Chinaunix首页 | 论坛 | 博客

树欲静而风不止btpka3.blog.chinaunix.net

首页 |  博文目录 |  关于我

btpka3

  • 博客访问: 518768
  • 博文数量: 135
  • 博客积分: 3568
  • 博客等级: 中校
  • 技术积分: 1942
  • 用 户 组: 普通用户
  • 注册时间: 2006-10-19 17:52
文章分类

全部博文(135)

文章存档

2012年(29)

2011年(41)

2010年(26)

2009年(12)

2008年(9)

2007年(12)

2006年(6)

我的朋友
最近访客
推荐博文
相关博文
使用Java、SWT、JNA调用密码框ActiveX的加密逻辑

分类: Java

2012-03-09 01:57:25

不少商业网站都提供了密码输入框ActiveX控件来保护用户密码在输入过程中不被窃取,并加密。
但是有时可能需要做一些程序自动完成某些功能,比如:抓取网页的一些数据。
使用的账户少还好,一个一个通过嗅探器分析,保存加密后的数据。
若是账户多,就麻烦了。此时最好能够通过程序调用这段加密逻辑。
不过,这些控件不少都只提供用户输入接口,而不提供编程接口,即,只能通过用户界面发送消息。

下面的例子就是以淘宝的密码输入框控件为例,使用Swt和JNA来完成这项任务。
其主要思路是:
1. 通过Swt加载该含窗口界面的ActiveX控件。窗口可以不显示。
   这是由于这种控件是不能独立显示的,必须有一个外部容器,比如IE浏览器。
   (单独的 Swt 加载 ActiveX 的例子请参考 。)
2. 通过JNA调用Windows的相关消息接口模拟键盘发送相关消息。
3. 最后通过Swt的接口调用该控件的方法、属性,获取输出值。

说明:
TestSwtAndJna.java 只是最基本的示例,旨在说明原理。
而附件中的 OleFactory.java 是一个进一步再组织的半成品。
 Java&&ActiveX.zip  


在针对某个特定的ActiveX控件开发时,需要熟练使用 Visual Studio 中的 OLE-COM Object Viewer 和 Spy++ 这两个工具。

(PS:之所以使用 Java,是因为偶更熟悉Java开发。)
(PPS:附件中没有包含第三方jar包,请自行下载: 、、)


TestSwtAndJna.java  (这个只是最基本的示例,)
  1. import org.eclipse.swt.SWT;
  2. import org.eclipse.swt.SWTError;
  3. import org.eclipse.swt.events.SelectionAdapter;
  4. import org.eclipse.swt.events.SelectionEvent;
  5. import org.eclipse.swt.layout.FillLayout;
  6. import org.eclipse.swt.ole.win32.OLE;
  7. import org.eclipse.swt.ole.win32.OleAutomation;
  8. import org.eclipse.swt.ole.win32.OleClientSite;
  9. import org.eclipse.swt.ole.win32.OleFrame;
  10. import org.eclipse.swt.ole.win32.Variant;
  11. import org.eclipse.swt.widgets.Display;
  12. import org.eclipse.swt.widgets.Menu;
  13. import org.eclipse.swt.widgets.MenuItem;
  14. import org.eclipse.swt.widgets.MessageBox;
  15. import org.eclipse.swt.widgets.Shell;

  17. import com.sun.jna.Pointer;
  18. import com.sun.jna.platform.win32.Kernel32;
  19. import com.sun.jna.platform.win32.User32;
  20. import com.sun.jna.platform.win32.WinDef.DWORD;
  21. import com.sun.jna.platform.win32.WinDef.HWND;
  22. import com.sun.jna.platform.win32.WinDef.LPARAM;
  23. import com.sun.jna.platform.win32.WinDef.WPARAM;

  25. public class TestSwtAndJna {
  26.     static OleClientSite clientSite;

  28.     public static void main(String[] args) {
  29.         Display display = new Display();

  31.         Shell shell = new Shell(display);
  32.         shell.setText("Test Password ActiveX Control");
  33.         shell.setLayout(new FillLayout());
  34.         try {
  35.             OleFrame frame = new OleFrame(shell, SWT.NONE);
  36.             clientSite = new OleClientSite(frame, SWT.NONE,
  37.                     "{488A4255-3236-44B3-8F27-FA1AECAA8844}");
  38.             clientSite.doVerb(OLE.OLEIVERB_INPLACEACTIVATE);
  39.             addFileMenu(frame);

  41.         } catch (SWTError e) {
  42.             System.out.println("Unable to open activeX control");
  43.             display.dispose();
  44.             return;
  45.         }
  46.         shell.setSize(400, 300);

  48.         shell.open();

  50.         while (!shell.isDisposed()) {
  51.             if (!display.readAndDispatch()) {
  52.                 display.sleep();
  53.             }
  54.         }

  56.         display.dispose();
  57.     }

  59.     static void addFileMenu(final OleFrame frame) {
  60.         final Shell shell = frame.getShell();
  61.         Menu menuBar = shell.getMenuBar();
  62.         if (menuBar == null) {
  63.             menuBar = new Menu(shell, SWT.BAR);
  64.             shell.setMenuBar(menuBar);
  65.         }
  66.         MenuItem fileMenu = new MenuItem(menuBar, SWT.CASCADE);
  67.         fileMenu.setText("&Action");
  68.         Menu menuFile = new Menu(fileMenu);
  69.         fileMenu.setMenu(menuFile);
  70.         frame.setFileMenus(new MenuItem[] { fileMenu });

  72.         MenuItem menuHandle = new MenuItem(menuFile, SWT.CASCADE);
  73.         menuHandle.setText("View Activex Container's window handle");
  74.         menuHandle.addSelectionListener(new SelectionAdapter() {
  75.             public void widgetSelected(SelectionEvent e) {
  76.                 MessageBox messageBox = new MessageBox(shell,
  77.                         SWT.ICON_INFORMATION | SWT.OK);
  78.                 messageBox.setText("Info");

  80.                 // useful with SpyXX.exe
  81.                 messageBox.setMessage("handle = ["
  82.                         + Long.toHexString(clientSite.handle).toUpperCase()
  83.                         + "]");
  84.                 messageBox.open();
  85.             }
  86.         });

  88.         MenuItem menuTextData = new MenuItem(menuFile, SWT.CASCADE);
  89.         menuTextData.setText("View encrypted password");
  90.         menuTextData.addSelectionListener(new SelectionAdapter() {
  91.             public void widgetSelected(SelectionEvent e) {
  92.                 OleAutomation ole = new OleAutomation(clientSite);
  93.                 int[] rgdispid = ole.getIDsOfNames(new String[] { "TextData" });
  94.                 Variant var = ole.getProperty(rgdispid[0]);
  95.                 MessageBox messageBox = new MessageBox(shell,
  96.                         SWT.ICON_INFORMATION | SWT.OK);
  97.                 messageBox.setText("Info");
  98.                 String str = null;
  99.                 if (OLE.VT_NULL == var.getType()) {
  100.                     str = null;
  101.                 } else if (OLE.VT_EMPTY == var.getType()) {
  102.                     str = "";
  103.                 } else {
  104.                     str = var.getString();
  105.                 }
  106.                 messageBox.setMessage("encrypted password = [" + str + "]");
  107.                 messageBox.open();
  108.             }
  109.         });

  111.         MenuItem menuDelete = new MenuItem(menuFile, SWT.CASCADE);
  112.         menuDelete.setText("Delete last input char");
  113.         menuDelete.addSelectionListener(new SelectionAdapter() {
  114.             public void widgetSelected(SelectionEvent e) {
  115.                 Kernel32 kernel32 = Kernel32.INSTANCE;
  116.                 kernel32.SetLastError(0);
  117.                 User32 user32 = User32.INSTANCE;

  119.                 // 找到包含密码框的java窗体的handle
  120.                 HWND handle = new HWND(new Pointer(clientSite.handle));

  122.                 // 找到ActiveX的handle
  123.                 handle = user32.GetWindow(handle, new DWORD(User32.GW_CHILD));

  125.                 // 找到ActiveX中密码输入框的handle
  126.                 handle = user32.GetWindow(handle, new DWORD(User32.GW_CHILD));

  128.                 // 发送消息
  129.                 final WPARAM CHAR_BS = new WPARAM(0x08);
  130.                 final int WM_CHAR = 0x0102;
  131.                 LPARAM l = new LPARAM(0);
  132.                 user32.PostMessage(handle, WM_CHAR, CHAR_BS, l);
  133.                 int lastError = kernel32.GetLastError();
  134.                 if (lastError != 0) {
  135.                     System.out.println("last error = " + lastError);
  136.                 }
  137.             }
  138.         });

  140.         MenuItem menuPostMessage = new MenuItem(menuFile, SWT.CASCADE);
  141.         menuPostMessage.setText("Append a char '1'");
  142.         menuPostMessage.addSelectionListener(new SelectionAdapter() {
  143.             public void widgetSelected(SelectionEvent e) {
  144.                 Kernel32 kernel32 = Kernel32.INSTANCE;
  145.                 kernel32.SetLastError(0);
  146.                 User32 user32 = User32.INSTANCE;

  148.                 // 找到包含密码框的java窗体的handle
  149.                 HWND handle = new HWND(new Pointer(clientSite.handle));

  151.                 // 找到ActiveX的handle
  152.                 handle = user32.GetWindow(handle, new DWORD(User32.GW_CHILD));

  154.                 // 找到ActiveX中密码输入框的handle
  155.                 handle = user32.GetWindow(handle, new DWORD(User32.GW_CHILD));

  157.                 // 发送消息
  158.                 final int WM_CHAR = 0x0102;
  159.                 WPARAM w = new WPARAM('1');
  160.                 LPARAM l = new LPARAM(0);
  161.                 user32.PostMessage(handle, WM_CHAR, w, l);
  162.                 int lastError = kernel32.GetLastError();
  163.                 if (lastError != 0) {
  164.                     System.out.println("last error = " + lastError);
  165.                 }
  166.             }
  167.         });
  168.     }
  169. }

OleFactory.java (附件里忘了+了)

点击(此处)折叠或打开

  1. import java.util.HashMap;
  2. import java.util.Map;

  4. import org.eclipse.swt.SWT;
  5. import org.eclipse.swt.SWTError;
  6. import org.eclipse.swt.layout.FillLayout;
  7. import org.eclipse.swt.ole.win32.OLE;
  8. import org.eclipse.swt.ole.win32.OleAutomation;
  9. import org.eclipse.swt.ole.win32.OleClientSite;
  10. import org.eclipse.swt.ole.win32.OleFrame;
  11. import org.eclipse.swt.ole.win32.Variant;
  12. import org.eclipse.swt.widgets.Display;
  13. import org.eclipse.swt.widgets.Shell;

  15. import com.sun.jna.Native;
  16. import com.sun.jna.Pointer;
  17. import com.sun.jna.platform.win32.Kernel32;
  18. import com.sun.jna.platform.win32.User32;
  19. import com.sun.jna.platform.win32.WinDef.DWORD;
  20. import com.sun.jna.platform.win32.WinDef.HWND;
  21. import com.sun.jna.platform.win32.WinDef.LPARAM;
  22. import com.sun.jna.platform.win32.WinDef.WPARAM;
  23. import com.sun.jna.platform.win32.WinUser;
  24. import com.sun.jna.win32.StdCallLibrary;
  25. import com.sun.jna.win32.W32APIOptions;

  27. public class OleFactory {

  29.     public static void main(String[] args) {

  31.         PasswordEncrypter encrypter = new PasswordEncrypter();
  32.         encrypter.setOleFactory(OleFactory.getInstance());

  34.         String clearPassword = "111111";
  35.         String encryptedPassword = encrypter.encrypt(clearPassword);
  36.         System.out.println("-------------------------------");
  37.         System.out.println("clear password = [" + clearPassword + "]");
  38.         System.out.println("encrypted password = [" + encryptedPassword + "]");

  40.         clearPassword = "222222";
  41.         encryptedPassword = encrypter.encrypt(clearPassword);
  42.         System.out.println("-------------------------------");
  43.         System.out.println("clear password = [" + clearPassword + "]");
  44.         System.out.println("encrypted password = [" + encryptedPassword + "]");

  46.         OleFactory.getInstance().unregistAll();

  48.     }

  50.     private Map<String, ComContainer> oleContainerMap = new HashMap<String, ComContainer>();
  51.     private static OleFactory instance = null;

  53.     private OleFactory() {
  54.     };

  56.     public final static OleFactory getInstance() {
  57.         if (instance == null) {
  58.             instance = new OleFactory();
  59.         }
  60.         return instance;
  61.     }

  63.     /**
  64.      * NOTICE : when using the return object, pay attention about
  65.      * synchonization.
  66.      *
  67.      * @param clsId
  68.      * e.g. "Word.Document", "{11111111-2222-3333-4444-555555555555}"
  69.      */
  70.     public synchronized OleClientSite registAndGetOle(String progId) {
  71.         ComContainer container = oleContainerMap.get(progId);
  72.         if (container == null) {
  73.             container = new ComContainer(progId);
  74.             oleContainerMap.put(progId, container);
  75.         }
  76.         if (!container.isAlive()) {
  77.             container.start();
  78.             while (!container.isReady()) {
  79.                 try {
  80.                     container.join(1000);
  81.                 } catch (InterruptedException e) {
  82.                     throw new RuntimeException(e);
  83.                 }
  84.             }
  85.         }
  86.         return container.getOleClientSite();
  87.     }

  89.     @SuppressWarnings("deprecation")
  90.     public synchronized void unregistOle(String progId) {
  91.         ComContainer container = oleContainerMap.get(progId);
  92.         if (container != null) {
  93.             if (container.isAlive()) {
  94.                 container.notifyStop();
  95.                 try {
  96.                     container.join(1000);
  97.                 } catch (InterruptedException e) {
  98.                 }
  99.                 if (container.isAlive()) {
  100.                     container.stop();
  101.                 }
  102.             }
  103.             oleContainerMap.remove(progId);
  104.         }
  105.     }

  107.     public synchronized void unregistAll() {
  108.         for (String progId : oleContainerMap.keySet()) {
  109.             unregistOle(progId);
  110.         }
  111.     }

  113.     public static class PasswordEncrypter {
  114.         private final String progId = "{488A4255-3236-44B3-8F27-FA1AECAA8844}";
  115.         private OleFactory oleFactory = null;

  117.         public synchronized String encrypt(String password) {
  118.             Kernel32 kernel32 = Kernel32.INSTANCE;
  119.             kernel32.SetLastError(0);
  120.             User32 user32 = User32.INSTANCE;

  122.             OleClientSite clientSite = oleFactory.registAndGetOle(progId);
  123.             // find the window handle of OleFrame
  124.             HWND h = new HWND(new Pointer(clientSite.handle));

  126.             // find the window handle of the ActiveX
  127.             h = user32.GetWindow(h, new DWORD(User32.GW_CHILD));

  129.             // find the window handle of the password input control
  130.             h = user32.GetWindow(h, new DWORD(User32.GW_CHILD));

  132.             // clear previous input first
  133.             final char CHAR_BS = 0x08;
  134.             WPARAM wParam = new WPARAM(CHAR_BS);
  135.             LPARAM lParam = new LPARAM(1);

  137.             OleAutomation ole = new OleAutomation(clientSite);
  138.             int[] rgdispid = ole.getIDsOfNames(new String[] { "TextData" });
  139.             Variant var = ole.getProperty(rgdispid[0]);
  140.             while (OLE.VT_EMPTY != var.getType()) {
  141.                 MyUser32.INSTANCE
  142.                         .SendMessage(h, User32.WM_CHAR, wParam, lParam);
  143.                 var = ole.getProperty(rgdispid[0]);
  144.             }

  146.             // send the new password string
  147.             for (char c : password.toCharArray()) {
  148.                 wParam = new WPARAM(c);
  149.                 int errorNo = 0;
  150.                 int tryTimes = 0;
  151.                 kernel32.SetLastError(0);
  152.                 do {
  153.                     MyUser32.INSTANCE.SendMessage(h, User32.WM_CHAR, wParam,
  154.                             lParam);
  155.                     tryTimes++;
  156.                     errorNo = kernel32.GetLastError();
  157.                 } while (errorNo != 0 && tryTimes < 3);
  158.                 if (errorNo != 0) {
  159.                     throw new RuntimeException("Could not complete the "
  160.                             + "password encoding. error code = " + errorNo);
  161.                 }
  162.             }

  164.             // get the encrypted password
  165.             var = ole.getProperty(rgdispid[0]);
  166.             if (OLE.VT_NULL == var.getType()) {
  167.                 return null;
  168.             } else if (OLE.VT_EMPTY == var.getType()) {
  169.                 return "";
  170.             }
  171.             return var.getString();
  172.         }

  174.         public void setOleFactory(OleFactory oleFactory) {
  175.             this.oleFactory = oleFactory;
  176.         }
  177.     }
  178. }

  180. /**
  181.  * An container for ActiveX/COM components with windows UI.

  182.  * For those without UI, U can also consider using Jacob etc.

  183.  */
  184. class ComContainer extends Thread {
  185.     private Display display = null;
  186.     private Shell shell = null;
  187.     private OleClientSite clientSite = null;
  188.     private boolean stop = false;
  189.     private String progId = null;
  190.     private boolean ready = false;

  192.     /**
  193.      * @param clsId
  194.      * e.g. "Word.Document", "{11111111-2222-3333-4444-555555555555}"
  195.      */
  196.     public ComContainer(String progId) {
  197.         this.progId = progId;
  198.         ready = false;
  199.         stop = false;
  200.     }

  202.     public void run() {
  203.         ready = false;
  204.         stop = false;
  205.         display = new Display();
  206.         shell = new Shell(display);
  207.         shell.setLayout(new FillLayout());
  208.         try {
  209.             OleFrame frame = new OleFrame(shell, SWT.NONE);
  210.             clientSite = new OleClientSite(frame, SWT.NONE, progId);
  211.             clientSite.doVerb(OLE.OLEIVERB_INPLACEACTIVATE);
  212.         } catch (SWTError e) {
  213.             e.printStackTrace();
  214.             display.dispose();
  215.             throw e;
  216.         }

  218.         stop = false;
  219.         ready = true;
  220.         shell.setSize(400, 300);
  221.         // shell.open(); // You can uncomment this for an direct view

  223.         // start to dispatch event
  224.         while (!stop && !shell.isDisposed()) {
  225.             if (!display.readAndDispatch()) {
  226.                 display.sleep();
  227.             }
  228.         }

  230.         display.dispose();
  231.     }

  233.     public void notifyStop() {
  234.         stop = true;
  235.     }

  237.     public OleClientSite getOleClientSite() {
  238.         return clientSite;
  239.     }

  241.     public boolean isReady() {
  242.         return ready;
  243.     }
  244. }

  246. interface MyUser32 extends StdCallLibrary, WinUser {
  247.     static MyUser32 INSTANCE = (MyUser32) Native.loadLibrary("user32",
  248.             MyUser32.class, W32APIOptions.DEFAULT_OPTIONS);

  250.     LRESULT SendMessage(HWND hWnd, int Msg, WPARAM wParam, LPARAM lParam);
  251. }


阅读(6127) | 评论(0) | 转发(0) |
0

上一篇:初试 Jacob —— Java 调用不含窗口的ActiveX/COM 控件

下一篇:跨浏览器文件下载时文件名乱码处理

给主人留下些什么吧!~~
关于我们 | 关于IT168 | 联系方式 | 广告合作 | 法律声明 | 免费注册

Copyright 2001-2010 ChinaUnix.net All Rights Reserved 北京皓辰网域网络信息技术有限公司. 版权所有

感谢所有关心和支持过ChinaUnix的朋友们

16024965号-6