]> git.saurik.com Git - apple/security.git/blob - OSX/libsecurity_utilities/lib/macho++.cpp
projects / apple / security.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
Security-57336.1.9.tar.gz
[apple/security.git] / OSX / libsecurity_utilities / lib / macho++.cpp
1 /*
2 * Copyright (c) 2006-2014 Apple Inc. All Rights Reserved.
3 *
4 * @APPLE_LICENSE_HEADER_START@
5 *
6 * This file contains Original Code and/or Modifications of Original Code
7 * as defined in and that are subject to the Apple Public Source License
8 * Version 2.0 (the 'License'). You may not use this file except in
9 * compliance with the License. Please obtain a copy of the License at
10 * http://www.opensource.apple.com/apsl/ and read it before using this
11 * file.
12 *
13 * The Original Code and all software distributed under the License are
14 * distributed on an 'AS IS' basis, WITHOUT WARRANTY OF ANY KIND, EITHER
15 * EXPRESS OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES,
16 * INCLUDING WITHOUT LIMITATION, ANY WARRANTIES OF MERCHANTABILITY,
17 * FITNESS FOR A PARTICULAR PURPOSE, QUIET ENJOYMENT OR NON-INFRINGEMENT.
18 * Please see the License for the specific language governing rights and
19 * limitations under the License.
20 *
21 * @APPLE_LICENSE_HEADER_END@
22 */
23
24 //
25 // macho++ - Mach-O object file helpers
26 //
27 #include "macho++.h"
28 #include <security_utilities/alloc.h>
29 #include <security_utilities/memutils.h>
30 #include <security_utilities/endian.h>
31 #include <mach-o/dyld.h>
32 #include <list>
33 #include <algorithm>
34 #include <iterator>
35
36 namespace Security {
37
38 /* Maximum number of archs a fat binary can have */
39 static const int MAX_ARCH_COUNT = 100;
40 /* Maximum power of 2 that a mach-o can be aligned by */
41 static const int MAX_ALIGN = 30;
42
43 //
44 // Architecture values
45 //
46 Architecture::Architecture(const fat_arch &arch)
47 : pair<cpu_type_t, cpu_subtype_t>(arch.cputype, arch.cpusubtype)
48 {
49 }
50
51 Architecture::Architecture(const char *name)
52 {
53 if (const NXArchInfo *nxa = NXGetArchInfoFromName(name)) {
54 this->first = nxa->cputype;
55 this->second = nxa->cpusubtype;
56 } else {
57 this->first = this->second = none;
58 }
59 }
60
61
62 //
63 // The local architecture.
64 //
65 // We take this from ourselves - the architecture of our main program Mach-O binary.
66 // There's the NXGetLocalArchInfo API, but it insists on saying "i386" on modern
67 // x86_64-centric systems, and lies to ppc (Rosetta) programs claiming they're native ppc.
68 // So let's not use that.
69 //
70 Architecture Architecture::local()
71 {
72 return MainMachOImage().architecture();
73 }
74
75
76 //
77 // Translate between names and numbers
78 //
79 const char *Architecture::name() const
80 {
81 if (const NXArchInfo *info = NXGetArchInfoFromCpuType(cpuType(), cpuSubtype()))
82 return info->name;
83 else
84 return NULL;
85 }
86
87 std::string Architecture::displayName() const
88 {
89 if (const char *s = this->name())
90 return s;
91 char buf[20];
92 snprintf(buf, sizeof(buf), "(%d:%d)", cpuType(), cpuSubtype());
93 return buf;
94 }
95
96
97 //
98 // Compare architectures.
99 // This is asymmetrical; the second argument provides for some templating.
100 //
101 bool Architecture::matches(const Architecture &templ) const
102 {
103 if (first != templ.first)
104 return false; // main architecture mismatch
105 if (templ.second == CPU_SUBTYPE_MULTIPLE)
106 return true; // subtype wildcard
107 // match subtypes, ignoring feature bits
108 return ((second ^ templ.second) & ~CPU_SUBTYPE_MASK) == 0;
109 }
110
111
112 //
113 // MachOBase contains knowledge of the Mach-O object file format,
114 // but abstracts from any particular sourcing. It must be subclassed,
115 // and the subclass must provide the file header and commands area
116 // during its construction. Memory is owned by the subclass.
117 //
118 MachOBase::~MachOBase()
119 { /* virtual */ }
120
121 // provide the Mach-O file header, somehow
122 void MachOBase::initHeader(const mach_header *header)
123 {
124 mHeader = header;
125 switch (mHeader->magic) {
126 case MH_MAGIC:
127 mFlip = false;
128 m64 = false;
129 break;
130 case MH_CIGAM:
131 mFlip = true;
132 m64 = false;
133 break;
134 case MH_MAGIC_64:
135 mFlip = false;
136 m64 = true;
137 break;
138 case MH_CIGAM_64:
139 mFlip = true;
140 m64 = true;
141 break;
142 default:
143 secdebug("macho", "%p: unrecognized header magic (%x)", this, mHeader->magic);
144 UnixError::throwMe(ENOEXEC);
145 }
146 }
147
148 // provide the Mach-O commands section, somehow
149 void MachOBase::initCommands(const load_command *commands)
150 {
151 mCommands = commands;
152 mEndCommands = LowLevelMemoryUtilities::increment<load_command>(commands, flip(mHeader->sizeofcmds));
153 if (mCommands + 1 > mEndCommands) // ensure initial load command core available
154 UnixError::throwMe(ENOEXEC);
155 }
156
157
158 size_t MachOBase::headerSize() const
159 {
160 return m64 ? sizeof(mach_header_64) : sizeof(mach_header);
161 }
162
163 size_t MachOBase::commandSize() const
164 {
165 return flip(mHeader->sizeofcmds);
166 }
167
168
169 //
170 // Create a MachO object from an open file and a starting offset.
171 // We load (only) the header and load commands into memory at that time.
172 // Note that the offset must be relative to the start of the containing file
173 // (not relative to some intermediate container).
174 //
175 MachO::MachO(FileDesc fd, size_t offset, size_t length)
176 : FileDesc(fd), mOffset(offset), mLength(length), mSuspicious(false)
177 {
178 if (mOffset == 0)
179 mLength = fd.fileSize();
180 size_t size = fd.read(&mHeaderBuffer, sizeof(mHeaderBuffer), mOffset);
181 if (size != sizeof(mHeaderBuffer))
182 UnixError::throwMe(ENOEXEC);
183 this->initHeader(&mHeaderBuffer);
184 size_t cmdSize = this->commandSize();
185 mCommandBuffer = (load_command *)malloc(cmdSize);
186 if (!mCommandBuffer)
187 UnixError::throwMe();
188 if (fd.read(mCommandBuffer, cmdSize, this->headerSize() + mOffset) != cmdSize)
189 UnixError::throwMe(ENOEXEC);
190 this->initCommands(mCommandBuffer);
191 /* If we do not know the length, we cannot do a verification of the mach-o structure */
192 if (mLength != 0)
193 this->validateStructure();
194 }
195
196 void MachO::validateStructure()
197 {
198 bool isValid = false;
199
200 /* There should be either an LC_SEGMENT, an LC_SEGMENT_64, or an LC_SYMTAB
201 load_command and that + size must be equal to the end of the arch */
202 for (const struct load_command *cmd = loadCommands(); cmd != NULL; cmd = nextCommand(cmd)) {
203 uint32_t cmd_type = flip(cmd->cmd);
204 struct segment_command *seg = NULL;
205 struct segment_command_64 *seg64 = NULL;
206 struct symtab_command *symtab = NULL;
207
208 if (cmd_type == LC_SEGMENT) {
209 seg = (struct segment_command *)cmd;
210 if (strcmp(seg->segname, SEG_LINKEDIT) == 0) {
211 isValid = flip(seg->fileoff) + flip(seg->filesize) == this->length();
212 break;
213 }
214 } else if (cmd_type == LC_SEGMENT_64) {
215 seg64 = (struct segment_command_64 *)cmd;
216 if (strcmp(seg64->segname, SEG_LINKEDIT) == 0) {
217 isValid = flip(seg64->fileoff) + flip(seg64->filesize) == this->length();
218 break;
219 }
220 /* PPC binaries have a SYMTAB section */
221 } else if (cmd_type == LC_SYMTAB) {
222 symtab = (struct symtab_command *)cmd;
223 isValid = flip(symtab->stroff) + flip(symtab->strsize) == this->length();
224 break;
225 }
226 }
227
228 if (!isValid)
229 mSuspicious = true;
230 }
231
232 MachO::~MachO()
233 {
234 ::free(mCommandBuffer);
235 }
236
237
238 //
239 // Create a MachO object that is (entirely) mapped into memory.
240 // The caller must ensire that the underlying mapping persists
241 // at least as long as our object.
242 //
243 MachOImage::MachOImage(const void *address)
244 {
245 this->initHeader((const mach_header *)address);
246 this->initCommands(LowLevelMemoryUtilities::increment<const load_command>(address, this->headerSize()));
247 }
248
249
250 //
251 // Locate the Mach-O image of the main program
252 //
253 MainMachOImage::MainMachOImage()
254 : MachOImage(mainImageAddress())
255 {
256 }
257
258 const void *MainMachOImage::mainImageAddress()
259 {
260 return _dyld_get_image_header(0);
261 }
262
263
264 //
265 // Return various header fields
266 //
267 Architecture MachOBase::architecture() const
268 {
269 return Architecture(flip(mHeader->cputype), flip(mHeader->cpusubtype));
270 }
271
272 uint32_t MachOBase::type() const
273 {
274 return flip(mHeader->filetype);
275 }
276
277 uint32_t MachOBase::flags() const
278 {
279 return flip(mHeader->flags);
280 }
281
282
283 //
284 // Iterate through load commands
285 //
286 const load_command *MachOBase::nextCommand(const load_command *command) const
287 {
288 using LowLevelMemoryUtilities::increment;
289 /* Do not try and increment by 0, or it will loop forever */
290 if (flip(command->cmdsize) == 0)
291 UnixError::throwMe(ENOEXEC);
292 command = increment<const load_command>(command, flip(command->cmdsize));
293 if (command >= mEndCommands) // end of load commands
294 return NULL;
295 if (increment(command, sizeof(load_command)) > mEndCommands
296 || increment(command, flip(command->cmdsize)) > mEndCommands)
297 UnixError::throwMe(ENOEXEC);
298 return command;
299 }
300
301
302 //
303 // Find a specific load command, by command number.
304 // If there are multiples, returns the first one found.
305 //
306 const load_command *MachOBase::findCommand(uint32_t cmd) const
307 {
308 for (const load_command *command = loadCommands(); command; command = nextCommand(command))
309 if (flip(command->cmd) == cmd)
310 return command;
311 return NULL;
312 }
313
314
315 //
316 // Locate a segment command, by name
317 //
318 const segment_command *MachOBase::findSegment(const char *segname) const
319 {
320 for (const load_command *command = loadCommands(); command; command = nextCommand(command)) {
321 switch (flip(command->cmd)) {
322 case LC_SEGMENT:
323 case LC_SEGMENT_64:
324 {
325 const segment_command *seg = reinterpret_cast<const segment_command *>(command);
326 if (!strcmp(seg->segname, segname))
327 return seg;
328 break;
329 }
330 default:
331 break;
332 }
333 }
334 return NULL;
335 }
336
337 const section *MachOBase::findSection(const char *segname, const char *sectname) const
338 {
339 using LowLevelMemoryUtilities::increment;
340 if (const segment_command *seg = findSegment(segname)) {
341 if (is64()) {
342 const segment_command_64 *seg64 = reinterpret_cast<const segment_command_64 *>(seg);
343 // As a sanity check, if the reported number of sections is not consistent
344 // with the reported size, return NULL
345 if (sizeof(*seg64) + (seg64->nsects * sizeof(section_64)) > seg64->cmdsize)
346 return NULL;
347 const section_64 *sect = increment<const section_64>(seg64 + 1, 0);
348 for (unsigned n = flip(seg64->nsects); n > 0; n--, sect++) {
349 if (!strcmp(sect->sectname, sectname))
350 return reinterpret_cast<const section *>(sect);
351 }
352 } else {
353 const section *sect = increment<const section>(seg + 1, 0);
354 for (unsigned n = flip(seg->nsects); n > 0; n--, sect++) {
355 if (!strcmp(sect->sectname, sectname))
356 return sect;
357 }
358 }
359 }
360 return NULL;
361 }
362
363
364 //
365 // Translate a union lc_str into the string it denotes.
366 // Returns NULL (no exceptions) if the entry is corrupt.
367 //
368 const char *MachOBase::string(const load_command *cmd, const lc_str &str) const
369 {
370 size_t offset = flip(str.offset);
371 const char *sp = LowLevelMemoryUtilities::increment<const char>(cmd, offset);
372 if (offset + strlen(sp) + 1 > flip(cmd->cmdsize)) // corrupt string reference
373 return NULL;
374 return sp;
375 }
376
377
378 //
379 // Figure out where the Code Signing information starts in the Mach-O binary image.
380 // The code signature is at the end of the file, and identified
381 // by a specially-named section. So its starting offset is also the end
382 // of the signable part.
383 // Note that the offset returned is relative to the start of the Mach-O image.
384 // Returns zero if not found (usually indicating that the binary was not signed).
385 //
386 const linkedit_data_command *MachOBase::findCodeSignature() const
387 {
388 if (const load_command *cmd = findCommand(LC_CODE_SIGNATURE))
389 return reinterpret_cast<const linkedit_data_command *>(cmd);
390 return NULL; // not found
391 }
392
393 size_t MachOBase::signingOffset() const
394 {
395 if (const linkedit_data_command *lec = findCodeSignature())
396 return flip(lec->dataoff);
397 else
398 return 0;
399 }
400
401 size_t MachOBase::signingLength() const
402 {
403 if (const linkedit_data_command *lec = findCodeSignature())
404 return flip(lec->datasize);
405 else
406 return 0;
407 }
408
409 const linkedit_data_command *MachOBase::findLibraryDependencies() const
410 {
411 if (const load_command *cmd = findCommand(LC_DYLIB_CODE_SIGN_DRS))
412 return reinterpret_cast<const linkedit_data_command *>(cmd);
413 return NULL; // not found
414 }
415
416
417 //
418 // Return the signing-limit length for this Mach-O binary image.
419 // This is the signingOffset if present, or the full length if not.
420 //
421 size_t MachO::signingExtent() const
422 {
423 if (size_t offset = signingOffset())
424 return offset;
425 else
426 return length();
427 }
428
429
430 //
431 // I/O operations
432 //
433 void MachO::seek(size_t offset)
434 {
435 FileDesc::seek(mOffset + offset);
436 }
437
438 CFDataRef MachO::dataAt(size_t offset, size_t size)
439 {
440 CFMallocData buffer(size);
441 if (this->read(buffer, size, mOffset + offset) != size)
442 UnixError::throwMe();
443 return buffer;
444 }
445
446 //
447 // Fat (aka universal) file wrappers.
448 // The offset is relative to the start of the containing file.
449 //
450 Universal::Universal(FileDesc fd, size_t offset /* = 0 */, size_t length /* = 0 */)
451 : FileDesc(fd), mBase(offset), mLength(length), mMachType(0), mSuspicious(false)
452 {
453 union {
454 fat_header header; // if this is a fat file
455 mach_header mheader; // if this is a thin file
456 };
457 const size_t size = max(sizeof(header), sizeof(mheader));
458 if (fd.read(&header, size, offset) != size)
459 UnixError::throwMe(ENOEXEC);
460 switch (header.magic) {
461 case FAT_MAGIC:
462 case FAT_CIGAM:
463 {
464 //
465 // Hack alert.
466 // Under certain circumstances (15001604), mArchCount under-counts the architectures
467 // by one, and special testing is required to validate the extra-curricular entry.
468 // We always read an extra entry; in the situations where this might hit end-of-file,
469 // we are content to fail.
470 //
471 mArchCount = ntohl(header.nfat_arch);
472
473 if (mArchCount > MAX_ARCH_COUNT)
474 UnixError::throwMe(ENOEXEC);
475
476 size_t archSize = sizeof(fat_arch) * (mArchCount + 1);
477 mArchList = (fat_arch *)malloc(archSize);
478 if (!mArchList)
479 UnixError::throwMe();
480 if (fd.read(mArchList, archSize, mBase + sizeof(header)) != archSize) {
481 ::free(mArchList);
482 UnixError::throwMe(ENOEXEC);
483 }
484 for (fat_arch *arch = mArchList; arch <= mArchList + mArchCount; arch++) {
485 n2hi(arch->cputype);
486 n2hi(arch->cpusubtype);
487 n2hi(arch->offset);
488 n2hi(arch->size);
489 n2hi(arch->align);
490 }
491 const fat_arch *last_arch = mArchList + mArchCount;
492 if (last_arch->cputype == (CPU_ARCH_ABI64 | CPU_TYPE_ARM)) {
493 mArchCount++;
494 }
495 secdebug("macho", "%p is a fat file with %d architectures",
496 this, mArchCount);
497
498 /* A Mach-O universal file has padding of no more than "page size"
499 * between the header and slices. This padding must be zeroed out or the file
500 is not valid */
501 std::list<struct fat_arch *> sortedList;
502 for (unsigned i = 0; i < mArchCount; i++)
503 sortedList.push_back(mArchList + i);
504
505 sortedList.sort(^ bool (const struct fat_arch *arch1, const struct fat_arch *arch2) { return arch1->offset < arch2->offset; });
506
507 const size_t universalHeaderEnd = mBase + sizeof(header) + (sizeof(fat_arch) * mArchCount);
508 size_t prevHeaderEnd = universalHeaderEnd;
509 size_t prevArchSize = 0, prevArchStart = 0;
510
511 for (auto iterator = sortedList.begin(); iterator != sortedList.end(); ++iterator) {
512 auto ret = mSizes.insert(std::pair<size_t, size_t>((*iterator)->offset, (*iterator)->size));
513 if (ret.second == false) {
514 ::free(mArchList);
515 MacOSError::throwMe(errSecInternalError); // Something is wrong if the same size was encountered twice
516 }
517
518 size_t gapSize = (*iterator)->offset - prevHeaderEnd;
519
520 /* The size of the padding after the universal cannot be calculated to a fixed size */
521 if (prevHeaderEnd != universalHeaderEnd) {
522 if (((*iterator)->align > MAX_ALIGN) || gapSize >= (1 << (*iterator)->align)) {
523 mSuspicious = true;
524 break;
525 }
526 }
527
528 // validate gap bytes in tasty page-sized chunks
529 CssmAutoPtr<uint8_t> gapBytes(Allocator::standard().malloc<uint8_t>(PAGE_SIZE));
530 size_t off = 0;
531 while (off < gapSize) {
532 size_t want = min(gapSize - off, (size_t)PAGE_SIZE);
533 size_t got = fd.read(gapBytes, want, prevHeaderEnd + off);
534 off += got;
535 for (size_t x = 0; x < got; x++) {
536 if (gapBytes[x] != 0) {
537 mSuspicious = true;
538 break;
539 }
540 }
541 if (mSuspicious)
542 break;
543 }
544 if (off != gapSize)
545 mSuspicious = true;
546 if (mSuspicious)
547 break;
548
549 prevHeaderEnd = (*iterator)->offset + (*iterator)->size;
550 prevArchSize = (*iterator)->size;
551 prevArchStart = (*iterator)->offset;
552 }
553
554 /* If there is anything extra at the end of the file, reject this */
555 if (!mSuspicious && (prevArchStart + prevArchSize != fd.fileSize()))
556 mSuspicious = true;
557
558 break;
559 }
560 case MH_MAGIC:
561 case MH_MAGIC_64:
562 mArchList = NULL;
563 mArchCount = 0;
564 mThinArch = Architecture(mheader.cputype, mheader.cpusubtype);
565 secdebug("macho", "%p is a thin file (%s)", this, mThinArch.name());
566 break;
567 case MH_CIGAM:
568 case MH_CIGAM_64:
569 mArchList = NULL;
570 mArchCount = 0;
571 mThinArch = Architecture(flip(mheader.cputype), flip(mheader.cpusubtype));
572 secdebug("macho", "%p is a thin file (%s)", this, mThinArch.name());
573 break;
574 default:
575 UnixError::throwMe(ENOEXEC);
576 }
577 }
578
579 Universal::~Universal()
580 {
581 ::free(mArchList);
582 }
583
584 const size_t Universal::lengthOfSlice(size_t offset) const
585 {
586 auto ret = mSizes.find(offset);
587 if (ret == mSizes.end())
588 MacOSError::throwMe(errSecInternalError);
589 return ret->second;
590 }
591
592 //
593 // Get the "local" architecture from the fat file
594 // Throws ENOEXEC if not found.
595 //
596 MachO *Universal::architecture() const
597 {
598 if (isUniversal())
599 return findImage(bestNativeArch());
600 else
601 return new MachO(*this, mBase, mLength);
602 }
603
604 size_t Universal::archOffset() const
605 {
606 if (isUniversal())
607 return mBase + findArch(bestNativeArch())->offset;
608 else
609 return mBase;
610 }
611
612
613 //
614 // Get the specified architecture from the fat file
615 // Throws ENOEXEC if not found.
616 //
617 MachO *Universal::architecture(const Architecture &arch) const
618 {
619 if (isUniversal())
620 return findImage(arch);
621 else if (mThinArch.matches(arch))
622 return new MachO(*this, mBase);
623 else
624 UnixError::throwMe(ENOEXEC);
625 }
626
627 size_t Universal::archOffset(const Architecture &arch) const
628 {
629 if (isUniversal())
630 return mBase + findArch(arch)->offset;
631 else if (mThinArch.matches(arch))
632 return 0;
633 else
634 UnixError::throwMe(ENOEXEC);
635 }
636
637 size_t Universal::archLength(const Architecture &arch) const
638 {
639 if (isUniversal())
640 return mBase + findArch(arch)->size;
641 else if (mThinArch.matches(arch))
642 return this->fileSize();
643 else
644 UnixError::throwMe(ENOEXEC);
645 }
646
647 //
648 // Get the architecture at a specified offset from the fat file.
649 // Throws an exception of the offset does not point at a Mach-O image.
650 //
651 MachO *Universal::architecture(size_t offset) const
652 {
653 if (isUniversal())
654 return make(new MachO(*this, offset));
655 else if (offset == mBase)
656 return new MachO(*this);
657 else
658 UnixError::throwMe(ENOEXEC);
659 }
660
661
662 //
663 // Locate an architecture from the fat file's list.
664 // Throws ENOEXEC if not found.
665 //
666 const fat_arch *Universal::findArch(const Architecture &target) const
667 {
668 assert(isUniversal());
669 const fat_arch *end = mArchList + mArchCount;
670 // exact match
671 for (const fat_arch *arch = mArchList; arch < end; ++arch)
672 if (arch->cputype == target.cpuType()
673 && arch->cpusubtype == target.cpuSubtype())
674 return arch;
675 // match for generic model of main architecture
676 for (const fat_arch *arch = mArchList; arch < end; ++arch)
677 if (arch->cputype == target.cpuType() && arch->cpusubtype == 0)
678 return arch;
679 // match for any subarchitecture of the main architecture (questionable)
680 for (const fat_arch *arch = mArchList; arch < end; ++arch)
681 if (arch->cputype == target.cpuType())
682 return arch;
683 // no match
684 UnixError::throwMe(ENOEXEC); // not found
685 }
686
687 MachO *Universal::findImage(const Architecture &target) const
688 {
689 const fat_arch *arch = findArch(target);
690 return make(new MachO(*this, mBase + arch->offset, arch->size));
691 }
692
693 MachO* Universal::make(MachO* macho) const
694 {
695 auto_ptr<MachO> mo(macho); // safe resource
696 uint32_t type = mo->type();
697 if (type == 0) // not a recognized Mach-O type
698 UnixError::throwMe(ENOEXEC);
699 if (mMachType && mMachType != type) // inconsistent members
700 UnixError::throwMe(ENOEXEC);
701 mMachType = type; // record
702 return mo.release();
703 }
704
705
706 //
707 // Find the best-matching architecture for this fat file.
708 // We pick the native architecture if it's available.
709 // If it contains exactly one architecture, we take that.
710 // Otherwise, we throw.
711 //
712 Architecture Universal::bestNativeArch() const
713 {
714 if (isUniversal()) {
715 // ask the NXArch API for our native architecture
716 const Architecture native = Architecture::local();
717 if (fat_arch *match = NXFindBestFatArch(native.cpuType(), native.cpuSubtype(), mArchList, mArchCount))
718 return *match;
719 // if the system can't figure it out, pick (arbitrarily) the first one
720 return mArchList[0];
721 } else
722 return mThinArch;
723 }
724
725 //
726 // List all architectures from the fat file's list.
727 //
728 void Universal::architectures(Architectures &archs) const
729 {
730 if (isUniversal()) {
731 for (unsigned n = 0; n < mArchCount; n++)
732 archs.insert(mArchList[n]);
733 } else {
734 auto_ptr<MachO> macho(architecture());
735 archs.insert(macho->architecture());
736 }
737 }
738
739 //
740 // Quickly guess the Mach-O type of a file.
741 // Returns type zero if the file isn't Mach-O or Universal.
742 // Always looks at the start of the file, and does not change the file pointer.
743 //
744 uint32_t Universal::typeOf(FileDesc fd)
745 {
746 mach_header header;
747 int max_tries = 3;
748 if (fd.read(&header, sizeof(header), 0) != sizeof(header))
749 return 0;
750 while (max_tries > 0) {
751 switch (header.magic) {
752 case MH_MAGIC:
753 case MH_MAGIC_64:
754 return header.filetype;
755 break;
756 case MH_CIGAM:
757 case MH_CIGAM_64:
758 return flip(header.filetype);
759 break;
760 case FAT_MAGIC:
761 case FAT_CIGAM:
762 {
763 const fat_arch *arch1 =
764 LowLevelMemoryUtilities::increment<fat_arch>(&header, sizeof(fat_header));
765 if (fd.read(&header, sizeof(header), ntohl(arch1->offset)) != sizeof(header))
766 return 0;
767 max_tries--;
768 continue;
769 }
770 default:
771 return 0;
772 }
773 }
774 return 0;
775 }
776
777 //
778 // Strict validation
779 //
780 bool Universal::isSuspicious() const
781 {
782 if (mSuspicious)
783 return true;
784 Universal::Architectures archList;
785 architectures(archList);
786 for (Universal::Architectures::const_iterator it = archList.begin(); it != archList.end(); ++it) {
787 auto_ptr<MachO> macho(architecture(*it));
788 if (macho->isSuspicious())
789 return true;
790 }
791 return false;
792 }
793
794
795 } // Security
mirror of Security