2018-07-01 18:17:46 +00:00
|
|
|
'''
|
|
|
|
|
PROJECT: ReactOS baseaddress updater
|
|
|
|
|
LICENSE: MIT (https://spdx.org/licenses/MIT)
|
|
|
|
|
PURPOSE: Update baseaddresses of all modules
|
|
|
|
|
COPYRIGHT: Copyright 2017,2018 Mark Jansen (mark.jansen@reactos.org)
|
|
|
|
|
'''
|
2018-09-08 09:10:51 +00:00
|
|
|
from __future__ import print_function, absolute_import, division
|
2018-07-01 18:17:46 +00:00
|
|
|
import os
|
|
|
|
|
import struct
|
|
|
|
|
import sys
|
2018-07-02 20:32:03 +00:00
|
|
|
|
2018-07-01 18:17:46 +00:00
|
|
|
try:
|
|
|
|
|
import pefile
|
|
|
|
|
except ImportError:
|
2018-09-08 09:10:51 +00:00
|
|
|
print('# Please install pefile from pip or https://github.com/erocarrera/pefile')
|
|
|
|
|
print('# Using fallback')
|
|
|
|
|
print()
|
2018-07-01 18:17:46 +00:00
|
|
|
|
2018-07-02 20:32:03 +00:00
|
|
|
ALL_EXTENSIONS = (
|
|
|
|
|
'.dll', '.acm', '.ax', '.cpl', '.drv', '.ocx'
|
2018-07-01 18:17:46 +00:00
|
|
|
)
|
|
|
|
|
|
|
|
|
|
PRIORITIES = (
|
|
|
|
|
'ntdll.dll',
|
|
|
|
|
'kernel32.dll',
|
|
|
|
|
'msvcrt.dll',
|
|
|
|
|
'advapi32.dll',
|
|
|
|
|
'gdi32.dll',
|
|
|
|
|
'user32.dll',
|
|
|
|
|
'dhcpcsvc.dll',
|
|
|
|
|
'dnsapi.dll',
|
|
|
|
|
'icmp.dll',
|
|
|
|
|
'iphlpapi.dll',
|
|
|
|
|
'ws2_32.dll',
|
|
|
|
|
'ws2help.dll',
|
|
|
|
|
'shlwapi.dll',
|
|
|
|
|
'rpcrt4.dll',
|
|
|
|
|
'comctl32.dll',
|
|
|
|
|
'ole32.dll',
|
|
|
|
|
'winspool.drv',
|
|
|
|
|
'winmm.dll',
|
|
|
|
|
'comdlg32.dll',
|
|
|
|
|
'shell32.dll',
|
|
|
|
|
'lz32.dll',
|
|
|
|
|
'version.dll',
|
|
|
|
|
'oleaut32.dll',
|
|
|
|
|
'setupapi.dll',
|
|
|
|
|
'mpr.dll',
|
|
|
|
|
'crypt32.dll',
|
|
|
|
|
'wininet.dll',
|
|
|
|
|
'urlmon.dll',
|
|
|
|
|
'psapi.dll',
|
|
|
|
|
'imm32.dll',
|
|
|
|
|
'msvfw32.dll',
|
|
|
|
|
'dbghelp.dll',
|
|
|
|
|
'devmgr.dll',
|
|
|
|
|
'msacm32.dll',
|
|
|
|
|
'netapi32.dll',
|
|
|
|
|
'powrprof.dll',
|
|
|
|
|
'secur32.dll',
|
|
|
|
|
'wintrust.dll',
|
|
|
|
|
'avicap32.dll',
|
|
|
|
|
'cabinet.dll',
|
|
|
|
|
'dsound.dll',
|
|
|
|
|
'glu32.dll',
|
|
|
|
|
'opengl32.dll',
|
|
|
|
|
'riched20.dll',
|
|
|
|
|
'smdll.dll',
|
|
|
|
|
'userenv.dll',
|
|
|
|
|
'uxtheme.dll',
|
|
|
|
|
'cryptui.dll',
|
|
|
|
|
'csrsrv.dll',
|
|
|
|
|
'basesrv.dll',
|
|
|
|
|
'winsrv.dll',
|
|
|
|
|
'dplayx.dll',
|
|
|
|
|
'gdiplus.dll',
|
|
|
|
|
'msimg32.dll',
|
|
|
|
|
'mswsock.dll',
|
|
|
|
|
'oledlg.dll',
|
|
|
|
|
'rasapi32.dll',
|
|
|
|
|
'rsaenh.dll',
|
|
|
|
|
'samlib.dll',
|
|
|
|
|
'sensapi.dll',
|
|
|
|
|
'sfc_os.dll',
|
|
|
|
|
'snmpapi.dll',
|
|
|
|
|
'spoolss.dll',
|
|
|
|
|
'usp10.dll',
|
|
|
|
|
)
|
|
|
|
|
|
|
|
|
|
EXCLUDE = (
|
|
|
|
|
'bmfd.dll',
|
|
|
|
|
'bootvid.dll',
|
2019-05-01 07:44:33 +00:00
|
|
|
'framebuf.dll',
|
|
|
|
|
'framebuf_new.dll',
|
2018-07-01 18:17:46 +00:00
|
|
|
'freeldr_pe.dll',
|
|
|
|
|
'ftfd.dll',
|
|
|
|
|
'fusion.dll',
|
2019-05-01 07:44:33 +00:00
|
|
|
'genincdata.dll',
|
2018-07-01 18:17:46 +00:00
|
|
|
'hal.dll',
|
|
|
|
|
'halaacpi.dll',
|
|
|
|
|
'halacpi.dll',
|
|
|
|
|
'halapic.dll',
|
|
|
|
|
'kbda1.dll',
|
|
|
|
|
'kbda2.dll',
|
|
|
|
|
'kbda3.dll',
|
|
|
|
|
'kbdal.dll',
|
|
|
|
|
'kbdarme.dll',
|
|
|
|
|
'kbdarmw.dll',
|
|
|
|
|
'kbdaze.dll',
|
|
|
|
|
'kbdazel.dll',
|
|
|
|
|
'kbdbe.dll',
|
|
|
|
|
'kbdbga.dll',
|
|
|
|
|
'kbdbgm.dll',
|
|
|
|
|
'kbdbgt.dll',
|
|
|
|
|
'kbdblr.dll',
|
|
|
|
|
'kbdbr.dll',
|
|
|
|
|
'kbdbur.dll',
|
|
|
|
|
'kbdcan.dll',
|
|
|
|
|
'kbdcr.dll',
|
|
|
|
|
'kbdcz.dll',
|
|
|
|
|
'kbdcz1.dll',
|
|
|
|
|
'kbdda.dll',
|
|
|
|
|
'kbddv.dll',
|
|
|
|
|
'kbdes.dll',
|
|
|
|
|
'kbdest.dll',
|
|
|
|
|
'kbdfc.dll',
|
|
|
|
|
'kbdfi.dll',
|
|
|
|
|
'kbdfr.dll',
|
|
|
|
|
'kbdgeo.dll',
|
|
|
|
|
'kbdgerg.dll',
|
|
|
|
|
'kbdgneo.dll',
|
|
|
|
|
'kbdgr.dll',
|
|
|
|
|
'kbdgrist.dll',
|
|
|
|
|
'kbdhe.dll',
|
|
|
|
|
'kbdheb.dll',
|
|
|
|
|
'kbdhu.dll',
|
|
|
|
|
'kbdic.dll',
|
|
|
|
|
'kbdinasa.dll',
|
|
|
|
|
'kbdinben.dll',
|
|
|
|
|
'kbdindev.dll',
|
|
|
|
|
'kbdinguj.dll',
|
|
|
|
|
'kbdinmal.dll',
|
|
|
|
|
'kbdir.dll',
|
|
|
|
|
'kbdit.dll',
|
|
|
|
|
'kbdja.dll',
|
|
|
|
|
'kbdkaz.dll',
|
|
|
|
|
'kbdko.dll',
|
|
|
|
|
'kbdla.dll',
|
|
|
|
|
'kbdlt1.dll',
|
|
|
|
|
'kbdlv.dll',
|
|
|
|
|
'kbdmac.dll',
|
|
|
|
|
'kbdne.dll',
|
|
|
|
|
'kbdno.dll',
|
|
|
|
|
'kbdpl.dll',
|
|
|
|
|
'kbdpl1.dll',
|
|
|
|
|
'kbdpo.dll',
|
|
|
|
|
'kbdro.dll',
|
|
|
|
|
'kbdru.dll',
|
|
|
|
|
'kbdru1.dll',
|
|
|
|
|
'kbdsg.dll',
|
|
|
|
|
'kbdsk.dll',
|
|
|
|
|
'kbdsk1.dll',
|
|
|
|
|
'kbdsw.dll',
|
|
|
|
|
'kbdtat.dll',
|
|
|
|
|
'kbdth0.dll',
|
|
|
|
|
'kbdth1.dll',
|
|
|
|
|
'kbdth2.dll',
|
|
|
|
|
'kbdth3.dll',
|
|
|
|
|
'kbdtuf.dll',
|
|
|
|
|
'kbdtuq.dll',
|
|
|
|
|
'kbduk.dll',
|
|
|
|
|
'kbdur.dll',
|
|
|
|
|
'kbdurs.dll',
|
|
|
|
|
'kbdus.dll',
|
|
|
|
|
'kbdusa.dll',
|
|
|
|
|
'kbdusl.dll',
|
|
|
|
|
'kbdusr.dll',
|
|
|
|
|
'kbdusx.dll',
|
|
|
|
|
'kbduzb.dll',
|
|
|
|
|
'kbdvntc.dll',
|
|
|
|
|
'kbdycc.dll',
|
|
|
|
|
'kbdycl.dll',
|
|
|
|
|
'kdcom.dll',
|
|
|
|
|
'kdvbox.dll',
|
|
|
|
|
'setupldr_pe.dll',
|
|
|
|
|
'vgaddi.dll',
|
|
|
|
|
'dllexport_test_dll1.dll',
|
|
|
|
|
'dllexport_test_dll2.dll',
|
|
|
|
|
'dllimport_test.dll',
|
|
|
|
|
'MyEventProvider.dll',
|
|
|
|
|
'w32kdll_2k3sp2.dll',
|
|
|
|
|
'w32kdll_ros.dll',
|
|
|
|
|
'w32kdll_xpsp2.dll',
|
|
|
|
|
)
|
|
|
|
|
|
2018-09-01 19:09:18 +00:00
|
|
|
IMAGE_NT_OPTIONAL_HDR32_MAGIC = 0x10b
|
|
|
|
|
IMAGE_NT_OPTIONAL_HDR64_MAGIC = 0x20b
|
|
|
|
|
|
|
|
|
|
IMAGE_TYPES = {
|
|
|
|
|
IMAGE_NT_OPTIONAL_HDR32_MAGIC: 0,
|
|
|
|
|
IMAGE_NT_OPTIONAL_HDR64_MAGIC: 0
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
def is_x64():
|
|
|
|
|
return IMAGE_TYPES[IMAGE_NT_OPTIONAL_HDR64_MAGIC] > IMAGE_TYPES[IMAGE_NT_OPTIONAL_HDR32_MAGIC]
|
2018-07-01 18:17:46 +00:00
|
|
|
|
|
|
|
|
def size_of_image_fallback(filename):
|
|
|
|
|
with open(filename, 'rb') as fin:
|
2019-04-29 15:00:18 +00:00
|
|
|
if fin.read(2) != b'MZ':
|
2018-09-08 09:10:51 +00:00
|
|
|
print(filename, 'No dos header found!')
|
2018-07-01 18:17:46 +00:00
|
|
|
return 0
|
|
|
|
|
fin.seek(0x3C)
|
|
|
|
|
e_lfanew = struct.unpack('i', fin.read(4))[0]
|
|
|
|
|
fin.seek(e_lfanew)
|
2019-04-29 15:00:18 +00:00
|
|
|
if fin.read(4) != b'PE\0\0':
|
2018-09-08 09:10:51 +00:00
|
|
|
print(filename, 'No PE header found!')
|
2018-07-01 18:17:46 +00:00
|
|
|
return 0
|
|
|
|
|
fin.seek(e_lfanew + 0x18)
|
|
|
|
|
pe_magic = struct.unpack('h', fin.read(2))[0]
|
2018-09-01 19:09:18 +00:00
|
|
|
if pe_magic in IMAGE_TYPES.keys():
|
|
|
|
|
IMAGE_TYPES[pe_magic] += 1
|
|
|
|
|
fin.seek(e_lfanew + 0x50)
|
|
|
|
|
pe_size_of_image = struct.unpack('i', fin.read(4))[0]
|
|
|
|
|
return pe_size_of_image
|
|
|
|
|
print(filename, 'Unknown executable format!')
|
|
|
|
|
return 0
|
2018-07-01 18:17:46 +00:00
|
|
|
|
|
|
|
|
|
2018-09-01 19:09:18 +00:00
|
|
|
def size_of_image_verify(filename):
|
|
|
|
|
pefile_size = pefile.PE(filename, fast_load=True).OPTIONAL_HEADER.SizeOfImage
|
|
|
|
|
custom_size = size_of_image_fallback(filename)
|
|
|
|
|
assert custom_size == pefile_size, filename
|
|
|
|
|
return custom_size
|
|
|
|
|
|
|
|
|
|
SIZE_OF_IMAGE_FN = size_of_image_fallback
|
2018-07-02 20:32:03 +00:00
|
|
|
|
|
|
|
|
class Module(object):
|
2018-09-01 19:09:18 +00:00
|
|
|
def __init__(self, name, address, size, filename):
|
2018-07-02 20:32:03 +00:00
|
|
|
self._name = name
|
|
|
|
|
self.address = address
|
|
|
|
|
self.size = size
|
|
|
|
|
self._reserved = address != 0
|
2018-09-01 19:09:18 +00:00
|
|
|
self.filename = filename
|
2018-07-02 20:32:03 +00:00
|
|
|
|
|
|
|
|
def gen_baseaddress(self):
|
|
|
|
|
name, ext = os.path.splitext(self._name)
|
|
|
|
|
postfix = ''
|
|
|
|
|
if ext in('.acm', '.drv') and self._name != 'winspool.drv':
|
|
|
|
|
name = self._name
|
|
|
|
|
if name == 'ntdll':
|
|
|
|
|
postfix = ' # should be above 0x%08x' % self.address
|
|
|
|
|
elif self._reserved:
|
|
|
|
|
postfix = ' # reserved'
|
2018-09-08 09:10:51 +00:00
|
|
|
print('set(baseaddress_%-30s 0x%08x)%s' % (name, self.address, postfix))
|
2018-07-02 20:32:03 +00:00
|
|
|
|
|
|
|
|
def end(self):
|
|
|
|
|
return self.address + self.size
|
|
|
|
|
|
|
|
|
|
def __repr__(self):
|
|
|
|
|
return '%s (0x%08x - 0x%08x)' % (self._name, self.address, self.end())
|
|
|
|
|
|
|
|
|
|
class MemoryLayout(object):
|
|
|
|
|
def __init__(self, startaddress):
|
|
|
|
|
self.addresses = []
|
|
|
|
|
self.found = {}
|
|
|
|
|
self.reserved = {}
|
|
|
|
|
self.initial = startaddress
|
|
|
|
|
self.start_at = 0
|
|
|
|
|
self.module_padding = 0x2000
|
|
|
|
|
|
|
|
|
|
def add_reserved(self, name, address):
|
|
|
|
|
self.reserved[name] = (address, 0)
|
|
|
|
|
|
|
|
|
|
def add(self, filename, name):
|
2018-09-01 19:09:18 +00:00
|
|
|
size = SIZE_OF_IMAGE_FN(filename)
|
2018-07-02 20:32:03 +00:00
|
|
|
addr = 0
|
|
|
|
|
if name in self.found:
|
|
|
|
|
return # Assume duplicate files (rshell, ...) are 1:1 copies
|
|
|
|
|
if name in self.reserved:
|
|
|
|
|
addr = self.reserved[name][0]
|
|
|
|
|
self.reserved[name] = (addr, size)
|
2018-09-01 19:09:18 +00:00
|
|
|
self.found[name] = Module(name, addr, size, filename)
|
2018-07-02 20:32:03 +00:00
|
|
|
|
|
|
|
|
def _next_address(self, size):
|
|
|
|
|
if self.start_at:
|
|
|
|
|
addr = (self.start_at - size - self.module_padding - 0xffff) & 0xffff0000
|
|
|
|
|
self.start_at = addr
|
|
|
|
|
else:
|
|
|
|
|
addr = self.start_at = self.initial
|
|
|
|
|
return addr
|
|
|
|
|
|
|
|
|
|
def next_address(self, size):
|
|
|
|
|
while True:
|
|
|
|
|
current_start = self._next_address(size)
|
|
|
|
|
current_end = current_start + size + self.module_padding
|
|
|
|
|
# Is there overlap with reserved modules?
|
2018-09-08 09:10:51 +00:00
|
|
|
for key, reserved in self.reserved.items():
|
2018-07-02 20:32:03 +00:00
|
|
|
res_start = reserved[0]
|
|
|
|
|
res_end = res_start + reserved[1] + self.module_padding
|
|
|
|
|
if (res_start <= current_start <= res_end) or \
|
|
|
|
|
(res_start <= current_end <= res_end) or \
|
|
|
|
|
(current_start < res_start and current_end > res_end):
|
|
|
|
|
# We passed this reserved item, we can remove it now
|
|
|
|
|
self.start_at = min(res_start, current_start)
|
|
|
|
|
del self.reserved[key]
|
|
|
|
|
current_start = 0
|
|
|
|
|
break
|
|
|
|
|
# No overlap with a reserved module?
|
|
|
|
|
if current_start:
|
|
|
|
|
return current_start
|
|
|
|
|
|
|
|
|
|
def update(self, priorities):
|
|
|
|
|
# sort addresses, should only contain reserved modules at this point!
|
2018-09-08 09:10:51 +00:00
|
|
|
for key, reserved in self.reserved.items():
|
2018-07-02 20:32:03 +00:00
|
|
|
assert reserved[1] != 0, key
|
|
|
|
|
for curr in priorities:
|
|
|
|
|
if not curr in self.found:
|
2018-09-08 09:10:51 +00:00
|
|
|
print('# Did not find', curr, '!')
|
2018-07-02 20:32:03 +00:00
|
|
|
else:
|
|
|
|
|
obj = self.found[curr]
|
|
|
|
|
del self.found[curr]
|
|
|
|
|
if not obj.address:
|
|
|
|
|
obj.address = self.next_address(obj.size)
|
|
|
|
|
self.addresses.append(obj)
|
|
|
|
|
# We handled all known modules now, run over the rest we found
|
|
|
|
|
for key in sorted(self.found):
|
|
|
|
|
obj = self.found[key]
|
|
|
|
|
obj.address = self.next_address(obj.size)
|
|
|
|
|
self.addresses.append(obj)
|
|
|
|
|
|
|
|
|
|
def gen_baseaddress(self):
|
|
|
|
|
for obj in self.addresses:
|
|
|
|
|
obj.gen_baseaddress()
|
2018-07-01 18:17:46 +00:00
|
|
|
|
2018-09-01 19:09:18 +00:00
|
|
|
def guess_version(ntdll_path):
|
|
|
|
|
if 'pefile' in globals():
|
|
|
|
|
ntdll_pe = pefile.PE(ntdll_path, fast_load=True)
|
2019-04-29 15:00:18 +00:00
|
|
|
names = [sect.Name.strip(b'\0') for sect in ntdll_pe.sections]
|
|
|
|
|
count = b'|'.join(names).count(b'/')
|
2018-09-01 19:09:18 +00:00
|
|
|
if '.rossym' in names:
|
|
|
|
|
print('# This should probably go in baseaddress.cmake')
|
|
|
|
|
elif is_x64():
|
|
|
|
|
print('# This should probably go in baseaddress_msvc_x64.cmake')
|
|
|
|
|
elif count == 0:
|
|
|
|
|
print('# This should probably go in baseaddress_msvc.cmake')
|
|
|
|
|
elif count > 3:
|
|
|
|
|
print('# This should probably go in baseaddress_dwarf.cmake')
|
|
|
|
|
else:
|
|
|
|
|
print('# No clue where to put this')
|
|
|
|
|
|
2018-07-01 18:17:46 +00:00
|
|
|
def run_dir(target):
|
2018-09-08 09:10:51 +00:00
|
|
|
print('# Generated from', target)
|
|
|
|
|
print('# Generated by sdk/tools/gen_baseaddress.py')
|
2018-07-02 20:32:03 +00:00
|
|
|
layout = MemoryLayout(0x7c920000)
|
|
|
|
|
layout.add_reserved('user32.dll', 0x77a20000)
|
2018-07-01 18:17:46 +00:00
|
|
|
for root, _, files in os.walk(target):
|
2018-07-02 20:32:03 +00:00
|
|
|
for dll in [filename for filename in files if filename.endswith(ALL_EXTENSIONS)]:
|
2018-07-01 18:17:46 +00:00
|
|
|
if not dll in EXCLUDE and not dll.startswith('api-ms-win-'):
|
2018-07-02 20:32:03 +00:00
|
|
|
layout.add(os.path.join(root, dll), dll)
|
2018-09-01 19:09:18 +00:00
|
|
|
ntdll_path = layout.found['ntdll.dll'].filename
|
|
|
|
|
guess_version(ntdll_path)
|
2018-07-02 20:32:03 +00:00
|
|
|
layout.update(PRIORITIES)
|
|
|
|
|
layout.gen_baseaddress()
|
2018-07-01 18:17:46 +00:00
|
|
|
|
2018-09-01 19:09:18 +00:00
|
|
|
def main():
|
|
|
|
|
dirs = sys.argv[1:]
|
2018-07-01 18:17:46 +00:00
|
|
|
if len(dirs) < 1:
|
|
|
|
|
trydir = os.getcwd()
|
2018-09-08 09:10:51 +00:00
|
|
|
print('# No path specified, trying', trydir)
|
2018-07-01 18:17:46 +00:00
|
|
|
dirs = [trydir]
|
|
|
|
|
for onedir in dirs:
|
|
|
|
|
run_dir(onedir)
|
|
|
|
|
|
2018-09-01 19:09:18 +00:00
|
|
|
|
|
|
|
|
def profile():
|
|
|
|
|
import cProfile
|
|
|
|
|
# pyprof2calltree -k -i test.cprof
|
|
|
|
|
cProfile.run('main()', filename='test.cprof')
|
|
|
|
|
|
2018-07-01 18:17:46 +00:00
|
|
|
if __name__ == '__main__':
|
2018-09-01 19:09:18 +00:00
|
|
|
#profile()
|
|
|
|
|
#SIZE_OF_IMAGE_FN = size_of_image_verify
|
|
|
|
|
main()
|
