REL: add facility to compare cfg info

Author: sipma

chb/app/AppAccess.py

@@ -6,7 +6,7 @@
 #
 # Copyright (c) 2016-2020 Kestrel Technology LLC
 # Copyright (c) 2020-2021 Henny Sipma
-# Copyright (c) 2021-2023 Aarno Labs LLC
+# Copyright (c) 2021-2024 Aarno Labs LLC
 #
 # Permission is hereby granted, free of charge, to any person obtaining a copy
 # of this software and associated documentation files (the "Software"), to deal
@@ -49,6 +49,7 @@
 from chb.api.CallTarget import CallTarget, IndirectTarget, CallbackTableTarget
 from chb.api.InterfaceDictionary import InterfaceDictionary
 
+from chb.app.AppCfgInfo import AppCfgInfo
 from chb.app.AppResultData import AppResultData
 from chb.app.AppResultMetrics import AppResultMetrics
 from chb.app.BDictionary import BDictionary
@@ -110,6 +111,7 @@ def __init__(
 
         # functions
         self._appresultdata: Optional[AppResultData] = None
+        self._appcfginfo: Optional[AppCfgInfo] = None
         self._functioninfos: Dict[str, FunctionInfo] = {}
 
         # callgraph
@@ -256,6 +258,13 @@ def appresultdata(self) -> AppResultData:
             self._appresultdata = AppResultData(x)
         return self._appresultdata
 
+    @property
+    def appcfginfo(self) -> AppCfgInfo:
+        if self._appcfginfo is None:
+            x = UF.get_app_cfg_info_xnode(self.path, self.filename)
+            self._appcfginfo = AppCfgInfo(x)
+        return self._appcfginfo
+
     @property
     def appfunction_addrs(self) -> Sequence[str]:
         """Return a list of all application function addresses."""

chb/app/AppCfgInfo.py

@@ -0,0 +1,103 @@
+# ------------------------------------------------------------------------------
+# CodeHawk Binary Analyzer
+# Author: Henny Sipma
+# ------------------------------------------------------------------------------
+# The MIT License (MIT)
+#
+# Copyright (c) 2024 Aarno Labs LLC
+#
+# Permission is hereby granted, free of charge, to any person obtaining a copy
+# of this software and associated documentation files (the "Software"), to deal
+# in the Software without restriction, including without limitation the rights
+# to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+# copies of the Software, and to permit persons to whom the Software is
+# furnished to do so, subject to the following conditions:
+#
+# The above copyright notice and this permission notice shall be included in all
+# copies or substantial portions of the Software.
+#
+# THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+# IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+# FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+# AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+# LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+# OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+# SOFTWARE.
+# ------------------------------------------------------------------------------
+"""List of application function addresses and cfg characteristics."""
+
+import xml.etree.ElementTree as ET
+
+from typing import Dict, List, Optional
+
+
+class FnCfgInfo:
+
+    def __init__(self, xnode: ET.Element) -> None:
+        self.xnode = xnode
+
+    @property
+    def faddr(self) -> str:
+        return self.xnode.get("va", "0")
+
+    @property
+    def faddr_i(self) -> int:
+        return int(self.xnode.get("va", "0"), 16)
+
+    @property
+    def basic_blocks(self) -> int:
+        return int(self.xnode.get("bc", "0"))
+
+    @property
+    def instructions(self) -> int:
+        return int(self.xnode.get("ic", "0"))
+
+    @property
+    def loops(self) -> int:
+        return int(self.xnode.get("lc", "0"))
+
+    @property
+    def max_loopdepth(self) -> int:
+        return int(self.xnode.get("ld", "0"))
+
+    @property
+    def has_error(self) -> bool:
+        return self.xnode.get("tr", "ok") == "x"
+
+    @property
+    def name(self) -> Optional[str]:
+        return self.xnode.get("name")
+
+    def __str__(self) -> str:
+        return (
+            ("bc:" + str(self.basic_blocks)).ljust(10)
+            + ("; ic: " + str(self.instructions)).ljust(14)
+            + ("" if self.loops == 0 else ("; lc: " + str(self.loops))))
+
+
+class AppCfgInfo:
+
+    def __init__(self, xnode: Optional[ET.Element]) -> None:
+        self.xnode = xnode
+        self._function_cfg_infos: Optional[Dict[str, FnCfgInfo]] = None
+
+    @property
+    def function_cfg_infos(self) -> Dict[str, FnCfgInfo]:
+        if self._function_cfg_infos is None:
+            self._function_cfg_infos = {}
+            self._initialize_functions()
+        return self._function_cfg_infos
+
+    @property
+    def cfg_infos(self) -> List[FnCfgInfo]:
+        return sorted(
+            self.function_cfg_infos.values(),
+            key = lambda c: c.faddr_i)
+
+    def _initialize_functions(self) -> None:
+        self._function_cfg_infos = {}
+        if self.xnode is not None:
+            for xf in self.xnode.findall("fn"):
+                optva = xf.get("va")
+                if optva is not None:
+                    self._function_cfg_infos[optva] = FnCfgInfo(xf)

chb/ast/ASTCPrettyPrinter.py

@@ -80,7 +80,8 @@ def __init__(
             localsymboltable: "ASTLocalSymbolTable",
             indentation: int = 2,
             annotations: Dict[int, List[str]] = {},
-            livevars_on_exit: Dict[int, Set[str]] = {}) -> None:
+            livevars_on_exit: Dict[int, Set[str]] = {},
+            hide_annotations: bool = False) -> None:
         self._indentation = indentation    # indentation amount
         self._indent = 0                   # current indentation
         self._localsymboltable = localsymboltable

chb/cmdline/AnalysisManager.py

@@ -220,7 +220,8 @@ def disassemble(
             verbose: bool = False,
             collectdiagnostics: bool = True,
             preamble_cutoff: int = 12,
-            save_asm: str = "yes") -> None:
+            save_asm: str = "yes",
+            save_asm_cfg_info: bool = False) -> None:
         cwd = os.getcwd()
         chklogger.logger.debug("change directory to %s", self.path)
         os.chdir(self.path)     # temporary change in directory
@@ -233,6 +234,8 @@ def disassemble(
             cmd.extend(["-specialization", s])
         if save_asm == "yes":
             cmd.append("-save_asm")
+        if save_asm_cfg_info:
+            cmd.append("-save_asm_cfg_info")
         if collectdiagnostics:
             cmd.append("-diagnostics")
         if self.mips:

chb/cmdline/XComparison.py

@@ -399,5 +399,38 @@ def prepare_report(self) -> str:
 
         return "\n".join(lines)
 
+    def diffs_as_table(self) -> str:
+
+        lines: List[str] = []
+        lines.append(
+            "section".ljust(16)
+            + "virtual address".rjust(28)
+            + "section size (bytes)".rjust(28)
+            + " difference")
+        lines.append("-" * 82)
+        for (name, (optsh1, optsh2)) in self.sectionheaderpairs.items():
+            if optsh1 is not None and optsh2 is not None:
+                if optsh1.vaddr != optsh2.vaddr or optsh1.size != optsh2.size:
+                    if optsh1.vaddr == optsh2.vaddr:
+                        vaddr = optsh1.vaddr
+                    else:
+                        vaddr = (optsh1.vaddr + " => " + optsh2.vaddr)
+                    if optsh1.size == optsh2.size:
+                        size = optsh1.size
+                        strdiff = ""
+                    else:
+                        diff = int(optsh2.size, 16) - int(optsh1.size, 16)
+                        if diff > 0:
+                            strdiff = "(+ " + str(diff) + ")"
+                        else:
+                            strdiff = "(- " + str(-diff) + ")"
+                        size = (optsh1.size + " => " + optsh2.size)
+                    lines.append(
+                        name.ljust(16)
+                        + vaddr.rjust(28)  + size.rjust(28) + strdiff.rjust(10))
+
+        return "\n".join(lines)
+
+
     def __str__(self) -> str:
         return self.prepare_report()

chb/cmdline/astcmds.py

@@ -143,6 +143,7 @@ def buildast(args: argparse.Namespace) -> NoReturn:
     hints: List[str] = args.hints  # names of json files
     xpatchresultsfile = args.patch_results_file
     hide_globals: bool = args.hide_globals
+    hide_annotations: bool = args.hide_annotations
     remove_edges: List[str] = args.remove_edges
     add_edges: List[str] = args.add_edges
     verbose: bool = args.verbose
@@ -353,8 +354,11 @@ def buildast(args: argparse.Namespace) -> NoReturn:
 
                 print("\n// Lifted code for function " + faddr)
                 print("// --------------------------------------------------")
+                annotations: Dict[int, List[str]] = {}
+                if not hide_annotations:
+                    annotations = astinterface.annotations
                 prettyprinter = ASTCPrettyPrinter(
-                    localsymboltable, annotations=astinterface.annotations)
+                    localsymboltable, annotations=annotations)
                 print(prettyprinter.to_c(asts[0], include_globals=(not hide_globals)))
                 functions_lifted += 1
 

chb/cmdline/chkx

@@ -379,6 +379,10 @@ def parse() -> argparse.Namespace:
         default="yes",
         choices=["yes", "no"],
         help='save asm listing in analysis directory')
+    analyzecmd.add_argument(
+        "--save_asm_cfg_info",
+        action="store_true",
+        help="save list of functions with cfg info in xml (may be slow)")
     analyzecmd.add_argument(
         "--construct_all_functions",
         action="store_true",
@@ -674,6 +678,10 @@ def parse() -> argparse.Namespace:
         "--hide_globals",
         help="do not include global declarations and definitions in printed output",
         action="store_true")
+    buildast.add_argument(
+        "--hide_annotations",
+        help="do not include annotations in printed C code",
+        action="store_true")
     buildast.add_argument(
         "--remove_edges",
         nargs="*",
@@ -1494,6 +1502,32 @@ def parse() -> argparse.Namespace:
         "xname2", help="name of second (patched) executable (assumed analyzed)")
     relationalcomparemd5s.set_defaults(func=R.relational_compare_md5s_cmd)
 
+    # --- relational_compare elfdata
+    relationalcompareelf = relationalcompareparsers.add_parser("elfdata")
+    relationalcompareelf.add_argument(
+        "xname1",
+        help="name of first (original) executable (assumed disassembled)")
+    relationalcompareelf.add_argument(
+        "xname2",
+        help="name of second (patched) executable (assumed disassembled)")
+    relationalcompareelf.set_defaults(func=R.relational_compare_elfdata)
+
+    # --- relational_compare cfg-info
+    relationalcomparecfginfo = relationalcompareparsers.add_parser("cfg_info")
+    relationalcomparecfginfo.add_argument(
+        "xname1",
+        help="name of first (original) executable (assumed disassembled)")
+    relationalcomparecfginfo.add_argument(
+        "xname2",
+        help="name of second (patched) executable (asseumed disassembled)"),
+    relationalcomparecfginfo.add_argument(
+        "--newfunctions",
+        nargs="*",
+        default=[],
+        help="list of functions that are new in xname2")
+    relationalcomparecfginfo.set_defaults(
+        func=R.relational_compare_cfg_info)
+
     # ------------------------------------------------------ simulate subcommand
     parser_simulate = subparsers.add_parser("simulate")
     parser_simulate.add_argument("xname", help="name of executable")

chb/cmdline/commandutil.py

@@ -397,6 +397,7 @@ def analyzecmd(args: argparse.Namespace) -> NoReturn:
     verbose: bool = args.verbose
     collectdiagnostics: bool = args.collect_diagnostics
     save_asm: str = args.save_asm
+    save_asm_cfg_info: bool = args.save_asm_cfg_info
     thumb: List[str] = args.thumb
     preamble_cutoff: int = args.preamble_cutoff
     iterations: int = args.iterations
@@ -517,7 +518,8 @@ def analyzecmd(args: argparse.Namespace) -> NoReturn:
                 verbose=verbose,
                 collectdiagnostics=collectdiagnostics,
                 preamble_cutoff=preamble_cutoff,
-                save_asm=save_asm)
+                save_asm=save_asm,
+                save_asm_cfg_info=save_asm_cfg_info)
         except subprocess.CalledProcessError as e:
             print_error(str(e.output))
             print_error(str(e))