archive
/
windows-nt-4.0
mirror of https://github.com/lianthony/NT4.0
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Windows NT 4.0 source code leak
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2 Commits
1 Branch
0 Tags
184 MiB
Tree: b4a8d373d8
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'b4a8d373d8'
${ noResults }
windows-nt-4.0/private/ntos/rdr/kdrdr/rdrkd.c

799 lines
24 KiB
Raw Normal View History

initial commit
4 years ago
  1. /*++
  3. Copyright (c) 1990 Microsoft Corporation
  5. Module Name:
  7. rdrkd.c
  9. Abstract:
  11. Rdr Kernel Debugger extension
  13. Author:
  15. Milan Shah (milans) 16-Feb-1996
  17. Revision History:
  19. 16-Feb-1996 Milans Created
  21. --*/
  23. #include <ntifs.h>
  24. #include <windef.h>
  25. #include <ntkdexts.h>
  26. #include <rdr.h>
  28. #include <kdextlib.h>
  30. VOID
  31. dumplist(
  32. DWORD dwListEntryAddress,
  33. DWORD linkOffset,
  34. VOID (*dumpRoutine)(DWORD dwStructAddress)
  35. );
  37. /*
  38. * Rdr global variables.
  39. *
  40. */
  42. #define NO_SYMBOLS_MESSAGE \
  43. "Unable to get address of Rdr!RdrData - do you have symbols?\n"
  45. LPSTR ExtensionNames[] = {
  46. "Rdr1 debugger extensions",
  47. 0
  48. };
  50. LPSTR Extensions[] = {
  51. "RdrData - dumps Rdr!RdrData",
  52. "ActiveSeList - dumps active se list given address of list head",
  53. "DefaultSeList - dumps default se list given address of list head",
  54. "GlobalCleList - dumps global list of connections",
  55. "ServerCleList - dumps connect list given address of list head",
  56. "ConnectFcbs - dumps FCBS for a connection given FCB list head",
  57. "Dump - dump a data structure. Type in 'rdrkd.dump' for more info",
  58. 0
  59. };
  61. /*
  62. * REDIRDATA
  63. *
  64. */
  66. ENUM_VALUE_DESCRIPTOR RdrStateEnum[] = {
  67. {RdrStopped, "Rdr Stopped"},
  68. {RdrStarted, "Rdr Started"},
  69. {RdrStopping, "Rdr Stopping"},
  70. 0
  71. };
  73. FIELD_DESCRIPTOR RdrDataFields[] = {
  74. FIELD4(FieldTypeEnum,REDIRDATA,Initialized,RdrStateEnum),
  75. FIELD3(FieldTypeStruct,REDIRDATA,ComputerName),
  76. FIELD3(FieldTypeULong,REDIRDATA,DormantConnectionTimeout),
  77. FIELD3(FieldTypeULong,REDIRDATA,LockIncrement),
  78. FIELD3(FieldTypeULong,REDIRDATA,LockMaximum),
  79. FIELD3(FieldTypeULong,REDIRDATA,PipeIncrement),
  80. FIELD3(FieldTypeULong,REDIRDATA,PipeMaximum),
  81. FIELD3(FieldTypeULong,REDIRDATA,PipeBufferSize),
  82. FIELD3(FieldTypeULong,REDIRDATA,PipeWaitTimeout),
  83. FIELD3(FieldTypeULong,REDIRDATA,CollectDataTimeMs),
  84. FIELD3(FieldTypeULong,REDIRDATA,LockAndReadQuota),
  85. FIELD3(FieldTypeULong,REDIRDATA,MaximumNumberOfThreads),
  86. FIELD3(FieldTypeULong,REDIRDATA,CachedFileTimeout),
  87. FIELD3(FieldTypeULong,REDIRDATA,DormantFileLimit),
  88. FIELD3(FieldTypeULong,REDIRDATA,ReadAheadThroughput),
  89. FIELD3(FieldTypeBoolean,REDIRDATA,UseOpportunisticLocking),
  90. FIELD3(FieldTypeBoolean,REDIRDATA,UseOpBatch),
  91. FIELD3(FieldTypeBoolean,REDIRDATA,UseUnlockBehind),
  92. FIELD3(FieldTypeBoolean,REDIRDATA,UseCloseBehind),
  93. FIELD3(FieldTypeBoolean,REDIRDATA,BufferNamedPipes),
  94. FIELD3(FieldTypeBoolean,REDIRDATA,UseLockAndReadWriteAndUnlock),
  95. FIELD3(FieldTypeBoolean,REDIRDATA,UtilizeNtCaching),
  96. FIELD3(FieldTypeBoolean,REDIRDATA,UseRawRead),
  97. FIELD3(FieldTypeBoolean,REDIRDATA,UseRawWrite),
  98. FIELD3(FieldTypeBoolean,REDIRDATA,UseWriteRawWithData),
  99. FIELD3(FieldTypeBoolean,REDIRDATA,UseEncryption),
  100. FIELD3(FieldTypeBoolean,REDIRDATA,BufferFilesWithDenyWrite),
  101. FIELD3(FieldTypeBoolean,REDIRDATA,BufferReadOnlyFiles),
  102. FIELD3(FieldTypeBoolean,REDIRDATA,ForceCoreCreateMode),
  103. FIELD3(FieldTypeBoolean,REDIRDATA,Use512ByteMaximumTransfer),
  104. FIELD3(FieldTypeBoolean,REDIRDATA,NtSecurityEnabled),
  105. 0
  106. };
  108. BIT_MASK_DESCRIPTOR ServerCaps[] = {
  109. {DF_CORE, "Core"},
  110. {DF_MIXEDCASEPW, "MixedCasePasswords"},
  111. {DF_OLDRAWIO, "Old Raw IO"},
  112. {DF_NEWRAWIO, "New Raw IO"},
  113. {DF_LANMAN10, "Lanman 10"},
  114. {DF_LANMAN20, "Lanman 20"},
  115. {DF_MIXEDCASE, "Mixed case file names"},
  116. {DF_LONGNAME, "Long file names"},
  117. {DF_EXTENDNEGOT, "Supports Extended Negotiate"},
  118. {DF_LOCKREAD, "Supports LockReadWriteUnlock"},
  119. {DF_SECURITY, "Supports enhanced security"},
  120. {DF_NTPROTOCOL, "Supports NT Protocol"},
  121. {DF_SUPPORTEA, "Supports EAs"},
  122. {DF_LANMAN21, "Lanman 2.1"},
  123. {DF_CANCEL, "Supports NT style Cancel"},
  124. {DF_UNICODE, "Supports Unicode"},
  125. {DF_NTNEGOTIATE, "Supports NT style negotiate"},
  126. {DF_LARGE_FILES, "Supports large files"},
  127. {DF_NT_SMBS, "Supports NT SMBs"},
  128. {DF_RPC_REMOTE, "Supports server administration via RPC"},
  129. {DF_NT_STATUS, "Returns NT style status"},
  130. {DF_OPLOCK_LVL2, "Supports Level 2 oplocks"},
  131. {DF_TIME_IS_UTC, "Server time is UTC"},
  132. {DF_WFW, "Server is Windows for Workgroups"},
  133. {DF_TRANS2_FSCTL, "Supports remoted fsctls via trans2"},
  134. {DF_DFSAWARE, "Server is Dfs Enabled"},
  135. {DF_NT_FIND, "Supports NT info levels"},
  136. {DF_NT_40, "NT 4.0 Server"},
  137. 0
  138. };
  140. BIT_MASK_DESCRIPTOR ServerFlags[] = {
  141. {SLE_PAGING_FILE, "Server has a paging file"},
  142. {SLE_PINGING, "Ping outstanding"},
  143. 0
  144. };
  146. FIELD_DESCRIPTOR ServerListEntryFields[] = {
  147. FIELD3(FieldTypeUShort,SERVERLISTENTRY,Signature),
  148. FIELD3(FieldTypeUShort,SERVERLISTENTRY,Size),
  149. FIELD3(FieldTypePointer,SERVERLISTENTRY,RefCount),
  150. FIELD4(FieldTypeDWordBitMask,SERVERLISTENTRY,Flags,ServerFlags),
  151. FIELD4(FieldTypeDWordBitMask,SERVERLISTENTRY,Capabilities,ServerCaps),
  152. FIELD3(FieldTypeUnicodeString,SERVERLISTENTRY,Text),
  153. FIELD3(FieldTypePointer,SERVERLISTENTRY,LastConnectStatus),
  154. FIELD3(FieldTypeULong,SERVERLISTENTRY,LastConnectTime),
  155. FIELD3(FieldTypeUnicodeString,SERVERLISTENTRY,DomainName),
  156. FIELD3(FieldTypeStruct,SERVERLISTENTRY,GlobalNext),
  157. FIELD3(FieldTypeStruct,SERVERLISTENTRY,CLEHead),
  158. FIELD3(FieldTypeStruct,SERVERLISTENTRY,DefaultSeList),
  159. FIELD3(FieldTypeStruct,SERVERLISTENTRY,ActiveSecurityList),
  160. FIELD3(FieldTypeStruct,SERVERLISTENTRY,PotentialSecurityList),
  161. FIELD3(FieldTypePointer,SERVERLISTENTRY,SpecificTransportProvider),
  162. FIELD3(FieldTypeBoolean,SERVERLISTENTRY,IsLoopback),
  163. FIELD3(FieldTypeStruct,SERVERLISTENTRY,TimeZoneBias),
  164. FIELD3(FieldTypeULong,SERVERLISTENTRY,ConnectionReferenceCount),
  165. FIELD3(FieldTypePointer,SERVERLISTENTRY,ConnectionContext),
  166. FIELD3(FieldTypeLong,SERVERLISTENTRY,SecurityEntryCount),
  167. FIELD3(FieldTypeULong,SERVERLISTENTRY,SessionKey),
  168. FIELD3(FieldTypeULong,SERVERLISTENTRY,BufferSize),
  169. FIELD3(FieldTypeUShort,SERVERLISTENTRY,MaximumRequests),
  170. FIELD3(FieldTypeUShort,SERVERLISTENTRY,MaximumVCs),
  171. FIELD3(FieldTypePointer,SERVERLISTENTRY,MpxTable),
  172. FIELD3(FieldTypePointer,SERVERLISTENTRY,OpLockMpxEntry),
  173. FIELD3(FieldTypeULong,SERVERLISTENTRY,NumberOfEntries),
  174. FIELD3(FieldTypeULong,SERVERLISTENTRY,NumberOfActiveEntries),
  175. FIELD3(FieldTypeULong,SERVERLISTENTRY,NumberOfLongTermEntries),
  176. FIELD3(FieldTypeULong,SERVERLISTENTRY,MaximumCommands),
  177. FIELD3(FieldTypeUShort,SERVERLISTENTRY,MultiplexedCounter),
  178. FIELD3(FieldTypeUShort,SERVERLISTENTRY,MultiplexedIncrement),
  179. FIELD3(FieldTypeUShort,SERVERLISTENTRY,MultiplexedMask),
  180. FIELD3(FieldTypeUShort,SERVERLISTENTRY,CryptKeyLength),
  181. FIELD3(FieldTypeStruct,SERVERLISTENTRY,GateSemaphore),
  182. FIELD3(FieldTypeStruct,SERVERLISTENTRY,CreationLock),
  183. FIELD3(FieldTypeStruct,SERVERLISTENTRY,SessionStateModifiedLock),
  184. FIELD3(FieldTypeStruct,SERVERLISTENTRY,OutstandingRequestResource),
  185. FIELD3(FieldTypeStruct,SERVERLISTENTRY,RawResource),
  186. FIELD3(FieldTypeULong,SERVERLISTENTRY,Throughput),
  187. FIELD3(FieldTypeULong,SERVERLISTENTRY,Delay),
  188. FIELD3(FieldTypeULong,SERVERLISTENTRY,WriteBehindPages),
  189. FIELD3(FieldTypeStruct,SERVERLISTENTRY,ThirtySecondsOfData),
  190. FIELD3(FieldTypeBoolean,SERVERLISTENTRY,Reliable),
  191. FIELD3(FieldTypeBoolean,SERVERLISTENTRY,ReadAhead),
  192. FIELD3(FieldTypeBoolean,SERVERLISTENTRY,ConnectionValid),
  193. FIELD3(FieldTypeBoolean,SERVERLISTENTRY,DisconnectNeeded),
  194. FIELD3(FieldTypeBoolean,SERVERLISTENTRY,UserSecurity),
  195. FIELD3(FieldTypeBoolean,SERVERLISTENTRY,EncryptPasswords),
  196. FIELD3(FieldTypeBoolean,SERVERLISTENTRY,SupportsRawRead),
  197. FIELD3(FieldTypeBoolean,SERVERLISTENTRY,SupportsRawWrite),
  198. FIELD3(FieldTypeBoolean,SERVERLISTENTRY,Scanning),
  199. FIELD3(FieldTypeStruct,SERVERLISTENTRY,CryptKey),
  201. #ifdef RDRDBG_REQUEST_RESOURCE
  202. FIELD3(FieldTypeStruct,SERVERLISTENTRY,RequestHistoryLock),
  203. FIELD3(FieldTypeULong,SERVERLISTENTRY,RequestHistoryIndex),
  204. FIELD3(FieldTypeStruct,SERVERLISTENTRY,RequestHistory),
  205. #endif
  207. 0
  209. };
  211. ENUM_VALUE_DESCRIPTOR ConnectTypeEnum[] = {
  212. {(ULONG) CONNECT_WILD, "Connect Wild"},
  213. {CONNECT_DISK, "Connect Disk"},
  214. {CONNECT_PRINT, "Connect Print"},
  215. {CONNECT_COMM, "Connect Comm"},
  216. {CONNECT_IPC, "Connect IPC"},
  217. 0
  218. };
  220. BIT_MASK_DESCRIPTOR ConnectFlags[] = {
  221. {CLE_SCANNED, "Connection has been scanned during dormant scan"},
  222. {CLE_DORMANT, "Connection is dormant"},
  223. {CLE_TREECONNECTED, "Connection has a tree connection"},
  224. {CLE_DOESNT_NOTIFY, "ChangeNotify not supported"},
  225. {CLE_IS_A_DFS_SHARE, "Share is in Dfs"},
  226. 0
  227. };
  229. FIELD_DESCRIPTOR ConnectListEntryFields[] = {
  230. FIELD3(FieldTypeUShort,CONNECTLISTENTRY,Signature),
  231. FIELD3(FieldTypeUShort,CONNECTLISTENTRY,Size),
  232. FIELD3(FieldTypeULong,CONNECTLISTENTRY,RefCount),
  233. FIELD4(FieldTypeEnum,CONNECTLISTENTRY,Type,ConnectTypeEnum),
  234. FIELD4(FieldTypeDWordBitMask,CONNECTLISTENTRY,Flags,ConnectFlags),
  235. FIELD3(FieldTypeLong,CONNECTLISTENTRY,NumberOfDormantFiles),
  236. FIELD3(FieldTypePointer,CONNECTLISTENTRY,Server),
  237. FIELD3(FieldTypeStruct,CONNECTLISTENTRY,SiblingNext),
  238. FIELD3(FieldTypeStruct,CONNECTLISTENTRY,GlobalNext),
  239. FIELD3(FieldTypeUnicodeString,CONNECTLISTENTRY,Text),
  240. FIELD3(FieldTypeULong,CONNECTLISTENTRY,SerialNumber),
  241. FIELD3(FieldTypeStruct,CONNECTLISTENTRY,FcbChain),
  242. #ifdef NOTIFY
  243. FIELD3(FieldTypeStruct,CONNECTLISTENTRY,DirNotifyList),
  244. #endif
  245. FIELD3(FieldTypeStruct,CONNECTLISTENTRY,DefaultSeList),
  246. #ifdef NOTIFY
  247. FIELD3(FieldTypePointer,CONNECTLISTENTRY,NotifySync),
  248. #endif
  249. FIELD3(FieldTypeULong,CONNECTLISTENTRY,FileSystemGranularity),
  250. FIELD3(FieldTypeStruct,CONNECTLISTENTRY,FileSystemSize),
  251. FIELD3(FieldTypeULong,CONNECTLISTENTRY,FileSystemAttributes),
  252. FIELD3(FieldTypeLong,CONNECTLISTENTRY,MaximumComponentLength),
  253. FIELD3(FieldTypeUShort,CONNECTLISTENTRY,FileSystemTypeLength),
  254. FIELD3(FieldTypeUShort,CONNECTLISTENTRY,TreeId),
  255. FIELD3(FieldTypeBoolean,CONNECTLISTENTRY,HasTreeId),
  256. FIELD3(FieldTypeBoolean,CONNECTLISTENTRY,Deleted),
  257. FIELD3(FieldTypeStruct,CONNECTLISTENTRY,FileSystemType),
  258. 0
  259. };
  262. /*
  263. * SECURITYENTRY
  264. *
  265. */
  267. BIT_MASK_DESCRIPTOR SecurityEntryFlags[] = {
  268. {SE_HAS_SESSION, "Has Session"},
  269. {SE_USE_DEFAULT_PASS, "Use Default Password"},
  270. {SE_USE_DEFAULT_USER, "Use Default User"},
  271. {SE_USE_DEFAULT_DOMAIN, "Use Default Domain"},
  272. {SE_IS_NULL_SESSION, "Is Null Session"},
  273. {SE_HAS_CONTEXT, "Has security context"},
  274. {SE_BLOB_NEEDS_VERIFYING, "Kerberos blob needs verifying"},
  275. {SE_RETURN_ON_ERROR, "Return on error"},
  276. {SE_HAS_CRED_HANDLE, "Has credential handle"},
  277. 0
  278. };
  280. FIELD_DESCRIPTOR SecurityEntryFields[] = {
  281. FIELD3(FieldTypeUShort,SECURITY_ENTRY,Signature),
  282. FIELD3(FieldTypeUShort,SECURITY_ENTRY,Size),
  283. FIELD3(FieldTypePointer,SECURITY_ENTRY,NonPagedSecurityEntry),
  284. FIELD4(FieldTypeDWordBitMask,SECURITY_ENTRY,Flags,SecurityEntryFlags),
  285. FIELD3(FieldTypeLong,SECURITY_ENTRY,OpenFileReferenceCount),
  286. FIELD3(FieldTypePointer,SECURITY_ENTRY,Server),
  287. FIELD3(FieldTypePointer,SECURITY_ENTRY,Connection),
  288. FIELD3(FieldTypeUnicodeString,SECURITY_ENTRY,UserName),
  289. FIELD3(FieldTypeUnicodeString,SECURITY_ENTRY,Password),
  290. FIELD3(FieldTypeUnicodeString,SECURITY_ENTRY,Domain),
  291. FIELD3(FieldTypeStruct,SECURITY_ENTRY,LogonId),
  292. FIELD3(FieldTypeStruct,SECURITY_ENTRY,ActiveNext),
  293. FIELD3(FieldTypeStruct,SECURITY_ENTRY,PotentialNext),
  294. FIELD3(FieldTypeStruct,SECURITY_ENTRY,DefaultSeNext),
  295. #if DBG
  296. FIELD3(FieldTypeStruct,SECURITY_ENTRY,GlobalNext),
  297. #endif
  298. FIELD3(FieldTypeStruct,SECURITY_ENTRY,Khandle),
  299. FIELD3(FieldTypeStruct,SECURITY_ENTRY,Chandle),
  300. FIELD3(FieldTypeUShort,SECURITY_ENTRY,UserId),
  301. FIELD3(FieldTypeStruct,SECURITY_ENTRY,UserSessionKey),
  302. FIELD3(FieldTypeStruct,SECURITY_ENTRY,LanmanSessionKey),
  303. 0
  304. };
  306. /*
  307. * ICB and FCB
  308. *
  309. */
  311. ENUM_VALUE_DESCRIPTOR FcbTypeEnum[] = {
  312. {Unknown, "Unknown"},
  313. {Redirector, "Redirector"},
  314. {NetRoot, "NetRoot"},
  315. {ServerRoot, "ServerRoot"},
  316. {TreeConnect, "TreeConnect"},
  317. {DiskFile, "DiskFile"},
  318. {PrinterFile, "PrinterFile"},
  319. {Directory, "Directory"},
  320. {NamedPipe, "NamedPipe"},
  321. {Com, "Com"},
  322. {Mailslot, "Mailslot"},
  323. {FileOrDirectory, "FileOrDirectory"},
  324. 0
  325. };
  327. BIT_MASK_DESCRIPTOR FcbFlags[] = {
  328. {FCB_ERROR, "File is in error"},
  329. {FCB_CLOSING, "File is in the process of closing"},
  330. {FCB_IMMUTABLE, "File cannot be modified"},
  331. {FCB_DELETEPEND, "File has delete pending on it"},
  332. {FCB_DOESNTEXIST, "File doesn't really exist"},
  333. {FCB_OPLOCKED, "File is oplocked"},
  334. {FCB_HASOPLOCKHANDLE, "Fcb->OplockFileId is valid"},
  335. {FCB_OPLOCKBREAKING, "Oplock breaking"},
  336. {FCB_WRITE_THROUGH, "Write through handle is open"},
  337. {FCB_PAGING_FILE, "File is a paging file"},
  338. {FCB_DELETEONCLOSE, "Delete the file on close"},
  339. {FCB_DFSFILE, "File opened by Dfs"},
  340. 0
  341. };
  343. BIT_MASK_DESCRIPTOR IcbFlags[] = {
  344. {ICB_ERROR, "File is in error"},
  345. {ICB_FORCECLOSED, "File was force closed"},
  346. {ICB_RENAMED, "File was renamed"},
  347. {ICB_TCONCREATED, "File was created as tree connect"},
  348. {ICB_HASHANDLE, "File has handle"},
  349. {ICB_PSEUDOOPENED, "File was pseudo-opened"},
  350. {ICB_DELETE_PENDING, "Delete Pending"},
  351. {ICB_OPENED, "File has been opened"},
  352. {ICB_SETDATEONCLOSE, "Set data-time on close"},
  353. {ICB_DEFERREDOPEN, "Deferred open"},
  354. {ICB_OPEN_TARGET_DIR, "Handle to target directory"},
  355. {ICB_SET_DEFAULT_SE, "Set Default SE"},
  356. {ICB_USER_SET_TIMES, "User set times"},
  357. {ICB_SETATTRONCLOSE, "Update attr. after close"},
  358. {ICB_DELETEONCLOSE, "Delete file on close"},
  359. {ICB_BACKUP_INTENT, "Opened for backup intent"},
  360. 0
  361. };
  364. /*
  365. * ICB
  366. *
  367. */
  370. FIELD_DESCRIPTOR IcbFileFields[] = {
  371. FIELD3(FieldTypeULong,ICB,Signature),
  372. FIELD4(FieldTypeDWordBitMask,ICB,Flags,IcbFlags),
  373. FIELD3(FieldTypePointer,ICB,Fcb),
  374. FIELD3(FieldTypePointer,ICB,NonPagedFcb),
  375. FIELD3(FieldTypeStruct,ICB,InstanceNext),
  376. FIELD3(FieldTypePointer,ICB,Se),
  377. FIELD3(FieldTypePointer,ICB,NonPagedSe),
  378. FIELD3(FieldTypeULong,ICB,GrantedAccess),
  379. FIELD3(FieldTypeUShort,ICB,FileId),
  380. FIELD4(FieldTypeEnum,ICB,Type,FcbTypeEnum),
  381. FIELD3(FieldTypeULong,ICB,EaIndex),
  382. FIELD3(FieldTypePointer,ICB,u.f.Scb),
  383. FIELD3(FieldTypePointer,ICB,u.f.FileObject),
  384. FIELD3(FieldTypeStruct,ICB,u.f.NextReadOffset),
  385. FIELD3(FieldTypeStruct,ICB,u.f.NextWriteOffset),
  386. FIELD3(FieldTypeStruct,ICB,u.f.BackOff),
  387. FIELD3(FieldTypeStruct,ICB,u.f.LockHead),
  388. FIELD3(FieldTypeULong,ICB,u.f.Flags),
  389. FIELD3(FieldTypeStruct,ICB,u.f.AndXBehind),
  390. FIELD3(FieldTypeChar,ICB,u.f.OplockLevel),
  391. FIELD3(FieldTypeBoolean,ICB,u.f.CcReadAhead),
  392. FIELD3(FieldTypeBoolean,ICB,u.f.CcReliable),
  393. 0
  394. };
  396. FIELD_DESCRIPTOR IcbDirectoryFields[] = {
  397. FIELD3(FieldTypeULong,ICB,Signature),
  398. FIELD4(FieldTypeDWordBitMask,ICB,Flags,IcbFlags),
  399. FIELD3(FieldTypePointer,ICB,Fcb),
  400. FIELD3(FieldTypePointer,ICB,NonPagedFcb),
  401. FIELD3(FieldTypeStruct,ICB,InstanceNext),
  402. FIELD3(FieldTypePointer,ICB,Se),
  403. FIELD3(FieldTypePointer,ICB,NonPagedSe),
  404. FIELD3(FieldTypeStruct,ICB,GrantedAccess),
  405. FIELD3(FieldTypeUShort,ICB,FileId),
  406. FIELD4(FieldTypeEnum,ICB,Type,FcbTypeEnum),
  407. FIELD3(FieldTypeULong,ICB,EaIndex),
  408. FIELD3(FieldTypePointer,ICB,u.d.Scb),
  409. FIELD3(FieldTypeStruct,ICB,u.d.DirCtrlOutstanding),
  410. FIELD3(FieldTypeULong,ICB,u.d.OpenOptions),
  411. FIELD3(FieldTypeUShort,ICB,u.d.ShareAccess),
  412. FIELD3(FieldTypeULong,ICB,u.d.FileAttributes),
  413. FIELD3(FieldTypeULong,ICB,u.d.DesiredAccess),
  414. FIELD3(FieldTypeULong,ICB,u.d.Disposition),
  415. 0
  416. };
  418. FIELD_DESCRIPTOR FcbFields[] = {
  419. FIELD3(FieldTypeStruct,FCB,Header),
  420. FIELD3(FieldTypePointer,FCB,NonPagedFcb),
  421. FIELD3(FieldTypeLong,FCB,NumberOfOpens),
  422. FIELD3(FieldTypeULong,FCB,OpenError),
  423. FIELD3(FieldTypeStruct,FCB,GlobalNext),
  424. FIELD3(FieldTypeStruct,FCB,ConnectNext),
  425. FIELD3(FieldTypeStruct,FCB,InstanceChain),
  426. FIELD3(FieldTypeUnicodeString,FCB,FileName),
  427. FIELD3(FieldTypeUnicodeString,FCB,LastFileName),
  428. FIELD3(FieldTypeStruct,FCB,ShareAccess),
  429. FIELD3(FieldTypeStruct,FCB,CreationTime),
  430. FIELD3(FieldTypeStruct,FCB,LastAccessTime),
  431. FIELD3(FieldTypeStruct,FCB,LastWriteTime),
  432. FIELD3(FieldTypeStruct,FCB,ChangeTime),
  433. FIELD3(FieldTypeULong,FCB,Attribute),
  434. FIELD3(FieldTypeStruct,FCB,FileLock),
  435. FIELD3(FieldTypeULong,FCB,WriteBehindPages),
  436. FIELD3(FieldTypeULong,FCB,DormantTimeout),
  437. FIELD3(FieldTypePointer,FCB,LazyWritingThread),
  438. FIELD3(FieldTypePointer,FCB,ServerFileId),
  439. FIELD3(FieldTypePointer,FCB,AcquireSizeRoutine),
  440. FIELD3(FieldTypePointer,FCB,ReleaseSizeRoutine),
  441. FIELD3(FieldTypeULong,FCB,GrantedAccess),
  442. FIELD3(FieldTypeUShort,FCB,GrantedShareAccess),
  443. FIELD3(FieldTypeUShort,FCB,AccessGranted),
  444. FIELD3(FieldTypeULong,FCB,UpdatedFile),
  445. FIELD3(FieldTypeULong,FCB,HaveSetCacheReadAhead),
  446. 0
  447. };
  449. FIELD_DESCRIPTOR NonPagedFcbFields[] = {
  450. FIELD3(FieldTypeUShort,NONPAGED_FCB,Signature),
  451. FIELD3(FieldTypeUShort,NONPAGED_FCB,Size),
  452. FIELD3(FieldTypePointer,NONPAGED_FCB,PagedFcb),
  453. #ifdef RDRDBG_FCBREF
  454. FIELD3(FieldTypeStruct,NONPAGED_FCB,ReferenceHistory),
  455. #endif
  456. FIELD3(FieldTypeLong,NONPAGED_FCB,RefCount),
  457. FIELD4(FieldTypeDWordBitMask,NONPAGED_FCB,Flags, FcbFlags),
  458. FIELD4(FieldTypeEnum,NONPAGED_FCB,Type,FcbTypeEnum),
  459. FIELD3(FieldTypePointer,NONPAGED_FCB,SharingCheckFcb),
  460. FIELD3(FieldTypeStruct,NONPAGED_FCB,SectionObjectPointer),
  461. FIELD3(FieldTypeStruct,NONPAGED_FCB,CreateComplete),
  462. FIELD3(FieldTypeStruct,NONPAGED_FCB,PurgeCacheSynchronizer),
  463. FIELD3(FieldTypePointer,NONPAGED_FCB,OplockedSecurityEntry),
  464. FIELD3(FieldTypeStruct,NONPAGED_FCB,InstanceChainLock),
  465. FIELD3(FieldTypeUShort,NONPAGED_FCB,OplockedFileId),
  466. FIELD3(FieldTypeChar,NONPAGED_FCB,OplockLevel),
  467. 0
  468. };
  470. STRUCT_DESCRIPTOR Structs[] = {
  471. STRUCT(REDIRDATA,RdrDataFields),
  472. STRUCT(SERVERLISTENTRY,ServerListEntryFields),
  473. STRUCT(CONNECTLISTENTRY,ConnectListEntryFields),
  474. STRUCT(SECURITY_ENTRY,SecurityEntryFields),
  475. STRUCT(FCB,FcbFields),
  476. STRUCT(NONPAGED_FCB,NonPagedFcbFields),
  477. {"ICB_FILE", sizeof(ICB), IcbFileFields},
  478. {"ICB_DIRECTORY", sizeof(ICB), IcbDirectoryFields},
  479. 0
  480. };
  482. /*
  483. * Rdr specific dump routines
  484. *
  485. */
  488. /*
  489. * rdrdata : Routine to dump the global rdr data structure
  490. *
  491. */
  493. BOOL
  494. rdrdata(
  495. DWORD dwCurrentPC,
  496. PNTKD_EXTENSION_APIS lpExtensionApis,
  497. LPSTR lpArgumentString
  498. )
  499. {
  500. DWORD dwAddress;
  502. SETCALLBACKS();
  504. dwAddress = (lpGetExpressionRoutine)("rdr!RdrData");
  506. if (dwAddress) {
  507. REDIRDATA RdrData;
  509. if (GetData( dwAddress, &RdrData, sizeof(RdrData) )) {
  510. PrintStructFields( dwAddress, &RdrData, RdrDataFields);
  511. } else {
  512. PRINTF( "Unable to read RdrData @ %08lx\n", dwAddress );
  513. }
  514. } else {
  515. PRINTF( NO_SYMBOLS_MESSAGE );
  516. }
  518. return( TRUE );
  520. }
  522. /*
  523. * SecurityEntryList
  524. *
  525. */
  527. VOID
  528. dumpSecurityEntry(
  529. DWORD dwAddress
  530. )
  531. {
  532. SECURITY_ENTRY se;
  534. if (GetData(dwAddress, &se, sizeof(se))) {
  536. PRINTF("\n--- Security Entry @ %08lx\n", dwAddress);
  538. PrintStructFields( dwAddress, &se, SecurityEntryFields );
  540. } else {
  542. PRINTF("\n*** Unable to read Security Entry @ %08lx\n", dwAddress );
  544. }
  546. }
  548. BOOL
  549. activeselist(
  550. DWORD dwCurrentPC,
  551. PNTKD_EXTENSION_APIS lpExtensionApis,
  552. LPSTR lpArgumentString
  553. )
  554. {
  555. DWORD dwAddress;
  557. SETCALLBACKS();
  559. if (lpArgumentString && *lpArgumentString) {
  560. dwAddress = (lpGetExpressionRoutine)(lpArgumentString);
  561. } else {
  562. PRINTF( "Must specify address of security entry list head\n" );
  563. return( TRUE );
  564. }
  566. if (dwAddress) {
  567. dumplist(
  568. dwAddress,
  569. FIELD_OFFSET(SECURITY_ENTRY,ActiveNext),
  570. dumpSecurityEntry);
  571. } else {
  572. PRINTF( NO_SYMBOLS_MESSAGE );
  573. }
  574. return(TRUE);
  576. }
  578. BOOL
  579. defaultselist(
  580. DWORD dwCurrentPC,
  581. PNTKD_EXTENSION_APIS lpExtensionApis,
  582. LPSTR lpArgumentString
  583. )
  584. {
  585. DWORD dwAddress;
  587. SETCALLBACKS();
  589. if (lpArgumentString && *lpArgumentString) {
  590. dwAddress = (lpGetExpressionRoutine)(lpArgumentString);
  591. } else {
  592. PRINTF( "Must specify address of security entry list head\n" );
  593. return( TRUE );
  594. }
  596. if (dwAddress) {
  597. dumplist(
  598. dwAddress,
  599. FIELD_OFFSET(SECURITY_ENTRY,DefaultSeNext),
  600. dumpSecurityEntry);
  601. } else {
  602. PRINTF( NO_SYMBOLS_MESSAGE );
  603. }
  604. return(TRUE);
  606. }
  608. /*
  609. * ConnectList
  610. *
  611. */
  613. VOID
  614. dumpConnectListEntry(
  615. DWORD dwAddress
  616. )
  617. {
  618. CONNECTLISTENTRY cle;
  620. if (GetData(dwAddress, &cle, sizeof(cle))) {
  622. PRINTF("\n--- Connect List Entry @ %08lx\n", dwAddress);
  624. PrintStructFields( dwAddress, &cle, ConnectListEntryFields );
  626. } else {
  628. PRINTF("\n*** Unable to read Connect List Entry @ %08lx\n", dwAddress );
  630. }
  632. }
  634. BOOL
  635. globalclelist(
  636. DWORD dwCurrentPC,
  637. PNTKD_EXTENSION_APIS lpExtensionApis,
  638. LPSTR lpArgumentString
  639. )
  640. {
  641. DWORD dwAddress;
  643. SETCALLBACKS();
  645. dwAddress = (lpGetExpressionRoutine)("rdr!RdrConnectHead");
  647. if (dwAddress) {
  648. dumplist(
  649. dwAddress,
  650. FIELD_OFFSET(CONNECTLISTENTRY,GlobalNext),
  651. dumpConnectListEntry);
  652. } else {
  653. PRINTF( NO_SYMBOLS_MESSAGE );
  654. }
  655. return(TRUE);
  657. }
  659. BOOL
  660. serverclelist(
  661. DWORD dwCurrentPC,
  662. PNTKD_EXTENSION_APIS lpExtensionApis,
  663. LPSTR lpArgumentString
  664. )
  665. {
  666. DWORD dwAddress;
  668. SETCALLBACKS();
  670. if (lpArgumentString && *lpArgumentString) {
  671. dwAddress = (lpGetExpressionRoutine)(lpArgumentString);
  672. } else {
  673. PRINTF( "Must specify address of connect list entry head\n" );
  674. return( TRUE );
  675. }
  677. if (dwAddress) {
  678. dumplist(
  679. dwAddress,
  680. FIELD_OFFSET(CONNECTLISTENTRY,SiblingNext),
  681. dumpConnectListEntry);
  682. } else {
  683. PRINTF( NO_SYMBOLS_MESSAGE );
  684. }
  685. return(TRUE);
  687. }
  689. /*
  690. * FcbList
  691. *
  692. */
  694. VOID
  695. dumpFcbListEntry(
  696. DWORD dwAddress
  697. )
  698. {
  699. FCB fcb;
  701. if (GetData(dwAddress, &fcb, sizeof(fcb))) {
  703. PRINTF("\n--- FCB @ %08lx\n", dwAddress);
  705. PrintStructFields( dwAddress, &fcb, FcbFields );
  707. } else {
  709. PRINTF("\n*** Unable to read Fcb @ %08lx\n", dwAddress );
  711. }
  713. }
  715. BOOL
  716. connectfcbs(
  717. DWORD dwCurrentPC,
  718. PNTKD_EXTENSION_APIS lpExtensionApis,
  719. LPSTR lpArgumentString
  720. )
  721. {
  722. DWORD dwAddress;
  724. SETCALLBACKS();
  726. if (lpArgumentString && *lpArgumentString) {
  727. dwAddress = (lpGetExpressionRoutine)(lpArgumentString);
  728. } else {
  729. PRINTF( "Must specify address of fcb list entry head\n" );
  730. return( TRUE );
  731. }
  733. if (dwAddress) {
  734. dumplist(
  735. dwAddress,
  736. FIELD_OFFSET(FCB,ConnectNext),
  737. dumpFcbListEntry);
  738. } else {
  739. PRINTF( NO_SYMBOLS_MESSAGE );
  740. }
  741. return(TRUE);
  743. }
  746. /*
  747. * dumplist : A general-purpose routine to dump a list of structures
  748. *
  749. */
  751. VOID
  752. dumplist(
  753. DWORD dwListEntryAddress,
  754. DWORD linkOffset,
  755. VOID (*dumpRoutine)(DWORD dwStructAddress)
  756. )
  757. {
  758. LIST_ENTRY listHead, listNext;
  760. //
  761. // Get the value in the LIST_ENTRY at dwAddress
  762. //
  764. PRINTF( "Dumping list @ %08lx\n", dwListEntryAddress );
  766. if (GetData(dwListEntryAddress, &listHead, sizeof(LIST_ENTRY))) {
  768. DWORD dwNextLink = (DWORD) listHead.Flink;
  770. if (dwNextLink == 0) {
  771. PRINTF( "Uninitialized list!\n" );
  772. } else if (dwNextLink == dwListEntryAddress) {
  773. PRINTF( "Empty list!\n" );
  774. } else {
  775. while( dwNextLink != dwListEntryAddress) {
  776. DWORD dwStructAddress;
  778. dwStructAddress = dwNextLink - linkOffset;
  780. dumpRoutine(dwStructAddress);
  782. if (GetData( dwNextLink, &listNext, sizeof(LIST_ENTRY))) {
  783. dwNextLink = (DWORD) listNext.Flink;
  784. } else {
  785. PRINTF( "Unable to get next item @%08lx\n", dwNextLink );
  786. break;
  787. }
  789. }
  790. }
  792. } else {
  794. PRINTF("Unable to read list head @ %08lx\n", dwListEntryAddress);
  796. }
  798. }