forked from vbuell/python-javaobj
-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathjavaobj.py
More file actions
194 lines (170 loc) · 6.29 KB
/
javaobj.py
File metadata and controls
194 lines (170 loc) · 6.29 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
import StringIO
import struct
def loads(object):
"""
Deserializes Java primitive data and objects serialized by ObjectOutputStream
"""
f = StringIO.StringIO(object)
marshaller = JavaObjectMarshaller(f)
return marshaller.readObject()
# ba = f.read(4)
# (magic, version) = struct.unpack(">HH", ba)
# print magic
# if magic != 0xaced:
# raise RuntimeError("The stream is not java serialized object. Magic number failed.")
#
# print version
#
# print type(object), Magic
class JavaObjectMarshaller:
STREAM_MAGIC = 0xaced
STREAM_VERSION = 0x05
TC_NULL = 0x70
TC_REFERENCE = 0x71
TC_CLASSDESC = 0x72
TC_OBJECT = 0x73
TC_STRING = 0x74
TC_ARRAY = 0x75
TC_CLASS = 0x76
TC_BLOCKDATA = 0x77
TC_ENDBLOCKDATA = 0x78
TC_RESET = 0x79
TC_BLOCKDATALONG = 0x7A
TC_EXCEPTION = 0x7B
TC_LONGSTRING = 0x7C
TC_PROXYCLASSDESC = 0x7D
TC_ENUM = 0x7E
TC_MAX = 0x7E
def __init__(self, stream):
self.opmap = {
self.TC_NULL: self.do_null,
self.TC_CLASSDESC: self.do_classdesc,
self.TC_OBJECT: self.do_object,
self.TC_STRING: self.do_string,
self.TC_CLASS: self.do_class,
self.TC_BLOCKDATA: self.do_blockdata,
self.TC_REFERENCE: self.do_reference
}
self.object_stream = stream
self._readStreamHeader()
self.finalValue = True
self.current_object = None
def _readStreamHeader(self):
(magic, version) = self._readStruct(">HH", 4)
if magic != self.STREAM_MAGIC or version != self.STREAM_VERSION:
raise IOError("The stream is not java serialized object. Invalid stream header: %04X%04X" % (magic, version))
def readObject(self):
(opid, ) = self._readStruct(">B", 1)
print "OpCode: 0x%X" % opid
res = self.opmap.get(opid, self.do_default_stuff)()
return res
def read_and_exec_opcode(self):
(opid, ) = self._readStruct(">B", 1)
print "OpCode: 0x%X" % opid
return self.opmap.get(opid, self.do_default_stuff)()
def _readStruct(self, unpack, length):
ba = self.object_stream.read(length)
return struct.unpack(unpack, ba)
def _readString(self):
(length, ) = self._readStruct(">H", 2)
ba = self.object_stream.read(length)
return ba
def do_classdesc(self, parent=None):
# TC_CLASSDESC className serialVersionUID newHandle classDescInfo
# classDescInfo:
# classDescFlags fields classAnnotation superClassDesc
# classDescFlags:
# (byte) // Defined in Terminal Symbols and Constants
# fields:
# (short)<count> fieldDesc[count]
# fieldDesc:
# primitiveDesc
# objectDesc
# primitiveDesc:
# prim_typecode fieldName
# objectDesc:
# obj_typecode fieldName className1
class JavaClass(object):
def __init__(self):
self.name = None
self.serialVersionUID = None
self.flags = None
self.fields_names = []
self.fields_types = []
def __str__(self):
return "[%s:0x%X]" % (self.name, self.serialVersionUID)
clazz = JavaClass()
print "[classdesc]"
ba = self._readString()
clazz.name = ba
print "Class name:", ba
(serialVersionUID, newHandle, classDescFlags) = self._readStruct(">LLB", 4+4+1)
clazz.serialVersionUID = serialVersionUID
clazz.flags = classDescFlags
print "Serial: 0x%X newHanle: 0x%X. classDescFlags: 0x%X" % (serialVersionUID, newHandle, classDescFlags)
(length, ) = self._readStruct(">H", 2)
print "Fields num: 0x%X" % length
fields_names = []
fields_types = []
for fieldId in range(length):
(type, ) = self._readStruct(">B", 1)
ba = self._readString()
print "FieldType: 0x%X" % type, ba
(opid, ) = self._readStruct(">B", 1)
print "OpCode: 0x%X" % opid
res = self.opmap.get(opid, self.do_default_stuff)()
fields_names.append(ba)
fields_types.append(res)
if parent:
parent.__fields = fields_names
parent.__types = fields_types
# classAnnotation
(opid, ) = self._readStruct(">B", 1)
if opid != self.TC_ENDBLOCKDATA:
raise NotImplementedError("classAnnotation isn't implemented yet")
print "OpCode: 0x%X" % opid
# superClassDesc
(opid, ) = self._readStruct(">B", 1)
print "OpCode: 0x%X" % opid
self.opmap.get(opid, self.do_default_stuff)()
return clazz
def do_blockdata(self, parent=None):
# TC_BLOCKDATA (unsigned byte)<size> (byte)[size]
print "[blockdata]"
(length, ) = self._readStruct(">B", 1)
ba = self.object_stream.read(length)
return ba
def do_class(self, parent=None):
# TC_CLASS classDesc newHandle
print "[class]"
clazz = self.read_and_exec_opcode()
print "Class:", clazz
return clazz
def do_object(self, parent=None):
# TC_OBJECT classDesc newHandle classdata[] // data for each class
class JavaObject(object):
pass
self.current_object = JavaObject()
print "[object]"
(opid, ) = self._readStruct(">B", 1)
print "OpCode: 0x%X" % opid
res = self.opmap.get(opid, self.do_default_stuff)(self.current_object)
self.finalValue = res
# classdata[]
for field_name in self.current_object.__fields:
(opid, ) = self._readStruct(">B", 1)
print "OpCode: 0x%X" % opid
res = self.opmap.get(opid, self.do_default_stuff)(self.current_object)
self.current_object.__setattr__(field_name, res)
return self.current_object
def do_string(self, parent=None):
print "[string]"
ba = self._readString()
# (handle, ) = self._readStruct(">B", 1)
return str(ba)
def do_reference(self, parent=None):
(handle, reference) = self._readStruct(">HH", 4)
def do_null(self, parent=None):
return None
def do_default_stuff(self, parent=None):
raise RuntimeError("Unknown opcode")