533
edits
Changes
Using Ghidra with the Wii (view source)
Revision as of 21:54, 22 January 2024
, 21:54, 22 January 2024→Use with IOS
Line 7:
Line 7:
+
+
== Use with [[IOS]] ==
== Use with [[IOS]] ==
−Ghidra can naturally import some IOS [[ARM Binaries]], specifically those that are just regular [[ELF]] files. However, it will produce bad results due to the use of undefined instructions for [[IOS/Syscalls|syscalls]]. A [https://gist.github.com/Pokechu22/caa73242a5969ff5dc413177fcb7f516 language definition] exists to fix this (though it will not produce the cleanest results since it doesn't know what various registers are used/changed by each syscall). <!-- TODO: I should create a more meaningful GitHub repo for this --> For ELFLOADER files (used for monolithic IOS versions, and the kernel in non-monolithic IOS versions), the file must be converted to a normal ELF file first (by removing everything before the ELF header, or using [[ARM_Binaries#Extract_ELF_file|the program on the ARM Binaries page]]). <!-- TODO: Write a loader -->
+Ghidra can naturally import some IOS [[ARM Binaries]], specifically those that are just regular [[ELF]] files. However, it will produce bad results due to the use of undefined instructions for [[IOS/Syscalls|syscalls]].
+There are 2 options to resolve this :
+* use the [https://github.com/GaryOderNichts/ghidra_scripts/blob/master/GhidraWiiSyscallUDF.java IOS Syscall function naming script] created by [[User:GaryOderNichts]]. This will rename and name all Syscalls it finds in the loaded binary when provided with the accompanying [https://github.com/GaryOderNichts/ghidra_scripts/blob/master/syscalls_wii_signatures.txt signature text file]
+* <!-- TODO: I should create a more meaningful GitHub repo for this --> use the [https://gist.github.com/Pokechu22/caa73242a5969ff5dc413177fcb7f516 starlet language definition] created by [[User:Pokechu22]]. This will add support for nintendo's undefined instructions.
+<!-- TODO: Write a loader -->
+For [[ARM_binaries#ELFLOADER_format|ELFLOADER]] files (used for monolithic IOS versions, and the kernel in non-monolithic IOS versions), the file must be converted to a normal ELF file first (by removing everything before the ELF header, or using [[ARM_Binaries#Extract_ELF_file|the program on the ARM Binaries page]]).
There is also a [[Media:WiiIosTypes.zip|data type archive]] and [[Media:WiiIosKernelFunctionIds.zip|FunctionID database]] available to use when disassembling IOS.
There is also a [[Media:WiiIosTypes.zip|data type archive]] and [[Media:WiiIosKernelFunctionIds.zip|FunctionID database]] available to use when disassembling IOS.