archive
/
windows-nt-4.0
mirror of https://github.com/lianthony/NT4.0
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Windows NT 4.0 source code leak
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2 Commits
1 Branch
0 Tags
184 MiB
Tree: b4a8d373d8
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'b4a8d373d8'
${ noResults }
windows-nt-4.0/private/ntos/rtl/mips/trampoln.s

522 lines
17 KiB
Raw Normal View History

initial commit
4 years ago
  1. // TITLE("Trampoline Code For User Mode APC and Exception Dispatching")
  2. //++
  3. //
  4. // Copyright (c) 1990 Microsoft Corporation
  5. //
  6. // Module Name:
  7. //
  8. // trampoln.s
  9. //
  10. // Abstract:
  11. //
  12. // This module implements the trampoline code necessary to dispatch user
  13. // mode APCs and exceptions.
  14. //
  15. // Author:
  16. //
  17. // David N. Cutler (davec) 3-Apr-1990
  18. //
  19. // Environment:
  20. //
  21. // User mode only.
  22. //
  23. // Revision History:
  24. //
  25. //--
  27. #include "ksmips.h"
  29. //
  30. // Define length of exception dispatcher stack frame.
  31. //
  33. #define ExceptionDispatcherFrame (ExceptionRecordLength + ContextFrameLength)
  35. SBTTL("User APC Dispatcher")
  36. //++
  37. //
  38. // The following code is never executed. Its purpose is to support unwinding
  39. // through the call to the APC dispatcher.
  40. //
  41. //--
  43. EXCEPTION_HANDLER(KiUserApcHandler)
  45. NESTED_ENTRY(KiUserApcDispatch, ContextFrameLength, zero);
  47. .set noreorder
  48. .set noat
  49. sd sp,CxXIntSp(sp) // save stack pointer
  50. sd ra,CxXIntRa(sp) // save return address
  51. sw ra,CxFir(sp) // save return address
  52. sd s8,CxXIntS8(sp) // save integer register s8
  53. sd gp,CxXIntGp(sp) // save integer register gp
  54. sd s0,CxXIntS0(sp) // save integer registers s0 - s7
  55. sd s1,CxXIntS1(sp) //
  56. sd s2,CxXIntS2(sp) //
  57. sd s3,CxXIntS3(sp) //
  58. sd s4,CxXIntS4(sp) //
  59. sd s5,CxXIntS5(sp) //
  60. sd s6,CxXIntS6(sp) //
  61. sd s7,CxXIntS7(sp) //
  62. sdc1 f20,CxFltF20(sp) // store floating registers f20 - f31
  63. sdc1 f22,CxFltF22(sp) //
  64. sdc1 f24,CxFltF24(sp) //
  65. sdc1 f26,CxFltF26(sp) //
  66. sdc1 f28,CxFltF28(sp) //
  67. sdc1 f30,CxFltF30(sp) //
  68. move s8,sp // set frame pointer
  69. .set at
  70. .set reorder
  72. PROLOGUE_END
  74. //++
  75. //
  76. // VOID
  77. // KiUserApcDispatcher (
  78. // IN PVOID NormalContext,
  79. // IN PVOID SystemArgument1,
  80. // IN PVOID SystemArgument2,
  81. // IN PKNORMAL_ROUTINE NormalRoutine
  82. // )
  83. //
  84. // Routine Description:
  85. //
  86. // This routine is entered on return from kernel mode to deliver an APC
  87. // in user mode. The context frame for this routine was built when the
  88. // APC interrupt was processed and contains the entire machine state of
  89. // the current thread. The specified APC routine is called and then the
  90. // machine state is restored and execution is continued.
  91. //
  92. // Arguments:
  93. //
  94. // a0 - Supplies the normal context parameter that was specified when the
  95. // APC was initialized.
  96. //
  97. // a1 - Supplies the first argument that was provied by the executive when
  98. // the APC was queued.
  99. //
  100. // a2 - Supplies the second argument that was provided by the executive
  101. // when the APC was queued.
  102. //
  103. // a3 - Supplies that address of the function that is to be called.
  104. //
  105. // sp - Supplies a pointer to a context frame.
  106. //
  107. // s8 - Supplies the same value as sp and is used as a frame pointer.
  108. //
  109. // Return Value:
  110. //
  111. // None.
  112. //
  113. //--
  115. ALTERNATE_ENTRY(KiUserApcDispatcher)
  117. jal a3 // call specified APC routine
  118. move a0,s8 // set address of context frame
  119. li a1,1 // set test alert argument true
  120. jal ZwContinue // execute system service to continue
  122. //
  123. // Unsuccessful completion after attempting to continue execution. Use the
  124. // return status as the exception code, set noncontinuable exception and
  125. // attempt to raise another exception. Note their is not return from raise
  126. // status.
  127. //
  129. move s0,v0 // save status value
  130. 10: move a0,s0 // set status value
  131. jal RtlRaiseStatus // raise exception
  132. b 10b // loop on return
  134. .end KiUserApcDispatch
  136. SBTTL("User APC Exception Handler")
  137. //++
  138. //
  139. // EXCEPTION_DISPOSITION
  140. // KiUserApcHandler (
  141. // IN PEXCEPTION_RECORD ExceptionRecord,
  142. // IN ULONG EstablisherFrame,
  143. // IN OUT PCONTEXT ContextRecord,
  144. // IN OUT PDISPATCHER_CONTEXT DispatcherContext
  145. //
  146. // Routine Description:
  147. //
  148. // This function is called when an exception occurs in an APC routine
  149. // or one of its dynamic descendents and when an unwind thought the
  150. // APC dispatcher is in progress. If an unwind is in progress, then test
  151. // alert is called to ensure that all currently queued APCs are executed.
  152. //
  153. // Arguments:
  154. //
  155. // ExceptionRecord (a0) - Supplies a pointer to an exception record.
  156. //
  157. // EstablisherFrame (a1) - Supplies the frame pointer of the establisher
  158. // of this exception handler.
  159. //
  160. // ContextRecord (a2) - Supplies a pointer to a context record.
  161. //
  162. // DispatcherContext (a3) - Supplies a pointer to the dispatcher context
  163. // record.
  164. //
  165. // Return Value:
  166. //
  167. // ExceptionContinueSearch is returned as the function value.
  168. //--
  170. .struct 0
  171. .space 4 * 4 // argument save area
  172. HdRa: .space 4 // saved return address
  173. .space 3 * 4 //
  174. HandlerFrameLength: // length of handler frame
  176. NESTED_ENTRY(KiUserApcHandler, HandlerFrameLength, zero)
  178. subu sp,sp,HandlerFrameLength // allocate stack frame
  179. sw ra,HdRa(sp) // save return address
  181. PROLOGUE_END
  183. lw t0,ErExceptionFlags(a0) // get exception flags
  184. and t0,t0,EXCEPTION_UNWIND // check if unwind in progress
  185. beq zero,t0,10f // if eq, no unwind in progress
  186. jal ZwTestAlert // test for alert pending
  187. 10: li v0,ExceptionContinueSearch // set disposition value
  188. lw ra,HdRa(sp) // restore return address
  189. addu sp,sp,HandlerFrameLength // deallocate stack frame
  190. j ra // return
  192. .end KiUserApcHandler
  194. SBTTL("User Callback Dispatcher")
  195. //++
  196. //
  197. // The following code is never executed. Its purpose is to support unwinding
  198. // through the call to the APC dispatcher.
  199. //
  200. //--
  202. // EXCEPTION_HANDLER(KiUserCallbackHandler)
  204. NESTED_ENTRY(KiUserCallbackDispatch, ContextFrameLength, zero);
  206. .set noreorder
  207. .set noat
  208. sd sp,CkSp(sp) // save stack pointer
  209. sd ra,CkRa(sp) // save return address
  210. .set at
  211. .set reorder
  213. PROLOGUE_END
  215. //++
  216. //
  217. // VOID
  218. // KiUserCallbackDispatcher (
  219. // VOID
  220. // )
  221. //
  222. // Routine Description:
  223. //
  224. // This routine is entered on a callout from kernel mode to execute a
  225. // user mode callback function. All arguments for this function have
  226. // been placed on the stack.
  227. //
  228. // Arguments:
  229. //
  230. // (sp + ApiNumber) - Supplies the API number of the callback function
  231. // that is executed.
  232. //
  233. // (sp + Buffer) - Supplies a pointer to the input buffer.
  234. //
  235. // (sp + Length) - Supplies the input buffer length.
  236. //
  237. // Return Value:
  238. //
  239. // This function returns to kernel mode.
  240. //
  241. //--
  244. ALTERNATE_ENTRY(KiUserCallbackDispatcher)
  246. lw a0,CkBuffer(sp) // get input buffer address
  247. lw a1,CkLength(sp) // get input buffer length
  248. lw t0,CkApiNumber(sp) // get API number
  249. li t1,UsPcr // get user PCR page address
  250. lw t1,PcTeb(t1) // get address of TEB
  251. lw t2,TePeb(t1) // get address of PEB
  252. lw t3,PeKernelCallbackTable(t2) // get address of callback table
  253. sll t0,t0,2 // compute address of table entry
  254. addu t3,t3,t0 //
  255. lw t3,0(t3) // get address of callback routine
  256. jal t3 // call specified function
  258. //
  259. // If a return from the callback function occurs, then the output buffer
  260. // address and length are returned as NULL.
  261. //
  263. move a0,zero // set zero buffer address
  264. move a1,zero // set zero buffer lenfth
  265. move a2,v0 // set completion status
  266. jal ZwCallbackReturn // return to kernel mode
  268. //
  269. // Unsuccessful completion after attempting to return to kernel mode. Use
  270. // the return status as the exception code, set noncontinuable exception and
  271. // attempt to raise another exception. Note their is not return from raise
  272. // status.
  273. //
  275. 10: move a0,v0 // set status value
  276. jal RtlRaiseStatus // raise exception
  277. b 10b // loop on return
  279. .end KiUserCallbackDispatch
  281. SBTTL("User Callback Exception Handler")
  282. //++
  283. //
  284. // EXCEPTION_DISPOSITION
  285. // KiUserCallbackHandler (
  286. // IN PEXCEPTION_RECORD ExceptionRecord,
  287. // IN ULONG EstablisherFrame,
  288. // IN OUT PCONTEXT ContextRecord,
  289. // IN OUT PDISPATCHER_CONTEXT DispatcherContext
  290. //
  291. // Routine Description:
  292. //
  293. // This function is called when an exception occurs in a user callback
  294. // routine or one of its dynamic descendents.
  295. //
  296. // Arguments:
  297. //
  298. // ExceptionRecord (a0) - Supplies a pointer to an exception record.
  299. //
  300. // EstablisherFrame (a1) - Supplies the frame pointer of the establisher
  301. // of this exception handler.
  302. //
  303. // ContextRecord (a2) - Supplies a pointer to a context record.
  304. //
  305. // DispatcherContext (a3) - Supplies a pointer to the dispatcher context
  306. // record.
  307. //
  308. // Return Value:
  309. //
  310. // ExceptionContinueSearch is returned as the function value.
  311. //--
  313. NESTED_ENTRY(KiUserCallbackHandler, HandlerFrameLength, zero)
  315. subu sp,sp,HandlerFrameLength // allocate stack frame
  316. sw ra,HdRa(sp) // save return address
  318. PROLOGUE_END
  320. lw t0,ErExceptionFlags(a0) // get exception flags
  321. and t0,t0,EXCEPTION_UNWIND // check if unwind in progress
  322. bne zero,t0,10f // if ne, unwind in progress
  323. li v0,ExceptionContinueSearch // set disposition value
  324. addu sp,sp,HandlerFrameLength // deallocate stack frame
  325. j ra // return
  327. //
  328. // There is an attempt to unwind through a callback frame. If this were
  329. // allowed, then a kernel callback frame would be abandoned on the kernel
  330. // stack. Force a callback return.
  331. //
  333. 10: lw a2,ErExceptionCode(a0) // get exception code
  334. move a0,zero // set zero buffer address
  335. move a1,zero // set zero buffer lenfth
  336. jal ZwCallbackReturn // return to kernel mode
  338. //
  339. // Unsuccessful completion after attempting to return to kernel mode. Use
  340. // the return status as the exception code, set noncontinuable exception and
  341. // attempt to raise another exception. Note there is no return from raise
  342. // status.
  343. //
  345. 20: move a0,v0 // set status value
  346. jal RtlRaiseStatus // raise exception
  347. b 20b // loop on return
  349. .end KiUserCallbackHandler
  351. SBTTL("User Exception Dispatcher")
  352. //++
  353. //
  354. // The following code is never executed. Its purpose is to support unwinding
  355. // through the call to the exception dispatcher.
  356. //
  357. //--
  359. NESTED_ENTRY(KiUserExceptionDispatch, ExceptionDispatcherFrame, zero);
  361. .set noreorder
  362. .set noat
  363. sd sp,CxXIntSp(sp) // save stack pointer
  364. sd ra,CxXIntRa(sp) // save return address
  365. sw ra,CxFir(sp) // save return address
  366. sd s8,CxXIntS8(sp) // save integer register s8
  367. sd gp,CxXIntGp(sp) // save integer register gp
  368. sd s0,CxXIntS0(sp) // save integer registers s0 - s7
  369. sd s1,CxXIntS1(sp) //
  370. sd s2,CxXIntS2(sp) //
  371. sd s3,CxXIntS3(sp) //
  372. sd s4,CxXIntS4(sp) //
  373. sd s5,CxXIntS5(sp) //
  374. sd s6,CxXIntS6(sp) //
  375. sd s7,CxXIntS7(sp) //
  376. sdc1 f20,CxFltF20(sp) // store floating registers f20 - f31
  377. sdc1 f22,CxFltF22(sp) //
  378. sdc1 f24,CxFltF24(sp) //
  379. sdc1 f26,CxFltF26(sp) //
  380. sdc1 f28,CxFltF28(sp) //
  381. sdc1 f30,CxFltF30(sp) //
  382. move s8,sp // set frame pointer
  383. .set at
  384. .set reorder
  386. PROLOGUE_END
  388. //++
  389. //
  390. // VOID
  391. // KiUserExceptionDispatcher (
  392. // IN PEXCEPTION_RECORD ExceptionRecord,
  393. // IN PCONTEXT ContextRecord
  394. // )
  395. //
  396. // Routine Description:
  397. //
  398. // This routine is entered on return from kernel mode to dispatch a user
  399. // mode exception. If a frame based handler handles the exception, then
  400. // the execution is continued. Else last chance processing is performed.
  401. //
  402. // Arguments:
  403. //
  404. // s0 - Supplies a pointer to an exception record.
  405. //
  406. // s1 - Supplies a pointer to a context frame.
  407. //
  408. // s8 - Supplies the same value as sp and is used as a frame pointer.
  409. //
  410. // Return Value:
  411. //
  412. // None.
  413. //
  414. //--
  416. ALTERNATE_ENTRY(KiUserExceptionDispatcher)
  418. move a0,s0 // set address of exception record
  419. move a1,s1 // set address of context record
  420. jal RtlDispatchException // attempt to dispatch the exception
  422. //
  423. // If the return status is TRUE, then the exception was handled and execution
  424. // should be continued with the NtContinue service in case the context was
  425. // changed. If the return status is FALSE, then the exception was not handled
  426. // and NtRaiseException is called to perform last chance exception processing.
  427. //
  429. beq zero,v0,10f // if eq, perform last chance processing
  431. //
  432. // Continue execution.
  433. //
  435. move a0,s1 // set address of context frame
  436. li a1,0 // set test alert argument false
  437. jal ZwContinue // execute system service to continue
  438. b 20f // join common code
  440. //
  441. // Last chance processing.
  442. //
  444. 10: move a0,s0 // set address of exception record
  445. move a1,s1 // set address of context frame
  446. move a2,zero // set first chance FALSE
  447. jal ZwRaiseException // perform last chance processing
  449. //
  450. // Common code for nonsuccessful completion of the continue or last chance
  451. // service. Use the return status as the exception code, set noncontinuable
  452. // exception and attempt to raise another exception. Note the stack grows
  453. // and eventually this loop will end.
  454. //
  456. 20: move s1,v0 // save status value
  457. 30: subu sp,sp,ExceptionRecordLength + (4 * 4) // allocate exception record
  458. addu a0,sp,4 * 4 // compute address of actual record
  459. sw s1,ErExceptionCode(a0) // set exception code
  460. li t0,EXCEPTION_NONCONTINUABLE // set noncontinuable flag
  461. sw t0,ErExceptionFlags(a0) //
  462. sw s0,ErExceptionRecord(a0) // set associated exception record
  463. sw zero,ErNumberParameters(a0) // set number of parameters
  464. jal RtlRaiseException // raise exception
  465. b 20b // loop of error
  467. .end KiUserExceptionDispatch
  468. //++
  469. //
  470. // NTSTATUS
  471. // KiRaiseUserExceptionDispatcher (
  472. // IN NTSTATUS ExceptionCode
  473. // )
  474. //
  475. // Routine Description:
  476. //
  477. // This routine is entered on return from kernel mode to raise a user
  478. // mode exception.
  479. //
  480. // N.B. This function is not called in the typical way. Instead of a normal
  481. // subroutine call to the nested entry point above, the alternate entry point
  482. // address below is stuffed into the Fir address of the trap frame. Thus when
  483. // the kernel returns from the trap, the following code is executed directly.
  484. //
  485. // Arguments:
  486. //
  487. // v0 - Supplies the status code to be raised.
  488. //
  489. // Return Value:
  490. //
  491. // ExceptionCode
  492. //
  493. //--
  495. .struct 0
  496. .space 4 * 4 // argument save area
  497. RaiseRa:.space 4 // saved return address
  498. RaiseV0:.space 4 // saved S0
  499. RaiseEr:.space ExceptionRecordLength // exception record for RtlRaiseException
  500. RaiseFrameLength: // length of handler frame
  502. NESTED_ENTRY(KiRaiseUserExceptionDispatcher, RaiseFrameLength, zero)
  504. subu sp,sp,RaiseFrameLength // allocate stack frame
  505. sw ra,RaiseRa(sp) // save return address
  507. PROLOGUE_END
  509. sw v0,RaiseV0(sp) // save function return status
  510. sw v0,ErExceptionCode + RaiseEr(sp) // set exception code
  511. sw zero,ErExceptionFlags + RaiseEr(sp) // set exception flags
  512. sw zero,ErExceptionRecord + RaiseEr(sp) // clear exception record
  513. sw ra,ErExceptionAddress + RaiseEr(sp) // set exception address
  514. sw zero,ErNumberParameters+RaiseEr(sp) // set number of parameters
  515. addu a0,sp,RaiseEr // compute exception record address
  516. jal RtlRaiseException // attempt to raise the exception
  517. lw v0,RaiseV0(sp) // restore function status
  518. lw ra,RaiseRa(sp) // restore return address
  519. addu sp,sp,RaiseFrameLength // deallocate stack frame
  520. j ra // return
  522. .end KiRaiseUserExceptionDispatch