archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
8 Commits
1 Branch
0 Tags
2.0 GiB
Tree: 744f0b4006
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '744f0b4006'
${ noResults }
windows-xp/Source/XPSP1/NT/base/ntos/rtl/lookup.c

710 lines
20 KiB
Raw Normal View History

Add source files
4 years ago
  1. /*++
  3. Copyright (c) 2001 Microsoft Corporation
  5. Module Name:
  7. lookup.c
  9. Abstract:
  11. This module implements function table lookup for platforms with table
  12. base exception handling.
  14. Author:
  16. David N. Cutler (davec) 30-May-2001
  18. Revision History:
  20. --*/
  22. #include "ntrtlp.h"
  24. //
  25. // Define external data.
  26. //
  28. #if defined(NTOS_KERNEL_RUNTIME)
  30. #if defined(_AMD64_) // ****** temp ******
  32. #pragma alloc_text(INIT, RtlInitializeHistoryTable)
  34. #endif // ****** temp ******
  36. #else
  38. #include "..\ntdll\ldrp.h"
  40. extern PVOID NtDllBase;
  42. #endif
  44. //
  45. // Define global unwind history table to hold the constant unwind entries
  46. // for exception dispatch followed by unwind.
  47. //
  49. UNWIND_HISTORY_TABLE RtlpUnwindHistoryTable = {
  50. 0, UNWIND_HISTORY_TABLE_NONE, - 1, 0};
  52. #if defined(_AMD64_) // ****** temp ******
  54. VOID
  55. RtlInitializeHistoryTable (
  56. VOID
  57. )
  59. /*++
  61. Routine Description:
  63. This function initializes the global unwind history table.
  65. Arguments:
  67. None.
  69. Return Value:
  71. None.
  73. --*/
  75. {
  77. ULONG64 BeginAddress;
  78. ULONG64 ControlPc;
  79. ULONG64 EndAddress;
  80. PVOID *FunctionAddressTable;
  81. PRUNTIME_FUNCTION FunctionEntry;
  82. ULONG64 ImageBase;
  83. ULONG Index;
  85. //
  86. // Lookup function entries from the function address table until a NULL
  87. // entry is encountered or the unwind history table is full.
  88. //
  90. FunctionAddressTable = &RtlpFunctionAddressTable[0];
  91. Index = 0;
  92. while ((Index < UNWIND_HISTORY_TABLE_SIZE) &&
  93. (*FunctionAddressTable != NULL)) {
  95. ControlPc = (ULONG64)*FunctionAddressTable++;
  96. FunctionEntry = RtlLookupFunctionEntry(ControlPc,
  97. &ImageBase,
  98. NULL);
  100. ASSERT(FunctionEntry != NULL);
  102. BeginAddress = FunctionEntry->BeginAddress + ImageBase;
  103. EndAddress = FunctionEntry->EndAddress + ImageBase;
  104. RtlpUnwindHistoryTable.Entry[Index].ImageBase = ImageBase;
  105. RtlpUnwindHistoryTable.Entry[Index].FunctionEntry = FunctionEntry;
  106. if (BeginAddress < RtlpUnwindHistoryTable.LowAddress) {
  107. RtlpUnwindHistoryTable.LowAddress = BeginAddress;
  108. }
  110. if (EndAddress > RtlpUnwindHistoryTable.HighAddress) {
  111. RtlpUnwindHistoryTable.HighAddress = EndAddress;
  112. }
  114. Index += 1;
  115. }
  117. RtlpUnwindHistoryTable.Count = Index;
  118. return;
  119. }
  121. #endif // ****** temp ******
  123. PRUNTIME_FUNCTION
  124. RtlpSearchInvertedFunctionTable (
  125. PINVERTED_FUNCTION_TABLE InvertedTable,
  126. PVOID ControlPc,
  127. OUT PVOID *ImageBase,
  129. #if defined(_IA64_)
  131. OUT PULONG64 Gp,
  132. #endif
  134. OUT PULONG SizeOfTable
  135. )
  137. /*++
  139. Routine Description:
  141. This function searches for a matching entry in an inverted function
  142. table using the specified control PC value.
  144. N.B. It is assumed that appropriate locks are held when this routine
  145. is called.
  147. Arguments:
  149. InvertedTable - Supplies a pointer to an inverted function table.
  151. ControlPc - Supplies a PC value to to use in searching the inverted
  152. function table.
  154. ImageBase - Supplies a pointer to a variable that receives the base
  155. address of the corresponding module.
  157. SizeOfTable - Supplies a pointer to a variable that recevies the size
  158. of the function table in bytes.
  160. Return Value:
  162. If a matching entry is located in the specified function table, then
  163. the function table address is returned as the function value. Otherwise,
  164. a value of NULL is returned.
  166. --*/
  168. {
  170. PVOID Bound;
  171. LONG High;
  172. ULONG Index;
  173. PINVERTED_FUNCTION_TABLE_ENTRY InvertedEntry;
  174. LONG Low;
  175. LONG Middle;
  177. //
  178. // If there are any entries in the specified inverted function table,
  179. // then search the table for a matching entry.
  180. //
  182. if (InvertedTable->CurrentSize != 0) {
  183. Low = 0;
  184. High = InvertedTable->CurrentSize - 1;
  185. while (High >= Low) {
  187. //
  188. // Compute next probe index and test entry. If the specified
  189. // control PC is greater than of equal to the beginning address
  190. // and less than the ending address of the inverted function
  191. // table entry, then return the address of the function table.
  192. // Otherwise, continue the search.
  193. //
  195. Middle = (Low + High) >> 1;
  196. InvertedEntry = &InvertedTable->TableEntry[Middle];
  197. Bound = (PVOID)((ULONG_PTR)InvertedEntry->ImageBase + InvertedEntry->SizeOfImage);
  198. if (ControlPc < InvertedEntry->ImageBase) {
  199. High = Middle - 1;
  201. } else if (ControlPc >= Bound) {
  202. Low = Middle + 1;
  204. } else {
  205. *ImageBase = InvertedEntry->ImageBase;
  207. #if defined(_IA64_)
  209. *Gp = InvertedEntry->Gp;
  211. #endif
  213. *SizeOfTable = InvertedEntry->SizeOfTable;
  214. return InvertedEntry->FunctionTable;
  215. }
  216. }
  217. }
  219. return NULL;
  220. }
  222. PRUNTIME_FUNCTION
  223. RtlpLookupFunctionTable (
  224. IN PVOID ControlPc,
  225. OUT PVOID *ImageBase,
  227. #if defined(_IA64_)
  229. OUT PULONG64 Gp,
  231. #endif
  233. OUT PULONG SizeOfTable
  234. )
  236. /*++
  238. Routine Description:
  240. This function looks up the control PC in the loaded module list, and
  241. returns the image base, the size of the function table, and the address
  242. of the function table.
  244. Arguments:
  246. ControlPc - Supplies an address in the module to be looked up.
  248. ImageBase - Supplies a pointer to a variable that receives the base
  249. address of the corresponding module.
  251. SizeOfTable - Supplies a pointer to a variable that recevies the size
  252. of the function table in bytes.
  254. Return Value:
  256. If a module is found that contains the specified control PC value and
  257. that module contains a function table, then the address of the function
  258. table is returned as the function value. Otherwise, NULL is returned.
  260. --*/
  262. {
  264. PVOID Base;
  265. ULONG_PTR Bound;
  266. PLDR_DATA_TABLE_ENTRY Entry;
  267. PRUNTIME_FUNCTION FunctionTable;
  268. PLIST_ENTRY Next;
  270. #if defined(NTOS_KERNEL_RUNTIME)
  272. KIRQL OldIrql;
  274. //
  275. // Acquire the loaded module list spinlock and scan the list for the
  276. // specified PC value if the list has been initialized.
  277. //
  279. OldIrql = KeGetCurrentIrql();
  280. if (OldIrql < DISPATCH_LEVEL) {
  281. KeRaiseIrqlToDpcLevel();
  282. }
  284. ExAcquireSpinLockAtDpcLevel(&PsLoadedModuleSpinLock);
  285. FunctionTable = RtlpSearchInvertedFunctionTable(&PsInvertedFunctionTable,
  286. ControlPc,
  287. &Base,
  289. #if defined(_IA64_)
  291. Gp,
  293. #endif
  295. SizeOfTable);
  297. if ((FunctionTable == NULL) &&
  298. (PsInvertedFunctionTable.Overflow != FALSE)) {
  300. Next = PsLoadedModuleList.Flink;
  301. if (Next != NULL) {
  302. while (Next != &PsLoadedModuleList) {
  303. Entry = CONTAINING_RECORD(Next,
  304. LDR_DATA_TABLE_ENTRY,
  305. InLoadOrderLinks);
  307. Next = Next->Flink;
  308. Base = Entry->DllBase;
  309. Bound = (ULONG_PTR)Base + Entry->SizeOfImage;
  310. if (((ULONG_PTR)ControlPc >= (ULONG_PTR)Base) &&
  311. ((ULONG_PTR)ControlPc < Bound)) {
  313. //
  314. // Lookup function table address and size.
  315. //
  317. #if defined(_IA64_)
  319. *Gp = (ULONG64)(RtlImageDirectoryEntryToData(Base,
  320. TRUE,
  321. IMAGE_DIRECTORY_ENTRY_GLOBALPTR,
  322. SizeOfTable));
  324. #endif
  326. FunctionTable = RtlImageDirectoryEntryToData(Base,
  327. TRUE,
  328. IMAGE_DIRECTORY_ENTRY_EXCEPTION,
  329. SizeOfTable);
  331. break;
  332. }
  333. }
  334. }
  335. }
  337. //
  338. // Release the loaded module list spin lock.
  339. //
  341. ExReleaseSpinLock(&PsLoadedModuleSpinLock, OldIrql);
  343. #else
  345. BOOLEAN InLdrInit;
  346. MEMORY_BASIC_INFORMATION MemoryInformation;
  347. PLIST_ENTRY ModuleListHead;
  348. PIMAGE_NT_HEADERS NtHeaders;
  349. PPEB Peb;
  350. PTEB Teb;
  351. NTSTATUS Status;
  353. //
  354. // Acquire the Loader lock for the current process and scan the loaded
  355. // module list for the specified PC value if all the data structures
  356. // have been initialized.
  357. //
  359. FunctionTable = NULL;
  360. InLdrInit = LdrpInLdrInit;
  361. if ((InLdrInit == FALSE) &&
  362. (RtlTryEnterCriticalSection(&LdrpLoaderLock) == FALSE)) {
  364. //
  365. // The loader lock could not be acquired. Call the system to find the
  366. // image that contains the control PC.
  367. //
  369. Status = NtQueryVirtualMemory(NtCurrentProcess(),
  370. ControlPc,
  371. MemoryBasicInformation,
  372. &MemoryInformation,
  373. sizeof(MEMORY_BASIC_INFORMATION),
  374. NULL);
  376. if (NT_SUCCESS(Status) &&
  377. (MemoryInformation.Type == MEM_IMAGE)) {
  379. //
  380. // Lookup function table address and size.
  381. //
  383. Base = MemoryInformation.AllocationBase;
  385. #if defined(_IA64_)
  387. *Gp = (ULONG64)(RtlImageDirectoryEntryToData(Base,
  388. TRUE,
  389. IMAGE_DIRECTORY_ENTRY_GLOBALPTR,
  390. SizeOfTable));
  392. #endif
  394. FunctionTable = RtlImageDirectoryEntryToData(Base,
  395. TRUE,
  396. IMAGE_DIRECTORY_ENTRY_EXCEPTION,
  397. SizeOfTable);
  398. }
  400. } else {
  402. //
  403. // The loader lock was acquired or the loader is being initialized.
  404. // Search the loaded module list if it is currently defined. Otherwise,
  405. // set the values for ntdll.
  406. //
  408. Teb = NtCurrentTeb();
  409. if (Teb != NULL) {
  410. Peb = Teb->ProcessEnvironmentBlock;
  411. if (Peb->Ldr != NULL) {
  413. FunctionTable = RtlpSearchInvertedFunctionTable(&LdrpInvertedFunctionTable,
  414. ControlPc,
  415. &Base,
  417. #if defined(_IA64_)
  419. Gp,
  421. #endif
  423. SizeOfTable);
  425. if ((FunctionTable == NULL) &&
  426. ((InLdrInit != FALSE) ||
  427. (LdrpInvertedFunctionTable.Overflow != FALSE))) {
  429. ModuleListHead = &Peb->Ldr->InLoadOrderModuleList;
  430. Next = ModuleListHead->Flink;
  431. if (Next != NULL) {
  432. while (Next != ModuleListHead) {
  433. Entry = CONTAINING_RECORD(Next,
  434. LDR_DATA_TABLE_ENTRY,
  435. InLoadOrderLinks);
  437. Next = Next->Flink;
  438. Base = Entry->DllBase;
  439. Bound = (ULONG_PTR)Base + Entry->SizeOfImage;
  440. if (((ULONG_PTR)ControlPc >= (ULONG_PTR)Base) &&
  441. ((ULONG_PTR)ControlPc < Bound)) {
  443. #if defined(_IA64_)
  445. *Gp = (ULONG64)(RtlImageDirectoryEntryToData(Base,
  446. TRUE,
  447. IMAGE_DIRECTORY_ENTRY_GLOBALPTR,
  448. SizeOfTable));
  450. #endif
  452. FunctionTable = RtlImageDirectoryEntryToData(Base,
  453. TRUE,
  454. IMAGE_DIRECTORY_ENTRY_EXCEPTION,
  455. SizeOfTable);
  457. break;
  458. }
  459. }
  460. }
  461. }
  463. } else {
  465. //
  466. // The loaded module list has not been initialized. Therefore,
  467. // the current executing code must be in ntdll. If ntddl base
  468. // is not NULL and the control PC is within the ntdll range,
  469. // then return the information for ntdll.
  470. //
  472. if (NtDllBase != NULL) {
  473. Base = NtDllBase;
  474. NtHeaders = RtlImageNtHeader(Base);
  475. if (NtHeaders != NULL) {
  476. Bound = (ULONG_PTR)Base + NtHeaders->OptionalHeader.SizeOfImage;
  477. if (((ULONG_PTR)ControlPc >= (ULONG_PTR)Base) &&
  478. ((ULONG_PTR)ControlPc < Bound)) {
  480. #if defined(_IA64_)
  482. *Gp = (ULONG64)(RtlImageDirectoryEntryToData(Base,
  483. TRUE,
  484. IMAGE_DIRECTORY_ENTRY_GLOBALPTR,
  485. SizeOfTable));
  487. #endif
  489. FunctionTable = RtlImageDirectoryEntryToData(Base,
  490. TRUE,
  491. IMAGE_DIRECTORY_ENTRY_EXCEPTION,
  492. SizeOfTable);
  493. }
  494. }
  495. }
  496. }
  497. }
  499. //
  500. // Release the loader lock if it was acquired.
  501. //
  503. if (InLdrInit == FALSE) {
  504. RtlLeaveCriticalSection(&LdrpLoaderLock);
  505. }
  506. }
  508. #endif
  510. //
  511. // Set the image base address and return the function table address.
  512. //
  514. *ImageBase = Base;
  515. return FunctionTable;
  516. }
  518. VOID
  519. RtlInsertInvertedFunctionTable (
  520. PINVERTED_FUNCTION_TABLE InvertedTable,
  521. PVOID ImageBase,
  522. ULONG SizeOfImage
  523. )
  525. /*++
  527. Routine Description:
  529. This function inserts an entry in an inverted function table if there
  530. is room in the table. Otherwise, no operation is performed.
  532. N.B. It is assumed that appropriate locks are held when this routine
  533. is called.
  535. N.B. If the inverted function table overflows, then it is treated as
  536. a cache. This is unlikely to happen, however.
  538. Arguments:
  540. InvertedTable - Supplies a pointer to the inverted function table in
  541. which the specified entry is to be inserted.
  543. ImageBase - Supplies the base address of the containing image.
  545. SizeOfImage - Supplies the size of the image.
  547. Return Value:
  549. None.
  551. --*/
  553. {
  555. ULONG CurrentSize;
  556. PRUNTIME_FUNCTION FunctionTable;
  558. #if defined(_IA64_)
  560. ULONG64 Gp;
  562. #endif
  564. ULONG Index;
  565. ULONG SizeOfTable;
  567. //
  568. // If the inverted table is not full, then insert the entry in the
  569. // specified inverted table.
  570. //
  572. CurrentSize = InvertedTable->CurrentSize;
  573. if (CurrentSize != InvertedTable->MaximumSize) {
  575. //
  576. // If the inverted table has no entries, then insert the new entry as
  577. // the first entry. Otherwise, search the inverted table for the proper
  578. // insert position, shuffle the table, and insert the new entry.
  579. //
  581. Index = 0;
  582. if (CurrentSize != 0) {
  583. for (Index = 0; Index < CurrentSize; Index += 1) {
  584. if (ImageBase < InvertedTable->TableEntry[Index].ImageBase) {
  585. break;
  586. }
  587. }
  589. //
  590. // If the new entry does not go at the end of the specified table,
  591. // then shuffle the table down to make room for the new entry.
  592. //
  594. if (Index != CurrentSize) {
  595. RtlMoveMemory(&InvertedTable->TableEntry[Index + 1],
  596. &InvertedTable->TableEntry[Index],
  597. (CurrentSize - Index) * sizeof(INVERTED_FUNCTION_TABLE_ENTRY));
  598. }
  599. }
  601. //
  602. // Insert the specified entry in the specified inverted function table.
  603. //
  605. FunctionTable = RtlImageDirectoryEntryToData (ImageBase,
  606. TRUE,
  607. IMAGE_DIRECTORY_ENTRY_EXCEPTION,
  608. &SizeOfTable);
  610. InvertedTable->TableEntry[Index].FunctionTable = FunctionTable;
  611. InvertedTable->TableEntry[Index].ImageBase = ImageBase;
  612. InvertedTable->TableEntry[Index].SizeOfImage = SizeOfImage;
  613. InvertedTable->TableEntry[Index].SizeOfTable = SizeOfTable;
  615. #if defined(_IA64_)
  617. Gp = (ULONG64)RtlImageDirectoryEntryToData (ImageBase,
  618. TRUE,
  619. IMAGE_DIRECTORY_ENTRY_GLOBALPTR,
  620. &SizeOfTable);
  622. InvertedTable->TableEntry[Index].Gp = Gp;
  624. #endif
  626. InvertedTable->CurrentSize += 1;
  628. } else {
  629. InvertedTable->Overflow = TRUE;
  630. }
  632. return;
  633. }
  635. VOID
  636. RtlRemoveInvertedFunctionTable (
  637. PINVERTED_FUNCTION_TABLE InvertedTable,
  638. PVOID ImageBase
  639. )
  641. /*++
  643. Routine Description:
  645. This routine removes an entry from an inverted function table.
  647. N.B. It is assumed that appropriate locks are held when this routine
  648. is called.
  650. Arguments:
  652. InvertedTable - Supplies a pointer to the inverted function table from
  653. which the specified entry is to be removed.
  655. ImageBase - Supplies the base address of the containing image.
  657. Return Value:
  659. None.
  661. --*/
  663. {
  665. ULONG CurrentSize;
  666. ULONG Index;
  668. //
  669. // Search for an entry in the specified inverted table that matches the
  670. // image base.
  671. //
  672. // N.B. It is possible a matching entry is not in the inverted table
  673. // the table was full when an attempt was made to insert the
  674. // corresponding entry.
  675. //
  677. CurrentSize = InvertedTable->CurrentSize;
  678. for (Index = 0; Index < CurrentSize; Index += 1) {
  679. if (ImageBase == InvertedTable->TableEntry[Index].ImageBase) {
  680. break;
  681. }
  682. }
  684. //
  685. // If the entry was found in the inverted table, then remove the entry
  686. // and reduce the size of the table.
  687. //
  689. if (Index != CurrentSize) {
  691. //
  692. // If the size of the table is not one, then shuffle the table and
  693. // remove the specified entry.
  694. //
  696. if (CurrentSize != 1) {
  697. RtlCopyMemory(&InvertedTable->TableEntry[Index],
  698. &InvertedTable->TableEntry[Index + 1],
  699. (CurrentSize - Index - 1) * sizeof(INVERTED_FUNCTION_TABLE_ENTRY));
  700. }
  702. //
  703. // Reduce the size of the inverted table.
  704. //
  706. InvertedTable->CurrentSize -= 1;
  707. }
  709. return;
  710. }