1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
|
// Licensed to the .NET Foundation under one or more agreements.
// The .NET Foundation licenses this file to you under the MIT license.
// See the LICENSE file in the project root for more information.
using System;
using System.Collections.Generic;
using System.Diagnostics;
using System.IO;
using System.Reflection.Metadata;
using System.Reflection.Metadata.Ecma335;
using System.Reflection.PortableExecutable;
using System.Text;
namespace R2RDump
{
/// <summary>
/// If COR_ILMETHOD_SECT_HEADER::Kind() = CorILMethod_Sect_EHTable then the attribute
/// is a list of exception handling clauses. There are two formats, fat or small
/// </summary>
[Flags]
public enum CorExceptionFlag
{
COR_ILEXCEPTION_CLAUSE_NONE, // This is a typed handler
COR_ILEXCEPTION_CLAUSE_OFFSETLEN = 0x0000, // Deprecated
COR_ILEXCEPTION_CLAUSE_DEPRECATED = 0x0000, // Deprecated
COR_ILEXCEPTION_CLAUSE_FILTER = 0x0001, // If this bit is on, then this EH entry is for a filter
COR_ILEXCEPTION_CLAUSE_FINALLY = 0x0002, // This clause is a finally clause
COR_ILEXCEPTION_CLAUSE_FAULT = 0x0004, // Fault clause (finally that is called on exception only)
COR_ILEXCEPTION_CLAUSE_DUPLICATED = 0x0008, // duplicated clause. This clause was duplicated to a funclet which was pulled out of line
COR_ILEXCEPTION_CLAUSE_KIND_MASK = COR_ILEXCEPTION_CLAUSE_FILTER | COR_ILEXCEPTION_CLAUSE_FINALLY | COR_ILEXCEPTION_CLAUSE_FAULT,
}
/// <summary>
/// This class represents a single exception handling clause. It basically corresponds
/// to IMAGE_COR_ILMETHOD_SECT_EH_CLAUSE_FAT in
/// <a href="https://github.com/dotnet/coreclr/blob/master/src/inc/cordebuginfo.h">src\inc\corhdr.h</a>.
/// </summary>
public class EHClause
{
/// <summary>
/// Length of the serialized EH clause in the PE image.
/// </summary>
public const int Length = 6 * sizeof(uint);
/// <summary>
/// Flags describing the exception handler.
/// </summary>
CorExceptionFlag Flags;
/// <summary>
/// Starting offset of the try block
/// </summary>
public uint TryOffset;
/// <summary>
/// End offset of the try block
/// </summary>
public uint TryEnd;
/// <summary>
/// Offset of the exception handler for the try block
/// </summary>
public uint HandlerOffset;
/// <summary>
/// End offset of the exception handler
/// </summary>
public uint HandlerEnd;
/// <summary>
/// For type-based exception handlers, this is the type token.
/// For filter-based exception handlers, this is the filter offset.
/// </summary>
public uint ClassTokenOrFilterOffset;
/// <summary>
/// Textual representation of the class represented by the class token.
/// </summary>
public string ClassName;
/// <summary>
/// Read the EH clause from a given file offset in the PE image.
/// </summary>
/// <param name="reader">R2R image reader<param>
/// <param name="offset">Offset of the EH clause in the image</param>
public EHClause(R2RReader reader, int offset)
{
Flags = (CorExceptionFlag)BitConverter.ToUInt32(reader.Image, offset + 0 * sizeof(uint));
TryOffset = BitConverter.ToUInt32(reader.Image, offset + 1 * sizeof(uint));
TryEnd = BitConverter.ToUInt32(reader.Image, offset + 2 * sizeof(uint));
HandlerOffset = BitConverter.ToUInt32(reader.Image, offset + 3 * sizeof(uint));
HandlerEnd = BitConverter.ToUInt32(reader.Image, offset + 4 * sizeof(uint));
ClassTokenOrFilterOffset = BitConverter.ToUInt32(reader.Image, offset + 5 * sizeof(uint));
if ((Flags & CorExceptionFlag.COR_ILEXCEPTION_CLAUSE_KIND_MASK) == CorExceptionFlag.COR_ILEXCEPTION_CLAUSE_NONE)
{
ClassName = MetadataNameFormatter.FormatHandle(reader.MetadataReader, MetadataTokens.Handle((int)ClassTokenOrFilterOffset));
}
}
/// <summary>
/// Emit a textual representation of the EH info to a given text writer.
/// </summary>
/// <param name="writer">Output writer for the textual representation</param>
/// <param name="methodRva">Starting RVA of the runtime function is used to display the try / handler info as RVA intervals</param>
public void WriteTo(TextWriter writer, int methodRva)
{
writer.Write($@"Flags {(uint)Flags:X2} ");
writer.Write($@"TryOff {TryOffset:X4} (RVA {(TryOffset + methodRva):X4}) ");
writer.Write($@"TryEnd {TryEnd:X4} (RVA {(TryEnd + methodRva):X4}) ");
writer.Write($@"HndOff {HandlerOffset:X4} (RVA {(HandlerOffset + methodRva):X4}) ");
writer.Write($@"HndEnd {HandlerEnd:X4} (RVA {(HandlerEnd + methodRva):X4}) ");
writer.Write($@"ClsFlt {ClassTokenOrFilterOffset:X4}");
switch (Flags & CorExceptionFlag.COR_ILEXCEPTION_CLAUSE_KIND_MASK)
{
case CorExceptionFlag.COR_ILEXCEPTION_CLAUSE_NONE:
writer.Write($" CATCH: {0}", ClassName ?? "null");
break;
case CorExceptionFlag.COR_ILEXCEPTION_CLAUSE_FILTER:
writer.Write($" FILTER (RVA {0:X4})", ClassTokenOrFilterOffset + methodRva);
break;
case CorExceptionFlag.COR_ILEXCEPTION_CLAUSE_FINALLY:
writer.Write(" FINALLY");
break;
case CorExceptionFlag.COR_ILEXCEPTION_CLAUSE_FAULT:
writer.Write(" FAULT");
break;
default:
throw new NotImplementedException(Flags.ToString());
}
if ((Flags & CorExceptionFlag.COR_ILEXCEPTION_CLAUSE_DUPLICATED) != (CorExceptionFlag)0)
{
writer.Write(" DUPLICATED");
}
}
}
/// <summary>
/// This class represents EH info for a single runtime function. EH info
/// is located using the map from runtime functions to EH clause lists in
/// the READYTORUN_SECTION_EXCEPTION_INFO header table.
/// </summary>
public class EHInfo
{
/// <summary>
/// RVA of the EH info in the PE image.
/// </summary>
public readonly int EHInfoRVA;
/// <summary>
/// Starting RVA of the corresponding runtime function.
/// </summary>
public readonly int MethodRVA;
/// <summary>
/// List of EH clauses for the runtime function.
/// </summary>
public readonly EHClause[] EHClauses;
/// <summary>
/// Construct the EH info for a given runtime method by reading it from a given offset
/// in the R2R PE executable. The offset is located by looking up the starting
/// IP address of the runtime function in the READYTORUN_SECTION_EXCEPTION_INFO table.
/// The length of the
/// </summary>
/// <param name="reader">R2R PE image reader</param>
/// <param name="ehInfoRva">RVA of the EH info</param>
/// <param name="methodRva">Starting RVA of the runtime function</param>
/// <param name="offset">File offset of the EH info</param>
/// <param name="clauseCount">Number of EH info clauses</param>
public EHInfo(R2RReader reader, int ehInfoRva, int methodRva, int offset, int clauseCount)
{
EHInfoRVA = ehInfoRva;
MethodRVA = methodRva;
EHClauses = new EHClause[clauseCount];
for (int clauseIndex = 0; clauseIndex < clauseCount; clauseIndex++)
{
EHClauses[clauseIndex] = new EHClause(reader, offset + clauseIndex * EHClause.Length);
}
}
/// <summary>
/// Emit the textual representation of the EH info into a given writer.
/// </summary>
public void WriteTo(TextWriter writer)
{
foreach (EHClause ehClause in EHClauses)
{
ehClause.WriteTo(writer, MethodRVA);
writer.WriteLine();
}
}
}
/// <summary>
/// Location of the EH clauses for a single runtime function
/// </summary>
public class EHInfoLocation
{
/// <summary>
/// RVA of the EH clause list in the R2R PE image
/// </summary>
public readonly int EHInfoRVA;
/// <summary>
/// Number of EH clauses
/// </summary>
public readonly int ClauseCount;
public EHInfoLocation(int ehInfoRva, int clauseCount)
{
EHInfoRVA = ehInfoRva;
ClauseCount = clauseCount;
}
}
/// <summary>
/// Lookup table maps IP RVAs to EH info.
/// </summary>
public class EHLookupTable
{
/// <summary>
/// Map from runtime function RVA's to EH info location in the R2R PE file.
/// </summary>
public readonly Dictionary<int, EHInfoLocation> RuntimeFunctionToEHInfoMap;
/// <summary>
/// Reads the EH info lookup table from the PE image.
/// </summary>
/// <param name="image">R2R PE image</param>
/// <param name="offset">Starting offset of the EH info in the PE image</param>
/// <param name="length">Byte length of the EH info</param>
public EHLookupTable(byte[] image, int offset, int length)
{
RuntimeFunctionToEHInfoMap = new Dictionary<int, EHInfoLocation>();
int rva1 = BitConverter.ToInt32(image, offset);
int eh1 = BitConverter.ToInt32(image, offset + sizeof(uint));
while ((length -= 2 * sizeof(uint)) >= 8)
{
offset += 2 * sizeof(uint);
int rva2 = BitConverter.ToInt32(image, offset);
int eh2 = BitConverter.ToInt32(image, offset + sizeof(uint));
RuntimeFunctionToEHInfoMap.Add(rva1, new EHInfoLocation(eh1, (eh2 - eh1) / EHClause.Length));
rva1 = rva2;
eh1 = eh2;
}
}
}
}
|
