RubyGems - metasm - Versions diffs - 1.0.1 → 1.0.2 - Mend

metasm 1.0.1 → 1.0.2

Files changed (235) hide show

checksums.yaml +7 -0
data/.gitignore +1 -0
data/.hgtags +3 -0
data/Gemfile +1 -0
data/INSTALL +61 -0
data/LICENCE +458 -0
data/README +29 -21
data/Rakefile +10 -0
data/TODO +10 -12
data/doc/code_organisation.txt +2 -0
data/doc/core/DynLdr.txt +247 -0
data/doc/core/ExeFormat.txt +43 -0
data/doc/core/Expression.txt +220 -0
data/doc/core/GNUExports.txt +27 -0
data/doc/core/Ia32.txt +236 -0
data/doc/core/SerialStruct.txt +108 -0
data/doc/core/VirtualString.txt +145 -0
data/doc/core/WindowsExports.txt +61 -0
data/doc/core/index.txt +1 -0
data/doc/style.css +6 -3
data/doc/usage/debugger.txt +327 -0
data/doc/usage/index.txt +1 -0
data/doc/use_cases.txt +2 -2
data/metasm.gemspec +22 -0
data/{lib/metasm.rb → metasm.rb} +11 -3
data/{lib/metasm → metasm}/compile_c.rb +13 -7
data/metasm/cpu/arc.rb +8 -0
data/metasm/cpu/arc/decode.rb +425 -0
data/metasm/cpu/arc/main.rb +191 -0
data/metasm/cpu/arc/opcodes.rb +588 -0
data/{lib/metasm → metasm/cpu}/arm.rb +7 -5
data/{lib/metasm → metasm/cpu}/arm/debug.rb +2 -2
data/{lib/metasm → metasm/cpu}/arm/decode.rb +13 -12
data/{lib/metasm → metasm/cpu}/arm/encode.rb +23 -8
data/{lib/metasm → metasm/cpu}/arm/main.rb +0 -3
data/metasm/cpu/arm/opcodes.rb +324 -0
data/{lib/metasm → metasm/cpu}/arm/parse.rb +25 -13
data/{lib/metasm → metasm/cpu}/arm/render.rb +2 -2
data/metasm/cpu/arm64.rb +15 -0
data/metasm/cpu/arm64/debug.rb +38 -0
data/metasm/cpu/arm64/decode.rb +289 -0
data/metasm/cpu/arm64/encode.rb +41 -0
data/metasm/cpu/arm64/main.rb +105 -0
data/metasm/cpu/arm64/opcodes.rb +232 -0
data/metasm/cpu/arm64/parse.rb +20 -0
data/metasm/cpu/arm64/render.rb +95 -0
data/{lib/metasm/ppc.rb → metasm/cpu/bpf.rb} +2 -4
data/metasm/cpu/bpf/decode.rb +142 -0
data/metasm/cpu/bpf/main.rb +60 -0
data/metasm/cpu/bpf/opcodes.rb +81 -0
data/metasm/cpu/bpf/render.rb +41 -0
data/metasm/cpu/cy16.rb +9 -0
data/metasm/cpu/cy16/decode.rb +253 -0
data/metasm/cpu/cy16/main.rb +63 -0
data/metasm/cpu/cy16/opcodes.rb +78 -0
data/metasm/cpu/cy16/render.rb +41 -0
data/metasm/cpu/dalvik.rb +11 -0
data/{lib/metasm → metasm/cpu}/dalvik/decode.rb +35 -13
data/{lib/metasm → metasm/cpu}/dalvik/main.rb +51 -2
data/{lib/metasm → metasm/cpu}/dalvik/opcodes.rb +19 -11
data/metasm/cpu/ia32.rb +17 -0
data/{lib/metasm → metasm/cpu}/ia32/compile_c.rb +5 -7
data/{lib/metasm → metasm/cpu}/ia32/debug.rb +5 -5
data/{lib/metasm → metasm/cpu}/ia32/decode.rb +246 -59
data/{lib/metasm → metasm/cpu}/ia32/decompile.rb +7 -7
data/{lib/metasm → metasm/cpu}/ia32/encode.rb +19 -13
data/{lib/metasm → metasm/cpu}/ia32/main.rb +51 -8
data/metasm/cpu/ia32/opcodes.rb +1424 -0
data/{lib/metasm → metasm/cpu}/ia32/parse.rb +47 -16
data/{lib/metasm → metasm/cpu}/ia32/render.rb +31 -4
data/metasm/cpu/mips.rb +14 -0
data/{lib/metasm → metasm/cpu}/mips/compile_c.rb +1 -1
data/metasm/cpu/mips/debug.rb +42 -0
data/{lib/metasm → metasm/cpu}/mips/decode.rb +46 -16
data/{lib/metasm → metasm/cpu}/mips/encode.rb +4 -3
data/{lib/metasm → metasm/cpu}/mips/main.rb +11 -4
data/{lib/metasm → metasm/cpu}/mips/opcodes.rb +86 -17
data/{lib/metasm → metasm/cpu}/mips/parse.rb +1 -1
data/{lib/metasm → metasm/cpu}/mips/render.rb +1 -1
data/{lib/metasm/dalvik.rb → metasm/cpu/msp430.rb} +1 -1
data/metasm/cpu/msp430/decode.rb +247 -0
data/metasm/cpu/msp430/main.rb +62 -0
data/metasm/cpu/msp430/opcodes.rb +101 -0
data/{lib/metasm → metasm/cpu}/pic16c/decode.rb +6 -7
data/{lib/metasm → metasm/cpu}/pic16c/main.rb +0 -0
data/{lib/metasm → metasm/cpu}/pic16c/opcodes.rb +1 -1
data/{lib/metasm/mips.rb → metasm/cpu/ppc.rb} +4 -4
data/{lib/metasm → metasm/cpu}/ppc/decode.rb +18 -12
data/{lib/metasm → metasm/cpu}/ppc/decompile.rb +3 -3
data/{lib/metasm → metasm/cpu}/ppc/encode.rb +2 -2
data/{lib/metasm → metasm/cpu}/ppc/main.rb +17 -12
data/{lib/metasm → metasm/cpu}/ppc/opcodes.rb +11 -5
data/metasm/cpu/ppc/parse.rb +55 -0
data/metasm/cpu/python.rb +8 -0
data/metasm/cpu/python/decode.rb +136 -0
data/metasm/cpu/python/main.rb +36 -0
data/metasm/cpu/python/opcodes.rb +180 -0
data/{lib/metasm → metasm/cpu}/sh4.rb +1 -1
data/{lib/metasm → metasm/cpu}/sh4/decode.rb +48 -17
data/{lib/metasm → metasm/cpu}/sh4/main.rb +13 -4
data/{lib/metasm → metasm/cpu}/sh4/opcodes.rb +7 -8
data/metasm/cpu/x86_64.rb +15 -0
data/{lib/metasm → metasm/cpu}/x86_64/compile_c.rb +28 -17
data/{lib/metasm → metasm/cpu}/x86_64/debug.rb +4 -4
data/{lib/metasm → metasm/cpu}/x86_64/decode.rb +57 -15
data/{lib/metasm → metasm/cpu}/x86_64/encode.rb +55 -26
data/{lib/metasm → metasm/cpu}/x86_64/main.rb +14 -6
data/metasm/cpu/x86_64/opcodes.rb +136 -0
data/{lib/metasm → metasm/cpu}/x86_64/parse.rb +10 -2
data/metasm/cpu/x86_64/render.rb +35 -0
data/metasm/cpu/z80.rb +9 -0
data/metasm/cpu/z80/decode.rb +313 -0
data/metasm/cpu/z80/main.rb +67 -0
data/metasm/cpu/z80/opcodes.rb +224 -0
data/metasm/cpu/z80/render.rb +59 -0
data/{lib/metasm/os/main.rb → metasm/debug.rb} +160 -401
data/{lib/metasm → metasm}/decode.rb +35 -4
data/{lib/metasm → metasm}/decompile.rb +15 -16
data/{lib/metasm → metasm}/disassemble.rb +201 -45
data/{lib/metasm → metasm}/disassemble_api.rb +651 -87
data/{lib/metasm → metasm}/dynldr.rb +220 -133
data/{lib/metasm → metasm}/encode.rb +10 -1
data/{lib/metasm → metasm}/exe_format/a_out.rb +9 -6
data/{lib/metasm → metasm}/exe_format/autoexe.rb +1 -0
data/{lib/metasm → metasm}/exe_format/bflt.rb +57 -27
data/{lib/metasm → metasm}/exe_format/coff.rb +11 -3
data/{lib/metasm → metasm}/exe_format/coff_decode.rb +53 -20
data/{lib/metasm → metasm}/exe_format/coff_encode.rb +11 -13
data/{lib/metasm → metasm}/exe_format/dex.rb +13 -5
data/{lib/metasm → metasm}/exe_format/dol.rb +1 -0
data/{lib/metasm → metasm}/exe_format/elf.rb +93 -57
data/{lib/metasm → metasm}/exe_format/elf_decode.rb +143 -34
data/{lib/metasm → metasm}/exe_format/elf_encode.rb +122 -31
data/metasm/exe_format/gb.rb +65 -0
data/metasm/exe_format/javaclass.rb +424 -0
data/{lib/metasm → metasm}/exe_format/macho.rb +204 -16
data/{lib/metasm → metasm}/exe_format/main.rb +26 -3
data/{lib/metasm → metasm}/exe_format/mz.rb +1 -0
data/{lib/metasm → metasm}/exe_format/nds.rb +7 -4
data/{lib/metasm → metasm}/exe_format/pe.rb +71 -8
data/metasm/exe_format/pyc.rb +167 -0
data/{lib/metasm → metasm}/exe_format/serialstruct.rb +67 -14
data/{lib/metasm → metasm}/exe_format/shellcode.rb +7 -3
data/metasm/exe_format/shellcode_rwx.rb +114 -0
data/metasm/exe_format/swf.rb +205 -0
data/{lib/metasm → metasm}/exe_format/xcoff.rb +7 -7
data/metasm/exe_format/zip.rb +335 -0
data/metasm/gui.rb +13 -0
data/{lib/metasm → metasm}/gui/cstruct.rb +35 -41
data/{lib/metasm → metasm}/gui/dasm_coverage.rb +11 -11
data/{lib/metasm → metasm}/gui/dasm_decomp.rb +7 -20
data/{lib/metasm → metasm}/gui/dasm_funcgraph.rb +0 -0
data/metasm/gui/dasm_graph.rb +1695 -0
data/{lib/metasm → metasm}/gui/dasm_hex.rb +12 -8
data/{lib/metasm → metasm}/gui/dasm_listing.rb +43 -28
data/{lib/metasm → metasm}/gui/dasm_main.rb +310 -53
data/{lib/metasm → metasm}/gui/dasm_opcodes.rb +5 -19
data/{lib/metasm → metasm}/gui/debug.rb +93 -27
data/{lib/metasm → metasm}/gui/gtk.rb +162 -40
data/{lib/metasm → metasm}/gui/qt.rb +12 -2
data/{lib/metasm → metasm}/gui/win32.rb +179 -42
data/{lib/metasm → metasm}/gui/x11.rb +59 -59
data/{lib/metasm → metasm}/main.rb +389 -264
data/{lib/metasm/os/remote.rb → metasm/os/gdbremote.rb} +146 -54
data/{lib/metasm → metasm}/os/gnu_exports.rb +1 -1
data/{lib/metasm → metasm}/os/linux.rb +628 -151
data/metasm/os/main.rb +330 -0
data/{lib/metasm → metasm}/os/windows.rb +132 -42
data/{lib/metasm → metasm}/os/windows_exports.rb +141 -0
data/{lib/metasm → metasm}/parse.rb +26 -24
data/{lib/metasm → metasm}/parse_c.rb +221 -116
data/{lib/metasm → metasm}/preprocessor.rb +55 -40
data/{lib/metasm → metasm}/render.rb +14 -38
data/misc/hexdump.rb +2 -1
data/misc/lint.rb +58 -0
data/misc/txt2html.rb +9 -7
data/samples/bindiff.rb +3 -4
data/samples/dasm-plugins/bindiff.rb +15 -0
data/samples/dasm-plugins/bookmark.rb +133 -0
data/samples/dasm-plugins/c_constants.rb +57 -0
data/samples/dasm-plugins/colortheme_solarized.rb +125 -0
data/samples/dasm-plugins/cppobj_funcall.rb +60 -0
data/samples/dasm-plugins/dasm_all.rb +70 -0
data/samples/dasm-plugins/demangle_cpp.rb +31 -0
data/samples/dasm-plugins/deobfuscate.rb +251 -0
data/samples/dasm-plugins/dump_text.rb +35 -0
data/samples/dasm-plugins/export_graph_svg.rb +86 -0
data/samples/dasm-plugins/findgadget.rb +75 -0
data/samples/dasm-plugins/hl_opcode.rb +32 -0
data/samples/dasm-plugins/hotfix_gtk_dbg.rb +19 -0
data/samples/dasm-plugins/imm2off.rb +34 -0
data/samples/dasm-plugins/match_libsigs.rb +93 -0
data/samples/dasm-plugins/patch_file.rb +95 -0
data/samples/dasm-plugins/scanfuncstart.rb +36 -0
data/samples/dasm-plugins/scanxrefs.rb +26 -0
data/samples/dasm-plugins/selfmodify.rb +197 -0
data/samples/dasm-plugins/stringsxrefs.rb +28 -0
data/samples/dasmnavig.rb +1 -1
data/samples/dbg-apihook.rb +24 -9
data/samples/dbg-plugins/heapscan.rb +283 -0
data/samples/dbg-plugins/heapscan/compiled_heapscan_lin.c +155 -0
data/samples/dbg-plugins/heapscan/compiled_heapscan_win.c +128 -0
data/samples/dbg-plugins/heapscan/graphheap.rb +616 -0
data/samples/dbg-plugins/heapscan/heapscan.rb +709 -0
data/samples/dbg-plugins/heapscan/winheap.h +174 -0
data/samples/dbg-plugins/heapscan/winheap7.h +307 -0
data/samples/dbg-plugins/trace_func.rb +214 -0
data/samples/disassemble-gui.rb +35 -5
data/samples/disassemble.rb +31 -6
data/samples/dump_upx.rb +24 -12
data/samples/dynamic_ruby.rb +12 -3
data/samples/exeencode.rb +6 -5
data/samples/factorize-headers-peimports.rb +1 -1
data/samples/lindebug.rb +175 -381
data/samples/metasm-shell.rb +1 -2
data/samples/peldr.rb +2 -2
data/tests/all.rb +1 -1
data/tests/arc.rb +26 -0
data/tests/dynldr.rb +22 -4
data/tests/expression.rb +55 -0
data/tests/graph_layout.rb +285 -0
data/tests/ia32.rb +79 -26
data/tests/mips.rb +9 -2
data/tests/x86_64.rb +66 -18
metadata +330 -218
data/lib/metasm/arm/opcodes.rb +0 -177
data/lib/metasm/gui.rb +0 -23
data/lib/metasm/gui/dasm_graph.rb +0 -1354
data/lib/metasm/ia32.rb +0 -14
data/lib/metasm/ia32/opcodes.rb +0 -873
data/lib/metasm/ppc/parse.rb +0 -52
data/lib/metasm/x86_64.rb +0 -12
data/lib/metasm/x86_64/opcodes.rb +0 -118
data/samples/gdbclient.rb +0 -583
data/samples/rubstop.rb +0 -399

@@ -26,7 +26,8 @@ $opts = {
 OptionParser.new { |opt|
 	opt.on('-o file', 'output filename') { |f| $opts[:outfilename] = f }
-	opt.on('-f') { $opts[:overwrite_outfile] = true }
+	opt.on('-i', 'dont overwrite existing outfile') { $opts[:nooverwrite_outfile] = true }
+	opt.on('-f', 'overwrite existing outfile (default)') { $opts.delete :nooverwrite_outfile }	# without this, optparse autocomplete to --fno-pic and break older scripts...
 	opt.on('--c', 'parse source as a C file') { $opts[:srctype] = 'c' }
 	opt.on('--asm', 'parse asm as an ASM file') { $opts[:srctype] = 'asm' }
 	opt.on('--stdin', 'parse source on stdin') { ARGV << '-' }
@@ -44,7 +45,7 @@ OptionParser.new { |opt|
 	opt.on('--le', 'set cpu in little-endian mode') { $opts[:cpu].endianness = :little }
 	opt.on('--be', 'set cpu in big-endian mode') { $opts[:cpu].endianness = :big }
 	opt.on('--fno-pic', 'generate position-dependant code') { $opts[:cpu].generate_PIC = false }
-	opt.on('--shared', 'generate shared library') { $opts[:exetype] = :lib }
+	opt.on('--shared', '--lib', '--dll', 'generate shared library') { $opts[:exetype] = :lib }
 	opt.on('--ruby-module-hack', 'use the dynldr module hack to use any ruby lib available for ruby symbols') { $opts[:dldrhack] = true }
 }.parse!
@@ -62,7 +63,7 @@ else
 	src << DATA.read	# the text after __END__ in this file
 end
-if $opts[:outfilename] and not $opts[:overwrite_outfile] and File.exist?($opts[:outfilename])
+if $opts[:outfilename] and $opts[:nooverwrite_outfile] and File.exist?($opts[:outfilename])
 		abort "Error: target file exists !"
 end
@@ -93,7 +94,7 @@ if $opts[:to_string]
 	end
 	if of = $opts[:outfilename]
-		abort "Error: target file #{of.inspect} exists !" if File.exists? of and not $opts[:overwrite_outfile]
+		abort "Error: target file #{of.inspect} exists !" if File.exists?(of) and $opts[:nooverwrite_outfile]
 		File.open(of, 'w') { |fd| fd.puts str }
 		puts "saved to file #{of.inspect}"
 	else
@@ -101,7 +102,7 @@ if $opts[:to_string]
 	end
 else
 	of = $opts[:outfilename] ||= 'a.out'
-	abort "Error: target file #{of.inspect} exists !" if File.exists? of and not $opts[:overwrite_outfile]
+	abort "Error: target file #{of.inspect} exists !" if File.exists?(of) and $opts[:nooverwrite_outfile]
 	Metasm::DynLdr.compile_binary_module_hack(exe) if $opts[:dldrhack]
 	exe.encode_file(of, $opts[:exetype])
 	puts "saved to file #{of.inspect}"

data/samples/factorize-headers-peimports.rb CHANGED

@@ -41,7 +41,7 @@ if opts[:vspath] ||= ARGV.shift
 end
 funcnames = opts[:exe].map { |e|
-	pe = PE.decode_file_header(e)
+	pe = PE.decode_file_header(e) rescue next
 	pe.decode_imports
 	if not pe.imports
 		puts "#{e} has no imports"

data/samples/lindebug.rb CHANGED

@@ -47,14 +47,15 @@ module Ansi
 		$stdin.ioctl(TIOCGWINSZ, s) >= 0 ? s.unpack('SS') : [80, 25]
 	end
 	def self.set_term_canon(bool)
-		tty = ''.ljust(256)
-		$stdin.ioctl(TCGETS, tty)
+		ttys = ''.ljust(256)
+		$stdin.ioctl(TCGETS, ttys)
+		tty = ttys.unpack('C*')
 		if bool
 			tty[12] &= ~(ECHO|CANON)
 		else
 			tty[12] |= ECHO|CANON
 		end
-		$stdin.ioctl(TCSETS, tty)
+		$stdin.ioctl(TCSETS, tty.pack('C*'))
 	end
 	ESC_SEQ = {'A' => :up, 'B' => :down, 'C' => :right, 'D' => :left,
@@ -85,49 +86,11 @@ module Ansi
 	end
 end
-class Indirect < Metasm::ExpressionType
-	attr_accessor :ptr, :sz
-	UNPACK_STR = {1 => 'C', 2 => 'S', 4 => 'L'}
-	def initialize(ptr, sz) @ptr, @sz = ptr, sz end
-	def bind(bd)
-		raw = bd['tracer_memory'][@ptr.bind(bd).reduce, @sz]
-		Metasm::Expression[raw.unpack(UNPACK_STR[@sz]).first]
-	end
-	def externals ; @ptr.externals end
-end
-class ExprParser < Metasm::Expression
-	def self.parse_intfloat(lex, tok)
-		case tok.raw
-		when 'byte', 'word', 'dword'
-			nil while ntok = lex.readtok and ntok.type == :space
-			nil while ntok = lex.readtok and ntok.type == :space if ntok and ntok.raw == 'ptr'
-			if ntok and ntok.raw == '['
-				tok.value = Indirect.new(parse(lex), {'byte' => 1, 'word' => 2, 'dword' => 4}[tok.raw])
-				nil while ntok = lex.readtok and ntok.type == :space
-				nil while ntok = lex.readtok and ntok.type == :space if ntok and ntok.raw == ']'
-				lex.unreadtok ntok
-			end
-		else super(lex, tok)
-		end
-	end
-	def self.parse_value(lex)
-		nil while tok = lex.readtok and tok.type == :space
-		lex.unreadtok tok
-		if tok and tok.type == :punct and tok.raw == '['
-			tt = tok.dup
-			tt.type = :string
-			tt.raw = 'dword'
-			lex.unreadtok tt
-		end
-		super(lex)
-	end
-end
 class LinDebug
-	attr_accessor :win_data_height, :win_code_height, :win_prpt_height
+	attr_accessor :win_reg_height, :win_data_height, :win_code_height, :win_prpt_height
 	def init_screen
 		Ansi.set_term_canon(true)
+		@win_reg_height = 2
 		@win_data_height = 20
 		@win_code_height = 20
 		resize
@@ -139,7 +102,7 @@ class LinDebug
 		$stdout.flush
 	end
-	def win_data_start; 2 end
+	def win_data_start; @win_reg_height end
 	def win_code_start; win_data_start+win_data_height end
 	def win_prpt_start; win_code_start+win_code_height end
@@ -164,9 +127,8 @@ class LinDebug
 	attr_accessor :dataptr, :codeptr, :rs, :promptlog, :command
 	def initialize(rs)
 		@rs = rs
-		@rs.logger = self
+		@rs.set_log_proc { |l| add_log l }
 		@datafmt = 'db'
-		@watch = nil
 		@prompthistlen = 20
 		@prompthistory = []
@@ -176,6 +138,7 @@ class LinDebug
 		@promptpos = 0
 		@log_off = 0
 		@console_width = 80
+		@oldregs = {}
 		@running = false
 		@focus = :prompt
@@ -185,7 +148,7 @@ class LinDebug
 	end
 	def init_rs
-		@codeptr = @dataptr = @rs.regs_cache['eip']	# avoid initial faults
+		@codeptr = @dataptr = @rs.pc	# avoid initial faults
 	end
 	def main_loop
@@ -201,9 +164,9 @@ class LinDebug
 				$stdout.print Ansi.set_cursor_pos(@console_height, 1)
 			end
 		rescue
-			$stdout.puts $!, $!.backtrace
+			puts $!, $!.backtrace
 		end
-		$stdout.puts @promptlog.last
+		puts @promptlog.last
 	end
 	# optimize string to display to stdout
@@ -218,7 +181,7 @@ class LinDebug
 	def display_screen(screenlines, cursx, cursy)
 		@oldscreenbuf ||= []
-		lines = screenlines.to_a
+		lines = screenlines.lines
 		oldlines = @oldscreenbuf
 		@oldscreenbuf = lines
 		screenlines = lines.zip(oldlines).map { |l, ol| l == ol ? "\n" : l }.join
@@ -247,41 +210,40 @@ class LinDebug
 	end
 	def _updateregs
-		text = ''
-		text << ' '
-		x = 1
-		%w[eax ebx ecx edx eip].each { |r|
-			text << Color[:changed] if @rs.regs_cache[r] != @rs.oldregs[r]
-			text << r << ?=
-			text << ('%08X' % @rs.regs_cache[r])
-			text << Color[:normal] if @rs.regs_cache[r] != @rs.oldregs[r]
-			text << '  '
-			x += r.length + 11
-		}
-		text << (' '*([@console_width-x, 0].max)) << "\n" << ' '
-		x = 1
-		%w[esi edi ebp esp].each { |r|
-			text << Color[:changed] if @rs.regs_cache[r] != @rs.oldregs[r]
-			text << r << ?=
-			text << ('%08X' % @rs.regs_cache[r])
-			text << Color[:normal] if @rs.regs_cache[r] != @rs.oldregs[r]
-			text << '  '
-			x += r.length + 11
+		pvrsz = 0
+		words = @rs.register_list.map { |r|
+			rs = r.to_s.rjust(pvrsz)
+			pvrsz = rs.length
+			rv = @rs[r]
+			["#{rs}=%0#{@rs.register_size[r]/4}X " % rv,
+				(@oldregs[r] != rv)]
+		} + @rs.flag_list.map { |fl|
+			fv = @rs.get_flag(fl)
+			[fv ? fl.to_s.upcase : fl.to_s.downcase,
+				(@oldregs[fl] != fv)]
 		}
-		Rubstop::EFLAGS.sort.each { |off, flag|
-			val = @rs.regs_cache['eflags'] & (1<<off)
-			flag = flag.upcase if val != 0
-			if val != @rs.oldregs['eflags'] & (1 << off)
-				text << Color[:changed]
-				text << flag
-				text << Color[:normal]
-			else
-				text << flag
+		text = ' '
+		linelen = 1	# line length w/o ansi colors
+		owr = @win_reg_height
+		@win_reg_height = 1
+		words.each { |w, changed|
+			if linelen + w.length >= @console_width - 1
+				text << (' '*([@console_width-linelen, 0].max)) << "\n "
+				linelen = 1
+				@win_reg_height += 1
 			end
+			text << Color[:changed] if changed
+			text << w
+			text << Color[:normal] if changed
 			text << ' '
-			x += 2
+			linelen += w.length+1
 		}
-		text << (' '*([@console_width-x, 0].max)) << "\n"
+		resize if owr != @win_reg_height
+		text << (' '*([@console_width-linelen, 0].max)) << "\n"
 	end
 	def updatecode
@@ -291,21 +253,23 @@ class LinDebug
 	def _updatecode
 		if @codeptr
 			addr = @codeptr
-		elsif @rs.oldregs['eip'] and @rs.oldregs['eip'] < @rs.regs_cache['eip'] and @rs.oldregs['eip'] + 8 >= @rs.regs_cache['eip']
-			addr = @rs.oldregs['eip']
+		elsif @oldregs[@rs.register_pc] and @oldregs[@rs.register_pc] < @rs.pc and @oldregs[@rs.register_pc] + 8 >= @rs.pc
+			addr = @oldregs[@rs.register_pc]
 		else
-			addr = @rs.regs_cache['eip']
+			addr = @rs.pc
 		end
 		@codeptr = addr
-		if @rs.findfilemap(addr) == '???'
-			base = addr & 0xffff_f000
+		addrsz = @rs.register_size[@rs.register_pc]
+		addrfmt = "%0#{addrsz/4}X"
+		if not @rs.addr2module(addr) and @rs.shortname !~ /remote/
+			base = addr & ((1 << addrsz) - 0x1000)
 			@noelfsig ||= {}	# cache elfmagic notfound
-			if not @noelfsig[base] and base < 0xc000_0000
-				self.statusline = " scanning for elf header at #{'%08X' % base}"
+			if not @noelfsig[base] and base < ((1 << addrsz) - 0x1_0000)
+				self.statusline = " scanning for elf header at #{addrfmt % base}"
 				128.times {
-					@statusline = " scanning for elf header at #{'%08X' % base}"
-					if not @noelfsig[base] and @rs[base, 4] == Metasm::ELF::MAGIC
+					@statusline = " scanning for elf header at #{addrfmt % base}"
+					if not @noelfsig[base] and @rs[base, Metasm::ELF::MAGIC.length] == Metasm::ELF::MAGIC
 						@rs.loadsyms(base, base.to_s(16))
 						break
 					else
@@ -320,36 +284,43 @@ class LinDebug
 		text = ''
 		text << Color[:border]
-		title = @rs.findsymbol(addr)
+		title = @rs.addrname(addr)
 		pre  = [@console_width-100, 6].max
 		post = @console_width - (pre + title.length + 2)
 		text << Ansi.hline(pre) << ' ' << title << ' ' << Ansi.hline(post) << Color[:normal] << "\n"
+		seg = ''
+		seg = ('%04X' % @rs['cs']) << ':' if @rs.cpu.shortname =~ /ia32|x64/
 		cnt = @win_code_height
 		while (cnt -= 1) > 0
 			if @rs.symbols[addr]
 				text << ('    ' << @rs.symbols[addr] << ?:) << Ansi::ClearLineAfter << "\n"
 				break if (cnt -= 1) <= 0
 			end
-			text << Color[:hilight] if addr == @rs.regs_cache['eip']
-			text << ('%04X' % @rs.regs_cache['cs']) << ':'
-			text << ('%08X' % addr)
-			di = @rs.mnemonic_di(addr)
-			di = nil if di and addr < @rs.regs_cache['eip'] and addr+di.bin_length > @rs.regs_cache['eip']
+			text << Color[:hilight] if addr == @rs.pc
+			text << seg
+			if @rs.shortname =~ /remote/ and @rs.realmode
+				text << (addrfmt % (addr - 16*@rs['cs']))
+			else
+				text << (addrfmt % addr)
+			end
+			di = @rs.di_at(addr)
+			di = nil if di and addr < @rs.pc and addr+di.bin_length > @rs.pc
 			len = (di ? di.bin_length : 1)
 			text << '  '
-			text << @rs[addr, [len, 10].min].unpack('C*').map { |c| '%02X' % c }.join.ljust(22)
+			text << @rs.memory[addr, [len, 10].min].to_s.unpack('C*').map { |c| '%02X' % c }.join.ljust(22)
 			if di
 				text <<
-				if addr == @rs.regs_cache['eip']
-					"*#{di.instruction}".ljust([@console_width-37, 0].max)
+				if addr == @rs.pc
+					"*#{di.instruction}".ljust([@console_width-(addrsz/4+seg.length+24), 0].max)
 				else
 					" #{di.instruction}" << Ansi::ClearLineAfter
 				end
 			else
 				text << ' <unk>' << Ansi::ClearLineAfter
 			end
-			text << Color[:normal] if addr == @rs.regs_cache['eip']
+			text << Color[:normal] if addr == @rs.pc
 			addr += len
 			text << "\n"
 		end
@@ -361,27 +332,33 @@ class LinDebug
 	end
 	def _updatedata
-		@dataptr &= 0xffff_ffff
+		addrsz = @rs.register_size[@rs.register_pc]
+		addrfmt = "%0#{addrsz/4}X"
+		@dataptr &= ((1 << addrsz) - 1)
 		addr = @dataptr
 		text = ''
 		text << Color[:border]
-		title = @rs.findsymbol(addr)
+		title = @rs.addrname(addr)
 		pre  = [@console_width-100, 6].max
 		post = [@console_width - (pre + title.length + 2), 0].max
 		text << Ansi.hline(pre) << ' ' << title << ' ' << Ansi.hline(post) << Color[:normal] << "\n"
+		seg = ''
+		seg = ('%04X' % @rs['ds']) << ':' if @rs.cpu.shortname =~ /^ia32/
 		cnt = @win_data_height
 		while (cnt -= 1) > 0
-			raw = @rs[addr, 16].to_s
-			text << ('%04X' % @rs.regs_cache['ds']) << ':' << ('%08X' % addr) << '  '
+			raw = @rs.memory[addr, 16].to_s
+			text << seg << (addrfmt % addr) << '  '
 			case @datafmt
 			when 'db'; text << raw[0,8].unpack('C*').map { |c| '%02x ' % c }.join << ' ' <<
 				   raw[8,8].to_s.unpack('C*').map { |c| '%02x ' % c }.join
 			when 'dw'; text << raw.unpack('S*').map { |c| '%04x ' % c }.join
 			when 'dd'; text << raw.unpack('L*').map { |c| '%08x ' % c }.join
 			end
-			text << ' ' << raw.unpack('C*').map { |c| (0x20..0x7e).include?(c) ? c : ?. }.pack('C*')
+			text << ' ' << raw.unpack('C*').map { |c| (0x20..0x7e).include?(c) ? c : 0x2e }.pack('C*')
 			text << Ansi::ClearLineAfter << "\n"
 			addr += 16
 		end
@@ -420,17 +397,17 @@ class LinDebug
 		@console_height, @console_width = Ansi.get_terminal_size
 		@win_data_height = 1 if @win_data_height < 1
 		@win_code_height = 1 if @win_code_height < 1
-		if @win_data_height + @win_code_height + 5 > @console_height
+		if @win_data_height + @win_code_height + @win_reg_height + 3 > @console_height
 			@win_data_height = @console_height/2 - 4
 			@win_code_height = @console_height/2 - 4
 		end
-		@win_prpt_height = @console_height-(@win_data_height+@win_code_height+2) - 1
+		@win_prpt_height = @console_height-(@win_data_height+@win_code_height+@win_reg_height) - 1
 		@oldscreenbuf = []
 		update
 	end
 	def log(*strs)
-		strs.each { |str|
+	    strs.each { |str|
 		raise str.inspect if not str.kind_of? ::String
 		str = str.chomp
 		if str.length > @console_width
@@ -440,85 +417,52 @@ class LinDebug
 		end
 		@promptlog << str
 		@promptlog.shift if @promptlog.length > @promptloglen
-		}
+	    }
 	end
-	def puts(*s)
-		s.each { |s_| log s_.to_s }
-		super(*s) if not @running
-		update rescue super(*s)
-	end
-	def mem_binding(expr)
-		b = @rs.regs_cache.dup
-		ext = expr.externals
-		(ext - @rs.regs_cache.keys).each { |ex|
-			if not s = @rs.symbols.index(ex)
-				near = @rs.symbols.values.grep(/#{ex}/i)
-				if near.length > 1
-					log "#{ex.inspect} is ambiguous: #{near.inspect}"
-					return {}
-				elsif near.empty?
-					log "unknown value #{ex.inspect}"
-					return {}
-				else
-					log "using #{near.first.inspect} for #{ex.inspect}"
-					s = @rs.symbols.index(near.first)
-				end
-			end
-			b[ex] = s
-		}
-		b['tracer_memory'] = @rs
-		b
+	def add_log(l)
+		log l
+		puts l if not @running
+		update rescue puts l
 	end
 	def exec_prompt
 		@log_off = 0
 		log ':'+@promptbuf
 		return if @promptbuf == ''
-		lex = Metasm::Preprocessor.new.feed @promptbuf
+		str = @promptbuf
 		@prompthistory << @promptbuf
 		@prompthistory.shift if @prompthistory.length > @prompthistlen
 		@promptbuf = ''
 		@promptpos = @promptbuf.length
-		argint = lambda {
-			begin
-				raise if not e = ExprParser.parse(lex)
-			rescue
-				log 'syntax error'
-				return
-			end
-			e = e.bind(mem_binding(e)).reduce
-			if e.kind_of? Integer; e
-			else log "could not resolve #{e.inspect}" ; nil
-			end
-		}
-		cmd = lex.readtok
-		cmd = cmd.raw if cmd
-		nil while ntok = lex.readtok and ntok.type == :space
-		lex.unreadtok ntok
+		cmd, str = str.split(/\s+/, 2)
 		if @command.has_key? cmd
-			@command[cmd].call(lex, argint)
+			@command[cmd].call(str.to_s)
 		else
 			if cmd and (poss = @command.keys.find_all { |c| c[0, cmd.length] == cmd }).length == 1
-				@command[poss.first].call(lex, argint)
+				@command[poss.first].call(str.to_s)
 			else
 				log 'unknown command'
 			end
 		end
 	end
+	def preupdate
+		@rs.register_list.each { |r| @oldregs[r] = @rs[r] }
+		@rs.flag_list.each { |fl| @oldregs[fl] = @rs.get_flag(fl) }
+	end
 	def updatecodeptr
-		@codeptr ||= @rs.regs_cache['eip']
-		if @codeptr > @rs.regs_cache['eip'] or @codeptr < @rs.regs_cache['eip'] - 6*@win_code_height
-			@codeptr = @rs.regs_cache['eip']
-		elsif @codeptr != @rs.regs_cache['eip']
+		@codeptr ||= @rs.pc
+		if @codeptr > @rs.pc or @codeptr < @rs.pc - 6*@win_code_height
+			@codeptr = @rs.pc
+		elsif @codeptr != @rs.pc
 			addr = @codeptr
 			addrs = []
-			while addr < @rs.regs_cache['eip']
+			while addr < @rs.pc
 				addrs << addr
-				o = ((di = @rs.mnemonic_di(addr)) ? di.bin_length : 0)
+				o = ((di = @rs.di_at(addr)) ? di.bin_length : 0)
 				addr += ((o == 0) ? 1 : o)
 			end
 			if addrs.length > @win_code_height-4
@@ -529,36 +473,40 @@ class LinDebug
 	end
 	def updatedataptr
-		@dataptr = @watch.bind(mem_binding(@watch)).reduce if @watch
 	end
 	def singlestep
 		self.statusline = ' target singlestepping...'
-		@rs.singlestep
+		preupdate
+		@rs.singlestep_wait
 		updatecodeptr
 		@statusline = nil
 	end
 	def stepover
 		self.statusline = ' target running...'
-		@rs.stepover
+		preupdate
+		@rs.stepover_wait
 		updatecodeptr
 		@statusline = nil
 	end
 	def cont(*a)
 		self.statusline = ' target running...'
-		@rs.cont(*a)
+		preupdate
+		@rs.continue_wait(*a)
 		updatecodeptr
 		@statusline = nil
 	end
 	def stepout
 		self.statusline = ' target running...'
-		@rs.stepout
+		preupdate
+		@rs.stepout_wait
 		updatecodeptr
 		@statusline = nil
 	end
 	def syscall
 		self.statusline = ' target running to next syscall...'
-		@rs.syscall
+		preupdate
+		@rs.syscall_wait
 		updatecodeptr
 		@statusline = nil
 	end
@@ -578,17 +526,14 @@ class LinDebug
 			end
 			break if handle_keypress(Ansi.getkey)
 		end
-		@rs.checkbp
 	end
 	def handle_keypress(k)
 			case k
-			when 4; log 'exiting'; return true	 # eof
-			when ?\e; focus = :prompt
+			when ?\4; log 'exiting'; return true	 # eof
+			when ?\e; @focus = :prompt
 			when :f5;  cont
-			when :f6
-				syscall
-				log @rs.syscallnr.index(@rs.regs_cache['orig_eax']) || @rs.regs_cache['orig_eax'].to_s
+			when :f6;  syscall
 			when :f10; stepover
 			when :f11; singlestep
 			when :f12; stepout
@@ -607,9 +552,9 @@ class LinDebug
 				when :data
 					@dataptr -= 16
 				when :code
-					@codeptr ||= @rs.regs_cache['eip']
+					@codeptr ||= @rs.pc
 					@codeptr -= (1..10).find { |off|
-						di = @rs.mnemonic_di(@codeptr-off)
+						di = @rs.di_at(@codeptr-off)
 						di.bin_length == off if di
 					} || 10
 				end
@@ -628,25 +573,25 @@ class LinDebug
 				when :data
 					@dataptr += 16
 				when :code
-					@codeptr ||= @rs.regs_cache['eip']
-					di = @rs.mnemonic_di(@codeptr)
+					@codeptr ||= @rs.pc
+					di = @rs.di_at(@codeptr)
 					@codeptr += (di ? (di.bin_length || 1) : 1)
 				end
 			when :left;  @promptpos -= 1 if @promptpos > 0
 			when :right; @promptpos += 1 if @promptpos < @promptbuf.length
 			when :home;  @promptpos = 0
 			when :end;   @promptpos = @promptbuf.length
-			when :backspace, 0x7f; @promptbuf[@promptpos-=1, 1] = '' if @promptpos > 0
+			when :backspace, ?\x7f; @promptbuf[@promptpos-=1, 1] = '' if @promptpos > 0
 			when :suppr; @promptbuf[@promptpos, 1] = '' if @promptpos < @promptbuf.length
 			when :pgup
 				case @focus
 				when :prompt; @log_off += @win_prpt_height-3
 				when :data; @dataptr -= 16*(@win_data_height-1)
 				when :code
-					@codeptr ||= @rs.regs_cache['eip']
+					@codeptr ||= @rs.pc
 					(@win_code_height-1).times {
 						@codeptr -= (1..10).find { |off|
-							di = @rs.mnemonic_di(@codeptr-off)
+							di = @rs.di_at(@codeptr-off)
 							di.bin_length == off if di
 						} || 10
 					}
@@ -656,8 +601,8 @@ class LinDebug
 				when :prompt; @log_off -= @win_prpt_height-3
 				when :data; @dataptr += 16*(@win_data_height-1)
 				when :code
-					@codeptr ||= @rs.regs_cache['eip']
-					(@win_code_height-1).times { @codeptr += ((o = @rs.mnemonic_di(@codeptr)) ? [o.bin_length, 1].max : 1) }
+					@codeptr ||= @rs.pc
+					(@win_code_height-1).times { @codeptr += ((o = @rs.di_at(@codeptr)) ? [o.bin_length, 1].max : 1) }
 				end
 			when ?\t
 				if not @promptbuf[0, @promptpos].include? ' '
@@ -676,7 +621,7 @@ class LinDebug
 				rescue Exception
 					log "error: #$!", *$!.backtrace
 				end
-			when 0x20..0x7e
+			when ?\ ..?~
 				@promptbuf[@promptpos, 0] = k.chr
 				@promptpos += 1
 			else log "unknown key pressed #{k.inspect}"
@@ -685,240 +630,89 @@ class LinDebug
 	end
 	def load_commands
-		ntok = nil
-		@command['kill'] = lambda { |lex, int|
+		@command['kill'] = lambda { |str|
 			@rs.kill
 			@running = false
 			log 'killed'
 		}
-		@command['quit'] = @command['detach'] = @command['exit'] = lambda { |lex, int|
+		@command['quit'] = @command['detach'] = @command['exit'] = lambda { |str|
 			@rs.detach
 			@running = false
 		}
-		@command['closeui'] = lambda { |lex, int|
-			@rs.logger = nil
+		@command['closeui'] = lambda { |str|
 			@running = false
 		}
-		@command['bpx'] = lambda { |lex, int|
-			addr = int[]
-			@rs.bpx addr
-		}
-		@command['bphw'] = lambda { |lex, int|
-			type = lex.readtok.raw
-			addr = int[]
-			@rs.set_hwbp type, addr
-		}
-		@command['bl'] = lambda { |lex, int|
-			log "bpx at #{@rs.findsymbol(@rs.wantbp)}" if @rs.wantbp.kind_of? ::Integer
-			@rs.breakpoints.sort.each { |addr, oct|
-				log "bpx at #{@rs.findsymbol(addr)}"
-			}
-			(0..3).each { |dr|
-				if @rs.regs_cache['dr7'] & (1 << (2*dr)) != 0
-					log "bphw #{{0=>'x', 1=>'w', 2=>'?', 3=>'r'}[(@rs.regs_cache['dr7'] >> (16+4*dr)) & 3]} at #{@rs.findsymbol(@rs.regs_cache["dr#{dr}"])}"
-				end
-			}
+		@command['bpx'] = lambda { |str|
+			@rs.bpx @rs.resolve(str)
 		}
-		@command['bc'] = lambda { |lex, int|
-			@rs.clearbreaks
+		@command['bphw'] = @command['hwbp'] = lambda { |str|
+			type, str = str.split(/\s+/, 2)
+			@rs.hwbp @rs.resolve(str.to_s), type
 		}
-		@command['bt'] = lambda { |lex, int| @rs.backtrace { |t| puts t } }
-		@command['d'] =  lambda { |lex, int| @dataptr = int[] || return }
-		@command['db'] = lambda { |lex, int| @datafmt = 'db' ; @dataptr = int[] || return }
-		@command['dw'] = lambda { |lex, int| @datafmt = 'dw' ; @dataptr = int[] || return }
-		@command['dd'] = lambda { |lex, int| @datafmt = 'dd' ; @dataptr = int[] || return }
-		@command['r'] =  lambda { |lex, int|
-			r = lex.readtok.raw
-			nil while ntok = lex.readtok and ntok.type == :space
+		@command['bt'] = lambda { |str| @rs.stacktrace { |a,t| add_log "#{'%x' % a} #{t}" } }
+		@command['d'] =  lambda { |str| @dataptr = @rs.resolve(str) if str.length > 0 }
+		@command['db'] = lambda { |str| @datafmt = 'db' ; @dataptr = @rs.resolve(str) if str.length > 0 }
+		@command['dw'] = lambda { |str| @datafmt = 'dw' ; @dataptr = @rs.resolve(str) if str.length > 0 }
+		@command['dd'] = lambda { |str| @datafmt = 'dd' ; @dataptr = @rs.resolve(str) if str.length > 0 }
+		@command['r'] =  lambda { |str|
+			r, str = str.split(/\s+/, 2)
 			if r == 'fl'
-				flag = ntok.raw
-				if i = Rubstop::EFLAGS.index(flag)
-					@rs.eflags ^= 1 << i
-					@rs.readregs
-				else
-					log "bad flag #{flag}"
-				end
-			elsif not @rs.regs_cache[r]
+				@rs.toggle_flag(str.to_sym)
+			elsif not @rs[r]
 				log "bad reg #{r}"
-			elsif ntok
-				lex.unreadtok ntok
-				newval = int[]
-				if newval and newval.kind_of? ::Integer
-					@rs.send r+'=', newval
-					@rs.readregs
-				end
+			elsif str and str.length > 0
+				@rs[r] = @rs.resolve(str)
 			else
-				log "#{r} = #{@rs.regs_cache[r]}"
+				log "#{r} = #{@rs[r]}"
 			end
 		}
-		@command['run'] = @command['cont'] = lambda { |lex, int|
-			if tok = lex.readtok
-				lex.unreadtok tok
-				cont int[]
-			else cont
-			end
-		}
-		@command['syscall']    = lambda { |lex, int| syscall }
-		@command['singlestep'] = lambda { |lex, int| singlestep }
-		@command['stepover']   = lambda { |lex, int| stepover }
-		@command['stepout']    = lambda { |lex, int| stepout }
-		@command['g'] = lambda { |lex, int|
-			target = int[]
-			@rs.singlestep if @rs.regs_cache['eip'] == target
-			@rs.bpx target, true
-			cont
-		}
-		@command['u'] = lambda { |lex, int| @codeptr = int[] || break }
-		@command['has_pax'] = lambda { |lex, int|
-			if tok = lex.readtok
-				lex.unreadtok tok
-				if (int[] == 0)
-					@rs.set_pax false
-				else
-					@rs.set_pax true
-				end
-			else @rs.set_pax !@rs.has_pax
-			end
-			log "has_pax now #{@rs.has_pax}"
-		}
-		@command['loadsyms'] = lambda { |lex, int|
-			mapfile = ''
-			mapfile << ntok.raw while ntok = lex.readtok
-			if mapfile != ''
-				@rs.loadmap mapfile
-			else
-				@rs.loadallsyms
-			end
+		@command['g'] = lambda { |str|
+			@rs.go @rs.resolve(str)
 		}
-		@command['scansyms'] = lambda { |lex, int| @rs.scansyms }
-		@command['sym'] = lambda { |lex, int|
-			sym = ''
-			sym << ntok.raw while ntok = lex.readtok
-			s = []
-		       	@rs.symbols.each { |k, v|
-				s << k if v =~ /#{sym}/
-			}
-			if s.empty?
-				log "unknown symbol #{sym}"
-			else
-				s.sort.each { |s_| log "#{'%08x' % s_} #{@rs.symbols_len[s_].to_s.ljust 6} #{@rs.findsymbol(s_)}" }
-			end
-		}
-		@command['delsym'] = lambda { |lex, int|
-			addr = int[]
-			log "deleted #{@rs.symbols.delete addr}"
-			@rs.symbols_len.delete addr
-		}
-		@command['addsym'] = lambda { |lex, int|
-			name = lex.readtok.raw
-			addr = int[]
-			if t = lex.readtok
-				lex.unreadtok t
-				@rs.symbols_len[addr] = int[]
-			else
-				@rs.symbols_len[addr] = 1
-			end
-			@rs.symbols[addr] = name
-		}
-		@command['help'] = lambda { |lex, int|
-			log 'commands: (addr/values are things like dword ptr [ebp+(4*byte [eax])] ), type <tab> to see all commands'
-			log ' bpx <addr>'
-			log ' bphw [r|w|x] <addr>: debug register breakpoint'
-			log ' bl: list breakpoints'
-			log ' bc: clear breakpoints'
-			log ' cont [<signr>]: continue the target sending a signal'
-			log ' d/db/dw/dd [<addr>]: change data type/address'
-			log ' g <addr>: set a bp at <addr> and run'
-			log ' has_pax [0|1]: set has_pax flag'
-			log ' loadsyms: load symbol information from mapped files (from /proc and disk)'
-			log ' ma <addr> <ascii>: write memory'
-			log ' mx <addr> <hex>: write memory'
-			log ' maps: list maps'
-			log ' r <reg> [<value>]: show/change register'
-			log ' r fl <flag>: toggle eflags bit'
-			log ' scansyms: scan memory for ELF headers'
-			log ' sym <symbol regex>: show symbol information'
-			log ' addsym <name> <addr> [<size>]'
-			log ' delsym <addr>'
-			log ' u <addr>: disassemble addr'
-			log ' reload: reload lindebug source'
-			log ' ruby <ruby code>: instance_evals ruby code in current instance'
-			log ' closeui: detach from the underlying RubStop'
-			log 'keys:'
-			log ' F5: continue'
-			log ' F6: syscall'
-			log ' F10: step over'
-			log ' F11: single step'
-			log ' F12: step out (til next ret)'
-			log ' pgup/pgdown: move command history'
-		}
-		@command['reload'] = lambda { |lex, int| load $0 ; load_commands }
-		@command['ruby'] = lambda { |lex, int|
-			str = ''
-			str << ntok.raw while ntok = lex.readtok
-			instance_eval str
-		}
-		@command['maps'] = lambda { |lex, int|
-			@rs.filemap.sort_by { |f, (b, e)| b }.each { |f, (b, e)|
-				log "#{f.ljust 20} #{'%08x' % b} - #{'%08x' % e}"
-			}
-		}
-		@command['ma'] = lambda { |lex, int|
-			addr = int[]
-			str = ''
-			str << ntok.raw while ntok = lex.readtok
-			@rs[addr, str.length] = str
-		}
-		@command['mx'] = lambda { |lex, int|
-			addr = int[]
-			data = [lex.readtok.raw].pack('H*')
-			@rs[addr, data.length] = data
-		}
-		@command['resize'] = lambda { |lex, int| resize }
-		@command['watch'] = lambda { |lex, int| @watch = ExprParser.parse(lex) ; updatedataptr }
-		@command['wd'] = lambda { |lex, int|
+		@command['u'] = lambda { |str| @codeptr = @rs.resolve(str) }
+		@command['ruby'] = lambda { |str| instance_eval str }
+		@command['wd'] = lambda { |str|
 			@focus = :data
-			if tok = lex.readtok
-				lex.unreadtok tok
-				@win_data_height = int[] || return
+			if str.length > 0
+				@win_data_height = @rs.resolve(str)
 				resize
 			end
 		}
-		@command['wc'] = lambda { |lex, int|
+		@command['wc'] = lambda { |str|
 			@focus = :code
-			if tok = lex.readtok
-				lex.unreadtok tok
-				@win_code_height = int[] || return
+			if str.length > 0
+				@win_code_height = @rs.resolve(str)
 				resize
 			end
 		}
-		@command['wp'] = lambda { |lex, int| @focus = :prompt }
-		@command['?'] = lambda { |lex, int|
-			val = int[]
+		@command['wp'] = lambda { |str| @focus = :prompt }
+		@command['?'] = lambda { |str|
+			val = @rs.resolve(str)
 			log "#{val} 0x#{val.to_s(16)} #{[val].pack('L').inspect}"
 		}
-		@command['.'] = lambda { |lex, int| @codeptr = nil }
+		@command['syscall'] = lambda { |str|
+			@rs.syscall_wait(str)
+		}
 	end
 end
 if $0 == __FILE__
 	require 'optparse'
-	filemap = nil
+	opts = { :sc_cpu => 'Ia32' }
 	OptionParser.new { |opt|
-		opt.on('-m map', '--map filemap') { |f| filemap = f }
+		opt.on('-m map', '--map filemap') { |f| opts[:filemap] = f }
+		opt.on('--cpu cpu') { |c| opts[:sc_cpu] = c }
 	}.parse!(ARGV)
-	if not defined? Rubstop
-		if ARGV.first =~ /:/
-			stub = 'gdbclient'
-		else
-			stub = 'rubstop'
-		end
-		require File.join(File.dirname(__FILE__), stub)
+	case ARGV.first
+	when /^(tcp:|udp:)?..+:/, /^ser:/
+		opts[:sc_cpu] = eval(opts[:sc_cpu]) if opts[:sc_cpu] =~ /[.(\s:]/
+		opts[:sc_cpu] = opts[:sc_cpu].new if opts[:sc_cpu].kind_of?(::Class)
+		rs = Metasm::GdbRemoteDebugger.new(ARGV.first, opts[:sc_cpu])
+	else
+		rs = Metasm::LinDebugger.new(ARGV.join(' '))
 	end
-	rs = Rubstop.new(ARGV.join(' '))
-	rs.loadmap(filemap) if filemap
+	rs.load_map(opts[:filemap]) if opts[:filemap]
 	LinDebug.new(rs).main_loop
 end