{{ title }}
================================================ FILE: mythril/analysis/templates/report_as_markdown.jinja2 ================================================ # Analysis results for {{ filename }} {% if issues %} {% for issue in issues %} ## {{ issue.title }} - SWC ID: {{ issue['swc-id'] }} - Severity: {{ issue.severity }} - Contract: {{ issue.contract | default("Unknown") }} {% if issue.function %} - Function name: `{{ issue.function }}` {% endif %} - PC address: {{ issue.address }} {% if issue.min_gas_used or issue.max_gas_used %} - Estimated Gas Usage: {{ issue.min_gas_used }} - {{ issue.max_gas_used }} {% endif %} ### Description {{ issue.description.rstrip() }} {% if issue.filename and issue.lineno %} In file: {{ issue.filename }}:{{ issue.lineno }} {% elif issue.filename %} In file: {{ issue.filename }} {% endif %} {% if issue.code %} ### Code ``` {{ issue.code }} ``` {% endif %} {% if issue.tx_sequence %} ### Initial State: {% for key, value in issue.tx_sequence.initialState.accounts.items() %} Account: {% if key == "0xaffeaffeaffeaffeaffeaffeaffeaffeaffeaffe" %}[CREATOR]{% elif key == "0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef" %}[ATTACKER]{% else %}[SOMEGUY]{% endif %}, balance: {{value.balance}}, nonce:{{value.nonce}}, storage:{{value.storage}} {% endfor %} ### Transaction Sequence {% for step in issue.tx_sequence.steps %} {% if step == issue.tx_sequence.steps[0] and step.input != "0x" and step.origin == "0xaffeaffeaffeaffeaffeaffeaffeaffeaffeaffe" %} Caller: [CREATOR], calldata: {{ step.calldata }}, {% if step.resolved_input is not none %}decoded_data: {{ step.resolved_input }}, {% endif %}value: {{ step.value }} {% else %} Caller: {% if step.origin == "0xaffeaffeaffeaffeaffeaffeaffeaffeaffeaffe" %}[CREATOR]{% elif step.origin == "0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef" %}[ATTACKER]{% else %}[SOMEGUY]{% endif %}, function: {{ step.name }}, txdata: {{ step.input }}, {% if step.resolved_input is not none %}decoded_data: {{ step.resolved_input }}, {% endif %}value: {{ step.value }} {% endif %} {% endfor %} {% endif %} {% endfor %} {% else %} The analysis was completed successfully. No issues were detected. {% endif %} ================================================ FILE: mythril/analysis/templates/report_as_text.jinja2 ================================================ {% if issues %} {% for issue in issues %} ==== {{ issue.title }} ==== SWC ID: {{ issue['swc-id'] }} Severity: {{ issue.severity }} Contract: {{ issue.contract | default("Unknown") }} {% if issue.function %} Function name: {{ issue.function }} {% endif %} PC address: {{ issue.address }} {% if issue.min_gas_used or issue.max_gas_used %} Estimated Gas Usage: {{ issue.min_gas_used }} - {{ issue.max_gas_used }} {% endif %} {{ issue.description }} -------------------- {% if issue.filename and issue.lineno %} In file: {{ issue.filename }}:{{ issue.lineno }} {% endif %} {% if issue.code %} {{ issue.code }} -------------------- {% endif %} {% if issue.tx_sequence %} Initial State: {% for key, value in issue.tx_sequence.initialState.accounts.items() %} Account: {% if key == "0xaffeaffeaffeaffeaffeaffeaffeaffeaffeaffe" %}[CREATOR]{% elif key == "0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef" %}[ATTACKER]{% else %}[SOMEGUY]{% endif %}, balance: {{value.balance}}, nonce:{{value.nonce}}, storage:{{value.storage}} {% endfor %} Transaction Sequence: {% for step in issue.tx_sequence.steps %} {% if step == issue.tx_sequence.steps[0] and step.address == "" and step.origin == "0xaffeaffeaffeaffeaffeaffeaffeaffeaffeaffe" %} Caller: [CREATOR], calldata: {{ step.calldata }}, {% if step.resolved_input is not none %}decoded_data: {{ step.resolved_input }}, {% endif %}value: {{ step.value }} {% else %} Caller: {% if step.origin == "0xaffeaffeaffeaffeaffeaffeaffeaffeaffeaffe" %}[CREATOR]{% elif step.origin == "0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef" %}[ATTACKER]{% else %}[SOMEGUY]{% endif %}, function: {{ step.name }}, txdata: {{ step.input }}, {% if step.resolved_input is not none %}decoded_data: {{ step.resolved_input }}, {% endif %}value: {{ step.value }} {% endif %} {% endfor %} {% endif %} {% endfor %} {% else %} The analysis was completed successfully. No issues were detected. {% endif %} ================================================ FILE: mythril/analysis/traceexplore.py ================================================ """This module provides a function to convert a state space into a set of state nodes and transition edges.""" import re from z3 import Z3Exception from mythril.laser.ethereum.svm import NodeFlags from mythril.laser.smt import simplify colors = [ { "border": "#26996f", "background": "#2f7e5b", "highlight": {"border": "#fff", "background": "#28a16f"}, }, { "border": "#9e42b3", "background": "#842899", "highlight": {"border": "#fff", "background": "#933da6"}, }, { "border": "#b82323", "background": "#991d1d", "highlight": {"border": "#fff", "background": "#a61f1f"}, }, { "border": "#4753bf", "background": "#3b46a1", "highlight": {"border": "#fff", "background": "#424db3"}, }, { "border": "#26996f", "background": "#2f7e5b", "highlight": {"border": "#fff", "background": "#28a16f"}, }, { "border": "#9e42b3", "background": "#842899", "highlight": {"border": "#fff", "background": "#933da6"}, }, { "border": "#b82323", "background": "#991d1d", "highlight": {"border": "#fff", "background": "#a61f1f"}, }, { "border": "#4753bf", "background": "#3b46a1", "highlight": {"border": "#fff", "background": "#424db3"}, }, ] def get_serializable_statespace(statespace): """ :param statespace: :return: """ nodes = [] edges = [] color_map = {} i = 0 for k in statespace.accounts: color_map[statespace.accounts[k].contract_name] = colors[i] i += 1 for node_key in statespace.nodes: node = statespace.nodes[node_key] code = node.get_cfg_dict()["code"] code = re.sub("([0-9a-f]{8})[0-9a-f]+", lambda m: m.group(1) + "(...)", code) if NodeFlags.FUNC_ENTRY in node.flags: code = re.sub("JUMPDEST", node.function_name, code) code_split = code.split("\\n") truncated_code = ( code if (len(code_split) < 7) else "\\n".join(code_split[:6]) + "\\n(click to expand +)" ) try: color = color_map[node.get_cfg_dict()["contract_name"]] except KeyError: color = colors[i] i += 1 color_map[node.get_cfg_dict()["contract_name"]] = color def get_state_accounts(node_state): """ :param node_state: :return: """ state_accounts = [] for key in node_state.accounts: account = node_state.accounts[key].as_dict account.pop("code", None) account["balance"] = str(account["balance"]) storage = {} for storage_key in account["storage"].printable_storage: storage[str(storage_key)] = str(account["storage"][storage_key]) state_accounts.append({"address": key, "storage": storage}) return state_accounts states = [ {"machine": x.mstate.as_dict, "accounts": get_state_accounts(x)} for x in node.states ] for state in states: state["machine"]["stack"] = [str(s) for s in state["machine"]["stack"]] state["machine"]["memory"] = [ str(m) for m in state["machine"]["memory"][: len(state["machine"]["memory"])] ] truncated_code = truncated_code.replace("\\n", "\n") code = code.replace("\\n", "\n") s_node = { "id": str(node_key), "func": str(node.function_name), "label": truncated_code, "code": code, "truncated": truncated_code, "states": states, "color": color, "instructions": code.split("\n"), } nodes.append(s_node) for edge in statespace.edges: if edge.condition is None: label = "" else: try: label = str(simplify(edge.condition)).replace("\n", "") except Z3Exception: label = str(edge.condition).replace("\n", "") label = re.sub( "([^_])([\d]{2}\d+)", lambda m: m.group(1) + hex(int(m.group(2))), label ) s_edge = { "from": str(edge.as_dict["from"]), "to": str(edge.as_dict["to"]), "arrows": "to", "label": label, "smooth": {"type": "cubicBezier"}, } edges.append(s_edge) return {"edges": edges, "nodes": nodes} ================================================ FILE: mythril/concolic/__init__.py ================================================ from mythril.concolic.concolic_execution import concolic_execution from mythril.concolic.find_trace import concrete_execution ================================================ FILE: mythril/concolic/concolic_execution.py ================================================ from copy import deepcopy from datetime import datetime from typing import Any, Dict, List from mythril.concolic.concrete_data import ConcreteData from mythril.concolic.find_trace import concrete_execution from mythril.laser.ethereum.state.world_state import WorldState from mythril.laser.ethereum.strategy.concolic import ConcolicStrategy from mythril.laser.ethereum.svm import LaserEVM from mythril.laser.ethereum.time_handler import time_handler from mythril.laser.ethereum.transaction.symbolic import execute_transaction from mythril.laser.ethereum.transaction.transaction_models import tx_id_manager from mythril.laser.smt import symbol_factory from mythril.support.support_args import args def flip_branches( init_state: WorldState, concrete_data: ConcreteData, jump_addresses: List[str], trace: List, ) -> List[Dict[str, Dict[str, Any]]]: """ Flips branches and prints the input required for branch flip :param concrete_data: Concrete data :param jump_addresses: Jump addresses to flip :param trace: trace to follow """ tx_id_manager.restart_counter() output_list = [] laser_evm = LaserEVM( execution_timeout=600, use_reachability_check=False, transaction_count=10 ) laser_evm.open_states = [deepcopy(init_state)] laser_evm.strategy = ConcolicStrategy( work_list=laser_evm.work_list, max_depth=100, trace=trace, flip_branch_addresses=jump_addresses, ) time_handler.start_execution(laser_evm.execution_timeout) laser_evm.time = datetime.now() for transaction in concrete_data["steps"]: execute_transaction( laser_evm, callee_address=transaction["address"], caller_address=symbol_factory.BitVecVal( int(transaction["origin"], 16), 256 ), data=transaction["input"][2:], ) if laser_evm.strategy.results: for addr in jump_addresses: output_list.append(laser_evm.strategy.results[addr]) return output_list def concolic_execution( concrete_data: ConcreteData, jump_addresses: List, solver_timeout=100000 ) -> List[Dict[str, Dict[str, Any]]]: """ Executes codes and prints input required to cover the branch flips :param input_file: Input file :param jump_addresses: Jump addresses to flip :param solver_timeout: Solver timeout """ init_state, trace = concrete_execution(concrete_data) args.solver_timeout = solver_timeout output_list = flip_branches( init_state=init_state, concrete_data=concrete_data, jump_addresses=jump_addresses, trace=trace, ) return output_list ================================================ FILE: mythril/concolic/concrete_data.py ================================================ from typing import Dict, List from typing_extensions import TypedDict class AccountData(TypedDict): balance: str code: str nonce: int storage: dict class InitialState(TypedDict): accounts: Dict[str, AccountData] class TransactionData(TypedDict): address: str blockCoinbase: str blockDifficulty: str blockGasLimit: str blockNumber: str blockTime: str calldata: str gasLimit: str gasPrice: str input: str name: str origin: str value: str class ConcreteData(TypedDict): initialState: InitialState steps: List[TransactionData] ================================================ FILE: mythril/concolic/find_trace.py ================================================ import binascii from copy import deepcopy from datetime import datetime from typing import List, Tuple from mythril.concolic.concrete_data import ConcreteData from mythril.disassembler.disassembly import Disassembly from mythril.laser.ethereum.state.account import Account from mythril.laser.ethereum.state.world_state import WorldState from mythril.laser.ethereum.svm import LaserEVM from mythril.laser.ethereum.time_handler import time_handler from mythril.laser.ethereum.transaction.concolic import execute_transaction from mythril.laser.ethereum.transaction.transaction_models import tx_id_manager from mythril.laser.plugin.loader import LaserPluginLoader from mythril.laser.plugin.plugins import TraceFinderBuilder from mythril.laser.smt import symbol_factory from mythril.support.support_args import args def setup_concrete_initial_state(concrete_data: ConcreteData) -> WorldState: """ Sets up concrete initial state :param concrete_data: Concrete data :return: initialised world state """ world_state = WorldState() for address, details in concrete_data["initialState"]["accounts"].items(): account = Account(address, concrete_storage=True) account.code = Disassembly(details["code"][2:]) account.nonce = details["nonce"] if isinstance(details["storage"], str): details["storage"] = eval(details["storage"]) # type: ignore for key, value in details["storage"].items(): key_bitvec = symbol_factory.BitVecVal(int(key, 16), 256) account.storage[key_bitvec] = symbol_factory.BitVecVal(int(value, 16), 256) world_state.put_account(account) account.set_balance(int(details["balance"], 16)) return world_state def concrete_execution(concrete_data: ConcreteData) -> Tuple[WorldState, List]: """ Executes code concretely to find the path to be followed by concolic executor :param concrete_data: Concrete data :return: path trace """ args.pruning_factor = 1 tx_id_manager.restart_counter() init_state = setup_concrete_initial_state(concrete_data) laser_evm = LaserEVM(execution_timeout=1000) laser_evm.open_states = [deepcopy(init_state)] plugin_loader = LaserPluginLoader() plugin_loader.load(TraceFinderBuilder()) time_handler.start_execution(laser_evm.execution_timeout) laser_evm.time = datetime.now() plugin_loader.instrument_virtual_machine(laser_evm, None) for transaction in concrete_data["steps"]: execute_transaction( laser_evm, callee_address=transaction["address"], caller_address=symbol_factory.BitVecVal( int(transaction["origin"], 16), 256 ), origin_address=symbol_factory.BitVecVal( int(transaction["origin"], 16), 256 ), gas_limit=int(transaction.get("gasLimit", "0x9999999999999999999999"), 16), data=binascii.a2b_hex(transaction["input"][2:]), gas_price=int(transaction.get("gasPrice", "0x773594000"), 16), value=int(transaction["value"], 16), track_gas=False, ) tx_id_manager.restart_counter() return init_state, plugin_loader.plugin_list["MythX Trace Finder"].tx_trace # type: ignore ================================================ FILE: mythril/config.ini ================================================ [defaults] dynamic_loading = infura infura_id = ================================================ FILE: mythril/disassembler/__init__.py ================================================ ================================================ FILE: mythril/disassembler/asm.py ================================================ """This module contains various helper classes and functions to deal with EVM code disassembly.""" import re try: from collections.abc import Generator except ImportError: from collections import Generator from functools import lru_cache from mythril.ethereum import util from mythril.support.opcodes import ADDRESS, ADDRESS_OPCODE_MAPPING, OPCODES regex_PUSH = re.compile(r"^PUSH(\d*)$") class EvmInstruction: """Model to hold the information of the disassembly.""" def __init__(self, address, op_code, argument=None): self.address = address self.op_code = op_code self.argument = argument def to_dict(self) -> dict: """ :return: """ result = {"address": self.address, "opcode": self.op_code} if self.argument: result["argument"] = self.argument return result def instruction_list_to_easm(instruction_list: list) -> str: """Convert a list of instructions into an easm op code string. :param instruction_list: :return: """ result = "" for instruction in instruction_list: result += "{} {}".format(instruction["address"], instruction["opcode"]) if "argument" in instruction: result += " " + instruction["argument"] result += "\n" return result def get_opcode_from_name(operation_name: str) -> int: """Get an op code based on its name. :param operation_name: :return: """ if operation_name in OPCODES: return OPCODES[operation_name][ADDRESS] raise RuntimeError("Unknown opcode") def find_op_code_sequence(pattern: list, instruction_list: list) -> Generator: """Returns all indices in instruction_list that point to instruction sequences following a pattern. :param pattern: The pattern to look for, e.g. [["PUSH1", "PUSH2"], ["EQ"]] where ["PUSH1", "EQ"] satisfies pattern :param instruction_list: List of instructions to look in :return: Indices to the instruction sequences """ for i in range(0, len(instruction_list) - len(pattern) + 1): if is_sequence_match(pattern, instruction_list, i): yield i def is_sequence_match(pattern: list, instruction_list: list, index: int) -> bool: """Checks if the instructions starting at index follow a pattern. :param pattern: List of lists describing a pattern, e.g. [["PUSH1", "PUSH2"], ["EQ"]] where ["PUSH1", "EQ"] satisfies pattern :param instruction_list: List of instructions :param index: Index to check for :return: Pattern matched """ for index, pattern_slot in enumerate(pattern, start=index): try: if not instruction_list[index]["opcode"] in pattern_slot: return False except IndexError: return False return True lru_cache(maxsize=2**10) def disassemble(bytecode) -> list: """Disassembles evm bytecode and returns a list of instructions. :param bytecode: :return: """ instruction_list = [] address = 0 length = len(bytecode) if isinstance(bytecode, str): bytecode = util.safe_decode(bytecode) length = len(bytecode) part_code = bytecode[-43:] else: try: part_code = bytes(bytecode[-43:]) except TypeError: part_code = "" try: if "bzzr" in str(part_code): # ignore swarm hash length -= 43 except ValueError: pass while address < length: try: op_code = ADDRESS_OPCODE_MAPPING[bytecode[address]] except KeyError: instruction_list.append(EvmInstruction(address, "INVALID")) address += 1 continue current_instruction = EvmInstruction(address, op_code) match = re.search(regex_PUSH, op_code) if match: argument_bytes = bytecode[address + 1 : address + 1 + int(match.group(1))] if isinstance(argument_bytes, bytes): current_instruction.argument = "0x" + argument_bytes.hex() else: current_instruction.argument = argument_bytes address += int(match.group(1)) instruction_list.append(current_instruction) address += 1 # We use a to_dict() here for compatibility reasons return [element.to_dict() for element in instruction_list] ================================================ FILE: mythril/disassembler/disassembly.py ================================================ """This module contains the class used to represent disassembly code.""" from typing import Dict, List, Tuple from mythril.disassembler import asm from mythril.ethereum import util from mythril.support.signatures import SignatureDB class Disassembly(object): """Disassembly class. Stores bytecode, and its disassembly. Additionally it will gather the following information on the existing functions in the disassembled code: - function hashes - function name to entry point mapping - function entry point to function name mapping """ def __init__(self, code: str) -> None: """ :param code: """ self.bytecode = code if isinstance(code, str): self.instruction_list = asm.disassemble(util.safe_decode(code)) else: self.instruction_list = asm.disassemble(code) self.func_hashes: List[str] = [] self.function_name_to_address: Dict[str, int] = {} self.address_to_function_name: Dict[int, str] = {} self.assign_bytecode(bytecode=code) def assign_bytecode(self, bytecode): self.bytecode = bytecode # open from default locations # control if you want to have online signature hash lookups signatures = SignatureDB() self.instruction_list = asm.disassemble(bytecode) # Need to take from PUSH1 to PUSH4 because solc seems to remove excess 0s at the beginning for optimizing jump_table_indices = asm.find_op_code_sequence( [("PUSH1", "PUSH2", "PUSH3", "PUSH4"), ("EQ",)], self.instruction_list ) for index in jump_table_indices: function_hash, jump_target, function_name = get_function_info( index, self.instruction_list, signatures ) self.func_hashes.append(function_hash) if jump_target is not None and function_name is not None: self.function_name_to_address[function_name] = jump_target self.address_to_function_name[jump_target] = function_name def get_easm(self): """ :return: """ return asm.instruction_list_to_easm(self.instruction_list) def get_function_info( index: int, instruction_list: list, signature_database: SignatureDB ) -> Tuple[str, int, str]: """Finds the function information for a call table entry Solidity uses the first 4 bytes of the calldata to indicate which function the message call should execute The generated code that directs execution to the correct function looks like this: - PUSH function_hash - EQ - PUSH entry_point - JUMPI This function takes an index that points to the first instruction, and from that finds out the function hash, function entry and the function name. :param index: Start of the entry pattern :param instruction_list: Instruction list for the contract that is being analyzed :param signature_database: Database used to map function hashes to their respective function names :return: function hash, function entry point, function name """ # Append with missing 0s at the beginning if isinstance(instruction_list[index]["argument"], tuple): try: function_hash = "0x" + bytes( instruction_list[index]["argument"] ).hex().rjust(8, "0") except AttributeError: raise ValueError( "Mythril currently does not support symbolic function signatures" ) else: function_hash = "0x" + instruction_list[index]["argument"][2:].rjust(8, "0") function_names = signature_database.get(function_hash) if len(function_names) > 0: function_name = " or ".join(set(function_names)) else: function_name = "_function_" + function_hash try: offset = instruction_list[index + 2]["argument"] if isinstance(offset, tuple): offset = bytes(offset).hex() entry_point = int(offset, 16) except (KeyError, IndexError): return function_hash, None, None return function_hash, entry_point, function_name ================================================ FILE: mythril/ethereum/__init__.py ================================================ ================================================ FILE: mythril/ethereum/evmcontract.py ================================================ """This module contains the class representing EVM contracts, aka Smart Contracts.""" import logging import re import persistent from mythril.disassembler.disassembly import Disassembly from mythril.support.support_utils import get_code_hash, sha3 log = logging.getLogger(__name__) class EVMContract(persistent.Persistent): """This class represents an address with associated code (Smart Contract).""" def __init__(self, code="", creation_code="", name="Unknown"): """Create a new contract. Workaround: We currently do not support compile-time linking. Dynamic contract addresses of the format __[contract-name]_____________ are replaced with a generic address Apply this for creation_code & code :param code: :param creation_code: :param name: """ creation_code = re.sub(r"(_{2}.{38})", "aa" * 20, creation_code) code = re.sub(r"(_{2}.{38})", "aa" * 20, code) self.creation_code = creation_code self.name = name self.code = code self.disassembly = Disassembly(code) self.creation_disassembly = Disassembly(creation_code) @property def bytecode_hash(self): """ :return: runtime bytecode hash """ return get_code_hash(self.code) @property def creation_bytecode_hash(self): """ :return: Creation bytecode hash """ return get_code_hash(self.creation_code) def as_dict(self): """ :return: """ return { "name": self.name, "code": self.code, "creation_code": self.creation_code, "disassembly": self.disassembly, } def get_easm(self): """ :return: """ return self.disassembly.get_easm() def get_creation_easm(self): """ :return: """ return self.creation_disassembly.get_easm() def matches_expression(self, expression): """ :param expression: :return: """ str_eval = "" easm_code = None tokens = re.split(r"\s+(and|or|not)\s+", expression, re.IGNORECASE) for token in tokens: if token in ("and", "or", "not"): str_eval += " " + token + " " continue m = re.match(r"^code#([a-zA-Z0-9\s,\[\]]+)#", token) if m: if easm_code is None: easm_code = self.get_easm() code = m.group(1).replace(",", "\\n") str_eval += '"' + code + '" in easm_code' continue m = re.match(r"^func#([a-zA-Z0-9\s_,(\\)\[\]]+)#$", token) if m: sign_hash = "0x" + sha3(m.group(1))[:4].hex() str_eval += '"' + sign_hash + '" in self.disassembly.func_hashes' return eval(str_eval.strip()) ================================================ FILE: mythril/ethereum/interface/__init__.py ================================================ ================================================ FILE: mythril/ethereum/interface/rpc/__init__.py ================================================ ================================================ FILE: mythril/ethereum/interface/rpc/base_client.py ================================================ """This module provides a basic RPC interface client. This code is adapted from: https://github.com/ConsenSys/ethjsonrpc """ from abc import abstractmethod from .constants import BLOCK_TAG_LATEST, BLOCK_TAGS from .utils import hex_to_dec, validate_block GETH_DEFAULT_RPC_PORT = 8545 ETH_DEFAULT_RPC_PORT = 8545 PARITY_DEFAULT_RPC_PORT = 8545 PYETHAPP_DEFAULT_RPC_PORT = 4000 MAX_RETRIES = 3 JSON_MEDIA_TYPE = "application/json" class BaseClient(object): """The base RPC client class.""" @abstractmethod def _call(self, method, params=None, _id=1): """TODO: documentation :param method: :param params: :param _id: :return: """ pass def eth_coinbase(self): """TODO: documentation https://github.com/ethereum/wiki/wiki/JSON-RPC#eth_coinbase TESTED """ return self._call("eth_coinbase") def eth_blockNumber(self): """TODO: documentation https://github.com/ethereum/wiki/wiki/JSON-RPC#eth_blocknumber TESTED """ return hex_to_dec(self._call("eth_blockNumber")) def eth_getBalance(self, address=None, block=BLOCK_TAG_LATEST): """TODO: documentation https://github.com/ethereum/wiki/wiki/JSON-RPC#eth_getbalance TESTED """ address = address or self.eth_coinbase() block = validate_block(block) return hex_to_dec(self._call("eth_getBalance", [address, block])) def eth_getStorageAt(self, address=None, position=0, block=BLOCK_TAG_LATEST): """TODO: documentation https://github.com/ethereum/wiki/wiki/JSON-RPC#eth_getstorageat TESTED """ block = validate_block(block) return self._call("eth_getStorageAt", [address, hex(position), block]) def eth_getCode(self, address, default_block=BLOCK_TAG_LATEST): """TODO: documentation https://github.com/ethereum/wiki/wiki/JSON-RPC#eth_getcode NEEDS TESTING """ if isinstance(default_block, str): if default_block not in BLOCK_TAGS: raise ValueError return self._call("eth_getCode", [address, default_block]) def eth_getBlockByNumber(self, block=BLOCK_TAG_LATEST, tx_objects=True): """TODO: documentation https://github.com/ethereum/wiki/wiki/JSON-RPC#eth_getblockbynumber TESTED """ block = validate_block(block) return self._call("eth_getBlockByNumber", [block, tx_objects]) def eth_getTransactionReceipt(self, tx_hash): """TODO: documentation https://github.com/ethereum/wiki/wiki/JSON-RPC#eth_gettransactionreceipt TESTED """ return self._call("eth_getTransactionReceipt", [tx_hash]) ================================================ FILE: mythril/ethereum/interface/rpc/client.py ================================================ """This module contains a basic Ethereum RPC client. This code is adapted from: https://github.com/ConsenSys/ethjsonrpc """ import json import logging import requests from requests.adapters import HTTPAdapter from requests.exceptions import ConnectionError as RequestsConnectionError from .base_client import BaseClient from .exceptions import ( BadJsonError, BadResponseError, BadStatusCodeError, ConnectionError, ) log = logging.getLogger(__name__) GETH_DEFAULT_RPC_PORT = 8545 ETH_DEFAULT_RPC_PORT = 8545 PARITY_DEFAULT_RPC_PORT = 8545 PYETHAPP_DEFAULT_RPC_PORT = 4000 MAX_RETRIES = 3 JSON_MEDIA_TYPE = "application/json" class EthJsonRpc(BaseClient): """Ethereum JSON-RPC client class.""" def __init__(self, host="localhost", port=GETH_DEFAULT_RPC_PORT, tls=False): """ :param host: :param port: :param tls: """ self.host = host self.port = port self.tls = tls self.session = requests.Session() self.session.mount(self.host, HTTPAdapter(max_retries=MAX_RETRIES)) def _call(self, method, params=None, _id=1): """ :param method: :param params: :param _id: :return: """ params = params or [] data = {"jsonrpc": "2.0", "method": method, "params": params, "id": _id} scheme = "http" if self.tls: scheme += "s" if self.host: if self.port: url = "{}://{}:{}".format(scheme, self.host, self.port) else: url = "{}://{}".format(scheme, self.host) else: url = "{}".format(scheme) headers = {"Content-Type": JSON_MEDIA_TYPE} log.debug("rpc send: %s" % json.dumps(data)) try: r = self.session.post(url, headers=headers, data=json.dumps(data)) except RequestsConnectionError: raise ConnectionError if r.status_code / 100 != 2: raise BadStatusCodeError(r.status_code) try: response = r.json() log.debug("rpc response: %s" % response) except ValueError: raise BadJsonError(r.text) try: return response["result"] except KeyError: raise BadResponseError(response) def close(self): """Close the RPC client's session.""" self.session.close() ================================================ FILE: mythril/ethereum/interface/rpc/constants.py ================================================ """This file contains constants used used by the Ethereum JSON RPC interface.""" BLOCK_TAG_EARLIEST = "earliest" BLOCK_TAG_LATEST = "latest" BLOCK_TAG_PENDING = "pending" BLOCK_TAGS = (BLOCK_TAG_EARLIEST, BLOCK_TAG_LATEST, BLOCK_TAG_PENDING) ================================================ FILE: mythril/ethereum/interface/rpc/exceptions.py ================================================ """This module contains exceptions regarding JSON-RPC communication.""" class EthJsonRpcError(Exception): """The JSON-RPC base exception type.""" pass class ConnectionError(EthJsonRpcError): """An RPC exception denoting there was an error in connecting to the RPC instance.""" pass class BadStatusCodeError(EthJsonRpcError): """An RPC exception denoting a bad status code returned by the RPC instance.""" pass class BadJsonError(EthJsonRpcError): """An RPC exception denoting that the RPC instance returned a bad JSON object.""" pass class BadResponseError(EthJsonRpcError): """An RPC exception denoting that the RPC instance returned a bad response.""" pass ================================================ FILE: mythril/ethereum/interface/rpc/utils.py ================================================ """This module contains various utility functions regarding the RPC data format and validation.""" from .constants import BLOCK_TAGS def hex_to_dec(x): """Convert hex to decimal. :param x: :return: """ return int(x, 16) def clean_hex(d): """Convert decimal to hex and remove the "L" suffix that is appended to large numbers. :param d: :return: """ return hex(d).rstrip("L") def validate_block(block): """ :param block: :return: """ if isinstance(block, str): if block not in BLOCK_TAGS: raise ValueError("invalid block tag") if isinstance(block, int): block = hex(block) return block def wei_to_ether(wei): """Convert wei to ether. :param wei: :return: """ return 1.0 * wei / 10**18 def ether_to_wei(ether): """Convert ether to wei. :param ether: :return: """ return ether * 10**18 ================================================ FILE: mythril/ethereum/util.py ================================================ """This module contains various utility functions regarding unit conversion and solc integration.""" import binascii import json import logging import os import platform import re import typing from json.decoder import JSONDecodeError from subprocess import PIPE, Popen from typing import Tuple import semantic_version as semver import solcx from pyparsing import Combine, Optional, Regex, Word from requests.exceptions import ConnectionError from mythril.exceptions import CompilerError from mythril.support.support_args import args log = logging.getLogger(__name__) def safe_decode(hex_encoded_string): """ :param hex_encoded_string: :return: """ if hex_encoded_string.startswith("0x"): return bytes.fromhex(hex_encoded_string[2:]) else: return bytes.fromhex(hex_encoded_string) def get_solc_json(file, solc_binary="solc", solc_settings_json=None): """ :param file: :param solc_binary: :param solc_settings_json: :return: """ if args.solc_args is None: cmd = [solc_binary, "--standard-json", "--allow-paths", ".,/"] else: cmd = [solc_binary, "--standard-json"] + args.solc_args.split() settings = {} if solc_settings_json: with open(solc_settings_json) as f: settings = json.load(f) if "optimizer" not in settings: settings.update({"optimizer": {"enabled": False}}) settings.update( { "outputSelection": { "*": { "": ["ast"], "*": [ "metadata", "evm.bytecode", "evm.deployedBytecode", "evm.methodIdentifiers", ], } }, } ) input_json = json.dumps( { "language": "Solidity", "sources": {file: {"urls": [file]}}, "settings": settings, } ) try: p = Popen(cmd, stdin=PIPE, stdout=PIPE, stderr=PIPE) stdout, stderr = p.communicate(bytes(input_json, "utf8")) except FileNotFoundError: raise CompilerError( "Compiler not found. Make sure that solc is installed and in PATH, or set the SOLC environment variable." ) out = stdout.decode("UTF-8") try: result = json.loads(out) except JSONDecodeError as e: log.error(f"Encountered a decode error.\n stdout:{out}\n stderr: {stderr}") raise e for error in result.get("errors", []): if error["severity"] == "error": raise CompilerError( "Solc experienced a fatal error.\n\n%s" % error["formattedMessage"] ) return result def get_random_address(): """ :return: """ return binascii.b2a_hex(os.urandom(20)).decode("UTF-8") def get_indexed_address(index): """ :param index: :return: """ return "0x" + (hex(index)[2:] * 40) def solc_exists(version): """ :param version: :return: """ if platform.system() == "Darwin": solcx.import_installed_solc() solcx.install_solc("v" + version) solcx.set_solc_version("v" + version) solc_binary = solcx.install.get_executable() return solc_binary def parse_pragma(solidity_code): lt = Word("<") gtr = Word(">") eq = Word("=") carrot = Word("^") version = Regex(r"\s*[0-9]+\s*\.\s*[0-9]+\s*(\.\s*[0-9]+)?") inequality = Optional( eq | (Combine(gtr + Optional(eq)) | Combine(lt + Optional(eq))) ) min_version = Optional(carrot | inequality) + version max_version = Optional(inequality + version) pragma = Word("pragma") + Word("solidity") + min_version + Optional(max_version) result = pragma.parseString(solidity_code) min_inequality = result[2] if result[2] in [">", "<", ">=", "<=", "="] else "" min_carrot = result[2] if result[2] == "^" else "" min_version = result[3] if min_carrot != "" or min_inequality != "" else result[2] return { "min_carrot": min_carrot, "min_inequality": min_inequality, "min_version": min_version, "max_inequality": result[4] if len(result) > 4 else None, "max_version": result[5] if len(result) > 5 else None, } try: all_versions = solcx.get_installable_solc_versions() except ConnectionError: # No internet, trying to proceed with installed compilers all_versions = solcx.get_installed_solc_versions() VOID_START = re.compile("//|/\\*|\"|'") QUOTE_END = re.compile("(? str: """Return program without Solidity comments and strings :param str program: Solidity program with lines separated by \\n :return: program with strings emptied and comments removed :rtype: str """ result = "" while True: match_start_of_void = VOID_START.search(program) if not match_start_of_void: result += program break else: result += program[: match_start_of_void.start()] if match_start_of_void[0] == "//": end = program.find("\n", match_start_of_void.end()) program = "" if end == -1 else program[end:] elif match_start_of_void[0] == "/*": end = program.find("*/", match_start_of_void.end()) result += " " program = "" if end == -1 else program[end + 2 :] else: if match_start_of_void[0] == "'": match_end_of_string = QUOTE_END.search( program[match_start_of_void.end() :] ) else: match_end_of_string = DQUOTE_END.search( program[match_start_of_void.end() :] ) if not match_end_of_string: # unclosed string break program = program[ match_start_of_void.end() + match_end_of_string.end() : ] return result def extract_version_line(program: typing.Optional[str]) -> typing.Optional[str]: if not program: return None # normalize line endings if "\n" in program: program = program.replace("\r", "") else: program = program.replace("\r", "\n") # extract regular pragma program_wo_comments_strings = remove_comments_strings(program) for line in program_wo_comments_strings.split("\n"): if "pragma solidity" in line: return line.rstrip() # extract pragma from comments for line in program.split("\n"): if "pragma solidity" in line: return line.rstrip() return None def extract_version(program: typing.Optional[str]) -> typing.Optional[str]: version_line = extract_version_line(program) if not version_line: return None assert "pragma solidity" in version_line if version_line[-1] == ";": version_line = version_line[:-1] version_line = version_line[version_line.find("pragma") :] pragma_dict = parse_pragma(version_line) min_inequality = pragma_dict.get("min_inequality", None) max_inequality = pragma_dict.get("max_inequality", None) min_version = pragma_dict.get("min_version", None) if min_version is not None: min_version = min_version.replace(" ", "").replace("\t", "") max_version = pragma_dict.get("max_version", None) if max_version is not None: max_version = max_version.replace(" ", "").replace("\t", "") version_spec = ( f"{min_inequality}{min_version},{max_inequality}{max_version}" if max_version else min_version ) version_constraint = semver.SimpleSpec(version_spec) for version in all_versions: semver_version = semver.Version(str(version)) if semver_version in version_constraint: if "0.5.17" in str(semver_version): # Solidity 0.5.17 Does not compile in a lot of cases. continue return str(semver_version) def extract_binary(file: str) -> Tuple[str, str]: program = None with open(file) as f: program = f.read() version = extract_version(program) if version is None: return os.environ.get("SOLC") or "solc", version return solc_exists(version), version ================================================ FILE: mythril/exceptions.py ================================================ """This module contains general exceptions used by Mythril.""" class MythrilBaseException(Exception): """The Mythril exception base type.""" pass class CompilerError(MythrilBaseException): """A Mythril exception denoting an error during code compilation.""" pass class UnsatError(MythrilBaseException): """A Mythril exception denoting the unsatisfiability of a series of constraints.""" pass class SolverTimeOutException(UnsatError): """A Mythril exception denoting the unsatisfiability of a series of constraints.""" pass class NoContractFoundError(MythrilBaseException): """A Mythril exception denoting that a given contract file was not found.""" pass class CriticalError(MythrilBaseException): """A Mythril exception denoting an unknown critical error has been encountered.""" pass class DetectorNotFoundError(MythrilBaseException): """A Mythril exception denoting attempted usage of a non-existant detection module.""" pass class IllegalArgumentError(ValueError): """The argument used does not exist""" pass ================================================ FILE: mythril/interfaces/__init__.py ================================================ ================================================ FILE: mythril/interfaces/cli.py ================================================ #!/usr/bin/env python3 # -*- coding: utf-8 -*- """mythril.py: Bug hunting on the Ethereum blockchain http://www.github.com/ConsenSys/mythril """ import argparse import json import logging import os import sys import traceback from argparse import ArgumentParser, Namespace, RawTextHelpFormatter from ast import literal_eval import coloredlogs from mythril.__version__ import __version__ as VERSION from mythril.analysis.module import ModuleLoader from mythril.analysis.report import Report from mythril.concolic import concolic_execution from mythril.exceptions import ( CriticalError, DetectorNotFoundError, ) from mythril.laser.ethereum.transaction.symbolic import ACTORS from mythril.mythril import MythrilAnalyzer, MythrilConfig, MythrilDisassembler from mythril.plugin.loader import MythrilPluginLoader # Initialise core Mythril Component _ = MythrilPluginLoader() ANALYZE_LIST = ("analyze", "a") DISASSEMBLE_LIST = ("disassemble", "d") FOUNDRY_LIST = ("foundry", "f") CONCOLIC_LIST = ("concolic", "c") SAFE_FUNCTIONS_COMMAND = "safe-functions" READ_STORAGE_COMNAND = "read-storage" FUNCTION_TO_HASH_COMMAND = "function-to-hash" HASH_TO_ADDRESS_COMMAND = "hash-to-address" LIST_DETECTORS_COMMAND = "list-detectors" VERSION_COMMAND = "version" HELP_COMMAND = "help" log = logging.getLogger(__name__) COMMAND_LIST = ( ANALYZE_LIST + DISASSEMBLE_LIST + FOUNDRY_LIST + CONCOLIC_LIST + ( READ_STORAGE_COMNAND, SAFE_FUNCTIONS_COMMAND, FUNCTION_TO_HASH_COMMAND, HASH_TO_ADDRESS_COMMAND, LIST_DETECTORS_COMMAND, VERSION_COMMAND, HELP_COMMAND, ) ) def exit_with_error(format_, message): """ Exits with error :param format_: The format of the message :param message: message """ if format_ == "text" or format_ == "markdown": log.error(message) elif format_ == "json": result = {"success": False, "error": str(message), "issues": []} print(json.dumps(result)) else: result = [ { "issues": [], "sourceType": "", "sourceFormat": "", "sourceList": [], "meta": {"logs": [{"level": "error", "hidden": True, "msg": message}]}, } ] print(json.dumps(result)) sys.exit() def get_runtime_input_parser() -> ArgumentParser: """ Returns Parser which handles input :return: Parser which handles input """ parser = ArgumentParser(add_help=False) parser.add_argument( "-a", "--address", help="pull contract from the blockchain", metavar="CONTRACT_ADDRESS", ) parser.add_argument( "--bin-runtime", action="store_true", help="Only when -c or -f is used. Consider the input bytecode as binary runtime code, default being the contract creation bytecode.", ) return parser def get_creation_input_parser() -> ArgumentParser: """ Returns Parser which handles input :return: Parser which handles input """ parser = ArgumentParser(add_help=False) parser.add_argument( "-c", "--code", help='hex-encoded bytecode string ("6060604052...")', metavar="BYTECODE", ) parser.add_argument( "-f", "--codefile", help="file containing hex-encoded bytecode string", metavar="BYTECODEFILE", type=argparse.FileType("r"), ) return parser def get_safe_functions_parser() -> ArgumentParser: """ Returns Parser which handles checking for safe functions :return: Parser which handles checking for safe functions """ parser = ArgumentParser(add_help=False) parser.add_argument( "-c", "--code", help='hex-encoded bytecode string ("6060604052...")', metavar="BYTECODE", ) parser.add_argument( "-f", "--codefile", help="file containing hex-encoded bytecode string", metavar="BYTECODEFILE", type=argparse.FileType("r"), ) return parser def get_output_parser() -> ArgumentParser: """ Get parser which handles output :return: Parser which handles output """ parser = argparse.ArgumentParser(add_help=False) parser.add_argument( "-o", "--outform", choices=["text", "markdown", "json", "jsonv2"], default="text", help="report output format", metavar="Mythril / Ethereum LASER Symbolic VM
Mythril / LASER Symbolic VM
Mythril / Ethereum LASER Symbolic VM
Mythril / Ethereum LASER Symbolic VM
================================================ FILE: tests/testdata/outputs_expected/environments.sol.o.easm ================================================ 0 PUSH1 0x80 2 PUSH1 0x40 4 MSTORE 5 PUSH1 0x04 7 CALLDATASIZE 8 LT 9 PUSH2 0x004c 12 JUMPI 13 PUSH1 0x00 15 CALLDATALOAD 16 PUSH29 0x0100000000000000000000000000000000000000000000000000000000 46 SWAP1 47 DIV 48 PUSH4 0xffffffff 53 AND 54 DUP1 55 PUSH4 0x06661abd 60 EQ 61 PUSH2 0x0051 64 JUMPI 65 DUP1 66 PUSH4 0x83f12fec 71 EQ 72 PUSH2 0x007c 75 JUMPI 76 JUMPDEST 77 PUSH1 0x00 79 DUP1 80 REVERT 81 JUMPDEST 82 CALLVALUE 83 DUP1 84 ISZERO 85 PUSH2 0x005d 88 JUMPI 89 PUSH1 0x00 91 DUP1 92 REVERT 93 JUMPDEST 94 POP 95 PUSH2 0x0066 98 PUSH2 0x0104 101 JUMP 102 JUMPDEST 103 PUSH1 0x40 105 MLOAD 106 DUP1 107 DUP3 108 DUP2 109 MSTORE 110 PUSH1 0x20 112 ADD 113 SWAP2 114 POP 115 POP 116 PUSH1 0x40 118 MLOAD 119 DUP1 120 SWAP2 121 SUB 122 SWAP1 123 RETURN 124 JUMPDEST 125 CALLVALUE 126 DUP1 127 ISZERO 128 PUSH2 0x0088 131 JUMPI 132 PUSH1 0x00 134 DUP1 135 REVERT 136 JUMPDEST 137 POP 138 PUSH2 0x00ea 141 PUSH1 0x04 143 DUP1 144 CALLDATASIZE 145 SUB 146 DUP2 147 ADD 148 SWAP1 149 DUP1 150 DUP1 151 CALLDATALOAD 152 SWAP1 153 PUSH1 0x20 155 ADD 156 SWAP1 157 DUP3 158 ADD 159 DUP1 160 CALLDATALOAD 161 SWAP1 162 PUSH1 0x20 164 ADD 165 SWAP1 166 DUP1 167 DUP1 168 PUSH1 0x20 170 MUL 171 PUSH1 0x20 173 ADD 174 PUSH1 0x40 176 MLOAD 177 SWAP1 178 DUP2 179 ADD 180 PUSH1 0x40 182 MSTORE 183 DUP1 184 SWAP4 185 SWAP3 186 SWAP2 187 SWAP1 188 DUP2 189 DUP2 190 MSTORE 191 PUSH1 0x20 193 ADD 194 DUP4 195 DUP4 196 PUSH1 0x20 198 MUL 199 DUP1 200 DUP3 201 DUP5 202 CALLDATACOPY 203 DUP3 204 ADD 205 SWAP2 206 POP 207 POP 208 POP 209 POP 210 POP 211 POP 212 SWAP2 213 SWAP3 214 SWAP2 215 SWAP3 216 SWAP1 217 DUP1 218 CALLDATALOAD 219 SWAP1 220 PUSH1 0x20 222 ADD 223 SWAP1 224 SWAP3 225 SWAP2 226 SWAP1 227 POP 228 POP 229 POP 230 PUSH2 0x010a 233 JUMP 234 JUMPDEST 235 PUSH1 0x40 237 MLOAD 238 DUP1 239 DUP3 240 ISZERO 241 ISZERO 242 ISZERO 243 ISZERO 244 DUP2 245 MSTORE 246 PUSH1 0x20 248 ADD 249 SWAP2 250 POP 251 POP 252 PUSH1 0x40 254 MLOAD 255 DUP1 256 SWAP2 257 SUB 258 SWAP1 259 RETURN 260 JUMPDEST 261 PUSH1 0x00 263 SLOAD 264 DUP2 265 JUMP 266 JUMPDEST 267 PUSH1 0x00 269 DUP1 270 PUSH1 0x00 272 DUP5 273 MLOAD 274 SWAP2 275 POP 276 DUP4 277 DUP3 278 MUL 279 SWAP1 280 POP 281 PUSH1 0x00 283 DUP3 284 GT 285 DUP1 286 ISZERO 287 PUSH2 0x0129 290 JUMPI 291 POP 292 PUSH1 0x14 294 DUP3 295 GT 296 ISZERO 297 JUMPDEST 298 ISZERO 299 ISZERO 300 PUSH2 0x0134 303 JUMPI 304 PUSH1 0x00 306 DUP1 307 REVERT 308 JUMPDEST 309 DUP1 310 PUSH1 0x01 312 PUSH1 0x00 314 CALLER 315 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 336 AND 337 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 358 AND 359 DUP2 360 MSTORE 361 PUSH1 0x20 363 ADD 364 SWAP1 365 DUP2 366 MSTORE 367 PUSH1 0x20 369 ADD 370 PUSH1 0x00 372 SHA3 373 PUSH1 0x00 375 DUP3 376 DUP3 377 SLOAD 378 SUB 379 SWAP3 380 POP 381 POP 382 DUP2 383 SWAP1 384 SSTORE 385 POP 386 PUSH1 0x01 388 SWAP3 389 POP 390 POP 391 POP 392 SWAP3 393 SWAP2 394 POP 395 POP 396 JUMP 397 STOP ================================================ FILE: tests/testdata/outputs_expected/environments.sol.o.graph.html ================================================Mythril / Ethereum LASER Symbolic VM
================================================ FILE: tests/testdata/outputs_expected/ether_send.sol.o.easm ================================================ 0 PUSH1 0x80 2 PUSH1 0x40 4 MSTORE 5 PUSH1 0x04 7 CALLDATASIZE 8 LT 9 PUSH2 0x0078 12 JUMPI 13 PUSH1 0x00 15 CALLDATALOAD 16 PUSH29 0x0100000000000000000000000000000000000000000000000000000000 46 SWAP1 47 DIV 48 PUSH4 0xffffffff 53 AND 54 DUP1 55 PUSH4 0x12065fe0 60 EQ 61 PUSH2 0x007d 64 JUMPI 65 DUP1 66 PUSH4 0x27e235e3 71 EQ 72 PUSH2 0x00a8 75 JUMPI 76 DUP1 77 PUSH4 0x56885cd8 82 EQ 83 PUSH2 0x00ff 86 JUMPI 87 DUP1 88 PUSH4 0x6c343ffe 93 EQ 94 PUSH2 0x0116 97 JUMPI 98 DUP1 99 PUSH4 0x8da5cb5b 104 EQ 105 PUSH2 0x012d 108 JUMPI 109 DUP1 110 PUSH4 0xe8b5e51f 115 EQ 116 PUSH2 0x0184 119 JUMPI 120 JUMPDEST 121 PUSH1 0x00 123 DUP1 124 REVERT 125 JUMPDEST 126 CALLVALUE 127 DUP1 128 ISZERO 129 PUSH2 0x0089 132 JUMPI 133 PUSH1 0x00 135 DUP1 136 REVERT 137 JUMPDEST 138 POP 139 PUSH2 0x0092 142 PUSH2 0x018e 145 JUMP 146 JUMPDEST 147 PUSH1 0x40 149 MLOAD 150 DUP1 151 DUP3 152 DUP2 153 MSTORE 154 PUSH1 0x20 156 ADD 157 SWAP2 158 POP 159 POP 160 PUSH1 0x40 162 MLOAD 163 DUP1 164 SWAP2 165 SUB 166 SWAP1 167 RETURN 168 JUMPDEST 169 CALLVALUE 170 DUP1 171 ISZERO 172 PUSH2 0x00b4 175 JUMPI 176 PUSH1 0x00 178 DUP1 179 REVERT 180 JUMPDEST 181 POP 182 PUSH2 0x00e9 185 PUSH1 0x04 187 DUP1 188 CALLDATASIZE 189 SUB 190 DUP2 191 ADD 192 SWAP1 193 DUP1 194 DUP1 195 CALLDATALOAD 196 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 217 AND 218 SWAP1 219 PUSH1 0x20 221 ADD 222 SWAP1 223 SWAP3 224 SWAP2 225 SWAP1 226 POP 227 POP 228 POP 229 PUSH2 0x01d4 232 JUMP 233 JUMPDEST 234 PUSH1 0x40 236 MLOAD 237 DUP1 238 DUP3 239 DUP2 240 MSTORE 241 PUSH1 0x20 243 ADD 244 SWAP2 245 POP 246 POP 247 PUSH1 0x40 249 MLOAD 250 DUP1 251 SWAP2 252 SUB 253 SWAP1 254 RETURN 255 JUMPDEST 256 CALLVALUE 257 DUP1 258 ISZERO 259 PUSH2 0x010b 262 JUMPI 263 PUSH1 0x00 265 DUP1 266 REVERT 267 JUMPDEST 268 POP 269 PUSH2 0x0114 272 PUSH2 0x01ec 275 JUMP 276 JUMPDEST 277 STOP 278 JUMPDEST 279 CALLVALUE 280 DUP1 281 ISZERO 282 PUSH2 0x0122 285 JUMPI 286 PUSH1 0x00 288 DUP1 289 REVERT 290 JUMPDEST 291 POP 292 PUSH2 0x012b 295 PUSH2 0x022f 298 JUMP 299 JUMPDEST 300 STOP 301 JUMPDEST 302 CALLVALUE 303 DUP1 304 ISZERO 305 PUSH2 0x0139 308 JUMPI 309 PUSH1 0x00 311 DUP1 312 REVERT 313 JUMPDEST 314 POP 315 PUSH2 0x0142 318 PUSH2 0x02eb 321 JUMP 322 JUMPDEST 323 PUSH1 0x40 325 MLOAD 326 DUP1 327 DUP3 328 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 349 AND 350 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 371 AND 372 DUP2 373 MSTORE 374 PUSH1 0x20 376 ADD 377 SWAP2 378 POP 379 POP 380 PUSH1 0x40 382 MLOAD 383 DUP1 384 SWAP2 385 SUB 386 SWAP1 387 RETURN 388 JUMPDEST 389 PUSH2 0x018c 392 PUSH2 0x0311 395 JUMP 396 JUMPDEST 397 STOP 398 JUMPDEST 399 PUSH1 0x00 401 DUP1 402 PUSH1 0x00 404 CALLER 405 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 426 AND 427 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 448 AND 449 DUP2 450 MSTORE 451 PUSH1 0x20 453 ADD 454 SWAP1 455 DUP2 456 MSTORE 457 PUSH1 0x20 459 ADD 460 PUSH1 0x00 462 SHA3 463 SLOAD 464 SWAP1 465 POP 466 SWAP1 467 JUMP 468 JUMPDEST 469 PUSH1 0x00 471 PUSH1 0x20 473 MSTORE 474 DUP1 475 PUSH1 0x00 477 MSTORE 478 PUSH1 0x40 480 PUSH1 0x00 482 SHA3 483 PUSH1 0x00 485 SWAP2 486 POP 487 SWAP1 488 POP 489 SLOAD 490 DUP2 491 JUMP 492 JUMPDEST 493 CALLER 494 PUSH1 0x01 496 PUSH1 0x00 498 PUSH2 0x0100 501 EXP 502 DUP2 503 SLOAD 504 DUP2 505 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 526 MUL 527 NOT 528 AND 529 SWAP1 530 DUP4 531 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 552 AND 553 MUL 554 OR 555 SWAP1 556 SSTORE 557 POP 558 JUMP 559 JUMPDEST 560 PUSH1 0x01 562 PUSH1 0x00 564 SWAP1 565 SLOAD 566 SWAP1 567 PUSH2 0x0100 570 EXP 571 SWAP1 572 DIV 573 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 594 AND 595 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 616 AND 617 CALLER 618 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 639 AND 640 EQ 641 ISZERO 642 ISZERO 643 PUSH2 0x028b 646 JUMPI 647 PUSH1 0x00 649 DUP1 650 REVERT 651 JUMPDEST 652 CALLER 653 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 674 AND 675 PUSH2 0x08fc 678 ADDRESS 679 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 700 AND 701 BALANCE 702 SWAP1 703 DUP2 704 ISZERO 705 MUL 706 SWAP1 707 PUSH1 0x40 709 MLOAD 710 PUSH1 0x00 712 PUSH1 0x40 714 MLOAD 715 DUP1 716 DUP4 717 SUB 718 DUP2 719 DUP6 720 DUP9 721 DUP9 722 CALL 723 SWAP4 724 POP 725 POP 726 POP 727 POP 728 ISZERO 729 DUP1 730 ISZERO 731 PUSH2 0x02e8 734 JUMPI 735 RETURNDATASIZE 736 PUSH1 0x00 738 DUP1 739 RETURNDATACOPY 740 RETURNDATASIZE 741 PUSH1 0x00 743 REVERT 744 JUMPDEST 745 POP 746 JUMP 747 JUMPDEST 748 PUSH1 0x01 750 PUSH1 0x00 752 SWAP1 753 SLOAD 754 SWAP1 755 PUSH2 0x0100 758 EXP 759 SWAP1 760 DIV 761 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 782 AND 783 DUP2 784 JUMP 785 JUMPDEST 786 PUSH1 0x02 788 SLOAD 789 CALLVALUE 790 GT 791 DUP1 792 ISZERO 793 PUSH2 0x0323 796 JUMPI 797 POP 798 PUSH1 0x03 800 SLOAD 801 CALLVALUE 802 LT 803 JUMPDEST 804 ISZERO 805 ISZERO 806 PUSH2 0x032e 809 JUMPI 810 PUSH1 0x00 812 DUP1 813 REVERT 814 JUMPDEST 815 CALLVALUE 816 PUSH1 0x00 818 DUP1 819 CALLER 820 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 841 AND 842 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 863 AND 864 DUP2 865 MSTORE 866 PUSH1 0x20 868 ADD 869 SWAP1 870 DUP2 871 MSTORE 872 PUSH1 0x20 874 ADD 875 PUSH1 0x00 877 SHA3 878 PUSH1 0x00 880 DUP3 881 DUP3 882 SLOAD 883 ADD 884 SWAP3 885 POP 886 POP 887 DUP2 888 SWAP1 889 SSTORE 890 POP 891 JUMP 892 STOP ================================================ FILE: tests/testdata/outputs_expected/ether_send.sol.o.graph.html ================================================Mythril / Ethereum LASER Symbolic VM
================================================ FILE: tests/testdata/outputs_expected/exceptions.sol.o.easm ================================================ 0 PUSH1 0x60 2 PUSH1 0x40 4 MSTORE 5 PUSH1 0x04 7 CALLDATASIZE 8 LT 9 PUSH2 0x008e 12 JUMPI 13 PUSH1 0x00 15 CALLDATALOAD 16 PUSH29 0x0100000000000000000000000000000000000000000000000000000000 46 SWAP1 47 DIV 48 PUSH4 0xffffffff 53 AND 54 DUP1 55 PUSH4 0x01d4277c 60 EQ 61 PUSH2 0x0093 64 JUMPI 65 DUP1 66 PUSH4 0x546455b5 71 EQ 72 PUSH2 0x00b6 75 JUMPI 76 DUP1 77 PUSH4 0x78375f14 82 EQ 83 PUSH2 0x00d9 86 JUMPI 87 DUP1 88 PUSH4 0x92dd38ea 93 EQ 94 PUSH2 0x00fc 97 JUMPI 98 DUP1 99 PUSH4 0xa08299f1 104 EQ 105 PUSH2 0x011f 108 JUMPI 109 DUP1 110 PUSH4 0xb34c3610 115 EQ 116 PUSH2 0x0142 119 JUMPI 120 DUP1 121 PUSH4 0xb630d706 126 EQ 127 PUSH2 0x0157 130 JUMPI 131 DUP1 132 PUSH4 0xf44f13d8 137 EQ 138 PUSH2 0x017a 141 JUMPI 142 JUMPDEST 143 PUSH1 0x00 145 DUP1 146 REVERT 147 JUMPDEST 148 CALLVALUE 149 ISZERO 150 PUSH2 0x009e 153 JUMPI 154 PUSH1 0x00 156 DUP1 157 REVERT 158 JUMPDEST 159 PUSH2 0x00b4 162 PUSH1 0x04 164 DUP1 165 DUP1 166 CALLDATALOAD 167 SWAP1 168 PUSH1 0x20 170 ADD 171 SWAP1 172 SWAP2 173 SWAP1 174 POP 175 POP 176 PUSH2 0x018f 179 JUMP 180 JUMPDEST 181 STOP 182 JUMPDEST 183 CALLVALUE 184 ISZERO 185 PUSH2 0x00c1 188 JUMPI 189 PUSH1 0x00 191 DUP1 192 REVERT 193 JUMPDEST 194 PUSH2 0x00d7 197 PUSH1 0x04 199 DUP1 200 DUP1 201 CALLDATALOAD 202 SWAP1 203 PUSH1 0x20 205 ADD 206 SWAP1 207 SWAP2 208 SWAP1 209 POP 210 POP 211 PUSH2 0x01b2 214 JUMP 215 JUMPDEST 216 STOP 217 JUMPDEST 218 CALLVALUE 219 ISZERO 220 PUSH2 0x00e4 223 JUMPI 224 PUSH1 0x00 226 DUP1 227 REVERT 228 JUMPDEST 229 PUSH2 0x00fa 232 PUSH1 0x04 234 DUP1 235 DUP1 236 CALLDATALOAD 237 SWAP1 238 PUSH1 0x20 240 ADD 241 SWAP1 242 SWAP2 243 SWAP1 244 POP 245 POP 246 PUSH2 0x01c2 249 JUMP 250 JUMPDEST 251 STOP 252 JUMPDEST 253 CALLVALUE 254 ISZERO 255 PUSH2 0x0107 258 JUMPI 259 PUSH1 0x00 261 DUP1 262 REVERT 263 JUMPDEST 264 PUSH2 0x011d 267 PUSH1 0x04 269 DUP1 270 DUP1 271 CALLDATALOAD 272 SWAP1 273 PUSH1 0x20 275 ADD 276 SWAP1 277 SWAP2 278 SWAP1 279 POP 280 POP 281 PUSH2 0x01d5 284 JUMP 285 JUMPDEST 286 STOP 287 JUMPDEST 288 CALLVALUE 289 ISZERO 290 PUSH2 0x012a 293 JUMPI 294 PUSH1 0x00 296 DUP1 297 REVERT 298 JUMPDEST 299 PUSH2 0x0140 302 PUSH1 0x04 304 DUP1 305 DUP1 306 CALLDATALOAD 307 SWAP1 308 PUSH1 0x20 310 ADD 311 SWAP1 312 SWAP2 313 SWAP1 314 POP 315 POP 316 PUSH2 0x01ed 319 JUMP 320 JUMPDEST 321 STOP 322 JUMPDEST 323 CALLVALUE 324 ISZERO 325 PUSH2 0x014d 328 JUMPI 329 PUSH1 0x00 331 DUP1 332 REVERT 333 JUMPDEST 334 PUSH2 0x0155 337 PUSH2 0x0202 340 JUMP 341 JUMPDEST 342 STOP 343 JUMPDEST 344 CALLVALUE 345 ISZERO 346 PUSH2 0x0162 349 JUMPI 350 PUSH1 0x00 352 DUP1 353 REVERT 354 JUMPDEST 355 PUSH2 0x0178 358 PUSH1 0x04 360 DUP1 361 DUP1 362 CALLDATALOAD 363 SWAP1 364 PUSH1 0x20 366 ADD 367 SWAP1 368 SWAP2 369 SWAP1 370 POP 371 POP 372 PUSH2 0x0217 375 JUMP 376 JUMPDEST 377 STOP 378 JUMPDEST 379 CALLVALUE 380 ISZERO 381 PUSH2 0x0185 384 JUMPI 385 PUSH1 0x00 387 DUP1 388 REVERT 389 JUMPDEST 390 PUSH2 0x018d 393 PUSH2 0x0235 396 JUMP 397 JUMPDEST 398 STOP 399 JUMPDEST 400 PUSH1 0x00 402 PUSH1 0x08 404 DUP3 405 LT 406 ISZERO 407 PUSH2 0x01ae 410 JUMPI 411 PUSH1 0x00 413 DUP3 414 PUSH1 0x08 416 DUP2 417 LT 418 ISZERO 419 ISZERO 420 PUSH2 0x01a9 423 JUMPI 424 ASSERT_FAIL 425 JUMPDEST 426 ADD 427 SLOAD 428 SWAP1 429 POP 430 JUMPDEST 431 POP 432 POP 433 JUMP 434 JUMPDEST 435 PUSH1 0x17 437 DUP2 438 EQ 439 ISZERO 440 ISZERO 441 ISZERO 442 PUSH2 0x01bf 445 JUMPI 446 ASSERT_FAIL 447 JUMPDEST 448 POP 449 JUMP 450 JUMPDEST 451 PUSH1 0x17 453 DUP2 454 EQ 455 ISZERO 456 ISZERO 457 ISZERO 458 PUSH2 0x01d2 461 JUMPI 462 PUSH1 0x00 464 DUP1 465 REVERT 466 JUMPDEST 467 POP 468 JUMP 469 JUMPDEST 470 PUSH1 0x00 472 DUP1 473 DUP3 474 PUSH1 0x08 476 DUP2 477 LT 478 ISZERO 479 ISZERO 480 PUSH2 0x01e5 483 JUMPI 484 ASSERT_FAIL 485 JUMPDEST 486 ADD 487 SLOAD 488 SWAP1 489 POP 490 POP 491 POP 492 JUMP 493 JUMPDEST 494 PUSH1 0x00 496 DUP2 497 PUSH1 0x01 499 DUP2 500 ISZERO 501 ISZERO 502 PUSH2 0x01fb 505 JUMPI 506 ASSERT_FAIL 507 JUMPDEST 508 DIV 509 SWAP1 510 POP 511 POP 512 POP 513 JUMP 514 JUMPDEST 515 PUSH1 0x00 517 PUSH1 0x01 519 SWAP1 520 POP 521 PUSH1 0x00 523 DUP2 524 EQ 525 ISZERO 526 ISZERO 527 PUSH2 0x0214 530 JUMPI 531 ASSERT_FAIL 532 JUMPDEST 533 POP 534 JUMP 535 JUMPDEST 536 PUSH1 0x00 538 DUP1 539 DUP3 540 GT 541 ISZERO 542 PUSH2 0x0231 545 JUMPI 546 DUP2 547 PUSH1 0x01 549 DUP2 550 ISZERO 551 ISZERO 552 PUSH2 0x022d 555 JUMPI 556 ASSERT_FAIL 557 JUMPDEST 558 DIV 559 SWAP1 560 POP 561 JUMPDEST 562 POP 563 POP 564 JUMP 565 JUMPDEST 566 PUSH1 0x00 568 PUSH1 0x01 570 SWAP1 571 POP 572 PUSH1 0x00 574 DUP2 575 GT 576 ISZERO 577 ISZERO 578 PUSH2 0x0247 581 JUMPI 582 ASSERT_FAIL 583 JUMPDEST 584 POP 585 JUMP 586 STOP ================================================ FILE: tests/testdata/outputs_expected/exceptions.sol.o.graph.html ================================================Mythril / Ethereum LASER Symbolic VM
================================================ FILE: tests/testdata/outputs_expected/kinds_of_calls.sol.o.easm ================================================ 0 PUSH1 0x60 2 PUSH1 0x40 4 MSTORE 5 PUSH1 0x04 7 CALLDATASIZE 8 LT 9 PUSH2 0x006d 12 JUMPI 13 PUSH1 0x00 15 CALLDATALOAD 16 PUSH29 0x0100000000000000000000000000000000000000000000000000000000 46 SWAP1 47 DIV 48 PUSH4 0xffffffff 53 AND 54 DUP1 55 PUSH4 0x141f32ff 60 EQ 61 PUSH2 0x0072 64 JUMPI 65 DUP1 66 PUSH4 0x2e52d606 71 EQ 72 PUSH2 0x00b4 75 JUMPI 76 DUP1 77 PUSH4 0x67e404ce 82 EQ 83 PUSH2 0x00dd 86 JUMPI 87 DUP1 88 PUSH4 0x9b58bc26 93 EQ 94 PUSH2 0x0132 97 JUMPI 98 DUP1 99 PUSH4 0xeea4c864 104 EQ 105 PUSH2 0x0174 108 JUMPI 109 JUMPDEST 110 PUSH1 0x00 112 DUP1 113 REVERT 114 JUMPDEST 115 CALLVALUE 116 ISZERO 117 PUSH2 0x007d 120 JUMPI 121 PUSH1 0x00 123 DUP1 124 REVERT 125 JUMPDEST 126 PUSH2 0x00b2 129 PUSH1 0x04 131 DUP1 132 DUP1 133 CALLDATALOAD 134 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 155 AND 156 SWAP1 157 PUSH1 0x20 159 ADD 160 SWAP1 161 SWAP2 162 SWAP1 163 DUP1 164 CALLDATALOAD 165 SWAP1 166 PUSH1 0x20 168 ADD 169 SWAP1 170 SWAP2 171 SWAP1 172 POP 173 POP 174 PUSH2 0x01b6 177 JUMP 178 JUMPDEST 179 STOP 180 JUMPDEST 181 CALLVALUE 182 ISZERO 183 PUSH2 0x00bf 186 JUMPI 187 PUSH1 0x00 189 DUP1 190 REVERT 191 JUMPDEST 192 PUSH2 0x00c7 195 PUSH2 0x0273 198 JUMP 199 JUMPDEST 200 PUSH1 0x40 202 MLOAD 203 DUP1 204 DUP3 205 DUP2 206 MSTORE 207 PUSH1 0x20 209 ADD 210 SWAP2 211 POP 212 POP 213 PUSH1 0x40 215 MLOAD 216 DUP1 217 SWAP2 218 SUB 219 SWAP1 220 RETURN 221 JUMPDEST 222 CALLVALUE 223 ISZERO 224 PUSH2 0x00e8 227 JUMPI 228 PUSH1 0x00 230 DUP1 231 REVERT 232 JUMPDEST 233 PUSH2 0x00f0 236 PUSH2 0x0279 239 JUMP 240 JUMPDEST 241 PUSH1 0x40 243 MLOAD 244 DUP1 245 DUP3 246 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 267 AND 268 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 289 AND 290 DUP2 291 MSTORE 292 PUSH1 0x20 294 ADD 295 SWAP2 296 POP 297 POP 298 PUSH1 0x40 300 MLOAD 301 DUP1 302 SWAP2 303 SUB 304 SWAP1 305 RETURN 306 JUMPDEST 307 CALLVALUE 308 ISZERO 309 PUSH2 0x013d 312 JUMPI 313 PUSH1 0x00 315 DUP1 316 REVERT 317 JUMPDEST 318 PUSH2 0x0172 321 PUSH1 0x04 323 DUP1 324 DUP1 325 CALLDATALOAD 326 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 347 AND 348 SWAP1 349 PUSH1 0x20 351 ADD 352 SWAP1 353 SWAP2 354 SWAP1 355 DUP1 356 CALLDATALOAD 357 SWAP1 358 PUSH1 0x20 360 ADD 361 SWAP1 362 SWAP2 363 SWAP1 364 POP 365 POP 366 PUSH2 0x029f 369 JUMP 370 JUMPDEST 371 STOP 372 JUMPDEST 373 CALLVALUE 374 ISZERO 375 PUSH2 0x017f 378 JUMPI 379 PUSH1 0x00 381 DUP1 382 REVERT 383 JUMPDEST 384 PUSH2 0x01b4 387 PUSH1 0x04 389 DUP1 390 DUP1 391 CALLDATALOAD 392 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 413 AND 414 SWAP1 415 PUSH1 0x20 417 ADD 418 SWAP1 419 SWAP2 420 SWAP1 421 DUP1 422 CALLDATALOAD 423 SWAP1 424 PUSH1 0x20 426 ADD 427 SWAP1 428 SWAP2 429 SWAP1 430 POP 431 POP 432 PUSH2 0x035a 435 JUMP 436 JUMPDEST 437 STOP 438 JUMPDEST 439 DUP2 440 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 461 AND 462 PUSH1 0x40 464 MLOAD 465 DUP1 466 DUP1 467 PUSH32 0x7365744e2875696e743235362900000000000000000000000000000000000000 500 DUP2 501 MSTORE 502 POP 503 PUSH1 0x0d 505 ADD 506 SWAP1 507 POP 508 PUSH1 0x40 510 MLOAD 511 DUP1 512 SWAP2 513 SUB 514 SWAP1 515 SHA3 516 PUSH29 0x0100000000000000000000000000000000000000000000000000000000 546 SWAP1 547 DIV 548 DUP3 549 PUSH1 0x40 551 MLOAD 552 DUP3 553 PUSH4 0xffffffff 558 AND 559 PUSH29 0x0100000000000000000000000000000000000000000000000000000000 589 MUL 590 DUP2 591 MSTORE 592 PUSH1 0x04 594 ADD 595 DUP1 596 DUP3 597 DUP2 598 MSTORE 599 PUSH1 0x20 601 ADD 602 SWAP2 603 POP 604 POP 605 PUSH1 0x00 607 PUSH1 0x40 609 MLOAD 610 DUP1 611 DUP4 612 SUB 613 DUP2 614 PUSH1 0x00 616 DUP8 617 GAS 618 CALLCODE 619 SWAP3 620 POP 621 POP 622 POP 623 POP 624 POP 625 POP 626 JUMP 627 JUMPDEST 628 PUSH1 0x00 630 SLOAD 631 DUP2 632 JUMP 633 JUMPDEST 634 PUSH1 0x01 636 PUSH1 0x00 638 SWAP1 639 SLOAD 640 SWAP1 641 PUSH2 0x0100 644 EXP 645 SWAP1 646 DIV 647 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 668 AND 669 DUP2 670 JUMP 671 JUMPDEST 672 DUP2 673 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 694 AND 695 PUSH1 0x40 697 MLOAD 698 DUP1 699 DUP1 700 PUSH32 0x7365744e2875696e743235362900000000000000000000000000000000000000 733 DUP2 734 MSTORE 735 POP 736 PUSH1 0x0d 738 ADD 739 SWAP1 740 POP 741 PUSH1 0x40 743 MLOAD 744 DUP1 745 SWAP2 746 SUB 747 SWAP1 748 SHA3 749 PUSH29 0x0100000000000000000000000000000000000000000000000000000000 779 SWAP1 780 DIV 781 DUP3 782 PUSH1 0x40 784 MLOAD 785 DUP3 786 PUSH4 0xffffffff 791 AND 792 PUSH29 0x0100000000000000000000000000000000000000000000000000000000 822 MUL 823 DUP2 824 MSTORE 825 PUSH1 0x04 827 ADD 828 DUP1 829 DUP3 830 DUP2 831 MSTORE 832 PUSH1 0x20 834 ADD 835 SWAP2 836 POP 837 POP 838 PUSH1 0x00 840 PUSH1 0x40 842 MLOAD 843 DUP1 844 DUP4 845 SUB 846 DUP2 847 DUP7 848 GAS 849 DELEGATECALL 850 SWAP3 851 POP 852 POP 853 POP 854 POP 855 POP 856 POP 857 JUMP 858 JUMPDEST 859 DUP2 860 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 881 AND 882 PUSH1 0x40 884 MLOAD 885 DUP1 886 DUP1 887 PUSH32 0x7365744e2875696e743235362900000000000000000000000000000000000000 920 DUP2 921 MSTORE 922 POP 923 PUSH1 0x0d 925 ADD 926 SWAP1 927 POP 928 PUSH1 0x40 930 MLOAD 931 DUP1 932 SWAP2 933 SUB 934 SWAP1 935 SHA3 936 PUSH29 0x0100000000000000000000000000000000000000000000000000000000 966 SWAP1 967 DIV 968 DUP3 969 PUSH1 0x40 971 MLOAD 972 DUP3 973 PUSH4 0xffffffff 978 AND 979 PUSH29 0x0100000000000000000000000000000000000000000000000000000000 1009 MUL 1010 DUP2 1011 MSTORE 1012 PUSH1 0x04 1014 ADD 1015 DUP1 1016 DUP3 1017 DUP2 1018 MSTORE 1019 PUSH1 0x20 1021 ADD 1022 SWAP2 1023 POP 1024 POP 1025 PUSH1 0x00 1027 PUSH1 0x40 1029 MLOAD 1030 DUP1 1031 DUP4 1032 SUB 1033 DUP2 1034 PUSH1 0x00 1036 DUP8 1037 GAS 1038 CALL 1039 SWAP3 1040 POP 1041 POP 1042 POP 1043 POP 1044 POP 1045 POP 1046 JUMP 1047 STOP ================================================ FILE: tests/testdata/outputs_expected/kinds_of_calls.sol.o.graph.html ================================================Mythril / Ethereum LASER Symbolic VM
================================================ FILE: tests/testdata/outputs_expected/metacoin.sol.o.easm ================================================ 0 PUSH1 0x60 2 PUSH1 0x40 4 MSTORE 5 PUSH1 0x04 7 CALLDATASIZE 8 LT 9 PUSH2 0x004c 12 JUMPI 13 PUSH1 0x00 15 CALLDATALOAD 16 PUSH29 0x0100000000000000000000000000000000000000000000000000000000 46 SWAP1 47 DIV 48 PUSH4 0xffffffff 53 AND 54 DUP1 55 PUSH4 0x27e235e3 60 EQ 61 PUSH2 0x0051 64 JUMPI 65 DUP1 66 PUSH4 0x412664ae 71 EQ 72 PUSH2 0x009e 75 JUMPI 76 JUMPDEST 77 PUSH1 0x00 79 DUP1 80 REVERT 81 JUMPDEST 82 CALLVALUE 83 ISZERO 84 PUSH2 0x005c 87 JUMPI 88 PUSH1 0x00 90 DUP1 91 REVERT 92 JUMPDEST 93 PUSH2 0x0088 96 PUSH1 0x04 98 DUP1 99 DUP1 100 CALLDATALOAD 101 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 122 AND 123 SWAP1 124 PUSH1 0x20 126 ADD 127 SWAP1 128 SWAP2 129 SWAP1 130 POP 131 POP 132 PUSH2 0x00f8 135 JUMP 136 JUMPDEST 137 PUSH1 0x40 139 MLOAD 140 DUP1 141 DUP3 142 DUP2 143 MSTORE 144 PUSH1 0x20 146 ADD 147 SWAP2 148 POP 149 POP 150 PUSH1 0x40 152 MLOAD 153 DUP1 154 SWAP2 155 SUB 156 SWAP1 157 RETURN 158 JUMPDEST 159 CALLVALUE 160 ISZERO 161 PUSH2 0x00a9 164 JUMPI 165 PUSH1 0x00 167 DUP1 168 REVERT 169 JUMPDEST 170 PUSH2 0x00de 173 PUSH1 0x04 175 DUP1 176 DUP1 177 CALLDATALOAD 178 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 199 AND 200 SWAP1 201 PUSH1 0x20 203 ADD 204 SWAP1 205 SWAP2 206 SWAP1 207 DUP1 208 CALLDATALOAD 209 SWAP1 210 PUSH1 0x20 212 ADD 213 SWAP1 214 SWAP2 215 SWAP1 216 POP 217 POP 218 PUSH2 0x0110 221 JUMP 222 JUMPDEST 223 PUSH1 0x40 225 MLOAD 226 DUP1 227 DUP3 228 ISZERO 229 ISZERO 230 ISZERO 231 ISZERO 232 DUP2 233 MSTORE 234 PUSH1 0x20 236 ADD 237 SWAP2 238 POP 239 POP 240 PUSH1 0x40 242 MLOAD 243 DUP1 244 SWAP2 245 SUB 246 SWAP1 247 RETURN 248 JUMPDEST 249 PUSH1 0x00 251 PUSH1 0x20 253 MSTORE 254 DUP1 255 PUSH1 0x00 257 MSTORE 258 PUSH1 0x40 260 PUSH1 0x00 262 SHA3 263 PUSH1 0x00 265 SWAP2 266 POP 267 SWAP1 268 POP 269 SLOAD 270 DUP2 271 JUMP 272 JUMPDEST 273 PUSH1 0x00 275 DUP2 276 PUSH1 0x00 278 DUP1 279 CALLER 280 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 301 AND 302 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 323 AND 324 DUP2 325 MSTORE 326 PUSH1 0x20 328 ADD 329 SWAP1 330 DUP2 331 MSTORE 332 PUSH1 0x20 334 ADD 335 PUSH1 0x00 337 SHA3 338 SLOAD 339 LT 340 ISZERO 341 PUSH2 0x0161 344 JUMPI 345 PUSH1 0x00 347 SWAP1 348 POP 349 PUSH2 0x01fe 352 JUMP 353 JUMPDEST 354 DUP2 355 PUSH1 0x00 357 DUP1 358 CALLER 359 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 380 AND 381 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 402 AND 403 DUP2 404 MSTORE 405 PUSH1 0x20 407 ADD 408 SWAP1 409 DUP2 410 MSTORE 411 PUSH1 0x20 413 ADD 414 PUSH1 0x00 416 SHA3 417 PUSH1 0x00 419 DUP3 420 DUP3 421 SLOAD 422 SUB 423 SWAP3 424 POP 425 POP 426 DUP2 427 SWAP1 428 SSTORE 429 POP 430 DUP2 431 PUSH1 0x00 433 DUP1 434 DUP6 435 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 456 AND 457 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 478 AND 479 DUP2 480 MSTORE 481 PUSH1 0x20 483 ADD 484 SWAP1 485 DUP2 486 MSTORE 487 PUSH1 0x20 489 ADD 490 PUSH1 0x00 492 SHA3 493 PUSH1 0x00 495 DUP3 496 DUP3 497 SLOAD 498 ADD 499 SWAP3 500 POP 501 POP 502 DUP2 503 SWAP1 504 SSTORE 505 POP 506 PUSH1 0x00 508 SWAP1 509 POP 510 JUMPDEST 511 SWAP3 512 SWAP2 513 POP 514 POP 515 JUMP 516 STOP ================================================ FILE: tests/testdata/outputs_expected/metacoin.sol.o.graph.html ================================================Mythril / Ethereum LASER Symbolic VM
================================================ FILE: tests/testdata/outputs_expected/multi_contracts.sol.o.easm ================================================ 0 PUSH1 0x60 2 PUSH1 0x40 4 MSTORE 5 PUSH1 0x04 7 CALLDATASIZE 8 LT 9 PUSH1 0x3f 11 JUMPI 12 PUSH1 0x00 14 CALLDATALOAD 15 PUSH29 0x0100000000000000000000000000000000000000000000000000000000 45 SWAP1 46 DIV 47 PUSH4 0xffffffff 52 AND 53 DUP1 54 PUSH4 0x8a4068dd 59 EQ 60 PUSH1 0x44 62 JUMPI 63 JUMPDEST 64 PUSH1 0x00 66 DUP1 67 REVERT 68 JUMPDEST 69 CALLVALUE 70 ISZERO 71 PUSH1 0x4e 73 JUMPI 74 PUSH1 0x00 76 DUP1 77 REVERT 78 JUMPDEST 79 PUSH1 0x54 81 PUSH1 0x56 83 JUMP 84 JUMPDEST 85 STOP 86 JUMPDEST 87 CALLER 88 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 109 AND 110 PUSH2 0x08fc 113 PUSH8 0x1bc16d674ec80000 122 SWAP1 123 DUP2 124 ISZERO 125 MUL 126 SWAP1 127 PUSH1 0x40 129 MLOAD 130 PUSH1 0x00 132 PUSH1 0x40 134 MLOAD 135 DUP1 136 DUP4 137 SUB 138 DUP2 139 DUP6 140 DUP9 141 DUP9 142 CALL 143 SWAP4 144 POP 145 POP 146 POP 147 POP 148 ISZERO 149 ISZERO 150 PUSH1 0x9d 152 JUMPI 153 PUSH1 0x00 155 DUP1 156 REVERT 157 JUMPDEST 158 JUMP 159 STOP ================================================ FILE: tests/testdata/outputs_expected/multi_contracts.sol.o.graph.html ================================================Mythril / Ethereum LASER Symbolic VM
================================================ FILE: tests/testdata/outputs_expected/nonascii.sol.o.easm ================================================ 0 PUSH1 0x80 2 PUSH1 0x40 4 MSTORE 5 PUSH1 0x04 7 CALLDATASIZE 8 LT 9 PUSH2 0x0041 12 JUMPI 13 PUSH1 0x00 15 CALLDATALOAD 16 PUSH29 0x0100000000000000000000000000000000000000000000000000000000 46 SWAP1 47 DIV 48 PUSH4 0xffffffff 53 AND 54 DUP1 55 PUSH4 0x24ff38a2 60 EQ 61 PUSH2 0x0046 64 JUMPI 65 JUMPDEST 66 PUSH1 0x00 68 DUP1 69 REVERT 70 JUMPDEST 71 CALLVALUE 72 DUP1 73 ISZERO 74 PUSH2 0x0052 77 JUMPI 78 PUSH1 0x00 80 DUP1 81 REVERT 82 JUMPDEST 83 POP 84 PUSH2 0x005b 87 PUSH2 0x00d6 90 JUMP 91 JUMPDEST 92 PUSH1 0x40 94 MLOAD 95 DUP1 96 DUP1 97 PUSH1 0x20 99 ADD 100 DUP3 101 DUP2 102 SUB 103 DUP3 104 MSTORE 105 DUP4 106 DUP2 107 DUP2 108 MLOAD 109 DUP2 110 MSTORE 111 PUSH1 0x20 113 ADD 114 SWAP2 115 POP 116 DUP1 117 MLOAD 118 SWAP1 119 PUSH1 0x20 121 ADD 122 SWAP1 123 DUP1 124 DUP4 125 DUP4 126 PUSH1 0x00 128 JUMPDEST 129 DUP4 130 DUP2 131 LT 132 ISZERO 133 PUSH2 0x009b 136 JUMPI 137 DUP1 138 DUP3 139 ADD 140 MLOAD 141 DUP2 142 DUP5 143 ADD 144 MSTORE 145 PUSH1 0x20 147 DUP2 148 ADD 149 SWAP1 150 POP 151 PUSH2 0x0080 154 JUMP 155 JUMPDEST 156 POP 157 POP 158 POP 159 POP 160 SWAP1 161 POP 162 SWAP1 163 DUP2 164 ADD 165 SWAP1 166 PUSH1 0x1f 168 AND 169 DUP1 170 ISZERO 171 PUSH2 0x00c8 174 JUMPI 175 DUP1 176 DUP3 177 SUB 178 DUP1 179 MLOAD 180 PUSH1 0x01 182 DUP4 183 PUSH1 0x20 185 SUB 186 PUSH2 0x0100 189 EXP 190 SUB 191 NOT 192 AND 193 DUP2 194 MSTORE 195 PUSH1 0x20 197 ADD 198 SWAP2 199 POP 200 JUMPDEST 201 POP 202 SWAP3 203 POP 204 POP 205 POP 206 PUSH1 0x40 208 MLOAD 209 DUP1 210 SWAP2 211 SUB 212 SWAP1 213 RETURN 214 JUMPDEST 215 PUSH1 0x60 217 PUSH1 0x40 219 DUP1 220 MLOAD 221 SWAP1 222 DUP2 223 ADD 224 PUSH1 0x40 226 MSTORE 227 DUP1 228 PUSH1 0x17 230 DUP2 231 MSTORE 232 PUSH1 0x20 234 ADD 235 PUSH32 0xd0a5d18dd0bbd0bbd0bed18320d092d0bed180d0bbd0b4000000000000000000 268 DUP2 269 MSTORE 270 POP 271 SWAP1 272 POP 273 SWAP1 274 JUMP 275 STOP ================================================ FILE: tests/testdata/outputs_expected/nonascii.sol.o.graph.html ================================================Mythril / Ethereum LASER Symbolic VM
================================================ FILE: tests/testdata/outputs_expected/origin.sol.o.easm ================================================ 0 PUSH1 0x60 2 PUSH1 0x40 4 MSTORE 5 PUSH1 0x04 7 CALLDATASIZE 8 LT 9 PUSH2 0x004c 12 JUMPI 13 PUSH1 0x00 15 CALLDATALOAD 16 PUSH29 0x0100000000000000000000000000000000000000000000000000000000 46 SWAP1 47 DIV 48 PUSH4 0xffffffff 53 AND 54 DUP1 55 PUSH4 0x8da5cb5b 60 EQ 61 PUSH2 0x0051 64 JUMPI 65 DUP1 66 PUSH4 0xf2fde38b 71 EQ 72 PUSH2 0x00a6 75 JUMPI 76 JUMPDEST 77 PUSH1 0x00 79 DUP1 80 REVERT 81 JUMPDEST 82 CALLVALUE 83 ISZERO 84 PUSH2 0x005c 87 JUMPI 88 PUSH1 0x00 90 DUP1 91 REVERT 92 JUMPDEST 93 PUSH2 0x0064 96 PUSH2 0x00df 99 JUMP 100 JUMPDEST 101 PUSH1 0x40 103 MLOAD 104 DUP1 105 DUP3 106 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 127 AND 128 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 149 AND 150 DUP2 151 MSTORE 152 PUSH1 0x20 154 ADD 155 SWAP2 156 POP 157 POP 158 PUSH1 0x40 160 MLOAD 161 DUP1 162 SWAP2 163 SUB 164 SWAP1 165 RETURN 166 JUMPDEST 167 CALLVALUE 168 ISZERO 169 PUSH2 0x00b1 172 JUMPI 173 PUSH1 0x00 175 DUP1 176 REVERT 177 JUMPDEST 178 PUSH2 0x00dd 181 PUSH1 0x04 183 DUP1 184 DUP1 185 CALLDATALOAD 186 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 207 AND 208 SWAP1 209 PUSH1 0x20 211 ADD 212 SWAP1 213 SWAP2 214 SWAP1 215 POP 216 POP 217 PUSH2 0x0104 220 JUMP 221 JUMPDEST 222 STOP 223 JUMPDEST 224 PUSH1 0x00 226 DUP1 227 SWAP1 228 SLOAD 229 SWAP1 230 PUSH2 0x0100 233 EXP 234 SWAP1 235 DIV 236 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 257 AND 258 DUP2 259 JUMP 260 JUMPDEST 261 PUSH1 0x00 263 DUP1 264 SWAP1 265 SLOAD 266 SWAP1 267 PUSH2 0x0100 270 EXP 271 SWAP1 272 DIV 273 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 294 AND 295 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 316 AND 317 ORIGIN 318 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 339 AND 340 EQ 341 ISZERO 342 ISZERO 343 PUSH2 0x015f 346 JUMPI 347 PUSH1 0x00 349 DUP1 350 REVERT 351 JUMPDEST 352 PUSH1 0x00 354 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 375 AND 376 DUP2 377 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 398 AND 399 EQ 400 ISZERO 401 ISZERO 402 PUSH2 0x01d6 405 JUMPI 406 DUP1 407 PUSH1 0x00 409 DUP1 410 PUSH2 0x0100 413 EXP 414 DUP2 415 SLOAD 416 DUP2 417 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 438 MUL 439 NOT 440 AND 441 SWAP1 442 DUP4 443 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 464 AND 465 MUL 466 OR 467 SWAP1 468 SSTORE 469 POP 470 JUMPDEST 471 POP 472 JUMP 473 STOP ================================================ FILE: tests/testdata/outputs_expected/origin.sol.o.graph.html ================================================Mythril / Ethereum LASER Symbolic VM
================================================ FILE: tests/testdata/outputs_expected/overflow.sol.o.easm ================================================ 0 PUSH1 0x60 2 PUSH1 0x40 4 MSTORE 5 PUSH1 0x04 7 CALLDATASIZE 8 LT 9 PUSH2 0x0062 12 JUMPI 13 PUSH1 0x00 15 CALLDATALOAD 16 PUSH29 0x0100000000000000000000000000000000000000000000000000000000 46 SWAP1 47 DIV 48 PUSH4 0xffffffff 53 AND 54 DUP1 55 PUSH4 0x18160ddd 60 EQ 61 PUSH2 0x0067 64 JUMPI 65 DUP1 66 PUSH4 0x6241bfd1 71 EQ 72 PUSH2 0x0090 75 JUMPI 76 DUP1 77 PUSH4 0x70a08231 82 EQ 83 PUSH2 0x00b3 86 JUMPI 87 DUP1 88 PUSH4 0xa3210e87 93 EQ 94 PUSH2 0x0100 97 JUMPI 98 JUMPDEST 99 PUSH1 0x00 101 DUP1 102 REVERT 103 JUMPDEST 104 CALLVALUE 105 ISZERO 106 PUSH2 0x0072 109 JUMPI 110 PUSH1 0x00 112 DUP1 113 REVERT 114 JUMPDEST 115 PUSH2 0x007a 118 PUSH2 0x015a 121 JUMP 122 JUMPDEST 123 PUSH1 0x40 125 MLOAD 126 DUP1 127 DUP3 128 DUP2 129 MSTORE 130 PUSH1 0x20 132 ADD 133 SWAP2 134 POP 135 POP 136 PUSH1 0x40 138 MLOAD 139 DUP1 140 SWAP2 141 SUB 142 SWAP1 143 RETURN 144 JUMPDEST 145 CALLVALUE 146 ISZERO 147 PUSH2 0x009b 150 JUMPI 151 PUSH1 0x00 153 DUP1 154 REVERT 155 JUMPDEST 156 PUSH2 0x00b1 159 PUSH1 0x04 161 DUP1 162 DUP1 163 CALLDATALOAD 164 SWAP1 165 PUSH1 0x20 167 ADD 168 SWAP1 169 SWAP2 170 SWAP1 171 POP 172 POP 173 PUSH2 0x0160 176 JUMP 177 JUMPDEST 178 STOP 179 JUMPDEST 180 CALLVALUE 181 ISZERO 182 PUSH2 0x00be 185 JUMPI 186 PUSH1 0x00 188 DUP1 189 REVERT 190 JUMPDEST 191 PUSH2 0x00ea 194 PUSH1 0x04 196 DUP1 197 DUP1 198 CALLDATALOAD 199 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 220 AND 221 SWAP1 222 PUSH1 0x20 224 ADD 225 SWAP1 226 SWAP2 227 SWAP1 228 POP 229 POP 230 PUSH2 0x01ab 233 JUMP 234 JUMPDEST 235 PUSH1 0x40 237 MLOAD 238 DUP1 239 DUP3 240 DUP2 241 MSTORE 242 PUSH1 0x20 244 ADD 245 SWAP2 246 POP 247 POP 248 PUSH1 0x40 250 MLOAD 251 DUP1 252 SWAP2 253 SUB 254 SWAP1 255 RETURN 256 JUMPDEST 257 CALLVALUE 258 ISZERO 259 PUSH2 0x010b 262 JUMPI 263 PUSH1 0x00 265 DUP1 266 REVERT 267 JUMPDEST 268 PUSH2 0x0140 271 PUSH1 0x04 273 DUP1 274 DUP1 275 CALLDATALOAD 276 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 297 AND 298 SWAP1 299 PUSH1 0x20 301 ADD 302 SWAP1 303 SWAP2 304 SWAP1 305 DUP1 306 CALLDATALOAD 307 SWAP1 308 PUSH1 0x20 310 ADD 311 SWAP1 312 SWAP2 313 SWAP1 314 POP 315 POP 316 PUSH2 0x01f3 319 JUMP 320 JUMPDEST 321 PUSH1 0x40 323 MLOAD 324 DUP1 325 DUP3 326 ISZERO 327 ISZERO 328 ISZERO 329 ISZERO 330 DUP2 331 MSTORE 332 PUSH1 0x20 334 ADD 335 SWAP2 336 POP 337 POP 338 PUSH1 0x40 340 MLOAD 341 DUP1 342 SWAP2 343 SUB 344 SWAP1 345 RETURN 346 JUMPDEST 347 PUSH1 0x01 349 SLOAD 350 DUP2 351 JUMP 352 JUMPDEST 353 DUP1 354 PUSH1 0x01 356 DUP2 357 SWAP1 358 SSTORE 359 PUSH1 0x00 361 DUP1 362 CALLER 363 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 384 AND 385 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 406 AND 407 DUP2 408 MSTORE 409 PUSH1 0x20 411 ADD 412 SWAP1 413 DUP2 414 MSTORE 415 PUSH1 0x20 417 ADD 418 PUSH1 0x00 420 SHA3 421 DUP2 422 SWAP1 423 SSTORE 424 POP 425 POP 426 JUMP 427 JUMPDEST 428 PUSH1 0x00 430 DUP1 431 PUSH1 0x00 433 DUP4 434 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 455 AND 456 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 477 AND 478 DUP2 479 MSTORE 480 PUSH1 0x20 482 ADD 483 SWAP1 484 DUP2 485 MSTORE 486 PUSH1 0x20 488 ADD 489 PUSH1 0x00 491 SHA3 492 SLOAD 493 SWAP1 494 POP 495 SWAP2 496 SWAP1 497 POP 498 JUMP 499 JUMPDEST 500 PUSH1 0x00 502 DUP1 503 DUP3 504 PUSH1 0x00 506 DUP1 507 CALLER 508 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 529 AND 530 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 551 AND 552 DUP2 553 MSTORE 554 PUSH1 0x20 556 ADD 557 SWAP1 558 DUP2 559 MSTORE 560 PUSH1 0x20 562 ADD 563 PUSH1 0x00 565 SHA3 566 SLOAD 567 SUB 568 LT 569 ISZERO 570 ISZERO 571 ISZERO 572 PUSH2 0x0244 575 JUMPI 576 PUSH1 0x00 578 DUP1 579 REVERT 580 JUMPDEST 581 DUP2 582 PUSH1 0x00 584 DUP1 585 CALLER 586 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 607 AND 608 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 629 AND 630 DUP2 631 MSTORE 632 PUSH1 0x20 634 ADD 635 SWAP1 636 DUP2 637 MSTORE 638 PUSH1 0x20 640 ADD 641 PUSH1 0x00 643 SHA3 644 PUSH1 0x00 646 DUP3 647 DUP3 648 SLOAD 649 SUB 650 SWAP3 651 POP 652 POP 653 DUP2 654 SWAP1 655 SSTORE 656 POP 657 DUP2 658 PUSH1 0x00 660 DUP1 661 DUP6 662 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 683 AND 684 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 705 AND 706 DUP2 707 MSTORE 708 PUSH1 0x20 710 ADD 711 SWAP1 712 DUP2 713 MSTORE 714 PUSH1 0x20 716 ADD 717 PUSH1 0x00 719 SHA3 720 PUSH1 0x00 722 DUP3 723 DUP3 724 SLOAD 725 ADD 726 SWAP3 727 POP 728 POP 729 DUP2 730 SWAP1 731 SSTORE 732 POP 733 PUSH1 0x02 735 PUSH1 0x00 737 DUP1 738 DUP6 739 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 760 AND 761 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 782 AND 783 DUP2 784 MSTORE 785 PUSH1 0x20 787 ADD 788 SWAP1 789 DUP2 790 MSTORE 791 PUSH1 0x20 793 ADD 794 PUSH1 0x00 796 SHA3 797 DUP2 798 SWAP1 799 SSTORE 800 POP 801 PUSH1 0x01 803 SWAP1 804 POP 805 SWAP3 806 SWAP2 807 POP 808 POP 809 JUMP 810 STOP ================================================ FILE: tests/testdata/outputs_expected/overflow.sol.o.graph.html ================================================Mythril / Ethereum LASER Symbolic VM
================================================ FILE: tests/testdata/outputs_expected/returnvalue.sol.o.easm ================================================ 0 PUSH1 0x60 2 PUSH1 0x40 4 MSTORE 5 PUSH1 0x04 7 CALLDATASIZE 8 LT 9 PUSH2 0x004c 12 JUMPI 13 PUSH1 0x00 15 CALLDATALOAD 16 PUSH29 0x0100000000000000000000000000000000000000000000000000000000 46 SWAP1 47 DIV 48 PUSH4 0xffffffff 53 AND 54 DUP1 55 PUSH4 0x633ab5e0 60 EQ 61 PUSH2 0x0051 64 JUMPI 65 DUP1 66 PUSH4 0xe3bea282 71 EQ 72 PUSH2 0x0066 75 JUMPI 76 JUMPDEST 77 PUSH1 0x00 79 DUP1 80 REVERT 81 JUMPDEST 82 CALLVALUE 83 ISZERO 84 PUSH2 0x005c 87 JUMPI 88 PUSH1 0x00 90 DUP1 91 REVERT 92 JUMPDEST 93 PUSH2 0x0064 96 PUSH2 0x007b 99 JUMP 100 JUMPDEST 101 STOP 102 JUMPDEST 103 CALLVALUE 104 ISZERO 105 PUSH2 0x0071 108 JUMPI 109 PUSH1 0x00 111 DUP1 112 REVERT 113 JUMPDEST 114 PUSH2 0x0079 117 PUSH2 0x00d4 120 JUMP 121 JUMPDEST 122 STOP 123 JUMPDEST 124 PUSH1 0x00 126 DUP1 127 SWAP1 128 SLOAD 129 SWAP1 130 PUSH2 0x0100 133 EXP 134 SWAP1 135 DIV 136 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 157 AND 158 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 179 AND 180 PUSH1 0x40 182 MLOAD 183 PUSH1 0x00 185 PUSH1 0x40 187 MLOAD 188 DUP1 189 DUP4 190 SUB 191 DUP2 192 PUSH1 0x00 194 DUP7 195 GAS 196 CALL 197 SWAP2 198 POP 199 POP 200 ISZERO 201 ISZERO 202 PUSH2 0x00d2 205 JUMPI 206 PUSH1 0x00 208 DUP1 209 REVERT 210 JUMPDEST 211 JUMP 212 JUMPDEST 213 PUSH1 0x00 215 DUP1 216 SWAP1 217 SLOAD 218 SWAP1 219 PUSH2 0x0100 222 EXP 223 SWAP1 224 DIV 225 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 246 AND 247 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 268 AND 269 PUSH1 0x40 271 MLOAD 272 PUSH1 0x00 274 PUSH1 0x40 276 MLOAD 277 DUP1 278 DUP4 279 SUB 280 DUP2 281 PUSH1 0x00 283 DUP7 284 GAS 285 CALL 286 SWAP2 287 POP 288 POP 289 POP 290 JUMP 291 STOP ================================================ FILE: tests/testdata/outputs_expected/returnvalue.sol.o.graph.html ================================================Mythril / Ethereum LASER Symbolic VM
================================================ FILE: tests/testdata/outputs_expected/suicide.sol.o.easm ================================================ 0 PUSH1 0x60 2 PUSH1 0x40 4 MSTORE 5 PUSH1 0x04 7 CALLDATASIZE 8 LT 9 PUSH1 0x3f 11 JUMPI 12 PUSH1 0x00 14 CALLDATALOAD 15 PUSH29 0x0100000000000000000000000000000000000000000000000000000000 45 SWAP1 46 DIV 47 PUSH4 0xffffffff 52 AND 53 DUP1 54 PUSH4 0xcbf0b0c0 59 EQ 60 PUSH1 0x44 62 JUMPI 63 JUMPDEST 64 PUSH1 0x00 66 DUP1 67 REVERT 68 JUMPDEST 69 CALLVALUE 70 ISZERO 71 PUSH1 0x4e 73 JUMPI 74 PUSH1 0x00 76 DUP1 77 REVERT 78 JUMPDEST 79 PUSH1 0x78 81 PUSH1 0x04 83 DUP1 84 DUP1 85 CALLDATALOAD 86 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 107 AND 108 SWAP1 109 PUSH1 0x20 111 ADD 112 SWAP1 113 SWAP2 114 SWAP1 115 POP 116 POP 117 PUSH1 0x7a 119 JUMP 120 JUMPDEST 121 STOP 122 JUMPDEST 123 DUP1 124 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 145 AND 146 SUICIDE 147 STOP ================================================ FILE: tests/testdata/outputs_expected/suicide.sol.o.graph.html ================================================Mythril / Ethereum LASER Symbolic VM
================================================ FILE: tests/testdata/outputs_expected/underflow.sol.o.easm ================================================ 0 PUSH1 0x60 2 PUSH1 0x40 4 MSTORE 5 PUSH1 0x04 7 CALLDATASIZE 8 LT 9 PUSH2 0x0062 12 JUMPI 13 PUSH1 0x00 15 CALLDATALOAD 16 PUSH29 0x0100000000000000000000000000000000000000000000000000000000 46 SWAP1 47 DIV 48 PUSH4 0xffffffff 53 AND 54 DUP1 55 PUSH4 0x18160ddd 60 EQ 61 PUSH2 0x0067 64 JUMPI 65 DUP1 66 PUSH4 0x6241bfd1 71 EQ 72 PUSH2 0x0090 75 JUMPI 76 DUP1 77 PUSH4 0x70a08231 82 EQ 83 PUSH2 0x00b3 86 JUMPI 87 DUP1 88 PUSH4 0xa3210e87 93 EQ 94 PUSH2 0x0100 97 JUMPI 98 JUMPDEST 99 PUSH1 0x00 101 DUP1 102 REVERT 103 JUMPDEST 104 CALLVALUE 105 ISZERO 106 PUSH2 0x0072 109 JUMPI 110 PUSH1 0x00 112 DUP1 113 REVERT 114 JUMPDEST 115 PUSH2 0x007a 118 PUSH2 0x015a 121 JUMP 122 JUMPDEST 123 PUSH1 0x40 125 MLOAD 126 DUP1 127 DUP3 128 DUP2 129 MSTORE 130 PUSH1 0x20 132 ADD 133 SWAP2 134 POP 135 POP 136 PUSH1 0x40 138 MLOAD 139 DUP1 140 SWAP2 141 SUB 142 SWAP1 143 RETURN 144 JUMPDEST 145 CALLVALUE 146 ISZERO 147 PUSH2 0x009b 150 JUMPI 151 PUSH1 0x00 153 DUP1 154 REVERT 155 JUMPDEST 156 PUSH2 0x00b1 159 PUSH1 0x04 161 DUP1 162 DUP1 163 CALLDATALOAD 164 SWAP1 165 PUSH1 0x20 167 ADD 168 SWAP1 169 SWAP2 170 SWAP1 171 POP 172 POP 173 PUSH2 0x0160 176 JUMP 177 JUMPDEST 178 STOP 179 JUMPDEST 180 CALLVALUE 181 ISZERO 182 PUSH2 0x00be 185 JUMPI 186 PUSH1 0x00 188 DUP1 189 REVERT 190 JUMPDEST 191 PUSH2 0x00ea 194 PUSH1 0x04 196 DUP1 197 DUP1 198 CALLDATALOAD 199 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 220 AND 221 SWAP1 222 PUSH1 0x20 224 ADD 225 SWAP1 226 SWAP2 227 SWAP1 228 POP 229 POP 230 PUSH2 0x01ab 233 JUMP 234 JUMPDEST 235 PUSH1 0x40 237 MLOAD 238 DUP1 239 DUP3 240 DUP2 241 MSTORE 242 PUSH1 0x20 244 ADD 245 SWAP2 246 POP 247 POP 248 PUSH1 0x40 250 MLOAD 251 DUP1 252 SWAP2 253 SUB 254 SWAP1 255 RETURN 256 JUMPDEST 257 CALLVALUE 258 ISZERO 259 PUSH2 0x010b 262 JUMPI 263 PUSH1 0x00 265 DUP1 266 REVERT 267 JUMPDEST 268 PUSH2 0x0140 271 PUSH1 0x04 273 DUP1 274 DUP1 275 CALLDATALOAD 276 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 297 AND 298 SWAP1 299 PUSH1 0x20 301 ADD 302 SWAP1 303 SWAP2 304 SWAP1 305 DUP1 306 CALLDATALOAD 307 SWAP1 308 PUSH1 0x20 310 ADD 311 SWAP1 312 SWAP2 313 SWAP1 314 POP 315 POP 316 PUSH2 0x01f3 319 JUMP 320 JUMPDEST 321 PUSH1 0x40 323 MLOAD 324 DUP1 325 DUP3 326 ISZERO 327 ISZERO 328 ISZERO 329 ISZERO 330 DUP2 331 MSTORE 332 PUSH1 0x20 334 ADD 335 SWAP2 336 POP 337 POP 338 PUSH1 0x40 340 MLOAD 341 DUP1 342 SWAP2 343 SUB 344 SWAP1 345 RETURN 346 JUMPDEST 347 PUSH1 0x01 349 SLOAD 350 DUP2 351 JUMP 352 JUMPDEST 353 DUP1 354 PUSH1 0x01 356 DUP2 357 SWAP1 358 SSTORE 359 PUSH1 0x00 361 DUP1 362 CALLER 363 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 384 AND 385 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 406 AND 407 DUP2 408 MSTORE 409 PUSH1 0x20 411 ADD 412 SWAP1 413 DUP2 414 MSTORE 415 PUSH1 0x20 417 ADD 418 PUSH1 0x00 420 SHA3 421 DUP2 422 SWAP1 423 SSTORE 424 POP 425 POP 426 JUMP 427 JUMPDEST 428 PUSH1 0x00 430 DUP1 431 PUSH1 0x00 433 DUP4 434 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 455 AND 456 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 477 AND 478 DUP2 479 MSTORE 480 PUSH1 0x20 482 ADD 483 SWAP1 484 DUP2 485 MSTORE 486 PUSH1 0x20 488 ADD 489 PUSH1 0x00 491 SHA3 492 SLOAD 493 SWAP1 494 POP 495 SWAP2 496 SWAP1 497 POP 498 JUMP 499 JUMPDEST 500 PUSH1 0x00 502 DUP1 503 DUP3 504 PUSH1 0x00 506 DUP1 507 CALLER 508 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 529 AND 530 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 551 AND 552 DUP2 553 MSTORE 554 PUSH1 0x20 556 ADD 557 SWAP1 558 DUP2 559 MSTORE 560 PUSH1 0x20 562 ADD 563 PUSH1 0x00 565 SHA3 566 SLOAD 567 SUB 568 LT 569 ISZERO 570 ISZERO 571 ISZERO 572 PUSH2 0x0244 575 JUMPI 576 PUSH1 0x00 578 DUP1 579 REVERT 580 JUMPDEST 581 DUP2 582 PUSH1 0x00 584 DUP1 585 CALLER 586 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 607 AND 608 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 629 AND 630 DUP2 631 MSTORE 632 PUSH1 0x20 634 ADD 635 SWAP1 636 DUP2 637 MSTORE 638 PUSH1 0x20 640 ADD 641 PUSH1 0x00 643 SHA3 644 PUSH1 0x00 646 DUP3 647 DUP3 648 SLOAD 649 SUB 650 SWAP3 651 POP 652 POP 653 DUP2 654 SWAP1 655 SSTORE 656 POP 657 DUP2 658 PUSH1 0x00 660 DUP1 661 DUP6 662 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 683 AND 684 PUSH20 0xffffffffffffffffffffffffffffffffffffffff 705 AND 706 DUP2 707 MSTORE 708 PUSH1 0x20 710 ADD 711 SWAP1 712 DUP2 713 MSTORE 714 PUSH1 0x20 716 ADD 717 PUSH1 0x00 719 SHA3 720 PUSH1 0x00 722 DUP3 723 DUP3 724 SLOAD 725 ADD 726 SWAP3 727 POP 728 POP 729 DUP2 730 SWAP1 731 SSTORE 732 POP 733 PUSH1 0x01 735 SWAP1 736 POP 737 SWAP3 738 SWAP2 739 POP 740 POP 741 JUMP 742 STOP ================================================ FILE: tests/testdata/outputs_expected/underflow.sol.o.graph.html ================================================Mythril / Ethereum LASER Symbolic VM
================================================ FILE: tests/teststorage/contractstorage.fs.tmp ================================================ ================================================ FILE: tests/util_tests.py ================================================ import pytest from mythril.ethereum.util import extract_version test_data = ( ("pragma solidity 0.5.0\n", ["0.5.0"]), ("pragma solidity =0.5.0\n", ["0.5.0"]), ("pragma solidity ^0.4.26\n", ["0.4.26"]), ("pragma solidity ^0.6.3;\n", [f"0.6.{x}" for x in range(3, 13)]), ("pragma solidity ^0.6.3 ;\n", [f"0.6.{x}" for x in range(3, 13)]), ( "pragma solidity ^0.6.3; \n", [f"0.6.{x}" for x in range(3, 13)], ), ( "pragma solidity ^0.6.3 ; \n", [f"0.6.{x}" for x in range(3, 13)], ), ( """pragma solidity >=0.4.0 <0.6.0 ; contract SimpleStorage { uint storedData; function set(uint x) public { storedData = x; } function get() public view returns (uint) { return storedData; } }""", [f"0.4.{x}" for x in range(11, 27)] + [f"0.5.{x}" for x in range(0, 18)], ), ( """ pragma solidity >=0.4.0 <0.6.0 ;contract SimpleStorage { uint storedData; function set(uint x) public { storedData = x; } function get() public view returns (uint) { return storedData; } }""", [f"0.4.{x}" for x in range(11, 27)] + [f"0.5.{x}" for x in range(0, 18)], ), ( """ pragma solidity >=0.4.0 <0.6.0 ;contract SimpleStorage { uint storedData; function set(uint x) public { storedData = x; } function get() public view returns (uint) { return storedData; } }""", [f"0.4.{x}" for x in range(11, 27)] + [f"0.5.{x}" for x in range(0, 18)], ), ( """ pragma solidity >= 0.5.0 < 0.6.0; ;contract SimpleStorage { uint storedData; function set(uint x) public { storedData = x; } function get() public view returns (uint) { return storedData; } }""", [f"0.5.{x}" for x in range(0, 18)], ), ( """ pragma solidity >= 0 . 4 .0 < 0 . 6 . 0 ;contract SimpleStorage { uint storedData; function set(uint x) public { storedData = x; } function get() public view returns (uint) { return storedData; } }""", [f"0.4.{x}" for x in range(11, 27)] + [f"0.5.{x}" for x in range(0, 18)], ), ) @pytest.mark.parametrize("input_,output", test_data) def test_sar(input_, output): assert extract_version(input_) in output ================================================ FILE: tox.ini ================================================ [tox] envlist = python3.7, python3.10, python3.12 [testenv] deps = pytest pytest-mock passenv = MYTHRIL_DIR,INFURA_ID allowlist_externals = mkdir commands = mkdir -p {toxinidir}/tests/testdata/outputs_current/ mkdir -p {toxinidir}/tests/testdata/outputs_current_laser_result/ py.test -v \ --junitxml={toxworkdir}/output/{envname}/junit.xml \ --disable-pytest-warnings \ {posargs} [testenv:py37] basepython = python3.7 setenv = COVERAGE_FILE = .coverage.{envname} deps = mypy==0.782 pytest pytest-mock pytest-cov allowlist_externals = mkdir commands = mypy --follow-imports=silent --warn-unused-ignores --ignore-missing-imports --no-strict-optional mythril mkdir -p {toxinidir}/tests/testdata/outputs_current/ mkdir -p {toxinidir}/tests/testdata/outputs_current_laser_result/ py.test -v \ --cov=mythril \ --cov-config=tox.ini \ --cov-report=xml:{toxworkdir}/output/{envname}/coverage.xml \ --cov-report=html:{toxworkdir}/output/{envname}/covhtml \ --junitxml={toxworkdir}/output/{envname}/junit.xml \ --disable-pytest-warnings \ {posargs} [testenv:py38] basepython = python3.8 setenv = COVERAGE_FILE = .coverage.{envname} deps = mypy==0.782 pytest pytest-mock pytest-cov passenv = MYTHRIL_DIR,INFURA_ID allowlist_externals = mkdir commands = mypy --follow-imports=silent --warn-unused-ignores --ignore-missing-imports --no-strict-optional mythril mkdir -p {toxinidir}/tests/testdata/outputs_current/ mkdir -p {toxinidir}/tests/testdata/outputs_current_laser_result/ py.test -v \ --cov=mythril \ --cov-config=tox.ini \ --cov-report=xml:{toxworkdir}/output/{envname}/coverage.xml \ --cov-report=html:{toxworkdir}/output/{envname}/covhtml \ --junitxml={toxworkdir}/output/{envname}/junit.xml \ --disable-pytest-warnings \ {posargs} [testenv:py39] basepython = python3.9 setenv = COVERAGE_FILE = .coverage.{envname} deps = mypy==0.782 pytest pytest-mock pytest-cov passenv = MYTHRIL_DIR,INFURA_ID allowlist_externals = mkdir commands = mypy --follow-imports=silent --warn-unused-ignores --ignore-missing-imports --no-strict-optional mythril mkdir -p {toxinidir}/tests/testdata/outputs_current/ mkdir -p {toxinidir}/tests/testdata/outputs_current_laser_result/ py.test -v \ --cov=mythril \ --cov-config=tox.ini \ --cov-report=xml:{toxworkdir}/output/{envname}/coverage.xml \ --cov-report=html:{toxworkdir}/output/{envname}/covhtml \ --junitxml={toxworkdir}/output/{envname}/junit.xml \ --disable-pytest-warnings \ {posargs} [coverage:report] omit = *__init__.py /usr/* *_test.py setup.py