yannweb
/
asmsh
Watch 1
Star 0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
A shell that runs x86_64 assembly
c
x86-64
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
54 Commits
2 Branches
Tree: 32ffdfbd8a
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '32ffdfbd8a'
${ noResults }
asmsh/asmsh.h

asmsh.h 4.5KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161 
  1. /**@page asmsh

  2. @brief A shell that runs assembly

  3. @section SYNOPSIS

  4. asmsh [OPTIONS]...

  5. @section DESCRIPTION

  6. A shell designed to run assembly (for the moment only x86_64 is supported).

  7. 

  8. A simple programm is spawned by the shell, and each instructions are runned in the

  9. subprocess environment.

  10. 

  11. @section man_ui USER INTERFACE

  12. 

  13. For the moment, the UI is implemented using GNU readline with basic support for

  14. completion (using tab).

  15. 

  16. The prompt is composed like "asmsh@RIPVAL > " where RIPVAL is the RIP register (

  17. Instruction Pointer ) value in hexadecimal.

  18. 

  19. Other readline(3) features are available like up arrow to display previous commands,

  20. C^R for history search, etc.

  21. 

  22. @section INSTRUCTIONS

  23. 

  24. The shell uses the GNU as compiler from binutils, the instructions syntax

  25. follows GAS syntax.

  26. 

  27. For the moment GAS can only be used with the AT&T syntax.

  28. 

  29. Details on x86 syntax can be found in GAS documentation at

  30. <pre>

  31. [https://sourceware.org/binutils/docs-2.40/as.html#i386_002dSyntax]

  32. </pre>

  33. 

  34. The list & names of the registers can be found at the same place

  35. <pre>

  36. [https://sourceware.org/binutils/docs-2.40/as.html#i386_002dRegs]

  37. </pre>

  38. 

  39. The list & documentation of the instructions for the x86_64 platform can be

  40. found in the 1st volume of "AMD64 Architecture Programmer’s Manual", in section

  41. 3.3 Instruction summary

  42. <pre>

  43. [https://www.amd.com/en/support/tech-docs/amd64-architecture-programmers-manual-volumes-1-5]

  44. </pre>

  45. 

  46. Or in the Intel's equivalent document, namely the 

  47. "Intel® 64 and IA-32 Architectures Software Developer’s Manual"

  48. <pre>

  49. [https://cdrdv2-public.intel.com/774494/325462-sdm-vol-1-2abcd-3abcd.pdf]

  50. </pre>

  51. 

  52. @subsection man_reljmp Relative jumps

  53. 

  54. For the moment there is no way to define symbols, so jumps can only be relative to

  55. the current address. The current address is expressed with the '.' character in an

  56. expression.

  57. 

  58. Relative jumps can be expressed using the syntax :

  59. 

  60. <pre>

  61. jmp . - 8

  62. jnz . + 32

  63. </pre>

  64. 

  65. @section shell_cmds COMMANDS

  66. 

  67. @par .bytecode

  68. Compile an instruction and display it's bytecode

  69. @par .flags

  70. Display the CPU flags

  71. @par .help [COMMAND]

  72. Display the builtin help or the help of the command gioven as argument

  73. @par .maps

  74. Display process memory maps

  75. @par .quit

  76. Exit the shell

  77. @par .regs

  78. Display the CPU registers values

  79. @par .syscalls

  80. Print syscalls names and numbers

  81. @par .reset

  82. Reset the shell (spawn a new process)

  83. 

  84. @section EXAMPLES

  85. 

  86. @subsection example_exit Exit with a specific status

  87. 

  88. <pre>

  89. asmsh@0x7f55d2433000 > mov $60, \%rax

  90. asmsh@0x7f55d2433005 > mov $0x2a, \%rdi

  91. asmsh@0x7f55d243300a > syscall

  92. Child exited with status 42

  93. Exit with status 42

  94. </pre>

  95. 

  96. @subsection example_hello Print a message to stdout

  97. 

  98. <pre>

  99. asmsh@0x7f6e312e5000 > mov $0x0a6f6c6c, \%rax

  100. asmsh@0x7f6e312e5005 > shl $(8*2), \%rax

  101. asmsh@0x7f6e312e5009 > or $0x6548, \%rax

  102. asmsh@0x7f6e312e500f > push \%rax

  103. asmsh@0x7f6e312e5010 > mov $1, \%rax

  104. asmsh@0x7f6e312e5015 > mov \%rax, \%rdi

  105. asmsh@0x7f6e312e5018 > mov \%rsp, \%rsi

  106. asmsh@0x7f6e312e501b > mov $6, \%rdx

  107. asmsh@0x7f6e312e5020 > syscall

  108. Hello

  109. asmsh@0x7f6e312e5022 > 

  110. </pre>

  111. 

  112. @subsection example_loop Make a loop and use commands

  113. 

  114. <pre>

  115. asmsh@0x7f3020bec000 > .regs \%rbx

  116. rbx: 0000000000000000

  117. asmsh@0x7f3020bec000 > mov $6, \%rcx

  118. asmsh@0x7f3020bec005 > add $0xb, \%rbx

  119. asmsh@0x7f3020bec009 > loop . -4

  120. asmsh@0x7f3020bec005 > .bytecode loop . -4

  121. loop . -4 = ( 2 Bytes) e2fa.... ........  ........ ......

  122. asmsh@0x7f3020bec005 > .breakpoint . + 6

  123. INFO: Set breakpoint @ 00007F3020BEC00B

  124. asmsh@0x7f3020bec005 > .run

  125. INFO: Breakpoint 00007f3020bec00b reached

  126. asmsh@0x7f3020bec00b > .regs \%rbx

  127. rbx: 0000000000000042

  128. </pre>

  129. 

  130. @section TODO TODOLIST

  131. 

  132. @todo Implement command for memory read/dump

  133. @todo Implement symbols for jumps

  134. @todo Add support for label declarations & references

  135. @todo Implement write without exec

  136. @todo Implement function declaration

  137. @todo Add switch between intel's & AT&T's syntaxes.

  138. @todo Implement a command to run until syscall only (and another for run until

  139. 		breakpoint or syscall ?)

  140. @todo Rationalise commands argument parsing (at the moment .breakpoints allready uses special stuff :/)

  141. 

  142. @section AUTHOR

  143. Written by Yann Weber &lt;yann.weber@members.fsf.org&gt;

  144. 

  145. @section COPYRIGHT

  146. Copyright  ©  2023  Weber Yann  License GPLv3+: GNU GPL version 3 or later 

  147. &lt;http://gnu.org/licenses/gpl.html>.

  148. 

  149. This is free software: you are free  to  change  and  redistribute  it.

  150. There is NO WARRANTY, to the extent permitted by law.

  151. 

  152. */

  153. 

  154. /**@mainpage

  155.  * @brief Asmsh a shell that runs assembly

  156.  *

  157.  * @section Description

  158.  *

  159.  * A simple programm is spawned by the shell, and each instructions are runned in the

  160.  * subprocess environment.

  161.  */