// XXX: this function uses 'oeax' which is linux-i386-specific
R_API int r_debug_continue_syscall(struct r_debug_t *dbg, int sc) {
int reg, ret = R_FALSE;
if (r_debug_is_dead (dbg))
return R_FALSE;
if (dbg && dbg->h) {
if (dbg->h->contsc) {
do {
ret = dbg->h->contsc (dbg, dbg->pid, sc);
if (!r_debug_reg_sync (dbg, R_REG_TYPE_GPR, R_FALSE)) {
eprintf ("--> eol\n");
sc = 0;
break;
}
reg = (int)r_debug_reg_get (dbg, "oeax"); // XXX
eprintf ("--> syscall %d\n", reg);
if (reg == 0LL)
break;
// TODO: must use r_core_cmd(as)..import code from rcore
} while (sc != 0 && sc != reg);
} else {
r_debug_continue_until_optype (dbg, R_ANAL_OP_TYPE_SWI, 0);
reg = (int)r_debug_reg_get (dbg, "oeax"); // XXX
eprintf ("--> syscall %d\n", reg);
}
}
return ret;
}
R_API int r_debug_continue_syscalls(RDebug *dbg, int *sc, int n_sc) {
int i, reg, ret = R_FALSE;
if (!dbg || !dbg->h || r_debug_is_dead (dbg))
return R_FALSE;
if (!dbg->h->contsc) {
/* user-level syscall tracing */
r_debug_continue_until_optype (dbg, R_ANAL_OP_TYPE_SWI, 0);
return show_syscall (dbg, "a0");
}
if (!r_debug_reg_sync (dbg, R_REG_TYPE_GPR, R_FALSE)) {
eprintf ("--> cannot read registers\n");
return -1;
}
{
int err;
reg = (int)r_debug_reg_get_err (dbg, "sn", &err);
if (err) {
eprintf ("Cannot find 'sn' register for current arch-os.\n");
return -1;
}
}
for (;;) {
if (r_cons_singleton()->breaked)
break;
#if __linux__
// step is needed to avoid dupped contsc results
r_debug_step (dbg, 1);
#endif
dbg->h->contsc (dbg, dbg->pid, 0); // TODO handle return value
// wait until continuation
r_debug_wait (dbg);
if (!r_debug_reg_sync (dbg, R_REG_TYPE_GPR, R_FALSE)) {
eprintf ("--> cannot sync regs, process is probably dead\n");
return -1;
}
reg = show_syscall (dbg, "sn");
if (n_sc == -1)
continue;
if (n_sc == 0) {
break;
}
for (i=0; i<n_sc; i++) {
if (sc[i] == reg)
return reg;
}
// TODO: must use r_core_cmd(as)..import code from rcore
}
return ret;
}
R_API int r_debug_continue_syscalls(RDebug *dbg, int *sc, int n_sc) {
const char *sysname;
int i, reg, ret = R_FALSE;
if (!dbg || !dbg->h || r_debug_is_dead (dbg))
return R_FALSE;
if (!dbg->h->contsc) {
/* user-level syscall tracing */
r_debug_continue_until_optype (dbg, R_ANAL_OP_TYPE_SWI, 0);
reg = (int)r_debug_reg_get (dbg, "a0"); // XXX
sysname = r_syscall_get_i (dbg->anal->syscall, reg, -1);
if (!sysname) sysname = "unknown";
eprintf ("--> syscall %d %s\n", reg, sysname);
return reg;
}
if (!r_debug_reg_sync (dbg, R_REG_TYPE_GPR, R_FALSE)) {
eprintf ("--> cannot read registers\n");
return -1;
}
reg = (int)r_debug_reg_get (dbg, "sn");
if (reg == (int)UT64_MAX) {
eprintf ("Cannot find 'sn' register for current arch-os.\n");
return -1;
}
for (;;) {
dbg->h->contsc (dbg, dbg->pid, 0); // TODO handle return value
if (!r_debug_reg_sync (dbg, R_REG_TYPE_GPR, R_FALSE)) {
eprintf ("--> eol\n");
return -1;
}
reg = (int)r_debug_reg_get (dbg, "sn");
if (reg == (int)UT64_MAX)
return -1;
sysname = r_syscall_get_i (dbg->anal->syscall, reg, -1);
if (!sysname) sysname = "unknown";
eprintf ("--> syscall %d %s\n", reg, sysname);
for (i=0; i<n_sc; i++) {
if (sc[i] == reg)
return reg;
}
// TODO: must use r_core_cmd(as)..import code from rcore
}
return ret;
}
