tags:

views:

143

answers:

3
+1  Q: 

dynamic load on Windows 7 fails

As I mentioned on one my previous questions I am playing with simulating GetProcAddress() in my code. The following code is successful in doing this, however it causes the application to crash on windows 7

void *GetFuncAddr(HMODULE hModule, char *fname) 
{
    unsigned int count = 1;
    IMAGE_DOS_HEADER *DosHeader;
    IMAGE_NT_HEADERS *NtHeaders;
    IMAGE_OPTIONAL_HEADER *OptionalHeader;
    IMAGE_DATA_DIRECTORY *DataDirectory;
    IMAGE_EXPORT_DIRECTORY *Exp;
    ULONG *addrof;
    char *fullfname;
    ULONG *faddr;

    DosHeader = (IMAGE_DOS_HEADER *)hModule; 
    if (DosHeader->e_magic != IMAGE_DOS_SIGNATURE) 
    { 
     return NULL;
    } 

    NtHeaders = (IMAGE_NT_HEADERS *)(((BYTE *)DosHeader) + DosHeader->e_lfanew); 
    if (NtHeaders->Signature != IMAGE_NT_SIGNATURE)
    { 
     return NULL;
    } 

    OptionalHeader = &NtHeaders->OptionalHeader; 
    DataDirectory = &OptionalHeader->DataDirectory[IMAGE_DIRECTORY_ENTRY_EXPORT]; 

    Exp = (IMAGE_EXPORT_DIRECTORY *)((size_t)DosHeader + DataDirectory->VirtualAddress); 

    addrof = (ULONG *)((BYTE*) hModule + Exp->addrof);
    faddr = (ULONG*) ((BYTE*) hModule + Exp->AddressOfFunctions);

    for(count = 0; count < Exp->NumberOfNames; count++)
    {
     fullfname = (char*)((BYTE*) hModule + addrof[count]);  
     if(strcmp(fullfname, fname) == 0)
     { 
      return (void*)((BYTE*) hModule + faddr[count]);
     }
    }

    return NULL;
}

It doesn't matter what function I tried loading using this the application crashes. The crashes occurs when calling the imported function so my guess is that the pointer returned might be the offending thing here. This occurs on both x86 and x64. Is there any visible reason for this in this code?

I tried setting the function to return FARPROC but I'm getting all confused about how to cast the return on ((BYTE*) hModule + faddr[count]);

Anyway, any ideas? solutions? Any help is appreciated.

Thanks. jess.

EDIT The error returned by some of the API's i am importing is error 18, the parameter is incorrect.

+1  A: 

It looks like you are assuming Ordinal # = offset in table. Maybe that's not true in Windows 7 DLLs.

Joshua  2009-12-21 21:11:54
If you just print the function names and their addresses it seems to be OK even on windows 7. GetProcAddress returns the same address
Jessica  2009-12-21 21:15:32
You might be onto something: this is what happens when you import GetWindowThreadProcessId: with GetProcAddress I get 0x7553ed3c as the address and with my code I get 0x75566420. This doesn't happen with the functions that are imported from Kernel32, only those imported from User32 and other DLLs. any comments?
Jessica  2009-12-21 21:30:22
A little correction, it does occasionally happens with Kernel32 as in the case of CreateToolhelp32Snapshot
Jessica  2009-12-21 21:33:03
A: 

How do you create the handle hModule? And why don't you just use GetProcAddress (your function seems to duplicate the behaviour of your function)?

frunsi  2009-12-21 21:19:08
hModule comes from LoadLibrary. and I don't want to use GetProcAddress, hence the code I posted which, as you mentioned, does indeed replicate the functionality, or tries.
Jessica  2009-12-21 21:31:29
+3  A: 

I think you may need to do an additional lookup.

USHORT *ford;
...
ford = (USHORT*) ((BYTE*) hModule + Exp->AddressOfNameOrdinals);

and then offset by the ordinal:

            return (void*)((BYTE*) hModule + faddr[ford[count]]);

This article talks about it some: http://msdn.microsoft.com/en-us/magazine/cc301808.aspx

Mark Wilkins  2009-12-21 21:38:19
That did it. Thanks so much.
Jessica  2009-12-21 21:50:37
Cool. I learned something about it while looking at it, so that's good too. And if you give me an up vote, I'll get 10 more points in this game :)
Mark Wilkins  2009-12-21 21:58:23

related questions

any good tool for makefile generation?
How do you pass a function as a parameter in C?
Where should a veteran C programmer start in order to master Java ?
Any good book on best practice and guidelines in developing a SDK in C?
How do you determine the size of a file in C?
Decoding printf statements in C (Printf Primer)
Shift operator in C
How to avoid redefining VERSION, PACKAGE, etc.
Alpha blending sprites in Nintendo DS Homebrew
When should I use type abstraction in embedded systems
How to implement continuations?
What are the barriers to understanding pointers and what can be done to overcome them?
Anyone have experience creating a shared library in MATLAB?
String.indexOf function in C
Passing multidimensional arrays as function arguments in C
C/C++ library for reading MIDI signals from a USB MIDI device
Choosing a static code analysis tool
How do you printf an unsigned long long int?
Good STL-like library for C.
Rockbox audio format
Why am I getting a malloc: double free error with realloc()?
Should I learn C?
GTK implementation of MessageBox
Is gettimeofday() guaranteed to be of microsecond resolution?
How to use the C socket API in C++ on z/OS