archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2 Commits
1 Branch
0 Tags
3.2 GiB
Tree: 7b07a90fc1
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '7b07a90fc1'
${ noResults }
windows-server-2003/drivers/wdm/usb/driver/genusb/sys/devioctl.c

940 lines
30 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. /*++
  3. Copyright (c) 1996-2001 Microsoft Corporation
  5. Module Name:
  7. GENUSB.C
  9. Abstract:
  11. This source file contains the DriverEntry() and AddDevice() entry points
  12. for the GENUSB driver and the dispatch routines which handle:
  14. IRP_MJ_POWER
  15. IRP_MJ_SYSTEM_CONTROL
  16. IRP_MJ_PNP
  18. Environment:
  20. kernel mode
  22. Revision History:
  24. Sep 2001 : Copied from USBMASS
  26. --*/
  28. //*****************************************************************************
  29. // I N C L U D E S
  30. //*****************************************************************************
  32. #include "genusb.h"
  34. #ifdef ALLOC_PRAGMA
  35. #pragma alloc_text(PAGE, GenUSB_DeviceControl)
  36. #endif
  39. //******************************************************************************
  40. //
  41. // GenUSB_DeviceControl()
  42. //
  43. //******************************************************************************
  46. NTSTATUS
  47. GenUSB_DeviceControl (
  48. IN PDEVICE_OBJECT DeviceObject,
  49. IN PIRP Irp
  50. )
  51. {
  52. NTSTATUS status;
  53. PDEVICE_EXTENSION deviceExtension;
  54. ULONG ioControlCode;
  55. ULONG buffLen;
  56. ULONG requiredLen;
  57. ULONG numberInterfaces;
  58. ULONG i;
  59. PVOID source;
  60. PIO_STACK_LOCATION irpSp;
  61. PCHAR buffer;
  62. ULONG urbStatus;
  63. USHORT resultLength;
  64. BOOLEAN complete;
  65. USBD_PIPE_HANDLE usbdPipeHandle;
  67. PGENUSB_GET_STRING_DESCRIPTOR stringDescriptor;
  68. PGENUSB_GET_REQUEST request;
  69. PGENUSB_REQUEST_RESULTS requestResult;
  70. PGENUSB_SELECT_CONFIGURATION selectConfig;
  71. PGENUSB_SET_READ_WRITE_PIPES readWritePipes;
  72. GENUSB_READ_WRITE_PIPE transfer;
  74. PAGED_CODE ();
  76. complete = TRUE;
  78. deviceExtension = DeviceObject->DeviceExtension;
  80. status = IoAcquireRemoveLock (&deviceExtension->RemoveLock, Irp);
  81. if (!NT_SUCCESS(status)) {
  82. Irp->IoStatus.Status = status;
  83. IoCompleteRequest (Irp, IO_NO_INCREMENT);
  84. return status;
  85. }
  87. // While there are several readers of the IsStarted state, it is only
  88. // set at the end of GenUSB_StartDevice.
  89. if (!deviceExtension->IsStarted) {
  90. LOGENTRY(deviceExtension,'IOns', DeviceObject, Irp, 0);
  91. status = STATUS_DEVICE_NOT_CONNECTED;
  92. goto GenUSB_DeviceControlDone;
  93. }
  95. //
  96. // After talking extensively with JD, he tells me that I do not need
  97. // to queue requests for power downs or query stop. If that is the
  98. // case then even if the device power state isn't PowerDeviceD0 we
  99. // can still allow trasfers. This, of course, is a property of the
  100. // brand new port driver that went into XP.
  101. //
  102. // if (DeviceExtension->DevicePowerState != PowerDeviceD0)
  103. // {
  104. // }
  105. //
  107. //
  108. // BUGBUG if we ever implement IDLE, we need to turn the device
  109. // back on here.
  110. //
  112. irpSp = IoGetCurrentIrpStackLocation (Irp);
  113. // Get the Ioctl code
  114. ioControlCode = irpSp->Parameters.DeviceIoControl.IoControlCode;
  115. // We need to clear the information field in all cases.
  116. Irp->IoStatus.Information = 0;
  118. switch (ioControlCode) {
  120. case IOCTL_GENUSB_GET_DEVICE_DESCRIPTOR:
  121. case IOCTL_GENUSB_GET_CONFIGURATION_DESCRIPTOR:
  122. LOGENTRY(deviceExtension, 'IO_1', ioControlCode, DeviceObject, Irp);
  124. //
  125. // All of these ioctls copy data from the device extension
  126. // to the caller's buffer
  127. //
  128. switch (ioControlCode) {
  129. case IOCTL_GENUSB_GET_DEVICE_DESCRIPTOR:
  130. source = deviceExtension->DeviceDescriptor;
  131. requiredLen = deviceExtension->DeviceDescriptor->bLength;
  132. break;
  133. case IOCTL_GENUSB_GET_CONFIGURATION_DESCRIPTOR:
  134. source = deviceExtension->ConfigurationDescriptor;
  135. requiredLen = deviceExtension->ConfigurationDescriptor->wTotalLength;
  136. break;
  137. default:
  138. // Panic
  139. ASSERT (ioControlCode);
  140. status = STATUS_INVALID_PARAMETER;
  141. goto GenUSB_DeviceControlDone;
  142. }
  144. // Verify that there is a system buffer
  145. if (NULL == Irp->AssociatedIrp.SystemBuffer) {
  146. ASSERT (Irp->AssociatedIrp.SystemBuffer);
  147. status = STATUS_INVALID_PARAMETER;
  148. break;
  149. }
  150. buffer = Irp->AssociatedIrp.SystemBuffer;
  152. // Verify that this buffer is of sufficient length
  153. buffLen = irpSp->Parameters.DeviceIoControl.OutputBufferLength;
  154. if (buffLen < requiredLen) {
  155. status = STATUS_BUFFER_TOO_SMALL;
  156. break;
  157. }
  159. // Copy in the data and return the length in the information field.
  160. RtlCopyMemory (buffer, source, requiredLen);
  161. Irp->IoStatus.Information = requiredLen;
  162. break;
  164. case IOCTL_GENUSB_GET_STRING_DESCRIPTOR:
  165. LOGENTRY(deviceExtension, 'IO_2', ioControlCode, DeviceObject, Irp);
  167. if (NULL == Irp->AssociatedIrp.SystemBuffer)
  168. {
  169. ASSERT (Irp->AssociatedIrp.SystemBuffer);
  170. status = STATUS_INVALID_PARAMETER;
  171. break;
  172. }
  173. stringDescriptor = Irp->AssociatedIrp.SystemBuffer;
  174. buffer = Irp->AssociatedIrp.SystemBuffer;
  176. //
  177. // verify input length
  178. //
  179. buffLen = irpSp->Parameters.DeviceIoControl.InputBufferLength;
  180. if (buffLen != sizeof (GENUSB_GET_STRING_DESCRIPTOR))
  181. {
  182. status = STATUS_INVALID_PARAMETER;
  183. break;
  184. }
  186. //
  187. // verify output length
  188. //
  189. buffLen = irpSp->Parameters.DeviceIoControl.OutputBufferLength;
  190. if (buffLen < sizeof (USB_STRING_DESCRIPTOR)) {
  191. status = STATUS_BUFFER_TOO_SMALL;
  192. break;
  193. }
  194. //
  195. // if the caller didn't specify a language ID, then insert the default
  196. // language ID. (but only if the caller is not trying to retrive
  197. // the array of language IDs.
  198. //
  199. if ((0 == stringDescriptor->LanguageId) &&
  200. (0 != stringDescriptor->Index)) {
  201. stringDescriptor->LanguageId = deviceExtension->LanguageId;
  202. }
  204. switch (stringDescriptor->Recipient)
  205. {
  207. case GENUSB_RECIPIENT_DEVICE:
  208. stringDescriptor->Recipient = URB_FUNCTION_GET_DESCRIPTOR_FROM_DEVICE;
  209. break;
  211. case GENUSB_RECIPIENT_INTERFACE:
  212. stringDescriptor->Recipient = URB_FUNCTION_GET_DESCRIPTOR_FROM_INTERFACE;
  213. break;
  215. case GENUSB_RECIPIENT_ENDPOINT:
  216. stringDescriptor->Recipient = URB_FUNCTION_GET_DESCRIPTOR_FROM_ENDPOINT;
  217. break;
  219. default:
  220. status = STATUS_INVALID_PARAMETER;
  221. goto GenUSB_DeviceControlDone;
  222. }
  224. status = GenUSB_GetDescriptor (DeviceObject,
  225. stringDescriptor->Recipient,
  226. USB_STRING_DESCRIPTOR_TYPE,
  227. stringDescriptor->Index,
  228. stringDescriptor->LanguageId,
  229. 0, // retry count
  230. buffLen,
  231. &buffer);
  233. if (!NT_SUCCESS (status)) {
  235. DBGPRINT(1, ("Get String Descriptor failed (%x) %08X\n",
  236. stringDescriptor->Index,
  237. status));
  238. break;
  239. }
  240. Irp->IoStatus.Information = buffLen;
  241. break;
  243. case IOCTL_GENUSB_GET_REQUEST:
  244. LOGENTRY(deviceExtension, 'IO_3', ioControlCode, DeviceObject, Irp);
  246. if (NULL == Irp->AssociatedIrp.SystemBuffer) {
  247. ASSERT (Irp->AssociatedIrp.SystemBuffer);
  248. status = STATUS_INVALID_PARAMETER;
  249. break;
  250. }
  251. request = Irp->AssociatedIrp.SystemBuffer;
  252. requestResult = Irp->AssociatedIrp.SystemBuffer;
  254. //
  255. // verify input length
  256. //
  257. buffLen = irpSp->Parameters.DeviceIoControl.InputBufferLength;
  258. if (buffLen != sizeof (GENUSB_GET_REQUEST)) {
  259. status = STATUS_INVALID_PARAMETER;
  260. break;
  261. }
  263. //
  264. // verify output length
  265. //
  266. buffLen = irpSp->Parameters.DeviceIoControl.OutputBufferLength;
  267. if (buffLen < sizeof (GENUSB_REQUEST_RESULTS)) {
  268. status = STATUS_BUFFER_TOO_SMALL;
  269. break;
  270. }
  272. //
  273. // adjust the buffer
  274. //
  275. buffer = requestResult->Buffer;
  276. buffLen -= FIELD_OFFSET (GENUSB_REQUEST_RESULTS, Buffer);
  278. LOGENTRY(deviceExtension,
  279. 'IoGR',
  280. (request->RequestType << 8) & request->Request,
  281. request->Value,
  282. request->Index);
  284. DBGPRINT(2, ("Get Request: Type %x Request %x Value %x Index %x\n",
  285. request->RequestType,
  286. request->Request,
  287. request->Value,
  288. request->Index));
  290. status = GenUSB_VendorControlRequest (DeviceObject,
  291. request->RequestType,
  292. request->Request,
  293. request->Value,
  294. request->Index,
  295. (USHORT) buffLen, // disallow longer descriptors
  296. 0, // retry count
  297. &urbStatus,
  298. &resultLength,
  299. &buffer);
  301. requestResult->Status = urbStatus;
  302. requestResult->Length = resultLength;
  304. if (!NT_SUCCESS (status))
  305. {
  306. DBGPRINT(1, ("Get Descriptor failed (%x) %08X\n", urbStatus));
  307. Irp->IoStatus.Information = sizeof (GENUSB_REQUEST_RESULTS);
  308. status = STATUS_SUCCESS;
  310. } else {
  311. Irp->IoStatus.Information = resultLength
  312. + FIELD_OFFSET (GENUSB_REQUEST_RESULTS, Buffer);
  314. }
  315. break;
  317. case IOCTL_GENUSB_GET_CAPS:
  318. LOGENTRY(deviceExtension, 'IO_4', ioControlCode, DeviceObject, Irp);
  319. //
  320. // METHOD_BUFFERED irp. the buffer is in the AssociatedIrp.
  321. //
  323. if (NULL == Irp->AssociatedIrp.SystemBuffer) {
  324. ASSERT (Irp->AssociatedIrp.SystemBuffer);
  325. status = STATUS_INVALID_PARAMETER;
  326. break;
  327. }
  328. buffer = Irp->AssociatedIrp.SystemBuffer;
  330. buffLen = irpSp->Parameters.DeviceIoControl.OutputBufferLength;
  331. if (buffLen < sizeof (GENUSB_CAPABILITIES)) {
  332. status = STATUS_BUFFER_TOO_SMALL;
  333. break;
  334. }
  336. ((PGENUSB_CAPABILITIES) buffer) ->DeviceDescriptorLength =
  337. deviceExtension->DeviceDescriptor->bLength;
  339. ((PGENUSB_CAPABILITIES) buffer) ->ConfigurationInformationLength =
  340. deviceExtension->ConfigurationDescriptor->wTotalLength;
  342. Irp->IoStatus.Information = sizeof (GENUSB_CAPABILITIES);
  343. status = STATUS_SUCCESS;
  344. break;
  346. case IOCTL_GENUSB_SELECT_CONFIGURATION:
  347. LOGENTRY(deviceExtension, 'IO_5', ioControlCode, DeviceObject, Irp);
  349. //
  350. // GenUSB_SelectInterface checks to see if the configuration handle
  351. // is already set and fails if it is.
  352. //
  353. // if (NULL != deviceExtension->ConfigurationHandle)
  354. // {
  355. // status = STATUS_UNSUCCESSFUL;
  356. // }
  357. //
  359. if (NULL == Irp->AssociatedIrp.SystemBuffer)
  360. {
  361. ASSERT (Irp->AssociatedIrp.SystemBuffer);
  362. status = STATUS_INVALID_PARAMETER;
  363. break;
  364. }
  365. selectConfig = Irp->AssociatedIrp.SystemBuffer;
  367. //
  368. // The input buffer must be long enough to contain at least the
  369. // header information
  370. //
  371. buffLen = irpSp->Parameters.DeviceIoControl.InputBufferLength;
  372. if (buffLen < sizeof (GENUSB_SELECT_CONFIGURATION))
  373. {
  374. status = STATUS_BUFFER_TOO_SMALL;
  375. break;
  376. }
  378. //
  379. // The input buffer must be exactly the length as specfied by the
  380. // header information.
  381. //
  382. numberInterfaces = selectConfig->NumberInterfaces;
  383. if (buffLen != sizeof (GENUSB_SELECT_CONFIGURATION)
  384. + (sizeof (USB_INTERFACE_DESCRIPTOR) * numberInterfaces))
  385. {
  387. status = STATUS_BUFFER_TOO_SMALL;
  388. break;
  389. }
  391. //
  392. // The output buffer must be same length
  393. //
  394. if (buffLen != irpSp->Parameters.DeviceIoControl.OutputBufferLength)
  395. {
  397. status = STATUS_BUFFER_TOO_SMALL;
  398. break;
  399. }
  401. status = GenUSB_SelectConfiguration (deviceExtension,
  402. numberInterfaces,
  403. selectConfig->Interfaces,
  404. selectConfig->Interfaces);
  405. if (!NT_SUCCESS (status))
  406. {
  407. break;
  408. }
  410. //
  411. // rebase the interface numbers
  412. //
  413. for (i = 0; i < selectConfig->NumberInterfaces; i++)
  414. {
  416. selectConfig->Interfaces[i].bInterfaceNumber = (UCHAR) i;
  417. }
  418. selectConfig->NumberInterfaces = deviceExtension->InterfacesFound;
  419. Irp->IoStatus.Information = buffLen;
  421. break;
  423. case IOCTL_GENUSB_DESELECT_CONFIGURATION:
  424. LOGENTRY(deviceExtension, 'IO_6', ioControlCode, DeviceObject, Irp);
  426. status = GenUSB_DeselectConfiguration (deviceExtension, TRUE);
  427. Irp->IoStatus.Information = 0;
  429. break;
  431. case IOCTL_GENUSB_GET_PIPE_INFO:
  432. LOGENTRY(deviceExtension, 'IO_7', ioControlCode, DeviceObject, Irp);
  434. if (NULL == Irp->AssociatedIrp.SystemBuffer)
  435. {
  436. ASSERT (Irp->AssociatedIrp.SystemBuffer);
  437. status = STATUS_INVALID_PARAMETER;
  438. break;
  439. }
  440. //
  441. // verify input length
  442. //
  443. buffLen = irpSp->Parameters.DeviceIoControl.InputBufferLength;
  444. if (buffLen != sizeof (GENUSB_PIPE_INFO_REQUEST))
  445. {
  446. status = STATUS_INVALID_PARAMETER;
  447. break;
  448. }
  450. //
  451. // verify output length
  452. //
  453. buffLen = irpSp->Parameters.DeviceIoControl.OutputBufferLength;
  454. if (buffLen != sizeof (GENUSB_PIPE_INFORMATION))
  455. {
  456. status = STATUS_INVALID_PARAMETER;
  457. break;
  458. }
  460. status =
  461. GenUSB_GetSetPipe (
  462. deviceExtension,
  463. NULL, // no interface index
  464. &((PGENUSB_PIPE_INFO_REQUEST) Irp->AssociatedIrp.SystemBuffer)->InterfaceNumber,
  465. NULL, // no pipe index
  466. &((PGENUSB_PIPE_INFO_REQUEST) Irp->AssociatedIrp.SystemBuffer)->EndpointAddress,
  467. NULL, // No set Properties
  468. (PGENUSB_PIPE_INFORMATION) Irp->AssociatedIrp.SystemBuffer,
  469. NULL, // No set Properties
  470. NULL); // No UsbdPipeHandles needed
  472. if (NT_SUCCESS (status))
  473. {
  474. Irp->IoStatus.Information = sizeof (GENUSB_PIPE_INFORMATION);
  475. }
  477. break;
  479. case IOCTL_GENUSB_SET_READ_WRITE_PIPES:
  480. LOGENTRY(deviceExtension, 'IO_8', ioControlCode, DeviceObject, Irp);
  482. if (NULL == Irp->AssociatedIrp.SystemBuffer)
  483. {
  484. ASSERT (Irp->AssociatedIrp.SystemBuffer);
  485. status = STATUS_INVALID_PARAMETER;
  486. break;
  487. }
  489. readWritePipes =
  490. (PGENUSB_SET_READ_WRITE_PIPES) Irp->AssociatedIrp.SystemBuffer;
  491. //
  492. // verify input length
  493. //
  494. buffLen = irpSp->Parameters.DeviceIoControl.InputBufferLength;
  495. if (buffLen != sizeof (GENUSB_SET_READ_WRITE_PIPES))
  496. {
  497. status = STATUS_INVALID_PARAMETER;
  498. break;
  499. }
  501. //
  502. // verify output length
  503. //
  504. buffLen = irpSp->Parameters.DeviceIoControl.OutputBufferLength;
  505. if (buffLen != 0)
  506. {
  507. status = STATUS_INVALID_PARAMETER;
  508. break;
  509. }
  511. status = GenUSB_SetReadWritePipes (
  512. deviceExtension,
  513. (PGENUSB_PIPE_HANDLE) &readWritePipes->ReadPipe,
  514. (PGENUSB_PIPE_HANDLE) &readWritePipes->WritePipe);
  517. // on success the information field stays at zero.
  518. //
  519. // if (NT_SUCCESS (status))
  520. // {
  521. // Irp->IoStatus.Information = 0;
  522. // }
  524. break;
  525. case IOCTL_GENUSB_GET_PIPE_PROPERTIES:
  526. LOGENTRY(deviceExtension, 'IO_9', ioControlCode, DeviceObject, Irp);
  527. //
  528. // METHOD_BUFFERED irp. the buffer is in the AssociatedIrp.
  529. //
  531. if (NULL == Irp->AssociatedIrp.SystemBuffer)
  532. {
  533. ASSERT (Irp->AssociatedIrp.SystemBuffer);
  534. status = STATUS_INVALID_PARAMETER;
  535. break;
  536. }
  537. buffer = Irp->AssociatedIrp.SystemBuffer;
  539. buffLen = irpSp->Parameters.DeviceIoControl.InputBufferLength;
  540. if (buffLen != sizeof (GENUSB_PIPE_HANDLE))
  541. {
  542. status = STATUS_BUFFER_TOO_SMALL;
  543. break;
  544. }
  546. buffLen = irpSp->Parameters.DeviceIoControl.OutputBufferLength;
  547. if (buffLen != sizeof (GENUSB_PIPE_PROPERTIES))
  548. {
  549. status = STATUS_BUFFER_TOO_SMALL;
  550. break;
  551. }
  553. if (! VERIFY_PIPE_HANDLE_SIG (buffer, deviceExtension))
  554. {
  555. status = STATUS_INVALID_PARAMETER;
  556. break;
  557. }
  559. status =
  560. GenUSB_GetSetPipe (
  561. deviceExtension,
  562. &((PGENUSB_PIPE_HANDLE) buffer)->InterfaceIndex,
  563. NULL, // no interface number
  564. &((PGENUSB_PIPE_HANDLE) buffer)->PipeIndex,
  565. NULL, // no endpoint address
  566. NULL, // no set
  567. NULL, // no Pipe Info
  568. ((PGENUSB_PIPE_PROPERTIES) buffer),
  569. NULL); // usbd PipeHandle not needed
  571. Irp->IoStatus.Information = sizeof (GENUSB_PIPE_PROPERTIES);
  572. status = STATUS_SUCCESS;
  573. break;
  575. case IOCTL_GENUSB_SET_PIPE_PROPERTIES:
  576. LOGENTRY(deviceExtension, 'IO_A', ioControlCode, DeviceObject, Irp);
  577. //
  578. // METHOD_BUFFERED irp. the buffer is in the AssociatedIrp.
  579. //
  580. if (NULL == Irp->AssociatedIrp.SystemBuffer)
  581. {
  582. ASSERT (Irp->AssociatedIrp.SystemBuffer);
  583. status = STATUS_INVALID_PARAMETER;
  584. break;
  585. }
  586. buffer = Irp->AssociatedIrp.SystemBuffer;
  588. // Verify Input Length
  589. buffLen = irpSp->Parameters.DeviceIoControl.InputBufferLength;
  590. if (buffLen != sizeof (GENUSB_PIPE_HANDLE) + sizeof (GENUSB_PIPE_PROPERTIES))
  591. {
  592. status = STATUS_BUFFER_TOO_SMALL;
  593. break;
  594. }
  596. // Verify Output Length
  597. buffLen = irpSp->Parameters.DeviceIoControl.OutputBufferLength;
  598. if (buffLen != 0)
  599. {
  600. status = STATUS_INVALID_PARAMETER;
  601. break;
  602. }
  604. if (! VERIFY_PIPE_HANDLE_SIG (buffer, deviceExtension))
  605. {
  606. status = STATUS_INVALID_PARAMETER;
  607. break;
  608. }
  610. status =
  611. GenUSB_GetSetPipe (
  612. deviceExtension,
  613. &((PGENUSB_PIPE_HANDLE) buffer)->InterfaceIndex,
  614. NULL, // no interface number
  615. &((PGENUSB_PIPE_HANDLE) buffer)->PipeIndex,
  616. NULL, // no endpoint address
  617. (PGENUSB_PIPE_PROPERTIES) (buffer + sizeof (GENUSB_PIPE_HANDLE)),
  618. NULL, // no Pipe Info
  619. NULL, // no Get
  620. NULL); // no UsbdPipeHandle needed
  622. Irp->IoStatus.Information = 0;
  623. status = STATUS_SUCCESS;
  624. break;
  626. case IOCTL_GENUSB_RESET_PIPE:
  627. LOGENTRY(deviceExtension, 'IO_B', ioControlCode, DeviceObject, Irp);
  628. //
  629. // METHOD_BUFFERED irp. the buffer is in the AssociatedIrp.
  630. //
  632. if (NULL == Irp->AssociatedIrp.SystemBuffer)
  633. {
  634. ASSERT (Irp->AssociatedIrp.SystemBuffer);
  635. status = STATUS_INVALID_PARAMETER;
  636. break;
  637. }
  638. buffer = Irp->AssociatedIrp.SystemBuffer;
  640. buffLen = irpSp->Parameters.DeviceIoControl.InputBufferLength;
  641. if (buffLen != sizeof (GENUSB_RESET_PIPE))
  642. {
  643. status = STATUS_BUFFER_TOO_SMALL;
  644. break;
  645. }
  647. buffLen = irpSp->Parameters.DeviceIoControl.OutputBufferLength;
  648. if (buffLen != 0)
  649. {
  650. status = STATUS_INVALID_PARAMETER;
  651. break;
  652. }
  654. if (! VERIFY_PIPE_HANDLE_SIG (buffer, deviceExtension))
  655. {
  656. status = STATUS_INVALID_PARAMETER;
  657. break;
  658. }
  660. status =
  661. GenUSB_GetSetPipe (
  662. deviceExtension,
  663. &((PGENUSB_PIPE_HANDLE) buffer)->InterfaceIndex,
  664. NULL, // no interface number
  665. &((PGENUSB_PIPE_HANDLE) buffer)->PipeIndex,
  666. NULL, // no endpoint address
  667. NULL, // no set
  668. NULL, // no Pipe Info
  669. NULL, // no PipeProperties
  670. &usbdPipeHandle);
  672. if (!NT_SUCCESS (status))
  673. {
  674. break;
  675. }
  677. status = GenUSB_ResetPipe (deviceExtension,
  678. usbdPipeHandle,
  679. ((PGENUSB_RESET_PIPE)buffer)->ResetPipe,
  680. ((PGENUSB_RESET_PIPE)buffer)->ClearStall,
  681. ((PGENUSB_RESET_PIPE)buffer)->FlushData);
  683. Irp->IoStatus.Information = 0;
  684. break;
  686. case IOCTL_GENUSB_READ_WRITE_PIPE:
  687. LOGENTRY(deviceExtension, 'IO_C', ioControlCode, DeviceObject, Irp);
  689. status = GenUSB_ProbeAndSubmitTransfer (Irp, irpSp, deviceExtension);
  690. complete = FALSE;
  691. break;
  693. default:
  694. //
  695. // 'Fail' the Irp by returning the default status.
  696. //
  697. status = STATUS_NOT_IMPLEMENTED;
  698. break;
  699. }
  701. GenUSB_DeviceControlDone:
  703. IoReleaseRemoveLock (&deviceExtension->RemoveLock, Irp);
  705. if (complete)
  706. {
  707. Irp->IoStatus.Status = status;
  708. IoCompleteRequest(Irp, IO_NO_INCREMENT);
  709. }
  710. return status;
  711. }
  713. NTSTATUS
  714. GenUSB_ProbeAndSubmitTransferComplete (
  715. IN PDEVICE_OBJECT DeviceObject,
  716. IN PIRP Irp,
  717. IN PGENUSB_TRANSFER LocalTrans,
  718. IN USBD_STATUS Status,
  719. IN ULONG Length
  720. );
  722. NTSTATUS
  723. GenUSB_ProbeAndSubmitTransfer (
  724. IN PIRP Irp,
  725. IN PIO_STACK_LOCATION IrpSp,
  726. IN PDEVICE_EXTENSION DeviceExtension
  727. )
  728. {
  729. NTSTATUS status;
  730. PMDL mdl;
  731. BOOLEAN userLocked;
  732. BOOLEAN transferLocked;
  734. PGENUSB_READ_WRITE_PIPE userTrans; // a pointer to the user's buffer
  735. PGENUSB_TRANSFER localTrans; // a local copy of the user data.
  737. LOGENTRY(DeviceExtension, 'PROB', DeviceExtension->Self, Irp, 0);
  739. status = STATUS_SUCCESS;
  740. userTrans = NULL;
  741. localTrans = NULL;
  742. userLocked = FALSE;
  743. transferLocked = FALSE;
  745. //
  746. // Validate the user's buffer.
  747. //
  748. try {
  750. if (sizeof (GENUSB_READ_WRITE_PIPE) !=
  751. IrpSp->Parameters.DeviceIoControl.InputBufferLength)
  752. {
  753. ExRaiseStatus (STATUS_INVALID_PARAMETER);
  754. }
  756. userTrans = (PGENUSB_READ_WRITE_PIPE)
  757. IrpSp->Parameters.DeviceIoControl.Type3InputBuffer;
  759. if (NULL == userTrans)
  760. {
  761. ExRaiseStatus (STATUS_INVALID_PARAMETER);
  762. }
  764. localTrans = (PGENUSB_TRANSFER)
  765. ExAllocatePool (NonPagedPool, sizeof (GENUSB_TRANSFER));
  767. if (NULL == localTrans)
  768. {
  769. ExRaiseStatus (STATUS_INSUFFICIENT_RESOURCES);
  770. }
  772. RtlZeroMemory (localTrans, sizeof (GENUSB_TRANSFER));
  774. //
  775. // The input comes in User Buffer, and should be a
  776. // PGENUSB_READ_WRITE_PIPE structure.
  777. //
  778. localTrans->UserMdl = IoAllocateMdl (userTrans,
  779. sizeof(PGENUSB_READ_WRITE_PIPE),
  780. FALSE, // no 2nd buffer
  781. TRUE, // charge quota
  782. NULL); // no associated irp
  784. if (NULL == localTrans->UserMdl)
  785. {
  786. ExRaiseStatus (STATUS_INSUFFICIENT_RESOURCES);
  787. }
  789. MmProbeAndLockPages (localTrans->UserMdl,
  790. KernelMode,
  791. ((localTrans->UserCopy.UsbdTransferFlags
  792. & USBD_TRANSFER_DIRECTION_IN)
  793. ? IoReadAccess
  794. : IoWriteAccess));
  795. userLocked = TRUE;
  798. // make a local copy of the user data so that it doesn't move.
  799. localTrans->UserCopy = *userTrans;
  801. // mask off the invalid flags.
  802. localTrans->UserCopy.UsbdTransferFlags &=
  803. USBD_SHORT_TRANSFER_OK | USBD_TRANSFER_DIRECTION;
  805. // Now probe the transfer location
  806. localTrans->TransferMdl = IoAllocateMdl (
  807. localTrans->UserCopy.UserBuffer,
  808. localTrans->UserCopy.BufferLength,
  809. FALSE, // no 2nd buffer
  810. TRUE, // do charge the quota
  811. NULL); // no associated irp
  813. if (NULL == localTrans->TransferMdl)
  814. {
  815. ExRaiseStatus (STATUS_INSUFFICIENT_RESOURCES);
  816. }
  818. MmProbeAndLockPages (localTrans->TransferMdl,
  819. KernelMode,
  820. ((localTrans->UserCopy.UsbdTransferFlags
  821. & USBD_TRANSFER_DIRECTION_IN)
  822. ? IoReadAccess
  823. : IoWriteAccess));
  825. transferLocked = TRUE;
  827. } except (EXCEPTION_EXECUTE_HANDLER) {
  829. status = GetExceptionCode();
  830. goto GenUSBProbSubmitTransferReject;
  831. }
  833. if (! VERIFY_PIPE_HANDLE_SIG (&localTrans->UserCopy.Pipe, DeviceExtension))
  834. {
  835. status = STATUS_INVALID_PARAMETER;
  836. goto GenUSBProbSubmitTransferReject;
  837. }
  839. // Unfortunately we complete, we will no longer running in the contect
  840. // of the caller.
  841. // Therefore we we cannot use LocalTrans->UserCopy.UserBuffer to just
  842. // dump the return data. We instead need a system address for it.
  843. localTrans->SystemAddress =
  844. MmGetSystemAddressForMdlSafe (localTrans->UserMdl, NormalPagePriority);
  846. if (NULL == localTrans->SystemAddress)
  847. {
  848. status = STATUS_INSUFFICIENT_RESOURCES;
  849. goto GenUSBProbSubmitTransferReject;
  850. }
  852. //
  853. // now perform the transfer.
  854. //
  855. LOGENTRY(DeviceExtension, 'prob', DeviceExtension->Self, Irp, status);
  856. status = GenUSB_TransmitReceive (
  857. DeviceExtension,
  858. Irp,
  859. ((PGENUSB_PIPE_HANDLE)&localTrans->UserCopy.Pipe)->InterfaceIndex,
  860. ((PGENUSB_PIPE_HANDLE)&localTrans->UserCopy.Pipe)->PipeIndex,
  861. localTrans->UserCopy.UsbdTransferFlags,
  862. NULL, // no buffer pointer
  863. localTrans->TransferMdl,
  864. localTrans->UserCopy.BufferLength,
  865. localTrans,
  866. GenUSB_ProbeAndSubmitTransferComplete);
  868. return status;
  870. GenUSBProbSubmitTransferReject:
  872. LOGENTRY (DeviceExtension, 'prob', DeviceExtension->Self, Irp, status);
  873. if (NULL != localTrans)
  874. {
  875. if (localTrans->UserMdl)
  876. {
  877. if (userLocked)
  878. {
  879. MmUnlockPages (localTrans->UserMdl);
  880. }
  881. IoFreeMdl (localTrans->UserMdl);
  882. }
  883. if (localTrans->TransferMdl)
  884. {
  885. if (transferLocked)
  886. {
  887. MmUnlockPages (localTrans->TransferMdl);
  888. }
  889. IoFreeMdl (localTrans->TransferMdl);
  890. }
  891. ExFreePool (localTrans);
  892. }
  894. Irp->IoStatus.Status = status;
  895. IoCompleteRequest (Irp, IO_NO_INCREMENT);
  896. return status;
  897. }
  899. NTSTATUS
  900. GenUSB_ProbeAndSubmitTransferComplete (
  901. IN PDEVICE_OBJECT DeviceObject,
  902. IN PIRP Irp,
  903. IN PGENUSB_TRANSFER LocalTrans,
  904. IN USBD_STATUS UrbStatus,
  905. IN ULONG Length
  906. )
  907. {
  908. PDEVICE_EXTENSION deviceExtension;
  910. deviceExtension = (PDEVICE_EXTENSION) DeviceObject->DeviceExtension;
  912. LOGENTRY(deviceExtension, 'PrbC', Irp, Length, UrbStatus);
  914. // Regardless of whether or not the transaction was successful,
  915. // we need to free the MDL that points to the users transfer buffer.
  916. MmUnlockPages (LocalTrans->TransferMdl);
  917. IoFreeMdl (LocalTrans->TransferMdl);
  919. LocalTrans->UserCopy.UrbStatus = UrbStatus;
  920. LocalTrans->UserCopy.BufferLength = Length;
  922. //
  923. // since we are not in the caller's context any more
  924. // we cannot just use LocalTrans->UserCopy.UserBuffer to copy the data
  925. // back. We must instead use the system address, which should already
  926. // be all set up.
  927. //
  928. ASSERT (NULL != LocalTrans->SystemAddress);
  929. *LocalTrans->SystemAddress = LocalTrans->UserCopy;
  931. // Now free the user buffer containing the arguments.
  932. MmUnlockPages (LocalTrans->UserMdl);
  933. IoFreeMdl (LocalTrans->UserMdl);
  936. ExFreePool (LocalTrans);
  938. return Irp->IoStatus.Status;
  939. }