#include <ntoskrnl.h>#include <debug.h>
Include dependency graph for file.c:
Go to the source code of this file.
Macros | |
| #define | NDEBUG |
Variables | |
| ERESOURCE | IopSecurityResource |
Macro Definition Documentation
◆ NDEBUG
Function Documentation
◆ IoCancelFileOpen()
| VOID NTAPI IoCancelFileOpen | ( | IN PDEVICE_OBJECT | DeviceObject, |
| IN PFILE_OBJECT | FileObject | ||
| ) |
Definition at line 3598 of file file.c.
3600{
3606
3607 /* Check if handles were already created for the
3608 * open file. If so, that's over.
3609 */
3611 KeBugCheckEx(INVALID_CANCEL_OF_FILE_OPEN,
3614
3615 /* Reset the events */
3618
3619 /* Allocate the IRP we'll use */
3621 /* Properly set it */
3629
3633
3634 /* Put on top of IRPs list of the thread */
3636
3637 /* Call the driver */
3640 {
3643 }
3644
3645 /* Remove from IRPs list */
3649
3650 /* Free the IRP */
3652
3653 /* Clear the event */
3655 /* And finally, mark the open operation as canceled */
3657}
#define KeWaitForSingleObject(pEvt, foo, a, b, c)
Definition: env_spec_w32.h:478
PIRP NTAPI IopAllocateIrpMustSucceed(IN CCHAR StackSize)
Definition: irp.c:716
VOID NTAPI KeBugCheckEx(_In_ ULONG BugCheckCode, _In_ ULONG_PTR BugCheckParameter1, _In_ ULONG_PTR BugCheckParameter2, _In_ ULONG_PTR BugCheckParameter3, _In_ ULONG_PTR BugCheckParameter4)
Definition: rtlcompat.c:108
Definition: filtergraph.c:51
Definition: Bus_PDO_EvalMethod.c:93
Definition: Bus_PDO_EvalMethod.c:105
Definition: ketypes.h:811
__drv_aliasesMem FORCEINLINE PIO_STACK_LOCATION IoGetNextIrpStackLocation(_In_ PIRP Irp)
Definition: iofuncs.h:2695
#define IRP_CLOSE_OPERATION
#define IRP_SYNCHRONOUS_API
#define IRP_MJ_CLEANUP
_Requires_lock_held_ Interrupt _Releases_lock_ Interrupt _In_ _IRQL_restores_ KIRQL OldIrql
Definition: kefuncs.h:778
◆ IoChangeFileObjectFilterContext()
| NTSTATUS NTAPI IoChangeFileObjectFilterContext | ( | IN PFILE_OBJECT | FileObject, |
| IN PVOID | FilterContext, | ||
| IN BOOLEAN | Define | ||
| ) |
Definition at line 2512 of file file.c.
2515{
2517 PFILE_OBJECT_EXTENSION FileObjectExtension;
2518
2520 {
2522 }
2523
2524 FileObjectExtension = FileObject->FileObjectExtension;
2525 if (Define)
2526 {
2527 /* If define, just set the new value if not value is set
2528 * Success will only contain old value. It is valid if it is NULL
2529 */
2530 Success = (ULONG_PTR)InterlockedCompareExchangePointer(&FileObjectExtension->FilterContext, FilterContext, NULL);
2531 }
2532 else
2533 {
2534 /* If not define, we want to reset filter context.
2535 * We will remove value (provided by the caller) and set NULL instead.
2536 * This will only success if caller provides correct previous value.
2537 * To catch whether it worked, we substract previous value to expect value:
2538 * If it matches (and thus, we reset), Success will contain 0
2539 * Otherwise, it will contain a non-zero value.
2540 */
2541 Success = (ULONG_PTR)InterlockedCompareExchangePointer(&FileObjectExtension->FilterContext, NULL, FilterContext) - (ULONG_PTR)FilterContext;
2542 }
2543
2544 /* If success isn't 0, it means we failed somewhere (set or unset) */
2546 {
2548 }
2549
2551}
_In_ PLIST_ENTRY _In_ PSTRING _In_ USHORT _In_opt_ PSTRING _In_opt_ PSTRING _In_ ULONG _In_ ULONG _In_opt_ PVOID _In_opt_ PVOID FilterContext
Definition: fsrtlfuncs.h:746
#define InterlockedCompareExchangePointer
Definition: interlocked.h:144
Definition: io.h:101
Referenced by FsRtlInsertPerFileObjectContext(), and FsRtlPTeardownPerFileObjectContexts().
◆ IoCheckQuerySetFileInformation()
| NTSTATUS NTAPI IoCheckQuerySetFileInformation | ( | IN FILE_INFORMATION_CLASS | FileInformationClass, |
| IN ULONG | Length, | ||
| IN BOOLEAN | SetOperation | ||
| ) |
◆ IoCheckQuotaBufferValidity()
| NTSTATUS NTAPI IoCheckQuotaBufferValidity | ( | IN PFILE_QUOTA_INFORMATION | QuotaBuffer, |
| IN ULONG | QuotaLength, | ||
| OUT PULONG | ErrorOffset | ||
| ) |
◆ IoCheckShareAccess()
| NTSTATUS NTAPI IoCheckShareAccess | ( | IN ACCESS_MASK | DesiredAccess, |
| IN ULONG | DesiredShareAccess, | ||
| IN PFILE_OBJECT | FileObject, | ||
| IN PSHARE_ACCESS | ShareAccess, | ||
| IN BOOLEAN | Update | ||
| ) |
Definition at line 3391 of file file.c.
3396{
3399 BOOLEAN DeleteAccess;
3400 BOOLEAN SharedRead;
3401 BOOLEAN SharedWrite;
3402 BOOLEAN SharedDelete;
3403 PAGED_CODE();
3404
3405 /* Get access masks */
3409
3410 /* Set them in the file object */
3413 FileObject->DeleteAccess = DeleteAccess;
3414
3415 /* Check if the file has an extension */
3417 {
3418 /* Check if caller specified to ignore access checks */
3419 //if (FileObject->FoExtFlags & IO_IGNORE_SHARE_ACCESS_CHECK)
3420 {
3421 /* Don't check share access */
3423 }
3424 }
3425
3426 /* Check if we have any access */
3428 {
3429 /* Get shared access masks */
3433
3434 /* Check if the shared access is violated */
3437 (WriteAccess &&
3439 (DeleteAccess &&
3441 ((ShareAccess->Readers != 0) && !SharedRead) ||
3442 ((ShareAccess->Writers != 0) && !SharedWrite) ||
3443 ((ShareAccess->Deleters != 0) && !SharedDelete))
3444 {
3445 /* Sharing violation, fail */
3447 }
3448
3449 /* Set them */
3450 FileObject->SharedRead = SharedRead;
3451 FileObject->SharedWrite = SharedWrite;
3452 FileObject->SharedDelete = SharedDelete;
3453
3454 /* It's not, check if caller wants us to update it */
3456 {
3457 /* Increase open count */
3458 ShareAccess->OpenCount++;
3459
3460 /* Update shared access */
3463 ShareAccess->Deleters += DeleteAccess;
3464 ShareAccess->SharedRead += SharedRead;
3465 ShareAccess->SharedWrite += SharedWrite;
3466 ShareAccess->SharedDelete += SharedDelete;
3467 }
3468 }
3469
3470 /* Validation successful */
3472}
_In_ PIO_STACK_LOCATION _Inout_ PFILE_OBJECT _Inout_ PVCB _Outptr_result_maybenull_ PDCB _In_ PDCB _In_ PDIRENT _In_ ULONG _In_ ULONG _In_ PUNICODE_STRING _In_ PACCESS_MASK _In_ USHORT ShareAccess
Definition: create.c:4148
_Must_inspect_result_ _In_ WDFDEVICE _In_ ULONG _In_ ACCESS_MASK DesiredAccess
Definition: wdfdevice.h:2658
Referenced by Ext2CreateFile(), Ext2CreateVolume(), FatCheckShareAccess(), open_file2(), OpenMupFileSystem(), RawCreate(), UDFCheckAccessRights(), and VfatCreateFile().
◆ IoCreateFile()
| NTSTATUS NTAPI IoCreateFile | ( | OUT PHANDLE | FileHandle, |
| IN ACCESS_MASK | DesiredAccess, | ||
| IN POBJECT_ATTRIBUTES | ObjectAttributes, | ||
| OUT PIO_STATUS_BLOCK | IoStatusBlock, | ||
| IN PLARGE_INTEGER AllocationSize | OPTIONAL, | ||
| IN ULONG | FileAttributes, | ||
| IN ULONG | ShareAccess, | ||
| IN ULONG | Disposition, | ||
| IN ULONG | CreateOptions, | ||
| IN PVOID EaBuffer | OPTIONAL, | ||
| IN ULONG | EaLength, | ||
| IN CREATE_FILE_TYPE | CreateFileType, | ||
| IN PVOID ExtraCreateParameters | OPTIONAL, | ||
| IN ULONG | Options | ||
| ) |
Definition at line 3011 of file file.c.
3025{
3026 PAGED_CODE();
3027
3029 DesiredAccess,
3030 ObjectAttributes,
3031 IoStatusBlock,
3032 AllocationSize,
3033 FileAttributes,
3034 ShareAccess,
3035 Disposition,
3036 CreateOptions,
3037 EaBuffer,
3038 EaLength,
3039 CreateFileType,
3040 ExtraCreateParameters,
3041 Options,
3042 0,
3043 NULL);
3044}
_Must_inspect_result_ _In_opt_ PFLT_INSTANCE _Out_ PHANDLE _In_ ACCESS_MASK _In_ POBJECT_ATTRIBUTES _Out_ PIO_STATUS_BLOCK _In_opt_ PLARGE_INTEGER _In_ ULONG FileAttributes
Definition: fltkernel.h:1236
_Must_inspect_result_ _In_opt_ PFLT_INSTANCE _Out_ PHANDLE FileHandle
Definition: fltkernel.h:1231
_In_ ACCESS_MASK _In_ POBJECT_ATTRIBUTES _Reserved_ ULONG _In_opt_ PUNICODE_STRING _In_ ULONG _Out_opt_ PULONG Disposition
Definition: cmfuncs.h:56
NTSTATUS NTAPI IopCreateFile(OUT PHANDLE FileHandle, IN ACCESS_MASK DesiredAccess, IN POBJECT_ATTRIBUTES ObjectAttributes, OUT PIO_STATUS_BLOCK IoStatusBlock, IN PLARGE_INTEGER AllocationSize OPTIONAL, IN ULONG FileAttributes, IN ULONG ShareAccess, IN ULONG Disposition, IN ULONG CreateOptions, IN PVOID EaBuffer OPTIONAL, IN ULONG EaLength, IN CREATE_FILE_TYPE CreateFileType, IN PVOID ExtraCreateParameters OPTIONAL, IN ULONG Options, IN ULONG Flags, IN PDEVICE_OBJECT DeviceObject OPTIONAL)
Definition: file.c:2555
_Must_inspect_result_ _In_opt_ WDFKEY _In_ PCUNICODE_STRING _In_ ACCESS_MASK _In_ ULONG CreateOptions
Definition: wdfregistry.h:118
_In_ ACCESS_MASK _In_ POBJECT_ATTRIBUTES _Out_ PIO_STATUS_BLOCK _In_opt_ PLARGE_INTEGER _In_ ULONG _In_ ULONG _In_ ULONG _In_ ULONG _In_opt_ PVOID EaBuffer
Definition: iofuncs.h:845
_In_ ACCESS_MASK _In_ POBJECT_ATTRIBUTES _Out_ PIO_STATUS_BLOCK _In_opt_ PLARGE_INTEGER _In_ ULONG _In_ ULONG _In_ ULONG _In_ ULONG _In_opt_ PVOID _In_ ULONG _In_ CREATE_FILE_TYPE CreateFileType
Definition: iofuncs.h:847
Referenced by BroadcastOpen(), CreateRemoteDatabaseWorker(), FsRtlTest_OpenTestDirectory(), FsRtlTest_OpenTestFile(), IopOpenLinkOrRenameTarget(), KernelModeTest(), KspCreateObjectType(), NpCreatePipeEx(), NpOpenPipeEx(), NpWaitPipe(), NtCreateFile(), NtCreateMailslotFile(), NtCreateNamedPipeFile(), NtCreatePagingFile(), NtOpenFile(), OpenRemoteDatabase(), TestIoCreateFile(), TestSymlinks(), UserModeTest(), VfatSetRenameInformation(), and WdmAudOpenSysAudioDevice().
◆ IoCreateFileSpecifyDeviceObjectHint()
| NTSTATUS NTAPI IoCreateFileSpecifyDeviceObjectHint | ( | OUT PHANDLE | FileHandle, |
| IN ACCESS_MASK | DesiredAccess, | ||
| IN POBJECT_ATTRIBUTES | ObjectAttributes, | ||
| OUT PIO_STATUS_BLOCK | IoStatusBlock, | ||
| IN PLARGE_INTEGER AllocationSize | OPTIONAL, | ||
| IN ULONG | FileAttributes, | ||
| IN ULONG | ShareAccess, | ||
| IN ULONG | Disposition, | ||
| IN ULONG | CreateOptions, | ||
| IN PVOID EaBuffer | OPTIONAL, | ||
| IN ULONG | EaLength, | ||
| IN CREATE_FILE_TYPE | CreateFileType, | ||
| IN PVOID ExtraCreateParameters | OPTIONAL, | ||
| IN ULONG | Options, | ||
| IN PVOID | DeviceObject | ||
| ) |
Definition at line 3051 of file file.c.
3066{
3068
3069 PAGED_CODE();
3070
3071 /* Check if we were passed a device to send the create request to*/
3073 {
3074 /* We'll tag this request into a file object extension */
3076 }
3077
3079 DesiredAccess,
3080 ObjectAttributes,
3081 IoStatusBlock,
3082 AllocationSize,
3083 FileAttributes,
3084 ShareAccess,
3085 Disposition,
3086 CreateOptions,
3087 EaBuffer,
3088 EaLength,
3089 CreateFileType,
3090 ExtraCreateParameters,
3092 Flags,
3093 DeviceObject);
3094}
Referenced by IopOpenLinkOrRenameTarget().
◆ IoCreateStreamFileObject()
| PFILE_OBJECT NTAPI IoCreateStreamFileObject | ( | IN PFILE_OBJECT | FileObject, |
| IN PDEVICE_OBJECT | DeviceObject | ||
| ) |
Definition at line 3188 of file file.c.
3190{
3191 /* Call the newer function */
3193}
PFILE_OBJECT NTAPI IoCreateStreamFileObjectEx(IN PFILE_OBJECT FileObject OPTIONAL, IN PDEVICE_OBJECT DeviceObject OPTIONAL, OUT PHANDLE FileObjectHandle OPTIONAL)
Definition: file.c:3101
Referenced by _Requires_lock_held_(), Ext2InitializeVcb(), FatOpenEaFile(), mount_vol(), NtfsFCBInitializeCache(), NtfsMountVolume(), PerformTest(), vfatFCBInitializeCacheFromVolume(), and VfatMount().
◆ IoCreateStreamFileObjectEx()
| PFILE_OBJECT NTAPI IoCreateStreamFileObjectEx | ( | IN PFILE_OBJECT FileObject | OPTIONAL, |
| IN PDEVICE_OBJECT DeviceObject | OPTIONAL, | ||
| OUT PHANDLE FileObjectHandle | OPTIONAL | ||
| ) |
Definition at line 3101 of file file.c.
3104{
3105 PFILE_OBJECT CreatedFileObject;
3109 PAGED_CODE();
3111
3112 /* Choose Device Object */
3114
3115 /* Reference the device object and initialize attributes */
3118
3119 /* Create the File Object */
3121 IoFileObjectType,
3122 &ObjectAttributes,
3123 KernelMode,
3124 NULL,
3127 0,
3128 (PVOID*)&CreatedFileObject);
3130 {
3131 /* Fail */
3134 }
3135
3136 /* Set File Object Data */
3138 CreatedFileObject->DeviceObject = DeviceObject;
3139 CreatedFileObject->Type = IO_TYPE_FILE;
3141 CreatedFileObject->Flags = FO_STREAM_FILE;
3142
3143 /* Initialize the wait event */
3145
3146 /* Insert it to create a handle for it */
3148 NULL,
3149 FILE_READ_DATA,
3150 1,
3151 (PVOID*)&CreatedFileObject,
3152 &FileHandle);
3154
3155 /* Set the handle created flag */
3156 CreatedFileObject->Flags |= FO_HANDLE_CREATED;
3158
3159 /* Check if we have a VPB */
3161 {
3162 /* Reference it */
3164 }
3165
3166 /* Check if the caller wants the handle */
3168 {
3169 /* Return it */
3171 ObDereferenceObject(CreatedFileObject);
3172 }
3173 else
3174 {
3175 /* Otherwise, close it */
3177 }
3178
3179 /* Return the file object */
3180 return CreatedFileObject;
3181}
Definition: nsiface.idl:2307
VOID NTAPI IopDereferenceDeviceObject(IN PDEVICE_OBJECT DeviceObject, IN BOOLEAN ForceUnload)
Definition: device.c:462
NTSTATUS NTAPI ObCloseHandle(IN HANDLE Handle, IN KPROCESSOR_MODE AccessMode)
Definition: obhandle.c:3379
NTSTATUS NTAPI ObInsertObject(IN PVOID Object, IN PACCESS_STATE AccessState OPTIONAL, IN ACCESS_MASK DesiredAccess, IN ULONG ObjectPointerBias, OUT PVOID *NewObject OPTIONAL, OUT PHANDLE Handle)
Definition: obhandle.c:2935
NTSTATUS NTAPI ObCreateObject(IN KPROCESSOR_MODE ProbeMode OPTIONAL, IN POBJECT_TYPE Type, IN POBJECT_ATTRIBUTES ObjectAttributes OPTIONAL, IN KPROCESSOR_MODE AccessMode, IN OUT PVOID ParseContext OPTIONAL, IN ULONG ObjectSize, IN ULONG PagedPoolCharge OPTIONAL, IN ULONG NonPagedPoolCharge OPTIONAL, OUT PVOID *Object)
Definition: oblife.c:1039
Definition: umtypes.h:182
_In_opt_ PDEVICE_OBJECT _Out_opt_ PHANDLE FileObjectHandle
Definition: iofuncs.h:2175
#define IO_TYPE_FILE
Referenced by IoCreateStreamFileObject().
◆ IoCreateStreamFileObjectLite()
| PFILE_OBJECT NTAPI IoCreateStreamFileObjectLite | ( | IN PFILE_OBJECT FileObject | OPTIONAL, |
| IN PDEVICE_OBJECT DeviceObject | OPTIONAL | ||
| ) |
Definition at line 3200 of file file.c.
3202{
3203 PFILE_OBJECT CreatedFileObject;
3206 PAGED_CODE();
3208
3209 /* Choose Device Object */
3211
3212 /* Reference the device object and initialize attributes */
3215
3216 /* Create the File Object */
3218 IoFileObjectType,
3219 &ObjectAttributes,
3220 KernelMode,
3221 NULL,
3224 0,
3225 (PVOID*)&CreatedFileObject);
3227 {
3228 /* Fail */
3231 }
3232
3233 /* Set File Object Data */
3235 CreatedFileObject->DeviceObject = DeviceObject;
3236 CreatedFileObject->Type = IO_TYPE_FILE;
3238 CreatedFileObject->Flags = FO_STREAM_FILE;
3239
3240 /* Initialize the wait event */
3242
3243 /* Destroy create information */
3245 ObjectCreateInfo);
3247
3248 /* Set the handle created flag */
3249 CreatedFileObject->Flags |= FO_HANDLE_CREATED;
3251
3252 /* Check if we have a VPB */
3254 {
3255 /* Reference it */
3257 }
3258
3259 /* Return the file object */
3260 return CreatedFileObject;
3261}
VOID NTAPI ObFreeObjectCreateInfoBuffer(IN POBJECT_CREATE_INFORMATION ObjectCreateInfo)
Definition: oblife.c:603
Referenced by CdCreateInternalStream(), and RawMountVolume().
◆ IoFastQueryNetworkAttributes()
| BOOLEAN NTAPI IoFastQueryNetworkAttributes | ( | IN POBJECT_ATTRIBUTES | ObjectAttributes, |
| IN ACCESS_MASK | DesiredAccess, | ||
| IN ULONG | OpenOptions, | ||
| OUT PIO_STATUS_BLOCK | IoStatus, | ||
| OUT PFILE_NETWORK_OPEN_INFORMATION | Buffer | ||
| ) |
Definition at line 3290 of file file.c.
3295{
3297 DUMMY_FILE_OBJECT LocalFileObject;
3299 OPEN_PACKET OpenPacket;
3300 PAGED_CODE();
3302
3303 /* Setup the Open Packet */
3314 OpenPacket.LocalFileObject = &LocalFileObject;
3315
3316 /*
3317 * Attempt opening the file. This will call the I/O Parse Routine for
3318 * the File Object (IopParseDevice) which will use the dummy file obejct
3319 * send the IRP to its device object. Note that we have two statuses
3320 * to worry about: the Object Manager's status (in Status) and the I/O
3321 * status, which is in the Open Packet's Final Status, and determined
3322 * by the Parse Check member.
3323 */
3325 NULL,
3326 KernelMode,
3327 NULL,
3328 DesiredAccess,
3329 &OpenPacket,
3330 &Handle);
3332 {
3333 /* Parse failed */
3335 }
3336 else
3337 {
3338 /* Use the Io status */
3341 }
3342
3343 /* Return success */
3345}
Definition: bufpool.h:45
__in UCHAR __in POWER_STATE __in_opt PVOID __in PIO_STATUS_BLOCK IoStatus
Definition: mxum.h:159
_Must_inspect_result_ _Out_ PNDIS_STATUS _Out_ PNDIS_STATUS _Out_ PNDIS_HANDLE _Out_ PUINT _In_ UINT _In_ NDIS_HANDLE _In_ NDIS_HANDLE _In_ PNDIS_STRING _In_ UINT OpenOptions
Definition: ndis.h:6017
struct _OPEN_PACKET OPEN_PACKET
NTSTATUS NTAPI ObOpenObjectByName(IN POBJECT_ATTRIBUTES ObjectAttributes, IN POBJECT_TYPE ObjectType, IN KPROCESSOR_MODE AccessMode, IN PACCESS_STATE PassedAccessState, IN ACCESS_MASK DesiredAccess, IN OUT PVOID ParseContext, OUT PHANDLE Handle)
Definition: obhandle.c:2532
Definition: io.h:357
Definition: io.h:367
PFILE_NETWORK_OPEN_INFORMATION NetworkInformation
Definition: io.h:385
#define IO_TYPE_OPEN_PACKET
◆ IoGetFileObjectFilterContext()
| PVOID NTAPI IoGetFileObjectFilterContext | ( | IN PFILE_OBJECT | FileObject | ) |
Definition at line 2497 of file file.c.
2498{
2500 {
2501 PFILE_OBJECT_EXTENSION FileObjectExtension;
2502
2503 FileObjectExtension = FileObject->FileObjectExtension;
2505 }
2506
2508}
Referenced by FsRtlInsertPerFileObjectContext(), FsRtlLookupPerFileObjectContext(), FsRtlPTeardownPerFileObjectContexts(), and FsRtlRemovePerFileObjectContext().
◆ IoGetFileObjectGenericMapping()
| PGENERIC_MAPPING NTAPI IoGetFileObjectGenericMapping | ( | VOID | ) |
Definition at line 3268 of file file.c.
3269{
3270 /* Return the mapping */
3272}
Referenced by create_directory_fcb(), create_stream(), create_subvol(), FatExplicitDeviceAccessGranted(), fcb_get_new_sd(), fcb_get_sd(), file_create(), KsCreateDefaultSecurity(), KsDispatchSetSecurity(), mknod(), NpCommonSetSecurityInfo(), NpCreateClientEnd(), NpCreateExistingNamedPipe(), NpCreateNewNamedPipe(), open_file2(), set_file_security(), set_link_information(), set_rename_information(), UDFCheckAccessRights(), and UDFSetAccessRights().
◆ IoIsFileOriginRemote()
| BOOLEAN NTAPI IoIsFileOriginRemote | ( | IN PFILE_OBJECT | FileObject | ) |
Definition at line 3279 of file file.c.
3280{
3281 /* Return the flag status */
3283}
Referenced by CcCanIWrite().
◆ IopAcquireFileObjectLock()
| NTSTATUS NTAPI IopAcquireFileObjectLock | ( | _In_ PFILE_OBJECT | FileObject, |
| _In_ KPROCESSOR_MODE | WaitMode, | ||
| _In_ BOOLEAN | Alertable, | ||
| _Out_ PBOOLEAN | LockFailed | ||
| ) |
Definition at line 2451 of file file.c.
2456{
2458
2459 PAGED_CODE();
2460
2462
2464 do
2465 {
2467 {
2468 break;
2469 }
2471 Executive,
2472 WaitMode,
2473 Alertable,
2474 NULL);
2476
2479 {
2481 *LockFailed = FALSE;
2482 }
2483 else
2484 {
2486 {
2488 }
2489 *LockFailed = TRUE;
2490 }
2491
2493}
Referenced by IopLockFileObject().
◆ IopCheckBackupRestorePrivilege()
| VOID NTAPI IopCheckBackupRestorePrivilege | ( | IN PACCESS_STATE | AccessState, |
| IN OUT PULONG | CreateOptions, | ||
| IN KPROCESSOR_MODE | PreviousMode, | ||
| IN ULONG | Disposition | ||
| ) |
Definition at line 25 of file file.c.
29{
33 PAGED_CODE();
34
35 /* Don't do anything if privileges were checked already */
37
38 /* Check if the file was actually opened for backup purposes */
40 {
41 /* Set the check flag since were doing it now */
43
44 /* Set the access masks required */
47 FILE_GENERIC_READ |
48 FILE_TRAVERSE;
50 WRITE_OWNER |
52 FILE_GENERIC_WRITE |
53 FILE_ADD_FILE |
55 DELETE;
57
58 /* Check if desired access was the maximum */
60 {
61 /* Then add all the access masks required */
63 }
64
65 /* Check if the file already exists */
67 {
68 /* Check if desired access has the read mask */
70 {
71 /* Setup the privilege check lookup */
72 Privileges.PrivilegeCount = 1;
75 Privileges.Privilege[0].Attributes = 0;
77 &AccessState->
79 PreviousMode);
81 {
82 /* Remember that backup was allowed */
83 HaveBackupPriv = TRUE;
84
85 /* Append the privileges and update the access state */
88 AccessState->RemainingDesiredAccess &= ~ReadAccess;
89 DesiredAccess &= ~ReadAccess;
90
91 /* Set backup privilege for the token */
93 }
94 }
95 }
96 else
97 {
98 /* Caller is creating the file, check restore privileges later */
99 CheckRestore = TRUE;
100 }
101
102 /* Check if caller wants write access or if it's creating a file */
104 {
105 /* Setup the privilege lookup and do it */
106 Privileges.PrivilegeCount = 1;
109 Privileges.Privilege[0].Attributes = 0;
111 &AccessState->SubjectSecurityContext,
112 PreviousMode);
114 {
115 /* Remember that privilege was given */
116 HaveBackupPriv = TRUE;
117
118 /* Append the privileges and update the access state */
121 AccessState->RemainingDesiredAccess &= ~WriteAccess;
122
123 /* Set restore privilege for the token */
125 }
126 }
127
128 /* If we don't have the privilege, remove the option */
130 }
131}
_In_ PVOID _In_ ULONG _Out_ PVOID _In_ ULONG _Inout_ PULONG _In_ KPROCESSOR_MODE PreviousMode
Definition: KdSystemDebugControl.c:35
BOOLEAN NTAPI SePrivilegeCheck(_In_ PPRIVILEGE_SET Privileges, _In_ PSECURITY_SUBJECT_CONTEXT SubjectContext, _In_ KPROCESSOR_MODE PreviousMode)
Checks if a set of privileges exist and match within a security subject context.
Definition: priv.c:698
NTSTATUS NTAPI SeAppendPrivileges(_Inout_ PACCESS_STATE AccessState, _In_ PPRIVILEGE_SET Privileges)
Appends additional privileges.
Definition: priv.c:588
Definition: setypes.h:85
_In_ PSECURITY_SUBJECT_CONTEXT _In_ BOOLEAN _In_ ACCESS_MASK _In_ ACCESS_MASK _Outptr_opt_ PPRIVILEGE_SET * Privileges
Definition: sefuncs.h:17
_In_opt_ PVOID _In_opt_ PUNICODE_STRING _In_ PSECURITY_DESCRIPTOR _In_ PACCESS_STATE _In_ BOOLEAN _In_ BOOLEAN AccessGranted
Definition: sefuncs.h:419
_In_opt_ PVOID _In_opt_ PUNICODE_STRING _In_ PSECURITY_DESCRIPTOR _In_ PACCESS_STATE AccessState
Definition: sefuncs.h:417
Referenced by IopParseDevice().
◆ IopCheckDeviceAndDriver()
| NTSTATUS NTAPI IopCheckDeviceAndDriver | ( | IN POPEN_PACKET | OpenPacket, |
| IN PDEVICE_OBJECT | DeviceObject | ||
| ) |
Definition at line 135 of file file.c.
137{
138 /* Make sure the object is valid */
140 (DOE_UNLOAD_PENDING |
141 DOE_DELETE_PENDING |
142 DOE_REMOVE_PENDING |
143 DOE_REMOVE_PROCESSED)) ||
145 {
146 /* It's unloading or initializing, so fail */
148 " sucks. Please fix it's AddDevice Routine\n",
149 &DeviceObject->DriverObject->DriverName);
151 }
153 (DeviceObject->ReferenceCount) &&
154 !(OpenPacket->RelatedFileObject) &&
155 !(OpenPacket->Options & IO_ATTACH_DEVICE))
156 {
158 }
159
160 else
161 {
162 /* Increase reference count */
165 }
166}
Referenced by IopParseDevice().
◆ IopCheckTopDeviceHint()
| NTSTATUS IopCheckTopDeviceHint | ( | IN OUT PDEVICE_OBJECT * | DeviceObject, |
| IN POPEN_PACKET | OpenPacket, | ||
| BOOLEAN | DirectOpen | ||
| ) |
Definition at line 275 of file file.c.
278{
281
283
284 /* Direct open is not allowed */
285 if (DirectOpen)
286 {
288 }
289
290 /* Validate we have a file system device */
297 {
299 }
300
301 /* Verify the hint and if it's OK, return it */
303 {
304 *DeviceObject = OpenPacket->TopDeviceObjectHint;
306 }
307
308 /* Failure case here */
309 /* If we thought was had come through a mount point,
310 * actually update we didn't and return the error
311 */
312 if (OpenPacket->TraversedMountPoint)
313 {
314 OpenPacket->TraversedMountPoint = FALSE;
316 }
317
318 /* Otherwise, just return the fact the hint is invalid */
320}
BOOLEAN NTAPI IopVerifyDeviceObjectOnStack(IN PDEVICE_OBJECT BaseDeviceObject, IN PDEVICE_OBJECT TopDeviceObjectHint)
Definition: device.c:695
#define STATUS_INVALID_DEVICE_OBJECT_PARAMETER
Definition: ntstatus.h:915
Definition: env_spec_w32.h:413
Referenced by IopParseDevice().
◆ IopCloseFile()
| VOID NTAPI IopCloseFile | ( | IN PEPROCESS Process | OPTIONAL, |
| IN PVOID | ObjectBody, | ||
| IN ACCESS_MASK | GrantedAccess, | ||
| IN ULONG | HandleCount, | ||
| IN ULONG | SystemHandleCount | ||
| ) |
Definition at line 2179 of file file.c.
2184{
2188 PIO_STACK_LOCATION StackPtr;
2194
2195 /* If this isn't the last handle for the current process, quit */
2196 if (HandleCount != 1) return;
2197
2198 /* Check if the file is locked and has more then one handle opened */
2200 {
2201 /* Check if this is a direct open or not */
2203 {
2204 /* Get the attached device */
2206 }
2207 else
2208 {
2209 /* Get the FO's device */
2211 }
2212
2213 /* Check if this is a sync FO and lock it */
2215 {
2217 }
2218
2219 /* Go the FastIO path if possible, otherwise fall back to IRP */
2222 !DeviceObject->DriverObject->FastIoDispatch->FastIoUnlockAll(FileObject, PsGetCurrentProcess(), &IoStatusBlock, DeviceObject))
2223 {
2224 /* Clear and set up Events */
2227
2228 /* Allocate an IRP */
2230
2231 /* Set it up */
2240
2241 /* Set up Stack Pointer Data */
2246
2247 /* Queue the IRP */
2249
2250 /* Call the FS Driver */
2253 {
2254 /* Wait for completion */
2256 }
2257
2258 /* IO will unqueue & free for us */
2259 }
2260
2261 /* Release the lock if we were holding it */
2263 {
2265 }
2266 }
2267
2268 /* Make sure this is the last handle */
2269 if (SystemHandleCount != 1) return;
2270
2271 /* Check if this is a direct open or not */
2273 {
2274 /* Get the attached device */
2276 }
2277 else
2278 {
2279 /* Get the FO's device */
2281 }
2282
2283 /* Set the handle created flag */
2285
2286 /* Check if this is a sync FO and lock it */
2289 {
2291 }
2292
2293 /* Clear and set up Events */
2296
2297 /* Allocate an IRP */
2299
2300 /* Set it up */
2307
2308 /* Set up Stack Pointer Data */
2312
2313 /* Queue the IRP */
2315
2316 /* Update operation counts */
2318
2319 /* Call the FS Driver */
2322 {
2323 /* Wait for completion */
2325 }
2326
2327 /* Unqueue the IRP */
2331
2332 /* Free the IRP */
2334
2335 /* Release the lock if we were holding it */
2338 {
2340 }
2341}
_Must_inspect_result_ _In_ PLARGE_INTEGER _In_ PLARGE_INTEGER _In_ ULONG _In_ PFILE_OBJECT _In_ PVOID Process
Definition: fsrtlfuncs.h:223
static __inline NTSTATUS IopLockFileObject(_In_ PFILE_OBJECT FileObject, _In_ KPROCESSOR_MODE WaitMode)
Definition: io_x.h:12
static __inline VOID IopUpdateOperationCount(IN IOP_TRANSFER_TYPE Type)
Definition: io_x.h:82
static __inline VOID IopUnlockFileObject(IN PFILE_OBJECT FileObject)
Definition: io_x.h:36
PDEVICE_OBJECT NTAPI IoGetRelatedDeviceObject(IN PFILE_OBJECT FileObject)
Definition: device.c:1539
PDEVICE_OBJECT NTAPI IoGetAttachedDevice(PDEVICE_OBJECT DeviceObject)
Definition: device.c:1385
Definition: env_spec_w32.h:870
Referenced by IopCreateObjectTypes(), and IopDeleteFile().
◆ IopCreateFile()
| NTSTATUS NTAPI IopCreateFile | ( | OUT PHANDLE | FileHandle, |
| IN ACCESS_MASK | DesiredAccess, | ||
| IN POBJECT_ATTRIBUTES | ObjectAttributes, | ||
| OUT PIO_STATUS_BLOCK | IoStatusBlock, | ||
| IN PLARGE_INTEGER AllocationSize | OPTIONAL, | ||
| IN ULONG | FileAttributes, | ||
| IN ULONG | ShareAccess, | ||
| IN ULONG | Disposition, | ||
| IN ULONG | CreateOptions, | ||
| IN PVOID EaBuffer | OPTIONAL, | ||
| IN ULONG | EaLength, | ||
| IN CREATE_FILE_TYPE | CreateFileType, | ||
| IN PVOID ExtraCreateParameters | OPTIONAL, | ||
| IN ULONG | Options, | ||
| IN ULONG | Flags, | ||
| IN PDEVICE_OBJECT DeviceObject | OPTIONAL | ||
| ) |
Definition at line 2555 of file file.c.
2571{
2574 LARGE_INTEGER SafeAllocationSize;
2576 PNAMED_PIPE_CREATE_PARAMETERS NamedPipeCreateParameters;
2577 POPEN_PACKET OpenPacket;
2578 ULONG EaErrorOffset;
2579 PAGED_CODE();
2580
2582
2583
2584 /* Check if we have no parameter checking to do */
2586 {
2587 /* Then force kernel-mode access to avoid checks */
2589 }
2590 else
2591 {
2592 /* Otherwise, use the actual mode */
2594 }
2595
2596 /* Check if we need to do parameter checking */
2598 {
2599 /* Validate parameters */
2601 {
2604 }
2605
2607 {
2610 }
2611
2613 {
2616 }
2617
2619 {
2622 }
2623
2626 {
2627 DPRINT1("File Create 'CreateOptions' parameter FILE_SYNCHRONOUS_IO_* requested, but 'DesiredAccess' does not have SYNCHRONIZE!\n");
2629 }
2630
2632 {
2633 DPRINT1("File Create 'CreateOptions' parameter FILE_DELETE_ON_CLOSE requested, but 'DesiredAccess' does not have DELETE!\n");
2635 }
2636
2639 {
2640 DPRINT1("File Create 'FileAttributes' parameter both FILE_SYNCHRONOUS_IO_NONALERT and FILE_SYNCHRONOUS_IO_ALERT specified!\n");
2642 }
2643
2646 FILE_SYNCHRONOUS_IO_ALERT |
2647 FILE_SYNCHRONOUS_IO_NONALERT |
2648 FILE_WRITE_THROUGH |
2649 FILE_COMPLETE_IF_OPLOCKED |
2650 FILE_OPEN_FOR_BACKUP_INTENT |
2651 FILE_DELETE_ON_CLOSE |
2653 FILE_OPEN_BY_FILE_ID |
2654 FILE_NO_COMPRESSION |
2655 FILE_OPEN_REPARSE_POINT)))
2656 {
2657 DPRINT1("File Create 'CreateOptions' Parameter has flags incompatible with FILE_DIRECTORY_FILE!\n");
2659 }
2660
2663 {
2664 DPRINT1("File Create 'CreateOptions' Parameter FILE_DIRECTORY_FILE requested, but 'Disposition' is not FILE_CREATE/FILE_OPEN/FILE_OPEN_IF!\n");
2666 }
2667
2669 {
2670 DPRINT1("File Create 'CreateOptions' Parameter both FILE_COMPLETE_IF_OPLOCKED and FILE_RESERVE_OPFILTER specified!\n");
2672 }
2673
2675 {
2676 DPRINT1("File Create 'CreateOptions' parameter FILE_NO_INTERMEDIATE_BUFFERING requested, but 'DesiredAccess' FILE_APPEND_DATA requires it!\n");
2678 }
2679
2680 /* Now check if this is a named pipe */
2682 {
2683 /* Make sure we have extra parameters */
2684 if (!ExtraCreateParameters)
2685 {
2688 }
2689
2690 /* Get the parameters and validate them */
2691 NamedPipeCreateParameters = ExtraCreateParameters;
2698 {
2699 /* Invalid named pipe create */
2702 }
2703 }
2705 {
2706 /* Make sure we have extra parameters */
2707 if (!ExtraCreateParameters)
2708 {
2711 }
2712
2713 /* Get the parameters and validate them */
2718 {
2719 /* Invalid mailslot create */
2722 }
2723 }
2724 }
2725
2726 /* Allocate the open packet */
2730
2731 /* Check if the call came from user mode */
2733 {
2734 _SEH2_TRY
2735 {
2736 /* Probe the output parameters */
2739
2740 /* Probe the allocation size if one was passed in */
2742 {
2744 }
2745 else
2746 {
2747 SafeAllocationSize.QuadPart = 0;
2748 }
2749
2750 /* Make sure it's valid */
2752 {
2754 }
2755
2756 /* Check if EA was passed in */
2758 {
2759 /* Probe it */
2761
2762 /* And marshall it */
2764 EaLength,
2765 TAG_EA);
2768
2769 /* Validate the buffer */
2771 EaLength,
2772 &EaErrorOffset);
2774 {
2775 /* Undo everything if it's invalid */
2780 }
2781 }
2782 }
2784 {
2785 /* Return the exception code */
2787 ExFreePool(OpenPacket);
2789 }
2790 _SEH2_END;
2791 }
2792 else
2793 {
2794 /* Check if this is a device attach */
2796 {
2797 /* Set the flag properly */
2799 CreateOptions &= ~IO_ATTACH_DEVICE_API;
2800 }
2801
2802 /* Check if we have allocation size */
2804 {
2805 /* Capture it */
2806 SafeAllocationSize = *AllocationSize;
2807 }
2808 else
2809 {
2810 /* Otherwise, no size */
2811 SafeAllocationSize.QuadPart = 0;
2812 }
2813
2814 /* Check if we have an EA packet */
2816 {
2817 /* Allocate the kernel copy */
2819 EaLength,
2820 TAG_EA);
2822 {
2823 ExFreePool(OpenPacket);
2826 }
2827
2828 /* Copy the data */
2831
2832 /* Validate the buffer */
2834 EaLength,
2835 &EaErrorOffset);
2837 {
2838 /* Undo everything if it's invalid */
2843 ExFreePool(OpenPacket);
2845 }
2846 }
2847 }
2848
2849 /* Setup the Open Packet */
2852 OpenPacket->AllocationSize = SafeAllocationSize;
2859 OpenPacket->ExtraCreateParameters = ExtraCreateParameters;
2862
2863 /* Update the operation count */
2865
2866 /*
2867 * Attempt opening the file. This will call the I/O Parse Routine for
2868 * the File Object (IopParseDevice) which will create the object and
2869 * send the IRP to its device object. Note that we have two statuses
2870 * to worry about: the Object Manager's status (in Status) and the I/O
2871 * status, which is in the Open Packet's Final Status, and determined
2872 * by the Parse Check member.
2873 */
2875 NULL,
2876 AccessMode,
2877 NULL,
2878 DesiredAccess,
2879 OpenPacket,
2880 &LocalHandle);
2881
2882 /* Free the EA Buffer */
2884
2885 /* Now check for Ob or Io failure */
2887 {
2888 /* Check if Ob thinks well went well */
2890 {
2891 /*
2892 * Tell it otherwise. Because we didn't use an ObjectType,
2893 * it incorrectly returned us a handle to God knows what.
2894 */
2897 }
2898
2899 /* Now check the Io status */
2901 {
2902 /* Use this status instead of Ob's */
2904
2905 /* Check if it was only a warning */
2907 {
2908 /* Protect write with SEH */
2909 _SEH2_TRY
2910 {
2911 /* In this case, we copy the I/O Status back */
2914 }
2916 {
2917 /* Get exception code */
2919 }
2920 _SEH2_END;
2921 }
2922 }
2924 {
2925 /*
2926 * This can happen in the very bizarre case where the parse routine
2927 * actually executed more then once (due to a reparse) and ended
2928 * up failing after already having created the File Object.
2929 */
2931 {
2932 /* It had a name, free it */
2934 }
2935
2936 /* Clear the device object to invalidate the FO, and dereference */
2939 }
2940 }
2941 else
2942 {
2943 /* We reached success and have a valid file handle */
2946
2947 /* Enter SEH for write back */
2948 _SEH2_TRY
2949 {
2950 /* Write back the handle and I/O Status */
2954
2955 /* Get the Io status */
2957 }
2959 {
2960 /* Get the exception status */
2962 }
2963 _SEH2_END;
2964 }
2965
2966 /* Check if we were 100% successful */
2968 {
2969 /* Dereference the File Object */
2971 }
2972
2973 /* Return status */
2974 ExFreePool(OpenPacket);
2976}
VOID NTAPI ProbeForRead(IN CONST VOID *Address, IN SIZE_T Length, IN ULONG Alignment)
Definition: exintrin.c:102
NTSYSAPI NTSTATUS NTAPI ZwClose(_In_ HANDLE Handle)
DECLSPEC_NORETURN NTSYSAPI VOID NTAPI RtlRaiseStatus(_In_ NTSTATUS Status)
NTSTATUS NTAPI IoCheckEaBufferValidity(IN PFILE_FULL_EA_INFORMATION EaBuffer, IN ULONG EaLength, OUT PULONG ErrorOffset)
Definition: util.c:191
Definition: iotypes.h:952
Definition: typedefs.h:103
Referenced by IoCreateFile(), and IoCreateFileSpecifyDeviceObjectHint().
◆ IopDeleteFile()
Definition at line 1355 of file file.c.
1356{
1359 PIO_STACK_LOCATION StackPtr;
1367
1368 /* Check if the file has a device object */
1370 {
1371 /* Check if this is a direct open or not */
1373 {
1374 /* Get the attached device */
1376 }
1377 else
1378 {
1379 /* Use the file object's device object */
1381 }
1382
1383 /* Sanity check */
1386
1387 /* Check if the handle wasn't created yet */
1389 {
1390 /* Send the cleanup IRP */
1392 }
1393
1394 /* Clear and set up Events */
1397
1398 /* Allocate an IRP */
1400
1401 /* Set it up */
1407
1408 /* Set up Stack Pointer Data */
1412
1413 /* Queue the IRP */
1415
1416 /* Get the VPB and check if this isn't a direct open */
1419 {
1420 /* Dereference the VPB before the close */
1422 }
1423
1424 /* Check if the FS will never disappear by itself */
1426 {
1427 /* Dereference it */
1429 DereferenceDone = TRUE;
1430 }
1431
1432 /* Call the FS Driver */
1435 {
1436 /* Wait for completion */
1438 }
1439
1440 /* De-queue the IRP */
1444
1445 /* Free the IRP */
1447
1448 /* Clear the file name */
1450 {
1451 /*
1452 * Don't use TAG_IO_NAME since the FileObject's FileName
1453 * may have been re-allocated using a different tag
1454 * by a filesystem.
1455 */
1458 }
1459
1460 /* Check if the FO had a completion port */
1462 {
1463 /* Free it */
1466 }
1467
1468 /* Check if the FO had extension */
1470 {
1471 /* Release filter context structure if any */
1473 }
1474
1475 /* Check if dereference has been done yet */
1476 if (!DereferenceDone)
1477 {
1478 /* Dereference device object */
1480 }
1481 }
1482}
VOID NTAPI FsRtlPTeardownPerFileObjectContexts(IN PFILE_OBJECT FileObject)
Definition: filtrctx.c:28
VOID NTAPI IopCloseFile(IN PEPROCESS Process OPTIONAL, IN PVOID ObjectBody, IN ACCESS_MASK GrantedAccess, IN ULONG HandleCount, IN ULONG SystemHandleCount)
Definition: file.c:2179
Definition: iotypes.h:189
Referenced by IopCreateObjectTypes(), and IopParseDevice().
◆ IopDoNameTransmogrify()
| VOID NTAPI IopDoNameTransmogrify | ( | IN PIRP | Irp, |
| IN PFILE_OBJECT | FileObject, | ||
| IN PREPARSE_DATA_BUFFER | DataBuffer | ||
| ) |
Definition at line 170 of file file.c.
173{
177 PWSTR NewBuffer;
178
179 PAGED_CODE();
180
188
189 /* First of all, validate data */
191 (DataBuffer->SymbolicLinkReparseBuffer.PrintNameLength +
192 DataBuffer->SymbolicLinkReparseBuffer.SubstituteNameLength +
193 FIELD_OFFSET(REPARSE_DATA_BUFFER, MountPointReparseBuffer.PathBuffer[0])) > MAXIMUM_REPARSE_DATA_BUFFER_SIZE)
194 {
196 }
197
198 /* Everything went right */
200 {
201 /* Compute buffer & length */
203 DataBuffer->MountPointReparseBuffer.SubstituteNameOffset);
204 Length = DataBuffer->MountPointReparseBuffer.SubstituteNameLength;
205
206 /* Check we don't overflow */
208 {
210 }
211 else
212 {
213 /* Compute how much memory we'll need */
215
216 /* Check if FileObject can already hold what we need */
218 {
219 NewBuffer = FileObject->FileName.Buffer;
220 }
221 else
222 {
223 /* Allocate otherwise */
226 {
228 }
229 }
230 }
231 }
232
233 /* Everything went right */
235 {
236 /* Copy the reserved data */
237 if (DataBuffer->Reserved)
238 {
240 (PWSTR)((ULONG_PTR)FileObject->FileName.Buffer + FileObject->FileName.Length - DataBuffer->Reserved),
241 DataBuffer->Reserved);
242 }
243
244 /* Then the buffer */
246 {
248 }
249
250 /* And finally replace buffer if new one was allocated */
253 {
255 {
256 /*
257 * Don't use TAG_IO_NAME since the FileObject's FileName
258 * may have been re-allocated using a different tag
259 * by a filesystem.
260 */
262 }
263
264 FileObject->FileName.Buffer = NewBuffer;
267 }
268 }
269
270 /* We don't need them anymore - it was allocated by the driver */
271 ExFreePool(DataBuffer);
272}
#define UNICODE_NULL
Definition: shellext.h:164
Referenced by IopCompleteRequest(), and IopParseDevice().
◆ IopGetDeviceAttachmentBase()
| PDEVICE_OBJECT NTAPI IopGetDeviceAttachmentBase | ( | IN PDEVICE_OBJECT | DeviceObject | ) |
Definition at line 1486 of file file.c.
1487{
1489
1490 /* Go down the stack to attempt to get the PDO */
1492 PDO = ((PEXTENDED_DEVOBJ_EXTENSION)PDO->DeviceObjectExtension)->AttachedTo);
1493
1494 return PDO;
1495}
struct _EXTENDED_DEVOBJ_EXTENSION * PEXTENDED_DEVOBJ_EXTENSION
Referenced by IopGetDevicePDO(), and IopVerifyDriverObjectOnStack().
◆ IopGetDevicePDO()
| PDEVICE_OBJECT NTAPI IopGetDevicePDO | ( | IN PDEVICE_OBJECT | DeviceObject | ) |
Definition at line 1499 of file file.c.
1500{
1502 PDEVICE_OBJECT PDO;
1503
1505
1507 /* Get the base DO */
1509 /* Check whether that's really a PDO and if so, keep it */
1511 {
1512 PDO = NULL;
1513 }
1514 else
1515 {
1516 ObReferenceObject(PDO);
1517 }
1519
1520 return PDO;
1521}
VOID FASTCALL KeReleaseQueuedSpinLock(IN KSPIN_LOCK_QUEUE_NUMBER LockNumber, IN KIRQL OldIrql)
Definition: spinlock.c:154
KIRQL FASTCALL KeAcquireQueuedSpinLock(IN KSPIN_LOCK_QUEUE_NUMBER LockNumber)
Definition: spinlock.c:108
PDEVICE_OBJECT NTAPI IopGetDeviceAttachmentBase(IN PDEVICE_OBJECT DeviceObject)
Definition: file.c:1486
#define DO_BUS_ENUMERATED_DEVICE
Referenced by IopGetSetSecurityObject().
◆ IopGetSetSecurityObject()
| NTSTATUS NTAPI IopGetSetSecurityObject | ( | IN PVOID | ObjectBody, |
| IN SECURITY_OPERATION_CODE | OperationCode, | ||
| IN PSECURITY_INFORMATION | SecurityInformation, | ||
| IN PSECURITY_DESCRIPTOR | SecurityDescriptor, | ||
| IN OUT PULONG | BufferLength, | ||
| IN OUT PSECURITY_DESCRIPTOR * | OldSecurityDescriptor, | ||
| IN POOL_TYPE | PoolType, | ||
| IN OUT PGENERIC_MAPPING | GenericMapping | ||
| ) |
Definition at line 1654 of file file.c.
1662{
1664 PIO_STACK_LOCATION StackPtr;
1671 PAGED_CODE();
1673
1674 /* Check if this is a device or file */
1676 {
1677 /* It's a device */
1680 }
1681 else
1682 {
1683 /* It's a file */
1685
1686 /* Check if this is a direct open */
1688 {
1689 /* Get the Device Object */
1691 }
1692 else
1693 {
1694 /* Otherwise, use the direct device*/
1696 }
1697 }
1698
1699 /* Check if the request was for a device object */
1703 {
1704 /* Check what kind of request this was */
1705 if (OperationCode == QuerySecurityDescriptor)
1706 {
1708 SecurityDescriptor,
1709 BufferLength,
1710 &DeviceObject->SecurityDescriptor);
1711 }
1712 else if (OperationCode == DeleteSecurityDescriptor)
1713 {
1714 /* Simply return success */
1716 }
1717 else if (OperationCode == AssignSecurityDescriptor)
1718 {
1720
1721 /* Make absolutely sure this is a device object */
1723 {
1724 PSECURITY_DESCRIPTOR CachedSecurityDescriptor;
1725
1726 /* Add the security descriptor in cache */
1729 {
1730 KeEnterCriticalRegion();
1732
1733 /* Assign the Security Descriptor */
1734 DeviceObject->SecurityDescriptor = CachedSecurityDescriptor;
1735
1737 KeLeaveCriticalRegion();
1738 }
1739 }
1740
1741 /* Return status */
1743 }
1744 else if (OperationCode == SetSecurityDescriptor)
1745 {
1746 /* Get the Physical Device Object if any */
1748
1750 {
1751 /* Apply the new SD to any DO in the path from PDO to current DO */
1753 SecurityInformation,
1754 SecurityDescriptor,
1756 ObDereferenceObject(PDO);
1757 }
1758 else
1759 {
1760 /* Otherwise, just set for ourselves */
1762 SecurityInformation,
1763 SecurityDescriptor,
1765 }
1766
1768 }
1769
1770 /* Shouldn't happen */
1772 }
1773 else if (OperationCode == DeleteSecurityDescriptor)
1774 {
1775 /* Same as for devices, do nothing */
1777 }
1778
1779 /* At this point, we know we're a file. Reference it */
1781
1782 /* Check if we should use Sync IO or not */
1784 {
1785 /* Lock the file object */
1788 {
1791 }
1792 }
1793 else
1794 {
1795 /* Use local event */
1797 LocalEvent = TRUE;
1798 }
1799
1800 /* Clear the File Object event */
1802
1803 /* Get the device object */
1805
1806 /* Allocate the IRP */
1809
1810 /* Set the IRP */
1818
1819 /* Set Stack Parameters */
1822
1823 /* Check if this is a query or set */
1824 if (OperationCode == QuerySecurityDescriptor)
1825 {
1826 /* Set the major function and parameters */
1829 *SecurityInformation;
1832 }
1833 else
1834 {
1835 /* Set the major function and parameters for a set */
1838 *SecurityInformation;
1840 SecurityDescriptor;
1841 }
1842
1843 /* Queue the IRP */
1845
1846 /* Update operation counts */
1848
1849 /* Call the Driver */
1851
1852 /* Check if this was async I/O */
1853 if (LocalEvent)
1854 {
1855 /* Check if the IRP is pending completion */
1857 {
1858 /* Wait on the local event */
1860 Executive,
1861 KernelMode,
1862 FALSE,
1863 NULL);
1865 }
1866 }
1867 else
1868 {
1869 /* Check if the IRP is pending completion */
1871 {
1872 /* Wait on the file object */
1874 Executive,
1875 KernelMode,
1876 FALSE,
1877 NULL);
1879 }
1880
1881 /* Release the lock */
1883 }
1884
1885 /* This Driver doesn't implement Security, so try to give it a default */
1887 {
1888 /* Was this a query? */
1889 if (OperationCode == QuerySecurityDescriptor)
1890 {
1891 /* Set a World Security Descriptor */
1893 SecurityDescriptor,
1894 BufferLength);
1895 }
1896 else
1897 {
1898 /* It wasn't a query, so just fake success */
1900 }
1901 }
1902 else if (OperationCode == QuerySecurityDescriptor)
1903 {
1904 /* Callers usually expect the normalized form */
1906
1907 _SEH2_TRY
1908 {
1909 /* Return length */
1911 }
1913 {
1914 /* Get the exception code */
1916 }
1917 _SEH2_END;
1918 }
1919
1920 /* Return Status */
1922}
struct _DEVICE_OBJECT * PDEVICE_OBJECT
#define ExAcquireResourceExclusiveLite(res, wait)
Definition: env_spec_w32.h:615
_Must_inspect_result_ _In_ PFILE_OBJECT _In_ SECURITY_INFORMATION SecurityInformation
Definition: fltkernel.h:1340
VOID FASTCALL ExReleaseResourceLite(IN PERESOURCE Resource)
Definition: resource.c:1822
NTSTATUS NTAPI IopCleanupFailedIrp(IN PFILE_OBJECT FileObject, IN PKEVENT EventObject, IN PVOID Buffer OPTIONAL)
Definition: irp.c:45
NTSTATUS NTAPI SeSetWorldSecurityDescriptor(_In_ SECURITY_INFORMATION SecurityInformation, _In_ PISECURITY_DESCRIPTOR SecurityDescriptor, _In_ PULONG BufferLength)
Sets a "World" security descriptor.
Definition: sd.c:155
NTSTATUS NTAPI IopSetDeviceSecurityDescriptor(IN PDEVICE_OBJECT DeviceObject, IN PSECURITY_INFORMATION SecurityInformation, IN PSECURITY_DESCRIPTOR SecurityDescriptor, IN POOL_TYPE PoolType, IN PGENERIC_MAPPING GenericMapping)
Definition: file.c:1525
PDEVICE_OBJECT NTAPI IopGetDevicePDO(IN PDEVICE_OBJECT DeviceObject)
Definition: file.c:1499
NTSTATUS NTAPI IopSetDeviceSecurityDescriptors(IN PDEVICE_OBJECT UpperDeviceObject, IN PDEVICE_OBJECT PhysicalDeviceObject, IN PSECURITY_INFORMATION SecurityInformation, IN PSECURITY_DESCRIPTOR SecurityDescriptor, IN POOL_TYPE PoolType, IN PGENERIC_MAPPING GenericMapping)
Definition: file.c:1606
PIRP NTAPI IoAllocateIrp(IN CCHAR StackSize, IN BOOLEAN ChargeQuota)
Definition: irp.c:615
NTSTATUS NTAPI ObLogSecurityDescriptor(IN PSECURITY_DESCRIPTOR InputSecurityDescriptor, OUT PSECURITY_DESCRIPTOR *OutputSecurityDescriptor, IN ULONG RefBias)
Definition: obsdcach.c:364
struct _IO_STACK_LOCATION::@4138::@4157 SetSecurity
struct _IO_STACK_LOCATION::@4138::@4156 QuerySecurity
union _IO_STACK_LOCATION::@1648 Parameters
Definition: ms-dtyp.idl:301
_Must_inspect_result_ _In_ WDFDEVICE _In_ DEVICE_REGISTRY_PROPERTY _In_ _Strict_type_match_ POOL_TYPE PoolType
Definition: wdfdevice.h:3815
_Must_inspect_result_ _In_ WDFDEVICE _In_ DEVICE_REGISTRY_PROPERTY _In_ ULONG BufferLength
Definition: wdfdevice.h:3771
_In_ USHORT _In_ ULONG _In_ PSOCKADDR _In_ PSOCKADDR _Reserved_ ULONG _In_opt_ PVOID _In_opt_ const WSK_CLIENT_CONNECTION_DISPATCH _In_opt_ PEPROCESS _In_opt_ PETHREAD _In_opt_ PSECURITY_DESCRIPTOR SecurityDescriptor
Definition: wsk.h:191
#define IO_TYPE_DEVICE
#define IRP_MJ_QUERY_SECURITY
#define IRP_MJ_SET_SECURITY
NTKERNELAPI NTSTATUS NTAPI SeQuerySecurityDescriptorInfo(_In_ PSECURITY_INFORMATION SecurityInformation, _Out_writes_bytes_(*Length) PSECURITY_DESCRIPTOR SecurityDescriptor, _Inout_ PULONG Length, _Inout_ PSECURITY_DESCRIPTOR *ObjectsSecurityDescriptor)
◆ IopParseDevice()
| NTSTATUS NTAPI IopParseDevice | ( | IN PVOID | ParseObject, |
| IN PVOID | ObjectType, | ||
| IN OUT PACCESS_STATE | AccessState, | ||
| IN KPROCESSOR_MODE | AccessMode, | ||
| IN ULONG | Attributes, | ||
| IN OUT PUNICODE_STRING | CompleteName, | ||
| IN OUT PUNICODE_STRING | RemainingName, | ||
| IN OUT PVOID | Context, | ||
| IN PSECURITY_QUALITY_OF_SERVICE SecurityQos | OPTIONAL, | ||
| OUT PVOID * | Object | ||
| ) |
Definition at line 324 of file file.c.
334{
342 PIO_STACK_LOCATION StackLoc;
343 IO_SECURITY_CONTEXT SecurityContext;
348 PDUMMY_FILE_OBJECT LocalFileObject;
349 PFILE_BASIC_INFORMATION FileBasicInfo;
351 KPROCESSOR_MODE CheckMode;
356 UNICODE_STRING FileString;
357 USHORT Attempt;
359 ParseObject, RemainingName);
360
362 {
363 /* Assume failure */
365
366 /* Validate the open packet */
368
369 /* Valide reparse point in case we traversed a mountpoint */
371 {
372 /* This is a reparse point we understand */
374
375 /* Make sure we're dealing with correct DO */
377 OriginalDeviceObject->DeviceType != FILE_DEVICE_CD_ROM &&
378 OriginalDeviceObject->DeviceType != FILE_DEVICE_VIRTUAL_DISK &&
379 OriginalDeviceObject->DeviceType != FILE_DEVICE_TAPE)
380 {
383 }
384 }
385
386 /* Check if we have a related file object */
388 {
389 /* Use the related file object's device object */
390 OriginalDeviceObject = OpenPacket->RelatedFileObject->DeviceObject;
391 }
392
393 /* Validate device status */
396 {
397 /* We failed, return status */
400 }
401
402 /* Map the generic mask and set the new mapping in the access state */
410
411 /* Check what kind of access checks to do */
414 {
415 /* Call is from user-mode or kernel is forcing checks */
416 CheckMode = UserMode;
417 }
418 else
419 {
420 /* Call is from the kernel */
421 CheckMode = KernelMode;
422 }
423
424 /* Check privilege for backup or restore operation */
426 &OpenPacket->CreateOptions,
427 CheckMode,
428 OpenPacket->Disposition);
429
430 /* Check if we are re-parsing */
433 {
434 /* Get granted access from the last call */
436 }
437
438 /* Check if this is a volume open */
441 !(RemainingName->Length))
442 {
443 /* It is */
444 VolumeOpen = TRUE;
445 }
446
447 /* Now check if we need access checks */
450 (!(OpenPacket->RelatedFileObject) || (VolumeOpen)) &&
451 !(OpenPacket->Override))
452 {
453 KeEnterCriticalRegion();
455
456 /* Check if a device object is being parsed */
458 {
459 /* Lock the subject context */
461 LockHeld = TRUE;
462
463 /* Do access check */
465 SecurityDescriptor,
466 &AccessState->SubjectSecurityContext,
467 LockHeld,
468 DesiredAccess,
469 0,
470 &Privileges,
471 &IoFileObjectType->
472 TypeInfo.GenericMapping,
473 UserMode,
474 &GrantedAccess,
475 &Status);
477 {
478 /* Append and free the privileges */
481 }
482
483 /* Check if we got access */
485 {
486 /* Update access state */
489 MAXIMUM_ALLOWED);
491 }
492
493 FileString.Length = 8;
494 FileString.MaximumLength = 8;
496
497 /* Do Audit/Alarm for open operation */
498 SeOpenObjectAuditAlarm(&FileString,
499 OriginalDeviceObject,
500 CompleteName,
501 OriginalDeviceObject->SecurityDescriptor,
502 AccessState,
503 FALSE,
504 AccessGranted,
505 UserMode,
506 &AccessState->GenerateOnClose);
507 }
508 else
509 {
510 /* Check if we need to do traverse validation */
512 ((OriginalDeviceObject->DeviceType == FILE_DEVICE_DISK) ||
513 (OriginalDeviceObject->DeviceType == FILE_DEVICE_CD_ROM)))
514 {
515 /* Check if this is a restricted token */
517 {
518 /* Do the FAST traverse check */
520 AccessState,
521 FILE_TRAVERSE,
522 UserMode);
523 }
524 else
525 {
526 /* Fail */
528 }
529
530 /* Check if we failed to get access */
532 {
533 /* Lock the subject context */
535 LockHeld = TRUE;
536
537 /* Do access check */
539 SecurityDescriptor,
540 &AccessState->SubjectSecurityContext,
541 LockHeld,
542 FILE_TRAVERSE,
543 0,
544 &Privileges,
545 &IoFileObjectType->
546 TypeInfo.GenericMapping,
547 UserMode,
548 &GrantedAccess,
549 &Status);
551 {
552 /* Append and free the privileges */
555 }
556 }
557
558 /* FIXME: Do Audit/Alarm for traverse check */
559 }
560 else
561 {
562 /* Access automatically granted */
564 }
565 }
566
568 KeLeaveCriticalRegion();
569
570 /* Check if we hold the lock */
571 if (LockHeld)
572 {
573 /* Release it */
575 }
576
577 /* Check if access failed */
579 {
580 /* Dereference the device and fail */
584 }
585 }
586
587 /* Check if we can simply use a dummy file */
589
590 /* Check if this is a direct open */
592 !(OpenPacket->RelatedFileObject) &&
594 FILE_READ_ATTRIBUTES |
595 READ_CONTROL |
596 ACCESS_SYSTEM_SECURITY |
597 WRITE_OWNER |
598 WRITE_DAC)) == 0) &&
599 !(UseDummyFile))
600 {
601 /* Remember this for later */
602 DirectOpen = TRUE;
603 }
604
605 /* Check if we have a related FO that wasn't a direct open */
608 {
609 /* The device object is the one we were given */
610 DeviceObject = ParseObject;
611
612 /* Check if the related FO had a VPB */
614 {
615 /* Yes, remember it */
617
618 /* Reference it */
620
621 /* Check if we were given a specific top level device to use */
623 {
625 }
626 }
627 }
628 else
629 {
630 /* Check if it has a VPB */
631 if ((OriginalDeviceObject->Vpb) && !(DirectOpen))
632 {
633 /* Check if the VPB is mounted, and mount it */
635 OriginalDeviceObject,
636 RemainingName,
637 &Status);
639
640 /* Get the VPB's device object */
642 }
643 else
644 {
645 /* The device object is the one we were given */
646 DeviceObject = OriginalDeviceObject;
647 }
648
649 /* If we weren't given a specific top level device, look for an attached device */
651 DeviceObject->AttachedDevice)
652 {
653 /* Get the attached device */
655 }
656 }
657
658 /* If we have a top level device hint, verify it */
660 {
663 {
667 }
668 }
669
670 /* If we traversed a mount point, reset the information */
672 {
674 }
675
676 /* Check if this is a secure FSD */
679 (!VolumeOpen))
680 {
682 GrantedAccess = 0;
683
684 KeEnterCriticalRegion();
686
687 /* Lock the subject context */
689
690 /* Do access check */
692 &AccessState->SubjectSecurityContext,
693 TRUE,
694 DesiredAccess,
695 0,
696 &Privileges,
698 UserMode,
699 &GrantedAccess,
700 &Status);
702 {
703 /* Append and free the privileges */
706 }
707
708 /* Check if we got access */
710 {
713 }
714
715 FileString.Length = 8;
716 FileString.MaximumLength = 8;
718
719 /* Do Audit/Alarm for open operation
720 * NOTA: we audit target device object
721 */
722 SeOpenObjectAuditAlarm(&FileString,
723 DeviceObject,
724 CompleteName,
725 OriginalDeviceObject->SecurityDescriptor,
726 AccessState,
727 FALSE,
728 AccessGranted,
729 UserMode,
730 &AccessState->GenerateOnClose);
731
733
735 KeLeaveCriticalRegion();
736
737 /* Check if access failed */
739 {
740 /* Dereference the device and fail */
744 }
745 }
746
747 /* Allocate the IRP */
750 {
751 /* Dereference the device and VPB, then fail */
755 }
756
757 /* Now set the IRP data */
768
769 /* Setup the security context */
770 SecurityContext.SecurityQos = SecurityQos;
774
775 /* Get the I/O Stack location */
777 StackLoc->Control = 0;
778
779 /* Check what kind of file this is */
781 {
782 /* Normal file */
784
785 /* Set the major function and EA Length */
788
789 /* Set the flags */
792 break;
793
794 /* Named pipe */
796
797 /* Set the named pipe MJ and set the parameters */
800 break;
801
802 /* Mailslot */
804
805 /* Set the mailslot MJ and set the parameters */
808 break;
809 }
810
811 /* Set the common data */
815 (OpenPacket->CreateOptions &
816 0xFFFFFF);
820
821 /* Check if we really need to create an object */
822 if (!UseDummyFile)
823 {
825
826 /* Tag on space for a file object extension */
829
830 /* Create the actual file object */
832 NULL,
833 Attributes,
834 NULL,
835 NULL);
837 IoFileObjectType,
838 &ObjectAttributes,
839 AccessMode,
840 NULL,
841 ObjectSize,
842 0,
843 0,
846 {
847 /* Create failed, free the IRP */
849
850 /* Dereference the device and VPB */
853
854 /* We failed, return status */
857 }
858
859 /* Clear the file object */
861
862 /* Check if this is Synch I/O */
865 {
866 /* Set the synch flag */
868
869 /* Check if it's also alertable */
871 {
872 /* It is, set the alertable flag */
874 }
875 }
876
877 /* Check if this is synch I/O */
879 {
880 /* Initialize the event */
882 }
883
884 /* Check if the caller requested no intermediate buffering */
886 {
887 /* Set the correct flag for the FSD to read */
889 }
890
891 /* Check if the caller requested write through support */
893 {
894 /* Set the correct flag for the FSD to read */
896 }
897
898 /* Check if the caller says the file will be only read sequentially */
900 {
901 /* Set the correct flag for the FSD to read */
903 }
904
905 /* Check if the caller believes the file will be only read randomly */
907 {
908 /* Set the correct flag for the FSD to read */
910 }
911
912 /* Check if we were asked to setup a file object extension */
914 {
915 PFILE_OBJECT_EXTENSION FileObjectExtension;
916
917 /* Make sure the file object knows it has an extension */
919
920 /* Initialize file object extension */
922 FileObject->FileObjectExtension = FileObjectExtension;
923
924 /* Add the top level device which we'll send the request to */
926 {
928 }
929 }
930 }
931 else
932 {
933 /* Use the dummy object instead */
934 LocalFileObject = OpenPacket->LocalFileObject;
936
937 /* Set it up */
941 }
942
943 /* Setup the file header */
947 FileObject->DeviceObject = OriginalDeviceObject;
948
949 /* Check if this is a direct device open */
951
952 /* Check if the caller wants case sensitivity */
954 {
955 /* Tell the driver about it */
957 }
958
959 /* Now set the file object */
962
963 /* Check if the file object has a name */
965 {
966 /* Setup the unicode string */
969 FileObject->FileName.MaximumLength,
970 TAG_IO_NAME);
972 {
973 /* Failed to allocate the name, free the IRP */
975
976 /* Dereference the device object and VPB */
979
980 /* Clear the FO and dereference it */
983
984 /* Fail */
986 }
987 }
988
989 /* Copy the name */
991
992 /* Initialize the File Object event and set the FO */
995
996 /* Queue the IRP and call the driver */
1000 {
1001 /* Wait for the driver to complete the create */
1003 Executive,
1004 KernelMode,
1005 FALSE,
1006 NULL);
1007
1008 /* Get the new status */
1010 }
1011 else
1012 {
1013 /* We'll have to complete it ourselves */
1016
1017 /* Handle name change if required */
1019 {
1020 /* Check this is a mount point */
1022 {
1023 PREPARSE_DATA_BUFFER ReparseData;
1024
1025 /* Reparse point attributes were passed by the driver in the auxiliary buffer */
1028
1032
1034 }
1035 }
1036
1037 /* Completion happens at APC_LEVEL */
1039
1040 /* Get the new I/O Status block ourselves */
1043
1044 /* Manually signal the even, we can't have any waiters */
1045 FileObject->Event.Header.SignalState = 1;
1046
1047 /* Now that we've signaled the events, de-associate the IRP */
1049
1050 /* Check if the IRP had an input buffer */
1053 {
1054 /* Free it. A driver might've tacked one on */
1056 }
1057
1058 /* Free the IRP and bring the IRQL back down */
1061 }
1062
1063 /* Copy the I/O Status */
1065
1066 /* The driver failed to create the file */
1068 {
1069 /* Check if we have a name and if so, free it */
1071 {
1072 /*
1073 * Don't use TAG_IO_NAME since the FileObject's FileName
1074 * may have been re-allocated using a different tag
1075 * by a filesystem.
1076 */
1079 FileObject->FileName.Length = 0;
1080 }
1081
1082 /* Clear its device object */
1084
1085 /* Save this now because the FO might go away */
1088
1089 /* Clear the file object in the open packet */
1091
1092 /* Dereference the file object */
1094
1095 /* Dereference the device object */
1097
1098 /* Unless the driver cancelled the open, dereference the VPB */
1100
1101 /* Set the status and return */
1104 }
1106 {
1109 {
1110 /* Update CompleteName with reparse info which got updated in IopDoNameTransmogrify() */
1112 {
1113 PWSTR NewCompleteName;
1114
1115 /* Allocate a new buffer for the string */
1118 {
1121 }
1122
1123 /* Release the old one */
1125 {
1126 /*
1127 * Don't use TAG_IO_NAME since the FileObject's FileName
1128 * may have been re-allocated using a different tag
1129 * by a filesystem.
1130 */
1131 ExFreePoolWithTag(CompleteName->Buffer, 0);
1132 }
1133
1134 /* And setup the new one */
1135 CompleteName->Buffer = NewCompleteName;
1136 CompleteName->MaximumLength = FileObject->FileName.Length;
1137 }
1138
1139 /* Copy our new complete name */
1141
1143 {
1145 }
1146 }
1147
1148 /* Check if we have a name and if so, free it */
1150 {
1151 /*
1152 * Don't use TAG_IO_NAME since the FileObject's FileName
1153 * may have been re-allocated using a different tag
1154 * by a filesystem.
1155 */
1158 FileObject->FileName.Length = 0;
1159 }
1160
1161 /* Clear its device object */
1163
1164 /* Clear the file object in the open packet */
1166
1167 /* Dereference the file object */
1169
1170 /* Dereference the device object */
1172
1173 /* Unless the driver cancelled the open, dereference the VPB */
1175
1177 {
1179
1180 /* Inform we traversed a mount point for later attempt */
1182 {
1183 OpenPacket->TraversedMountPoint = 1;
1184 }
1185
1186 /* In case we override checks, but got this on volume open, fail hard */
1188 {
1189 KeBugCheckEx(DRIVER_RETURNED_STATUS_REPARSE_FOR_VOLUME_OPEN,
1190 (ULONG_PTR)OriginalDeviceObject,
1192 (ULONG_PTR)CompleteName,
1193 OpenPacket->Information);
1194 }
1195
1196 /* Return to IO/OB so that information can be upgraded */
1198 }
1199
1200 /* Loop again and reattempt an opening */
1201 continue;
1202 }
1203
1204 break;
1205 }
1206
1209
1210 /* Get the owner of the File Object */
1212
1213 /*
1214 * It's possible that the device to whom we sent the IRP to
1215 * isn't actually the device that ended opening the file object
1216 * internally.
1217 */
1219 {
1220 /* We have to de-reference the VPB we had associated */
1222
1223 /* And re-associate with the actual one */
1226 }
1227
1228 /* Make sure we are not using a dummy */
1229 if (!UseDummyFile)
1230 {
1231 /* Check if this was a volume open */
1234 !(FileObject->FileName.Length))
1235 {
1236 /* All signs point to it, but make sure it was actually an FSD */
1238 (OwnerDevice->DeviceType == FILE_DEVICE_CD_ROM_FILE_SYSTEM) ||
1239 (OwnerDevice->DeviceType == FILE_DEVICE_TAPE_FILE_SYSTEM) ||
1240 (OwnerDevice->DeviceType == FILE_DEVICE_FILE_SYSTEM))
1241 {
1242 /* The owner device is an FSD, so this is a volume open for real */
1244 }
1245 }
1246
1247 /* Reference the object and set the parse check */
1253 }
1254 else
1255 {
1256 /* Check if this was a query */
1258 {
1259 /* Check if the caller wants basic info only */
1261 {
1262 /* Allocate the buffer */
1264 sizeof(*FileBasicInfo),
1265 TAG_IO);
1266 if (FileBasicInfo)
1267 {
1268 /* Do the query */
1270 FileBasicInformation,
1271 sizeof(*FileBasicInfo),
1272 FileBasicInfo,
1273 &ReturnLength);
1275 {
1276 /* Copy the data */
1278 FileBasicInfo,
1279 ReturnLength);
1280 }
1281
1282 /* Free our buffer */
1284 }
1285 else
1286 {
1287 /* Fail */
1289 }
1290 }
1291 else
1292 {
1293 /* This is a full query */
1295 FileObject,
1298 OpenPacket->NetworkInformation,
1299 &ReturnLength);
1301 }
1302 }
1303
1304 /* Delete the file object */
1306
1307 /* Clear out the file */
1309
1310 /* Set and return status */
1314 }
1315}
_In_ PVOID _In_ ULONG _Out_ PVOID _In_ ULONG _Inout_ PULONG ReturnLength
Definition: KdSystemDebugControl.c:34
BOOLEAN NTAPI SeAccessCheck(_In_ PSECURITY_DESCRIPTOR SecurityDescriptor, _In_ PSECURITY_SUBJECT_CONTEXT SubjectSecurityContext, _In_ BOOLEAN SubjectContextLocked, _In_ ACCESS_MASK DesiredAccess, _In_ ACCESS_MASK PreviouslyGrantedAccess, _Out_ PPRIVILEGE_SET *Privileges, _In_ PGENERIC_MAPPING GenericMapping, _In_ KPROCESSOR_MODE AccessMode, _Out_ PACCESS_MASK GrantedAccess, _Out_ PNTSTATUS AccessStatus)
Determines whether security access rights can be given to an object depending on the security descrip...
Definition: accesschk.c:1994
#define ExAcquireResourceSharedLite(res, wait)
Definition: env_spec_w32.h:621
static __inline BOOLEAN IopValidateOpenPacket(IN POPEN_PACKET OpenPacket)
Definition: io_x.h:154
NTSTATUS NTAPI IoQueryFileInformation(IN PFILE_OBJECT FileObject, IN FILE_INFORMATION_CLASS FileInformationClass, IN ULONG Length, OUT PVOID FileInformation, OUT PULONG ReturnedLength)
Definition: iofunc.c:1274
NTSYSAPI VOID NTAPI RtlMapGenericMask(PACCESS_MASK AccessMask, PGENERIC_MAPPING GenericMapping)
NTSYSAPI VOID NTAPI RtlCopyUnicodeString(PUNICODE_STRING DestinationString, PUNICODE_STRING SourceString)
struct _OPEN_PACKET * POPEN_PACKET
PVPB NTAPI IopCheckVpbMounted(IN POPEN_PACKET OpenPacket, IN PDEVICE_OBJECT DeviceObject, IN PUNICODE_STRING RemainingName, OUT PNTSTATUS Status)
Definition: volume.c:76
struct _FILE_OBJECT_EXTENSION FILE_OBJECT_EXTENSION
struct _FILE_OBJECT_EXTENSION * PFILE_OBJECT_EXTENSION
BOOLEAN NTAPI SeFastTraverseCheck(_In_ PSECURITY_DESCRIPTOR SecurityDescriptor, _In_ PACCESS_STATE AccessState, _In_ ACCESS_MASK DesiredAccess, _In_ KPROCESSOR_MODE AccessMode)
Determines whether security access rights can be given to an object depending on the security descrip...
Definition: accesschk.c:2138
NTSTATUS IopCheckTopDeviceHint(IN OUT PDEVICE_OBJECT *DeviceObject, IN POPEN_PACKET OpenPacket, BOOLEAN DirectOpen)
Definition: file.c:275
VOID NTAPI IopCheckBackupRestorePrivilege(IN PACCESS_STATE AccessState, IN OUT PULONG CreateOptions, IN KPROCESSOR_MODE PreviousMode, IN ULONG Disposition)
Definition: file.c:25
VOID NTAPI IopDoNameTransmogrify(IN PIRP Irp, IN PFILE_OBJECT FileObject, IN PREPARSE_DATA_BUFFER DataBuffer)
Definition: file.c:170
NTSTATUS NTAPI IopCheckDeviceAndDriver(IN POPEN_PACKET OpenPacket, IN PDEVICE_OBJECT DeviceObject)
Definition: file.c:135
VOID NTAPI SeSetAccessStateGenericMapping(_In_ PACCESS_STATE AccessState, _In_ PGENERIC_MAPPING GenericMapping)
Sets a new generic mapping for an allocated access state.
Definition: access.c:193
VOID NTAPI SeOpenObjectAuditAlarm(_In_ PUNICODE_STRING ObjectTypeName, _In_opt_ PVOID Object, _In_opt_ PUNICODE_STRING AbsoluteObjectName, _In_ PSECURITY_DESCRIPTOR SecurityDescriptor, _In_ PACCESS_STATE AccessState, _In_ BOOLEAN ObjectCreated, _In_ BOOLEAN AccessGranted, _In_ KPROCESSOR_MODE AccessMode, _Out_ PBOOLEAN GenerateOnClose)
Creates an audit with alarm notification of an object that is being opened.
Definition: audit.c:1213
VOID NTAPI SeFreePrivileges(_In_ PPRIVILEGE_SET Privileges)
Frees a set of privileges.
Definition: priv.c:669
struct _REPARSE_DATA_BUFFER * PREPARSE_DATA_BUFFER
Definition: compobj.c:4795
Definition: nt_native.h:938
Definition: from_kernel.h:207
Definition: iotypes.h:2865
struct _IO_STACK_LOCATION::@4138::@4139 Create
struct _IO_STACK_LOCATION::@4138::@4140 CreatePipe
struct _IO_STACK_LOCATION::@4138::@4141 CreateMailslot
Definition: env_spec_w32.h:368
VOID NTAPI SeLockSubjectContext(_In_ PSECURITY_SUBJECT_CONTEXT SubjectContext)
Locks both the referenced primary and client access tokens of a security subject context.
Definition: subject.c:107
VOID NTAPI SeUnlockSubjectContext(_In_ PSECURITY_SUBJECT_CONTEXT SubjectContext)
Unlocks both the referenced primary and client access tokens of a security subject context.
Definition: subject.c:138
_Must_inspect_result_ _In_ WDFDMAENABLER _In_ _In_opt_ PWDF_OBJECT_ATTRIBUTES Attributes
Definition: wdfcommonbuffer.h:97
#define IRP_DEALLOCATE_BUFFER
#define IRP_MJ_CREATE_NAMED_PIPE
#define IRP_MJ_CREATE_MAILSLOT
#define IRP_CREATE_OPERATION
#define IRP_DEFER_IO_COMPLETION
#define IRP_BUFFERED_IO
_In_ PSECURITY_SUBJECT_CONTEXT _In_ BOOLEAN _In_ ACCESS_MASK _In_ ACCESS_MASK _Outptr_opt_ PPRIVILEGE_SET _In_ PGENERIC_MAPPING _In_ KPROCESSOR_MODE _Out_ PACCESS_MASK GrantedAccess
Definition: sefuncs.h:20
Referenced by IopCreateObjectTypes(), and IopParseFile().
◆ IopParseFile()
| NTSTATUS NTAPI IopParseFile | ( | IN PVOID | ParseObject, |
| IN PVOID | ObjectType, | ||
| IN OUT PACCESS_STATE | AccessState, | ||
| IN KPROCESSOR_MODE | AccessMode, | ||
| IN ULONG | Attributes, | ||
| IN OUT PUNICODE_STRING | CompleteName, | ||
| IN OUT PUNICODE_STRING | RemainingName, | ||
| IN OUT PVOID Context | OPTIONAL, | ||
| IN PSECURITY_QUALITY_OF_SERVICE SecurityQos | OPTIONAL, | ||
| OUT PVOID * | Object | ||
| ) |
Definition at line 1319 of file file.c.
1329{
1332
1333 /* Validate the open packet */
1335
1336 /* Get the device object */
1338 OpenPacket->RelatedFileObject = ParseObject;
1339
1340 /* Call the main routine */
1342 ObjectType,
1343 AccessState,
1344 AccessMode,
1345 Attributes,
1346 CompleteName,
1347 RemainingName,
1348 OpenPacket,
1349 SecurityQos,
1350 Object);
1351}
NTSTATUS NTAPI IopParseDevice(IN PVOID ParseObject, IN PVOID ObjectType, IN OUT PACCESS_STATE AccessState, IN KPROCESSOR_MODE AccessMode, IN ULONG Attributes, IN OUT PUNICODE_STRING CompleteName, IN OUT PUNICODE_STRING RemainingName, IN OUT PVOID Context, IN PSECURITY_QUALITY_OF_SERVICE SecurityQos OPTIONAL, OUT PVOID *Object)
Definition: file.c:324
Referenced by IopCreateObjectTypes().
◆ IopQueryAttributesFile()
| NTSTATUS NTAPI IopQueryAttributesFile | ( | IN POBJECT_ATTRIBUTES | ObjectAttributes, |
| IN FILE_INFORMATION_CLASS | FileInformationClass, | ||
| IN ULONG | FileInformationSize, | ||
| OUT PVOID | FileInformation | ||
| ) |
Definition at line 2345 of file file.c.
2349{
2352 DUMMY_FILE_OBJECT LocalFileObject;
2353 FILE_NETWORK_OPEN_INFORMATION NetworkOpenInfo;
2355 OPEN_PACKET OpenPacket;
2356 BOOLEAN IsBasic;
2357 PAGED_CODE();
2359
2360 /* Check if the caller was user mode */
2362 {
2363 /* Protect probe in SEH */
2364 _SEH2_TRY
2365 {
2366 /* Probe the buffer */
2368 }
2370 {
2371 /* Return the exception code */
2373 }
2374 _SEH2_END;
2375 }
2376
2377 /* Check if this is a basic or full request */
2379
2380 /* Setup the Open Packet */
2388 OpenPacket.NetworkInformation = IsBasic ? &NetworkOpenInfo :
2390 &NetworkOpenInfo : FileInformation;
2393 OpenPacket.LocalFileObject = &LocalFileObject;
2394
2395 /* Update the operation count */
2397
2398 /*
2399 * Attempt opening the file. This will call the I/O Parse Routine for
2400 * the File Object (IopParseDevice) which will use the dummy file obejct
2401 * send the IRP to its device object. Note that we have two statuses
2402 * to worry about: the Object Manager's status (in Status) and the I/O
2403 * status, which is in the Open Packet's Final Status, and determined
2404 * by the Parse Check member.
2405 */
2407 NULL,
2408 AccessMode,
2409 NULL,
2410 FILE_READ_ATTRIBUTES,
2411 &OpenPacket,
2412 &Handle);
2414 {
2415 /* Parse failed */
2419 }
2420 else
2421 {
2422 /* Use the Io status */
2424 }
2425
2426 /* Check if we were succesful and this was user mode and a full query */
2428 {
2429 /* Enter SEH for copy */
2430 _SEH2_TRY
2431 {
2432 /* Copy the buffer back */
2434 &NetworkOpenInfo,
2435 FileInformationSize);
2436 }
2438 {
2439 /* Get exception code */
2441 }
2442 _SEH2_END;
2443 }
2444
2445 /* Return status */
2447}
VOID NTAPI ProbeForWrite(IN PVOID Address, IN SIZE_T Length, IN ULONG Alignment)
Definition: exintrin.c:143
static OUT PIO_STATUS_BLOCK OUT PVOID IN ULONG IN FILE_INFORMATION_CLASS FileInformationClass
Definition: pipe.c:75
Referenced by NtQueryAttributesFile(), and NtQueryFullAttributesFile().
◆ IopQueryName()
| NTSTATUS NTAPI IopQueryName | ( | IN PVOID | ObjectBody, |
| IN BOOLEAN | HasName, | ||
| OUT POBJECT_NAME_INFORMATION | ObjectNameInfo, | ||
| IN ULONG | Length, | ||
| OUT PULONG | ReturnLength, | ||
| IN KPROCESSOR_MODE | PreviousMode | ||
| ) |
Definition at line 1926 of file file.c.
1932{
1934 HasName,
1935 FALSE,
1936 ObjectNameInfo,
1937 Length,
1938 ReturnLength,
1939 PreviousMode);
1940}
NTSTATUS NTAPI IopQueryNameInternal(IN PVOID ObjectBody, IN BOOLEAN HasName, IN BOOLEAN QueryDosName, OUT POBJECT_NAME_INFORMATION ObjectNameInfo, IN ULONG Length, OUT PULONG ReturnLength, IN KPROCESSOR_MODE PreviousMode)
Definition: file.c:1944
Referenced by IopCreateObjectTypes().
◆ IopQueryNameInternal()
| NTSTATUS NTAPI IopQueryNameInternal | ( | IN PVOID | ObjectBody, |
| IN BOOLEAN | HasName, | ||
| IN BOOLEAN | QueryDosName, | ||
| OUT POBJECT_NAME_INFORMATION | ObjectNameInfo, | ||
| IN ULONG | Length, | ||
| OUT PULONG | ReturnLength, | ||
| IN KPROCESSOR_MODE | PreviousMode | ||
| ) |
Definition at line 1944 of file file.c.
1951{
1952 POBJECT_NAME_INFORMATION LocalInfo;
1953 PFILE_NAME_INFORMATION LocalFileInfo;
1960 BOOLEAN NoObCall;
1961
1963
1964 /* Validate length */
1966 {
1967 /* Wrong length, fail */
1970 }
1971
1972 /* Allocate Buffer */
1975
1976 /* Query DOS name if the caller asked to */
1977 NoObCall = FALSE;
1978 if (QueryDosName)
1979 {
1981
1982 /* In case of a network file system, don't call mountmgr */
1984 {
1985 /* We'll store separator and terminator */
1988 {
1990 }
1991 else
1992 {
1998 }
1999 }
2000 /* Otherwise, call mountmgr to get DOS name */
2001 else
2002 {
2005 }
2006 }
2007
2008 /* Fall back if querying DOS name failed or if caller never wanted it ;-) */
2010 {
2011 /* Query the name */
2013 LocalInfo,
2014 Length,
2015 &LocalReturnLength);
2016 }
2017 else
2018 {
2019 NoObCall = TRUE;
2020 }
2021
2023 {
2024 /* Free the buffer and fail */
2027 }
2028
2029 /* Get buffer pointer */
2031
2032 _SEH2_TRY
2033 {
2034 /* Copy the information */
2035 if (QueryDosName && NoObCall)
2036 {
2038
2039 /* Copy structure first */
2040 RtlCopyMemory(ObjectNameInfo,
2041 LocalInfo,
2043 /* Name then */
2045 (Length >= LocalReturnLength ? LocalInfo->Name.Length : Length - sizeof(OBJECT_NAME_INFORMATION)));
2046
2048 {
2050 }
2051 }
2052 else
2053 {
2054 RtlCopyMemory(ObjectNameInfo,
2055 LocalInfo,
2056 (LocalReturnLength > Length) ?
2057 Length : LocalReturnLength);
2058 }
2059
2060 /* Set buffer pointer */
2061 ObjectNameInfo->Name.Buffer = p;
2062
2063 /* Advance in buffer */
2065
2066 /* Check if this already filled our buffer */
2068 {
2069 /* Set the length mismatch to true, so that we can return
2070 * the proper buffer size to the caller later
2071 */
2072 LengthMismatch = TRUE;
2073
2074 /* Save the initial buffer length value */
2075 *ReturnLength = LocalReturnLength;
2076 }
2077
2078 /* Now get the file name buffer and check the length needed */
2079 LocalFileInfo = (PFILE_NAME_INFORMATION)LocalInfo;
2081 LocalReturnLength +
2083
2084 /* Query the File name */
2087 {
2090 FileNameInformation,
2091 LocalFileInfo,
2092 &LocalReturnLength);
2093 }
2094 else
2095 {
2097 FileNameInformation,
2099 LocalFileInfo,
2100 &LocalReturnLength);
2101 }
2103 {
2104 /* Allow status that would mean it's not implemented in the storage stack */
2107 {
2108 _SEH2_LEAVE;
2109 }
2110
2111 /* In such case, zero the output and reset the status */
2113 LocalFileInfo->FileNameLength = 0;
2116 }
2117 else
2118 {
2119 /* We'll at least return the name length */
2121 {
2123 }
2124 }
2125
2126 /* If the provided buffer is too small, return the required size */
2127 if (LengthMismatch)
2128 {
2129 /* Add the required length */
2131
2132 /* Free the allocated buffer and return failure */
2134 _SEH2_LEAVE;
2135 }
2136
2137 /* Now calculate the new lengths left */
2138 FileLength = LocalReturnLength -
2141 (ULONG_PTR)ObjectNameInfo +
2142 LocalFileInfo->FileNameLength);
2143
2144 /* Don't copy the name if it's not valid */
2146 {
2147 /* Free the allocated buffer and return failure */
2149 _SEH2_LEAVE;
2150 }
2151
2152 /* Write the Name and null-terminate it */
2157
2158 /* Return the length needed */
2159 *ReturnLength = LocalReturnLength;
2160
2161 /* Setup the length and maximum length */
2165 ObjectNameInfo->Name.MaximumLength = (USHORT)ObjectNameInfo->Name.Length +
2167 }
2168 _SEH2_FINALLY
2169 {
2170 /* Free buffer and return */
2172 } _SEH2_END;
2173
2175}
struct _FILE_NAME_INFORMATION * PFILE_NAME_INFORMATION
struct _OBJECT_NAME_INFORMATION OBJECT_NAME_INFORMATION
NTSTATUS NTAPI IopGetFileInformation(IN PFILE_OBJECT FileObject, IN ULONG Length, IN FILE_INFORMATION_CLASS FileInfoClass, OUT PVOID Buffer, OUT PULONG ReturnedLength)
Definition: iofunc.c:777
NTSTATUS NTAPI IoVolumeDeviceToDosName(_In_ PVOID VolumeDeviceObject, _Out_ _When_(return==0, _At_(DosName->Buffer, __drv_allocatesMem(Mem))) PUNICODE_STRING DosName)
Definition: volume.c:1279
NTSTATUS NTAPI ObQueryNameString(IN PVOID Object, OUT POBJECT_NAME_INFORMATION ObjectNameInfo, IN ULONG Length, OUT PULONG ReturnLength)
Definition: obname.c:1207
Definition: winternl.h:649
Definition: filecomp.c:348
Definition: nt_native.h:1269
Referenced by IopQueryName(), and IoQueryFileDosDeviceName().
◆ IopSetDeviceSecurityDescriptor()
| NTSTATUS NTAPI IopSetDeviceSecurityDescriptor | ( | IN PDEVICE_OBJECT | DeviceObject, |
| IN PSECURITY_INFORMATION | SecurityInformation, | ||
| IN PSECURITY_DESCRIPTOR | SecurityDescriptor, | ||
| IN POOL_TYPE | PoolType, | ||
| IN PGENERIC_MAPPING | GenericMapping | ||
| ) |
Definition at line 1525 of file file.c.
1530{
1532 PSECURITY_DESCRIPTOR OldSecurityDescriptor, CachedSecurityDescriptor, NewSecurityDescriptor;
1533
1534 PAGED_CODE();
1535
1536 /* Keep attempting till we find our old SD or fail */
1538 {
1539 KeEnterCriticalRegion();
1541
1542 /* Get our old SD and reference it */
1543 OldSecurityDescriptor = DeviceObject->SecurityDescriptor;
1545 {
1546 ObReferenceSecurityDescriptor(OldSecurityDescriptor, 1);
1547 }
1548
1550 KeLeaveCriticalRegion();
1551
1552 /* Set the SD information */
1553 NewSecurityDescriptor = OldSecurityDescriptor;
1555 SecurityDescriptor, &NewSecurityDescriptor,
1557
1559 {
1561 {
1562 ObDereferenceSecurityDescriptor(OldSecurityDescriptor, 1);
1563 }
1564
1565 break;
1566 }
1567
1568 /* Add the new DS to the internal cache */
1570 &CachedSecurityDescriptor, 1);
1571 ExFreePool(NewSecurityDescriptor);
1573 {
1574 ObDereferenceSecurityDescriptor(OldSecurityDescriptor, 1);
1575 break;
1576 }
1577
1578 KeEnterCriticalRegion();
1580 /* Check if someone changed it in our back */
1582 {
1583 /* We're clear, do the swap */
1584 DeviceObject->SecurityDescriptor = CachedSecurityDescriptor;
1586 KeLeaveCriticalRegion();
1587
1588 /* And dereference old SD (twice - us + not in use) */
1589 ObDereferenceSecurityDescriptor(OldSecurityDescriptor, 2);
1590
1591 break;
1592 }
1594 KeLeaveCriticalRegion();
1595
1596 /* If so, try again */
1597 ObDereferenceSecurityDescriptor(OldSecurityDescriptor, 1);
1598 ObDereferenceSecurityDescriptor(CachedSecurityDescriptor, 1);
1599 }
1600
1602}
VOID NTAPI ObDereferenceSecurityDescriptor(IN PSECURITY_DESCRIPTOR SecurityDescriptor, IN ULONG Count)
Definition: obsdcach.c:287
VOID NTAPI ObReferenceSecurityDescriptor(IN PSECURITY_DESCRIPTOR SecurityDescriptor, IN ULONG Count)
Definition: obsdcach.c:256
NTKERNELAPI NTSTATUS NTAPI SeSetSecurityDescriptorInfo(_In_opt_ PVOID Object, _In_ PSECURITY_INFORMATION SecurityInformation, _In_ PSECURITY_DESCRIPTOR SecurityDescriptor, _Inout_ PSECURITY_DESCRIPTOR *ObjectsSecurityDescriptor, _In_ POOL_TYPE PoolType, _In_ PGENERIC_MAPPING GenericMapping)
Referenced by IopGetSetSecurityObject(), and IopSetDeviceSecurityDescriptors().
◆ IopSetDeviceSecurityDescriptors()
| NTSTATUS NTAPI IopSetDeviceSecurityDescriptors | ( | IN PDEVICE_OBJECT | UpperDeviceObject, |
| IN PDEVICE_OBJECT | PhysicalDeviceObject, | ||
| IN PSECURITY_INFORMATION | SecurityInformation, | ||
| IN PSECURITY_DESCRIPTOR | SecurityDescriptor, | ||
| IN POOL_TYPE | PoolType, | ||
| IN PGENERIC_MAPPING | GenericMapping | ||
| ) |
Definition at line 1606 of file file.c.
1612{
1615
1616 PAGED_CODE();
1617
1619
1620 /* We always reference the DO we're working on */
1621 ObReferenceObject(CurrentDO);
1622
1623 /* Go up from PDO to latest DO */
1624 do
1625 {
1626 /* Attempt to set the new SD on it */
1629 GenericMapping);
1630 /* Was our last one? Remember that status then */
1631 if (CurrentDO == UpperDeviceObject)
1632 {
1633 Status = TmpStatus;
1634 }
1635
1636 /* Try to move to the next DO (and thus, reference it) */
1637 NextDevice = CurrentDO->AttachedDevice;
1638 if (NextDevice)
1639 {
1640 ObReferenceObject(NextDevice);
1641 }
1642
1643 /* Dereference current DO and move to the next one */
1644 ObDereferenceObject(CurrentDO);
1645 CurrentDO = NextDevice;
1646 }
1648
1650}
Referenced by IopGetSetSecurityObject().
◆ IoQueryFileDosDeviceName()
| NTSTATUS NTAPI IoQueryFileDosDeviceName | ( | IN PFILE_OBJECT | FileObject, |
| OUT POBJECT_NAME_INFORMATION * | ObjectNameInformation | ||
| ) |
Definition at line 3664 of file file.c.
3666{
3669 POBJECT_NAME_INFORMATION LocalInfo;
3670
3671 /* Start with a buffer length of 200 */
3672 ReturnLength = 200;
3673 /*
3674 * We'll loop until query works.
3675 * We will use returned length for next loop
3676 * iteration, trying to have a big enough buffer.
3677 */
3679 {
3680 /* Allocate our work buffer */
3683 {
3685 }
3686
3687 /* Query the DOS name */
3689 TRUE,
3690 TRUE,
3691 LocalInfo,
3692 Length,
3693 &ReturnLength,
3694 KernelMode);
3695 /* If it succeed, nothing more to do */
3697 {
3698 break;
3699 }
3700
3701 /* Otherwise, prepare for re-allocation */
3703
3704 /*
3705 * If we failed because of something else
3706 * than memory, simply stop and fail here
3707 */
3709 {
3711 }
3712 }
3713
3714 /* Success case here: return our buffer */
3715 *ObjectNameInformation = LocalInfo;
3717}
◆ IoRemoveShareAccess()
| VOID NTAPI IoRemoveShareAccess | ( | IN PFILE_OBJECT | FileObject, |
| IN PSHARE_ACCESS | ShareAccess | ||
| ) |
Definition at line 3479 of file file.c.
3481{
3482 PAGED_CODE();
3483
3484 /* Check if the file has an extension */
3486 {
3487 /* Check if caller specified to ignore access checks */
3488 //if (FileObject->FoExtFlags & IO_IGNORE_SHARE_ACCESS_CHECK)
3489 {
3490 /* Don't update share access */
3491 return;
3492 }
3493 }
3494
3495 /* Otherwise, check if there's any access present */
3497 (FileObject->WriteAccess) ||
3498 (FileObject->DeleteAccess))
3499 {
3500 /* Decrement the open count */
3501 ShareAccess->OpenCount--;
3502
3503 /* Remove share access */
3510 }
3511}
Referenced by _Dispatch_type_(), _Requires_lock_held_(), Ext2Cleanup(), Ext2CreateFile(), MupCleanupVcb(), open_file2(), RawCleanup(), UDFCommonCleanup(), UDFCommonCreate(), and VfatCleanupFile().
◆ IoSetFileOrigin()
Definition at line 3724 of file file.c.
3726{
3728 BOOLEAN FlagSet;
3729
3730 /* Get the flag status */
3732
3733 /* Don't set the flag if it was set already, and don't remove it if it wasn't set */
3734 if (Remote && !FlagSet)
3735 {
3736 /* Set the flag */
3738 }
3739 else if (!Remote && FlagSet)
3740 {
3741 /* Remove the flag */
3742 FileObject->Flags &= ~FO_REMOTE_ORIGIN;
3743 }
3744 else
3745 {
3746 /* Fail */
3748 }
3749
3750 /* Return status */
3752}
◆ IoSetShareAccess()
| VOID NTAPI IoSetShareAccess | ( | IN ACCESS_MASK | DesiredAccess, |
| IN ULONG | DesiredShareAccess, | ||
| IN PFILE_OBJECT | FileObject, | ||
| OUT PSHARE_ACCESS | ShareAccess | ||
| ) |
Definition at line 3518 of file file.c.
3522{
3525 BOOLEAN DeleteAccess;
3526 BOOLEAN SharedRead;
3527 BOOLEAN SharedWrite;
3528 BOOLEAN SharedDelete;
3530 PAGED_CODE();
3531
3535
3536 /* Check if the file has an extension */
3538 {
3539 /* Check if caller specified to ignore access checks */
3540 //if (FileObject->FoExtFlags & IO_IGNORE_SHARE_ACCESS_CHECK)
3541 {
3542 /* Don't update share access */
3544 }
3545 }
3546
3547 /* Update basic access */
3550 FileObject->DeleteAccess = DeleteAccess;
3551
3552 /* Check if we have no access as all */
3554 {
3555 /* Check if we need to update the structure */
3557
3558 /* Otherwise, clear data */
3559 ShareAccess->OpenCount = 0;
3560 ShareAccess->Readers = 0;
3561 ShareAccess->Writers = 0;
3562 ShareAccess->Deleters = 0;
3563 ShareAccess->SharedRead = 0;
3564 ShareAccess->SharedWrite = 0;
3565 ShareAccess->SharedDelete = 0;
3566 }
3567 else
3568 {
3569 /* Calculate shared access */
3573
3574 /* Set it in the FO */
3575 FileObject->SharedRead = SharedRead;
3576 FileObject->SharedWrite = SharedWrite;
3577 FileObject->SharedDelete = SharedDelete;
3578
3579 /* Check if we need to update the structure */
3581
3582 /* Otherwise, set data */
3583 ShareAccess->OpenCount = 1;
3586 ShareAccess->Deleters = DeleteAccess;
3587 ShareAccess->SharedRead = SharedRead;
3588 ShareAccess->SharedWrite = SharedWrite;
3589 ShareAccess->SharedDelete = SharedDelete;
3590 }
3591}
Referenced by Ext2CreateFile(), Ext2CreateVolume(), file_create(), open_file2(), RawCreate(), UDFCheckAccessRights(), and VfatCreateFile().
◆ IoUpdateShareAccess()
| VOID NTAPI IoUpdateShareAccess | ( | IN PFILE_OBJECT | FileObject, |
| OUT PSHARE_ACCESS | ShareAccess | ||
| ) |
Definition at line 3352 of file file.c.
3354{
3355 PAGED_CODE();
3356
3357 /* Check if the file has an extension */
3359 {
3360 /* Check if caller specified to ignore access checks */
3361 //if (FileObject->FoExtFlags & IO_IGNORE_SHARE_ACCESS_CHECK)
3362 {
3363 /* Don't update share access */
3364 return;
3365 }
3366 }
3367
3368 /* Otherwise, check if there's any access present */
3370 (FileObject->WriteAccess) ||
3371 (FileObject->DeleteAccess))
3372 {
3373 /* Increase the open count */
3374 ShareAccess->OpenCount++;
3375
3376 /* Add new share access */
3383 }
3384}
Referenced by open_file2(), UDFCheckAccessRights(), and VfatCreateFile().
◆ NtCancelIoFile()
Definition at line 4020 of file file.c.
4022{
4031 PLIST_ENTRY ListHead, NextEntry;
4032 PAGED_CODE();
4034
4035 /* Check the previous mode */
4037 {
4038 /* Enter SEH for probing */
4039 _SEH2_TRY
4040 {
4041 /* Probe the I/O Status Block */
4043 }
4045 {
4046 /* Return the exception code */
4048 }
4049 _SEH2_END;
4050 }
4051
4052 /* Reference the file object */
4054 0,
4055 IoFileObjectType,
4056 PreviousMode,
4058 NULL);
4060
4061 /* IRP cancellations are synchronized at APC_LEVEL. */
4063
4064 /* Get the current thread */
4066
4067 /* Update the operation counts */
4069
4070 /* Loop the list */
4072 NextEntry = ListHead->Flink;
4073 while (ListHead != NextEntry)
4074 {
4075 /* Get the IRP and check if the File Object matches */
4078 {
4079 /* Cancel this IRP and keep looping */
4081 OurIrpsInList = TRUE;
4082 }
4083
4084 /* Go to the next entry */
4085 NextEntry = NextEntry->Flink;
4086 }
4087
4088 /* Lower the IRQL */
4090
4091 /* Check if we had found an IRP */
4092 if (OurIrpsInList)
4093 {
4094 /* Setup a 10ms wait */
4095 Interval.QuadPart = -100000;
4096
4097 /* Start looping */
4098 while (OurIrpsInList)
4099 {
4100 /* Do the wait */
4102 OurIrpsInList = FALSE;
4103
4104 /* Raise IRQL */
4106
4107 /* Now loop the list again */
4108 NextEntry = ListHead->Flink;
4109 while (NextEntry != ListHead)
4110 {
4111 /* Get the IRP and check if the File Object matches */
4114 {
4115 /* Keep looping */
4116 OurIrpsInList = TRUE;
4117 break;
4118 }
4119
4120 /* Go to the next entry */
4121 NextEntry = NextEntry->Flink;
4122 }
4123
4124 /* Lower the IRQL */
4126 }
4127 }
4128
4129 /* Enter SEH for writing back the I/O Status */
4130 _SEH2_TRY
4131 {
4132 /* Write success */
4135 }
4137 {
4138 /* Ignore exception */
4139 }
4140 _SEH2_END;
4141
4142 /* Dereference the file object and return success */
4145}
NTSTATUS NTAPI ObReferenceObjectByHandle(IN HANDLE Handle, IN ACCESS_MASK DesiredAccess, IN POBJECT_TYPE ObjectType, IN KPROCESSOR_MODE AccessMode, OUT PVOID *Object, OUT POBJECT_HANDLE_INFORMATION HandleInformation OPTIONAL)
Definition: obref.c:494
Definition: pstypes.h:1103
Definition: typedefs.h:120
Referenced by CancelIo(), FlushConsoleInputBuffer(), init_func_ptrs(), rpcrt4_conn_np_close_read(), rpcrt4_conn_np_read(), and WaitForKeyboard().
◆ NtCreateFile()
| NTSTATUS NTAPI NtCreateFile | ( | PHANDLE | FileHandle, |
| ACCESS_MASK | DesiredAccess, | ||
| POBJECT_ATTRIBUTES | ObjectAttributes, | ||
| PIO_STATUS_BLOCK | IoStatusBlock, | ||
| PLARGE_INTEGER | AllocateSize, | ||
| ULONG | FileAttributes, | ||
| ULONG | ShareAccess, | ||
| ULONG | CreateDisposition, | ||
| ULONG | CreateOptions, | ||
| PVOID | EaBuffer, | ||
| ULONG | EaLength | ||
| ) |
Definition at line 3759 of file file.c.
3770{
3771 /* Call the I/O Function */
3773 DesiredAccess,
3774 ObjectAttributes,
3775 IoStatusBlock,
3776 AllocateSize,
3777 FileAttributes,
3778 ShareAccess,
3779 CreateDisposition,
3780 CreateOptions,
3781 EaBuffer,
3782 EaLength,
3783 CreateFileTypeNone,
3784 NULL,
3785 0);
3786}
NTSTATUS NTAPI IoCreateFile(OUT PHANDLE FileHandle, IN ACCESS_MASK DesiredAccess, IN POBJECT_ATTRIBUTES ObjectAttributes, OUT PIO_STATUS_BLOCK IoStatusBlock, IN PLARGE_INTEGER AllocationSize OPTIONAL, IN ULONG FileAttributes, IN ULONG ShareAccess, IN ULONG Disposition, IN ULONG CreateOptions, IN PVOID EaBuffer OPTIONAL, IN ULONG EaLength, IN CREATE_FILE_TYPE CreateFileType, IN PVOID ExtraCreateParameters OPTIONAL, IN ULONG Options)
Definition: file.c:3011
_Must_inspect_result_ _In_opt_ WDFKEY _In_ PCUNICODE_STRING _In_ ACCESS_MASK _In_ ULONG _Out_opt_ PULONG CreateDisposition
Definition: wdfregistry.h:120
◆ NtCreateMailslotFile()
| NTSTATUS NTAPI NtCreateMailslotFile | ( | OUT PHANDLE | FileHandle, |
| IN ACCESS_MASK | DesiredAccess, | ||
| IN POBJECT_ATTRIBUTES | ObjectAttributes, | ||
| OUT PIO_STATUS_BLOCK | IoStatusBlock, | ||
| IN ULONG | CreateOptions, | ||
| IN ULONG | MailslotQuota, | ||
| IN ULONG | MaxMessageSize, | ||
| IN PLARGE_INTEGER | TimeOut | ||
| ) |
Definition at line 3790 of file file.c.
3798{
3800 PAGED_CODE();
3801
3802 /* Check for Timeout */
3803 if (TimeOut)
3804 {
3805 /* check if the call came from user mode */
3807 {
3808 /* Enter SEH for Probe */
3809 _SEH2_TRY
3810 {
3811 /* Probe the timeout */
3813 }
3815 {
3816 /* Return the exception code */
3818 }
3819 _SEH2_END;
3820 }
3821 else
3822 {
3823 /* Otherwise, capture directly */
3824 Buffer.ReadTimeout = *TimeOut;
3825 }
3826
3827 /* Set the correct setting */
3829 }
3830 else
3831 {
3832 /* Tell the FSD we don't have a timeout */
3834 }
3835
3836 /* Set Settings */
3837 Buffer.MailslotQuota = MailslotQuota;
3838 Buffer.MaximumMessageSize = MaxMessageSize;
3839
3840 /* Call I/O */
3842 DesiredAccess,
3843 ObjectAttributes,
3844 IoStatusBlock,
3845 NULL,
3846 0,
3848 FILE_CREATE,
3849 CreateOptions,
3850 NULL,
3851 0,
3852 CreateFileTypeMailslot,
3854 0);
3855}
Definition: iotypes.h:944
Referenced by CreateMailslotW().
◆ NtCreateNamedPipeFile()
| NTSTATUS NTAPI NtCreateNamedPipeFile | ( | OUT PHANDLE | FileHandle, |
| IN ACCESS_MASK | DesiredAccess, | ||
| IN POBJECT_ATTRIBUTES | ObjectAttributes, | ||
| OUT PIO_STATUS_BLOCK | IoStatusBlock, | ||
| IN ULONG | ShareAccess, | ||
| IN ULONG | CreateDisposition, | ||
| IN ULONG | CreateOptions, | ||
| IN ULONG | NamedPipeType, | ||
| IN ULONG | ReadMode, | ||
| IN ULONG | CompletionMode, | ||
| IN ULONG | MaximumInstances, | ||
| IN ULONG | InboundQuota, | ||
| IN ULONG | OutboundQuota, | ||
| IN PLARGE_INTEGER | DefaultTimeout | ||
| ) |
Definition at line 3859 of file file.c.
3873{
3875 PAGED_CODE();
3876
3877 /* Check for Timeout */
3878 if (DefaultTimeout)
3879 {
3880 /* check if the call came from user mode */
3882 {
3883 /* Enter SEH for Probe */
3884 _SEH2_TRY
3885 {
3886 /* Probe the timeout */
3887 Buffer.DefaultTimeout =
3888 ProbeForReadLargeInteger(DefaultTimeout);
3889 }
3891 {
3892 /* Return the exception code */
3894 }
3895 _SEH2_END;
3896 }
3897 else
3898 {
3899 /* Otherwise, capture directly */
3900 Buffer.DefaultTimeout = *DefaultTimeout;
3901 }
3902
3903 /* Set the correct setting */
3905 }
3906 else
3907 {
3908 /* Tell the FSD we don't have a timeout */
3910 }
3911
3912 /* Set Settings */
3913 Buffer.NamedPipeType = NamedPipeType;
3914 Buffer.ReadMode = ReadMode;
3915 Buffer.CompletionMode = CompletionMode;
3916 Buffer.MaximumInstances = MaximumInstances;
3917 Buffer.InboundQuota = InboundQuota;
3918 Buffer.OutboundQuota = OutboundQuota;
3919
3920 /* Call I/O */
3922 DesiredAccess,
3923 ObjectAttributes,
3924 IoStatusBlock,
3925 NULL,
3926 0,
3927 ShareAccess,
3928 CreateDisposition,
3929 CreateOptions,
3930 NULL,
3931 0,
3932 CreateFileTypeNamedPipe,
3934 0);
3935}
Referenced by CreateNamedPipeW(), CreatePipe(), and init_func_ptrs().
◆ NtDeleteFile()
| NTSTATUS NTAPI NtDeleteFile | ( | IN POBJECT_ATTRIBUTES | ObjectAttributes | ) |
Definition at line 4152 of file file.c.
4153{
4155 DUMMY_FILE_OBJECT LocalFileObject;
4158 OPEN_PACKET OpenPacket;
4159 PAGED_CODE();
4161
4162 /* Setup the Open Packet */
4168 FILE_SHARE_WRITE |
4169 FILE_SHARE_DELETE;
4172 OpenPacket.LocalFileObject = &LocalFileObject;
4173
4174 /* Update the operation counts */
4176
4177 /*
4178 * Attempt opening the file. This will call the I/O Parse Routine for
4179 * the File Object (IopParseDevice) which will use the dummy file obejct
4180 * send the IRP to its device object. Note that we have two statuses
4181 * to worry about: the Object Manager's status (in Status) and the I/O
4182 * status, which is in the Open Packet's Final Status, and determined
4183 * by the Parse Check member.
4184 */
4186 NULL,
4187 AccessMode,
4188 NULL,
4189 DELETE,
4190 &OpenPacket,
4191 &Handle);
4193
4194 /* Retrn the Io status */
4196}
◆ NtFlushWriteBuffer()
Definition at line 3939 of file file.c.
Referenced by InitSysCalls(), and Test_SyscallPerformance().
◆ NtOpenFile()
| NTSTATUS NTAPI NtOpenFile | ( | OUT PHANDLE | FileHandle, |
| IN ACCESS_MASK | DesiredAccess, | ||
| IN POBJECT_ATTRIBUTES | ObjectAttributes, | ||
| OUT PIO_STATUS_BLOCK | IoStatusBlock, | ||
| IN ULONG | ShareAccess, | ||
| IN ULONG | OpenOptions | ||
| ) |
Definition at line 3953 of file file.c.
3959{
3960 /* Call the I/O Function */
3962 DesiredAccess,
3963 ObjectAttributes,
3964 IoStatusBlock,
3965 NULL,
3966 0,
3967 ShareAccess,
3968 FILE_OPEN,
3969 OpenOptions,
3970 NULL,
3971 0,
3972 CreateFileTypeNone,
3973 NULL,
3974 0);
3975}
Referenced by AccpOpenNamedObject(), BtrfsDeviceAdd::AddDevice(), AddVolumeToList(), AllocConsole(), BasepMapFile(), BasepNotifyTrackingService(), BasepOpenFileForMove(), CabinetOpen(), CallCacheControl(), clean_main(), CommandDumpSector(), CommandPartInfo(), CreateDirectoryExW(), CreateHardLinkW(), CreatePartitionList(), CreatePipe(), CreateProcessInternalW(), DeleteFileW(), DismountVolume(), DoesPathExist_UStr(), DumpDisk(), DumpPartition(), find_devices(), FindFirstChangeNotificationW(), FindFirstFileExW(), FindNTOSInstallations(), FormatEx2(), GetCompressedFileSizeW(), GetDiskFreeSpaceExW(), GetDiskFreeSpaceW(), GetDriveTypeW(), GetFileSecurityW(), GetFileSystemName_UStr(), GetMountMgrHandle(), GetSourcePaths(), GetVolumeInformationW(), GetVolumeNameForRoot(), GetVolumePathNameW(), InferFileSystem(), InfOpenFile(), InfWriteFile(), IniCacheLoad(), InstallBootCodeToDisk(), InstallBootCodeToFile(), InstallSetupInfFile(), is_mounted_multi_device(), IsValidNTOSInstallation(), KsecOpenDevice(), LdrpCheckForLoadedDll(), LdrpCreateDllSection(), lookup_winsxs(), main(), MapFile(), mountmgr::mountmgr(), MoveFileWithProgressW(), MyDeleteFile(), NtOpenObject(), open_device_root(), open_nt_file(), OpenAndMapFile(), OpenBootStore_UStr(), OpenDirectoryByHandleOrPath(), OpenFile(), OpenKeyboard(), openTcpFile(), pOpenDeviceEx_UStr(), BtrfsDeviceAdd::populate_device_tree(), QueryDeviceInformation(), ReadBootCodeFromFile(), RegisterUncProvider(), RegRestoreKeyW(), RemoveDirectoryW(), ReplaceFileW(), resolve_symlink(), RtlSetCurrentDirectory_U(), SdbpOpenMemMappedFile(), SetFileAttributesW(), SetFileSecurityW(), SetupCopyFile(), SetupDeleteFile(), SetupMoveFile(), SetVolumeLabelW(), ShowFileSystemInfo(), SmpCreateVolumeDescriptors(), SmpDeletePagingFile(), SmpGetPagingFileSize(), SmpGetVolumeFreeSpace(), SmpInitializeKnownDllsInternal(), SmpProcessFileRenames(), START_TEST(), Test_Device_StorDeviceNumber(), Test_ImageSection(), Test_ImageSection2(), VfatFormat(), VfatxFormat(), WaitNamedPipeW(), WritePartitions(), and xOpenFile().
◆ NtQueryAttributesFile()
| NTSTATUS NTAPI NtQueryAttributesFile | ( | IN POBJECT_ATTRIBUTES | ObjectAttributes, |
| OUT PFILE_BASIC_INFORMATION | FileInformation | ||
| ) |
Definition at line 3979 of file file.c.
3981{
3982 /* Call the internal helper API */
3984 FileBasicInformation,
3986 FileInformation);
3987}
NTSTATUS NTAPI IopQueryAttributesFile(IN POBJECT_ATTRIBUTES ObjectAttributes, IN FILE_INFORMATION_CLASS FileInformationClass, IN ULONG FileInformationSize, OUT PVOID FileInformation)
Definition: file.c:2345
Referenced by GetFileAttributesW(), GetVolumePathNameW(), and ReplaceFileW().
◆ NtQueryFullAttributesFile()
| NTSTATUS NTAPI NtQueryFullAttributesFile | ( | IN POBJECT_ATTRIBUTES | ObjectAttributes, |
| OUT PFILE_NETWORK_OPEN_INFORMATION | FileInformation | ||
| ) |
Definition at line 3991 of file file.c.
Referenced by GetFileAttributesExW().
Variable Documentation
◆ IopSecurityResource
|
extern |
Definition at line 61 of file iomgr.c.
Referenced by IoInitSystem(), IopGetSetSecurityObject(), IopParseDevice(), and IopSetDeviceSecurityDescriptor().
