archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Branch: master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
windows-server-2003/windows/core/ntuser/kernel/random.c

568 lines
17 KiB
Raw Permalink Normal View History

commiting as it is
4 years ago
  1. /****************************** Module Header ******************************\
  2. * Module Name: random.c
  3. *
  4. * Copyright (c) 1985 - 1999, Microsoft Corporation
  5. *
  6. * This module contains a random collection of support routines for the User
  7. * API functions. Many of these functions will be moved to more appropriate
  8. * files once we get our act together.
  9. *
  10. * History:
  11. * 10-17-90 DarrinM Created.
  12. * 02-06-91 IanJa HWND revalidation added (none required)
  13. \***************************************************************************/
  15. #include "precomp.h"
  16. #pragma hdrstop
  19. /***************************************************************************\
  20. * xxxUpdateWindows
  21. *
  22. * User mode wrapper
  23. \***************************************************************************/
  24. BOOL xxxUpdateWindows(
  25. PWND pwnd,
  26. HRGN hrgn)
  27. {
  28. CheckLock(pwnd);
  30. xxxUpdateThreadsWindows(PtiCurrent(), pwnd, hrgn);
  32. return TRUE;
  33. }
  35. /***************************************************************************\
  36. * ValidateState
  37. *
  38. * States allowed to be set/cleared by Set/ClearWindowState. If you're
  39. * allowing a new flag here, you must make sure it won't cause an AV
  40. * in the kernel if someone sets it maliciously.
  41. \***************************************************************************/
  43. #define NUM_BYTES 16 // Window state bytes are 0 to F, explanation in user.h
  45. CONST BYTE abValidateState[NUM_BYTES] = {
  46. 0, // 0
  47. 0, // 1
  48. 0, // 2
  49. 0, // 3
  50. 0, // 4
  51. LOBYTE(WFWIN40COMPAT),
  52. 0, // 6
  53. LOBYTE(WFNOANIMATE),
  54. 0, // 8
  55. LOBYTE(WEFEDGEMASK),
  56. LOBYTE(WEFSTATICEDGE),
  57. 0, // B
  58. LOBYTE(EFPASSWORD),
  59. LOBYTE(CBFHASSTRINGS | EFREADONLY),
  60. LOBYTE(WFTABSTOP | WFSYSMENU | WFVSCROLL | WFHSCROLL | WFBORDER),
  61. LOBYTE(WFCLIPCHILDREN)
  62. };
  64. BOOL ValidateState(
  65. DWORD dwFlags)
  66. {
  67. BYTE bOffset = HIBYTE(dwFlags), bState = LOBYTE(dwFlags);
  69. if (bOffset > NUM_BYTES - 1) {
  70. return FALSE;
  71. } else {
  72. return ((bState & abValidateState[bOffset]) == bState);
  73. }
  74. }
  76. /***************************************************************************\
  77. * Set/ClearWindowState
  78. *
  79. * Wrapper functions for User mode to be able to set state flags.
  80. \***************************************************************************/
  81. VOID SetWindowState(
  82. PWND pwnd,
  83. DWORD dwFlags)
  84. {
  85. /*
  86. * Don't let anyone mess with someone else's window.
  87. */
  88. if (GETPTI(pwnd)->ppi == PtiCurrent()->ppi) {
  89. if (ValidateState(dwFlags)) {
  90. SetWF(pwnd, dwFlags);
  91. } else {
  92. RIPMSG1(RIP_ERROR, "SetWindowState: invalid flag 0x%x", dwFlags);
  93. }
  94. } else {
  95. RIPMSG1(RIP_WARNING, "SetWindowState: current ppi doesn't own pwnd %#p", pwnd);
  96. }
  97. }
  99. VOID ClearWindowState(
  100. PWND pwnd,
  101. DWORD dwFlags)
  102. {
  103. /*
  104. * Don't let anyone mess with someone else's window.
  105. */
  106. if (GETPTI(pwnd)->ppi == PtiCurrent()->ppi) {
  107. if (ValidateState(dwFlags)) {
  108. ClrWF(pwnd, dwFlags);
  109. } else {
  110. RIPMSG1(RIP_ERROR, "SetWindowState: invalid flag 0x%x", dwFlags);
  111. }
  112. } else {
  113. RIPMSG1(RIP_WARNING, "ClearWindowState: current ppi doesn't own pwnd %#p", pwnd);
  114. }
  116. }
  119. /***************************************************************************\
  120. * CheckPwndFilter
  121. *
  122. *
  123. *
  124. * History:
  125. * 11-07-90 DarrinM Translated Win 3.0 ASM code.
  126. \***************************************************************************/
  127. BOOL CheckPwndFilter(
  128. PWND pwnd,
  129. PWND pwndFilter)
  130. {
  131. if ((pwndFilter == NULL) || (pwndFilter == pwnd) ||
  132. ((pwndFilter == (PWND)1) && (pwnd == NULL))) {
  133. return TRUE;
  134. }
  136. return _IsChild(pwndFilter, pwnd);
  137. }
  140. /***************************************************************************\
  141. * AllocateUnicodeString
  142. *
  143. * History:
  144. * 10-25-90 MikeHar Wrote.
  145. * 11-09-90 DarrinM Fixed.
  146. * 01-13-92 GregoryW Neutralized.
  147. * 03-05-98 FritzS Only allocate Length+1
  148. \***************************************************************************/
  149. BOOL AllocateUnicodeString(
  150. PUNICODE_STRING pstrDst,
  151. PUNICODE_STRING cczpstrSrc)
  152. {
  153. if (cczpstrSrc == NULL) {
  154. RtlInitUnicodeString(pstrDst, NULL);
  155. return TRUE;
  156. }
  158. pstrDst->Buffer = UserAllocPoolWithQuota(cczpstrSrc->Length+sizeof(UNICODE_NULL), TAG_TEXT);
  159. if (pstrDst->Buffer == NULL) {
  160. return FALSE;
  161. }
  163. try {
  164. RtlCopyMemory(pstrDst->Buffer, cczpstrSrc->Buffer, cczpstrSrc->Length);
  165. } except (W32ExceptionHandler(FALSE, RIP_WARNING)) {
  166. UserFreePool(pstrDst->Buffer);
  167. pstrDst->Buffer = NULL;
  168. return FALSE;
  169. }
  171. pstrDst->MaximumLength = cczpstrSrc->Length+sizeof(UNICODE_NULL);
  172. pstrDst->Length = cczpstrSrc->Length;
  173. pstrDst->Buffer[pstrDst->Length / sizeof(WCHAR)] = 0;
  175. return TRUE;
  176. }
  179. /***************************************************************************\
  180. * xxxGetControlColor
  181. *
  182. * History:
  183. * 02-12-92 JimA Ported from Win31 sources
  184. \***************************************************************************/
  185. HBRUSH xxxGetControlColor(
  186. PWND pwndParent,
  187. PWND pwndCtl,
  188. HDC hdc,
  189. UINT message)
  190. {
  191. HBRUSH hbrush;
  193. /*
  194. * If we're sending to a window of another thread, don't send this message
  195. * but instead call DefWindowProc(). New rule about the CTLCOLOR messages.
  196. * Need to do this so that we don't send an hdc owned by one thread to
  197. * another thread. It is also a harmless change.
  198. */
  199. if (PpiCurrent() != GETPTI(pwndParent)->ppi) {
  200. return (HBRUSH)xxxDefWindowProc(pwndParent, message, (WPARAM)hdc, (LPARAM)HW(pwndCtl));
  201. }
  203. hbrush = (HBRUSH)xxxSendMessage(pwndParent, message, (WPARAM)hdc, (LPARAM)HW(pwndCtl));
  205. /*
  206. * If the brush returned from the parent is invalid, get a valid brush from
  207. * xxxDefWindowProc.
  208. */
  209. if (hbrush == 0 || !GreValidateServerHandle(hbrush, BRUSH_TYPE)) {
  210. if (hbrush != 0) {
  211. RIPMSG2(RIP_WARNING,
  212. "Invalid HBRUSH from WM_CTLCOLOR*** msg 0x%x brush 0x%x",
  213. message, hbrush);
  214. }
  216. hbrush = (HBRUSH)xxxDefWindowProc(pwndParent, message,
  217. (WPARAM)hdc, (LPARAM)pwndCtl);
  218. }
  220. return hbrush;
  221. }
  224. /***************************************************************************\
  225. * xxxGetControlBrush
  226. *
  227. * <brief description>
  228. *
  229. * History:
  230. * 12-10-90 IanJa type replaced with new 32-bit message
  231. * 01-21-91 IanJa Prefix '_' denoting exported function (although not API)
  232. \***************************************************************************/
  234. HBRUSH xxxGetControlBrush(
  235. PWND pwnd,
  236. HDC hdc,
  237. UINT message)
  238. {
  239. HBRUSH hbr;
  240. PWND pwndSend;
  241. TL tlpwndSend;
  243. CheckLock(pwnd);
  245. if ((pwndSend = (TestwndPopup(pwnd) ? pwnd->spwndOwner : pwnd->spwndParent))
  246. == NULL) {
  247. pwndSend = pwnd;
  248. }
  250. ThreadLock(pwndSend, &tlpwndSend);
  252. /*
  253. * Last parameter changes the message into a ctlcolor id.
  254. */
  255. hbr = xxxGetControlColor(pwndSend, pwnd, hdc, message);
  256. ThreadUnlock(&tlpwndSend);
  258. return hbr;
  259. }
  261. /***************************************************************************\
  262. * xxxHardErrorControl
  263. *
  264. * Performs kernel-mode hard error support functions.
  265. *
  266. * History:
  267. * 02-08-95 JimA Created.
  268. \***************************************************************************/
  269. UINT xxxHardErrorControl(
  270. DWORD dwCmd,
  271. HANDLE handle,
  272. PDESKRESTOREDATA pdrdRestore)
  273. {
  274. PTHREADINFO ptiClient, ptiCurrent = PtiCurrent();
  275. PDESKTOP pdesk;
  276. PUNICODE_STRING pstrName;
  277. NTSTATUS Status;
  278. PETHREAD Thread;
  279. BOOL fAllowForeground;
  281. /*
  282. * turn off BlockInput so the user can respond to the hard error popup
  283. */
  284. gptiBlockInput = NULL;
  286. UserAssert(ISCSRSS());
  288. switch (dwCmd) {
  289. /*
  290. * Code to catch Windows Bug 469607.
  291. */
  292. #ifdef PRERELEASE
  293. case HardErrorCheckOnDesktop:
  294. if (ptiCurrent == gptiForeground && ptiCurrent->rpdesk == NULL) {
  295. FRE_RIPMSG0(RIP_ERROR,
  296. "Harderror thread exiting while not on a desktop");
  297. }
  298. break;
  299. #endif
  301. case HardErrorSetup:
  302. /*
  303. * Don't do it if the system has not been initialized.
  304. */
  305. if (grpdeskRitInput == NULL) {
  306. RIPMSG0(RIP_WARNING, "HardErrorControl: System not initialized");
  307. return HEC_ERROR;
  308. }
  310. /*
  311. * Setup caller as the hard error handler.
  312. */
  313. if (gHardErrorHandler.pti != NULL) {
  314. RIPMSG1(RIP_WARNING, "HardErrorControl: pti not NULL %#p", gHardErrorHandler.pti);
  315. return HEC_ERROR;
  316. }
  318. /*
  319. * Mark the handler as active.
  320. */
  321. gHardErrorHandler.pti = ptiCurrent;
  323. /*
  324. * Clear any pending quits.
  325. */
  326. ptiCurrent->TIF_flags &= ~TIF_QUITPOSTED;
  328. break;
  330. case HardErrorCleanup:
  332. /*
  333. * Remove caller as the hard error handler.
  334. */
  335. if (gHardErrorHandler.pti != ptiCurrent) {
  336. return HEC_ERROR;
  337. }
  339. gHardErrorHandler.pti = NULL;
  340. break;
  342. case HardErrorAttachUser:
  343. case HardErrorInDefDesktop:
  344. /*
  345. * Check for exit conditions. We do not allow attaches to the
  346. * disconnect desktop.
  347. */
  348. if (ISTS()) {
  349. if ((grpdeskRitInput == NULL) ||
  351. ((grpdeskRitInput == gspdeskDisconnect) &&
  352. (gspdeskShouldBeForeground == NULL)) ||
  354. ((grpdeskRitInput == gspdeskDisconnect) &&
  355. (gspdeskShouldBeForeground == gspdeskDisconnect))) {
  356. return HEC_ERROR;
  357. }
  358. }
  360. /*
  361. * Only attach to a user desktop.
  362. */
  363. if (ISTS() && grpdeskRitInput == gspdeskDisconnect) {
  364. pstrName = POBJECT_NAME(gspdeskShouldBeForeground);
  365. } else {
  366. pstrName = POBJECT_NAME(grpdeskRitInput);
  367. }
  369. if (pstrName && (!_wcsicmp(TEXT("Winlogon"), pstrName->Buffer) ||
  370. !_wcsicmp(TEXT("Disconnect"), pstrName->Buffer) ||
  371. !_wcsicmp(TEXT("Screen-saver"), pstrName->Buffer))) {
  372. RIPERR0(ERROR_ACCESS_DENIED, RIP_VERBOSE, "");
  373. return HEC_WRONGDESKTOP;
  374. }
  375. if (dwCmd == HardErrorInDefDesktop) {
  376. /*
  377. * Clear any pending quits.
  378. */
  379. ptiCurrent->TIF_flags &= ~TIF_QUITPOSTED;
  380. return HEC_SUCCESS;
  381. }
  384. /*
  385. * Fall through.
  386. */
  388. case HardErrorAttach:
  390. /*
  391. * Save a pointer to and prevent destruction of the
  392. * current queue. This will give us a queue to return
  393. * to if journalling is occuring when we tear down the
  394. * hard error popup.
  395. */
  396. gHardErrorHandler.pqAttach = ptiCurrent->pq;
  397. (ptiCurrent->pq->cLockCount)++;
  399. /*
  400. * Fall through.
  401. */
  403. case HardErrorAttachNoQueue:
  405. /*
  406. * Check for exit conditions. We do not allow attaches to the
  407. * disconnect desktop.
  408. */
  409. if (ISTS()) {
  410. if ((grpdeskRitInput == NULL) ||
  412. ((grpdeskRitInput == gspdeskDisconnect) &&
  413. (gspdeskShouldBeForeground == NULL)) ||
  415. ((grpdeskRitInput == gspdeskDisconnect) &&
  416. (gspdeskShouldBeForeground == gspdeskDisconnect))) {
  417. return HEC_ERROR;
  418. }
  419. }
  421. /*
  422. * Attach the handler to the current desktop.
  423. */
  424. /*
  425. * Don't allow an attach to the disconnected desktop, but
  426. * remember this for later when we detach.
  427. */
  428. gbDisconnectHardErrorAttach = FALSE;
  430. if (ISTS() && grpdeskRitInput == gspdeskDisconnect) {
  431. pdesk = gspdeskShouldBeForeground;
  432. gbDisconnectHardErrorAttach = TRUE;
  433. } else {
  434. pdesk = grpdeskRitInput;
  435. }
  437. UserAssert(pdesk != NULL);
  439. Status = xxxSetCsrssThreadDesktop(pdesk, pdrdRestore);
  440. if (!NT_SUCCESS(Status)) {
  441. RIPMSG1(RIP_WARNING,
  442. "HardErrorControl: HardErrorAttachNoQueue failed: 0x%x",
  443. Status);
  444. if (dwCmd != HardErrorAttachNoQueue) {
  445. gHardErrorHandler.pqAttach = NULL;
  446. UserAssert(ptiCurrent->pq->cLockCount);
  447. (ptiCurrent->pq->cLockCount)--;
  448. }
  450. return HEC_ERROR;
  451. }
  453. /*
  454. * Make sure we actually set the pdesk in the current thread
  455. */
  456. UserAssert(ptiCurrent->rpdesk != NULL);
  458. /*
  459. * Determine if this box can come to the foreground.
  460. * Let it come to the foreground if it doesn't have a pti
  461. * (it might have just failed to load).
  462. */
  463. fAllowForeground = FALSE;
  464. if (handle != NULL) {
  465. Status = ObReferenceObjectByHandle(handle,
  466. THREAD_QUERY_INFORMATION,
  467. *PsThreadType,
  468. UserMode,
  469. &Thread,
  470. NULL);
  471. if (NT_SUCCESS(Status)) {
  472. ptiClient = PtiFromThread(Thread);
  473. if ((ptiClient == NULL) || CanForceForeground(ptiClient->ppi)) {
  474. fAllowForeground = TRUE;
  475. }
  477. UnlockThread(Thread);
  478. } else {
  479. RIPMSGF2(RIP_WARNING,
  480. "Failed to get thread (0x%p), Status: 0x%x",
  481. handle,
  482. Status);
  483. }
  484. }
  486. if (fAllowForeground) {
  487. ptiCurrent->TIF_flags |= TIF_ALLOWFOREGROUNDACTIVATE;
  488. TAGMSG1(DBGTAG_FOREGROUND, "xxxHardErrorControl set TIF %#lx", ptiCurrent);
  489. } else {
  490. ptiCurrent->TIF_flags &= ~TIF_ALLOWFOREGROUNDACTIVATE;
  491. TAGMSG1(DBGTAG_FOREGROUND, "xxxHardErrorControl clear TIF %#lx", ptiCurrent);
  492. }
  494. break;
  496. case HardErrorDetach:
  498. /*
  499. * xxxSwitchDesktop may have sent WM_QUIT to the msgbox, so
  500. * ensure that the quit flag is reset.
  501. */
  502. ptiCurrent->TIF_flags &= ~TIF_QUITPOSTED;
  504. /*
  505. * We will reset the hard-error queue to the pre-allocated
  506. * one so if we end up looping back (i.e. from a desktop
  507. * switch), we will have a valid queue in case the desktop
  508. * was deleted.
  509. */
  510. UserAssert(gHardErrorHandler.pqAttach->cLockCount);
  511. (gHardErrorHandler.pqAttach->cLockCount)--;
  513. DeferWinEventNotify();
  515. BEGINATOMICCHECK();
  517. if (ptiCurrent->pq != gHardErrorHandler.pqAttach) {
  518. UserAssert(gHardErrorHandler.pqAttach->cThreads == 0);
  519. AllocQueue(NULL, gHardErrorHandler.pqAttach);
  520. gHardErrorHandler.pqAttach->cThreads++;
  521. zzzAttachToQueue(ptiCurrent, gHardErrorHandler.pqAttach, NULL, FALSE);
  522. }
  524. gHardErrorHandler.pqAttach = NULL;
  526. ENDATOMICCHECK();
  528. zzzEndDeferWinEventNotify();
  530. /*
  531. * Fall through.
  532. */
  534. case HardErrorDetachNoQueue:
  535. /*
  536. * Detach the handler from the desktop and return
  537. * status to indicate if a switch has occured.
  538. */
  539. pdesk = ptiCurrent->rpdesk;
  540. xxxRestoreCsrssThreadDesktop(pdrdRestore);
  542. if (ISTS()) {
  543. /*
  544. * The hard error message box gets a desktop switch notification,
  545. * so remember that we lied to him and lie (or unlie) to him again.
  546. * A desktop switch did occur.
  547. */
  548. if (gbDisconnectHardErrorAttach) {
  549. gbDisconnectHardErrorAttach = FALSE;
  550. return HEC_DESKTOPSWITCH;
  551. }
  552. #ifdef WAY_LATER
  553. /*
  554. * This happened once and caused a trap when a KeyEvent() came in and we
  555. * directed it to this queue. I think this is a MS window that we caught
  556. * since we use this so much for license popup's.
  557. */
  558. if (gHardErrorHandler.pqAttach == gpqForeground) {
  559. gpqForeground = NULL;
  560. }
  561. #endif
  562. }
  564. return (pdesk != grpdeskRitInput ? HEC_DESKTOPSWITCH : HEC_SUCCESS);
  565. }
  567. return HEC_SUCCESS;
  568. }