archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 5c6fe3db62
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '5c6fe3db62'
${ noResults }
windows-server-2003/admin/wmi/wbem/winmgmt/wmiexts/essutil.cpp

401 lines
15 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. #include <wmiexts.h>
  2. #include <malloc.h>
  4. #include <wbemint.h>
  6. #ifdef SetContext
  7. #undef SetContext
  8. #endif
  10. #ifdef GetContext
  11. #undef GetContext
  12. #endif
  14. #ifdef GetExpression
  15. #undef GetExpression
  16. #endif
  18. #include <utilfun.h>
  20. #define COREPROX_POLARITY
  22. #include <esssink.h>
  23. #include <ess.h>
  24. #include <nsrep.h>
  25. #include <equeue.h>
  27. DWORD
  28. CallBackDequeTurns(void * pLocationTurn_OOP,void * pLocationTurn_IP)
  29. {
  30. CExecLine::CTurn * pTurn_OOP = (CExecLine::CTurn *)(*(void **)pLocationTurn_IP);
  32. DEFINE_CPP_VAR(CExecLine::CTurn,varCTurn);
  33. CExecLine::CTurn * pTurn = GET_CPP_VAR_PTR(CExecLine::CTurn,varCTurn);
  35. if (ReadMemory((ULONG_PTR)pTurn_OOP,pTurn,sizeof(CExecLine::CTurn),NULL))
  36. {
  37. dprintf(" m_lRef %x m_hEvent %x m_dwOwningThreadId %x\n",pTurn->m_lRef,pTurn->m_hEvent,pTurn->m_dwOwningThreadId);
  38. }
  39. else
  40. {
  41. dprintf("RM %p\n",pTurn_OOP);
  42. }
  43. return 0;
  44. }
  46. void Dump_EventProvRecord(MEMORY_ADDRESS pRecord_OOP)
  47. {
  48. DEFINE_CPP_VAR(CEventProviderCache::CRecord,varCRecord);
  49. CEventProviderCache::CRecord * pRecord = GET_CPP_VAR_PTR(CEventProviderCache::CRecord,varCRecord);
  50. if (ReadMemory((ULONG_PTR)pRecord_OOP,pRecord,sizeof(CEventProviderCache::CRecord),NULL))
  51. {
  52. WCHAR pString[64];
  53. pString[0] = 0;
  54. pString[63] = 0;
  55. if (ReadMemory((ULONG_PTR)pRecord->m_strName,pString,sizeof(pString)-2,0))
  56. {
  57. dprintf(" m_strName %S\n",pString);
  58. }
  59. else
  60. {
  61. dprintf("RM %p\n",pRecord->m_strName);
  62. }
  64. dprintf(" m_pProvider %p\n",pRecord->m_pProvider);
  65. dprintf(" m_pQuerySink %p\n",pRecord->m_pQuerySink);
  66. dprintf(" m_pSecurity %p\n",pRecord->m_pSecurity);
  67. dprintf(" m_pMainSink %p\n",pRecord->m_pMainSink);
  68. dprintf(" m_ExecLine %p\n",pRecord_OOP + FIELD_OFFSET(CEventProviderCache::CRecord,m_Line));
  69. PrintDequeCB(pRecord_OOP + FIELD_OFFSET(CEventProviderCache::CRecord,m_Line)+FIELD_OFFSET(CExecLine,m_qTurns),CallBackDequeTurns);
  70. }
  71. else
  72. {
  73. dprintf("RM %p\n",pRecord_OOP);
  74. }
  75. }
  77. DWORD
  78. CallBackFilter(void * pKey, void * pValue)
  79. {
  81. MEMORY_ADDRESS pVTable;
  82. if (ReadMemory((ULONG_PTR)pKey,&pVTable,sizeof(pVTable),0))
  83. {
  84. BYTE pString[256];
  85. pString[0]=0;
  87. #ifdef KDEXT_64BIT
  88. ULONG64 Displ;
  89. #else
  90. ULONG Displ;
  91. #endif
  92. GetSymbol(pVTable,(PCHAR)pString,&Displ);
  93. if (lstrlenA((CHAR *)pString))
  94. {
  95. dprintf(" %s+%x\n",pString,Displ);
  96. if (strstr((const CHAR *)pString,"CTempFilter"))
  97. {
  98. ULONG_PTR pStrLoc = (ULONG_PTR)pKey + FIELD_OFFSET(CTempFilter,m_wszQuery);
  99. ULONG_PTR pStr_OOP;
  100. if (ReadMemory(pStrLoc,&pStr_OOP,sizeof(pStr_OOP),0))
  101. {
  102. WCHAR pStringQuery[256];
  103. pStringQuery[0] = 0;
  104. ULONG lRead = 0;
  105. ReadMemory(pStr_OOP,pStringQuery,sizeof(pStringQuery),&lRead);
  106. if (lRead)
  107. {
  108. dprintf(" QUERY: %S\n",pStringQuery);
  109. }
  110. else
  111. {
  112. dprintf("RM %p\n",pStr_OOP);
  113. }
  114. }
  115. else
  116. {
  117. dprintf("RM %p\n",pStrLoc);
  118. }
  119. }
  120. else if (strstr((const CHAR *)pString,"CPermanentFilter"))
  121. {
  122. ULONG_PTR pStrLoc = (ULONG_PTR)pKey + FIELD_OFFSET(CPermanentFilter,m_pcsQuery);
  123. ULONG_PTR pStr_OOP;
  124. if (ReadMemory(pStrLoc,&pStr_OOP,sizeof(pStr_OOP),0))
  125. {
  126. struct CompressedString_
  127. {
  128. BYTE Flag;
  129. CHAR pStringQuery[256];
  130. } CompStr;
  131. CompStr.pStringQuery[0] = 0;
  132. ULONG lRead = 0;
  133. ReadMemory(pStr_OOP,&CompStr,sizeof(CompStr),&lRead);
  134. if (lRead)
  135. {
  136. if (CompStr.Flag)
  137. dprintf(" QUERY: %S\n",CompStr.pStringQuery);
  138. else
  139. dprintf(" QUERY: %s\n",CompStr.pStringQuery);
  140. }
  141. else
  142. {
  143. dprintf("RM %p\n",pStr_OOP);
  144. }
  145. }
  146. else
  147. {
  148. dprintf("RM %p\n",pStrLoc);
  149. }
  150. }
  151. else
  152. {
  153. dprintf(" UNKNOWN\n");
  154. }
  155. }
  156. }
  157. else
  158. {
  159. dprintf("RM %p\n",pKey);
  160. }
  161. return 0;
  162. }
  164. DWORD
  165. CallBackEssNamespace(void * pKey, void * pValue)
  166. {
  167. WCHAR pName[MAX_PATH+1];
  168. pName[MAX_PATH] = 0;
  170. if (pKey && ReadMemory((ULONG_PTR)pKey,pName,MAX_PATH*sizeof(WCHAR),NULL))
  171. {
  172. dprintf(" %S\n",pName);
  173. }
  175. DEFINE_CPP_VAR(CEssNamespace,varCEssNamespace);
  176. CEssNamespace * pEssNameSpace = GET_CPP_VAR_PTR(CEssNamespace,varCEssNamespace);
  178. if (pValue && ReadMemory((ULONG_PTR)pValue,pEssNameSpace,sizeof(CEssNamespace),NULL))
  179. {
  180. dprintf(" %p\n",pValue);
  181. dprintf(" m_csLevel2: owner %x event %x\n",pEssNameSpace->m_csLevel2.m_dwThreadId,pEssNameSpace->m_csLevel2.m_hEvent);
  182. dprintf(" m_aDeferredEvents size %x %p\n",pEssNameSpace->m_aDeferredEvents.m_Array.m_nSize,pEssNameSpace->m_aDeferredEvents.m_Array.m_pArray);
  183. dprintf(" m_wszName %p\n",pEssNameSpace->m_wszName);
  184. dprintf(" m_pProviderFactory %p\n",pEssNameSpace->m_pProviderFactory);
  185. dprintf(" m_pCoreSvc %p\n",pEssNameSpace->m_pCoreSvc);
  186. dprintf(" m_pFullSvc %p\n",pEssNameSpace->m_pFullSvc);
  187. dprintf(" m_pInternalCoreSvc %p\n",pEssNameSpace->m_pInternalCoreSvc);
  188. dprintf(" m_pInternalFullSvc %p\n",pEssNameSpace->m_pInternalFullSvc);
  189. //
  190. CBindingTable * pBinding = &pEssNameSpace->m_Bindings;
  191. dprintf(" m_Binding\n");
  193. dprintf(" wbemess!CEventFilter\n");
  194. _Map * pMapF = (_Map *)((BYTE*)pValue+FIELD_OFFSET(CEssNamespace,m_Bindings)+FIELD_OFFSET(CBindingTable,m_apFilters)+FIELD_OFFSET(CSortedRefedKeyedPointerArray<CEventFilter>,m_t));
  195. //&pBinding->m_apFilters.m_t;
  196. PrintMapCB(pMapF,TRUE,CallBackFilter);
  198. dprintf(" wbemess!CEventConsumer\n");
  199. _Map * pMapC = (_Map *)((BYTE*)pValue+FIELD_OFFSET(CEssNamespace,m_Bindings)+FIELD_OFFSET(CBindingTable,m_apConsumers)+FIELD_OFFSET(CSortedRefedKeyedPointerArray<CEventConsumer>,m_t));
  200. PrintMapCB(pMapC,TRUE,CallBackObj);
  202. DWORD NumElCons = pEssNameSpace->m_ConsumerProviderCache.m_apRecords.m_Array.m_nSize;
  203. VOID * pVoid = pEssNameSpace->m_ConsumerProviderCache.m_apRecords.m_Array.m_pArray;
  204. VOID **ppPointers = (VOID **)_alloca(NumElCons * sizeof(VOID *));
  205. dprintf(" wbemess!CConsumerProviderCache %x - %p\n",NumElCons,pVoid);
  206. if (ReadMemory((ULONG_PTR)pVoid,ppPointers,NumElCons * sizeof(VOID *),NULL))
  207. {
  208. for (DWORD i=0;i<NumElCons;i++)
  209. {
  210. dprintf(" %x - %p\n",i,ppPointers[i]);
  211. }
  212. }
  214. //m_EventProviderCache
  215. DWORD NumElProv = pEssNameSpace->m_EventProviderCache.m_aRecords.m_Array.m_nSize;
  216. pVoid = pEssNameSpace->m_EventProviderCache.m_aRecords.m_Array.m_pArray;
  217. if (NumElProv > NumElCons)
  218. ppPointers = (VOID **)_alloca(NumElProv * sizeof(VOID *));
  219. dprintf(" wbemess!CEventProviderCache %x - %p\n",NumElProv,pVoid);
  220. if (ReadMemory((ULONG_PTR)pVoid,ppPointers,NumElProv * sizeof(VOID *),NULL))
  221. {
  222. for (DWORD i=0;i<NumElProv;i++)
  223. {
  224. dprintf(" %x - %p\n",i,ppPointers[i]);
  225. Dump_EventProvRecord((MEMORY_ADDRESS)ppPointers[i]);
  226. }
  227. }
  230. dprintf(" ----------------------- End of Namespace\n");
  231. }
  233. return 0;
  234. }
  236. //
  237. // prototype declaration
  238. //
  239. void DumpRecord(ULONG_PTR pRecord_OOP,
  240. HANDLE hSourceProcess,
  241. pfnDumpRequest DumpRequest);
  244. DWORD DumpCExecRequest(ULONG_PTR pExecReq_OOP)
  245. {
  247. DEFINE_CPP_VAR(CEventQueue::CDeliverRequest,varCExecRequest);
  248. CEventQueue::CDeliverRequest * pExecReq = GET_CPP_VAR_PTR(CEventQueue::CDeliverRequest,varCExecRequest);
  250. ReadMemory((ULONG_PTR)pExecReq_OOP,pExecReq,sizeof(CEventQueue::CDeliverRequest),NULL);
  252. GetVTable((MEMORY_ADDRESS)pExecReq_OOP);
  253. dprintf(" %p m_hWhenDone\n",pExecReq->m_hWhenDone); // Ptr32 to Void
  254. dprintf(" %p m_pNext\n",pExecReq->m_pNext); // Ptr32 CCoreExecReq
  255. dprintf(" %08x m_lPriority\n",pExecReq->m_lPriority); // Int 4B
  256. dprintf(" %d m_fOk\n",pExecReq->m_fOk); // Char
  257. dprintf(" %p m_pConsumer ",pExecReq->m_pConsumer); // Ptr32 _IWmiCoreHandle
  258. if (pExecReq->m_pConsumer){
  259. GetVTable((MEMORY_ADDRESS)pExecReq->m_pConsumer);
  260. }
  261. return 0;
  262. }
  265. void
  266. Print_CEventQueue(ULONG_PTR pEventQueue_OOP, HANDLE hCurrentProcess)
  267. {
  269. DEFINE_CPP_VAR(CEventQueue,varCEventQueue);
  270. CEventQueue * pEventQueue = GET_CPP_VAR_PTR(CEventQueue,varCEventQueue);
  273. if (ReadMemory(pEventQueue_OOP,pEventQueue,sizeof(CEventQueue),NULL))
  274. {
  275. dprintf(" CEventQueue @ %p\n",pEventQueue);
  277. //m_aThreads : CFlexArray
  278. dprintf(" elems %d pointer %p\n",pEventQueue->m_aThreads.m_nSize,pEventQueue->m_aThreads.m_pArray);
  280. CExecQueue::CThreadRecord ** pRecord_OOP = (CExecQueue::CThreadRecord **)_alloca(sizeof(void*)*pEventQueue->m_aThreads.m_nSize);
  281. if (ReadMemory((ULONG_PTR)pEventQueue->m_aThreads.m_pArray,pRecord_OOP,sizeof(void*)*pEventQueue->m_aThreads.m_nSize,0))
  282. {
  284. DWORD i;
  285. for (i=0;i<pEventQueue->m_aThreads.m_nSize;i++)
  286. {
  287. dprintf(" -- CThreadRecord %d\n",i);
  288. DumpRecord((ULONG_PTR)pRecord_OOP[i],
  289. hCurrentProcess,
  290. DumpCExecRequest);
  291. }
  292. }
  294. dprintf(" m_pHead %p\n",pEventQueue->m_pHead);
  295. dprintf(" m_pTail %p\n",pEventQueue->m_pTail);
  296. // here code for the list
  297. CEventQueue::CDeliverRequest * pReq = (CEventQueue::CDeliverRequest *)pEventQueue->m_pHead;
  298. DWORD i = 0;
  299. while (pReq)
  300. {
  301. dprintf(" ---- list - %d\n",i++);
  302. DEFINE_CPP_VAR(CEventQueue::CDeliverRequest,MyAsyncReq);
  303. CEventQueue::CDeliverRequest * pReqHERE = GET_CPP_VAR_PTR(CEventQueue::CDeliverRequest,MyAsyncReq);
  304. ReadMemory((ULONG_PTR)pReq,pReqHERE,sizeof(CEventQueue::CDeliverRequest),NULL);
  306. //dprintf(" %p %p\n",pReq,pReqHERE->m_pNext);
  307. DumpCExecRequest((ULONG_PTR)pReq);
  309. if (pReq == pEventQueue->m_pTail)
  310. break;
  312. pReq = (CEventQueue::CDeliverRequest *)pReqHERE->m_pNext;
  314. if (CheckControlC())
  315. break;
  316. }
  317. //
  319. dprintf(" m_lNumThreads %d \n",pEventQueue->m_lNumThreads);
  320. dprintf(" m_lNumIdle %d\n",pEventQueue->m_lNumIdle);
  321. dprintf(" m_lNumRequests %d\n",pEventQueue->m_lNumRequests);
  322. dprintf(" m_lMaxThreads %d\n",pEventQueue->m_lMaxThreads);
  323. dprintf(" m_lHiPriBound %d\n",pEventQueue->m_lHiPriBound);
  324. dprintf(" m_lHiPriMaxThreads %d\n",pEventQueue->m_lHiPriMaxThreads);
  325. dprintf(" m_lStartSlowdownCount %d\n",pEventQueue->m_lStartSlowdownCount);
  326. dprintf(" m_lAbsoluteLimitCount %d\n",pEventQueue->m_lAbsoluteLimitCount);
  327. dprintf(" m_lOneSecondDelayCount %d\n",pEventQueue->m_lOneSecondDelayCount);
  328. dprintf(" m_dblAlpha %f\n",pEventQueue->m_dblAlpha);
  329. dprintf(" m_dblBeta %f\n",pEventQueue->m_dblBeta);
  330. dprintf(" m_dwTimeout %x\n",pEventQueue->m_dwTimeout);
  331. dprintf(" m_pEss %p\n",pEventQueue->m_pEss);
  333. }
  334. else
  335. {
  336. dprintf("RM %p\n",pEventQueue_OOP);
  337. }
  338. }
  340. DECLARE_API(ess)
  341. {
  343. INIT_API();
  345. ULONG_PTR Addr = (ExtensionApis.lpGetExpressionRoutine)("wbemcore!g_pESS");
  346. VOID * pVoid= NULL;
  347. if (!Addr)
  348. {
  349. pVoid = (VOID *)(ExtensionApis.lpGetExpressionRoutine)(args);
  350. }
  351. if (Addr || pVoid)
  352. {
  353. if (Addr)
  354. ReadMemory(Addr,&pVoid,sizeof(pVoid),NULL);
  356. DEFINE_CPP_VAR(CEssObjectSink::XNewESS,varImp);
  357. CEssObjectSink::XNewESS * pImp = GET_CPP_VAR_PTR(CEssObjectSink::XNewESS,varImp);
  358. if (ReadMemory((ULONG_PTR)pVoid,pImp,sizeof(CEssObjectSink::XNewESS),NULL))
  359. {
  360. dprintf(" CEssObjectSink %p\n",pImp->m_pObject);
  361. DEFINE_CPP_VAR(CEssObjectSink,varCEssObjectSink);
  362. CEssObjectSink * pEssSink = GET_CPP_VAR_PTR(CEssObjectSink,varCEssObjectSink);
  363. if (ReadMemory((ULONG_PTR)pImp->m_pObject,pEssSink,sizeof(CEssObjectSink),NULL))
  364. {
  365. Print_CEventQueue((ULONG_PTR)pEssSink->m_pEss+FIELD_OFFSET(CEss,m_Queue),hCurrentProcess);
  367. dprintf(" m_pEss %p\n",pEssSink->m_pEss);
  368. dprintf(" m_bShutdown %08x\n",pEssSink->m_bShutdown);
  369. dprintf(" m_pCoreServices %p\n",pEssSink->m_pCoreServices);
  371. // CEss;
  372. DEFINE_CPP_VAR(CEss,varCEss);
  373. CEss * pEss = GET_CPP_VAR_PTR(CEss,varCEss);
  375. if (ReadMemory((ULONG_PTR)pEssSink->m_pEss,pEss,sizeof(CEss),NULL))
  376. {
  377. _Map * pMap = (_Map *)((BYTE *)pEssSink->m_pEss + FIELD_OFFSET(CEss,m_mapNamespaces));
  378. PrintMapCB(pMap,TRUE,CallBackEssNamespace);
  379. }
  380. else
  381. {
  382. dprintf("RM %p err %d\n",pEssSink->m_pEss,GetLastError());
  383. }
  384. }
  385. else
  386. {
  387. dprintf("RM %p err %d\n",pImp->m_pObject,GetLastError());
  388. }
  389. }
  390. else
  391. {
  392. dprintf("RM %p err %d\n",Addr,GetLastError());
  393. }
  394. }
  395. else
  396. {
  397. dprintf("invalid address %s\n",args);
  398. }
  399. }