archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Branch: master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
windows-server-2003/net/tcpip/samples/kmcancel/kmcancel.c

355 lines
8.4 KiB
Raw Permalink Normal View History

commiting as it is
4 years ago
  1. /*++
  3. Copyright (c) 1999 Microsoft Corporation
  5. Module Name:
  7. kmcancel.c
  9. Abstract:
  11. This module contains code to verify handling of IRP cancelation requests.
  13. Author:
  15. Abolade Gbadegesin (aboladeg) 05-June-2000
  17. Revision History:
  19. --*/
  21. #include "precomp.h"
  22. #pragma hdrstop
  24. #define THREAD_COUNT 10
  25. #define REQUEST_COUNT 50
  26. #define DD_TARGET_DEVICE_NAME DD_IP_DEVICE_NAME
  27. #define TARGET_IO_CONTROL_CODE IOCTL_IP_RTCHANGE_NOTIFY_REQUEST
  29. //
  30. // Target driver state.
  31. //
  33. PDEVICE_OBJECT TargetDeviceObject = NULL;
  34. PFILE_OBJECT TargetFileObject = NULL;
  36. //
  37. // Thread-management state.
  38. //
  40. ULONG KmcThreadCount;
  41. KEVENT KmcStopEvent;
  42. KSEMAPHORE KmcStopSemaphore;
  45. //
  46. // FUNCTION PROTOTYPES (alphabetically)
  47. //
  49. NTSTATUS
  50. DriverEntry(
  51. IN PDRIVER_OBJECT DriverObject,
  52. IN PUNICODE_STRING RegistryPath
  53. );
  55. NTSTATUS
  56. KmcRequestCompletionRoutine(
  57. PDEVICE_OBJECT DeviceObject,
  58. PIRP Irp,
  59. PVOID Context
  60. );
  62. VOID
  63. KmcRequestThread(
  64. PVOID Context
  65. );
  67. VOID
  68. KmcUnloadDriver(
  69. IN PDRIVER_OBJECT DriverObject
  70. );
  72. VOID
  73. KmcUpdateThread(
  74. PVOID Context
  75. );
  78. NTSTATUS
  79. DriverEntry(
  80. IN PDRIVER_OBJECT DriverObject,
  81. IN PUNICODE_STRING RegistryPath
  82. )
  83. {
  84. ULONG i;
  85. NTSTATUS Status;
  86. HANDLE ThreadHandle;
  87. UNICODE_STRING UnicodeString;
  89. KdPrint(("DriverEntry\n"));
  90. DriverObject->DriverUnload = KmcUnloadDriver;
  91. KmcThreadCount = 0;
  92. KeInitializeEvent(&KmcStopEvent, NotificationEvent, FALSE);
  93. KeInitializeSemaphore(&KmcStopSemaphore, 0, MAXLONG);
  95. //
  96. // Obtain the target driver's device-object
  97. //
  99. RtlInitUnicodeString(&UnicodeString, DD_TARGET_DEVICE_NAME);
  100. Status =
  101. IoGetDeviceObjectPointer(
  102. &UnicodeString,
  103. SYNCHRONIZE|GENERIC_READ|GENERIC_WRITE,
  104. &TargetFileObject,
  105. &TargetDeviceObject
  106. );
  107. if (!NT_SUCCESS(Status)) {
  108. KdPrint(("DriverEntry: error %x getting IP object\n", Status));
  109. return Status;
  110. }
  112. ObReferenceObject(TargetDeviceObject);
  115. //
  116. // Start the request/update threads.
  117. // The request threads are responsible for issuing the I/O control
  118. // whose cancelation is being verified, and the update threads are
  119. // responsible for triggering completion of those I/O control requests
  120. // in order to highlight any potential race-conditions.
  121. //
  123. for (i = 0; i < THREAD_COUNT; i++) {
  124. Status =
  125. PsCreateSystemThread(
  126. &ThreadHandle,
  127. GENERIC_ALL,
  128. NULL,
  129. NULL,
  130. NULL,
  131. KmcUpdateThread,
  132. NULL
  133. );
  134. if (NT_SUCCESS(Status)) {
  135. ZwClose(ThreadHandle);
  136. ++KmcThreadCount;
  137. }
  138. Status =
  139. PsCreateSystemThread(
  140. &ThreadHandle,
  141. GENERIC_ALL,
  142. NULL,
  143. NULL,
  144. NULL,
  145. KmcRequestThread,
  146. NULL
  147. );
  148. if (NT_SUCCESS(Status)) {
  149. ZwClose(ThreadHandle);
  150. ++KmcThreadCount;
  151. }
  152. }
  154. return STATUS_SUCCESS;
  156. } // DriverEntry
  158. typedef struct _KMC_REQUEST {
  159. IO_STATUS_BLOCK IoStatus;
  160. PIRP Irp;
  161. ULONG ReferenceCount;
  162. } KMC_REQUEST, *PKMC_REQUEST;
  165. NTSTATUS
  166. KmcRequestCompletionRoutine(
  167. PDEVICE_OBJECT DeviceObject,
  168. PIRP Irp,
  169. PVOID Context
  170. )
  171. {
  172. PKMC_REQUEST Request = (PKMC_REQUEST)Context;
  173. if (InterlockedDecrement(&Request->ReferenceCount) == 0) {
  174. IoFreeIrp(Request->Irp);
  175. ExFreePool(Request);
  176. }
  177. return STATUS_MORE_PROCESSING_REQUIRED;
  178. } // KmcCompletionRoutine
  181. VOID
  182. KmcRequestThread(
  183. PVOID Context
  184. )
  185. {
  186. ULONG i, Index;
  187. LARGE_INTEGER Interval;
  188. PIRP Irp;
  189. PIO_STACK_LOCATION IrpSp;
  190. KIRQL OldIrql;
  191. PKMC_REQUEST Request, RequestArray[REQUEST_COUNT];
  193. for (; !KeReadStateEvent(&KmcStopEvent); ) {
  195. //
  196. // Queue a series of requests to the driver.
  197. //
  199. Index = 0;
  200. RtlZeroMemory(RequestArray, sizeof(RequestArray));
  201. for (i = 0; i < REQUEST_COUNT; i++) {
  202. Request = ExAllocatePool(NonPagedPool, sizeof(*Request));
  203. if (!Request) {
  204. continue;
  205. }
  206. RtlZeroMemory(Request, sizeof(*Request));
  208. Irp = IoAllocateIrp(TargetDeviceObject->StackSize, FALSE);
  209. if (!Irp) {
  210. continue;
  211. }
  212. Request->Irp = Irp;
  214. Irp->RequestorMode = KernelMode;
  215. Irp->Tail.Overlay.Thread = PsGetCurrentThread();
  216. Irp->Tail.Overlay.OriginalFileObject = TargetFileObject;
  217. IoSetCompletionRoutine(
  218. Irp,
  219. KmcRequestCompletionRoutine,
  220. Request,
  221. TRUE,
  222. TRUE,
  223. TRUE
  224. );
  226. IrpSp = IoGetNextIrpStackLocation(Irp);
  227. IrpSp->MajorFunction = IRP_MJ_DEVICE_CONTROL;
  228. IrpSp->Parameters.DeviceIoControl.IoControlCode =
  229. TARGET_IO_CONTROL_CODE;
  230. IrpSp->DeviceObject = TargetDeviceObject;
  231. IrpSp->FileObject = TargetFileObject;
  233. Request->ReferenceCount = 2;
  234. RequestArray[Index++] = Request;
  235. IoCallDriver(TargetDeviceObject, Request->Irp);
  236. }
  238. //
  239. // Delay execution for a short interval, and cancel the requests.
  240. //
  242. Interval.QuadPart = -10 * 1000 * 50;
  243. KeDelayExecutionThread(KernelMode, FALSE, &Interval);
  245. for (i = 0; i < REQUEST_COUNT; i++) {
  246. if (Request = RequestArray[i]) {
  247. IoCancelIrp(Request->Irp);
  248. if (InterlockedDecrement(&Request->ReferenceCount) == 0) {
  249. IoFreeIrp(Request->Irp);
  250. ExFreePool(Request);
  251. }
  252. }
  253. }
  254. }
  256. KeReleaseSemaphore(&KmcStopSemaphore, 0, 1, FALSE);
  258. } // KmcRequestThread
  261. VOID
  262. KmcUnloadDriver(
  263. IN PDRIVER_OBJECT DriverObject
  264. )
  265. {
  266. KdPrint(("KmcUnloadDriver\n"));
  268. //
  269. // Signal all threads to stop, and wait for them to exit.
  270. //
  272. KeSetEvent(&KmcStopEvent, 0, FALSE);
  273. while (KmcThreadCount--) {
  274. KeWaitForSingleObject(
  275. &KmcStopSemaphore, Executive, KernelMode, FALSE, NULL
  276. );
  277. }
  279. //
  280. // Release references to the IP device object
  281. //
  283. ObDereferenceObject(TargetFileObject);
  284. ObDereferenceObject(TargetDeviceObject);
  286. } // KmcUnloadDriver
  289. extern
  290. VOID
  291. LookupRoute(
  292. IPRouteLookupData* RouteLookupData,
  293. IPRouteEntry* RouteEntry
  294. );
  296. VOID
  297. KmcUpdateThread(
  298. PVOID Context
  299. )
  300. {
  301. KEVENT Event;
  302. LARGE_INTEGER Interval;
  303. IO_STATUS_BLOCK IoStatus;
  304. PIRP Irp;
  305. IPRouteEntry RouteEntry;
  306. IPRouteLookupData RouteLookupData;
  307. NTSTATUS Status;
  309. //
  310. // Retrieve information from IP for use in triggering route-changes.
  311. //
  313. RtlZeroMemory(&RouteEntry, sizeof(RouteEntry));
  314. RouteLookupData.Version = 0;
  315. RouteLookupData.SrcAdd = 0;
  316. RouteLookupData.DestAdd = 0x100000a; // 10.0.0.1
  317. LookupRoute(&RouteLookupData, &RouteEntry);
  319. RouteEntry.ire_dest = 0x100000a; // 10.0.0.1
  320. RouteEntry.ire_mask = 0xffffffff;
  321. RouteEntry.ire_proto = IRE_PROTO_NETMGMT;
  323. //
  324. // Repeatedly issue changes to the IP routing table, until told to exit.
  325. //
  327. KeInitializeEvent(&Event, SynchronizationEvent, FALSE);
  328. for (; !KeReadStateEvent(&KmcStopEvent); ) {
  330. Interval.QuadPart = -10 * 1000 * 50;
  331. KeDelayExecutionThread(KernelMode, FALSE, &Interval);
  333. Irp =
  334. IoBuildDeviceIoControlRequest(
  335. IOCTL_IP_SET_ROUTEWITHREF,
  336. TargetDeviceObject,
  337. &RouteEntry,
  338. sizeof(RouteEntry),
  339. NULL,
  340. 0,
  341. FALSE,
  342. &Event,
  343. &IoStatus
  344. );
  345. if (!Irp) { continue; }
  346. Status = IoCallDriver(TargetDeviceObject, Irp);
  347. if (Status == STATUS_PENDING) {
  348. KeWaitForSingleObject(&Event, Executive, KernelMode, FALSE, NULL);
  349. }
  350. }
  352. KeReleaseSemaphore(&KmcStopSemaphore, 0, 1, FALSE);
  354. } // KmcUpdateThread