archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 7b07a90fc1
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '7b07a90fc1'
${ noResults }
windows-server-2003/base/ntos/inc/ob.h

1119 lines
28 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. /*++ BUILD Version: 0002 // Increment this if a change has global effects
  3. Copyright (c) 1989 Microsoft Corporation
  5. Module Name:
  7. ob.h
  9. Abstract:
  11. This module contains the object manager structure public data
  12. structures and procedure prototypes to be used within the NT
  13. system.
  15. Author:
  17. Steve Wood (stevewo) 28-Mar-1989
  19. Revision History:
  21. --*/
  23. #ifndef _OB_
  24. #define _OB_
  26. //
  27. // System Initialization procedure for OB subcomponent of NTOS
  28. //
  29. BOOLEAN
  30. ObInitSystem( VOID );
  32. VOID
  33. ObShutdownSystem(
  34. IN ULONG Phase
  35. );
  37. NTSTATUS
  38. ObInitProcess(
  39. PEPROCESS ParentProcess OPTIONAL,
  40. PEPROCESS NewProcess
  41. );
  43. VOID
  44. ObInitProcess2(
  45. PEPROCESS NewProcess
  46. );
  48. VOID
  49. ObKillProcess(
  50. PEPROCESS Process
  51. );
  53. VOID
  54. ObClearProcessHandleTable (
  55. PEPROCESS Process
  56. );
  58. VOID
  59. ObDereferenceProcessHandleTable (
  60. PEPROCESS SourceProcess
  61. );
  63. PHANDLE_TABLE
  64. ObReferenceProcessHandleTable (
  65. PEPROCESS SourceProcess
  66. );
  68. ULONG
  69. ObGetProcessHandleCount (
  70. PEPROCESS Process
  71. );
  74. NTSTATUS
  75. ObDuplicateObject (
  76. IN PEPROCESS SourceProcess,
  77. IN HANDLE SourceHandle,
  78. IN PEPROCESS TargetProcess OPTIONAL,
  79. OUT PHANDLE TargetHandle OPTIONAL,
  80. IN ACCESS_MASK DesiredAccess,
  81. IN ULONG HandleAttributes,
  82. IN ULONG Options,
  83. IN KPROCESSOR_MODE PreviousMode
  84. );
  86. // begin_ntddk begin_wdm begin_nthal begin_ntosp begin_ntifs
  87. //
  88. // Object Manager types
  89. //
  91. typedef struct _OBJECT_HANDLE_INFORMATION {
  92. ULONG HandleAttributes;
  93. ACCESS_MASK GrantedAccess;
  94. } OBJECT_HANDLE_INFORMATION, *POBJECT_HANDLE_INFORMATION;
  96. // end_ntddk end_wdm end_nthal end_ntifs
  98. typedef struct _OBJECT_DUMP_CONTROL {
  99. PVOID Stream;
  100. ULONG Detail;
  101. } OB_DUMP_CONTROL, *POB_DUMP_CONTROL;
  103. typedef VOID (*OB_DUMP_METHOD)(
  104. IN PVOID Object,
  105. IN POB_DUMP_CONTROL Control OPTIONAL
  106. );
  108. typedef enum _OB_OPEN_REASON {
  109. ObCreateHandle,
  110. ObOpenHandle,
  111. ObDuplicateHandle,
  112. ObInheritHandle,
  113. ObMaxOpenReason
  114. } OB_OPEN_REASON;
  117. typedef NTSTATUS (*OB_OPEN_METHOD)(
  118. IN OB_OPEN_REASON OpenReason,
  119. IN PEPROCESS Process OPTIONAL,
  120. IN PVOID Object,
  121. IN ACCESS_MASK GrantedAccess,
  122. IN ULONG HandleCount
  123. );
  125. typedef BOOLEAN (*OB_OKAYTOCLOSE_METHOD)(
  126. IN PEPROCESS Process OPTIONAL,
  127. IN PVOID Object,
  128. IN HANDLE Handle,
  129. IN KPROCESSOR_MODE PreviousMode
  130. );
  132. typedef VOID (*OB_CLOSE_METHOD)(
  133. IN PEPROCESS Process OPTIONAL,
  134. IN PVOID Object,
  135. IN ACCESS_MASK GrantedAccess,
  136. IN ULONG_PTR ProcessHandleCount,
  137. IN ULONG_PTR SystemHandleCount
  138. );
  140. typedef VOID (*OB_DELETE_METHOD)(
  141. IN PVOID Object
  142. );
  144. typedef NTSTATUS (*OB_PARSE_METHOD)(
  145. IN PVOID ParseObject,
  146. IN PVOID ObjectType,
  147. IN OUT PACCESS_STATE AccessState,
  148. IN KPROCESSOR_MODE AccessMode,
  149. IN ULONG Attributes,
  150. IN OUT PUNICODE_STRING CompleteName,
  151. IN OUT PUNICODE_STRING RemainingName,
  152. IN OUT PVOID Context OPTIONAL,
  153. IN PSECURITY_QUALITY_OF_SERVICE SecurityQos OPTIONAL,
  154. OUT PVOID *Object
  155. );
  157. typedef NTSTATUS (*OB_SECURITY_METHOD)(
  158. IN PVOID Object,
  159. IN SECURITY_OPERATION_CODE OperationCode,
  160. IN PSECURITY_INFORMATION SecurityInformation,
  161. IN OUT PSECURITY_DESCRIPTOR SecurityDescriptor,
  162. IN OUT PULONG CapturedLength,
  163. IN OUT PSECURITY_DESCRIPTOR *ObjectsSecurityDescriptor,
  164. IN POOL_TYPE PoolType,
  165. IN PGENERIC_MAPPING GenericMapping
  166. );
  168. typedef NTSTATUS (*OB_QUERYNAME_METHOD)(
  169. IN PVOID Object,
  170. IN BOOLEAN HasObjectName,
  171. OUT POBJECT_NAME_INFORMATION ObjectNameInfo,
  172. IN ULONG Length,
  173. OUT PULONG ReturnLength,
  174. IN KPROCESSOR_MODE Mode
  175. );
  177. /*
  179. A security method and its caller must obey the following w.r.t.
  180. capturing and probing parameters:
  182. For a query operation, the caller must pass a kernel space address for
  183. CapturedLength. The caller should be able to assume that it points to
  184. valid data that will not change. In addition, the SecurityDescriptor
  185. parameter (which will receive the result of the query operation) must
  186. be probed for write up to the length given in CapturedLength. The
  187. security method itself must always write to the SecurityDescriptor
  188. buffer in a try clause in case the caller de-allocates it.
  190. For a set operation, the SecurityDescriptor parameter must have
  191. been captured via SeCaptureSecurityDescriptor. This parameter is
  192. not optional, and therefore may not be NULL.
  194. */
  198. //
  199. // Prototypes for Win32 WindowStation and Desktop object callout routines
  200. //
  201. typedef struct _WIN32_OPENMETHOD_PARAMETERS {
  202. OB_OPEN_REASON OpenReason;
  203. PEPROCESS Process;
  204. PVOID Object;
  205. ACCESS_MASK GrantedAccess;
  206. ULONG HandleCount;
  207. } WIN32_OPENMETHOD_PARAMETERS, *PKWIN32_OPENMETHOD_PARAMETERS;
  209. typedef
  210. NTSTATUS
  211. (*PKWIN32_OPENMETHOD_CALLOUT) ( PKWIN32_OPENMETHOD_PARAMETERS );
  212. extern PKWIN32_OPENMETHOD_CALLOUT ExDesktopOpenProcedureCallout;
  213. extern PKWIN32_OPENMETHOD_CALLOUT ExWindowStationOpenProcedureCallout;
  217. typedef struct _WIN32_OKAYTOCLOSEMETHOD_PARAMETERS {
  218. PEPROCESS Process;
  219. PVOID Object;
  220. HANDLE Handle;
  221. KPROCESSOR_MODE PreviousMode;
  222. } WIN32_OKAYTOCLOSEMETHOD_PARAMETERS, *PKWIN32_OKAYTOCLOSEMETHOD_PARAMETERS;
  224. typedef
  225. NTSTATUS
  226. (*PKWIN32_OKTOCLOSEMETHOD_CALLOUT) ( PKWIN32_OKAYTOCLOSEMETHOD_PARAMETERS );
  227. extern PKWIN32_OKTOCLOSEMETHOD_CALLOUT ExDesktopOkToCloseProcedureCallout;
  228. extern PKWIN32_OKTOCLOSEMETHOD_CALLOUT ExWindowStationOkToCloseProcedureCallout;
  232. typedef struct _WIN32_CLOSEMETHOD_PARAMETERS {
  233. PEPROCESS Process;
  234. PVOID Object;
  235. ACCESS_MASK GrantedAccess;
  236. ULONG ProcessHandleCount;
  237. ULONG SystemHandleCount;
  238. } WIN32_CLOSEMETHOD_PARAMETERS, *PKWIN32_CLOSEMETHOD_PARAMETERS;
  239. typedef
  240. NTSTATUS
  241. (*PKWIN32_CLOSEMETHOD_CALLOUT) ( PKWIN32_CLOSEMETHOD_PARAMETERS );
  242. extern PKWIN32_CLOSEMETHOD_CALLOUT ExDesktopCloseProcedureCallout;
  243. extern PKWIN32_CLOSEMETHOD_CALLOUT ExWindowStationCloseProcedureCallout;
  247. typedef struct _WIN32_DELETEMETHOD_PARAMETERS {
  248. PVOID Object;
  249. } WIN32_DELETEMETHOD_PARAMETERS, *PKWIN32_DELETEMETHOD_PARAMETERS;
  250. typedef
  251. NTSTATUS
  252. (*PKWIN32_DELETEMETHOD_CALLOUT) ( PKWIN32_DELETEMETHOD_PARAMETERS );
  253. extern PKWIN32_DELETEMETHOD_CALLOUT ExDesktopDeleteProcedureCallout;
  254. extern PKWIN32_DELETEMETHOD_CALLOUT ExWindowStationDeleteProcedureCallout;
  257. typedef struct _WIN32_PARSEMETHOD_PARAMETERS {
  258. PVOID ParseObject;
  259. PVOID ObjectType;
  260. PACCESS_STATE AccessState;
  261. KPROCESSOR_MODE AccessMode;
  262. ULONG Attributes;
  263. PUNICODE_STRING CompleteName;
  264. PUNICODE_STRING RemainingName;
  265. PVOID Context OPTIONAL;
  266. PSECURITY_QUALITY_OF_SERVICE SecurityQos;
  267. PVOID *Object;
  268. } WIN32_PARSEMETHOD_PARAMETERS, *PKWIN32_PARSEMETHOD_PARAMETERS;
  269. typedef
  270. NTSTATUS
  271. (*PKWIN32_PARSEMETHOD_CALLOUT) ( PKWIN32_PARSEMETHOD_PARAMETERS );
  272. extern PKWIN32_PARSEMETHOD_CALLOUT ExWindowStationParseProcedureCallout;
  275. //
  276. // Object Type Structure
  277. //
  279. typedef struct _OBJECT_TYPE_INITIALIZER {
  280. USHORT Length;
  281. BOOLEAN UseDefaultObject;
  282. BOOLEAN CaseInsensitive;
  283. ULONG InvalidAttributes;
  284. GENERIC_MAPPING GenericMapping;
  285. ULONG ValidAccessMask;
  286. BOOLEAN SecurityRequired;
  287. BOOLEAN MaintainHandleCount;
  288. BOOLEAN MaintainTypeList;
  289. POOL_TYPE PoolType;
  290. ULONG DefaultPagedPoolCharge;
  291. ULONG DefaultNonPagedPoolCharge;
  292. OB_DUMP_METHOD DumpProcedure;
  293. OB_OPEN_METHOD OpenProcedure;
  294. OB_CLOSE_METHOD CloseProcedure;
  295. OB_DELETE_METHOD DeleteProcedure;
  296. OB_PARSE_METHOD ParseProcedure;
  297. OB_SECURITY_METHOD SecurityProcedure;
  298. OB_QUERYNAME_METHOD QueryNameProcedure;
  299. OB_OKAYTOCLOSE_METHOD OkayToCloseProcedure;
  300. } OBJECT_TYPE_INITIALIZER, *POBJECT_TYPE_INITIALIZER;
  302. #define OBJECT_LOCK_COUNT 4
  304. typedef struct _OBJECT_TYPE {
  305. ERESOURCE Mutex;
  306. LIST_ENTRY TypeList;
  307. UNICODE_STRING Name; // Copy from object header for convenience
  308. PVOID DefaultObject;
  309. ULONG Index;
  310. ULONG TotalNumberOfObjects;
  311. ULONG TotalNumberOfHandles;
  312. ULONG HighWaterNumberOfObjects;
  313. ULONG HighWaterNumberOfHandles;
  314. OBJECT_TYPE_INITIALIZER TypeInfo;
  315. #ifdef POOL_TAGGING
  316. ULONG Key;
  317. #endif //POOL_TAGGING
  318. ERESOURCE ObjectLocks[ OBJECT_LOCK_COUNT ];
  319. } OBJECT_TYPE, *POBJECT_TYPE;
  321. //
  322. // Object Directory Structure
  323. //
  325. #define NUMBER_HASH_BUCKETS 37
  326. #define OBJ_INVALID_SESSION_ID 0xFFFFFFFF
  328. typedef struct _OBJECT_DIRECTORY {
  329. struct _OBJECT_DIRECTORY_ENTRY *HashBuckets[ NUMBER_HASH_BUCKETS ];
  330. EX_PUSH_LOCK Lock;
  331. struct _DEVICE_MAP *DeviceMap;
  332. ULONG SessionId;
  333. #if 0
  334. USHORT Reserved;
  335. USHORT SymbolicLinkUsageCount;
  336. #endif
  337. } OBJECT_DIRECTORY, *POBJECT_DIRECTORY;
  338. // end_ntosp
  340. //
  341. // Object Directory Entry Structure
  342. //
  343. typedef struct _OBJECT_DIRECTORY_ENTRY {
  344. struct _OBJECT_DIRECTORY_ENTRY *ChainLink;
  345. PVOID Object;
  346. } OBJECT_DIRECTORY_ENTRY, *POBJECT_DIRECTORY_ENTRY;
  349. //
  350. // Symbolic Link Object Structure
  351. //
  353. typedef struct _OBJECT_SYMBOLIC_LINK {
  354. LARGE_INTEGER CreationTime;
  355. UNICODE_STRING LinkTarget;
  356. UNICODE_STRING LinkTargetRemaining;
  357. PVOID LinkTargetObject;
  358. ULONG DosDeviceDriveIndex; // 1-based index into KUSER_SHARED_DATA.DosDeviceDriveType
  359. } OBJECT_SYMBOLIC_LINK, *POBJECT_SYMBOLIC_LINK;
  362. //
  363. // Device Map Structure
  364. //
  366. typedef struct _DEVICE_MAP {
  367. POBJECT_DIRECTORY DosDevicesDirectory;
  368. POBJECT_DIRECTORY GlobalDosDevicesDirectory;
  369. ULONG ReferenceCount;
  370. ULONG DriveMap;
  371. UCHAR DriveType[ 32 ];
  372. } DEVICE_MAP, *PDEVICE_MAP;
  374. extern PDEVICE_MAP ObSystemDeviceMap;
  376. //
  377. // Object Handle Count Database
  378. //
  380. typedef struct _OBJECT_HANDLE_COUNT_ENTRY {
  381. PEPROCESS Process;
  382. ULONG HandleCount;
  383. } OBJECT_HANDLE_COUNT_ENTRY, *POBJECT_HANDLE_COUNT_ENTRY;
  385. typedef struct _OBJECT_HANDLE_COUNT_DATABASE {
  386. ULONG CountEntries;
  387. OBJECT_HANDLE_COUNT_ENTRY HandleCountEntries[ 1 ];
  388. } OBJECT_HANDLE_COUNT_DATABASE, *POBJECT_HANDLE_COUNT_DATABASE;
  390. //
  391. // Object Header Structure
  392. //
  393. // The SecurityQuotaCharged is the amount of quota charged to cover
  394. // the GROUP and DISCRETIONARY ACL fields of the security descriptor
  395. // only. The OWNER and SYSTEM ACL fields get charged for at a fixed
  396. // rate that may be less than or greater than the amount actually used.
  397. //
  398. // If the object has no security, then the SecurityQuotaCharged and the
  399. // SecurityQuotaInUse fields are set to zero.
  400. //
  401. // Modification of the OWNER and SYSTEM ACL fields should never fail
  402. // due to quota exceeded problems. Modifications to the GROUP and
  403. // DISCRETIONARY ACL fields may fail due to quota exceeded problems.
  404. //
  405. //
  408. typedef struct _OBJECT_CREATE_INFORMATION {
  409. ULONG Attributes;
  410. HANDLE RootDirectory;
  411. PVOID ParseContext;
  412. KPROCESSOR_MODE ProbeMode;
  413. ULONG PagedPoolCharge;
  414. ULONG NonPagedPoolCharge;
  415. ULONG SecurityDescriptorCharge;
  416. PSECURITY_DESCRIPTOR SecurityDescriptor;
  417. PSECURITY_QUALITY_OF_SERVICE SecurityQos;
  418. SECURITY_QUALITY_OF_SERVICE SecurityQualityOfService;
  419. } OBJECT_CREATE_INFORMATION;
  421. // begin_ntosp
  422. typedef struct _OBJECT_CREATE_INFORMATION *POBJECT_CREATE_INFORMATION;;
  424. typedef struct _OBJECT_HEADER {
  425. LONG_PTR PointerCount;
  426. union {
  427. LONG_PTR HandleCount;
  428. PVOID NextToFree;
  429. };
  430. POBJECT_TYPE Type;
  431. UCHAR NameInfoOffset;
  432. UCHAR HandleInfoOffset;
  433. UCHAR QuotaInfoOffset;
  434. UCHAR Flags;
  436. union {
  437. POBJECT_CREATE_INFORMATION ObjectCreateInfo;
  438. PVOID QuotaBlockCharged;
  439. };
  441. PSECURITY_DESCRIPTOR SecurityDescriptor;
  442. QUAD Body;
  443. } OBJECT_HEADER, *POBJECT_HEADER;
  444. // end_ntosp
  446. typedef struct _OBJECT_HEADER_QUOTA_INFO {
  447. ULONG PagedPoolCharge;
  448. ULONG NonPagedPoolCharge;
  449. ULONG SecurityDescriptorCharge;
  450. PEPROCESS ExclusiveProcess;
  451. #ifdef _WIN64
  452. ULONG64 Reserved; // Win64 requires these structures to be 16 byte aligned.
  453. #endif
  454. } OBJECT_HEADER_QUOTA_INFO, *POBJECT_HEADER_QUOTA_INFO;
  456. typedef struct _OBJECT_HEADER_HANDLE_INFO {
  457. union {
  458. POBJECT_HANDLE_COUNT_DATABASE HandleCountDataBase;
  459. OBJECT_HANDLE_COUNT_ENTRY SingleEntry;
  460. };
  461. } OBJECT_HEADER_HANDLE_INFO, *POBJECT_HEADER_HANDLE_INFO;
  463. // begin_ntosp
  464. typedef struct _OBJECT_HEADER_NAME_INFO {
  465. POBJECT_DIRECTORY Directory;
  466. UNICODE_STRING Name;
  467. ULONG QueryReferences;
  468. #if DBG
  469. ULONG Reserved2;
  470. LONG DbgDereferenceCount;
  471. #ifdef _WIN64
  472. ULONG64 Reserved3; // Win64 requires these structures to be 16 byte aligned.
  473. #endif
  474. #endif
  475. } OBJECT_HEADER_NAME_INFO, *POBJECT_HEADER_NAME_INFO;
  476. // end_ntosp
  478. typedef struct _OBJECT_HEADER_CREATOR_INFO {
  479. LIST_ENTRY TypeList;
  480. HANDLE CreatorUniqueProcess;
  481. USHORT CreatorBackTraceIndex;
  482. USHORT Reserved;
  483. } OBJECT_HEADER_CREATOR_INFO, *POBJECT_HEADER_CREATOR_INFO;
  485. #define OB_FLAG_NEW_OBJECT 0x01
  486. #define OB_FLAG_KERNEL_OBJECT 0x02
  487. #define OB_FLAG_CREATOR_INFO 0x04
  488. #define OB_FLAG_EXCLUSIVE_OBJECT 0x08
  489. #define OB_FLAG_PERMANENT_OBJECT 0x10
  490. #define OB_FLAG_DEFAULT_SECURITY_QUOTA 0x20
  491. #define OB_FLAG_SINGLE_HANDLE_ENTRY 0x40
  492. #define OB_FLAG_DELETED_INLINE 0x80
  494. // begin_ntosp
  495. #define OBJECT_TO_OBJECT_HEADER( o ) \
  496. CONTAINING_RECORD( (o), OBJECT_HEADER, Body )
  497. // end_ntosp
  499. #define OBJECT_HEADER_TO_EXCLUSIVE_PROCESS( oh ) ((oh->Flags & OB_FLAG_EXCLUSIVE_OBJECT) == 0 ? \
  500. NULL : (((POBJECT_HEADER_QUOTA_INFO)((PCHAR)(oh) - (oh)->QuotaInfoOffset))->ExclusiveProcess))
  503. #define OBJECT_HEADER_TO_QUOTA_INFO( oh ) ((POBJECT_HEADER_QUOTA_INFO) \
  504. ((oh)->QuotaInfoOffset == 0 ? NULL : ((PCHAR)(oh) - (oh)->QuotaInfoOffset)))
  506. #define OBJECT_HEADER_TO_HANDLE_INFO( oh ) ((POBJECT_HEADER_HANDLE_INFO) \
  507. ((oh)->HandleInfoOffset == 0 ? NULL : ((PCHAR)(oh) - (oh)->HandleInfoOffset)))
  509. // begin_ntosp
  510. #define OBJECT_HEADER_TO_NAME_INFO( oh ) ((POBJECT_HEADER_NAME_INFO) \
  511. ((oh)->NameInfoOffset == 0 ? NULL : ((PCHAR)(oh) - (oh)->NameInfoOffset)))
  513. #define OBJECT_HEADER_TO_CREATOR_INFO( oh ) ((POBJECT_HEADER_CREATOR_INFO) \
  514. (((oh)->Flags & OB_FLAG_CREATOR_INFO) == 0 ? NULL : ((PCHAR)(oh) - sizeof(OBJECT_HEADER_CREATOR_INFO))))
  516. NTKERNELAPI
  517. NTSTATUS
  518. ObCreateObjectType(
  519. IN PUNICODE_STRING TypeName,
  520. IN POBJECT_TYPE_INITIALIZER ObjectTypeInitializer,
  521. IN PSECURITY_DESCRIPTOR SecurityDescriptor OPTIONAL,
  522. OUT POBJECT_TYPE *ObjectType
  523. );
  525. #define OBJ_PROTECT_CLOSE 0x00000001L
  527. // end_ntosp
  529. VOID
  530. FASTCALL
  531. ObFreeObjectCreateInfoBuffer(
  532. IN POBJECT_CREATE_INFORMATION ObjectCreateInfo
  533. );
  535. NTSTATUS
  536. ObSetDirectoryDeviceMap (
  537. OUT PDEVICE_MAP *ppDeviceMap OPTIONAL,
  538. IN HANDLE DirectoryHandle
  539. );
  541. ULONG
  542. ObIsLUIDDeviceMapsEnabled (
  543. );
  545. ULONG
  546. ObGetSecurityMode (
  547. );
  549. BOOLEAN
  550. ObIsObjectDeletionInline(
  551. IN PVOID Object
  552. );
  554. FORCEINLINE
  555. ULONG
  556. ObSanitizeHandleAttributes (
  557. IN ULONG HandleAttributes,
  558. IN KPROCESSOR_MODE Mode
  559. )
  560. {
  561. if (Mode == KernelMode) {
  562. return HandleAttributes & OBJ_VALID_ATTRIBUTES;
  563. } else {
  564. return HandleAttributes & (OBJ_VALID_ATTRIBUTES&~OBJ_KERNEL_HANDLE);
  565. }
  566. }
  568. // begin_nthal
  570. // begin_ntosp
  572. NTKERNELAPI
  573. VOID
  574. ObDeleteCapturedInsertInfo(
  575. IN PVOID Object
  576. );
  579. NTKERNELAPI
  580. NTSTATUS
  581. ObCreateObject(
  582. IN KPROCESSOR_MODE ProbeMode,
  583. IN POBJECT_TYPE ObjectType,
  584. IN POBJECT_ATTRIBUTES ObjectAttributes OPTIONAL,
  585. IN KPROCESSOR_MODE OwnershipMode,
  586. IN OUT PVOID ParseContext OPTIONAL,
  587. IN ULONG ObjectBodySize,
  588. IN ULONG PagedPoolCharge,
  589. IN ULONG NonPagedPoolCharge,
  590. OUT PVOID *Object
  591. );
  593. //
  594. // These inlines correct an issue where the compiler refetches
  595. // the output object over and over again because it thinks its
  596. // a possible alias for other stores.
  597. //
  598. FORCEINLINE
  599. NTSTATUS
  600. _ObCreateObject(
  601. IN KPROCESSOR_MODE ProbeMode,
  602. IN POBJECT_TYPE ObjectType,
  603. IN POBJECT_ATTRIBUTES ObjectAttributes OPTIONAL,
  604. IN KPROCESSOR_MODE OwnershipMode,
  605. IN OUT PVOID ParseContext OPTIONAL,
  606. IN ULONG ObjectBodySize,
  607. IN ULONG PagedPoolCharge,
  608. IN ULONG NonPagedPoolCharge,
  609. OUT PVOID *pObject
  610. )
  611. {
  612. PVOID Object;
  613. NTSTATUS Status;
  615. Status = ObCreateObject (ProbeMode,
  616. ObjectType,
  617. ObjectAttributes,
  618. OwnershipMode,
  619. ParseContext,
  620. ObjectBodySize,
  621. PagedPoolCharge,
  622. NonPagedPoolCharge,
  623. &Object);
  624. *pObject = Object;
  625. return Status;
  626. }
  628. #define ObCreateObject _ObCreateObject
  631. NTKERNELAPI
  632. NTSTATUS
  633. ObInsertObject(
  634. IN PVOID Object,
  635. IN PACCESS_STATE PassedAccessState OPTIONAL,
  636. IN ACCESS_MASK DesiredAccess OPTIONAL,
  637. IN ULONG ObjectPointerBias,
  638. OUT PVOID *NewObject OPTIONAL,
  639. OUT PHANDLE Handle OPTIONAL
  640. );
  642. // end_nthal
  644. NTKERNELAPI // ntddk wdm nthal ntifs
  645. NTSTATUS // ntddk wdm nthal ntifs
  646. ObReferenceObjectByHandle( // ntddk wdm nthal ntifs
  647. IN HANDLE Handle, // ntddk wdm nthal ntifs
  648. IN ACCESS_MASK DesiredAccess, // ntddk wdm nthal ntifs
  649. IN POBJECT_TYPE ObjectType OPTIONAL, // ntddk wdm nthal ntifs
  650. IN KPROCESSOR_MODE AccessMode, // ntddk wdm nthal ntifs
  651. OUT PVOID *Object, // ntddk wdm nthal ntifs
  652. OUT POBJECT_HANDLE_INFORMATION HandleInformation OPTIONAL // ntddk wdm nthal ntifs
  653. ); // ntddk wdm nthal ntifs
  655. FORCEINLINE
  656. NTSTATUS
  657. _ObReferenceObjectByHandle(
  658. IN HANDLE Handle,
  659. IN ACCESS_MASK DesiredAccess,
  660. IN POBJECT_TYPE ObjectType OPTIONAL,
  661. IN KPROCESSOR_MODE AccessMode,
  662. OUT PVOID *pObject,
  663. OUT POBJECT_HANDLE_INFORMATION pHandleInformation OPTIONAL
  664. )
  665. {
  666. PVOID Object;
  667. NTSTATUS Status;
  669. Status = ObReferenceObjectByHandle (Handle,
  670. DesiredAccess,
  671. ObjectType,
  672. AccessMode,
  673. &Object,
  674. pHandleInformation);
  675. *pObject = Object;
  676. return Status;
  677. }
  679. #define ObReferenceObjectByHandle _ObReferenceObjectByHandle
  681. NTKERNELAPI
  682. NTSTATUS
  683. ObReferenceFileObjectForWrite(
  684. IN HANDLE Handle,
  685. IN KPROCESSOR_MODE AccessMode,
  686. OUT PVOID *FileObject,
  687. OUT POBJECT_HANDLE_INFORMATION HandleInformation
  688. );
  690. NTKERNELAPI
  691. NTSTATUS
  692. ObOpenObjectByName(
  693. IN POBJECT_ATTRIBUTES ObjectAttributes,
  694. IN POBJECT_TYPE ObjectType,
  695. IN KPROCESSOR_MODE AccessMode,
  696. IN OUT PACCESS_STATE PassedAccessState OPTIONAL,
  697. IN ACCESS_MASK DesiredAccess OPTIONAL,
  698. IN OUT PVOID ParseContext OPTIONAL,
  699. OUT PHANDLE Handle
  700. );
  703. NTKERNELAPI // ntifs
  704. NTSTATUS // ntifs
  705. ObOpenObjectByPointer( // ntifs
  706. IN PVOID Object, // ntifs
  707. IN ULONG HandleAttributes, // ntifs
  708. IN PACCESS_STATE PassedAccessState OPTIONAL, // ntifs
  709. IN ACCESS_MASK DesiredAccess OPTIONAL, // ntifs
  710. IN POBJECT_TYPE ObjectType OPTIONAL, // ntifs
  711. IN KPROCESSOR_MODE AccessMode, // ntifs
  712. OUT PHANDLE Handle // ntifs
  713. ); // ntifs
  715. NTSTATUS
  716. ObReferenceObjectByName(
  717. IN PUNICODE_STRING ObjectName,
  718. IN ULONG Attributes,
  719. IN PACCESS_STATE PassedAccessState OPTIONAL,
  720. IN ACCESS_MASK DesiredAccess OPTIONAL,
  721. IN POBJECT_TYPE ObjectType,
  722. IN KPROCESSOR_MODE AccessMode,
  723. IN OUT PVOID ParseContext OPTIONAL,
  724. OUT PVOID *Object
  725. );
  727. // end_ntosp
  729. NTKERNELAPI // ntifs
  730. VOID // ntifs
  731. ObMakeTemporaryObject( // ntifs
  732. IN PVOID Object // ntifs
  733. ); // ntifs
  735. // begin_ntosp
  737. NTKERNELAPI
  738. BOOLEAN
  739. ObFindHandleForObject(
  740. IN PEPROCESS Process,
  741. IN PVOID Object,
  742. IN POBJECT_TYPE ObjectType OPTIONAL,
  743. IN POBJECT_HANDLE_INFORMATION MatchCriteria OPTIONAL,
  744. OUT PHANDLE Handle
  745. );
  747. // begin_ntddk begin_wdm begin_nthal begin_ntifs
  749. #define ObDereferenceObject(a) \
  750. ObfDereferenceObject(a)
  752. #define ObReferenceObject(Object) ObfReferenceObject(Object)
  754. NTKERNELAPI
  755. LONG_PTR
  756. FASTCALL
  757. ObfReferenceObject(
  758. IN PVOID Object
  759. );
  761. NTKERNELAPI
  762. NTSTATUS
  763. ObReferenceObjectByPointer(
  764. IN PVOID Object,
  765. IN ACCESS_MASK DesiredAccess,
  766. IN POBJECT_TYPE ObjectType,
  767. IN KPROCESSOR_MODE AccessMode
  768. );
  770. NTKERNELAPI
  771. LONG_PTR
  772. FASTCALL
  773. ObfDereferenceObject(
  774. IN PVOID Object
  775. );
  777. // end_ntddk end_wdm end_nthal end_ntifs end_ntosp
  779. NTKERNELAPI
  780. BOOLEAN
  781. FASTCALL
  782. ObReferenceObjectSafe (
  783. IN PVOID Object
  784. );
  786. NTKERNELAPI
  787. LONG_PTR
  788. FASTCALL
  789. ObReferenceObjectEx (
  790. IN PVOID Object,
  791. IN ULONG Count
  792. );
  794. LONG_PTR
  795. FASTCALL
  796. ObDereferenceObjectEx (
  797. IN PVOID Object,
  798. IN ULONG Count
  799. );
  801. NTSTATUS
  802. ObWaitForSingleObject(
  803. IN HANDLE Handle,
  804. IN BOOLEAN Alertable,
  805. IN PLARGE_INTEGER Timeout OPTIONAL
  806. );
  808. VOID
  809. ObDereferenceObjectDeferDelete (
  810. IN PVOID Object
  811. );
  813. // begin_ntifs begin_ntosp
  814. NTKERNELAPI
  815. NTSTATUS
  816. ObQueryNameString(
  817. IN PVOID Object,
  818. OUT POBJECT_NAME_INFORMATION ObjectNameInfo,
  819. IN ULONG Length,
  820. OUT PULONG ReturnLength
  821. );
  823. // end_ntifs end_ntosp
  825. #if DBG
  826. PUNICODE_STRING
  827. ObGetObjectName(
  828. IN PVOID Object
  829. );
  830. #endif // DBG
  832. NTSTATUS
  833. ObQueryTypeName(
  834. IN PVOID Object,
  835. PUNICODE_STRING ObjectTypeName,
  836. IN ULONG Length,
  837. OUT PULONG ReturnLength
  838. );
  840. NTSTATUS
  841. ObQueryTypeInfo(
  842. IN POBJECT_TYPE ObjectType,
  843. OUT POBJECT_TYPE_INFORMATION ObjectTypeInfo,
  844. IN ULONG Length,
  845. OUT PULONG ReturnLength
  846. );
  848. NTSTATUS
  849. ObDumpObjectByHandle(
  850. IN HANDLE Handle,
  851. IN POB_DUMP_CONTROL Control OPTIONAL
  852. );
  855. NTSTATUS
  856. ObDumpObjectByPointer(
  857. IN PVOID Object,
  858. IN POB_DUMP_CONTROL Control OPTIONAL
  859. );
  861. NTSTATUS
  862. ObSetDeviceMap(
  863. IN PEPROCESS TargetProcess,
  864. IN HANDLE DirectoryHandle
  865. );
  867. NTSTATUS
  868. ObQueryDeviceMapInformation(
  869. IN PEPROCESS TargetProcess,
  870. OUT PPROCESS_DEVICEMAP_INFORMATION DeviceMapInformation,
  871. IN ULONG Flags
  872. );
  874. VOID
  875. ObInheritDeviceMap(
  876. IN PEPROCESS NewProcess,
  877. IN PEPROCESS ParentProcess
  878. );
  880. VOID
  881. ObDereferenceDeviceMap(
  882. IN PEPROCESS Process
  883. );
  885. // begin_ntifs begin_ntddk begin_wdm begin_ntosp
  886. NTSTATUS
  887. ObGetObjectSecurity(
  888. IN PVOID Object,
  889. OUT PSECURITY_DESCRIPTOR *SecurityDescriptor,
  890. OUT PBOOLEAN MemoryAllocated
  891. );
  893. VOID
  894. ObReleaseObjectSecurity(
  895. IN PSECURITY_DESCRIPTOR SecurityDescriptor,
  896. IN BOOLEAN MemoryAllocated
  897. );
  898. // end_ntifs end_ntddk end_wdm
  899. NTSTATUS
  900. ObLogSecurityDescriptor (
  901. IN PSECURITY_DESCRIPTOR InputSecurityDescriptor,
  902. OUT PSECURITY_DESCRIPTOR *OutputSecurityDescriptor,
  903. ULONG RefBias
  904. );
  906. VOID
  907. ObDereferenceSecurityDescriptor (
  908. PSECURITY_DESCRIPTOR SecurityDescriptor,
  909. ULONG Count
  910. );
  912. VOID
  913. ObReferenceSecurityDescriptor (
  914. IN PSECURITY_DESCRIPTOR SecurityDescriptor,
  915. IN ULONG Count
  916. );
  918. // end_ntosp
  920. NTSTATUS
  921. ObAssignObjectSecurityDescriptor(
  922. IN PVOID Object,
  923. IN PSECURITY_DESCRIPTOR SecurityDescriptor OPTIONAL,
  924. IN POOL_TYPE PoolType
  925. );
  927. NTSTATUS
  928. ObValidateSecurityQuota(
  929. IN PVOID Object,
  930. IN ULONG NewSize
  931. );
  933. // begin_ntosp
  934. NTKERNELAPI
  935. BOOLEAN
  936. ObCheckCreateObjectAccess(
  937. IN PVOID DirectoryObject,
  938. IN ACCESS_MASK CreateAccess,
  939. IN PACCESS_STATE AccessState OPTIONAL,
  940. IN PUNICODE_STRING ComponentName,
  941. IN BOOLEAN TypeMutexLocked,
  942. IN KPROCESSOR_MODE PreviousMode,
  943. OUT PNTSTATUS AccessStatus
  944. );
  946. NTKERNELAPI
  947. BOOLEAN
  948. ObCheckObjectAccess(
  949. IN PVOID Object,
  950. IN PACCESS_STATE AccessState,
  951. IN BOOLEAN TypeMutexLocked,
  952. IN KPROCESSOR_MODE AccessMode,
  953. OUT PNTSTATUS AccessStatus
  954. );
  957. NTKERNELAPI
  958. NTSTATUS
  959. ObAssignSecurity(
  960. IN PACCESS_STATE AccessState,
  961. IN PSECURITY_DESCRIPTOR ParentDescriptor OPTIONAL,
  962. IN PVOID Object,
  963. IN POBJECT_TYPE ObjectType
  964. );
  965. // end_ntosp
  967. NTSTATUS // ntifs
  968. ObQueryObjectAuditingByHandle( // ntifs
  969. IN HANDLE Handle, // ntifs
  970. OUT PBOOLEAN GenerateOnClose // ntifs
  971. ); // ntifs
  973. // begin_ntosp
  974. NTSTATUS
  975. ObSetSecurityObjectByPointer (
  976. IN PVOID Object,
  977. IN SECURITY_INFORMATION SecurityInformation,
  978. IN PSECURITY_DESCRIPTOR SecurityDescriptor
  979. );
  981. NTSTATUS
  982. ObSetHandleAttributes (
  983. IN HANDLE Handle,
  984. IN POBJECT_HANDLE_FLAG_INFORMATION HandleFlags,
  985. IN KPROCESSOR_MODE PreviousMode
  986. );
  988. NTSTATUS
  989. ObCloseHandle (
  990. IN HANDLE Handle,
  991. IN KPROCESSOR_MODE PreviousMode
  992. );
  994. NTSTATUS
  995. ObSwapObjectNames (
  996. IN HANDLE DirectoryHandle,
  997. IN HANDLE Handle1,
  998. IN HANDLE Handle2,
  999. IN ULONG Flags
  1000. );
  1002. // end_ntosp
  1004. #if DEVL
  1006. typedef BOOLEAN (*OB_ENUM_OBJECT_TYPE_ROUTINE)(
  1007. IN PVOID Object,
  1008. IN PUNICODE_STRING ObjectName,
  1009. IN ULONG_PTR HandleCount,
  1010. IN ULONG_PTR PointerCount,
  1011. IN PVOID Parameter
  1012. );
  1014. NTSTATUS
  1015. ObEnumerateObjectsByType(
  1016. IN POBJECT_TYPE ObjectType,
  1017. IN OB_ENUM_OBJECT_TYPE_ROUTINE EnumerationRoutine,
  1018. IN PVOID Parameter
  1019. );
  1021. NTSTATUS
  1022. ObGetHandleInformation(
  1023. OUT PSYSTEM_HANDLE_INFORMATION HandleInformation,
  1024. IN ULONG Length,
  1025. OUT PULONG ReturnLength OPTIONAL
  1026. );
  1028. NTSTATUS
  1029. ObGetHandleInformationEx (
  1030. OUT PSYSTEM_HANDLE_INFORMATION_EX HandleInformation,
  1031. IN ULONG Length,
  1032. OUT PULONG ReturnLength OPTIONAL
  1033. );
  1035. NTSTATUS
  1036. ObGetObjectInformation(
  1037. IN PCHAR UserModeBufferAddress,
  1038. OUT PSYSTEM_OBJECTTYPE_INFORMATION ObjectInformation,
  1039. IN ULONG Length,
  1040. OUT PULONG ReturnLength OPTIONAL
  1041. );
  1043. // begin_ntosp
  1044. NTKERNELAPI
  1045. NTSTATUS
  1046. ObSetSecurityDescriptorInfo(
  1047. IN PVOID Object,
  1048. IN PSECURITY_INFORMATION SecurityInformation,
  1049. IN OUT PSECURITY_DESCRIPTOR SecurityDescriptor,
  1050. IN OUT PSECURITY_DESCRIPTOR *ObjectsSecurityDescriptor,
  1051. IN POOL_TYPE PoolType,
  1052. IN PGENERIC_MAPPING GenericMapping
  1053. );
  1054. // end_ntosp
  1056. NTKERNELAPI
  1057. NTSTATUS
  1058. ObQuerySecurityDescriptorInfo(
  1059. IN PVOID Object,
  1060. IN PSECURITY_INFORMATION SecurityInformation,
  1061. OUT PSECURITY_DESCRIPTOR SecurityDescriptor,
  1062. IN OUT PULONG Length,
  1063. IN PSECURITY_DESCRIPTOR *ObjectsSecurityDescriptor
  1064. );
  1066. NTSTATUS
  1067. ObDeassignSecurity (
  1068. IN OUT PSECURITY_DESCRIPTOR *SecurityDescriptor
  1069. );
  1071. VOID
  1072. ObAuditObjectAccess(
  1073. IN HANDLE Handle,
  1074. IN POBJECT_HANDLE_INFORMATION HandleInformation OPTIONAL,
  1075. IN KPROCESSOR_MODE AccessMode,
  1076. IN ACCESS_MASK DesiredAccess
  1077. );
  1079. NTKERNELAPI
  1080. VOID
  1081. FASTCALL
  1082. ObInitializeFastReference (
  1083. IN PEX_FAST_REF FastRef,
  1084. IN PVOID Object
  1085. );
  1087. NTKERNELAPI
  1088. PVOID
  1089. FASTCALL
  1090. ObFastReferenceObject (
  1091. IN PEX_FAST_REF FastRef
  1092. );
  1094. NTKERNELAPI
  1095. PVOID
  1096. FASTCALL
  1097. ObFastReferenceObjectLocked (
  1098. IN PEX_FAST_REF FastRef
  1099. );
  1101. NTKERNELAPI
  1102. VOID
  1103. FASTCALL
  1104. ObFastDereferenceObject (
  1105. IN PEX_FAST_REF FastRef,
  1106. IN PVOID Object
  1107. );
  1109. NTKERNELAPI
  1110. PVOID
  1111. FASTCALL
  1112. ObFastReplaceObject (
  1113. IN PEX_FAST_REF FastRef,
  1114. IN PVOID Object
  1115. );
  1117. #endif // DEVL
  1119. #endif // _OB_