archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 5c6fe3db62
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '5c6fe3db62'
${ noResults }
windows-server-2003/net/netbt/smb/sys/tdihndlr.c

637 lines
19 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. /*++
  3. Copyright (c) 1989-2001 Microsoft Corporation
  5. Module Name:
  7. tdihndlr.c
  9. Abstract:
  11. TDI event handlers
  13. Author:
  15. Jiandong Ruan
  17. Revision History:
  19. --*/
  21. #include "precomp.h"
  22. #include "ip2netbios.h"
  23. #include "tdihndlr.tmh"
  25. NTSTATUS
  26. TdiAcceptCompletion(
  27. IN PDEVICE_OBJECT DeviceObject,
  28. IN PIRP Irp,
  29. IN PSMB_TCP_CONNECT TcpConnect
  30. );
  32. void
  33. Inet_ntoa_nb(
  34. ULONG Address,
  35. PCHAR Buffer
  36. )
  37. /*++
  39. Routine Description: (Lifted from NBT4 tdihndlr.c)
  41. This routine converts an IP address into its "dotted quad" representation. The IP address is
  42. expected to be in network byte order. No attempt is made to handle the other dotted notions as
  43. defined in in.h. No error checking is done: all address values are permissible including 0
  44. and -1. The output string is blank padded to 16 characters to make the name look like a netbios
  45. name.
  47. The string representation is in ANSI, not UNICODE.
  49. The caller must allocate the storage, which should be 16 characters.
  51. Arguments:
  53. Address - IP address in network byte order
  54. Buffer - Pointer to buffer to receive string representation, ANSI
  56. Return Value:
  58. void
  60. --*/
  62. {
  63. ULONG i;
  64. UCHAR byte, c0, c1, c2;
  65. PCHAR p = Buffer;
  67. for (i = 0; i < 4; i++) {
  68. byte = (UCHAR) (Address & 0xff);
  70. c0 = byte % 10;
  71. byte /= 10;
  72. c1 = byte % 10;
  73. byte /= 10;
  74. c2 = byte;
  76. if (c2 != 0) {
  77. *p++ = c2 + '0';
  78. *p++ = c1 + '0';
  79. } else if (c1 != 0) {
  80. *p++ = c1 + '0';
  81. }
  82. *p++ = c0 + '0';
  84. if (i != 3)
  85. *p++ = '.';
  87. Address >>= 8;
  88. }
  90. // space pad up to 16 characters
  91. while (p < (Buffer + 16)) {
  92. *p++ = ' ';
  93. }
  94. }
  97. NTSTATUS
  98. SmbTdiConnectHandler(
  99. IN PSMB_DEVICE DeviceObject,
  100. IN LONG RemoteAddressLength,
  101. IN PTRANSPORT_ADDRESS RemoteAddress,
  102. IN LONG UserDataLength,
  103. IN PVOID UserData,
  104. IN LONG OptionsLength,
  105. IN PVOID Options,
  106. OUT CONNECTION_CONTEXT *ConnectionContext,
  107. OUT PIRP *AcceptIrp
  108. )
  109. /*++
  111. Routine Description:
  114. Arguments:
  117. Return Value:
  120. --*/
  121. {
  122. PSMB_CLIENT_ELEMENT SmbServer = NULL;
  123. KIRQL Irql;
  124. PTDI_IND_CONNECT evConnect = NULL;
  125. PVOID ConEvContext = NULL;
  126. NTSTATUS status = STATUS_SUCCESS, client_status = STATUS_SUCCESS;
  127. PVOID ClientConnectContext = NULL;
  128. PIRP ClientAcceptIrp = NULL;
  129. PIO_STACK_LOCATION IrpSp = NULL;
  130. PSMB_CONNECT ConnectObject = NULL;
  131. PSMB_CLIENT_ELEMENT ClientObject = NULL;
  132. PSMB_TCP_CONTEXT TcpContext = NULL;
  133. TA_NETBIOS_ADDRESS TaAddr;
  134. PTCPSEND_DISPATCH FastSend = NULL;
  135. BOOL NetbiosNameAllocated = FALSE;
  137. UNREFERENCED_PARAMETER(UserDataLength);
  138. UNREFERENCED_PARAMETER(UserData);
  139. UNREFERENCED_PARAMETER(OptionsLength);
  140. UNREFERENCED_PARAMETER(Options);
  142. //
  143. // Some smoke checks before acquiring the lock
  144. //
  145. if (SmbCfg.Unloading) {
  146. status = STATUS_DELETE_PENDING;
  147. goto error;
  148. }
  150. if (RemoteAddressLength < sizeof(TA_IP_ADDRESS) &&
  151. RemoteAddressLength < sizeof(TA_IP6_ADDRESS)) {
  152. status = STATUS_INVALID_ADDRESS;
  153. goto error;
  154. }
  156. if (RemoteAddress->Address[0].AddressType != TDI_ADDRESS_TYPE_IP &&
  157. RemoteAddress->Address[0].AddressType != TDI_ADDRESS_TYPE_IP6) {
  158. status = STATUS_INVALID_ADDRESS_COMPONENT;
  159. goto error;
  160. }
  162. //
  163. // Prevent SmbServer to go away by referencing the SmbServer
  164. //
  165. SMB_ACQUIRE_SPINLOCK(&SmbCfg, Irql);
  166. SmbServer = DeviceObject->SmbServer;
  167. if (NULL == SmbServer) {
  168. SMB_RELEASE_SPINLOCK(&SmbCfg, Irql);
  169. status = STATUS_REMOTE_NOT_LISTENING;
  170. goto error;
  171. }
  172. SmbReferenceClient(SmbServer, SMB_REF_CONNECT);
  173. SMB_RELEASE_SPINLOCK(&SmbCfg, Irql);
  175. if (SmbServer->PendingAcceptNumber > DeviceObject->MaxBackLog) {
  176. status = STATUS_NETWORK_BUSY;
  177. goto error;
  178. }
  180. SMB_ACQUIRE_SPINLOCK(SmbServer, Irql);
  181. if (!IsListEmpty(&SmbServer->ListenHead)) {
  182. ASSERTMSG ("TDI_LISTEN isn't supported", 0);
  183. SMB_RELEASE_SPINLOCK(SmbServer, Irql);
  185. status = STATUS_NOT_SUPPORTED;
  186. goto error;
  187. }
  188. evConnect = SmbServer->evConnect;
  189. ConEvContext = SmbServer->ConEvContext;
  190. SMB_RELEASE_SPINLOCK(SmbServer, Irql);
  192. SmbTrace(SMB_TRACE_CONNECT, ("Receive connect request"));
  194. //
  195. // No Listen
  196. //
  197. if (NULL == evConnect || NULL == ConEvContext) {
  198. status = STATUS_REMOTE_NOT_LISTENING;
  199. goto error;
  200. }
  202. //
  203. // Srv expects a TDI_ADDRESS_NETBIOS
  204. //
  205. TaAddr.TAAddressCount = 1;
  206. TaAddr.Address[0].AddressType = TDI_ADDRESS_TYPE_NETBIOS;
  207. TaAddr.Address[0].AddressLength = sizeof(TDI_ADDRESS_NETBIOS);
  208. TaAddr.Address[0].Address[0].NetbiosNameType = TDI_ADDRESS_NETBIOS_TYPE_UNIQUE;
  209. TcpContext = NULL;
  210. if (RemoteAddress->Address[0].AddressType == TDI_ADDRESS_TYPE_IP) {
  211. FastSend = DeviceObject->Tcp4.FastSend;
  212. TcpContext = SmbAllocateInbound(&DeviceObject->Tcp4);
  213. Inet_ntoa_nb(((PTA_IP_ADDRESS)RemoteAddress)->Address[0].Address[0].in_addr,
  214. TaAddr.Address[0].Address[0].NetbiosName);
  216. SmbPrint(SMB_TRACE_CONNECT, ("Connect request from %15.15s:%d\n",
  217. TaAddr.Address[0].Address[0].NetbiosName,
  218. htons(((PTA_IP_ADDRESS)RemoteAddress)->Address[0].Address[0].sin_port)
  219. ));
  221. SmbTrace(SMB_TRACE_CONNECT, ("Connect request from %!ipaddr!:%!port!",
  222. ((PTA_IP_ADDRESS)RemoteAddress)->Address[0].Address[0].in_addr,
  223. ((PTA_IP_ADDRESS)RemoteAddress)->Address[0].Address[0].sin_port
  224. ));
  226. } else {
  227. SmbTrace(SMB_TRACE_CONNECT, ("Connect request from %!IPV6ADDR!:%!port!",
  228. (struct in6_addr*)&(((PTA_IP6_ADDRESS)RemoteAddress)->Address[0].Address[0].sin6_addr),
  229. ((PTA_IP6_ADDRESS)RemoteAddress)->Address[0].Address[0].sin6_port
  230. ));
  232. if (GetNetbiosNameFromIp6Address(((BYTE *)((PTA_IP6_ADDRESS)RemoteAddress)->Address[0].Address[0].sin6_addr),
  233. TaAddr.Address[0].Address[0].NetbiosName)) {
  235. NetbiosNameAllocated = TRUE;
  236. FastSend = DeviceObject->Tcp6.FastSend;
  237. TcpContext = SmbAllocateInbound(&DeviceObject->Tcp6);
  239. TODO("TdiConnectHandler: convert IP6 address into Netbios address");
  240. }
  242. }
  244. if (TcpContext == NULL) {
  245. status = STATUS_INSUFFICIENT_RESOURCES;
  246. goto error;
  247. }
  249. ClientConnectContext = NULL;
  250. ClientAcceptIrp = NULL;
  251. client_status = (*evConnect)(
  252. ConEvContext,
  253. sizeof(TaAddr),
  254. &TaAddr,
  255. 0,
  256. NULL,
  257. 0,
  258. NULL,
  259. &ClientConnectContext,
  260. &ClientAcceptIrp
  261. );
  263. SmbTrace(SMB_TRACE_CONNECT, ("evConnect: %!status! pIrp %p ClientContext %p",
  264. client_status, ClientAcceptIrp, ClientConnectContext));
  266. if (client_status != STATUS_MORE_PROCESSING_REQUIRED) {
  267. SmbFreeInbound(TcpContext);
  268. goto error;
  269. }
  271. ASSERT(ClientAcceptIrp);
  272. if (NULL == ClientAcceptIrp) {
  273. status = STATUS_INVALID_PARAMETER;
  274. goto error;
  275. }
  277. IrpSp = IoGetCurrentIrpStackLocation(ClientAcceptIrp);
  278. ConnectObject = IrpSp->FileObject->FsContext;
  279. if (IrpSp->FileObject->FsContext2 != UlongToPtr(SMB_TDI_CONNECT) ||
  280. ConnectObject->State != SMB_IDLE ||
  281. NULL != ConnectObject->TcpContext ||
  282. NULL == (ClientObject = ConnectObject->ClientObject)) {
  283. ClientAcceptIrp->IoStatus.Status = STATUS_INVALID_HANDLE;
  284. ClientAcceptIrp->IoStatus.Information = 0;
  285. IoCompleteRequest(ClientAcceptIrp, IO_NETWORK_INCREMENT);
  287. SmbFreeInbound(TcpContext);
  289. ASSERT (0);
  291. status = STATUS_INTERNAL_ERROR;
  292. goto error;
  293. }
  295. ConnectObject->Originator = FALSE;
  296. ConnectObject->FastSend = FastSend;
  298. SmbReuseConnectObject(ConnectObject);
  300. //
  301. // Reset the disconnection originator informaiton
  302. //
  303. ResetDisconnectOriginator(ConnectObject);
  305. ASSERT (TcpContext->Address.AddressHandle == NULL);
  306. ASSERT (TcpContext->Address.AddressObject == NULL);
  307. ASSERT (TcpContext->Connect.ConnectHandle);
  308. ASSERT (TcpContext->Connect.ConnectObject);
  310. SMB_ACQUIRE_SPINLOCK(DeviceObject, Irql);
  311. ASSERT(ClientObject == SmbServer);
  312. SMB_ACQUIRE_SPINLOCK_DPC(ClientObject);
  313. SMB_ACQUIRE_SPINLOCK_DPC(ConnectObject);
  315. ASSERT(EntryIsInList(&ClientObject->AssociatedConnection, &ConnectObject->Linkage));
  316. ASSERT (ConnectObject->ClientContext == ClientConnectContext);
  318. //
  319. // Don't use SMB_CONNECTING because TCP4 could indicate the data before the AcceptCompletion
  320. // is called.
  321. //
  322. ConnectObject->State = SMB_CONNECTED;
  323. ConnectObject->TcpContext = TcpContext;
  324. TcpContext->Connect.pLastUprCnt = TcpContext->Connect.UpperConnect = ConnectObject;
  326. RtlCopyMemory(ConnectObject->RemoteName, TaAddr.Address[0].Address[0].NetbiosName, NETBIOS_NAME_SIZE);
  327. if (RemoteAddress->Address[0].AddressType == TDI_ADDRESS_TYPE_IP) {
  328. ConnectObject->RemoteIpAddress.sin_family = SMB_AF_INET;
  329. ConnectObject->RemoteIpAddress.ip4.sin4_addr =
  330. ((PTA_IP_ADDRESS)RemoteAddress)->Address[0].Address[0].in_addr;
  331. } else {
  332. ConnectObject->RemoteIpAddress.sin_family = SMB_AF_INET6;
  333. RtlCopyMemory(ConnectObject->RemoteIpAddress.ip6.sin6_addr,
  334. ((PTA_IP6_ADDRESS)RemoteAddress)->Address[0].Address[0].sin6_addr,
  335. sizeof (ConnectObject->RemoteIpAddress.ip6.sin6_addr));
  336. ConnectObject->RemoteIpAddress.ip6.sin6_scope_id =
  337. ((PTA_IP6_ADDRESS)RemoteAddress)->Address[0].Address[0].sin6_scope_id;
  338. }
  340. //
  341. // Move the conection from AssociatedConnection list into PendingAcceptConnection
  342. //
  343. RemoveEntryList(&ConnectObject->Linkage);
  344. InsertTailList(&ClientObject->PendingAcceptConnection, &ConnectObject->Linkage);
  345. ClientObject->PendingAcceptNumber++;
  346. ASSERT(ClientObject->PendingAcceptNumber > 0);
  348. ConnectObject->PendingIRPs[SMB_PENDING_ACCEPT] = ClientAcceptIrp;
  350. SmbReferenceConnect(ConnectObject, SMB_REF_CONNECT);
  351. SMB_RELEASE_SPINLOCK_DPC(ConnectObject);
  352. SMB_RELEASE_SPINLOCK_DPC(ClientObject);
  353. SMB_RELEASE_SPINLOCK(DeviceObject, Irql);
  355. TdiBuildAccept(
  356. ClientAcceptIrp,
  357. IoGetRelatedDeviceObject(TcpContext->Connect.ConnectObject),
  358. TcpContext->Connect.ConnectObject,
  359. TdiAcceptCompletion,
  360. &TcpContext->Connect,
  361. NULL,
  362. NULL
  363. );
  365. *ConnectionContext = &TcpContext->Connect;
  366. *AcceptIrp = ClientAcceptIrp;
  368. IoSetNextIrpStackLocation(ClientAcceptIrp);
  369. SmbDereferenceClient(SmbServer, SMB_REF_CONNECT);
  371. SmbTrace(SMB_TRACE_CONNECT, ("return STATUS_MORE_PROCESSING_REQUIRED to TCP/IP pIrp %p ClientContext %p",
  372. (*AcceptIrp), (*ConnectionContext)));
  374. return(STATUS_MORE_PROCESSING_REQUIRED);
  376. error:
  377. SmbTrace(SMB_TRACE_CONNECT, ("Refuse the connection: status=%!status! client status=%!status!",
  378. status, client_status));
  380. if (NetbiosNameAllocated) {
  381. FreeNetbiosNameForIp6Address(((BYTE *)((PTA_IP6_ADDRESS)RemoteAddress)->Address[0].Address[0].sin6_addr));
  382. }
  384. if (SmbServer) {
  385. SmbDereferenceClient(SmbServer, SMB_REF_CONNECT);
  386. }
  387. return STATUS_CONNECTION_REFUSED;
  388. }
  391. NTSTATUS
  392. TdiAcceptCompletion(
  393. IN PDEVICE_OBJECT DeviceObject,
  394. IN PIRP Irp,
  395. IN PSMB_TCP_CONNECT TcpConnect
  396. )
  397. {
  398. PSMB_CONNECT ConnectObject;
  399. PSMB_CLIENT_ELEMENT ClientObject;
  400. KIRQL Irql;
  401. PSMB_TCP_CONTEXT TcpContext;
  403. //
  404. // For performance consideration: check it before acquiring a lock:
  405. // This will allow SmbSynchAttackDetection and SmbSynchAttackCleanup
  406. // to run concurrently most of the time.
  407. //
  408. if (NULL == TcpConnect->UpperConnect) {
  409. goto cleanup2;
  410. }
  412. //
  413. // Grab the global lock to synchronize with the DoDisconnect
  414. //
  416. SMB_ACQUIRE_SPINLOCK (SmbCfg.SmbDeviceObject, Irql);
  417. ConnectObject = (PSMB_CONNECT)TcpConnect->UpperConnect;
  418. if (NULL == ConnectObject) {
  419. goto cleanup;
  420. }
  422. ClientObject = ConnectObject->ClientObject;
  423. ASSERT (NULL != ClientObject);
  424. ASSERT (NULL != ConnectObject->ClientObject);
  425. ASSERT (TcpConnect == &ConnectObject->TcpContext->Connect);
  427. SMB_ACQUIRE_SPINLOCK_DPC(ClientObject);
  428. SMB_ACQUIRE_SPINLOCK_DPC(ConnectObject);
  430. ASSERT (ConnectObject->PendingIRPs[SMB_PENDING_ACCEPT] == Irp);
  431. ConnectObject->PendingIRPs[SMB_PENDING_ACCEPT] = NULL;
  433. ASSERT (EntryIsInList(&ClientObject->PendingAcceptConnection, &ConnectObject->Linkage));
  434. ASSERT (ClientObject->PendingAcceptNumber > 0);
  436. RemoveEntryList(&ConnectObject->Linkage);
  437. ClientObject->PendingAcceptNumber--;
  439. SmbTrace(SMB_TRACE_CONNECT, ("TDI_ACCEPT pIrp %p complete with %!status!",
  440. Irp, Irp->IoStatus.Status));
  442. //
  443. // The connection could have been disconnected when TCP completes the accepting IRP!!!
  444. // Only move it to active list if it hasn't been disconnected.
  445. //
  446. if (Irp->IoStatus.Status != STATUS_SUCCESS || ConnectObject->State != SMB_CONNECTED) {
  447. // BREAK_WHEN_TAKE();
  449. TcpContext = ConnectObject->TcpContext;
  450. ConnectObject->TcpContext = NULL;
  451. SmbDelayedDestroyTcpContext(TcpContext);
  453. InsertTailList(&ClientObject->AssociatedConnection, &ConnectObject->Linkage);
  454. ConnectObject->State = SMB_IDLE;
  455. if (Irp->IoStatus.Status == STATUS_SUCCESS) {
  456. Irp->IoStatus.Status = STATUS_CONNECTION_RESET;
  457. }
  458. if (ConnectObject->RemoteIpAddress.sin_family == SMB_AF_INET6) {
  459. FreeNetbiosNameForIp6Address(ConnectObject->RemoteIpAddress.ip6.sin6_addr_bytes);
  460. ConnectObject->RemoteIpAddress.sin_family = SMB_AF_INVALID_INET6;
  461. }
  462. } else {
  463. InsertTailList(&ClientObject->ActiveConnection, &ConnectObject->Linkage);
  464. }
  465. SMB_RELEASE_SPINLOCK_DPC(ConnectObject);
  466. SMB_RELEASE_SPINLOCK_DPC(ClientObject);
  468. cleanup:
  469. SMB_RELEASE_SPINLOCK(SmbCfg.SmbDeviceObject, Irql);
  470. if (ConnectObject) {
  471. SmbDereferenceConnect(ConnectObject, SMB_REF_CONNECT);
  472. }
  474. cleanup2:
  475. return STATUS_SUCCESS;
  476. }
  478. NTSTATUS
  479. TdiSetEventHandler(
  480. PFILE_OBJECT FileObject,
  481. ULONG EventType,
  482. PVOID EventHandler,
  483. PVOID Context
  484. )
  485. {
  486. PIRP Irp;
  487. KEVENT Event;
  488. NTSTATUS status;
  489. PDEVICE_OBJECT DeviceObject;
  491. PAGED_CODE();
  493. DeviceObject = IoGetRelatedDeviceObject(FileObject);
  495. Irp = SmbAllocIrp(DeviceObject->StackSize);
  496. if (Irp == NULL) {
  497. return STATUS_INSUFFICIENT_RESOURCES;
  498. }
  500. KeInitializeEvent(&Event, NotificationEvent, FALSE);
  501. TdiBuildSetEventHandler(
  502. Irp,
  503. DeviceObject,
  504. FileObject,
  505. SmbSynchTdiCompletion,
  506. &Event,
  507. EventType,
  508. EventHandler,
  509. Context
  510. );
  512. status = IoCallDriver(DeviceObject, Irp);
  513. if (!NT_SUCCESS(status)) {
  514. SmbFreeIrp(Irp);
  515. return status;
  516. }
  518. if (status == STATUS_PENDING) {
  519. status = KeWaitForSingleObject(
  520. &Event,
  521. Executive,
  522. KernelMode,
  523. FALSE,
  524. NULL
  525. );
  526. ASSERT(status == STATUS_WAIT_0);
  527. status = Irp->IoStatus.Status;
  528. }
  529. SmbFreeIrp(Irp);
  530. return status;
  531. }
  533. NTSTATUS
  534. SmbTdiDisconnectHandler (
  535. IN PSMB_DEVICE DeviceObject,
  536. IN PSMB_TCP_CONNECT TcpConnect,
  537. IN LONG DisconnectDataLength,
  538. IN PVOID DisconnectData,
  539. IN LONG DisconnectInformationLength,
  540. IN PVOID DisconnectInformation,
  541. IN ULONG DisconnectFlags
  542. )
  543. {
  544. KIRQL Irql;
  545. NTSTATUS status;
  546. PSMB_CONNECT ConnectObject;
  548. //
  549. // Reference the connection object make sure it won't go away
  550. //
  551. SMB_ACQUIRE_SPINLOCK(&SmbCfg, Irql);
  552. ConnectObject = (PSMB_CONNECT)TcpConnect->UpperConnect;
  553. if (NULL == ConnectObject) {
  554. SMB_RELEASE_SPINLOCK(&SmbCfg, Irql);
  555. return STATUS_SUCCESS;
  556. }
  557. SmbReferenceConnect(ConnectObject, SMB_REF_DISCONNECT);
  558. SMB_RELEASE_SPINLOCK(&SmbCfg, Irql);
  560. SmbTrace (SMB_TRACE_CONNECT, ("TCP Disconnect Indication: ConnOb %p Flag %d",
  561. ConnectObject, DisconnectFlags));
  563. status = CommonDisconnectHandler(DeviceObject, ConnectObject, DisconnectFlags);
  564. SmbDereferenceConnect(ConnectObject, SMB_REF_DISCONNECT);
  565. return status;
  566. }
  568. NTSTATUS
  569. CommonDisconnectHandler (
  570. IN PSMB_DEVICE DeviceObject,
  571. IN PSMB_CONNECT ConnectObject,
  572. IN ULONG DisconnectFlags
  573. )
  574. {
  575. PSMB_CLIENT_ELEMENT ClientObject;
  576. KIRQL Irql;
  577. PTDI_IND_DISCONNECT evDisConnect;
  578. PVOID DiscEvContext;
  579. PVOID ClientContext;
  580. PSMB_TCP_CONTEXT TcpContext;
  581. NTSTATUS status;
  583. SMB_ACQUIRE_SPINLOCK(ConnectObject, Irql);
  585. ClientObject = ConnectObject->ClientObject;
  586. if (NULL == ClientObject) {
  587. SMB_RELEASE_SPINLOCK(ConnectObject, Irql);
  588. return STATUS_SUCCESS;
  589. }
  591. SmbTrace(SMB_TRACE_CONNECT, ("receive disconnection indication for %p", ConnectObject));
  593. TcpContext = ConnectObject->TcpContext;
  594. ConnectObject->TcpContext = NULL;
  596. if (NULL == TcpContext) {
  597. ASSERT(ConnectObject->State == SMB_IDLE);
  598. SMB_RELEASE_SPINLOCK(ConnectObject, Irql);
  599. return STATUS_SUCCESS;
  600. }
  601. ASSERT(ConnectObject->State == SMB_CONNECTED || ConnectObject->State == SMB_CONNECTING);
  602. ConnectObject->State = SMB_IDLE;
  604. SaveDisconnectOriginator(ConnectObject, SMB_DISCONNECT_FROM_TRANSPORT);
  606. evDisConnect = ClientObject->evDisconnect;
  607. DiscEvContext = ClientObject->DiscEvContext;
  608. ClientContext = ConnectObject->ClientContext;
  609. SMB_RELEASE_SPINLOCK(ConnectObject, Irql);
  611. //
  612. // Cleanup the endpoint so that the client can reuse it
  613. //
  614. // Don't wait for the tcp-layer disconnect completion since
  615. // the disconnection isn't generated by our clients.
  616. //
  617. SmbDisconnectCleanup(DeviceObject, ClientObject, ConnectObject,
  618. TcpContext, TDI_DISCONNECT_ABORT, FALSE);
  620. //
  621. // Notify our client
  622. //
  623. if (evDisConnect) {
  624. status = (*evDisConnect)(
  625. DiscEvContext,
  626. ClientContext,
  627. 0,
  628. NULL,
  629. 0,
  630. NULL,
  631. DisconnectFlags
  632. );
  633. SmbTrace(SMB_TRACE_CONNECT, ("client returns %!status! for disconnect event", status));
  634. }
  636. return STATUS_SUCCESS;
  637. }