archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
3 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 827363a95b
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '827363a95b'
${ noResults }
windows-server-2003/base/ntos/rtl/rtlimagentheader.c

220 lines
6.5 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. /*++
  3. Copyright (c) Microsoft Corporation
  5. Module Name:
  7. rtlimagentheader.c
  9. Abstract:
  11. The module contains RtlImageNtHeader and RtlImageNtHeaderEx.
  13. Author:
  15. Jay Krell (JayKrell) February 2002
  17. Environment:
  19. user mode
  20. kernel mode
  21. boot loader
  22. statically linked to imagehlp.dll (actually RtlpImageNtHeader)
  23. statically linked to unicows.lib (actually RtlpImageNtHeader)
  25. Revision History:
  27. --*/
  29. #include "ntrtlp.h"
  31. #if DBG
  32. int
  33. RtlImageNtHeaderEx_ExceptionFilter(
  34. BOOLEAN RangeCheck,
  35. ULONG ExceptionCode
  36. )
  37. {
  38. ASSERT(!RangeCheck || ExceptionCode == STATUS_IN_PAGE_ERROR);
  39. return EXCEPTION_EXECUTE_HANDLER;
  40. }
  41. #else
  42. #define RtlImageNtHeaderEx_ExceptionFilter(RangeCheck, ExceptionCode) EXCEPTION_EXECUTE_HANDLER
  43. #endif
  45. NTSTATUS
  46. NTAPI
  47. RtlImageNtHeaderEx(
  48. ULONG Flags,
  49. PVOID Base,
  50. ULONG64 Size,
  51. OUT PIMAGE_NT_HEADERS * OutHeaders
  52. )
  54. /*++
  56. Routine Description:
  58. This function returns the address of the NT Header.
  60. This function is a bit complicated.
  61. It is this way because RtlImageNtHeader that it replaces was hard to understand,
  62. and this function retains compatibility with RtlImageNtHeader.
  64. RtlImageNtHeader was #ifed such as to act different in each of the three
  65. boot loader, kernel, usermode flavors.
  67. boot loader -- no exception handling
  68. usermode -- limit msdos header to 256meg, catch any exception accessing the msdos-header
  69. or the pe header
  70. kernel -- don't cross user/kernel boundary, don't catch the exceptions,
  71. no 256meg limit
  73. Arguments:
  75. Flags - RTL_IMAGE_NT_HEADER_EX_FLAG_NO_RANGE_CHECK -- don't be so picky
  76. about the image, for compatibility with RtlImageNtHeader
  77. Base - Supplies the base of the image.
  78. Size - The size of the view, usually larger than the size of the file on disk.
  79. This is available from NtMapViewOfSection but not from MapViewOfFile.
  80. OutHeaders -
  82. Return Value:
  84. STATUS_SUCCESS -- everything ok
  85. STATUS_INVALID_IMAGE_FORMAT -- bad filesize or signature value
  86. STATUS_INVALID_PARAMETER -- bad parameters
  88. --*/
  90. {
  91. PIMAGE_NT_HEADERS NtHeaders = 0;
  92. ULONG e_lfanew = 0;
  93. BOOLEAN RangeCheck = 0;
  94. NTSTATUS Status = 0;
  95. const ULONG ValidFlags =
  96. RTL_IMAGE_NT_HEADER_EX_FLAG_NO_RANGE_CHECK;
  98. if (OutHeaders != NULL) {
  99. *OutHeaders = NULL;
  100. }
  101. if (OutHeaders == NULL) {
  102. Status = STATUS_INVALID_PARAMETER;
  103. goto Exit;
  104. }
  105. if ((Flags & ~ValidFlags) != 0) {
  106. Status = STATUS_INVALID_PARAMETER;
  107. goto Exit;
  108. }
  109. if (Base == NULL || Base == (PVOID)(LONG_PTR)-1) {
  110. Status = STATUS_INVALID_PARAMETER;
  111. goto Exit;
  112. }
  114. RangeCheck = ((Flags & RTL_IMAGE_NT_HEADER_EX_FLAG_NO_RANGE_CHECK) == 0);
  115. if (RangeCheck) {
  116. if (Size < sizeof(IMAGE_DOS_HEADER)) {
  117. Status = STATUS_INVALID_IMAGE_FORMAT;
  118. goto Exit;
  119. }
  120. }
  121. #if !defined (BLDR_KERNEL_RUNTIME) && !defined(NTOS_KERNEL_RUNTIME)
  122. //
  123. // In usermode, catch any exceptions taken while accessing e_magic, e_lfanew or Signature;
  124. // This should only be needed in the no_range_check case now.
  125. //
  126. __try {
  127. #define EXIT __leave
  128. #else
  129. //
  130. // Exception handling is not available in the boot loader, and exceptions
  131. // were not historically caught here in kernel mode. Drivers are considered
  132. // trusted, so we can't get an exception here due to a bad file, but we
  133. // could take an inpage error.
  134. //
  135. #define EXIT goto Exit
  136. #endif
  137. if (((PIMAGE_DOS_HEADER)Base)->e_magic != IMAGE_DOS_SIGNATURE) {
  138. Status = STATUS_INVALID_IMAGE_FORMAT;
  139. EXIT;
  140. }
  141. e_lfanew = ((PIMAGE_DOS_HEADER)Base)->e_lfanew;
  142. if (RangeCheck) {
  143. if (e_lfanew >= Size
  144. #define SIZEOF_PE_SIGNATURE 4
  145. || e_lfanew >= (MAXULONG - SIZEOF_PE_SIGNATURE - sizeof(IMAGE_FILE_HEADER))
  146. || (e_lfanew + SIZEOF_PE_SIGNATURE + sizeof(IMAGE_FILE_HEADER)) >= Size
  147. ) {
  148. Status = STATUS_INVALID_IMAGE_FORMAT;
  149. EXIT;
  150. }
  151. }
  152. #if !defined (BLDR_KERNEL_RUNTIME) && !defined(NTOS_KERNEL_RUNTIME)
  153. //
  154. // In usermode, limit msdos header to 256meg.
  155. //
  156. if (e_lfanew >= RTLP_IMAGE_MAX_DOS_HEADER) {
  157. Status = STATUS_INVALID_IMAGE_FORMAT;
  158. EXIT;
  159. }
  160. #endif
  161. NtHeaders = (PIMAGE_NT_HEADERS)((PCHAR)Base + e_lfanew);
  162. #if defined(NTOS_KERNEL_RUNTIME)
  163. //
  164. // In kernelmode, do not cross from usermode address to kernelmode address.
  165. //
  166. if (Base < MM_HIGHEST_USER_ADDRESS) {
  167. if ((PVOID)NtHeaders >= MM_HIGHEST_USER_ADDRESS) {
  168. Status = STATUS_INVALID_IMAGE_FORMAT;
  169. EXIT;
  170. }
  171. //
  172. // Note that this check is slightly overeager since IMAGE_NT_HEADERS has
  173. // a builtin array of data_directories that may be larger than the image
  174. // actually has. A better check would be to add FileHeader.SizeOfOptionalHeader,
  175. // after ensuring that the FileHeader does not cross the u/k boundary.
  176. //
  177. if ((PVOID)((PCHAR)NtHeaders + sizeof (IMAGE_NT_HEADERS)) >= MM_HIGHEST_USER_ADDRESS) {
  178. Status = STATUS_INVALID_IMAGE_FORMAT;
  179. EXIT;
  180. }
  181. }
  182. #endif
  183. if (NtHeaders->Signature != IMAGE_NT_SIGNATURE) {
  184. Status = STATUS_INVALID_IMAGE_FORMAT;
  185. EXIT;
  186. }
  187. Status = STATUS_SUCCESS;
  188. #if !defined (BLDR_KERNEL_RUNTIME) && !defined(NTOS_KERNEL_RUNTIME)
  189. } __except(RtlImageNtHeaderEx_ExceptionFilter(RangeCheck, GetExceptionCode())) {
  190. //
  191. // In usermode, catch any exceptions taken while accessing e_magic, e_lfanew or Signature;
  192. // This should only be needed in the no_range_check case now, the exception filter
  193. // asserts to that affect.
  194. //
  195. // Propagating STATUS_IN_PAGE_ERROR if that's what the exception
  196. // was may be better, but it may be incompatible.
  197. //
  198. // Letting STATUS_IN_PAGE_ERROR go as an exception may also be better.
  199. //
  200. Status = STATUS_INVALID_IMAGE_FORMAT;
  201. }
  202. #endif
  203. Exit:
  204. if (NT_SUCCESS(Status)) {
  205. *OutHeaders = NtHeaders;
  206. }
  207. return Status;
  208. }
  209. #undef EXIT
  211. PIMAGE_NT_HEADERS
  212. NTAPI
  213. RtlImageNtHeader(
  214. PVOID Base
  215. )
  216. {
  217. PIMAGE_NT_HEADERS NtHeaders = NULL;
  218. (VOID)RtlImageNtHeaderEx(RTL_IMAGE_NT_HEADER_EX_FLAG_NO_RANGE_CHECK, Base, 0, &NtHeaders);
  219. return NtHeaders;
  220. }