1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
use std::fs;
use std::path::Path;
use goblin::{elf::Elf, Object};
mod decode;
mod instr;
pub use decode::*;
pub use instr::*;
type Result<T> = std::result::Result<T, Box<dyn std::error::Error>>;
pub fn parse_elf_from_path<P: AsRef<Path>>(path: P) -> Result<Vec<u32>> {
let path: &Path = path.as_ref();
let buffer: Vec<u8> = fs::read(&path)?;
let elf: Elf = match Object::parse(&buffer)? {
Object::Elf(elf) => elf,
Object::PE(_pe) => {
panic!("{}: Expected ELF, found PE", path.to_string_lossy());
}
Object::Mach(_mach) => {
panic!("{}: Expected ELF, found MACH", path.to_string_lossy());
}
Object::Archive(_archive) => {
panic!("{}: Expected ELF, found ARCHIVE", path.to_string_lossy());
}
Object::Unknown(magic) => {
panic!(
"{}: Expected ELF, found unknown format (magic: {:#x}",
path.to_string_lossy(),
magic
);
}
};
parse_elf(&elf, &buffer)
}
pub fn parse_elf<'a>(elf: &'a Elf, buffer: &'a [u8]) -> Result<Vec<u32>> {
for section in &elf.section_headers {
let name = &elf.shdr_strtab[section.sh_name];
if name == ".text" {
let start = section.sh_offset as usize;
let end = start + section.sh_size as usize;
let bytes = &buffer[start..end];
println!("Found {} bytes of code in \".text\"", bytes.len());
return Ok(bytes
.chunks_exact(4)
.map(|w| u32::from_le_bytes([w[0], w[1], w[2], w[3]]))
.collect());
}
}
panic!("No '.text' section in elf")
}