these-android-re/androscalpel
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

WIP: fix data size

Browse source
This commit is contained in:
Jean-Marie Mineau 2024-02-09 18:01:19 +01:00
parent 93f70040fd
commit d8a4727d59
Signed by: histausse
GPG key ID: B66AEEDA9B645AD2
3 changed files with 27 additions and 4 deletions
Download patch file Download diff file Expand all files Collapse all files

11
androscalpel/src/dex_writer.rs
View file

@ -2498,7 +2498,9 @@ impl DexWriter {
} }
self.gen_type_list_section()?; self.gen_type_list_section()?;
self.gen_map_list()?; self.gen_map_list()?; // TODO TODO TODO not good, the values are not yes set because:
// - alignment
// - F***ing class_data that change size during linking
// From now on, all section are generated and the value in section_manager do not change, // From now on, all section are generated and the value in section_manager do not change,
// except for class data items, because F (see doc of self.corrected_class_data_offset). // except for class data items, because F (see doc of self.corrected_class_data_offset).
@ -2577,6 +2579,7 @@ impl DexWriter {
handle.serialize(&mut buffer)?; handle.serialize(&mut buffer)?;
} }
// MapList // MapList
self.check_section_offset(&buffer, Section::Data);
self.check_section_offset(&buffer, Section::MapList); self.check_section_offset(&buffer, Section::MapList);
Self::fix_section_alignement(&mut buffer, Section::MapList)?; Self::fix_section_alignement(&mut buffer, Section::MapList)?;
self.map_list.serialize(&mut buffer)?; self.map_list.serialize(&mut buffer)?;
@ -2646,6 +2649,12 @@ impl DexWriter {
Self::fix_section_alignement(&mut buffer, Section::HiddenapiClassDataItem)?; Self::fix_section_alignement(&mut buffer, Section::HiddenapiClassDataItem)?;
*/ */
let end_data = buffer.position();
assert_eq!(
end_data as u32,
self.header.data_off + self.header.data_size
);
// compute signature // compute signature
buffer.seek(SeekFrom::Start(8 + 4 + 20))?; buffer.seek(SeekFrom::Start(8 + 4 + 20))?;
let mut hasher = Sha1::new(); let mut hasher = Sha1::new();

18
androscalpel_serializer/src/file_reader.rs
View file

@ -377,12 +377,26 @@ impl<'a> DexFileReader<'a> {
pub fn get_struct_at_offset<T: Serializable>(&self, offset: u32) -> Result<T> { pub fn get_struct_at_offset<T: Serializable>(&self, offset: u32) -> Result<T> {
let mut buffer = Cursor::new(self.data); let mut buffer = Cursor::new(self.data);
buffer.seek(SeekFrom::Start(offset as u64)).unwrap(); buffer.seek(SeekFrom::Start(offset as u64)).unwrap();
T::deserialize(&mut buffer).map_err(|err| { let r = T::deserialize(&mut buffer).map_err(|err| {
Error::DeserializationError(format!( Error::DeserializationError(format!(
"Failed to deserialize {} at 0x{:x}: {err}", "Failed to deserialize {} at 0x{:x}: {err}",
std::any::type_name::<T>(), std::any::type_name::<T>(),
offset offset
)) ))
}) });
if buffer.position() as u32 > self.header.data_off + self.header.data_size {
// Return error? Android won't run an apk that does not respect this condition for most
// (all?) struct, but a lot a tools don't care.
warn!(
"Deserialized {} at 0x{:x}, but ended up reading out of the data section \
(0x{:x} to 0x{:x}, current cursor at 0x{:x}",
std::any::type_name::<T>(),
offset,
self.header.data_off,
self.header.data_off + self.header.data_size,
buffer.position()
);
}
r
} }
} }

2
test.py
View file

@ -30,7 +30,7 @@ clazz = apk.classes[clazz_id]
method = clazz.virtual_methods[method_id] method = clazz.virtual_methods[method_id]
code = method.code code = method.code
logging.getLogger().setLevel(logging.ERROR) logging.getLogger().setLevel(logging.WARNING)
print(f"[+] Code of {method_id} ") print(f"[+] Code of {method_id} ")
for i in code.insns: for i in code.insns: