armageddon
|
|
« Reply #15 on: November 03, 2019, 07:15:38 AM »
|
|
|
Long time ago and I did not used it much...
You can not open the hole file so what I have done was cut the hex code needed to a new hex file and export it as 16 bit. Then you open keil, you have to creat a new project first, select procesor, then open that project and import the hex... Sorry not being more helpfull but I do not have it installed anymore and dont remenber all steps, but if you search a litle bit you will find all you need.
|
|
|
Logged
|
|
|
|
fknbrkn
Hero Member
Karma: +186/-24
Offline
Posts: 1455
mk4 1.8T AUM
|
|
« Reply #16 on: November 03, 2019, 08:01:58 AM »
|
|
|
can someone dissamble for me this fuction 9A 80 13 90 F2 F4 00 9E D7 00 81 00 F2 F9 D0 7E 40 49 9D 0B F2 F4 9E F8 D7 00 81 00 F2 F9 D2 7E 40 49 FD 03 F7 8E EC 8B 0D 2F 9A 80 29 90 8A 26 22 20 F2 F4 9E F8 D7 00 81 00 F2 F9 D6 7E 40 49 FD 1A C2 F4 C7 89 D7 00 81 00 C2 F9 D8 7E 40 49 FD 12 D7 00 38 00 F2 F4 F0 4F D7 00 81 00 F2 F9 D4 7E 40 49 9D 11 F7 8E EC 8B 08 41 D7 00 38 00 F7 F8 F0 4F 0D 09 D7 00 38 00 F6 8F F0 4F 0D 04 D7 00 38 00 F6 8E F0 4F F3 F8 B3 89 DB 00 Is is posible to do it without IDA pro, let's say some freware software. Or even do it maunaly? just basic al/nls routine
|
|
|
Logged
|
|
|
|
BlackT
|
|
« Reply #17 on: November 03, 2019, 08:13:40 AM »
|
|
|
Long time ago and I did not used it much...
You can not open the hole file so what I have done was cut the hex code needed to a new hex file and export it as 16 bit. Then you open keil, you have to creat a new project first, select procesor, then open that project and import the hex... Sorry not being more helpfull but I do not have it installed anymore and dont remenber all steps, but if you search a litle bit you will find all you need.
sorry but can't find any information about importing HEX. Only export, but i will try futher thank you for your help just basic al/nls routine
Yes i know, but i want to dissamble it. To see how that thing work ( I have that writen in C, and know how work, but want to see that in ASM)
|
|
|
Logged
|
|
|
|
woj
|
|
« Reply #18 on: November 03, 2019, 10:58:53 AM »
|
|
|
In this post of mine: http://nefariousmotorsports.com/forum/index.php?topic=10485.msg113803#msg113803I published the ASM source code for my LC / NLS patch for ME7.9.10. This published one is a first working version of what I developed later to include all bells and whistles (that beefed up version is for sale only). This published code is loosely based on the disassembly of the Wiki code for VAGs.
|
|
|
Logged
|
|
|
|
armageddon
|
|
« Reply #19 on: November 03, 2019, 11:21:44 AM »
|
|
|
sorry but can't find any information about importing HEX. Only export, but i will try futher thank you for your help Yes i know, but i want to dissamble it. To see how that thing work ( I have that writen in C, and know how work, but want to see that in ASM)
Iike I said, its been a while since I do not mess with it. Here, read this http://nefariousmotorsports.com/forum/index.php?topic=359.0Also, theres already a topic or two with the disassembled code, if you just need comparation...
|
|
|
Logged
|
|
|
|
BlackT
|
|
« Reply #20 on: November 06, 2019, 04:00:06 AM »
|
|
|
In this post of mine: http://nefariousmotorsports.com/forum/index.php?topic=10485.msg113803#msg113803I published the ASM source code for my LC / NLS patch for ME7.9.10. This published one is a first working version of what I developed later to include all bells and whistles (that beefed up version is for sale only). This published code is loosely based on the disassembly of the Wiki code for VAGs. Thank you that can be really useful Now we speak same language thank you this make all much easier Yes but somethimes search this forum is really hard, it hides so many diamants,every day I acidently come across some thread witch contain a gold worhtwhile information
|
|
|
Logged
|
|
|
|
BlackT
|
|
« Reply #21 on: December 13, 2019, 01:32:08 PM »
|
|
|
Could somebody help me little with this, I want to make LC without NLS 9A 80 13 90 F2 F4 00 9E D7 00 81 00 F2 F9 D0 7E 40 49 9D 0B F2 F4 9E F8 D7 00 81 00 F2 F9 D2 7E 40 49 FD 03 F7 8E EC 8B 0D 2F DB 00 JNB P0L.9,0x00002A MOV R4,DPP2:0x1E00 EXTS #0x0081,#1 MOV R9,DPP1:0x3ED0 CMP R4,R9 JMPR CC_NC,0x00002A MOV R4,DPP3:0x389E EXTS #0x0081,#1 MOV R9,DPP1:0x3ED2 CMP R4,R9 JMPR CC_ULE,0x00002A MOVB DPP2:0x0BEC,ZEROS JMPR CC_UC,0x000088 RETS Am I at good trace?
|
|
|
Logged
|
|
|
|
|
BlackT
|
|
« Reply #23 on: December 14, 2019, 03:55:50 AM »
|
|
|
What you mean it could be done with RPM setings? Unfortunately i don't have IDA pro full version, so I cant load that helper . I am using Keil uVision I want to translate this to ASM if (B_kuppl && vfil_w < SpeedThreshold && nmot_w > LaunchRPM) { tsrldyn = 0; // Interrupt ignition return; }
9A 26 13 60 F2 F4 00 9E D7 00 81 00 F2 F9 D0 7E 40 49 9D 0B F2 F4 9E F8 D7 00 81 00 F2 F9 D2 7E 40 49 FD 03 F7 8E EC 8B
In coments I will translate how i figure out this 9A261360 JNB 0xFD4C.6,0x00002A // if 0x00FD4C 0x0040(clutch condition adress) is different from zero, go to next instruction F2F4009E MOV R4,DPP2:0x1E00 // some sorf of move 0x381E00 (V-fill or kmh value) to R4 D7008100 EXTS #0x0081,#1 //didn't figure out what this stands for, some sort of disable interupts in MCU F2F9D07E MOV R9,DPP1:0x3ED0 // move 0x17ED0 (my threshold km/h) to R9 4049 CMP R4,R9 //compare 9D0B JMPR CC_NC,0x00002A //didn't figure out what this stands for F2F49EF8 MOV R4,DPP3:0x389E //again same process for RPM threshold D7008100 EXTS #0x0081,#1 F2F9D27E MOV R9,DPP1:0x3ED2 4049 CMP R4,R9 FD03 JMPR CC_ULE,0x00002A F78EEC8B MOVB DPP2:0x0BEC,ZEROS //if all conditions are meth, set 0 in 0x380BEC( what is tsrldyn) DB00 RETS // end of function
|
|
|
Logged
|
|
|
|
fknbrkn
Hero Member
Karma: +186/-24
Offline
Posts: 1455
mk4 1.8T AUM
|
|
« Reply #24 on: December 14, 2019, 05:41:11 AM »
|
|
|
The floating here routine has few settings Set min rpm for nls higher than redline and this path will be disabled As for ida, I can not recommend you russian bt tracker rutracker.org It's illegal you know so dont do it
|
|
|
Logged
|
|
|
|
BlackT
|
|
« Reply #25 on: December 14, 2019, 05:57:36 AM »
|
|
|
The floating here routine has few settings Set min rpm for nls higher than redline and this path will be disabled As for ida, I can not recommend you russian bt tracker rutracker.org It's illegal you know so dont do it
Yes that will be easy path, but I really want to learn more about ASM in this MCU How hard will be to add to this function to move ignition after TDC when LC is active?
|
|
|
Logged
|
|
|
|
prj
|
|
« Reply #26 on: December 14, 2019, 10:06:32 AM »
|
|
|
Real men write straight hex on c167
|
|
|
Logged
|
|
|
|
woj
|
|
« Reply #27 on: December 14, 2019, 10:54:17 AM »
|
|
|
Real men write straight hex on c167 Real men write a custom private tool to do that for them ;P
|
|
|
Logged
|
|
|
|
BlackT
|
|
« Reply #28 on: December 14, 2019, 01:49:15 PM »
|
|
|
Hahah cmon guys give me some push about this
|
|
|
Logged
|
|
|
|
fknbrkn
Hero Member
Karma: +186/-24
Offline
Posts: 1455
mk4 1.8T AUM
|
|
« Reply #29 on: December 14, 2019, 02:20:34 PM »
|
|
|
Yes that will be easy path, but I really want to learn more about ASM in this MCU
How hard will be to add to this function to move ignition after TDC when LC is active?
You cannot learn about asm wo dissasembled flash code As for the ignition personally im using another hook for my brakeboost routine. Just right above ZWGRU calculation c167 super friendly for begginers, just replace some code with calls to your routine, do your thing, keep in mind about registers if they has been write above your code and read after, do the code that you replaced with calls and then rets get ida, load original file and the same with implemented als/nls and youve see what im talkin bout Real men write a custom private tool to do that for them ;P
oh common, get the masterj me7 tuning wizard excel sheet from 2007
|
|
|
Logged
|
|
|
|
|