diff options
Diffstat (limited to 'sal/systools/win32/uwinapi/GetProcessId.cpp')
| -rw-r--r-- | sal/systools/win32/uwinapi/GetProcessId.cpp | 167 |
1 files changed, 0 insertions, 167 deletions
diff --git a/sal/systools/win32/uwinapi/GetProcessId.cpp b/sal/systools/win32/uwinapi/GetProcessId.cpp deleted file mode 100644 index 0e365a040008..000000000000 --- a/sal/systools/win32/uwinapi/GetProcessId.cpp +++ /dev/null @@ -1,167 +0,0 @@ -/* -*- Mode: C++; tab-width: 4; indent-tabs-mode: nil; c-basic-offset: 4 -*- */ -/************************************************************************* - * - * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER. - * - * Copyright 2000, 2010 Oracle and/or its affiliates. - * - * OpenOffice.org - a multi-platform office productivity suite - * - * This file is part of OpenOffice.org. - * - * OpenOffice.org is free software: you can redistribute it and/or modify - * it under the terms of the GNU Lesser General Public License version 3 - * only, as published by the Free Software Foundation. - * - * OpenOffice.org is distributed in the hope that it will be useful, - * but WITHOUT ANY WARRANTY; without even the implied warranty of - * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the - * GNU Lesser General Public License version 3 for more details - * (a copy is included in the LICENSE file that accompanied this code). - * - * You should have received a copy of the GNU Lesser General Public License - * version 3 along with OpenOffice.org. If not, see - * <http://www.openoffice.org/license.html> - * for a copy of the LGPLv3 License. - * - ************************************************************************/ - -#include "macros.h" -#include "win95sys.h" -#include <tlhelp32.h> -static FARPROC WINAPI GetRealProcAddress( HMODULE hModule, LPCSTR lpProcName ) -{ - FARPROC lpfn = GetProcAddress( hModule, lpProcName ); - - if ( lpfn ) - { - if ( 0x68 == *(LPBYTE)lpfn ) - { - /* - 82C9F460 68 36 49 F8 BF push 0BFF84936h - 82C9F465 E9 41 62 2F 3D jmp BFF956AB - */ - - lpfn = (FARPROC)*(LPDWORD)((LPBYTE)lpfn + 1); - - /* - BFF956AB 9C pushfd - BFF956AC FC cld - BFF956AD 50 push eax - BFF956AE 53 push ebx - BFF956AF 52 push edx - BFF956B0 64 8B 15 20 00 00 00 mov edx,dword ptr fs:[20h] - BFF956B7 0B D2 or edx,edx - BFF956B9 74 09 je BFF956C4 - BFF956BB 8B 42 04 mov eax,dword ptr [edx+4] - BFF956BE 0B C0 or eax,eax - BFF956C0 74 07 je BFF956C9 - BFF956C2 EB 42 jmp BFF95706 - BFF956C4 5A pop edx - BFF956C5 5B pop ebx - BFF956C6 58 pop eax - BFF956C7 9D popfd - BFF956C8 C3 ret - */ - } - } - - return lpfn; -} - - -typedef DWORD (WINAPI OBFUSCATE)( DWORD dwPTID ); -typedef OBFUSCATE *LPOBFUSCATE; - -static DWORD WINAPI Obfuscate( DWORD dwPTID ) -{ - static LPOBFUSCATE lpfnObfuscate = NULL; - - if ( !lpfnObfuscate ) - { - LPBYTE lpCode = (LPBYTE)GetRealProcAddress( GetModuleHandleA("KERNEL32"), "GetCurrentThreadId" ); - - if ( lpCode ) - { - /* - GetCurrentThreadId: - lpCode + 00 BFF84936 A1 DC 9C FC BF mov eax,[BFFC9CDC] ; This is the real thread id - lpcode + 05 BFF8493B FF 30 push dword ptr [eax] - lpCode + 07 BFF8493D E8 17 C5 FF FF call BFF80E59 ; call Obfuscate function - lpcode + 0C BFF84942 C3 ret - */ - - DWORD dwOffset = *(LPDWORD)(lpCode + 0x08); - - lpfnObfuscate = (LPOBFUSCATE)(lpCode + 0x0C + dwOffset); - /* - Obfuscate: - BFF80E59 A1 CC 98 FC BF mov eax,[BFFC98CC] - BFF80E5E 85 C0 test eax,eax - BFF80E60 75 04 jne BFF80E66 - BFF80E62 33 C0 xor eax,eax - BFF80E64 EB 04 jmp BFF80E6A - BFF80E66 33 44 24 04 xor eax,dword ptr [esp+4] - BFF80E6A C2 04 00 ret 4 - */ - } - - } - - return lpfnObfuscate ? lpfnObfuscate( dwPTID ) : 0; -} - - -EXTERN_C DWORD WINAPI GetProcessId_WINDOWS( HANDLE hProcess ) -{ - if ( GetCurrentProcess() == hProcess ) - return GetCurrentProcessId(); - - DWORD dwProcessId = 0; - PPROCESS_DATABASE pPDB = (PPROCESS_DATABASE)Obfuscate( GetCurrentProcessId() ); - - if ( pPDB && K32OBJ_PROCESS == pPDB->Type ) - { - DWORD dwHandleNumber = (DWORD)hProcess >> 2; - - if ( 0 == ((DWORD)hProcess & 0x03) && dwHandleNumber < pPDB->pHandleTable->cEntries ) - { - if ( - pPDB->pHandleTable->array[dwHandleNumber].pObject && - K32OBJ_PROCESS == pPDB->pHandleTable->array[dwHandleNumber].pObject->Type - ) - dwProcessId = Obfuscate( (DWORD)pPDB->pHandleTable->array[dwHandleNumber].pObject ); - } - - SetLastError( ERROR_INVALID_HANDLE ); - } - - return dwProcessId; -} - - -EXTERN_C DWORD WINAPI GetProcessId_NT( HANDLE hProcess ) -{ - SetLastError( ERROR_CALL_NOT_IMPLEMENTED ); - return 0; -} - - -EXTERN_C void WINAPI ResolveThunk_GetProcessId( FARPROC *lppfn, LPCSTR lpLibFileName, LPCSTR lpFuncName ) -{ - if ( (LONG)GetVersion() < 0 ) - *lppfn = (FARPROC)GetProcessId_WINDOWS; - else - { - FARPROC lpfnResult = GetProcAddress( LoadLibraryA( lpLibFileName ), lpFuncName ); - if ( !lpfnResult ) - lpfnResult = (FARPROC)GetProcessId_NT; - - *lppfn = lpfnResult; - } -} - - -DEFINE_CUSTOM_THUNK( kernel32, GetProcessId, DWORD, WINAPI, GetProcessId, ( HANDLE hProcess ) ); - -/* vim:set shiftwidth=4 softtabstop=4 expandtab: */ |