1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
|
#define WIN32_LEAN_AND_MEAN // Exclude rarely-used stuff from Windows headers
#include <io.h>
#include <stdio.h>
#include <stdlib.h>
#include <windows.h>
#include "imagehlp.h"
#define SIZEOF(X) (sizeof(X)/sizeof(X[0]))
DWORD glbOffset = 0x12000000; // rebased offset by default
bool glbCheckMode = false;
//====[ Prints standard Win32 error message ]============================================
void PrintWin32Error( DWORD tErrorCode )
{
WCHAR tBuffer[ 1024 ];
FormatMessageW( FORMAT_MESSAGE_FROM_SYSTEM, NULL, GetLastError(), 0, tBuffer, SIZEOF( tBuffer ), NULL );
fputws( tBuffer, stdout );
fputc( '\n', stdout );
}
//====[ Trims trailing spaces ]==========================================================
char* rtrim( char *string )
{
if ( string == 0 )
return 0;
char* p = string + strlen( string ) - 1;
while ( p >= string )
{ if ( *p == ' ' || *p == '\t' || *p == '\n' || *p == '\r' )
*p-- = 0;
else
break;
}
return string;
}
//====[ Main ]===========================================================================
int main( int argc, char** argv )
{
fprintf( stderr, "DLL base address scheduler v.1.2, copyright 2001-2002 (c) George Hazan.\n\n" );
//----[ Command line parsing ]--------------------------------------------------------
for ( int i=1; i < argc; i++ )
{
if ( argv[ i ][ 0 ] != '/' )
{
LBL_Usage:
fprintf( stderr, "Usage: Rebaser.exe [/BASE:<hex_digit>] [/CHECK]\n" );
return 200;
}
if ( memicmp( &argv[ i ][ 1 ], "BASE:", 5 ) == 0 )
sscanf( &argv[ i ][ 6 ], "%08X", &glbOffset );
else if ( memicmp( &argv[ i ][ 1 ], "CHECK", 5 ) == 0 )
{
glbCheckMode = true;
glbOffset = 0x400000;
}
else goto LBL_Usage;
}
//----[ Command line ok, opening data files ]-----------------------------------------
fprintf( stdout, "Scanning DLLs...\n" );
int locResult = 0;
char locFileName[ MAX_PATH ];
while ( fgets( locFileName, sizeof( locFileName ), stdin ) != NULL )
{
rtrim( locFileName );
fprintf( stdout, "Processing '%s'...\n", locFileName );
//----| If we need to check files only, check them |-------------------------------
if ( glbCheckMode )
{
DWORD locOldImageSize, locOldBase, locNewSize, locNewBase;
if ( !ReBaseImage( locFileName, NULL, FALSE, FALSE, FALSE, FALSE, &locOldImageSize,
&locOldBase, &locNewSize, &locNewBase, 0 ))
PrintWin32Error( GetLastError() );
if ( locOldBase == glbOffset )
{
fprintf( stdout, "Image is not based\n\n" );
locResult = 2;
}
continue;
}
//----| Preparing files |----------------------------------------------------------
LBL_Ok:
HANDLE locFileHandle = CreateFile( locFileName, GENERIC_READ, 0, NULL, OPEN_EXISTING, FILE_ATTRIBUTE_NORMAL, 0 );
if ( locFileHandle == INVALID_HANDLE_VALUE )
{
fprintf( stdout, "File '%s' cannot be opened, skipped.\n\n", locFileName );
locResult = 2;
continue;
}
FILETIME locCreateTime, locAccessTime, locModifyTime;
GetFileTime( locFileHandle, &locCreateTime, &locAccessTime, &locModifyTime );
CloseHandle( locFileHandle );
//----| Processing |---------------------------------------------------------------
DWORD locOldImageSize, locOldBase, locNewSize;
if ( !ReBaseImage( locFileName, NULL, TRUE, FALSE, FALSE, FALSE, &locOldImageSize,
&locOldBase, &locNewSize, &glbOffset, 0 ))
{
PrintWin32Error( GetLastError() );
locResult = 2;
}
glbOffset += locNewSize;
//----| Write down the original file timestamp |-----------------------------------
locFileHandle = CreateFile( locFileName, GENERIC_WRITE, 0, NULL, OPEN_EXISTING, FILE_ATTRIBUTE_NORMAL, 0 );
if ( locFileHandle != INVALID_HANDLE_VALUE )
{
SetFileTime( locFileHandle, &locCreateTime, &locAccessTime, &locModifyTime );
CloseHandle( locFileHandle );
} }
return locResult;
}
|
