-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathZ_createMcilServiceCallbackVtable.py
63 lines (47 loc) · 3.46 KB
/
Z_createMcilServiceCallbackVtable.py
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
# A helper script to populate vtable in _MCIL_SERVICE_CALLBACKS of AtiAppleMcilServices
# @author Nyan Cat
# @category A_Red
# @keybinding
# @menupath
# @toolbar
# pyright: reportMissingImports=false
# pyright: reportUndefinedVariable=false
from java.util import ArrayList
from ghidra.program.model.data import CategoryPath, FunctionDefinitionDataType, PointerDataType
from ghidra.program.model.data import DataTypeConflictHandler
def getDataType(typeName, typeManager):
matches = ArrayList()
typeManager.findDataTypes(typeName, matches)
if len(matches) > 1:
print("Warning: Using the first " + typeName)
elif len(matches) == 0:
return None
return matches[0]
funcManager = currentProgram.getFunctionManager()
typeManager = currentProgram.getDataTypeManager()
funcNames = ['getPciConfigData', 'setPciConfigData', 'getPciConfigData', 'setPciConfigData', 'readRomImage', 'delayInMicroseconds', 'sleepInMilliseconds', 'getRegistryKey', 'setRegistryKey', 'syncExecution', 'allocateMemory', 'releaseMemory', 'dummyCallBack', 'dummyCallBack', 'dummyCallBack', 'dummyCallBack', 'waitForGUIIdle', 'waitForMCIdle', 'executeBiosTable', 'queryTableRevision', 'querySystemInfo', 'isAsicCapEnabled', 'dummyCallBack', 'dummyCallBack', 'dummyCallBack', 'dummyCallBack', 'copyMemory', 'zeroMemory', 'setMessageCode', 'modifyRegister', 'notifyEvent', 'dummyCallBack', 'dummyCallBack', 'dummyCallBack', 'eRecordSystemAccess', 'eRecordErrorMessage', 'assertInterrupt', 'dummyCallBack', 'dummyCallBack', 'dummyCallBack', 'dummyCallBack', 'dummyCallBack', 'dummyCallBack', 'waitFor', 'dummyCallBack', 'dummyCallBack', 'obtainIri', 'dummyCallBack', 'dummyCallBack', 'dummyCallBack', 'dummyCallBack', 'dummyCallBack', 'dummyCallBack', 'dummyCallBack', 'dummyCallBack', 'dummyCallBack', 'dummyCallBack', 'dummyCallBack', 'dummyCallBack', 'dummyCallBack', 'dummyCallBack', 'dummyCallBack', 'dummyCallBack', None, 'dummyCallBack', 'systemTimestamp', 'dummyCallBack', None, None, None, None, None, None, None, None, 'dummyCallBack', 'dummyCallBack', 'dummyCallBack', 'dummyCallBack', 'dummyCallBack', 'dummyCallBack', 'dummyCallBack', 'dummyCallBack', 'dummyCallBack', 'dummyCallBack', 'dummyCallBack', 'dummyCallBack', 'dummyCallBack', 'gpuPowerControl', 'dummyCallBack', 'dummyCallBack', 'dummyCallBack']
# funcNames = ["AtiAppleCailServices::" + x for x in funcNames]
done = [False] * len(funcNames)
ptrs = [None] * len(funcNames)
for func in funcManager.getFunctions(True):
fullName = str(func)
funcName = fullName.split("::")[-1]
if funcName not in funcNames:
continue
funcSign = func.getSignature(False)
funcType = FunctionDefinitionDataType(CategoryPath("/AMDGen/FuncSigns"), funcName + "_sign", funcSign)
funcType = typeManager.addDataType(funcType, DataTypeConflictHandler.REPLACE_HANDLER)
ptrType = PointerDataType(funcType, typeManager)
ptrType = typeManager.addDataType(ptrType, DataTypeConflictHandler.REPLACE_HANDLER)
for i in range(len(funcNames)):
if funcNames[i] == funcName:
assert not done[i]
done[i] = True
ptrs[i] = ptrType
funcNames[i] = fullName
assert all(done[i] or funcNames[i] is None for i in range(len(funcNames)))
serviceCallback = getDataType("_MCIL_SERVICE_CALLBACKS", typeManager)
for i in range(len(funcNames)):
if funcNames[i] is None:
continue
serviceCallback.replaceAtOffset(8 * (i + 2), ptrs[i], 8, funcNames[i], "Generated by Z_createMcilServiceCallbackVtable.py")