archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
8 Commits
1 Branch
0 Tags
2.0 GiB
Tree: 744f0b4006
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '744f0b4006'
${ noResults }
windows-xp/Source/XPSP1/NT/termsrv/drivers/termdd/connect.c

518 lines
16 KiB
Raw Normal View History

Add source files
4 years ago
  2. /*************************************************************************
  3. *
  4. * connect.c
  5. *
  6. * This module contains routines for managing TerminalServer connections.
  7. *
  8. * Copyright 1998, Microsoft.
  9. *
  10. *************************************************************************/
  12. /*
  13. * Includes
  14. */
  15. #include <precomp.h>
  16. #pragma hdrstop
  18. NTSTATUS
  19. _IcaCallStack(
  20. IN PICA_STACK pStack,
  21. IN ULONG ProcIndex,
  22. IN OUT PVOID pParms
  23. );
  25. NTSTATUS
  26. IcaDeviceControlConnection (
  27. IN PICA_CONNECTION pConnect,
  28. IN PIRP Irp,
  29. IN PIO_STACK_LOCATION IrpSp
  30. );
  32. NTSTATUS
  33. IcaCleanupConnection (
  34. IN PICA_CONNECTION pConnect,
  35. IN PIRP Irp,
  36. IN PIO_STACK_LOCATION IrpSp
  37. );
  39. NTSTATUS
  40. IcaCloseConnection (
  41. IN PICA_CONNECTION pConnect,
  42. IN PIRP Irp,
  43. IN PIO_STACK_LOCATION IrpSp
  44. );
  46. NTSTATUS
  47. IcaStartStopTrace(
  48. IN PICA_TRACE_INFO pTraceInfo,
  49. IN PICA_TRACE pTrace
  50. );
  52. NTSTATUS
  53. IcaUnbindVirtualChannel(
  54. IN PICA_CONNECTION pConnect,
  55. IN PVIRTUALCHANNELNAME pVirtualName
  56. );
  58. /*
  59. * Local procedure prototypes
  60. */
  61. PICA_CONNECTION _IcaAllocateConnection( VOID );
  62. VOID _IcaFreeConnection( PICA_CONNECTION );
  65. /*
  66. * Dispatch table for ICA connection objects
  67. */
  68. PICA_DISPATCH IcaConnectionDispatchTable[IRP_MJ_MAXIMUM_FUNCTION+1] = {
  69. NULL, // IRP_MJ_CREATE
  70. NULL, // IRP_MJ_CREATE_NAMED_PIPE
  71. IcaCloseConnection, // IRP_MJ_CLOSE
  72. NULL, // IRP_MJ_READ
  73. NULL, // IRP_MJ_WRITE
  74. NULL, // IRP_MJ_QUERY_INFORMATION
  75. NULL, // IRP_MJ_SET_INFORMATION
  76. NULL, // IRP_MJ_QUERY_EA
  77. NULL, // IRP_MJ_SET_EA
  78. NULL, // IRP_MJ_FLUSH_BUFFERS
  79. NULL, // IRP_MJ_QUERY_VOLUME_INFORMATION
  80. NULL, // IRP_MJ_SET_VOLUME_INFORMATION
  81. NULL, // IRP_MJ_DIRECTORY_CONTROL
  82. NULL, // IRP_MJ_FILE_SYSTEM_CONTROL
  83. IcaDeviceControlConnection, // IRP_MJ_DEVICE_CONTROL
  84. NULL, // IRP_MJ_INTERNAL_DEVICE_CONTROL
  85. NULL, // IRP_MJ_SHUTDOWN
  86. NULL, // IRP_MJ_LOCK_CONTROL
  87. IcaCleanupConnection, // IRP_MJ_CLEANUP
  88. NULL, // IRP_MJ_CREATE_MAILSLOT
  89. NULL, // IRP_MJ_QUERY_SECURITY
  90. NULL, // IRP_MJ_SET_SECURITY
  91. NULL, // IRP_MJ_SET_POWER
  92. NULL, // IRP_MJ_QUERY_POWER
  93. };
  95. extern PERESOURCE IcaTraceResource;
  97. // resource used to protect access to the code that start/stops the keep alive thread
  98. PERESOURCE g_pKeepAliveResource;
  100. extern NTSTATUS _IcaKeepAlive(
  101. IN BOOLEAN startKeepAliveThread,
  102. IN ULONG interval );
  104. NTSTATUS
  105. IcaCreateConnection (
  106. IN PIRP Irp,
  107. IN PIO_STACK_LOCATION IrpSp
  108. )
  110. /*++
  112. Routine Description:
  114. This routine is called to create a new ICA_CONNECTION object.
  116. Arguments:
  118. Irp - Pointer to I/O request packet
  120. IrpSp - pointer to the stack location to use for this request.
  122. Return Value:
  124. NTSTATUS -- Indicates whether the request was successfully queued.
  126. --*/
  128. {
  129. PICA_CONNECTION pConnect;
  131. /*
  132. * Allocate a new ICA connect object
  133. */
  134. pConnect = _IcaAllocateConnection();
  135. if ( pConnect == NULL )
  136. return( STATUS_INSUFFICIENT_RESOURCES );
  138. /*
  139. * Save a pointer to the connection in the file object
  140. * so that we can find it in future calls.
  141. */
  142. IrpSp->FileObject->FsContext = pConnect;
  144. IcaDereferenceConnection( pConnect );
  146. return( STATUS_SUCCESS );
  147. }
  150. NTSTATUS
  151. IcaDeviceControlConnection(
  152. IN PICA_CONNECTION pConnect,
  153. IN PIRP Irp,
  154. IN PIO_STACK_LOCATION IrpSp
  155. )
  156. {
  157. ICA_TRACE LocalTrace;
  158. PICA_TRACE_BUFFER pTraceBuffer;
  159. ULONG code;
  160. SD_IOCTL SdIoctl;
  161. NTSTATUS Status;
  162. BOOLEAN bConnectionLocked = FALSE;
  163. BYTE *Buffer = NULL;
  164. PICA_KEEP_ALIVE pKeepAlive;
  166. /*
  167. * Extract the IOCTL control code and process the request.
  168. */
  169. code = IrpSp->Parameters.DeviceIoControl.IoControlCode;
  171. #if DBG
  172. if ( code != IOCTL_ICA_SYSTEM_TRACE && code != IOCTL_ICA_TRACE ) {
  173. TRACE(( pConnect, TC_ICADD, TT_API1, "ICADD: IcaDeviceControlConnection, fc %d (enter)\n",
  174. (code & 0x3fff) >> 2 ));
  175. }
  176. #endif
  178. try {
  179. switch ( code ) {
  181. case IOCTL_ICA_SET_SYSTEM_TRACE :
  183. // This IOCTL should only be invoked if we are called from system process
  184. // If not, we deny the request
  185. if (!((BOOLEAN)IrpSp->FileObject->FsContext2)) {
  186. return (STATUS_ACCESS_DENIED);
  187. }
  188. if ( IrpSp->Parameters.DeviceIoControl.InputBufferLength < sizeof(ICA_TRACE) )
  189. return( STATUS_BUFFER_TOO_SMALL );
  190. if ( Irp->RequestorMode != KernelMode ) {
  191. ProbeForRead(IrpSp->Parameters.DeviceIoControl.Type3InputBuffer, sizeof(ICA_TRACE), sizeof(BYTE) );
  192. }
  193. LocalTrace = *(PICA_TRACE)(IrpSp->Parameters.DeviceIoControl.Type3InputBuffer);
  195. KeEnterCriticalRegion();
  196. ExAcquireResourceExclusiveLite( IcaTraceResource, TRUE );
  198. try {
  200. Status = IcaStartStopTrace( &G_TraceInfo, &LocalTrace );
  202. } finally {
  204. ExReleaseResourceLite( IcaTraceResource );
  205. KeLeaveCriticalRegion();
  206. }
  207. break;
  209. case IOCTL_ICA_SET_TRACE :
  211. // This IOCTL should only be invoked if we are called from system process
  212. // If not, we deny the request
  213. if (!((BOOLEAN)IrpSp->FileObject->FsContext2)) {
  214. return (STATUS_ACCESS_DENIED);
  215. }
  216. if ( IrpSp->Parameters.DeviceIoControl.InputBufferLength < sizeof(ICA_TRACE) )
  217. return( STATUS_BUFFER_TOO_SMALL );
  218. if ( Irp->RequestorMode != KernelMode ) {
  219. ProbeForRead(IrpSp->Parameters.DeviceIoControl.Type3InputBuffer, IrpSp->Parameters.DeviceIoControl.InputBufferLength, sizeof(BYTE) );
  220. }
  221. LocalTrace = *(PICA_TRACE)(IrpSp->Parameters.DeviceIoControl.Type3InputBuffer);
  223. IcaLockConnection( pConnect );
  224. bConnectionLocked = TRUE;
  226. Status = IcaStartStopTrace( &pConnect->TraceInfo, &LocalTrace );
  229. if ( !IsListEmpty(&pConnect->StackHead)) {
  230. PICA_STACK pStack;
  231. pStack = CONTAINING_RECORD( pConnect->StackHead.Flink,
  232. ICA_STACK, StackEntry );
  233. SdIoctl.IoControlCode = code;
  234. SdIoctl.InputBuffer = IrpSp->Parameters.DeviceIoControl.Type3InputBuffer;
  235. SdIoctl.InputBufferLength = IrpSp->Parameters.DeviceIoControl.InputBufferLength;
  236. SdIoctl.OutputBuffer = NULL;
  237. SdIoctl.OutputBufferLength = 0;
  238. _IcaCallStack(pStack, SD$IOCTL, &SdIoctl);
  239. }
  241. IcaUnlockConnection( pConnect );
  242. break;
  244. case IOCTL_ICA_SYSTEM_TRACE :
  245. if ( IrpSp->Parameters.DeviceIoControl.InputBufferLength < (ULONG)(FIELD_OFFSET(ICA_TRACE_BUFFER,Data[0])) )
  246. return( STATUS_BUFFER_TOO_SMALL );
  247. if ( IrpSp->Parameters.DeviceIoControl.InputBufferLength > sizeof(ICA_TRACE_BUFFER) )
  248. return( STATUS_INVALID_BUFFER_SIZE );
  249. if ( Irp->RequestorMode != KernelMode ) {
  250. ProbeForRead(IrpSp->Parameters.DeviceIoControl.Type3InputBuffer, IrpSp->Parameters.DeviceIoControl.InputBufferLength, sizeof(BYTE) );
  251. }
  253. pTraceBuffer = IrpSp->Parameters.DeviceIoControl.Type3InputBuffer;
  255. KeEnterCriticalRegion();
  256. ExAcquireResourceExclusiveLite( IcaTraceResource, TRUE );
  258. try {
  260. IcaTraceFormat( &G_TraceInfo,
  261. pTraceBuffer->TraceClass,
  262. pTraceBuffer->TraceEnable,
  263. pTraceBuffer->Data );
  265. } finally {
  267. ExReleaseResourceLite( IcaTraceResource );
  268. KeLeaveCriticalRegion();
  269. }
  271. Status = STATUS_SUCCESS;
  272. break;
  274. case IOCTL_ICA_TRACE :
  275. if ( IrpSp->Parameters.DeviceIoControl.InputBufferLength < (ULONG)(FIELD_OFFSET(ICA_TRACE_BUFFER,Data[0])) )
  276. return( STATUS_BUFFER_TOO_SMALL );
  277. if ( IrpSp->Parameters.DeviceIoControl.InputBufferLength > sizeof(ICA_TRACE_BUFFER) )
  278. return( STATUS_INVALID_BUFFER_SIZE );
  279. if ( Irp->RequestorMode != KernelMode ) {
  280. ProbeForRead(IrpSp->Parameters.DeviceIoControl.Type3InputBuffer, IrpSp->Parameters.DeviceIoControl.InputBufferLength, sizeof(BYTE) );
  281. }
  283. pTraceBuffer = IrpSp->Parameters.DeviceIoControl.Type3InputBuffer;
  284. IcaLockConnection( pConnect );
  285. bConnectionLocked=TRUE;
  286. IcaTraceFormat( &pConnect->TraceInfo,
  287. pTraceBuffer->TraceClass,
  288. pTraceBuffer->TraceEnable,
  289. pTraceBuffer->Data );
  290. IcaUnlockConnection( pConnect );
  291. Status = STATUS_SUCCESS;
  292. break;
  294. case IOCTL_ICA_UNBIND_VIRTUAL_CHANNEL :
  295. if ( IrpSp->Parameters.DeviceIoControl.InputBufferLength < sizeof(VIRTUALCHANNELNAME) )
  296. return( STATUS_BUFFER_TOO_SMALL );
  297. if ( Irp->RequestorMode != KernelMode ) {
  298. ProbeForRead(IrpSp->Parameters.DeviceIoControl.Type3InputBuffer, sizeof(VIRTUALCHANNELNAME), sizeof(BYTE) );
  299. }
  301. if (IrpSp->Parameters.DeviceIoControl.InputBufferLength) {
  302. Buffer = ICA_ALLOCATE_POOL( NonPagedPool,
  303. IrpSp->Parameters.DeviceIoControl.InputBufferLength);
  304. if (Buffer) {
  305. memcpy(Buffer, IrpSp->Parameters.DeviceIoControl.Type3InputBuffer,
  306. IrpSp->Parameters.DeviceIoControl.InputBufferLength);
  307. }
  308. else {
  309. Status = STATUS_NO_MEMORY;
  310. break;
  311. }
  312. }
  314. IcaLockConnection( pConnect );
  315. bConnectionLocked = TRUE;
  316. Status = IcaUnbindVirtualChannel( pConnect, (PVIRTUALCHANNELNAME)Buffer );
  317. IcaUnlockConnection( pConnect );
  319. break;
  321. case IOCTL_ICA_SET_SYSTEM_PARAMETERS:
  322. // Settings coming from TermSrv, copy to global variable.
  323. if (IrpSp->Parameters.DeviceIoControl.InputBufferLength <
  324. sizeof(TERMSRV_SYSTEM_PARAMS))
  325. return(STATUS_BUFFER_TOO_SMALL);
  326. if (Irp->RequestorMode != KernelMode)
  327. ProbeForRead(IrpSp->Parameters.DeviceIoControl.
  328. Type3InputBuffer, sizeof(TERMSRV_SYSTEM_PARAMS),
  329. sizeof(BYTE));
  330. SysParams = *(PTERMSRV_SYSTEM_PARAMS)(IrpSp->Parameters.
  331. DeviceIoControl.Type3InputBuffer);
  332. Status = STATUS_SUCCESS;
  333. break;
  335. case IOCTL_ICA_SYSTEM_KEEP_ALIVE:
  337. // This should only be invoked if we are called from system process
  338. // If not, we deny the request
  339. if (!((BOOLEAN)IrpSp->FileObject->FsContext2)) {
  340. return (STATUS_ACCESS_DENIED);
  341. }
  342. if ( IrpSp->Parameters.DeviceIoControl.InputBufferLength < sizeof(ICA_KEEP_ALIVE ) )
  343. return( STATUS_BUFFER_TOO_SMALL );
  345. if ( Irp->RequestorMode != KernelMode ) {
  346. ProbeForRead(IrpSp->Parameters.DeviceIoControl.Type3InputBuffer, sizeof(ICA_KEEP_ALIVE ), sizeof(BYTE) );
  347. }
  349. pKeepAlive = (PICA_KEEP_ALIVE)(IrpSp->Parameters.DeviceIoControl.Type3InputBuffer);
  351. KeEnterCriticalRegion();
  352. ExAcquireResourceExclusive( g_pKeepAliveResource, TRUE );
  354. try {
  356. Status = _IcaKeepAlive( pKeepAlive->start, pKeepAlive->interval );
  358. } finally {
  360. ExReleaseResource( g_pKeepAliveResource );
  361. KeLeaveCriticalRegion();
  362. }
  364. break;
  366. default:
  367. Status = STATUS_INVALID_DEVICE_REQUEST;
  368. break;
  369. }
  370. } except(EXCEPTION_EXECUTE_HANDLER){
  371. Status = GetExceptionCode();
  372. if (bConnectionLocked) {
  373. IcaUnlockConnection( pConnect );
  374. }
  375. }
  377. if (Buffer) {
  378. ICA_FREE_POOL(Buffer);
  379. Buffer = NULL;
  380. }
  382. #if DBG
  383. if ( code != IOCTL_ICA_SYSTEM_TRACE && code != IOCTL_ICA_TRACE ) {
  384. TRACE(( pConnect, TC_ICADD, TT_API1, "ICADD: IcaDeviceControlConnection, fc %d, 0x%x\n",
  385. (code & 0x3fff) >> 2, Status ));
  386. }
  387. #endif
  389. return( Status );
  390. }
  393. NTSTATUS
  394. IcaCleanupConnection(
  395. IN PICA_CONNECTION pConnect,
  396. IN PIRP Irp,
  397. IN PIO_STACK_LOCATION IrpSp
  398. )
  399. {
  400. return( STATUS_SUCCESS );
  401. }
  404. NTSTATUS
  405. IcaCloseConnection(
  406. IN PICA_CONNECTION pConnect,
  407. IN PIRP Irp,
  408. IN PIO_STACK_LOCATION IrpSp
  409. )
  410. {
  412. /*
  413. * Remove the file object reference for this connection.
  414. * This will cause the connection to be deleted when all other
  415. * references (including stack/channel references) are gone.
  416. */
  417. IcaDereferenceConnection( pConnect );
  419. return( STATUS_SUCCESS );
  420. }
  423. VOID
  424. IcaReferenceConnection(
  425. IN PICA_CONNECTION pConnect
  426. )
  427. {
  429. ASSERT( pConnect->RefCount >= 0 );
  431. /*
  432. * Increment the reference count
  433. */
  434. if ( InterlockedIncrement(&pConnect->RefCount) <= 0 ) {
  435. ASSERT( FALSE );
  436. }
  437. }
  440. VOID
  441. IcaDereferenceConnection(
  442. IN PICA_CONNECTION pConnect
  443. )
  444. {
  446. ASSERT( pConnect->RefCount > 0 );
  448. /*
  449. * Decrement the reference count; if it is 0, free the connection.
  450. */
  451. if ( InterlockedDecrement( &pConnect->RefCount) == 0 ) {
  452. _IcaFreeConnection( pConnect );
  453. }
  454. }
  457. PICA_CONNECTION
  458. _IcaAllocateConnection( VOID )
  459. {
  460. PICA_CONNECTION pConnect;
  461. NTSTATUS Status;
  463. pConnect = ICA_ALLOCATE_POOL( NonPagedPool, sizeof(*pConnect) );
  464. if ( pConnect == NULL )
  465. return NULL;
  467. RtlZeroMemory( pConnect, sizeof(*pConnect) );
  469. /*
  470. * Initialize the reference count to 2,
  471. * one for the caller's reference, one for the file object reference.
  472. */
  473. pConnect->RefCount = 2;
  475. /*
  476. * Initialize the rest of the connect object
  477. */
  478. pConnect->Header.Type = IcaType_Connection;
  479. pConnect->Header.pDispatchTable = IcaConnectionDispatchTable;
  480. ExInitializeResourceLite( &pConnect->Resource );
  481. ExInitializeResourceLite( &pConnect->ChannelTableLock );
  482. InitializeListHead( &pConnect->StackHead );
  483. InitializeListHead( &pConnect->ChannelHead );
  484. InitializeListHead( &pConnect->VcBindHead );
  487. return( pConnect );
  488. }
  491. VOID
  492. _IcaFreeConnection( PICA_CONNECTION pConnect )
  493. {
  494. ICA_TRACE TraceControl;
  495. PICA_CHANNEL pChannel;
  496. PLIST_ENTRY Head;
  498. ASSERT( pConnect->RefCount == 0 );
  499. ASSERT( IsListEmpty( &pConnect->StackHead ) );
  500. ASSERT( IsListEmpty( &pConnect->ChannelHead ) );
  501. ASSERT( IsListEmpty( &pConnect->VcBindHead ) );
  502. ASSERT( !ExIsResourceAcquiredExclusiveLite( &pConnect->Resource ) );
  504. TRACE(( pConnect, TC_ICADD, TT_API2, "ICADD: _IcaFreeConnection: %x\n", pConnect ));
  506. /*
  507. * Close trace file, if any
  508. */
  509. RtlZeroMemory( &TraceControl, sizeof(TraceControl) );
  510. (void) IcaStartStopTrace( &pConnect->TraceInfo, &TraceControl );
  512. ExDeleteResourceLite( &pConnect->Resource );
  513. ExDeleteResourceLite( &pConnect->ChannelTableLock );
  515. ICA_FREE_POOL( pConnect );
  516. }