Fix PLT emulation with Unicorn 2.1.0 (#2466)

peace-maker · web-flow · commit 3e9849f0ca0d · 2024-09-25T23:01:08.000Z
* Fix PLT emulation with Unicorn 2.1.0 You cannot add multiple hooks at once anymore, so add them individually - still to the same callback. https://github.com/unicorn-engine/unicorn/blob/f164769a9a973a3e981f279ed7aa90459ae68545/bindings/python/unicorn/unicorn_py3/unicorn.py#L970-L976 * Update CHANGELOG * Switch to PyPi Simple API for update checks Fault: <Fault -32500: 'RuntimeError: PyPI no longer supports the XMLRPC package_releases method. Use JSON or Simple API instead. See pypi/warehouse#16642 and https://warehouse.pypa.io/api-reference/xml-rpc.html#deprecated-methods for more information.'> * Update CHANGELOG * Disable ssh.user_shstk test Github Actions Runners have userland shadow stack enabled now apparently. Don't test for this system state.
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -121,8 +121,11 @@ The table below shows which release corresponds to each branch, and what date th
 ## 4.13.1
 
 - [#2445][2445] Fix parsing the PLT on Windows
+- [#2466][2466] Fix PLT emulation with Unicorn 2.1.0
+- [#2466][2466] Switch to PyPi Simple API for update checks
 
 [2445]: https://github.com/Gallopsled/pwntools/pull/2445
+[2466]: https://github.com/Gallopsled/pwntools/pull/2466
 
 ## 4.13.0 (`stable`)
 
diff --git a/pwnlib/elf/plt.py b/pwnlib/elf/plt.py
@@ -169,8 +169,8 @@ def hook_mem(uc, access, address, size, value, user_data):
         return False
 
     hooks = [
-        uc.hook_add(U.UC_HOOK_MEM_READ | U.UC_HOOK_MEM_READ_UNMAPPED,
-                    hook_mem, stopped_addr),
+        uc.hook_add(U.UC_HOOK_MEM_READ, hook_mem, stopped_addr),
+        uc.hook_add(U.UC_HOOK_MEM_READ_UNMAPPED, hook_mem, stopped_addr),
     ]
 
     # callback for tracing instructions
diff --git a/pwnlib/tubes/ssh.py b/pwnlib/tubes/ssh.py
@@ -2030,7 +2030,7 @@ def user_shstk(self):
         Example:
 
             >>> s = ssh("travis", "example.pwnme")
-            >>> s.user_shstk
+            >>> s.user_shstk # doctest: +SKIP 
             False
         """
         if self._user_shstk is None:
diff --git a/pwnlib/update.py b/pwnlib/update.py
@@ -74,12 +74,15 @@ def available_on_pypi(prerelease=current_version.is_prerelease):
     False
     """
     # Deferred import to save startup time
-    from six.moves.xmlrpc_client import ServerProxy
+    import requests
 
     versions = getattr(available_on_pypi, 'cached', None)
     if versions is None:
-        client = ServerProxy('https://pypi.python.org/pypi')
-        versions = client.package_releases('pwntools', True)
+        response = requests.get("https://pypi.org/simple/pwntools/",
+                                headers={"Accept": "application/vnd.pypi.simple.v1+json"},
+                                timeout=5)
+        response.raise_for_status()
+        versions = response.json()["versions"]
         available_on_pypi.cached = versions
 
     versions = map(packaging.version.Version, versions)

Original file line number	Diff line number	Diff line change
`@@ -169,8 +169,8 @@ def hook_mem(uc, access, address, size, value, user_data):`
`169`	`169`	`return False`
`170`	`170`
`171`	`171`	`hooks = [`
`172`		`- uc.hook_add(U.UC_HOOK_MEM_READ \| U.UC_HOOK_MEM_READ_UNMAPPED,`
`173`		`- hook_mem, stopped_addr),`
	`172`	`+ uc.hook_add(U.UC_HOOK_MEM_READ, hook_mem, stopped_addr),`
	`173`	`+ uc.hook_add(U.UC_HOOK_MEM_READ_UNMAPPED, hook_mem, stopped_addr),`
`174`	`174`	`]`
`175`	`175`
`176`	`176`	`# callback for tracing instructions`