libpeconv/load__config__util_8cpp_source.html

#include "peconv/load_config_util.h"

#include "peconv/pe_hdrs_helper.h"


BYTE* peconv::get_load_config_ptr(BYTE* buffer, size_t buf_size)

{

    if (!buffer || !buf_size) return nullptr;

    IMAGE_DATA_DIRECTORY* dir = peconv::get_directory_entry(buffer, IMAGE_DIRECTORY_ENTRY_LOAD_CONFIG);

    if (!dir) {

        return 0;

    }

    DWORD entry_rva = dir->VirtualAddress;

    DWORD entry_size = dir->Size;

    if (!peconv::validate_ptr(buffer, buf_size, buffer + entry_rva, entry_size)) {

        return 0;

    }

    IMAGE_LOAD_CONFIG_DIRECTORY32* ldc = reinterpret_cast<IMAGE_LOAD_CONFIG_DIRECTORY32*>((ULONG_PTR)buffer + entry_rva);

    return reinterpret_cast<BYTE*>(ldc);

}


peconv::t_load_config_ver peconv::get_load_config_version(BYTE* buffer, size_t buf_size, BYTE* ld_config_ptr)

{

    if (!buffer || !buf_size || !ld_config_ptr) {

        return peconv::LOAD_CONFIG_NONE;

    }

    bool is64b = peconv::is64bit(buffer);


    if (!peconv::validate_ptr(buffer, buf_size, ld_config_ptr, sizeof(peconv::IMAGE_LOAD_CONFIG_DIR32_W7))) {

        return peconv::LOAD_CONFIG_NONE;

    }


    peconv::IMAGE_LOAD_CONFIG_DIR32_W7* smallest = (peconv::IMAGE_LOAD_CONFIG_DIR32_W7*)ld_config_ptr;

    const size_t curr_size = smallest->Size;


    if (is64b) {

        switch (curr_size) {

        case sizeof(peconv::IMAGE_LOAD_CONFIG_DIR64_W7) :

            return peconv::LOAD_CONFIG_W7_VER;

        case sizeof(peconv::IMAGE_LOAD_CONFIG_DIR64_W8) :

            return peconv::LOAD_CONFIG_W8_VER;

        case sizeof(peconv::IMAGE_LOAD_CONFIG_DIR64_W10) :

            return peconv::LOAD_CONFIG_W10_VER;

        default:

            return LOAD_CONFIG_UNK_VER;

        }

    }

    else {

        switch (curr_size) {

        case sizeof(peconv::IMAGE_LOAD_CONFIG_DIR32_W7) :

            return peconv::LOAD_CONFIG_W7_VER;

        case sizeof(peconv::IMAGE_LOAD_CONFIG_DIR32_W8) :

            return peconv::LOAD_CONFIG_W8_VER;

        case sizeof(peconv::IMAGE_LOAD_CONFIG_DIR32_W10) :

            return peconv::LOAD_CONFIG_W10_VER;

        default:

            return LOAD_CONFIG_UNK_VER;

        }

    }

    return LOAD_CONFIG_UNK_VER;

}


parse_delayed_desc
bool parse_delayed_desc(BYTE *modulePtr, const size_t moduleSize, const ULONGLONG img_base, LPSTR lib_name, const T_FIELD ordinal_flag, IMAGE_DELAYLOAD_DESCRIPTOR *desc, peconv::t_function_resolver *func_resolver)
Definition delayed_imports_loader.cpp:26

load_config_util.h
Fetching Load Config Directory and recognizing its version.

peconv::IMAGE_LOAD_CONFIG_DIR64_W10
struct peconv::_IMAGE_LOAD_CONFIG_DIR64_W10 IMAGE_LOAD_CONFIG_DIR64_W10

peconv::get_load_config_ptr
BYTE * get_load_config_ptr(BYTE *buffer, size_t buf_size)
Definition load_config_util.cpp:4

peconv::get_load_config_version
t_load_config_ver get_load_config_version(BYTE *buffer, size_t buf_size, BYTE *ld_config_ptr)
Definition load_config_util.cpp:20

peconv::IMAGE_LOAD_CONFIG_DIR32_W8
struct peconv::_IMAGE_LOAD_CONFIG_DIR32_W8 IMAGE_LOAD_CONFIG_DIR32_W8

peconv::IMAGE_LOAD_CONFIG_DIR32_W10
struct peconv::_IMAGE_LOAD_CONFIG_DIR32_W10 IMAGE_LOAD_CONFIG_DIR32_W10

peconv::validate_ptr
bool validate_ptr(IN const void *buffer_bgn, IN size_t buffer_size, IN const void *field_bgn, IN size_t field_size)
Definition buffer_util.cpp:9

peconv::IMAGE_LOAD_CONFIG_DIR64_W8
struct peconv::_IMAGE_LOAD_CONFIG_DIR64_W8 IMAGE_LOAD_CONFIG_DIR64_W8

peconv::IMAGE_LOAD_CONFIG_DIR64_W7
struct peconv::_IMAGE_LOAD_CONFIG_DIR64_W7 IMAGE_LOAD_CONFIG_DIR64_W7

peconv::is64bit
bool is64bit(IN const BYTE *pe_buffer)
Definition pe_hdrs_helper.cpp:121

peconv::get_directory_entry
IMAGE_DATA_DIRECTORY * get_directory_entry(IN const BYTE *pe_buffer, IN DWORD dir_id, IN bool allow_empty=false)
Definition pe_hdrs_helper.cpp:130

peconv::IMAGE_LOAD_CONFIG_DIR32_W7
struct peconv::_IMAGE_LOAD_CONFIG_DIR32_W7 IMAGE_LOAD_CONFIG_DIR32_W7

peconv::t_load_config_ver
t_load_config_ver
Definition load_config_util.h:17

peconv::LOAD_CONFIG_NONE
@ LOAD_CONFIG_NONE
Definition load_config_util.h:18

peconv::LOAD_CONFIG_UNK_VER
@ LOAD_CONFIG_UNK_VER
Definition load_config_util.h:22

peconv::LOAD_CONFIG_W8_VER
@ LOAD_CONFIG_W8_VER
Definition load_config_util.h:20

peconv::LOAD_CONFIG_W7_VER
@ LOAD_CONFIG_W7_VER
Definition load_config_util.h:19

peconv::LOAD_CONFIG_W10_VER
@ LOAD_CONFIG_W10_VER
Definition load_config_util.h:21

pe_hdrs_helper.h
Wrappers over various fields in the PE header. Read, write, parse PE headers.

peconv::_IMAGE_LOAD_CONFIG_DIR32_W7
Definition load_config_defs.h:183

peconv::_IMAGE_LOAD_CONFIG_DIR32_W7::Size
DWORD Size
Definition load_config_defs.h:184