RubyGems - metasm - Versions diffs - 1.0.0 → 1.0.5 - Mend

metasm 1.0.0 → 1.0.5

Files changed (276) hide show

checksums.yaml +7 -0
checksums.yaml.gz.sig +0 -0
data.tar.gz.sig +3 -0
data/.gitignore +3 -0
data/.hgtags +3 -0
data/Gemfile +3 -0
data/INSTALL +61 -0
data/LICENCE +458 -0
data/README +29 -21
data/Rakefile +10 -0
data/TODO +10 -12
data/doc/code_organisation.txt +3 -1
data/doc/core/DynLdr.txt +247 -0
data/doc/core/ExeFormat.txt +43 -0
data/doc/core/Expression.txt +220 -0
data/doc/core/GNUExports.txt +27 -0
data/doc/core/Ia32.txt +236 -0
data/doc/core/SerialStruct.txt +108 -0
data/doc/core/VirtualString.txt +145 -0
data/doc/core/WindowsExports.txt +61 -0
data/doc/core/index.txt +1 -0
data/doc/style.css +6 -3
data/doc/usage/debugger.txt +327 -0
data/doc/usage/index.txt +1 -0
data/doc/use_cases.txt +2 -2
data/metasm.gemspec +23 -0
data/{lib/metasm.rb → metasm.rb} +15 -3
data/{lib/metasm → metasm}/compile_c.rb +15 -9
data/metasm/cpu/arc.rb +8 -0
data/metasm/cpu/arc/decode.rb +404 -0
data/metasm/cpu/arc/main.rb +191 -0
data/metasm/cpu/arc/opcodes.rb +588 -0
data/metasm/cpu/arm.rb +14 -0
data/{lib/metasm → metasm/cpu}/arm/debug.rb +2 -2
data/{lib/metasm → metasm/cpu}/arm/decode.rb +15 -18
data/{lib/metasm → metasm/cpu}/arm/encode.rb +23 -8
data/{lib/metasm → metasm/cpu}/arm/main.rb +3 -6
data/metasm/cpu/arm/opcodes.rb +324 -0
data/{lib/metasm → metasm/cpu}/arm/parse.rb +25 -13
data/{lib/metasm → metasm/cpu}/arm/render.rb +2 -2
data/metasm/cpu/arm64.rb +15 -0
data/metasm/cpu/arm64/debug.rb +38 -0
data/metasm/cpu/arm64/decode.rb +285 -0
data/metasm/cpu/arm64/encode.rb +41 -0
data/metasm/cpu/arm64/main.rb +105 -0
data/metasm/cpu/arm64/opcodes.rb +232 -0
data/metasm/cpu/arm64/parse.rb +20 -0
data/metasm/cpu/arm64/render.rb +95 -0
data/{lib/metasm/mips/compile_c.rb → metasm/cpu/bpf.rb} +4 -2
data/metasm/cpu/bpf/decode.rb +110 -0
data/metasm/cpu/bpf/main.rb +60 -0
data/metasm/cpu/bpf/opcodes.rb +81 -0
data/metasm/cpu/bpf/render.rb +30 -0
data/{lib/metasm/ppc.rb → metasm/cpu/cy16.rb} +2 -4
data/metasm/cpu/cy16/decode.rb +247 -0
data/metasm/cpu/cy16/main.rb +63 -0
data/metasm/cpu/cy16/opcodes.rb +78 -0
data/metasm/cpu/cy16/render.rb +30 -0
data/metasm/cpu/dalvik.rb +11 -0
data/{lib/metasm → metasm/cpu}/dalvik/decode.rb +34 -34
data/{lib/metasm → metasm/cpu}/dalvik/main.rb +71 -4
data/{lib/metasm → metasm/cpu}/dalvik/opcodes.rb +21 -12
data/{lib/metasm/mips.rb → metasm/cpu/ebpf.rb} +3 -4
data/metasm/cpu/ebpf/debug.rb +61 -0
data/metasm/cpu/ebpf/decode.rb +142 -0
data/metasm/cpu/ebpf/main.rb +58 -0
data/metasm/cpu/ebpf/opcodes.rb +97 -0
data/metasm/cpu/ebpf/render.rb +36 -0
data/metasm/cpu/ia32.rb +17 -0
data/{lib/metasm → metasm/cpu}/ia32/compile_c.rb +23 -9
data/{lib/metasm → metasm/cpu}/ia32/debug.rb +44 -6
data/{lib/metasm → metasm/cpu}/ia32/decode.rb +342 -128
data/{lib/metasm → metasm/cpu}/ia32/decompile.rb +75 -53
data/{lib/metasm → metasm/cpu}/ia32/encode.rb +19 -13
data/{lib/metasm → metasm/cpu}/ia32/main.rb +66 -8
data/metasm/cpu/ia32/opcodes.rb +1424 -0
data/{lib/metasm → metasm/cpu}/ia32/parse.rb +55 -17
data/{lib/metasm → metasm/cpu}/ia32/render.rb +32 -5
data/metasm/cpu/mcs51.rb +8 -0
data/metasm/cpu/mcs51/decode.rb +99 -0
data/metasm/cpu/mcs51/main.rb +87 -0
data/metasm/cpu/mcs51/opcodes.rb +120 -0
data/metasm/cpu/mips.rb +14 -0
data/metasm/cpu/mips/debug.rb +42 -0
data/{lib/metasm → metasm/cpu}/mips/decode.rb +59 -38
data/{lib/metasm → metasm/cpu}/mips/encode.rb +4 -3
data/{lib/metasm → metasm/cpu}/mips/main.rb +13 -6
data/{lib/metasm → metasm/cpu}/mips/opcodes.rb +87 -18
data/{lib/metasm → metasm/cpu}/mips/parse.rb +1 -1
data/{lib/metasm → metasm/cpu}/mips/render.rb +1 -1
data/{lib/metasm/dalvik.rb → metasm/cpu/msp430.rb} +1 -1
data/metasm/cpu/msp430/decode.rb +243 -0
data/metasm/cpu/msp430/main.rb +62 -0
data/metasm/cpu/msp430/opcodes.rb +101 -0
data/metasm/cpu/openrisc.rb +11 -0
data/metasm/cpu/openrisc/debug.rb +106 -0
data/metasm/cpu/openrisc/decode.rb +182 -0
data/metasm/cpu/openrisc/decompile.rb +350 -0
data/metasm/cpu/openrisc/main.rb +70 -0
data/metasm/cpu/openrisc/opcodes.rb +109 -0
data/metasm/cpu/openrisc/render.rb +37 -0
data/{lib/metasm → metasm/cpu}/pic16c/decode.rb +6 -7
data/{lib/metasm → metasm/cpu}/pic16c/main.rb +0 -0
data/{lib/metasm → metasm/cpu}/pic16c/opcodes.rb +1 -1
data/metasm/cpu/ppc.rb +11 -0
data/{lib/metasm → metasm/cpu}/ppc/decode.rb +18 -37
data/{lib/metasm → metasm/cpu}/ppc/decompile.rb +3 -3
data/{lib/metasm → metasm/cpu}/ppc/encode.rb +2 -2
data/{lib/metasm → metasm/cpu}/ppc/main.rb +23 -18
data/{lib/metasm → metasm/cpu}/ppc/opcodes.rb +11 -6
data/metasm/cpu/ppc/parse.rb +55 -0
data/metasm/cpu/python.rb +8 -0
data/metasm/cpu/python/decode.rb +116 -0
data/metasm/cpu/python/main.rb +36 -0
data/metasm/cpu/python/opcodes.rb +180 -0
data/{lib/metasm → metasm/cpu}/sh4.rb +1 -1
data/{lib/metasm → metasm/cpu}/sh4/decode.rb +50 -23
data/{lib/metasm → metasm/cpu}/sh4/main.rb +38 -27
data/{lib/metasm → metasm/cpu}/sh4/opcodes.rb +7 -8
data/metasm/cpu/st20.rb +9 -0
data/metasm/cpu/st20/decode.rb +173 -0
data/metasm/cpu/st20/decompile.rb +283 -0
data/metasm/cpu/st20/main.rb +37 -0
data/metasm/cpu/st20/opcodes.rb +140 -0
data/{lib/metasm/arm.rb → metasm/cpu/webasm.rb} +4 -5
data/metasm/cpu/webasm/debug.rb +31 -0
data/metasm/cpu/webasm/decode.rb +321 -0
data/metasm/cpu/webasm/decompile.rb +386 -0
data/metasm/cpu/webasm/encode.rb +104 -0
data/metasm/cpu/webasm/main.rb +81 -0
data/metasm/cpu/webasm/opcodes.rb +214 -0
data/metasm/cpu/x86_64.rb +15 -0
data/{lib/metasm → metasm/cpu}/x86_64/compile_c.rb +40 -25
data/{lib/metasm → metasm/cpu}/x86_64/debug.rb +4 -4
data/{lib/metasm → metasm/cpu}/x86_64/decode.rb +58 -15
data/{lib/metasm → metasm/cpu}/x86_64/encode.rb +59 -28
data/{lib/metasm → metasm/cpu}/x86_64/main.rb +18 -6
data/metasm/cpu/x86_64/opcodes.rb +138 -0
data/{lib/metasm → metasm/cpu}/x86_64/parse.rb +12 -4
data/metasm/cpu/x86_64/render.rb +35 -0
data/metasm/cpu/z80.rb +9 -0
data/metasm/cpu/z80/decode.rb +286 -0
data/metasm/cpu/z80/main.rb +67 -0
data/metasm/cpu/z80/opcodes.rb +224 -0
data/metasm/cpu/z80/render.rb +48 -0
data/{lib/metasm/os/main.rb → metasm/debug.rb} +201 -407
data/{lib/metasm → metasm}/decode.rb +104 -24
data/{lib/metasm → metasm}/decompile.rb +804 -478
data/{lib/metasm → metasm}/disassemble.rb +385 -170
data/{lib/metasm → metasm}/disassemble_api.rb +684 -105
data/{lib/metasm → metasm}/dynldr.rb +231 -138
data/{lib/metasm → metasm}/encode.rb +20 -5
data/{lib/metasm → metasm}/exe_format/a_out.rb +9 -6
data/{lib/metasm → metasm}/exe_format/autoexe.rb +3 -0
data/{lib/metasm → metasm}/exe_format/bflt.rb +57 -27
data/{lib/metasm → metasm}/exe_format/coff.rb +35 -7
data/{lib/metasm → metasm}/exe_format/coff_decode.rb +70 -23
data/{lib/metasm → metasm}/exe_format/coff_encode.rb +24 -22
data/{lib/metasm → metasm}/exe_format/dex.rb +26 -8
data/{lib/metasm → metasm}/exe_format/dol.rb +1 -0
data/{lib/metasm → metasm}/exe_format/elf.rb +108 -58
data/{lib/metasm → metasm}/exe_format/elf_decode.rb +202 -36
data/{lib/metasm → metasm}/exe_format/elf_encode.rb +126 -32
data/metasm/exe_format/gb.rb +65 -0
data/metasm/exe_format/javaclass.rb +424 -0
data/{lib/metasm → metasm}/exe_format/macho.rb +218 -16
data/{lib/metasm → metasm}/exe_format/main.rb +28 -3
data/{lib/metasm → metasm}/exe_format/mz.rb +2 -0
data/{lib/metasm → metasm}/exe_format/nds.rb +7 -4
data/{lib/metasm → metasm}/exe_format/pe.rb +96 -11
data/metasm/exe_format/pyc.rb +167 -0
data/{lib/metasm → metasm}/exe_format/serialstruct.rb +67 -14
data/{lib/metasm → metasm}/exe_format/shellcode.rb +7 -3
data/metasm/exe_format/shellcode_rwx.rb +114 -0
data/metasm/exe_format/swf.rb +205 -0
data/metasm/exe_format/wasm.rb +402 -0
data/{lib/metasm → metasm}/exe_format/xcoff.rb +7 -7
data/metasm/exe_format/zip.rb +335 -0
data/metasm/gui.rb +13 -0
data/{lib/metasm → metasm}/gui/cstruct.rb +35 -41
data/{lib/metasm → metasm}/gui/dasm_coverage.rb +11 -11
data/{lib/metasm → metasm}/gui/dasm_decomp.rb +177 -114
data/{lib/metasm → metasm}/gui/dasm_funcgraph.rb +0 -0
data/metasm/gui/dasm_graph.rb +1754 -0
data/{lib/metasm → metasm}/gui/dasm_hex.rb +16 -12
data/{lib/metasm → metasm}/gui/dasm_listing.rb +43 -28
data/{lib/metasm → metasm}/gui/dasm_main.rb +360 -77
data/{lib/metasm → metasm}/gui/dasm_opcodes.rb +5 -19
data/{lib/metasm → metasm}/gui/debug.rb +109 -34
data/{lib/metasm → metasm}/gui/gtk.rb +174 -44
data/{lib/metasm → metasm}/gui/qt.rb +14 -4
data/{lib/metasm → metasm}/gui/win32.rb +180 -43
data/{lib/metasm → metasm}/gui/x11.rb +59 -59
data/{lib/metasm → metasm}/main.rb +421 -286
data/metasm/os/emulator.rb +175 -0
data/{lib/metasm/os/remote.rb → metasm/os/gdbremote.rb} +146 -54
data/{lib/metasm → metasm}/os/gnu_exports.rb +1 -1
data/{lib/metasm → metasm}/os/linux.rb +628 -151
data/metasm/os/main.rb +335 -0
data/{lib/metasm → metasm}/os/windows.rb +151 -58
data/{lib/metasm → metasm}/os/windows_exports.rb +141 -0
data/{lib/metasm → metasm}/parse.rb +49 -36
data/{lib/metasm → metasm}/parse_c.rb +405 -246
data/{lib/metasm → metasm}/preprocessor.rb +71 -41
data/{lib/metasm → metasm}/render.rb +14 -38
data/misc/hexdump.rb +4 -3
data/misc/lint.rb +58 -0
data/misc/objdiff.rb +4 -1
data/misc/objscan.rb +1 -1
data/misc/openrisc-parser.rb +79 -0
data/misc/txt2html.rb +9 -7
data/samples/bindiff.rb +3 -4
data/samples/dasm-plugins/bindiff.rb +15 -0
data/samples/dasm-plugins/bookmark.rb +133 -0
data/samples/dasm-plugins/c_constants.rb +57 -0
data/samples/dasm-plugins/colortheme_solarized.rb +125 -0
data/samples/dasm-plugins/cppobj_funcall.rb +60 -0
data/samples/dasm-plugins/dasm_all.rb +70 -0
data/samples/dasm-plugins/demangle_cpp.rb +31 -0
data/samples/dasm-plugins/deobfuscate.rb +251 -0
data/samples/dasm-plugins/dump_text.rb +35 -0
data/samples/dasm-plugins/export_graph_svg.rb +86 -0
data/samples/dasm-plugins/findgadget.rb +75 -0
data/samples/dasm-plugins/hl_opcode.rb +32 -0
data/samples/dasm-plugins/hotfix_gtk_dbg.rb +19 -0
data/samples/dasm-plugins/imm2off.rb +34 -0
data/samples/dasm-plugins/match_libsigs.rb +93 -0
data/samples/dasm-plugins/patch_file.rb +95 -0
data/samples/dasm-plugins/scanfuncstart.rb +36 -0
data/samples/dasm-plugins/scanxrefs.rb +29 -0
data/samples/dasm-plugins/selfmodify.rb +197 -0
data/samples/dasm-plugins/stringsxrefs.rb +28 -0
data/samples/dasmnavig.rb +1 -1
data/samples/dbg-apihook.rb +24 -9
data/samples/dbg-plugins/heapscan.rb +283 -0
data/samples/dbg-plugins/heapscan/compiled_heapscan_lin.c +155 -0
data/samples/dbg-plugins/heapscan/compiled_heapscan_win.c +128 -0
data/samples/dbg-plugins/heapscan/graphheap.rb +616 -0
data/samples/dbg-plugins/heapscan/heapscan.rb +709 -0
data/samples/dbg-plugins/heapscan/winheap.h +174 -0
data/samples/dbg-plugins/heapscan/winheap7.h +307 -0
data/samples/dbg-plugins/trace_func.rb +214 -0
data/samples/disassemble-gui.rb +48 -7
data/samples/disassemble.rb +31 -6
data/samples/dump_upx.rb +24 -12
data/samples/dynamic_ruby.rb +35 -27
data/samples/elfencode.rb +15 -0
data/samples/emubios.rb +251 -0
data/samples/emudbg.rb +127 -0
data/samples/exeencode.rb +6 -5
data/samples/factorize-headers-peimports.rb +1 -1
data/samples/lindebug.rb +186 -391
data/samples/metasm-shell.rb +68 -57
data/samples/peldr.rb +2 -2
data/tests/all.rb +1 -1
data/tests/arc.rb +26 -0
data/tests/dynldr.rb +22 -4
data/tests/expression.rb +57 -0
data/tests/graph_layout.rb +285 -0
data/tests/ia32.rb +80 -26
data/tests/mcs51.rb +27 -0
data/tests/mips.rb +10 -3
data/tests/preprocessor.rb +18 -0
data/tests/x86_64.rb +66 -18
metadata +465 -219
metadata.gz.sig +2 -0
data/lib/metasm/arm/opcodes.rb +0 -177
data/lib/metasm/gui.rb +0 -23
data/lib/metasm/gui/dasm_graph.rb +0 -1354
data/lib/metasm/ia32.rb +0 -14
data/lib/metasm/ia32/opcodes.rb +0 -872
data/lib/metasm/ppc/parse.rb +0 -52
data/lib/metasm/x86_64.rb +0 -12
data/lib/metasm/x86_64/opcodes.rb +0 -118
data/samples/gdbclient.rb +0 -583
data/samples/rubstop.rb +0 -399

data/metasm/os/emulator.rb ADDED Viewed

@@ -0,0 +1,175 @@
+#    This file is part of Metasm, the Ruby assembly manipulation suite
+#    Copyright (C) 2006-2009 Yoann GUILLOT
+#
+#    Licence is LGPL, see LICENCE in the top-level directory
+require 'metasm/os/main'
+require 'metasm/debug'
+module Metasm
+# a VirtualString mapping the segments from a disassembler
+class VirtualMemoryDasm < VirtualString
+	attr_accessor :disassembler
+	def initialize(disassembler, addr_start = 0, length = nil)
+		@disassembler = disassembler
+		length ||= disassembler.sections.map { |k, v| k.kind_of?(Integer) ? k + v.length : 0 }.max
+		super(addr_start, length)
+	end
+	def dup(addr = @addr_start, len = @length)
+		self.class.new(@disassembler, addr, len)
+	end
+	# reads an aligned page from the file, at file offset addr
+	def read_range(addr, len=@pagelength)
+		@disassembler.read_raw_data(addr, len)
+	end
+	def page_invalid?(addr)
+		!@disassembler.get_section_at(addr)
+	end
+	# overwrite a section of the file
+	def rewrite_at(addr, data)
+		if e = @disassembler.get_section_at(addr)
+			e[0].data[addr - e[1], data.length] = data
+		end
+	end
+	def decode_imm(addr, len, cpu)
+		@disassembler.decode_int(addr, len)
+	end
+end
+# this class implements a virtual debugger over an emulated cpu (based on cpu#get_backtrace_binding)
+class EmuDebugger < Debugger
+	attr_accessor :ctx
+	# lambda called everytime we emulate a di
+	# receives the di as parameter
+	# if it returns nil, the di is emulated as usual, if it returns true no further processing is done for this di
+	# dont forget to handle reg_pc !
+	attr_accessor :callback_emulate_di
+	# lambda called everytime we cannot find an instruction at the current PC
+	# return true if the context was fixed
+	attr_accessor :callback_unknown_pc
+	def initialize(disassembler)
+		@pid = @tid = 0
+		attach(disassembler)
+	end
+	def shortname; 'emudbg'; end
+	def attach(disassembler)
+		@memory = VirtualMemoryDasm.new(disassembler)
+		@cpu = disassembler.cpu
+		@disassembler = disassembler
+		@ctx = {}
+		@state = :stopped
+		@symbols = disassembler.prog_binding.invert
+		@symbols_len = @symbols.keys.inject({}) { |h, s| h.update s => 1 }
+		@modulemap = {}
+		@breakpoint = {}
+		@breakpoint_memory = {}
+		@breakpoint_thread = {}
+	end
+	def detach
+	end
+	def initialize_disassembler
+	end
+	def initialize_cpu
+	end
+	def initialize_memory
+	end
+	def invalidate
+	end
+	def memory_get_page(addr, len)
+		@memory[addr, len]
+	end
+	def get_reg_value(r)
+		if r.to_s =~ /flags?_(.+)/i
+			f = $1.downcase.to_sym
+			get_flag_value(f)
+		else
+			@ctx[r] || 0
+		end
+	end
+	def set_reg_value(r, v)
+		if r.to_s =~ /flags?_(.+)/i
+			f = $1.downcase.to_sym
+			set_flag_value(f, v)
+		else
+			@ctx[r] = v
+		end
+	end
+	def do_check_target
+		true
+	end
+	def do_wait_target
+		true
+	end
+	def do_continue
+		while not @breakpoint[pc] and do_singlestep	# TODO check bp#enabled
+		end
+	end
+	def do_enable_bp(b)	# no need to actually patch code in memory
+	end
+	def do_disable_bp(b)
+	end
+	def do_singlestep
+		di = @disassembler.di_at(pc)
+		if not di
+			@disassembler.disassemble_fast(pc)
+			di = @disassembler.di_at(pc)
+		end
+		if not di
+			if callback_unknown_pc and callback_unknown_pc.call()
+				return true
+			end
+			return
+		end
+		if callback_emulate_di
+			ret = callback_emulate_di.call(di)
+			return true if ret
+		end
+		return if di.opcode.props[:stopexec] and not di.opcode.props[:setip]
+		# 2-pass to respect binding atomicity
+		fbd = @disassembler.get_fwdemu_binding(di, register_pc, self)
+		fbd.map { |k, v|
+			if k.kind_of?(Indirection)
+				k = Indirection.new(resolve(k.pointer), k.len, k.origin)
+			end
+			[k, resolve(v)]
+		}.each { |k, v|
+			case k
+			when Indirection
+				v = v & ((1 << (k.len*8)) - 1)
+				memory_write_int(k.pointer, v, k.len)
+			when Symbol
+				set_reg_value(k, v)
+			when /^dummy_metasm_/
+			else
+				puts "singlestep: badkey #{k.inspect} = #{v}"
+			end
+		}
+		true
+	end
+end
+end

data/{lib/metasm/os/remote.rb → metasm/os/gdbremote.rb} RENAMED Viewed

@@ -5,6 +5,7 @@
 require 'metasm/os/main'
+require 'metasm/debug'
 require 'socket'
 module Metasm
@@ -23,9 +24,11 @@ class GdbClient
 	def gdb_send(cmd, buf='')
 		buf = cmd + buf
 		buf = '$' << buf << '#' << gdb_csum(buf)
+		log "gdb_send #{buf.inspect}" if $DEBUG
 		5.times {
 			@io.write buf
+			out = ''
 			loop do
 				break if not IO.select([@io], nil, nil, 0.2)
 				raise Errno::EPIPE if not ack = @io.read(1)
@@ -33,12 +36,15 @@ class GdbClient
 				when '+'
 					return true
 				when '-'
-					puts "gdb_send: ack neg" if $DEBUG
+					log "gdb_send: ack neg" if $DEBUG
 					break
 				when nil
 					return
+				else
+					out << ack
 				end
 			end
+			log "no ack, got #{out.inspect}" if out != ''
 		}
 		log "send error #{cmd.inspect} (no ack)"
@@ -62,8 +68,18 @@ class GdbClient
 		buf = nil
 		while @recv_ctx
-			return unless IO.select([@io], nil, nil, timeout)
-			raise Errno::EPIPE if not c = @io.read(1)
+			if !@recv_ctx[:rbuf]
+				return unless IO.select([@io], nil, nil, timeout)
+				if @io.kind_of?(UDPSocket)
+					raise Errno::EPIPE if not @recv_ctx[:rbuf] = @io.recvfrom(65536)[0]
+				else
+					raise Errno::EPIPE if not c = @io.read(1)
+				end
+			end
+			if @recv_ctx[:rbuf]
+				c = @recv_ctx[:rbuf].slice!(0, 1)
+				@recv_ctx.delete :rbuf if @recv_ctx[:rbuf] == ''
+			end
 			case @recv_ctx[:state]
 			when :nosync
@@ -107,11 +123,11 @@ class GdbClient
 			end
 			outstr << unhex($1)
 			ret = gdb_readresp(timeout, outstr)
-			outstr.split("\n").each { |e| log 'gdb: ' + e } if first
+			outstr.split("\n").each { |o| log 'gdb: ' + o } if first
 			return ret
 		end
-		puts "gdb_readresp: got #{buf[0, 64].inspect}#{'...' if buf.length > 64}" if $DEBUG
+		log "gdb_readresp: got #{buf[0, 64].inspect}#{'...' if buf.length > 64}" if $DEBUG
 		buf
 	end
@@ -169,7 +185,7 @@ class GdbClient
 				buf = gdb_msg('g')
 				regs = unhex(unrle(buf)) if buf
 				if not buf or regs.length < @regmsgsize
-					raise "regs buffer recv is too short !"
+					raise "regs buffer recv is too short ! (#{regs.length} < #{@regmsgsize})"
 				end
 			end
 			Hash[*@gdbregs.zip(@unpack_int[regs]).flatten]
@@ -232,9 +248,9 @@ class GdbClient
 		case io
 		when IO; @io = io
-		when /^udp:(.*):(.*?)$/i; @io = UDPSocket.new ; @io.connect($1, $2)
-		when /^(?:tcp:)?(.*):(.*?)$/i; @io = TCPSocket.open($1, $2)	# XXX matches C:\fail
-		# TODO pipe, serial port, etc ; also check ipv6
+		when /^ser:(.*)/i; @io = File.open($1, 'rb+')
+		when /^udp:\[?(.*)\]?:(.*?)$/i; @io = UDPSocket.new ; @io.connect($1, $2)
+		when /^(?:tcp:)?\[?(..+)\]?:(.*?)$/i; @io = TCPSocket.open($1, $2)
 		else raise "unknown target #{io.inspect}"
 		end
@@ -242,6 +258,10 @@ class GdbClient
 	end
 	def gdb_setup
+		pnd = ''
+		pnd << @io.read(1) while IO.select([@io], nil, nil, 0.2)
+		log "startpending: #{pnd.inspect}" if pnd != ''
 		gdb_msg('q', 'Supported')
 		#gdb_msg('Hc', '-1')
 		#gdb_msg('qC')
@@ -295,17 +315,22 @@ class GdbClient
 	attr_accessor :logger, :quiet
 	def log(s)
+		puts s if $DEBUG and logger
 		return if quiet
-		@logger ||= $stdout
-		@logger.puts s
+		logger ? logger.log(s) : puts(s)
 	end
+	attr_accessor :ptrsz
 	# setup the various function used to pack ints & the reg list
 	# according to a target CPU
 	def setup_arch(cpu)
+		@ptrsz = cpu.size
 		case cpu.shortname
-		when 'ia32'
+		when /^ia32/
+			@ptrsz = 32
 			@gdbregs = GDBREGS_IA32
 			@regmsgsize = 4 * @gdbregs.length
 		when 'x64'
@@ -314,6 +339,12 @@ class GdbClient
 		when 'arm'
 			@gdbregs = cpu.dbg_register_list
 			@regmsgsize = 4 * @gdbregs.length
+		when 'arm64'
+			@gdbregs = cpu.dbg_register_list
+			@regmsgsize = 8 * @gdbregs.length
+		when 'mips'
+			@gdbregs = cpu.dbg_register_list
+			@regmsgsize = cpu.size/8 * @gdbregs.length
 		else
 			# we can still use readmem/kill and other generic commands
 			# XXX serverside setregs may fail if we give an incorrect regbuf size
@@ -324,7 +355,7 @@ class GdbClient
 		# yay life !
 		# do as if cpu is littleendian, fixup at the end
-		case cpu.size
+		case @ptrsz
 		when 16
 			@pack_netint   = lambda { |i| i.pack('n*') }
 			@unpack_netint = lambda { |s| s.unpack('n*') }
@@ -345,7 +376,7 @@ class GdbClient
 				@pack_netint, @pack_int = @pack_int, @pack_netint
 				@unpack_netint, @unpack_int = @unpack_int, @unpack_netint
 			end
-		else raise "GdbServer: unsupported cpu size #{cpu.size}"
+		else raise "GdbServer: unsupported cpu size #{@ptrsz}"
 		end
 		# if target cpu is bigendian, use netint everywhere
@@ -362,7 +393,7 @@ class GdbRemoteString < VirtualString
 	def initialize(gdb, addr_start=0, length=nil)
 		@gdb = gdb
-		length ||= 1 << (@gdb.cpu.size rescue 32)
+		length ||= 1 << (@gdb.ptrsz || 32)
 		@pagelength = 512
 		super(addr_start, length)
 	end
@@ -389,17 +420,55 @@ end
 # this class implements a high-level API using the gdb-server network debugging protocol
 class GdbRemoteDebugger < Debugger
-	attr_accessor :gdb, :check_target_timeout
+	attr_accessor :gdb, :check_target_timeout, :reg_val_cache
 	def initialize(url, cpu='Ia32')
+		super()
+		@tid_stuff_list << :reg_val_cache << :regs_dirty
 		@gdb = GdbClient.new(url, cpu)
 		@gdb.logger = self
-		@cpu = @gdb.cpu
-		@memory = GdbRemoteString.new(@gdb)
-		@reg_val_cache = {}
-		@regs_dirty = false
 		# when checking target, if no message seen since this much seconds, send a 'status' query
 		@check_target_timeout = 1
+		set_context(28, 28)
+	end
+	def check_pid(pid)
+		# return nil if pid == nil
+		pid
+	end
+	def check_tid(tid)
+		tid
+	end
+	def list_processes
+		[@pid].compact
+	end
+	def list_threads
+		[@tid].compact
+	end
+	def mappings
+		[]
+	end
+	def modules
+		[]
+	end
+	def initialize_newtid
 		super()
+		@reg_val_cache = {}
+		@regs_dirty = false
+	end
+	attr_accessor :realmode
+	def initialize_cpu
+		@cpu = @gdb.cpu
+		@realmode = true if @cpu and @cpu.shortname =~ /^ia32_16/
+	end
+	def initialize_memory
+		@memory = GdbRemoteString.new(@gdb)
 	end
 	def invalidate
@@ -409,12 +478,24 @@ class GdbRemoteDebugger < Debugger
 	end
 	def get_reg_value(r)
+		r = r.to_sym
 		return @reg_val_cache[r] || 0 if @state != :stopped
 		sync_regs
 		@reg_val_cache = @gdb.read_regs || {} if @reg_val_cache.empty?
+		if realmode
+			case r
+			when :eip; seg = :cs
+			when :esp; seg = :ss
+			else seg = :ds
+			end
+			# XXX seg override
+			return @reg_val_cache[seg].to_i*16 + @reg_val_cache[r].to_i
+		end
 		@reg_val_cache[r] || 0
 	end
 	def set_reg_value(r, v)
+		r = r.to_sym
+		# XXX realmode
 		@reg_val_cache[r] = v
 		@regs_dirty = true
 	end
@@ -426,37 +507,49 @@ class GdbRemoteDebugger < Debugger
 	def do_check_target
 		return if @state == :dead
+		# keep-alive on the connexion
 		t = Time.now
 		@last_check_target ||= t
 		if @state == :running and t - @last_check_target > @check_target_timeout
 			@gdb.io.write '$?#' << @gdb.gdb_csum('?')
 			@last_check_target = t
 		end
 		return unless i = @gdb.check_target(0.01)
-		invalidate if i[:state] == :stopped and @state != :stopped
-		@state, @info = i[:state], i[:info]
-		@info = nil if @info =~ /TRAP/
+		update_state(i)
+		true
 	end
 	def do_wait_target
 		return unless i = @gdb.check_target(nil)
-		invalidate if i[:state] == :stopped and @state != :stopped
-		@state, @info = i[:state], i[:info]
-		@info = nil if @info =~ /TRAP/
+		update_state(i)
+	end
+	def update_state(i)
+		@info = (i[:info] if i[:info] !~ /TRAP/)
+		if i[:state] == :stopped and @state != :stopped
+			invalidate
+			@state = i[:state]
+			case @run_method
+			when :singlestep
+				evt_singlestep
+			else
+				evt_bpx	# XXX evt_hwbp?
+			end
+		else
+			@state = i[:state]
+		end
 	end
 	def do_continue(*a)
-		return if @state != :stopped
 		@state = :running
-		@info = 'continue'
 		@gdb.continue
 		@last_check_target = Time.now
 	end
 	def do_singlestep(*a)
-		return if @state != :stopped
 		@state = :running
-		@info = 'singlestep'
 		@gdb.singlestep
 		@last_check_target = Time.now
 	end
@@ -467,53 +560,52 @@ class GdbRemoteDebugger < Debugger
 	def kill(sig=nil)
 		# TODO signal nr
-		@gdb.kill
 		@state = :dead
-		@info = 'killed'
+		@gdb.kill
 	end
 	def detach
-		super()	# remove breakpoints & stuff
-		@gdb.detach
-		@state = :dead
-		@info = 'detached'
+		del_all_breakpoints
+		del_pid
 	end
-	# set to true to use the gdb msg to handle bpx, false to set 0xcc ourself
+	# set to true to use the gdb msg to handle bpx, false to set 0xcc manually ourself
 	attr_accessor :gdb_bpx
-	def enable_bp(addr)
-		return if not b = @breakpoint[addr]
-		b.state = :active
+	def do_enable_bp(b)
 		case b.type
+		when :bpm
+			do_enable_bpm(b)
 		when :bpx
 			if gdb_bpx
-				@gdb.set_hwbp('s', addr, 1)
+				@gdb.set_hwbp('s', b.address, 1)
 			else
-				@cpu.dbg_enable_bp(self, addr, b)
+				@cpu.dbg_enable_bp(self, b)
 			end
-		when :hw
-			@gdb.set_hwbp(b.mtype, addr, b.mlen)
+		when :hwbp
+			@gdb.set_hwbp(b.internal[:type], b.address, b.internal[:len])
 		end
 	end
-	def disable_bp(addr)
-		return if not b = @breakpoint[addr]
-		b.state = :inactive
+	def do_disable_bp(b)
 		case b.type
+		when :bpm
+			do_disable_bpm(b)
 		when :bpx
 			if gdb_bpx
-				@gdb.unset_hwbp('s', addr, 1)
+				@gdb.unset_hwbp('s', b.address, 1)
 			else
-				@cpu.dbg_disable_bp(self, addr, b)
+				@cpu.dbg_disable_bp(self, b)
 			end
-		when :hw
-			@gdb.unset_hwbp(b.mtype, addr, b.mlen)
+		when :hwbp
+			@gdb.unset_hwbp(b.internal[:type], b.address, b.internal[:len])
 		end
 	end
 	def check_pre_run(*a)
-		sync_regs
-		super(*a)
+		if ret = super(*a)
+			sync_regs
+			ret
+		end
 	end
 	def loadallsyms