render: learn to render Range/Count statements

2025-12-29 22:20:48 -08:00 · 2020-06-28 11:30:23 -06:00
parent cb8fedc1b9
commit 5f598e8a08
2 changed files with 26 additions and 2 deletions
--- a/capa/render/init.py
+++ b/capa/render/init.py
@@ -41,6 +41,7 @@ def convert_statement_to_result_document(statement):
            'type': 'range',
            'min': statement.min,
            'max': statement.max,
+            'child': convert_feature_to_result_document(statement.child),
        }
    elif isinstance(statement, capa.engine.Regex):
        return {
--- a/capa/render/vverbose.py
+++ b/capa/render/vverbose.py
@@ -17,8 +17,31 @@ def render_statement(ostream, statement, indent=0):
        ostream.write(statement['count'] + ' or more')
        ostream.writeln(':')
    elif statement['type'] == 'range':
-        ostream.write('range(%d, %d)' % (statement['min'], statement['max']))
-        ostream.writeln(':')
+        # `range` is a weird node, its almost a hybrid of statement+feature.
+        # it is a specific feature repeated multiple times.
+        # there's no additional logic in the feature part, just the existence of a feature.
+        # so, we have to inline some of the feature rendering here.
+
+        child = statement['child']
+        if child['type'] in ('string', 'bytes', 'api', 'mnemonic', 'basic block', 'export', 'import', 'section', 'match'):
+            feature = '%s(%s)' % (child['type'], rutils.bold2(child[child['type']]))
+        elif child['type'] in ('number', 'offset'):
+            feature = '%s(%s)' % (child['type'], rutils.bold2(rutils.hex(child[child['type']])))
+        elif child['type'] == 'characteristic':
+            feature = 'characteristic(%s)' % (rutils.bold2(child['characteristic'][0]))
+        else:
+            raise RuntimeError('unexpected feature type: ' + str(child))
+
+        ostream.write('count(%s): ' % feature)
+
+        if statement['max'] == statement['min']:
+            ostream.writeln('%d' % (statement['min']))
+        elif statement['min'] == 0:
+            ostream.writeln('%d or fewer' % (statement['max']))
+        elif statement['max'] == (1 << 64 - 1):
+            ostream.writeln('%d or more' % (statement['min']))
+        else:
+            ostream.writeln('between %d and %d' % (statement['min'], statement['max']))
    elif statement['type'] == 'subscope':
        ostream.write(statement['subscope'])
        ostream.writeln(':')