Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
 
 
 
 
 
 

723 lines
21 KiB

/*+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Copyright (c) 1993 Microsoft Corporation
Module Name :
fullptr.c
Abstract :
This file contains the APIs for handling full pointers in the NDR engine
and inlined stubs for MIDL 2.0.
Author :
David Kays dkays January 1994.
Revision History :
---------------------------------------------------------------------*/
#include "ndrp.h"
static void
NdrFullPointerXlatRealloc ( PFULL_PTR_XLAT_TABLES pXlatTables, ulong RefId );
PFULL_PTR_XLAT_TABLES RPC_ENTRY
NdrFullPointerXlatInit(
ulong NumberOfPointers,
XLAT_SIDE XlatSide )
/***
Routine description :
Allocates full pointer support data structures for an RPC call.
Arguments :
NumberOfPointer - If possible, the stub passes in the total number
of possible full pointers that will be used during a call.
Return value :
A pointer to the full pointer translations tables used during an rpc call.
***/
{
PFULL_PTR_XLAT_TABLES pXlatTables;
uint RefIdToPointerEntries;
uint PointerToRefIdBuckets;
BOOL fOutOfMemory = FALSE;
pXlatTables = (PFULL_PTR_XLAT_TABLES)
I_RpcAllocate(sizeof(FULL_PTR_XLAT_TABLES));
// Because old compilers didn't initialize the xlat ptr in stubmsg
// at the client in Os mode, we cannot raise exception right away.
if ( ! pXlatTables )
fOutOfMemory = TRUE;
else
{
//
// Determine the size of both translation tables.
//
if ( NumberOfPointers )
{
ulong Shift, Bitmask;
RefIdToPointerEntries = (uint) NumberOfPointers;
//
// Find the smallest power of 2 which is greater than
// RefIdToPointerEntries.
//
for ( Shift = 0, Bitmask = 0x80000000;
! (Bitmask & (ulong) RefIdToPointerEntries);
Shift++, Bitmask >>= 1 )
;
PointerToRefIdBuckets = (uint)((0xffffffff >> Shift) + 1);
}
else
{
RefIdToPointerEntries = DEFAULT_REF_ID_TO_POINTER_TABLE_ELEMENTS;
PointerToRefIdBuckets = DEFAULT_POINTER_TO_REF_ID_TABLE_BUCKETS;
}
// Make sure we can clean up correctly later if case of an exception.
pXlatTables->RefIdToPointer.XlatTable = 0;
pXlatTables->RefIdToPointer.StateTable = 0;
pXlatTables->PointerToRefId.XlatTable = 0;
pXlatTables->RefIdToPointer.NumberOfEntries = 0;
pXlatTables->PointerToRefId.NumberOfBuckets = 0;
//
// Initialize the ref id to pointer tables.
//
pXlatTables->RefIdToPointer.XlatTable =
(void **) I_RpcAllocate( RefIdToPointerEntries * sizeof(void *) );
if ( ! pXlatTables->RefIdToPointer.XlatTable )
fOutOfMemory = TRUE;
else
{
MIDL_memset( pXlatTables->RefIdToPointer.XlatTable,
0,
RefIdToPointerEntries * sizeof(void *) );
pXlatTables->RefIdToPointer.StateTable =
(uchar *) I_RpcAllocate( RefIdToPointerEntries * sizeof(uchar) );
if ( ! pXlatTables->RefIdToPointer.StateTable )
fOutOfMemory = TRUE;
else
{
MIDL_memset( pXlatTables->RefIdToPointer.StateTable,
0,
RefIdToPointerEntries * sizeof(uchar) );
pXlatTables->RefIdToPointer.NumberOfEntries = RefIdToPointerEntries;
//
// Intialize the pointer to ref id tables.
//
pXlatTables->PointerToRefId.XlatTable =
(PFULL_PTR_TO_REFID_ELEMENT *)
I_RpcAllocate( PointerToRefIdBuckets *
sizeof(PFULL_PTR_TO_REFID_ELEMENT) );
if ( ! pXlatTables->PointerToRefId.XlatTable )
fOutOfMemory = TRUE;
else
{
MIDL_memset( pXlatTables->PointerToRefId.XlatTable,
0,
PointerToRefIdBuckets * sizeof(PFULL_PTR_TO_REFID_ELEMENT) );
}
}
}
}
if ( fOutOfMemory )
{
NdrFullPointerXlatFree( pXlatTables );
if ( XlatSide == XLAT_SERVER )
RpcRaiseException( RPC_S_OUT_OF_MEMORY );
else
{
// The old compilers generate a code for the client side that
// doesn't initialize the table pointer and the stub msg
// initialization is after call to xlat initialize.
// So, we are down to checking the pointer when used.
return( 0 );
}
}
pXlatTables->PointerToRefId.NumberOfBuckets = PointerToRefIdBuckets;
pXlatTables->PointerToRefId.HashMask = PointerToRefIdBuckets - 1;
pXlatTables->NextRefId = 1;
pXlatTables->XlatSide = XlatSide;
return pXlatTables;
}
void RPC_ENTRY
NdrFullPointerXlatFree(
PFULL_PTR_XLAT_TABLES pXlatTables )
/***
Routine description :
Free the full pointer support data structures for an rpc call.
Arguments :
pXlatTables - Full pointer translation tables data structure to free.
***/
{
PFULL_PTR_TO_REFID_ELEMENT * HashTable;
PFULL_PTR_TO_REFID_ELEMENT pElement, pTemp;
ulong Buckets;
ulong i;
if ( ! pXlatTables )
return;
//
// Free the ref id to pointer tables.
//
if ( pXlatTables->RefIdToPointer.XlatTable )
I_RpcFree( pXlatTables->RefIdToPointer.XlatTable );
if ( pXlatTables->RefIdToPointer.StateTable )
I_RpcFree( pXlatTables->RefIdToPointer.StateTable );
//
// Free the pointer to ref id table.
//
HashTable = pXlatTables->PointerToRefId.XlatTable;
if ( HashTable )
{
Buckets = pXlatTables->PointerToRefId.NumberOfBuckets;
for ( i = 0; i < Buckets; i++ )
if ( HashTable[i] )
for ( pElement = HashTable[i]; pElement; pElement = pTemp )
{
pTemp = pElement->Next;
I_RpcFree(pElement);
}
I_RpcFree( HashTable );
}
//
// Free the translation table structure.
//
I_RpcFree( pXlatTables );
}
int RPC_ENTRY
NdrFullPointerQueryPointer(
PFULL_PTR_XLAT_TABLES pXlatTables,
void * pPointer,
uchar QueryType,
ulong * pRefId )
/***
Routine description :
This routine checks if a full pointer is in the full pointer translation
table and is marked with the given state.
If there is no current translation for this pointer then a translation is
inserted in the given translation table and a ref id is assigned if pRefId
is non-null.
Arguments :
pXlatTable - The full pointer translation tables.
pPointer - The pointer to check.
QueryType - The type of query, either FULL_POINTER_MARSHALLED or
FULL_POINTER_BUF_SIZED.
pRefId - The ref id for the pointer is returned if this parameter
is non-null.
Return Value :
TRUE if the given pointer was null or a translation for the full pointer
was found and had the QueryType set, FALSE otherwise.
A return value of FALSE indicates that the pointee should be sized or
marshalled.
***/
{
PFULL_PTR_TO_REFID_ELEMENT * HashTable;
PFULL_PTR_TO_REFID_ELEMENT pElement;
ulong HashTableIndex;
if ( ! pPointer )
{
if ( pRefId )
*pRefId = 0;
return TRUE;
}
if ( ! pXlatTables )
RpcRaiseException( RPC_S_OUT_OF_MEMORY );
HashTable = pXlatTables->PointerToRefId.XlatTable;
//
// Lookup pPointer in PointerToRefId table.
//
HashTableIndex = PTR_HASH( pPointer, pXlatTables->PointerToRefId.HashMask );
for ( pElement = HashTable[HashTableIndex];
pElement;
pElement = pElement->Next )
{
if ( pElement->Pointer == pPointer )
{
if ( CHECK_FULL_POINTER_STATE( pElement->State, QueryType ) )
{
if ( pRefId )
*pRefId = pElement->RefId;
return TRUE;
}
else
{
//
// Assign a ref id now if it doesn't have one and pRefId is
// non null.
//
if ( pRefId && ! pElement->RefId )
pElement->RefId = pXlatTables->NextRefId++;
SET_FULL_POINTER_STATE( pElement->State, QueryType );
}
break;
}
}
//
// If there is no translation for the pointer then insert a new one.
//
if ( ! pElement )
{
pElement = (PFULL_PTR_TO_REFID_ELEMENT)
I_RpcAllocate( sizeof(FULL_PTR_TO_REFID_ELEMENT) );
if ( ! pElement )
RpcRaiseException( RPC_S_OUT_OF_MEMORY );
pElement->State = 0;
SET_FULL_POINTER_STATE( pElement->State, QueryType );
pElement->Pointer = pPointer;
if ( pRefId )
pElement->RefId = pXlatTables->NextRefId++;
else
pElement->RefId = 0;
pElement->Next = HashTable[HashTableIndex];
HashTable[HashTableIndex] = pElement;
}
//
// Set the ref id return value.
//
if ( pRefId )
{
//
// We get here the first time we marshall a new full pointer.
//
*pRefId = pElement->RefId;
//
// We insert the reverse translation if we're on the client side.
//
if ( pXlatTables->XlatSide == XLAT_CLIENT )
{
if ( *pRefId >= pXlatTables->RefIdToPointer.NumberOfEntries )
NdrFullPointerXlatRealloc( pXlatTables, *pRefId );
pXlatTables->RefIdToPointer.XlatTable[*pRefId] = pPointer;
}
}
return FALSE;
}
int RPC_ENTRY
NdrFullPointerQueryRefId(
PFULL_PTR_XLAT_TABLES pXlatTables,
ulong RefId,
uchar QueryType,
void ** ppPointer )
/***
Routine description :
This routine checks if a ref id is in the full pointer translation table
and is marked with the given state.
If a translation is found and ppPointer is non-null then *ppPointer is set
to the value of the ref id's pointer value.
If this routine returns FALSE for a FULL_POINTER_UNMARSHALLED query then
the full pointer should be allocated and a call to
NdrFullPointerInsertRefId must be made.
If this routine returns FALSE for a FULL_POINTER_MEM_SIZED query then
the size of the full pointer's pointee should be added to the current
memory sizing calculation.
Arguments :
pXlatTable - The full pointer translation tables.
pRefId - The ref id to search for.
QueryType - The type of query, either FULL_POINTER_UNMARSHALLED or
FULL_POINTER_MEM_SIZED.
ppPointer - Holds the returned pointer value for the ref id if it is
found.
Return Value :
TRUE if the ref id is 0 or a translation for the ref id is found and had
the QueryType set, FALSE otherwise.
A return value of FALSE indicates that the pointee should be sized or
unmarshalled.
***/
{
uchar * StateTable;
void * Pointer;
if ( ! RefId )
{
return TRUE;
}
if ( ! pXlatTables )
RpcRaiseException( RPC_S_OUT_OF_MEMORY );
if ( RefId >= pXlatTables->NextRefId )
{
pXlatTables->NextRefId = RefId + 1;
if ( pXlatTables->NextRefId < RefId )
RpcRaiseException( RPC_X_BAD_STUB_DATA );
}
if ( RefId >= pXlatTables->RefIdToPointer.NumberOfEntries )
NdrFullPointerXlatRealloc( pXlatTables, RefId );
StateTable = pXlatTables->RefIdToPointer.StateTable;
Pointer = pXlatTables->RefIdToPointer.XlatTable[RefId];
//
// We make this check first. It's possible that we will already have
// a translation for the ref id, but it simply won't be marked yet with
// the proper state. In this case we still want to return the correct
// pointer value from the translation tables, but we'll still end up
// returning false when we make the state check.
//
if ( ppPointer )
{
//
// We have to make sure and always copy the pointer's value from
// the table. This way we handle the case when a pointer's VALUE
// changes to a pointer which has a currently valid RefId (an
// example of this could happen when a server swaps the values of
// two [in,out] double pointers).
//
// Pointer will be null if this is the first time we've seen or used
// this ref id.
//
*ppPointer = Pointer;
}
if ( CHECK_FULL_POINTER_STATE( StateTable[RefId], QueryType ) )
{
return TRUE;
}
else
{
SET_FULL_POINTER_STATE( StateTable[RefId], QueryType );
return FALSE;
}
}
void RPC_ENTRY
NdrFullPointerInsertRefId(
PFULL_PTR_XLAT_TABLES pXlatTables,
ulong RefId,
void * pPointer )
/***
Routine description :
This routine inserts a ref id to pointer translation in the full pointer
translation table.
Arguments :
pXlatTable - The full pointer translation tables.
pRefId - The ref id.
pPointer - The pointer.
Return Value :
None.
***/
{
// unused: uchar * StateTable;
if ( ! pXlatTables )
RpcRaiseException( RPC_S_OUT_OF_MEMORY );
//
// Ref id should be non-zero.
//
NDR_ASSERT( RefId, "NdrFullPointerInsertRefId : Ref id is zero" );
//
// Ref id should fit in the current table.
//
NDR_ASSERT( RefId < pXlatTables->RefIdToPointer.NumberOfEntries,
"NdrFullPointerInsertRefId : Ref Id too large" );
//
// There should currently be no pointer translation for this ref id.
//
NDR_ASSERT( ! pXlatTables->RefIdToPointer.XlatTable[RefId],
"NdrFullPointerInsertRefId : Translation already exists" );
//
// Insert the translation.
//
pXlatTables->RefIdToPointer.XlatTable[RefId] = pPointer;
//
// If we're on the server side then insert the inverse translation.
//
if ( pXlatTables->XlatSide == XLAT_SERVER )
{
PFULL_PTR_TO_REFID_ELEMENT pElement;
long HashTableIndex;
pElement = (PFULL_PTR_TO_REFID_ELEMENT)
I_RpcAllocate( sizeof(FULL_PTR_TO_REFID_ELEMENT) );
if ( ! pElement )
RpcRaiseException( RPC_S_OUT_OF_MEMORY );
pElement->State = 0;
pElement->Pointer = pPointer;
pElement->RefId = RefId;
HashTableIndex = PTR_HASH( pPointer,
pXlatTables->PointerToRefId.HashMask );
pElement->Next = pXlatTables->PointerToRefId.XlatTable[HashTableIndex];
pXlatTables->PointerToRefId.XlatTable[HashTableIndex] = pElement;
}
}
int RPC_ENTRY
NdrFullPointerFree(
PFULL_PTR_XLAT_TABLES pXlatTables,
void * pPointer )
/***
Routine description :
Removes a full pointer from the translation tables, and frees it's
associated translation data.
Return value :
TRUE if the pointer has not yet been freed or is null, FALSE otherwise.
***/
{
PFULL_PTR_TO_REFID_ELEMENT * HashTable;
PFULL_PTR_TO_REFID_ELEMENT pElement;
ulong HashTableIndex;
if ( ! pPointer )
return FALSE;
if ( ! pXlatTables )
RpcRaiseException( RPC_S_OUT_OF_MEMORY );
HashTable = pXlatTables->PointerToRefId.XlatTable;
//
// Lookup pPointer in PointerToRefId table.
//
HashTableIndex = PTR_HASH( pPointer, pXlatTables->PointerToRefId.HashMask );
for ( pElement = HashTable[HashTableIndex];
pElement;
pElement = pElement->Next )
{
if ( pElement->Pointer == pPointer )
{
if ( CHECK_FULL_POINTER_STATE(pElement->State,FULL_POINTER_FREED) )
{
return FALSE;
}
else
{
SET_FULL_POINTER_STATE(pElement->State,FULL_POINTER_FREED);
return TRUE;
}
}
}
//
// There is an instance when a full pointer is encountered for the first
// time during freeing. This occurs if an [in] full pointer is changed
// by the server manager routine. If this occurs we must insert the new
// full pointer so we can keep track of it so that we don't free it more
// than once.
//
pElement = (PFULL_PTR_TO_REFID_ELEMENT)
I_RpcAllocate( sizeof(FULL_PTR_TO_REFID_ELEMENT) );
if ( ! pElement )
RpcRaiseException( RPC_S_OUT_OF_MEMORY );
pElement->State = 0;
pElement->Pointer = pPointer;
HashTableIndex = PTR_HASH( pPointer,
pXlatTables->PointerToRefId.HashMask );
pElement->Next = pXlatTables->PointerToRefId.XlatTable[HashTableIndex];
pXlatTables->PointerToRefId.XlatTable[HashTableIndex] = pElement;
SET_FULL_POINTER_STATE( pElement->State, FULL_POINTER_FREED );
return TRUE;
}
static void
NdrFullPointerXlatRealloc(
PFULL_PTR_XLAT_TABLES pXlatTables,
ulong RefId)
{
void * pMemory;
uint Entries;
if ( ! pXlatTables )
RpcRaiseException( RPC_S_OUT_OF_MEMORY );
Entries = (uint) pXlatTables->RefIdToPointer.NumberOfEntries;
// If the number is much larger than the previous one, most likely the
// number is invalid. Before we have a concrete solution to replace the
// current fixed array of RefIdToPointer lookup, this can catch most
// of the failures.
if ( RefId >= 2 * Entries )
RpcRaiseException( RPC_X_BAD_STUB_DATA );
//
// Realloc RefIdToPointerTable. Allocate twice as many entries.
//
pMemory = I_RpcAllocate( Entries * sizeof(void *) * 2 );
if ( ! pMemory )
RpcRaiseException( RPC_S_OUT_OF_MEMORY );
//
// Now copy the current entries into the new memory.
//
RpcpMemoryCopy( pMemory,
pXlatTables->RefIdToPointer.XlatTable,
Entries * sizeof( void * ) );
//
// Set the new entries to 0.
//
MIDL_memset( (char *) pMemory + Entries * sizeof( void *),
0,
Entries * sizeof( void *) );
//
// Free the old table.
//
I_RpcFree( pXlatTables->RefIdToPointer.XlatTable );
//
// Get the new table.
//
pXlatTables->RefIdToPointer.XlatTable = (void**)pMemory;
//
// Realloc RefIdToPointerState
//
pMemory = I_RpcAllocate( Entries * sizeof(uchar) * 2 );
if ( ! pMemory )
RpcRaiseException( RPC_S_OUT_OF_MEMORY );
//
// Now copy the current entries into the new memory.
//
RpcpMemoryCopy( pMemory,
pXlatTables->RefIdToPointer.StateTable,
Entries * sizeof(uchar) );
//
// Set the new entries to 0.
//
MIDL_memset( (char *) pMemory + Entries * sizeof(uchar),
0,
Entries * sizeof(uchar) );
//
// Free the old table.
//
I_RpcFree( pXlatTables->RefIdToPointer.StateTable );
//
// Get the new table.
//
pXlatTables->RefIdToPointer.StateTable = (uchar*)pMemory;
//
// Update number of entries.
//
pXlatTables->RefIdToPointer.NumberOfEntries *= 2;
}