archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
8 Commits
1 Branch
0 Tags
2.0 GiB
Tree: 744f0b4006
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '744f0b4006'
${ noResults }
windows-xp/Source/XPSP1/NT/base/fs/srv/slmcheck.c

647 lines
16 KiB
Raw Normal View History

Add source files
4 years ago
  1. /*++
  3. Copyright (c) 1991 Microsoft Corporation
  5. Module Name:
  7. slmcheck.c
  9. Abstract:
  11. This source file defines a single function that will check the
  12. consistency of a SLM Status file.
  14. --*/
  16. #include "precomp.h"
  17. #include "slmcheck.tmh"
  18. #pragma hdrstop
  20. #ifdef SLMDBG
  22. //
  23. // This is terrible
  24. //
  25. NTSTATUS
  26. NtCreateEvent (
  27. OUT PHANDLE EventHandle,
  28. IN ACCESS_MASK DesiredAccess,
  29. IN POBJECT_ATTRIBUTES ObjectAttributes OPTIONAL,
  30. IN EVENT_TYPE EventType,
  31. IN BOOLEAN InitialState
  32. );
  34. //
  35. // So is this
  36. //
  37. NTSTATUS
  38. NtWaitForSingleObject(
  39. IN HANDLE Handle,
  40. IN BOOLEAN Alertable,
  41. IN PLARGE_INTEGER Timeout OPTIONAL
  42. );
  44. BOOLEAN SrvDisallowSlmAccessEnabled = FALSE;
  45. BOOLEAN SrvSlmFailed = FALSE;
  47. #define toupper(c) ( (c >= 'a' && c <= 'z') ? c - ('a' - 'A') : c )
  50. NTSTATUS
  51. SrvpValidateStatusFile(
  52. IN PVOID StatusFileData,
  53. IN ULONG StatusFileLength,
  54. OUT PULONG FileOffsetOfInvalidData
  55. );
  57. VOID
  58. SrvReportCorruptSlmStatus (
  59. IN PUNICODE_STRING StatusFile,
  60. IN NTSTATUS Status,
  61. IN ULONG Offset,
  62. IN ULONG Operation,
  63. IN PSESSION Session
  64. )
  65. {
  66. NTSTATUS status;
  67. ANSI_STRING ansiStatusFile;
  68. TIME time;
  69. TIME_FIELDS timeFields;
  70. ULONG i, j;
  71. UNICODE_STRING userName;
  73. if( SrvSlmFailed ) {
  74. return;
  75. }
  77. status = RtlUnicodeStringToAnsiString( &ansiStatusFile, StatusFile, TRUE );
  78. ASSERT( NT_SUCCESS(status) );
  80. KeQuerySystemTime( &time );
  81. RtlTimeToTimeFields( &time, &timeFields );
  83. SrvGetUserAndDomainName ( Session, &userName, NULL );
  85. KdPrint(( "\n*** CORRUPT STATUS FILE DETECTED ***\n"
  86. " File: %Z\n"
  87. " Status: 0x%lx, Offset: 0x%lx, detected on %s\n",
  88. &ansiStatusFile, Status, Offset,
  89. Operation == SLMDBG_CLOSE ? "close" : "rename" ));
  90. KdPrint(( " Workstation: %wZ, User: %wZ, OS: %d\n",
  91. &Session->Connection->PagedConnection->ClientMachineNameString,
  92. &userName,
  93. &SrvClientTypes[Session->Connection->SmbDialect] ));
  94. KdPrint(( " Current time: %d-%d-%d ",
  95. timeFields.Month, timeFields.Day, timeFields.Year ));
  96. KdPrint(( "%d:%d:%d\n",
  97. timeFields.Hour, timeFields.Minute, timeFields.Second ));
  99. SrvReleaseUserAndDomainName( Session, &userName, NULL );
  101. #if 0
  102. //
  103. // Send a broadcast message.
  104. //
  105. SrvSendSecondClassMailslot( ansiStatusFile.Buffer, StatusFile->Length + 1,
  106. "BLUBBER", "BLUBBER" );
  107. #endif
  109. RtlFreeAnsiString( &ansiStatusFile );
  111. } // SrvReportCorruptSlmStatus
  113. VOID
  114. SrvReportSlmStatusOperations (
  115. IN PRFCB Rfcb,
  116. IN BOOLEAN Force
  117. )
  118. {
  119. ULONG first, last, i;
  120. PRFCB_TRACE trace;
  121. TIME_FIELDS timeFields;
  122. PSZ command;
  123. BOOLEAN oplockBreak;
  125. if( !Force && SrvSlmFailed ) {
  126. return;
  127. }
  129. KdPrint(( " Number of operations: %d, number of writes: %d\n",
  130. Rfcb->OperationCount, Rfcb->WriteCount ));
  132. if( Rfcb->Connection && GET_BLOCK_STATE(Rfcb->Connection) != BlockStateActive ) {
  133. KdPrint(( " Connection State = %u\n", GET_BLOCK_STATE( Rfcb->Connection )));
  134. }
  136. if ( Rfcb->TraceWrapped || (Rfcb->NextTrace != 0) ) {
  138. first = Rfcb->TraceWrapped ? Rfcb->NextTrace : 0;
  139. last = Rfcb->NextTrace == 0 ? SLMDBG_TRACE_COUNT - 1 :
  140. Rfcb->NextTrace - 1;
  142. i = first;
  144. while ( TRUE ) {
  146. trace = &Rfcb->Trace[i];
  148. RtlTimeToTimeFields( &trace->Time, &timeFields );
  149. KdPrint(( " %s%d: ", i < 10 ? "0" : "", i ));
  150. KdPrint(( "%d-%d-%d ",
  151. timeFields.Month, timeFields.Day, timeFields.Year ));
  152. KdPrint(( "%s%d:%s%d:",
  153. timeFields.Hour < 10 ? "0" : "", timeFields.Hour,
  154. timeFields.Minute < 10 ? "0" : "", timeFields.Minute ));
  155. KdPrint(( "%s%d: ",
  156. timeFields.Second < 10 ? "0" : "", timeFields.Second ));
  158. oplockBreak = FALSE;
  160. switch ( trace->Command ) {
  162. case SMB_COM_READ:
  163. case SMB_COM_WRITE:
  164. case SMB_COM_READ_ANDX:
  165. case SMB_COM_WRITE_ANDX:
  166. case SMB_COM_LOCK_AND_READ:
  167. case SMB_COM_WRITE_AND_UNLOCK:
  168. case SMB_COM_WRITE_AND_CLOSE:
  169. case SMB_COM_READ_RAW:
  170. case SMB_COM_WRITE_RAW:
  171. case SMB_COM_LOCK_BYTE_RANGE:
  172. case SMB_COM_UNLOCK_BYTE_RANGE:
  173. case SMB_COM_LOCKING_ANDX:
  175. switch ( trace->Command ) {
  177. case SMB_COM_READ:
  178. command = "Read";
  179. break;
  181. case SMB_COM_WRITE:
  182. command = "Write";
  183. break;
  185. case SMB_COM_READ_ANDX:
  186. command = "Read And X";
  187. break;
  189. case SMB_COM_WRITE_ANDX:
  190. command = "Write And X";
  191. break;
  193. case SMB_COM_LOCK_AND_READ:
  194. command = "Lock And Read";
  195. break;
  197. case SMB_COM_WRITE_AND_UNLOCK:
  198. command = "Write And Unlock";
  199. break;
  201. case SMB_COM_WRITE_AND_CLOSE:
  202. command = "Write And Close";
  203. break;
  205. case SMB_COM_READ_RAW:
  206. if ( (trace->Flags & 1) == 0 ) {
  207. command = "Read Raw (copy)";
  208. } else {
  209. command = "Read Raw (MDL)";
  210. }
  211. break;
  213. case SMB_COM_WRITE_RAW:
  214. if ( (trace->Flags & 2) == 0 ) {
  215. if ( (trace->Flags & 1) == 0 ) {
  216. command = "Write Raw (copy, no immed)";
  217. } else {
  218. command = "Write Raw (MDL, no immed)";
  219. }
  220. } else {
  221. if ( (trace->Flags & 1) == 0 ) {
  222. command = "Write Raw (copy, immed)";
  223. } else {
  224. command = "Write Raw (MDL, immed)";
  225. }
  226. }
  227. break;
  229. case SMB_COM_LOCK_BYTE_RANGE:
  230. command = "Lock Byte Range";
  231. break;
  233. case SMB_COM_UNLOCK_BYTE_RANGE:
  234. command = "Unlock Byte Range";
  235. break;
  237. case SMB_COM_LOCKING_ANDX:
  238. if ( trace->Flags == 0 ) {
  239. command = "Locking And X (lock)";
  240. } else if ( trace->Flags == 1 ) {
  241. command = "Locking And X (unlock)";
  242. } else {
  243. command = "Locking And X (release oplock)";
  244. oplockBreak = TRUE;
  245. }
  246. break;
  248. }
  250. if ( !oplockBreak ) {
  251. KdPrint(( "%s, offset = 0x%lx, len = 0x%lx\n",
  252. command, trace->Data.ReadWrite.Offset,
  253. trace->Data.ReadWrite.Length ));
  254. } else {
  255. KdPrint(( "%s\n", command ));
  256. }
  258. break;
  260. default:
  261. KdPrint(( "command = 0x%lx, flags = 0x%lx\n",
  262. trace->Command, trace->Flags ));
  264. }
  266. if ( i == last ) break;
  268. if ( ++i == SLMDBG_TRACE_COUNT ) i = 0;
  270. }
  272. }
  274. SrvSendSecondClassMailslot( "SLM CORRUPTION", 15, "BLUBBER", "BLUBBER" );
  276. return;
  278. } // SrvReportSlmStatusOperations
  280. VOID
  281. SrvCreateMagicSlmName (
  282. IN PUNICODE_STRING StatusFile,
  283. OUT PUNICODE_STRING MagicFile
  284. )
  285. {
  286. LONG fileLength;
  287. ULONG dirLength;
  288. PCHAR magicName = "\\status.nfw";
  289. PCHAR src;
  290. PWCH dest;
  292. fileLength = (strlen( magicName ) + 1) * sizeof(WCHAR);
  293. dirLength = SrvGetSubdirectoryLength( StatusFile );
  294. MagicFile->MaximumLength = (USHORT)(dirLength + fileLength);
  295. MagicFile->Length = (USHORT)(MagicFile->MaximumLength - sizeof(WCHAR));
  296. MagicFile->Buffer = ExAllocatePool( PagedPool, MagicFile->MaximumLength );
  297. ASSERT( MagicFile->Buffer != NULL );
  299. RtlCopyMemory( MagicFile->Buffer, StatusFile->Buffer, dirLength );
  300. src = magicName;
  301. dest = (PWCH)((PCHAR)MagicFile->Buffer + dirLength);
  302. for ( fileLength = strlen(magicName); fileLength >= 0; fileLength-- ) {
  303. *dest++ = *src++;
  304. }
  306. return;
  308. } // SrvCreateMagicSlmName
  310. VOID
  311. SrvDisallowSlmAccess (
  312. IN PUNICODE_STRING StatusFile,
  313. IN HANDLE RootDirectory
  314. )
  315. {
  316. NTSTATUS status;
  317. UNICODE_STRING file;
  318. OBJECT_ATTRIBUTES objectAttributes;
  319. HANDLE fileHandle;
  320. IO_STATUS_BLOCK iosb;
  322. if( SrvSlmFailed ) {
  323. return;
  324. }
  326. SrvSlmFailed = TRUE;
  328. if( SrvDisallowSlmAccessEnabled == FALSE ) {
  329. return;
  330. }
  332. SrvCreateMagicSlmName( StatusFile, &file );
  334. InitializeObjectAttributes(
  335. &objectAttributes,
  336. &file,
  337. OBJ_CASE_INSENSITIVE,
  338. RootDirectory,
  339. NULL
  340. );
  342. KdPrint(( "Disallowing access to SLM directory %wZ\n", &file ));
  344. status = IoCreateFile(
  345. &fileHandle,
  346. GENERIC_READ,
  347. &objectAttributes,
  348. &iosb,
  349. NULL,
  350. 0,
  351. FILE_SHARE_READ | FILE_SHARE_WRITE | FILE_SHARE_DELETE,
  352. FILE_OPEN_IF,
  353. FILE_NON_DIRECTORY_FILE,
  354. NULL,
  355. 0,
  356. CreateFileTypeNone,
  357. NULL,
  358. 0
  359. );
  361. ExFreePool( file.Buffer );
  363. if ( NT_SUCCESS(status) ) {
  364. status = iosb.Status;
  365. }
  366. if ( NT_SUCCESS(status) ) {
  367. NtClose( fileHandle );
  368. } else {
  369. KdPrint(( "Attempt to disallow SLM access failed: 0x%lx\n", status ));
  370. }
  372. return;
  374. } // SrvDisallowSlmAccess
  376. BOOLEAN
  377. SrvIsSlmAccessDisallowed (
  378. IN PUNICODE_STRING StatusFile,
  379. IN HANDLE RootDirectory
  380. )
  381. {
  382. NTSTATUS status;
  383. UNICODE_STRING file;
  384. OBJECT_ATTRIBUTES objectAttributes;
  385. HANDLE fileHandle;
  386. IO_STATUS_BLOCK iosb;
  388. if ( !SrvDisallowSlmAccessEnabled ) {
  389. return FALSE;
  390. }
  392. SrvCreateMagicSlmName( StatusFile, &file );
  394. InitializeObjectAttributes(
  395. &objectAttributes,
  396. &file,
  397. OBJ_CASE_INSENSITIVE,
  398. RootDirectory,
  399. NULL
  400. );
  402. status = IoCreateFile(
  403. &fileHandle,
  404. GENERIC_READ,
  405. &objectAttributes,
  406. &iosb,
  407. NULL,
  408. 0,
  409. FILE_SHARE_READ | FILE_SHARE_WRITE | FILE_SHARE_DELETE,
  410. FILE_OPEN,
  411. FILE_NON_DIRECTORY_FILE,
  412. NULL,
  413. 0,
  414. CreateFileTypeNone,
  415. NULL,
  416. 0
  417. );
  419. ExFreePool( file.Buffer );
  421. if ( NT_SUCCESS(status) ) {
  422. status = iosb.Status;
  423. }
  424. if ( NT_SUCCESS(status) ) {
  425. NtClose( fileHandle );
  426. return TRUE;
  427. } else {
  428. return FALSE;
  429. }
  431. } // SrvIsSlmAccessDisallowed
  433. BOOLEAN
  434. SrvIsEtcFile (
  435. IN PUNICODE_STRING FileName
  436. )
  437. {
  438. if ( ((RtlUnicodeStringToAnsiSize( FileName ) - 1) >= 4) &&
  439. (toupper(FileName->Buffer[0]) == 'E') &&
  440. (toupper(FileName->Buffer[1]) == 'T') &&
  441. (toupper(FileName->Buffer[2]) == 'C') &&
  442. ( FileName->Buffer[3] == '\\') ) {
  444. return TRUE;
  446. } else {
  448. LONG i;
  450. for ( i = 0;
  451. i < (LONG)RtlUnicodeStringToAnsiSize( FileName ) - 1 - 4;
  452. i++ ) {
  454. if ( ( FileName->Buffer[i] == '\\') &&
  455. (toupper(FileName->Buffer[i+1]) == 'E' ) &&
  456. (toupper(FileName->Buffer[i+2]) == 'T' ) &&
  457. (toupper(FileName->Buffer[i+3]) == 'C' ) &&
  458. ( FileName->Buffer[i+4] == '\\') ) {
  460. return TRUE;
  462. }
  464. }
  466. }
  468. return FALSE;
  470. } // SrvIsEtcFile
  472. BOOLEAN
  473. SrvIsSlmStatus (
  474. IN PUNICODE_STRING StatusFile
  475. )
  476. {
  477. UNICODE_STRING baseName;
  479. if ( !SrvIsEtcFile( StatusFile ) ) {
  480. return FALSE;
  481. }
  483. SrvGetBaseFileName( StatusFile, &baseName );
  485. if ( ((RtlUnicodeStringToAnsiSize( &baseName ) - 1) == 10) &&
  486. (toupper(baseName.Buffer[0]) == 'S') &&
  487. (toupper(baseName.Buffer[1]) == 'T') &&
  488. (toupper(baseName.Buffer[2]) == 'A') &&
  489. (toupper(baseName.Buffer[3]) == 'T') &&
  490. (toupper(baseName.Buffer[4]) == 'U') &&
  491. (toupper(baseName.Buffer[5]) == 'S') &&
  492. ( baseName.Buffer[6] == '.') &&
  493. (toupper(baseName.Buffer[7]) == 'S') &&
  494. (toupper(baseName.Buffer[8]) == 'L') &&
  495. (toupper(baseName.Buffer[9]) == 'M') ) {
  496. return TRUE;
  497. }
  499. return FALSE;
  501. } // SrvIsSlmStatus
  503. BOOLEAN
  504. SrvIsTempSlmStatus (
  505. IN PUNICODE_STRING StatusFile
  506. )
  507. {
  508. UNICODE_STRING baseName;
  510. if ( !SrvIsEtcFile( StatusFile ) ) {
  511. return FALSE;
  512. }
  514. SrvGetBaseFileName( StatusFile, &baseName );
  516. if ( ((RtlUnicodeStringToAnsiSize( &baseName ) - 1) == 5) &&
  517. (toupper(baseName.Buffer[0]) == 'T') &&
  518. ( baseName.Buffer[1] == '0') ) {
  519. return TRUE;
  520. }
  522. return FALSE;
  524. } // SrvIsTempSlmStatus
  526. NTSTATUS
  527. SrvValidateSlmStatus(
  528. IN HANDLE StatusFile,
  529. IN PWORK_CONTEXT WorkContext,
  530. OUT PULONG FileOffsetOfInvalidData
  531. )
  532. {
  533. NTSTATUS Status;
  534. IO_STATUS_BLOCK IoStatus;
  535. PULONG buffer, p, ep, s;
  536. LARGE_INTEGER offset;
  537. ULONG previousRun = 0;
  538. HANDLE eventHandle;
  539. OBJECT_ATTRIBUTES obja;
  540. ULONG key;
  542. #define ZERORUNLEN 2048
  544. #define SLMREADSIZE (10 * 4096)
  546. if( SrvSlmFailed ) {
  547. return STATUS_SUCCESS;
  548. }
  550. buffer = ExAllocatePoolWithTag( NonPagedPool, SLMREADSIZE, BlockTypeDataBuffer );
  551. if( buffer == NULL ) {
  552. return STATUS_SUCCESS;
  553. }
  555. *FileOffsetOfInvalidData = 0;
  556. offset.QuadPart = 0;
  558. InitializeObjectAttributes( &obja, NULL, OBJ_CASE_INSENSITIVE, NULL, NULL );
  560. Status = NtCreateEvent( &eventHandle,
  561. EVENT_ALL_ACCESS,
  562. &obja,
  563. SynchronizationEvent,
  564. FALSE
  565. );
  567. if( !NT_SUCCESS( Status ) ) {
  568. return STATUS_SUCCESS;
  569. }
  571. if( ARGUMENT_PRESENT( WorkContext ) ) {
  572. key = WorkContext->Rfcb->ShiftedFid |
  573. SmbGetAlignedUshort( &WorkContext->RequestHeader->Pid );
  574. }
  576. //
  577. // Scan through the file, looking for a run of zeros
  578. //
  579. while( 1 ) {
  581. RtlZeroMemory( &IoStatus, sizeof( IoStatus ) );
  583. Status = NtReadFile( StatusFile,
  584. eventHandle,
  585. NULL,
  586. NULL,
  587. &IoStatus,
  588. buffer,
  589. SLMREADSIZE,
  590. &offset,
  591. ARGUMENT_PRESENT( WorkContext ) ? &key : NULL
  592. );
  594. if( Status == STATUS_PENDING ) {
  595. NtWaitForSingleObject( eventHandle, FALSE, NULL );
  596. }
  598. Status = IoStatus.Status;
  600. if( Status == STATUS_END_OF_FILE ) {
  601. break;
  602. }
  604. if( Status != STATUS_SUCCESS ) {
  605. NtClose( eventHandle );
  606. ExFreePool( buffer );
  607. return Status;
  608. }
  610. if( IoStatus.Information == 0 ) {
  611. break;
  612. }
  614. ep = (PULONG)((ULONG)buffer + IoStatus.Information);
  616. for( p = buffer; p < ep; p++ ) {
  617. if( *p == 0 ) {
  618. for( s = p; s < ep && *s == 0; s++ )
  619. ;
  621. if( (ULONG)s - (ULONG)p >= ZERORUNLEN ) {
  623. *FileOffsetOfInvalidData = offset.LowPart + ((ULONG)p - (ULONG)buffer);
  625. KdPrint(( "SRV: Run of %u zeros in SLM file at offset %u decimal!\n",
  626. (ULONG)s - (ULONG)p, *FileOffsetOfInvalidData ));
  628. ExFreePool( buffer );
  629. NtClose( eventHandle );
  630. return STATUS_UNSUCCESSFUL;
  631. }
  633. p = s;
  635. }
  636. }
  638. offset.QuadPart += IoStatus.Information;
  639. }
  641. NtClose( eventHandle );
  642. ExFreePool( buffer );
  644. return( STATUS_SUCCESS );
  645. }
  647. #endif