What the hell is InitCommonControlEx doing?

最新推荐文章于 2020-03-18 12:28:01 发布
最新推荐文章于 2020-03-18 12:28:01 发布
阅读量1k 收藏
点赞数
分类专栏: CS 文章标签: prototype class winapi function struct exe
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/tnttools/article/details/1627367
版权

Dedicated to those who never stop asking why.

By TNTTOOLS, The ART of Reverse Engieering.

Figure I. Prototype for InitCommonControls

void InitCommonControls(VOID);

Figure II. Implementation for InitCommonControls

InitCommonControls proc near
mov     eax, eax
retn
InitCommonControls endp

This function is simple, in fact, don't do anything. Why, This 'Placeholder' function is put in the IAT, Just telling the exe loader that comctl32.dll need to be loaded. Like God say let there be light, And there is. How about his brother InitCommonControlsEx(InitEx for abbreviation below.)

 

Figure 3. Prototype for InitCommonControlsEx

BOOL InitCommonControlsEx(      
    LPINITCOMMONCONTROLSEX lpInitCtrls
);

In the first, InitEx executes the parameter check, and Do something with ActiveContext. Then All important job is done in a loop. below is the psedu code.

Figure 4.

------------------------------------------------------------------------
typedef struct _INITCOMCTRLEX
{
    BOOL  (*InitRoutine)();
 LPWSTR ComCtrlName;
    DWORD  dwICC;
}INITCOMCTRLEX;

INITCOMCTRLEX  Icc[20];

extern HANDLE g_hinst;   // handle for CommCtl32.dll

BOOL WINAPI InitCommonControlsEx(
    LPINITCOMMONCONTROLSEX lpInitCtrls)
{

    PACTCTX  pAC;
    int tmp1;
 BOOL retval = TRUE;

// Parameter Check
// 参数检查

    if ( !lpInitCtrls || lpInitCtrls->dwSize != 8  )
        return FALSE;

// a buuuug
    if ( lpInitCtrls->dwICC & 0x7fffc000 )
        return FALSE;

    if ( !g_hinst )  // g_hinst: Handle of Comctl32.dll
        g_hinst = GetModuleHandleW(NULL);

    SHFusionInitializeFromModuleID(g_hinst,0x7C);
    SHActivateContext(&pAC);

 for(tmp1=0;tmp1<sizeof(Icc)/sizeof(INITCOMCTRLEX);tmp1++)
 {
     if ( lpInitCtrls->dwICC & Icc[tmp1].dwICC )
  {if ( !(retval=Icc[tmp1].InitRoutine()) )   break;}
 }

 SHDeactivateContext(&pAC);

 return retval;
}
------------------------------------------------------------------------

In the Loop, all InitRoutines are executed orderly. No big secret, A control class has a Init Routine that calls RegisterClassEx() to register the corrsponding class, like RebarWindow32, tooltips_class32, ...

Figure 5. The real Icc[] array

--------------------------------------------------------------------------

_icc            dd offset _InitToolbarClass

                dd offset aToolbarwindow3
                 dword_5D1E21E8  dd 4
                dd offset unk_5D198963
                dd offset aRebarwindow32 ; "ReBarWindow32"
                dd 400h
                dd offset sub_5D198CB3
                dd offset aTooltips_class ; "tooltips_class32"
                dd 0Eh
                dd offset sub_5D195A51
                dd offset aMsctls_statusb ; "msctls_statusbar32"
                dd 4
                dd offset sub_5D1D12CB
--------------------------------------------------------------------------

that's all the story. Enjoy it.

tnttools
关注
  • 0
    点赞
  • 0
    收藏
    觉得还不错? 一键收藏
  • 0
    评论
专栏目录
What is Hadoop? SQL Comparison
禅与计算机程序设计艺术
08-29 8480
What are the types of sampling in hive ?
禅与计算机程序设计艺术
09-09 8286
This recipe explains what are the types of sampling in hive. Recipe Objective In big data scenarios , when data volume is huge, we may need to find a subset of data to speed up data analysis. Here com...
InitCommonControlsex
jidongdong66的专栏
05-12 1610
InitCommonControlsex<br />     函数原形:invoke InitCommonControlsEx,lpInitCtrls   lpInitCtrls参数指向一个INITCOMMONCONTROLSEX结构:   INITCOMMONCONTROLSEX STRUCT   dwSize dd ? ;结构长度   dwICC dd ? ;需要初始化的类   INITCOMMONCONTROLSEX ENDS   结构中的dwICC字段指定了需要注册的扩展通用控件类,与InitCom
InitCommonControlsex详解
少说话,多实践,坚持再坚持
05-26 5466
InitCommonControlsex详解
InitCommonControls
qq_20848403的博客
08-27 1471
InitCommonControls和InitCommonControlsEx    从Win95开始,Windows提供了一些新的Win32控件,称为通用控件. 如:Toolbar,Status bar,Tree view,List view,Animation,Hot-key,Image list,Tab等等.这些控件的可执行代码都放在comctl32.dll中.要使用通用控件,必须加载co...
What Is MLAG Networking?
felali的博客
06-28 2324
When buying a layer 3 capable 10GbE switch, we usually see product obviously described as owning multiple advanced features like MLAG, IPv4/IPv6 and sFLOW. But many people don’t know what they refer t...
[程序员必读计算机书籍] What is the single most influential book every programmer should read?...
禅与计算机程序设计艺术
11-15 8595
Structure and Interpretation of Computer Programs Code Complete (2nd edition) by Steve McConnell The Pragmatic Programmer The C Programming Language by Kernighan and Ritchie Introductio...
What is DDS? 什么是DDS?(Data Distribute Service,数据分发服务)
热门推荐
DDS技术交流推广大本营
03-18 1万+
What is DDS? 什么是DDS?(Data Distribute Service,数据分发服务) 关键字:数据分发服务 DDS The Proven Data Connectivity Standard for the Industrial Interet of Things 经验证的工业物联网数据连接标准 The Data Distribution Service (DDS™) is a...
InitCommonControls()
a498506133的专栏
09-20 2166
函数InitCommonControls是个空函数,不做任何事情。 但如果你调用了该函数,则链接器会将你的程序链接到comctl32.lib,然后在程序启动时,会加载comctl32.dll。 真正初始化的工作是在该库的入口点处做的,在这里会注册通用控件窗口类。 然后应用程序就可以创建控件窗口,就象创建其它的子窗口控件一样。 !!!!!!!!!!!!!!!!!!!!!!!!
Win32 common control(Statusbar)
jhb92的专栏
08-04 1424
common control 发送notification 到父窗口,当事件发生时。这是通用控件的设计方法!common control也是窗口,也就有window class,也能使用一般的窗口函数处理他们。一些发送WM_COMMAND消息给父窗口,一些但是使用WM_NOTIFY来通知父窗口代码如://子控件发送WM_COMMAND,而在父窗口处理函数中处理他们,为什么他们不给自己的
CreateDialog Win32 API调用的一个小问题
cteng的专栏
11-03 1559
在老版本的VC编译器上,关键调用是以下2句:     InitCommonDialogs();     HWND hwndDialog = CreateDialog(hInstance, "IDD_XXX", ...); 但是在新版本的VS上,InitCommonDialogs这个API似乎已经没了,而CreateDialog还有,问题是,对话框的界面出不来,什么原因呢?
error LNK2019: 无法解析的外部符号 __imp__InitCommonControlsEx@4,该符号在函数 _WinMainN@16 中被引用
cqhaotian的专栏
11-08 4340
Windows提供了一系列的win32控件,这些控件的可执行代码都放在comctl32.dll中,要使用通用控件,必须加载comctl32.dll。 InitCommonControls或InitCommonControlsEx来初始化控件。这两个函数都是动态链接库comctl32.dll中的函数,两个函数的原型如下:         void InitCommonControls(V
ActionServlet的init()方法
Java之路
05-31 680
 //struts1.1    public void init() throws ServletException {  /*   1. Initialize the framework’s internal message bundle. These messages are used to   output informational, warning, and error messages
Windows CE开发常见问题解答
weixin_30383279的博客
08-29 4671
转自: http://blog.csdn.net/slyzhang/article/details/6110490 1.怎样在一个控件获得焦点时打开软键盘?比如一个EditBox获得焦点后,这个时候自动打开软键盘,这样可以方便用户输入——SIPINFO、SHSIPINFO、SIPSETINFO、SIPGETINFO里面有些参数弄不明白//隐藏输入面板BOOL LowerSip(){BOOL fR...
What is the State chart Diagram?
最新发布
03-29
A state chart diagram is a graphical representation of the behavior of a system or object, depicting the states that the system or object can be in and the transitions between those states. It is also...
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值