From dcd08123c13eec3998ab33d82c2c98692eee5e48 Mon Sep 17 00:00:00 2001
From: Sean Bradly <seanb@atredis.com>
Date: Wed, 13 Apr 2022 17:52:27 -0500
Subject: [PATCH 1/2] Fixes timeout issues and garbled output issues

---
 ghidra_jython_kernel/repl.py | 89 +++++++++++++++++++++---------------
 1 file changed, 52 insertions(+), 37 deletions(-)

diff --git a/ghidra_jython_kernel/repl.py b/ghidra_jython_kernel/repl.py
index 50dd22c..b5dcef9 100644
--- a/ghidra_jython_kernel/repl.py
+++ b/ghidra_jython_kernel/repl.py
@@ -1,6 +1,10 @@
 import signal
 import subprocess
 import os
+import hashlib
+import re
+import time
+
 from pathlib import Path
 from pexpect import spawn
 
@@ -11,20 +15,21 @@ def execute(cmd):
     # execute command
     p = subprocess.Popen(cmd, stdout=subprocess.PIPE, stderr=subprocess.PIPE, shell=True)
     stdout, stderr = p.communicate()
-    
+
     # check status code is ok
     # if it's not, will raise RuntimeError exception
     if p.returncode != 0:
         raise RuntimeError('"{0}" run fails, err={1}'.format(
             cmd, stderr.decode('utf-8', errors='replace')))
-    
+
     # return stdout utf-8 string
     return stdout.decode('utf-8').replace('\r\n', '').replace('\n', '')
 
 
 class GhidraJythonRepl:
+
     def __init__(self, ghidra_home=None):
-        
+
         # those paths come from "$GHIDRA_INSTALL_DIR/support/launch.sh"
         # User must define "GHIDRA_INSTALL_DIR" for Ghidra's installation directory
         # i.e. GHIDRA_INSTALL_DIR=/path/to/ghidra_9.1_PUBLIC
@@ -32,7 +37,7 @@ def __init__(self, ghidra_home=None):
 
         self._java_home = None
         self._java_vmargs = None
-        
+
         # build pythonRun commandline
         run_cmd = '{java_home}/bin/java {java_vmargs} -showversion -cp "{utility_jar}" \
 ghidra.GhidraLauncher "ghidra.python.PythonRun"'.format(
@@ -49,8 +54,9 @@ def __init__(self, ghidra_home=None):
         self.prompt2 = r'... '
 
         # wait for first prompt
-        self.child.expect(self.prompt1)
-    
+        self.child.expect('>>> ')
+        self.inital_msg = self.child.before
+
     @property
     def java_home(self):
         if self._java_home is None:
@@ -65,43 +71,52 @@ def java_vmargs(self):
                 self.INSTALL_DIR / 'support/LaunchSupport.jar', self.INSTALL_DIR))
         return self._java_vmargs
 
-    def read_output(self):
-        ''' Read current output. '''
-        
-        result = ''
+    def repl(self, code):
+        ''' Ghidra's Jython Interpreter REPL function. '''
 
-        # read output, expect echo content
-        if self.child.before.splitlines()[1:]:
-            out = self.child.before.splitlines()[1:]
-            result += '\n'.join([line for line in out if line])
-        
-        return result
-    
-    def _repl(self, code):
-        self.child.sendline(code)
+        file = open("/tmp/loglog","w+")
 
-        # idk why tho, Ghidra's jython interpreter should wait twice
-        self.child.expect_exact([self.prompt1, self.prompt2])
-        self.child.expect_exact([self.prompt1, self.prompt2])
+        # We could escape only key chars for efficiency, but brute force is safer and easier
+        # e.g., "do_code()" => exec('\\x64\\x6f\\x5f\\x63\\x6f\\x64\\x65\\x28\\x29')
+        hex_escaped_code = "exec('{}')".format(''.join(['\\x{:02x}'.format(ord(c)) for c in code]))
 
-        return  self.read_output()
 
-    def repl(self, code):
-        ''' Ghidra's Jython Interpreter REPL function. '''
+        # Insert some unique line to signify completion, this should run
+        # eventually, even in any exceptional cases.
+        flag = hashlib.md5(str(time.time()).encode("ascii")).hexdigest()
+        completed_cmd = "print('# comp'+'lete {}')".format(flag) # plus sign injected so terminal echo wont match expect pattern
 
-        code_lines = code.splitlines()
+        # Run command
+        self.child.before = None
+        self.child.after = None
+        self.child.sendline(hex_escaped_code + "\n" + completed_cmd)
 
-        # if code has new line, should send ENTER('') at last
-        if '\n' in code:
-            code_lines.append('')
+        file.write("sending => {}\n".format(hex_escaped_code + "\n" + completed_cmd))
+
+        file.write("calling expect\n")
+
+        # Wait for completion
+        exp = re.compile("# complete {}".format(flag))
+        self.child.expect([exp], timeout=1000*1000*1000)
 
-        result = ''
         
-        # REPL each line of code
-        for c in code_lines:
-            result += self._repl(c)
-                
-        return result
-    
+        # Return everything that's fit to print
+        result = self.child.before
+
+        file.write("raw result = {}\n".format(result))
+
+        # filter all control chars except newline and tab
+        ccfiltered = re.sub(r'[\x00-\x08\x0b-\x1F]+', '', result)
+        exp = re.compile('^(>>> )+(exec|print).*$', re.MULTILINE)
+        metafiltered = re.sub(exp, '', ccfiltered)
+        filtered = re.sub(r'# complete [0-9a-f]{32}\n','',metafiltered)
+
+        file.write("processed result = {}\n".format(filtered))
+
+        file.close()
+
+        return filtered
+
     def kill(self):
-        self.child.kill(signal.SIGKILL)
\ No newline at end of file
+        self.child.kill(signal.SIGKILL)
+

From 4b6c2e83c21c290e77a1523000ef6951a0bca47d Mon Sep 17 00:00:00 2001
From: Sean Bradly <seanb@atredis.com>
Date: Wed, 13 Apr 2022 17:57:56 -0500
Subject: [PATCH 2/2] delete debug lines

---
 ghidra_jython_kernel/repl.py | 23 ++++-------------------
 1 file changed, 4 insertions(+), 19 deletions(-)

diff --git a/ghidra_jython_kernel/repl.py b/ghidra_jython_kernel/repl.py
index b5dcef9..4aa7992 100644
--- a/ghidra_jython_kernel/repl.py
+++ b/ghidra_jython_kernel/repl.py
@@ -74,47 +74,32 @@ def java_vmargs(self):
     def repl(self, code):
         ''' Ghidra's Jython Interpreter REPL function. '''
 
-        file = open("/tmp/loglog","w+")
-
         # We could escape only key chars for efficiency, but brute force is safer and easier
         # e.g., "do_code()" => exec('\\x64\\x6f\\x5f\\x63\\x6f\\x64\\x65\\x28\\x29')
         hex_escaped_code = "exec('{}')".format(''.join(['\\x{:02x}'.format(ord(c)) for c in code]))
 
-
         # Insert some unique line to signify completion, this should run
         # eventually, even in any exceptional cases.
         flag = hashlib.md5(str(time.time()).encode("ascii")).hexdigest()
         completed_cmd = "print('# comp'+'lete {}')".format(flag) # plus sign injected so terminal echo wont match expect pattern
 
         # Run command
-        self.child.before = None
-        self.child.after = None
         self.child.sendline(hex_escaped_code + "\n" + completed_cmd)
 
-        file.write("sending => {}\n".format(hex_escaped_code + "\n" + completed_cmd))
-
-        file.write("calling expect\n")
-
         # Wait for completion
         exp = re.compile("# complete {}".format(flag))
         self.child.expect([exp], timeout=1000*1000*1000)
-
-        
-        # Return everything that's fit to print
         result = self.child.before
 
-        file.write("raw result = {}\n".format(result))
-
         # filter all control chars except newline and tab
         ccfiltered = re.sub(r'[\x00-\x08\x0b-\x1F]+', '', result)
+        # filter our two exec/print lines
         exp = re.compile('^(>>> )+(exec|print).*$', re.MULTILINE)
         metafiltered = re.sub(exp, '', ccfiltered)
+        # filter out the completed flag
         filtered = re.sub(r'# complete [0-9a-f]{32}\n','',metafiltered)
-
-        file.write("processed result = {}\n".format(filtered))
-
-        file.close()
-
+        
+        # Return everything that's fit to print
         return filtered
 
     def kill(self):