#include "pin.H"
#include <iostream>
#include <fstream>
using namespace std;
KNOB<string> KnobOutputFile(KNOB_MODE_WRITEONCE, "pintool",
"o", "invocation.out", "specify output file name");
ofstream OutFile;
/*
* Analysis routines
*/
VOID Taken( const CONTEXT * ctxt)
{
ADDRINT TakenIP = (ADDRINT)PIN_GetContextReg( ctxt, REG_INST_PTR );
OutFile << "Taken: IP = " << hex << TakenIP << dec << endl;
}
VOID Before(CONTEXT * ctxt)
{
ADDRINT BeforeIP = (ADDRINT)PIN_GetContextReg( ctxt, REG_INST_PTR);
OutFile << "Before: IP = " << hex << BeforeIP << dec << endl;
}
VOID After(CONTEXT * ctxt)
{
ADDRINT AfterIP = (ADDRINT)PIN_GetContextReg( ctxt, REG_INST_PTR);
OutFile << "After: IP = " << hex << AfterIP << dec << endl;
}
/*
* Instrumentation routines
*/
VOID ImageLoad(IMG img, VOID *v)
{
for (SEC sec = IMG_SecHead(img); SEC_Valid(sec); sec = SEC_Next(sec))
{
// RTN_InsertCall() and INS_InsertCall() are executed in order of
// appearance. In the code sequence below, the IPOINT_AFTER is
// executed before the IPOINT_BEFORE.
for (RTN rtn = SEC_RtnHead(sec); RTN_Valid(rtn); rtn = RTN_Next(rtn))
{
// Open the RTN.
RTN_Open( rtn );
// IPOINT_AFTER is implemented by instrumenting each return
// instruction in a routine. Pin tries to find all return
// instructions, but success is not guaranteed.
RTN_InsertCall( rtn, IPOINT_AFTER, (AFUNPTR)After,
IARG_CONTEXT, IARG_END);
// Examine each instruction in the routine.
for( INS ins = RTN_InsHead(rtn); INS_Valid(ins); ins = INS_Next(ins) )
{
if( INS_IsRet(ins) )
{
// instrument each return instruction.
// IPOINT_TAKEN_BRANCH always occurs last.
INS_InsertCall( ins, IPOINT_BEFORE, (AFUNPTR)Before,
IARG_CONTEXT, IARG_END);
INS_InsertCall( ins, IPOINT_TAKEN_BRANCH, (AFUNPTR)Taken,
IARG_CONTEXT, IARG_END);
}
}
// Close the RTN.
RTN_Close( rtn );
}
}
}
VOID Fini(INT32 code, VOID *v)
{
OutFile.close();
}
/* ===================================================================== */
/* Print Help Message */
/* ===================================================================== */
INT32 Usage()
{
cerr << "This is the invocation pintool" << endl;
cerr << endl << KNOB_BASE::StringKnobSummary() << endl;
return -1;
}
/* ===================================================================== */
/* Main */
/* ===================================================================== */
int main(int argc, char * argv[])
{
// Initialize pin & symbol manager
if (PIN_Init(argc, argv)) return Usage();
PIN_InitSymbols();
// Register ImageLoad to be called to instrument instructions
IMG_AddInstrumentFunction(ImageLoad, 0);
PIN_AddFiniFunction(Fini, 0);
// Write to a file since cout and cerr maybe closed by the application
OutFile.open(KnobOutputFile.Value().c_str());
OutFile.setf(ios::showbase);
// Start the program, never returns
PIN_StartProgram();
return 0;
}
/* ===================================================================== */
여기서는 각 Image가 load될 때 3가지의 주소가 찍힌다.
After: 루틴이 return 될 때 주소 (IPOINT_AFTER이용)
Before: instruction 별로 return 일 때 주소 (결국 After와 같다)
Taken: instruction 별로 return 끝나고 돌아가는 주소
'pintool' 카테고리의 다른 글
| Finding Functions By Name on Windows (0) | 2018.09.18 |
|---|---|
| Finding the Value of Function Arguments (0) | 2018.09.18 |
| Using PIN_SafeCopy() (0) | 2018.09.18 |
| Procedure Instruction Count (Routine Instrumentation) *질문 (0) | 2018.09.14 |
| More Efficient Instruction Counting (Trace Instrumentation) +질문 (0) | 2018.09.14 |