Quote:
Originally Posted by zeurx
just wondering what method do you use, i may incorporate it if its much different
|
How I extract XIP:
Open Winhex or xvi32
Most devices have 2 XIP sections: XIP1 & XIP2. Search for the following hex
Code:
FE 03 00 EA 00 00 00 00 00 00 00 00 00 00 00 00 00 00
The first occurance is where XIP1 starts. It ends with the byte before the beginning of XIP2, which also starts with the hex
Code:
FE 03 00 EA 00 00 00 00 00 00 00 00 00 00 00 00 00 00
XIP2 then runs up to the beginning of the img fs, which starts with the hex values: F8 AC 2C 9D. If you have trouble finding the img fs, you can run imgfsfromnb or prepare_imgfs which will identify the offset for you.
The rom structure looks like this:
|---Header, bootloader, etc---|---XIP1---|---XIP2---|---IMGFS---|...