archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 5c6fe3db62
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '5c6fe3db62'
${ noResults }
windows-server-2003/net/tcpip/tools/ipfw/ipfw.c

430 lines
11 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. /*++
  3. Copyright (c) 2000, Microsoft Corporation
  5. Module Name:
  7. ipfw.c
  9. Abstract:
  11. This module implements a driver which demonstrates the use of
  12. the TCP/IP driver's support for firewall hooks. It interacts with
  13. a user-mode control-program to support registration of multiple
  14. firewall routines.
  16. Author:
  18. Abolade Gbadegesin (aboladeg) 7-March-2000
  20. Revision History:
  22. --*/
  24. #include <ndis.h>
  25. #include <ipfirewall.h>
  26. #include "ipfw.h"
  28. //
  29. // Structure: IPFW_ROUTINE
  30. //
  31. // Used to manage the table of routines registered with TCP/IP.
  32. //
  34. typedef struct _IPFW_ROUTINE {
  35. IPPacketFirewallPtr Routine;
  36. UINT Priority;
  37. ULONG Flags;
  38. ULONG PacketCount;
  39. } IPFW_ROUTINE, *PIPFW_ROUTINE;
  41. #define IPFW_ROUTINE_FLAG_REGISTERED 0x00000001
  43. extern IPFW_ROUTINE IpfwRoutineTable[];
  45. #define DEFINE_IPFW_ROUTINE(_Index) \
  46. FORWARD_ACTION IpfwRoutine##_Index( \
  47. VOID** Data, \
  48. UINT ReceiveIndex, \
  49. UINT* SendIndex, \
  50. PUCHAR DestinationType, \
  51. PVOID Context, \
  52. UINT ContextLength, \
  53. IPRcvBuf** OutputData \
  54. ) { \
  55. InterlockedIncrement(&IpfwRoutineTable[_Index].PacketCount); \
  56. return FORWARD; \
  57. }
  58. #define INCLUDE_IPFW_ROUTINE(_Index) \
  59. { IpfwRoutine##_Index, 0, 0 },
  61. DEFINE_IPFW_ROUTINE(0)
  62. DEFINE_IPFW_ROUTINE(1)
  63. DEFINE_IPFW_ROUTINE(2)
  64. DEFINE_IPFW_ROUTINE(3)
  65. DEFINE_IPFW_ROUTINE(4)
  66. DEFINE_IPFW_ROUTINE(5)
  67. DEFINE_IPFW_ROUTINE(6)
  68. DEFINE_IPFW_ROUTINE(7)
  69. DEFINE_IPFW_ROUTINE(8)
  70. DEFINE_IPFW_ROUTINE(9)
  72. IPFW_ROUTINE IpfwRoutineTable[IPFW_ROUTINE_COUNT] = {
  73. INCLUDE_IPFW_ROUTINE(0)
  74. INCLUDE_IPFW_ROUTINE(1)
  75. INCLUDE_IPFW_ROUTINE(2)
  76. INCLUDE_IPFW_ROUTINE(3)
  77. INCLUDE_IPFW_ROUTINE(4)
  78. INCLUDE_IPFW_ROUTINE(5)
  79. INCLUDE_IPFW_ROUTINE(6)
  80. INCLUDE_IPFW_ROUTINE(7)
  81. INCLUDE_IPFW_ROUTINE(8)
  82. INCLUDE_IPFW_ROUTINE(9)
  83. };
  84. KSPIN_LOCK IpfwRoutineLock;
  85. PDEVICE_OBJECT IpfwDeviceObject = NULL;
  87. //
  88. // FORWARD DECLARATIONS
  89. //
  91. NTSTATUS
  92. IpfwClose(
  93. PDEVICE_OBJECT DeviceObject,
  94. PIRP Irp
  95. );
  97. NTSTATUS
  98. IpfwCreate(
  99. PDEVICE_OBJECT DeviceObject,
  100. PIRP Irp
  101. );
  103. VOID
  104. IpfwUnload(
  105. IN PDRIVER_OBJECT DriverObject
  106. );
  108. NTSTATUS
  109. DriverEntry(
  110. IN PDRIVER_OBJECT DriverObject,
  111. IN PUNICODE_STRING RegistryPath
  112. )
  114. /*++
  116. Routine Description:
  118. This routine implements the standard driver-entry for an NT driver.
  119. It is responsible for registering with the TCP/IP driver.
  121. Arguments:
  123. DriverObject - object to be initialized with NT driver entrypoints
  125. RegistryPath - contains path to this driver's registry key
  127. Return Value:
  129. NTSTATUS - indicates success/failure.
  131. --*/
  133. {
  134. UNICODE_STRING DeviceName;
  135. OBJECT_ATTRIBUTES ObjectAttributes;
  136. HANDLE ServiceKey;
  137. NTSTATUS status;
  139. KdPrint(("DriverEntry\n"));
  141. KeInitializeSpinLock(&IpfwRoutineLock);
  143. //
  144. // Create a device-object on which to communicate with the control program.
  145. //
  147. RtlInitUnicodeString(&DeviceName, DD_IPFW_DEVICE_NAME);
  148. status =
  149. IoCreateDevice(
  150. DriverObject,
  151. 0,
  152. &DeviceName,
  153. FILE_DEVICE_NETWORK,
  154. FILE_DEVICE_SECURE_OPEN,
  155. FALSE,
  156. &IpfwDeviceObject
  157. );
  158. if (!NT_SUCCESS(status)) {
  159. KdPrint(("DriverEntry: IoCreateDevice=%08x\n", status));
  160. return status;
  161. }
  163. //
  164. // Create dispatch points for create/open, cleanup, unload.
  165. //
  167. DriverObject->MajorFunction[IRP_MJ_CREATE] = IpfwCreate;
  168. DriverObject->MajorFunction[IRP_MJ_CLOSE] = IpfwClose;
  169. DriverObject->DriverUnload = IpfwUnload;
  171. return STATUS_SUCCESS;
  172. } // DriverEntry
  175. NTSTATUS
  176. IpfwClose(
  177. PDEVICE_OBJECT DeviceObject,
  178. PIRP Irp
  179. )
  180. {
  181. UNICODE_STRING DeviceString;
  182. KEVENT Event;
  183. PFILE_OBJECT FileObject;
  184. ULONG i;
  185. IO_STATUS_BLOCK IoStatus;
  186. PDEVICE_OBJECT IpDeviceObject;
  187. KIRQL Irql;
  188. PIRP RegisterIrp;
  189. IP_SET_FIREWALL_HOOK_INFO SetHookInfo;
  190. NTSTATUS status;
  192. KdPrint(("IpfwClose\n"));
  194. i = PtrToUlong(IoGetCurrentIrpStackLocation(Irp)->FileObject->FsContext);
  196. #if DBG
  197. KeAcquireSpinLock(&IpfwRoutineLock, &Irql);
  198. ASSERT(IpfwRoutineTable[i].Flags & IPFW_ROUTINE_FLAG_REGISTERED);
  199. KeReleaseSpinLock(&IpfwRoutineLock, Irql);
  200. #endif
  202. //
  203. // Revoke the registration made on behalf of the client whose file-object
  204. // is being closed.
  205. // Obtain a pointer to the IP device-object,
  206. // construct a registration IRP, and attempt to register the routine
  207. // selected above.
  208. //
  210. RtlInitUnicodeString(&DeviceString, DD_IP_DEVICE_NAME);
  211. status =
  212. IoGetDeviceObjectPointer(
  213. &DeviceString,
  214. SYNCHRONIZE|GENERIC_READ|GENERIC_WRITE,
  215. &FileObject,
  216. &IpDeviceObject
  217. );
  218. if (NT_SUCCESS(status)) {
  219. ObReferenceObject(IpDeviceObject);
  220. SetHookInfo.FirewallPtr = IpfwRoutineTable[i].Routine;
  221. SetHookInfo.Priority = 0; // Unused
  222. SetHookInfo.Add = FALSE;
  223. KeInitializeEvent(&Event, SynchronizationEvent, FALSE);
  224. RegisterIrp =
  225. IoBuildDeviceIoControlRequest(
  226. IOCTL_IP_SET_FIREWALL_HOOK,
  227. IpDeviceObject,
  228. (PVOID)&SetHookInfo,
  229. sizeof(SetHookInfo),
  230. NULL,
  231. 0,
  232. FALSE,
  233. &Event,
  234. &IoStatus
  235. );
  236. if (!RegisterIrp) {
  237. status = STATUS_UNSUCCESSFUL;
  238. } else {
  239. status = IoCallDriver(IpDeviceObject, RegisterIrp);
  240. if (status == STATUS_PENDING) {
  241. KeWaitForSingleObject(
  242. &Event, Executive, KernelMode, FALSE, NULL
  243. );
  244. status = IoStatus.Status;
  245. }
  247. ASSERT(NT_SUCCESS(status));
  248. }
  250. ObDereferenceObject((PVOID)FileObject);
  251. ObDereferenceObject(IpDeviceObject);
  252. }
  254. //
  255. // Release the entry in the table of routines.
  256. //
  258. KeAcquireSpinLock(&IpfwRoutineLock, &Irql);
  259. IpfwRoutineTable[i].Flags &= ~IPFW_ROUTINE_FLAG_REGISTERED;
  260. KeReleaseSpinLock(&IpfwRoutineLock, Irql);
  262. Irp->IoStatus.Status = STATUS_SUCCESS;
  263. Irp->IoStatus.Information = 0;
  264. IoCompleteRequest(Irp, IO_NO_INCREMENT);
  265. return STATUS_SUCCESS;
  266. } // IpfwClose
  269. NTSTATUS
  270. IpfwCreate(
  271. PDEVICE_OBJECT DeviceObject,
  272. PIRP Irp
  273. )
  275. /*++
  277. Routine Description:
  279. This routine is invoked by the I/O manager to inform us that a handle has
  280. been opened on our device-object.
  281. --*/
  283. {
  284. PIPFW_CREATE_PACKET CreatePacket;
  285. UNICODE_STRING DeviceString;
  286. PFILE_FULL_EA_INFORMATION EaBuffer;
  287. KEVENT Event;
  288. PFILE_OBJECT FileObject;
  289. ULONG i;
  290. IO_STATUS_BLOCK IoStatus;
  291. PDEVICE_OBJECT IpDeviceObject;
  292. KIRQL Irql;
  293. UINT Priority;
  294. PIRP RegisterIrp;
  295. IP_SET_FIREWALL_HOOK_INFO SetHookInfo;
  296. NTSTATUS status;
  298. KdPrint(("IpfwCreate\n"));
  300. //
  301. // Extract the parameters supplied by the caller.
  302. //
  304. if ((EaBuffer = Irp->AssociatedIrp.SystemBuffer) &&
  305. EaBuffer->EaValueLength >= sizeof(IPFW_CREATE_PACKET)) {
  306. CreatePacket =
  307. (PIPFW_CREATE_PACKET)
  308. (EaBuffer->EaName + EaBuffer->EaNameLength + 1);
  309. Priority = CreatePacket->Priority;
  310. } else {
  311. Priority = 0;
  312. }
  314. //
  315. // Look for a free entry in the function-table
  316. //
  318. KeAcquireSpinLock(&IpfwRoutineLock, &Irql);
  319. for (i = 0; i < IPFW_ROUTINE_COUNT; i++) {
  320. if (!(IpfwRoutineTable[i].Flags & IPFW_ROUTINE_FLAG_REGISTERED)) {
  321. IpfwRoutineTable[i].Flags |= IPFW_ROUTINE_FLAG_REGISTERED;
  322. break;
  323. }
  324. }
  325. KeReleaseSpinLock(&IpfwRoutineLock, Irql);
  327. if (i >= IPFW_ROUTINE_COUNT) {
  328. status = STATUS_UNSUCCESSFUL;
  329. } else {
  331. //
  332. // Obtain a pointer to the IP device-object,
  333. // construct a registration IRP, and attempt to register the routine
  334. // selected above.
  335. //
  337. RtlInitUnicodeString(&DeviceString, DD_IP_DEVICE_NAME);
  338. status =
  339. IoGetDeviceObjectPointer(
  340. &DeviceString,
  341. SYNCHRONIZE|GENERIC_READ|GENERIC_WRITE,
  342. &FileObject,
  343. &IpDeviceObject
  344. );
  345. if (NT_SUCCESS(status)) {
  346. ObReferenceObject(IpDeviceObject);
  347. SetHookInfo.FirewallPtr = IpfwRoutineTable[i].Routine;
  348. SetHookInfo.Priority = Priority ? Priority : i + 1;
  349. SetHookInfo.Add = TRUE;
  350. KeInitializeEvent(&Event, SynchronizationEvent, FALSE);
  351. RegisterIrp =
  352. IoBuildDeviceIoControlRequest(
  353. IOCTL_IP_SET_FIREWALL_HOOK,
  354. IpDeviceObject,
  355. (PVOID)&SetHookInfo,
  356. sizeof(SetHookInfo),
  357. NULL,
  358. 0,
  359. FALSE,
  360. &Event,
  361. &IoStatus
  362. );
  363. if (!RegisterIrp) {
  364. status = STATUS_UNSUCCESSFUL;
  365. } else {
  366. status = IoCallDriver(IpDeviceObject, RegisterIrp);
  367. if (status == STATUS_PENDING) {
  368. KeWaitForSingleObject(
  369. &Event, Executive, KernelMode, FALSE, NULL
  370. );
  371. status = IoStatus.Status;
  372. }
  373. }
  375. ObDereferenceObject((PVOID)FileObject);
  376. ObDereferenceObject(IpDeviceObject);
  377. }
  379. //
  380. // If the routine was successfully registered, remember its index
  381. // in the client's file-object. Otherwise, if the routine could not be
  382. // registered for any reason, release it.
  383. //
  385. if (NT_SUCCESS(status)) {
  386. IoGetCurrentIrpStackLocation(Irp)->FileObject->FsContext = UlongToPtr(i);
  387. } else {
  388. KeAcquireSpinLock(&IpfwRoutineLock, &Irql);
  389. IpfwRoutineTable[i].Flags &= ~IPFW_ROUTINE_FLAG_REGISTERED;
  390. KeReleaseSpinLock(&IpfwRoutineLock, Irql);
  391. }
  392. }
  394. IoStatus.Status = status;
  395. IoStatus.Information = 0;
  396. IoCompleteRequest(Irp, IO_NO_INCREMENT);
  398. return status;
  400. } // IpfwCreate
  403. VOID
  404. IpfwUnload(
  405. IN PDRIVER_OBJECT DriverObject
  406. )
  408. /*++
  410. Routine Description:
  412. This routine is invoked by the I/O manager to unload this driver.
  414. Arguments:
  416. DriverObject - the object for this driver
  418. Return Value:
  420. none.
  422. --*/
  424. {
  425. KdPrint(("IpfwUnload\n"));
  426. if (IpfwDeviceObject) {
  427. IoDeleteDevice(IpfwDeviceObject);
  428. }
  429. }