add basic support for processing LC_DYLD_CHAINED_FIXUPS
This commit is contained in:
LukeFZ
@@ -6,6 +6,7 @@
|
|||||||
|
|
||||||
using System;
|
using System;
|
||||||
using NoisyCowStudios.Bin2Object;
|
using NoisyCowStudios.Bin2Object;
|
||||||
|
using VersionedSerialization.Attributes;
|
||||||
|
|
||||||
namespace Il2CppInspector
|
namespace Il2CppInspector
|
||||||
{
|
{
|
||||||
@@ -31,6 +32,7 @@ namespace Il2CppInspector
|
|||||||
LC_DYLD_INFO_ONLY = 0x80000022,
|
LC_DYLD_INFO_ONLY = 0x80000022,
|
||||||
LC_FUNCTION_STARTS = 0x26,
|
LC_FUNCTION_STARTS = 0x26,
|
||||||
LC_ENCRYPTION_INFO_64 = 0x2C,
|
LC_ENCRYPTION_INFO_64 = 0x2C,
|
||||||
|
LC_DYLD_CHAINED_FIXUPS = 0x80000034,
|
||||||
|
|
||||||
CPU_TYPE_X86 = 7,
|
CPU_TYPE_X86 = 7,
|
||||||
CPU_TYPE_X86_64 = 0x01000000 + CPU_TYPE_X86,
|
CPU_TYPE_X86_64 = 0x01000000 + CPU_TYPE_X86,
|
||||||
@@ -172,4 +174,47 @@ namespace Il2CppInspector
|
|||||||
public bool r_extern => ((r_data >> 27) & 1) == 1;
|
public bool r_extern => ((r_data >> 27) & 1) == 1;
|
||||||
public uint r_type => r_data >> 28;
|
public uint r_type => r_data >> 28;
|
||||||
}
|
}
|
||||||
|
|
||||||
|
[VersionedStruct]
|
||||||
|
public partial struct MachODyldChainedFixupsHeader
|
||||||
|
{
|
||||||
|
public uint FixupsVersion;
|
||||||
|
public uint StartsOffset;
|
||||||
|
public uint ImportsOffset;
|
||||||
|
public uint SymbolsOffset;
|
||||||
|
public uint ImportsCount;
|
||||||
|
public uint ImportsFormat;
|
||||||
|
public uint SymbolsFormat;
|
||||||
|
}
|
||||||
|
|
||||||
|
[VersionedStruct]
|
||||||
|
public partial struct MachODyldChainedStartsInSegment
|
||||||
|
{
|
||||||
|
public const ushort DYLD_CHAINED_PTR_START_NONE = 0xffff;
|
||||||
|
|
||||||
|
public uint StructSize;
|
||||||
|
public ushort PageSize;
|
||||||
|
public ushort PointerFormat;
|
||||||
|
public ulong SegmentOffset;
|
||||||
|
public uint MaxValidPointer;
|
||||||
|
public ushort PageCount;
|
||||||
|
}
|
||||||
|
|
||||||
|
public enum MachODyldChainedPtr
|
||||||
|
{
|
||||||
|
DYLD_CHAINED_PTR_64 = 2,
|
||||||
|
DYLD_CHAINED_PTR_64_OFFSET = 6,
|
||||||
|
}
|
||||||
|
|
||||||
|
[VersionedStruct]
|
||||||
|
public partial struct MachODyldChainedPtr64Rebase
|
||||||
|
{
|
||||||
|
private ulong _value;
|
||||||
|
|
||||||
|
public ulong Target => _value & 0xfffffffff;
|
||||||
|
public ulong High8 => (_value >> 36) & 0xff;
|
||||||
|
public ulong Reserved => (_value >> (36 + 8)) & 0x7f;
|
||||||
|
public ulong Next => (_value >> (36 + 8 + 7)) & 0xfff;
|
||||||
|
public bool Bind => ((_value >> (36 + 8 + 7 + 12)) & 0x1) == 0x1;
|
||||||
|
}
|
||||||
}
|
}
|
||||||
|
|||||||
@@ -172,15 +172,21 @@ namespace Il2CppInspector
|
|||||||
if (encryptionInfo.CryptID != 0)
|
if (encryptionInfo.CryptID != 0)
|
||||||
throw new NotImplementedException("This Mach-O executable is encrypted with FairPlay DRM and cannot be processed. Please provide a decrypted version of the executable.");
|
throw new NotImplementedException("This Mach-O executable is encrypted with FairPlay DRM and cannot be processed. Please provide a decrypted version of the executable.");
|
||||||
break;
|
break;
|
||||||
|
|
||||||
|
case MachO.LC_DYLD_CHAINED_FIXUPS:
|
||||||
|
var chainedFixupsInfo = ReadObject<MachOLinkEditDataCommand>();
|
||||||
|
ApplyChainedFixups(chainedFixupsInfo);
|
||||||
|
break;
|
||||||
}
|
}
|
||||||
|
|
||||||
// There might be other data after the load command so always use the specified total size to step forwards
|
// There might be other data after the load command so always use the specified total size to step forwards
|
||||||
Position = startPos + loadCommand.Size;
|
Position = startPos + loadCommand.Size;
|
||||||
}
|
}
|
||||||
|
|
||||||
|
// Note: Some binaries do not have __mod_init_func, but instead just __init_offset with offsets to the init functions. This check is disabled.
|
||||||
// Must find __mod_init_func
|
// Must find __mod_init_func
|
||||||
if (funcTab == null)
|
//if (funcTab == null)
|
||||||
return false;
|
// return false;
|
||||||
|
|
||||||
// Process relocations
|
// Process relocations
|
||||||
foreach (var section in machoSections) {
|
foreach (var section in machoSections) {
|
||||||
@@ -290,7 +296,82 @@ namespace Il2CppInspector
|
|||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
public override uint[] GetFunctionTable() => ReadArray<TWord>(funcTab.ImageOffset, conv.Int(funcTab.Size) / (Bits / 8)).Select(x => MapVATR(conv.ULong(x)) & 0xffff_fffe).ToArray();
|
private void ApplyChainedFixups(in MachOLinkEditDataCommand info)
|
||||||
|
{
|
||||||
|
var chainedFixupsHeader = ReadVersionedObject<MachODyldChainedFixupsHeader>(info.Offset);
|
||||||
|
if (chainedFixupsHeader.FixupsVersion != 0)
|
||||||
|
{
|
||||||
|
Console.WriteLine($"Unsupported chained fixups version: {chainedFixupsHeader.FixupsVersion}");
|
||||||
|
return;
|
||||||
|
}
|
||||||
|
|
||||||
|
if (chainedFixupsHeader.ImportsFormat != 1 /* DYLD_CHAINED_IMPORT */)
|
||||||
|
{
|
||||||
|
Console.WriteLine($"Unsupported chained fixups import format: {chainedFixupsHeader.ImportsFormat}");
|
||||||
|
return;
|
||||||
|
}
|
||||||
|
|
||||||
|
//var importsBase = info.Offset + chainedFixupsHeader.ImportsOffset;
|
||||||
|
//var imports = ReadPrimitiveArray<uint>(importsBase,
|
||||||
|
// chainedFixupsHeader.ImportsCount);
|
||||||
|
|
||||||
|
//var symbolsBase = info.Offset + chainedFixupsHeader.SymbolsOffset; // todo: apparently this supports zlib
|
||||||
|
|
||||||
|
var startsBase = info.Offset + chainedFixupsHeader.StartsOffset;
|
||||||
|
var segmentCount = ReadPrimitive<uint>(startsBase);
|
||||||
|
var segmentStartOffsets = ReadPrimitiveArray<uint>(startsBase + 4, segmentCount);
|
||||||
|
|
||||||
|
foreach (var startOffset in segmentStartOffsets)
|
||||||
|
{
|
||||||
|
if (startOffset == 0)
|
||||||
|
continue;
|
||||||
|
|
||||||
|
var startsInfo = ReadVersionedObject<MachODyldChainedStartsInSegment>(startsBase + startOffset);
|
||||||
|
if (startsInfo.SegmentOffset == 0)
|
||||||
|
continue;
|
||||||
|
|
||||||
|
var pointerFormat = (MachODyldChainedPtr)startsInfo.PointerFormat;
|
||||||
|
|
||||||
|
var pages = ReadPrimitiveArray<ushort>(
|
||||||
|
startsBase + startOffset + MachODyldChainedStartsInSegment.Size(), startsInfo.PageCount);
|
||||||
|
|
||||||
|
for (var i = 0; i < pages.Length; i++)
|
||||||
|
{
|
||||||
|
var page = pages[i];
|
||||||
|
if (page == MachODyldChainedStartsInSegment.DYLD_CHAINED_PTR_START_NONE)
|
||||||
|
continue;
|
||||||
|
|
||||||
|
var chainOffset = startsInfo.SegmentOffset + (ulong)(i * startsInfo.PageSize) + page;
|
||||||
|
|
||||||
|
while (true)
|
||||||
|
{
|
||||||
|
var currentEntry = ReadVersionedObject<MachODyldChainedPtr64Rebase>((long)chainOffset);
|
||||||
|
|
||||||
|
var fixedValue = 0ul;
|
||||||
|
|
||||||
|
if (!currentEntry.Bind) // todo: bind
|
||||||
|
{
|
||||||
|
fixedValue = pointerFormat switch
|
||||||
|
{
|
||||||
|
MachODyldChainedPtr.DYLD_CHAINED_PTR_64
|
||||||
|
or MachODyldChainedPtr.DYLD_CHAINED_PTR_64_OFFSET
|
||||||
|
=> currentEntry.High8 << 56 | currentEntry.Target,
|
||||||
|
_ => fixedValue
|
||||||
|
};
|
||||||
|
|
||||||
|
Write((long)chainOffset, fixedValue);
|
||||||
|
}
|
||||||
|
|
||||||
|
if (currentEntry.Next == 0)
|
||||||
|
break;
|
||||||
|
|
||||||
|
chainOffset += currentEntry.Next * 4;
|
||||||
|
}
|
||||||
|
}
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
|
public override uint[] GetFunctionTable() => funcTab == null ? [] : ReadArray<TWord>(funcTab.ImageOffset, conv.Int(funcTab.Size) / (Bits / 8)).Select(x => MapVATR(conv.ULong(x)) & 0xffff_fffe).ToArray();
|
||||||
|
|
||||||
public override Dictionary<string, Symbol> GetSymbolTable() => symbolTable;
|
public override Dictionary<string, Symbol> GetSymbolTable() => symbolTable;
|
||||||
|
|
||||||
|
|||||||
Reference in New Issue
Block a user