CodeProject: Late binding on native DLLs with C#. Free source code and programming help

Report Article

Discuss

Send to a friend

48 votes for this Article.

Popularity: 7.80 Rating: 4.64 out of 5

Download source files - 2 Kb

Sample Image - DynInvok.gif

Introduction

Consider the situation where the native, Win32 DLL is unknown at compile time. Perhaps its name or location is stored in the Windows Registry, or is selected by the user from a FileOpen dialog. How can we call a function exported from this library, but only resolved at runtime? The prescribed way to call native functions from the CLR is through PInvoke, using the DllImport attribute, but this must be declared at compile time or, at the very least, generated on the fly using Reflection.Emit. This article will show an alternative way which requires the use of a little x86 assembler to meet our goal.

LoadLibrary

Windows provides two ways to load DLLs into the process of an executable. Either, the DLL can be specified in the imports table and the Windows Loader will map the DLL automatically or the LoadLibrary() Win32 API call can be used. These are called implicit linking and explicit linking respectively. Both these types can be seen in action using Dependency Walker available from http://www.dependencywalker.com/. The CLR, Visual BASIC 6 and the /delayload feature of MSVC6 all use explicit linking to call DLL functions.

We can quite happily call LoadLibrary() from C# to load a DLL into our address space. The problem comes when we try to call a function in the DLL. Win32 provides the GetProcAddress() function to return the memory address of a function exported from the given DLL and we can easily obtain this memory address, but we can do nothing with it. It is simply an integer. The CLR provides no way to jump to this location in memory, passing appropriate parameters too.

The CLR does allow us to do the reverse and pass a pointer to a managed function to a DLL using the delegate keyword, but there is no way to specify that a value returned from an unmanaged API call should be treated as a delegate. Perhaps we may see this in .Net version 2, but for now we need to find another way to call the function.

Going low-level

One solution would be to write a small C++ DLL which merely forwards the call on. In other words, the C++ DLL is acting as a proxy for our intended function. The downside is that a new C++ DLL would have to be created every time a different DLL function needs to be called. The proxy function needs the exact number of parameters that the real function takes. Every C# programmer needs to know C++ to be able to do this.

A much better solution is to write a small, reusable DLL in x86 assembly language which can forward function calls to any location. This is trivial to write if we know a bit about how Win32 DLLs are called. All DLLs are called using the stdcall calling convention. This means that parameters are pushed onto the stack beginning at the right-most parameter. Thus, the first in the parameter list will be at the top of the stack. The return address is then placed on the stack and control is transferred to the callee. It is the callee's responsibility to pop all the parameters off the stack and not fiddle with more registers than absolutely necessary.

Consider the following function declaration:

[DllImport("Invoke", CharSet=CharSet.Unicode)]
public extern static int InvokeFunc(int funcptr, int hwnd, 
                                    string message, string title, int flags);

It is implemented in a DLL called Invoke.dll and has the export name InvokeFunc. It also takes five parameters, of which the last four are the exact parameters taken by the MessageBox() function. The first parameter is an address of a function. We will leave the implementation of InvokeFunc for now and look at code which can call this.

int hmod=LoadLibrary("User32");
int funcaddr=GetProcAddress(hmod, "MessageBoxW");
int result=InvokeFunc(funcaddr, 0, "Hello World", 
                      ".Net dynamic export invocation", 1 /*MB_OKCANCEL*/);
Console.WriteLine("Result of invocation is " + result);

FreeLibrary(hmod);

This code loads the DLL into our process space, finds the address of a function we wish to call, then uses our special


InvokeFunc()

function to call a function through a function pointer.

Screenshot of Dependency Walker watching this taking place

In the screenshot above, notice how GetProcAddress() is being used to find the address of GetProcAddress()! This is because PInvoke uses GetProcAddress to find the address of any function specified by the DllImport attribute.

InvokeFunc Implementation

As we discussed earlier, the stdcall calling conventions places parameters onto the stack in reverse order. Thus, our function pointer will be at the top of the stack because it is first in the parameter list. If we can take this parameter off the stack, then jump to that location in memory, it would be the equivalent of calling that function without the intermediate proxy function.

The following fragment of x86 assembler achieves this

pop ecx		; save return address
pop edx		; Get function pointer
push ecx	; Restore return address
jmp edx		; Transfer control to the function pointer

Because we've used a jmp instruction rather than a call instruction, control will be transferred directly from the called function back to the CLR, passing any return value directly back.

Conclusion

Everything needed to compile and run this code is included with Visual Studio .Net. The x86 DLL built can be reused for calling any function pointer, not just a function with a specific signature and is only 2,560 bytes.

It turns out that if you are not running .Net on Windows XP, there is a DLL with an equivalent proxy function to the one we built. That DLL is msjava.dll, which of course is missing from Windows XP due to the Microsoft-Sun agreement on Java technology. msjava.dll provides an export with the name call() which duplicates this functionality.

License

This article, along with any associated source code and files, is licensed under The BSD License

About the Author

Richard Birkby

Richard Birkby is a software engineer from London, UK, specializing in .Net. Richard has coded for many different sized companies from small venture-capital funded start-ups, to multi-national corporations (ie Microsoft). When he's not programming, he enjoys driving his sports car or eating curry (although never at the same time!).

Richard helps run CurryPages.com and has several other covert ventures in development. Stay tuned!

Occupation:	Web Developer
Location:	United Kingdom

Other popular C# articles:

Asynchronous Method Invocation
How to use .NET to call methods in a non-blocking mode.
I/O Ports Uncensored - 1 - Controlling LEDs (Light Emiting Diodes) with Parallel Port
Controlling LEDs (Light Emiting Diodes) with Parallel Port
IconLib - Icons Unfolded (MultiIcon and Windows Vista supported)
Library to manipulate icons and icons libraries with support to create, load, save, import and export icons in ico, icl, dll, exe, cpl and src format. (Windows Vista icons supported).
100% Reflective Class Diagram Creation Tool
100% Reflective Class Diagram Creation Tool
I/O Ports Uncensored Part 2 - Controlling LCDs (Liquid Crystal Displays) and VFDs (Vacuum Fluorescent Displays) with Parallel Port
Controlling LCDs (Liquid Crystal Displays) and VFDs (Vacuum Fluorescent Displays) with Parallel Port

Article Top

You must Sign In to use this message board.

Msgs 1 to 25 of 66 (Total in Forum: 66) (Refresh)

FirstPrevNext

Subject

Author

Date

How to compile code written in assembler language?

Member 662876

23:19 9 Jul '08

How to compile code written in assembler language?
Sign In·View Thread·PermaLink

Is it possible to elevate this process for Vista

yincekara

7:12 11 Jun '08

I am invoking a function from a 3'rd party dll. It works fine by using this method you 've mentioned in your article on XP. Also on Vista if UAC is disabled it works fine too. But if UAC is turned on method cannot work and returns an error code. How can we give appropriate rights do that InvokeFunc which is dynamically loaded into memory?
Sign In·View Thread·PermaLink

Compile time linking of dll

harsh2904

23:31 14 Apr '08

Can I make an executable with a particular dll including in it? I mean linking a dll at compile time only. So that I can run that exe from anywhere without having dll anywhere.
Sign In·View Thread·PermaLink	2.00/5 (1 vote)

Where i can find "Invoke.dll"?

tropot

23:20 28 Jun '07

Hi, See the subject. Best regards, Eugen.
Sign In·View Thread·PermaLink	1.50/5 (4 votes)

Re: Where i can find "Invoke.dll"?

Richard Birkby

23:37 28 Jun '07

The makefile gives the game away... Invoke.obj: Invoke.asm ml $(MLFLAGS) $ Invoke.dll: Invoke.obj link $ -DLL -entry:DllMain /machine:i386 /subsystem:windows /out:Invoke.dll /export:InvokeFunc
Sign In·View Thread·PermaLink	1.40/5 (5 votes)

Re: Where i can find "Invoke.dll"?

tropot

1:52 29 Jun '07

thanks,... silly me
Sign In·View Thread·PermaLink	2.00/5 (1 vote)

Re: Where i can find "Invoke.dll"?

dark_hunter

14:09 6 Aug '07

hola, no se mucho de esto asi que si me pudiera explicar un poco mas como obtener la dll o como hago funcionar este ejemplo te lo agradeceria mucho.. Gracias salu2 x
Sign In·View Thread·PermaLink	1.00/5 (1 vote)

Re: Where i can find "Invoke.dll"?

kandy_soliton

19:44 22 Aug '07

HI Richard, I don't understand the way the invoke.dll is created. Can anyone explain the way it can be done? Regards kandy.
Sign In·View Thread·PermaLink	1.33/5 (5 votes)

Returning Values

Diogo Alves

7:37 25 Jun '07

Hi, This seems to be the solution to my problem! I have a dll that was wrote in C++ and I need to call that dll and get the return values Is it possible to get the return values? How? Maybe your code is already doing this but I didn't understood your code very well so I would like this explanation if you don't mind. Kind Regards P.S.: If this works you've done a great job... Very nice indeed
Sign In·View Thread·PermaLink	5.00/5 (1 vote)

invoking dll in c#.net dynamically

pksave

0:32 10 May '07

I want to add DLL dynamically.and want to invoke the method of DLL.I got the information that one Loadlibrary() funcion is there in c#.net.I tried that but it is not working.

my requirement to add add dll in form code diring form load event.
please tell me the code.
and also specify that on which object I should call that Loadlibrary().and code to access the funcions.
plz reply me.its argent..

Prachi

1.00/5 (1 vote)

Re: invoking dll in c#.net dynamically

SDX2000

3:34 25 May '07

Please take a look at GetDelegateForFunctionPointer in the System.Runtime.InteropServices namespace (.Net 2.0) SDX2000
Sign In·View Thread·PermaLink	2.00/5 (1 vote)

Re: invoking dll in c#.net dynamically

Member 4732806

3:18 19 Mar '08

use DLLImport maruti
Sign In·View Thread·PermaLink	2.00/5 (1 vote)

Is it possible

just2click

4:35 21 Aug '06

Hi, Is it possible to use DllImport without setting the extern to be static? Can I use an unmanged code DLL as a non-static object? Thanks in advance, Val
Sign In·View Thread·PermaLink	5.00/5 (1 vote)

Can I use .Net Dll in Borland C++

jags_vc

2:29 5 Aug '05

Sir, Can you please give information related to use of .Net dll in VC++ or Borland C++. Because I have a .Dll which is developed in .Net Frame work And I want to use it in Borland C++ . So I request to give information reklated to How camn i use it.Is it requred any dependancy or not ? Thank You. Jagdish
Sign In·View Thread·PermaLink	1.09/5 (5 votes)

There is a Way inside of C# (Well Sorta)

Scott Carr

6:24 15 Apr '05

You can execute procedures inside of DLL's using the CallWindowProc function.

[DllImport("user32", EntryPoint="CallWindowProc")]
public static extern int CallWindowProcA(int lpPrevWndFunc, int hwnd, int MSG, int wParam, int lParam);

Call it with the following, passing in the address of the function you got with GetProcAddress.

CallWindowProcA(funcaddr, 0, 0, 0, 0);

All from within the C# environment.

Scott Carr
OpenOffice.org
Documentation Maintainer
http://documentation.openoffice.org

Re: There is a Way inside of C# (Well Sorta)

Scott Carr

6:28 15 Apr '05

using System;
using System.Runtime.InteropServices;

namespace DCC.Install
{
	/// 
	/// Summary description for ExecuteDLLFunction.
	/// 

	public class ExecuteDLLFunction
	{
		[DllImport("kernel32")]
		public extern static int LoadLibrary(string lpLibFileName);
		[DllImport("kernel32")]
		public extern static bool FreeLibrary(int hLibModule);
		[DllImport("kernel32", CharSet=CharSet.Ansi)]
		public extern static int GetProcAddress(int hModule, string lpProcName);

		[DllImport("user32", EntryPoint="CallWindowProc")] 
		public static extern int CallWindowProcA(int lpPrevWndFunc, int hwnd, int MSG, int wParam, int lParam);

		private string _dllfile;
		private int _dll;

		public string dllfile 
		{
			get { return _dllfile; }
			set { _dllfile = value; }
		}

		public ExecuteDLLFunction(string DLLFile)
		{
			_dllfile = DLLFile;
			_dll = LoadLibrary(_dllfile);
		}

		~ExecuteDLLFunction()
		{
			FreeLibrary(_dll);
		}

		public int Execute(string strFunc)
		{
			int funcaddr;
			
			if (_dll != 0)
			{

				funcaddr = GetProcAddress(_dll, strFunc);

				if (funcaddr != 0)
				{
					return CallWindowProcA(funcaddr, 0, 0, 0, 0);
				} 
				else 
				{
					return -2;
				}
			}
			else 
			{
				return -1;
			}
		}
	}
}

Re: There is a Way inside of C# (Well Sorta)

Tommy Svensson

0:34 17 May '05

Hi,

Great comment and great code! I have some follow-upers that I need some tech savvy people like you to straighten out for me:

Please, if possible, respond quickly as there is a short deadline in my project related to the issues below!

Q1: I have a C++ unmanaged API (binaries only: .libs and .dlls) and I wish to program against it using C# .NET. The API is huge with thousands of functions and classes. Honestly now, is there no way I can, at design time, simply call a function as described in the API's documentation?

Sure, if I do

DllImport("HugeAPI.dll")
public static extern void Test(int x);

all is fine because the return type and the parameter doesn't cause any problems. But the API uses user defined types that I don't have access to, which makes it hard to know what to do in this case:

DllImport("HugeAPI.dll")
public static extern SpecialAPIType Test(int x, AnotherSpecialAPIType type);

Q2: The above only applies to functions/methods in the API, but what about classes and arbitrary types?

For instance, if I want to derive a C# class from a particular C++ API class, what do I do?

Q3: Is there no hope? And no, I can't convert the API using Managed Extensions for C++ and no, I can't wrap the API in a COM server accessing it through COM Interop and no, I won't ever rewrite the entire API in .NET, it will simply take a few years.

Sincerely,

/Tommy

Re: There is a Way inside of C# (Well Sorta)

Scott Carr

4:58 17 May '05

Glad you enjoyed it. I was having a problem instantiating the DllRegisterServer for registering a dll. I found the following on using Unmanaged Classes in C#: http://www.codeguru.com/Cpp/Cpp/cpp_managed/interop/article.php/c6867/ Not sure if it'll help. I havn't had to write against Unmanaged C++ myself. Scott Carr OpenOffice.org Documentation Maintainer http://documentation.openoffice.org
Sign In·View Thread·PermaLink

Re: There is a Way inside of C# (Well Sorta)

nyf1220@126.com

20:15 15 Nov '06

good work good work
Sign In·View Thread·PermaLink	2.00/5 (1 vote)

need the makefile as post build event

daniele_massaro

7:31 7 Mar '05

Hi,

executing the provided makefile only works within the command promt of the Visual Studio .NET 2003, which has the appropriate environment.

Is there a possibility using the makefile from the 'normal' command prompt?

I set the environment for using MS Visual C++ tools via vcvars32.bat, but it seemed that it isn't enough. If i execute the makefile with

nmake /all

i got the following message:

'ml' is not recognized as an internal or external command, operable program or batch file.
NMAKE : fatal error U1077: 'ml' : return code '0x1'
Stop.

Any ideas?
Kind regards, daniele.

1.33/5 (2 votes)

getting an object pointer? activating it?

looknir

7:36 23 Jan '05

Hi i want to get back from my DLL function1 a pointer to an object. then - i want to activate a method of that object. can i do it with C# in this way? in C++ i had a struct of two virtual functions. my first func - function1, gave me the pointer to the object from type myStruct. then i activatd the functions inside of it.
Sign In·View Thread·PermaLink	1.00/5 (1 vote)

Have you seen this article on MSDN?

Tboner

12:17 24 Nov '04

Hi,

I am new to Win32 and I found a possible solution. I am wondering if it is valid though since I might not completely understand the problem.

Anyway, Navigate to the Url below and scroll down to the very bottom heading "Loading from Different Locations" (then read the 2 paragraphs)

http://msdn.microsoft.com/library/default.asp?url=/library/en-us/dncscol/html/csharp09192002.asp[^]

Basically it says you can call LoadLibrary to define the path of your .dll.

ie.
int hmod=LoadLibrary("C:\\PwApi.dll");

then in your dllImport where .net sees [DllImport("PwApi.dll")] it will refer to the .dll that was called by LoadLibrary.

It solves the dynamic path issue I think.

Here is some example code: (the .dll is 3rd party so you can't really test it but you can read the code to get an idea what I am trying to say.)

=================

using System;
using System.Text;
using System.Runtime.InteropServices;

namespace XXX.XXXXXX.XXXXX
{
///

/// This parser class is a wrapper for the 3rd Party
/// vendor balh blah blah's library....
///

public class Parser
{
[DllImport("PwApi.dll")]
public static extern int PwInitParsers(string dictionaryPath);

#region Address Functions

[DllImport("PwApi.dll")]
public static extern int PwParseAddr(string sourceAddress);

[DllImport("PwApi.dll")]
public static extern int PwFraction(byte[] target);
[DllImport("PwApi.dll")]
public static extern int PwHouseNumber(byte[] target);
[DllImport("PwApi.dll")]
public static extern int PwHousePrefix(byte[] target);
[DllImport("PwApi.dll")]
public static extern int PwHouseSuffix(byte[] target);
[DllImport("PwApi.dll")]
public static extern int PwPostDir(byte[] target);
[DllImport("PwApi.dll")]
public static extern int PwBox(byte[] target);
[DllImport("PwApi.dll")]
public static extern int PwPreDir(byte[] target);
[DllImport("PwApi.dll")]
public static extern int PwRoute(byte[] target);
[DllImport("PwApi.dll")]
public static extern int PwStreetName(byte[] target);
[DllImport("PwApi.dll")]
public static extern int PwStreetSuffix(byte[] target);
[DllImport("PwApi.dll")]
public static extern int PwUnitValue(byte[] target);
[DllImport("PwApi.dll")]
public static extern int PwUnitDesignator(byte[] target);

#endregion

[DllImport("kernel32")]
public extern static int LoadLibrary(string lpLibFileName);
[DllImport("kernel32")]
public extern static bool FreeLibrary(int hLibModule);
[DllImport("kernel32", CharSet=CharSet.Ansi)]

public Parser()
{
}

public Address ParseAddress(string addressToParse)
{
int returnCode;
int hmod;
try
{
hmod=LoadLibrary("C:\\PwApi.dll");

string dictionaryPath = @"C:\Default_100.dct"; // AppDomain.CurrentDomain.BaseDirectory + "Default_100.dct";
returnCode = PwInitParsers(dictionaryPath);
if(returnCode != 0)
{
string msg = String.Format("An error occurred loading the dictionary for PwApi.dll. Please ensure the dictionary path is correct: -->{0}<-- Error Code: -->{1}<--",dictionaryPath, returnCode);
throw new Exception(msg);
}
}
catch(Exception ex)
{
throw new Exception("There has been an error Initializing the PwApi.dll. Description:" + ex.Message);
}

Address address = new Address();
byte[] target;

if(PwParseAddr(addressToParse)==0) //If not successful leave everything blank.
{
target = new byte[250];
returnCode = PwFraction(target);
address.Fraction = ASCIIEncoding.ASCII.GetString(target,0,returnCode);

target = new byte[250];
returnCode = PwHouseNumber(target);
address.HouseNumber = ASCIIEncoding.ASCII.GetString(target,0,returnCode);

target = new byte[250];
returnCode = PwHousePrefix(target);
address.HousePrefix = ASCIIEncoding.ASCII.GetString(target,0,returnCode);

target = new byte[250];
returnCode = PwHouseSuffix(target);
address.HouseSuffix = ASCIIEncoding.ASCII.GetString(target,0,returnCode);

target = new byte[250];
returnCode = PwPostDir(target);
address.PostDirection = ASCIIEncoding.ASCII.GetString(target,0,returnCode);

target = new byte[250];
returnCode = PwBox(target);
address.PostOfficeBox = ASCIIEncoding.ASCII.GetString(target,0,returnCode);

target = new byte[250];
returnCode = PwPreDir(target);
address.PreDirection = ASCIIEncoding.ASCII.GetString(target,0,returnCode);

target = new byte[250];
returnCode = PwRoute(target);
address.Route = ASCIIEncoding.ASCII.GetString(target,0,returnCode);

target = new byte[250];
returnCode = PwStreetName(target);
address.StreetName = ASCIIEncoding.ASCII.GetString(target,0,returnCode);

target = new byte[250];
returnCode = PwStreetSuffix(target);
address.StreetSuffix = ASCIIEncoding.ASCII.GetString(target,0,returnCode);

target = new byte[250];
returnCode = PwUnitValue(target);
address.Unit = ASCIIEncoding.ASCII.GetString(target,0,returnCode);

target = new byte[250];
returnCode = PwUnitDesignator(target);
address.UnitDesignator = ASCIIEncoding.ASCII.GetString(target,0,returnCode);
}

FreeLibrary(hmod);

return address;
}
}
}

Trevor

Re: Have you seen this article on MSDN?

Tboner

5:06 25 Nov '04

Hold on sec. When the "location" of the .dll is dynamic but you know the name of the .dll you can use this function. (my above post doesn't work if the name of the .dll is unknown.) http://msdn.microsoft.com/library/default.asp?url=/library/en-us/dllproc/base/setdlldirectory.asp[^]
Sign In·View Thread·PermaLink

Using Invoke.dll in WebServices

sedel

5:00 22 Nov '04

Hello I use the invoke dll in windows applications and it works fine. I used the same .Net Wrapper (VB), in a .Net WebService and I have a probleme because my wrapper doesn't find the dll I load dynamicaly. (LoadLibrary return 0) I know that Asp.Net make a copy of binary folder in cache. How can I resolve this probleme Thanks in advance Sébastien
Sign In·View Thread·PermaLink	1.00/5 (2 votes)

Re: Using Invoke.dll in WebServices

joylite

23:29 12 May '06

if u use the absolut DLL path. such as : c:\\xxpath\\xx.dll it should be work. joylite
Sign In·View Thread·PermaLink

Last Visit: Friday, September 5, 2008 10:27 PM Last Update:Friday, September 5, 2008 10:27 PM

12 Next »

General News Question Answer Joke Rant Admin