RubyGems - metasm - Versions diffs - 1.0.1 → 1.0.2 - Mend

metasm 1.0.1 → 1.0.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (235) hide show

checksums.yaml +7 -0
data/.gitignore +1 -0
data/.hgtags +3 -0
data/Gemfile +1 -0
data/INSTALL +61 -0
data/LICENCE +458 -0
data/README +29 -21
data/Rakefile +10 -0
data/TODO +10 -12
data/doc/code_organisation.txt +2 -0
data/doc/core/DynLdr.txt +247 -0
data/doc/core/ExeFormat.txt +43 -0
data/doc/core/Expression.txt +220 -0
data/doc/core/GNUExports.txt +27 -0
data/doc/core/Ia32.txt +236 -0
data/doc/core/SerialStruct.txt +108 -0
data/doc/core/VirtualString.txt +145 -0
data/doc/core/WindowsExports.txt +61 -0
data/doc/core/index.txt +1 -0
data/doc/style.css +6 -3
data/doc/usage/debugger.txt +327 -0
data/doc/usage/index.txt +1 -0
data/doc/use_cases.txt +2 -2
data/metasm.gemspec +22 -0
data/{lib/metasm.rb → metasm.rb} +11 -3
data/{lib/metasm → metasm}/compile_c.rb +13 -7
data/metasm/cpu/arc.rb +8 -0
data/metasm/cpu/arc/decode.rb +425 -0
data/metasm/cpu/arc/main.rb +191 -0
data/metasm/cpu/arc/opcodes.rb +588 -0
data/{lib/metasm → metasm/cpu}/arm.rb +7 -5
data/{lib/metasm → metasm/cpu}/arm/debug.rb +2 -2
data/{lib/metasm → metasm/cpu}/arm/decode.rb +13 -12
data/{lib/metasm → metasm/cpu}/arm/encode.rb +23 -8
data/{lib/metasm → metasm/cpu}/arm/main.rb +0 -3
data/metasm/cpu/arm/opcodes.rb +324 -0
data/{lib/metasm → metasm/cpu}/arm/parse.rb +25 -13
data/{lib/metasm → metasm/cpu}/arm/render.rb +2 -2
data/metasm/cpu/arm64.rb +15 -0
data/metasm/cpu/arm64/debug.rb +38 -0
data/metasm/cpu/arm64/decode.rb +289 -0
data/metasm/cpu/arm64/encode.rb +41 -0
data/metasm/cpu/arm64/main.rb +105 -0
data/metasm/cpu/arm64/opcodes.rb +232 -0
data/metasm/cpu/arm64/parse.rb +20 -0
data/metasm/cpu/arm64/render.rb +95 -0
data/{lib/metasm/ppc.rb → metasm/cpu/bpf.rb} +2 -4
data/metasm/cpu/bpf/decode.rb +142 -0
data/metasm/cpu/bpf/main.rb +60 -0
data/metasm/cpu/bpf/opcodes.rb +81 -0
data/metasm/cpu/bpf/render.rb +41 -0
data/metasm/cpu/cy16.rb +9 -0
data/metasm/cpu/cy16/decode.rb +253 -0
data/metasm/cpu/cy16/main.rb +63 -0
data/metasm/cpu/cy16/opcodes.rb +78 -0
data/metasm/cpu/cy16/render.rb +41 -0
data/metasm/cpu/dalvik.rb +11 -0
data/{lib/metasm → metasm/cpu}/dalvik/decode.rb +35 -13
data/{lib/metasm → metasm/cpu}/dalvik/main.rb +51 -2
data/{lib/metasm → metasm/cpu}/dalvik/opcodes.rb +19 -11
data/metasm/cpu/ia32.rb +17 -0
data/{lib/metasm → metasm/cpu}/ia32/compile_c.rb +5 -7
data/{lib/metasm → metasm/cpu}/ia32/debug.rb +5 -5
data/{lib/metasm → metasm/cpu}/ia32/decode.rb +246 -59
data/{lib/metasm → metasm/cpu}/ia32/decompile.rb +7 -7
data/{lib/metasm → metasm/cpu}/ia32/encode.rb +19 -13
data/{lib/metasm → metasm/cpu}/ia32/main.rb +51 -8
data/metasm/cpu/ia32/opcodes.rb +1424 -0
data/{lib/metasm → metasm/cpu}/ia32/parse.rb +47 -16
data/{lib/metasm → metasm/cpu}/ia32/render.rb +31 -4
data/metasm/cpu/mips.rb +14 -0
data/{lib/metasm → metasm/cpu}/mips/compile_c.rb +1 -1
data/metasm/cpu/mips/debug.rb +42 -0
data/{lib/metasm → metasm/cpu}/mips/decode.rb +46 -16
data/{lib/metasm → metasm/cpu}/mips/encode.rb +4 -3
data/{lib/metasm → metasm/cpu}/mips/main.rb +11 -4
data/{lib/metasm → metasm/cpu}/mips/opcodes.rb +86 -17
data/{lib/metasm → metasm/cpu}/mips/parse.rb +1 -1
data/{lib/metasm → metasm/cpu}/mips/render.rb +1 -1
data/{lib/metasm/dalvik.rb → metasm/cpu/msp430.rb} +1 -1
data/metasm/cpu/msp430/decode.rb +247 -0
data/metasm/cpu/msp430/main.rb +62 -0
data/metasm/cpu/msp430/opcodes.rb +101 -0
data/{lib/metasm → metasm/cpu}/pic16c/decode.rb +6 -7
data/{lib/metasm → metasm/cpu}/pic16c/main.rb +0 -0
data/{lib/metasm → metasm/cpu}/pic16c/opcodes.rb +1 -1
data/{lib/metasm/mips.rb → metasm/cpu/ppc.rb} +4 -4
data/{lib/metasm → metasm/cpu}/ppc/decode.rb +18 -12
data/{lib/metasm → metasm/cpu}/ppc/decompile.rb +3 -3
data/{lib/metasm → metasm/cpu}/ppc/encode.rb +2 -2
data/{lib/metasm → metasm/cpu}/ppc/main.rb +17 -12
data/{lib/metasm → metasm/cpu}/ppc/opcodes.rb +11 -5
data/metasm/cpu/ppc/parse.rb +55 -0
data/metasm/cpu/python.rb +8 -0
data/metasm/cpu/python/decode.rb +136 -0
data/metasm/cpu/python/main.rb +36 -0
data/metasm/cpu/python/opcodes.rb +180 -0
data/{lib/metasm → metasm/cpu}/sh4.rb +1 -1
data/{lib/metasm → metasm/cpu}/sh4/decode.rb +48 -17
data/{lib/metasm → metasm/cpu}/sh4/main.rb +13 -4
data/{lib/metasm → metasm/cpu}/sh4/opcodes.rb +7 -8
data/metasm/cpu/x86_64.rb +15 -0
data/{lib/metasm → metasm/cpu}/x86_64/compile_c.rb +28 -17
data/{lib/metasm → metasm/cpu}/x86_64/debug.rb +4 -4
data/{lib/metasm → metasm/cpu}/x86_64/decode.rb +57 -15
data/{lib/metasm → metasm/cpu}/x86_64/encode.rb +55 -26
data/{lib/metasm → metasm/cpu}/x86_64/main.rb +14 -6
data/metasm/cpu/x86_64/opcodes.rb +136 -0
data/{lib/metasm → metasm/cpu}/x86_64/parse.rb +10 -2
data/metasm/cpu/x86_64/render.rb +35 -0
data/metasm/cpu/z80.rb +9 -0
data/metasm/cpu/z80/decode.rb +313 -0
data/metasm/cpu/z80/main.rb +67 -0
data/metasm/cpu/z80/opcodes.rb +224 -0
data/metasm/cpu/z80/render.rb +59 -0
data/{lib/metasm/os/main.rb → metasm/debug.rb} +160 -401
data/{lib/metasm → metasm}/decode.rb +35 -4
data/{lib/metasm → metasm}/decompile.rb +15 -16
data/{lib/metasm → metasm}/disassemble.rb +201 -45
data/{lib/metasm → metasm}/disassemble_api.rb +651 -87
data/{lib/metasm → metasm}/dynldr.rb +220 -133
data/{lib/metasm → metasm}/encode.rb +10 -1
data/{lib/metasm → metasm}/exe_format/a_out.rb +9 -6
data/{lib/metasm → metasm}/exe_format/autoexe.rb +1 -0
data/{lib/metasm → metasm}/exe_format/bflt.rb +57 -27
data/{lib/metasm → metasm}/exe_format/coff.rb +11 -3
data/{lib/metasm → metasm}/exe_format/coff_decode.rb +53 -20
data/{lib/metasm → metasm}/exe_format/coff_encode.rb +11 -13
data/{lib/metasm → metasm}/exe_format/dex.rb +13 -5
data/{lib/metasm → metasm}/exe_format/dol.rb +1 -0
data/{lib/metasm → metasm}/exe_format/elf.rb +93 -57
data/{lib/metasm → metasm}/exe_format/elf_decode.rb +143 -34
data/{lib/metasm → metasm}/exe_format/elf_encode.rb +122 -31
data/metasm/exe_format/gb.rb +65 -0
data/metasm/exe_format/javaclass.rb +424 -0
data/{lib/metasm → metasm}/exe_format/macho.rb +204 -16
data/{lib/metasm → metasm}/exe_format/main.rb +26 -3
data/{lib/metasm → metasm}/exe_format/mz.rb +1 -0
data/{lib/metasm → metasm}/exe_format/nds.rb +7 -4
data/{lib/metasm → metasm}/exe_format/pe.rb +71 -8
data/metasm/exe_format/pyc.rb +167 -0
data/{lib/metasm → metasm}/exe_format/serialstruct.rb +67 -14
data/{lib/metasm → metasm}/exe_format/shellcode.rb +7 -3
data/metasm/exe_format/shellcode_rwx.rb +114 -0
data/metasm/exe_format/swf.rb +205 -0
data/{lib/metasm → metasm}/exe_format/xcoff.rb +7 -7
data/metasm/exe_format/zip.rb +335 -0
data/metasm/gui.rb +13 -0
data/{lib/metasm → metasm}/gui/cstruct.rb +35 -41
data/{lib/metasm → metasm}/gui/dasm_coverage.rb +11 -11
data/{lib/metasm → metasm}/gui/dasm_decomp.rb +7 -20
data/{lib/metasm → metasm}/gui/dasm_funcgraph.rb +0 -0
data/metasm/gui/dasm_graph.rb +1695 -0
data/{lib/metasm → metasm}/gui/dasm_hex.rb +12 -8
data/{lib/metasm → metasm}/gui/dasm_listing.rb +43 -28
data/{lib/metasm → metasm}/gui/dasm_main.rb +310 -53
data/{lib/metasm → metasm}/gui/dasm_opcodes.rb +5 -19
data/{lib/metasm → metasm}/gui/debug.rb +93 -27
data/{lib/metasm → metasm}/gui/gtk.rb +162 -40
data/{lib/metasm → metasm}/gui/qt.rb +12 -2
data/{lib/metasm → metasm}/gui/win32.rb +179 -42
data/{lib/metasm → metasm}/gui/x11.rb +59 -59
data/{lib/metasm → metasm}/main.rb +389 -264
data/{lib/metasm/os/remote.rb → metasm/os/gdbremote.rb} +146 -54
data/{lib/metasm → metasm}/os/gnu_exports.rb +1 -1
data/{lib/metasm → metasm}/os/linux.rb +628 -151
data/metasm/os/main.rb +330 -0
data/{lib/metasm → metasm}/os/windows.rb +132 -42
data/{lib/metasm → metasm}/os/windows_exports.rb +141 -0
data/{lib/metasm → metasm}/parse.rb +26 -24
data/{lib/metasm → metasm}/parse_c.rb +221 -116
data/{lib/metasm → metasm}/preprocessor.rb +55 -40
data/{lib/metasm → metasm}/render.rb +14 -38
data/misc/hexdump.rb +2 -1
data/misc/lint.rb +58 -0
data/misc/txt2html.rb +9 -7
data/samples/bindiff.rb +3 -4
data/samples/dasm-plugins/bindiff.rb +15 -0
data/samples/dasm-plugins/bookmark.rb +133 -0
data/samples/dasm-plugins/c_constants.rb +57 -0
data/samples/dasm-plugins/colortheme_solarized.rb +125 -0
data/samples/dasm-plugins/cppobj_funcall.rb +60 -0
data/samples/dasm-plugins/dasm_all.rb +70 -0
data/samples/dasm-plugins/demangle_cpp.rb +31 -0
data/samples/dasm-plugins/deobfuscate.rb +251 -0
data/samples/dasm-plugins/dump_text.rb +35 -0
data/samples/dasm-plugins/export_graph_svg.rb +86 -0
data/samples/dasm-plugins/findgadget.rb +75 -0
data/samples/dasm-plugins/hl_opcode.rb +32 -0
data/samples/dasm-plugins/hotfix_gtk_dbg.rb +19 -0
data/samples/dasm-plugins/imm2off.rb +34 -0
data/samples/dasm-plugins/match_libsigs.rb +93 -0
data/samples/dasm-plugins/patch_file.rb +95 -0
data/samples/dasm-plugins/scanfuncstart.rb +36 -0
data/samples/dasm-plugins/scanxrefs.rb +26 -0
data/samples/dasm-plugins/selfmodify.rb +197 -0
data/samples/dasm-plugins/stringsxrefs.rb +28 -0
data/samples/dasmnavig.rb +1 -1
data/samples/dbg-apihook.rb +24 -9
data/samples/dbg-plugins/heapscan.rb +283 -0
data/samples/dbg-plugins/heapscan/compiled_heapscan_lin.c +155 -0
data/samples/dbg-plugins/heapscan/compiled_heapscan_win.c +128 -0
data/samples/dbg-plugins/heapscan/graphheap.rb +616 -0
data/samples/dbg-plugins/heapscan/heapscan.rb +709 -0
data/samples/dbg-plugins/heapscan/winheap.h +174 -0
data/samples/dbg-plugins/heapscan/winheap7.h +307 -0
data/samples/dbg-plugins/trace_func.rb +214 -0
data/samples/disassemble-gui.rb +35 -5
data/samples/disassemble.rb +31 -6
data/samples/dump_upx.rb +24 -12
data/samples/dynamic_ruby.rb +12 -3
data/samples/exeencode.rb +6 -5
data/samples/factorize-headers-peimports.rb +1 -1
data/samples/lindebug.rb +175 -381
data/samples/metasm-shell.rb +1 -2
data/samples/peldr.rb +2 -2
data/tests/all.rb +1 -1
data/tests/arc.rb +26 -0
data/tests/dynldr.rb +22 -4
data/tests/expression.rb +55 -0
data/tests/graph_layout.rb +285 -0
data/tests/ia32.rb +79 -26
data/tests/mips.rb +9 -2
data/tests/x86_64.rb +66 -18
metadata +330 -218
data/lib/metasm/arm/opcodes.rb +0 -177
data/lib/metasm/gui.rb +0 -23
data/lib/metasm/gui/dasm_graph.rb +0 -1354
data/lib/metasm/ia32.rb +0 -14
data/lib/metasm/ia32/opcodes.rb +0 -873
data/lib/metasm/ppc/parse.rb +0 -52
data/lib/metasm/x86_64.rb +0 -12
data/lib/metasm/x86_64/opcodes.rb +0 -118
data/samples/gdbclient.rb +0 -583
data/samples/rubstop.rb +0 -399

data/samples/exeencode.rb CHANGED

@@ -26,7 +26,8 @@ $opts = {
 OptionParser.new { |opt|
 	opt.on('-o file', 'output filename') { |f| $opts[:outfilename] = f }
-	opt.on('-f') { $opts[:overwrite_outfile] = true }
+	opt.on('-i', 'dont overwrite existing outfile') { $opts[:nooverwrite_outfile] = true }
+	opt.on('-f', 'overwrite existing outfile (default)') { $opts.delete :nooverwrite_outfile }	# without this, optparse autocomplete to --fno-pic and break older scripts...
 	opt.on('--c', 'parse source as a C file') { $opts[:srctype] = 'c' }
 	opt.on('--asm', 'parse asm as an ASM file') { $opts[:srctype] = 'asm' }
 	opt.on('--stdin', 'parse source on stdin') { ARGV << '-' }
@@ -44,7 +45,7 @@ OptionParser.new { |opt|
 	opt.on('--le', 'set cpu in little-endian mode') { $opts[:cpu].endianness = :little }
 	opt.on('--be', 'set cpu in big-endian mode') { $opts[:cpu].endianness = :big }
 	opt.on('--fno-pic', 'generate position-dependant code') { $opts[:cpu].generate_PIC = false }
-	opt.on('--shared', 'generate shared library') { $opts[:exetype] = :lib }
+	opt.on('--shared', '--lib', '--dll', 'generate shared library') { $opts[:exetype] = :lib }
 	opt.on('--ruby-module-hack', 'use the dynldr module hack to use any ruby lib available for ruby symbols') { $opts[:dldrhack] = true }
 }.parse!
@@ -62,7 +63,7 @@ else
 	src << DATA.read	# the text after __END__ in this file
 end
-if $opts[:outfilename] and not $opts[:overwrite_outfile] and File.exist?($opts[:outfilename])
+if $opts[:outfilename] and $opts[:nooverwrite_outfile] and File.exist?($opts[:outfilename])
 		abort "Error: target file exists !"
 end
@@ -93,7 +94,7 @@ if $opts[:to_string]
 	end
 	if of = $opts[:outfilename]
-		abort "Error: target file #{of.inspect} exists !" if File.exists? of and not $opts[:overwrite_outfile]
+		abort "Error: target file #{of.inspect} exists !" if File.exists?(of) and $opts[:nooverwrite_outfile]
 		File.open(of, 'w') { |fd| fd.puts str }
 		puts "saved to file #{of.inspect}"
 	else
@@ -101,7 +102,7 @@ if $opts[:to_string]
 	end
 else
 	of = $opts[:outfilename] ||= 'a.out'
-	abort "Error: target file #{of.inspect} exists !" if File.exists? of and not $opts[:overwrite_outfile]
+	abort "Error: target file #{of.inspect} exists !" if File.exists?(of) and $opts[:nooverwrite_outfile]
 	Metasm::DynLdr.compile_binary_module_hack(exe) if $opts[:dldrhack]
 	exe.encode_file(of, $opts[:exetype])
 	puts "saved to file #{of.inspect}"

data/samples/factorize-headers-peimports.rb CHANGED

@@ -41,7 +41,7 @@ if opts[:vspath] ||= ARGV.shift
 end
 funcnames = opts[:exe].map { |e|
-	pe = PE.decode_file_header(e)
+	pe = PE.decode_file_header(e) rescue next
 	pe.decode_imports
 	if not pe.imports
 		puts "#{e} has no imports"

data/samples/lindebug.rb CHANGED

@@ -47,14 +47,15 @@ module Ansi
 		$stdin.ioctl(TIOCGWINSZ, s) >= 0 ? s.unpack('SS') : [80, 25]
 	end
 	def self.set_term_canon(bool)
-		tty = ''.ljust(256)
-		$stdin.ioctl(TCGETS, tty)
+		ttys = ''.ljust(256)
+		$stdin.ioctl(TCGETS, ttys)
+		tty = ttys.unpack('C*')
 		if bool
 			tty[12] &= ~(ECHO|CANON)
 		else
 			tty[12] |= ECHO|CANON
 		end
-		$stdin.ioctl(TCSETS, tty)
+		$stdin.ioctl(TCSETS, tty.pack('C*'))
 	end
 	ESC_SEQ = {'A' => :up, 'B' => :down, 'C' => :right, 'D' => :left,
@@ -85,49 +86,11 @@ module Ansi
 	end
 end
-class Indirect < Metasm::ExpressionType
-	attr_accessor :ptr, :sz
-	UNPACK_STR = {1 => 'C', 2 => 'S', 4 => 'L'}
-	def initialize(ptr, sz) @ptr, @sz = ptr, sz end
-	def bind(bd)
-		raw = bd['tracer_memory'][@ptr.bind(bd).reduce, @sz]
-		Metasm::Expression[raw.unpack(UNPACK_STR[@sz]).first]
-	end
-	def externals ; @ptr.externals end
-end
-class ExprParser < Metasm::Expression
-	def self.parse_intfloat(lex, tok)
-		case tok.raw
-		when 'byte', 'word', 'dword'
-			nil while ntok = lex.readtok and ntok.type == :space
-			nil while ntok = lex.readtok and ntok.type == :space if ntok and ntok.raw == 'ptr'
-			if ntok and ntok.raw == '['
-				tok.value = Indirect.new(parse(lex), {'byte' => 1, 'word' => 2, 'dword' => 4}[tok.raw])
-				nil while ntok = lex.readtok and ntok.type == :space
-				nil while ntok = lex.readtok and ntok.type == :space if ntok and ntok.raw == ']'
-				lex.unreadtok ntok
-			end
-		else super(lex, tok)
-		end
-	end
-	def self.parse_value(lex)
-		nil while tok = lex.readtok and tok.type == :space
-		lex.unreadtok tok
-		if tok and tok.type == :punct and tok.raw == '['
-			tt = tok.dup
-			tt.type = :string
-			tt.raw = 'dword'
-			lex.unreadtok tt
-		end
-		super(lex)
-	end
-end
 class LinDebug
-	attr_accessor :win_data_height, :win_code_height, :win_prpt_height
+	attr_accessor :win_reg_height, :win_data_height, :win_code_height, :win_prpt_height
 	def init_screen
 		Ansi.set_term_canon(true)
+		@win_reg_height = 2
 		@win_data_height = 20
 		@win_code_height = 20
 		resize
@@ -139,7 +102,7 @@ class LinDebug
 		$stdout.flush
 	end
-	def win_data_start; 2 end
+	def win_data_start; @win_reg_height end
 	def win_code_start; win_data_start+win_data_height end
 	def win_prpt_start; win_code_start+win_code_height end
@@ -164,9 +127,8 @@ class LinDebug
 	attr_accessor :dataptr, :codeptr, :rs, :promptlog, :command
 	def initialize(rs)
 		@rs = rs
-		@rs.logger = self
+		@rs.set_log_proc { |l| add_log l }
 		@datafmt = 'db'
-		@watch = nil
 		@prompthistlen = 20
 		@prompthistory = []
@@ -176,6 +138,7 @@ class LinDebug
 		@promptpos = 0
 		@log_off = 0
 		@console_width = 80
+		@oldregs = {}
 		@running = false
 		@focus = :prompt
@@ -185,7 +148,7 @@ class LinDebug
 	end
 	def init_rs
-		@codeptr = @dataptr = @rs.regs_cache['eip']	# avoid initial faults
+		@codeptr = @dataptr = @rs.pc	# avoid initial faults
 	end
 	def main_loop
@@ -201,9 +164,9 @@ class LinDebug
 				$stdout.print Ansi.set_cursor_pos(@console_height, 1)
 			end
 		rescue
-			$stdout.puts $!, $!.backtrace
+			puts $!, $!.backtrace
 		end
-		$stdout.puts @promptlog.last
+		puts @promptlog.last
 	end
 	# optimize string to display to stdout
@@ -218,7 +181,7 @@ class LinDebug
 	def display_screen(screenlines, cursx, cursy)
 		@oldscreenbuf ||= []
-		lines = screenlines.to_a
+		lines = screenlines.lines
 		oldlines = @oldscreenbuf
 		@oldscreenbuf = lines
 		screenlines = lines.zip(oldlines).map { |l, ol| l == ol ? "\n" : l }.join
@@ -247,41 +210,40 @@ class LinDebug
 	end
 	def _updateregs
-		text = ''
-		text << ' '
-		x = 1
-		%w[eax ebx ecx edx eip].each { |r|
-			text << Color[:changed] if @rs.regs_cache[r] != @rs.oldregs[r]
-			text << r << ?=
-			text << ('%08X' % @rs.regs_cache[r])
-			text << Color[:normal] if @rs.regs_cache[r] != @rs.oldregs[r]
-			text << '  '
-			x += r.length + 11
-		}
-		text << (' '*([@console_width-x, 0].max)) << "\n" << ' '
-		x = 1
-		%w[esi edi ebp esp].each { |r|
-			text << Color[:changed] if @rs.regs_cache[r] != @rs.oldregs[r]
-			text << r << ?=
-			text << ('%08X' % @rs.regs_cache[r])
-			text << Color[:normal] if @rs.regs_cache[r] != @rs.oldregs[r]
-			text << '  '
-			x += r.length + 11
+		pvrsz = 0
+		words = @rs.register_list.map { |r|
+			rs = r.to_s.rjust(pvrsz)
+			pvrsz = rs.length
+			rv = @rs[r]
+			["#{rs}=%0#{@rs.register_size[r]/4}X " % rv,
+				(@oldregs[r] != rv)]
+		} + @rs.flag_list.map { |fl|
+			fv = @rs.get_flag(fl)
+			[fv ? fl.to_s.upcase : fl.to_s.downcase,
+				(@oldregs[fl] != fv)]
 		}
-		Rubstop::EFLAGS.sort.each { |off, flag|
-			val = @rs.regs_cache['eflags'] & (1<<off)
-			flag = flag.upcase if val != 0
-			if val != @rs.oldregs['eflags'] & (1 << off)
-				text << Color[:changed]
-				text << flag
-				text << Color[:normal]
-			else
-				text << flag
+		text = ' '
+		linelen = 1	# line length w/o ansi colors
+		owr = @win_reg_height
+		@win_reg_height = 1
+		words.each { |w, changed|
+			if linelen + w.length >= @console_width - 1
+				text << (' '*([@console_width-linelen, 0].max)) << "\n "
+				linelen = 1
+				@win_reg_height += 1
 			end
+			text << Color[:changed] if changed
+			text << w
+			text << Color[:normal] if changed
 			text << ' '
-			x += 2
+			linelen += w.length+1
 		}
-		text << (' '*([@console_width-x, 0].max)) << "\n"
+		resize if owr != @win_reg_height
+		text << (' '*([@console_width-linelen, 0].max)) << "\n"
 	end
 	def updatecode
@@ -291,21 +253,23 @@ class LinDebug
 	def _updatecode
 		if @codeptr
 			addr = @codeptr
-		elsif @rs.oldregs['eip'] and @rs.oldregs['eip'] < @rs.regs_cache['eip'] and @rs.oldregs['eip'] + 8 >= @rs.regs_cache['eip']
-			addr = @rs.oldregs['eip']
+		elsif @oldregs[@rs.register_pc] and @oldregs[@rs.register_pc] < @rs.pc and @oldregs[@rs.register_pc] + 8 >= @rs.pc
+			addr = @oldregs[@rs.register_pc]
 		else
-			addr = @rs.regs_cache['eip']
+			addr = @rs.pc
 		end
 		@codeptr = addr
-		if @rs.findfilemap(addr) == '???'
-			base = addr & 0xffff_f000
+		addrsz = @rs.register_size[@rs.register_pc]
+		addrfmt = "%0#{addrsz/4}X"
+		if not @rs.addr2module(addr) and @rs.shortname !~ /remote/
+			base = addr & ((1 << addrsz) - 0x1000)
 			@noelfsig ||= {}	# cache elfmagic notfound
-			if not @noelfsig[base] and base < 0xc000_0000
-				self.statusline = " scanning for elf header at #{'%08X' % base}"
+			if not @noelfsig[base] and base < ((1 << addrsz) - 0x1_0000)
+				self.statusline = " scanning for elf header at #{addrfmt % base}"
 				128.times {
-					@statusline = " scanning for elf header at #{'%08X' % base}"
-					if not @noelfsig[base] and @rs[base, 4] == Metasm::ELF::MAGIC
+					@statusline = " scanning for elf header at #{addrfmt % base}"
+					if not @noelfsig[base] and @rs[base, Metasm::ELF::MAGIC.length] == Metasm::ELF::MAGIC
 						@rs.loadsyms(base, base.to_s(16))
 						break
 					else
@@ -320,36 +284,43 @@ class LinDebug
 		text = ''
 		text << Color[:border]
-		title = @rs.findsymbol(addr)
+		title = @rs.addrname(addr)
 		pre  = [@console_width-100, 6].max
 		post = @console_width - (pre + title.length + 2)
 		text << Ansi.hline(pre) << ' ' << title << ' ' << Ansi.hline(post) << Color[:normal] << "\n"
+		seg = ''
+		seg = ('%04X' % @rs['cs']) << ':' if @rs.cpu.shortname =~ /ia32|x64/
 		cnt = @win_code_height
 		while (cnt -= 1) > 0
 			if @rs.symbols[addr]
 				text << ('    ' << @rs.symbols[addr] << ?:) << Ansi::ClearLineAfter << "\n"
 				break if (cnt -= 1) <= 0
 			end
-			text << Color[:hilight] if addr == @rs.regs_cache['eip']
-			text << ('%04X' % @rs.regs_cache['cs']) << ':'
-			text << ('%08X' % addr)
-			di = @rs.mnemonic_di(addr)
-			di = nil if di and addr < @rs.regs_cache['eip'] and addr+di.bin_length > @rs.regs_cache['eip']
+			text << Color[:hilight] if addr == @rs.pc
+			text << seg
+			if @rs.shortname =~ /remote/ and @rs.realmode
+				text << (addrfmt % (addr - 16*@rs['cs']))
+			else
+				text << (addrfmt % addr)
+			end
+			di = @rs.di_at(addr)
+			di = nil if di and addr < @rs.pc and addr+di.bin_length > @rs.pc
 			len = (di ? di.bin_length : 1)
 			text << '  '
-			text << @rs[addr, [len, 10].min].unpack('C*').map { |c| '%02X' % c }.join.ljust(22)
+			text << @rs.memory[addr, [len, 10].min].to_s.unpack('C*').map { |c| '%02X' % c }.join.ljust(22)
 			if di
 				text <<
-				if addr == @rs.regs_cache['eip']
-					"*#{di.instruction}".ljust([@console_width-37, 0].max)
+				if addr == @rs.pc
+					"*#{di.instruction}".ljust([@console_width-(addrsz/4+seg.length+24), 0].max)
 				else
 					" #{di.instruction}" << Ansi::ClearLineAfter
 				end
 			else
 				text << ' <unk>' << Ansi::ClearLineAfter
 			end
-			text << Color[:normal] if addr == @rs.regs_cache['eip']
+			text << Color[:normal] if addr == @rs.pc
 			addr += len
 			text << "\n"
 		end
@@ -361,27 +332,33 @@ class LinDebug
 	end
 	def _updatedata
-		@dataptr &= 0xffff_ffff
+		addrsz = @rs.register_size[@rs.register_pc]
+		addrfmt = "%0#{addrsz/4}X"
+		@dataptr &= ((1 << addrsz) - 1)
 		addr = @dataptr
 		text = ''
 		text << Color[:border]
-		title = @rs.findsymbol(addr)
+		title = @rs.addrname(addr)
 		pre  = [@console_width-100, 6].max
 		post = [@console_width - (pre + title.length + 2), 0].max
 		text << Ansi.hline(pre) << ' ' << title << ' ' << Ansi.hline(post) << Color[:normal] << "\n"
+		seg = ''
+		seg = ('%04X' % @rs['ds']) << ':' if @rs.cpu.shortname =~ /^ia32/
 		cnt = @win_data_height
 		while (cnt -= 1) > 0
-			raw = @rs[addr, 16].to_s
-			text << ('%04X' % @rs.regs_cache['ds']) << ':' << ('%08X' % addr) << '  '
+			raw = @rs.memory[addr, 16].to_s
+			text << seg << (addrfmt % addr) << '  '
 			case @datafmt
 			when 'db'; text << raw[0,8].unpack('C*').map { |c| '%02x ' % c }.join << ' ' <<
 				   raw[8,8].to_s.unpack('C*').map { |c| '%02x ' % c }.join
 			when 'dw'; text << raw.unpack('S*').map { |c| '%04x ' % c }.join
 			when 'dd'; text << raw.unpack('L*').map { |c| '%08x ' % c }.join
 			end
-			text << ' ' << raw.unpack('C*').map { |c| (0x20..0x7e).include?(c) ? c : ?. }.pack('C*')
+			text << ' ' << raw.unpack('C*').map { |c| (0x20..0x7e).include?(c) ? c : 0x2e }.pack('C*')
 			text << Ansi::ClearLineAfter << "\n"
 			addr += 16
 		end
@@ -420,17 +397,17 @@ class LinDebug
 		@console_height, @console_width = Ansi.get_terminal_size
 		@win_data_height = 1 if @win_data_height < 1
 		@win_code_height = 1 if @win_code_height < 1
-		if @win_data_height + @win_code_height + 5 > @console_height
+		if @win_data_height + @win_code_height + @win_reg_height + 3 > @console_height
 			@win_data_height = @console_height/2 - 4
 			@win_code_height = @console_height/2 - 4
 		end
-		@win_prpt_height = @console_height-(@win_data_height+@win_code_height+2) - 1
+		@win_prpt_height = @console_height-(@win_data_height+@win_code_height+@win_reg_height) - 1
 		@oldscreenbuf = []
 		update
 	end
 	def log(*strs)
-		strs.each { |str|
+	    strs.each { |str|
 		raise str.inspect if not str.kind_of? ::String
 		str = str.chomp
 		if str.length > @console_width
@@ -440,85 +417,52 @@ class LinDebug
 		end
 		@promptlog << str
 		@promptlog.shift if @promptlog.length > @promptloglen
-		}
+	    }
 	end
-	def puts(*s)
-		s.each { |s_| log s_.to_s }
-		super(*s) if not @running
-		update rescue super(*s)
-	end
-	def mem_binding(expr)
-		b = @rs.regs_cache.dup
-		ext = expr.externals
-		(ext - @rs.regs_cache.keys).each { |ex|
-			if not s = @rs.symbols.index(ex)
-				near = @rs.symbols.values.grep(/#{ex}/i)
-				if near.length > 1
-					log "#{ex.inspect} is ambiguous: #{near.inspect}"
-					return {}
-				elsif near.empty?
-					log "unknown value #{ex.inspect}"
-					return {}
-				else
-					log "using #{near.first.inspect} for #{ex.inspect}"
-					s = @rs.symbols.index(near.first)
-				end
-			end
-			b[ex] = s
-		}
-		b['tracer_memory'] = @rs
-		b
+	def add_log(l)
+		log l
+		puts l if not @running
+		update rescue puts l
 	end
 	def exec_prompt
 		@log_off = 0
 		log ':'+@promptbuf
 		return if @promptbuf == ''
-		lex = Metasm::Preprocessor.new.feed @promptbuf
+		str = @promptbuf
 		@prompthistory << @promptbuf
 		@prompthistory.shift if @prompthistory.length > @prompthistlen
 		@promptbuf = ''
 		@promptpos = @promptbuf.length
-		argint = lambda {
-			begin
-				raise if not e = ExprParser.parse(lex)
-			rescue
-				log 'syntax error'
-				return
-			end
-			e = e.bind(mem_binding(e)).reduce
-			if e.kind_of? Integer; e
-			else log "could not resolve #{e.inspect}" ; nil
-			end
-		}
-		cmd = lex.readtok
-		cmd = cmd.raw if cmd
-		nil while ntok = lex.readtok and ntok.type == :space
-		lex.unreadtok ntok
+		cmd, str = str.split(/\s+/, 2)
 		if @command.has_key? cmd
-			@command[cmd].call(lex, argint)
+			@command[cmd].call(str.to_s)
 		else
 			if cmd and (poss = @command.keys.find_all { |c| c[0, cmd.length] == cmd }).length == 1
-				@command[poss.first].call(lex, argint)
+				@command[poss.first].call(str.to_s)
 			else
 				log 'unknown command'
 			end
 		end
 	end
+	def preupdate
+		@rs.register_list.each { |r| @oldregs[r] = @rs[r] }
+		@rs.flag_list.each { |fl| @oldregs[fl] = @rs.get_flag(fl) }
+	end
 	def updatecodeptr
-		@codeptr ||= @rs.regs_cache['eip']
-		if @codeptr > @rs.regs_cache['eip'] or @codeptr < @rs.regs_cache['eip'] - 6*@win_code_height
-			@codeptr = @rs.regs_cache['eip']
-		elsif @codeptr != @rs.regs_cache['eip']
+		@codeptr ||= @rs.pc
+		if @codeptr > @rs.pc or @codeptr < @rs.pc - 6*@win_code_height
+			@codeptr = @rs.pc
+		elsif @codeptr != @rs.pc
 			addr = @codeptr
 			addrs = []
-			while addr < @rs.regs_cache['eip']
+			while addr < @rs.pc
 				addrs << addr
-				o = ((di = @rs.mnemonic_di(addr)) ? di.bin_length : 0)
+				o = ((di = @rs.di_at(addr)) ? di.bin_length : 0)
 				addr += ((o == 0) ? 1 : o)
 			end
 			if addrs.length > @win_code_height-4
@@ -529,36 +473,40 @@ class LinDebug
 	end
 	def updatedataptr
-		@dataptr = @watch.bind(mem_binding(@watch)).reduce if @watch
 	end
 	def singlestep
 		self.statusline = ' target singlestepping...'
-		@rs.singlestep
+		preupdate
+		@rs.singlestep_wait
 		updatecodeptr
 		@statusline = nil
 	end
 	def stepover
 		self.statusline = ' target running...'
-		@rs.stepover
+		preupdate
+		@rs.stepover_wait
 		updatecodeptr
 		@statusline = nil
 	end
 	def cont(*a)
 		self.statusline = ' target running...'
-		@rs.cont(*a)
+		preupdate
+		@rs.continue_wait(*a)
 		updatecodeptr
 		@statusline = nil
 	end
 	def stepout
 		self.statusline = ' target running...'
-		@rs.stepout
+		preupdate
+		@rs.stepout_wait
 		updatecodeptr
 		@statusline = nil
 	end
 	def syscall
 		self.statusline = ' target running to next syscall...'
-		@rs.syscall
+		preupdate
+		@rs.syscall_wait
 		updatecodeptr
 		@statusline = nil
 	end
@@ -578,17 +526,14 @@ class LinDebug
 			end
 			break if handle_keypress(Ansi.getkey)
 		end
-		@rs.checkbp
 	end
 	def handle_keypress(k)
 			case k
-			when 4; log 'exiting'; return true	 # eof
-			when ?\e; focus = :prompt
+			when ?\4; log 'exiting'; return true	 # eof
+			when ?\e; @focus = :prompt
 			when :f5;  cont
-			when :f6
-				syscall
-				log @rs.syscallnr.index(@rs.regs_cache['orig_eax']) || @rs.regs_cache['orig_eax'].to_s
+			when :f6;  syscall
 			when :f10; stepover
 			when :f11; singlestep
 			when :f12; stepout
@@ -607,9 +552,9 @@ class LinDebug
 				when :data
 					@dataptr -= 16
 				when :code
-					@codeptr ||= @rs.regs_cache['eip']
+					@codeptr ||= @rs.pc
 					@codeptr -= (1..10).find { |off|
-						di = @rs.mnemonic_di(@codeptr-off)
+						di = @rs.di_at(@codeptr-off)
 						di.bin_length == off if di
 					} || 10
 				end
@@ -628,25 +573,25 @@ class LinDebug
 				when :data
 					@dataptr += 16
 				when :code
-					@codeptr ||= @rs.regs_cache['eip']
-					di = @rs.mnemonic_di(@codeptr)
+					@codeptr ||= @rs.pc
+					di = @rs.di_at(@codeptr)
 					@codeptr += (di ? (di.bin_length || 1) : 1)
 				end
 			when :left;  @promptpos -= 1 if @promptpos > 0
 			when :right; @promptpos += 1 if @promptpos < @promptbuf.length
 			when :home;  @promptpos = 0
 			when :end;   @promptpos = @promptbuf.length
-			when :backspace, 0x7f; @promptbuf[@promptpos-=1, 1] = '' if @promptpos > 0
+			when :backspace, ?\x7f; @promptbuf[@promptpos-=1, 1] = '' if @promptpos > 0
 			when :suppr; @promptbuf[@promptpos, 1] = '' if @promptpos < @promptbuf.length
 			when :pgup
 				case @focus
 				when :prompt; @log_off += @win_prpt_height-3
 				when :data; @dataptr -= 16*(@win_data_height-1)
 				when :code
-					@codeptr ||= @rs.regs_cache['eip']
+					@codeptr ||= @rs.pc
 					(@win_code_height-1).times {
 						@codeptr -= (1..10).find { |off|
-							di = @rs.mnemonic_di(@codeptr-off)
+							di = @rs.di_at(@codeptr-off)
 							di.bin_length == off if di
 						} || 10
 					}
@@ -656,8 +601,8 @@ class LinDebug
 				when :prompt; @log_off -= @win_prpt_height-3
 				when :data; @dataptr += 16*(@win_data_height-1)
 				when :code
-					@codeptr ||= @rs.regs_cache['eip']
-					(@win_code_height-1).times { @codeptr += ((o = @rs.mnemonic_di(@codeptr)) ? [o.bin_length, 1].max : 1) }
+					@codeptr ||= @rs.pc
+					(@win_code_height-1).times { @codeptr += ((o = @rs.di_at(@codeptr)) ? [o.bin_length, 1].max : 1) }
 				end
 			when ?\t
 				if not @promptbuf[0, @promptpos].include? ' '
@@ -676,7 +621,7 @@ class LinDebug
 				rescue Exception
 					log "error: #$!", *$!.backtrace
 				end
-			when 0x20..0x7e
+			when ?\ ..?~
 				@promptbuf[@promptpos, 0] = k.chr
 				@promptpos += 1
 			else log "unknown key pressed #{k.inspect}"
@@ -685,240 +630,89 @@ class LinDebug
 	end
 	def load_commands
-		ntok = nil
-		@command['kill'] = lambda { |lex, int|
+		@command['kill'] = lambda { |str|
 			@rs.kill
 			@running = false
 			log 'killed'
 		}
-		@command['quit'] = @command['detach'] = @command['exit'] = lambda { |lex, int|
+		@command['quit'] = @command['detach'] = @command['exit'] = lambda { |str|
 			@rs.detach
 			@running = false
 		}
-		@command['closeui'] = lambda { |lex, int|
-			@rs.logger = nil
+		@command['closeui'] = lambda { |str|
 			@running = false
 		}
-		@command['bpx'] = lambda { |lex, int|
-			addr = int[]
-			@rs.bpx addr
-		}
-		@command['bphw'] = lambda { |lex, int|
-			type = lex.readtok.raw
-			addr = int[]
-			@rs.set_hwbp type, addr
-		}
-		@command['bl'] = lambda { |lex, int|
-			log "bpx at #{@rs.findsymbol(@rs.wantbp)}" if @rs.wantbp.kind_of? ::Integer
-			@rs.breakpoints.sort.each { |addr, oct|
-				log "bpx at #{@rs.findsymbol(addr)}"
-			}
-			(0..3).each { |dr|
-				if @rs.regs_cache['dr7'] & (1 << (2*dr)) != 0
-					log "bphw #{{0=>'x', 1=>'w', 2=>'?', 3=>'r'}[(@rs.regs_cache['dr7'] >> (16+4*dr)) & 3]} at #{@rs.findsymbol(@rs.regs_cache["dr#{dr}"])}"
-				end
-			}
+		@command['bpx'] = lambda { |str|
+			@rs.bpx @rs.resolve(str)
 		}
-		@command['bc'] = lambda { |lex, int|
-			@rs.clearbreaks
+		@command['bphw'] = @command['hwbp'] = lambda { |str|
+			type, str = str.split(/\s+/, 2)
+			@rs.hwbp @rs.resolve(str.to_s), type
 		}
-		@command['bt'] = lambda { |lex, int| @rs.backtrace { |t| puts t } }
-		@command['d'] =  lambda { |lex, int| @dataptr = int[] || return }
-		@command['db'] = lambda { |lex, int| @datafmt = 'db' ; @dataptr = int[] || return }
-		@command['dw'] = lambda { |lex, int| @datafmt = 'dw' ; @dataptr = int[] || return }
-		@command['dd'] = lambda { |lex, int| @datafmt = 'dd' ; @dataptr = int[] || return }
-		@command['r'] =  lambda { |lex, int|
-			r = lex.readtok.raw
-			nil while ntok = lex.readtok and ntok.type == :space
+		@command['bt'] = lambda { |str| @rs.stacktrace { |a,t| add_log "#{'%x' % a} #{t}" } }
+		@command['d'] =  lambda { |str| @dataptr = @rs.resolve(str) if str.length > 0 }
+		@command['db'] = lambda { |str| @datafmt = 'db' ; @dataptr = @rs.resolve(str) if str.length > 0 }
+		@command['dw'] = lambda { |str| @datafmt = 'dw' ; @dataptr = @rs.resolve(str) if str.length > 0 }
+		@command['dd'] = lambda { |str| @datafmt = 'dd' ; @dataptr = @rs.resolve(str) if str.length > 0 }
+		@command['r'] =  lambda { |str|
+			r, str = str.split(/\s+/, 2)
 			if r == 'fl'
-				flag = ntok.raw
-				if i = Rubstop::EFLAGS.index(flag)
-					@rs.eflags ^= 1 << i
-					@rs.readregs
-				else
-					log "bad flag #{flag}"
-				end
-			elsif not @rs.regs_cache[r]
+				@rs.toggle_flag(str.to_sym)
+			elsif not @rs[r]
 				log "bad reg #{r}"
-			elsif ntok
-				lex.unreadtok ntok
-				newval = int[]
-				if newval and newval.kind_of? ::Integer
-					@rs.send r+'=', newval
-					@rs.readregs
-				end
+			elsif str and str.length > 0
+				@rs[r] = @rs.resolve(str)
 			else
-				log "#{r} = #{@rs.regs_cache[r]}"
+				log "#{r} = #{@rs[r]}"
 			end
 		}
-		@command['run'] = @command['cont'] = lambda { |lex, int|
-			if tok = lex.readtok
-				lex.unreadtok tok
-				cont int[]
-			else cont
-			end
-		}
-		@command['syscall']    = lambda { |lex, int| syscall }
-		@command['singlestep'] = lambda { |lex, int| singlestep }
-		@command['stepover']   = lambda { |lex, int| stepover }
-		@command['stepout']    = lambda { |lex, int| stepout }
-		@command['g'] = lambda { |lex, int|
-			target = int[]
-			@rs.singlestep if @rs.regs_cache['eip'] == target
-			@rs.bpx target, true
-			cont
-		}
-		@command['u'] = lambda { |lex, int| @codeptr = int[] || break }
-		@command['has_pax'] = lambda { |lex, int|
-			if tok = lex.readtok
-				lex.unreadtok tok
-				if (int[] == 0)
-					@rs.set_pax false
-				else
-					@rs.set_pax true
-				end
-			else @rs.set_pax !@rs.has_pax
-			end
-			log "has_pax now #{@rs.has_pax}"
-		}
-		@command['loadsyms'] = lambda { |lex, int|
-			mapfile = ''
-			mapfile << ntok.raw while ntok = lex.readtok
-			if mapfile != ''
-				@rs.loadmap mapfile
-			else
-				@rs.loadallsyms
-			end
+		@command['g'] = lambda { |str|
+			@rs.go @rs.resolve(str)
 		}
-		@command['scansyms'] = lambda { |lex, int| @rs.scansyms }
-		@command['sym'] = lambda { |lex, int|
-			sym = ''
-			sym << ntok.raw while ntok = lex.readtok
-			s = []
-		       	@rs.symbols.each { |k, v|
-				s << k if v =~ /#{sym}/
-			}
-			if s.empty?
-				log "unknown symbol #{sym}"
-			else
-				s.sort.each { |s_| log "#{'%08x' % s_} #{@rs.symbols_len[s_].to_s.ljust 6} #{@rs.findsymbol(s_)}" }
-			end
-		}
-		@command['delsym'] = lambda { |lex, int|
-			addr = int[]
-			log "deleted #{@rs.symbols.delete addr}"
-			@rs.symbols_len.delete addr
-		}
-		@command['addsym'] = lambda { |lex, int|
-			name = lex.readtok.raw
-			addr = int[]
-			if t = lex.readtok
-				lex.unreadtok t
-				@rs.symbols_len[addr] = int[]
-			else
-				@rs.symbols_len[addr] = 1
-			end
-			@rs.symbols[addr] = name
-		}
-		@command['help'] = lambda { |lex, int|
-			log 'commands: (addr/values are things like dword ptr [ebp+(4*byte [eax])] ), type <tab> to see all commands'
-			log ' bpx <addr>'
-			log ' bphw [r|w|x] <addr>: debug register breakpoint'
-			log ' bl: list breakpoints'
-			log ' bc: clear breakpoints'
-			log ' cont [<signr>]: continue the target sending a signal'
-			log ' d/db/dw/dd [<addr>]: change data type/address'
-			log ' g <addr>: set a bp at <addr> and run'
-			log ' has_pax [0|1]: set has_pax flag'
-			log ' loadsyms: load symbol information from mapped files (from /proc and disk)'
-			log ' ma <addr> <ascii>: write memory'
-			log ' mx <addr> <hex>: write memory'
-			log ' maps: list maps'
-			log ' r <reg> [<value>]: show/change register'
-			log ' r fl <flag>: toggle eflags bit'
-			log ' scansyms: scan memory for ELF headers'
-			log ' sym <symbol regex>: show symbol information'
-			log ' addsym <name> <addr> [<size>]'
-			log ' delsym <addr>'
-			log ' u <addr>: disassemble addr'
-			log ' reload: reload lindebug source'
-			log ' ruby <ruby code>: instance_evals ruby code in current instance'
-			log ' closeui: detach from the underlying RubStop'
-			log 'keys:'
-			log ' F5: continue'
-			log ' F6: syscall'
-			log ' F10: step over'
-			log ' F11: single step'
-			log ' F12: step out (til next ret)'
-			log ' pgup/pgdown: move command history'
-		}
-		@command['reload'] = lambda { |lex, int| load $0 ; load_commands }
-		@command['ruby'] = lambda { |lex, int|
-			str = ''
-			str << ntok.raw while ntok = lex.readtok
-			instance_eval str
-		}
-		@command['maps'] = lambda { |lex, int|
-			@rs.filemap.sort_by { |f, (b, e)| b }.each { |f, (b, e)|
-				log "#{f.ljust 20} #{'%08x' % b} - #{'%08x' % e}"
-			}
-		}
-		@command['ma'] = lambda { |lex, int|
-			addr = int[]
-			str = ''
-			str << ntok.raw while ntok = lex.readtok
-			@rs[addr, str.length] = str
-		}
-		@command['mx'] = lambda { |lex, int|
-			addr = int[]
-			data = [lex.readtok.raw].pack('H*')
-			@rs[addr, data.length] = data
-		}
-		@command['resize'] = lambda { |lex, int| resize }
-		@command['watch'] = lambda { |lex, int| @watch = ExprParser.parse(lex) ; updatedataptr }
-		@command['wd'] = lambda { |lex, int|
+		@command['u'] = lambda { |str| @codeptr = @rs.resolve(str) }
+		@command['ruby'] = lambda { |str| instance_eval str }
+		@command['wd'] = lambda { |str|
 			@focus = :data
-			if tok = lex.readtok
-				lex.unreadtok tok
-				@win_data_height = int[] || return
+			if str.length > 0
+				@win_data_height = @rs.resolve(str)
 				resize
 			end
 		}
-		@command['wc'] = lambda { |lex, int|
+		@command['wc'] = lambda { |str|
 			@focus = :code
-			if tok = lex.readtok
-				lex.unreadtok tok
-				@win_code_height = int[] || return
+			if str.length > 0
+				@win_code_height = @rs.resolve(str)
 				resize
 			end
 		}
-		@command['wp'] = lambda { |lex, int| @focus = :prompt }
-		@command['?'] = lambda { |lex, int|
-			val = int[]
+		@command['wp'] = lambda { |str| @focus = :prompt }
+		@command['?'] = lambda { |str|
+			val = @rs.resolve(str)
 			log "#{val} 0x#{val.to_s(16)} #{[val].pack('L').inspect}"
 		}
-		@command['.'] = lambda { |lex, int| @codeptr = nil }
+		@command['syscall'] = lambda { |str|
+			@rs.syscall_wait(str)
+		}
 	end
 end
 if $0 == __FILE__
 	require 'optparse'
-	filemap = nil
+	opts = { :sc_cpu => 'Ia32' }
 	OptionParser.new { |opt|
-		opt.on('-m map', '--map filemap') { |f| filemap = f }
+		opt.on('-m map', '--map filemap') { |f| opts[:filemap] = f }
+		opt.on('--cpu cpu') { |c| opts[:sc_cpu] = c }
 	}.parse!(ARGV)
-	if not defined? Rubstop
-		if ARGV.first =~ /:/
-			stub = 'gdbclient'
-		else
-			stub = 'rubstop'
-		end
-		require File.join(File.dirname(__FILE__), stub)
+	case ARGV.first
+	when /^(tcp:|udp:)?..+:/, /^ser:/
+		opts[:sc_cpu] = eval(opts[:sc_cpu]) if opts[:sc_cpu] =~ /[.(\s:]/
+		opts[:sc_cpu] = opts[:sc_cpu].new if opts[:sc_cpu].kind_of?(::Class)
+		rs = Metasm::GdbRemoteDebugger.new(ARGV.first, opts[:sc_cpu])
+	else
+		rs = Metasm::LinDebugger.new(ARGV.join(' '))
 	end
-	rs = Rubstop.new(ARGV.join(' '))
-	rs.loadmap(filemap) if filemap
+	rs.load_map(opts[:filemap]) if opts[:filemap]
 	LinDebug.new(rs).main_loop
 end