latest/doxygen/BinaryParser_8hpp_source.html

/* Copyright 2017 - 2025 R. Thomas

 * Copyright 2017 - 2025 Quarkslab

 *

 * Licensed under the Apache License, Version 2.0 (the "License");

 * you may not use this file except in compliance with the License.

 * You may obtain a copy of the License at

 *

 *     http://www.apache.org/licenses/LICENSE-2.0

 *

 * Unless required by applicable law or agreed to in writing, software

 * distributed under the License is distributed on an "AS IS" BASIS,

 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

 * See the License for the specific language governing permissions and

 * limitations under the License.

 */

#ifndef LIEF_MACHO_BINARY_PARSER_H

#define LIEF_MACHO_BINARY_PARSER_H

#include <memory>

#include <string>

#include <vector>

#include <limits>

#include <set>

#include <map>

#include <unordered_map>


#include "LIEF/visibility.h"

#include "LIEF/errors.hpp"


#include "LIEF/Abstract/Parser.hpp"


#include "LIEF/MachO/enums.hpp"

#include "LIEF/MachO/DyldChainedFormat.hpp"

#include "LIEF/MachO/ParserConfig.hpp"

#include "LIEF/MachO/DyldBindingInfo.hpp"


namespace LIEF {

class BinaryStream;

class SpanStream;


namespace MachO {

class AtomInfo;

class ChainedBindingInfo;

class CodeSignature;

class CodeSignatureDir;

class DataInCode;

class DyldChainedFixups;

class DylibCommand;

class DynamicSymbolCommand;

class ExportInfo;

class FunctionStarts;

class FunctionVariants;

class FunctionVariantFixups;

class LinkerOptHint;

class Parser;

class Section;

class SegmentCommand;

class SegmentSplitInfo;

class Symbol;

class SymbolCommand;

class TwoLevelHints;

struct ParserConfig;


namespace details {

struct dyld_chained_starts_in_segment;

struct dyld_chained_fixups_header;

union dyld_chained_ptr_arm64e;

union dyld_chained_ptr_generic64;

union dyld_chained_ptr_generic32;

union dyld_chained_ptr_arm64e_segmented;

}


class LIEF_API BinaryParser : public LIEF::Parser {


  friend class MachO::Parser;


  constexpr static size_t MAX_RELOCATIONS = (std::numeric_limits<uint16_t>::max)();


  constexpr static size_t MAX_COMMANDS = (std::numeric_limits<uint16_t>::max)();


  public:

  static std::unique_ptr<Binary> parse(const std::string& file);

  static std::unique_ptr<Binary> parse(const std::string& file, const ParserConfig& conf);

  static std::unique_ptr<Binary> parse(const std::vector<uint8_t>& data,

                                       const ParserConfig& conf = ParserConfig::deep());


  static std::unique_ptr<Binary> parse(const std::vector<uint8_t>& data, uint64_t fat_offset,

                                       const ParserConfig& conf = ParserConfig::deep());


  static std::unique_ptr<Binary> parse(std::unique_ptr<BinaryStream> stream, uint64_t fat_offset,

                                       const ParserConfig& conf);


  BinaryParser& operator=(const BinaryParser& copy) = delete;

  BinaryParser(const BinaryParser& copy) = delete;


  ~BinaryParser() override;


  private:

  using exports_list_t = std::vector<std::unique_ptr<ExportInfo>>;

  LIEF_LOCAL BinaryParser();


  LIEF_LOCAL ok_error_t init_and_parse();


  template<class MACHO_T>

  LIEF_LOCAL ok_error_t parse();


  template<class MACHO_T>

  LIEF_LOCAL ok_error_t parse_header();


  template<class MACHO_T>

  LIEF_LOCAL ok_error_t parse_load_commands();


  template<class MACHO_T>

  LIEF_LOCAL ok_error_t parse_relocations(Section& section);


  // Dyld info parser

  // ================


  // Rebase

  // ------

  template<class MACHO_T>

  LIEF_LOCAL ok_error_t parse_dyldinfo_rebases();


  // Bindings

  // --------

  template<class MACHO_T>

  LIEF_LOCAL ok_error_t parse_dyldinfo_binds();


  template<class MACHO_T>

  LIEF_LOCAL ok_error_t parse_dyldinfo_generic_bind();


  template<class MACHO_T>

  LIEF_LOCAL ok_error_t parse_dyldinfo_weak_bind();


  template<class MACHO_T>

  LIEF_LOCAL ok_error_t parse_dyldinfo_lazy_bind();


  template<class MACHO_T>

  LIEF_LOCAL ok_error_t infer_indirect_bindings();


  template<class MACHO_T>

  LIEF_LOCAL ok_error_t parse_symtab(SymbolCommand& cmd, SpanStream& nlist_s,

                                     SpanStream& string_s);


  LIEF_LOCAL ok_error_t parse_indirect_symbols(

    DynamicSymbolCommand& cmd, std::vector<Symbol*>& symtab,

    BinaryStream& indirect_stream);


  template<class MACHO_T>

  LIEF_LOCAL ok_error_t parse_data_in_code(DataInCode& cmd, BinaryStream& stream);


  using it_opaque_segments = void*; // To avoid including Binary.hpp. It must contains it_opaque_segments


  template<class MACHO_T>

  LIEF_LOCAL ok_error_t do_bind(DyldBindingInfo::CLASS cls, uint8_t type, uint8_t segment_idx,

                     uint64_t segment_offset, const std::string& symbol_name,

                     int32_t ord, int64_t addend, bool is_weak,

                     bool is_non_weak_definition, it_opaque_segments segments_ptr, uint64_t offset = 0);


  template<class MACHO_T>

  LIEF_LOCAL ok_error_t do_rebase(

    uint8_t type, uint8_t segment_idx, uint64_t segment_offset,

    it_opaque_segments segments);


  /*

   * This set of functions are related to the parsing of LC_DYLD_CHAINED_FIXUPS

   */

  template<class MACHO_T>

  LIEF_LOCAL ok_error_t parse_chained_payload(SpanStream& stream);


  template<class MACHO_T>

  LIEF_LOCAL ok_error_t parse_chained_import(

    const details::dyld_chained_fixups_header& header, SpanStream& stream,

    SpanStream& symbol_pool);


  template<class MACHO_T>

  LIEF_LOCAL ok_error_t parse_chained_fixup(

    const details::dyld_chained_fixups_header& header, SpanStream& stream);


  template<class MACHO_T>

  LIEF_LOCAL ok_error_t parse_fixup_seg(

    SpanStream& stream, uint32_t seg_info_offset, uint64_t offset,

    uint32_t seg_idx);


  template<class MACHO_T>

  LIEF_LOCAL ok_error_t do_fixup(

    DYLD_CHAINED_FORMAT fmt, int32_t ord, const std::string& symbol_name,

    int64_t addend, bool is_weak);


  template<class MACHO_T>

  LIEF_LOCAL ok_error_t process_fixup(

    SegmentCommand& segment, uint64_t chain_address, uint64_t chain_offset,

    const details::dyld_chained_starts_in_segment& seg_info);


  template<class MACHO_T>

  LIEF_LOCAL result<uint64_t> next_chain(

    uint64_t& chain_address, uint64_t chain_offset,

    const details::dyld_chained_starts_in_segment& seg_info);


  template<class MACHO_T>

  LIEF_LOCAL ok_error_t walk_chain(

    SegmentCommand& segment, uint64_t chain_address, uint64_t chain_offset,

    const details::dyld_chained_starts_in_segment& seg_info);


  LIEF_LOCAL ok_error_t do_chained_fixup(

    SegmentCommand& segment, uint64_t chain_address, uint32_t chain_offset,

    const details::dyld_chained_starts_in_segment& seg_info,

    const details::dyld_chained_ptr_arm64e& fixup);


  LIEF_LOCAL ok_error_t do_chained_fixup(

    SegmentCommand& segment, uint64_t chain_address, uint32_t chain_offset,

    const details::dyld_chained_starts_in_segment& seg_info,

    const details::dyld_chained_ptr_generic64& fixup);


  LIEF_LOCAL ok_error_t do_chained_fixup(

    SegmentCommand& segment, uint64_t chain_address, uint32_t chain_offset,

    const details::dyld_chained_starts_in_segment& seg_info,

    const details::dyld_chained_ptr_generic32 & fixup);


  LIEF_LOCAL ok_error_t do_chained_fixup(

    SegmentCommand& segment, uint64_t chain_address, uint32_t chain_offset,

    const details::dyld_chained_starts_in_segment& seg_info,

    const details::dyld_chained_ptr_arm64e_segmented& fixup);


  template<class MACHO_T>

  LIEF_LOCAL ok_error_t post_process(SymbolCommand& cmd);


  template<class MACHO_T>

  LIEF_LOCAL ok_error_t post_process(FunctionStarts& cmd);


  template<class MACHO_T>

  LIEF_LOCAL ok_error_t post_process(DataInCode& cmd);


  template<class MACHO_T>

  LIEF_LOCAL ok_error_t post_process(SegmentSplitInfo& cmd);


  template<class MACHO_T>

  LIEF_LOCAL ok_error_t post_process(DynamicSymbolCommand& cmd);


  template<class MACHO_T>

  LIEF_LOCAL ok_error_t post_process(LinkerOptHint& cmd);


  template<class MACHO_T>

  LIEF_LOCAL ok_error_t post_process(AtomInfo& cmd);


  template<class MACHO_T>

  LIEF_LOCAL ok_error_t post_process(TwoLevelHints& cmd);


  template<class MACHO_T>

  LIEF_LOCAL ok_error_t post_process(CodeSignature& cmd);


  template<class MACHO_T>

  LIEF_LOCAL ok_error_t post_process(CodeSignatureDir& cmd);


  template<class MACHO_T>

  LIEF_LOCAL ok_error_t post_process(FunctionVariants& cmd);


  template<class MACHO_T>

  LIEF_LOCAL ok_error_t post_process(FunctionVariantFixups& cmd);


  LIEF_LOCAL ok_error_t parse_overlay();


  // Exports

  // -------

  LIEF_LOCAL ok_error_t parse_dyldinfo_export();

  LIEF_LOCAL ok_error_t parse_dyld_exports();


  LIEF_LOCAL ok_error_t parse_export_trie(

    exports_list_t& exports, BinaryStream& stream,

    uint64_t start, const std::string& prefix, bool* invalid_names);


  LIEF_LOCAL void copy_from(ChainedBindingInfo& to, ChainedBindingInfo& from);


  std::unique_ptr<BinaryStream>  stream_;

  std::unique_ptr<Binary>        binary_;

  MACHO_TYPES                    type_ = MACHO_TYPES::MAGIC_64;

  bool                           is64_ = true;

  ParserConfig                   config_;

  std::set<uint64_t>             visited_;

  std::unordered_map<std::string, Symbol*> memoized_symbols_;

  std::map<uint64_t, Symbol*>    memoized_symbols_by_address_;


  std::vector<DylibCommand*> binding_libs_;

  std::set<uint64_t> dyld_reloc_addrs_;


  // Cache of DyldChainedFixups

  DyldChainedFixups* chained_fixups_ = nullptr;

};


} // namespace MachO

} // namespace LIEF

#endif

Parser.hpp

DyldBindingInfo.hpp

DyldChainedFormat.hpp

ParserConfig.hpp

enums.hpp

LIEF::BinaryStream
Class that is used to a read stream of data from different sources.
Definition BinaryStream.hpp:33

LIEF::MachO::AtomInfo
Class which represents the LC_ATOM_INFO command.
Definition AtomInfo.hpp:35

LIEF::MachO::BinaryParser::~BinaryParser
~BinaryParser() override

LIEF::MachO::BinaryParser::BinaryParser
BinaryParser(const BinaryParser &copy)=delete

LIEF::MachO::BinaryParser::operator=
BinaryParser & operator=(const BinaryParser &copy)=delete

LIEF::MachO::BinaryParser::parse
static std::unique_ptr< Binary > parse(std::unique_ptr< BinaryStream > stream, uint64_t fat_offset, const ParserConfig &conf)

LIEF::MachO::BinaryParser::parse
static std::unique_ptr< Binary > parse(const std::vector< uint8_t > &data, uint64_t fat_offset, const ParserConfig &conf=ParserConfig::deep())

LIEF::MachO::BinaryParser::parse
static std::unique_ptr< Binary > parse(const std::string &file)

LIEF::MachO::BinaryParser::parse
static std::unique_ptr< Binary > parse(const std::string &file, const ParserConfig &conf)

LIEF::MachO::BinaryParser::parse
static std::unique_ptr< Binary > parse(const std::vector< uint8_t > &data, const ParserConfig &conf=ParserConfig::deep())

LIEF::MachO::ChainedBindingInfo
This class represents a symbol binding operation associated with the LC_DYLD_CHAINED_FIXUPS command.
Definition ChainedBindingInfo.hpp:48

LIEF::MachO::CodeSignatureDir
Definition CodeSignatureDir.hpp:36

LIEF::MachO::CodeSignature
Definition CodeSignature.hpp:37

LIEF::MachO::DataInCode
Interface of the LC_DATA_IN_CODE command This command is used to list slices of code sections that co...
Definition DataInCode.hpp:42

LIEF::MachO::DyldBindingInfo::CLASS
CLASS
Definition DyldBindingInfo.hpp:38

LIEF::MachO::DyldChainedFixups
Class that represents the LC_DYLD_CHAINED_FIXUPS command.
Definition DyldChainedFixups.hpp:49

LIEF::MachO::DylibCommand
Class which represents a library dependency.
Definition DylibCommand.hpp:34

LIEF::MachO::DynamicSymbolCommand
Class that represents the LC_DYSYMTAB command.
Definition DynamicSymbolCommand.hpp:40

LIEF::MachO::ExportInfo
Class that provides an interface over the Dyld export info.
Definition ExportInfo.hpp:38

LIEF::MachO::FunctionStarts
Class which represents the LC_FUNCTION_STARTS command.
Definition FunctionStarts.hpp:39

LIEF::MachO::FunctionVariantFixups
Class which represents the LC_FUNCTION_VARIANT_FIXUPS command.
Definition FunctionVariantFixups.hpp:34

LIEF::MachO::FunctionVariants
Class representing the LC_FUNCTION_VARIANTS load command.
Definition FunctionVariants.hpp:59

LIEF::MachO::LinkerOptHint
Class which represents the LC_LINKER_OPTIMIZATION_HINT command.
Definition LinkerOptHint.hpp:37

LIEF::MachO::Parser
The main interface to parse a Mach-O binary.
Definition MachO/Parser.hpp:42

LIEF::MachO::Section
Class that represents a Mach-O section.
Definition MachO/Section.hpp:46

LIEF::MachO::SegmentCommand
Class which represents a LoadCommand::TYPE::SEGMENT / LoadCommand::TYPE::SEGMENT_64 command.
Definition SegmentCommand.hpp:50

LIEF::MachO::SegmentSplitInfo
Class that represents the LoadCommand::TYPE::SEGMENT_SPLIT_INFO command.
Definition SegmentSplitInfo.hpp:35

LIEF::MachO::SymbolCommand
Class that represents the LC_SYMTAB command.
Definition SymbolCommand.hpp:35

LIEF::MachO::Symbol
Class that represents a Symbol in a Mach-O file.
Definition MachO/Symbol.hpp:47

LIEF::MachO::TwoLevelHints
Class which represents the LC_TWOLEVEL_HINTS command.
Definition TwoLevelHints.hpp:39

LIEF::Parser
Main interface to parse an executable regardless of its format.
Definition Abstract/Parser.hpp:30

LIEF::SpanStream
Definition SpanStream.hpp:32

errors.hpp

LIEF::MachO::details
Definition endianness_support.hpp:59

LIEF::MachO
Namespace related to the LIEF's Mach-O module.
Definition Abstract/Header.hpp:36

LIEF::MachO::DYLD_CHAINED_FORMAT
DYLD_CHAINED_FORMAT
Definition DyldChainedFormat.hpp:22

LIEF::MachO::MACHO_TYPES
MACHO_TYPES
Definition MachO/enums.hpp:23

LIEF::MachO::MACHO_TYPES::MAGIC_64
@ MAGIC_64
64-bit big-endian magic
Definition MachO/enums.hpp:27

LIEF
LIEF namespace.
Definition Abstract/Binary.hpp:40

LIEF::ok_error_t
result< ok_t > ok_error_t
Opaque structure that is used by LIEF to avoid writing result<void> f(...). Instead,...
Definition errors.hpp:109

LIEF::result
tl::expected< T, lief_errors > result
Wrapper that contains an Object (T) or an error.
Definition errors.hpp:75

LIEF::MachO::ParserConfig
This structure is used to tweak the MachO Parser (MachO::Parser).
Definition MachO/ParserConfig.hpp:24

LIEF::MachO::ParserConfig::deep
static ParserConfig deep()
Return a parser configuration such as all the objects supported by LIEF are parsed.

visibility.h

LIEF_API
#define LIEF_API
Definition visibility.h:41

LIEF_LOCAL
#define LIEF_LOCAL
Definition visibility.h:42