垃圾代码收集处 | 学步园

返回顶部
查看留言
转到底部

现在的位置: 首页 > 综合 > 正文

垃圾代码收集处

2013年10月07日 ⁄ 综合 ⁄ 共 2446字 ⁄ 字号小中大 ⁄ 评论关闭

typedef struct CODE
{
	int Ptr[4 * 4];
}*LPCODE;
/*__declspec(naked) */static LPVOID WINAPI Alloc(HANDLE hHeap, DWORD dwFlags, SIZE_T dwBytes)
{
	return AppBase::Allocate(dwBytes);
}
/*__declspec(naked) */static LPVOID WINAPI ReAlloc(HANDLE hHeap, DWORD dwFlags, LPVOID lpMem, SIZE_T dwBytes)
{
	return AppBase::ReAlloc(lpMem, dwBytes);
}
/*__declspec(naked) */static BOOL WINAPI Collect(HANDLE hHeap, DWORD dwFlags, LPVOID lpMem)
{
	AppBase::Collect(lpMem);
	return TRUE;
}
/*__declspec(naked) */static BOOL WINAPI Validate(HANDLE hHeap,DWORD dwFlags,LPVOID lpMem)
{
	return AppBase::Validate(lpMem)? TRUE : FALSE;
}
/*__declspec(naked) */static SIZE_T WINAPI SizeOf(HANDLE hHeap,DWORD dwFlags, LPVOID lpMem)
{
	return AppBase::GetSize(lpMem);
}
void hook()
{
	LPCODE pCode = (LPCODE)(HeapAlloc), pCodeConst;
	LONG   nCode = 0;
	__asm 
	{
		mov eax, offset X86_CODE_BEGIN
		mov pCodeConst, eax
		mov nCode, offset X86_CODE_END
		sub nCode, eax
	}
	System::IO::MemoryAllocator::Protect(AppBase::GetCurrentProcess(), pCode, nCode, RLIB_PAGE_EXECUTE_READWRITE);
	System::IO::Memory::memcpy(pCode, pCodeConst, nCode);
	goto X86_CODE_END;
X86_CODE_BEGIN:
	__asm
	{
		push Alloc
			ret
	}
X86_CODE_END:
	pCode = (LPCODE)(HeapFree);
	__asm 
	{
		mov eax, offset X86_CODE_BEGIN_X
		mov pCodeConst, eax
		mov nCode, offset X86_CODE_END_X
		sub nCode, eax
	}
	System::IO::MemoryAllocator::Protect(AppBase::GetCurrentProcess(), pCode, nCode, RLIB_PAGE_EXECUTE_READWRITE);
	System::IO::Memory::memcpy(pCode, pCodeConst, nCode);
	goto X86_CODE_END_X;
X86_CODE_BEGIN_X:
	__asm
	{
		push Collect
		ret
	}
X86_CODE_END_X:
	pCode = (LPCODE)(HeapReAlloc);
	__asm 
	{
		mov eax, offset X86_CODE_BEGIN_Z
		mov pCodeConst, eax
		mov nCode, offset X86_CODE_END_Z
		sub nCode, eax
	}
	System::IO::MemoryAllocator::Protect(AppBase::GetCurrentProcess(), pCode, nCode, RLIB_PAGE_EXECUTE_READWRITE);
	System::IO::Memory::memcpy(pCode, pCodeConst, nCode);
	goto X86_CODE_END_Z;
X86_CODE_BEGIN_Z:
	__asm
	{
		push ReAlloc
		ret
	}
X86_CODE_END_Z:
	pCode = (LPCODE)(HeapValidate);
	__asm 
	{
		mov eax, offset X86_CODE_BEGIN_A
		mov pCodeConst, eax
		mov nCode, offset X86_CODE_END_A
		sub nCode, eax
	}
	System::IO::MemoryAllocator::Protect(AppBase::GetCurrentProcess(), pCode, nCode, RLIB_PAGE_EXECUTE_READWRITE);
	System::IO::Memory::memcpy(pCode, pCodeConst, nCode);
	goto X86_CODE_END_A;
X86_CODE_BEGIN_A:
	__asm
	{
		push Validate
		ret
	}
X86_CODE_END_A:
	pCode = (LPCODE)(HeapSize);
	__asm 
	{
		mov eax, offset X86_CODE_BEGIN_V
		mov pCodeConst, eax
		mov nCode, offset X86_CODE_END_V
		sub nCode, eax
	}
	System::IO::MemoryAllocator::Protect(AppBase::GetCurrentProcess(), pCode, nCode, RLIB_PAGE_EXECUTE_READWRITE);
	System::IO::Memory::memcpy(pCode, pCodeConst, nCode);
	goto X86_CODE_END_V;
X86_CODE_BEGIN_V:
	__asm
	{
		push SizeOf
		ret
	}
X86_CODE_END_V:
	return;
}

返回

【上篇】Android初级教程_类似九宫格的程序锁
【下篇】intelliFlow工作流系统可以支持复杂组织机构中的任务分派要求

作者: fathom

该日志由 fathom 于11年前发表在综合分类下，最后更新于 2013年10月07日.
转载请注明: 垃圾代码收集处 | 学步园 +复制链接

抱歉!评论已关闭.

返回首页

Copyright © 2013-2018 学步园保留所有权利.
软文销售 QQ客服：2265327166

点击这里给我发消息

（其他合作也可洽谈）