miasm2.expression.expression module
# # Copyright (C) 2011 EADS France, Fabrice Desclaux <fabrice.desclaux@eads.net> # # This program is free software; you can redistribute it and/or modify # it under the terms of the GNU General Public License as published by # the Free Software Foundation; either version 2 of the License, or # (at your option) any later version. # # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # GNU General Public License for more details. # # You should have received a copy of the GNU General Public License along # with this program; if not, write to the Free Software Foundation, Inc., # 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA. # # These module implements Miasm IR components and basic operations related. # IR components are : # - ExprInt # - ExprId # - ExprLoc # - ExprAff # - ExprCond # - ExprMem # - ExprOp # - ExprSlice # - ExprCompose # import warnings import itertools from miasm2.expression.modint import mod_size2uint, is_modint, size2mask, \ define_uint from miasm2.core.graph import DiGraph # Define tokens TOK_INF = "<" TOK_INF_SIGNED = TOK_INF + "s" TOK_INF_UNSIGNED = TOK_INF + "u" TOK_INF_EQUAL = "<=" TOK_INF_EQUAL_SIGNED = TOK_INF_EQUAL + "s" TOK_INF_EQUAL_UNSIGNED = TOK_INF_EQUAL + "u" TOK_EQUAL = "==" TOK_POS = "pos" TOK_POS_STRICT = "Spos" # Hashing constants EXPRINT = 1 EXPRID = 2 EXPRLOC = 3 EXPRAFF = 4 EXPRCOND = 5 EXPRMEM = 6 EXPROP = 7 EXPRSLICE = 8 EXPRCOMPOSE = 9 priorities_list = [ [ '+' ], [ '*', '/', '%' ], [ '**' ], [ '-' ], # Unary '-', associativity with + not handled ] # dictionary from 'op' to priority, derived from above priorities = dict((op, prio) for prio, l in enumerate(priorities_list) for op in l) PRIORITY_MAX = len(priorities_list) - 1 def should_parenthesize_child(child, parent): if (isinstance(child, ExprId) or isinstance(child, ExprInt) or isinstance(child, ExprCompose) or isinstance(child, ExprMem) or isinstance(child, ExprSlice)): return False elif isinstance(child, ExprOp) and not child.is_infix(): return False elif (isinstance(child, ExprCond) or isinstance(parent, ExprSlice)): return True elif (isinstance(child, ExprOp) and isinstance(parent, ExprOp)): pri_child = priorities.get(child.op, -1) pri_parent = priorities.get(parent.op, PRIORITY_MAX + 1) return pri_child < pri_parent else: return True def str_protected_child(child, parent): return ("(%s)" % child) if should_parenthesize_child(child, parent) else str(child) def visit_chk(visitor): "Function decorator launching callback on Expression visit" def wrapped(expr, callback, test_visit=lambda x: True): if (test_visit is not None) and (not test_visit(expr)): return expr expr_new = visitor(expr, callback, test_visit) if expr_new is None: return None expr_new2 = callback(expr_new) return expr_new2 return wrapped # Expression display class DiGraphExpr(DiGraph): """Enhanced graph for Expression diplay Expression are displayed as a tree with node and edge labeled with only relevant information""" def node2str(self, node): if isinstance(node, ExprOp): return node.op elif isinstance(node, ExprId): return node.name elif isinstance(node, ExprLoc): return "%s" % node.loc_key elif isinstance(node, ExprMem): return "@%d" % node.size elif isinstance(node, ExprCompose): return "{ %d }" % node.size elif isinstance(node, ExprCond): return "? %d" % node.size elif isinstance(node, ExprSlice): return "[%d:%d]" % (node.start, node.stop) return str(node) def edge2str(self, nfrom, nto): if isinstance(nfrom, ExprCompose): for i in nfrom.args: if i[0] == nto: return "[%s, %s]" % (i[1], i[2]) elif isinstance(nfrom, ExprCond): if nfrom.cond == nto: return "?" elif nfrom.src1 == nto: return "True" elif nfrom.src2 == nto: return "False" return "" class LocKey(object): def __init__(self, key): self._key = key key = property(lambda self: self._key) def __hash__(self): return hash(self._key) def __eq__(self, other): if self is other: return True if self.__class__ is not other.__class__: return False return self.key == other.key def __ne__(self, other): return not self.__eq__(other) def __repr__(self): return "<%s %d>" % (self.__class__.__name__, self._key) def __str__(self): return "loc_key_%d" % self.key # IR definitions class Expr(object): "Parent class for Miasm Expressions" __slots__ = ["_hash", "_repr", "_size"] args2expr = {} canon_exprs = set() use_singleton = True def set_size(self, _): raise ValueError('size is not mutable') def __init__(self, size): """Instanciate an Expr with size @size @size: int """ # Common attribute self._size = size # Lazy cache needs self._hash = None self._repr = None size = property(lambda self: self._size) @staticmethod def get_object(expr_cls, args): if not expr_cls.use_singleton: return object.__new__(expr_cls, args) expr = Expr.args2expr.get((expr_cls, args)) if expr is None: expr = object.__new__(expr_cls, args) Expr.args2expr[(expr_cls, args)] = expr return expr def get_is_canon(self): return self in Expr.canon_exprs def set_is_canon(self, value): assert value is True Expr.canon_exprs.add(self) is_canon = property(get_is_canon, set_is_canon) # Common operations def __str__(self): raise NotImplementedError("Abstract Method") def __getitem__(self, i): if not isinstance(i, slice): raise TypeError("Expression: Bad slice: %s" % i) start, stop, step = i.indices(self.size) if step != 1: raise ValueError("Expression: Bad slice: %s" % i) return ExprSlice(self, start, stop) def get_size(self): raise DeprecationWarning("use X.size instead of X.get_size()") def is_function_call(self): """Returns true if the considered Expr is a function call """ return False def __repr__(self): if self._repr is None: self._repr = self._exprrepr() return self._repr def __hash__(self): if self._hash is None: self._hash = self._exprhash() return self._hash def __eq__(self, other): if self is other: return True elif self.use_singleton: # In case of Singleton, pointer comparison is sufficient # Avoid computation of hash and repr return False if self.__class__ is not other.__class__: return False if hash(self) != hash(other): return False return repr(self) == repr(other) def __ne__(self, other): return not self.__eq__(other) def __add__(self, other): return ExprOp('+', self, other) def __sub__(self, other): return ExprOp('+', self, ExprOp('-', other)) def __div__(self, other): return ExprOp('/', self, other) def __mod__(self, other): return ExprOp('%', self, other) def __mul__(self, other): return ExprOp('*', self, other) def __lshift__(self, other): return ExprOp('<<', self, other) def __rshift__(self, other): return ExprOp('>>', self, other) def __xor__(self, other): return ExprOp('^', self, other) def __or__(self, other): return ExprOp('|', self, other) def __and__(self, other): return ExprOp('&', self, other) def __neg__(self): return ExprOp('-', self) def __pow__(self, other): return ExprOp("**", self, other) def __invert__(self): return ExprOp('^', self, self.mask) def copy(self): "Deep copy of the expression" return self.visit(lambda x: x) def __deepcopy__(self, _): return self.copy() def replace_expr(self, dct=None): """Find and replace sub expression using dct @dct: dictionary of Expr -> * """ if dct is None: dct = {} def my_replace(expr, dct): if expr in dct: return dct[expr] return expr return self.visit(lambda expr: my_replace(expr, dct)) def canonize(self): "Canonize the Expression" def must_canon(expr): return not expr.is_canon def canonize_visitor(expr): if expr.is_canon: return expr if isinstance(expr, ExprOp): if expr.is_associative(): # ((a+b) + c) => (a + b + c) args = [] for arg in expr.args: if isinstance(arg, ExprOp) and expr.op == arg.op: args += arg.args else: args.append(arg) args = canonize_expr_list(args) new_e = ExprOp(expr.op, *args) else: new_e = expr else: new_e = expr new_e.is_canon = True return new_e return self.visit(canonize_visitor, must_canon) def msb(self): "Return the Most Significant Bit" return self[self.size - 1:self.size] def zeroExtend(self, size): """Zero extend to size @size: int """ assert self.size <= size if self.size == size: return self return ExprOp('zeroExt_%d' % size, self) def signExtend(self, size): """Sign extend to size @size: int """ assert self.size <= size if self.size == size: return self return ExprOp('signExt_%d' % size, self) def graph_recursive(self, graph): """Recursive method used by graph @graph: miasm2.core.graph.DiGraph instance Update @graph instance to include sons This is an Abstract method""" raise ValueError("Abstract method") def graph(self): """Return a DiGraph instance standing for Expr tree Instance's display functions have been override for better visibility Wrapper on graph_recursive""" # Create recursively the graph graph = DiGraphExpr() self.graph_recursive(graph) return graph def set_mask(self, value): raise ValueError('mask is not mutable') mask = property(lambda self: ExprInt(-1, self.size)) def is_int(self, value=None): return False def is_id(self, name=None): return False def is_loc(self, label=None): return False def is_aff(self): return False def is_cond(self): return False def is_mem(self): return False def is_op(self, op=None): return False def is_slice(self, start=None, stop=None): return False def is_compose(self): return False def is_op_segm(self): """Returns True if is ExprOp and op == 'segm'""" return False def is_mem_segm(self): """Returns True if is ExprMem and ptr is_op_segm""" return False class ExprInt(Expr): """An ExprInt represent a constant in Miasm IR. Some use cases: - Constant 0x42 - Constant -0x30 - Constant 0x12345678 on 32bits """ __slots__ = Expr.__slots__ + ["_arg"] def __init__(self, arg, size): """Create an ExprInt from a modint or num/size @arg: 'intable' number @size: int size""" super(ExprInt, self).__init__(size) # Work for ._arg is done in __new__ arg = property(lambda self: self._arg) def __reduce__(self): state = int(self._arg), self._size return self.__class__, state def __new__(cls, arg, size): """Create an ExprInt from a modint or num/size @arg: 'intable' number @size: int size""" if is_modint(arg): assert size == arg.size # Avoid a common blunder assert not isinstance(arg, ExprInt) # Ensure arg is always a moduint arg = int(arg) if size not in mod_size2uint: define_uint(size) arg = mod_size2uint[size](arg) # Get the Singleton instance expr = Expr.get_object(cls, (arg, size)) # Save parameters (__init__ is called with parameters unchanged) expr._arg = arg return expr def _get_int(self): "Return self integer representation" return int(self._arg & size2mask(self._size)) def __str__(self): if self._arg < 0: return str("-0x%X" % (- self._get_int())) else: return str("0x%X" % self._get_int()) def get_r(self, mem_read=False, cst_read=False): if cst_read: return set([self]) else: return set() def get_w(self): return set() def _exprhash(self): return hash((EXPRINT, self._arg, self._size)) def _exprrepr(self): return "%s(0x%X, %d)" % (self.__class__.__name__, self._get_int(), self._size) def __contains__(self, expr): return self == expr @visit_chk def visit(self, callback, test_visit=None): return self def copy(self): return ExprInt(self._arg, self._size) def depth(self): return 1 def graph_recursive(self, graph): graph.add_node(self) def __int__(self): return int(self.arg) def __long__(self): return long(self.arg) def is_int(self, value=None): if value is not None and self._arg != value: return False return True class ExprId(Expr): """An ExprId represent an identifier in Miasm IR. Some use cases: - EAX register - 'start' offset - variable v1 """ __slots__ = Expr.__slots__ + ["_name"] def __init__(self, name, size=None): """Create an identifier @name: str, identifier's name @size: int, identifier's size """ if size is None: warnings.warn('DEPRECATION WARNING: size is a mandatory argument: use ExprId(name, SIZE)') size = 32 assert isinstance(name, str) super(ExprId, self).__init__(size) self._name = name name = property(lambda self: self._name) def __reduce__(self): state = self._name, self._size return self.__class__, state def __new__(cls, name, size=None): if size is None: warnings.warn('DEPRECATION WARNING: size is a mandatory argument: use ExprId(name, SIZE)') size = 32 return Expr.get_object(cls, (name, size)) def __str__(self): return str(self._name) def get_r(self, mem_read=False, cst_read=False): return set([self]) def get_w(self): return set([self]) def _exprhash(self): return hash((EXPRID, self._name, self._size)) def _exprrepr(self): return "%s(%r, %d)" % (self.__class__.__name__, self._name, self._size) def __contains__(self, expr): return self == expr @visit_chk def visit(self, callback, test_visit=None): return self def copy(self): return ExprId(self._name, self._size) def depth(self): return 1 def graph_recursive(self, graph): graph.add_node(self) def is_id(self, name=None): if name is not None and self._name != name: return False return True class ExprLoc(Expr): """An ExprLoc represent a Label in Miasm IR. """ __slots__ = Expr.__slots__ + ["_loc_key"] def __init__(self, loc_key, size): """Create an identifier @loc_key: int, label loc_key @size: int, identifier's size """ assert isinstance(loc_key, LocKey) super(ExprLoc, self).__init__(size) self._loc_key = loc_key loc_key= property(lambda self: self._loc_key) def __reduce__(self): state = self._loc_key, self._size return self.__class__, state def __new__(cls, loc_key, size): return Expr.get_object(cls, (loc_key, size)) def __str__(self): return str(self._loc_key) def get_r(self, mem_read=False, cst_read=False): return set() def get_w(self): return set() def _exprhash(self): return hash((EXPRLOC, self._loc_key, self._size)) def _exprrepr(self): return "%s(%r, %d)" % (self.__class__.__name__, self._loc_key, self._size) def __contains__(self, expr): return self == expr @visit_chk def visit(self, callback, test_visit=None): return self def copy(self): return ExprLoc(self._loc_key, self._size) def depth(self): return 1 def graph_recursive(self, graph): graph.add_node(self) def is_loc(self, loc_key=None): if loc_key is not None and self._loc_key != loc_key: return False return True class ExprAff(Expr): """An ExprAff represent an affection from an Expression to another one. Some use cases: - var1 <- 2 """ __slots__ = Expr.__slots__ + ["_dst", "_src"] def __init__(self, dst, src): """Create an ExprAff for dst <- src @dst: Expr, affectation destination @src: Expr, affectation source """ # dst & src must be Expr assert isinstance(dst, Expr) assert isinstance(src, Expr) if dst.size != src.size: raise ValueError( "sanitycheck: ExprAff args must have same size! %s" % ([(str(arg), arg.size) for arg in [dst, src]])) super(ExprAff, self).__init__(self.dst.size) dst = property(lambda self: self._dst) src = property(lambda self: self._src) def __reduce__(self): state = self._dst, self._src return self.__class__, state def __new__(cls, dst, src): if dst.is_slice() and dst.arg.size == src.size: new_dst, new_src = dst.arg, src elif dst.is_slice(): # Complete the source with missing slice parts new_dst = dst.arg rest = [(ExprSlice(dst.arg, r[0], r[1]), r[0], r[1]) for r in dst.slice_rest()] all_a = [(src, dst.start, dst.stop)] + rest all_a.sort(key=lambda x: x[1]) args = [expr for (expr, _, _) in all_a] new_src = ExprCompose(*args) else: new_dst, new_src = dst, src expr = Expr.get_object(cls, (new_dst, new_src)) expr._dst, expr._src = new_dst, new_src return expr def __str__(self): return "%s = %s" % (str(self._dst), str(self._src)) def get_r(self, mem_read=False, cst_read=False): elements = self._src.get_r(mem_read, cst_read) if isinstance(self._dst, ExprMem) and mem_read: elements.update(self._dst.arg.get_r(mem_read, cst_read)) return elements def get_w(self): if isinstance(self._dst, ExprMem): return set([self._dst]) # [memreg] else: return self._dst.get_w() def _exprhash(self): return hash((EXPRAFF, hash(self._dst), hash(self._src))) def _exprrepr(self): return "%s(%r, %r)" % (self.__class__.__name__, self._dst, self._src) def __contains__(self, expr): return (self == expr or self._src.__contains__(expr) or self._dst.__contains__(expr)) @visit_chk def visit(self, callback, test_visit=None): dst, src = self._dst.visit(callback, test_visit), self._src.visit(callback, test_visit) if dst == self._dst and src == self._src: return self else: return ExprAff(dst, src) def copy(self): return ExprAff(self._dst.copy(), self._src.copy()) def depth(self): return max(self._src.depth(), self._dst.depth()) + 1 def graph_recursive(self, graph): graph.add_node(self) for arg in [self._src, self._dst]: arg.graph_recursive(graph) graph.add_uniq_edge(self, arg) def is_aff(self): return True class ExprCond(Expr): """An ExprCond stand for a condition on an Expr Use cases: - var1 < var2 - min(var1, var2) - if (cond) then ... else ... """ __slots__ = Expr.__slots__ + ["_cond", "_src1", "_src2"] def __init__(self, cond, src1, src2): """Create an ExprCond @cond: Expr, condition @src1: Expr, value if condition is evaled to not zero @src2: Expr, value if condition is evaled zero """ # cond, src1, src2 must be Expr assert isinstance(cond, Expr) assert isinstance(src1, Expr) assert isinstance(src2, Expr) self._cond, self._src1, self._src2 = cond, src1, src2 assert src1.size == src2.size super(ExprCond, self).__init__(self.src1.size) cond = property(lambda self: self._cond) src1 = property(lambda self: self._src1) src2 = property(lambda self: self._src2) def __reduce__(self): state = self._cond, self._src1, self._src2 return self.__class__, state def __new__(cls, cond, src1, src2): return Expr.get_object(cls, (cond, src1, src2)) def __str__(self): return "%s?(%s,%s)" % (str_protected_child(self._cond, self), str(self._src1), str(self._src2)) def get_r(self, mem_read=False, cst_read=False): out_src1 = self.src1.get_r(mem_read, cst_read) out_src2 = self.src2.get_r(mem_read, cst_read) return self.cond.get_r(mem_read, cst_read).union(out_src1).union(out_src2) def get_w(self): return set() def _exprhash(self): return hash((EXPRCOND, hash(self.cond), hash(self._src1), hash(self._src2))) def _exprrepr(self): return "%s(%r, %r, %r)" % (self.__class__.__name__, self._cond, self._src1, self._src2) def __contains__(self, expr): return (self == expr or self.cond.__contains__(expr) or self.src1.__contains__(expr) or self.src2.__contains__(expr)) @visit_chk def visit(self, callback, test_visit=None): cond = self._cond.visit(callback, test_visit) src1 = self._src1.visit(callback, test_visit) src2 = self._src2.visit(callback, test_visit) if cond == self._cond and src1 == self._src1 and src2 == self._src2: return self return ExprCond(cond, src1, src2) def copy(self): return ExprCond(self._cond.copy(), self._src1.copy(), self._src2.copy()) def depth(self): return max(self._cond.depth(), self._src1.depth(), self._src2.depth()) + 1 def graph_recursive(self, graph): graph.add_node(self) for arg in [self._cond, self._src1, self._src2]: arg.graph_recursive(graph) graph.add_uniq_edge(self, arg) def is_cond(self): return True class ExprMem(Expr): """An ExprMem stand for a memory access Use cases: - Memory read - Memory write """ __slots__ = Expr.__slots__ + ["_arg"] def __init__(self, arg, size=None): """Create an ExprMem @arg: Expr, memory access address @size: int, memory access size """ if size is None: warnings.warn('DEPRECATION WARNING: size is a mandatory argument: use ExprMem(arg, SIZE)') size = 32 # arg must be Expr assert isinstance(arg, Expr) assert isinstance(size, (int, long)) if not isinstance(arg, Expr): raise ValueError( 'ExprMem: arg must be an Expr (not %s)' % type(arg)) super(ExprMem, self).__init__(size) self._arg = arg arg = property(lambda self: self._arg) def __reduce__(self): state = self._arg, self._size return self.__class__, state def __new__(cls, arg, size=None): if size is None: warnings.warn('DEPRECATION WARNING: size is a mandatory argument: use ExprMem(arg, SIZE)') size = 32 return Expr.get_object(cls, (arg, size)) def __str__(self): return "@%d[%s]" % (self.size, str(self.arg)) def get_r(self, mem_read=False, cst_read=False): if mem_read: return set(self._arg.get_r(mem_read, cst_read).union(set([self]))) else: return set([self]) def get_w(self): return set([self]) # [memreg] def _exprhash(self): return hash((EXPRMEM, hash(self._arg), self._size)) def _exprrepr(self): return "%s(%r, %r)" % (self.__class__.__name__, self._arg, self._size) def __contains__(self, expr): return self == expr or self._arg.__contains__(expr) @visit_chk def visit(self, callback, test_visit=None): arg = self._arg.visit(callback, test_visit) if arg == self._arg: return self return ExprMem(arg, self.size) def copy(self): arg = self.arg.copy() return ExprMem(arg, size=self.size) def is_mem_segm(self): """Returns True if is ExprMem and ptr is_op_segm""" return self._arg.is_op_segm() def depth(self): return self._arg.depth() + 1 def graph_recursive(self, graph): graph.add_node(self) self._arg.graph_recursive(graph) graph.add_uniq_edge(self, self._arg) def is_mem(self): return True class ExprOp(Expr): """An ExprOp stand for an operation between Expr Use cases: - var1 XOR var2 - var1 + var2 + var3 - parity bit(var1) """ __slots__ = Expr.__slots__ + ["_op", "_args"] def __init__(self, op, *args): """Create an ExprOp @op: str, operation @*args: Expr, operand list """ # args must be Expr assert all(isinstance(arg, Expr) for arg in args) sizes = set([arg.size for arg in args]) if len(sizes) != 1: # Special cases : operande sizes can differ if op not in [ "segm", "FLAG_EQ_ADDWC", "FLAG_EQ_SUBWC", "FLAG_SIGN_ADDWC", "FLAG_SIGN_SUBWC", "FLAG_ADDWC_CF", "FLAG_ADDWC_OF", "FLAG_SUBWC_CF", "FLAG_SUBWC_OF", ]: raise ValueError( "sanitycheck: ExprOp args must have same size! %s" % ([(str(arg), arg.size) for arg in args])) if not isinstance(op, str): raise ValueError("ExprOp: 'op' argument must be a string") assert isinstance(args, tuple) self._op, self._args = op, args # Set size for special cases if self._op in [ '==', 'parity', 'fcom_c0', 'fcom_c1', 'fcom_c2', 'fcom_c3', 'fxam_c0', 'fxam_c1', 'fxam_c2', 'fxam_c3', "access_segment_ok", "load_segment_limit_ok", "bcdadd_cf", "ucomiss_zf", "ucomiss_pf", "ucomiss_cf", "ucomisd_zf", "ucomisd_pf", "ucomisd_cf"]: size = 1 elif self._op in [TOK_INF, TOK_INF_SIGNED, TOK_INF_UNSIGNED, TOK_INF_EQUAL, TOK_INF_EQUAL_SIGNED, TOK_INF_EQUAL_UNSIGNED, TOK_EQUAL, TOK_POS, TOK_POS_STRICT, ]: size = 1 elif self._op.startswith("sint_to_fp"): size = int(self._op[len("sint_to_fp"):]) elif self._op.startswith("fp_to_sint"): size = int(self._op[len("fp_to_sint"):]) elif self._op.startswith("fpconvert_fp"): size = int(self._op[len("fpconvert_fp"):]) elif self._op in [ "FLAG_ADD_CF", "FLAG_SUB_CF", "FLAG_ADD_OF", "FLAG_SUB_OF", "FLAG_EQ", "FLAG_EQ_CMP", "FLAG_SIGN_SUB", "FLAG_SIGN_ADD", "FLAG_EQ_AND", "FLAG_EQ_ADDWC", "FLAG_EQ_SUBWC", "FLAG_SIGN_ADDWC", "FLAG_SIGN_SUBWC", "FLAG_ADDWC_CF", "FLAG_ADDWC_OF", "FLAG_SUBWC_CF", "FLAG_SUBWC_OF", ]: size = 1 elif self._op.startswith('signExt_'): size = int(self._op[8:]) elif self._op.startswith('zeroExt_'): size = int(self._op[8:]) elif self._op in ['segm']: size = self._args[1].size else: if None in sizes: size = None else: # All arguments have the same size size = list(sizes)[0] super(ExprOp, self).__init__(size) op = property(lambda self: self._op) args = property(lambda self: self._args) def __reduce__(self): state = tuple([self._op] + list(self._args)) return self.__class__, state def __new__(cls, op, *args): return Expr.get_object(cls, (op, args)) def __str__(self): if self._op == '-': # Unary minus return '-' + str_protected_child(self._args[0], self) if self.is_associative() or self.is_infix(): return (' ' + self._op + ' ').join([str_protected_child(arg, self) for arg in self._args]) return (self._op + '(' + ', '.join([str(arg) for arg in self._args]) + ')') def get_r(self, mem_read=False, cst_read=False): return reduce(lambda elements, arg: elements.union(arg.get_r(mem_read, cst_read)), self._args, set()) def get_w(self): raise ValueError('op cannot be written!', self) def _exprhash(self): h_hargs = [hash(arg) for arg in self._args] return hash((EXPROP, self._op, tuple(h_hargs))) def _exprrepr(self): return "%s(%r, %s)" % (self.__class__.__name__, self._op, ', '.join(repr(arg) for arg in self._args)) def __contains__(self, expr): if self == expr: return True for arg in self._args: if arg.__contains__(expr): return True return False def is_function_call(self): return self._op.startswith('call') def is_infix(self): return self._op in [ '-', '+', '*', '^', '&', '|', '>>', '<<', 'a>>', '>>>', '<<<', '/', '%', '**', '<u', '<s', '<=u', '<=s', '==' ] def is_associative(self): "Return True iff current operation is associative" return (self._op in ['+', '*', '^', '&', '|']) def is_commutative(self): "Return True iff current operation is commutative" return (self._op in ['+', '*', '^', '&', '|']) @visit_chk def visit(self, callback, test_visit=None): args = [arg.visit(callback, test_visit) for arg in self._args] modified = any([arg[0] != arg[1] for arg in zip(self._args, args)]) if modified: return ExprOp(self._op, *args) return self def copy(self): args = [arg.copy() for arg in self._args] return ExprOp(self._op, *args) def depth(self): depth = [arg.depth() for arg in self._args] return max(depth) + 1 def graph_recursive(self, graph): graph.add_node(self) for arg in self._args: arg.graph_recursive(graph) graph.add_uniq_edge(self, arg) def is_op(self, op=None): if op is None: return True return self.op == op def is_op_segm(self): """Returns True if is ExprOp and op == 'segm'""" return self.is_op('segm') class ExprSlice(Expr): __slots__ = Expr.__slots__ + ["_arg", "_start", "_stop"] def __init__(self, arg, start, stop): # arg must be Expr assert isinstance(arg, Expr) assert isinstance(start, (int, long)) assert isinstance(stop, (int, long)) assert start < stop self._arg, self._start, self._stop = arg, start, stop super(ExprSlice, self).__init__(self._stop - self._start) arg = property(lambda self: self._arg) start = property(lambda self: self._start) stop = property(lambda self: self._stop) def __reduce__(self): state = self._arg, self._start, self._stop return self.__class__, state def __new__(cls, arg, start, stop): return Expr.get_object(cls, (arg, start, stop)) def __str__(self): return "%s[%d:%d]" % (str_protected_child(self._arg, self), self._start, self._stop) def get_r(self, mem_read=False, cst_read=False): return self._arg.get_r(mem_read, cst_read) def get_w(self): return self._arg.get_w() def _exprhash(self): return hash((EXPRSLICE, hash(self._arg), self._start, self._stop)) def _exprrepr(self): return "%s(%r, %d, %d)" % (self.__class__.__name__, self._arg, self._start, self._stop) def __contains__(self, expr): if self == expr: return True return self._arg.__contains__(expr) @visit_chk def visit(self, callback, test_visit=None): arg = self._arg.visit(callback, test_visit) if arg == self._arg: return self return ExprSlice(arg, self._start, self._stop) def copy(self): return ExprSlice(self._arg.copy(), self._start, self._stop) def depth(self): return self._arg.depth() + 1 def slice_rest(self): "Return the completion of the current slice" size = self._arg.size if self._start >= size or self._stop > size: raise ValueError('bad slice rest %s %s %s' % (size, self._start, self._stop)) if self._start == self._stop: return [(0, size)] rest = [] if self._start != 0: rest.append((0, self._start)) if self._stop < size: rest.append((self._stop, size)) return rest def graph_recursive(self, graph): graph.add_node(self) self._arg.graph_recursive(graph) graph.add_uniq_edge(self, self._arg) def is_slice(self, start=None, stop=None): if start is not None and self._start != start: return False if stop is not None and self._stop != stop: return False return True class ExprCompose(Expr): """ Compose is like a hambuger. It concatenate Expressions """ __slots__ = Expr.__slots__ + ["_args"] def __init__(self, *args): """Create an ExprCompose The ExprCompose is contiguous and starts at 0 @args: [Expr, Expr, ...] DEPRECATED: @args: [(Expr, int, int), (Expr, int, int), ...] """ # args must be Expr assert all(isinstance(arg, Expr) for arg in args) assert isinstance(args, tuple) self._args = args super(ExprCompose, self).__init__(sum(arg.size for arg in args)) args = property(lambda self: self._args) def __reduce__(self): state = self._args return self.__class__, state def __new__(cls, *args): return Expr.get_object(cls, args) def __str__(self): return '{' + ', '.join(["%s %s %s" % (arg, idx, idx + arg.size) for idx, arg in self.iter_args()]) + '}' def get_r(self, mem_read=False, cst_read=False): return reduce(lambda elements, arg: elements.union(arg.get_r(mem_read, cst_read)), self._args, set()) def get_w(self): return reduce(lambda elements, arg: elements.union(arg.get_w()), self._args, set()) def _exprhash(self): h_args = [EXPRCOMPOSE] + [hash(arg) for arg in self._args] return hash(tuple(h_args)) def _exprrepr(self): return "%s%r" % (self.__class__.__name__, self._args) def __contains__(self, expr): if self == expr: return True for arg in self._args: if arg == expr: return True if arg.__contains__(expr): return True return False @visit_chk def visit(self, callback, test_visit=None): args = [arg.visit(callback, test_visit) for arg in self._args] modified = any([arg != arg_new for arg, arg_new in zip(self._args, args)]) if modified: return ExprCompose(*args) return self def copy(self): args = [arg.copy() for arg in self._args] return ExprCompose(*args) def depth(self): depth = [arg.depth() for arg in self._args] return max(depth) + 1 def graph_recursive(self, graph): graph.add_node(self) for arg in self.args: arg.graph_recursive(graph) graph.add_uniq_edge(self, arg) def iter_args(self): index = 0 for arg in self._args: yield index, arg index += arg.size def is_compose(self): return True # Expression order for comparaison EXPR_ORDER_DICT = {ExprId: 1, ExprLoc: 2, ExprCond: 3, ExprMem: 4, ExprOp: 5, ExprSlice: 6, ExprCompose: 7, ExprInt: 8, } def compare_exprs_compose(expr1, expr2): # Sort by start bit address, then expr, then stop but address ret = cmp(expr1[1], expr2[1]) if ret: return ret ret = compare_exprs(expr1[0], expr2[0]) if ret: return ret ret = cmp(expr1[2], expr2[2]) return ret def compare_expr_list_compose(l1_e, l2_e): # Sort by list elements in incremental order, then by list size for i in xrange(min(len(l1_e), len(l2_e))): ret = compare_exprs(l1_e[i], l2_e[i]) if ret: return ret return cmp(len(l1_e), len(l2_e)) def compare_expr_list(l1_e, l2_e): # Sort by list elements in incremental order, then by list size for i in xrange(min(len(l1_e), len(l2_e))): ret = compare_exprs(l1_e[i], l2_e[i]) if ret: return ret return cmp(len(l1_e), len(l2_e)) def compare_exprs(expr1, expr2): """Compare 2 expressions for canonization @expr1: Expr @expr2: Expr 0 => == 1 => expr1 > expr2 -1 => expr1 < expr2 """ cls1 = expr1.__class__ cls2 = expr2.__class__ if cls1 != cls2: return cmp(EXPR_ORDER_DICT[cls1], EXPR_ORDER_DICT[cls2]) if expr1 == expr2: return 0 if cls1 == ExprInt: ret = cmp(expr1.size, expr2.size) if ret != 0: return ret return cmp(expr1.arg, expr2.arg) elif cls1 == ExprId: ret = cmp(expr1.name, expr2.name) if ret: return ret return cmp(expr1.size, expr2.size) elif cls1 == ExprLoc: ret = cmp(expr1.loc_key, expr2.loc_key) if ret: return ret return cmp(expr1.size, expr2.size) elif cls1 == ExprAff: raise NotImplementedError( "Comparaison from an ExprAff not yet implemented") elif cls2 == ExprCond: ret = compare_exprs(expr1.cond, expr2.cond) if ret: return ret ret = compare_exprs(expr1.src1, expr2.src1) if ret: return ret ret = compare_exprs(expr1.src2, expr2.src2) return ret elif cls1 == ExprMem: ret = compare_exprs(expr1.arg, expr2.arg) if ret: return ret return cmp(expr1.size, expr2.size) elif cls1 == ExprOp: if expr1.op != expr2.op: return cmp(expr1.op, expr2.op) return compare_expr_list(expr1.args, expr2.args) elif cls1 == ExprSlice: ret = compare_exprs(expr1.arg, expr2.arg) if ret: return ret ret = cmp(expr1.start, expr2.start) if ret: return ret ret = cmp(expr1.stop, expr2.stop) return ret elif cls1 == ExprCompose: return compare_expr_list_compose(expr1.args, expr2.args) raise NotImplementedError( "Comparaison between %r %r not implemented" % (expr1, expr2)) def canonize_expr_list(expr_list): expr_list = list(expr_list) expr_list.sort(cmp=compare_exprs) return expr_list def canonize_expr_list_compose(expr_list): expr_list = list(expr_list) expr_list.sort(cmp=compare_exprs_compose) return expr_list # Generate ExprInt with common size def ExprInt1(i): warnings.warn('DEPRECATION WARNING: use ExprInt(i, 1) instead of '\ 'ExprInt1(i))') return ExprInt(i, 1) def ExprInt8(i): warnings.warn('DEPRECATION WARNING: use ExprInt(i, 8) instead of '\ 'ExprInt8(i))') return ExprInt(i, 8) def ExprInt16(i): warnings.warn('DEPRECATION WARNING: use ExprInt(i, 16) instead of '\ 'ExprInt16(i))') return ExprInt(i, 16) def ExprInt32(i): warnings.warn('DEPRECATION WARNING: use ExprInt(i, 32) instead of '\ 'ExprInt32(i))') return ExprInt(i, 32) def ExprInt64(i): warnings.warn('DEPRECATION WARNING: use ExprInt(i, 64) instead of '\ 'ExprInt64(i))') return ExprInt(i, 64) def ExprInt_from(expr, i): "Generate ExprInt with size equal to expression" warnings.warn('DEPRECATION WARNING: use ExprInt(i, expr.size) instead of'\ 'ExprInt_from(expr, i))') return ExprInt(i, expr.size) def get_expr_ids_visit(expr, ids): """Visitor to retrieve ExprId in @expr @expr: Expr""" if expr.is_id(): ids.add(expr) return expr def get_expr_locs_visit(expr, locs): """Visitor to retrieve ExprLoc in @expr @expr: Expr""" if expr.is_loc(): locs.add(expr) return expr def get_expr_ids(expr): """Retrieve ExprId in @expr @expr: Expr""" ids = set() expr.visit(lambda x: get_expr_ids_visit(x, ids)) return ids def get_expr_locs(expr): """Retrieve ExprLoc in @expr @expr: Expr""" locs = set() expr.visit(lambda x: get_expr_locs_visit(x, locs)) return locs def test_set(expr, pattern, tks, result): """Test if v can correspond to e. If so, update the context in result. Otherwise, return False @expr : Expr to match @pattern : pattern Expr @tks : list of ExprId, available jokers @result : dictionary of ExprId -> Expr, current context """ if not pattern in tks: return expr == pattern if pattern in result and result[pattern] != expr: return False result[pattern] = expr return result def match_expr(expr, pattern, tks, result=None): """Try to match the @pattern expression with the pattern @expr with @tks jokers. Result is output dictionary with matching joker values. @expr : Expr pattern @pattern : Targetted Expr to match @tks : list of ExprId, available jokers @result : dictionary of ExprId -> Expr, output matching context """ if result is None: result = {} if pattern in tks: # pattern is a Joker return test_set(expr, pattern, tks, result) if expr.is_int(): return test_set(expr, pattern, tks, result) elif expr.is_id(): return test_set(expr, pattern, tks, result) elif expr.is_loc(): return test_set(expr, pattern, tks, result) elif expr.is_op(): # expr need to be the same operation than pattern if not pattern.is_op(): return False if expr.op != pattern.op: return False if len(expr.args) != len(pattern.args): return False # Perform permutation only if the current operation is commutative if expr.is_commutative(): permutations = itertools.permutations(expr.args) else: permutations = [expr.args] # For each permutations of arguments for permut in permutations: good = True # We need to use a copy of result to not override it myresult = dict(result) for sub_expr, sub_pattern in zip(permut, pattern.args): ret = match_expr(sub_expr, sub_pattern, tks, myresult) # If the current permutation do not match EVERY terms if ret is False: good = False break if good is True: # We found a possibility for joker, value in myresult.items(): # Updating result in place (to keep pointer in recursion) result[joker] = value return result return False # Recursive tests elif expr.is_mem(): if not pattern.is_mem(): return False if expr.size != pattern.size: return False return match_expr(expr.arg, pattern.arg, tks, result) elif expr.is_slice(): if not pattern.is_slice(): return False if expr.start != pattern.start or expr.stop != pattern.stop: return False return match_expr(expr.arg, pattern.arg, tks, result) elif expr.is_cond(): if not pattern.is_cond(): return False if match_expr(expr.cond, pattern.cond, tks, result) is False: return False if match_expr(expr.src1, pattern.src1, tks, result) is False: return False if match_expr(expr.src2, pattern.src2, tks, result) is False: return False return result elif expr.is_compose(): if not pattern.is_compose(): return False for sub_expr, sub_pattern in zip(expr.args, pattern.args): if match_expr(sub_expr, sub_pattern, tks, result) is False: return False return result elif expr.is_aff(): if not pattern.is_aff(): return False if match_expr(expr.src, pattern.src, tks, result) is False: return False if match_expr(expr.dst, pattern.dst, tks, result) is False: return False return result else: raise NotImplementedError("match_expr: Unknown type: %s" % type(expr)) def MatchExpr(expr, pattern, tks, result=None): warnings.warn('DEPRECATION WARNING: use match_expr instead of MatchExpr') return match_expr(expr, pattern, tks, result) def get_rw(exprs): o_r = set() o_w = set() for expr in exprs: o_r.update(expr.get_r(mem_read=True)) for expr in exprs: o_w.update(expr.get_w()) return o_r, o_w def get_list_rw(exprs, mem_read=False, cst_read=True): """Return list of read/write reg/cst/mem for each @exprs @exprs: list of expressions @mem_read: walk though memory accesses @cst_read: retrieve constants """ list_rw = [] # cst_num = 0 for expr in exprs: o_r = set() o_w = set() # get r/w o_r.update(expr.get_r(mem_read=mem_read, cst_read=cst_read)) if isinstance(expr.dst, ExprMem): o_r.update(expr.dst.arg.get_r(mem_read=mem_read, cst_read=cst_read)) o_w.update(expr.get_w()) # each cst is indexed o_r_rw = set() for read in o_r: o_r_rw.add(read) o_r = o_r_rw list_rw.append((o_r, o_w)) return list_rw def get_expr_ops(expr): """Retrieve operators of an @expr @expr: Expr""" def visit_getops(expr, out=None): if out is None: out = set() if isinstance(expr, ExprOp): out.add(expr.op) return expr ops = set() expr.visit(lambda x: visit_getops(x, ops)) return ops def get_expr_mem(expr): """Retrieve memory accesses of an @expr @expr: Expr""" def visit_getmem(expr, out=None): if out is None: out = set() if isinstance(expr, ExprMem): out.add(expr) return expr ops = set() expr.visit(lambda x: visit_getmem(x, ops)) return ops def _expr_compute_cf(op1, op2): """ Get carry flag of @op1 - @op2 Ref: x86 cf flag @op1: Expression @op2: Expression """ res = op1 - op2 cf = (((op1 ^ op2) ^ res) ^ ((op1 ^ res) & (op1 ^ op2))).msb() return cf def _expr_compute_of(op1, op2): """ Get overflow flag of @op1 - @op2 Ref: x86 of flag @op1: Expression @op2: Expression """ res = op1 - op2 of = (((op1 ^ res) & (op1 ^ op2))).msb() return of def _expr_compute_zf(op1, op2): """ Get zero flag of @op1 - @op2 @op1: Expression @op2: Expression """ res = op1 - op2 zf = ExprCond(res, ExprInt(0, 1), ExprInt(1, 1)) return zf def _expr_compute_nf(op1, op2): """ Get negative (or sign) flag of @op1 - @op2 @op1: Expression @op2: Expression """ res = op1 - op2 nf = res.msb() return nf def expr_is_equal(op1, op2): """ if op1 == op2: Return ExprInt(1, 1) else: Return ExprInt(0, 1) """ zf = _expr_compute_zf(op1, op2) return zf def expr_is_not_equal(op1, op2): """ if op1 != op2: Return ExprInt(1, 1) else: Return ExprInt(0, 1) """ zf = _expr_compute_zf(op1, op2) return ~zf def expr_is_unsigned_greater(op1, op2): """ UNSIGNED cmp if op1 > op2: Return ExprInt(1, 1) else: Return ExprInt(0, 1) """ cf = _expr_compute_cf(op1, op2) zf = _expr_compute_zf(op1, op2) return ~(cf | zf) def expr_is_unsigned_greater_or_equal(op1, op2): """ Unsigned cmp if op1 >= op2: Return ExprInt(1, 1) else: Return ExprInt(0, 1) """ cf = _expr_compute_cf(op1, op2) return ~cf def expr_is_unsigned_lower(op1, op2): """ Unsigned cmp if op1 < op2: Return ExprInt(1, 1) else: Return ExprInt(0, 1) """ cf = _expr_compute_cf(op1, op2) return cf def expr_is_unsigned_lower_or_equal(op1, op2): """ Unsigned cmp if op1 <= op2: Return ExprInt(1, 1) else: Return ExprInt(0, 1) """ cf = _expr_compute_cf(op1, op2) zf = _expr_compute_zf(op1, op2) return cf | zf def expr_is_signed_greater(op1, op2): """ Signed cmp if op1 > op2: Return ExprInt(1, 1) else: Return ExprInt(0, 1) """ nf = _expr_compute_nf(op1, op2) of = _expr_compute_of(op1, op2) zf = _expr_compute_zf(op1, op2) return ~(zf | (nf ^ of)) def expr_is_signed_greater_or_equal(op1, op2): """ Signed cmp if op1 > op2: Return ExprInt(1, 1) else: Return ExprInt(0, 1) """ nf = _expr_compute_nf(op1, op2) of = _expr_compute_of(op1, op2) return ~(nf ^ of) def expr_is_signed_lower(op1, op2): """ Signed cmp if op1 < op2: Return ExprInt(1, 1) else: Return ExprInt(0, 1) """ nf = _expr_compute_nf(op1, op2) of = _expr_compute_of(op1, op2) return nf ^ of def expr_is_signed_lower_or_equal(op1, op2): """ Signed cmp if op1 <= op2: Return ExprInt(1, 1) else: Return ExprInt(0, 1) """ nf = _expr_compute_nf(op1, op2) of = _expr_compute_of(op1, op2) zf = _expr_compute_zf(op1, op2) return zf | (nf ^ of) # sign bit | exponent | significand size_to_IEEE754_info = { 16: { "exponent": 5, "significand": 10, }, 32: { "exponent": 8, "significand": 23, }, 64: { "exponent": 11, "significand": 52, }, } def expr_is_NaN(expr): """Return 1 or 0 on 1 bit if expr represent a NaN value according to IEEE754 """ info = size_to_IEEE754_info[expr.size] exponent = expr[info["significand"]: info["significand"] + info["exponent"]] # exponent is full of 1s and significand is not NULL return ExprCond(exponent - ExprInt(-1, exponent.size), ExprInt(0, 1), ExprCond(expr[:info["significand"]], ExprInt(1, 1), ExprInt(0, 1))) def expr_is_qNaN(expr): """Return 1 or 0 on 1 bit if expr represent a qNaN (quiet) value according to IEEE754 """ info = size_to_IEEE754_info[expr.size] significand_top = expr[info["significand"]: info["significand"] + 1] return expr_is_NaN(expr) & significand_top def expr_is_sNaN(expr): """Return 1 or 0 on 1 bit if expr represent a sNaN (signalling) value according to IEEE754 """ info = size_to_IEEE754_info[expr.size] significand_top = expr[info["significand"]: info["significand"] + 1] return expr_is_NaN(expr) & ~significand_top def expr_is_float_lower(op1, op2): """Return 1 on 1 bit if @op1 < @op2, 0 otherwise. /!\ Assume @op1 and @op2 are not NaN Comparision is the floating point one, defined in IEEE754 """ sign1, sign2 = op1.msb(), op2.msb() magn1, magn2 = op1[:-1], op2[:-1] return ExprCond(sign1 ^ sign2, # Sign different, only the sign matters sign1, # sign1 ? op1 < op2 : op1 >= op2 # Sign equals, the result is inversed for negatives sign1 ^ (expr_is_unsigned_lower(magn1, magn2))) def expr_is_float_equal(op1, op2): """Return 1 on 1 bit if @op1 == @op2, 0 otherwise. /!\ Assume @op1 and @op2 are not NaN Comparision is the floating point one, defined in IEEE754 """ sign1, sign2 = op1.msb(), op2.msb() magn1, magn2 = op1[:-1], op2[:-1] return ExprCond(magn1 ^ magn2, ExprInt(0, 1), ExprCond(magn1, # magn1 == magn2, are the signal equals? ~(sign1 ^ sign2), # Special case: -0.0 == +0.0 ExprInt(1, 1)) )
Module variables
var EXPRAFF
var EXPRCOMPOSE
var EXPRCOND
var EXPRID
var EXPRINT
var EXPRLOC
var EXPRMEM
var EXPROP
var EXPRSLICE
var EXPR_ORDER_DICT
var PRIORITY_MAX
var TOK_EQUAL
var TOK_INF
var TOK_INF_EQUAL
var TOK_INF_EQUAL_SIGNED
var TOK_INF_EQUAL_UNSIGNED
var TOK_INF_SIGNED
var TOK_INF_UNSIGNED
var TOK_POS
var TOK_POS_STRICT
var mod_size2uint
var priorities
var priorities_list
var size_to_IEEE754_info
Functions
def ExprInt1(
i)
def ExprInt1(i): warnings.warn('DEPRECATION WARNING: use ExprInt(i, 1) instead of '\ 'ExprInt1(i))') return ExprInt(i, 1)
def ExprInt16(
i)
def ExprInt16(i): warnings.warn('DEPRECATION WARNING: use ExprInt(i, 16) instead of '\ 'ExprInt16(i))') return ExprInt(i, 16)
def ExprInt32(
i)
def ExprInt32(i): warnings.warn('DEPRECATION WARNING: use ExprInt(i, 32) instead of '\ 'ExprInt32(i))') return ExprInt(i, 32)
def ExprInt64(
i)
def ExprInt64(i): warnings.warn('DEPRECATION WARNING: use ExprInt(i, 64) instead of '\ 'ExprInt64(i))') return ExprInt(i, 64)
def ExprInt8(
i)
def ExprInt8(i): warnings.warn('DEPRECATION WARNING: use ExprInt(i, 8) instead of '\ 'ExprInt8(i))') return ExprInt(i, 8)
def ExprInt_from(
expr, i)
Generate ExprInt with size equal to expression
def ExprInt_from(expr, i): "Generate ExprInt with size equal to expression" warnings.warn('DEPRECATION WARNING: use ExprInt(i, expr.size) instead of'\ 'ExprInt_from(expr, i))') return ExprInt(i, expr.size)
def MatchExpr(
expr, pattern, tks, result=None)
def MatchExpr(expr, pattern, tks, result=None): warnings.warn('DEPRECATION WARNING: use match_expr instead of MatchExpr') return match_expr(expr, pattern, tks, result)
def canonize_expr_list(
expr_list)
def canonize_expr_list(expr_list): expr_list = list(expr_list) expr_list.sort(cmp=compare_exprs) return expr_list
def canonize_expr_list_compose(
expr_list)
def canonize_expr_list_compose(expr_list): expr_list = list(expr_list) expr_list.sort(cmp=compare_exprs_compose) return expr_list
def compare_expr_list(
l1_e, l2_e)
def compare_expr_list(l1_e, l2_e): # Sort by list elements in incremental order, then by list size for i in xrange(min(len(l1_e), len(l2_e))): ret = compare_exprs(l1_e[i], l2_e[i]) if ret: return ret return cmp(len(l1_e), len(l2_e))
def compare_expr_list_compose(
l1_e, l2_e)
def compare_expr_list_compose(l1_e, l2_e): # Sort by list elements in incremental order, then by list size for i in xrange(min(len(l1_e), len(l2_e))): ret = compare_exprs(l1_e[i], l2_e[i]) if ret: return ret return cmp(len(l1_e), len(l2_e))
def compare_exprs(
expr1, expr2)
Compare 2 expressions for canonization @expr1: Expr @expr2: Expr 0 => == 1 => expr1 > expr2 -1 => expr1 < expr2
def compare_exprs(expr1, expr2): """Compare 2 expressions for canonization @expr1: Expr @expr2: Expr 0 => == 1 => expr1 > expr2 -1 => expr1 < expr2 """ cls1 = expr1.__class__ cls2 = expr2.__class__ if cls1 != cls2: return cmp(EXPR_ORDER_DICT[cls1], EXPR_ORDER_DICT[cls2]) if expr1 == expr2: return 0 if cls1 == ExprInt: ret = cmp(expr1.size, expr2.size) if ret != 0: return ret return cmp(expr1.arg, expr2.arg) elif cls1 == ExprId: ret = cmp(expr1.name, expr2.name) if ret: return ret return cmp(expr1.size, expr2.size) elif cls1 == ExprLoc: ret = cmp(expr1.loc_key, expr2.loc_key) if ret: return ret return cmp(expr1.size, expr2.size) elif cls1 == ExprAff: raise NotImplementedError( "Comparaison from an ExprAff not yet implemented") elif cls2 == ExprCond: ret = compare_exprs(expr1.cond, expr2.cond) if ret: return ret ret = compare_exprs(expr1.src1, expr2.src1) if ret: return ret ret = compare_exprs(expr1.src2, expr2.src2) return ret elif cls1 == ExprMem: ret = compare_exprs(expr1.arg, expr2.arg) if ret: return ret return cmp(expr1.size, expr2.size) elif cls1 == ExprOp: if expr1.op != expr2.op: return cmp(expr1.op, expr2.op) return compare_expr_list(expr1.args, expr2.args) elif cls1 == ExprSlice: ret = compare_exprs(expr1.arg, expr2.arg) if ret: return ret ret = cmp(expr1.start, expr2.start) if ret: return ret ret = cmp(expr1.stop, expr2.stop) return ret elif cls1 == ExprCompose: return compare_expr_list_compose(expr1.args, expr2.args) raise NotImplementedError( "Comparaison between %r %r not implemented" % (expr1, expr2))
def compare_exprs_compose(
expr1, expr2)
def compare_exprs_compose(expr1, expr2): # Sort by start bit address, then expr, then stop but address ret = cmp(expr1[1], expr2[1]) if ret: return ret ret = compare_exprs(expr1[0], expr2[0]) if ret: return ret ret = cmp(expr1[2], expr2[2]) return ret
def expr_is_NaN(
expr)
Return 1 or 0 on 1 bit if expr represent a NaN value according to IEEE754
def expr_is_NaN(expr): """Return 1 or 0 on 1 bit if expr represent a NaN value according to IEEE754 """ info = size_to_IEEE754_info[expr.size] exponent = expr[info["significand"]: info["significand"] + info["exponent"]] # exponent is full of 1s and significand is not NULL return ExprCond(exponent - ExprInt(-1, exponent.size), ExprInt(0, 1), ExprCond(expr[:info["significand"]], ExprInt(1, 1), ExprInt(0, 1)))
def expr_is_equal(
op1, op2)
if op1 == op2: Return ExprInt(1, 1) else: Return ExprInt(0, 1)
def expr_is_equal(op1, op2): """ if op1 == op2: Return ExprInt(1, 1) else: Return ExprInt(0, 1) """ zf = _expr_compute_zf(op1, op2) return zf
def expr_is_float_equal(
op1, op2)
Return 1 on 1 bit if @op1 == @op2, 0 otherwise. /!\ Assume @op1 and @op2 are not NaN Comparision is the floating point one, defined in IEEE754
def expr_is_float_equal(op1, op2): """Return 1 on 1 bit if @op1 == @op2, 0 otherwise. /!\ Assume @op1 and @op2 are not NaN Comparision is the floating point one, defined in IEEE754 """ sign1, sign2 = op1.msb(), op2.msb() magn1, magn2 = op1[:-1], op2[:-1] return ExprCond(magn1 ^ magn2, ExprInt(0, 1), ExprCond(magn1, # magn1 == magn2, are the signal equals? ~(sign1 ^ sign2), # Special case: -0.0 == +0.0 ExprInt(1, 1)) )
def expr_is_float_lower(
op1, op2)
Return 1 on 1 bit if @op1 < @op2, 0 otherwise. /!\ Assume @op1 and @op2 are not NaN Comparision is the floating point one, defined in IEEE754
def expr_is_float_lower(op1, op2): """Return 1 on 1 bit if @op1 < @op2, 0 otherwise. /!\ Assume @op1 and @op2 are not NaN Comparision is the floating point one, defined in IEEE754 """ sign1, sign2 = op1.msb(), op2.msb() magn1, magn2 = op1[:-1], op2[:-1] return ExprCond(sign1 ^ sign2, # Sign different, only the sign matters sign1, # sign1 ? op1 < op2 : op1 >= op2 # Sign equals, the result is inversed for negatives sign1 ^ (expr_is_unsigned_lower(magn1, magn2)))
def expr_is_not_equal(
op1, op2)
if op1 != op2: Return ExprInt(1, 1) else: Return ExprInt(0, 1)
def expr_is_not_equal(op1, op2): """ if op1 != op2: Return ExprInt(1, 1) else: Return ExprInt(0, 1) """ zf = _expr_compute_zf(op1, op2) return ~zf
def expr_is_qNaN(
expr)
Return 1 or 0 on 1 bit if expr represent a qNaN (quiet) value according to IEEE754
def expr_is_qNaN(expr): """Return 1 or 0 on 1 bit if expr represent a qNaN (quiet) value according to IEEE754 """ info = size_to_IEEE754_info[expr.size] significand_top = expr[info["significand"]: info["significand"] + 1] return expr_is_NaN(expr) & significand_top
def expr_is_sNaN(
expr)
Return 1 or 0 on 1 bit if expr represent a sNaN (signalling) value according to IEEE754
def expr_is_sNaN(expr): """Return 1 or 0 on 1 bit if expr represent a sNaN (signalling) value according to IEEE754 """ info = size_to_IEEE754_info[expr.size] significand_top = expr[info["significand"]: info["significand"] + 1] return expr_is_NaN(expr) & ~significand_top
def expr_is_signed_greater(
op1, op2)
Signed cmp if op1 > op2: Return ExprInt(1, 1) else: Return ExprInt(0, 1)
def expr_is_signed_greater(op1, op2): """ Signed cmp if op1 > op2: Return ExprInt(1, 1) else: Return ExprInt(0, 1) """ nf = _expr_compute_nf(op1, op2) of = _expr_compute_of(op1, op2) zf = _expr_compute_zf(op1, op2) return ~(zf | (nf ^ of))
def expr_is_signed_greater_or_equal(
op1, op2)
Signed cmp if op1 > op2: Return ExprInt(1, 1) else: Return ExprInt(0, 1)
def expr_is_signed_greater_or_equal(op1, op2): """ Signed cmp if op1 > op2: Return ExprInt(1, 1) else: Return ExprInt(0, 1) """ nf = _expr_compute_nf(op1, op2) of = _expr_compute_of(op1, op2) return ~(nf ^ of)
def expr_is_signed_lower(
op1, op2)
Signed cmp if op1 < op2: Return ExprInt(1, 1) else: Return ExprInt(0, 1)
def expr_is_signed_lower(op1, op2): """ Signed cmp if op1 < op2: Return ExprInt(1, 1) else: Return ExprInt(0, 1) """ nf = _expr_compute_nf(op1, op2) of = _expr_compute_of(op1, op2) return nf ^ of
def expr_is_signed_lower_or_equal(
op1, op2)
Signed cmp if op1 <= op2: Return ExprInt(1, 1) else: Return ExprInt(0, 1)
def expr_is_signed_lower_or_equal(op1, op2): """ Signed cmp if op1 <= op2: Return ExprInt(1, 1) else: Return ExprInt(0, 1) """ nf = _expr_compute_nf(op1, op2) of = _expr_compute_of(op1, op2) zf = _expr_compute_zf(op1, op2) return zf | (nf ^ of)
def expr_is_unsigned_greater(
op1, op2)
UNSIGNED cmp if op1 > op2: Return ExprInt(1, 1) else: Return ExprInt(0, 1)
def expr_is_unsigned_greater(op1, op2): """ UNSIGNED cmp if op1 > op2: Return ExprInt(1, 1) else: Return ExprInt(0, 1) """ cf = _expr_compute_cf(op1, op2) zf = _expr_compute_zf(op1, op2) return ~(cf | zf)
def expr_is_unsigned_greater_or_equal(
op1, op2)
Unsigned cmp if op1 >= op2: Return ExprInt(1, 1) else: Return ExprInt(0, 1)
def expr_is_unsigned_greater_or_equal(op1, op2): """ Unsigned cmp if op1 >= op2: Return ExprInt(1, 1) else: Return ExprInt(0, 1) """ cf = _expr_compute_cf(op1, op2) return ~cf
def expr_is_unsigned_lower(
op1, op2)
Unsigned cmp if op1 < op2: Return ExprInt(1, 1) else: Return ExprInt(0, 1)
def expr_is_unsigned_lower(op1, op2): """ Unsigned cmp if op1 < op2: Return ExprInt(1, 1) else: Return ExprInt(0, 1) """ cf = _expr_compute_cf(op1, op2) return cf
def expr_is_unsigned_lower_or_equal(
op1, op2)
Unsigned cmp if op1 <= op2: Return ExprInt(1, 1) else: Return ExprInt(0, 1)
def expr_is_unsigned_lower_or_equal(op1, op2): """ Unsigned cmp if op1 <= op2: Return ExprInt(1, 1) else: Return ExprInt(0, 1) """ cf = _expr_compute_cf(op1, op2) zf = _expr_compute_zf(op1, op2) return cf | zf
def get_expr_ids(
expr)
Retrieve ExprId in @expr @expr: Expr
def get_expr_ids(expr): """Retrieve ExprId in @expr @expr: Expr""" ids = set() expr.visit(lambda x: get_expr_ids_visit(x, ids)) return ids
def get_expr_ids_visit(
expr, ids)
Visitor to retrieve ExprId in @expr @expr: Expr
def get_expr_ids_visit(expr, ids): """Visitor to retrieve ExprId in @expr @expr: Expr""" if expr.is_id(): ids.add(expr) return expr
def get_expr_locs(
expr)
Retrieve ExprLoc in @expr @expr: Expr
def get_expr_locs(expr): """Retrieve ExprLoc in @expr @expr: Expr""" locs = set() expr.visit(lambda x: get_expr_locs_visit(x, locs)) return locs
def get_expr_locs_visit(
expr, locs)
Visitor to retrieve ExprLoc in @expr @expr: Expr
def get_expr_locs_visit(expr, locs): """Visitor to retrieve ExprLoc in @expr @expr: Expr""" if expr.is_loc(): locs.add(expr) return expr
def get_expr_mem(
expr)
Retrieve memory accesses of an @expr @expr: Expr
def get_expr_mem(expr): """Retrieve memory accesses of an @expr @expr: Expr""" def visit_getmem(expr, out=None): if out is None: out = set() if isinstance(expr, ExprMem): out.add(expr) return expr ops = set() expr.visit(lambda x: visit_getmem(x, ops)) return ops
def get_expr_ops(
expr)
Retrieve operators of an @expr @expr: Expr
def get_expr_ops(expr): """Retrieve operators of an @expr @expr: Expr""" def visit_getops(expr, out=None): if out is None: out = set() if isinstance(expr, ExprOp): out.add(expr.op) return expr ops = set() expr.visit(lambda x: visit_getops(x, ops)) return ops
def get_list_rw(
exprs, mem_read=False, cst_read=True)
Return list of read/write reg/cst/mem for each @exprs @exprs: list of expressions @mem_read: walk though memory accesses @cst_read: retrieve constants
def get_list_rw(exprs, mem_read=False, cst_read=True): """Return list of read/write reg/cst/mem for each @exprs @exprs: list of expressions @mem_read: walk though memory accesses @cst_read: retrieve constants """ list_rw = [] # cst_num = 0 for expr in exprs: o_r = set() o_w = set() # get r/w o_r.update(expr.get_r(mem_read=mem_read, cst_read=cst_read)) if isinstance(expr.dst, ExprMem): o_r.update(expr.dst.arg.get_r(mem_read=mem_read, cst_read=cst_read)) o_w.update(expr.get_w()) # each cst is indexed o_r_rw = set() for read in o_r: o_r_rw.add(read) o_r = o_r_rw list_rw.append((o_r, o_w)) return list_rw
def get_rw(
exprs)
def get_rw(exprs): o_r = set() o_w = set() for expr in exprs: o_r.update(expr.get_r(mem_read=True)) for expr in exprs: o_w.update(expr.get_w()) return o_r, o_w
def match_expr(
expr, pattern, tks, result=None)
Try to match the @pattern expression with the pattern @expr with @tks jokers. Result is output dictionary with matching joker values. @expr : Expr pattern @pattern : Targetted Expr to match @tks : list of ExprId, available jokers @result : dictionary of ExprId -> Expr, output matching context
def match_expr(expr, pattern, tks, result=None): """Try to match the @pattern expression with the pattern @expr with @tks jokers. Result is output dictionary with matching joker values. @expr : Expr pattern @pattern : Targetted Expr to match @tks : list of ExprId, available jokers @result : dictionary of ExprId -> Expr, output matching context """ if result is None: result = {} if pattern in tks: # pattern is a Joker return test_set(expr, pattern, tks, result) if expr.is_int(): return test_set(expr, pattern, tks, result) elif expr.is_id(): return test_set(expr, pattern, tks, result) elif expr.is_loc(): return test_set(expr, pattern, tks, result) elif expr.is_op(): # expr need to be the same operation than pattern if not pattern.is_op(): return False if expr.op != pattern.op: return False if len(expr.args) != len(pattern.args): return False # Perform permutation only if the current operation is commutative if expr.is_commutative(): permutations = itertools.permutations(expr.args) else: permutations = [expr.args] # For each permutations of arguments for permut in permutations: good = True # We need to use a copy of result to not override it myresult = dict(result) for sub_expr, sub_pattern in zip(permut, pattern.args): ret = match_expr(sub_expr, sub_pattern, tks, myresult) # If the current permutation do not match EVERY terms if ret is False: good = False break if good is True: # We found a possibility for joker, value in myresult.items(): # Updating result in place (to keep pointer in recursion) result[joker] = value return result return False # Recursive tests elif expr.is_mem(): if not pattern.is_mem(): return False if expr.size != pattern.size: return False return match_expr(expr.arg, pattern.arg, tks, result) elif expr.is_slice(): if not pattern.is_slice(): return False if expr.start != pattern.start or expr.stop != pattern.stop: return False return match_expr(expr.arg, pattern.arg, tks, result) elif expr.is_cond(): if not pattern.is_cond(): return False if match_expr(expr.cond, pattern.cond, tks, result) is False: return False if match_expr(expr.src1, pattern.src1, tks, result) is False: return False if match_expr(expr.src2, pattern.src2, tks, result) is False: return False return result elif expr.is_compose(): if not pattern.is_compose(): return False for sub_expr, sub_pattern in zip(expr.args, pattern.args): if match_expr(sub_expr, sub_pattern, tks, result) is False: return False return result elif expr.is_aff(): if not pattern.is_aff(): return False if match_expr(expr.src, pattern.src, tks, result) is False: return False if match_expr(expr.dst, pattern.dst, tks, result) is False: return False return result else: raise NotImplementedError("match_expr: Unknown type: %s" % type(expr))
def should_parenthesize_child(
child, parent)
def should_parenthesize_child(child, parent): if (isinstance(child, ExprId) or isinstance(child, ExprInt) or isinstance(child, ExprCompose) or isinstance(child, ExprMem) or isinstance(child, ExprSlice)): return False elif isinstance(child, ExprOp) and not child.is_infix(): return False elif (isinstance(child, ExprCond) or isinstance(parent, ExprSlice)): return True elif (isinstance(child, ExprOp) and isinstance(parent, ExprOp)): pri_child = priorities.get(child.op, -1) pri_parent = priorities.get(parent.op, PRIORITY_MAX + 1) return pri_child < pri_parent else: return True
def str_protected_child(
child, parent)
def str_protected_child(child, parent): return ("(%s)" % child) if should_parenthesize_child(child, parent) else str(child)
def test_set(
expr, pattern, tks, result)
Test if v can correspond to e. If so, update the context in result. Otherwise, return False @expr : Expr to match @pattern : pattern Expr @tks : list of ExprId, available jokers @result : dictionary of ExprId -> Expr, current context
def test_set(expr, pattern, tks, result): """Test if v can correspond to e. If so, update the context in result. Otherwise, return False @expr : Expr to match @pattern : pattern Expr @tks : list of ExprId, available jokers @result : dictionary of ExprId -> Expr, current context """ if not pattern in tks: return expr == pattern if pattern in result and result[pattern] != expr: return False result[pattern] = expr return result
def visit_chk(
visitor)
Function decorator launching callback on Expression visit
def visit_chk(visitor): "Function decorator launching callback on Expression visit" def wrapped(expr, callback, test_visit=lambda x: True): if (test_visit is not None) and (not test_visit(expr)): return expr expr_new = visitor(expr, callback, test_visit) if expr_new is None: return None expr_new2 = callback(expr_new) return expr_new2 return wrapped
Classes
class DiGraphExpr
Enhanced graph for Expression diplay Expression are displayed as a tree with node and edge labeled with only relevant information
class DiGraphExpr(DiGraph): """Enhanced graph for Expression diplay Expression are displayed as a tree with node and edge labeled with only relevant information""" def node2str(self, node): if isinstance(node, ExprOp): return node.op elif isinstance(node, ExprId): return node.name elif isinstance(node, ExprLoc): return "%s" % node.loc_key elif isinstance(node, ExprMem): return "@%d" % node.size elif isinstance(node, ExprCompose): return "{ %d }" % node.size elif isinstance(node, ExprCond): return "? %d" % node.size elif isinstance(node, ExprSlice): return "[%d:%d]" % (node.start, node.stop) return str(node) def edge2str(self, nfrom, nto): if isinstance(nfrom, ExprCompose): for i in nfrom.args: if i[0] == nto: return "[%s, %s]" % (i[1], i[2]) elif isinstance(nfrom, ExprCond): if nfrom.cond == nto: return "?" elif nfrom.src1 == nto: return "True" elif nfrom.src2 == nto: return "False" return ""
Ancestors (in MRO)
- DiGraphExpr
- miasm2.core.graph.DiGraph
- __builtin__.object
Class variables
var DotCellDescription
Methods
def __init__(
self)
def __init__(self): self._nodes = set() self._edges = [] # N -> Nodes N2 with a edge (N -> N2) self._nodes_succ = {} # N -> Nodes N2 with a edge (N2 -> N) self._nodes_pred = {}
def add_edge(
self, src, dst)
def add_edge(self, src, dst): if not src in self._nodes: self.add_node(src) if not dst in self._nodes: self.add_node(dst) self._edges.append((src, dst)) self._nodes_succ[src].append(dst) self._nodes_pred[dst].append(src)
def add_node(
self, node)
Add the node @node to the graph. If the node was already present, return False. Otherwise, return True
def add_node(self, node): """Add the node @node to the graph. If the node was already present, return False. Otherwise, return True """ if node in self._nodes: return False self._nodes.add(node) self._nodes_succ[node] = [] self._nodes_pred[node] = [] return True
def add_uniq_edge(
self, src, dst)
Add an edge from @src to @dst if it doesn't already exist
def add_uniq_edge(self, src, dst): """Add an edge from @src to @dst if it doesn't already exist""" if (src not in self._nodes_succ or dst not in self._nodes_succ[src]): self.add_edge(src, dst)
def compute_back_edges(
self, head)
Computes all back edges from a node to a dominator in the graph. :param head: head of graph :return: yield a back edge
def compute_back_edges(self, head): """ Computes all back edges from a node to a dominator in the graph. :param head: head of graph :return: yield a back edge """ dominators = self.compute_dominators(head) # traverse graph for node in self.walk_depth_first_forward(head): for successor in self.successors_iter(node): # check for a back edge to a dominator if successor in dominators[node]: edge = (node, successor) yield edge
def compute_dominance_frontier(
self, head)
Compute the dominance frontier of the graph
Source: Cooper, Keith D., Timothy J. Harvey, and Ken Kennedy. "A simple, fast dominance algorithm." Software Practice & Experience 4 (2001), p. 9
def compute_dominance_frontier(self, head): """ Compute the dominance frontier of the graph Source: Cooper, Keith D., Timothy J. Harvey, and Ken Kennedy. "A simple, fast dominance algorithm." Software Practice & Experience 4 (2001), p. 9 """ idoms = self.compute_immediate_dominators(head) frontier = {} for node in idoms: if self._nodes_pred[node] >= 2: for predecessor in self.predecessors_iter(node): runner = predecessor if runner not in idoms: continue while runner != idoms[node]: if runner not in frontier: frontier[runner] = set() frontier[runner].add(node) runner = idoms[runner] return frontier
def compute_dominator_tree(
self, head)
Computes the dominator tree of a graph :param head: head of graph :return: DiGraph
def compute_dominator_tree(self, head): """ Computes the dominator tree of a graph :param head: head of graph :return: DiGraph """ idoms = self.compute_immediate_dominators(head) dominator_tree = DiGraph() for node in idoms: dominator_tree.add_edge(idoms[node], node) return dominator_tree
def compute_dominators(
self, head)
Compute the dominators of the graph
def compute_dominators(self, head): """Compute the dominators of the graph""" return self._compute_generic_dominators(head, self.reachable_sons, self.predecessors_iter, self.successors_iter)
def compute_immediate_dominators(
self, head)
Compute the immediate dominators of the graph
def compute_immediate_dominators(self, head): """Compute the immediate dominators of the graph""" dominators = self.compute_dominators(head) idoms = {} for node in dominators: for predecessor in self.walk_dominators(node, dominators): if predecessor in dominators[node] and node != predecessor: idoms[node] = predecessor break return idoms
def compute_natural_loops(
self, head)
Computes all natural loops in the graph.
Source: Aho, Alfred V., Lam, Monica S., Sethi, R. and Jeffrey Ullman. "Compilers: Principles, Techniques, & Tools, Second Edition" Pearson/Addison Wesley (2007), Chapter 9.6.6 :param head: head of the graph :return: yield a tuple of the form (back edge, loop body)
def compute_natural_loops(self, head): """ Computes all natural loops in the graph. Source: Aho, Alfred V., Lam, Monica S., Sethi, R. and Jeffrey Ullman. "Compilers: Principles, Techniques, & Tools, Second Edition" Pearson/Addison Wesley (2007), Chapter 9.6.6 :param head: head of the graph :return: yield a tuple of the form (back edge, loop body) """ for a, b in self.compute_back_edges(head): body = self._compute_natural_loop_body(b, a) yield ((a, b), body)
def compute_postdominators(
self, leaf)
Compute the postdominators of the graph
def compute_postdominators(self, leaf): """Compute the postdominators of the graph""" return self._compute_generic_dominators(leaf, self.reachable_parents, self.successors_iter, self.predecessors_iter)
def compute_strongly_connected_components(
self)
Partitions the graph into strongly connected components.
Iterative implementation of Gabow's path-based SCC algorithm. Source: Gabow, Harold N. "Path-based depth-first search for strong and biconnected components." Information Processing Letters 74.3 (2000), pp. 109--110
The iterative implementation is inspired by Mark Dickinson's code: http://code.activestate.com/recipes/ 578507-strongly-connected-components-of-a-directed-graph/ :return: yield a strongly connected component
def compute_strongly_connected_components(self): """ Partitions the graph into strongly connected components. Iterative implementation of Gabow's path-based SCC algorithm. Source: Gabow, Harold N. "Path-based depth-first search for strong and biconnected components." Information Processing Letters 74.3 (2000), pp. 109--110 The iterative implementation is inspired by Mark Dickinson's code: http://code.activestate.com/recipes/ 578507-strongly-connected-components-of-a-directed-graph/ :return: yield a strongly connected component """ stack = [] boundaries = [] counter = len(self.nodes()) # init index with 0 index = {v: 0 for v in self.nodes()} # state machine for worklist algorithm VISIT, HANDLE_RECURSION, MERGE = 0, 1, 2 NodeState = namedtuple('NodeState', ['state', 'node']) for node in self.nodes(): # next node if node was already visited if index[node]: continue todo = [NodeState(VISIT, node)] done = set() while todo: current = todo.pop() if current.node in done: continue # node is unvisited if current.state == VISIT: stack.append(current.node) index[current.node] = len(stack) boundaries.append(index[current.node]) todo.append(NodeState(MERGE, current.node)) # follow successors for successor in self.successors_iter(current.node): todo.append(NodeState(HANDLE_RECURSION, successor)) # iterative handling of recursion algorithm elif current.state == HANDLE_RECURSION: # visit unvisited successor if index[current.node] == 0: todo.append(NodeState(VISIT, current.node)) else: # contract cycle if necessary while index[current.node] < boundaries[-1]: boundaries.pop() # merge strongly connected component else: if index[current.node] == boundaries[-1]: boundaries.pop() counter += 1 scc = set() while index[current.node] <= len(stack): popped = stack.pop() index[popped] = counter scc.add(popped) done.add(current.node) yield scc
def copy(
self)
Copy the current graph instance
def copy(self): """Copy the current graph instance""" graph = self.__class__() return graph + self
def del_edge(
self, src, dst)
def del_edge(self, src, dst): self._edges.remove((src, dst)) self._nodes_succ[src].remove(dst) self._nodes_pred[dst].remove(src)
def del_node(
self, node)
Delete the @node of the graph; Also delete every edge to/from this @node
def del_node(self, node): """Delete the @node of the graph; Also delete every edge to/from this @node""" if node in self._nodes: self._nodes.remove(node) for pred in self.predecessors(node): self.del_edge(pred, node) for succ in self.successors(node): self.del_edge(node, succ)
def discard_edge(
self, src, dst)
Remove edge between @src and @dst if it exits
def discard_edge(self, src, dst): """Remove edge between @src and @dst if it exits""" if (src, dst) in self._edges: self.del_edge(src, dst)
def dot(
self)
Render dot graph with HTML
def dot(self): """Render dot graph with HTML""" escape_chars = re.compile('[' + re.escape('{}') + '&|<>' + ']') td_attr = {'align': 'left'} nodes_attr = {'shape': 'Mrecord', 'fontname': 'Courier New'} out = ["digraph asm_graph {"] # Generate basic nodes out_nodes = [] for node in self.nodes(): node_id = self.nodeid(node) out_node = '%s [\n' % node_id out_node += self._attr2str(nodes_attr, self.node_attr(node)) out_node += 'label =<<table border="0" cellborder="0" cellpadding="3">' node_html_lines = [] for lineDesc in self.node2lines(node): out_render = "" if isinstance(lineDesc, self.DotCellDescription): lineDesc = [lineDesc] for col in lineDesc: out_render += "<td %s>%s</td>" % ( self._attr2str(td_attr, col.attr), escape_chars.sub(self._fix_chars, str(col.text))) node_html_lines.append(out_render) node_html_lines = ('<tr>' + ('</tr><tr>').join(node_html_lines) + '</tr>') out_node += node_html_lines + "</table>> ];" out_nodes.append(out_node) out += out_nodes # Generate links for src, dst in self.edges(): attrs = self.edge_attr(src, dst) attrs = ' '.join('%s="%s"' % (name, value) for name, value in attrs.iteritems()) out.append('%s -> %s' % (self.nodeid(src), self.nodeid(dst)) + '[' + attrs + '];') out.append("}") return '\n'.join(out)
def edge2str(
self, nfrom, nto)
def edge2str(self, nfrom, nto): if isinstance(nfrom, ExprCompose): for i in nfrom.args: if i[0] == nto: return "[%s, %s]" % (i[1], i[2]) elif isinstance(nfrom, ExprCond): if nfrom.cond == nto: return "?" elif nfrom.src1 == nto: return "True" elif nfrom.src2 == nto: return "False" return ""
def edge_attr(
self, src, dst)
Return a dictionary of attributes for the edge between @src and @dst @src: the source node of the edge @dst: the destination node of the edge
def edge_attr(self, src, dst): """ Return a dictionary of attributes for the edge between @src and @dst @src: the source node of the edge @dst: the destination node of the edge """ return {}
def edges(
self)
def edges(self): return self._edges
def find_path(
self, src, dst, cycles_count=0, done=None)
def find_path(self, src, dst, cycles_count=0, done=None): if done is None: done = {} if dst in done and done[dst] > cycles_count: return [[]] if src == dst: return [[src]] out = [] for node in self.predecessors(dst): done_n = dict(done) done_n[dst] = done_n.get(dst, 0) + 1 for path in self.find_path(src, node, cycles_count, done_n): if path and path[0] == src: out.append(path + [dst]) return out
def has_loop(
self)
Return True if the graph contains at least a cycle
def has_loop(self): """Return True if the graph contains at least a cycle""" todo = list(self.nodes()) # tested nodes done = set() # current DFS nodes current = set() while todo: node = todo.pop() if node in done: continue if node in current: # DFS branch end for succ in self.successors_iter(node): if succ in current: return True # A node cannot be in current AND in done current.remove(node) done.add(node) else: # Launch DFS from node todo.append(node) current.add(node) todo += self.successors(node) return False
def heads(
self)
def heads(self): return [x for x in self.heads_iter()]
def heads_iter(
self)
def heads_iter(self): for node in self._nodes: if not self._nodes_pred[node]: yield node
def leaves(
self)
def leaves(self): return [x for x in self.leaves_iter()]
def leaves_iter(
self)
def leaves_iter(self): for node in self._nodes: if not self._nodes_succ[node]: yield node
def merge(
self, graph)
Merge the current graph with @graph @graph: DiGraph instance
def merge(self, graph): """Merge the current graph with @graph @graph: DiGraph instance """ for node in graph._nodes: self.add_node(node) for edge in graph._edges: self.add_edge(*edge)
def node2lines(
self, node)
Returns an iterator on cells of the dot @node. A DotCellDescription or a list of DotCellDescription are accepted @node: a node of the graph
def node2lines(self, node): """ Returns an iterator on cells of the dot @node. A DotCellDescription or a list of DotCellDescription are accepted @node: a node of the graph """ yield self.DotCellDescription(text=str(node), attr={})
def node2str(
self, node)
def node2str(self, node): if isinstance(node, ExprOp): return node.op elif isinstance(node, ExprId): return node.name elif isinstance(node, ExprLoc): return "%s" % node.loc_key elif isinstance(node, ExprMem): return "@%d" % node.size elif isinstance(node, ExprCompose): return "{ %d }" % node.size elif isinstance(node, ExprCond): return "? %d" % node.size elif isinstance(node, ExprSlice): return "[%d:%d]" % (node.start, node.stop) return str(node)
def node_attr(
self, node)
Returns a dictionary of the @node's attributes @node: a node of the graph
def node_attr(self, node): """ Returns a dictionary of the @node's attributes @node: a node of the graph """ return {}
def nodeid(
self, node)
Returns uniq id for a @node @node: a node of the graph
def nodeid(self, node): """ Returns uniq id for a @node @node: a node of the graph """ return hash(node) & 0xFFFFFFFFFFFFFFFF
def nodes(
self)
def nodes(self): return self._nodes
def predecessors(
self, node)
def predecessors(self, node): return [x for x in self.predecessors_iter(node)]
def predecessors_iter(
self, node)
def predecessors_iter(self, node): if not node in self._nodes_pred: raise StopIteration for n_pred in self._nodes_pred[node]: yield n_pred
def predecessors_stop_node_iter(
self, node, head)
def predecessors_stop_node_iter(self, node, head): if node == head: raise StopIteration for next_node in self.predecessors_iter(node): yield next_node
def reachable_parents(
self, leaf)
Compute all parents of node @leaf. Each parent is an immediate predecessor of an arbitrary, already yielded parent of @leaf
def reachable_parents(self, leaf): """Compute all parents of node @leaf. Each parent is an immediate predecessor of an arbitrary, already yielded parent of @leaf""" return self._reachable_nodes(leaf, self.predecessors_iter)
def reachable_parents_stop_node(
self, leaf, head)
Compute all parents of node @leaf. Each parent is an immediate predecessor of an arbitrary, already yielded parent of @leaf. Do not compute reachables past @head node
def reachable_parents_stop_node(self, leaf, head): """Compute all parents of node @leaf. Each parent is an immediate predecessor of an arbitrary, already yielded parent of @leaf. Do not compute reachables past @head node""" return self._reachable_nodes( leaf, lambda node_cur: self.predecessors_stop_node_iter( node_cur, head ) )
def reachable_sons(
self, head)
Compute all nodes reachable from node @head. Each son is an immediate successor of an arbitrary, already yielded son of @head
def reachable_sons(self, head): """Compute all nodes reachable from node @head. Each son is an immediate successor of an arbitrary, already yielded son of @head""" return self._reachable_nodes(head, self.successors_iter)
def successors(
self, node)
def successors(self, node): return [x for x in self.successors_iter(node)]
def successors_iter(
self, node)
def successors_iter(self, node): if not node in self._nodes_succ: raise StopIteration for n_suc in self._nodes_succ[node]: yield n_suc
def walk_breadth_first_backward(
self, head)
Performs a breadth first search on the reversed graph from @head
def walk_breadth_first_backward(self, head): """Performs a breadth first search on the reversed graph from @head""" return self._walk_generic_first(head, 0, self.predecessors_iter)
def walk_breadth_first_forward(
self, head)
Performs a breadth first search on the graph from @head
def walk_breadth_first_forward(self, head): """Performs a breadth first search on the graph from @head""" return self._walk_generic_first(head, 0, self.successors_iter)
def walk_depth_first_backward(
self, head)
Performs a depth first search on the reversed graph from @head
def walk_depth_first_backward(self, head): """Performs a depth first search on the reversed graph from @head""" return self._walk_generic_first(head, -1, self.predecessors_iter)
def walk_depth_first_forward(
self, head)
Performs a depth first search on the graph from @head
def walk_depth_first_forward(self, head): """Performs a depth first search on the graph from @head""" return self._walk_generic_first(head, -1, self.successors_iter)
def walk_dominators(
self, node, dominators)
Return an iterator of the ordered list of @node's dominators The function doesn't return the self reference in dominators. @node: The start node @dominators: The dictionary containing at least node's dominators
def walk_dominators(self, node, dominators): """Return an iterator of the ordered list of @node's dominators The function doesn't return the self reference in dominators. @node: The start node @dominators: The dictionary containing at least node's dominators """ return self._walk_generic_dominator(node, dominators, self.predecessors_iter)
def walk_postdominators(
self, node, postdominators)
Return an iterator of the ordered list of @node's postdominators The function doesn't return the self reference in postdominators. @node: The start node @postdominators: The dictionary containing at least node's postdominators
def walk_postdominators(self, node, postdominators): """Return an iterator of the ordered list of @node's postdominators The function doesn't return the self reference in postdominators. @node: The start node @postdominators: The dictionary containing at least node's postdominators """ return self._walk_generic_dominator(node, postdominators, self.successors_iter)
class Expr
Parent class for Miasm Expressions
class Expr(object): "Parent class for Miasm Expressions" __slots__ = ["_hash", "_repr", "_size"] args2expr = {} canon_exprs = set() use_singleton = True def set_size(self, _): raise ValueError('size is not mutable') def __init__(self, size): """Instanciate an Expr with size @size @size: int """ # Common attribute self._size = size # Lazy cache needs self._hash = None self._repr = None size = property(lambda self: self._size) @staticmethod def get_object(expr_cls, args): if not expr_cls.use_singleton: return object.__new__(expr_cls, args) expr = Expr.args2expr.get((expr_cls, args)) if expr is None: expr = object.__new__(expr_cls, args) Expr.args2expr[(expr_cls, args)] = expr return expr def get_is_canon(self): return self in Expr.canon_exprs def set_is_canon(self, value): assert value is True Expr.canon_exprs.add(self) is_canon = property(get_is_canon, set_is_canon) # Common operations def __str__(self): raise NotImplementedError("Abstract Method") def __getitem__(self, i): if not isinstance(i, slice): raise TypeError("Expression: Bad slice: %s" % i) start, stop, step = i.indices(self.size) if step != 1: raise ValueError("Expression: Bad slice: %s" % i) return ExprSlice(self, start, stop) def get_size(self): raise DeprecationWarning("use X.size instead of X.get_size()") def is_function_call(self): """Returns true if the considered Expr is a function call """ return False def __repr__(self): if self._repr is None: self._repr = self._exprrepr() return self._repr def __hash__(self): if self._hash is None: self._hash = self._exprhash() return self._hash def __eq__(self, other): if self is other: return True elif self.use_singleton: # In case of Singleton, pointer comparison is sufficient # Avoid computation of hash and repr return False if self.__class__ is not other.__class__: return False if hash(self) != hash(other): return False return repr(self) == repr(other) def __ne__(self, other): return not self.__eq__(other) def __add__(self, other): return ExprOp('+', self, other) def __sub__(self, other): return ExprOp('+', self, ExprOp('-', other)) def __div__(self, other): return ExprOp('/', self, other) def __mod__(self, other): return ExprOp('%', self, other) def __mul__(self, other): return ExprOp('*', self, other) def __lshift__(self, other): return ExprOp('<<', self, other) def __rshift__(self, other): return ExprOp('>>', self, other) def __xor__(self, other): return ExprOp('^', self, other) def __or__(self, other): return ExprOp('|', self, other) def __and__(self, other): return ExprOp('&', self, other) def __neg__(self): return ExprOp('-', self) def __pow__(self, other): return ExprOp("**", self, other) def __invert__(self): return ExprOp('^', self, self.mask) def copy(self): "Deep copy of the expression" return self.visit(lambda x: x) def __deepcopy__(self, _): return self.copy() def replace_expr(self, dct=None): """Find and replace sub expression using dct @dct: dictionary of Expr -> * """ if dct is None: dct = {} def my_replace(expr, dct): if expr in dct: return dct[expr] return expr return self.visit(lambda expr: my_replace(expr, dct)) def canonize(self): "Canonize the Expression" def must_canon(expr): return not expr.is_canon def canonize_visitor(expr): if expr.is_canon: return expr if isinstance(expr, ExprOp): if expr.is_associative(): # ((a+b) + c) => (a + b + c) args = [] for arg in expr.args: if isinstance(arg, ExprOp) and expr.op == arg.op: args += arg.args else: args.append(arg) args = canonize_expr_list(args) new_e = ExprOp(expr.op, *args) else: new_e = expr else: new_e = expr new_e.is_canon = True return new_e return self.visit(canonize_visitor, must_canon) def msb(self): "Return the Most Significant Bit" return self[self.size - 1:self.size] def zeroExtend(self, size): """Zero extend to size @size: int """ assert self.size <= size if self.size == size: return self return ExprOp('zeroExt_%d' % size, self) def signExtend(self, size): """Sign extend to size @size: int """ assert self.size <= size if self.size == size: return self return ExprOp('signExt_%d' % size, self) def graph_recursive(self, graph): """Recursive method used by graph @graph: miasm2.core.graph.DiGraph instance Update @graph instance to include sons This is an Abstract method""" raise ValueError("Abstract method") def graph(self): """Return a DiGraph instance standing for Expr tree Instance's display functions have been override for better visibility Wrapper on graph_recursive""" # Create recursively the graph graph = DiGraphExpr() self.graph_recursive(graph) return graph def set_mask(self, value): raise ValueError('mask is not mutable') mask = property(lambda self: ExprInt(-1, self.size)) def is_int(self, value=None): return False def is_id(self, name=None): return False def is_loc(self, label=None): return False def is_aff(self): return False def is_cond(self): return False def is_mem(self): return False def is_op(self, op=None): return False def is_slice(self, start=None, stop=None): return False def is_compose(self): return False def is_op_segm(self): """Returns True if is ExprOp and op == 'segm'""" return False def is_mem_segm(self): """Returns True if is ExprMem and ptr is_op_segm""" return False
Ancestors (in MRO)
- Expr
- __builtin__.object
Class variables
var args2expr
var canon_exprs
var is_canon
var mask
var size
var use_singleton
Static methods
def get_object(
expr_cls, args)
@staticmethod def get_object(expr_cls, args): if not expr_cls.use_singleton: return object.__new__(expr_cls, args) expr = Expr.args2expr.get((expr_cls, args)) if expr is None: expr = object.__new__(expr_cls, args) Expr.args2expr[(expr_cls, args)] = expr return expr
Instance variables
var is_canon
var mask
var size
Methods
def __init__(
self, size)
Instanciate an Expr with size @size @size: int
def __init__(self, size): """Instanciate an Expr with size @size @size: int """ # Common attribute self._size = size # Lazy cache needs self._hash = None self._repr = None
def canonize(
self)
Canonize the Expression
def canonize(self): "Canonize the Expression" def must_canon(expr): return not expr.is_canon def canonize_visitor(expr): if expr.is_canon: return expr if isinstance(expr, ExprOp): if expr.is_associative(): # ((a+b) + c) => (a + b + c) args = [] for arg in expr.args: if isinstance(arg, ExprOp) and expr.op == arg.op: args += arg.args else: args.append(arg) args = canonize_expr_list(args) new_e = ExprOp(expr.op, *args) else: new_e = expr else: new_e = expr new_e.is_canon = True return new_e return self.visit(canonize_visitor, must_canon)
def copy(
self)
Deep copy of the expression
def copy(self): "Deep copy of the expression" return self.visit(lambda x: x)
def get_is_canon(
self)
def get_is_canon(self): return self in Expr.canon_exprs
def get_size(
self)
def get_size(self): raise DeprecationWarning("use X.size instead of X.get_size()")
def graph(
self)
Return a DiGraph instance standing for Expr tree Instance's display functions have been override for better visibility Wrapper on graph_recursive
def graph(self): """Return a DiGraph instance standing for Expr tree Instance's display functions have been override for better visibility Wrapper on graph_recursive""" # Create recursively the graph graph = DiGraphExpr() self.graph_recursive(graph) return graph
def graph_recursive(
self, graph)
Recursive method used by graph @graph: miasm2.core.graph.DiGraph instance Update @graph instance to include sons This is an Abstract method
def graph_recursive(self, graph): """Recursive method used by graph @graph: miasm2.core.graph.DiGraph instance Update @graph instance to include sons This is an Abstract method""" raise ValueError("Abstract method")
def is_aff(
self)
def is_aff(self): return False
def is_compose(
self)
def is_compose(self): return False
def is_cond(
self)
def is_cond(self): return False
def is_function_call(
self)
Returns true if the considered Expr is a function call
def is_function_call(self): """Returns true if the considered Expr is a function call """ return False
def is_id(
self, name=None)
def is_id(self, name=None): return False
def is_int(
self, value=None)
def is_int(self, value=None): return False
def is_loc(
self, label=None)
def is_loc(self, label=None): return False
def is_mem(
self)
def is_mem(self): return False
def is_mem_segm(
self)
Returns True if is ExprMem and ptr is_op_segm
def is_mem_segm(self): """Returns True if is ExprMem and ptr is_op_segm""" return False
def is_op(
self, op=None)
def is_op(self, op=None): return False
def is_op_segm(
self)
Returns True if is ExprOp and op == 'segm'
def is_op_segm(self): """Returns True if is ExprOp and op == 'segm'""" return False
def is_slice(
self, start=None, stop=None)
def is_slice(self, start=None, stop=None): return False
def msb(
self)
Return the Most Significant Bit
def msb(self): "Return the Most Significant Bit" return self[self.size - 1:self.size]
def replace_expr(
self, dct=None)
Find and replace sub expression using dct @dct: dictionary of Expr -> *
def replace_expr(self, dct=None): """Find and replace sub expression using dct @dct: dictionary of Expr -> * """ if dct is None: dct = {} def my_replace(expr, dct): if expr in dct: return dct[expr] return expr return self.visit(lambda expr: my_replace(expr, dct))
def set_is_canon(
self, value)
def set_is_canon(self, value): assert value is True Expr.canon_exprs.add(self)
def set_mask(
self, value)
def set_mask(self, value): raise ValueError('mask is not mutable')
def set_size(
self, _)
def set_size(self, _): raise ValueError('size is not mutable')
def signExtend(
self, size)
Sign extend to size @size: int
def signExtend(self, size): """Sign extend to size @size: int """ assert self.size <= size if self.size == size: return self return ExprOp('signExt_%d' % size, self)
def zeroExtend(
self, size)
Zero extend to size @size: int
def zeroExtend(self, size): """Zero extend to size @size: int """ assert self.size <= size if self.size == size: return self return ExprOp('zeroExt_%d' % size, self)
class ExprAff
An ExprAff represent an affection from an Expression to another one.
Some use cases: - var1 <- 2
class ExprAff(Expr): """An ExprAff represent an affection from an Expression to another one. Some use cases: - var1 <- 2 """ __slots__ = Expr.__slots__ + ["_dst", "_src"] def __init__(self, dst, src): """Create an ExprAff for dst <- src @dst: Expr, affectation destination @src: Expr, affectation source """ # dst & src must be Expr assert isinstance(dst, Expr) assert isinstance(src, Expr) if dst.size != src.size: raise ValueError( "sanitycheck: ExprAff args must have same size! %s" % ([(str(arg), arg.size) for arg in [dst, src]])) super(ExprAff, self).__init__(self.dst.size) dst = property(lambda self: self._dst) src = property(lambda self: self._src) def __reduce__(self): state = self._dst, self._src return self.__class__, state def __new__(cls, dst, src): if dst.is_slice() and dst.arg.size == src.size: new_dst, new_src = dst.arg, src elif dst.is_slice(): # Complete the source with missing slice parts new_dst = dst.arg rest = [(ExprSlice(dst.arg, r[0], r[1]), r[0], r[1]) for r in dst.slice_rest()] all_a = [(src, dst.start, dst.stop)] + rest all_a.sort(key=lambda x: x[1]) args = [expr for (expr, _, _) in all_a] new_src = ExprCompose(*args) else: new_dst, new_src = dst, src expr = Expr.get_object(cls, (new_dst, new_src)) expr._dst, expr._src = new_dst, new_src return expr def __str__(self): return "%s = %s" % (str(self._dst), str(self._src)) def get_r(self, mem_read=False, cst_read=False): elements = self._src.get_r(mem_read, cst_read) if isinstance(self._dst, ExprMem) and mem_read: elements.update(self._dst.arg.get_r(mem_read, cst_read)) return elements def get_w(self): if isinstance(self._dst, ExprMem): return set([self._dst]) # [memreg] else: return self._dst.get_w() def _exprhash(self): return hash((EXPRAFF, hash(self._dst), hash(self._src))) def _exprrepr(self): return "%s(%r, %r)" % (self.__class__.__name__, self._dst, self._src) def __contains__(self, expr): return (self == expr or self._src.__contains__(expr) or self._dst.__contains__(expr)) @visit_chk def visit(self, callback, test_visit=None): dst, src = self._dst.visit(callback, test_visit), self._src.visit(callback, test_visit) if dst == self._dst and src == self._src: return self else: return ExprAff(dst, src) def copy(self): return ExprAff(self._dst.copy(), self._src.copy()) def depth(self): return max(self._src.depth(), self._dst.depth()) + 1 def graph_recursive(self, graph): graph.add_node(self) for arg in [self._src, self._dst]: arg.graph_recursive(graph) graph.add_uniq_edge(self, arg) def is_aff(self): return True
Ancestors (in MRO)
Class variables
var dst
var src
Static methods
def get_object(
expr_cls, args)
Inheritance:
Expr.get_object
@staticmethod def get_object(expr_cls, args): if not expr_cls.use_singleton: return object.__new__(expr_cls, args) expr = Expr.args2expr.get((expr_cls, args)) if expr is None: expr = object.__new__(expr_cls, args) Expr.args2expr[(expr_cls, args)] = expr return expr
Instance variables
var dst
var src
Methods
def __init__(
self, dst, src)
Create an ExprAff for dst <- src @dst: Expr, affectation destination @src: Expr, affectation source
def __init__(self, dst, src): """Create an ExprAff for dst <- src @dst: Expr, affectation destination @src: Expr, affectation source """ # dst & src must be Expr assert isinstance(dst, Expr) assert isinstance(src, Expr) if dst.size != src.size: raise ValueError( "sanitycheck: ExprAff args must have same size! %s" % ([(str(arg), arg.size) for arg in [dst, src]])) super(ExprAff, self).__init__(self.dst.size)
def canonize(
self)
Canonize the Expression
def canonize(self): "Canonize the Expression" def must_canon(expr): return not expr.is_canon def canonize_visitor(expr): if expr.is_canon: return expr if isinstance(expr, ExprOp): if expr.is_associative(): # ((a+b) + c) => (a + b + c) args = [] for arg in expr.args: if isinstance(arg, ExprOp) and expr.op == arg.op: args += arg.args else: args.append(arg) args = canonize_expr_list(args) new_e = ExprOp(expr.op, *args) else: new_e = expr else: new_e = expr new_e.is_canon = True return new_e return self.visit(canonize_visitor, must_canon)
def copy(
self)
Deep copy of the expression
def copy(self): return ExprAff(self._dst.copy(), self._src.copy())
def depth(
self)
def depth(self): return max(self._src.depth(), self._dst.depth()) + 1
def get_is_canon(
self)
Inheritance:
Expr.get_is_canon
def get_is_canon(self): return self in Expr.canon_exprs
def get_r(
self, mem_read=False, cst_read=False)
def get_r(self, mem_read=False, cst_read=False): elements = self._src.get_r(mem_read, cst_read) if isinstance(self._dst, ExprMem) and mem_read: elements.update(self._dst.arg.get_r(mem_read, cst_read)) return elements
def get_size(
self)
def get_size(self): raise DeprecationWarning("use X.size instead of X.get_size()")
def get_w(
self)
def get_w(self): if isinstance(self._dst, ExprMem): return set([self._dst]) # [memreg] else: return self._dst.get_w()
def graph(
self)
Return a DiGraph instance standing for Expr tree Instance's display functions have been override for better visibility Wrapper on graph_recursive
def graph(self): """Return a DiGraph instance standing for Expr tree Instance's display functions have been override for better visibility Wrapper on graph_recursive""" # Create recursively the graph graph = DiGraphExpr() self.graph_recursive(graph) return graph
def graph_recursive(
self, graph)
Inheritance:
Expr.graph_recursive
Recursive method used by graph @graph: miasm2.core.graph.DiGraph instance Update @graph instance to include sons This is an Abstract method
def graph_recursive(self, graph): graph.add_node(self) for arg in [self._src, self._dst]: arg.graph_recursive(graph) graph.add_uniq_edge(self, arg)
def is_function_call(
self)
Inheritance:
Expr.is_function_call
Returns true if the considered Expr is a function call
def is_function_call(self): """Returns true if the considered Expr is a function call """ return False
def is_id(
self, name=None)
def is_id(self, name=None): return False
def is_int(
self, value=None)
def is_int(self, value=None): return False
def is_loc(
self, label=None)
def is_loc(self, label=None): return False
def is_mem_segm(
self)
Inheritance:
Expr.is_mem_segm
Returns True if is ExprMem and ptr is_op_segm
def is_mem_segm(self): """Returns True if is ExprMem and ptr is_op_segm""" return False
def is_op(
self, op=None)
def is_op(self, op=None): return False
def is_op_segm(
self)
Inheritance:
Expr.is_op_segm
Returns True if is ExprOp and op == 'segm'
def is_op_segm(self): """Returns True if is ExprOp and op == 'segm'""" return False
def is_slice(
self, start=None, stop=None)
def is_slice(self, start=None, stop=None): return False
def msb(
self)
Return the Most Significant Bit
def msb(self): "Return the Most Significant Bit" return self[self.size - 1:self.size]
def replace_expr(
self, dct=None)
Inheritance:
Expr.replace_expr
Find and replace sub expression using dct @dct: dictionary of Expr -> *
def replace_expr(self, dct=None): """Find and replace sub expression using dct @dct: dictionary of Expr -> * """ if dct is None: dct = {} def my_replace(expr, dct): if expr in dct: return dct[expr] return expr return self.visit(lambda expr: my_replace(expr, dct))
def set_is_canon(
self, value)
Inheritance:
Expr.set_is_canon
def set_is_canon(self, value): assert value is True Expr.canon_exprs.add(self)
def set_mask(
self, value)
def set_mask(self, value): raise ValueError('mask is not mutable')
def set_size(
self, _)
def set_size(self, _): raise ValueError('size is not mutable')
def signExtend(
self, size)
Inheritance:
Expr.signExtend
Sign extend to size @size: int
def signExtend(self, size): """Sign extend to size @size: int """ assert self.size <= size if self.size == size: return self return ExprOp('signExt_%d' % size, self)
def visit(
expr, callback, test_visit=<function <lambda> at 0x7f19b244baa0>)
def wrapped(expr, callback, test_visit=lambda x: True): if (test_visit is not None) and (not test_visit(expr)): return expr expr_new = visitor(expr, callback, test_visit) if expr_new is None: return None expr_new2 = callback(expr_new) return expr_new2
def zeroExtend(
self, size)
Inheritance:
Expr.zeroExtend
Zero extend to size @size: int
def zeroExtend(self, size): """Zero extend to size @size: int """ assert self.size <= size if self.size == size: return self return ExprOp('zeroExt_%d' % size, self)
class ExprCompose
Compose is like a hambuger. It concatenate Expressions
class ExprCompose(Expr): """ Compose is like a hambuger. It concatenate Expressions """ __slots__ = Expr.__slots__ + ["_args"] def __init__(self, *args): """Create an ExprCompose The ExprCompose is contiguous and starts at 0 @args: [Expr, Expr, ...] DEPRECATED: @args: [(Expr, int, int), (Expr, int, int), ...] """ # args must be Expr assert all(isinstance(arg, Expr) for arg in args) assert isinstance(args, tuple) self._args = args super(ExprCompose, self).__init__(sum(arg.size for arg in args)) args = property(lambda self: self._args) def __reduce__(self): state = self._args return self.__class__, state def __new__(cls, *args): return Expr.get_object(cls, args) def __str__(self): return '{' + ', '.join(["%s %s %s" % (arg, idx, idx + arg.size) for idx, arg in self.iter_args()]) + '}' def get_r(self, mem_read=False, cst_read=False): return reduce(lambda elements, arg: elements.union(arg.get_r(mem_read, cst_read)), self._args, set()) def get_w(self): return reduce(lambda elements, arg: elements.union(arg.get_w()), self._args, set()) def _exprhash(self): h_args = [EXPRCOMPOSE] + [hash(arg) for arg in self._args] return hash(tuple(h_args)) def _exprrepr(self): return "%s%r" % (self.__class__.__name__, self._args) def __contains__(self, expr): if self == expr: return True for arg in self._args: if arg == expr: return True if arg.__contains__(expr): return True return False @visit_chk def visit(self, callback, test_visit=None): args = [arg.visit(callback, test_visit) for arg in self._args] modified = any([arg != arg_new for arg, arg_new in zip(self._args, args)]) if modified: return ExprCompose(*args) return self def copy(self): args = [arg.copy() for arg in self._args] return ExprCompose(*args) def depth(self): depth = [arg.depth() for arg in self._args] return max(depth) + 1 def graph_recursive(self, graph): graph.add_node(self) for arg in self.args: arg.graph_recursive(graph) graph.add_uniq_edge(self, arg) def iter_args(self): index = 0 for arg in self._args: yield index, arg index += arg.size def is_compose(self): return True
Ancestors (in MRO)
- ExprCompose
- Expr
- __builtin__.object
Class variables
var args
Static methods
def get_object(
expr_cls, args)
Inheritance:
Expr.get_object
@staticmethod def get_object(expr_cls, args): if not expr_cls.use_singleton: return object.__new__(expr_cls, args) expr = Expr.args2expr.get((expr_cls, args)) if expr is None: expr = object.__new__(expr_cls, args) Expr.args2expr[(expr_cls, args)] = expr return expr
Instance variables
var args
Methods
def __init__(
self, *args)
Create an ExprCompose The ExprCompose is contiguous and starts at 0 @args: [Expr, Expr, ...] DEPRECATED: @args: [(Expr, int, int), (Expr, int, int), ...]
def __init__(self, *args): """Create an ExprCompose The ExprCompose is contiguous and starts at 0 @args: [Expr, Expr, ...] DEPRECATED: @args: [(Expr, int, int), (Expr, int, int), ...] """ # args must be Expr assert all(isinstance(arg, Expr) for arg in args) assert isinstance(args, tuple) self._args = args super(ExprCompose, self).__init__(sum(arg.size for arg in args))
def canonize(
self)
Canonize the Expression
def canonize(self): "Canonize the Expression" def must_canon(expr): return not expr.is_canon def canonize_visitor(expr): if expr.is_canon: return expr if isinstance(expr, ExprOp): if expr.is_associative(): # ((a+b) + c) => (a + b + c) args = [] for arg in expr.args: if isinstance(arg, ExprOp) and expr.op == arg.op: args += arg.args else: args.append(arg) args = canonize_expr_list(args) new_e = ExprOp(expr.op, *args) else: new_e = expr else: new_e = expr new_e.is_canon = True return new_e return self.visit(canonize_visitor, must_canon)
def copy(
self)
Deep copy of the expression
def copy(self): args = [arg.copy() for arg in self._args] return ExprCompose(*args)
def depth(
self)
def depth(self): depth = [arg.depth() for arg in self._args] return max(depth) + 1
def get_is_canon(
self)
Inheritance:
Expr.get_is_canon
def get_is_canon(self): return self in Expr.canon_exprs
def get_r(
self, mem_read=False, cst_read=False)
def get_r(self, mem_read=False, cst_read=False): return reduce(lambda elements, arg: elements.union(arg.get_r(mem_read, cst_read)), self._args, set())
def get_size(
self)
def get_size(self): raise DeprecationWarning("use X.size instead of X.get_size()")
def get_w(
self)
def get_w(self): return reduce(lambda elements, arg: elements.union(arg.get_w()), self._args, set())
def graph(
self)
Return a DiGraph instance standing for Expr tree Instance's display functions have been override for better visibility Wrapper on graph_recursive
def graph(self): """Return a DiGraph instance standing for Expr tree Instance's display functions have been override for better visibility Wrapper on graph_recursive""" # Create recursively the graph graph = DiGraphExpr() self.graph_recursive(graph) return graph
def graph_recursive(
self, graph)
Inheritance:
Expr.graph_recursive
Recursive method used by graph @graph: miasm2.core.graph.DiGraph instance Update @graph instance to include sons This is an Abstract method
def graph_recursive(self, graph): graph.add_node(self) for arg in self.args: arg.graph_recursive(graph) graph.add_uniq_edge(self, arg)
def is_function_call(
self)
Inheritance:
Expr.is_function_call
Returns true if the considered Expr is a function call
def is_function_call(self): """Returns true if the considered Expr is a function call """ return False
def is_id(
self, name=None)
def is_id(self, name=None): return False
def is_int(
self, value=None)
def is_int(self, value=None): return False
def is_loc(
self, label=None)
def is_loc(self, label=None): return False
def is_mem_segm(
self)
Inheritance:
Expr.is_mem_segm
Returns True if is ExprMem and ptr is_op_segm
def is_mem_segm(self): """Returns True if is ExprMem and ptr is_op_segm""" return False
def is_op(
self, op=None)
def is_op(self, op=None): return False
def is_op_segm(
self)
Inheritance:
Expr.is_op_segm
Returns True if is ExprOp and op == 'segm'
def is_op_segm(self): """Returns True if is ExprOp and op == 'segm'""" return False
def is_slice(
self, start=None, stop=None)
def is_slice(self, start=None, stop=None): return False
def iter_args(
self)
def iter_args(self): index = 0 for arg in self._args: yield index, arg index += arg.size
def msb(
self)
Return the Most Significant Bit
def msb(self): "Return the Most Significant Bit" return self[self.size - 1:self.size]
def replace_expr(
self, dct=None)
Inheritance:
Expr.replace_expr
Find and replace sub expression using dct @dct: dictionary of Expr -> *
def replace_expr(self, dct=None): """Find and replace sub expression using dct @dct: dictionary of Expr -> * """ if dct is None: dct = {} def my_replace(expr, dct): if expr in dct: return dct[expr] return expr return self.visit(lambda expr: my_replace(expr, dct))
def set_is_canon(
self, value)
Inheritance:
Expr.set_is_canon
def set_is_canon(self, value): assert value is True Expr.canon_exprs.add(self)
def set_mask(
self, value)
def set_mask(self, value): raise ValueError('mask is not mutable')
def set_size(
self, _)
def set_size(self, _): raise ValueError('size is not mutable')
def signExtend(
self, size)
Inheritance:
Expr.signExtend
Sign extend to size @size: int
def signExtend(self, size): """Sign extend to size @size: int """ assert self.size <= size if self.size == size: return self return ExprOp('signExt_%d' % size, self)
def visit(
expr, callback, test_visit=<function <lambda> at 0x7f19b24529b0>)
def wrapped(expr, callback, test_visit=lambda x: True): if (test_visit is not None) and (not test_visit(expr)): return expr expr_new = visitor(expr, callback, test_visit) if expr_new is None: return None expr_new2 = callback(expr_new) return expr_new2
def zeroExtend(
self, size)
Inheritance:
Expr.zeroExtend
Zero extend to size @size: int
def zeroExtend(self, size): """Zero extend to size @size: int """ assert self.size <= size if self.size == size: return self return ExprOp('zeroExt_%d' % size, self)
class ExprCond
An ExprCond stand for a condition on an Expr
Use cases: - var1 < var2 - min(var1, var2) - if (cond) then ... else ...
class ExprCond(Expr): """An ExprCond stand for a condition on an Expr Use cases: - var1 < var2 - min(var1, var2) - if (cond) then ... else ... """ __slots__ = Expr.__slots__ + ["_cond", "_src1", "_src2"] def __init__(self, cond, src1, src2): """Create an ExprCond @cond: Expr, condition @src1: Expr, value if condition is evaled to not zero @src2: Expr, value if condition is evaled zero """ # cond, src1, src2 must be Expr assert isinstance(cond, Expr) assert isinstance(src1, Expr) assert isinstance(src2, Expr) self._cond, self._src1, self._src2 = cond, src1, src2 assert src1.size == src2.size super(ExprCond, self).__init__(self.src1.size) cond = property(lambda self: self._cond) src1 = property(lambda self: self._src1) src2 = property(lambda self: self._src2) def __reduce__(self): state = self._cond, self._src1, self._src2 return self.__class__, state def __new__(cls, cond, src1, src2): return Expr.get_object(cls, (cond, src1, src2)) def __str__(self): return "%s?(%s,%s)" % (str_protected_child(self._cond, self), str(self._src1), str(self._src2)) def get_r(self, mem_read=False, cst_read=False): out_src1 = self.src1.get_r(mem_read, cst_read) out_src2 = self.src2.get_r(mem_read, cst_read) return self.cond.get_r(mem_read, cst_read).union(out_src1).union(out_src2) def get_w(self): return set() def _exprhash(self): return hash((EXPRCOND, hash(self.cond), hash(self._src1), hash(self._src2))) def _exprrepr(self): return "%s(%r, %r, %r)" % (self.__class__.__name__, self._cond, self._src1, self._src2) def __contains__(self, expr): return (self == expr or self.cond.__contains__(expr) or self.src1.__contains__(expr) or self.src2.__contains__(expr)) @visit_chk def visit(self, callback, test_visit=None): cond = self._cond.visit(callback, test_visit) src1 = self._src1.visit(callback, test_visit) src2 = self._src2.visit(callback, test_visit) if cond == self._cond and src1 == self._src1 and src2 == self._src2: return self return ExprCond(cond, src1, src2) def copy(self): return ExprCond(self._cond.copy(), self._src1.copy(), self._src2.copy()) def depth(self): return max(self._cond.depth(), self._src1.depth(), self._src2.depth()) + 1 def graph_recursive(self, graph): graph.add_node(self) for arg in [self._cond, self._src1, self._src2]: arg.graph_recursive(graph) graph.add_uniq_edge(self, arg) def is_cond(self): return True
Ancestors (in MRO)
Class variables
var cond
var src1
var src2
Static methods
def get_object(
expr_cls, args)
Inheritance:
Expr.get_object
@staticmethod def get_object(expr_cls, args): if not expr_cls.use_singleton: return object.__new__(expr_cls, args) expr = Expr.args2expr.get((expr_cls, args)) if expr is None: expr = object.__new__(expr_cls, args) Expr.args2expr[(expr_cls, args)] = expr return expr
Instance variables
var cond
var src1
var src2
Methods
def __init__(
self, cond, src1, src2)
Create an ExprCond @cond: Expr, condition @src1: Expr, value if condition is evaled to not zero @src2: Expr, value if condition is evaled zero
def __init__(self, cond, src1, src2): """Create an ExprCond @cond: Expr, condition @src1: Expr, value if condition is evaled to not zero @src2: Expr, value if condition is evaled zero """ # cond, src1, src2 must be Expr assert isinstance(cond, Expr) assert isinstance(src1, Expr) assert isinstance(src2, Expr) self._cond, self._src1, self._src2 = cond, src1, src2 assert src1.size == src2.size super(ExprCond, self).__init__(self.src1.size)
def canonize(
self)
Canonize the Expression
def canonize(self): "Canonize the Expression" def must_canon(expr): return not expr.is_canon def canonize_visitor(expr): if expr.is_canon: return expr if isinstance(expr, ExprOp): if expr.is_associative(): # ((a+b) + c) => (a + b + c) args = [] for arg in expr.args: if isinstance(arg, ExprOp) and expr.op == arg.op: args += arg.args else: args.append(arg) args = canonize_expr_list(args) new_e = ExprOp(expr.op, *args) else: new_e = expr else: new_e = expr new_e.is_canon = True return new_e return self.visit(canonize_visitor, must_canon)
def copy(
self)
Deep copy of the expression
def copy(self): return ExprCond(self._cond.copy(), self._src1.copy(), self._src2.copy())
def depth(
self)
def depth(self): return max(self._cond.depth(), self._src1.depth(), self._src2.depth()) + 1
def get_is_canon(
self)
Inheritance:
Expr.get_is_canon
def get_is_canon(self): return self in Expr.canon_exprs
def get_r(
self, mem_read=False, cst_read=False)
def get_r(self, mem_read=False, cst_read=False): out_src1 = self.src1.get_r(mem_read, cst_read) out_src2 = self.src2.get_r(mem_read, cst_read) return self.cond.get_r(mem_read, cst_read).union(out_src1).union(out_src2)
def get_size(
self)
def get_size(self): raise DeprecationWarning("use X.size instead of X.get_size()")
def get_w(
self)
def get_w(self): return set()
def graph(
self)
Return a DiGraph instance standing for Expr tree Instance's display functions have been override for better visibility Wrapper on graph_recursive
def graph(self): """Return a DiGraph instance standing for Expr tree Instance's display functions have been override for better visibility Wrapper on graph_recursive""" # Create recursively the graph graph = DiGraphExpr() self.graph_recursive(graph) return graph
def graph_recursive(
self, graph)
Inheritance:
Expr.graph_recursive
Recursive method used by graph @graph: miasm2.core.graph.DiGraph instance Update @graph instance to include sons This is an Abstract method
def graph_recursive(self, graph): graph.add_node(self) for arg in [self._cond, self._src1, self._src2]: arg.graph_recursive(graph) graph.add_uniq_edge(self, arg)
def is_function_call(
self)
Inheritance:
Expr.is_function_call
Returns true if the considered Expr is a function call
def is_function_call(self): """Returns true if the considered Expr is a function call """ return False
def is_id(
self, name=None)
def is_id(self, name=None): return False
def is_int(
self, value=None)
def is_int(self, value=None): return False
def is_loc(
self, label=None)
def is_loc(self, label=None): return False
def is_mem_segm(
self)
Inheritance:
Expr.is_mem_segm
Returns True if is ExprMem and ptr is_op_segm
def is_mem_segm(self): """Returns True if is ExprMem and ptr is_op_segm""" return False
def is_op(
self, op=None)
def is_op(self, op=None): return False
def is_op_segm(
self)
Inheritance:
Expr.is_op_segm
Returns True if is ExprOp and op == 'segm'
def is_op_segm(self): """Returns True if is ExprOp and op == 'segm'""" return False
def is_slice(
self, start=None, stop=None)
def is_slice(self, start=None, stop=None): return False
def msb(
self)
Return the Most Significant Bit
def msb(self): "Return the Most Significant Bit" return self[self.size - 1:self.size]
def replace_expr(
self, dct=None)
Inheritance:
Expr.replace_expr
Find and replace sub expression using dct @dct: dictionary of Expr -> *
def replace_expr(self, dct=None): """Find and replace sub expression using dct @dct: dictionary of Expr -> * """ if dct is None: dct = {} def my_replace(expr, dct): if expr in dct: return dct[expr] return expr return self.visit(lambda expr: my_replace(expr, dct))
def set_is_canon(
self, value)
Inheritance:
Expr.set_is_canon
def set_is_canon(self, value): assert value is True Expr.canon_exprs.add(self)
def set_mask(
self, value)
def set_mask(self, value): raise ValueError('mask is not mutable')
def set_size(
self, _)
def set_size(self, _): raise ValueError('size is not mutable')
def signExtend(
self, size)
Inheritance:
Expr.signExtend
Sign extend to size @size: int
def signExtend(self, size): """Sign extend to size @size: int """ assert self.size <= size if self.size == size: return self return ExprOp('signExt_%d' % size, self)
def visit(
expr, callback, test_visit=<function <lambda> at 0x7f19b244e410>)
def wrapped(expr, callback, test_visit=lambda x: True): if (test_visit is not None) and (not test_visit(expr)): return expr expr_new = visitor(expr, callback, test_visit) if expr_new is None: return None expr_new2 = callback(expr_new) return expr_new2
def zeroExtend(
self, size)
Inheritance:
Expr.zeroExtend
Zero extend to size @size: int
def zeroExtend(self, size): """Zero extend to size @size: int """ assert self.size <= size if self.size == size: return self return ExprOp('zeroExt_%d' % size, self)
class ExprId
An ExprId represent an identifier in Miasm IR.
Some use cases: - EAX register - 'start' offset - variable v1
class ExprId(Expr): """An ExprId represent an identifier in Miasm IR. Some use cases: - EAX register - 'start' offset - variable v1 """ __slots__ = Expr.__slots__ + ["_name"] def __init__(self, name, size=None): """Create an identifier @name: str, identifier's name @size: int, identifier's size """ if size is None: warnings.warn('DEPRECATION WARNING: size is a mandatory argument: use ExprId(name, SIZE)') size = 32 assert isinstance(name, str) super(ExprId, self).__init__(size) self._name = name name = property(lambda self: self._name) def __reduce__(self): state = self._name, self._size return self.__class__, state def __new__(cls, name, size=None): if size is None: warnings.warn('DEPRECATION WARNING: size is a mandatory argument: use ExprId(name, SIZE)') size = 32 return Expr.get_object(cls, (name, size)) def __str__(self): return str(self._name) def get_r(self, mem_read=False, cst_read=False): return set([self]) def get_w(self): return set([self]) def _exprhash(self): return hash((EXPRID, self._name, self._size)) def _exprrepr(self): return "%s(%r, %d)" % (self.__class__.__name__, self._name, self._size) def __contains__(self, expr): return self == expr @visit_chk def visit(self, callback, test_visit=None): return self def copy(self): return ExprId(self._name, self._size) def depth(self): return 1 def graph_recursive(self, graph): graph.add_node(self) def is_id(self, name=None): if name is not None and self._name != name: return False return True
Ancestors (in MRO)
Class variables
var name
Static methods
def get_object(
expr_cls, args)
Inheritance:
Expr.get_object
@staticmethod def get_object(expr_cls, args): if not expr_cls.use_singleton: return object.__new__(expr_cls, args) expr = Expr.args2expr.get((expr_cls, args)) if expr is None: expr = object.__new__(expr_cls, args) Expr.args2expr[(expr_cls, args)] = expr return expr
Instance variables
var name
Methods
def __init__(
self, name, size=None)
Create an identifier @name: str, identifier's name @size: int, identifier's size
def __init__(self, name, size=None): """Create an identifier @name: str, identifier's name @size: int, identifier's size """ if size is None: warnings.warn('DEPRECATION WARNING: size is a mandatory argument: use ExprId(name, SIZE)') size = 32 assert isinstance(name, str) super(ExprId, self).__init__(size) self._name = name
def canonize(
self)
Canonize the Expression
def canonize(self): "Canonize the Expression" def must_canon(expr): return not expr.is_canon def canonize_visitor(expr): if expr.is_canon: return expr if isinstance(expr, ExprOp): if expr.is_associative(): # ((a+b) + c) => (a + b + c) args = [] for arg in expr.args: if isinstance(arg, ExprOp) and expr.op == arg.op: args += arg.args else: args.append(arg) args = canonize_expr_list(args) new_e = ExprOp(expr.op, *args) else: new_e = expr else: new_e = expr new_e.is_canon = True return new_e return self.visit(canonize_visitor, must_canon)
def copy(
self)
Deep copy of the expression
def copy(self): return ExprId(self._name, self._size)
def depth(
self)
def depth(self): return 1
def get_is_canon(
self)
Inheritance:
Expr.get_is_canon
def get_is_canon(self): return self in Expr.canon_exprs
def get_r(
self, mem_read=False, cst_read=False)
def get_r(self, mem_read=False, cst_read=False): return set([self])
def get_size(
self)
def get_size(self): raise DeprecationWarning("use X.size instead of X.get_size()")
def get_w(
self)
def get_w(self): return set([self])
def graph(
self)
Return a DiGraph instance standing for Expr tree Instance's display functions have been override for better visibility Wrapper on graph_recursive
def graph(self): """Return a DiGraph instance standing for Expr tree Instance's display functions have been override for better visibility Wrapper on graph_recursive""" # Create recursively the graph graph = DiGraphExpr() self.graph_recursive(graph) return graph
def graph_recursive(
self, graph)
Inheritance:
Expr.graph_recursive
Recursive method used by graph @graph: miasm2.core.graph.DiGraph instance Update @graph instance to include sons This is an Abstract method
def graph_recursive(self, graph): graph.add_node(self)
def is_function_call(
self)
Inheritance:
Expr.is_function_call
Returns true if the considered Expr is a function call
def is_function_call(self): """Returns true if the considered Expr is a function call """ return False
def is_id(
self, name=None)
def is_id(self, name=None): if name is not None and self._name != name: return False return True
def is_int(
self, value=None)
def is_int(self, value=None): return False
def is_loc(
self, label=None)
def is_loc(self, label=None): return False
def is_mem_segm(
self)
Inheritance:
Expr.is_mem_segm
Returns True if is ExprMem and ptr is_op_segm
def is_mem_segm(self): """Returns True if is ExprMem and ptr is_op_segm""" return False
def is_op(
self, op=None)
def is_op(self, op=None): return False
def is_op_segm(
self)
Inheritance:
Expr.is_op_segm
Returns True if is ExprOp and op == 'segm'
def is_op_segm(self): """Returns True if is ExprOp and op == 'segm'""" return False
def is_slice(
self, start=None, stop=None)
def is_slice(self, start=None, stop=None): return False
def msb(
self)
Return the Most Significant Bit
def msb(self): "Return the Most Significant Bit" return self[self.size - 1:self.size]
def replace_expr(
self, dct=None)
Inheritance:
Expr.replace_expr
Find and replace sub expression using dct @dct: dictionary of Expr -> *
def replace_expr(self, dct=None): """Find and replace sub expression using dct @dct: dictionary of Expr -> * """ if dct is None: dct = {} def my_replace(expr, dct): if expr in dct: return dct[expr] return expr return self.visit(lambda expr: my_replace(expr, dct))
def set_is_canon(
self, value)
Inheritance:
Expr.set_is_canon
def set_is_canon(self, value): assert value is True Expr.canon_exprs.add(self)
def set_mask(
self, value)
def set_mask(self, value): raise ValueError('mask is not mutable')
def set_size(
self, _)
def set_size(self, _): raise ValueError('size is not mutable')
def signExtend(
self, size)
Inheritance:
Expr.signExtend
Sign extend to size @size: int
def signExtend(self, size): """Sign extend to size @size: int """ assert self.size <= size if self.size == size: return self return ExprOp('signExt_%d' % size, self)
def visit(
expr, callback, test_visit=<function <lambda> at 0x7f19b24499b0>)
def wrapped(expr, callback, test_visit=lambda x: True): if (test_visit is not None) and (not test_visit(expr)): return expr expr_new = visitor(expr, callback, test_visit) if expr_new is None: return None expr_new2 = callback(expr_new) return expr_new2
def zeroExtend(
self, size)
Inheritance:
Expr.zeroExtend
Zero extend to size @size: int
def zeroExtend(self, size): """Zero extend to size @size: int """ assert self.size <= size if self.size == size: return self return ExprOp('zeroExt_%d' % size, self)
class ExprInt
An ExprInt represent a constant in Miasm IR.
Some use cases: - Constant 0x42 - Constant -0x30 - Constant 0x12345678 on 32bits
class ExprInt(Expr): """An ExprInt represent a constant in Miasm IR. Some use cases: - Constant 0x42 - Constant -0x30 - Constant 0x12345678 on 32bits """ __slots__ = Expr.__slots__ + ["_arg"] def __init__(self, arg, size): """Create an ExprInt from a modint or num/size @arg: 'intable' number @size: int size""" super(ExprInt, self).__init__(size) # Work for ._arg is done in __new__ arg = property(lambda self: self._arg) def __reduce__(self): state = int(self._arg), self._size return self.__class__, state def __new__(cls, arg, size): """Create an ExprInt from a modint or num/size @arg: 'intable' number @size: int size""" if is_modint(arg): assert size == arg.size # Avoid a common blunder assert not isinstance(arg, ExprInt) # Ensure arg is always a moduint arg = int(arg) if size not in mod_size2uint: define_uint(size) arg = mod_size2uint[size](arg) # Get the Singleton instance expr = Expr.get_object(cls, (arg, size)) # Save parameters (__init__ is called with parameters unchanged) expr._arg = arg return expr def _get_int(self): "Return self integer representation" return int(self._arg & size2mask(self._size)) def __str__(self): if self._arg < 0: return str("-0x%X" % (- self._get_int())) else: return str("0x%X" % self._get_int()) def get_r(self, mem_read=False, cst_read=False): if cst_read: return set([self]) else: return set() def get_w(self): return set() def _exprhash(self): return hash((EXPRINT, self._arg, self._size)) def _exprrepr(self): return "%s(0x%X, %d)" % (self.__class__.__name__, self._get_int(), self._size) def __contains__(self, expr): return self == expr @visit_chk def visit(self, callback, test_visit=None): return self def copy(self): return ExprInt(self._arg, self._size) def depth(self): return 1 def graph_recursive(self, graph): graph.add_node(self) def __int__(self): return int(self.arg) def __long__(self): return long(self.arg) def is_int(self, value=None): if value is not None and self._arg != value: return False return True
Ancestors (in MRO)
Class variables
var arg
Static methods
def get_object(
expr_cls, args)
Inheritance:
Expr.get_object
@staticmethod def get_object(expr_cls, args): if not expr_cls.use_singleton: return object.__new__(expr_cls, args) expr = Expr.args2expr.get((expr_cls, args)) if expr is None: expr = object.__new__(expr_cls, args) Expr.args2expr[(expr_cls, args)] = expr return expr
Instance variables
var arg
Methods
def __init__(
self, arg, size)
Create an ExprInt from a modint or num/size @arg: 'intable' number @size: int size
def __init__(self, arg, size): """Create an ExprInt from a modint or num/size @arg: 'intable' number @size: int size""" super(ExprInt, self).__init__(size)
def canonize(
self)
Canonize the Expression
def canonize(self): "Canonize the Expression" def must_canon(expr): return not expr.is_canon def canonize_visitor(expr): if expr.is_canon: return expr if isinstance(expr, ExprOp): if expr.is_associative(): # ((a+b) + c) => (a + b + c) args = [] for arg in expr.args: if isinstance(arg, ExprOp) and expr.op == arg.op: args += arg.args else: args.append(arg) args = canonize_expr_list(args) new_e = ExprOp(expr.op, *args) else: new_e = expr else: new_e = expr new_e.is_canon = True return new_e return self.visit(canonize_visitor, must_canon)
def copy(
self)
Deep copy of the expression
def copy(self): return ExprInt(self._arg, self._size)
def depth(
self)
def depth(self): return 1
def get_is_canon(
self)
Inheritance:
Expr.get_is_canon
def get_is_canon(self): return self in Expr.canon_exprs
def get_r(
self, mem_read=False, cst_read=False)
def get_r(self, mem_read=False, cst_read=False): if cst_read: return set([self]) else: return set()
def get_size(
self)
def get_size(self): raise DeprecationWarning("use X.size instead of X.get_size()")
def get_w(
self)
def get_w(self): return set()
def graph(
self)
Return a DiGraph instance standing for Expr tree Instance's display functions have been override for better visibility Wrapper on graph_recursive
def graph(self): """Return a DiGraph instance standing for Expr tree Instance's display functions have been override for better visibility Wrapper on graph_recursive""" # Create recursively the graph graph = DiGraphExpr() self.graph_recursive(graph) return graph
def graph_recursive(
self, graph)
Inheritance:
Expr.graph_recursive
Recursive method used by graph @graph: miasm2.core.graph.DiGraph instance Update @graph instance to include sons This is an Abstract method
def graph_recursive(self, graph): graph.add_node(self)
def is_function_call(
self)
Inheritance:
Expr.is_function_call
Returns true if the considered Expr is a function call
def is_function_call(self): """Returns true if the considered Expr is a function call """ return False
def is_id(
self, name=None)
def is_id(self, name=None): return False
def is_int(
self, value=None)
def is_int(self, value=None): if value is not None and self._arg != value: return False return True
def is_loc(
self, label=None)
def is_loc(self, label=None): return False
def is_mem_segm(
self)
Inheritance:
Expr.is_mem_segm
Returns True if is ExprMem and ptr is_op_segm
def is_mem_segm(self): """Returns True if is ExprMem and ptr is_op_segm""" return False
def is_op(
self, op=None)
def is_op(self, op=None): return False
def is_op_segm(
self)
Inheritance:
Expr.is_op_segm
Returns True if is ExprOp and op == 'segm'
def is_op_segm(self): """Returns True if is ExprOp and op == 'segm'""" return False
def is_slice(
self, start=None, stop=None)
def is_slice(self, start=None, stop=None): return False
def msb(
self)
Return the Most Significant Bit
def msb(self): "Return the Most Significant Bit" return self[self.size - 1:self.size]
def replace_expr(
self, dct=None)
Inheritance:
Expr.replace_expr
Find and replace sub expression using dct @dct: dictionary of Expr -> *
def replace_expr(self, dct=None): """Find and replace sub expression using dct @dct: dictionary of Expr -> * """ if dct is None: dct = {} def my_replace(expr, dct): if expr in dct: return dct[expr] return expr return self.visit(lambda expr: my_replace(expr, dct))
def set_is_canon(
self, value)
Inheritance:
Expr.set_is_canon
def set_is_canon(self, value): assert value is True Expr.canon_exprs.add(self)
def set_mask(
self, value)
def set_mask(self, value): raise ValueError('mask is not mutable')
def set_size(
self, _)
def set_size(self, _): raise ValueError('size is not mutable')
def signExtend(
self, size)
Inheritance:
Expr.signExtend
Sign extend to size @size: int
def signExtend(self, size): """Sign extend to size @size: int """ assert self.size <= size if self.size == size: return self return ExprOp('signExt_%d' % size, self)
def visit(
expr, callback, test_visit=<function <lambda> at 0x7f19b24490c8>)
def wrapped(expr, callback, test_visit=lambda x: True): if (test_visit is not None) and (not test_visit(expr)): return expr expr_new = visitor(expr, callback, test_visit) if expr_new is None: return None expr_new2 = callback(expr_new) return expr_new2
def zeroExtend(
self, size)
Inheritance:
Expr.zeroExtend
Zero extend to size @size: int
def zeroExtend(self, size): """Zero extend to size @size: int """ assert self.size <= size if self.size == size: return self return ExprOp('zeroExt_%d' % size, self)
class ExprLoc
An ExprLoc represent a Label in Miasm IR.
class ExprLoc(Expr): """An ExprLoc represent a Label in Miasm IR. """ __slots__ = Expr.__slots__ + ["_loc_key"] def __init__(self, loc_key, size): """Create an identifier @loc_key: int, label loc_key @size: int, identifier's size """ assert isinstance(loc_key, LocKey) super(ExprLoc, self).__init__(size) self._loc_key = loc_key loc_key= property(lambda self: self._loc_key) def __reduce__(self): state = self._loc_key, self._size return self.__class__, state def __new__(cls, loc_key, size): return Expr.get_object(cls, (loc_key, size)) def __str__(self): return str(self._loc_key) def get_r(self, mem_read=False, cst_read=False): return set() def get_w(self): return set() def _exprhash(self): return hash((EXPRLOC, self._loc_key, self._size)) def _exprrepr(self): return "%s(%r, %d)" % (self.__class__.__name__, self._loc_key, self._size) def __contains__(self, expr): return self == expr @visit_chk def visit(self, callback, test_visit=None): return self def copy(self): return ExprLoc(self._loc_key, self._size) def depth(self): return 1 def graph_recursive(self, graph): graph.add_node(self) def is_loc(self, loc_key=None): if loc_key is not None and self._loc_key != loc_key: return False return True
Ancestors (in MRO)
Class variables
var loc_key
Static methods
def get_object(
expr_cls, args)
Inheritance:
Expr.get_object
@staticmethod def get_object(expr_cls, args): if not expr_cls.use_singleton: return object.__new__(expr_cls, args) expr = Expr.args2expr.get((expr_cls, args)) if expr is None: expr = object.__new__(expr_cls, args) Expr.args2expr[(expr_cls, args)] = expr return expr
Instance variables
var loc_key
Methods
def __init__(
self, loc_key, size)
Create an identifier @loc_key: int, label loc_key @size: int, identifier's size
def __init__(self, loc_key, size): """Create an identifier @loc_key: int, label loc_key @size: int, identifier's size """ assert isinstance(loc_key, LocKey) super(ExprLoc, self).__init__(size) self._loc_key = loc_key
def canonize(
self)
Canonize the Expression
def canonize(self): "Canonize the Expression" def must_canon(expr): return not expr.is_canon def canonize_visitor(expr): if expr.is_canon: return expr if isinstance(expr, ExprOp): if expr.is_associative(): # ((a+b) + c) => (a + b + c) args = [] for arg in expr.args: if isinstance(arg, ExprOp) and expr.op == arg.op: args += arg.args else: args.append(arg) args = canonize_expr_list(args) new_e = ExprOp(expr.op, *args) else: new_e = expr else: new_e = expr new_e.is_canon = True return new_e return self.visit(canonize_visitor, must_canon)
def copy(
self)
Deep copy of the expression
def copy(self): return ExprLoc(self._loc_key, self._size)
def depth(
self)
def depth(self): return 1
def get_is_canon(
self)
Inheritance:
Expr.get_is_canon
def get_is_canon(self): return self in Expr.canon_exprs
def get_r(
self, mem_read=False, cst_read=False)
def get_r(self, mem_read=False, cst_read=False): return set()
def get_size(
self)
def get_size(self): raise DeprecationWarning("use X.size instead of X.get_size()")
def get_w(
self)
def get_w(self): return set()
def graph(
self)
Return a DiGraph instance standing for Expr tree Instance's display functions have been override for better visibility Wrapper on graph_recursive
def graph(self): """Return a DiGraph instance standing for Expr tree Instance's display functions have been override for better visibility Wrapper on graph_recursive""" # Create recursively the graph graph = DiGraphExpr() self.graph_recursive(graph) return graph
def graph_recursive(
self, graph)
Inheritance:
Expr.graph_recursive
Recursive method used by graph @graph: miasm2.core.graph.DiGraph instance Update @graph instance to include sons This is an Abstract method
def graph_recursive(self, graph): graph.add_node(self)
def is_function_call(
self)
Inheritance:
Expr.is_function_call
Returns true if the considered Expr is a function call
def is_function_call(self): """Returns true if the considered Expr is a function call """ return False
def is_id(
self, name=None)
def is_id(self, name=None): return False
def is_int(
self, value=None)
def is_int(self, value=None): return False
def is_loc(
self, loc_key=None)
def is_loc(self, loc_key=None): if loc_key is not None and self._loc_key != loc_key: return False return True
def is_mem_segm(
self)
Inheritance:
Expr.is_mem_segm
Returns True if is ExprMem and ptr is_op_segm
def is_mem_segm(self): """Returns True if is ExprMem and ptr is_op_segm""" return False
def is_op(
self, op=None)
def is_op(self, op=None): return False
def is_op_segm(
self)
Inheritance:
Expr.is_op_segm
Returns True if is ExprOp and op == 'segm'
def is_op_segm(self): """Returns True if is ExprOp and op == 'segm'""" return False
def is_slice(
self, start=None, stop=None)
def is_slice(self, start=None, stop=None): return False
def msb(
self)
Return the Most Significant Bit
def msb(self): "Return the Most Significant Bit" return self[self.size - 1:self.size]
def replace_expr(
self, dct=None)
Inheritance:
Expr.replace_expr
Find and replace sub expression using dct @dct: dictionary of Expr -> *
def replace_expr(self, dct=None): """Find and replace sub expression using dct @dct: dictionary of Expr -> * """ if dct is None: dct = {} def my_replace(expr, dct): if expr in dct: return dct[expr] return expr return self.visit(lambda expr: my_replace(expr, dct))
def set_is_canon(
self, value)
Inheritance:
Expr.set_is_canon
def set_is_canon(self, value): assert value is True Expr.canon_exprs.add(self)
def set_mask(
self, value)
def set_mask(self, value): raise ValueError('mask is not mutable')
def set_size(
self, _)
def set_size(self, _): raise ValueError('size is not mutable')
def signExtend(
self, size)
Inheritance:
Expr.signExtend
Sign extend to size @size: int
def signExtend(self, size): """Sign extend to size @size: int """ assert self.size <= size if self.size == size: return self return ExprOp('signExt_%d' % size, self)
def visit(
expr, callback, test_visit=<function <lambda> at 0x7f19b244b230>)
def wrapped(expr, callback, test_visit=lambda x: True): if (test_visit is not None) and (not test_visit(expr)): return expr expr_new = visitor(expr, callback, test_visit) if expr_new is None: return None expr_new2 = callback(expr_new) return expr_new2
def zeroExtend(
self, size)
Inheritance:
Expr.zeroExtend
Zero extend to size @size: int
def zeroExtend(self, size): """Zero extend to size @size: int """ assert self.size <= size if self.size == size: return self return ExprOp('zeroExt_%d' % size, self)
class ExprMem
An ExprMem stand for a memory access
Use cases: - Memory read - Memory write
class ExprMem(Expr): """An ExprMem stand for a memory access Use cases: - Memory read - Memory write """ __slots__ = Expr.__slots__ + ["_arg"] def __init__(self, arg, size=None): """Create an ExprMem @arg: Expr, memory access address @size: int, memory access size """ if size is None: warnings.warn('DEPRECATION WARNING: size is a mandatory argument: use ExprMem(arg, SIZE)') size = 32 # arg must be Expr assert isinstance(arg, Expr) assert isinstance(size, (int, long)) if not isinstance(arg, Expr): raise ValueError( 'ExprMem: arg must be an Expr (not %s)' % type(arg)) super(ExprMem, self).__init__(size) self._arg = arg arg = property(lambda self: self._arg) def __reduce__(self): state = self._arg, self._size return self.__class__, state def __new__(cls, arg, size=None): if size is None: warnings.warn('DEPRECATION WARNING: size is a mandatory argument: use ExprMem(arg, SIZE)') size = 32 return Expr.get_object(cls, (arg, size)) def __str__(self): return "@%d[%s]" % (self.size, str(self.arg)) def get_r(self, mem_read=False, cst_read=False): if mem_read: return set(self._arg.get_r(mem_read, cst_read).union(set([self]))) else: return set([self]) def get_w(self): return set([self]) # [memreg] def _exprhash(self): return hash((EXPRMEM, hash(self._arg), self._size)) def _exprrepr(self): return "%s(%r, %r)" % (self.__class__.__name__, self._arg, self._size) def __contains__(self, expr): return self == expr or self._arg.__contains__(expr) @visit_chk def visit(self, callback, test_visit=None): arg = self._arg.visit(callback, test_visit) if arg == self._arg: return self return ExprMem(arg, self.size) def copy(self): arg = self.arg.copy() return ExprMem(arg, size=self.size) def is_mem_segm(self): """Returns True if is ExprMem and ptr is_op_segm""" return self._arg.is_op_segm() def depth(self): return self._arg.depth() + 1 def graph_recursive(self, graph): graph.add_node(self) self._arg.graph_recursive(graph) graph.add_uniq_edge(self, self._arg) def is_mem(self): return True
Ancestors (in MRO)
Class variables
var arg
Static methods
def get_object(
expr_cls, args)
Inheritance:
Expr.get_object
@staticmethod def get_object(expr_cls, args): if not expr_cls.use_singleton: return object.__new__(expr_cls, args) expr = Expr.args2expr.get((expr_cls, args)) if expr is None: expr = object.__new__(expr_cls, args) Expr.args2expr[(expr_cls, args)] = expr return expr
Instance variables
var arg
Methods
def __init__(
self, arg, size=None)
Create an ExprMem @arg: Expr, memory access address @size: int, memory access size
def __init__(self, arg, size=None): """Create an ExprMem @arg: Expr, memory access address @size: int, memory access size """ if size is None: warnings.warn('DEPRECATION WARNING: size is a mandatory argument: use ExprMem(arg, SIZE)') size = 32 # arg must be Expr assert isinstance(arg, Expr) assert isinstance(size, (int, long)) if not isinstance(arg, Expr): raise ValueError( 'ExprMem: arg must be an Expr (not %s)' % type(arg)) super(ExprMem, self).__init__(size) self._arg = arg
def canonize(
self)
Canonize the Expression
def canonize(self): "Canonize the Expression" def must_canon(expr): return not expr.is_canon def canonize_visitor(expr): if expr.is_canon: return expr if isinstance(expr, ExprOp): if expr.is_associative(): # ((a+b) + c) => (a + b + c) args = [] for arg in expr.args: if isinstance(arg, ExprOp) and expr.op == arg.op: args += arg.args else: args.append(arg) args = canonize_expr_list(args) new_e = ExprOp(expr.op, *args) else: new_e = expr else: new_e = expr new_e.is_canon = True return new_e return self.visit(canonize_visitor, must_canon)
def copy(
self)
Deep copy of the expression
def copy(self): arg = self.arg.copy() return ExprMem(arg, size=self.size)
def depth(
self)
def depth(self): return self._arg.depth() + 1
def get_is_canon(
self)
Inheritance:
Expr.get_is_canon
def get_is_canon(self): return self in Expr.canon_exprs
def get_r(
self, mem_read=False, cst_read=False)
def get_r(self, mem_read=False, cst_read=False): if mem_read: return set(self._arg.get_r(mem_read, cst_read).union(set([self]))) else: return set([self])
def get_size(
self)
def get_size(self): raise DeprecationWarning("use X.size instead of X.get_size()")
def get_w(
self)
def get_w(self): return set([self]) # [memreg]
def graph(
self)
Return a DiGraph instance standing for Expr tree Instance's display functions have been override for better visibility Wrapper on graph_recursive
def graph(self): """Return a DiGraph instance standing for Expr tree Instance's display functions have been override for better visibility Wrapper on graph_recursive""" # Create recursively the graph graph = DiGraphExpr() self.graph_recursive(graph) return graph
def graph_recursive(
self, graph)
Inheritance:
Expr.graph_recursive
Recursive method used by graph @graph: miasm2.core.graph.DiGraph instance Update @graph instance to include sons This is an Abstract method
def graph_recursive(self, graph): graph.add_node(self) self._arg.graph_recursive(graph) graph.add_uniq_edge(self, self._arg)
def is_function_call(
self)
Inheritance:
Expr.is_function_call
Returns true if the considered Expr is a function call
def is_function_call(self): """Returns true if the considered Expr is a function call """ return False
def is_id(
self, name=None)
def is_id(self, name=None): return False
def is_int(
self, value=None)
def is_int(self, value=None): return False
def is_loc(
self, label=None)
def is_loc(self, label=None): return False
def is_mem_segm(
self)
Inheritance:
Expr.is_mem_segm
Returns True if is ExprMem and ptr is_op_segm
def is_mem_segm(self): """Returns True if is ExprMem and ptr is_op_segm""" return self._arg.is_op_segm()
def is_op(
self, op=None)
def is_op(self, op=None): return False
def is_op_segm(
self)
Inheritance:
Expr.is_op_segm
Returns True if is ExprOp and op == 'segm'
def is_op_segm(self): """Returns True if is ExprOp and op == 'segm'""" return False
def is_slice(
self, start=None, stop=None)
def is_slice(self, start=None, stop=None): return False
def msb(
self)
Return the Most Significant Bit
def msb(self): "Return the Most Significant Bit" return self[self.size - 1:self.size]
def replace_expr(
self, dct=None)
Inheritance:
Expr.replace_expr
Find and replace sub expression using dct @dct: dictionary of Expr -> *
def replace_expr(self, dct=None): """Find and replace sub expression using dct @dct: dictionary of Expr -> * """ if dct is None: dct = {} def my_replace(expr, dct): if expr in dct: return dct[expr] return expr return self.visit(lambda expr: my_replace(expr, dct))
def set_is_canon(
self, value)
Inheritance:
Expr.set_is_canon
def set_is_canon(self, value): assert value is True Expr.canon_exprs.add(self)
def set_mask(
self, value)
def set_mask(self, value): raise ValueError('mask is not mutable')
def set_size(
self, _)
def set_size(self, _): raise ValueError('size is not mutable')
def signExtend(
self, size)
Inheritance:
Expr.signExtend
Sign extend to size @size: int
def signExtend(self, size): """Sign extend to size @size: int """ assert self.size <= size if self.size == size: return self return ExprOp('signExt_%d' % size, self)
def visit(
expr, callback, test_visit=<function <lambda> at 0x7f19b244ec08>)
def wrapped(expr, callback, test_visit=lambda x: True): if (test_visit is not None) and (not test_visit(expr)): return expr expr_new = visitor(expr, callback, test_visit) if expr_new is None: return None expr_new2 = callback(expr_new) return expr_new2
def zeroExtend(
self, size)
Inheritance:
Expr.zeroExtend
Zero extend to size @size: int
def zeroExtend(self, size): """Zero extend to size @size: int """ assert self.size <= size if self.size == size: return self return ExprOp('zeroExt_%d' % size, self)
class ExprOp
An ExprOp stand for an operation between Expr
Use cases: - var1 XOR var2 - var1 + var2 + var3 - parity bit(var1)
class ExprOp(Expr): """An ExprOp stand for an operation between Expr Use cases: - var1 XOR var2 - var1 + var2 + var3 - parity bit(var1) """ __slots__ = Expr.__slots__ + ["_op", "_args"] def __init__(self, op, *args): """Create an ExprOp @op: str, operation @*args: Expr, operand list """ # args must be Expr assert all(isinstance(arg, Expr) for arg in args) sizes = set([arg.size for arg in args]) if len(sizes) != 1: # Special cases : operande sizes can differ if op not in [ "segm", "FLAG_EQ_ADDWC", "FLAG_EQ_SUBWC", "FLAG_SIGN_ADDWC", "FLAG_SIGN_SUBWC", "FLAG_ADDWC_CF", "FLAG_ADDWC_OF", "FLAG_SUBWC_CF", "FLAG_SUBWC_OF", ]: raise ValueError( "sanitycheck: ExprOp args must have same size! %s" % ([(str(arg), arg.size) for arg in args])) if not isinstance(op, str): raise ValueError("ExprOp: 'op' argument must be a string") assert isinstance(args, tuple) self._op, self._args = op, args # Set size for special cases if self._op in [ '==', 'parity', 'fcom_c0', 'fcom_c1', 'fcom_c2', 'fcom_c3', 'fxam_c0', 'fxam_c1', 'fxam_c2', 'fxam_c3', "access_segment_ok", "load_segment_limit_ok", "bcdadd_cf", "ucomiss_zf", "ucomiss_pf", "ucomiss_cf", "ucomisd_zf", "ucomisd_pf", "ucomisd_cf"]: size = 1 elif self._op in [TOK_INF, TOK_INF_SIGNED, TOK_INF_UNSIGNED, TOK_INF_EQUAL, TOK_INF_EQUAL_SIGNED, TOK_INF_EQUAL_UNSIGNED, TOK_EQUAL, TOK_POS, TOK_POS_STRICT, ]: size = 1 elif self._op.startswith("sint_to_fp"): size = int(self._op[len("sint_to_fp"):]) elif self._op.startswith("fp_to_sint"): size = int(self._op[len("fp_to_sint"):]) elif self._op.startswith("fpconvert_fp"): size = int(self._op[len("fpconvert_fp"):]) elif self._op in [ "FLAG_ADD_CF", "FLAG_SUB_CF", "FLAG_ADD_OF", "FLAG_SUB_OF", "FLAG_EQ", "FLAG_EQ_CMP", "FLAG_SIGN_SUB", "FLAG_SIGN_ADD", "FLAG_EQ_AND", "FLAG_EQ_ADDWC", "FLAG_EQ_SUBWC", "FLAG_SIGN_ADDWC", "FLAG_SIGN_SUBWC", "FLAG_ADDWC_CF", "FLAG_ADDWC_OF", "FLAG_SUBWC_CF", "FLAG_SUBWC_OF", ]: size = 1 elif self._op.startswith('signExt_'): size = int(self._op[8:]) elif self._op.startswith('zeroExt_'): size = int(self._op[8:]) elif self._op in ['segm']: size = self._args[1].size else: if None in sizes: size = None else: # All arguments have the same size size = list(sizes)[0] super(ExprOp, self).__init__(size) op = property(lambda self: self._op) args = property(lambda self: self._args) def __reduce__(self): state = tuple([self._op] + list(self._args)) return self.__class__, state def __new__(cls, op, *args): return Expr.get_object(cls, (op, args)) def __str__(self): if self._op == '-': # Unary minus return '-' + str_protected_child(self._args[0], self) if self.is_associative() or self.is_infix(): return (' ' + self._op + ' ').join([str_protected_child(arg, self) for arg in self._args]) return (self._op + '(' + ', '.join([str(arg) for arg in self._args]) + ')') def get_r(self, mem_read=False, cst_read=False): return reduce(lambda elements, arg: elements.union(arg.get_r(mem_read, cst_read)), self._args, set()) def get_w(self): raise ValueError('op cannot be written!', self) def _exprhash(self): h_hargs = [hash(arg) for arg in self._args] return hash((EXPROP, self._op, tuple(h_hargs))) def _exprrepr(self): return "%s(%r, %s)" % (self.__class__.__name__, self._op, ', '.join(repr(arg) for arg in self._args)) def __contains__(self, expr): if self == expr: return True for arg in self._args: if arg.__contains__(expr): return True return False def is_function_call(self): return self._op.startswith('call') def is_infix(self): return self._op in [ '-', '+', '*', '^', '&', '|', '>>', '<<', 'a>>', '>>>', '<<<', '/', '%', '**', '<u', '<s', '<=u', '<=s', '==' ] def is_associative(self): "Return True iff current operation is associative" return (self._op in ['+', '*', '^', '&', '|']) def is_commutative(self): "Return True iff current operation is commutative" return (self._op in ['+', '*', '^', '&', '|']) @visit_chk def visit(self, callback, test_visit=None): args = [arg.visit(callback, test_visit) for arg in self._args] modified = any([arg[0] != arg[1] for arg in zip(self._args, args)]) if modified: return ExprOp(self._op, *args) return self def copy(self): args = [arg.copy() for arg in self._args] return ExprOp(self._op, *args) def depth(self): depth = [arg.depth() for arg in self._args] return max(depth) + 1 def graph_recursive(self, graph): graph.add_node(self) for arg in self._args: arg.graph_recursive(graph) graph.add_uniq_edge(self, arg) def is_op(self, op=None): if op is None: return True return self.op == op def is_op_segm(self): """Returns True if is ExprOp and op == 'segm'""" return self.is_op('segm')
Ancestors (in MRO)
Class variables
var args
var op
Static methods
def get_object(
expr_cls, args)
Inheritance:
Expr.get_object
@staticmethod def get_object(expr_cls, args): if not expr_cls.use_singleton: return object.__new__(expr_cls, args) expr = Expr.args2expr.get((expr_cls, args)) if expr is None: expr = object.__new__(expr_cls, args) Expr.args2expr[(expr_cls, args)] = expr return expr
Instance variables
var args
var op
Methods
def __init__(
self, op, *args)
Create an ExprOp @op: str, operation @*args: Expr, operand list
def __init__(self, op, *args): """Create an ExprOp @op: str, operation @*args: Expr, operand list """ # args must be Expr assert all(isinstance(arg, Expr) for arg in args) sizes = set([arg.size for arg in args]) if len(sizes) != 1: # Special cases : operande sizes can differ if op not in [ "segm", "FLAG_EQ_ADDWC", "FLAG_EQ_SUBWC", "FLAG_SIGN_ADDWC", "FLAG_SIGN_SUBWC", "FLAG_ADDWC_CF", "FLAG_ADDWC_OF", "FLAG_SUBWC_CF", "FLAG_SUBWC_OF", ]: raise ValueError( "sanitycheck: ExprOp args must have same size! %s" % ([(str(arg), arg.size) for arg in args])) if not isinstance(op, str): raise ValueError("ExprOp: 'op' argument must be a string") assert isinstance(args, tuple) self._op, self._args = op, args # Set size for special cases if self._op in [ '==', 'parity', 'fcom_c0', 'fcom_c1', 'fcom_c2', 'fcom_c3', 'fxam_c0', 'fxam_c1', 'fxam_c2', 'fxam_c3', "access_segment_ok", "load_segment_limit_ok", "bcdadd_cf", "ucomiss_zf", "ucomiss_pf", "ucomiss_cf", "ucomisd_zf", "ucomisd_pf", "ucomisd_cf"]: size = 1 elif self._op in [TOK_INF, TOK_INF_SIGNED, TOK_INF_UNSIGNED, TOK_INF_EQUAL, TOK_INF_EQUAL_SIGNED, TOK_INF_EQUAL_UNSIGNED, TOK_EQUAL, TOK_POS, TOK_POS_STRICT, ]: size = 1 elif self._op.startswith("sint_to_fp"): size = int(self._op[len("sint_to_fp"):]) elif self._op.startswith("fp_to_sint"): size = int(self._op[len("fp_to_sint"):]) elif self._op.startswith("fpconvert_fp"): size = int(self._op[len("fpconvert_fp"):]) elif self._op in [ "FLAG_ADD_CF", "FLAG_SUB_CF", "FLAG_ADD_OF", "FLAG_SUB_OF", "FLAG_EQ", "FLAG_EQ_CMP", "FLAG_SIGN_SUB", "FLAG_SIGN_ADD", "FLAG_EQ_AND", "FLAG_EQ_ADDWC", "FLAG_EQ_SUBWC", "FLAG_SIGN_ADDWC", "FLAG_SIGN_SUBWC", "FLAG_ADDWC_CF", "FLAG_ADDWC_OF", "FLAG_SUBWC_CF", "FLAG_SUBWC_OF", ]: size = 1 elif self._op.startswith('signExt_'): size = int(self._op[8:]) elif self._op.startswith('zeroExt_'): size = int(self._op[8:]) elif self._op in ['segm']: size = self._args[1].size else: if None in sizes: size = None else: # All arguments have the same size size = list(sizes)[0] super(ExprOp, self).__init__(size)
def canonize(
self)
Canonize the Expression
def canonize(self): "Canonize the Expression" def must_canon(expr): return not expr.is_canon def canonize_visitor(expr): if expr.is_canon: return expr if isinstance(expr, ExprOp): if expr.is_associative(): # ((a+b) + c) => (a + b + c) args = [] for arg in expr.args: if isinstance(arg, ExprOp) and expr.op == arg.op: args += arg.args else: args.append(arg) args = canonize_expr_list(args) new_e = ExprOp(expr.op, *args) else: new_e = expr else: new_e = expr new_e.is_canon = True return new_e return self.visit(canonize_visitor, must_canon)
def copy(
self)
Deep copy of the expression
def copy(self): args = [arg.copy() for arg in self._args] return ExprOp(self._op, *args)
def depth(
self)
def depth(self): depth = [arg.depth() for arg in self._args] return max(depth) + 1
def get_is_canon(
self)
Inheritance:
Expr.get_is_canon
def get_is_canon(self): return self in Expr.canon_exprs
def get_r(
self, mem_read=False, cst_read=False)
def get_r(self, mem_read=False, cst_read=False): return reduce(lambda elements, arg: elements.union(arg.get_r(mem_read, cst_read)), self._args, set())
def get_size(
self)
def get_size(self): raise DeprecationWarning("use X.size instead of X.get_size()")
def get_w(
self)
def get_w(self): raise ValueError('op cannot be written!', self)
def graph(
self)
Return a DiGraph instance standing for Expr tree Instance's display functions have been override for better visibility Wrapper on graph_recursive
def graph(self): """Return a DiGraph instance standing for Expr tree Instance's display functions have been override for better visibility Wrapper on graph_recursive""" # Create recursively the graph graph = DiGraphExpr() self.graph_recursive(graph) return graph
def graph_recursive(
self, graph)
Inheritance:
Expr.graph_recursive
Recursive method used by graph @graph: miasm2.core.graph.DiGraph instance Update @graph instance to include sons This is an Abstract method
def graph_recursive(self, graph): graph.add_node(self) for arg in self._args: arg.graph_recursive(graph) graph.add_uniq_edge(self, arg)
def is_associative(
self)
Return True iff current operation is associative
def is_associative(self): "Return True iff current operation is associative" return (self._op in ['+', '*', '^', '&', '|'])
def is_commutative(
self)
Return True iff current operation is commutative
def is_commutative(self): "Return True iff current operation is commutative" return (self._op in ['+', '*', '^', '&', '|'])
def is_function_call(
self)
Inheritance:
Expr.is_function_call
Returns true if the considered Expr is a function call
def is_function_call(self): return self._op.startswith('call')
def is_id(
self, name=None)
def is_id(self, name=None): return False
def is_infix(
self)
def is_infix(self): return self._op in [ '-', '+', '*', '^', '&', '|', '>>', '<<', 'a>>', '>>>', '<<<', '/', '%', '**', '<u', '<s', '<=u', '<=s', '==' ]
def is_int(
self, value=None)
def is_int(self, value=None): return False
def is_loc(
self, label=None)
def is_loc(self, label=None): return False
def is_mem_segm(
self)
Inheritance:
Expr.is_mem_segm
Returns True if is ExprMem and ptr is_op_segm
def is_mem_segm(self): """Returns True if is ExprMem and ptr is_op_segm""" return False
def is_op(
self, op=None)
def is_op(self, op=None): if op is None: return True return self.op == op
def is_op_segm(
self)
Inheritance:
Expr.is_op_segm
Returns True if is ExprOp and op == 'segm'
def is_op_segm(self): """Returns True if is ExprOp and op == 'segm'""" return self.is_op('segm')
def is_slice(
self, start=None, stop=None)
def is_slice(self, start=None, stop=None): return False
def msb(
self)
Return the Most Significant Bit
def msb(self): "Return the Most Significant Bit" return self[self.size - 1:self.size]
def replace_expr(
self, dct=None)
Inheritance:
Expr.replace_expr
Find and replace sub expression using dct @dct: dictionary of Expr -> *
def replace_expr(self, dct=None): """Find and replace sub expression using dct @dct: dictionary of Expr -> * """ if dct is None: dct = {} def my_replace(expr, dct): if expr in dct: return dct[expr] return expr return self.visit(lambda expr: my_replace(expr, dct))
def set_is_canon(
self, value)
Inheritance:
Expr.set_is_canon
def set_is_canon(self, value): assert value is True Expr.canon_exprs.add(self)
def set_mask(
self, value)
def set_mask(self, value): raise ValueError('mask is not mutable')
def set_size(
self, _)
def set_size(self, _): raise ValueError('size is not mutable')
def signExtend(
self, size)
Inheritance:
Expr.signExtend
Sign extend to size @size: int
def signExtend(self, size): """Sign extend to size @size: int """ assert self.size <= size if self.size == size: return self return ExprOp('signExt_%d' % size, self)
def visit(
expr, callback, test_visit=<function <lambda> at 0x7f19b2450758>)
def wrapped(expr, callback, test_visit=lambda x: True): if (test_visit is not None) and (not test_visit(expr)): return expr expr_new = visitor(expr, callback, test_visit) if expr_new is None: return None expr_new2 = callback(expr_new) return expr_new2
def zeroExtend(
self, size)
Inheritance:
Expr.zeroExtend
Zero extend to size @size: int
def zeroExtend(self, size): """Zero extend to size @size: int """ assert self.size <= size if self.size == size: return self return ExprOp('zeroExt_%d' % size, self)
class ExprSlice
class ExprSlice(Expr): __slots__ = Expr.__slots__ + ["_arg", "_start", "_stop"] def __init__(self, arg, start, stop): # arg must be Expr assert isinstance(arg, Expr) assert isinstance(start, (int, long)) assert isinstance(stop, (int, long)) assert start < stop self._arg, self._start, self._stop = arg, start, stop super(ExprSlice, self).__init__(self._stop - self._start) arg = property(lambda self: self._arg) start = property(lambda self: self._start) stop = property(lambda self: self._stop) def __reduce__(self): state = self._arg, self._start, self._stop return self.__class__, state def __new__(cls, arg, start, stop): return Expr.get_object(cls, (arg, start, stop)) def __str__(self): return "%s[%d:%d]" % (str_protected_child(self._arg, self), self._start, self._stop) def get_r(self, mem_read=False, cst_read=False): return self._arg.get_r(mem_read, cst_read) def get_w(self): return self._arg.get_w() def _exprhash(self): return hash((EXPRSLICE, hash(self._arg), self._start, self._stop)) def _exprrepr(self): return "%s(%r, %d, %d)" % (self.__class__.__name__, self._arg, self._start, self._stop) def __contains__(self, expr): if self == expr: return True return self._arg.__contains__(expr) @visit_chk def visit(self, callback, test_visit=None): arg = self._arg.visit(callback, test_visit) if arg == self._arg: return self return ExprSlice(arg, self._start, self._stop) def copy(self): return ExprSlice(self._arg.copy(), self._start, self._stop) def depth(self): return self._arg.depth() + 1 def slice_rest(self): "Return the completion of the current slice" size = self._arg.size if self._start >= size or self._stop > size: raise ValueError('bad slice rest %s %s %s' % (size, self._start, self._stop)) if self._start == self._stop: return [(0, size)] rest = [] if self._start != 0: rest.append((0, self._start)) if self._stop < size: rest.append((self._stop, size)) return rest def graph_recursive(self, graph): graph.add_node(self) self._arg.graph_recursive(graph) graph.add_uniq_edge(self, self._arg) def is_slice(self, start=None, stop=None): if start is not None and self._start != start: return False if stop is not None and self._stop != stop: return False return True
Ancestors (in MRO)
Class variables
var arg
var start
var stop
Static methods
def get_object(
expr_cls, args)
Inheritance:
Expr.get_object
@staticmethod def get_object(expr_cls, args): if not expr_cls.use_singleton: return object.__new__(expr_cls, args) expr = Expr.args2expr.get((expr_cls, args)) if expr is None: expr = object.__new__(expr_cls, args) Expr.args2expr[(expr_cls, args)] = expr return expr
Instance variables
var arg
var start
var stop
Methods
def __init__(
self, arg, start, stop)
Instanciate an Expr with size @size @size: int
def __init__(self, arg, start, stop): # arg must be Expr assert isinstance(arg, Expr) assert isinstance(start, (int, long)) assert isinstance(stop, (int, long)) assert start < stop self._arg, self._start, self._stop = arg, start, stop super(ExprSlice, self).__init__(self._stop - self._start)
def canonize(
self)
Canonize the Expression
def canonize(self): "Canonize the Expression" def must_canon(expr): return not expr.is_canon def canonize_visitor(expr): if expr.is_canon: return expr if isinstance(expr, ExprOp): if expr.is_associative(): # ((a+b) + c) => (a + b + c) args = [] for arg in expr.args: if isinstance(arg, ExprOp) and expr.op == arg.op: args += arg.args else: args.append(arg) args = canonize_expr_list(args) new_e = ExprOp(expr.op, *args) else: new_e = expr else: new_e = expr new_e.is_canon = True return new_e return self.visit(canonize_visitor, must_canon)
def copy(
self)
Deep copy of the expression
def copy(self): return ExprSlice(self._arg.copy(), self._start, self._stop)
def depth(
self)
def depth(self): return self._arg.depth() + 1
def get_is_canon(
self)
Inheritance:
Expr.get_is_canon
def get_is_canon(self): return self in Expr.canon_exprs
def get_r(
self, mem_read=False, cst_read=False)
def get_r(self, mem_read=False, cst_read=False): return self._arg.get_r(mem_read, cst_read)
def get_size(
self)
def get_size(self): raise DeprecationWarning("use X.size instead of X.get_size()")
def get_w(
self)
def get_w(self): return self._arg.get_w()
def graph(
self)
Return a DiGraph instance standing for Expr tree Instance's display functions have been override for better visibility Wrapper on graph_recursive
def graph(self): """Return a DiGraph instance standing for Expr tree Instance's display functions have been override for better visibility Wrapper on graph_recursive""" # Create recursively the graph graph = DiGraphExpr() self.graph_recursive(graph) return graph
def graph_recursive(
self, graph)
Inheritance:
Expr.graph_recursive
Recursive method used by graph @graph: miasm2.core.graph.DiGraph instance Update @graph instance to include sons This is an Abstract method
def graph_recursive(self, graph): graph.add_node(self) self._arg.graph_recursive(graph) graph.add_uniq_edge(self, self._arg)
def is_function_call(
self)
Inheritance:
Expr.is_function_call
Returns true if the considered Expr is a function call
def is_function_call(self): """Returns true if the considered Expr is a function call """ return False
def is_id(
self, name=None)
def is_id(self, name=None): return False
def is_int(
self, value=None)
def is_int(self, value=None): return False
def is_loc(
self, label=None)
def is_loc(self, label=None): return False
def is_mem_segm(
self)
Inheritance:
Expr.is_mem_segm
Returns True if is ExprMem and ptr is_op_segm
def is_mem_segm(self): """Returns True if is ExprMem and ptr is_op_segm""" return False
def is_op(
self, op=None)
def is_op(self, op=None): return False
def is_op_segm(
self)
Inheritance:
Expr.is_op_segm
Returns True if is ExprOp and op == 'segm'
def is_op_segm(self): """Returns True if is ExprOp and op == 'segm'""" return False
def is_slice(
self, start=None, stop=None)
def is_slice(self, start=None, stop=None): if start is not None and self._start != start: return False if stop is not None and self._stop != stop: return False return True
def msb(
self)
Return the Most Significant Bit
def msb(self): "Return the Most Significant Bit" return self[self.size - 1:self.size]
def replace_expr(
self, dct=None)
Inheritance:
Expr.replace_expr
Find and replace sub expression using dct @dct: dictionary of Expr -> *
def replace_expr(self, dct=None): """Find and replace sub expression using dct @dct: dictionary of Expr -> * """ if dct is None: dct = {} def my_replace(expr, dct): if expr in dct: return dct[expr] return expr return self.visit(lambda expr: my_replace(expr, dct))
def set_is_canon(
self, value)
Inheritance:
Expr.set_is_canon
def set_is_canon(self, value): assert value is True Expr.canon_exprs.add(self)
def set_mask(
self, value)
def set_mask(self, value): raise ValueError('mask is not mutable')
def set_size(
self, _)
def set_size(self, _): raise ValueError('size is not mutable')
def signExtend(
self, size)
Inheritance:
Expr.signExtend
Sign extend to size @size: int
def signExtend(self, size): """Sign extend to size @size: int """ assert self.size <= size if self.size == size: return self return ExprOp('signExt_%d' % size, self)
def slice_rest(
self)
Return the completion of the current slice
def slice_rest(self): "Return the completion of the current slice" size = self._arg.size if self._start >= size or self._stop > size: raise ValueError('bad slice rest %s %s %s' % (size, self._start, self._stop)) if self._start == self._stop: return [(0, size)] rest = [] if self._start != 0: rest.append((0, self._start)) if self._stop < size: rest.append((self._stop, size)) return rest
def visit(
expr, callback, test_visit=<function <lambda> at 0x7f19b2452140>)
def wrapped(expr, callback, test_visit=lambda x: True): if (test_visit is not None) and (not test_visit(expr)): return expr expr_new = visitor(expr, callback, test_visit) if expr_new is None: return None expr_new2 = callback(expr_new) return expr_new2
def zeroExtend(
self, size)
Inheritance:
Expr.zeroExtend
Zero extend to size @size: int
def zeroExtend(self, size): """Zero extend to size @size: int """ assert self.size <= size if self.size == size: return self return ExprOp('zeroExt_%d' % size, self)
class LocKey
class LocKey(object): def __init__(self, key): self._key = key key = property(lambda self: self._key) def __hash__(self): return hash(self._key) def __eq__(self, other): if self is other: return True if self.__class__ is not other.__class__: return False return self.key == other.key def __ne__(self, other): return not self.__eq__(other) def __repr__(self): return "<%s %d>" % (self.__class__.__name__, self._key) def __str__(self): return "loc_key_%d" % self.key
Ancestors (in MRO)
- LocKey
- __builtin__.object
Class variables
var key
Instance variables
var key
Methods
def __init__(
self, key)
def __init__(self, key): self._key = key