Neitsa
October 23rd, 2005, 17:04
Hello all 
I got a linking problem, here's the story...
In one of my program (in C), I must call NtQueryInformationProcess, then rather than to obtain it by LoadLibrary and GetProcaddress (dynamically) I decided to create a lib which will enable me to call this function in a static manner.
The NtQueryInformationProcess API is not present indeed in the supplied libraries of the SDK... I thus created a fictitious DLL in asm to recover the .lib file created with it.
the .def file :
In my C source code I wrote the func prototype and all the needed structs.
Here's the proto :
I then tell VC++ 7 to link against my ntdll.lib obtained with MASM, and here arises the problem:
Facing this problem, I was thinking that the linker couldn't seen my lib so i given the /VERBOSE switch to the linker. In fact it could see my .lib file while searching for imports:
Someone told me that it could be a calling convention problem (from linker error, we can see it's waiting for a __cdecl proc) :
I then told masm to compile with C langtype but it doesn't works also (i.e can't link from my C program):
I've tried to link with a MASM program and it works ! But I don't get why I can't link with a C program... what I've done wrong ?
Attached is the source code of the lib and the .lib file (MASM with Radasm project). If someone can link a C / C++ program with this .lib I hope to get some feedback.
Thank you very much,
Regards, Neitsa.
I got a linking problem, here's the story...
In one of my program (in C), I must call NtQueryInformationProcess, then rather than to obtain it by LoadLibrary and GetProcaddress (dynamically) I decided to create a lib which will enable me to call this function in a static manner.
The NtQueryInformationProcess API is not present indeed in the supplied libraries of the SDK... I thus created a fictitious DLL in asm to recover the .lib file created with it.
Code:
.386
.model flat,stdcall
option casemap:none
include ntdll.inc
.data
.code
DllEntry proc hInstDLL:HINSTANCE, reason
mov eax,TRUE
ret
DllEntry Endp
NtQueryInformationProcess proc a1
NtQueryInformationProcess endp
end DllEntry
the .def file :
Code:
LIBRARY ntdll
EXPORTS
NtQueryInformationProcess
In my C source code I wrote the func prototype and all the needed structs.
Here's the proto :
Code:
NTSTATUS NtQueryInformationProcess(
HANDLE ProcessHandle,
PROCESSINFOCLASS ProcessInformationClass,
PVOID ProcessInformation,
ULONG ProcessInformationLength,
PULONG ReturnLength
);
I then tell VC++ 7 to link against my ntdll.lib obtained with MASM, and here arises the problem:
Code:
ProcessParsing.obj : error LNK2019: unresolved external symbol "long __cdecl NtQueryInformationProcess(void *,enum _PROCESSINFOCLASS,void *,unsigned long,unsigned long *)" (?NtQueryInformationProcess@@YAJPAXW4_PROCESSINFOCLASS@@0KPAK@Z) referenced in function "struct _PEB * __cdecl GetRemotePEB(void *)" (?GetPEB@@YAPAU_PEB@@PAX@Z)
Release/Process.exe : fatal error LNK1120: 1 unresolved externals
Facing this problem, I was thinking that the linker couldn't seen my lib so i given the /VERBOSE switch to the linker. In fact it could see my .lib file while searching for imports:
Quote:
Searching F:\Program Files\microsoft Visual Studio\MyProjects\Process\ntdll.lib: |
Someone told me that it could be a calling convention problem (from linker error, we can see it's waiting for a __cdecl proc) :
Quote:
long __cdecl NtQueryInformationProcess |
I then told masm to compile with C langtype but it doesn't works also (i.e can't link from my C program):
Code:
NtQueryInformationProcess proc C a1
NtQueryInformationProcess endp
I've tried to link with a MASM program and it works ! But I don't get why I can't link with a C program... what I've done wrong ?
Attached is the source code of the lib and the .lib file (MASM with Radasm project). If someone can link a C / C++ program with this .lib I hope to get some feedback.
Thank you very much,
Regards, Neitsa.
I simply forget that my file extension were .cpp and therefore my code was C++...