File: wrong_rip.py

package info (click to toggle)
unicorn-engine 2.1.4-3
  • links: PTS, VCS
  • area: main
  • in suites: forky, sid
  • size: 23,912 kB
  • sloc: ansic: 379,830; python: 9,213; sh: 9,011; java: 8,609; ruby: 4,241; pascal: 1,805; haskell: 1,379; xml: 490; cs: 424; makefile: 348; cpp: 298; asm: 64
file content (69 lines) | stat: -rwxr-xr-x 2,491 bytes parent folder | download 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
 
import regress
from unicorn import *
from unicorn.x86_const import *

binary1 = b'\xb8\x02\x00\x00\x00'  # mov eax, 2
binary2 = b'\xb8\x01\x00\x00\x00'  # mov eax, 1


class WrongRIP(regress.RegressTest):

    def test_step(self):
        mu = Uc(UC_ARCH_X86, UC_MODE_64)
        mu.mem_map(0, 2 * 1024 * 1024)
        # write machine code to be emulated to memory
        mu.mem_write(0, binary1 + binary2)
        # emu for maximum 1 instruction.
        mu.emu_start(0, 5, 0, 1)

        self.assertEqual(0x2, mu.reg_read(UC_X86_REG_RAX))
        self.assertEqual(0x5, mu.reg_read(UC_X86_REG_RIP))

        mu.emu_start(5, 10, 0, 1)
        self.assertEqual(0xa, mu.reg_read(UC_X86_REG_RIP))
        self.assertEqual(0x1, mu.reg_read(UC_X86_REG_RAX))

    def test_step2(self):
        mu = Uc(UC_ARCH_X86, UC_MODE_64)
        mu.mem_map(0, 2 * 1024 * 1024)
        # write machine code to be emulated to memory
        mu.mem_write(0, binary1 + binary2)
        # emu for maximum 1 instruction.
        mu.emu_start(0, 10, 0, 1)
        self.assertEqual(0x2, mu.reg_read(UC_X86_REG_RAX))
        self.assertEqual(0x5, mu.reg_read(UC_X86_REG_RIP))

        mu.emu_start(5, 10, 0, 1)
        self.assertEqual(0x1, mu.reg_read(UC_X86_REG_RAX))
        self.assertEqual(0xa, mu.reg_read(UC_X86_REG_RIP))

    def test_step3(self):
        bin3 = b'\x40\x01\xc1\x31\xf6'  # inc eax; add ecx, eax; xor esi, esi
        mu = Uc(UC_ARCH_X86, UC_MODE_32)
        mu.mem_map(0, 2 * 1024 * 1024)
        # write machine code to be emulated to memory
        mu.mem_write(0, bin3)
        # emu for maximum 1 instruction.
        mu.emu_start(0, 10, 0, 1)
        self.assertEqual(0x1, mu.reg_read(UC_X86_REG_EAX))
        self.assertEqual(0x1, mu.reg_read(UC_X86_REG_EIP))

    def test_step_then_fin(self):
        bin4 = b'\x40\x01\xc1\x31\xf6\x90\x90\x90'  # inc eax; add ecx, eax; xor esi, esi
        mu = Uc(UC_ARCH_X86, UC_MODE_32)
        mu.mem_map(0, 2 * 1024 * 1024)
        # write machine code to be emulated to memory
        mu.mem_write(0, bin4)
        # emu for maximum 1 instruction.
        mu.emu_start(0, len(binary1), 0, 1)

        self.assertEqual(0x1, mu.reg_read(UC_X86_REG_EAX))
        self.assertEqual(0x1, mu.reg_read(UC_X86_REG_EIP))
        # emu to the end
        mu.emu_start(1, len(bin4))
        self.assertEqual(0x1, mu.reg_read(UC_X86_REG_EAX))
        self.assertEqual(len(bin4), mu.reg_read(UC_X86_REG_EIP))


if __name__ == '__main__':
    regress.main()