Library offsets

[BippyM]

Hi Guys,


I am looking at some code (nothing important) and am wondering where I should look to investigate execbase offsets.. So

Code:

movea.l (4),a6
jsr ($3c,a6)

I know about offsets such as openlibrary etc, just unsure of these


Cheers

[thomas]

If you don't have list it might need quite some effort. I don't think there is a file in the developer docs which has all the offsets as readable text.

One working way to calculate the offset for a function is to look at the .fd file of the library. At the beginning there is an OFFSET statement which tells you at which offset to start for the first function (usually -30), then you add -6 for each line in the file until you reach the function of interest.

[BippyM]

This is right at the beginning of the file, and i'm sure absexecbase is stored in a6, hence this looks like an exec offset, however I know most library cales are negative (-$228 for openlibrary etc). I'm messing with resource and disassembing some code, and wanted to get the right symbols

[ross]

I usually use ReSource for offsets (positive or negative) in libraries.
And I've a file with all the _LVO offsets to include in my ASM projects.

For -$3C:
_LVODispatch equ -60

You sure ExecBase is not tampered? A positive value for a jsr in exec is strange..

[kamelito]

https://github.com/jotd666/amiga68kt...r/tools/LVOs.i

[BippyM]

Quote:

Originally Posted by ross

I usually use ReSource for offsets (positive or negative) in libraries.
And I've a file with all the _LVO offsets to include in my ASM projects.

For -$3C:
_LVODispatch equ -60

You sure ExecBase is not tampered? A positive value for a jsr in exec is strange..

Indeed this is odd.. Attached is a part of the code directly from resource:

[ross]

Maybe a binary loaded with LoadSeg() and then modified?

More info needed

[PeterK]

I use Scout for that purpose. It needs the FD files from the NDK and an assign to FD: and you can also install the disassembler.library (I think its from ThoR) and then just click onto the "Function" button to see the actual code of that function, which could also be the code of a patch.

If you need to know positive offsets you can use the structure.guide:
http://aminet.net/package/dev/asm/StructureGuide

In your example ($60,A6) seems to be an interrupt vector in the execbase structure, but I've never used things like that.

Edit: And if I remember it correctly, XOpa 1.96 has also excellent support for the execbase structure at real-time built-in.

[BippyM]

Quote:

Originally Posted by ross

Maybe a binary loaded with LoadSeg() and then modified?

More info needed

Essentially I am resourcing the captive map-generator (just for the hell of it).. I am doing it to try and understand how to use resource etc.. mapgen is attached

[StingRay]

I doubt this runs on its own, some other binary must have modified $4.w before. Looking at the plain ReSource screenshot you've posted I'd guess this would crash if run. The complete package would be required.

[BippyM]

Quote:

Originally Posted by StingRay

I doubt this runs on its own, some other binary must have modified $4.w before. Looking at the plain ReSource screenshot you've posted I'd guess this would crash if run. The complete package would be required.

Now you have said this, I guess it makes sense. I never considered that someone might overwrite $4.


It's Captive, maybe I should resource the bootloader, and then the file loader.


Cheers guys

[ross]

Yep, this can't work on its own.
Inside there is also some encrypted code...

Not the best example to learn how to use ReSource

[BippyM]

Quote:

Originally Posted by ross

Yep, this can't work on its own.
Inside there is also some encrypted code...

Not the best example to learn how to use ReSource

I don't do easy.. I recently started C++ and dove striaght in with a full gui application

[meynaf]

IIRC Captive uses own mini-OS called Ratt-Dos. The code has nothing to do with exec library.
To know what it is doing, disassembly of the loader is definitely needed.

[alkis]

$60,ExecBase should be:

Code:

   WORD	ChkSum		; for all of the above (minus 2)


******* Interrupt Related ********************************************
LABEL	IntVects
	    STRUCT	IVTBE,IV_SIZE
	    STRUCT	IVDSKBLK,IV_SIZE
	    STRUCT	IVSOFTINT,IV_SIZE
	    STRUCT	IVPORTS,IV_SIZE
	    STRUCT	IVCOPER,IV_SIZE
	    STRUCT	IVVERTB,IV_SIZE
	    STRUCT	IVBLIT,IV_SIZE
	    STRUCT	IVAUD0,IV_SIZE
	    STRUCT	IVAUD1,IV_SIZE
	    STRUCT	IVAUD2,IV_SIZE
	    STRUCT	IVAUD3,IV_SIZE
	    STRUCT	IVRBF,IV_SIZE
	    STRUCT	IVDSKSYNC,IV_SIZE
	    STRUCT	IVEXTER,IV_SIZE
	    STRUCT	IVINTEN,IV_SIZE
	    STRUCT	IVNMI,IV_SIZE

The IV struct is

Code:

 STRUCTURE  IV,0
    APTR    IV_DATA
    APTR    IV_CODE
    APTR    IV_NODE
    LABEL   IV_SIZ

Soooo, if I haven't messed up anything should be a call to IVDSKBLK.IV_DATA if that makes any sense

[StingRay]

Quote:

Soooo, if I haven't messed up anything should be a call to IVDSKBLK.IV_DATA if that makes any sense

It doesn't. It is not an ExecBase call at all.

[alkis]

Quote:

Originally Posted by StingRay

It doesn't. It is not an ExeBase call at all.

Yeah, that makes more sense.

[Lyverbe]

Quote:

Originally Posted by BippyM

Essentially I am resourcing the captive map-generator (just for the hell of it).. I am doing it to try and understand how to use resource etc.. mapgen is attached

To create the Ultimate Captive Guide webpage, I reverse engineered about 95% of Captive including the map generator completely in order to create the dedicated section of the webpage. I also converted it to C++ to have it work with the SuperCC tool. It was a lot of fun and I learned SO much.