archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 7b07a90fc1
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '7b07a90fc1'
${ noResults }
windows-server-2003/base/ntos/vdm/vdm.c

510 lines
14 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. /*++
  3. Copyright (c) 1991 Microsoft Corporation
  5. Module Name:
  7. vdm.c
  9. Abstract:
  11. This module supplies the entry point to the system for manipulating vdms.
  13. Author:
  15. Dave Hastings (daveh) 6-Apr-1992
  17. Revision History:
  19. --*/
  21. #pragma warning(disable:4214) // bit field types other than int
  22. #pragma warning(disable:4201) // nameless struct/union
  23. #pragma warning(disable:4324) // alignment sensitive to declspec
  24. #pragma warning(disable:4127) // condition expression is constant
  25. #pragma warning(disable:4115) // named type definition in parentheses
  27. #if defined (_X86_)
  28. #include "vdmp.h"
  29. #endif
  30. #include <ntos.h>
  31. #include <vdmntos.h>
  32. #include <ntvdmp.h>
  34. #include <zwapi.h>
  35. #include <fsrtl.h>
  38. typedef struct _QueryDirPoolData {
  39. KEVENT kevent;
  40. UNICODE_STRING FileName;
  41. WCHAR FileNameBuf[1];
  42. } QDIR_POOLDATA, *PQDIR_POOLDATA;
  46. #ifdef ALLOC_PRAGMA
  47. #pragma alloc_text(PAGE, VdmQueryDirectoryFile)
  48. #endif
  50. #if !defined(i386)
  52. #ifdef ALLOC_PRAGMA
  53. #pragma alloc_text(PAGE, NtVdmControl)
  54. #endif
  56. NTSTATUS
  57. NtVdmControl(
  58. IN VDMSERVICECLASS Service,
  59. IN OUT PVOID ServiceData
  60. )
  61. /*++
  63. Routine Description:
  65. This routine is the entry point for controlling Vdms.
  66. On risc it returns STATUS_NOT_IMPLEMENTED.
  67. On 386 the entry point is in i386\vdmentry.c
  69. Arguments:
  71. Service -- Specifies what service is to be performed
  72. ServiceData -- Supplies a pointer to service specific data
  74. Return Value:
  77. --*/
  78. {
  79. PAGED_CODE();
  82. if (Service == VdmQueryDir) {
  83. return VdmQueryDirectoryFile(ServiceData);
  84. }
  86. return STATUS_NOT_IMPLEMENTED;
  88. }
  89. #endif
  92. extern POBJECT_TYPE IoFileObjectType;
  94. NTSTATUS
  95. VdmQueryDirectoryFile(
  96. PVDMQUERYDIRINFO pVdmQueryDir
  97. )
  99. /*++
  100. This VDM specific service allows vdm to restart searches at a specified
  101. location in the dir search by using the FileIndex, FileName parameters
  102. passed back from previous query calls.
  104. See NtQueryDirectoryFile for additional documentation.
  106. Arguments: PVDMQUERYDIRINFO pVdmQueryDir
  108. FileHandle - Supplies a handle to the directory file for which information
  109. should be returned.
  111. FileInformation - Supplies a buffer to receive the requested information
  112. returned about the contents of the directory.
  114. Length - Supplies the length, in bytes, of the FileInformation buffer.
  116. FileName - Supplies a file name within the specified directory.
  118. FileIndex - Supplies a file index within the specified directory.
  120. The FileInformationClass is assumed to be FILE_BOTH_DIR_INFORMATION
  121. The Caller's mode is assumed to be UserMode
  122. Synchronous IO is used
  124. --*/
  126. {
  127. KIRQL irql;
  128. NTSTATUS status;
  129. PKEVENT Event;
  131. HANDLE FileHandle;
  132. IO_STATUS_BLOCK IoStatusBlock;
  133. PVOID FileInformation;
  134. ULONG Length;
  135. UNICODE_STRING FileName;
  136. PUNICODE_STRING pFileNameSrc;
  137. ULONG FileIndex;
  139. PQDIR_POOLDATA QDirPoolData = NULL;
  141. PMDL mdl;
  142. PIRP irp;
  143. PIO_STACK_LOCATION irpSp;
  144. PCHAR SystemBuffer;
  145. PFILE_OBJECT fileObject;
  146. PDEVICE_OBJECT DeviceObject;
  149. PAGED_CODE();
  151. //
  152. // We assume that the caller is usermode, so verify all parameters
  153. // accordingly
  154. //
  156. try {
  158. //
  159. // Copy out the callers service data into local variables
  160. //
  161. ProbeForRead( pVdmQueryDir, sizeof(VDMQUERYDIRINFO), sizeof(ULONG));
  163. FileHandle = pVdmQueryDir->FileHandle;
  164. FileInformation = pVdmQueryDir->FileInformation;
  165. Length = pVdmQueryDir->Length;
  166. FileIndex = pVdmQueryDir->FileIndex;
  167. pFileNameSrc = pVdmQueryDir->FileName;
  169. //
  170. // Ensure that we have a valid file name string
  171. //
  173. //
  174. // check for pVdmQueryDir->Filename validity first
  175. //
  176. if (NULL == pFileNameSrc) {
  177. return(STATUS_INVALID_PARAMETER);
  178. }
  180. FileName = ProbeAndReadUnicodeString(pFileNameSrc);
  181. if (!FileName.Length ||
  182. FileName.Length > MAXIMUM_FILENAME_LENGTH<<1) {
  183. return(STATUS_INVALID_PARAMETER);
  184. }
  186. ProbeForRead(FileName.Buffer, FileName.Length, sizeof( UCHAR ));
  188. //
  189. // The FileInformation buffer must be writeable by the caller.
  190. //
  192. ProbeForWrite( FileInformation, Length, sizeof( ULONG ) );
  194. //
  195. // Ensure that the caller's supplied buffer is at least large enough
  196. // to contain the fixed part of the structure required for this
  197. // query.
  198. //
  200. if (Length < sizeof(FILE_BOTH_DIR_INFORMATION)) {
  201. return STATUS_INFO_LENGTH_MISMATCH;
  202. }
  206. //
  207. // Allocate from nonpaged pool a buffer large enough to contain
  208. // the file name, and the kevent used to wait for io.
  209. //
  211. QDirPoolData = (PQDIR_POOLDATA) ExAllocatePoolWithQuotaTag(
  212. NonPagedPool,
  213. sizeof(QDIR_POOLDATA) + FileName.Length,
  214. ' MDV');
  216. //
  217. // Capture the file name string into the nonpaged pool block.
  218. //
  220. QDirPoolData->FileName.Length = FileName.Length;
  221. QDirPoolData->FileName.MaximumLength = FileName.Length;
  222. QDirPoolData->FileName.Buffer = QDirPoolData->FileNameBuf;
  223. RtlCopyMemory( QDirPoolData->FileNameBuf,
  224. FileName.Buffer,
  225. FileName.Length );
  228. } except(EXCEPTION_EXECUTE_HANDLER) {
  230. if (QDirPoolData) {
  231. ExFreePool(QDirPoolData);
  232. }
  234. return GetExceptionCode();
  235. }
  237. //
  238. // There were no blatant errors so far, so reference the file object so
  239. // the target device object can be found. Note that if the handle does
  240. // not refer to a file object, or if the caller does not have the required
  241. // access to the file, then it will fail.
  242. //
  244. status = ObReferenceObjectByHandle( FileHandle,
  245. FILE_LIST_DIRECTORY,
  246. IoFileObjectType,
  247. UserMode,
  248. (PVOID *) &fileObject,
  249. (POBJECT_HANDLE_INFORMATION) NULL );
  250. if (!NT_SUCCESS( status )) {
  251. if (QDirPoolData) {
  252. ExFreePool(QDirPoolData);
  253. }
  254. return status;
  255. }
  257. //
  258. // We don't handle FO_SYNCHRONOUS_IO, because it requires
  259. // io internal functionality. Ntvdm can get away with this
  260. // because it serializes access to the dir handle.
  261. //
  263. //
  264. // Initialize the kernel event that will signal I/O completion
  265. //
  266. Event = &QDirPoolData->kevent;
  267. KeInitializeEvent(Event, SynchronizationEvent, FALSE);
  270. //
  271. // Set the file object to the Not-Signaled state.
  272. //
  274. KeClearEvent( &fileObject->Event );
  276. //
  277. // Get the address of the target device object.
  278. //
  280. DeviceObject = IoGetRelatedDeviceObject( fileObject );
  282. //
  283. // Allocate and initialize the I/O Request Packet (IRP) for this operation.
  284. // The allocation is performed with an exception handler in case the
  285. // caller does not have enough quota to allocate the packet.
  287. irp = IoAllocateIrp( DeviceObject->StackSize, TRUE );
  288. if (!irp) {
  290. //
  291. // An IRP could not be allocated. Cleanup and return an appropriate
  292. // error status code.
  293. //
  295. ObDereferenceObject( fileObject );
  296. if (QDirPoolData) {
  297. ExFreePool(QDirPoolData);
  298. }
  300. return STATUS_INSUFFICIENT_RESOURCES;
  301. }
  303. //
  304. // Fill in the service independent parameters in the IRP.
  305. //
  307. irp->Flags = (ULONG)IRP_SYNCHRONOUS_API;
  308. irp->RequestorMode = UserMode;
  310. irp->UserIosb = &IoStatusBlock;
  311. irp->UserEvent = Event;
  313. irp->Overlay.AsynchronousParameters.UserApcRoutine = NULL;
  314. irp->AssociatedIrp.SystemBuffer = (PVOID) NULL;
  315. SystemBuffer = NULL;
  318. irp->Tail.Overlay.Thread = PsGetCurrentThread();
  319. irp->Tail.Overlay.OriginalFileObject = fileObject;
  320. irp->Tail.Overlay.AuxiliaryBuffer = NULL;
  321. irp->MdlAddress = NULL;
  323. //
  324. // Get a pointer to the stack location for the first driver. This will be
  325. // used to pass the function codes and parameters.
  326. //
  328. irpSp = IoGetNextIrpStackLocation( irp );
  329. irpSp->MajorFunction = IRP_MJ_DIRECTORY_CONTROL;
  330. irpSp->MinorFunction = IRP_MN_QUERY_DIRECTORY;
  331. irpSp->FileObject = fileObject;
  334. //
  335. // Copy the caller's parameters to the service-specific portion of the
  336. // IRP.
  337. //
  339. irpSp->Parameters.QueryDirectory.Length = Length;
  340. irpSp->Parameters.QueryDirectory.FileInformationClass = FileBothDirectoryInformation;
  341. irpSp->Parameters.QueryDirectory.FileIndex = FileIndex;
  343. if (QDirPoolData->FileName.Length) {
  344. irpSp->Parameters.QueryDirectory.FileName = &QDirPoolData->FileName;
  345. } else {
  346. irpSp->Parameters.QueryDirectory.FileName = NULL;
  347. }
  349. irpSp->Flags = SL_INDEX_SPECIFIED;
  352. //
  353. // Now determine whether this driver expects to have data buffered to it
  354. // or whether it performs direct I/O. This is based on the DO_BUFFERED_IO
  355. // flag in the device object. If the flag is set, then a system buffer is
  356. // allocated and the driver's data will be copied into it. Otherwise, a
  357. // Memory Descriptor List (MDL) is allocated and the caller's buffer is
  358. // locked down using it.
  359. //
  361. if (DeviceObject->Flags & DO_BUFFERED_IO) {
  363. //
  364. // The file system wants buffered I/O. Pass the address of the
  365. // "system buffer" in the IRP. Note that we don't want the buffer
  366. // deallocated, nor do we want the I/O system to copy to a user
  367. // buffer, so we don't set the corresponding flags in irp->Flags.
  368. //
  371. try {
  373. //
  374. // Allocate the intermediary system buffer from nonpaged pool and
  375. // charge quota for it.
  376. //
  378. SystemBuffer = ExAllocatePoolWithQuotaTag( NonPagedPool,
  379. Length,
  380. ' MDV' );
  382. irp->AssociatedIrp.SystemBuffer = SystemBuffer;
  385. } except(EXCEPTION_EXECUTE_HANDLER) {
  387. IoFreeIrp(irp);
  389. ObDereferenceObject( fileObject );
  391. if (QDirPoolData) {
  392. ExFreePool(QDirPoolData);
  393. }
  395. return GetExceptionCode();
  396. }
  399. } else if (DeviceObject->Flags & DO_DIRECT_IO) {
  401. //
  402. // This is a direct I/O operation. Allocate an MDL and invoke the
  403. // memory management routine to lock the buffer into memory. This is
  404. // done using an exception handler that will perform cleanup if the
  405. // operation fails.
  406. //
  408. mdl = (PMDL) NULL;
  410. try {
  412. //
  413. // Allocate an MDL, charging quota for it, and hang it off of the
  414. // IRP. Probe and lock the pages associated with the caller's
  415. // buffer for write access and fill in the MDL with the PFNs of
  416. // those pages.
  417. //
  419. mdl = IoAllocateMdl( FileInformation, Length, FALSE, TRUE, irp );
  420. if (mdl == NULL) {
  421. ExRaiseStatus( STATUS_INSUFFICIENT_RESOURCES );
  422. }
  423. MmProbeAndLockPages( mdl, UserMode, IoWriteAccess );
  425. } except(EXCEPTION_EXECUTE_HANDLER) {
  427. if (irp->MdlAddress != NULL) {
  428. IoFreeMdl( irp->MdlAddress );
  429. }
  431. IoFreeIrp(irp);
  433. ObDereferenceObject( fileObject );
  435. if (QDirPoolData) {
  436. ExFreePool(QDirPoolData);
  437. }
  439. return GetExceptionCode();
  440. }
  442. } else {
  444. //
  445. // Pass the address of the user's buffer so the driver has access to
  446. // it. It is now the driver's responsibility to do everything.
  447. //
  449. irp->UserBuffer = FileInformation;
  451. }
  454. //
  455. // Insert the packet at the head of the IRP list for the thread.
  456. //
  458. KeRaiseIrql( APC_LEVEL, &irql );
  459. InsertHeadList( &irp->Tail.Overlay.Thread->IrpList,
  460. &irp->ThreadListEntry );
  461. KeLowerIrql( irql );
  464. //
  465. // invoke the driver and wait for it to complete
  466. //
  468. status = IoCallDriver(DeviceObject, irp);
  470. if (status == STATUS_PENDING) {
  471. status = KeWaitForSingleObject(
  472. Event,
  473. UserRequest,
  474. UserMode,
  475. FALSE,
  476. NULL );
  477. }
  479. if (NT_SUCCESS(status)) {
  480. status = IoStatusBlock.Status;
  481. if (NT_SUCCESS(status) || status == STATUS_BUFFER_OVERFLOW) {
  482. if (SystemBuffer) {
  483. try {
  484. RtlCopyMemory( FileInformation,
  485. SystemBuffer,
  486. IoStatusBlock.Information
  487. );
  489. } except(EXCEPTION_EXECUTE_HANDLER) {
  490. status = GetExceptionCode();
  491. }
  492. }
  493. }
  494. }
  497. //
  498. // Cleanup any memory allocated
  499. //
  500. if (QDirPoolData) {
  501. ExFreePool(QDirPoolData);
  502. }
  504. if (SystemBuffer) {
  505. ExFreePool(SystemBuffer);
  506. }
  509. return status;
  510. }