[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Qemu-devel] [PATCH 2 11/39] windbg: add windbg_search_vmaddr
|
From: |
Mikhail Abakumov |
|
Subject: |
[Qemu-devel] [PATCH 2 11/39] windbg: add windbg_search_vmaddr |
|
Date: |
Wed, 05 Dec 2018 15:53:05 +0300 |
|
User-agent: |
StGit/0.17.1-dirty |
Add function to search in virtual memory.
Implemented Boyer-Moore search algorithm.
Signed-off-by: Mikhail Abakumov <address@hidden>
Signed-off-by: Pavel Dovgalyuk <address@hidden>
---
include/exec/windbgstub-utils.h | 4 +
windbgstub-utils.c | 120 +++++++++++++++++++++++++++++++++++++++
2 files changed, 124 insertions(+)
diff --git a/include/exec/windbgstub-utils.h b/include/exec/windbgstub-utils.h
index e076227b39..2760684cfb 100644
--- a/include/exec/windbgstub-utils.h
+++ b/include/exec/windbgstub-utils.h
@@ -59,4 +59,8 @@ const char *kd_pkt_type_name(int id);
bool windbg_on_load(void);
void windbg_on_reset(void);
+InitedAddr windbg_search_vmaddr(CPUState *cs, target_ulong start,
+ target_ulong finish, const uint8_t *pattern,
+ int pLen);
+
#endif /* WINDBGSTUB_UTILS_H */
diff --git a/windbgstub-utils.c b/windbgstub-utils.c
index 968e5cb2dd..6d2bb33307 100644
--- a/windbgstub-utils.c
+++ b/windbgstub-utils.c
@@ -80,6 +80,126 @@ static const char *kd_packet_type_names[] = {
"PACKET_TYPE_MAX",
};
+static void prep_bmbc(const uint8_t *pattern, int pLen, int bmBc[])
+{
+ int i;
+
+ for (i = 0; i < 256; ++i) {
+ bmBc[i] = pLen;
+ }
+ for (i = 0; i < pLen - 1; ++i) {
+ bmBc[pattern[i]] = pLen - i - 1;
+ }
+}
+
+static void prep_suffixes(const uint8_t *pattern, int pLen, int *suff)
+{
+ int f, g, i;
+
+ suff[pLen - 1] = pLen;
+ f = 0;
+ g = pLen - 1;
+ for (i = pLen - 2; i >= 0; --i) {
+ if (i > g && suff[i + pLen - 1 - f] < i - g) {
+ suff[i] = suff[i + pLen - 1 - f];
+ } else {
+ if (i < g) {
+ g = i;
+ }
+ f = i;
+ while (g >= 0 && pattern[g] == pattern[g + pLen - 1 - f]) {
+ --g;
+ }
+ suff[i] = f - g;
+ }
+ }
+}
+
+static void prep_bmgs(const uint8_t *pattern, int pLen, int bmGs[])
+{
+ int i, j, suff[pLen];
+
+ prep_suffixes(pattern, pLen, suff);
+
+ for (i = 0; i < pLen; ++i) {
+ bmGs[i] = pLen;
+ }
+
+ j = 0;
+ for (i = pLen - 1; i >= 0; --i) {
+ if (suff[i] == i + 1) {
+ for (; j < pLen - 1 - i; ++j) {
+ if (bmGs[j] == pLen) {
+ bmGs[j] = pLen - 1 - i;
+ }
+ }
+ }
+ }
+
+ for (i = 0; i <= pLen - 2; ++i) {
+ bmGs[pLen - 1 - suff[i]] = pLen - 1 - i;
+ }
+}
+
+static int search_boyermoore(const uint8_t *data, int dLen,
+ const uint8_t *pattern, int pLen, int bmGs[],
+ int bmBc[])
+{
+ int i;
+ int j = 0;
+ while (j <= dLen - pLen) {
+ i = pLen - 1;
+ while (i >= 0 && pattern[i] == data[i + j]) {
+ --i;
+ }
+ if (i < 0) {
+ return j;
+ } else {
+ j += MAX(bmGs[i], bmBc[data[i + j]] - pLen + 1 + i);
+ }
+ }
+ return -1;
+}
+
+InitedAddr windbg_search_vmaddr(CPUState *cs, target_ulong start,
+ target_ulong finish, const uint8_t *pattern,
+ int pLen)
+{
+ InitedAddr ret = {
+ addr = 0;
+ is_init = false;
+ };
+ int bmGs[pLen], bmBc[256];
+ int find;
+ target_ulong offset = start;
+ target_ulong step = MIN(MAX(finish - start, 0x10000), pLen * 2);
+
+ if (finish <= start || pLen > finish - start) {
+ return ret;
+ }
+
+ uint8_t *buf = g_new(uint8_t, step);
+
+ prep_bmgs(pattern, pLen, bmGs);
+ prep_bmbc(pattern, pLen, bmBc);
+
+ while (offset < finish) {
+ step = MIN(step, finish - offset);
+ if (cpu_memory_rw_debug(cs, offset, buf, step, 0) == 0) {
+ find = search_boyermoore(buf, step, pattern, pLen, bmGs, bmBc);
+ if (find >= 0) {
+ ret.addr = offset + find;
+ ret.is_init = true;
+ break;
+ }
+ }
+ offset += step - pLen;
+ }
+
+ g_free(buf);
+ return ret;
+}
+
const char *kd_api_name(int id)
{
return (id >= DbgKdMinimumManipulate && id < DbgKdMaximumManipulate)
- [Qemu-devel] [PATCH 2 01/39] windbg: add empty windbgstub files, (continued)
- [Qemu-devel] [PATCH 2 01/39] windbg: add empty windbgstub files, Mikhail Abakumov, 2018/12/05
- [Qemu-devel] [PATCH 2 02/39] windbg: add windbg's KD header file, Mikhail Abakumov, 2018/12/05
- [Qemu-devel] [PATCH 2 03/39] windbg: add -windbg option, Mikhail Abakumov, 2018/12/05
- [Qemu-devel] [PATCH 2 04/39] windbg: add helper features, Mikhail Abakumov, 2018/12/05
- [Qemu-devel] [PATCH 2 05/39] windbg: add WindbgState, Mikhail Abakumov, 2018/12/05
- [Qemu-devel] [PATCH 2 06/39] windbg: add chardev, Mikhail Abakumov, 2018/12/05
- [Qemu-devel] [PATCH 2 08/39] windbg: implement windbg_on_load, Mikhail Abakumov, 2018/12/05
- [Qemu-devel] [PATCH 2 07/39] windbg: hook to wrmsr operation, Mikhail Abakumov, 2018/12/05
- [Qemu-devel] [PATCH 2 09/39] windbg: implement find_KPCR, Mikhail Abakumov, 2018/12/05
- [Qemu-devel] [PATCH 2 10/39] windbg: implement find_kdVersion, Mikhail Abakumov, 2018/12/05
- [Qemu-devel] [PATCH 2 11/39] windbg: add windbg_search_vmaddr,
Mikhail Abakumov <=
- [Qemu-devel] [PATCH 2 12/39] windbg: implement find_kdDebuggerDataBlock, Mikhail Abakumov, 2018/12/05
- [Qemu-devel] [PATCH 2 13/39] windbg: parsing data stream, Mikhail Abakumov, 2018/12/05
- [Qemu-devel] [PATCH 2 14/39] windbg: send data and control packets, Mikhail Abakumov, 2018/12/05
- [Qemu-devel] [PATCH 2 15/39] windbg: handler of parsing context, Mikhail Abakumov, 2018/12/05
- [Qemu-devel] [PATCH 2 16/39] windbg: init DBGKD_ANY_WAIT_STATE_CHANGE, Mikhail Abakumov, 2018/12/05
- [Qemu-devel] [PATCH 2 17/39] windbg: generate ExceptionStateChange and LoadSymbolsStateChange, Mikhail Abakumov, 2018/12/05
- [Qemu-devel] [PATCH 2 18/39] windbg: implement windbg_process_control_packet, Mikhail Abakumov, 2018/12/05
- [Qemu-devel] [PATCH 2 19/39] windbg: implement windbg_process_data_packet, Mikhail Abakumov, 2018/12/05
- [Qemu-devel] [PATCH 2 21/39] windbg: implement kd_api_read_virtual_memory and kd_api_write_virtual_memory, Mikhail Abakumov, 2018/12/05
- [Qemu-devel] [PATCH 2 20/39] windbg: implement windbg_process_manipulate_packet, Mikhail Abakumov, 2018/12/05