Theodosius
v3.0
Jit linker, symbol mapper, and obfuscator
include
obf
passes
jcc_rewrite_pass.hpp
Go to the documentation of this file.
1
// Copyright (c) 2022, _xeroxz
2
// All rights reserved.
3
//
4
// Redistribution and use in source and binary forms, with or without
5
// modification, are permitted provided that the following conditions are met:
6
//
7
// 1. Redistributions of source code must retain the above copyright notice,
8
// this list of conditions and the following disclaimer.
9
//
10
// 2. Redistributions in binary form must reproduce the above copyright notice,
11
// this list of conditions and the following disclaimer in the documentation
12
// and/or other materials provided with the distribution.
13
//
14
// 3. Neither the name of the copyright holder nor the names of its
15
// contributors may be used to endorse or promote products derived from
16
// this software without specific prior written permission.
17
//
18
// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
19
// AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
20
// IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
21
// ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE
22
// LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
23
// CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
24
// SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
25
// INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
26
// CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
27
// ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
28
// POSSIBILITY OF SUCH DAMAGE.
29
//
30
31
#pragma once
32
#include <
obf/pass.hpp
>
33
34
namespace
theo::obf
{
35
/// <summary>
36
/// jcc rewrite pass which rewrites rip relative jcc's so that they are position
37
/// independent.
38
///
39
/// given the following code:
40
///
41
/// jnz label1
42
/// ; other code goes here
43
/// label1:
44
/// ; more code here
45
///
46
/// the jnz instruction will be rewritten so that the following code is
47
/// generated:
48
///
49
/// jnz br2
50
/// br1:
51
/// jmp [rip] ; address after this instruction contains the address
52
/// ; of the instruction after the jcc.
53
/// br2:
54
/// jmp [rip] ; address after this instruction contains the address of where
55
/// ; branch 2 is located.
56
///
57
/// its important to note that other passes will encrypt (transform) the address
58
/// of the next instruction. There is actually no jmp [rip] either, push/ret is
59
/// used.
60
/// </summary>
61
class
jcc_rewrite_pass_t
:
public
pass_t
{
62
explicit
jcc_rewrite_pass_t
() :
pass_t
(
decomp::sym_type_t::instruction
) {}
63
64
public
:
65
static
jcc_rewrite_pass_t
*
get
();
66
void
run
(
decomp::symbol_t
* sym);
67
};
68
}
// namespace theo::obf
Generated by
1.9.3
1.9.3