forked from google/bindiff
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathtest_util.h
199 lines (164 loc) · 5.99 KB
/
test_util.h
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
// Copyright 2021 Google LLC
//
// Licensed under the Apache License, Version 2.0 (the "License");
// you may not use this file except in compliance with the License.
// You may obtain a copy of the License at
//
// https://www.apache.org/licenses/LICENSE-2.0
//
// Unless required by applicable law or agreed to in writing, software
// distributed under the License is distributed on an "AS IS" BASIS,
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
// See the License for the specific language governing permissions and
// limitations under the License.
#ifndef TEST_UTIL_H_
#define TEST_UTIL_H_
#include <memory>
#include <string>
#include "gtest/gtest.h"
#include "third_party/absl/container/btree_map.h"
#include "third_party/absl/strings/string_view.h"
#include "third_party/zynamics/bindiff/call_graph.h"
#include "third_party/zynamics/bindiff/fixed_points.h"
#include "third_party/zynamics/bindiff/flow_graph.h"
#include "third_party/zynamics/bindiff/instruction.h"
namespace security::bindiff {
// A test environment that loads a BinDiff default configuration suitable for
// testing. This helps to avoid using the the built-in default configuration
// as it has name matching enabled, which can make tests pointless (both
// binaries contain full symbols and BinDiff will simply match everything
// based on that).
class BinDiffEnvironment : public ::testing::Environment {
public:
void SetUp() override;
};
// Call graph class that exposes more parts of its internal API for testing.
class TestCallGraph : public CallGraph {
public:
using CallGraph::CallGraph;
using CallGraph::Init;
};
// Similar to TestCallGraph, a flow graph class exposing protected members.
class TestFlowGraph : public FlowGraph {
public:
using FlowGraph::FlowGraph;
using FlowGraph::Init;
using FlowGraph::instructions_;
};
class InstructionBuilder {
public:
explicit InstructionBuilder(absl::string_view line);
InstructionBuilder& SetCallsFunction(absl::string_view name) {
calls_function_ = std::string(name);
return *this;
}
private:
friend class FunctionBuilder;
Address address_ = 0;
std::string mnemonic_;
std::string disassembly_;
std::string calls_function_;
uint32_t prime_ = 0;
uint8_t length_ = 1; // Assume single-byte instructions by default
};
class BasicBlockBuilder {
public:
BasicBlockBuilder(absl::string_view label) : label_(label) {}
BasicBlockBuilder& AddInstructions(
std::initializer_list<InstructionBuilder> instructions) {
instructions_.insert(instructions_.end(), instructions.begin(),
instructions.end());
return *this;
}
BasicBlockBuilder& SetFlowTrue(absl::string_view label) {
out_flow_labels_[FlowGraph::EDGE_TRUE] = std::string(label);
return *this;
}
BasicBlockBuilder& SetFlowFalse(absl::string_view label) {
out_flow_labels_[FlowGraph::EDGE_FALSE] = std::string(label);
return *this;
}
BasicBlockBuilder& SetFlow(absl::string_view label) {
out_flow_labels_[FlowGraph::EDGE_UNCONDITIONAL] = std::string(label);
return *this;
}
private:
friend class FunctionBuilder;
std::string label_;
absl::btree_map<int, std::string> out_flow_labels_;
std::vector<InstructionBuilder> instructions_;
};
class FunctionBuilder {
public:
FunctionBuilder(Address entry_point, absl::string_view name)
: entry_point_(entry_point), name_(name) {}
FunctionBuilder(const FunctionBuilder&) = default;
FunctionBuilder& operator=(const FunctionBuilder&) = default;
FunctionBuilder& AddBasicBlocks(
std::initializer_list<BasicBlockBuilder> basic_blocks) {
basic_blocks_.insert(basic_blocks_.end(), basic_blocks.begin(),
basic_blocks.end());
return *this;
}
std::unique_ptr<FlowGraph> Build(TestCallGraph* call_graph,
Instruction::Cache* cache);
private:
friend class DiffBinaryBuilder;
void InitInstructions();
Address entry_point_;
std::string name_;
std::vector<BasicBlockBuilder> basic_blocks_;
std::vector<absl::string_view> out_calls_;
};
// Holder struct for one side of a diff.
struct DiffBinary {
~DiffBinary();
Instruction::Cache* cache;
TestCallGraph call_graph;
FlowGraphs flow_graphs;
};
class DiffBinaryBuilder {
public:
DiffBinaryBuilder& AddFunctions(
std::initializer_list<FunctionBuilder> functions) {
functions_.insert(functions_.end(), functions.begin(), functions.end());
return *this;
}
std::unique_ptr<DiffBinary> Build(Instruction::Cache* cache);
private:
std::vector<FunctionBuilder> functions_;
};
class BinDiffTest : public ::testing::Test {
protected:
// Sets up this test with BinDiff strutures corresponding to two simple
// functions that are matched using "manual" matching.
// This can be used in tests that just need simple BinDiff context ensure
// basic functionality works.
//
// The matches that are added correspond to the functions below (in a
// fictional x86-dialect where all instructions have length 1):
//
// 0x10000 func_a() 0x20000 func_b()
// 0x10000 entry: 0x20000 entry:
// 0x10000 test eax, eax 0x20000 sub eax, eax
// 0x10001 jz loc_10004 0x20001 jz loc_20004
// 0x10002 loc_10002: 0x20002 loc_20002:
// 0x10002 mov eax, 1 0x20002 mov eax, 1
// 0x10003 jmp loc_10005 0x20003 jmp loc_20005
// 0x10004 loc_10004: 0x20004 loc_20004:
// 0x10004 xor eax, eax 0x20004 xor eax, eax
// 0x10005 loc_10005: 0x20005 loc_20005:
// 0x10005 ret 0x20005 ret
//
// The functions themselves as well as their basic blocks are set to manually
// matched.
void SetUpBasicFunctionMatch();
// Like above, but omit the actual matches.
void SetUpBasicFunctions();
Instruction::Cache cache_;
std::unique_ptr<DiffBinary> primary_;
std::unique_ptr<DiffBinary> secondary_;
FixedPoints fixed_points_;
};
} // namespace security::bindiff
#endif // TEST_UTIL_H_