Add test for C library functions in iOS (#61)

Author: sledgeh4w

src/chomper/os/ios/hooks.py

@@ -7,7 +7,7 @@
 
 
 class IosFuncHooks(FuncHooks):
-    """System function hooks for iOS."""
+    """System function hooks for the iOS."""
 
     @classmethod
     def register(cls, emu):
@@ -29,12 +29,12 @@ def register(cls, emu):
             "_dispatch_async": 0,
             # libdyld.dylib
             "_dyld_program_sdk_at_least": 1,
-            "__CFBundleCreateInfoDictFromMainExecutable": 0,
+            # libobjc.A.dylib
             "__ZN11objc_object16rootAutorelease2Ev": None,
+            # CoreFoundation
+            "__CFBundleCreateInfoDictFromMainExecutable": 0,
             # Foundation
             "_NSLog": 0,
-            # Other modules
-            "___cficu_udat_open": 0,
         }
 
         hooks = {
@@ -61,12 +61,10 @@ def register(cls, emu):
             "_srandom": cls.hook_srandom,
             "_random": cls.hook_random,
             "_localtime_r": cls.hook_localtime_r,
-            "_fopen": cls.hook_fopen,
             "___srefill": cls.hook_srefill,
             # libsystem_kernel.dylib
             "_stat": cls.hook_stat,
             "_lstat": cls.hook_lstat,
-            "___sysctl": cls.hook_sysctl,
             "___sysctlbyname": cls.hook_sysctlbyname,
             # libmacho.dylib
             "_getsectiondata": cls.hook_getsectiondata,
@@ -293,10 +291,6 @@ def hook_lstat(uc, address, size, user_data):
 
         return 0
 
-    @staticmethod
-    def hook_sysctl(uc, address, size, user_data):
-        return 0
-
     @staticmethod
     def hook_sysctlbyname(uc, address, size, user_data):
         emu = user_data["emu"]

src/chomper/os/ios/options.py

@@ -2,7 +2,7 @@
 
 
 class IosOptions(Options):
-    """Options for iOS.
+    """Options of the iOS environment.
 
     Args:
         enable_objc: Enable Objective-C support. Defaults to True.

src/chomper/os/ios/os.py

@@ -59,9 +59,18 @@ def find_system_module(self, module_name: str) -> str:
         raise FileNotFoundError("Module '%s' not found" % module_name)
 
     def check_module(self, module_name: str) -> bool:
-        """Check if the module is loaded."""
+        """Check if the module exist."""
         return module_name in (t.name for t in self.emu.modules)
 
+    def resolve_modules(self, module_classes: List):
+        """Load modules if don't exist."""
+        for module_class in module_classes:
+            if self.check_module(module_class.MODULE_NAME):
+                continue
+
+            module = module_class(self.emu)
+            module.load()
+
     def init_objc(self, module: Module):
         """Initialize Objective-C."""
         if not self.check_module(modules.Objc.MODULE_NAME):
@@ -95,11 +104,6 @@ def init_objc(self, module: Module):
             self.emu.logger.error("Initialize Objective-C failed.")
             self.emu.logger.exception(e)
 
-    def load_modules(self, module_classes: List):
-        """Load modules."""
-        for module_cls in module_classes:
-            module_cls(self.emu).load()
-
     def enable_objc(self):
         """Enable Objective-C support."""
         dependent_modules = [
@@ -127,7 +131,7 @@ def enable_objc(self):
             modules.Security,
         ]
 
-        self.load_modules(dependent_modules)
+        self.resolve_modules(dependent_modules)
 
     def enable_ui_kit(self):
         """Enable UIKit support.
@@ -147,7 +151,7 @@ def enable_ui_kit(self):
             modules.UIKitCore,
         ]
 
-        self.load_modules(dependent_modules)
+        self.resolve_modules(dependent_modules)
 
     def initialize(self):
         """Initialize the environment."""

src/chomper/os/ios/syscall.py

@@ -15,7 +15,9 @@ class IosSyscallNo:
     ACCESS = 0x21
     GETEGID = 0x2B
     GETTIMEOFDAY = 0x74
+    SYSCTL = 0xCA
     SHM_OPEN = 0x10A
+    SYSCTLBYNAME = 0x112
     GETTID = 0x11E
     ISSETUGID = 0x147
     STAT64 = 0x152
@@ -31,7 +33,7 @@ class IosSyscallNo:
 
 
 class IosSyscallHandler(SyscallHandler):
-    """System call handler for iOS."""
+    """System call handler for the iOS."""
 
     @classmethod
     def register(cls, emu):
@@ -42,7 +44,9 @@ def register(cls, emu):
             IosSyscallNo.ACCESS: cls.access,
             IosSyscallNo.GETEGID: cls.getegid,
             IosSyscallNo.GETTIMEOFDAY: cls.gettimeofday,
+            IosSyscallNo.SYSCTL: cls.sysctl,
             IosSyscallNo.SHM_OPEN: cls.shm_open,
+            IosSyscallNo.SYSCTLBYNAME: cls.sysctlbyname,
             IosSyscallNo.GETTID: cls.gettid,
             IosSyscallNo.ISSETUGID: cls.issetugid,
             IosSyscallNo.STAT64: cls.stat64,
@@ -71,8 +75,7 @@ def geteuid(emu):
 
     @staticmethod
     def access(emu):
-        # pathname = emu.read_string(emu.get_arg(0))
-
+        # path = emu.read_string(emu.get_arg(0))
         emu.set_retval(0)
 
     @staticmethod
@@ -88,10 +91,41 @@ def gettimeofday(emu):
 
         emu.set_retval(0)
 
+    @staticmethod
+    def sysctl(emu):
+        emu.set_retval(0)
+
     @staticmethod
     def shm_open(emu):
         emu.set_retval(0x80000000)
 
+    @staticmethod
+    def sysctlbyname(emu):
+        name = emu.read_string(emu.get_arg(0))
+        oldp = emu.get_arg(2)
+        oldlenp = emu.get_arg(3)
+
+        if not oldp or not oldlenp:
+            emu.set_retval(0)
+            return
+
+        if name == "kern.boottime":
+            emu.write_u64(oldp, int(time.time()) - 3600 * 24)
+            emu.write_u64(oldp + 8, 0)
+
+        elif name == "kern.osvariant_status":
+            # internal_release_type = 3
+            emu.write_u64(oldp, 0x30)
+
+        elif name == "hw.memsize":
+            emu.write_u64(oldp, 4 * 1024 * 1024 * 1024)
+
+        else:
+            emu.logger.warning("Unhandled sysctlbyname: %s" % name)
+            # raise RuntimeError("Unhandled sysctl command: %s" % name)
+
+        emu.set_retval(0)
+
     @staticmethod
     def gettid(emu):
         tid = threading.current_thread().ident

tests/conftest.py

@@ -9,7 +9,8 @@
 
 android_lib_path = os.path.join(base_path, "../examples/rootfs/android/system/lib")
 android_lib64_path = os.path.join(base_path, "../examples/rootfs/android/system/lib64")
-ios_lib_path = os.path.join(base_path, "../examples/rootfs/ios/usr/lib/system")
+
+ios_rootfs_path = os.path.join(base_path, "../examples/rootfs/ios")
 
 com_shizhuang_duapp_path = os.path.join(
     base_path, "../examples/apps/android/com.shizhuang.duapp"
@@ -46,7 +47,7 @@ def libz_arm(emu_arm):
 def libdusanwa_v4856_arm(emu_arm):
     """From com.shizhuang.duapp 4.85.6"""
     yield emu_arm.load_module(
-        os.path.join(com_shizhuang_duapp_path, "libdusanwa.so"),
+        module_file=os.path.join(com_shizhuang_duapp_path, "libdusanwa.so"),
         exec_init_array=True,
     )
 
@@ -70,7 +71,7 @@ def libz_arm64(emu_arm64):
 def libszstone_v4945_arm64(emu_arm64):
     """From com.shizhuang.duapp 4.94.5"""
     yield emu_arm64.load_module(
-        os.path.join(com_shizhuang_duapp_path, "libszstone.so"),
+        module_file=os.path.join(com_shizhuang_duapp_path, "libszstone.so"),
         exec_init_array=True,
     )
 
@@ -83,10 +84,8 @@ def libtiny_v73021_arm64(emu_arm64):
 
 @pytest.fixture(scope="module")
 def emu_ios():
-    emu = Chomper(arch=ARCH_ARM64, os_type=OS_IOS)
-
-    emu.load_module(os.path.join(ios_lib_path, "libsystem_platform.dylib"))
-    emu.load_module(os.path.join(ios_lib_path, "libsystem_c.dylib"))
-    emu.load_module(os.path.join(ios_lib_path, "libsystem_kernel.dylib"))
-
-    yield emu
+    yield Chomper(
+        arch=ARCH_ARM64,
+        os_type=OS_IOS,
+        rootfs_path=ios_rootfs_path,
+    )