Class: AppInfo::PE

Inherits:

File

• Object
• File
• AppInfo::PE

Extended by:

Forwardable

Includes:

Helper::Archive, Helper::HumanFileSize

Defined in:

lib/app_info/pe.rb

Overview

Windows PE parser

See Also:

• Microsoft PE Format

Defined Under Namespace

Classes: VersionInfo

Constant Summary

ARCH =

{
  0x014c => 'x86',
  0x0200 => 'Intel Itanium',
  0x8664 => 'x64',
  0x1c0 => 'arm',
  0xaa64 => 'arm64',
  0x5032 => 'RISC-v 32',
  0x5064 => 'RISC-v 64',
  0x5128 => 'RISC-v 128'
}.freeze

Constants included from Helper::HumanFileSize

Helper::HumanFileSize::FILE_SIZE_UNITS

Instance Attribute Summary

Attributes inherited from File

#file, #logger

Instance Method Summary

• #archs ⇒ String (also: #architectures)
• #assembly_version ⇒ String
• #binary_file ⇒ String

  Binary_file path.

• #binary_size(human_size: false) ⇒ Object
• #build_version ⇒ String^?

  Find #special_build, #private_build then fallback to #assembly_version.

• #clear! ⇒ Object
• #company_name ⇒ String
• #copyright ⇒ String
• #device ⇒ Symbol

  Device.

• #file_description ⇒ String
• #file_version ⇒ String
• #icons ⇒ Array{String}

  Icons paths of bmp image icons.

• #imports ⇒ Hash{String => String}

  Imports imports of libraries.

• #internal_name ⇒ String
• #legal_trademarks ⇒ String
• #manufacturer ⇒ Symbol

  Manufacturer.

• #original_filename ⇒ String
• #pe ⇒ PEdump
• #platform ⇒ Symbol

  Platform.

• #private_build ⇒ String
• #product_name ⇒ String (also: #name)
• #product_version ⇒ String
• #release_version ⇒ String^?

  Find #product_version then fallback to #file_version.

• #size(human_size: false) ⇒ Integer, String

  return file size.

• #special_build ⇒ String
• #version_info ⇒ VersionInfo

Methods included from Helper::Archive

#tempdir, #unarchive

Methods included from Helper::HumanFileSize

#file_to_human_size, #number_to_human_size

Methods inherited from File

#format, #initialize, #not_implemented_error!

Constructor Details

This class inherits a constructor from AppInfo::File

Instance Method Details

#archs ⇒ String Also known as: architectures

# File 'lib/app_info/pe.rb', line 115

def archs
  ARCH[image_file_header.Machine] || 'unknown'
end

#assembly_version ⇒ String

See Also:

• AppInfo::PE::VersionInfo#assembly_version

# File 'lib/app_info/pe.rb', line 96

def_delegators :version_info, :product_name, :product_version, :company_name, :assembly_version,
:file_version, :file_description, :copyright, :special_build, :private_build,
:original_filename, :internal_name, :legal_trademarks

#binary_file ⇒ String

# File 'lib/app_info/pe.rb', line 189

def binary_file
  @binary_file ||= lambda {
    file_io = ::File.open(@file, 'rb')
    return @file unless file_io.read(100) =~ AppInfo::ZIP_RETGEX

    zip_file = Zip::File.open(@file)
    zip_entry = zip_file.glob('*.exe').first
    raise NotFoundError, 'Not found .exe file in archive file' if zip_entry.nil?

    exe_file = tempdir(zip_entry.name, prefix: 'pe-exe', system: true)
    zip_entry.extract(exe_file)
    zip_file.close

    return exe_file
  }.call
end

#binary_size(human_size: false) ⇒ Object

# File 'lib/app_info/pe.rb', line 55

def binary_size(human_size: false)
  file_to_human_size(binary_file, human_size: human_size)
end

#build_version ⇒ String^?

Find #special_build, #private_build then fallback to #assembly_version

# File 'lib/app_info/pe.rb', line 110

def build_version
  special_build || private_build || assembly_version
end

#clear! ⇒ Object

# File 'lib/app_info/pe.rb', line 181

def clear!
  @io = nil
  @pe = nil
  @icons = nil
  @imports = nil
end

#company_name ⇒ String

See Also:

• AppInfo::PE::VersionInfo#company_name

# File 'lib/app_info/pe.rb', line 96

def_delegators :version_info, :product_name, :product_version, :company_name, :assembly_version,
:file_version, :file_description, :copyright, :special_build, :private_build,
:original_filename, :internal_name, :legal_trademarks

#copyright ⇒ String

See Also:

• AppInfo::PE::VersionInfo#copyright

# File 'lib/app_info/pe.rb', line 96

def_delegators :version_info, :product_name, :product_version, :company_name, :assembly_version,
:file_version, :file_description, :copyright, :special_build, :private_build,
:original_filename, :internal_name, :legal_trademarks

#device ⇒ Symbol

# File 'lib/app_info/pe.rb', line 38

def device
  Device::WINDOWS
end

#file_description ⇒ String

See Also:

• AppInfo::PE::VersionInfo#file_description

# File 'lib/app_info/pe.rb', line 96

def_delegators :version_info, :product_name, :product_version, :company_name, :assembly_version,
:file_version, :file_description, :copyright, :special_build, :private_build,
:original_filename, :internal_name, :legal_trademarks

#file_version ⇒ String

See Also:

• AppInfo::PE::VersionInfo#file_version

# File 'lib/app_info/pe.rb', line 96

def_delegators :version_info, :product_name, :product_version, :company_name, :assembly_version,
:file_version, :file_description, :copyright, :special_build, :private_build,
:original_filename, :internal_name, :legal_trademarks

#icons ⇒ Array{String}

# File 'lib/app_info/pe.rb', line 128

def icons
  @icons ||= lambda {
    # Fetch the largest size icon
    files = []
    pe.resources&.find_all do |res|
      next unless res.type == 'ICON'

      filename = "#{::File.basename(file, '.*')}-#{res.type}-#{res.id}.bmp"
      icon_file = tempdir(filename, prefix: 'pe', system: true)
      mask_icon_file = icon_file.sub('.bmp', '.mask.bmp')

      begin
        ::File.open(icon_file, 'wb') do |f|
          f << res.restore_bitmap(io)
        end

        if res.bitmap_mask(io)
          mask_icon_file = icon_file.sub('.bmp', '.mask.bmp')
          ::File.open(mask_icon_file, 'wb') do |f|
            f << res.bitmap_mask(io)
          end
        end
      rescue StandardError => e
        # ignore pedump throws any exception.
        raise e unless e.backtrace.first.include?('pedump')

        FileUtils.rm_f(icon_file)
      ensure
        next unless ::File.exist?(icon_file)

        mask_file = ::File.exist?(mask_icon_file) ? mask_icon_file : nil
        files << icon_metadata(icon_file, mask_file: mask_file)
      end
    end

    files
  }.call
end

#imports ⇒ Hash{String => String}

# File 'lib/app_info/pe.rb', line 121

def imports
  @imports ||= pe.imports.each_with_object({}) do |import, obj|
    obj[import.module_name] = import.first_thunk.map(&:name).compact
  end
end

#internal_name ⇒ String

See Also:

• AppInfo::PE::VersionInfo#internal_name

# File 'lib/app_info/pe.rb', line 96

def_delegators :version_info, :product_name, :product_version, :company_name, :assembly_version,
:file_version, :file_description, :copyright, :special_build, :private_build,
:original_filename, :internal_name, :legal_trademarks

#legal_trademarks ⇒ String

See Also:

• AppInfo::PE::VersionInfo#legal_trademarks

# File 'lib/app_info/pe.rb', line 96

def_delegators :version_info, :product_name, :product_version, :company_name, :assembly_version,
:file_version, :file_description, :copyright, :special_build, :private_build,
:original_filename, :internal_name, :legal_trademarks

#manufacturer ⇒ Symbol

# File 'lib/app_info/pe.rb', line 28

def manufacturer
  Manufacturer::MICROSOFT
end

#original_filename ⇒ String

See Also:

• AppInfo::PE::VersionInfo#original_filename

# File 'lib/app_info/pe.rb', line 96

def_delegators :version_info, :product_name, :product_version, :company_name, :assembly_version,
:file_version, :file_description, :copyright, :special_build, :private_build,
:original_filename, :internal_name, :legal_trademarks

#pe ⇒ PEdump

# File 'lib/app_info/pe.rb', line 168

def pe
  @pe ||= lambda {
    pe = PEdump.new(io)
    pe.logger.level = Logger::FATAL # ignore :warn logger output
    pe
  }.call
end

#platform ⇒ Symbol

# File 'lib/app_info/pe.rb', line 33

def platform
  Platform::WINDOWS
end

#private_build ⇒ String

See Also:

• AppInfo::PE::VersionInfo#private_build

# File 'lib/app_info/pe.rb', line 96

def_delegators :version_info, :product_name, :product_version, :company_name, :assembly_version,
:file_version, :file_description, :copyright, :special_build, :private_build,
:original_filename, :internal_name, :legal_trademarks

#product_name ⇒ String Also known as: name

See Also:

• AppInfo::PE::VersionInfo#product_name

# File 'lib/app_info/pe.rb', line 96

def_delegators :version_info, :product_name, :product_version, :company_name, :assembly_version,
:file_version, :file_description, :copyright, :special_build, :private_build,
:original_filename, :internal_name, :legal_trademarks

#product_version ⇒ String

See Also:

• AppInfo::PE::VersionInfo#product_version

# File 'lib/app_info/pe.rb', line 96

def_delegators :version_info, :product_name, :product_version, :company_name, :assembly_version,
:file_version, :file_description, :copyright, :special_build, :private_build,
:original_filename, :internal_name, :legal_trademarks

#release_version ⇒ String^?

Find #product_version then fallback to #file_version

# File 'lib/app_info/pe.rb', line 104

def release_version
  product_version || file_version
end

#size(human_size: false) ⇒ Integer, String

return file size

Examples:

Read file size in integer

aab.size                    # => 3618865

Read file size in human readabale

aab.size(human_size: true)  # => '3.45 MB'

# File 'lib/app_info/pe.rb', line 51

def size(human_size: false)
  file_to_human_size(@file, human_size: human_size)
end

#special_build ⇒ String

See Also:

• AppInfo::PE::VersionInfo#special_build

# File 'lib/app_info/pe.rb', line 96

def_delegators :version_info, :product_name, :product_version, :company_name, :assembly_version,
:file_version, :file_description, :copyright, :special_build, :private_build,
:original_filename, :internal_name, :legal_trademarks

#version_info ⇒ VersionInfo

# File 'lib/app_info/pe.rb', line 177

def version_info
  @version_info ||= VersionInfo.new(pe.version_info)
end