A collection of GCC utilities, specifically aimed for the reverse engineering tool IDA Pro
Includes a symbols parser for GCC .map and .symbols file which mangles names back for a proper display of function arguments in the functions list aswell as applying this data to the function prototype for proper decompiler output
Simply open up your IDB, go to File->Script file, and run gcc_sym_parse.py
Import shared_lib into your IDA Python script (if you want to use this outside of IDA's scope, remove/comment out all references to IDA in the previously mentioned file)
Call mangle_name() and pass a function prototype (without return type) as argument
Output will be a tuple, first element containing the mangled name and second element containing the extracted arguments
from shared_lib import *
print(mangle_name("sce::Gnm::printErrorMessage(char const*, unsigned int, char const*, char const*, ...)"))
# output: ('_ZN3sce3Gnm17printErrorMessageEPKcjPKcPKcN3...E', 'char const*, unsigned int, char const*, char const*, ...')- Apply guessed type info, sets the function prototype in IDA to the extracted arguments from the symbols file
- Verbose output
- Support for small formatting changes in .map files
- Support for .symbols files if they exist
- C style variadic arguments aren't properly mangled, they're currently output as a namespace, it will show correctly in IDA but won't work as intended when applying type info
- Templates are not taken into account
- Destructor type is assumed to be a complete destructor
- No support for a lot of stuff described in the Itanium C++ ABI's mangling section
- @gchatelet for their amazing documentation of GCC name mangling!