bearparser/_d_o_s_exe_8h_source.html

#pragma once


#include "../MappedExe.h"

#include "DosHdrWrapper.h"


#define DOS_PARAGRAPH 0x10


class DOSExeBuilder: public ExeBuilder {

public:

    DOSExeBuilder() : ExeBuilder() {}

    virtual bool signatureMatches(AbstractByteBuffer *buf);

    virtual Executable* build(AbstractByteBuffer *buf);

    QString typeName() { return "MZ"; }

};


//-------------------------------------------------------------


class DOSExe : public MappedExe

{

public:


    enum WRAPPERS {

        WR_NONE = MappedExe::WR_NONE,

        WR_DOS_HDR = 0,

        COUNT_WRAPPERS

    };


    DOSExe(AbstractByteBuffer *v_buf);

    virtual ~DOSExe() { }


    virtual exe_arch getArch() { return exe_arch::ARCH_INTEL; }


    // inherited from Executable:

    //

    virtual void wrap();

    // FileAddr <-> RVA

    virtual offset_t rawToRva(offset_t raw) { return (raw < codeOffset()) ? INVALID_ADDR : raw - codeOffset(); }

    virtual offset_t rvaToRaw(offset_t rva) { return rva + codeOffset();  } //TODO


    virtual bufsize_t getMappedSize(Executable::addr_type aType)

    {

        if (aType == Executable::RAW)

            return getContentSize();

        return moduleSize() - codeOffset();

    }


    virtual bufsize_t getAlignment(Executable::addr_type aType) const { return 0; } //TODO

    virtual offset_t getImageBase(bool recalculate = false) { return m_dosHdr->e_cs; }

    virtual offset_t getEntryPoint(Executable::addr_type aType = Executable::RVA) { return codeOffset() + m_dosHdr->e_ip; }


    //---

    // DOS Exe only:

    virtual offset_t dosHeaderOffset() { return 0; } //wrapper's mount point

    offset_t peSignatureOffset();


protected:

    offset_t codeOffset() { return static_cast<offset_t> (m_dosHdr->e_cparhdr) * DOS_PARAGRAPH; }


    bufsize_t moduleSize()

    {

        const size_t unit_size = 0x200;

        WORD size = m_dosHdr->e_cp * unit_size;

        if (m_dosHdr->e_cblp ) {

            WORD trimSize = unit_size - m_dosHdr->e_cblp;

            size -= trimSize;

        }

        return static_cast<bufsize_t> (size);

    }


    DosHdrWrapper *dosHdrWrapper;

    IMAGE_DOS_HEADER* m_dosHdr;

};


bufsize_t
uint32_t bufsize_t
Definition AbstractByteBuffer.h:14

INVALID_ADDR
const offset_t INVALID_ADDR
Definition AbstractByteBuffer.h:18

offset_t
uint64_t offset_t
Definition AbstractByteBuffer.h:17

DOS_PARAGRAPH
#define DOS_PARAGRAPH
Definition DOSExe.h:6

DosHdrWrapper.h

MappedExe.h

AbstractByteBuffer
Definition AbstractByteBuffer.h:32

DOSExeBuilder
Definition DOSExe.h:8

DOSExeBuilder::DOSExeBuilder
DOSExeBuilder()
Definition DOSExe.h:10

DOSExeBuilder::build
virtual Executable * build(AbstractByteBuffer *buf)
Definition DOSExe.cpp:18

DOSExeBuilder::typeName
QString typeName()
Definition DOSExe.h:13

DOSExeBuilder::signatureMatches
virtual bool signatureMatches(AbstractByteBuffer *buf)
Definition DOSExe.cpp:4

DOSExe
Definition DOSExe.h:19

DOSExe::codeOffset
offset_t codeOffset()
Definition DOSExe.h:56

DOSExe::dosHeaderOffset
virtual offset_t dosHeaderOffset()
Definition DOSExe.h:52

DOSExe::rvaToRaw
virtual offset_t rvaToRaw(offset_t rva)
Definition DOSExe.h:37

DOSExe::wrap
virtual void wrap()
Definition DOSExe.cpp:40

DOSExe::DOSExe
DOSExe(AbstractByteBuffer *v_buf)
Definition DOSExe.cpp:34

DOSExe::moduleSize
bufsize_t moduleSize()
Definition DOSExe.h:57

DOSExe::m_dosHdr
IMAGE_DOS_HEADER * m_dosHdr
Definition DOSExe.h:70

DOSExe::peSignatureOffset
offset_t peSignatureOffset()
Definition DOSExe.cpp:60

DOSExe::getImageBase
virtual offset_t getImageBase(bool recalculate=false)
Definition DOSExe.h:47

DOSExe::getArch
virtual exe_arch getArch()
Definition DOSExe.h:30

DOSExe::dosHdrWrapper
DosHdrWrapper * dosHdrWrapper
Definition DOSExe.h:69

DOSExe::getEntryPoint
virtual offset_t getEntryPoint(Executable::addr_type aType=Executable::RVA)
Definition DOSExe.h:48

DOSExe::rawToRva
virtual offset_t rawToRva(offset_t raw)
Definition DOSExe.h:36

DOSExe::getMappedSize
virtual bufsize_t getMappedSize(Executable::addr_type aType)
Definition DOSExe.h:39

DOSExe::WRAPPERS
WRAPPERS
Definition DOSExe.h:21

DOSExe::WR_NONE
@ WR_NONE
Definition DOSExe.h:22

DOSExe::COUNT_WRAPPERS
@ COUNT_WRAPPERS
Definition DOSExe.h:24

DOSExe::WR_DOS_HDR
@ WR_DOS_HDR
Definition DOSExe.h:23

DOSExe::~DOSExe
virtual ~DOSExe()
Definition DOSExe.h:28

DOSExe::getAlignment
virtual bufsize_t getAlignment(Executable::addr_type aType) const
Definition DOSExe.h:46

DosHdrWrapper
Definition DosHdrWrapper.h:9

ExeBuilder
Definition Executable.h:14

ExeWrappersContainer::WR_NONE
@ WR_NONE
Definition MappedExe.h:11

Executable
Definition Executable.h:26

Executable::addr_type
addr_type
Definition Executable.h:41

Executable::RVA
@ RVA
Definition Executable.h:44

Executable::RAW
@ RAW
Definition Executable.h:43

Executable::exe_arch
exe_arch
Definition Executable.h:35

Executable::ARCH_INTEL
@ ARCH_INTEL
Definition Executable.h:37

Executable::getContentSize
virtual bufsize_t getContentSize()
Definition Executable.h:59

MappedExe
Definition MappedExe.h:30