BALocalization/Il2CppInspectorRedux
19
0
Fork 0
mirror of https://github.com/LukeFZ/Il2CppInspectorRedux.git synced 2025-12-10 13:30:26 +05:00
Code Issues Packages Projects Releases Wiki Activity

Compare commits

base: BALocalization:193395db2935bbf96fc3fa65306b2bc61d32ce3e
Branches Tags
BALocalization:master BALocalization:new-ui BALocalization:refactored-versioning
...
compare: BALocalization:master
Branches Tags
BALocalization:master BALocalization:new-ui BALocalization:refactored-versioning

4 Commits
193395db29 ... master

Author SHA1 Message Date
LukeFZ
4befde8ab4 increase CodeRegistration validation heuristics thresholds due to some games reaching them 2025-11-26 19:54:05 +01:00
LukeFZ
6d674ecc8c use same metareg scanner for < v27 and > v27, implement TryMapVATR in PEReader for performance 2025-11-11 04:14:31 +01:00
LukeFZ
8b93dda191 Merge branch 'master' of https://github.com/LukeFZ/Il2CppInspectorRedux 2025-10-13 09:17:05 +02:00
LukeFZ
bba8a2913a also unload mssdk64 tils to prevent type name conflicts 2025-10-13 09:16:45 +02:00
4 changed files with 35 additions and 20 deletions
Expand all files Collapse all files

22
Il2CppInspector.Common/FileFormatStreams/PEReader.cs
View File

@@ -197,7 +197,27 @@ namespace Il2CppInspector
return exports.Values; return exports.Values;
} }
public override bool TryMapVATR(ulong uiAddr, out uint fileOffset)
{
if (uiAddr == 0)
{
fileOffset = 0;
return true;
}
var section = sections.FirstOrDefault(x => uiAddr - pe.ImageBase >= x.VirtualAddress &&
uiAddr - pe.ImageBase < x.VirtualAddress + x.SizeOfRawData);
if (section == null)
{
fileOffset = 0;
return false;
}
fileOffset = (uint)(uiAddr - section.VirtualAddress - pe.ImageBase + section.PointerToRawData);
return true;
}
public override uint MapVATR(ulong uiAddr) { public override uint MapVATR(ulong uiAddr) {
if (uiAddr == 0) if (uiAddr == 0)
return 0; return 0;

7
Il2CppInspector.Common/IL2CPP/Il2CppBinary.cs
View File

@@ -296,8 +296,11 @@ namespace Il2CppInspector
*/ */
if ((Metadata != null && Metadata.Types.Length != MetadataRegistration.TypeDefinitionsSizesCount) if ((Metadata != null && Metadata.Types.Length != MetadataRegistration.TypeDefinitionsSizesCount)
|| CodeRegistration.ReversePInvokeWrapperCount > 0x10000 || CodeRegistration.ReversePInvokeWrapperCount > 0x10000
|| CodeRegistration.UnresolvedVirtualCallCount > 0x4000 // >= 22 // L-NOTE: These below boundaries have been updated already as some games
|| CodeRegistration.InteropDataCount > 0x1000 // >= 23 // have reached these limits during normal use. Maybe we should just remove them
// at this point?
|| CodeRegistration.UnresolvedVirtualCallCount > 0x8000 // >= 22
|| CodeRegistration.InteropDataCount > 0x2000 // >= 23
|| (Image.Version <= MetadataVersions.V241 && CodeRegistration.InvokerPointersCount > CodeRegistration.MethodPointersCount)) || (Image.Version <= MetadataVersions.V241 && CodeRegistration.InvokerPointersCount > CodeRegistration.MethodPointersCount))
throw new NotSupportedException("The detected Il2CppCodeRegistration / Il2CppMetadataRegistration structs do not pass validation. This may mean that their fields have been re-ordered as a form of obfuscation and Il2CppInspector has not been able to restore the original order automatically. Consider re-ordering the fields in Il2CppBinaryClasses.cs and try again."); throw new NotSupportedException("The detected Il2CppCodeRegistration / Il2CppMetadataRegistration structs do not pass validation. This may mean that their fields have been re-ordered as a form of obfuscation and Il2CppInspector has not been able to restore the original order automatically. Consider re-ordering the fields in Il2CppBinaryClasses.cs and try again.");

22
Il2CppInspector.Common/IL2CPP/ImageScan.cs
View File

@@ -277,21 +277,12 @@ namespace Il2CppInspector
vas = FindAllMappedWords(imageBytes, typesLength).Select(a => a - mrSize + ptrSize * 4); vas = FindAllMappedWords(imageBytes, typesLength).Select(a => a - mrSize + ptrSize * 4);
// >= 19 && < 27 // >= 19
if (Image.Version < MetadataVersions.V270) // Luke: Previously, a check comparing MetadataUsagesCount was used here,
foreach (var va in vas) // but I know of at least one binary where this will break detection.
{ // Testing showed that we can just use the same heuristic used for v27+
var mr = Image.ReadMappedVersionedObject<Il2CppMetadataRegistration>(va); // on older versions as well, so we'll just use it for all cases.
if (mr.MetadataUsagesCount == (ulong) metadata.MetadataUsageLists.Length) if (Image.Version >= MetadataVersions.V190)
metadataRegistration = va;
}
// plagiarism. noun - https://www.lexico.com/en/definition/plagiarism
// the practice of taking someone else's work or ideas and passing them off as one's own.
// Synonyms: copying, piracy, theft, strealing, infringement of copyright
// >= 27
else
{ {
foreach (var va in vas) foreach (var va in vas)
{ {
@@ -304,6 +295,7 @@ namespace Il2CppInspector
} }
} }
} }
if (metadataRegistration == 0) if (metadataRegistration == 0)
return (0, 0); return (0, 0);

4
Il2CppInspector.Common/Outputs/ScriptResources/Targets/IDA.py
View File

@@ -83,8 +83,8 @@ class IDADisassemblerInterface(BaseDisassemblerInterface):
ida_ida.inf_set_genflags(self._cached_genflags & ~ida_ida.INFFL_AUTO) ida_ida.inf_set_genflags(self._cached_genflags & ~ida_ida.INFFL_AUTO)
# Unload type libraries we know to cause issues - like the c++ linux one # Unload type libraries we know to cause issues - like the c++ linux one
PLATFORMS = ["x86", "x64", "arm", "arm64"] PLATFORMS = ["x86", "x64", "arm", "arm64", "win7"]
PROBLEMATIC_TYPELIBS = ["gnulnx"] PROBLEMATIC_TYPELIBS = ["gnulnx", "mssdk64"]
for lib in PROBLEMATIC_TYPELIBS: for lib in PROBLEMATIC_TYPELIBS:
for platform in PLATFORMS: for platform in PLATFORMS: