uint32_t 69 modules/flt.h uint32_t magicnum; // MODULEINFO_V1_MAGICNUM - sanity check when loading uint32_t 70 modules/flt.h uint32_t sizeof_struct; // sizeof this struct - sanity check when loading uint32_t 72 modules/flt.h uint32_t chdk_required_branch; // CHDK version checks uint32_t 73 modules/flt.h uint32_t chdk_required_ver; uint32_t 74 modules/flt.h uint32_t chdk_required_architecture; uint32_t 75 modules/flt.h uint32_t chdk_required_platfid; uint32_t 81 modules/flt.h uint32_t lib; uint32_t 122 modules/flt.h uint32_t magic; // "CFLA" (must match FLAT_MAGIC_NUMBER) uint32_t 123 modules/flt.h uint32_t rev; // version (must match FLAT_VERSION) uint32_t 124 modules/flt.h uint32_t entry; // Offset of start .text segment uint32_t 125 modules/flt.h uint32_t data_start; // Offset of .data segment from beginning of file uint32_t 126 modules/flt.h uint32_t bss_size; // Size of .bss segment (for run time allocation) [bss start == reloc_start] uint32_t 129 modules/flt.h uint32_t reloc_start; // Offset of relocation records from beginning of file (also start of bss segment) uint32_t 130 modules/flt.h uint32_t import_start; // Offset of import section uint32_t 131 modules/flt.h uint32_t import_size; // size of import section uint32_t 136 modules/flt.h uint32_t _module_info_offset; // Offset ModuleInfo from beginning of file uint32_t 138 modules/flt.h uint32_t _module_info; // Ptr to ModuleInfo after relocation uint32_t 205 modules/module_load.c static int module_do_relocations(flat_hdr* flat, void* relocbuf, uint32_t reloc_count) uint32_t 207 modules/module_load.c uint32_t i; uint32_t 209 modules/module_load.c uint32_t* rbuf = (uint32_t*)relocbuf; // relocation array uint32_t 214 modules/module_load.c *(uint32_t*)(buf+rbuf[i]) += (uint32_t)buf; uint32_t 223 modules/module_load.c static const void* module_find_symbol_address(uint32_t importid) uint32_t 248 modules/module_load.c static int module_do_imports(flat_hdr* flat, void* relocbuf, uint32_t import_count) uint32_t 250 modules/module_load.c uint32_t i; uint32_t 252 modules/module_load.c uint32_t* rbuf = (uint32_t*)relocbuf; // link array uint32_t 266 modules/module_load.c uint32_t offs = rbuf[i++] & 0x00FFFFFF; uint32_t 268 modules/module_load.c *(uint32_t*)(buf+offs) += importaddress; uint32_t 277 modules/module_load.c static int module_do_action(int fd, flat_hdr* mod, uint32_t offset, uint32_t segment_size, int (*func)(flat_hdr*, void*, uint32_t)) uint32_t 286 modules/module_load.c return func(mod, (uint32_t*)buf_load, segment_size >> 2); uint32_t 442 modules/module_load.c if (mod_info->chdk_required_platfid && (mod_info->chdk_required_platfid != (uint32_t)conf.platformid)) uint32_t 298 tools/capdis.c static void describe_str(firmware *fw, char *comment, uint32_t adr) uint32_t 309 tools/capdis.c uint32_t adr2=*(uint32_t *)s; uint32_t 396 tools/capdis.c void describe_const_op(firmware *fw, unsigned dis_opts, char *comment, uint32_t adr) uint32_t 402 tools/capdis.c uint32_t *p=(uint32_t *)adr2ptr(fw,adr); uint32_t 421 tools/capdis.c void describe_prop_call(firmware *fw,iter_state_t *is, unsigned dis_opts, char *comment, uint32_t target) uint32_t 427 tools/capdis.c uint32_t regs[4]; uint32_t 440 tools/capdis.c void describe_simple_func(firmware *fw, unsigned dis_opts, char *comment, uint32_t target) uint32_t 460 tools/capdis.c uint32_t target = B_target(fw,is->insn); uint32_t 471 tools/capdis.c uint32_t j_target=0; uint32_t 508 tools/capdis.c uint32_t desc_adr = (j_target)?j_target:target; uint32_t 522 tools/capdis.c uint32_t target = get_branch_call_insn_target(fw,is); // target with thumb bit set appropriately uint32_t 525 tools/capdis.c uint32_t j_target=0; uint32_t 562 tools/capdis.c uint32_t desc_adr = (j_target)?j_target:target; uint32_t 592 tools/capdis.c uint32_t ad=LDR_PC2adr(fw,insn); uint32_t 593 tools/capdis.c uint32_t *pv=(uint32_t *)adr2ptr(fw,ad); uint32_t 614 tools/capdis.c uint32_t *pv=(uint32_t *)adr2ptr(fw,ad); uint32_t 666 tools/capdis.c uint32_t adr=is->insn->address; uint32_t 694 tools/capdis.c uint32_t adr=ti->start; uint32_t 700 tools/capdis.c uint32_t i=0; uint32_t 707 tools/capdis.c uint32_t target = ti->start+2**p; uint32_t 756 tools/capdis.c uint32_t adr=ti->start; uint32_t 762 tools/capdis.c uint32_t i=0; uint32_t 769 tools/capdis.c uint32_t target = ti->start+2**p; uint32_t 798 tools/capdis.c uint32_t adr=ti->start; uint32_t 799 tools/capdis.c uint32_t i=0; uint32_t 812 tools/capdis.c uint32_t target = ti->start+2*off; uint32_t 861 tools/capdis.c uint32_t b_tgt=get_branch_call_insn_target(fw,is); uint32_t 36 tools/dumputil.c int find_word_aligned(dump_t *dump, unsigned *index, uint32_t word) uint32_t 49 tools/dumputil.c uint32_t get_word(dump_t *dump,unsigned off) uint32_t 57 tools/dumputil.c uint32_t deref_word_ptr(dump_t *dump,unsigned off) uint32_t 59 tools/dumputil.c uint32_t ptr=get_word(dump,off); uint32_t 65 tools/dumputil.c uint32_t ptr=get_word(dump,off); uint32_t 71 tools/dumputil.c uint32_t ptr=get_word(dump,off); uint32_t 7 tools/dumputil.h const uint32_t *pw; uint32_t 16 tools/dumputil.h int find_word_aligned(dump_t *dump, unsigned *index, uint32_t word); uint32_t 17 tools/dumputil.h uint32_t get_word(dump_t *dump,unsigned off); uint32_t 18 tools/dumputil.h uint32_t deref_word_ptr(dump_t *dump,unsigned off); uint32_t 14 tools/elf2flt/elf-arm.c extern uint32_t offs_divsi3_skip_div0_test; uint32_t 15 tools/elf2flt/elf-arm.c extern uint32_t offs_div0_from_arm; uint32_t 16 tools/elf2flt/elf-arm.c extern uint32_t offs__aeabi_uidiv; uint32_t 26 tools/elf2flt/elf-arm.c uint32_t locoffset = base_sect->flat_offset + rela->r_offset; uint32_t 28 tools/elf2flt/elf-arm.c uint32_t tgt_fulloffset = tgt_sect->flat_offset + sym->st_value; // full offset in flat target symbol uint32_t 39 tools/elf2flt/elf-arm.c uint32_t upper, lower, sign, j1, j2; uint32_t 43 tools/elf2flt/elf-arm.c if (rela->r_offset > base_sect->size - sizeof(uint32_t)) { uint32_t 53 tools/elf2flt/elf-arm.c uint32_t addend = *(uint32_t*)loc; uint32_t 54 tools/elf2flt/elf-arm.c *(uint32_t*)loc += tgt_fulloffset; uint32_t 64 tools/elf2flt/elf-arm.c printf("=== flt%p(reloc+%x: %x): [%x]=0x%x\n",flat_reloc_cur, (char*)flat_reloc_cur-(char*)flat_reloc, (char*)flat_reloc_cur-flat_buf, locoffset, *(uint32_t*)loc); uint32_t 169 tools/elf2flt/elf-arm.c offset = (*(uint32_t *)loc & 0x00ffffff) << 2; uint32_t 193 tools/elf2flt/elf-arm.c *(uint32_t *)loc, uint32_t 200 tools/elf2flt/elf-arm.c *(uint32_t *)loc &= 0xff000000; uint32_t 201 tools/elf2flt/elf-arm.c *(uint32_t *)loc |= offset & 0x00ffffff; uint32_t 221 tools/elf2flt/elf-arm.c uint32_t locoffset = base_sect->flat_offset + rela->r_offset; uint32_t 238 tools/elf2flt/elf-arm.c importidx, symname, *(uint32_t*)loc, flat_import_count uint32_t 7 tools/elf2flt/elf.h typedef uint32_t elf32_word; uint32_t 10 tools/elf2flt/elf.h typedef uint32_t elf32_off; uint32_t 11 tools/elf2flt/elf.h typedef uint32_t elf32_addr; uint32_t 44 tools/elf2flt/elfflt.c uint32_t flat_reloc_count; uint32_t 48 tools/elf2flt/elfflt.c uint32_t flat_import_count; uint32_t 108 tools/elf2flt/elfflt.c static uint32_t uint32_t 261 tools/elf2flt/elfflt.c void print_offs(char *prefix, uint32_t offs, char* postfix) uint32_t 291 tools/elf2flt/elfflt.c if ( (uint32_t)offs >=flat->reloc_start || (uint32_t)offs<flat->data_start ) uint32_t 318 tools/elf2flt/elfflt.c uint32_t offs_div0_from_arm = 0; uint32_t 319 tools/elf2flt/elfflt.c uint32_t offs_divsi3_skip_div0_test = 0; uint32_t 320 tools/elf2flt/elfflt.c uint32_t offs__aeabi_uidiv = 0; uint32_t 388 tools/elf2flt/elfflt.c uint32_t i; uint32_t 672 tools/elf2flt/elfflt.c uint32_t *new_import_buf = malloc(flat_import_count*3*sizeof(uint32_t)); uint32_t 673 tools/elf2flt/elfflt.c uint32_t new_import_cnt = 0; uint32_t 684 tools/elf2flt/elfflt.c uint32_t idx = flat_import_buf[i].importidx; uint32_t 687 tools/elf2flt/elfflt.c uint32_t j; uint32_t 702 tools/elf2flt/elfflt.c flat->import_size = new_import_cnt*sizeof(uint32_t); uint32_t 742 tools/elf2flt/elfflt.c print_offs("Offs: ",*(uint32_t*)(flat_buf+flat->reloc_start+i*sizeof(reloc_record_t)), "\n"); uint32_t 745 tools/elf2flt/elfflt.c printf("\nDump imports 0x%x (size=%d):\n",flat->import_start,new_import_cnt*sizeof(uint32_t)); uint32_t 748 tools/elf2flt/elfflt.c uint32_t idx = new_import_buf[i++]; uint32_t 753 tools/elf2flt/elfflt.c uint32_t offs = new_import_buf[i++] & 0x00FFFFFF; uint32_t 755 tools/elf2flt/elfflt.c int addend = *(uint32_t*)(flat_buf+offs); uint32_t 767 tools/elf2flt/elfflt.c i = write(output_fd, new_import_buf, new_import_cnt*sizeof(uint32_t)); uint32_t 31 tools/elf2flt/elfflt.h uint32_t offset; //start offset in .elf file uint32_t 36 tools/elf2flt/elfflt.h uint32_t base_addr; //start addr in arm-objdump (to compare) uint32_t 37 tools/elf2flt/elfflt.h uint32_t flat_offset; //start offset in .flt file uint32_t 39 tools/elf2flt/elfflt.h uint32_t relaoff; // fileoffset of related relocation section uint32_t 40 tools/elf2flt/elfflt.h uint32_t relasize; // size of related relocation section uint32_t 48 tools/elf2flt/elfflt.h typedef uint32_t reloc_record_t; uint32_t 50 tools/elf2flt/elfflt.h extern uint32_t flat_reloc_count; uint32_t 56 tools/elf2flt/elfflt.h uint32_t offs; // offset of changed record from begin of flat uint32_t 57 tools/elf2flt/elfflt.h uint32_t importidx; // index of symbol in chdk_export_table uint32_t 60 tools/elf2flt/elfflt.h extern uint32_t flat_import_count; uint32_t 36 tools/elf2flt/fltdump.c void print_offs(char *prefix, uint32_t offs,char* postfix) uint32_t 65 tools/elf2flt/fltdump.c if ( (uint32_t)offs >=flat->reloc_start || (uint32_t)offs<flat->data_start ) uint32_t 117 tools/elf2flt/fltdump.c flat_reloc_count = (flat->import_start-flat->reloc_start)/sizeof(uint32_t); uint32_t 119 tools/elf2flt/fltdump.c flat_import_count = (flat->import_size)/sizeof(uint32_t); uint32_t 173 tools/elf2flt/fltdump.c printf("\nDump relocations 0x%x (size=%d):\n",flat->reloc_start,flat_reloc_count*sizeof(uint32_t)); uint32_t 175 tools/elf2flt/fltdump.c print_offs("Offs: ",*(uint32_t*)(flat_buf+flat->reloc_start+i*sizeof(uint32_t)),"\n"); uint32_t 177 tools/elf2flt/fltdump.c printf("\nDump imports 0x%x (size=%d):\n",flat->import_start,flat_import_count*sizeof(uint32_t)); uint32_t 178 tools/elf2flt/fltdump.c uint32_t *new_import_buf = (uint32_t*)(flat_buf+flat->import_start); uint32_t 181 tools/elf2flt/fltdump.c uint32_t idx = new_import_buf[i++]; uint32_t 186 tools/elf2flt/fltdump.c uint32_t offs = new_import_buf[i++] & 0x00FFFFFF; uint32_t 188 tools/elf2flt/fltdump.c int addend = *(uint32_t*)(flat_buf+offs); uint32_t 24 tools/find_eventproc.c uint32_t pfunc = dump->pw[i+1]; uint32_t 82 tools/finsig_dryos.c uint32_t ptr; uint32_t 83 tools/finsig_dryos.c uint32_t fail; uint32_t 84 tools/finsig_dryos.c uint32_t success; uint32_t 155 tools/finsig_dryos.c void addMatch(uint32_t fadr, int s, int f, int sig) uint32_t 165 tools/finsig_dryos.c void fwAddMatch(firmware *fw, uint32_t fadr, int s, int f, int sig) uint32_t 182 tools/finsig_dryos.c uint32_t offs; uint32_t 183 tools/finsig_dryos.c uint32_t value; uint32_t 184 tools/finsig_dryos.c uint32_t mask; uint32_t 207 tools/finsig_dryos.c uint32_t val; uint32_t 591 tools/finsig_dryos.c void save_sig(const char *name, uint32_t val) uint32_t 662 tools/finsig_dryos.c uint32_t val; uint32_t 748 tools/finsig_dryos.c uint32_t apex2us_test[] = { 0x3D09000, 0x3BBA304, 0x3A728D2, 0x3931EF4, 0x37F8303, 0x36C52A2, 0x3598B85, 0x3472B6A, 0 }; uint32_t 749 tools/finsig_dryos.c uint32_t apex2us_test2[] = { 0x3d090000, 0x3bba3040, 0x3a728d1f, 0x3931ef45, 0x37f8302c, 0x36c52a26, 0x3598b852, 0x3472b699, 0 }; // r52+? uint32_t 752 tools/finsig_dryos.c int match_apex2us(firmware *fw, int k, uint32_t v1, __attribute__ ((unused))uint32_t v2) uint32_t 761 tools/finsig_dryos.c uint32_t fadr = idx2adr(fw,k); uint32_t 768 tools/finsig_dryos.c int match_apex2us2(firmware *fw, int k, uint32_t v1, __attribute__ ((unused))uint32_t v2) // r52+? uint32_t 777 tools/finsig_dryos.c uint32_t fadr = idx2adr(fw,k); uint32_t 831 tools/finsig_dryos.c uint32_t fadr = 0; uint32_t 857 tools/finsig_dryos.c uint32_t adr1 = idx2adr(fw,j); // address of 1st value uint32_t 858 tools/finsig_dryos.c uint32_t adr2 = idx2adr(fw,j+2); // address of 2nd value uint32_t 870 tools/finsig_dryos.c uint32_t fadr = followBranch(fw,idx2adr(fw,j1+2),0x01000001); uint32_t 883 tools/finsig_dryos.c uint32_t fadr = followBranch(fw,idx2adr(fw,j1+3),0x01000001); uint32_t 909 tools/finsig_dryos.c uint32_t fadr = idx2adr(fw, k+1); uint32_t 950 tools/finsig_dryos.c uint32_t file_buf_id = get_ptp_file_buf_id(fw); uint32_t 954 tools/finsig_dryos.c uint32_t f1 = followBranch(fw,idx2adr(fw,j+1),0x01000001); uint32_t 973 tools/finsig_dryos.c uint32_t fadr = idx2adr(fw, k); uint32_t 989 tools/finsig_dryos.c uint32_t fadr = followBranch(fw, idx2adr(fw, k-2), 0x01000001); uint32_t 1012 tools/finsig_dryos.c uint32_t fadr = idx2adr(fw, k); uint32_t 1031 tools/finsig_dryos.c uint32_t fadr = idx2adr(fw, j); uint32_t 1039 tools/finsig_dryos.c uint32_t fadr = idx2adr(fw, j); uint32_t 1066 tools/finsig_dryos.c uint32_t fadr = idx2adr(fw, j); uint32_t 1078 tools/finsig_dryos.c uint32_t fadr = idx2adr(fw, j); uint32_t 1185 tools/finsig_dryos.c uint32_t fadr = idx2adr(fw, i); uint32_t 1266 tools/finsig_dryos.c uint32_t fadr = idx2adr(fw, i); uint32_t 1289 tools/finsig_dryos.c uint32_t fadr = followBranch(fw, idx2adr(fw, k), 0x01000001); uint32_t 1301 tools/finsig_dryos.c uint32_t fadr = followBranch(fw, idx2adr(fw, k), 0x01000001); uint32_t 1321 tools/finsig_dryos.c uint32_t cmpinst = ((fwval(fw, k+1) & 0x0000f000)<<4) + 0xe3500004; // cmp rx, #4 uint32_t 1332 tools/finsig_dryos.c uint32_t fadr = followBranch(fw, idx2adr(fw, k), 0x01000001); uint32_t 1357 tools/finsig_dryos.c uint32_t fadr = followBranch(fw, idx2adr(fw, i), 0x01000001); uint32_t 1375 tools/finsig_dryos.c uint32_t vals[] = { 0x9801, 0x9802, 0x9803, 0x9804, 0x9805, 0 }; uint32_t 1376 tools/finsig_dryos.c uint32_t fadr = 0; uint32_t 1413 tools/finsig_dryos.c uint32_t fadr = followBranch(fw, idx2adr(fw,k), 0x01000001); uint32_t 1437 tools/finsig_dryos.c uint32_t fadr = idx2adr(fw,k+1); uint32_t 1452 tools/finsig_dryos.c uint32_t fadr = idx2adr(fw,k+1); uint32_t 1464 tools/finsig_dryos.c uint32_t strGIF = 0; uint32_t 1465 tools/finsig_dryos.c int match_GetImageFolder(firmware *fw, int k, uint32_t a_getImageDirName, uint32_t a_TakeSemaphore) uint32_t 1471 tools/finsig_dryos.c uint32_t fadr = followBranch2(fw,idx2adr(fw,k),0x01000001); uint32_t 1532 tools/finsig_dryos.c int match_GetDrive_ClusterSize(firmware *fw, int k, uint32_t v1, __attribute__ ((unused))uint32_t v2) uint32_t 1536 tools/finsig_dryos.c uint32_t fadr = followBranch2(fw,idx2adr(fw,k),0xF1000001); uint32_t 1593 tools/finsig_dryos.c extern uint32_t find_str_bytes(firmware *fw, char *str); uint32_t 1597 tools/finsig_dryos.c uint32_t j = find_str_bytes(fw,"DriveLetterManager.c"); uint32_t 1711 tools/finsig_dryos.c uint32_t u1 = LDR2val(fw, m1+k); uint32_t 1775 tools/finsig_dryos.c uint32_t u1 = ADR2adr(fw, m5); uint32_t 1841 tools/finsig_dryos.c uint32_t a1 = idx2adr(fw,n); uint32_t 1869 tools/finsig_dryos.c uint32_t u1 = LDR2val(fw, m1+k); uint32_t 2007 tools/finsig_dryos.c uint32_t v1 = fwval(fw, k3); uint32_t 2187 tools/finsig_dryos.c uint32_t frsp_buf = 0; uint32_t 2188 tools/finsig_dryos.c uint32_t frsp_buf_at = 0; uint32_t 2193 tools/finsig_dryos.c void add_func_name(char*, uint32_t, char*); uint32_t 2247 tools/finsig_dryos.c uint32_t u1 = ALUop2a(fw,j3+m); uint32_t 2285 tools/finsig_dryos.c uint32_t v = LDR2val(fw,k1); uint32_t 2311 tools/finsig_dryos.c uint32_t adr=0; uint32_t 2312 tools/finsig_dryos.c uint32_t file_buf_id=get_ptp_file_buf_id(fw); uint32_t 2332 tools/finsig_dryos.c uint32_t adr2 = followBranch(fw,idx2adr(fw,k+1),0x01000001); uint32_t 2384 tools/finsig_dryos.c void add_func_name(char*, uint32_t, char*); uint32_t 2531 tools/finsig_dryos.c uint32_t log_test[] = { uint32_t 2536 tools/finsig_dryos.c uint32_t DeleteDirectory_Fut_test[] = { 0x09400017 }; uint32_t 2537 tools/finsig_dryos.c uint32_t MakeDirectory_Fut_test[] = { 0x09400015 }; uint32_t 2538 tools/finsig_dryos.c uint32_t RenameFile_Fut_test[] = { 0x09400013 }; uint32_t 3155 tools/finsig_dryos.c uint32_t nm0 = *((uint32_t*)sig->ev_name); uint32_t 3156 tools/finsig_dryos.c uint32_t *p; uint32_t 3204 tools/finsig_dryos.c uint32_t *p; uint32_t 3231 tools/finsig_dryos.c uint32_t fadr = fwval(fw,j-1); // function address uint32_t 3251 tools/finsig_dryos.c int match_strsig2a(firmware *fw, int k, uint32_t sadr, uint32_t offset) uint32_t 3255 tools/finsig_dryos.c uint32_t fadr = fwval(fw,k+1); // function address uint32_t 3258 tools/finsig_dryos.c uint32_t bfadr = followBranch2(fw, fadr, offset); uint32_t 3292 tools/finsig_dryos.c int match_strsig3a(firmware *fw, int k, uint32_t sadr, uint32_t offset) uint32_t 3297 tools/finsig_dryos.c uint32_t padr = ADR2adr(fw,k+1); // get address pointed to by 2nd ADR instructioin uint32_t 3312 tools/finsig_dryos.c uint32_t fa = idx2adr(fw,j2+1); uint32_t 3324 tools/finsig_dryos.c uint32_t fadr = ADR2adr(fw,j2); uint32_t 3345 tools/finsig_dryos.c int match_strsig4a(firmware *fw, int k, uint32_t sadr, uint32_t offset) uint32_t 3350 tools/finsig_dryos.c uint32_t padr = ADR2adr(fw,k+offset); uint32_t 3353 tools/finsig_dryos.c uint32_t fadr = idx2adr(fw,k); uint32_t 3381 tools/finsig_dryos.c int match_strsig5a(firmware *fw, int k, uint32_t sadr, uint32_t offset) uint32_t 3386 tools/finsig_dryos.c uint32_t padr; uint32_t 3414 tools/finsig_dryos.c uint32_t fadr = LDR2val(fw,j2); uint32_t 3419 tools/finsig_dryos.c uint32_t fadr2 = followBranch(fw, fadr, dryos_ofst); uint32_t 3443 tools/finsig_dryos.c uint32_t fadr = idx2adr(fw,j1); uint32_t 3457 tools/finsig_dryos.c int match_strsig7a(firmware *fw, int k, uint32_t sadr, uint32_t offset) uint32_t 3461 tools/finsig_dryos.c uint32_t padr; uint32_t 3471 tools/finsig_dryos.c uint32_t fa = idx2adr(fw,j2); uint32_t 3491 tools/finsig_dryos.c uint32_t u1; uint32_t 3494 tools/finsig_dryos.c uint32_t fadr = idx2adr(fw,j1); uint32_t 3522 tools/finsig_dryos.c uint32_t fadr = 0; uint32_t 3573 tools/finsig_dryos.c uint32_t fadr = followBranch(fw, func_names[j].val+ofst*4, 0xF1000001); uint32_t 3576 tools/finsig_dryos.c uint32_t fadr2 = fadr; uint32_t 3600 tools/finsig_dryos.c uint32_t sadr = idx2adr(fw,j); // string address uint32_t 3606 tools/finsig_dryos.c uint32_t padr = ADR2adr(fw,j1); uint32_t 3609 tools/finsig_dryos.c uint32_t fadr = idx2adr(fw,j1-ofst); uint32_t 3610 tools/finsig_dryos.c uint32_t bfadr = followBranch(fw,fadr,sig->offset); uint32_t 3661 tools/finsig_dryos.c uint32_t fadr = LDR2val(fw,idx); uint32_t 3662 tools/finsig_dryos.c uint32_t bfadr = followBranch2(fw,fadr,sig->offset); uint32_t 3691 tools/finsig_dryos.c int match_strsig13a(firmware *fw, int k, uint32_t sadr, uint32_t offset) uint32_t 3695 tools/finsig_dryos.c uint32_t padr = idx2adr(fw,k); // string ptr address uint32_t 3701 tools/finsig_dryos.c uint32_t ppadr = idx2adr(fw,j2); // string ptr ptr address uint32_t 3707 tools/finsig_dryos.c uint32_t fadr = idx2adr(fw,j3-offset); uint32_t 3730 tools/finsig_dryos.c int match_strsig15a(firmware *fw, int k, uint32_t sadr, uint32_t offset) uint32_t 3734 tools/finsig_dryos.c uint32_t padr; uint32_t 3746 tools/finsig_dryos.c uint32_t fa = idx2adr(fw,j2); uint32_t 3766 tools/finsig_dryos.c uint32_t nm0 = *((uint32_t*)sig->ev_name); uint32_t 3770 tools/finsig_dryos.c uint32_t padr; uint32_t 3780 tools/finsig_dryos.c uint32_t fa = idx2adr(fw,j2); uint32_t 3826 tools/finsig_dryos.c uint32_t fadr = 0; uint32_t 3882 tools/finsig_dryos.c uint32_t fadr = func_names[j].val+neg*(ofst&0xff)*4; uint32_t 3913 tools/finsig_dryos.c int match_strsig23a(firmware *fw, int k, uint32_t sadr, uint32_t maxdist) uint32_t 3917 tools/finsig_dryos.c uint32_t padr; uint32_t 3935 tools/finsig_dryos.c uint32_t fa = idx2adr(fw,j2); uint32_t 3984 tools/finsig_dryos.c uint32_t sadr = idx2adr(fw,j); // string address uint32_t 3990 tools/finsig_dryos.c uint32_t pval = LDR2val(fw,j1); uint32_t 4003 tools/finsig_dryos.c uint32_t pval = ADR2adr(fw,j1); uint32_t 4045 tools/finsig_dryos.c uint32_t fadr = followBranch2(fw,func_names[j].val,sig->offset); uint32_t 4102 tools/finsig_dryos.c uint32_t *p; uint32_t 4176 tools/finsig_dryos.c uint32_t *p1 = 0; uint32_t 4430 tools/finsig_dryos.c int match_modelist(firmware *fw, int k, uint32_t fadr, __attribute__ ((unused))uint32_t v2) uint32_t 4450 tools/finsig_dryos.c static uint32_t FlashParamsTable_address = 0; uint32_t 4452 tools/finsig_dryos.c int match_FlashParamsTable2(firmware *fw, int k, uint32_t v1, __attribute__ ((unused))uint32_t v2) uint32_t 4462 tools/finsig_dryos.c int match_FlashParamsTable(firmware *fw, int k, __attribute__ ((unused))uint32_t v1, __attribute__ ((unused))uint32_t v2) uint32_t 4532 tools/finsig_dryos.c uint32_t raw_width = 0; uint32_t 4533 tools/finsig_dryos.c uint32_t raw_height = 0; uint32_t 4534 tools/finsig_dryos.c uint32_t kw=0, kh=0; uint32_t 4672 tools/finsig_dryos.c uint32_t fadr = func_names[k].val; uint32_t 4714 tools/finsig_dryos.c uint32_t fadr = fwval(fw,k); uint32_t 4718 tools/finsig_dryos.c uint32_t sadr = fwval(fw,k2); uint32_t 4742 tools/finsig_dryos.c uint32_t fadr = func_names[k].val; uint32_t 4761 tools/finsig_dryos.c uint32_t find_viewport_address(firmware *fw, int *kout) uint32_t 4773 tools/finsig_dryos.c uint32_t v1 = LDR2val(fw,k1); uint32_t 4774 tools/finsig_dryos.c uint32_t v2 = LDR2val(fw,k1+1); uint32_t 4791 tools/finsig_dryos.c uint32_t v1 = LDR2val(fw,k); uint32_t 4799 tools/finsig_dryos.c uint32_t v1 = LDR2val(fw,k+1); uint32_t 4811 tools/finsig_dryos.c uint32_t r = fw->buf[k] & 0x000F0000; // Register uint32_t 4827 tools/finsig_dryos.c uint32_t r = fw->buf[k] & 0x000F0000; // Register uint32_t 4831 tools/finsig_dryos.c uint32_t fadr = fw->buf[k+1]&0xFFF; uint32_t 4862 tools/finsig_dryos.c uint32_t adr,where; uint32_t 4868 tools/finsig_dryos.c uint32_t a; uint32_t 4939 tools/finsig_dryos.c uint32_t v = find_viewport_address(fw,&k); uint32_t 4962 tools/finsig_dryos.c uint32_t reg = fw->buf[k+fbd[f][2]] & 0x000F0000; // Index register used uint32_t 4968 tools/finsig_dryos.c uint32_t adr = LDR2val(fw,ka); uint32_t 4973 tools/finsig_dryos.c uint32_t ofst = fw->buf[k1] & 0x00000FFF; uint32_t 4992 tools/finsig_dryos.c uint32_t v1 = LDR2val(fw,k-1); uint32_t 5015 tools/finsig_dryos.c void print_stubs_min(firmware *fw, const char *name, uint32_t fadr, uint32_t atadr) uint32_t 5037 tools/finsig_dryos.c uint32_t exm_typ_tbl=0, exm_typ_cnt=0; uint32_t 5044 tools/finsig_dryos.c uint32_t n; uint32_t 5065 tools/finsig_dryos.c uint32_t u, us; uint32_t 5066 tools/finsig_dryos.c uint32_t exm_typ_tbl_orig = 0; uint32_t 5141 tools/finsig_dryos.c int match_levent_table(firmware *fw, int k, __attribute__ ((unused))uint32_t v1, __attribute__ ((unused))uint32_t v2) uint32_t 5147 tools/finsig_dryos.c uint32_t levent_tbl = idx2adr(fw,k); uint32_t 5148 tools/finsig_dryos.c void write_levent_table_dump(firmware*, uint32_t); uint32_t 5155 tools/finsig_dryos.c int match_movie_status(firmware *fw, int k, __attribute__ ((unused))uint32_t v1, __attribute__ ((unused))uint32_t v2) uint32_t 5164 tools/finsig_dryos.c uint32_t base = LDR2val(fw,k); uint32_t 5165 tools/finsig_dryos.c uint32_t ofst = fw->buf[k+4] & 0x00000FFF; uint32_t 5177 tools/finsig_dryos.c uint32_t base = LDR2val(fw,k+1); uint32_t 5178 tools/finsig_dryos.c uint32_t ofst = fw->buf[k+4] & 0x00000FFF; uint32_t 5190 tools/finsig_dryos.c uint32_t base = LDR2val(fw,k); uint32_t 5191 tools/finsig_dryos.c uint32_t ofst = fwOp2(fw,k+4); uint32_t 5198 tools/finsig_dryos.c int match_full_screen_refresh(firmware *fw, int k, __attribute__ ((unused))uint32_t v1, __attribute__ ((unused))uint32_t v2) uint32_t 5206 tools/finsig_dryos.c uint32_t base = LDR2val(fw,k); uint32_t 5212 tools/finsig_dryos.c int match_canon_shoot_menu_active(firmware *fw, int k, __attribute__ ((unused))uint32_t v1, __attribute__ ((unused))uint32_t v2) uint32_t 5220 tools/finsig_dryos.c uint32_t base = LDR2val(fw,k); uint32_t 5221 tools/finsig_dryos.c uint32_t ofst = fw->buf[k+1] & 0x00000FFF; uint32_t 5231 tools/finsig_dryos.c uint32_t base = LDR2val(fw,k); uint32_t 5232 tools/finsig_dryos.c uint32_t ofst = fw->buf[k+1] & 0x00000FFF; uint32_t 5238 tools/finsig_dryos.c int match_playrec_mode(firmware *fw, int k, __attribute__ ((unused))uint32_t v1, __attribute__ ((unused))uint32_t v2) uint32_t 5256 tools/finsig_dryos.c uint32_t base = LDR2val(fw,k); uint32_t 5257 tools/finsig_dryos.c uint32_t ofst = fw->buf[k+1] & 0x00000FFF; uint32_t 5263 tools/finsig_dryos.c int match_some_flag_for_af_scan(firmware *fw, int k, __attribute__ ((unused))uint32_t v1, __attribute__ ((unused))uint32_t v2) uint32_t 5282 tools/finsig_dryos.c uint32_t base = LDR2val(fw,adr2idx(fw,followBranch(fw,idx2adr(fw,k),1))); uint32_t 5289 tools/finsig_dryos.c int match_palette_data(firmware *fw, int k, __attribute__ ((unused))uint32_t v1, __attribute__ ((unused))uint32_t v2) uint32_t 5311 tools/finsig_dryos.c uint32_t palette_size = LDR2val(fw,idx2+2); uint32_t 5320 tools/finsig_dryos.c uint32_t palette_size = ALUop2(fw,idx2+2); uint32_t 5330 tools/finsig_dryos.c int match_palette_data3(firmware *fw, int k, uint32_t palette_data, __attribute__ ((unused))uint32_t v2) uint32_t 5334 tools/finsig_dryos.c uint32_t palette_control = LDR2val(fw,k-6); uint32_t 5336 tools/finsig_dryos.c uint32_t fadr = find_inst_rev(fw, isSTMFD_LR, k-7, 30); uint32_t 5351 tools/finsig_dryos.c uint32_t palette_size = LDR2val(fw,idx+2); uint32_t 5365 tools/finsig_dryos.c int match_palette_data2(firmware *fw, int k, uint32_t v1, uint32_t v2) uint32_t 5374 tools/finsig_dryos.c uint32_t fadr = followBranch(fw, idx2adr(fw,k1), 0x01000001); uint32_t 5421 tools/finsig_dryos.c uint32_t fadr = followBranch(fw, idx2adr(fw,idx+13), 0x01000001); uint32_t 5425 tools/finsig_dryos.c uint32_t palette_control = LDR2val(fw,idx); uint32_t 5455 tools/finsig_dryos.c uint32_t palette_size = LDR2val(fw,idx+2); uint32_t 5473 tools/finsig_dryos.c uint32_t palette_control = LDR2val(fw,idx); uint32_t 5485 tools/finsig_dryos.c int match_viewport_address3(firmware *fw, int k, uint32_t v1, __attribute__ ((unused))uint32_t v2) uint32_t 5497 tools/finsig_dryos.c uint32_t a = LDR2val(fw,k1+1); uint32_t 5506 tools/finsig_dryos.c uint32_t a = LDR2val(fw,k1+1); uint32_t 5515 tools/finsig_dryos.c uint32_t a = LDR2val(fw,k1+1); uint32_t 5525 tools/finsig_dryos.c int match_viewport_address2(firmware *fw, int k, uint32_t v1, __attribute__ ((unused))uint32_t v2) uint32_t 5535 tools/finsig_dryos.c int match_viewport_address(firmware *fw, int k, uint32_t v1, __attribute__ ((unused))uint32_t v2) uint32_t 5560 tools/finsig_dryos.c uint32_t base = LDR2val(fw,k); uint32_t 5561 tools/finsig_dryos.c uint32_t fadr = followBranch(fw, idx2adr(fw,k+1), 1); uint32_t 5562 tools/finsig_dryos.c uint32_t ofst = fw->buf[adr2idx(fw,fadr)] & 0x00000FFF; uint32_t 5576 tools/finsig_dryos.c uint32_t base = LDR2val(fw,k); uint32_t 5582 tools/finsig_dryos.c uint32_t ofst = fw->buf[k1] & 0x00000FFF; uint32_t 5601 tools/finsig_dryos.c uint32_t fadr = 0; uint32_t 5670 tools/finsig_dryos.c uint32_t screen_lock = idx2adr(fw,k); uint32_t 5673 tools/finsig_dryos.c uint32_t fadr = followBranch2(fw,idx2adr(fw,v+3),0x01000001); uint32_t 5677 tools/finsig_dryos.c uint32_t reg = (fwval(fw,k1+1) & 0x0000F000) >> 12; uint32_t 5678 tools/finsig_dryos.c uint32_t adr = LDR2val(fw,k1+1); uint32_t 5684 tools/finsig_dryos.c uint32_t bitmap_buffer = LDR2val(fw,k2); uint32_t 5687 tools/finsig_dryos.c uint32_t active_bitmap_buffer = adr + (fwval(fw,k2+1) & 0xFFF); uint32_t 5705 tools/finsig_dryos.c int match_raw_buffer(firmware *fw, int k, uint32_t rb1, __attribute__ ((unused))uint32_t v2) uint32_t 5710 tools/finsig_dryos.c uint32_t rb2 = fwval(fw,k+1); uint32_t 5722 tools/finsig_dryos.c uint32_t rb2 = fwval(fw,k+3); uint32_t 5735 tools/finsig_dryos.c int match_fileiosem(firmware *fw, int k, uint32_t fadr, uint32_t nadr) uint32_t 5768 tools/finsig_dryos.c uint32_t base = LDR2val(fw,k); uint32_t 5774 tools/finsig_dryos.c uint32_t ofst = fw->buf[k1] & 0x00000FFF; uint32_t 5813 tools/finsig_dryos.c uint32_t sadr = find_str(fw, "CompressionRateAdjuster.c"); uint32_t 5832 tools/finsig_dryos.c uint32_t v = LDR2val(fw,k1) - ALUop2(fw,f); uint32_t 5860 tools/finsig_dryos.c uint32_t base = LDR2val(fw,k); uint32_t 5861 tools/finsig_dryos.c uint32_t ofst = fw->buf[k+1] & 0x00000FFF; uint32_t 5879 tools/finsig_dryos.c uint32_t ofst = fw->buf[k-1] & 0x00000FFF; uint32_t 5880 tools/finsig_dryos.c uint32_t reg = (fw->buf[k-1] & 0x000F0000) >> 16; uint32_t 5881 tools/finsig_dryos.c uint32_t ldr_inst = 0xE51F0000 | (reg << 12); uint32_t 5886 tools/finsig_dryos.c uint32_t base = LDR2val(fw,k1); uint32_t 5905 tools/finsig_dryos.c uint32_t base = LDR2val(fw,k); uint32_t 5922 tools/finsig_dryos.c uint32_t base = LDR2val(fw,k+k1); uint32_t 5990 tools/finsig_dryos.c uint32_t base = LDR2val(fw,k1); uint32_t 5999 tools/finsig_dryos.c uint32_t palette_data = search_fw(fw, match_palette_data, 0, 0, 1); uint32_t 6015 tools/finsig_dryos.c uint32_t v = find_viewport_address(fw,&k); uint32_t 6026 tools/finsig_dryos.c uint32_t rb1 =0, rb2 = 0; uint32_t 6103 tools/finsig_dryos.c uint32_t base = LDR2val(fw,k2); uint32_t 6126 tools/finsig_dryos.c uint32_t fadr = func_names[k].val; uint32_t 6130 tools/finsig_dryos.c uint32_t nadr = idx2adr(fw, k); uint32_t 6170 tools/finsig_dryos.c if ((uint32_t)k < (fw->size*4 - sizeof(ctypes))) uint32_t 6181 tools/finsig_dryos.c int match_nrflag3(firmware *fw, int k, uint32_t v1, __attribute__ ((unused))uint32_t v2) uint32_t 6302 tools/finsig_dryos.c uint32_t addr; // LED GPIO address uint32_t 6349 tools/finsig_dryos.c uint32_t l1 = LDR2val(fw,k1+j2); uint32_t 6396 tools/finsig_dryos.c uint32_t l1 = LDR2val(fw,k1+j2); uint32_t 6547 tools/finsig_dryos.c uint32_t o1 = fwval(fw,k1+j2)&0xfff; // may not be the correct way of determining the offset uint32_t 6548 tools/finsig_dryos.c uint32_t o2 = 0; uint32_t 6704 tools/finsig_dryos.c uint32_t o1 = fwval(fw,k1+j2)&0xfff; // may not be the correct way of determining the offset uint32_t 6705 tools/finsig_dryos.c uint32_t o2 = 0; uint32_t 6778 tools/finsig_dryos.c uint32_t u, v; uint32_t 6804 tools/finsig_dryos.c if ( (u > fw->base_copied) && ((u-fw->base_copied)/4 < (uint32_t)fw->size2)) uint32_t 6873 tools/finsig_dryos.c uint32_t r, sizeloc = 0, startloc = 0; uint32_t 6874 tools/finsig_dryos.c uint32_t ramsize = 0; uint32_t 6875 tools/finsig_dryos.c uint32_t ramstart = 0; uint32_t 7012 tools/finsig_dryos.c int match_propsig1a(firmware *fw, int k, uint32_t sadr, __attribute__ ((unused))uint32_t offset) uint32_t 7016 tools/finsig_dryos.c uint32_t padr; uint32_t 7031 tools/finsig_dryos.c uint32_t fadr = func_names[j].val; uint32_t 7043 tools/finsig_dryos.c uint32_t a = 0; uint32_t 7108 tools/finsig_dryos.c uint32_t used=0; uint32_t 7109 tools/finsig_dryos.c uint32_t hits[KNOWN_PROPSET_COUNT]; uint32_t 7111 tools/finsig_dryos.c memset(hits, 0, KNOWN_PROPSET_COUNT*sizeof(uint32_t)); uint32_t 7117 tools/finsig_dryos.c uint32_t n; uint32_t 7152 tools/finsig_dryos.c uint32_t fmax = 0; uint32_t 7219 tools/finsig_dryos.c void print_kval(firmware *fw, uint32_t tadr, int tsiz, int tlen, uint32_t ev, const char *name, char *sfx) uint32_t 7239 tools/finsig_dryos.c uint32_t b = (1 << (kval & 0x1F)); uint32_t 7247 tools/finsig_dryos.c void print_physw_raw_vals(firmware *fw, uint32_t tadr, int tsiz, int tlen) uint32_t 7251 tools/finsig_dryos.c uint32_t ev; uint32_t 7264 tools/finsig_dryos.c uint32_t b = (1 << (kval & 0x1F)); uint32_t 7275 tools/finsig_dryos.c uint32_t bits; uint32_t 7277 tools/finsig_dryos.c uint32_t fadr; uint32_t 7278 tools/finsig_dryos.c uint32_t ev; uint32_t 7285 tools/finsig_dryos.c uint32_t kshutter_min_bits = 0xFFFFFFFF; uint32_t 7287 tools/finsig_dryos.c void add_kinfo(int r, uint32_t b, const char *nm, uint32_t adr, uint32_t ev, int inv) uint32_t 7300 tools/finsig_dryos.c uint32_t add_kmval(firmware *fw, uint32_t tadr, int tsiz, int tlen, uint32_t ev, const char *name, uint32_t xtra) uint32_t 7304 tools/finsig_dryos.c uint32_t b = 0; uint32_t 7420 tools/finsig_dryos.c uint32_t tadr = search_saved_sig(fw, "GetSDProtect", match_GetSDProtect, 0, 1, 1); uint32_t 7430 tools/finsig_dryos.c uint32_t fadr = followBranch(fw,idx2adr(fw,k1),0x01000001); uint32_t 7442 tools/finsig_dryos.c uint32_t tsiz = 2; uint32_t 7445 tools/finsig_dryos.c uint32_t madr = fw->base + (fw->size*4-4); uint32_t 7450 tools/finsig_dryos.c uint32_t adr = LDR2val(fw,k); uint32_t 7457 tools/finsig_dryos.c uint32_t tlen = (madr - tadr) / 4; uint32_t 7504 tools/finsig_dryos.c uint32_t key_half = add_kmval(fw,tadr,tsiz,tlen,0,"KEY_SHOOT_HALF",0); uint32_t 7591 tools/finsig_dryos.c uint32_t nadr; uint32_t 7592 tools/finsig_dryos.c uint32_t eadr; uint32_t 7609 tools/finsig_dryos.c void add_func_name(char *n, uint32_t eadr, char *suffix) uint32_t 7646 tools/finsig_dryos.c void add_func_name2(firmware *fw, uint32_t nadr, uint32_t eadr, char *suffix) uint32_t 7659 tools/finsig_dryos.c int match_eventproc(firmware *fw, int k, uint32_t fadr, __attribute__ ((unused))uint32_t v2) uint32_t 7663 tools/finsig_dryos.c uint32_t adr = followBranch(fw,idx2adr(fw,k),0x01000001); uint32_t 7697 tools/finsig_dryos.c int match_registerproc2(firmware *fw, int k, uint32_t fadr, __attribute__ ((unused))uint32_t v2) uint32_t 7702 tools/finsig_dryos.c uint32_t adr = followBranch(fw,idx2adr(fw,k),0x01000001); uint32_t 7738 tools/finsig_dryos.c uint32_t k2 = LDR2val(fw,k1); uint32_t 7766 tools/finsig_dryos.c int match_registerproc(firmware *fw, int k, uint32_t fadr, __attribute__ ((unused))uint32_t v2) uint32_t 7770 tools/finsig_dryos.c uint32_t adr = followBranch(fw,idx2adr(fw,k+1),1); uint32_t 7779 tools/finsig_dryos.c int match_registerlists(firmware *fw, int k, uint32_t fadr, __attribute__ ((unused))uint32_t v2) uint32_t 7783 tools/finsig_dryos.c uint32_t adr = followBranch2(fw,idx2adr(fw,k+1),0x01000001); uint32_t 7803 tools/finsig_dryos.c uint32_t adr = followBranch2(fw,idx2adr(fw,k+1),0x01000001); uint32_t 7829 tools/finsig_dryos.c uint32_t fadr = func_names[j].val; uint32_t 7901 tools/finsig_dryos.c uint32_t findTaskAddress(firmware *fw, int k, int reg) uint32_t 7909 tools/finsig_dryos.c uint32_t adr = LDR2val(fw,k+o); uint32_t 7929 tools/finsig_dryos.c int match_createtask(firmware *fw, int k, uint32_t fadr, __attribute__ ((unused))uint32_t v2) uint32_t 7935 tools/finsig_dryos.c uint32_t adr = followBranch2(fw,idx2adr(fw,k),0x01000001); uint32_t 7941 tools/finsig_dryos.c uint32_t sadr = findTaskAddress(fw, k, 0); uint32_t 7984 tools/finsig_dryos.c uint32_t adr = ADR2adr(fw, idx); uint32_t 7995 tools/finsig_dryos.c uint32_t adr = ADR2adr(fw, idx); uint32_t 8003 tools/finsig_dryos.c int save_ptp_handler_func(uint32_t op,uint32_t handler) { uint32_t 8024 tools/finsig_dryos.c uint32_t op=0; uint32_t 8025 tools/finsig_dryos.c uint32_t handler=0; uint32_t 8055 tools/finsig_dryos.c int match_ptp_handlers(firmware *fw, int k, uint32_t fadr, __attribute__ ((unused))uint32_t v2) uint32_t 8069 tools/finsig_dryos.c uint32_t op=fwval(fw,k+i*2); uint32_t 8070 tools/finsig_dryos.c uint32_t handler=fwval(fw,k+i*2+1); uint32_t 8085 tools/finsig_dryos.c uint32_t adr = followBranch2(fw,idx2adr(fw,k),0x01000001); uint32_t 8104 tools/finsig_dryos.c void write_levent_table_dump(firmware *fw, uint32_t tadr) uint32_t 8107 tools/finsig_dryos.c uint32_t lid = 0; uint32_t 8108 tools/finsig_dryos.c uint32_t val; uint32_t 8119 tools/finsig_dryos.c val = *(uint32_t*)adr2ptr(fw, tadr); uint32_t 8120 tools/finsig_dryos.c if ((val == 0xffffffff) || (val == 0) || (*(uint32_t*)adr2ptr(fw, tadr+4) < lid)) { uint32_t 8123 tools/finsig_dryos.c lid = *(uint32_t*)adr2ptr(fw, tadr+4); uint32_t 8126 tools/finsig_dryos.c fprintf(f,"0x%08x 0x%04x 0x%08x %s\n",tadr,lid,*(uint32_t*)adr2ptr(fw, tadr+8),str); uint32_t 8157 tools/finsig_dryos.c uint32_t j = idx2adr(fw,fw->fwver_idx); uint32_t 8159 tools/finsig_dryos.c uint32_t k = j + c - fw->firmware_ver_str; uint32_t 8273 tools/finsig_dryos.c uint32_t u = fw->base+fw->fsize*4; uint32_t 95 tools/finsig_thumb2.c uint32_t val; uint32_t 589 tools/finsig_thumb2.c uint32_t rom_adr; // location of data in ROM, if copied uint32_t 590 tools/finsig_thumb2.c uint32_t ram_adr; // location of data in RAM uint32_t 591 tools/finsig_thumb2.c uint32_t size; uint32_t 603 tools/finsig_thumb2.c uint32_t val; uint32_t 605 tools/finsig_thumb2.c uint32_t base; // if stub is found as ptr + offset, record uint32_t 606 tools/finsig_thumb2.c uint32_t offset; uint32_t 607 tools/finsig_thumb2.c uint32_t ref_adr; // code address near where value found (TODO may want list) uint32_t 676 tools/finsig_thumb2.c uint32_t get_misc_val_value(const char *name) uint32_t 685 tools/finsig_thumb2.c void save_misc_val(const char *name, uint32_t base, uint32_t offset, uint32_t ref_adr) uint32_t 698 tools/finsig_thumb2.c void save_misc_val_blobs(const char *name, misc_blob_t *blobs, uint32_t ref_adr) uint32_t 740 tools/finsig_thumb2.c uint32_t get_saved_sig_val(const char *name) uint32_t 753 tools/finsig_thumb2.c int find_saved_sig_index_by_adr(uint32_t adr) uint32_t 770 tools/finsig_thumb2.c sig_entry_t* find_saved_sig_by_val(uint32_t val) uint32_t 788 tools/finsig_thumb2.c void save_sig(firmware *fw, const char *name, uint32_t val) uint32_t 807 tools/finsig_thumb2.c void add_func_name(firmware *fw, char *n, uint32_t eadr, char *suffix) uint32_t 862 tools/finsig_thumb2.c uint32_t save_sig_veneers(firmware *fw, const char *name, uint32_t adr) uint32_t 871 tools/finsig_thumb2.c uint32_t b_adr; uint32_t 894 tools/finsig_thumb2.c int save_sig_with_j(firmware *fw, char *name, uint32_t adr) uint32_t 911 tools/finsig_thumb2.c int find_next_sig_call_ex(firmware *fw, iter_state_t *is, uint32_t max_offset, const char *name, uint32_t flags) uint32_t 913 tools/finsig_thumb2.c uint32_t adr=get_saved_sig_val(name); uint32_t 951 tools/finsig_thumb2.c int find_next_sig_call(firmware *fw, iter_state_t *is, uint32_t max_offset, const char *name) uint32_t 960 tools/finsig_thumb2.c uint32_t adr=get_branch_call_insn_target(fw,is); uint32_t 966 tools/finsig_thumb2.c uint32_t sig_adr=get_saved_sig_val(name); uint32_t 1024 tools/finsig_thumb2.c uint32_t adr=get_saved_sig_val(rule->ref_name); uint32_t 1037 tools/finsig_thumb2.c uint32_t find_str_arg_call(firmware *fw, iter_state_t *is, sig_rule_t *rule); uint32_t 1045 tools/finsig_thumb2.c uint32_t str_adr = find_str_bytes_main_fw(fw,rule->ref_name); uint32_t 1060 tools/finsig_thumb2.c uint32_t adr=get_branch_call_insn_target(fw,is); uint32_t 1079 tools/finsig_thumb2.c uint32_t e_to_evp=get_saved_sig_val("ExportToEventProcedure_FW"); uint32_t 1086 tools/finsig_thumb2.c uint32_t reg_evp=0; uint32_t 1102 tools/finsig_thumb2.c uint32_t str_adr = find_str_bytes_main_fw(fw,rule->ref_name); // note this string may appear more than once, assuming want first uint32_t 1108 tools/finsig_thumb2.c uint32_t reg_evp_alt1=0; uint32_t 1109 tools/finsig_thumb2.c uint32_t reg_evp_tbl=0; uint32_t 1111 tools/finsig_thumb2.c uint32_t dd_enable_p=0; uint32_t 1123 tools/finsig_thumb2.c uint32_t regs[4]; uint32_t 1141 tools/finsig_thumb2.c uint32_t regs[4]; uint32_t 1155 tools/finsig_thumb2.c uint32_t reg_evp_alt2=0; uint32_t 1157 tools/finsig_thumb2.c uint32_t str_adr = find_str_bytes_main_fw(fw,rule->ref_name); uint32_t 1163 tools/finsig_thumb2.c uint32_t reg_evp_alt1=get_saved_sig_val("RegisterEventProcedure_alt1"); uint32_t 1173 tools/finsig_thumb2.c uint32_t regs[4]; uint32_t 1197 tools/finsig_thumb2.c uint32_t str_adr = find_str_bytes_main_fw(fw,rule->ref_name); uint32_t 1203 tools/finsig_thumb2.c uint32_t reg_evp_alt1=get_saved_sig_val("RegisterEventProcedure_alt1"); uint32_t 1204 tools/finsig_thumb2.c uint32_t reg_evp_alt2=get_saved_sig_val("RegisterEventProcedure_alt2"); uint32_t 1206 tools/finsig_thumb2.c uint32_t mecha_unreg=0; uint32_t 1216 tools/finsig_thumb2.c uint32_t reg_call=get_branch_call_insn_target(fw,is); uint32_t 1222 tools/finsig_thumb2.c uint32_t regs[4]; uint32_t 1248 tools/finsig_thumb2.c uint32_t tbl=LDR_PC2val(fw,is->insn); uint32_t 1263 tools/finsig_thumb2.c uint32_t ref_adr = get_saved_sig_val(rule->ref_name); uint32_t 1265 tools/finsig_thumb2.c uint32_t cadr; uint32_t 1276 tools/finsig_thumb2.c uint32_t b_adr = get_branch_call_insn_target(fw,is); uint32_t 1292 tools/finsig_thumb2.c uint32_t str_adr = find_str_bytes_main_fw(fw,rule->ref_name); uint32_t 1304 tools/finsig_thumb2.c uint32_t adr=get_branch_call_insn_target(fw,is); uint32_t 1305 tools/finsig_thumb2.c uint32_t adr2 = get_saved_sig_val("CreateTaskStrictly"); uint32_t 1338 tools/finsig_thumb2.c uint32_t adr = get_branch_call_insn_target(fw,is); uint32_t 1339 tools/finsig_thumb2.c uint32_t adr2 = get_saved_sig_val("CreateTask"); uint32_t 1382 tools/finsig_thumb2.c uint32_t addr=get_branch_call_insn_target(fw,is); uint32_t 1492 tools/finsig_thumb2.c uint32_t f1=LDR_PC2val(fw,is->insn); uint32_t 1531 tools/finsig_thumb2.c uint32_t base=LDR_PC2val(fw,is->insn); uint32_t 1532 tools/finsig_thumb2.c uint32_t reg=is->insn->detail->arm.operands[0].reg; uint32_t 1544 tools/finsig_thumb2.c uint32_t off=is->insn->detail->arm.operands[1].mem.disp; uint32_t 1546 tools/finsig_thumb2.c save_misc_val("imager_active",base,off,(uint32_t)is->insn->address); uint32_t 1554 tools/finsig_thumb2.c uint32_t init_adr = (uint32_t)is->adr | is->thumb; uint32_t 1584 tools/finsig_thumb2.c uint32_t adr = LDR_PC2val(fw,is->insn); uint32_t 1659 tools/finsig_thumb2.c uint32_t regs[4]; uint32_t 1691 tools/finsig_thumb2.c uint32_t physw_run=0; uint32_t 1700 tools/finsig_thumb2.c save_misc_val("physw_run",physw_run,0,(uint32_t)is->insn->address); uint32_t 1716 tools/finsig_thumb2.c uint32_t sleeptask=get_saved_sig_val("SleepTask"); uint32_t 1721 tools/finsig_thumb2.c uint32_t f=get_branch_call_insn_target(fw,is); uint32_t 1726 tools/finsig_thumb2.c uint32_t f2=get_direct_jump_target(fw,fw->is); uint32_t 1745 tools/finsig_thumb2.c save_misc_val("physw_sleep_delay",physw_run,is->insn->detail->arm.operands[1].mem.disp,(uint32_t)is->insn->address); uint32_t 1780 tools/finsig_thumb2.c uint32_t physw_status=LDR_PC2val(fw,is->insn); uint32_t 1782 tools/finsig_thumb2.c save_misc_val("physw_status",physw_status,0,(uint32_t)is->insn->address); uint32_t 1783 tools/finsig_thumb2.c save_sig(fw,"kbd_p1_f_cont",(uint32_t)(is->insn->address) | is->thumb); uint32_t 1819 tools/finsig_thumb2.c uint32_t adr = find_last_call_from_func(fw,is,18,50); uint32_t 1838 tools/finsig_thumb2.c uint32_t fadr = get_branch_call_insn_target(fw,is); uint32_t 1903 tools/finsig_thumb2.c uint32_t sem_adr=0; uint32_t 1929 tools/finsig_thumb2.c save_misc_val("fileio_semaphore",sem_adr,0,(uint32_t)is->insn->address); uint32_t 1939 tools/finsig_thumb2.c uint32_t str_adr = find_str_bytes_main_fw(fw,rule->ref_name); uint32_t 1952 tools/finsig_thumb2.c uint32_t fadr=0; uint32_t 1980 tools/finsig_thumb2.c uint32_t str_adr = find_str_bytes_main_fw(fw,rule->ref_name); uint32_t 1991 tools/finsig_thumb2.c uint32_t adr=get_branch_call_insn_target(fw,is); uint32_t 2073 tools/finsig_thumb2.c uint32_t str_adr = find_str_bytes_main_fw(fw,rule->ref_name); uint32_t 2086 tools/finsig_thumb2.c uint32_t adr=get_branch_call_insn_target(fw,is); uint32_t 2107 tools/finsig_thumb2.c uint32_t find_call_near_str(firmware *fw, iter_state_t *is, sig_rule_t *rule); uint32_t 2111 tools/finsig_thumb2.c uint32_t str_adr = find_str_bytes_main_fw(fw,rule->ref_name); uint32_t 2127 tools/finsig_thumb2.c uint32_t call_adr = find_call_near_str(fw,is,rule); uint32_t 2145 tools/finsig_thumb2.c int save_sig_match_call(firmware* fw, sig_rule_t *rule, uint32_t call_adr) uint32_t 2154 tools/finsig_thumb2.c uint32_t str_adr; uint32_t 2171 tools/finsig_thumb2.c uint32_t ref_adr = iter_state_adr(is); uint32_t 2175 tools/finsig_thumb2.c uint32_t call_adr = iter_state_adr(fw->is); uint32_t 2186 tools/finsig_thumb2.c uint32_t call_adr = iter_state_adr(fw->is); uint32_t 2189 tools/finsig_thumb2.c uint32_t b_adr = get_branch_call_insn_target(fw,fw->is); uint32_t 2203 tools/finsig_thumb2.c uint32_t sig_adr=get_saved_sig_val(rule->name); uint32_t 2206 tools/finsig_thumb2.c uint32_t call_adr = find_call_near_str(fw,is,rule); uint32_t 2223 tools/finsig_thumb2.c uint32_t str_adr = find_str_bytes_main_fw(fw,rule->ref_name); uint32_t 2228 tools/finsig_thumb2.c uint32_t fadr=0; uint32_t 2266 tools/finsig_thumb2.c uint32_t str_adr = find_str_bytes_main_fw(fw,rule->ref_name); uint32_t 2277 tools/finsig_thumb2.c uint32_t regs[4]; uint32_t 2300 tools/finsig_thumb2.c uint32_t adr=get_branch_call_insn_target(fw,is); uint32_t 2330 tools/finsig_thumb2.c uint32_t str_adr = find_str_bytes_main_fw(fw,rule->ref_name); uint32_t 2346 tools/finsig_thumb2.c uint32_t adr=(uint32_t)(fw->is->insn->address) | is->thumb; uint32_t 2426 tools/finsig_thumb2.c uint32_t adr=get_branch_call_insn_target(fw,is); uint32_t 2470 tools/finsig_thumb2.c uint32_t adr=get_branch_call_insn_target(fw,is); uint32_t 2513 tools/finsig_thumb2.c uint32_t j_tgt=get_direct_jump_target(fw,is); uint32_t 2535 tools/finsig_thumb2.c if(fw_search_insn(fw,is,search_disasm_str_ref,0,"A/OpLogErr.txt",(uint32_t)is->adr+260)) { uint32_t 2565 tools/finsig_thumb2.c uint32_t str_adr = find_str_bytes_main_fw(fw,rule->ref_name); uint32_t 2589 tools/finsig_thumb2.c uint32_t j_tgt=get_direct_jump_target(fw,is); uint32_t 2622 tools/finsig_thumb2.c uint32_t str_adr = find_str_bytes_main_fw(fw,rule->ref_name); uint32_t 2646 tools/finsig_thumb2.c uint32_t adr = iter_state_adr(is); uint32_t 2653 tools/finsig_thumb2.c uint32_t regs[4]; uint32_t 2724 tools/finsig_thumb2.c uint32_t call_adr = find_call_near_str(fw,is,rule); uint32_t 2755 tools/finsig_thumb2.c uint32_t ref_pdx=get_saved_sig_val("PrepareDirectory_x"); uint32_t 2764 tools/finsig_thumb2.c uint32_t adr=(uint32_t)is->adr|is->thumb; uint32_t 2780 tools/finsig_thumb2.c uint32_t pdx=get_branch_call_insn_target(fw,is); uint32_t 2820 tools/finsig_thumb2.c uint32_t str_adr = find_str_bytes_main_fw(fw,rule->ref_name); uint32_t 2839 tools/finsig_thumb2.c uint32_t regs[4]; uint32_t 2876 tools/finsig_thumb2.c uint32_t regs[4]; uint32_t 2893 tools/finsig_thumb2.c uint32_t str_adr = find_str_bytes_main_fw(fw,rule->ref_name); uint32_t 2901 tools/finsig_thumb2.c uint32_t end_adr = ADR_ALIGN4(str_adr) + 2048; uint32_t 2902 tools/finsig_thumb2.c while(find_next_sig_call(fw,is,end_adr - (uint32_t)is->adr,"DeleteFile_Fut")) { uint32_t 2920 tools/finsig_thumb2.c uint32_t regs[4]; uint32_t 2949 tools/finsig_thumb2.c uint32_t str_adr = find_str_bytes_main_fw(fw,rule->ref_name); uint32_t 2985 tools/finsig_thumb2.c uint32_t str_adr = find_str_bytes_main_fw(fw,rule->ref_name); uint32_t 3018 tools/finsig_thumb2.c uint32_t str_adr = find_str_bytes_main_fw(fw,rule->ref_name); uint32_t 3068 tools/finsig_thumb2.c uint32_t str_adr = find_str_bytes_main_fw(fw,"EFTool.c"); uint32_t 3107 tools/finsig_thumb2.c uint32_t str_adr = find_str_bytes_main_fw(fw,rule->ref_name); uint32_t 3124 tools/finsig_thumb2.c uint32_t regs[4]; uint32_t 3125 tools/finsig_thumb2.c uint32_t found_regs = get_call_const_args(fw,is,6,regs); uint32_t 3167 tools/finsig_thumb2.c uint32_t fadr = get_branch_call_insn_target(fw,is); uint32_t 3170 tools/finsig_thumb2.c save_misc_val("active_bitmap_buffer",desc.adr_adj,desc.off,(uint32_t)is->insn->address); uint32_t 3182 tools/finsig_thumb2.c save_misc_val("bitmap_buffer",desc.adr_adj,is->insn->detail->arm.operands[2].imm,(uint32_t)is->insn->address); uint32_t 3201 tools/finsig_thumb2.c uint32_t adr[2], fnd[2]; uint32_t 3212 tools/finsig_thumb2.c fnd[0]=(uint32_t)is->insn->address; uint32_t 3218 tools/finsig_thumb2.c fnd[1]=(uint32_t)is->insn->address; uint32_t 3223 tools/finsig_thumb2.c uint32_t ladr = adr[n]-fw->data_start+fw->data_init_start; uint32_t 3253 tools/finsig_thumb2.c uint32_t str_adr = find_str_bytes_main_fw(fw,rule->ref_name); uint32_t 3261 tools/finsig_thumb2.c if(!fw_search_insn(fw,is,search_disasm_str_ref,0,rule->ref_name,(uint32_t)is->adr+SEARCH_NEAR_REF_RANGE)) { uint32_t 3275 tools/finsig_thumb2.c uint32_t adr=(uint32_t)(fw->is->insn->address) | is->thumb; uint32_t 3289 tools/finsig_thumb2.c uint32_t str_adr = find_str_bytes_main_fw(fw,rule->ref_name); uint32_t 3297 tools/finsig_thumb2.c if(!fw_search_insn(fw,is,search_disasm_str_ref,0,rule->ref_name,(uint32_t)is->adr+SEARCH_NEAR_REF_RANGE)) { uint32_t 3316 tools/finsig_thumb2.c return save_sig_with_j(fw,rule->name,(uint32_t)(fw->is->insn->address) | is->thumb); uint32_t 3359 tools/finsig_thumb2.c uint32_t regs[4]; uint32_t 3372 tools/finsig_thumb2.c uint32_t uv[3] = {0,0,0}; uint32_t 3383 tools/finsig_thumb2.c uint32_t u = LDR_PC2val(fw,is->insn); uint32_t 3395 tools/finsig_thumb2.c uint32_t bsize, bloadedto, badr, u; uint32_t 3452 tools/finsig_thumb2.c uint32_t b_tgt = get_branch_call_insn_target(fw,is); uint32_t 3466 tools/finsig_thumb2.c uint32_t regs[4]; uint32_t 3485 tools/finsig_thumb2.c uint32_t fadr = find_last_call_from_func(fw,is,20,42); uint32_t 3496 tools/finsig_thumb2.c uint32_t regs[4]; uint32_t 3506 tools/finsig_thumb2.c uint32_t dadr = regs[1]; uint32_t 3507 tools/finsig_thumb2.c save_misc_val("omar_init_data",dadr,0,(uint32_t)is->insn->address); uint32_t 3511 tools/finsig_thumb2.c uint32_t dst = fw_u32(fw,dadr + i*12); uint32_t 3512 tools/finsig_thumb2.c uint32_t src = fw_u32(fw,dadr + i*12 + 4); uint32_t 3513 tools/finsig_thumb2.c uint32_t bsize = fw_u32(fw,dadr + i*12 + 8); uint32_t 3560 tools/finsig_thumb2.c uint32_t regs[4]; uint32_t 3578 tools/finsig_thumb2.c uint32_t regs[4]; uint32_t 3596 tools/finsig_thumb2.c uint32_t regs[4]; uint32_t 3609 tools/finsig_thumb2.c if(fw_search_insn(fw,is,search_disasm_str_ref,0,"Occured Time %s\n",(uint32_t)is->adr+170)) { uint32_t 3704 tools/finsig_thumb2.c uint32_t adr=LDR_PC2val(fw,is->insn); uint32_t 3709 tools/finsig_thumb2.c uint32_t *p=(uint32_t *)adr2ptr(fw,adr); uint32_t 3719 tools/finsig_thumb2.c save_misc_val(rule->name,adr,0,(uint32_t)is->insn->address); uint32_t 3770 tools/finsig_thumb2.c uint32_t adr=LDR_PC2val(fw,is->insn); uint32_t 3775 tools/finsig_thumb2.c save_misc_val(rule->name,adr,0,(uint32_t)is->insn->address); uint32_t 3780 tools/finsig_thumb2.c uint32_t str_adr = find_str_bytes_main_fw(fw,rule->ref_name); uint32_t 3798 tools/finsig_thumb2.c uint32_t regs[4]; uint32_t 3811 tools/finsig_thumb2.c save_misc_val(rule->name,regs[0],0,(uint32_t)is->insn->address); uint32_t 3820 tools/finsig_thumb2.c uint32_t ref=get_saved_sig_val(rule->ref_name); uint32_t 3880 tools/finsig_thumb2.c uint32_t adr = get_branch_call_insn_target(fw,is) - 4; uint32_t 3922 tools/finsig_thumb2.c uint32_t v; uint32_t 3923 tools/finsig_thumb2.c uint32_t ref=0;get_saved_sig_val(rule->ref_name); uint32_t 3945 tools/finsig_thumb2.c save_misc_val(rule->name,is->insn->detail->arm.operands[2].imm,0,(uint32_t)is->insn->address); uint32_t 3953 tools/finsig_thumb2.c uint32_t str_adr = find_str_bytes_main_fw(fw,rule->ref_name); uint32_t 4067 tools/finsig_thumb2.c uint32_t adr = get_branch_call_insn_target(fw,is); uint32_t 4086 tools/finsig_thumb2.c uint32_t adr=LDR_PC2val(fw,is->insn); uint32_t 4095 tools/finsig_thumb2.c save_misc_val(rule->name,adr,0,(uint32_t)is->insn->address); uint32_t 4120 tools/finsig_thumb2.c save_misc_val(rule->name,is->insn->detail->arm.operands[1].imm,0,(uint32_t)is->insn->address); uint32_t 4126 tools/finsig_thumb2.c uint32_t str_adr = find_str_bytes_main_fw(fw,rule->ref_name); uint32_t 4131 tools/finsig_thumb2.c uint32_t adr=0; uint32_t 4231 tools/finsig_thumb2.c uint32_t base=LDR_PC2val(fw,is->insn); uint32_t 4250 tools/finsig_thumb2.c save_misc_val(rule->name,base,is->insn->detail->arm.operands[1].mem.disp,(uint32_t)is->insn->address); uint32_t 4276 tools/finsig_thumb2.c uint32_t base=LDR_PC2val(fw,is->insn); uint32_t 4301 tools/finsig_thumb2.c save_misc_val(rule->name,base,is->insn->detail->arm.operands[1].mem.disp,(uint32_t)is->insn->address); uint32_t 4319 tools/finsig_thumb2.c uint32_t val=is->insn->detail->arm.operands[1].imm; uint32_t 4323 tools/finsig_thumb2.c save_misc_val(rule->name,val,0,(uint32_t)is->insn->address); uint32_t 4351 tools/finsig_thumb2.c uint32_t val=is->insn->detail->arm.operands[1].imm; uint32_t 4355 tools/finsig_thumb2.c save_misc_val(rule->name,val,0,(uint32_t)is->insn->address); uint32_t 4379 tools/finsig_thumb2.c uint32_t adr=LDR_PC2val(fw,is->insn); uint32_t 4385 tools/finsig_thumb2.c save_misc_val(rule->name,adr,0,(uint32_t)is->insn->address); uint32_t 4413 tools/finsig_thumb2.c uint32_t adr=LDR_PC2val(fw,is->insn); uint32_t 4419 tools/finsig_thumb2.c save_misc_val(rule->name,adr,0,(uint32_t)is->insn->address); uint32_t 4449 tools/finsig_thumb2.c uint32_t fadr=is->adr; uint32_t 4467 tools/finsig_thumb2.c uint32_t adr=LDR_PC2val(fw,is->insn); uint32_t 4497 tools/finsig_thumb2.c uint32_t disp = is->insn->detail->arm.operands[1].mem.disp; uint32_t 4510 tools/finsig_thumb2.c uint32_t fadr=is->adr; uint32_t 4538 tools/finsig_thumb2.c uint32_t fadr=is->adr; uint32_t 4565 tools/finsig_thumb2.c uint32_t adr = get_misc_val_value(rule->ref_name); uint32_t 4569 tools/finsig_thumb2.c uint32_t *vp = (uint32_t *)adr2ptr_with_data(fw,adr); uint32_t 4600 tools/finsig_thumb2.c save_misc_val(rule->name,desc.adr_adj,desc.off,(uint32_t)is->insn->address); uint32_t 4622 tools/finsig_thumb2.c save_misc_val(rule->name,desc.adr_adj,desc.off,(uint32_t)is->insn->address); uint32_t 4649 tools/finsig_thumb2.c uint32_t fadr = get_branch_call_insn_target(fw,is); uint32_t 4669 tools/finsig_thumb2.c uint32_t adr=LDR_PC2val(fw,is->insn); uint32_t 4682 tools/finsig_thumb2.c save_misc_val(rule->name,adr,0,(uint32_t)is->insn->address); uint32_t 4695 tools/finsig_thumb2.c uint32_t fadr=0; uint32_t 4727 tools/finsig_thumb2.c uint32_t pal_base=LDR_PC2val(fw,is->insn); uint32_t 4735 tools/finsig_thumb2.c save_misc_val(rule->name,pal_base,0,(uint32_t)is->insn->address); uint32_t 4748 tools/finsig_thumb2.c (uint32_t)is->insn->address); uint32_t 4772 tools/finsig_thumb2.c (uint32_t)is->insn->address); uint32_t 4818 tools/finsig_thumb2.c uint32_t base = LDR_PC2val(fw,is->insn); uint32_t 4835 tools/finsig_thumb2.c save_misc_val(rule->name,base,is->insn->detail->arm.operands[2].mem.disp + 4,(uint32_t)is->insn->address); uint32_t 4842 tools/finsig_thumb2.c uint32_t call_adr = find_str_arg_call(fw,is,rule); uint32_t 4865 tools/finsig_thumb2.c uint32_t adr = LDR_PC2val(fw,fw->is->insn); uint32_t 4870 tools/finsig_thumb2.c save_misc_val(rule->name,adr + disp,disp,(uint32_t)fw->is->insn->address); uint32_t 4890 tools/finsig_thumb2.c uint32_t adr = LDR_PC2val(fw,is->insn); uint32_t 4896 tools/finsig_thumb2.c uint32_t ref_adr = (uint32_t)is->insn->address; uint32_t 4935 tools/finsig_thumb2.c save_misc_val(rule->name,(uint32_t)is->insn->address | is->thumb,0,0); uint32_t 4955 tools/finsig_thumb2.c uint32_t regs[4]; uint32_t 4961 tools/finsig_thumb2.c save_misc_val(rule->name,regs[1],0,(uint32_t)fw->is->insn->address); // fw is has backtracked address uint32_t 4978 tools/finsig_thumb2.c uint32_t regs[4]; uint32_t 4984 tools/finsig_thumb2.c save_misc_val(rule->name,regs[1],0,(uint32_t)fw->is->insn->address); // fw is has backtracked address uint32_t 4993 tools/finsig_thumb2.c uint32_t fadr=is->adr; uint32_t 4998 tools/finsig_thumb2.c uint32_t adr=LDR_PC2val(fw,is->insn); uint32_t 5023 tools/finsig_thumb2.c uint32_t find_call_near_str(firmware *fw, iter_state_t *is, sig_rule_t *rule) uint32_t 5025 tools/finsig_thumb2.c uint32_t str_adr; uint32_t 5035 tools/finsig_thumb2.c uint32_t search_adr = str_adr; uint32_t 5088 tools/finsig_thumb2.c uint32_t call_adr = find_call_near_str(fw,is,rule); uint32_t 5101 tools/finsig_thumb2.c uint32_t find_str_arg_call(firmware *fw, iter_state_t *is, sig_rule_t *rule) uint32_t 5117 tools/finsig_thumb2.c uint32_t str_adr = find_str_bytes_main_fw(fw,rule->ref_name); // direct string must be near actual code uint32_t 5125 tools/finsig_thumb2.c uint32_t call_adr = find_const_ref_match(fw, is, SEARCH_NEAR_REF_RANGE*2, 8, reg, str_adr, match, FIND_CONST_REF_MATCH_ANY); uint32_t 5137 tools/finsig_thumb2.c uint32_t call_adr = find_str_arg_call(fw,is,rule); uint32_t 5146 tools/finsig_thumb2.c uint32_t call_adr = find_call_near_str(fw, is, rule); uint32_t 5155 tools/finsig_thumb2.c uint32_t myreg; uint32_t 5174 tools/finsig_thumb2.c uint32_t regs[4]; uint32_t 5218 tools/finsig_thumb2.c uint32_t ref_adr = get_saved_sig_val(rule->ref_name); uint32_t 5230 tools/finsig_thumb2.c uint32_t fadr = find_last_call_from_func(fw,is,min,max); uint32_t 5263 tools/finsig_thumb2.c int sig_match_named_save_sig(firmware *fw,const char *name, uint32_t adr, uint32_t flags) uint32_t 5280 tools/finsig_thumb2.c uint32_t ref_adr = get_saved_sig_val(rule->ref_name); uint32_t 5285 tools/finsig_thumb2.c uint32_t sig_type = rule->param & SIG_NAMED_TYPE_MASK; uint32_t 5286 tools/finsig_thumb2.c uint32_t sig_flags = rule->param & SIG_NAMED_FLAG_MASK; uint32_t 5287 tools/finsig_thumb2.c uint32_t sig_nth = (rule->param & SIG_NAMED_NTH_MASK)>>SIG_NAMED_NTH_SHIFT; uint32_t 5288 tools/finsig_thumb2.c uint32_t sig_nth_range = (rule->param & SIG_NAMED_NTH_RANGE_MASK)>>SIG_NAMED_NTH_RANGE_SHIFT; uint32_t 5319 tools/finsig_thumb2.c uint32_t i; uint32_t 5323 tools/finsig_thumb2.c printf("sig_match_named: disasm failed %s 0x%08x\n",rule->name,(uint32_t)is->insn->address); uint32_t 5332 tools/finsig_thumb2.c uint32_t adr = B_BL_BLXimm_target(fw,is->insn); uint32_t 5811 tools/finsig_thumb2.c void add_event_proc(firmware *fw, char *name, uint32_t adr) uint32_t 5825 tools/finsig_thumb2.c uint32_t b_adr=get_direct_jump_target(fw,fw->is); uint32_t 5837 tools/finsig_thumb2.c int process_reg_eventproc_call(firmware *fw, iter_state_t *is, __attribute__ ((unused))uint32_t unused) { uint32_t 5838 tools/finsig_thumb2.c uint32_t regs[4]; uint32_t 5856 tools/finsig_thumb2.c uint32_t adr_thumb = is->thumb; uint32_t 5857 tools/finsig_thumb2.c uint32_t tbla = 0; uint32_t 5867 tools/finsig_thumb2.c uint32_t u = LDR_PC2val(fw,is->insn); uint32_t 5887 tools/finsig_thumb2.c uint32_t *p=(uint32_t*)adr2ptr_with_data(fw,tbla); uint32_t 5890 tools/finsig_thumb2.c uint32_t nm_adr=*p; uint32_t 5899 tools/finsig_thumb2.c uint32_t fn=*p; uint32_t 5918 tools/finsig_thumb2.c int process_eventproc_table_call(firmware *fw, iter_state_t *is, __attribute__ ((unused))uint32_t unused) { uint32_t 5919 tools/finsig_thumb2.c uint32_t regs[4]; uint32_t 5925 tools/finsig_thumb2.c uint32_t ca = iter_state_adr(is); uint32_t 5926 tools/finsig_thumb2.c uint32_t sa = adr_hist_get(&is->ah,2); uint32_t 5927 tools/finsig_thumb2.c uint32_t ta = adr_hist_get(&is->ah,8); uint32_t 5935 tools/finsig_thumb2.c uint32_t adr1 = get_saved_sig_val("j_dry_memcpy"); uint32_t 5936 tools/finsig_thumb2.c uint32_t adr2 = get_branch_call_insn_target(fw,fw->is); uint32_t 5950 tools/finsig_thumb2.c uint32_t *p=(uint32_t*)adr2ptr_with_data(fw,regs[0]); uint32_t 5955 tools/finsig_thumb2.c uint32_t nm_adr=*p; uint32_t 5962 tools/finsig_thumb2.c uint32_t fn=*p; uint32_t 5977 tools/finsig_thumb2.c int process_createtask_call(firmware *fw, iter_state_t *is, __attribute__ ((unused))uint32_t unused) { uint32_t 5979 tools/finsig_thumb2.c uint32_t regs[4]; uint32_t 5998 tools/finsig_thumb2.c int save_ptp_handler_func(firmware *fw,uint32_t op,uint32_t handler) { uint32_t 6014 tools/finsig_thumb2.c int process_add_ptp_handler_call(firmware *fw, iter_state_t *is, __attribute__ ((unused))uint32_t unused) { uint32_t 6015 tools/finsig_thumb2.c uint32_t regs[4]; uint32_t 6049 tools/finsig_thumb2.c uint32_t op_table=0; uint32_t 6062 tools/finsig_thumb2.c uint32_t adr=LDR_PC2val(fw,insn); uint32_t 6076 tools/finsig_thumb2.c uint32_t op=fw_u32(fw,op_table+i*8); uint32_t 6077 tools/finsig_thumb2.c uint32_t handler=fw_u32(fw,op_table+i*8+4); uint32_t 6091 tools/finsig_thumb2.c uint32_t adr) uint32_t 6112 tools/finsig_thumb2.c uint32_t adr=get_saved_sig_val(name); uint32_t 6128 tools/finsig_thumb2.c uint32_t ex_vec = 0; uint32_t 6167 tools/finsig_thumb2.c uint32_t addr=LDR_PC2val(fw,is->insn); uint32_t 6247 tools/finsig_thumb2.c uint32_t ctypes_matches[10]; uint32_t 6257 tools/finsig_thumb2.c uint32_t min_adr = 0xFFFFFFFF; uint32_t 6260 tools/finsig_thumb2.c uint32_t maxadr = (fw->rom_code_search_max_adr > fw->base + 0x400000)?fw->base + 0x100000:fw->rom_code_search_max_adr; uint32_t 6261 tools/finsig_thumb2.c uint32_t adr = find_u32_adr_range(fw,ctypes_matches[i],fw->rom_code_search_min_adr,maxadr); uint32_t 6317 tools/finsig_thumb2.c uint32_t j = ptr2adr(fw,(uint8_t *)fw->firmware_ver_str); uint32_t 6318 tools/finsig_thumb2.c uint32_t k = j + c - fw->firmware_ver_str; uint32_t 6425 tools/finsig_thumb2.c void print_platform_misc_val_undef(const char *name, uint32_t def) uint32_t 6471 tools/finsig_thumb2.c uint32_t used=0; uint32_t 6472 tools/finsig_thumb2.c uint32_t hits[KNOWN_PROPSET_COUNT]; uint32_t 6473 tools/finsig_thumb2.c const uint32_t ps_offset = 6; uint32_t 6475 tools/finsig_thumb2.c memset(hits, 0, KNOWN_PROPSET_COUNT*sizeof(uint32_t)); uint32_t 6514 tools/finsig_thumb2.c uint32_t fmax = 0; uint32_t 6560 tools/finsig_thumb2.c uint32_t n; uint32_t 6591 tools/finsig_thumb2.c uint32_t bit; uint32_t 6592 tools/finsig_thumb2.c uint32_t ev; uint32_t 6593 tools/finsig_thumb2.c uint32_t raw_info; uint32_t 6597 tools/finsig_thumb2.c void get_physw_table_entry(firmware *fw, uint32_t adr, physw_table_entry_t *vals) uint32_t 6599 tools/finsig_thumb2.c uint32_t info=fw_u32(fw,adr); uint32_t 6608 tools/finsig_thumb2.c uint32_t find_physw_table_entry(firmware *fw, uint32_t tadr, int tcount, uint32_t ev) uint32_t 6619 tools/finsig_thumb2.c uint32_t find_physw_table_max(firmware *fw, uint32_t tadr, int max_count) uint32_t 6632 tools/finsig_thumb2.c void write_physw_event_table_dump(firmware *fw, uint32_t tadr, int tcount) uint32_t 6649 tools/finsig_thumb2.c void print_kval(firmware *fw, uint32_t tadr, int tcount, uint32_t ev, const char *name, const char *sfx) uint32_t 6651 tools/finsig_thumb2.c uint32_t adr=find_physw_table_entry(fw,tadr,tcount,ev); uint32_t 6670 tools/finsig_thumb2.c uint32_t bits; uint32_t 6672 tools/finsig_thumb2.c uint32_t fadr; uint32_t 6673 tools/finsig_thumb2.c uint32_t ev; uint32_t 6680 tools/finsig_thumb2.c uint32_t kshutter_min_bits = 0xFFFFFFFF; uint32_t 6682 tools/finsig_thumb2.c void add_kinfo(int r, uint32_t b, const char *nm, uint32_t adr, uint32_t ev, int inv) uint32_t 6695 tools/finsig_thumb2.c uint32_t add_kmval(firmware *fw, uint32_t tadr, __attribute__ ((unused))int tsiz, int tlen, uint32_t ev, const char *name, uint32_t xtra) uint32_t 6697 tools/finsig_thumb2.c uint32_t adr=find_physw_table_entry(fw,tadr,tlen,ev); uint32_t 6779 tools/finsig_thumb2.c void do_km_vals(firmware *fw, uint32_t tadr,int tsiz,int tlen) uint32_t 6781 tools/finsig_thumb2.c uint32_t key_half = add_kmval(fw,tadr,tsiz,tlen,0,"KEY_SHOOT_HALF",0); uint32_t 6870 tools/finsig_thumb2.c uint32_t physw_tbl=get_misc_val_value("physw_event_table"); uint32_t 6943 tools/finsig_thumb2.c uint32_t adr=mv->val; uint32_t 7056 tools/finsig_thumb2.c void print_other_stubs_min(firmware *fw, const char *name, uint32_t fadr, uint32_t atadr) uint32_t 7164 tools/finsig_thumb2.c uint32_t adr = fw->base + (pos << 2); uint32_t 83 tools/finsig_vxworks.c uint32_t ptr; uint32_t 84 tools/finsig_vxworks.c uint32_t fail; uint32_t 85 tools/finsig_vxworks.c uint32_t success; uint32_t 156 tools/finsig_vxworks.c void addMatch(uint32_t fadr, int s, int f, int sig) uint32_t 166 tools/finsig_vxworks.c void fwAddMatch(firmware *fw, uint32_t fadr, int s, int f, int sig) uint32_t 183 tools/finsig_vxworks.c uint32_t offs; uint32_t 184 tools/finsig_vxworks.c uint32_t value; uint32_t 185 tools/finsig_vxworks.c uint32_t mask; uint32_t 208 tools/finsig_vxworks.c uint32_t val; uint32_t 553 tools/finsig_vxworks.c void save_sig(const char *name, uint32_t val) uint32_t 639 tools/finsig_vxworks.c uint32_t apex2us_test[] = { 0x3D09000, 0x3BBA304, 0x3A728D2, 0x3931EF4, 0x37F8303, 0x36C52A2, 0x3598B85, 0x3472B6A, 0 }; uint32_t 642 tools/finsig_vxworks.c int match_apex2us(firmware *fw, int k, uint32_t v1, __attribute__ ((unused))uint32_t v2) uint32_t 651 tools/finsig_vxworks.c uint32_t fadr = idx2adr(fw,k); uint32_t 679 tools/finsig_vxworks.c uint32_t fadr = 0; uint32_t 706 tools/finsig_vxworks.c uint32_t adr1 = idx2adr(fw,j); // address of 1st value uint32_t 707 tools/finsig_vxworks.c uint32_t adr2 = idx2adr(fw,j+2); // address of 2nd value uint32_t 719 tools/finsig_vxworks.c uint32_t fadr = followBranch(fw,idx2adr(fw,j1+2),0x01000001); uint32_t 732 tools/finsig_vxworks.c uint32_t fadr = followBranch(fw,idx2adr(fw,j1+2),0x01000001); uint32_t 745 tools/finsig_vxworks.c uint32_t fadr = followBranch(fw,idx2adr(fw,j1+3),0x01000001); uint32_t 762 tools/finsig_vxworks.c uint32_t fadr = followBranch(fw,idx2adr(fw,j),0x01000001); uint32_t 775 tools/finsig_vxworks.c uint32_t fadr = idx2adr(fw,k); uint32_t 809 tools/finsig_vxworks.c uint32_t f1 = followBranch(fw,idx2adr(fw,j+2),0x01000001); uint32_t 827 tools/finsig_vxworks.c uint32_t fadr = idx2adr(fw, k); uint32_t 843 tools/finsig_vxworks.c uint32_t fadr = followBranch(fw, idx2adr(fw, k-2), 0x01000001); uint32_t 855 tools/finsig_vxworks.c uint32_t vals[] = { 0x9801, 0x9802, 0x9803, 0x9804, 0x9805, 0 }; uint32_t 856 tools/finsig_vxworks.c uint32_t fadr = 0; uint32_t 893 tools/finsig_vxworks.c uint32_t fadr = followBranch(fw, idx2adr(fw,k), 0x01000001); uint32_t 917 tools/finsig_vxworks.c uint32_t fadr = LDR2val(fw,k+1); uint32_t 935 tools/finsig_vxworks.c uint32_t fadr = 0; uint32_t 1383 tools/finsig_vxworks.c uint32_t adr=0; uint32_t 1386 tools/finsig_vxworks.c uint32_t file_buf_id=4; uint32_t 1406 tools/finsig_vxworks.c uint32_t adr2 = followBranch(fw,idx2adr(fw,k+1),0x01000001); uint32_t 1469 tools/finsig_vxworks.c void add_func_name(char*, uint32_t, char*); uint32_t 1544 tools/finsig_vxworks.c uint32_t log_test[] = { uint32_t 1549 tools/finsig_vxworks.c uint32_t DeleteDirectory_Fut_test[] = { 0x09400017 }; uint32_t 1550 tools/finsig_vxworks.c uint32_t MakeDirectory_Fut_test[] = { 0x09400015 }; uint32_t 1551 tools/finsig_vxworks.c uint32_t RenameFile_Fut_test[] = { 0x09400013 }; uint32_t 2068 tools/finsig_vxworks.c uint32_t nm0 = *((uint32_t*)sig->ev_name); uint32_t 2069 tools/finsig_vxworks.c uint32_t *p; uint32_t 2117 tools/finsig_vxworks.c uint32_t *p; uint32_t 2144 tools/finsig_vxworks.c uint32_t fadr = fwval(fw,j-1); // function address uint32_t 2164 tools/finsig_vxworks.c int match_strsig2a(firmware *fw, int k, uint32_t sadr, uint32_t offset) uint32_t 2168 tools/finsig_vxworks.c uint32_t fadr = fwval(fw,k+1); // function address uint32_t 2171 tools/finsig_vxworks.c uint32_t bfadr = followBranch2(fw, fadr, offset); uint32_t 2205 tools/finsig_vxworks.c int match_strsig3a(firmware *fw, int k, uint32_t sadr, uint32_t offset) uint32_t 2210 tools/finsig_vxworks.c uint32_t padr = ADR2adr(fw,k+1); // get address pointed to by 2nd ADR instructioin uint32_t 2225 tools/finsig_vxworks.c uint32_t fa = idx2adr(fw,j2+1); uint32_t 2237 tools/finsig_vxworks.c uint32_t fadr = ADR2adr(fw,j2); uint32_t 2258 tools/finsig_vxworks.c int match_strsig4a(firmware *fw, int k, uint32_t sadr, uint32_t offset) uint32_t 2263 tools/finsig_vxworks.c uint32_t padr = ADR2adr(fw,k+offset); uint32_t 2266 tools/finsig_vxworks.c uint32_t fadr = idx2adr(fw,k); uint32_t 2294 tools/finsig_vxworks.c int match_strsig5a(firmware *fw, int k, uint32_t sadr, uint32_t offset) uint32_t 2299 tools/finsig_vxworks.c uint32_t padr; uint32_t 2327 tools/finsig_vxworks.c uint32_t fadr = LDR2val(fw,j2); uint32_t 2332 tools/finsig_vxworks.c uint32_t fadr2 = followBranch(fw, fadr, dryos_ofst); uint32_t 2356 tools/finsig_vxworks.c uint32_t fadr = idx2adr(fw,j1); uint32_t 2370 tools/finsig_vxworks.c int match_strsig7a(firmware *fw, int k, uint32_t sadr, uint32_t offset) uint32_t 2374 tools/finsig_vxworks.c uint32_t padr; uint32_t 2384 tools/finsig_vxworks.c uint32_t fa = idx2adr(fw,j2); uint32_t 2406 tools/finsig_vxworks.c uint32_t fadr = idx2adr(fw,j1); uint32_t 2433 tools/finsig_vxworks.c uint32_t fadr = 0; uint32_t 2484 tools/finsig_vxworks.c uint32_t fadr = followBranch(fw, func_names[j].val+ofst*4, 0xF1000001); uint32_t 2487 tools/finsig_vxworks.c uint32_t fadr2 = fadr; uint32_t 2511 tools/finsig_vxworks.c uint32_t sadr = idx2adr(fw,j); // string address uint32_t 2517 tools/finsig_vxworks.c uint32_t padr = ADR2adr(fw,j1); uint32_t 2520 tools/finsig_vxworks.c uint32_t fadr = idx2adr(fw,j1-ofst); uint32_t 2521 tools/finsig_vxworks.c uint32_t bfadr = followBranch(fw,fadr,sig->offset); uint32_t 2602 tools/finsig_vxworks.c int match_strsig13a(firmware *fw, int k, uint32_t sadr, uint32_t offset) uint32_t 2606 tools/finsig_vxworks.c uint32_t padr = idx2adr(fw,k); // string ptr address uint32_t 2612 tools/finsig_vxworks.c uint32_t ppadr = idx2adr(fw,j2); // string ptr ptr address uint32_t 2618 tools/finsig_vxworks.c uint32_t fadr = idx2adr(fw,j3-offset); uint32_t 2641 tools/finsig_vxworks.c int match_strsig15a(firmware *fw, int k, uint32_t sadr, uint32_t offset) uint32_t 2645 tools/finsig_vxworks.c uint32_t padr; uint32_t 2655 tools/finsig_vxworks.c uint32_t fa = idx2adr(fw,j2); uint32_t 2675 tools/finsig_vxworks.c uint32_t nm0 = *((uint32_t*)sig->ev_name); uint32_t 2679 tools/finsig_vxworks.c uint32_t padr = 0; uint32_t 2693 tools/finsig_vxworks.c uint32_t fa = idx2adr(fw,j2); uint32_t 2725 tools/finsig_vxworks.c uint32_t fadr; uint32_t 2767 tools/finsig_vxworks.c uint32_t fadr = func_names[j].val+neg*(ofst&0xff)*4; uint32_t 2793 tools/finsig_vxworks.c int match_strsig23a(firmware *fw, int k, uint32_t sadr, uint32_t maxdist) uint32_t 2797 tools/finsig_vxworks.c uint32_t padr; uint32_t 2815 tools/finsig_vxworks.c uint32_t fa = idx2adr(fw,j2); uint32_t 2845 tools/finsig_vxworks.c uint32_t sadr = idx2adr(fw,j); // string address uint32_t 2851 tools/finsig_vxworks.c uint32_t pval = LDR2val(fw,j1); uint32_t 2854 tools/finsig_vxworks.c uint32_t fadr = idx2adr(fw,j1-ofst); uint32_t 2855 tools/finsig_vxworks.c uint32_t bfadr = followBranch(fw,fadr,sig->offset); uint32_t 2877 tools/finsig_vxworks.c uint32_t sadr = idx2adr(fw,j); // string address uint32_t 2883 tools/finsig_vxworks.c uint32_t pval = LDR2val(fw,j1); uint32_t 2891 tools/finsig_vxworks.c uint32_t pval2 = LDR2val(fw,j2); uint32_t 2907 tools/finsig_vxworks.c uint32_t sadr = idx2adr(fw,j); // string address uint32_t 2975 tools/finsig_vxworks.c uint32_t sadr = idx2adr(fw,j); // string address uint32_t 2981 tools/finsig_vxworks.c uint32_t pval = LDR2val(fw,j1); uint32_t 3023 tools/finsig_vxworks.c uint32_t fadr = followBranch2(fw,func_names[j].val,sig->offset); uint32_t 3084 tools/finsig_vxworks.c uint32_t *p; uint32_t 3158 tools/finsig_vxworks.c uint32_t *p1 = 0; uint32_t 3397 tools/finsig_vxworks.c uint32_t *p = (uint32_t*)(&fw->buf[k]); uint32_t 3454 tools/finsig_vxworks.c int find_modelist(firmware *fw, uint32_t fadr) uint32_t 3456 tools/finsig_vxworks.c uint32_t j1; uint32_t 3502 tools/finsig_vxworks.c static uint32_t FlashParamsTable_address = 0; uint32_t 3504 tools/finsig_vxworks.c int match_FlashParamsTable2(firmware *fw, int k, uint32_t v1, __attribute__ ((unused))uint32_t v2) uint32_t 3514 tools/finsig_vxworks.c int match_FlashParamsTable(firmware *fw, int k, __attribute__ ((unused))uint32_t v1, __attribute__ ((unused))uint32_t v2) uint32_t 3555 tools/finsig_vxworks.c void print_stubs_min(firmware *fw, const char *name, uint32_t fadr, uint32_t atadr); uint32_t 3562 tools/finsig_vxworks.c uint32_t u1 = LDR2val(fw, s1); uint32_t 3756 tools/finsig_vxworks.c uint32_t fadr = fwval(fw,k); uint32_t 3760 tools/finsig_vxworks.c uint32_t sadr = fwval(fw,k2); uint32_t 3780 tools/finsig_vxworks.c uint32_t find_viewport_address(firmware *fw, int *kout) uint32_t 3792 tools/finsig_vxworks.c uint32_t v1 = LDR2val(fw,k1); uint32_t 3793 tools/finsig_vxworks.c uint32_t v2 = LDR2val(fw,k1+1); uint32_t 3810 tools/finsig_vxworks.c uint32_t v1 = LDR2val(fw,k); uint32_t 3818 tools/finsig_vxworks.c uint32_t v1 = LDR2val(fw,k+1); uint32_t 3830 tools/finsig_vxworks.c uint32_t r = (fw->buf[k] & 0x0000F000)<<4; // Register uint32_t 3849 tools/finsig_vxworks.c uint32_t uic = 0; uint32_t 3863 tools/finsig_vxworks.c uint32_t v1 = ALUop2(fw,m); uint32_t 3908 tools/finsig_vxworks.c uint32_t adr,where; uint32_t 3914 tools/finsig_vxworks.c uint32_t a; uint32_t 4061 tools/finsig_vxworks.c void print_stubs_min(firmware *fw, const char *name, uint32_t fadr, uint32_t atadr) uint32_t 4083 tools/finsig_vxworks.c uint32_t exm_typ_tbl=0, exm_typ_cnt=0; uint32_t 4090 tools/finsig_vxworks.c uint32_t n; uint32_t 4107 tools/finsig_vxworks.c uint32_t u; uint32_t 4170 tools/finsig_vxworks.c int match_levent_table(firmware *fw, int k, __attribute__ ((unused))uint32_t v1, __attribute__ ((unused))uint32_t v2) uint32_t 4176 tools/finsig_vxworks.c uint32_t levent_tbl = idx2adr(fw,k); uint32_t 4177 tools/finsig_vxworks.c void write_levent_table_dump(firmware*, uint32_t); uint32_t 4184 tools/finsig_vxworks.c int match_movie_status(firmware *fw, int k, __attribute__ ((unused))uint32_t v1, __attribute__ ((unused))uint32_t v2) uint32_t 4193 tools/finsig_vxworks.c uint32_t base = LDR2val(fw,k); uint32_t 4194 tools/finsig_vxworks.c uint32_t ofst = fw->buf[k+4] & 0x00000FFF; uint32_t 4206 tools/finsig_vxworks.c uint32_t base = LDR2val(fw,k+1); uint32_t 4207 tools/finsig_vxworks.c uint32_t ofst = fw->buf[k+4] & 0x00000FFF; uint32_t 4219 tools/finsig_vxworks.c uint32_t base = LDR2val(fw,k); uint32_t 4220 tools/finsig_vxworks.c uint32_t ofst = fwOp2(fw,k+4); uint32_t 4227 tools/finsig_vxworks.c int match_full_screen_refresh(firmware *fw, int k, __attribute__ ((unused))uint32_t v1, __attribute__ ((unused))uint32_t v2) uint32_t 4235 tools/finsig_vxworks.c uint32_t base = LDR2val(fw,k); uint32_t 4241 tools/finsig_vxworks.c int match_canon_shoot_menu_active(firmware *fw, int k, __attribute__ ((unused))uint32_t v1, __attribute__ ((unused))uint32_t v2) uint32_t 4249 tools/finsig_vxworks.c uint32_t base = LDR2val(fw,k); uint32_t 4250 tools/finsig_vxworks.c uint32_t ofst = fw->buf[k+1] & 0x00000FFF; uint32_t 4260 tools/finsig_vxworks.c uint32_t base = LDR2val(fw,k); uint32_t 4261 tools/finsig_vxworks.c uint32_t ofst = fw->buf[k+1] & 0x00000FFF; uint32_t 4267 tools/finsig_vxworks.c int match_playrec_mode(firmware *fw, int k, __attribute__ ((unused))uint32_t v1, __attribute__ ((unused))uint32_t v2) uint32_t 4285 tools/finsig_vxworks.c uint32_t base = LDR2val(fw,k); uint32_t 4286 tools/finsig_vxworks.c uint32_t ofst = fw->buf[k+1] & 0x00000FFF; uint32_t 4292 tools/finsig_vxworks.c int match_some_flag_for_af_scan(firmware *fw, int k, __attribute__ ((unused))uint32_t v1, __attribute__ ((unused))uint32_t v2) uint32_t 4311 tools/finsig_vxworks.c uint32_t base = LDR2val(fw,adr2idx(fw,followBranch(fw,idx2adr(fw,k),1))); uint32_t 4318 tools/finsig_vxworks.c int match_palette_data(firmware *fw, int k, __attribute__ ((unused))uint32_t v1, __attribute__ ((unused))uint32_t v2) uint32_t 4340 tools/finsig_vxworks.c uint32_t palette_size = LDR2val(fw,idx2+2); uint32_t 4349 tools/finsig_vxworks.c uint32_t palette_size = ALUop2(fw,idx2+2); uint32_t 4359 tools/finsig_vxworks.c int match_palette_data3(firmware *fw, int k, uint32_t palette_data, __attribute__ ((unused))uint32_t v2) uint32_t 4363 tools/finsig_vxworks.c uint32_t palette_control = LDR2val(fw,k-6); uint32_t 4365 tools/finsig_vxworks.c uint32_t fadr = find_inst_rev(fw, isSTMFD_LR, k-7, 30); uint32_t 4380 tools/finsig_vxworks.c uint32_t palette_size = LDR2val(fw,idx+2); uint32_t 4394 tools/finsig_vxworks.c int match_palette_data2(firmware *fw, int k, uint32_t v1, uint32_t v2) uint32_t 4403 tools/finsig_vxworks.c uint32_t fadr = followBranch(fw, idx2adr(fw,k1), 0x01000001); uint32_t 4450 tools/finsig_vxworks.c uint32_t fadr = followBranch(fw, idx2adr(fw,idx+13), 0x01000001); uint32_t 4454 tools/finsig_vxworks.c uint32_t palette_control = LDR2val(fw,idx); uint32_t 4484 tools/finsig_vxworks.c uint32_t palette_size = LDR2val(fw,idx+2); uint32_t 4502 tools/finsig_vxworks.c uint32_t palette_control = LDR2val(fw,idx); uint32_t 4514 tools/finsig_vxworks.c int match_viewport_address3(firmware *fw, int k, uint32_t v1, __attribute__ ((unused))uint32_t v2) uint32_t 4526 tools/finsig_vxworks.c uint32_t a = LDR2val(fw,k1+1); uint32_t 4535 tools/finsig_vxworks.c uint32_t a = LDR2val(fw,k1+1); uint32_t 4544 tools/finsig_vxworks.c uint32_t a = LDR2val(fw,k1+1); uint32_t 4554 tools/finsig_vxworks.c int match_viewport_address2(firmware *fw, int k, uint32_t v1, __attribute__ ((unused))uint32_t v2) uint32_t 4564 tools/finsig_vxworks.c int match_viewport_address(firmware *fw, int k, uint32_t v1, __attribute__ ((unused))uint32_t v2) uint32_t 4589 tools/finsig_vxworks.c uint32_t base = LDR2val(fw,k); uint32_t 4590 tools/finsig_vxworks.c uint32_t fadr = followBranch(fw, idx2adr(fw,k+1), 1); uint32_t 4591 tools/finsig_vxworks.c uint32_t ofst = fw->buf[adr2idx(fw,fadr)] & 0x00000FFF; uint32_t 4605 tools/finsig_vxworks.c uint32_t base = LDR2val(fw,k); uint32_t 4611 tools/finsig_vxworks.c uint32_t ofst = fw->buf[k1] & 0x00000FFF; uint32_t 4630 tools/finsig_vxworks.c uint32_t fadr = 0; uint32_t 4699 tools/finsig_vxworks.c uint32_t screen_lock = idx2adr(fw,k); uint32_t 4702 tools/finsig_vxworks.c uint32_t fadr = followBranch2(fw,idx2adr(fw,v+3),0x01000001); uint32_t 4706 tools/finsig_vxworks.c uint32_t reg = (fwval(fw,k1+1) & 0x0000F000) >> 12; uint32_t 4707 tools/finsig_vxworks.c uint32_t adr = LDR2val(fw,k1+1); uint32_t 4713 tools/finsig_vxworks.c uint32_t bitmap_buffer = LDR2val(fw,k2); uint32_t 4716 tools/finsig_vxworks.c uint32_t active_bitmap_buffer = adr + (fwval(fw,k2+1) & 0xFFF); uint32_t 4734 tools/finsig_vxworks.c int match_raw_buffer(firmware *fw, int k, uint32_t rb1, __attribute__ ((unused))uint32_t v2) uint32_t 4739 tools/finsig_vxworks.c uint32_t rb2 = fwval(fw,k+1); uint32_t 4751 tools/finsig_vxworks.c uint32_t rb2 = fwval(fw,k+3); uint32_t 4784 tools/finsig_vxworks.c uint32_t base = LDR2val(fw,k); uint32_t 4786 tools/finsig_vxworks.c uint32_t ofst = fw->buf[k] & 0x00000FFF; uint32_t 4797 tools/finsig_vxworks.c uint32_t frsp_buf = 0; uint32_t 4798 tools/finsig_vxworks.c uint32_t frsp_buf_at = 0; uint32_t 4801 tools/finsig_vxworks.c uint32_t uncached_adr = 0x10000000; // true for all vx cams uint32_t 4820 tools/finsig_vxworks.c uint32_t v = LDR2val(fw,k1); uint32_t 4852 tools/finsig_vxworks.c uint32_t v = LDR2val(fw,ka); uint32_t 5233 tools/finsig_vxworks.c if ((uint32_t)k < (fw->size*4 - sizeof(ctypes))) uint32_t 5244 tools/finsig_vxworks.c int match_nrflag3(firmware *fw, int k, uint32_t v1, __attribute__ ((unused))uint32_t v2) uint32_t 5265 tools/finsig_vxworks.c uint32_t ofst2 = LDR2val(fw,k3); uint32_t 5354 tools/finsig_vxworks.c uint32_t addr; // LED GPIO address uint32_t 5452 tools/finsig_vxworks.c void print_kval(firmware *fw, uint32_t tadr, int tsiz, int tlen, uint32_t ev, const char *name, char *sfx) uint32_t 5472 tools/finsig_vxworks.c uint32_t b = (1 << (kval & 0x1F)); uint32_t 5481 tools/finsig_vxworks.c uint32_t bits; uint32_t 5483 tools/finsig_vxworks.c uint32_t fadr; uint32_t 5484 tools/finsig_vxworks.c uint32_t ev; uint32_t 5491 tools/finsig_vxworks.c uint32_t kshutter_min_bits = 0xFFFFFFFF; uint32_t 5493 tools/finsig_vxworks.c void add_kinfo(int r, uint32_t b, const char *nm, uint32_t adr, uint32_t ev, int inv) uint32_t 5506 tools/finsig_vxworks.c uint32_t add_kmval(firmware *fw, uint32_t tadr, int tsiz, int tlen, uint32_t ev, const char *name, uint32_t xtra) uint32_t 5510 tools/finsig_vxworks.c uint32_t b = 0; uint32_t 5626 tools/finsig_vxworks.c uint32_t tadr = search_saved_sig(fw, "GetSDProtect", match_GetSDProtect, 0, 1, 1); uint32_t 5636 tools/finsig_vxworks.c uint32_t fadr = followBranch(fw,idx2adr(fw,k1),0x01000001); uint32_t 5648 tools/finsig_vxworks.c uint32_t tsiz = 2; uint32_t 5651 tools/finsig_vxworks.c uint32_t madr = fw->base + (fw->size*4-4); uint32_t 5656 tools/finsig_vxworks.c uint32_t adr = LDR2val(fw,k); uint32_t 5663 tools/finsig_vxworks.c uint32_t tlen = (madr - tadr) / 4; uint32_t 5691 tools/finsig_vxworks.c uint32_t key_half = add_kmval(fw,tadr,tsiz,tlen,0,"KEY_SHOOT_HALF",0); uint32_t 5731 tools/finsig_vxworks.c uint32_t nadr; uint32_t 5732 tools/finsig_vxworks.c uint32_t eadr; uint32_t 5749 tools/finsig_vxworks.c void add_func_name(char *n, uint32_t eadr, char *suffix) uint32_t 5779 tools/finsig_vxworks.c void add_func_name2(firmware *fw, uint32_t nadr, uint32_t eadr, char *suffix) uint32_t 5795 tools/finsig_vxworks.c int match_eventproc(firmware *fw, int k, uint32_t fadr, __attribute__ ((unused))uint32_t v2) uint32_t 5800 tools/finsig_vxworks.c uint32_t adr = followBranch(fw,idx2adr(fw,k),0x01000001); uint32_t 5834 tools/finsig_vxworks.c uint32_t k2 = LDR2val(fw,k1); uint32_t 5889 tools/finsig_vxworks.c int match_registerlists(firmware *fw, int k, uint32_t fadr, __attribute__ ((unused))uint32_t v2) uint32_t 5893 tools/finsig_vxworks.c uint32_t adr = followBranch2(fw,idx2adr(fw,k),0x01000001); uint32_t 5922 tools/finsig_vxworks.c int match_registerlistproc(firmware *fw, int k, uint32_t fadr, __attribute__ ((unused))uint32_t v2) uint32_t 5926 tools/finsig_vxworks.c uint32_t adr = followBranch2(fw,idx2adr(fw,k+6),0x01000001); uint32_t 5942 tools/finsig_vxworks.c uint32_t fadr = func_names[j].val; uint32_t 5948 tools/finsig_vxworks.c uint32_t fadr = func_names[j].val; uint32_t 5966 tools/finsig_vxworks.c int match_createtask(firmware *fw, int k, uint32_t fadr, __attribute__ ((unused))uint32_t v2) uint32_t 5968 tools/finsig_vxworks.c uint32_t adr = followBranch(fw,idx2adr(fw,k),0x01000001); uint32_t 5982 tools/finsig_vxworks.c uint32_t sadr = LDR2val(fw,j2); uint32_t 5983 tools/finsig_vxworks.c uint32_t tadr = LDR2val(fw,j1); uint32_t 6021 tools/finsig_vxworks.c uint32_t adr = fwval(fw, idx); uint32_t 6033 tools/finsig_vxworks.c uint32_t adr = fwval(fw, idx); uint32_t 6041 tools/finsig_vxworks.c int save_ptp_handler_func(uint32_t op,uint32_t handler) { uint32_t 6062 tools/finsig_vxworks.c uint32_t op=0; uint32_t 6063 tools/finsig_vxworks.c uint32_t handler=0; uint32_t 6090 tools/finsig_vxworks.c uint32_t u1 = 0; uint32_t 6113 tools/finsig_vxworks.c uint32_t u1 = 0; uint32_t 6141 tools/finsig_vxworks.c int match_ptp_handlers(firmware *fw, int k, uint32_t fadr, __attribute__ ((unused))uint32_t v2) uint32_t 6155 tools/finsig_vxworks.c uint32_t op=fwval(fw,k+i*2); uint32_t 6156 tools/finsig_vxworks.c uint32_t handler=fwval(fw,k+i*2+1); uint32_t 6169 tools/finsig_vxworks.c uint32_t adr = followBranch2(fw,idx2adr(fw,k),0x01000001); uint32_t 6188 tools/finsig_vxworks.c void write_levent_table_dump(firmware *fw, uint32_t tadr) uint32_t 6191 tools/finsig_vxworks.c uint32_t lid = 0; uint32_t 6192 tools/finsig_vxworks.c uint32_t val; uint32_t 6203 tools/finsig_vxworks.c val = *(uint32_t*)adr2ptr(fw, tadr); uint32_t 6204 tools/finsig_vxworks.c if ((val == 0xffffffff) || (val == 0) || (*(uint32_t*)adr2ptr(fw, tadr+4) < lid)) { uint32_t 6207 tools/finsig_vxworks.c lid = *(uint32_t*)adr2ptr(fw, tadr+4); uint32_t 6210 tools/finsig_vxworks.c fprintf(f,"0x%08x 0x%04x 0x%08x %s\n",tadr,lid,*(uint32_t*)adr2ptr(fw, tadr+8),str); uint32_t 6229 tools/finsig_vxworks.c uint32_t j = idx2adr(fw,fw->fwver_idx); uint32_t 6231 tools/finsig_vxworks.c uint32_t k = j + c - fw->firmware_ver_str; uint32_t 6295 tools/finsig_vxworks.c uint32_t u = fw->base+fw->fsize*4; uint32_t 159 tools/firmware_load.c uint32_t idx2adr(firmware *fw, int idx) uint32_t 165 tools/firmware_load.c int adr2idx(firmware *fw, uint32_t adr) uint32_t 174 tools/firmware_load.c char* adr2ptr(firmware *fw, uint32_t adr) uint32_t 223 tools/firmware_load.c uint32_t* fwadr(firmware *fw, int i) uint32_t 249 tools/firmware_load.c uint32_t fwval(firmware *fw, int i) uint32_t 285 tools/firmware_load.c uint32_t LDR2adr(firmware *fw, int offset) uint32_t 287 tools/firmware_load.c uint32_t inst = fwval(fw,offset); uint32_t 289 tools/firmware_load.c uint32_t fadr = (inst & 0x00800000)?idx2adr(fw,offset+2)+offst:idx2adr(fw,offset+2)-offst; uint32_t 294 tools/firmware_load.c uint32_t LDR2idx(firmware *fw, int offset) uint32_t 300 tools/firmware_load.c uint32_t LDR2val(firmware *fw, int offset) uint32_t 309 tools/firmware_load.c uint32_t ADR2adr(firmware *fw, int offset) uint32_t 311 tools/firmware_load.c uint32_t inst = fwval(fw,offset); uint32_t 314 tools/firmware_load.c uint32_t fadr = 0; uint32_t 334 tools/firmware_load.c uint32_t ALUop2(firmware *fw, int offset) uint32_t 336 tools/firmware_load.c uint32_t inst = fwval(fw,offset); uint32_t 339 tools/firmware_load.c uint32_t fadr = 0; uint32_t 354 tools/firmware_load.c uint32_t ALUop2a(firmware *fw, int offset) uint32_t 356 tools/firmware_load.c uint32_t inst = fwval(fw,offset); uint32_t 357 tools/firmware_load.c uint32_t rot = (inst>>7)&0x1e; uint32_t 358 tools/firmware_load.c uint32_t imm8 = inst & 0xff; uint32_t 359 tools/firmware_load.c uint32_t offst = (imm8>>rot) | (imm8<<(32-rot)); uint32_t 360 tools/firmware_load.c uint32_t fadr = 0; uint32_t 387 tools/firmware_load.c uint32_t msk = ~(offset & 0xFF000000); uint32_t 389 tools/firmware_load.c uint32_t inst = fwval(fw,fidx); uint32_t 406 tools/firmware_load.c uint32_t followBranch(firmware *fw, uint32_t fadr, int offset) uint32_t 410 tools/firmware_load.c uint32_t msk = ~(offset & 0xFF000000); uint32_t 411 tools/firmware_load.c uint32_t fidx = adr2idx(fw,fadr); // function index uint32_t 413 tools/firmware_load.c uint32_t inst = fwval(fw,fidx); uint32_t 430 tools/firmware_load.c uint32_t followBranch2(firmware *fw, uint32_t fadr, int offset) uint32_t 618 tools/firmware_load.c int isASCIIstring(firmware *fw, uint32_t adr) uint32_t 645 tools/firmware_load.c uint32_t nm0 = *((uint32_t*)str); uint32_t 646 tools/firmware_load.c uint32_t *p; uint32_t 673 tools/firmware_load.c uint32_t find_str_bytes(firmware *fw, char *str) uint32_t 755 tools/firmware_load.c uint32_t sadr = find_str_bytes(fw, str); // string address uint32_t 763 tools/firmware_load.c uint32_t fadr = idx2adr(fw,k); // string pointer address uint32_t 791 tools/firmware_load.c uint32_t sadr = idx2adr(fw,k); // string address uint32_t 813 tools/firmware_load.c uint32_t sadr = idx2adr(fw,str_adr); // string address uint32_t 851 tools/firmware_load.c int find_BL(firmware *fw, int k, uint32_t v1, __attribute__ ((unused))uint32_t v2) uint32_t 855 tools/firmware_load.c uint32_t n = idxFollowBranch(fw, k, 0x01000001); uint32_t 864 tools/firmware_load.c int find_B(firmware *fw, int k, uint32_t v1, __attribute__ ((unused))uint32_t v2) uint32_t 868 tools/firmware_load.c uint32_t n = idxFollowBranch(fw, k, 0x00000001); uint32_t 881 tools/firmware_load.c int search_fw(firmware *fw, int (*func)(firmware*, int, uint32_t, uint32_t), uint32_t v1, uint32_t v2, int len) uint32_t 1075 tools/firmware_load.c uint32_t vx_name_offsets[] = { 0xFFD70110, 0xFFD70120, 0xFFF80110, 0xFFFE0110 }; uint32_t 1076 tools/firmware_load.c uint32_t vx_pid_offsets[] = { 0xFFD70130, 0xFFD7014E, 0xFFF80130, 0xFFFE0130 }; uint32_t 1149 tools/firmware_load.c uint32_t fadr = LDR2val(fw,k-1); uint32_t 1150 tools/firmware_load.c uint32_t dadr = 0x1900; uint32_t 1151 tools/firmware_load.c uint32_t eadr = LDR2val(fw,k-4); uint32_t 1177 tools/firmware_load.c uint32_t eadr = LDR2val(fw,k+3); uint32_t 1209 tools/firmware_load.c uint32_t ofst = (fw->main_offs)?0:adr2idx(fw,0xFFFF0000); // Offset of area to find dancing bits uint32_t 1281 tools/firmware_load.c uint32_t fadr = idx2adr(fw,j); uint32_t 1286 tools/firmware_load.c uint32_t badr = followBranch(fw,idx2adr(fw,i),1); uint32_t 1328 tools/firmware_load.c uint32_t fadr = LDR2val(fw,i); uint32_t 1329 tools/firmware_load.c uint32_t dadr = LDR2val(fw,i+1); uint32_t 1330 tools/firmware_load.c uint32_t eadr = LDR2val(fw,i+2); uint32_t 1352 tools/firmware_load.c uint32_t fadr = LDR2val(fw,i); uint32_t 1353 tools/firmware_load.c uint32_t dadr = LDR2val(fw,i+1); uint32_t 1354 tools/firmware_load.c uint32_t eadr = LDR2val(fw,i+2); uint32_t 24 tools/firmware_load.h uint32_t *p; uint32_t 35 tools/firmware_load.h uint32_t *buf; // Firmware data uint32_t 40 tools/firmware_load.h uint32_t base; // Base address of the firmware in the camera uint32_t 42 tools/firmware_load.h uint32_t memisostart; // Start address of the Canon heap memory (where CHDK is loaded) uint32_t 46 tools/firmware_load.h uint32_t pid_adr; // Address of the camera ID in the firmware uint32_t 55 tools/firmware_load.h uint32_t maxram; // How much memory does the camera have uint32_t 59 tools/firmware_load.h uint32_t dancing_bits; // Dancing Bits number for the encryption key uint32_t 61 tools/firmware_load.h uint32_t data_start; // Start of DATA section in RAM uint32_t 62 tools/firmware_load.h uint32_t data_init_start; // Start of initialisation section for DATA in ROM uint32_t 64 tools/firmware_load.h uint32_t uncached_adr; // Start of un-cached copy of RAM uint32_t 68 tools/firmware_load.h uint32_t *buf2; // pointer to loaded FW data that is copied uint32_t 69 tools/firmware_load.h uint32_t base2; // RAM address copied to uint32_t 70 tools/firmware_load.h uint32_t base_copied; // ROM address copied from uint32_t 75 tools/firmware_load.h uint32_t alt_base; // Alternative base address uint32_t 90 tools/firmware_load.h uint32_t idx2adr(firmware *fw, int idx); uint32_t 91 tools/firmware_load.h int adr2idx(firmware *fw, uint32_t adr); uint32_t 92 tools/firmware_load.h char* adr2ptr(firmware *fw, uint32_t adr); uint32_t 98 tools/firmware_load.h uint32_t* fwadr(firmware *fw, int i); uint32_t 100 tools/firmware_load.h uint32_t fwval(firmware *fw, int i); uint32_t 109 tools/firmware_load.h uint32_t followBranch(firmware *fw, uint32_t fadr, int offset); uint32_t 110 tools/firmware_load.h uint32_t followBranch2(firmware *fw, uint32_t fadr, int offset); uint32_t 113 tools/firmware_load.h uint32_t LDR2adr(firmware *fw, int offset); uint32_t 114 tools/firmware_load.h uint32_t LDR2idx(firmware *fw, int offset); uint32_t 115 tools/firmware_load.h uint32_t LDR2val(firmware *fw, int offset); uint32_t 116 tools/firmware_load.h uint32_t ADR2adr(firmware *fw, int offset); uint32_t 117 tools/firmware_load.h uint32_t ALUop2(firmware *fw, int offset); uint32_t 118 tools/firmware_load.h uint32_t ALUop2a(firmware *fw, int offset); uint32_t 150 tools/firmware_load.h int isASCIIstring(firmware *fw, uint32_t adr); uint32_t 171 tools/firmware_load.h int find_BL(firmware *fw, int k, uint32_t v1, uint32_t v2); uint32_t 172 tools/firmware_load.h int find_B(firmware *fw, int k, uint32_t v1, uint32_t v2); uint32_t 175 tools/firmware_load.h int search_fw(firmware *fw, int (*func)(firmware*, int, uint32_t, uint32_t), uint32_t v1, uint32_t v2, int len); uint32_t 102 tools/firmware_load_ng.c uint32_t nm0 = *((uint32_t*)str); uint32_t 103 tools/firmware_load_ng.c uint32_t *p; uint32_t 132 tools/firmware_load_ng.c uint32_t find_next_bytes_range(firmware *fw, const void *bytes, size_t len, uint32_t start_adr, uint32_t max_adr) uint32_t 174 tools/firmware_load_ng.c int find_bytes_all(firmware *fw, const void *bytes, size_t len, uint32_t adr, uint32_t *result, int max) uint32_t 183 tools/firmware_load_ng.c uint32_t find_next_substr_bytes(firmware *fw, const char *str, uint32_t adr) uint32_t 190 tools/firmware_load_ng.c uint32_t find_next_str_bytes_range(firmware *fw, const char *str, uint32_t adr,uint32_t max_adr) uint32_t 196 tools/firmware_load_ng.c uint32_t find_next_str_bytes_main_fw(firmware *fw, const char *str, uint32_t adr) uint32_t 200 tools/firmware_load_ng.c uint32_t max_adr; uint32_t 210 tools/firmware_load_ng.c uint32_t find_str_bytes_main_fw(firmware *fw, const char *str) uint32_t 215 tools/firmware_load_ng.c uint32_t find_next_str_bytes(firmware *fw, const char *str, uint32_t adr) uint32_t 223 tools/firmware_load_ng.c uint32_t find_str_bytes(firmware *fw, const char *str) uint32_t 228 tools/firmware_load_ng.c int isASCIIstring(firmware *fw, uint32_t adr) uint32_t 249 tools/firmware_load_ng.c adr_range_t *adr_get_range(firmware *fw, uint32_t adr) uint32_t 263 tools/firmware_load_ng.c int adr_get_range_type(firmware *fw, uint32_t adr) uint32_t 272 tools/firmware_load_ng.c uint32_t ptr2adr(firmware *fw, uint8_t *ptr) uint32_t 278 tools/firmware_load_ng.c uint8_t* adr2ptr(firmware *fw, uint32_t adr) uint32_t 293 tools/firmware_load_ng.c uint8_t* adr2ptr_with_data(firmware *fw, uint32_t adr) uint32_t 349 tools/firmware_load_ng.c int adr_is_var(firmware *fw, uint32_t adr) uint32_t 355 tools/firmware_load_ng.c int adr_is_main_fw_code(firmware *fw, uint32_t adr) uint32_t 373 tools/firmware_load_ng.c uint32_t find_u32_adr_range(firmware *fw, uint32_t val, uint32_t start,uint32_t maxadr) uint32_t 383 tools/firmware_load_ng.c uint32_t *p=(uint32_t *)adr2ptr(fw,start); uint32_t 388 tools/firmware_load_ng.c uint32_t *p_end; uint32_t 390 tools/firmware_load_ng.c p_end = (uint32_t *)adr2ptr(fw,maxadr); uint32_t 405 tools/firmware_load_ng.c uint32_t find_u32_adr(firmware *fw, uint32_t val, uint32_t start) uint32_t 411 tools/firmware_load_ng.c uint32_t fw_u32(firmware *fw, uint32_t adr) uint32_t 413 tools/firmware_load_ng.c uint32_t *p=(uint32_t *)adr2ptr(fw,adr); uint32_t 422 tools/firmware_load_ng.c int fw_memcmp(firmware *fw, uint32_t adr,const void *cmp, size_t n) uint32_t 424 tools/firmware_load_ng.c uint32_t *p=(uint32_t *)adr2ptr(fw,adr); uint32_t 456 tools/firmware_load_ng.c void adr_hist_add(adr_hist_t *ah, uint32_t adr) uint32_t 467 tools/firmware_load_ng.c uint32_t adr_hist_get(adr_hist_t *ah, int i) uint32_t 662 tools/firmware_load_ng.c uint32_t* LDR_PC2valptr_thumb(firmware *fw, cs_insn *insn) uint32_t 667 tools/firmware_load_ng.c uint32_t adr; uint32_t 671 tools/firmware_load_ng.c return (uint32_t *)adr2ptr(fw,adr); uint32_t 674 tools/firmware_load_ng.c uint32_t* LDR_PC2valptr_arm(firmware *fw, cs_insn *insn) uint32_t 679 tools/firmware_load_ng.c uint32_t adr; uint32_t 683 tools/firmware_load_ng.c return (uint32_t *)adr2ptr(fw,adr); uint32_t 686 tools/firmware_load_ng.c uint32_t* LDR_PC2valptr(firmware *fw, cs_insn *insn) uint32_t 696 tools/firmware_load_ng.c uint32_t LDR_PC2adr(__attribute__ ((unused))firmware *fw, cs_insn *insn) uint32_t 709 tools/firmware_load_ng.c uint32_t ADRx2adr(__attribute__ ((unused))firmware *fw, cs_insn *insn) uint32_t 733 tools/firmware_load_ng.c uint32_t ADR2adr(__attribute__ ((unused))firmware *fw, cs_insn *insn) uint32_t 748 tools/firmware_load_ng.c uint32_t* ADR2valptr(firmware *fw, cs_insn *insn) uint32_t 750 tools/firmware_load_ng.c uint32_t adr=ADR2adr(fw,insn); uint32_t 751 tools/firmware_load_ng.c return (uint32_t *)adr2ptr(fw,adr); uint32_t 755 tools/firmware_load_ng.c uint32_t LDR_PC2val(firmware *fw, cs_insn *insn) uint32_t 757 tools/firmware_load_ng.c uint32_t *p=LDR_PC2valptr(fw,insn); uint32_t 765 tools/firmware_load_ng.c uint32_t LDR_PC_PC_target(firmware *fw, cs_insn *insn) uint32_t 774 tools/firmware_load_ng.c uint32_t B_target(__attribute__ ((unused))firmware *fw, cs_insn *insn) uint32_t 784 tools/firmware_load_ng.c uint32_t CBx_target(__attribute__ ((unused))firmware *fw, cs_insn *insn) uint32_t 793 tools/firmware_load_ng.c uint32_t BLXimm_target(__attribute__ ((unused))firmware *fw, cs_insn *insn) uint32_t 803 tools/firmware_load_ng.c uint32_t BL_target(__attribute__ ((unused))firmware *fw, cs_insn *insn) uint32_t 812 tools/firmware_load_ng.c uint32_t B_BL_target(__attribute__ ((unused))firmware *fw, cs_insn *insn) uint32_t 822 tools/firmware_load_ng.c uint32_t B_BL_BLXimm_target(__attribute__ ((unused))firmware *fw, cs_insn *insn) uint32_t 833 tools/firmware_load_ng.c uint32_t BX_PC_target(__attribute__ ((unused))firmware *fw, cs_insn *insn) uint32_t 844 tools/firmware_load_ng.c return (uint32_t)(insn->address) + 4; uint32_t 846 tools/firmware_load_ng.c return (uint32_t)(insn->address) + 8; uint32_t 860 tools/firmware_load_ng.c ti->start=(uint32_t)is->adr; // after current instruction uint32_t 864 tools/firmware_load_ng.c uint32_t max_adr; uint32_t 905 tools/firmware_load_ng.c uint32_t adr=ti->start; uint32_t 924 tools/firmware_load_ng.c uint32_t target = ti->start+2*off; uint32_t 952 tools/firmware_load_ng.c iter_state_t *disasm_iter_new(firmware *fw, uint32_t adr) uint32_t 972 tools/firmware_load_ng.c int disasm_iter_set(firmware *fw, iter_state_t *is, uint32_t adr) uint32_t 1009 tools/firmware_load_ng.c int disasm_iter_init(__attribute__ ((unused))firmware *fw, iter_state_t *is, uint32_t adr) uint32_t 1024 tools/firmware_load_ng.c adr_hist_add(&is->ah,(uint32_t)is->adr | is->thumb); // record thumb state to allow backtracking through state changes uint32_t 1049 tools/firmware_load_ng.c int fw_disasm_iter_start(firmware *fw, uint32_t adr) uint32_t 1062 tools/firmware_load_ng.c int fw_disasm_iter_single(firmware *fw, uint32_t adr) uint32_t 1075 tools/firmware_load_ng.c size_t fw_disasm_adr(firmware *fw, uint32_t adr, unsigned count, cs_insn **insn) uint32_t 1096 tools/firmware_load_ng.c uint32_t fw_search_insn(firmware *fw, iter_state_t *is, search_insn_fn f, uint32_t v1, void *udata, uint32_t adr_end) uint32_t 1098 tools/firmware_load_ng.c uint32_t adr_start=is->adr; uint32_t 1127 tools/firmware_load_ng.c uint32_t adr=adr_start; uint32_t 1132 tools/firmware_load_ng.c uint32_t r=f(fw,is,v1,udata); uint32_t 1136 tools/firmware_load_ng.c adr=(uint32_t)is->adr; // adr was updated by iter or called sub uint32_t 1153 tools/firmware_load_ng.c uint32_t *p_adr=(uint32_t *)adr2ptr(fw,(uint32_t)adr); uint32_t 1154 tools/firmware_load_ng.c uint32_t *br_end = br->p + br->len; uint32_t 1155 tools/firmware_load_ng.c uint32_t adr_chunk_end = ptr2adr(fw,(uint8_t*)br_end); uint32_t 1162 tools/firmware_load_ng.c if(!disasm_iter_init(fw,is,(uint32_t)adr | is->thumb)) { uint32_t 1165 tools/firmware_load_ng.c p_adr=(uint32_t *)adr2ptr(fw,(uint32_t)adr); uint32_t 1170 tools/firmware_load_ng.c uint32_t r=f(fw,is,v1,udata); uint32_t 1174 tools/firmware_load_ng.c adr=(uint32_t)is->adr; // adr was updated by iter or called sub uint32_t 1194 tools/firmware_load_ng.c uint32_t search_disasm_const_ref(firmware *fw, iter_state_t *is, uint32_t val, __attribute__ ((unused))void *unused) uint32_t 1197 tools/firmware_load_ng.c uint32_t av=ADRx2adr(fw,is->insn); uint32_t 1201 tools/firmware_load_ng.c return (uint32_t)is->insn->address; uint32_t 1205 tools/firmware_load_ng.c uint32_t *pv=LDR_PC2valptr(fw,is->insn); uint32_t 1209 tools/firmware_load_ng.c return (uint32_t)is->insn->address; uint32_t 1216 tools/firmware_load_ng.c uint32_t search_disasm_str_ref(firmware *fw, iter_state_t *is, __attribute__ ((unused))uint32_t val, void *udata) uint32_t 1220 tools/firmware_load_ng.c uint32_t av=ADRx2adr(fw,is->insn); uint32_t 1225 tools/firmware_load_ng.c return (uint32_t)is->insn->address; uint32_t 1229 tools/firmware_load_ng.c uint32_t *pv=LDR_PC2valptr(fw,is->insn); uint32_t 1234 tools/firmware_load_ng.c return (uint32_t)is->insn->address; uint32_t 1243 tools/firmware_load_ng.c uint32_t search_disasm_calls(firmware *fw, iter_state_t *is, uint32_t val, __attribute__ ((unused))void *unused) uint32_t 1246 tools/firmware_load_ng.c uint32_t sub=get_branch_call_insn_target(fw,is); uint32_t 1256 tools/firmware_load_ng.c int search_calls_multi_end(__attribute__ ((unused))firmware *fw, __attribute__ ((unused))iter_state_t *is, __attribute__ ((unused))uint32_t adr) { uint32_t 1264 tools/firmware_load_ng.c uint32_t search_disasm_calls_multi(firmware *fw, iter_state_t *is, __attribute__ ((unused))uint32_t unused, void *userdata) uint32_t 1267 tools/firmware_load_ng.c uint32_t sub=get_branch_call_insn_target(fw,is); uint32_t 1280 tools/firmware_load_ng.c uint32_t search_disasm_calls_veneer_multi(firmware *fw, iter_state_t *is, __attribute__ ((unused))uint32_t unused, void *userdata) uint32_t 1283 tools/firmware_load_ng.c uint32_t sub=get_branch_call_insn_target(fw,is); uint32_t 1291 tools/firmware_load_ng.c uint32_t veneer=0; uint32_t 1315 tools/firmware_load_ng.c int get_call_const_args(firmware *fw, iter_state_t *is_init, int max_backtrack, uint32_t *res) uint32_t 1344 tools/firmware_load_ng.c uint32_t found_bits=0; // registers with known const values uint32_t 1345 tools/firmware_load_ng.c uint32_t known_bits=0; // registers with some value uint32_t 1380 tools/firmware_load_ng.c uint32_t rd_bit = 1 << rd_i; uint32_t 1387 tools/firmware_load_ng.c uint32_t *pv=LDR_PC2valptr(fw,fw->is->insn); uint32_t 1394 tools/firmware_load_ng.c uint32_t v=ADRx2adr(fw,fw->is->insn); // assumes ADR doesn't generate 0, probably safe uint32_t 1441 tools/firmware_load_ng.c uint32_t get_direct_jump_target(firmware *fw, iter_state_t *is_init) uint32_t 1443 tools/firmware_load_ng.c uint32_t adr=B_target(fw,is_init->insn); uint32_t 1502 tools/firmware_load_ng.c uint32_t get_branch_call_insn_target(firmware *fw, iter_state_t *is) uint32_t 1504 tools/firmware_load_ng.c uint32_t adr=B_BL_target(fw,is->insn); uint32_t 1649 tools/firmware_load_ng.c uint32_t val, uint32_t 1671 tools/firmware_load_ng.c while(fw_search_insn(fw,is,search_disasm_const_ref,val,NULL,(uint32_t)(is->adr+max_search_bytes))) { uint32_t 1673 tools/firmware_load_ng.c uint32_t next_adr = (uint32_t)is->adr; uint32_t 1677 tools/firmware_load_ng.c uint32_t reg_num = match_reg - ARM_REG_R0; uint32_t 1678 tools/firmware_load_ng.c uint32_t reg_bit = 1 << reg_num; uint32_t 1679 tools/firmware_load_ng.c uint32_t regs[4]; uint32_t 1706 tools/firmware_load_ng.c uint32_t val) uint32_t 1728 tools/firmware_load_ng.c int check_simple_func(firmware *fw, uint32_t adr, int match_ftype, simple_func_desc_t *info) uint32_t 1787 tools/firmware_load_ng.c uint32_t find_last_call_from_func(firmware *fw, iter_state_t *is,int min_insns, int max_insns) uint32_t 1790 tools/firmware_load_ng.c uint32_t last_adr=0; uint32_t 2164 tools/firmware_load_ng.c void fw_add_adr_range(firmware *fw, uint32_t start, uint32_t end, uint32_t src_start, int type, int flags) uint32_t 2182 tools/firmware_load_ng.c uint32_t len=end-start; uint32_t 2220 tools/firmware_load_ng.c uint32_t i; uint32_t 2222 tools/firmware_load_ng.c uint32_t min_adr = 0xFFFFFFFF; uint32_t 2225 tools/firmware_load_ng.c uint32_t maxadr = (fw->rom_code_search_max_adr - 0x800000 > fw->base)?fw->base + 0x800000:fw->rom_code_search_max_adr; uint32_t 2231 tools/firmware_load_ng.c uint32_t adr = find_u32_adr_range(fw,fw->dryos_ver_list[i],fw->rom_code_search_min_adr,maxadr); uint32_t 2267 tools/firmware_load_ng.c void firmware_load(firmware *fw, const char *filename, uint32_t base_adr,int fw_arch) uint32_t 2424 tools/firmware_load_ng.c uint32_t *src_start, uint32_t 2425 tools/firmware_load_ng.c uint32_t *dst_start, uint32_t 2426 tools/firmware_load_ng.c uint32_t *dst_end) uint32_t 2429 tools/firmware_load_ng.c uint32_t *fptr = NULL; uint32_t 2430 tools/firmware_load_ng.c uint32_t *dptr = NULL; uint32_t 2431 tools/firmware_load_ng.c uint32_t *eptr = NULL; uint32_t 2437 tools/firmware_load_ng.c uint32_t *pv=LDR_PC2valptr(fw,is->insn); uint32_t 2494 tools/firmware_load_ng.c uint32_t faddr = get_branch_call_insn_target(fw,is); uint32_t 2500 tools/firmware_load_ng.c uint32_t va, vb; uint32_t 2556 tools/firmware_load_ng.c uint32_t src_start, dst_start, dst_end; uint32_t 2557 tools/firmware_load_ng.c uint32_t data_found_copy = 0; uint32_t 2640 tools/firmware_load_ng.c uint32_t *eptr=NULL; uint32_t 2641 tools/firmware_load_ng.c uint32_t *dptr=NULL; uint32_t 2644 tools/firmware_load_ng.c uint32_t *pv=LDR_PC2valptr(fw,is->insn); uint32_t 37 tools/firmware_load_ng.h uint32_t *p; uint32_t 52 tools/firmware_load_ng.h uint32_t adrs[ADR_HIST_SIZE]; uint32_t 63 tools/firmware_load_ng.h uint32_t thumb; // thumb state uint32_t 64 tools/firmware_load_ng.h uint32_t insn_min_size; // 2 or 4, depending on thumb/arm state uint32_t 72 tools/firmware_load_ng.h uint32_t start; // copied / relocated firmware address uint32_t 73 tools/firmware_load_ng.h uint32_t src_start; // source ROM firmware address uint32_t 90 tools/firmware_load_ng.h uint32_t *buf32; // Firmware data uint32_t 96 tools/firmware_load_ng.h uint32_t base; // Base address of the firmware in the camera uint32_t 99 tools/firmware_load_ng.h uint32_t memisostart; // Start address of the Canon heap memory (where CHDK is loaded) uint32_t 108 tools/firmware_load_ng.h uint32_t dryos_ver_adr; // address of main firmware DryOS version string uint32_t 109 tools/firmware_load_ng.h uint32_t dryos_ver_ref_adr; // address of pointer used to identify main fw string uint32_t 110 tools/firmware_load_ng.h uint32_t dryos_ver_list[FW_MAX_DRYOS_VERS]; // addresses of all found DryOS version strings uint32_t 111 tools/firmware_load_ng.h uint32_t dryos_ver_count; // number of version strings found uint32_t 116 tools/firmware_load_ng.h uint32_t data_start; // Start address of DATA section in RAM uint32_t 117 tools/firmware_load_ng.h uint32_t data_init_start; // Start address of initialisation section for DATA in ROM uint32_t 125 tools/firmware_load_ng.h uint32_t rom_code_search_min_adr; // minimum ROM address for normal code searches (i.e. firmware start) uint32_t 126 tools/firmware_load_ng.h uint32_t rom_code_search_max_adr; // max ROM address for normal code searches, i.e. before copied data / code if known uint32_t 130 tools/firmware_load_ng.h uint32_t thumb_default; // 1 if initial firmware code is expected to be thumb, 0 for arm. uint32_t 139 tools/firmware_load_ng.h uint8_t* adr2ptr(firmware *fw, uint32_t adr); uint32_t 142 tools/firmware_load_ng.h uint8_t* adr2ptr_with_data(firmware *fw, uint32_t adr); uint32_t 152 tools/firmware_load_ng.h uint32_t ptr2adr(firmware *fw, uint8_t *ptr); uint32_t 155 tools/firmware_load_ng.h adr_range_t *adr_get_range(firmware *fw, uint32_t adr); uint32_t 158 tools/firmware_load_ng.h int adr_get_range_type(firmware *fw, uint32_t adr); uint32_t 161 tools/firmware_load_ng.h int adr_is_var(firmware *fw, uint32_t adr); uint32_t 164 tools/firmware_load_ng.h int adr_is_main_fw_code(firmware *fw, uint32_t adr); uint32_t 180 tools/firmware_load_ng.h uint32_t find_next_bytes_range(firmware *fw, const void *bytes, size_t len, uint32_t start_adr, uint32_t max_adr); uint32_t 184 tools/firmware_load_ng.h int find_bytes_all(firmware *fw, const void *bytes, size_t len, uint32_t adr, uint32_t *result, int maxmatch); uint32_t 190 tools/firmware_load_ng.h uint32_t find_next_str_bytes(firmware *fw, const char *str, uint32_t adr); uint32_t 193 tools/firmware_load_ng.h uint32_t find_next_str_bytes_main_fw(firmware *fw, const char *str, uint32_t adr); uint32_t 196 tools/firmware_load_ng.h uint32_t find_next_substr_bytes(firmware *fw, const char *str, uint32_t adr); uint32_t 200 tools/firmware_load_ng.h uint32_t find_str_bytes_main_fw(firmware *fw, const char *str); uint32_t 203 tools/firmware_load_ng.h uint32_t find_str_bytes(firmware *fw, const char *str); uint32_t 205 tools/firmware_load_ng.h int isASCIIstring(firmware *fw, uint32_t adr); uint32_t 210 tools/firmware_load_ng.h uint32_t find_u32_adr_range(firmware *fw, uint32_t val, uint32_t start, uint32_t maxadr); uint32_t 215 tools/firmware_load_ng.h uint32_t find_u32_adr(firmware *fw, uint32_t val, uint32_t start); uint32_t 218 tools/firmware_load_ng.h uint32_t fw_u32(firmware *fw, uint32_t adr); uint32_t 221 tools/firmware_load_ng.h int fw_memcmp(firmware *fw, uint32_t adr,const void *cmp, size_t n); uint32_t 231 tools/firmware_load_ng.h void adr_hist_add(adr_hist_t *ah, uint32_t adr); uint32_t 235 tools/firmware_load_ng.h uint32_t adr_hist_get(adr_hist_t *ah, int i); uint32_t 266 tools/firmware_load_ng.h uint32_t* LDR_PC2valptr_thumb(firmware *fw, cs_insn *insn); uint32_t 267 tools/firmware_load_ng.h uint32_t* LDR_PC2valptr_arm(firmware *fw, cs_insn *insn); uint32_t 268 tools/firmware_load_ng.h uint32_t* LDR_PC2valptr(firmware *fw, cs_insn *insn); uint32_t 271 tools/firmware_load_ng.h uint32_t LDR_PC2adr(firmware *fw, cs_insn *insn); uint32_t 307 tools/firmware_load_ng.h uint32_t ADRx2adr(firmware *fw, cs_insn *insn); uint32_t 311 tools/firmware_load_ng.h uint32_t ADR2adr(firmware *fw, cs_insn *insn); uint32_t 314 tools/firmware_load_ng.h uint32_t* ADR2valptr(firmware *fw, cs_insn *insn); uint32_t 317 tools/firmware_load_ng.h uint32_t LDR_PC2val(firmware *fw, cs_insn *insn); uint32_t 322 tools/firmware_load_ng.h uint32_t B_target(firmware *fw, cs_insn *insn); uint32_t 325 tools/firmware_load_ng.h uint32_t CBx_target(firmware *fw, cs_insn *insn); uint32_t 328 tools/firmware_load_ng.h uint32_t BLXimm_target(firmware *fw, cs_insn *insn); uint32_t 333 tools/firmware_load_ng.h uint32_t BL_target(firmware *fw, cs_insn *insn); uint32_t 336 tools/firmware_load_ng.h uint32_t B_BL_target(firmware *fw, cs_insn *insn); uint32_t 339 tools/firmware_load_ng.h uint32_t B_BL_BLXimm_target(firmware *fw, cs_insn *insn); uint32_t 342 tools/firmware_load_ng.h uint32_t BX_PC_target(__attribute__ ((unused))firmware *fw, cs_insn *insn); uint32_t 346 tools/firmware_load_ng.h uint32_t start; // address of first jumptable entry uint32_t 347 tools/firmware_load_ng.h uint32_t count; // number of entries, from preceding cmp, first_target or first invalid value uint32_t 348 tools/firmware_load_ng.h uint32_t first_target; // lowest jumptable target address (presumably, >= end of jump table in normal code) uint32_t 358 tools/firmware_load_ng.h iter_state_t *disasm_iter_new(firmware *fw, uint32_t adr); uint32_t 365 tools/firmware_load_ng.h int disasm_iter_set(firmware *fw, iter_state_t *is, uint32_t adr); uint32_t 369 tools/firmware_load_ng.h int disasm_iter_init(firmware *fw, iter_state_t *is, uint32_t adr); uint32_t 384 tools/firmware_load_ng.h int fw_disasm_iter_start(firmware *fw, uint32_t adr); uint32_t 391 tools/firmware_load_ng.h int fw_disasm_iter_single(firmware *fw, uint32_t adr); uint32_t 411 tools/firmware_load_ng.h typedef uint32_t (*search_insn_fn)(firmware *fw, iter_state_t *is, uint32_t v1, void *udata); uint32_t 422 tools/firmware_load_ng.h uint32_t fw_search_insn(firmware *fw, iter_state_t *is, search_insn_fn f,uint32_t v1, void *udata, uint32_t adr_end); uint32_t 426 tools/firmware_load_ng.h uint32_t search_disasm_const_ref(firmware *fw, iter_state_t *is, uint32_t val, void *unused); uint32_t 429 tools/firmware_load_ng.h uint32_t search_disasm_str_ref(firmware *fw, iter_state_t *is, uint32_t val, void *str); uint32_t 434 tools/firmware_load_ng.h uint32_t search_disasm_calls(firmware *fw, iter_state_t *is, uint32_t val, void *unused); uint32_t 438 tools/firmware_load_ng.h typedef int (*search_calls_multi_fn)(firmware *fw, iter_state_t *is, uint32_t adr); uint32_t 443 tools/firmware_load_ng.h uint32_t adr; uint32_t 448 tools/firmware_load_ng.h int search_calls_multi_end(firmware *fw, iter_state_t *is, uint32_t adr); uint32_t 453 tools/firmware_load_ng.h uint32_t search_disasm_calls_multi(firmware *fw, iter_state_t *is, uint32_t unused, void *userdata); uint32_t 456 tools/firmware_load_ng.h uint32_t search_disasm_calls_veneer_multi(firmware *fw, iter_state_t *is, uint32_t unused, void *userdata); uint32_t 468 tools/firmware_load_ng.h int get_call_const_args(firmware *fw, iter_state_t *is_init, int max_backtrack, uint32_t *res); uint32_t 483 tools/firmware_load_ng.h uint32_t get_direct_jump_target(firmware *fw, iter_state_t *is_init); uint32_t 490 tools/firmware_load_ng.h uint32_t get_branch_call_insn_target(firmware *fw, iter_state_t *is); uint32_t 511 tools/firmware_load_ng.h uint32_t adr_base; // address from original LDR uint32_t 512 tools/firmware_load_ng.h uint32_t adr_adj; // address adjusted by adj if present, normally struct address useful for stubs comments uint32_t 513 tools/firmware_load_ng.h uint32_t adr_final; // full address uint32_t 543 tools/firmware_load_ng.h uint32_t retval; uint32_t 545 tools/firmware_load_ng.h int check_simple_func(firmware *fw, uint32_t adr, int match_ftype, simple_func_desc_t *info); uint32_t 556 tools/firmware_load_ng.h uint32_t find_last_call_from_func(firmware *fw, iter_state_t *is,int min_insns, int max_insns); uint32_t 564 tools/firmware_load_ng.h uint32_t flags; // uint32_t 664 tools/firmware_load_ng.h uint32_t val, uint32_t 680 tools/firmware_load_ng.h uint32_t val); uint32_t 695 tools/firmware_load_ng.h void fw_add_adr_range(firmware *fw, uint32_t start, uint32_t end, uint32_t src_start, int type, int flags); uint32_t 698 tools/firmware_load_ng.h void firmware_load(firmware *fw, const char *filename, uint32_t base_adr,int fw_arch); uint32_t 710 tools/firmware_load_ng.h #define iter_state_adr(is) ((uint32_t)is->insn->address | is->thumb) uint32_t 9 tools/gensig_dryos.c uint32_t inst; uint32_t 10 tools/gensig_dryos.c uint32_t mask; uint32_t 11 tools/gensig_dryos.c uint32_t ignore; uint32_t 269 tools/gensig_dryos.c int bits (uint32_t v) { uint32_t 278 tools/gensig_dryos.c uint32_t buf[1024]; uint32_t 280 tools/gensig_dryos.c void dump_sig(uint32_t pos, int size, FILE *f) uint32_t 301 tools/gensig_dryos.c uint32_t ignore = ~instrs[j].ignore | offset_mask; uint32_t 329 tools/gensig_dryos.c uint32_t base; uint32_t 330 tools/gensig_dryos.c uint32_t pos, lnk_pos; uint32_t 331 tools/gensig_dryos.c uint32_t size, lnk_size; uint32_t 9 tools/gensig_vxworks.c uint32_t inst; uint32_t 10 tools/gensig_vxworks.c uint32_t mask; uint32_t 11 tools/gensig_vxworks.c uint32_t ignore; uint32_t 263 tools/gensig_vxworks.c int bits (uint32_t v) { uint32_t 275 tools/gensig_vxworks.c uint32_t buf[1024]; uint32_t 277 tools/gensig_vxworks.c uint32_t base; uint32_t 278 tools/gensig_vxworks.c uint32_t pos; uint32_t 279 tools/gensig_vxworks.c uint32_t size; uint32_t 318 tools/packfi2/aes128.c static void AddRoundKey (uint32_t *state, uint32_t *key) uint32_t 373 tools/packfi2/aes128.c AddRoundKey ((uint32_t *)state, (uint32_t *)expkey); uint32_t 381 tools/packfi2/aes128.c AddRoundKey ((uint32_t *)state, (uint32_t *)expkey + round * Nb); uint32_t 396 tools/packfi2/aes128.c AddRoundKey ((uint32_t *)state, (uint32_t *)expkey + Nr * Nb); uint32_t 401 tools/packfi2/aes128.c AddRoundKey ((uint32_t *)state, (uint32_t *)expkey + round * Nb); uint32_t 412 tools/packfi2/aes128.c uint32_t xorl[4]; uint32_t 413 tools/packfi2/aes128.c uint32_t *bufl = (uint32_t *)buffer; uint32_t 428 tools/packfi2/aes128.c uint32_t xorl[4]; uint32_t 429 tools/packfi2/aes128.c uint32_t tmpl[4]; uint32_t 430 tools/packfi2/aes128.c uint32_t *bufl = (uint32_t *)buffer; uint32_t 27 tools/packfi2/fi2enc.c uint32_t offset; // Offset in data block uint32_t 28 tools/packfi2/fi2enc.c uint32_t upklen; // Real (unpacked) size of data block uint32_t 29 tools/packfi2/fi2enc.c uint32_t len; // Length of compressed and padded data block uint32_t 30 tools/packfi2/fi2enc.c uint32_t addr; // target address for data block uint32_t 31 tools/packfi2/fi2enc.c uint32_t uf1; // unknown flag 1 uint32_t 32 tools/packfi2/fi2enc.c uint32_t fmain; // Main FW block flag uint32_t 33 tools/packfi2/fi2enc.c uint32_t fboot; // Bootloader block flag uint32_t 34 tools/packfi2/fi2enc.c uint32_t uf2; // unknown flag 2 uint32_t 35 tools/packfi2/fi2enc.c uint32_t uf3; // unknown flag 3 (new in DryOS 50) uint32_t 36 tools/packfi2/fi2enc.c uint32_t uf4; // unknown flag 4 (seen in a DryOS r55 file) uint32_t 41 tools/packfi2/fi2enc.c uint32_t hlen_be; // Header length in big endian uint32_t 42 tools/packfi2/fi2enc.c uint32_t hwid; // Hardware ID uint32_t 43 tools/packfi2/fi2enc.c uint32_t unk1; // unk1 field (0x02230000) uint32_t 44 tools/packfi2/fi2enc.c uint32_t id; // ID field (0x01000000) uint32_t 45 tools/packfi2/fi2enc.c uint32_t ch; // Ch field (0x00000000) uint32_t 46 tools/packfi2/fi2enc.c uint32_t unk2; // unk2 field (0x00000001) uint32_t 47 tools/packfi2/fi2enc.c uint32_t nblk; // number of blocks & records uint32_t 48 tools/packfi2/fi2enc.c uint32_t datacs; // checksum of encrypted data block uint32_t 51 tools/packfi2/fi2enc.c static uint32_t read32_be( const void *src_buffer ) uint32_t 57 tools/packfi2/fi2enc.c static void store32_be( void *dst_buffer, uint32_t value ) uint32_t 66 tools/packfi2/fi2enc.c static uint32_t align128( uint32_t value ) uint32_t 100 tools/packfi2/fi2enc.c static int fi2rec_size(uint32_t dryos_ver) uint32_t 117 tools/packfi2/fi2enc.c static int fi2enc( char *infname, char *outfname, uint32_t *key, uint32_t *iv , uint32_t pid, uint32_t dryos_ver, uint32_t 122 tools/packfi2/fi2enc.c uint32_t cs; uint32_t 192 tools/packfi2/fi2enc.c uint32_t *wbuf = (uint32_t*)buf; uint32_t 244 tools/packfi2/fi2enc.c uint32_t key_buf[4]; uint32_t 245 tools/packfi2/fi2enc.c uint32_t iv_buf[4]; uint32_t 246 tools/packfi2/fi2enc.c uint32_t *key = NULL; uint32_t 247 tools/packfi2/fi2enc.c uint32_t *iv = NULL; uint32_t 249 tools/packfi2/fi2enc.c uint32_t pid=0; uint32_t 250 tools/packfi2/fi2enc.c uint32_t dryos_ver=0; uint32_t 11 tools/pakwif.c uint32_t length; uint32_t 12 tools/pakwif.c uint32_t checksumm; uint32_t 278 tools/pakwif.c uint32_t checksumm_init() uint32_t 284 tools/pakwif.c uint32_t checksumm_update(uint32_t cs, char *buf, int len) uint32_t 298 tools/pakwif.c char *type, char *desc, char *infirname, char *filename, uint32_t baseaddr) uint32_t 355 tools/pakwif.c char *desc, char *name, uint32_t id) uint32_t 375 tools/pakwif.c uint32_t len; uint32_t 376 tools/pakwif.c uint32_t cs; uint32_t 7 tools/ptp_op_names.c uint32_t op; uint32_t 237 tools/ptp_op_names.c const char *get_ptp_op_name(uint32_t op) { uint32_t 3 tools/ptp_op_names.h const char *get_ptp_op_name(uint32_t op); uint32_t 86 tools/stubs_load.c uint32_t v = 0, n = 0; uint32_t 120 tools/stubs_load.c osig* find_sig_val(osig* p, uint32_t val) uint32_t 131 tools/stubs_load.c osig* find_sig_val_by_type(osig* p, uint32_t val, int typ) uint32_t 145 tools/stubs_load.c osig* find_match(osig *p, const char *nm, uint32_t val) uint32_t 13 tools/stubs_load.h uint32_t val; // Value uint32_t 30 tools/stubs_load.h uint32_t min_focus_len; uint32_t 31 tools/stubs_load.h uint32_t max_focus_len; uint32_t 32 tools/stubs_load.h uint32_t propset; uint32_t 39 tools/stubs_load.h osig* find_sig_val(osig* p, uint32_t val); uint32_t 40 tools/stubs_load.h osig* find_match(osig *p, const char *nm, uint32_t val); uint32_t 41 tools/stubs_load.h osig* find_sig_val_by_type(osig* p, uint32_t val, int typ);