Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Added a fix for an issue where certain binaries will timeout due to rpyc or DragodisError timeouts. #5

Open
wants to merge 9 commits into
base: master
Choose a base branch
from
+29 −9
Open

Added a fix for an issue where certain binaries will timeout due to rpyc or DragodisError timeouts. #5

Changes from all commits
Commits
Show all changes
9 commits
Select commit Hold shift + click to select a range
cd4f8a3
Added a fix for ida timeout issue
agski331 Jan 24, 2025
2f6af5e
Moved auto analysis to analyze() function
agski331 Jan 27, 2025
5da9634
attempted to allow timeout parameter
agski331 Jan 27, 2025
405b565
Made timeout parameter allow None
agski331 Jan 27, 2025
2ec9c1f
Removed old comments
agski331 Jan 27, 2025
36fb788
Removed unneeded lines
agski331 Jan 27, 2025
e2cb298
Code cleanups & bugfixes
agski331 Jan 27, 2025
614201c
Changed idc.auto_wait() to async()
agski331 Jan 28, 2025
ffcf662
moved _running flag to before analyze
agski331 Feb 7, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
38 changes: 29 additions & 9 deletions dragodis/ida/disassembler.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -184,7 +184,7 @@ class IDARemoteDisassembler(IDADisassembler):
"sync_request_timeout": 60
}

def __init__(self, input_path, is_64_bit=None, ida_path=None, timeout=None, processor=None, detach=False, **unused):
def __init__(self, input_path, is_64_bit=None, ida_path=None, timeout=60, processor=None, detach=False, analyze=True, **unused):
"""
Initializes IDA disassembler.

Expand All @@ -199,6 +199,7 @@ def __init__(self, input_path, is_64_bit=None, ida_path=None, timeout=None, proc
:param detach: Detach the IDA subprocess from the parent process group.
This will cause signals to no longer propagate.
(Linux only)
:param analyze: Determines whether autoanalysis should be conducted on the input file at IDA startup.
"""
super().__init__(input_path, processor=processor)
self._ida_path = ida_path or os.environ.get("IDA_INSTALL_DIR", os.environ.get("IDA_DIR"))
Expand All @@ -208,9 +209,11 @@ def __init__(self, input_path, is_64_bit=None, ida_path=None, timeout=None, proc
"Please provide it during instantiation or set the IDA_INSTALL_DIR environment variable."
)
self._script_path = ida_server.__file__
if timeout is not None:
self._rpyc_config = dict(self._rpyc_config)
self._rpyc_config["sync_request_timeout"] = timeout
self._rpyc_config = dict(self._rpyc_config)
if timeout is None or timeout <= 0:
#Treat zero timeouts or -1 timeouts as infinite.
timeout = None
self._rpyc_config["sync_request_timeout"] = timeout

# Determine if 64 bit.
if is_64_bit is None:
Expand Down Expand Up @@ -240,6 +243,7 @@ def __init__(self, input_path, is_64_bit=None, ida_path=None, timeout=None, proc
self._running = False

self._detach = detach and sys.platform != "win32"
self._analyze = analyze
self._socket_path = None
self._process = None
self._bridge = None
Expand Down Expand Up @@ -348,7 +352,7 @@ def _initialize_bridge(self):
self._ida_intel: ida_intel = self._bridge.root.getmodule("ida_intel")
self._ida_helpers: ida_helpers = self._bridge.root.getmodule("ida_helpers")

def unix_connect(self, socket_path, retry=10) -> rpyc.Connection:
def unix_connect(self, socket_path, retry=20) -> rpyc.Connection:
"""
Connects to bridge using unix socket.
"""
Expand All @@ -366,7 +370,7 @@ def unix_connect(self, socket_path, retry=10) -> rpyc.Connection:

raise DragodisError(f"Could not connect to {socket_path} after {retry} tries.")

def win_connect(self, pipe_name, retry=10) -> rpyc.Connection:
def win_connect(self, pipe_name, retry=20) -> rpyc.Connection:
"""
Connects to bridge using Windows named pipe.
"""
Expand Down Expand Up @@ -409,6 +413,7 @@ def start(self):
command = [
self._ida_exe,
"-P",
"-a",
"-A",
f'-S""{script_path}" "{pipe_name or socket_path}""',
f'-L"{self.input_path}_ida.log"',
Expand All @@ -429,7 +434,7 @@ def start(self):
atexit.register(self._process.kill)
finally:
os.chdir(orig_cwd)

logger.debug(f"Initializing IDA Bridge connection...")
if socket_path:
self._bridge = self.unix_connect(socket_path)
Expand All @@ -439,12 +444,15 @@ def start(self):
self._bridge = self.win_connect(pipe_name)
else:
raise RuntimeError("Unexpected error. Failed to setup socket or pipe.")

self._initialize_bridge()
# Keep a hold of the root remote object to prevent rpyc from prematurely closing on us.
self._root = self._bridge.root
self._running = True
self._idc.auto_wait()

if self._analyze:
self.analyze()
else:
logger.debug('Skipping autoanalysis.')
logger.debug("IDA Disassembler ready!")

def stop(self, *exc_info):
Expand Down Expand Up @@ -506,6 +514,18 @@ def _async(self, proxy_func) -> Callable[_, rpyc.AsyncResult]:
Good for functions that we don't care to get results back from.
"""
return rpyc.async_(proxy_func)

def analyze(self) -> None:
"""
Instruct IDA to initiate and wait for auto analysis completion.
"""
if not self._running:
logger.error('Cannot run IDARemoteDisassembler.analyze() without a connected IDA instance.')
return
logger.debug('Running autoanalysis.')
self._idc.set_flag(self._idc.INF_GENFLAGS, self._idc.INFFL_AUTO, 1)
#To avoid timeouts, run it as async but block until complete here.
self._async(self._idc.auto_wait)().wait()

def teleport(self, func: Callable) -> Callable:
def wrapper(*args, **kwargs):
Expand Down