From 96518634fbd2b405af197df15a0d787dd883afa4 Mon Sep 17 00:00:00 2001 From: lazymio Date: Sat, 12 Feb 2022 21:34:46 +0100 Subject: [PATCH] Fix the wrong block found when doing split_region --- tests/unit/test_mem.c | 27 +++++++++++++++++++++++++++ uc.c | 4 +++- 2 files changed, 30 insertions(+), 1 deletion(-) diff --git a/tests/unit/test_mem.c b/tests/unit/test_mem.c index 5e7a0927..d74cf3be 100644 --- a/tests/unit/test_mem.c +++ b/tests/unit/test_mem.c @@ -118,9 +118,36 @@ static void test_splitting_mmio_unmap() OK(uc_close(uc)); } +static void test_mem_protect_map_ptr() +{ + uc_engine *uc; + uint64_t val = 0x114514; + uint8_t *data1 = NULL; + uint8_t *data2 = NULL; + uint64_t mem; + + data1 = calloc(sizeof(*data1), 0x4000); + data2 = calloc(sizeof(*data2), 0x2000); + + OK(uc_open(UC_ARCH_X86, UC_MODE_64, &uc)); + + OK(uc_mem_map_ptr(uc, 0x4000, 0x4000, UC_PROT_ALL, data1)); + OK(uc_mem_unmap(uc, 0x6000, 0x2000)); + OK(uc_mem_map_ptr(uc, 0x6000, 0x2000, UC_PROT_ALL, data2)); + + OK(uc_mem_write(uc, 0x6004, &val, 8)); + OK(uc_mem_protect(uc, 0x6000, 0x1000, UC_PROT_READ)); + OK(uc_mem_read(uc, 0x6004, (void *)&mem, 8)); + + TEST_CHECK(val == mem); + + OK(uc_close(uc)); +} + TEST_LIST = {{"test_map_correct", test_map_correct}, {"test_map_wrapping", test_map_wrapping}, {"test_mem_protect", test_mem_protect}, {"test_splitting_mem_unmap", test_splitting_mem_unmap}, {"test_splitting_mmio_unmap", test_splitting_mmio_unmap}, + {"test_mem_protect_map_ptr", test_mem_protect_map_ptr}, {NULL, NULL}}; diff --git a/uc.c b/uc.c index 57b3dd28..01bbb549 100644 --- a/uc.c +++ b/uc.c @@ -1198,11 +1198,13 @@ static bool split_region(struct uc_struct *uc, MemoryRegion *mr, return false; } + // Find the correct and large enough (which contains our target mr) + // to create the content backup. QLIST_FOREACH(block, &uc->ram_list.blocks, next) { // block->offset is the offset within ram_addr_t, not GPA if (block->mr->addr <= mr->addr && - block->used_length >= (mr->end - mr->addr)) { + block->used_length + block->mr->addr >= mr->end) { break; } }