archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 5c6fe3db62
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '5c6fe3db62'
${ noResults }
windows-server-2003/sdktools/debuggers/imagehlp/bindi.c

1799 lines
70 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. /*++
  3. Copyright (c) 1994 Microsoft Corporation
  5. Module Name:
  7. bindi.c
  9. Abstract:
  10. Implementation for the BindImage API
  12. Author:
  14. Revision History:
  16. --*/
  18. #ifndef _STRSAFE_H_INCLUDED_
  19. #include <strsafe.h>
  20. #endif
  22. typedef struct _BOUND_FORWARDER_REFS {
  23. struct _BOUND_FORWARDER_REFS *Next;
  24. ULONG TimeDateStamp;
  25. LPSTR ModuleName;
  26. } BOUND_FORWARDER_REFS, *PBOUND_FORWARDER_REFS;
  28. typedef struct _IMPORT_DESCRIPTOR {
  29. struct _IMPORT_DESCRIPTOR *Next;
  30. LPSTR ModuleName;
  31. ULONG TimeDateStamp;
  32. USHORT NumberOfModuleForwarderRefs;
  33. PBOUND_FORWARDER_REFS Forwarders;
  34. } IMPORT_DESCRIPTOR, *PIMPORT_DESCRIPTOR;
  36. typedef struct _BINDP_PARAMETERS {
  37. DWORD Flags;
  38. BOOLEAN fNoUpdate;
  39. BOOLEAN fNewImports;
  40. LPSTR ImageName;
  41. LPSTR DllPath;
  42. LPSTR SymbolPath;
  43. PIMAGEHLP_STATUS_ROUTINE StatusRoutine;
  44. } BINDP_PARAMETERS, *PBINDP_PARAMETERS;
  46. BOOL
  47. BindpLookupThunk(
  48. PBINDP_PARAMETERS Parms,
  49. PIMAGE_THUNK_DATA ThunkName,
  50. PLOADED_IMAGE Image,
  51. PIMAGE_THUNK_DATA SnappedThunks,
  52. PIMAGE_THUNK_DATA FunctionAddress,
  53. PLOADED_IMAGE Dll,
  54. PIMAGE_EXPORT_DIRECTORY Exports,
  55. PIMPORT_DESCRIPTOR NewImport,
  56. LPSTR DllPath,
  57. PULONG *ForwarderChain
  58. );
  60. PVOID
  61. BindpRvaToVa(
  62. PBINDP_PARAMETERS Parms,
  63. ULONG Rva,
  64. PLOADED_IMAGE Image
  65. );
  67. ULONG64
  68. BindpRvaToTargetVa64(
  69. PBINDP_PARAMETERS Parms,
  70. ULONG Rva,
  71. PLOADED_IMAGE Image
  72. );
  74. ULONG
  75. BindpRvaToTargetVa32(
  76. PBINDP_PARAMETERS Parms,
  77. ULONG Rva,
  78. PLOADED_IMAGE Image
  79. );
  81. VOID
  82. BindpWalkAndProcessImports(
  83. PBINDP_PARAMETERS Parms,
  84. PLOADED_IMAGE Image,
  85. LPSTR DllPath,
  86. PBOOL ImageModified
  87. );
  89. BOOL
  90. BindImage(
  91. IN LPSTR ImageName,
  92. IN LPSTR DllPath,
  93. IN LPSTR SymbolPath
  94. )
  95. {
  96. return BindImageEx( 0,
  97. ImageName,
  98. DllPath,
  99. SymbolPath,
  100. NULL
  101. );
  102. }
  104. UCHAR BindpCapturedModuleNames[4096];
  105. LPSTR BindpEndCapturedModuleNames;
  107. LPSTR
  108. BindpCaptureImportModuleName(
  109. LPSTR DllName
  110. )
  111. {
  112. LPSTR s;
  114. s = (LPSTR) BindpCapturedModuleNames;
  115. if (BindpEndCapturedModuleNames == NULL) {
  116. *s = '\0';
  117. BindpEndCapturedModuleNames = s;
  118. }
  120. while (*s) {
  121. if (!_stricmp(s, DllName)) {
  122. return s;
  123. }
  125. s += strlen(s)+1;
  126. }
  128. StringCchCopy(s, 4095 - (s - (LPSTR)BindpCapturedModuleNames), DllName);
  129. BindpEndCapturedModuleNames = s + strlen(s) + 1;
  130. *BindpEndCapturedModuleNames = '\0';
  131. return s;
  132. }
  134. PIMPORT_DESCRIPTOR
  135. BindpAddImportDescriptor(
  136. PBINDP_PARAMETERS Parms,
  137. PIMPORT_DESCRIPTOR *NewImportDescriptor,
  138. PIMAGE_IMPORT_DESCRIPTOR ImportDescriptor,
  139. LPSTR ModuleName,
  140. PLOADED_IMAGE Dll
  141. )
  142. {
  143. PIMPORT_DESCRIPTOR p, *pp;
  145. if (!Parms->fNewImports) {
  146. return NULL;
  147. }
  149. pp = NewImportDescriptor;
  150. while (p = *pp) {
  151. if (!_stricmp( p->ModuleName, ModuleName )) {
  152. return p;
  153. }
  155. pp = &p->Next;
  156. }
  157. #ifdef STANDALONE_BIND
  158. p = (PIMPORT_DESCRIPTOR) calloc( sizeof( *p ), 1);
  159. #else
  160. p = (PIMPORT_DESCRIPTOR) MemAlloc( sizeof( *p ) );
  161. #endif
  162. if (p != NULL) {
  163. if (Dll != NULL) {
  164. p->TimeDateStamp = ((PIMAGE_NT_HEADERS32)Dll->FileHeader)->FileHeader.TimeDateStamp;
  165. }
  166. p->ModuleName = BindpCaptureImportModuleName( ModuleName );
  167. *pp = p;
  168. }
  169. else
  170. if (Parms->StatusRoutine != NULL) {
  171. if (Parms->Flags & BIND_REPORT_64BIT_VA)
  172. ((PIMAGEHLP_STATUS_ROUTINE64)(Parms->StatusRoutine)) ( BindOutOfMemory, NULL, NULL, 0, sizeof( *p ) );
  173. else
  174. (Parms->StatusRoutine)( BindOutOfMemory, NULL, NULL, 0, sizeof( *p ) );
  175. }
  177. return p;
  178. }
  181. ULONG64
  182. BindpAddForwarderReference(
  183. PBINDP_PARAMETERS Parms,
  184. LPSTR ImageName,
  185. LPSTR ImportName,
  186. PIMPORT_DESCRIPTOR NewImportDescriptor,
  187. LPSTR DllPath,
  188. PUCHAR ForwarderString,
  189. PBOOL BoundForwarder
  190. )
  191. {
  192. CHAR DllName[ MAX_PATH + 1 ];
  193. PUCHAR s;
  194. PLOADED_IMAGE Dll;
  195. ULONG cb;
  196. USHORT OrdinalNumber;
  197. USHORT HintIndex;
  198. ULONG ExportSize;
  199. PIMAGE_EXPORT_DIRECTORY Exports;
  200. ULONG64 ExportBase;
  201. PULONG NameTableBase;
  202. PUSHORT NameOrdinalTableBase;
  203. PULONG FunctionTableBase;
  204. LPSTR NameTableName;
  205. ULONG64 ForwardedAddress;
  206. PBOUND_FORWARDER_REFS p, *pp;
  208. *BoundForwarder = FALSE;
  209. BindAnotherForwarder:
  211. //
  212. // A forwarder string looks like "dllname.apiname". See what we've got.
  213. //
  215. s = ForwarderString;
  216. while (*s && *s != '.') {
  217. s++;
  218. }
  219. if (*s != '.') {
  220. // Missing period - malformed.
  221. return (ULONG64)ForwarderString;
  222. }
  223. cb = (ULONG) (s - ForwarderString);
  224. if (cb >= MAX_PATH) {
  225. // Name of dll is too long - malformed.
  226. return (ULONG64)ForwarderString;
  227. }
  228. strncpy( DllName, (LPSTR) ForwarderString, cb );
  229. DllName[ cb ] = '\0';
  230. StringCchCat( DllName, MAX_PATH, ".DLL" );
  232. //
  233. // Got the dll name - try loading.
  234. //
  236. Dll = ImageLoad( DllName, DllPath );
  237. if (!Dll) {
  238. // No luck - exit.
  239. return (ULONG64)ForwarderString;
  240. }
  242. //
  243. // Look for exports in the loaded image.
  244. //
  246. Exports = (PIMAGE_EXPORT_DIRECTORY)ImageDirectoryEntryToData( Dll->MappedAddress, FALSE, IMAGE_DIRECTORY_ENTRY_EXPORT, &ExportSize );
  247. if (!Exports) {
  248. // No luck - exit.
  249. return (ULONG64)ForwarderString;
  250. }
  252. //
  253. // Advance past the '.' and let's see what the api name is.
  254. //
  256. s += 1;
  258. if ( *s == '#' ) {
  259. // Binding for ordinal forwarders
  261. OrdinalNumber = (atoi((PCHAR)s + 1)) - (USHORT)Exports->Base;
  263. if (OrdinalNumber >= Exports->NumberOfFunctions) {
  264. return (ULONG64)ForwarderString;
  265. }
  266. } else {
  267. // Regular binding for named forwarders
  269. OrdinalNumber = 0xFFFF;
  270. }
  272. NameTableBase = (PULONG) BindpRvaToVa( Parms, Exports->AddressOfNames, Dll );
  273. NameOrdinalTableBase = (PUSHORT) BindpRvaToVa( Parms, Exports->AddressOfNameOrdinals, Dll );
  274. FunctionTableBase = (PULONG) BindpRvaToVa( Parms, Exports->AddressOfFunctions, Dll );
  276. if (OrdinalNumber == 0xFFFF) {
  277. for ( HintIndex = 0; HintIndex < Exports->NumberOfNames; HintIndex++){
  278. NameTableName = (LPSTR) BindpRvaToVa( Parms, NameTableBase[HintIndex], Dll );
  279. if ( NameTableName ) {
  280. OrdinalNumber = NameOrdinalTableBase[HintIndex];
  282. if (!strcmp((PCHAR)s, NameTableName)) {
  283. break;
  284. }
  285. }
  286. }
  288. if (HintIndex >= Exports->NumberOfNames) {
  289. return (ULONG64)ForwarderString;
  290. }
  291. }
  293. do {
  294. pp = &NewImportDescriptor->Forwarders;
  296. // See if we've already added this dll to the list of forwarder dll's
  298. while (p = *pp) {
  299. if (!_stricmp(DllName, p->ModuleName)) {
  300. break;
  301. }
  303. pp = &p->Next;
  304. }
  306. if (!p) {
  308. // Nope - allocate a new record and add it to the list.
  310. #ifdef STANDALONE_BIND
  311. p = (PBOUND_FORWARDER_REFS) calloc( sizeof( *p ), 1 );
  312. #else
  313. p = (PBOUND_FORWARDER_REFS) MemAlloc( sizeof( *p ) );
  314. #endif
  315. if (!p) {
  317. // Unable to allocate a new import descriptor - can't bind this one.
  319. if (Parms->StatusRoutine) {
  320. if (Parms->Flags & BIND_REPORT_64BIT_VA)
  321. ((PIMAGEHLP_STATUS_ROUTINE64)(Parms->StatusRoutine)) ( BindOutOfMemory, NULL, NULL, 0, sizeof( *p ) );
  322. else
  323. (Parms->StatusRoutine)( BindOutOfMemory, NULL, NULL, 0, sizeof( *p ) );
  324. }
  326. return (ULONG64)ForwarderString;
  328. } else {
  330. // Save the timestamp and module name
  332. p->ModuleName = BindpCaptureImportModuleName( DllName );
  333. p->TimeDateStamp = Dll->FileHeader->FileHeader.TimeDateStamp;
  334. *pp = p;
  335. NewImportDescriptor->NumberOfModuleForwarderRefs += 1;
  336. }
  337. }
  339. // Convert to real address.
  341. ForwardedAddress = FunctionTableBase[OrdinalNumber];
  342. if (Dll->FileHeader->OptionalHeader.Magic == IMAGE_NT_OPTIONAL_HDR64_MAGIC) {
  343. ForwardedAddress += ((PIMAGE_NT_HEADERS64)Dll->FileHeader)->OptionalHeader.ImageBase;
  344. } else {
  345. ForwardedAddress += ((PIMAGE_NT_HEADERS32)Dll->FileHeader)->OptionalHeader.ImageBase;
  346. }
  348. if (Parms->StatusRoutine) {
  349. if (Parms->Flags & BIND_REPORT_64BIT_VA)
  350. ((PIMAGEHLP_STATUS_ROUTINE64)(Parms->StatusRoutine)) (BindForwarder64,
  351. ImageName,
  352. ImportName,
  353. ForwardedAddress,
  354. (ULONG_PTR)ForwarderString
  355. );
  356. else
  357. (Parms->StatusRoutine)( BindForwarder,
  358. ImageName,
  359. ImportName,
  360. (ULONG_PTR)ForwardedAddress,
  361. (ULONG_PTR)ForwarderString
  362. );
  363. }
  365. //
  366. // Calculate the inmemory export table for this dll to see if the forwarded
  367. // address we have is inside the new export table. TRUE is passed for MappedAsImage
  368. // parm to ImageDirectoryEntryToData so we can get a real VA.
  369. //
  371. ExportBase = (ULONG64)ImageDirectoryEntryToData(Dll->MappedAddress, TRUE, IMAGE_DIRECTORY_ENTRY_EXPORT, &ExportSize);
  373. //
  374. // Convert mapped virtual address to real virtual address.
  375. //
  377. ExportBase -= (ULONG64) Dll->MappedAddress;
  379. if (Dll->FileHeader->OptionalHeader.Magic == IMAGE_NT_OPTIONAL_HDR64_MAGIC) {
  380. ExportBase += ((PIMAGE_NT_HEADERS64)Dll->FileHeader)->OptionalHeader.ImageBase;
  381. } else {
  382. ExportBase += ((PIMAGE_NT_HEADERS32)Dll->FileHeader)->OptionalHeader.ImageBase;
  383. }
  385. if ((ForwardedAddress >= ExportBase) && (ForwardedAddress < (ExportBase + ExportSize))) {
  387. // Address is inside the export table - convert to string and try again.
  389. ForwarderString = (PUCHAR) BindpRvaToVa(Parms, FunctionTableBase[OrdinalNumber],Dll);
  390. goto BindAnotherForwarder;
  391. } else {
  392. *BoundForwarder = TRUE;
  393. break;
  394. }
  395. }
  396. while (0);
  398. return ForwardedAddress;
  399. }
  402. PIMAGE_BOUND_IMPORT_DESCRIPTOR
  403. BindpCreateNewImportSection(
  404. PBINDP_PARAMETERS Parms,
  405. PIMPORT_DESCRIPTOR *NewImportDescriptor,
  406. PULONG NewImportsSize
  407. )
  408. {
  409. ULONG cbString, cbStruct;
  410. PIMPORT_DESCRIPTOR p, *pp;
  411. PBOUND_FORWARDER_REFS p1, *pp1;
  412. LPSTR CapturedStrings;
  413. PIMAGE_BOUND_IMPORT_DESCRIPTOR NewImports, NewImport;
  414. PIMAGE_BOUND_FORWARDER_REF NewForwarder;
  417. *NewImportsSize = 0;
  418. cbString = 0;
  419. cbStruct = 0;
  420. pp = NewImportDescriptor;
  421. while (p = *pp) {
  422. cbStruct += sizeof( IMAGE_BOUND_IMPORT_DESCRIPTOR );
  423. pp1 = &p->Forwarders;
  424. while (p1 = *pp1) {
  425. cbStruct += sizeof( IMAGE_BOUND_FORWARDER_REF );
  426. pp1 = &p1->Next;
  427. }
  429. pp = &p->Next;
  430. }
  431. if (cbStruct == 0) {
  432. BindpEndCapturedModuleNames = NULL;
  433. return NULL;
  434. }
  435. cbStruct += sizeof(IMAGE_BOUND_IMPORT_DESCRIPTOR); // Room for terminating zero entry
  436. cbString = (ULONG) (BindpEndCapturedModuleNames - (LPSTR) BindpCapturedModuleNames);
  437. BindpEndCapturedModuleNames = NULL;
  438. *NewImportsSize = cbStruct+((cbString + sizeof(ULONG) - 1) & ~(sizeof(ULONG)-1));
  439. #ifdef STANDALONE_BIND
  440. NewImports = (PIMAGE_BOUND_IMPORT_DESCRIPTOR) calloc( *NewImportsSize, 1 );
  441. #else
  442. NewImports = (PIMAGE_BOUND_IMPORT_DESCRIPTOR) MemAlloc( *NewImportsSize );
  443. #endif
  444. if (NewImports != NULL) {
  445. CapturedStrings = (LPSTR)NewImports + cbStruct;
  446. memcpy(CapturedStrings, BindpCapturedModuleNames, cbString);
  448. NewImport = NewImports;
  449. pp = NewImportDescriptor;
  450. while (p = *pp) {
  451. NewImport->TimeDateStamp = p->TimeDateStamp;
  452. NewImport->OffsetModuleName = (USHORT)(cbStruct + (p->ModuleName - (LPSTR) BindpCapturedModuleNames));
  453. NewImport->NumberOfModuleForwarderRefs = p->NumberOfModuleForwarderRefs;
  455. NewForwarder = (PIMAGE_BOUND_FORWARDER_REF)(NewImport+1);
  456. pp1 = &p->Forwarders;
  457. while (p1 = *pp1) {
  458. NewForwarder->TimeDateStamp = p1->TimeDateStamp;
  459. NewForwarder->OffsetModuleName = (USHORT)(cbStruct + (p1->ModuleName - (LPSTR) BindpCapturedModuleNames));
  460. NewForwarder += 1;
  461. pp1 = &p1->Next;
  462. }
  463. NewImport = (PIMAGE_BOUND_IMPORT_DESCRIPTOR)NewForwarder;
  465. pp = &p->Next;
  466. }
  467. }
  468. else
  469. if (Parms->StatusRoutine != NULL) {
  470. if (Parms->Flags & BIND_REPORT_64BIT_VA)
  471. ((PIMAGEHLP_STATUS_ROUTINE64)(Parms->StatusRoutine)) ( BindOutOfMemory, NULL, NULL, 0, *NewImportsSize );
  472. else
  473. (Parms->StatusRoutine)( BindOutOfMemory, NULL, NULL, 0, *NewImportsSize );
  474. }
  476. pp = NewImportDescriptor;
  477. while ((p = *pp) != NULL) {
  478. *pp = p->Next;
  479. pp1 = &p->Forwarders;
  480. while ((p1 = *pp1) != NULL) {
  481. *pp1 = p1->Next;
  482. #ifdef STANDALONE_BIND
  483. free(p1);
  484. #else
  485. MemFree(p1);
  486. #endif
  487. }
  489. #ifdef STANDALONE_BIND
  490. free(p);
  491. #else
  492. MemFree(p);
  493. #endif
  494. }
  496. return NewImports;
  497. }
  499. BOOL
  500. BindpExpandImageFileHeaders(
  501. PBINDP_PARAMETERS Parms,
  502. PLOADED_IMAGE Dll,
  503. ULONG NewSizeOfHeaders
  504. )
  505. {
  506. HANDLE hMappedFile;
  507. LPVOID lpMappedAddress;
  508. DWORD dwFileSizeLow, dwOldFileSize;
  509. DWORD dwFileSizeHigh;
  510. DWORD dwSizeDelta;
  511. PIMAGE_SECTION_HEADER Section;
  512. ULONG SectionNumber;
  513. PIMAGE_DEBUG_DIRECTORY DebugDirectories;
  514. ULONG DebugDirectoriesSize;
  515. ULONG OldSizeOfHeaders;
  516. PIMAGE_FILE_HEADER FileHeader;
  518. dwFileSizeLow = GetFileSize( Dll->hFile, &dwFileSizeHigh );
  519. if (dwFileSizeLow == 0xFFFFFFFF || dwFileSizeHigh != 0) {
  520. return FALSE;
  521. }
  523. FileHeader = &((PIMAGE_NT_HEADERS32)Dll->FileHeader)->FileHeader;
  525. OldSizeOfHeaders = Dll->FileHeader->OptionalHeader.Magic == IMAGE_NT_OPTIONAL_HDR64_MAGIC ?
  526. ((PIMAGE_NT_HEADERS64)Dll->FileHeader)->OptionalHeader.SizeOfHeaders :
  527. ((PIMAGE_NT_HEADERS32)Dll->FileHeader)->OptionalHeader.SizeOfHeaders;
  528. dwOldFileSize = dwFileSizeLow;
  529. dwSizeDelta = NewSizeOfHeaders - OldSizeOfHeaders;
  530. dwFileSizeLow += dwSizeDelta;
  532. hMappedFile = CreateFileMapping(Dll->hFile,
  533. NULL,
  534. PAGE_READWRITE,
  535. dwFileSizeHigh,
  536. dwFileSizeLow,
  537. NULL
  538. );
  539. if (!hMappedFile) {
  540. return FALSE;
  541. }
  544. FlushViewOfFile(Dll->MappedAddress, Dll->SizeOfImage);
  545. UnmapViewOfFile(Dll->MappedAddress);
  546. lpMappedAddress = MapViewOfFileEx(hMappedFile,
  547. FILE_MAP_WRITE,
  548. 0,
  549. 0,
  550. 0,
  551. Dll->MappedAddress
  552. );
  553. if (!lpMappedAddress) {
  554. lpMappedAddress = MapViewOfFileEx(hMappedFile,
  555. FILE_MAP_WRITE,
  556. 0,
  557. 0,
  558. 0,
  559. 0
  560. );
  561. }
  563. CloseHandle(hMappedFile);
  565. if (lpMappedAddress != Dll->MappedAddress) {
  566. Dll->MappedAddress = (PUCHAR) lpMappedAddress;
  567. CalculateImagePtrs(Dll);
  568. FileHeader = &((PIMAGE_NT_HEADERS32)Dll->FileHeader)->FileHeader;
  569. }
  571. if (Dll->SizeOfImage != dwFileSizeLow) {
  572. Dll->SizeOfImage = dwFileSizeLow;
  573. }
  575. DebugDirectories = (PIMAGE_DEBUG_DIRECTORY)ImageDirectoryEntryToData(
  576. (PVOID)Dll->MappedAddress,
  577. FALSE,
  578. IMAGE_DIRECTORY_ENTRY_DEBUG,
  579. &DebugDirectoriesSize
  580. );
  582. if (DebugDirectoryIsUseful(DebugDirectories, DebugDirectoriesSize)) {
  583. while (DebugDirectoriesSize != 0) {
  584. DebugDirectories->PointerToRawData += dwSizeDelta;
  585. DebugDirectories += 1;
  586. DebugDirectoriesSize -= sizeof( *DebugDirectories );
  587. }
  588. }
  590. if (Dll->FileHeader->OptionalHeader.Magic == IMAGE_NT_OPTIONAL_HDR64_MAGIC) {
  591. ((PIMAGE_NT_HEADERS64)Dll->FileHeader)->OptionalHeader.SizeOfHeaders = NewSizeOfHeaders;
  592. } else {
  593. ((PIMAGE_NT_HEADERS32)Dll->FileHeader)->OptionalHeader.SizeOfHeaders = NewSizeOfHeaders;
  594. }
  595. if (FileHeader->PointerToSymbolTable != 0) {
  596. // Only adjust if it's already set
  598. FileHeader->PointerToSymbolTable += dwSizeDelta;
  599. }
  600. Section = Dll->Sections;
  601. for (SectionNumber=0; SectionNumber<FileHeader->NumberOfSections; SectionNumber++) {
  602. if (Section->PointerToRawData != 0) {
  603. Section->PointerToRawData += dwSizeDelta;
  604. }
  605. if (Section->PointerToRelocations != 0) {
  606. Section->PointerToRelocations += dwSizeDelta;
  607. }
  608. if (Section->PointerToLinenumbers != 0) {
  609. Section->PointerToLinenumbers += dwSizeDelta;
  610. }
  611. Section += 1;
  612. }
  614. memmove((LPSTR)lpMappedAddress + NewSizeOfHeaders,
  615. (LPSTR)lpMappedAddress + OldSizeOfHeaders,
  616. dwOldFileSize - OldSizeOfHeaders
  617. );
  619. if (Parms->StatusRoutine != NULL) {
  620. if (Parms->Flags & BIND_REPORT_64BIT_VA)
  621. ((PIMAGEHLP_STATUS_ROUTINE64)(Parms->StatusRoutine)) ( BindExpandFileHeaders, Dll->ModuleName, NULL, 0, NewSizeOfHeaders);
  622. else
  623. (Parms->StatusRoutine)( BindExpandFileHeaders, Dll->ModuleName, NULL, 0, NewSizeOfHeaders );
  624. }
  626. return TRUE;
  627. }
  629. BOOL
  630. BindImageEx(
  631. IN DWORD Flags,
  632. IN LPSTR ImageName,
  633. IN LPSTR DllPath,
  634. IN LPSTR SymbolPath,
  635. IN PIMAGEHLP_STATUS_ROUTINE StatusRoutine
  636. )
  637. {
  638. BINDP_PARAMETERS Parms;
  639. LOADED_IMAGE LoadedImageBuffer;
  640. PLOADED_IMAGE LoadedImage;
  641. ULONG CheckSum;
  642. ULONG HeaderSum;
  643. BOOL fSymbolsAlreadySplit, fRC;
  644. SYSTEMTIME SystemTime;
  645. FILETIME LastWriteTime;
  646. BOOL ImageModified;
  647. DWORD OldChecksum;
  648. CHAR DebugFileName[ MAX_PATH + 1 ];
  649. CHAR DebugFilePath[ MAX_PATH ];
  650. PIMAGE_OPTIONAL_HEADER32 OptionalHeader32 = NULL;
  651. PIMAGE_OPTIONAL_HEADER64 OptionalHeader64 = NULL;
  652. PIMAGE_FILE_HEADER FileHeader;
  654. Parms.Flags = Flags;
  655. if (Flags & BIND_NO_BOUND_IMPORTS) {
  656. Parms.fNewImports = FALSE;
  657. } else {
  658. Parms.fNewImports = TRUE;
  659. }
  660. if (Flags & BIND_NO_UPDATE) {
  661. Parms.fNoUpdate = TRUE;
  662. } else {
  663. Parms.fNoUpdate = FALSE;
  664. }
  665. Parms.ImageName = ImageName;
  666. Parms.DllPath = DllPath;
  667. Parms.SymbolPath = SymbolPath;
  668. Parms.StatusRoutine = StatusRoutine;
  670. fRC = FALSE; // Assume we'll fail to bind
  672. __try {
  674. // Map and load the image
  676. LoadedImage = &LoadedImageBuffer;
  677. memset( LoadedImage, 0, sizeof( *LoadedImage ) );
  678. if (MapAndLoad( ImageName, DllPath, LoadedImage, TRUE, Parms.fNoUpdate )) {
  679. LoadedImage->ModuleName = ImageName;
  681. //
  682. // Now locate and walk through and process the images imports
  683. //
  684. if (LoadedImage->FileHeader != NULL &&
  685. ((Flags & BIND_ALL_IMAGES) || (!LoadedImage->fSystemImage)) ) {
  687. FileHeader = &((PIMAGE_NT_HEADERS32)LoadedImage->FileHeader)->FileHeader;
  688. OptionalHeadersFromNtHeaders((PIMAGE_NT_HEADERS32)LoadedImage->FileHeader,
  689. &OptionalHeader32,
  690. &OptionalHeader64);
  692. if (OPTIONALHEADER(DllCharacteristics) & IMAGE_DLLCHARACTERISTICS_NO_BIND) {
  693. goto NoBind;
  694. }
  696. {
  697. DWORD dwDataSize;
  698. PVOID pData = ImageDirectoryEntryToData(
  699. LoadedImage->MappedAddress,
  700. FALSE,
  701. IMAGE_DIRECTORY_ENTRY_SECURITY,
  702. &dwDataSize
  703. );
  705. if (pData || dwDataSize) {
  706. // Signed - can't bind it.
  707. goto NoBind;
  708. }
  710. pData = ImageDirectoryEntryToData(
  711. LoadedImage->MappedAddress,
  712. FALSE,
  713. IMAGE_DIRECTORY_ENTRY_COM_DESCRIPTOR,
  714. &dwDataSize
  715. );
  717. if (pData || dwDataSize) {
  718. // COR header found - see if it's strong signed or contains IL only
  719. if ((((IMAGE_COR20_HEADER *)pData)->Flags & COMIMAGE_FLAGS_STRONGNAMESIGNED) ||
  720. (((IMAGE_COR20_HEADER *)pData)->Flags & COMIMAGE_FLAGS_ILONLY))
  721. {
  722. goto NoBind;
  723. }
  724. }
  725. }
  728. BindpWalkAndProcessImports(
  729. &Parms,
  730. LoadedImage,
  731. DllPath,
  732. &ImageModified
  733. );
  735. //
  736. // If the file is being updated, then recompute the checksum.
  737. // and update image and possibly stripped symbol file.
  738. //
  740. if (!Parms.fNoUpdate && ImageModified &&
  741. (LoadedImage->hFile != INVALID_HANDLE_VALUE)) {
  742. // The image may have been moved as part of the growing it to add space for the
  743. // bound imports. Recalculate the file and optional headers.
  744. FileHeader = &((PIMAGE_NT_HEADERS32)LoadedImage->FileHeader)->FileHeader;
  745. OptionalHeadersFromNtHeaders((PIMAGE_NT_HEADERS32)LoadedImage->FileHeader,
  746. &OptionalHeader32,
  747. &OptionalHeader64);
  749. if ( (FileHeader->Characteristics & IMAGE_FILE_DEBUG_STRIPPED) &&
  750. (SymbolPath != NULL) ) {
  751. PIMAGE_DEBUG_DIRECTORY DebugDirectories;
  752. ULONG DebugDirectoriesSize;
  753. PIMAGE_DEBUG_MISC MiscDebug;
  755. fSymbolsAlreadySplit = TRUE;
  756. StringCchCopy( DebugFileName, MAX_PATH, ImageName );
  757. DebugDirectories = (PIMAGE_DEBUG_DIRECTORY)ImageDirectoryEntryToData(
  758. LoadedImage->MappedAddress,
  759. FALSE,
  760. IMAGE_DIRECTORY_ENTRY_DEBUG,
  761. &DebugDirectoriesSize
  762. );
  763. if (DebugDirectoryIsUseful(DebugDirectories, DebugDirectoriesSize)) {
  764. while (DebugDirectoriesSize != 0) {
  765. if (DebugDirectories->Type == IMAGE_DEBUG_TYPE_MISC) {
  766. MiscDebug = (PIMAGE_DEBUG_MISC)
  767. ((PCHAR)LoadedImage->MappedAddress +
  768. DebugDirectories->PointerToRawData
  769. );
  770. StringCchCopy( DebugFileName, MAX_PATH, (PCHAR) MiscDebug->Data );
  771. break;
  772. } else {
  773. DebugDirectories += 1;
  774. DebugDirectoriesSize -= sizeof( *DebugDirectories );
  775. }
  776. }
  777. }
  778. } else {
  779. fSymbolsAlreadySplit = FALSE;
  780. }
  782. OldChecksum = OPTIONALHEADER(CheckSum);
  783. CheckSumMappedFile(
  784. (PVOID)LoadedImage->MappedAddress,
  785. GetFileSize(LoadedImage->hFile, NULL),
  786. &HeaderSum,
  787. &CheckSum
  788. );
  790. OPTIONALHEADER_LV(CheckSum) = CheckSum;
  791. FlushViewOfFile(LoadedImage->MappedAddress, LoadedImage->SizeOfImage);
  793. if (fSymbolsAlreadySplit) {
  794. if ( UpdateDebugInfoFileEx(ImageName,
  795. SymbolPath,
  796. DebugFilePath,
  797. (PIMAGE_NT_HEADERS32)(LoadedImage->FileHeader),
  798. OldChecksum)) {
  799. if (GetLastError() == ERROR_INVALID_DATA) {
  800. if (Parms.StatusRoutine != NULL) {
  801. if (Parms.Flags & BIND_REPORT_64BIT_VA)
  802. ((PIMAGEHLP_STATUS_ROUTINE64)(Parms.StatusRoutine)) ( BindMismatchedSymbols,
  803. LoadedImage->ModuleName,
  804. NULL,
  805. 0,
  806. (ULONG_PTR)DebugFileName
  807. );
  808. else
  809. (Parms.StatusRoutine)( BindMismatchedSymbols,
  810. LoadedImage->ModuleName,
  811. NULL,
  812. 0,
  813. (ULONG_PTR)DebugFileName
  814. );
  815. }
  816. }
  817. } else {
  818. if (Parms.StatusRoutine != NULL) {
  819. if (Parms.Flags & BIND_REPORT_64BIT_VA)
  820. ((PIMAGEHLP_STATUS_ROUTINE64)(Parms.StatusRoutine)) ( BindSymbolsNotUpdated,
  821. LoadedImage->ModuleName,
  822. NULL,
  823. 0,
  824. (ULONG_PTR)DebugFileName
  825. );
  826. else
  827. (Parms.StatusRoutine)( BindSymbolsNotUpdated,
  828. LoadedImage->ModuleName,
  829. NULL,
  830. 0,
  831. (ULONG_PTR)DebugFileName
  832. );
  833. }
  834. }
  835. }
  837. GetSystemTime(&SystemTime);
  838. if (SystemTimeToFileTime( &SystemTime, &LastWriteTime )) {
  839. SetFileTime( LoadedImage->hFile, NULL, NULL, &LastWriteTime );
  840. }
  841. }
  842. }
  844. NoBind:
  845. fRC = TRUE;
  846. }
  847. } __except (EXCEPTION_EXECUTE_HANDLER) {
  848. // Nothing to do...
  849. }
  851. if (LoadedImage->MappedAddress) {
  852. UnmapViewOfFile( LoadedImage->MappedAddress );
  853. }
  854. if (LoadedImage->hFile != INVALID_HANDLE_VALUE) {
  855. CloseHandle( LoadedImage->hFile );
  856. }
  858. if (!(Flags & BIND_CACHE_IMPORT_DLLS)) {
  859. UnloadAllImages();
  860. }
  862. return (fRC);
  863. }
  867. BOOL
  868. BindpLookupThunk64(
  869. PBINDP_PARAMETERS Parms,
  870. PIMAGE_THUNK_DATA64 ThunkName,
  871. PLOADED_IMAGE Image,
  872. PIMAGE_THUNK_DATA64 SnappedThunks,
  873. PIMAGE_THUNK_DATA64 FunctionAddress,
  874. PLOADED_IMAGE Dll,
  875. PIMAGE_EXPORT_DIRECTORY Exports,
  876. PIMPORT_DESCRIPTOR NewImport,
  877. LPSTR DllPath,
  878. PULONG *ForwarderChain
  879. )
  880. {
  881. BOOL Ordinal;
  882. USHORT OrdinalNumber;
  883. PULONG NameTableBase;
  884. PUSHORT NameOrdinalTableBase;
  885. PULONG FunctionTableBase;
  886. PIMAGE_IMPORT_BY_NAME ImportName;
  887. USHORT HintIndex;
  888. LPSTR NameTableName;
  889. ULONG64 ExportsBase;
  890. ULONG ExportSize;
  891. UCHAR NameBuffer[ 32 ];
  892. PIMAGE_OPTIONAL_HEADER64 OptionalHeader = NULL;
  893. PIMAGE_OPTIONAL_HEADER64 DllOptionalHeader = NULL;
  895. NameTableBase = (PULONG) BindpRvaToVa( Parms, Exports->AddressOfNames, Dll );
  896. NameOrdinalTableBase = (PUSHORT) BindpRvaToVa( Parms, Exports->AddressOfNameOrdinals, Dll );
  897. FunctionTableBase = (PULONG) BindpRvaToVa( Parms, Exports->AddressOfFunctions, Dll );
  899. if (!FunctionTableBase) {
  900. return FALSE;
  901. }
  903. OptionalHeader = &((PIMAGE_NT_HEADERS64)Image->FileHeader)->OptionalHeader;
  905. DllOptionalHeader = &((PIMAGE_NT_HEADERS64)Dll->FileHeader)->OptionalHeader;
  907. //
  908. // Determine if snap is by name, or by ordinal
  909. //
  911. Ordinal = (BOOL)IMAGE_SNAP_BY_ORDINAL64(ThunkName->u1.Ordinal);
  913. if (Ordinal) {
  914. UCHAR szOrdinal[8];
  915. OrdinalNumber = (USHORT)(IMAGE_ORDINAL64(ThunkName->u1.Ordinal) - Exports->Base);
  916. if ( (ULONG)OrdinalNumber >= Exports->NumberOfFunctions ) {
  917. return FALSE;
  918. }
  919. ImportName = (PIMAGE_IMPORT_BY_NAME)NameBuffer;
  920. StringCchCopy((PCHAR) ImportName->Name, 31, "Ordinal");
  921. StringCchCat((PCHAR) ImportName->Name, 31, _ultoa((ULONG) OrdinalNumber, (LPSTR) szOrdinal, 16));
  922. } else {
  923. ImportName = (PIMAGE_IMPORT_BY_NAME)BindpRvaToVa(
  924. Parms,
  925. (ULONG)(ULONG64)(ThunkName->u1.AddressOfData),
  926. Image
  927. );
  928. if (!ImportName || !NameTableBase) {
  929. return FALSE;
  930. }
  932. //
  933. // now check to see if the hint index is in range. If it
  934. // is, then check to see if it matches the function at
  935. // the hint. If all of this is true, then we can snap
  936. // by hint. Otherwise need to scan the name ordinal table
  937. //
  939. OrdinalNumber = (USHORT)(Exports->NumberOfFunctions+1);
  940. HintIndex = ImportName->Hint;
  941. if ((ULONG)HintIndex < Exports->NumberOfNames ) {
  942. NameTableName = (LPSTR) BindpRvaToVa( Parms, NameTableBase[HintIndex], Dll );
  943. if ( NameTableName ) {
  944. if ( !strcmp((PCHAR)ImportName->Name, NameTableName) ) {
  945. OrdinalNumber = NameOrdinalTableBase[HintIndex];
  946. }
  947. }
  948. }
  950. if ((ULONG)OrdinalNumber >= Exports->NumberOfFunctions) {
  951. for (HintIndex = 0; HintIndex < Exports->NumberOfNames; HintIndex++) {
  952. NameTableName = (LPSTR) BindpRvaToVa( Parms, NameTableBase[HintIndex], Dll );
  953. if (NameTableName) {
  954. if (!strcmp( (PCHAR)ImportName->Name, NameTableName )) {
  955. OrdinalNumber = NameOrdinalTableBase[HintIndex];
  956. break;
  957. }
  958. }
  959. }
  961. if ((ULONG)OrdinalNumber >= Exports->NumberOfFunctions) {
  962. return FALSE;
  963. }
  964. }
  965. }
  967. FunctionAddress->u1.Function = (ULONGLONG)(FunctionTableBase[OrdinalNumber] + DllOptionalHeader->ImageBase);
  969. ExportsBase = (ULONG64)((ULONG_PTR)ImageDirectoryEntryToData(Dll->MappedAddress, TRUE, IMAGE_DIRECTORY_ENTRY_EXPORT, &ExportSize)
  970. -
  971. (ULONG_PTR)Dll->MappedAddress);
  973. ExportsBase += DllOptionalHeader->ImageBase;
  975. if ((FunctionAddress->u1.Function > ExportsBase) && (FunctionAddress->u1.Function < (ExportsBase + ExportSize))) {
  976. BOOL BoundForwarder;
  978. BoundForwarder = FALSE;
  979. if (NewImport != NULL) {
  980. FunctionAddress->u1.ForwarderString = BindpAddForwarderReference(Parms,
  981. Image->ModuleName,
  982. (LPSTR) ImportName->Name,
  983. NewImport,
  984. DllPath,
  985. (PUCHAR) BindpRvaToVa( Parms, FunctionTableBase[OrdinalNumber], Dll ),
  986. &BoundForwarder
  987. );
  988. }
  990. if (!BoundForwarder) {
  991. **ForwarderChain = (ULONG) (FunctionAddress - SnappedThunks);
  992. *ForwarderChain = (ULONG *)&FunctionAddress->u1.Ordinal;
  994. if (Parms->StatusRoutine != NULL) {
  995. if (Parms->Flags & BIND_REPORT_64BIT_VA)
  996. ((PIMAGEHLP_STATUS_ROUTINE64)(Parms->StatusRoutine)) ( BindForwarderNOT64,
  997. Image->ModuleName,
  998. Dll->ModuleName,
  999. (ULONG64)FunctionAddress->u1.Function,
  1000. (ULONG_PTR)(ImportName->Name));
  1001. else
  1002. (Parms->StatusRoutine)( BindForwarderNOT,
  1003. Image->ModuleName,
  1004. Dll->ModuleName,
  1005. (ULONG_PTR)FunctionAddress->u1.Function,
  1006. (ULONG_PTR)(ImportName->Name)
  1007. );
  1008. }
  1009. }
  1010. } else {
  1011. if (Parms->StatusRoutine != NULL) {
  1012. if (Parms->Flags & BIND_REPORT_64BIT_VA)
  1013. ((PIMAGEHLP_STATUS_ROUTINE64)(Parms->StatusRoutine)) ( BindImportProcedure64,
  1014. Image->ModuleName,
  1015. Dll->ModuleName,
  1016. (ULONG64)FunctionAddress->u1.Function,
  1017. (ULONG_PTR)(ImportName->Name)
  1018. );
  1019. else
  1020. (Parms->StatusRoutine)( BindImportProcedure,
  1021. Image->ModuleName,
  1022. Dll->ModuleName,
  1023. (ULONG_PTR)FunctionAddress->u1.Function,
  1024. (ULONG_PTR)(ImportName->Name)
  1025. );
  1026. }
  1027. }
  1029. return TRUE;
  1030. } // BindpLookupThunk64
  1032. BOOL
  1033. BindpLookupThunk32(
  1034. PBINDP_PARAMETERS Parms,
  1035. PIMAGE_THUNK_DATA32 ThunkName,
  1036. PLOADED_IMAGE Image,
  1037. PIMAGE_THUNK_DATA32 SnappedThunks,
  1038. PIMAGE_THUNK_DATA32 FunctionAddress,
  1039. PLOADED_IMAGE Dll,
  1040. PIMAGE_EXPORT_DIRECTORY Exports,
  1041. PIMPORT_DESCRIPTOR NewImport,
  1042. LPSTR DllPath,
  1043. PULONG *ForwarderChain
  1044. )
  1045. {
  1046. BOOL Ordinal;
  1047. USHORT OrdinalNumber;
  1048. PULONG NameTableBase;
  1049. PUSHORT NameOrdinalTableBase;
  1050. PULONG FunctionTableBase;
  1051. PIMAGE_IMPORT_BY_NAME ImportName;
  1052. USHORT HintIndex;
  1053. LPSTR NameTableName;
  1054. ULONG ExportsBase;
  1055. ULONG ExportSize;
  1056. UCHAR NameBuffer[ 32 ];
  1057. PIMAGE_OPTIONAL_HEADER32 OptionalHeader = NULL;
  1058. PIMAGE_OPTIONAL_HEADER32 DllOptionalHeader = NULL;
  1060. NameTableBase = (PULONG) BindpRvaToVa( Parms, Exports->AddressOfNames, Dll );
  1061. NameOrdinalTableBase = (PUSHORT) BindpRvaToVa( Parms, Exports->AddressOfNameOrdinals, Dll );
  1062. FunctionTableBase = (PULONG) BindpRvaToVa( Parms, Exports->AddressOfFunctions, Dll );
  1064. if (!FunctionTableBase) {
  1065. return FALSE;
  1066. }
  1068. OptionalHeader = &((PIMAGE_NT_HEADERS32)Image->FileHeader)->OptionalHeader;
  1070. DllOptionalHeader = &((PIMAGE_NT_HEADERS32)Dll->FileHeader)->OptionalHeader;
  1072. //
  1073. // Determine if snap is by name, or by ordinal
  1074. //
  1076. Ordinal = (BOOL)IMAGE_SNAP_BY_ORDINAL32(ThunkName->u1.Ordinal);
  1078. if (Ordinal) {
  1079. UCHAR szOrdinal[8];
  1080. OrdinalNumber = (USHORT)(IMAGE_ORDINAL32(ThunkName->u1.Ordinal) - Exports->Base);
  1081. if ( (ULONG)OrdinalNumber >= Exports->NumberOfFunctions ) {
  1082. return FALSE;
  1083. }
  1084. ImportName = (PIMAGE_IMPORT_BY_NAME)NameBuffer;
  1085. StringCchCopy((PCHAR) ImportName->Name, 31, "Ordinal");
  1086. StringCchCat((PCHAR) ImportName->Name, 31, _ultoa((ULONG) OrdinalNumber, (LPSTR) szOrdinal, 16));
  1087. } else {
  1088. ImportName = (PIMAGE_IMPORT_BY_NAME)BindpRvaToVa( Parms, ThunkName->u1.AddressOfData, Image );
  1089. if (!ImportName || !NameTableBase) {
  1090. return FALSE;
  1091. }
  1093. //
  1094. // now check to see if the hint index is in range. If it
  1095. // is, then check to see if it matches the function at
  1096. // the hint. If all of this is true, then we can snap
  1097. // by hint. Otherwise need to scan the name ordinal table
  1098. //
  1100. OrdinalNumber = (USHORT)(Exports->NumberOfFunctions+1);
  1101. HintIndex = ImportName->Hint;
  1102. if ((ULONG)HintIndex < Exports->NumberOfNames ) {
  1103. NameTableName = (LPSTR) BindpRvaToVa( Parms, NameTableBase[HintIndex], Dll );
  1104. if ( NameTableName ) {
  1105. if ( !strcmp((PCHAR)ImportName->Name, NameTableName) ) {
  1106. OrdinalNumber = NameOrdinalTableBase[HintIndex];
  1107. }
  1108. }
  1109. }
  1111. if ((ULONG)OrdinalNumber >= Exports->NumberOfFunctions) {
  1112. for (HintIndex = 0; HintIndex < Exports->NumberOfNames; HintIndex++) {
  1113. NameTableName = (LPSTR) BindpRvaToVa( Parms, NameTableBase[HintIndex], Dll );
  1114. if (NameTableName) {
  1115. if (!strcmp( (PCHAR)ImportName->Name, NameTableName )) {
  1116. OrdinalNumber = NameOrdinalTableBase[HintIndex];
  1117. break;
  1118. }
  1119. }
  1120. }
  1122. if ((ULONG)OrdinalNumber >= Exports->NumberOfFunctions) {
  1123. return FALSE;
  1124. }
  1125. }
  1126. }
  1128. FunctionAddress->u1.Function = FunctionTableBase[OrdinalNumber] + DllOptionalHeader->ImageBase;
  1130. ExportsBase = (ULONG)((ULONG_PTR)ImageDirectoryEntryToData(Dll->MappedAddress, TRUE, IMAGE_DIRECTORY_ENTRY_EXPORT, &ExportSize)
  1131. -
  1132. (ULONG_PTR)Dll->MappedAddress);
  1134. ExportsBase += DllOptionalHeader->ImageBase;
  1136. if ((FunctionAddress->u1.Function > ExportsBase) && (FunctionAddress->u1.Function < (ExportsBase + ExportSize))) {
  1137. BOOL BoundForwarder;
  1139. BoundForwarder = FALSE;
  1140. if (NewImport != NULL) {
  1141. FunctionAddress->u1.ForwarderString = (ULONG)BindpAddForwarderReference(Parms,
  1142. Image->ModuleName,
  1143. (LPSTR) ImportName->Name,
  1144. NewImport,
  1145. DllPath,
  1146. (PUCHAR) BindpRvaToVa( Parms, FunctionTableBase[OrdinalNumber], Dll ),
  1147. &BoundForwarder
  1148. );
  1149. }
  1151. if (!BoundForwarder) {
  1152. **ForwarderChain = (ULONG) (FunctionAddress - SnappedThunks);
  1153. *ForwarderChain = (ULONG *)&FunctionAddress->u1.Ordinal;
  1155. if (Parms->StatusRoutine != NULL) {
  1156. if (Parms->Flags & BIND_REPORT_64BIT_VA)
  1157. ((PIMAGEHLP_STATUS_ROUTINE64)(Parms->StatusRoutine)) ( BindForwarderNOT64,
  1158. Image->ModuleName,
  1159. Dll->ModuleName,
  1160. (ULONG64)FunctionAddress->u1.Function,
  1161. (ULONG_PTR)(ImportName->Name));
  1162. else
  1163. (Parms->StatusRoutine)( BindForwarderNOT,
  1164. Image->ModuleName,
  1165. Dll->ModuleName,
  1166. (ULONG_PTR)FunctionAddress->u1.Function,
  1167. (ULONG_PTR)(ImportName->Name)
  1168. );
  1169. }
  1170. }
  1171. } else {
  1172. if (Parms->StatusRoutine != NULL) {
  1173. if (Parms->Flags & BIND_REPORT_64BIT_VA)
  1174. ((PIMAGEHLP_STATUS_ROUTINE64)(Parms->StatusRoutine)) ( BindImportProcedure64,
  1175. Image->ModuleName,
  1176. Dll->ModuleName,
  1177. (ULONG64)FunctionAddress->u1.Function,
  1178. (ULONG_PTR)(ImportName->Name)
  1179. );
  1180. else
  1181. (Parms->StatusRoutine)( BindImportProcedure,
  1182. Image->ModuleName,
  1183. Dll->ModuleName,
  1184. (ULONG_PTR)FunctionAddress->u1.Function,
  1185. (ULONG_PTR)(ImportName->Name)
  1186. );
  1187. }
  1188. }
  1190. return TRUE;
  1191. } // BindpLookupThunk32
  1193. PVOID
  1194. BindpRvaToVa(
  1195. PBINDP_PARAMETERS Parms,
  1196. ULONG Rva,
  1197. PLOADED_IMAGE Image
  1198. )
  1199. {
  1200. PVOID Va;
  1202. Va = ImageRvaToVa( Image->FileHeader,
  1203. Image->MappedAddress,
  1204. Rva,
  1205. &Image->LastRvaSection
  1206. );
  1207. if (!Va && Parms->StatusRoutine != NULL) {
  1208. if (Parms->Flags & BIND_REPORT_64BIT_VA)
  1209. ((PIMAGEHLP_STATUS_ROUTINE64)(Parms->StatusRoutine)) ( BindRvaToVaFailed,
  1210. Image->ModuleName,
  1211. NULL,
  1212. (ULONG64)Rva,
  1213. 0
  1214. );
  1215. else
  1216. (Parms->StatusRoutine)( BindRvaToVaFailed,
  1217. Image->ModuleName,
  1218. NULL,
  1219. (ULONG)Rva,
  1220. 0
  1221. );
  1222. }
  1224. return Va;
  1225. }
  1227. VOID
  1228. SetIdataToRo(
  1229. PLOADED_IMAGE Image
  1230. )
  1231. {
  1232. PIMAGE_SECTION_HEADER Section;
  1233. ULONG i;
  1235. for(Section = Image->Sections,i=0; i<Image->NumberOfSections; i++,Section++) {
  1236. if (!_stricmp((PCHAR) Section->Name, ".idata")) {
  1237. if (Section->Characteristics & IMAGE_SCN_MEM_WRITE) {
  1238. Section->Characteristics &= ~IMAGE_SCN_MEM_WRITE;
  1239. Section->Characteristics |= IMAGE_SCN_MEM_READ;
  1240. }
  1242. break;
  1243. }
  1244. }
  1245. }
  1247. VOID
  1248. BindpWalkAndProcessImports(
  1249. PBINDP_PARAMETERS Parms,
  1250. PLOADED_IMAGE Image,
  1251. LPSTR DllPath,
  1252. PBOOL ImageModified
  1253. )
  1254. {
  1255. ULONG ForwarderChainHead;
  1256. PULONG ForwarderChain;
  1257. ULONG ImportSize;
  1258. ULONG ExportSize;
  1259. PIMPORT_DESCRIPTOR NewImportDescriptorHead, NewImportDescriptor;
  1260. PIMAGE_BOUND_IMPORT_DESCRIPTOR PrevNewImports, NewImports;
  1261. ULONG PrevNewImportsSize, NewImportsSize;
  1262. PIMAGE_IMPORT_DESCRIPTOR Imports;
  1263. PIMAGE_EXPORT_DIRECTORY Exports;
  1264. LPSTR ImportModule;
  1265. PLOADED_IMAGE Dll;
  1266. PIMAGE_THUNK_DATA32 tname32,tsnap32;
  1267. PIMAGE_THUNK_DATA64 tname64,tsnap64;
  1268. PIMAGE_THUNK_DATA32 ThunkNames32;
  1269. PIMAGE_THUNK_DATA64 ThunkNames64;
  1270. PIMAGE_THUNK_DATA32 SnappedThunks32;
  1271. PIMAGE_THUNK_DATA64 SnappedThunks64;
  1272. PIMAGE_IMPORT_BY_NAME ImportName;
  1273. ULONG NumberOfThunks;
  1274. ULONG i, cb;
  1275. BOOL Ordinal, BindThunkFailed, NoErrors;
  1276. USHORT OrdinalNumber;
  1277. UCHAR NameBuffer[ 32 ];
  1278. BOOL fWin64Image = FALSE;
  1279. PIMAGE_FILE_HEADER FileHeader;
  1281. NoErrors = FALSE;
  1282. *ImageModified = FALSE;
  1284. //
  1285. // Locate the import array for this image/dll
  1286. //
  1288. NewImportDescriptorHead = NULL;
  1289. Imports = (PIMAGE_IMPORT_DESCRIPTOR)ImageDirectoryEntryToData(Image->MappedAddress, FALSE, IMAGE_DIRECTORY_ENTRY_IMPORT, &ImportSize);
  1290. if (Imports == NULL) {
  1291. //
  1292. // Nothing to bind if no imports
  1293. //
  1295. return;
  1296. }
  1298. FileHeader = &((PIMAGE_NT_HEADERS32)Image->FileHeader)->FileHeader;
  1299. fWin64Image = Image->FileHeader->OptionalHeader.Magic == IMAGE_NT_OPTIONAL_HDR64_MAGIC;
  1301. PrevNewImports = (PIMAGE_BOUND_IMPORT_DESCRIPTOR)ImageDirectoryEntryToData(Image->MappedAddress, FALSE, IMAGE_DIRECTORY_ENTRY_BOUND_IMPORT, &PrevNewImportsSize);
  1303. // If the user asked for an old style bind and there are new style bind records
  1304. // already in the image, zero them out first. This is the fix the problem where
  1305. // you bind on NT (creating new import descriptors), boot Win95 and bind there
  1306. // (creating old bind format), and then reboot to NT (the loader will only check
  1307. // the BOUND_IMPORT array.
  1309. if (PrevNewImports && (Parms->fNewImports == FALSE) && (Parms->fNoUpdate == FALSE )) {
  1310. if (fWin64Image) {
  1311. ((PIMAGE_NT_HEADERS64)Image->FileHeader)->OptionalHeader.DataDirectory[ IMAGE_DIRECTORY_ENTRY_BOUND_IMPORT ].VirtualAddress = 0;
  1312. ((PIMAGE_NT_HEADERS64)Image->FileHeader)->OptionalHeader.DataDirectory[ IMAGE_DIRECTORY_ENTRY_BOUND_IMPORT ].Size = 0;
  1313. } else {
  1314. ((PIMAGE_NT_HEADERS32)Image->FileHeader)->OptionalHeader.DataDirectory[ IMAGE_DIRECTORY_ENTRY_BOUND_IMPORT ].VirtualAddress = 0;
  1315. ((PIMAGE_NT_HEADERS32)Image->FileHeader)->OptionalHeader.DataDirectory[ IMAGE_DIRECTORY_ENTRY_BOUND_IMPORT ].Size = 0;
  1316. }
  1317. PrevNewImports = 0;
  1318. PrevNewImportsSize = 0;
  1319. *ImageModified = TRUE;
  1320. }
  1322. //
  1323. // For each import record
  1324. //
  1326. for(;Imports;Imports++) {
  1327. if ( !Imports->Name ) {
  1328. break;
  1329. }
  1331. //
  1332. // Locate the module being imported and load the dll
  1333. //
  1335. ImportModule = (LPSTR)BindpRvaToVa( Parms, Imports->Name, Image );
  1337. if (ImportModule) {
  1338. Dll = ImageLoad( ImportModule, DllPath );
  1339. if (!Dll) {
  1340. if (Parms->StatusRoutine != NULL) {
  1341. if (Parms->Flags & BIND_REPORT_64BIT_VA)
  1342. ((PIMAGEHLP_STATUS_ROUTINE64)(Parms->StatusRoutine)) (BindImportModuleFailed, Image->ModuleName, ImportModule, 0, 0 );
  1343. else
  1344. (Parms->StatusRoutine)( BindImportModuleFailed, Image->ModuleName, ImportModule, 0, 0 );
  1345. }
  1346. //
  1347. // Unless specifically told not to, generate the new style
  1348. // import descriptor.
  1349. //
  1351. BindpAddImportDescriptor(Parms, &NewImportDescriptorHead, Imports, ImportModule, Dll );
  1352. continue;
  1353. }
  1355. if (Parms->StatusRoutine != NULL) {
  1356. if (Parms->Flags & BIND_REPORT_64BIT_VA)
  1357. ((PIMAGEHLP_STATUS_ROUTINE64)(Parms->StatusRoutine)) ( BindImportModule, Image->ModuleName, ImportModule, 0, 0 );
  1358. else
  1359. (Parms->StatusRoutine)( BindImportModule, Image->ModuleName, ImportModule, 0, 0 );
  1360. }
  1361. //
  1362. // If we can load the DLL, locate the export section and
  1363. // start snapping the thunks
  1364. //
  1366. Exports = (PIMAGE_EXPORT_DIRECTORY)ImageDirectoryEntryToData(Dll->MappedAddress, FALSE, IMAGE_DIRECTORY_ENTRY_EXPORT, &ExportSize);
  1367. if ( !Exports ) {
  1368. continue;
  1369. }
  1371. //
  1372. // For old style bind, bypass the bind if it's already bound.
  1373. // New style binds s/b looked up in PrevNewImport.
  1374. //
  1376. if ( (Parms->fNewImports == FALSE) && Imports->TimeDateStamp && (Imports->TimeDateStamp == FileHeader->TimeDateStamp)) {
  1377. continue;
  1378. }
  1380. //
  1381. // Now we need to size our thunk table and
  1382. // allocate a buffer to hold snapped thunks. This is
  1383. // done instead of writting to the mapped view so that
  1384. // thunks are only updated if we find all the entry points
  1385. //
  1387. ThunkNames32 = (PIMAGE_THUNK_DATA32) BindpRvaToVa( Parms, Imports->OriginalFirstThunk, Image );
  1388. ThunkNames64 = (PIMAGE_THUNK_DATA64) ThunkNames32;
  1390. if (!ThunkNames32) {
  1391. //
  1392. // Skip this one if no thunks
  1393. //
  1394. continue;
  1395. }
  1397. if (fWin64Image ? !ThunkNames64->u1.Function : !ThunkNames32->u1.Function) {
  1398. continue;
  1399. }
  1401. //
  1402. // Unless specifically told not to, generate the new style
  1403. // import descriptor.
  1404. //
  1406. NewImportDescriptor = BindpAddImportDescriptor(Parms, &NewImportDescriptorHead, Imports, ImportModule, Dll );
  1408. NumberOfThunks = 0;
  1409. if (fWin64Image) {
  1410. tname64 = ThunkNames64;
  1411. while (tname64->u1.AddressOfData) {
  1412. NumberOfThunks++;
  1413. tname64++;
  1414. }
  1415. #ifdef STANDALONE_BIND
  1416. SnappedThunks64 = (PIMAGE_THUNK_DATA64) calloc( NumberOfThunks*sizeof(*SnappedThunks64), 1 );
  1417. #else
  1418. SnappedThunks64 = (PIMAGE_THUNK_DATA64) MemAlloc( NumberOfThunks*sizeof(*SnappedThunks64) );
  1419. #endif
  1420. if ( !SnappedThunks64 ) {
  1421. continue;
  1422. }
  1424. tname64 = ThunkNames64;
  1425. tsnap64 = SnappedThunks64;
  1426. } else {
  1427. tname32 = ThunkNames32;
  1428. while (tname32->u1.AddressOfData) {
  1429. NumberOfThunks++;
  1430. tname32++;
  1431. }
  1432. #ifdef STANDALONE_BIND
  1433. SnappedThunks32 = (PIMAGE_THUNK_DATA32) calloc( NumberOfThunks*sizeof(*SnappedThunks32), 1 );
  1434. #else
  1435. SnappedThunks32 = (PIMAGE_THUNK_DATA32) MemAlloc( NumberOfThunks*sizeof(*SnappedThunks32) );
  1436. #endif
  1437. if ( !SnappedThunks32 ) {
  1438. continue;
  1439. }
  1441. tname32 = ThunkNames32;
  1442. tsnap32 = SnappedThunks32;
  1443. }
  1445. NoErrors = TRUE;
  1446. ForwarderChainHead = (ULONG)-1;
  1447. ForwarderChain = &ForwarderChainHead;
  1448. for(i=0;i<NumberOfThunks;i++) {
  1449. BindThunkFailed = FALSE;
  1450. __try {
  1451. if (fWin64Image) {
  1452. if (!BindpLookupThunk64( Parms, tname64, Image, SnappedThunks64, tsnap64, Dll,
  1453. Exports, NewImportDescriptor, DllPath, &ForwarderChain )) {
  1454. BindThunkFailed = TRUE;
  1455. }
  1456. } else {
  1457. if (!BindpLookupThunk32( Parms, tname32, Image, SnappedThunks32, tsnap32, Dll,
  1458. Exports, NewImportDescriptor, DllPath, &ForwarderChain )) {
  1459. BindThunkFailed = TRUE;
  1460. }
  1461. }
  1462. } __except ( EXCEPTION_EXECUTE_HANDLER ) {
  1463. BindThunkFailed = TRUE;
  1464. }
  1466. if (BindThunkFailed) {
  1467. if (NewImportDescriptor != NULL) {
  1468. NewImportDescriptor->TimeDateStamp = 0;
  1469. }
  1471. if (Parms->StatusRoutine != NULL) {
  1472. Ordinal = fWin64Image ?
  1473. (BOOL)IMAGE_SNAP_BY_ORDINAL64(tname64->u1.Ordinal) :
  1474. (BOOL)IMAGE_SNAP_BY_ORDINAL32(tname32->u1.Ordinal);
  1475. if (Ordinal) {
  1476. UCHAR szOrdinal[8];
  1478. OrdinalNumber = (USHORT)(IMAGE_ORDINAL(fWin64Image ?
  1479. tname64->u1.Ordinal :
  1480. tname32->u1.Ordinal)
  1481. - Exports->Base);
  1483. ImportName = (PIMAGE_IMPORT_BY_NAME)NameBuffer;
  1484. // Can't use sprintf w/o dragging in more CRT support than we want... Must run on Win95.
  1485. StringCchCopy((PCHAR) ImportName->Name, 31, "Ordinal");
  1486. StringCchCat((PCHAR) ImportName->Name, 31, _ultoa((ULONG) OrdinalNumber, (LPSTR)szOrdinal, 16));
  1487. }
  1488. else {
  1489. ImportName = (PIMAGE_IMPORT_BY_NAME)BindpRvaToVa(
  1490. Parms,
  1491. (ULONG)(ULONG_PTR)( fWin64Image ?
  1492. (tname64->u1.AddressOfData) :
  1493. (tname32->u1.AddressOfData)),
  1494. Image
  1495. );
  1496. }
  1498. if (Parms->Flags & BIND_REPORT_64BIT_VA)
  1499. ((PIMAGEHLP_STATUS_ROUTINE64)(Parms->StatusRoutine)) ( BindImportProcedureFailed,
  1500. Image->ModuleName,
  1501. Dll->ModuleName,
  1502. (ULONG64) fWin64Image ?
  1503. tsnap64->u1.Function :
  1504. tsnap32->u1.Function,
  1505. (ULONG_PTR)(ImportName->Name)
  1506. );
  1507. else
  1508. (Parms->StatusRoutine)( BindImportProcedureFailed, Image->ModuleName, Dll->ModuleName,
  1509. (ULONG_PTR) (fWin64Image ? tsnap64->u1.Function : tsnap32->u1.Function),
  1510. (ULONG_PTR)(ImportName->Name)
  1511. );
  1512. }
  1514. break;
  1515. }
  1517. if (fWin64Image) {
  1518. tname64++;
  1519. tsnap64++;
  1520. } else {
  1521. tname32++;
  1522. tsnap32++;
  1523. }
  1524. }
  1526. tname32 = (PIMAGE_THUNK_DATA32) BindpRvaToVa( Parms, Imports->FirstThunk, Image );
  1527. tname64 = (PIMAGE_THUNK_DATA64) tname32;
  1529. if ( !tname32 ) {
  1530. NoErrors = FALSE;
  1531. }
  1533. //
  1534. // If we were able to locate all of the entrypoints in the
  1535. // target dll, then copy the snapped thunks into the image,
  1536. // update the time and date stamp, and flush the image to
  1537. // disk
  1538. //
  1540. if ( NoErrors && Parms->fNoUpdate == FALSE ) {
  1541. if (ForwarderChainHead != -1) {
  1542. *ImageModified = TRUE;
  1543. *ForwarderChain = -1;
  1544. }
  1545. if (Imports->ForwarderChain != ForwarderChainHead) {
  1546. Imports->ForwarderChain = ForwarderChainHead;
  1547. *ImageModified = TRUE;
  1548. }
  1549. if (fWin64Image) {
  1550. cb = NumberOfThunks*sizeof(*SnappedThunks64);
  1551. if (memcmp(tname64,SnappedThunks64,cb)) {
  1552. MoveMemory(tname64,SnappedThunks64,cb);
  1553. *ImageModified = TRUE;
  1554. }
  1555. } else {
  1556. cb = NumberOfThunks*sizeof(*SnappedThunks32);
  1557. if (memcmp(tname32,SnappedThunks32,cb)) {
  1558. MoveMemory(tname32,SnappedThunks32,cb);
  1559. *ImageModified = TRUE;
  1560. }
  1561. }
  1562. if (NewImportDescriptorHead == NULL) {
  1563. if (Imports->TimeDateStamp != FileHeader->TimeDateStamp) {
  1564. Imports->TimeDateStamp = FileHeader->TimeDateStamp;
  1565. *ImageModified = TRUE;
  1566. }
  1567. }
  1568. else
  1569. if (Imports->TimeDateStamp != 0xFFFFFFFF) {
  1570. Imports->TimeDateStamp = 0xFFFFFFFF;
  1571. *ImageModified = TRUE;
  1572. }
  1573. }
  1575. #ifdef STANDALONE_BIND
  1576. fWin64Image ? free(SnappedThunks64) : free(SnappedThunks32);
  1577. #else
  1578. fWin64Image ? MemFree(SnappedThunks64) : MemFree(SnappedThunks32);
  1579. #endif
  1580. }
  1581. }
  1583. NewImports = BindpCreateNewImportSection(Parms, &NewImportDescriptorHead, &NewImportsSize);
  1584. if ((PrevNewImportsSize != NewImportsSize) || memcmp( PrevNewImports, NewImports, NewImportsSize))
  1585. {
  1586. *ImageModified = TRUE;
  1587. }
  1589. if (!*ImageModified) {
  1590. return;
  1591. }
  1593. if (Parms->StatusRoutine != NULL) {
  1594. if (Parms->Flags & BIND_REPORT_64BIT_VA)
  1595. ((PIMAGEHLP_STATUS_ROUTINE64)(Parms->StatusRoutine)) ( BindImageModified, Image->ModuleName, NULL, 0, 0 );
  1596. else
  1597. (Parms->StatusRoutine)( BindImageModified, Image->ModuleName, NULL, 0, 0 );
  1598. }
  1600. if (NewImports != NULL) {
  1601. ULONG cbFreeFile, cbFreeHeaders, OffsetHeaderFreeSpace, cbFreeSpaceOnDisk;
  1603. if (NoErrors && Parms->fNoUpdate == FALSE) {
  1604. if (fWin64Image) {
  1605. ((PIMAGE_NT_HEADERS64)Image->FileHeader)->OptionalHeader.DataDirectory[ IMAGE_DIRECTORY_ENTRY_BOUND_IMPORT ].VirtualAddress = 0;
  1606. ((PIMAGE_NT_HEADERS64)Image->FileHeader)->OptionalHeader.DataDirectory[ IMAGE_DIRECTORY_ENTRY_BOUND_IMPORT ].Size = 0;
  1607. } else {
  1608. ((PIMAGE_NT_HEADERS32)Image->FileHeader)->OptionalHeader.DataDirectory[ IMAGE_DIRECTORY_ENTRY_BOUND_IMPORT ].VirtualAddress = 0;
  1609. ((PIMAGE_NT_HEADERS32)Image->FileHeader)->OptionalHeader.DataDirectory[ IMAGE_DIRECTORY_ENTRY_BOUND_IMPORT ].Size = 0;
  1610. }
  1611. }
  1612. OffsetHeaderFreeSpace = GetImageUnusedHeaderBytes( Image, &cbFreeFile );
  1613. cbFreeHeaders = Image->Sections->VirtualAddress
  1614. -
  1615. (fWin64Image ?
  1616. ((PIMAGE_NT_HEADERS64)Image->FileHeader)->OptionalHeader.SizeOfHeaders :
  1617. ((PIMAGE_NT_HEADERS32)Image->FileHeader)->OptionalHeader.SizeOfHeaders)
  1618. +
  1619. cbFreeFile;
  1621. // FreeSpace on Disk may be larger that FreeHeaders in the headers (the linker
  1622. // can start the first section on a page boundary already)
  1624. cbFreeSpaceOnDisk = Image->Sections->PointerToRawData
  1625. -
  1626. (fWin64Image ?
  1627. ((PIMAGE_NT_HEADERS64)Image->FileHeader)->OptionalHeader.SizeOfHeaders :
  1628. ((PIMAGE_NT_HEADERS32)Image->FileHeader)->OptionalHeader.SizeOfHeaders)
  1629. +
  1630. cbFreeFile;
  1632. if (NewImportsSize > cbFreeFile) {
  1633. if (NewImportsSize > cbFreeHeaders) {
  1634. if (Parms->StatusRoutine != NULL) {
  1635. if (Parms->Flags & BIND_REPORT_64BIT_VA)
  1636. ((PIMAGEHLP_STATUS_ROUTINE64)(Parms->StatusRoutine)) ( BindNoRoomInImage, Image->ModuleName, NULL, 0, 0 );
  1637. else
  1638. (Parms->StatusRoutine)( BindNoRoomInImage, Image->ModuleName, NULL, 0, 0 );
  1639. }
  1640. NoErrors = FALSE;
  1641. }
  1642. else
  1643. if (NoErrors && (Parms->fNoUpdate == FALSE)) {
  1644. if (NewImportsSize <= cbFreeSpaceOnDisk) {
  1646. // There's already space on disk. Just adjust the header size.
  1647. if (fWin64Image) {
  1648. ((PIMAGE_NT_HEADERS64)Image->FileHeader)->OptionalHeader.SizeOfHeaders =
  1649. (((PIMAGE_NT_HEADERS64)Image->FileHeader)->OptionalHeader.SizeOfHeaders
  1650. -
  1651. cbFreeFile
  1652. +
  1653. NewImportsSize
  1654. +
  1655. ((PIMAGE_NT_HEADERS64)Image->FileHeader)->OptionalHeader.FileAlignment - 1)
  1656. & ~(((PIMAGE_NT_HEADERS64)Image->FileHeader)->OptionalHeader.FileAlignment - 1);
  1657. } else {
  1658. ((PIMAGE_NT_HEADERS32)Image->FileHeader)->OptionalHeader.SizeOfHeaders =
  1659. (((PIMAGE_NT_HEADERS32)Image->FileHeader)->OptionalHeader.SizeOfHeaders
  1660. -
  1661. cbFreeFile
  1662. +
  1663. NewImportsSize
  1664. +
  1665. ((PIMAGE_NT_HEADERS32)Image->FileHeader)->OptionalHeader.FileAlignment - 1)
  1666. & ~(((PIMAGE_NT_HEADERS32)Image->FileHeader)->OptionalHeader.FileAlignment - 1);
  1667. }
  1669. } else {
  1671. NoErrors = BindpExpandImageFileHeaders( Parms,
  1672. Image,
  1673. ((fWin64Image ?
  1674. ((PIMAGE_NT_HEADERS64)Image->FileHeader)->OptionalHeader.SizeOfHeaders :
  1675. ((PIMAGE_NT_HEADERS32)Image->FileHeader)->OptionalHeader.SizeOfHeaders)
  1676. -
  1677. cbFreeFile
  1678. +
  1679. NewImportsSize
  1680. +
  1681. (fWin64Image ?
  1682. ((PIMAGE_NT_HEADERS64)Image->FileHeader)->OptionalHeader.FileAlignment - 1 :
  1683. ((PIMAGE_NT_HEADERS32)Image->FileHeader)->OptionalHeader.FileAlignment - 1)
  1684. ) & ~(
  1685. fWin64Image ?
  1686. ((PIMAGE_NT_HEADERS64)Image->FileHeader)->OptionalHeader.FileAlignment - 1 :
  1687. ((PIMAGE_NT_HEADERS32)Image->FileHeader)->OptionalHeader.FileAlignment - 1
  1688. )
  1689. );
  1690. // Expand may have remapped the image. Recalc the header ptrs.
  1691. FileHeader = &((PIMAGE_NT_HEADERS32)Image->FileHeader)->FileHeader;
  1692. }
  1693. }
  1694. }
  1696. if (Parms->StatusRoutine != NULL) {
  1697. if (Parms->Flags & BIND_REPORT_64BIT_VA)
  1698. ((PIMAGEHLP_STATUS_ROUTINE64)(Parms->StatusRoutine)) ( BindImageComplete,
  1699. Image->ModuleName,
  1700. NULL,
  1701. (ULONG64)NewImports,
  1702. NoErrors
  1703. );
  1704. else
  1705. (Parms->StatusRoutine)( BindImageComplete, Image->ModuleName, NULL, (ULONG_PTR)NewImports, NoErrors );
  1706. }
  1708. if (NoErrors && Parms->fNoUpdate == FALSE) {
  1709. if (fWin64Image) {
  1710. ((PIMAGE_NT_HEADERS64)Image->FileHeader)->OptionalHeader.DataDirectory[ IMAGE_DIRECTORY_ENTRY_BOUND_IMPORT ].VirtualAddress = OffsetHeaderFreeSpace;
  1711. ((PIMAGE_NT_HEADERS64)Image->FileHeader)->OptionalHeader.DataDirectory[ IMAGE_DIRECTORY_ENTRY_BOUND_IMPORT ].Size = NewImportsSize;
  1712. } else {
  1713. ((PIMAGE_NT_HEADERS32)Image->FileHeader)->OptionalHeader.DataDirectory[ IMAGE_DIRECTORY_ENTRY_BOUND_IMPORT ].VirtualAddress = OffsetHeaderFreeSpace;
  1714. ((PIMAGE_NT_HEADERS32)Image->FileHeader)->OptionalHeader.DataDirectory[ IMAGE_DIRECTORY_ENTRY_BOUND_IMPORT ].Size = NewImportsSize;
  1715. }
  1716. memcpy( (LPSTR)(Image->MappedAddress) + OffsetHeaderFreeSpace, NewImports, NewImportsSize );
  1717. }
  1719. #ifdef STANDALONE_BIND
  1720. free(NewImports);
  1721. #else
  1722. MemFree(NewImports);
  1723. #endif
  1724. }
  1726. if (NoErrors && Parms->fNoUpdate == FALSE) {
  1727. SetIdataToRo( Image );
  1728. }
  1729. }
  1732. DWORD
  1733. GetImageUnusedHeaderBytes(
  1734. PLOADED_IMAGE LoadedImage,
  1735. LPDWORD SizeUnusedHeaderBytes
  1736. )
  1737. {
  1738. DWORD OffsetFirstUnusedHeaderByte;
  1739. DWORD i;
  1740. DWORD OffsetHeader;
  1741. PIMAGE_NT_HEADERS NtHeaders = LoadedImage->FileHeader;
  1743. //
  1744. // this calculates an offset, not an address, so DWORD is correct
  1745. //
  1746. OffsetFirstUnusedHeaderByte = (DWORD)
  1747. (((LPSTR)NtHeaders - (LPSTR)LoadedImage->MappedAddress) +
  1748. (FIELD_OFFSET( IMAGE_NT_HEADERS, OptionalHeader ) +
  1749. NtHeaders->FileHeader.SizeOfOptionalHeader +
  1750. (NtHeaders->FileHeader.NumberOfSections *
  1751. sizeof(IMAGE_SECTION_HEADER)
  1752. )
  1753. )
  1754. );
  1756. if (LoadedImage->FileHeader->OptionalHeader.Magic == IMAGE_NT_OPTIONAL_HDR64_MAGIC) {
  1757. PIMAGE_OPTIONAL_HEADER64 OptionalHeader = (PIMAGE_OPTIONAL_HEADER64)&LoadedImage->FileHeader->OptionalHeader;
  1758. for ( i=0; i < OptionalHeader->NumberOfRvaAndSizes; i++ ) {
  1759. OffsetHeader = OptionalHeader->DataDirectory[i].VirtualAddress;
  1760. if (OffsetHeader < OptionalHeader->SizeOfHeaders) {
  1761. if (OffsetHeader >= OffsetFirstUnusedHeaderByte) {
  1762. if (i == IMAGE_DIRECTORY_ENTRY_LOAD_CONFIG) {
  1763. PIMAGE_LOAD_CONFIG_DIRECTORY pd = (PIMAGE_LOAD_CONFIG_DIRECTORY)((ULONG_PTR)LoadedImage->FileHeader + OffsetHeader);
  1764. if (pd->Size) {
  1765. OffsetFirstUnusedHeaderByte = OffsetHeader + pd->Size;
  1766. } else {
  1767. OffsetFirstUnusedHeaderByte = OffsetHeader + OptionalHeader->DataDirectory[i].Size;
  1768. }
  1769. } else {
  1770. OffsetFirstUnusedHeaderByte = OffsetHeader + OptionalHeader->DataDirectory[i].Size;
  1771. }
  1772. }
  1773. }
  1774. }
  1775. *SizeUnusedHeaderBytes = OptionalHeader->SizeOfHeaders - OffsetFirstUnusedHeaderByte;
  1776. } else {
  1777. PIMAGE_OPTIONAL_HEADER32 OptionalHeader = (PIMAGE_OPTIONAL_HEADER32)&LoadedImage->FileHeader->OptionalHeader;
  1778. for ( i=0; i < OptionalHeader->NumberOfRvaAndSizes; i++ ) {
  1779. OffsetHeader = OptionalHeader->DataDirectory[i].VirtualAddress;
  1780. if (OffsetHeader < OptionalHeader->SizeOfHeaders) {
  1781. if (OffsetHeader >= OffsetFirstUnusedHeaderByte) {
  1782. if (i == IMAGE_DIRECTORY_ENTRY_LOAD_CONFIG) {
  1783. PIMAGE_LOAD_CONFIG_DIRECTORY pd = (PIMAGE_LOAD_CONFIG_DIRECTORY)((ULONG_PTR)LoadedImage->FileHeader + OffsetHeader);
  1784. if (pd->Size) {
  1785. OffsetFirstUnusedHeaderByte = OffsetHeader + pd->Size;
  1786. } else {
  1787. OffsetFirstUnusedHeaderByte = OffsetHeader + OptionalHeader->DataDirectory[i].Size;
  1788. }
  1789. } else {
  1790. OffsetFirstUnusedHeaderByte = OffsetHeader + OptionalHeader->DataDirectory[i].Size;
  1791. }
  1792. }
  1793. }
  1794. }
  1795. *SizeUnusedHeaderBytes = OptionalHeader->SizeOfHeaders - OffsetFirstUnusedHeaderByte;
  1796. }
  1798. return OffsetFirstUnusedHeaderByte;
  1799. }