15,467
社区成员
发帖
与我相关
我的任务
分享svchost.exe调用DLL执行服务的问题
我编写一个DLL,按照可以作为服务程序的套路,里面含有ServiceMain,我用手动方法修改注册表,并且在windows自带的服务管理程序中开启服务,目的就是替换系统自带服务的DLL,比如AppMgmt服务支持的DLL是appmgmts.dll,我就是想了解一下这个过程,把这个DLL替换自己编写的DLL(serviceDLL.dll); 但是提示出错,并且没有出现预期效果;
注册表修改图片:
服务管理器操作启动图片:
PS:我认为DLL的代码应该没有问题,在网上找了其他说可以作为服务的DLL也尝试了,还会出现上面的问题;
请熟悉服务的说一下,svchost.exe启动DLL是个怎么回事,是不是要用其他程序来完成而不能手动呢?
注册表修改图片:
服务管理器操作启动图片:
PS:我认为DLL的代码应该没有问题,在网上找了其他说可以作为服务的DLL也尝试了,还会出现上面的问题;
请熟悉服务的说一下,svchost.exe启动DLL是个怎么回事,是不是要用其他程序来完成而不能手动呢?
...全文
请发表友善的回复…
发表回复
fdddddddddg 2012-04-18
- 打赏
- 举报
服务是这个:
fdddddddddg 2012-04-18
- 打赏
- 举报
LIBRARY serviceDLL
EXPORTS
ServiceMain
效果不大啊,还是不行,这次我替换的是这个,下面是注册表中修改情况。。。
EXPORTS
ServiceMain
效果不大啊,还是不行,这次我替换的是这个,下面是注册表中修改情况。。。
fdddddddddg 2012-04-18
- 打赏
- 举报
def的没用过,呵呵,我上网查一下怎么弄
Lactoferrin 2012-04-18
- 打赏
- 举报
这样导出的名字不一样,会有修饰名
def可以指定不用修饰
def可以指定不用修饰
fdddddddddg 2012-04-18
- 打赏
- 举报
extern "C" _declspec(dllexport) void WINAPI ServiceMain( DWORD dwArgc, LPTSTR *lpszArgv); 我这里不是导出了吗?难道和DEF不同吗?
Lactoferrin 2012-04-18
- 打赏
- 举报
用def文件或者/export导出ServiceMain
fdddddddddg 2012-04-18
- 打赏
- 举报
1楼:你说的接口是什么意思?指DLL中的Handler处理函数吗?要不我的代码你看下吧
include "Windows.h"
SERVICE_STATUS_HANDLE ssh=NULL;
SC_HANDLE scm=NULL;//SCM的句柄
SC_HANDLE ser=NULL;//服务的句柄
SERVICE_STATUS MyServiceStatus;
HANDLE hevent=NULL;
BOOL bstop=FALSE;
HANDLE hThread=NULL;
extern "C" _declspec(dllexport) void WINAPI ServiceMain( DWORD dwArgc, LPTSTR *lpszArgv);
void ControlHandler(DWORD request);
int InitService();
VOID WINAPI Handler(
DWORD fdwControl // requested control code
);
DWORD WINAPI MyThread(
LPVOID lpParameter // thread data
);//线程函数,做真正任务
void InitSvc(DWORD dwCurrentStatus);
//DLL服务主程序
BOOL WINAPI DllMain(
HINSTANCE hinstDLL, // handle to the DLL module
DWORD fdwReason, // reason for calling function
LPVOID lpvReserved // reserved
)
{
switch(fdwReason)
{
case DLL_PROCESS_ATTACH:
break;
}
return TRUE;
}
VOID WINAPI ServiceMain(
DWORD dwArgc, // number of arguments
LPTSTR *lpszArgv // array of arguments
)
{
ssh=RegisterServiceCtrlHandler( "myservice", (LPHANDLER_FUNCTION)Handler);
InitSvc(SERVICE_START_PENDING);
hThread=CreateThread(NULL,0,(LPTHREAD_START_ROUTINE)MyThread,NULL,0,0);
if(hThread==NULL)
{
MessageBox(0,"thread","Thread",MB_OK);
return ;
}
hevent=CreateEvent(NULL,TRUE,FALSE,"xin");//创建时是 无信号
MyServiceStatus.dwCurrentState=SERVICE_RUNNING;//告诉SCM服务在运行着呢
SetServiceStatus(ssh,&MyServiceStatus);
WaitForSingleObject(hevent,INFINITE);//有信号时返回
return ;
}
VOID WINAPI Handler(
DWORD fdwControl // requested control code
)
{
switch(fdwControl)
{
case SERVICE_CONTROL_CONTINUE://继续服务
MyServiceStatus.dwCurrentState=SERVICE_START_PENDING;
SetServiceStatus(ssh,&MyServiceStatus);
ResumeThread(hThread);//使挂起的线程再执行起来
MyServiceStatus.dwCurrentState=SERVICE_RUNNING;
break;
case SERVICE_CONTROL_STOP://关闭服务
Beep(300,1000);
MyServiceStatus.dwCurrentState=SERVICE_STOP_PENDING;
SetServiceStatus(ssh,&MyServiceStatus);
SetEvent(hevent);//使事件 有信号,为了让服务入口退出
bstop=TRUE;
Sleep(200);
MyServiceStatus.dwCurrentState=SERVICE_STOPPED;// break;
case SERVICE_CONTROL_PAUSE:
MyServiceStatus.dwCurrentState=SERVICE_PAUSE_PENDING;
SetServiceStatus(ssh,&MyServiceStatus);
SuspendThread(hThread);//挂起线程
MyServiceStatus.dwCurrentState=SERVICE_PAUSED;//服务状态改变了
break;
}
SetServiceStatus(ssh,&MyServiceStatus);
}
DWORD WINAPI MyThread(//工作用的线程
LPVOID lpParameter // thread data
)
{
while(!bstop)//bstop为假时一直运行
{
Beep(300,100);
Sleep(1000);
}
return 0;
}
void InitSvc(DWORD dwCurrentStatus)//这个函数是初始化用的{
MyServiceStatus.dwServiceType = SERVICE_WIN32_SHARE_PROCESS;
MyServiceStatus.dwCurrentState = dwCurrentStatus;
MyServiceStatus.dwControlsAccepted = SERVICE_ACCEPT_STOP |SERVICE_ACCEPT_PAUSE_CONTINUE;
MyServiceStatus.dwWin32ExitCode = NO_ERROR;
MyServiceStatus.dwServiceSpecificExitCode = 0;
MyServiceStatus.dwCheckPoint = 0;
MyServiceStatus.dwWaitHint = 0;
}
还算清晰吧?是不是有什么错误?
对于2楼说的,我是直接替换的;就不行
include "Windows.h"
SERVICE_STATUS_HANDLE ssh=NULL;
SC_HANDLE scm=NULL;//SCM的句柄
SC_HANDLE ser=NULL;//服务的句柄
SERVICE_STATUS MyServiceStatus;
HANDLE hevent=NULL;
BOOL bstop=FALSE;
HANDLE hThread=NULL;
extern "C" _declspec(dllexport) void WINAPI ServiceMain( DWORD dwArgc, LPTSTR *lpszArgv);
void ControlHandler(DWORD request);
int InitService();
VOID WINAPI Handler(
DWORD fdwControl // requested control code
);
DWORD WINAPI MyThread(
LPVOID lpParameter // thread data
);//线程函数,做真正任务
void InitSvc(DWORD dwCurrentStatus);
//DLL服务主程序
BOOL WINAPI DllMain(
HINSTANCE hinstDLL, // handle to the DLL module
DWORD fdwReason, // reason for calling function
LPVOID lpvReserved // reserved
)
{
switch(fdwReason)
{
case DLL_PROCESS_ATTACH:
break;
}
return TRUE;
}
VOID WINAPI ServiceMain(
DWORD dwArgc, // number of arguments
LPTSTR *lpszArgv // array of arguments
)
{
ssh=RegisterServiceCtrlHandler( "myservice", (LPHANDLER_FUNCTION)Handler);
InitSvc(SERVICE_START_PENDING);
hThread=CreateThread(NULL,0,(LPTHREAD_START_ROUTINE)MyThread,NULL,0,0);
if(hThread==NULL)
{
MessageBox(0,"thread","Thread",MB_OK);
return ;
}
hevent=CreateEvent(NULL,TRUE,FALSE,"xin");//创建时是 无信号
MyServiceStatus.dwCurrentState=SERVICE_RUNNING;//告诉SCM服务在运行着呢
SetServiceStatus(ssh,&MyServiceStatus);
WaitForSingleObject(hevent,INFINITE);//有信号时返回
return ;
}
VOID WINAPI Handler(
DWORD fdwControl // requested control code
)
{
switch(fdwControl)
{
case SERVICE_CONTROL_CONTINUE://继续服务
MyServiceStatus.dwCurrentState=SERVICE_START_PENDING;
SetServiceStatus(ssh,&MyServiceStatus);
ResumeThread(hThread);//使挂起的线程再执行起来
MyServiceStatus.dwCurrentState=SERVICE_RUNNING;
break;
case SERVICE_CONTROL_STOP://关闭服务
Beep(300,1000);
MyServiceStatus.dwCurrentState=SERVICE_STOP_PENDING;
SetServiceStatus(ssh,&MyServiceStatus);
SetEvent(hevent);//使事件 有信号,为了让服务入口退出
bstop=TRUE;
Sleep(200);
MyServiceStatus.dwCurrentState=SERVICE_STOPPED;// break;
case SERVICE_CONTROL_PAUSE:
MyServiceStatus.dwCurrentState=SERVICE_PAUSE_PENDING;
SetServiceStatus(ssh,&MyServiceStatus);
SuspendThread(hThread);//挂起线程
MyServiceStatus.dwCurrentState=SERVICE_PAUSED;//服务状态改变了
break;
}
SetServiceStatus(ssh,&MyServiceStatus);
}
DWORD WINAPI MyThread(//工作用的线程
LPVOID lpParameter // thread data
)
{
while(!bstop)//bstop为假时一直运行
{
Beep(300,100);
Sleep(1000);
}
return 0;
}
void InitSvc(DWORD dwCurrentStatus)//这个函数是初始化用的{
MyServiceStatus.dwServiceType = SERVICE_WIN32_SHARE_PROCESS;
MyServiceStatus.dwCurrentState = dwCurrentStatus;
MyServiceStatus.dwControlsAccepted = SERVICE_ACCEPT_STOP |SERVICE_ACCEPT_PAUSE_CONTINUE;
MyServiceStatus.dwWin32ExitCode = NO_ERROR;
MyServiceStatus.dwServiceSpecificExitCode = 0;
MyServiceStatus.dwCheckPoint = 0;
MyServiceStatus.dwWaitHint = 0;
}
还算清晰吧?是不是有什么错误?
对于2楼说的,我是直接替换的;就不行
Lactoferrin 2012-04-18
- 打赏
- 举报
直接替换文件会如何
oyljerry 2012-04-18
- 打赏
- 举报
是否实现了所有替换的DLL接口,同时还有接口返回值等是否正确,否则都会引起调用者fail
