TRACE32 C166 SIMULATOR -> need some help... - GSM-Forum

oOXTCOo · 06-15-2012, 19:08

Can someone please be so kind and help me how to get started using TRACE C166 SIMULATOR Tool by Lauterbach?

i whant to simulate a infineon C166 based 4mb flash dump.

but this tool seems very complicated...
if someone could help me to understand that tool, would be realy great for me..

with IDA is not possible to simulate, but with trace32 should be possible.

what i need to set, how i need to load it?

hope some expert can give me some help with that tool...

thanks!

mix3584 · 06-16-2012, 08:30

Offtopic.
One question. On the infenion's site there are a few software for emulation and debugging:
Emulators/Debugger Development Systems - Infineon Technologies
What is this program TRACE32 better than others?

oOXTCOo · 06-16-2012, 18:10

if another tool is able to simulate, i also would be happy..
its mutch more easy when i can simulate instead of static analyze.
so it seems that trace32 simulator is the most advanced tool for that.

so nobody can or whant help?

where are the good old siemens reversers?

mix3584 · 06-16-2012, 22:00

saw russans forums about siemens. but who cares about it now, only google cach

karwos · 06-16-2012, 22:23

Craciing Xgold1

?
Grab some original KEIl tools maybe.

Gecko_UK · 06-16-2012, 22:44

you probably seen these already

https://www.keil.com/demo/eval/c166.htm
TASKING - Embedded software development tools from Altium

oOXTCOo · 06-17-2012, 03:41

Quote:

Originally Posted by karwos

Craciing Xgold1

?
Grab some original KEIl tools maybe.

no... iam not interessted in nokia

i have some cheap ulc2 phones.. direct unlocking is easy.. but i whant to reverse the nck algo..

karwos · 06-17-2012, 17:47

IDA support this CPU 100%

I was reversing Xgold1 Hash encryption - Reversing taking a little more, as this is generally 16-bit CPU, but addressing 24-bit addressing mode (something like 16bit mode on x86, diffrent pointer for data segment, diffrent pointer for 16-bit offset), so usually pointers are passed as two registers.

Example from 1616 RSA Verification routine:

Quote:

mov [-r0], r15
mov r12, #0Fh ; Verify PKCS1 Header
mov [-r0], r12
mov r12, #0Ah
add r12, r0
and r12, #3FFFh
mov r13, DPP1
mov r14, r9
mov r15, r6
calls 0E5h, memcmp ; r8 - len, r14 r15-src ptr, r12 r13 - dst ptr
add r0, #2
mov r15, [r0+]
cmp r4, #0
jmpr cc_NZ, loc_C747A4

Read about Addressing mode for this CPU.
As far as I remember, addresing also depends of current set DPP, and for example is calculated like:
(R12 * 0x10000) + offset (R13)

but off course addressing varying from call to call. Read C166 docs and you will cleary see diffrence.

BTW - VERY ugly CPU

hope this helps.

zulea · 06-18-2012, 23:55

Can use Keil.

BR,
Zulea

06-15-2012, 19:08	#1 (permalink)
oOXTCOo No Life Poster Join Date: Dec 2000 Location: J.A.U - Just Another Unlocker Age: 43 Posts: 3,498 Member: 2878 Status: Offline Thanks Meter: 9,123	TRACE32 C166 SIMULATOR -> need some help... Can someone please be so kind and help me how to get started using TRACE C166 SIMULATOR Tool by Lauterbach? i whant to simulate a infineon C166 based 4mb flash dump. but this tool seems very complicated... if someone could help me to understand that tool, would be realy great for me.. with IDA is not possible to simulate, but with trace32 should be possible. what i need to set, how i need to load it? hope some expert can give me some help with that tool... thanks!

06-16-2012, 18:10	#3 (permalink)
oOXTCOo No Life Poster Join Date: Dec 2000 Location: J.A.U - Just Another Unlocker Age: 43 Posts: 3,498 Member: 2878 Status: Offline Thanks Meter: 9,123	if another tool is able to simulate, i also would be happy.. its mutch more easy when i can simulate instead of static analyze. so it seems that trace32 simulator is the most advanced tool for that. so nobody can or whant help? where are the good old siemens reversers? Last edited by oOXTCOo; 06-16-2012 at 18:16.

Similar Threads
Thread	Thread Starter	Forum	Replies	Last Post
HELP!!! BACKGROUND SCREEN LOGO	Michael Go	Nokia Legacy Phones ( DCT-1 ,2 ,3 ,L )	8	11-23-2017 08:11
need ericsson 88 cable	migdamas	Old Ericsson Phones & Sony Phones	2	03-24-2017 16:24
Need software upgrade for Nokia 5110	ptkrf	Nokia Legacy Phones ( DCT-1 ,2 ,3 ,L )	30	02-24-2016 10:21
Help with 6110	paulomt1	Nokia Legacy Phones ( DCT-1 ,2 ,3 ,L )	2	05-25-2009 16:29
need eeprom photo????	mobileinfo	Nokia Legacy Phones ( DCT-1 ,2 ,3 ,L )	0	05-26-1999 11:35

06-16-2012, 08:30	#2 (permalink)
mix3584 Junior Member Join Date: Feb 2012 Posts: 37 Member: 1723215 Status: Offline Thanks Meter: 12	Offtopic. One question. On the infenion's site there are a few software for emulation and debugging: Emulators/Debugger Development Systems - Infineon Technologies What is this program TRACE32 better than others?

06-16-2012, 22:00	#4 (permalink)
mix3584 Junior Member Join Date: Feb 2012 Posts: 37 Member: 1723215 Status: Offline Thanks Meter: 12	saw russans forums about siemens. but who cares about it now, only google cach

06-16-2012, 22:23	#5 (permalink)
karwos No Life Poster Join Date: Feb 2005 Location: Poland Age: 34 Posts: 4,943 Member: 117496 Status: Offline Sonork: 100.83919 Thanks Meter: 22,689	Craciing Xgold1 ? Grab some original KEIl tools maybe.

06-16-2012, 22:44	#6 (permalink)
Gecko_UK No Life Poster Join Date: Feb 2009 Posts: 851 Member: 961957 Status: Offline Sonork: Jabber: [email protected] Thanks Meter: 641	you probably seen these already https://www.keil.com/demo/eval/c166.htm TASKING - Embedded software development tools from Altium

06-18-2012, 23:55	#9 (permalink)
zulea No Life Poster Join Date: Jul 2001 Location: Inside Raskal pocket Age: 54 Posts: 3,316 Member: 5325 Status: Offline Thanks Meter: 8,448	Can use Keil. BR, Zulea