Source code for binaryninja.transform
# Copyright (c) 2015-2025 Vector 35 Inc
#
# Permission is hereby granted, free of charge, to any person obtaining a copy
# of this software and associated documentation files (the "Software"), to
# deal in the Software without restriction, including without limitation the
# rights to use, copy, modify, merge, publish, distribute, sublicense, and/or
# sell copies of the Software, and to permit persons to whom the Software is
# furnished to do so, subject to the following conditions:
#
# The above copyright notice and this permission notice shall be included in
# all copies or substantial portions of the Software.
#
# THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
# IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
# FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
# AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
# LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING
# FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS
# IN THE SOFTWARE.
import traceback
import ctypes
import abc
from typing import List, Optional, Union
# Binary Ninja components
import binaryninja
from .log import log_error_for_exception
from . import databuffer
from . import binaryview
from . import metadata
from . import _binaryninjacore as core
from .enums import TransformType, TransformResult
class _TransformMetaClass(type):
def __iter__(self):
binaryninja._init_plugins()
count = ctypes.c_ulonglong()
xforms = core.BNGetTransformTypeList(count)
assert xforms is not None, "core.BNGetTransformTypeList returned None"
result = []
for i in range(0, count.value):
ptr_addr = ctypes.cast(xforms[i], ctypes.c_void_p).value
handle = ctypes.cast(ptr_addr, type(xforms[i]))
result.append(Transform(handle))
core.BNFreeTransformTypeList(xforms)
for xform in result:
yield xform
def __getitem__(cls, name):
binaryninja._init_plugins()
xform = core.BNGetTransformByName(name)
if xform is None:
raise KeyError("'%s' is not a valid transform" % str(name))
return Transform(xform)
[docs]
class TransformParameter:
[docs]
def __init__(self, name, long_name=None, fixed_length=0):
self._name = name
if long_name is None:
self._long_name = name
else:
self._long_name = long_name
self._fixed_length = fixed_length
def __repr__(self):
return "<TransformParameter: {} fixed length: {}>".format(self._long_name, self._fixed_length)
@property
def name(self):
"""(read-only)"""
return self._name
@property
def long_name(self):
"""(read-only)"""
return self._long_name
@property
def fixed_length(self):
"""(read-only)"""
return self._fixed_length
[docs]
class Transform(metaclass=_TransformMetaClass):
"""
``class Transform`` allows users to implement custom transformations. New transformations may be added at runtime,
so an instance of a transform is created like::
>>> list(Transform)
[<transform: Zlib>, <transform: StringEscape>, <transform: RawHex>, <transform: HexDump>, <transform: Base64>, <transform: Reverse>, <transform: CArray08>, <transform: CArrayA16>, <transform: CArrayA32>, <transform: CArrayA64>, <transform: CArrayB16>, <transform: CArrayB32>, <transform: CArrayB64>, <transform: IntList08>, <transform: IntListA16>, <transform: IntListA32>, <transform: IntListA64>, <transform: IntListB16>, <transform: IntListB32>, <transform: IntListB64>, <transform: MD4>, <transform: MD5>, <transform: SHA1>, <transform: SHA224>, <transform: SHA256>, <transform: SHA384>, <transform: SHA512>, <transform: AES-128 ECB>, <transform: AES-128 CBC>, <transform: AES-256 ECB>, <transform: AES-256 CBC>, <transform: DES ECB>, <transform: DES CBC>, <transform: Triple DES ECB>, <transform: Triple DES CBC>, <transform: RC2 ECB>, <transform: RC2 CBC>, <transform: Blowfish ECB>, <transform: Blowfish CBC>, <transform: CAST ECB>, <transform: CAST CBC>, <transform: RC4>, <transform: XOR>]
>>> sha512=Transform['SHA512']
>>> rawhex=Transform['RawHex']
>>> rawhex.encode(sha512.encode("test string"))
'10e6d647af44624442f388c2c14a787ff8b17e6165b83d767ec047768d8cbcb71a1a3226e7cc7816bc79c0427d94a9da688c41a3992c7bf5e4d7cc3e0be5dbac'
Note that some transformations take additional parameters (most notably encryption ones that require a 'key' parameter passed via a dict):
>>> xor=Transform['XOR']
>>> rawhex=Transform['RawHex']
>>> xor.encode("Original Data", {'key':'XORKEY'})
>>> rawhex.encode(xor.encode("Original Data", {'key':'XORKEY'}))
b'173d3b2c2c373923720f242d39'
"""
transform_type = None
capabilities = 0
supports_detection = False
name = None
long_name = None
group = None
parameters = []
_registered_cb = None
[docs]
def __init__(self, handle):
if handle is None:
self._cb = core.BNCustomTransform()
self._cb.context = 0
self._cb.getParameters = self._cb.getParameters.__class__(self._get_parameters)
self._cb.freeParameters = self._cb.freeParameters.__class__(self._free_parameters)
self._cb.decode = self._cb.decode.__class__(self._decode)
self._cb.encode = self._cb.encode.__class__(self._encode)
self._cb.decodeWithContext = self._cb.decodeWithContext.__class__(self._decode_with_context)
self._cb.canDecode = self._cb.canDecode.__class__(self._can_decode)
self._pending_param_lists = {}
self.type = self.__class__.transform_type
if not isinstance(self.type, str):
assert self.type is not None, "Transform Type is None"
self.type = TransformType(self.type)
self.name = self.__class__.name
self.long_name = self.__class__.long_name
self.group = self.__class__.group
self.parameters = self.__class__.parameters
else:
self.handle = handle
self.type = TransformType(core.BNGetTransformType(self.handle))
self.capabilities = core.BNGetTransformCapabilities(self.handle)
self.supports_detection = core.BNTransformSupportsDetection(self.handle)
self.supports_context = core.BNTransformSupportsContext(self.handle)
self.name = core.BNGetTransformName(self.handle)
self.long_name = core.BNGetTransformLongName(self.handle)
self.group = core.BNGetTransformGroup(self.handle)
count = ctypes.c_ulonglong()
params = core.BNGetTransformParameterList(self.handle, count)
assert params is not None, "core.BNGetTransformParameterList returned None"
self.parameters = []
for i in range(0, count.value):
self.parameters.append(TransformParameter(params[i].name, params[i].longName, params[i].fixedLength))
core.BNFreeTransformParameterList(params, count.value)
def __repr__(self):
return "<transform: %s>" % self.name
def __eq__(self, other):
if not isinstance(other, self.__class__):
return NotImplemented
return ctypes.addressof(self.handle.contents) == ctypes.addressof(other.handle.contents)
def __ne__(self, other):
if not isinstance(other, self.__class__):
return NotImplemented
return not (self == other)
def __hash__(self):
return hash(ctypes.addressof(self.handle.contents))
[docs]
@classmethod
def register(cls):
binaryninja._init_plugins()
if cls.name is None:
raise ValueError("transform 'name' is not defined")
if cls.long_name is None:
cls.long_name = cls.name
if cls.transform_type is None:
raise ValueError("transform 'transform_type' is not defined")
if cls.group is None:
cls.group = ""
xform = cls(None)
cls._registered_cb = xform._cb
xform.handle = core.BNRegisterTransformTypeWithCapabilities(cls.transform_type, cls.capabilities, cls.name, cls.long_name, cls.group, xform._cb)
def _get_parameters(self, ctxt, count):
try:
count[0] = len(self.parameters)
param_buf = (core.BNTransformParameterInfo * len(self.parameters))()
for i in range(0, len(self.parameters)):
param_buf[i].name = self.parameters[i].name.encode('utf-8')
param_buf[i].longName = self.parameters[i].long_name.encode('utf-8')
param_buf[i].fixedLength = self.parameters[i].fixed_length
result = ctypes.cast(param_buf, ctypes.c_void_p)
self._pending_param_lists[result.value] = (result, param_buf)
return result.value
except:
log_error_for_exception("Unhandled Python exception in Transform._get_parameters")
count[0] = 0
return None
def _free_parameters(self, params, count):
try:
buf = ctypes.cast(params, ctypes.c_void_p)
if buf.value not in self._pending_param_lists:
raise ValueError("freeing parameter list that wasn't allocated")
del self._pending_param_lists[buf.value]
except:
log_error_for_exception("Unhandled Python exception in Transform._free_parameters")
def _decode(self, ctxt, input_buf, output_buf, params, count):
try:
input_obj = databuffer.DataBuffer(handle=core.BNDuplicateDataBuffer(input_buf))
param_map = {}
for i in range(0, count):
data = databuffer.DataBuffer(handle=core.BNDuplicateDataBuffer(params[i].value))
param_map[params[i].name] = bytes(data)
result = self.perform_decode(bytes(input_obj), param_map)
if result is None:
return False
result = bytes(result)
core.BNSetDataBufferContents(output_buf, result, len(result))
return True
except:
log_error_for_exception("Unhandled Python exception in Transform._decode")
return False
def _encode(self, ctxt, input_buf, output_buf, params, count):
try:
input_obj = databuffer.DataBuffer(handle=core.BNDuplicateDataBuffer(input_buf))
param_map = {}
for i in range(0, count):
data = databuffer.DataBuffer(handle=core.BNDuplicateDataBuffer(params[i].value))
param_map[params[i].name] = bytes(data)
result = self.perform_encode(bytes(input_obj), param_map)
if result is None:
return False
result = bytes(result)
core.BNSetDataBufferContents(output_buf, result, len(result))
return True
except:
log_error_for_exception("Unhandled Python exception in Transform._encode")
return False
def _decode_with_context(self, ctxt, context, params, count):
try:
context_obj = TransformContext(context)
param_map = {}
for i in range(0, count):
data = databuffer.DataBuffer(handle=core.BNDuplicateDataBuffer(params[i].value))
param_map[params[i].name] = bytes(data)
result = self.perform_decode_with_context(context_obj, param_map)
return result if result is not None else False
except:
log_error_for_exception("Unhandled Python exception in Transform._decode_with_context")
return False
def _can_decode(self, ctxt, input):
try:
input_obj = binaryview.BinaryView(handle=core.BNNewViewReference(input))
return self.can_decode(input_obj)
except:
log_error_for_exception("Unhandled Python exception in Transform._can_decode")
return False
[docs]
@abc.abstractmethod
def perform_decode(self, data, params):
if self.type == TransformType.InvertingTransform:
return self.perform_encode(data, params)
return None
[docs]
def decode(self, input_buf, params={}):
if isinstance(input_buf, int):
raise TypeError("input_buf cannot be an integer")
input_buf = databuffer.DataBuffer(input_buf)
output_buf = databuffer.DataBuffer()
keys = list(params.keys())
param_buf = (core.BNTransformParameter * len(keys))()
data = []
for i in range(0, len(keys)):
param_value = params[keys[i]]
# Validate parameter type
if not isinstance(param_value, (bytes, bytearray, str, databuffer.DataBuffer)):
raise TypeError(f"Transform parameter '{keys[i]}' must be bytes, bytearray, str, or DataBuffer, not {type(param_value).__name__}. "
f"If you need to pass an integer like 0x{param_value:x} as a key, convert it to bytes first: bytes([0x{param_value:x}])"
if isinstance(param_value, int) else
f"Transform parameter '{keys[i]}' must be bytes, bytearray, str, or DataBuffer, not {type(param_value).__name__}")
data.append(databuffer.DataBuffer(param_value))
param_buf[i].name = keys[i]
param_buf[i].value = data[i].handle
if not core.BNDecode(self.handle, input_buf.handle, output_buf.handle, param_buf, len(keys)):
return None
return bytes(output_buf)
[docs]
def encode(self, input_buf, params={}):
if isinstance(input_buf, int):
raise TypeError("input_buf cannot be an integer")
input_buf = databuffer.DataBuffer(input_buf)
output_buf = databuffer.DataBuffer()
keys = list(params.keys())
param_buf = (core.BNTransformParameter * len(keys))()
data = []
for i in range(0, len(keys)):
param_value = params[keys[i]]
# Validate parameter type
if not isinstance(param_value, (bytes, bytearray, str, databuffer.DataBuffer)):
raise TypeError(f"Transform parameter '{keys[i]}' must be bytes, bytearray, str, or DataBuffer, not {type(param_value).__name__}. "
f"If you need to pass an integer like 0x{param_value:x} as a key, convert it to bytes first: bytes([0x{param_value:x}])"
if isinstance(param_value, int) else
f"Transform parameter '{keys[i]}' must be bytes, bytearray, str, or DataBuffer, not {type(param_value).__name__}")
data.append(databuffer.DataBuffer(param_value))
param_buf[i].name = keys[i]
param_buf[i].value = data[i].handle
if not core.BNEncode(self.handle, input_buf.handle, output_buf.handle, param_buf, len(keys)):
return None
return bytes(output_buf)
[docs]
def decode_with_context(self, context, params={}):
"""
``decode_with_context`` performs context-aware transformation for container formats,
enabling multi-file extraction
**Processing Protocol:**
Container transforms typically operate in two phases:
1. **Discovery Phase**: Transform enumerates available files and populates
``context.available_files``. Returns ``False`` to indicate user file selection
is required.
2. **Extraction Phase**: Transform processes ``context.requested_files`` and
creates child contexts for each file with extraction results. Returns ``True``
when extraction is complete.
**Return Value Semantics:**
- ``True``: Processing complete, no more user interaction needed
- ``False``: Processing incomplete, requires user input or session management
(e.g., file selection after discovery)
**Error Reporting:**
Extraction results and messages are accessible via context properties:
- **Context-level** (transformation/extraction status):
- ``context.extraction_result``: Result of parent producing input
- ``context.extraction_message``: Human-readable extraction message
- ``context.transform_result``: Result of applying transform to input
Common error scenarios:
- Archive encrypted, password required
- Corrupt archive structure
- Unsupported archive format
- Individual file extraction failures
**Usage Examples:**
.. code-block:: python
from binaryninja import TransformSession
# Full mode - automatically extracts all files
session = TransformSession("archive.zip")
if session.process(): # All extraction complete, no interaction needed
# Select the intended context(s) for loading
session.set_selected_contexts(session.current_context)
# Load the resulting BinaryView(s)
loaded_view = load(session.current_view)
else:
# Extraction incomplete - user input required
print("Extraction requires user input")
# Interactive mode - requires manual processing for each step
session = TransformSession("nested.zip")
while not session.process():
# Process returned False - user input needed
ctx = session.current_context
# Check if parent has available files for selection
if ctx.parent and ctx.parent.has_available_files:
# Show files to user and let them select
available = ctx.parent.available_files
print(f"Available files: {available}")
# Select files to extract (or all)
ctx.parent.set_requested_files(available)
# Continue processing from parent
session.process_from(ctx.parent)
# Extraction complete - select and load the final context
session.set_selected_contexts(session.current_context)
final_view = session.current_view
:param TransformContext context: Transform context containing input data and state
:param dict params: Optional transform parameters (e.g., passwords, settings)
:return: True if processing complete, False if user input required
:rtype: bool
"""
if not isinstance(context, TransformContext):
return None
keys = list(params.keys())
param_buf = (core.BNTransformParameter * len(keys))()
data = []
for i in range(0, len(keys)):
param_value = params[keys[i]]
# Validate parameter type
if not isinstance(param_value, (bytes, bytearray, str, databuffer.DataBuffer)):
raise TypeError(f"Transform parameter '{keys[i]}' must be bytes, bytearray, str, or DataBuffer, not {type(param_value).__name__}. "
f"If you need to pass an integer like 0x{param_value:x} as a key, convert it to bytes first: bytes([0x{param_value:x}])"
if isinstance(param_value, int) else
f"Transform parameter '{keys[i]}' must be bytes, bytearray, str, or DataBuffer, not {type(param_value).__name__}")
data.append(databuffer.DataBuffer(param_value))
param_buf[i].name = keys[i]
param_buf[i].value = data[i].handle
if not core.BNDecodeWithContext(self.handle, context.handle, param_buf, len(keys)):
return False
return True
[docs]
def can_decode(self, input):
"""
``can_decode`` checks if this transform can decode the given input.
:param input: can be a :py:class:`bytes`, :py:class:`bytearray`, :py:class:`DataBuffer`, or :py:class:`BinaryView`
:return: :py:class:`bool` indicating whether the transform can decode the input
:rtype: bool
"""
if isinstance(input, bytes) or isinstance(input, bytearray) or isinstance(input, databuffer.DataBuffer):
with binaryview.BinaryView.new(input) as view:
return core.BNCanDecode(self.handle, view.handle)
elif isinstance(input, binaryview.BinaryView):
return core.BNCanDecode(self.handle, input.handle)
return False
[docs]
class TransformContext:
"""
``TransformContext`` represents a node in the container extraction tree, containing the input data,
transformation state, and relationships to parent/child contexts.
Each context can have:
- Input data (BinaryView)
- Transform information (name, parameters, results)
- File selection state (available_files, requested_files)
- Parent/child relationships for nested containers
- Extraction status and error messages
Contexts are typically accessed through a ``TransformSession`` rather than created directly.
**Example:**
.. code-block:: python
session = TransformSession("archive.zip")
session.process()
# Access context properties
ctx = session.current_context
print(f"Filename: {ctx.filename}")
print(f"Transform: {ctx.transform_name}")
print(f"Size: {ctx.input.length}")
# Navigate the tree
if ctx.parent:
print(f"Parent files: {ctx.parent.available_files}")
# Check extraction status
if ctx.extraction_result != 0:
print(f"Error: {ctx.extraction_message}")
"""
[docs]
def __init__(self, handle):
self.handle = core.handle_of_type(handle, core.BNTransformContext)
def __del__(self):
if core is not None:
core.BNFreeTransformContext(self.handle)
@property
def available_transforms(self) -> List[str]:
"""Get the list of transforms that can decode this context's input"""
count = ctypes.c_size_t()
transforms = core.BNTransformContextGetAvailableTransforms(self.handle, ctypes.byref(count))
if transforms is None:
return []
result = []
for i in range(count.value):
result.append(transforms[i].decode('utf-8'))
core.BNFreeStringList(transforms, count.value)
return result
@property
def transform_name(self) -> str:
"""Get the name of the transform that created this context"""
return core.BNTransformContextGetTransformName(self.handle)
[docs]
def set_transform_name(self, transform_name: str):
"""Set the transform name for this context"""
core.BNTransformContextSetTransformName(self.handle, transform_name.encode('utf-8'))
@property
def filename(self) -> str:
"""Get the filename for this context"""
return core.BNTransformContextGetFileName(self.handle)
@property
def input(self) -> Optional['binaryview.BinaryView']:
"""Get the input BinaryView for this context"""
view = core.BNTransformContextGetInput(self.handle)
if view is None:
return None
return binaryview.BinaryView(handle=view)
@property
def metadata_obj(self) -> Optional['metadata.Metadata']:
"""Get the metadata for this context"""
meta = core.BNTransformContextGetMetadata(self.handle)
if meta is None:
return None
return metadata.Metadata(handle=meta)
[docs]
def set_transform_parameter(self, name: str, data: databuffer.DataBuffer):
"""Set a transform parameter"""
core.BNTransformContextSetTransformParameter(self.handle, name.encode('utf-8'), data.handle)
[docs]
def has_transform_parameter(self, name: str) -> bool:
"""Check if a transform parameter exists"""
return core.BNTransformContextHasTransformParameter(self.handle, name.encode('utf-8'))
[docs]
def clear_transform_parameter(self, name: str):
"""Clear a transform parameter"""
core.BNTransformContextClearTransformParameter(self.handle, name.encode('utf-8'))
@property
def extraction_message(self) -> str:
"""Get the extraction message"""
return core.BNTransformContextGetExtractionMessage(self.handle)
@property
def extraction_result(self) -> TransformResult:
"""Get the extraction result"""
return TransformResult(core.BNTransformContextGetExtractionResult(self.handle))
@property
def transform_result(self) -> TransformResult:
"""Get the transform result"""
return TransformResult(core.BNTransformContextGetTransformResult(self.handle))
@property
def parent(self) -> Optional['TransformContext']:
"""Get the parent context"""
parent = core.BNTransformContextGetParent(self.handle)
if parent is None:
return None
return TransformContext(parent)
@property
def child_count(self) -> int:
"""Get the number of child contexts"""
return core.BNTransformContextGetChildCount(self.handle)
@property
def children(self) -> List['TransformContext']:
"""Get all child contexts"""
count = ctypes.c_size_t()
children = core.BNTransformContextGetChildren(self.handle, ctypes.byref(count))
if children is None:
return []
result = []
for i in range(count.value):
result.append(TransformContext(core.BNNewTransformContextReference(children[i])))
core.BNFreeTransformContextList(children, count.value)
return result
[docs]
def get_child(self, filename: str) -> Optional['TransformContext']:
"""Get a child context by filename"""
child = core.BNTransformContextGetChild(self.handle, filename.encode('utf-8'))
if child is None:
return None
return TransformContext(child)
[docs]
def create_child(self, data: databuffer.DataBuffer, filename: str = "", result: TransformResult = TransformResult.TransformSuccess, message: str = "") -> 'TransformContext':
"""Create a new child context with the given data, filename, result status, and message
:param data: The data for the child context
:param filename: The filename for the child context (default: "")
:param result: Transform result for the child (default: TransformResult.TransformSuccess)
:param message: Extraction message for the child (default: "")
"""
child = core.BNTransformContextSetChild(self.handle, data.handle, filename.encode('utf-8'), result, message.encode('utf-8'))
if child is None:
raise RuntimeError("Failed to create child context")
return TransformContext(child)
@property
def is_leaf(self) -> bool:
"""Check if this context is a leaf (has no children)"""
return core.BNTransformContextIsLeaf(self.handle)
@property
def is_root(self) -> bool:
"""Check if this context is the root (has no parent)"""
return core.BNTransformContextIsRoot(self.handle)
@property
def available_files(self) -> List[str]:
"""Get the list of available files for selection"""
count = ctypes.c_size_t()
files = core.BNTransformContextGetAvailableFiles(self.handle, ctypes.byref(count))
if files is None:
return []
result = []
for i in range(count.value):
result.append(files[i].decode('utf-8'))
core.BNFreeStringList(files, count.value)
return result
[docs]
def set_available_files(self, files: List[str]):
"""Set the list of available files for selection"""
file_array = (ctypes.c_char_p * len(files))()
for i, f in enumerate(files):
file_array[i] = f.encode('utf-8')
core.BNTransformContextSetAvailableFiles(self.handle, file_array, len(files))
@property
def has_available_files(self) -> bool:
"""Check if this context has available files for selection"""
return core.BNTransformContextHasAvailableFiles(self.handle)
@property
def requested_files(self) -> List[str]:
"""Get the list of requested files"""
count = ctypes.c_size_t()
files = core.BNTransformContextGetRequestedFiles(self.handle, ctypes.byref(count))
if files is None:
return []
result = []
for i in range(count.value):
result.append(files[i].decode('utf-8'))
core.BNFreeStringList(files, count.value)
return result
[docs]
def set_requested_files(self, files: List[str]):
"""Set the list of requested files"""
file_array = (ctypes.c_char_p * len(files))()
for i, f in enumerate(files):
file_array[i] = f.encode('utf-8')
core.BNTransformContextSetRequestedFiles(self.handle, file_array, len(files))
@property
def has_requested_files(self) -> bool:
"""Check if this context has requested files"""
return core.BNTransformContextHasRequestedFiles(self.handle)
@property
def is_database(self) -> bool:
"""Check if this context represents a database file"""
return core.BNTransformContextIsDatabase(self.handle)
[docs]
class TransformSession:
"""
``TransformSession`` manages the extraction workflow for container files (ZIP, 7z, IMG4, etc.),
handling multi-stage extraction, file selection, and transform application.
Sessions automatically detect and apply appropriate transforms to navigate through nested containers,
maintaining a tree of ``TransformContext`` objects representing each extraction stage.
**Modes:**
- **Full Mode** (default): Automatically extracts all files through nested containers
- **Interactive Mode**: Requires user file selection at each stage
**Basic Usage:**
.. code-block:: python
from binaryninja import TransformSession
# Full automatic extraction
session = TransformSession("archive.zip")
if session.process():
final_data = session.current_view
load(final_data)
**Interactive Extraction:**
.. code-block:: python
session = TransformSession("nested_archive.zip")
while not session.process():
# User input needed
ctx = session.current_context
if ctx.parent and ctx.parent.has_available_files:
# Show file choices to user
print(f"Available: {ctx.parent.available_files}")
# User selects files
ctx.parent.set_requested_files(["important_file.bin"])
# Continue extraction
session.process_from(ctx.parent)
# Access final extracted data
session.set_selected_contexts(session.current_context)
final_view = session.current_view
**Key Methods:**
- ``process()``: Process the next extraction stage
- ``process_from(context)``: Resume processing from a specific context
- ``set_selected_contexts(contexts)``: Mark contexts for final access
**Key Properties:**
- ``current_context``: The current point in the extraction tree
- ``current_view``: The current BinaryView (after processing)
- ``root_context``: The root of the extraction tree
"""
[docs]
def __init__(self, filename_or_view: Union[str, 'binaryview.BinaryView'], mode=None, handle=None):
if handle is not None:
self.handle = core.handle_of_type(handle, core.BNTransformSession)
elif isinstance(filename_or_view, str):
if mode is None:
self.handle = core.BNCreateTransformSession(filename_or_view.encode('utf-8'))
else:
self.handle = core.BNCreateTransformSessionWithMode(filename_or_view.encode('utf-8'), mode)
elif hasattr(filename_or_view, 'handle'): # BinaryView
if mode is None:
self.handle = core.BNCreateTransformSessionFromBinaryView(filename_or_view.handle)
else:
self.handle = core.BNCreateTransformSessionFromBinaryViewWithMode(filename_or_view.handle, mode)
else:
raise TypeError("filename_or_view must be a string filename or BinaryView")
if self.handle is None:
raise RuntimeError("Failed to create TransformSession")
def __del__(self):
if core is not None:
core.BNFreeTransformSession(self.handle)
@property
def current_view(self) -> Optional['binaryview.BinaryView']:
"""Get the current BinaryView for this session"""
view = core.BNTransformSessionGetCurrentView(self.handle)
if view is None:
return None
return binaryview.BinaryView(handle=view)
@property
def root_context(self) -> Optional['TransformContext']:
"""Get the root transform context"""
context = core.BNTransformSessionGetRootContext(self.handle)
if context is None:
return None
return TransformContext(context)
@property
def current_context(self) -> Optional['TransformContext']:
"""Get the current transform context"""
context = core.BNTransformSessionGetCurrentContext(self.handle)
if context is None:
return None
return TransformContext(context)
[docs]
def process_from(self, context: 'TransformContext') -> bool:
"""Process the transform session starting from a specific context"""
if not isinstance(context, TransformContext):
raise TypeError("context must be a TransformContext")
return core.BNTransformSessionProcessFrom(self.handle, context.handle)
[docs]
def process(self) -> bool:
"""Process the transform session"""
return core.BNTransformSessionProcess(self.handle)
@property
def has_any_stages(self) -> bool:
"""Check if this session has any processing stages"""
return core.BNTransformSessionHasAnyStages(self.handle)
@property
def has_single_path(self) -> bool:
"""Check if this session has a single processing path"""
return core.BNTransformSessionHasSinglePath(self.handle)
@property
def selected_contexts(self) -> List['TransformContext']:
"""Get the currently selected contexts"""
count = ctypes.c_size_t()
contexts = core.BNTransformSessionGetSelectedContexts(self.handle, ctypes.byref(count))
if contexts is None:
return []
result = []
for i in range(count.value):
result.append(TransformContext(core.BNNewTransformContextReference(contexts[i])))
core.BNFreeTransformContextList(contexts, count.value)
return result
[docs]
def set_selected_contexts(self, contexts: Union[List['TransformContext'], 'TransformContext']):
"""Set the selected contexts"""
if isinstance(contexts, TransformContext):
contexts = [contexts]
context_array = (ctypes.POINTER(core.BNTransformContext) * len(contexts))()
for i, ctx in enumerate(contexts):
context_array[i] = ctx.handle
core.BNTransformSessionSetSelectedContexts(self.handle, context_array, len(contexts))