archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 7b07a90fc1
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '7b07a90fc1'
${ noResults }
windows-server-2003/net/tcpip/driver/ipv4/ntirp.c

2989 lines
82 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. /*++
  3. Copyright (c) 1991-2000 Microsoft Corporation
  5. Module Name:
  7. ntirp.c
  9. Abstract:
  11. NT specific routines for dispatching and handling IRPs.
  13. Author:
  15. Mike Massa (mikemas) Aug 13, 1993
  17. Revision History:
  19. Who When What
  20. -------- -------- ----------------------------------------------
  21. mikemas 08-13-93 created
  23. Notes:
  25. --*/
  27. #include "precomp.h"
  28. #include "iproute.h"
  29. #include "icmp.h"
  30. #include "arpdef.h"
  31. #include "info.h"
  32. #include "ipstatus.h"
  33. #include "tcpipbuf.h"
  35. //
  36. // Local structures.
  37. //
  38. typedef struct pending_irp {
  39. LIST_ENTRY Linkage;
  40. PIRP Irp;
  41. PFILE_OBJECT FileObject;
  42. PVOID Context;
  43. } PENDING_IRP, *PPENDING_IRP;
  45. DEFINE_LOCK_STRUCTURE(AddChangeLock)
  46. DEFINE_LOCK_STRUCTURE(ClientNotifyLock)
  47. //
  48. // Global variables
  49. //
  50. LIST_ENTRY PendingEchoList;
  51. LIST_ENTRY PendingIPSetNTEAddrList;
  52. PIRP PendingIPGetIPEventRequest;
  53. LIST_ENTRY PendingEnableRouterList;
  54. LIST_ENTRY PendingMediaSenseRequestList;
  55. LIST_ENTRY PendingArpSendList;
  57. IP_STATUS ARPResolve(IPAddr DestAddress, IPAddr SourceAddress,
  58. ARPControlBlock * ControlBlock, ArpRtn Callback);
  59. VOID CompleteArpResolveRequest(void *ControlBlock, IP_STATUS ipstatus);
  61. extern Interface *IFList;
  63. //
  64. // External prototypes
  65. //
  66. IP_STATUS ICMPEchoRequest(void *InputBuffer, uint InputBufferLength,
  67. EchoControl * ControlBlock, EchoRtn Callback);
  69. ulong ICMPEchoComplete(EchoControl * ControlBlock, IP_STATUS Status,
  70. void *Data, uint DataSize, IPOptInfo *OptionInfo);
  72. #if defined(_WIN64)
  73. ulong ICMPEchoComplete32(EchoControl * ControlBlock, IP_STATUS Status,
  74. void *Data, uint DataSize, IPOptInfo *OptionInfo);
  75. #endif // _WIN64
  77. IP_STATUS IPSetNTEAddrEx(uint Index, IPAddr Addr, IPMask Mask,
  78. SetAddrControl * ControlBlock, SetAddrRtn Callback, USHORT Type);
  80. IP_STATUS IPAddDynamicNTE(ulong InterfaceContext, PUNICODE_STRING InterfaceName,
  81. int InterfaceNameLen, IPAddr NewAddr, IPMask NewMask,
  82. ushort * NTEContext, ulong * NTEInstance);
  84. IP_STATUS IPDeleteDynamicNTE(ushort NTEContext);
  86. uint IPGetNTEInfo(ushort NTEContext, ulong * NTEInstance, IPAddr * Address,
  87. IPMask * SubnetMask, ushort * NTEFlags);
  89. uint SetDHCPNTE(uint Context);
  91. NTSTATUS SetIFPromiscuous(ULONG Index, UCHAR Type, UCHAR Add);
  93. extern void NotifyAddrChange(IPAddr Addr, IPMask Mask, void *Context,
  94. ushort IPContext, PVOID * Handle,
  95. PNDIS_STRING ConfigName, PNDIS_STRING IFName,
  96. uint Added);
  98. extern NTSTATUS IPStatusToNTStatus(IP_STATUS ipStatus);
  99. extern int IPEnableRouterRefCount;
  100. extern int IPEnableRouterWithRefCount(LOGICAL Enable);
  101. extern NTSTATUS IPGetCapability(ULONG Context, uchar* buf, uint cap);
  102. extern int IPEnableMediaSense(LOGICAL Enable, KIRQL *irql);
  103. extern uint DisableMediaSense;
  105. NTSTATUS FlushArpTable(IN PIRP Irp, IN PIO_STACK_LOCATION IrpSp);
  106. //
  107. // Local prototypes
  108. //
  109. NTSTATUS IPDispatch(IN PDEVICE_OBJECT DeviceObject, IN PIRP Irp);
  111. NTSTATUS IPDispatchDeviceControl(IN PIRP Irp, IN PIO_STACK_LOCATION IrpSp);
  113. NTSTATUS IPDispatchInternalDeviceControl(IN PIRP Irp,
  114. IN PIO_STACK_LOCATION IrpSp);
  116. NTSTATUS IPCreate(IN PIRP Irp, IN PIO_STACK_LOCATION IrpSp);
  118. NTSTATUS IPCleanup(IN PIRP Irp, IN PIO_STACK_LOCATION IrpSp);
  120. NTSTATUS IPClose(IN PIRP Irp, IN PIO_STACK_LOCATION IrpSp);
  122. NTSTATUS DispatchEchoRequest(IN PIRP Irp, IN PIO_STACK_LOCATION IrpSp);
  124. NTSTATUS DispatchARPRequest(IN PIRP Irp, IN PIO_STACK_LOCATION IrpSp);
  126. NTSTATUS RtChangeNotifyRequest(PIRP Irp, IN PIO_STACK_LOCATION IrpSp);
  128. NTSTATUS RtChangeNotifyRequestEx(PIRP Irp, IN PIO_STACK_LOCATION IrpSp);
  130. NTSTATUS AddrChangeNotifyRequest(PIRP Irp, PIO_STACK_LOCATION IrpSp);
  132. NTSTATUS CancelChangeNotifyRequest(PIRP Irp, PIO_STACK_LOCATION IrpSp,
  133. PVOID ApcContext);
  135. #if MILLEN
  136. NTSTATUS IfChangeNotifyRequest(PIRP Irp, PIO_STACK_LOCATION IrpSp);
  137. #endif // MILLEN
  139. NTSTATUS IPEnableRouterRequest(PIRP Irp, PIO_STACK_LOCATION IrpSp);
  141. NTSTATUS IPUnenableRouterRequest(PIRP Irp, PIO_STACK_LOCATION IrpSp,
  142. PVOID ApcContext);
  144. VOID CancelIPEnableRouterRequest(IN PDEVICE_OBJECT Device, IN PIRP Irp);
  146. NTSTATUS IPGetBestInterfaceIndex(IN IPAddr Address, OUT PULONG pIndex,
  147. OUT PULONG pMetric);
  148. extern NTSTATUS GetBestInterfaceId(IN PIRP Irp, IN PIO_STACK_LOCATION IrpSp);
  150. extern NTSTATUS IPGetBestInterface(IN IPAddr Address, OUT PVOID * ppIF);
  152. extern NTSTATUS GetInterfaceInfo(IN PIRP Irp, IN PIO_STACK_LOCATION IrpSp);
  154. extern NTSTATUS GetIgmpList(IN PIRP Irp, IN PIO_STACK_LOCATION IrpSp);
  156. extern NTSTATUS DispatchIPSetBlockofRoutes(IN PIRP Irp,
  157. IN PIO_STACK_LOCATION IrpSp);
  159. extern NTSTATUS DispatchIPSetRouteWithRef(IN PIRP Irp,
  160. IN PIO_STACK_LOCATION IrpSp);
  162. extern NTSTATUS DispatchIPSetMultihopRoute(IN PIRP Irp,
  163. IN PIO_STACK_LOCATION IrpSp);
  165. void CompleteEchoRequest(void *Context, IP_STATUS Status, void *Data,
  166. uint DataSize, IPOptInfo *OptionInfo);
  168. NTSTATUS DispatchIPSetNTEAddrRequest(IN PIRP Irp, IN PIO_STACK_LOCATION IrpSp);
  170. void CompleteIPSetNTEAddrRequest(void *Context, IP_STATUS Status);
  172. NTSTATUS IPGetIfIndex(IN PIRP pIrp, IN PIO_STACK_LOCATION pIrpSp);
  174. NTSTATUS IPGetIfName(IN PIRP pIrp, IN PIO_STACK_LOCATION pIrpSp);
  176. NTSTATUS DispatchIPGetIPEvent(IN PIRP Irp, IN PIO_STACK_LOCATION IrpSp);
  178. NTSTATUS IPGetMcastCounters(IN PIRP Irp, IN PIO_STACK_LOCATION IrpSp);
  180. NTSTATUS
  181. IPEnableMediaSenseRequest(PIRP Irp, PIO_STACK_LOCATION IrpSp, PVOID ApcContext);
  183. NTSTATUS
  184. IPDisableMediaSenseRequest(PIRP Irp, PIO_STACK_LOCATION IrpSp );
  186. VOID
  187. CancelIPEnableMediaSenseRequest(IN PDEVICE_OBJECT Device, IN PIRP Irp);
  190. //
  191. // All of this code is pageable.
  192. //
  193. #if !MILLEN
  194. #ifdef ALLOC_PRAGMA
  196. #pragma alloc_text(PAGE, IPDispatch)
  197. #pragma alloc_text(PAGE, IPDispatchInternalDeviceControl)
  198. #pragma alloc_text(PAGE, IPCreate)
  199. #pragma alloc_text(PAGE, IPClose)
  200. #pragma alloc_text(PAGE, DispatchEchoRequest)
  201. #pragma alloc_text(PAGE, DispatchARPRequest)
  203. #endif // ALLOC_PRAGMA
  204. #endif // !MILLEN
  206. //
  207. // Dispatch function definitions
  208. //
  209. NTSTATUS
  210. IPDispatch(
  211. IN PDEVICE_OBJECT DeviceObject,
  212. IN PIRP Irp
  213. )
  214. /*++
  216. Routine Description:
  218. This is the dispatch routine for IP.
  220. Arguments:
  222. DeviceObject - Pointer to device object for target device
  223. Irp - Pointer to I/O request packet
  225. Return Value:
  227. NTSTATUS -- Indicates whether the request was successfully queued.
  229. --*/
  231. {
  232. PIO_STACK_LOCATION irpSp;
  233. NTSTATUS status;
  235. UNREFERENCED_PARAMETER(DeviceObject);
  236. PAGED_CODE();
  238. irpSp = IoGetCurrentIrpStackLocation(Irp);
  240. DEBUGMSG(DBG_TRACE && DBG_IP && DBG_VERBOSE,
  241. (DTEXT("+IPDispatch(%x, %x) MajorFunction %x\n"),
  242. DeviceObject, Irp, irpSp->MajorFunction));
  244. switch (irpSp->MajorFunction) {
  246. case IRP_MJ_DEVICE_CONTROL:
  247. return IPDispatchDeviceControl(Irp, irpSp);
  249. case IRP_MJ_INTERNAL_DEVICE_CONTROL:
  250. return IPDispatchDeviceControl(Irp, irpSp);
  252. case IRP_MJ_CREATE:
  253. status = IPCreate(Irp, irpSp);
  254. break;
  256. case IRP_MJ_CLEANUP:
  257. status = IPCleanup(Irp, irpSp);
  258. break;
  260. case IRP_MJ_CLOSE:
  261. status = IPClose(Irp, irpSp);
  262. break;
  264. default:
  265. DEBUGMSG(DBG_ERROR,
  266. (DTEXT("IPDispatch: Invalid major function. IRP %x MajorFunc %x\n"),
  267. Irp, irpSp->MajorFunction));
  268. status = STATUS_NOT_IMPLEMENTED;
  269. break;
  270. }
  272. Irp->IoStatus.Status = status;
  274. IoCompleteRequest(Irp, IO_NETWORK_INCREMENT);
  276. DEBUGMSG(DBG_TRACE && DBG_IP && DBG_VERBOSE, (DTEXT("-IPDispatch [%x]\n"), status));
  278. return (status);
  280. }
  282. NTSTATUS
  283. IPDispatchDeviceControl(
  284. IN PIRP Irp,
  285. IN PIO_STACK_LOCATION IrpSp
  286. )
  287. /*++
  289. Routine Description:
  291. Arguments:
  293. Irp - Pointer to I/O request packet
  294. IrpSp - Pointer to the current stack location in the Irp.
  296. Return Value:
  298. NTSTATUS -- Indicates whether the request was successfully queued.
  300. --*/
  302. {
  303. NTSTATUS status;
  304. ULONG code;
  306. Irp->IoStatus.Information = 0;
  308. code = IrpSp->Parameters.DeviceIoControl.IoControlCode;
  310. DEBUGMSG(DBG_TRACE && DBG_IP,
  311. (DTEXT("+IPDispatchDeviceControl(%x, %x) IoControlCode %x\n"),
  312. Irp, IrpSp, code));
  314. switch (code) {
  316. case IOCTL_ICMP_ECHO_REQUEST:
  317. return (DispatchEchoRequest(Irp, IrpSp));
  319. case IOCTL_ARP_SEND_REQUEST:
  320. return (DispatchARPRequest(Irp, IrpSp));
  322. case IOCTL_IP_INTERFACE_INFO:
  323. return (GetInterfaceInfo(Irp, IrpSp));
  325. case IOCTL_IP_GET_IGMPLIST:
  326. return (GetIgmpList(Irp, IrpSp));
  328. case IOCTL_IP_GET_BEST_INTERFACE:
  329. return (GetBestInterfaceId(Irp, IrpSp));
  331. case IOCTL_IP_SET_ADDRESS:
  332. case IOCTL_IP_SET_ADDRESS_EX:
  333. return (DispatchIPSetNTEAddrRequest(Irp, IrpSp));
  335. case IOCTL_IP_SET_BLOCKOFROUTES:
  336. return (DispatchIPSetBlockofRoutes(Irp, IrpSp));
  338. case IOCTL_IP_SET_ROUTEWITHREF:
  339. return (DispatchIPSetRouteWithRef(Irp, IrpSp));
  341. case IOCTL_IP_SET_MULTIHOPROUTE:
  342. return (DispatchIPSetMultihopRoute(Irp, IrpSp));
  344. case IOCTL_IP_ADD_NTE:
  345. {
  346. PIP_ADD_NTE_REQUEST request;
  347. PIP_ADD_NTE_RESPONSE response;
  348. IP_STATUS ipStatus;
  349. int InterfaceNameLen = 0;
  350. UNICODE_STRING InterfaceName;
  351. BOOLEAN requestValid = FALSE;
  353. request = Irp->AssociatedIrp.SystemBuffer;
  354. response = (PIP_ADD_NTE_RESPONSE) request;
  356. //
  357. // Validate input parameters
  358. //
  359. if ((IrpSp->Parameters.DeviceIoControl.InputBufferLength >=
  360. sizeof(IP_ADD_NTE_REQUEST_OLD)) &&
  361. (IrpSp->Parameters.DeviceIoControl.OutputBufferLength >=
  362. sizeof(IP_ADD_NTE_RESPONSE))) {
  364. #if defined(_WIN64)
  365. PIP_ADD_NTE_REQUEST32 request32;
  367. if (IoIs32bitProcess(Irp)) {
  368. if (IrpSp->Parameters.DeviceIoControl.InputBufferLength >=
  369. sizeof(IP_ADD_NTE_REQUEST32)) {
  371. requestValid = TRUE;
  372. request32 = Irp->AssociatedIrp.SystemBuffer;
  374. InterfaceName.Length = request32->InterfaceName.Length;
  375. InterfaceName.MaximumLength =
  376. request32->InterfaceName.MaximumLength;
  377. InterfaceName.Buffer =
  378. (PWCHAR)request32->InterfaceNameBuffer;
  379. InterfaceNameLen =
  380. IrpSp->Parameters.DeviceIoControl.InputBufferLength
  381. - FIELD_OFFSET(IP_ADD_NTE_REQUEST32,
  382. InterfaceNameBuffer);
  383. }
  384. } else {
  385. #endif // _WIN64
  386. if (IrpSp->Parameters.DeviceIoControl.InputBufferLength >=
  387. sizeof(IP_ADD_NTE_REQUEST)) {
  389. requestValid = TRUE;
  391. InterfaceName = request->InterfaceName;
  392. InterfaceName.Buffer = (PWCHAR)request->InterfaceNameBuffer;
  393. InterfaceNameLen =
  394. IrpSp->Parameters.DeviceIoControl.InputBufferLength -
  395. FIELD_OFFSET(IP_ADD_NTE_REQUEST, InterfaceNameBuffer);
  396. }
  397. #if defined(_WIN64)
  398. }
  399. #endif // _WIN64
  400. if (requestValid) {
  402. ipStatus = IPAddDynamicNTE(
  403. request->InterfaceContext,
  404. &InterfaceName,
  405. InterfaceNameLen,
  406. request->Address,
  407. request->SubnetMask,
  408. &(response->Context),
  409. &(response->Instance)
  410. );
  412. } else {
  413. ipStatus = IPAddDynamicNTE(
  414. request->InterfaceContext,
  415. NULL,
  416. 0,
  417. request->Address,
  418. request->SubnetMask,
  419. &(response->Context),
  420. &(response->Instance)
  421. );
  423. }
  425. status = IPStatusToNTStatus(ipStatus);
  426. if (status == STATUS_SUCCESS) {
  427. Irp->IoStatus.Information = sizeof(IP_ADD_NTE_RESPONSE);
  428. }
  429. } else {
  430. status = STATUS_INVALID_PARAMETER;
  431. }
  432. }
  433. break;
  435. case IOCTL_IP_DELETE_NTE:
  436. {
  437. PIP_DELETE_NTE_REQUEST request;
  438. IP_STATUS ipStatus;
  440. request = Irp->AssociatedIrp.SystemBuffer;
  442. //
  443. // Validate input parameters
  444. //
  445. if (IrpSp->Parameters.DeviceIoControl.InputBufferLength >=
  446. sizeof(IP_DELETE_NTE_REQUEST)
  447. ) {
  448. ipStatus = IPDeleteDynamicNTE(
  449. request->Context
  450. );
  451. status = IPStatusToNTStatus(ipStatus);
  452. } else {
  453. status = STATUS_INVALID_PARAMETER;
  454. }
  455. }
  456. break;
  458. case IOCTL_IP_GET_NTE_INFO:
  459. {
  460. PIP_GET_NTE_INFO_REQUEST request;
  461. PIP_GET_NTE_INFO_RESPONSE response;
  462. BOOLEAN retval;
  463. ushort nteFlags;
  465. request = Irp->AssociatedIrp.SystemBuffer;
  466. response = (PIP_GET_NTE_INFO_RESPONSE) request;
  468. //
  469. // Validate input parameters
  470. //
  471. if ((IrpSp->Parameters.DeviceIoControl.InputBufferLength >=
  472. sizeof(IP_GET_NTE_INFO_REQUEST)
  473. )
  474. &&
  475. (IrpSp->Parameters.DeviceIoControl.OutputBufferLength >=
  476. sizeof(IP_GET_NTE_INFO_RESPONSE))
  477. ) {
  478. retval = (BOOLEAN) IPGetNTEInfo(
  479. request->Context,
  480. &(response->Instance),
  481. &(response->Address),
  482. &(response->SubnetMask),
  483. &nteFlags
  484. );
  486. if (retval == FALSE) {
  487. status = STATUS_UNSUCCESSFUL;
  488. } else {
  489. status = STATUS_SUCCESS;
  490. Irp->IoStatus.Information =
  491. sizeof(IP_GET_NTE_INFO_RESPONSE);
  492. response->Flags = 0;
  494. if (nteFlags & NTE_DYNAMIC) {
  495. response->Flags |= IP_NTE_DYNAMIC;
  496. }
  497. }
  498. } else {
  499. status = STATUS_INVALID_PARAMETER;
  500. }
  501. }
  502. break;
  504. case IOCTL_IP_SET_DHCP_INTERFACE:
  505. {
  506. PIP_SET_DHCP_INTERFACE_REQUEST request;
  507. BOOLEAN retval;
  509. request = Irp->AssociatedIrp.SystemBuffer;
  511. if (IrpSp->Parameters.DeviceIoControl.InputBufferLength >= sizeof(IP_SET_DHCP_INTERFACE_REQUEST)) {
  512. retval = (BOOLEAN) SetDHCPNTE(
  513. request->Context
  514. );
  516. if (retval == FALSE) {
  517. status = STATUS_UNSUCCESSFUL;
  518. } else {
  519. status = STATUS_SUCCESS;
  520. }
  521. } else {
  522. status = STATUS_INVALID_PARAMETER;
  523. }
  524. }
  525. break;
  527. case IOCTL_IP_SET_IF_CONTEXT:
  528. {
  529. status = STATUS_NOT_SUPPORTED;
  530. }
  531. break;
  533. case IOCTL_IP_SET_IF_PROMISCUOUS:
  534. {
  535. PIP_SET_IF_PROMISCUOUS_INFO info;
  537. info = Irp->AssociatedIrp.SystemBuffer;
  539. if (IrpSp->Parameters.DeviceIoControl.InputBufferLength >= sizeof(IP_SET_IF_PROMISCUOUS_INFO)) {
  540. status = SetIFPromiscuous(info->Index,
  541. info->Type,
  542. info->Add);
  544. } else {
  545. status = STATUS_BUFFER_TOO_SMALL;
  546. }
  548. break;
  549. }
  551. case IOCTL_IP_GET_BESTINTFC_FUNC_ADDR:
  553. if (Irp->RequestorMode != KernelMode) {
  554. status = STATUS_ACCESS_DENIED;
  555. break;
  556. }
  557. KdPrintEx((DPFLTR_TCPIP_ID, DPFLTR_INFO_LEVEL, "ip:Getbestinterfacequery\n"));
  559. status = STATUS_INVALID_PARAMETER;
  560. if (IrpSp->Parameters.DeviceIoControl.OutputBufferLength >= sizeof(ulong)) {
  562. PULONG_PTR ptr;
  564. ptr = Irp->AssociatedIrp.SystemBuffer;
  566. if (ptr) {
  567. *ptr = (ULONG_PTR) IPGetBestInterfaceIndex;
  568. KdPrintEx((DPFLTR_TCPIP_ID, DPFLTR_INFO_LEVEL, "ip:returning address of Getbestinterface %x\n", *ptr));
  569. Irp->IoStatus.Information = sizeof(ULONG_PTR);
  570. status = STATUS_SUCCESS;
  571. }
  572. }
  573. break;
  575. case IOCTL_IP_SET_FILTER_POINTER:
  576. {
  577. PIP_SET_FILTER_HOOK_INFO info;
  579. if (Irp->RequestorMode != KernelMode) {
  580. status = STATUS_ACCESS_DENIED;
  581. break;
  582. }
  583. info = Irp->AssociatedIrp.SystemBuffer;
  585. if (IrpSp->Parameters.DeviceIoControl.InputBufferLength >= sizeof(IP_SET_FILTER_HOOK_INFO)) {
  586. status = (NTSTATUS) SetFilterPtr(info->FilterPtr);
  588. if (status != IP_SUCCESS) {
  589. ASSERT(status != IP_PENDING);
  590. //
  591. // Map status
  592. //
  593. status = STATUS_UNSUCCESSFUL;
  594. } else {
  595. status = STATUS_SUCCESS;
  596. }
  597. } else {
  598. status = STATUS_INVALID_PARAMETER;
  599. }
  600. }
  601. break;
  603. case IOCTL_IP_SET_FIREWALL_HOOK:
  604. {
  605. PIP_SET_FIREWALL_HOOK_INFO info;
  607. if (Irp->RequestorMode != KernelMode) {
  608. status = STATUS_ACCESS_DENIED;
  609. break;
  610. }
  611. info = Irp->AssociatedIrp.SystemBuffer;
  613. if (IrpSp->Parameters.DeviceIoControl.InputBufferLength >= sizeof(IP_SET_FIREWALL_HOOK_INFO)) {
  614. status = (NTSTATUS) SetFirewallHook(info);
  616. if (status != IP_SUCCESS) {
  617. ASSERT(status != IP_PENDING);
  618. //
  619. // Map status
  620. //
  621. status = STATUS_UNSUCCESSFUL;
  622. } else {
  623. status = STATUS_SUCCESS;
  624. }
  625. } else {
  626. status = STATUS_INVALID_PARAMETER;
  627. }
  628. }
  629. break;
  631. case IOCTL_IP_SET_MAP_ROUTE_POINTER:
  632. {
  633. PIP_SET_MAP_ROUTE_HOOK_INFO info;
  635. if (Irp->RequestorMode != KernelMode) {
  636. status = STATUS_ACCESS_DENIED;
  637. break;
  638. }
  639. info = Irp->AssociatedIrp.SystemBuffer;
  641. if (IrpSp->Parameters.DeviceIoControl.InputBufferLength >= sizeof(IP_SET_MAP_ROUTE_HOOK_INFO)) {
  642. status = (NTSTATUS) SetMapRoutePtr(info->MapRoutePtr);
  644. if (status != IP_SUCCESS) {
  645. ASSERT(status != IP_PENDING);
  646. //
  647. // Map status
  648. //
  649. status = STATUS_UNSUCCESSFUL;
  650. } else {
  651. status = STATUS_SUCCESS;
  652. }
  653. } else {
  654. status = STATUS_INVALID_PARAMETER;
  655. }
  656. }
  657. break;
  659. case IOCTL_IP_RTCHANGE_NOTIFY_REQUEST:
  660. {
  661. status = RtChangeNotifyRequest(Irp, IrpSp);
  662. break;
  663. }
  665. case IOCTL_IP_RTCHANGE_NOTIFY_REQUEST_EX:
  666. {
  667. status = RtChangeNotifyRequestEx(Irp, IrpSp);
  668. break;
  669. }
  671. case IOCTL_IP_ADDCHANGE_NOTIFY_REQUEST:
  672. {
  674. status = AddrChangeNotifyRequest(Irp, IrpSp);
  676. break;
  677. }
  679. #if MILLEN
  680. case IOCTL_IP_IFCHANGE_NOTIFY_REQUEST:
  681. {
  682. status = IfChangeNotifyRequest(Irp, IrpSp);
  683. break;
  684. }
  686. // For non-MILLEN, will default and return NOT_IMPLEMENTED.
  687. #endif // MILLEN
  689. case IOCTL_IP_CANCEL_CHANGE_NOTIFY:
  690. {
  691. PVOID ApcContext = NULL;
  693. status = STATUS_SUCCESS;
  694. #if defined(_WIN64)
  695. if (IoIs32bitProcess(Irp)) {
  696. if (IrpSp->Parameters.DeviceIoControl.InputBufferLength !=
  697. sizeof(VOID * POINTER_32)) {
  698. status = STATUS_INVALID_BUFFER_SIZE;
  699. } else {
  700. ApcContext =
  701. (PVOID)*(VOID * POINTER_32 *)
  702. Irp->AssociatedIrp.SystemBuffer;
  703. }
  704. } else {
  705. #endif // _WIN64
  706. if (IrpSp->Parameters.DeviceIoControl.InputBufferLength !=
  707. sizeof(PVOID)) {
  708. status = STATUS_INVALID_BUFFER_SIZE;
  709. } else {
  710. ApcContext = *(PVOID*)Irp->AssociatedIrp.SystemBuffer;
  711. }
  712. #if defined(_WIN64)
  713. }
  714. #endif // _WIN64
  715. if (NT_SUCCESS(status)) {
  716. status = CancelChangeNotifyRequest(Irp, IrpSp, ApcContext);
  717. }
  718. break;
  719. }
  721. case IOCTL_IP_UNIDIRECTIONAL_ADAPTER_ADDRESS:
  722. {
  723. Interface *pIf;
  724. ULONG cUniIF;
  725. ULONG cbRequired;
  726. PIP_UNIDIRECTIONAL_ADAPTER_ADDRESS pUniAdapterAddress;
  727. IPAddr *pUniIpAddr;
  728. CTELockHandle Handle;
  730. CTEGetLock(&RouteTableLock.Lock, &Handle);
  732. //
  733. // First off, count the number of unidirectional interfaces
  734. // and bytes required.
  735. //
  737. cUniIF = 0;
  738. cbRequired = FIELD_OFFSET(IP_UNIDIRECTIONAL_ADAPTER_ADDRESS, Address);
  740. for (pIf = IFList; pIf != NULL; pIf = pIf->if_next) {
  741. if (pIf->if_flags & IF_FLAGS_UNI) {
  742. cUniIF++;
  743. }
  744. }
  746. cbRequired = FIELD_OFFSET(IP_UNIDIRECTIONAL_ADAPTER_ADDRESS, Address[cUniIF]);
  748. if (cUniIF == 0) {
  749. cbRequired = sizeof(IP_UNIDIRECTIONAL_ADAPTER_ADDRESS);
  750. }
  752. //
  753. // Validate output buffer length and copy.
  754. //
  756. if (cbRequired <= IrpSp->Parameters.DeviceIoControl.OutputBufferLength) {
  757. pUniAdapterAddress = Irp->AssociatedIrp.SystemBuffer;
  759. pUniAdapterAddress->NumAdapters = cUniIF;
  760. pUniIpAddr = &pUniAdapterAddress->Address[0];
  762. if (cUniIF) {
  763. for (pIf = IFList; pIf != NULL; pIf = pIf->if_next) {
  764. if (pIf->if_flags & IF_FLAGS_UNI) {
  765. *pUniIpAddr++ = net_long(pIf->if_index);
  766. }
  767. }
  768. } else {
  770. //
  771. // In the case of 0 unidirectional interfaces, we should still
  772. // set the ip address instead of exposing some random kernel content
  773. //
  775. *pUniIpAddr = 0;
  776. }
  777. Irp->IoStatus.Information = cbRequired;
  778. status = STATUS_SUCCESS;
  779. } else {
  780. Irp->IoStatus.Information = 0;
  781. status = STATUS_BUFFER_OVERFLOW;
  782. }
  784. CTEFreeLock(&RouteTableLock.Lock, Handle);
  786. break;
  787. }
  790. case IOCTL_IP_GET_PNP_ARP_POINTERS:
  791. {
  792. PIP_GET_PNP_ARP_POINTERS info = (PIP_GET_PNP_ARP_POINTERS) Irp->AssociatedIrp.SystemBuffer;
  794. if (Irp->RequestorMode != KernelMode) {
  795. status = STATUS_ACCESS_DENIED;
  796. break;
  797. }
  798. info->IPAddInterface = (IPAddInterfacePtr) IPAddInterface;
  799. info->IPDelInterface = (IPDelInterfacePtr) IPDelInterface;
  801. Irp->IoStatus.Status = STATUS_SUCCESS;
  802. Irp->IoStatus.Information = sizeof(IP_GET_PNP_ARP_POINTERS);
  803. IoCompleteRequest(Irp, IO_NETWORK_INCREMENT);
  804. return STATUS_SUCCESS;;
  806. }
  807. break;
  809. case IOCTL_IP_WAKEUP_PATTERN:
  810. {
  811. PIP_WAKEUP_PATTERN_REQUEST Info = (PIP_WAKEUP_PATTERN_REQUEST) Irp->AssociatedIrp.SystemBuffer;
  813. if (Irp->RequestorMode != KernelMode) {
  814. status = STATUS_ACCESS_DENIED;
  815. break;
  816. }
  818. if (IrpSp->Parameters.DeviceIoControl.InputBufferLength >=
  819. sizeof(IP_WAKEUP_PATTERN_REQUEST)) {
  820. status = IPWakeupPattern(
  821. Info->InterfaceContext,
  822. Info->PtrnDesc,
  823. Info->AddPattern);
  824. } else {
  825. status = STATUS_INVALID_PARAMETER;
  826. }
  827. }
  828. break;
  830. case IOCTL_IP_GET_WOL_CAPABILITY:
  831. {
  832. PULONG request, response;
  834. request = Irp->AssociatedIrp.SystemBuffer;
  835. response = request;
  837. if (IrpSp->Parameters.DeviceIoControl.InputBufferLength >=
  838. sizeof(*request) &&
  839. IrpSp->Parameters.DeviceIoControl.OutputBufferLength >=
  840. sizeof(*response)) {
  842. status = IPGetCapability(*request, (uchar*)response,
  843. IF_WOL_CAP);
  844. } else {
  845. status = STATUS_BUFFER_TOO_SMALL;
  846. }
  848. if (status == STATUS_SUCCESS) {
  849. Irp->IoStatus.Information = sizeof(*response);
  850. }
  851. break;
  852. }
  853. case IOCTL_IP_GET_OFFLOAD_CAPABILITY:
  854. {
  855. PULONG request;
  856. IFOffloadCapability* response;
  858. request = Irp->AssociatedIrp.SystemBuffer;
  859. response = (IFOffloadCapability*)request;
  861. if (IrpSp->Parameters.DeviceIoControl.InputBufferLength >=
  862. sizeof(*request) &&
  863. IrpSp->Parameters.DeviceIoControl.OutputBufferLength >=
  864. sizeof(*response)) {
  866. status = IPGetCapability(*request, (uchar*)response,
  867. IF_OFFLOAD_CAP);
  868. } else {
  869. status = STATUS_BUFFER_TOO_SMALL;
  870. }
  872. if (status == STATUS_SUCCESS) {
  873. Irp->IoStatus.Information = sizeof(*response);
  874. }
  875. break;
  876. }
  878. case IOCTL_IP_GET_IP_EVENT:
  879. return (DispatchIPGetIPEvent(Irp, IrpSp));
  881. case IOCTL_IP_FLUSH_ARP_TABLE:
  883. status = FlushArpTable(Irp, IrpSp);
  884. break;
  886. case IOCTL_IP_GET_IF_INDEX:
  888. status = IPGetIfIndex(Irp,
  889. IrpSp);
  891. break;
  893. case IOCTL_IP_GET_IF_NAME:
  895. status = IPGetIfName(Irp,
  896. IrpSp);
  898. break;
  901. case IOCTL_IP_GET_MCAST_COUNTERS:
  903. return (IPGetMcastCounters(Irp,IrpSp));
  905. case IOCTL_IP_ENABLE_ROUTER_REQUEST:
  906. status = IPEnableRouterRequest(Irp, IrpSp);
  907. break;
  909. case IOCTL_IP_UNENABLE_ROUTER_REQUEST: {
  910. PVOID ApcContext = NULL;
  912. status = STATUS_SUCCESS;
  913. #if defined(_WIN64)
  914. if (IoIs32bitProcess(Irp)) {
  915. if (IrpSp->Parameters.DeviceIoControl.InputBufferLength !=
  916. sizeof(VOID * POINTER_32) ||
  917. IrpSp->Parameters.DeviceIoControl.OutputBufferLength !=
  918. sizeof(ULONG)) {
  919. status = STATUS_INVALID_BUFFER_SIZE;
  920. } else {
  921. ApcContext =
  922. (PVOID)*(VOID * POINTER_32 *)
  923. Irp->AssociatedIrp.SystemBuffer;
  924. }
  925. } else {
  926. #endif // _WIN64
  927. if (IrpSp->Parameters.DeviceIoControl.InputBufferLength !=
  928. sizeof(PVOID) ||
  929. IrpSp->Parameters.DeviceIoControl.OutputBufferLength !=
  930. sizeof(ULONG)) {
  931. status = STATUS_INVALID_BUFFER_SIZE;
  932. } else {
  933. ApcContext = *(PVOID*)Irp->AssociatedIrp.SystemBuffer;
  934. }
  935. #if defined(_WIN64)
  936. }
  937. #endif // _WIN64
  938. if (NT_SUCCESS(status)) {
  939. status = IPUnenableRouterRequest(Irp, IrpSp, ApcContext);
  940. }
  941. break;
  942. }
  944. #if DBG_MAP_BUFFER
  945. case IOCTL_IP_DBG_TEST_FAIL_MAP_BUFFER:
  946. if (IrpSp->Parameters.DeviceIoControl.InputBufferLength != sizeof(ULONG)) {
  947. status = STATUS_INVALID_BUFFER_SIZE;
  948. } else {
  949. PULONG pBuf = (PULONG) Irp->AssociatedIrp.SystemBuffer;
  951. status = DbgTestFailMapBuffers(
  952. *pBuf);
  953. }
  954. break;
  955. #endif // DBG_MAP_BUFFER
  957. case IOCTL_IP_ENABLE_MEDIA_SENSE_REQUEST: {
  959. PVOID ApcContext = NULL;
  960. status = STATUS_SUCCESS;
  961. #if defined(_WIN64)
  962. if (IoIs32bitProcess(Irp)) {
  963. if (IrpSp->Parameters.DeviceIoControl.InputBufferLength !=
  964. sizeof(VOID* POINTER_32) ||
  965. IrpSp->Parameters.DeviceIoControl.OutputBufferLength !=
  966. sizeof(ULONG)) {
  967. status = STATUS_INVALID_BUFFER_SIZE;
  968. } else {
  969. ApcContext = (PVOID)*(VOID * POINTER_32 *)
  970. Irp->AssociatedIrp.SystemBuffer;
  971. }
  972. } else {
  973. #endif // _WIN64
  974. if (IrpSp->Parameters.DeviceIoControl.InputBufferLength !=
  975. sizeof(PVOID) ||
  976. IrpSp->Parameters.DeviceIoControl.OutputBufferLength !=
  977. sizeof(ULONG)) {
  978. status = STATUS_INVALID_BUFFER_SIZE;
  979. } else {
  980. ApcContext = *(PVOID*)Irp->AssociatedIrp.SystemBuffer;
  981. }
  982. #if defined(_WIN64)
  983. }
  984. #endif // _WIN64
  985. if (NT_SUCCESS(status)) {
  986. status = IPEnableMediaSenseRequest(Irp, IrpSp, ApcContext);
  987. }
  988. break;
  989. }
  991. case IOCTL_IP_DISABLE_MEDIA_SENSE_REQUEST:
  993. status = IPDisableMediaSenseRequest(Irp, IrpSp);
  995. break;
  998. default:
  999. status = STATUS_NOT_IMPLEMENTED;
  1000. break;
  1001. }
  1003. if ((status != IP_PENDING) && (status != STATUS_PENDING)) {
  1004. Irp->IoStatus.Status = status;
  1005. IoCompleteRequest(Irp, IO_NETWORK_INCREMENT);
  1006. }
  1007. return status;
  1009. }
  1011. NTSTATUS
  1012. IPDispatchInternalDeviceControl(
  1013. IN PIRP Irp,
  1014. IN PIO_STACK_LOCATION IrpSp
  1015. )
  1016. /*++
  1018. Routine Description:
  1020. Arguments:
  1022. Irp - Pointer to I/O request packet
  1023. IrpSp - Pointer to the current stack location in the Irp.
  1025. Return Value:
  1027. NTSTATUS -- Indicates whether the request was successfully queued.
  1029. --*/
  1031. {
  1032. NTSTATUS status;
  1034. UNREFERENCED_PARAMETER(IrpSp);
  1036. PAGED_CODE();
  1038. status = STATUS_SUCCESS;
  1040. Irp->IoStatus.Status = status;
  1041. IoCompleteRequest(Irp, IO_NETWORK_INCREMENT);
  1043. return status;
  1045. }
  1047. NTSTATUS
  1048. IPCreate(
  1049. IN PIRP Irp,
  1050. IN PIO_STACK_LOCATION IrpSp
  1051. )
  1052. /*++
  1054. Routine Description:
  1056. Arguments:
  1058. Irp - Pointer to I/O request packet
  1059. IrpSp - Pointer to the current stack location in the Irp.
  1061. Return Value:
  1063. NTSTATUS -- Indicates whether the request was successfully queued.
  1065. --*/
  1067. {
  1068. UNREFERENCED_PARAMETER(Irp);
  1069. UNREFERENCED_PARAMETER(IrpSp);
  1071. PAGED_CODE();
  1073. return (STATUS_SUCCESS);
  1075. }
  1077. NTSTATUS
  1078. IPCleanup(
  1079. IN PIRP Irp,
  1080. IN PIO_STACK_LOCATION IrpSp
  1081. )
  1082. /*++
  1084. Routine Description:
  1086. Arguments:
  1088. Irp - Pointer to I/O request packet
  1089. IrpSp - Pointer to the current stack location in the Irp.
  1091. Return Value:
  1093. NTSTATUS -- Indicates whether the request was successfully queued.
  1095. --*/
  1097. {
  1098. PPENDING_IRP pendingIrp;
  1099. PLIST_ENTRY entry, nextEntry;
  1100. KIRQL oldIrql;
  1101. LIST_ENTRY completeList;
  1102. PIRP cancelledIrp;
  1104. UNREFERENCED_PARAMETER(Irp);
  1106. InitializeListHead(&completeList);
  1108. //
  1109. // Collect all of the pending IRPs on this file object.
  1110. //
  1111. IoAcquireCancelSpinLock(&oldIrql);
  1113. entry = PendingArpSendList.Flink;
  1115. while (entry != &PendingArpSendList) {
  1116. pendingIrp = CONTAINING_RECORD(entry, PENDING_IRP, Linkage);
  1118. if (pendingIrp->FileObject == IrpSp->FileObject) {
  1119. nextEntry = entry->Flink;
  1120. RemoveEntryList(entry);
  1121. IoSetCancelRoutine(pendingIrp->Irp, NULL);
  1122. InsertTailList(&completeList, &(pendingIrp->Linkage));
  1123. entry = nextEntry;
  1124. } else {
  1125. entry = entry->Flink;
  1126. }
  1127. }
  1129. IoReleaseCancelSpinLock(oldIrql);
  1131. //
  1132. // Complete them.
  1133. //
  1134. entry = completeList.Flink;
  1136. while (entry != &completeList) {
  1137. pendingIrp = CONTAINING_RECORD(entry, PENDING_IRP, Linkage);
  1138. cancelledIrp = pendingIrp->Irp;
  1139. entry = entry->Flink;
  1141. //
  1142. // Free the PENDING_IRP structure. The control block will be freed
  1143. // when the request completes.
  1144. //
  1145. CTEFreeMem(pendingIrp);
  1147. //
  1148. // Complete the IRP.
  1149. //
  1150. cancelledIrp->IoStatus.Information = 0;
  1151. cancelledIrp->IoStatus.Status = STATUS_CANCELLED;
  1152. IoCompleteRequest(cancelledIrp, IO_NETWORK_INCREMENT);
  1153. }
  1155. InitializeListHead(&completeList);
  1157. //
  1158. // Collect all of the pending IRPs on this file object.
  1159. //
  1160. IoAcquireCancelSpinLock(&oldIrql);
  1162. entry = PendingEchoList.Flink;
  1164. while (entry != &PendingEchoList) {
  1165. pendingIrp = CONTAINING_RECORD(entry, PENDING_IRP, Linkage);
  1167. if (pendingIrp->FileObject == IrpSp->FileObject) {
  1168. nextEntry = entry->Flink;
  1169. RemoveEntryList(entry);
  1170. IoSetCancelRoutine(pendingIrp->Irp, NULL);
  1171. InsertTailList(&completeList, &(pendingIrp->Linkage));
  1172. entry = nextEntry;
  1173. } else {
  1174. entry = entry->Flink;
  1175. }
  1176. }
  1178. IoReleaseCancelSpinLock(oldIrql);
  1180. //
  1181. // Complete them.
  1182. //
  1183. entry = completeList.Flink;
  1185. while (entry != &completeList) {
  1186. pendingIrp = CONTAINING_RECORD(entry, PENDING_IRP, Linkage);
  1187. cancelledIrp = pendingIrp->Irp;
  1188. entry = entry->Flink;
  1190. //
  1191. // Free the PENDING_IRP structure. The control block will be freed
  1192. // when the request completes.
  1193. //
  1194. CTEFreeMem(pendingIrp);
  1196. //
  1197. // Complete the IRP.
  1198. //
  1199. cancelledIrp->IoStatus.Information = 0;
  1200. cancelledIrp->IoStatus.Status = STATUS_CANCELLED;
  1201. IoCompleteRequest(cancelledIrp, IO_NETWORK_INCREMENT);
  1202. }
  1204. InitializeListHead(&completeList);
  1206. //
  1207. // Collect all of the pending IRPs on this file object.
  1208. //
  1209. IoAcquireCancelSpinLock(&oldIrql);
  1211. entry = PendingIPSetNTEAddrList.Flink;
  1213. while (entry != &PendingIPSetNTEAddrList) {
  1214. pendingIrp = CONTAINING_RECORD(entry, PENDING_IRP, Linkage);
  1216. if (pendingIrp->FileObject == IrpSp->FileObject) {
  1217. nextEntry = entry->Flink;
  1218. RemoveEntryList(entry);
  1219. IoSetCancelRoutine(pendingIrp->Irp, NULL);
  1220. InsertTailList(&completeList, &(pendingIrp->Linkage));
  1221. entry = nextEntry;
  1222. } else {
  1223. entry = entry->Flink;
  1224. }
  1225. }
  1227. IoReleaseCancelSpinLock(oldIrql);
  1229. //
  1230. // Complete them.
  1231. //
  1232. entry = completeList.Flink;
  1234. while (entry != &completeList) {
  1235. pendingIrp = CONTAINING_RECORD(entry, PENDING_IRP, Linkage);
  1236. cancelledIrp = pendingIrp->Irp;
  1237. entry = entry->Flink;
  1239. //
  1240. // Free the PENDING_IRP structure. The control block will be freed
  1241. // when the request completes.
  1242. //
  1243. CTEFreeMem(pendingIrp);
  1245. //
  1246. // Complete the IRP.
  1247. //
  1248. cancelledIrp->IoStatus.Information = 0;
  1249. cancelledIrp->IoStatus.Status = STATUS_CANCELLED;
  1250. IoCompleteRequest(cancelledIrp, IO_NETWORK_INCREMENT);
  1251. }
  1253. //
  1254. // complete the pending irp for media sense
  1255. //
  1256. cancelledIrp = NULL;
  1257. IoAcquireCancelSpinLock(&oldIrql);
  1258. if (PendingIPGetIPEventRequest && IoGetCurrentIrpStackLocation(PendingIPGetIPEventRequest)->FileObject == IrpSp->FileObject) {
  1259. cancelledIrp = PendingIPGetIPEventRequest;
  1260. PendingIPGetIPEventRequest = NULL;
  1261. IoSetCancelRoutine(cancelledIrp, NULL);
  1262. }
  1263. IoReleaseCancelSpinLock(oldIrql);
  1265. if (cancelledIrp) {
  1266. cancelledIrp->IoStatus.Information = 0;
  1267. cancelledIrp->IoStatus.Status = STATUS_CANCELLED;
  1268. IoCompleteRequest(cancelledIrp, IO_NETWORK_INCREMENT);
  1270. }
  1271. return (STATUS_SUCCESS);
  1273. }
  1275. NTSTATUS
  1276. IPClose(
  1277. IN PIRP Irp,
  1278. IN PIO_STACK_LOCATION IrpSp
  1279. )
  1280. /*++
  1282. Routine Description:
  1284. Arguments:
  1286. Irp - Pointer to I/O request packet
  1287. IrpSp - Pointer to the current stack location in the Irp.
  1289. Return Value:
  1291. NTSTATUS -- Indicates whether the request was successfully queued.
  1293. --*/
  1295. {
  1296. UNREFERENCED_PARAMETER(Irp);
  1297. UNREFERENCED_PARAMETER(IrpSp);
  1299. PAGED_CODE();
  1301. return (STATUS_SUCCESS);
  1303. }
  1305. //
  1306. // ARP send function definitions
  1307. //
  1308. VOID
  1309. CancelArpSendRequest(
  1310. IN PDEVICE_OBJECT Device,
  1311. IN PIRP Irp
  1312. )
  1313. /*++
  1315. Routine Description:
  1317. Cancels an outstanding ARP request Irp.
  1319. Arguments:
  1321. Device - The device on which the request was issued.
  1322. Irp - Pointer to I/O request packet to cancel.
  1324. Return Value:
  1326. None.
  1328. Notes:
  1330. This function is called with cancel spinlock held. It must be
  1331. released before the function returns.
  1333. The ARP control block associated with this request cannot be
  1334. freed until the request completes. The completion routine will
  1335. free it.
  1337. --*/
  1339. {
  1340. PPENDING_IRP pendingIrp = NULL;
  1341. PPENDING_IRP item;
  1342. PLIST_ENTRY entry;
  1344. UNREFERENCED_PARAMETER(Device);
  1346. for (entry = PendingArpSendList.Flink;
  1347. entry != &PendingArpSendList;
  1348. entry = entry->Flink
  1349. ) {
  1350. item = CONTAINING_RECORD(entry, PENDING_IRP, Linkage);
  1351. if (item->Irp == Irp) {
  1352. pendingIrp = item;
  1353. RemoveEntryList(entry);
  1354. break;
  1355. }
  1356. }
  1358. IoReleaseCancelSpinLock(Irp->CancelIrql);
  1360. if (pendingIrp != NULL) {
  1361. //
  1362. // Free the PENDING_IRP structure. The control block will be freed
  1363. // when the request completes.
  1364. //
  1365. CTEFreeMem(pendingIrp);
  1367. //
  1368. // Complete the IRP.
  1369. //
  1370. Irp->IoStatus.Information = 0;
  1371. Irp->IoStatus.Status = STATUS_CANCELLED;
  1372. IoCompleteRequest(Irp, IO_NETWORK_INCREMENT);
  1373. }
  1374. return;
  1376. }
  1378. NTSTATUS
  1379. RtChangeNotifyRequest(
  1380. PIRP Irp,
  1381. IN PIO_STACK_LOCATION IrpSp
  1382. )
  1383. {
  1384. CTELockHandle TableHandle;
  1385. KIRQL OldIrq;
  1386. NTSTATUS status;
  1388. if (IrpSp->Parameters.DeviceIoControl.InputBufferLength &&
  1389. IrpSp->Parameters.DeviceIoControl.InputBufferLength <
  1390. sizeof(IPNotifyData)) {
  1391. status = STATUS_INVALID_PARAMETER;
  1392. goto done;
  1393. }
  1395. #if MILLEN
  1396. if (IrpSp->Parameters.DeviceIoControl.OutputBufferLength &&
  1397. IrpSp->Parameters.DeviceIoControl.OutputBufferLength <
  1398. sizeof(IP_RTCHANGE_NOTIFY)) {
  1399. status = STATUS_INVALID_PARAMETER;
  1400. goto done;
  1401. }
  1402. #endif // MILLEN
  1404. IoAcquireCancelSpinLock(&OldIrq);
  1405. CTEGetLock(&RouteTableLock.Lock, &TableHandle);
  1407. Irp->Tail.Overlay.DriverContext[0] = IrpSp->FileObject;
  1408. InsertTailList(&RtChangeNotifyQueue, &Irp->Tail.Overlay.ListEntry);
  1410. if (Irp->Cancel) {
  1411. RemoveTailList(&RtChangeNotifyQueue);
  1412. status = STATUS_CANCELLED;
  1413. } else {
  1414. IoMarkIrpPending(Irp);
  1415. IoSetCancelRoutine(Irp, RtChangeNotifyCancel);
  1416. status = STATUS_PENDING;
  1417. }
  1419. Irp->IoStatus.Information = 0;
  1420. CTEFreeLock(&RouteTableLock.Lock, TableHandle);
  1421. IoReleaseCancelSpinLock(OldIrq);
  1423. done:
  1425. return status;
  1426. }
  1428. NTSTATUS
  1429. RtChangeNotifyRequestEx(
  1430. PIRP Irp,
  1431. IN PIO_STACK_LOCATION IrpSp
  1432. )
  1433. {
  1435. CTELockHandle TableHandle;
  1436. KIRQL OldIrq;
  1437. NTSTATUS status;
  1439. if (IrpSp->Parameters.DeviceIoControl.InputBufferLength &&
  1440. IrpSp->Parameters.DeviceIoControl.InputBufferLength <
  1441. sizeof(IPNotifyData)) {
  1442. status = STATUS_INVALID_PARAMETER;
  1443. goto done;
  1444. }
  1446. #if MILLEN
  1447. if (IrpSp->Parameters.DeviceIoControl.OutputBufferLength &&
  1448. IrpSp->Parameters.DeviceIoControl.OutputBufferLength <
  1449. sizeof(IP_RTCHANGE_NOTIFY)) {
  1450. status = STATUS_INVALID_PARAMETER;
  1451. goto done;
  1452. }
  1453. #endif // MILLEN
  1455. IoAcquireCancelSpinLock(&OldIrq);
  1457. CTEGetLock(&RouteTableLock.Lock, &TableHandle);
  1459. Irp->Tail.Overlay.DriverContext[0] = IrpSp->FileObject;
  1460. InsertTailList(&RtChangeNotifyQueueEx, &Irp->Tail.Overlay.ListEntry);
  1462. if (Irp->Cancel) {
  1463. RemoveTailList(&RtChangeNotifyQueueEx);
  1464. status = STATUS_CANCELLED;
  1465. } else {
  1466. IoMarkIrpPending(Irp);
  1467. IoSetCancelRoutine(Irp, RtChangeNotifyCancelEx);
  1468. status = STATUS_PENDING;
  1469. }
  1471. Irp->IoStatus.Information = 0;
  1472. CTEFreeLock(&RouteTableLock.Lock, TableHandle);
  1473. IoReleaseCancelSpinLock(OldIrq);
  1475. done:
  1477. return status;
  1478. }
  1480. NTSTATUS
  1481. AddrChangeNotifyRequest(PIRP Irp, PIO_STACK_LOCATION pIrpSp)
  1482. {
  1483. CTELockHandle TableHandle;
  1484. KIRQL OldIrq;
  1485. NTSTATUS status;
  1487. UNREFERENCED_PARAMETER(pIrpSp);
  1489. DEBUGMSG(DBG_TRACE && DBG_NOTIFY,
  1490. (DTEXT("AddrChangeNotifyRequest(%x, %x)\n"), Irp, pIrpSp));
  1492. #if MILLEN
  1493. if (pIrpSp->Parameters.DeviceIoControl.OutputBufferLength) {
  1494. PIP_ADDCHANGE_NOTIFY pNotify = Irp->AssociatedIrp.SystemBuffer;
  1496. DEBUGMSG(DBG_INFO && DBG_NOTIFY,
  1497. (DTEXT("AddrChangeNotifyRequest OutputLen %d, MaxCfgName %d\n"),
  1498. pIrpSp->Parameters.DeviceIoControl.OutputBufferLength,
  1499. pNotify->ConfigName.MaximumLength));
  1501. if (pIrpSp->Parameters.DeviceIoControl.OutputBufferLength <
  1502. (FIELD_OFFSET(IP_ADDCHANGE_NOTIFY, NameData) + (ULONG) pNotify->ConfigName.MaximumLength)) {
  1503. DEBUGMSG(DBG_ERROR,
  1504. (DTEXT("AddrChangeNotifyRequest: INVALID output buffer length.\n")));
  1505. status = STATUS_INVALID_PARAMETER;
  1506. goto done;
  1507. }
  1508. }
  1509. #endif // MILLEN
  1511. IoAcquireCancelSpinLock(&OldIrq);
  1512. CTEGetLock(&AddChangeLock, &TableHandle);
  1514. Irp->Tail.Overlay.DriverContext[0] = pIrpSp->FileObject;
  1515. InsertTailList(
  1516. &AddChangeNotifyQueue,
  1517. &(Irp->Tail.Overlay.ListEntry)
  1518. );
  1520. if (Irp->Cancel) {
  1521. (VOID) RemoveTailList(&AddChangeNotifyQueue);
  1522. status = STATUS_CANCELLED;
  1523. } else {
  1524. IoMarkIrpPending(Irp);
  1525. IoSetCancelRoutine(Irp, AddChangeNotifyCancel);
  1526. status = STATUS_PENDING;
  1527. }
  1529. Irp->IoStatus.Information = 0;
  1530. CTEFreeLock(&AddChangeLock, TableHandle);
  1531. IoReleaseCancelSpinLock(OldIrq);
  1533. #if MILLEN
  1534. done:
  1535. #endif // MILLEN
  1537. DEBUGMSG(DBG_TRACE && DBG_NOTIFY,
  1538. (DTEXT("-AddrChangeNotifyRequest [%x]\n"), status));
  1540. return status;
  1541. }
  1543. #if MILLEN
  1544. void
  1545. IfChangeNotifyCancel(
  1546. IN PDEVICE_OBJECT pDeviceObject,
  1547. IN PIRP pIrp
  1548. )
  1549. {
  1550. DEBUGMSG(DBG_TRACE && DBG_NOTIFY,
  1551. (DTEXT("IfChangeNotifyCancel(%x, %x)\n"), pDeviceObject, pIrp));
  1552. CancelNotify(pIrp, &IfChangeNotifyQueue, &IfChangeLock);
  1553. return;
  1554. }
  1556. NTSTATUS
  1557. IfChangeNotifyRequest(
  1558. PIRP pIrp,
  1559. PIO_STACK_LOCATION pIrpSp
  1560. )
  1561. {
  1562. CTELockHandle TableHandle;
  1563. KIRQL OldIrq;
  1564. NTSTATUS NtStatus;
  1566. DEBUGMSG(DBG_TRACE && DBG_NOTIFY,
  1567. (DTEXT("+IfChangeNotifyRequest(%x, %x)\n"), pIrp, pIrpSp));
  1569. //
  1570. // Check output buffer length. Output buffer will store the
  1571. // NTE context and whether the interface was added or deleted.
  1572. //
  1574. if (pIrpSp->Parameters.DeviceIoControl.OutputBufferLength < sizeof(IP_IFCHANGE_NOTIFY)) {
  1575. NtStatus = STATUS_INVALID_PARAMETER;
  1576. pIrp->IoStatus.Status = NtStatus;
  1577. pIrp->IoStatus.Information = 0;
  1578. goto done;
  1579. }
  1581. //
  1582. // Set cancel routine, mark IRP as pending and put on our interface
  1583. // notify list.
  1584. //
  1586. IoAcquireCancelSpinLock(&OldIrq);
  1588. IoMarkIrpPending(pIrp);
  1589. CTEGetLock(&IfChangeLock, &TableHandle);
  1591. InsertTailList(
  1592. &IfChangeNotifyQueue,
  1593. &(pIrp->Tail.Overlay.ListEntry)
  1594. );
  1596. if (pIrp->Cancel) {
  1597. RemoveTailList(&IfChangeNotifyQueue);
  1598. NtStatus = STATUS_CANCELLED;
  1599. } else {
  1600. IoSetCancelRoutine(pIrp, IfChangeNotifyCancel);
  1601. NtStatus = STATUS_PENDING;
  1602. }
  1604. pIrp->IoStatus.Information = 0;
  1605. CTEFreeLock(&IfChangeLock, TableHandle);
  1606. IoReleaseCancelSpinLock(OldIrq);
  1608. done:
  1610. DEBUGMSG(DBG_TRACE && DBG_NOTIFY,
  1611. (DTEXT("-IfChangeNotifyRequest [%x]\n"), NtStatus));
  1613. return NtStatus;
  1614. }
  1615. #endif // MILLEN
  1617. NTSTATUS
  1618. CancelChangeNotifyRequest(
  1619. PIRP Irp,
  1620. PIO_STACK_LOCATION IrpSp,
  1621. PVOID ApcContext
  1622. )
  1623. {
  1624. KIRQL CancelIrql;
  1625. UNREFERENCED_PARAMETER(Irp);
  1626. IoAcquireCancelSpinLock(&CancelIrql);
  1627. if (CancelNotifyByContext(IrpSp->FileObject, ApcContext,
  1628. &RtChangeNotifyQueue, &RouteTableLock) ||
  1629. CancelNotifyByContext(IrpSp->FileObject, ApcContext,
  1630. &RtChangeNotifyQueueEx, &RouteTableLock) ||
  1631. CancelNotifyByContext(IrpSp->FileObject, ApcContext,
  1632. &AddChangeNotifyQueue, &AddChangeLock)) {
  1633. KeLowerIrql(CancelIrql);
  1634. return STATUS_SUCCESS;
  1635. }
  1636. IoReleaseCancelSpinLock(CancelIrql);
  1637. return STATUS_INVALID_PARAMETER;
  1638. }
  1640. NTSTATUS
  1641. IPEnableRouterRequest(
  1642. PIRP Irp,
  1643. PIO_STACK_LOCATION IrpSp
  1644. )
  1645. {
  1646. KIRQL OldIrql;
  1647. NTSTATUS status;
  1649. IoAcquireCancelSpinLock(&OldIrql);
  1651. if (Irp->Cancel) {
  1652. status = STATUS_CANCELLED;
  1653. } else {
  1654. IoMarkIrpPending(Irp);
  1655. IoSetCancelRoutine(Irp, CancelIPEnableRouterRequest);
  1657. // Increment the routing-enabled reference count.
  1658. // When the count rises above zero routing is enabled.
  1659. // This reference will be dropped when the IRP is cancelled.
  1661. CTEGetLockAtDPC(&RouteTableLock.Lock);
  1662. Irp->Tail.Overlay.DriverContext[0] = IrpSp->FileObject;
  1663. InsertTailList(&PendingEnableRouterList, &Irp->Tail.Overlay.ListEntry);
  1664. IPEnableRouterWithRefCount(TRUE);
  1665. CTEFreeLockFromDPC(&RouteTableLock.Lock);
  1666. status = STATUS_PENDING;
  1667. }
  1668. Irp->IoStatus.Information = 0;
  1670. IoReleaseCancelSpinLock(OldIrql);
  1671. return status;
  1672. }
  1674. VOID
  1675. CancelIPEnableRouterRequest(
  1676. IN PDEVICE_OBJECT Device,
  1677. IN PIRP Irp
  1678. )
  1679. {
  1680. CTELockHandle TableHandle;
  1682. UNREFERENCED_PARAMETER(Device);
  1685. IoReleaseCancelSpinLock(Irp->CancelIrql);
  1687. // Decrement the routing-enabled reference count.
  1688. // If the count drops to zero routing is disabled.
  1690. CTEGetLock(&RouteTableLock.Lock, &TableHandle);
  1691. RemoveEntryList(&Irp->Tail.Overlay.ListEntry);
  1692. IPEnableRouterWithRefCount(FALSE);
  1693. CTEFreeLock(&RouteTableLock.Lock, TableHandle);
  1695. Irp->IoStatus.Information = 0;
  1696. Irp->IoStatus.Status = STATUS_CANCELLED;
  1697. IoCompleteRequest(Irp, IO_NETWORK_INCREMENT);
  1698. }
  1700. NTSTATUS
  1701. IPUnenableRouterRequest(
  1702. PIRP Irp,
  1703. PIO_STACK_LOCATION IrpSp,
  1704. PVOID ApcContext
  1705. )
  1706. {
  1707. PLIST_ENTRY entry;
  1708. KIRQL CancelIrql;
  1709. int RefCount;
  1710. CTELockHandle TableHandle;
  1712. // Locate the pending IRP for the request corresponding to the caller's
  1713. // disable-request. Drop the routing-enabled reference-count, complete
  1714. // the corresponding IRP, and tell the caller what the reference-count's
  1715. // current value is.
  1717. IoAcquireCancelSpinLock(&CancelIrql);
  1718. CTEGetLock(&RouteTableLock.Lock, &TableHandle);
  1719. for (entry = PendingEnableRouterList.Flink;
  1720. entry != &PendingEnableRouterList;
  1721. entry = entry->Flink
  1722. ) {
  1723. PIRP EnableIrp = CONTAINING_RECORD(entry, IRP, Tail.Overlay.ListEntry);
  1724. if (EnableIrp->Tail.Overlay.DriverContext[0] == IrpSp->FileObject &&
  1725. EnableIrp->Overlay.AsynchronousParameters.UserApcContext ==
  1726. ApcContext) {
  1728. RemoveEntryList(&EnableIrp->Tail.Overlay.ListEntry);
  1729. RefCount = IPEnableRouterWithRefCount(FALSE);
  1730. CTEFreeLock(&RouteTableLock.Lock, TableHandle);
  1732. IoSetCancelRoutine(EnableIrp, NULL);
  1733. IoReleaseCancelSpinLock(CancelIrql);
  1735. EnableIrp->IoStatus.Status = STATUS_SUCCESS;
  1736. EnableIrp->IoStatus.Information = 0;
  1737. IoCompleteRequest(EnableIrp, IO_NETWORK_INCREMENT);
  1739. *(PULONG)Irp->AssociatedIrp.SystemBuffer = (ULONG)RefCount;
  1740. Irp->IoStatus.Information = sizeof(ULONG);
  1741. return STATUS_SUCCESS;
  1742. }
  1743. }
  1744. CTEFreeLock(&RouteTableLock.Lock, TableHandle);
  1745. IoReleaseCancelSpinLock(CancelIrql);
  1746. return STATUS_INVALID_PARAMETER;
  1747. }
  1749. //
  1750. // ICMP Echo function definitions
  1751. //
  1752. VOID
  1753. CancelEchoRequest(
  1754. IN PDEVICE_OBJECT Device,
  1755. IN PIRP Irp
  1756. )
  1757. /*++
  1759. Routine Description:
  1761. Cancels an outstanding Echo request Irp.
  1763. Arguments:
  1765. Device - The device on which the request was issued.
  1766. Irp - Pointer to I/O request packet to cancel.
  1768. Return Value:
  1770. None.
  1772. Notes:
  1774. This function is called with cancel spinlock held. It must be
  1775. released before the function returns.
  1777. The echo control block associated with this request cannot be
  1778. freed until the request completes. The completion routine will
  1779. free it.
  1781. --*/
  1783. {
  1784. PPENDING_IRP pendingIrp = NULL;
  1785. PPENDING_IRP item;
  1786. PLIST_ENTRY entry;
  1788. UNREFERENCED_PARAMETER(Device);
  1790. for (entry = PendingEchoList.Flink;
  1791. entry != &PendingEchoList;
  1792. entry = entry->Flink
  1793. ) {
  1794. item = CONTAINING_RECORD(entry, PENDING_IRP, Linkage);
  1795. if (item->Irp == Irp) {
  1796. pendingIrp = item;
  1797. RemoveEntryList(entry);
  1798. break;
  1799. }
  1800. }
  1802. IoReleaseCancelSpinLock(Irp->CancelIrql);
  1804. if (pendingIrp != NULL) {
  1805. //
  1806. // Free the PENDING_IRP structure. The control block will be freed
  1807. // when the request completes.
  1808. //
  1809. CTEFreeMem(pendingIrp);
  1811. //
  1812. // Complete the IRP.
  1813. //
  1814. Irp->IoStatus.Information = 0;
  1815. Irp->IoStatus.Status = STATUS_CANCELLED;
  1816. IoCompleteRequest(Irp, IO_NETWORK_INCREMENT);
  1817. }
  1818. return;
  1820. }
  1822. //
  1823. // IP Set Addr function definitions
  1824. //
  1825. VOID
  1826. CancelIPSetNTEAddrRequest(
  1827. IN PDEVICE_OBJECT Device,
  1828. IN PIRP Irp
  1829. )
  1830. /*++
  1832. Routine Description:
  1834. Cancels an outstanding IP Set Addr request Irp.
  1836. Arguments:
  1838. Device - The device on which the request was issued.
  1839. Irp - Pointer to I/O request packet to cancel.
  1841. Return Value:
  1843. None.
  1845. Notes:
  1847. This function is called with cancel spinlock held. It must be
  1848. released before the function returns.
  1850. The IP Set Addr control block associated with this request cannot be
  1851. freed until the request completes. The completion routine will
  1852. free it.
  1854. --*/
  1856. {
  1857. PPENDING_IRP pendingIrp = NULL;
  1858. PPENDING_IRP item;
  1859. PLIST_ENTRY entry;
  1861. UNREFERENCED_PARAMETER(Device);
  1863. for (entry = PendingIPSetNTEAddrList.Flink;
  1864. entry != &PendingIPSetNTEAddrList;
  1865. entry = entry->Flink
  1866. ) {
  1867. item = CONTAINING_RECORD(entry, PENDING_IRP, Linkage);
  1868. if (item->Irp == Irp) {
  1869. pendingIrp = item;
  1870. RemoveEntryList(entry);
  1871. break;
  1872. }
  1873. }
  1875. IoReleaseCancelSpinLock(Irp->CancelIrql);
  1877. if (pendingIrp != NULL) {
  1878. //
  1879. // Free the PENDING_IRP structure. The control block will be freed
  1880. // when the request completes.
  1881. //
  1882. CTEFreeMem(pendingIrp);
  1884. //
  1885. // Complete the IRP.
  1886. //
  1887. Irp->IoStatus.Information = 0;
  1888. Irp->IoStatus.Status = STATUS_CANCELLED;
  1889. IoCompleteRequest(Irp, IO_NETWORK_INCREMENT);
  1890. }
  1891. return;
  1893. }
  1895. VOID
  1896. CancelIPGetIPEventRequest(
  1897. IN PDEVICE_OBJECT Device,
  1898. IN PIRP Irp
  1899. )
  1900. /*++
  1902. Routine Description:
  1904. Cancels IPGetIPEvent function.
  1906. Arguments:
  1908. Device - The device on which the request was issued.
  1909. Irp - Pointer to I/O request packet to cancel.
  1911. Return Value:
  1913. None.
  1915. Notes:
  1917. This function is called with cancel spinlock held. It must be
  1918. released before the function returns.
  1920. The IP Set Addr control block associated with this request cannot be
  1921. freed until the request completes. The completion routine will
  1922. free it.
  1924. --*/
  1926. {
  1927. PIRP pendingIrp = NULL;
  1929. UNREFERENCED_PARAMETER(Device);
  1932. //
  1933. // We need to make sure that we are not completing this irp
  1934. // while we are in this cancel code. If we are completing
  1935. // this irp, the PendingIPGetIPEventRequest will either be
  1936. // NULL or contain next irp.
  1937. //
  1938. if (PendingIPGetIPEventRequest == Irp) {
  1939. pendingIrp = Irp;
  1940. PendingIPGetIPEventRequest = NULL;
  1941. }
  1942. IoReleaseCancelSpinLock(Irp->CancelIrql);
  1944. if (pendingIrp != NULL) {
  1945. pendingIrp->IoStatus.Information = 0;
  1946. pendingIrp->IoStatus.Status = STATUS_CANCELLED;
  1947. IoCompleteRequest(pendingIrp, IO_NETWORK_INCREMENT);
  1948. }
  1949. return;
  1951. }
  1953. void
  1954. CompleteEchoRequest(
  1955. EchoControl *controlBlock,
  1956. IP_STATUS Status,
  1957. void *Data, OPTIONAL
  1958. uint DataSize,
  1959. struct IPOptInfo *OptionInfo OPTIONAL
  1960. )
  1961. /*++
  1963. Routine Description:
  1965. Handles the completion of an ICMP Echo request
  1967. Arguments:
  1969. Context - Pointer to the EchoControl structure for this request.
  1970. Status - The IP status of the transmission.
  1971. Data - A pointer to data returned in the echo reply.
  1972. DataSize - The length of the returned data.
  1973. OptionInfo - A pointer to the IP options in the echo reply.
  1975. Return Value:
  1977. None.
  1979. --*/
  1981. {
  1982. KIRQL oldIrql;
  1983. PIRP irp = NULL;
  1984. PIO_STACK_LOCATION irpSp;
  1985. PPENDING_IRP pendingIrp = NULL;
  1986. PPENDING_IRP item;
  1987. PLIST_ENTRY entry;
  1988. ULONG bytesReturned;
  1990. //
  1991. // Find the echo request IRP on the pending list.
  1992. //
  1993. IoAcquireCancelSpinLock(&oldIrql);
  1995. for (entry = PendingEchoList.Flink;
  1996. entry != &PendingEchoList;
  1997. entry = entry->Flink
  1998. ) {
  1999. item = CONTAINING_RECORD(entry, PENDING_IRP, Linkage);
  2000. if (item->Context == controlBlock) {
  2001. pendingIrp = item;
  2002. irp = pendingIrp->Irp;
  2003. IoSetCancelRoutine(irp, NULL);
  2004. RemoveEntryList(entry);
  2005. break;
  2006. }
  2007. }
  2009. IoReleaseCancelSpinLock(oldIrql);
  2011. if (pendingIrp == NULL) {
  2012. //
  2013. // IRP must have been cancelled. PENDING_IRP struct
  2014. // was freed by cancel routine. Free control block.
  2015. //
  2016. CTEFreeMem(controlBlock);
  2017. return;
  2018. }
  2020. irpSp = IoGetCurrentIrpStackLocation(irp);
  2022. #if defined(_WIN64)
  2023. if (IoIs32bitProcess(irp)) {
  2024. bytesReturned = ICMPEchoComplete32(controlBlock, Status, Data, DataSize,
  2025. OptionInfo);
  2026. } else {
  2027. #endif // _WIN64
  2028. bytesReturned = ICMPEchoComplete(controlBlock, Status, Data, DataSize,
  2029. OptionInfo);
  2030. #if defined(_WIN64)
  2031. }
  2032. #endif // _WIN64
  2034. CTEFreeMem(pendingIrp);
  2035. CTEFreeMem(controlBlock);
  2037. //
  2038. // Complete the IRP.
  2039. //
  2040. irp->IoStatus.Information = (ULONG) bytesReturned;
  2041. irp->IoStatus.Status = STATUS_SUCCESS;
  2042. IoCompleteRequest(irp, IO_NETWORK_INCREMENT);
  2043. return;
  2044. }
  2046. void
  2047. CompleteIPSetNTEAddrRequest(
  2048. void *Context,
  2049. IP_STATUS Status
  2050. )
  2051. /*++
  2053. Routine Description:
  2055. Handles the completion of an IP Set Addr request
  2057. Arguments:
  2059. Context - Pointer to the SetAddrControl structure for this request.
  2060. Status - The IP status of the transmission.
  2062. Return Value:
  2064. None.
  2066. --*/
  2068. {
  2069. KIRQL oldIrql;
  2070. PIRP irp = NULL;
  2071. SetAddrControl *controlBlock;
  2072. PPENDING_IRP pendingIrp = NULL;
  2073. PPENDING_IRP item;
  2074. PLIST_ENTRY entry;
  2076. controlBlock = (SetAddrControl *) Context;
  2078. //
  2079. // Find the echo request IRP on the pending list.
  2080. //
  2082. IoAcquireCancelSpinLock(&oldIrql);
  2084. for (entry = PendingIPSetNTEAddrList.Flink;
  2085. entry != &PendingIPSetNTEAddrList;
  2086. entry = entry->Flink
  2087. ) {
  2088. item = CONTAINING_RECORD(entry, PENDING_IRP, Linkage);
  2089. if (item->Context == controlBlock) {
  2090. pendingIrp = item;
  2091. irp = pendingIrp->Irp;
  2092. IoSetCancelRoutine(irp, NULL);
  2093. RemoveEntryList(entry);
  2094. break;
  2095. }
  2096. }
  2098. IoReleaseCancelSpinLock(oldIrql);
  2100. if (pendingIrp == NULL) {
  2101. //
  2102. // IRP must have been cancelled. PENDING_IRP struct
  2103. // was freed by cancel routine. Free control block.
  2104. //
  2105. CTEFreeMem(controlBlock);
  2106. return;
  2107. }
  2108. CTEFreeMem(pendingIrp);
  2110. //
  2111. // Complete the IRP.
  2112. //
  2113. irp->IoStatus.Information = 0;
  2114. Status = IPStatusToNTStatus(Status);
  2115. irp->IoStatus.Status = Status;
  2116. CTEFreeMem(controlBlock);
  2117. IoCompleteRequest(irp, IO_NETWORK_INCREMENT);
  2118. return;
  2120. }
  2123. void
  2124. CheckSetAddrRequestOnInterface(
  2125. Interface *IF
  2126. )
  2127. /*++
  2129. Routine Description:
  2131. Handles the completion of an IP Set Addr request on an interface
  2132. that is getting unbound
  2134. Arguments:
  2136. IF - Pointer to the interface whish is getting deleted
  2138. Return Value:
  2140. None.
  2142. --*/
  2144. {
  2145. KIRQL oldIrql;
  2146. PIRP irp;
  2147. PPENDING_IRP pendingIrp = NULL;
  2148. PLIST_ENTRY entry, nextEntry;
  2149. LIST_ENTRY completeList;
  2150. SetAddrControl *controlBlock;
  2152. InitializeListHead(&completeList);
  2154. //
  2155. // Find pending set addr requests on this interface
  2156. //
  2158. IoAcquireCancelSpinLock(&oldIrql);
  2160. entry = PendingIPSetNTEAddrList.Flink;
  2162. while (entry != &PendingIPSetNTEAddrList) {
  2164. pendingIrp = CONTAINING_RECORD(entry, PENDING_IRP, Linkage);
  2166. controlBlock = pendingIrp->Context;
  2168. if (controlBlock->interface == IF) {
  2170. // remove this entry
  2171. nextEntry = entry->Flink;
  2172. irp = pendingIrp->Irp;
  2173. IoSetCancelRoutine(irp, NULL);
  2174. RemoveEntryList(entry);
  2175. // reinsert this in to completelist
  2176. InsertTailList(&completeList, &(pendingIrp->Linkage));
  2177. entry = nextEntry;
  2178. } else {
  2179. entry = entry->Flink;
  2180. }
  2181. }
  2183. IoReleaseCancelSpinLock(oldIrql);
  2185. //
  2186. // Complete them.
  2187. //
  2188. entry = completeList.Flink;
  2190. while (entry != &completeList) {
  2192. pendingIrp = CONTAINING_RECORD(entry, PENDING_IRP, Linkage);
  2193. irp = pendingIrp->Irp;
  2194. entry = entry->Flink;
  2196. //
  2197. // Free the PENDING_IRP structure
  2198. // control block will be freed
  2199. // when addaddrcomplete is called
  2202. CTEFreeMem(pendingIrp);
  2204. //
  2205. // Complete the IRP.
  2206. //
  2207. irp->IoStatus.Information = 0;
  2208. irp->IoStatus.Status = STATUS_CANCELLED;
  2209. IoCompleteRequest(irp, IO_NETWORK_INCREMENT);
  2210. }
  2212. return;
  2213. }
  2215. BOOLEAN
  2216. PrepareArpSendIrpForCancel(
  2217. PIRP Irp,
  2218. PPENDING_IRP PendingIrp
  2219. )
  2220. /*++
  2222. Routine Description:
  2224. Prepares an Arp Send IRP for cancellation.
  2226. Arguments:
  2228. Irp - Pointer to I/O request packet to initialize for cancellation.
  2229. PendingIrp - Pointer to the PENDING_IRP structure for this IRP.
  2231. Return Value:
  2233. TRUE if the IRP was cancelled before this routine was called.
  2234. FALSE otherwise.
  2236. --*/
  2238. {
  2239. BOOLEAN cancelled = TRUE;
  2240. KIRQL oldIrql;
  2242. IoAcquireCancelSpinLock(&oldIrql);
  2244. ASSERT(Irp->CancelRoutine == NULL);
  2246. if (!Irp->Cancel) {
  2247. IoSetCancelRoutine(Irp, CancelArpSendRequest);
  2248. InsertTailList(&PendingArpSendList, &(PendingIrp->Linkage));
  2249. cancelled = FALSE;
  2250. }
  2251. IoReleaseCancelSpinLock(oldIrql);
  2253. return (cancelled);
  2255. }
  2257. void
  2258. CompleteArpResolveRequest(
  2259. void *Context,
  2260. IP_STATUS Status
  2261. )
  2262. /*++
  2264. Routine Description:
  2266. Handles the completion of an ICMP Echo request
  2268. Arguments:
  2270. Context - Pointer to the EchoControl structure for this request.
  2271. Status - The IP status of the transmission.
  2273. Return Value:
  2275. None.
  2277. --*/
  2279. {
  2280. KIRQL oldIrql;
  2281. PIRP irp = NULL;
  2282. PIO_STACK_LOCATION irpSp;
  2283. ARPControlBlock *controlBlock;
  2284. PPENDING_IRP pendingIrp = NULL;
  2285. PPENDING_IRP item;
  2286. PLIST_ENTRY entry;
  2288. controlBlock = (ARPControlBlock *) Context;
  2290. //
  2291. // Find the echo request IRP on the pending list.
  2292. //
  2293. IoAcquireCancelSpinLock(&oldIrql);
  2295. for (entry = PendingArpSendList.Flink;
  2296. entry != &PendingArpSendList;
  2297. entry = entry->Flink
  2298. ) {
  2299. item = CONTAINING_RECORD(entry, PENDING_IRP, Linkage);
  2300. if (item->Context == controlBlock) {
  2301. pendingIrp = item;
  2302. irp = pendingIrp->Irp;
  2303. IoSetCancelRoutine(irp, NULL);
  2304. RemoveEntryList(entry);
  2305. break;
  2306. }
  2307. }
  2309. IoReleaseCancelSpinLock(oldIrql);
  2311. if (pendingIrp == NULL) {
  2312. //
  2313. // IRP must have been cancelled. PENDING_IRP struct
  2314. // was freed by cancel routine. Free control block.
  2315. //
  2316. CTEFreeMem(controlBlock->PhyAddr);
  2317. CTEFreeMem(controlBlock);
  2318. return;
  2319. }
  2320. irpSp = IoGetCurrentIrpStackLocation(irp);
  2322. //set the right length
  2324. //
  2325. // Complete the IRP.
  2326. //
  2327. irp->IoStatus.Status = IPStatusToNTStatus(Status);
  2328. irp->IoStatus.Information = controlBlock->PhyAddrLen;
  2330. RtlCopyMemory(irp->AssociatedIrp.SystemBuffer, controlBlock->PhyAddr,
  2331. controlBlock->PhyAddrLen);
  2333. CTEFreeMem(controlBlock->PhyAddr);
  2334. CTEFreeMem(pendingIrp);
  2335. CTEFreeMem(controlBlock);
  2337. if (Status != IP_SUCCESS) {
  2338. irp->IoStatus.Information = 0;
  2339. }
  2340. IoCompleteRequest(irp, IO_NETWORK_INCREMENT);
  2341. return;
  2343. }
  2345. BOOLEAN
  2346. PrepareEchoIrpForCancel(
  2347. PIRP Irp,
  2348. PPENDING_IRP PendingIrp
  2349. )
  2350. /*++
  2352. Routine Description:
  2354. Prepares an Echo IRP for cancellation.
  2356. Arguments:
  2358. Irp - Pointer to I/O request packet to initialize for cancellation.
  2359. PendingIrp - Pointer to the PENDING_IRP structure for this IRP.
  2361. Return Value:
  2363. TRUE if the IRP was cancelled before this routine was called.
  2364. FALSE otherwise.
  2366. --*/
  2368. {
  2369. BOOLEAN cancelled = TRUE;
  2370. KIRQL oldIrql;
  2372. IoAcquireCancelSpinLock(&oldIrql);
  2374. ASSERT(Irp->CancelRoutine == NULL);
  2376. if (!Irp->Cancel) {
  2377. IoSetCancelRoutine(Irp, CancelEchoRequest);
  2378. InsertTailList(&PendingEchoList, &(PendingIrp->Linkage));
  2379. cancelled = FALSE;
  2380. }
  2381. IoReleaseCancelSpinLock(oldIrql);
  2383. return (cancelled);
  2385. }
  2387. BOOLEAN
  2388. PrepareIPSetNTEAddrIrpForCancel(
  2389. PIRP Irp,
  2390. PPENDING_IRP PendingIrp
  2391. )
  2392. /*++
  2394. Routine Description:
  2396. Prepares an IPSetNTEAddr IRP for cancellation.
  2398. Arguments:
  2400. Irp - Pointer to I/O request packet to initialize for cancellation.
  2401. PendingIrp - Pointer to the PENDING_IRP structure for this IRP.
  2403. Return Value:
  2405. TRUE if the IRP was cancelled before this routine was called.
  2406. FALSE otherwise.
  2408. --*/
  2410. {
  2411. BOOLEAN cancelled = TRUE;
  2412. KIRQL oldIrql;
  2414. IoAcquireCancelSpinLock(&oldIrql);
  2416. ASSERT(Irp->CancelRoutine == NULL);
  2418. if (!Irp->Cancel) {
  2419. IoSetCancelRoutine(Irp, CancelIPSetNTEAddrRequest);
  2420. InsertTailList(&PendingIPSetNTEAddrList, &(PendingIrp->Linkage));
  2421. cancelled = FALSE;
  2422. }
  2423. IoReleaseCancelSpinLock(oldIrql);
  2425. return (cancelled);
  2427. }
  2429. NTSTATUS
  2430. DispatchARPRequest(
  2431. IN PIRP Irp,
  2432. IN PIO_STACK_LOCATION IrpSp
  2433. )
  2434. {
  2436. NTSTATUS ntStatus = STATUS_SUCCESS;
  2437. IP_STATUS ipStatus;
  2438. PPENDING_IRP pendingIrp;
  2439. ARPControlBlock *controlBlock;
  2440. IPAddr DestAddress, SourceAddress;
  2442. BOOLEAN cancelled;
  2443. PARP_SEND_REPLY RequestBuffer;
  2445. PAGED_CODE();
  2447. IoMarkIrpPending(Irp);
  2449. if (IrpSp->Parameters.DeviceIoControl.InputBufferLength !=
  2450. sizeof(ARP_SEND_REPLY) ||
  2451. IrpSp->Parameters.DeviceIoControl.OutputBufferLength == 0) {
  2452. ntStatus = STATUS_INVALID_BUFFER_SIZE;
  2453. goto arp_error;
  2455. }
  2456. pendingIrp = CTEAllocMemN(sizeof(PENDING_IRP), 'gICT');
  2458. if (pendingIrp == NULL) {
  2459. ntStatus = STATUS_INSUFFICIENT_RESOURCES;
  2460. goto arp_error;
  2461. }
  2462. controlBlock = CTEAllocMemN(sizeof(ARPControlBlock), 'hICT');
  2464. if (controlBlock == NULL) {
  2465. ntStatus = STATUS_INSUFFICIENT_RESOURCES;
  2466. CTEFreeMem(pendingIrp);
  2467. goto arp_error;
  2468. }
  2469. pendingIrp->Irp = Irp;
  2470. pendingIrp->FileObject = IrpSp->FileObject;
  2471. pendingIrp->Context = controlBlock;
  2473. controlBlock->PhyAddrLen =
  2474. MIN(IrpSp->Parameters.DeviceIoControl.OutputBufferLength,
  2475. ARP_802_ADDR_LENGTH);
  2477. controlBlock->PhyAddr = CTEAllocMemN(controlBlock->PhyAddrLen, 'gICT');
  2478. if (controlBlock->PhyAddr == NULL) {
  2479. CTEFreeMem(controlBlock);
  2480. CTEFreeMem(pendingIrp);
  2481. ntStatus = STATUS_INSUFFICIENT_RESOURCES;
  2482. goto arp_error;
  2483. }
  2485. RequestBuffer = Irp->AssociatedIrp.SystemBuffer;
  2486. controlBlock->next = 0;
  2488. DestAddress = RequestBuffer->DestAddress;
  2489. SourceAddress = RequestBuffer->SrcAddress;
  2491. cancelled = PrepareArpSendIrpForCancel(Irp, pendingIrp);
  2493. if (!cancelled) {
  2495. ipStatus = ARPResolve(
  2496. DestAddress,
  2497. SourceAddress,
  2498. controlBlock,
  2499. CompleteArpResolveRequest
  2500. );
  2502. if (ipStatus != IP_PENDING) {
  2504. //
  2505. // An internal error of some kind occurred. Complete the
  2506. // request.
  2507. //
  2508. CompleteArpResolveRequest(controlBlock, ipStatus);
  2509. }
  2511. return STATUS_PENDING;
  2512. }
  2513. //
  2514. // Irp has already been cancelled.
  2515. //
  2516. ntStatus = STATUS_CANCELLED;
  2517. CTEFreeMem(pendingIrp);
  2518. CTEFreeMem(controlBlock->PhyAddr);
  2519. CTEFreeMem(controlBlock);
  2521. arp_error:
  2523. Irp->IoStatus.Information = 0;
  2524. Irp->IoStatus.Status = ntStatus;
  2526. IoCompleteRequest(Irp, IO_NETWORK_INCREMENT);
  2528. //
  2529. // Irp is marked as pending.
  2530. //
  2531. return STATUS_PENDING;
  2533. }
  2535. NTSTATUS
  2536. DispatchEchoRequest(
  2537. IN PIRP Irp,
  2538. IN PIO_STACK_LOCATION IrpSp
  2539. )
  2540. /*++
  2542. Routine Description:
  2544. Processes an ICMP request.
  2546. Arguments:
  2548. Irp - Pointer to I/O request packet
  2549. IrpSp - Pointer to the current stack location in the Irp.
  2551. Return Value:
  2553. NTSTATUS -- Indicates whether NT-specific processing of the request was
  2554. successful. The status of the actual request is returned in
  2555. the request buffers.
  2557. --*/
  2559. {
  2560. NTSTATUS ntStatus = STATUS_SUCCESS;
  2561. IP_STATUS ipStatus;
  2562. PPENDING_IRP pendingIrp;
  2563. EchoControl *controlBlock;
  2564. BOOLEAN cancelled;
  2566. PAGED_CODE();
  2568. IoMarkIrpPending(Irp);
  2570. pendingIrp = CTEAllocMemN(sizeof(PENDING_IRP), 'iICT');
  2572. if (pendingIrp == NULL) {
  2573. ntStatus = STATUS_INSUFFICIENT_RESOURCES;
  2574. goto echo_error;
  2575. }
  2576. controlBlock = CTEAllocMemN(sizeof(EchoControl), 'jICT');
  2578. if (controlBlock == NULL) {
  2579. ntStatus = STATUS_INSUFFICIENT_RESOURCES;
  2580. CTEFreeMem(pendingIrp);
  2581. goto echo_error;
  2582. }
  2584. #if defined(_WIN64)
  2585. if (IoIs32bitProcess(Irp)) {
  2586. if (IrpSp->Parameters.DeviceIoControl.OutputBufferLength <
  2587. sizeof(ICMP_ECHO_REPLY32)) {
  2588. ntStatus = STATUS_INVALID_PARAMETER;
  2589. CTEFreeMem(controlBlock);
  2590. CTEFreeMem(pendingIrp);
  2591. goto echo_error;
  2592. }
  2593. } else {
  2594. #endif // _WIN64
  2595. if (IrpSp->Parameters.DeviceIoControl.OutputBufferLength <
  2596. sizeof(ICMP_ECHO_REPLY)) {
  2597. ntStatus = STATUS_INVALID_PARAMETER;
  2598. CTEFreeMem(controlBlock);
  2599. CTEFreeMem(pendingIrp);
  2600. goto echo_error;
  2601. }
  2602. #if defined(_WIN64)
  2603. }
  2604. #endif // _WIN64
  2606. pendingIrp->Irp = Irp;
  2607. pendingIrp->FileObject = IrpSp->FileObject;
  2608. pendingIrp->Context = controlBlock;
  2610. controlBlock->ec_starttime = KeQueryPerformanceCounter(NULL);
  2611. controlBlock->ec_replybuf = Irp->AssociatedIrp.SystemBuffer;
  2612. controlBlock->ec_replybuflen =
  2613. IrpSp->Parameters.DeviceIoControl.OutputBufferLength;
  2614. controlBlock->ec_src = 0;
  2616. cancelled = PrepareEchoIrpForCancel(Irp, pendingIrp);
  2618. if (!cancelled) {
  2619. ipStatus =
  2620. ICMPEchoRequest(Irp->AssociatedIrp.SystemBuffer,
  2621. IrpSp->Parameters.DeviceIoControl.InputBufferLength,
  2622. controlBlock, CompleteEchoRequest);
  2624. if (ipStatus != IP_PENDING) {
  2625. //
  2626. // An internal error of some kind occurred. Complete the
  2627. // request.
  2628. //
  2629. CompleteEchoRequest(controlBlock, ipStatus, NULL, 0, NULL);
  2630. }
  2632. return STATUS_PENDING;
  2633. }
  2634. //
  2635. // Irp has already been cancelled.
  2636. //
  2637. ntStatus = STATUS_CANCELLED;
  2638. CTEFreeMem(pendingIrp);
  2639. CTEFreeMem(controlBlock);
  2641. echo_error:
  2643. Irp->IoStatus.Information = 0;
  2644. Irp->IoStatus.Status = ntStatus;
  2646. IoCompleteRequest(Irp, IO_NETWORK_INCREMENT);
  2647. //
  2648. // Irp is marked as pending.
  2649. //
  2650. return STATUS_PENDING;
  2651. }
  2653. NTSTATUS
  2654. DispatchIPSetNTEAddrRequest(
  2655. IN PIRP Irp,
  2656. IN PIO_STACK_LOCATION IrpSp
  2657. )
  2658. /*++
  2660. Routine Description:
  2662. Processes an IP Set Addr request.
  2664. Arguments:
  2666. Irp - Pointer to I/O request packet
  2667. IrpSp - Pointer to the current stack location in the Irp.
  2669. Return Value:
  2671. NTSTATUS -- Indicates whether NT-specific processing of the request was
  2672. successful. The status of the actual request is returned in
  2673. the request buffers.
  2675. --*/
  2677. {
  2678. NTSTATUS ntStatus = STATUS_SUCCESS;
  2679. IP_STATUS ipStatus;
  2680. PPENDING_IRP pendingIrp;
  2681. SetAddrControl *controlBlock;
  2682. BOOLEAN cancelled;
  2684. PAGED_CODE();
  2686. pendingIrp = CTEAllocMemN(sizeof(PENDING_IRP), 'kICT');
  2688. if (pendingIrp == NULL) {
  2689. ntStatus = STATUS_INSUFFICIENT_RESOURCES;
  2690. goto setnteaddr_error;
  2691. }
  2692. controlBlock = CTEAllocMemN(sizeof(SetAddrControl), 'lICT');
  2694. if (controlBlock == NULL) {
  2695. ntStatus = STATUS_INSUFFICIENT_RESOURCES;
  2696. CTEFreeMem(pendingIrp);
  2697. goto setnteaddr_error;
  2698. }
  2699. RtlZeroMemory(controlBlock, sizeof(SetAddrControl));
  2700. pendingIrp->Irp = Irp;
  2701. pendingIrp->FileObject = IrpSp->FileObject;
  2702. pendingIrp->Context = controlBlock;
  2704. IoMarkIrpPending(Irp);
  2706. cancelled = PrepareIPSetNTEAddrIrpForCancel(Irp, pendingIrp);
  2708. if (!cancelled) {
  2710. PIP_SET_ADDRESS_REQUEST request;
  2711. USHORT AddrType = 0;
  2713. request = Irp->AssociatedIrp.SystemBuffer;
  2715. if (IrpSp->Parameters.DeviceIoControl.InputBufferLength >=
  2716. sizeof(IP_SET_ADDRESS_REQUEST)) {
  2718. if (IrpSp->Parameters.DeviceIoControl.IoControlCode ==
  2719. IOCTL_IP_SET_ADDRESS_EX) {
  2720. AddrType = ((PIP_SET_ADDRESS_REQUEST_EX)request)->Type;
  2721. }
  2723. ipStatus = IPSetNTEAddrEx(
  2724. request->Context,
  2725. request->Address,
  2726. request->SubnetMask,
  2727. controlBlock,
  2728. CompleteIPSetNTEAddrRequest,
  2729. AddrType
  2730. );
  2731. } else {
  2732. ipStatus = IP_GENERAL_FAILURE;
  2733. }
  2735. if (ipStatus != IP_PENDING) {
  2737. //
  2738. // A request completed which did not pend.
  2739. //
  2740. CompleteIPSetNTEAddrRequest(controlBlock, ipStatus);
  2741. }
  2743. // Since IoMarkIrpPending was called, return pending.
  2744. return STATUS_PENDING;
  2745. }
  2746. //
  2747. // Irp has already been cancelled.
  2748. //
  2749. ntStatus = STATUS_CANCELLED;
  2750. CTEFreeMem(pendingIrp);
  2751. CTEFreeMem(controlBlock);
  2753. setnteaddr_error:
  2755. Irp->IoStatus.Information = 0;
  2756. Irp->IoStatus.Status = ntStatus;
  2758. IoCompleteRequest(Irp, IO_NETWORK_INCREMENT);
  2759. //
  2760. // Irp is marked as pending.
  2761. //
  2762. return STATUS_PENDING;
  2764. }
  2766. NTSTATUS
  2767. DispatchIPGetIPEvent(
  2768. IN PIRP Irp,
  2769. IN PIO_STACK_LOCATION IrpSp
  2770. )
  2771. /*++
  2773. Routine Description:
  2775. Registers the ioctl for the clients to receive the media sense
  2776. events.
  2778. Arguments:
  2780. Irp - Pointer to I/O request packet
  2781. IrpSp - Pointer to the current stack location in the Irp.
  2783. Return Value:
  2785. NTSTATUS -- Indicates whether NT-specific processing of the request was
  2786. successful. The status of the actual request is returned in
  2787. the request buffers.
  2789. --*/
  2791. {
  2792. NTSTATUS ntStatus = STATUS_SUCCESS;
  2793. KIRQL oldIrql;
  2795. //
  2796. // Mark the irp as pending, later when we complete this irp in
  2797. // the same thread, we will unmark it.
  2798. //
  2799. MARK_REQUEST_PENDING(Irp);
  2800. Irp->IoStatus.Information = 0;
  2801. Irp->IoStatus.Status = STATUS_PENDING;
  2803. //
  2804. // Make sure the buffer size is valid.
  2805. //
  2806. #if defined(_WIN64)
  2807. if (IoIs32bitProcess(Irp)) {
  2808. ntStatus = STATUS_NOT_IMPLEMENTED;
  2809. } else {
  2810. #endif // _WIN64
  2811. if (IrpSp->Parameters.DeviceIoControl.OutputBufferLength <
  2812. sizeof(IP_GET_IP_EVENT_RESPONSE)) {
  2813. ntStatus = STATUS_INVALID_PARAMETER;
  2814. } else {
  2815. IoAcquireCancelSpinLock(&oldIrql);
  2817. ASSERT(Irp->CancelRoutine == NULL);
  2819. //
  2820. // Check if the irp is already cancelled or not.
  2821. //
  2822. if (Irp->Cancel) {
  2823. ntStatus = STATUS_CANCELLED;
  2824. //
  2825. // We only allow one irp pending.
  2826. //
  2827. } else if (PendingIPGetIPEventRequest) {
  2828. ntStatus = STATUS_DEVICE_BUSY;
  2829. } else {
  2830. IoSetCancelRoutine(Irp, CancelIPGetIPEventRequest);
  2831. PendingIPGetIPEventRequest = Irp;
  2832. ntStatus = STATUS_SUCCESS;
  2833. }
  2835. IoReleaseCancelSpinLock(oldIrql);
  2837. if (STATUS_SUCCESS == ntStatus) {
  2839. //
  2840. // IPGetIPEventEx will either complete the request
  2841. // or return pending.
  2842. //
  2843. ntStatus = IPGetIPEventEx(Irp, IrpSp);
  2845. if (ntStatus == STATUS_CANCELLED) {
  2846. //
  2847. // Since the cancel routine has been installed at this point,
  2848. // the IRP will have already been completed, and can no longer
  2849. // be referenced.
  2850. //
  2851. ntStatus = STATUS_PENDING;
  2852. }
  2853. }
  2854. }
  2855. #if defined(_WIN64)
  2856. }
  2857. #endif // _WIN64
  2859. if (ntStatus != STATUS_PENDING) {
  2860. Irp->IoStatus.Status = ntStatus;
  2861. IoCompleteRequest(Irp, IO_NETWORK_INCREMENT);
  2862. }
  2863. //
  2864. // Irp is marked as pending.
  2865. //
  2866. return STATUS_PENDING;
  2868. }
  2870. VOID
  2871. CancelIPEnableMediaSenseRequest(
  2872. IN PDEVICE_OBJECT Device,
  2873. IN PIRP Irp
  2874. )
  2875. {
  2876. CTELockHandle TableHandle;
  2878. UNREFERENCED_PARAMETER(Device);
  2880. IoSetCancelRoutine(Irp, NULL);
  2881. IoReleaseCancelSpinLock(Irp->CancelIrql);
  2883. // Decrement the mediasense-enabled reference count.
  2884. // If the count drops to zero media-sense is disabled.
  2886. CTEGetLock(&RouteTableLock.Lock, &TableHandle);
  2887. RemoveEntryList(&Irp->Tail.Overlay.ListEntry);
  2888. IPEnableMediaSense(TRUE, &TableHandle);
  2889. CTEFreeLock(&RouteTableLock.Lock, TableHandle);
  2891. Irp->IoStatus.Information = 0;
  2892. Irp->IoStatus.Status = STATUS_CANCELLED;
  2893. IoCompleteRequest(Irp, IO_NETWORK_INCREMENT);
  2894. }
  2897. NTSTATUS
  2898. IPDisableMediaSenseRequest(
  2899. PIRP Irp,
  2900. PIO_STACK_LOCATION IrpSp
  2901. )
  2902. {
  2903. KIRQL OldIrql;
  2904. NTSTATUS status;
  2906. IoAcquireCancelSpinLock(&OldIrql);
  2907. IoMarkIrpPending(Irp);
  2908. IoSetCancelRoutine(Irp, CancelIPEnableMediaSenseRequest);
  2910. if (Irp->Cancel) {
  2911. IoSetCancelRoutine(Irp, NULL);
  2912. status = STATUS_CANCELLED;
  2913. Irp->IoStatus.Information = 0;
  2914. IoReleaseCancelSpinLock(OldIrql);
  2916. } else {
  2918. // Increment the mediasense-enabled reference count.
  2919. // When the count rises above zero media-sense is enabled.
  2920. // This reference will be dropped when the IRP is cancelled.
  2922. CTEGetLockAtDPC(&RouteTableLock.Lock);
  2923. Irp->Tail.Overlay.DriverContext[0] = IrpSp->FileObject;
  2924. InsertTailList(&PendingMediaSenseRequestList, &Irp->Tail.Overlay.ListEntry);
  2926. Irp->IoStatus.Information = 0;
  2927. IoReleaseCancelSpinLock(DISPATCH_LEVEL);
  2929. IPEnableMediaSense(FALSE, &OldIrql);
  2930. CTEFreeLock(&RouteTableLock.Lock, OldIrql);
  2931. status = STATUS_PENDING;
  2932. }
  2933. return status;
  2934. }
  2937. NTSTATUS
  2938. IPEnableMediaSenseRequest(
  2939. PIRP Irp,
  2940. PIO_STACK_LOCATION IrpSp,
  2941. PVOID ApcContext
  2942. )
  2943. {
  2944. PLIST_ENTRY entry;
  2945. KIRQL CancelIrql;
  2946. int RefCount;
  2948. // Locate the pending IRP for the request corresponding to the caller's
  2949. // disable-request. Drop the mediasense-enabled reference-count, complete
  2950. // the corresponding IRP, and tell the caller what the reference-count's
  2951. // current value is.
  2953. IoAcquireCancelSpinLock(&CancelIrql);
  2954. CTEGetLockAtDPC(&RouteTableLock.Lock);
  2955. for (entry = PendingMediaSenseRequestList.Flink;
  2956. entry != &PendingMediaSenseRequestList;
  2957. entry = entry->Flink
  2958. ) {
  2959. PIRP EnableIrp = CONTAINING_RECORD(entry, IRP, Tail.Overlay.ListEntry);
  2960. if (EnableIrp->Tail.Overlay.DriverContext[0] == IrpSp->FileObject &&
  2961. EnableIrp->Overlay.AsynchronousParameters.UserApcContext == ApcContext) {
  2963. RemoveEntryList(&EnableIrp->Tail.Overlay.ListEntry);
  2965. IoSetCancelRoutine(EnableIrp, NULL);
  2967. EnableIrp->IoStatus.Status = STATUS_SUCCESS;
  2968. EnableIrp->IoStatus.Information = 0;
  2970. *(PULONG) Irp->AssociatedIrp.SystemBuffer = (ULONG) DisableMediaSense+1;
  2971. Irp->IoStatus.Information = sizeof(ULONG);
  2973. IoReleaseCancelSpinLock(DISPATCH_LEVEL);
  2975. IoCompleteRequest(EnableIrp, IO_NETWORK_INCREMENT);
  2978. RefCount = IPEnableMediaSense(TRUE, &CancelIrql);
  2980. CTEFreeLock(&RouteTableLock.Lock, CancelIrql);
  2982. return STATUS_SUCCESS;
  2983. }
  2984. }
  2985. CTEFreeLockFromDPC(&RouteTableLock.Lock);
  2986. IoReleaseCancelSpinLock(CancelIrql);
  2987. return STATUS_INVALID_PARAMETER;
  2988. }