archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
3 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 827363a95b
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '827363a95b'
${ noResults }
windows-server-2003/base/fs/srv/srvdata.c

1814 lines
61 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. /*++
  3. Copyright (c) 1989 Microsoft Corporation
  5. Module Name:
  7. srvdata.c
  9. Abstract:
  11. This module defines global data for the LAN Manager server FSP. The
  12. globals defined herein are part of the server driver image, and are
  13. therefore loaded into the system address space and are nonpageable.
  14. Some of the fields point to, or contain pointers to, data that is
  15. also in the system address space and nonpageable. Such data can be
  16. accessed by both the FSP and the FSD. Other fields point to data
  17. that is in the FSP address and may or may not be pageable. Only the
  18. FSP is allowed to address this data. Pageable data can only be
  19. accessed at low IRQL (so that page faults are allowed).
  21. This module also has a routine to initialize those fields defined
  22. here that cannot be statically initialized.
  24. Author:
  26. Chuck Lenzmeier (chuckl) 3-Oct-1989
  27. David Treadwell (davidtr)
  29. Revision History:
  31. --*/
  33. #include "precomp.h"
  34. #include "srvdata.tmh"
  35. #pragma hdrstop
  37. #ifdef ALLOC_PRAGMA
  38. #pragma alloc_text( INIT, SrvInitializeData )
  39. #pragma alloc_text( PAGE, SrvTerminateData )
  40. #endif
  43. #if SRVDBG
  45. ULARGE_INTEGER SrvDebug = {DEBUG_STOP_ON_ERRORS};
  46. ULARGE_INTEGER SmbDebug = {0};
  48. CLONG SrvDumpMaximumRecursion = 0;
  50. #endif // SRVDBG
  52. #ifdef PAGED_DBG
  53. ULONG ThisCodeCantBePaged = 0;
  54. #endif
  56. //
  57. // SrvDeviceObject is a pointer to the server's device object, which
  58. // is created by the server FSD during initialization. This global
  59. // location is accessed primarily by the FSP. The FSD usually knows
  60. // the device object address by other means -- because it was called
  61. // with the address as a parameter, or via a file object, etc. But
  62. // the transport receive event handler in the FSD doesn't have such
  63. // other means, so it needs to access the global storage.
  64. //
  65. // *** The event handler has the address of a server connection block
  66. // (in its ConnectionContext parameter). The device object address
  67. // could be found through the connection block.
  68. //
  70. PDEVICE_OBJECT SrvDeviceObject = NULL;
  72. //
  73. // Fields describing the state of the FSP.
  74. //
  76. BOOLEAN SrvFspActive = FALSE; // Indicates whether the FSP is
  77. // running
  78. BOOLEAN SrvFspTransitioning = FALSE; // Indicates that the server is
  79. // in the process of starting up
  80. // or shutting down
  82. BOOLEAN SrvMultiProcessorDriver = FALSE; // Is this a multiprocessor driver?
  84. BOOLEAN SrvCompletedPNPRegistration = FALSE; // Indicates whether the FSP has completed
  85. // registering for PNP notifications
  87. PEPROCESS SrvServerProcess = NULL; // Pointer to the initial system process
  89. PEPROCESS SrvSvcProcess = NULL; // Pointer to the service controller process
  91. CLONG SrvEndpointCount = 0; // Number of transport endpoints
  92. KEVENT SrvEndpointEvent = {0}; // Signaled when no active endpoints
  94. //
  95. // DMA alignment size
  96. //
  98. ULONG SrvCacheLineSize = 0;
  100. //
  101. // Global spin locks.
  102. //
  104. SRV_GLOBAL_SPIN_LOCKS SrvGlobalSpinLocks = {0};
  106. #if SRVDBG || SRVDBG_HANDLES
  107. //
  108. // Lock used to protect debugging structures.
  109. //
  111. SRV_LOCK SrvDebugLock = {0};
  112. #endif
  114. //
  115. // SrvConfigurationLock is used to synchronize configuration requests.
  116. //
  118. SRV_LOCK SrvConfigurationLock = {0};
  120. //
  121. // SrvStartupShutdownLock is used to synchronize server startup and shutdown
  122. //
  124. SRV_LOCK SrvStartupShutdownLock = {0};
  126. //
  127. // SrvEndpointLock serializes access to the global endpoint list and
  128. // all endpoints. Note that the list of connections in each endpoint
  129. // is also protected by this lock.
  130. //
  132. SRV_LOCK SrvEndpointLock = {0};
  134. //
  135. // SrvShareLock protects all shares.
  136. //
  138. SRV_LOCK SrvShareLock = {0};
  140. //
  141. // The number of processors in the system
  142. //
  143. ULONG SrvNumberOfProcessors = {0};
  145. //
  146. // A vector of nonblocking work queues, one for each processor
  147. //
  148. #if MULTIPROCESSOR
  150. PBYTE SrvWorkQueuesBase = 0; // base of allocated memory for the queues
  151. PWORK_QUEUE SrvWorkQueues = 0; // first queue in the allocated memory
  153. #else
  155. WORK_QUEUE SrvWorkQueues[1];
  157. #endif
  159. PWORK_QUEUE eSrvWorkQueues = 0; // used for terminating 'for' loops
  161. //
  162. // Blocking Work Queue
  163. //
  164. #if MULTIPROCESSOR
  166. PBYTE SrvBlockingWorkQueuesBase = 0; // base of allocated memory for blocking queues
  167. PWORK_QUEUE SrvBlockingWorkQueues = 0; // first queue in the allocated memory
  169. #else
  171. WORK_QUEUE SrvBlockingWorkQueues[1];
  173. #endif
  175. WORK_QUEUE SrvLpcWorkQueue;
  177. PWORK_QUEUE eSrvBlockingWorkQueues = 0; // used for terminating 'for' loops
  180. ULONG SrvReBalanced = 0;
  181. ULONG SrvNextBalanceProcessor = 0;
  183. CLONG SrvBlockingOpsInProgress = 0; // Number of blocking ops currently
  184. // being processed
  187. //
  188. // The queue of connections that need an SMB buffer to process a pending
  189. // receive completion.
  190. //
  192. LIST_ENTRY SrvNeedResourceQueue = {0}; // The queue
  194. //
  195. // The queue of connections that are disconnecting and need resource
  196. // thread processing.
  197. //
  199. LIST_ENTRY SrvDisconnectQueue = {0}; // The queue
  201. //
  202. // Queue of connections that needs to be dereferenced.
  203. //
  205. SLIST_HEADER SrvBlockOrphanage = {0}; // The queue
  207. //
  208. // FSP configuration queue. The FSD puts configuration request IRPs
  209. // (from NtDeviceIoControlFile) on this queue, and it is serviced by an
  210. // EX worker thread.
  211. //
  213. LIST_ENTRY SrvConfigurationWorkQueue = {0}; // The queue itself
  215. //
  216. // This is the number of configuration IRPs which have been queued but not
  217. // yet completed.
  218. //
  219. ULONG SrvConfigurationIrpsInProgress = 0;
  221. //
  222. // Base address of the large block allocated to hold initial normal
  223. // work items (see blkwork.c\SrvAllocateInitialWorkItems).
  224. //
  226. PVOID SrvInitialWorkItemBlock = NULL;
  228. //
  229. // Work item used to run the resource thread. Notification event used
  230. // to inform the resource thread to continue running.
  231. //
  233. WORK_QUEUE_ITEM SrvResourceThreadWorkItem = {0};
  234. BOOLEAN SrvResourceThreadRunning = FALSE;
  235. BOOLEAN SrvResourceDisconnectPending = FALSE;
  237. WORK_QUEUE_ITEM SrvResourceAllocThreadWorkItem = {0};
  238. BOOLEAN SrvResourceAllocThreadRunning = FALSE;
  239. BOOLEAN SrvResourceAllocConnection = FALSE;
  241. LONG SrvResourceOrphanedBlocks = 0;
  243. //
  244. // Denial of Service monitoring variables for the Resource Thread
  245. //
  246. LONG SrvDoSTearDownInProgress = 0;
  247. LONG SrvDoSWorkItemTearDown = 0;
  248. BOOLEAN SrvDoSDetected = FALSE;
  249. BOOLEAN SrvDoSRundownDetector = FALSE;
  250. BOOLEAN SrvDoSRundownIncreased = FALSE;
  251. BOOLEAN SrvDisableDoSChecking = FALSE;
  252. SPECIAL_WORK_ITEM SrvDoSWorkItem;
  253. KSPIN_LOCK SrvDosSpinLock;
  254. LARGE_INTEGER SrvDoSLastRan = {0};
  256. //
  257. // Should we enforce strict name checking?
  258. //
  259. BOOLEAN SrvDisableStrictNameChecking = FALSE;
  261. //
  262. // Should we disable large read/write ops?
  263. //
  264. BOOLEAN SrvDisableLargeRead = FALSE;
  265. BOOLEAN SrvDisableLargeWrite = FALSE;
  267. //
  268. // Should we allow downlevel timewarp
  269. //
  270. BOOLEAN SrvDisableDownlevelTimewarp = FALSE;
  272. //
  273. // Can the client do namespace caching (global setting)
  274. //
  275. BOOLEAN SrvNoAliasingOnFilesystem = FALSE;
  277. //
  278. // Should we map no-intermediate-buffering into write-through
  279. //
  280. BOOLEAN SrvMapNoIntermediateBuffering = FALSE;
  282. //
  283. // Generic security mapping for connecting to shares
  284. //
  285. GENERIC_MAPPING SrvShareConnectMapping = GENERIC_SHARE_CONNECT_MAPPING;
  287. //
  288. // What's the minumum # of free work items each processor should have?
  289. //
  290. ULONG SrvMinPerProcessorFreeWorkItems = 0;
  292. //
  293. // The server has callouts to enable a smart card to accelerate its direct
  294. // host IPX performance. This is the vector of entry points.
  295. //
  296. SRV_IPX_SMART_CARD SrvIpxSmartCard = {0};
  298. //
  299. // This is the name of the server computer. Returned in the negprot response
  300. //
  301. UNICODE_STRING SrvComputerName = {0};
  303. //
  304. // The master file table contains one entry for each named file that has
  305. // at least one open instance.
  306. //
  307. MFCBHASH SrvMfcbHashTable[ NMFCB_HASH_TABLE ] = {0};
  309. //
  310. // This is the list of resources which protect the SrvMfcbHashTable buckets
  311. //
  312. SRV_LOCK SrvMfcbHashTableLocks[ NMFCB_HASH_TABLE_LOCKS ];
  314. //
  315. // The share table contains one entry for each share the server is supporting
  316. //
  317. LIST_ENTRY SrvShareHashTable[ NSHARE_HASH_TABLE ] = {0};
  319. //
  320. // Array of the hex digits for use by the dump routines and
  321. // SrvSmbCreateTemporary.
  322. //
  324. CHAR SrvHexChars[] = { '0', '1', '2', '3', '4', '5', '6', '7', '8', '9',
  325. 'A', 'B', 'C', 'D', 'E', 'F' };
  328. #if SRVCATCH
  329. //
  330. // Are we looking for the special file?
  331. //
  332. UNICODE_STRING SrvCatch;
  333. PWSTR *SrvCatchBuf = NULL;
  334. UNICODE_STRING SrvCatchExt;
  335. PWSTR *SrvCatchExtBuf = NULL;
  336. ULONG SrvCatchShares = 0;
  337. PWSTR *SrvCatchShareNames = NULL;
  338. #endif
  340. //
  341. // SrvSmbIndexTable is the first-layer index table for processing SMBs.
  342. // The contents of this table are used to index into SrvSmbDispatchTable.
  343. //
  345. UCHAR SrvSmbIndexTable[] = {
  346. ISrvSmbCreateDirectory, // SMB_COM_CREATE_DIRECTORY
  347. ISrvSmbDeleteDirectory, // SMB_COM_DELETE_DIRECTORY
  348. ISrvSmbOpen, // SMB_COM_OPEN
  349. ISrvSmbCreate, // SMB_COM_CREATE
  350. ISrvSmbClose, // SMB_COM_CLOSE
  351. ISrvSmbFlush, // SMB_COM_FLUSH
  352. ISrvSmbDelete, // SMB_COM_DELETE
  353. ISrvSmbRename, // SMB_COM_RENAME
  354. ISrvSmbQueryInformation, // SMB_COM_QUERY_INFORMATION
  355. ISrvSmbSetInformation, // SMB_COM_SET_INFORMATION
  356. ISrvSmbRead, // SMB_COM_READ
  357. ISrvSmbWrite, // SMB_COM_WRITE
  358. ISrvSmbLockByteRange, // SMB_COM_LOCK_BYTE_RANGE
  359. ISrvSmbUnlockByteRange, // SMB_COM_UNLOCK_BYTE_RANGE
  360. ISrvSmbCreateTemporary, // SMB_COM_CREATE_TEMPORARY
  361. ISrvSmbCreate, // SMB_COM_CREATE
  362. ISrvSmbCheckDirectory, // SMB_COM_CHECK_DIRECTORY
  363. ISrvSmbProcessExit, // SMB_COM_PROCESS_EXIT
  364. ISrvSmbSeek, // SMB_COM_SEEK
  365. ISrvSmbLockAndRead, // SMB_COM_LOCK_AND_READ
  366. ISrvSmbWrite, // SMB_COM_WRITE_AND_UNLOCK
  367. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  368. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  369. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  370. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  371. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  372. ISrvSmbReadRaw, // SMB_COM_READ_RAW
  373. ISrvSmbReadMpx, // SMB_COM_READ_MPX
  374. ISrvSmbIllegalCommand, // SMB_COM_READ_MPX_SECONDARY (server only)
  375. ISrvSmbWriteRaw, // SMB_COM_WRITE_RAW
  376. ISrvSmbWriteMpx, // SMB_COM_WRITE_MPX
  377. ISrvSmbWriteMpxSecondary, // SMB_COM_WRITE_MPX_SECONDARY
  378. ISrvSmbIllegalCommand, // SMB_COM_WRITE_COMPLETE (server only)
  379. ISrvSmbIllegalCommand, // SMB_COM_QUERY_INFORMATION_SRV
  380. ISrvSmbSetInformation2, // SMB_COM_SET_INFORMATION2
  381. ISrvSmbQueryInformation2, // SMB_COM_QUERY_INFORMATION2
  382. ISrvSmbLockingAndX, // SMB_COM_LOCKING_ANDX
  383. ISrvSmbTransaction, // SMB_COM_TRANSACTION
  384. ISrvSmbTransactionSecondary, // SMB_COM_TRANSACTION_SECONDARY
  385. ISrvSmbIoctl, // SMB_COM_IOCTL
  386. ISrvSmbIoctlSecondary, // SMB_COM_IOCTL_SECONDARY
  387. ISrvSmbMove, // SMB_COM_COPY
  388. ISrvSmbMove, // SMB_COM_MOVE
  389. ISrvSmbEcho, // SMB_COM_ECHO
  390. ISrvSmbWrite, // SMB_COM_WRITE_AND_CLOSE
  391. ISrvSmbOpenAndX, // SMB_COM_OPEN_ANDX
  392. ISrvSmbReadAndX, // SMB_COM_READ_ANDX
  393. ISrvSmbWriteAndX, // SMB_COM_WRITE_ANDX
  394. ISrvSmbIllegalCommand, // SMB_COM_SET_NEW_SIZE
  395. ISrvSmbClose, // SMB_COM_CLOSE_AND_TREE_DISC
  396. ISrvSmbTransaction, // SMB_COM_TRANSACTION2
  397. ISrvSmbTransactionSecondary, // SMB_COM_TRANSACTION2_SECONDARY
  398. ISrvSmbFindClose2, // SMB_COM_FIND_CLOSE2
  399. ISrvSmbFindNotifyClose, // SMB_COM_FIND_NOTIFY_CLOSE
  400. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  401. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  402. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  403. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  404. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  405. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  406. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  407. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  408. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  409. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  410. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  411. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  412. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  413. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  414. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  415. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  416. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  417. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  418. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  419. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  420. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  421. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  422. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  423. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  424. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  425. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  426. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  427. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  428. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  429. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  430. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  431. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  432. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  433. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  434. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  435. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  436. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  437. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  438. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  439. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  440. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  441. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  442. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  443. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  444. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  445. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  446. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  447. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  448. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  449. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  450. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  451. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  452. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  453. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  454. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  455. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  456. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  457. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  458. ISrvSmbTreeConnect, // SMB_COM_TREE_CONNECT
  459. ISrvSmbTreeDisconnect, // SMB_COM_TREE_DISCONNECT
  460. ISrvSmbNegotiate, // SMB_COM_NEGOTIATE
  461. ISrvSmbSessionSetupAndX, // SMB_COM_SESSION_SETUP_ANDX
  462. ISrvSmbLogoffAndX, // SMB_COM_LOGOFF_ANDX
  463. ISrvSmbTreeConnectAndX, // SMB_COM_TREE_CONNECT_ANDX
  464. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  465. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  466. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  467. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  468. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  469. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  470. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  471. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  472. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  473. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  474. ISrvSmbQueryInformationDisk, // SMB_COM_QUERY_INFORMATION_DISK
  475. ISrvSmbSearch, // SMB_COM_SEARCH
  476. ISrvSmbSearch, // SMB_COM_SEARCH
  477. ISrvSmbSearch, // SMB_COM_SEARCH
  478. ISrvSmbSearch, // SMB_COM_SEARCH
  479. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  480. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  481. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  482. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  483. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  484. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  485. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  486. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  487. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  488. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  489. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  490. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  491. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  492. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  493. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  494. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  495. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  496. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  497. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  498. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  499. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  500. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  501. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  502. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  503. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  504. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  505. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  506. ISrvSmbNtTransaction, // SMB_COM_NT_TRANSACT
  507. ISrvSmbNtTransactionSecondary, // SMB_COM_NT_TRANSACT_SECONDARY
  508. ISrvSmbNtCreateAndX, // SMB_COM_NT_CREATE_ANDX
  509. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  510. ISrvSmbNtCancel, // SMB_COM_NT_CANCEL
  511. ISrvSmbRename, // SMB_COM_NT_RENAME
  512. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  513. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  514. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  515. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  516. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  517. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  518. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  519. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  520. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  521. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  522. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  523. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  524. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  525. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  526. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  527. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  528. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  529. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  530. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  531. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  532. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  533. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  534. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  535. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  536. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  537. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  538. ISrvSmbOpenPrintFile, // SMB_COM_OPEN_PRINT_FILE
  539. ISrvSmbWrite, // SMB_COM_WRITE_PRINT_FILE
  540. ISrvSmbClosePrintFile, // SMB_COM_CLOSE_PRINT_FILE
  541. ISrvSmbGetPrintQueue, // SMB_COM_GET_PRINT_QUEUE
  542. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  543. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  544. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  545. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  546. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  547. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  548. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  549. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  550. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  551. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  552. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  553. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  554. ISrvSmbIllegalCommand, // SMB_COM_SEND_MESSAGE
  555. ISrvSmbIllegalCommand, // SMB_COM_SEND_BROADCAST_MESSAGE
  556. ISrvSmbIllegalCommand, // SMB_COM_FORWARD_USER_NAME
  557. ISrvSmbIllegalCommand, // SMB_COM_CANCEL_FORWARD
  558. ISrvSmbIllegalCommand, // SMB_COM_GET_MACHINE_NAME
  559. ISrvSmbIllegalCommand, // SMB_COM_SEND_START_MB_MESSAGE
  560. ISrvSmbIllegalCommand, // SMB_COM_SEND_END_MB_MESSAGE
  561. ISrvSmbIllegalCommand, // SMB_COM_SEND_TEXT_MB_MESSAGE
  562. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  563. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  564. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  565. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  566. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  567. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  568. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  569. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  570. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  571. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  572. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  573. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  574. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  575. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  576. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  577. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  578. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  579. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  580. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  581. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  582. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  583. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  584. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  585. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  586. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  587. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  588. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  589. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  590. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  591. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  592. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  593. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  594. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  595. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  596. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  597. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  598. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  599. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  600. ISrvSmbIllegalCommand, // SMB_COM_ILLEGAL_COMMAND
  601. ISrvSmbIllegalCommand // SMB_COM_ILLEGAL_COMMAND
  602. };
  604. //
  605. // SrvSmbDispatchTable is the jump table for processing SMBs.
  606. //
  608. #if DBG
  609. #define SMB_DISPATCH_ENTRY( x ) { x, #x }
  610. #else
  611. #define SMB_DISPATCH_ENTRY( x ) { x }
  612. #endif
  614. SRV_SMB_DISPATCH_TABLE SrvSmbDispatchTable[] = {
  616. SMB_DISPATCH_ENTRY( SrvSmbIllegalCommand ),
  617. SMB_DISPATCH_ENTRY( SrvSmbCreateDirectory ),
  618. SMB_DISPATCH_ENTRY( SrvSmbDeleteDirectory ),
  619. SMB_DISPATCH_ENTRY( SrvSmbOpen ),
  620. SMB_DISPATCH_ENTRY( SrvSmbCreate ),
  621. SMB_DISPATCH_ENTRY( SrvSmbClose ),
  622. SMB_DISPATCH_ENTRY( SrvSmbFlush ),
  623. SMB_DISPATCH_ENTRY( SrvSmbDelete ),
  624. SMB_DISPATCH_ENTRY( SrvSmbRename ),
  625. SMB_DISPATCH_ENTRY( SrvSmbQueryInformation ),
  626. SMB_DISPATCH_ENTRY( SrvSmbSetInformation ),
  627. SMB_DISPATCH_ENTRY( SrvSmbRead ),
  628. SMB_DISPATCH_ENTRY( SrvSmbWrite ),
  629. SMB_DISPATCH_ENTRY( SrvSmbLockByteRange ),
  630. SMB_DISPATCH_ENTRY( SrvSmbUnlockByteRange ),
  631. SMB_DISPATCH_ENTRY( SrvSmbCreateTemporary ),
  632. SMB_DISPATCH_ENTRY( SrvSmbCheckDirectory ),
  633. SMB_DISPATCH_ENTRY( SrvSmbProcessExit ),
  634. SMB_DISPATCH_ENTRY( SrvSmbSeek ),
  635. SMB_DISPATCH_ENTRY( SrvSmbLockAndRead ),
  636. SMB_DISPATCH_ENTRY( SrvSmbSetInformation2 ),
  637. SMB_DISPATCH_ENTRY( SrvSmbQueryInformation2 ),
  638. SMB_DISPATCH_ENTRY( SrvSmbLockingAndX ),
  639. SMB_DISPATCH_ENTRY( SrvSmbTransaction ),
  640. SMB_DISPATCH_ENTRY( SrvSmbTransactionSecondary ),
  641. SMB_DISPATCH_ENTRY( SrvSmbIoctl ),
  642. SMB_DISPATCH_ENTRY( SrvSmbIoctlSecondary ),
  643. SMB_DISPATCH_ENTRY( SrvSmbMove ),
  644. SMB_DISPATCH_ENTRY( SrvSmbEcho ),
  645. SMB_DISPATCH_ENTRY( SrvSmbOpenAndX ),
  646. SMB_DISPATCH_ENTRY( SrvSmbReadAndX ),
  647. SMB_DISPATCH_ENTRY( SrvSmbWriteAndX ),
  648. SMB_DISPATCH_ENTRY( SrvSmbFindClose2 ),
  649. SMB_DISPATCH_ENTRY( SrvSmbFindNotifyClose ),
  650. SMB_DISPATCH_ENTRY( SrvSmbTreeConnect ),
  651. SMB_DISPATCH_ENTRY( SrvSmbTreeDisconnect ),
  652. SMB_DISPATCH_ENTRY( SrvSmbNegotiate ),
  653. SMB_DISPATCH_ENTRY( SrvSmbSessionSetupAndX ),
  654. SMB_DISPATCH_ENTRY( SrvSmbLogoffAndX ),
  655. SMB_DISPATCH_ENTRY( SrvSmbTreeConnectAndX ),
  656. SMB_DISPATCH_ENTRY( SrvSmbQueryInformationDisk ),
  657. SMB_DISPATCH_ENTRY( SrvSmbSearch ),
  658. SMB_DISPATCH_ENTRY( SrvSmbNtTransaction ),
  659. SMB_DISPATCH_ENTRY( SrvSmbNtTransactionSecondary ),
  660. SMB_DISPATCH_ENTRY( SrvSmbNtCreateAndX ),
  661. SMB_DISPATCH_ENTRY( SrvSmbNtCancel ),
  662. SMB_DISPATCH_ENTRY( SrvSmbOpenPrintFile ),
  663. SMB_DISPATCH_ENTRY( SrvSmbClosePrintFile ),
  664. SMB_DISPATCH_ENTRY( SrvSmbGetPrintQueue ),
  665. SMB_DISPATCH_ENTRY( SrvSmbReadRaw ),
  666. SMB_DISPATCH_ENTRY( SrvSmbWriteRaw ),
  667. SMB_DISPATCH_ENTRY( SrvSmbReadMpx ),
  668. SMB_DISPATCH_ENTRY( SrvSmbWriteMpx ),
  669. SMB_DISPATCH_ENTRY( SrvSmbWriteMpxSecondary )
  670. };
  672. //
  673. // Table of WordCount values for all SMBs.
  674. //
  676. SCHAR SrvSmbWordCount[] = {
  677. 0, // SMB_COM_CREATE_DIRECTORY
  678. 0, // SMB_COM_DELETE_DIRECTORY
  679. 2, // SMB_COM_OPEN
  680. 3, // SMB_COM_CREATE
  681. 3, // SMB_COM_CLOSE
  682. 1, // SMB_COM_FLUSH
  683. 1, // SMB_COM_DELETE
  684. 1, // SMB_COM_RENAME
  685. 0, // SMB_COM_QUERY_INFORMATION
  686. 8, // SMB_COM_SET_INFORMATION
  687. 5, // SMB_COM_READ
  688. 5, // SMB_COM_WRITE
  689. 5, // SMB_COM_LOCK_BYTE_RANGE
  690. 5, // SMB_COM_UNLOCK_BYTE_RANGE
  691. 3, // SMB_COM_CREATE_TEMPORARY
  692. 3, // SMB_COM_CREATE
  693. 0, // SMB_COM_CHECK_DIRECTORY
  694. 0, // SMB_COM_PROCESS_EXIT
  695. 4, // SMB_COM_SEEK
  696. 5, // SMB_COM_LOCK_AND_READ
  697. 5, // SMB_COM_WRITE_AND_UNLOCK
  698. -2, // SMB_COM_ILLEGAL_COMMAND
  699. -2, // SMB_COM_ILLEGAL_COMMAND
  700. -2, // SMB_COM_ILLEGAL_COMMAND
  701. -2, // SMB_COM_ILLEGAL_COMMAND
  702. -2, // SMB_COM_ILLEGAL_COMMAND
  703. -1, // SMB_COM_READ_RAW
  704. 8, // SMB_COM_READ_MPX
  705. 8, // SMB_COM_READ_MPX_SECONDARY
  706. -1, // SMB_COM_WRITE_RAW
  707. 12, // SMB_COM_WRITE_MPX
  708. 12, // SMB_COM_WRITE_MPX_SECONDARY
  709. -2, // SMB_COM_ILLEGAL_COMMAND
  710. 1, // SMB_COM_QUERY_INFORMATION_SRV
  711. 7, // SMB_COM_SET_INFORMATION2
  712. 1, // SMB_COM_QUERY_INFORMATION2
  713. 8, // SMB_COM_LOCKING_ANDX
  714. -1, // SMB_COM_TRANSACTION
  715. 8, // SMB_COM_TRANSACTION_SECONDARY
  716. 14, // SMB_COM_IOCTL
  717. 8, // SMB_COM_IOCTL_SECONDARY
  718. 3, // SMB_COM_COPY
  719. 3, // SMB_COM_MOVE
  720. 1, // SMB_COM_ECHO
  721. -1, // SMB_COM_WRITE_AND_CLOSE
  722. 15, // SMB_COM_OPEN_ANDX
  723. -1, // SMB_COM_READ_ANDX
  724. -1, // SMB_COM_WRITE_ANDX
  725. 3, // SMB_COM_SET_NEW_SIZE
  726. 3, // SMB_COM_CLOSE_AND_TREE_DISC
  727. -1, // SMB_COM_TRANSACTION2
  728. 9, // SMB_COM_TRANSACTION2_SECONDARY
  729. 1, // SMB_COM_FIND_CLOSE2
  730. 1, // SMB_COM_FIND_NOTIFY_CLOSE
  731. -2, // SMB_COM_ILLEGAL_COMMAND
  732. -2, // SMB_COM_ILLEGAL_COMMAND
  733. -2, // SMB_COM_ILLEGAL_COMMAND
  734. -2, // SMB_COM_ILLEGAL_COMMAND
  735. -2, // SMB_COM_ILLEGAL_COMMAND
  736. -2, // SMB_COM_ILLEGAL_COMMAND
  737. -2, // SMB_COM_ILLEGAL_COMMAND
  738. -2, // SMB_COM_ILLEGAL_COMMAND
  739. -2, // SMB_COM_ILLEGAL_COMMAND
  740. -2, // SMB_COM_ILLEGAL_COMMAND
  741. -2, // SMB_COM_ILLEGAL_COMMAND
  742. -2, // SMB_COM_ILLEGAL_COMMAND
  743. -2, // SMB_COM_ILLEGAL_COMMAND
  744. -2, // SMB_COM_ILLEGAL_COMMAND
  745. -2, // SMB_COM_ILLEGAL_COMMAND
  746. -2, // SMB_COM_ILLEGAL_COMMAND
  747. -2, // SMB_COM_ILLEGAL_COMMAND
  748. -2, // SMB_COM_ILLEGAL_COMMAND
  749. -2, // SMB_COM_ILLEGAL_COMMAND
  750. -2, // SMB_COM_ILLEGAL_COMMAND
  751. -2, // SMB_COM_ILLEGAL_COMMAND
  752. -2, // SMB_COM_ILLEGAL_COMMAND
  753. -2, // SMB_COM_ILLEGAL_COMMAND
  754. -2, // SMB_COM_ILLEGAL_COMMAND
  755. -2, // SMB_COM_ILLEGAL_COMMAND
  756. -2, // SMB_COM_ILLEGAL_COMMAND
  757. -2, // SMB_COM_ILLEGAL_COMMAND
  758. -2, // SMB_COM_ILLEGAL_COMMAND
  759. -2, // SMB_COM_ILLEGAL_COMMAND
  760. -2, // SMB_COM_ILLEGAL_COMMAND
  761. -2, // SMB_COM_ILLEGAL_COMMAND
  762. -2, // SMB_COM_ILLEGAL_COMMAND
  763. -2, // SMB_COM_ILLEGAL_COMMAND
  764. -2, // SMB_COM_ILLEGAL_COMMAND
  765. -2, // SMB_COM_ILLEGAL_COMMAND
  766. -2, // SMB_COM_ILLEGAL_COMMAND
  767. -2, // SMB_COM_ILLEGAL_COMMAND
  768. -2, // SMB_COM_ILLEGAL_COMMAND
  769. -2, // SMB_COM_ILLEGAL_COMMAND
  770. -2, // SMB_COM_ILLEGAL_COMMAND
  771. -2, // SMB_COM_ILLEGAL_COMMAND
  772. -2, // SMB_COM_ILLEGAL_COMMAND
  773. -2, // SMB_COM_ILLEGAL_COMMAND
  774. -2, // SMB_COM_ILLEGAL_COMMAND
  775. -2, // SMB_COM_ILLEGAL_COMMAND
  776. -2, // SMB_COM_ILLEGAL_COMMAND
  777. -2, // SMB_COM_ILLEGAL_COMMAND
  778. -2, // SMB_COM_ILLEGAL_COMMAND
  779. -2, // SMB_COM_ILLEGAL_COMMAND
  780. -2, // SMB_COM_ILLEGAL_COMMAND
  781. -2, // SMB_COM_ILLEGAL_COMMAND
  782. -2, // SMB_COM_ILLEGAL_COMMAND
  783. -2, // SMB_COM_ILLEGAL_COMMAND
  784. -2, // SMB_COM_ILLEGAL_COMMAND
  785. -2, // SMB_COM_ILLEGAL_COMMAND
  786. -2, // SMB_COM_ILLEGAL_COMMAND
  787. -2, // SMB_COM_ILLEGAL_COMMAND
  788. -2, // SMB_COM_ILLEGAL_COMMAND
  789. 0, // SMB_COM_TREE_CONNECT
  790. 0, // SMB_COM_TREE_DISCONNECT
  791. 0, // SMB_COM_NEGOTIATE
  792. -1, // SMB_COM_SESSION_SETUP_ANDX
  793. 2, // SMB_COM_LOGOFF_ANDX
  794. 4, // SMB_COM_TREE_CONNECT_ANDX
  795. -2, // SMB_COM_ILLEGAL_COMMAND
  796. -2, // SMB_COM_ILLEGAL_COMMAND
  797. -2, // SMB_COM_ILLEGAL_COMMAND
  798. -2, // SMB_COM_ILLEGAL_COMMAND
  799. -2, // SMB_COM_ILLEGAL_COMMAND
  800. -2, // SMB_COM_ILLEGAL_COMMAND
  801. -2, // SMB_COM_ILLEGAL_COMMAND
  802. -2, // SMB_COM_ILLEGAL_COMMAND
  803. -2, // SMB_COM_ILLEGAL_COMMAND
  804. -2, // SMB_COM_ILLEGAL_COMMAND
  805. 0, // SMB_COM_QUERY_INFORMATION_DISK
  806. 2, // SMB_COM_SEARCH
  807. 2, // SMB_COM_SEARCH
  808. 2, // SMB_COM_SEARCH
  809. 2, // SMB_COM_SEARCH
  810. -2, // SMB_COM_ILLEGAL_COMMAND
  811. -2, // SMB_COM_ILLEGAL_COMMAND
  812. -2, // SMB_COM_ILLEGAL_COMMAND
  813. -2, // SMB_COM_ILLEGAL_COMMAND
  814. -2, // SMB_COM_ILLEGAL_COMMAND
  815. -2, // SMB_COM_ILLEGAL_COMMAND
  816. -2, // SMB_COM_ILLEGAL_COMMAND
  817. -2, // SMB_COM_ILLEGAL_COMMAND
  818. -2, // SMB_COM_ILLEGAL_COMMAND
  819. -2, // SMB_COM_ILLEGAL_COMMAND
  820. -2, // SMB_COM_ILLEGAL_COMMAND
  821. -2, // SMB_COM_ILLEGAL_COMMAND
  822. -2, // SMB_COM_ILLEGAL_COMMAND
  823. -2, // SMB_COM_ILLEGAL_COMMAND
  824. -2, // SMB_COM_ILLEGAL_COMMAND
  825. -2, // SMB_COM_ILLEGAL_COMMAND
  826. -2, // SMB_COM_ILLEGAL_COMMAND
  827. -2, // SMB_COM_ILLEGAL_COMMAND
  828. -2, // SMB_COM_ILLEGAL_COMMAND
  829. -2, // SMB_COM_ILLEGAL_COMMAND
  830. -2, // SMB_COM_ILLEGAL_COMMAND
  831. -2, // SMB_COM_ILLEGAL_COMMAND
  832. -2, // SMB_COM_ILLEGAL_COMMAND
  833. -2, // SMB_COM_ILLEGAL_COMMAND
  834. -2, // SMB_COM_ILLEGAL_COMMAND
  835. -2, // SMB_COM_ILLEGAL_COMMAND
  836. -2, // SMB_COM_ILLEGAL_COMMAND
  837. -1, // SMB_COM_NT_TRANSACT
  838. 18, // SMB_COM_NT_TRANSACT_SECONDARY
  839. 24, // SMB_COM_NT_CREATE_ANDX
  840. -2, // SMB_COM_ILLEGAL_COMMAND
  841. 0, // SMB_COM_NT_CANCEL
  842. 4, // SMB_COM_NT_RENAME
  843. -2, // SMB_COM_ILLEGAL_COMMAND
  844. -2, // SMB_COM_ILLEGAL_COMMAND
  845. -2, // SMB_COM_ILLEGAL_COMMAND
  846. -2, // SMB_COM_ILLEGAL_COMMAND
  847. -2, // SMB_COM_ILLEGAL_COMMAND
  848. -2, // SMB_COM_ILLEGAL_COMMAND
  849. -2, // SMB_COM_ILLEGAL_COMMAND
  850. -2, // SMB_COM_ILLEGAL_COMMAND
  851. -2, // SMB_COM_ILLEGAL_COMMAND
  852. -2, // SMB_COM_ILLEGAL_COMMAND
  853. -2, // SMB_COM_ILLEGAL_COMMAND
  854. -2, // SMB_COM_ILLEGAL_COMMAND
  855. -2, // SMB_COM_ILLEGAL_COMMAND
  856. -2, // SMB_COM_ILLEGAL_COMMAND
  857. -2, // SMB_COM_ILLEGAL_COMMAND
  858. -2, // SMB_COM_ILLEGAL_COMMAND
  859. -2, // SMB_COM_ILLEGAL_COMMAND
  860. -2, // SMB_COM_ILLEGAL_COMMAND
  861. -2, // SMB_COM_ILLEGAL_COMMAND
  862. -2, // SMB_COM_ILLEGAL_COMMAND
  863. -2, // SMB_COM_ILLEGAL_COMMAND
  864. -2, // SMB_COM_ILLEGAL_COMMAND
  865. -2, // SMB_COM_ILLEGAL_COMMAND
  866. -2, // SMB_COM_ILLEGAL_COMMAND
  867. -2, // SMB_COM_ILLEGAL_COMMAND
  868. -2, // SMB_COM_ILLEGAL_COMMAND
  869. 2, // SMB_COM_OPEN_PRINT_FILE
  870. 1, // SMB_COM_WRITE_PRINT_FILE
  871. 1, // SMB_COM_CLOSE_PRINT_FILE
  872. 2, // SMB_COM_GET_PRINT_QUEUE
  873. -2, // SMB_COM_ILLEGAL_COMMAND
  874. -2, // SMB_COM_ILLEGAL_COMMAND
  875. -2, // SMB_COM_ILLEGAL_COMMAND
  876. -2, // SMB_COM_ILLEGAL_COMMAND
  877. -2, // SMB_COM_ILLEGAL_COMMAND
  878. -2, // SMB_COM_ILLEGAL_COMMAND
  879. -2, // SMB_COM_ILLEGAL_COMMAND
  880. -2, // SMB_COM_ILLEGAL_COMMAND
  881. -2, // SMB_COM_ILLEGAL_COMMAND
  882. -2, // SMB_COM_ILLEGAL_COMMAND
  883. -2, // SMB_COM_ILLEGAL_COMMAND
  884. -2, // SMB_COM_ILLEGAL_COMMAND
  885. -2, // SMB_COM_SEND_MESSAGE
  886. -2, // SMB_COM_SEND_BROADCAST_MESSAGE
  887. -2, // SMB_COM_FORWARD_USER_NAME
  888. -2, // SMB_COM_CANCEL_FORWARD
  889. -2, // SMB_COM_GET_MACHINE_NAME
  890. -2, // SMB_COM_SEND_START_MB_MESSAGE
  891. -2, // SMB_COM_SEND_END_MB_MESSAGE
  892. -2, // SMB_COM_SEND_TEXT_MB_MESSAGE
  893. -2, // SMB_COM_ILLEGAL_COMMAND
  894. -2, // SMB_COM_ILLEGAL_COMMAND
  895. -2, // SMB_COM_ILLEGAL_COMMAND
  896. -2, // SMB_COM_ILLEGAL_COMMAND
  897. -2, // SMB_COM_ILLEGAL_COMMAND
  898. -2, // SMB_COM_ILLEGAL_COMMAND
  899. -2, // SMB_COM_ILLEGAL_COMMAND
  900. -2, // SMB_COM_ILLEGAL_COMMAND
  901. -2, // SMB_COM_ILLEGAL_COMMAND
  902. -2, // SMB_COM_ILLEGAL_COMMAND
  903. -2, // SMB_COM_ILLEGAL_COMMAND
  904. -2, // SMB_COM_ILLEGAL_COMMAND
  905. -2, // SMB_COM_ILLEGAL_COMMAND
  906. -2, // SMB_COM_ILLEGAL_COMMAND
  907. -2, // SMB_COM_ILLEGAL_COMMAND
  908. -2, // SMB_COM_ILLEGAL_COMMAND
  909. -2, // SMB_COM_ILLEGAL_COMMAND
  910. -2, // SMB_COM_ILLEGAL_COMMAND
  911. -2, // SMB_COM_ILLEGAL_COMMAND
  912. -2, // SMB_COM_ILLEGAL_COMMAND
  913. -2, // SMB_COM_ILLEGAL_COMMAND
  914. -2, // SMB_COM_ILLEGAL_COMMAND
  915. -2, // SMB_COM_ILLEGAL_COMMAND
  916. -2, // SMB_COM_ILLEGAL_COMMAND
  917. -2, // SMB_COM_ILLEGAL_COMMAND
  918. -2, // SMB_COM_ILLEGAL_COMMAND
  919. -2, // SMB_COM_ILLEGAL_COMMAND
  920. -2, // SMB_COM_ILLEGAL_COMMAND
  921. -2, // SMB_COM_ILLEGAL_COMMAND
  922. -2, // SMB_COM_ILLEGAL_COMMAND
  923. -2, // SMB_COM_ILLEGAL_COMMAND
  924. -2, // SMB_COM_ILLEGAL_COMMAND
  925. -2, // SMB_COM_ILLEGAL_COMMAND
  926. -2, // SMB_COM_ILLEGAL_COMMAND
  927. -2, // SMB_COM_ILLEGAL_COMMAND
  928. -2, // SMB_COM_ILLEGAL_COMMAND
  929. -2, // SMB_COM_ILLEGAL_COMMAND
  930. -2, // SMB_COM_ILLEGAL_COMMAND
  931. -2, // SMB_COM_ILLEGAL_COMMAND
  932. -2, // SMB_COM_ILLEGAL_COMMAND
  933. };
  935. //
  936. // SrvCanonicalNamedPipePrefix is "PIPE\".
  937. //
  939. UNICODE_STRING SrvCanonicalNamedPipePrefix = {0};
  941. //
  942. // The following is used to generate NT style pipe paths.
  943. //
  945. UNICODE_STRING SrvNamedPipeRootDirectory = {0};
  947. //
  948. // The following is used to generate NT style mailslot paths.
  949. //
  951. UNICODE_STRING SrvMailslotRootDirectory = {0};
  953. //
  954. // SrvTransaction2DispatchTable is the jump table for processing
  955. // Transaction2 SMBs.
  956. //
  958. PSMB_TRANSACTION_PROCESSOR SrvTransaction2DispatchTable[] = {
  959. SrvSmbOpen2,
  960. SrvSmbFindFirst2,
  961. SrvSmbFindNext2,
  962. SrvSmbQueryFsInformation,
  963. SrvSmbSetFsInformation,
  964. SrvSmbQueryPathInformation,
  965. SrvSmbSetPathInformation,
  966. SrvSmbQueryFileInformation,
  967. SrvSmbSetFileInformation,
  968. SrvSmbFsctl,
  969. SrvSmbIoctl2,
  970. SrvSmbFindNotify,
  971. SrvSmbFindNotify,
  972. SrvSmbCreateDirectory2,
  973. SrvTransactionNotImplemented, // Can be reused...
  974. SrvTransactionNotImplemented,
  975. SrvSmbGetDfsReferral,
  976. SrvSmbReportDfsInconsistency
  977. };
  979. //
  980. // SrvNtTransactionDispatchTable is the jump table for processing
  981. // NtTransaction SMBs.
  982. //
  984. PSMB_TRANSACTION_PROCESSOR SrvNtTransactionDispatchTable[ NT_TRANSACT_MAX_FUNCTION+1 ] = {
  985. NULL,
  986. SrvSmbCreateWithSdOrEa,
  987. SrvSmbNtIoctl,
  988. SrvSmbSetSecurityDescriptor,
  989. SrvSmbNtNotifyChange,
  990. SrvSmbNtRename,
  991. SrvSmbQuerySecurityDescriptor,
  992. SrvSmbQueryQuota,
  993. SrvSmbSetQuota
  994. };
  996. //
  997. // Global variables for server statistics.
  998. //
  1000. SRV_STATISTICS SrvStatistics = {0};
  1002. #if SRVDBG_STATS || SRVDBG_STATS2
  1003. SRV_STATISTICS_DEBUG SrvDbgStatistics = {0};
  1004. #endif
  1006. //
  1007. // The number of abortive disconnects that the server has gotten
  1008. //
  1009. ULONG SrvAbortiveDisconnects = 0;
  1011. //
  1012. // The number of memory retries, and how often they were successful
  1013. //
  1014. LONG SrvMemoryAllocationRetries = 0;
  1015. LONG SrvMemoryAllocationRetriesSuccessful = 0;
  1017. //
  1018. // Server environment information strings.
  1019. //
  1021. UNICODE_STRING SrvNativeOS = {0};
  1022. OEM_STRING SrvOemNativeOS = {0};
  1023. UNICODE_STRING SrvNativeLanMan = {0};
  1024. OEM_STRING SrvOemNativeLanMan = {0};
  1025. UNICODE_STRING SrvSystemRoot = {0};
  1027. //
  1028. // The following will be a permanent handle and device object pointer
  1029. // to NPFS.
  1030. //
  1032. HANDLE SrvNamedPipeHandle = NULL;
  1033. PDEVICE_OBJECT SrvNamedPipeDeviceObject = NULL;
  1034. PFILE_OBJECT SrvNamedPipeFileObject = NULL;
  1036. //
  1037. // The following are used to converse with the Dfs driver
  1038. //
  1039. PFAST_IO_DEVICE_CONTROL SrvDfsFastIoDeviceControl = NULL;
  1040. PDEVICE_OBJECT SrvDfsDeviceObject = NULL;
  1041. PFILE_OBJECT SrvDfsFileObject = NULL;
  1043. //
  1044. // The following will be a permanent handle and device object pointer
  1045. // to MSFS.
  1046. //
  1048. HANDLE SrvMailslotHandle = NULL;
  1049. PDEVICE_OBJECT SrvMailslotDeviceObject = NULL;
  1050. PFILE_OBJECT SrvMailslotFileObject = NULL;
  1052. //
  1053. // Flag indicating XACTSRV whether is active, and resource synchronizing
  1054. // access to XACTSRV-related variabled.
  1055. //
  1057. BOOLEAN SrvXsActive = FALSE;
  1059. ERESOURCE SrvXsResource = {0};
  1061. //
  1062. // Handle to the unnamed shared memory and communication port used for
  1063. // communication between the server and XACTSRV.
  1064. //
  1066. HANDLE SrvXsSectionHandle = NULL;
  1067. HANDLE SrvXsPortHandle = NULL;
  1069. //
  1070. // Pointers to control the unnamed shared memory for the XACTSRV LPC port.
  1071. // The port memory heap handle is initialized to NULL to indicate that
  1072. // there is no connection with XACTSRV yet.
  1073. //
  1075. PVOID SrvXsPortMemoryBase = NULL;
  1076. ULONG_PTR SrvXsPortMemoryDelta = 0;
  1077. PVOID SrvXsPortMemoryHeap = NULL;
  1079. //
  1080. // Pointer to heap header for the special XACTSRV shared-memory heap.
  1081. //
  1083. PVOID SrvXsHeap = NULL;
  1085. //
  1086. // Dispatch table for server APIs. APIs are dispatched based on the
  1087. // control code passed to NtFsControlFile.
  1088. //
  1089. // *** The order here must match the order of API codes defined in
  1090. // net\inc\srvfsctl.h!
  1092. PAPI_PROCESSOR SrvApiDispatchTable[] = {
  1093. SrvNetConnectionEnum,
  1094. SrvNetFileClose,
  1095. SrvNetFileEnum,
  1096. SrvNetServerDiskEnum,
  1097. SrvNetServerSetInfo,
  1098. SrvNetServerTransportAdd,
  1099. SrvNetServerTransportDel,
  1100. SrvNetServerTransportEnum,
  1101. SrvNetSessionDel,
  1102. SrvNetSessionEnum,
  1103. SrvNetShareAdd,
  1104. SrvNetShareDel,
  1105. SrvNetShareEnum,
  1106. SrvNetShareSetInfo,
  1107. SrvNetStatisticsGet
  1108. };
  1110. //
  1111. // Names for the various types of clients. This array corresponds to
  1112. // the SMB_DIALECT enumerated type.
  1113. //
  1115. UNICODE_STRING SrvClientTypes[LAST_DIALECT] = {0};
  1117. //
  1118. // All the resumable Enum APIs use ordered lists for context-free
  1119. // resume. All data blocks in the server that correspond to return
  1120. // information for Enum APIs are maintained in ordered lists.
  1121. //
  1123. SRV_LOCK SrvOrderedListLock = {0};
  1125. ORDERED_LIST_HEAD SrvEndpointList = {0};
  1126. ORDERED_LIST_HEAD SrvRfcbList = {0};
  1127. ORDERED_LIST_HEAD SrvSessionList = {0};
  1128. ORDERED_LIST_HEAD SrvTreeConnectList = {0};
  1130. //
  1131. // The DNS name for the domain
  1132. //
  1133. PUNICODE_STRING SrvDnsDomainName = NULL;
  1135. //
  1136. // To synchronize server shutdown with API requests handled in the
  1137. // server FSD, we track the number of outstanding API requests. The
  1138. // shutdown code waits until all APIs have been completed to start
  1139. // termination.
  1140. //
  1141. // SrvApiRequestCount tracks the active APIs in the FSD.
  1142. // SrvApiCompletionEvent is set by the last API to complete, and the
  1143. // shutdown code waits on it if there are outstanding APIs.
  1144. //
  1146. ULONG SrvApiRequestCount = 0;
  1147. KEVENT SrvApiCompletionEvent = {0};
  1149. //
  1150. // Security data for logging on remote users. SrvLsaHandle is the logon
  1151. // process handle that we use in calls to LsaLogonUser.
  1152. // SrvSystemSecurityMode contains the secutity mode the system is
  1153. // running in. SrvAuthenticationPackage is a token that describes the
  1154. // authentication package being used. SrvNullSessionToken is a cached
  1155. // token handle representing the null session.
  1156. //
  1158. CtxtHandle SrvNullSessionToken = {0, 0};
  1159. CtxtHandle SrvLmLsaHandle = {0, 0};
  1161. CtxtHandle SrvExtensibleSecurityHandle = {0, 0};
  1163. //
  1164. // Security descriptor granting Administrator READ access.
  1165. // Used to see if a client has administrative privileges
  1166. //
  1167. SECURITY_DESCRIPTOR SrvAdminSecurityDescriptor;
  1169. //
  1170. // Security descriptor granting Anonymous READ access.
  1171. // Used to see if a client was an anonymous (null session) logon
  1172. //
  1173. SECURITY_DESCRIPTOR SrvNullSessionSecurityDescriptor;
  1175. //
  1176. // A list of SMBs waiting for an oplock break to occur, before they can
  1177. // proceed, and a lock to protect the list.
  1178. //
  1180. LIST_ENTRY SrvWaitForOplockBreakList = {0};
  1181. SRV_LOCK SrvOplockBreakListLock = {0};
  1183. //
  1184. // A list of outstanding oplock break requests. The list is protected by
  1185. // SrvOplockBreakListLock.
  1186. //
  1188. LIST_ENTRY SrvOplockBreaksInProgressList = {0};
  1190. //
  1191. // Global security context. Use static tracking.
  1192. //
  1194. SECURITY_QUALITY_OF_SERVICE SrvSecurityQOS = {0};
  1196. //
  1197. // A BOOLEAN to indicate whether the server is paused. If paused, the
  1198. // server will not accept new tree connections from non-admin users.
  1199. //
  1201. BOOLEAN SrvPaused = FALSE;
  1203. //
  1204. // Alerting information.
  1205. //
  1207. SRV_ERROR_RECORD SrvErrorRecord = {0};
  1208. SRV_ERROR_RECORD SrvNetworkErrorRecord = {0};
  1210. BOOLEAN SrvDiskAlertRaised[26] = {0};
  1212. //
  1213. // Counts of the number of times pool allocations have failed because
  1214. // the server was at its configured pool limit.
  1215. //
  1217. ULONG SrvNonPagedPoolLimitHitCount = 0;
  1218. ULONG SrvPagedPoolLimitHitCount = 0;
  1220. //
  1221. // SrvOpenCount counts the number of active opens of the server device.
  1222. // This is used at server shutdown time to determine whether the server
  1223. // service should unload the driver.
  1224. //
  1226. ULONG SrvOpenCount = 0;
  1228. //
  1229. // Counters for logging resource shortage events during a scavenger pass.
  1230. //
  1232. ULONG SrvOutOfFreeConnectionCount = 0;
  1233. ULONG SrvOutOfRawWorkItemCount = 0;
  1234. ULONG SrvFailedBlockingIoCount = 0;
  1236. //
  1237. // Current core search timeout time in seconds
  1238. //
  1240. ULONG SrvCoreSearchTimeout = 0;
  1242. SRV_LOCK SrvUnlockableCodeLock = {0};
  1243. SECTION_DESCRIPTOR SrvSectionInfo[SRV_CODE_SECTION_MAX] = {
  1244. { SrvSmbRead, NULL, 0 }, // pageable code -- locked
  1245. // only and always on NTAS
  1246. { SrvCheckAndReferenceRfcb, NULL, 0 } // 8FIL section -- locked
  1247. // when files are open
  1248. };
  1250. //
  1251. // SrvTimerList is a pool of timer/DPC structures available for use by
  1252. // code that needs to start a timer.
  1253. //
  1255. SLIST_HEADER SrvTimerList = {0};
  1257. //
  1258. // Name that should be displayed when doing a server alert.
  1259. //
  1261. PWSTR SrvAlertServiceName = NULL;
  1263. //
  1264. // Variable to store the number of tick counts for 5 seconds
  1265. //
  1267. ULONG SrvFiveSecondTickCount = 0;
  1269. //
  1270. // Flag indicating whether or not we need to filter extended characters
  1271. // out of 8.3 names ourselves.
  1272. //
  1273. BOOLEAN SrvFilterExtendedCharsInPath = FALSE;
  1275. //
  1276. // Flag indicating if we enforce all logoff times
  1277. //
  1278. BOOLEAN SrvEnforceLogoffTimes = FALSE;
  1280. //
  1281. // Should we try extended signatures
  1282. //
  1283. BOOLEAN SrvEnableExtendedSignatures = TRUE;
  1284. BOOLEAN SrvRequireExtendedSignatures = FALSE;
  1286. //
  1287. // Holds the TDI PNP notification handle
  1288. //
  1289. HANDLE SrvTdiNotificationHandle = 0;
  1291. //
  1292. // Should we log invalid SMB commands
  1293. //
  1294. #if DBG
  1295. BOOLEAN SrvEnableInvalidSmbLogging = TRUE;
  1296. #else
  1297. BOOLEAN SrvEnableInvalidSmbLogging = FALSE;
  1298. #endif
  1300. //
  1301. // Flag indicating whether or not SMB security signatures are enabled.
  1302. //
  1303. BOOLEAN SrvSmbSecuritySignaturesEnabled = FALSE;
  1305. //
  1306. // Flag indicating whether or not SMB security signatures are required. The signature
  1307. // must match between the client and the server for the smb to be accepted.
  1308. //
  1309. BOOLEAN SrvSmbSecuritySignaturesRequired = FALSE;
  1311. //
  1312. // Flag indicating whether or not SMB security signatures should be applied to W9x
  1313. // clients.
  1314. //
  1315. BOOLEAN SrvEnableW9xSecuritySignatures = FALSE;
  1317. //
  1318. // Maximum amount of data that we'll allocate to support a METHOD_NEITHER Fsctl call
  1319. //
  1320. ULONG SrvMaxFsctlBufferSize = 70*1024;
  1322. //
  1323. // Maximum NT transaction size which we'll accept.
  1324. //
  1325. ULONG SrvMaxNtTransactionSize = 70*1024;
  1327. //
  1328. // Maximum size of large Read&X that we'll allow. We need to lock down a cache region
  1329. // to service this request, so we don't want it to get too big
  1330. //
  1331. ULONG SrvMaxReadSize = 64*1024;
  1333. //
  1334. // When we receive an large write from a client, we receive it in chunks,
  1335. // locking & unlocking the file cache as we receive the data. SrvMaxWriteChunk is the
  1336. // size of this 'chunk'. There's no magic to this chosen value.
  1337. //
  1338. ULONG SrvMaxWriteChunk = 64 * 1024;
  1340. //
  1341. // Handle used for PoRegisterSystemState calls
  1342. //
  1343. PVOID SrvPoRegistrationState = NULL;
  1344. //
  1345. // Counter used to suppress extraneous PoRegisterSystemStateCalls
  1346. //
  1347. ULONG SrvIdleCount = 0;
  1349. //
  1350. // If a server worker threads remains idle for this many ticks, then it terminate
  1351. //
  1352. LONGLONG SrvIdleThreadTimeOut = 0;
  1354. //
  1355. // Denial-of-Service monitoring and logging controls
  1356. //
  1357. LARGE_INTEGER SrvLastDosAttackTime = {0};
  1358. ULONG SrvDOSAttacks = 0;
  1359. BOOLEAN SrvLogEventOnDOS = TRUE;
  1362. #if SRVNTVERCHK
  1363. //
  1364. // This is the minimum NT5 client build number that we will allow to connect to the server
  1365. //
  1366. ULONG SrvMinNT5Client = 0;
  1367. BOOLEAN SrvMinNT5ClientIPCToo = FALSE;
  1369. //
  1370. // To force upgrades of our internal development community, we can set a
  1371. // value in the registry that governs the minimum NT release that we allow
  1372. // people to run to connect to this server. However, some folks have special
  1373. // needs that preclude a forced upgrade. Presuming they have a static IP address,
  1374. // you can add their address to the registry to exclude them from the build number
  1375. // checking logic
  1376. //
  1377. DWORD SrvAllowIPAddress[25];
  1378. #endif
  1381. VOID
  1382. SrvInitializeData (
  1383. VOID
  1384. )
  1386. /*++
  1388. Routine Description:
  1390. This is the initialization routine for data defined in this module.
  1392. Arguments:
  1394. None.
  1396. Return Value:
  1398. None.
  1400. --*/
  1402. {
  1403. ULONG i,j;
  1404. ANSI_STRING string;
  1406. PAGED_CODE( );
  1408. #if MULTIPROCESSOR
  1409. SrvMultiProcessorDriver = TRUE;
  1410. #endif
  1412. //
  1413. // Initialize the statistics database.
  1414. //
  1416. RtlZeroMemory( &SrvStatistics, sizeof(SrvStatistics) );
  1417. #if SRVDBG_STATS || SRVDBG_STATS2
  1418. RtlZeroMemory( &SrvDbgStatistics, sizeof(SrvDbgStatistics) );
  1419. #endif
  1421. //
  1422. // Store the address of the initial system process for later use.
  1423. //
  1425. SrvServerProcess = IoGetCurrentProcess();
  1427. //
  1428. // Store the number of processors
  1429. //
  1430. SrvNumberOfProcessors = KeNumberProcessors;
  1432. //
  1433. // Initialize the event used to determine when all endpoints have
  1434. // closed.
  1435. //
  1437. KeInitializeEvent( &SrvEndpointEvent, SynchronizationEvent, FALSE );
  1439. //
  1440. // Initialize the event used to deterine when all API requests have
  1441. // completed.
  1442. //
  1444. KeInitializeEvent( &SrvApiCompletionEvent, SynchronizationEvent, FALSE );
  1446. //
  1447. // Allocate the spin lock used to synchronize between the FSD and
  1448. // the FSP.
  1449. //
  1451. INITIALIZE_GLOBAL_SPIN_LOCK( Fsd );
  1453. #if SRVDBG || SRVDBG_HANDLES
  1454. INITIALIZE_GLOBAL_SPIN_LOCK( Debug );
  1455. #endif
  1457. INITIALIZE_GLOBAL_SPIN_LOCK( Statistics );
  1459. //
  1460. // Initialize various (non-spin) locks.
  1461. //
  1463. INITIALIZE_LOCK(
  1464. &SrvConfigurationLock,
  1465. CONFIGURATION_LOCK_LEVEL,
  1466. "SrvConfigurationLock"
  1467. );
  1468. INITIALIZE_LOCK(
  1469. &SrvStartupShutdownLock,
  1470. STARTUPSHUTDOWN_LOCK_LEVEL,
  1471. "SrvStartupShutdownLock"
  1472. );
  1473. INITIALIZE_LOCK(
  1474. &SrvEndpointLock,
  1475. ENDPOINT_LOCK_LEVEL,
  1476. "SrvEndpointLock"
  1477. );
  1479. for( i=0; i < NMFCB_HASH_TABLE_LOCKS; i++ ) {
  1480. INITIALIZE_LOCK(
  1481. &SrvMfcbHashTableLocks[i],
  1482. MFCB_LIST_LOCK_LEVEL,
  1483. "SrvMfcbListLock"
  1484. );
  1485. }
  1487. INITIALIZE_LOCK(
  1488. &SrvShareLock,
  1489. SHARE_LOCK_LEVEL,
  1490. "SrvShareLock"
  1491. );
  1493. INITIALIZE_LOCK(
  1494. &SrvOplockBreakListLock,
  1495. OPLOCK_LIST_LOCK_LEVEL,
  1496. "SrvOplockBreakListLock"
  1497. );
  1499. #if SRVDBG || SRVDBG_HANDLES
  1500. INITIALIZE_LOCK(
  1501. &SrvDebugLock,
  1502. DEBUG_LOCK_LEVEL,
  1503. "SrvDebugLock"
  1504. );
  1505. #endif
  1507. //
  1508. // Create the resource serializing access to the XACTSRV port. This
  1509. // resource protects access to the shared memory reference count and
  1510. // the shared memory heap.
  1511. //
  1513. ExInitializeResourceLite( &SrvXsResource );
  1515. //
  1516. // Initialize the need resource queue
  1517. //
  1519. InitializeListHead( &SrvNeedResourceQueue );
  1521. //
  1522. // Initialize the connection disconnect queue
  1523. //
  1525. InitializeListHead( &SrvDisconnectQueue );
  1527. //
  1528. // Initialize the configuration queue.
  1529. //
  1531. InitializeListHead( &SrvConfigurationWorkQueue );
  1533. //
  1534. // Initialize the orphan queue
  1535. //
  1537. ExInitializeSListHead( &SrvBlockOrphanage );
  1539. //
  1540. // Initialize the Timer List
  1541. //
  1543. ExInitializeSListHead( &SrvTimerList );
  1545. //
  1546. // Initialize the resource thread work item and continuation event.
  1547. // (Note that this is a notification [non-autoclearing] event.)
  1548. //
  1550. ExInitializeWorkItem(
  1551. &SrvResourceThreadWorkItem,
  1552. SrvResourceThread,
  1553. NULL
  1554. );
  1556. ExInitializeWorkItem(
  1557. &SrvResourceAllocThreadWorkItem,
  1558. SrvResourceAllocThread,
  1559. NULL
  1560. );
  1562. //
  1563. // Initialize global lists.
  1564. //
  1565. for( i=j=0; i < NMFCB_HASH_TABLE; i++ ) {
  1566. InitializeListHead( &SrvMfcbHashTable[i].List );
  1567. SrvMfcbHashTable[i].Lock = &SrvMfcbHashTableLocks[ j ];
  1568. if( ++j == NMFCB_HASH_TABLE_LOCKS ) {
  1569. j = 0;
  1570. }
  1571. }
  1573. for( i=0; i < NSHARE_HASH_TABLE; i++ ) {
  1574. InitializeListHead( &SrvShareHashTable[i] );
  1575. }
  1577. //
  1578. // Initialize the ordered list lock. Indicate that the ordered
  1579. // lists have not yet been initialized, so that TerminateServer can
  1580. // determine whether to delete them.
  1581. //
  1583. INITIALIZE_LOCK(
  1584. &SrvOrderedListLock,
  1585. ORDERED_LIST_LOCK_LEVEL,
  1586. "SrvOrderedListLock"
  1587. );
  1589. SrvEndpointList.Initialized = FALSE;
  1590. SrvRfcbList.Initialized = FALSE;
  1591. SrvSessionList.Initialized = FALSE;
  1592. SrvTreeConnectList.Initialized = FALSE;
  1594. //
  1595. // Initialize the unlockable code package lock.
  1596. //
  1598. INITIALIZE_LOCK(
  1599. &SrvUnlockableCodeLock,
  1600. UNLOCKABLE_CODE_LOCK_LEVEL,
  1601. "SrvUnlockableCodeLock"
  1602. );
  1604. //
  1605. // Initialize the waiting for oplock break to occur list, and the
  1606. // oplock breaks in progress list.
  1607. //
  1609. InitializeListHead( &SrvWaitForOplockBreakList );
  1610. InitializeListHead( &SrvOplockBreaksInProgressList );
  1612. //
  1613. // The default security quality of service for non NT clients.
  1614. //
  1616. SrvSecurityQOS.ImpersonationLevel = SecurityImpersonation;
  1617. SrvSecurityQOS.ContextTrackingMode = SECURITY_STATIC_TRACKING;
  1618. SrvSecurityQOS.EffectiveOnly = FALSE;
  1620. //
  1621. // Initialize Unicode strings.
  1622. //
  1624. RtlInitString( &string, StrPipeSlash );
  1625. RtlAnsiStringToUnicodeString(
  1626. &SrvCanonicalNamedPipePrefix,
  1627. &string,
  1628. TRUE
  1629. );
  1631. RtlInitUnicodeString( &SrvNamedPipeRootDirectory, StrNamedPipeDevice );
  1632. RtlInitUnicodeString( &SrvMailslotRootDirectory, StrMailslotDevice );
  1634. //
  1635. // The server's name
  1636. //
  1638. RtlInitUnicodeString( &SrvNativeLanMan, StrNativeLanman );
  1639. RtlInitAnsiString( (PANSI_STRING)&SrvOemNativeLanMan, StrNativeLanmanOem );
  1641. //
  1642. // The system root
  1643. //
  1644. #if defined(i386)
  1645. RtlInitUnicodeString( &SrvSystemRoot, SharedUserData->NtSystemRoot );
  1646. #endif
  1648. //
  1649. // Debug logic to verify the contents of SrvApiDispatchTable (see
  1650. // inititialization earlier in this module).
  1651. //
  1653. ASSERT( SRV_API_INDEX(FSCTL_SRV_MAX_API_CODE) + 1 ==
  1654. sizeof(SrvApiDispatchTable) / sizeof(PAPI_PROCESSOR) );
  1656. ASSERT( SrvApiDispatchTable[SRV_API_INDEX(
  1657. FSCTL_SRV_NET_CONNECTION_ENUM)] == SrvNetConnectionEnum );
  1658. ASSERT( SrvApiDispatchTable[SRV_API_INDEX(
  1659. FSCTL_SRV_NET_FILE_CLOSE)] == SrvNetFileClose );
  1660. ASSERT( SrvApiDispatchTable[SRV_API_INDEX(
  1661. FSCTL_SRV_NET_FILE_ENUM)] == SrvNetFileEnum );
  1662. ASSERT( SrvApiDispatchTable[SRV_API_INDEX(
  1663. FSCTL_SRV_NET_SERVER_DISK_ENUM)] == SrvNetServerDiskEnum );
  1664. ASSERT( SrvApiDispatchTable[SRV_API_INDEX(
  1665. FSCTL_SRV_NET_SERVER_SET_INFO)] == SrvNetServerSetInfo );
  1666. ASSERT( SrvApiDispatchTable[SRV_API_INDEX(
  1667. FSCTL_SRV_NET_SERVER_XPORT_ADD)] == SrvNetServerTransportAdd );
  1668. ASSERT( SrvApiDispatchTable[SRV_API_INDEX(
  1669. FSCTL_SRV_NET_SERVER_XPORT_DEL)] == SrvNetServerTransportDel );
  1670. ASSERT( SrvApiDispatchTable[SRV_API_INDEX(
  1671. FSCTL_SRV_NET_SERVER_XPORT_ENUM)] == SrvNetServerTransportEnum );
  1672. ASSERT( SrvApiDispatchTable[SRV_API_INDEX(
  1673. FSCTL_SRV_NET_SESSION_DEL)] == SrvNetSessionDel );
  1674. ASSERT( SrvApiDispatchTable[SRV_API_INDEX(
  1675. FSCTL_SRV_NET_SESSION_ENUM)] == SrvNetSessionEnum );
  1676. ASSERT( SrvApiDispatchTable[SRV_API_INDEX(
  1677. FSCTL_SRV_NET_SHARE_ADD)] == SrvNetShareAdd );
  1678. ASSERT( SrvApiDispatchTable[SRV_API_INDEX(
  1679. FSCTL_SRV_NET_SHARE_DEL)] == SrvNetShareDel );
  1680. ASSERT( SrvApiDispatchTable[SRV_API_INDEX(
  1681. FSCTL_SRV_NET_SHARE_ENUM)] == SrvNetShareEnum );
  1682. ASSERT( SrvApiDispatchTable[SRV_API_INDEX(
  1683. FSCTL_SRV_NET_SHARE_SET_INFO)] == SrvNetShareSetInfo );
  1684. ASSERT( SrvApiDispatchTable[SRV_API_INDEX(
  1685. FSCTL_SRV_NET_STATISTICS_GET)] == SrvNetStatisticsGet );
  1687. //
  1688. // Setup error log records
  1689. //
  1691. SrvErrorRecord.AlertNumber = ALERT_ErrorLog;
  1692. SrvNetworkErrorRecord.AlertNumber = ALERT_NetIO;
  1694. //
  1695. // Names for the various types of clients. This array corresponds
  1696. // to the SMB_DIALECT enumerated type.
  1697. //
  1699. for ( i = 0; i <= SmbDialectMsNet30; i++ ) {
  1700. RtlInitUnicodeString( &SrvClientTypes[i], StrClientTypes[i] );
  1701. }
  1702. for ( ; i < LAST_DIALECT; i++ ) {
  1703. SrvClientTypes[i] = SrvClientTypes[i-1]; // "DOWN LEVEL"
  1704. }
  1706. //
  1707. // Initialize the timer pool.
  1708. //
  1710. INITIALIZE_GLOBAL_SPIN_LOCK( Timer );
  1712. //
  1713. // Initialize the 4 endpoint spinlocks
  1714. //
  1716. for ( i = 0 ; i < ENDPOINT_LOCK_COUNT ; i++ ) {
  1717. INITIALIZE_SPIN_LOCK( &ENDPOINT_SPIN_LOCK(i) );
  1718. }
  1719. //KeSetSpecialSpinLock( &ENDPOINT_SPIN_LOCK(0), "endpoint 0 " );
  1720. //KeSetSpecialSpinLock( &ENDPOINT_SPIN_LOCK(1), "endpoint 1 " );
  1721. //KeSetSpecialSpinLock( &ENDPOINT_SPIN_LOCK(2), "endpoint 2 " );
  1722. //KeSetSpecialSpinLock( &ENDPOINT_SPIN_LOCK(3), "endpoint 3 " );
  1724. //
  1725. // Initialize the DMA alignment size
  1726. //
  1728. SrvCacheLineSize = KeGetRecommendedSharedDataAlignment(); // For PERF improvement, get the recommended cacheline
  1729. // alignment, instead of the HAL default
  1731. #if SRVDBG
  1732. {
  1733. ULONG cls = SrvCacheLineSize;
  1734. while ( cls > 2 ) {
  1735. ASSERTMSG(
  1736. "SRV: cache line size not a power of two",
  1737. (cls & 1) == 0 );
  1738. cls = cls >> 1;
  1739. }
  1740. }
  1741. #endif
  1743. if ( SrvCacheLineSize < 8 ) SrvCacheLineSize = 8;
  1745. SrvCacheLineSize--;
  1747. //
  1748. // Compute the number of tick counts for 5 seconds
  1749. //
  1751. SrvFiveSecondTickCount = 5*10*1000*1000 / KeQueryTimeIncrement();
  1753. return;
  1755. } // SrvInitializeData
  1758. VOID
  1759. SrvTerminateData (
  1760. VOID
  1761. )
  1763. /*++
  1765. Routine Description:
  1767. This is the rundown routine for data defined in this module. It is
  1768. called when the server driver is unloaded.
  1770. Arguments:
  1772. None.
  1774. Return Value:
  1776. None.
  1778. --*/
  1780. {
  1781. ULONG i;
  1783. PAGED_CODE( );
  1785. //
  1786. // Terminate various (non-spin) locks.
  1787. //
  1789. DELETE_LOCK( &SrvConfigurationLock );
  1790. DELETE_LOCK( &SrvStartupShutdownLock );
  1791. DELETE_LOCK( &SrvEndpointLock );
  1793. for( i=0; i < NMFCB_HASH_TABLE_LOCKS; i++ ) {
  1794. DELETE_LOCK( &SrvMfcbHashTableLocks[i] );
  1795. }
  1797. DELETE_LOCK( &SrvShareLock );
  1798. DELETE_LOCK( &SrvOplockBreakListLock );
  1800. #if SRVDBG || SRVDBG_HANDLES
  1801. DELETE_LOCK( &SrvDebugLock );
  1802. #endif
  1804. DELETE_LOCK( &SrvOrderedListLock );
  1805. DELETE_LOCK( &SrvUnlockableCodeLock );
  1807. ExDeleteResourceLite( &SrvXsResource );
  1809. RtlFreeUnicodeString( &SrvCanonicalNamedPipePrefix );
  1811. RtlFreeUnicodeString( &SrvComputerName );
  1813. } // SrvTerminateData