PyPI - oscura - Versions diffs - 0.5.0__py3-none-any.whl → 0.6.0__py3-none-any.whl - Mend

oscura 0.5.0py3-none-any.whl → 0.6.0py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (513) hide show

oscura/__init__.py +169 -167
oscura/analyzers/__init__.py +3 -0
oscura/analyzers/classification.py +659 -0
oscura/analyzers/digital/__init__.py +0 -48
oscura/analyzers/digital/edges.py +325 -65
oscura/analyzers/digital/extraction.py +0 -195
oscura/analyzers/digital/quality.py +293 -166
oscura/analyzers/digital/timing.py +260 -115
oscura/analyzers/digital/timing_numba.py +334 -0
oscura/analyzers/entropy.py +605 -0
oscura/analyzers/eye/diagram.py +176 -109
oscura/analyzers/eye/metrics.py +5 -5
oscura/analyzers/jitter/__init__.py +6 -4
oscura/analyzers/jitter/ber.py +52 -52
oscura/analyzers/jitter/classification.py +156 -0
oscura/analyzers/jitter/decomposition.py +163 -113
oscura/analyzers/jitter/spectrum.py +80 -64
oscura/analyzers/ml/__init__.py +39 -0
oscura/analyzers/ml/features.py +600 -0
oscura/analyzers/ml/signal_classifier.py +604 -0
oscura/analyzers/packet/daq.py +246 -158
oscura/analyzers/packet/parser.py +12 -1
oscura/analyzers/packet/payload.py +50 -2110
oscura/analyzers/packet/payload_analysis.py +361 -181
oscura/analyzers/packet/payload_patterns.py +133 -70
oscura/analyzers/packet/stream.py +84 -23
oscura/analyzers/patterns/__init__.py +26 -5
oscura/analyzers/patterns/anomaly_detection.py +908 -0
oscura/analyzers/patterns/clustering.py +169 -108
oscura/analyzers/patterns/clustering_optimized.py +227 -0
oscura/analyzers/patterns/discovery.py +1 -1
oscura/analyzers/patterns/matching.py +581 -197
oscura/analyzers/patterns/pattern_mining.py +778 -0
oscura/analyzers/patterns/periodic.py +121 -38
oscura/analyzers/patterns/sequences.py +175 -78
oscura/analyzers/power/conduction.py +1 -1
oscura/analyzers/power/soa.py +6 -6
oscura/analyzers/power/switching.py +250 -110
oscura/analyzers/protocol/__init__.py +17 -1
oscura/analyzers/protocols/__init__.py +1 -22
oscura/analyzers/protocols/base.py +6 -6
oscura/analyzers/protocols/ble/__init__.py +38 -0
oscura/analyzers/protocols/ble/analyzer.py +809 -0
oscura/analyzers/protocols/ble/uuids.py +288 -0
oscura/analyzers/protocols/can.py +257 -127
oscura/analyzers/protocols/can_fd.py +107 -80
oscura/analyzers/protocols/flexray.py +139 -80
oscura/analyzers/protocols/hdlc.py +93 -58
oscura/analyzers/protocols/i2c.py +247 -106
oscura/analyzers/protocols/i2s.py +138 -86
oscura/analyzers/protocols/industrial/__init__.py +40 -0
oscura/analyzers/protocols/industrial/bacnet/__init__.py +33 -0
oscura/analyzers/protocols/industrial/bacnet/analyzer.py +708 -0
oscura/analyzers/protocols/industrial/bacnet/encoding.py +412 -0
oscura/analyzers/protocols/industrial/bacnet/services.py +622 -0
oscura/analyzers/protocols/industrial/ethercat/__init__.py +30 -0
oscura/analyzers/protocols/industrial/ethercat/analyzer.py +474 -0
oscura/analyzers/protocols/industrial/ethercat/mailbox.py +339 -0
oscura/analyzers/protocols/industrial/ethercat/topology.py +166 -0
oscura/analyzers/protocols/industrial/modbus/__init__.py +31 -0
oscura/analyzers/protocols/industrial/modbus/analyzer.py +525 -0
oscura/analyzers/protocols/industrial/modbus/crc.py +79 -0
oscura/analyzers/protocols/industrial/modbus/functions.py +436 -0
oscura/analyzers/protocols/industrial/opcua/__init__.py +21 -0
oscura/analyzers/protocols/industrial/opcua/analyzer.py +552 -0
oscura/analyzers/protocols/industrial/opcua/datatypes.py +446 -0
oscura/analyzers/protocols/industrial/opcua/services.py +264 -0
oscura/analyzers/protocols/industrial/profinet/__init__.py +23 -0
oscura/analyzers/protocols/industrial/profinet/analyzer.py +441 -0
oscura/analyzers/protocols/industrial/profinet/dcp.py +263 -0
oscura/analyzers/protocols/industrial/profinet/ptcp.py +200 -0
oscura/analyzers/protocols/jtag.py +180 -98
oscura/analyzers/protocols/lin.py +219 -114
oscura/analyzers/protocols/manchester.py +4 -4
oscura/analyzers/protocols/onewire.py +253 -149
oscura/analyzers/protocols/parallel_bus/__init__.py +20 -0
oscura/analyzers/protocols/parallel_bus/centronics.py +92 -0
oscura/analyzers/protocols/parallel_bus/gpib.py +137 -0
oscura/analyzers/protocols/spi.py +192 -95
oscura/analyzers/protocols/swd.py +321 -167
oscura/analyzers/protocols/uart.py +267 -125
oscura/analyzers/protocols/usb.py +235 -131
oscura/analyzers/side_channel/power.py +17 -12
oscura/analyzers/signal/__init__.py +15 -0
oscura/analyzers/signal/timing_analysis.py +1086 -0
oscura/analyzers/signal_integrity/__init__.py +4 -1
oscura/analyzers/signal_integrity/sparams.py +2 -19
oscura/analyzers/spectral/chunked.py +129 -60
oscura/analyzers/spectral/chunked_fft.py +300 -94
oscura/analyzers/spectral/chunked_wavelet.py +100 -80
oscura/analyzers/statistical/checksum.py +376 -217
oscura/analyzers/statistical/classification.py +229 -107
oscura/analyzers/statistical/entropy.py +78 -53
oscura/analyzers/statistics/correlation.py +407 -211
oscura/analyzers/statistics/outliers.py +2 -2
oscura/analyzers/statistics/streaming.py +30 -5
oscura/analyzers/validation.py +216 -101
oscura/analyzers/waveform/measurements.py +9 -0
oscura/analyzers/waveform/measurements_with_uncertainty.py +31 -15
oscura/analyzers/waveform/spectral.py +500 -228
oscura/api/__init__.py +31 -5
oscura/api/dsl/__init__.py +582 -0
oscura/{dsl → api/dsl}/commands.py +43 -76
oscura/{dsl → api/dsl}/interpreter.py +26 -51
oscura/{dsl → api/dsl}/parser.py +107 -77
oscura/{dsl → api/dsl}/repl.py +2 -2
oscura/api/dsl.py +1 -1
oscura/{integrations → api/integrations}/__init__.py +1 -1
oscura/{integrations → api/integrations}/llm.py +201 -102
oscura/api/operators.py +3 -3
oscura/api/optimization.py +144 -30
oscura/api/rest_server.py +921 -0
oscura/api/server/__init__.py +17 -0
oscura/api/server/dashboard.py +850 -0
oscura/api/server/static/README.md +34 -0
oscura/api/server/templates/base.html +181 -0
oscura/api/server/templates/export.html +120 -0
oscura/api/server/templates/home.html +284 -0
oscura/api/server/templates/protocols.html +58 -0
oscura/api/server/templates/reports.html +43 -0
oscura/api/server/templates/session_detail.html +89 -0
oscura/api/server/templates/sessions.html +83 -0
oscura/api/server/templates/waveforms.html +73 -0
oscura/automotive/__init__.py +8 -1
oscura/automotive/can/__init__.py +10 -0
oscura/automotive/can/checksum.py +3 -1
oscura/automotive/can/dbc_generator.py +590 -0
oscura/automotive/can/message_wrapper.py +121 -74
oscura/automotive/can/patterns.py +98 -21
oscura/automotive/can/session.py +292 -56
oscura/automotive/can/state_machine.py +6 -3
oscura/automotive/can/stimulus_response.py +97 -75
oscura/automotive/dbc/__init__.py +10 -2
oscura/automotive/dbc/generator.py +84 -56
oscura/automotive/dbc/parser.py +6 -6
oscura/automotive/dtc/data.json +2763 -0
oscura/automotive/dtc/database.py +2 -2
oscura/automotive/flexray/__init__.py +31 -0
oscura/automotive/flexray/analyzer.py +504 -0
oscura/automotive/flexray/crc.py +185 -0
oscura/automotive/flexray/fibex.py +449 -0
oscura/automotive/j1939/__init__.py +45 -8
oscura/automotive/j1939/analyzer.py +605 -0
oscura/automotive/j1939/spns.py +326 -0
oscura/automotive/j1939/transport.py +306 -0
oscura/automotive/lin/__init__.py +47 -0
oscura/automotive/lin/analyzer.py +612 -0
oscura/automotive/loaders/blf.py +13 -2
oscura/automotive/loaders/csv_can.py +143 -72
oscura/automotive/loaders/dispatcher.py +50 -2
oscura/automotive/loaders/mdf.py +86 -45
oscura/automotive/loaders/pcap.py +111 -61
oscura/automotive/uds/__init__.py +4 -0
oscura/automotive/uds/analyzer.py +725 -0
oscura/automotive/uds/decoder.py +140 -58
oscura/automotive/uds/models.py +7 -1
oscura/automotive/visualization.py +1 -1
oscura/cli/analyze.py +348 -0
oscura/cli/batch.py +142 -122
oscura/cli/benchmark.py +275 -0
oscura/cli/characterize.py +137 -82
oscura/cli/compare.py +224 -131
oscura/cli/completion.py +250 -0
oscura/cli/config_cmd.py +361 -0
oscura/cli/decode.py +164 -87
oscura/cli/export.py +286 -0
oscura/cli/main.py +115 -31
oscura/{onboarding → cli/onboarding}/__init__.py +3 -3
oscura/{onboarding → cli/onboarding}/help.py +80 -58
oscura/{onboarding → cli/onboarding}/tutorials.py +97 -72
oscura/{onboarding → cli/onboarding}/wizard.py +55 -36
oscura/cli/progress.py +147 -0
oscura/cli/shell.py +157 -135
oscura/cli/validate_cmd.py +204 -0
oscura/cli/visualize.py +158 -0
oscura/convenience.py +125 -79
oscura/core/__init__.py +4 -2
oscura/core/backend_selector.py +3 -3
oscura/core/cache.py +126 -15
oscura/core/cancellation.py +1 -1
oscura/{config → core/config}/__init__.py +20 -11
oscura/{config → core/config}/defaults.py +1 -1
oscura/{config → core/config}/loader.py +7 -5
oscura/{config → core/config}/memory.py +5 -5
oscura/{config → core/config}/migration.py +1 -1
oscura/{config → core/config}/pipeline.py +99 -23
oscura/{config → core/config}/preferences.py +1 -1
oscura/{config → core/config}/protocol.py +3 -3
oscura/{config → core/config}/schema.py +426 -272
oscura/{config → core/config}/settings.py +1 -1
oscura/{config → core/config}/thresholds.py +195 -153
oscura/core/correlation.py +5 -6
oscura/core/cross_domain.py +0 -2
oscura/core/debug.py +9 -5
oscura/{extensibility → core/extensibility}/docs.py +158 -70
oscura/{extensibility → core/extensibility}/extensions.py +160 -76
oscura/{extensibility → core/extensibility}/logging.py +1 -1
oscura/{extensibility → core/extensibility}/measurements.py +1 -1
oscura/{extensibility → core/extensibility}/plugins.py +1 -1
oscura/{extensibility → core/extensibility}/templates.py +73 -3
oscura/{extensibility → core/extensibility}/validation.py +1 -1
oscura/core/gpu_backend.py +11 -7
oscura/core/log_query.py +101 -11
oscura/core/logging.py +126 -54
oscura/core/logging_advanced.py +5 -5
oscura/core/memory_limits.py +108 -70
oscura/core/memory_monitor.py +2 -2
oscura/core/memory_progress.py +7 -7
oscura/core/memory_warnings.py +1 -1
oscura/core/numba_backend.py +13 -13
oscura/{plugins → core/plugins}/__init__.py +9 -9
oscura/{plugins → core/plugins}/base.py +7 -7
oscura/{plugins → core/plugins}/cli.py +3 -3
oscura/{plugins → core/plugins}/discovery.py +186 -106
oscura/{plugins → core/plugins}/lifecycle.py +1 -1
oscura/{plugins → core/plugins}/manager.py +7 -7
oscura/{plugins → core/plugins}/registry.py +3 -3
oscura/{plugins → core/plugins}/versioning.py +1 -1
oscura/core/progress.py +16 -1
oscura/core/provenance.py +8 -2
oscura/{schemas → core/schemas}/__init__.py +2 -2
oscura/core/schemas/bus_configuration.json +322 -0
oscura/core/schemas/device_mapping.json +182 -0
oscura/core/schemas/packet_format.json +418 -0
oscura/core/schemas/protocol_definition.json +363 -0
oscura/core/types.py +4 -0
oscura/core/uncertainty.py +3 -3
oscura/correlation/__init__.py +52 -0
oscura/correlation/multi_protocol.py +811 -0
oscura/discovery/auto_decoder.py +117 -35
oscura/discovery/comparison.py +191 -86
oscura/discovery/quality_validator.py +155 -68
oscura/discovery/signal_detector.py +196 -79
oscura/export/__init__.py +18 -20
oscura/export/kaitai_struct.py +513 -0
oscura/export/scapy_layer.py +801 -0
oscura/export/wireshark/README.md +15 -15
oscura/export/wireshark/generator.py +1 -1
oscura/export/wireshark/templates/dissector.lua.j2 +2 -2
oscura/export/wireshark_dissector.py +746 -0
oscura/guidance/wizard.py +207 -111
oscura/hardware/__init__.py +19 -0
oscura/{acquisition → hardware/acquisition}/__init__.py +4 -4
oscura/{acquisition → hardware/acquisition}/file.py +2 -2
oscura/{acquisition → hardware/acquisition}/hardware.py +7 -7
oscura/{acquisition → hardware/acquisition}/saleae.py +15 -12
oscura/{acquisition → hardware/acquisition}/socketcan.py +1 -1
oscura/{acquisition → hardware/acquisition}/streaming.py +2 -2
oscura/{acquisition → hardware/acquisition}/synthetic.py +3 -3
oscura/{acquisition → hardware/acquisition}/visa.py +33 -11
oscura/hardware/firmware/__init__.py +29 -0
oscura/hardware/firmware/pattern_recognition.py +874 -0
oscura/hardware/hal_detector.py +736 -0
oscura/hardware/security/__init__.py +37 -0
oscura/hardware/security/side_channel_detector.py +1126 -0
oscura/inference/__init__.py +4 -0
oscura/inference/active_learning/README.md +7 -7
oscura/inference/active_learning/observation_table.py +4 -1
oscura/inference/alignment.py +216 -123
oscura/inference/bayesian.py +113 -33
oscura/inference/crc_reverse.py +101 -55
oscura/inference/logic.py +6 -2
oscura/inference/message_format.py +342 -183
oscura/inference/protocol.py +95 -44
oscura/inference/protocol_dsl.py +180 -82
oscura/inference/signal_intelligence.py +1439 -706
oscura/inference/spectral.py +99 -57
oscura/inference/state_machine.py +810 -158
oscura/inference/stream.py +270 -110
oscura/iot/__init__.py +34 -0
oscura/iot/coap/__init__.py +32 -0
oscura/iot/coap/analyzer.py +668 -0
oscura/iot/coap/options.py +212 -0
oscura/iot/lorawan/__init__.py +21 -0
oscura/iot/lorawan/crypto.py +206 -0
oscura/iot/lorawan/decoder.py +801 -0
oscura/iot/lorawan/mac_commands.py +341 -0
oscura/iot/mqtt/__init__.py +27 -0
oscura/iot/mqtt/analyzer.py +999 -0
oscura/iot/mqtt/properties.py +315 -0
oscura/iot/zigbee/__init__.py +31 -0
oscura/iot/zigbee/analyzer.py +615 -0
oscura/iot/zigbee/security.py +153 -0
oscura/iot/zigbee/zcl.py +349 -0
oscura/jupyter/display.py +125 -45
oscura/{exploratory → jupyter/exploratory}/__init__.py +8 -8
oscura/{exploratory → jupyter/exploratory}/error_recovery.py +298 -141
oscura/jupyter/exploratory/fuzzy.py +746 -0
oscura/{exploratory → jupyter/exploratory}/fuzzy_advanced.py +258 -100
oscura/{exploratory → jupyter/exploratory}/legacy.py +464 -242
oscura/{exploratory → jupyter/exploratory}/parse.py +167 -145
oscura/{exploratory → jupyter/exploratory}/recovery.py +119 -87
oscura/jupyter/exploratory/sync.py +612 -0
oscura/{exploratory → jupyter/exploratory}/unknown.py +299 -176
oscura/jupyter/magic.py +4 -4
oscura/{ui → jupyter/ui}/__init__.py +2 -2
oscura/{ui → jupyter/ui}/formatters.py +3 -3
oscura/{ui → jupyter/ui}/progressive_display.py +153 -82
oscura/loaders/__init__.py +171 -63
oscura/loaders/binary.py +88 -1
oscura/loaders/chipwhisperer.py +153 -137
oscura/loaders/configurable.py +208 -86
oscura/loaders/csv_loader.py +458 -215
oscura/loaders/hdf5_loader.py +278 -119
oscura/loaders/lazy.py +87 -54
oscura/loaders/mmap_loader.py +1 -1
oscura/loaders/numpy_loader.py +253 -116
oscura/loaders/pcap.py +226 -151
oscura/loaders/rigol.py +110 -49
oscura/loaders/sigrok.py +201 -78
oscura/loaders/tdms.py +81 -58
oscura/loaders/tektronix.py +291 -174
oscura/loaders/touchstone.py +182 -87
oscura/loaders/vcd.py +215 -117
oscura/loaders/wav.py +155 -68
oscura/reporting/__init__.py +9 -7
oscura/reporting/analyze.py +352 -146
oscura/reporting/argument_preparer.py +69 -14
oscura/reporting/auto_report.py +97 -61
oscura/reporting/batch.py +131 -58
oscura/reporting/chart_selection.py +57 -45
oscura/reporting/comparison.py +63 -17
oscura/reporting/content/executive.py +76 -24
oscura/reporting/core_formats/multi_format.py +11 -8
oscura/reporting/engine.py +312 -158
oscura/reporting/enhanced_reports.py +949 -0
oscura/reporting/export.py +86 -43
oscura/reporting/formatting/numbers.py +69 -42
oscura/reporting/html.py +139 -58
oscura/reporting/index.py +137 -65
oscura/reporting/output.py +158 -67
oscura/reporting/pdf.py +67 -102
oscura/reporting/plots.py +191 -112
oscura/reporting/sections.py +88 -47
oscura/reporting/standards.py +104 -61
oscura/reporting/summary_generator.py +75 -55
oscura/reporting/tables.py +138 -54
oscura/reporting/templates/enhanced/protocol_re.html +525 -0
oscura/reporting/templates/index.md +13 -13
oscura/sessions/__init__.py +14 -23
oscura/sessions/base.py +3 -3
oscura/sessions/blackbox.py +106 -10
oscura/sessions/generic.py +2 -2
oscura/sessions/legacy.py +783 -0
oscura/side_channel/__init__.py +63 -0
oscura/side_channel/dpa.py +1025 -0
oscura/utils/__init__.py +15 -1
oscura/utils/autodetect.py +1 -5
oscura/utils/bitwise.py +118 -0
oscura/{builders → utils/builders}/__init__.py +1 -1
oscura/{comparison → utils/comparison}/__init__.py +6 -6
oscura/{comparison → utils/comparison}/compare.py +202 -101
oscura/{comparison → utils/comparison}/golden.py +83 -63
oscura/{comparison → utils/comparison}/limits.py +313 -89
oscura/{comparison → utils/comparison}/mask.py +151 -45
oscura/{comparison → utils/comparison}/trace_diff.py +1 -1
oscura/{comparison → utils/comparison}/visualization.py +147 -89
oscura/{component → utils/component}/__init__.py +3 -3
oscura/{component → utils/component}/impedance.py +122 -58
oscura/{component → utils/component}/reactive.py +165 -168
oscura/{component → utils/component}/transmission_line.py +3 -3
oscura/{filtering → utils/filtering}/__init__.py +6 -6
oscura/{filtering → utils/filtering}/base.py +1 -1
oscura/{filtering → utils/filtering}/convenience.py +2 -2
oscura/{filtering → utils/filtering}/design.py +169 -93
oscura/{filtering → utils/filtering}/filters.py +2 -2
oscura/{filtering → utils/filtering}/introspection.py +2 -2
oscura/utils/geometry.py +31 -0
oscura/utils/imports.py +184 -0
oscura/utils/lazy.py +1 -1
oscura/{math → utils/math}/__init__.py +2 -2
oscura/{math → utils/math}/arithmetic.py +114 -48
oscura/{math → utils/math}/interpolation.py +139 -106
oscura/utils/memory.py +129 -66
oscura/utils/memory_advanced.py +92 -9
oscura/utils/memory_extensions.py +10 -8
oscura/{optimization → utils/optimization}/__init__.py +1 -1
oscura/{optimization → utils/optimization}/search.py +2 -2
oscura/utils/performance/__init__.py +58 -0
oscura/utils/performance/caching.py +889 -0
oscura/utils/performance/lsh_clustering.py +333 -0
oscura/utils/performance/memory_optimizer.py +699 -0
oscura/utils/performance/optimizations.py +675 -0
oscura/utils/performance/parallel.py +654 -0
oscura/utils/performance/profiling.py +661 -0
oscura/{pipeline → utils/pipeline}/base.py +1 -1
oscura/{pipeline → utils/pipeline}/composition.py +11 -3
oscura/{pipeline → utils/pipeline}/parallel.py +3 -2
oscura/{pipeline → utils/pipeline}/pipeline.py +1 -1
oscura/{pipeline → utils/pipeline}/reverse_engineering.py +412 -221
oscura/{search → utils/search}/__init__.py +3 -3
oscura/{search → utils/search}/anomaly.py +188 -58
oscura/utils/search/context.py +294 -0
oscura/{search → utils/search}/pattern.py +138 -10
oscura/utils/serial.py +51 -0
oscura/utils/storage/__init__.py +61 -0
oscura/utils/storage/database.py +1166 -0
oscura/{streaming → utils/streaming}/chunked.py +302 -143
oscura/{streaming → utils/streaming}/progressive.py +1 -1
oscura/{streaming → utils/streaming}/realtime.py +3 -2
oscura/{triggering → utils/triggering}/__init__.py +6 -6
oscura/{triggering → utils/triggering}/base.py +6 -6
oscura/{triggering → utils/triggering}/edge.py +2 -2
oscura/{triggering → utils/triggering}/pattern.py +2 -2
oscura/{triggering → utils/triggering}/pulse.py +115 -74
oscura/{triggering → utils/triggering}/window.py +2 -2
oscura/utils/validation.py +32 -0
oscura/validation/__init__.py +121 -0
oscura/{compliance → validation/compliance}/__init__.py +5 -5
oscura/{compliance → validation/compliance}/advanced.py +5 -5
oscura/{compliance → validation/compliance}/masks.py +1 -1
oscura/{compliance → validation/compliance}/reporting.py +127 -53
oscura/{compliance → validation/compliance}/testing.py +114 -52
oscura/validation/compliance_tests.py +915 -0
oscura/validation/fuzzer.py +990 -0
oscura/validation/grammar_tests.py +596 -0
oscura/validation/grammar_validator.py +904 -0
oscura/validation/hil_testing.py +977 -0
oscura/{quality → validation/quality}/__init__.py +4 -4
oscura/{quality → validation/quality}/ensemble.py +251 -171
oscura/{quality → validation/quality}/explainer.py +3 -3
oscura/{quality → validation/quality}/scoring.py +1 -1
oscura/{quality → validation/quality}/warnings.py +4 -4
oscura/validation/regression_suite.py +808 -0
oscura/validation/replay.py +788 -0
oscura/{testing → validation/testing}/__init__.py +2 -2
oscura/{testing → validation/testing}/synthetic.py +5 -5
oscura/visualization/__init__.py +9 -0
oscura/visualization/accessibility.py +1 -1
oscura/visualization/annotations.py +64 -67
oscura/visualization/colors.py +7 -7
oscura/visualization/digital.py +180 -81
oscura/visualization/eye.py +236 -85
oscura/visualization/interactive.py +320 -143
oscura/visualization/jitter.py +587 -247
oscura/visualization/layout.py +169 -134
oscura/visualization/optimization.py +103 -52
oscura/visualization/palettes.py +1 -1
oscura/visualization/power.py +427 -211
oscura/visualization/power_extended.py +626 -297
oscura/visualization/presets.py +2 -0
oscura/visualization/protocols.py +495 -181
oscura/visualization/render.py +79 -63
oscura/visualization/reverse_engineering.py +171 -124
oscura/visualization/signal_integrity.py +460 -279
oscura/visualization/specialized.py +190 -100
oscura/visualization/spectral.py +670 -255
oscura/visualization/thumbnails.py +166 -137
oscura/visualization/waveform.py +150 -63
oscura/workflows/__init__.py +3 -0
oscura/{batch → workflows/batch}/__init__.py +5 -5
oscura/{batch → workflows/batch}/advanced.py +150 -75
oscura/workflows/batch/aggregate.py +531 -0
oscura/workflows/batch/analyze.py +236 -0
oscura/{batch → workflows/batch}/logging.py +2 -2
oscura/{batch → workflows/batch}/metrics.py +1 -1
oscura/workflows/complete_re.py +1144 -0
oscura/workflows/compliance.py +44 -54
oscura/workflows/digital.py +197 -51
oscura/workflows/legacy/__init__.py +12 -0
oscura/{workflow → workflows/legacy}/dag.py +4 -1
oscura/workflows/multi_trace.py +9 -9
oscura/workflows/power.py +42 -62
oscura/workflows/protocol.py +82 -49
oscura/workflows/reverse_engineering.py +351 -150
oscura/workflows/signal_integrity.py +157 -82
oscura-0.6.0.dist-info/METADATA +643 -0
oscura-0.6.0.dist-info/RECORD +590 -0
oscura/analyzers/digital/ic_database.py +0 -498
oscura/analyzers/digital/timing_paths.py +0 -339
oscura/analyzers/digital/vintage.py +0 -377
oscura/analyzers/digital/vintage_result.py +0 -148
oscura/analyzers/protocols/parallel_bus.py +0 -449
oscura/batch/aggregate.py +0 -300
oscura/batch/analyze.py +0 -139
oscura/dsl/__init__.py +0 -73
oscura/exceptions.py +0 -59
oscura/exploratory/fuzzy.py +0 -513
oscura/exploratory/sync.py +0 -384
oscura/export/wavedrom.py +0 -430
oscura/exporters/__init__.py +0 -94
oscura/exporters/csv.py +0 -303
oscura/exporters/exporters.py +0 -44
oscura/exporters/hdf5.py +0 -217
oscura/exporters/html_export.py +0 -701
oscura/exporters/json_export.py +0 -338
oscura/exporters/markdown_export.py +0 -367
oscura/exporters/matlab_export.py +0 -354
oscura/exporters/npz_export.py +0 -219
oscura/exporters/spice_export.py +0 -210
oscura/exporters/vintage_logic_csv.py +0 -247
oscura/reporting/vintage_logic_report.py +0 -523
oscura/search/context.py +0 -149
oscura/session/__init__.py +0 -34
oscura/session/annotations.py +0 -289
oscura/session/history.py +0 -313
oscura/session/session.py +0 -520
oscura/visualization/digital_advanced.py +0 -718
oscura/visualization/figure_manager.py +0 -156
oscura/workflow/__init__.py +0 -13
oscura-0.5.0.dist-info/METADATA +0 -407
oscura-0.5.0.dist-info/RECORD +0 -486
/oscura/core/{config.py → config/legacy.py} +0 -0
/oscura/{extensibility → core/extensibility}/__init__.py +0 -0
/oscura/{extensibility → core/extensibility}/registry.py +0 -0
/oscura/{plugins → core/plugins}/isolation.py +0 -0
/oscura/{builders → utils/builders}/signal_builder.py +0 -0
/oscura/{optimization → utils/optimization}/parallel.py +0 -0
/oscura/{pipeline → utils/pipeline}/__init__.py +0 -0
/oscura/{streaming → utils/streaming}/__init__.py +0 -0
{oscura-0.5.0.dist-info → oscura-0.6.0.dist-info}/WHEEL +0 -0
{oscura-0.5.0.dist-info → oscura-0.6.0.dist-info}/entry_points.txt +0 -0
{oscura-0.5.0.dist-info → oscura-0.6.0.dist-info}/licenses/LICENSE +0 -0

oscura/hardware/firmware/pattern_recognition.py ADDED Viewed

@@ -0,0 +1,874 @@
+"""Firmware pattern recognition for binary analysis.
+This module provides comprehensive firmware analysis capabilities including:
+- Function boundary detection using architecture-specific patterns
+- Architecture fingerprinting (ARM Thumb/ARM, x86, MIPS)
+- String and data region identification
+- Interrupt vector table detection
+- Compiler signature detection
+Example:
+    >>> from oscura.hardware.firmware.pattern_recognition import FirmwarePatternRecognizer
+    >>> with open("firmware.bin", "rb") as f:
+    ...     data = f.read()
+    >>> recognizer = FirmwarePatternRecognizer()
+    >>> result = recognizer.analyze(data, base_address=0x08000000)
+    >>> print(f"Architecture: {result.detected_architecture}")
+    >>> print(f"Functions: {len(result.functions)}")
+    >>> for func in result.functions[:5]:
+    ...     print(f"  {func.address:08X}: {func.name or 'unknown'} ({func.confidence:.2f})")
+References:
+    ARM Architecture Reference Manual (ARMv7-M)
+    Intel 64 and IA-32 Architectures Software Developer's Manual
+    MIPS Architecture For Programmers
+"""
+from __future__ import annotations
+import json
+import struct
+from dataclasses import dataclass, field
+from enum import Enum
+from typing import TYPE_CHECKING, ClassVar
+import numpy as np
+if TYPE_CHECKING:
+    from collections.abc import Sequence
+class Architecture(Enum):
+    """Detected CPU architecture."""
+    UNKNOWN = "unknown"
+    ARM_THUMB = "arm_thumb"
+    ARM_ARM = "arm_arm"
+    X86 = "x86"
+    X86_64 = "x86_64"
+    MIPS = "mips"
+    MIPS64 = "mips64"
+class CompilerSignature(Enum):
+    """Detected compiler toolchain."""
+    UNKNOWN = "unknown"
+    GCC = "gcc"
+    IAR = "iar"
+    KEIL = "keil"
+    LLVM = "llvm"
+    MSVC = "msvc"
+@dataclass
+class Function:
+    """Detected function in firmware.
+    Attributes:
+        address: Function start address (absolute or offset from base)
+        size: Function size in bytes (0 if unknown)
+        name: Function name if identifiable (e.g., "reset_handler")
+        confidence: Confidence score 0.0-1.0
+        architecture: Detected architecture for this function
+        metadata: Additional function information
+    """
+    address: int
+    size: int = 0
+    name: str | None = None
+    confidence: float = 0.0
+    architecture: Architecture = Architecture.UNKNOWN
+    metadata: dict[str, str | int | float] = field(default_factory=dict)
+@dataclass
+class StringTable:
+    """Detected string table or string region.
+    Attributes:
+        address: Start address of string table
+        size: Size in bytes
+        strings: List of decoded strings
+        encoding: String encoding (utf-8, ascii, utf-16le)
+    """
+    address: int
+    size: int
+    strings: list[str]
+    encoding: str = "utf-8"
+@dataclass
+class InterruptVector:
+    """Detected interrupt vector table entry.
+    Attributes:
+        index: Vector index (0 = reset/stack pointer)
+        address: Handler address (or stack pointer for index 0)
+        name: Vector name if known (e.g., "SysTick_Handler")
+    """
+    index: int
+    address: int
+    name: str | None = None
+@dataclass
+class FirmwareAnalysisResult:
+    """Complete firmware analysis result.
+    Attributes:
+        detected_architecture: Most likely CPU architecture
+        functions: List of detected functions
+        string_tables: List of detected string tables
+        interrupt_vectors: List of detected interrupt vectors
+        compiler_signature: Detected compiler toolchain
+        base_address: Base address used for analysis
+        firmware_size: Total firmware size in bytes
+        code_regions: List of (start, size) tuples for code regions
+        data_regions: List of (start, size) tuples for data regions
+        metadata: Additional analysis metadata
+    """
+    detected_architecture: Architecture
+    functions: list[Function]
+    string_tables: list[StringTable]
+    interrupt_vectors: list[InterruptVector]
+    compiler_signature: CompilerSignature = CompilerSignature.UNKNOWN
+    base_address: int = 0
+    firmware_size: int = 0
+    code_regions: list[tuple[int, int]] = field(default_factory=list)
+    data_regions: list[tuple[int, int]] = field(default_factory=list)
+    metadata: dict[str, str | int | float] = field(default_factory=dict)
+    def to_dict(self) -> dict[str, object]:
+        """Export analysis result to dictionary.
+        Returns:
+            Dictionary representation suitable for JSON export
+        """
+        return {
+            "detected_architecture": self.detected_architecture.value,
+            "base_address": hex(self.base_address),
+            "firmware_size": self.firmware_size,
+            "compiler_signature": self.compiler_signature.value,
+            "functions": [
+                {
+                    "address": hex(f.address),
+                    "size": f.size,
+                    "name": f.name,
+                    "confidence": f.confidence,
+                    "architecture": f.architecture.value,
+                    "metadata": f.metadata,
+                }
+                for f in self.functions
+            ],
+            "string_tables": [
+                {
+                    "address": hex(s.address),
+                    "size": s.size,
+                    "encoding": s.encoding,
+                    "strings": s.strings,
+                }
+                for s in self.string_tables
+            ],
+            "interrupt_vectors": [
+                {"index": v.index, "address": hex(v.address), "name": v.name}
+                for v in self.interrupt_vectors
+            ],
+            "code_regions": [[hex(addr), size] for addr, size in self.code_regions],
+            "data_regions": [[hex(addr), size] for addr, size in self.data_regions],
+            "metadata": self.metadata,
+        }
+    def to_json(self, indent: int = 2) -> str:
+        """Export analysis result to JSON.
+        Args:
+            indent: JSON indentation level
+        Returns:
+            JSON string representation
+        """
+        return json.dumps(self.to_dict(), indent=indent)
+class FirmwarePatternRecognizer:
+    """Firmware pattern recognition and analysis.
+    This class provides comprehensive firmware analysis including function
+    detection, architecture fingerprinting, and data region identification.
+    Example:
+        >>> recognizer = FirmwarePatternRecognizer()
+        >>> result = recognizer.analyze(firmware_data, base_address=0x08000000)
+        >>> print(result.to_json())
+    """
+    # ARM Thumb function prologue patterns (16-bit instructions)
+    ARM_THUMB_PROLOGUES: ClassVar[list[bytes]] = [
+        b"\xb5\x00",  # PUSH {lr} (0xb500)
+        b"\xb5\x10",  # PUSH {r4, lr}
+        b"\xb5\x30",  # PUSH {r4, r5, lr}
+        b"\xb5\x70",  # PUSH {r4, r5, r6, lr}
+        b"\xb5\xf0",  # PUSH {r4, r5, r6, r7, lr}
+        b"\xb5\x80",  # PUSH {r7, lr}
+    ]
+    # ARM Thumb function epilogue patterns
+    ARM_THUMB_EPILOGUES: ClassVar[list[bytes]] = [
+        b"\xbd\x00",  # POP {pc} (0xbd00)
+        b"\xbd\x10",  # POP {r4, pc}
+        b"\xbd\x30",  # POP {r4, r5, pc}
+        b"\xbd\x70",  # POP {r4, r5, r6, pc}
+        b"\xbd\xf0",  # POP {r4, r5, r6, r7, pc}
+        b"\xbd\x80",  # POP {r7, pc}
+        b"\x70\x47",  # BX lr (0x4770)
+    ]
+    # x86 function prologue patterns
+    X86_PROLOGUES: ClassVar[list[bytes]] = [
+        b"\x55\x89\xe5",  # PUSH ebp; MOV ebp, esp
+        b"\x55\x8b\xec",  # PUSH ebp; MOV ebp, esp (alternate)
+        b"\x48\x89\x5c\x24",  # x64: MOV [rsp+X], rbx
+        b"\x48\x83\xec",  # x64: SUB rsp, X
+    ]
+    # x86 function epilogue patterns
+    X86_EPILOGUES: ClassVar[list[bytes]] = [
+        b"\xc9\xc3",  # LEAVE; RET
+        b"\x5d\xc3",  # POP ebp; RET
+        b"\xc3",  # RET (simple)
+        b"\x48\x83\xc4",  # x64: ADD rsp, X
+    ]
+    # ARM Cortex-M vector table standard handlers
+    CORTEX_M_VECTORS: ClassVar[dict[int, str]] = {
+        1: "Reset_Handler",
+        2: "NMI_Handler",
+        3: "HardFault_Handler",
+        4: "MemManage_Handler",
+        5: "BusFault_Handler",
+        6: "UsageFault_Handler",
+        11: "SVC_Handler",
+        12: "DebugMon_Handler",
+        14: "PendSV_Handler",
+        15: "SysTick_Handler",
+    }
+    def analyze(
+        self,
+        firmware_data: bytes | Sequence[int],
+        base_address: int = 0,
+        architecture_hint: Architecture | None = None,
+    ) -> FirmwareAnalysisResult:
+        """Analyze firmware binary for patterns and structures.
+        Args:
+            firmware_data: Raw firmware binary data
+            base_address: Base address for firmware (default 0)
+            architecture_hint: Optional architecture hint to guide analysis
+        Returns:
+            Complete firmware analysis result
+        Raises:
+            ValueError: If firmware_data is empty or invalid
+        """
+        if not firmware_data:
+            raise ValueError("Firmware data cannot be empty")
+        # Convert to bytes if needed
+        data: bytes
+        if isinstance(firmware_data, bytes):
+            data = firmware_data
+        else:
+            data = bytes(firmware_data)
+        # Detect architecture
+        if architecture_hint is None:
+            detected_arch = self._detect_architecture(data, base_address)
+        else:
+            detected_arch = architecture_hint
+        # Detect functions
+        functions = self._detect_functions(data, base_address, detected_arch)
+        # Detect string tables
+        string_tables = self._detect_string_tables(data, base_address)
+        # Detect interrupt vectors
+        interrupt_vectors = self._detect_interrupt_vectors(data, base_address, detected_arch)
+        # Detect compiler signature
+        compiler_sig = self._detect_compiler(data)
+        # Classify code vs data regions
+        code_regions, data_regions = self._classify_regions(data, base_address, detected_arch)
+        return FirmwareAnalysisResult(
+            detected_architecture=detected_arch,
+            functions=functions,
+            string_tables=string_tables,
+            interrupt_vectors=interrupt_vectors,
+            compiler_signature=compiler_sig,
+            base_address=base_address,
+            firmware_size=len(data),
+            code_regions=code_regions,
+            data_regions=data_regions,
+            metadata={
+                "function_count": len(functions),
+                "string_count": sum(len(st.strings) for st in string_tables),
+                "vector_count": len(interrupt_vectors),
+            },
+        )
+    def _detect_architecture(self, firmware_data: bytes, base_address: int) -> Architecture:
+        """Detect CPU architecture from binary patterns.
+        Args:
+            firmware_data: Raw firmware binary
+            base_address: Base address for firmware
+        Returns:
+            Detected architecture
+        """
+        # Check for ARM Thumb (16-bit instruction alignment)
+        thumb_score = self._score_arm_thumb(firmware_data)
+        # Check for ARM (32-bit instruction alignment)
+        arm_score = self._score_arm_arm(firmware_data)
+        # Check for x86
+        x86_score = self._score_x86(firmware_data)
+        # Check for MIPS
+        mips_score = self._score_mips(firmware_data)
+        # Determine architecture based on scores
+        scores = {
+            Architecture.ARM_THUMB: thumb_score,
+            Architecture.ARM_ARM: arm_score,
+            Architecture.X86: x86_score,
+            Architecture.MIPS: mips_score,
+        }
+        max_arch = max(scores, key=lambda a: scores[a])
+        if scores[max_arch] > 0.3:  # Minimum confidence threshold
+            return max_arch
+        return Architecture.UNKNOWN
+    def _score_arm_thumb(self, firmware_data: bytes) -> float:
+        """Score likelihood of ARM Thumb architecture.
+        Args:
+            firmware_data: Raw firmware binary
+        Returns:
+            Confidence score 0.0-1.0
+        """
+        if len(firmware_data) < 32:
+            return 0.0
+        score = 0.0
+        score += self._score_thumb_prologues(firmware_data)
+        score += self._score_thumb_epilogues(firmware_data)
+        score += self._score_thumb_vector_table(firmware_data)
+        return min(score, 1.0)
+    def _score_thumb_prologues(self, firmware_data: bytes) -> float:
+        """Score Thumb prologue patterns."""
+        prologue_count = sum(firmware_data.count(pattern) for pattern in self.ARM_THUMB_PROLOGUES)
+        return min(prologue_count / 10.0, 0.4) if prologue_count > 0 else 0.0
+    def _score_thumb_epilogues(self, firmware_data: bytes) -> float:
+        """Score Thumb epilogue patterns."""
+        epilogue_count = sum(firmware_data.count(pattern) for pattern in self.ARM_THUMB_EPILOGUES)
+        return min(epilogue_count / 10.0, 0.4) if epilogue_count > 0 else 0.0
+    def _score_thumb_vector_table(self, firmware_data: bytes) -> float:
+        """Score Thumb LSB bit in vector table."""
+        if len(firmware_data) < 64:
+            return 0.0
+        try:
+            thumb_bit_count = 0
+            valid_addresses = 0
+            for i in range(1, min(16, len(firmware_data) // 4)):
+                word = struct.unpack("<I", firmware_data[i * 4 : i * 4 + 4])[0]
+                if word != 0 and word != 0xFFFFFFFF:
+                    valid_addresses += 1
+                    if word & 1:
+                        thumb_bit_count += 1
+            if valid_addresses >= 3 and thumb_bit_count >= valid_addresses // 2:
+                return 0.3
+        except struct.error:
+            pass
+        return 0.0
+    def _score_arm_arm(self, firmware_data: bytes) -> float:
+        """Score likelihood of ARM (32-bit) architecture.
+        Args:
+            firmware_data: Raw firmware binary
+        Returns:
+            Confidence score 0.0-1.0
+        """
+        if len(firmware_data) < 32:
+            return 0.0
+        score = 0.0
+        # ARM instructions are 32-bit aligned and often have condition codes
+        # Check for common ARM instruction patterns (simplified)
+        arm_patterns = [
+            b"\x1e\xff\x2f\xe1",  # BX lr (0xe12fff1e)
+            b"\x00\x00\xa0\xe3",  # MOV r0, #0
+        ]
+        for pattern in arm_patterns:
+            count = firmware_data.count(pattern)
+            if count > 0:
+                score += min(count / 50.0, 0.3)
+        return min(score, 1.0)
+    def _score_x86(self, firmware_data: bytes) -> float:
+        """Score likelihood of x86 architecture.
+        Args:
+            firmware_data: Raw firmware binary
+        Returns:
+            Confidence score 0.0-1.0
+        """
+        if len(firmware_data) < 32:
+            return 0.0
+        score = 0.0
+        # Check for x86 prologue patterns
+        prologue_count = 0
+        for pattern in self.X86_PROLOGUES:
+            prologue_count += firmware_data.count(pattern)
+        if prologue_count > 0:
+            score += min(prologue_count / 5.0, 0.5)
+        # Check for x86 epilogue patterns
+        epilogue_count = 0
+        for pattern in self.X86_EPILOGUES:
+            epilogue_count += firmware_data.count(pattern)
+        if epilogue_count > 0:
+            score += min(epilogue_count / 5.0, 0.5)
+        return min(score, 1.0)
+    def _score_mips(self, firmware_data: bytes) -> float:
+        """Score likelihood of MIPS architecture.
+        Args:
+            firmware_data: Raw firmware binary
+        Returns:
+            Confidence score 0.0-1.0
+        """
+        if len(firmware_data) < 32:
+            return 0.0
+        # MIPS instructions are 32-bit aligned
+        # Check for common MIPS patterns (simplified)
+        score = 0.0
+        # JR ra (return) - 0x03e00008
+        jr_ra_count = firmware_data.count(b"\x03\xe0\x00\x08")
+        if jr_ra_count > 0:
+            score += min(jr_ra_count / 50.0, 0.5)
+        return min(score, 1.0)
+    def _detect_functions(
+        self, firmware_data: bytes, base_address: int, architecture: Architecture
+    ) -> list[Function]:
+        """Detect function boundaries using pattern matching.
+        Args:
+            firmware_data: Raw firmware binary
+            base_address: Base address for firmware
+            architecture: Detected architecture
+        Returns:
+            List of detected functions
+        """
+        functions: list[Function] = []
+        if architecture == Architecture.ARM_THUMB:
+            functions = self._detect_arm_thumb_functions(firmware_data, base_address)
+        elif architecture == Architecture.X86:
+            functions = self._detect_x86_functions(firmware_data, base_address)
+        elif architecture == Architecture.ARM_ARM:
+            functions = self._detect_arm_functions(firmware_data, base_address)
+        return functions
+    def _detect_arm_thumb_functions(
+        self, firmware_data: bytes, base_address: int
+    ) -> list[Function]:
+        """Detect ARM Thumb function boundaries.
+        Args:
+            firmware_data: Raw firmware binary
+            base_address: Base address for firmware
+        Returns:
+            List of detected functions
+        """
+        functions: list[Function] = []
+        # Find all prologue patterns
+        prologues: list[tuple[int, bytes]] = []
+        for pattern in self.ARM_THUMB_PROLOGUES:
+            offset = 0
+            while True:
+                idx = firmware_data.find(pattern, offset)
+                if idx == -1:
+                    break
+                # ARM Thumb requires 2-byte alignment
+                if idx % 2 == 0:
+                    prologues.append((idx, pattern))
+                offset = idx + 1
+        # Find all epilogue patterns
+        epilogues: set[int] = set()
+        for pattern in self.ARM_THUMB_EPILOGUES:
+            offset = 0
+            while True:
+                idx = firmware_data.find(pattern, offset)
+                if idx == -1:
+                    break
+                if idx % 2 == 0:
+                    epilogues.add(idx)
+                offset = idx + 1
+        # Sort prologues by address
+        prologues.sort(key=lambda x: x[0])
+        # Match prologues with epilogues
+        for i, (prologue_addr, pattern) in enumerate(prologues):
+            # Find next epilogue after this prologue
+            size = 0
+            confidence = 0.5  # Base confidence for pattern match
+            # Find closest epilogue
+            matching_epilogues = [e for e in epilogues if e > prologue_addr]
+            if matching_epilogues:
+                epilogue_addr = min(matching_epilogues)
+                size = epilogue_addr - prologue_addr + 2
+                confidence = 0.7  # Higher confidence with epilogue match
+            # Check if next prologue is too close (avoid false positives)
+            if i + 1 < len(prologues):
+                next_prologue = prologues[i + 1][0]
+                if size == 0 or next_prologue < prologue_addr + size:
+                    size = next_prologue - prologue_addr
+            # Create function entry
+            func = Function(
+                address=base_address + prologue_addr,
+                size=size,
+                confidence=confidence,
+                architecture=Architecture.ARM_THUMB,
+                metadata={"prologue_pattern": pattern.hex()},
+            )
+            functions.append(func)
+        return functions
+    def _detect_x86_functions(self, firmware_data: bytes, base_address: int) -> list[Function]:
+        """Detect x86 function boundaries.
+        Args:
+            firmware_data: Raw firmware binary
+            base_address: Base address for firmware
+        Returns:
+            List of detected functions
+        """
+        functions: list[Function] = []
+        # Find all prologue patterns
+        prologues: list[tuple[int, bytes]] = []
+        for pattern in self.X86_PROLOGUES:
+            offset = 0
+            while True:
+                idx = firmware_data.find(pattern, offset)
+                if idx == -1:
+                    break
+                prologues.append((idx, pattern))
+                offset = idx + 1
+        prologues.sort(key=lambda x: x[0])
+        for prologue_addr, pattern in prologues:
+            func = Function(
+                address=base_address + prologue_addr,
+                size=0,
+                confidence=0.6,
+                architecture=Architecture.X86,
+                metadata={"prologue_pattern": pattern.hex()},
+            )
+            functions.append(func)
+        return functions
+    def _detect_arm_functions(self, firmware_data: bytes, base_address: int) -> list[Function]:
+        """Detect ARM (32-bit) function boundaries.
+        Args:
+            firmware_data: Raw firmware binary
+            base_address: Base address for firmware
+        Returns:
+            List of detected functions
+        """
+        functions: list[Function] = []
+        # ARM BX lr return pattern
+        bx_lr = b"\x1e\xff\x2f\xe1"
+        offset = 0
+        while True:
+            idx = firmware_data.find(bx_lr, offset)
+            if idx == -1:
+                break
+            if idx % 4 == 0:  # ARM requires 4-byte alignment
+                # Assume function starts ~32 bytes before return
+                func_start = max(0, idx - 32)
+                func = Function(
+                    address=base_address + func_start,
+                    size=idx - func_start + 4,
+                    confidence=0.5,
+                    architecture=Architecture.ARM_ARM,
+                )
+                functions.append(func)
+            offset = idx + 1
+        return functions
+    def _detect_string_tables(self, firmware_data: bytes, base_address: int) -> list[StringTable]:
+        """Detect string tables and string regions.
+        Args:
+            firmware_data: Raw firmware binary
+            base_address: Base address for firmware
+        Returns:
+            List of detected string tables
+        """
+        string_tables: list[StringTable] = []
+        strings: list[str] = []
+        current_start = -1
+        current_string = bytearray()
+        for i, byte in enumerate(firmware_data):
+            if 0x20 <= byte <= 0x7E:  # Printable ASCII
+                if current_start == -1:
+                    current_start = i
+                current_string.append(byte)
+            elif byte == 0:  # Null terminator
+                if len(current_string) >= 4:  # Minimum string length
+                    try:
+                        decoded = current_string.decode("utf-8")
+                        strings.append(decoded)
+                    except UnicodeDecodeError:
+                        pass
+                current_string.clear()
+            else:
+                # Non-string data
+                if len(strings) >= 3:  # Minimum strings per table
+                    string_tables.append(
+                        StringTable(
+                            address=base_address + current_start,
+                            size=i - current_start,
+                            strings=strings.copy(),
+                            encoding="utf-8",
+                        )
+                    )
+                strings.clear()
+                current_start = -1
+                current_string.clear()
+        # Final table
+        if len(strings) >= 3:
+            string_tables.append(
+                StringTable(
+                    address=base_address + current_start,
+                    size=len(firmware_data) - current_start,
+                    strings=strings,
+                    encoding="utf-8",
+                )
+            )
+        return string_tables
+    def _detect_interrupt_vectors(
+        self, firmware_data: bytes, base_address: int, architecture: Architecture
+    ) -> list[InterruptVector]:
+        """Detect interrupt vector table.
+        Args:
+            firmware_data: Raw firmware binary
+            base_address: Base address for firmware
+            architecture: Detected architecture
+        Returns:
+            List of detected interrupt vectors
+        """
+        vectors: list[InterruptVector] = []
+        # ARM Cortex-M vector table is at offset 0
+        if architecture in (Architecture.ARM_THUMB, Architecture.ARM_ARM):
+            if len(firmware_data) >= 64:  # Minimum vector table size
+                try:
+                    # First word is initial stack pointer
+                    stack_ptr = struct.unpack("<I", firmware_data[0:4])[0]
+                    vectors.append(
+                        InterruptVector(index=0, address=stack_ptr, name="Initial_Stack_Pointer")
+                    )
+                    # Next words are exception/interrupt handlers
+                    for i in range(1, min(16, len(firmware_data) // 4)):
+                        handler_addr = struct.unpack("<I", firmware_data[i * 4 : i * 4 + 4])[0]
+                        # Validate address (should be in firmware range, Thumb bit set)
+                        if handler_addr != 0 and handler_addr != 0xFFFFFFFF:
+                            name = self.CORTEX_M_VECTORS.get(i)
+                            vectors.append(
+                                InterruptVector(index=i, address=handler_addr & ~1, name=name)
+                            )
+                except struct.error:
+                    pass
+        return vectors
+    def _detect_compiler(self, firmware_data: bytes) -> CompilerSignature:
+        """Detect compiler toolchain from binary signatures.
+        Args:
+            firmware_data: Raw firmware binary
+        Returns:
+            Detected compiler signature
+        """
+        # Check for compiler-specific strings
+        if b"GCC:" in firmware_data or b"gcc version" in firmware_data:
+            return CompilerSignature.GCC
+        if b"IAR ANSI C" in firmware_data or b"ICCARM" in firmware_data:
+            return CompilerSignature.IAR
+        if b"Keil" in firmware_data or b"ARMCC" in firmware_data:
+            return CompilerSignature.KEIL
+        if b"clang version" in firmware_data or b"LLVM" in firmware_data:
+            return CompilerSignature.LLVM
+        if b"Microsoft" in firmware_data and b"Visual C++" in firmware_data:
+            return CompilerSignature.MSVC
+        return CompilerSignature.UNKNOWN
+    def _classify_regions(
+        self, firmware_data: bytes, base_address: int, architecture: Architecture
+    ) -> tuple[list[tuple[int, int]], list[tuple[int, int]]]:
+        """Classify memory regions as code or data using entropy analysis.
+        Args:
+            firmware_data: Raw firmware binary
+            base_address: Base address for firmware
+            architecture: Detected architecture
+        Returns:
+            Tuple of (code_regions, data_regions) as (address, size) pairs
+        """
+        code_regions: list[tuple[int, int]] = []
+        data_regions: list[tuple[int, int]] = []
+        if len(firmware_data) < 64:
+            return code_regions, data_regions
+        # Analyze in 64-byte chunks
+        chunk_size = 64
+        entropies: list[float] = []
+        for i in range(0, len(firmware_data), chunk_size):
+            chunk = firmware_data[i : i + chunk_size]
+            if len(chunk) < chunk_size:
+                break
+            # Calculate Shannon entropy
+            entropy = self._calculate_entropy(chunk)
+            entropies.append(entropy)
+        if not entropies:
+            return code_regions, data_regions
+        # Code typically has medium entropy (4-7 bits/byte)
+        # Data/constants have low entropy (<4)
+        # Crypto/compressed have high entropy (>7)
+        current_type: str | None = None
+        region_start = 0
+        for i, entropy in enumerate(entropies):
+            addr = i * chunk_size
+            if 4.0 <= entropy <= 7.0:
+                region_type = "code"
+            else:
+                region_type = "data"
+            if current_type is None:
+                current_type = region_type
+                region_start = addr
+            elif current_type != region_type:
+                # Region boundary
+                size = addr - region_start
+                if current_type == "code":
+                    code_regions.append((base_address + region_start, size))
+                else:
+                    data_regions.append((base_address + region_start, size))
+                current_type = region_type
+                region_start = addr
+        # Final region
+        if current_type:
+            size = len(firmware_data) - region_start
+            if current_type == "code":
+                code_regions.append((base_address + region_start, size))
+            else:
+                data_regions.append((base_address + region_start, size))
+        return code_regions, data_regions
+    def _calculate_entropy(self, data: bytes) -> float:
+        """Calculate Shannon entropy of byte sequence.
+        Args:
+            data: Byte sequence
+        Returns:
+            Entropy in bits per byte (0.0-8.0)
+        """
+        if not data:
+            return 0.0
+        # Count byte frequencies
+        byte_counts = np.bincount(np.frombuffer(data, dtype=np.uint8), minlength=256)
+        probabilities = byte_counts / len(data)
+        # Calculate Shannon entropy
+        # Avoid log(0) by filtering zero probabilities
+        nonzero_probs = probabilities[probabilities > 0]
+        entropy = -np.sum(nonzero_probs * np.log2(nonzero_probs))
+        return float(entropy)

oscura 0.5.0__py3-none-any.whl → 0.6.0__py3-none-any.whl

oscura 0.5.0py3-none-any.whl → 0.6.0py3-none-any.whl