archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
3 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 827363a95b
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '827363a95b'
${ noResults }
windows-server-2003/net/sockets/winsock2/wsp/afdsys/kdext/endp.c

905 lines
19 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. /*++
  3. Copyright (c) 1992 Microsoft Corporation
  5. Module Name:
  7. endp.c
  9. Abstract:
  11. Implements the endp, state, port, and proc commands.
  13. Author:
  15. Keith Moore (keithmo) 19-Apr-1995
  17. Environment:
  19. User Mode.
  21. Revision History:
  23. --*/
  26. #include "afdkdp.h"
  27. #pragma hdrstop
  30. //
  31. // Private prototypes.
  32. //
  34. BOOL
  35. DumpEndpointCallback(
  36. ULONG64 ActualAddress,
  37. ULONG64 Context
  38. );
  40. BOOL
  41. FindStateCallback(
  42. ULONG64 ActualAddress,
  43. ULONG64 Context
  44. );
  46. BOOL
  47. FindPortCallback(
  48. ULONG64 ActualAddress,
  49. ULONG64 Context
  50. );
  52. BOOL
  53. FindProcessCallback(
  54. ULONG64 ActualAddress,
  55. ULONG64 Context
  56. );
  58. ULONG64
  59. FindProcessByPid (
  60. ULONG64 Pid
  61. );
  63. ULONG
  64. FindProcessByPidCallback (
  65. PFIELD_INFO pField,
  66. PVOID UserContext
  67. );
  69. //
  70. // Public functions.
  71. //
  73. DECLARE_API( endp )
  75. /*++
  77. Routine Description:
  79. Dumps the AFD_ENDPOINT structure at the specified address, if
  80. given or all endpoints.
  82. Arguments:
  84. None.
  86. Return Value:
  88. None.
  90. --*/
  92. {
  94. ULONG result;
  95. INT i;
  96. CHAR expr[MAX_ADDRESS_EXPRESSION];
  97. PCHAR argp;
  98. ULONG64 address;
  100. gClient = pClient;
  102. if (!CheckKmGlobals ()) {
  103. return E_INVALIDARG;
  104. }
  106. argp = ProcessOptions ((PCHAR)args);
  107. if (argp==NULL)
  108. return E_INVALIDARG;
  110. if (Options&AFDKD_BRIEF_DISPLAY) {
  111. dprintf (AFDKD_BRIEF_ENDPOINT_DISPLAY_HEADER);
  112. }
  114. if ((argp[0]==0) || (Options & AFDKD_ENDPOINT_SCAN)) {
  115. EnumEndpoints(
  116. DumpEndpointCallback,
  117. 0
  118. );
  119. dprintf ("\nTotal endpoints: %ld", EntityCount);
  120. }
  121. else {
  123. //
  124. // Snag the address from the command line.
  125. //
  126. while (sscanf( argp, "%s%n", expr, &i )==1) {
  127. if( CheckControlC() ) {
  128. break;
  129. }
  131. argp+=i;
  132. address = GetExpression (expr);
  134. result = (ULONG)InitTypeRead (address, AFD!AFD_ENDPOINT);
  135. if (result!=0) {
  136. dprintf ("\nendp: Could not read AFD_ENDPOINT @ %p, err: %d\n",
  137. address, result);
  138. break;
  139. }
  141. if (Options & AFDKD_BRIEF_DISPLAY) {
  142. DumpAfdEndpointBrief (
  143. address
  144. );
  145. }
  146. else {
  147. DumpAfdEndpoint (
  148. address
  149. );
  150. }
  151. if (Options & AFDKD_FIELD_DISPLAY) {
  152. ProcessFieldOutput (address, "AFD!AFD_ENDPOINT");
  153. }
  155. }
  157. }
  159. if (Options&AFDKD_BRIEF_DISPLAY) {
  160. dprintf (AFDKD_BRIEF_ENDPOINT_DISPLAY_TRAILER);
  161. }
  162. else {
  163. dprintf ("\n");
  164. }
  166. return S_OK;
  167. } // endp
  170. //
  171. // Public functions.
  172. //
  174. DECLARE_API( file )
  176. /*++
  178. Routine Description:
  180. Dumps the AFD_ENDPOINT structure associated with AFD file object.
  182. Arguments:
  184. None.
  186. Return Value:
  188. None.
  190. --*/
  192. {
  194. ULONG result;
  195. INT i;
  196. CHAR expr[MAX_ADDRESS_EXPRESSION];
  197. PCHAR argp;
  198. ULONG64 address, endpAddr;
  200. gClient = pClient;
  202. if (!CheckKmGlobals ()) {
  203. return E_INVALIDARG;
  204. }
  206. argp = ProcessOptions ((PCHAR)args);
  207. if (argp==NULL)
  208. return E_INVALIDARG;
  210. if (Options&AFDKD_BRIEF_DISPLAY) {
  211. dprintf (AFDKD_BRIEF_ENDPOINT_DISPLAY_HEADER);
  212. }
  214. //
  215. // Snag the address from the command line.
  216. //
  218. while (sscanf( argp, "%s%n", expr, &i )==1) {
  219. if( CheckControlC() ) {
  220. break;
  221. }
  222. argp += i;
  223. address = GetExpression (expr);
  224. result = GetFieldValue (address,
  225. "NT!_FILE_OBJECT",
  226. "FsContext",
  227. endpAddr);
  228. if (result!=0) {
  229. dprintf ("\nfile: Could not read FILE_OBJECT @ %p, err: %d\n",
  230. address, result);
  231. break;
  232. }
  234. result = (ULONG)InitTypeRead (endpAddr, AFD!AFD_ENDPOINT);
  235. if (result!=0) {
  236. dprintf ("\nfile: Could not read AFD_ENDPOINT @ %p, err: %d\n",
  237. endpAddr, result);
  238. break;
  239. }
  241. if (Options & AFDKD_BRIEF_DISPLAY) {
  242. DumpAfdEndpointBrief (
  243. endpAddr
  244. );
  245. }
  246. else {
  247. DumpAfdEndpoint (
  248. endpAddr
  249. );
  250. }
  251. if (Options & AFDKD_FIELD_DISPLAY) {
  252. ProcessFieldOutput (endpAddr, "AFD!AFD_ENDPOINT");
  253. }
  255. }
  257. if (Options&AFDKD_BRIEF_DISPLAY) {
  258. dprintf (AFDKD_BRIEF_ENDPOINT_DISPLAY_TRAILER);
  259. }
  261. return S_OK;
  262. } // file
  264. DECLARE_API( state )
  266. /*++
  268. Routine Description:
  270. Dumps all AFD_ENDPOINT structures in the given state.
  272. Arguments:
  274. None.
  276. Return Value:
  278. None.
  280. --*/
  282. {
  284. INT i;
  285. CHAR expr[MAX_ADDRESS_EXPRESSION];
  286. PCHAR argp;
  287. ULONG64 val;
  289. gClient = pClient;
  291. if (!CheckKmGlobals ()) {
  292. return E_INVALIDARG;
  293. }
  295. argp = ProcessOptions ((PCHAR)args);
  296. if (argp==NULL)
  297. return E_INVALIDARG;
  299. if (Options&AFDKD_BRIEF_DISPLAY) {
  300. dprintf (AFDKD_BRIEF_ENDPOINT_DISPLAY_HEADER);
  301. }
  303. //
  304. // Snag the state from the command line.
  305. //
  307. while (sscanf( argp, "%s%n", expr, &i )==1) {
  308. if( CheckControlC() ) {
  309. break;
  310. }
  311. argp+=i;
  312. val = GetExpression (expr);
  313. dprintf ("\nLooking for endpoints in state 0x%I64x ", val);
  314. EnumEndpoints(
  315. FindStateCallback,
  316. val
  317. );
  318. dprintf ("\nTotal endpoints: %ld", EntityCount);
  319. }
  321. if (Options&AFDKD_BRIEF_DISPLAY) {
  322. dprintf (AFDKD_BRIEF_ENDPOINT_DISPLAY_TRAILER);
  323. }
  324. else {
  325. dprintf ("\n");
  326. }
  328. return S_OK;
  329. } // state
  332. DECLARE_API( port )
  334. /*++
  336. Routine Description:
  338. Dumps all AFD_ENDPOINT structures bound to the given port.
  340. Arguments:
  342. None.
  344. Return Value:
  346. None.
  348. --*/
  350. {
  352. INT i;
  353. CHAR expr[MAX_ADDRESS_EXPRESSION];
  354. PCHAR argp;
  355. ULONG64 val;
  357. gClient = pClient;
  359. if (!CheckKmGlobals ()) {
  360. return E_INVALIDARG;
  361. }
  363. argp = ProcessOptions ((PCHAR)args);
  364. if (argp==NULL)
  365. return E_INVALIDARG;
  367. if (Options&AFDKD_BRIEF_DISPLAY) {
  368. dprintf (AFDKD_BRIEF_ENDPOINT_DISPLAY_HEADER);
  369. }
  371. //
  372. // Snag the port from the command line.
  373. //
  375. while (sscanf( argp, "%s%n", expr, &i)==1) {
  376. if( CheckControlC() ) {
  377. break;
  378. }
  379. argp+=i;
  380. val = GetExpression (expr);
  381. dprintf ("\nLooking for endpoints bound to port 0x%I64x (0x%I64d) ", val, val);
  382. EnumEndpoints(
  383. FindPortCallback,
  384. val
  385. );
  386. dprintf ("\nTotal endpoints: %ld", EntityCount);
  387. }
  389. if (Options&AFDKD_BRIEF_DISPLAY) {
  390. dprintf (AFDKD_BRIEF_ENDPOINT_DISPLAY_TRAILER);
  391. }
  392. else {
  393. dprintf ("\n");
  394. }
  396. return S_OK;
  397. } // port
  401. DECLARE_API( proc )
  403. /*++
  405. Routine Description:
  407. Dumps all AFD_ENDPOINT structures owned by the given process.
  409. Arguments:
  411. None.
  413. Return Value:
  415. None.
  417. --*/
  419. {
  421. INT i;
  422. CHAR expr[MAX_ADDRESS_EXPRESSION];
  423. PCHAR argp;
  424. ULONG64 val;
  425. BOOLEAN dumpedSomething = FALSE;
  427. gClient = pClient;
  429. if (!CheckKmGlobals ()) {
  430. return E_INVALIDARG;
  431. }
  433. argp = ProcessOptions ((PCHAR)args);
  434. if (argp==NULL)
  435. return E_INVALIDARG;
  437. if (Options&AFDKD_BRIEF_DISPLAY) {
  438. dprintf (AFDKD_BRIEF_ENDPOINT_DISPLAY_HEADER);
  439. }
  441. //
  442. // Snag the process from the command line.
  443. //
  445. expr[0] = 0;
  446. i = 0;
  447. while (sscanf( argp, "%s%n", expr, &i )==1 ||
  448. !dumpedSomething ) {
  449. dumpedSomething = TRUE;
  450. if( CheckControlC() ) {
  451. break;
  452. }
  453. argp+=i;
  455. val = GetExpression (expr);
  456. if (val<UserProbeAddress) {
  457. if (val!=0) {
  458. dprintf ("\nLooking for process with id %I64x", val);
  459. val = FindProcessByPid (val);
  460. if (val==0) {
  461. dprintf ("\n");
  462. return E_INVALIDARG;
  463. }
  464. }
  465. else {
  466. val = GetExpression ("@$proc");
  467. }
  468. }
  469. dprintf ("\nLooking for endpoints in process %p", val);
  470. EnumEndpoints(
  471. FindProcessCallback,
  472. val
  473. );
  474. dprintf ("\nTotal endpoints: %ld", EntityCount);
  475. }
  477. if (Options&AFDKD_BRIEF_DISPLAY) {
  478. dprintf (AFDKD_BRIEF_ENDPOINT_DISPLAY_TRAILER);
  479. }
  480. else {
  481. dprintf ("\n");
  482. }
  485. return S_OK;
  486. } // proc
  489. //
  490. // Private prototypes.
  491. //
  493. BOOL
  494. DumpEndpointCallback(
  495. ULONG64 ActualAddress,
  496. ULONG64 Context
  497. )
  499. /*++
  501. Routine Description:
  503. EnumEndpoints() callback for dumping AFD_ENDPOINTs.
  505. Arguments:
  507. Endpoint - The current AFD_ENDPOINT.
  509. ActualAddress - The actual address where the structure resides on the
  510. debugee.
  512. Context - The context value passed into EnumEndpoints().
  514. Return Value:
  516. BOOL - TRUE if enumeration should continue, FALSE if it should be
  517. terminated.
  519. --*/
  521. {
  523. if (!(Options & AFDKD_CONDITIONAL) ||
  524. CheckConditional (ActualAddress, "AFD!AFD_ENDPOINT") ) {
  526. if (Options & AFDKD_NO_DISPLAY)
  527. dprintf ("+");
  528. else {
  529. if (Options & AFDKD_BRIEF_DISPLAY) {
  530. DumpAfdEndpointBrief (
  531. ActualAddress
  532. );
  533. }
  534. else {
  535. DumpAfdEndpoint (
  536. ActualAddress
  537. );
  538. }
  539. if (Options & AFDKD_FIELD_DISPLAY) {
  540. ProcessFieldOutput (ActualAddress, "AFD!AFD_ENDPOINT");
  541. }
  542. }
  543. EntityCount += 1;
  544. }
  545. else
  546. dprintf (".");
  548. return TRUE;
  550. } // DumpEndpointCallback
  552. BOOL
  553. FindStateCallback(
  554. ULONG64 ActualAddress,
  555. ULONG64 Context
  556. )
  558. /*++
  560. Routine Description:
  562. EnumEndpoints() callback for finding AFD_ENDPOINTs in a specific state.
  564. Arguments:
  566. Endpoint - The current AFD_ENDPOINT.
  568. ActualAddress - The actual address where the structure resides on the
  569. debugee.
  571. Context - The context value passed into EnumEndpoints().
  573. Return Value:
  575. BOOL - TRUE if enumeration should continue, FALSE if it should be
  576. terminated.
  578. --*/
  580. {
  581. UCHAR state = (UCHAR)Context;
  582. UCHAR State;
  584. if (state==0x10) {
  585. if (ReadField (Listening)) {
  586. if (!(Options & AFDKD_CONDITIONAL) ||
  587. CheckConditional (ActualAddress, "AFD!AFD_ENDPOINT") ) {
  588. if (Options & AFDKD_NO_DISPLAY)
  589. dprintf ("+");
  590. else {
  591. if (Options & AFDKD_BRIEF_DISPLAY) {
  592. DumpAfdEndpointBrief (
  593. ActualAddress
  594. );
  595. }
  596. else {
  597. DumpAfdEndpoint (
  598. ActualAddress
  599. );
  600. }
  601. if (Options & AFDKD_FIELD_DISPLAY) {
  602. ProcessFieldOutput (ActualAddress, "AFD!AFD_ENDPOINT");
  603. }
  604. }
  605. EntityCount += 1;
  606. }
  607. else
  608. dprintf (".");
  610. }
  611. else {
  612. dprintf (".");
  613. }
  614. }
  615. else {
  617. State = (UCHAR)ReadField (State);
  618. if( (State == state) && !ReadField (Listening) ) {
  619. if (!(Options & AFDKD_CONDITIONAL) ||
  620. CheckConditional (ActualAddress, "AFD!AFD_ENDPOINT") ) {
  621. if (Options & AFDKD_NO_DISPLAY)
  622. dprintf ("+");
  623. else {
  624. if (Options & AFDKD_BRIEF_DISPLAY) {
  625. DumpAfdEndpointBrief (
  626. ActualAddress
  627. );
  628. }
  629. else {
  630. DumpAfdEndpoint (
  631. ActualAddress
  632. );
  633. }
  634. if (Options & AFDKD_FIELD_DISPLAY) {
  635. ProcessFieldOutput (ActualAddress, "AFD!AFD_ENDPOINT");
  636. }
  637. }
  638. EntityCount += 1;
  639. }
  640. else
  641. dprintf (".");
  643. }
  644. else {
  645. dprintf (".");
  646. }
  648. }
  650. return TRUE;
  652. } // FindStateCallback
  654. BOOL
  655. FindPortCallback(
  656. ULONG64 ActualAddress,
  657. ULONG64 Context
  658. )
  660. /*++
  662. Routine Description:
  664. EnumEndpoints() callback for finding AFD_ENDPOINT bound to a specific
  665. port.
  667. Arguments:
  669. Endpoint - The current AFD_ENDPOINT.
  671. ActualAddress - The actual address where the structure resides on the
  672. debugee.
  674. Context - The context value passed into EnumEndpoints().
  676. Return Value:
  678. BOOL - TRUE if enumeration should continue, FALSE if it should be
  679. terminated.
  681. --*/
  683. {
  685. TA_IP_ADDRESS ipAddress;
  686. ULONG result;
  687. USHORT endpointPort;
  688. ULONG64 address;
  689. ULONG length;
  691. address = ReadField (LocalAddress);
  692. length = (ULONG)ReadField (LocalAddressLength);
  695. if( ( length != sizeof(ipAddress) ) ||
  696. ( address == 0 ) ) {
  698. dprintf (".");
  699. return TRUE;
  701. }
  703. if( !ReadMemory(
  704. address,
  705. &ipAddress,
  706. sizeof(ipAddress),
  707. &result
  708. ) ) {
  710. dprintf(
  711. "\nFindPortCallback: Could not read localAddress for endpoint @ %p\n",
  712. address
  713. );
  715. return TRUE;
  717. }
  719. if( ( ipAddress.TAAddressCount != 1 ) ||
  720. ( ipAddress.Address[0].AddressLength != sizeof(TDI_ADDRESS_IP) ) ||
  721. ( ipAddress.Address[0].AddressType != TDI_ADDRESS_TYPE_IP ) ) {
  723. dprintf (".");
  724. return TRUE;
  726. }
  728. endpointPort = NTOHS(ipAddress.Address[0].Address[0].sin_port);
  730. if( endpointPort == (USHORT)Context ) {
  732. if (!(Options & AFDKD_CONDITIONAL) ||
  733. CheckConditional (ActualAddress, "AFD!AFD_ENDPOINT") ) {
  734. if (Options & AFDKD_NO_DISPLAY)
  735. dprintf ("+");
  736. else {
  737. if (Options & AFDKD_BRIEF_DISPLAY) {
  738. DumpAfdEndpointBrief (
  739. ActualAddress
  740. );
  741. }
  742. else {
  743. DumpAfdEndpoint (
  744. ActualAddress
  745. );
  746. }
  747. if (Options & AFDKD_FIELD_DISPLAY) {
  748. ProcessFieldOutput (ActualAddress, "AFD!AFD_ENDPOINT");
  749. }
  750. }
  751. EntityCount += 1;
  752. }
  753. else
  754. dprintf (".");
  757. }
  758. else {
  759. dprintf (".");
  760. }
  763. return TRUE;
  765. } // FindPortCallback
  767. BOOL
  768. FindProcessCallback(
  769. ULONG64 ActualAddress,
  770. ULONG64 Context
  771. )
  773. /*++
  775. Routine Description:
  777. EnumEndpoints() callback for finding AFD_ENDPOINTs owned by a specific
  778. process.
  780. Arguments:
  782. Endpoint - The current AFD_ENDPOINT.
  784. ActualAddress - The actual address where the structure resides on the
  785. debugee.
  787. Context - The context value passed into EnumEndpoints().
  789. Return Value:
  791. BOOL - TRUE if enumeration should continue, FALSE if it should be
  792. terminated.
  794. --*/
  796. {
  798. ULONG64 process;
  800. if (SavedMinorVersion>=2419) {
  801. process = ReadField (OwningProcess);
  802. }
  803. else {
  804. process = ReadField (ProcessCharge.Process);
  805. }
  807. if( process == Context ) {
  809. if (!(Options & AFDKD_CONDITIONAL) ||
  810. CheckConditional (ActualAddress, "AFD!AFD_ENDPOINT") ) {
  811. if (Options & AFDKD_NO_DISPLAY)
  812. dprintf ("+");
  813. else {
  814. if (Options & AFDKD_BRIEF_DISPLAY) {
  815. DumpAfdEndpointBrief (
  816. ActualAddress
  817. );
  818. }
  819. else {
  820. DumpAfdEndpoint (
  821. ActualAddress
  822. );
  823. }
  824. if (Options & AFDKD_FIELD_DISPLAY) {
  825. ProcessFieldOutput (ActualAddress, "AFD!AFD_ENDPOINT");
  826. }
  827. }
  828. EntityCount += 1;
  829. }
  830. else
  831. dprintf (".");
  834. }
  835. else {
  836. dprintf (".");
  837. }
  839. return TRUE;
  841. } // FindProcessCallback
  843. ULONG
  844. FindProcessByPidCallback (
  845. PFIELD_INFO pField,
  846. PVOID UserContext
  847. )
  848. {
  849. PULONG64 pProcess = UserContext;
  850. ULONG64 Pid;
  851. ULONG result;
  853. result = GetFieldValue (
  854. pField->address,
  855. "NT!_EPROCESS",
  856. "UniqueProcessId",
  857. Pid
  858. );
  859. if (result==0) {
  860. if (Pid==*pProcess) {
  861. *pProcess = pField->address;
  862. result = 1;
  863. }
  864. else
  865. dprintf (".");
  866. }
  867. else {
  868. dprintf ("\nFindProcessByPidCallback: Could not read process @ %p, err: %ld\n",
  869. pField->address, result);
  870. *pProcess = 0;
  871. }
  873. return result;
  874. }
  876. ULONG64
  877. FindProcessByPid (
  878. ULONG64 Pid
  879. )
  880. {
  881. ULONG64 Process, Start;
  882. if (DebuggerData.PsActiveProcessHead==0) {
  883. dprintf ("\nFindProcessByPid: PsActiveProcessHead is NULL!!!\n");
  884. return 0;
  885. }
  886. if (ReadPtr (DebuggerData.PsActiveProcessHead, &Start)!=0) {
  887. dprintf ("\nFindProcessByPid: Can't read PsActiveProcessHead!!!\n");
  888. return 0;
  889. }
  891. Process = Pid;
  893. ListType (
  894. "NT!_EPROCESS", // Type
  895. Start, // Address
  896. 1, // ListByFieldAddress
  897. "ActiveProcessLinks.Flink", // NextPointer
  898. &Process, // Context
  899. FindProcessByPidCallback
  900. );
  901. if (Process!=Pid)
  902. return Process;
  903. else
  904. return 0;
  905. }