archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 7b07a90fc1
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '7b07a90fc1'
${ noResults }
windows-server-2003/windows/appcompat/shims/specific/hoylegames.cpp

320 lines
9.1 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. /*++
  3. Copyright (c) 2000-2002 Microsoft Corporation
  5. Module Name:
  7. HoyleGames.cpp
  9. Abstract:
  11. All Hoyle apps have one common problem and that is a hard
  12. coded "C:\" in its data section of the image.The apps crash
  13. because of this if installed and run from any other drive
  14. other than C:\.
  15. This shim goes through the image of the app searching
  16. for the hardcoded string and replaces them if found. This
  17. shim replaces all the existing app specific shims for
  18. Hoyle Games.
  20. This is an app specific shim.
  23. History:
  25. 04/17/2001 Prashkud Created
  27. --*/
  29. #include "precomp.h"
  31. IMPLEMENT_SHIM_BEGIN(HoyleGames)
  32. #include "ShimHookMacro.h"
  34. APIHOOK_ENUM_BEGIN
  35. APIHOOK_ENUM_ENTRY(GetPrivateProfileStringA)
  36. APIHOOK_ENUM_END
  38. // Max Virtual address replacements in all sections
  39. #define MAX_VA 50
  41. // Global array to hold the replacement VA
  42. DWORD g_ReplaceVA[MAX_VA];
  44. // Replacement count
  45. int g_ReplaceCnt;
  47. /*++
  49. Parse the Section and fill in the location index into the
  50. SECTION structure. This function also fills in the number
  51. of occurences of the hard-coded "C:\" string in this section.
  53. --*/
  55. BOOL
  56. GetReplacementLocations(
  57. DWORD dwSecPtr,
  58. DWORD dwSize
  59. )
  60. {
  61. BYTE *pbFilePtr = (BYTE*)dwSecPtr;
  62. BOOL bRet = FALSE;
  65. for (DWORD i = 0; i < dwSize - 2 && g_ReplaceCnt < MAX_VA; i++)
  66. {
  67. if ((BYTE)*(pbFilePtr + i) == 'c')
  68. {
  69. if((BYTE)*(pbFilePtr + i + 1) == ':' &&
  70. (BYTE)*(pbFilePtr + i + 2) == '\\')
  71. {
  72. g_ReplaceVA[g_ReplaceCnt++] = dwSecPtr + i;
  73. bRet = TRUE;
  74. }
  75. }
  76. }
  77. return bRet;
  78. }
  80. /*++
  82. This function loops through each section looking for a Initialized Data
  83. section. Once it gets the Initialized Data section, it calls the helper
  84. function GetReplacementLocations() to get the offset from the base of the
  85. section. It then calculates the Virtual Address at which the replacement
  86. should occur.
  88. --*/
  90. BOOL
  91. GetInitializedDataSection()
  92. {
  93. PIMAGE_NT_HEADERS NtHeader;
  94. PIMAGE_FILE_HEADER FileHeader;
  95. PIMAGE_OPTIONAL_HEADER OptionalHeader;
  96. PIMAGE_SECTION_HEADER NtSection;
  97. DWORD dwSectionVA = 0, dwSize = 0;
  98. BOOL bRet = FALSE;
  100. // Get the module base address
  101. PUCHAR Base = (PUCHAR)GetModuleHandle(NULL);
  103. if ((ULONG_PTR)Base & 0x00000001)
  104. {
  105. Base = (PUCHAR)((ULONG_PTR)Base & ~0x1);
  106. }
  108. NtHeader = RtlpImageNtHeader(Base);
  110. if (NtHeader)
  111. {
  112. FileHeader = &NtHeader->FileHeader;
  113. OptionalHeader = &NtHeader->OptionalHeader;
  114. }
  115. else
  116. {
  117. // Handle case where Image passed in doesn't have a dos stub (ROM images for instance);
  118. FileHeader = (PIMAGE_FILE_HEADER)Base;
  119. OptionalHeader = (PIMAGE_OPTIONAL_HEADER) ((ULONG_PTR)Base + IMAGE_SIZEOF_FILE_HEADER);
  120. }
  122. NtSection = (PIMAGE_SECTION_HEADER)((ULONG_PTR)OptionalHeader +
  123. FileHeader->SizeOfOptionalHeader);
  126. for (DWORD i=0; i<FileHeader->NumberOfSections; i++)
  127. {
  128. // Check whether the section is a Initialized Data Section
  129. if (NtSection->Characteristics & IMAGE_SCN_CNT_INITIALIZED_DATA)
  130. {
  131. // Size of the Section to search
  132. dwSize = NtSection->SizeOfRawData;
  134. // Get the Section's Virtual address
  135. dwSectionVA = (DWORD)(Base + NtSection->VirtualAddress);
  137. __try
  138. {
  139. if(GetReplacementLocations(dwSectionVA, dwSize))
  140. {
  141. bRet = TRUE;
  142. }
  143. DPFN( eDbgLevelError, "Replacing was successful");
  145. }
  146. __except(EXCEPTION_EXECUTE_HANDLER)
  147. {
  148. DPFN( eDbgLevelError, "Replacing crashed");
  149. goto Exit;
  150. }
  152. }
  154. ++NtSection;
  155. }
  156. return bRet;
  159. Exit:
  160. return FALSE;
  161. }
  163. /*++
  165. This function hooks GetVersion (called early on by Hoyle Board Games)
  166. and replaces the hard coded 'c's with the correct install drive letter
  167. that it looks up in the registry.
  169. It uses g_HoyleWordGames_bPatched to patch only once.
  171. --*/
  173. BOOL
  174. NOTIFY_FUNCTION(
  175. DWORD fdwReason
  176. )
  177. {
  178. if (fdwReason == SHIM_STATIC_DLLS_INITIALIZED)
  179. {
  180. CHAR szProgFilesDir[MAX_PATH]; // Added by Noah Young on 1/26/01
  181. DWORD cch = ARRAYSIZE(szProgFilesDir);
  182. HKEY hKey = 0;
  183. DWORD dwOldProtect = 0;
  187. // Fix problem where Program Files dir isn't on same drive as BOARD3.EXE
  188. if( ERROR_SUCCESS == RegOpenKeyExA(HKEY_LOCAL_MACHINE,
  189. "SOFTWARE\\Microsoft\\Windows\\CurrentVersion",
  190. 0,
  191. KEY_QUERY_VALUE,
  192. &hKey) )
  193. {
  194. if( ERROR_SUCCESS == RegQueryValueExA(hKey,
  195. "ProgramFilesDir",
  196. NULL,
  197. NULL, // REG_SZ
  198. (LPBYTE)szProgFilesDir,
  199. &cch) )
  200. {
  201. // Scan the image's initialized data section....
  202. char szModule[MAX_PATH];
  204. cch = GetModuleFileNameA(NULL, szModule, ARRAYSIZE(szModule));
  205. if( cch > 0 && cch < ARRAYSIZE(szModule) )
  206. {
  207. // Get the Virtual adresses that need to be replaced
  208. if(GetInitializedDataSection())
  209. {
  210. long PATCH_LENGTH = g_ReplaceVA[ g_ReplaceCnt - 1] - g_ReplaceVA[0] + 1;
  212. // Make the memory page writable
  213. if( VirtualProtect( (PVOID) g_ReplaceVA[0],
  214. PATCH_LENGTH,
  215. PAGE_READWRITE,
  216. &dwOldProtect ) )
  217. {
  218. for (int i=0; i< g_ReplaceCnt; i++)
  219. {
  220. // Make sure it's what we expect
  221. if( 'c' == *((CHAR*) g_ReplaceVA[i]) )
  222. {
  223. if (i==0)
  224. {
  225. *((CHAR*) g_ReplaceVA[i]) = szProgFilesDir[0];
  226. }
  227. else
  228. {
  229. *((CHAR*) g_ReplaceVA[i]) = szModule[0];
  230. }
  231. }
  232. }
  233. }
  234. } else {
  235. DPFN( eDbgLevelError, "No patching done!");
  236. }
  237. } else {
  238. DPFN( eDbgLevelError, "GetModuleFileNameA failed!");
  239. }
  240. } else {
  241. DPFN( eDbgLevelError, "Failed to query \"ProgramFilesDir\"!");
  242. }
  243. RegCloseKey(hKey);
  244. } else {
  245. DPFN( eDbgLevelError, "Failed to open key \"SOFTWARE\\Microsoft\\Windows\\CurrentVersion\"!");
  246. }
  247. }
  249. return TRUE;
  250. }
  252. /*++
  254. Very specific hack to return a good FaceMaker path, so the app doesn't fail
  255. when it is installed on the wrong drive.
  257. --*/
  259. DWORD
  260. APIHOOK(GetPrivateProfileStringA)(
  261. LPCSTR lpAppName,
  262. LPCSTR lpKeyName,
  263. LPCSTR lpDefault,
  264. LPSTR lpReturnedString,
  265. DWORD nSize,
  266. LPCSTR lpFileName
  267. )
  268. {
  269. CSTRING_TRY
  270. {
  271. CString csApp = lpAppName;
  272. CString csKey = lpKeyName;
  273. CString csFile = lpFileName;
  275. if ((csApp.Compare(L"Settings") == 0) &&
  276. (csKey.Compare(L"FaceMakerPath") == 0) &&
  277. (csFile.Find(L"CARDGAME.INI") > -1)) {
  279. DWORD dwRet = ORIGINAL_API(GetPrivateProfileStringA)(lpAppName, lpKeyName,
  280. lpDefault, lpReturnedString, nSize, lpFileName);
  282. if (!dwRet) {
  283. // Substitute the right path
  284. CString csPath = L"%ProgramFiles%\\WON\\FaceMaker";
  285. csPath.ExpandEnvironmentStringsW();
  286. if (lpReturnedString && ((int)nSize > csPath.GetLength())) {
  287. LOGN(eDbgLevelError, "[GetPrivateProfileStringA] Forced correct FaceMaker path");
  288. strncpy(lpReturnedString, csPath.GetAnsi(), nSize);
  289. dwRet = csPath.GetLength();
  290. }
  291. }
  293. return dwRet;
  294. }
  295. }
  296. CSTRING_CATCH
  297. {
  298. // fall through
  299. }
  302. return ORIGINAL_API(GetPrivateProfileStringA)(lpAppName, lpKeyName,
  303. lpDefault, lpReturnedString, nSize, lpFileName);
  304. }
  306. /*++
  308. Register hooked functions
  310. --*/
  312. HOOK_BEGIN
  314. CALL_NOTIFY_FUNCTION
  315. APIHOOK_ENTRY(KERNEL32.DLL, GetPrivateProfileStringA)
  317. HOOK_END
  319. IMPLEMENT_SHIM_END