2005-03-07 12:03:53 +01:00
|
|
|
/*
|
|
|
|
* File dumping utility
|
|
|
|
*
|
2007-02-10 09:10:13 +01:00
|
|
|
* Copyright 2001,2007 Eric Pouech
|
2005-03-07 12:03:53 +01:00
|
|
|
*
|
|
|
|
* This library is free software; you can redistribute it and/or
|
|
|
|
* modify it under the terms of the GNU Lesser General Public
|
|
|
|
* License as published by the Free Software Foundation; either
|
|
|
|
* version 2.1 of the License, or (at your option) any later version.
|
|
|
|
*
|
|
|
|
* This library is distributed in the hope that it will be useful,
|
|
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
|
|
|
* Lesser General Public License for more details.
|
|
|
|
*
|
|
|
|
* You should have received a copy of the GNU Lesser General Public
|
|
|
|
* License along with this library; if not, write to the Free Software
|
2006-05-18 14:49:52 +02:00
|
|
|
* Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301, USA
|
2005-03-07 12:03:53 +01:00
|
|
|
*/
|
|
|
|
|
|
|
|
#include "config.h"
|
|
|
|
#include "wine/port.h"
|
|
|
|
|
|
|
|
#include <stdlib.h>
|
|
|
|
#include <stdarg.h>
|
|
|
|
#include <stdio.h>
|
|
|
|
#ifdef HAVE_UNISTD_H
|
|
|
|
# include <unistd.h>
|
|
|
|
#endif
|
|
|
|
#include <time.h>
|
|
|
|
#ifdef HAVE_SYS_TYPES_H
|
|
|
|
# include <sys/types.h>
|
|
|
|
#endif
|
|
|
|
#ifdef HAVE_SYS_STAT_H
|
|
|
|
# include <sys/stat.h>
|
|
|
|
#endif
|
|
|
|
#include <fcntl.h>
|
|
|
|
|
|
|
|
#include "windef.h"
|
|
|
|
#include "winbase.h"
|
|
|
|
#include "winedump.h"
|
|
|
|
|
2020-01-22 22:11:23 +01:00
|
|
|
void *dump_base = NULL;
|
|
|
|
unsigned long dump_total_len = 0;
|
2005-03-07 12:03:53 +01:00
|
|
|
|
|
|
|
void dump_data( const unsigned char *ptr, unsigned int size, const char *prefix )
|
|
|
|
{
|
|
|
|
unsigned int i, j;
|
|
|
|
|
2005-05-24 13:45:14 +02:00
|
|
|
printf( "%s%08x: ", prefix, 0 );
|
2005-03-07 12:03:53 +01:00
|
|
|
if (!ptr)
|
|
|
|
{
|
|
|
|
printf("NULL\n");
|
|
|
|
return;
|
|
|
|
}
|
|
|
|
for (i = 0; i < size; i++)
|
|
|
|
{
|
|
|
|
printf( "%02x%c", ptr[i], (i % 16 == 7) ? '-' : ' ' );
|
|
|
|
if ((i % 16) == 15)
|
|
|
|
{
|
|
|
|
printf( " " );
|
|
|
|
for (j = 0; j < 16; j++)
|
|
|
|
printf( "%c", isprint(ptr[i-15+j]) ? ptr[i-15+j] : '.' );
|
2005-05-24 13:45:14 +02:00
|
|
|
if (i < size-1) printf( "\n%s%08x: ", prefix, i + 1 );
|
2005-03-07 12:03:53 +01:00
|
|
|
}
|
|
|
|
}
|
|
|
|
if (i % 16)
|
|
|
|
{
|
|
|
|
printf( "%*s ", 3 * (16-(i%16)), "" );
|
|
|
|
for (j = 0; j < i % 16; j++)
|
|
|
|
printf( "%c", isprint(ptr[i-(i%16)+j]) ? ptr[i-(i%16)+j] : '.' );
|
|
|
|
}
|
|
|
|
printf( "\n" );
|
|
|
|
}
|
|
|
|
|
2007-02-10 09:10:07 +01:00
|
|
|
static char* dump_want_n(unsigned sz)
|
|
|
|
{
|
|
|
|
static char buffer[4 * 1024];
|
|
|
|
static unsigned idx;
|
|
|
|
char* ret;
|
|
|
|
|
|
|
|
assert(sz < sizeof(buffer));
|
|
|
|
if (idx + sz >= sizeof(buffer)) idx = 0;
|
|
|
|
ret = &buffer[idx];
|
|
|
|
idx += sz;
|
|
|
|
return ret;
|
|
|
|
}
|
|
|
|
|
2006-11-26 09:03:49 +01:00
|
|
|
const char *get_time_str(unsigned long _t)
|
2005-03-07 12:03:53 +01:00
|
|
|
{
|
2006-08-23 22:29:21 +02:00
|
|
|
const time_t t = (const time_t)_t;
|
|
|
|
const char *str = ctime(&t);
|
|
|
|
size_t len;
|
2007-02-10 09:10:13 +01:00
|
|
|
char* buf;
|
2005-10-04 17:49:52 +02:00
|
|
|
|
2007-02-10 09:10:13 +01:00
|
|
|
if (!str) return "not valid time";
|
2005-10-04 17:49:52 +02:00
|
|
|
|
|
|
|
len = strlen(str);
|
2005-03-07 12:03:53 +01:00
|
|
|
/* FIXME: I don't get the same values from MS' pedump running under Wine...
|
|
|
|
* I wonder if Wine isn't broken wrt to GMT settings...
|
|
|
|
*/
|
2005-04-25 17:51:45 +02:00
|
|
|
if (len && str[len-1] == '\n') len--;
|
2007-02-10 09:10:13 +01:00
|
|
|
buf = dump_want_n(len + 1);
|
|
|
|
if (buf)
|
|
|
|
{
|
|
|
|
memcpy( buf, str, len );
|
|
|
|
buf[len] = 0;
|
|
|
|
}
|
2005-03-07 12:03:53 +01:00
|
|
|
return buf;
|
|
|
|
}
|
|
|
|
|
|
|
|
unsigned int strlenW( const WCHAR *str )
|
|
|
|
{
|
|
|
|
const WCHAR *s = str;
|
|
|
|
while (*s) s++;
|
|
|
|
return s - str;
|
|
|
|
}
|
|
|
|
|
|
|
|
void dump_unicode_str( const WCHAR *str, int len )
|
|
|
|
{
|
|
|
|
if (len == -1) len = strlenW( str );
|
|
|
|
printf( "L\"");
|
|
|
|
while (len-- > 0 && *str)
|
|
|
|
{
|
|
|
|
WCHAR c = *str++;
|
|
|
|
switch (c)
|
|
|
|
{
|
|
|
|
case '\n': printf( "\\n" ); break;
|
|
|
|
case '\r': printf( "\\r" ); break;
|
|
|
|
case '\t': printf( "\\t" ); break;
|
|
|
|
case '"': printf( "\\\"" ); break;
|
|
|
|
case '\\': printf( "\\\\" ); break;
|
|
|
|
default:
|
|
|
|
if (c >= ' ' && c <= 126) putchar(c);
|
|
|
|
else printf( "\\u%04x",c);
|
|
|
|
}
|
|
|
|
}
|
|
|
|
printf( "\"" );
|
|
|
|
}
|
|
|
|
|
2007-02-10 09:10:07 +01:00
|
|
|
const char* get_symbol_str(const char* symname)
|
|
|
|
{
|
|
|
|
char* tmp;
|
|
|
|
const char* ret;
|
|
|
|
|
|
|
|
if (!symname) return "(nil)";
|
|
|
|
if (globals.do_demangle)
|
|
|
|
{
|
|
|
|
parsed_symbol symbol;
|
|
|
|
|
|
|
|
symbol_init(&symbol, symname);
|
2014-01-13 21:44:00 +01:00
|
|
|
if (!symbol_demangle(&symbol))
|
2007-02-10 09:10:07 +01:00
|
|
|
ret = symname;
|
|
|
|
else if (symbol.flags & SYM_DATA)
|
|
|
|
{
|
|
|
|
ret = tmp = dump_want_n(strlen(symbol.arg_text[0]) + 1);
|
|
|
|
if (tmp) strcpy(tmp, symbol.arg_text[0]);
|
|
|
|
}
|
|
|
|
else
|
|
|
|
{
|
|
|
|
unsigned int i, len, start = symbol.flags & SYM_THISCALL ? 1 : 0;
|
|
|
|
|
|
|
|
len = strlen(symbol.return_text) + 3 /* ' __' */ +
|
|
|
|
strlen(symbol_get_call_convention(&symbol)) + 1 /* ' ' */+
|
|
|
|
strlen(symbol.function_name) + 1 /* ')' */;
|
|
|
|
if (!symbol.argc || (symbol.argc == 1 && symbol.flags & SYM_THISCALL))
|
|
|
|
len += 4 /* "void" */;
|
|
|
|
else for (i = start; i < symbol.argc; i++)
|
|
|
|
len += (i > start ? 2 /* ", " */ : 0 /* "" */) + strlen(symbol.arg_text[i]);
|
|
|
|
if (symbol.varargs) len += 5 /* ", ..." */;
|
|
|
|
len += 2; /* ")\0" */
|
|
|
|
|
|
|
|
ret = tmp = dump_want_n(len);
|
|
|
|
if (tmp)
|
|
|
|
{
|
|
|
|
sprintf(tmp, "%s __%s %s(",
|
|
|
|
symbol.return_text,
|
|
|
|
symbol_get_call_convention(&symbol),
|
|
|
|
symbol.function_name);
|
|
|
|
if (!symbol.argc || (symbol.argc == 1 && symbol.flags & SYM_THISCALL))
|
|
|
|
strcat(tmp, "void");
|
|
|
|
else for (i = start; i < symbol.argc; i++)
|
|
|
|
{
|
|
|
|
if (i > start) strcat(tmp, ", ");
|
|
|
|
strcat(tmp, symbol.arg_text[i]);
|
|
|
|
}
|
|
|
|
if (symbol.varargs) strcat(tmp, ", ...");
|
|
|
|
strcat(tmp, ")");
|
|
|
|
}
|
|
|
|
}
|
|
|
|
symbol_clear(&symbol);
|
|
|
|
}
|
|
|
|
else ret = symname;
|
|
|
|
return ret;
|
|
|
|
}
|
|
|
|
|
2007-02-10 09:10:13 +01:00
|
|
|
const char* get_guid_str(const GUID* guid)
|
2007-01-05 21:42:32 +01:00
|
|
|
{
|
2007-02-10 09:10:13 +01:00
|
|
|
char* str;
|
|
|
|
|
|
|
|
str = dump_want_n(39);
|
|
|
|
if (str)
|
|
|
|
sprintf(str, "{%08x-%04x-%04x-%02x%02x-%02x%02x%02x%02x%02x%02x}",
|
|
|
|
guid->Data1, guid->Data2, guid->Data3,
|
|
|
|
guid->Data4[0], guid->Data4[1], guid->Data4[2], guid->Data4[3],
|
|
|
|
guid->Data4[4], guid->Data4[5], guid->Data4[6], guid->Data4[7]);
|
2007-01-05 21:42:32 +01:00
|
|
|
return str;
|
|
|
|
}
|
|
|
|
|
2020-03-13 10:14:49 +01:00
|
|
|
const char *get_unicode_str( const WCHAR *str, int len )
|
|
|
|
{
|
|
|
|
char *buffer;
|
|
|
|
int i = 0;
|
|
|
|
|
|
|
|
if (len == -1) len = strlenW( str );
|
|
|
|
buffer = dump_want_n( len * 6 + 3);
|
|
|
|
buffer[i++] = '"';
|
|
|
|
while (len-- > 0 && *str)
|
|
|
|
{
|
|
|
|
WCHAR c = *str++;
|
|
|
|
switch (c)
|
|
|
|
{
|
|
|
|
case '\n': strcpy( buffer + i, "\\n" ); i += 2; break;
|
|
|
|
case '\r': strcpy( buffer + i, "\\r" ); i += 2; break;
|
|
|
|
case '\t': strcpy( buffer + i, "\\t" ); i += 2; break;
|
|
|
|
case '"': strcpy( buffer + i, "\\\"" ); i += 2; break;
|
|
|
|
case '\\': strcpy( buffer + i, "\\\\" ); i += 2; break;
|
|
|
|
default:
|
|
|
|
if (c >= ' ' && c <= 126) buffer[i++] = c;
|
|
|
|
else i += sprintf( buffer + i, "\\u%04x",c);
|
|
|
|
}
|
|
|
|
}
|
|
|
|
buffer[i++] = '"';
|
|
|
|
buffer[i] = 0;
|
|
|
|
return buffer;
|
|
|
|
}
|
|
|
|
|
2006-04-10 20:53:50 +02:00
|
|
|
const void* PRD(unsigned long prd, unsigned long len)
|
2005-03-07 12:03:53 +01:00
|
|
|
{
|
2006-04-10 20:53:50 +02:00
|
|
|
return (prd + len > dump_total_len) ? NULL : (const char*)dump_base + prd;
|
2005-03-07 12:03:53 +01:00
|
|
|
}
|
|
|
|
|
2006-04-10 20:53:50 +02:00
|
|
|
unsigned long Offset(const void* ptr)
|
2005-03-07 12:03:53 +01:00
|
|
|
{
|
|
|
|
if (ptr < dump_base) {printf("<<<<<ptr below\n");return 0;}
|
2006-04-10 20:53:50 +02:00
|
|
|
if ((const char *)ptr >= (const char*)dump_base + dump_total_len) {printf("<<<<<ptr above\n");return 0;}
|
2006-08-23 22:29:21 +02:00
|
|
|
return (const char *)ptr - (const char *)dump_base;
|
2005-03-07 12:03:53 +01:00
|
|
|
}
|
|
|
|
|
2006-11-29 21:40:12 +01:00
|
|
|
static const struct dumper
|
2005-03-07 12:03:53 +01:00
|
|
|
{
|
2006-11-29 21:40:12 +01:00
|
|
|
enum FileSig kind;
|
|
|
|
enum FileSig (*get_kind)(void);
|
|
|
|
file_dumper dumper; /* default dump tool */
|
2005-03-07 12:03:53 +01:00
|
|
|
}
|
2006-11-29 21:40:12 +01:00
|
|
|
dumpers[] =
|
2005-03-07 12:03:53 +01:00
|
|
|
{
|
2007-01-05 21:42:19 +01:00
|
|
|
{SIG_DOS, get_kind_exec, dos_dump},
|
2006-11-29 21:40:12 +01:00
|
|
|
{SIG_PE, get_kind_exec, pe_dump},
|
|
|
|
{SIG_DBG, get_kind_dbg, dbg_dump},
|
2006-11-29 21:40:58 +01:00
|
|
|
{SIG_PDB, get_kind_pdb, pdb_dump},
|
2006-11-29 21:40:12 +01:00
|
|
|
{SIG_NE, get_kind_exec, ne_dump},
|
|
|
|
{SIG_LE, get_kind_exec, le_dump},
|
|
|
|
{SIG_COFFLIB, get_kind_lib, lib_dump},
|
|
|
|
{SIG_MDMP, get_kind_mdmp, mdmp_dump},
|
2006-11-29 21:40:16 +01:00
|
|
|
{SIG_LNK, get_kind_lnk, lnk_dump},
|
2007-01-05 21:42:19 +01:00
|
|
|
{SIG_EMF, get_kind_emf, emf_dump},
|
2009-05-11 13:56:23 +02:00
|
|
|
{SIG_FNT, get_kind_fnt, fnt_dump},
|
2018-07-10 05:41:59 +02:00
|
|
|
{SIG_TLB, get_kind_tlb, tlb_dump},
|
2020-01-22 22:11:23 +01:00
|
|
|
{SIG_NLS, get_kind_nls, nls_dump},
|
2006-11-29 21:40:12 +01:00
|
|
|
{SIG_UNKNOWN, NULL, NULL} /* sentinel */
|
|
|
|
};
|
2005-03-07 12:03:53 +01:00
|
|
|
|
2013-12-05 00:58:10 +01:00
|
|
|
BOOL dump_analysis(const char *name, file_dumper fn, enum FileSig wanted_sig)
|
2005-03-07 12:03:53 +01:00
|
|
|
{
|
|
|
|
int fd;
|
2013-12-05 00:58:10 +01:00
|
|
|
BOOL ret = TRUE;
|
2005-03-07 12:03:53 +01:00
|
|
|
struct stat s;
|
2006-11-29 21:40:12 +01:00
|
|
|
const struct dumper *dpr;
|
2005-03-07 12:03:53 +01:00
|
|
|
|
|
|
|
setbuf(stdout, NULL);
|
|
|
|
|
|
|
|
fd = open(name, O_RDONLY | O_BINARY);
|
|
|
|
if (fd == -1) fatal("Can't open file");
|
|
|
|
|
|
|
|
if (fstat(fd, &s) < 0) fatal("Can't get size");
|
|
|
|
dump_total_len = s.st_size;
|
|
|
|
|
2019-04-03 15:49:04 +02:00
|
|
|
if (!(dump_base = malloc( dump_total_len ))) fatal( "Out of memory" );
|
|
|
|
if ((unsigned long)read( fd, dump_base, dump_total_len ) != dump_total_len) fatal( "Cannot read file" );
|
2005-03-07 12:03:53 +01:00
|
|
|
|
2006-11-30 17:11:01 +01:00
|
|
|
printf("Contents of %s: %ld bytes\n\n", name, dump_total_len);
|
|
|
|
|
2006-11-29 21:40:12 +01:00
|
|
|
for (dpr = dumpers; dpr->kind != SIG_UNKNOWN; dpr++)
|
2005-03-07 12:03:53 +01:00
|
|
|
{
|
2006-11-29 21:40:12 +01:00
|
|
|
if (dpr->get_kind() == dpr->kind &&
|
|
|
|
(wanted_sig == SIG_UNKNOWN || wanted_sig == dpr->kind))
|
|
|
|
{
|
|
|
|
if (fn) fn(); else dpr->dumper();
|
2006-11-28 11:40:13 +01:00
|
|
|
break;
|
2006-11-29 21:40:12 +01:00
|
|
|
}
|
2005-03-07 12:03:53 +01:00
|
|
|
}
|
2006-11-29 21:40:12 +01:00
|
|
|
if (dpr->kind == SIG_UNKNOWN)
|
2005-03-07 12:03:53 +01:00
|
|
|
{
|
|
|
|
printf("Can't get a suitable file signature, aborting\n");
|
2013-12-05 00:58:10 +01:00
|
|
|
ret = FALSE;
|
2005-03-07 12:03:53 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
if (ret) printf("Done dumping %s\n", name);
|
2019-04-03 15:49:04 +02:00
|
|
|
free( dump_base );
|
2005-03-07 12:03:53 +01:00
|
|
|
close(fd);
|
|
|
|
|
|
|
|
return ret;
|
|
|
|
}
|
|
|
|
|
|
|
|
void dump_file(const char* name)
|
|
|
|
{
|
2006-11-29 21:40:12 +01:00
|
|
|
dump_analysis(name, NULL, SIG_UNKNOWN);
|
2005-03-07 12:03:53 +01:00
|
|
|
}
|