archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Branch: master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
windows-server-2003/shell/themes/uxtheme/themefile.cpp

399 lines
12 KiB
Raw Permalink Normal View History

commiting as it is
4 years ago
  1. //---------------------------------------------------------------------------
  2. // ThemeFile.cpp - manages loaded theme files
  3. //---------------------------------------------------------------------------
  4. #include "stdafx.h"
  5. #include "ThemeFile.h"
  6. #include "Loader.h"
  7. #include "Services.h"
  8. //---------------------------------------------------------------------------
  9. CUxThemeFile::CUxThemeFile()
  10. {
  11. StringCchCopyA(_szHead, ARRAYSIZE(_szHead), "thmfile");
  12. StringCchCopyA(_szTail, ARRAYSIZE(_szTail), "end");
  14. Reset();
  15. }
  16. //---------------------------------------------------------------------------
  17. CUxThemeFile::~CUxThemeFile()
  18. {
  19. if (_pbThemeData || _hMemoryMap)
  20. CloseFile();
  22. StringCchCopyA(_szHead, ARRAYSIZE(_szHead), "deleted");
  23. }
  24. //---------------------------------------------------------------------------
  25. __inline bool CUxThemeFile::IsReady()
  26. {
  27. THEMEHDR *hdr = (THEMEHDR *)_pbThemeData;
  29. if (hdr != NULL && ((hdr->dwFlags & SECTION_READY) != 0))
  30. {
  31. return true;
  32. }
  33. return false;
  34. }
  35. //---------------------------------------------------------------------------
  36. __inline bool CUxThemeFile::IsGlobal()
  37. {
  38. THEMEHDR *hdr = (THEMEHDR *)_pbThemeData;
  40. if (hdr != NULL && ((hdr->dwFlags & SECTION_GLOBAL) != 0))
  41. {
  42. return true;
  43. }
  44. return false;
  45. }
  46. //---------------------------------------------------------------------------
  47. __inline bool CUxThemeFile::HasStockObjects()
  48. {
  49. THEMEHDR *hdr = (THEMEHDR *)_pbThemeData;
  51. if (hdr != NULL && ((hdr->dwFlags & SECTION_HASSTOCKOBJECTS) != 0))
  52. {
  53. return true;
  54. }
  55. return false;
  56. }
  58. //---------------------------------------------------------------------------
  59. #ifdef DEBUG
  60. void _CreateDebugSectionName( LPCWSTR pszBasicName, OUT LPWSTR pszName, IN ULONG cchName )
  61. {
  62. static DWORD dwRand = GetTickCount(); // rand seed
  63. dwRand = (dwRand * 214013L + 2531011L); // randomize
  65. DWORD dwUnique = (GetTickCount() | dwRand | (GetCurrentThreadId() << 8) | (GetCurrentProcessId() << 16));
  67. StringCchPrintfW(pszName, cchName,
  68. L"%s_%d_%d_%08lX",
  69. pszBasicName,
  70. NtCurrentPeb()->SessionId, // winlogon can't load/unload themes in different sessions.
  71. GetProcessWindowStation(), // winlogon can't load/unload themes in different winstas
  72. dwUnique);
  73. }
  74. #endif DEBUG
  76. //---------------------------------------------------------------------------
  77. HRESULT CUxThemeFile::CreateFile(int iLength, BOOL fReserve)
  78. {
  79. Log(LOG_TM, L"CUxThemeFile::CreateFile");
  81. HRESULT hr = S_OK;
  83. if (_pbThemeData)
  84. CloseFile();
  86. //---- we rely on all theme section names containing "ThemeSection" in CHK build so ----
  87. //---- devs/testers can verify that all handles to old theme sections are released. ----
  88. //---- For FRE builds, we want a NULL name to prevent name squatting attacks. ----
  89. WCHAR *pszName = NULL;
  91. #ifdef DEBUG
  92. WCHAR szSectionName[MAX_PATH];
  94. _CreateDebugSectionName(L"Debug_Create_ThemeSection", szSectionName, ARRAYSIZE(szSectionName));
  96. pszName = szSectionName;
  97. #endif
  99. _hMemoryMap = CreateFileMapping(INVALID_HANDLE_VALUE, NULL,
  100. PAGE_READWRITE | (fReserve ? SEC_RESERVE : 0), 0, iLength, pszName);
  101. if (! _hMemoryMap)
  102. {
  103. Log(LOG_ALWAYS, L"CUxThemeFile::CreateFile: could not create shared memory mapping");
  104. hr = MakeErrorLast();
  105. goto exit;
  106. }
  108. _pbThemeData = (BYTE *)MapViewOfFile(_hMemoryMap, FILE_MAP_WRITE, 0, 0, 0);
  109. if (! _pbThemeData)
  110. {
  111. Log(LOG_ALWAYS, L"CUxThemeFile::CreateFile: could not create shared memory view");
  112. CloseHandle(_hMemoryMap);
  114. hr = MakeErrorLast();
  115. goto exit;
  116. }
  118. Log(LOG_TMHANDLE, L"CUxThemeFile::CreateFile FILE CREATED: len=%d, addr=0x%x",
  119. iLength, _pbThemeData);
  121. exit:
  122. if (FAILED(hr))
  123. Reset();
  125. return hr;
  126. }
  127. //---------------------------------------------------------------------------
  128. HRESULT CUxThemeFile::CreateFromSection(HANDLE hSection)
  129. {
  130. Log(LOG_TM, L"CUxThemeFile::CreateFromSection");
  132. HRESULT hr = S_OK;
  133. void *pvOld = NULL;
  135. //---- ensure we start with all previous handles closed ----
  136. if (_pbThemeData)
  137. CloseFile();
  139. //---- get access to source section data ----
  140. pvOld = MapViewOfFile(hSection, FILE_MAP_READ, 0, 0, 0);
  141. if (! pvOld)
  142. {
  143. hr = MakeErrorLast();
  144. goto exit;
  145. }
  147. THEMEHDR *pHdr = (THEMEHDR *)pvOld;
  148. DWORD dwTrueSize = pHdr->dwTotalLength;
  150. //---- we rely on all theme section names containing "ThemeSection" in CHK build so ----
  151. //---- devs/testers can verify that all handles to old theme sections are released. ----
  152. //---- For FRE builds, we want a NULL name to prevent name squatting attacks. ----
  153. WCHAR *pszName = NULL;
  155. #ifdef DEBUG
  156. WCHAR szSectionName[MAX_PATH];
  158. _CreateDebugSectionName(L"Debug_CreateFromSection_ThemeSection", szSectionName, ARRAYSIZE(szSectionName));
  160. pszName = szSectionName;
  161. #endif
  163. //---- create the new section ----
  164. _hMemoryMap = CreateFileMapping(INVALID_HANDLE_VALUE, NULL,
  165. PAGE_READWRITE, 0, dwTrueSize, pszName);
  167. DWORD dwErr = GetLastError();
  169. if( ERROR_ALREADY_EXISTS == dwErr )
  170. {
  171. Log(LOG_ALWAYS, L"CUxThemeFile::CreateFromSection: shared theme section mapping already exists");
  172. ASSERT(FALSE);
  173. }
  175. if (! _hMemoryMap)
  176. {
  177. hr = HRESULT_FROM_WIN32(dwErr);
  178. Log(LOG_ALWAYS, L"CUxThemeFile::CreateFromSection: could not create shared memory mapping (%ld)", dwErr);
  179. goto exit;
  180. }
  182. //---- get access to new section data ----
  183. _pbThemeData = (BYTE *)MapViewOfFile(_hMemoryMap, FILE_MAP_WRITE, 0, 0, 0);
  184. if (! _pbThemeData)
  185. {
  186. hr = MakeErrorLast();
  187. Log(LOG_ALWAYS, L"CThemeFile::CreateFromSection: could not create shared memory view");
  188. goto exit;
  189. }
  191. //---- copy the data from the old section to the new section ----
  192. __try
  193. {
  194. CopyMemory(_pbThemeData, pvOld, dwTrueSize);
  195. }
  196. __except (EXCEPTION_EXECUTE_HANDLER)
  197. {
  198. hr = GetExceptionCode();
  199. goto exit;
  200. }
  202. //---- ensure version, checksum, etc. is all looking good ----
  203. hr = ValidateThemeData(TRUE);
  204. if (FAILED(hr))
  205. goto exit;
  207. Log(LOG_TMHANDLE, L"CUxThemeFile::CreateFromSection FILE CREATED: addr=0x%x",
  208. _pbThemeData);
  210. exit:
  211. if (pvOld != NULL)
  212. UnmapViewOfFile(pvOld);
  214. if (FAILED(hr))
  215. CloseFile();
  217. return hr;
  218. }
  219. //---------------------------------------------------------------------------
  220. // If fCleanupOnFailure is FALSE, we won't close the handle passed, even on failure.
  221. //---------------------------------------------------------------------------
  222. HRESULT CUxThemeFile::OpenFromHandle(
  223. HANDLE handle,
  224. DWORD dwDesiredAccess,
  225. BOOL fCleanupOnFailure)
  226. {
  227. HRESULT hr = S_OK;
  229. if (_pbThemeData)
  230. CloseFile();
  232. _pbThemeData = (BYTE *)MapViewOfFile(handle, dwDesiredAccess, 0, 0, 0);
  233. if (! _pbThemeData)
  234. {
  235. hr = MakeErrorLast();
  236. goto exit;
  237. }
  239. _hMemoryMap = handle;
  241. //---- ensure data is valid ----
  242. hr = ValidateThemeData(FALSE);
  243. if (FAILED(hr))
  244. {
  245. if (!fCleanupOnFailure)
  246. {
  247. _hMemoryMap = NULL; // don't give up the refcount on the handle
  248. CloseFile();
  249. }
  251. hr = MakeError32(ERROR_BAD_FORMAT);
  252. goto exit;
  253. }
  255. #ifdef DEBUG
  256. THEMEHDR *ph;
  257. ph = (THEMEHDR *)_pbThemeData;
  258. Log(LOG_TMHANDLE, L"CUxThemeFile::OpenFromHandle OPENED: num=%d, addr=0x%x",
  259. ph->iLoadId, _pbThemeData);
  260. #endif
  262. exit:
  263. if (FAILED(hr))
  264. {
  265. if (!fCleanupOnFailure)
  266. {
  267. Reset();
  268. }
  269. else
  270. {
  271. CloseFile();
  272. }
  273. }
  275. return hr;
  276. }
  277. //---------------------------------------------------------------------------
  278. HRESULT CUxThemeFile::ValidateThemeData(BOOL fFullCheck)
  279. {
  280. HRESULT hr = S_OK;
  281. THEMEHDR *hdr;
  283. if (! ValidateObj())
  284. {
  285. hr = MakeError32(ERROR_INTERNAL_ERROR);
  286. goto exit;
  287. }
  289. if (IsBadReadPtr(_pbThemeData, 4)) // sufficient test
  290. {
  291. hr = MakeError32(ERROR_BAD_FORMAT);
  292. goto exit;
  293. }
  295. hdr = (THEMEHDR *)_pbThemeData;
  297. if (0 != memcmp(hdr->szSignature, kszBeginCacheFileSignature, kcbBeginSignature)) // bad ptr
  298. {
  299. #ifdef DEBUG
  300. CHAR szSignature[kcbBeginSignature + 1];
  301. CopyMemory(szSignature, hdr->szSignature, kcbBeginSignature); // hdr->szSignature is not NULL-terminated
  302. szSignature[kcbBeginSignature] = '\0';
  304. Log(LOG_ERROR, L"ValidateThemeData(): bad header signature: %S", szSignature);
  305. #else
  306. Log(LOG_ERROR, L"ValidateThemeData(): bad header signature");
  307. #endif
  308. hr = MakeError32(ERROR_BAD_FORMAT);
  309. goto exit;
  310. }
  312. if (hdr->dwVersion != THEMEDATA_VERSION)
  313. {
  314. Log(LOG_ALWAYS, L"ValidateThemeData(): wrong theme data version: 0x%x", hdr->dwVersion);
  315. hr = MakeError32(ERROR_BAD_FORMAT);
  316. goto exit;
  317. }
  319. if (!IsReady()) // data not ready to use
  320. {
  321. Log(LOG_ALWAYS, L"ValidateThemeData(): data not READY - hdr->dwFlags=%x", hdr->dwFlags);
  322. hr = MakeError32(ERROR_BAD_FORMAT);
  323. goto exit;
  324. }
  326. if (!fFullCheck) // we are done
  327. goto exit;
  329. // Whistler:190200:Instead of checking the checksum, check the end of file signature, to avoid paging in everything
  330. if (0 != memcmp(_pbThemeData + hdr->dwTotalLength - kcbEndSignature, kszEndCacheFileSignature, kcbEndSignature))
  331. {
  332. Log(LOG_ERROR, L"ValidateThemeData(): bad end of file signature");
  333. hr = MakeError32(ERROR_BAD_FORMAT);
  334. goto exit;
  335. }
  337. exit:
  338. return hr;
  339. }
  340. //---------------------------------------------------------------------------
  341. void CUxThemeFile::CloseFile()
  342. {
  343. #ifdef DEBUG
  344. THEMEHDR *ph = (THEMEHDR *)_pbThemeData;
  345. if (ph != NULL)
  346. {
  347. Log(LOG_TMHANDLE, L"Share CLOSED: num=%d, addr=0x%x",
  348. ph->iLoadId, _pbThemeData);
  349. }
  350. #endif
  352. if (_hMemoryMap && HasStockObjects() && !IsGlobal())
  353. {
  354. CThemeServices::ClearStockObjects(_hMemoryMap);
  355. }
  357. if (_pbThemeData)
  358. UnmapViewOfFile(_pbThemeData);
  360. if (_hMemoryMap)
  361. CloseHandle(_hMemoryMap);
  363. Reset();
  364. }
  365. //---------------------------------------------------------------------------
  366. void CUxThemeFile::Reset()
  367. {
  368. _pbThemeData = NULL;
  369. _hMemoryMap = NULL;
  370. }
  371. //---------------------------------------------------------------------------
  372. BOOL CUxThemeFile::ValidateObj()
  373. {
  374. BOOL fValid = TRUE;
  376. //---- check object quickly ----
  377. if ( (! this)
  378. || (ULONGAT(_szHead) != 'fmht') // "thmf"
  379. || (ULONGAT(&_szHead[4]) != 'eli') // "ile"
  380. || (ULONGAT(_szTail) != 'dne')) // "end"
  381. {
  382. Log(LOG_ERROR, L"*** ERROR: Invalid CUxThemeFile Encountered, addr=0x%08x ****", this);
  383. fValid = FALSE;
  384. }
  386. return fValid;
  387. }
  388. //---------------------------------------------------------------------------
  390. HANDLE CUxThemeFile::Unload()
  391. {
  392. HANDLE handle = _hMemoryMap;
  394. if (_pbThemeData != NULL)
  395. {
  396. UnmapViewOfFile(_pbThemeData);
  397. }
  398. Reset(); // don't free handle
  399. return handle;
  400. }