Giters

ylluminarious / elisp-decompile

Emacs Lisp Decompiler

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

A decompiler for Emacs Lisp bytecode... or at least a proof of concept.

This code uses the Python spark-parser for its Earley algorithm parser and the code organization. I have a project that implements the Earley algorithm in Emacs Lisp. It needs more work though to replace the Python code.

This is in a very early stage, but amazingly the code seems sound so far.

Until docs are better organized, see Writing Semantic-action Rules and the https://github.com/rocky/python-uncompyle6/wiki/Deparsing-Paper for a more general overview.

I gave a talk on Emacs bytecode showing this code. Type "s" on a slide to see the text associated with the slide.

We are currently working on documenting Elisp bytecode. See https://github.com/rocky/elisp-lap .

You may find yourself consulting the source code: emacs/lisp/emacs-lisp/bytecomp.el, emacs/src/data.c and emacs/src/bytecode.c.

Using this code

Perhaps (with help, possibly yours) this will all get converted to Emacs Lisp. But for now it's Python since the decompiler code I have is currently in that language.

Set up Python project

The below is GNU/Linux centric. Adjust to your OS.

This is a pretty standard Python project so install however you'd do that from source.

$ pip install -e .

Get a LAP file

You need to run code in the elisp/dedis.el to produce disassembly that you'd write to a file that ends in .lap. We have a number of sample LAP files in testdata in case you want to try a canned example.

The specfic functions in dedis.el are disassemble-file and disassemble-full.

So inside Emacs find a function you want to disassemble and run M-x disassemble-full. Or find a bytecode file you want and run or M-x disassembe-file

The first is like disassemble, but we don't truncate the output of docstrings or other things that disassemble generally does. The second is like disassemble-full but we start out with a bytecode file instead of a lisp function.

Disassemble LAP file

After you have written the results of the last section to LAP file, the file should end in .lap, and have set up the Python code, you can try to disassemble:

$ python eldecompile/main.py <name-of-lap-file>

There is perhaps a lot of debug output. There is even some flow control that isn't really used at the moment. You can probably go into the Python and comment this stuff out.

Also, what we can decompile right now is a bit limited. I see no technical difficulties other than lots of work. So please help out.

But is it worth it?

It's GNU Emacs, so of course I have the source code!

There is a difference between being able to find the source code and having it accessible when you need it, such as at runtime in a stack trace.

When many people hear the word "decompile" they think reverse engineering or hacking code where source has deliberately been withheld.

There are other situations where a decompiler is useful.

A common case is where you wrote the code, but have accidentally deleted the source code and just have the bytecode file.

But, I know, you always use version control and emacs provides it's tilde backup file.

So that leads us to the situation where there are several possible source code versions around, e.g. a development version and a stable version, and you'd like to know which one of those you have loaded.

And then we come to situation where there is no source-code file. One can create functions on the fly and change them on the fly. Similarly, functions can create functions when run interactively.

Isn't it simpler to just dissasemble?

Interestingly, a number of people have proffered the suggestion that it might just be easier to understand LAP and disassemble than write this code.

Most people don't know LAP. From working with it so far and from seeing what the decompiler has to do and how intricate it is, I am pretty convinced that those who say they understand LAP have to do a lot of time-consuming tedious work to decipher things.

This is what computers were invented for. They do this stuff very fast compared to humans.

Here are some simple examples:

Macros are expanded

I would find it tedious enough just to descramble something that has been macro expanded. And I am sure people may find that unsatisfying right now with our results. Now imagine how you'd feel to add another layer on that in going from LAP to Elisp for the expanded macros.

The LAP instructions for:

(define-minor-mode testing-minor-mode "Testing")

expand to 60 or so LAP instructions; a lot more when various parameters have been filled in.

Or consider with-temp-buffer:

(with-temp-buffer 5)

This expands to:

(let
    ((temp-buffer
      (generate-new-buffer " *temp*")))
  (with-current-buffer temp-buffer
    (unwind-protect
	(progn 5)
      (and
       (buffer-name temp-buffer)
       (kill-buffer temp-buffer)))))

And then you have things like dolist which are just long and boring template kinds of things. Because it's long it is very easy to lose sight of what it is.

Stacked values

Keeping track of values pushed on a stack is also tedious. Again there can be some non-locality in when a value is pushed with when it is used and popped.

Keyboard bindings

Yet another piece of tedium for the few that know how to do.

See how fast you can come up with the key names for:

[134217761]
[134217854]
[134217820]

About

Emacs Lisp Decompiler

Languages

Language:Python 85.4%Language:Emacs Lisp 14.4%Language:Shell 0.2%