Lib: Add more supported dynCall offset calculations

SamboyCoding · SamboyCoding · commit b7afe78311c8 · 2026-05-02T18:50:40.000+01:00
diff --git a/LibCpp2IL/Wasm/WasmFile.cs b/LibCpp2IL/Wasm/WasmFile.cs
@@ -89,7 +89,10 @@ public WasmFunctionDefinition GetFunctionFromIndexAndSignature(ulong index, stri
         index = (ulong)((long)(index & coefficients.andWith) + coefficients.addConstant);
 
         //Use element section to look up real index
-        var realIndex = ElementSection.Elements[0].FunctionIndices![(int)index]; //Minus 1 because the first element in the actual memory layout is FFFFFFFF
+        //Ghidra plugin inserts a 00000000 entry at the top of the table which makes it look like you don't need the -1 here
+        //i.e. pointer in metadata is 4386, you want the item which ghidra shows [4386] at the end of the line for
+        //but we don't have that, so without the -1 this would map to what ghidra shows as [4387], which is wrong.
+        var realIndex = ElementSection.Elements[0].FunctionIndices![(int)index - 1]; 
 
         //Look up real index in function table
         return FunctionTable[(int)realIndex];
@@ -155,6 +158,8 @@ private void CalculateDynCallOffsets()
                     LibLogger.WarnNewline($"\t\tCouldn't calculate coefficients for {signature}, got only 2 instructions but the last was {relevantInstructions[^1].Mnemonic}, not I32And or I32Add");
                     continue;
                 }
+                
+                LibLogger.VerboseNewline($"\t\tCoefficients for {signature}: andWith {andWith}, addConstant {add}");
             }
             else if (relevantInstructions.Length == 4)
             {
@@ -176,12 +181,15 @@ private void CalculateDynCallOffsets()
                     add = -add;
                     LibLogger.WarnNewline($"\t\tCoefficient for {signature} using I32Sub not I32Add, this may not work!");
                 }
+                
+                LibLogger.VerboseNewline($"\t\tCoefficients for {signature}: andWith {andWith}, addConstant {add}");
             }
             else if (disassembled.All(d => d.Mnemonic is WasmMnemonic.LocalGet or WasmMnemonic.CallIndirect or WasmMnemonic.End))
             {
                 //No remapping
                 andWith = int.MaxValue;
                 add = 0;
+                LibLogger.VerboseNewline($"\t\tAssuming index is not manipulated for dynCall_{signature} (method only contains LocalGet, CallIndirect, End instructions)");
             }
             else if (disassembled[^1].Mnemonic == WasmMnemonic.End && disassembled[^2].Mnemonic == WasmMnemonic.CallIndirect && disassembled[^3].Mnemonic == WasmMnemonic.LocalGet && (byte)disassembled[^3].Operands[0] == 0)
             {
@@ -190,13 +198,26 @@ private void CalculateDynCallOffsets()
                 LibLogger.VerboseNewline($"\t\tAssuming index is not manipulated for dynCall_{signature} (method ends with LocalGet 0, CallIndirect, End)");
                 andWith = int.MaxValue;
                 add = 0;
+            } else if (disassembled.FindIndex(i => i.Mnemonic == WasmMnemonic.CallIndirect) is var callIdx and > 0 &&
+                       Enumerable.Range(0, callIdx).Select(i => disassembled[i]).All(i => i.Mnemonic == WasmMnemonic.LocalGet))
+            {
+                //CallIndirect and everything before is just LocalGet, we assume not modified
+                LibLogger.VerboseNewline($"\t\tAssuming index is not manipulated for dynCall_{signature} (only LocalGet instructions before the CallIndirect)");
+                andWith = int.MaxValue;
+                add = 0;
+            } else if (disassembled.FindIndex(i => i.Mnemonic == WasmMnemonic.CallIndirect) is var callIdx2 and > 0 && disassembled[callIdx2 - 1] is { Mnemonic: WasmMnemonic.LocalGet, Operands: [(byte) 0] })
+            {
+                //CallIndirect with LocalGet 0 just before, assume not modified - this is sketchy though
+                LibLogger.VerboseNewline($"\t\tAssuming index is not manipulated for dynCall_{signature} (LocalGet 0 instruction immediately before the CallIndirect)");
+                andWith = int.MaxValue;
+                add = 0;
             }
             else
             {
                 LibLogger.WarnNewline($"\t\tCouldn't calculate coefficients for {signature}, got {relevantInstructions.Length} instructions; expecting 4");
                 continue;
             }
-
+            
             DynCallCoefficients[signature] = new() { andWith = andWith, addConstant = add, };
         }
     }

Original file line number	Diff line number	Diff line change
`@@ -89,7 +89,10 @@ public WasmFunctionDefinition GetFunctionFromIndexAndSignature(ulong index, stri`
`89`	`89`	`index = (ulong)((long)(index & coefficients.andWith) + coefficients.addConstant);`
`90`	`90`
`91`	`91`	`//Use element section to look up real index`
`92`		`- var realIndex = ElementSection.Elements[0].FunctionIndices![(int)index]; //Minus 1 because the first element in the actual memory layout is FFFFFFFF`
	`92`	`+ //Ghidra plugin inserts a 00000000 entry at the top of the table which makes it look like you don't need the -1 here`
	`93`	`+ //i.e. pointer in metadata is 4386, you want the item which ghidra shows [4386] at the end of the line for`
	`94`	`+ //but we don't have that, so without the -1 this would map to what ghidra shows as [4387], which is wrong.`
	`95`	`+ var realIndex = ElementSection.Elements[0].FunctionIndices![(int)index - 1];`
`93`	`96`
`94`	`97`	`//Look up real index in function table`
`95`	`98`	`return FunctionTable[(int)realIndex];`
`@@ -155,6 +158,8 @@ private void CalculateDynCallOffsets()`
`155`	`158`	`LibLogger.WarnNewline($"\t\tCouldn't calculate coefficients for {signature}, got only 2 instructions but the last was {relevantInstructions[^1].Mnemonic}, not I32And or I32Add");`
`156`	`159`	`continue;`
`157`	`160`	`}`
	`161`	`+`
	`162`	`+ LibLogger.VerboseNewline($"\t\tCoefficients for {signature}: andWith {andWith}, addConstant {add}");`
`158`	`163`	`}`
`159`	`164`	`else if (relevantInstructions.Length == 4)`
`160`	`165`	`{`
`@@ -176,12 +181,15 @@ private void CalculateDynCallOffsets()`
`176`	`181`	`add = -add;`
`177`	`182`	`LibLogger.WarnNewline($"\t\tCoefficient for {signature} using I32Sub not I32Add, this may not work!");`
`178`	`183`	`}`
	`184`	`+`
	`185`	`+ LibLogger.VerboseNewline($"\t\tCoefficients for {signature}: andWith {andWith}, addConstant {add}");`
`179`	`186`	`}`
`180`	`187`	`else if (disassembled.All(d => d.Mnemonic is WasmMnemonic.LocalGet or WasmMnemonic.CallIndirect or WasmMnemonic.End))`
`181`	`188`	`{`
`182`	`189`	`//No remapping`
`183`	`190`	`andWith = int.MaxValue;`
`184`	`191`	`add = 0;`
	`192`	`+ LibLogger.VerboseNewline($"\t\tAssuming index is not manipulated for dynCall_{signature} (method only contains LocalGet, CallIndirect, End instructions)");`
`185`	`193`	`}`
`186`	`194`	`else if (disassembled[^1].Mnemonic == WasmMnemonic.End && disassembled[^2].Mnemonic == WasmMnemonic.CallIndirect && disassembled[^3].Mnemonic == WasmMnemonic.LocalGet && (byte)disassembled[^3].Operands[0] == 0)`
`187`	`195`	`{`
`@@ -190,13 +198,26 @@ private void CalculateDynCallOffsets()`
`190`	`198`	`LibLogger.VerboseNewline($"\t\tAssuming index is not manipulated for dynCall_{signature} (method ends with LocalGet 0, CallIndirect, End)");`
`191`	`199`	`andWith = int.MaxValue;`
`192`	`200`	`add = 0;`
	`201`	`+ } else if (disassembled.FindIndex(i => i.Mnemonic == WasmMnemonic.CallIndirect) is var callIdx and > 0 &&`
	`202`	`+ Enumerable.Range(0, callIdx).Select(i => disassembled[i]).All(i => i.Mnemonic == WasmMnemonic.LocalGet))`
	`203`	`+ {`
	`204`	`+ //CallIndirect and everything before is just LocalGet, we assume not modified`
	`205`	`+ LibLogger.VerboseNewline($"\t\tAssuming index is not manipulated for dynCall_{signature} (only LocalGet instructions before the CallIndirect)");`
	`206`	`+ andWith = int.MaxValue;`
	`207`	`+ add = 0;`
	`208`	`+ } else if (disassembled.FindIndex(i => i.Mnemonic == WasmMnemonic.CallIndirect) is var callIdx2 and > 0 && disassembled[callIdx2 - 1] is { Mnemonic: WasmMnemonic.LocalGet, Operands: [(byte) 0] })`
	`209`	`+ {`
	`210`	`+ //CallIndirect with LocalGet 0 just before, assume not modified - this is sketchy though`
	`211`	`+ LibLogger.VerboseNewline($"\t\tAssuming index is not manipulated for dynCall_{signature} (LocalGet 0 instruction immediately before the CallIndirect)");`
	`212`	`+ andWith = int.MaxValue;`
	`213`	`+ add = 0;`
`193`	`214`	`}`
`194`	`215`	`else`
`195`	`216`	`{`
`196`	`217`	`LibLogger.WarnNewline($"\t\tCouldn't calculate coefficients for {signature}, got {relevantInstructions.Length} instructions; expecting 4");`
`197`	`218`	`continue;`
`198`	`219`	`}`
`199`		`-`
	`220`	`+`
`200`	`221`	`DynCallCoefficients[signature] = new() { andWith = andWith, addConstant = add, };`
`201`	`222`	`}`
`202`	`223`	`}`