Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

3060 lines
91 KiB

  1. /*++
  2. Copyright (c) 1991 Microsoft Corporation
  3. Module Name:
  4. VerfySup.c
  5. Abstract:
  6. This module implements the Ntfs Verify volume and fcb support
  7. routines
  8. Author:
  9. Gary Kimura [GaryKi] 30-Jan-1992
  10. Revision History:
  11. --*/
  12. #include "NtfsProc.h"
  13. //
  14. // The Debug trace level for this module
  15. //
  16. #define Dbg (DEBUG_TRACE_VERFYSUP)
  17. //
  18. // Define a tag for general pool allocations from this module
  19. //
  20. #undef MODULE_POOL_TAG
  21. #define MODULE_POOL_TAG ('VFtN')
  22. #if DBG
  23. extern BOOLEAN NtfsCheckQuota;
  24. #endif
  25. BOOLEAN NtfsSuppressPopup = FALSE;
  26. //
  27. // Local procedure prototypes
  28. //
  29. VOID
  30. NtfsPerformVerifyDiskRead (
  31. IN PIRP_CONTEXT IrpContext,
  32. IN PVCB Vcb,
  33. IN PVOID Buffer,
  34. IN LONGLONG Offset,
  35. IN ULONG NumberOfBytesToRead
  36. );
  38. NtfsVerifyReadCompletionRoutine(
  39. IN PDEVICE_OBJECT DeviceObject,
  40. IN PIRP Irp,
  41. IN PVOID Contxt
  42. );
  43. VOID
  44. NtOfsCloseIndexSafe (
  45. IN PIRP_CONTEXT IrpContext,
  46. IN PSCB *Scb
  47. );
  48. typedef struct _EVENTLOG_ERROR_PACKET {
  49. PVCB Vcb;
  50. UCHAR MajorFunction;
  51. ULONG TransactionId;
  52. PQUOTA_USER_DATA UserData;
  53. ULONG LogCode;
  54. NTSTATUS FinalStatus;
  56. VOID
  57. NtfsResolveVolumeAndLogEventSpecial (
  58. IN PIRP_CONTEXT IrpContext,
  59. IN OUT PVOID Context
  60. );
  62. NtfsLogEventInternal (
  63. IN PVCB Vcb,
  64. IN UCHAR MajorFunction,
  65. IN ULONG TransactionId,
  68. IN NTSTATUS LogCode,
  69. IN NTSTATUS FinalStatus
  70. );
  71. #ifdef ALLOC_PRAGMA
  72. #pragma alloc_text(PAGE, NtfsCheckpointAllVolumes)
  73. #pragma alloc_text(PAGE, NtfsCheckUsnTimeOut)
  74. #pragma alloc_text(PAGE, NtfsMarkVolumeDirty)
  75. #pragma alloc_text(PAGE, NtfsPerformVerifyOperation)
  76. #pragma alloc_text(PAGE, NtfsPingVolume)
  77. #pragma alloc_text(PAGE, NtfsUpdateVolumeInfo)
  78. #pragma alloc_text(PAGE, NtOfsCloseAttributeSafe)
  79. #pragma alloc_text(PAGE, NtOfsCloseIndexSafe)
  80. #pragma alloc_text(PAGE, NtfsResolveVolumeAndLogEventSpecial)
  81. #pragma alloc_text(PAGE, NtfsLogEventInternal)
  82. #endif
  84. NtfsPerformVerifyOperation (
  85. IN PIRP_CONTEXT IrpContext,
  86. IN PVCB Vcb
  87. )
  88. /*++
  89. Routine Description:
  90. This routine is used to force a verification of the volume. It assumes
  91. that everything might be resource/mutex locked so it cannot take out
  92. any resources. It will read in the boot sector and the dasd file record
  93. and from those determine if the volume is okay. This routine is called
  94. whenever the real device has started rejecting I/O requests with
  96. If the volume verifies okay then we will return TRUE otherwise we will
  97. return FALSE.
  98. It does not alter the Vcb state.
  99. Arguments:
  100. Vcb - Supplies the Vcb being queried.
  101. Return Value:
  102. BOOLEAN - TRUE if the volume verified okay, and FALSE otherwise.
  103. --*/
  104. {
  105. BOOLEAN Results = FALSE;
  106. PPACKED_BOOT_SECTOR BootSector;
  108. VCN LogFileVcn;
  109. LCN LogFileLcn;
  110. LONGLONG ClusterCount;
  111. ULONG RemainingLogBytes;
  112. LONGLONG CurrentLogBytes;
  113. PVOID CurrentLogBuffer;
  114. PVOID LogFileHeader = NULL;
  115. LONGLONG Offset;
  116. PSTANDARD_INFORMATION StandardInformation;
  117. ASSERT_IRP_CONTEXT( IrpContext );
  118. ASSERT_VCB( Vcb );
  119. PAGED_CODE();
  120. DebugTrace( +1, Dbg, ("NtfsPerformVerifyOperation, Vcb = %08lx\n", Vcb) );
  121. BootSector = NULL;
  122. FileRecord = NULL;
  123. try {
  124. //
  125. // Forget this volume if we have already failed the remount once.
  126. //
  127. if (!FlagOn( Vcb->VcbState, VCB_STATE_VOLUME_MOUNTED )) {
  128. leave;
  129. }
  130. //
  131. // Allocate a buffer for the boot sector, read it in, and then check if
  132. // it some of the fields still match. The starting lcn is zero and the
  133. // size is the size of a disk sector.
  134. //
  135. BootSector = NtfsAllocatePool( NonPagedPool,
  136. (ULONG) ROUND_TO_PAGES( Vcb->BytesPerSector ));
  137. NtfsPerformVerifyDiskRead( IrpContext, Vcb, BootSector, (LONGLONG)0, Vcb->BytesPerSector );
  138. //
  139. // For now we will only check that the serial numbers, mft lcn's and
  140. // number of sectors match up with what they use to be.
  141. //
  142. if ((BootSector->SerialNumber != Vcb->VolumeSerialNumber) ||
  143. (BootSector->MftStartLcn != Vcb->MftStartLcn) ||
  144. (BootSector->Mft2StartLcn != Vcb->Mft2StartLcn) ||
  145. (BootSector->NumberSectors != Vcb->NumberSectors)) {
  146. leave;
  147. }
  148. //
  149. // Allocate a buffer for the dasd file record, read it in, and then check
  150. // if some of the fields still match. The size of the record is the number
  151. // of bytes in a file record segment, and because the dasd file record is
  152. // known to be contiguous with the start of the mft we can compute the starting
  153. // lcn as the base of the mft plus the dasd number mulitplied by the clusters
  154. // per file record segment.
  155. //
  156. FileRecord = NtfsAllocatePool( NonPagedPoolCacheAligned,
  157. (ULONG) ROUND_TO_PAGES( Vcb->BytesPerFileRecordSegment ));
  158. Offset = LlBytesFromClusters(Vcb, Vcb->MftStartLcn) +
  159. (VOLUME_DASD_NUMBER * Vcb->BytesPerFileRecordSegment);
  160. NtfsPerformVerifyDiskRead( IrpContext, Vcb, FileRecord, Offset, Vcb->BytesPerFileRecordSegment );
  161. //
  162. // Given a pointer to a file record we want the value of the first attribute which
  163. // will be the standard information attribute. Then we will check the
  164. // times stored in the standard information attribute against the times we
  165. // have saved in the vcb. Note that last access time will be modified if
  166. // the disk was moved and mounted on a different system without doing a dismount
  167. // on this system.
  168. //
  169. StandardInformation = NtfsGetValue(((PATTRIBUTE_RECORD_HEADER)Add2Ptr( FileRecord,
  170. FileRecord->FirstAttributeOffset )));
  171. if ((StandardInformation->CreationTime != Vcb->VolumeCreationTime) ||
  172. (StandardInformation->LastModificationTime != Vcb->VolumeLastModificationTime) ||
  173. (StandardInformation->LastChangeTime != Vcb->VolumeLastChangeTime) ||
  174. (StandardInformation->LastAccessTime != Vcb->VolumeLastAccessTime)) {
  175. leave;
  176. }
  177. //
  178. // If the device is not writable we won't remount it.
  179. //
  180. if (NtfsDeviceIoControlAsync( IrpContext,
  181. Vcb->TargetDeviceObject,
  183. NULL,
  185. leave;
  186. }
  187. //
  188. // We need to read the start of the log file for Lfs to verify the log file.
  189. //
  190. LogFileHeader = NtfsAllocatePool( NonPagedPoolCacheAligned, PAGE_SIZE * 2 );
  191. //
  192. // Now read in the first two pages. We may have to perform multiple reads to
  193. // get the whole thing.
  194. //
  195. RemainingLogBytes = PAGE_SIZE * 2;
  196. CurrentLogBuffer = LogFileHeader;
  197. LogFileVcn = 0;
  198. do {
  199. //
  200. // Find the location of the log file start.
  201. //
  202. NtfsLookupAllocation( IrpContext,
  203. Vcb->LogFileScb,
  204. LogFileVcn,
  205. &LogFileLcn,
  206. &ClusterCount,
  207. NULL,
  208. NULL );
  209. CurrentLogBytes = LlBytesFromClusters( Vcb, ClusterCount );
  210. if (CurrentLogBytes > RemainingLogBytes) {
  211. CurrentLogBytes = RemainingLogBytes;
  212. }
  213. NtfsPerformVerifyDiskRead( IrpContext,
  214. Vcb,
  215. CurrentLogBuffer,
  216. LlBytesFromClusters( Vcb, LogFileLcn ),
  217. (ULONG) CurrentLogBytes );
  218. //
  219. // Move through the log file.
  220. //
  221. RemainingLogBytes -= (ULONG) CurrentLogBytes;
  222. CurrentLogBuffer = Add2Ptr( CurrentLogBuffer, (ULONG) CurrentLogBytes );
  223. LogFileVcn += ClusterCount;
  224. } while (RemainingLogBytes);
  225. //
  226. // We need to perform the revert operation on this buffer.
  227. //
  228. if (NtfsVerifyAndRevertUsaBlock( IrpContext,
  229. Vcb->LogFileScb,
  230. NULL,
  231. LogFileHeader,
  232. 0,
  233. PAGE_SIZE * 2,
  234. 0 )) {
  235. //
  236. // Now call Lfs to verify the header.
  237. //
  238. Results = LfsVerifyLogFile( Vcb->LogHandle, LogFileHeader, PAGE_SIZE * 2 );
  239. }
  240. } finally {
  241. if (BootSector != NULL) { NtfsFreePool( BootSector ); }
  242. if (FileRecord != NULL) { NtfsFreePool( FileRecord ); }
  243. if (LogFileHeader != NULL) { NtfsFreePool( LogFileHeader ); }
  244. }
  245. DebugTrace( -1, Dbg, ("NtfsPerformVerifyOperation -> %08lx\n", Results) );
  246. return Results;
  247. }
  248. VOID
  249. NtOfsCloseIndexSafe (
  250. IN PIRP_CONTEXT IrpContext,
  251. IN PSCB *Scb
  252. )
  253. /*++
  254. Routine Description:
  255. This routine checks whether the given Scb is NULL, and if not,
  256. calls NtOfsCloseIndex to close the index.
  257. Arguments:
  258. Scb - Supplies the Scb of the index to close safely.
  259. Return Value:
  260. None.
  261. --*/
  262. {
  263. if (*Scb != NULL) {
  264. //
  265. // Notice that we don't release the Scbs, since
  266. // NtOfsCloseIndex might tear the Scbs down and make
  267. // trying to release them unsafe. When this request is
  268. // completed, the Scbs will be released anyway.
  269. //
  270. NtfsAcquireExclusiveScb( IrpContext, *Scb );
  271. NtOfsCloseIndex( IrpContext, *Scb );
  272. *Scb = NULL;
  273. }
  274. }
  275. VOID
  276. NtOfsCloseAttributeSafe (
  277. IN PIRP_CONTEXT IrpContext,
  278. IN PSCB Scb
  279. )
  280. /*++
  281. Routine Description:
  282. This routine checks whether the given Scb is NULL, and if not,
  283. calls NtOfsCloseAttribute to close the attribute.
  284. Arguments:
  285. Scb - Supplies the Scb of the attribute to close safely.
  286. Return Value:
  287. None.
  288. --*/
  289. {
  290. if (Scb != NULL) {
  291. NtOfsCloseAttribute( IrpContext, Scb );
  292. }
  293. }
  294. VOID
  295. NtfsPerformDismountOnVcb (
  296. IN PIRP_CONTEXT IrpContext,
  297. IN PVCB Vcb,
  298. IN BOOLEAN DoCompleteDismount,
  299. OUT PVPB *NewVpbReturn OPTIONAL
  300. )
  301. /*++
  302. Routine Description:
  303. This routine is called to start the dismount process on a vcb.
  304. It marks the Vcb as not mounted and dereferences all opened stream
  305. file objects, and gets the Vcb out of the Vpb's mounted volume
  306. structures.
  307. Arguments:
  308. Vcb - Supplies the Vcb being dismounted
  309. DoCompleteDismount - Indicates if we are to actually mark the volume
  310. as dismounted or if we are simply to stop the logfile and close
  311. the internal attribute streams.
  312. NewVpbReturn - If supplied, provides a way to return to the caller
  313. the new Vpb created in here. If we do not need to
  314. create a new Vpb in this function, we store NULL in
  315. NewVpbReturn.
  316. Return Value:
  317. None.
  318. --*/
  319. {
  320. PFCB Fcb;
  321. PFCB NextFcb = NULL;
  322. PSCB Scb;
  323. PVOID RestartKey;
  324. PLIST_ENTRY Links;
  325. PIRP UsnNotifyIrp;
  326. BOOLEAN CheckSystemScb;
  327. PVPB NewVpb;
  328. DebugTrace( +1, Dbg, ("NtfsPerformDismountOnVcb, Vcb = %08lx\n", Vcb) );
  329. #ifdef DISMOUNT_DBG
  330. NtfsData.DismountCount += 1;
  331. #endif
  332. //
  333. // We should always be syncrhonized with checkpoints when dismounting initially
  334. //
  335. ASSERT( !FlagOn( Vcb->VcbState, VCB_STATE_VOLUME_MOUNTED ) ||
  336. (Vcb->CheckpointOwnerThread == PsGetCurrentThread()) ||
  337. ((IrpContext->TopLevelIrpContext->MajorFunction == IRP_MJ_FILE_SYSTEM_CONTROL) &&
  338. (IrpContext->TopLevelIrpContext->MinorFunction == IRP_MN_MOUNT_VOLUME)) );
  339. //
  340. // Blow away our delayed close file object.
  341. //
  342. if (!IsListEmpty( &NtfsData.AsyncCloseList ) ||
  343. !IsListEmpty( &NtfsData.DelayedCloseList )) {
  344. NtfsFspClose( Vcb );
  345. }
  346. //
  347. // Commit any current transaction before we start tearing down the volume.
  348. //
  349. NtfsCommitCurrentTransaction( IrpContext );
  350. //
  351. // Add one more checkpoint at the front of the logfile if we haven't hit any errors yet
  352. // and the device is still present
  353. //
  354. if ((IrpContext->ExceptionStatus == STATUS_SUCCESS) &&
  355. FlagOn( Vcb->VcbState, VCB_STATE_VALID_LOG_HANDLE ) &&
  356. FlagOn( Vcb->VcbState, VCB_STATE_MOUNT_COMPLETED ) &&
  357. !FlagOn( Vcb->VcbState, VCB_STATE_TARGET_DEVICE_STOPPED)) {
  358. try {
  359. NtfsCheckpointVolume( IrpContext, Vcb, TRUE, TRUE, FALSE, LFS_WRITE_FLAG_WRITE_AT_FRONT, Li0 );
  360. } except( EXCEPTION_EXECUTE_HANDLER ) {
  361. //
  362. // Swallow any errors while checkpointing
  363. //
  364. #ifdef BENL_DBG
  365. KdPrint(( "NTFS: exception in dismount checkpoint 0x%x\n", GetExceptionCode() ));
  366. #endif
  367. NtfsMinimumExceptionProcessing( IrpContext );
  368. IrpContext->ExceptionStatus = STATUS_SUCCESS;
  369. }
  370. }
  371. //
  372. // Use a try-finally to facilitate cleanup.
  373. //
  374. try {
  375. //
  376. // Get rid of all the Ofs indices for Security, Quota, and Object Ids, etc.
  377. //
  378. NtOfsCloseIndexSafe( IrpContext, &Vcb->ObjectIdTableScb );
  379. NtOfsCloseIndexSafe( IrpContext, &Vcb->ReparsePointTableScb );
  380. NtOfsCloseIndexSafe( IrpContext, &Vcb->OwnerIdTableScb );
  381. NtOfsCloseIndexSafe( IrpContext, &Vcb->QuotaTableScb );
  382. NtOfsCloseIndexSafe( IrpContext, &Vcb->SecurityIdIndex );
  383. NtOfsCloseIndexSafe( IrpContext, &Vcb->SecurityDescriptorHashIndex );
  384. NtOfsCloseAttributeSafe( IrpContext, Vcb->SecurityDescriptorStream );
  385. //
  386. // Walk through and complete any Irps in the ReadUsn queue.
  387. //
  388. if (Vcb->UsnJournal != NULL) {
  389. PWAIT_FOR_NEW_LENGTH Waiter, NextWaiter;
  390. PSCB UsnJournal = Vcb->UsnJournal;
  391. NtfsAcquireExclusiveScb( IrpContext, UsnJournal );
  392. NtfsAcquireFsrtlHeader( UsnJournal );
  393. Waiter = (PWAIT_FOR_NEW_LENGTH) UsnJournal->ScbType.Data.WaitForNewLength.Flink;
  394. while (Waiter != (PWAIT_FOR_NEW_LENGTH) &UsnJournal->ScbType.Data.WaitForNewLength) {
  395. NextWaiter = (PWAIT_FOR_NEW_LENGTH) Waiter->WaitList.Flink;
  396. //
  397. // Make sure we own the Irp and there is not an active cancel
  398. // on this Irp.
  399. //
  400. if (NtfsClearCancelRoutine( Waiter->Irp )) {
  401. //
  402. // If this is an async request then simply complete the request.
  403. //
  404. if (FlagOn( Waiter->Flags, NTFS_WAIT_FLAG_ASYNC )) {
  405. //
  406. // Make sure we decrement the reference count in the Scb.
  407. // Then remove the waiter from the queue and complete the Irp.
  408. //
  409. InterlockedDecrement( &UsnJournal->CloseCount );
  410. RemoveEntryList( &Waiter->WaitList );
  411. NtfsCompleteRequest( NULL, Waiter->Irp, STATUS_VOLUME_DISMOUNTED );
  412. NtfsFreePool( Waiter );
  413. //
  414. // This is a synch Irp. All we can do is set the event and note the status
  415. // code.
  416. //
  417. } else {
  418. Waiter->Status = STATUS_VOLUME_DISMOUNTED;
  419. KeSetEvent( &Waiter->Event, 0, FALSE );
  420. }
  421. }
  422. //
  423. // Move to the next waiter.
  424. //
  425. Waiter = NextWaiter;
  426. }
  427. NtfsReleaseFsrtlHeader( UsnJournal );
  428. }
  429. //
  430. // Walk through and remove all of the entries on the UsnDeleteNotify queue.
  431. //
  432. NtfsAcquireUsnNotify( Vcb );
  433. Links = Vcb->NotifyUsnDeleteIrps.Flink;
  434. while (Links != &Vcb->NotifyUsnDeleteIrps) {
  435. UsnNotifyIrp = CONTAINING_RECORD( Links,
  436. IRP,
  437. Tail.Overlay.ListEntry );
  438. //
  439. // Remember to move forward in any case.
  440. //
  441. Links = Links->Flink;
  442. //
  443. // Clear the notify routine and detect if cancel has
  444. // already been called.
  445. //
  446. if (NtfsClearCancelRoutine( UsnNotifyIrp )) {
  447. RemoveEntryList( &UsnNotifyIrp->Tail.Overlay.ListEntry );
  448. NtfsCompleteRequest( NULL, UsnNotifyIrp, STATUS_VOLUME_DISMOUNTED );
  449. }
  450. }
  451. ClearFlag( Vcb->VcbState, VCB_STATE_USN_JOURNAL_ACTIVE );
  452. NtfsReleaseUsnNotify( Vcb );
  453. NtOfsCloseAttributeSafe( IrpContext, Vcb->UsnJournal );
  454. #ifdef SYSCACHE_DEBUG
  455. if (Vcb->SyscacheScb) {
  456. CACHE_UNINITIALIZE_EVENT UninitializeCompleteEvent;
  457. NTSTATUS WaitStatus;
  458. NtfsAcquireExclusiveScb( IrpContext, Vcb->SyscacheScb );
  459. KeInitializeEvent( &UninitializeCompleteEvent.Event,
  460. SynchronizationEvent,
  461. FALSE);
  462. CcUninitializeCacheMap( Vcb->SyscacheScb->FileObject,
  463. &Li0,
  464. &UninitializeCompleteEvent );
  465. //
  466. // Now wait for the cache manager to finish purging the file.
  467. // This will guarantee that Mm gets the purge before we
  468. // delete the Vcb.
  469. //
  470. WaitStatus = KeWaitForSingleObject( &UninitializeCompleteEvent.Event,
  471. Executive,
  472. KernelMode,
  473. FALSE,
  474. NULL);
  475. ASSERT( NT_SUCCESS( WaitStatus ) );
  476. ObDereferenceObject( Vcb->SyscacheScb->FileObject );
  477. Vcb->SyscacheScb->FileObject = NULL;
  478. NtfsDecrementCleanupCounts( Vcb->SyscacheScb, NULL, FALSE );
  479. NtOfsCloseAttributeSafe( IrpContext, Vcb->SyscacheScb );
  480. NtfsReleaseScb( IrpContext, Vcb->SyscacheScb );
  481. Vcb->SyscacheScb = NULL;
  482. }
  483. #endif
  484. //
  485. // Free the quota control template if necessary.
  486. //
  487. if (Vcb->QuotaControlTemplate != NULL) {
  488. NtfsFreePool( Vcb->QuotaControlTemplate );
  489. Vcb->QuotaControlTemplate = NULL;
  490. }
  491. //
  492. // Stop the log file.
  493. //
  494. NtfsStopLogFile( Vcb );
  495. //
  496. // Mark the volume as not mounted.
  497. //
  498. ClearFlag( Vcb->VcbState, VCB_STATE_VOLUME_MOUNTED );
  499. //
  500. // Now for every file Scb with an opened stream file we will delete
  501. // the internal attribute stream. Before the days of forced dismount
  502. // we were basically looking at system files. Restarting the enumeration
  503. // when we found an internal stream wasn't very expensive. Now that there
  504. // may be hundreds or even thousands of Fcbs we really don't want to resume
  505. // from the beginning. Instead we will reference the following entry
  506. // while removing the fileobject from the current Fcb. Then we know
  507. // the next entry will remain.
  508. //
  509. RestartKey = NULL;
  510. do {
  511. Fcb = NextFcb;
  512. NtfsAcquireFcbTable( IrpContext, Vcb );
  513. NextFcb = NtfsGetNextFcbTableEntry( Vcb, &RestartKey );
  514. //
  515. // We always want to reference the next entry if present to keep our order correct in the
  516. // list.
  517. //
  518. if (NextFcb != NULL) {
  519. //
  520. // We'll use this Fcb next time through the loop.
  521. //
  522. NextFcb->ReferenceCount += 1;
  523. }
  524. //
  525. // If our starting Fcb is NULL then we are at the first entry in the list or
  526. // we have exhausted the list. In either case our exist test in the loop
  527. // will handle it.
  528. //
  529. if (Fcb == NULL) {
  530. NtfsReleaseFcbTable( IrpContext, Vcb );
  531. continue;
  532. }
  533. //
  534. // Remove the extra reference on this Fcb.
  535. //
  536. ASSERT_FCB( Fcb );
  537. Fcb->ReferenceCount -= 1;
  538. NtfsReleaseFcbTable( IrpContext, Vcb );
  539. Scb = NULL;
  540. while ((Fcb != NULL) && ((Scb = NtfsGetNextChildScb( Fcb, Scb )) != NULL)) {
  541. FCB_CONTEXT FcbContext;
  542. ASSERT_SCB( Scb );
  543. if (Scb->FileObject != NULL) {
  544. //
  545. // Assume we want to see if we should check whether to clear a system Scb field.
  546. //
  547. CheckSystemScb = TRUE;
  548. //
  549. // For the VolumeDasdScb and bad cluster file, we simply decrement
  550. // the counts that we incremented.
  551. //
  552. if ((Scb == Vcb->VolumeDasdScb) ||
  553. (Scb == Vcb->BadClusterFileScb)) {
  554. Scb->FileObject = NULL;
  555. //
  556. // We need to know if the Fcb gets deleted.
  557. //
  558. Fcb->FcbContext = &FcbContext;
  559. FcbContext.FcbDeleted = FALSE;
  560. NtfsDecrementCloseCounts( IrpContext,
  561. Scb,
  562. NULL,
  563. TRUE,
  564. FALSE,
  565. FALSE,
  566. NULL );
  567. if (FcbContext.FcbDeleted) {
  568. Fcb = NULL;
  569. } else {
  570. Fcb->FcbContext = NULL;
  571. }
  572. //
  573. // Dereference the file object in the Scb unless it is the one in
  574. // the Vcb for the Log File. This routine may not be able to
  575. // dereference file object because of synchronization problems (there
  576. // can be a lazy writer callback in process which owns the paging
  577. // io resource). In that case we don't want to go back to the beginning
  578. // of Fcb table or we will loop indefinitely.
  579. //
  580. } else if (Scb->FileObject != Vcb->LogFileObject) {
  581. //
  582. // If this is the Usn journal then make sure to empty
  583. // the queue of modified Fcb's.
  584. //
  585. if (Scb == Vcb->UsnJournal) {
  586. //
  587. // Before we remove the journal we want to remove all
  588. // of the entries in the modified list.
  589. //
  590. NtfsLockFcb( IrpContext, Scb->Fcb );
  591. Links = Vcb->ModifiedOpenFiles.Flink;
  592. while (Vcb->ModifiedOpenFiles.Flink != &Vcb->ModifiedOpenFiles) {
  593. RemoveEntryList( Links );
  594. Links->Flink = NULL;
  595. //
  596. // Look to see if we need to remove the TimeOut link as well.
  597. //
  598. Links = &(CONTAINING_RECORD( Links, FCB_USN_RECORD, ModifiedOpenFilesLinks ))->TimeOutLinks;
  599. if (Links->Flink != NULL) {
  600. RemoveEntryList( Links );
  601. }
  602. Links = Vcb->ModifiedOpenFiles.Flink;
  603. }
  604. NtfsUnlockFcb( IrpContext, Scb->Fcb );
  605. }
  606. //
  607. // Acquire the fcb rather than the scb since the scb may go away
  608. //
  609. NtfsAcquireExclusiveFcb( IrpContext, Fcb, Scb, ACQUIRE_NO_DELETE_CHECK );
  610. //
  611. // We need to know if the Fcb gets deleted.
  612. //
  613. Fcb->FcbContext = &FcbContext;
  614. FcbContext.FcbDeleted = FALSE;
  615. try {
  616. CheckSystemScb = NtfsDeleteInternalAttributeStream( Scb, TRUE, FALSE );
  617. } finally {
  618. if (FcbContext.FcbDeleted) {
  619. Fcb = NULL;
  620. } else {
  621. NtfsReleaseFcb( IrpContext, Fcb );
  622. Fcb->FcbContext = NULL;
  623. }
  624. }
  625. //
  626. // This is the file object for the Log file. Remove our
  627. // extra reference on the logfile Scb.
  628. //
  629. } else if (Scb->FileObject != NULL) {
  630. //
  631. // Remember the log file object so we can defer the dereference.
  632. //
  633. NtfsDecrementCloseCounts( IrpContext,
  634. Vcb->LogFileScb,
  635. NULL,
  636. TRUE,
  637. FALSE,
  638. TRUE,
  639. NULL );
  640. Scb->FileObject = NULL;
  641. }
  642. if (CheckSystemScb) {
  643. if (Scb == Vcb->MftScb) { Vcb->MftScb = NULL; }
  644. else if (Scb == Vcb->Mft2Scb) { Vcb->Mft2Scb = NULL; }
  645. else if (Scb == Vcb->LogFileScb) { Vcb->LogFileScb = NULL; }
  646. else if (Scb == Vcb->VolumeDasdScb) { Vcb->VolumeDasdScb = NULL; }
  647. else if (Scb == Vcb->AttributeDefTableScb) { Vcb->AttributeDefTableScb = NULL; }
  648. else if (Scb == Vcb->UpcaseTableScb) { Vcb->UpcaseTableScb = NULL; }
  649. else if (Scb == Vcb->RootIndexScb) { Vcb->RootIndexScb = NULL; }
  650. else if (Scb == Vcb->BitmapScb) { Vcb->BitmapScb = NULL; }
  651. else if (Scb == Vcb->BadClusterFileScb) { Vcb->BadClusterFileScb = NULL; }
  652. else if (Scb == Vcb->QuotaTableScb) { Vcb->QuotaTableScb = NULL; }
  653. else if (Scb == Vcb->MftBitmapScb) { Vcb->MftBitmapScb = NULL; }
  654. else if (Scb == Vcb->SecurityIdIndex) { Vcb->SecurityIdIndex = NULL; }
  655. else if (Scb == Vcb->SecurityDescriptorHashIndex)
  656. { Vcb->SecurityDescriptorHashIndex = NULL; }
  657. else if (Scb == Vcb->SecurityDescriptorStream)
  658. { Vcb->SecurityDescriptorStream = NULL; }
  659. else if (Scb == Vcb->ExtendDirectory) { Vcb->ExtendDirectory = NULL; }
  660. else if (Scb == Vcb->UsnJournal) { Vcb->UsnJournal = NULL; }
  661. //
  662. // Restart the Scb scan for this Fcb.
  663. // our call to Delete Internal Attribute Stream just messed up our
  664. // enumeration.
  665. //
  666. Scb = NULL;
  667. }
  668. }
  669. }
  670. } while (NextFcb != NULL);
  671. DebugTrace( 0, Dbg, ("Vcb->CloseCount = %08lx\n", Vcb->CloseCount) );
  672. //
  673. // Do any deleayed closes now so we can get the Vcb->CloseCount as
  674. // low as we possibly can so we have a good chance of being able to
  675. // close the logfile now.
  676. //
  677. if (!IsListEmpty( &NtfsData.AsyncCloseList ) ||
  678. !IsListEmpty( &NtfsData.DelayedCloseList )) {
  679. NtfsFspClose( Vcb );
  680. }
  681. //
  682. // The code above may have dropped the CloseCount to 0 even though
  683. // there's still a file object for the log file. If the count
  684. // isn't 0 yet, there's a chance that a lazy write could still
  685. // happen, in which case we need to keep the logfile around.
  686. // Often we can close the logfile now, so the Vpb refcount can go
  687. // to zero and show the PnP code that we're ready to be removed.
  688. // Any queued closes (async or delayed) don't matter either, since
  689. // we know no more writes will be coming in for those file objects.
  690. // The FspClose call above may not have caught all the outstanding
  691. // closes, since another thread may have just pulled a file from
  692. // one of the queues, but not yet processed the actual close.
  693. //
  694. if (((Vcb->CloseCount - Vcb->QueuedCloseCount) == 0) &&
  695. (Vcb->LogFileObject != NULL) &&
  696. !FlagOn( Vcb->CheckpointFlags, VCB_DEREFERENCED_LOG_FILE )) {
  697. CACHE_UNINITIALIZE_EVENT UninitializeCompleteEvent;
  698. NTSTATUS WaitStatus;
  699. KeInitializeEvent( &UninitializeCompleteEvent.Event,
  700. SynchronizationEvent,
  701. FALSE);
  702. CcUninitializeCacheMap( Vcb->LogFileObject,
  703. &Li0,
  704. &UninitializeCompleteEvent );
  705. //
  706. // Now wait for the cache manager to finish purging the file.
  707. // This will guarantee that Mm gets the purge before we
  708. // delete the Vcb.
  709. //
  710. WaitStatus = KeWaitForSingleObject( &UninitializeCompleteEvent.Event,
  711. Executive,
  712. KernelMode,
  713. FALSE,
  714. NULL);
  715. ASSERT( NT_SUCCESS( WaitStatus ) );
  716. //
  717. // Set a flag indicating that we are dereferencing the LogFileObject.
  718. //
  719. SetFlag( Vcb->CheckpointFlags, VCB_DEREFERENCED_LOG_FILE );
  720. ObDereferenceObject( Vcb->LogFileObject );
  721. }
  722. //
  723. // Now only really dismount the volume if that's what our caller wants.
  724. //
  725. if (DoCompleteDismount && !FlagOn( Vcb->VcbState, VCB_STATE_PERFORMED_DISMOUNT )) {
  727. KIRQL SavedIrql;
  728. //
  729. // Attempt to unlock any removable media, ignoring status. We can't
  730. // do this if some previous PnP operation has stopped the device below
  731. // us. Remember that we may be dismounting now after the last async
  732. // close has been processed, so we can't just test whether the current
  733. // operation is a PnP remove.
  734. //
  735. if (!FlagOn( Vcb->VcbState, VCB_STATE_TARGET_DEVICE_STOPPED )) {
  736. Prevent.PreventMediaRemoval = FALSE;
  737. (VOID)NtfsDeviceIoControl( IrpContext,
  738. Vcb->TargetDeviceObject,
  740. &Prevent,
  742. NULL,
  743. 0,
  744. NULL );
  745. }
  746. //
  747. // Remove this voldo from the mounted disk structures
  748. //
  749. IoAcquireVpbSpinLock( &SavedIrql );
  750. //
  751. // If there are no file objects and no reference counts in the
  752. // Vpb then we can use the existing Vpb. Or if we're cleaning
  753. // up a vcb where allocation for the spare vpb failed also use it.
  754. //
  755. if (((Vcb->CloseCount == 0) &&
  756. (Vcb->Vpb->ReferenceCount == 0)) ||
  757. (Vcb->SpareVpb == NULL)) {
  758. //
  759. // Make a new vpb the io subsys can delete
  760. //
  761. Vcb->Vpb->DeviceObject = NULL;
  762. ClearFlag( Vcb->Vpb->Flags, VPB_MOUNTED );
  763. if (ARGUMENT_PRESENT( NewVpbReturn )) {
  764. //
  765. // Let our caller know we did not end up needing the new vpb.
  766. //
  767. *NewVpbReturn = NULL;
  768. }
  769. //
  770. // Otherwise we will swap out the Vpb.
  771. //
  772. } else {
  773. //
  774. // Use the spare Vpb in the Vcb.
  775. //
  776. NewVpb = Vcb->SpareVpb;
  777. Vcb->SpareVpb = NULL;
  778. //
  779. // It better be there.
  780. //
  781. ASSERT( NewVpb != NULL );
  782. RtlZeroMemory( NewVpb, sizeof( VPB ) );
  783. //
  784. // Set a few important fields in the Vpb.
  785. //
  786. NewVpb->Type = IO_TYPE_VPB;
  787. NewVpb->Size = sizeof( VPB );
  788. NewVpb->RealDevice = Vcb->Vpb->RealDevice;
  789. NewVpb->DeviceObject = NULL;
  790. NewVpb->Flags = FlagOn( Vcb->Vpb->Flags, VPB_REMOVE_PENDING );
  791. if (ARGUMENT_PRESENT( NewVpbReturn )) {
  792. //
  793. // Let our caller know we will indeed need the new vpb.
  794. //
  795. *NewVpbReturn = NewVpb;
  796. }
  797. Vcb->Vpb->RealDevice->Vpb = NewVpb;
  798. SetFlag( Vcb->VcbState, VCB_STATE_TEMP_VPB );
  799. SetFlag( Vcb->Vpb->Flags, VPB_PERSISTENT );
  800. }
  801. IoReleaseVpbSpinLock( SavedIrql );
  802. SetFlag( Vcb->VcbState, VCB_STATE_PERFORMED_DISMOUNT );
  803. }
  804. } finally {
  805. //
  806. // We should never be leaking a reference count on an Fcb.
  807. //
  808. ASSERT( NextFcb == NULL );
  809. //
  810. // And return to our caller
  811. //
  812. DebugTrace( -1, Dbg, ("NtfsPerformDismountOnVcb -> VOID\n") );
  813. }
  814. return;
  815. }
  816. BOOLEAN
  817. NtfsPingVolume (
  818. IN PIRP_CONTEXT IrpContext,
  819. IN PVCB Vcb,
  821. )
  822. /*++
  823. Routine Description:
  824. This routine will ping the volume to see if the device needs to
  825. be verified. It is used for create operations to see if the
  826. create should proceed or if we should complete the create Irp
  827. with a remount status.
  828. Arguments:
  829. Vcb - Supplies the Vcb being pinged
  830. OwnsVcb - Indicates if this thread already owns the Vcb. Updated here if we
  831. need serialization on the Vcb and it isn't already acquired. If not
  832. specified then we assume the Vcb is held.
  833. Return Value:
  834. BOOLEAN - TRUE if the volume is fine and the operation should
  835. proceed and FALSE if the volume needs to be verified
  836. --*/
  837. {
  838. BOOLEAN Results;
  839. ULONG ChangeCount = 0;
  840. PAGED_CODE();
  841. DebugTrace( +1, Dbg, ("NtfsPingVolume, Vcb = %08lx\n", Vcb) );
  842. //
  843. // If the media is removable and the verify volume flag in the
  844. // device object is not set then we want to ping the device
  845. // to see if it needs to be verified.
  846. //
  847. // For other cases we proceed as if the media is present.
  848. // The device driver will let us know if it is no longer
  849. // present when we have to physically access the disk.
  850. //
  851. if (FlagOn( Vcb->VcbState, VCB_STATE_REMOVABLE_MEDIA ) &&
  852. !FlagOn( Vcb->Vpb->RealDevice->Flags, DO_VERIFY_VOLUME )) {
  853. PDEVICE_OBJECT TargetDevice;
  854. NTSTATUS Status;
  855. if (ARGUMENT_PRESENT( OwnsVcb ) && !(*OwnsVcb)) {
  856. NtfsAcquireSharedVcb( IrpContext, Vcb, TRUE );
  857. *OwnsVcb = TRUE;
  858. if (!FlagOn( Vcb->VcbState, VCB_STATE_VOLUME_MOUNTED )) {
  859. NtfsRaiseStatus( IrpContext, STATUS_VOLUME_DISMOUNTED, NULL, NULL );
  860. }
  861. }
  862. TargetDevice = Vcb->TargetDeviceObject;
  863. Status = NtfsDeviceIoControlAsync( IrpContext,
  864. TargetDevice,
  866. (PVOID) &ChangeCount,
  867. sizeof( ChangeCount ));
  868. if (!NT_SUCCESS( Status )) {
  869. NtfsRaiseStatus( IrpContext, Status, NULL, NULL );
  870. }
  871. if (ChangeCount != Vcb->DeviceChangeCount) {
  872. //
  873. // The disk driver lost a media change event, possibly
  874. // because it was eaten by a user request before the
  875. // volume was mounted. We set things up as they would
  876. // be if the driver had returned VERIFY_REQUIRED.
  877. //
  878. Vcb->DeviceChangeCount = ChangeCount;
  879. IoSetDeviceToVerify( PsGetCurrentThread(), TargetDevice );
  880. SetFlag( TargetDevice->Flags, DO_VERIFY_VOLUME );
  881. NtfsRaiseStatus( IrpContext, STATUS_VERIFY_REQUIRED, NULL, NULL );
  882. }
  883. }
  884. if (FlagOn( Vcb->Vpb->RealDevice->Flags, DO_VERIFY_VOLUME )) {
  885. Results = FALSE;
  886. } else {
  887. Results = TRUE;
  888. }
  889. DebugTrace( -1, Dbg, ("NtfsPingVolume -> %08lx\n", Results) );
  890. return Results;
  891. }
  892. VOID
  893. NtfsVolumeCheckpointDpc (
  894. IN PKDPC Dpc,
  895. IN PVOID DeferredContext,
  896. IN PVOID SystemArgument1,
  897. IN PVOID SystemArgument2
  898. )
  899. /*++
  900. Routine Description:
  901. This routine is dispatched every 5 seconds when disk structure is being
  902. modified. It had the ExWorker thread to volume checkpoints.
  903. Arguments:
  904. DeferredContext - Not Used
  905. Return Value:
  906. None.
  907. --*/
  908. {
  909. TIMER_STATUS TimerStatus;
  910. ULONG VolumeCheckpointStatus;
  911. //
  912. // Atomic reset of status indicating the timer is currently fired. This
  913. // synchronizes with NtfsSetDirtyBcb. After NtfsSetDirtyBcb dirties
  914. // a Bcb, it sees if it should enable this timer routine.
  915. //
  916. // If the status indicates that a timer is active, it does nothing. In this
  917. // case it is guaranteed that when the timer fires, it causes a checkpoint (to
  918. // force out the dirty Bcb data).
  919. //
  920. // If there is no timer active, it enables it, thus queueing a checkpoint later.
  921. //
  922. // If the timer routine actually fires between the dirtying of the Bcb and the
  923. // testing of the status then a single extra checkpoint is generated. This
  924. // extra checkpoint is not considered harmful.
  925. //
  926. //
  927. // Atomically reset status and get previous value
  928. //
  929. TimerStatus = InterlockedExchange( (PLONG)&NtfsData.TimerStatus, TIMER_NOT_SET );
  930. //
  931. // We have only one instance of the work queue item. It can only be
  932. // queued once. In a slow system, this checkpoint item may not be processed
  933. // by the time this timer routine fires again.
  934. //
  935. VolumeCheckpointStatus = InterlockedExchange( &NtfsData.VolumeCheckpointStatus,
  937. if (!FlagOn( VolumeCheckpointStatus, CHECKPOINT_POSTED )) {
  938. ASSERT( NtfsData.VolumeCheckpointItem.List.Flink == NULL );
  939. ExQueueWorkItem( &NtfsData.VolumeCheckpointItem, CriticalWorkQueue );
  940. }
  941. return;
  942. UNREFERENCED_PARAMETER( SystemArgument1 );
  943. UNREFERENCED_PARAMETER( SystemArgument2 );
  944. UNREFERENCED_PARAMETER( DeferredContext );
  946. }
  947. VOID
  948. NtfsCheckpointAllVolumes (
  949. PVOID Parameter
  950. )
  951. /*++
  952. Routine Description:
  953. This routine searches all of the vcbs for Ntfs and tries to clean
  954. them. If the vcb is good and dirty but not almost clean then
  955. we set it almost clean. If the Vcb is good and dirty and almost clean
  956. then we clean it.
  957. Arguments:
  958. Parameter - Not Used.
  959. Return Value:
  960. None.
  961. --*/
  962. {
  963. TOP_LEVEL_CONTEXT TopLevelContext;
  964. PTOP_LEVEL_CONTEXT ThreadTopLevelContext;
  965. IRP_CONTEXT LocalIrpContext;
  966. PIRP_CONTEXT IrpContext = &LocalIrpContext;
  967. PLIST_ENTRY Links;
  968. PVCB Vcb;
  969. BOOLEAN AcquiredGlobal = FALSE;
  970. BOOLEAN StartTimer = FALSE;
  971. TIMER_STATUS TimerStatus;
  972. ULONG VolumeCheckpointStatus;
  973. PAGED_CODE();
  974. //
  975. // Note that an exception like log file terminates the Vcb scan until the next
  976. // interval. It would be possible to restructure this routine to work on the other
  977. // volumes first, however for deadlock prevention it is also nice to free up this
  978. // thread to handle the checkpoint.
  979. //
  980. try {
  981. //
  982. // Clear the flag that indicates someone is waiting for a checkpoint. That way
  983. // we can tell if the checkpoint timer fires while we are checkpointing.
  984. //
  985. InterlockedExchange( &NtfsData.VolumeCheckpointStatus, CHECKPOINT_POSTED );
  986. //
  987. // Create an IrpContext and make sure it doesn't go away until we are ready.
  988. //
  989. NtfsInitializeIrpContext( NULL, TRUE, &IrpContext );
  990. SetFlag( IrpContext->State, IRP_CONTEXT_STATE_PERSISTENT );
  991. //
  992. // Make sure we don't get any pop-ups
  993. //
  994. ThreadTopLevelContext = NtfsInitializeTopLevelIrp( &TopLevelContext, TRUE, FALSE );
  995. ASSERT( ThreadTopLevelContext == &TopLevelContext );
  996. NtfsUpdateIrpContextWithTopLevel( IrpContext, ThreadTopLevelContext );
  997. NtfsAcquireSharedGlobal( IrpContext, TRUE );
  998. AcquiredGlobal = TRUE;
  999. for (Links = NtfsData.VcbQueue.Flink;
  1000. Links != &NtfsData.VcbQueue;
  1001. Links = Links->Flink) {
  1002. ASSERT( FlagOn( IrpContext->TopLevelIrpContext->State, IRP_CONTEXT_STATE_OWNS_TOP_LEVEL ));
  1003. Vcb = CONTAINING_RECORD(Links, VCB, VcbLinks);
  1004. IrpContext->Vcb = Vcb;
  1005. if (FlagOn( Vcb->VcbState, VCB_STATE_VOLUME_MOUNTED ) &&
  1006. (!NtfsIsVolumeReadOnly( Vcb ))) {
  1007. NtfsCheckpointVolume( IrpContext, Vcb, FALSE, FALSE, TRUE, 0, Li0 );
  1008. //
  1009. // Check to see whether this was not a clean checkpoint.
  1010. //
  1011. if (!FlagOn( Vcb->CheckpointFlags,
  1013. StartTimer = TRUE;
  1014. }
  1015. NtfsCommitCurrentTransaction( IrpContext );
  1016. #if DBG
  1017. if (NtfsCheckQuota && Vcb->QuotaTableScb != NULL) {
  1018. NtfsPostRepairQuotaIndex( IrpContext, Vcb );
  1019. }
  1020. #endif
  1021. }
  1022. //
  1023. // Clean up this IrpContext.
  1024. //
  1025. NtfsCleanupIrpContext( IrpContext, TRUE );
  1026. }
  1027. } except(NtfsExceptionFilter( IrpContext, GetExceptionInformation() )) {
  1028. //
  1029. // Process the exception. We know the IrpContext won't go away here.
  1030. //
  1031. NtfsProcessException( IrpContext, NULL, GetExceptionCode() );
  1032. }
  1033. if (AcquiredGlobal) {
  1034. NtfsReleaseGlobal( IrpContext );
  1035. }
  1036. VolumeCheckpointStatus = InterlockedExchange( &NtfsData.VolumeCheckpointStatus, 0 );
  1037. ClearFlag( IrpContext->State, IRP_CONTEXT_STATE_PERSISTENT );
  1038. NtfsCleanupIrpContext( IrpContext, TRUE );
  1039. ASSERT( IoGetTopLevelIrp() != (PIRP) &TopLevelContext );
  1040. //
  1041. // Synchronize with the checkpoint timer and other instances of this routine.
  1042. //
  1043. // Perform an interlocked exchange to indicate that a timer is being set.
  1044. //
  1045. // If the previous value indicates that no timer was set, then we
  1046. // enable the volume checkpoint timer. This will guarantee that a checkpoint
  1047. // will occur to flush out the dirty Bcb data.
  1048. //
  1049. // If the timer was set previously, then it is guaranteed that a checkpoint
  1050. // will occur without this routine having to reenable the timer.
  1051. //
  1052. // If the timer and checkpoint occurred between the dirtying of the Bcb and
  1053. // the setting of the timer status, then we will be queueing a single extra
  1054. // checkpoint on a clean volume. This is not considered harmful.
  1055. //
  1056. //
  1057. // Atomically set the timer status to indicate a timer is being set and
  1058. // retrieve the previous value.
  1059. //
  1060. if (StartTimer || FlagOn( VolumeCheckpointStatus, CHECKPOINT_PENDING )) {
  1061. TimerStatus = InterlockedExchange( (PLONG)&NtfsData.TimerStatus, TIMER_SET );
  1062. //
  1063. // If the timer is not currently set then we must start the checkpoint timer
  1064. // to make sure the above dirtying is flushed out.
  1065. //
  1066. if (TimerStatus == TIMER_NOT_SET) {
  1067. LONGLONG NewTimerValue;
  1068. //
  1069. // If the timer timed out because the checkpoint took so long then
  1070. // only wait two seconds. Otherwise use our normal time of five seconds.
  1071. //
  1072. if (FlagOn( VolumeCheckpointStatus, CHECKPOINT_PENDING )) {
  1073. NewTimerValue = -2*1000*1000*10;
  1074. } else {
  1075. NewTimerValue = -5*1000*1000*10;
  1076. }
  1077. KeSetTimer( &NtfsData.VolumeCheckpointTimer,
  1078. *(PLARGE_INTEGER) &NewTimerValue,
  1079. &NtfsData.VolumeCheckpointDpc );
  1080. }
  1081. }
  1082. //
  1083. // Pulse the NtfsEncryptionPendingEvent so there's no chance of a waiter waiting forever.
  1084. //
  1085. KeSetEvent( &NtfsEncryptionPendingEvent, 0, FALSE );
  1086. //
  1087. // And return to our caller
  1088. //
  1089. return;
  1090. UNREFERENCED_PARAMETER( Parameter );
  1091. }
  1092. VOID
  1093. NtfsUsnTimeOutDpc (
  1094. IN PKDPC Dpc,
  1095. IN PVOID DeferredContext,
  1096. IN PVOID SystemArgument1,
  1097. IN PVOID SystemArgument2
  1098. )
  1099. /*++
  1100. Routine Description:
  1101. This routine is dispatched every 5 minutes to look for Usn records waiting
  1102. for a close to be issued. It posts a work item to the ExWorker thread.
  1103. Arguments:
  1104. DeferredContext - Not Used
  1105. Return Value:
  1106. None.
  1107. --*/
  1108. {
  1109. ASSERT( NtfsData.UsnTimeOutItem.List.Flink == NULL );
  1110. ExQueueWorkItem( &NtfsData.UsnTimeOutItem, CriticalWorkQueue );
  1111. return;
  1112. UNREFERENCED_PARAMETER( SystemArgument1 );
  1113. UNREFERENCED_PARAMETER( SystemArgument2 );
  1114. UNREFERENCED_PARAMETER( DeferredContext );
  1116. }
  1117. VOID
  1118. NtfsCheckUsnTimeOut (
  1119. PVOID Parameter
  1120. )
  1121. /*++
  1122. Routine Description:
  1123. This is the worker routine which walks the queue of UsnRecords waiting for close records. It either
  1124. issues the close record and/or removes it from the queue of TimeOut records. It also toggles the
  1125. two TimeOut queues and restarts the timer for the next break.
  1126. Arguments:
  1127. Return Value:
  1128. None.
  1129. --*/
  1130. {
  1131. TOP_LEVEL_CONTEXT TopLevelContext;
  1132. PTOP_LEVEL_CONTEXT ThreadTopLevelContext;
  1133. IRP_CONTEXT LocalIrpContext;
  1134. PIRP_CONTEXT IrpContext = &LocalIrpContext;
  1135. PFCB_USN_RECORD FcbUsnRecord;
  1136. PLIST_ENTRY Links;
  1137. PVCB Vcb;
  1138. PFCB Fcb;
  1139. BOOLEAN AcquiredGlobal = FALSE;
  1140. BOOLEAN AcquiredVcb = FALSE;
  1141. BOOLEAN AcquiredFcb = FALSE;
  1142. PLIST_ENTRY Temp;
  1143. PAGED_CODE();
  1144. FsRtlEnterFileSystem();
  1145. //
  1146. // Note that an exception like log file terminates the Vcb scan until the next
  1147. // interval. It would be possible to restructure this routine to work on the other
  1148. // volumes first, however for deadlock prevention it is also nice to free up this
  1149. // thread to handle the checkpoint.
  1150. //
  1151. try {
  1152. //
  1153. // Create an IrpContext and make sure it doesn't go away until we are ready.
  1154. //
  1155. NtfsInitializeIrpContext( NULL, TRUE, &IrpContext );
  1156. SetFlag( IrpContext->State, IRP_CONTEXT_STATE_PERSISTENT );
  1157. //
  1158. // Make sure we don't get any pop-ups
  1159. //
  1160. ThreadTopLevelContext = NtfsInitializeTopLevelIrp( &TopLevelContext, TRUE, FALSE );
  1161. ASSERT( ThreadTopLevelContext == &TopLevelContext );
  1162. NtfsUpdateIrpContextWithTopLevel( IrpContext, ThreadTopLevelContext );
  1163. NtfsAcquireSharedGlobal( IrpContext, TRUE );
  1164. AcquiredGlobal = TRUE;
  1165. for (Links = NtfsData.VcbQueue.Flink;
  1166. Links != &NtfsData.VcbQueue;
  1167. Links = Links->Flink) {
  1168. ASSERT( FlagOn( IrpContext->TopLevelIrpContext->State, IRP_CONTEXT_STATE_OWNS_TOP_LEVEL ));
  1169. Vcb = CONTAINING_RECORD(Links, VCB, VcbLinks);
  1170. IrpContext->Vcb = Vcb;
  1171. if (FlagOn( Vcb->VcbState, VCB_STATE_VOLUME_MOUNTED )) {
  1172. NtfsAcquireSharedVcb( IrpContext, Vcb, TRUE );
  1173. AcquiredVcb = TRUE;
  1174. if (Vcb->UsnJournal != NULL) {
  1175. do {
  1176. Fcb = NULL;
  1177. //
  1178. // Synchronize with the Fcb table and Usn Journal so that we can
  1179. // see if the next Fcb has to have a close record generated.
  1180. //
  1181. NtfsAcquireFcbTable( IrpContext, Vcb );
  1182. NtfsAcquireFsrtlHeader( Vcb->UsnJournal );
  1183. if (!IsListEmpty( Vcb->AgedTimeOutFiles )) {
  1184. FcbUsnRecord = (PFCB_USN_RECORD)CONTAINING_RECORD( Vcb->AgedTimeOutFiles->Flink,
  1186. TimeOutLinks );
  1187. //
  1188. // Since we have a UsnRecord and Fcb we want to reference the Fcb so
  1189. // it won't go away.
  1190. //
  1191. Fcb = FcbUsnRecord->Fcb;
  1192. Fcb->ReferenceCount += 1;
  1193. }
  1194. NtfsReleaseFsrtlHeader( Vcb->UsnJournal );
  1195. NtfsReleaseFcbTable( IrpContext, Vcb );
  1196. //
  1197. // Do we have to generate another close record?
  1198. //
  1199. if (Fcb != NULL) {
  1200. //
  1201. // We must lock out other activity on this file since we are about
  1202. // to reset the Usn reasons.
  1203. //
  1204. if (Fcb->PagingIoResource != NULL) {
  1205. NtfsAcquirePagingResourceExclusive( IrpContext, Fcb, TRUE );
  1206. NtfsAcquireExclusiveFcb( IrpContext, Fcb, NULL, ACQUIRE_NO_DELETE_CHECK );
  1207. } else {
  1208. NtfsAcquireExclusiveFcb( IrpContext, Fcb, NULL, ACQUIRE_NO_DELETE_CHECK );
  1209. //
  1210. // If we now do not see a paging I/O resource we are golden,
  1211. // othewise we can absolutely release and acquire the resources
  1212. // safely in the right order, since a resource in the Fcb is
  1213. // not going to go away.
  1214. //
  1215. if (Fcb->PagingIoResource != NULL) {
  1216. NtfsReleaseFcb( IrpContext, Fcb );
  1217. NtfsAcquireExclusivePagingIo( IrpContext, Fcb );
  1218. NtfsAcquireExclusiveFcb( IrpContext, Fcb, NULL, ACQUIRE_NO_DELETE_CHECK );
  1219. }
  1220. }
  1221. AcquiredFcb = TRUE;
  1222. //
  1223. // Skip over system files, files which now have a handle count, deleted
  1224. // files or files which are no longer on the aged list.
  1225. //
  1226. if (!FlagOn( Fcb->FcbState, FCB_STATE_SYSTEM_FILE | FCB_STATE_FILE_DELETED ) &&
  1227. (Fcb->CleanupCount == 0) &&
  1228. (Fcb->FcbUsnRecord != NULL) &&
  1229. (Fcb->FcbUsnRecord->TimeOutLinks.Flink != NULL)) {
  1230. //
  1231. // Post the close to our IrpContext.
  1232. //
  1233. NtfsPostUsnChange( IrpContext, Fcb, USN_REASON_CLOSE );
  1234. //
  1235. // If we did not actually post a change, something is wrong,
  1236. // because when a close change is written, the Fcb is removed from
  1237. // the list.
  1238. //
  1239. ASSERT( IrpContext->Usn.CurrentUsnFcb != NULL );
  1240. //
  1241. // Now generate the close record and checkpoint the transaction.
  1242. //
  1243. NtfsWriteUsnJournalChanges( IrpContext );
  1244. NtfsCheckpointCurrentTransaction( IrpContext );
  1245. //
  1246. // Remove this entry from the time out list if still present.
  1247. //
  1248. } else if ((Fcb->FcbUsnRecord != NULL) &&
  1249. (Fcb->FcbUsnRecord->TimeOutLinks.Flink != NULL)) {
  1250. NtfsAcquireFsrtlHeader( Vcb->UsnJournal );
  1251. RemoveEntryList( &Fcb->FcbUsnRecord->TimeOutLinks );
  1252. Fcb->FcbUsnRecord->TimeOutLinks.Flink = NULL;
  1253. NtfsReleaseFsrtlHeader( Vcb->UsnJournal );
  1254. }
  1255. //
  1256. // Now we will dereference the Fcb.
  1257. //
  1258. NtfsAcquireFcbTable( IrpContext, Vcb );
  1259. Fcb->ReferenceCount -= 1;
  1260. //
  1261. // We may be required to delete this guy. This frees the Fcb Table.
  1262. //
  1263. if (IsListEmpty( &Fcb->ScbQueue ) && (Fcb->ReferenceCount == 0) && (Fcb->CloseCount == 0)) {
  1264. BOOLEAN AcquiredFcbTable = TRUE;
  1265. NtfsDeleteFcb( IrpContext, &Fcb, &AcquiredFcbTable );
  1266. ASSERT( !AcquiredFcbTable );
  1267. //
  1268. // Otherwise free the table and Fcb resources.
  1269. //
  1270. } else {
  1271. NtfsReleaseFcbTable( IrpContext, Vcb );
  1272. //
  1273. // Release in inverse order because only main holds down
  1274. // the fcb
  1275. //
  1276. if (Fcb->PagingIoResource != NULL) {
  1277. NtfsReleasePagingResource( IrpContext, Fcb );
  1278. }
  1279. NtfsReleaseFcb( IrpContext, Fcb );
  1280. }
  1281. AcquiredFcb = FALSE;
  1282. }
  1283. } while (Fcb != NULL);
  1284. //
  1285. // Now swap the aged lists.
  1286. //
  1287. ASSERT( IsListEmpty( Vcb->AgedTimeOutFiles ));
  1288. NtfsLockFcb( IrpContext, Vcb->UsnJournal->Fcb );
  1289. Temp = Vcb->AgedTimeOutFiles;
  1290. Vcb->AgedTimeOutFiles = Vcb->CurrentTimeOutFiles;
  1291. Vcb->CurrentTimeOutFiles = Temp;
  1292. NtfsUnlockFcb( IrpContext, Vcb->UsnJournal->Fcb );
  1293. }
  1294. //
  1295. // Now we can drop the Vcb before looping back.
  1296. //
  1297. NtfsReleaseVcb( IrpContext, Vcb );
  1298. AcquiredVcb = FALSE;
  1299. //
  1300. // Clean up this IrpContext.
  1301. //
  1302. NtfsCleanupIrpContext( IrpContext, TRUE );
  1303. }
  1304. }
  1305. } except(NtfsExceptionFilter( IrpContext, GetExceptionInformation() )) {
  1306. if (AcquiredFcb) {
  1307. NtfsAcquireFcbTable( IrpContext, Vcb );
  1308. Fcb->ReferenceCount -= 1;
  1309. NtfsReleaseFcbTable( IrpContext, Vcb );
  1310. //
  1311. // Only main protects the fcb from being deleted so release in inverse order
  1312. //
  1313. if (Fcb->PagingIoResource != NULL) {
  1314. NtfsReleasePagingResource( IrpContext, Fcb );
  1315. }
  1316. NtfsReleaseFcb( IrpContext, Fcb );
  1317. }
  1318. AcquiredFcb = FALSE;
  1319. if (AcquiredVcb) {
  1320. NtfsReleaseVcb( IrpContext, Vcb );
  1321. AcquiredVcb = FALSE;
  1322. }
  1323. //
  1324. // Process the exception. We know the IrpContext won't go away here.
  1325. //
  1326. NtfsProcessException( IrpContext, NULL, GetExceptionCode() );
  1327. }
  1328. if (AcquiredFcb) {
  1329. //
  1330. // Release the paging resource first before the corresponding Fcb
  1331. // otherwise someone can free up or reuse both before we actually
  1332. // free the paging resource
  1333. //
  1334. if (Fcb->PagingIoResource != NULL) {
  1335. NtfsReleasePagingResource( IrpContext, Fcb );
  1336. }
  1337. NtfsReleaseFcb( IrpContext, Fcb );
  1338. }
  1339. if (AcquiredVcb) {
  1340. NtfsReleaseVcb( IrpContext, Vcb );
  1341. }
  1342. if (AcquiredGlobal) {
  1343. NtfsReleaseGlobal( IrpContext );
  1344. }
  1345. ClearFlag( IrpContext->State, IRP_CONTEXT_STATE_PERSISTENT );
  1346. NtfsCleanupIrpContext( IrpContext, TRUE );
  1347. ASSERT( IoGetTopLevelIrp() != (PIRP) &TopLevelContext );
  1348. //
  1349. // Now start the timer again.
  1350. //
  1351. {
  1352. LONGLONG FiveMinutesFromNow = -5*1000*1000*10;
  1353. FiveMinutesFromNow *= 60;
  1354. KeSetTimer( &NtfsData.UsnTimeOutTimer,
  1355. *(PLARGE_INTEGER)&FiveMinutesFromNow,
  1356. &NtfsData.UsnTimeOutDpc );
  1357. }
  1358. FsRtlExitFileSystem();
  1359. return;
  1360. UNREFERENCED_PARAMETER( Parameter );
  1361. }
  1362. NTSTATUS
  1363. NtfsDeviceIoControlAsync (
  1364. IN PIRP_CONTEXT IrpContext,
  1365. IN PDEVICE_OBJECT DeviceObject,
  1366. IN ULONG IoCtl,
  1368. IN ULONG BufferLength
  1369. )
  1370. /*++
  1371. Routine Description:
  1372. This routine is used to perform an IoCtl when we may be at the APC level
  1373. and calling NtfsDeviceIoControl could be unsafe.
  1374. Arguments:
  1375. DeviceObject - Supplies the device object to which to send the ioctl.
  1376. IoCtl - Supplies the I/O control code.
  1377. Buffer - Points to a buffer for any extra input/output for the given ioctl.
  1378. BufferLength - The size, in bytes, of the above buffer.
  1379. Return Value:
  1380. Status.
  1381. --*/
  1382. {
  1383. KEVENT Event;
  1384. PIRP Irp;
  1385. NTSTATUS Status;
  1387. ASSERT_IRP_CONTEXT( IrpContext );
  1388. //
  1389. // Initialize the event we're going to use
  1390. //
  1391. KeInitializeEvent( &Event, NotificationEvent, FALSE );
  1392. //
  1393. // Build the irp for the operation and also set the overrride flag
  1394. //
  1395. // Note that we may be at APC level, so do this asyncrhonously and
  1396. // use an event for synchronization normal request completion
  1397. // cannot occur at APC level.
  1398. //
  1399. // We use IRP_MJ_FLUSH_BUFFERS since it (ironically) doesn't require
  1400. // a buffer.
  1401. //
  1402. Irp = IoBuildAsynchronousFsdRequest( IRP_MJ_FLUSH_BUFFERS,
  1403. DeviceObject,
  1404. NULL,
  1405. 0,
  1406. NULL,
  1407. NULL );
  1408. if ( Irp == NULL ) {
  1409. NtfsRaiseStatus( IrpContext, STATUS_INSUFFICIENT_RESOURCES, NULL, NULL );
  1410. }
  1411. IrpSp = IoGetNextIrpStackLocation( Irp );
  1412. SetFlag( IrpSp->Flags, SL_OVERRIDE_VERIFY_VOLUME );
  1413. IrpSp->Parameters.DeviceIoControl.IoControlCode = IoCtl;
  1414. Irp->AssociatedIrp.SystemBuffer = Buffer;
  1415. IrpSp->Parameters.DeviceIoControl.OutputBufferLength = BufferLength;
  1416. //
  1417. // Reset the major code to the correct value.
  1418. //
  1419. IrpSp->MajorFunction = IRP_MJ_DEVICE_CONTROL;
  1420. //
  1421. // Set up the completion routine.
  1422. //
  1423. IoSetCompletionRoutine( Irp,
  1424. NtfsVerifyReadCompletionRoutine,
  1425. &Event,
  1426. TRUE,
  1427. TRUE,
  1428. TRUE );
  1429. //
  1430. // Call the device to do the io and wait for it to finish.
  1431. //
  1432. (VOID)IoCallDriver( DeviceObject, Irp );
  1433. (VOID)KeWaitForSingleObject( &Event, Executive, KernelMode, FALSE, (PLARGE_INTEGER)NULL );
  1434. //
  1435. // Grab the Status.
  1436. //
  1437. Status = Irp->IoStatus.Status;
  1438. IoFreeIrp( Irp );
  1439. //
  1440. // And return to our caller.
  1441. //
  1442. return Status;
  1443. }
  1444. //
  1445. // Local Support routine
  1446. //
  1447. VOID
  1448. NtfsPerformVerifyDiskRead (
  1449. IN PIRP_CONTEXT IrpContext,
  1450. IN PVCB Vcb,
  1451. IN PVOID Buffer,
  1452. IN LONGLONG Offset,
  1453. IN ULONG NumberOfBytesToRead
  1454. )
  1455. /*++
  1456. Routine Description:
  1457. This routine is used to read in a range of bytes from the disk. It
  1458. bypasses all of the caching and regular I/O logic, and builds and issues
  1459. the requests itself. It does this operation overriding the verify
  1460. volume flag in the device object.
  1461. Arguments:
  1462. Vcb - Supplies the Vcb denoting the device for this operation
  1463. Buffer - Supplies the buffer that will recieve the results of this operation
  1464. Offset - Supplies the offset of where to start reading
  1465. NumberOfBytesToRead - Supplies the number of bytes to read, this must
  1466. be in multiple of bytes units acceptable to the disk driver.
  1467. Return Value:
  1468. None.
  1469. --*/
  1470. {
  1471. KEVENT Event;
  1472. PIRP Irp;
  1473. NTSTATUS Status;
  1474. ASSERT_IRP_CONTEXT( IrpContext );
  1475. ASSERT_VCB( Vcb );
  1476. PAGED_CODE();
  1477. //
  1478. // Initialize the event we're going to use
  1479. //
  1480. KeInitializeEvent( &Event, NotificationEvent, FALSE );
  1481. //
  1482. // Build the irp for the operation and also set the overrride flag
  1483. //
  1484. // Note that we may be at APC level, so do this asyncrhonously and
  1485. // use an event for synchronization normal request completion
  1486. // cannot occur at APC level.
  1487. //
  1488. Irp = IoBuildAsynchronousFsdRequest( IRP_MJ_READ,
  1489. Vcb->TargetDeviceObject,
  1490. Buffer,
  1491. NumberOfBytesToRead,
  1492. (PLARGE_INTEGER)&Offset,
  1493. NULL );
  1494. if ( Irp == NULL ) {
  1495. NtfsRaiseStatus( IrpContext, STATUS_INSUFFICIENT_RESOURCES, NULL, NULL );
  1496. }
  1497. SetFlag( IoGetNextIrpStackLocation( Irp )->Flags, SL_OVERRIDE_VERIFY_VOLUME );
  1498. //
  1499. // Set up the completion routine
  1500. //
  1501. IoSetCompletionRoutine( Irp,
  1502. NtfsVerifyReadCompletionRoutine,
  1503. &Event,
  1504. TRUE,
  1505. TRUE,
  1506. TRUE );
  1507. //
  1508. // Call the device to do the write and wait for it to finish.
  1509. //
  1510. try {
  1511. (VOID)IoCallDriver( Vcb->TargetDeviceObject, Irp );
  1512. (VOID)KeWaitForSingleObject( &Event, Executive, KernelMode, FALSE, (PLARGE_INTEGER)NULL );
  1513. //
  1514. // Grab the Status.
  1515. //
  1516. Status = Irp->IoStatus.Status;
  1517. } finally {
  1518. //
  1519. // If there is an MDL (or MDLs) associated with this I/O
  1520. // request, Free it (them) here. This is accomplished by
  1521. // walking the MDL list hanging off of the IRP and deallocating
  1522. // each MDL encountered.
  1523. //
  1524. while (Irp->MdlAddress != NULL) {
  1525. PMDL NextMdl;
  1526. NextMdl = Irp->MdlAddress->Next;
  1527. MmUnlockPages( Irp->MdlAddress );
  1528. IoFreeMdl( Irp->MdlAddress );
  1529. Irp->MdlAddress = NextMdl;
  1530. }
  1531. IoFreeIrp( Irp );
  1532. }
  1533. //
  1534. // If it doesn't succeed then raise the error
  1535. //
  1536. if (!NT_SUCCESS(Status)) {
  1537. NtfsNormalizeAndRaiseStatus( IrpContext,
  1538. Status,
  1540. }
  1541. //
  1542. // And return to our caller
  1543. //
  1544. return;
  1545. }
  1546. NTSTATUS
  1547. NtfsIoCallSelf (
  1548. IN PIRP_CONTEXT IrpContext,
  1549. IN PFILE_OBJECT FileObject,
  1550. IN UCHAR MajorFunction
  1551. )
  1552. /*++
  1553. Routine Description:
  1554. This routine is used to call ourselves for a simple function. Note that
  1555. if more use is found for this routine than the few current uses, its interface
  1556. may be easily expanded.
  1557. Arguments:
  1558. FileObject - FileObject for request.
  1559. MajorFunction - function to be performed.
  1560. Return Value:
  1561. Status code resulting from the driver call
  1562. --*/
  1563. {
  1564. KEVENT Event;
  1565. PIRP Irp;
  1566. PDEVICE_OBJECT DeviceObject;
  1568. NTSTATUS Status;
  1569. ASSERT_IRP_CONTEXT( IrpContext );
  1570. PAGED_CODE();
  1571. //
  1572. // Initialize the event we're going to use
  1573. //
  1574. KeInitializeEvent( &Event, NotificationEvent, FALSE );
  1575. DeviceObject = IoGetRelatedDeviceObject( FileObject );
  1576. //
  1577. // Build the irp for the operation and also set the overrride flag
  1578. //
  1579. // Note that we may be at APC level, so do this asyncrhonously and
  1580. // use an event for synchronization normal request completion
  1581. // cannot occur at APC level.
  1582. //
  1583. Irp = IoBuildAsynchronousFsdRequest( IRP_MJ_SHUTDOWN,
  1584. DeviceObject,
  1585. NULL,
  1586. 0,
  1587. NULL,
  1588. NULL );
  1589. if (Irp == NULL) {
  1591. }
  1592. //
  1593. // Fill in a few remaining items
  1594. //
  1595. Irp->Tail.Overlay.OriginalFileObject = FileObject;
  1596. IrpSp = IoGetNextIrpStackLocation(Irp);
  1597. IrpSp->MajorFunction = MajorFunction;
  1598. IrpSp->FileObject = FileObject;
  1599. //
  1600. // Set up the completion routine
  1601. //
  1602. IoSetCompletionRoutine( Irp,
  1603. NtfsVerifyReadCompletionRoutine,
  1604. &Event,
  1605. TRUE,
  1606. TRUE,
  1607. TRUE );
  1608. NtfsPurgeFileRecordCache( IrpContext );
  1609. SetFlag( IrpContext->Flags, IRP_CONTEXT_FLAG_CALL_SELF );
  1610. //
  1611. // Call the device to do the write and wait for it to finish.
  1612. //
  1613. try {
  1614. (VOID)IoCallDriver( DeviceObject, Irp );
  1615. (VOID)KeWaitForSingleObject( &Event, Executive, KernelMode, FALSE, (PLARGE_INTEGER)NULL );
  1616. //
  1617. // Grab the Status.
  1618. //
  1619. Status = Irp->IoStatus.Status;
  1620. } finally {
  1621. //
  1622. // There should never be an MDL here.
  1623. //
  1624. ASSERT(Irp->MdlAddress == NULL);
  1625. IoFreeIrp( Irp );
  1626. ClearFlag( IrpContext->Flags, IRP_CONTEXT_FLAG_CALL_SELF );
  1627. }
  1628. //
  1629. // If it doesn't succeed then raise the error
  1630. //
  1631. // And return to our caller
  1632. //
  1633. return Status;
  1634. }
  1635. BOOLEAN
  1636. NtfsLogEventInternal (
  1637. IN PVCB Vcb,
  1638. IN UCHAR MajorFunction,
  1639. IN ULONG TransactionId,
  1642. IN NTSTATUS LogCode,
  1643. IN NTSTATUS FinalStatus
  1644. )
  1645. /*++
  1646. Routine Description:
  1647. Create an eventlogentry. This version is given all the strings and user data
  1648. it needs.
  1649. Arguments:
  1650. Vcb - the vcb
  1651. MajorFunction - irp majorfunction when log was generated
  1652. TransactionId - transaction id for transaction if any
  1653. String - Any string needed in the message
  1654. UserData - Any userdata
  1655. LogCode - IO_ type code (NOT an NTSTATUS) see ntiologc.h
  1656. FinalStatus - NTSTATUS of error
  1657. Return Value:
  1658. TRUE if successful
  1659. --*/
  1660. {
  1661. PIO_ERROR_LOG_PACKET ErrorLogEntry;
  1663. ULONG SidLength;
  1664. ULONG DumpDataLength = 0;
  1665. ULONG StringLength = 0;
  1666. ULONG LogSize = sizeof( IO_ERROR_LOG_PACKET );
  1667. PWCHAR RecordString;
  1668. if (Vcb == NULL) {
  1669. return FALSE;
  1670. }
  1671. if (ARGUMENT_PRESENT( String )) {
  1672. StringLength = String->Length + sizeof(WCHAR);
  1673. LogSize += StringLength;
  1674. }
  1675. if (ARGUMENT_PRESENT( UserData )) {
  1676. //
  1677. // Calculate the required length of the Sid.
  1678. //
  1679. SidLength = RtlLengthSid( &UserData->QuotaSid );
  1680. DumpDataLength = SidLength +
  1682. //
  1683. // The error packet already has 1 ulong for dump data in it
  1684. //
  1685. LogSize += DumpDataLength - sizeof( ULONG );
  1686. }
  1687. if (LogSize > ERROR_LOG_MAXIMUM_SIZE) {
  1689. }
  1690. //
  1691. // We don't deal with the user dump data not fitting in the record
  1692. //
  1693. ASSERT( DumpDataLength - sizeof( ULONG ) + sizeof( IO_ERROR_LOG_PACKET ) <= LogSize );
  1694. ErrorLogEntry = (PIO_ERROR_LOG_PACKET)
  1695. IoAllocateErrorLogEntry( (CONTAINING_RECORD( Vcb, VOLUME_DEVICE_OBJECT, Vcb ))->DeviceObject.DriverObject,
  1696. (UCHAR) (LogSize) );
  1697. if (ErrorLogEntry == NULL) {
  1698. return FALSE;
  1699. }
  1700. ErrorLogEntry->EventCategory = ELF_CATEGORY_DISK;
  1701. ErrorLogEntry->ErrorCode = LogCode;
  1702. ErrorLogEntry->FinalStatus = FinalStatus;
  1703. ErrorLogEntry->SequenceNumber = TransactionId;
  1704. ErrorLogEntry->MajorFunctionCode = MajorFunction;
  1705. ErrorLogEntry->RetryCount = 0;
  1706. ErrorLogEntry->DumpDataSize = (USHORT) DumpDataLength;
  1707. //
  1708. // The label string at the end of the error log entry.
  1709. //
  1710. ErrorLogEntry->NumberOfStrings = 1;
  1711. ErrorLogEntry->StringOffset = (USHORT) (sizeof( IO_ERROR_LOG_PACKET ) + DumpDataLength - sizeof( ULONG ));
  1712. RecordString = (PWCHAR) Add2Ptr( ErrorLogEntry, ErrorLogEntry->StringOffset );
  1713. if (LogSize - ErrorLogEntry->StringOffset < StringLength) {
  1714. RtlCopyMemory( RecordString,
  1715. String->Buffer,
  1716. LogSize - ErrorLogEntry->StringOffset - sizeof( WCHAR ) * 4 );
  1717. RecordString += (LogSize - ErrorLogEntry->StringOffset - sizeof( WCHAR ) * 4) / sizeof(WCHAR);
  1718. RtlCopyMemory( RecordString, L"...", sizeof( WCHAR ) * 4 );
  1719. } else {
  1720. RtlCopyMemory( RecordString,
  1721. String->Buffer,
  1722. String->Length );
  1723. //
  1724. // Make sure the string is null terminated.
  1725. //
  1726. RecordString += String->Length / sizeof( WCHAR );
  1727. *RecordString = L'\0';
  1728. }
  1729. if (ARGUMENT_PRESENT( UserData )) {
  1730. FileQuotaInfo = (PFILE_QUOTA_INFORMATION) ErrorLogEntry->DumpData;
  1731. FileQuotaInfo->NextEntryOffset = 0;
  1732. FileQuotaInfo->SidLength = SidLength;
  1733. FileQuotaInfo->ChangeTime.QuadPart = UserData->QuotaChangeTime;
  1734. FileQuotaInfo->QuotaUsed.QuadPart = UserData->QuotaUsed;
  1735. FileQuotaInfo->QuotaThreshold.QuadPart = UserData->QuotaThreshold;
  1736. FileQuotaInfo->QuotaLimit.QuadPart = UserData->QuotaLimit;
  1737. RtlCopyMemory( &FileQuotaInfo->Sid,
  1738. &UserData->QuotaSid,
  1739. SidLength );
  1740. }
  1741. IoWriteErrorLogEntry( ErrorLogEntry );
  1742. return TRUE;
  1743. }
  1744. BOOLEAN
  1745. NtfsLogEvent (
  1746. IN PIRP_CONTEXT IrpContext,
  1748. IN NTSTATUS LogCode,
  1749. IN NTSTATUS FinalStatus
  1750. )
  1751. /*++
  1752. Routine Description:
  1753. This routine logs an io event. If UserData is supplied then the
  1754. data logged is a FILE_QUOTA_INFORMATION structure
  1755. Arguments:
  1756. UserData - Supplies the optional quota user data index entry.
  1757. LogCode - Supplies the Io Log code to use for the ErrorCode field.
  1758. FinalStauts - Supplies the final status of the operation.
  1759. Return Value:
  1760. True - if the event was successfully logged.
  1761. --*/
  1762. {
  1764. ULONG OldCount;
  1765. UNICODE_STRING Label;
  1766. if (IrpContext->Vcb == NULL) {
  1767. return FALSE;
  1768. }
  1769. OldCount = InterlockedCompareExchange( &(NtfsData.VolumeNameLookupsInProgress), 1, 0 );
  1770. if (OldCount == 0) {
  1771. Packet = NtfsAllocatePoolWithTagNoRaise( PagedPool, sizeof( EVENTLOG_ERROR_PACKET ), MODULE_POOL_TAG );
  1772. if (Packet) {
  1773. RtlZeroMemory( Packet, sizeof( EVENTLOG_ERROR_PACKET ) );
  1774. //
  1775. // Copy UserData if necc. since the resolution is asynch
  1776. //
  1777. if (ARGUMENT_PRESENT( UserData )) {
  1778. ULONG SidLength;
  1779. ULONG UserDataLength;
  1780. SidLength = RtlLengthSid( &UserData->QuotaSid );
  1781. UserDataLength = SidLength +
  1783. Packet->UserData = NtfsAllocatePoolWithTagNoRaise( PagedPool, UserDataLength, MODULE_POOL_TAG );
  1784. if (!Packet->UserData) {
  1785. NtfsFreePool( Packet );
  1786. return NtfsLogEventInternal( IrpContext->Vcb, IrpContext->MajorFunction, IrpContext->TransactionId, NULL, UserData, LogCode, FinalStatus );
  1787. }
  1788. RtlCopyMemory( Packet->UserData, UserData, UserDataLength );
  1789. }
  1790. Packet->FinalStatus = FinalStatus;
  1791. Packet->LogCode = LogCode;
  1792. Packet->MajorFunction = IrpContext->MajorFunction;
  1793. Packet->TransactionId = IrpContext->TransactionId;
  1794. Packet->Vcb = IrpContext->Vcb;
  1795. NtfsPostSpecial( IrpContext, IrpContext->Vcb, NtfsResolveVolumeAndLogEventSpecial, Packet );
  1796. return TRUE;
  1797. } else {
  1798. Label.Length = Label.MaximumLength = IrpContext->Vcb->Vpb->VolumeLabelLength;
  1799. Label.Buffer = &(IrpContext->Vcb->Vpb->VolumeLabel[0]);
  1800. return NtfsLogEventInternal( IrpContext->Vcb, IrpContext->MajorFunction, IrpContext->TransactionId, &Label, NULL, LogCode, FinalStatus );
  1801. }
  1802. } else {
  1803. Label.Length = Label.MaximumLength = IrpContext->Vcb->Vpb->VolumeLabelLength;
  1804. Label.Buffer = &(IrpContext->Vcb->Vpb->VolumeLabel[0]);
  1805. return NtfsLogEventInternal( IrpContext->Vcb, IrpContext->MajorFunction, IrpContext->TransactionId, &Label, NULL, LogCode, FinalStatus );
  1806. }
  1807. }
  1808. VOID
  1809. NtfsResolveVolumeAndLogEventSpecial (
  1810. IN PIRP_CONTEXT IrpContext,
  1811. IN OUT PVOID Context
  1812. )
  1813. /*++
  1814. Routine Description:
  1815. Resolve Vcb's win32 devicename and raise an io hard error. This is done in
  1816. a separate thread in order to have enough stack to re-enter the filesys if necc.
  1817. Also because we may reenter. Starting from here means we own no resources other than
  1818. having inc'ed the close count on the underlying vcb to prevent its going away
  1819. Arguments:
  1820. IrpContext - IrpContext containing vcb we're interested in
  1821. Context - String to append to volume win32 name
  1822. Return Value:
  1823. none
  1824. --*/
  1825. {
  1826. PEVENTLOG_ERROR_PACKET EventCtx = 0;
  1827. UNICODE_STRING VolumeName;
  1828. NTSTATUS Status;
  1829. WCHAR *NewBuffer = NULL;
  1830. ULONG DumpDataLength = 0;
  1831. ULONG LabelLength = 0;
  1832. BOOLEAN AllocatedVolName = FALSE;
  1834. ASSERT( Context != NULL );
  1835. EventCtx = (PEVENTLOG_ERROR_PACKET) Context;
  1836. VolumeName.Length = 0;
  1837. VolumeName.Buffer = NULL;
  1838. try {
  1839. Status = IoVolumeDeviceToDosName( EventCtx->Vcb->TargetDeviceObject, &VolumeName );
  1840. ASSERT( (STATUS_SUCCESS == Status) || (VolumeName.Length == 0) );
  1841. //
  1842. // We're stuck using the label
  1843. //
  1844. if (VolumeName.Length == 0) {
  1845. VolumeName.Length = EventCtx->Vcb->Vpb->VolumeLabelLength;
  1846. VolumeName.Buffer = &(EventCtx->Vcb->Vpb->VolumeLabel[0]);
  1847. } else if (STATUS_SUCCESS == Status) {
  1848. AllocatedVolName = TRUE;
  1849. }
  1850. //
  1851. // Ignore status from LogEventInternal at this point if we fail
  1852. //
  1853. NtfsLogEventInternal( EventCtx->Vcb, EventCtx->MajorFunction, EventCtx->TransactionId, &VolumeName, EventCtx->UserData, EventCtx->LogCode, EventCtx->FinalStatus );
  1854. } finally {
  1855. //
  1856. // Indicate we're done and other lookups can occur
  1857. //
  1858. InterlockedDecrement( &(NtfsData.VolumeNameLookupsInProgress) );
  1859. if (EventCtx) {
  1860. if (EventCtx->UserData) {
  1861. NtfsFreePool( EventCtx->UserData );
  1862. }
  1863. NtfsFreePool( EventCtx );
  1864. }
  1865. if (AllocatedVolName) {
  1866. NtfsFreePool( VolumeName.Buffer );
  1867. }
  1868. }
  1869. }
  1870. VOID
  1871. NtfsPostVcbIsCorrupt (
  1872. IN PIRP_CONTEXT IrpContext,
  1876. )
  1877. /*++
  1878. Routine Description:
  1879. This routine is called to mark the volume dirty and possibly raise a hard error.
  1880. Arguments:
  1881. Status - If not zero, then this is the error code for the popup.
  1882. FileReference - If specified, then this is the file reference for the corrupt file.
  1883. Fcb - If specified, then this is the Fcb for the corrupt file.
  1884. Return Value:
  1885. None
  1886. --*/
  1887. {
  1888. PVCB Vcb = IrpContext->Vcb;
  1889. if (Vcb != NULL) {
  1890. NtfsMarkVolumeDirty( IrpContext, Vcb );
  1891. //
  1892. // This would be the appropriate place to raise a hard error popup,
  1893. // ala the code in FastFat. We should do it after marking the volume
  1894. // dirty so that if anything goes wrong with the popup, the volume is
  1895. // already marked anyway.
  1896. //
  1897. if ((Status != 0) &&
  1898. !NtfsSuppressPopup &&
  1899. ((IrpContext->MajorFunction != IRP_MJ_FILE_SYSTEM_CONTROL) ||
  1900. (IrpContext->MinorFunction != IRP_MN_MOUNT_VOLUME))) {
  1901. NtfsRaiseInformationHardError( IrpContext,
  1902. Status,
  1903. FileReference,
  1904. Fcb );
  1905. }
  1906. }
  1907. return;
  1908. }
  1909. VOID
  1910. NtfsMarkVolumeDirty (
  1911. IN PIRP_CONTEXT IrpContext,
  1912. IN PVCB Vcb
  1913. )
  1914. /*++
  1915. Routine Description:
  1916. This routine may be called any time the Mft is open to mark the volume
  1917. dirty.
  1918. Arguments:
  1919. Vcb - Vcb for volume to mark dirty
  1920. UpdateWithinTransaction - Use TRUE if it is safe to log this operation.
  1921. Return Value:
  1922. None
  1923. --*/
  1924. {
  1925. PAGED_CODE();
  1926. #if ((DBG || defined( NTFS_FREE_ASSERTS )) && !defined( LFS_CLUSTER_CHECK ))
  1927. KdPrint(("NTFS: Marking volume dirty, Vcb: %08lx\n", Vcb));
  1928. if (NtfsBreakOnCorrupt) {
  1929. KdPrint(("NTFS: Marking volume dirty\n", 0));
  1930. DbgBreakPoint();
  1931. }
  1932. #endif
  1933. //
  1934. // Return if the volume is already marked dirty. This also prevents
  1935. // endless recursion if the volume file itself is corrupt.
  1936. // Noop if the volume was mounted read only.
  1937. //
  1938. if (FlagOn( Vcb->VcbState, VCB_STATE_VOLUME_MOUNTED_DIRTY ) ||
  1939. (FlagOn( Vcb->VcbState, VCB_STATE_MOUNT_READ_ONLY ))) {
  1940. return;
  1941. }
  1942. SetFlag( Vcb->VcbState, VCB_STATE_VOLUME_MOUNTED_DIRTY );
  1943. NtfsSetVolumeInfoFlagState( IrpContext,
  1944. Vcb,
  1946. TRUE,
  1947. FALSE );
  1948. //
  1949. // If this is chkdsk marking the volume dirty, let's not scare
  1950. // the user by putting a 'volume corrupt' message in the log.
  1951. // If an exception has occured, we want to log the event regardless.
  1952. //
  1953. if ((IrpContext->MajorFunction != IRP_MJ_FILE_SYSTEM_CONTROL) ||
  1954. (IrpContext->MinorFunction != IRP_MN_USER_FS_REQUEST) ||
  1955. (IoGetCurrentIrpStackLocation( IrpContext->OriginatingIrp )->Parameters.FileSystemControl.FsControlCode
  1957. (IrpContext->ExceptionStatus != 0)) {
  1958. NtfsLogEvent( IrpContext,
  1959. NULL,
  1962. }
  1963. }
  1964. VOID
  1965. NtfsSetVolumeInfoFlagState (
  1966. IN PIRP_CONTEXT IrpContext,
  1967. IN PVCB Vcb,
  1968. IN ULONG FlagsToSet,
  1969. IN BOOLEAN NewState,
  1970. IN BOOLEAN UpdateWithinTransaction
  1971. )
  1972. /*++
  1973. Routine Description:
  1974. This routine sets or clears one or more bits in the given vcb's
  1975. volume information.
  1976. Arguments:
  1977. Vcb - Vcb for volume.
  1978. FlagsToSet - The bit(s) to set or clear.
  1979. NewState - Use TRUE to set the given bit(s), or FALSE to clear them.
  1980. UpdateWithinTransaction - Use TRUE if this flag change should be done
  1981. inside a transaction.
  1982. Return Value:
  1983. None
  1984. --*/
  1985. {
  1986. LONGLONG Offset;
  1988. PVOLUME_INFORMATION VolumeInformation;
  1991. ULONG RecordOffset;
  1992. ULONG AttributeOffset;
  1993. BOOLEAN CleanupAttributeContext = TRUE;
  1994. ULONG VolumeFlags;
  1995. //
  1996. // If we don't have the VolumeDasdScb open yet, we can't do anything,
  1997. // so we need to exit gracefully now.
  1998. //
  1999. if ((Vcb == NULL) ||
  2000. (Vcb->VolumeDasdScb == NULL)) {
  2001. ASSERTMSG( "Attempting to set volume info flag state for a non-mounted volume", FALSE );
  2002. return;
  2003. }
  2004. NtfsInitializeAttributeContext( &AttributeContext );
  2005. try {
  2006. if (NtfsLookupAttributeByCode( IrpContext,
  2007. Vcb->VolumeDasdScb->Fcb,
  2008. &Vcb->VolumeDasdScb->Fcb->FileReference,
  2010. &AttributeContext )) {
  2011. VolumeInformation = (PVOLUME_INFORMATION) NtfsAttributeValue( NtfsFoundAttribute( &AttributeContext ));
  2012. NtfsPinMappedAttribute( IrpContext, Vcb, &AttributeContext );
  2013. //
  2014. // Extract the relevant pointers and calculate offsets.
  2015. //
  2016. FileRecord = NtfsContainingFileRecord( &AttributeContext );
  2017. Attribute = NtfsFoundAttribute( &AttributeContext );
  2018. Offset = PtrOffset( VolumeInformation, &VolumeInformation->VolumeFlags );
  2019. RecordOffset = PtrOffset( FileRecord, Attribute );
  2020. AttributeOffset = Attribute->Form.Resident.ValueOffset + (ULONG)Offset;
  2021. VolumeFlags = VolumeInformation->VolumeFlags;
  2022. if (NewState) {
  2023. SetFlag( VolumeFlags, FlagsToSet );
  2024. } else {
  2025. ClearFlag( VolumeFlags, FlagsToSet );
  2026. }
  2027. if (UpdateWithinTransaction) {
  2028. //
  2029. // Log the change while we still have the old data.
  2030. //
  2031. FileRecord->Lsn =
  2032. NtfsWriteLog( IrpContext,
  2033. Vcb->MftScb,
  2034. NtfsFoundBcb( &AttributeContext ),
  2035. UpdateResidentValue,
  2036. &VolumeFlags,
  2037. sizeof( VolumeFlags ),
  2038. UpdateResidentValue,
  2039. Add2Ptr(Attribute, Attribute->Form.Resident.ValueOffset + (ULONG)Offset),
  2040. sizeof( VolumeInformation->VolumeFlags),
  2041. NtfsMftOffset(&AttributeContext),
  2042. RecordOffset,
  2043. AttributeOffset,
  2044. Vcb->BytesPerFileRecordSegment );
  2045. }
  2046. //
  2047. // Now update this data by calling the same routine as restart.
  2048. //
  2049. NtfsRestartChangeValue( IrpContext,
  2050. FileRecord,
  2051. RecordOffset,
  2052. AttributeOffset,
  2053. &VolumeFlags,
  2054. sizeof( VolumeFlags ),
  2055. FALSE );
  2056. //
  2057. // If this is not a transaction then mark the page dirty and flush
  2058. // this to disk.
  2059. //
  2060. if (!UpdateWithinTransaction) {
  2061. LONGLONG MftOffset = NtfsMftOffset( &AttributeContext );
  2062. CcSetDirtyPinnedData( NtfsFoundBcb( &AttributeContext ), NULL );
  2063. NtfsCleanupAttributeContext( IrpContext, &AttributeContext );
  2064. CleanupAttributeContext = FALSE;
  2065. CcFlushCache( &Vcb->MftScb->NonpagedScb->SegmentObject,
  2066. (PLARGE_INTEGER) &MftOffset,
  2067. Vcb->BytesPerFileRecordSegment,
  2068. NULL );
  2069. }
  2070. }
  2071. } finally {
  2072. if (CleanupAttributeContext) {
  2073. NtfsCleanupAttributeContext( IrpContext, &AttributeContext );
  2074. }
  2075. }
  2076. return;
  2077. }
  2078. BOOLEAN
  2079. NtfsUpdateVolumeInfo (
  2080. IN PIRP_CONTEXT IrpContext,
  2081. IN PVCB Vcb,
  2082. IN UCHAR DiskMajorVersion,
  2083. IN UCHAR DiskMinorVersion
  2084. )
  2085. /*++
  2086. Routine Description:
  2087. This routine is called to update the volume information on disk. This includes
  2088. version numbers, and last mounted version Disk versions are only updated if they
  2089. are greater than the on disk ones.
  2090. Arguments:
  2091. Vcb - Vcb for volume.
  2092. DiskMajorVersion - This is the Major Version number for the on disk format.
  2093. DiskMinorVersion - This is the Minor Version number for the on disk format.
  2094. Return Value:
  2095. TRUE if disk version was updated
  2096. --*/
  2097. {
  2099. PVOLUME_INFORMATION VolumeInformation;
  2101. VOLUME_INFORMATION NewVolumeInformation;
  2102. BOOLEAN UpdatedVersion = TRUE;
  2103. ULONG VolInfoSize;
  2104. PAGED_CODE();
  2105. NtfsInitializeAttributeContext( &AttributeContext );
  2106. try {
  2107. //
  2108. // Lookup the volume information attribute.
  2109. //
  2110. if (NtfsLookupAttributeByCode( IrpContext,
  2111. Vcb->VolumeDasdScb->Fcb,
  2112. &Vcb->VolumeDasdScb->Fcb->FileReference,
  2114. &AttributeContext )) {
  2115. Attribute = NtfsFoundAttribute(&AttributeContext);
  2116. ASSERT( Attribute->FormCode == RESIDENT_FORM );
  2117. VolumeInformation =
  2118. (PVOLUME_INFORMATION)NtfsAttributeValue( NtfsFoundAttribute( &AttributeContext ));
  2119. NtfsPinMappedAttribute( IrpContext, Vcb, &AttributeContext );
  2120. RtlCopyMemory( &NewVolumeInformation, VolumeInformation, Attribute->Form.Resident.ValueLength );
  2121. if (NewVolumeInformation.MajorVersion < DiskMajorVersion) {
  2122. NewVolumeInformation.MajorVersion = DiskMajorVersion;
  2123. NewVolumeInformation.MinorVersion = DiskMinorVersion;
  2124. Vcb->MajorVersion = DiskMajorVersion;
  2125. Vcb->MinorVersion = DiskMinorVersion;
  2126. } else if (NewVolumeInformation.MinorVersion < DiskMinorVersion) {
  2127. NewVolumeInformation.MinorVersion = DiskMinorVersion;
  2128. Vcb->MinorVersion = DiskMinorVersion;
  2129. } else {
  2130. UpdatedVersion = FALSE;
  2131. }
  2132. //
  2133. // We can use the new volinfo for version 4 and greater
  2134. //
  2135. if (DiskMajorVersion > 3) {
  2136. #ifdef BENL_DBG
  2137. KdPrint(( "NTFS: new volinfo for version 4+\n" ));
  2138. #endif
  2139. NewVolumeInformation.LastMountedMajorVersion = DiskMajorVersion;
  2140. NewVolumeInformation.LastMountedMinorVersion = DiskMinorVersion;
  2141. VolInfoSize = sizeof( VOLUME_INFORMATION );
  2142. UpdatedVersion = TRUE;
  2143. } else {
  2144. VolInfoSize = FIELD_OFFSET( VOLUME_INFORMATION, LastMountedMajorVersion );
  2145. }
  2146. if (UpdatedVersion) {
  2147. NtfsChangeAttributeValue( IrpContext, Vcb->VolumeDasdScb->Fcb, 0, &NewVolumeInformation, VolInfoSize, TRUE, FALSE, FALSE, TRUE, &AttributeContext );
  2148. }
  2149. }
  2150. } finally {
  2151. NtfsCleanupAttributeContext( IrpContext, &AttributeContext );
  2152. }
  2153. return UpdatedVersion;
  2154. }
  2155. //
  2156. // Local support routine
  2157. //
  2158. NTSTATUS
  2159. NtfsVerifyReadCompletionRoutine(
  2160. IN PDEVICE_OBJECT DeviceObject,
  2161. IN PIRP Irp,
  2162. IN PVOID Contxt
  2163. )
  2164. {
  2165. //
  2166. // Set the event so that our call will wake up.
  2167. //
  2168. KeSetEvent( (PKEVENT)Contxt, 0, FALSE );
  2169. UNREFERENCED_PARAMETER( DeviceObject );
  2171. //
  2172. // If we change this return value then NtfsIoCallSelf needs to reference the
  2173. // file object.
  2174. //
  2176. }