archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
8 Commits
1 Branch
0 Tags
2.0 GiB
Tree: 744f0b4006
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '744f0b4006'
${ noResults }
windows-xp/Source/XPSP1/NT/drivers/wdm/audio/legacy/wdmaud.sys/ioctl.c

3534 lines
118 KiB
Raw Normal View History

Add source files
4 years ago
  1. /****************************************************************************
  2. *
  3. * ioctl.c
  4. *
  5. * DeviceIoControl communication interface between 32-bit wdmaud.drv
  6. *
  7. * Copyright (C) Microsoft Corporation, 1997 - 1999 All Rights Reserved.
  8. *
  9. * History
  10. * S.Mohanraj (MohanS)
  11. * M.McLaughlin (MikeM)
  12. * 5-19-97 - Noel Cross (NoelC)
  13. *
  14. ***************************************************************************/
  16. #include "wdmsys.h"
  17. #include <devioctl.h>
  19. extern ULONG gWavePreferredSysaudioDevice;
  21. #pragma LOCKED_CODE
  22. #pragma LOCKED_DATA
  24. WDMAPENDINGIRP_QUEUE wdmaPendingIrpQueue;
  26. #ifdef PROFILE
  28. LIST_ENTRY WdmaAllocatedMdlListHead;
  29. KSPIN_LOCK WdmaAllocatedMdlListSpinLock;
  31. // Initialize the List Heads and Mutexes in order to track resources
  32. VOID WdmaInitProfile()
  33. {
  34. InitializeListHead(&WdmaAllocatedMdlListHead);
  35. KeInitializeSpinLock(&WdmaAllocatedMdlListSpinLock);
  36. }
  38. NTSTATUS AddMdlToList
  39. (
  40. PMDL pMdl,
  41. PWDMACONTEXT pWdmaContext
  42. )
  43. {
  44. PALLOCATED_MDL_LIST_ITEM pAllocatedMdlListItem = NULL;
  45. NTSTATUS Status;
  47. Status = AudioAllocateMemory_Fixed(sizeof(*pAllocatedMdlListItem),
  48. TAG_AudM_MDL,
  49. ZERO_FILL_MEMORY,
  50. &pAllocatedMdlListItem);
  51. if (NT_SUCCESS(Status))
  52. {
  53. pAllocatedMdlListItem->pMdl = pMdl;
  54. pAllocatedMdlListItem->pContext = pWdmaContext;
  56. ExInterlockedInsertTailList(&WdmaAllocatedMdlListHead,
  57. &pAllocatedMdlListItem->Next,
  58. &WdmaAllocatedMdlListSpinLock);
  59. }
  61. RETURN( Status );
  62. }
  64. NTSTATUS RemoveMdlFromList
  65. (
  66. PMDL pMdl
  67. )
  68. {
  69. PLIST_ENTRY ple;
  70. PALLOCATED_MDL_LIST_ITEM pAllocatedMdlListItem;
  71. KIRQL OldIrql;
  72. NTSTATUS Status = STATUS_UNSUCCESSFUL;
  74. ExAcquireSpinLock(&WdmaAllocatedMdlListSpinLock, &OldIrql);
  76. for(ple = WdmaAllocatedMdlListHead.Flink;
  77. ple != &WdmaAllocatedMdlListHead;
  78. ple = ple->Flink)
  79. {
  80. pAllocatedMdlListItem = CONTAINING_RECORD(ple, ALLOCATED_MDL_LIST_ITEM, Next);
  82. if (pAllocatedMdlListItem->pMdl == pMdl)
  83. {
  84. RemoveEntryList(&pAllocatedMdlListItem->Next);
  85. AudioFreeMemory(sizeof(*pAllocatedMdlListItem),&pAllocatedMdlListItem);
  86. Status = STATUS_SUCCESS;
  87. break;
  88. }
  89. }
  91. ExReleaseSpinLock(&WdmaAllocatedMdlListSpinLock, OldIrql);
  93. RETURN( Status );
  94. }
  95. #endif
  97. VOID WdmaCsqInsertIrp
  98. (
  99. IN struct _IO_CSQ *Csq,
  100. IN PIRP Irp
  101. )
  102. {
  103. PWDMAPENDINGIRP_QUEUE PendingIrpQueue = CONTAINING_RECORD(Csq, WDMAPENDINGIRP_QUEUE, Csq);
  105. InsertTailList(&PendingIrpQueue->WdmaPendingIrpListHead,
  106. &Irp->Tail.Overlay.ListEntry);
  107. }
  109. VOID WdmaCsqRemoveIrp
  110. (
  111. IN PIO_CSQ Csq,
  112. IN PIRP Irp
  113. )
  114. {
  115. RemoveEntryList(&Irp->Tail.Overlay.ListEntry);
  116. }
  118. PIRP WdmaCsqPeekNextIrp
  119. (
  120. IN PIO_CSQ Csq,
  121. IN PIRP Irp,
  122. IN PVOID PeekContext
  123. )
  124. {
  125. PWDMAPENDINGIRP_QUEUE PendingIrpQueue = CONTAINING_RECORD(Csq, WDMAPENDINGIRP_QUEUE, Csq);
  126. PIRP nextIrp;
  127. PLIST_ENTRY listEntry;
  129. if (Irp == NULL) {
  130. listEntry = PendingIrpQueue->WdmaPendingIrpListHead.Flink;
  131. if (listEntry == &PendingIrpQueue->WdmaPendingIrpListHead) {
  132. DPF(DL_TRACE|FA_IOCTL, ("Irp is NULL, queue is empty"));
  133. return NULL;
  134. }
  136. nextIrp = CONTAINING_RECORD(listEntry, IRP, Tail.Overlay.ListEntry);
  137. DPF(DL_TRACE|FA_IOCTL, ("Irp is NULL, nextIrp %x", nextIrp));
  138. return nextIrp;
  139. }
  141. listEntry = Irp->Tail.Overlay.ListEntry.Flink;
  144. //
  145. // Enumerated to end of queue.
  146. //
  148. if (listEntry == &PendingIrpQueue->WdmaPendingIrpListHead) {
  149. DPF(DL_TRACE|FA_IOCTL, ("End of queue reached Irp %x", Irp));
  150. return NULL;
  151. }
  154. nextIrp = CONTAINING_RECORD(listEntry, IRP, Tail.Overlay.ListEntry);
  155. return nextIrp;
  156. }
  158. VOID WdmaCsqAcquireLock
  159. (
  160. IN PIO_CSQ Csq,
  161. OUT PKIRQL Irql
  162. )
  163. {
  164. PWDMAPENDINGIRP_QUEUE PendingIrpQueue = CONTAINING_RECORD(Csq, WDMAPENDINGIRP_QUEUE, Csq);
  165. KeAcquireSpinLock(&PendingIrpQueue->WdmaPendingIrpListSpinLock, Irql);
  166. }
  168. VOID WdmaCsqReleaseLock
  169. (
  170. IN PIO_CSQ Csq,
  171. IN KIRQL Irql
  172. )
  173. {
  174. PWDMAPENDINGIRP_QUEUE PendingIrpQueue = CONTAINING_RECORD(Csq, WDMAPENDINGIRP_QUEUE, Csq);
  175. KeReleaseSpinLock(&PendingIrpQueue->WdmaPendingIrpListSpinLock, Irql);
  176. }
  178. VOID WdmaCsqCompleteCanceledIrp
  179. (
  180. IN PIO_CSQ pCsq,
  181. IN PIRP Irp
  182. )
  183. {
  184. Irp->IoStatus.Status = STATUS_CANCELLED;
  185. IoCompleteRequest(Irp, IO_NO_INCREMENT);
  186. }
  188. NTSTATUS AddIrpToPendingList
  189. (
  190. PIRP pIrp,
  191. ULONG IrpDeviceType,
  192. PWDMACONTEXT pWdmaContext,
  193. PWDMAPENDINGIRP_CONTEXT *ppPendingIrpContext
  194. )
  195. {
  196. PWDMAPENDINGIRP_CONTEXT pPendingIrpContext = NULL;
  197. NTSTATUS Status;
  199. Status = AudioAllocateMemory_Fixed(sizeof(*pPendingIrpContext),
  200. TAG_AudR_IRP,
  201. ZERO_FILL_MEMORY,
  202. &pPendingIrpContext);
  203. if (NT_SUCCESS(Status))
  204. {
  205. *ppPendingIrpContext = pPendingIrpContext;
  207. pPendingIrpContext->IrpDeviceType = IrpDeviceType;
  208. pPendingIrpContext->pContext = pWdmaContext;
  210. IoCsqInsertIrp(&wdmaPendingIrpQueue.Csq,
  211. pIrp,
  212. &pPendingIrpContext->IrpContext);
  213. }
  215. RETURN( Status );
  216. }
  218. NTSTATUS RemoveIrpFromPendingList
  219. (
  220. PWDMAPENDINGIRP_CONTEXT pPendingIrpContext
  221. )
  222. {
  223. PIO_CSQ_IRP_CONTEXT irpContext = &(pPendingIrpContext->IrpContext);
  224. PIRP Irp;
  225. NTSTATUS Status;
  227. Irp = IoCsqRemoveIrp(&wdmaPendingIrpQueue.Csq, irpContext);
  228. if (Irp) {
  229. Status = STATUS_SUCCESS;
  230. }
  231. else {
  232. Status = STATUS_UNSUCCESSFUL;
  233. }
  234. AudioFreeMemory(sizeof(*pPendingIrpContext),&irpContext);
  236. RETURN( Status );
  237. }
  239. /****************************************************************************
  240. * @doc INTERNAL
  241. *
  242. * @api BOOL | IsSysaudioInterfaceActive | Checks to see if the sysaudio
  243. * device interface is active.
  244. *
  245. * @rdesc returns TRUE if sysaudio has been found, otherwise FALSE
  246. ***************************************************************************/
  247. BOOL IsSysaudioInterfaceActive()
  248. {
  249. NTSTATUS Status;
  250. PWSTR pwstrSymbolicLinkList = NULL;
  251. BOOL bRet = FALSE;
  253. Status = IoGetDeviceInterfaces(
  254. &KSCATEGORY_SYSAUDIO,
  255. NULL,
  256. 0,
  257. &pwstrSymbolicLinkList);
  259. if (NT_SUCCESS(Status))
  260. {
  261. if (*pwstrSymbolicLinkList != UNICODE_NULL)
  262. {
  263. DPF(DL_TRACE|FA_IOCTL, ("yes"));
  264. bRet = TRUE;
  265. }
  266. AudioFreeMemory_Unknown(&pwstrSymbolicLinkList);
  267. } else {
  268. DPF(DL_WARNING|FA_IOCTL,("IoGetDeviceInterface failed Statue=%08X",Status) );
  269. }
  271. DPF(DL_TRACE|FA_IOCTL, ("No"));
  272. return bRet;
  273. }
  275. PVOID
  276. GetSystemAddressForMdlWithFailFlag
  277. (
  278. PMDL pMdl
  279. )
  280. {
  281. PVOID pAddress;
  282. CSHORT OldFlags;
  284. OldFlags = (pMdl->MdlFlags & MDL_MAPPING_CAN_FAIL);
  285. pMdl->MdlFlags |= MDL_MAPPING_CAN_FAIL;
  287. pAddress = MmGetSystemAddressForMdl( pMdl ) ;
  289. pMdl->MdlFlags &= ~(MDL_MAPPING_CAN_FAIL);
  290. pMdl->MdlFlags |= OldFlags;
  292. return pAddress;
  293. }
  295. /****************************************************************************
  296. * @doc INTERNAL
  297. *
  298. * @api VOID | wdmaudMapBuffer | Allocates an MDL and returns a system address
  299. * mapped pointer to the passed in buffer.
  300. *
  301. * @rdesc returns nothing
  302. ***************************************************************************/
  303. VOID wdmaudMapBuffer
  304. (
  305. IN PIRP pIrp,
  306. IN PVOID DataBuffer,
  307. IN DWORD DataBufferSize,
  308. OUT PVOID *ppMappedBuffer,
  309. OUT PMDL *ppMdl,
  310. IN PWDMACONTEXT pContext,
  311. IN BOOL bWrite
  312. )
  313. {
  314. NTSTATUS ListAddStatus = STATUS_UNSUCCESSFUL;
  316. // Make sure that these are initialized to NULL
  317. *ppMdl = NULL;
  318. *ppMappedBuffer = NULL;
  320. if (DataBuffer)
  321. {
  322. if (DataBufferSize)
  323. {
  324. *ppMdl = MmCreateMdl( NULL,
  325. DataBuffer,
  326. DataBufferSize );
  327. if (*ppMdl)
  328. {
  329. try
  330. {
  331. MmProbeAndLockPages( *ppMdl,
  332. pIrp->RequestorMode,
  333. bWrite ? IoWriteAccess:IoReadAccess );
  335. *ppMappedBuffer = GetSystemAddressForMdlWithFailFlag( *ppMdl ) ;
  337. ListAddStatus = AddMdlToList(*ppMdl, pContext);
  338. }
  339. except (EXCEPTION_EXECUTE_HANDLER)
  340. {
  341. if (NT_SUCCESS(ListAddStatus))
  342. {
  343. RemoveMdlFromList( *ppMdl );
  344. }
  345. IoFreeMdl( *ppMdl );
  346. *ppMdl = NULL;
  347. *ppMappedBuffer = NULL;
  348. }
  349. }
  351. //
  352. // Must have failed in GetSystemAddressForMdlWithFailFlag, but since we set the
  353. // MDL_MAPPING_CAN_FAIL flag our exception handler won't get executed. Do the
  354. // cleanup here for the MDL creation.
  355. //
  356. if (NULL == *ppMappedBuffer)
  357. {
  358. if (NT_SUCCESS(ListAddStatus))
  359. {
  360. RemoveMdlFromList( *ppMdl );
  361. }
  363. if (*ppMdl)
  364. {
  365. MmUnlockPages(*ppMdl);
  366. IoFreeMdl( *ppMdl );
  367. *ppMdl = NULL;
  368. }
  369. }
  370. }
  371. }
  373. return;
  374. }
  377. /****************************************************************************
  378. * @doc INTERNAL
  379. *
  380. * @api VOID | wdmaudUnmapBuffer | Frees the MDL allocated by wdmaudMapBuffer
  381. *
  382. * @parm PMDL | pMdl | Pointer to the MDL to free.
  383. *
  384. * @rdesc returns nothing
  385. ***************************************************************************/
  386. VOID wdmaudUnmapBuffer
  387. (
  388. PMDL pMdl
  389. )
  390. {
  391. if (pMdl)
  392. {
  393. RemoveMdlFromList(pMdl);
  395. MmUnlockPages(pMdl);
  396. IoFreeMdl(pMdl);
  397. }
  399. return;
  400. }
  402. NTSTATUS
  403. CaptureBufferToLocalPool(
  404. PVOID DataBuffer,
  405. DWORD DataBufferSize,
  406. PVOID *ppMappedBuffer
  407. #ifdef _WIN64
  408. ,DWORD ThunkBufferSize
  409. #endif
  410. )
  411. {
  412. NTSTATUS Status = STATUS_INVALID_PARAMETER;
  413. DWORD CopySize=DataBufferSize;
  415. #ifdef _WIN64
  416. if (ThunkBufferSize) {
  417. DataBufferSize=ThunkBufferSize;
  418. ASSERT( DataBufferSize >= CopySize );
  419. }
  420. #endif
  422. if (DataBufferSize)
  423. {
  424. Status = AudioAllocateMemory_Fixed(DataBufferSize,
  425. TAG_AudB_BUFFER,
  426. ZERO_FILL_MEMORY,
  427. ppMappedBuffer);
  428. if (NT_SUCCESS(Status))
  429. {
  430. // Wrap around a try/except because the user mode memory
  431. // might have been removed from underneath us.
  432. try
  433. {
  434. RtlCopyMemory( *ppMappedBuffer,
  435. DataBuffer,
  436. CopySize);
  437. }
  438. except (EXCEPTION_EXECUTE_HANDLER)
  439. {
  440. AudioFreeMemory(DataBufferSize,ppMappedBuffer);
  441. Status = GetExceptionCode();
  442. }
  443. }
  444. }
  446. RETURN( Status );
  447. }
  449. NTSTATUS
  450. CopyAndFreeCapturedBuffer(
  451. PVOID DataBuffer,
  452. DWORD DataBufferSize,
  453. PVOID *ppMappedBuffer
  454. )
  455. {
  456. NTSTATUS Status = STATUS_INVALID_PARAMETER;
  458. ASSERT(DataBuffer);
  460. if (*ppMappedBuffer)
  461. {
  462. // Wrap around a try/except because the user mode memory
  463. // might have been removed from underneath us.
  464. try
  465. {
  466. RtlCopyMemory( DataBuffer,
  467. *ppMappedBuffer,
  468. DataBufferSize);
  469. Status = STATUS_SUCCESS;
  470. }
  471. except (EXCEPTION_EXECUTE_HANDLER)
  472. {
  473. Status = GetExceptionCode();
  474. }
  476. AudioFreeMemory_Unknown(ppMappedBuffer);
  477. }
  479. RETURN( Status );
  480. }
  482. #pragma PAGEABLE_CODE
  483. #pragma PAGEABLE_DATA
  485. NTSTATUS
  486. SoundDispatchCreate(
  487. IN PDEVICE_OBJECT pDO,
  488. IN PIRP pIrp
  489. )
  490. {
  491. PIO_STACK_LOCATION pIrpStack;
  492. PWDMACONTEXT pContext = NULL;
  493. NTSTATUS Status;
  494. int i;
  496. PAGED_CODE();
  497. DPF(DL_TRACE|FA_IOCTL, ("IRP_MJ_CREATE"));
  499. Status = KsReferenceSoftwareBusObject(((PDEVICE_INSTANCE)pDO->DeviceExtension)->pDeviceHeader );
  501. if (!NT_SUCCESS(Status))
  502. {
  503. RETURN( Status );
  504. }
  506. pIrpStack = IoGetCurrentIrpStackLocation(pIrp);
  508. Status = AudioAllocateMemory_Fixed(sizeof(*pContext),
  509. TAG_Audx_CONTEXT,
  510. ZERO_FILL_MEMORY,
  511. &pContext);
  512. if (NT_SUCCESS(Status))
  513. {
  514. pIrpStack->FileObject->FsContext = pContext;
  516. //
  517. // Initialize out all the winmm device data structures.
  518. //
  519. #ifdef DEBUG
  520. pContext->dwSig=CONTEXT_SIGNATURE;
  521. #endif
  523. pContext->VirtualWavePinId = MAXULONG;
  524. pContext->VirtualMidiPinId = MAXULONG;
  525. pContext->VirtualCDPinId = MAXULONG;
  527. pContext->PreferredSysaudioWaveDevice = gWavePreferredSysaudioDevice;
  529. if ( IsSysaudioInterfaceActive() )
  530. {
  531. pContext->pFileObjectSysaudio = kmxlOpenSysAudio();
  532. } else {
  533. DPF(DL_WARNING|FA_SYSAUDIO,("sysaudio not available") );
  534. }
  536. for (i = 0; i < MAXNUMDEVS; i++)
  537. {
  538. pContext->WaveOutDevs[i].pWdmaContext = pContext;
  539. pContext->WaveInDevs[i].pWdmaContext = pContext;
  540. pContext->MidiOutDevs[i].pWdmaContext = pContext;
  541. pContext->MidiInDevs[i].pWdmaContext = pContext;
  542. pContext->MixerDevs[i].pWdmaContext = pContext;
  543. pContext->AuxDevs[i].pWdmaContext = pContext;
  545. pContext->WaveOutDevs[i].Device = UNUSED_DEVICE;
  546. pContext->WaveInDevs[i].Device = UNUSED_DEVICE;
  547. pContext->MidiOutDevs[i].Device = UNUSED_DEVICE;
  548. pContext->MidiInDevs[i].Device = UNUSED_DEVICE;
  549. pContext->MixerDevs[i].Device = UNUSED_DEVICE;
  550. pContext->AuxDevs[i].Device = UNUSED_DEVICE;
  551. #ifdef DEBUG
  552. pContext->MixerDevs[i].dwSig = MIXERDEVICE_SIGNATURE;
  553. #endif
  555. DPFASSERT(pContext->WaveOutDevs[i].pWavePin == NULL);
  557. pContext->apCommonDevice[WaveInDevice][i] = (PCOMMONDEVICE)&pContext->WaveInDevs[i];
  558. pContext->apCommonDevice[WaveOutDevice][i] = (PCOMMONDEVICE)&pContext->WaveOutDevs[i];
  559. pContext->apCommonDevice[MidiInDevice][i] = (PCOMMONDEVICE)&pContext->MidiInDevs[i];
  560. pContext->apCommonDevice[MidiOutDevice][i] = (PCOMMONDEVICE)&pContext->MidiOutDevs[i];
  561. pContext->apCommonDevice[MixerDevice][i] = (PCOMMONDEVICE)&pContext->MixerDevs[i];
  562. pContext->apCommonDevice[AuxDevice][i] = (PCOMMONDEVICE)&pContext->AuxDevs[i];
  563. }
  565. InitializeListHead(&pContext->DevNodeListHead);
  566. pContext->DevNodeListCount = 0;
  567. InitializeListHead(&pContext->WorkListHead);
  568. KeInitializeSpinLock(&pContext->WorkListSpinLock);
  569. ExInitializeWorkItem(&pContext->WorkListWorkItem, WorkListWorker, pContext);
  571. ExInitializeWorkItem(&pContext->SysaudioWorkItem, SysaudioAddRemove, pContext);
  573. KeInitializeEvent(&pContext->InitializedSysaudioEvent, NotificationEvent, FALSE);
  575. Status = KsRegisterWorker( DelayedWorkQueue, &pContext->WorkListWorkerObject );
  576. if (NT_SUCCESS(Status))
  577. {
  578. Status = KsRegisterWorker( DelayedWorkQueue, &pContext->SysaudioWorkerObject );
  579. if (NT_SUCCESS(Status))
  580. {
  581. Status = IoRegisterPlugPlayNotification(
  582. EventCategoryDeviceInterfaceChange,
  583. PNPNOTIFY_DEVICE_INTERFACE_INCLUDE_EXISTING_INTERFACES,
  584. (GUID *)&KSCATEGORY_SYSAUDIO,
  585. pIrpStack->DeviceObject->DriverObject,
  586. SysAudioPnPNotification,
  587. pContext,
  588. &pContext->NotificationEntry);
  590. if (NT_SUCCESS(Status))
  591. {
  592. AddFsContextToList(pContext);
  593. DPF(DL_TRACE|FA_IOCTL, ("New pContext=%08Xh", pContext) );
  594. }
  595. if (!NT_SUCCESS(Status))
  596. {
  597. KsUnregisterWorker( pContext->SysaudioWorkerObject );
  598. pContext->SysaudioWorkerObject = NULL;
  599. }
  600. }
  602. if (!NT_SUCCESS(Status))
  603. {
  604. KsUnregisterWorker( pContext->WorkListWorkerObject );
  605. pContext->WorkListWorkerObject = NULL;
  606. }
  607. }
  609. if (!NT_SUCCESS(Status))
  610. {
  611. AudioFreeMemory(sizeof(*pContext),&pContext);
  612. pIrpStack->FileObject->FsContext = NULL;
  613. }
  614. }
  616. if (!NT_SUCCESS(Status))
  617. {
  618. KsDereferenceSoftwareBusObject(((PDEVICE_INSTANCE)pDO->DeviceExtension)->pDeviceHeader );
  619. }
  621. pIrp->IoStatus.Status = Status;
  622. pIrp->IoStatus.Information = 0;
  623. IoCompleteRequest(pIrp, IO_NO_INCREMENT);
  625. RETURN( Status );
  626. }
  628. NTSTATUS
  629. SoundDispatchClose(
  630. IN PDEVICE_OBJECT pDO,
  631. IN PIRP pIrp
  632. )
  633. {
  634. PIO_STACK_LOCATION pIrpStack;
  635. PKSWORKER WorkListWorkerObject;
  636. PKSWORKER SysaudioWorkerObject;
  637. PWDMACONTEXT pContext;
  639. PAGED_CODE();
  640. DPF(DL_TRACE|FA_IOCTL, ("IRP_MJ_CLOSE"));
  641. //
  642. // This routine is serialized by the i/o subsystem so there is no need to grab the
  643. // mutex for protection. Furthermore, it is not possible to release the mutex
  644. // after UninitializeSysaudio is called.
  645. //
  647. pIrpStack = IoGetCurrentIrpStackLocation(pIrp);
  649. //
  650. // Can't assume that FsContext is initialized if the device has
  651. // been opened with FO_DIRECT_DEVICE_OPEN
  652. //
  653. if (pIrpStack->FileObject->Flags & FO_DIRECT_DEVICE_OPEN)
  654. {
  655. DPF(DL_TRACE|FA_IOCTL, ("Opened with FO_DIRECT_DEVICE_OPEN, no device context") );
  656. goto exit;
  657. }
  659. pContext = pIrpStack->FileObject->FsContext;
  660. ASSERT(pContext);
  662. DPF(DL_TRACE|FA_IOCTL, ("pWdmaContext=%08Xh", pContext) );
  664. if (pContext->NotificationEntry != NULL)
  665. {
  666. IoUnregisterPlugPlayNotification(pContext->NotificationEntry);
  667. pContext->NotificationEntry = NULL;
  668. }
  670. //
  671. // force turds to be freed for a particular context
  672. //
  673. WdmaGrabMutex(pContext);
  675. CleanupWaveDevices(pContext);
  676. CleanupMidiDevices(pContext);
  677. WdmaContextCleanup(pContext);
  678. UninitializeSysaudio(pContext);
  680. WorkListWorkerObject = pContext->WorkListWorkerObject;
  681. pContext->WorkListWorkerObject = NULL;
  683. SysaudioWorkerObject = pContext->SysaudioWorkerObject;
  684. pContext->SysaudioWorkerObject = NULL;
  686. WdmaReleaseMutex(pContext);
  688. if (WorkListWorkerObject != NULL)
  689. {
  690. KsUnregisterWorker( WorkListWorkerObject );
  691. }
  693. if (SysaudioWorkerObject != NULL)
  694. {
  695. KsUnregisterWorker( SysaudioWorkerObject );
  696. }
  697. RemoveFsContextFromList(pContext);
  699. //
  700. // Workitem: Shouldn't WdmaReleaseMutex(pContext) be here rather then above?
  701. // I would think that if we release the mutex before cleanly getting throug the
  702. // cleanup we could have reentrancy problems. ???
  703. //
  704. // Also, note that all of pContext will be invalid after this AudioFreeMemory call!
  705. //
  706. kmxlRemoveContextFromNoteList(pContext);
  708. if( pContext->pFileObjectSysaudio )
  709. {
  710. kmxlCloseSysAudio(pContext->pFileObjectSysaudio);
  711. pContext->pFileObjectSysaudio = NULL;
  712. }
  714. AudioFreeMemory(sizeof(*pContext),&pContext);
  715. pIrpStack->FileObject->FsContext = NULL;
  717. exit:
  718. KsDereferenceSoftwareBusObject(((PDEVICE_INSTANCE)pDO->DeviceExtension)->pDeviceHeader );
  720. pIrp->IoStatus.Status = STATUS_SUCCESS;
  721. pIrp->IoStatus.Information = 0;
  722. IoCompleteRequest(pIrp, IO_NO_INCREMENT);
  724. return STATUS_SUCCESS;
  725. }
  727. NTSTATUS
  728. SoundDispatchCleanup(
  729. IN PDEVICE_OBJECT pDO,
  730. IN PIRP pIrp
  731. )
  732. {
  733. PIO_STACK_LOCATION pIrpStack;
  734. PWDMACONTEXT pContext;
  736. PAGED_CODE();
  737. DPF(DL_TRACE|FA_IOCTL, ("IRP_MJ_CLEANUP"));
  739. pIrpStack = IoGetCurrentIrpStackLocation(pIrp);
  741. //
  742. // Can't assume that FsContext is initialized if the device has
  743. // been opened with FO_DIRECT_DEVICE_OPEN
  744. //
  745. if (pIrpStack->FileObject->Flags & FO_DIRECT_DEVICE_OPEN)
  746. {
  747. DPF(DL_TRACE|FA_IOCTL, ("Opened with FO_DIRECT_DEVICE_OPEN, no device context") );
  748. goto exit;
  749. }
  751. pContext = pIrpStack->FileObject->FsContext;
  752. ASSERT(pContext);
  754. DPF(DL_TRACE|FA_IOCTL, ("pWdmaContext=%08Xh", pContext) );
  756. //
  757. // force turds to be freed for a particular context
  758. //
  759. WdmaGrabMutex(pContext);
  760. CleanupWaveDevices(pContext);
  761. CleanupMidiDevices(pContext);
  762. WdmaContextCleanup(pContext);
  763. WdmaReleaseMutex(pContext);
  765. exit:
  766. pIrp->IoStatus.Status = STATUS_SUCCESS;
  767. pIrp->IoStatus.Information = 0;
  768. IoCompleteRequest(pIrp, IO_NO_INCREMENT);
  770. return STATUS_SUCCESS;
  771. }
  773. NTSTATUS
  774. ValidateIoCode
  775. (
  776. IN ULONG IoCode
  777. )
  778. {
  779. NTSTATUS Status;
  781. PAGED_CODE();
  782. switch (IoCode)
  783. {
  784. case IOCTL_WDMAUD_INIT:
  785. case IOCTL_WDMAUD_ADD_DEVNODE:
  786. case IOCTL_WDMAUD_REMOVE_DEVNODE:
  787. case IOCTL_WDMAUD_SET_PREFERRED_DEVICE:
  788. case IOCTL_WDMAUD_GET_CAPABILITIES:
  789. case IOCTL_WDMAUD_GET_NUM_DEVS:
  790. case IOCTL_WDMAUD_OPEN_PIN:
  791. case IOCTL_WDMAUD_CLOSE_PIN:
  792. case IOCTL_WDMAUD_GET_VOLUME:
  793. case IOCTL_WDMAUD_SET_VOLUME:
  794. case IOCTL_WDMAUD_EXIT:
  795. case IOCTL_WDMAUD_WAVE_OUT_PAUSE:
  796. case IOCTL_WDMAUD_WAVE_OUT_PLAY:
  797. case IOCTL_WDMAUD_WAVE_OUT_RESET:
  798. case IOCTL_WDMAUD_WAVE_OUT_BREAKLOOP:
  799. case IOCTL_WDMAUD_WAVE_OUT_GET_POS:
  800. case IOCTL_WDMAUD_WAVE_OUT_SET_VOLUME:
  801. case IOCTL_WDMAUD_WAVE_OUT_GET_VOLUME:
  802. case IOCTL_WDMAUD_WAVE_OUT_WRITE_PIN:
  803. case IOCTL_WDMAUD_WAVE_IN_STOP:
  804. case IOCTL_WDMAUD_WAVE_IN_RECORD:
  805. case IOCTL_WDMAUD_WAVE_IN_RESET:
  806. case IOCTL_WDMAUD_WAVE_IN_GET_POS:
  807. case IOCTL_WDMAUD_WAVE_IN_READ_PIN:
  808. case IOCTL_WDMAUD_MIDI_OUT_RESET:
  809. case IOCTL_WDMAUD_MIDI_OUT_SET_VOLUME:
  810. case IOCTL_WDMAUD_MIDI_OUT_GET_VOLUME:
  811. case IOCTL_WDMAUD_MIDI_OUT_WRITE_DATA:
  812. case IOCTL_WDMAUD_MIDI_OUT_WRITE_LONGDATA:
  813. case IOCTL_WDMAUD_MIDI_IN_STOP:
  814. case IOCTL_WDMAUD_MIDI_IN_RECORD:
  815. case IOCTL_WDMAUD_MIDI_IN_RESET:
  816. case IOCTL_WDMAUD_MIDI_IN_READ_PIN:
  817. case IOCTL_WDMAUD_MIXER_OPEN:
  818. case IOCTL_WDMAUD_MIXER_CLOSE:
  819. case IOCTL_WDMAUD_MIXER_GETLINEINFO:
  820. case IOCTL_WDMAUD_MIXER_GETLINECONTROLS:
  821. case IOCTL_WDMAUD_MIXER_GETCONTROLDETAILS:
  822. case IOCTL_WDMAUD_MIXER_SETCONTROLDETAILS:
  823. case IOCTL_WDMAUD_MIXER_GETHARDWAREEVENTDATA:
  824. Status = STATUS_SUCCESS;
  825. break;
  827. default:
  828. Status = STATUS_NOT_SUPPORTED;
  829. break;
  830. }
  832. RETURN( Status );
  833. }
  835. NTSTATUS
  836. ValidateDeviceType
  837. (
  838. IN ULONG IoCode,
  839. IN DWORD DeviceType
  840. )
  841. {
  842. NTSTATUS Status = STATUS_SUCCESS;
  844. PAGED_CODE();
  845. switch (IoCode)
  846. {
  847. // These IOCTLs can handle any DeviceType
  848. case IOCTL_WDMAUD_ADD_DEVNODE:
  849. case IOCTL_WDMAUD_REMOVE_DEVNODE:
  850. case IOCTL_WDMAUD_SET_PREFERRED_DEVICE:
  851. case IOCTL_WDMAUD_GET_CAPABILITIES:
  852. case IOCTL_WDMAUD_GET_NUM_DEVS:
  853. case IOCTL_WDMAUD_OPEN_PIN:
  854. case IOCTL_WDMAUD_CLOSE_PIN:
  855. if (DeviceType != WaveInDevice &&
  856. DeviceType != WaveOutDevice &&
  857. DeviceType != MidiInDevice &&
  858. DeviceType != MidiOutDevice &&
  859. DeviceType != MixerDevice &&
  860. DeviceType != AuxDevice)
  861. {
  862. Status = STATUS_INVALID_PARAMETER;
  863. }
  864. break;
  866. // These IOCTLs can handle only AUX devices
  867. case IOCTL_WDMAUD_GET_VOLUME:
  868. case IOCTL_WDMAUD_SET_VOLUME:
  869. if (DeviceType != AuxDevice)
  870. {
  871. Status = STATUS_INVALID_PARAMETER;
  872. }
  873. break;
  875. // These IOCTLs can handle only WaveOut devices
  876. case IOCTL_WDMAUD_WAVE_OUT_PAUSE:
  877. case IOCTL_WDMAUD_WAVE_OUT_PLAY:
  878. case IOCTL_WDMAUD_WAVE_OUT_RESET:
  879. case IOCTL_WDMAUD_WAVE_OUT_BREAKLOOP:
  880. case IOCTL_WDMAUD_WAVE_OUT_GET_POS:
  881. case IOCTL_WDMAUD_WAVE_OUT_SET_VOLUME:
  882. case IOCTL_WDMAUD_WAVE_OUT_GET_VOLUME:
  883. case IOCTL_WDMAUD_WAVE_OUT_WRITE_PIN:
  884. if (DeviceType != WaveOutDevice)
  885. {
  886. Status = STATUS_INVALID_PARAMETER;
  887. }
  888. break;
  890. // These IOCTLs can handle only WaveIn devices
  891. case IOCTL_WDMAUD_WAVE_IN_STOP:
  892. case IOCTL_WDMAUD_WAVE_IN_RECORD:
  893. case IOCTL_WDMAUD_WAVE_IN_RESET:
  894. case IOCTL_WDMAUD_WAVE_IN_GET_POS:
  895. case IOCTL_WDMAUD_WAVE_IN_READ_PIN:
  896. if (DeviceType != WaveInDevice)
  897. {
  898. Status = STATUS_INVALID_PARAMETER;
  899. }
  900. break;
  902. // These IOCTLs can handle only MidiOut devices
  903. case IOCTL_WDMAUD_MIDI_OUT_RESET:
  904. case IOCTL_WDMAUD_MIDI_OUT_SET_VOLUME:
  905. case IOCTL_WDMAUD_MIDI_OUT_GET_VOLUME:
  906. case IOCTL_WDMAUD_MIDI_OUT_WRITE_DATA:
  907. case IOCTL_WDMAUD_MIDI_OUT_WRITE_LONGDATA:
  908. if (DeviceType != MidiOutDevice)
  909. {
  910. Status = STATUS_INVALID_PARAMETER;
  911. }
  912. break;
  914. // These IOCTLs can handle only MidiIn devices
  915. case IOCTL_WDMAUD_MIDI_IN_STOP:
  916. case IOCTL_WDMAUD_MIDI_IN_RECORD:
  917. case IOCTL_WDMAUD_MIDI_IN_RESET:
  918. case IOCTL_WDMAUD_MIDI_IN_READ_PIN:
  919. if (DeviceType != MidiInDevice)
  920. {
  921. Status = STATUS_INVALID_PARAMETER;
  922. }
  923. break;
  925. // These IOCTLs can handle only Mixer devices
  926. case IOCTL_WDMAUD_MIXER_OPEN:
  927. case IOCTL_WDMAUD_MIXER_CLOSE:
  928. case IOCTL_WDMAUD_MIXER_GETLINEINFO:
  929. case IOCTL_WDMAUD_MIXER_GETLINECONTROLS:
  930. case IOCTL_WDMAUD_MIXER_GETCONTROLDETAILS:
  931. case IOCTL_WDMAUD_MIXER_SETCONTROLDETAILS:
  932. case IOCTL_WDMAUD_MIXER_GETHARDWAREEVENTDATA:
  933. if (DeviceType != MixerDevice)
  934. {
  935. Status = STATUS_INVALID_PARAMETER;
  936. }
  937. break;
  939. // No device type for these IOCTLs
  940. case IOCTL_WDMAUD_INIT:
  941. case IOCTL_WDMAUD_EXIT:
  942. // Status is already STATUS_SUCCESS
  943. break;
  945. default:
  946. Status = STATUS_NOT_SUPPORTED;
  947. break;
  948. }
  950. RETURN( Status );
  951. }
  954. #ifdef _WIN64
  956. // Note that on 64 bit Windows, handles have 32 bits of information in them,
  957. // but no more. Thus they can be safely zero extended and truncated for thunks.
  958. // All memory allocations made in 32 bit processes are guaranteed to be in the
  959. // first 4 Gigs, again so that pointers from those processes can be thunked simply
  960. // by zero extending them and truncating them.
  962. VOID ThunkDeviceInfo3264(
  963. LPDEVICEINFO32 DeviceInfo32,
  964. LPDEVICEINFO DeviceInfo
  965. )
  967. {
  969. ULONG i;
  971. PAGED_CODE();
  972. DeviceInfo->Next = (LPDEVICEINFO)(UINT_PTR)DeviceInfo32->Next;
  973. DeviceInfo->DeviceNumber = DeviceInfo32->DeviceNumber ;
  974. DeviceInfo->DeviceType = DeviceInfo32->DeviceType ;
  975. DeviceInfo->DeviceHandle = (HANDLE32)(UINT_PTR)DeviceInfo32->DeviceHandle ;
  976. DeviceInfo->dwInstance = (DWORD_PTR)DeviceInfo32->dwInstance ;
  977. DeviceInfo->dwCallback = (DWORD_PTR)DeviceInfo32->dwCallback ;
  978. DeviceInfo->dwCallback16 = DeviceInfo32->dwCallback16 ;
  979. DeviceInfo->dwFlags = DeviceInfo32->dwFlags ;
  980. DeviceInfo->DataBuffer = (LPVOID)(UINT_PTR)DeviceInfo32->DataBuffer ;
  981. DeviceInfo->DataBufferSize = DeviceInfo32->DataBufferSize ;
  982. DeviceInfo->OpenDone = DeviceInfo32->OpenDone ;
  983. DeviceInfo->OpenStatus = DeviceInfo32->OpenStatus ;
  984. DeviceInfo->HardwareCallbackEventHandle = (HANDLE)(UINT_PTR)DeviceInfo32->HardwareCallbackEventHandle ;
  985. DeviceInfo->dwCallbackType = DeviceInfo32->dwCallbackType ;
  987. for (i=0; i<MAXCALLBACKS; i++)
  988. DeviceInfo->dwID[i] = DeviceInfo32->dwID[i] ;
  990. DeviceInfo->dwLineID = DeviceInfo32->dwLineID ;
  991. DeviceInfo->ControlCallbackCount = DeviceInfo32->ControlCallbackCount ;
  992. DeviceInfo->dwFormat = DeviceInfo32->dwFormat ;
  993. DeviceInfo->mmr = DeviceInfo32->mmr ;
  994. DeviceInfo->DeviceState = (LPDEVICESTATE)(UINT_PTR)DeviceInfo32->DeviceState ;
  995. DeviceInfo->dwSig = DeviceInfo32->dwSig ;
  996. wcsncpy(DeviceInfo->wstrDeviceInterface, DeviceInfo32->wstrDeviceInterface, MAXDEVINTERFACE+1) ;
  998. }
  1000. VOID ThunkDeviceInfo6432(
  1001. LPDEVICEINFO DeviceInfo,
  1002. LPDEVICEINFO32 DeviceInfo32
  1003. )
  1005. {
  1007. ULONG i;
  1009. PAGED_CODE();
  1010. DeviceInfo32->Next = (UINT32)(UINT_PTR)DeviceInfo->Next;
  1011. DeviceInfo32->DeviceNumber = DeviceInfo->DeviceNumber ;
  1012. DeviceInfo32->DeviceType = DeviceInfo->DeviceType ;
  1013. DeviceInfo32->DeviceHandle = (UINT32)(UINT_PTR)DeviceInfo->DeviceHandle ;
  1014. DeviceInfo32->dwInstance = (UINT32)DeviceInfo->dwInstance ;
  1015. DeviceInfo32->dwCallback = (UINT32)DeviceInfo->dwCallback ;
  1016. DeviceInfo32->dwCallback16 = DeviceInfo->dwCallback16 ;
  1017. DeviceInfo32->dwFlags = DeviceInfo->dwFlags ;
  1018. DeviceInfo32->DataBuffer = (UINT32)(UINT_PTR)DeviceInfo->DataBuffer ;
  1019. DeviceInfo32->DataBufferSize = DeviceInfo->DataBufferSize ;
  1020. DeviceInfo32->OpenDone = DeviceInfo->OpenDone ;
  1021. DeviceInfo32->OpenStatus = DeviceInfo->OpenStatus ;
  1022. DeviceInfo32->HardwareCallbackEventHandle = (UINT32)(UINT_PTR)DeviceInfo->HardwareCallbackEventHandle ;
  1023. DeviceInfo32->dwCallbackType = DeviceInfo->dwCallbackType ;
  1025. for (i=0; i<MAXCALLBACKS; i++)
  1026. DeviceInfo32->dwID[i] = DeviceInfo->dwID[i] ;
  1028. DeviceInfo32->dwLineID = DeviceInfo->dwLineID ;
  1029. DeviceInfo32->ControlCallbackCount = DeviceInfo->ControlCallbackCount ;
  1030. DeviceInfo32->dwFormat = DeviceInfo->dwFormat ;
  1031. DeviceInfo32->mmr = DeviceInfo->mmr ;
  1032. DeviceInfo32->DeviceState = (UINT32)(UINT_PTR)DeviceInfo->DeviceState ;
  1033. DeviceInfo32->dwSig = DeviceInfo->dwSig ;
  1034. wcscpy(DeviceInfo32->wstrDeviceInterface, DeviceInfo->wstrDeviceInterface) ;
  1036. }
  1038. #endif
  1041. NTSTATUS
  1042. ValidateIrp
  1043. (
  1044. IN PIRP pIrp
  1045. )
  1046. {
  1047. PIO_STACK_LOCATION pIrpStack;
  1048. ULONG InputBufferLength;
  1049. ULONG OutputBufferLength;
  1050. LPDEVICEINFO DeviceInfo;
  1051. #ifdef _WIN64
  1052. LPDEVICEINFO32 DeviceInfo32;
  1053. LOCALDEVICEINFO LocalDeviceInfo;
  1054. #endif
  1055. LPVOID DataBuffer;
  1056. DWORD DataBufferSize;
  1057. ULONG IoCode;
  1058. NTSTATUS Status = STATUS_SUCCESS;
  1060. PAGED_CODE();
  1061. //
  1062. // Get the CurrentStackLocation and log it so we know what is going on
  1063. //
  1064. pIrpStack = IoGetCurrentIrpStackLocation(pIrp);
  1065. IoCode = pIrpStack->Parameters.DeviceIoControl.IoControlCode;
  1067. //
  1068. // Checks to see that we have a WDMAUD Ioctl (buffered) request
  1069. //
  1070. Status = ValidateIoCode(IoCode);
  1072. if (NT_SUCCESS(Status))
  1073. {
  1074. //
  1075. // Check the sizes of the input and output buffers.
  1076. //
  1077. InputBufferLength = pIrpStack->Parameters.DeviceIoControl.InputBufferLength;
  1078. OutputBufferLength = pIrpStack->Parameters.DeviceIoControl.OutputBufferLength;
  1080. #ifdef _WIN64
  1081. if (IoIs32bitProcess(pIrp)) {
  1083. if ((InputBufferLength < sizeof(DEVICEINFO32)) ||
  1084. (OutputBufferLength != sizeof(DEVICEINFO32)) )
  1085. {
  1086. Status = STATUS_INVALID_BUFFER_SIZE;
  1087. if (IoCode == IOCTL_WDMAUD_WAVE_OUT_GET_POS)
  1088. {
  1089. DPF(DL_ERROR|FA_IOCTL, ("IOCTL_WDMAUD_WAVE_OUT_GET_POS: InputBufferLength = %d, OuputBufferLength = %d", InputBufferLength, OutputBufferLength));
  1090. }
  1091. }
  1093. }
  1094. else
  1095. // WARNING!!! If you add additional statements after the if that need
  1096. // to be part of this else clause, you will need to add brackets!
  1097. #endif
  1099. if ((InputBufferLength < sizeof(DEVICEINFO)) ||
  1100. (OutputBufferLength != sizeof(DEVICEINFO)) )
  1101. {
  1102. Status = STATUS_INVALID_BUFFER_SIZE;
  1103. if (IoCode == IOCTL_WDMAUD_WAVE_OUT_GET_POS)
  1104. {
  1105. DPF(DL_WARNING|FA_IOCTL, ("IOCTL_WDMAUD_WAVE_OUT_GET_POS: InputBufferLength = %d, OuputBufferLength = %d", InputBufferLength, OutputBufferLength));
  1106. }
  1107. }
  1109. if (NT_SUCCESS(Status))
  1110. {
  1112. #ifdef _WIN64
  1113. if (IoIs32bitProcess(pIrp)) {
  1114. DeviceInfo32=((LPDEVICEINFO32)pIrp->AssociatedIrp.SystemBuffer);
  1115. RtlZeroMemory(&LocalDeviceInfo, sizeof(LOCALDEVICEINFO));
  1116. DeviceInfo=&LocalDeviceInfo.DeviceInfo;
  1117. ThunkDeviceInfo3264(DeviceInfo32, DeviceInfo);
  1118. }
  1119. else
  1120. // WARNING!!! If you add additional statements after the assignment that need
  1121. // to be part of this else clause, you will need to add brackets!
  1122. #endif
  1124. DeviceInfo = ((LPDEVICEINFO)pIrp->AssociatedIrp.SystemBuffer);
  1125. DataBuffer = DeviceInfo->DataBuffer;
  1126. DataBufferSize = DeviceInfo->DataBufferSize;
  1128. //
  1129. // Check to make sure that our DeviceInfo->wstrDeviceInterface is terminated
  1130. //
  1131. if (InputBufferLength % sizeof(WCHAR)) // must be WCHAR aligned
  1132. {
  1133. Status = STATUS_INVALID_PARAMETER;
  1134. }
  1135. else
  1136. {
  1137. //
  1138. // Get the last widechar and compare with UNICODE_NULL
  1139. //
  1140. UINT TermCharPos;
  1142. #ifdef _WIN64
  1143. if (IoIs32bitProcess(pIrp)) {
  1144. TermCharPos = (InputBufferLength - sizeof(DEVICEINFO32)) / sizeof(WCHAR);
  1145. // Now make sure we had enough local buffer space to hold the whole string.
  1146. if (TermCharPos>MAXDEVINTERFACE) {
  1147. Status = STATUS_INVALID_PARAMETER;
  1148. // Make sure we don't go past end of local buffer space when
  1149. // we check if the last character is null.
  1150. TermCharPos=MAXDEVINTERFACE;
  1151. }
  1152. }
  1153. else
  1154. // WARNING!!! If you add additional statements after the assignment that need
  1155. // to be part of this else clause, you will need to add brackets!
  1156. #endif
  1158. TermCharPos = (InputBufferLength - sizeof(DEVICEINFO)) / sizeof(WCHAR);
  1159. if (DeviceInfo->wstrDeviceInterface[TermCharPos] != UNICODE_NULL)
  1160. {
  1161. Status = STATUS_INVALID_PARAMETER;
  1162. }
  1163. }
  1164. }
  1165. }
  1167. if (NT_SUCCESS(Status))
  1168. {
  1169. Status = ValidateDeviceType(IoCode,DeviceInfo->DeviceType);
  1170. }
  1172. if (NT_SUCCESS(Status))
  1173. {
  1174. //
  1175. // Validate the pointers if the client is not trusted.
  1176. //
  1177. if (pIrp->RequestorMode != KernelMode)
  1178. {
  1179. if (DataBufferSize)
  1180. {
  1181. try
  1182. {
  1183. ASSERT(pIrpStack->MajorFunction == IRP_MJ_DEVICE_CONTROL);
  1184. switch (IoCode)
  1185. {
  1186. //
  1187. // IoCode's that require a probe for reading
  1188. //
  1189. case IOCTL_WDMAUD_OPEN_PIN:
  1190. case IOCTL_WDMAUD_WAVE_OUT_WRITE_PIN:
  1191. case IOCTL_WDMAUD_MIDI_OUT_WRITE_LONGDATA:
  1192. case IOCTL_WDMAUD_MIXER_OPEN:
  1193. case IOCTL_WDMAUD_MIXER_SETCONTROLDETAILS:
  1194. ProbeForRead(DataBuffer,
  1195. DataBufferSize,
  1196. sizeof(BYTE));
  1197. break;
  1199. //
  1200. // IoCode's that require a probe for writing
  1201. //
  1202. case IOCTL_WDMAUD_GET_CAPABILITIES:
  1203. case IOCTL_WDMAUD_WAVE_IN_READ_PIN:
  1204. case IOCTL_WDMAUD_MIXER_GETLINEINFO:
  1205. case IOCTL_WDMAUD_MIXER_GETLINECONTROLS:
  1206. case IOCTL_WDMAUD_MIXER_GETCONTROLDETAILS:
  1208. ProbeForWrite(DataBuffer,
  1209. DataBufferSize,
  1210. sizeof(BYTE));
  1211. break;
  1214. //
  1215. // IoCode's that require a probe for reading on DWORD alignment
  1216. //
  1217. case IOCTL_WDMAUD_SET_VOLUME:
  1218. case IOCTL_WDMAUD_WAVE_OUT_SET_VOLUME:
  1219. case IOCTL_WDMAUD_MIDI_OUT_SET_VOLUME:
  1220. ProbeForRead(DataBuffer,
  1221. DataBufferSize,
  1222. sizeof(DWORD));
  1223. break;
  1225. //
  1226. // IoCode's that require a probe for writing on DWORD alignment
  1227. //
  1228. case IOCTL_WDMAUD_GET_VOLUME:
  1229. case IOCTL_WDMAUD_WAVE_OUT_GET_VOLUME:
  1230. case IOCTL_WDMAUD_MIDI_OUT_GET_VOLUME:
  1231. case IOCTL_WDMAUD_WAVE_OUT_GET_POS:
  1232. case IOCTL_WDMAUD_WAVE_IN_GET_POS:
  1233. case IOCTL_WDMAUD_MIDI_IN_READ_PIN:
  1234. ProbeForWrite(DataBuffer,
  1235. DataBufferSize,
  1236. sizeof(DWORD));
  1237. break;
  1239. // Don't know about this ioctl
  1240. default:
  1241. Status = STATUS_NOT_SUPPORTED;
  1242. break;
  1243. }
  1244. }
  1245. except (EXCEPTION_EXECUTE_HANDLER)
  1246. {
  1247. Status = GetExceptionCode();
  1248. }
  1249. }
  1250. }
  1251. }
  1253. RETURN( Status );
  1254. }
  1257. //
  1258. // Helper routines.
  1259. //
  1261. NTSTATUS
  1262. ValidateAndTranslate(
  1263. PWDMACONTEXT pContext,
  1264. LPDEVICEINFO DeviceInfo,
  1265. DWORD ValidationSize,
  1266. ULONG *pTranslatedDeviceNumber
  1267. )
  1268. {
  1269. if (DeviceInfo->DataBufferSize != ValidationSize)
  1270. {
  1271. return STATUS_INVALID_BUFFER_SIZE;
  1272. }
  1274. *pTranslatedDeviceNumber = wdmaudTranslateDeviceNumber(pContext,
  1275. DeviceInfo->DeviceType,
  1276. DeviceInfo->wstrDeviceInterface,
  1277. DeviceInfo->DeviceNumber);
  1279. if (MAXULONG == *pTranslatedDeviceNumber) {
  1281. DPF(DL_WARNING|FA_IOCTL,("IOCTL_WDMAUD_SET_VOLUME: invalid device number, C %08x [%ls] DT %02x DN %02x",
  1282. pContext,
  1283. DeviceInfo->wstrDeviceInterface,
  1284. DeviceInfo->DeviceType,
  1285. DeviceInfo->DeviceNumber) );
  1286. return STATUS_INVALID_PARAMETER;
  1287. }
  1288. return STATUS_SUCCESS;
  1289. }
  1293. NTSTATUS
  1294. ValidateAndTranslateEx(
  1295. PIRP pIrp,
  1296. PWDMACONTEXT pContext,
  1297. LPDEVICEINFO DeviceInfo,
  1298. #ifdef _WIN64
  1299. DWORD ValidationSize32,
  1300. #endif
  1301. DWORD ValidationSize,
  1302. ULONG *pTranslatedDeviceNumber
  1303. )
  1304. {
  1305. #ifdef _WIN64
  1306. if (IoIs32bitProcess(pIrp)) {
  1308. if (DeviceInfo->DataBufferSize != ValidationSize32)
  1309. {
  1310. RETURN( STATUS_INVALID_BUFFER_SIZE );
  1311. }
  1313. } else {
  1314. #endif
  1315. if (DeviceInfo->DataBufferSize != ValidationSize)
  1316. {
  1317. RETURN( STATUS_INVALID_BUFFER_SIZE );
  1318. }
  1319. #ifdef _WIN64
  1320. }
  1321. #endif
  1323. *pTranslatedDeviceNumber = wdmaudTranslateDeviceNumber(pContext,
  1324. DeviceInfo->DeviceType,
  1325. DeviceInfo->wstrDeviceInterface,
  1326. DeviceInfo->DeviceNumber);
  1327. if (MAXULONG == *pTranslatedDeviceNumber) {
  1329. DPF(DL_WARNING|FA_IOCTL,("IOCTL_WDMAUD_MIDI_OUT_WRITE_LONGDATA: invalid device number, C %08x [%ls] DT %02x DN %02x",
  1330. pContext,
  1331. DeviceInfo->wstrDeviceInterface,
  1332. DeviceInfo->DeviceType,
  1333. DeviceInfo->DeviceNumber) );
  1334. RETURN( STATUS_INVALID_PARAMETER );
  1335. }
  1336. return STATUS_SUCCESS;
  1337. }
  1340. //
  1341. // Now come the dispatch routines.
  1342. //
  1344. NTSTATUS
  1345. Dispatch_WaveOutWritePin(
  1346. PIRP pIrp,
  1347. PWDMACONTEXT pContext,
  1348. LPDEVICEINFO DeviceInfo,
  1349. OUT BOOL *pCompletedIrp // TRUE if Irp was completed.
  1350. )
  1351. {
  1352. ULONG TranslatedDeviceNumber;
  1353. PSTREAM_HEADER_EX pStreamHeader;
  1354. LPWAVEHDR pWaveHdr = NULL;
  1355. #ifdef _WIN64
  1356. LPWAVEHDR32 pWaveHdr32;
  1357. #endif
  1358. PWRITE_CONTEXT pWriteContext = NULL;
  1361. NTSTATUS Status = STATUS_SUCCESS; // Assume success
  1363. //
  1364. // Verify that we received a valid waveheader
  1365. //
  1366. Status = ValidateAndTranslateEx(pIrp, pContext, DeviceInfo,
  1367. #ifdef _WIN64
  1368. sizeof(WAVEHDR32),
  1369. #endif
  1370. sizeof(WAVEHDR), &TranslatedDeviceNumber);
  1372. if( NT_SUCCESS(Status) )
  1373. {
  1374. Status = AudioAllocateMemory_Fixed(sizeof(WRITE_CONTEXT) + sizeof(STREAM_HEADER_EX),
  1375. TAG_Audx_CONTEXT,
  1376. ZERO_FILL_MEMORY,
  1377. &pWriteContext);
  1378. if(NT_SUCCESS(Status))
  1379. {
  1380. Status = CaptureBufferToLocalPool(DeviceInfo->DataBuffer,
  1381. DeviceInfo->DataBufferSize,
  1382. &pWaveHdr
  1383. #ifdef _WIN64
  1384. ,0
  1385. #endif
  1386. );
  1387. if (!NT_SUCCESS(Status))
  1388. {
  1389. AudioFreeMemory( sizeof(WRITE_CONTEXT) + sizeof(STREAM_HEADER_EX),
  1390. &pWriteContext );
  1391. return STATUS_INSUFFICIENT_RESOURCES;
  1393. } else {
  1395. #ifdef _WIN64
  1396. if (IoIs32bitProcess(pIrp)) {
  1397. // Thunk pWaveHdr to 64 bits.
  1398. pWaveHdr32=(LPWAVEHDR32)pWaveHdr;
  1399. pWriteContext->whInstance.wh.lpData=(LPSTR)(UINT_PTR)pWaveHdr32->lpData;
  1400. pWriteContext->whInstance.wh.dwBufferLength=pWaveHdr32->dwBufferLength;
  1401. pWriteContext->whInstance.wh.dwBytesRecorded=pWaveHdr32->dwBytesRecorded;
  1402. pWriteContext->whInstance.wh.dwUser=(DWORD_PTR)pWaveHdr32->dwUser;
  1403. pWriteContext->whInstance.wh.dwFlags=pWaveHdr32->dwFlags;
  1404. pWriteContext->whInstance.wh.dwLoops=pWaveHdr32->dwLoops;
  1405. pWriteContext->whInstance.wh.lpNext=(LPWAVEHDR)(UINT_PTR)pWaveHdr32->lpNext;
  1406. pWriteContext->whInstance.wh.reserved=(DWORD_PTR)pWaveHdr32->reserved;
  1407. } else {
  1408. #endif
  1409. //
  1410. // Copy the wavehdr to our local structure
  1411. //
  1412. RtlCopyMemory( &pWriteContext->whInstance.wh,
  1413. pWaveHdr,
  1414. sizeof(WAVEHDR));
  1415. #ifdef _WIN64
  1416. }
  1417. #endif
  1419. try
  1420. {
  1421. ProbeForRead(pWriteContext->whInstance.wh.lpData,
  1422. pWriteContext->whInstance.wh.dwBufferLength,
  1423. sizeof(BYTE));
  1424. }
  1425. except (EXCEPTION_EXECUTE_HANDLER)
  1426. {
  1427. AudioFreeMemory_Unknown( &pWaveHdr );
  1428. AudioFreeMemory( sizeof(WRITE_CONTEXT) + sizeof(STREAM_HEADER_EX),
  1429. &pWriteContext );
  1430. Status = GetExceptionCode();
  1431. }
  1433. if (!NT_SUCCESS(Status))
  1434. {
  1435. return Status;
  1436. }
  1438. wdmaudMapBuffer ( pIrp,
  1439. (PVOID)pWriteContext->whInstance.wh.lpData,
  1440. pWriteContext->whInstance.wh.dwBufferLength,
  1441. &pWriteContext->whInstance.wh.lpData,
  1442. &pWriteContext->pBufferMdl,
  1443. pContext,
  1444. FALSE);
  1446. //
  1447. // If we get a zero-length buffer, it is alright to not have
  1448. // a kernel mapped buffer. Otherwise, fail if no Mdl or buffer.
  1449. //
  1450. if ( (pWriteContext->whInstance.wh.dwBufferLength != 0) &&
  1451. ((NULL == pWriteContext->pBufferMdl) ||
  1452. (NULL == pWriteContext->whInstance.wh.lpData)) )
  1453. {
  1454. wdmaudUnmapBuffer( pWriteContext->pBufferMdl );
  1455. AudioFreeMemory_Unknown( &pWaveHdr );
  1456. AudioFreeMemory_Unknown( &pWriteContext );
  1457. return STATUS_INSUFFICIENT_RESOURCES;
  1459. } else {
  1461. pWriteContext->whInstance.wh.reserved = (DWORD_PTR)pIrp; // store to complete later
  1462. pWriteContext->pCapturedWaveHdr = pWaveHdr;
  1464. pStreamHeader = (PSTREAM_HEADER_EX)(pWriteContext + 1);
  1465. pStreamHeader->Header.Data = pWriteContext->whInstance.wh.lpData;
  1467. //
  1468. // Must cleanup any mapped buffers and allocated memory
  1469. // on error paths in WriteWaveOutPin
  1470. //
  1471. Status = WriteWaveOutPin(&pContext->WaveOutDevs[TranslatedDeviceNumber],
  1472. DeviceInfo->DeviceHandle,
  1473. (LPWAVEHDR)pWriteContext,
  1474. pStreamHeader,
  1475. pIrp,
  1476. pContext,
  1477. pCompletedIrp );
  1478. //
  1479. // Upon return from this routine, pCompetedIrp will be set.
  1480. // if TRUE, the issue of the Irp was successful and it was
  1481. // marked pending when it was added to the delay queue. Thus
  1482. // we must not complete it a second time.
  1483. // If FALSE, there was some error and the Irp should be
  1484. // completed.
  1485. //
  1486. }
  1487. }
  1488. }
  1489. }
  1490. return Status;
  1491. }
  1494. NTSTATUS
  1495. Dispatch_WaveInReadPin(
  1496. PIRP pIrp,
  1497. PWDMACONTEXT pContext,
  1498. LPDEVICEINFO DeviceInfo,
  1499. OUT BOOL *pCompletedIrp // TRUE if Irp was completed.
  1500. )
  1501. {
  1502. ULONG TranslatedDeviceNumber;
  1503. PSTREAM_HEADER_EX pStreamHeader = NULL;
  1504. LPWAVEHDR pWaveHdr;
  1505. #ifdef _WIN64
  1506. LPWAVEHDR32 pWaveHdr32;
  1507. #endif
  1509. NTSTATUS Status = STATUS_SUCCESS; // Assume success
  1511. //
  1512. // Assume that things will be successful. Write back that it's not completed.
  1513. //
  1514. *pCompletedIrp = FALSE;
  1516. //
  1517. // Verify that we received a valid waveheader
  1518. //
  1519. Status = ValidateAndTranslateEx(pIrp, pContext, DeviceInfo,
  1520. #ifdef _WIN64
  1521. sizeof(WAVEHDR32),
  1522. #endif
  1523. sizeof(WAVEHDR), &TranslatedDeviceNumber);
  1526. Status = AudioAllocateMemory_Fixed(sizeof(STREAM_HEADER_EX),
  1527. TAG_Audh_STREAMHEADER,
  1528. ZERO_FILL_MEMORY,
  1529. &pStreamHeader);
  1530. if(NT_SUCCESS(Status))
  1531. {
  1532. wdmaudMapBuffer(pIrp,
  1533. DeviceInfo->DataBuffer,
  1534. DeviceInfo->DataBufferSize,
  1535. &pWaveHdr,
  1536. &pStreamHeader->pHeaderMdl,
  1537. pContext,
  1538. TRUE);
  1539. if (NULL == pStreamHeader->pHeaderMdl)
  1540. {
  1541. AudioFreeMemory( sizeof(STREAM_HEADER_EX),&pStreamHeader );
  1542. return STATUS_INSUFFICIENT_RESOURCES;
  1544. } else {
  1546. LPVOID lpData;
  1547. DWORD dwBufferLength;
  1549. Status = CaptureBufferToLocalPool(
  1550. DeviceInfo->DataBuffer,
  1551. DeviceInfo->DataBufferSize,
  1552. &pStreamHeader->pWaveHdrAligned
  1553. #ifdef _WIN64
  1554. ,(IoIs32bitProcess(pIrp))?sizeof(WAVEHDR):0
  1555. #endif
  1556. );
  1557. if (!NT_SUCCESS(Status))
  1558. {
  1559. wdmaudUnmapBuffer( pStreamHeader->pHeaderMdl );
  1560. AudioFreeMemory( sizeof(STREAM_HEADER_EX),&pStreamHeader );
  1561. return STATUS_INSUFFICIENT_RESOURCES;
  1562. }
  1564. #ifdef _WIN64
  1565. // Thunk the wave header if required.
  1566. // Note this is an IN PLACE thunk, so we MUST do it in
  1567. // last element to first element order!!!
  1568. if (IoIs32bitProcess(pIrp)) {
  1569. // Thunk pWaveHdrAligned to 64 bits.
  1570. pWaveHdr32=(LPWAVEHDR32)pStreamHeader->pWaveHdrAligned;
  1571. pStreamHeader->pWaveHdrAligned->reserved=(DWORD_PTR)pWaveHdr32->reserved;
  1572. pStreamHeader->pWaveHdrAligned->lpNext=(LPWAVEHDR)(UINT_PTR)pWaveHdr32->lpNext;
  1573. pStreamHeader->pWaveHdrAligned->dwLoops=pWaveHdr32->dwLoops;
  1574. pStreamHeader->pWaveHdrAligned->dwFlags=pWaveHdr32->dwFlags;
  1575. pStreamHeader->pWaveHdrAligned->dwUser=(DWORD_PTR)pWaveHdr32->dwUser;
  1576. pStreamHeader->pWaveHdrAligned->dwBytesRecorded=pWaveHdr32->dwBytesRecorded;
  1577. pStreamHeader->pWaveHdrAligned->dwBufferLength=pWaveHdr32->dwBufferLength;
  1578. pStreamHeader->pWaveHdrAligned->lpData=(LPSTR)(UINT_PTR)pWaveHdr32->lpData;
  1579. }
  1580. #endif
  1582. //
  1583. // Capture these parameters before probing
  1584. //
  1585. lpData = pStreamHeader->pWaveHdrAligned->lpData;
  1586. dwBufferLength = pStreamHeader->pWaveHdrAligned->dwBufferLength;
  1588. try
  1589. {
  1590. ProbeForWrite(lpData,
  1591. dwBufferLength,
  1592. sizeof(BYTE));
  1593. }
  1594. except (EXCEPTION_EXECUTE_HANDLER)
  1595. {
  1596. AudioFreeMemory_Unknown( &pStreamHeader->pWaveHdrAligned );
  1597. wdmaudUnmapBuffer(pStreamHeader->pHeaderMdl);
  1598. AudioFreeMemory( sizeof(STREAM_HEADER_EX),&pStreamHeader );
  1599. Status = GetExceptionCode();
  1600. }
  1602. if (!NT_SUCCESS(Status))
  1603. {
  1604. return Status;
  1605. }
  1607. wdmaudMapBuffer( pIrp,
  1608. lpData,
  1609. dwBufferLength,
  1610. &pStreamHeader->Header.Data,
  1611. &pStreamHeader->pBufferMdl,
  1612. pContext,
  1613. TRUE); // will be freed on completion
  1615. //
  1616. // If we get a zero-length buffer, it is alright to not have
  1617. // a kernel mapped buffer. Otherwise, fail if no Mdl or buffer.
  1618. //
  1619. if ( (dwBufferLength != 0) &&
  1620. ((NULL == pStreamHeader->pBufferMdl) ||
  1621. (NULL == pStreamHeader->Header.Data)) )
  1622. {
  1623. wdmaudUnmapBuffer(pStreamHeader->pBufferMdl);
  1624. AudioFreeMemory_Unknown( &pStreamHeader->pWaveHdrAligned );
  1625. wdmaudUnmapBuffer(pStreamHeader->pHeaderMdl);
  1626. AudioFreeMemory_Unknown( &pStreamHeader );
  1627. return STATUS_INSUFFICIENT_RESOURCES;
  1629. } else {
  1631. pStreamHeader->pIrp = pIrp; // store so we can complete later
  1632. pStreamHeader->Header.FrameExtent = dwBufferLength ;
  1633. pStreamHeader->pdwBytesRecorded = &pWaveHdr->dwBytesRecorded; // store so we can use later
  1634. #ifdef _WIN64
  1635. // Fixup dwBytesRecorded pointer for 32 bit irps.
  1636. if (IoIs32bitProcess(pIrp)) {
  1637. pStreamHeader->pdwBytesRecorded = &((LPWAVEHDR32)pWaveHdr)->dwBytesRecorded;
  1638. }
  1639. #endif
  1641. //
  1642. // Must cleanup any mapped buffers and allocated memory
  1643. // on error paths in ReadWaveInPin
  1644. //
  1645. Status = ReadWaveInPin( &pContext->WaveInDevs[TranslatedDeviceNumber],
  1646. DeviceInfo->DeviceHandle,
  1647. pStreamHeader,
  1648. pIrp,
  1649. pContext,
  1650. pCompletedIrp );
  1651. //
  1652. // If ReadWaveInPin returns something other then STATUS_PENDING
  1653. // we could have problems.
  1654. //
  1655. ASSERT(Status == STATUS_PENDING);
  1656. }
  1657. }
  1658. }
  1659. return Status;
  1660. }
  1664. NTSTATUS
  1665. Dispatch_MidiInReadPin(
  1666. PIRP pIrp,
  1667. PWDMACONTEXT pContext,
  1668. LPDEVICEINFO DeviceInfo,
  1669. OUT BOOL *pCompletedIrp // TRUE if Irp was completed.
  1670. )
  1671. {
  1672. ULONG TranslatedDeviceNumber;
  1673. PMIDIINHDR pNewMidiInHdr = NULL;
  1674. LPMIDIDATA pMidiData;
  1676. NTSTATUS Status = STATUS_SUCCESS; // Assume success
  1678. //
  1679. // Assume that things will be successful. Write back that it's not completed.
  1680. //
  1681. ASSERT(FALSE == *pCompletedIrp );
  1683. //
  1684. // Verify that we received a valid mididata structure
  1685. //
  1686. Status = ValidateAndTranslate(pContext,
  1687. DeviceInfo,
  1688. sizeof(MIDIDATA),
  1689. &TranslatedDeviceNumber);
  1690. if( NT_SUCCESS(Status) )
  1691. {
  1692. Status = AudioAllocateMemory_Fixed(sizeof(*pNewMidiInHdr),
  1693. TAG_Aude_MIDIHEADER,
  1694. ZERO_FILL_MEMORY,
  1695. &pNewMidiInHdr);
  1696. if(NT_SUCCESS(Status))
  1697. {
  1698. wdmaudMapBuffer( pIrp,
  1699. DeviceInfo->DataBuffer,
  1700. DeviceInfo->DataBufferSize,
  1701. &pMidiData,
  1702. &pNewMidiInHdr->pMdl,
  1703. pContext,
  1704. TRUE);
  1705. if (NULL == pNewMidiInHdr->pMdl)
  1706. {
  1707. AudioFreeMemory( sizeof(*pNewMidiInHdr),&pNewMidiInHdr );
  1708. Status = STATUS_INSUFFICIENT_RESOURCES;
  1710. } else {
  1712. PWDMAPENDINGIRP_CONTEXT pPendingIrpContext;
  1714. //
  1715. // wdmaudPreparteIrp marks the irp as pending, thus
  1716. // we must not complete the irp when we get to this
  1717. // point in the code.
  1718. //
  1719. Status = wdmaudPrepareIrp ( pIrp, MidiInDevice, pContext, &pPendingIrpContext );
  1720. if (NT_SUCCESS(Status))
  1721. {
  1722. //
  1723. // Initialize this new MidiIn header
  1724. //
  1725. pNewMidiInHdr->pMidiData = pMidiData;
  1726. pNewMidiInHdr->pIrp = pIrp;
  1727. pNewMidiInHdr->pPendingIrpContext = pPendingIrpContext;
  1729. //
  1730. // Add this header to the tail of the queue
  1731. //
  1732. // Must cleanup any mapped buffers and allocated memory
  1733. // on error paths in AddBufferToMidiInQueue
  1734. //
  1735. Status = AddBufferToMidiInQueue( pContext->MidiInDevs[TranslatedDeviceNumber].pMidiPin,
  1736. pNewMidiInHdr );
  1738. if (STATUS_PENDING != Status)
  1739. {
  1740. // Must have been an error, complete Irp
  1741. wdmaudUnmapBuffer( pNewMidiInHdr->pMdl );
  1742. AudioFreeMemory_Unknown( &pNewMidiInHdr );
  1744. wdmaudUnprepareIrp( pIrp, Status, 0, pPendingIrpContext );
  1746. }
  1747. //
  1748. // because we marked the irp pending, we don't want to
  1749. // complete it when we return. So, tell the caller not
  1750. // to complete the Irp.
  1751. //
  1752. *pCompletedIrp = TRUE;
  1753. }
  1754. }
  1755. }
  1756. }
  1757. return Status;
  1758. }
  1761. NTSTATUS
  1762. Dispatch_State(
  1763. PIRP pIrp,
  1764. PWDMACONTEXT pContext,
  1765. LPDEVICEINFO DeviceInfo,
  1766. ULONG IoCode
  1767. )
  1768. {
  1769. ULONG TranslatedDeviceNumber;
  1770. NTSTATUS Status = STATUS_SUCCESS; // Assume success
  1772. Status = ValidateAndTranslate(pContext,
  1773. DeviceInfo,
  1774. 0,
  1775. &TranslatedDeviceNumber);
  1776. if( NT_SUCCESS(Status) )
  1777. {
  1778. switch(IoCode)
  1779. {
  1780. //
  1781. // Midi out state changes
  1782. //
  1783. case IOCTL_WDMAUD_MIDI_OUT_RESET:
  1784. Status = StateMidiOutPin ( pContext->MidiOutDevs[TranslatedDeviceNumber].pMidiPin,
  1785. KSSTATE_STOP );
  1786. break;
  1787. case IOCTL_WDMAUD_MIDI_OUT_WRITE_DATA:
  1788. Status = WriteMidiEventPin(&pContext->MidiOutDevs[TranslatedDeviceNumber],
  1789. PtrToUlong(DeviceInfo->DataBuffer));
  1790. break;
  1792. //
  1793. // Midi in state changes
  1794. //
  1795. case IOCTL_WDMAUD_MIDI_IN_STOP:
  1796. Status = StateMidiInPin ( pContext->MidiInDevs[TranslatedDeviceNumber].pMidiPin,
  1797. KSSTATE_PAUSE );
  1798. break;
  1799. case IOCTL_WDMAUD_MIDI_IN_RECORD:
  1800. Status = StateMidiInPin ( pContext->MidiInDevs[TranslatedDeviceNumber].pMidiPin,
  1801. KSSTATE_RUN );
  1802. break;
  1803. case IOCTL_WDMAUD_MIDI_IN_RESET:
  1804. Status = ResetMidiInPin ( pContext->MidiInDevs[TranslatedDeviceNumber].pMidiPin );
  1805. break;
  1808. //
  1809. // Wave out state changes
  1810. //
  1812. case IOCTL_WDMAUD_WAVE_OUT_PAUSE:
  1813. Status = StateWavePin ( &pContext->WaveOutDevs[TranslatedDeviceNumber],
  1814. DeviceInfo->DeviceHandle,
  1815. KSSTATE_PAUSE );
  1816. break;
  1817. case IOCTL_WDMAUD_WAVE_OUT_PLAY:
  1818. Status = StateWavePin ( &pContext->WaveOutDevs[TranslatedDeviceNumber],
  1819. DeviceInfo->DeviceHandle,
  1820. KSSTATE_RUN );
  1821. break;
  1822. case IOCTL_WDMAUD_WAVE_OUT_RESET:
  1823. Status = StateWavePin ( &pContext->WaveOutDevs[TranslatedDeviceNumber],
  1824. DeviceInfo->DeviceHandle,
  1825. KSSTATE_PAUSE );
  1826. if ( NT_SUCCESS(Status) )
  1827. {
  1828. Status = ResetWaveOutPin ( &pContext->WaveOutDevs[TranslatedDeviceNumber],
  1829. DeviceInfo->DeviceHandle ) ;
  1830. }
  1831. break;
  1832. case IOCTL_WDMAUD_WAVE_OUT_BREAKLOOP:
  1833. Status = BreakLoopWaveOutPin ( &pContext->WaveOutDevs[TranslatedDeviceNumber],
  1834. DeviceInfo->DeviceHandle );
  1835. break;
  1837. //
  1838. // Wave In State changes
  1839. //
  1841. case IOCTL_WDMAUD_WAVE_IN_STOP:
  1842. Status = StateWavePin ( &pContext->WaveInDevs[TranslatedDeviceNumber],
  1843. DeviceInfo->DeviceHandle,
  1844. KSSTATE_PAUSE );
  1845. break;
  1846. case IOCTL_WDMAUD_WAVE_IN_RECORD:
  1847. Status = StateWavePin ( &pContext->WaveInDevs[TranslatedDeviceNumber],
  1848. DeviceInfo->DeviceHandle,
  1849. KSSTATE_RUN );
  1850. break;
  1851. case IOCTL_WDMAUD_WAVE_IN_RESET:
  1852. Status = StateWavePin ( &pContext->WaveInDevs[TranslatedDeviceNumber],
  1853. DeviceInfo->DeviceHandle,
  1854. KSSTATE_STOP );
  1855. break;
  1856. default:
  1857. break;
  1858. }
  1859. }
  1860. return Status;
  1861. }
  1864. NTSTATUS
  1865. Dispatch_GetCapabilities(
  1866. PIRP pIrp,
  1867. PWDMACONTEXT pContext,
  1868. LPDEVICEINFO DeviceInfo
  1869. )
  1870. {
  1871. ULONG TranslatedDeviceNumber;
  1872. PVOID pMappedBuffer;
  1873. PMDL pMdl;
  1874. NTSTATUS Status = STATUS_SUCCESS; // Assume success
  1876. //
  1877. // Passing in DeviceInfo->DataBufferSize as the validation size because we don't care
  1878. // about the buffer check but we still want the translation code. It's just a short
  1879. // cut on the ValidateAndTranslate function.
  1880. //
  1881. Status = ValidateAndTranslate(pContext,
  1882. DeviceInfo,
  1883. DeviceInfo->DataBufferSize, // Don't care about buffer
  1884. &TranslatedDeviceNumber);
  1885. if( NT_SUCCESS(Status) )
  1886. {
  1887. //
  1888. // Map this buffer into a system address
  1889. //
  1890. wdmaudMapBuffer( pIrp,
  1891. DeviceInfo->DataBuffer,
  1892. DeviceInfo->DataBufferSize,
  1893. &pMappedBuffer,
  1894. &pMdl,
  1895. pContext,
  1896. TRUE);
  1897. if (NULL == pMappedBuffer)
  1898. {
  1899. Status = STATUS_INSUFFICIENT_RESOURCES;
  1900. }
  1901. else
  1902. {
  1903. Status = wdmaudGetDevCaps( pContext,
  1904. DeviceInfo->DeviceType,
  1905. TranslatedDeviceNumber,
  1906. pMappedBuffer,
  1907. DeviceInfo->DataBufferSize);
  1909. pIrp->IoStatus.Information = sizeof(DEVICEINFO);
  1911. //
  1912. // Free the MDL
  1913. //
  1914. wdmaudUnmapBuffer( pMdl );
  1915. }
  1916. }
  1917. return Status;
  1918. }
  1921. NTSTATUS
  1922. Dispatch_OpenPin(
  1923. PIRP pIrp,
  1924. PWDMACONTEXT pContext,
  1925. LPDEVICEINFO DeviceInfo
  1926. )
  1927. {
  1928. ULONG TranslatedDeviceNumber;
  1929. NTSTATUS Status = STATUS_SUCCESS; // Assume success
  1931. //
  1932. // Passing in DeviceInfo->DataBufferSize as the validation size because we don't care
  1933. // about the buffer check but we still want the translation code. It's just a short
  1934. // cut on the ValidateAndTranslate function.
  1935. //
  1936. Status = ValidateAndTranslate(pContext,
  1937. DeviceInfo,
  1938. DeviceInfo->DataBufferSize, // Don't care about buffer
  1939. &TranslatedDeviceNumber);
  1940. if( NT_SUCCESS(Status) )
  1941. {
  1942. switch (DeviceInfo->DeviceType)
  1943. {
  1944. case WaveOutDevice:
  1945. case WaveInDevice:
  1947. if (DeviceInfo->DataBufferSize < sizeof(PCMWAVEFORMAT))
  1948. {
  1949. Status = STATUS_INVALID_BUFFER_SIZE;
  1950. } else {
  1951. LPWAVEFORMATEX pWaveFmt = NULL;
  1953. //
  1954. // Ensure alignment by copying to temporary buffer
  1955. //
  1956. Status = CaptureBufferToLocalPool(DeviceInfo->DataBuffer,
  1957. DeviceInfo->DataBufferSize,
  1958. &pWaveFmt
  1959. #ifdef _WIN64
  1960. ,0
  1961. #endif
  1962. );
  1963. if (!NT_SUCCESS(Status))
  1964. {
  1965. Status = STATUS_INSUFFICIENT_RESOURCES;
  1967. } else {
  1969. if ((pWaveFmt->wFormatTag != WAVE_FORMAT_PCM) &&
  1970. ((DeviceInfo->DataBufferSize < sizeof(WAVEFORMATEX)) ||
  1971. (DeviceInfo->DataBufferSize != sizeof(WAVEFORMATEX) + pWaveFmt->cbSize)))
  1972. {
  1973. Status = STATUS_INVALID_BUFFER_SIZE;
  1974. }
  1975. else
  1976. {
  1977. Status = OpenWavePin( pContext,
  1978. TranslatedDeviceNumber,
  1979. pWaveFmt,
  1980. DeviceInfo->DeviceHandle,
  1981. DeviceInfo->dwFlags,
  1982. (WaveOutDevice == DeviceInfo->DeviceType?
  1983. KSPIN_DATAFLOW_IN:KSPIN_DATAFLOW_OUT) );
  1984. }
  1986. //
  1987. // Free the temporary buffer
  1988. //
  1989. AudioFreeMemory_Unknown( &pWaveFmt );
  1990. }
  1991. }
  1993. break;
  1995. case MidiOutDevice:
  1996. Status = OpenMidiPin( pContext, TranslatedDeviceNumber, KSPIN_DATAFLOW_IN );
  1997. break;
  1999. case MidiInDevice:
  2000. Status = OpenMidiPin( pContext, TranslatedDeviceNumber, KSPIN_DATAFLOW_OUT );
  2001. break;
  2003. default:
  2004. Status = STATUS_NOT_SUPPORTED;
  2005. break;
  2006. }
  2008. pIrp->IoStatus.Information = sizeof(DEVICEINFO);
  2009. }
  2010. return Status;
  2011. }
  2013. NTSTATUS
  2014. Dispatch_ClosePin(
  2015. PIRP pIrp,
  2016. PWDMACONTEXT pContext,
  2017. LPDEVICEINFO DeviceInfo
  2018. )
  2019. {
  2020. ULONG TranslatedDeviceNumber;
  2021. NTSTATUS Status = STATUS_SUCCESS; // Assume success
  2023. Status = ValidateAndTranslate(pContext,
  2024. DeviceInfo,
  2025. 0,
  2026. &TranslatedDeviceNumber);
  2027. if( NT_SUCCESS(Status) )
  2028. {
  2029. switch (DeviceInfo->DeviceType)
  2030. {
  2031. case WaveOutDevice:
  2032. CloseTheWavePin( &pContext->WaveOutDevs[TranslatedDeviceNumber],
  2033. DeviceInfo->DeviceHandle );
  2034. break;
  2036. case WaveInDevice:
  2037. CloseTheWavePin( &pContext->WaveInDevs[TranslatedDeviceNumber],
  2038. DeviceInfo->DeviceHandle );
  2039. break;
  2041. case MidiOutDevice:
  2042. CloseMidiDevicePin( &pContext->MidiOutDevs[TranslatedDeviceNumber] );
  2043. break;
  2045. case MidiInDevice:
  2046. CloseMidiDevicePin( &pContext->MidiInDevs[TranslatedDeviceNumber] );
  2047. break;
  2049. default:
  2050. Status = STATUS_NOT_SUPPORTED;
  2051. break;
  2052. }
  2053. }
  2055. return Status;
  2056. }
  2058. NTSTATUS
  2059. Dispatch_GetVolume(
  2060. PIRP pIrp,
  2061. PWDMACONTEXT pContext,
  2062. LPDEVICEINFO DeviceInfo,
  2063. ULONG IoCode
  2064. )
  2065. {
  2066. DWORD dwLeft, dwRight;
  2067. ULONG TranslatedDeviceNumber;
  2068. PVOID pMappedBuffer;
  2069. PMDL pMdl;
  2070. ULONG ulDeviceType;
  2071. NTSTATUS Status = STATUS_SUCCESS; // Assume success
  2073. Status = ValidateAndTranslate(pContext,
  2074. DeviceInfo,
  2075. sizeof(DWORD),
  2076. &TranslatedDeviceNumber);
  2077. if( NT_SUCCESS(Status) )
  2078. {
  2079. switch(IoCode)
  2080. {
  2081. case IOCTL_WDMAUD_MIDI_OUT_GET_VOLUME:
  2082. ulDeviceType = MidiOutDevice;
  2083. break;
  2084. case IOCTL_WDMAUD_WAVE_OUT_GET_VOLUME:
  2085. ulDeviceType = WaveOutDevice;
  2086. break;
  2087. case IOCTL_WDMAUD_GET_VOLUME:
  2088. ulDeviceType = DeviceInfo->DeviceType;
  2089. break;
  2090. default:
  2091. return STATUS_INVALID_PARAMETER;
  2092. break;
  2093. }
  2095. Status = GetVolume(pContext,
  2096. TranslatedDeviceNumber,
  2097. ulDeviceType,
  2098. &dwLeft,
  2099. &dwRight);
  2100. if( NT_SUCCESS( Status ) )
  2101. {
  2102. wdmaudMapBuffer( pIrp, // Wave buffers look like
  2103. DeviceInfo->DataBuffer, // DeviceInfo->DataBuffer
  2104. DeviceInfo->DataBufferSize, // DeviceInfo->DataBufferSize
  2105. &pMappedBuffer,
  2106. &pMdl,
  2107. pContext,
  2108. TRUE);
  2109. if (NULL == pMappedBuffer)
  2110. {
  2111. Status = STATUS_INSUFFICIENT_RESOURCES;
  2112. } else {
  2113. //
  2114. // Write this info back.
  2115. //
  2116. *((LPDWORD)pMappedBuffer) = MAKELONG(LOWORD(dwLeft),
  2117. LOWORD(dwRight));
  2118. wdmaudUnmapBuffer( pMdl );
  2119. pIrp->IoStatus.Information = sizeof(DEVICEINFO);
  2120. }
  2121. }
  2122. }
  2123. return Status;
  2124. }
  2127. NTSTATUS
  2128. Dispatch_SetVolume(
  2129. PIRP pIrp,
  2130. PWDMACONTEXT pContext,
  2131. LPDEVICEINFO DeviceInfo,
  2132. ULONG IoCode
  2133. )
  2134. {
  2135. ULONG TranslatedDeviceNumber;
  2136. PVOID pMappedBuffer;
  2137. PMDL pMdl;
  2138. ULONG ulDeviceType;
  2139. NTSTATUS Status = STATUS_SUCCESS; // Assume success
  2141. Status = ValidateAndTranslate(pContext,
  2142. DeviceInfo,
  2143. sizeof(DWORD),
  2144. &TranslatedDeviceNumber);
  2145. if( NT_SUCCESS(Status) )
  2146. {
  2147. wdmaudMapBuffer( pIrp,
  2148. DeviceInfo->DataBuffer,
  2149. DeviceInfo->DataBufferSize,
  2150. &pMappedBuffer,
  2151. &pMdl,
  2152. pContext,
  2153. TRUE);
  2154. if (NULL == pMappedBuffer)
  2155. {
  2156. Status = STATUS_INSUFFICIENT_RESOURCES;
  2157. }
  2158. else
  2159. {
  2160. switch(IoCode)
  2161. {
  2162. case IOCTL_WDMAUD_MIDI_OUT_SET_VOLUME:
  2163. ulDeviceType = MidiOutDevice;
  2164. break;
  2165. case IOCTL_WDMAUD_WAVE_OUT_SET_VOLUME:
  2166. ulDeviceType = WaveOutDevice;
  2167. break;
  2168. case IOCTL_WDMAUD_SET_VOLUME:
  2169. ulDeviceType = DeviceInfo->DeviceType;
  2170. break;
  2171. default:
  2172. return STATUS_INVALID_PARAMETER;
  2173. break;
  2174. }
  2176. Status = SetVolume(pContext,
  2177. TranslatedDeviceNumber,
  2178. ulDeviceType,
  2179. LOWORD(*((LPDWORD)pMappedBuffer)),
  2180. HIWORD(*((LPDWORD)pMappedBuffer)));
  2182. wdmaudUnmapBuffer( pMdl );
  2183. pIrp->IoStatus.Information = sizeof(DEVICEINFO);
  2184. }
  2185. }
  2186. return Status;
  2187. }
  2189. NTSTATUS
  2190. Dispatch_WaveGetPos(
  2191. PIRP pIrp,
  2192. PWDMACONTEXT pContext,
  2193. LPDEVICEINFO DeviceInfo,
  2194. ULONG IoCode
  2195. )
  2196. {
  2197. WAVEPOSITION WavePos;
  2198. ULONG TranslatedDeviceNumber;
  2199. PVOID pMappedBuffer;
  2200. PMDL pMdl;
  2201. NTSTATUS Status = STATUS_SUCCESS; // Assume success
  2203. Status = ValidateAndTranslate(pContext,
  2204. DeviceInfo,
  2205. sizeof(DWORD),
  2206. &TranslatedDeviceNumber);
  2207. if( NT_SUCCESS(Status) )
  2208. {
  2209. //
  2210. // Map this buffer into a system address
  2211. //
  2212. wdmaudMapBuffer( pIrp,
  2213. DeviceInfo->DataBuffer,
  2214. DeviceInfo->DataBufferSize,
  2215. &pMappedBuffer,
  2216. &pMdl,
  2217. pContext,
  2218. TRUE);
  2219. if (NULL == pMappedBuffer)
  2220. {
  2221. Status = STATUS_INSUFFICIENT_RESOURCES;
  2223. } else {
  2225. WavePos.Operation = KSPROPERTY_TYPE_GET;
  2226. switch(IoCode)
  2227. {
  2228. case IOCTL_WDMAUD_WAVE_OUT_GET_POS:
  2229. Status = PosWavePin(&pContext->WaveOutDevs[TranslatedDeviceNumber],
  2230. DeviceInfo->DeviceHandle,
  2231. &WavePos );
  2232. break;
  2233. case IOCTL_WDMAUD_WAVE_IN_GET_POS:
  2234. Status = PosWavePin ( &pContext->WaveInDevs[TranslatedDeviceNumber],
  2235. DeviceInfo->DeviceHandle,
  2236. &WavePos );
  2237. break;
  2238. default:
  2239. return STATUS_INVALID_PARAMETER;
  2240. break;
  2241. }
  2242. *((LPDWORD)pMappedBuffer) = WavePos.BytePos;
  2244. //
  2245. // Free the MDL
  2246. //
  2247. wdmaudUnmapBuffer( pMdl );
  2249. pIrp->IoStatus.Information = sizeof(DEVICEINFO);
  2250. }
  2251. }
  2252. return Status;
  2253. }
  2255. NTSTATUS
  2256. Dispatch_MidiOutWriteLongdata(
  2257. PIRP pIrp,
  2258. PWDMACONTEXT pContext,
  2259. LPDEVICEINFO DeviceInfo,
  2260. BOOL *pCompletedIrp
  2261. )
  2262. {
  2263. ULONG TranslatedDeviceNumber;
  2264. LPMIDIHDR pMidiHdr = NULL;
  2265. #ifdef _WIN64
  2266. LPMIDIHDR32 pMidiHdr32;
  2267. #endif
  2268. PSTREAM_HEADER_EX pStreamHeader = NULL;
  2269. NTSTATUS Status = STATUS_SUCCESS; // Assume success
  2271. ASSERT( FALSE == *pCompletedIrp );
  2272. //
  2273. // Verify that we received a valid midiheader
  2274. //
  2275. Status = ValidateAndTranslateEx(pIrp, pContext, DeviceInfo,
  2276. #ifdef _WIN64
  2277. sizeof(MIDIHDR32),
  2278. #endif
  2279. sizeof(MIDIHDR), &TranslatedDeviceNumber);
  2280. if( !NT_SUCCESS(Status) )
  2281. {
  2282. return Status;
  2283. }
  2285. Status = AudioAllocateMemory_Fixed(sizeof(STREAM_HEADER_EX),
  2286. TAG_Audh_STREAMHEADER,
  2287. ZERO_FILL_MEMORY,
  2288. &pStreamHeader);
  2289. if(NT_SUCCESS(Status))
  2290. {
  2291. Status = CaptureBufferToLocalPool(DeviceInfo->DataBuffer,
  2292. DeviceInfo->DataBufferSize,
  2293. &pMidiHdr
  2294. #ifdef _WIN64
  2295. ,(IoIs32bitProcess(pIrp))?sizeof(MIDIHDR):0
  2296. #endif
  2297. );
  2298. if (!NT_SUCCESS(Status))
  2299. {
  2300. AudioFreeMemory( sizeof(STREAM_HEADER_EX),&pStreamHeader );
  2301. //
  2302. // Why do we change the status here?
  2303. //
  2304. return STATUS_INSUFFICIENT_RESOURCES;
  2306. } else {
  2308. LPVOID lpData;
  2309. DWORD dwBufferLength;
  2311. #ifdef _WIN64
  2312. // Thunk the midi header if required.
  2313. // Note this is an IN PLACE thunk, so we MUST do it in
  2314. // last element to first element order!!!
  2315. if (IoIs32bitProcess(pIrp)) {
  2316. // Thunk pMidiHdr to 64 bits.
  2317. pMidiHdr32=(LPMIDIHDR32)pMidiHdr;
  2318. #if (WINVER >= 0x0400)
  2319. {
  2320. ULONG i;
  2321. // Again we must go from LAST element to first element in this array.
  2322. // This IS the reverse of for (i=0; i<(sizeof(pMidiHdr32->dwReserved)/sizeof(UINT32)); i++)
  2323. for (i=(sizeof(pMidiHdr32->dwReserved)/sizeof(UINT32)); i--;) {
  2324. pMidiHdr->dwReserved[i]=(DWORD_PTR)pMidiHdr32->dwReserved[i];
  2325. }
  2326. }
  2327. pMidiHdr->dwOffset=pMidiHdr32->dwOffset;
  2328. #endif
  2329. pMidiHdr->reserved=(DWORD_PTR)pMidiHdr32->reserved;
  2330. pMidiHdr->lpNext=(LPMIDIHDR)(UINT_PTR)pMidiHdr32->lpNext;
  2331. pMidiHdr->dwFlags=pMidiHdr32->dwFlags;
  2332. pMidiHdr->dwUser=(DWORD_PTR)pMidiHdr32->dwUser;
  2333. pMidiHdr->dwBytesRecorded=pMidiHdr32->dwBytesRecorded;
  2334. pMidiHdr->dwBufferLength=pMidiHdr32->dwBufferLength;
  2335. pMidiHdr->lpData=(LPSTR)(UINT_PTR)pMidiHdr32->lpData;
  2336. }
  2337. #endif
  2339. //
  2340. // Capture these parameters before probing
  2341. //
  2342. lpData = pMidiHdr->lpData;
  2343. dwBufferLength = pMidiHdr->dwBufferLength;
  2345. try
  2346. {
  2347. ProbeForRead(lpData, dwBufferLength, sizeof(BYTE));
  2348. }
  2349. except (EXCEPTION_EXECUTE_HANDLER)
  2350. {
  2351. AudioFreeMemory_Unknown( &pMidiHdr );
  2352. AudioFreeMemory( sizeof(STREAM_HEADER_EX),&pStreamHeader );
  2353. Status = GetExceptionCode();
  2354. }
  2356. if (!NT_SUCCESS(Status))
  2357. {
  2358. return Status;
  2359. }
  2361. wdmaudMapBuffer(pIrp,
  2362. lpData,
  2363. dwBufferLength,
  2364. &pStreamHeader->Header.Data,
  2365. &pStreamHeader->pBufferMdl,
  2366. pContext,
  2367. TRUE); // will be freed on completion
  2369. //
  2370. // If we get a zero-length buffer, it is alright to not have
  2371. // a kernel mapped buffer. Otherwise, fail if no Mdl or buffer.
  2372. //
  2373. if ( (dwBufferLength != 0) &&
  2374. ((NULL == pStreamHeader->pBufferMdl) ||
  2375. (NULL == pStreamHeader->Header.Data)) )
  2376. {
  2377. Status = STATUS_INSUFFICIENT_RESOURCES;
  2378. wdmaudUnmapBuffer(pStreamHeader->pBufferMdl);
  2379. AudioFreeMemory_Unknown( &pMidiHdr );
  2380. AudioFreeMemory( sizeof(STREAM_HEADER_EX),&pStreamHeader );
  2382. } else {
  2384. pStreamHeader->pIrp = pIrp; // store so we can complete later
  2385. pStreamHeader->pMidiPin =
  2386. pContext->MidiOutDevs[TranslatedDeviceNumber].pMidiPin;
  2387. pStreamHeader->Header.FrameExtent = dwBufferLength;
  2389. //
  2390. // Must cleanup any mapped buffers and allocated memory
  2391. // on error paths in WriteMidiOutPin
  2392. //
  2393. Status = WriteMidiOutPin( pMidiHdr,pStreamHeader,pCompletedIrp );
  2395. //
  2396. // Because WriteMidiOutPin is synchronous, pCompetedIrp will
  2397. // always come back FALSE so that the caller can clean up the
  2398. // Irp.
  2399. //
  2400. ASSERT( FALSE == *pCompletedIrp );
  2401. }
  2402. }
  2403. }
  2404. return Status;
  2405. }
  2407. NTSTATUS
  2408. ValidateAndCapture(
  2409. PIRP pIrp,
  2410. LPDEVICEINFO DeviceInfo,
  2411. #ifdef _WIN64
  2412. DWORD ValidationSize32,
  2413. #endif
  2414. DWORD ValidationSize,
  2415. PVOID *ppMappedBuffer
  2416. )
  2417. {
  2418. NTSTATUS Status = STATUS_SUCCESS;
  2420. //
  2421. // Assume that we're going to have a problem.
  2422. //
  2423. *ppMappedBuffer = NULL;
  2425. #ifdef _WIN64
  2426. if (IoIs32bitProcess(pIrp)) {
  2428. if (DeviceInfo->DataBufferSize != ValidationSize32)
  2429. {
  2430. DeviceInfo->mmr = MMSYSERR_INVALPARAM;
  2431. return STATUS_INVALID_BUFFER_SIZE;
  2432. }
  2434. } else {
  2435. #endif
  2436. if (DeviceInfo->DataBufferSize != ValidationSize)
  2437. {
  2438. DeviceInfo->mmr = MMSYSERR_INVALPARAM;
  2439. return STATUS_INVALID_BUFFER_SIZE;
  2440. }
  2441. #ifdef _WIN64
  2442. }
  2443. #endif
  2444. //
  2445. // Copy to local data storage
  2446. //
  2447. Status = CaptureBufferToLocalPool(DeviceInfo->DataBuffer,
  2448. DeviceInfo->DataBufferSize,
  2449. ppMappedBuffer
  2450. #ifdef _WIN64
  2451. ,(IoIs32bitProcess(pIrp))?ValidationSize:0
  2452. #endif
  2453. );
  2454. return Status;
  2455. }
  2457. NTSTATUS
  2458. Dispatch_GetLineInfo(
  2459. PIRP pIrp,
  2460. PWDMACONTEXT pContext,
  2461. LPDEVICEINFO DeviceInfo
  2462. )
  2463. {
  2464. PVOID pMappedBuffer;
  2465. NTSTATUS Status = STATUS_SUCCESS; // Assume success
  2466. //
  2467. // The size specified in this member must be large enough to
  2468. // contain the base MIXERLINE structure.
  2469. //
  2470. Status = ValidateAndCapture(pIrp,DeviceInfo,
  2471. #ifdef _WIN64
  2472. sizeof(MIXERLINE32),
  2473. #endif
  2474. sizeof(MIXERLINE), &pMappedBuffer);
  2475. if( !NT_SUCCESS(Status) )
  2476. {
  2477. DeviceInfo->mmr = MMSYSERR_INVALPARAM;
  2478. goto Exit;
  2479. }
  2481. #ifdef _WIN64
  2482. // Now thunk the MIXERLINE structure to 64 bits.
  2483. // WARNING we do this a simple easy way, but it is DEPENDENT on the
  2484. // structure of MIXERLINE. There is currently only 1 parameter that
  2485. // changes in size between the 32 and 64 bit structures. dwUser.
  2486. // This will have to get more complicated if the MIXERLINE structure
  2487. // ever has more stuff in it that needs to be thunked.
  2489. if (IoIs32bitProcess(pIrp)) {
  2491. // First move everything following the dwUser field in the 32 bit
  2492. // structure down 4 bytes.
  2493. RtlMoveMemory(&((PMIXERLINE32)pMappedBuffer)->cChannels,
  2494. &((PMIXERLINE32)pMappedBuffer)->dwComponentType,
  2495. sizeof(MIXERLINE32)-FIELD_OFFSET(MIXERLINE32,dwComponentType));
  2497. // Now thunk dwUser to 64 bits.
  2498. ((PMIXERLINE)pMappedBuffer)->dwUser=(DWORD_PTR)((PMIXERLINE32)pMappedBuffer)->dwUser;
  2500. }
  2501. #endif
  2503. if (NT_SUCCESS(Status))
  2504. {
  2505. Status = kmxlGetLineInfoHandler( pContext, DeviceInfo, pMappedBuffer );
  2506. //
  2507. // This call should have set the DeviceInfo->mmr and returned a valid
  2508. // NTSTATUS value.
  2509. //
  2511. #ifdef _WIN64
  2512. // Now thunk the MIXERLINE structure back to 32 bits.
  2513. // WARNING we do this a simple easy way, but it is DEPENDENT on the
  2514. // structure of MIXERLINE. There is currently only 1 parameter that
  2515. // changes in size between the 32 and 64 bit structures. dwUser.
  2516. // This will have to get more complicated if the MIXERLINE structure
  2517. // ever has more stuff in it that needs to be thunked.
  2519. // Note that for in place thunks we must do them from LAST to FIRST
  2520. // field order when thunking up to 64 bits and in FIRST to LAST
  2521. // field order when thunking back down to 32 bits!!!
  2522. if (IoIs32bitProcess(pIrp)) {
  2524. // Just move everything that now is after dwComponentType back up 4 bytes.
  2525. RtlMoveMemory(&((PMIXERLINE32)pMappedBuffer)->dwComponentType,
  2526. &((PMIXERLINE32)pMappedBuffer)->cChannels,
  2527. sizeof(MIXERLINE32)-FIELD_OFFSET(MIXERLINE32,dwComponentType));
  2529. }
  2530. #endif
  2532. //
  2533. // Copy back the contents of the captured buffer
  2534. //
  2535. CopyAndFreeCapturedBuffer(DeviceInfo->DataBuffer,
  2536. DeviceInfo->DataBufferSize,
  2537. &pMappedBuffer);
  2538. }
  2540. Exit:
  2541. pIrp->IoStatus.Information = sizeof(DEVICEINFO);
  2542. return Status;
  2543. }
  2546. NTSTATUS
  2547. Dispatch_GetLineControls(
  2548. PIRP pIrp,
  2549. PWDMACONTEXT pContext,
  2550. LPDEVICEINFO DeviceInfo
  2551. )
  2552. {
  2553. PVOID pamxctrl = NULL;
  2554. PVOID pamxctrlUnmapped;
  2555. DWORD dwSize;
  2556. PVOID pMappedBuffer;
  2557. NTSTATUS Status = STATUS_SUCCESS; // Assume success
  2559. //
  2560. // The size specified in this member must be large enough to
  2561. // contain the base MIXERLINECONTROL structure.
  2562. //
  2563. Status = ValidateAndCapture(pIrp,DeviceInfo,
  2564. #ifdef _WIN64
  2565. sizeof(MIXERLINECONTROLS32),
  2566. #endif
  2567. sizeof(MIXERLINECONTROLS), &pMappedBuffer);
  2568. if( !NT_SUCCESS(Status) )
  2569. {
  2570. DeviceInfo->mmr = MMSYSERR_INVALPARAM;
  2571. goto Exit;
  2572. }
  2575. #ifdef _WIN64
  2576. // Now thunk the MIXERLINECONTROL structure to 64 bits.
  2577. // Currently this is easy to do as only the last field is different
  2578. // in size and simply needs to be zero extended.
  2580. // NOTE: This structure also thus does NOT need any thunking in
  2581. // the reverse direction! How nice.
  2583. // NOTE: None of the mixer controls themselves need any thunking.
  2584. // YEAH!!!
  2585. if (IoIs32bitProcess(pIrp)) {
  2587. ((LPMIXERLINECONTROLS)pMappedBuffer)->pamxctrl=(LPMIXERCONTROL)(UINT_PTR)((LPMIXERLINECONTROLS32)pMappedBuffer)->pamxctrl;
  2589. }
  2590. #endif
  2592. //
  2593. // Pick reasonable max values for the size and number of controls to eliminate overflow
  2594. //
  2595. if ( ( ((LPMIXERLINECONTROLS) pMappedBuffer)->cbmxctrl > 10000 ) ||
  2596. ( ((LPMIXERLINECONTROLS) pMappedBuffer)->cControls > 10000 ) )
  2597. {
  2598. CopyAndFreeCapturedBuffer(DeviceInfo->DataBuffer,
  2599. DeviceInfo->DataBufferSize,
  2600. &pMappedBuffer);
  2601. DeviceInfo->mmr = MMSYSERR_INVALPARAM;
  2602. Status = STATUS_INVALID_PARAMETER;
  2603. }
  2604. else
  2605. {
  2606. pamxctrlUnmapped = ((LPMIXERLINECONTROLS) pMappedBuffer)->pamxctrl;
  2607. dwSize = ((LPMIXERLINECONTROLS) pMappedBuffer)->cbmxctrl *
  2608. ((LPMIXERLINECONTROLS) pMappedBuffer)->cControls;
  2609. try
  2610. {
  2611. ProbeForWrite(pamxctrlUnmapped, dwSize, sizeof(DWORD));
  2612. }
  2613. except (EXCEPTION_EXECUTE_HANDLER)
  2614. {
  2615. CopyAndFreeCapturedBuffer(DeviceInfo->DataBuffer,
  2616. DeviceInfo->DataBufferSize,
  2617. &pMappedBuffer);
  2618. DeviceInfo->mmr = MMSYSERR_INVALPARAM;
  2619. Status = GetExceptionCode();
  2620. }
  2621. }
  2623. if (NT_SUCCESS(Status))
  2624. {
  2625. //
  2626. // Map the array of mixer controls into system space. The
  2627. // size of this buffer is the number of controls times the
  2628. // size of each control.
  2629. //
  2630. Status = CaptureBufferToLocalPool(pamxctrlUnmapped,
  2631. dwSize,
  2632. &pamxctrl
  2633. #ifdef _WIN64
  2634. ,0
  2635. #endif
  2636. );
  2638. if (NT_SUCCESS(Status))
  2639. {
  2640. //
  2641. // Call the handler.
  2642. //
  2643. Status = kmxlGetLineControlsHandler(pContext,
  2644. DeviceInfo,
  2645. pMappedBuffer,
  2646. pamxctrl );
  2647. //
  2648. // The previous call should have set the DeviceInfo->mmr and returned
  2649. // a valid Status value.
  2650. //
  2652. CopyAndFreeCapturedBuffer(pamxctrlUnmapped,
  2653. dwSize,
  2654. &pamxctrl);
  2655. } else {
  2656. DeviceInfo->mmr = MMSYSERR_INVALPARAM;
  2657. }
  2658. } else {
  2659. DeviceInfo->mmr = MMSYSERR_INVALPARAM;
  2660. }
  2662. CopyAndFreeCapturedBuffer(DeviceInfo->DataBuffer,
  2663. DeviceInfo->DataBufferSize,
  2664. &pMappedBuffer);
  2665. Exit:
  2666. pIrp->IoStatus.Information = sizeof(DEVICEINFO);
  2667. return Status;
  2668. }
  2670. #ifdef _WIN64
  2672. void
  2673. ThunkMixerControlDetails_Enter(
  2674. PVOID pMappedBuffer
  2675. )
  2676. {
  2677. // Now thunk the MIXERCONTROLDETAILS structure to 64 bits.
  2678. // This is an IN PLACE thunk, so MUST be done from last to first fields.
  2680. ((LPMIXERCONTROLDETAILS)pMappedBuffer)->paDetails=(LPVOID)(UINT_PTR)((LPMIXERCONTROLDETAILS32)pMappedBuffer)->paDetails;
  2681. ((LPMIXERCONTROLDETAILS)pMappedBuffer)->cbDetails=((LPMIXERCONTROLDETAILS32)pMappedBuffer)->cbDetails;
  2682. // We always thunk the next field as if it were an HWND since that works for both cases.
  2683. ((LPMIXERCONTROLDETAILS)pMappedBuffer)->hwndOwner=(HWND)(UINT_PTR)((LPMIXERCONTROLDETAILS32)pMappedBuffer)->hwndOwner;
  2684. ((LPMIXERCONTROLDETAILS)pMappedBuffer)->cChannels=((LPMIXERCONTROLDETAILS32)pMappedBuffer)->cChannels;
  2685. ((LPMIXERCONTROLDETAILS)pMappedBuffer)->dwControlID=((LPMIXERCONTROLDETAILS32)pMappedBuffer)->dwControlID;
  2686. ((LPMIXERCONTROLDETAILS)pMappedBuffer)->cbStruct=((LPMIXERCONTROLDETAILS32)pMappedBuffer)->cbStruct;
  2687. }
  2689. void
  2690. ThunkMixerControlDetails_Leave(
  2691. PVOID pMappedBuffer
  2692. )
  2693. {
  2694. // Now thunk the MIXERCONTROLDETAILS structure back to 32 bits.
  2695. // This is an IN PLACE thunk, so MUST be done from FIRST to LAST
  2696. // fields. Remember the order is different depending on direction!
  2698. ((LPMIXERCONTROLDETAILS32)pMappedBuffer)->cbStruct=((LPMIXERCONTROLDETAILS)pMappedBuffer)->cbStruct;
  2699. ((LPMIXERCONTROLDETAILS32)pMappedBuffer)->dwControlID=((LPMIXERCONTROLDETAILS)pMappedBuffer)->dwControlID;
  2700. ((LPMIXERCONTROLDETAILS32)pMappedBuffer)->cChannels=((LPMIXERCONTROLDETAILS)pMappedBuffer)->cChannels;
  2701. // We always thunk the next field as if it were an HWND since that works for both cases.
  2702. ((LPMIXERCONTROLDETAILS32)pMappedBuffer)->hwndOwner=(UINT32)(UINT_PTR)((LPMIXERCONTROLDETAILS)pMappedBuffer)->hwndOwner;
  2703. ((LPMIXERCONTROLDETAILS32)pMappedBuffer)->cbDetails=((LPMIXERCONTROLDETAILS)pMappedBuffer)->cbDetails;
  2704. ((LPMIXERCONTROLDETAILS32)pMappedBuffer)->paDetails=(UINT32)(UINT_PTR)((LPMIXERCONTROLDETAILS)pMappedBuffer)->paDetails;
  2705. }
  2706. #endif
  2708. NTSTATUS
  2709. Dispatch_GetControlDetails(
  2710. PIRP pIrp,
  2711. PWDMACONTEXT pContext,
  2712. LPDEVICEINFO DeviceInfo
  2713. )
  2714. {
  2715. PVOID paDetails = NULL;
  2716. PVOID paDetailsUnmapped;
  2717. DWORD dwSize;
  2718. PVOID pMappedBuffer;
  2719. NTSTATUS Status = STATUS_SUCCESS; // Assume success.
  2721. Status = ValidateAndCapture(pIrp,DeviceInfo,
  2722. #ifdef _WIN64
  2723. sizeof(MIXERCONTROLDETAILS32),
  2724. #endif
  2725. sizeof(MIXERCONTROLDETAILS), &pMappedBuffer);
  2726. if( !NT_SUCCESS(Status) )
  2727. {
  2728. DeviceInfo->mmr = MMSYSERR_INVALPARAM;
  2729. goto Exit;
  2730. }
  2732. #ifdef _WIN64
  2733. if (IoIs32bitProcess(pIrp)) {
  2734. ThunkMixerControlDetails_Enter(pMappedBuffer);
  2735. }
  2736. #endif
  2738. //
  2739. // Pick reasonable max values for the data and number of controls to eliminate overflow
  2740. //
  2741. if ( ( ((LPMIXERCONTROLDETAILS) pMappedBuffer)->cbDetails > 10000 ) ||
  2742. ( ((LPMIXERCONTROLDETAILS) pMappedBuffer)->cChannels > 100 ) ||
  2743. ( ((LPMIXERCONTROLDETAILS) pMappedBuffer)->cMultipleItems > 100 ) )
  2744. {
  2745. #ifdef _WIN64
  2746. if (IoIs32bitProcess(pIrp)) {
  2747. ThunkMixerControlDetails_Leave(pMappedBuffer);
  2748. }
  2749. #endif
  2750. CopyAndFreeCapturedBuffer(DeviceInfo->DataBuffer,
  2751. DeviceInfo->DataBufferSize,
  2752. &pMappedBuffer);
  2753. DeviceInfo->mmr = MMSYSERR_INVALPARAM;
  2754. Status = STATUS_INVALID_PARAMETER;
  2755. } else {
  2756. //
  2757. // Map the array control details into system space.
  2758. //
  2759. paDetailsUnmapped = ((LPMIXERCONTROLDETAILS) pMappedBuffer)->paDetails;
  2760. if( ((LPMIXERCONTROLDETAILS) pMappedBuffer)->cMultipleItems )
  2761. {
  2762. dwSize = ((LPMIXERCONTROLDETAILS) pMappedBuffer)->cChannels *
  2763. ((LPMIXERCONTROLDETAILS) pMappedBuffer)->cMultipleItems *
  2764. ((LPMIXERCONTROLDETAILS) pMappedBuffer)->cbDetails;
  2766. } else {
  2767. dwSize = ((LPMIXERCONTROLDETAILS) pMappedBuffer)->cChannels *
  2768. ((LPMIXERCONTROLDETAILS) pMappedBuffer)->cbDetails;
  2769. }
  2771. try
  2772. {
  2773. ProbeForWrite(paDetailsUnmapped,
  2774. dwSize,
  2775. sizeof(DWORD));
  2776. }
  2777. except (EXCEPTION_EXECUTE_HANDLER)
  2778. {
  2779. #ifdef _WIN64
  2780. if (IoIs32bitProcess(pIrp)) {
  2781. ThunkMixerControlDetails_Leave(pMappedBuffer);
  2782. }
  2783. #endif
  2784. CopyAndFreeCapturedBuffer(DeviceInfo->DataBuffer,
  2785. DeviceInfo->DataBufferSize,
  2786. &pMappedBuffer);
  2787. DeviceInfo->mmr = MMSYSERR_INVALPARAM;
  2788. Status = GetExceptionCode();
  2789. }
  2790. }
  2792. if (NT_SUCCESS(Status))
  2793. {
  2794. Status = CaptureBufferToLocalPool(paDetailsUnmapped,
  2795. dwSize,
  2796. &paDetails
  2797. #ifdef _WIN64
  2798. ,0
  2799. #endif
  2800. );
  2802. if (NT_SUCCESS(Status))
  2803. {
  2804. //
  2805. // Call the handler.
  2806. //
  2807. Status = kmxlGetControlDetailsHandler(pContext,
  2808. DeviceInfo,
  2809. pMappedBuffer,
  2810. paDetails);
  2811. //
  2812. // The previous call should have set DeviceInfo->mmr and returned
  2813. // a valid Status value.
  2814. //
  2815. CopyAndFreeCapturedBuffer(paDetailsUnmapped,
  2816. dwSize,
  2817. &paDetails);
  2818. } else {
  2819. DeviceInfo->mmr = MMSYSERR_INVALPARAM;
  2820. }
  2821. } else {
  2822. DeviceInfo->mmr = MMSYSERR_INVALPARAM;
  2823. }
  2825. #ifdef _WIN64
  2826. if (IoIs32bitProcess(pIrp) && pMappedBuffer) {
  2827. ThunkMixerControlDetails_Leave(pMappedBuffer);
  2828. }
  2829. #endif
  2830. CopyAndFreeCapturedBuffer( DeviceInfo->DataBuffer,
  2831. DeviceInfo->DataBufferSize,
  2832. &pMappedBuffer);
  2833. Exit:
  2834. //
  2835. // Always return the DEVICEINFO number of bytes from this call.
  2836. //
  2837. pIrp->IoStatus.Information = sizeof(DEVICEINFO);
  2838. return Status;
  2839. }
  2841. NTSTATUS
  2842. Dispatch_SetControlDetails(
  2843. PIRP pIrp,
  2844. PWDMACONTEXT pContext,
  2845. LPDEVICEINFO DeviceInfo
  2846. )
  2847. {
  2848. PVOID paDetails = NULL;
  2849. PVOID paDetailsUnmapped;
  2850. DWORD dwSize;
  2851. PVOID pMappedBuffer;
  2852. NTSTATUS Status = STATUS_SUCCESS; //Assume success.
  2854. Status = ValidateAndCapture(pIrp,DeviceInfo,
  2855. #ifdef _WIN64
  2856. sizeof(MIXERCONTROLDETAILS32),
  2857. #endif
  2858. sizeof(MIXERCONTROLDETAILS), &pMappedBuffer);
  2859. if( !NT_SUCCESS(Status) )
  2860. {
  2861. goto Exit;
  2862. }
  2864. #ifdef _WIN64
  2865. // Now thunk the MIXERCONTROLDETAILS structure to 64 bits.
  2866. // This is an IN PLACE thunk, so MUST be done from last to first fields.
  2868. if (IoIs32bitProcess(pIrp)) {
  2869. ThunkMixerControlDetails_Enter(pMappedBuffer);
  2870. }
  2871. #endif
  2873. //
  2874. // Pick reasonable max values for the data and number of controls to eliminate overflow
  2875. //
  2876. if ( ( ((LPMIXERCONTROLDETAILS) pMappedBuffer)->cbDetails > 10000 ) ||
  2877. ( ((LPMIXERCONTROLDETAILS) pMappedBuffer)->cChannels > 100 ) ||
  2878. ( ((LPMIXERCONTROLDETAILS) pMappedBuffer)->cMultipleItems > 100 ) )
  2879. {
  2880. #ifdef _WIN64
  2881. if (IoIs32bitProcess(pIrp)) {
  2882. ThunkMixerControlDetails_Leave(pMappedBuffer);
  2883. }
  2884. #endif
  2885. CopyAndFreeCapturedBuffer(DeviceInfo->DataBuffer,
  2886. DeviceInfo->DataBufferSize,
  2887. &pMappedBuffer);
  2888. DeviceInfo->mmr = MMSYSERR_INVALPARAM;
  2889. Status = STATUS_INVALID_PARAMETER;
  2890. } else {
  2891. //
  2892. // Map the array control details into system space.
  2893. //
  2894. paDetailsUnmapped = ((LPMIXERCONTROLDETAILS) pMappedBuffer)->paDetails;
  2895. if( ((LPMIXERCONTROLDETAILS) pMappedBuffer)->cMultipleItems )
  2896. {
  2897. dwSize = ((LPMIXERCONTROLDETAILS) pMappedBuffer)->cChannels *
  2898. ((LPMIXERCONTROLDETAILS) pMappedBuffer)->cMultipleItems *
  2899. ((LPMIXERCONTROLDETAILS) pMappedBuffer)->cbDetails;
  2901. } else {
  2902. dwSize = ((LPMIXERCONTROLDETAILS) pMappedBuffer)->cChannels *
  2903. ((LPMIXERCONTROLDETAILS) pMappedBuffer)->cbDetails;
  2904. }
  2906. try
  2907. {
  2908. ProbeForRead(((LPMIXERCONTROLDETAILS) pMappedBuffer)->paDetails,
  2909. dwSize,
  2910. sizeof(DWORD));
  2911. }
  2912. except (EXCEPTION_EXECUTE_HANDLER)
  2913. {
  2914. #ifdef _WIN64
  2915. if (IoIs32bitProcess(pIrp)) {
  2916. ThunkMixerControlDetails_Leave(pMappedBuffer);
  2917. }
  2918. #endif
  2919. CopyAndFreeCapturedBuffer(DeviceInfo->DataBuffer,
  2920. DeviceInfo->DataBufferSize,
  2921. &pMappedBuffer);
  2922. DeviceInfo->mmr = MMSYSERR_INVALPARAM;
  2923. Status = GetExceptionCode();
  2924. }
  2925. }
  2927. if (NT_SUCCESS(Status))
  2928. {
  2929. Status = CaptureBufferToLocalPool(paDetailsUnmapped,
  2930. dwSize,
  2931. &paDetails
  2932. #ifdef _WIN64
  2933. ,0
  2934. #endif
  2935. );
  2937. if (NT_SUCCESS(Status))
  2938. {
  2939. //
  2940. // Call the handler.
  2941. //
  2942. Status = kmxlSetControlDetailsHandler(pContext,
  2943. DeviceInfo,
  2944. pMappedBuffer,
  2945. paDetails,
  2946. MIXER_FLAG_PERSIST );
  2947. //
  2948. // The previous call should have set DeviceInfo->mmr and returned
  2949. // a valid Status value.
  2950. //
  2952. CopyAndFreeCapturedBuffer(paDetailsUnmapped,
  2953. dwSize,
  2954. &paDetails);
  2955. } else {
  2956. DeviceInfo->mmr = MMSYSERR_INVALPARAM;
  2957. }
  2958. } else {
  2959. DeviceInfo->mmr = MMSYSERR_INVALPARAM;
  2960. }
  2962. #ifdef _WIN64
  2963. if (IoIs32bitProcess(pIrp) && pMappedBuffer) {
  2964. ThunkMixerControlDetails_Leave(pMappedBuffer);
  2965. }
  2966. #endif
  2967. CopyAndFreeCapturedBuffer(DeviceInfo->DataBuffer,
  2968. DeviceInfo->DataBufferSize,
  2969. &pMappedBuffer);
  2971. Exit:
  2972. //
  2973. // Always return sizeof(DEVICEINFO) for this call.
  2974. //
  2975. pIrp->IoStatus.Information = sizeof(DEVICEINFO);
  2976. return Status;
  2977. }
  2980. NTSTATUS
  2981. Dispatch_GetHardwareEventData(
  2982. PIRP pIrp,
  2983. LPDEVICEINFO DeviceInfo
  2984. )
  2985. {
  2986. NTSTATUS Status = STATUS_SUCCESS;
  2988. //
  2989. // Always return sizeof(DEVICEINFO) for this call.
  2990. //
  2991. pIrp->IoStatus.Information = sizeof(DEVICEINFO);
  2993. if (DeviceInfo->DataBufferSize != 0)
  2994. {
  2995. DeviceInfo->mmr = MMSYSERR_INVALPARAM;
  2996. Status = STATUS_INVALID_PARAMETER;
  2997. } else {
  2998. GetHardwareEventData(DeviceInfo);
  2999. }
  3001. return Status;
  3002. }
  3005. NTSTATUS
  3006. SoundDispatch(
  3007. IN PDEVICE_OBJECT pDO,
  3008. IN PIRP pIrp
  3009. )
  3010. /*++
  3012. Routine Description:
  3013. Driver dispatch routine. Processes IRPs based on IRP MajorFunction
  3015. Arguments:
  3016. pDO -- pointer to the device object
  3017. pIrp -- pointer to the IRP to process
  3019. Return Value:
  3020. Returns the value of the IRP IoStatus.Status
  3022. --*/
  3023. {
  3024. PIO_STACK_LOCATION pIrpStack;
  3025. PWDMACONTEXT pContext;
  3026. LPDEVICEINFO DeviceInfo;
  3027. #ifdef _WIN64
  3028. LPDEVICEINFO32 DeviceInfo32=NULL;
  3029. LOCALDEVICEINFO LocalDeviceInfo;
  3030. #endif
  3031. LPVOID DataBuffer;
  3032. DWORD DataBufferSize;
  3033. ULONG IoCode;
  3034. NTSTATUS Status = STATUS_SUCCESS;
  3036. PAGED_CODE();
  3037. //
  3038. // Get the CurrentStackLocation and log it so we know what is going on
  3039. //
  3040. pIrpStack = IoGetCurrentIrpStackLocation(pIrp);
  3041. IoCode = pIrpStack->Parameters.DeviceIoControl.IoControlCode;
  3042. pContext = pIrpStack->FileObject->FsContext;
  3043. ASSERT(pContext);
  3045. ASSERT(pIrpStack->MajorFunction != IRP_MJ_CREATE &&
  3046. pIrpStack->MajorFunction != IRP_MJ_CLOSE);
  3048. //
  3049. // Can't assume that FsContext is initialized if the device has
  3050. // been opened with FO_DIRECT_DEVICE_OPEN
  3051. //
  3052. if (pIrpStack->FileObject->Flags & FO_DIRECT_DEVICE_OPEN)
  3053. {
  3054. DPF(DL_TRACE|FA_IOCTL, ("IRP_MJ_DEVICE_CONTROL: Opened with FO_DIRECT_DEVICE_OPEN, no device context") );
  3056. return KsDefaultDeviceIoCompletion(pDO, pIrp);
  3057. }
  3059. Status = ValidateIrp(pIrp);
  3060. if (!NT_SUCCESS(Status))
  3061. {
  3062. pIrp->IoStatus.Status = Status;
  3063. IoCompleteRequest(pIrp, IO_NO_INCREMENT);
  3064. RETURN( Status );
  3065. }
  3067. #ifdef _WIN64
  3068. if (IoIs32bitProcess(pIrp)) {
  3069. DeviceInfo32=((LPDEVICEINFO32)pIrp->AssociatedIrp.SystemBuffer);
  3070. RtlZeroMemory(&LocalDeviceInfo, sizeof(LOCALDEVICEINFO));
  3071. DeviceInfo=&LocalDeviceInfo.DeviceInfo;
  3072. ThunkDeviceInfo3264(DeviceInfo32, DeviceInfo);
  3073. } else {
  3074. #endif
  3075. DeviceInfo = ((LPDEVICEINFO)pIrp->AssociatedIrp.SystemBuffer);
  3076. #ifdef _WIN64
  3077. }
  3078. #endif
  3079. DataBufferSize = DeviceInfo->DataBufferSize;
  3081. WdmaGrabMutex(pContext);
  3083. switch (pIrpStack->MajorFunction)
  3084. {
  3085. case IRP_MJ_DEVICE_CONTROL:
  3086. {
  3087. switch (IoCode)
  3088. {
  3089. case IOCTL_WDMAUD_INIT:
  3090. DPF( DL_TRACE|FA_IOCTL, ("IOCTL_WDMAUD_INIT"));
  3091. if (DataBufferSize != 0)
  3092. {
  3093. Status = STATUS_INVALID_BUFFER_SIZE;
  3094. break;
  3095. }
  3097. WdmaReleaseMutex(pContext);
  3099. //
  3100. // If sysaudio fails to load, the device interface
  3101. // will be disabled and the SysAudioPnPNotification
  3102. // will not be called anymore until the sysaudio
  3103. // device interface is reenabled.
  3104. //
  3105. if ( IsSysaudioInterfaceActive() )
  3106. {
  3107. KeWaitForSingleObject(&pContext->InitializedSysaudioEvent,
  3108. Executive, KernelMode, FALSE, NULL);
  3110. // This could happen if there was an error in InitializeSysaudio or
  3111. // the memory allocation failed in QueueWorkList
  3112. if (pContext->fInitializeSysaudio == FALSE)
  3113. {
  3114. Status = STATUS_NOT_SUPPORTED;
  3115. DPF(DL_WARNING|FA_IOCTL, ("IOCTL_WDMAUD_INIT: Didn't init sysaudio! Failing IOCTL_WDMAUD_INIT: %08x", Status));
  3116. }
  3117. }
  3118. else
  3119. {
  3120. Status = STATUS_NOT_SUPPORTED;
  3121. DPF(DL_WARNING|FA_IOCTL, ("IOCTL_WDMAUD_INIT: Sysaudio Device interface disabled! Failing IOCTL_WDMAUD_INIT: %08x", Status));
  3122. }
  3124. WdmaGrabMutex(pContext);
  3125. break;
  3127. case IOCTL_WDMAUD_EXIT:
  3128. if (DataBufferSize != 0)
  3129. {
  3130. Status = STATUS_INVALID_BUFFER_SIZE;
  3131. break;
  3132. }
  3134. DPF( DL_TRACE|FA_IOCTL, ("IOCTL_WDMAUD_EXIT"));
  3135. break;
  3137. case IOCTL_WDMAUD_ADD_DEVNODE:
  3138. {
  3139. DPF( DL_TRACE|FA_IOCTL, ("IOCTL_WDMAUD_ADD_DEVNODE"));
  3140. if (DataBufferSize != 0)
  3141. {
  3142. Status = STATUS_INVALID_BUFFER_SIZE;
  3143. break;
  3144. }
  3145. DPF(DL_TRACE|FA_INSTANCE,("pContext=%08X, DI=%08X DeviceType=%08X",
  3146. pContext,
  3147. DeviceInfo->wstrDeviceInterface,
  3148. DeviceInfo->DeviceType) );
  3149. Status=AddDevNode(pContext, DeviceInfo->wstrDeviceInterface, DeviceInfo->DeviceType);
  3150. break;
  3151. }
  3153. case IOCTL_WDMAUD_REMOVE_DEVNODE:
  3154. {
  3155. DPF(DL_TRACE|FA_IOCTL, ("IOCTL_WDMAUD_REMOVE_DEVNODE"));
  3156. if (DataBufferSize != 0)
  3157. {
  3158. Status = STATUS_INVALID_BUFFER_SIZE;
  3159. break;
  3160. }
  3161. RemoveDevNode(pContext, DeviceInfo->wstrDeviceInterface, DeviceInfo->DeviceType);
  3162. break;
  3163. }
  3165. case IOCTL_WDMAUD_GET_CAPABILITIES:
  3166. DPF(DL_TRACE|FA_IOCTL, ("IOCTL_WDMAUD_GET_CAPABILITIES"));
  3168. Status = Dispatch_GetCapabilities(pIrp,pContext,
  3169. DeviceInfo);
  3170. break;
  3172. case IOCTL_WDMAUD_GET_NUM_DEVS:
  3173. DPF(DL_TRACE|FA_IOCTL, ("IOCTL_WDMAUD_GET_NUM_DEVS"));
  3174. if (DataBufferSize != 0)
  3175. {
  3176. Status = STATUS_INVALID_BUFFER_SIZE;
  3177. break;
  3178. }
  3180. Status = wdmaudGetNumDevs(pContext,
  3181. DeviceInfo->DeviceType,
  3182. DeviceInfo->wstrDeviceInterface,
  3183. &DeviceInfo->DeviceNumber);
  3185. pIrp->IoStatus.Information = sizeof(DEVICEINFO);
  3187. DeviceInfo->mmr=MMSYSERR_NOERROR;
  3189. break;
  3191. case IOCTL_WDMAUD_SET_PREFERRED_DEVICE:
  3192. DPF(DL_TRACE|FA_IOCTL,
  3193. ("IOCTL_WDMAUD_SET_PREFERRED_DEVICE %d",
  3194. DeviceInfo->DeviceNumber));
  3196. Status = SetPreferredDevice(pContext, DeviceInfo);
  3198. break;
  3200. case IOCTL_WDMAUD_OPEN_PIN:
  3201. DPF(DL_TRACE|FA_IOCTL, ("IOCTL_WDMAUD_OPEN_PIN"));
  3203. UpdatePreferredDevice(pContext);
  3205. Status = Dispatch_OpenPin(pIrp,
  3206. pContext,
  3207. DeviceInfo);
  3209. break;
  3211. case IOCTL_WDMAUD_CLOSE_PIN:
  3212. DPF(DL_TRACE|FA_IOCTL, ("IOCTL_WDMAUD_CLOSE_PIN"));
  3214. Status = Dispatch_ClosePin(pIrp,
  3215. pContext,
  3216. DeviceInfo);
  3218. break;
  3221. //
  3222. // WaveOut, wavein, midiout and midiin routines
  3223. //
  3225. case IOCTL_WDMAUD_WAVE_OUT_PAUSE:
  3226. case IOCTL_WDMAUD_WAVE_OUT_PLAY:
  3227. case IOCTL_WDMAUD_WAVE_OUT_RESET:
  3228. case IOCTL_WDMAUD_WAVE_OUT_BREAKLOOP:
  3229. case IOCTL_WDMAUD_WAVE_IN_STOP:
  3230. case IOCTL_WDMAUD_WAVE_IN_RECORD:
  3231. case IOCTL_WDMAUD_WAVE_IN_RESET:
  3232. case IOCTL_WDMAUD_MIDI_OUT_RESET:
  3233. case IOCTL_WDMAUD_MIDI_OUT_WRITE_DATA:
  3234. case IOCTL_WDMAUD_MIDI_IN_STOP:
  3235. case IOCTL_WDMAUD_MIDI_IN_RECORD:
  3236. case IOCTL_WDMAUD_MIDI_IN_RESET:
  3237. Status = Dispatch_State(pIrp,
  3238. pContext,
  3239. DeviceInfo,
  3240. IoCode);
  3241. break;
  3243. case IOCTL_WDMAUD_WAVE_OUT_GET_POS:
  3244. case IOCTL_WDMAUD_WAVE_IN_GET_POS:
  3245. Status = Dispatch_WaveGetPos(pIrp,pContext,
  3246. DeviceInfo,IoCode);
  3247. break;
  3249. case IOCTL_WDMAUD_GET_VOLUME:
  3250. case IOCTL_WDMAUD_WAVE_OUT_GET_VOLUME:
  3251. case IOCTL_WDMAUD_MIDI_OUT_GET_VOLUME:
  3252. Status = Dispatch_GetVolume(pIrp,pContext,
  3253. DeviceInfo,IoCode);
  3254. break;
  3256. case IOCTL_WDMAUD_SET_VOLUME:
  3257. case IOCTL_WDMAUD_WAVE_OUT_SET_VOLUME:
  3258. case IOCTL_WDMAUD_MIDI_OUT_SET_VOLUME:
  3259. Status = Dispatch_SetVolume(pIrp,pContext,
  3260. DeviceInfo,IoCode);
  3261. break;
  3263. case IOCTL_WDMAUD_WAVE_OUT_WRITE_PIN:
  3264. {
  3265. BOOL bCompletedIrp = FALSE;
  3266. DPF(DL_TRACE|FA_IOCTL, ("IOCTL_WDMAUD_WAVE_OUT_WRITE_PIN"));
  3268. Status = Dispatch_WaveOutWritePin(pIrp,pContext,
  3269. DeviceInfo,&bCompletedIrp);
  3270. if( bCompletedIrp )
  3271. {
  3272. //
  3273. // !!! NOTE: Must return here so that we don't call IoCompleteRequest later !!!
  3274. //
  3275. WdmaReleaseMutex(pContext);
  3277. // For 32 bit irps we do NOT need to thunk DeviceInfo back to 32 bits, since
  3278. // nothing in this case statement has written anything into the DeviceInfo
  3279. // structure. If thunking back is ever required, make sure to NOT touch a
  3280. // potentially already completed irp. WriteWaveOutPin now completes the irp
  3281. // in some cases.
  3283. return Status ;
  3284. }
  3285. //
  3286. // If there was some problem trying to schedule the Irp we will
  3287. // end up here. bCompleteIrp will still be FALSE indicating that
  3288. // we need to complete the Irp. So, we break out of the switch
  3289. // statement, endin up at the end of SoundDispatch perform cleanup
  3290. // and complete the Irp.
  3291. //
  3292. }
  3293. break;
  3295. //
  3296. // WaveIn routines
  3297. //
  3299. case IOCTL_WDMAUD_WAVE_IN_READ_PIN:
  3300. {
  3301. BOOL bCompletedIrp = FALSE;
  3302. DPF(DL_TRACE|FA_IOCTL, ("IOCTL_WDMAUD_WAVE_IN_READ_PIN"));
  3304. Status = Dispatch_WaveInReadPin(pIrp,pContext,
  3305. DeviceInfo,&bCompletedIrp);
  3306. if( bCompletedIrp )
  3307. {
  3308. //
  3309. // Don't need the lock any longer.
  3310. //
  3311. WdmaReleaseMutex(pContext);
  3313. return Status;
  3314. }
  3316. // For 32 bit irps we do NOT need to thunk DeviceInfo back to 32 bits, since
  3317. // nothing in this case statement has written anything into the DeviceInfo
  3318. // structure. If thunking back is ever required, make sure to NOT touch a
  3319. // potentially already completed irp. ReadWaveInPin now completes the irp
  3320. // in some cases.
  3321. //
  3322. // If there was some problem trying to schedule the Irp we will
  3323. // end up here. bCompleteIrp will still be FALSE indicating that
  3324. // we need to complete the Irp. So, we break out of the switch
  3325. // statement, endin up at the end of SoundDispatch perform cleanup
  3326. // and complete the Irp.
  3327. //
  3328. }
  3329. break;
  3330. //
  3331. // MidiOut routines
  3332. //
  3334. case IOCTL_WDMAUD_MIDI_OUT_WRITE_LONGDATA:
  3335. {
  3336. BOOL bCompletedIrp = FALSE;
  3337. DPF(DL_TRACE|FA_IOCTL, ("IOCTL_WDMAUD_MIDI_OUT_WRITE_LONGDATA"));
  3339. Status = Dispatch_MidiOutWriteLongdata(pIrp,
  3340. pContext,
  3341. DeviceInfo,
  3342. &bCompletedIrp);
  3344. //
  3345. // If it was completed already, don't do it again!
  3346. //
  3347. if( bCompletedIrp )
  3348. {
  3349. //
  3350. // Don't need the lock any longer.
  3351. //
  3352. WdmaReleaseMutex(pContext);
  3354. // For 32 bit irps we do NOT need to thunk DeviceInfo back to 32 bits, since
  3355. // nothing in this case statement has written anything into the DeviceInfo
  3356. // structure. If thunking back is ever required, make sure to NOT touch a
  3357. // potentially already completed irp. wdmaudUnprepareIrp now completes the irp
  3358. // in most cases.
  3359. return Status;
  3360. }
  3361. //
  3362. // If there was some problem trying to schedule the Irp we will
  3363. // end up here. bCompleteIrp will still be FALSE indicating that
  3364. // we need to complete the Irp. So, we break out of the switch
  3365. // statement, endin up at the end of SoundDispatch perform cleanup
  3366. // and complete the Irp.
  3367. //
  3368. }
  3369. break;
  3371. //
  3372. // MidiIn routines
  3373. //
  3374. //
  3375. // Buffers for recording MIDI messages...
  3376. //
  3377. case IOCTL_WDMAUD_MIDI_IN_READ_PIN:
  3378. {
  3379. BOOL bCompletedIrp = FALSE;
  3380. DPF(DL_TRACE|FA_IOCTL, ("IOCTL_WDMAUD_MIDI_IN_READ_PIN"));
  3382. Status = Dispatch_MidiInReadPin(pIrp,pContext,
  3383. DeviceInfo,&bCompletedIrp);
  3384. //
  3385. // If it was completed already, don't do it again!
  3386. //
  3387. if( bCompletedIrp )
  3388. {
  3389. //
  3390. // Don't need the lock any longer.
  3391. //
  3392. WdmaReleaseMutex(pContext);
  3394. // For 32 bit irps we do NOT need to thunk DeviceInfo back to 32 bits, since
  3395. // nothing in this case statement has written anything into the DeviceInfo
  3396. // structure. If thunking back is ever required, make sure to NOT touch a
  3397. // potentially already completed irp. wdmaudUnprepareIrp now completes the irp
  3398. // in most cases.
  3399. return Status;
  3400. }
  3401. //
  3402. // If there was some problem trying to schedule the Irp we will
  3403. // end up here. bCompleteIrp will still be FALSE indicating that
  3404. // we need to complete the Irp. So, we break out of the switch
  3405. // statement, endin up at the end of SoundDispatch perform cleanup
  3406. // and complete the Irp.
  3407. //
  3408. }
  3409. break;
  3411. case IOCTL_WDMAUD_MIXER_OPEN:
  3412. DPF(DL_TRACE|FA_IOCTL, ("IOCTL_WDMAUD_MIXER_OPEN"));
  3413. {
  3414. extern PKEVENT pHardwareCallbackEvent;
  3416. if (DataBufferSize != 0)
  3417. {
  3418. Status = STATUS_INVALID_BUFFER_SIZE;
  3419. DeviceInfo->mmr = MMSYSERR_INVALPARAM;
  3420. pIrp->IoStatus.Information = sizeof(DEVICEINFO);
  3421. break;
  3422. }
  3424. if (pHardwareCallbackEvent==NULL && DeviceInfo->HardwareCallbackEventHandle) {
  3425. Status = ObReferenceObjectByHandle(DeviceInfo->HardwareCallbackEventHandle, EVENT_ALL_ACCESS, *ExEventObjectType, pIrp->RequestorMode, (PVOID *)&pHardwareCallbackEvent, NULL);
  3426. if (Status!=STATUS_SUCCESS) {
  3427. DPF(DL_WARNING|FA_IOCTL, ("Could not reference hardware callback event object!"));
  3428. }
  3429. }
  3431. Status = kmxlOpenHandler( pContext, DeviceInfo, NULL );
  3433. pIrp->IoStatus.Information = sizeof(DEVICEINFO);
  3434. }
  3435. break;
  3437. case IOCTL_WDMAUD_MIXER_CLOSE:
  3438. DPF(DL_TRACE|FA_IOCTL, ("IOCTL_WDMAUD_MIXER_CLOSE"));
  3439. if (DataBufferSize != 0)
  3440. {
  3441. Status = STATUS_INVALID_PARAMETER;
  3442. DeviceInfo->mmr = MMSYSERR_INVALPARAM;
  3443. pIrp->IoStatus.Information = sizeof(DEVICEINFO);
  3444. break;
  3445. }
  3447. Status = kmxlCloseHandler( DeviceInfo, NULL );
  3449. pIrp->IoStatus.Information = sizeof(DEVICEINFO);
  3450. break;
  3452. case IOCTL_WDMAUD_MIXER_GETLINEINFO:
  3453. DPF(DL_TRACE|FA_IOCTL, ("IOCTL_WDMAUD_MIXER_GETLINEINFO"));
  3455. Status = Dispatch_GetLineInfo(pIrp,
  3456. pContext,
  3457. DeviceInfo);
  3458. break;
  3460. case IOCTL_WDMAUD_MIXER_GETLINECONTROLS:
  3461. {
  3462. DPF(DL_TRACE|FA_IOCTL, ("IOCTL_WDMAUD_MIXER_GETLINECONTROLS"));
  3464. Status = Dispatch_GetLineControls(pIrp,
  3465. pContext,
  3466. DeviceInfo);
  3467. break;
  3468. }
  3470. case IOCTL_WDMAUD_MIXER_GETCONTROLDETAILS:
  3471. {
  3472. DPF(DL_TRACE|FA_IOCTL, ("IOCTL_WDMAUD_MIXER_GETCONTROLDETAILS"));
  3473. Status = Dispatch_GetControlDetails(pIrp,
  3474. pContext,
  3475. DeviceInfo);
  3476. break;
  3477. }
  3479. case IOCTL_WDMAUD_MIXER_SETCONTROLDETAILS:
  3480. {
  3481. DPF(DL_TRACE|FA_IOCTL, ("IOCTL_WDMAUD_MIXER_SETCONTROLDETAILS"));
  3482. Status = Dispatch_SetControlDetails(pIrp,
  3483. pContext,
  3484. DeviceInfo);
  3485. break;
  3486. }
  3488. case IOCTL_WDMAUD_MIXER_GETHARDWAREEVENTDATA:
  3489. {
  3490. DPF(DL_TRACE|FA_IOCTL, ("IOCTL_WDMAUD_MIXER_GETHARDWAREEVENTDATA"));
  3491. Status = Dispatch_GetHardwareEventData(pIrp,
  3492. DeviceInfo);
  3493. break;
  3494. }
  3496. default:
  3497. {
  3498. Status = STATUS_NOT_SUPPORTED;
  3499. break;
  3500. }
  3501. } // end of switch on IOCTL
  3502. break;
  3503. }
  3505. default:
  3506. {
  3507. Status = STATUS_NOT_SUPPORTED;
  3508. break;
  3509. }
  3510. } // end of switch on IRP_MAJOR_XXXX
  3512. #ifdef _WIN64
  3513. if (IoIs32bitProcess(pIrp)) {
  3514. if (DeviceInfo32!=NULL) {
  3515. ThunkDeviceInfo6432(DeviceInfo, DeviceInfo32);
  3516. }
  3517. else {
  3518. DPF(DL_WARNING|FA_IOCTL,("DeviceInfo32") );
  3519. }
  3520. }
  3521. #endif
  3523. //
  3524. // Now complete the IRP
  3525. //
  3526. pIrp->IoStatus.Status = Status;
  3527. IoCompleteRequest(pIrp, IO_NO_INCREMENT);
  3529. WdmaReleaseMutex(pContext);
  3531. RETURN( Status );
  3532. }