At 11:38 AM 3/13/01 -0600, you wrote:
>A gentleman just sent me source code to an application and a dll that hooks
>GDI this way and logs all of the DDI calls to a file. He included all
>source code to both the application and the DLL. Would you like the ZIPped
>archive of code and executable?
Which, of course, is bogus... Or at least, doesn't do anything useful in
its current state. The arguments coming back do not appear to be correct,
and I am not sure what the source of the error is.
For what it's worth, winddi.h and the other headers needed to make
SetDDIHook work are from the 95/98 DDK, since this involves hooking calls
destined for the device driver.
Win2000 (and maybe ME?) uses DDML, the Display Driver Management Layer, at
least according to Beta 3 of the 2000DDK. I have been unable to download
the 67MB final DDK to see if it is present in the final release.
Here is a resource to a book on advanced GDI/DirectDraw programming, which
includes chapters on writing API spys to detect calls through GDI32 or any
other DLL. Dunno if anyone else is willing to buy this and try to core
dump the relevant bits into the VNC development group. My efforts are
going to have to be focused elsewhere.
http://www.fengyuan.com/
http://www.internals.com has lots of info on Windows internals. They even
have an API spy program. Unfortunately, it is built around code from
Microsoft for binary patching and instrumenting DLLs, which has a license
that is incompatible with the GPL. http://www.research.microsoft.com is
the homepage for Microsoft Research, and if you look for the Detours
package you can find out about it.
Also at the Active Accessibility site, supposed documents for hooking
graphics calls at the device driver level for NT (unfortunately for me, NT
only... I need speed in 98.) Look for "Graphics Hooking Example Code"
roughly 1/2 down the page. Claims to be for NT4 SP3, which makes it highly
likely that this is one of the techniques used by RAdmin, which requires
that patch level...
http://www.microsoft.com/enable/dev/downloads.htm
Just trying to diseminate as much info as I can find in the hopes that
someone will find the magic clue that lets RAdmin and Remote-Anything run
so fast, so that it can be placed in VNC...
_____________________________ /"\
Mac Reiter \ / ASCII Ribbon Campaign
Nomadics, Inc. X Against HTML Mail
[EMAIL PROTECTED] / \
---------------------------------------------------------------------
To unsubscribe, send a message with the line: unsubscribe vnc-list
to [EMAIL PROTECTED]
See also: http://www.uk.research.att.com/vnc/intouch.html
---------------------------------------------------------------------
