12#define PROVIDER_PREFIX "AVRF"
14#define PROVIDER_PREFIX "RVRF"
113 for (ThunkDescriptor = DllDescriptor->
DllThunks; ThunkDescriptor->
ThunkName; ++ThunkDescriptor)
147 if (Replacement != *ProcedureAddress)
149 *ProcedureAddress = Replacement;
166 Proc = oGetProcAddress(
hModule, lpProcName);
171 if (Replacement != Proc)
struct _LDR_DATA_TABLE_ENTRY * PLDR_DATA_TABLE_ENTRY
#define NT_SUCCESS(StatCode)
#define DLL_THREAD_DETACH
#define DLL_PROCESS_ATTACH
#define DLL_PROCESS_DETACH
#define DLL_THREAD_ATTACH
IN PFCB IN PFILE_OBJECT FileObject IN ULONG AllocationSize
_In_ HANDLE _Outptr_result_bytebuffer_ ViewSize PVOID * BaseAddress
PRTL_VERIFIER_THUNK_DESCRIPTOR DllThunks
#define DLL_PROCESS_VERIFIER
#define RTL_VRF_DBG_VERIFIER_LOGCALLS
#define RTL_VRF_DBG_VERIFIER_SHOWDYNTHUNKS
static RTL_VERIFIER_THUNK_DESCRIPTOR AVrfpKernel32Thunks[]
VOID NTAPI AVrfpDllUnloadCallback(PWSTR DllName, PVOID DllBase, SIZE_T DllSize, PVOID Reserved)
VOID NTAPI AVrfpDllLoadCallback(PWSTR DllName, PVOID DllBase, SIZE_T DllSize, PVOID Reserved)
NTSTATUS NTAPI AVrfpLdrGetProcedureAddress(_In_ PVOID BaseAddress, _In_opt_ _When_(Ordinal==0, _Notnull_) PANSI_STRING Name, _In_opt_ _When_(Name==NULL, _In_range_(>, 0)) ULONG Ordinal, _Out_ PVOID *ProcedureAddress)
static RTL_VERIFIER_DLL_DESCRIPTOR AVrfpDllDescriptors[]
VOID NTAPI AVrfpNtdllHeapFreeCallback(PVOID AllocationBase, SIZE_T AllocationSize)
FARPROC WINAPI AVrfpGetProcAddress(IN HMODULE hModule, IN LPCSTR lpProcName)
static RTL_VERIFIER_THUNK_DESCRIPTOR AVrfpNtdllThunks[]
PVOID AVrfpFindReplacementThunk(PVOID Proc)
BOOL WINAPI DllMain(HANDLE hInstance, DWORD dwReason, LPVOID lpReserved)
RTL_VERIFIER_PROVIDER_DESCRIPTOR AVrfpProvider
_Reserved_ PVOID Reserved