Context Navigation

source: trunk/src/pe2lx/pe.cpp

Visit:

Last change on this file was 363, checked in by sandervl, 26 years ago
* empty log message *
File size: 43.0 KB

Line
1	/* $Id: pe.cpp,v 1.7 1999-07-22 11:23:06 sandervl Exp $ */
2
3	/*
4	* PE2LX PE image interpreter
5	*
6	* Copyright 1998 Sander van Leeuwen (sandervl@xs4all.nl)
7	* Copyright 1998 Knut St. Osmundsen
8	*
9	*
10	* Project Odin Software License can be found in LICENSE.TXT
11	*
12	*/
13	#define INCL_BITMAPFILEFORMAT
14	#define INCL_DOSFILEMGR /* File Manager values */
15	#define INCL_DOSERRORS /* DOS Error values */
16	#define INCL_DOSPROCESS /* DOS Process values */
17	#define INCL_DOSMISC /* DOS Miscellanous values */
18	#define INCL_WIN
19	#define INCL_BASE
20	#define INCL_GPIBITMAPS
21	#include <os2.h>
22	#include <stdio.h>
23	#include <string.h>
24	#include <stdlib.h>
25	#include <iostream.h>
26	#include <string.h>
27	#include <assert.h>
28	#include <versionos2.h>
29	#include <pefile.h>
30	#include <winimage.h>
31	#include "lx.h"
32	#include "menu.h"
33	#include "dialog.h"
34	#include "icon.h"
35	#include "icongrp.h"
36	#include "rcdata.h"
37	#include "misc.h"
38	#include "strings.h"
39	#include "bitmap.h"
40	#include "accelerator.h"
41	#include "cursor.h"
42	#include "cursorgrp.h"
43
44	//#define FORWARDERS
45
46	#ifndef max /PLF Sat 97-06-21 22:25:44/
47	#define max(a,b) ((a>b) ? (a) : (b))
48	#endif
49
50	/heximal(decimal) KSO Sun 24.05.1998/
51	char szHexBuffer[30];
52
53	char *hex(ULONG num)
54	{
55	sprintf(szHexBuffer, "0x%+08x (%lu)",num,num);
56	return szHexBuffer;
57	}
58	/**/
59
60	BOOL fUseCodePage = FALSE;
61	int WinCodePage;
62
63	char INFO_BANNER[] =
64	"Usage: PE2LX winfile [os2file] [-cp]\n\
65	OR\n\
66	PE2LX winfile os2file [-cp]\n";
67
68	char *ResTypes[MAX_RES] =
69	{"niks", "CURSOR", "BITMAP", "ICON", "MENU", "DIALOG", "STRING",
70	"FONTDIR", "FONT", "ACCELERATOR", "RCDATA", "MESSAGETABLE",
71	"GROUP_CURSOR", "niks", "GROUP_ICON", "niks", "VERSION"};
72
73	void ProcessResSubDir(PIMAGE_RESOURCE_DIRECTORY prdType, int level, PIMAGE_RESOURCE_DIRECTORY prdRoot, int VirtualAddress, int type, int id);
74	void StoreIdResSubDir(PIMAGE_RESOURCE_DIRECTORY prdType, int level, PIMAGE_RESOURCE_DIRECTORY prdRoot, int VirtualAddress, int type, int id);
75	BOOL ProcessImports(void *pFile);
76
77	int main(int argc, char *argv[])
78	{
79	HFILE win32handle;
80	ULONG ulAction = 0; /* Action taken by DosOpen */
81	ULONG ulLocal = 0; /* File pointer position after DosSetFilePtr */
82	APIRET rc = NO_ERROR; /* Return code */
83	ULONG filesize, ulRead;
84	LPVOID win32file = NULL;
85	IMAGE_SECTION_HEADER sh;
86	IMAGE_OPTIONAL_HEADER oh;
87	IMAGE_FILE_HEADER fh;
88	PIMAGE_BASE_RELOCATION prel;
89	PIMAGE_RESOURCE_DIRECTORY prdRoot, prdType;
90	PIMAGE_RESOURCE_DIRECTORY_ENTRY prde;
91	PIMAGE_RESOURCE_DATA_ENTRY pData;
92	PIMAGE_EXPORT_DIRECTORY ped;
93	char *page;
94	int i, j, count, id;
95	int ptrNames, ptrAddress;
96	USHORT *ptrOrd;
97	PIMAGE_SECTION_HEADER psh;
98	int nSections;
99	char winfile=NULL, os2file=NULL;
100
101	if(argc < 2 \|\| argc > 4) {
102	cout << "pe2lx v0.0." << PE2LX_VERSION << "alpha"<< endl;
103	cout << INFO_BANNER << endl;
104	return(0);
105	}
106	for(i=1;i<argc;i++)
107	{
108	if(!stricmp(argv[i], "/CP") \|\| !stricmp(argv[i], "-CP"))
109	fUseCodePage = TRUE;
110	else if(winfile == NULL)
111	winfile = argv[i];
112	else if(os2file == NULL)
113	os2file = argv[i];
114	}
115
116	rc = DosOpen(winfile, /* File path name */
117	&win32handle, /* File handle */
118	&ulAction, /* Action taken */
119	0L, /* File primary allocation */
120	0L, /* File attribute */
121	OPEN_ACTION_FAIL_IF_NEW \|
122	OPEN_ACTION_OPEN_IF_EXISTS, /* Open function type */
123	OPEN_FLAGS_NOINHERIT \|
124	OPEN_SHARE_DENYNONE \|
125	OPEN_ACCESS_READONLY, /* Open mode of the file */
126	0L); /* No extended attribute */
127
128	if (rc != NO_ERROR) {
129	cout << "DosOpen returned " << rc << endl;
130	return 1;
131	}
132
133	/* Move the file pointer back to the beginning of the file */
134	DosSetFilePtr(win32handle, 0L, FILE_BEGIN, &ulLocal);
135	DosSetFilePtr(win32handle, 0L, FILE_END, &filesize);
136	DosSetFilePtr(win32handle, 0L, FILE_BEGIN, &ulLocal);
137
138	win32file = malloc(filesize);
139	if(win32file == NULL) {
140	cout << "Error allocating " << filesize << " bytes" << endl;
141	//SvL: Probably a huge installation file where the installation data is
142	// simply appended
143	filesize = 1024*1024;
144
145	win32file = malloc(filesize);
146	if(win32file == NULL) {
147	DosClose(win32handle); /* Close the file */
148	return(1);
149	}
150	}
151	rc = DosRead(win32handle, win32file, filesize, &ulRead);
152	if(rc != NO_ERROR) {
153	cout << "DosRead returned " << rc << endl;
154	DosClose(win32handle); /* Close the file */
155	return(1);
156	}
157	DosClose(win32handle); /* Close the file / /PLF Wed 98-03-18 02:32:26 moved */
158
159	if(GetPEFileHeader (win32file, &fh) == FALSE) {
160	cout << "Not a valid PE file (probably a 16 bits windows exe/dll)!" << endl;
161	return(1);
162	}
163
164	if(!(fh.Characteristics & IMAGE_FILE_EXECUTABLE_IMAGE)) {//not valid
165	cout << "Not a valid PE file!" << endl;
166	return(1);
167	}
168	if(fh.Machine != IMAGE_FILE_MACHINE_I386) {
169	cout << "You need a REAL CPU to run this code" << endl;
170	return(1);
171	}
172	//IMAGE_FILE_SYSTEM == only drivers (device/file system/video etc)?
173	if(fh.Characteristics & IMAGE_FILE_SYSTEM) {
174	cout << "Can't convert system files" << endl;
175	return(1);
176	}
177	if(os2file == NULL) {
178	//ok, it's a PE file, so we can safely make a backup copy
179	char newfile = (char )malloc(strlen(winfile)+1);
180	strcpy(newfile, winfile);
181	newfile[strlen(newfile)-1]++;
182	//save copy of win32 exe/dll (exe->exf, dll->dlk)
183	rc = DosMove(winfile, newfile);
184	if(rc) {
185	cout << "Unable to save original win32 file to " << newfile << "(" << rc << ")" << endl;
186	free(newfile);
187	return(1);
188	}
189	free(newfile);
190	}
191	if(fh.Characteristics & IMAGE_FILE_DLL)
192	OS2Exe.SetExeType(FALSE);
193	else OS2Exe.SetExeType(TRUE);
194
195	if(fh.Characteristics & IMAGE_FILE_RELOCS_STRIPPED) {
196	cout << "No fixups, might not run!" << endl;
197	OS2Exe.SetNoFixups();
198	}
199
200	GetPEOptionalHeader (win32file, &oh);
201	cout << "PE Optional header: " << endl;
202	#if 0
203	oh.ImageBase = 0x20000000;
204	#endif
205	cout << "Preferred address : " << hex(oh.ImageBase) << endl;
206	cout << "Base Of Code : " << hex(oh.BaseOfCode) << endl;
207	cout << "CodeSize : " << hex(oh.SizeOfCode) << endl;
208	cout << "Base Of Data : " << hex(oh.BaseOfData) << endl;
209	cout << "Data Size (uninit): " << hex(oh.SizeOfUninitializedData) << endl;
210	cout << "Data Size (init) : " << hex(oh.SizeOfInitializedData) << endl;
211	cout << "Entry Point : " << hex(oh.AddressOfEntryPoint) << endl;
212	cout << "Section Alignment : " << hex(oh.SectionAlignment) << endl;
213	cout << "Stack Reserve size: " << hex(oh.SizeOfStackReserve) << endl;
214	cout << "Stack Commit size : " << hex(oh.SizeOfStackCommit) << endl;
215	cout << "SizeOfHeapReserve : " << hex(oh.SizeOfHeapReserve) << endl;
216	cout << "SizeOfHeapCommit : " << hex(oh.SizeOfHeapCommit) << endl;
217	cout << "FileAlignment : " << hex(oh.FileAlignment) << endl;
218
219	//SetExeType must have been called before
220	if(oh.Subsystem != IMAGE_SUBSYSTEM_WINDOWS_GUI) {
221	OS2Exe.SetModuleType(SYSTEM_CHARACTER);
222	cout << "Console app" << endl;
223	}
224	else OS2Exe.SetModuleType(SYSTEM_GUI);
225
226	//// OS2Exe.SetStackSize(oh.SizeOfStackCommit);
227	OS2Exe.SetStackSize(max(oh.SizeOfStackCommit, oh.SizeOfStackReserve));
228	if(os2file == NULL)
229	OS2Exe.SetModuleName(winfile);
230	else OS2Exe.SetModuleName(os2file);
231
232	OS2Exe.SetEntryPoint(oh.AddressOfEntryPoint+oh.ImageBase);
233
234	nSections = NR_SECTIONS(win32file);
235
236	if ((psh = (PIMAGE_SECTION_HEADER)SECTIONHDROFF (win32file)) != NULL) {
237	cout << endl;
238	for (i=0; i<nSections; i++) {
239	cout << "Section Name: " << psh[i].Name << endl;
240	cout << "Raw data size: " << hex(psh[i].SizeOfRawData) << endl;
241	cout << "Virtual Address: " << hex(psh[i].VirtualAddress) << endl;
242	cout << "Virtual Size: " << hex(psh[i].Misc.VirtualSize) << endl;
243	cout << "Pointer to raw data: " << hex(psh[i].PointerToRawData) << endl;
244	cout << "Section flags: " << hex(psh[i].Characteristics) << endl;
245	if(strcmp(psh[i].Name, ".reloc") == 0) {
246	cout << ".reloc" << endl << endl;
247	continue;
248	}
249	if(strcmp(psh[i].Name, ".edata") == 0) {
250	cout << ".edata" << endl << endl;
251	continue;
252	}
253	if(strcmp(psh[i].Name, ".pdata") == 0) {
254	cout << ".pdata" << endl << endl;
255	continue;
256	}
257	if(strcmp(psh[i].Name, ".rsrc") == 0) {
258	cout << ".rsrc" << endl << endl;
259	continue;
260	}
261	if(strcmp(psh[i].Name, ".debug") == 0) {
262	cout << ".rdebug" << endl << endl;
263	continue;
264	}
265	if(IsImportSection(win32file, &psh[i]))
266	{
267	int type = SECTION_IMPORT;
268	cout << "Import Data Section" << endl << endl;
269	if(psh[i].Characteristics & IMAGE_SCN_CNT_CODE) {
270	cout << "Also Code Section" << endl << endl;
271	OS2Exe.SetEntryAddress(oh.AddressOfEntryPoint-psh[i].VirtualAddress);
272	type \|= SECTION_CODE;
273	}
274	OS2Exe.StoreSection((char *)win32file+psh[i].PointerToRawData,
275	psh[i].SizeOfRawData, psh[i].Misc.VirtualSize,
276	psh[i].VirtualAddress + oh.ImageBase,
277	type);
278	continue;
279	}
280	if(strcmp(psh[i].Name, ".tls") == 0)
281	{
282	IMAGE_TLS_DIRECTORY *tlsDir;
283
284	tlsDir = (IMAGE_TLS_DIRECTORY *)ImageDirectoryOffset(win32file, IMAGE_DIRECTORY_ENTRY_TLS);
285	if(tlsDir) {
286	cout << "TLS Directory" << endl;
287	cout << "TLS Address of Index " << hex((ULONG)tlsDir->AddressOfIndex) << endl;
288	cout << "TLS Address of Callbacks " << hex((ULONG)tlsDir->AddressOfCallBacks) << endl;
289	cout << "TLS SizeOfZeroFill " << hex(tlsDir->SizeOfZeroFill) << endl;
290	cout << "TLS Characteristics " << hex(tlsDir->Characteristics) << endl;
291	OS2Exe.SetTLSAddress(tlsDir->StartAddressOfRawData);
292	OS2Exe.SetTLSIndexAddress((ULONG)tlsDir->AddressOfIndex);
293	OS2Exe.SetTLSInitSize(tlsDir->EndAddressOfRawData - tlsDir->StartAddressOfRawData);
294	OS2Exe.SetTLSTotalSize(tlsDir->EndAddressOfRawData - tlsDir->StartAddressOfRawData + tlsDir->SizeOfZeroFill);
295	OS2Exe.SetTLSCallBackAddr((ULONG)tlsDir->AddressOfCallBacks);
296	}
297	}
298
299	if ((psh[i].Characteristics & IMAGE_SCN_CNT_CODE)
300	//KSO Sun 1998-08-09: Borland does not alway set the CODE flag for its "CODE" section (TIB fix need to have the first section marked as code)
301	\|\| (psh[i].Characteristics & IMAGE_SCN_MEM_EXECUTE &&
302	!(psh[i].Characteristics & (IMAGE_SCN_CNT_UNINITIALIZED_DATA \| IMAGE_SCN_CNT_INITIALIZED_DATA)) //KSO: make sure its not marked as a datasection
303	)
304	) {
305	cout << "Code Section" << endl << endl;
306	if(oh.AddressOfEntryPoint < psh[i].VirtualAddress)
307	OS2Exe.SetEntryAddress(oh.AddressOfEntryPoint - oh.BaseOfCode);
308	else OS2Exe.SetEntryAddress(oh.AddressOfEntryPoint-psh[i].VirtualAddress);
309
310	OS2Exe.StoreSection((char *)win32file+psh[i].PointerToRawData,
311	psh[i].SizeOfRawData, psh[i].Misc.VirtualSize,
312	psh[i].VirtualAddress + oh.ImageBase,
313	SECTION_CODE);
314	continue;
315	}
316	if(!(psh[i].Characteristics & IMAGE_SCN_MEM_WRITE)) { //read only data section
317	cout << "Read Only Data Section" << endl << endl;
318	OS2Exe.StoreSection((char *)win32file+psh[i].PointerToRawData,
319	psh[i].SizeOfRawData, psh[i].Misc.VirtualSize,
320	psh[i].VirtualAddress + oh.ImageBase,
321	SECTION_READONLYDATA);
322	continue;
323	}
324	if(psh[i].Characteristics & IMAGE_SCN_CNT_UNINITIALIZED_DATA) {
325	cout << "Uninitialized Data Section" << endl << endl;
326	OS2Exe.StoreSection((char *)win32file+psh[i].PointerToRawData,
327	psh[i].SizeOfRawData, psh[i].Misc.VirtualSize,
328	psh[i].VirtualAddress + oh.ImageBase,
329	SECTION_UNINITDATA);
330	continue;
331	}
332	if(psh[i].Characteristics & IMAGE_SCN_CNT_INITIALIZED_DATA) {
333	cout << "Initialized Data Section" << endl << endl;
334	OS2Exe.StoreSection((char *)win32file+psh[i].PointerToRawData,
335	psh[i].SizeOfRawData, psh[i].Misc.VirtualSize,
336	psh[i].VirtualAddress + oh.ImageBase,
337	SECTION_INITDATA);
338	continue;
339	}
340	if(psh[i].Characteristics & (IMAGE_SCN_MEM_WRITE \| IMAGE_SCN_MEM_READ)) {
341	cout << "Other Section, stored as read/write uninit data" << endl << endl;
342	OS2Exe.StoreSection((char *)win32file+psh[i].PointerToRawData,
343	psh[i].SizeOfRawData, psh[i].Misc.VirtualSize,
344	psh[i].VirtualAddress + oh.ImageBase,
345	SECTION_UNINITDATA);
346	continue;
347	}
348	}
349	}
350	//SvL: Align and/or concatenate code & data sections
351	OS2Exe.AlignSections();
352
353	prel = (PIMAGE_BASE_RELOCATION) ImageDirectoryOffset (win32file, IMAGE_DIRECTORY_ENTRY_BASERELOC);
354	OS2Exe.SetNrOff32Fixups((prel) ? oh.DataDirectory[IMAGE_DIRECTORY_ENTRY_BASERELOC].Size/2 : 0);
355
356	//SvL: Add EntryPoint & TLS fixups (if required)
357	OS2Exe.AddExtraFixups();
358
359	if(prel) {
360	j = 1;
361	while(prel->VirtualAddress) {
362	page = (char )((char )prel + (int)prel->VirtualAddress);
363	count = (prel->SizeOfBlock - 8)/2;
364	cout.setf(ios::hex, ios::basefield);
365	cout << "Page " << j << " Address " << (ULONG)prel->VirtualAddress << " Count " << count << endl;
366	cout.setf(ios::dec, ios::basefield);
367	j++;
368	for(i=0;i<count;i++) {
369	int type = prel->TypeOffset[i] >> 12;
370	int offset = prel->TypeOffset[i] & 0xFFF;
371	switch(type) {
372	case IMAGE_REL_BASED_ABSOLUTE:
373	//// cout << "absolute fixup; unused" << endl;
374	break; //skip
375	case IMAGE_REL_BASED_HIGHLOW:
376	//// cout << "address " << offset << " type " << type << endl;
377	OS2Exe.AddOff32Fixup(oh.ImageBase +
378	prel->VirtualAddress +
379	offset);
380	break;
381	case IMAGE_REL_BASED_HIGH:
382	case IMAGE_REL_BASED_LOW:
383	case IMAGE_REL_BASED_HIGHADJ:
384	case IMAGE_REL_BASED_MIPS_JMPADDR:
385	default:
386	cout << "Unknown/unsupported fixup type!" << endl;
387	break;
388	}
389	}
390	prel = (PIMAGE_BASE_RELOCATION)((char*)prel + prel->SizeOfBlock);
391	}//while
392	}
393	else {
394	cout << "No fixups, might not run!" << endl;
395	OS2Exe.SetNoFixups();
396	}
397
398	/* get section header and pointer to data directory for .edata section */
399	if((ped = (PIMAGE_EXPORT_DIRECTORY)ImageDirectoryOffset
400	(win32file, IMAGE_DIRECTORY_ENTRY_EXPORT)) != NULL &&
401	(fh.Characteristics & IMAGE_FILE_DLL) &&
402	GetSectionHdrByImageDir(win32file, IMAGE_DIRECTORY_ENTRY_EXPORT, &sh) ) {
403
404	cout << "Exported Functions: " << endl;
405	ptrOrd = (USHORT *)((int)ped->AddressOfNameOrdinals -
406	(int)sh.VirtualAddress +
407	(int)sh.PointerToRawData + (int)win32file);
408	ptrNames = (int *)((int)ped->AddressOfNames -
409	(int)sh.VirtualAddress +
410	(int)sh.PointerToRawData + (int)win32file);
411	ptrAddress = (int *)((int)ped->AddressOfFunctions -
412	(int)sh.VirtualAddress +
413	(int)sh.PointerToRawData + (int)win32file);
414	OS2Exe.SetNrExtFixups(max(ped->NumberOfNames,ped->NumberOfFunctions));
415	int ord, RVAExport;
416	char *name;
417	for(i=0;i<ped->NumberOfNames;i++) {
418	ord = ptrOrd[i] + ped->Base;
419	name = (char *)((int)ptrNames[i] - (int)sh.VirtualAddress +
420	(int)sh.PointerToRawData + (int)win32file);
421	RVAExport = ptrAddress[ptrOrd[i]];
422	// RVAExport = ptrAddress[i];
423	#ifdef FORWARDERS
424	if(RVAExport < sh.VirtualAddress \|\| RVAExport > sh.VirtualAddress + sh.SizeOfRawData) {
425	#endif
426	//points to code (virtual address relative to oh.ImageBase
427	cout << "address 0x";
428	cout.setf(ios::hex, ios::basefield);
429	cout << RVAExport;
430	cout.setf(ios::dec, ios::basefield);
431	cout << " " << name << "@" << ord << endl;
432	OS2Exe.AddNameExport(oh.ImageBase + RVAExport, name, ord);
433	#ifdef FORWARDERS
434
435	}
436	else {//forwarder
437	char forward = (char )((int)RVAExport -
438	(int)sh.VirtualAddress +
439	(int)sh.PointerToRawData +
440	(int)win32file);
441	cout << RVAExport << " " << name << " @" << ord << " is forwarder to " << (int)forward << endl;
442	// OS2Exe.AddForwarder(name, ord, forward);
443	}
444	#endif
445	}
446	for(i=0;i<max(ped->NumberOfNames,ped->NumberOfFunctions);i++) {
447	ord = ped->Base + i; //Correct??
448	RVAExport = ptrAddress[i];
449	#ifdef FORWARDERS
450	if(RVAExport < sh.VirtualAddress \|\| RVAExport > sh.VirtualAddress + sh.SizeOfRawData) {
451	#endif
452	if(RVAExport) {
453	//points to code (virtual address relative to oh.ImageBase
454	cout << "ord " << ord << " at 0x";
455	cout.setf(ios::hex, ios::basefield);
456	cout << RVAExport << endl;
457	cout.setf(ios::dec, ios::basefield);
458	OS2Exe.AddOrdExport(oh.ImageBase + RVAExport, ord);
459	}
460	#ifdef FORWARDERS
461	}
462	else {//forwarder or empty
463	char forward = (char )((int)RVAExport -
464	(int)sh.VirtualAddress +
465	(int)sh.PointerToRawData +
466	(int)win32file);
467	cout << "ord " << ord << " at 0x";
468	cout.setf(ios::hex, ios::basefield);
469	cout << RVAExport << " is forwarder to 0x" << (int)forward << endl;
470	cout.setf(ios::dec, ios::basefield);
471	// OS2Exe.AddForwarder(NULL, ord, forward);
472	}
473	#endif
474	}
475	}
476	else {
477	if(fh.Characteristics & IMAGE_FILE_DLL) {
478	OS2Exe.SetNrExtFixups(0); //adds module name to resident table
479	}
480	}
481	//imported stuff
482	if (!ProcessImports(win32file))
483	{
484	cout << "Fatal: failed to process imports" << endl;
485	return -1;
486	}
487
488
489	//resource stuff
490	if(GetSectionHdrByName (win32file, &sh, ".rsrc")) {
491	cout << "Resource section: " << endl;
492	cout << "Raw data size: " << hex(sh.SizeOfRawData) << endl;
493	cout << "Virtual Address: " << hex(sh.VirtualAddress) << endl;
494	cout << "Pointer to raw data: " << hex(sh.PointerToRawData) << endl;
495	cout << "Section flags: " << hex(sh.Characteristics) << endl << endl;
496	/* get root directory of resource tree */
497	if(NULL != (prdRoot = (PIMAGE_RESOURCE_DIRECTORY)ImageDirectoryOffset
498	(win32file, IMAGE_DIRECTORY_ENTRY_RESOURCE))) {
499	cout << "Resources: " << endl;
500	cout << "pdrRoot: " << hex((ULONG)prdRoot - (ULONG)win32file) << endl;
501
502	OS2Exe.SetResourceSize(max(sh.Misc.VirtualSize, sh.SizeOfRawData));
503	OS2Exe.SetNrResources(GetNumberOfResources(win32file));
504
505	/* set pointer to first resource type entry */
506	prde = (PIMAGE_RESOURCE_DIRECTORY_ENTRY)((DWORD)prdRoot + sizeof (IMAGE_RESOURCE_DIRECTORY));
507
508	//SvL: Store all resource ids so we can safely allocate unique ids for name ids
509	for (i=0; i<prdRoot->NumberOfNamedEntries+prdRoot->NumberOfIdEntries; i++) {
510	/* locate directory or each resource type */
511	prdType = (PIMAGE_RESOURCE_DIRECTORY)((int)prdRoot + (int)prde->u2.OffsetToData);
512
513	if(i<prdRoot->NumberOfNamedEntries) {
514	//SvL: 30-10-'97, high bit is set, so clear to get real offset
515	prde->u1.Name &= ~0x80000000;
516	char resname = UnicodeToAscii((WCHAR )((int)prdRoot + (int)prde->u1.Name), (WCHAR )((int)prdRoot + (int)prde->u1.Name + sizeof(WCHAR))); // first word = string length
517
518	for(j=0;j<MAX_RES;j++) {
519	if(strcmp(resname, ResTypes[j]) == 0)
520	break;
521	}
522	if(j == MAX_RES) {
523	id = NTRT_RCDATA;
524	}
525	else id = j;
526	}
527	else {
528	id = prde->u1.Id;
529	}
530
531	if((int)prdType & 0x80000000) {//subdirectory?
532	StoreIdResSubDir(prdType, 1, prdRoot, sh.VirtualAddress, id, 0);
533	}
534	else assert(FALSE);
535
536	/* increment to next entry */
537	prde++;
538	}
539
540	/* set pointer to first resource type entry */
541	prde = (PIMAGE_RESOURCE_DIRECTORY_ENTRY)((DWORD)prdRoot + sizeof (IMAGE_RESOURCE_DIRECTORY));
542
543	/* loop through all resource directory entry types */
544	//eerste level -> types
545	//tweede level -> names
546	//derde level -> language
547	cout << "Name entries: " << endl;
548	cout << "ID entries: " << endl;
549	for (i=0; i<prdRoot->NumberOfNamedEntries+prdRoot->NumberOfIdEntries; i++) {
550	/* locate directory or each resource type */
551	prdType = (PIMAGE_RESOURCE_DIRECTORY)((int)prdRoot + (int)prde->u2.OffsetToData);
552
553	if(i<prdRoot->NumberOfNamedEntries) {
554	//SvL: 30-10-'97, high bit is set, so clear to get real offset
555	prde->u1.Name &= ~0x80000000;
556	char resname = UnicodeToAscii((WCHAR )((int)prdRoot + (int)prde->u1.Name), (WCHAR )((int)prdRoot + (int)prde->u1.Name + sizeof(WCHAR))); // first word = string length
557
558	cout << "Type " << resname << endl;
559	for(j=0;j<MAX_RES;j++) {
560	if(strcmp(resname, ResTypes[j]) == 0)
561	break;
562	}
563	if(j == MAX_RES) {
564	id = NTRT_RCDATA;
565	}
566	else id = j;
567	}
568	else {
569	if(prde->u1.Id < MAX_RES)
570	cout << "Type " << ResTypes[prde->u1.Id] << endl;
571	else cout << "Custom Type " << prde->u1.Id << endl;
572	id = prde->u1.Id;
573	}
574
575	if((int)prdType & 0x80000000) {//subdirectory?
576	ProcessResSubDir(prdType, 1, prdRoot, sh.VirtualAddress, id, 0);
577	}
578	else {
579	pData = (PIMAGE_RESOURCE_DATA_ENTRY)prdType;
580	cout << "!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!" << endl;
581	cout << "Resource Data entry of size " << hex(pData->Size) << endl;
582	cout << "Resource Data RVA " << hex(pData->OffsetToData) << endl;
583	cout << "!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!" << endl;
584	assert(FALSE);
585	}
586
587	/* increment to next entry */
588	prde++;
589	}
590	}
591	OS2Icon::DestroyAll();
592	OS2Cursor::DestroyAll();
593	}
594	OS2Exe.SaveConvertedNames();
595	if(os2file == NULL)
596	OS2Exe.SaveNewExeFile(winfile);
597	else OS2Exe.SaveNewExeFile(os2file);
598
599	return(0);
600	}
601	//******************************************************************************
602	//No support for multiple languages; just select the first one present and
603	//ignore the rest
604	//******************************************************************************
605	void ProcessResSubDir(PIMAGE_RESOURCE_DIRECTORY prdType, int level,
606	PIMAGE_RESOURCE_DIRECTORY prdRoot, int VirtualAddress,
607	int type, int id)
608	{
609	PIMAGE_RESOURCE_DIRECTORY prdType2;
610	PIMAGE_RESOURCE_DIRECTORY_ENTRY prde;
611	PIMAGE_RESOURCE_DIR_STRING_U pstring;
612	PIMAGE_RESOURCE_DATA_ENTRY pData;
613	int i;
614
615	switch(level) {
616	case 1:
617	cout << "Names.." << endl;
618	break;
619	case 2:
620	cout << "Language.." << endl;
621	break;
622	}
623	prdType = (PIMAGE_RESOURCE_DIRECTORY)((int)prdType & ~0x80000000);
624	cout << "Subdir with " << prdType->NumberOfNamedEntries << " Name entries" << endl;
625	cout << "Subdir with " << prdType->NumberOfIdEntries << " id entries" << endl;
626
627	prde = (PIMAGE_RESOURCE_DIRECTORY_ENTRY)((DWORD)prdType + sizeof (IMAGE_RESOURCE_DIRECTORY));
628	for(i=0;i<prdType->NumberOfNamedEntries+prdType->NumberOfIdEntries;i++) {
629	/* locate directory or each resource type */
630	prdType2 = (PIMAGE_RESOURCE_DIRECTORY)((int)prdRoot + (int)prde->u2.OffsetToData);
631
632	if(i < prdType->NumberOfNamedEntries) {//name or id entry?
633	if(prde->u1.s.NameIsString) //unicode directory string /PLF Sat 97-06-21 22:30:35/
634	prde->u1.Name &= ~0x80000000;
635	pstring = (PIMAGE_RESOURCE_DIR_STRING_U)((int)prdRoot + (int)prde->u1.Name);
636	cout << "Name = " << UnicodeToAscii(pstring->Length, pstring->NameString) << endl;
637	if(level == 1) {
638	id = OS2Exe.ConvertNametoId(UnicodeToAscii(pstring->Length, pstring->NameString));
639	}
640	}
641	else {
642	cout << "Id " << prde->u1.Id << endl;
643	if(level == 1) id = prde->u1.Id;
644	}
645
646	if((int)prdType2 & 0x80000000) {//subdirectory?
647	ProcessResSubDir(prdType2, 2, prdRoot, VirtualAddress, type, id);
648	}
649	else {
650	pData = (PIMAGE_RESOURCE_DATA_ENTRY)prdType2;
651	cout << "Resource Data entry of size " << hex(pData->Size) << endl;
652	cout << "Resource Data RVA " << hex(pData->OffsetToData - VirtualAddress) << endl;
653	cout << "Resource Data RVA " << hex(pData->OffsetToData) << endl;
654	cout << "Resource Data VA " << hex(VirtualAddress) << endl;
655	if(fUseCodePage == TRUE)
656	WinCodePage = pData->CodePage;
657	else WinCodePage = 0;
658
659	if(pData->Size) {//winamp17 winzip archive has resource with size 0
660	switch(type) {
661	case NTRT_MENU:
662	ShowMenu(id, (MenuHeader )((char )prdRoot + pData->OffsetToData - VirtualAddress), pData->Size, WinCodePage);
663	break;
664	case NTRT_ICON:
665	new OS2Icon(id, (WINBITMAPINFOHEADER )((char )prdRoot + pData->OffsetToData - VirtualAddress), pData->Size);
666	break;
667	case NTRT_BITMAP:
668	//KSO [Mon 03.08.1998]: added OS2Exe to the parameterlist
669	ShowBitmap(OS2Exe, id, (WINBITMAPINFOHEADER )((char )prdRoot + pData->OffsetToData - VirtualAddress), pData->Size);
670	break;
671	case NTRT_GROUP_ICON:
672	ShowGroupIcon(id, (IconHeader )((char )prdRoot + pData->OffsetToData - VirtualAddress), pData->Size);
673	break;
674	case NTRT_CURSOR:
675	new OS2Cursor(id, (CursorComponent )((char )prdRoot + pData->OffsetToData - VirtualAddress), pData->Size);
676	break;
677	case NTRT_GROUP_CURSOR:
678	ShowGroupCursor(id, (CursorHeader )((char )prdRoot + pData->OffsetToData - VirtualAddress), pData->Size);
679	break;
680	case NTRT_DIALOG:
681	ShowDialog(id, (DialogBoxHeader )((char )prdRoot + pData->OffsetToData - VirtualAddress), pData->Size, WinCodePage);
682	break;
683	case NTRT_VERSION:
684	//Store version resource as OS/2 RT_RCDATA resource
685	//to retrieve the original for win32's version apis
686	//TODO: Only supports one version resource (who would want to use more??)
687	//Allocate unique id for version resource to prevent conflicts
688	id = OS2Exe.GetUniqueId();
689	OS2Exe.SetVersionResourceId(id);
690	case NTRT_RCDATA:
691	ShowRCData(id, (char )((char )prdRoot + pData->OffsetToData - VirtualAddress), pData->Size);
692	break;
693	case NTRT_STRING:
694	//String format: tables of 16 strings stored as one resource
695	//upper 12 bits of resource id passed by user determines block (res id)
696	//lower 4 bits are an index into the string table
697	//Best solution is to split the strings up and store them as RCDATA
698	ShowStrings(id, (char )((char )prdRoot + pData->OffsetToData - VirtualAddress), pData->Size, WinCodePage);
699	break;
700	case NTRT_ACCELERATORS:
701	ShowAccelerator(id, (WINACCEL )((char )prdRoot + pData->OffsetToData - VirtualAddress), pData->Size);
702	break;
703	default:
704	cout << "!!Unsupported resource type!! : " << type << endl;
705	//Just save it as rcdata
706	ShowRCData(id, (char )((char )prdRoot + pData->OffsetToData - VirtualAddress), pData->Size);
707	break;
708	}//switch
709	}//if size > 0
710	}
711	if(level == 2) break; //only support one language!
712
713	prde++;
714	cout << endl;
715	}
716	}
717	//******************************************************************************
718	//******************************************************************************
719	void StoreIdResSubDir(PIMAGE_RESOURCE_DIRECTORY prdType, int level,
720	PIMAGE_RESOURCE_DIRECTORY prdRoot, int VirtualAddress,
721	int type, int id)
722	{
723	PIMAGE_RESOURCE_DIRECTORY prdType2;
724	PIMAGE_RESOURCE_DIRECTORY_ENTRY prde;
725	int i, j;
726
727	prdType = (PIMAGE_RESOURCE_DIRECTORY)((int)prdType & ~0x80000000);
728
729	prde = (PIMAGE_RESOURCE_DIRECTORY_ENTRY)((DWORD)prdType + sizeof (IMAGE_RESOURCE_DIRECTORY));
730	for(i=0;i<prdType->NumberOfNamedEntries+prdType->NumberOfIdEntries;i++) {
731	/* locate directory or each resource type */
732	prdType2 = (PIMAGE_RESOURCE_DIRECTORY)((int)prdRoot + (int)prde->u2.OffsetToData);
733
734	if(i >= prdType->NumberOfNamedEntries) {//name or id entry?
735	if(level == 1) id = prde->u1.Id;
736	}
737	else {
738	prde++;
739	continue; //skip name ids
740	}
741
742	if((int)prdType2 & 0x80000000) {//subdirectory?
743	StoreIdResSubDir(prdType2, 2, prdRoot, VirtualAddress, type, id);
744	}
745	else {
746	if(type == NTRT_STRING) {
747	for(j=0;j<16;j++) {
748	OS2Exe.StoreResourceId((id-1)*16+j);
749	}
750	}
751	else OS2Exe.StoreResourceId(id);
752	}
753	if(level == 2) break; //only support one language!
754
755	prde++;
756	}
757	}
758	//******************************************************************************
759	//******************************************************************************
760
761	/** All initial processing of imports is done here
762	* Should now detect most Borland styled files including the GifCon32.exe and
763	* loader32 from SoftIce. (Stupid Borland!!!)
764	*
765	* knut [Jul 22 1998 2:44am]
766	**/
767	BOOL ProcessImports(void *pFile)
768	{
769	PIMAGE_IMPORT_DESCRIPTOR pID;
770	IMAGE_SECTION_HEADER shID;
771	IMAGE_SECTION_HEADER shExtra = {0};
772	PIMAGE_OPTIONAL_HEADER pOH;
773
774	int i,j;
775	BOOL fBorland = 0;
776	int cModules;
777	char *pszModules;
778	char *pszCurModule;
779	char *pszTmp;
780	ULONG *pulImport;
781	ULONG ulCurFixup;
782	int Size;
783
784	/* "algorithm:"
785	* 1) get module names and store them
786	* a) check dwRVAModuleName is within .idata seg - if not find section
787	* 2) iterate thru functions of each module
788	* a) check OriginalFirstThunk is not 0 and that it points to a RVA.
789	* b) if not a) borland-styled PE-file - ARG!!!
790	* check FirstThunk
791	* c) check OriginalFirstThunk/FirstThunk ok RVAs and find right section
792	* d) store ordinal/name import
793	* 3) finished
794	*/
795
796	/* 1) get module names */
797	pID = (PIMAGE_IMPORT_DESCRIPTOR)ImageDirectoryOffset(pFile, IMAGE_DIRECTORY_ENTRY_IMPORT);
798	if (pID == NULL) {
799	OS2Exe.StoreImportModules("KERNEL32.DLL", 1);
800	OS2Exe.SetNoNameImports();
801	return TRUE; //SvL: yes, there are dlls without imports!
802	}
803	if (!GetSectionHdrByImageDir(pFile, IMAGE_DIRECTORY_ENTRY_IMPORT, &shID)) {
804	OS2Exe.StoreImportModules("KERNEL32.DLL", 1);
805	OS2Exe.SetNoNameImports();
806	return TRUE; //SvL: yes, there are dlls without imports!
807	}
808	//calc size of module list
809	i = Size = cModules = 0;
810	while (pID[i].Name != 0)
811	{
812	//test RVA inside ID-Section
813	if (pID[i].Name >= shID.VirtualAddress && pID[i].Name < shID.VirtualAddress + max(shID.Misc.VirtualSize, shID.SizeOfRawData))
814	pszTmp = (char*)(pID[i].Name- shID.VirtualAddress + shID.PointerToRawData + (ULONG)pFile);
815	else
816	{
817	//is the "Extra"-section already found or do we have to find it?
818	if (pID[i].Name < shExtra.VirtualAddress \|\| pID[i].Name >= shExtra.VirtualAddress + max(shExtra.Misc.VirtualSize, shExtra.SizeOfRawData))
819	if (!GetSectionHdrByRVA(pFile, &shExtra, pID[i].Name))
820	return FALSE;
821	pszTmp = (char*)(pID[i].Name- shExtra.VirtualAddress + shExtra.PointerToRawData + (ULONG)pFile);
822	}
823	Size += strlen(pszTmp) + 1;
824	i++;
825	cModules++;
826	}
827
828	pszModules = (char*)malloc(Size);
829	assert(pszModules != NULL);
830	j = 0;
831	for (i = 0; i < cModules; i++)
832	{
833	//test RVA inside ID-Section
834	if (pID[i].Name >= shID.VirtualAddress && pID[i].Name < shID.VirtualAddress + max(shID.Misc.VirtualSize, shID.SizeOfRawData))
835	pszTmp = (char*)(pID[i].Name- shID.VirtualAddress + shID.PointerToRawData + (ULONG)pFile);
836	else
837	{
838	fBorland = TRUE;
839	//is the "Extra"-section already found or do we have to find it?
840	if (pID[i].Name < shExtra.VirtualAddress \|\| pID[i].Name >= shExtra.VirtualAddress + max(shExtra.Misc.VirtualSize, shExtra.SizeOfRawData))
841	if (GetSectionHdrByRVA(pFile, &shExtra, pID[i].Name))
842	{
843	free(pszModules);
844	return FALSE;
845	}
846	pszTmp = (char*)(pID[i].Name- shExtra.VirtualAddress + shExtra.PointerToRawData + (ULONG)pFile);
847	}
848	strcpy(pszModules+j, pszTmp);
849	j += strlen(pszTmp) + 1;
850	}
851	cout << endl;
852	if (fBorland)
853	cout << "Borland-styled PE-File." << endl;
854	//Store modules
855	cout << cModules << " imported Modules: " << endl;
856	OS2Exe.StoreImportModules(pszModules, cModules);
857
858
859	/* 2) functions */
860	pszCurModule = pszModules;
861	pOH = (PIMAGE_OPTIONAL_HEADER)OPTHEADEROFF(pFile);
862	for (i = 0; i < cModules; i++)
863	{
864	cout << "Module " << pszCurModule << endl;
865	// a) check that OriginalFirstThunk not is 0 and look for Borland-styled PE
866	if (i == 0)
867	{
868	//heavy borland-style test - assume array of thunks is within that style does not change
869	if ((ULONG)pID[i].u.OriginalFirstThunk == 0
870	////\|\| (ULONG)pID[i].u.OriginalFirstThunk < pOH->SizeOfImage
871	\|\| (ULONG)pID[i].u.OriginalFirstThunk < shID.VirtualAddress
872	\|\| (ULONG)pID[i].u.OriginalFirstThunk >= shID.VirtualAddress + max(shID.Misc.VirtualSize, shID.SizeOfRawData)
873	\|\| (ULONG)pID[i].u.OriginalFirstThunk >= pOH->DataDirectory[IMAGE_DIRECTORY_ENTRY_IMPORT].VirtualAddress
874	&& (ULONG)pID[i].u.OriginalFirstThunk < sizeof(pID)cModules + pOH->DataDirectory[IMAGE_DIRECTORY_ENTRY_IMPORT].VirtualAddress
875	// && (ULONG)pID[i].u.OriginalFirstThunk < pOH->DataDirectory[IMAGE_DIRECTORY_ENTRY_IMPORT].Size + pOH->DataDirectory[IMAGE_DIRECTORY_ENTRY_IMPORT].VirtualAddress
876	)
877	fBorland = TRUE;
878	}
879
880	//light borland-style test
881	if (pID[i].u.OriginalFirstThunk == 0 \|\| fBorland)
882	pulImport = (ULONG*)pID[i].FirstThunk;
883	else
884	pulImport = (ULONG*)pID[i].u.OriginalFirstThunk;
885
886	// b) check if RVA ok
887	if (!(pulImport > 0 && (ULONG)pulImport < pOH->SizeOfImage))
888	{
889	cout << "Invalid RVA " << hex((ULONG)pulImport) << endl;
890	break;
891	}
892	// check section
893	if ((ULONG)pulImport < shExtra.VirtualAddress \|\| (ULONG)pulImport >= shExtra.VirtualAddress + max(shExtra.Misc.VirtualSize, shExtra.SizeOfRawData))
894	{
895	if (!GetSectionHdrByRVA(pFile, &shExtra, (ULONG)pulImport))
896	{
897	cout << "warning: could not find section for Thunk RVA " << hex((ULONG)pulImport) << endl;
898	break;
899	}
900	}
901
902	pulImport = (PULONG)((ULONG)pulImport - shExtra.VirtualAddress + (ULONG)pFile + shExtra.PointerToRawData);
903	j = 0;
904	ulCurFixup = (ULONG)pID[i].FirstThunk + pOH->ImageBase;
905	while (pulImport[j] != 0)
906	{
907	if (pulImport[j] & IMAGE_ORDINAL_FLAG)
908	{ //ordinal
909	cout.setf(ios::hex, ios::basefield);
910	cout << "0x" << ulCurFixup << " Imported function " << pszCurModule << "@" << (pulImport[j] & ~IMAGE_ORDINAL_FLAG) << endl;
911	cout.setf(ios::dec, ios::basefield);
912	OS2Exe.StoreImportByOrd(i, pulImport[j] & ~IMAGE_ORDINAL_FLAG, ulCurFixup);
913	}
914	else
915	{ //name
916	//check
917	if (pulImport[j] < shExtra.VirtualAddress \|\| pulImport[j] >= shExtra.VirtualAddress + max(shExtra.Misc.VirtualSize, shExtra.SizeOfRawData))
918	if (!GetSectionHdrByRVA(pFile, &shExtra, pulImport[j]))
919	{
920	cout << "warning: could not find section for Import Name RVA " << hex(pulImport[j]) << endl;
921	break;
922	}
923	//KSO - Aug 6 1998 1:15am:this eases comparing...
924	char pszFunctionName = (char)(pulImport[j] + (ULONG)pFile + shExtra.PointerToRawData - shExtra.VirtualAddress + 2);
925	cout.setf(ios::hex, ios::basefield);
926	cout << "0x" << ulCurFixup << " Imported function " << pszFunctionName << endl;
927	cout.setf(ios::dec, ios::basefield);
928	OS2Exe.StoreImportByName(pszCurModule, i, pszFunctionName, ulCurFixup);
929	}
930	ulCurFixup += sizeof(IMAGE_THUNK_DATA);
931	j++;
932	}
933
934	pszCurModule += strlen(pszCurModule) + 1;
935	cout << endl;
936	}//for (i = 0; i < cModules; i++)
937
938	free(pszModules);
939	return TRUE;
940	}
941

Note: See TracBrowser for help on using the repository browser.

Download in other formats: