x64dbg/x64dbg
x64dbg
/
x64dbg
1
0
Fork 0
Code Releases 5 Activity
x64dbg/src/dbg/_dbgfunctions.cpp

420 lines
13 KiB
C++
Raw Blame History

/**
@file _dbgfunctions.cpp
@brief Implements the dbgfunctions class.
*/
#include "_global.h"
#include "_dbgfunctions.h"
#include "assemble.h"
#include "debugger.h"
#include "jit.h"
#include "patches.h"
#include "memory.h"
#include "disasm_fast.h"
#include "stackinfo.h"
#include "symbolinfo.h"
#include "module.h"
#include "exhandlerinfo.h"
#include "breakpoint.h"
#include "threading.h"
#include "stringformat.h"
#include "TraceRecord.h"
#include "mnemonichelp.h"
#include "handles.h"
#include "../bridge/bridgelist.h"
#include "tcpconnections.h"
#include "watch.h"
#include "animate.h"
#include "thread.h"
#include "comment.h"
#include "exception.h"
static DBGFUNCTIONS _dbgfunctions;
const DBGFUNCTIONS* dbgfunctionsget()
{
return &_dbgfunctions;
}
static bool _assembleatex(duint addr, const char* instruction, char* error, bool fillnop)
{
return assembleat(addr, instruction, nullptr, error, fillnop);
}
static bool _sectionfromaddr(duint addr, char* section)
{
std::vector<MODSECTIONINFO> sections;
if(ModSectionsFromAddr(addr, &sections))
{
for(const auto & cur : sections)
{
if(addr >= cur.addr && addr < cur.addr + (cur.size + (0x1000 - 1) & ~(0x1000 - 1)))
{
strncpy_s(section, MAX_SECTION_SIZE * 5, cur.name, _TRUNCATE);
return true;
}
}
}
return false;
}
static bool _patchget(duint addr)
{
return PatchGet(addr, nullptr);
}
static bool _patchinrange(duint start, duint end)
{
if(start > end)
std::swap(start, end);
for(duint i = start; i <= end; i++)
{
if(_patchget(i))
return true;
}
return false;
}
static bool _mempatch(duint va, const unsigned char* src, duint size)
{
return MemPatch(va, src, size, nullptr);
}
static void _patchrestorerange(duint start, duint end)
{
if(start > end)
std::swap(start, end);
for(duint i = start; i <= end; i++)
PatchDelete(i, true);
GuiUpdatePatches();
}
static bool _patchrestore(duint addr)
{
return PatchDelete(addr, true);
}
static void _getcallstack(DBGCALLSTACK* callstack)
{
stackgetcallstack(GetContextDataEx(hActiveThread, UE_CSP), (CALLSTACK*)callstack);
}
static void _getsehchain(DBGSEHCHAIN* sehchain)
{
std::vector<duint> SEHList;
ExHandlerGetSEH(SEHList);
sehchain->total = SEHList.size();
if(sehchain->total > 0)
{
sehchain->records = (DBGSEHRECORD*)BridgeAlloc(sehchain->total * sizeof(DBGSEHRECORD));
for(size_t i = 0; i < sehchain->total; i++)
{
sehchain->records[i].addr = SEHList[i];
MemRead(SEHList[i] + 4, &sehchain->records[i].handler, sizeof(duint));
}
}
}
static bool _getjitauto(bool* jit_auto)
{
return dbggetjitauto(jit_auto, notfound, NULL, NULL);
}
static bool _getcmdline(char* cmd_line, size_t* cbsize)
{
if(!cmd_line && !cbsize)
return false;
char* cmdline;
if(!dbggetcmdline(&cmdline, NULL))
return false;
if(!cmd_line && cbsize)
*cbsize = strlen(cmdline) + sizeof(char);
else if(cmd_line)
strcpy(cmd_line, cmdline);
efree(cmdline, "_getcmdline:cmdline");
return true;
}
static bool _setcmdline(const char* cmd_line)
{
return dbgsetcmdline(cmd_line, nullptr);
}
static bool _getjit(char* jit, bool jit64)
{
arch dummy;
char jit_tmp[JIT_ENTRY_MAX_SIZE] = "";
if(jit != NULL)
{
if(!dbggetjit(jit_tmp, jit64 ? x64 : x32, &dummy, NULL))
return false;
strcpy_s(jit, MAX_SETTING_SIZE, jit_tmp);
}
else // if jit input == NULL: it returns false if there are not an OLD JIT STORED.
{
Memory<char*> oldjit(MAX_SETTING_SIZE + 1);
if(!BridgeSettingGet("JIT", "Old", oldjit()))
return false;
}
return true;
}
bool _getprocesslist(DBGPROCESSINFO** entries, int* count)
{
std::vector<PROCESSENTRY32> infoList;
std::vector<std::string> commandList;
std::vector<std::string> winTextList;
if(!dbglistprocesses(&infoList, &commandList, &winTextList))
return false;
*count = (int)infoList.size();
if(!*count)
return false;
*entries = (DBGPROCESSINFO*)BridgeAlloc(*count * sizeof(DBGPROCESSINFO));
for(int i = 0; i < *count; i++)
{
(*entries)[*count - i - 1].dwProcessId = infoList.at(i).th32ProcessID;
strncpy_s((*entries)[*count - i - 1].szExeFile, infoList.at(i).szExeFile, _TRUNCATE);
strncpy_s((*entries)[*count - i - 1].szExeMainWindowTitle, winTextList.at(i).c_str(), _TRUNCATE);
strncpy_s((*entries)[*count - i - 1].szExeArgs, commandList.at(i).c_str(), _TRUNCATE);
}
return true;
}
static void _memupdatemap()
{
MemUpdateMap();
GuiUpdateMemoryView();
}
static duint _getaddrfromline(const char* szSourceFile, int line, duint* disp)
{
LONG displacement = 0;
IMAGEHLP_LINE64 lineData;
memset(&lineData, 0, sizeof(lineData));
lineData.SizeOfStruct = sizeof(lineData);
if(!SymGetLineFromName64(fdProcessInfo->hProcess, NULL, szSourceFile, line, &displacement, &lineData))
return 0;
if(disp)
*disp = displacement;
return (duint)lineData.Address;
}
static bool _getsourcefromaddr(duint addr, char* szSourceFile, int* line)
{
char sourceFile[MAX_STRING_SIZE] = "";
if(!SymGetSourceLine(addr, sourceFile, line))
return false;
if(!FileExists(sourceFile))
return false;
if(szSourceFile)
strcpy_s(szSourceFile, MAX_STRING_SIZE, sourceFile);
return true;
}
static bool _valfromstring(const char* string, duint* value)
{
return valfromstring(string, value);
}
static bool _getbridgebp(BPXTYPE type, duint addr, BRIDGEBP* bp)
{
BP_TYPE bptype;
switch(type)
{
case bp_normal:
bptype = BPNORMAL;
break;
case bp_hardware:
bptype = BPHARDWARE;
break;
case bp_memory:
bptype = BPMEMORY;
break;
case bp_dll:
bptype = BPDLL;
addr = ModHashFromName(reinterpret_cast<const char*>(addr));
break;
case bp_exception:
bptype = BPEXCEPTION;
break;
default:
return false;
}
SHARED_ACQUIRE(LockBreakpoints);
auto bpInfo = BpInfoFromAddr(bptype, addr);
if(!bpInfo)
return false;
if(bp)
{
BpToBridge(bpInfo, bp);
bp->addr = addr;
}
return true;
}
static bool _stringformatinline(const char* format, size_t resultSize, char* result)
{
if(!format || !result)
return false;
strncpy_s(result, resultSize, stringformatinline(format).c_str(), _TRUNCATE);
return true;
}
static void _getmnemonicbrief(const char* mnem, size_t resultSize, char* result)
{
if(!result)
return;
strncpy_s(result, resultSize, MnemonicHelp::getBriefDescription(mnem).c_str(), _TRUNCATE);
}
static bool _enumhandles(ListOf(HANDLEINFO) handles)
{
std::vector<HANDLEINFO> handleV;
if(!HandlesEnum(fdProcessInfo->dwProcessId, handleV))
return false;
return BridgeList<HANDLEINFO>::CopyData(handles, handleV);
}
static bool _gethandlename(duint handle, char* name, size_t nameSize, char* typeName, size_t typeNameSize)
{
String nameS;
String typeNameS;
if(!HandlesGetName(fdProcessInfo->hProcess, HANDLE(handle), nameS, typeNameS))
return false;
strcpy_s(name, nameSize, nameS.c_str());
strcpy_s(typeName, typeNameSize, typeNameS.c_str());
return true;
}
static bool _enumtcpconnections(ListOf(TCPCONNECTIONINFO) connections)
{
std::vector<TCPCONNECTIONINFO> connectionsV;
if(!TcpEnumConnections(fdProcessInfo->dwProcessId, connectionsV))
return false;
return BridgeList<TCPCONNECTIONINFO>::CopyData(connections, connectionsV);
}
static bool _enumwindows(ListOf(WINDOW_INFO) windows)
{
std::vector<WINDOW_INFO> windowInfoV;
if(!HandlesEnumWindows(windowInfoV))
return false;
return BridgeList<WINDOW_INFO>::CopyData(windows, windowInfoV);
}
static bool _enumheaps(ListOf(HEAPINFO) heaps)
{
std::vector<HEAPINFO> heapInfoV;
if(!HandlesEnumHeaps(heapInfoV))
return false;
return BridgeList<HEAPINFO>::CopyData(heaps, heapInfoV);
}
static void _getcallstackex(DBGCALLSTACK* callstack, bool cache)
{
auto csp = GetContextDataEx(hActiveThread, UE_CSP);
if(!cache)
stackupdatecallstack(csp);
stackgetcallstack(csp, (CALLSTACK*)callstack);
}
static void _enumconstants(ListOf(CONSTANTINFO) constants)
{
auto constantsV = ConstantList();
BridgeList<CONSTANTINFO>::CopyData(constants, constantsV);
}
static void _enumerrorcodes(ListOf(CONSTANTINFO) errorcodes)
{
auto errorcodesV = ErrorCodeList();
BridgeList<CONSTANTINFO>::CopyData(errorcodes, errorcodesV);
}
static void _enumexceptions(ListOf(CONSTANTINFO) exceptions)
{
auto exceptionsV = ExceptionList();
BridgeList<CONSTANTINFO>::CopyData(exceptions, exceptionsV);
}
static duint _membpsize(duint addr)
{
SHARED_ACQUIRE(LockBreakpoints);
auto info = BpInfoFromAddr(BPMEMORY, addr);
return info ? info->memsize : 0;
}
void dbgfunctionsinit()
{
_dbgfunctions.AssembleAtEx = _assembleatex;
_dbgfunctions.SectionFromAddr = _sectionfromaddr;
_dbgfunctions.ModNameFromAddr = ModNameFromAddr;
_dbgfunctions.ModBaseFromAddr = ModBaseFromAddr;
_dbgfunctions.ModBaseFromName = ModBaseFromName;
_dbgfunctions.ModSizeFromAddr = ModSizeFromAddr;
_dbgfunctions.ModGetParty = ModGetParty;
_dbgfunctions.ModSetParty = ModSetParty;
_dbgfunctions.WatchIsWatchdogTriggered = WatchIsWatchdogTriggered;
_dbgfunctions.Assemble = assemble;
_dbgfunctions.PatchGet = _patchget;
_dbgfunctions.PatchInRange = _patchinrange;
_dbgfunctions.MemPatch = _mempatch;
_dbgfunctions.PatchRestoreRange = _patchrestorerange;
_dbgfunctions.PatchEnum = (PATCHENUM)PatchEnum;
_dbgfunctions.PatchRestore = _patchrestore;
_dbgfunctions.PatchFile = (PATCHFILE)PatchFile;
_dbgfunctions.ModPathFromAddr = ModPathFromAddr;
_dbgfunctions.ModPathFromName = ModPathFromName;
_dbgfunctions.DisasmFast = disasmfast;
_dbgfunctions.MemUpdateMap = _memupdatemap;
_dbgfunctions.GetCallStack = _getcallstack;
_dbgfunctions.GetSEHChain = _getsehchain;
_dbgfunctions.SymbolDownloadAllSymbols = SymDownloadAllSymbols;
_dbgfunctions.GetJit = _getjit;
_dbgfunctions.GetJitAuto = _getjitauto;
_dbgfunctions.GetDefJit = dbggetdefjit;
_dbgfunctions.GetProcessList = _getprocesslist;
_dbgfunctions.GetPageRights = MemGetPageRights;
_dbgfunctions.SetPageRights = MemSetPageRights;
_dbgfunctions.PageRightsToString = MemPageRightsToString;
_dbgfunctions.IsProcessElevated = IsProcessElevated;
_dbgfunctions.GetCmdline = _getcmdline;
_dbgfunctions.SetCmdline = _setcmdline;
_dbgfunctions.FileOffsetToVa = valfileoffsettova;
_dbgfunctions.VaToFileOffset = valvatofileoffset;
_dbgfunctions.GetAddrFromLine = _getaddrfromline;
_dbgfunctions.GetSourceFromAddr = _getsourcefromaddr;
_dbgfunctions.ValFromString = _valfromstring;
_dbgfunctions.PatchGetEx = (PATCHGETEX)PatchGet;
_dbgfunctions.GetBridgeBp = _getbridgebp;
_dbgfunctions.StringFormatInline = _stringformatinline;
_dbgfunctions.GetMnemonicBrief = _getmnemonicbrief;
_dbgfunctions.GetTraceRecordHitCount = _dbg_dbggetTraceRecordHitCount;
_dbgfunctions.GetTraceRecordByteType = _dbg_dbggetTraceRecordByteType;
_dbgfunctions.SetTraceRecordType = _dbg_dbgsetTraceRecordType;
_dbgfunctions.GetTraceRecordType = _dbg_dbggetTraceRecordType;
_dbgfunctions.EnumHandles = _enumhandles;
_dbgfunctions.GetHandleName = _gethandlename;
_dbgfunctions.EnumTcpConnections = _enumtcpconnections;
_dbgfunctions.GetDbgEvents = dbggetdbgevents;
_dbgfunctions.MemIsCodePage = MemIsCodePage;
_dbgfunctions.AnimateCommand = _dbg_animatecommand;
_dbgfunctions.DbgSetDebuggeeInitScript = dbgsetdebuggeeinitscript;
_dbgfunctions.DbgGetDebuggeeInitScript = dbggetdebuggeeinitscript;
_dbgfunctions.EnumWindows = _enumwindows;
_dbgfunctions.EnumHeaps = _enumheaps;
_dbgfunctions.ThreadGetName = ThreadGetName;
_dbgfunctions.IsDepEnabled = dbgisdepenabled;
_dbgfunctions.GetCallStackEx = _getcallstackex;
_dbgfunctions.GetUserComment = CommentGet;
_dbgfunctions.EnumConstants = _enumconstants;
_dbgfunctions.EnumErrorCodes = _enumerrorcodes;
_dbgfunctions.EnumExceptions = _enumexceptions;
_dbgfunctions.MemBpSize = _membpsize;
}
View Git Blame Copy Permalink