archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Branch: master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
windows-server-2003/windows/appcompat/shims/external/printergetprtl2.cpp

294 lines
9.0 KiB
Raw Permalink Normal View History

commiting as it is
4 years ago
  1. /*++
  3. Copyright (c) 2000-2001 Microsoft Corporation
  5. Module Name:
  7. PrinterGetPrtL2.cpp
  9. Abstract:
  11. This is a shim that can be applied to those applications who
  12. assumed false upper-limit on the size of PRINTER_INFO_2 buffer
  13. GetPrinter returns. What the shim does is that when it detects
  14. the spooler returned PRINTER_INFO_2 buffer is over a certain
  15. limit that could break those apps, it truncates the private
  16. devmode part in PRINTER_INFO_2's pDevMode to retain only the
  17. public devmode, and returns the truncated PRINTER_INFO_2 buffer.
  19. History:
  21. 10/29/2001 fengy Created
  23. --*/
  25. #include "precomp.h"
  26. #include <stddef.h>
  28. IMPLEMENT_SHIM_BEGIN(PrinterGetPrtL2)
  29. #include "ShimHookMacro.h"
  31. APIHOOK_ENUM_BEGIN
  32. APIHOOK_ENUM_ENTRY(GetPrinterA)
  33. APIHOOK_ENUM_END
  35. #define ALIGN_PTR_UP(addr) ((ULONG_PTR)((ULONG_PTR)(addr) + (sizeof(ULONG_PTR) - 1)) & ~(sizeof(ULONG_PTR) - 1))
  37. //
  38. // The PRINTER_INFO_2 buffer size limit over which this shim
  39. // will perform the devmode truncation. The default value is
  40. // set to 8K here. App-specific limit values can be specified
  41. // as decimal numbers in the XML database as following:
  42. //
  43. // <SHIM NAME="PrinterGetPrtL2" COMMAND_LINE="1024"/>
  44. //
  45. LONG g_lTruncateLimit = 0x2000;
  47. //
  48. // Table of offsets to each string field in PRINTER_INFO_2A
  49. //
  50. DWORD g_dwStringOffsets[] = {offsetof(PRINTER_INFO_2A, pServerName),
  51. offsetof(PRINTER_INFO_2A, pPrinterName),
  52. offsetof(PRINTER_INFO_2A, pShareName),
  53. offsetof(PRINTER_INFO_2A, pPortName),
  54. offsetof(PRINTER_INFO_2A, pDriverName),
  55. offsetof(PRINTER_INFO_2A, pComment),
  56. offsetof(PRINTER_INFO_2A, pLocation),
  57. offsetof(PRINTER_INFO_2A, pSepFile),
  58. offsetof(PRINTER_INFO_2A, pPrintProcessor),
  59. offsetof(PRINTER_INFO_2A, pDatatype),
  60. offsetof(PRINTER_INFO_2A, pParameters),
  61. 0xFFFFFFFF};
  63. /*++
  65. This stub function intercepts all level 2 calls to GetPrinterA and detects
  66. if the spooler returned PRINTER_INFO_2 buffer is over the app limit. If so,
  67. it will truncate the private devmode of PRINTER_INFO_2's pDevMode.
  69. --*/
  70. BOOL
  71. APIHOOK(GetPrinterA)(
  72. HANDLE hPrinter,
  73. DWORD Level,
  74. LPBYTE pPrinter,
  75. DWORD cbBuf,
  76. LPDWORD pcbNeeded
  77. )
  78. {
  79. BOOL bNoTruncation = TRUE;
  80. BOOL bRet;
  82. if (Level == 2 && pPrinter != NULL && cbBuf != 0)
  83. {
  84. PRINTER_INFO_2A *pInfo2Full = NULL;
  85. DWORD cbFullNeeded = 0;
  87. //
  88. // Call spooler to get the full PRINTER_INFO_2 buffer size
  89. //
  90. bRet = ORIGINAL_API(GetPrinterA)(
  91. hPrinter,
  92. 2,
  93. NULL,
  94. 0,
  95. &cbFullNeeded);
  97. if (!bRet &&
  98. GetLastError() == ERROR_INSUFFICIENT_BUFFER &&
  99. cbFullNeeded > (DWORD)g_lTruncateLimit &&
  100. cbBuf >= cbFullNeeded &&
  101. (pInfo2Full = (PRINTER_INFO_2A *)malloc(cbFullNeeded)))
  102. {
  103. //
  104. // The full PRINTER_INFO_2 buffer size is over the app limit,
  105. // so we will first retrieve the full buffer into our internal
  106. // buffer.
  107. //
  108. // The condition "cbBuf >= cbFullNeeded" is here because if
  109. // that's not true, the original GetPrinterA's behavior is to
  110. // fail the call. We don't want to change that behavior.
  111. //
  112. bRet = ORIGINAL_API(GetPrinterA)(
  113. hPrinter,
  114. 2,
  115. (PBYTE)pInfo2Full,
  116. cbFullNeeded,
  117. &cbFullNeeded);
  119. if (bRet)
  120. {
  121. PRINTER_INFO_2A *pInfo2In;
  122. PBYTE pDest;
  123. INT i;
  125. //
  126. // Having the full PRINTER_INFO_2 structure in our internal
  127. // buffer, now we will copy it into app-allocated output buffer
  128. // by duplicating every thing except for the pDevMode. For
  129. // pDevMode we will only copy over the public devmode part,
  130. // because the bigger size of PRINTER_INFO_2 structure usually
  131. // are caused by big private devmode.
  132. //
  133. pInfo2In = (PRINTER_INFO_2A *)pPrinter;
  134. pDest = (PBYTE)pInfo2In + sizeof(PRINTER_INFO_2A);
  136. //
  137. // First copy over all the strings
  138. //
  139. i = 0;
  140. while (g_dwStringOffsets[i] != (-1))
  141. {
  142. PSTR pSrc;
  144. pSrc = *(PSTR *)((PBYTE)pInfo2Full + g_dwStringOffsets[i]);
  146. if (pSrc)
  147. {
  148. DWORD cbStrSize;
  150. cbStrSize = strlen(pSrc) + sizeof(CHAR);
  151. memcpy(pDest, pSrc, cbStrSize);
  153. *(PSTR *)((PBYTE)pInfo2In + g_dwStringOffsets[i]) = (PSTR)pDest;
  154. pDest += cbStrSize;
  155. }
  156. else
  157. {
  158. *(PSTR *)((PBYTE)pInfo2In + g_dwStringOffsets[i]) = NULL;
  159. }
  161. i++;
  162. }
  164. //
  165. // Then truncate the private devmode part by only copying over
  166. // public devmode
  167. //
  168. if (pInfo2Full->pDevMode)
  169. {
  170. pDest = (PBYTE)ALIGN_PTR_UP(pDest);
  171. memcpy(pDest, pInfo2Full->pDevMode, pInfo2Full->pDevMode->dmSize);
  172. pInfo2In->pDevMode = (DEVMODEA *)pDest;
  174. //
  175. // Set private devmode size to zero since it was just truncated
  176. //
  177. pInfo2In->pDevMode->dmDriverExtra = 0;
  179. pDest += pInfo2In->pDevMode->dmSize;
  180. }
  181. else
  182. {
  183. pInfo2In->pDevMode = NULL;
  184. }
  186. //
  187. // Then copy over the security descriptor
  188. //
  189. if (pInfo2Full->pSecurityDescriptor &&
  190. IsValidSecurityDescriptor(pInfo2Full->pSecurityDescriptor))
  191. {
  192. DWORD cbSDSize;
  194. cbSDSize = GetSecurityDescriptorLength(pInfo2Full->pSecurityDescriptor);
  196. pDest = (PBYTE)ALIGN_PTR_UP(pDest);
  197. memcpy(pDest, pInfo2Full->pSecurityDescriptor, cbSDSize);
  198. pInfo2In->pSecurityDescriptor = (PSECURITY_DESCRIPTOR)pDest;
  200. pDest += cbSDSize;
  201. }
  202. else
  203. {
  204. pInfo2In->pSecurityDescriptor = NULL;
  205. }
  207. //
  208. // Lastly copy over all the DWORD fields
  209. //
  210. pInfo2In->Attributes = pInfo2Full->Attributes;
  211. pInfo2In->Priority = pInfo2Full->Priority;
  212. pInfo2In->DefaultPriority = pInfo2Full->DefaultPriority;
  213. pInfo2In->StartTime = pInfo2Full->StartTime;
  214. pInfo2In->UntilTime = pInfo2Full->UntilTime;
  215. pInfo2In->Status = pInfo2Full->Status;
  216. pInfo2In->cJobs = pInfo2Full->cJobs;
  217. pInfo2In->AveragePPM = pInfo2Full->AveragePPM;
  219. //
  220. // We also need to set the correct return buffer size
  221. //
  222. if (pcbNeeded)
  223. {
  224. *pcbNeeded = pDest - pPrinter;
  225. }
  227. bNoTruncation = FALSE;
  229. DPFN(eDbgLevelInfo, "GetPrinterA truncated from %X to %X bytes",
  230. cbBuf, pDest - pPrinter);
  231. }
  232. }
  234. if (pInfo2Full)
  235. {
  236. free(pInfo2Full);
  237. pInfo2Full = NULL;
  238. }
  239. }
  241. if (bNoTruncation)
  242. {
  243. //
  244. // The shim doesn't need to do any truncation, or it has hit
  245. // an error when it was doing the truncation, so we will
  246. // just let the original API handle the call.
  247. //
  248. bRet = ORIGINAL_API(GetPrinterA)(
  249. hPrinter,
  250. Level,
  251. pPrinter,
  252. cbBuf,
  253. pcbNeeded);
  254. }
  256. return bRet;
  257. }
  259. /*++
  261. Handle DLL_PROCESS_ATTACH to retrieve command line parameter.
  263. --*/
  264. BOOL
  265. NOTIFY_FUNCTION(
  266. DWORD fdwReason
  267. )
  268. {
  269. if (fdwReason == DLL_PROCESS_ATTACH)
  270. {
  271. LONG lLimit = atol(COMMAND_LINE);
  273. if (lLimit > 0)
  274. {
  275. g_lTruncateLimit = lLimit;
  276. }
  277. }
  279. return TRUE;
  280. }
  282. /*++
  284. Register hooked functions
  286. --*/
  287. HOOK_BEGIN
  289. CALL_NOTIFY_FUNCTION
  290. APIHOOK_ENTRY(WINSPOOL.DRV, GetPrinterA);
  292. HOOK_END
  294. IMPLEMENT_SHIM_END