Support SGDT hooking

2026-01-26 07:01:02 +00:00 · 2025-08-18 15:33:32 +02:00
parent acf28467c5
commit 10cd7868ac
7 changed files with 46 additions and 8 deletions
--- a/src/emulator/arch_emulator.hpp
+++ b/src/emulator/arch_emulator.hpp
@@ -50,6 +50,7 @@ enum class x86_hookable_instructions
    cpuid,
    rdtsc,
    rdtscp,
+    sgdt,
 };

 // --[x86_64]-------------------------------------------------------------------------
--- a/src/emulator/hook_interface.hpp
+++ b/src/emulator/hook_interface.hpp
@@ -38,7 +38,8 @@ struct basic_block
 using edge_generation_hook_callback = std::function<void(const basic_block& current_block, const basic_block& previous_block)>;
 using basic_block_hook_callback = std::function<void(const basic_block& block)>;

-using instruction_hook_callback = std::function<instruction_hook_continuation()>;
+using simple_instruction_hook_callback = std::function<instruction_hook_continuation()>;
+using instruction_hook_callback = std::function<instruction_hook_continuation(uint64_t data)>;
 using interrupt_hook_callback = std::function<void(int interrupt)>;

 using memory_access_hook_callback = std::function<void(uint64_t address, const void* data, size_t size)>;
--- a/src/emulator/typed_emulator.hpp
+++ b/src/emulator/typed_emulator.hpp
@@ -81,6 +81,13 @@ class typed_emulator : public emulator
        return this->hook_instruction(static_cast<int>(instruction_type), std::move(callback));
    }

+    emulator_hook* hook_instruction(hookable_instructions instruction_type, simple_instruction_hook_callback callback)
+    {
+        return this->hook_instruction(instruction_type, [c = std::move(callback)](const uint64_t) {
+            return c(); //
+        });
+    }
+
  private:
    emulator_hook* hook_instruction(int instruction_type, instruction_hook_callback callback) override = 0;