erik/acdream
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions 1
acdream/tools/cdb/a6-types-dump-runner.ps1
Erik d0c8c54d96 fix(cdb): A6.P1 — v1 dry-run lessons + v2 prep tooling 
Dry-run of scenario 1 (retail-v1-broken-offsets.log preserved as
audit trail) surfaced three issues with the v1 cdb script:

1. STACK-ARG OFFSETS WRONG: BP actions used arbitrary registers
   (@edx, @edi) to read function args, but __thiscall puts non-this
   args on the stack ([esp+N] after the return address). All 12 BP5
   "adjust_sphere" hits printed Nx=0.0 Ny=0.0 ... — fields not read.
   Fixed by writing a type dumper (a6-types-dump.cdb + runner) that
   uses cdb's `dt` command against the loaded PDB to get authoritative
   struct offsets. v2 probe script (to be written next) will use
   double-indirect reads (dwo(poi(@esp+N)+offset)) with correct
   offsets from the dump.

2. TEE-OBJECT UTF-16 ENCODING: PowerShell's default Tee-Object writes
   UTF-16 LE with BOM, making logs unparseable by grep without
   conversion. Runner now uses Out-File -Encoding ASCII. Sacrifices
   live console echo; use `Get-Content -Tail 50 -Wait` in a separate
   shell if live monitoring is needed.

3. BP6 SYMBOL NOT FOUND: `acclient!CTransition::validate_walkable`
   doesn't exist in the PDB. Decomp at line 272811 has
   `CTransition::check_walkable` — likely the actual name. To be
   verified + fixed in v2.

The BP hit-count distribution from v1 is still meaningful diagnostic
data (14,318 transitional_insert + 16,558 find_collisions + 40
set_contact_plane + 12 adjust_sphere + 1 step_up + 1 set_collide in
a 2-second walk through the inn doorway). Preserved as a baseline
sanity-check the v2 distribution can be diffed against.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
2026-05-21 19:38:31 +02:00

37 lines
1.4 KiB
PowerShell
Raw Blame History

# Phase A6.P1 type-dumper runner — 2026-05-21
#
# Attaches cdb to live retail acclient.exe, dumps the 8 struct types A6's
# probe needs (Plane, CSphere, Position, CPolygon, SPHEREPATH, CTransition,
# COLLISIONINFO, OBJECTINFO), and exits cleanly via qd. No breakpoints set,
# no retail lag. ~5 seconds total.
#
# Output: tools/cdb/a6-types-dump.txt (ASCII)
#
# Prerequisites:
# 1. Retail acclient.exe v11.4186 running (any state — login screen, world,
# doesn't matter — as long as the binary + PDB are loaded).
# 2. cdb.exe at the standard Windows Kits path.
$cdbExe = "C:\Program Files (x86)\Windows Kits\10\Debuggers\x86\cdb.exe"
if (-not (Test-Path $cdbExe)) {
Write-Error "cdb.exe not found at $cdbExe."
exit 1
}
$scriptPath = Join-Path $PSScriptRoot "a6-types-dump.cdb"
if (-not (Test-Path $scriptPath)) {
Write-Error "a6-types-dump.cdb not found at $scriptPath."
exit 1
}
$outputPath = Join-Path $PSScriptRoot "a6-types-dump.txt"
Write-Host "Attaching cdb to acclient.exe to dump struct types..."
Write-Host "Output: $outputPath"
# Capture cdb output to a regular file via Out-File (ASCII, not Tee-Object's UTF-16).
& $cdbExe -pn acclient.exe -cf $scriptPath 2>&1 | Out-File -FilePath $outputPath -Encoding ASCII
Write-Host ""
Write-Host "Type dump complete. Output saved to $outputPath"
Write-Host "Lines: $((Get-Content $outputPath).Count)"
Reference in a new issue View git blame Copy permalink