sync rootfs

Author: xwings

examples/rootfs

@@ -4,17 +4,44 @@
 #
 
 import os
+
+from typing import Callable
 from unicorn import UcError
 
 from qiling.os.posix.posix import QlOsPosix
 from qiling.os.qnx.const import NTO_SIDE_CHANNEL, SYSMGR_PID, SYSMGR_CHID, SYSMGR_COID
 from qiling.os.qnx.helpers import QnxConn
 from qiling.os.qnx.structs import _thread_local_storage
-from qiling.const import QL_ARCH
+from qiling.cc import QlCC, intel, arm, mips, riscv
+from qiling.const import QL_ARCH, QL_INTERCEPT
+from qiling.os.fcall import QlFunctionCall
+from qiling.os.const import *
+from qiling.os.posix.const import NR_OPEN
+from qiling.os.posix.posix import QlOsPosix
 
 class QlOsQnx(QlOsPosix):
     def __init__(self, ql):
         super(QlOsQnx, self).__init__(ql)
+
+        self.ql = ql
+
+        cc: QlCC = {
+            QL_ARCH.X86   : intel.cdecl,
+            QL_ARCH.X8664 : intel.amd64,
+            QL_ARCH.ARM   : arm.aarch32,
+            QL_ARCH.ARM64 : arm.aarch64,
+            QL_ARCH.MIPS  : mips.mipso32,
+            QL_ARCH.RISCV : riscv.riscv,
+            QL_ARCH.RISCV64: riscv.riscv,
+        }[ql.archtype](ql)
+
+        self.fcall = QlFunctionCall(ql, cc)
+
+        self.thread_class = None
+        self.futexm = None
+        self.fh = None
+        self.function_after_load_list = []
+        self.elf_mem_start = 0x0
         self.load()
 
         # use counters to get free Ids
@@ -44,6 +71,20 @@ def hook_syscall(self, intno= None, int = None):
         return self.load_syscall()
 
 
+    def add_function_hook(self, fn: str, cb: Callable, intercept: QL_INTERCEPT):
+        self.ql.os.function_hook.add_function_hook(fn, cb, intercept)
+
+
+    def register_function_after_load(self, function):
+        if function not in self.function_after_load_list:
+            self.function_after_load_list.append(function)
+
+
+    def run_function_after_load(self):
+        for f in self.function_after_load_list:
+            f()
+
+
     def hook_sigtrap(self, intno= None, int = None):
         self.ql.log.info("Trap Found")
         self.emu_error()
@@ -90,6 +131,7 @@ def run(self):
             else:
                 if self.ql.loader.elf_entry != self.ql.loader.entry_point:
                     self.ql.emu_start(self.ql.loader.entry_point, self.ql.loader.elf_entry, self.ql.timeout)
+                    self.run_function_after_load()
                     self.ql.enable_lib_patch()
 
                 self.ql.emu_start(self.ql.loader.elf_entry, self.exit_point, self.ql.timeout, self.ql.count)

qiling/os/qnx/qnx.py

@@ -11,16 +11,26 @@
 from qiling.const import QL_VERBOSE
 
 class QNXTest(unittest.TestCase):
-    def test_arm_qnx_static(self):
-        env = {
-            "FOO": "bar"
-        }
-        ql = Qiling(["../examples/rootfs/arm_qnx/bin/hello_static", "foo", "bar"], "../examples/rootfs/arm_qnx", env=env, verbose=QL_VERBOSE.DEBUG)
-        ql.run()
+    # def test_arm_qnx_static(self):
+    #     env = {
+    #         "FOO": "bar"
+    #     }
+    #     ql = Qiling(["../examples/rootfs/arm_qnx/bin/hello_static", "foo", "bar"], "../examples/rootfs/arm_qnx", env=env, verbose=QL_VERBOSE.DEBUG)
+    #     ql.run()
+
+    # def test_arm_qnx_sqrt(self):
+    #     ql = Qiling(["../examples/rootfs/arm_qnx/bin/hello_sqrt"], "../examples/rootfs/arm_qnx", verbose=QL_VERBOSE.DEBUG)
+    #     ql.run()
+    
+    def test_set_api_arm_qnx_sqrt(self):
+        def my_msg_sendv(ql: Qiling):
+            # params = ql.os.resolve_fcall_params({'s': STRING})
+            # print(f'puts("{params["s"]}")')
+            print("Set API_DONE")
 
-    def test_arm_qnx_sqrt(self):
         ql = Qiling(["../examples/rootfs/arm_qnx/bin/hello_sqrt"], "../examples/rootfs/arm_qnx", verbose=QL_VERBOSE.DEBUG)
-        ql.run()        
+        ql.set_api('msg_sendv', my_msg_sendv)
+        ql.run()
 
 if __name__ == "__main__":
     unittest.main()