archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 7b07a90fc1
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '7b07a90fc1'
${ noResults }
windows-server-2003/windows/appcompat/shims/specific/encompassmonitor.cpp

331 lines
9.8 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. /*++
  3. Copyright (c) 2000 Microsoft Corporation
  5. Module Name:
  7. EncompassMonitor.cpp
  9. Abstract:
  11. Filters messages from the apps CBT WindowsHook.
  13. Notes:
  15. This is a general purpose shim.
  17. History:
  19. 01/30/2001 a-larrsh Created
  20. 02/18/2002 robkenny Properly check the return value from GetTempPathA
  22. --*/
  24. #include "precomp.h"
  26. IMPLEMENT_SHIM_BEGIN(EncompassMonitor)
  27. #include "ShimHookMacro.h"
  30. APIHOOK_ENUM_BEGIN
  31. APIHOOK_ENUM_ENTRY(SetWindowsHookExA)
  32. APIHOOK_ENUM_END
  35. // Local Hook Information
  36. HHOOK g_hCBTHook = NULL;
  37. HOOKPROC g_OriginalEncompassMonitorCBTProc = NULL;
  39. // Shared Data Infomation
  41. #define SHARED_SECTION_NAME "EncompassMonitor_SharedMemoryData"
  42. typedef struct
  43. {
  44. char szModuleFileName[MAX_PATH];
  45. HANDLE hModule;
  46. HOOKPROC pfnHookProc;
  48. } SHARED_HOOK_INFO, *PSHARED_HOOK_INFO;
  50. HANDLE g_hSharedMapping = NULL;
  51. PSHARED_HOOK_INFO g_pSharedHookInfo = NULL;
  54. // Creates Shared memory. Only called by the originial SHIM
  55. void CreateSharedMemory(HMODULE hModule, HOOKPROC pfnHookProc)
  56. {
  57. HANDLE hSharedFile;
  58. char szTempPath[MAX_PATH];
  59. char szTempFileName[MAX_PATH];
  61. // create the memory mapped file necessary to communicate between the original Instanace of SHIM
  62. // and the following instances of SHIMS
  63. DWORD dwTemp = GetTempPathA(sizeof(szTempPath), szTempPath);
  64. if (dwTemp == 0 ||
  65. dwTemp > sizeof(szTempPath))
  66. {
  67. DPFN( eDbgLevelError, "GetTempPath failed\n");
  68. goto errCreateSharedSection;
  69. }
  71. if (GetTempFileNameA(szTempPath, "mem", NULL, szTempFileName) == 0)
  72. {
  73. DPFN( eDbgLevelError, "GetTempFileName failed\n");
  74. goto errCreateSharedSection;
  75. }
  77. hSharedFile = CreateFileA( szTempFileName,
  78. GENERIC_READ | GENERIC_WRITE,
  79. FILE_SHARE_READ | FILE_SHARE_WRITE | FILE_SHARE_DELETE,
  80. NULL,
  81. CREATE_ALWAYS,
  82. FILE_ATTRIBUTE_TEMPORARY | FILE_FLAG_DELETE_ON_CLOSE,
  83. NULL);
  85. if (hSharedFile == NULL)
  86. {
  87. DPFN( eDbgLevelError, "CreateFile failed to create '%s'\n", szTempFileName);
  88. goto errCreateSharedSection;
  89. }
  91. // Increase size of file (create the mapping)
  92. g_hSharedMapping = CreateFileMappingA( hSharedFile,
  93. NULL,
  94. PAGE_READWRITE,
  95. NULL,
  96. sizeof(SHARED_HOOK_INFO),
  97. SHARED_SECTION_NAME);
  99. if (g_hSharedMapping == NULL)
  100. {
  101. DPFN( eDbgLevelError, "CreateFileMapping failed\n");
  102. goto errCreateSharedSection;
  103. }
  105. g_pSharedHookInfo = (PSHARED_HOOK_INFO)MapViewOfFile(g_hSharedMapping,
  106. FILE_MAP_ALL_ACCESS,
  107. 0,
  108. 0,
  109. sizeof(SHARED_HOOK_INFO));
  111. if (g_pSharedHookInfo == NULL)
  112. {
  113. DWORD dwErr = GetLastError();
  114. DPFN( eDbgLevelError, "MapViewOfFile failed [%d]", (int)dwErr);
  115. goto errCreateSharedSection;
  116. }
  118. CloseHandle(hSharedFile);
  120. g_pSharedHookInfo->hModule = hModule;
  121. g_pSharedHookInfo->pfnHookProc = pfnHookProc;
  122. if (0 == GetModuleFileNameA(hModule, g_pSharedHookInfo->szModuleFileName, MAX_PATH))
  123. {
  124. DPFN( eDbgLevelError, "GetModuleFileNameA failed\n");
  125. goto errCreateSharedSection;
  126. }
  128. if (!FlushViewOfFile(g_pSharedHookInfo, sizeof(SHARED_HOOK_INFO)))
  129. {
  130. DPFN( eDbgLevelError, "FlushViewOfFile failed\n");
  131. goto errCreateSharedSection;
  132. }
  134. DPFN( eDbgLevelInfo, "WRITE::Shared Section Successful");
  135. DPFN( eDbgLevelInfo, "WRITE::g_pSharedHookInfo->hModule=%x", g_pSharedHookInfo->hModule);
  136. DPFN( eDbgLevelInfo, "WRITE::g_pSharedHookInfo->pfnHookProc=%x", g_pSharedHookInfo->pfnHookProc);
  137. DPFN( eDbgLevelInfo, "WRITE::g_pSharedHookInfo->szModuleFileName=%s", g_pSharedHookInfo->szModuleFileName);
  139. return;
  141. errCreateSharedSection:
  142. DPFN( eDbgLevelError, "WRITE::Shared Section FAILED");
  143. return;
  144. }
  146. // Gets Shared Memory - Only called by injected versions of hook function
  147. void GetSharedMemory()
  148. {
  149. HANDLE hSharedFileMapping = NULL;
  151. hSharedFileMapping = OpenFileMappingA( FILE_MAP_ALL_ACCESS,
  152. FALSE,
  153. SHARED_SECTION_NAME);
  155. if (hSharedFileMapping != NULL)
  156. {
  157. PSHARED_HOOK_INFO pSharedHookInfo = (PSHARED_HOOK_INFO)MapViewOfFile( hSharedFileMapping,
  158. FILE_MAP_ALL_ACCESS,
  159. 0,
  160. 0,
  161. 0);
  163. if (pSharedHookInfo)
  164. {
  165. DPFN( eDbgLevelInfo, "READ::pSharedHookInfo->hModule=%x", pSharedHookInfo->hModule);
  166. DPFN( eDbgLevelInfo, "READ::pSharedHookInfo->pfnHookProc=%x", pSharedHookInfo->pfnHookProc);
  167. DPFN( eDbgLevelInfo, "READ::pSharedHookInfo->szModuleFileName=%s", pSharedHookInfo->szModuleFileName);
  169. // Load DLL with original CBT Proc in it.
  170. HANDLE hMod = LoadLibraryA(pSharedHookInfo->szModuleFileName);
  172. if (!hMod)
  173. {
  174. DPFN( eDbgLevelError, "LoadLibrary(\"%s\") - FAILED", pSharedHookInfo->szModuleFileName);
  175. }
  177. g_OriginalEncompassMonitorCBTProc = (HOOKPROC)((DWORD)hMod + ((DWORD)pSharedHookInfo->pfnHookProc) - (DWORD)pSharedHookInfo->hModule);
  178. DPFN( eDbgLevelInfo, "READ::Shared Section Successful - Original Hook at %x", g_OriginalEncompassMonitorCBTProc);
  180. CloseHandle(hSharedFileMapping);
  181. UnmapViewOfFile(pSharedHookInfo);
  182. }
  183. else
  184. {
  185. DPFN( eDbgLevelError, "MapViewOfFile() Failed");
  186. }
  187. }
  188. else
  189. {
  190. DPFN( eDbgLevelError, "READ::Shared Section Failed");
  191. }
  192. }
  194. // Replacement CBT Hook function
  195. LRESULT CALLBACK Filtered_EncompassMonitorCBTProc(
  196. int nCode, // hook code
  197. WPARAM wParam, // depends on hook code
  198. LPARAM lParam // depends on hook code
  199. )
  200. {
  201. LRESULT lResult = 0; // Allow operation to continue
  202. bool bFilterMessage = false;
  204. if (g_OriginalEncompassMonitorCBTProc == NULL)
  205. {
  206. GetSharedMemory();
  207. }
  209. if (nCode == HCBT_CREATEWND)
  210. {
  211. CBT_CREATEWNDA *pccw = (CBT_CREATEWNDA*)lParam;
  213. if ( (IS_INTRESOURCE(pccw->lpcs->lpszClass)) )
  214. {
  215. char szBuf[256];
  216. GetClassNameA((HWND)wParam, szBuf, 255);
  218. bFilterMessage=true;
  219. DPFN( eDbgLevelInfo, "[%x] - Filtered_EncompassMonitorCBTProc::HCBT_CREATEWND %s [ATOM CLASS FILTERED]", g_OriginalEncompassMonitorCBTProc, szBuf);
  220. }
  221. else
  222. {
  223. DPFN( eDbgLevelInfo, "[%x] - Filtered_EncompassMonitorCBTProc::HCBT_CREATEWND %s ", g_OriginalEncompassMonitorCBTProc, pccw->lpcs->lpszClass);
  224. }
  225. }
  227. if ( g_OriginalEncompassMonitorCBTProc )
  228. {
  229. if (bFilterMessage)
  230. {
  231. lResult = CallNextHookEx(g_hCBTHook, nCode, wParam, lParam);
  232. }
  233. else
  234. {
  235. lResult = g_OriginalEncompassMonitorCBTProc(nCode, wParam, lParam);
  236. }
  237. }
  238. else
  239. {
  240. DPFN( eDbgLevelError, "Filtered_EncompassMonitorCBTProc:: ** BAD g_OriginalEncompassMonitorCBTProc2 **");
  242. lResult = CallNextHookEx(g_hCBTHook, nCode, wParam, lParam);
  243. }
  245. return lResult;
  246. }
  249. // SHIMMED API
  250. HHOOK APIHOOK(SetWindowsHookExA)(
  251. int idHook, // hook type
  252. HOOKPROC lpfn, // hook procedure
  253. HINSTANCE hMod, // handle to application instance
  254. DWORD dwThreadId // thread identifier
  255. )
  256. {
  257. static int nNumCBThooks = 0;
  259. HHOOK hHook;
  261. if (idHook == WH_CBT)
  262. {
  263. nNumCBThooks++;
  265. switch(nNumCBThooks)
  266. {
  267. case 1:
  268. hHook = ORIGINAL_API(SetWindowsHookExA)(idHook, lpfn, hMod, dwThreadId);
  269. DPFN( eDbgLevelInfo, "%x=SetWindowsHookEx(%d, %x, %x, %x) - Ignoring First Hook Call", hHook, idHook, lpfn, hMod, dwThreadId);
  270. break;
  272. case 2:
  273. g_OriginalEncompassMonitorCBTProc = lpfn;
  274. g_hCBTHook = hHook = ORIGINAL_API(SetWindowsHookExA)(idHook, Filtered_EncompassMonitorCBTProc, g_hinstDll, dwThreadId);
  276. DPFN( eDbgLevelInfo, "%x=SetWindowsHookEx(%d, %x, %x, %x) - Replacing Hook with Filtered_EncompassMonitorCBTProc", hHook, idHook, lpfn, hMod, dwThreadId);
  278. CreateSharedMemory(hMod, lpfn);
  279. break;
  281. default:
  282. hHook = ORIGINAL_API(SetWindowsHookExA)(idHook, lpfn, hMod, dwThreadId);
  283. DPFN( eDbgLevelError, "SetWindowsHookEx -- More then 2 WH_CBT hooks [%d]", nNumCBThooks);
  284. break;
  285. }
  286. }
  287. else
  288. {
  289. hHook = ORIGINAL_API(SetWindowsHookExA)(idHook, lpfn, hMod, dwThreadId);
  290. }
  292. return hHook;
  293. }
  296. BOOL
  297. NOTIFY_FUNCTION(DWORD fdwReason)
  298. {
  299. if (fdwReason == DLL_PROCESS_DETACH)
  300. {
  301. if (g_hSharedMapping)
  302. {
  303. CloseHandle(g_hSharedMapping);
  304. g_hSharedMapping = NULL;
  305. }
  307. if (g_pSharedHookInfo)
  308. {
  309. UnmapViewOfFile(g_pSharedHookInfo);
  310. g_pSharedHookInfo = NULL;
  311. }
  312. }
  314. return TRUE;
  315. }
  318. /*++
  320. Register hooked functions
  322. --*/
  324. HOOK_BEGIN
  325. CALL_NOTIFY_FUNCTION
  327. APIHOOK_ENTRY(USER32.DLL, SetWindowsHookExA)
  328. HOOK_END
  330. IMPLEMENT_SHIM_END