[Wildstar] 1.0.8.6697 x86 Info Dump Thread

[temp321]

Binaries

Download 6697.zip from Sendspace.com - send big files the easy way

Code:

Manager 0x86bec8

class Manager
{
public:
char _0x0000[4];
	__int32 Lock; //0x0004 
	float SecondsSinceLoadScreen; //0x0008 
	__int32 TenthsOfSecondSinceChoosingCharacter; //0x000C 
char _0x0010[44];
	Unit* LocalPlayer; //0x003C 
};

class Unit
{
public:
char _0x0000[4];
	__int32 GUID; //0x0004 
	UTF16* Name; //0x0008 
char _0x000C[28];
	__int32 Level; //0x0028 
char _0x002C[4];
	__int32 Health; //0x0030 
char _0x0034[4];
	__int32 Shield; //0x0038 
char _0x003C[24];
	Unit* NextUnit; //0x0054 
	__int32 Type; //0x0058 
};

Can someone explain how to locate the first Unit?

[karnkore]

Maybe try pointer scans with cheat engine?

[temp321]

Maybe try pointer scans with cheat engine?

I don't see how that will help. I know the Unit for the player is at Manager + 3C, but it is the last Unit in the linked list.

The first Unit in the linked list changes all the time because it is a singly linked list and the only way to add to a singly linked list is to add it at the beginning.

I tried reversing GetUnitById but it doesn't seem to touch the linked list at all.

[Master674]

I don't see how that will help. I know the Unit for the player is at Manager + 3C, but it is the last Unit in the linked list.

The first Unit in the linked list changes all the time because it is a singly linked list and the only way to add to a singly linked list is to add it at the beginning.

I tried reversing GetUnitById but it doesn't seem to touch the linked list at all.

GetUnitById basically takes the ID and does modulo 4091 or something like that.
Then uses that as an index in a unit array and compares if the IDs match. If they don't it checks the next place in the array. That way you can almost gurantee O(1).

Code:

uint32 currIndex = unitId;
CUnit *currUnit = nullptr;

do {
    currUnit = sGameMgr->m_unitArray[currIndex++ % 4091];
    if (!currUnit)
        return nullptr; // unit not present
} while (currUnit->unitId != unitId);

Something like that.

[temp321]

GetUnitById basically takes the ID and does modulo 4091 or something like that.
Then uses that as an index in a unit array and compares if the IDs match. If they don't it checks the next place in the array. That way you can almost gurantee O(1).

Code:

uint32 currIndex = unitId;
CUnit *currUnit = nullptr;

do {
    currUnit = sGameMgr->m_unitArray[currIndex++ % 4091];
    if (!currUnit)
        return nullptr; // unit not present
} while (currUnit->unitId != unitId);

Something like that.

Ya I already reversed almost all of it. I think it is actually a hash table with linked lists at each bucket. I guess I could use this, but it would be much more efficient to find the start of the linked list.

Code:

signed int __cdecl GameLib_GetUnitById(int luastate)
{
  int *UnitPointer; // eax@1
  signed int result; // eax@3
  int one; // [sp+8h] [bp-4h]@1

  one = luaL_CheckNumber(luastate, 1);
  UnitPointer = (int *)FindHash(manager + 23892, (int)&one);
  if ( UnitPointer && *UnitPointer )
  {
    result = Apollo::GetUnit(luastate, *UnitPointer);
  }
  else
  {
    result = 1;
    *(_DWORD *)(*(_DWORD *)(luastate + 8) + 8) = 0;
    *(_DWORD *)(luastate + 8) += 16;
  }
  return result;
}

Code:

struct HashTable
{
    int unknown1;                               // +0 is not a vtable pointer
    int bucketSize;                             // +4
    HashEntry* slots;                           // +8
    int Hasher?(int slot);                    // +12
    bool PointsToSameValue(void* a, void* b); // +16
}

struct HashEntry
{
    int unknown1;     // +0
    HashEntry* next;  // +4
    int id?;          // +8
    void* value;      // +12
}

Code:

int __thiscall FindHash(int hashtable, int id)
{
  int hashtable2; // ebx@1
  unsigned int hashed_index; // edi@1
  int entry; // esi@1
  int result; // eax@5

  hashtable2 = hashtable;
  hashed_index = (*(int (__cdecl **)(int))(hashtable + 12))(id);
  entry = *(_DWORD *)(*(_DWORD *)(hashtable2 + 8) + 4 * hashed_index % *(_DWORD *)(hashtable2 + 4));
  if ( entry )
  {
    while ( hashed_index != *(_DWORD *)entry || !(*(int (__cdecl **)(int, int))(hashtable2 + 16))(id, entry + 8) )// compare arg1 and arg2 dereferenced
    {
      entry = *(_DWORD *)(entry + 4);
      if ( !entry )
        goto LABEL_5;
    }
    result = entry + 12;
  }
  else
  {
LABEL_5:
    result = 0;
  }
  return result;
}

[Apoc]

Code:

#pragma pack(push, 1)
struct SimpleHashTable
{
  _DWORD dword0;
  _DWORD Size;
  HashEntry **Slots;
  int (__cdecl *GetKeyFunc)(int);
  int (__cdecl *EqualityComparator)(int, int *);
};
#pragma pack(pop)

Code:

#pragma pack(push, 1)
struct __declspec(align(2)) HashEntry
{
  DWORD Key;
  HashEntry *Next;
  int ID;
  void *Value;
};
#pragma pack(pop)

Code:

void **__thiscall SimpleHashTable::Find(SimpleHashTable *this, int a2)
{
  unsigned int v3; // edi@1
  HashEntry *v4; // esi@1
  void **result; // eax@5


  v3 = this->GetKeyFunc(a2);
  v4 = this->Slots[v3 % this->Size];
  if ( v4 )
  {
    while ( v3 != v4->Key || !this->EqualityComparator(a2, &v4->ID) )
    {
      v4 = v4->Next;
      if ( !v4 )
        goto END_OF_LIST;
    }
    result = &v4->Value;
  }
  else
  {
END_OF_LIST:
    result = 0;
  }
  return result;
}

[Apoc]

And for kickers...

Code:

signed int __cdecl Script::GameLib::GetUnitById(lua_State *a1)
{
  void **ppUnit; // eax@1
  signed int nArgsOnStack; // eax@3
  int inputArg; // [sp+8h] [bp-4h]@1


  inputArg = luaL_checknumber(a1, 1);
  ppUnit = SimpleHashTable::Find(&g_GameManager->Actors, &inputArg);
  if ( ppUnit && *ppUnit )
  {
    nArgsOnStack = Apollo::CreateUnitMetaTable(a1, (int)*ppUnit);
  }
  else
  {
    nArgsOnStack = 1;
    a1->top->tt = 0;
    ++a1->top;
  }
  return nArgsOnStack;
}

[cute_star]

i downloaded the 6697 version ,but i can't find Manager at 0x86bec8.
that is code section , not data section.
What is that ?

[Midi12]

i downloaded the 6697 version ,but i can't find Manager at 0x86bec8.
that is code section , not data section.
What is that ?

You need to rebase your program to 0x00001000

[cute_star]

Thanks for your advice ,and then how to get all units ? thanks again

[cute_star]

how can i get the postion of all units ?