This graph shows which files directly or indirectly include this file:
Go to the source code of this file.
Classes | |
| struct | _LDRP_TLS_DATA |
Macros | |
| #define | LDR_HASH_TABLE_ENTRIES 32 |
| #define | LDR_GET_HASH_ENTRY(x) (RtlUpcaseUnicodeChar((x)) & (LDR_HASH_TABLE_ENTRIES - 1)) |
| #define | LDRP_UPDATE_REFCOUNT 0x01 |
| #define | LDRP_UPDATE_DEREFCOUNT 0x02 |
| #define | LDRP_UPDATE_PIN 0x03 |
| #define | IMAGE_LOADER_FLAGS_COMPLUS 0x00000001 |
| #define | IMAGE_LOADER_FLAGS_SYSTEM_GLOBAL 0x01000000 |
| #define | DPH_FLAG_DLL_NOTIFY 0x40 |
Typedefs | |
| typedef struct _LDRP_TLS_DATA | LDRP_TLS_DATA |
| typedef struct _LDRP_TLS_DATA * | PLDRP_TLS_DATA |
| typedef NTSTATUS(NTAPI * | PLDR_APP_COMPAT_DLL_REDIRECTION_CALLBACK_FUNCTION) (_In_ ULONG Flags, _In_ PCWSTR DllName, _In_ PCWSTR DllPath OPTIONAL, _Inout_opt_ PULONG DllCharacteristics, _In_ PVOID CallbackData, _Outptr_ PWSTR *EffectiveDllPath) |
| typedef NTSTATUS(NTAPI * | PEPFUNC) (PPEB) |
Macro Definition Documentation
◆ DPH_FLAG_DLL_NOTIFY
◆ IMAGE_LOADER_FLAGS_COMPLUS
◆ IMAGE_LOADER_FLAGS_SYSTEM_GLOBAL
◆ LDR_GET_HASH_ENTRY
| #define LDR_GET_HASH_ENTRY | ( | x | ) | (RtlUpcaseUnicodeChar((x)) & (LDR_HASH_TABLE_ENTRIES - 1)) |
◆ LDR_HASH_TABLE_ENTRIES
◆ LDRP_UPDATE_DEREFCOUNT
◆ LDRP_UPDATE_PIN
◆ LDRP_UPDATE_REFCOUNT
Typedef Documentation
◆ LDRP_TLS_DATA
| typedef struct _LDRP_TLS_DATA LDRP_TLS_DATA |
◆ PEPFUNC
◆ PLDR_APP_COMPAT_DLL_REDIRECTION_CALLBACK_FUNCTION
◆ PLDRP_TLS_DATA
| typedef struct _LDRP_TLS_DATA * PLDRP_TLS_DATA |
Function Documentation
◆ AVrfDllLoadNotification()
| VOID NTAPI AVrfDllLoadNotification | ( | IN PLDR_DATA_TABLE_ENTRY | LdrEntry | ) |
Definition at line 298 of file verifier.c.
299{
301
303 return;
304
307 {
308 AvrfpResolveThunks(LdrEntry);
309
310 for (Entry = AVrfpVerifierProvidersList.Flink; Entry != &AVrfpVerifierProvidersList; Entry = Entry->Flink)
311 {
313 RTL_VERIFIER_DLL_LOAD_CALLBACK ProviderDllLoadCallback;
314
316
317 ProviderDllLoadCallback = Provider->ProviderDllLoadCallback;
318 if (ProviderDllLoadCallback)
319 {
320 ProviderDllLoadCallback(LdrEntry->BaseDllName.Buffer,
321 LdrEntry->DllBase,
322 LdrEntry->SizeOfImage,
323 LdrEntry);
324 }
325 }
326 }
328}
Definition: provider.h:10
NTSYSAPI NTSTATUS NTAPI RtlEnterCriticalSection(_In_ PRTL_CRITICAL_SECTION CriticalSection)
NTSYSAPI NTSTATUS NTAPI RtlLeaveCriticalSection(_In_ PRTL_CRITICAL_SECTION CriticalSection)
BOOLEAN AVrfpIsVerifierProviderDll(PVOID BaseAddress)
Definition: verifier.c:107
VOID AvrfpResolveThunks(IN PLDR_DATA_TABLE_ENTRY LdrEntry)
Definition: verifier.c:239
Definition: typedefs.h:120
Definition: verifier.c:32
VOID(NTAPI * RTL_VERIFIER_DLL_LOAD_CALLBACK)(PWSTR DllName, PVOID DllBase, SIZE_T DllSize, PVOID Reserved)
Definition: verifier.h:6
Referenced by LdrpWalkImportDescriptor().
◆ AVrfDllUnloadNotification()
| VOID NTAPI AVrfDllUnloadNotification | ( | IN PLDR_DATA_TABLE_ENTRY | LdrEntry | ) |
Definition at line 332 of file verifier.c.
333{
335
337 return;
338
341 {
342 for (Entry = AVrfpVerifierProvidersList.Flink; Entry != &AVrfpVerifierProvidersList; Entry = Entry->Flink)
343 {
345 RTL_VERIFIER_DLL_UNLOAD_CALLBACK ProviderDllUnloadCallback;
346
348
349 ProviderDllUnloadCallback = Provider->ProviderDllUnloadCallback;
350 if (ProviderDllUnloadCallback)
351 {
352 ProviderDllUnloadCallback(LdrEntry->BaseDllName.Buffer,
353 LdrEntry->DllBase,
354 LdrEntry->SizeOfImage,
355 LdrEntry);
356 }
357 }
358 }
360}
VOID(NTAPI * RTL_VERIFIER_DLL_UNLOAD_CALLBACK)(PWSTR DllName, PVOID DllBase, SIZE_T DllSize, PVOID Reserved)
Definition: verifier.h:7
Referenced by LdrUnloadDll().
◆ AVrfInitializeVerifier()
Definition at line 672 of file verifier.c.
673{
678
681
684
687
691
694
696
697 do
698 {
700 Next++;
701
703
705 Next++;
706
709 else
711
713 {
719 }
721
724 {
727
730 {
733 }
734 }
735
737 {
738 DbgPrint("AVRF: %wZ: pid 0x%X: application verifier will be disabled due to an initialization error.\n",
740 NtCurrentPeb()->NtGlobalFlag &= ~FLG_APPLICATION_VERIFIER;
741 }
742
744}
PVOID NTAPI RtlAllocateHeap(IN PVOID HeapHandle, IN ULONG Flags, IN SIZE_T Size)
Definition: heap.c:616
BOOLEAN NTAPI RtlFreeHeap(IN PVOID HeapHandle, IN ULONG Flags, IN PVOID HeapBase)
Definition: heap.c:634
NTSYSAPI NTSTATUS NTAPI RtlInitializeCriticalSection(_In_ PRTL_CRITICAL_SECTION CriticalSection)
NTSYSAPI VOID NTAPI RtlInitUnicodeString(PUNICODE_STRING DestinationString, PCWSTR SourceString)
NTSTATUS NTAPI AVrfpLoadAndInitializeProvider(PVERIFIER_PROVIDER Provider)
Definition: verifier.c:549
STDMETHOD() Next(THIS_ ULONG celt, IAssociationElement *pElement, ULONG *pceltFetched) PURE
Referenced by LdrpInitializeProcess().
◆ AVrfPageHeapDllNotification()
| VOID NTAPI AVrfPageHeapDllNotification | ( | IN PLDR_DATA_TABLE_ENTRY | LdrEntry | ) |
Definition at line 390 of file verifier.c.
391{
392 /* Check if page heap dll notification is turned on */
394 return;
395
396 /* We don't support this flag currently */
397 UNIMPLEMENTED;
398}
Referenced by LdrpWalkImportDescriptor().
◆ LdrMapNTDllForProcess()
◆ LdrMapSections()
| NTSTATUS LdrMapSections | ( | HANDLE | ProcessHandle, |
| PVOID | ImageBase, | ||
| HANDLE | SectionHandle, | ||
| PIMAGE_NT_HEADERS | NTHeaders | ||
| ) |
◆ LdrpAllocateDataTableEntry()
| PLDR_DATA_TABLE_ENTRY NTAPI LdrpAllocateDataTableEntry | ( | IN PVOID | BaseAddress | ) |
Definition at line 1528 of file ldrutils.c.
1529{
1531 PIMAGE_NT_HEADERS NtHeader;
1532
1533 /* Make sure the header is valid */
1536
1537 if (NtHeader)
1538 {
1539 /* Allocate an entry */
1541 HEAP_ZERO_MEMORY,
1543
1544 /* Make sure we got one */
1545 if (LdrEntry)
1546 {
1547 /* Set it up */
1552 }
1553 }
1554
1555 /* Return the entry */
1556 return LdrEntry;
1557}
_In_ HANDLE _Outptr_result_bytebuffer_ ViewSize PVOID * BaseAddress
Definition: mmfuncs.h:404
Definition: ntddk_ex.h:181
Definition: btrfs_drv.h:1876
Referenced by LdrpInitializeProcess(), and LdrpMapDll().
◆ LdrpAllocateTls()
Definition at line 1328 of file ldrinit.c.
1329{
1331 PLIST_ENTRY NextEntry, ListHead;
1332 PLDRP_TLS_DATA TlsData;
1333 SIZE_T TlsDataSize;
1334 PVOID *TlsVector;
1335
1336 /* Check if we have any entries */
1339
1340 /* Allocate the vector array */
1341 TlsVector = RtlAllocateHeap(RtlGetProcessHeap(),
1342 0,
1345 Teb->ThreadLocalStoragePointer = TlsVector;
1346
1347 /* Loop the TLS Array */
1348 ListHead = &LdrpTlsList;
1349 NextEntry = ListHead->Flink;
1350 while (NextEntry != ListHead)
1351 {
1352 /* Get the entry */
1354 NextEntry = NextEntry->Flink;
1355
1356 /* Allocate this vector */
1360 0,
1361 TlsDataSize);
1363 {
1364 /* Out of memory */
1366 }
1367
1368 /* Show debug message */
1370 {
1372 TlsVector,
1377 }
1378
1379 /* Copy the data */
1382 TlsDataSize);
1383 }
1384
1385 /* Done */
1387}
Definition: nsiface.idl:2307
Definition: ntdllp.h:27
Definition: compat.h:836
Referenced by LdrpInitializeThread(), and LdrpInitializeTls().
◆ LdrpApplyFileNameRedirection()
| NTSYSAPI NTSTATUS NTAPI LdrpApplyFileNameRedirection | ( | _In_ PUNICODE_STRING | OriginalName, |
| _In_ PUNICODE_STRING | Extension, | ||
| _Inout_opt_ PUNICODE_STRING | StaticString, | ||
| _Inout_opt_ PUNICODE_STRING | DynamicString, | ||
| _Inout_ PUNICODE_STRING * | NewName, | ||
| _Inout_ PBOOLEAN | RedirectedDll | ||
| ) |
Referenced by LdrGetDllHandleEx(), LdrLoadDll(), LdrpLoadImportModule(), LdrpSnapThunk(), and LdrpUpdateLoadCount3().
◆ LdrpCallInitRoutine()
| BOOLEAN NTAPI LdrpCallInitRoutine | ( | IN PDLL_INIT_ROUTINE | EntryPoint, |
| IN PVOID | BaseAddress, | ||
| IN ULONG | Reason, | ||
| IN PVOID | Context | ||
| ) |
Definition at line 100 of file ldrutils.c.
Referenced by AVrfpLoadAndInitializeProvider(), LdrpCallTlsInitializers(), LdrpInitializeThread(), LdrpRunInitializeRoutines(), LdrpRunShimEngineInitRoutine(), LdrShutdownProcess(), LdrShutdownThread(), and LdrUnloadDll().
◆ LdrpCallTlsInitializers()
Definition at line 447 of file ldrutils.c.
449{
450 PIMAGE_TLS_DIRECTORY TlsDirectory;
453
454 /* Get the TLS Directory */
455 TlsDirectory = RtlImageDirectoryEntryToData(LdrEntry->DllBase,
456 TRUE,
458 &Size);
459
460 /* Protect against invalid pointers */
461 _SEH2_TRY
462 {
463 /* Make sure it's valid */
464 if (TlsDirectory)
465 {
466 /* Get the array */
468 if (Array)
469 {
470 /* Display debug */
472 {
474 LdrEntry->DllBase, TlsDirectory, Array);
475 }
476
477 /* Loop the array */
478 while (*Array)
479 {
480 /* Get the TLS Entrypoint */
481 Callback = *Array++;
482
483 /* Display debug */
485 {
487 LdrEntry->DllBase, Callback);
488 }
489
490 /* Call it */
492 LdrEntry->DllBase,
493 Reason,
494 NULL);
495 }
496 }
497 }
498 }
500 {
503 }
504 _SEH2_END;
505}
BOOLEAN(NTAPI * PDLL_INIT_ROUTINE)(_In_ PVOID DllHandle, _In_ ULONG Reason, _In_opt_ PCONTEXT Context)
Definition: ldrtypes.h:271
BOOLEAN NTAPI LdrpCallInitRoutine(IN PDLL_INIT_ROUTINE EntryPoint, IN PVOID BaseAddress, IN ULONG Reason, IN PVOID Context)
Definition: ldrutils.c:100
VOID(NTAPI * PIMAGE_TLS_CALLBACK)(PVOID DllHandle, ULONG Reason, PVOID Reserved)
Definition: ntimage.h:531
Definition: ntimage.h:545
_Must_inspect_result_ _In_ WDFDEVICE _In_ PWDF_DEVICE_PROPERTY_DATA _In_ DEVPROPTYPE _In_ ULONG Size
Definition: wdfdevice.h:4533
Referenced by LdrpInitializeThread(), LdrpRunInitializeRoutines(), LdrShutdownProcess(), and LdrShutdownThread().
◆ LdrpCheckForLoadedDll()
| BOOLEAN NTAPI LdrpCheckForLoadedDll | ( | IN PWSTR | DllPath, |
| IN PUNICODE_STRING | DllName, | ||
| IN BOOLEAN | Flag, | ||
| IN BOOLEAN | RedirectedDll, | ||
| OUT PLDR_DATA_TABLE_ENTRY * | LdrEntry | ||
| ) |
Definition at line 1958 of file ldrutils.c.
1963{
1964 ULONG HashIndex;
1965 PLIST_ENTRY ListHead, ListEntry;
1966 PLDR_DATA_TABLE_ENTRY CurEntry;
1968 PWCHAR wc;
1969 WCHAR NameBuf[266];
1978 PIMAGE_NT_HEADERS NtHeader, NtHeader2;
1979 DPRINT("LdrpCheckForLoadedDll('%S' '%wZ' %u %u %p)\n", DllPath ? ((ULONG_PTR)DllPath == 1 ? L"" : DllPath) : L"", DllName, Flag, RedirectedDll, LdrEntry);
1980
1981 /* Check if a dll name was provided */
1983
1984 /* FIXME: Warning, "Flag" is used as magic instead of "Static" */
1985 /* FIXME: Warning, code does not support redirection at all */
1986
1987 /* Look in the hash table if flag was set */
1988lookinhash:
1990 {
1991 /* FIXME: if we get redirected dll it means that we also get a full path so we need to find its filename for the hash lookup */
1992
1993 /* Get hash index */
1994 HashIndex = LDR_GET_HASH_ENTRY(DllName->Buffer[0]);
1995
1996 /* Traverse that list */
1997 ListHead = &LdrpHashTable[HashIndex];
1998 ListEntry = ListHead->Flink;
1999 while (ListEntry != ListHead)
2000 {
2001 /* Get the current entry */
2003
2004 /* Check base name of that module */
2006 {
2007 /* It matches, return it */
2008 *LdrEntry = CurEntry;
2010 }
2011
2012 /* Advance to the next entry */
2013 ListEntry = ListEntry->Flink;
2014 }
2015
2016 /* Module was not found, return failure */
2018 }
2019
2020 /* Check if this is a redirected DLL */
2021 if (RedirectedDll)
2022 {
2023 /* Redirected dlls already have a full path */
2024 FullPath = TRUE;
2025 FullDllName = *DllName;
2026 }
2027 else
2028 {
2029 /* Check if there is a full path in this DLL */
2030 wc = DllName->Buffer;
2031 while (*wc)
2032 {
2033 /* Check for a slash in the current position*/
2035 {
2036 /* Found the slash, so dll name contains path */
2037 FullPath = TRUE;
2038
2039 /* Setup full dll name string */
2040 FullDllName.Buffer = NameBuf;
2041
2042 /* FIXME: This is from the Windows 2000 loader, not XP/2003, we should call LdrpSearchPath */
2044 DllName->Buffer,
2045 NULL,
2047 FullDllName.Buffer,
2048 NULL);
2049
2050 /* Check if that was successful */
2052 {
2054 {
2056 &DllName, Length);
2057 }
2058 }
2059
2060 /* Full dll name is found */
2063 break;
2064 }
2065
2066 wc++;
2067 }
2068 }
2069
2070 /* Go check the hash table */
2071 if (!FullPath)
2072 {
2074 goto lookinhash;
2075 }
2076
2077 /* FIXME: Warning, activation context missing */
2079
2080 /* NOTE: From here on down, everything looks good */
2081
2082 /* Loop the module list */
2083 ListHead = &NtCurrentPeb()->Ldr->InLoadOrderModuleList;
2084 ListEntry = ListHead->Flink;
2085 while (ListEntry != ListHead)
2086 {
2087 /* Get the current entry and advance to the next one */
2088 CurEntry = CONTAINING_RECORD(ListEntry,
2089 LDR_DATA_TABLE_ENTRY,
2090 InLoadOrderLinks);
2091 ListEntry = ListEntry->Flink;
2092
2093 /* Check if it's being unloaded */
2095
2096 /* Check if name matches */
2098 &CurEntry->FullDllName,
2099 TRUE))
2100 {
2101 /* Found it */
2102 *LdrEntry = CurEntry;
2104 }
2105 }
2106
2107 /* Convert given path to NT path */
2109 &NtPathName,
2110 NULL,
2111 NULL))
2112 {
2113 /* Fail if conversion failed */
2115 }
2116
2117 /* Initialize object attributes and open it */
2119 &NtPathName,
2120 OBJ_CASE_INSENSITIVE,
2121 NULL,
2122 NULL);
2125 &ObjectAttributes,
2126 &Iosb,
2129
2130 /* Free NT path name */
2132
2133 /* If opening the file failed - return failure */
2135
2136 /* Create a section for this file */
2138 SECTION_MAP_READ |
2139 SECTION_MAP_EXECUTE |
2140 SECTION_MAP_WRITE,
2141 NULL,
2142 NULL,
2143 PAGE_EXECUTE,
2144 SEC_COMMIT,
2145 FileHandle);
2146
2147 /* Close file handle */
2149
2150 /* If creating section failed - return failure */
2152
2153 /* Map view of this section */
2154 Status = ZwMapViewOfSection(SectionHandle,
2155 NtCurrentProcess(),
2156 &ViewBase,
2157 0,
2158 0,
2159 NULL,
2160 &ViewSize,
2161 ViewShare,
2162 0,
2163 PAGE_EXECUTE);
2164
2165 /* Close section handle */
2166 NtClose(SectionHandle);
2167
2168 /* If section mapping failed - return failure */
2170
2171 /* Get pointer to the NT header of this section */
2174 {
2175 /* Unmap the section and fail */
2178 }
2179
2180 /* Go through the list of modules again */
2181 ListHead = &NtCurrentPeb()->Ldr->InLoadOrderModuleList;
2182 ListEntry = ListHead->Flink;
2183 while (ListEntry != ListHead)
2184 {
2185 /* Get the current entry and advance to the next one */
2186 CurEntry = CONTAINING_RECORD(ListEntry,
2187 LDR_DATA_TABLE_ENTRY,
2188 InLoadOrderLinks);
2189 ListEntry = ListEntry->Flink;
2190
2191 /* Check if it's in the process of being unloaded */
2193
2194 /* The header is untrusted, use SEH */
2195 _SEH2_TRY
2196 {
2197 /* Check if timedate stamp and sizes match */
2200 {
2201 /* Time, date and size match. Let's compare their headers */
2204 {
2205 /* Headers match too! Finally ask the kernel to compare mapped files */
2208 {
2209 /* This is our entry!, unmap and return success */
2210 *LdrEntry = CurEntry;
2213 }
2214 }
2215 }
2216 }
2218 {
2220 }
2221 _SEH2_END;
2222 }
2223
2224 /* Unmap the section and fail */
2227}
NTSTATUS NTAPI NtUnmapViewOfSection(IN HANDLE ProcessHandle, IN PVOID BaseAddress)
Definition: section.c:3483
NTSTATUS NTAPI NtCreateSection(OUT PHANDLE SectionHandle, IN ACCESS_MASK DesiredAccess, IN POBJECT_ATTRIBUTES ObjectAttributes OPTIONAL, IN PLARGE_INTEGER MaximumSize OPTIONAL, IN ULONG SectionPageProtection OPTIONAL, IN ULONG AllocationAttributes, IN HANDLE FileHandle OPTIONAL)
Definition: section.c:3076
NTSTATUS NTAPI RtlImageNtHeaderEx(_In_ ULONG Flags, _In_ PVOID Base, _In_ ULONG64 Size, _Out_ PIMAGE_NT_HEADERS *OutHeaders)
Definition: libsupp.c:32
_Must_inspect_result_ _In_opt_ PFLT_INSTANCE _Out_ PHANDLE FileHandle
Definition: fltkernel.h:1231
NTSYSAPI NTSTATUS NTAPI ZwAreMappedFilesTheSame(_In_ PVOID File1MappedAsAnImage, _In_ PVOID File2MappedAsFile)
_In_ HANDLE _Outptr_result_bytebuffer_ ViewSize PVOID _In_ ULONG_PTR _In_ SIZE_T _Inout_opt_ PLARGE_INTEGER _Inout_ PSIZE_T ViewSize
Definition: mmfuncs.h:408
NTSYSAPI ULONG NTAPI RtlDosSearchPath_U(_In_ PCWSTR Path, _In_ PCWSTR FileName, _In_ PCWSTR Extension, _In_ ULONG BufferSize, _Out_ PWSTR Buffer, _Out_ PWSTR *PartName)
NTSYSAPI BOOLEAN NTAPI RtlDosPathNameToNtPathName_U(_In_opt_z_ PCWSTR DosPathName, _Out_ PUNICODE_STRING NtPathName, _Out_opt_ PCWSTR *NtFileNamePart, _Out_opt_ PRTL_RELATIVE_NAME_U DirectoryInfo)
NTSYSAPI NTSTATUS NTAPI NtOpenFile(OUT PHANDLE phFile, IN ACCESS_MASK DesiredAccess, IN POBJECT_ATTRIBUTES ObjectAttributes, OUT PIO_STATUS_BLOCK pIoStatusBlock, IN ULONG ShareMode, IN ULONG OpenMode)
Definition: file.c:3953
NTSYSAPI BOOLEAN NTAPI RtlEqualUnicodeString(PUNICODE_STRING String1, PUNICODE_STRING String2, BOOLEAN CaseInSensitive)
#define UNICODE_NULL
Definition: xml2sdb.h:80
Definition: env_spec_w32.h:870
Definition: umtypes.h:182
Definition: env_spec_w32.h:368
Referenced by LdrGetDllHandleEx(), LdrpLoadDll(), LdrpLoadImportModule(), and LdrpUpdateLoadCount3().
◆ LdrpCheckForLoadedDllHandle()
Definition at line 1600 of file ldrutils.c.
1602{
1603 PLDR_DATA_TABLE_ENTRY Current;
1605
1606 /* Check the cache first */
1609 {
1610 /* We got lucky, return the cached entry */
1611 *LdrEntry = LdrpLoadedDllHandleCache;
1613 }
1614
1615 /* Time for a lookup */
1616 ListHead = &NtCurrentPeb()->Ldr->InLoadOrderModuleList;
1619 {
1620 /* Get the current entry */
1622 LDR_DATA_TABLE_ENTRY,
1623 InLoadOrderLinks);
1624
1625 /* Make sure it's not unloading and check for a match */
1627 {
1628 /* Save in cache */
1629 LdrpLoadedDllHandleCache = Current;
1630
1631 /* Return it */
1632 *LdrEntry = Current;
1634 }
1635
1636 /* Move to the next one */
1638 }
1639
1640 /* Nothing found */
1642}
Referenced by LdrAddRefDll(), LdrDisableThreadCalloutsForDll(), LdrpGetProcedureAddress(), LdrpSnapThunk(), and LdrUnloadDll().
◆ LdrpClearLoadInProgress()
Definition at line 2649 of file ldrutils.c.
2650{
2652 PLDR_DATA_TABLE_ENTRY LdrEntry;
2653 ULONG ModulesCount = 0;
2654
2655 /* Traverse the init list */
2656 ListHead = &NtCurrentPeb()->Ldr->InInitializationOrderModuleList;
2659 {
2660 /* Get the loader entry */
2662 LDR_DATA_TABLE_ENTRY,
2663 InInitializationOrderLinks);
2664
2665 /* Clear load in progress flag */
2666 LdrEntry->Flags &= ~LDRP_LOAD_IN_PROGRESS;
2667
2668 /* Check for modules with entry point count but not processed yet */
2671 {
2672 /* Increase counter */
2673 ModulesCount++;
2674 }
2675
2676 /* Advance to the next entry */
2678 }
2679
2680 /* Return final count */
2681 return ModulesCount;
2682}
Referenced by LdrAddRefDll(), LdrGetDllHandleEx(), LdrpLoadDll(), and LdrpRunInitializeRoutines().
◆ LdrpEnsureLoaderLockIsHeld()
Definition at line 408 of file ldrinit.c.
409{
410 // Ignored atm
411}
Referenced by LdrpCheckForKnownDll(), and LdrpRunInitializeRoutines().
◆ LdrpFetchAddressOfEntryPoint()
Referenced by AVrfpLoadAndInitializeProvider(), and LdrpInitializeProcess().
◆ LdrpFinalizeAndDeallocateDataTableEntry()
| VOID NTAPI LdrpFinalizeAndDeallocateDataTableEntry | ( | IN PLDR_DATA_TABLE_ENTRY | Entry | ) |
Definition at line 1577 of file ldrutils.c.
1578{
1579 /* Sanity check */
1581
1582 /* Release the activation context if it exists and wasn't already released */
1585 {
1586 /* Mark it as invalid */
1589 }
1590
1591 /* Release the full dll name string */
1593
1594 /* Finally free the entry's memory */
1596}
NTSYSAPI void WINAPI RtlReleaseActivationContext(HANDLE)
Definition: actctx.c:5384
VOID NTAPI LdrpFreeUnicodeString(IN PUNICODE_STRING StringIn)
Definition: ldrutils.c:84
Referenced by LdrUnloadDll().
◆ LdrpFreeTls()
Definition at line 1391 of file ldrinit.c.
1392{
1393 PLIST_ENTRY ListHead, NextEntry;
1394 PLDRP_TLS_DATA TlsData;
1395 PVOID *TlsVector;
1397
1398 /* Get a pointer to the vector array */
1399 TlsVector = Teb->ThreadLocalStoragePointer;
1400 if (!TlsVector) return;
1401
1402 /* Loop through it */
1403 ListHead = &LdrpTlsList;
1404 NextEntry = ListHead->Flink;
1405 while (NextEntry != ListHead)
1406 {
1408 NextEntry = NextEntry->Flink;
1409
1410 /* Free each entry */
1412 {
1413 RtlFreeHeap(RtlGetProcessHeap(),
1414 0,
1416 }
1417 }
1418
1419 /* Free the array itself */
1420 RtlFreeHeap(RtlGetProcessHeap(),
1421 0,
1422 TlsVector);
1423}
Referenced by LdrShutdownThread().
◆ LdrpFreeUnicodeString()
| VOID NTAPI LdrpFreeUnicodeString | ( | PUNICODE_STRING | String | ) |
◆ LdrpGetProcedureAddress()
| NTSTATUS NTAPI LdrpGetProcedureAddress | ( | _In_ PVOID | BaseAddress, |
| _In_opt_ _When_(Ordinal==0, _Notnull_) PANSI_STRING | Name, | ||
| _In_opt_ _When_(Name==NULL, _In_range_(>, 0)) ULONG | Ordinal, | ||
| _Out_ PVOID * | ProcedureAddress, | ||
| _In_ BOOLEAN | ExecuteInit | ||
| ) |
Definition at line 2231 of file ldrutils.c.
2237{
2240 PLDR_DATA_TABLE_ENTRY LdrEntry;
2241 IMAGE_THUNK_DATA Thunk;
2242 PVOID ImageBase;
2244 PIMAGE_EXPORT_DIRECTORY ExportDir;
2247
2248 /* Show debug message */
2250
2251 /* Check if we got a name */
2253 {
2254 /* Show debug message */
2256
2257 /* Make sure it's not too long */
2262 {
2263 /* Won't have enough space to add the hint */
2265 }
2266
2267 /* Check if our buffer is large enough */
2269 {
2270 /* Allocate from heap, plus 2 bytes for the Hint */
2271 ImportName = RtlAllocateHeap(RtlGetProcessHeap(),
2272 0,
2273 Length);
2274 if (!ImportName)
2275 {
2276 /* Return STATUS_INSUFFICIENT_RESOURCES since NT6.2 */
2278 }
2279 }
2280 else
2281 {
2282 /* Use our internal buffer */
2283 ImportName = (PIMAGE_IMPORT_BY_NAME)ImportBuffer;
2284 }
2285
2286 /* Clear the hint */
2287 ImportName->Hint = 0;
2288
2289 /* Copy the name and null-terminate it */
2292
2293 /* Clear the high bit */
2294 ImageBase = ImportName;
2296 }
2297 else
2298 {
2299 /* Do it by ordinal */
2300 ImageBase = NULL;
2301
2302 /* Show debug message */
2304
2305 /* Make sure an ordinal was given */
2306 if (!Ordinal)
2307 {
2308 /* No ordinal */
2311 }
2312
2313 /* Set the original flag in the thunk */
2315 }
2316
2317 /* Acquire lock unless we are initting */
2319
2320 _SEH2_TRY
2321 {
2322 /* Try to find the loaded DLL */
2324 {
2325 /* Invalid base */
2329 }
2330
2331 /* Get the pointer to the export directory */
2333 TRUE,
2335 &ExportDirSize);
2336
2337 if (!ExportDir)
2338 {
2339 DPRINT1("Image %wZ has no exports, but were trying to get procedure %Z. BaseAddress asked 0x%p, got entry BA 0x%p\n",
2343 }
2344
2345 /* Now get the thunk */
2347 ImageBase,
2348 &Thunk,
2349 &Thunk,
2350 ExportDir,
2351 ExportDirSize,
2352 FALSE,
2353 NULL);
2354
2355 /* Finally, see if we're supposed to run the init routines */
2357 {
2358 /*
2359 * It's possible a forwarded entry had us load the DLL. In that case,
2360 * then we will call its DllMain. Use the last loaded DLL for this.
2361 */
2364 LDR_DATA_TABLE_ENTRY,
2365 InInitializationOrderLinks);
2366
2367 /* Make sure we didn't process it yet*/
2369 {
2370 /* Call the init routine */
2371 _SEH2_TRY
2372 {
2374 }
2376 {
2377 /* Get the exception code */
2379 }
2380 _SEH2_END;
2381 }
2382 }
2383
2384 /* Make sure we're OK till here */
2386 {
2387 /* Return the address */
2389 }
2390 }
2392 {
2393 /* Just ignore exceptions */
2394 }
2395 _SEH2_END;
2396
2397Quickie:
2398 /* Cleanup */
2400 {
2401 /* We allocated from heap, free it */
2402 RtlFreeHeap(RtlGetProcessHeap(), 0, ImportName);
2403 }
2404
2405 /* Release the CS if we entered it */
2407
2408 /* We're done */
2410}
#define CHAR(Char)
BOOLEAN NTAPI LdrpCheckForLoadedDllHandle(IN PVOID Base, OUT PLDR_DATA_TABLE_ENTRY *LdrEntry)
Definition: ldrutils.c:1600
#define UNICODE_STRING_MAX_BYTES
#define ANSI_NULL
NTSTATUS NTAPI LdrpRunInitializeRoutines(IN PCONTEXT Context OPTIONAL)
Definition: ldrinit.c:648
NTSTATUS NTAPI LdrpSnapThunk(IN PVOID ExportBase, IN PVOID ImportBase, IN PIMAGE_THUNK_DATA OriginalThunk, IN OUT PIMAGE_THUNK_DATA Thunk, IN PIMAGE_EXPORT_DIRECTORY ExportEntry, IN ULONG ExportSize, IN BOOLEAN Static, IN LPSTR DllName)
Definition: ldrpe.c:937
struct _IMAGE_IMPORT_BY_NAME * PIMAGE_IMPORT_BY_NAME
Definition: compat.h:156
Definition: pedump.c:329
Definition: ntimage.h:510
union _IMAGE_THUNK_DATA32::@2312 u1
Referenced by AvrfpResolveThunks(), LdrGetProcedureAddress(), LdrpGetShimEngineFunction(), and LdrpSnapThunk().
◆ LdrpGetResidentSize()
| ULONG LdrpGetResidentSize | ( | PIMAGE_NT_HEADERS | NTHeaders | ) |
◆ LdrpGetShimEngineInterface()
◆ LdrpInitFailure()
Definition at line 2559 of file ldrinit.c.
2560{
2563
2564 /* Print a debug message */
2567
2568 /* Raise a hard error */
2570 {
2572 }
2573}
NTSYSAPI NTSTATUS NTAPI ZwRaiseHardError(_In_ NTSTATUS ErrorStatus, _In_ ULONG NumberOfParameters, _In_ ULONG UnicodeStringParameterMask, _In_ PULONG_PTR Parameters, _In_ ULONG ValidResponseOptions, _Out_ PULONG Response)
Definition: ncftp.h:89
Definition: btrfs_drv.h:1907
Referenced by LdrpInit(), and LdrpInitializeProcess().
◆ LdrpInitializeApplicationVerifierPackage()
| NTSTATUS NTAPI LdrpInitializeApplicationVerifierPackage | ( | IN HANDLE | KeyHandle, |
| IN PPEB | Peb, | ||
| IN BOOLEAN | SystemWide, | ||
| IN BOOLEAN | ReadAdvancedOptions | ||
| ) |
Referenced by LdrpInitializeExecutionOptions().
◆ LdrpInitializeProcess()
Definition at line 1766 of file ldrinit.c.
1768{
1769 RTL_HEAP_PARAMETERS HeapParameters;
1770 ULONG ComSectionSize;
1773 PVOID OldShimData;
1775 //UNICODE_STRING LocalFileName, FullImageName;
1776 HANDLE SymLinkHandle;
1777 //ULONG DebugHeapOnly;
1778 UNICODE_STRING CommandLine, NtSystemRoot, ImagePathName, FullPath, ImageFileName, KnownDllString;
1782 //HANDLE CompatKey;
1783 PRTL_USER_PROCESS_PARAMETERS ProcessParameters;
1784 //LPWSTR ImagePathBuffer;
1785 ULONG ConfigSize;
1787 HANDLE OptionsKey;
1788 ULONG HeapFlags;
1789 PIMAGE_NT_HEADERS NtHeader;
1792 NLSTABLEINFO NlsTable;
1795 PLIST_ENTRY ListHead;
1796 PLIST_ENTRY NextEntry;
1798 PWSTR ImagePath;
1799 ULONG DebugProcessHeapOnly = 0;
1800 PLDR_DATA_TABLE_ENTRY NtLdrEntry;
1801 PWCHAR Current;
1802 ULONG ExecuteOptions = 0;
1803 PVOID ViewBase;
1804
1805 /* Set a NULL SEH Filter */
1807
1808 /* Get the image path */
1810
1811 /* Check if it's not normalized */
1813 {
1814 /* Normalize it*/
1816 }
1817
1818 /* Create a unicode string for the Image Path */
1821 ImagePathName.Buffer = ImagePath;
1822
1823 /* Get the NT Headers */
1825
1826 /* Get the execution options */
1828
1829 /* Check if this is a .NET executable */
1831 TRUE,
1833 &ComSectionSize))
1834 {
1835 /* Remember this for later */
1836 IsDotNetImage = TRUE;
1837 }
1838
1839 /* Save the NTDLL Base address */
1841
1842 /* If this is a Native Image */
1844 {
1845 /* Then do DLL Validation */
1847 }
1848
1849 /* Save the old Shim Data */
1850 OldShimData = Peb->pShimData;
1851
1852 /* ReactOS specific: do not clear it. (Windows starts doing the same in later versions) */
1853 //Peb->pShimData = NULL;
1854
1855 /* Save the number of processors and CS timeout */
1858
1859 /* Normalize the parameters */
1861 if (ProcessParameters)
1862 {
1863 /* Save the Image and Command Line Names */
1864 ImageFileName = ProcessParameters->ImagePathName;
1865 CommandLine = ProcessParameters->CommandLine;
1866 }
1867 else
1868 {
1869 /* It failed, initialize empty strings */
1872 }
1873
1874 /* Initialize NLS data */
1878 &NlsTable);
1879
1880 /* Reset NLS Translations */
1881 RtlResetRtlTranslations(&NlsTable);
1882
1883 /* Get the Image Config Directory */
1885 TRUE,
1887 &ConfigSize);
1888
1889 /* Setup the Heap Parameters */
1891 HeapFlags = HEAP_GROWABLE;
1893
1894 /* Check if we have Configuration Data */
1895#define VALID_CONFIG_FIELD(Name) (ConfigSize >= RTL_SIZEOF_THROUGH_FIELD(IMAGE_LOAD_CONFIG_DIRECTORY, Name))
1896 /* The 'original' load config ends after SecurityCookie */
1897 if ((LoadConfig) && ConfigSize && (VALID_CONFIG_FIELD(SecurityCookie) || ConfigSize == LoadConfig->Size))
1898 {
1901 else
1903
1906
1909
1910 /* Convert the default CS timeout from milliseconds to 100ns units */
1911 if (VALID_CONFIG_FIELD(CriticalSectionDefaultTimeout) && LoadConfig->CriticalSectionDefaultTimeout)
1913
1916
1919
1922
1925
1927 HeapFlags = LoadConfig->ProcessHeapFlags;
1928 }
1929#undef VALID_CONFIG_FIELD
1930
1931 /* Check for custom affinity mask */
1933 {
1934 /* Set it */
1936 ProcessAffinityMask,
1939 }
1940
1941 /* Check if verbose debugging (ShowSnaps) was requested */
1943
1944 /* Start verbose debugging messages right now if they were requested */
1946 {
1949 &CommandLine);
1950 }
1951
1952 /* If the CS timeout is longer than 1 hour, disable it */
1955
1956 /* Initialize Critical Section Data */
1957 RtlpInitDeferredCriticalSection();
1958
1959 /* Initialize VEH Call lists */
1961
1962 /* Set TLS/FLS Bitmap data */
1966
1967 /* Initialize FLS Bitmap */
1970 FLS_MAXIMUM_AVAILABLE);
1973
1974 /* Initialize TLS Bitmap */
1977 TLS_MINIMUM_AVAILABLE);
1981 TLS_EXPANSION_SLOTS);
1983
1984 /* Initialize the Hash Table */
1986 {
1988 }
1989
1990 /* Initialize the Loader Lock */
1991 // FIXME: What's the point of initing it manually, if two lines lower
1992 // a call to RtlInitializeCriticalSection() is being made anyway?
1993 //InsertTailList(&RtlCriticalSectionList, &LdrpLoaderLock.DebugInfo->ProcessLocksList);
1994 //LdrpLoaderLock.DebugInfo->CriticalSection = &LdrpLoaderLock;
1997
1998 /* Check if User Stack Trace Database support was requested */
2000 {
2002 }
2003
2004 /* Setup Fast PEB Lock */
2007 //Peb->FastPebLockRoutine = (PPEBLOCKROUTINE)RtlEnterCriticalSection;
2008 //Peb->FastPebUnlockRoutine = (PPEBLOCKROUTINE)RtlLeaveCriticalSection;
2009
2010 /* Setup Callout Lock */
2011 //RtlInitializeCriticalSection(&RtlpCalloutEntryLock);
2012
2013 /* For old executables, use 16-byte aligned heap */
2016 {
2017 HeapFlags |= HEAP_CREATE_ALIGN_16;
2018 }
2019
2020 /* Setup the Heap */
2021 RtlInitializeHeapManager();
2023 NULL,
2026 NULL,
2027 &HeapParameters);
2028
2030 {
2033 }
2034
2037 {
2040 }
2041
2042 /* Allocate an Activation Context Stack */
2045
2051 {
2054 }
2055
2056 /* Check for Debug Heap */
2057 if (OptionsKey)
2058 {
2059 /* Query the setting */
2062 REG_DWORD,
2063 &DebugProcessHeapOnly,
2065 NULL);
2066
2068 {
2069 /* Reset DPH if requested */
2071 {
2072 RtlpDphGlobalFlags &= ~DPH_FLAG_DLL_NOTIFY;
2074 }
2075 }
2076 }
2077
2078 /* Build the NTDLL Path */
2080 FullPath.Length = 0;
2085
2086 /* Open the Known DLLs directory */
2089 &KnownDllString,
2090 OBJ_CASE_INSENSITIVE,
2091 NULL,
2092 NULL);
2095 &ObjectAttributes);
2096
2097 /* Check if it exists */
2099 {
2100 /* Open the Known DLLs Path */
2103 &KnownDllString,
2104 OBJ_CASE_INSENSITIVE,
2106 NULL);
2108 SYMBOLIC_LINK_QUERY,
2109 &ObjectAttributes);
2111 {
2112 /* Query the path */
2117 NtClose(SymLinkHandle);
2119 {
2122 }
2123 }
2124 }
2125
2126 /* Check if we failed */
2128 {
2129 /* Assume System32 */
2133 }
2134
2135 /* If we have process parameters, get the default path and current path */
2136 if (ProcessParameters)
2137 {
2138 /* Check if we have a Dll Path */
2140 {
2141 /* Get the path */
2143 }
2144 else
2145 {
2146 /* We need a valid path */
2149 }
2150
2151 /* Set the current directory */
2153
2154 /* Check if it's empty or invalid */
2157 (!CurrentDirectory.Length))
2158 {
2159 /* Allocate space for the buffer */
2161 0,
2165 {
2167 // FIXME: And what?
2168 }
2169
2170 /* Copy the drive of the system root */
2172 SharedUserData->NtSystemRoot,
2177
2178 FreeCurDir = TRUE;
2180 }
2181 else
2182 {
2183 /* Use the local buffer */
2185 }
2186 }
2187
2188 /* Setup Loader Data */
2195
2196 /* Allocate a data entry for the Image */
2198
2199 /* Set it up */
2204
2205 if (IsDotNetImage)
2207 else
2209
2210 /* Check if the name is empty */
2212 {
2213 /* Use the same Base name */
2215 }
2216 else
2217 {
2218 /* Find the last slash */
2219 Current = ImageFileName.Buffer;
2220 while (*Current)
2221 {
2222 if (*Current++ == '\\')
2223 {
2224 /* Set this path */
2225 NtDllName = Current;
2226 }
2227 }
2228
2229 /* Did we find anything? */
2230 if (!NtDllName)
2231 {
2232 /* Use the same Base name */
2234 }
2235 else
2236 {
2237 /* Setup the name */
2238 LdrpImageEntry->BaseDllName.Length = (USHORT)((ULONG_PTR)ImageFileName.Buffer + ImageFileName.Length - (ULONG_PTR)NtDllName);
2239 LdrpImageEntry->BaseDllName.MaximumLength = LdrpImageEntry->BaseDllName.Length + sizeof(WCHAR);
2242 }
2243 }
2244
2245 /* Processing done, insert it */
2248
2249 /* Now add an entry for NTDLL */
2253 NtLdrEntry->LoadCount = -1;
2254 NtLdrEntry->EntryPointActivationContext = 0;
2255
2260
2264
2265 /* Processing done, insert it */
2266 LdrpNtDllDataTableEntry = NtLdrEntry;
2267 LdrpInsertMemoryTableEntry(NtLdrEntry);
2268
2269 /* Let the world know */
2271 {
2273 DPRINT1(" Image Path: %wZ (%wZ)\n", &LdrpImageEntry->FullDllName, &LdrpImageEntry->BaseDllName);
2276 }
2277
2278 /* Link the Init Order List */
2281
2282 /* Initialize Wine's active context implementation for the current process */
2283 RtlpInitializeActCtx(&OldShimData);
2284
2285 /* Set the current directory */
2288 {
2289 /* We failed, check if we should free it */
2291
2292 /* Set it to the NT Root */
2295 }
2296 else
2297 {
2298 /* We're done with it, free it */
2300 }
2301
2302 /* Check if we should look for a .local file */
2303 if (ProcessParameters && !(ProcessParameters->Flags & RTL_USER_PROCESS_PARAMETERS_LOCAL_DLL_PATH))
2304 {
2305 LdrpInitializeDotLocalSupport(ProcessParameters);
2306 }
2307
2308 /* Check if the Application Verifier was enabled */
2310 {
2313 {
2316 }
2317
2318 }
2319
2320 if (IsDotNetImage)
2321 {
2322 /* FIXME */
2324 }
2325
2328 {
2329 PVOID Kernel32BaseAddress;
2330 PVOID FunctionAddress;
2331
2333
2335 {
2339 }
2340
2342 &BaseProcessInitPostImportName,
2343 0,
2344 &FunctionAddress);
2345
2347 {
2351 }
2352 Kernel32ProcessInitPostImportFunction = FunctionAddress;
2353
2355 &BaseQueryModuleDataName,
2356 0,
2357 &FunctionAddress);
2358
2360 {
2364 }
2365 Kernel32BaseQueryModuleData = FunctionAddress;
2366 }
2367
2368 /* Walk the IAT and load all the DLLs */
2370
2371 /* Check if relocation is needed */
2373 {
2375
2376 /* Change the protection to prepare for relocation */
2380
2381 /* Do the relocation */
2383 0LL,
2384 NULL,
2385 STATUS_SUCCESS,
2387 STATUS_INVALID_IMAGE_FORMAT);
2389 {
2392 }
2393
2394 /* Check if a start context was provided */
2396 {
2400 }
2401
2402 /* Restore the protection */
2405 }
2406
2407 /* Lock the DLLs */
2409 NextEntry = ListHead->Flink;
2410 while (ListHead != NextEntry)
2411 {
2413 NtLdrEntry->LoadCount = -1;
2414 NextEntry = NextEntry->Flink;
2415 }
2416
2417 /* Phase 0 is done */
2419
2420 /* Check whether all static imports were properly loaded and return here */
2422
2423 /* Following two calls are for Vista+ support, required for winesync */
2424 /* Initialize the keyed event for condition variables */
2425 RtlpInitializeKeyedEvent();
2426 RtlpInitializeThreadPooling();
2427
2428 /* Initialize TLS */
2431 {
2433 Status);
2435 }
2436
2437 /* FIXME Mark the DLL Ranges for Stack Traces later */
2438
2439 /* Notify the debugger now */
2441 {
2442 /* Break */
2443 DbgBreakPoint();
2444
2445 /* Update show snaps again */
2447 }
2448
2449 /* Validate the Image for MP Usage */
2451
2452 /* Check NX options and set them */
2454 {
2455 ExecuteOptions = MEM_EXECUTE_OPTION_DISABLE |
2458 }
2460 {
2462 }
2464 ProcessExecuteFlags,
2465 &ExecuteOptions,
2466 sizeof(ExecuteOptions));
2468 {
2470 ExecuteOptions, Status);
2471 }
2472
2473 // FIXME: Should be done by Application Compatibility features,
2474 // by reading the registry, etc...
2475 // For now, this is the old code from ntdll!RtlGetVersion().
2478 {
2479 WCHAR szCSDVersion[128];
2484 ((Peb->OSCSDVersion >> 8) & 0xFF));
2486 {
2487 /* Null-terminate if it was overflowed */
2489 }
2490
2493 0,
2496 {
2499
2501 szCSDVersion,
2504 }
2505 }
2506
2507 /* Check if we had Shim Data */
2508 if (OldShimData)
2509 {
2510 /* Load the Shim Engine */
2512 LdrpLoadShimEngine(OldShimData, &ImagePathName, OldShimData);
2513 }
2514 else
2515 {
2516 /* Check for Application Compatibility Goo */
2517 //LdrQueryApplicationCompatibilityGoo(hKey);
2519 }
2520
2521 /*
2522 * FIXME: Check for special images, SecuROM, SafeDisc and other NX-
2523 * incompatible images.
2524 */
2525
2526 /* Now call the Init Routines */
2529 {
2531 Status);
2533 }
2534
2535 /* Notify Shim Engine */
2537 {
2540 SE_InstallAfterInit(&ImagePathName, OldShimData);
2541 }
2542
2543 /* Check if we have a user-defined Post Process Routine */
2545 {
2546 /* Call it */
2548 }
2549
2550 /* Close the key if we have one opened */
2552
2553 /* Return status */
2555}
struct _PEB_LDR_DATA PEB_LDR_DATA
NTSTATUS RtlAppendUnicodeToString(IN PUNICODE_STRING Str1, IN PWSTR Str2)
Definition: string_lib.cpp:62
GLsizei GLenum const GLvoid GLsizei GLenum GLbyte GLbyte GLbyte GLdouble GLdouble GLdouble GLfloat GLfloat GLfloat GLint GLint GLint GLshort GLshort GLshort GLubyte GLubyte GLubyte GLuint GLuint GLuint GLushort GLushort GLushort GLbyte GLbyte GLbyte GLbyte GLdouble GLdouble GLdouble GLdouble GLfloat GLfloat GLfloat GLfloat GLint GLint GLint GLint GLshort GLshort GLshort GLshort GLubyte GLubyte GLubyte GLubyte GLuint GLuint GLuint GLuint GLushort GLushort GLushort GLushort GLboolean const GLdouble const GLfloat const GLint const GLshort const GLbyte const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLdouble const GLfloat const GLfloat const GLint const GLint const GLshort const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort GLenum GLenum GLenum GLfloat GLenum GLint GLenum GLenum GLenum GLfloat GLenum GLenum GLint GLenum GLfloat GLenum GLint GLint GLushort GLenum GLenum GLfloat GLenum GLenum GLint GLfloat const GLubyte GLenum GLenum GLenum const GLfloat GLenum GLenum const GLint GLenum GLint GLint GLsizei GLsizei GLint GLenum GLenum const GLvoid GLenum GLenum const GLfloat GLenum GLenum const GLint GLenum GLenum const GLdouble GLenum GLenum const GLfloat GLenum GLenum const GLint GLsizei GLuint GLfloat GLuint GLbitfield GLfloat GLint GLuint GLboolean GLenum GLfloat GLenum GLbitfield GLenum GLfloat GLfloat GLint GLint const GLfloat GLenum GLfloat GLfloat GLint GLint GLfloat GLfloat GLint GLint const GLfloat GLint GLfloat GLfloat GLint GLfloat GLfloat GLint GLfloat GLfloat const GLdouble const GLfloat const GLdouble const GLfloat GLint i
Definition: glfuncs.h:248
NTSYSAPI void WINAPI RtlSetUnhandledExceptionFilter(PRTL_EXCEPTION_FILTER)
NTSYSAPI void WINAPI DbgBreakPoint(void)
VOID NTAPI LdrpInitializeDotLocalSupport(PRTL_USER_PROCESS_PARAMETERS ProcessParameters)
Definition: ldrinit.c:1705
VOID NTAPI RtlpInitDeferredCriticalSection(VOID)
Definition: critical.c:272
NTSTATUS NTAPI LdrpInitializeExecutionOptions(PUNICODE_STRING ImagePathName, PPEB Peb, PHANDLE OptionsKey)
Definition: ldrinit.c:1427
NTSTATUS NTAPI LdrQueryImageFileKeyOption(_In_ HANDLE KeyHandle, _In_ PCWSTR ValueName, _In_ ULONG Type, _Out_ PVOID Buffer, _In_ ULONG BufferSize, _Out_opt_ PULONG ReturnedLength)
Definition: ldrinit.c:184
VOID NTAPI LdrpValidateImageForMp(IN PLDR_DATA_TABLE_ENTRY LdrDataTableEntry)
Definition: ldrinit.c:1546
NTSTATUS NTAPI LdrpRunInitializeRoutines(IN PCONTEXT Context OPTIONAL)
Definition: ldrinit.c:648
VOID NTAPI RtlpInitializeVectoredExceptionHandling(VOID)
Definition: vectoreh.c:30
#define VALID_CONFIG_FIELD(Name)
NTSTATUS NTAPI RtlpInitializeActCtx(PVOID *pOldShimData)
NTSTATUS NTAPI DECLSPEC_HOTPATCH LdrLoadDll(_In_opt_ PWSTR SearchPath, _In_opt_ PULONG DllCharacteristics, _In_ PUNICODE_STRING DllName, _Out_ PVOID *BaseAddress)
Definition: ldrapi.c:312
NTSTATUS NTAPI LdrGetProcedureAddress(_In_ PVOID BaseAddress, _In_opt_ _When_(Ordinal==0, _Notnull_) PANSI_STRING Name, _In_opt_ _When_(Name==NULL, _In_range_(>, 0)) ULONG Ordinal, _Out_ PVOID *ProcedureAddress)
Definition: ldrapi.c:789
int _snwprintf(wchar_t *buffer, size_t count, const wchar_t *format,...)
#define MEM_EXECUTE_OPTION_DISABLE_THUNK_EMULATION
Definition: mmtypes.h:75
NTSYSAPI NTSTATUS NTAPI ZwOpenDirectoryObject(_Out_ PHANDLE FileHandle, _In_ ACCESS_MASK DesiredAccess, _In_ POBJECT_ATTRIBUTES ObjectAttributes)
NTSYSAPI VOID NTAPI RtlInitNlsTables(_In_ PUSHORT AnsiTableBase, _In_ PUSHORT OemTableBase, _In_ PUSHORT CaseTableBase, _Out_ PNLSTABLEINFO NlsTable)
NTSYSAPI VOID NTAPI RtlResetRtlTranslations(_In_ PNLSTABLEINFO NlsTable)
NTSYSAPI NTSTATUS NTAPI RtlSetCurrentDirectory_U(_In_ PUNICODE_STRING name)
ULONG NTAPI LdrRelocateImageWithBias(_In_ PVOID BaseAddress, _In_ LONGLONG AdditionalBias, _In_opt_ PCSTR LoaderName, _In_ ULONG Success, _In_ ULONG Conflict, _In_ ULONG Invalid)
Definition: image.c:474
NTSYSAPI PRTL_USER_PROCESS_PARAMETERS NTAPI RtlNormalizeProcessParams(_In_ PRTL_USER_PROCESS_PARAMETERS ProcessParameters)
#define RTL_USER_PROCESS_PARAMETERS_LOCAL_DLL_PATH
Definition: rtltypes.h:53
#define RTL_USER_PROCESS_PARAMETERS_NORMALIZED
Definition: rtltypes.h:41
NTSYSAPI NTSTATUS NTAPI RtlAppendUnicodeStringToString(PUNICODE_STRING Destination, PUNICODE_STRING Source)
NTSYSAPI PVOID NTAPI RtlCreateHeap(IN ULONG Flags, IN PVOID HeapBase OPTIONAL, IN ULONG ReserveSize OPTIONAL, IN ULONG CommitSize OPTIONAL, IN PVOID Lock OPTIONAL, IN PRTL_HEAP_PARAMETERS Parameters OPTIONAL)
NTSYSAPI VOID NTAPI RtlFreeUnicodeString(PUNICODE_STRING UnicodeString)
#define Int32x32To64(a, b)
VOID NTAPI LdrpLoadShimEngine(IN PWSTR ImageName, IN PUNICODE_STRING ProcessImage, IN PVOID pShimData)
Definition: ldrutils.c:2757
NTSTATUS NTAPI LdrpWalkImportDescriptor(IN LPWSTR DllPath OPTIONAL, IN PLDR_DATA_TABLE_ENTRY LdrEntry)
Definition: ldrpe.c:670
VOID NTAPI RtlpInitializeThreadPooling(VOID)
VOID NTAPI LdrpInsertMemoryTableEntry(IN PLDR_DATA_TABLE_ENTRY LdrEntry)
Definition: ldrutils.c:1561
NTSTATUS NTAPI LdrpSetProtection(PVOID ViewBase, BOOLEAN Restore)
Definition: ldrutils.c:921
PVOID NTAPI LdrpFetchAddressOfEntryPoint(PVOID ImageBase)
PLDR_DATA_TABLE_ENTRY NTAPI LdrpAllocateDataTableEntry(IN PVOID BaseAddress)
Definition: ldrutils.c:1528
#define IMAGE_DIRECTORY_ENTRY_COM_DESCRIPTOR
Definition: ntimage.h:489
NTSTATUS NTAPI NtSetInformationProcess(IN HANDLE ProcessHandle, IN PROCESSINFOCLASS ProcessInformationClass, IN PVOID ProcessInformation, IN ULONG ProcessInformationLength)
Definition: query.c:1161
NTSTATUS NTAPI NtOpenSymbolicLinkObject(OUT PHANDLE LinkHandle, IN ACCESS_MASK DesiredAccess, IN POBJECT_ATTRIBUTES ObjectAttributes)
Definition: oblink.c:831
static VOID LoadConfig(HWND hwndDlg, PPOWER_SCHEMES_PAGE_DATA pPageData, PPOWER_SCHEME pScheme)
Definition: powershemes.c:237
#define SharedUserData
VOID NTAPI SE_InstallAfterInit(PUNICODE_STRING ProcessImage, PVOID pShimData)
Definition: shimeng.c:1436
Definition: ntimage.h:105
Definition: env_spec_w32.h:375
PACTIVATION_CONTEXT EntryPointActivationContext
Definition: ldrtypes.h:167
LIST_ENTRY InInitializationOrderLinks
Definition: ldrtypes.h:144
Definition: ntnls.h:27
LIST_ENTRY InInitializationOrderModuleList
Definition: ldrtypes.h:126
LIST_ENTRY InMemoryOrderModuleList
Definition: btrfs_drv.h:1895
PPS_POST_PROCESS_INIT_ROUTINE PostProcessInitRoutine
Definition: btrfs_drv.h:1916
Definition: nt_native.h:1666
ULONG DeCommitFreeBlockThreshold
Definition: nt_native.h:1670
ULONG VirtualMemoryThreshold
Definition: nt_native.h:1673
ULONG DeCommitTotalFreeThreshold
Definition: nt_native.h:1671
Definition: btrfs_drv.h:1898
#define NX_SUPPORT_POLICY_ALWAYSOFF
#define NX_SUPPORT_POLICY_ALWAYSON
Referenced by LdrpInit().
◆ LdrpInitializeThread()
Definition at line 505 of file ldrinit.c.
506{
508 PLDR_DATA_TABLE_ENTRY LdrEntry;
509 PLIST_ENTRY NextEntry, ListHead;
510 RTL_CALLER_ALLOCATED_ACTIVATION_CONTEXT_STACK_FRAME_EXTENDED ActCtx;
512 PVOID EntryPoint;
513
516 NtCurrentTeb()->RealClientId.UniqueProcess,
517 NtCurrentTeb()->RealClientId.UniqueThread);
518
519 /* Acquire the loader Lock */
521
522 /* Allocate an Activation Context Stack */
526 {
528 }
529
530 /* Make sure we are not shutting down */
532
533 /* Allocate TLS */
534 LdrpAllocateTls();
535
536 /* Start at the beginning */
538 NextEntry = ListHead->Flink;
539 while (NextEntry != ListHead)
540 {
541 /* Get the current entry */
543
544 /* Make sure it's not ourselves */
546 {
547 /* Check if we should call */
549 {
550 /* Get the entrypoint */
551 EntryPoint = LdrEntry->EntryPoint;
552
553 /* Check if we are ready to call it */
554 if ((EntryPoint) &&
557 {
558 /* Set up the Act Ctx */
560 ActCtx.Format = 1;
562
563 /* Activate the ActCtx */
564 RtlActivateActivationContextUnsafeFast(&ActCtx,
565 LdrEntry->EntryPointActivationContext);
566
567 _SEH2_TRY
568 {
569 /* Check if it has TLS */
571 {
572 /* Make sure we're not shutting down */
574 {
575 /* Call TLS */
577 }
578 }
579
580 /* Make sure we're not shutting down */
582 {
583 /* Call the Entrypoint */
586 NtCurrentTeb()->RealClientId.UniqueProcess,
587 NtCurrentTeb()->RealClientId.UniqueThread);
589 LdrEntry->DllBase,
590 DLL_THREAD_ATTACH,
591 NULL);
592 }
593 }
595 {
598 }
599 _SEH2_END;
600
601 /* Deactivate the ActCtx */
602 RtlDeactivateActivationContextUnsafeFast(&ActCtx);
603 }
604 }
605 }
606
607 /* Next entry */
608 NextEntry = NextEntry->Flink;
609 }
610
611 /* Check for TLS */
613 {
614 /* Set up the Act Ctx */
616 ActCtx.Format = 1;
618
619 /* Activate the ActCtx */
620 RtlActivateActivationContextUnsafeFast(&ActCtx,
622
623 _SEH2_TRY
624 {
625 /* Do TLS callbacks */
627 }
629 {
630 /* Do nothing */
631 }
632 _SEH2_END;
633
634 /* Deactivate the ActCtx */
635 RtlDeactivateActivationContextUnsafeFast(&ActCtx);
636 }
637
638Exit:
639
640 /* Release the loader lock */
642
644}
VOID NTAPI LdrpCallTlsInitializers(IN PLDR_DATA_TABLE_ENTRY LdrEntry, IN ULONG Reason)
Definition: ldrutils.c:447
BOOLEAN NTAPI LdrpCallInitRoutine(IN PDLL_INIT_ROUTINE EntryPoint, IN PVOID BaseAddress, IN ULONG Reason, IN PVOID Context)
Definition: ldrutils.c:100
Referenced by LdrpInit().
◆ LdrpInitializeTls()
Definition at line 1265 of file ldrinit.c.
1266{
1267 PLIST_ENTRY NextEntry, ListHead;
1268 PLDR_DATA_TABLE_ENTRY LdrEntry;
1269 PIMAGE_TLS_DIRECTORY TlsDirectory;
1270 PLDRP_TLS_DATA TlsData;
1272
1273 /* Initialize the TLS List */
1275
1276 /* Loop all the modules */
1277 ListHead = &NtCurrentPeb()->Ldr->InLoadOrderModuleList;
1278 NextEntry = ListHead->Flink;
1279 while (ListHead != NextEntry)
1280 {
1281 /* Get the entry */
1283 NextEntry = NextEntry->Flink;
1284
1285 /* Get the TLS directory */
1287 TRUE,
1289 &Size);
1290
1291 /* Check if we have a directory */
1292 if (!TlsDirectory) continue;
1293
1294 /* Check if the image has TLS */
1296
1297 /* Show debug message */
1299 {
1301 &LdrEntry->BaseDllName,
1302 TlsDirectory);
1303 }
1304
1305 /* Allocate an entry */
1308
1309 /* Lock the DLL and mark it for TLS Usage */
1310 LdrEntry->LoadCount = -1;
1311 LdrEntry->TlsIndex = -1;
1312
1313 /* Save the cached TLS data */
1314 TlsData->TlsDirectory = *TlsDirectory;
1316
1317 /* Update the index */
1320 }
1321
1322 /* Done setting up TLS, allocate entries */
1324}
Referenced by LdrpInitializeProcess().
◆ LdrpInsertMemoryTableEntry()
| VOID NTAPI LdrpInsertMemoryTableEntry | ( | IN PLDR_DATA_TABLE_ENTRY | LdrEntry | ) |
Definition at line 1561 of file ldrutils.c.
1562{
1565
1566 /* Insert into hash table */
1569
1570 /* Insert into other lists */
1573}
Definition: btrfs_drv.h:1892
Referenced by LdrpInitializeProcess(), and LdrpMapDll().
◆ LdrpLoadDll()
| NTSTATUS NTAPI LdrpLoadDll | ( | IN BOOLEAN | Redirected, |
| IN PWSTR DllPath | OPTIONAL, | ||
| IN PULONG DllCharacteristics | OPTIONAL, | ||
| IN PUNICODE_STRING | DllName, | ||
| OUT PVOID * | BaseAddress, | ||
| IN BOOLEAN | CallInit | ||
| ) |
Definition at line 2414 of file ldrutils.c.
2420{
2424 BOOLEAN GotExtension;
2427 UNICODE_STRING RawDllName;
2428 PLDR_DATA_TABLE_ENTRY LdrEntry;
2430
2431 /* Save the Raw DLL Name */
2433 RtlInitEmptyUnicodeString(&RawDllName, NameBuffer, sizeof(NameBuffer));
2434 RtlCopyUnicodeString(&RawDllName, DllName);
2435
2436 /* Find the extension, if present */
2437 /* NOTE: Access violation is expected here in some cases (Buffer[-1]) */
2439 GotExtension = FALSE;
2441 {
2444 {
2445 GotExtension = TRUE;
2446 break;
2447 }
2449 {
2450 break;
2451 }
2452 }
2453
2454 /* If no extension was found, add the default extension */
2455 if (!GotExtension)
2456 {
2457 /* Check that we have space to add one */
2459 sizeof(NameBuffer))
2460 {
2461 /* No space to add the extension */
2463 DPFLTR_ERROR_LEVEL,
2464 "LDR: %s - Dll name missing extension; with extension "
2465 "added the name is too long\n"
2466 " DllName: (@ %p) \"%wZ\"\n"
2467 " DllName->Length: %u\n",
2468 __FUNCTION__,
2469 DllName,
2470 DllName,
2471 DllName->Length);
2473 }
2474
2475 /* Add it. Needs to be null terminated, thus the length check above */
2477 &LdrApiDefaultExtension);
2478 }
2479
2480 /* Check for init flag and acquire lock */
2482
2483 _SEH2_TRY
2484 {
2485 /* Show debug message */
2487 {
2489 &RawDllName,
2491 }
2492
2493 /* Check if the DLL is already loaded */
2495 &RawDllName,
2496 FALSE,
2497 Redirected,
2498 &LdrEntry))
2499 {
2500 /* Map it */
2502 DllPath,
2503 NameBuffer,
2504 DllCharacteristics,
2505 FALSE,
2506 Redirected,
2507 &LdrEntry);
2509 _SEH2_LEAVE;
2510
2511 /* FIXME: Need to mark the DLL range for the stack DB */
2512 //RtlpStkMarkDllRange(LdrEntry);
2513
2514 /* Check if IMAGE_FILE_EXECUTABLE_IMAGE was provided */
2515 if ((DllCharacteristics) &&
2516 (*DllCharacteristics & IMAGE_FILE_EXECUTABLE_IMAGE))
2517 {
2518 /* This is not a DLL, so remove such data */
2520 LdrEntry->Flags &= ~LDRP_IMAGE_DLL;
2521 }
2522
2523 /* Make sure it's a DLL */
2525 {
2526 /* Check if this is a .NET Image */
2528 {
2529 /* Walk the Import Descriptor */
2531 }
2532
2533 /* Update load count, unless it's locked */
2536
2537 /* Check if we failed */
2539 {
2540 /* Clear entrypoint, and insert into list */
2543 &LdrEntry->InInitializationOrderLinks);
2544
2545 /* Cancel the load */
2546 LdrpClearLoadInProgress();
2547
2548 /* Unload the DLL */
2550 {
2552 "import descriptors\n",
2553 DllName,
2554 Status);
2555 }
2557
2558 /* Return the error */
2559 _SEH2_LEAVE;
2560 }
2561 }
2563 {
2564 /* Increase load count */
2565 LdrEntry->LoadCount++;
2566 }
2567
2568 /* Insert it into the list */
2570 &LdrEntry->InInitializationOrderLinks);
2571
2572 /* If we have to run the entrypoint, make sure the DB is ready */
2574 {
2575 /* Notify Shim Engine */
2577 {
2579 SE_DllLoaded(LdrEntry);
2580 }
2581
2582 /* Run the init routine */
2585 {
2586 /* Failed, unload the DLL */
2588 {
2590 "routine or one of its static imports failed; "
2591 "status = 0x%08lx\n",
2592 DllName,
2593 Status);
2594 }
2596 }
2597 }
2598 else
2599 {
2600 /* The DB isn't ready, which means we were loaded because of a forwarder */
2602 }
2603 }
2604 else
2605 {
2606 /* We were already loaded. Are we a DLL? */
2608 {
2609 /* Increase load count */
2610 LdrEntry->LoadCount++;
2612
2613 /* Clear the load in progress */
2614 LdrpClearLoadInProgress();
2615 }
2616 else
2617 {
2618 /* Not a DLL, just increase the load count */
2620 }
2621 }
2622
2623 }
2624 _SEH2_FINALLY
2625 {
2626 /* Release the lock */
2628 }
2629 _SEH2_END;
2630
2631 /* Check for success */
2633 {
2634 /* Return the base address */
2636 }
2637 else
2638 {
2639 /* Nothing found */
2641 }
2642
2643 /* Return status */
2645}
struct _LDR_DATA_TABLE_ENTRY * PLDR_DATA_TABLE_ENTRY
NTSTATUS NTAPI LdrpMapDll(IN PWSTR SearchPath OPTIONAL, IN PWSTR DllPath2, IN PWSTR DllName OPTIONAL, IN PULONG DllCharacteristics, IN BOOLEAN Static, IN BOOLEAN Redirect, OUT PLDR_DATA_TABLE_ENTRY *DataTableEntry)
Definition: ldrutils.c:997
VOID NTAPI LdrpUpdateLoadCount2(IN PLDR_DATA_TABLE_ENTRY LdrEntry, IN ULONG Flags)
Definition: ldrutils.c:434
BOOLEAN NTAPI LdrpCheckForLoadedDll(IN PWSTR DllPath, IN PUNICODE_STRING DllName, IN BOOLEAN Flag, IN BOOLEAN RedirectedDll, OUT PLDR_DATA_TABLE_ENTRY *LdrEntry)
Definition: ldrutils.c:1958
NTSYSAPI VOID NTAPI RtlCopyUnicodeString(PUNICODE_STRING DestinationString, PUNICODE_STRING SourceString)
Referenced by LdrLoadDll(), LdrpLoadShimEngine(), and LdrpSnapThunk().
◆ LdrpLoadImportModule()
| NTSTATUS NTAPI LdrpLoadImportModule | ( | IN PWSTR DllPath | OPTIONAL, |
| IN LPSTR | ImportName, | ||
| OUT PLDR_DATA_TABLE_ENTRY * | DataTableEntry, | ||
| OUT PBOOLEAN | Existing | ||
| ) |
Definition at line 808 of file ldrpe.c.
812{
814 PUNICODE_STRING ImpDescName;
816 BOOLEAN GotExtension;
821 UNICODE_STRING RedirectedImpDescName;
822 BOOLEAN RedirectedDll;
823
824 DPRINT("LdrpLoadImportModule('%S' '%s' %p %p)\n", DllPath, ImportName, DataTableEntry, Existing);
825
826 RedirectedDll = FALSE;
827 RtlInitEmptyUnicodeString(&RedirectedImpDescName, NULL, 0);
828
829 /* Convert import descriptor name to unicode string */
830 ImpDescName = &Teb->StaticUnicodeString;
834
835 /* Find the extension, if present */
837 GotExtension = FALSE;
839 {
842 {
843 GotExtension = TRUE;
844 break;
845 }
847 {
848 break;
849 }
850 }
851
852 /* If no extension was found, add the default extension */
853 if (!GotExtension)
854 {
855 /* Check that we have space to add one */
858 {
859 /* No space to add the extension */
861 DPFLTR_ERROR_LEVEL,
862 "LDR: %s - Dll name missing extension; with extension "
863 "added the name is too long\n"
864 " ImpDescName: (@ %p) \"%wZ\"\n"
865 " ImpDescName->Length: %u\n",
866 __FUNCTION__,
867 ImpDescName,
868 ImpDescName,
869 ImpDescName->Length);
871 }
872
873 /* Add it. Needs to be null terminated, thus the length check above */
875 &LdrApiDefaultExtension);
876 }
877
878 /* Check if the SxS Assemblies specify another file */
880 ImpDescName, &LdrApiDefaultExtension, NULL, &RedirectedImpDescName, &ImpDescName, &RedirectedDll);
881
883 {
884 /* Unrecoverable SxS failure */
885 DPRINT1("LDR: LdrpApplyFileNameRedirection failed with status %x for dll %wZ\n", Status, ImpDescName);
886 goto done;
887 }
888
889 /* Check if it's loaded */
891 ImpDescName,
892 TRUE,
893 RedirectedDll,
894 DataTableEntry))
895 {
896 /* It's already existing in the list */
897 *Existing = TRUE;
899 goto done;
900 }
901
902 /* We're loading it for the first time */
903 *Existing = FALSE;
904
905 /* Map it */
907 NULL,
908 ImpDescName->Buffer,
909 NULL,
910 TRUE,
911 RedirectedDll,
912 DataTableEntry);
914 {
916 goto done;
917 }
918
919 /* Walk its import descriptor table */
921 *DataTableEntry);
923 {
924 /* Add it to the in-init-order list in case of failure */
926 &(*DataTableEntry)->InInitializationOrderLinks);
927 }
928
929done:
930 RtlFreeUnicodeString(&RedirectedImpDescName);
931
933}
NTSTATUS NTAPI LdrpWalkImportDescriptor(IN LPWSTR DllPath OPTIONAL, IN PLDR_DATA_TABLE_ENTRY LdrEntry)
Definition: ldrpe.c:670
NTSYSAPI NTSTATUS NTAPI RtlAnsiStringToUnicodeString(PUNICODE_STRING DestinationString, PANSI_STRING SourceString, BOOLEAN AllocateDestinationString)
NTSYSAPI VOID NTAPI RtlInitAnsiString(PANSI_STRING DestinationString, PCSZ SourceString)
NTSYSAPI NTSTATUS NTAPI LdrpApplyFileNameRedirection(_In_ PUNICODE_STRING OriginalName, _In_ PUNICODE_STRING Extension, _Inout_opt_ PUNICODE_STRING StaticString, _Inout_opt_ PUNICODE_STRING DynamicString, _Inout_ PUNICODE_STRING *NewName, _Inout_ PBOOLEAN RedirectedDll)
NTSTATUS NTAPI LdrpMapDll(IN PWSTR SearchPath OPTIONAL, IN PWSTR DllPath2, IN PWSTR DllName OPTIONAL, IN PULONG DllCharacteristics, IN BOOLEAN Static, IN BOOLEAN Redirect, OUT PLDR_DATA_TABLE_ENTRY *DataTableEntry)
Definition: ldrutils.c:997
BOOLEAN NTAPI LdrpCheckForLoadedDll(IN PWSTR DllPath, IN PUNICODE_STRING DllName, IN BOOLEAN Flag, IN BOOLEAN RedirectedDll, OUT PLDR_DATA_TABLE_ENTRY *LdrEntry)
Definition: ldrutils.c:1958
Referenced by LdrpHandleOneNewFormatImportDescriptor(), and LdrpHandleOneOldFormatImportDescriptor().
◆ LdrpLoadShimEngine()
| VOID NTAPI LdrpLoadShimEngine | ( | IN PWSTR | ImageName, |
| IN PUNICODE_STRING | ProcessImage, | ||
| IN PVOID | pShimData | ||
| ) |
Definition at line 2757 of file ldrutils.c.
2758{
2759 UNICODE_STRING ShimLibraryName;
2760 PVOID ShimLibrary;
2763 /* We should NOT pass CallInit = TRUE!
2764 If we do this, other init routines will be called before we get a chance to shim stuff.. */
2767 {
2768 g_pShimEngineModule = ShimLibrary;
2770 LdrpGetShimEngineInterface();
2772 {
2775 SE_InstallBeforeInit(ProcessImage, pShimData);
2776 }
2777 }
2778}
NTSTATUS NTAPI LdrpLoadDll(IN BOOLEAN Redirected, IN PWSTR DllPath OPTIONAL, IN PULONG DllCharacteristics OPTIONAL, IN PUNICODE_STRING DllName, OUT PVOID *BaseAddress, IN BOOLEAN CallInit)
Definition: ldrutils.c:2414
VOID NTAPI LdrpRunShimEngineInitRoutine(IN ULONG Reason)
Definition: ldrutils.c:2722
VOID NTAPI SE_InstallBeforeInit(PUNICODE_STRING ProcessImage, PVOID pShimData)
Definition: shimeng.c:1417
Referenced by LdrpInitializeProcess().
◆ LdrpMapDll()
| NTSTATUS NTAPI LdrpMapDll | ( | IN PWSTR SearchPath | OPTIONAL, |
| IN PWSTR | DllPath2, | ||
| IN PWSTR DllName | OPTIONAL, | ||
| IN PULONG | DllCharacteristics, | ||
| IN BOOLEAN | Static, | ||
| IN BOOLEAN | Redirect, | ||
| OUT PLDR_DATA_TABLE_ENTRY * | DataTableEntry | ||
| ) |
Definition at line 997 of file ldrutils.c.
1004{
1007 PWCHAR p1 = DllName;
1008 WCHAR TempChar;
1012 UNICODE_STRING NtPathDllName;
1013 ULONG_PTR HardErrorParameters[2];
1014 UNICODE_STRING HardErrorDllName, HardErrorDllPath;
1018 PVOID ArbitraryUserPointer;
1019 PIMAGE_NT_HEADERS NtHeaders;
1022 ULONG_PTR ImageBase, ImageEnd;
1023 PLIST_ENTRY ListHead, NextEntry;
1024 PLDR_DATA_TABLE_ENTRY CandidateEntry, LdrEntry;
1025 ULONG_PTR CandidateBase, CandidateEnd;
1026 UNICODE_STRING OverlapDll;
1028 UNICODE_STRING IllegalDll;
1029 PVOID RelocData;
1030 ULONG RelocDataSize = 0;
1031
1032 // FIXME: AppCompat stuff is missing
1033
1035 {
1037 DllName,
1039 }
1040
1041 /* Check if we have a known dll directory */
1043 {
1044 /* Check if the path is full */
1045 while (*p1)
1046 {
1047 TempChar = *p1++;
1048 if (TempChar == '\\' || TempChar == '/' )
1049 {
1050 /* Complete path, don't do Known Dll lookup */
1051 goto SkipCheck;
1052 }
1053 }
1054
1055 /* Try to find a Known DLL */
1057 &FullDllName,
1058 &BaseDllName,
1059 &SectionHandle);
1060
1062 {
1063 /* Failure */
1065 DPFLTR_ERROR_LEVEL,
1066 "LDR: %s - call to LdrpCheckForKnownDll(\"%ws\", ...) failed with status %x\n",
1067 __FUNCTION__,
1068 DllName,
1069 Status);
1070
1072 }
1073 }
1074
1075SkipCheck:
1076
1077 /* Check if the Known DLL Check returned something */
1078 if (!SectionHandle)
1079 {
1080 /* It didn't, so try to resolve the name now */
1082 DllName,
1083 &FullDllName,
1084 &BaseDllName))
1085 {
1086 /* Got a name, display a message */
1088 {
1091 &FullDllName);
1092 }
1093
1094 /* Convert to NT Name */
1096 &NtPathDllName,
1097 NULL,
1098 NULL))
1099 {
1100 /* Path was invalid */
1102 }
1103
1104 /* Create a section for this dLL */
1106 DllHandle,
1107 DllCharacteristics,
1108 &SectionHandle);
1109
1110 /* Free the NT Name */
1112
1113 /* If we failed */
1115 {
1116 /* Free the name strings and return */
1118 LdrpFreeUnicodeString(&BaseDllName);
1120 }
1121 }
1122 else
1123 {
1124 /* We couldn't resolve the name, is this a static load? */
1126 {
1127 /*
1128 * This is BAD! Static loads are CRITICAL. Bugcheck!
1129 * Initialize the strings for the error
1130 */
1131 RtlInitUnicodeString(&HardErrorDllName, DllName);
1132 RtlInitUnicodeString(&HardErrorDllPath,
1134
1135 /* Set them as error parameters */
1136 HardErrorParameters[0] = (ULONG_PTR)&HardErrorDllName;
1137 HardErrorParameters[1] = (ULONG_PTR)&HardErrorDllPath;
1138
1139 /* Raise the hard error */
1141 2,
1142 0x00000003,
1143 HardErrorParameters,
1144 OptionOk,
1145 &Response);
1146
1147 /* We're back, where we initializing? */
1149 }
1150
1151 /* Return failure */
1153 }
1154 }
1155 else
1156 {
1157 /* We have a section handle, so this is a known dll */
1158 KnownDll = TRUE;
1159 }
1160
1161 /* Stuff the image name in the TIB, for the debugger */
1164
1165 /* Map the DLL */
1166 ViewBase = NULL;
1167 ViewSize = 0;
1169 NtCurrentProcess(),
1170 &ViewBase,
1171 0,
1172 0,
1173 NULL,
1174 &ViewSize,
1175 ViewShare,
1176 0,
1177 PAGE_READWRITE);
1178
1179 /* Restore */
1181
1182 /* Fail if we couldn't map it */
1184 {
1185 /* Close and return */
1186 NtClose(SectionHandle);
1188 }
1189
1190 /* Get the NT Header */
1192 {
1193 /* Invalid image, unmap, close handle and fail */
1195 NtClose(SectionHandle);
1197 }
1198
1199 // FIXME: .NET support is missing
1200
1201 /* Allocate an entry */
1203 {
1204 /* Invalid image, unmap, close handle and fail */
1206 NtClose(SectionHandle);
1208 }
1209
1210 /* Setup the entry */
1213 LdrEntry->LoadCount = 0;
1215 LdrEntry->BaseDllName = BaseDllName;
1217
1218 /* Show debug message */
1220 {
1222 &FullDllName,
1223 &BaseDllName);
1224 }
1225
1226 /* Insert this entry */
1227 LdrpInsertMemoryTableEntry(LdrEntry);
1228
1229#if (_WIN32_WINNT >= _WIN32_WINNT_VISTA) || (DLL_EXPORT_VERSION >= _WIN32_WINNT_VISTA)
1231#if (_WIN32_WINNT >= _WIN32_WINNT_WIN8)
1233#endif
1234#endif
1235
1236 /* Check for invalid CPU Image */
1238 {
1239 /* Load our header */
1241
1242 /* Assume defaults if we don't have to run the Hard Error path */
1243 HardErrorStatus = STATUS_SUCCESS;
1245
1246 /* Are we an NT 3.0 image? [Do these still exist? LOL -- IAI] */
1248 {
1249 /* Reset the entrypoint, save our Dll Name */
1250 LdrEntry->EntryPoint = 0;
1252
1253 /* Raise the error */
1255 1,
1256 1,
1257 HardErrorParameters,
1258 OptionOkCancel,
1259 &Response);
1260 }
1261
1262 /* Check if the user pressed cancel */
1264 {
1265 /* Remove the DLL from the lists */
1269
1270 /* Remove the LDR Entry */
1272
1273 /* Unmap and close section */
1275 NtClose(SectionHandle);
1276
1277 /* Did we do a hard error? */
1279 {
1280 /* Yup, so increase fatal error count if we are initializing */
1282 }
1283
1284 /* Return failure */
1286 }
1287 }
1288 else
1289 {
1290 /* The image was valid. Is it a DLL? */
1292 {
1293 /* Set the DLL Flag */
1295 }
1296
1297 /* If we're not a DLL, clear the entrypoint */
1299 {
1300 LdrEntry->EntryPoint = 0;
1301 }
1302 }
1303
1304 /* Return it for the caller */
1305 *DataTableEntry = LdrEntry;
1306
1307 /* Check if we loaded somewhere else */
1309 {
1310 /* Write the flag */
1312
1313 /* Find our region */
1315 ImageEnd = ImageBase + ViewSize;
1316
1317 DPRINT("LDR: LdrpMapDll Relocating Image Name %ws (%p-%p -> %p)\n", DllName, (PVOID)ImageBase, (PVOID)ImageEnd, ViewBase);
1318
1319 /* Scan all the modules */
1321 NextEntry = ListHead->Flink;
1322 while (NextEntry != ListHead)
1323 {
1324 /* Get the entry */
1325 CandidateEntry = CONTAINING_RECORD(NextEntry,
1326 LDR_DATA_TABLE_ENTRY,
1327 InLoadOrderLinks);
1328 NextEntry = NextEntry->Flink;
1329
1330 /* Get the entry's bounds */
1332 CandidateEnd = CandidateBase + CandidateEntry->SizeOfImage;
1333
1334 /* Make sure this entry isn't unloading */
1336
1337 /* Check if our regions are colliding */
1338 if ((ImageBase >= CandidateBase && ImageBase <= CandidateEnd) ||
1339 (ImageEnd >= CandidateBase && ImageEnd <= CandidateEnd) ||
1340 (CandidateBase >= ImageBase && CandidateBase <= ImageEnd))
1341 {
1342 /* Found who is overlapping */
1343 OverlapDllFound = TRUE;
1344 OverlapDll = CandidateEntry->FullDllName;
1345 break;
1346 }
1347 }
1348
1349 /* Check if we found the DLL overlapping with us */
1350 if (!OverlapDllFound)
1351 {
1352 /* It's not another DLL, it's memory already here */
1354 }
1355
1357
1358 /* Are we dealing with a DLL? */
1360 {
1361 /* Check if relocs were stripped */
1363 {
1364 /* Get the relocation data */
1365 RelocData = RtlImageDirectoryEntryToData(ViewBase,
1366 TRUE,
1368 &RelocDataSize);
1369
1370 /* Does the DLL not have any? */
1371 if (!RelocData && !RelocDataSize)
1372 {
1373 /* We'll allow this and simply continue */
1374 goto NoRelocNeeded;
1375 }
1376 }
1377
1378 /* See if this is an Illegal DLL - IE: user32 and kernel32 */
1381 {
1382 /* Can't relocate user32 */
1383 RelocatableDll = FALSE;
1384 }
1385 else
1386 {
1389 {
1390 /* Can't relocate kernel32 */
1391 RelocatableDll = FALSE;
1392 }
1393 }
1394
1395 /* Known DLLs are not allowed to be relocated */
1396 if (KnownDll && !RelocatableDll)
1397 {
1398 /* Setup for hard error */
1399 HardErrorParameters[0] = (ULONG_PTR)&IllegalDll;
1400 HardErrorParameters[1] = (ULONG_PTR)&OverlapDll;
1401
1403
1404 /* Raise the error */
1406 2,
1407 3,
1408 HardErrorParameters,
1409 OptionOk,
1410 &Response);
1411
1412 /* If initializing, increase the error count */
1414
1415 /* Don't do relocation */
1417 goto FailRelocate;
1418 }
1419
1420 /* Change the protection to prepare for relocation */
1422
1423 /* Make sure we changed the protection */
1425 {
1426 /* Do the relocation */
1429
1431 {
1432 /* Stuff the image name in the TIB, for the debugger */
1435#if 0
1436 /* Map the DLL */
1438 NtCurrentProcess(),
1439 &ViewBase,
1440 0,
1441 0,
1442 NULL,
1443 &ViewSize,
1444 ViewShare,
1445 0,
1446 PAGE_READWRITE);
1447#endif
1448 /* Restore */
1450
1451 /* Return the protection */
1453 }
1454 }
1455FailRelocate:
1456 /* Handle any kind of failure */
1458 {
1459 /* Remove it from the lists */
1463
1464 /* Unmap it, clear the entry */
1466 LdrEntry = NULL;
1467 }
1468
1469 /* Show debug message */
1471 {
1474 }
1475 }
1476 else
1477 {
1478NoRelocNeeded:
1479 /* Not a DLL, or no relocation needed */
1481
1482 /* Stuff the image name in the TIB, for the debugger */
1485#if 0
1486 /* Map the DLL */
1488 NtCurrentProcess(),
1489 &ViewBase,
1490 0,
1491 0,
1492 NULL,
1493 &ViewSize,
1494 ViewShare,
1495 0,
1496 PAGE_READWRITE);
1497#endif
1498 /* Restore */
1500
1501 /* Show debug message */
1503 {
1505 }
1506 }
1507 }
1508
1509 // FIXME: LdrpCheckCorImage() is missing
1510
1511 /* Check if this is an SMP Machine and a DLL */
1514 {
1515 /* Validate the image for MP */
1516 LdrpValidateImageForMp(LdrEntry);
1517 }
1518
1519 // FIXME: LdrpCorUnloadImage() is missing
1520
1521 /* Close section and return status */
1522 NtClose(SectionHandle);
1524}
NTSTATUS NTAPI NtMapViewOfSection(IN HANDLE SectionHandle, IN HANDLE ProcessHandle, IN OUT PVOID *BaseAddress, IN ULONG_PTR ZeroBits, IN SIZE_T CommitSize, IN OUT PLARGE_INTEGER SectionOffset OPTIONAL, IN OUT PSIZE_T ViewSize, IN SECTION_INHERIT InheritDisposition, IN ULONG AllocationType, IN ULONG Protect)
Definition: section.c:3257
PIMAGE_NT_HEADERS WINAPI ImageNtHeader(_In_ PVOID)
NTSTATUS NTAPI NtRaiseHardError(IN NTSTATUS ErrorStatus, IN ULONG NumberOfParameters, IN ULONG UnicodeStringParameterMask, IN PULONG_PTR Parameters, IN ULONG ValidResponseOptions, OUT PULONG Response)
Definition: harderr.c:551
#define LDR_DLL_NOTIFICATION_REASON_LOADED
Definition: ldrtypes.h:203
BOOLEAN NTAPI LdrpResolveDllName(PWSTR DllPath, PWSTR DllName, PUNICODE_STRING FullDllName, PUNICODE_STRING BaseDllName)
Definition: ldrutils.c:673
PVOID NTAPI LdrpFetchAddressOfEntryPoint(IN PVOID ImageBase)
Definition: ldrutils.c:767
NTSTATUS NTAPI LdrpCheckForKnownDll(PWSTR DllName, PUNICODE_STRING FullDllName, PUNICODE_STRING BaseDllName, HANDLE *SectionHandle)
Definition: ldrutils.c:788
VOID NTAPI LdrpInsertMemoryTableEntry(IN PLDR_DATA_TABLE_ENTRY LdrEntry)
Definition: ldrutils.c:1561
NTSTATUS NTAPI LdrpSetProtection(PVOID ViewBase, BOOLEAN Restore)
Definition: ldrutils.c:921
PLDR_DATA_TABLE_ENTRY NTAPI LdrpAllocateDataTableEntry(IN PVOID BaseAddress)
Definition: ldrutils.c:1528
NTSTATUS NTAPI LdrpCreateDllSection(IN PUNICODE_STRING FullName, IN HANDLE DllHandle, IN PULONG DllCharacteristics OPTIONAL, OUT PHANDLE SectionHandle)
Definition: ldrutils.c:518
VOID NTAPI LdrpValidateImageForMp(IN PLDR_DATA_TABLE_ENTRY LdrDataTableEntry)
Definition: ldrinit.c:1546
VOID NTAPI LdrpSendDllNotifications(_In_ PLDR_DATA_TABLE_ENTRY DllEntry, _In_ ULONG NotificationReason)
Definition: ldrnotify.c:104
#define STATUS_IMAGE_MACHINE_TYPE_MISMATCH
Definition: ntstatus.h:128
Definition: window.h:585
Referenced by LdrpLoadDll(), and LdrpLoadImportModule().
◆ LdrpRecordUnloadEvent()
| VOID NTAPI LdrpRecordUnloadEvent | ( | _In_ PLDR_DATA_TABLE_ENTRY | LdrEntry | ) |
Definition at line 28 of file trace.c.
29{
30 PIMAGE_NT_HEADERS NtHeaders;
33 USHORT StringLen;
34
36 (ULONG_PTR)LdrEntry->DllBase + LdrEntry->SizeOfImage);
37
41
42 NtHeaders = RtlImageNtHeader(LdrEntry->DllBase);
43
44 if (NtHeaders)
45 {
48 }
49 else
50 {
53 }
54
55 StringLen = min(LdrEntry->BaseDllName.Length / sizeof(WCHAR), RTL_NUMBER_OF(RtlpUnloadEventTrace[Index].ImageName));
56 RtlCopyMemory(RtlpUnloadEventTrace[Index].ImageName, LdrEntry->BaseDllName.Buffer, StringLen * sizeof(WCHAR));
59}
static RTL_UNLOAD_EVENT_TRACE RtlpUnloadEventTrace[RTL_UNLOAD_EVENT_TRACE_NUMBER]
Definition: trace.c:13
Referenced by LdrUnloadDll().
◆ LdrpRunInitializeRoutines()
Definition at line 648 of file ldrinit.c.
649{
650 PLDR_DATA_TABLE_ENTRY LocalArray[16];
651 PLIST_ENTRY ListHead;
652 PLIST_ENTRY NextEntry;
653 PLDR_DATA_TABLE_ENTRY LdrEntry, *LdrRootEntry, OldInitializer;
654 PVOID EntryPoint;
656 //ULONG BreakOnInit;
659 RTL_CALLER_ALLOCATED_ACTIVATION_CONTEXT_STACK_FRAME_EXTENDED ActCtx;
660 ULONG BreakOnDllLoad;
661 PTEB OldTldTeb;
662 BOOLEAN DllStatus;
663
666 NtCurrentTeb()->RealClientId.UniqueProcess,
667 NtCurrentTeb()->RealClientId.UniqueThread);
668
669 /* Check the Loader Lock */
670 LdrpEnsureLoaderLockIsHeld();
671
672 /* Get the number of entries to call */
674 {
675 /* Check if we can use our local buffer */
677 {
678 /* Allocate space for all the entries */
680 0,
683 }
684 else
685 {
686 /* Use our local array */
687 LdrRootEntry = LocalArray;
688 }
689 }
690 else
691 {
692 /* Don't need one */
693 LdrRootEntry = NULL;
694 }
695
696 /* Show debug message */
698 {
700 NtCurrentTeb()->RealClientId.UniqueThread,
701 NtCurrentTeb()->RealClientId.UniqueProcess,
703 }
704
705 /* Loop in order */
707 NextEntry = ListHead->Flink;
708 i = 0;
709 while (NextEntry != ListHead)
710 {
711 /* Get the Data Entry */
713
714 /* Check if we have a Root Entry */
715 if (LdrRootEntry)
716 {
717 /* Check flags */
719 {
720 /* Setup the Cookie for the DLL */
721 LdrpInitSecurityCookie(LdrEntry);
722
723 /* Check for valid entrypoint */
725 {
726 /* Write in array */
728 LdrRootEntry[i] = LdrEntry;
729
730 /* Display debug message */
732 {
734 NtCurrentTeb()->RealClientId.UniqueThread,
735 NtCurrentTeb()->RealClientId.UniqueProcess,
736 &LdrEntry->FullDllName,
737 LdrEntry->EntryPoint);
738 }
739 i++;
740 }
741 }
742 }
743
744 /* Set the flag */
746 NextEntry = NextEntry->Flink;
747 }
748
750
751 /* If we got a context, then we have to call Kernel32 for TS support */
753 {
754 /* Check if we have one */
755 if (Kernel32ProcessInitPostImportFunction)
756 {
757 /* Call it */
758 Status = Kernel32ProcessInitPostImportFunction();
760 {
761 DPRINT1("LDR: LdrpRunInitializeRoutines - Failed running kernel32 post-import function, Status=0x%08lx\n", Status);
762 }
763 }
764 /* Clear it */
765 Kernel32ProcessInitPostImportFunction = NULL;
766 }
767
768 /* No root entry? return */
769 if (!LdrRootEntry)
771
772 /* Set the TLD TEB */
773 OldTldTeb = LdrpTopLevelDllBeingLoadedTeb;
775
776 /* Loop */
777 i = 0;
779 {
780 /* Get an entry */
781 LdrEntry = LdrRootEntry[i];
782
783 /* FIXME: Verify NX Compat */
784
785 /* Move to next entry */
786 i++;
787
788 /* Get its entrypoint */
789 EntryPoint = LdrEntry->EntryPoint;
790
791 /* Are we being debugged? */
792 BreakOnDllLoad = 0;
794 {
795 /* Check if we should break on load */
798 REG_DWORD,
799 &BreakOnDllLoad,
801 NULL);
803
804 /* Reset status back to STATUS_SUCCESS */
806 }
807
808 /* Break if aksed */
809 if (BreakOnDllLoad)
810 {
811 /* Check if we should show a message */
813 {
816 }
817
818 /* Break in debugger */
819 DbgBreakPoint();
820 }
821
822 /* Make sure we have an entrypoint */
823 if (EntryPoint)
824 {
825 /* Save the old Dll Initializer and write the current one */
826 OldInitializer = LdrpCurrentDllInitializer;
827 LdrpCurrentDllInitializer = LdrEntry;
828
829 /* Set up the Act Ctx */
831 ActCtx.Format = 1;
833
834 /* Activate the ActCtx */
835 RtlActivateActivationContextUnsafeFast(&ActCtx,
836 LdrEntry->EntryPointActivationContext);
837
838 _SEH2_TRY
839 {
840 /* Check if it has TLS */
842 {
843 /* Call TLS */
845 }
846
847 /* Call the Entrypoint */
849 {
851 &LdrEntry->BaseDllName, EntryPoint);
852 }
853 DllStatus = LdrpCallInitRoutine(EntryPoint,
854 LdrEntry->DllBase,
855 DLL_PROCESS_ATTACH,
856 Context);
857 }
859 {
860 DllStatus = FALSE;
863 }
864 _SEH2_END;
865
866 /* Deactivate the ActCtx */
867 RtlDeactivateActivationContextUnsafeFast(&ActCtx);
868
869 /* Save the Current DLL Initializer */
870 LdrpCurrentDllInitializer = OldInitializer;
871
872 /* Mark the entry as processed */
874
875 /* Fail if DLL init failed */
876 if (!DllStatus)
877 {
879 &LdrEntry->BaseDllName, EntryPoint);
880
882 goto Quickie;
883 }
884 }
885 }
886
887 /* Loop in order */
889 NextEntry = NextEntry->Flink;
890 while (NextEntry != ListHead)
891 {
892 /* Get the Data Entry */
894
895 /* FIXME: Verify NX Compat */
896 // LdrpCheckNXCompatibility()
897
898 /* Next entry */
899 NextEntry = NextEntry->Flink;
900 }
901
902 /* Check for TLS */
904 {
905 /* Set up the Act Ctx */
907 ActCtx.Format = 1;
909
910 /* Activate the ActCtx */
911 RtlActivateActivationContextUnsafeFast(&ActCtx,
913
914 _SEH2_TRY
915 {
916 /* Do TLS callbacks */
918 }
920 {
921 /* Do nothing */
922 }
923 _SEH2_END;
924
925 /* Deactivate the ActCtx */
926 RtlDeactivateActivationContextUnsafeFast(&ActCtx);
927 }
928
929Quickie:
930 /* Restore old TEB */
931 LdrpTopLevelDllBeingLoadedTeb = OldTldTeb;
932
933 /* Check if the array is in the heap */
934 if (LdrRootEntry != LocalArray)
935 {
936 /* Free the array */
938 }
939
940 /* Return to caller */
943}
NTSTATUS NTAPI LdrQueryImageFileExecutionOptions(_In_ PUNICODE_STRING SubKey, _In_ PCWSTR ValueName, _In_ ULONG Type, _Out_ PVOID Buffer, _In_ ULONG BufferSize, _Out_opt_ PULONG ReturnedLength)
Definition: ldrinit.c:388
PVOID NTAPI LdrpInitSecurityCookie(PLDR_DATA_TABLE_ENTRY LdrEntry)
Definition: ldrinit.c:452
Referenced by LdrpGetProcedureAddress(), LdrpInitializeProcess(), and LdrpLoadDll().
◆ LdrpSendDllNotifications()
| VOID NTAPI LdrpSendDllNotifications | ( | _In_ PLDR_DATA_TABLE_ENTRY | DllEntry, |
| _In_ ULONG | NotificationReason | ||
| ) |
Definition at line 104 of file ldrnotify.c.
107{
111
112 /*
113 * LDR_DLL_LOADED_NOTIFICATION_DATA and LDR_DLL_UNLOADED_NOTIFICATION_DATA
114 * currently are the same. Use C_ASSERT to ensure it, then fill either of them.
115 */
116#define LdrpAssertDllNotificationDataMember(x)\
117 C_ASSERT(FIELD_OFFSET(LDR_DLL_NOTIFICATION_DATA, Loaded.x) ==\
118 FIELD_OFFSET(LDR_DLL_NOTIFICATION_DATA, Unloaded.x))
119
123 LdrpAssertDllNotificationDataMember(BaseDllName);
124 LdrpAssertDllNotificationDataMember(DllBase);
125 LdrpAssertDllNotificationDataMember(SizeOfImage);
126
127#undef LdrpAssertDllNotificationDataMember
128
130 NotificationData.Loaded.FullDllName = &DllEntry->FullDllName;
131 NotificationData.Loaded.BaseDllName = &DllEntry->BaseDllName;
132 NotificationData.Loaded.DllBase = DllEntry->DllBase;
133 NotificationData.Loaded.SizeOfImage = DllEntry->SizeOfImage;
134
135 /* Send notification to all registered callbacks */
137 _SEH2_TRY
138 {
140 Entry != &LdrpDllNotificationList;
142 {
144 NotificationEntry->Callback(NotificationReason,
145 &NotificationData,
146 NotificationEntry->Context);
147 }
148 }
149 _SEH2_FINALLY
150 {
152 }
153 _SEH2_END;
154}
#define LdrpAssertDllNotificationDataMember(x)
static RTL_CRITICAL_SECTION LdrpDllNotificationLock
Definition: ldrnotify.c:22
Definition: ldrnotify.c:13
Definition: ldrtypes.h:225
_In_ ULONG _In_opt_ PVOID _In_ PDRIVER_OBJECT _In_ PDRIVER_NOTIFICATION_CALLBACK_ROUTINE _Inout_opt_ __drv_aliasesMem PVOID _Outptr_result_nullonfailure_ _At_ * NotificationEntry(return==0, __drv_allocatesMem(Mem))) PVOID *NotificationEntry
Referenced by LdrpMapDll(), and LdrUnloadDll().
◆ LdrpSetProtection()
Definition at line 921 of file ldrutils.c.
923{
924 PIMAGE_NT_HEADERS NtHeaders;
925 PIMAGE_SECTION_HEADER Section;
927 PVOID SectionBase;
928 SIZE_T SectionSize;
930
931 /* Get the NT headers */
932 NtHeaders = RtlImageNtHeader(ViewBase);
934
935 /* Compute address of the first section header */
936 Section = IMAGE_FIRST_SECTION(NtHeaders);
937
938 /* Go through all sections */
940 {
941 /* Check for read-only non-zero section */
944 {
945 /* Check if we are setting or restoring protection */
946 if (Restore)
947 {
948 /* Set it to either EXECUTE or READONLY */
950 {
951 NewProtection = PAGE_EXECUTE;
952 }
953 else
954 {
955 NewProtection = PAGE_READONLY;
956 }
957
958 /* Add PAGE_NOCACHE if needed */
960 {
961 NewProtection |= PAGE_NOCACHE;
962 }
963 }
964 else
965 {
966 /* Enable write access */
967 NewProtection = PAGE_READWRITE;
968 }
969
970 /* Get the section VA */
972 SectionSize = Section->SizeOfRawData;
973 if (SectionSize)
974 {
975 /* Set protection */
977 &SectionBase,
978 &SectionSize,
979 NewProtection,
980 &OldProtection);
982 }
983 }
984
985 /* Move to the next section */
986 Section++;
987 }
988
989 /* Flush instruction cache if necessary */
992}
NTSYSAPI NTSTATUS NTAPI ZwFlushInstructionCache(_In_ HANDLE ProcessHandle, _In_ PVOID BaseAddress, _In_ ULONG NumberOfBytesToFlush)
NTSYSAPI NTSTATUS NTAPI ZwProtectVirtualMemory(_In_ HANDLE ProcessHandle, _In_ PVOID *BaseAddress, _In_ SIZE_T *NumberOfBytesToProtect, _In_ ULONG NewAccessProtection, _Out_ PULONG OldAccessProtection)
Definition: pedump.c:280
Referenced by LdrpInitializeProcess(), and LdrpMapDll().
◆ LdrpSnapThunk()
| NTSTATUS NTAPI LdrpSnapThunk | ( | IN PVOID | ExportBase, |
| IN PVOID | ImportBase, | ||
| IN PIMAGE_THUNK_DATA | OriginalThunk, | ||
| IN OUT PIMAGE_THUNK_DATA | Thunk, | ||
| IN PIMAGE_EXPORT_DIRECTORY | ExportEntry, | ||
| IN ULONG | ExportSize, | ||
| IN BOOLEAN | Static, | ||
| IN LPSTR | DllName | ||
| ) |
Definition at line 937 of file ldrpe.c.
945{
946 BOOLEAN IsOrdinal;
947 USHORT Ordinal;
948 ULONG OriginalOrdinal = 0;
949 PIMAGE_IMPORT_BY_NAME AddressOfData;
950 PULONG NameTable;
951 PUSHORT OrdinalTable;
953 USHORT Hint;
955 ULONG_PTR HardErrorParameters[3];
956 UNICODE_STRING HardErrorDllName, HardErrorEntryPointName;
957 ANSI_STRING TempString;
960 PULONG AddressOfFunctions;
961 UNICODE_STRING TempUString;
962 ANSI_STRING ForwarderName;
963 PANSI_STRING ForwardName;
964 PVOID ForwarderHandle;
965 ULONG ForwardOrdinal;
966
967 /* Check if the snap is by ordinal */
969 {
970 /* Get the ordinal number, and its normalized version */
971 OriginalOrdinal = IMAGE_ORDINAL(OriginalThunk->u1.Ordinal);
972 Ordinal = (USHORT)(OriginalOrdinal - ExportDirectory->Base);
973 }
974 else
975 {
976 /* First get the data VA */
977 AddressOfData = (PIMAGE_IMPORT_BY_NAME)
978 ((ULONG_PTR)ImportBase +
979 ((ULONG_PTR)OriginalThunk->u1.AddressOfData & 0xffffffff));
980
981 /* Get the name */
983
984 /* Now get the VA of the Name and Ordinal Tables */
986 (ULONG_PTR)ExportDirectory->AddressOfNames);
988 (ULONG_PTR)ExportDirectory->AddressOfNameOrdinals);
989
990 /* Get the hint */
991 Hint = AddressOfData->Hint;
992
993 /* Try to get a match by using the hint */
996 {
997 /* We got a match, get the Ordinal from the hint */
998 Ordinal = OrdinalTable[Hint];
999 }
1000 else
1001 {
1002 /* Well bummer, hint didn't work, do it the long way */
1003 Ordinal = LdrpNameToOrdinal(ImportName,
1004 ExportDirectory->NumberOfNames,
1005 ExportBase,
1006 NameTable,
1007 OrdinalTable);
1008 }
1009 }
1010
1011 /* Check if the ordinal is invalid */
1013 {
1014FailurePath:
1015 /* Is this a static snap? */
1017 {
1018 UNICODE_STRING SnapTarget;
1019 PLDR_DATA_TABLE_ENTRY LdrEntry;
1020
1021 /* What was the module we were searching in */
1023
1024 /* What was the module we were searching for */
1026 SnapTarget = LdrEntry->BaseDllName;
1027 else
1029
1030 /* Inform the debug log */
1031 if (IsOrdinal)
1032 DPRINT1("Failed to snap ordinal %Z!0x%x for %wZ\n", &TempString, OriginalOrdinal, &SnapTarget);
1033 else
1035
1036 /* These are critical errors. Setup a string for the DLL name */
1038
1039 /* Set it as the parameter */
1040 HardErrorParameters[1] = (ULONG_PTR)&HardErrorDllName;
1041 Mask = 2;
1042
1043 /* Check if we have an ordinal */
1044 if (IsOrdinal)
1045 {
1046 /* Then set the ordinal as the 1st parameter */
1047 HardErrorParameters[0] = OriginalOrdinal;
1048 }
1049 else
1050 {
1051 /* We don't, use the entrypoint. Set up a string for it */
1052 RtlInitAnsiString(&TempString, ImportName);
1053 RtlAnsiStringToUnicodeString(&HardErrorEntryPointName,
1054 &TempString,
1055 TRUE);
1056
1057 /* Set it as the parameter */
1058 HardErrorParameters[0] = (ULONG_PTR)&HardErrorEntryPointName;
1059 Mask = 3;
1060 }
1061
1062 /* Raise the error */
1065 2,
1066 Mask,
1067 HardErrorParameters,
1068 OptionOk,
1069 &Response);
1070
1071 /* Increase the error count */
1073
1074 /* Free our string */
1075 RtlFreeUnicodeString(&HardErrorDllName);
1076 if (!IsOrdinal)
1077 {
1078 /* Free our second string. Return entrypoint error */
1079 RtlFreeUnicodeString(&HardErrorEntryPointName);
1081 }
1082
1083 /* Return ordinal error */
1085 }
1086 else
1087 {
1088 /* Inform the debug log */
1089 if (IsOrdinal)
1091 else
1093 }
1094
1095 /* Set this as a bad DLL */
1096 Thunk->u1.Function = (ULONG_PTR)0xffbadd11;
1097
1098 /* Return the right error code */
1101 }
1102 else
1103 {
1104 /* The ordinal seems correct, get the AddressOfFunctions VA */
1105 AddressOfFunctions = (PULONG)
1106 ((ULONG_PTR)ExportBase +
1107 (ULONG_PTR)ExportDirectory->AddressOfFunctions);
1108
1109 /* Write the function pointer*/
1110 Thunk->u1.Function = (ULONG_PTR)ExportBase + AddressOfFunctions[Ordinal];
1111
1112 /* Make sure it's within the exports */
1114 (Thunk->u1.Function < ((ULONG_PTR)ExportDirectory + ExportSize)))
1115 {
1116 /* Get the Import and Forwarder Names */
1117 ImportName = (LPSTR)Thunk->u1.Function;
1118
1121 if (!DotPosition)
1122 goto FailurePath;
1123
1124 ForwarderName.Buffer = ImportName;
1128 &ForwarderName,
1129 TRUE);
1130
1131 /* Make sure the conversion was OK */
1133 {
1137
1139
1140 /* Check if the SxS Assemblies specify another file */
1142 &TempUString, &LdrApiDefaultExtension, &StaticString, NULL, &RedirectedImportName, &Redirected);
1143
1145 {
1148 }
1149 else
1150 {
1151 RedirectedImportName = &TempUString;
1152 }
1153
1154 /* Load the forwarder */
1156 NULL,
1157 NULL,
1158 RedirectedImportName,
1159 &ForwarderHandle,
1160 FALSE);
1161
1162 RtlFreeUnicodeString(&TempUString);
1163 }
1164
1165 /* If the load or conversion failed, use the failure path */
1167
1168 /* Now set up a name for the actual forwarder dll */
1169 RtlInitAnsiString(&ForwarderName,
1171
1172 /* Check if it's an ordinal forward */
1174 {
1175 /* We don't have an actual function name */
1176 ForwardName = NULL;
1177
1178 /* Convert the string into an ordinal */
1180 0,
1181 &ForwardOrdinal);
1182
1183 /* If this fails, then error out */
1185 }
1186 else
1187 {
1188 /* Import by name */
1189 ForwardName = &ForwarderName;
1190 ForwardOrdinal = 0;
1191 }
1192
1193 /* Get the pointer */
1195 ForwardName,
1196 ForwardOrdinal,
1197 (PVOID*)&Thunk->u1.Function,
1198 FALSE);
1199 /* If this fails, then error out */
1201 }
1202 else
1203 {
1204 /* It's not within the exports, let's hope it's valid */
1205 if (!AddressOfFunctions[Ordinal]) goto FailurePath;
1206 }
1207
1208 /* If we got here, then it's success */
1210 }
1211
1212 /* Return status */
1214}
USHORT NTAPI LdrpNameToOrdinal(IN LPSTR ImportName, IN ULONG NumberOfNames, IN PVOID ExportBase, IN PULONG NameTable, IN PUSHORT OrdinalTable)
Definition: ldrpe.c:628
DECLSPEC_NORETURN NTSYSAPI VOID NTAPI RtlRaiseStatus(_In_ NTSTATUS Status)
NTSYSAPI NTSTATUS NTAPI RtlCharToInteger(PCSZ String, ULONG Base, PULONG Value)
Definition: unicode.c:261
BOOLEAN NTAPI LdrpCheckForLoadedDllHandle(IN PVOID Base, OUT PLDR_DATA_TABLE_ENTRY *LdrEntry)
Definition: ldrutils.c:1600
NTSTATUS NTAPI LdrpLoadDll(IN BOOLEAN Redirected, IN PWSTR DllPath OPTIONAL, IN PULONG DllCharacteristics OPTIONAL, IN PUNICODE_STRING DllName, OUT PVOID *BaseAddress, IN BOOLEAN CallInit)
Definition: ldrutils.c:2414
NTSTATUS NTAPI LdrpGetProcedureAddress(_In_ PVOID BaseAddress, _In_opt_ _When_(Ordinal==0, _Notnull_) PANSI_STRING Name, _In_opt_ _When_(Name==NULL, _In_range_(>, 0)) ULONG Ordinal, _Out_ PVOID *ProcedureAddress, _In_ BOOLEAN ExecuteInit)
Definition: ldrutils.c:2231
Referenced by LdrpGetProcedureAddress(), and LdrpSnapIAT().
◆ LdrpUnloadShimEngine()
◆ LdrpUpdateLoadCount2()
Definition at line 434 of file ldrutils.c.
436{
438 UNICODE_STRING UpdateString;
439
440 /* Setup the string and call the extended API */
443}
Definition: bufpool.h:45
VOID NTAPI LdrpUpdateLoadCount3(IN PLDR_DATA_TABLE_ENTRY LdrEntry, IN ULONG Flags, OUT PUNICODE_STRING UpdateString)
Definition: ldrutils.c:112
Referenced by LdrAddRefDll(), LdrGetDllHandleEx(), LdrpLoadDll(), and LdrUnloadDll().
◆ LdrpValidateImageForMp()
| VOID NTAPI LdrpValidateImageForMp | ( | IN PLDR_DATA_TABLE_ENTRY | LdrDataTableEntry | ) |
Definition at line 1546 of file ldrinit.c.
1547{
1549 // TODO:
1550 // Scan the LockPrefixTable in the load config directory
1551}
Referenced by LdrpInitializeProcess(), and LdrpMapDll().
◆ LdrpWalkImportDescriptor()
| NTSTATUS NTAPI LdrpWalkImportDescriptor | ( | IN LPWSTR DllPath | OPTIONAL, |
| IN PLDR_DATA_TABLE_ENTRY | LdrEntry | ||
| ) |
Definition at line 670 of file ldrpe.c.
672{
673 RTL_CALLER_ALLOCATED_ACTIVATION_CONTEXT_STACK_FRAME_EXTENDED ActCtx;
677 PIMAGE_IMPORT_DESCRIPTOR ImportEntry;
678 ULONG BoundSize, IatSize;
679
680 DPRINT("LdrpWalkImportDescriptor - BEGIN (%wZ %p '%S')\n", &LdrEntry->BaseDllName, LdrEntry, DllPath);
681
682 /* Set up the Act Ctx */
686
687 /* Check if we have a manifest prober routine */
689 {
690 /* Probe the DLL for its manifest. Some details are omitted */
691 Status2 = LdrpManifestProberRoutine(LdrEntry->DllBase, LdrEntry->FullDllName.Buffer, &LdrEntry->EntryPointActivationContext);
692
694 Status2 != STATUS_NO_SUCH_FILE &&
695 Status2 != STATUS_RESOURCE_DATA_NOT_FOUND &&
696 Status2 != STATUS_RESOURCE_TYPE_NOT_FOUND &&
697 Status2 != STATUS_RESOURCE_NAME_NOT_FOUND &&
698 Status2 != STATUS_RESOURCE_LANG_NOT_FOUND)
699 {
700 /* Some serious issue */
701 //Status = Status2; // FIXME: Ignore that error for now
703 DPFLTR_WARNING_LEVEL,
704 "LDR: LdrpWalkImportDescriptor() failed to probe %wZ for its "
705 "manifest, ntstatus = 0x%08lx\n",
706 &LdrEntry->FullDllName, Status2);
707 }
708 }
709
710 /* Check if we failed above */
712
713 /* Get the Active ActCtx */
714 if (!LdrEntry->EntryPointActivationContext)
715 {
717
719 {
720 /* Exit */
722 DPFLTR_WARNING_LEVEL,
723 "LDR: RtlGetActiveActivationContext() failed; ntstatus = "
724 "0x%08lx\n",
725 Status);
727 }
728 }
729
730 /* Activate the ActCtx */
731 RtlActivateActivationContextUnsafeFast(&ActCtx,
732 LdrEntry->EntryPointActivationContext);
733
734 /* Check if we were redirected */
736 {
737 /* Get the Bound IAT */
738 BoundEntry = RtlImageDirectoryEntryToData(LdrEntry->DllBase,
739 TRUE,
741 &BoundSize);
742 }
743
744 /* Get the regular IAT, for fallback */
745 ImportEntry = RtlImageDirectoryEntryToData(LdrEntry->DllBase,
746 TRUE,
748 &IatSize);
749
750 /* Check if we got at least one */
751 if ((BoundEntry) || (ImportEntry))
752 {
753 /* Do we have a Bound IAT */
754 if (BoundEntry)
755 {
756 /* Handle the descriptor */
758 LdrEntry,
759 BoundEntry);
760 }
761 else
762 {
763 /* Handle the descriptor */
765 LdrEntry,
766 ImportEntry);
767 }
768
769 /* Check the status of the handlers */
771 {
772 /* Check for Per-DLL Heap Tagging */
774 {
775 /* FIXME */
777 }
778
779 /* Check if Page Heap was enabled */
781 {
782 /* Initialize target DLL */
783 AVrfPageHeapDllNotification(LdrEntry);
784 }
785
786 /* Check if Application Verifier was enabled */
788 {
789 AVrfDllLoadNotification(LdrEntry);
790 }
791
792 /* Just to be safe */
794 }
795 }
796
797 /* Release the activation context */
798 RtlDeactivateActivationContextUnsafeFast(&ActCtx);
799
801
802 /* Return status */
804}
NTSYSAPI NTSTATUS WINAPI RtlGetActiveActivationContext(HANDLE *)
Definition: actctx.c:5539
NTSTATUS NTAPI LdrpHandleOldFormatImportDescriptors(IN LPWSTR DllPath OPTIONAL, IN PLDR_DATA_TABLE_ENTRY LdrEntry, IN PIMAGE_IMPORT_DESCRIPTOR ImportEntry)
Definition: ldrpe.c:606
PLDR_MANIFEST_PROBER_ROUTINE LdrpManifestProberRoutine
Definition: ldrpe.c:18
NTSTATUS NTAPI LdrpHandleNewFormatImportDescriptors(IN LPWSTR DllPath OPTIONAL, IN PLDR_DATA_TABLE_ENTRY LdrEntry, IN PIMAGE_BOUND_IMPORT_DESCRIPTOR BoundEntry)
Definition: ldrpe.c:492
#define RTL_CALLER_ALLOCATED_ACTIVATION_CONTEXT_STACK_FRAME_FORMAT_WHISTLER
Definition: rtltypes.h:101
VOID NTAPI AVrfDllLoadNotification(IN PLDR_DATA_TABLE_ENTRY LdrEntry)
Definition: verifier.c:298
VOID NTAPI AVrfPageHeapDllNotification(IN PLDR_DATA_TABLE_ENTRY LdrEntry)
Definition: verifier.c:390
#define IMAGE_DIRECTORY_ENTRY_BOUND_IMPORT
Definition: pedump.c:270
Definition: winnt_old.h:3616
Definition: ntimage.h:572
Referenced by LdrpInitializeProcess(), LdrpLoadDll(), and LdrpLoadImportModule().
◆ RtlDoesFileExists_UStr()
| BOOLEAN NTAPI RtlDoesFileExists_UStr | ( | IN PUNICODE_STRING | FileName | ) |
Definition at line 1503 of file path.c.
1504{
1505 /* Call the updated API */
1507}
BOOLEAN NTAPI RtlDoesFileExists_UstrEx(IN PCUNICODE_STRING FileName, IN BOOLEAN SucceedIfBusy)
Definition: path.c:1430
Definition: filecomp.c:348
Referenced by LdrpInitializeDotLocalSupport(), RtlDosApplyFileIsolationRedirection_Ustr(), and START_TEST().
◆ RtlpCloseKeyedEvent()
◆ RtlpInitializeKeyedEvent()
Definition at line 460 of file condvar.c.
461{
464}
NTSYSAPI NTSTATUS WINAPI NtCreateKeyedEvent(HANDLE *, ACCESS_MASK, const OBJECT_ATTRIBUTES *, ULONG)
Referenced by DllMain(), and LdrpInitializeProcess().
◆ RtlpInitializeThreadPooling()
Referenced by LdrpInitializeProcess().
Variable Documentation
◆ g_pfnSE_DllLoaded
|
extern |
Definition at line 23 of file ldrutils.c.
Referenced by LdrpGetShimEngineInterface(), and LdrpLoadDll().
◆ g_pfnSE_DllUnloaded
|
extern |
Definition at line 24 of file ldrutils.c.
Referenced by LdrpGetShimEngineInterface(), and LdrUnloadDll().
◆ g_pfnSE_InstallAfterInit
|
extern |
Definition at line 26 of file ldrutils.c.
Referenced by LdrpGetShimEngineInterface(), and LdrpInitializeProcess().
◆ g_pfnSE_InstallBeforeInit
|
extern |
Definition at line 25 of file ldrutils.c.
Referenced by LdrpGetShimEngineInterface(), and LdrpLoadShimEngine().
◆ g_pfnSE_ProcessDying
|
extern |
Definition at line 27 of file ldrutils.c.
Referenced by LdrpGetShimEngineInterface(), and LdrShutdownProcess().
◆ g_pShimEngineModule
|
extern |
Definition at line 22 of file ldrutils.c.
Referenced by LdrInitShimEngineDynamic(), LdrpGetShimEngineFunction(), LdrpLoadShimEngine(), LdrpRunShimEngineInitRoutine(), and LdrpUnloadShimEngine().
◆ g_ShimsEnabled
|
extern |
Definition at line 21 of file ldrutils.c.
Referenced by LdrpGetShimEngineInterface(), LdrpInitializeProcess(), LdrpLoadDll(), LdrpLoadShimEngine(), LdrpUnloadShimEngine(), LdrShutdownProcess(), and LdrUnloadDll().
◆ LdrApiDefaultExtension
|
extern |
Definition at line 22 of file ldrapi.c.
Referenced by LdrGetDllHandleEx(), LdrLoadDll(), LdrpLoadDll(), LdrpLoadImportModule(), LdrpSnapThunk(), and LdrpUpdateLoadCount3().
◆ LdrpActiveUnloadCount
|
extern |
Definition at line 82 of file ldrinit.c.
Referenced by LdrUnloadDll().
◆ LdrpCurrentDllInitializer
|
extern |
Definition at line 43 of file ldrinit.c.
Referenced by LdrLoadDll(), and LdrpRunInitializeRoutines().
◆ LdrpDefaultPath
|
extern |
Definition at line 63 of file ldrinit.c.
Referenced by LdrpCheckForLoadedDll(), LdrpInitializeProcess(), LdrpMapDll(), LdrpResolveDllName(), and LdrpSearchPath().
◆ LdrpFatalHardErrorCount
|
extern |
Definition at line 81 of file ldrinit.c.
Referenced by LdrpCreateDllSection(), LdrpInitFailure(), LdrpMapDll(), and LdrpSnapThunk().
◆ LdrpGetModuleHandleCache
|
extern |
Definition at line 19 of file ldrutils.c.
Referenced by LdrGetDllHandleEx(), and LdrUnloadDll().
◆ LdrpHashTable
|
extern |
Definition at line 59 of file ldrinit.c.
Referenced by LdrpCheckForLoadedDll(), LdrpInitializeProcess(), and LdrpInsertMemoryTableEntry().
◆ LdrpHeap
|
extern |
Definition at line 3 of file ldrinit.c.
Referenced by LdrpAllocateDataTableEntry(), LdrpAllocateUnicodeString(), LdrpCheckForKnownDll(), LdrpFinalizeAndDeallocateDataTableEntry(), LdrpFreeUnicodeString(), LdrpInitializeProcess(), LdrpMapDll(), LdrpResolveDllName(), LdrpRunInitializeRoutines(), LdrRegisterDllNotification(), and LdrUnregisterDllNotification().
◆ LdrpInLdrInit
|
extern |
Definition at line 30 of file ldrinit.c.
Referenced by LdrAddRefDll(), LdrDisableThreadCalloutsForDll(), LdrGetDllHandleEx(), LdrLockLoaderLock(), LdrpCreateDllSection(), LdrpGetProcedureAddress(), LdrpInit(), LdrpLoadDll(), LdrpMapDll(), LdrpSnapThunk(), and LdrUnloadDll().
◆ LdrpKnownDllObjectDirectory
|
extern |
Definition at line 60 of file ldrinit.c.
Referenced by LdrpCheckForKnownDll(), LdrpInitializeProcess(), and LdrpMapDll().
◆ LdrpKnownDllPath
|
extern |
Definition at line 61 of file ldrinit.c.
Referenced by LdrpCheckForKnownDll(), and LdrpInitializeProcess().
◆ LdrpLdrDatabaseIsSetup
|
extern |
Definition at line 33 of file ldrinit.c.
Referenced by LdrpInitializeProcess(), and LdrpLoadDll().
◆ LdrpLoadedDllHandleCache
| PLDR_DATA_TABLE_ENTRY LdrpLoadedDllHandleCache |
Definition at line 59 of file ntdllp.h.
Referenced by LdrUnloadDll().
◆ LdrpLoaderLock
|
extern |
Definition at line 68 of file ldrinit.c.
Referenced by LdrLockLoaderLock(), LdrpGetProcedureAddress(), LdrpInit(), LdrpInitializeProcess(), LdrpInitializeThread(), LdrpLoadDll(), LdrShutdownProcess(), LdrShutdownThread(), and LdrUnlockLoaderLock().
◆ LdrpNumberOfProcessors
|
extern |
Definition at line 55 of file ldrinit.c.
Referenced by LdrpInitializeProcess(), and LdrpMapDll().
◆ LdrpShutdownInProgress
|
extern |
Definition at line 34 of file ldrinit.c.
Referenced by LdrDisableThreadCalloutsForDll(), LdrUnloadDll(), and RtlDllShutdownInProgress().
◆ LdrpTopLevelDllBeingLoaded
|
extern |
Definition at line 40 of file ldrinit.c.
Referenced by LdrLoadDll().
◆ RtlpDphGlobalFlags
|
extern |
Definition at line 108 of file heappage.c.
Referenced by AVrfPageHeapDllNotification(), LdrpInitializeProcess(), RtlpDphProcessStartupInitialization(), and RtlpPageHeapCreate().
◆ RtlpPageHeapEnabled
|
extern |
Definition at line 107 of file heappage.c.
Referenced by LdrpInitializeApplicationVerifierPackage(), LdrpInitializeProcess(), and RtlCreateHeap().
◆ ShowSnaps
|
extern |
Definition at line 79 of file ldrinit.c.
Referenced by LdrAddRefDll(), LdrGetDllHandleEx(), LdrLoadDll(), LdrpAllocateTls(), LdrpCallTlsInitializers(), LdrpCheckForLoadedDll(), LdrpCreateDllSection(), LdrpGetProcedureAddress(), LdrpHandleOneNewFormatImportDescriptor(), LdrpHandleOneOldFormatImportDescriptor(), LdrpInitializeProcess(), LdrpInitializeTls(), LdrpLoadDll(), LdrpMapDll(), LdrpResolveDllName(), LdrpResolveFullName(), LdrpRunInitializeRoutines(), LdrpSearchPath(), LdrpSnapThunk(), LdrpUpdateLoadCount3(), LdrShutdownProcess(), and LdrUnloadDll().
