cyonjan/WeChatFerry
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Fix log path (Crash)

Browse Source
This commit is contained in:
Changhua 2023-05-21 20:29:21 +08:00
parent f94cf0c28f
commit 673ea9c3c0
8 changed files with 85 additions and 33 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

32
sdk/injector.cpp
View File

@ -88,3 +88,35 @@ bool CallDllFunc(HANDLE process, LPCWSTR dllPath, HMODULE dllBase, LPCSTR funcNa
CloseHandle(hThread); CloseHandle(hThread);
return true; return true;
} }
bool CallDllFuncEx(HANDLE process, LPCWSTR dllPath, HMODULE dllBase, LPCSTR funcName, LPVOID parameter, size_t sz,
DWORD *ret)
{
void *pFunc = GetFuncAddr(dllPath, dllBase, funcName);
if (pFunc == NULL) {
return false;
}
LPVOID pRemoteAddress = VirtualAllocEx(process, NULL, sz, MEM_COMMIT, PAGE_READWRITE);
if (pRemoteAddress == NULL) {
MessageBox(NULL, L"申请内存失败", L"CallDllFuncEx", 0);
return NULL;
}
WriteProcessMemory(process, pRemoteAddress, parameter, sz, NULL);
HANDLE hThread = CreateRemoteThread(process, NULL, 0, (LPTHREAD_START_ROUTINE)pFunc, pRemoteAddress, 0, NULL);
if (hThread == NULL) {
VirtualFree(pRemoteAddress, 0, MEM_RELEASE);
MessageBox(NULL, L"远程调用失败", L"CallDllFuncEx", 0);
return false;
}
WaitForSingleObject(hThread, INFINITE);
VirtualFree(pRemoteAddress, 0, MEM_RELEASE);
if (ret != NULL) {
GetExitCodeThread(hThread, ret);
}
CloseHandle(hThread);
return true;
}

2
sdk/injector.h
View File

@ -5,3 +5,5 @@
HANDLE InjectDll(DWORD pid, LPCWSTR dllPath, HMODULE *injectedBase); HANDLE InjectDll(DWORD pid, LPCWSTR dllPath, HMODULE *injectedBase);
bool EjectDll(HANDLE process, HMODULE dllBase); bool EjectDll(HANDLE process, HMODULE dllBase);
bool CallDllFunc(HANDLE process, LPCWSTR dllPath, HMODULE dllBase, LPCSTR funcName, LPVOID parameter, DWORD *ret); bool CallDllFunc(HANDLE process, LPCWSTR dllPath, HMODULE dllBase, LPCSTR funcName, LPVOID parameter, DWORD *ret);
bool CallDllFuncEx(HANDLE process, LPCWSTR dllPath, HMODULE dllBase, LPCSTR funcName, LPVOID parameter, size_t sz,
DWORD *ret);

29
sdk/sdk.cpp
View File

@ -1,10 +1,10 @@
#include "Shlwapi.h" #include "Shlwapi.h"
#include "framework.h" #include "framework.h"
#include <filesystem>
#include <process.h> #include <process.h>
#include <tlhelp32.h> #include <tlhelp32.h>
#include "injector.h" #include "injector.h"
#include "log.h"
#include "sdk.h" #include "sdk.h"
#include "util.h" #include "util.h"
@ -17,7 +17,6 @@ static WCHAR spyDllPath[MAX_PATH] = { 0 };
static int GetDllPath(bool debug, wchar_t *dllPath) static int GetDllPath(bool debug, wchar_t *dllPath)
{ {
InitLogger();
GetModuleFileName(GetModuleHandle(WECHATSDKDLL), spyDllPath, MAX_PATH); GetModuleFileName(GetModuleHandle(WECHATSDKDLL), spyDllPath, MAX_PATH);
PathRemoveFileSpec(spyDllPath); PathRemoveFileSpec(spyDllPath);
if (debug) { if (debug) {
@ -27,7 +26,7 @@ static int GetDllPath(bool debug, wchar_t *dllPath)
} }
if (!PathFileExists(spyDllPath)) { if (!PathFileExists(spyDllPath)) {
LOG_ERROR("DLL does not exists: {}.", Wstring2String(spyDllPath)); MessageBox(NULL, spyDllPath, L"文件不存在", 0);
return ERROR_FILE_NOT_FOUND; return ERROR_FILE_NOT_FOUND;
} }
@ -46,26 +45,30 @@ int WxInitSDK(bool debug, int port)
status = OpenWeChat(&wcPid); status = OpenWeChat(&wcPid);
if (status != 0) { if (status != 0) {
LOG_ERROR("OpenWeChat failed: {}.", status); MessageBox(NULL, L"打开微信失败", L"WxInitSDK", 0);
return status; return status;
} }
Sleep(2000); // 等待微信打开 Sleep(2000); // 等待微信打开
wcProcess = InjectDll(wcPid, spyDllPath, &spyBase); wcProcess = InjectDll(wcPid, spyDllPath, &spyBase);
if (wcProcess == NULL) { if (wcProcess == NULL) {
LOG_ERROR("Failed to Inject DLL into WeChat."); MessageBox(NULL, L"注入失败", L"WxInitSDK", 0);
return -1; return -1;
} }
if (!CallDllFunc(wcProcess, spyDllPath, spyBase, "InitSpy", (LPVOID)port, NULL)) { PortPath_t pp = { 0 };
LOG_ERROR("Failed to InitSpy."); pp.port = port;
sprintf_s(pp.path, MAX_PATH, "%s", std::filesystem::current_path().string().c_str());
if (!CallDllFuncEx(wcProcess, spyDllPath, spyBase, "InitSpy", (LPVOID)&pp, sizeof(PortPath_t), NULL)) {
MessageBox(NULL, L"初始化失败", L"WxInitSDK", 0);
return -1; return -1;
} }
#ifdef WCF #ifdef WCF
FILE *fd = fopen(WCF_LOCK, "wb"); FILE *fd = fopen(WCF_LOCK, "wb");
if (fd == NULL) { if (fd == NULL) {
LOG_ERROR("Failed to open {}.", WCF_LOCK); MessageBox(NULL, L"无法打开lock文件", L"WxInitSDK", 0);
return -2; return -2;
} }
fwrite((uint8_t *)&debug, sizeof(debug), 1, fd); fwrite((uint8_t *)&debug, sizeof(debug), 1, fd);
@ -83,19 +86,19 @@ int WxDestroySDK()
bool debug; bool debug;
DWORD pid = GetWeChatPid(); DWORD pid = GetWeChatPid();
if (pid == 0) { if (pid == 0) {
LOG_ERROR("WeChat is not running."); MessageBox(NULL, L"微信未运行", L"WxDestroySDK", 0);
return status; return status;
} }
wcProcess = OpenProcess(PROCESS_ALL_ACCESS, FALSE, pid); wcProcess = OpenProcess(PROCESS_ALL_ACCESS, FALSE, pid);
if (wcProcess == NULL) { if (wcProcess == NULL) {
LOG_ERROR("WeChat is not running."); MessageBox(NULL, L"微信未运行", L"WxDestroySDK", 0);
return -1; return -1;
} }
FILE *fd = fopen(WCF_LOCK, "rb"); FILE *fd = fopen(WCF_LOCK, "rb");
if (fd == NULL) { if (fd == NULL) {
LOG_ERROR("Failed to open {}.", WCF_LOCK); MessageBox(NULL, L"无法打开lock文件", L"WxDestroySDK", 0);
return -2; return -2;
} }
fread((uint8_t *)&debug, sizeof(debug), 1, fd); fread((uint8_t *)&debug, sizeof(debug), 1, fd);
@ -111,14 +114,12 @@ int WxDestroySDK()
} }
if (!CallDllFunc(wcProcess, spyDllPath, spyBase, "CleanupSpy", NULL, NULL)) { if (!CallDllFunc(wcProcess, spyDllPath, spyBase, "CleanupSpy", NULL, NULL)) {
LOG_ERROR("Failed to CleanupSpy.");
return -1; return -1;
} }
if (!EjectDll(wcProcess, spyBase)) { if (!EjectDll(wcProcess, spyBase)) {
LOG_ERROR("Failed to Eject DLL.");
return -1; // TODO: Unify error codes return -1; // TODO: Unify error codes
} }
LOG_INFO("WxDestroySDK done.");
return 0; return 0;
} }

27
spy/log.cpp
View File

@ -1,27 +1,34 @@
#include <filesystem>
#include "log.h" #include "log.h"
#include "util.h"
#define LOGGER_NAME "WCF" #define LOGGER_NAME "WCF"
#define LOGGER_FILE_NAME "logs/wcf.txt" #define LOGGER_FILE_NAME "/logs/wcf.txt"
#define LOGGER_MAX_SIZE 1024 * 1024 * 10 // 10M #define LOGGER_MAX_SIZE 1024 * 1024 * 10 // 10M
#define LOGGER_MAX_FILES 10 // 10 files #define LOGGER_MAX_FILES 10 // 10 files
void InitLogger() void InitLogger(std::string path)
{ {
static std::shared_ptr<spdlog::logger> gLogger = nullptr; static std::shared_ptr<spdlog::logger> logger = nullptr;
if (gLogger != nullptr) { if (logger != nullptr) {
return; return;
} }
gLogger = spdlog::rotating_logger_mt(LOGGER_NAME, LOGGER_FILE_NAME, LOGGER_MAX_SIZE, LOGGER_MAX_FILES); auto filename = std::filesystem::path(path + LOGGER_FILE_NAME).make_preferred().string();
// gLogger = spdlog::stdout_color_mt("console"); try {
logger = spdlog::rotating_logger_mt(LOGGER_NAME, filename, LOGGER_MAX_SIZE, LOGGER_MAX_FILES);
} catch (const spdlog::spdlog_ex &ex) {
MessageBox(NULL, String2Wstring(ex.what()).c_str(), L"Init LOGGER ERROR", 0);
}
spdlog::set_default_logger(gLogger); spdlog::set_default_logger(logger);
gLogger->set_pattern("[%Y-%m-%d %H:%M:%S.%e] [%l] [%n] [%s::%#::%!] %v"); logger->set_pattern("[%Y-%m-%d %H:%M:%S.%e] [%l] [%n] [%s::%#::%!] %v");
#if SPDLOG_ACTIVE_LEVEL <= SPDLOG_LEVEL_DEBUG #if SPDLOG_ACTIVE_LEVEL <= SPDLOG_LEVEL_DEBUG
spdlog::set_level(spdlog::level::debug); spdlog::set_level(spdlog::level::debug);
gLogger->flush_on(spdlog::level::debug); logger->flush_on(spdlog::level::debug);
#else #else
gLogger->flush_on(spdlog::level::info); logger->flush_on(spdlog::level::info);
#endif #endif
LOG_DEBUG("InitLogger with debug level"); LOG_DEBUG("InitLogger with debug level");
} }

4
spy/log.h
View File

@ -1,5 +1,7 @@
#pragma once #pragma once
#include <string>
#ifdef ENABLE_DEBUG_LOG #ifdef ENABLE_DEBUG_LOG
#include <stdint.h> #include <stdint.h>
@ -19,4 +21,4 @@ void log_buffer(uint8_t *buffer, size_t len);
#define LOG_WARN(...) SPDLOG_WARN(__VA_ARGS__); #define LOG_WARN(...) SPDLOG_WARN(__VA_ARGS__);
#define LOG_ERROR(...) SPDLOG_ERROR(__VA_ARGS__); #define LOG_ERROR(...) SPDLOG_ERROR(__VA_ARGS__);
void InitLogger(); void InitLogger(std::string path);

12
spy/spy.cpp
View File

@ -1,16 +1,22 @@
#include "spy.h" #include <filesystem>
#include "load_calls.h" #include "load_calls.h"
#include "log.h" #include "log.h"
#include "rpc_server.h" #include "rpc_server.h"
#include "spy.h"
#include "util.h" #include "util.h"
WxCalls_t g_WxCalls = { 0 }; WxCalls_t g_WxCalls = { 0 };
DWORD g_WeChatWinDllAddr = 0; DWORD g_WeChatWinDllAddr = 0;
void InitSpy(int port) void InitSpy(LPVOID args)
{ {
wchar_t version[16] = { 0 }; wchar_t version[16] = { 0 };
InitLogger(); PortPath_t *pp = (PortPath_t *)args;
int port = pp->port;
std::string path(pp->path);
InitLogger(path);
g_WeChatWinDllAddr = (DWORD)GetModuleHandle(L"WeChatWin.dll"); // 获取wechatWin模块地址 g_WeChatWinDllAddr = (DWORD)GetModuleHandle(L"WeChatWin.dll"); // 获取wechatWin模块地址
if (g_WeChatWinDllAddr == 0) { if (g_WeChatWinDllAddr == 0) {
LOG_ERROR("获取wechatWin.dll模块地址失败"); LOG_ERROR("获取wechatWin.dll模块地址失败");

5
spy/util.h
View File

@ -13,6 +13,11 @@
#define GET_WSTRING(addr) ((WCHAR *)(*(DWORD *)(addr))) #define GET_WSTRING(addr) ((WCHAR *)(*(DWORD *)(addr)))
#define GET_STRING_FROM_P(addr) ((CHAR *)(addr)) #define GET_STRING_FROM_P(addr) ((CHAR *)(addr))
typedef struct PortPath {
int port;
char path[MAX_PATH];
} PortPath_t;
DWORD GetWeChatPid(); DWORD GetWeChatPid();
int OpenWeChat(DWORD *pid); int OpenWeChat(DWORD *pid);
int GetWeChatVersion(wchar_t *version); int GetWeChatVersion(wchar_t *version);

7
wcf/main.cpp
View File

@ -2,14 +2,11 @@
#include <stdlib.h> #include <stdlib.h>
#include <string.h> #include <string.h>
#include "framework.h"
#include "log.h"
#include "sdk.h" #include "sdk.h"
void help() void help()
{ {
LOG_INFO("\nUsage: \n启动: wcf.exe start port [debug]\n关闭: wcf.exe stop\nport: 命令端口, 消息端口为命令端口+1\n"); printf("\nUsage: \n启动: wcf.exe start port [debug]\n关闭: wcf.exe stop\nport: 命令端口, 消息端口为命令端口+1\n");
} }
int main(int argc, char *argv[]) int main(int argc, char *argv[])
@ -34,4 +31,4 @@ int main(int argc, char *argv[])
} }
return ret; return ret;
} }