[MachO] Apply types to more load commands

Author: bdash

macho/types.cpp

@@ -275,7 +275,8 @@ void CreateHeaderTypes(Ref<BinaryView> view)
 			{"SG_HIGHVM", SG_HIGHVM},
 			{"SG_FVMLIB", SG_FVMLIB},
 			{"SG_NORELOC", SG_NORELOC},
-			{"SG_PROTECTED_VERSION_1", SG_PROTECTED_VERSION_1}
+			{"SG_PROTECTED_VERSION_1", SG_PROTECTED_VERSION_1},
+			{"SG_READ_ONLY_DATA", SG_READ_ONLY_DATA},
 			// clang-format on
 		});
 
@@ -313,6 +314,45 @@ void CreateHeaderTypes(Ref<BinaryView> view)
 			// clang-format on
 		});
 
+	// TODO: These three enums are technically a single field 32-bit field in the struct. The upper 24 bits are bit
+	// flags while the lower 8 bits are mutually exclusive. This prevents Binary Ninja from rendering them in an ORd
+	// form. The upper 24 bits are split into two enums because a 24 bit enum field isn't handle correctly either.
+	auto sectionTypeEnum = BuildEnum(view, "section_type_t", 1,
+		{
+			{"S_REGULAR", S_REGULAR},
+			{"S_CSTRING_LITERALS", S_CSTRING_LITERALS},
+			{"S_4BYTE_LITERALS", S_4BYTE_LITERALS},
+			{"S_8BYTE_LITERALS", S_8BYTE_LITERALS},
+			{"S_LITERAL_POINTERS", S_LITERAL_POINTERS},
+			{"S_NON_LAZY_SYMBOL_POINTERS", S_NON_LAZY_SYMBOL_POINTERS},
+			{"S_LAZY_SYMBOL_POINTERS", S_LAZY_SYMBOL_POINTERS},
+			{"S_SYMBOL_STUBS", S_SYMBOL_STUBS},
+			{"S_MOD_INIT_FUNC_POINTERS", S_MOD_INIT_FUNC_POINTERS},
+			{"S_MOD_TERM_FUNC_POINTERS", S_MOD_TERM_FUNC_POINTERS},
+			{"S_COALESCED", S_COALESCED},
+			{"S_GB_ZEROFILL", S_GB_ZEROFILL},
+			{"S_INTERPOSING", S_INTERPOSING},
+			{"S_16BYTE_LITERALS", S_16BYTE_LITERALS},
+		});
+
+	auto sectionAttributesSysEnum = BuildEnum(view, "section_attr_sys_t", 1,
+		{
+			{"S_ATTR_DEBUG", (S_ATTR_DEBUG >> 24) & 0xff},
+			{"S_ATTR_SELF_MODIFYING_CODE", (S_ATTR_SELF_MODIFYING_CODE >> 24) & 0xff},
+			{"S_ATTR_LIVE_SUPPORT", (S_ATTR_LIVE_SUPPORT >> 24) & 0xff},
+			{"S_ATTR_NO_DEAD_STRIP", (S_ATTR_NO_DEAD_STRIP >> 24) & 0xff},
+			{"S_ATTR_STRIP_STATIC_SYMS", (S_ATTR_STRIP_STATIC_SYMS >> 24) & 0xff},
+			{"S_ATTR_NO_TOC", (S_ATTR_NO_TOC >> 24) & 0xff},
+			{"S_ATTR_PURE_INSTRUCTIONS", (S_ATTR_PURE_INSTRUCTIONS >> 24) & 0xff},
+		});
+
+	auto sectionAttributesUserEnum = BuildEnum(view, "section_attr_user_t", 2,
+		{
+			{"S_ATTR_LOC_RELOC", (S_ATTR_LOC_RELOC >> 8) & 0xffff},
+			{"S_ATTR_EXT_RELOC", (S_ATTR_EXT_RELOC >> 8) & 0xffff},
+			{"S_ATTR_SOME_INSTRUCTIONS", (S_ATTR_SOME_INSTRUCTIONS >> 8) & 0xffff},
+		});
+
 	auto sectionType = BuildStruct(view, "section", true,
 		{
 			// clang-format off
@@ -324,7 +364,9 @@ void CreateHeaderTypes(Ref<BinaryView> view)
 			{"align", Type::IntegerType(4, false)},
 			{"reloff", Type::IntegerType(4, false)},
 			{"nreloc", Type::IntegerType(4, false)},
-			{"flags", Type::IntegerType(4, false)},
+			{"type", sectionTypeEnum},
+			{"attrs_user", sectionAttributesUserEnum},
+			{"attrs_sys", sectionAttributesSysEnum},
 			{"reserved1", Type::IntegerType(4, false)},
 			{"reserved2", Type::IntegerType(4, false)}
 			// clang-format on
@@ -341,7 +383,9 @@ void CreateHeaderTypes(Ref<BinaryView> view)
 			{"align", Type::IntegerType(4, false)},
 			{"reloff", Type::IntegerType(4, false)},
 			{"nreloc", Type::IntegerType(4, false)},
-			{"flags", Type::IntegerType(4, false)},
+			{"type", sectionTypeEnum},
+			{"attrs_user", sectionAttributesUserEnum},
+			{"attrs_sys", sectionAttributesSysEnum},
 			{"reserved1", Type::IntegerType(4, false)},
 			{"reserved2", Type::IntegerType(4, false)},
 			{"reserved3", Type::IntegerType(4, false)}
@@ -499,14 +543,22 @@ void CreateHeaderTypes(Ref<BinaryView> view)
 			// clang-format on
 		});
 
+	QualifiedName filesetEntryIdName("fileset_entry_id");
+	std::string filesetEntryIdId = Type::GenerateAutoTypeId("macho", filesetEntryIdName);
+	auto filesetEntryIdType = Type::NamedType(view,
+		view->DefineType(filesetEntryIdId, filesetEntryIdName,
+			TypeBuilder::PointerType(4, Type::IntegerType(1, true))
+				.SetPointerBase(RelativeToVariableAddressPointerBaseType, -24)
+				.Finalize()));
+
 	auto filesetEntryCommandType = BuildStruct(view, "fileset_entry_command", false,
 		{
 			// clang-format off
 			{"cmd", cmdTypeEnum},
 			{"cmdsize", Type::IntegerType(4, false)},
 			{"vmaddr", Type::IntegerType(8, false)},
 			{"fileoff", Type::IntegerType(8, false)},
-			{"entry_id", Type::IntegerType(4, false)},
+			{"entry_id", filesetEntryIdType},
 			{"reserved", Type::IntegerType(4, false)}
 			// clang-format on
 		});
@@ -521,6 +573,103 @@ void CreateHeaderTypes(Ref<BinaryView> view)
 			// The 'state' field is intentionally ignored.
 			// clang-format off
 		});
+
+	auto platformTypeEnum = BuildEnum(view, "macho_platform_t", 4,
+		{
+			// clang-format off
+			{"MACHO_PLATFORM_MACOS", MACHO_PLATFORM_MACOS},
+			{"MACHO_PLATFORM_IOS", MACHO_PLATFORM_IOS},
+			{"MACHO_PLATFORM_TVOS", MACHO_PLATFORM_TVOS},
+			{"MACHO_PLATFORM_WATCHOS", MACHO_PLATFORM_WATCHOS},
+			{"MACHO_PLATFORM_BRIDGEOS", MACHO_PLATFORM_BRIDGEOS},
+			{"MACHO_PLATFORM_MACCATALYST", MACHO_PLATFORM_MACCATALYST},
+			{"MACHO_PLATFORM_IOSSIMULATOR", MACHO_PLATFORM_IOSSIMULATOR},
+			{"MACHO_PLATFORM_TVOSSIMULATOR", MACHO_PLATFORM_TVOSSIMULATOR},
+			{"MACHO_PLATFORM_WATCHOSSIMULATOR", MACHO_PLATFORM_WATCHOSSIMULATOR},
+			{"MACHO_PLATFORM_DRIVERKIT", MACHO_PLATFORM_DRIVERKIT},
+			{"MACHO_PLATFORM_VISIONOS", MACHO_PLATFORM_VISIONOS},
+			{"MACHO_PLATFORM_VISIONOSSIMULATOR", MACHO_PLATFORM_VISIONOSSIMULATOR},
+			{"MACHO_PLATFORM_FIRMWARE", MACHO_PLATFORM_FIRMWARE},
+			{"MACHO_PLATFORM_SEPOS", MACHO_PLATFORM_SEPOS},
+			{"MACHO_PLATFORM_MACOS_EXCLAVECORE", MACHO_PLATFORM_MACOS_EXCLAVECORE},
+			{"MACHO_PLATFORM_MACOS_EXCLAVEKIT", MACHO_PLATFORM_MACOS_EXCLAVEKIT},
+			{"MACHO_PLATFORM_IOS_EXCLAVECORE", MACHO_PLATFORM_IOS_EXCLAVECORE},
+			{"MACHO_PLATFORM_IOS_EXCLAVEKIT", MACHO_PLATFORM_IOS_EXCLAVEKIT},
+			{"MACHO_PLATFORM_TVOS_EXCLAVECORE", MACHO_PLATFORM_TVOS_EXCLAVECORE},
+			{"MACHO_PLATFORM_TVOS_EXCLAVEKIT", MACHO_PLATFORM_TVOS_EXCLAVEKIT},
+			{"MACHO_PLATFORM_WATCHOS_EXCLAVECORE", MACHO_PLATFORM_WATCHOS_EXCLAVECORE},
+			{"MACHO_PLATFORM_WATCHOS_EXCLAVEKIT", MACHO_PLATFORM_WATCHOS_EXCLAVEKIT},
+			{"MACHO_PLATFORM_VISIONOS_EXCLAVECORE", MACHO_PLATFORM_VISIONOS_EXCLAVECORE},
+			{"MACHO_PLATFORM_VISIONOS_EXCLAVEKIT", MACHO_PLATFORM_VISIONOS_EXCLAVEKIT}
+			// clang-format on
+		});
+
+	auto buildToolEnum = BuildEnum(view, "macho_build_tool_t", 4,
+		{
+			// clang-format off
+			{"MACHO_TOOL_CLANG", MACHO_TOOL_CLANG},
+			{"MACHO_TOOL_SWIFT", MACHO_TOOL_SWIFT},
+			{"MACHO_TOOL_LD", MACHO_TOOL_LD},
+			{"MACHO_TOOL_LLD", MACHO_TOOL_LLD},
+			{"MACHO_TOOL_METAL", MACHO_TOOL_METAL},
+			{"MACHO_TOOL_AIRLLD", MACHO_TOOL_AIRLLD},
+			{"MACHO_TOOL_AIRNT", MACHO_TOOL_AIRNT},
+			{"MACHO_TOOL_AIRNT_PLUGIN", MACHO_TOOL_AIRNT_PLUGIN},
+			{"MACHO_TOOL_AIRPACK", MACHO_TOOL_AIRPACK},
+			{"MACHO_TOOL_GPUARCHIVER", MACHO_TOOL_GPUARCHIVER},
+			{"MACHO_TOOL_METAL_FRAMEWORK", MACHO_TOOL_METAL_FRAMEWORK},
+			// clang-format on
+		});
+
+	auto buildToolVersionType = BuildStruct(view, "build_tool_version", false,
+		{
+			// clang-format off
+			{"tool", buildToolEnum},
+			{"version", Type::IntegerType(4, false)}
+			// clang-format on
+		});
+
+	auto buildVersionCommandType = BuildStruct(view, "build_version_command", false,
+		{
+			// clang-format off
+			{"cmd", cmdTypeEnum},
+			{"cmdsize", Type::IntegerType(4, false)},
+			{"platform", platformTypeEnum},
+			{"minos", Type::IntegerType(4, false)},
+			{"sdk", Type::IntegerType(4, false)},
+			{"ntools", Type::IntegerType(4, false)},
+			{"tools", Type::ArrayType(buildToolVersionType, 0)}
+			// clang-format on
+		});
+
+	auto sourceVersionCommandType = BuildStruct(view, "source_version_command", false,
+		{
+			// clang-format off
+			{"cmd", cmdTypeEnum},
+			{"cmdsize", Type::IntegerType(4, false)},
+			{"version", Type::IntegerType(8, false)}
+			// clang-format on
+		});
+
+	auto entryPointCommandType = BuildStruct(view, "entry_point_command", false,
+		{
+			// clang-format off
+			{"cmd", cmdTypeEnum},
+			{"cmdsize", Type::IntegerType(4, false)},
+			{"entryoff", Type::IntegerType(8, false)},
+			{"stacksize", Type::IntegerType(8, false)}
+			// clang-format on
+		});
+
+	// Used for the various LC_LOAD_* commands that have only a single string field.
+	auto stringCommandType = BuildStruct(view, "string_command", false,
+		{
+			// clang-format off
+			{"cmd", cmdTypeEnum},
+			{"cmdsize", Type::IntegerType(4, false)},
+			{"value", lcStringType}
+			// clang-format on
+		});
 }
 
 void ApplyHeaderTypes(Ref<BinaryView> view, Ref<Logger> logger, const BinaryReader& incomingReader,
@@ -609,6 +758,9 @@ void ApplyHeaderTypes(Ref<BinaryView> view, Ref<Logger> logger, const BinaryRead
 		case LC_DYLIB_CODE_SIGN_DRS:
 		case LC_DYLD_EXPORTS_TRIE:
 		case LC_DYLD_CHAINED_FIXUPS:
+		case LC_ATOM_INFO:
+		case LC_FUNCTION_VARIANTS:
+		case LC_FUNCTION_VARIANT_FIXUPS:
 			view->DefineDataVariable(cmdAddr, Type::NamedType(view, QualifiedName("linkedit_data_command")));
 			break;
 		case LC_ENCRYPTION_INFO:
@@ -623,8 +775,14 @@ void ApplyHeaderTypes(Ref<BinaryView> view, Ref<Logger> logger, const BinaryRead
 			view->DefineDataVariable(cmdAddr, Type::NamedType(view, QualifiedName("dyld_info_command")));
 			break;
 		case LC_FILESET_ENTRY:
-			view->DefineDataVariable(cmdAddr, Type::NamedType(view, QualifiedName("fileset_entry_command")));
+		{
+			auto type = Type::NamedType(view, QualifiedName("fileset_entry_command"));
+			view->DefineDataVariable(cmdAddr, type);
+			if (load.cmdsize - type->GetWidth() <= 150)
+				view->DefineDataVariable(cmdAddr + type->GetWidth(),
+					Type::ArrayType(Type::IntegerType(1, true), load.cmdsize - type->GetWidth()));
 			break;
+		}
 		case LC_UNIXTHREAD:
 		{
 			view->DefineDataVariable(cmdAddr, Type::NamedType(view, QualifiedName("unix_thread_command")));
@@ -633,6 +791,40 @@ void ApplyHeaderTypes(Ref<BinaryView> view, Ref<Logger> logger, const BinaryRead
 			view->DefineDataVariable(reader.GetOffset(), Type::ArrayType(Type::IntegerType(8, true), count));
 			break;
 		}
+		case LC_BUILD_VERSION:
+		{
+			view->DefineDataVariable(cmdAddr, Type::NamedType(view, QualifiedName("build_version_command")));
+			reader.SeekRelative(12);
+			uint32_t count = reader.Read32();
+			view->DefineDataVariable(
+				reader.GetOffset(), Type::ArrayType(Type::NamedType(view, QualifiedName("build_tool_version")), count));
+			break;
+		}
+		case LC_SOURCE_VERSION:
+			view->DefineDataVariable(cmdAddr, Type::NamedType(view, QualifiedName("source_version_command")));
+			break;
+		case LC_MAIN:
+			view->DefineDataVariable(cmdAddr, Type::NamedType(view, QualifiedName("entry_point_command")));
+			break;
+		case LC_DYLD_ENVIRONMENT:
+		case LC_ID_DYLINKER:
+		case LC_LOAD_DYLINKER:
+		case LC_RPATH:
+		case LC_SUB_CLIENT:
+		case LC_SUB_FRAMEWORK:
+		case LC_SUB_LIBRARY:
+		case LC_SUB_UMBRELLA:
+		case LC_TARGET_TRIPLE:
+		{
+			Ref<Type> type = Type::NamedType(view, QualifiedName("string_command"));
+			view->DefineDataVariable(cmdAddr, type);
+
+			if (load.cmdsize - type->GetWidth() <= 150)
+				view->DefineDataVariable(cmdAddr + type->GetWidth(),
+					Type::ArrayType(Type::IntegerType(1, true), load.cmdsize - type->GetWidth()));
+
+			break;
+		}
 		default:
 			view->DefineDataVariable(cmdAddr, Type::NamedType(view, QualifiedName("load_command")));
 			break;

macho/types.h

@@ -107,6 +107,7 @@ typedef int vm_prot_t;
 #define SG_FVMLIB              0x2
 #define SG_NORELOC             0x4
 #define SG_PROTECTED_VERSION_1 0x8
+#define SG_READ_ONLY_DATA	   0x10
 
 // Section flags
 #define S_ATTR_SOME_INSTRUCTIONS 0x00000400
@@ -117,6 +118,10 @@ typedef int vm_prot_t;
 #define S_ATTR_NO_DEAD_STRIP       0x10000000  // no dead stripping
 #define S_ATTR_LIVE_SUPPORT        0x08000000  // blocks are live if they reference live blocks
 #define S_ATTR_SELF_MODIFYING_CODE 0x04000000  // Used with i386 code stubs written on by dyld
+#define S_ATTR_DEBUG	 		   0x02000000  // a debug section */
+#define S_ATTR_SOME_INSTRUCTIONS   0x00000400  // section contains some machine instructions
+#define S_ATTR_EXT_RELOC	 	   0x00000200  // section has external relocation entries
+#define S_ATTR_LOC_RELOC		   0x00000100  // section has local relocation entries
 
 #define S_REGULAR                             0x0
 #define S_ZEROFILL                            0x1
@@ -201,6 +206,10 @@ typedef int vm_prot_t;
 #define LC_DYLD_EXPORTS_TRIE   (0x33 | LC_REQ_DYLD)
 #define LC_DYLD_CHAINED_FIXUPS (0x34 | LC_REQ_DYLD)
 #define LC_FILESET_ENTRY       (0x35 | LC_REQ_DYLD)
+#define LC_ATOM_INFO		   0x36
+#define LC_FUNCTION_VARIANTS   0x37
+#define LC_FUNCTION_VARIANT_FIXUPS 0x38
+#define LC_TARGET_TRIPLE	   0x39
 
 // Mach-O File types
 #define MH_OBJECT      0x1
@@ -1014,14 +1023,44 @@ namespace BinaryNinja {
 		MACHO_PLATFORM_IOS = 2,
 		MACHO_PLATFORM_TVOS = 3,
 		MACHO_PLATFORM_WATCHOS = 4,
-		MACHO_PLATFORM_BRIDGEOS = 5
+		MACHO_PLATFORM_BRIDGEOS = 5,
+		MACHO_PLATFORM_MACCATALYST = 6,
+		MACHO_PLATFORM_IOSSIMULATOR = 7,
+		MACHO_PLATFORM_TVOSSIMULATOR = 8,
+		MACHO_PLATFORM_WATCHOSSIMULATOR = 9,
+		MACHO_PLATFORM_DRIVERKIT = 10,
+		MACHO_PLATFORM_VISIONOS = 11,
+		MACHO_PLATFORM_VISIONOSSIMULATOR = 12,
+
+		MACHO_PLATFORM_FIRMWARE = 13,
+		MACHO_PLATFORM_SEPOS = 14,
+
+		MACHO_PLATFORM_MACOS_EXCLAVECORE = 15,
+		MACHO_PLATFORM_MACOS_EXCLAVEKIT = 16,
+		MACHO_PLATFORM_IOS_EXCLAVECORE = 17,
+		MACHO_PLATFORM_IOS_EXCLAVEKIT = 18,
+		MACHO_PLATFORM_TVOS_EXCLAVECORE = 19,
+		MACHO_PLATFORM_TVOS_EXCLAVEKIT = 20,
+		MACHO_PLATFORM_WATCHOS_EXCLAVECORE = 21,
+		MACHO_PLATFORM_WATCHOS_EXCLAVEKIT = 22,
+		MACHO_PLATFORM_VISIONOS_EXCLAVECORE = 23,
+		MACHO_PLATFORM_VISIONOS_EXCLAVEKIT = 24,
 	};
 
 	enum MachoBuildTool
 	{
 		MACHO_TOOL_CLANG = 1,
 		MACHO_TOOL_SWIFT = 2,
-		MACHO_TOOL_LD = 3
+		MACHO_TOOL_LD = 3,
+		MACHO_TOOL_LLD = 4,
+		
+		MACHO_TOOL_METAL = 1024,
+		MACHO_TOOL_AIRLLD = 1025,
+		MACHO_TOOL_AIRNT = 1026,
+		MACHO_TOOL_AIRNT_PLUGIN = 1027,
+		MACHO_TOOL_AIRPACK = 1028,
+		MACHO_TOOL_GPUARCHIVER = 1031,
+		MACHO_TOOL_METAL_FRAMEWORK = 1032,
 	};
 
 	struct build_tool_version