#include <windows.h>
#include "DelayImp.h"

Classes
struct	InternalImgDelayDescr

Macros
#define	WIN32_LEAN_AND_MEAN

#define	STRICT

Typedefs
typedef InternalImgDelayDescr *	PIIDD

typedef const InternalImgDelayDescr *	PCIIDD

Functions
static size_t	__strlen (const char *sz)

static int	__memcmp (const void pv1, const void pv2, size_t cb)

static void *	__memcpy (void pvDst, const void pvSrc, size_t cb)

unsigned	IndexFromPImgThunkData (PCImgThunkData pitdCur, PCImgThunkData pitdBase)

template<class X >
X	PFromRva (RVA rva)

unsigned	CountOfImports (PCImgThunkData pitdBase)

static PIMAGE_NT_HEADERS WINAPI	PinhFromImageBase (HMODULE hmod)

static void WINAPI	OverlayIAT (PImgThunkData pitdDst, PCImgThunkData pitdSrc)

static DWORD WINAPI	TimeStampOfImage (PIMAGE_NT_HEADERS pinh)

static bool WINAPI	FLoadedAtPreferredAddress (PIMAGE_NT_HEADERS pinh, HMODULE hmod)

static PCImgDelayDescr	PiddFromDllName (LPCSTR szDll)

FARPROC WINAPI	__delayLoadHelper2 (PCImgDelayDescr pidd, FARPROC *ppfnIATEntry)

BOOL WINAPI	__FUnloadDelayLoadedDLL2 (LPCSTR szDll)

HRESULT WINAPI	__HrLoadAllImportsForDll (LPCSTR szDll)

Variables
const IMAGE_DOS_HEADER	__ImageBase

Macro Definition Documentation

#define STRICT

#define WIN32_LEAN_AND_MEAN

Typedef Documentation

typedef const InternalImgDelayDescr* PCIIDD

typedef InternalImgDelayDescr* PIIDD

Function Documentation

FARPROC WINAPI __delayLoadHelper2	(	PCImgDelayDescr	pidd,
		FARPROC *	ppfnIATEntry
	)

       {
 
     // Set up some data we use for the hook procs but also useful for
     // our own use
     //
     InternalImgDelayDescr   idd = {
         pidd->grAttrs,
         PFromRva<LPCSTR>(pidd->rvaDLLName),
         PFromRva<HMODULE*>(pidd->rvaHmod),
         PFromRva<PImgThunkData>(pidd->rvaIAT),
         PFromRva<PCImgThunkData>(pidd->rvaINT),
         PFromRva<PCImgThunkData>(pidd->rvaBoundIAT),
         PFromRva<PCImgThunkData>(pidd->rvaUnloadIAT),
         pidd->dwTimeStamp
         };
 
     DelayLoadInfo   dli = {
         sizeof DelayLoadInfo,
         pidd,
         ppfnIATEntry,
         idd.szName,
         { 0 },
         0,
         0,
         0
         };
 
     if (0 == (idd.grAttrs & dlattrRva)) {
         PDelayLoadInfo  rgpdli[1] = { &dli };
 
         RaiseException(
             VcppException(ERROR_SEVERITY_ERROR, ERROR_INVALID_PARAMETER),
             0,
             1,
             PULONG_PTR(rgpdli)
             );
         return 0;
         }
 
     HMODULE hmod = *idd.phmod;
 
     // Calculate the index for the IAT entry in the import address table
     // N.B. The INT entries are ordered the same as the IAT entries so
     // the calculation can be done on the IAT side.
     //
     const unsigned  iIAT = IndexFromPImgThunkData(PCImgThunkData(ppfnIATEntry), idd.pIAT);
     const unsigned  iINT = iIAT;
 
     PCImgThunkData  pitd = &(idd.pINT[iINT]);
 
     dli.dlp.fImportByName = !IMAGE_SNAP_BY_ORDINAL(pitd->u1.Ordinal);
 
     if (dli.dlp.fImportByName) {
         dli.dlp.szProcName = LPCSTR(PFromRva<PIMAGE_IMPORT_BY_NAME>(RVA(UINT_PTR(pitd->u1.AddressOfData)))->Name);
         }
     else {
         dli.dlp.dwOrdinal = DWORD(IMAGE_ORDINAL(pitd->u1.Ordinal));
         }
 
     // Call the initial hook.  If it exists and returns a function pointer,
     // abort the rest of the processing and just return it for the call.
     //
     FARPROC pfnRet = NULL;
 
     if (__pfnDliNotifyHook2) {
         pfnRet = ((*__pfnDliNotifyHook2)(dliStartProcessing, &dli));
 
         if (pfnRet != NULL) {
             goto HookBypass;
             }
         }
 
     // Check to see if we need to try to load the library.
     //
     if (hmod == 0) {
         if (__pfnDliNotifyHook2) {
             hmod = HMODULE(((*__pfnDliNotifyHook2)(dliNotePreLoadLibrary, &dli)));
             }
         if (hmod == 0) {
             hmod = ::LoadLibraryEx(dli.szDll, NULL, 0);
             }
         if (hmod == 0) {
             dli.dwLastError = ::GetLastError();
             if (__pfnDliFailureHook2) {
                 // when the hook is called on LoadLibrary failure, it will
                 // return 0 for failure and an hmod for the lib if it fixed
                 // the problem.
                 //
                 hmod = HMODULE((*__pfnDliFailureHook2)(dliFailLoadLib, &dli));
                 }
 
             if (hmod == 0) {
                 PDelayLoadInfo  rgpdli[1] = { &dli };
 
                 RaiseException(
                     VcppException(ERROR_SEVERITY_ERROR, ERROR_MOD_NOT_FOUND),
                     0,
                     1,
                     PULONG_PTR(rgpdli)
                     );
                 
                 // If we get to here, we blindly assume that the handler of the exception
                 // has magically fixed everything up and left the function pointer in 
                 // dli.pfnCur.
                 //
                 return dli.pfnCur;
                 }
             }
 
         // Store the library handle.  If it is already there, we infer
         // that another thread got there first, and we need to do a
         // FreeLibrary() to reduce the refcount
         //
         HMODULE hmodT = HMODULE(InterlockedExchangePointer((PVOID *) idd.phmod, PVOID(hmod)));
         if (hmodT == hmod) {
             ::FreeLibrary(hmod);
             }
         }
 
     // Go for the procedure now.
     //
     dli.hmodCur = hmod;
     if (__pfnDliNotifyHook2) {
         pfnRet = (*__pfnDliNotifyHook2)(dliNotePreGetProcAddress, &dli);
         }
     if (pfnRet == 0) {
         if (pidd->rvaBoundIAT && pidd->dwTimeStamp) {
             // bound imports exist...check the timestamp from the target image
             //
             PIMAGE_NT_HEADERS   pinh(PinhFromImageBase(hmod));
 
             if (pinh->Signature == IMAGE_NT_SIGNATURE &&
                 TimeStampOfImage(pinh) == idd.dwTimeStamp &&
                 FLoadedAtPreferredAddress(pinh, hmod)) {
 
                 // Everything is good to go, if we have a decent address
                 // in the bound IAT!
                 //
                 pfnRet = FARPROC(UINT_PTR(idd.pBoundIAT[iIAT].u1.Function));
                 if (pfnRet != 0) {
                     goto SetEntryHookBypass;
                     }
                 }
             }
 
         pfnRet = ::GetProcAddress(hmod, dli.dlp.szProcName);
         }
 
     if (pfnRet == 0) {
         dli.dwLastError = ::GetLastError();
         if (__pfnDliFailureHook2) {
             // when the hook is called on GetProcAddress failure, it will
             // return 0 on failure and a valid proc address on success
             //
             pfnRet = (*__pfnDliFailureHook2)(dliFailGetProc, &dli);
             }
         if (pfnRet == 0) {
             PDelayLoadInfo  rgpdli[1] = { &dli };
 
             RaiseException(
                 VcppException(ERROR_SEVERITY_ERROR, ERROR_PROC_NOT_FOUND),
                 0,
                 1,
                 PULONG_PTR(rgpdli)
                 );
 
             // If we get to here, we blindly assume that the handler of the exception
             // has magically fixed everything up and left the function pointer in 
             // dli.pfnCur.
             //
             pfnRet = dli.pfnCur;
             }
         }
 
 SetEntryHookBypass:
     *ppfnIATEntry = pfnRet;
 
 HookBypass:
     if (__pfnDliNotifyHook2) {
         dli.dwLastError = 0;
         dli.hmodCur = hmod;
         dli.pfnCur = pfnRet;
         (*__pfnDliNotifyHook2)(dliNoteEndProcessing, &dli);
         }
     return pfnRet;
     }

BOOL WINAPI __FUnloadDelayLoadedDLL2 ( LPCSTR szDll )

                                        {
     BOOL        fRet = FALSE;
     PCImgDelayDescr pidd = PiddFromDllName(szDll);
 
     if ((pidd != NULL) && 
         (pidd->rvaUnloadIAT != 0)) {
         HMODULE *           phmod = PFromRva<HMODULE*>(pidd->rvaHmod);
         HMODULE             hmod = *phmod;
         if (hmod != NULL) {
             OverlayIAT(
                 PFromRva<PImgThunkData>(pidd->rvaIAT),
                 PFromRva<PCImgThunkData>(pidd->rvaUnloadIAT)
                 );
             ::FreeLibrary(hmod);
             *phmod = NULL;
             fRet = TRUE;
             }
 
         }
     return fRet;
     }

HRESULT WINAPI __HrLoadAllImportsForDll ( LPCSTR szDll )

                                        {
     HRESULT             hrRet = HRESULT_FROM_WIN32(ERROR_MOD_NOT_FOUND);
     PCImgDelayDescr     pidd = PiddFromDllName(szDll);
 
     if (pidd != NULL) {
         // Found a matching DLL name, now process it.
         //
         // Set up the internal structure
         //
         FARPROC *   ppfnIATEntry = PFromRva<FARPROC*>(pidd->rvaIAT);
         size_t      cpfnIATEntries = CountOfImports(PCImgThunkData(ppfnIATEntry));
         FARPROC *   ppfnIATEntryMax = ppfnIATEntry + cpfnIATEntries;
 
         for (;ppfnIATEntry < ppfnIATEntryMax; ppfnIATEntry++) {
             __delayLoadHelper2(pidd, ppfnIATEntry);
             }
 
         // Done, indicate some semblance of success
         //
         hrRet = S_OK;
         }
     return hrRet;
     }

static int __memcmp	(	const void *	pv1,
		const void *	pv2,
		size_t	cb
	)

inlinestatic

                                                         {
     if (!cb) {
         return 0;
         }
 
     while ( --cb && *(char *)pv1 == *(char *)pv2 ) {
         pv1 = (char *)pv1 + 1;
         pv2 = (char *)pv2 + 1;
         }
 
     return  *((unsigned char *)pv1) - *((unsigned char *)pv2);
     }

static void* __memcpy	(	void *	pvDst,
		const void *	pvSrc,
		size_t	cb
	)

inlinestatic

                                                       {
 
     void * pvRet = pvDst;
 
     //
     // copy from lower addresses to higher addresses
     //
     while (cb--) {
         *(char *)pvDst = *(char *)pvSrc;
         pvDst = (char *)pvDst + 1;
         pvSrc = (char *)pvSrc + 1;
         }
 
     return pvRet;
     }

static size_t __strlen ( const char * sz )

inlinestatic

                           {
     const char *szEnd = sz;
 
     while( *szEnd++ ) {
         ;
         }
 
     return szEnd - sz - 1;
     }

unsigned CountOfImports ( PCImgThunkData pitdBase )

inline

                                         {
     unsigned        cRet = 0;
     PCImgThunkData  pitd = pitdBase;
     while (pitd->u1.Function) {
         pitd++;
         cRet++;
         }
     return cRet;
     }

static bool WINAPI FLoadedAtPreferredAddress	(	PIMAGE_NT_HEADERS	pinh,
		HMODULE	hmod
	)

inlinestatic

                                                                 {
     return UINT_PTR(hmod) == pinh->OptionalHeader.ImageBase;
     }

unsigned IndexFromPImgThunkData	(	PCImgThunkData	pitdCur,
		PCImgThunkData	pitdBase
	)

inline

                                                                         {
     return (unsigned) (pitdCur - pitdBase);
     }

static void WINAPI OverlayIAT	(	PImgThunkData	pitdDst,
		PCImgThunkData	pitdSrc
	)

inlinestatic

                                                           {
     __memcpy(pitdDst, pitdSrc, CountOfImports(pitdDst) * sizeof IMAGE_THUNK_DATA);
     }

template<class X >

X PFromRva ( RVA rva )

                     {
     return X(PBYTE(&__ImageBase) + rva);
     }

static PCImgDelayDescr PiddFromDllName ( LPCSTR szDll )

static

                               {
     PCImgDelayDescr     piddRet = NULL;
     PIMAGE_NT_HEADERS   pinh = PinhFromImageBase(HMODULE(&__ImageBase));
 
     // Scan the Delay load IAT/INT for the dll in question
     //
     if (pinh->OptionalHeader.DataDirectory[IMAGE_DIRECTORY_ENTRY_DELAY_IMPORT].Size != 0) {
         PCImgDelayDescr pidd = PFromRva<PCImgDelayDescr>(
             pinh->OptionalHeader.DataDirectory[IMAGE_DIRECTORY_ENTRY_DELAY_IMPORT].VirtualAddress
             );
 
         // Check all of the dlls listed up to the NULL one.
         //
         while (pidd->rvaDLLName != 0) {
             // Check to see if it is the DLL we want
             // Intentionally case sensitive to avoid complication of using the CRT
             // for those that don't use the CRT...the user can replace this with
             // a variant of a case insenstive comparison routine.
             //
             LPCSTR  szDllCur = PFromRva<LPCSTR>(pidd->rvaDLLName);
             size_t  cchDllCur = __strlen(szDllCur);
             if (cchDllCur == __strlen(szDll) && __memcmp(szDll, szDllCur, cchDllCur) == 0) {
                 piddRet = pidd;
                 break;
                 }
             
             pidd++;
             }
         }
     return piddRet;
     }

static PIMAGE_NT_HEADERS WINAPI PinhFromImageBase ( HMODULE hmod )

inlinestatic

                                 {
     return PIMAGE_NT_HEADERS(PBYTE(hmod) + PIMAGE_DOS_HEADER(hmod)->e_lfanew);
     }

static DWORD WINAPI TimeStampOfImage ( PIMAGE_NT_HEADERS pinh )

inlinestatic

                                          {
     return pinh->FileHeader.TimeDateStamp;
     }

Variable Documentation

const IMAGE_DOS_HEADER __ImageBase

Classes

Macros

Typedefs

Functions

Variables

Macro Definition Documentation

Typedef Documentation

Function Documentation

Variable Documentation