/***************************************************Project Mutator****************************************************/ //-*-c++-*- /*first line intentionally left blank.*/ /*the header for bruiser's main.*/ /*Copyright (C) 2017 Farzad Sadeghi This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 3 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.*/ /*code structure inspired by Eli Bendersky's tutorial on Rewriters.*/ /**********************************************************************************************************************/ /*inclusion guard*/ #ifndef BRUISER_H #define BRUISER_H /**********************************************************************************************************************/ /*included modules*/ /*project headers*/ #include "../tinyxml2/tinyxml2.h" /*standard library headers*/ #include #include /*clang headers*/ #include "clang/AST/ASTContext.h" #include "clang/AST/Expr.h" #include "clang/AST/Type.h" #include "clang/AST/ASTTypeTraits.h" /*llvm headers*/ /**********************************************************************************************************************/ /*using*/ using namespace tinyxml2; using namespace llvm; using namespace clang; /**********************************************************************************************************************/ namespace bruiser { //start of namespace bruiser /**********************************************************************************************************************/ const char* M0REP = "../test/misrareport.xml"; /**********************************************************************************************************************/ #define JOIN2(x1, x2) x1##x2 #define JOIN3(x1, x2, x3) x1##x2##x3 #define PTR_NVA(x1, x2) x1(*)(x2) #define PTR_VA(x1, x2) x1(*)(x2, ...) #define RED "\033[1;31m" #define CYAN "\033[1;36m" #define GREEN "\033[1;32m" #define BLUE "\033[1;34m" #define BLACK "\033[1;30m" #define BROWN "\033[1;33m" #define MAGENTA "\033[1;35m" #define GRAY "\033[1;37m" #define DARKGRAY "\033[1;30m" #define YELLOW "\033[1;33m" #define NORMAL "\033[0m" #define CLEAR "\033[2J" #define LN_RED 31 #define LN_GREEN 32 #define LN_YELLOW 33 #define LN_BLUE 34 #define LN_MAGENTA 35 #define LN_CYAN 36 #define LN_WHITE 37 #define BOLD 1 #define NO_BOLD 0 #define SHELL_HISTORY_SIZE 10000 #define SHELL_HISTORY_FILE "bruiser-history.txt" #define GLOBAL_TIME_OUT 100000 #define NOT_IMPLEMENTED \ do{\ printf(BROWN "not implemented yet.");\ printf(NORMAL"\n");\ }while(0) #define PRINT_WITH_COLOR(X,Y) \ do{\ printf(X Y NORMAL);\ }while(0) #define PRINT_WITH_COLOR_LB(X,Y) \ do{\ printf(X "%s", Y);\ printf(NORMAL"\n");\ }while(0) /**********************************************************************************************************************/ /*Error Codes*/ #define M0_ERROR_CODES \ X(BAD_M0_XML, "bad m0 xml.", 100) \ X(CANT_OPEN_M0_XML, "could not open m0 xml.", 101) \ #define X(__x1, __x2, __x3) __x1, enum class M0_ERR {M0_ERROR_CODES}; #undef X /**********************************************************************************************************************/ /*Enums*/ /**********************************************************************************************************************/ struct help { public: std::string name; std::string proto; std::string descr; std::string protoprefix; std::string retval; }; help CMDHelp[] = { {"help()", "help()", "display general help", "none", "none"}, {"quit()", "quit()", "quit bruiser", "none", "none"}, {"exit()", "exit()", "quit bruiser", "none", "none"}, {"m0()", "m0()", "bruiser reads the report generated by mutator-lvl0", "", ""}, {"readxmlfile()", "readxmlfile(\"myxml.xml\")", "bruiser reads the specified xml file, if no argument is provided bruiser tries to read the m0 report at the default location", "", "tinyxml2::XMLError"}, {"hijackmain()", "hijackmain()", "runs a specific matcher that replaces the main with a new main", "none", "returns the rewritten source code as a string"}, {"clear()", "clear()", "clears the terminal", "", "none"}, {"history()", "", "prints bruiser's history", "", "none"}, {"!", "", "prints the command from history", "", "none"}, {"Vars()", "", "lists all available variable declarations", "none", "returns a string array of the variable declarations"}, {"Funcs()", "", "lists all available function declarations", "none", "returns a string array of the function declarations"}, {"Classess()", "", "lists all available class declarations", "none", "returns a string array of the class declarations"}, {"Structs()", "", "lists all available struct declarations", "none", "returns a string array of the structure declarations"}, {"Arrays()", "", "lists all available array declarations", "none", "returns a string array of the array declarations"}, {"Unions()", "", "lists all available union declarations", "none", "returns a string array of the union declarations"}, {"make()", "make(\"all\")", "runs your make command", "", ""}, {"historysize()", "historysize(200)", "sets the history size", "[uint history_size]", "none"}, {"showsource()", "showsource(1,5,\"test.cpp\")", "shows the source code for the given range and filename", "[uint beginline, uint endline, string filename]", "returns a string array of the returned source file"}, {"extractmutagen()", "extractmutagen(\"test.cpp\")", "runs m0 on the source(s)", "[string]", "pid"}, {"strainrecognition()", "", "", "", ""}, {"setmakepath()", "setmakepath(\"../../myproject\")", "tells bruiser where to execute the make command run from make()", "string", "none"}, {"run()", "run(\"myexecutable\")", "runs the mutant", "string", "return value"}, {"setbinpath()", "setbinpath(\"bin_path\")", "sets the binary path for mutant executable", "string", "none"}, {"getbinpath()", "getbinpath()", "gets the binary path for mutant executable", "none", "string"}, {"getmakepath()", "getmakepath()", "gets the make path for mutant executable", "none", "string"}, {"getpaths()", "getpaths()", "gets the currently loaded paths that bruiser looks through", "none", "array of strings"}, {"getsourcefiles()", "getsourcefiles()", "gets the currently loaded source files that bruiser will look through", "none", "array of strings"}, {"changedirectory()", "changedirectory()", "changes bruiser's working directory. only use it when you know what you are doing.", "destination directory, [string]", "return value"}, {"pwd()", "pwd()", "pwd", "", ""}, {"objload()", "objload(\"main\", \"../bfd/test/test.so\")", "load the compiled functions into bruiser", "string", "success or failure"}, {"listObjects()", "listObjects(\"function\")", "lists the loaded objects of the given type", "string", "success or failure"}, {"xobjwrapper()", "xobjwrapper(\"function\")", "call an xobject", "", "success or failure"}, {"xobjregister", "xobjregister(code_table, registration_name)", "registers an xobject as a callable function from lua", "", "pointer to the function"}, {"xcall", "xcall(index, num_args)", "call xobj with the given index in to the xobj vector with the given number of args", "", "returns the xobj call result"}, {"xobjlist", "xobjlist()", "return a table containing xobj pointers and names. names are keys, values are the pointers.", "", "table of pairs"}, {"xallocglobal", "xallocglobal(index)", "allocate a global value with index index", "", ""}, {"xallocallglobals", "xallocallglobals()", "allocate all globals", "", ""}, {"getjmptable", "getjmptable(size, code)", "get a table of all jumps", "", "returns a pointer to the head of the jump table linked-list as lightuserdata"}, {"freejmptable", "freejmptable(head)", "free the jmp table linked-list", "", "nothing"}, {"dumpjmptable", "dumpjmptable(head)", "dumps the jmp table linked-list", "", "nothing"}, {"ramdump", "ramdump(pid)", "dumps the ram", "", "ram contents"} }; /**********************************************************************************************************************/ /** * @brief This class handles the logging for bruiser. */ class BruiserReport { public: BruiserReport (); ~BruiserReport(); template bool PrintToLog(T __arg); private: std::ofstream BruiserLog; }; /**********************************************************************************************************************/ /** * @brief looks through types. */ class TypeInfo { public: explicit TypeInfo(const clang::ast_type_traits::DynTypedNode* __dtn); ~TypeInfo(); const clang::Type* getTypeInfo(clang::ASTContext* __astc); private: const clang::ast_type_traits::DynTypedNode* DTN; }; /**********************************************************************************************************************/ class ReadM0 { public: /*default ctor*/ ReadM0() { try { XMLError eResult [[maybe_unused]] = IntermediateXMLDoc.LoadFile(M0REP); RootPointer = IntermediateXMLDoc.FirstChild(); } catch (std::exception& e) { } } /*asks for the xml report you want to read*/ ReadM0(const char* __xml_report_file) { try { XMLError eResult [[maybe_unused]] = IntermediateXMLDoc.LoadFile(__xml_report_file); RootPointer = IntermediateXMLDoc.FirstChild(); } catch (std::exception& e) { } } ~ReadM0() {} XMLError LoadXMLDoc(void) { XMLError eResult = IntermediateXMLDoc.LoadFile(M0REP); return eResult; } XMLError ReadFirstElement(void) { RootPointer = IntermediateXMLDoc.FirstChild(); if (RootPointer == nullptr) { return XML_ERROR_FILE_READ_ERROR; } else { return XML_SUCCESS; } } XMLNode* getRootPointer(void) { return RootPointer; } private: void Debug(void) { } XMLDocument IntermediateXMLDoc; XMLNode* RootPointer; }; /**********************************************************************************************************************/ class SearchM0 { public: SearchM0(XMLNode* __rptr) : RootPointer(__rptr) {} ~SearchM0() {}; void Debug(void) { if (!RootPointer->NoChildren()) { const XMLElement* XMLE [[maybe_unused]] = RootPointer->FirstChildElement(); } } private: XMLNode* RootPointer; }; /**********************************************************************************************************************/ class Daemonize { public: Daemonize (std::string __exe, std::string __opts) : Exe(__exe), Opts(__opts) {} private: std::string Exe; std::string Opts; }; /**********************************************************************************************************************/ /*structs to hold load.py's return values*/ /*@DEVI-at some point in the future i might revert to using libbfd or libelf.*/ /*elf*/ #define ELF_EI_MAGIC = 0x000000000000ffff; #define ELF_EI_CLASS = 0x00000000000f0000; #define ELF_EI_DATA = 0x0000000000f00000; #define ELF_EI_VERSION = 0x000000000f000000; #define ELF_EI_OSABI = 0x00000000f0000000; #define ELF_EI_ABIVERSION = 0x0000000f00000000; #define ELF_EI_PAD = 0xfffffff000000000; // @DEVI-FIXME-using uint128 here // fails to build on stock ubuntu 16.04 # if 0 struct ELFHDR_64 { public: ELFHDR_64() = default; ELFHDR_64(__uint128_t _ident, uint16_t _type, uint16_t _machine, uint32_t _version, uint64_t _entry, uint64_t _phoff, uint64_t _shoff, uint32_t _flags, uint16_t _ehsize, uint16_t _phentsize, uint16_t _phnum, uint16_t _shentsize, uint16_t _shnum, uint16_t _shstrndx) { e_ident = _ident; e_type = _type; e_machine = _machine; e_version = _version; e_entry = _entry; e_phoff = _phoff; e_shoff = _shoff; e_flags = _flags; e_ehsize = _ehsize; e_phentsize = _phentsize; e_phnum = _phnum; e_shentsize = _shentsize; e_shnum = _shnum; e_shstrndx = _shstrndx; } __uint128_t e_ident; uint16_t e_type; uint16_t e_machine; uint32_t e_version; uint64_t e_entry; uint64_t e_phoff; uint64_t e_shoff; uint32_t e_flags; uint16_t e_ehsize; uint16_t e_phentsize; uint16_t e_phnum; uint16_t e_shentsize; uint16_t e_shnum; uint16_t e_shstrndx; }; // @DEVI-FIXME-using uint128 here struct ELFHDR_32 { public: ELFHDR_32() = default; ELFHDR_32(__uint128_t _ident, uint16_t _type, uint16_t _machine, uint32_t _version, uint32_t _entry, uint32_t _phoff, uint32_t _shoff, uint32_t _flags, uint16_t _ehsize, uint16_t _phentsize, uint16_t _phnum, uint16_t _shentsize, uint16_t _shnum, uint16_t _shstrndx) { e_ident = _ident; e_type = _type; e_machine = _machine; e_version = _version; e_entry = _entry; e_phoff = _phoff; e_shoff = _shoff; e_flags = _flags; e_ehsize = _ehsize; e_phentsize = _phentsize; e_phnum = _phnum; e_shentsize = _shentsize; e_shnum = _shnum; e_shstrndx = _shstrndx; } __uint128_t e_ident; uint16_t e_type; uint16_t e_machine; uint32_t e_version; uint32_t e_entry; uint32_t e_phoff; uint32_t e_shoff; uint32_t e_flags; uint16_t e_ehsize; uint16_t e_phentsize; uint16_t e_phnum; uint16_t e_shentsize; uint16_t e_shnum; uint16_t e_shstrndx; }; #endif /*program header*/ struct PHDR_64 { public: PHDR_64() = default; PHDR_64(uint32_t _type, uint32_t _flags, uint64_t _offset, uint64_t _vaddr, uint64_t _paddr, uint64_t _filesz, uint64_t _memsz, uint64_t _align) { p_type = _type; p_flags = _flags; p_offset = _offset; p_vaddr = _vaddr; p_paddr = _paddr; p_filesz = _filesz; p_memsz = _memsz; p_align = _align; } uint32_t p_type; uint32_t p_flags; uint64_t p_offset; uint64_t p_vaddr; uint64_t p_paddr; uint64_t p_filesz; uint64_t p_memsz; uint64_t p_align; }; struct PHDR_32 { public: PHDR_32() = default; PHDR_32(uint32_t _type, uint32_t _offset, uint32_t _vaddr, uint32_t _paddr, uint32_t _filesz, uint32_t _memsz, uint32_t _flags, uint32_t _align) { p_type = _type; p_flags = _flags; p_offset = _offset; p_vaddr = _vaddr; p_paddr = _paddr; p_filesz = _filesz; p_memsz = _memsz; p_align = _align; }; uint32_t p_type; uint32_t p_offset; uint32_t p_vaddr; uint32_t p_paddr; uint32_t p_filesz; uint32_t p_memsz; uint32_t p_flags; uint32_t p_align; }; /*section header*/ struct SHDR_64 { public: SHDR_64() = default; SHDR_64(uint32_t _name, uint32_t _type, uint64_t _flags, uint64_t _addr, uint64_t _offset, uint64_t _size, uint32_t _link, uint32_t _info, uint64_t _addralign, uint64_t _entsize) { sh_name = _name; sh_type = _type; sh_flags = _flags; sh_addr = _addr; sh_offset = _offset; sh_size = _size; sh_link = _link; sh_info = _info; sh_addralign = _addralign; sh_entsize = _entsize; }; uint32_t sh_name; uint32_t sh_type; uint64_t sh_flags; uint64_t sh_addr; uint64_t sh_offset; uint64_t sh_size; uint32_t sh_link; uint32_t sh_info; uint64_t sh_addralign; uint64_t sh_entsize; }; struct SHDR_32 { public: SHDR_32() = default; SHDR_32(uint32_t _name, uint32_t _type, uint32_t _flags, uint32_t _addr, uint32_t _offset, uint32_t _size, uint32_t _link, uint32_t _info, uint32_t _addralign, uint32_t _entsize) { sh_name = _name; sh_type = _type; sh_flags = _flags; sh_addr = _addr; sh_offset = _offset; sh_size = _size; sh_link = _link; sh_info = _info; sh_addralign = _addralign; sh_entsize = _entsize; }; uint32_t sh_name; uint32_t sh_type; uint32_t sh_flags; uint32_t sh_addr; uint32_t sh_offset; uint32_t sh_size; uint32_t sh_link; uint32_t sh_info; uint32_t sh_addralign; uint32_t sh_entsize; }; /*symbol table entry*/ struct ST_Entry_64 {}; struct ST_Entry_32 {}; /**********************************************************************************************************************/ } // end of namespace bruiser #endif /*last line intentionally left balnk.*/