libPeConv
A library to load, manipulate, dump PE files.
Loading...
Searching...
No Matches
load_config_util.cpp
Go to the documentation of this file.
1#include "peconv/load_config_util.h"
2#include "peconv/pe_hdrs_helper.h"
3
4BYTE* peconv::get_load_config_ptr(BYTE* buffer, size_t buf_size)
5{
6 if (!buffer || !buf_size) return nullptr;
7 IMAGE_DATA_DIRECTORY* dir = peconv::get_directory_entry(buffer, IMAGE_DIRECTORY_ENTRY_LOAD_CONFIG);
8 if (!dir) {
9 return 0;
10 }
11 DWORD entry_rva = dir->VirtualAddress;
12 DWORD entry_size = dir->Size;
13 if (!peconv::validate_ptr(buffer, buf_size, buffer + entry_rva, entry_size)) {
14 return 0;
15 }
16 IMAGE_LOAD_CONFIG_DIRECTORY32* ldc = reinterpret_cast<IMAGE_LOAD_CONFIG_DIRECTORY32*>((ULONG_PTR)buffer + entry_rva);
17 return reinterpret_cast<BYTE*>(ldc);
18}
19
20peconv::t_load_config_ver peconv::get_load_config_version(BYTE* buffer, size_t buf_size, void* ld_config_ptr)
21{
22 if (!buffer || !buf_size || !ld_config_ptr) {
23 return peconv::LOAD_CONFIG_NONE;
24 }
25 if (!peconv::validate_ptr(buffer, buf_size, ld_config_ptr, sizeof(DWORD))) {
26 return peconv::LOAD_CONFIG_NONE;
27 }
28
29 DWORD* size_ptr = static_cast<DWORD*>(ld_config_ptr);
30 const size_t curr_size = (*size_ptr);
31 if (curr_size == 0) {
32 return peconv::LOAD_CONFIG_NONE;
33 }
34 if (!peconv::validate_ptr(buffer, buf_size, ld_config_ptr, curr_size)) {
35 return LOAD_CONFIG_UNK_VER;
36 }
37 const bool is64b = peconv::is64bit(buffer);
38 if (is64b) {
39 if (curr_size >= sizeof(peconv::IMAGE_LOAD_CONFIG_DIR64_W10)) {
40 return peconv::LOAD_CONFIG_W10_VER;
41 }
42 if (curr_size >= sizeof(peconv::IMAGE_LOAD_CONFIG_DIR64_W8)) {
43 return peconv::LOAD_CONFIG_W8_VER;
44 }
45 if (curr_size >= sizeof(peconv::IMAGE_LOAD_CONFIG_DIR64_W7)) {
46 return peconv::LOAD_CONFIG_W7_VER;
47 }
48 }
49 else {
50 if (curr_size >= sizeof(peconv::IMAGE_LOAD_CONFIG_DIR32_W10)) {
51 return peconv::LOAD_CONFIG_W10_VER;
52 }
53 if (curr_size >= sizeof(peconv::IMAGE_LOAD_CONFIG_DIR32_W8)) {
54 return peconv::LOAD_CONFIG_W8_VER;
55 }
56 if (curr_size >= sizeof(peconv::IMAGE_LOAD_CONFIG_DIR32_W7)) {
57 return peconv::LOAD_CONFIG_W7_VER;
58 }
59 }
60 return LOAD_CONFIG_UNK_VER;
61}
load_config_util.h
Fetching Load Config Directory and recognizing its version.
peconv::get_load_config_ptr
BYTE * get_load_config_ptr(BYTE *buffer, size_t buf_size)
Definition: load_config_util.cpp:4
peconv::validate_ptr
bool validate_ptr(IN const void *buffer_bgn, IN size_t buffer_size, IN const void *field_bgn, IN size_t field_size)
Definition: buffer_util.cpp:9
peconv::is64bit
bool is64bit(IN const BYTE *pe_buffer)
Definition: pe_hdrs_helper.cpp:117
peconv::get_load_config_version
t_load_config_ver get_load_config_version(BYTE *buffer, size_t buf_size, void *ld_config_ptr)
Definition: load_config_util.cpp:20
peconv::get_directory_entry
IMAGE_DATA_DIRECTORY * get_directory_entry(IN const BYTE *pe_buffer, IN DWORD dir_id, IN bool allow_empty=false)
Definition: pe_hdrs_helper.cpp:126
peconv::LOAD_CONFIG_NONE
@ LOAD_CONFIG_NONE
Definition: load_config_util.h:18
peconv::LOAD_CONFIG_UNK_VER
@ LOAD_CONFIG_UNK_VER
Definition: load_config_util.h:22
peconv::LOAD_CONFIG_W8_VER
@ LOAD_CONFIG_W8_VER
Definition: load_config_util.h:20
peconv::LOAD_CONFIG_W7_VER
@ LOAD_CONFIG_W7_VER
Definition: load_config_util.h:19
peconv::LOAD_CONFIG_W10_VER
@ LOAD_CONFIG_W10_VER
Definition: load_config_util.h:21
pe_hdrs_helper.h
Wrappers over various fields in the PE header. Read, write, parse PE headers.
peconv::_IMAGE_LOAD_CONFIG_DIR32_W10
Definition: load_config_defs.h:26
peconv::_IMAGE_LOAD_CONFIG_DIR32_W7
Definition: load_config_defs.h:183
peconv::_IMAGE_LOAD_CONFIG_DIR32_W8
Definition: load_config_defs.h:120
peconv::_IMAGE_LOAD_CONFIG_DIR64_W10
Definition: load_config_defs.h:73
peconv::_IMAGE_LOAD_CONFIG_DIR64_W7
Definition: load_config_defs.h:209
peconv::_IMAGE_LOAD_CONFIG_DIR64_W8
Definition: load_config_defs.h:151
Generated on Sat Apr 18 2026 00:29:41 for libPeConv by doxygen 1.9.5