Cheat Engine Forum Index Cheat Engine
The Official Site of Cheat Engine
 
 FAQFAQ   SearchSearch   MemberlistMemberlist   UsergroupsUsergroups   RegisterRegister 
 ProfileProfile   Log in to check your private messagesLog in to check your private messages   Log inLog in 


CE 6.5 bugs
Goto page Previous  1, 2, 3, 4, 5, 6, 7, 8, 9, 10  Next
 
Post new topic   Reply to topic    Cheat Engine Forum Index -> Cheat Engine
View previous topic :: View next topic  
Author Message
hhhuut
Grandmaster Cheater
Reputation: 6

Joined: 08 Feb 2015
Posts: 607

PostPosted: Thu Feb 11, 2016 3:04 am    Post subject: Reply with quote

Not really a bug but I already noticed that behaviour in earlier CE versions:

There are three types of jumps. The short-, near- and far-jumps, right? But CE only seems to know two of them.

So if I have an AA-Script where I put the following instruction, it's just fine (of course only when the target label is within the 1Byte jump range)
Code:
jmp short myLabel


But if I now want to tell CE to perform a near jump with
Code:
jmp near myLabel

it says that the instruction can't be compiled. Instead I have to write
Code:
jmp far myLabel

to get an assembleable jump instruction.

I mean of course I can also just write
Code:
jmp myLabel

and let CE decide what kind of jump to use, but I noticed that behaviour once and wanted to let you know.
Back to top
View user's profile Send private message
Dark Byte
Site Admin
Reputation: 457

Joined: 09 May 2003
Posts: 25262
Location: The netherlands

PostPosted: Thu Feb 11, 2016 3:20 am    Post subject: Reply with quote

how would you encode a near jmp ?

as far as I'm aware the 16-bit jump will zero out the upper bits of the EIP register

_________________
Do not ask me about online cheats. I don't know any and wont help finding them.

Like my help? Join me on Patreon so i can keep helping
Back to top
View user's profile Send private message MSN Messenger
hhhuut
Grandmaster Cheater
Reputation: 6

Joined: 08 Feb 2015
Posts: 607

PostPosted: Thu Feb 11, 2016 3:46 am    Post subject: Reply with quote

Dark Byte wrote:
as far as I'm aware the 16-bit jump will zero out the upper bits of the EIP register

Hm, I haven't thought of that ...
Back to top
View user's profile Send private message
Csimbi
I post too much
Reputation: 92

Joined: 14 Jul 2007
Posts: 3102

PostPosted: Fri Feb 12, 2016 10:05 am    Post subject: Reply with quote

Dark Byte wrote:
probably 6.5.1 yes, would be fitting with the 5.6.1 which was a long time favourite

Any chance for a new build for the weekend? Wink
Back to top
View user's profile Send private message
mgr.inz.Player
I post too much
Reputation: 218

Joined: 07 Nov 2008
Posts: 4438
Location: W kraju nad Wisla. UTC+01:00

PostPosted: Fri Feb 12, 2016 10:43 am    Post subject: Reply with quote

I have found other bug related to Win10. DB already know about this.
_________________
Back to top
View user's profile Send private message MSN Messenger
sh00ter999
Advanced Cheater
Reputation: 1

Joined: 17 May 2008
Posts: 89

PostPosted: Fri Feb 12, 2016 11:11 am    Post subject: Low priority Reply with quote

Typo in Auto Assembly Warning message


_________________
Hyes!
Back to top
View user's profile Send private message
mgostIH
Expert Cheater
Reputation: 3

Joined: 01 Jan 2016
Posts: 159

PostPosted: Sat Feb 13, 2016 3:05 pm    Post subject: Reply with quote

I found a little bug for the assembly scanner.

I hardcoded an asm function in a C++ program I needed and tried to search for it on the assembly scanner.
Code:
mov eax,fs:[00000030]



Searching for "mov eax,fs:[30]" wouldn't bring any result, but searching for "mov eax,fs:[00000030]" would list the addresses as fine.

_________________
Do you need to ask me something? Feel free to join my discord server at: https://discord.gg/At4VZXA or ask me something in my YouTube channel: https://www.youtube.com/c/mgostIH
Back to top
View user's profile Send private message
Dark Byte
Site Admin
Reputation: 457

Joined: 09 May 2003
Posts: 25262
Location: The netherlands

PostPosted: Sat Feb 13, 2016 4:01 pm    Post subject: Reply with quote

Try mov eax,fs:[*30]
_________________
Do not ask me about online cheats. I don't know any and wont help finding them.

Like my help? Join me on Patreon so i can keep helping
Back to top
View user's profile Send private message MSN Messenger
panraven
Grandmaster Cheater
Reputation: 54

Joined: 01 Oct 2008
Posts: 941

PostPosted: Sat Feb 13, 2016 4:02 pm    Post subject: Reply with quote

mgostIH wrote:
I found a little bug for the assembly scanner.

I hardcoded an asm function in a C++ program I needed and tried to search for it on the assembly scanner.
Code:
mov eax,fs:[00000030]



Searching for "mov eax,fs:[30]" wouldn't bring any result, but searching for "mov eax,fs:[00000030]" would list the addresses as fine.


I guess it is suppose to use file/directory command prompt like wildcard:
Code:
 d [rax+*03ebf
(1 space after d)
can match
add [rax+0003EBFB],dh
but not
add  [rax+0003EBFB],dh
(2 space after add))

spaces in between should be 1, but not more.
(oops,WRONG)Leading and trailing space count as wildcard.(WRONG)

_________________
- Retarded.
Back to top
View user's profile Send private message
mgostIH
Expert Cheater
Reputation: 3

Joined: 01 Jan 2016
Posts: 159

PostPosted: Sat Feb 13, 2016 4:37 pm    Post subject: Reply with quote

Dark Byte wrote:
Try mov eax,fs:[*30]


Yep, works fine.

_________________
Do you need to ask me something? Feel free to join my discord server at: https://discord.gg/At4VZXA or ask me something in my YouTube channel: https://www.youtube.com/c/mgostIH
Back to top
View user's profile Send private message
mgr.inz.Player
I post too much
Reputation: 218

Joined: 07 Nov 2008
Posts: 4438
Location: W kraju nad Wisla. UTC+01:00

PostPosted: Tue Feb 16, 2016 5:25 am    Post subject: Reply with quote

Groupscan + out of order + must be type-aligned.

Example, I have this structure in memory (address of that structure is 4 bytes aligned):

dword: 0xdeadbeef
dword: 0 (can be anything)
qword: 0xc0dec0debeefcece

It's size is 16 bytes.

This groupscan command doesn't find it:
BS:16 OOO:A 4:0xdeadbeef 8:0xc0dec0debeefcece

The same with BS:20 and BS:24


But this groupscan command has higher chances to find it (not always):
BS:32 OOO:A 4:0xdeadbeef 8:0xc0dec0debeefcece


Even higher chances has this one:
BS:128 OOO:A 4:0xdeadbeef 8:0xc0dec0debeefcece

Still, not always...

For now, I have to use BS:256 to be 99.99% sure CE doesn't miss something.

_________________
Back to top
View user's profile Send private message MSN Messenger
hhhuut
Grandmaster Cheater
Reputation: 6

Joined: 08 Feb 2015
Posts: 607

PostPosted: Tue Feb 16, 2016 5:33 am    Post subject: Reply with quote

Does it find something like

4:0xdeadbeef w:1 8:0xc0dec0debeefcece
Back to top
View user's profile Send private message
Dark Byte
Site Admin
Reputation: 457

Joined: 09 May 2003
Posts: 25262
Location: The netherlands

PostPosted: Tue Feb 16, 2016 5:35 am    Post subject: Reply with quote

try OOO:U
might be an alignment check issue

_________________
Do not ask me about online cheats. I don't know any and wont help finding them.

Like my help? Join me on Patreon so i can keep helping
Back to top
View user's profile Send private message MSN Messenger
mgr.inz.Player
I post too much
Reputation: 218

Joined: 07 Nov 2008
Posts: 4438
Location: W kraju nad Wisla. UTC+01:00

PostPosted: Tue Feb 16, 2016 6:02 am    Post subject: Reply with quote

@hhhuut, wildcards aren't allowed for OOO.

@DB, it is alignment check issue.

Steps to reproduce:

1) Execute this in tutorial process.
Code:
[ENABLE]
alloc(newmem,4096)

newmem+D18:
dd deadbeef
dd 0
dq c0dec0debeefcece

[DISABLE]
dealloc(newmem)




2) Try those:

BS:16 OOO:A 4:0xdeadbeef 8:0xc0dec0debeefcece - doesn't work
BS:20 OOO:A 4:0xdeadbeef 8:0xc0dec0debeefcece - -//-
BS:24 OOO:A 4:0xdeadbeef 8:0xc0dec0debeefcece - -//-
BS:28 OOO:A 4:0xdeadbeef 8:0xc0dec0debeefcece - -//-
BS:32 OOO:A 4:0xdeadbeef 8:0xc0dec0debeefcece - -//-
BS:36 OOO:A 4:0xdeadbeef 8:0xc0dec0debeefcece WORKS
BS:40 OOO:A 4:0xdeadbeef 8:0xc0dec0debeefcece - doesn't work
BS:44 OOO:A 4:0xdeadbeef 8:0xc0dec0debeefcece WORKS
BS:48 OOO:A 4:0xdeadbeef 8:0xc0dec0debeefcece - doesn't work
BS:52 OOO:A 4:0xdeadbeef 8:0xc0dec0debeefcece WORKS
BS:56 OOO:A 4:0xdeadbeef 8:0xc0dec0debeefcece - doesn't work
BS:60 OOO:A 4:0xdeadbeef 8:0xc0dec0debeefcece - doesn't work
BS:64 OOO:A 4:0xdeadbeef 8:0xc0dec0debeefcece WORKS

BS:128 OOO:A 4:0xdeadbeef 8:0xc0dec0debeefcece WORKS

BS:256 OOO:A 4:0xdeadbeef 8:0xc0dec0debeefcece WORKS
BS:260 OOO:A 4:0xdeadbeef 8:0xc0dec0debeefcece WORKS
BS:264 OOO:A 4:0xdeadbeef 8:0xc0dec0debeefcece WORKS
BS:268 OOO:A 4:0xdeadbeef 8:0xc0dec0debeefcece WORKS
BS:272 OOO:A 4:0xdeadbeef 8:0xc0dec0debeefcece WORKS
BS:276 OOO:A 4:0xdeadbeef 8:0xc0dec0debeefcece WORKS
BS:280 OOO:A 4:0xdeadbeef 8:0xc0dec0debeefcece - doesn't work

_________________
Back to top
View user's profile Send private message MSN Messenger
Csimbi
I post too much
Reputation: 92

Joined: 14 Jul 2007
Posts: 3102

PostPosted: Tue Feb 16, 2016 8:37 am    Post subject: Reply with quote

Hmmm. I've been trying to find grouped values that should have been there.
Now I know why I never found anything.
Thanks for the find and the fix!
Back to top
View user's profile Send private message
Display posts from previous:   
Post new topic   Reply to topic    Cheat Engine Forum Index -> Cheat Engine All times are GMT - 6 Hours
Goto page Previous  1, 2, 3, 4, 5, 6, 7, 8, 9, 10  Next
Page 8 of 10

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You can download files in this forum


Powered by phpBB © 2001, 2005 phpBB Group

CE Wiki   IRC (#CEF)   Twitter
Third party websites