1*515bc8c1Sserge-sans-paille#!/usr/bin/env python 299451b44SJordan Rupprecht 399451b44SJordan Rupprechtimport lldb 499451b44SJordan Rupprechtimport struct 599451b44SJordan Rupprecht 699451b44SJordan Rupprecht 799451b44SJordan Rupprechtclass OperatingSystemPlugIn(object): 899451b44SJordan Rupprecht """Class that provides data for an instance of a LLDB 'OperatingSystemPython' plug-in class""" 999451b44SJordan Rupprecht 1099451b44SJordan Rupprecht def __init__(self, process): 1199451b44SJordan Rupprecht '''Initialization needs a valid.SBProcess object. 1299451b44SJordan Rupprecht 1399451b44SJordan Rupprecht This plug-in will get created after a live process is valid and has stopped for the 1499451b44SJordan Rupprecht first time.''' 1599451b44SJordan Rupprecht self.process = None 1699451b44SJordan Rupprecht self.registers = None 1799451b44SJordan Rupprecht self.threads = None 1899451b44SJordan Rupprecht if isinstance(process, lldb.SBProcess) and process.IsValid(): 1999451b44SJordan Rupprecht self.process = process 2099451b44SJordan Rupprecht self.threads = None # Will be an dictionary containing info for each thread 2199451b44SJordan Rupprecht 2299451b44SJordan Rupprecht def get_target(self): 2399451b44SJordan Rupprecht # NOTE: Don't use "lldb.target" when trying to get your target as the "lldb.target" 2499451b44SJordan Rupprecht # tracks the current target in the LLDB command interpreter which isn't the 2599451b44SJordan Rupprecht # correct thing to use for this plug-in. 2699451b44SJordan Rupprecht return self.process.target 2799451b44SJordan Rupprecht 2899451b44SJordan Rupprecht def create_thread(self, tid, context): 2999451b44SJordan Rupprecht if tid == 0x444444444: 3099451b44SJordan Rupprecht thread_info = { 3199451b44SJordan Rupprecht 'tid': tid, 3299451b44SJordan Rupprecht 'name': 'four', 3399451b44SJordan Rupprecht 'queue': 'queue4', 3499451b44SJordan Rupprecht 'state': 'stopped', 3599451b44SJordan Rupprecht 'stop_reason': 'none'} 3699451b44SJordan Rupprecht self.threads.append(thread_info) 3799451b44SJordan Rupprecht return thread_info 3899451b44SJordan Rupprecht return None 3999451b44SJordan Rupprecht 4099451b44SJordan Rupprecht def get_thread_info(self): 4199451b44SJordan Rupprecht if not self.threads: 4299451b44SJordan Rupprecht # The sample dictionary below shows the values that can be returned for a thread 4399451b44SJordan Rupprecht # tid => thread ID (mandatory) 4499451b44SJordan Rupprecht # name => thread name (optional key/value pair) 4599451b44SJordan Rupprecht # queue => thread dispatch queue name (optional key/value pair) 4699451b44SJordan Rupprecht # state => thred state (mandatory, set to 'stopped' for now) 4799451b44SJordan Rupprecht # stop_reason => thread stop reason. (mandatory, usually set to 'none') 4899451b44SJordan Rupprecht # Possible values include: 4999451b44SJordan Rupprecht # 'breakpoint' if the thread is stopped at a breakpoint 5099451b44SJordan Rupprecht # 'none' thread is just stopped because the process is stopped 5199451b44SJordan Rupprecht # 'trace' the thread just single stepped 5299451b44SJordan Rupprecht # The usual value for this while threads are in memory is 'none' 5399451b44SJordan Rupprecht # register_data_addr => the address of the register data in memory (optional key/value pair) 5499451b44SJordan Rupprecht # Specifying this key/value pair for a thread will avoid a call to get_register_data() 5599451b44SJordan Rupprecht # and can be used when your registers are in a thread context structure that is contiguous 5699451b44SJordan Rupprecht # in memory. Don't specify this if your register layout in memory doesn't match the layout 5799451b44SJordan Rupprecht # described by the dictionary returned from a call to the 5899451b44SJordan Rupprecht # get_register_info() method. 5999451b44SJordan Rupprecht self.threads = [{'tid': 0x111111111, 6099451b44SJordan Rupprecht 'name': 'one', 6199451b44SJordan Rupprecht 'queue': 'queue1', 6299451b44SJordan Rupprecht 'state': 'stopped', 6399451b44SJordan Rupprecht 'stop_reason': 'breakpoint'}, 6499451b44SJordan Rupprecht {'tid': 0x222222222, 6599451b44SJordan Rupprecht 'name': 'two', 6699451b44SJordan Rupprecht 'queue': 'queue2', 6799451b44SJordan Rupprecht 'state': 'stopped', 6899451b44SJordan Rupprecht 'stop_reason': 'none'}, 6999451b44SJordan Rupprecht {'tid': 0x333333333, 7099451b44SJordan Rupprecht 'name': 'three', 7199451b44SJordan Rupprecht 'queue': 'queue3', 7299451b44SJordan Rupprecht 'state': 'stopped', 7399451b44SJordan Rupprecht 'stop_reason': 'trace'}] 7499451b44SJordan Rupprecht return self.threads 7599451b44SJordan Rupprecht 7699451b44SJordan Rupprecht def get_register_info(self): 7799451b44SJordan Rupprecht if self.registers is None: 7899451b44SJordan Rupprecht self.registers = dict() 7999451b44SJordan Rupprecht self.registers['sets'] = ['GPR'] 8099451b44SJordan Rupprecht self.registers['registers'] = [ 8199451b44SJordan Rupprecht {'name': 'rax', 'bitsize': 64, 'offset': 0, 'encoding': 'uint', 'format': 'hex', 'set': 0, 'gcc': 0, 'dwarf': 0}, 8299451b44SJordan Rupprecht {'name': 'rbx', 'bitsize': 64, 'offset': 8, 'encoding': 'uint', 'format': 'hex', 'set': 0, 'gcc': 3, 'dwarf': 3}, 8399451b44SJordan Rupprecht {'name': 'rcx', 'bitsize': 64, 'offset': 16, 'encoding': 'uint', 'format': 'hex', 'set': 0, 'gcc': 2, 'dwarf': 2, 'generic': 'arg4', 'alt-name': 'arg4', }, 8499451b44SJordan Rupprecht {'name': 'rdx', 'bitsize': 64, 'offset': 24, 'encoding': 'uint', 'format': 'hex', 'set': 0, 'gcc': 1, 'dwarf': 1, 'generic': 'arg3', 'alt-name': 'arg3', }, 8599451b44SJordan Rupprecht {'name': 'rdi', 'bitsize': 64, 'offset': 32, 'encoding': 'uint', 'format': 'hex', 'set': 0, 'gcc': 5, 'dwarf': 5, 'generic': 'arg1', 'alt-name': 'arg1', }, 8699451b44SJordan Rupprecht {'name': 'rsi', 'bitsize': 64, 'offset': 40, 'encoding': 'uint', 'format': 'hex', 'set': 0, 'gcc': 4, 'dwarf': 4, 'generic': 'arg2', 'alt-name': 'arg2', }, 8799451b44SJordan Rupprecht {'name': 'rbp', 'bitsize': 64, 'offset': 48, 'encoding': 'uint', 'format': 'hex', 'set': 0, 'gcc': 6, 'dwarf': 6, 'generic': 'fp', 'alt-name': 'fp', }, 8899451b44SJordan Rupprecht {'name': 'rsp', 'bitsize': 64, 'offset': 56, 'encoding': 'uint', 'format': 'hex', 'set': 0, 'gcc': 7, 'dwarf': 7, 'generic': 'sp', 'alt-name': 'sp', }, 8999451b44SJordan Rupprecht {'name': 'r8', 'bitsize': 64, 'offset': 64, 'encoding': 'uint', 'format': 'hex', 'set': 0, 'gcc': 8, 'dwarf': 8, 'generic': 'arg5', 'alt-name': 'arg5', }, 9099451b44SJordan Rupprecht {'name': 'r9', 'bitsize': 64, 'offset': 72, 'encoding': 'uint', 'format': 'hex', 'set': 0, 'gcc': 9, 'dwarf': 9, 'generic': 'arg6', 'alt-name': 'arg6', }, 9199451b44SJordan Rupprecht {'name': 'r10', 'bitsize': 64, 'offset': 80, 'encoding': 'uint', 'format': 'hex', 'set': 0, 'gcc': 10, 'dwarf': 10}, 9299451b44SJordan Rupprecht {'name': 'r11', 'bitsize': 64, 'offset': 88, 'encoding': 'uint', 'format': 'hex', 'set': 0, 'gcc': 11, 'dwarf': 11}, 9399451b44SJordan Rupprecht {'name': 'r12', 'bitsize': 64, 'offset': 96, 'encoding': 'uint', 'format': 'hex', 'set': 0, 'gcc': 12, 'dwarf': 12}, 9499451b44SJordan Rupprecht {'name': 'r13', 'bitsize': 64, 'offset': 104, 'encoding': 'uint', 'format': 'hex', 'set': 0, 'gcc': 13, 'dwarf': 13}, 9599451b44SJordan Rupprecht {'name': 'r14', 'bitsize': 64, 'offset': 112, 'encoding': 'uint', 'format': 'hex', 'set': 0, 'gcc': 14, 'dwarf': 14}, 9699451b44SJordan Rupprecht {'name': 'r15', 'bitsize': 64, 'offset': 120, 'encoding': 'uint', 'format': 'hex', 'set': 0, 'gcc': 15, 'dwarf': 15}, 9799451b44SJordan Rupprecht {'name': 'rip', 'bitsize': 64, 'offset': 128, 'encoding': 'uint', 'format': 'hex', 'set': 0, 'gcc': 16, 'dwarf': 16, 'generic': 'pc', 'alt-name': 'pc'}, 9899451b44SJordan Rupprecht {'name': 'rflags', 'bitsize': 64, 'offset': 136, 'encoding': 'uint', 'format': 'hex', 'set': 0, 'generic': 'flags', 'alt-name': 'flags'}, 9999451b44SJordan Rupprecht {'name': 'cs', 'bitsize': 64, 'offset': 144, 'encoding': 'uint', 'format': 'hex', 'set': 0}, 10099451b44SJordan Rupprecht {'name': 'fs', 'bitsize': 64, 'offset': 152, 'encoding': 'uint', 'format': 'hex', 'set': 0}, 10199451b44SJordan Rupprecht {'name': 'gs', 'bitsize': 64, 'offset': 160, 'encoding': 'uint', 'format': 'hex', 'set': 0}, 10299451b44SJordan Rupprecht ] 10399451b44SJordan Rupprecht return self.registers 10499451b44SJordan Rupprecht 10599451b44SJordan Rupprecht def get_register_data(self, tid): 10699451b44SJordan Rupprecht return struct.pack( 10799451b44SJordan Rupprecht '21Q', 10899451b44SJordan Rupprecht tid + 1, 10999451b44SJordan Rupprecht tid + 2, 11099451b44SJordan Rupprecht tid + 3, 11199451b44SJordan Rupprecht tid + 4, 11299451b44SJordan Rupprecht tid + 5, 11399451b44SJordan Rupprecht tid + 6, 11499451b44SJordan Rupprecht tid + 7, 11599451b44SJordan Rupprecht tid + 8, 11699451b44SJordan Rupprecht tid + 9, 11799451b44SJordan Rupprecht tid + 10, 11899451b44SJordan Rupprecht tid + 11, 11999451b44SJordan Rupprecht tid + 12, 12099451b44SJordan Rupprecht tid + 13, 12199451b44SJordan Rupprecht tid + 14, 12299451b44SJordan Rupprecht tid + 15, 12399451b44SJordan Rupprecht tid + 16, 12499451b44SJordan Rupprecht tid + 17, 12599451b44SJordan Rupprecht tid + 18, 12699451b44SJordan Rupprecht tid + 19, 12799451b44SJordan Rupprecht tid + 20, 12899451b44SJordan Rupprecht tid + 21) 129