我的书签
添加书签
移除书签Python plugins
For this you need to do this:
import r2langandfrom r2lang import R(for constants)- Make a function with 2 subfunctions -
assembleanddisassembleand returning plugin structure - for RAsm plugin
- This structure should contain a pointers to these 2 functions -
assembleanddisassemble
return {"name" : "mycpu","arch" : "mycpu","bits" : 32,"endian" : R.R_SYS_ENDIAN_LITTLE,"license" : "GPL","desc" : "MYCPU disasm","assemble" : assemble,"disassemble" : disassemble,}
- Make a function with 2 subfunctions -
set_reg_profileandopand returning plugin structure - for RAnal plugin
def mycpu_anal(a):def set_reg_profile():profile = "=PC pc\n" + \"=SP sp\n" + \"gpr r0 .32 0 0\n" + \"gpr r1 .32 4 0\n" + \"gpr r2 .32 8 0\n" + \"gpr r3 .32 12 0\n" + \"gpr r4 .32 16 0\n" + \"gpr r5 .32 20 0\n" + \"gpr sp .32 24 0\n" + \"gpr pc .32 28 0\n"return profiledef op(memview, pc):analop = {"type" : R.R_ANAL_OP_TYPE_NULL,"cycles" : 0,"stackop" : 0,"stackptr" : 0,"addr" : 0,"eob" : False,"esil" : "",}try:opcode = get_opcode(memview) # https://docs.python.org/3/library/stdtypes.html#memoryviewesilstr = optbl[opcode][2]if optbl[opcode][0] == "J": # it's jumpanalop["type"] = R.R_ANAL_OP_TYPE_JMPanalop["jump"] = decode_jump(opcode, j_mask)esilstr = jump_esil(esilstr, opcode, j_mask)except:result = analop# Don't forget to return proper instruction size!return [4, result]
- This structure should contain a pointers to these 2 functions -
set_reg_profileandop
- Then register those using
r2lang.plugin("asm")andr2lang.plugin("anal")respectively
print("Registering MYCPU disasm plugin...")print(r2lang.plugin("asm", mycpu))print("Registering MYCPU analysis plugin...")print(r2lang.plugin("anal", mycpu_anal))
You can combine everything in one file and load it using -i option:
r2 -I mycpu.py some_file.bin
See also:
Note - in the following examples there are missing functions of the actual decoding for the sake of readability!
import r2langMake a function with subfunctions:
loadload_bytesdestroycheck_bytesbaddrentriessectionsrelocsbinsyminfo
and so on. Please be sure of the parameters for each function and format of returns. Note, that functions , sections, imports, relocs returns a list of special formed dictionaries - each with a different type. Other functions return just a list of numerical values, even if single element one. There is a special function, which returns information about the file - info:
def info(binf):return [{"type" : "le","bclass" : "le","rclass" : "le","os" : "OS/2","subsystem" : "CLI","machine" : "IBM","arch" : "x86","has_va" : 0,"bits" : 32,"big_endian" : 0,"dbg_info" : 0,}]
- This structure should contain a pointers to the most important functions like
check_bytes,loadandload_bytes,entries,relocs,imports.
return {"name" : "le","desc" : "OS/2 LE/LX format","license" : "GPL","load" : load,"load_bytes" : load_bytes,"destroy" : destroy,"check_bytes" : check_bytes,"baddr" : baddr,"entries" : entries,"sections" : sections,"imports" : imports,"symbols" : symbols,"relocs" : relocs,"binsym" : binsym,}
