echo/cheat-engine
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
acc6cefd0f
cheat-engine/Cheat Engine/bin/autorun/java.lua
cheat-engine acc6cefd0f Fix registry issues
2019-12-19 17:49:30 +01:00

2483 lines
62 KiB
Lua
Executable File
Raw Blame History

if getTranslationFolder()~='' then
loadPOFile(getTranslationFolder()..'Java.po')
end
--todo: split up into multiple units and use the java table for the methods as well
JAVACMD_STARTCODECALLBACKS=0
JAVACMD_STOPCODECALLBACKS=1
JAVACMD_GETLOADEDCLASSES=2
JAVACMD_DEREFERENCELOCALOBJECT=3
JAVACMD_GETCLASSMETHODS=4
JAVACMD_GETCLASSFIELDS=5
JAVACMD_GETIMPLEMENTEDINTERFACES=6
JAVAVMD_FINDREFERENCESTOOBJECT=7
JAVACMD_FINDJOBJECT=8
JAVACMD_GETCLASSSIGNATURE=9 --=getClassName
JAVACMD_GETSUPERCLASS=10
JAVACMD_GETOBJECTCLASS=11
JAVACMD_GETCLASSDATA=12
JAVACMD_REDEFINECLASS=13
JAVACMD_FINDCLASS=14
JAVACMD_GETCAPABILITIES=15
JAVACMD_GETMETHODNAME=16 --gets the methodname and the signature
JAVACMD_INVOKEMETHOD=17
JAVACMD_FINDCLASSOBJECTS=18 --find objects that belong to the given class
JAVACMD_ADDTOBOOTSTRAPCLASSLOADERPATH=19
JAVACMD_ADDTOSYSTEMCLASSLOADERPATH=20
JAVACMD_PUSHLOCALFRAME=21
JAVACMD_POPLOCALFRAME=22
JAVACMD_GETFIELDDECLARINGCLASS=23
JAVACMD_GETFIELDSIGNATURE=24
JAVACMD_GETFIELD=25
JAVACMD_SETFIELD=26
JAVACMD_STARTSCAN=27
JAVACMD_REFINESCANRESULTS=28
JAVACMD_GETSCANRESULTS=29
JAVACMD_FINDWHATWRITES=30
JAVACMD_STOPFINDWHATWRITES=31
JAVACMD_GETMETHODDECLARINGCLASS=32
JAVACODECMD_METHODLOAD=0
JAVACODECMD_METHODUNLOAD=1
JAVACODECMD_DYNAMICCODEGENERATED=2
JAVACODECMD_TERMINATED=255
JAVA_TIMEOUT=5000 --5 seconds
function getFieldFromType(type, field, infloopprotection)
if type==nil then return nil end
if infloopprotection==nil then
infloopprotection=0
else
infloopprotection=infloopprotection+1
if infloopprotection>20 then
return nil
end
end
type=type:gsub("<.->(.-)","<%1>") --replace the <xxx> part with <>
local Struct=JavaStructs[type]
if (Struct==nil) or (Struct[field]==nil) then
return getFieldFromType(JavaTypes[type].Alternate, field, infloopprotection) --check the super type if that one has fields
else
return Struct[field]
end
end
function getKlassFromObject(object)
return readQword(object+getFieldFromType("oopDesc","_metadata._klass").Offset)+JavaTypes["oopDesc"].Size
end
function CollectJavaSymbolsNonInjected(thread)
if thread~=nil then
thread.name="CollectJavaSymbolsNonInjected"
end
JavaStructs={}
JavaTypes={}
local s,s2
s=readPointer("jvm.gHotSpotVMStructs")
if (s==nil) or (s==0) then
return --invalid JVM
end
VMStructEntryTypeNameOffset=readInteger("jvm.gHotSpotVMStructEntryTypeNameOffset")
VMStructEntryFieldNameOffset=readInteger("jvm.gHotSpotVMStructEntryFieldNameOffset")
VMStructEntryTypestringOffset=readInteger("jvm.gHotSpotVMStructEntryTypestringOffset")
VMStructEntryIsStaticOffset=readInteger("jvm.gHotSpotVMStructEntryIsStaticOffset")
VMStructEntryOffsetOffset=readInteger("jvm.gHotSpotVMStructEntryOffsetOffset")
VMStructEntryAddressOffset=readInteger("jvm.gHotSpotVMStructEntryAddressOffset")
VMStructEntryArrayStride=readInteger("jvm.gHotSpotVMStructEntryArrayStride")
--[[
const char* typeName; // The type name containing the given field (example: "Klass")
const char* fieldName; // The field name within the type (example: "_name")
const char* Typestring; // Quoted name of the type of this field (example: "Symbol*";
// parsed in Java to ensure type correctness
int32_t isStatic; // Indicates whether following field is an offset or an address
uint64_t offset; // Offset of field within structure; only used for nonstatic fields
void* address; // Address of field; only used for static fields
// ("offset" can not be reused because of apparent SparcWorks compiler bug
// in generation of initializer data)
--]]
while readString(readQword(s+VMStructEntryTypeNameOffset))~=nil do
local a,b,c,d;
a=readString(readPointer(s+VMStructEntryTypeNameOffset),255)
b=readString(readPointer(s+VMStructEntryFieldNameOffset),255)
c=readString(readPointer(s+VMStructEntryTypestringOffset),255)
d=readPointer(s+VMStructEntryIsStaticOffset)
if a and b and c then
if JavaStructs[a]==nil then
JavaStructs[a]={}
end
JavaStructs[a][b]={}
JavaStructs[a][b].Typestring=c
if d==0 then
JavaStructs[a][b].Offset=readPointer(s+VMStructEntryOffsetOffset)
else
JavaStructs[a][b].Address=readPointer(s+VMStructEntryAddressOffset)
end
--if d~=0 then
-- print(a.." - "..b.." - "..c.." : "..string.format("%x ( %x )",readPointer(s+VMStructEntryAddressOffset), readPointer(readPointer(s+VMStructEntryAddressOffset)) ))
--else
-- print(a.." - "..b.." - "..c.." : "..string.format("%x",readPointer(s+VMStructEntryOffsetOffset)))
--end
end
s=s+VMStructEntryArrayStride
end
--print("--------------------------------------------------------------------------------")
s2=readPointer("jvm.gHotSpotVMTypes")
VMTypeEntryTypeNameOffset=readInteger("jvm.gHotSpotVMTypeEntryTypeNameOffset")
VMTypeEntrySuperclassNameOffset=readInteger("jvm.gHotSpotVMTypeEntrySuperclassNameOffset")
VMTypeEntryIsOopTypeOffset=readInteger("jvm.gHotSpotVMTypeEntryIsOopTypeOffset")
VMTypeEntryIsIntegerTypeOffset=readInteger("jvm.gHotSpotVMTypeEntryIsIntegerTypeOffset")
VMTypeEntryIsUnsignedOffset=readInteger("jvm.gHotSpotVMTypeEntryIsUnsignedOffset")
VMTypeEntrySizeOffset=readInteger("jvm.gHotSpotVMTypeEntrySizeOffset")
VMTypeEntryArrayStride=readInteger("jvm.gHotSpotVMTypeEntryArrayStride")
while readString(readPointer(s2+VMTypeEntryTypeNameOffset))~=nil do
local a,b,isInteger, isOop, size;
a=readString(readPointer(s2+VMTypeEntryTypeNameOffset),255)
b=readString(readPointer(s2+VMTypeEntrySuperclassNameOffset),255)
isOop=readInteger(s2+VMTypeEntryIsOopTypeOffset)
isInteger=readInteger(s2+VMTypeEntryIsIntegerTypeOffset)
size=readInteger(s2+VMTypeEntrySizeOffset)
if a then
local _a,_b
_a=a:gsub("<.->(.-)","<%1>")
JavaTypes[_a]={}
JavaTypes[_a].Size=size
if b then
_b=b:gsub("<.->(.-)","<%1>")
JavaTypes[_a].Alternate=_b
end
end
local r=''
if a then
r=r..a
end
if b then
r=r.." - "..b
end
--print(r.." (size="..size..")")
s2=s2+VMTypeEntryArrayStride
end
-- print("-------------------------------------------------")
--[[
s=readPointer("jvm.gHotSpotVMIntConstants")
VMIntConstantEntryNameOffset=readInteger("jvm.gHotSpotVMIntConstantEntryNameOffset")
VMIntConstantEntryValueOffset=readInteger("jvm.gHotSpotVMIntConstantEntryValueOffset")
VMIntConstantEntryArrayStride=readInteger("jvm.gHotSpotVMIntConstantEntryArrayStride")
while readString(readPointer(s+VMIntConstantEntryNameOffset))~=nil do
local name,value
name=readString(readPointer(s+VMIntConstantEntryNameOffset))
value=readInteger(s+VMIntConstantEntryValueOffset)
--print(name.."="..string.format("%x",value))
s=s+VMIntConstantEntryArrayStride
end
--print("-------------------------------------------------")
s=readPointer("jvm.gHotSpotVMLongConstants")
VMLongConstantEntryNameOffset=readInteger("jvm.gHotSpotVMLongConstantEntryNameOffset")
VMLongConstantEntryValueOffset=readInteger("jvm.gHotSpotVMLongConstantEntryValueOffset")
VMLongConstantEntryArrayStride=readInteger("jvm.gHotSpotVMLongConstantEntryArrayStride")
while readString(readPointer(s+VMLongConstantEntryNameOffset))~=nil do
local name,value
name=readString(readPointer(s+VMLongConstantEntryNameOffset))
value=readQword(s+VMLongConstantEntryValueOffset)
--print(name.."="..string.format("%x",value))
s=s+VMLongConstantEntryArrayStride
end
--Fetch the interpreter functions
local InterpreterFunctionList=getFieldFromType('AbstractInterpreter', '_code').Address
local BufferOffset=getFieldFromType('StubQueue', '_stub_buffer').Offset
local QueueEndOffset=getFieldFromType('StubQueue', '_queue_end').Offset
local InterpreterCodeletSizeOffset=getFieldFromType('InterpreterCodelet', '_size').Offset
local InterpreterCodeletDescriptionOffset=getFieldFromType('InterpreterCodelet', '_description').Offset
local InterpreterCodeletHeaderSize=JavaTypes['InterpreterCodelet'].Size
local InterpreterCodeletHeaderSizeAligned
InterpreterCodeletHeaderSizeAligned=InterpreterCodeletHeaderSize
if targetIs64Bit() then
--increase InterpreterCodeletHeaderSizeAligned so it's dividable by 32
if (InterpreterCodeletHeaderSizeAligned % 32)~=0 then
InterpreterCodeletHeaderSizeAligned=(InterpreterCodeletHeaderSizeAligned+32) - (InterpreterCodeletHeaderSizeAligned % 32)
end
else
--increase InterpreterCodeletHeaderSizeAligned so it's dividable by 16
if (InterpreterCodeletHeaderSizeAligned % 16)~=0 then
InterpreterCodeletHeaderSizeAligned=(InterpreterCodeletHeaderSizeAligned+16) - (InterpreterCodeletHeaderSizeAligned % 16)
end
end
StubQueueAddress=readPointer(InterpreterFunctionList)
BufferStart=readPointer(StubQueueAddress+BufferOffset)
BufferEnd=BufferStart+readInteger(StubQueueAddress+QueueEndOffset)
CurrentPos=BufferStart
while (CurrentPos<BufferEnd) do
local CodeletSize=readInteger(CurrentPos+InterpreterCodeletSizeOffset)
local Description=readString(readInteger(CurrentPos+InterpreterCodeletDescriptionOffset))
local Codestart=CurrentPos+InterpreterCodeletHeaderSizeAligned
--print(string.format("%x = %s", Codestart, Description))
JavaSymbols.addSymbol("","jInterpreter_"..Description,Codestart, CodeletSize-InterpreterCodeletHeaderSizeAligned)
CurrentPos=CurrentPos+CodeletSize
end
--]]
JavaHotSpotFieldsLoaded=true
end
function javaInjectAgent()
if (JavaSymbols==nil) then
JavaSymbols=createSymbolList()
else
JavaSymbols.clear()
end
if (java~=nil) and (java.attachedProcess==getOpenedProcessID()) then
return 1
end
createNativeThread(CollectJavaSymbolsNonInjected)
if (javapipe ~= nil) then
javapipe.destroy() --this will cause the pipe listener to destroy the java event server, which will stop the javaeventthread (so no need to wait for that)
javapipe=nil
end
local alreadyinjected=false
if javaInjectedProcesses==nil then
javaInjectedProcesses={}
local oldstate=errorOnLookupFailure(false)
local address=getAddress('CEJVMTI.dll')
if (address~=nil) and (address~=0) then
javaInjectedProcesses[getOpenedProcessID()]=true
alreadyinjected=true
--opened a process with the JVMTI agent already running
end
errorOnLookupFailure(oldstate)
else
--check if already injected
alreadyinjected=javaInjectedProcesses[getOpenedProcessID()]==true
end
local dllpath
if targetIs64Bit() then
dllpath=getCheatEngineDir()..[[autorun\dlls\64\CEJVMTI]]
else
dllpath=getCheatEngineDir()..[[autorun\dlls\32\CEJVMTI]]
end
if (alreadyinjected==false) then
local script=''
if targetIs64Bit() then
script=[[
globalalloc(bla,1024)
globalalloc(cmd,16)
globalalloc(arg0,256)
globalalloc(arg1,256)
globalalloc(arg2,256)
globalalloc(result,4)
globalalloc(pipename,256)
cmd:
db 'load',0
arg0:
db ']]..dllpath..[[',0
arg1:
db 0
arg2:
db 0
pipename:
db '\\.\pipe\cejavapipe',0
bla:
sub rsp,8
sub rsp,30
mov rcx,cmd
mov rdx,arg0
mov r8,arg1
mov r9,arg2
mov [rsp],cmd
mov [rsp+8],arg0
mov [rsp+10],arg1
mov [rsp+18],arg2
mov [rsp+20],pipename
call jvm.JVM_EnqueueOperation
mov [result],eax
add rsp,38
ret
createthread(bla)
]]
else
script=[[
globalalloc(bla,1024)
globalalloc(cmd,16)
globalalloc(arg0,256)
globalalloc(arg1,256)
globalalloc(arg2,256)
globalalloc(result,4)
globalalloc(pipename,256)
cmd:
db 'load',0
arg0:
db ']]..dllpath..[[',0
arg1:
db 0
arg2:
db 0
pipename:
db '\\.\pipe\cejavapipe',0
bla:
push pipename
push arg2
push arg1
push arg0
push cmd
call jvm.JVM_EnqueueOperation
mov [result],eax
ret
createthread(bla)
]]
end
if autoAssemble(script)==false then
error(translate('Auto assembler failed:')..script)
end
javaInjectedProcesses[getOpenedProcessID()]=true
end
--wait till attached
local timeout=getTickCount()+JAVA_TIMEOUT
while (javapipe==nil) and (getTickCount()<timeout) do
javapipe=connectToPipe('cejavadc_pid'..getOpenedProcessID())
end
if (javapipe==nil) then
return 0 --failure
end
java_StartListeneningForEvents()
JavaSymbols.register() --make these symbols available to all of cheat engine
java.capabilities=java_getCapabilities()
java.attachedProcess=getOpenedProcessID();
return 1;
end
function JavaEventListener(thread)
if thread~=nil then
thread.name="JavaEventListener"
end
--this code runs in another thread
local EVENTCMD_METHODLOAD=0
local EVENTCMD_METHODUNLOAD=1
local EVENTCMD_DYNAMICCODEGENERATED=2
local EVENTCMD_FIELDMODIFICATION=3
local JavaEventPipe
local timeout=getTickCount()+JAVA_TIMEOUT --5 seconds
while (JavaEventPipe==nil) and (getTickCount()<timeout) do
JavaEventPipe=connectToPipe('cejavaevents_pid'..getOpenedProcessID())
end
if (JavaEventPipe==nil) then
return --failure
end
while true do
local command=JavaEventPipe.readByte()
if command==EVENTCMD_METHODLOAD then --methodload
local size1, size2, size3,ssize,classname, methodname, methodsig
local method=JavaEventPipe.readQword()
local code_size=JavaEventPipe.readDword()
local code_addr=JavaEventPipe.readQword()
size1=JavaEventPipe.readWord()
if (size1>0) then
classname=JavaEventPipe.readString(size1)
else
classname=''
end
size2=JavaEventPipe.readWord()
if (size2>0) then
methodname=JavaEventPipe.readString(size2)
else
methodname=''
end
size3=JavaEventPipe.readWord()
if (size3>0) then
methodsig=JavaEventPipe.readString(size3)
else
methodsig=''
end
local endpos=classname:match'^.*();'
if endpos~=nil then
classname=string.sub(classname,1,endpos-1)
end
local name=classname.."::"..methodname..methodsig
JavaSymbols.addSymbol("",classname.."::"..methodname,code_addr,code_size)
--print(string.format("s1=%d s2=%d s3=%d (cn=%s mn=%s ms=%s)", size1,size2,size3, classname, methodname, methodsig))
--print(string.format("Methodload: %s - (%x) %x-%x", name, method, code_addr, code_addr+code_size))
--
elseif command==EVENTCMD_METHODUNLOAD then --methodunload
local method=JavaEventPipe.readQword()
local code_addr=JavaEventPipe.readQword()
print("EVENTCMD_METHODUNLOAD")
JavaSymbols.deleteSymbol(code_addr)
--
elseif command==EVENTCMD_DYNAMICCODEGENERATED then --DynamicCodeGenerated
local ssize
local address=JavaEventPipe.readQword()
local length=JavaEventPipe.readDword()
ssize=JavaEventPipe.readWord()
local name=JavaEventPipe.readString(ssize)
--print(string.format("DynamicCode: %s - %x-%x", name, address, address+length))
JavaSymbols.addSymbol("",name,address,length)
--
elseif command==EVENTCMD_FIELDMODIFICATION then
--print("EVENTCMD_FIELDMODIFICATION")
local id=JavaEventPipe.readDword()
local entry={}
--print("id=="..id)
entry.methodid=JavaEventPipe.readQword()
entry.location=JavaEventPipe.readQword()
local stackcount=JavaEventPipe.readByte()
local i
local stack={}
--print("stackcount=="..stackcount)
for i=1, stackcount do
stack[i]={}
stack[i].methodid=JavaEventPipe.readQword()
stack[i].location=JavaEventPipe.readQword()
end
entry.stack=stack
if java.findwhatwriteslist~=nil then
local fcd=java.findwhatwriteslist[id]
if fcd~=nil then
--check if this entry is already in the list
local found=false
for i=1, #fcd.entries do
if (fcd.entries[i].methodid==entry.methodid) and (fcd.entries[i].location==entry.location) then
found=true
break
end
end
if not found then
local mname=java_getMethodName(entry.methodid)
local class=java_getMethodDeclaringClass(entry.methodid)
local classname=java_getClassSignature(class)
java_dereferenceLocalObject(class)
entry.classname=classname
entry.methodname=mname
--execute this in the main thread (gui access)
synchronize(function(classname, id, mname)
local fcd=java.findwhatwriteslist[id]
if fcd~=nil then --check that the found code dialog hasn't been freed while waiting for sync
tventry=fcd.lv.items.add()
tventry.Caption=classname
tventry.SubItems.add(string.format('%x: %s', entry.methodid, mname))
tventry.SubItems.add(entry.location)
table.insert(fcd.entries, entry)
end
end, classname, id, mname)
else
-- print("Already in the list")
end
else
-- print("fcd==nil")
end
else
-- print("java.findwhatwriteslist==nil")
end
--print("done")
elseif command==JAVACODECMD_TERMINATED then
print(translate("Java:eventserver terminated"))
break
elseif command==nil then
print(translate("Java:Disconnected"))
break
else
print(translate("Java:Unexpected event received")) --synchronize isn't necesary for print as that function is designed to synchronize internally
break --unknown command
end
end
print(translate("Java:Event handler terminating"))
JavaEventPipe.destroy();
end
function java_getCapabilities()
result={}
javapipe.lock()
javapipe.writeByte(JAVACMD_GETCAPABILITIES)
result.can_access_local_variables=javapipe.readByte()==1
result.can_generate_all_class_hook_events=javapipe.readByte()==1
result.can_generate_breakpoint_events=javapipe.readByte()==1
result.can_generate_compiled_method_load_events=javapipe.readByte()==1
result.can_generate_field_access_events=javapipe.readByte()==1
result.can_generate_field_modification_events=javapipe.readByte()==1
result.can_generate_single_step_events=javapipe.readByte()==1
result.can_get_bytecodes=javapipe.readByte()==1
result.can_get_constant_pool=javapipe.readByte()==1
result.can_maintain_original_method_order=javapipe.readByte()==1
result.can_redefine_any_class=javapipe.readByte()==1
result.can_redefine_classes=javapipe.readByte()==1
result.can_retransform_any_class=javapipe.readByte()==1
result.can_retransform_classes=javapipe.readByte()==1
result.can_tag_objects=javapipe.readByte()==1
javapipe.unlock()
return result;
end
function java_StartListeneningForEvents()
javapipe.lock();
javapipe.writeByte(JAVACMD_STARTCODECALLBACKS)
--the javapipe will now be frozen until a javaeventpipe makes an connection
createNativeThread(JavaEventListener);
javapipe.unlock();
end
function java_getLoadedClasses()
javapipe.lock()
javapipe.writeByte(JAVACMD_GETLOADEDCLASSES)
local classcount=javapipe.readDword()
local classes={}
if (classcount==nil) then
return nil
end
if classcount>0 then
local i=0
local length
for i=1,classcount do
classes[i]={}
classes[i].jclass=javapipe.readQword() --this is a pointer to a pointer to java.lang.class. To get the offset where klass is stored use getFieldFromType("java_lang_Class", "_klass_offset") (The klass contains a _fields field which points to a array which contains the offset of the fields. Might be useful)
length=javapipe.readWord()
classes[i].signature=javapipe.readString(length);
length=javapipe.readWord()
classes[i].generic=javapipe.readString(length);
end
end
javapipe.unlock()
return classes
end
function java_pushLocalFrame(count)
javapipe.lock()
javapipe.writeByte(JAVACMD_PUSHLOCALFRAME)
javapipe.writeWord(count)
javapipe.unlock()
end
function java_popLocalFrame(result) --result can be nil
local result=nil
javapipe.lock()
javapipe.writeByte(JAVACMD_POPLOCALFRAME)
javapipe.writeQword(result)
result=javapipe.readQword()
javapipe.unlock()
return result
end
function java_dereferenceLocalObject(object)
javapipe.lock()
javapipe.writeByte(JAVACMD_DEREFERENCELOCALOBJECT)
javapipe.writeQword(object)
javapipe.unlock()
end
function java_cleanClasslist(classlist)
local i
for i=1, #classlist do
java_dereferenceLocalObject(classlist[i].jclass)
end
end
function java_getClassMethods(class)
javapipe.lock()
javapipe.writeByte(JAVACMD_GETCLASSMETHODS)
javapipe.writeQword(class)
local count=javapipe.readDword()
local i
local result={}
local length
for i=1,count do
result[i]={}
result[i].jmethodid=javapipe.readQword()
length=javapipe.readWord()
result[i].name=javapipe.readString(length)
length=javapipe.readWord()
result[i].signature=javapipe.readString(length)
length=javapipe.readWord()
result[i].generic=javapipe.readString(length)
end
javapipe.unlock()
return result
end
function java_getClassFields(class)
javapipe.lock()
javapipe.writeByte(JAVACMD_GETCLASSFIELDS)
javapipe.writeQword(class)
local count=javapipe.readDword()
local i
local result={}
local length
for i=1,count do
result[i]={}
result[i].jfieldid=javapipe.readQword()
length=javapipe.readWord()
result[i].name=javapipe.readString(length)
length=javapipe.readWord()
result[i].signature=javapipe.readString(length)
length=javapipe.readWord()
result[i].generic=javapipe.readString(length)
end
javapipe.unlock()
return result
end
function java_getAllClassFields(class)
--get all the fields of the given class, including inherited ones
java_pushLocalFrame(16)
local result={}
while (class~=nil) and (class~=0) do
local r=java_getClassFields(class)
local i
for i=1,#r do
result[#result+1]=r[i]
end
class=java_getSuperClass(class) --this pushes an object on the local frame
end
java_popLocalFrame(nil)
return result
end
function java_getImplementedInterfaces(class)
result={}
javapipe.lock()
javapipe.writeByte(JAVACMD_GETIMPLEMENTEDINTERFACES)
javapipe.writeQword(class)
local count=javapipe.readDword()
for i=1,count do
result[i]=javapipe.readQword()
end
javapipe.unlock()
return result
end
function java_findReferencesToObject(jObject)
result={}
local count=0
javapipe.lock()
javapipe.writeByte(JAVAVMD_FINDREFERENCESTOOBJECT)
javapipe.writeQword(jObject)
count=javapipe.readDword()
local i
for i=1, count do
result[i]=javapipe.readQword();
end
javapipe.unlock()
return result
end
function java_redefineClassWithCustomData(class, memory)
javapipe.lock()
javapipe.writeByte(JAVACMD_REDEFINECLASS)
javapipe.writeQword(class)
javapipe.writeDword(#memory)
javapipe.writeString(memory)
javapipe.unlock()
end
function java_redefineClassWithCustomClassFile(class, filename)
local f=assert(io.open(filename,"rb"))
local data = f:read("*all")
f:close()
java_redefineClassWithCustomData(class, data)
end
function java_getClassData(class)
--gets the .class binary data (tip: Write a .class parser/editor so you can modify attributes and method bodies)
local result={}
javapipe.lock()
javapipe.writeByte(JAVACMD_GETCLASSDATA)
javapipe.writeQword(class)
result.size=javapipe.readDword()
if (result.size > 0) then
result.data=javapipe.readString(result.size)
end
javapipe.unlock()
return result.data
end
function java_writeClassToDisk(class, filename)
local data=java_getClassData(class)
local f=assert(io.open(filename,"wb"))
f:write(data)
f:close()
end
function java_getMethodName(methodid)
local name=nil
local sig=nil
local gen=nil
javapipe.lock()
javapipe.writeByte(JAVACMD_GETMETHODNAME)
javapipe.writeQword(methodid)
local length
length=javapipe.readWord()
name=javapipe.readString(length)
length=javapipe.readWord()
sig=javapipe.readString(length)
length=javapipe.readWord()
gen=javapipe.readString(length)
javapipe.unlock()
return name, sig, gen
end
function java_parseSignature_type(sig, i)
local result=''
local char=string.sub(sig,i,i)
if (char=='V') or (char=='Z') or (char=='B') or (char=='C') or (char=='S') or (char=='I') or (char=='J') or (char=='F') or (char=='D') then
result=char
elseif char=='L' then
local classtype
local newi
newi=string.find(sig,';', i+1)
if newi==nil then
return #sig --error
end
result=string.sub(sig, i, newi)
i=newi
elseif char=='[' then
result,i=java_parseSignature_type(sig,i+1)
result='['..result
end
return result,i
end
function java_parseSignature_method(sig, i, result)
result.parameters={}
while i<=#sig do
local parem
local char=string.sub(sig,i,i)
--parse every type
if char==')' then
return i+1
end
param,i=java_parseSignature_type(sig, i)
result.parameters[#result.parameters+1]=param
i=i+1
end
end
function java_parseSignature(sig)
if sig==nil then
error(translate('Invalid java signature'))
end
--parse the given signature
local result={}
local i=1
while i<=#sig do
local char=string.sub(sig,i,i)
if char=='(' then
i=java_parseSignature_method(sig, i+1, result)
else
if char~=' ' then
result.returntype, i=java_parseSignature_type(sig, i)
end
i=i+1
end
end
return result
end
Java_TypeSigToIDConversion={}
Java_TypeSigToIDConversion['V']=0 --void
Java_TypeSigToIDConversion['Z']=1 --boolean
Java_TypeSigToIDConversion['B']=2 --byte
Java_TypeSigToIDConversion['C']=3 --char
Java_TypeSigToIDConversion['S']=4 --short
Java_TypeSigToIDConversion['I']=5 --int
Java_TypeSigToIDConversion['J']=6 --long
Java_TypeSigToIDConversion['F']=7 --float
Java_TypeSigToIDConversion['D']=8 --double
Java_TypeSigToIDConversion['L']=9 --object
Java_TypeSigToIDConversion['[']=10 --array
--boolean array =11
--byte array =12
--...
function java_invokeMethod_sendParameter(typeid, a, skiptypeid)
if (skiptypeid==nil) or (skiptypeid==true) then
javapipe.writeByte(typeid)
end
if typeid==1 then --boolean
if a==true then
javapipe.writeByte(1)
else
javapipe.writeByte(0)
end
elseif typeid==2 then
javapipe.writeByte(a)
elseif typeid==3 then --char
if tonumber(a)==nil then
javapipe.writeWord(string.byte(a,1))
else
javapipe.writeWord(a)
end
elseif typeid==4 then --short
javapipe.writeWord(a)
elseif typeid==5 then --int
javapipe.writeDword(a)
elseif typeid==6 then --long
javapipe.writeQword(a)
elseif typeid==7 then --float
javapipe.writeFloat(a)
elseif typeid==8 then --double
javapipe.writeDouble(a)
elseif typeid==9 then --object
javapipe.writeQword(a)
elseif typeid>10 then --array
if typeid==13 then
--check if a is a string
if type(a)=='string' then
javapipe.writeDword(#a)
javapipe.writeString(a)
return
end
--else send it char by char
end
javapipe.writeDword(#a) --length of the array
--send the fields as the given type
local i
for i=1, #a do
java_invokeMethod_sendParameter(typeid-10, a[i], true)
end
end
end
function java_invokeMethod(object, methodid, ...)
local argumentcount=#arg
local name, sig, gen=java_getMethodName(methodid)
--parse sig to find out what to give as parameters and what to expect as result (I am assuming the caller KNOWS what he's doing...)
--format of sig: (ABC)D () part are the parameters, D is the return type
local result=nil
parsedsignature=java_parseSignature(sig)
--convert returntype to the id used by JAVACMD_INVOKEMETHOD
local returntype=Java_TypeSigToIDConversion[string.sub(parsedsignature.returntype,1,1)]
if returntype>=10 then
error(translate('Array return types are not supported'));
end
if argumentcount~=#parsedsignature.parameters then
error(translate('Parameter count does not match'))
end
javapipe.lock()
javapipe.writeByte(JAVACMD_INVOKEMETHOD)
javapipe.writeQword(object)
javapipe.writeQword(methodid)
javapipe.writeByte(returntype)
javapipe.writeByte(argumentcount)
local i
for i=1, argumentcount do
local typeid
typeid=Java_TypeSigToIDConversion[string.sub(parsedsignature.parameters[i],1,1)]
if typeid==10 then
typeid=10+Java_TypeSigToIDConversion[string.sub(parsedsignature.parameters[i],2,2)]
end
java_invokeMethod_sendParameter(typeid, arg[i])
end
result=javapipe.readQword()
javapipe.unlock()
if returntype==1 then
result=result~=0
elseif returntype==7 then --float
result=byteTableToFloat(dwordToByteTable(result))
elseif returntype==8 then --double
result=byteTableToDouble(qwordToByteTable(result))
end
return result
end
function java_findMethod(class, name, sig)
local cm=java_getClassMethods(class)
local i
for i=1,#cm do
if cm[i].name==name then
if (sig==nil) or (sig==cm[i].signature) then
return cm[i].jmethodid
end
end
end
return nil --still here
end
function java_findClass(signature)
local result=nil
javapipe.lock()
javapipe.writeByte(JAVACMD_FINDCLASS)
javapipe.writeWord(#signature)
javapipe.writeString(signature)
result=javapipe.readQword()
javapipe.unlock()
return result
end
function java_findAllObjectsFromClass(jClass)
local result={}
javapipe.lock()
javapipe.writeByte(JAVACMD_FINDCLASSOBJECTS)
javapipe.writeQword(jClass)
local count=javapipe.readDword()
for i=1,count do
result[i]=javapipe.readQword()
end
javapipe.unlock()
return result
end
function java_addToBootstrapClassLoaderPath(segment)
javapipe.lock()
javapipe.writeByte(JAVACMD_ADDTOBOOTSTRAPCLASSLOADERPATH)
javapipe.writeWord(#segment)
javapipe.writeString(segment)
javapipe.unlock()
end
function java_addToSystemClassLoaderPath()
javapipe.lock()
javapipe.writeByte(JAVACMD_ADDTOSYSTEMCLASSLOADERPATH)
javapipe.writeWord(#segment)
javapipe.writeString(segment)
javapipe.unlock()
end
function java_getFieldDeclaringClass(klass, fieldid)
local result=nil
javapipe.lock()
javapipe.writeByte(JAVACMD_GETFIELDDECLARINGCLASS)
javapipe.writeQword(klass)
javapipe.writeQword(fieldid)
result=javapipe.readQword()
javapipe.unlock()
return result
end
function java_getFieldSignature(klass, fieldid)
local result={}
javapipe.lock()
javapipe.writeByte(JAVACMD_GETFIELDSIGNATURE)
javapipe.writeQword(klass)
javapipe.writeQword(fieldid)
local length
length=javapipe.readWord()
result.name=javapipe.readString(length)
length=javapipe.readWord()
result.signature=javapipe.readString(length)
length=javapipe.readWord()
result.generic=javapipe.readString(length)
javapipe.unlock()
return result
end
function java_getField(jObject, fieldid, signature)
if signature==nil then
--I need to figure it out myself I guess...
local klass=java_getObjectClass(jObject)
signature=java_getFieldSignature(klass, fieldid).signature
java_dereferenceLocalObject(klass)
end
--parse the signature
local vartype=Java_TypeSigToIDConversion[string.sub(signature,1,1)]
if vartype>9 then --not sure what to do about arrays. For now, force them to 'objects'
vartype=9
end
local result=nil
javapipe.lock()
javapipe.writeByte(JAVACMD_GETFIELD)
javapipe.writeQword(jObject)
javapipe.writeQword(fieldid)
javapipe.writeByte(vartype)
result=javapipe.readQword()
javapipe.unlock()
if vartype==1 then
result=result~=0
elseif vartype==7 then --float
result=byteTableToFloat(dwordToByteTable(result))
elseif vartype==8 then --double
result=byteTableToDouble(qwordToByteTable(result))
end
return result
end
function java_setField(jObject, fieldid, signature, value)
if signature==nil then
--I need to figure it out myself I guess...
local klass=java_getObjectClass(jObject)
signature=java_getFieldSignature(klass, fieldid).signature
java_dereferenceLocalObject(klass)
end
local vartype=Java_TypeSigToIDConversion[string.sub(signature,1,1)]
if vartype>9 then --not sure what to do about arrays. For now, force them to 'objects'
vartype=9
end
if vartype==1 then --boolean
if value then value=1 else value=0 end
elseif vartype==7 then
value=byteTableToDword(floatToByteTable(value))
elseif vartype==8 then
value=byteTableToQword(doubleToByteTable(value))
end
javapipe.lock()
javapipe.writeByte(JAVACMD_SETFIELD)
javapipe.writeQword(jObject)
javapipe.writeQword(fieldid)
javapipe.writeByte(vartype)
javapipe.writeQword(value)
javapipe.unlock()
end
function java_search_start(value, boolean)
--tag all known objects and set a variable to let some functions know they can not function until the scan has finished (they can't set tags)
local result=nil
javapipe.lock()
javapipe.writeByte(JAVACMD_STARTSCAN)
if value==nil then
javapipe.writeByte(1) --unknown initial value scan
else
javapipe.writeByte(0) --value scan
javapipe.writeDouble(value)
if (boolean~=nil) and (boolean==true) then
javapipe.writeByte(1)
else
javapipe.writeByte(0)
end
end
result=javapipe.readQword() --Wait till done, get nr of results)
java_scanning=true
javapipe.unlock()
return result
end
function java_search_refine(scantype, scanvalue)
--refines the result of the current scan
--scantype:
--0 = exact value
--1 = increased value
--2 = decreased value
--3 = changed value
--4 = unchanged value
local result=nil
if scantype==nil then
error(translate("Scantype was not set"))
end
javapipe.lock()
javapipe.writeByte(JAVACMD_REFINESCANRESULTS)
javapipe.writeByte(scantype)
if scantype==0 then
javapipe.writeDouble(scanvalue)
end
result=javapipe.readQword()
javapipe.unlock()
return result
end
function java_search_getResults(maxresults)
--get the results
--note, the results are referencec to the object, so CLEAN UP when done with it (and don't get too many)
local result={}
javapipe.lock()
javapipe.writeByte(JAVACMD_GETSCANRESULTS)
if maxresults==0 then
maxresults=10
end
javapipe.writeDword(maxresults)
--local i=1
while true do
--print(i)
-- i=i+1
local object=javapipe.readQword()
if (object==0) or (object==nil) then
--print("End of the list")
break
end --end of the list
local r={}
r.object=object
r.fieldid=javapipe.readQword()
table.insert(result, r)
end
javapipe.unlock()
return result
end
function java_search_finish()
java_scanning=false
end
function java_foundCodeDialogClose(sender)
--print("closing")
local id=sender.Tag
local fcd=java.findwhatwriteslist[id]
java.findwhatwriteslist[id]=nil
java_stopFindWhatWrites(id)
return caFree
end
function java_MoreInfoDblClick(sender)
--get the class and method and start the editor
local index=sender.ItemIndex+1
if index>0 then
local methodid=getRef(sender.Tag).stack[index].methodid --the listview also has this tag (tag to entry)
local class=java_getMethodDeclaringClass(methodid)
--get the class that defines this method
local classdata=java_getClassData(class)
local parsedclass=java_parseClass(classdata)
local mname=java_getMethodName(methodid)
local parsedmethod=javaclass_findMethod(parsedclass, mname)
javaclasseditor_editMethod(parsedclass, parsedmethod, editMethod_applyClick, class)
end
end
function java_foundCodeDialog_MoreInfo_OnDestroy(sender)
--cleanup the reference to this entry
local entry=getRef(sender.Tag)
if entry~=nil then
entry.form=nil
destroyRef(sender.Tag)
end
end
function java_createEntryListView(owner)
local lv=createListView(owner)
lv.ViewStyle=vsReport
lv.ReadOnly=true
lv.RowSelect=true
local c=lv.Columns.add()
c.caption=translate('Class')
c.width=150
c=lv.Columns.add()
c.caption=translate('Method')
c.width=150
c=lv.Columns.add()
c.caption=translate('Position')
c.autosize=true
return lv
end
function java_foundCodeDialogLVDblClick(sender)
local id=sender.tag
local fcd=java.findwhatwriteslist[id]
local index=sender.ItemIndex+1
if index>0 then
local entry=fcd.entries[index]
if (entry.stack~=nil) and (entry.form==nil) then
--show a form with the stack info
local ref=createRef(entry)
entry.form=createForm()
entry.form.Caption=string.format(translate("More info %s.%s(%d)"), entry.classname, entry.methodname, entry.location)
entry.form.Tag=ref
entry.form.Width=400
entry.form.Height=150
entry.form.Position=poScreenCenter
entry.form.BorderStyle=bsSizeable
local lv=java_createEntryListView(entry.form)
lv.Tag=ref
lv.Align=alClient
entry.form.OnDestroy=java_foundCodeDialog_MoreInfo_OnDestroy
--fill the listview with the data
local i
for i=1, #entry.stack do
local se=entry.stack[i]
local mname=java_getMethodName(se.methodid)
local class=java_getMethodDeclaringClass(se.methodid)
local classname=java_getClassSignature(class)
java_dereferenceLocalObject(class)
class=nil
local tventry=lv.items.add()
tventry.Caption=classname
tventry.SubItems.add(string.format('%x: %s', se.methodid, mname))
tventry.SubItems.add(se.location)
end
lv.OnDblClick=java_MoreInfoDblClick
end
if (entry.form~=nil) then
entry.form.show() --bring to front
end
end
end
function java_findWhatWrites(object, fieldid)
local id=nil
if java.capabilities.can_generate_field_modification_events then
--spawn a window to receive the data
javapipe.lock()
javapipe.writeByte(JAVACMD_FINDWHATWRITES)
javapipe.writeQword(object)
javapipe.writeQword(fieldid)
id=javapipe.readDword()
--print("id="..id)
javapipe.unlock()
local fcd={} --found code dialog
fcd.form=createForm()
fcd.form.width=400
fcd.form.height=300
fcd.form.Position=poScreenCenter
fcd.form.BorderStyle=bsSizeable
fcd.form.caption=translate('The following methods accessed the given variable')
fcd.form.OnClose=java_foundCodeDialogClose
fcd.form.Tag=id
fcd.lv=java_createEntryListView(fcd.form)
fcd.lv.Align=alClient
fcd.lv.OnDblClick=java_foundCodeDialogLVDblClick
fcd.lv.Tag=id
fcd.lv.Name=translate('results');
fcd.entries={}
if java.findwhatwriteslist==nil then
java.findwhatwriteslist={}
end
java.findwhatwriteslist[id]=fcd
else
error(translate('java_find_what_writes only works when the jvmti agent is launched at start'))
end
return id
end
function java_stopFindWhatWrites(id)
javapipe.lock()
javapipe.writeByte(JAVACMD_STOPFINDWHATWRITES)
javapipe.writeDword(id)
javapipe.unlock()
end
function java_getMethodDeclaringClass(methodid)
javapipe.lock()
javapipe.writeByte(JAVACMD_GETMETHODDECLARINGCLASS)
javapipe.writeQword(methodid)
local result=javapipe.readQword()
javapipe.unlock()
return result
end
function java_getObjectHandleToAddress(address)
local result=0
javapipe.lock()
javapipe.writeByte(JAVACMD_FINDJOBJECT)
javapipe.writeQword(address)
result=javapipe.readQword()
javapipe.unlock()
return result
end
function java_getObjectClass(jObject)
local result
javapipe.lock()
javapipe.writeByte(JAVACMD_GETOBJECTCLASS);
javapipe.writeQword(jObject)
result=javapipe.readQword()
javapipe.unlock()
return result
end
function java_getClassSignature(jClass)
local length
local result=''
javapipe.lock()
javapipe.writeByte(JAVACMD_GETCLASSSIGNATURE)
javapipe.writeQword(jClass)
length=javapipe.readWord()
result=javapipe.readString(length);
length=javapipe.readWord()
if (length>0) then
result=result..translate(' Generic=')..javapipe.readString(length);
end
javapipe.unlock()
return result
end
function java_getSuperClass(jClass)
local result=nil
javapipe.lock()
javapipe.writeByte(JAVACMD_GETSUPERCLASS)
javapipe.writeQword(jClass)
result=javapipe.readQword()
javapipe.unlock()
return result
end
function miJavaActivateClick(sender)
javaInjectAgent()
end
function javaForm_treeviewExpanding(sender, node)
local allow=true
--outputDebugString("Expanding "..node.Text)
--print("javaForm_treeviewExpanding "..node.level)
if node.Level==0 then --root level (class expasion)
if node.Count==0 then --not yet filled in
--expand the class this node describes
local jklass=node.Data
local methods=java_getClassMethods(jklass)
local fields=java_getClassFields(jklass)
local interfaces=java_getImplementedInterfaces(jklass)
local superclass=java_getSuperClass(jklass)
local i
if superclass~=0 then
node.add(translate('superclass=')..java_getClassSignature(superclass))
java_dereferenceLocalObject(superclass)
end
node.add(translate('---Implemented interfaces---'));
for i=1, #interfaces do
local name
if interfaces[i]>0 then
name=java_getClassSignature(interfaces[i])
else
name='???'
end
node.add(string.format("%x : %s", interfaces[i], name))
end
node.add(translate('---Fields---'));
for i=1, #fields do
node.add(string.format("%x: %s: %s (%s)", fields[i].jfieldid, fields[i].name, fields[i].signature,fields[i].generic))
end
node.add(translate('---Methods---'));
for i=1, #methods do
local n=node.add(string.format("%x: %s%s %s", methods[i].jmethodid, methods[i].name, methods[i].signature, methods[i].generic))
n.data=methods[i].jmethodid --ONLY methods have this field set at level 1. (!ONLY METHODS!)
end
--java_getClassFields(jklass);
end
end
return allow
end
function javaForm_searchClass(sender)
javaForm.findAll=false --classes only
javaForm.findDialog.Title=translate("Search for class...")
javaForm.findDialog.execute()
end
function javaForm_searchAll(sender)
javaForm.findAll=true --everything
javaForm.findDialog.Title=translate("Search for...")
javaForm.findDialog.execute()
end
function javaForm_doSearch(sender)
--search for javaForm.findDialog.FindText
local currentindex=1
local findall=javaForm.findAll
local searchstring=javaForm.findDialog.FindText
if javaForm.treeview.Selected ~= nil then
currentindex=javaForm.treeview.Selected.AbsoluteIndex+1 --start at the next one
end
while currentindex<javaForm.treeview.Items.Count do
local node=javaForm.treeview.Items[currentindex]
if (node.level==0) or findall then
--check if node.Text contains the searchstring
if string.find(node.Text,searchstring) ~= nil then
--found one
node.Selected=true
node.makeVisible()
return
end
end
if findall and node.HasChildren then
node.expand()
end
currentindex=currentindex+1
end
end
function varscan_showResults(count)
--print("showing results for "..count.." results");
java.varscan.currentresults=java_search_getResults(math.min(count, 100))
if count>100 then
java.varscan.Count.Caption=string.format('%d of %d', #java.varscan.currentresults, count)
else
java.varscan.Count.Caption=count
end
count=#java.varscan.currentresults
local i
for i=1,count do
local object=java.varscan.currentresults[i].object
local fieldid=java.varscan.currentresults[i].fieldid
local class=java_getObjectClass(object)
local classname=java_getClassSignature(class)
--local class2=java_getFieldDeclaringClass(class, fieldid)
local fieldname=java_getFieldSignature(class, fieldid)
java_dereferenceLocalObject(class)
--java_dereferenceLocalObject(class2)
java.varscan.Results.Items.Add('Obj('..classname..'.'..fieldname.name..')')
end
end
function varscan_cleanupResults()
local i
java.varscan.Results.clear()
for i=1,#java.varscan.currentresults do
java_dereferenceLocalObject(java.varscan.currentresults[i].object)
end
java.varscan.currentresults=nil
end
function varscan_firstScan(sender)
--print("first scan")
if (sender.Tag==0) then
--first scan
local count=java_search_start(java.varscan.ValueBox.Text)
varscan_showResults(count)
sender.Caption=translate("New Scan")
sender.Tag=1
java.varscan.NextScan.Enabled=#java.varscan.currentresults>0
else
--new scan
varscan_cleanupResults()
java_search_finish()
java.varscan.NextScan.Enabled=false
sender.Caption=translate("First Scan")
sender.Tag=0
end
end
function varscan_nextScan(sender)
--print("next scan")
varscan_cleanupResults()
local count=java_search_refine(0, java.varscan.ValueBox.Text)
varscan_showResults(count)
java.varscan.NextScan.Enabled=#java.varscan.currentresults>0
end
function miFindWhatAccessClick(sender)
local i=java.varscan.Results.ItemIndex
if i~=-1 then
i=i+1
local object=java.varscan.currentresults[i].object
local fieldid=java.varscan.currentresults[i].fieldid
java_findWhatWrites(object, fieldid)
end
end
function miJavaVariableScanClick(sender)
javaInjectAgent()
local varscan=java.varscan
if varscan==nil then
--build a gui
varscan={}
varscan.form=createForm()
varscan.form.Width=400
varscan.form.Height=400
varscan.form.Position=poScreenCenter
varscan.form.Caption=translate("Java Variable Scanner")
varscan.form.BorderStyle=bsSizeable
varscan.controls=createPanel(varscan.form)
varscan.controls.Align=alRight
varscan.controls.Caption=''
varscan.controls.BevelOuter="bvNone"
varscan.ValueText=createLabel(varscan.controls)
varscan.ValueText.Caption=translate("Value")
varscan.FirstScan=createButton(varscan.controls)
varscan.FirstScan.Caption=translate("First Scan")
varscan.NextScan=createButton(varscan.controls)
varscan.NextScan.Caption=translate("Next Scan")
local width=6+math.max(varscan.form.Canvas.getTextWidth(varscan.FirstScan.Caption), varscan.form.Canvas.getTextWidth(varscan.NextScan.Caption)) --guess which one will be bigger... (just in case someone translates this)
varscan.FirstScan.ClientWidth=width
varscan.NextScan.ClientWidth=width
varscan.ValueBox=createEdit(varscan.controls)
varscan.ValueBox.Top=20
varscan.ValueBox.Left=20;
varscan.ValueText.AnchorSideLeft.Control=varscan.ValueBox
varscan.ValueText.AnchorSideLeft.Side=asrLeft
varscan.ValueText.AnchorSideBottom.Control=varscan.ValueBox
varscan.ValueText.AnchorSideBottom.Side=asrTop
varscan.ValueText.Anchors="[akLeft, akBottom]"
varscan.FirstScan.AnchorSideLeft.Control=varscan.ValueBox
varscan.FirstScan.AnchorSideLeft.Side=asrLeft
varscan.FirstScan.AnchorSideTop.Control=varscan.ValueBox
varscan.FirstScan.AnchorSideTop.Side=asrBottom
varscan.FirstScan.BorderSpacing.Top=5
varscan.FirstScan.Anchors="[akTop, akLeft]"
varscan.FirstScan.OnClick=varscan_firstScan
varscan.NextScan.AnchorSideLeft.Control=varscan.FirstScan
varscan.NextScan.AnchorSideLeft.Side=asrRight
varscan.NextScan.BorderSpacing.Left=5
varscan.NextScan.OnClick=varscan_nextScan
varscan.NextScan.AnchorSideTop.Control=varscan.ValueBox
varscan.NextScan.AnchorSideTop.Side=asrBottom
varscan.NextScan.BorderSpacing.Top=5
varscan.NextScan.Anchors="[akTop, akLeft]"
varscan.NextScan.Enabled=false
varscan.ValueBox.Width=varscan.NextScan.Left+varscan.NextScan.Width-varscan.ValueBox.Left
varscan.controls.Width=varscan.ValueBox.Width+40
varscan.ResultPanel=createPanel(varscan.form)
varscan.ResultPanel.Align=alClient
varscan.ResultPanel.Caption=""
varscan.ResultPanel.BevelOuter="bvNone"
varscan.Count=createLabel(varscan.ResultPanel)
varscan.Count.Caption=translate("Found:")
varscan.Count.Align=alTop
varscan.Results=createListBox(varscan.ResultPanel)
varscan.Results.Align=alClient
varscan.Results.Width=200
varscan.Results.PopupMenu=createPopupMenu(varscan.form)
local mi
mi=createMenuItem(varscan.Results.PopupMenu)
mi.Caption=translate("Find what accesses this value")
mi.OnClick=miFindWhatAccessClick;
varscan.Results.PopupMenu.Items.add(mi)
end
varscan.form.show()
java.varscan=varscan
end
function editMethod_applyClick(parsedclass, class)
local newdata=java_writeClass(parsedclass)
java_redefineClassWithCustomData(class, newdata)
end
function miEditMethodClick(sender)
--javaclasseditor_editMethod(class, methodid)
local sel=javaForm.treeview.Selected
if (sel~=nil) and (sel.Level==1) and (sel.Data~=0) then
--find the class and the methodid
--class can be found in the parent
--methodid is in the data
local class=sel.Parent.Data
local methodid=sel.data
--javaclasseditor_editMethod(class, methodid)
local classdata=java_getClassData(class)
local parsedclass=java_parseClass(classdata)
local mname=java_getMethodName(methodid)
local parsedmethod=javaclass_findMethod(parsedclass, mname)
javaclasseditor_editMethod(parsedclass, parsedmethod, editMethod_applyClick, class)
end
end
function javaDissectPopupOnPopup(sender)
--check if the current line contains a method, and if so, show miEditMethod else hide it
local sel=javaForm.treeview.Selected
javaForm.miEditMethod.Visible=(sel~=nil) and (sel.Level==1) and (sel.Data~=0)
end
function miJavaDissectClick(sender)
javaInjectAgent()
--I could also implement the same method as mono, but as an example I'll be creating the form with code only
if (javaForm==nil) then
javaForm={}
javaForm.form=createForm()
javaForm.form.Borderstyle=bsSizeable
javaForm.form.Width=640
javaForm.form.Height=480
javaForm.treeview=createTreeview(javaForm.form)
javaForm.treeview.align=alClient
javaForm.treeview.OnExpanding=javaForm_treeviewExpanding
javaForm.treeview.RightClickSelect=true
javaForm.menu=createMainMenu(javaForm.form)
local searchmenu=createMenuItem(javaForm.menu)
searchmenu.caption=translate("Search")
javaForm.menu.items.add(searchmenu)
local searchClass=createMenuItem(javaForm.menu)
searchClass.caption=translate("Find Class")
searchClass.Shortcut="Ctrl+F"
searchClass.OnClick=javaForm_searchClass
searchmenu.add(searchClass)
local searchAll=createMenuItem(javaForm.menu)
searchAll.caption=translate("Find...")
searchAll.Shortcut="Ctrl+Alt+F"
searchAll.OnClick=javaForm_searchAll
searchmenu.add(searchAll)
javaForm.findDialog=createFindDialog(javaForm.form)
javaForm.findDialog.Options="[frHideEntireScope, frHideWholeWord, frDown, frDisableUpDown, frMatchCase, frDisableMatchCase]"
javaForm.findDialog.OnFind=javaForm_doSearch
javaForm.form.position=poScreenCenter
javaForm.popupMenu=createPopupMenu(javaForm.treeview)
javaForm.miEditMethod=createMenuItem(javaForm.popupMenu)
javaForm.miEditMethod.Caption=translate("Edit method")
javaForm.miEditMethod.OnClick=miEditMethodClick
javaForm.popupMenu.Items.Add(javaForm.miEditMethod)
javaForm.popupMenu.OnPopup=javaDissectPopupOnPopup
javaForm.treeview.PopupMenu=javaForm.popupMenu
javaForm.form.OnClose=nil --get rid of autodestruct
end
if (java_classlist~=nil) then
java_cleanClasslist(java_classlist) --prevent a memory leak
end
java_classlist=java_getLoadedClasses()
if (java_classlist~=nil) then
local i
for i=1,#java_classlist do
local node=javaForm.treeview.Items.Add(string.format("%d(%x) : %s (%s)", i, java_classlist[i].jclass, java_classlist[i].signature, java_classlist[i].generic ))
node.Data=java_classlist[i].jclass
node.HasChildren=true
end
end
javaForm.form.show()
end
function miJavaSetEnvironmentClick(sender)
if targetIs64Bit() then
autoAssemble([[
alloc(newenv, 32768)
alloc(sev, 2048)
alloc(path, 512)
alloc(pathstr,5)
alloc(JTOstr, 18)
alloc(JTO, 19)
label(end)
label(hasnosemicolon)
label(copyoption)
path:
{$lua}
return "db ';"..getCheatEngineDir().."autorun\\dlls\\32;"..getCheatEngineDir().."autorun\\dlls\\64',0"
{$asm}
pathstr:
db 'PATH',0
JTOstr:
db 'JAVA_TOOL_OPTIONS',0
JTO:
db ' -agentlib:cejvmti',0
sev:
//sub rsp,8 //align the stack
//sub rsp,20 //allocate scratchspace for function calls
sub rsp,28 //using magic to compine those two
//set the path
mov rcx,pathstr
mov rdx,newenv
mov r8,8000
call GetEnvironmentVariableA
mov rdx,path
cmp byte [newenv+rax],';'
jne hasnosemicolon
add rdx,1 //it already has a semicolon so skip it
hasnosemicolon:
mov rcx,newenv
//rdx=path(+1)
call ntdll.strcat
mov rcx,pathstr
mov rdx,newenv
call SetEnvironmentVariableA
//set the java tool options
mov byte [newenv],0
mov rcx,JTOstr
mov rdx,newenv
mov r8,8000
call GetEnvironmentVariableA
mov rdx, JTO
cmp rax,0 //not yet defined
jne copyoption
//it hasn't been defined yet
add rdx,1 //no space
copyoption:
mov rcx,newenv
//rdx=rdx
call ntdll.strcat
mov rcx,JTOstr
mov rdx,newenv
call SetEnvironmentVariableA
end:
add rsp,28
ret
createthread(sev)
]])
else
autoAssemble([[
alloc(newenv, 32768)
alloc(sev, 2048)
alloc(path, 512)
alloc(pathstr,5)
alloc(JTOstr, 18)
alloc(JTO, 19)
label(end)
label(hasnosemicolon)
label(copyoption)
path:
{$lua}
return "db ';"..getCheatEngineDir().."autorun\\dlls\\32;"..getCheatEngineDir().."autorun\\dlls\\64',0"
{$asm}
pathstr:
db 'PATH',0
JTOstr:
db 'JAVA_TOOL_OPTIONS',0
JTO:
db ' -agentlib:cejvmti',0
sev:
//set the path
push 8000
push newenv
push pathstr
call GetEnvironmentVariableA
mov esi,path
cmp byte [newenv+eax],';'
jne hasnosemicolon
add esi,1 //it already has a semicolon so skip it
hasnosemicolon:
push esi
push newenv
call ntdll.strcat
add esp,8
push newenv
push pathstr
call SetEnvironmentVariableA
//set the java tool options
mov byte [newenv],0
push 8000
push newenv
push JTOstr
call GetEnvironmentVariableA
mov esi, JTO
cmp eax,0 //not yet defined
jne copyoption
//it hasn't been defined yet
add esi,1 //no space
copyoption:
push esi
push newenv
call ntdll.strcat
add esp,8
push newenv
push JTOstr
call SetEnvironmentVariableA
end:
ret
createthread(sev)
]]
)
end
end
function java_OpenProcessAfterwards()
local usesjava=false
local m=enumModules()
local i
java_classlist=nil
for i=1, #m do
if m[i].Name=='jvm.dll' then
usesjava=true
break
end
end
if usesjava or java.settings.cbAlwaysShowMenu.Checked then
if (miJavaTopMenuItem==nil) then
local mfm=getMainForm().Menu
local mi
miJavaTopMenuItem=createMenuItem(mfm)
miJavaTopMenuItem.Caption="Java"
mfm.Items.insert(mfm.Items.Count-1, miJavaTopMenuItem) --add it before help
mi=createMenuItem(miJavaTopMenuItem)
mi.Caption=translate("Activate java features")
mi.OnClick=miJavaActivateClick
mi.Enabled=usesjava
mi.Name="miActivate"
mi.Visible=false
miJavaTopMenuItem.Add(mi)
mi=createMenuItem(miJavaTopMenuItem)
mi.Caption=translate("Dissect java classes")
mi.Shortcut="Ctrl+Alt+J"
mi.OnClick=miJavaDissectClick
mi.Enabled=usesjava
mi.Name="miDissectJavaClasses"
miJavaTopMenuItem.Add(mi)
mi=createMenuItem(miJavaTopMenuItem)
mi.Caption=translate("Java variable scan")
mi.Shortcut="Ctrl+Alt+S"
mi.OnClick=miJavaVariableScanClick
mi.Enabled=usesjava
mi.Name="miJavaVariableScan"
miJavaTopMenuItem.Add(mi)
mi=createMenuItem(miJavaTopMenuItem)
mi.Caption="-"
miJavaTopMenuItem.Add(mi)
mi=createMenuItem(miJavaTopMenuItem)
mi.Caption=translate("Debug child processes")
mi.OnClick=miJavaSetEnvironmentClick
mi.Enabled=getOpenedProcessID()~=0
mi.Name="miDebugChildren"
miJavaTopMenuItem.Add(mi)
else
miJavaTopMenuItem.miActivate.enabled=usesjava
miJavaTopMenuItem.miDissectJavaClasses.enabled=usesjava
miJavaTopMenuItem.miJavaVariableScan.enabled=usesjava
miJavaTopMenuItem.miDebugChildren=getOpenedProcessID()~=0
end
end
end
function java_OpenProcess(processid)
if java.oldOnOpenProcess~=nil then
java.oldOnOpenProcess(processid)
end
synchronize(java_OpenProcessAfterwards) --call this function when the whole OpenProcess routine is done (next sync check)
end
function javaAA_USEJAVA(parameters, syntaxcheckonly)
--called whenever an auto assembler script encounters the USEJAVA() line
--the value you return will be placed instead of the given line
--In this case, returning a empty string is fine
--Special behaviour: Returning nil, with a secondary parameter being a string, will raise an exception on the auto assembler with that string
if (syntaxcheckonly==false) and (javaInjectAgent()==0) then
return nil,translate("The java handler failed to initialize")
end
return "" --return an empty string (removes it from the internal aa assemble list)
end
function java_settingsClose(sender)
local result=caHide
if java.settingsOnClose~=nil then
result=java.settingsOnClose(sender)
end
if (result==caHide) and (sender.ModalResult==mrOK) then
--Apply changes
--if there is an error return caNone (and show a message preferably)
if java.settings.cbAlwaysShowMenu.Checked then
java.settings.registry.Value["Always Show Menu"]=1
else
java.settings.registry.Value["Always Show Menu"]=0
end
--[[
if java.settings.cbGlobalHook.Checked then
if (java.settings.registry.Value["Global Hook"]=='') or (java.settings.registry.Value["Global Hook"]==0) then
--it got selected
end
java.settings.registry.Value["Global Hook"]=1
else
if java.settings.registry.Value["Global Hook"]==1 then
--it got deselected
end
java.settings.registry.Value["Global Hook"]=0
end
--]]
end
return result
end
function java_settingsShow(sender)
if java.settingsOnShow~=nil then
result=java.settingsOnShow(sender)
end
--update the controls based on the registry
java.settings.cbAlwaysShowMenu.Checked=java.settings.registry.Value["Always Show Menu"]=='1'
--java.settings.cbGlobalHook.Checked=java.settings.registry.Value["Global Hook"]=='1'
end
function java_initialize()
--register a function to be called when a process is opened
if (java==nil) then
java={}
java.oldOnOpenProcess=onOpenProcess
onOpenProcess=java_OpenProcess
registerAutoAssemblerCommand("USEJAVA", javaAA_USEJAVA)
local sf=getSettingsForm()
java.settingsTab=sf.SettingsPageControl.addTab()
local insertNode=sf.SettingsTreeView.Items[3] --insert it near the unrandomizer since it'd be used as often as that setting
local node=sf.SettingsTreeView.Items.insert(insertNode, "Java")
node.data=userDataToInteger(java.settingsTab)
java.settingsOnClose=sf.onClose
sf.onClose=java_settingsClose
java.settingsOnShow=sf.onShow
sf.onShow=java_settingsShow
java.settings={}
local cbAlwaysShowMenu=createCheckBox(java.settingsTab)
cbAlwaysShowMenu.Caption=translate("Show java menu item even if the target process hasn't loaded jvm.dll (Used for the local setEnvironment option)")
cbAlwaysShowMenu.AnchorSideLeft.Control=java.settingsTab
cbAlwaysShowMenu.AnchorSideLeft.Side=asrLeft
cbAlwaysShowMenu.AnchorSideTop.Control=java.settingsTab
cbAlwaysShowMenu.AnchorSideTop.Side=asrTop
cbAlwaysShowMenu.Anchors="[akTop, akLeft]"
java.settings.cbAlwaysShowMenu=cbAlwaysShowMenu
--[[
--warning: If you uninstall CE while this is checked you won't be able to load any java programs
local cbGlobalHook=createCheckBox(java.settingsTab)
cbGlobalHook.Caption="Systemwide java agent injection. (Loads the java agent even when CE isn't running. Reboot recommended)"
cbGlobalHook.AnchorSideLeft.Control=java.settingsTab
cbGlobalHook.AnchorSideLeft.Side=asrLeft
cbGlobalHook.AnchorSideTop.Control=cbAlwaysShowMenu
cbGlobalHook.AnchorSideTop.Side="asrBottom"
cbGlobalHook.Anchors="[akTop, akLeft]"
java.settings.cbGlobalHook=cbGlobalHook
--]]
java.settings.registry=getSettings("Java")
--initialize the settings based on the registry
java.settings.cbAlwaysShowMenu.Checked=java.settings.registry.Value["Always Show Menu"]=='1'
--java.settings.cbGlobalHook.Checked=java.settings.registry.Value["Global Hook"]=='1'
end
end
java_initialize()
Reference in New Issue View Git Blame Copy Permalink