Details | Last modification | View Log | RSS feed
| Rev | Author | Line No. | Line |
|---|---|---|---|
| 2783 | clevermous | 1 | format PE GUI 4.0 |
| 2 | section '.text' code readable executable |
||
| 3 | entry start |
||
| 4 | start: |
||
| 5 | xor ebx, ebx |
||
| 6 | mov esi, a2_src |
||
| 7 | mov edi, a2 |
||
| 8 | movsd |
||
| 9 | movsd |
||
| 10 | movsd |
||
| 11 | movsd |
||
| 12 | movsd |
||
| 13 | push 1 |
||
| 14 | call [SetErrorMode] |
||
| 15 | push ebx ; lpParam |
||
| 16 | push 400000h ; hInstance |
||
| 17 | push ebx ; hMenu |
||
| 18 | push ebx ; hWndParent |
||
| 19 | push 100 ; nHeight |
||
| 20 | push 200 ; nWidth |
||
| 21 | mov eax, 80000000h |
||
| 22 | push eax ; y |
||
| 23 | push eax ; x |
||
| 24 | push 10EF0140h ; dwStyle |
||
| 25 | push WndName |
||
| 26 | push ClassName |
||
| 27 | push 388h ; dwExStyle |
||
| 28 | call [CreateWindowExA] |
||
| 29 | xchg edi, eax |
||
| 30 | push 0Ah ; OEM_FIXED_FONT |
||
| 31 | call [GetStockObject] |
||
| 32 | push ebx |
||
| 33 | push eax |
||
| 34 | push 30h ; WM_SETFONT |
||
| 35 | call ListCommand |
||
| 36 | call CollectDrivesInfo |
||
| 37 | push MyWndProc |
||
| 38 | push -4 ; GWL_WNDPROC |
||
| 39 | push edi |
||
| 40 | call [SetWindowLongA] |
||
| 41 | mov [OldWndProc], eax |
||
| 42 | sub esp, 20h |
||
| 43 | mov esi, esp |
||
| 44 | @@: |
||
| 45 | push ebx |
||
| 46 | push ebx |
||
| 47 | push ebx |
||
| 48 | push esi |
||
| 49 | call [GetMessageA] |
||
| 50 | test eax, eax |
||
| 51 | jz @f |
||
| 52 | push esi |
||
| 53 | call [TranslateMessage] |
||
| 54 | push esi |
||
| 55 | call [DispatchMessageA] |
||
| 56 | jmp @b |
||
| 57 | @@: |
||
| 58 | add esp, 20h |
||
| 59 | ret |
||
| 60 | |||
| 61 | ListCommand: |
||
| 62 | pop eax |
||
| 63 | push edi |
||
| 64 | push eax |
||
| 65 | jmp [SendMessageA] |
||
| 66 | |||
| 67 | MyWndProc: |
||
| 68 | push edi ebx |
||
| 69 | xor ebx, ebx |
||
| 70 | mov edi, [esp+12] |
||
| 71 | cmp dword [esp+16], 2 ; WM_DESTROY |
||
| 72 | jnz @f |
||
| 73 | push ebx |
||
| 74 | call [PostQuitMessage] |
||
| 75 | @@: |
||
| 76 | cmp dword [esp+16], 219h ; WM_DEVICECHANGE |
||
| 77 | jnz w |
||
| 78 | cmp dword [esp+20], 8000h ; DBT_DEVICEARRIVAL |
||
| 79 | jz @f |
||
| 80 | cmp dword [esp+20], 8004h ; DBT_DEVICEREMOVECOMPLETE |
||
| 81 | jnz w |
||
| 82 | @@: |
||
| 83 | call UpdateDrivesInfo |
||
| 84 | w: |
||
| 85 | cmp dword [esp+16], 203h ; WM_LBUTTONDBLCLK |
||
| 86 | jnz @f |
||
| 87 | push ebx |
||
| 88 | push ebx |
||
| 89 | push 188h ; LB_GETCURSEL |
||
| 90 | call ListCommand |
||
| 91 | cmp eax, -1 |
||
| 92 | jz @f |
||
| 93 | push n |
||
| 94 | push eax |
||
| 95 | push 189h ; LB_GETTEXT |
||
| 96 | call ListCommand |
||
| 97 | mov eax, n |
||
| 98 | mov byte [eax+2], bl |
||
| 99 | mov edx, [eax] |
||
| 100 | mov [mtldr_out], dl |
||
| 101 | mov dword [eax], '\\.\' |
||
| 102 | mov dword [eax+4], edx |
||
| 103 | call install |
||
| 104 | @@: |
||
| 105 | pop ebx edi |
||
| 106 | pop eax |
||
| 107 | push [OldWndProc] |
||
| 108 | push eax |
||
| 109 | jmp [CallWindowProcA] |
||
| 110 | |||
| 111 | UpdateDrivesInfo: |
||
| 112 | push ebx |
||
| 113 | push ebx |
||
| 114 | push 184h ; LB_RESETCONTENT |
||
| 115 | call ListCommand |
||
| 116 | |||
| 117 | CollectDrivesInfo: |
||
| 118 | push esi |
||
| 119 | call [GetLogicalDrives] |
||
| 120 | mov esi, eax |
||
| 121 | mov edx, a |
||
| 122 | mov byte [edx], 'A' |
||
| 123 | l: |
||
| 124 | shr esi, 1 |
||
| 125 | jnc d |
||
| 126 | mov [edx+2], bl |
||
| 127 | push edx |
||
| 128 | call [GetDriveTypeA] |
||
| 129 | ; Uncomment following lines to allow hard drives |
||
| 130 | ; cmp eax, 3 ; DRIVE_FIXED |
||
| 131 | ; jz @f |
||
| 132 | cmp eax, 2 ; DRIVE_REMOVABLE |
||
| 133 | jnz d |
||
| 134 | push ebx ; hTemplateFile |
||
| 135 | push ebx ; dwFlagsAndAttributes |
||
| 136 | push 3 ; dwCreationDisposition = OPEN_EXISTING |
||
| 137 | push ebx ; lpSecurityAttributes |
||
| 138 | push 3 ; dwShareMode = FILE_SHARE_READ|FILE_SHARE_WRITE |
||
| 139 | push ebx ; dwDesiredAccess |
||
| 140 | push a2 |
||
| 141 | call [CreateFileA] |
||
| 142 | cmp eax, -1 |
||
| 143 | jz d |
||
| 144 | push eax |
||
| 145 | push ebx |
||
| 146 | mov ecx, esp |
||
| 147 | push ebx ; lpOverlapped |
||
| 148 | push ecx ; lpBytesReturned |
||
| 149 | push 1024 ; nOutBufferSize |
||
| 150 | push n ; lpOutBuffer |
||
| 151 | push ebx |
||
| 152 | push ebx |
||
| 153 | push 70C00h ; IOCTL_DISK_GET_MEDIA_TYPES |
||
| 154 | push eax |
||
| 155 | call [DeviceIoControl] |
||
| 156 | pop ecx |
||
| 157 | pop eax |
||
| 158 | push ecx |
||
| 159 | push eax |
||
| 160 | call [CloseHandle] |
||
| 161 | pop ecx |
||
| 162 | jecxz @f ; not supported => OK |
||
| 163 | cmp byte [n+8], 11 |
||
| 164 | jnz d |
||
| 165 | @@: |
||
| 166 | mov eax, a |
||
| 167 | mov ecx, n |
||
| 168 | mov byte [eax+2], '\' |
||
| 169 | push ecx |
||
| 170 | push ebx ; nFileSystemNameSize |
||
| 171 | push ebx ; lpFileSystemNameBuffer |
||
| 172 | push ebx ; lpFileSystemFlags |
||
| 173 | push ebx ; lpMaximumComponentLength |
||
| 174 | push ebx ; lpVolumeSerialNumber |
||
| 175 | push 1024 ; nVolumeNameSize |
||
| 176 | mov edx, [eax] |
||
| 177 | mov [ecx], edx |
||
| 178 | mov word [ecx+3], ' [' |
||
| 179 | add ecx, 5 |
||
| 180 | mov byte [ecx], bl |
||
| 181 | push ecx ; lpVolumeNameBuffer |
||
| 182 | push eax ; lpRootPathName |
||
| 183 | call [GetVolumeInformationA] |
||
| 184 | pop eax |
||
| 185 | push eax |
||
| 186 | cmp byte [eax+5], bl |
||
| 187 | jz nol |
||
| 188 | @@: |
||
| 189 | inc eax |
||
| 190 | cmp byte [eax-1], bl |
||
| 191 | jnz @b |
||
| 192 | mov word [eax-1], ']' |
||
| 193 | ; jmp @f |
||
| 194 | nol: |
||
| 195 | mov byte [eax+3], bl |
||
| 196 | @@: |
||
| 197 | push ebx |
||
| 198 | push 180h ; LB_ADDSTRING |
||
| 199 | call ListCommand |
||
| 200 | d: |
||
| 201 | mov edx, a |
||
| 202 | inc byte [edx] |
||
| 203 | test esi, esi |
||
| 204 | jnz l |
||
| 205 | pop esi |
||
| 206 | ret |
||
| 207 | |||
| 208 | install: |
||
| 209 | push ebx ; hTemplateFile |
||
| 210 | push ebx ; dwFlagsAndAttributes |
||
| 211 | push 3 ; dwCreationDisposition = OPEN_EXISTING |
||
| 212 | push ebx ; lpSecurityAttributes |
||
| 213 | push 3 ; dwShareMode = FILE_SHARE_READ|FILE_SHARE_WRITE |
||
| 214 | push 0C0000000h ; dwDesiredAccess = GENERIC_READ|GENERIC_WRITE |
||
| 215 | push eax |
||
| 216 | call [CreateFileA] |
||
| 217 | cmp eax, -1 |
||
| 218 | jz deverre |
||
| 219 | push esi ebp |
||
| 220 | mov ebp, bootsect_dev |
||
| 221 | xchg esi, eax |
||
| 222 | push eax |
||
| 223 | mov eax, esp |
||
| 224 | push ebx |
||
| 225 | push eax |
||
| 226 | push 512 |
||
| 227 | push ebp |
||
| 228 | push esi |
||
| 229 | call [ReadFile] |
||
| 230 | test eax, eax |
||
| 231 | jnz @f |
||
| 232 | deverrl: |
||
| 233 | push esi |
||
| 234 | call [CloseHandle] |
||
| 235 | pop eax |
||
| 236 | pop ebp esi |
||
| 237 | deverre: |
||
| 238 | push 10h |
||
| 239 | push ebx |
||
| 240 | push deverr |
||
| 241 | push edi |
||
| 242 | call [MessageBoxA] |
||
| 243 | ret |
||
| 244 | @@: |
||
| 245 | ; make sure that this is FAT32 volume |
||
| 246 | cmp word [ebp+0Bh], 200h ; bytes per sector |
||
| 247 | jnz bootinv |
||
| 248 | cmp word [ebp+0Eh], bx ; reserved sectors |
||
| 249 | jz bootinv |
||
| 250 | cmp byte [ebp+10h], bl ; number of FATs |
||
| 251 | jz bootinv |
||
| 252 | cmp word [ebp+11h], bx ; root dir entries |
||
| 253 | jnz bootinv ; must be 0 for FAT32 |
||
| 254 | cmp word [ebp+16h], bx ; length of one copy of FAT1x |
||
| 255 | jnz bootinv |
||
| 256 | cmp dword [ebp+20h], ebx ; length of one copy of FAT32 |
||
| 257 | jz bootinv |
||
| 258 | cmp byte [ebp+42h], ')' ; magic value |
||
| 259 | jz @f |
||
| 260 | bootinv: |
||
| 261 | push 10h |
||
| 262 | push ebx |
||
| 263 | push nofat32 |
||
| 264 | jmp re |
||
| 265 | @@: |
||
| 266 | ; ok, this is really correct FAT32 volume, so start install |
||
| 267 | ; copy file mtldr_f |
||
| 268 | push 80h |
||
| 269 | push mtldr_out |
||
| 270 | call [SetFileAttributesA] |
||
| 271 | push ebx ; bFailIfExists |
||
| 272 | push mtldr_out ; lpNewFileName |
||
| 273 | push mtldr_in ; lpExistingFileName |
||
| 274 | call [CopyFileA] |
||
| 275 | test eax, eax |
||
| 276 | jnz @f |
||
| 277 | push 10h |
||
| 278 | push ebx |
||
| 279 | push mterr |
||
| 280 | re: |
||
| 281 | push edi |
||
| 282 | call [MessageBoxA] |
||
| 283 | jmp r |
||
| 284 | @@: |
||
| 285 | push 7 |
||
| 286 | push mtldr_out |
||
| 287 | call [SetFileAttributesA] |
||
| 288 | ; load bootsector |
||
| 289 | push ebx ; hTemplateFile |
||
| 290 | push ebx ; dwFlagsAndAttributes |
||
| 291 | push 3 ; dwCreationDisposition = OPEN_EXISTING |
||
| 292 | push ebx ; lpSecurityAttributes |
||
| 293 | push 1 ; dwShareMode = FILE_SHARE_READ |
||
| 294 | push 80000000h ; dwDesiredAccess = GENERIC_READ |
||
| 295 | push btname |
||
| 296 | call [CreateFileA] |
||
| 297 | cmp eax, -1 |
||
| 298 | jnz @f |
||
| 299 | bterrc: |
||
| 300 | push 40h |
||
| 301 | push ebx |
||
| 302 | push bterr |
||
| 303 | jmp re |
||
| 304 | @@: |
||
| 305 | mov ecx, esp |
||
| 306 | push eax |
||
| 307 | push ebx |
||
| 308 | push ecx |
||
| 309 | push 512 |
||
| 310 | push bootsect_new |
||
| 311 | push eax |
||
| 312 | call [ReadFile] |
||
| 313 | pop ecx |
||
| 314 | push eax |
||
| 315 | push ecx |
||
| 316 | call [CloseHandle] |
||
| 317 | pop eax |
||
| 318 | test eax, eax |
||
| 319 | jz bterrc |
||
| 320 | cmp dword [esp], 512 |
||
| 321 | jnz bterrc |
||
| 322 | ; patch bootsector with real values |
||
| 323 | push esi edi |
||
| 324 | mov esi, bootsect_new |
||
| 325 | mov edi, bootsect_dev |
||
| 326 | movsb |
||
| 327 | movsb |
||
| 328 | movsb |
||
| 329 | add esi, 57h |
||
| 330 | add edi, 57h |
||
| 331 | mov ecx, 200h-5Ah |
||
| 332 | rep movsb |
||
| 333 | pop edi esi |
||
| 334 | ; write bootsector |
||
| 335 | push ebx |
||
| 336 | push ebx |
||
| 337 | push ebx |
||
| 338 | push esi |
||
| 339 | call [SetFilePointer] |
||
| 340 | test eax, eax |
||
| 341 | jnz deverrl |
||
| 342 | mov eax, esp |
||
| 343 | push ebx |
||
| 344 | push eax |
||
| 345 | push 512 |
||
| 346 | push ebp |
||
| 347 | push esi |
||
| 348 | call [WriteFile] |
||
| 349 | test eax, eax |
||
| 350 | jz deverrl |
||
| 351 | cmp dword [esp], 512 |
||
| 352 | jnz deverrl |
||
| 353 | ; Patch backup copy of boot sector, ignore errors |
||
| 354 | movzx eax, word [ebp+50] |
||
| 355 | test eax, eax |
||
| 356 | jz done_succ |
||
| 357 | ; sanity check: it must be in the reserved area, not in data |
||
| 358 | cmp ax, word [ebp+14] |
||
| 359 | jae done_succ |
||
| 360 | shl eax, 9 |
||
| 361 | push ebx |
||
| 362 | push ebx |
||
| 363 | push eax |
||
| 364 | push esi |
||
| 365 | call [SetFilePointer] |
||
| 366 | cmp eax, -1 |
||
| 367 | jz done_succ |
||
| 368 | mov eax, esp |
||
| 369 | push ebx |
||
| 370 | push eax |
||
| 371 | push 512 |
||
| 372 | push ebp |
||
| 373 | push esi |
||
| 374 | call [WriteFile] |
||
| 375 | ; done! |
||
| 376 | done_succ: |
||
| 377 | push 40h |
||
| 378 | push ok |
||
| 379 | push succ |
||
| 380 | push edi |
||
| 381 | call [MessageBoxA] |
||
| 382 | push ebx |
||
| 383 | call [PostQuitMessage] |
||
| 384 | r: |
||
| 385 | pop eax |
||
| 386 | push esi |
||
| 387 | call [CloseHandle] |
||
| 388 | pop ebp esi |
||
| 389 | ret |
||
| 390 | |||
| 391 | section '.rdata' data readable |
||
| 392 | |||
| 393 | data resource from 'rsrc.res' |
||
| 394 | end data |
||
| 395 | |||
| 396 | ClassName db 'LISTBOX',0 |
||
| 397 | WndName db 'Select drive',0 |
||
| 398 | deverr db 'Cannot open physical device or device error (no administrator rights?)',0 |
||
| 399 | nofat32 db 'Not FAT32 volume. Sorry, only FAT32 is supported at moment.',0 |
||
| 400 | ok db 'Success',0 |
||
| 401 | succ db 'Kolibri flash loader was successfully installed!',10 |
||
| 402 | db 'Now you can copy the image kolibri.img and boot!',0 |
||
| 403 | mterr db 'Cannot copy MTLD_F32',0 |
||
| 404 | bterr db 'Cannot load ' |
||
| 405 | btname db 'BOOT_F32.BIN',0 |
||
| 406 | |||
| 407 | data import |
||
| 408 | macro thunk a |
||
| 409 | {a#_thunk:dw 0 |
||
| 410 | db `a,0} |
||
| 411 | dd 0,0,0, rva kernel32_name, rva kernel32_thunks |
||
| 412 | dd 0,0,0, rva user32_name, rva user32_thunks |
||
| 413 | dd 0,0,0, rva gdi32_name, rva gdi32_thunks |
||
| 414 | dd 0,0,0,0,0 |
||
| 415 | kernel32_name db 'kernel32.dll',0 |
||
| 416 | user32_name db 'user32.dll',0 |
||
| 417 | gdi32_name db 'gdi32.dll',0 |
||
| 418 | kernel32_thunks: |
||
| 419 | GetLogicalDrives dd rva GetLogicalDrives_thunk |
||
| 420 | GetDriveTypeA dd rva GetDriveTypeA_thunk |
||
| 421 | GetVolumeInformationA dd rva GetVolumeInformationA_thunk |
||
| 422 | CreateFileA dd rva CreateFileA_thunk |
||
| 423 | ReadFile dd rva ReadFile_thunk |
||
| 424 | WriteFile dd rva WriteFile_thunk |
||
| 425 | SetFilePointer dd rva SetFilePointer_thunk |
||
| 426 | CloseHandle dd rva CloseHandle_thunk |
||
| 427 | SetErrorMode dd rva SetErrorMode_thunk |
||
| 428 | CopyFileA dd rva CopyFileA_thunk |
||
| 429 | SetFileAttributesA dd rva SetFileAttributesA_thunk |
||
| 430 | DeviceIoControl dd rva DeviceIoControl_thunk |
||
| 431 | dw 0 |
||
| 432 | thunk GetLogicalDrives |
||
| 433 | thunk GetDriveTypeA |
||
| 434 | thunk GetVolumeInformationA |
||
| 435 | thunk CreateFileA |
||
| 436 | thunk ReadFile |
||
| 437 | thunk WriteFile |
||
| 438 | thunk SetFilePointer |
||
| 439 | thunk CloseHandle |
||
| 440 | thunk SetErrorMode |
||
| 441 | thunk CopyFileA |
||
| 442 | thunk SetFileAttributesA |
||
| 443 | thunk DeviceIoControl |
||
| 444 | user32_thunks: |
||
| 445 | CreateWindowExA dd rva CreateWindowExA_thunk |
||
| 446 | GetMessageA dd rva GetMessageA_thunk |
||
| 447 | TranslateMessage dd rva TranslateMessage_thunk |
||
| 448 | DispatchMessageA dd rva DispatchMessageA_thunk |
||
| 449 | PostQuitMessage dd rva PostQuitMessage_thunk |
||
| 450 | CallWindowProcA dd rva CallWindowProcA_thunk |
||
| 451 | SetWindowLongA dd rva SetWindowLongA_thunk |
||
| 452 | SendMessageA dd rva SendMessageA_thunk |
||
| 453 | MessageBoxA dd rva MessageBoxA_thunk |
||
| 454 | dw 0 |
||
| 455 | thunk CreateWindowExA |
||
| 456 | thunk GetMessageA |
||
| 457 | thunk TranslateMessage |
||
| 458 | thunk DispatchMessageA |
||
| 459 | thunk PostQuitMessage |
||
| 460 | thunk CallWindowProcA |
||
| 461 | thunk SetWindowLongA |
||
| 462 | thunk SendMessageA |
||
| 463 | thunk MessageBoxA |
||
| 464 | gdi32_thunks: |
||
| 465 | GetStockObject dd rva GetStockObject_thunk |
||
| 466 | dw 0 |
||
| 467 | thunk GetStockObject |
||
| 468 | end data |
||
| 469 | |||
| 470 | a2_src: |
||
| 471 | db '\\.\' |
||
| 472 | db '?:',0,0 |
||
| 473 | db '?:\' |
||
| 474 | db 'MTLD_F32',0 |
||
| 475 | |||
| 476 | section '.data' data readable writable |
||
| 477 | |||
| 478 | ;a2 db '\\.\' |
||
| 479 | ;a db '?:',0,0 |
||
| 480 | ;mtldr_out db '?:\' |
||
| 481 | ;mtldr_in db 'MTLD_F32',0 |
||
| 482 | a2 rb 4 |
||
| 483 | a rb 4 |
||
| 484 | mtldr_out rb 3 |
||
| 485 | mtldr_in rb 9 |
||
| 486 | |||
| 487 | align 4 |
||
| 488 | OldWndProc dd ? |
||
| 489 | devpath rb 1024 |
||
| 490 | n rb 1032 |
||
| 491 | bootsect_dev rb 512 |
||
| 492 | bootsect_new rb 512 |