def test_hello_32_static():
with procmemelf.from_file("tests/files/hello_32_static", image=True) as pelf:
assert pelf.imgbase == 0x8048000
assert pelf.readv(pelf.imgbase, 4) == b"\x7fELF"
assert pelf.elf.elfclass == 32
assert pelf.elf.get_machine_arch() == 'x86'
assert pelf.elf.little_endian
def test_hello():
with procmemelf.from_file("tests/files/hello", image=True) as pelf:
assert pelf.imgbase == 0x0
assert pelf.readv(pelf.imgbase, 4) == b"\x7fELF"
assert pelf.elf.elfclass == 64
assert pelf.elf.get_machine_arch() == 'x64'
assert pelf.elf.little_endian
def test_hidden_32_static():
with procmemelf.from_file("tests/files/hidden_32_static", image=True) as pelf:
assert pelf.imgbase == 0x8048000
assert pelf.readv(pelf.imgbase, 4) == b"\x7fELF"
assert pelf.elf.elfclass == 32
assert pelf.elf.get_machine_arch() == 'x86'
assert pelf.elf.little_endian
hidden_code = b"\x50\x53\x51\x52\xba\x0f\x00\x00\x00\xb9\x24\xd2\x0e\x08\xbb\x01\x00\x00\x00\xb8\x04\x00\x00"\
b"\x00\xcd\x80\x5a\x59\x5b\x58\x68\x73\x87\x04\x08\xc3\x28\x68\x69\x64\x64\x65\x6e\x20\x63\x6f"\
b"\x64\x65\x21\x29\x0a"
assert pelf.readv(0x80ed200, len(hidden_code)) == hidden_code