First, the advertisement. I will make a longer presentation at Droidcon London 2009 about Dalvik bytecode in general, using Dedexer examples. This will be a longer version of my previous, short presentation (also in podcast). If central London is convenient for you, please, come. Otherwise I will share the presentation after the event.
To celebrate the event, I finished the symbolic ODEX disassembly feature in Dedexer (look for version 1.8). This means that instead of ugly offsets, Dedexer now correctly decompiles the method and field names for execute-inline, iget/iput-quick and nvoke-virtual-quick instruction families if the dependency files are available. So instead of this:
.line 3041
         invoke-virtual-quick    {v5},vtable #0x2c
         move-result-object      v2
 .line 3042
         iget-object-quick       v3,v5,[obj+0x28]
         invoke-virtual-quick    {v3},vtable #0xe
         move-result-object      v0
 .line 3043
         execute-inline  {v2},inline #0x4
         move-result     v1
You will get this:
.line 3041
         invoke-virtual-quick    {v5},android/app/Activity/android/app/Activity/getPackageName   ; getPackageName()Ljava/lang/String; , vtable #0x2c
         move-result-object      v2
 .line 3042
         iget-object-quick       v3,v5,mComponent Landroid/content/ComponentName; ;[obj+0x28]
         invoke-virtual-quick    {v3},android/content/ComponentName/android/content/ComponentName/getClassName   ; getClassName()Ljava/lang/String; , vtable #0xe
         move-result-object      v0
 .line 3043
         execute-inline  {v2},Ljava/lang/String/length   ; length()I , inline #0x4
         move-result     v1
Much better, isn't it? See you at Droidcon and I will explain how to interpret the code fragment above.


 1:46 PM
1:46 PM
 sempax
sempax
 
 Posted in:
 Posted in:   
0 comments:
Post a Comment