Rizin
unix-like reverse engineering framework and cli tools
le_specs.h
Go to the documentation of this file.
1 // SPDX-FileCopyrightText: 2019 GustavoLCR <gugulcr@gmail.com>
2 // SPDX-License-Identifier: LGPL-3.0-only
3 
4 #ifndef LE_SPECS_H
5 #define LE_SPECS_H
6 #include <rz_types.h>
7 
8 typedef enum {
9  UNUSED_ENTRY = 0,
10  ENTRY16,
11  CALLGATE,
12  ENTRY32,
13  FORWARDER,
14 } LE_entry_bundle_type;
15 
16 typedef enum {
17  LE_RT_POINTER = 1, /* mouse pointer shape */
18  LE_RT_BITMAP = 2, /* bitmap */
19  LE_RT_MENU = 3, /* menu template */
20  LE_RT_DIALOG = 4, /* dialog template */
21  LE_RT_STRING = 5, /* string tables */
22  LE_RT_FONTDIR = 6, /* font directory */
23  LE_RT_FONT = 7, /* font */
24  LE_RT_ACCELTABLE = 8, /* accelerator tables */
25  LE_RT_RCDATA = 9, /* binary data */
26  LE_RT_MESSAGE = 10, /* error msg tables */
27  LE_RT_DLGINCLUDE = 11, /* dialog include file name */
28  LE_RT_VKEYTBL = 12, /* key to vkey tables */
29  LE_RT_KEYTBL = 13, /* key to UGL tables */
30  LE_RT_CHARTBL = 14, /* glyph to character tables */
31  LE_RT_DISPLAYINFO = 15, /* screen display information */
32  LE_RT_FKASHORT = 16, /* function key area short form */
33  LE_RT_FKALONG = 17, /* function key area long form */
34  LE_RT_HELPTABLE = 18, /* Help table for Cary Help manager */
35  LE_RT_HELPSUBTABLE = 19, /* Help subtable for Cary Help manager */
36  LE_RT_FDDIR = 20, /* DBCS uniq/font driver directory */
37  LE_RT_FD = 21, /* DBCS uniq/font driver */
38 } LE_resource_type;
39 
40 // This bit signifies that additional information is contained in the linear EXE module
41 // and will be used in the future for parameter type checking.
42 #define ENTRY_PARAMETER_TYPING_PRESENT 0x80
43 
44 typedef struct LE_entry_bundle_header_s {
45  ut8 count;
46  ut8 type; /* LE_entry_bundle_type */
47  ut16 objnum; // This is the object number for the entries in this bundle.
48 } LE_entry_bundle_header;
49 
50 #define ENTRY_EXPORTED 0x01
51 #define ENTRY_PARAM_COUNT_MASK 0xF8
52 
53 RZ_PACKED(typedef union LE_entry_bundle_entry_u {
54  RZ_PACKED(struct {
55  ut8 flags; // First bit set if exported, mask with 0xF8 to get parameters count
56  ut16 offset; // This is the offset in the object for the entry point defined at this ordinal number.
57  })
58  entry_16;
59  RZ_PACKED(struct {
60  ut8 flags; // First bit set if exported, mask with 0xF8 to get parameters count
61  ut16 offset; // This is the offset in the object for the entry point defined at this ordinal number.
62  ut16 callgate_sel; // The callgate selector for references to ring 2 entry points.
63  })
64  callgate;
65  RZ_PACKED(struct {
66  ut8 flags; // First bit set if exported, mask with 0xF8 to get parameters count
67  ut32 offset; // This is the offset in the object for the entry point defined at this ordinal number.
68  })
69  entry_32;
70  RZ_PACKED(struct {
71  ut8 flags; // First bit set if import by ordinal
72  ut16 import_ord; // This is the index into the Import Module Name Table for this forwarder.
73  ut32 offset; // If import by ordinal, is the ordinal number into the Entry Table of the target module, else is the offset into the Procedure Names Table of the target module.
74  })
75  forwarder;
76 })
77 LE_entry_bundle_entry;
78 
79 #define F_SOURCE_TYPE_MASK 0xF
80 #define F_SOURCE_ALIAS 0x10
81 #define F_SOURCE_LIST 0x20
82 
83 typedef enum {
84  BYTEFIXUP,
85  UNDEFINED1,
86  SELECTOR16,
87  POINTER32, // 16:16
88  UNDEFINED2,
89  OFFSET16,
90  POINTER48, // 16:32
91  OFFSET32,
92  SELFOFFSET32,
93 } LE_fixup_source_type;
94 
95 #define F_TARGET_TYPE_MASK 0x3
96 #define F_TARGET_ADDITIVE 0x4
97 #define F_TARGET_CHAIN 0x8
98 #define F_TARGET_OFF32 0x10 // Else 16
99 #define F_TARGET_ADD32 0x20 // Else 16
100 #define F_TARGET_ORD16 0x40 // Else 8
101 #define F_TARGET_ORD8 0x80 // Else 16
102 
103 typedef enum {
104  INTERNAL,
105  IMPORTORD,
106  IMPORTNAME,
107  INTERNALENTRY
108 } LE_fixup_record_type;
109 
110 typedef struct LE_fixup_record_header_s {
111  ut8 source;
112  ut8 target;
113 } LE_fixup_record_header;
114 
115 #define O_READABLE 1
116 #define O_WRITABLE 1 << 1
117 #define O_EXECUTABLE 1 << 2
118 #define O_RESOURCE 1 << 3
119 #define O_DISCARTABLE 1 << 4
120 #define O_SHARED 1 << 5
121 #define O_PRELOAD 1 << 6
122 #define O_INVALID 1 << 7
123 #define O_ZEROED 1 << 8
124 #define O_RESIDENT 1 << 9
125 #define O_CONTIGUOUS O_RESIDENT | O_ZEROED
126 #define O_LOCKABLE 1 << 10
127 #define O_RESERVED 1 << 11
128 #define O_ALIASED 1 << 12
129 #define O_BIG_BIT 1 << 13
130 #define O_CODE 1 << 14
131 #define O_IO_PRIV 1 << 15
132 
133 typedef struct LE_object_entry_s {
134  ut32 virtual_size;
135  ut32 reloc_base_addr;
136  ut32 flags;
137  ut32 page_tbl_idx; // This specifies the number of the first object page table entry for this object
138  ut32 page_tbl_entries;
139  ut32 reserved;
140 } LE_object_entry;
141 
142 #define P_LEGAL 0
143 #define P_ITERATED 1
144 #define P_INVALID 2
145 #define P_ZEROED 3
146 #define P_RANGE 4
147 #define P_COMPRESSED 5
148 
149 typedef struct LE_object_page_entry_s {
150  ut32 offset; // 0 if zero-filled/invalid page (check flags)
151  ut16 size;
152  ut16 flags;
153 } LE_object_page_entry;
154 
155 #define M_PP_LIB_INIT 1 << 2
156 #define M_SYS_DLL 1 << 3 // No internal fixups
157 #define M_INTERNAL_FIXUP 1 << 4
158 #define M_EXTERNAL_FIXUP 1 << 5
159 #define M_PM_WINDOWING_INCOMP 1 << 8 // Fullscreen only
160 #define M_PM_WINDOWING_COMPAT 1 << 9
161 #define M_USES_PM_WINDOWING M_PM_WINDOWING_INCOMP | M_PM_WINDOWING_COMPAT
162 #define M_NOT_LOADABLE 1 << 13
163 #define M_TYPE_MASK 0x38000
164 #define M_TYPE_EXE 0
165 #define M_TYPE_DLL 0x08000
166 #define M_TYPE_PM_DLL 0x10000
167 #define M_TYPE_PDD 0x20000 // Physical Device Driver
168 #define M_TYPE_VDD 0x28000 // Virtual Device Driver
169 #define M_MP_UNSAFE 1 << 19
170 #define M_PP_LIB_TERM 1 << 30
171 
172 typedef struct LE_image_header_s { /* New 32-bit .EXE header */
173  ut8 magic[2]; /* Magic number MAGIC */
174  ut8 border; /* The byte ordering for the .EXE */
175  ut8 worder; /* The word ordering for the .EXE */
176  ut32 level; /* The EXE format level for now = 0 */
177  ut16 cpu; /* The CPU type */
178  ut16 os; /* The OS type */
179  ut32 ver; /* Module version */
180  ut32 mflags; /* Module flags */
181  ut32 mpages; /* Module # pages */
182  ut32 startobj; /* Object # for instruction pointer */
183  ut32 eip; /* Extended instruction pointer */
184  ut32 stackobj; /* Object # for stack pointer */
185  ut32 esp; /* Extended stack pointer */
186  ut32 pagesize; /* .EXE page size */
187  ut32 pageshift; /* Page alignment shift in .EXE or Last Page Size (on LE only)*/
188  ut32 fixupsize; /* Fixup section size */
189  ut32 fixupsum; /* Fixup section checksum */
190  ut32 ldrsize; /* Loader section size */
191  ut32 ldrsum; /* Loader section checksum */
192  ut32 objtab; /* Object table offset */
193  ut32 objcnt; /* Number of objects in module */
194  ut32 objmap; /* Object page map offset */
195  ut32 itermap; /* Object iterated data map offset (File Relative) */
196  ut32 rsrctab; /* Offset of Resource Table */
197  ut32 rsrccnt; /* Number of resource entries */
198  ut32 restab; /* Offset of resident name table */
199  ut32 enttab; /* Offset of Entry Table */
200  ut32 dirtab; /* Offset of Module Directive Table */
201  ut32 dircnt; /* Number of module directives */
202  ut32 fpagetab; /* Offset of Fixup Page Table */
203  ut32 frectab; /* Offset of Fixup Record Table */
204  ut32 impmod; /* Offset of Import Module Name Table */
205  ut32 impmodcnt; /* Number of entries in Import Module Name Table */
206  ut32 impproc; /* Offset of Import Procedure Name Table */
207  ut32 pagesum; /* Offset of Per-Page Checksum Table */
208  ut32 datapage; /* Offset of Enumerated Data Pages (File Relative) */
209  ut32 preload; /* Number of preload pages */
210  ut32 nrestab; /* Offset of Non-resident Names Table (File Relative) */
211  ut32 cbnrestab; /* Size of Non-resident Name Table */
212  ut32 nressum; /* Non-resident Name Table Checksum */
213  ut32 autodata; /* Object # for automatic data object */
214  ut32 debuginfo; /* Offset of the debugging information */
215  ut32 debuglen; /* The length of the debugging info. in bytes */
216  ut32 instpreload; /* Number of instance pages in preload section of .EXE file */
217  ut32 instdemand; /* Number of instance pages in demand load section of EXE file */
218  ut32 heapsize; /* Size of heap - for 16-bit apps */
219  ut32 stacksize; /* Size of stack */
220 } LE_image_header;
221 #endif
ut16
uint16_t ut16
Definition: demangler_util.h:30
ut32
uint32_t ut32
Definition: demangler_util.h:31
offset
voidpf uLong offset
Definition: ioapi.h:144
LE_fixup_source_type
LE_fixup_source_type
Definition: le_specs.h:83
POINTER32
@ POINTER32
Definition: le_specs.h:87
BYTEFIXUP
@ BYTEFIXUP
Definition: le_specs.h:84
SELFOFFSET32
@ SELFOFFSET32
Definition: le_specs.h:92
SELECTOR16
@ SELECTOR16
Definition: le_specs.h:86
UNDEFINED1
@ UNDEFINED1
Definition: le_specs.h:85
POINTER48
@ POINTER48
Definition: le_specs.h:90
OFFSET32
@ OFFSET32
Definition: le_specs.h:91
UNDEFINED2
@ UNDEFINED2
Definition: le_specs.h:88
OFFSET16
@ OFFSET16
Definition: le_specs.h:89
LE_fixup_record_type
LE_fixup_record_type
Definition: le_specs.h:103
IMPORTORD
@ IMPORTORD
Definition: le_specs.h:105
INTERNALENTRY
@ INTERNALENTRY
Definition: le_specs.h:107
IMPORTNAME
@ IMPORTNAME
Definition: le_specs.h:106
INTERNAL
@ INTERNAL
Definition: le_specs.h:104
LE_entry_bundle_type
LE_entry_bundle_type
Definition: le_specs.h:8
CALLGATE
@ CALLGATE
Definition: le_specs.h:11
ENTRY32
@ ENTRY32
Definition: le_specs.h:12
FORWARDER
@ FORWARDER
Definition: le_specs.h:13
ENTRY16
@ ENTRY16
Definition: le_specs.h:10
UNUSED_ENTRY
@ UNUSED_ENTRY
Definition: le_specs.h:9
LE_fixup_record_header
struct LE_fixup_record_header_s LE_fixup_record_header
LE_entry_bundle_header
struct LE_entry_bundle_header_s LE_entry_bundle_header
LE_resource_type
LE_resource_type
Definition: le_specs.h:16
LE_RT_KEYTBL
@ LE_RT_KEYTBL
Definition: le_specs.h:29
LE_RT_RCDATA
@ LE_RT_RCDATA
Definition: le_specs.h:25
LE_RT_FKASHORT
@ LE_RT_FKASHORT
Definition: le_specs.h:32
LE_RT_FD
@ LE_RT_FD
Definition: le_specs.h:37
LE_RT_BITMAP
@ LE_RT_BITMAP
Definition: le_specs.h:18
LE_RT_VKEYTBL
@ LE_RT_VKEYTBL
Definition: le_specs.h:28
LE_RT_POINTER
@ LE_RT_POINTER
Definition: le_specs.h:17
LE_RT_FKALONG
@ LE_RT_FKALONG
Definition: le_specs.h:33
LE_RT_STRING
@ LE_RT_STRING
Definition: le_specs.h:21
LE_RT_FDDIR
@ LE_RT_FDDIR
Definition: le_specs.h:36
LE_RT_DISPLAYINFO
@ LE_RT_DISPLAYINFO
Definition: le_specs.h:31
LE_RT_CHARTBL
@ LE_RT_CHARTBL
Definition: le_specs.h:30
LE_RT_FONT
@ LE_RT_FONT
Definition: le_specs.h:23
LE_RT_MENU
@ LE_RT_MENU
Definition: le_specs.h:19
LE_RT_HELPSUBTABLE
@ LE_RT_HELPSUBTABLE
Definition: le_specs.h:35
LE_RT_DIALOG
@ LE_RT_DIALOG
Definition: le_specs.h:20
LE_RT_FONTDIR
@ LE_RT_FONTDIR
Definition: le_specs.h:22
LE_RT_DLGINCLUDE
@ LE_RT_DLGINCLUDE
Definition: le_specs.h:27
LE_RT_HELPTABLE
@ LE_RT_HELPTABLE
Definition: le_specs.h:34
LE_RT_MESSAGE
@ LE_RT_MESSAGE
Definition: le_specs.h:26
LE_RT_ACCELTABLE
@ LE_RT_ACCELTABLE
Definition: le_specs.h:24
LE_object_entry
struct LE_object_entry_s LE_object_entry
RZ_PACKED
RZ_PACKED(typedef union LE_entry_bundle_entry_u { RZ_PACKED(struct { ut8 flags;ut16 offset;}) entry_16;RZ_PACKED(struct { ut8 flags;ut16 offset;ut16 callgate_sel;}) callgate;RZ_PACKED(struct { ut8 flags;ut32 offset;}) entry_32;RZ_PACKED(struct { ut8 flags;ut16 import_ord;ut32 offset;}) forwarder;}) LE_entry_bundle_entry
LE_object_page_entry
struct LE_object_page_entry_s LE_object_page_entry
LE_image_header
struct LE_image_header_s LE_image_header
ut8
uint8_t ut8
Definition: lh5801.h:11
rz_types.h
flags
static struct sockaddr static addrlen static backlog const void static flags void flags
Definition: sfsocketcall.h:123
LE_entry_bundle_header_s
Definition: le_specs.h:44
LE_entry_bundle_header_s::objnum
ut16 objnum
Definition: le_specs.h:47
LE_entry_bundle_header_s::count
ut8 count
Definition: le_specs.h:45
LE_entry_bundle_header_s::type
ut8 type
Definition: le_specs.h:46
LE_fixup_record_header_s
Definition: le_specs.h:110
LE_fixup_record_header_s::source
ut8 source
Definition: le_specs.h:111
LE_fixup_record_header_s::target
ut8 target
Definition: le_specs.h:112
LE_image_header_s
Definition: le_specs.h:172
LE_image_header_s::objcnt
ut32 objcnt
Definition: le_specs.h:193
LE_image_header_s::instpreload
ut32 instpreload
Definition: le_specs.h:216
LE_image_header_s::ver
ut32 ver
Definition: le_specs.h:179
LE_image_header_s::magic
ut8 magic[2]
Definition: le_specs.h:173
LE_image_header_s::nressum
ut32 nressum
Definition: le_specs.h:212
LE_image_header_s::itermap
ut32 itermap
Definition: le_specs.h:195
LE_image_header_s::nrestab
ut32 nrestab
Definition: le_specs.h:210
LE_image_header_s::objmap
ut32 objmap
Definition: le_specs.h:194
LE_image_header_s::frectab
ut32 frectab
Definition: le_specs.h:203
LE_image_header_s::ldrsum
ut32 ldrsum
Definition: le_specs.h:191
LE_image_header_s::heapsize
ut32 heapsize
Definition: le_specs.h:218
LE_image_header_s::autodata
ut32 autodata
Definition: le_specs.h:213
LE_image_header_s::stackobj
ut32 stackobj
Definition: le_specs.h:184
LE_image_header_s::dirtab
ut32 dirtab
Definition: le_specs.h:200
LE_image_header_s::preload
ut32 preload
Definition: le_specs.h:209
LE_image_header_s::startobj
ut32 startobj
Definition: le_specs.h:182
LE_image_header_s::pagesize
ut32 pagesize
Definition: le_specs.h:186
LE_image_header_s::esp
ut32 esp
Definition: le_specs.h:185
LE_image_header_s::enttab
ut32 enttab
Definition: le_specs.h:199
LE_image_header_s::mpages
ut32 mpages
Definition: le_specs.h:181
LE_image_header_s::restab
ut32 restab
Definition: le_specs.h:198
LE_image_header_s::level
ut32 level
Definition: le_specs.h:176
LE_image_header_s::border
ut8 border
Definition: le_specs.h:174
LE_image_header_s::fpagetab
ut32 fpagetab
Definition: le_specs.h:202
LE_image_header_s::rsrccnt
ut32 rsrccnt
Definition: le_specs.h:197
LE_image_header_s::cpu
ut16 cpu
Definition: le_specs.h:177
LE_image_header_s::rsrctab
ut32 rsrctab
Definition: le_specs.h:196
LE_image_header_s::worder
ut8 worder
Definition: le_specs.h:175
LE_image_header_s::impmodcnt
ut32 impmodcnt
Definition: le_specs.h:205
LE_image_header_s::fixupsize
ut32 fixupsize
Definition: le_specs.h:188
LE_image_header_s::debuglen
ut32 debuglen
Definition: le_specs.h:215
LE_image_header_s::os
ut16 os
Definition: le_specs.h:178
LE_image_header_s::impproc
ut32 impproc
Definition: le_specs.h:206
LE_image_header_s::fixupsum
ut32 fixupsum
Definition: le_specs.h:189
LE_image_header_s::pagesum
ut32 pagesum
Definition: le_specs.h:207
LE_image_header_s::stacksize
ut32 stacksize
Definition: le_specs.h:219
LE_image_header_s::mflags
ut32 mflags
Definition: le_specs.h:180
LE_image_header_s::pageshift
ut32 pageshift
Definition: le_specs.h:187
LE_image_header_s::instdemand
ut32 instdemand
Definition: le_specs.h:217
LE_image_header_s::cbnrestab
ut32 cbnrestab
Definition: le_specs.h:211
LE_image_header_s::objtab
ut32 objtab
Definition: le_specs.h:192
LE_image_header_s::dircnt
ut32 dircnt
Definition: le_specs.h:201
LE_image_header_s::ldrsize
ut32 ldrsize
Definition: le_specs.h:190
LE_image_header_s::debuginfo
ut32 debuginfo
Definition: le_specs.h:214
LE_image_header_s::datapage
ut32 datapage
Definition: le_specs.h:208
LE_image_header_s::impmod
ut32 impmod
Definition: le_specs.h:204
LE_image_header_s::eip
ut32 eip
Definition: le_specs.h:183
LE_object_entry_s
Definition: le_specs.h:133
LE_object_entry_s::flags
ut32 flags
Definition: le_specs.h:136
LE_object_entry_s::page_tbl_entries
ut32 page_tbl_entries
Definition: le_specs.h:138
LE_object_entry_s::reloc_base_addr
ut32 reloc_base_addr
Definition: le_specs.h:135
LE_object_entry_s::page_tbl_idx
ut32 page_tbl_idx
Definition: le_specs.h:137
LE_object_entry_s::reserved
ut32 reserved
Definition: le_specs.h:139
LE_object_entry_s::virtual_size
ut32 virtual_size
Definition: le_specs.h:134
LE_object_page_entry_s
Definition: le_specs.h:149
LE_object_page_entry_s::flags
ut16 flags
Definition: le_specs.h:152
LE_object_page_entry_s::size
ut16 size
Definition: le_specs.h:151
LE_object_page_entry_s::offset
ut32 offset
Definition: le_specs.h:150