archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
7 Commits
1 Branch
0 Tags
2.0 GiB
Tree: 9769ad7c3d
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '9769ad7c3d'
${ noResults }
windows-xp/Source/XPSP1/NT/base/ntos/ps/psenum.c

590 lines
13 KiB
Raw Normal View History

Add source files
4 years ago
  1. /*++
  3. Copyright (c) 2000 Microsoft Corporation
  5. Module Name:
  7. psenum.c
  9. Abstract:
  11. This module enumerates the actve processes in the system
  13. Author:
  15. Neill clift (NeillC) 23-Mar-2000
  18. Revision History:
  20. --*/
  22. #include "psp.h"
  24. #ifdef ALLOC_PRAGMA
  25. #pragma alloc_text(PAGE, PsEnumProcesses)
  26. #pragma alloc_text(PAGE, PsGetNextProcess)
  27. #pragma alloc_text(PAGE, PsQuitNextProcess)
  28. #pragma alloc_text(PAGE, PsEnumProcessThreads)
  29. #pragma alloc_text(PAGE, PsGetNextProcessThread)
  30. #pragma alloc_text(PAGE, PsQuitNextProcessThread)
  31. #pragma alloc_text(PAGE, PsGetNextJob)
  32. #pragma alloc_text(PAGE, PsGetNextJobProcess)
  33. #pragma alloc_text(PAGE, PsQuitNextJob)
  34. #pragma alloc_text(PAGE, PsQuitNextJobProcess)
  35. #pragma alloc_text(PAGE, PspGetNextJobProcess)
  36. #pragma alloc_text(PAGE, PspQuitNextJobProcess)
  37. #endif
  39. NTSTATUS
  40. PsEnumProcesses (
  41. IN PROCESS_ENUM_ROUTINE CallBack,
  42. IN PVOID Context
  43. )
  44. /*++
  46. Routine Description:
  48. This function calls the callback routine for each active process in the system.
  49. Process objects in the process of being deleted are skipped.
  50. Returning anything but a success code from the callback routine terminates the enumeration at that point.
  51. Processes may be referenced and used later safely.
  53. Arguments:
  55. CallBack - Routine to be called with its first parameter the enumerated process
  57. Return Value:
  59. NTSTATUS - Status of call
  61. --*/
  62. {
  63. PLIST_ENTRY ListEntry;
  64. PEPROCESS Process, NewProcess;
  65. PETHREAD CurrentThread;
  66. NTSTATUS Status;
  68. Process = NULL;
  70. CurrentThread = PsGetCurrentThread ();
  72. PspLockProcessList(CurrentThread);
  74. for (ListEntry = PsActiveProcessHead.Flink;
  75. ListEntry != &PsActiveProcessHead;
  76. ListEntry = ListEntry->Flink) {
  78. NewProcess = CONTAINING_RECORD (ListEntry, EPROCESS, ActiveProcessLinks);
  79. if (ObReferenceObjectSafe (NewProcess)) {
  81. PspUnlockProcessList(CurrentThread);
  83. if (Process != NULL) {
  84. ObDereferenceObject (Process);
  85. }
  87. Process = NewProcess;
  89. Status = CallBack (Process, Context);
  91. if (!NT_SUCCESS (Status)) {
  92. ObDereferenceObject (Process);
  93. return Status;
  94. }
  96. PspLockProcessList(CurrentThread);
  98. }
  99. }
  101. PspUnlockProcessList(CurrentThread);
  103. if (Process != NULL) {
  104. ObDereferenceObject (Process);
  105. }
  107. return STATUS_SUCCESS;
  108. }
  110. PEPROCESS
  111. PsGetNextProcess (
  112. IN PEPROCESS Process
  113. )
  114. /*++
  116. Routine Description:
  118. This function allows code to enumerate all the active processes in the system.
  119. The first process (if Process is NULL) or subsequent process (if process not NULL) is returned on
  120. each call.
  121. If process is not NULL then this process must have previously been obtained by a call to PsGetNextProcess.
  122. Enumeration may be terminated early by calling PsQuitNextProcess on the last non-NULL process
  123. returned by PsGetNextProcess.
  125. Processes may be referenced and used later safely.
  127. For example, to enumerate all system processes in a loop use this code fragment:
  129. for (Process = PsGetNextProcess (NULL);
  130. Process != NULL;
  131. Process = PsGetNextProcess (Process)) {
  132. ...
  133. ...
  134. //
  135. // Early terminating conditions are handled like this:
  136. //
  137. if (NeedToBreakOutEarly) {
  138. PsQuitNextProcess (Process);
  139. break;
  140. }
  141. }
  144. Arguments:
  146. Process - Process to get the next process from or NULL for the first process
  148. Return Value:
  150. PEPROCESS - Next process or NULL if no more processes available
  152. --*/
  153. {
  154. PEPROCESS NewProcess = NULL;
  155. PETHREAD CurrentThread;
  156. PLIST_ENTRY ListEntry;
  158. CurrentThread = PsGetCurrentThread ();
  160. PspLockProcessList (CurrentThread);
  162. for (ListEntry = (Process == NULL) ? PsActiveProcessHead.Flink : Process->ActiveProcessLinks.Flink;
  163. ListEntry != &PsActiveProcessHead;
  164. ListEntry = ListEntry->Flink) {
  166. NewProcess = CONTAINING_RECORD (ListEntry, EPROCESS, ActiveProcessLinks);
  168. //
  169. // Processes are removed from this list during process objected deletion (object reference count goes
  170. // to zero). To prevent double deletion of the process we need to do a safe reference here.
  171. //
  172. if (ObReferenceObjectSafe (NewProcess)) {
  173. break;
  174. }
  175. NewProcess = NULL;
  176. }
  177. PspUnlockProcessList (CurrentThread);
  179. if (Process != NULL) {
  180. ObDereferenceObject (Process);
  181. }
  183. return NewProcess;
  184. }
  187. VOID
  188. PsQuitNextProcess (
  189. IN PEPROCESS Process
  190. )
  191. /*++
  193. Routine Description:
  195. This function is used to terminate early a process enumeration using PsGetNextProcess
  197. Arguments:
  199. Process - Non-NULL process previously obtained by a call to PsGetNextProcess.
  201. Return Value:
  203. None
  205. --*/
  206. {
  207. ObDereferenceObject (Process);
  208. }
  210. PETHREAD
  211. PsGetNextProcessThread (
  212. IN PEPROCESS Process,
  213. IN PETHREAD Thread
  214. )
  215. /*++
  217. Routine Description:
  219. This function is used to enumerate the threads in a process.
  222. Arguments:
  224. Process - Process to enumerate
  225. Thread - Thread to start enumeration from. This must have been obtained from previous call to
  226. PsGetNextProcessThread. If NULL enumeration starts at the first non-terminating thread in the process.
  228. Return Value:
  230. PETHREAD - Pointer to a non-terminated process thread or a NULL if there are non. This thread must be passed
  231. either to another call to PsGetNextProcessThread or PsQuitNextProcessThread.
  233. --*/
  234. {
  235. PLIST_ENTRY ListEntry;
  236. PETHREAD NewThread, CurrentThread;
  238. PAGED_CODE ();
  240. CurrentThread = PsGetCurrentThread ();
  242. PspLockProcessShared (Process, CurrentThread);
  244. for (ListEntry = (Thread == NULL) ? Process->ThreadListHead.Flink : Thread->ThreadListEntry.Flink;
  245. ;
  246. ListEntry = ListEntry->Flink) {
  247. if (ListEntry != &Process->ThreadListHead) {
  248. NewThread = CONTAINING_RECORD (ListEntry, ETHREAD, ThreadListEntry);
  249. //
  250. // Don't reference a thread thats in its delete routine
  251. //
  252. if (ObReferenceObjectSafe (NewThread)) {
  253. break;
  254. }
  255. } else {
  256. NewThread = NULL;
  257. break;
  258. }
  259. }
  260. PspUnlockProcessShared (Process, CurrentThread);
  262. if (Thread != NULL) {
  263. ObDereferenceObject (Thread);
  264. }
  265. return NewThread;
  266. }
  268. VOID
  269. PsQuitNextProcessThread (
  270. IN PETHREAD Thread
  271. )
  272. /*++
  274. Routine Description:
  276. This function quits thread enumeration early.
  278. Arguments:
  280. Thread - Thread obtained from a call to PsGetNextProcessThread
  282. Return Value:
  284. None.
  286. --*/
  287. {
  288. ObDereferenceObject (Thread);
  289. }
  291. NTSTATUS
  292. PsEnumProcessThreads (
  293. IN PEPROCESS Process,
  294. IN THREAD_ENUM_ROUTINE CallBack,
  295. IN PVOID Context
  296. )
  297. /*++
  299. Routine Description:
  301. This function calls the callback routine for each active thread in the process.
  302. Thread objects in the process of being deleted are skipped.
  303. Returning anything but a success code from the callback routine terminates the enumeration at that point.
  304. Thread may be referenced and used later safely.
  306. Arguments:
  308. CallBack - Routine to be called with its first parameter the enumerated process
  310. Return Value:
  312. NTSTATUS - Status of call
  314. --*/
  315. {
  316. NTSTATUS Status;
  317. PETHREAD Thread;
  319. Status = STATUS_SUCCESS;
  320. for (Thread = PsGetNextProcessThread (Process, NULL);
  321. Thread != NULL;
  322. Thread = PsGetNextProcessThread (Process, Thread)) {
  323. Status = CallBack (Process, Thread, Context);
  324. if (!NT_SUCCESS (Status)) {
  325. PsQuitNextProcessThread (Thread);
  326. break;
  327. }
  328. }
  329. return Status;
  330. }
  332. PEJOB
  333. PsGetNextJob (
  334. IN PEJOB Job
  335. )
  336. /*++
  338. Routine Description:
  340. This function allows code to enumerate all the active jobs in the system.
  341. The first job (if Job is NULL) or subsequent jobs (if Job not NULL) is returned on
  342. each call.
  343. If Job is not NULL then this job must have previously been obtained by a call to PsGetNextJob.
  344. Enumeration may be terminated early by calling PsQuitNextJob on the last non-NULL job
  345. returned by PsGetNextJob.
  347. Jobs may be referenced and used later safely.
  349. For example, to enumerate all system jobs in a loop use this code fragment:
  351. for (Job = PsGetNextJob (NULL);
  352. Job != NULL;
  353. Job = PsGetNextJob (Job)) {
  354. ...
  355. ...
  356. //
  357. // Early terminating conditions are handled like this:
  358. //
  359. if (NeedToBreakOutEarly) {
  360. PsQuitNextJob (Job);
  361. break;
  362. }
  363. }
  366. Arguments:
  368. Job - Job from a previous call to PsGetNextJob or NULL for the first job in the system
  370. Return Value:
  372. PEJOB - Next job in the system or NULL if none available.
  374. --*/
  375. {
  376. PEJOB NewJob = NULL;
  377. PLIST_ENTRY ListEntry;
  379. ExAcquireFastMutex (&PspJobListLock);
  381. for (ListEntry = (Job == NULL) ? PspJobList.Flink : Job->JobLinks.Flink;
  382. ListEntry != &PspJobList;
  383. ListEntry = ListEntry->Flink) {
  385. NewJob = CONTAINING_RECORD (ListEntry, EJOB, JobLinks);
  387. //
  388. // Jobs are removed from this list during job objected deletion (object reference count goes
  389. // to zero). To prevent double deletion of the job we need to do a safe reference here.
  390. //
  391. if (ObReferenceObjectSafe (NewJob)) {
  392. break;
  393. }
  394. NewJob = NULL;
  395. }
  397. ExReleaseFastMutex (&PspJobListLock);
  399. if (Job != NULL) {
  400. ObDereferenceObject (Job);
  401. }
  403. return NewJob;
  404. }
  407. VOID
  408. PsQuitNextJob (
  409. IN PEJOB Job
  410. )
  411. /*++
  413. Routine Description:
  415. This function is used to terminate early a job enumeration using PsGetNextJob
  417. Arguments:
  419. Job - Non-NULL job previously obtained by a call to PsGetNextJob.
  421. Return Value:
  423. None
  425. --*/
  426. {
  427. ObDereferenceObject (Job);
  428. }
  430. PEPROCESS
  431. PsGetNextJobProcess (
  432. IN PEJOB Job,
  433. IN PEPROCESS Process
  434. )
  435. /*++
  437. Routine Description:
  439. This function is used to enumerate the processes in a job.
  442. Arguments:
  444. Job - Job to Enumerate
  445. Process - Process to start enumeration from. This must have been obtained from previous call to
  446. PsGetNextJobProcess. If NULL enumeration starts at the first non-terminating process in the Job.
  448. Return Value:
  450. PEPROCESS - Pointer to a non-terminated process or a NULL if there are non. This process must be passed
  451. either to another call to PsGetNextJobProcess or PsQuitNextJobProcess.
  453. --*/
  454. {
  455. PLIST_ENTRY ListEntry;
  456. PEPROCESS NewProcess;
  457. PETHREAD CurrentThread;
  459. PAGED_CODE ();
  461. CurrentThread = PsGetCurrentThread ();
  463. KeEnterCriticalRegionThread (&CurrentThread->Tcb);
  464. ExAcquireResourceExclusiveLite (&Job->JobLock, TRUE);
  466. for (ListEntry = (Process == NULL) ? Job->ProcessListHead.Flink : Process->JobLinks.Flink;
  467. ;
  468. ListEntry = ListEntry->Flink) {
  469. if (ListEntry != &Job->ProcessListHead) {
  470. NewProcess = CONTAINING_RECORD (ListEntry, EPROCESS, JobLinks);
  471. //
  472. // Don't reference a process thats in its delete routine
  473. //
  474. if (ObReferenceObjectSafe (NewProcess)) {
  475. break;
  476. }
  477. } else {
  478. NewProcess = NULL;
  479. break;
  480. }
  481. }
  483. ExReleaseResourceLite (&Job->JobLock);
  484. KeLeaveCriticalRegionThread (&CurrentThread->Tcb);
  487. if (Process != NULL) {
  488. ObDereferenceObject (Process);
  489. }
  490. return NewProcess;
  491. }
  493. VOID
  494. PsQuitNextJobProcess (
  495. IN PEPROCESS Process
  496. )
  497. /*++
  499. Routine Description:
  501. This function quits job process enumeration early.
  503. Arguments:
  505. Process - Process obtained from a call to PsGetNextJobProcess
  507. Return Value:
  509. None.
  511. --*/
  512. {
  513. ObDereferenceObject (Process);
  514. }
  516. PEPROCESS
  517. PspGetNextJobProcess (
  518. IN PEJOB Job,
  519. IN PEPROCESS Process
  520. )
  521. /*++
  523. Routine Description:
  525. This function is used to enumerate the processes in a job with the job lock held.
  528. Arguments:
  530. Job - Job to Enumerate
  531. Process - Process to start enumeration from. This must have been obtained from previous call to
  532. PsGetNextJobProcess. If NULL enumeration starts at the first non-terminating process in the Job.
  534. Return Value:
  536. PEPROCESS - Pointer to a non-terminated process or a NULL if there are non. This process must be passed
  537. either to another call to PsGetNextJobProcess or PsQuitNextJobProcess.
  539. --*/
  540. {
  541. PLIST_ENTRY ListEntry;
  542. PEPROCESS NewProcess;
  544. PAGED_CODE ();
  546. for (ListEntry = (Process == NULL) ? Job->ProcessListHead.Flink : Process->JobLinks.Flink;
  547. ;
  548. ListEntry = ListEntry->Flink) {
  549. if (ListEntry != &Job->ProcessListHead) {
  550. NewProcess = CONTAINING_RECORD (ListEntry, EPROCESS, JobLinks);
  551. //
  552. // Don't reference a process thats in its delete routine
  553. //
  554. if (ObReferenceObjectSafe (NewProcess)) {
  555. break;
  556. }
  557. } else {
  558. NewProcess = NULL;
  559. break;
  560. }
  561. }
  563. if (Process != NULL) {
  564. ObDereferenceObjectDeferDelete (Process);
  565. }
  566. return NewProcess;
  567. }
  569. VOID
  570. PspQuitNextJobProcess (
  571. IN PEPROCESS Process
  572. )
  573. /*++
  575. Routine Description:
  577. This function quits job process enumeration early.
  579. Arguments:
  581. Process - Process obtained from a call to PsGetNextJobProcess
  583. Return Value:
  585. None.
  587. --*/
  588. {
  589. ObDereferenceObjectDeferDelete (Process);
  590. }