archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
8 Commits
1 Branch
0 Tags
2.0 GiB
Tree: 744f0b4006
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '744f0b4006'
${ noResults }
windows-xp/Source/XPSP1/NT/windows/appcompat/shims/specific/encompassmonitor.cpp

326 lines
9.3 KiB
Raw Normal View History

Add source files
4 years ago
  1. /*++
  3. Copyright (c) 2000 Microsoft Corporation
  5. Module Name:
  7. EncompassMonitor.cpp
  9. Abstract:
  11. Filters messages from the apps CBT WindowsHook.
  13. Notes:
  15. This is a general purpose shim.
  17. History:
  19. 1/30/2001 a-larrsh Created
  21. --*/
  23. #include "precomp.h"
  25. IMPLEMENT_SHIM_BEGIN(EncompassMonitor)
  26. #include "ShimHookMacro.h"
  29. APIHOOK_ENUM_BEGIN
  30. APIHOOK_ENUM_ENTRY(SetWindowsHookExA)
  31. APIHOOK_ENUM_END
  34. // Local Hook Information
  35. HHOOK g_hCBTHook = NULL;
  36. HOOKPROC g_OriginalEncompassMonitorCBTProc = NULL;
  38. // Shared Data Infomation
  40. #define SHARED_SECTION_NAME "EncompassMonitor_SharedMemoryData"
  41. typedef struct
  42. {
  43. char szModuleFileName[MAX_PATH];
  44. HANDLE hModule;
  45. HOOKPROC pfnHookProc;
  47. } SHARED_HOOK_INFO, *PSHARED_HOOK_INFO;
  49. HANDLE g_hSharedMapping = NULL;
  50. PSHARED_HOOK_INFO g_pSharedHookInfo = NULL;
  53. // Creates Shared memory. Only called by the originial SHIM
  54. void CreateSharedMemory(HMODULE hModule, HOOKPROC pfnHookProc)
  55. {
  56. HANDLE hSharedFile;
  57. char szTempPath[MAX_PATH];
  58. char szTempFileName[MAX_PATH];
  59. DWORD dwTemp;
  61. // create the memory mapped file necessary to comunicate between the original Instanace of SHIM
  62. // and the following instances of SHIMS
  63. if (GetTempPathA(sizeof(szTempPath), szTempPath) == 0)
  64. {
  65. DPFN( eDbgLevelError, "GetTempPath failed\n");
  66. goto errCreateSharedSection;
  67. }
  69. if (GetTempFileNameA(szTempPath, "mem", NULL, szTempFileName) == 0)
  70. {
  71. DPFN( eDbgLevelError, "GetTempFileName failed\n");
  72. goto errCreateSharedSection;
  73. }
  75. hSharedFile = CreateFileA( szTempFileName,
  76. GENERIC_READ | GENERIC_WRITE,
  77. FILE_SHARE_READ | FILE_SHARE_WRITE | FILE_SHARE_DELETE,
  78. NULL,
  79. CREATE_ALWAYS,
  80. FILE_ATTRIBUTE_TEMPORARY | FILE_FLAG_DELETE_ON_CLOSE,
  81. NULL);
  83. if (hSharedFile == NULL)
  84. {
  85. DPFN( eDbgLevelError, "CreateFile failed to create '%s'\n", szTempFileName);
  86. goto errCreateSharedSection;
  87. }
  89. // Increase size of file (create the mapping)
  90. g_hSharedMapping = CreateFileMappingA( hSharedFile,
  91. NULL,
  92. PAGE_READWRITE,
  93. NULL,
  94. sizeof(SHARED_HOOK_INFO),
  95. SHARED_SECTION_NAME);
  97. if (g_hSharedMapping == NULL)
  98. {
  99. DPFN( eDbgLevelError, "CreateFileMapping failed\n");
  100. goto errCreateSharedSection;
  101. }
  103. g_pSharedHookInfo = (PSHARED_HOOK_INFO)MapViewOfFile(g_hSharedMapping,
  104. FILE_MAP_ALL_ACCESS,
  105. 0,
  106. 0,
  107. sizeof(SHARED_HOOK_INFO));
  109. if (g_pSharedHookInfo == NULL)
  110. {
  111. DWORD dwErr = GetLastError();
  112. DPFN( eDbgLevelError, "MapViewOfFile failed [%d]", (int)dwErr);
  113. goto errCreateSharedSection;
  114. }
  116. CloseHandle(hSharedFile);
  118. g_pSharedHookInfo->hModule = hModule;
  119. g_pSharedHookInfo->pfnHookProc = pfnHookProc;
  120. GetModuleFileNameA(hModule, g_pSharedHookInfo->szModuleFileName, MAX_PATH);
  122. if (!FlushViewOfFile(g_pSharedHookInfo, sizeof(SHARED_HOOK_INFO)))
  123. {
  124. DPFN( eDbgLevelError, "FlushViewOfFile failed\n");
  125. goto errCreateSharedSection;
  126. }
  128. DPFN( eDbgLevelInfo, "WRITE::Shared Section Successful");
  129. DPFN( eDbgLevelInfo, "WRITE::g_pSharedHookInfo->hModule=%x", g_pSharedHookInfo->hModule);
  130. DPFN( eDbgLevelInfo, "WRITE::g_pSharedHookInfo->pfnHookProc=%x", g_pSharedHookInfo->pfnHookProc);
  131. DPFN( eDbgLevelInfo, "WRITE::g_pSharedHookInfo->szModuleFileName=%s", g_pSharedHookInfo->szModuleFileName);
  133. return;
  135. errCreateSharedSection:
  136. DPFN( eDbgLevelError, "WRITE::Shared Section FAILED");
  137. return;
  138. }
  140. // Gets Shared Memory - Only called by injected versions of hook function
  141. void GetSharedMemory()
  142. {
  143. HANDLE hSharedFileMapping = NULL;
  144. void *pSharedMem = NULL;
  146. hSharedFileMapping = OpenFileMappingA( FILE_MAP_ALL_ACCESS,
  147. FALSE,
  148. SHARED_SECTION_NAME);
  150. if (hSharedFileMapping != NULL)
  151. {
  152. PSHARED_HOOK_INFO pSharedHookInfo = (PSHARED_HOOK_INFO)MapViewOfFile( hSharedFileMapping,
  153. FILE_MAP_ALL_ACCESS,
  154. 0,
  155. 0,
  156. 0);
  158. if (pSharedHookInfo)
  159. {
  160. DPFN( eDbgLevelInfo, "READ::pSharedHookInfo->hModule=%x", pSharedHookInfo->hModule);
  161. DPFN( eDbgLevelInfo, "READ::pSharedHookInfo->pfnHookProc=%x", pSharedHookInfo->pfnHookProc);
  162. DPFN( eDbgLevelInfo, "READ::pSharedHookInfo->szModuleFileName=%s", pSharedHookInfo->szModuleFileName);
  164. // Load DLL with origianl CBT Proc in it.
  165. HANDLE hMod = LoadLibraryA(pSharedHookInfo->szModuleFileName);
  167. if (!hMod)
  168. {
  169. DPFN( eDbgLevelError, "LoadLibrary(\"%s\") - FAILED", pSharedHookInfo->szModuleFileName);
  170. }
  172. g_OriginalEncompassMonitorCBTProc = (HOOKPROC)((DWORD)hMod + ((DWORD)pSharedHookInfo->pfnHookProc) - (DWORD)pSharedHookInfo->hModule);
  173. DPFN( eDbgLevelInfo, "READ::Shared Section Successful - Original Hook at %x", g_OriginalEncompassMonitorCBTProc);
  175. CloseHandle(hSharedFileMapping);
  176. UnmapViewOfFile(pSharedHookInfo);
  177. }
  178. else
  179. {
  180. DPFN( eDbgLevelError, "MapViewOfFile() Failed");
  181. }
  182. }
  183. else
  184. {
  185. DPFN( eDbgLevelError, "READ::Shared Section Failed");
  186. }
  187. }
  189. // Replacement CBT Hook function
  190. LRESULT CALLBACK Filtered_EncompassMonitorCBTProc(
  191. int nCode, // hook code
  192. WPARAM wParam, // depends on hook code
  193. LPARAM lParam // depends on hook code
  194. )
  195. {
  196. LRESULT lResult = 0; // Allow operation to continue
  197. bool bFilterMessage = false;
  199. if(g_OriginalEncompassMonitorCBTProc == NULL)
  200. {
  201. GetSharedMemory();
  202. }
  204. if (nCode == HCBT_CREATEWND)
  205. {
  206. CBT_CREATEWNDA *pccw = (CBT_CREATEWNDA*)lParam;
  208. if ( (IS_INTRESOURCE(pccw->lpcs->lpszClass)) )
  209. {
  210. char szBuf[256];
  211. GetClassNameA((HWND)wParam, szBuf, 255);
  213. bFilterMessage=true;
  214. DPFN( eDbgLevelInfo, "[%x] - Filtered_EncompassMonitorCBTProc::HCBT_CREATEWND %s [ATOM CLASS FILTERED]", g_OriginalEncompassMonitorCBTProc, szBuf);
  215. }
  216. else
  217. {
  218. DPFN( eDbgLevelInfo, "[%x] - Filtered_EncompassMonitorCBTProc::HCBT_CREATEWND %s ", g_OriginalEncompassMonitorCBTProc, pccw->lpcs->lpszClass);
  219. }
  220. }
  222. if ( g_OriginalEncompassMonitorCBTProc )
  223. {
  224. if (bFilterMessage)
  225. {
  226. lResult = CallNextHookEx(g_hCBTHook, nCode, wParam, lParam);
  227. }
  228. else
  229. {
  230. lResult = g_OriginalEncompassMonitorCBTProc(nCode, wParam, lParam);
  231. }
  232. }
  233. else
  234. {
  235. DPFN( eDbgLevelError, "Filtered_EncompassMonitorCBTProc:: ** BAD g_OriginalEncompassMonitorCBTProc2 **");
  237. lResult = CallNextHookEx(g_hCBTHook, nCode, wParam, lParam);
  238. }
  240. return lResult;
  241. }
  244. // SHIMMED API
  245. HHOOK APIHOOK(SetWindowsHookExA)(
  246. int idHook, // hook type
  247. HOOKPROC lpfn, // hook procedure
  248. HINSTANCE hMod, // handle to application instance
  249. DWORD dwThreadId // thread identifier
  250. )
  251. {
  252. static int nNumCBThooks = 0;
  254. HHOOK hHook;
  256. if (idHook == WH_CBT)
  257. {
  258. nNumCBThooks++;
  260. switch(nNumCBThooks)
  261. {
  262. case 1:
  263. hHook = ORIGINAL_API(SetWindowsHookExA)(idHook, lpfn, hMod, dwThreadId);
  264. DPFN( eDbgLevelInfo, "%x=SetWindowsHookEx(%d, %x, %x, %x) - Ignoring First Hook Call", hHook, idHook, lpfn, hMod, dwThreadId);
  265. break;
  267. case 2:
  268. g_OriginalEncompassMonitorCBTProc = lpfn;
  269. g_hCBTHook = hHook = ORIGINAL_API(SetWindowsHookExA)(idHook, Filtered_EncompassMonitorCBTProc, g_hinstDll, dwThreadId);
  271. DPFN( eDbgLevelInfo, "%x=SetWindowsHookEx(%d, %x, %x, %x) - Replacing Hook with Filtered_EncompassMonitorCBTProc", hHook, idHook, lpfn, hMod, dwThreadId);
  273. CreateSharedMemory(hMod, lpfn);
  274. break;
  276. default:
  277. hHook = ORIGINAL_API(SetWindowsHookExA)(idHook, lpfn, hMod, dwThreadId);
  278. DPFN( eDbgLevelError, "SetWindowsHookEx -- More then 2 WH_CBT hooks [%d]", nNumCBThooks);
  279. break;
  280. }
  281. }
  282. else
  283. {
  284. hHook = ORIGINAL_API(SetWindowsHookExA)(idHook, lpfn, hMod, dwThreadId);
  285. }
  287. return hHook;
  288. }
  291. BOOL
  292. NOTIFY_FUNCTION(DWORD fdwReason)
  293. {
  294. if (fdwReason == DLL_PROCESS_DETACH)
  295. {
  296. if (g_hSharedMapping)
  297. {
  298. CloseHandle(g_hSharedMapping);
  299. g_hSharedMapping = NULL;
  300. }
  302. if (g_pSharedHookInfo)
  303. {
  304. UnmapViewOfFile(g_pSharedHookInfo);
  305. g_pSharedHookInfo = NULL;
  306. }
  307. }
  309. return TRUE;
  310. }
  313. /*++
  315. Register hooked functions
  317. --*/
  319. HOOK_BEGIN
  320. CALL_NOTIFY_FUNCTION
  322. APIHOOK_ENTRY(USER32.DLL, SetWindowsHookExA)
  323. HOOK_END
  325. IMPLEMENT_SHIM_END