archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 7b07a90fc1
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '7b07a90fc1'
${ noResults }
windows-server-2003/sdktools/psapi/module.c

864 lines
22 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. #include <nt.h>
  2. #include <ntrtl.h>
  3. #include <nturtl.h>
  4. #include <windows.h>
  6. #include "psapi.h"
  7. //Need to change source to include $(BASE_INC_PATH)
  8. #include <..\..\public\internal\base\inc\wow64t.h>
  10. //Need to move in file psapi.h while publishing the EnumModulesEx api
  12. #define LIST_MODULES_32BIT 0x01 // list 32bit modules in the target process.
  13. #define LIST_MODULES_64BIT 0x02 // LIST_WOW64_NATIVE_MODULES list all the modules.
  14. #define LIST_MODULES_ALL 0x03 // list all the modules
  15. #define LIST_MODULES_NATIVE 0x0 // This is the default one app should call
  17. #ifdef _WIN64
  18. PLDR_DATA_TABLE_ENTRY
  19. Wow64FindNextModuleEntry (
  20. IN HANDLE hProcess,
  21. IN OUT PLDR_DATA_TABLE_ENTRY LdrEntry, //64bit structure info got from 32bit entry
  22. PLIST_ENTRY *pLdrHead
  23. )
  24. /*++
  26. Routine Description:
  28. This function will walk through the 32bit Loader list to retrieve wow64 module info for 32bit
  29. process on IA64. The function can be called repeatedly.
  31. Arguments:
  33. hProcess - Supplies the target process.
  34. LdrEntryData - Returns the requested table entry. Data must be initialized in 1st call
  35. and use the same in the sub sequent call.
  36. pLdrHead - pointer to a PLIST_ENTRY. This is used internally to track the list.
  37. That get initialized in the 1st uses.
  39. Return Value:
  41. NULL if no entry found,
  42. pointer to LdrEntry otherwise.
  44. --*/
  46. {
  48. LDR_DATA_TABLE_ENTRY32 LdrEntryData32;
  49. PLDR_DATA_TABLE_ENTRY32 LdrEntry32;
  50. LIST_ENTRY32 LdrNext32; //8byte in 32bit 16 byte on IA64
  51. PLIST_ENTRY32 pLdrNext32;
  53. //
  54. // if inititial entry is NULL must find the Teb32 and init the struct with 1st entry.
  55. //
  57. if ( LdrEntry == NULL)
  58. return NULL;
  61. if ( LdrEntry->InMemoryOrderLinks.Flink == NULL &&
  62. LdrEntry->InMemoryOrderLinks.Blink == NULL ) { // check if any other entry;
  63. //
  64. // List need to be initialized.
  65. //
  66. NTSTATUS st;
  67. PPEB32 Peb32;
  68. PEB32 Peb32_Data;
  70. PEB_LDR_DATA32 Peb32LdrData;
  72. st = NtQueryInformationProcess(hProcess,
  73. ProcessWow64Information,
  74. &Peb32,
  75. sizeof(Peb32),
  76. NULL);
  77. if (!NT_SUCCESS (st)) {
  78. return NULL;
  79. }
  80. {
  81. PPEB_LDR_DATA32 Ldr32;
  83. if (!ReadProcessMemory(hProcess, Peb32, &Peb32_Data, sizeof(Peb32_Data), NULL))
  84. return NULL;
  86. if (!ReadProcessMemory(hProcess, (PVOID)(ULONGLONG)Peb32_Data.Ldr, &Peb32LdrData, sizeof(Peb32LdrData), NULL))
  87. return NULL;
  89. *pLdrHead = (PVOID)((PBYTE)(ULONGLONG)Peb32_Data.Ldr + ((PBYTE)&Peb32LdrData.InMemoryOrderModuleList- (PBYTE)&Peb32LdrData ));
  91. //
  92. // LdrNext = Head->Flink;
  93. //
  95. pLdrNext32 = (PVOID)(ULONGLONG)Peb32LdrData.InMemoryOrderModuleList.Flink;
  97. if (!ReadProcessMemory(hProcess, pLdrNext32, &LdrNext32, sizeof(LdrNext32), NULL)) {
  98. return NULL;
  99. }
  102. }
  104. } else
  105. pLdrNext32 = (PVOID)LdrEntry->InMemoryOrderLinks.Flink;
  107. if (LdrEntry->InMemoryOrderLinks.Flink == *pLdrHead)
  108. return NULL;
  110. //
  111. // Read process memory to get a entry.
  112. //
  113. LdrEntry32 = CONTAINING_RECORD(
  114. pLdrNext32,
  115. LDR_DATA_TABLE_ENTRY32,
  116. InMemoryOrderLinks
  117. );
  118. //
  119. // Read 32bit entry
  120. //
  121. if (!ReadProcessMemory(hProcess, LdrEntry32, &LdrEntryData32, sizeof(LdrEntryData32), NULL))
  122. return NULL;
  124. //LdrEntryData->InMemoryOrderLinks.Flink; must be thunked
  127. LdrEntry->InLoadOrderLinks.Flink = (PVOID)(ULONGLONG)LdrEntryData32.InLoadOrderLinks.Flink;
  128. LdrEntry->InLoadOrderLinks.Blink = (PVOID)(ULONGLONG)LdrEntryData32.InLoadOrderLinks.Blink;
  130. LdrEntry->InMemoryOrderLinks.Flink = (PVOID)(ULONGLONG)LdrEntryData32.InMemoryOrderLinks.Flink;
  131. LdrEntry->InMemoryOrderLinks.Blink = (PVOID)(ULONGLONG)LdrEntryData32.InMemoryOrderLinks.Blink;
  133. LdrEntry->InInitializationOrderLinks.Flink = (PVOID)(ULONGLONG)LdrEntryData32.InInitializationOrderLinks.Flink;
  134. LdrEntry->InInitializationOrderLinks.Blink = (PVOID)(ULONGLONG)LdrEntryData32.InInitializationOrderLinks.Blink;
  136. LdrEntry->DllBase = (PVOID)(ULONGLONG)LdrEntryData32.DllBase;
  137. LdrEntry->EntryPoint = (PVOID)(ULONGLONG)LdrEntryData32.EntryPoint;
  139. //SizeOfImage;
  140. LdrEntry->SizeOfImage = LdrEntryData32.SizeOfImage;
  142. //Full Name
  143. LdrEntry->FullDllName.Length = LdrEntryData32.FullDllName.Length;
  144. LdrEntry->FullDllName.MaximumLength = LdrEntryData32.FullDllName.MaximumLength;
  145. LdrEntry->FullDllName.Buffer = (PVOID)(ULONGLONG)LdrEntryData32.FullDllName.Buffer;
  147. //Base Name
  148. LdrEntry->BaseDllName.Length = LdrEntryData32.BaseDllName.Length;
  149. LdrEntry->BaseDllName.MaximumLength = LdrEntryData32.BaseDllName.MaximumLength;
  150. LdrEntry->BaseDllName.Buffer = (PVOID)(ULONGLONG)LdrEntryData32.BaseDllName.Buffer;
  152. LdrEntry->Flags = LdrEntryData32.Flags;
  153. LdrEntry->LoadCount = LdrEntryData32.LoadCount;
  154. LdrEntry->TlsIndex = LdrEntryData32.TlsIndex;
  156. return LdrEntry;
  157. }
  159. BOOL
  160. Wow64FindModuleEx(
  161. IN HANDLE hProcess,
  162. IN HMODULE hModule,
  163. OUT PLDR_DATA_TABLE_ENTRY LdrEntryData
  164. )
  166. /*++
  168. Routine Description:
  170. This function retrieves the loader table entry for the specified
  171. module. The function copies the entry into the buffer pointed to
  172. by the LdrEntryData parameter.
  174. Arguments:
  176. hProcess - Supplies the target process.
  178. hModule - Identifies the module whose loader entry is being
  179. requested. A value of NULL references the module handle
  180. associated with the image file that was used to create the
  181. process.
  183. LdrEntryData - Returns the requested table entry.
  185. Return Value:
  187. TRUE if a matching entry was found.
  189. --*/
  191. {
  193. PLIST_ENTRY LdrHead;
  194. ULONG Count;
  197. Count = 0;
  198. try {
  200. LdrEntryData->InMemoryOrderLinks.Flink = LdrEntryData->InMemoryOrderLinks.Flink = NULL;
  202. while (Wow64FindNextModuleEntry (hProcess, LdrEntryData, &LdrHead)) {
  203. if (hModule == LdrEntryData->DllBase) {
  204. return TRUE;
  205. }
  206. Count++;
  207. if (Count > 10000) {
  208. SetLastError(ERROR_INVALID_HANDLE);
  209. return(FALSE);
  210. }
  211. } //while
  213. } except (EXCEPTION_EXECUTE_HANDLER) {
  214. SetLastError( RtlNtStatusToDosError( GetExceptionCode() ) );
  215. return(FALSE);
  216. }
  218. SetLastError(ERROR_INVALID_HANDLE);
  219. return(FALSE);
  220. }
  222. BOOL
  223. WINAPI
  224. Wow64EnumProcessModules(
  225. HANDLE hProcess,
  226. HMODULE *lphModule,
  227. DWORD cb,
  228. LPDWORD lpcbNeeded
  229. )
  230. /*++
  232. Routine Description:
  234. This function all the module handles in a wow64 process.
  236. Arguments:
  238. hProcess - Supplies the target process.
  240. lphModule - point to a array of modules handle to be filled by this API.
  242. cb - bytes in the array.
  244. lpcNeeded - will how much memory is needed or filled by the call.
  246. Return Value:
  248. TRUE if a matching entry was found.
  250. --*/
  251. {
  252. DWORD ch =0;
  253. DWORD chMax = cb / sizeof(HMODULE);
  254. PLIST_ENTRY LdrHead;
  256. LDR_DATA_TABLE_ENTRY LdrEntry;
  258. LdrEntry.InMemoryOrderLinks.Flink = LdrEntry.InMemoryOrderLinks.Flink = NULL;
  260. try {
  261. while (Wow64FindNextModuleEntry ( hProcess, &LdrEntry, &LdrHead)) {
  263. if (ch < chMax) {
  264. try {
  265. lphModule[ch] = (HMODULE) LdrEntry.DllBase;
  266. } except (EXCEPTION_EXECUTE_HANDLER) {
  267. SetLastError( RtlNtStatusToDosError( GetExceptionCode() ) );
  268. return(FALSE);
  269. }
  270. }
  271. ch++;
  272. if (ch > 10000) {
  273. SetLastError(ERROR_INVALID_HANDLE);
  274. return(FALSE);
  275. }
  276. } //while
  278. *lpcbNeeded = ch * sizeof(HMODULE);
  279. } except (EXCEPTION_EXECUTE_HANDLER) {
  280. SetLastError( RtlNtStatusToDosError( GetExceptionCode() ) );
  281. return(FALSE);
  282. }
  284. return(TRUE);
  285. }
  286. #endif //_WIN64
  287. BOOL
  288. FindModule(
  289. IN HANDLE hProcess,
  290. IN HMODULE hModule,
  291. OUT PLDR_DATA_TABLE_ENTRY LdrEntryData
  292. )
  294. /*++
  296. Routine Description:
  298. This function retrieves the loader table entry for the specified
  299. module. The function copies the entry into the buffer pointed to
  300. by the LdrEntryData parameter.
  302. Arguments:
  304. hProcess - Supplies the target process.
  306. hModule - Identifies the module whose loader entry is being
  307. requested. A value of NULL references the module handle
  308. associated with the image file that was used to create the
  309. process.
  311. LdrEntryData - Returns the requested table entry.
  313. Return Value:
  315. TRUE if a matching entry was found.
  317. --*/
  319. {
  320. PROCESS_BASIC_INFORMATION BasicInfo;
  321. NTSTATUS Status;
  322. PPEB Peb;
  323. PPEB_LDR_DATA Ldr;
  324. PLIST_ENTRY LdrHead;
  325. PLIST_ENTRY LdrNext;
  326. ULONG Count;
  328. Status = NtQueryInformationProcess(
  329. hProcess,
  330. ProcessBasicInformation,
  331. &BasicInfo,
  332. sizeof(BasicInfo),
  333. NULL
  334. );
  336. if ( !NT_SUCCESS(Status) ) {
  337. SetLastError( RtlNtStatusToDosError( Status ) );
  338. return(FALSE);
  339. }
  341. Peb = BasicInfo.PebBaseAddress;
  344. if ( !ARGUMENT_PRESENT( hModule )) {
  345. if (!ReadProcessMemory(hProcess, &Peb->ImageBaseAddress, &hModule, sizeof(hModule), NULL)) {
  346. return(FALSE);
  347. }
  348. }
  350. //
  351. // Ldr = Peb->Ldr
  352. //
  354. if (!ReadProcessMemory(hProcess, &Peb->Ldr, &Ldr, sizeof(Ldr), NULL)) {
  355. return (FALSE);
  356. }
  358. if (!Ldr) {
  359. // Ldr might be null (for instance, if the process hasn't started yet).
  360. SetLastError(ERROR_INVALID_HANDLE);
  361. return (FALSE);
  362. }
  365. LdrHead = &Ldr->InMemoryOrderModuleList;
  367. //
  368. // LdrNext = Head->Flink;
  369. //
  371. if (!ReadProcessMemory(hProcess, &LdrHead->Flink, &LdrNext, sizeof(LdrNext), NULL)) {
  372. return(FALSE);
  373. }
  375. Count = 0;
  376. while (LdrNext != LdrHead) {
  377. PLDR_DATA_TABLE_ENTRY LdrEntry;
  379. LdrEntry = CONTAINING_RECORD(LdrNext, LDR_DATA_TABLE_ENTRY, InMemoryOrderLinks);
  381. if (!ReadProcessMemory(hProcess, LdrEntry, LdrEntryData, sizeof(*LdrEntryData), NULL)) {
  382. return(FALSE);
  383. }
  385. if ((HMODULE) LdrEntryData->DllBase == hModule) {
  386. return(TRUE);
  387. }
  389. LdrNext = LdrEntryData->InMemoryOrderLinks.Flink;
  390. Count++;
  391. if (Count > 10000) {
  392. SetLastError(ERROR_INVALID_HANDLE);
  393. return FALSE;
  394. }
  395. }
  397. #ifdef _WIN64
  398. return Wow64FindModuleEx( hProcess, hModule, LdrEntryData);
  399. #else
  400. SetLastError(ERROR_INVALID_HANDLE);
  401. return(FALSE);
  402. #endif
  403. }
  406. BOOL
  407. WINAPI
  408. EnumProcessModules(
  409. HANDLE hProcess,
  410. HMODULE *lphModule,
  411. DWORD cb,
  412. LPDWORD lpcbNeeded
  413. )
  414. {
  415. PROCESS_BASIC_INFORMATION BasicInfo;
  416. NTSTATUS Status;
  417. PPEB Peb;
  418. PPEB_LDR_DATA Ldr;
  419. PLIST_ENTRY LdrHead;
  420. PLIST_ENTRY LdrNext;
  421. DWORD chMax;
  422. DWORD ch;
  424. Status = NtQueryInformationProcess(
  425. hProcess,
  426. ProcessBasicInformation,
  427. &BasicInfo,
  428. sizeof(BasicInfo),
  429. NULL
  430. );
  432. if ( !NT_SUCCESS(Status) ) {
  433. SetLastError( RtlNtStatusToDosError( Status ) );
  434. return(FALSE);
  435. }
  437. Peb = BasicInfo.PebBaseAddress;
  439. //
  440. // The system process has no PEB. STATUS_PARTIAL_COPY is a poor choice
  441. // for a return value, but it's what's always been returned, so continue
  442. // to do so to maintain application compatibility.
  443. //
  445. if (Peb == NULL) {
  446. SetLastError( RtlNtStatusToDosError( STATUS_PARTIAL_COPY ) );
  447. return(FALSE);
  448. }
  450. //
  451. // Ldr = Peb->Ldr
  452. //
  454. if (!ReadProcessMemory(hProcess, &Peb->Ldr, &Ldr, sizeof(Ldr), NULL)) {
  456. //
  457. // LastError is set by ReadProcessMemory
  458. //
  460. return(FALSE);
  461. }
  463. LdrHead = &Ldr->InMemoryOrderModuleList;
  465. //
  466. // LdrNext = Head->Flink;
  467. //
  469. if (!ReadProcessMemory(hProcess, &LdrHead->Flink, &LdrNext, sizeof(LdrNext), NULL)) {
  470. //
  471. // LastError is set by ReadProcessMemory
  472. //
  474. return(FALSE);
  475. }
  477. chMax = cb / sizeof(HMODULE);
  478. ch = 0;
  480. while (LdrNext != LdrHead) {
  481. PLDR_DATA_TABLE_ENTRY LdrEntry;
  482. LDR_DATA_TABLE_ENTRY LdrEntryData;
  484. LdrEntry = CONTAINING_RECORD(LdrNext, LDR_DATA_TABLE_ENTRY, InMemoryOrderLinks);
  486. if (!ReadProcessMemory(hProcess, LdrEntry, &LdrEntryData, sizeof(LdrEntryData), NULL)) {
  487. //
  488. // LastError is set by ReadProcessMemory
  489. //
  491. return(FALSE);
  492. }
  494. if (ch < chMax) {
  495. try {
  496. lphModule[ch] = (HMODULE) LdrEntryData.DllBase;
  497. } except (EXCEPTION_EXECUTE_HANDLER) {
  498. SetLastError( RtlNtStatusToDosError( GetExceptionCode() ) );
  499. return(FALSE);
  500. }
  501. }
  503. ch++;
  504. if (ch > 10000) {
  505. SetLastError(ERROR_INVALID_HANDLE);
  506. return FALSE;
  507. }
  509. LdrNext = LdrEntryData.InMemoryOrderLinks.Flink;
  510. }
  512. try {
  513. *lpcbNeeded = ch * sizeof(HMODULE);
  514. } except (EXCEPTION_EXECUTE_HANDLER) {
  515. SetLastError( RtlNtStatusToDosError( GetExceptionCode() ) );
  516. return(FALSE);
  517. }
  519. return TRUE;
  520. }
  522. BOOL
  523. WINAPI
  524. EnumProcessModulesEx(
  525. HANDLE hProcess,
  526. HMODULE *lphModule,
  527. DWORD cb,
  528. LPDWORD lpcbNeeded,
  529. DWORD Res,
  530. DWORD dwFlag
  531. )
  532. /*++
  534. Routine Description:
  536. This function all the module handles in a process with listing option like native
  537. modules only, wow64 32bit modules only or all.
  539. Arguments:
  541. hProcess - Supplies the target process.
  543. lphModule - point to a array of modules handle to be filled by this API.
  545. cb - bytes in the array.
  547. lpcNeeded - will how much memory is needed or filled by the call.
  548. Res - for future extension of this API. Set to 0.
  550. dwFlag - control the type of operation.
  551. LIST_MODULES_32BIT 0x01 // list 32bit modules in the target process.
  552. LIST_MODULES_64BIT 0x02 // LIST_WOW64_NATIVE_MODULES list all the modules.
  553. LIST_MODULES_ALL 0x03 // list all the modules
  554. LIST_MODULES_NATIVE 0x0 // This is the default one app should call
  556. Return Value:
  558. TRUE if the module array has been filled properly.
  559. FALSE - For incomplete buffer caller need to check required memory.
  561. <TBD> should 32bit app be allowed to use LIST_MODULES_64BIT?
  563. --*/
  564. {
  565. BOOL Ret= FALSE;
  566. DWORD dwNeeded1=0, dwNeeded=0;
  568. //
  569. // Enumerate the native call
  570. //
  572. if (dwFlag == LIST_MODULES_NATIVE || dwFlag == LIST_MODULES_ALL ) {
  574. Ret = EnumProcessModules(
  575. hProcess,
  576. lphModule,
  577. cb,
  578. &dwNeeded1
  579. );
  581. if (dwFlag == LIST_MODULES_NATIVE ) //native only enumeration
  582. return Ret;
  583. }
  584. #ifdef _WIN64
  585. if (dwNeeded1 > cb) {
  586. //
  587. // Next pass is just inventory.
  588. //
  589. cb =0;
  590. lphModule = NULL;
  591. } else {
  592. cb -= dwNeeded1;
  593. lphModule = &lphModule[dwNeeded1/sizeof (HMODULE)];
  594. }
  596. Ret = Ret && Wow64EnumProcessModules(
  597. hProcess,
  598. lphModule,
  599. cb,
  600. &dwNeeded
  601. );
  602. try {
  603. *lpcbNeeded = dwNeeded1 + dwNeeded;
  604. }
  605. except (EXCEPTION_EXECUTE_HANDLER) {
  606. SetLastError( RtlNtStatusToDosError( GetExceptionCode() ) );
  607. return(FALSE);
  608. }
  609. #endif //_WIN64
  610. return Ret;
  612. }
  615. DWORD
  616. WINAPI
  617. GetModuleFileNameExW(
  618. HANDLE hProcess,
  619. HMODULE hModule,
  620. LPWSTR lpFilename,
  621. DWORD nSize
  622. )
  624. /*++
  626. Routine Description:
  628. This function retrieves the full pathname of the executable file
  629. from which the specified module was loaded. The function copies the
  630. null-terminated filename into the buffer pointed to by the
  631. lpFilename parameter.
  633. Routine Description:
  635. hModule - Identifies the module whose executable file name is being
  636. requested. A value of NULL references the module handle
  637. associated with the image file that was used to create the
  638. process.
  640. lpFilename - Points to the buffer that is to receive the filename.
  642. nSize - Specifies the maximum number of characters to copy. If the
  643. filename is longer than the maximum number of characters
  644. specified by the nSize parameter, it is truncated.
  646. Return Value:
  648. The return value specifies the actual length of the string copied to
  649. the buffer. A return value of zero indicates an error and extended
  650. error status is available using the GetLastError function.
  652. Arguments:
  654. --*/
  656. {
  657. LDR_DATA_TABLE_ENTRY LdrEntryData;
  658. DWORD cb;
  660. if (!FindModule(hProcess, hModule, &LdrEntryData)) {
  661. return(0);
  662. }
  664. nSize *= sizeof(WCHAR);
  666. cb = LdrEntryData.FullDllName.Length + sizeof (WCHAR);
  667. if ( nSize < cb ) {
  668. cb = nSize;
  669. }
  671. if (!ReadProcessMemory(hProcess, LdrEntryData.FullDllName.Buffer, lpFilename, cb, NULL)) {
  672. return(0);
  673. }
  675. if (cb == LdrEntryData.FullDllName.Length + sizeof (WCHAR)) {
  676. cb -= sizeof(WCHAR);
  677. }
  679. return(cb / sizeof(WCHAR));
  680. }
  684. DWORD
  685. WINAPI
  686. GetModuleFileNameExA(
  687. HANDLE hProcess,
  688. HMODULE hModule,
  689. LPSTR lpFilename,
  690. DWORD nSize
  691. )
  692. {
  693. LPWSTR lpwstr;
  694. DWORD cwch;
  695. DWORD cch;
  697. lpwstr = (LPWSTR) LocalAlloc(LMEM_FIXED, nSize * 2);
  699. if (lpwstr == NULL) {
  700. return(0);
  701. }
  703. cwch = cch = GetModuleFileNameExW(hProcess, hModule, lpwstr, nSize);
  705. if (cwch < nSize) {
  706. //
  707. // Include NULL terminator
  708. //
  710. cwch++;
  711. }
  713. if (!WideCharToMultiByte(CP_ACP, 0, lpwstr, cwch, lpFilename, nSize, NULL, NULL)) {
  714. cch = 0;
  715. }
  717. LocalFree((HLOCAL) lpwstr);
  719. return(cch);
  720. }
  723. DWORD
  724. WINAPI
  725. GetModuleBaseNameW(
  726. HANDLE hProcess,
  727. HMODULE hModule,
  728. LPWSTR lpFilename,
  729. DWORD nSize
  730. )
  732. /*++
  734. Routine Description:
  736. This function retrieves the full pathname of the executable file
  737. from which the specified module was loaded. The function copies the
  738. null-terminated filename into the buffer pointed to by the
  739. lpFilename parameter.
  741. Routine Description:
  743. hModule - Identifies the module whose executable file name is being
  744. requested. A value of NULL references the module handle
  745. associated with the image file that was used to create the
  746. process.
  748. lpFilename - Points to the buffer that is to receive the filename.
  750. nSize - Specifies the maximum number of characters to copy. If the
  751. filename is longer than the maximum number of characters
  752. specified by the nSize parameter, it is truncated.
  754. Return Value:
  756. The return value specifies the actual length of the string copied to
  757. the buffer. A return value of zero indicates an error and extended
  758. error status is available using the GetLastError function.
  760. Arguments:
  762. --*/
  764. {
  765. LDR_DATA_TABLE_ENTRY LdrEntryData;
  766. DWORD cb;
  768. if (!FindModule(hProcess, hModule, &LdrEntryData)) {
  769. return(0);
  770. }
  772. nSize *= sizeof(WCHAR);
  774. cb = LdrEntryData.BaseDllName.Length + sizeof (WCHAR);
  775. if ( nSize < cb ) {
  776. cb = nSize;
  777. }
  779. if (!ReadProcessMemory(hProcess, LdrEntryData.BaseDllName.Buffer, lpFilename, cb, NULL)) {
  780. return(0);
  781. }
  783. if (cb == LdrEntryData.BaseDllName.Length + sizeof (WCHAR)) {
  784. cb -= sizeof(WCHAR);
  785. }
  787. return(cb / sizeof(WCHAR));
  788. }
  792. DWORD
  793. WINAPI
  794. GetModuleBaseNameA(
  795. HANDLE hProcess,
  796. HMODULE hModule,
  797. LPSTR lpFilename,
  798. DWORD nSize
  799. )
  800. {
  801. LPWSTR lpwstr;
  802. DWORD cwch;
  803. DWORD cch;
  805. lpwstr = (LPWSTR) LocalAlloc(LMEM_FIXED, nSize * 2);
  807. if (lpwstr == NULL) {
  808. return(0);
  809. }
  811. cwch = cch = GetModuleBaseNameW(hProcess, hModule, lpwstr, nSize);
  813. if (cwch < nSize) {
  814. //
  815. // Include NULL terminator
  816. //
  818. cwch++;
  819. }
  821. if (!WideCharToMultiByte(CP_ACP, 0, lpwstr, cwch, lpFilename, nSize, NULL, NULL)) {
  822. cch = 0;
  823. }
  825. LocalFree((HLOCAL) lpwstr);
  827. return(cch);
  828. }
  831. BOOL
  832. WINAPI
  833. GetModuleInformation(
  834. HANDLE hProcess,
  835. HMODULE hModule,
  836. LPMODULEINFO lpmodinfo,
  837. DWORD cb
  838. )
  839. {
  840. LDR_DATA_TABLE_ENTRY LdrEntryData;
  841. MODULEINFO modinfo;
  843. if (cb < sizeof(MODULEINFO)) {
  844. SetLastError( ERROR_INSUFFICIENT_BUFFER );
  845. return(FALSE);
  846. }
  848. if (!FindModule(hProcess, hModule, &LdrEntryData)) {
  849. return(0);
  850. }
  852. modinfo.lpBaseOfDll = (PVOID) hModule;
  853. modinfo.SizeOfImage = LdrEntryData.SizeOfImage;
  854. modinfo.EntryPoint = LdrEntryData.EntryPoint;
  856. try {
  857. *lpmodinfo = modinfo;
  858. } except (EXCEPTION_EXECUTE_HANDLER) {
  859. SetLastError( RtlNtStatusToDosError( GetExceptionCode() ) );
  860. return(FALSE);
  861. }
  863. return(TRUE);
  864. }