-
-
[分享][分享]ida9.0 keypatch 插件报错修复
-
发表于: 2024-8-11 13:40
-
ida9.0 python api 删除了
打开ida后报错
原始代码
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 | @staticmethoddef get_hardware_mode(): (arch, mode) = (None, None) # heuristically detect hardware setup info = idaapi.get_inf_structure() try: cpuname = info.procname.lower() except: cpuname = info.procName.lower() try: # since IDA7 beta 3 (170724) renamed inf.mf -> is_be()/set_be() is_be = idaapi.cvar.inf.is_be() except: # older IDA versions is_be = idaapi.cvar.inf.mf # print("Keypatch BIG_ENDIAN = %s" %is_be) if cpuname == "metapc": arch = KS_ARCH_X86 if info.is_64bit(): mode = KS_MODE_64 elif info.is_32bit(): mode = KS_MODE_32 else: mode = KS_MODE_16 elif cpuname.startswith("arm"): # ARM or ARM64 if info.is_64bit(): arch = KS_ARCH_ARM64 if is_be: mode = KS_MODE_BIG_ENDIAN else: mode = KS_MODE_LITTLE_ENDIAN else: arch = KS_ARCH_ARM # either big-endian or little-endian if is_be: mode = KS_MODE_ARM | KS_MODE_BIG_ENDIAN else: mode = KS_MODE_ARM | KS_MODE_LITTLE_ENDIAN elif cpuname.startswith("sparc"): arch = KS_ARCH_SPARC if info.is_64bit(): mode = KS_MODE_SPARC64 else: mode = KS_MODE_SPARC32 if is_be: mode |= KS_MODE_BIG_ENDIAN else: mode |= KS_MODE_LITTLE_ENDIAN elif cpuname.startswith("ppc"): arch = KS_ARCH_PPC if info.is_64bit(): mode = KS_MODE_PPC64 else: mode = KS_MODE_PPC32 if cpuname == "ppc": # do not support Little Endian mode for PPC mode += KS_MODE_BIG_ENDIAN elif cpuname.startswith("mips"): arch = KS_ARCH_MIPS if info.is_64bit(): mode = KS_MODE_MIPS64 else: mode = KS_MODE_MIPS32 if is_be: mode |= KS_MODE_BIG_ENDIAN else: mode |= KS_MODE_LITTLE_ENDIAN elif cpuname.startswith("systemz") or cpuname.startswith("s390x"): arch = KS_ARCH_SYSTEMZ mode = KS_MODE_BIG_ENDIAN return (arch, mode) |
修复后
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 | @staticmethoddef get_hardware_mode(): (arch, mode) = (None, None) cpuname = ida_ida.inf_get_procname().lower() is_be = ida_ida.inf_is_be() if cpuname == "metapc": arch = KS_ARCH_X86 if ida_ida.inf_is_64bit(): mode = KS_MODE_64 elif ida_ida.inf_is_16bit(): mode = KS_MODE_16 else: mode = KS_MODE_32 elif cpuname.startswith("arm"): # ARM or ARM64 if ida_ida.inf_is_64bit(): arch = KS_ARCH_ARM64 if is_be: mode = KS_MODE_BIG_ENDIAN else: mode = KS_MODE_LITTLE_ENDIAN else: arch = KS_ARCH_ARM # either big-endian or little-endian if is_be: mode = KS_MODE_ARM | KS_MODE_BIG_ENDIAN else: mode = KS_MODE_ARM | KS_MODE_LITTLE_ENDIAN elif cpuname.startswith("sparc"): arch = KS_ARCH_SPARC if ida_ida.inf_is_64bit(): mode = KS_MODE_SPARC64 else: mode = KS_MODE_SPARC32 if is_be: mode |= KS_MODE_BIG_ENDIAN else: mode |= KS_MODE_LITTLE_ENDIAN elif cpuname.startswith("ppc"): arch = KS_ARCH_PPC if ida_ida.inf_is_64bit(): mode = KS_MODE_PPC64 else: mode = KS_MODE_PPC32 if cpuname == "ppc": # do not support Little Endian mode for PPC mode += KS_MODE_BIG_ENDIAN elif cpuname.startswith("mips"): arch = KS_ARCH_MIPS if ida_ida.inf_is_64bit(): mode = KS_MODE_MIPS64 else: mode = KS_MODE_MIPS32 if is_be: mode |= KS_MODE_BIG_ENDIAN else: mode |= KS_MODE_LITTLE_ENDIAN elif cpuname.startswith("systemz") or cpuname.startswith("s390x"): arch = KS_ARCH_SYSTEMZ mode = KS_MODE_BIG_ENDIAN return (arch, mode) |
[峰会]看雪.第八届安全开发者峰会10月23日上海龙之梦大酒店举办!
最后于 2024-8-11 13:49
被奋斗小菜鸟编辑
,原因:
|
|
|---|---|
|
|
|
|
|
|
|
|
|
