archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
4.9 GiB
Tree: 5c6fe3db62
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '5c6fe3db62'
${ noResults }
windows-server-2003/net/netbt/smb/kdext/smbkd.c

559 lines
15 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. /*++
  3. Copyright (c) 1990 Microsoft Corporation
  5. Module Name:
  7. smbkd.c
  9. Abstract:
  11. Smb kd extension (To be finished)
  13. Author:
  15. Jiandong Ruan
  17. Notes:
  19. Revision History:
  21. 12-Mar-2001 jruan
  23. --*/
  25. #include <nt.h>
  26. #include <ntrtl.h>
  28. #define KDEXTMODE
  29. #define KDEXT_64BIT
  31. #include <nturtl.h>
  32. #include <ntverp.h>
  33. #include <windef.h>
  34. #include <winbase.h>
  35. #include <wdbgexts.h>
  36. #include <stdlib.h>
  37. #include <string.h>
  38. #include <stdio.h>
  39. #include "winsock2.h"
  40. #include "winsock.h"
  41. #include <ws2tcpip.h>
  42. #include "../inc/ip6util.h"
  43. #include "../sys/drv/precomp.h"
  45. #define PRINTF dprintf
  47. EXT_API_VERSION ApiVersion = {
  48. (VER_PRODUCTVERSION_W >> 8), (VER_PRODUCTVERSION_W & 0xff),
  49. EXT_API_VERSION_NUMBER64, 0
  50. };
  51. WINDBG_EXTENSION_APIS ExtensionApis;
  52. USHORT SavedMajorVersion;
  53. USHORT SavedMinorVersion;
  54. BOOLEAN ChkTarget;
  56. DECLARE_API(dumpcfg)
  57. {
  58. ULONG64 SmbDeviceAddr, SmbServerAddr;
  59. ULONG64 ConfigPtr;
  60. ULONG TcpCfgOffset;
  61. SYM_DUMP_PARAM SymDump = { 0 };
  62. CHAR *cfg_sym = "smb!SmbCfg";
  63. CHAR *dns_sym = "smb!Dns";
  64. CHAR *smbdev_sym = "smb!_SMB_DEVICE";
  65. CHAR *smbsrv_sym = "smb!_SMB_CLIENT_ELEMENT";
  66. CHAR *tcp_sym = "smb!_SMB_TCP_INFO";
  68. PRINTF ("dt %s\n", cfg_sym);
  69. SymDump.size = sizeof(SYM_DUMP_PARAM);
  70. SymDump.sName = cfg_sym;
  71. Ioctl(IG_DUMP_SYMBOL_INFO, &SymDump, SymDump.size);
  73. PRINTF ("dt %s\n", dns_sym);
  74. SymDump.size = sizeof(SYM_DUMP_PARAM);
  75. SymDump.sName = dns_sym;
  76. Ioctl(IG_DUMP_SYMBOL_INFO, &SymDump, SymDump.size);
  78. ConfigPtr = GetExpression(cfg_sym);
  79. InitTypeRead(ConfigPtr, smb!SMBCONFIG);
  80. SmbDeviceAddr = ReadField(SmbDeviceObject);
  81. PRINTF ("dt %s %16.16I64x\n", smbdev_sym, SmbDeviceAddr);
  82. SymDump.size = sizeof(SYM_DUMP_PARAM);
  83. SymDump.sName = smbdev_sym;
  84. SymDump.addr = SmbDeviceAddr;
  85. Ioctl(IG_DUMP_SYMBOL_INFO, &SymDump, SymDump.size);
  87. PRINTF ("\n************ TCP Configuration ****************\n");
  88. if (GetFieldOffset("smb!_SMB_DEVICE", (LPSTR)"Tcp4", &TcpCfgOffset)) {
  89. PRINTF ("Cannot find the offset of smb!_SMB_CONNECT!TraceRcv\n");
  90. return;
  91. }
  92. PRINTF ("Dump IPv4 TCP configuration: dt %s %16.16I64x\n", tcp_sym, SmbDeviceAddr + TcpCfgOffset);
  93. SymDump.size = sizeof(SYM_DUMP_PARAM);
  94. SymDump.sName = tcp_sym;
  95. SymDump.addr = SmbDeviceAddr + TcpCfgOffset;
  96. Ioctl(IG_DUMP_SYMBOL_INFO, &SymDump, SymDump.size);
  98. if (GetFieldOffset("smb!_SMB_DEVICE", (LPSTR)"Tcp6", &TcpCfgOffset)) {
  99. PRINTF ("Cannot find the offset of smb!_SMB_CONNECT!TraceRcv\n");
  100. return;
  101. }
  102. PRINTF ("Dump IPv6 TCP configuration: dt %s %16.16I64x\n", tcp_sym, SmbDeviceAddr + TcpCfgOffset);
  103. SymDump.size = sizeof(SYM_DUMP_PARAM);
  104. SymDump.sName = tcp_sym;
  105. SymDump.addr = SmbDeviceAddr + TcpCfgOffset;
  106. Ioctl(IG_DUMP_SYMBOL_INFO, &SymDump, SymDump.size);
  108. InitTypeRead(SmbDeviceAddr, smb!_SMB_DEVICE);
  109. SmbServerAddr = ReadField(SmbServer);
  110. if (SmbServerAddr) {
  111. PRINTF ("\n************ Smb Server Client Element ****************\n");
  112. PRINTF ("dt %s %16.16I64x\n", smbsrv_sym, SmbServerAddr);
  113. SymDump.size = sizeof(SYM_DUMP_PARAM);
  114. SymDump.sName = smbsrv_sym;
  115. SymDump.addr = SmbServerAddr;
  116. Ioctl(IG_DUMP_SYMBOL_INFO, &SymDump, SymDump.size);
  117. }
  118. }
  120. __inline
  121. ULONG
  122. read_list_entry(
  123. ULONG64 addr,
  124. PLIST_ENTRY64 List
  125. )
  126. {
  127. if (InitTypeRead(addr, LIST_ENTRY)) {
  128. return 1;
  129. }
  130. List->Flink = ReadField(Flink);
  131. List->Blink = ReadField(Blink);
  132. return 0;
  133. }
  135. #define READLISTENTRY read_list_entry
  137. /*++
  138. Call callback for each entry in the list
  139. --*/
  140. typedef BOOL (*LIST_FOR_EACH_CALLBACK)(ULONG64 address, PVOID);
  141. int
  142. ListForEach(ULONG64 address, int maximum, PVOID pContext, LIST_FOR_EACH_CALLBACK callback)
  143. {
  144. LIST_ENTRY64 list;
  145. int i;
  147. if (READLISTENTRY(address, &list)) {
  148. PRINTF ("Failed to read memory 0x%I64lx\n", address);
  149. return (-1);
  150. }
  151. if (list.Flink == address) {
  152. return (-1);
  153. }
  155. if (maximum < 0) {
  156. maximum = 1000000;
  157. }
  158. for (i = 0; i < maximum && (list.Flink != address); i++) {
  159. /*
  160. * Allow user to break us.
  161. */
  162. if (CheckControlC()) {
  163. break;
  164. }
  165. callback(list.Flink, pContext);
  166. if (READLISTENTRY(list.Flink, &list)) {
  167. PRINTF ("Failed to read memory 0x%I64lx\n", list.Flink);
  168. return (-1);
  169. }
  170. }
  171. return i;
  172. }
  174. #define MAX_LIST_ELEMENTS 4096
  176. LPSTR Extensions[] = {
  177. "SMB6 debugger extensions",
  178. 0
  179. };
  181. LPSTR LibCommands[] = {
  182. "help -- print out these messages",
  183. "tracercv -- dump the trace log for TDI receive handler",
  184. "srvmap -- dump IPv6-NetBIOS name mapping (only for SRV)",
  185. "dumpcfg -- dump smb common global information",
  186. "clients -- dump the client list",
  187. "client -- dump a client",
  188. "interface -- dump a interface",
  189. 0
  190. };
  192. DECLARE_API(help)
  193. {
  194. int i;
  196. for( i=0; Extensions[i]; i++ )
  197. PRINTF( " %s\n", Extensions[i] );
  199. for( i=0; LibCommands[i]; i++ )
  200. PRINTF( " %s\n", LibCommands[i] );
  201. return;
  202. }
  204. DECLARE_API(version)
  205. {
  206. #if DBG
  207. PCHAR DebuggerType = "Checked";
  208. #else
  209. PCHAR DebuggerType = "Free";
  210. #endif
  212. PRINTF ( "NETBT: %s extension dll (build %d) debugging %s kernel (build %d)\n",
  213. DebuggerType,
  214. VER_PRODUCTBUILD,
  215. SavedMajorVersion == 0x0c ? "Checked" : "Free",
  216. SavedMinorVersion
  217. );
  218. }
  220. #define MIN(x,y) ((x) < (y) ? (x) : (y))
  222. DECLARE_API(interface)
  223. {
  224. CHAR *smbsrv_sym = "smb!SMB_TCP_DEVICE";
  225. SYM_DUMP_PARAM SymDump = { 0 };
  226. ULONG64 addr;
  228. addr = GetExpression(args);
  229. PRINTF ("****** dt %s %16.16I64x\n", smbsrv_sym, addr);
  230. SymDump.size = sizeof(SYM_DUMP_PARAM);
  231. SymDump.sName = smbsrv_sym;
  232. SymDump.addr = addr;
  233. Ioctl(IG_DUMP_SYMBOL_INFO, &SymDump, SymDump.size);
  234. PRINTF("\n");
  235. }
  237. DECLARE_API(tracercv)
  238. {
  239. ULONG64 addr;
  240. ULONG tag, head, i;
  241. ULONG traceoffset;
  242. SMB_TRACE_RCV traces;
  243. CHAR fn[512];
  245. if (*args == 0) {
  246. PRINTF ("tracercv connect_object\n");
  247. return;
  248. }
  250. addr = GetExpression(args);
  251. if (0 == addr) {
  252. PRINTF ("tracercv connect_object\n");
  253. return;
  254. }
  256. InitTypeRead(addr, smb!_SMB_CONNECT);
  257. tag = (ULONG)ReadField(Tag);
  258. if (tag != TAG_CONNECT_OBJECT) {
  259. PRINTF ("Incorrect tag: 0x%08lx\n", tag);
  260. return;
  261. }
  263. #if 0
  264. if (GetFieldOffset("smb!_SMB_CONNECT", (LPSTR)"TraceRcv", &traceoffset)) {
  265. PRINTF ("Cannot find the offset of smb!_SMB_CONNECT!TraceRcv\n");
  266. return;
  267. }
  268. #endif
  269. if (GetFieldData(addr, "smb!_SMB_CONNECT", "TraceRcv", sizeof(SMB_TRACE_RCV), &traces)) {
  270. PRINTF ("Cannot find the smb!_SMB_CONNECT!TraceRcv\n");
  271. return;
  272. }
  273. head = ((traces.Head + 1) % SMB_MAX_TRACE_SIZE);
  274. for (i = head; i < SMB_MAX_TRACE_SIZE; i++) {
  275. if (traces.Locations[i].id) {
  276. break;
  277. }
  278. }
  280. for (; i < SMB_MAX_TRACE_SIZE; i++) {
  281. if (traces.Locations[i].id == 0) {
  282. PRINTF ("Invalid trace Id: index=%3d, line=%d\n", i, traces.Locations[i].ln);
  283. continue;
  284. }
  285. PRINTF ("%3d: Id=0x%08lx at line %d\n",
  286. i - head + 1, traces.Locations[i].id, traces.Locations[i].ln);
  287. }
  288. for (i = 0; i < head; i++) {
  289. if (traces.Locations[i].id == 0) {
  290. PRINTF ("Invalid trace Id: index=%3d, line=%d\n", i, traces.Locations[i].ln);
  291. continue;
  292. }
  293. PRINTF ("%3d: Id=0x%08lx at line %d\n",
  294. SMB_MAX_TRACE_SIZE - head + i + 1, traces.Locations[i].id, traces.Locations[i].ln);
  295. }
  296. }
  298. BOOL
  299. clientlist_callback(ULONG64 addr, const int *bkt)
  300. {
  301. static ULONG addr_offset = (ULONG)(-1);
  302. CHAR *smbsrv_sym = "smb!_SMB_CLIENT_ELEMENT";
  303. SYM_DUMP_PARAM SymDump = { 0 };
  305. if (addr_offset == (ULONG)(-1)) {
  306. if (GetFieldOffset(smbsrv_sym, (LPSTR)"Linkage", &addr_offset)) {
  307. PRINTF ("Please fix your symbols\n");
  308. return FALSE;
  309. }
  310. }
  312. addr -= addr_offset;
  313. PRINTF ("****** dt %s %16.16I64x\n", smbsrv_sym, addr);
  314. SymDump.size = sizeof(SYM_DUMP_PARAM);
  315. SymDump.sName = smbsrv_sym;
  316. SymDump.addr = addr;
  317. Ioctl(IG_DUMP_SYMBOL_INFO, &SymDump, SymDump.size);
  318. PRINTF("\n");
  319. return TRUE;
  320. }
  322. DECLARE_API(clients)
  323. {
  324. ULONG64 ConfigPtr = 0, SmbDeviceAddr = 0;
  325. ULONG ClientListOffset;
  326. CHAR *cfg_sym = "smb!SmbCfg";
  328. ConfigPtr = GetExpression(cfg_sym);
  329. InitTypeRead(ConfigPtr, smb!SMBCONFIG);
  330. SmbDeviceAddr = ReadField(SmbDeviceObject);
  332. if (GetFieldOffset("smb!_SMB_DEVICE", (LPSTR)"ClientList", &ClientListOffset)) {
  333. PRINTF ("Cannot find the offset of smb!_SMB_CONNECT!TraceRcv\n");
  334. return;
  335. }
  336. PRINTF ("Dump client list\n");
  337. ListForEach(SmbDeviceAddr + ClientListOffset, -1, NULL, (LIST_FOR_EACH_CALLBACK)clientlist_callback);
  338. }
  340. BOOL
  341. connect_callback(ULONG64 addr, const int *bkt)
  342. {
  343. static ULONG addr_offset = (ULONG)(-1);
  344. CHAR *cnt_sym = "smb!_SMB_CONNECT";
  345. SYM_DUMP_PARAM SymDump = { 0 };
  347. if (addr_offset == (ULONG)(-1)) {
  348. if (GetFieldOffset(cnt_sym, (LPSTR)"Linkage", &addr_offset)) {
  349. PRINTF ("Please fix your symbols\n");
  350. return FALSE;
  351. }
  352. }
  354. addr -= addr_offset;
  355. PRINTF ("****** dt %s %16.16I64x\n", cnt_sym, addr);
  356. SymDump.size = sizeof(SYM_DUMP_PARAM);
  357. SymDump.sName = cnt_sym;
  358. SymDump.addr = addr;
  359. Ioctl(IG_DUMP_SYMBOL_INFO, &SymDump, SymDump.size);
  360. PRINTF("\n");
  361. return TRUE;
  362. }
  364. DECLARE_API(client)
  365. {
  366. ULONG64 addr;
  367. ULONG addr_offset, assoc_offset, active_offset;
  368. CHAR *smbsrv_sym = "smb!_SMB_CLIENT_ELEMENT";
  370. if (*args == 0) {
  371. PRINTF ("tracercv connect_object\n");
  372. return;
  373. }
  374. if (GetFieldOffset(smbsrv_sym, (LPSTR)"Linkage", &addr_offset)) {
  375. PRINTF ("Please fix your symbols\n");
  376. return;
  377. }
  378. if (GetFieldOffset(smbsrv_sym, (LPSTR)"AssociatedConnection", &assoc_offset)) {
  379. PRINTF ("Please fix your symbols\n");
  380. return;
  381. }
  382. if (GetFieldOffset(smbsrv_sym, (LPSTR)"ActiveConnection", &active_offset)) {
  383. PRINTF ("Please fix your symbols\n");
  384. return;
  385. }
  387. addr = GetExpression(args);
  388. clientlist_callback(addr + addr_offset, NULL);
  390. PRINTF ("Dump associated connections\n");
  391. ListForEach(addr + assoc_offset, -1, NULL, (LIST_FOR_EACH_CALLBACK)connect_callback);
  392. PRINTF ("Dump Active connections\n");
  393. ListForEach(addr + active_offset, -1, NULL, (LIST_FOR_EACH_CALLBACK)connect_callback);
  394. }
  396. BOOL
  397. srvmap_callback(ULONG64 addr, const int *bkt)
  398. {
  399. static ULONG addr_offset = (ULONG)(-1);
  400. struct sockaddr_in6 addr_in6 = { 0 };
  401. LONG RefCount;
  402. DWORD SerialNumber, dwError;
  403. CHAR host[64];
  405. if (addr_offset == (ULONG)(-1)) {
  406. if (GetFieldOffset("smb!SMB_IPV6_NETBIOS", (LPSTR)"Linkage", &addr_offset)) {
  407. PRINTF ("Please fix your symbols\n");
  408. return FALSE;
  409. }
  410. }
  412. addr -= addr_offset;
  413. if (InitTypeRead(addr, smb!SMB_IPV6_NETBIOS)) {
  414. PRINTF ("Please fix your symbols\n");
  415. return FALSE;
  416. }
  417. RefCount = (LONG)ReadField(RefCount);
  418. SerialNumber = (DWORD)ReadField(Serial);
  419. if (GetFieldData(addr, "smb!SMB_IPV6_NETBIOS", "IpAddress", 16, &addr_in6.sin6_addr)) {
  420. PRINTF ("Please fix your symbols\n");
  421. return FALSE;
  422. }
  423. addr_in6.sin6_family = AF_INET6;
  424. dwError = inet_ntoa6(host, sizeof(host), (PSMB_IP6_ADDRESS)&addr_in6.sin6_addr);
  425. if (dwError == 0) {
  426. return FALSE;
  427. }
  429. PRINTF ("%03d\t< %16.16I64x > *SMBSER%08x | %-40s | %02d\n",
  430. *bkt, addr, SerialNumber, host, RefCount);
  431. return TRUE;
  432. }
  434. DECLARE_API(srvmap)
  435. {
  436. ULONG64 addr = 0;
  437. ULONG64 hashtbl_addr = 0;
  438. ULONG64 buckets_addr = 0;
  439. ULONG64 sizeof_list = 0;
  440. int i, bucket_number = 0;
  441. SYM_DUMP_PARAM SymDump = { 0 };
  442. CHAR *mapping_sym = "smb!SmbIPv6Mapping";
  443. CHAR *hash_sym = "smb!SMB_HASH_TABLE";
  445. addr = GetExpression(mapping_sym);
  446. if (0 == addr) {
  447. PRINTF ("Please fix your symbols\n");
  448. return;
  449. }
  451. //
  452. // dump the mapping structure
  453. //
  454. PRINTF ("dt %s\n", mapping_sym);
  455. SymDump.size = sizeof(SYM_DUMP_PARAM);
  456. SymDump.sName = mapping_sym;
  457. Ioctl(IG_DUMP_SYMBOL_INFO, &SymDump, SymDump.size);
  459. //
  460. // dump the hash table
  461. //
  462. InitTypeRead(addr, smb!SMB_IPV6_NETBIOS_TABLE);
  463. hashtbl_addr = ReadField(HashTable);
  464. if (0 == hashtbl_addr) {
  465. PRINTF ("Please fix your symbols\n");
  466. return;
  467. }
  468. if (GetFieldOffset(hash_sym, (LPSTR)"Buckets", (LONG*)&buckets_addr)) {
  469. PRINTF ("Please fix your symbols\n");
  470. return;
  471. }
  472. buckets_addr += hashtbl_addr;
  473. PRINTF ("dt %s %16.16I64x\n", hash_sym, hashtbl_addr);
  474. SymDump.size = sizeof(SYM_DUMP_PARAM);
  475. SymDump.sName = hash_sym;
  476. SymDump.addr = hashtbl_addr;
  477. Ioctl(IG_DUMP_SYMBOL_INFO, &SymDump, SymDump.size);
  479. InitTypeRead(hashtbl_addr, smb!SMB_HASH_TABLE);
  480. bucket_number = (int)ReadField(NumberOfBuckets);
  481. if (0 >= bucket_number) {
  482. PRINTF ("Please fix your symbols\n");
  483. return;
  484. }
  486. //
  487. // dump each bucket
  488. //
  489. sizeof_list = GetTypeSize ("LIST_ENTRY");
  490. if (0 == sizeof_list) {
  491. PRINTF ("Please fix your symbols\n");
  492. return;
  493. }
  494. PRINTF ("[Bkt#]\t< Address > < Name > | IPv6 Address | RefC\n");
  495. PRINTF ("================================================================================================\n");
  496. for (i = 0; i < bucket_number; i++) {
  497. ListForEach(buckets_addr + i * sizeof_list, -1, &i, (LIST_FOR_EACH_CALLBACK)srvmap_callback);
  498. }
  499. }
  501. //
  502. // Standard Functions
  503. //
  504. DllInit(
  505. HANDLE hModule,
  506. DWORD dwReason,
  507. DWORD dwReserved
  508. )
  509. {
  510. WSADATA wsaData;
  512. switch (dwReason) {
  513. case DLL_THREAD_ATTACH:
  514. break;
  516. case DLL_THREAD_DETACH:
  517. break;
  519. case DLL_PROCESS_DETACH:
  520. WSAStartup(MAKEWORD(2, 0), &wsaData);
  521. break;
  523. case DLL_PROCESS_ATTACH:
  524. WSACleanup();
  525. break;
  526. }
  528. return TRUE;
  529. }
  531. VOID
  532. WinDbgExtensionDllInit(
  533. PWINDBG_EXTENSION_APIS lpExtensionApis,
  534. USHORT MajorVersion,
  535. USHORT MinorVersion
  536. )
  537. {
  538. ExtensionApis = *lpExtensionApis;
  540. SavedMajorVersion = MajorVersion;
  541. SavedMinorVersion = MinorVersion;
  542. ChkTarget = SavedMajorVersion == 0x0c ? TRUE : FALSE;
  544. return;
  545. }
  547. VOID
  548. CheckVersion(VOID)
  549. {
  550. return;
  551. }
  553. LPEXT_API_VERSION
  554. ExtensionApiVersion(
  555. VOID
  556. )
  557. {
  558. return &ApiVersion;
  559. }