Fix bug where mem io instruction could be truncated

ALSchwalm · ALSchwalm · commit b84122bbd7ec · 2020-10-10T09:40:17.000-05:00
This fix also allows us to use unmodified seabios
diff --git a/mythril/Cargo.toml b/mythril/Cargo.toml
@@ -26,7 +26,7 @@ spin = "0.5"
 ux = { version = "0.1.3", default-features = false }
 
 [dependencies.iced-x86]
-version = "1.1.0"
+version = "1.8.0"
 default-features = false
 features = ["no_std", "decoder"]
 
diff --git a/mythril/src/memory.rs b/mythril/src/memory.rs
@@ -409,11 +409,8 @@ impl GuestAddressSpace {
         let mut out = vec![];
         let iter = self.frame_iter(cr3, addr, access)?;
 
-        // How many frames this region spans
-        let count = (length + HostPhysFrame::SIZE - 1) / HostPhysFrame::SIZE;
-
         let mut start_offset = addr.as_u64() as usize % HostPhysFrame::SIZE;
-        for frame in iter.take(count) {
+        for frame in iter {
             let frame = frame?;
             let array = unsafe { frame.as_array() };
             let slice = if start_offset + length <= HostPhysFrame::SIZE {
@@ -425,6 +422,10 @@ impl GuestAddressSpace {
 
             length -= slice.len();
 
+            if length == 0 {
+                break;
+            }
+
             // All frames after the first have no start_offset
             start_offset = 0;
         }
@@ -441,15 +442,11 @@ impl GuestAddressSpace {
     ) -> Result<()> {
         let iter = self.frame_iter(cr3, addr, access)?;
 
-        // How many frames this region spans
-        let count =
-            (bytes.len() + HostPhysFrame::SIZE - 1) / HostPhysFrame::SIZE;
-
         let mut start_offset = addr.as_u64() as usize % HostPhysFrame::SIZE;
-        for frame in iter.take(count) {
+        for frame in iter {
             let mut frame = frame?;
             let array = unsafe { frame.as_mut_array() };
-            let _slice = if start_offset + bytes.len() <= HostPhysFrame::SIZE {
+            if start_offset + bytes.len() <= HostPhysFrame::SIZE {
                 array[start_offset..start_offset + bytes.len()]
                     .copy_from_slice(&bytes);
                 break;
@@ -458,7 +455,7 @@ impl GuestAddressSpace {
                     &bytes[..(HostPhysFrame::SIZE - start_offset)],
                 );
                 bytes = &bytes[(HostPhysFrame::SIZE - start_offset)..];
-            };
+            }
 
             // All frames after the first have no start_offset
             start_offset = 0;
diff --git a/seabios b/seabios
@@ -1 +1 @@
-Subproject commit 4fd52bd592255c7c1a422f0eead10ef2279643ed
+Subproject commit 76551856b28d227cb0386a1ab0e774329b941f7d
