ReactOS 0.4.15-dev-5895-g2687c1b
obref.c
Go to the documentation of this file.
1/*
2 * PROJECT: ReactOS Kernel
3 * LICENSE: GPL - See COPYING in the top level directory
4 * FILE: ntoskrnl/ob/obref.c
5 * PURPOSE: Manages the referencing and de-referencing of all Objects,
6 * as well as the Object Fast Reference implementation.
7 * PROGRAMMERS: Alex Ionescu (alex.ionescu@reactos.org)
8 * Eric Kohl
9 * Thomas Weidenmueller (w3seek@reactos.org)
10 */
11
12/* INCLUDES ******************************************************************/
13
14#include <ntoskrnl.h>
15#define NDEBUG
16#include <debug.h>
17
18/* PRIVATE FUNCTIONS *********************************************************/
19
20BOOLEAN
21FASTCALL
22ObReferenceObjectSafe(IN PVOID Object)
23{
24 POBJECT_HEADER ObjectHeader;
25 LONG_PTR OldValue, NewValue;
26
27 /* Get the object header */
28 ObjectHeader = OBJECT_TO_OBJECT_HEADER(Object);
29
30 /* Get the current reference count and fail if it's zero */
31 OldValue = ObjectHeader->PointerCount;
32 if (!OldValue) return FALSE;
33
34 /* Start reference loop */
35 do
36 {
37 /* Increase the reference count */
38 NewValue = InterlockedCompareExchangeSizeT(&ObjectHeader->PointerCount,
39 OldValue + 1,
40 OldValue);
41 if (OldValue == NewValue) return TRUE;
42
43 /* Keep looping */
44 OldValue = NewValue;
45 } while (OldValue);
46
47 /* If we got here, then the reference count is now 0 */
48 return FALSE;
49}
50
51VOID
52NTAPI
53ObpDeferObjectDeletion(IN POBJECT_HEADER Header)
54{
55 PVOID Entry;
56
57 /* Loop while trying to update the list */
58 do
59 {
60 /* Get the current entry */
61 Entry = ObpReaperList;
62
63 /* Link our object to the list */
64 Header->NextToFree = Entry;
65
66 /* Update the list */
67 } while (InterlockedCompareExchangePointer(&ObpReaperList,
68 Header,
69 Entry) != Entry);
70
71 /* Queue the work item if needed */
72 if (!Entry) ExQueueWorkItem(&ObpReaperWorkItem, CriticalWorkQueue);
73}
74
75LONG
76FASTCALL
77ObReferenceObjectEx(IN PVOID Object,
78 IN LONG Count)
79{
80 /* Increment the reference count and return the count now */
81 return InterlockedExchangeAddSizeT(&OBJECT_TO_OBJECT_HEADER(Object)->
82 PointerCount,
83 Count) + Count;
84}
85
86LONG
87FASTCALL
88ObDereferenceObjectEx(IN PVOID Object,
89 IN LONG Count)
90{
91 POBJECT_HEADER Header;
92 LONG_PTR NewCount;
93
94 /* Extract the object header */
95 Header = OBJECT_TO_OBJECT_HEADER(Object);
96
97 /* Check whether the object can now be deleted. */
98 NewCount = InterlockedExchangeAddSizeT(&Header->PointerCount, -Count) - Count;
99 if (!NewCount) ObpDeferObjectDeletion(Header);
100
101 /* Return the current count */
102 return NewCount;
103}
104
105VOID
106FASTCALL
107ObInitializeFastReference(IN PEX_FAST_REF FastRef,
108 IN PVOID Object OPTIONAL)
109{
110 /* Check if we were given an object and reference it 7 times */
111 if (Object) ObReferenceObjectEx(Object, MAX_FAST_REFS);
112
113 /* Setup the fast reference */
114 ExInitializeFastReference(FastRef, Object);
115}
116
117PVOID
118FASTCALL
119ObFastReferenceObjectLocked(IN PEX_FAST_REF FastRef)
120{
121 PVOID Object;
122 EX_FAST_REF OldValue = *FastRef;
123
124 /* Get the object and reference it slowly */
125 Object = ExGetObjectFastReference(OldValue);
126 if (Object) ObReferenceObject(Object);
127 return Object;
128}
129
130PVOID
131FASTCALL
132ObFastReferenceObject(IN PEX_FAST_REF FastRef)
133{
134 EX_FAST_REF OldValue;
135 ULONG_PTR Count;
136 PVOID Object;
137
138 /* Reference the object and get it pointer */
139 OldValue = ExAcquireFastReference(FastRef);
140 Object = ExGetObjectFastReference(OldValue);
141
142 /* Check how many references are left */
143 Count = ExGetCountFastReference(OldValue);
144
145 /* Check if the reference count is over 1 */
146 if (Count > 1) return Object;
147
148 /* Check if the reference count has reached 0 */
149 if (!Count) return NULL;
150
151 /* Otherwise, reference the object 7 times */
152 ObReferenceObjectEx(Object, MAX_FAST_REFS);
153
154 /* Now update the reference count */
155 if (!ExInsertFastReference(FastRef, Object))
156 {
157 /* We failed: completely dereference the object */
158 ObDereferenceObjectEx(Object, MAX_FAST_REFS);
159 }
160
161 /* Return the Object */
162 return Object;
163}
164
165VOID
166FASTCALL
167ObFastDereferenceObject(IN PEX_FAST_REF FastRef,
168 IN PVOID Object)
169{
170 /* Release a fast reference. If this failed, use the slow path */
171 if (!ExReleaseFastReference(FastRef, Object)) ObDereferenceObject(Object);
172}
173
174PVOID
175FASTCALL
176ObFastReplaceObject(IN PEX_FAST_REF FastRef,
177 PVOID Object)
178{
179 EX_FAST_REF OldValue;
180 PVOID OldObject;
181 ULONG Count;
182
183 /* Check if we were given an object and reference it 7 times */
184 if (Object) ObReferenceObjectEx(Object, MAX_FAST_REFS);
185
186 /* Do the swap */
187 OldValue = ExSwapFastReference(FastRef, Object);
188 OldObject = ExGetObjectFastReference(OldValue);
189
190 /* Check if we had an active object and dereference it */
191 Count = ExGetCountFastReference(OldValue);
192 if ((OldObject) && (Count)) ObDereferenceObjectEx(OldObject, Count);
193
194 /* Return the old object */
195 return OldObject;
196}
197
198NTSTATUS
199NTAPI
200ObReferenceFileObjectForWrite(IN HANDLE Handle,
201 IN KPROCESSOR_MODE AccessMode,
202 OUT PFILE_OBJECT *FileObject,
203 OUT POBJECT_HANDLE_INFORMATION HandleInformation)
204{
205 NTSTATUS Status;
206 PHANDLE_TABLE HandleTable;
207 POBJECT_HEADER ObjectHeader;
208 PHANDLE_TABLE_ENTRY HandleEntry;
209 ACCESS_MASK GrantedAccess, DesiredAccess;
210
211 /* Assume failure */
212 *FileObject = NULL;
213
214 /* Check if this is a special handle */
215 if (HandleToLong(Handle) < 0)
216 {
217 /* Make sure we have a valid kernel handle */
218 if (AccessMode != KernelMode || Handle == NtCurrentProcess() || Handle == NtCurrentThread())
219 {
220 return STATUS_INVALID_HANDLE;
221 }
222
223 /* Use the kernel handle table and get the actual handle value */
224 Handle = ObKernelHandleToHandle(Handle);
225 HandleTable = ObpKernelHandleTable;
226 }
227 else
228 {
229 /* Otherwise use this process's handle table */
230 HandleTable = PsGetCurrentProcess()->ObjectTable;
231 }
232
233 ASSERT(HandleTable != NULL);
234 KeEnterCriticalRegion();
235
236 /* Get the handle entry */
237 HandleEntry = ExMapHandleToPointer(HandleTable, Handle);
238 if (HandleEntry)
239 {
240 /* Get the object header and validate the type*/
241 ObjectHeader = ObpGetHandleObject(HandleEntry);
242
243 /* Get the desired access from the file object */
244 if (!NT_SUCCESS(IoComputeDesiredAccessFileObject((PFILE_OBJECT)&ObjectHeader->Body,
245 &DesiredAccess)))
246 {
247 Status = STATUS_OBJECT_TYPE_MISMATCH;
248 }
249 else
250 {
251 /* Extract the granted access from the handle entry */
252 if (BooleanFlagOn(NtGlobalFlag, FLG_KERNEL_STACK_TRACE_DB))
253 {
254 /* FIXME: Translate granted access */
255 GrantedAccess = HandleEntry->GrantedAccess;
256 }
257 else
258 {
259 GrantedAccess = HandleEntry->GrantedAccess & ~ObpAccessProtectCloseBit;
260 }
261
262 /* FIXME: Get handle information for audit */
263
264 HandleInformation->GrantedAccess = GrantedAccess;
265
266 /* FIXME: Get handle attributes */
267 HandleInformation->HandleAttributes = 0;
268
269 /* Do granted and desired access match? */
270 if (GrantedAccess & DesiredAccess)
271 {
272 /* FIXME: Audit access if required */
273
274 /* Reference the object directly since we have its header */
275 InterlockedIncrementSizeT(&ObjectHeader->PointerCount);
276
277 /* Unlock the handle */
278 ExUnlockHandleTableEntry(HandleTable, HandleEntry);
279 KeLeaveCriticalRegion();
280
281 *FileObject = (PFILE_OBJECT)&ObjectHeader->Body;
282
283 /* Return success */
284 ASSERT(*FileObject != NULL);
285 return STATUS_SUCCESS;
286 }
287
288 /* No match, deny write access */
289 Status = STATUS_ACCESS_DENIED;
290
291 ExUnlockHandleTableEntry(HandleTable, HandleEntry);
292 }
293 }
294 else
295 {
296 Status = STATUS_INVALID_HANDLE;
297 }
298
299 /* Return failure status */
300 KeLeaveCriticalRegion();
301 return Status;
302}
303
304/* PUBLIC FUNCTIONS *********************************************************/
305
306LONG_PTR
307FASTCALL
308ObfReferenceObject(IN PVOID Object)
309{
310 ASSERT(Object);
311
312 /* Get the header and increment the reference count */
313 return InterlockedIncrementSizeT(&OBJECT_TO_OBJECT_HEADER(Object)->PointerCount);
314}
315
316LONG_PTR
317FASTCALL
318ObfDereferenceObject(IN PVOID Object)
319{
320 POBJECT_HEADER Header;
321 LONG_PTR NewCount;
322
323 /* Extract the object header */
324 Header = OBJECT_TO_OBJECT_HEADER(Object);
325
326 if (Header->PointerCount < Header->HandleCount)
327 {
328 DPRINT1("Misbehaving object: %wZ\n", &Header->Type->Name);
329 return Header->PointerCount;
330 }
331
332 /* Check whether the object can now be deleted. */
333 NewCount = InterlockedDecrementSizeT(&Header->PointerCount);
334 if (!NewCount)
335 {
336 /* Sanity check */
337 ASSERT(Header->HandleCount == 0);
338
339 /* Check if APCs are still active */
340 if (!KeAreAllApcsDisabled())
341 {
342 /* Remove the object */
343 ObpDeleteObject(Object, FALSE);
344 }
345 else
346 {
347 /* Add us to the deferred deletion list */
348 ObpDeferObjectDeletion(Header);
349 }
350 }
351
352 /* Return the new count */
353 return NewCount;
354}
355
356VOID
357NTAPI
358ObDereferenceObjectDeferDelete(IN PVOID Object)
359{
360 POBJECT_HEADER Header = OBJECT_TO_OBJECT_HEADER(Object);
361
362 /* Check whether the object can now be deleted. */
363 if (!InterlockedDecrementSizeT(&Header->PointerCount))
364 {
365 /* Add us to the deferred deletion list */
366 ObpDeferObjectDeletion(Header);
367 }
368}
369
370#undef ObDereferenceObject
371VOID
372NTAPI
373ObDereferenceObject(IN PVOID Object)
374{
375 /* Call the fastcall function */
376 ObfDereferenceObject(Object);
377}
378
379NTSTATUS
380NTAPI
381ObReferenceObjectByPointer(IN PVOID Object,
382 IN ACCESS_MASK DesiredAccess,
383 IN POBJECT_TYPE ObjectType,
384 IN KPROCESSOR_MODE AccessMode)
385{
386 POBJECT_HEADER Header;
387
388 /* Get the header */
389 Header = OBJECT_TO_OBJECT_HEADER(Object);
390
391 /*
392 * Validate object type if the call is for UserMode.
393 * NOTE: Unless it's a symbolic link (Caz Yokoyama [MSFT])
394 */
395 if ((Header->Type != ObjectType) && ((AccessMode != KernelMode) ||
396 (ObjectType == ObpSymbolicLinkObjectType)))
397 {
398 /* Invalid type */
399 return STATUS_OBJECT_TYPE_MISMATCH;
400 }
401
402 /* Increment the reference count and return success */
403 InterlockedIncrementSizeT(&Header->PointerCount);
404 return STATUS_SUCCESS;
405}
406
407NTSTATUS
408NTAPI
409ObReferenceObjectByName(IN PUNICODE_STRING ObjectPath,
410 IN ULONG Attributes,
411 IN PACCESS_STATE PassedAccessState,
412 IN ACCESS_MASK DesiredAccess,
413 IN POBJECT_TYPE ObjectType,
414 IN KPROCESSOR_MODE AccessMode,
415 IN OUT PVOID ParseContext,
416 OUT PVOID* ObjectPtr)
417{
418 PVOID Object = NULL;
419 UNICODE_STRING ObjectName;
420 NTSTATUS Status;
421 OBP_LOOKUP_CONTEXT Context;
422 AUX_ACCESS_DATA AuxData;
423 ACCESS_STATE AccessState;
424 PAGED_CODE();
425
426 /* Fail quickly */
427 if (!ObjectPath) return STATUS_OBJECT_NAME_INVALID;
428
429 /* Capture the name */
430 Status = ObpCaptureObjectName(&ObjectName, ObjectPath, AccessMode, TRUE);
431 if (!NT_SUCCESS(Status)) return Status;
432
433 /* We also need a valid name after capture */
434 if (!ObjectName.Length) return STATUS_OBJECT_NAME_INVALID;
435
436 /* Check if we didn't get an access state */
437 if (!PassedAccessState)
438 {
439 /* Use our built-in access state */
440 PassedAccessState = &AccessState;
441 Status = SeCreateAccessState(&AccessState,
442 &AuxData,
443 DesiredAccess,
444 &ObjectType->TypeInfo.GenericMapping);
445 if (!NT_SUCCESS(Status)) goto Quickie;
446 }
447
448 /* Find the object */
449 *ObjectPtr = NULL;
450 Status = ObpLookupObjectName(NULL,
451 &ObjectName,
452 Attributes,
453 ObjectType,
454 AccessMode,
455 ParseContext,
456 NULL,
457 NULL,
458 PassedAccessState,
459 &Context,
460 &Object);
461
462 /* Cleanup after lookup */
463 ObpReleaseLookupContext(&Context);
464
465 /* Check if the lookup succeeded */
466 if (NT_SUCCESS(Status))
467 {
468 /* Check if access is allowed */
469 if (ObpCheckObjectReference(Object,
470 PassedAccessState,
471 FALSE,
472 AccessMode,
473 &Status))
474 {
475 /* Return the object */
476 *ObjectPtr = Object;
477 }
478 }
479
480 /* Free the access state */
481 if (PassedAccessState == &AccessState)
482 {
483 SeDeleteAccessState(PassedAccessState);
484 }
485
486Quickie:
487 /* Free the captured name if we had one, and return status */
488 ObpFreeObjectNameBuffer(&ObjectName);
489 return Status;
490}
491
492NTSTATUS
493NTAPI
494ObReferenceObjectByHandle(IN HANDLE Handle,
495 IN ACCESS_MASK DesiredAccess,
496 IN POBJECT_TYPE ObjectType,
497 IN KPROCESSOR_MODE AccessMode,
498 OUT PVOID* Object,
499 OUT POBJECT_HANDLE_INFORMATION HandleInformation OPTIONAL)
500{
501 PHANDLE_TABLE_ENTRY HandleEntry;
502 POBJECT_HEADER ObjectHeader;
503 ACCESS_MASK GrantedAccess;
504 ULONG Attributes;
505 PEPROCESS CurrentProcess;
506 PVOID HandleTable;
507 PETHREAD CurrentThread;
508 NTSTATUS Status;
509 PAGED_CODE();
510
511 /* Assume failure */
512 *Object = NULL;
513
514 /* Check if this is a special handle */
515 if (HandleToLong(Handle) < 0)
516 {
517 /* Check if this is the current process */
518 if (Handle == NtCurrentProcess())
519 {
520 /* Check if this is the right object type */
521 if ((ObjectType == PsProcessType) || !(ObjectType))
522 {
523 /* Get the current process and granted access */
524 CurrentProcess = PsGetCurrentProcess();
525 GrantedAccess = CurrentProcess->GrantedAccess;
526
527 /* Validate access */
528 /* ~GrantedAccess = RefusedAccess.*/
529 /* ~GrantedAccess & DesiredAccess = list of refused bits. */
530 /* !(~GrantedAccess & DesiredAccess) == TRUE means ALL requested rights are granted */
531 if ((AccessMode == KernelMode) ||
532 !(~GrantedAccess & DesiredAccess))
533 {
534 /* Check if the caller wanted handle information */
535 if (HandleInformation)
536 {
537 /* Return it */
538 HandleInformation->HandleAttributes = 0;
539 HandleInformation->GrantedAccess = GrantedAccess;
540 }
541
542 /* Reference ourselves */
543 ObjectHeader = OBJECT_TO_OBJECT_HEADER(CurrentProcess);
544 InterlockedExchangeAddSizeT(&ObjectHeader->PointerCount, 1);
545
546 /* Return the pointer */
547 *Object = CurrentProcess;
548 ASSERT(*Object != NULL);
549 Status = STATUS_SUCCESS;
550 }
551 else
552 {
553 /* Access denied */
554 Status = STATUS_ACCESS_DENIED;
555 }
556 }
557 else
558 {
559 /* The caller used this special handle value with a non-process type */
560 Status = STATUS_OBJECT_TYPE_MISMATCH;
561 }
562
563 /* Return the status */
564 return Status;
565 }
566 else if (Handle == NtCurrentThread())
567 {
568 /* Check if this is the right object type */
569 if ((ObjectType == PsThreadType) || !(ObjectType))
570 {
571 /* Get the current process and granted access */
572 CurrentThread = PsGetCurrentThread();
573 GrantedAccess = CurrentThread->GrantedAccess;
574
575 /* Validate access */
576 /* ~GrantedAccess = RefusedAccess.*/
577 /* ~GrantedAccess & DesiredAccess = list of refused bits. */
578 /* !(~GrantedAccess & DesiredAccess) == TRUE means ALL requested rights are granted */
579 if ((AccessMode == KernelMode) ||
580 !(~GrantedAccess & DesiredAccess))
581 {
582 /* Check if the caller wanted handle information */
583 if (HandleInformation)
584 {
585 /* Return it */
586 HandleInformation->HandleAttributes = 0;
587 HandleInformation->GrantedAccess = GrantedAccess;
588 }
589
590 /* Reference ourselves */
591 ObjectHeader = OBJECT_TO_OBJECT_HEADER(CurrentThread);
592 InterlockedExchangeAddSizeT(&ObjectHeader->PointerCount, 1);
593
594 /* Return the pointer */
595 *Object = CurrentThread;
596 ASSERT(*Object != NULL);
597 Status = STATUS_SUCCESS;
598 }
599 else
600 {
601 /* Access denied */
602 Status = STATUS_ACCESS_DENIED;
603 }
604 }
605 else
606 {
607 /* The caller used this special handle value with a non-process type */
608 Status = STATUS_OBJECT_TYPE_MISMATCH;
609 }
610
611 /* Return the status */
612 return Status;
613 }
614 else if (AccessMode == KernelMode)
615 {
616 /* Use the kernel handle table and get the actual handle value */
617 Handle = ObKernelHandleToHandle(Handle);
618 HandleTable = ObpKernelHandleTable;
619 }
620 else
621 {
622 /* Invalid access, fail */
623 return STATUS_INVALID_HANDLE;
624 }
625 }
626 else
627 {
628 /* Otherwise use this process's handle table */
629 HandleTable = PsGetCurrentProcess()->ObjectTable;
630 }
631
632 /* Enter a critical region while we touch the handle table */
633 ASSERT(HandleTable != NULL);
634 KeEnterCriticalRegion();
635
636 /* Get the handle entry */
637 HandleEntry = ExMapHandleToPointer(HandleTable, Handle);
638 if (HandleEntry)
639 {
640 /* Get the object header and validate the type*/
641 ObjectHeader = ObpGetHandleObject(HandleEntry);
642 if (!(ObjectType) || (ObjectType == ObjectHeader->Type))
643 {
644 /* Get the granted access and validate it */
645 GrantedAccess = HandleEntry->GrantedAccess;
646
647 /* Validate access */
648 /* ~GrantedAccess = RefusedAccess.*/
649 /* ~GrantedAccess & DesiredAccess = list of refused bits. */
650 /* !(~GrantedAccess & DesiredAccess) == TRUE means ALL requested rights are granted */
651 if ((AccessMode == KernelMode) ||
652 !(~GrantedAccess & DesiredAccess))
653 {
654 /* Reference the object directly since we have its header */
655 InterlockedIncrementSizeT(&ObjectHeader->PointerCount);
656
657 /* Mask out the internal attributes */
658 Attributes = HandleEntry->ObAttributes & OBJ_HANDLE_ATTRIBUTES;
659
660 /* Check if the caller wants handle information */
661 if (HandleInformation)
662 {
663 /* Fill out the information */
664 HandleInformation->HandleAttributes = Attributes;
665 HandleInformation->GrantedAccess = GrantedAccess;
666 }
667
668 /* Return the pointer */
669 *Object = &ObjectHeader->Body;
670
671 /* Unlock the handle */
672 ExUnlockHandleTableEntry(HandleTable, HandleEntry);
673 KeLeaveCriticalRegion();
674
675 /* Return success */
676 ASSERT(*Object != NULL);
677 return STATUS_SUCCESS;
678 }
679 else
680 {
681 /* Requested access failed */
682 DPRINT("Rights not granted: %x\n", ~GrantedAccess & DesiredAccess);
683 Status = STATUS_ACCESS_DENIED;
684 }
685 }
686 else
687 {
688 /* Invalid object type */
689 Status = STATUS_OBJECT_TYPE_MISMATCH;
690 }
691
692 /* Unlock the entry */
693 ExUnlockHandleTableEntry(HandleTable, HandleEntry);
694 }
695 else
696 {
697 /* Invalid handle */
698 Status = STATUS_INVALID_HANDLE;
699 }
700
701 /* Return failure status */
702 KeLeaveCriticalRegion();
703 *Object = NULL;
704 return Status;
705}
706
707/* EOF */
PAGED_CODE
#define PAGED_CODE()
Definition: Bus_PDO_QueryResourceRequirements.c:89
ObpSymbolicLinkObjectType
#define ObpSymbolicLinkObjectType
Definition: ObTypes.c:119
BOOLEAN
unsigned char BOOLEAN
Definition: ProcessorBind.h:185
NTSTATUS
LONG NTSTATUS
Definition: precomp.h:26
DPRINT1
#define DPRINT1
Definition: precomp.h:8
HandleToLong
#define HandleToLong(h)
Definition: basetsd.h:80
Header
Definition: Header.h:9
NULL
#define NULL
Definition: types.h:112
TRUE
#define TRUE
Definition: types.h:120
FALSE
#define FALSE
Definition: types.h:117
NT_SUCCESS
#define NT_SUCCESS(StatCode)
Definition: apphelp.c:32
PsGetCurrentThread
#define PsGetCurrentThread()
Definition: env_spec_w32.h:81
MAX_FAST_REFS
#define MAX_FAST_REFS
Definition: ex.h:132
ExReleaseFastReference
FORCEINLINE BOOLEAN ExReleaseFastReference(IN PEX_FAST_REF FastRef, IN PVOID Object)
Definition: ex.h:684
ExGetCountFastReference
FORCEINLINE ULONG ExGetCountFastReference(IN EX_FAST_REF FastRef)
Definition: ex.h:587
InterlockedCompareExchangeSizeT
#define InterlockedCompareExchangeSizeT(Destination, Exchange, Comperand)
Definition: ex.h:1538
ExInsertFastReference
FORCEINLINE BOOLEAN ExInsertFastReference(IN OUT PEX_FAST_REF FastRef, IN PVOID Object)
Definition: ex.h:645
ExInitializeFastReference
FORCEINLINE VOID ExInitializeFastReference(OUT PEX_FAST_REF FastRef, IN OPTIONAL PVOID Object)
Definition: ex.h:595
ExSwapFastReference
FORCEINLINE EX_FAST_REF ExSwapFastReference(IN PEX_FAST_REF FastRef, IN PVOID Object)
Definition: ex.h:719
ExGetObjectFastReference
FORCEINLINE PVOID ExGetObjectFastReference(IN EX_FAST_REF FastRef)
Definition: ex.h:579
ExAcquireFastReference
FORCEINLINE EX_FAST_REF ExAcquireFastReference(IN OUT PEX_FAST_REF FastRef)
Definition: ex.h:616
BooleanFlagOn
#define BooleanFlagOn(F, SF)
Definition: ext2fs.h:183
Handle
ULONG Handle
Definition: gdb_input.c:15
Status
Status
Definition: gdiplustypes.h:25
HandleTable
static XMS_HANDLE HandleTable[XMS_MAX_HANDLES]
Definition: himem.c:83
FLG_KERNEL_STACK_TRACE_DB
#define FLG_KERNEL_STACK_TRACE_DB
Definition: pstypes.h:68
InterlockedDecrementSizeT
#define InterlockedDecrementSizeT(a)
Definition: interlocked.h:153
InterlockedCompareExchangePointer
#define InterlockedCompareExchangePointer
Definition: interlocked.h:129
InterlockedExchangeAddSizeT
#define InterlockedExchangeAddSizeT(a, b)
Definition: interlocked.h:196
InterlockedIncrementSizeT
#define InterlockedIncrementSizeT(a)
Definition: interlocked.h:220
KeLeaveCriticalRegion
#define KeLeaveCriticalRegion()
Definition: ke_x.h:119
KeEnterCriticalRegion
#define KeEnterCriticalRegion()
Definition: ke_x.h:88
ASSERT
#define ASSERT(a)
Definition: mode.c:44
ObjectType
ObjectType
Definition: metafile.c:81
LONG_PTR
__int3264 LONG_PTR
Definition: mstsclib_h.h:276
KernelMode
#define KernelMode
Definition: asm.h:34
OBJECT_TO_OBJECT_HEADER
#define OBJECT_TO_OBJECT_HEADER(o)
Definition: obtypes.h:111
Count
int Count
Definition: noreturn.cpp:7
ACCESS_MASK
ULONG ACCESS_MASK
Definition: nt_native.h:40
FASTCALL
#define FASTCALL
Definition: nt_native.h:50
NtCurrentProcess
#define NtCurrentProcess()
Definition: nt_native.h:1657
ExMapHandleToPointer
PHANDLE_TABLE_ENTRY NTAPI ExMapHandleToPointer(IN PHANDLE_TABLE HandleTable, IN HANDLE Handle)
Definition: handle.c:1046
ExUnlockHandleTableEntry
VOID NTAPI ExUnlockHandleTableEntry(IN PHANDLE_TABLE HandleTable, IN PHANDLE_TABLE_ENTRY HandleTableEntry)
Definition: handle.c:923
NtGlobalFlag
ULONG NtGlobalFlag
Definition: init.c:54
IoComputeDesiredAccessFileObject
NTSTATUS NTAPI IoComputeDesiredAccessFileObject(IN PFILE_OBJECT FileObject, IN PACCESS_MASK DesiredAccess)
Definition: util.c:26
KeAreAllApcsDisabled
BOOLEAN NTAPI KeAreAllApcsDisabled(VOID)
Definition: apc.c:985
PsProcessType
POBJECT_TYPE PsProcessType
Definition: process.c:20
PsThreadType
POBJECT_TYPE PsThreadType
Definition: thread.c:20
SeCreateAccessState
NTSTATUS NTAPI SeCreateAccessState(_Inout_ PACCESS_STATE AccessState, _In_ PAUX_ACCESS_DATA AuxData, _In_ ACCESS_MASK Access, _In_ PGENERIC_MAPPING GenericMapping)
Creates an access state.
Definition: access.c:121
SeDeleteAccessState
VOID NTAPI SeDeleteAccessState(_In_ PACCESS_STATE AccessState)
Deletes an allocated access state from the memory.
Definition: access.c:150
STATUS_INVALID_HANDLE
#define STATUS_INVALID_HANDLE
Definition: ntstatus.h:245
STATUS_OBJECT_TYPE_MISMATCH
#define STATUS_OBJECT_TYPE_MISMATCH
Definition: ntstatus.h:273
ObpReaperList
volatile PVOID ObpReaperList
Definition: oblife.c:29
OBJ_HANDLE_ATTRIBUTES
#define OBJ_HANDLE_ATTRIBUTES
Definition: ob.h:52
ObpCaptureObjectName
NTSTATUS NTAPI ObpCaptureObjectName(IN PUNICODE_STRING CapturedName, IN PUNICODE_STRING ObjectName, IN KPROCESSOR_MODE AccessMode, IN BOOLEAN AllocateFromLookaside)
ObpKernelHandleTable
PHANDLE_TABLE ObpKernelHandleTable
Definition: obhandle.c:20
ObpCheckObjectReference
BOOLEAN NTAPI ObpCheckObjectReference(IN PVOID Object, IN OUT PACCESS_STATE AccessState, IN BOOLEAN LockHeld, IN KPROCESSOR_MODE AccessMode, OUT PNTSTATUS AccessStatus)
Definition: obsecure.c:340
ObpGetHandleObject
#define ObpGetHandleObject(x)
Definition: ob.h:91
ObpReaperWorkItem
WORK_QUEUE_ITEM ObpReaperWorkItem
Definition: oblife.c:28
ObpDeleteObject
VOID NTAPI ObpDeleteObject(IN PVOID Object, IN BOOLEAN CalledFromWorkerThread)
Definition: oblife.c:147
ObKernelHandleToHandle
#define ObKernelHandleToHandle(Handle)
Definition: ob.h:83
ObpFreeObjectNameBuffer
VOID NTAPI ObpFreeObjectNameBuffer(IN PUNICODE_STRING Name)
Definition: oblife.c:346
ObpLookupObjectName
NTSTATUS NTAPI ObpLookupObjectName(IN HANDLE RootHandle OPTIONAL, IN OUT PUNICODE_STRING ObjectName, IN ULONG Attributes, IN POBJECT_TYPE ObjectType, IN KPROCESSOR_MODE AccessMode, IN OUT PVOID ParseContext, IN PSECURITY_QUALITY_OF_SERVICE SecurityQos OPTIONAL, IN PVOID InsertObject OPTIONAL, IN OUT PACCESS_STATE AccessState, OUT POBP_LOOKUP_CONTEXT LookupContext, OUT PVOID *FoundObject)
Definition: obname.c:446
ObpReleaseLookupContext
FORCEINLINE VOID ObpReleaseLookupContext(IN POBP_LOOKUP_CONTEXT Context)
Releases an initialized object directory lookup context. Unlocks it if necessary, and dereferences th...
Definition: ob_x.h:323
ObpDeferObjectDeletion
VOID NTAPI ObpDeferObjectDeletion(IN POBJECT_HEADER Header)
Definition: obref.c:53
ObFastReferenceObject
PVOID FASTCALL ObFastReferenceObject(IN PEX_FAST_REF FastRef)
Definition: obref.c:132
ObfReferenceObject
LONG_PTR FASTCALL ObfReferenceObject(IN PVOID Object)
Definition: obref.c:308
ObDereferenceObjectEx
LONG FASTCALL ObDereferenceObjectEx(IN PVOID Object, IN LONG Count)
Definition: obref.c:88
ObReferenceObjectSafe
BOOLEAN FASTCALL ObReferenceObjectSafe(IN PVOID Object)
Definition: obref.c:22
ObDereferenceObjectDeferDelete
VOID NTAPI ObDereferenceObjectDeferDelete(IN PVOID Object)
Definition: obref.c:358
ObReferenceObjectByName
NTSTATUS NTAPI ObReferenceObjectByName(IN PUNICODE_STRING ObjectPath, IN ULONG Attributes, IN PACCESS_STATE PassedAccessState, IN ACCESS_MASK DesiredAccess, IN POBJECT_TYPE ObjectType, IN KPROCESSOR_MODE AccessMode, IN OUT PVOID ParseContext, OUT PVOID *ObjectPtr)
Definition: obref.c:409
ObInitializeFastReference
VOID FASTCALL ObInitializeFastReference(IN PEX_FAST_REF FastRef, IN PVOID Object OPTIONAL)
Definition: obref.c:107
ObReferenceFileObjectForWrite
NTSTATUS NTAPI ObReferenceFileObjectForWrite(IN HANDLE Handle, IN KPROCESSOR_MODE AccessMode, OUT PFILE_OBJECT *FileObject, OUT POBJECT_HANDLE_INFORMATION HandleInformation)
Definition: obref.c:200
ObfDereferenceObject
LONG_PTR FASTCALL ObfDereferenceObject(IN PVOID Object)
Definition: obref.c:318
ObReferenceObjectEx
LONG FASTCALL ObReferenceObjectEx(IN PVOID Object, IN LONG Count)
Definition: obref.c:77
ObFastReferenceObjectLocked
PVOID FASTCALL ObFastReferenceObjectLocked(IN PEX_FAST_REF FastRef)
Definition: obref.c:119
ObReferenceObjectByHandle
NTSTATUS NTAPI ObReferenceObjectByHandle(IN HANDLE Handle, IN ACCESS_MASK DesiredAccess, IN POBJECT_TYPE ObjectType, IN KPROCESSOR_MODE AccessMode, OUT PVOID *Object, OUT POBJECT_HANDLE_INFORMATION HandleInformation OPTIONAL)
Definition: obref.c:494
ObFastDereferenceObject
VOID FASTCALL ObFastDereferenceObject(IN PEX_FAST_REF FastRef, IN PVOID Object)
Definition: obref.c:167
ObReferenceObjectByPointer
NTSTATUS NTAPI ObReferenceObjectByPointer(IN PVOID Object, IN ACCESS_MASK DesiredAccess, IN POBJECT_TYPE ObjectType, IN KPROCESSOR_MODE AccessMode)
Definition: obref.c:381
ObFastReplaceObject
PVOID FASTCALL ObFastReplaceObject(IN PEX_FAST_REF FastRef, PVOID Object)
Definition: obref.c:176
LONG
long LONG
Definition: pedump.c:60
STATUS_SUCCESS
#define STATUS_SUCCESS
Definition: shellext.h:65
DPRINT
#define DPRINT
Definition: sndvol32.h:71
OPTIONAL
PULONG MinorVersion OPTIONAL
Definition: CrossNt.h:68
Entry
base of all file and directory entries
Definition: entries.h:83
_ACCESS_STATE
Definition: setypes.h:224
_AUX_ACCESS_DATA
Definition: setypes.h:257
_AUX_ACCESS_DATA::GenericMapping
GENERIC_MAPPING GenericMapping
Definition: setypes.h:259
_EPROCESS
Definition: pstypes.h:1261
_ETHREAD
Definition: pstypes.h:1102
_EX_FAST_REF
Definition: extypes.h:419
_HANDLE_TABLE_ENTRY
Definition: extypes.h:596
_HANDLE_TABLE_ENTRY::GrantedAccess
ULONG GrantedAccess
Definition: extypes.h:606
_HANDLE_TABLE_ENTRY::ObAttributes
ULONG_PTR ObAttributes
Definition: extypes.h:600
_HANDLE_TABLE
Definition: extypes.h:617
_OBJECT_HANDLE_INFORMATION
Definition: iotypes.h:179
_OBJECT_HEADER
Definition: obtypes.h:486
_OBJECT_HEADER::Body
QUAD Body
Definition: obtypes.h:504
_OBJECT_HEADER::PointerCount
LONG_PTR PointerCount
Definition: obtypes.h:487
_OBJECT_HEADER::Type
POBJECT_TYPE Type
Definition: obtypes.h:493
_OBJECT_TYPE
Definition: obtypes.h:380
_OBP_LOOKUP_CONTEXT
Definition: obtypes.h:511
_UNICODE_STRING
Definition: env_spec_w32.h:368
NTAPI
#define NTAPI
Definition: typedefs.h:36
ULONG_PTR
uint32_t ULONG_PTR
Definition: typedefs.h:65
IN
#define IN
Definition: typedefs.h:39
ULONG
uint32_t ULONG
Definition: typedefs.h:59
OUT
#define OUT
Definition: typedefs.h:40
STATUS_ACCESS_DENIED
#define STATUS_ACCESS_DENIED
Definition: udferr_usr.h:145
STATUS_OBJECT_NAME_INVALID
#define STATUS_OBJECT_NAME_INVALID
Definition: udferr_usr.h:148
Object
_Must_inspect_result_ _In_ WDFCOLLECTION _In_ WDFOBJECT Object
Definition: wdfcollection.h:123
Attributes
_Must_inspect_result_ _In_ WDFDMAENABLER _In_ _In_opt_ PWDF_OBJECT_ATTRIBUTES Attributes
Definition: wdfcommonbuffer.h:97
DesiredAccess
_Must_inspect_result_ _In_ WDFDEVICE _In_ ULONG _In_ ACCESS_MASK DesiredAccess
Definition: wdfdevice.h:2658
FileObject
_In_ WDFREQUEST _In_ WDFFILEOBJECT FileObject
Definition: wdfdevice.h:550
ExQueueWorkItem
VOID NTAPI ExQueueWorkItem(IN PWORK_QUEUE_ITEM WorkItem, IN WORK_QUEUE_TYPE QueueType)
Definition: work.c:723
ObjectName
_In_ PVOID _Out_opt_ PULONG_PTR _Outptr_opt_ PCUNICODE_STRING * ObjectName
Definition: cmfuncs.h:64
CriticalWorkQueue
@ CriticalWorkQueue
Definition: extypes.h:189
PFILE_OBJECT
* PFILE_OBJECT
Definition: iotypes.h:1998
KPROCESSOR_MODE
CCHAR KPROCESSOR_MODE
Definition: ketypes.h:7
AccessMode
_In_ PEPROCESS _In_ KPROCESSOR_MODE AccessMode
Definition: mmfuncs.h:396
HandleInformation
_In_ ACCESS_MASK _In_opt_ POBJECT_TYPE _In_ KPROCESSOR_MODE _Out_ PVOID _Out_opt_ POBJECT_HANDLE_INFORMATION HandleInformation
Definition: obfuncs.h:44
ObDereferenceObject
#define ObDereferenceObject
Definition: obfuncs.h:203
ObReferenceObject
#define ObReferenceObject
Definition: obfuncs.h:204
PassedAccessState
_Inout_opt_ PACCESS_STATE PassedAccessState
Definition: obfuncs.h:71
PsGetCurrentProcess
#define PsGetCurrentProcess
Definition: psfuncs.h:17
AccessState
_In_opt_ PVOID _In_opt_ PUNICODE_STRING _In_ PSECURITY_DESCRIPTOR _In_ PACCESS_STATE AccessState
Definition: sefuncs.h:417
GrantedAccess
_In_ PSECURITY_SUBJECT_CONTEXT _In_ BOOLEAN _In_ ACCESS_MASK _In_ ACCESS_MASK _Outptr_opt_ PPRIVILEGE_SET _In_ PGENERIC_MAPPING _In_ KPROCESSOR_MODE _Out_ PACCESS_MASK GrantedAccess
Definition: sefuncs.h:20
NtCurrentThread
#define NtCurrentThread()