A hackish way to extract arguments passed to a function from hex-rays decompiler output

example.py

import idautils
ea = 0x000000140013188
name = ida_name.get_ea_name(ea)
print("found")

# get xrefs to function 
xrefs = [x for x in idautils.CodeRefsTo(ea, 0)]

for func in xrefs:
    args = []
    cfunc = idaapi.decompile(func)
    sv = cfunc.get_pseudocode()
    comment_len = ida_name.get_ea_name(func)
    comment_flag = False 
    c = 1
    for index, sline in enumerate(sv):
        tt = idaapi.tag_remove(sline.line)
        if name in tt and comment_flag != True:
            args.append(tt.rstrip().lstrip())
            comment_flag = True
            continue 
        # print lines 
        if comment_flag:
            if ";" in tt:
                break
            args.append(tt.rstrip().lstrip())
            
    print(hex(func), args)

Hello, this is how I get arguments passed into a function call.

import idaapi
import idautils
import idc

func = idaapi.get_name_ea(0, "func_name")
for ref in idautils.XrefsTo(func):
  ref_func = idaapi.get_func(ref.frm)
  for ea in Heads(ref_func.start_ea, ref_func.end_ea):
    insn = idaapi.insn_t()
    if ida_idp.is_call_insn(insn):
      callee_args = idaapi.get_arg_addrs(ea)

Hi @52617365, my version uses the hex-rays decompiler to extract the arguments. I always forget Hex-Rays API usage. Yes, your example will work but I would exercise caution when relying on idaapi.get_arg_addrs to extract function arguments. It works well on 64-bit functions that use standard calling conventions but it can fail on other calling conventions or functions that don’t have their types defined. I have had to write a couple of backtracing functions to deal with idaapi.get_arg_addrs failing.