encounter
/
sjiswrap
mirror of https://github.com/encounter/sjiswrap.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
sjiswrap/src/main.rs

495 lines
17 KiB
Rust
Raw Blame History

#![allow(non_snake_case, clippy::let_and_return)]
use std::{
borrow::Cow,
cmp::min,
collections::{hash_map::Entry, HashMap},
ffi::{c_char, c_void, CStr, CString, OsStr, OsString},
fs::File,
io::Read,
iter::{Cloned, Peekable},
mem::MaybeUninit,
path::{Path, PathBuf},
process::exit,
};
use anyhow::{Context, Result};
use encoding_rs::SHIFT_JIS;
use rustc_hash::FxHashMap;
use windows::{
core::{PCSTR, PCWSTR},
Win32::{
Foundation::{
CloseHandle, GetLastError, SetLastError, BOOL, ERROR_INSUFFICIENT_BUFFER,
GENERIC_ACCESS_RIGHTS, GENERIC_READ, HANDLE, HMODULE, INVALID_HANDLE_VALUE,
},
Security::SECURITY_ATTRIBUTES,
Storage::FileSystem::{
CreateFileA, GetFileSize, GetFullPathNameA, ReadFile, SetFilePointer, FILE_BEGIN,
FILE_CREATION_DISPOSITION, FILE_CURRENT, FILE_END, FILE_FLAGS_AND_ATTRIBUTES,
FILE_SHARE_MODE, SET_FILE_POINTER_MOVE_METHOD,
},
System::{Environment::GetCommandLineA, LibraryLoader::SetDllDirectoryA, IO::OVERLAPPED},
},
};
/// Whether to hook and encode a file.
fn is_text_file(path: &Path) -> bool {
let Some(ext) = path.extension() else {
return false;
};
ext == OsStr::new("c")
|| ext == OsStr::new("cc")
|| ext == OsStr::new("cp")
|| ext == OsStr::new("cpp")
|| ext == OsStr::new("cxx")
|| ext == OsStr::new("h")
|| ext == OsStr::new("hh")
|| ext == OsStr::new("hp")
|| ext == OsStr::new("hpp")
|| ext == OsStr::new("hxx")
}
macro_rules! debug_println {
($($arg:tt)*) => {
#[cfg(feature = "debug")]
{
// Writing to console will overwrite LastError
let err = unsafe { GetLastError() };
eprintln!($($arg)*);
unsafe { SetLastError(err) };
}
};
}
fn main() -> Result<()> {
let args: Vec<OsString> = std::env::args_os().collect();
if args.len() < 2 {
println!("Usage: {} <exe>", args[0].to_string_lossy());
exit(1);
}
let path = PathBuf::from(&args[1]);
let abs_path_cstr =
get_full_path(&CString::new(path.as_os_str().to_string_lossy().as_ref()).unwrap())
.context("Failed to get absolute executable path")?;
let abs_path = PathBuf::from(abs_path_cstr.to_string_lossy().as_ref());
let parent = abs_path.parent().context("Failed to get absolute executable parent directory")?;
let parent_cstr = CString::new(parent.as_os_str().to_string_lossy().as_ref()).unwrap();
unsafe { SetDllDirectoryA(PCSTR(parent_cstr.as_ptr() as *const u8)) }
.ok()
.context("SetDllDirectoryA() failed")?;
debug_println!("SetDllDirectoryA({:?})", parent.to_string_lossy());
unsafe {
GLOBAL_STATE =
MaybeUninit::new(GlobalState { exe_path: abs_path_cstr, ..Default::default() })
};
let mut buf = Vec::new();
File::open(&path)
.with_context(|| format!("Failed to open executable: '{}'", path.display()))?
.read_to_end(&mut buf)
.with_context(|| format!("Failed to read executable: '{}'", path.display()))?;
let mut hooks = HashMap::new();
hooks.insert("kernel32.dll!GetCommandLineA".into(), hook_GetCommandLineA as *const c_void);
hooks.insert("kernel32.dll!GetCommandLineW".into(), hook_GetCommandLineW as *const c_void);
hooks.insert("kernel32.dll!CreateFileA".into(), hook_CreateFileA as *const c_void);
hooks.insert("kernel32.dll!CreateFileW".into(), hook_CreateFileW as *const c_void);
hooks.insert("kernel32.dll!GetFileSize".into(), hook_GetFileSize as *const c_void);
hooks.insert("kernel32.dll!CloseHandle".into(), hook_CloseHandle as *const c_void);
hooks.insert("kernel32.dll!ReadFile".into(), hook_ReadFile as *const c_void);
hooks.insert("kernel32.dll!SetFilePointer".into(), hook_SetFilePointer as *const c_void);
hooks.insert("kernel32.dll!IsDBCSLeadByte".into(), hook_IsDBCSLeadByte as *const c_void);
hooks
.insert("kernel32.dll!GetModuleFileNameA".into(), hook_GetModuleFileNameA as *const c_void);
unsafe { memexec::memexec_exe_with_hooks(&buf, &hooks) }.expect("Failed to execute");
Ok(())
}
/// File that has been read into memory and encoded.
struct FileHandle {
path: PathBuf,
pos: u64,
}
/// Global state shared between hooks.
#[derive(Default)]
struct GlobalState {
exe_path: CString,
cmdline: Option<CString>,
encoded_files: FxHashMap<PathBuf, Vec<u8>>,
file_handles: FxHashMap<isize, FileHandle>,
}
impl GlobalState {
fn file_by_handle(&mut self, handle: HANDLE) -> Option<(&mut FileHandle, &[u8])> {
self.file_handles
.get_mut(&handle.0)
.and_then(|file| self.encoded_files.get(&file.path).map(|data| (file, data.as_slice())))
}
}
static mut GLOBAL_STATE: MaybeUninit<GlobalState> = MaybeUninit::uninit();
/// `GetCommandLineA` hook. Skips our own executable name and replaces the subprocess path with an absolute path.
extern "stdcall" fn hook_GetCommandLineA() -> PCSTR {
let state = unsafe { GLOBAL_STATE.assume_init_mut() };
if let Some(str) = &state.cmdline {
return PCSTR(str.as_ptr() as *const u8);
}
fn next_arg<'a>(
iter: &mut Peekable<Cloned<impl Iterator<Item = &'a u8>>>,
mut cb: impl FnMut(u8),
) {
while iter.peek().cloned() == Some(b' ') {
iter.next();
}
let mut quoted = false;
if iter.peek().cloned() == Some(b'"') {
quoted = true;
iter.next();
}
loop {
let Some(c) = iter.next() else {
if quoted {
panic!("GetCommandLineA(): Unterminated quoted string");
}
break;
};
if quoted {
if c == b'"' {
let next = iter.next();
if next != Some(b' ') && next.is_some() {
panic!(
"GetCommandLineA(): Expected space after quote, got '{}'",
char::from(next.unwrap())
);
}
break;
}
} else if c == b' ' {
break;
}
cb(c);
}
}
let cmdline = unsafe { GetCommandLineA() };
let cmdline = unsafe { cmdline.as_bytes() };
let mut iter = cmdline.iter().cloned().peekable();
next_arg(&mut iter, |_| {}); // Skip executable name
let mut exe = Vec::new();
next_arg(&mut iter, |c| exe.push(c));
exe.push(0);
let absolute_path =
get_full_path(unsafe { CStr::from_bytes_with_nul_unchecked(exe.as_slice()) })
.expect("Failed to get absolute path");
let mut cmdline = vec![b'"'];
cmdline.extend_from_slice(absolute_path.as_bytes());
cmdline.push(b'"');
if iter.peek().is_some() {
cmdline.push(b' ');
cmdline.extend(iter);
}
cmdline.push(0);
state.cmdline = Some(unsafe { CString::from_vec_with_nul_unchecked(cmdline) });
PCSTR(state.cmdline.as_ref().unwrap().as_ptr() as *const u8)
}
/// `GetCommandLineW` hook. Currently unsupported.
extern "stdcall" fn hook_GetCommandLineW() -> PCSTR {
panic!("GetCommandLineW() is not supported");
}
/// Read a file into memory and encode it as Shift JIS.
fn encode_file(handle: HANDLE, path: &Path) {
let state = unsafe { GLOBAL_STATE.assume_init_mut() };
state.file_handles.insert(handle.0, FileHandle { path: path.to_path_buf(), pos: 0 });
let Entry::Vacant(entry) = state.encoded_files.entry(path.to_path_buf()) else {
debug_println!("File already cached: {}", path.display());
return;
};
let mut filesize_high = 0u32;
let mut filesize = unsafe { GetFileSize(handle, Some(&mut filesize_high)) } as u64;
filesize |= (filesize_high as u64) << 32;
if filesize >= u32::MAX as u64 {
return;
}
let mut data = vec![0u8; filesize as usize];
let mut bytes_read = 0u32;
if !unsafe {
ReadFile(
handle,
Some(data.as_mut_ptr() as *mut c_void),
data.len() as u32,
Some(&mut bytes_read),
None,
)
}
.as_bool()
|| bytes_read != filesize as u32
{
return;
}
let str = unsafe { std::str::from_utf8_unchecked(&data) };
let (encoded, _, _) = SHIFT_JIS.encode(str);
match encoded {
Cow::Borrowed(_) => {
// No modifications were made, use the original data
entry.insert(data);
}
Cow::Owned(data) => {
entry.insert(data);
}
}
}
/// `CreateFileA` hook. If it's a text file, read it into memory and encode it as Shift-JIS.
extern "stdcall" fn hook_CreateFileA(
lpFileName: PCSTR,
dwDesiredAccess: GENERIC_ACCESS_RIGHTS,
dwShareMode: FILE_SHARE_MODE,
lpSecurityAttributes: *const SECURITY_ATTRIBUTES,
dwCreationDisposition: FILE_CREATION_DISPOSITION,
dwFlagsAndAttributes: FILE_FLAGS_AND_ATTRIBUTES,
hTemplateFile: HANDLE,
) -> HANDLE {
let ret = unsafe {
CreateFileA(
lpFileName,
dwDesiredAccess.0,
dwShareMode,
Some(lpSecurityAttributes),
dwCreationDisposition,
dwFlagsAndAttributes,
hTemplateFile,
)
}
.unwrap_or(INVALID_HANDLE_VALUE);
let err = unsafe { GetLastError() };
let path = PathBuf::from(
unsafe { CStr::from_ptr(lpFileName.as_ptr() as *const c_char) }
.to_str()
.expect("CreateFileA(): Path is not valid UTF-8"),
);
if !ret.is_invalid() && dwDesiredAccess == GENERIC_READ && is_text_file(&path) {
encode_file(ret, &path);
}
debug_println!(
"CreateFileA({}, {:#X}) = {:#X}",
path.display(),
dwDesiredAccess.0,
ret.0 as u32
);
unsafe { SetLastError(err) };
ret
}
/// `CreateFileW` hook. Currently unsupported.
extern "stdcall" fn hook_CreateFileW(
_lpFileName: PCWSTR,
_dwDesiredAccess: GENERIC_ACCESS_RIGHTS,
_dwShareMode: FILE_SHARE_MODE,
_lpSecurityAttributes: *const SECURITY_ATTRIBUTES,
_dwCreationDisposition: FILE_CREATION_DISPOSITION,
_dwFlagsAndAttributes: FILE_FLAGS_AND_ATTRIBUTES,
_hTemplateFile: HANDLE,
) -> HANDLE {
panic!("CreateFileW() is not supported");
}
/// `GetFileSize` hook. If the file was read into memory, return that size instead.
extern "stdcall" fn hook_GetFileSize(hFile: HANDLE, lpFileSizeHigh: *mut u32) -> u32 {
if !hFile.is_invalid() {
let state = unsafe { GLOBAL_STATE.assume_init_mut() };
if let Some((_handle, data)) = state.file_by_handle(hFile) {
debug_println!("OVERRIDE: GetFileSize({:#X}) = {:#X}", hFile.0, data.len() as u32);
return data.len() as u32;
}
}
let ret = unsafe { GetFileSize(hFile, Some(lpFileSizeHigh)) };
debug_println!("GetFileSize({:#X}, {:?}) = {:#X}", hFile.0, lpFileSizeHigh, ret);
ret
}
/// `CloseHandle` hook. If the file was read into memory, free it.
extern "stdcall" fn hook_CloseHandle(hObject: HANDLE) -> BOOL {
if !hObject.is_invalid() {
let state = unsafe { GLOBAL_STATE.assume_init_mut() };
if let Some(handle) = state.file_handles.remove(&hObject.0) {
let _ = handle;
debug_println!("File handle removed: {:#X} ({})", hObject.0, handle.path.display());
// Purposefully leave the file data itself in the cache.
// mwcceppc in particular will read the same file multiple times.
}
}
let ret = unsafe { CloseHandle(hObject) };
debug_println!("CloseHandle({:#X}) = {:#X}", hObject.0, ret.0);
ret
}
/// `ReadFile` hook. If the file was read into memory, read from that instead.
extern "stdcall" fn hook_ReadFile(
hFile: HANDLE,
lpBuffer: *mut c_void,
nNumberOfBytesToRead: u32,
lpNumberOfBytesRead: *mut u32,
lpOverlapped: *mut OVERLAPPED,
) -> BOOL {
if !hFile.is_invalid() {
let state = unsafe { GLOBAL_STATE.assume_init_mut() };
if let Some((handle, data)) = state.file_by_handle(hFile) {
let count = min(
nNumberOfBytesToRead,
u32::try_from(data.len() as u64 - handle.pos).unwrap_or(u32::MAX),
);
unsafe {
std::ptr::copy_nonoverlapping(
data.as_ptr().offset(handle.pos as isize),
lpBuffer as *mut u8,
count as usize,
);
}
handle.pos += count as u64;
if !lpNumberOfBytesRead.is_null() {
unsafe { *lpNumberOfBytesRead = count };
}
debug_println!(
"OVERRIDE: ReadFile({:#X}, {:?}, {:#X}, {:?}) = {:#X}",
hFile.0,
lpBuffer,
nNumberOfBytesToRead,
lpNumberOfBytesRead,
count
);
return true.into();
}
}
let ret = unsafe {
ReadFile(
hFile,
Some(lpBuffer),
nNumberOfBytesToRead,
Some(lpNumberOfBytesRead),
Some(lpOverlapped),
)
};
debug_println!(
"ReadFile({:#X}, {:?}, {:#X}, {:?}) = {:#X}",
hFile.0,
lpBuffer,
nNumberOfBytesToRead,
lpNumberOfBytesRead,
ret.0
);
ret
}
/// `SetFilePointer` hook. If the file was read into memory, set the position in that instead.
extern "stdcall" fn hook_SetFilePointer(
hFile: HANDLE,
lDistanceToMove: i32,
lpDistanceToMoveHigh: *mut i32,
dwMoveMethod: SET_FILE_POINTER_MOVE_METHOD,
) -> u32 {
if !hFile.is_invalid() {
let state = unsafe { GLOBAL_STATE.assume_init_mut() };
if let Some((handle, data)) = state.file_by_handle(hFile) {
let distance_to_move_high =
if lpDistanceToMoveHigh.is_null() { 0 } else { unsafe { *lpDistanceToMoveHigh } };
let distance_to_move = lDistanceToMove as i64 | (distance_to_move_high as i64) << 32;
let file_size = data.len() as u64;
let pos = min(
match dwMoveMethod {
FILE_BEGIN => distance_to_move as u64,
FILE_CURRENT => handle.pos.saturating_add_signed(distance_to_move),
FILE_END => file_size.saturating_add_signed(distance_to_move),
_ => panic!("SetFilePointer(): Unsupported move method {:#X}", dwMoveMethod.0),
},
file_size,
);
handle.pos = pos;
debug_println!(
"OVERRIDE SetFilePointer({:#X}, {:#X}, {:?}, {}) = {:#X}",
hFile.0,
distance_to_move,
lpDistanceToMoveHigh,
dwMoveMethod.0,
pos
);
if !lpDistanceToMoveHigh.is_null() {
unsafe { *lpDistanceToMoveHigh = (pos >> 32) as i32 };
}
return pos as u32;
}
}
let ret =
unsafe { SetFilePointer(hFile, lDistanceToMove, Some(lpDistanceToMoveHigh), dwMoveMethod) };
debug_println!(
"SetFilePointer({:#X}, {:#X}, {:?}, {}) = {:#X}",
hFile.0,
lDistanceToMove,
lpDistanceToMoveHigh,
dwMoveMethod.0,
ret
);
ret
}
/// `IsDBCSLeadByte` hook. This normally uses the system codepage, override with Shift JIS behavior.
extern "stdcall" fn hook_IsDBCSLeadByte(TestChar: u8) -> BOOL { (TestChar & 0x80 != 0).into() }
/// `GetModuleFileNameA` hook. Return the absolute path of the executable.
extern "stdcall" fn hook_GetModuleFileNameA(
hModule: HMODULE,
lpFilename: *mut c_char,
nSize: u32,
) -> u32 {
let _ = hModule; // ?
let state = unsafe { GLOBAL_STATE.assume_init_ref() };
let path_bytes = state.exe_path.as_bytes(); // Without nul terminator
let ret = min(nSize.saturating_sub(1), path_bytes.len() as u32);
if !lpFilename.is_null() && ret > 0 {
unsafe {
std::ptr::copy_nonoverlapping(path_bytes.as_ptr(), lpFilename as *mut u8, ret as usize);
}
unsafe { *lpFilename.offset(ret as isize) = 0 };
}
#[cfg(feature = "debug")]
{
let slice = unsafe { std::slice::from_raw_parts(lpFilename as *const u8, ret as usize) };
let str = unsafe { std::str::from_utf8_unchecked(slice) };
eprintln!(
"OVERRIDE GetModuleFileNameA({:#X}, {:?}, {:#X}) = {:#X} ({})",
hModule.0, lpFilename, nSize, ret, str
);
}
if ret < path_bytes.len() as u32 {
unsafe { SetLastError(ERROR_INSUFFICIENT_BUFFER) };
}
ret
}
/// Get the absolute path of a file.
fn get_full_path(path: &CStr) -> Result<CString> {
let mut buf = [0u8; 4096];
let len =
unsafe { GetFullPathNameA(PCSTR(path.as_ptr() as *const u8), Some(buf.as_mut()), None) };
if len == 0 {
return Err(std::io::Error::last_os_error().into());
}
Ok(unsafe { CString::from_vec_with_nul_unchecked(buf[..len as usize + 1].to_vec()) })
}
Reference in New Issue View Git Blame Copy Permalink