ShuriZma
/
dolphin
mirror of https://github.com/dolphin-emu/dolphin.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

DSP: Clean up GBA crypto HLE implementation

This commit is contained in:
Jack Andersen 2017-01-04 17:40:30 -10:00
parent 52ec186f0a
commit 3869eec53a
2 changed files with 89 additions and 62 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

99
Source/Core/Core/HW/DSPHLE/UCodes/GBA.cpp
View File

@ -3,6 +3,7 @@
// Refer to the license.txt file included. // Refer to the license.txt file included.
#include "Core/HW/DSPHLE/UCodes/GBA.h" #include "Core/HW/DSPHLE/UCodes/GBA.h"
#include "Common/Align.h"
#include "Common/CommonFuncs.h" #include "Common/CommonFuncs.h"
#include "Common/CommonTypes.h" #include "Common/CommonTypes.h"
#include "Common/Logging/Log.h" #include "Common/Logging/Log.h"
@ -15,75 +16,57 @@ namespace HLE
{ {
void ProcessGBACrypto(u32 address) void ProcessGBACrypto(u32 address)
{ {
struct sec_params_t // Nonce challenge (first read from GBA, hence already little-endian)
{ const u32 challenge = HLEMemory_Read_U32LE(address);
u16 key[2];
u16 unk1[2];
u16 unk2[2];
u32 length;
u32 dest_addr;
u32 pad[3];
} sec_params;
// 32 bytes from mram addr to DRAM @ 0 // Palette of pulsing logo on GBA during transmission [0,6]
for (int i = 0; i < 8; i++, address += 4) const u32 logo_palette = HLEMemory_Read_U32(address + 4);
((u32*)&sec_params)[i] = HLEMemory_Read_U32(address);
// This is the main decrypt routine // Speed and direction of palette interpolation [-4,4]
u16 x11 = 0, x12 = 0, x20 = 0, x21 = 0, x22 = 0, x23 = 0; const u32 logo_speed_32 = HLEMemory_Read_U32(address + 8);
x20 = Common::swap16(sec_params.key[0]) ^ 0x6f64; // Length of JoyBoot program to upload
x21 = Common::swap16(sec_params.key[1]) ^ 0x6573; const u32 length = HLEMemory_Read_U32(address + 12);
s16 unk2 = (s8)sec_params.unk2[0]; // Address to return results to game
if (unk2 < 0) const u32 dest_addr = HLEMemory_Read_U32(address + 16);
{
x11 = ((~unk2 + 3) << 1) | (sec_params.unk1[0] << 4);
}
else if (unk2 == 0)
{
x11 = (sec_params.unk1[0] << 1) | 0x70;
}
else // unk2 > 0
{
x11 = ((unk2 - 1) << 1) | (sec_params.unk1[0] << 4);
}
s32 rounded_sub = ((sec_params.length + 7) & ~7) - 0x200; // Unwrap key from challenge using 'sedo' magic number (to encrypt JoyBoot program)
u16 size = (rounded_sub < 0) ? 0 : rounded_sub >> 3; const u32 key = challenge ^ 0x6f646573;
HLEMemory_Write_U32(dest_addr, key);
u32 t = (((size << 16) | 0x3f80) & 0x3f80ffff) << 1; // Pack palette parameters
s16 t_low = (s8)(t >> 8); u16 palette_speed_coded;
t += (t_low & size) << 16; const s16 logo_speed = static_cast<s8>(logo_speed_32);
x12 = t >> 16; if (logo_speed < 0)
x11 |= palette_speed_coded = ((-logo_speed + 2) * 2) | (logo_palette << 4);
(size & 0x4000) >> 14; // this would be stored in ac0.h if we weren't constrained to 32bit :) else if (logo_speed == 0)
t = ((x11 & 0xff) << 16) + ((x12 & 0xff) << 16) + (x12 << 8); palette_speed_coded = (logo_palette * 2) | 0x70;
else // logo_speed > 0
palette_speed_coded = ((logo_speed - 1) * 2) | (logo_palette << 4);
u16 final11 = 0, final12 = 0; // JoyBoot ROMs start with a padded header; this is the length beyond that header
final11 = x11 | ((t >> 8) & 0xff00) | 0x8080; const s32 length_no_header = Common::AlignUp(length, 8) - 0x200;
final12 = x12 | 0x8080;
if ((final12 & 0x200) != 0) // The JoyBus protocol transmits in 4-byte packets while flipping a state flag;
{ // so the GBA BIOS counts the program length in 8-byte packet-pairs
x22 = final11 ^ 0x6f64; const u16 packet_pair_count = (length_no_header < 0) ? 0 : length_no_header / 8;
x23 = final12 ^ 0x6573; palette_speed_coded |= (packet_pair_count & 0x4000) >> 14;
}
else
{
x22 = final11 ^ 0x6177;
x23 = final12 ^ 0x614b;
}
// Send the result back to mram // Pack together encoded transmission parameters
*(u32*)HLEMemory_Get_Pointer(sec_params.dest_addr) = Common::swap32((x20 << 16) | x21); u32 t1 = (((packet_pair_count << 16) | 0x3f80) & 0x3f80ffff) * 2;
*(u32*)HLEMemory_Get_Pointer(sec_params.dest_addr + 4) = Common::swap32((x22 << 16) | x23); t1 += (static_cast<s16>(static_cast<s8>(t1 >> 8)) & packet_pair_count) << 16;
const u32 t2 = ((palette_speed_coded & 0xff) << 16) + (t1 & 0xff0000) + ((t1 >> 8) & 0xffff00);
u32 t3 = palette_speed_coded << 16 | ((t2 << 8) & 0xff000000) | (t1 >> 16) | 0x80808080;
// Wrap with 'Kawa' or 'sedo' (Kawasedo is the author of the BIOS cipher)
t3 ^= ((t3 & 0x200) != 0 ? 0x6f646573 : 0x6177614b);
HLEMemory_Write_U32(dest_addr + 4, t3);
// Done! // Done!
DEBUG_LOG(DSPHLE, "\n%08x -> key: %08x, len: %08x, dest_addr: %08x, unk1: %08x, unk2: %08x" DEBUG_LOG(DSPHLE, "\n%08x -> challenge: %08x, len: %08x, dest_addr: %08x, "
" 22: %04x, 23: %04x", "palette: %08x, speed: %08x key: %08x, auth_code: %08x",
address, *(u32*)sec_params.key, sec_params.length, sec_params.dest_addr, address, challenge, length, dest_addr, logo_palette, logo_speed_32, key, t3);
*(u32*)sec_params.unk1, *(u32*)sec_params.unk2, x22, x23);
} }
GBAUCode::GBAUCode(DSPHLE* dsphle, u32 crc) : UCodeInterface(dsphle, crc) GBAUCode::GBAUCode(DSPHLE* dsphle, u32 crc) : UCodeInterface(dsphle, crc)

52
Source/Core/Core/HW/DSPHLE/UCodes/UCodes.h
View File

@ -35,7 +35,15 @@ inline u8 HLEMemory_Read_U8(u32 address)
return Memory::m_pRAM[address & Memory::RAM_MASK]; return Memory::m_pRAM[address & Memory::RAM_MASK];
} }
inline u16 HLEMemory_Read_U16(u32 address) inline void HLEMemory_Write_U8(u32 address, u8 value)
{
if (ExramRead(address))
Memory::m_pEXRAM[address & Memory::EXRAM_MASK] = value;
else
Memory::m_pRAM[address & Memory::RAM_MASK] = value;
}
inline u16 HLEMemory_Read_U16LE(u32 address)
{ {
u16 value; u16 value;
@ -44,10 +52,28 @@ inline u16 HLEMemory_Read_U16(u32 address)
else else
std::memcpy(&value, &Memory::m_pRAM[address & Memory::RAM_MASK], sizeof(u16)); std::memcpy(&value, &Memory::m_pRAM[address & Memory::RAM_MASK], sizeof(u16));
return Common::swap16(value); return value;
} }
inline u32 HLEMemory_Read_U32(u32 address) inline u16 HLEMemory_Read_U16(u32 address)
{
return Common::swap16(HLEMemory_Read_U16LE(address));
}
inline void HLEMemory_Write_U16LE(u32 address, u16 value)
{
if (ExramRead(address))
std::memcpy(&Memory::m_pEXRAM[address & Memory::EXRAM_MASK], &value, sizeof(u16));
else
std::memcpy(&Memory::m_pRAM[address & Memory::RAM_MASK], &value, sizeof(u16));
}
inline void HLEMemory_Write_U16(u32 address, u16 value)
{
HLEMemory_Write_U16LE(address, Common::swap16(value));
}
inline u32 HLEMemory_Read_U32LE(u32 address)
{ {
u32 value; u32 value;
@ -56,7 +82,25 @@ inline u32 HLEMemory_Read_U32(u32 address)
else else
std::memcpy(&value, &Memory::m_pRAM[address & Memory::RAM_MASK], sizeof(u32)); std::memcpy(&value, &Memory::m_pRAM[address & Memory::RAM_MASK], sizeof(u32));
return Common::swap32(value); return value;
}
inline u32 HLEMemory_Read_U32(u32 address)
{
return Common::swap32(HLEMemory_Read_U32LE(address));
}
inline void HLEMemory_Write_U32LE(u32 address, u32 value)
{
if (ExramRead(address))
std::memcpy(&Memory::m_pEXRAM[address & Memory::EXRAM_MASK], &value, sizeof(u32));
else
std::memcpy(&Memory::m_pRAM[address & Memory::RAM_MASK], &value, sizeof(u32));
}
inline void HLEMemory_Write_U32(u32 address, u32 value)
{
HLEMemory_Write_U32LE(address, Common::swap32(value));
} }
inline void* HLEMemory_Get_Pointer(u32 address) inline void* HLEMemory_Get_Pointer(u32 address)