archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
8 Commits
1 Branch
0 Tags
2.0 GiB
Tree: 744f0b4006
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '744f0b4006'
${ noResults }
windows-xp/Source/XPSP1/NT/inetsrv/iis/iisrearc/ul/misc/nt4hack.txt

131 lines
4.8 KiB
Raw Normal View History

Add source files
4 years ago
  1. This file describes the internals of ul\drv\nt4hack.h that enable building
  2. UL for NT5 and NT4.
  5. 1. The symbol TARGET_NT4 is defined when building for NT4; it is not
  6. defined when building for NT5.
  9. 2. A portion of the NT4 build environment must be used to build NT4-
  10. compatible drivers. This is necessary because:
  12. a. _except_handler3 is part of the kernel-mode exception
  13. handling/dispatching mechanism.
  15. b. All kernel-mode drivers link to ntoskrnl.lib. This is a
  16. hybrid link-library containing mostly import definitions
  17. for those routines exported by ntoskrnl.exe. This library
  18. also contains the actual implementations of a few routines.
  20. c. The NT4 version of ntoskrnl.lib contains the actual
  21. _except_handler3 implemenation. As a result, each NT4 driver
  22. contains a copy of this _except_handler3 implementation.
  24. d. The NT5 version of ntoskrnl.lib contains an import
  25. definition for _except_handler3. As a result, each NT5
  26. driver imports _except_handler3 from the kernel.
  28. e. Since NT5 drivers import _except_handler3 from the kernel,
  29. and _except_handler3 is not exported from the NT4 kernel,
  30. then NT5 drivers will not load under NT4.
  33. 3. When the build target is NT4, nt4hack.h manually #includes basetsd.h.
  34. This file is #included by ntdef.h in the NT5 build environment, but
  35. does not exist in the NT4 build environment. #including this file
  36. enables UL to use the pointer-size-neutral types (such as SIZE_T
  37. and ULONG_PTR), even on NT4 builds.
  40. 4. nt4hack.h defines a few macros & constants newly introduced in the
  41. NT5 build environment. These include C_ASSERT, EXTERN_C, and
  42. ANSI_NULL.
  45. 5. The function prototypes for ExInterlockedCompareExchange64() and
  46. InterlockedCompareExchange() differ between the NT4 and NT5 build
  47. environments. For NT4 they are defined as:
  49. NTKERNELAPI
  50. ULONGLONG
  51. FASTCALL
  52. ExInterlockedCompareExchange64(
  53. IN PULONGLONG Destination,
  54. IN PULONGLONG Exchange,
  55. IN PULONGLONG Comperand,
  56. IN PKSPIN_LOCK Lock
  57. );
  59. PVOID
  60. FASTCALL
  61. InterlockedCompareExchange(
  62. IN OUT PVOID *Destination,
  63. IN PVOID ExChange,
  64. IN PVOID Comperand
  65. );
  67. Under NT5 they are defined as:
  69. NTKERNELAPI
  70. LONGLONG
  71. FASTCALL
  72. ExInterlockedCompareExchange64(
  73. IN PLONGLONG Destination,
  74. IN PLONGLONG Exchange,
  75. IN PLONGLONG Comperand,
  76. IN PKSPIN_LOCK Lock
  77. );
  79. NTKERNELAPI
  80. LONG
  81. FASTCALL
  82. InterlockedCompareExchange(
  83. IN OUT PLONG Destination,
  84. IN LONG ExChange,
  85. IN LONG Comperand
  86. );
  88. nt4hack.h #defines UlInterlockedCompareExchange64() and
  89. UlInterlockedCompareExchange() with a few key type casts to ensure
  90. commonality between platforms.
  93. 6. NT5 introduced the OBJ_KERNEL_HANDLE flag. This flag may be set in
  94. the Attributes field of the OBJECT_ATTRIBUTES structure used as a
  95. parameter for many NT APIs that create named objects. When an
  96. object is opened or created with this flag set, the object is created
  97. or opened using the security context of the calling thread, but the
  98. resulting handle is only valid in the system process. Since the handle
  99. is only valid in the system process, it is impossible for a user-mode
  100. process to close, duplicate, or otherwise manipulate the handle or
  101. the underlying object.
  103. This is a Good Thing. Unfortunately, NT4 does not support this flag.
  105. Fortunately, NT4 supports the KeAttachProcess() and KeDetachProcess()
  106. APIs. KeAttachProcess() allows a thread in one process to attach to
  107. the address space & handle table of another process. Any handles
  108. created while attached to another process are only valid in the
  109. context of the attached process.
  111. nt4hack.h hides these differences by defining:
  113. UL_KERNEL_HANDLE
  114. UlAttachToSystemProcess()
  115. UlDetachFromSystemProcess()
  116. UlCloseSystemHandle()
  118. Under NT4, UL_KERNEL_HANDLE is 0; under NT5 it is OBJ_KERNEL_HANDLE.
  119. UL sets this flag whenever initializing an OBJECT_ATTRIBUTES structure.
  121. Under NT4, UlAttachToSystemProcess() calls KeAttachProcess() to attach
  122. to the system process; under NT5 it is a no-op.
  124. Under NT4, UlDetachFromSystemProcess() calls KeDetachProcess(); under
  125. NT5 it is a no-op.
  127. UlCloseSystemHandle() calls UlAttachToSystemProcess(), ZwClose() to
  128. close the specified handle, then UlDetachFromSystemProcess(). So,
  129. under NT5, UlCloseSystemHandle() is basically a #define to ZwClose().
  130. Under NT4, it must attach before the close and detach afterwards.