finsig and other tools for thumb2 (was Re: chdk in the DIGIC6 world) - page 8 - General Discussion and Assistance - CHDK Forum supplierdeeply
« previous next »
Pages: 1 ... 3 4 5 6 7 [8]   Go Down

finsig and other tools for thumb2 (was Re: chdk in the DIGIC6 world)

  • 73 Replies
  • 36855 Views
*

Offline reyalp

  • ******
  • 12059
Re: finsig and other tools for thumb2 (was Re: chdk in the DIGIC6 world)
« Reply #70 on: 02 / December / 2018, 21:46:22 »
Advertisements
Quote from: srsa_4c on 25 / March / 2018, 07:04:09
I have a suggestion for a capdis feature:
When disassembling a function partially, it would be nice if capdis could (optionally) add an LDR PC instruction at the end that would point to the next instruction at the routine's original location.
I added an option -jfw which does this in r5134 (yeah, I'm a slacker  :-[)
Logged
Don't forget what the H stands for.
*

Offline srsa_4c

  • ******
  • 3979
Re: finsig and other tools for thumb2 (was Re: chdk in the DIGIC6 world)
« Reply #71 on: 08 / December / 2018, 18:17:21 »
Quote from: reyalp on 02 / December / 2018, 21:46:22
I added an option -jfw which does this in r5134
Thanks.
While working on a completely unsupported dump, I've noticed that an unrecognized function listed in find_generic_funcs() prevents the rest of the functions from being used. Did not go as far as finding the piece of code that does this (the code is rather convoluted), but making add_generic_sig_match() return immediately when the first get_saved_sig_val() fails does seem to help.

edit:
patch below does what I wrote above plus fixes two possible memory leaks
Code: [Select]
Index: tools/finsig_thumb2.c
===================================================================
--- tools/finsig_thumb2.c (revision 5136)
+++ tools/finsig_thumb2.c (working copy)
@@ -663,10 +663,12 @@
     int k;
 
     char *s = n;
+    int mallocd = 0;
     if (suffix != 0)
     {
         s = malloc(strlen(n) + strlen(suffix) + 1);
         sprintf(s, "%s%s", n, suffix);
+        mallocd = 1;
     }
 
     for (k=0; sig_names[k].name != 0; k++)
@@ -677,10 +679,14 @@
             {
                 sig_names[k].val = eadr;
                 sig_names[k].flags |= EV_MATCH;
+                if (mallocd)
+                    free(s);
                 return;
             }
             else if (sig_names[k].val == eadr)     // same name, same address
             {
+                if (mallocd)
+                    free(s);
                 return;
             }
             else // same name, different address
@@ -2687,6 +2693,7 @@
 
     for(i=1; i<=64; i++) {
         if (!disasm_iter(fw,is)) {
+            free(blobs);
             return 0;
         }
         if (is->insn->id == ARM_INS_LDR && is->insn->detail->arm.operands[1].type == ARM_OP_MEM) {
@@ -4228,6 +4235,7 @@
     uint32_t adr=get_saved_sig_val(name);
     if(!adr) {
         printf("add_generic_sig_match: missing %s\n",name);
+        return;
     }
     add_generic_func_match(match_fns,match_fn_count,MAX_GENERIC_FUNCS,fn,adr);
     char veneer[128];
« Last Edit: 09 / December / 2018, 14:31:15 by srsa_4c »
Logged
*

Offline reyalp

  • ******
  • 12059
Re: finsig and other tools for thumb2 (was Re: chdk in the DIGIC6 world)
« Reply #72 on: 19 / May / 2019, 00:24:13 »
Quote from: srsa_4c on 08 / December / 2018, 18:17:21
While working on a completely unsupported dump, I've noticed that an unrecognized function listed in find_generic_funcs() prevents the rest of the functions from being used. Did not go as far as finding the piece of code that does this (the code is rather convoluted), but making add_generic_sig_match() return immediately when the first get_saved_sig_val() fails does seem to help.

edit:
patch below does what I wrote above plus fixes two possible memory leaks
Oops, I downloaded this when it was posted but neglected to apply it  :-[ Feel free to prod me if it seems like I'm ignoring something, it usually just means I forgot.

Having add_generic_sig_match bail if the reference function doesn't exist makes sense.
Unrelated to that, I added a generic match to find PTP handlers in r5207. They aren't useful directly as stubs, but can be for analysis and finding other functions.

A couple notes:
* Canon sometimes registers the same handler for different opcodes, which creates duplicate addresses in the funcs_by... CSV files. There are already duplicates for _FW, so this doesn't seem like a big deal. It would be kind of nice to prefer the standard name where they are registered for both a standard opcode and Canon extension.
* The names for the Canon extensions come from libgphoto2. I don't know how reliable they are.

I plan to port this to the other sig finders.
Logged
Don't forget what the H stands for.
*

Offline srsa_4c

  • ******
  • 3979
Re: finsig and other tools for thumb2 (was Re: chdk in the DIGIC6 world)
« Reply #73 on: 19 / May / 2019, 16:05:45 »
Quote from: reyalp on 19 / May / 2019, 00:24:13
Oops, I downloaded this when it was posted but neglected to apply it  :-[ Feel free to prod me if it seems like I'm ignoring something, it usually just means I forgot.
No problem, these were minor issues that did not really affect the output.
Logged
Pages: 1 ... 3 4 5 6 7 [8]   Go Up
« previous next »
 

Related Topics