Skip to content

Commit

Permalink
Automatically generate cfg files if they are not found.
Browse files Browse the repository at this point in the history
  • Loading branch information
@sgfvamll
sgfvamll committed Sep 16, 2024
1 parent 31af1fd commit e069616
Show file tree
Hide file tree
Showing 2 changed files with 115 additions and 2 deletions.
106 changes: 104 additions & 2 deletions src/main/java/com/gsat/tools/PCodeExtractorV2.java
View file
Original file line number Diff line number Diff line change
@@ -1,5 +1,7 @@
package com.gsat.tools;

import java.io.IOException;
import java.nio.file.Files;
import java.util.ArrayList;

import org.apache.commons.cli.CommandLine;
Expand Down Expand Up @@ -39,6 +41,7 @@ public class PCodeExtractorV2 extends BaseTool {
int extraction_mode = 0;
boolean preferRawPcode = true;
String debugged_func;
String[] filters = null;

public PCodeExtractorV2() {
if (preferRawPcode)
Expand All @@ -61,6 +64,7 @@ Option[] getOptions() {
"Path to a json file that contains all selected functions along with its CFG (i.e. *_cfg_disasm.json). "),
new Option("of", "output_format", true, "One of {'ACFG', 'SOG', 'ALL'}"),
new Option("v", "verbose_level", true, "`0` for mnems only and `1` for full. "),
new Option(null, "filter", true, "filter functions by keywords (splitted by ','). "),
};
}

Expand All @@ -73,14 +77,17 @@ Boolean preProcessOptions(CommandLine commandLine) {
int opt = Integer.parseInt(commandLine.getOptionValue("opt_level"), 10);
if (opt == 1) {
preferRawPcode = false;
if (!programLoadMode.equals("ghidra"))
if (!programLoadMode.equals("ghidra"))
this.analysisMode = 3;
} else {
preferRawPcode = true;
if (!programLoadMode.equals("ghidra"))
if (!programLoadMode.equals("ghidra"))
this.analysisMode = 1;
}
}
if (commandLine.hasOption("filter")) {
filters = commandLine.getOptionValue("filter").split(",");
}
return true;
}

Expand Down Expand Up @@ -136,15 +143,110 @@ private void dumpOneFunc(JSONObject oneCfgJson) {
}
}

public JSONObject generateCFGJson() {
JSONObject result = new JSONObject();
JSONArray functionsArray = new JSONArray();

BasicBlockModel bbModel = new BasicBlockModel(program);
Listing listing = program.getListing();
FunctionIterator funcIter = listing.getFunctions(true);

while (funcIter.hasNext()) {
Function function = funcIter.next();
JSONObject functionObj = new JSONObject();
String fname = function.getName();

Boolean skip = filters != null;
for (String key : filters) {
if (fname.indexOf(key) != -1) {
skip = false;
break;
}
}
if (skip) {
continue;
}

functionObj.put("start_ea", "0x" + Long.toHexString(function.getEntryPoint().getOffset()));
functionObj.put("func_name", fname);

// Get basic blocks
JSONArray nodesArray = new JSONArray();
CodeBlockIterator bbIter;
try {
bbIter = bbModel.getCodeBlocksContaining(function.getBody(), TaskMonitor.DUMMY);
while (bbIter.hasNext()) {
CodeBlock bb = bbIter.next();
JSONArray nodeInfo = new JSONArray();
nodeInfo.put("0x" + Long.toHexString(bb.getMinAddress().getOffset()));
nodeInfo.put(bb.getNumAddresses());
nodesArray.put(nodeInfo);
}
} catch (CancelledException e) {
e.printStackTrace();
}
functionObj.put("nodes", nodesArray);

// Get control flow edges
JSONArray edgesArray = new JSONArray();
try {
bbIter = bbModel.getCodeBlocksContaining(function.getBody(), TaskMonitor.DUMMY);
while (bbIter.hasNext()) {
CodeBlock bb = bbIter.next();
CodeBlockReferenceIterator destIter = bb.getDestinations(TaskMonitor.DUMMY);
while (destIter.hasNext()) {
CodeBlockReference dest = destIter.next();
JSONArray edgeInfo = new JSONArray();
edgeInfo.put(bb.getMinAddress().getOffset());
edgeInfo.put(dest.getDestinationAddress().getOffset());
edgesArray.put(edgeInfo);
}
}
} catch (CancelledException e) {
e.printStackTrace();
}
functionObj.put("edges", edgesArray);

functionsArray.put(functionObj);
}
result.put(program.getName(), functionsArray);
return result;
}

@Override
public Boolean run() {
if (analysisMode != 0)
AnalysisHelper.doDecompilerParameterIDAnalysis(program);

if (cfgFilePath == null || !CommonUtils.fileExists(cfgFilePath)) {
if (cfgFilePath == null) {
try {
cfgFilePath = Files.createTempFile(null, null).toString();
} catch (IOException e) {
ColoredPrint.error("Unable to create cfg file. ");
e.printStackTrace();
return false;
}
}
JSONObject result = generateCFGJson();
CommonUtils.writeJson(result, cfgFilePath);
}

JSONObject cfgJson = new JSONObject(CommonUtils.readFile(cfgFilePath));
String idb_path = cfgJson.keys().next();
JSONArray cfgInfos = cfgJson.getJSONArray(idb_path);

if (cfgInfos.length() == 0) {
ColoredPrint.warning("No functions to lift. ");
if (outputFile != null) {
JSONObject binOutWrap = new JSONObject();
binOutWrap.put(idb_path, cfgInfos);
CommonUtils.writeJson(binOutWrap, outputFile);
ColoredPrint.info("[*] Results saved at %s", outputFile);
}
return true;
}

/// Step 1. Determine the offset (between the base address in IDA and Ghidra) and rebase.
Long offset = determineLoadingOffsetBySymbol((JSONObject) cfgInfos.get(0));
if (offset == null && cfgInfos.length() > 1) {
Expand Down
11 changes: 11 additions & 0 deletions src/main/java/com/gsat/utils/CommonUtils.java
View file
Original file line number Diff line number Diff line change
Expand Up @@ -8,6 +8,7 @@
import java.io.IOException;
import java.io.Writer;
import java.nio.file.Files;
import java.nio.file.LinkOption;
import java.nio.file.Paths;
import java.util.ArrayList;
import java.util.HashSet;
Expand All @@ -29,6 +30,16 @@ public static String createUUID() {
return uuid;
}

public static boolean fileExists(String json_fp) {
File file = new File(json_fp);
try {
return Files.exists(Paths.get(file.toURI()), LinkOption.NOFOLLOW_LINKS);
} catch (SecurityException e) {
e.printStackTrace();
}
return false;
}

public static String readFile(String json_fp) {
File file = new File(json_fp);
try {
Expand Down

0 comments on commit e069616

Please sign in to comment.