in this code. // Danger! Dcc will likely fall over in this code.
// So we act as though we have done with this proc // So we act as though we have done with this proc
// pProc->flg &= ~TERMINATES; // Not sure about this // pProc->flg &= ~TERMINATES; // Not sure about this
done = true; done = true;
// And mark it as a library function, so structure() won't choke on it // And mark it as a library function, so structure() won't choke on it
flg |= PROC_ISLIB; func.flg |= PROC_ISLIB;
return; return;
} }
if (option.VeryVerbose) if (option.VeryVerbose)
{ {
qDebug() << "Parsing proc" << name << "at"<< QString::number(pstate->IP,16).toUpper(); qDebug() << "Parsing proc" << func.name << "at"<< QString::number(pstate->IP,16).toUpper();
} }
while (not done ) while (not done )
@ -149,14 +206,14 @@ void Function::FollowCtrl(CALL_GRAPH * pcallGraph, STATE *pstate)
pstate->IP += (uint32_t)ll->numBytes; pstate->IP += (uint32_t)ll->numBytes;
setBits(BM_CODE, ll->label, (uint32_t)ll->numBytes); setBits(BM_CODE, ll->label, (uint32_t)ll->numBytes);
process_operands(_Icode,pstate); func.process_operands(_Icode,pstate);
/* Keep track of interesting instruction flags in procedure */ /* Keep track of interesting instruction flags in procedure */
flg |= (ll->getFlag() & (NOT_HLL | FLOAT_OP)); func.flg |= (ll->getFlag() & (NOT_HLL | FLOAT_OP));
/* Check if this instruction has already been parsed */ /* Check if this instruction has already been parsed */
iICODE labLoc = Icode.labelSrch(ll->label); iICODE labLoc = func.Icode.labelSrch(ll->label);
if (Icode.end()!=labLoc) if (func.Icode.end()!=labLoc)
{ /* Synthetic jump */ { /* Synthetic jump */
_Icode.type = LOW_LEVEL; _Icode.type = LOW_LEVEL;
ll->set(iJMP,I | SYNTHETIC | NO_OPS); ll->set(iJMP,I | SYNTHETIC | NO_OPS);
@ -166,11 +223,11 @@ void Function::FollowCtrl(CALL_GRAPH * pcallGraph, STATE *pstate)
/* Copy Icode to Proc */ /* Copy Icode to Proc */
if ((ll->getOpcode() == iDIV) or (ll->getOpcode() == iIDIV)) if ((ll->getOpcode() == iDIV) or (ll->getOpcode() == iIDIV))
pIcode = translate_DIV(ll, _Icode); pIcode = func.translate_DIV(ll, _Icode);
else if (_Icode.ll()->getOpcode() == iXCHG) else if (_Icode.ll()->getOpcode() == iXCHG)
pIcode = translate_XCHG(ll, _Icode); pIcode = func.translate_XCHG(ll, _Icode);
else else
pIcode = Icode.addIcode(&_Icode); pIcode = func.Icode.addIcode(&_Icode);
switch (ll->getOpcode()) { switch (ll->getOpcode()) {
/*** Conditional jumps ***/ /*** Conditional jumps ***/
@ -182,8 +239,8 @@ void Function::FollowCtrl(CALL_GRAPH * pcallGraph, STATE *pstate)
case iJCXZ: case iJCXZ:
{ {
STATE StCopy; STATE StCopy;
int ip = Icode.size()-1; /* Index of this jump */ int ip = func.Icode.size()-1; /* Index of this jump */
ICODE &prev(*(++Icode.rbegin())); /* Previous icode */ ICODE &prev(*(++func.Icode.rbegin())); /* Previous icode */
bool fBranch = false; bool fBranch = false;
pstate->JCond.regi = 0; pstate->JCond.regi = 0;
@ -203,29 +260,28 @@ void Function::FollowCtrl(CALL_GRAPH * pcallGraph, STATE *pstate)
StCopy = *pstate; StCopy = *pstate;
/* Straight line code */ /* Straight line code */
project->addCommand(shared_from_this(),new FollowControlFlow(StCopy)); // recurrent ? project->addCommand(func.shared_from_this(),new FollowControlFlow(StCopy)); // recurrent ?
if (fBranch) /* Do branching code */ if (fBranch) /* Do branching code */
{ {
pstate->JCond.regi = prev.ll()->m_dst.regi; pstate->JCond.regi = prev.ll()->m_dst.regi;
} }
/* Next icode. Note: not the same as GetLastIcode() because of the call /* Next icode. Note: not the same as GetLastIcode() because of the call to FollowCtrl() */
to FollowCtrl() */ pIcode = func.Icode.GetIcode(ip);
pIcode = Icode.GetIcode(ip);
/* do the jump path */ /* do the jump path */
done = process_JMP (*pIcode, pstate, pcallGraph); done = func.process_JMP (*pIcode, pstate, pcallGraph);
break; break;
} }
/*** Jumps ***/ /*** Jumps ***/
case iJMP: case iJMP:
case iJMPF: /* Returns true if we've run into a loop */ case iJMPF: /* Returns true if we've run into a loop */
done = process_JMP (*pIcode, pstate, pcallGraph); done = func.process_JMP (*pIcode, pstate, pcallGraph);
break; break;
/*** Calls ***/ /*** Calls ***/
case iCALL: case iCALL:
case iCALLF: case iCALLF:
done = process_CALL (*pIcode, pcallGraph, pstate); done = func.process_CALL (*pIcode, pcallGraph, pstate);
pstate->kill(rBX); pstate->kill(rBX);
pstate->kill(rCX); pstate->kill(rCX);
break; break;
@ -233,48 +289,17 @@ void Function::FollowCtrl(CALL_GRAPH * pcallGraph, STATE *pstate)
/*** Returns ***/ /*** Returns ***/
case iRET: case iRET:
case iRETF: case iRETF:
this->flg |= (ll->getOpcode() == iRET)? PROC_NEAR:PROC_FAR; func.flg |= (ll->getOpcode() == iRET)? PROC_NEAR:PROC_FAR;
this->flg &= ~TERMINATES; func.flg &= ~TERMINATES;
done = true; done = true;
break; break;
case iIRET: case iIRET:
this->flg &= ~TERMINATES; func.flg &= ~TERMINATES;
done = true; done = true;
break; break;
case iINT: case iINT:
if (ll->src().getImm2() == 0x21 and pstate->f[rAH]) done = resolveOSServices(ll, pstate);
{
int funcNum = pstate->r[rAH];
int operand;
int size;
/* Save function number */
Icode.back().ll()->m_dst.off = (int16_t)funcNum;
//Icode.GetIcode(Icode.GetNumIcodes() - 1)->
/* Program termination: int21h, fn 00h, 31h, 4Ch */
done = (bool)(funcNum == 0x00 or funcNum == 0x31 or
funcNum == 0x4C);
/* String functions: int21h, fn 09h */
if (pstate->f[rDX]) /* offset goes into DX */
if (funcNum == 0x09)
{
operand = ((uint32_t)(uint16_t)pstate->r[rDS]<<4) +
(uint32_t)(uint16_t)pstate->r[rDX];
size = prog.fCOM ?
strSize (&prog.image()[operand], '$') :
strSize (&prog.image()[operand], '$'); // + 0x100
global_symbol_table.updateSymType (operand, TypeContainer(TYPE_STR, size));
}
}
else if ((ll->src().getImm2() == 0x2F) and (pstate->f[rAH]))
{
Icode.back().ll()->m_dst.off = pstate->r[rAH];
}
else /* Program termination: int20h, int27h */
done = (ll->src().getImm2() == 0x20 or ll->src().getImm2() == 0x27);
if (done) if (done)
pIcode->ll()->setFlags(TERMINATES); pIcode->ll()->setFlags(TERMINATES);
break; break;
@ -318,12 +343,12 @@ void Function::FollowCtrl(CALL_GRAPH * pcallGraph, STATE *pstate)
} }
if (err) { if (err) {
this->flg &= ~TERMINATES; func.flg &= ~TERMINATES;
if (err == INVALID_386OP or err == INVALID_OPCODE) if (err == INVALID_386OP or err == INVALID_OPCODE)
{ {
fatalError(err, prog.image()[_Icode.ll()->label], _Icode.ll()->label); fatalError(err, prog.image()[_Icode.ll()->label], _Icode.ll()->label);
this->flg |= PROC_BADINST; func.flg |= PROC_BADINST;
} }
else if (err == IP_OUT_OF_RANGE) else if (err == IP_OUT_OF_RANGE)
fatalError (err, _Icode.ll()->label); fatalError (err, _Icode.ll()->label);
@ -414,11 +439,11 @@ bool Function::decodeIndirectJMP(ICODE & pIcode, STATE *pstate, CALL_GRAPH * pca
// pattern starts at the last jmp // pattern starts at the last jmp
ICODE *load_num_cases = matched[0]; ICODE *load_num_cases = matched[0];
ICODE *load_jump_table_addr = matched[1]; ICODE *load_jump_table_addr = matched[1];
ICODE *read_case_entry_insn = matched[2]; // ICODE *read_case_entry_insn = matched[2];
ICODE *cmp_case_val_insn = matched[3]; // ICODE *cmp_case_val_insn = matched[3];
ICODE *exit_loop_insn = matched[4]; // ICODE *exit_loop_insn = matched[4];
ICODE *add_bx_insn = matched[5]; // ICODE *add_bx_insn = matched[5];
ICODE *loop_insn = matched[6]; // ICODE *loop_insn = matched[6];
ICODE *default_jmp = matched[7]; ICODE *default_jmp = matched[7];
ICODE *last_jmp = matched[8]; ICODE *last_jmp = matched[8];
for(int i=0; i<8; ++i) { for(int i=0; i<8; ++i) {

7
src/parser.h Normal file
View File

@ -0,0 +1,7 @@
#ifndef PARSER_H
#define PARSER_H
class Function;
struct CALL_GRAPH;
struct STATE;
void FollowCtrl(Function & func, CALL_GRAPH * pcallGraph, STATE *pstate);
#endif // PARSER_H