archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 5c6fe3db62
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '5c6fe3db62'
${ noResults }
windows-server-2003/base/ntos/config/hivechek.c

435 lines
14 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. /*++
  3. Copyright (c) 1991 Microsoft Corporation
  5. Module Name:
  7. hivechek.c
  9. Abstract:
  11. This module implements consistency checking for hives.
  13. Author:
  15. Bryan M. Willman (bryanwi) 09-Dec-91
  17. Environment:
  20. Revision History:
  22. --*/
  24. #include "cmp.h"
  26. #ifdef ALLOC_PRAGMA
  27. #pragma alloc_text(PAGE,HvCheckHive)
  28. #pragma alloc_text(PAGE,HvCheckBin)
  29. #endif
  31. //
  32. // debug structures
  33. //
  34. extern struct {
  35. PHHIVE Hive;
  36. ULONG Status;
  37. ULONG Space;
  38. HCELL_INDEX MapPoint;
  39. PHBIN BinPoint;
  40. } HvCheckHiveDebug;
  42. extern struct {
  43. PHBIN Bin;
  44. ULONG Status;
  45. PHCELL CellPoint;
  46. } HvCheckBinDebug;
  49. #if DBG
  50. ULONG HvHiveChecking=0;
  51. #endif
  53. ULONG
  54. HvCheckHive(
  55. PHHIVE Hive,
  56. PULONG Storage OPTIONAL
  57. )
  58. /*++
  60. Routine Description:
  62. Check the consistency of a hive. Apply CheckBin to bins, make sure
  63. all pointers in the cell map point to correct places.
  65. Arguments:
  67. Hive - supplies a pointer to the hive control structure for the
  68. hive of interest.
  70. Storage - supplies adddress of ULONG to receive size of allocated user data
  72. Return Value:
  74. 0 if Hive is OK. Error return indicator if not. Error value
  75. comes from one of the check procedures.
  77. RANGE: 2000 - 2999
  79. --*/
  80. {
  81. HCELL_INDEX p;
  82. ULONG Length;
  83. ULONG localstorage = 0;
  84. PHMAP_ENTRY t;
  85. PHBIN Bin = NULL;
  86. ULONG i;
  87. ULONG rc;
  88. PFREE_HBIN FreeBin;
  90. HvCheckHiveDebug.Hive = Hive;
  91. HvCheckHiveDebug.Status = 0;
  92. HvCheckHiveDebug.Space = (ULONG)-1;
  93. HvCheckHiveDebug.MapPoint = HCELL_NIL;
  94. HvCheckHiveDebug.BinPoint = 0;
  96. p = 0;
  98. #ifdef CM_MAP_NO_READ
  99. #ifndef _CM_LDR_
  100. //
  101. // we need to make sure all the cell's data is faulted in inside a
  102. // try/except block, as the IO to fault the data in can throw exceptions
  103. // STATUS_INSUFFICIENT_RESOURCES, in particular
  104. //
  106. try {
  107. #endif //_CM_LDR_
  108. #endif //CM_MAP_NO_READ
  110. //
  111. // one pass for Stable space, one pass for Volatile
  112. //
  113. for (i = 0; i <= Volatile; i++) {
  114. Length = Hive->Storage[i].Length;
  116. //
  117. // for each bin in the space
  118. //
  119. while (p < Length) {
  120. t = HvpGetCellMap(Hive, p);
  121. if (t == NULL) {
  122. CmKdPrintEx((DPFLTR_CONFIG_ID,DPFLTR_ERROR_LEVEL,"HvCheckHive:"));
  123. CmKdPrintEx((DPFLTR_CONFIG_ID,DPFLTR_ERROR_LEVEL,"\tBin@:%p invalid\n", Bin));
  124. HvCheckHiveDebug.Status = 2005;
  125. HvCheckHiveDebug.Space = i;
  126. HvCheckHiveDebug.MapPoint = p;
  127. return 2005;
  128. }
  131. if( (t->BinAddress & (HMAP_INPAGEDPOOL|HMAP_INVIEW)) == 0) {
  132. //
  133. // view is not mapped, neither in paged pool
  134. // try to map it.
  135. //
  137. // volatile info is always in paged pool
  138. ASSERT( i == Stable );
  140. if( !NT_SUCCESS(CmpMapThisBin((PCMHIVE)Hive,p,FALSE)) ) {
  141. //
  142. // we cannot map this bin due to insufficient resources.
  143. //
  144. CmKdPrintEx((DPFLTR_CONFIG_ID,DPFLTR_ERROR_LEVEL,"HvCheckHive:"));
  145. CmKdPrintEx((DPFLTR_CONFIG_ID,DPFLTR_ERROR_LEVEL,"\tinsufficient resources while mapping Bin@:%p\n", Bin));
  146. HvCheckHiveDebug.Status = 2006;
  147. HvCheckHiveDebug.Space = i;
  148. HvCheckHiveDebug.MapPoint = p;
  149. return 2010;
  150. }
  151. }
  153. if ((t->BinAddress & HMAP_DISCARDABLE) == 0) {
  155. Bin = (PHBIN)HBIN_BASE(t->BinAddress);
  157. //
  158. // bin header valid?
  159. //
  160. if ( (Bin->Size > Length) ||
  161. (Bin->Signature != HBIN_SIGNATURE) ||
  162. (Bin->FileOffset != p)
  163. )
  164. {
  165. CmKdPrintEx((DPFLTR_CONFIG_ID,DPFLTR_ERROR_LEVEL,"HvCheckHive:"));
  166. CmKdPrintEx((DPFLTR_CONFIG_ID,DPFLTR_ERROR_LEVEL,"\tBin@:%p invalid\n", Bin));
  167. HvCheckHiveDebug.Status = 2010;
  168. HvCheckHiveDebug.Space = i;
  169. HvCheckHiveDebug.MapPoint = p;
  170. HvCheckHiveDebug.BinPoint = Bin;
  171. return 2010;
  172. }
  174. //
  175. // structure inside the bin valid?
  176. //
  177. rc = HvCheckBin(Hive, Bin, &localstorage);
  178. if (rc != 0) {
  179. HvCheckHiveDebug.Status = rc;
  180. HvCheckHiveDebug.Space = i;
  181. HvCheckHiveDebug.MapPoint = p;
  182. HvCheckHiveDebug.BinPoint = Bin;
  183. return rc;
  184. }
  186. p = (ULONG)p + Bin->Size;
  188. } else {
  189. //
  190. // Bin is not present, skip it and advance to the next one.
  191. //
  192. FreeBin = (PFREE_HBIN)t->BlockAddress;
  193. p+=FreeBin->Size;
  194. }
  195. }
  197. p = 0x80000000; // Beginning of Volatile space
  198. }
  200. #ifdef CM_MAP_NO_READ
  201. #ifndef _CM_LDR_
  202. } except (EXCEPTION_EXECUTE_HANDLER) {
  203. HvCheckHiveDebug.Status = 2015;
  204. HvCheckHiveDebug.Space = GetExceptionCode();
  205. return HvCheckHiveDebug.Status;
  206. }
  207. #endif //_CM_LDR_
  208. #endif //CM_MAP_NO_READ
  210. if (ARGUMENT_PRESENT(Storage)) {
  211. *Storage = localstorage;
  212. }
  213. return 0;
  214. }
  217. ULONG
  218. HvCheckBin(
  219. PHHIVE Hive,
  220. PHBIN Bin,
  221. PULONG Storage
  222. )
  223. /*++
  225. Routine Description:
  227. Step through all of the cells in the bin. Make sure that
  228. they are consistent with each other, and with the bin header.
  230. Arguments:
  232. Hive - pointer to the hive control structure
  234. Bin - pointer to bin to check
  236. Storage - pointer to a ulong to get allocated user data size
  238. Return Value:
  240. 0 if Bin is OK. Number of test in procedure that failed if not.
  242. RANGE: 1 - 1999
  244. --*/
  245. {
  246. PHCELL p;
  247. PHCELL np;
  248. PHCELL lp;
  249. ULONG freespace = 0L;
  250. ULONG allocated = 0L;
  251. ULONG userallocated = 0L;
  253. HvCheckBinDebug.Bin = Bin;
  254. HvCheckBinDebug.Status = 0;
  255. HvCheckBinDebug.CellPoint = 0;
  257. //
  258. // Scan all the cells in the bin, total free and allocated, check
  259. // for impossible pointers.
  260. //
  261. p = (PHCELL)((PUCHAR)Bin + sizeof(HBIN));
  262. lp = p;
  264. // DRAGOS:
  265. // The way allocated and freespace are computed implies the following invariants:
  266. // 1. allocated + freespace = p + p->Size - (Bin + sizeof(HBIN)). This is because p->Size is added either to allocated or to freespace.
  267. // So, assuming that allocated > Bin->Size , then
  268. // ==> p + p->Size - (Bin + sizeof(HBIN)) > Bin->Size.
  269. // ==> p + p->Size > Bin + Bin->Size + sizeof(HBIN)
  270. // ==> p + p->Size > Bin + Bin->Size
  271. // This proves that the test "NeverFail 1" (see below) will never fail, because when something is wrong, the test above it (namely "Fail 1") will fail
  272. // and the function will exit.
  273. //
  274. // The same logic applies to the test "NeverFail 2", so it can be removed also.
  275. //
  276. // 2. The new value of p is always calculated as p = p + p->Size. By the time this is done, the new value of p (ie. p + p->Size) is already checked against
  277. // Bin + Bin->Size (see tests "Fail 1" and "Fail 2"). So, if p > Bin + Bin->Size, either "Fail 1" or "Fail 2" will fail before asigning the new bogus value
  278. // to p. Therefore, the only possible path to exit the while loop (except a return 20 or return 40), is when p == Bin + Bin->Size.
  279. // ==> test "NeverFail 3" can be removed as it will never fail !
  280. //
  281. // 3. Considering 1 (where p + p->Size became p)
  282. // ==> allocated + freespace = p - (Bin + sizeof(HBIN))
  283. // But, Considering 2 (above), when the while loop exits, p = Bin + Bin->Size
  284. // ==> allocated + freespace = Bin + Bin->Size - (Bin + sizeof(HBIN))
  285. // ==> allocated + freespace + sizeof(HBIN) = Bin->Size
  286. // This proves that test "NeverFail 4" (see below) will never fail as the expresion tested is always true (if the flow of execution reaches the test point).
  287. //
  289. while (p < (PHCELL)((PUCHAR)Bin + Bin->Size)) {
  291. //
  292. // Check last pointer
  293. //
  294. if (USE_OLD_CELL(Hive)) {
  295. if (lp == p) {
  296. if (p->u.OldCell.Last != HBIN_NIL) {
  297. CmKdPrintEx((DPFLTR_CONFIG_ID,DPFLTR_ERROR_LEVEL,"HvCheckBin 20: First cell has wrong last pointer\n"));
  298. CmKdPrintEx((DPFLTR_CONFIG_ID,DPFLTR_ERROR_LEVEL,"Bin = %p\n", Bin));
  299. HvCheckBinDebug.Status = 20;
  300. HvCheckBinDebug.CellPoint = p;
  301. return 20;
  302. }
  303. } else {
  304. if ((PHCELL)(p->u.OldCell.Last + (PUCHAR)Bin) != lp) {
  305. CmKdPrintEx((DPFLTR_CONFIG_ID,DPFLTR_ERROR_LEVEL,"HvCheckBin 30: incorrect last pointer\n"));
  306. CmKdPrintEx((DPFLTR_CONFIG_ID,DPFLTR_ERROR_LEVEL,"Bin = %p\n", Bin));
  307. CmKdPrintEx((DPFLTR_CONFIG_ID,DPFLTR_ERROR_LEVEL,"p = %p\n", (ULONG_PTR)p));
  308. HvCheckBinDebug.Status = 30;
  309. HvCheckBinDebug.CellPoint = p;
  310. return 30;
  311. }
  312. }
  313. }
  316. //
  317. // Check size
  318. //
  319. if (p->Size < 0) {
  321. //
  322. // allocated cell
  323. //
  325. // DRAGOS: Fail 1
  326. // This test will always fail prior to the failure of the below test
  327. //
  328. if ( ((ULONG)(p->Size * -1) > Bin->Size) ||
  329. ( (PHCELL)((p->Size * -1) + (PUCHAR)p) >
  330. (PHCELL)((PUCHAR)Bin + Bin->Size) )
  331. )
  332. {
  333. CmKdPrintEx((DPFLTR_CONFIG_ID,DPFLTR_ERROR_LEVEL,"HvCheckBin 40: impossible allocation\n"));
  334. CmKdPrintEx((DPFLTR_CONFIG_ID,DPFLTR_ERROR_LEVEL,"Bin = %p\n", Bin));
  335. HvCheckBinDebug.Status = 40;
  336. HvCheckBinDebug.CellPoint = p;
  337. return 40;
  338. }
  340. allocated += (p->Size * -1);
  341. if (USE_OLD_CELL(Hive)) {
  342. userallocated += (p->Size * -1) - FIELD_OFFSET(HCELL, u.OldCell.u.UserData);
  343. } else {
  344. userallocated += (p->Size * -1) - FIELD_OFFSET(HCELL, u.NewCell.u.UserData);
  345. }
  347. //
  348. // DRAGOS: NeverFail 1
  349. // This test will never fail. If a size is wrong the above test (Fail 1)will fail. We can remove this test (it's useless).
  350. //
  351. if (allocated > Bin->Size) {
  352. CmKdPrintEx((DPFLTR_CONFIG_ID,DPFLTR_ERROR_LEVEL,"HvCheckBin 50: allocated exceeds available\n"));
  353. CmKdPrintEx((DPFLTR_CONFIG_ID,DPFLTR_ERROR_LEVEL,"Bin = %p\n", Bin));
  354. HvCheckBinDebug.Status = 50;
  355. HvCheckBinDebug.CellPoint = p;
  356. return 50;
  357. }
  359. np = (PHCELL)((PUCHAR)p + (p->Size * -1));
  363. } else {
  365. //
  366. // free cell
  367. //
  369. // DRAGOS: Fail 2
  370. // This test will always fail prior to the failure of the below test
  371. //
  372. if ( ((ULONG)p->Size > Bin->Size) ||
  373. ( (PHCELL)(p->Size + (PUCHAR)p) >
  374. (PHCELL)((PUCHAR)Bin + Bin->Size) ) ||
  375. (p->Size == 0) )
  376. {
  377. CmKdPrintEx((DPFLTR_CONFIG_ID,DPFLTR_ERROR_LEVEL,"HvCheckBin 60: impossible free block\n"));
  378. CmKdPrintEx((DPFLTR_CONFIG_ID,DPFLTR_ERROR_LEVEL,"Bin = %p\n", Bin));
  379. HvCheckBinDebug.Status = 60;
  380. HvCheckBinDebug.CellPoint = p;
  381. return 60;
  382. }
  384. freespace = freespace + p->Size;
  386. //
  387. // DRAGOS: NeverFail 2
  388. // This test will never fail. If a size is wrong the above test (Fail 2) will fail. We can remove this test (it's useless).
  389. //
  390. if (freespace > Bin->Size) {
  391. CmKdPrintEx((DPFLTR_CONFIG_ID,DPFLTR_ERROR_LEVEL,"HvCheckBin 70: free exceeds available\n"));
  392. CmKdPrintEx((DPFLTR_CONFIG_ID,DPFLTR_ERROR_LEVEL,"Bin = %p\n", Bin));
  393. HvCheckBinDebug.Status = 70;
  394. HvCheckBinDebug.CellPoint = p;
  395. return 70;
  396. }
  398. np = (PHCELL)((PUCHAR)p + p->Size);
  400. }
  402. lp = p;
  403. p = np;
  404. }
  406. // DRAGOS: NeverFail 4
  407. // This test never fails. If the while loop exits, the condition tested here is always true!!!
  408. // We can remove this test (it's useless)
  409. //
  410. if ((freespace + allocated + sizeof(HBIN)) != Bin->Size) {
  411. CmKdPrintEx((DPFLTR_CONFIG_ID,DPFLTR_ERROR_LEVEL,"HvCheckBin 995: sizes do not add up\n"));
  412. CmKdPrintEx((DPFLTR_CONFIG_ID,DPFLTR_ERROR_LEVEL,"Bin = %p\n", Bin));
  413. CmKdPrintEx((DPFLTR_CONFIG_ID,DPFLTR_ERROR_LEVEL,"freespace = %08lx ", freespace));
  414. CmKdPrintEx((DPFLTR_CONFIG_ID,DPFLTR_ERROR_LEVEL,"allocated = %08lx ", allocated));
  415. CmKdPrintEx((DPFLTR_CONFIG_ID,DPFLTR_ERROR_LEVEL,"size = %08lx\n", Bin->Size));
  416. HvCheckBinDebug.Status = 995;
  417. return 995;
  418. }
  420. // DRAGOS: NeverFail 3
  421. // This test never fails. The only way out of the while loop is when p == Bin + Bin->Size !!!!!!!
  422. // We can remove this test (it's useless)
  423. //
  424. if (p != (PHCELL)((PUCHAR)Bin + Bin->Size)) {
  425. CmKdPrintEx((DPFLTR_CONFIG_ID,DPFLTR_ERROR_LEVEL,"HvCheckBin 1000: last cell points off the end\n"));
  426. CmKdPrintEx((DPFLTR_CONFIG_ID,DPFLTR_ERROR_LEVEL,"Bin = %p\n", Bin));
  427. HvCheckBinDebug.Status = 1000;
  428. return 1000;
  429. }
  431. if (ARGUMENT_PRESENT(Storage)) {
  432. *Storage += userallocated;
  433. }
  434. return 0;
  435. }