Register classes with BN

whitequark · Jul 30, 2022 · 8a9a582 · 8a9a582
1 parent 3ac3ad1
commit 8a9a582
Showing 1 changed file with 30 additions and 3 deletions.
diff --git a/__init__.py b/__init__.py
@@ -13,7 +13,7 @@
 import sys
 import os.path
 sys.path.append(os.path.join(os.path.dirname(__file__), "itanium_demangler"))
-from itanium_demangler import Node, parse as parse_mangled
+from itanium_demangler import Node, parse as parse_mangled, is_ctor_or_dtor
 
 
 def analyze_cxx_abi(view, start=None, length=None, task=None):
@@ -153,6 +153,13 @@ def ty_from_demangler_node(node, cv_qual=frozenset(), arg_count_hint=None):
                     if this_ty is None:
                         return None
                     arg_tys.append(Type.pointer(arch, this_ty))
+                    if is_ctor_dtor:
+                        name = '::'.join(str(n) for n in qual_name[:-1])
+                        if not name.startswith('std') and not view.get_type_by_name(name):
+                            log.log_info(f'Registering new type {name}')
+                            void_p_ty = Type.pointer(arch, Type.void())
+                            with StructureBuilder.builder(view, name) as s:
+                                s.append(Type.pointer(arch, void_p_ty), 'vtable')
 
             for arg_node in arg_nodes:
                 arg_ty = ty_from_demangler_node(arg_node)
@@ -163,7 +170,7 @@ def ty_from_demangler_node(node, cv_qual=frozenset(), arg_count_hint=None):
             ty = Type.function(ret_ty, arg_tys, variable_arguments=var_arg)
             if arg_count_hint is not None:
                 # toplevel invocation, so return whether we inferred a this argument
-                return this_arg, ty
+                return this_arg, ty, is_ctor_dtor
             else:
                 return ty
         else:
@@ -313,8 +320,28 @@ def read(size):
             demangled = ty_from_demangler_node(name_ast,
                                                arg_count_hint=len(func.function_type.parameters))
             if demangled is not None:
-                this_arg, ty = demangled
+                this_arg, ty, dtor_ctor = demangled
                 func.apply_auto_discovered_type(ty)
+                if dtor_ctor and this_arg:
+                    start = func.address_ranges[0].start
+                    callers = list(view.get_callers(start))
+                    for caller in callers:
+                        try:
+                            il_call = next(ins for ins in view.hlil_instructions if ins.address == caller.address)
+                        except StopIteration:
+                            continue
+
+                        # If the calling function is a ctor/dtor, it's probably running inherited constructors
+                        # so we shouldn't override the type
+                        ast = parse_mangled(il_call.function.source_function.name)
+                        if ast and is_ctor_or_dtor(ast):
+                            continue
+                        if not il_call.params:
+                            continue
+                        this = il_call.params[0]
+                        class_type = func.parameter_vars[0].type
+                        if hasattr(this, 'var'):
+                            this.var.type = class_type
 
     view.update_analysis()