1a892d4641
Replace stub_return_zero with a canary-faithful implementation that returns bit `priv` of the loaded XEX's XEX_HEADER_SYSTEM_FLAGS (key 0x00030000) bitmap. Mirrors xenia-canary xboxkrnl_modules.cc:22-39: `(flags >> priv) & 1` for priv < 32, else 0. Plumbing: - xenia-xex: header_keys::SYSTEM_FLAGS const + get_system_flags() accessor. - xenia-kernel/state.rs: pub xex_system_flags: u32 + xex_priv_logged HashSet for one-shot per-priv tracing. - xenia-app: kernel.xex_system_flags wired in cmd_exec_inner. - xenia-kernel/exports.rs: real export body + unit test covering bits 10/11/0/64 + zero-flags case. Sylpheed's bitmap is 0x00000400 (only XEX_SYSTEM_PAL50_INCOMPATIBLE, bit 10). At -n 500M with the fix: - XGetAVPack: 0 -> 1 (priv-10 gate at lr=0x824ab598 flipped). - 10 other canary-only exports + 9 producer PCs + 3 parked handles unchanged. Priv-11 site at sub_824A9710 is downstream and still not reached — AV/crypto block aborts after XGetAVPack returns our placeholder 0x16 (canary returns 8/HDMI; Sylpheed accepts only 3/4/6/8 per xenia-canary xam_info.cc:250-251). Tests 588 -> 589. Lockstep deterministic (3 reruns identical): n50m goes 50000008 -> 50000005 instr / 407415 -> 407417 imp / swaps=2 / draws=0. Goldens re-baselined (sylpheed_n50m, sylpheed_n2m); oracle test green. Full chain-of-effects + next-frontier hand-off in audit-findings.md under KRNBUG-XEX-001. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
130 lines
3.8 KiB
Rust
130 lines
3.8 KiB
Rust
use serde::Serialize;
|
|
|
|
/// XEX2 file header. Parsed from the beginning of an Xbox 360 executable.
|
|
#[derive(Debug, Serialize)]
|
|
pub struct Xex2Header {
|
|
pub magic: u32,
|
|
pub module_flags: u32,
|
|
pub header_size: u32,
|
|
pub security_offset: u32,
|
|
pub header_count: u32,
|
|
pub optional_headers: Vec<Xex2OptionalHeader>,
|
|
pub security_info: Option<Xex2SecurityInfo>,
|
|
/// Parsed file format info (if present).
|
|
pub file_format_info: Option<FileFormatInfo>,
|
|
/// Parsed import libraries (addresses only until resolve_imports is called).
|
|
pub import_libraries: Vec<ImportLibrary>,
|
|
/// Execution info (title ID, media ID, etc.).
|
|
pub execution_info: Option<ExecutionInfo>,
|
|
/// Original PE name from the XEX header.
|
|
pub original_pe_name: Option<String>,
|
|
}
|
|
|
|
#[derive(Debug, Serialize)]
|
|
pub struct Xex2OptionalHeader {
|
|
pub key: u32,
|
|
pub value: u32,
|
|
}
|
|
|
|
#[derive(Debug, Serialize)]
|
|
pub struct Xex2SecurityInfo {
|
|
pub image_size: u32,
|
|
pub load_address: u32,
|
|
pub export_table_address: u32,
|
|
pub image_flags: u32,
|
|
/// Encrypted session key (decrypted with retail/devkit key to get actual session key).
|
|
pub aes_key: [u8; 16],
|
|
pub page_descriptors: Vec<Xex2PageDescriptor>,
|
|
}
|
|
|
|
#[derive(Debug, Clone, Copy, Serialize)]
|
|
pub struct Xex2PageDescriptor {
|
|
pub size_and_info: u32,
|
|
}
|
|
|
|
impl Xex2PageDescriptor {
|
|
pub fn page_count(&self) -> u32 {
|
|
self.size_and_info >> 4
|
|
}
|
|
|
|
pub fn info(&self) -> u32 {
|
|
self.size_and_info & 0xF
|
|
}
|
|
}
|
|
|
|
/// File format info (compression and encryption types).
|
|
#[derive(Debug, Clone, Serialize)]
|
|
pub struct FileFormatInfo {
|
|
pub info_size: u32,
|
|
pub encryption_type: u16,
|
|
pub compression_type: u16,
|
|
/// For basic compression: list of (data_size, zero_size) block pairs.
|
|
pub basic_blocks: Vec<BasicCompressionBlock>,
|
|
/// For normal (LZX) compression: window size.
|
|
pub normal_window_size: u32,
|
|
/// For normal (LZX) compression: first block size (from header).
|
|
pub normal_first_block_size: u32,
|
|
/// For normal (LZX) compression: first block hash (from header).
|
|
pub normal_first_block_hash: [u8; 20],
|
|
}
|
|
|
|
#[derive(Debug, Clone, Copy, Serialize)]
|
|
pub struct BasicCompressionBlock {
|
|
pub data_size: u32,
|
|
pub zero_size: u32,
|
|
}
|
|
|
|
/// An imported library with its resolved imports.
|
|
#[derive(Debug, Clone, Serialize)]
|
|
pub struct ImportLibrary {
|
|
pub name: String,
|
|
pub id: u32,
|
|
pub version_min: u32,
|
|
pub version_cur: u32,
|
|
/// Import entries. Before `resolve_imports`, these contain addresses but no ordinals.
|
|
/// After `resolve_imports`, ordinals and record types are filled in from the PE image.
|
|
pub imports: Vec<ImportEntry>,
|
|
}
|
|
|
|
/// A single import entry within an import library.
|
|
#[derive(Debug, Clone, Serialize)]
|
|
pub struct ImportEntry {
|
|
pub ordinal: u16,
|
|
pub record_type: u8, // 0 = variable, 1 = thunk
|
|
pub address: u32,
|
|
}
|
|
|
|
/// Execution info parsed from the XEX header.
|
|
#[derive(Debug, Clone, Serialize)]
|
|
pub struct ExecutionInfo {
|
|
pub media_id: u32,
|
|
pub title_id: u32,
|
|
pub disc_number: u8,
|
|
pub disc_count: u8,
|
|
}
|
|
|
|
/// XEX2 magic: "XEX2"
|
|
pub const XEX2_MAGIC: u32 = 0x58455832;
|
|
|
|
/// Compression types
|
|
pub const COMPRESSION_NONE: u16 = 0;
|
|
pub const COMPRESSION_BASIC: u16 = 1;
|
|
pub const COMPRESSION_NORMAL: u16 = 2;
|
|
|
|
/// Encryption types
|
|
pub const ENCRYPTION_NONE: u16 = 0;
|
|
pub const ENCRYPTION_NORMAL: u16 = 1;
|
|
|
|
/// Optional header keys
|
|
pub mod header_keys {
|
|
pub const ENTRY_POINT: u32 = 0x00010100;
|
|
pub const IMAGE_BASE_ADDRESS: u32 = 0x00010201;
|
|
pub const IMPORT_LIBRARIES: u32 = 0x000103FF;
|
|
pub const TLS_INFO: u32 = 0x00020200;
|
|
pub const EXECUTION_INFO: u32 = 0x00040006;
|
|
pub const DEFAULT_STACK_SIZE: u32 = 0x00020104;
|
|
pub const ORIGINAL_PE_NAME: u32 = 0x000183FF;
|
|
pub const FILE_FORMAT_INFO: u32 = 0x000003FF;
|
|
pub const SYSTEM_FLAGS: u32 = 0x00030000;
|
|
}
|