quota.c File Reference

#include <ntoskrnl.h>
#include <ntintsafe.h>
#include <debug.h>

Include dependency graph for quota.c:

Go to the source code of this file.

Macros
#define	NDEBUG
#define	TAG_QUOTA_BLOCK   'bQsP'
#define	VALID_QUOTA_FLAGS

Functions
NTSTATUS NTAPI	PspChargeProcessQuotaSpecifiedPool (IN PEPROCESS Process, IN UCHAR PoolIndex, IN SIZE_T Amount)
VOID NTAPI	PspReturnProcessQuotaSpecifiedPool (IN PEPROCESS Process, IN UCHAR PoolIndex, IN SIZE_T Amount)
VOID NTAPI INIT_FUNCTION	PsInitializeQuotaSystem (VOID)
VOID NTAPI	PspInheritQuota (PEPROCESS Process, PEPROCESS ParentProcess)
VOID NTAPI	PspInsertQuotaBlock (PEPROCESS_QUOTA_BLOCK QuotaBlock)
VOID NTAPI	PspDestroyQuotaBlock (PEPROCESS Process)
NTSTATUS NTAPI	PsChargeProcessPageFileQuota (IN PEPROCESS Process, IN SIZE_T Amount)
VOID NTAPI	PsChargePoolQuota (IN PEPROCESS Process, IN POOL_TYPE PoolType, IN SIZE_T Amount)
NTSTATUS NTAPI	PsChargeProcessNonPagedPoolQuota (IN PEPROCESS Process, IN SIZE_T Amount)
NTSTATUS NTAPI	PsChargeProcessPagedPoolQuota (IN PEPROCESS Process, IN SIZE_T Amount)
NTSTATUS NTAPI	PsChargeProcessPoolQuota (IN PEPROCESS Process, IN POOL_TYPE PoolType, IN SIZE_T Amount)
VOID NTAPI	PsReturnPoolQuota (IN PEPROCESS Process, IN POOL_TYPE PoolType, IN SIZE_T Amount)
VOID NTAPI	PsReturnProcessNonPagedPoolQuota (IN PEPROCESS Process, IN SIZE_T Amount)
VOID NTAPI	PsReturnProcessPagedPoolQuota (IN PEPROCESS Process, IN SIZE_T Amount)
NTSTATUS NTAPI	PsReturnProcessPageFileQuota (IN PEPROCESS Process, IN SIZE_T Amount)
NTSTATUS NTAPI	PspSetQuotaLimits (_In_ PEPROCESS Process, _In_ ULONG Unused, _In_ PVOID QuotaLimits, _In_ ULONG QuotaLimitsLength, _In_ KPROCESSOR_MODE PreviousMode)

Variables
EPROCESS_QUOTA_BLOCK	PspDefaultQuotaBlock
static LIST_ENTRY	PspQuotaBlockList = {&PspQuotaBlockList, &PspQuotaBlockList}
static KSPIN_LOCK	PspQuotaLock

Macro Definition Documentation

#define NDEBUG

Definition at line 15 of file quota.c.

#define TAG_QUOTA_BLOCK   'bQsP'

Definition at line 22 of file quota.c.

Referenced by PspSetQuotaLimits().

#define VALID_QUOTA_FLAGS

Value:

(QUOTA_LIMITS_HARDWS_MIN_ENABLE | \
                           QUOTA_LIMITS_HARDWS_MIN_DISABLE | \
                           QUOTA_LIMITS_HARDWS_MAX_ENABLE | \
                           QUOTA_LIMITS_HARDWS_MAX_DISABLE)

Definition at line 23 of file quota.c.

Referenced by PspSetQuotaLimits().

Function Documentation

VOID NTAPI PsChargePoolQuota	(	IN PEPROCESS	Process,
		IN POOL_TYPE	PoolType,
		IN SIZE_T	Amount
	)

Definition at line 176 of file quota.c.

Referenced by FsRtlCancelNotify(), and FsRtlNotifyFilterReportChange().

{
    NTSTATUS Status;
    ASSERT(KeGetCurrentIrql() < DISPATCH_LEVEL);

    /* Don't do anything for the system process */
    if (Process == PsInitialSystemProcess) return;

    /* Charge the usage */
    Status = PsChargeProcessPoolQuota(Process, PoolType, Amount);
    if (!NT_SUCCESS(Status)) ExRaiseStatus(Status);
}

NTSTATUS NTAPI PsChargeProcessNonPagedPoolQuota	(	IN PEPROCESS	Process,
		IN SIZE_T	Amount
	)

Definition at line 196 of file quota.c.

{
    /* Call the general function */
    return PsChargeProcessPoolQuota(Process, NonPagedPool, Amount);
}

NTSTATUS NTAPI PsChargeProcessPagedPoolQuota	(	IN PEPROCESS	Process,
		IN SIZE_T	Amount
	)

Definition at line 208 of file quota.c.

{
    /* Call the general function */
    return PsChargeProcessPoolQuota(Process, PagedPool, Amount);
}

NTSTATUS NTAPI PsChargeProcessPageFileQuota	(	IN PEPROCESS	Process,
		IN SIZE_T	Amount
	)

Definition at line 162 of file quota.c.

{
    /* Don't do anything for the system process */
    if (Process == PsInitialSystemProcess) return STATUS_SUCCESS;

    return PspChargeProcessQuotaSpecifiedPool(Process, 2, Amount);
}

NTSTATUS NTAPI PsChargeProcessPoolQuota	(	IN PEPROCESS	Process,
		IN POOL_TYPE	PoolType,
		IN SIZE_T	Amount
	)

Definition at line 220 of file quota.c.

Referenced by ExAllocatePoolWithQuotaTag(), PsChargePoolQuota(), PsChargeProcessNonPagedPoolQuota(), and PsChargeProcessPagedPoolQuota().

{
    /* Don't do anything for the system process */
    if (Process == PsInitialSystemProcess) return STATUS_SUCCESS;

    return PspChargeProcessQuotaSpecifiedPool(Process,
                                              (PoolType & PAGED_POOL_MASK),
                                              Amount);
}

VOID NTAPI INIT_FUNCTION PsInitializeQuotaSystem

(

VOID

)

Definition at line 101 of file quota.c.

Referenced by ObInitSystem().

{
    RtlZeroMemory(&PspDefaultQuotaBlock, sizeof(PspDefaultQuotaBlock));
    PspDefaultQuotaBlock.QuotaEntry[PagedPool].Limit = (SIZE_T)-1;
    PspDefaultQuotaBlock.QuotaEntry[NonPagedPool].Limit = (SIZE_T)-1;
    PspDefaultQuotaBlock.QuotaEntry[2].Limit = (SIZE_T)-1; /* Page file */
    PsGetCurrentProcess()->QuotaBlock = &PspDefaultQuotaBlock;
}

NTSTATUS NTAPI PspChargeProcessQuotaSpecifiedPool	(	IN PEPROCESS	Process,
		IN UCHAR	PoolIndex,
		IN SIZE_T	Amount
	)

Definition at line 40 of file quota.c.

Referenced by PsChargeProcessPageFileQuota(), and PsChargeProcessPoolQuota().

{
    ASSERT(Process);
    ASSERT(Process != PsInitialSystemProcess);
    ASSERT(PoolIndex <= 2);
    ASSERT(Process->QuotaBlock);

    /* Note: Race warning. TODO: Needs to add/use lock for this */
    if (Process->QuotaUsage[PoolIndex] + Amount >
        Process->QuotaBlock->QuotaEntry[PoolIndex].Limit)
    {
        DPRINT1("Quota exceeded, but ROS will let it slide...\n");
        return STATUS_SUCCESS;
        //return STATUS_QUOTA_EXCEEDED; /* caller raises the exception */
    }

    InterlockedExchangeAdd((LONG*)&Process->QuotaUsage[PoolIndex], Amount);

    /* Note: Race warning. TODO: Needs to add/use lock for this */
    if (Process->QuotaPeak[PoolIndex] < Process->QuotaUsage[PoolIndex])
    {
        Process->QuotaPeak[PoolIndex] = Process->QuotaUsage[PoolIndex];
    }

    return STATUS_SUCCESS;
}

VOID NTAPI PspDestroyQuotaBlock

(

PEPROCESS

Process

)

Definition at line 142 of file quota.c.

{
    PEPROCESS_QUOTA_BLOCK QuotaBlock = Process->QuotaBlock;
    KIRQL OldIrql;

    if (QuotaBlock != &PspDefaultQuotaBlock &&
        InterlockedDecrementUL(&QuotaBlock->ReferenceCount) == 0)
    {
        KeAcquireSpinLock(&PspQuotaLock, &OldIrql);
        RemoveEntryList(&QuotaBlock->QuotaList);
        KeReleaseSpinLock(&PspQuotaLock, OldIrql);
        ExFreePool(QuotaBlock);
    }
}

VOID NTAPI PspInheritQuota	(	PEPROCESS	Process,
		PEPROCESS	ParentProcess
	)

Definition at line 112 of file quota.c.

{
    if (ParentProcess != NULL)
    {
        PEPROCESS_QUOTA_BLOCK QuotaBlock = ParentProcess->QuotaBlock;

        ASSERT(QuotaBlock != NULL);

        (void)InterlockedIncrementUL(&QuotaBlock->ReferenceCount);

        Process->QuotaBlock = QuotaBlock;
    }
    else
        Process->QuotaBlock = &PspDefaultQuotaBlock;
}

VOID NTAPI PspInsertQuotaBlock

(

PEPROCESS_QUOTA_BLOCK

QuotaBlock

)

Definition at line 130 of file quota.c.

Referenced by PspSetQuotaLimits().

{
    KIRQL OldIrql;

    KeAcquireSpinLock(&PspQuotaLock, &OldIrql);
    InsertTailList(&PspQuotaBlockList, &QuotaBlock->QuotaList);
    KeReleaseSpinLock(&PspQuotaLock, OldIrql);
}

VOID NTAPI PspReturnProcessQuotaSpecifiedPool	(	IN PEPROCESS	Process,
		IN UCHAR	PoolIndex,
		IN SIZE_T	Amount
	)

Definition at line 77 of file quota.c.

Referenced by PsReturnPoolQuota(), and PsReturnProcessPageFileQuota().

{
    ASSERT(Process);
    ASSERT(Process != PsInitialSystemProcess);
    ASSERT(PoolIndex <= 2);
    ASSERT(!(Amount & 0x80000000)); /* we need to be able to negate it */
    if (Process->QuotaUsage[PoolIndex] < Amount)
    {
        DPRINT1("WARNING: Process->QuotaUsage sanity check failed.\n");
    }
    else
    {
        InterlockedExchangeAdd((LONG*)&Process->QuotaUsage[PoolIndex],
                               -(LONG)Amount);
    }
}

NTSTATUS NTAPI PspSetQuotaLimits	(	_In_ PEPROCESS	Process,
		_In_ ULONG	Unused,
		_In_ PVOID	QuotaLimits,
		_In_ ULONG	QuotaLimitsLength,
		_In_ KPROCESSOR_MODE	PreviousMode
	)

Definition at line 294 of file quota.c.

Referenced by NtSetInformationProcess().

{
    QUOTA_LIMITS_EX CapturedQuotaLimits;
    PEPROCESS_QUOTA_BLOCK QuotaBlock, OldQuotaBlock;
    BOOLEAN IncreaseOkay;
    KAPC_STATE SavedApcState;
    NTSTATUS Status;

    UNREFERENCED_PARAMETER(Unused);

    _SEH2_TRY
    {
        ProbeForRead(QuotaLimits, QuotaLimitsLength, sizeof(ULONG));

        /* Check if we have the basic or extended structure */
        if (QuotaLimitsLength == sizeof(QUOTA_LIMITS))
        {
            /* Copy the basic structure, zero init the remaining fields */
            RtlCopyMemory(&CapturedQuotaLimits, QuotaLimits, sizeof(QUOTA_LIMITS));
            CapturedQuotaLimits.WorkingSetLimit = 0;
            CapturedQuotaLimits.Reserved2 = 0;
            CapturedQuotaLimits.Reserved3 = 0;
            CapturedQuotaLimits.Reserved4 = 0;
            CapturedQuotaLimits.CpuRateLimit.RateData = 0;
            CapturedQuotaLimits.Flags = 0;
        }
        else if (QuotaLimitsLength == sizeof(QUOTA_LIMITS_EX))
        {
            /* Copy the full structure */
            RtlCopyMemory(&CapturedQuotaLimits, QuotaLimits, sizeof(QUOTA_LIMITS_EX));

            /* Verify that the caller passed valid flags */
            if ((CapturedQuotaLimits.Flags & ~VALID_QUOTA_FLAGS) ||
                ((CapturedQuotaLimits.Flags & QUOTA_LIMITS_HARDWS_MIN_ENABLE) &&
                 (CapturedQuotaLimits.Flags & QUOTA_LIMITS_HARDWS_MIN_DISABLE)) ||
                ((CapturedQuotaLimits.Flags & QUOTA_LIMITS_HARDWS_MAX_ENABLE) &&
                 (CapturedQuotaLimits.Flags & QUOTA_LIMITS_HARDWS_MAX_DISABLE)))
            {
                DPRINT1("Invalid quota flags: 0x%lx\n", CapturedQuotaLimits.Flags);
                _SEH2_YIELD(return STATUS_INVALID_PARAMETER);
            }

            /* Verify that the caller didn't pass reserved values */
            if ((CapturedQuotaLimits.WorkingSetLimit != 0) ||
                (CapturedQuotaLimits.Reserved2 != 0) ||
                (CapturedQuotaLimits.Reserved3 != 0) ||
                (CapturedQuotaLimits.Reserved4 != 0) ||
                (CapturedQuotaLimits.CpuRateLimit.RateData != 0))
            {
                DPRINT1("Invalid value: (%lx,%lx,%lx,%lx,%lx)\n",
                        CapturedQuotaLimits.WorkingSetLimit,
                        CapturedQuotaLimits.Reserved2,
                        CapturedQuotaLimits.Reserved3,
                        CapturedQuotaLimits.Reserved4,
                        CapturedQuotaLimits.CpuRateLimit.RateData);
                _SEH2_YIELD(return STATUS_INVALID_PARAMETER);
            }
        }
        else
        {
            DPRINT1("Invalid quota size: 0x%lx\n", QuotaLimitsLength);
            _SEH2_YIELD(return STATUS_INFO_LENGTH_MISMATCH);
        }
    }
    _SEH2_EXCEPT(EXCEPTION_EXECUTE_HANDLER)
    {
        DPRINT1("Exception while copying data\n");
        _SEH2_YIELD(return _SEH2_GetExceptionCode());
    }
    _SEH2_END;

    /* Check the caller changes the working set size limits */
    if ((CapturedQuotaLimits.MinimumWorkingSetSize != 0) &&
        (CapturedQuotaLimits.MaximumWorkingSetSize != 0))
    {
        /* Check for special case: trimming the WS */
        if ((CapturedQuotaLimits.MinimumWorkingSetSize == SIZE_T_MAX) &&
            (CapturedQuotaLimits.MaximumWorkingSetSize == SIZE_T_MAX))
        {
            /* No increase allowed */
            IncreaseOkay = FALSE;
        }
        else
        {
            /* Check if the caller has the required privilege */
            IncreaseOkay = SeSinglePrivilegeCheck(SeIncreaseQuotaPrivilege,
                                                  PreviousMode);
        }

        /* Attach to the target process and disable APCs */
        KeStackAttachProcess(&Process->Pcb, &SavedApcState);
        KeEnterGuardedRegion();

        /* Call Mm to adjust the process' working set size */
        Status = MmAdjustWorkingSetSize(CapturedQuotaLimits.MinimumWorkingSetSize,
                                        CapturedQuotaLimits.MaximumWorkingSetSize,
                                        0,
                                        IncreaseOkay);

        /* Bring back APCs and detach from the process */
        KeLeaveGuardedRegion();
        KeUnstackDetachProcess(&SavedApcState);
    }
    else if (Process->QuotaBlock == &PspDefaultQuotaBlock)
    {
        /* Check if the caller has the required privilege */
        if (!SeSinglePrivilegeCheck(SeIncreaseQuotaPrivilege, PreviousMode))
        {
            return STATUS_PRIVILEGE_NOT_HELD;
        }

        /* Allocate a new quota block */
        QuotaBlock = ExAllocatePoolWithTag(NonPagedPool,
                                           sizeof(EPROCESS_QUOTA_BLOCK),
                                           TAG_QUOTA_BLOCK);
        if (QuotaBlock == NULL)
        {
            ObDereferenceObject(Process);
            return STATUS_NO_MEMORY;
        }

        /* Initialize the quota block */
        QuotaBlock->ReferenceCount = 1;
        QuotaBlock->ProcessCount = 1;
        QuotaBlock->QuotaEntry[0].Peak = Process->QuotaPeak[0];
        QuotaBlock->QuotaEntry[1].Peak = Process->QuotaPeak[1];
        QuotaBlock->QuotaEntry[2].Peak = Process->QuotaPeak[2];
        QuotaBlock->QuotaEntry[0].Limit = PspDefaultQuotaBlock.QuotaEntry[0].Limit;
        QuotaBlock->QuotaEntry[1].Limit = PspDefaultQuotaBlock.QuotaEntry[1].Limit;
        QuotaBlock->QuotaEntry[2].Limit = PspDefaultQuotaBlock.QuotaEntry[2].Limit;

        /* Try to exchange the quota block, if that failed, just drop it */
        OldQuotaBlock = InterlockedCompareExchangePointer((PVOID*)&Process->QuotaBlock,
                                                          QuotaBlock,
                                                          &PspDefaultQuotaBlock);
        if (OldQuotaBlock == &PspDefaultQuotaBlock)
        {
            /* Success, insert the new quota block */
            PspInsertQuotaBlock(QuotaBlock);
        }
        else
        {
            /* Failed, free the quota block and ignore it */
            ExFreePoolWithTag(QuotaBlock, TAG_QUOTA_BLOCK);
        }

        Status = STATUS_SUCCESS;
    }

    return Status;
}

VOID NTAPI PsReturnPoolQuota	(	IN PEPROCESS	Process,
		IN POOL_TYPE	PoolType,
		IN SIZE_T	Amount
	)

Definition at line 237 of file quota.c.

Referenced by ExFreePoolWithTag(), ExReturnPoolQuota(), PsReturnProcessNonPagedPoolQuota(), and PsReturnProcessPagedPoolQuota().

{
    /* Don't do anything for the system process */
    if (Process == PsInitialSystemProcess) return;

    PspReturnProcessQuotaSpecifiedPool(Process,
                                       (PoolType & PAGED_POOL_MASK),
                                       Amount);
}

VOID NTAPI PsReturnProcessNonPagedPoolQuota	(	IN PEPROCESS	Process,
		IN SIZE_T	Amount
	)

Definition at line 254 of file quota.c.

Referenced by PspDeleteProcess().

{
    /* Don't do anything for the system process */
    if (Process == PsInitialSystemProcess) return;

    PsReturnPoolQuota(Process, NonPagedPool, Amount);
}

VOID NTAPI PsReturnProcessPagedPoolQuota	(	IN PEPROCESS	Process,
		IN SIZE_T	Amount
	)

Definition at line 268 of file quota.c.

Referenced by FsRtlCancelNotify(), FsRtlNotifyCleanup(), FsRtlNotifyCompleteIrp(), and FsRtlNotifyFilterReportChange().

{
    /* Don't do anything for the system process */
    if (Process == PsInitialSystemProcess) return;

    PsReturnPoolQuota(Process, PagedPool, Amount);
}

NTSTATUS NTAPI PsReturnProcessPageFileQuota	(	IN PEPROCESS	Process,
		IN SIZE_T	Amount
	)

Definition at line 282 of file quota.c.

{
    /* Don't do anything for the system process */
    if (Process == PsInitialSystemProcess) return STATUS_SUCCESS;

    PspReturnProcessQuotaSpecifiedPool(Process, 2, Amount);
    return STATUS_SUCCESS;
}

Variable Documentation

EPROCESS_QUOTA_BLOCK PspDefaultQuotaBlock

Definition at line 18 of file quota.c.

Referenced by NtQueryInformationProcess(), PsInitializeQuotaSystem(), and PspInheritQuota().

LIST_ENTRY PspQuotaBlockList = {&PspQuotaBlockList, &PspQuotaBlockList}

static

Definition at line 19 of file quota.c.

KSPIN_LOCK PspQuotaLock

static

Definition at line 20 of file quota.c.

Referenced by PspDestroyQuotaBlock(), and PspInsertQuotaBlock().