ReactOS  0.4.14-dev-1331-g167fa2c
procsup.c
Go to the documentation of this file.
1 /*
2  * PROJECT: ReactOS Kernel
3  * LICENSE: BSD - See COPYING.ARM in the top level directory
4  * FILE: ntoskrnl/mm/ARM3/procsup.c
5  * PURPOSE: ARM Memory Manager Process Related Management
6  * PROGRAMMERS: ReactOS Portable Systems Group
7  */
8 
9 /* INCLUDES *******************************************************************/
10 
11 #include <ntoskrnl.h>
12 #define NDEBUG
13 #include <debug.h>
14 
15 #define MODULE_INVOLVED_IN_ARM3
16 #include <mm/ARM3/miarm.h>
17 
18 /* GLOBALS ********************************************************************/
19 
20 ULONG MmProcessColorSeed = 0x12345678;
21 PMMWSL MmWorkingSetList;
22 ULONG MmMaximumDeadKernelStacks = 5;
23 SLIST_HEADER MmDeadStackSListHead;
24 
25 /* PRIVATE FUNCTIONS **********************************************************/
26 
27 NTSTATUS
28 NTAPI
29 MiCreatePebOrTeb(IN PEPROCESS Process,
30  IN ULONG Size,
31  OUT PULONG_PTR BaseAddress)
32 {
33  PMMVAD_LONG Vad;
34  NTSTATUS Status;
35  ULONG_PTR HighestAddress, RandomBase;
36  ULONG AlignedSize;
37  LARGE_INTEGER CurrentTime;
38 
39  /* Allocate a VAD */
40  Vad = ExAllocatePoolWithTag(NonPagedPool, sizeof(MMVAD_LONG), 'ldaV');
41  if (!Vad) return STATUS_NO_MEMORY;
42 
43  /* Setup the primary flags with the size, and make it commited, private, RW */
44  Vad->u.LongFlags = 0;
45  Vad->u.VadFlags.CommitCharge = BYTES_TO_PAGES(Size);
46  Vad->u.VadFlags.MemCommit = TRUE;
47  Vad->u.VadFlags.PrivateMemory = TRUE;
48  Vad->u.VadFlags.Protection = MM_READWRITE;
49  Vad->u.VadFlags.NoChange = TRUE;
50  Vad->u1.Parent = NULL;
51 
52  /* Setup the secondary flags to make it a secured, writable, long VAD */
53  Vad->u2.LongFlags2 = 0;
54  Vad->u2.VadFlags2.OneSecured = TRUE;
55  Vad->u2.VadFlags2.LongVad = TRUE;
56  Vad->u2.VadFlags2.ReadOnly = FALSE;
57 
58  Vad->ControlArea = NULL; // For Memory-Area hack
59  Vad->FirstPrototypePte = NULL;
60 
61  /* Check if this is a PEB creation */
62  ASSERT(sizeof(TEB) != sizeof(PEB));
63  if (Size == sizeof(PEB))
64  {
65  /* Create a random value to select one page in a 64k region */
66  KeQueryTickCount(&CurrentTime);
67  CurrentTime.LowPart &= (_64K / PAGE_SIZE) - 1;
68 
69  /* Calculate a random base address */
70  RandomBase = (ULONG_PTR)MM_HIGHEST_VAD_ADDRESS + 1;
71  RandomBase -= CurrentTime.LowPart << PAGE_SHIFT;
72 
73  /* Make sure the base address is not too high */
74  AlignedSize = ROUND_TO_PAGES(Size);
75  if ((RandomBase + AlignedSize) > (ULONG_PTR)MM_HIGHEST_VAD_ADDRESS + 1)
76  {
77  RandomBase = (ULONG_PTR)MM_HIGHEST_VAD_ADDRESS + 1 - AlignedSize;
78  }
79 
80  /* Calculate the highest allowed address */
81  HighestAddress = RandomBase + AlignedSize - 1;
82  }
83  else
84  {
85  HighestAddress = (ULONG_PTR)MM_HIGHEST_VAD_ADDRESS;
86  }
87 
88  *BaseAddress = 0;
89  Status = MiInsertVadEx((PMMVAD)Vad,
90  BaseAddress,
91  Size,
92  HighestAddress,
93  PAGE_SIZE,
94  MEM_TOP_DOWN);
95  if (!NT_SUCCESS(Status))
96  {
97  ExFreePoolWithTag(Vad, 'ldaV');
98  return STATUS_NO_MEMORY;
99  }
100 
101  /* Success */
102  return STATUS_SUCCESS;
103 }
104 
105 VOID
106 NTAPI
107 MmDeleteTeb(IN PEPROCESS Process,
108  IN PTEB Teb)
109 {
110  ULONG_PTR TebEnd;
111  PETHREAD Thread = PsGetCurrentThread();
112  PMMVAD Vad;
113  PMM_AVL_TABLE VadTree = &Process->VadRoot;
114  DPRINT("Deleting TEB: %p in %16s\n", Teb, Process->ImageFileName);
115 
116  /* TEB is one page */
117  TebEnd = (ULONG_PTR)Teb + ROUND_TO_PAGES(sizeof(TEB)) - 1;
118 
119  /* Attach to the process */
120  KeAttachProcess(&Process->Pcb);
121 
122  /* Lock the process address space */
123  KeAcquireGuardedMutex(&Process->AddressCreationLock);
124 
125  /* Find the VAD, make sure it's a TEB VAD */
126  Vad = MiLocateAddress(Teb);
127  DPRINT("Removing node for VAD: %lx %lx\n", Vad->StartingVpn, Vad->EndingVpn);
128  ASSERT(Vad != NULL);
129  if (Vad->StartingVpn != ((ULONG_PTR)Teb >> PAGE_SHIFT))
130  {
131  /* Bug in the AVL code? */
132  DPRINT1("Corrupted VAD!\n");
133  }
134  else
135  {
136  /* Sanity checks for a valid TEB VAD */
137  ASSERT((Vad->StartingVpn == ((ULONG_PTR)Teb >> PAGE_SHIFT) &&
138  (Vad->EndingVpn == (TebEnd >> PAGE_SHIFT))));
139  ASSERT(Vad->u.VadFlags.NoChange == TRUE);
140  ASSERT(Vad->u2.VadFlags2.OneSecured == TRUE);
141  ASSERT(Vad->u2.VadFlags2.MultipleSecured == FALSE);
142 
143  /* Lock the working set */
144  MiLockProcessWorkingSetUnsafe(Process, Thread);
145 
146  /* Remove this VAD from the tree */
147  ASSERT(VadTree->NumberGenericTableElements >= 1);
148  MiRemoveNode((PMMADDRESS_NODE)Vad, VadTree);
149 
150  /* Delete the pages */
151  MiDeleteVirtualAddresses((ULONG_PTR)Teb, TebEnd, NULL);
152 
153  /* Release the working set */
154  MiUnlockProcessWorkingSetUnsafe(Process, Thread);
155 
156  /* Remove the VAD */
157  ExFreePool(Vad);
158  }
159 
160  /* Release the address space lock */
161  KeReleaseGuardedMutex(&Process->AddressCreationLock);
162 
163  /* Detach */
164  KeDetachProcess();
165 }
166 
167 VOID
168 NTAPI
169 MmDeleteKernelStack(IN PVOID StackBase,
170  IN BOOLEAN GuiStack)
171 {
172  PMMPTE PointerPte;
173  PFN_NUMBER PageFrameNumber, PageTableFrameNumber;
174  PFN_COUNT StackPages;
175  PMMPFN Pfn1, Pfn2;
176  ULONG i;
177  KIRQL OldIrql;
178  PSLIST_ENTRY SListEntry;
179 
180  //
181  // This should be the guard page, so decrement by one
182  //
183  PointerPte = MiAddressToPte(StackBase);
184  PointerPte--;
185 
186  //
187  // If this is a small stack, just push the stack onto the dead stack S-LIST
188  //
189  if (!GuiStack)
190  {
191  if (ExQueryDepthSList(&MmDeadStackSListHead) < MmMaximumDeadKernelStacks)
192  {
193  SListEntry = ((PSLIST_ENTRY)StackBase) - 1;
194  InterlockedPushEntrySList(&MmDeadStackSListHead, SListEntry);
195  return;
196  }
197  }
198 
199  //
200  // Calculate pages used
201  //
202  StackPages = BYTES_TO_PAGES(GuiStack ?
203  MmLargeStackSize : KERNEL_STACK_SIZE);
204 
205  /* Acquire the PFN lock */
206  OldIrql = MiAcquirePfnLock();
207 
208  //
209  // Loop them
210  //
211  for (i = 0; i < StackPages; i++)
212  {
213  //
214  // Check if this is a valid PTE
215  //
216  if (PointerPte->u.Hard.Valid == 1)
217  {
218  /* Get the PTE's page */
219  PageFrameNumber = PFN_FROM_PTE(PointerPte);
220  Pfn1 = MiGetPfnEntry(PageFrameNumber);
221 
222  /* Now get the page of the page table mapping it */
223  PageTableFrameNumber = Pfn1->u4.PteFrame;
224  Pfn2 = MiGetPfnEntry(PageTableFrameNumber);
225 
226  /* Remove a shared reference, since the page is going away */
227  MiDecrementShareCount(Pfn2, PageTableFrameNumber);
228 
229  /* Set the special pending delete marker */
230  MI_SET_PFN_DELETED(Pfn1);
231 
232  /* And now delete the actual stack page */
233  MiDecrementShareCount(Pfn1, PageFrameNumber);
234  }
235 
236  //
237  // Next one
238  //
239  PointerPte--;
240  }
241 
242  //
243  // We should be at the guard page now
244  //
245  ASSERT(PointerPte->u.Hard.Valid == 0);
246 
247  /* Release the PFN lock */
248  MiReleasePfnLock(OldIrql);
249 
250  //
251  // Release the PTEs
252  //
253  MiReleaseSystemPtes(PointerPte, StackPages + 1, SystemPteSpace);
254 }
255 
256 PVOID
257 NTAPI
258 MmCreateKernelStack(IN BOOLEAN GuiStack,
259  IN UCHAR Node)
260 {
261  PFN_COUNT StackPtes, StackPages;
262  PMMPTE PointerPte, StackPte;
263  PVOID BaseAddress;
264  MMPTE TempPte, InvalidPte;
265  KIRQL OldIrql;
266  PFN_NUMBER PageFrameIndex;
267  ULONG i;
268  PSLIST_ENTRY SListEntry;
269 
270  //
271  // Calculate pages needed
272  //
273  if (GuiStack)
274  {
275  //
276  // We'll allocate 64KB stack, but only commit 12K
277  //
278  StackPtes = BYTES_TO_PAGES(MmLargeStackSize);
279  StackPages = BYTES_TO_PAGES(KERNEL_LARGE_STACK_COMMIT);
280  }
281  else
282  {
283  //
284  // If the dead stack S-LIST has a stack on it, use it instead of allocating
285  // new system PTEs for this stack
286  //
287  if (ExQueryDepthSList(&MmDeadStackSListHead))
288  {
289  SListEntry = InterlockedPopEntrySList(&MmDeadStackSListHead);
290  if (SListEntry != NULL)
291  {
292  BaseAddress = (SListEntry + 1);
293  return BaseAddress;
294  }
295  }
296 
297  //
298  // We'll allocate 12K and that's it
299  //
300  StackPtes = BYTES_TO_PAGES(KERNEL_STACK_SIZE);
301  StackPages = StackPtes;
302  }
303 
304  //
305  // Reserve stack pages, plus a guard page
306  //
307  StackPte = MiReserveSystemPtes(StackPtes + 1, SystemPteSpace);
308  if (!StackPte) return NULL;
309 
310  //
311  // Get the stack address
312  //
313  BaseAddress = MiPteToAddress(StackPte + StackPtes + 1);
314 
315  //
316  // Select the right PTE address where we actually start committing pages
317  //
318  PointerPte = StackPte;
319  if (GuiStack) PointerPte += BYTES_TO_PAGES(MmLargeStackSize -
320  KERNEL_LARGE_STACK_COMMIT);
321 
322 
323  /* Setup the temporary invalid PTE */
324  MI_MAKE_SOFTWARE_PTE(&InvalidPte, MM_NOACCESS);
325 
326  /* Setup the template stack PTE */
327  MI_MAKE_HARDWARE_PTE_KERNEL(&TempPte, PointerPte + 1, MM_READWRITE, 0);
328 
329  //
330  // Acquire the PFN DB lock
331  //
332  OldIrql = MiAcquirePfnLock();
333 
334  //
335  // Loop each stack page
336  //
337  for (i = 0; i < StackPages; i++)
338  {
339  //
340  // Next PTE
341  //
342  PointerPte++;
343 
344  /* Get a page and write the current invalid PTE */
345  MI_SET_USAGE(MI_USAGE_KERNEL_STACK);
346  MI_SET_PROCESS2(PsGetCurrentProcess()->ImageFileName);
347  PageFrameIndex = MiRemoveAnyPage(MI_GET_NEXT_COLOR());
348  MI_WRITE_INVALID_PTE(PointerPte, InvalidPte);
349 
350  /* Initialize the PFN entry for this page */
351  MiInitializePfn(PageFrameIndex, PointerPte, 1);
352 
353  /* Write the valid PTE */
354  TempPte.u.Hard.PageFrameNumber = PageFrameIndex;
355  MI_WRITE_VALID_PTE(PointerPte, TempPte);
356  }
357 
358  //
359  // Release the PFN lock
360  //
361  MiReleasePfnLock(OldIrql);
362 
363  //
364  // Return the stack address
365  //
366  return BaseAddress;
367 }
368 
369 NTSTATUS
370 NTAPI
371 MmGrowKernelStackEx(IN PVOID StackPointer,
372  IN ULONG GrowSize)
373 {
374  PKTHREAD Thread = KeGetCurrentThread();
375  PMMPTE LimitPte, NewLimitPte, LastPte;
376  KIRQL OldIrql;
377  MMPTE TempPte, InvalidPte;
378  PFN_NUMBER PageFrameIndex;
379 
380  //
381  // Make sure the stack did not overflow
382  //
383  ASSERT(((ULONG_PTR)Thread->StackBase - (ULONG_PTR)Thread->StackLimit) <=
384  (MmLargeStackSize + PAGE_SIZE));
385 
386  //
387  // Get the current stack limit
388  //
389  LimitPte = MiAddressToPte(Thread->StackLimit);
390  ASSERT(LimitPte->u.Hard.Valid == 1);
391 
392  //
393  // Get the new one and make sure this isn't a retarded request
394  //
395  NewLimitPte = MiAddressToPte((PVOID)((ULONG_PTR)StackPointer - GrowSize));
396  if (NewLimitPte == LimitPte) return STATUS_SUCCESS;
397 
398  //
399  // Now make sure you're not going past the reserved space
400  //
401  LastPte = MiAddressToPte((PVOID)((ULONG_PTR)Thread->StackBase -
402  MmLargeStackSize));
403  if (NewLimitPte < LastPte)
404  {
405  //
406  // Sorry!
407  //
408  return STATUS_STACK_OVERFLOW;
409  }
410 
411  //
412  // Calculate the number of new pages
413  //
414  LimitPte--;
415 
416  /* Setup the temporary invalid PTE */
417  MI_MAKE_SOFTWARE_PTE(&InvalidPte, MM_NOACCESS);
418 
419  //
420  // Acquire the PFN DB lock
421  //
422  OldIrql = MiAcquirePfnLock();
423 
424  //
425  // Loop each stack page
426  //
427  while (LimitPte >= NewLimitPte)
428  {
429  /* Get a page and write the current invalid PTE */
430  MI_SET_USAGE(MI_USAGE_KERNEL_STACK_EXPANSION);
431  MI_SET_PROCESS2(PsGetCurrentProcess()->ImageFileName);
432  PageFrameIndex = MiRemoveAnyPage(MI_GET_NEXT_COLOR());
433  MI_WRITE_INVALID_PTE(LimitPte, InvalidPte);
434 
435  /* Initialize the PFN entry for this page */
436  MiInitializePfn(PageFrameIndex, LimitPte, 1);
437 
438  /* Setup the template stack PTE */
439  MI_MAKE_HARDWARE_PTE_KERNEL(&TempPte, LimitPte, MM_READWRITE, PageFrameIndex);
440 
441  /* Write the valid PTE */
442  MI_WRITE_VALID_PTE(LimitPte--, TempPte);
443  }
444 
445  //
446  // Release the PFN lock
447  //
448  MiReleasePfnLock(OldIrql);
449 
450  //
451  // Set the new limit
452  //
453  Thread->StackLimit = (ULONG_PTR)MiPteToAddress(NewLimitPte);
454  return STATUS_SUCCESS;
455 }
456 
457 NTSTATUS
458 NTAPI
459 MmGrowKernelStack(IN PVOID StackPointer)
460 {
461  //
462  // Call the extended version
463  //
464  return MmGrowKernelStackEx(StackPointer, KERNEL_LARGE_STACK_COMMIT);
465 }
466 
467 NTSTATUS
468 NTAPI
469 MmSetMemoryPriorityProcess(IN PEPROCESS Process,
470  IN UCHAR MemoryPriority)
471 {
472  UCHAR OldPriority;
473 
474  //
475  // Check if we have less then 16MB of Physical Memory
476  //
477  if ((MmSystemSize == MmSmallSystem) &&
478  (MmNumberOfPhysicalPages < ((15 * 1024 * 1024) / PAGE_SIZE)))
479  {
480  //
481  // Always use background priority
482  //
483  MemoryPriority = MEMORY_PRIORITY_BACKGROUND;
484  }
485 
486  //
487  // Save the old priority and update it
488  //
489  OldPriority = (UCHAR)Process->Vm.Flags.MemoryPriority;
490  Process->Vm.Flags.MemoryPriority = MemoryPriority;
491 
492  //
493  // Return the old priority
494  //
495  return OldPriority;
496 }
497 
498 NTSTATUS
499 NTAPI
500 MmCreatePeb(IN PEPROCESS Process,
501  IN PINITIAL_PEB InitialPeb,
502  OUT PPEB *BasePeb)
503 {
504  PPEB Peb = NULL;
505  LARGE_INTEGER SectionOffset;
506  SIZE_T ViewSize = 0;
507  PVOID TableBase = NULL;
508  PIMAGE_NT_HEADERS NtHeaders;
509  PIMAGE_LOAD_CONFIG_DIRECTORY ImageConfigData;
510  NTSTATUS Status;
511  USHORT Characteristics;
512  KAFFINITY ProcessAffinityMask = 0;
513  SectionOffset.QuadPart = (ULONGLONG)0;
514  *BasePeb = NULL;
515 
516  //
517  // Attach to Process
518  //
519  KeAttachProcess(&Process->Pcb);
520 
521  //
522  // Map NLS Tables
523  //
524  Status = MmMapViewOfSection(ExpNlsSectionPointer,
525  (PEPROCESS)Process,
526  &TableBase,
527  0,
528  0,
529  &SectionOffset,
530  &ViewSize,
531  ViewShare,
532  MEM_TOP_DOWN,
533  PAGE_READONLY);
534  DPRINT("NLS Tables at: %p\n", TableBase);
535  if (!NT_SUCCESS(Status))
536  {
537  /* Cleanup and exit */
538  KeDetachProcess();
539  return Status;
540  }
541 
542  //
543  // Allocate the PEB
544  //
545  Status = MiCreatePebOrTeb(Process, sizeof(PEB), (PULONG_PTR)&Peb);
546  DPRINT("PEB at: %p\n", Peb);
547  if (!NT_SUCCESS(Status))
548  {
549  /* Cleanup and exit */
550  KeDetachProcess();
551  return Status;
552  }
553 
554  //
555  // Use SEH in case we can't load the PEB
556  //
557  _SEH2_TRY
558  {
559  //
560  // Initialize the PEB
561  //
562  RtlZeroMemory(Peb, sizeof(PEB));
563 
564  //
565  // Set up data
566  //
567  Peb->ImageBaseAddress = Process->SectionBaseAddress;
568  Peb->InheritedAddressSpace = InitialPeb->InheritedAddressSpace;
569  Peb->Mutant = InitialPeb->Mutant;
570  Peb->ImageUsesLargePages = InitialPeb->ImageUsesLargePages;
571 
572  //
573  // NLS
574  //
575  Peb->AnsiCodePageData = (PCHAR)TableBase + ExpAnsiCodePageDataOffset;
576  Peb->OemCodePageData = (PCHAR)TableBase + ExpOemCodePageDataOffset;
577  Peb->UnicodeCaseTableData = (PCHAR)TableBase + ExpUnicodeCaseTableDataOffset;
578 
579  //
580  // Default Version Data (could get changed below)
581  //
582  Peb->OSMajorVersion = NtMajorVersion;
583  Peb->OSMinorVersion = NtMinorVersion;
584  Peb->OSBuildNumber = (USHORT)(NtBuildNumber & 0x3FFF);
585  Peb->OSPlatformId = VER_PLATFORM_WIN32_NT;
586  Peb->OSCSDVersion = (USHORT)CmNtCSDVersion;
587 
588  //
589  // Heap and Debug Data
590  //
591  Peb->NumberOfProcessors = KeNumberProcessors;
592  Peb->BeingDebugged = (BOOLEAN)(Process->DebugPort != NULL);
593  Peb->NtGlobalFlag = NtGlobalFlag;
594  Peb->HeapSegmentReserve = MmHeapSegmentReserve;
595  Peb->HeapSegmentCommit = MmHeapSegmentCommit;
596  Peb->HeapDeCommitTotalFreeThreshold = MmHeapDeCommitTotalFreeThreshold;
597  Peb->HeapDeCommitFreeBlockThreshold = MmHeapDeCommitFreeBlockThreshold;
598  Peb->CriticalSectionTimeout = MmCriticalSectionTimeout;
599  Peb->MinimumStackCommit = MmMinimumStackCommitInBytes;
600  Peb->MaximumNumberOfHeaps = (PAGE_SIZE - sizeof(PEB)) / sizeof(PVOID);
601  Peb->ProcessHeaps = (PVOID*)(Peb + 1);
602 
603  //
604  // Session ID
605  //
606  if (Process->Session) Peb->SessionId = MmGetSessionId(Process);
607  }
608  _SEH2_EXCEPT(EXCEPTION_EXECUTE_HANDLER)
609  {
610  //
611  // Fail
612  //
613  KeDetachProcess();
614  _SEH2_YIELD(return _SEH2_GetExceptionCode());
615  }
616  _SEH2_END;
617 
618  //
619  // Use SEH in case we can't load the image
620  //
621  _SEH2_TRY
622  {
623  //
624  // Get NT Headers
625  //
626  NtHeaders = RtlImageNtHeader(Peb->ImageBaseAddress);
627  Characteristics = NtHeaders->FileHeader.Characteristics;
628  }
629  _SEH2_EXCEPT(EXCEPTION_EXECUTE_HANDLER)
630  {
631  //
632  // Fail
633  //
634  KeDetachProcess();
635  _SEH2_YIELD(return STATUS_INVALID_IMAGE_PROTECT);
636  }
637  _SEH2_END;
638 
639  //
640  // Parse the headers
641  //
642  if (NtHeaders)
643  {
644  //
645  // Use SEH in case we can't load the headers
646  //
647  _SEH2_TRY
648  {
649  //
650  // Get the Image Config Data too
651  //
652  ImageConfigData = RtlImageDirectoryEntryToData(Peb->ImageBaseAddress,
653  TRUE,
654  IMAGE_DIRECTORY_ENTRY_LOAD_CONFIG,
655  (PULONG)&ViewSize);
656  if (ImageConfigData)
657  {
658  //
659  // Probe it
660  //
661  ProbeForRead(ImageConfigData,
662  sizeof(IMAGE_LOAD_CONFIG_DIRECTORY),
663  sizeof(ULONG));
664  }
665 
666  //
667  // Write subsystem data
668  //
669  Peb->ImageSubsystem = NtHeaders->OptionalHeader.Subsystem;
670  Peb->ImageSubsystemMajorVersion = NtHeaders->OptionalHeader.MajorSubsystemVersion;
671  Peb->ImageSubsystemMinorVersion = NtHeaders->OptionalHeader.MinorSubsystemVersion;
672 
673  //
674  // Check for version data
675  //
676  if (NtHeaders->OptionalHeader.Win32VersionValue)
677  {
678  //
679  // Extract values and write them
680  //
681  Peb->OSMajorVersion = NtHeaders->OptionalHeader.Win32VersionValue & 0xFF;
682  Peb->OSMinorVersion = (NtHeaders->OptionalHeader.Win32VersionValue >> 8) & 0xFF;
683  Peb->OSBuildNumber = (NtHeaders->OptionalHeader.Win32VersionValue >> 16) & 0x3FFF;
684  Peb->OSPlatformId = (NtHeaders->OptionalHeader.Win32VersionValue >> 30) ^ 2;
685 
686  /* Process CSD version override */
687  if ((ImageConfigData) && (ImageConfigData->CSDVersion))
688  {
689  /* Take the value from the image configuration directory */
690  Peb->OSCSDVersion = ImageConfigData->CSDVersion;
691  }
692  }
693 
694  /* Process optional process affinity mask override */
695  if ((ImageConfigData) && (ImageConfigData->ProcessAffinityMask))
696  {
697  /* Take the value from the image configuration directory */
698  ProcessAffinityMask = ImageConfigData->ProcessAffinityMask;
699  }
700 
701  //
702  // Check if this is a UP image
703  if (Characteristics & IMAGE_FILE_UP_SYSTEM_ONLY)
704  {
705  //
706  // Force it to use CPU 0
707  //
708  /* FIXME: this should use the MmRotatingUniprocessorNumber */
709  Peb->ImageProcessAffinityMask = 0;
710  }
711  else
712  {
713  //
714  // Whatever was configured
715  //
716  Peb->ImageProcessAffinityMask = ProcessAffinityMask;
717  }
718  }
719  _SEH2_EXCEPT(EXCEPTION_EXECUTE_HANDLER)
720  {
721  //
722  // Fail
723  //
724  KeDetachProcess();
725  _SEH2_YIELD(return STATUS_INVALID_IMAGE_PROTECT);
726  }
727  _SEH2_END;
728  }
729 
730  //
731  // Detach from the Process
732  //
733  KeDetachProcess();
734  *BasePeb = Peb;
735  return STATUS_SUCCESS;
736 }
737 
738 NTSTATUS
739 NTAPI
740 MmCreateTeb(IN PEPROCESS Process,
741  IN PCLIENT_ID ClientId,
742  IN PINITIAL_TEB InitialTeb,
743  OUT PTEB *BaseTeb)
744 {
745  PTEB Teb;
746  NTSTATUS Status = STATUS_SUCCESS;
747  *BaseTeb = NULL;
748 
749  //
750  // Attach to Target
751  //
752  KeAttachProcess(&Process->Pcb);
753 
754  //
755  // Allocate the TEB
756  //
757  Status = MiCreatePebOrTeb(Process, sizeof(TEB), (PULONG_PTR)&Teb);
758  if (!NT_SUCCESS(Status))
759  {
760  /* Cleanup and exit */
761  KeDetachProcess();
762  return Status;
763  }
764 
765  //
766  // Use SEH in case we can't load the TEB
767  //
768  _SEH2_TRY
769  {
770  //
771  // Initialize the PEB
772  //
773  RtlZeroMemory(Teb, sizeof(TEB));
774 
775  //
776  // Set TIB Data
777  //
778 #ifdef _M_AMD64
779  Teb->NtTib.ExceptionList = NULL;
780 #else
781  Teb->NtTib.ExceptionList = EXCEPTION_CHAIN_END;
782 #endif
783  Teb->NtTib.Self = (PNT_TIB)Teb;
784 
785  //
786  // Identify this as an OS/2 V3.0 ("Cruiser") TIB
787  //
788  Teb->NtTib.Version = 30 << 8;
789 
790  //
791  // Set TEB Data
792  //
793  Teb->ClientId = *ClientId;
794  Teb->RealClientId = *ClientId;
795  Teb->ProcessEnvironmentBlock = Process->Peb;
796  Teb->CurrentLocale = PsDefaultThreadLocaleId;
797 
798  //
799  // Check if we have a grandparent TEB
800  //
801  if ((InitialTeb->PreviousStackBase == NULL) &&
802  (InitialTeb->PreviousStackLimit == NULL))
803  {
804  //
805  // Use initial TEB values
806  //
807  Teb->NtTib.StackBase = InitialTeb->StackBase;
808  Teb->NtTib.StackLimit = InitialTeb->StackLimit;
809  Teb->DeallocationStack = InitialTeb->AllocatedStackBase;
810  }
811  else
812  {
813  //
814  // Use grandparent TEB values
815  //
816  Teb->NtTib.StackBase = InitialTeb->PreviousStackBase;
817  Teb->NtTib.StackLimit = InitialTeb->PreviousStackLimit;
818  }
819 
820  //
821  // Initialize the static unicode string
822  //
823  Teb->StaticUnicodeString.MaximumLength = sizeof(Teb->StaticUnicodeBuffer);
824  Teb->StaticUnicodeString.Buffer = Teb->StaticUnicodeBuffer;
825  }
826  _SEH2_EXCEPT(EXCEPTION_EXECUTE_HANDLER)
827  {
828  //
829  // Get error code
830  //
831  Status = _SEH2_GetExceptionCode();
832  }
833  _SEH2_END;
834 
835  //
836  // Return
837  //
838  KeDetachProcess();
839  *BaseTeb = Teb;
840  return Status;
841 }
842 
843 VOID
844 NTAPI
845 MiInitializeWorkingSetList(IN PEPROCESS CurrentProcess)
846 {
847  PMMPFN Pfn1;
848  PMMPTE sysPte;
849  MMPTE tempPte;
850 
851  /* Setup some bogus list data */
852  MmWorkingSetList->LastEntry = CurrentProcess->Vm.MinimumWorkingSetSize;
853  MmWorkingSetList->HashTable = NULL;
854  MmWorkingSetList->HashTableSize = 0;
855  MmWorkingSetList->NumberOfImageWaiters = 0;
856  MmWorkingSetList->Wsle = (PVOID)(ULONG_PTR)0xDEADBABEDEADBABEULL;
857  MmWorkingSetList->VadBitMapHint = 1;
858  MmWorkingSetList->HashTableStart = (PVOID)(ULONG_PTR)0xBADAB00BBADAB00BULL;
859  MmWorkingSetList->HighestPermittedHashAddress = (PVOID)(ULONG_PTR)0xCAFEBABECAFEBABEULL;
860  MmWorkingSetList->FirstFree = 1;
861  MmWorkingSetList->FirstDynamic = 2;
862  MmWorkingSetList->NextSlot = 3;
863  MmWorkingSetList->LastInitializedWsle = 4;
864 
865  /* The rule is that the owner process is always in the FLINK of the PDE's PFN entry */
866  Pfn1 = MiGetPfnEntry(CurrentProcess->Pcb.DirectoryTableBase[0] >> PAGE_SHIFT);
867  ASSERT(Pfn1->u4.PteFrame == MiGetPfnEntryIndex(Pfn1));
868  Pfn1->u1.Event = (PKEVENT)CurrentProcess;
869 
870  /* Map the process working set in kernel space */
871  sysPte = MiReserveSystemPtes(1, SystemPteSpace);
872  MI_MAKE_HARDWARE_PTE_KERNEL(&tempPte, sysPte, MM_READWRITE, CurrentProcess->WorkingSetPage);
873  MI_WRITE_VALID_PTE(sysPte, tempPte);
874  CurrentProcess->Vm.VmWorkingSetList = MiPteToAddress(sysPte);
875 }
876 
877 NTSTATUS
878 NTAPI
879 MmInitializeProcessAddressSpace(IN PEPROCESS Process,
880  IN PEPROCESS ProcessClone OPTIONAL,
881  IN PVOID Section OPTIONAL,
882  IN OUT PULONG Flags,
883  IN POBJECT_NAME_INFORMATION *AuditName OPTIONAL)
884 {
885  NTSTATUS Status = STATUS_SUCCESS;
886  SIZE_T ViewSize = 0;
887  PVOID ImageBase = 0;
888  PROS_SECTION_OBJECT SectionObject = Section;
889  PMMPTE PointerPte;
890  KIRQL OldIrql;
891  PMMPDE PointerPde;
892  PFN_NUMBER PageFrameNumber;
893  UNICODE_STRING FileName;
894  PWCHAR Source;
895  PCHAR Destination;
896  USHORT Length = 0;
897  MMPTE TempPte;
898 
899  /* We should have a PDE */
900  ASSERT(Process->Pcb.DirectoryTableBase[0] != 0);
901  ASSERT(Process->PdeUpdateNeeded == FALSE);
902 
903  /* Attach to the process */
904  KeAttachProcess(&Process->Pcb);
905 
906  /* The address space should now been in phase 1 or 0 */
907  ASSERT(Process->AddressSpaceInitialized <= 1);
908  Process->AddressSpaceInitialized = 2;
909 
910  /* Initialize the Addresss Space lock */
911  KeInitializeGuardedMutex(&Process->AddressCreationLock);
912  Process->Vm.WorkingSetExpansionLinks.Flink = NULL;
913 
914  /* Initialize AVL tree */
915  ASSERT(Process->VadRoot.NumberGenericTableElements == 0);
916  Process->VadRoot.BalancedRoot.u1.Parent = &Process->VadRoot.BalancedRoot;
917 
918  /* Lock PFN database */
919  OldIrql = MiAcquirePfnLock();
920 
921  /* Setup the PFN for the PDE base of this process */
922 #ifdef _M_AMD64
923  PointerPte = MiAddressToPte(PXE_BASE);
924 #else
925  PointerPte = MiAddressToPte(PDE_BASE);
926 #endif
927  PageFrameNumber = PFN_FROM_PTE(PointerPte);
928  ASSERT(Process->Pcb.DirectoryTableBase[0] == PageFrameNumber * PAGE_SIZE);
929  MiInitializePfn(PageFrameNumber, PointerPte, TRUE);
930 
931  /* Do the same for hyperspace */
932 #ifdef _M_AMD64
933  PointerPde = MiAddressToPxe((PVOID)HYPER_SPACE);
934 #else
935  PointerPde = MiAddressToPde(HYPER_SPACE);
936 #endif
937  PageFrameNumber = PFN_FROM_PTE(PointerPde);
938  //ASSERT(Process->Pcb.DirectoryTableBase[0] == PageFrameNumber * PAGE_SIZE); // we're not lucky
939  MiInitializePfn(PageFrameNumber, (PMMPTE)PointerPde, TRUE);
940 
941  /* Setup the PFN for the PTE for the working set */
942  PointerPte = MiAddressToPte(MI_WORKING_SET_LIST);
943  MI_MAKE_HARDWARE_PTE(&TempPte, PointerPte, MM_READWRITE, 0);
944  ASSERT(PointerPte->u.Long != 0);
945  PageFrameNumber = PFN_FROM_PTE(PointerPte);
946  MI_WRITE_INVALID_PTE(PointerPte, DemandZeroPte);
947  MiInitializePfn(PageFrameNumber, PointerPte, TRUE);
948  TempPte.u.Hard.PageFrameNumber = PageFrameNumber;
949  MI_WRITE_VALID_PTE(PointerPte, TempPte);
950 
951  /* Now initialize the working set list */
952  MiInitializeWorkingSetList(Process);
953 
954  /* Sanity check */
955  ASSERT(Process->PhysicalVadRoot == NULL);
956 
957  /* Release PFN lock */
958  MiReleasePfnLock(OldIrql);
959 
960  /* Check if there's a Section Object */
961  if (SectionObject)
962  {
963  /* Determine the image file name and save it to EPROCESS */
964  FileName = SectionObject->FileObject->FileName;
965  Source = (PWCHAR)((PCHAR)FileName.Buffer + FileName.Length);
966  if (FileName.Buffer)
967  {
968  /* Loop the file name*/
969  while (Source > FileName.Buffer)
970  {
971  /* Make sure this isn't a backslash */
972  if (*--Source == OBJ_NAME_PATH_SEPARATOR)
973  {
974  /* If so, stop it here */
975  Source++;
976  break;
977  }
978  else
979  {
980  /* Otherwise, keep going */
981  Length++;
982  }
983  }
984  }
985 
986  /* Copy the to the process and truncate it to 15 characters if necessary */
987  Destination = Process->ImageFileName;
988  Length = min(Length, sizeof(Process->ImageFileName) - 1);
989  while (Length--) *Destination++ = (UCHAR)*Source++;
990  *Destination = ANSI_NULL;
991 
992  /* Check if caller wants an audit name */
993  if (AuditName)
994  {
995  /* Setup the audit name */
996  Status = SeInitializeProcessAuditName(SectionObject->FileObject,
997  FALSE,
998  AuditName);
999  if (!NT_SUCCESS(Status))
1000  {
1001  /* Fail */
1002  KeDetachProcess();
1003  return Status;
1004  }
1005  }
1006 
1007  /* Map the section */
1008  Status = MmMapViewOfSection(Section,
1009  Process,
1010  (PVOID*)&ImageBase,
1011  0,
1012  0,
1013  NULL,
1014  &ViewSize,
1015  0,
1016  MEM_COMMIT,
1017  PAGE_READWRITE);
1018 
1019  /* Save the pointer */
1020  Process->SectionBaseAddress = ImageBase;
1021  }
1022 
1023  /* Be nice and detach */
1024  KeDetachProcess();
1025 
1026  /* Return status to caller */
1027  return Status;
1028 }
1029 
1030 INIT_FUNCTION
1031 NTSTATUS
1032 NTAPI
1033 MmInitializeHandBuiltProcess(IN PEPROCESS Process,
1034  IN PULONG_PTR DirectoryTableBase)
1035 {
1036  /* Share the directory base with the idle process */
1037  DirectoryTableBase[0] = PsGetCurrentProcess()->Pcb.DirectoryTableBase[0];
1038  DirectoryTableBase[1] = PsGetCurrentProcess()->Pcb.DirectoryTableBase[1];
1039 
1040  /* Initialize the Addresss Space */
1041  KeInitializeGuardedMutex(&Process->AddressCreationLock);
1042  KeInitializeSpinLock(&Process->HyperSpaceLock);
1043  Process->Vm.WorkingSetExpansionLinks.Flink = NULL;
1044  ASSERT(Process->VadRoot.NumberGenericTableElements == 0);
1045  Process->VadRoot.BalancedRoot.u1.Parent = &Process->VadRoot.BalancedRoot;
1046 
1047  /* Use idle process Working set */
1048  Process->Vm.VmWorkingSetList = PsGetCurrentProcess()->Vm.VmWorkingSetList;
1049 
1050  /* Done */
1051  Process->HasAddressSpace = TRUE;//??
1052  return STATUS_SUCCESS;
1053 }
1054 
1055 INIT_FUNCTION
1056 NTSTATUS
1057 NTAPI
1058 MmInitializeHandBuiltProcess2(IN PEPROCESS Process)
1059 {
1060  /* Lock the VAD, ARM3-owned ranges away */
1061  return STATUS_SUCCESS;
1062 }
1063 
1064 #ifdef _M_IX86
1065 /* FIXME: Evaluate ways to make this portable yet arch-specific */
1066 BOOLEAN
1067 NTAPI
1068 MmCreateProcessAddressSpace(IN ULONG MinWs,
1069  IN PEPROCESS Process,
1070  OUT PULONG_PTR DirectoryTableBase)
1071 {
1072  KIRQL OldIrql;
1073  PFN_NUMBER PdeIndex, HyperIndex, WsListIndex;
1074  PMMPTE PointerPte;
1075  MMPTE TempPte, PdePte;
1076  ULONG PdeOffset;
1077  PMMPTE SystemTable, HyperTable;
1078  ULONG Color;
1079  PMMPFN Pfn1;
1080 
1081  /* Choose a process color */
1082  Process->NextPageColor = (USHORT)RtlRandom(&MmProcessColorSeed);
1083 
1084  /* Setup the hyperspace lock */
1085  KeInitializeSpinLock(&Process->HyperSpaceLock);
1086 
1087  /* Lock PFN database */
1088  OldIrql = MiAcquirePfnLock();
1089 
1090  /* Get a zero page for the PDE, if possible */
1091  Color = MI_GET_NEXT_PROCESS_COLOR(Process);
1092  MI_SET_USAGE(MI_USAGE_PAGE_DIRECTORY);
1093  PdeIndex = MiRemoveZeroPageSafe(Color);
1094  if (!PdeIndex)
1095  {
1096  /* No zero pages, grab a free one */
1097  PdeIndex = MiRemoveAnyPage(Color);
1098 
1099  /* Zero it outside the PFN lock */
1100  MiReleasePfnLock(OldIrql);
1101  MiZeroPhysicalPage(PdeIndex);
1102  OldIrql = MiAcquirePfnLock();
1103  }
1104 
1105  /* Get a zero page for hyperspace, if possible */
1106  MI_SET_USAGE(MI_USAGE_PAGE_DIRECTORY);
1107  Color = MI_GET_NEXT_PROCESS_COLOR(Process);
1108  HyperIndex = MiRemoveZeroPageSafe(Color);
1109  if (!HyperIndex)
1110  {
1111  /* No zero pages, grab a free one */
1112  HyperIndex = MiRemoveAnyPage(Color);
1113 
1114  /* Zero it outside the PFN lock */
1115  MiReleasePfnLock(OldIrql);
1116  MiZeroPhysicalPage(HyperIndex);
1117  OldIrql = MiAcquirePfnLock();
1118  }
1119 
1120  /* Get a zero page for the woring set list, if possible */
1121  MI_SET_USAGE(MI_USAGE_PAGE_TABLE);
1122  Color = MI_GET_NEXT_PROCESS_COLOR(Process);
1123  WsListIndex = MiRemoveZeroPageSafe(Color);
1124  if (!WsListIndex)
1125  {
1126  /* No zero pages, grab a free one */
1127  WsListIndex = MiRemoveAnyPage(Color);
1128 
1129  /* Zero it outside the PFN lock */
1130  MiReleasePfnLock(OldIrql);
1131  MiZeroPhysicalPage(WsListIndex);
1132  }
1133  else
1134  {
1135  /* Release the PFN lock */
1136  MiReleasePfnLock(OldIrql);
1137  }
1138 
1139  /* Switch to phase 1 initialization */
1140  ASSERT(Process->AddressSpaceInitialized == 0);
1141  Process->AddressSpaceInitialized = 1;
1142 
1143  /* Set the base directory pointers */
1144  Process->WorkingSetPage = WsListIndex;
1145  DirectoryTableBase[0] = PdeIndex << PAGE_SHIFT;
1146  DirectoryTableBase[1] = HyperIndex << PAGE_SHIFT;
1147 
1148  /* Make sure we don't already have a page directory setup */
1149  ASSERT(Process->Pcb.DirectoryTableBase[0] == 0);
1150 
1151  /* Get a PTE to map hyperspace */
1152  PointerPte = MiReserveSystemPtes(1, SystemPteSpace);
1153  ASSERT(PointerPte != NULL);
1154 
1155  /* Build it */
1156  MI_MAKE_HARDWARE_PTE_KERNEL(&PdePte,
1157  PointerPte,
1158  MM_READWRITE,
1159  HyperIndex);
1160 
1161  /* Set it dirty and map it */
1162  MI_MAKE_DIRTY_PAGE(&PdePte);
1163  MI_WRITE_VALID_PTE(PointerPte, PdePte);
1164 
1165  /* Now get hyperspace's page table */
1166  HyperTable = MiPteToAddress(PointerPte);
1167 
1168  /* Now write the PTE/PDE entry for the working set list index itself */
1169  TempPte = ValidKernelPteLocal;
1170  TempPte.u.Hard.PageFrameNumber = WsListIndex;
1171  PdeOffset = MiAddressToPteOffset(MmWorkingSetList);
1172  HyperTable[PdeOffset] = TempPte;
1173 
1174  /* Let go of the system PTE */
1175  MiReleaseSystemPtes(PointerPte, 1, SystemPteSpace);
1176 
1177  /* Save the PTE address of the page directory itself */
1178  Pfn1 = MiGetPfnEntry(PdeIndex);
1179  Pfn1->PteAddress = (PMMPTE)PDE_BASE;
1180 
1181  /* Insert us into the Mm process list */
1182  OldIrql = MiAcquireExpansionLock();
1183  InsertTailList(&MmProcessList, &Process->MmProcessLinks);
1184  MiReleaseExpansionLock(OldIrql);
1185 
1186  /* Get a PTE to map the page directory */
1187  PointerPte = MiReserveSystemPtes(1, SystemPteSpace);
1188  ASSERT(PointerPte != NULL);
1189 
1190  /* Build it */
1191  MI_MAKE_HARDWARE_PTE_KERNEL(&PdePte,
1192  PointerPte,
1193  MM_READWRITE,
1194  PdeIndex);
1195 
1196  /* Set it dirty and map it */
1197  MI_MAKE_DIRTY_PAGE(&PdePte);
1198  MI_WRITE_VALID_PTE(PointerPte, PdePte);
1199 
1200  /* Now get the page directory (which we'll double map, so call it a page table */
1201  SystemTable = MiPteToAddress(PointerPte);
1202 
1203  /* Copy all the kernel mappings */
1204  PdeOffset = MiGetPdeOffset(MmSystemRangeStart);
1205  RtlCopyMemory(&SystemTable[PdeOffset],
1206  MiAddressToPde(MmSystemRangeStart),
1207  PAGE_SIZE - PdeOffset * sizeof(MMPTE));
1208 
1209  /* Now write the PTE/PDE entry for hyperspace itself */
1210  TempPte = ValidKernelPteLocal;
1211  TempPte.u.Hard.PageFrameNumber = HyperIndex;
1212  PdeOffset = MiGetPdeOffset(HYPER_SPACE);
1213  SystemTable[PdeOffset] = TempPte;
1214 
1215  /* Sanity check */
1216  PdeOffset++;
1217  ASSERT(MiGetPdeOffset(MmHyperSpaceEnd) >= PdeOffset);
1218 
1219  /* Now do the x86 trick of making the PDE a page table itself */
1220  PdeOffset = MiGetPdeOffset(PTE_BASE);
1221  TempPte.u.Hard.PageFrameNumber = PdeIndex;
1222  SystemTable[PdeOffset] = TempPte;
1223 
1224  /* Let go of the system PTE */
1225  MiReleaseSystemPtes(PointerPte, 1, SystemPteSpace);
1226 
1227  /* Add the process to the session */
1228  MiSessionAddProcess(Process);
1229  return TRUE;
1230 }
1231 #endif
1232 
1233 VOID
1234 NTAPI
1235 MmCleanProcessAddressSpace(IN PEPROCESS Process)
1236 {
1237  PMMVAD Vad;
1238  PMM_AVL_TABLE VadTree;
1239  PETHREAD Thread = PsGetCurrentThread();
1240 
1241  /* Only support this */
1242  ASSERT(Process->AddressSpaceInitialized == 2);
1243 
1244  /* Remove from the session */
1245  MiSessionRemoveProcess();
1246 
1247  /* Lock the process address space from changes */
1248  MmLockAddressSpace(&Process->Vm);
1249  MiLockProcessWorkingSetUnsafe(Process, Thread);
1250 
1251  /* VM is deleted now */
1252  Process->VmDeleted = TRUE;
1253  MiUnlockProcessWorkingSetUnsafe(Process, Thread);
1254 
1255  /* Enumerate the VADs */
1256  VadTree = &Process->VadRoot;
1257  while (VadTree->NumberGenericTableElements)
1258  {
1259  /* Grab the current VAD */
1260  Vad = (PMMVAD)VadTree->BalancedRoot.RightChild;
1261 
1262  /* Check for old-style memory areas */
1263  if (Vad->u.VadFlags.Spare == 1)
1264  {
1265  /* Let RosMm handle this */
1266  MiRosCleanupMemoryArea(Process, Vad);
1267  continue;
1268  }
1269 
1270  /* Lock the working set */
1271  MiLockProcessWorkingSetUnsafe(Process, Thread);
1272 
1273  /* Remove this VAD from the tree */
1274  ASSERT(VadTree->NumberGenericTableElements >= 1);
1275  MiRemoveNode((PMMADDRESS_NODE)Vad, VadTree);
1276 
1277  /* Only regular VADs supported for now */
1278  ASSERT(Vad->u.VadFlags.VadType == VadNone);
1279 
1280  /* Check if this is a section VAD */
1281  if (!(Vad->u.VadFlags.PrivateMemory) && (Vad->ControlArea))
1282  {
1283  /* Remove the view */
1284  MiRemoveMappedView(Process, Vad);
1285  }
1286  else
1287  {
1288  /* Delete the addresses */
1289  MiDeleteVirtualAddresses(Vad->StartingVpn << PAGE_SHIFT,
1290  (Vad->EndingVpn << PAGE_SHIFT) | (PAGE_SIZE - 1),
1291  Vad);
1292 
1293  /* Release the working set */
1294  MiUnlockProcessWorkingSetUnsafe(Process, Thread);
1295  }
1296 
1297  /* Skip ARM3 fake VADs, they'll be freed by MmDeleteProcessAddresSpace */
1298  if (Vad->u.VadFlags.Spare == 1)
1299  {
1300  /* Set a flag so MmDeleteMemoryArea knows to free, but not to remove */
1301  Vad->u.VadFlags.Spare = 2;
1302  continue;
1303  }
1304 
1305  /* Free the VAD memory */
1306  ExFreePool(Vad);
1307  }
1308 
1309  /* Lock the working set */
1310  MiLockProcessWorkingSetUnsafe(Process, Thread);
1311  ASSERT(Process->CloneRoot == NULL);
1312  ASSERT(Process->PhysicalVadRoot == NULL);
1313 
1314  /* Delete the shared user data section */
1315  MiDeleteVirtualAddresses(USER_SHARED_DATA, USER_SHARED_DATA, NULL);
1316 
1317  /* Release the working set */
1318  MiUnlockProcessWorkingSetUnsafe(Process, Thread);
1319 
1320  /* Release the address space */
1321  MmUnlockAddressSpace(&Process->Vm);
1322 }
1323 
1324 VOID
1325 NTAPI
1326 MmDeleteProcessAddressSpace2(IN PEPROCESS Process)
1327 {
1328  PMMPFN Pfn1, Pfn2;
1329  KIRQL OldIrql;
1330  PFN_NUMBER PageFrameIndex;
1331 
1332  //ASSERT(Process->CommitCharge == 0);
1333 
1334  /* Acquire the PFN lock */
1335  OldIrql = MiAcquirePfnLock();
1336 
1337  /* Check for fully initialized process */
1338  if (Process->AddressSpaceInitialized == 2)
1339  {
1340  /* Map the working set page and its page table */
1341  Pfn1 = MiGetPfnEntry(Process->WorkingSetPage);
1342  Pfn2 = MiGetPfnEntry(Pfn1->u4.PteFrame);
1343 
1344  /* Nuke it */
1345  MI_SET_PFN_DELETED(Pfn1);
1346  MiDecrementShareCount(Pfn2, Pfn1->u4.PteFrame);
1347  MiDecrementShareCount(Pfn1, Process->WorkingSetPage);
1348  ASSERT((Pfn1->u3.e2.ReferenceCount == 0) || (Pfn1->u3.e1.WriteInProgress));
1349  MiReleaseSystemPtes(MiAddressToPte(Process->Vm.VmWorkingSetList), 1, SystemPteSpace);
1350 
1351  /* Now map hyperspace and its page table */
1352  PageFrameIndex = Process->Pcb.DirectoryTableBase[1] >> PAGE_SHIFT;
1353  Pfn1 = MiGetPfnEntry(PageFrameIndex);
1354  Pfn2 = MiGetPfnEntry(Pfn1->u4.PteFrame);
1355 
1356  /* Nuke it */
1357  MI_SET_PFN_DELETED(Pfn1);
1358  MiDecrementShareCount(Pfn2, Pfn1->u4.PteFrame);
1359  MiDecrementShareCount(Pfn1, PageFrameIndex);
1360  ASSERT((Pfn1->u3.e2.ReferenceCount == 0) || (Pfn1->u3.e1.WriteInProgress));
1361 
1362  /* Finally, nuke the PDE itself */
1363  PageFrameIndex = Process->Pcb.DirectoryTableBase[0] >> PAGE_SHIFT;
1364  Pfn1 = MiGetPfnEntry(PageFrameIndex);
1365  MI_SET_PFN_DELETED(Pfn1);
1366  MiDecrementShareCount(Pfn1, PageFrameIndex);
1367  MiDecrementShareCount(Pfn1, PageFrameIndex);
1368 
1369  /* Page table is now dead. Bye bye... */
1370  ASSERT((Pfn1->u3.e2.ReferenceCount == 0) || (Pfn1->u3.e1.WriteInProgress));
1371  }
1372  else
1373  {
1374  /* A partly-initialized process should never exit through here */
1375  ASSERT(FALSE);
1376  }
1377 
1378  /* Release the PFN lock */
1379  MiReleasePfnLock(OldIrql);
1380 
1381  /* Drop a reference on the session */
1382  if (Process->Session) MiReleaseProcessReferenceToSessionDataPage(Process->Session);
1383 
1384  /* Clear out the PDE pages */
1385  Process->Pcb.DirectoryTableBase[0] = 0;
1386  Process->Pcb.DirectoryTableBase[1] = 0;
1387 }
1388 
1389 
1390 /* SYSTEM CALLS ***************************************************************/
1391 
1392 NTSTATUS
1393 NTAPI
1394 NtAllocateUserPhysicalPages(IN HANDLE ProcessHandle,
1395  IN OUT PULONG_PTR NumberOfPages,
1396  IN OUT PULONG_PTR UserPfnArray)
1397 {
1398  UNIMPLEMENTED;
1399  return STATUS_NOT_IMPLEMENTED;
1400 }
1401 
1402 NTSTATUS
1403 NTAPI
1404 NtMapUserPhysicalPages(IN PVOID VirtualAddresses,
1405  IN ULONG_PTR NumberOfPages,
1406  IN OUT PULONG_PTR UserPfnArray)
1407 {
1408  UNIMPLEMENTED;
1409  return STATUS_NOT_IMPLEMENTED;
1410 }
1411 
1412 NTSTATUS
1413 NTAPI
1414 NtMapUserPhysicalPagesScatter(IN PVOID *VirtualAddresses,
1415  IN ULONG_PTR NumberOfPages,
1416  IN OUT PULONG_PTR UserPfnArray)
1417 {
1418  UNIMPLEMENTED;
1419  return STATUS_NOT_IMPLEMENTED;
1420 }
1421 
1422 NTSTATUS
1423 NTAPI
1424 NtFreeUserPhysicalPages(IN HANDLE ProcessHandle,
1425  IN OUT PULONG_PTR NumberOfPages,
1426  IN OUT PULONG_PTR UserPfnArray)
1427 {
1428  UNIMPLEMENTED;
1429  return STATUS_NOT_IMPLEMENTED;
1430 }
1431 
1432 /* EOF */
SectionObject
_Must_inspect_result_ _Outptr_ PVOID * SectionObject
Definition: fsrtlfuncs.h:860
_MMPTE::u
union _MMPTE::@2260 u
_MM_AVL_TABLE
Definition: mmtypes.h:664
MI_MAKE_SOFTWARE_PTE
#define MI_MAKE_SOFTWARE_PTE(p, x)
Definition: miarm.h:185
PCHAR
signed char * PCHAR
Definition: retypes.h:7
RtlRandom
NTSYSAPI ULONG NTAPI RtlRandom(_Inout_ PULONG Seed)
_PEB::ImageSubsystemMajorVersion
ULONG ImageSubsystemMajorVersion
Definition: ntddk_ex.h:305
MiInitializePfn
VOID NTAPI MiInitializePfn(IN PFN_NUMBER PageFrameIndex, IN PMMPTE PointerPte, IN BOOLEAN Modified)
Definition: pfnlist.c:969
PAGE_SHIFT
#define PAGE_SHIFT
Definition: env_spec_w32.h:45
IN
#define IN
Definition: typedefs.h:39
_IMAGE_OPTIONAL_HEADER::Win32VersionValue
DWORD Win32VersionValue
Definition: ntddk_ex.h:166
_KTHREAD
Definition: ketypes.h:1549
MmCreateKernelStack
PVOID NTAPI MmCreateKernelStack(IN BOOLEAN GuiStack, IN UCHAR Node)
Definition: procsup.c:258
VER_PLATFORM_WIN32_NT
#define VER_PLATFORM_WIN32_NT
Definition: rtltypes.h:236
MmCleanProcessAddressSpace
VOID NTAPI MmCleanProcessAddressSpace(IN PEPROCESS Process)
Definition: procsup.c:1235
MmHeapDeCommitTotalFreeThreshold
SIZE_T MmHeapDeCommitTotalFreeThreshold
Definition: mminit.c:368
TRUE
#define TRUE
Definition: types.h:120
RtlCopyMemory
NTSYSAPI VOID NTAPI RtlCopyMemory(VOID UNALIGNED *Destination, CONST VOID UNALIGNED *Source, ULONG Length)
PKEVENT
struct _KEVENT * PKEVENT
MiSessionRemoveProcess
VOID NTAPI MiSessionRemoveProcess(VOID)
Definition: session.c:396
Peb
PPEB Peb
Definition: dllmain.c:27
_MMVAD_FLAGS2::ReadOnly
ULONG ReadOnly
Definition: mmtypes.h:714
MiUnlockProcessWorkingSetUnsafe
FORCEINLINE VOID MiUnlockProcessWorkingSetUnsafe(IN PEPROCESS Process, IN PETHREAD Thread)
Definition: miarm.h:1205
_MMWSL::HashTableStart
PVOID HashTableStart
Definition: mmtypes.h:869
MiAddressToPde
#define MiAddressToPde(x)
Definition: mmx86.c:20
MiAcquireExpansionLock
FORCEINLINE KIRQL MiAcquireExpansionLock(VOID)
Definition: miarm.h:1376
_IMAGE_OPTIONAL_HEADER::MinorSubsystemVersion
WORD MinorSubsystemVersion
Definition: ntddk_ex.h:165
PsGetCurrentThread
#define PsGetCurrentThread()
Definition: env_spec_w32.h:81
_PEB::ImageProcessAffinityMask
ULONG ImageProcessAffinityMask
Definition: ntddk_ex.h:307
STATUS_NOT_IMPLEMENTED
#define STATUS_NOT_IMPLEMENTED
Definition: ntstatus.h:225
KeAcquireGuardedMutex
VOID FASTCALL KeAcquireGuardedMutex(IN PKGUARDED_MUTEX GuardedMutex)
Definition: gmutex.c:42
_PEB::OSPlatformId
ULONG OSPlatformId
Definition: ntddk_ex.h:303
_MMVAD_LONG::Parent
PMMVAD Parent
Definition: mmtypes.h:758
MiReleaseProcessReferenceToSessionDataPage
VOID NTAPI MiReleaseProcessReferenceToSessionDataPage(IN PMM_SESSION_SPACE SessionGlobal)
Definition: session.c:210
PFN_COUNT
ULONG PFN_COUNT
Definition: mmtypes.h:102
_MMVAD_FLAGS2::OneSecured
ULONG OneSecured
Definition: mmtypes.h:712
_MMVAD
Definition: mmtypes.h:724
MiReserveSystemPtes
PMMPTE NTAPI MiReserveSystemPtes(IN ULONG NumberOfPtes, IN MMSYSTEM_PTE_POOL_TYPE SystemPtePoolType)
Definition: syspte.c:246
_MMWSL::FirstDynamic
ULONG FirstDynamic
Definition: mmtypes.h:860
MmUnlockAddressSpace
FORCEINLINE VOID MmUnlockAddressSpace(PMMSUPPORT AddressSpace)
Definition: mm.h:1431
_MMVAD_LONG::VadFlags
MMVAD_FLAGS VadFlags
Definition: mmtypes.h:767
_MMVAD_FLAGS::CommitCharge
ULONG_PTR CommitCharge
Definition: mmtypes.h:695
NTSTATUS
LONG NTSTATUS
Definition: precomp.h:26
MmInitializeHandBuiltProcess2
INIT_FUNCTION NTSTATUS NTAPI MmInitializeHandBuiltProcess2(IN PEPROCESS Process)
Definition: procsup.c:1058
_MMWSL::HighestPermittedHashAddress
PVOID HighestPermittedHashAddress
Definition: mmtypes.h:870
_MMPFN::u4
union _MMPFN::@1756 u4
_MM_AVL_TABLE::NumberGenericTableElements
ULONG_PTR NumberGenericTableElements
Definition: mmtypes.h:672
MI_GET_NEXT_COLOR
#define MI_GET_NEXT_COLOR()
Definition: miarm.h:238
NtMapUserPhysicalPagesScatter
NTSTATUS NTAPI NtMapUserPhysicalPagesScatter(IN PVOID *VirtualAddresses, IN ULONG_PTR NumberOfPages, IN OUT PULONG_PTR UserPfnArray)
Definition: procsup.c:1414
_IMAGE_OPTIONAL_HEADER::MajorSubsystemVersion
WORD MajorSubsystemVersion
Definition: ntddk_ex.h:164
MM_NOACCESS
#define MM_NOACCESS
Definition: miarm.h:61
MiAcquirePfnLock
FORCEINLINE KIRQL MiAcquirePfnLock(VOID)
Definition: mm.h:901
_PEB::ImageBaseAddress
PVOID ImageBaseAddress
Definition: ntddk_ex.h:245
_MMADDRESS_NODE
Definition: mmtypes.h:648
_OBJECT_NAME_INFORMATION
Definition: nt_native.h:1269
_PEB::BeingDebugged
BYTE BeingDebugged
Definition: btrfs_drv.h:1886
NtFreeUserPhysicalPages
NTSTATUS NTAPI NtFreeUserPhysicalPages(IN HANDLE ProcessHandle, IN OUT PULONG_PTR NumberOfPages, IN OUT PULONG_PTR UserPfnArray)
Definition: procsup.c:1424
_MMVAD_LONG::ControlArea
PCONTROL_AREA ControlArea
Definition: mmtypes.h:769
_MMVAD_FLAGS::Protection
ULONG_PTR Protection
Definition: mmtypes.h:700
_MMVAD_FLAGS2::LongVad
ULONG LongVad
Definition: mmtypes.h:715
_EPROCESS
Definition: pstypes.h:1191
MiZeroPhysicalPage
VOID NTAPI MiZeroPhysicalPage(IN PFN_NUMBER PageFrameIndex)
Definition: pfnlist.c:122
PWCHAR
uint16_t * PWCHAR
Definition: typedefs.h:55
InsertTailList
#define InsertTailList(ListHead, Entry)
Definition: env_spec_w32.h:1003
KERNEL_LARGE_STACK_COMMIT
#define KERNEL_LARGE_STACK_COMMIT
PsDefaultThreadLocaleId
LCID PsDefaultThreadLocaleId
Definition: locale.c:25
_MMVAD_LONG::LongFlags
ULONG_PTR LongFlags
Definition: mmtypes.h:766
MmMinimumStackCommitInBytes
SIZE_T MmMinimumStackCommitInBytes
Definition: mminit.c:370
MEM_COMMIT
#define MEM_COMMIT
Definition: nt_native.h:1313
MiRosCleanupMemoryArea
VOID NTAPI MiRosCleanupMemoryArea(PEPROCESS Process, PMMVAD Vad)
Definition: marea.c:522
_MMVAD_FLAGS::NoChange
ULONG_PTR NoChange
Definition: mmtypes.h:697
MiGetPdeOffset
#define MiGetPdeOffset(x)
Definition: mm.h:188
MmLargeStackSize
ULONG MmLargeStackSize
Definition: mminit.c:262
_MMVAD::VadFlags
MMVAD_FLAGS VadFlags
Definition: mmtypes.h:738
NtMajorVersion
ULONG NtMajorVersion
Definition: init.c:42
MiReleasePfnLock
FORCEINLINE VOID MiReleasePfnLock(_In_ KIRQL OldIrql)
Definition: mm.h:908
MmDeadStackSListHead
SLIST_HEADER MmDeadStackSListHead
Definition: procsup.c:23
_IMAGE_NT_HEADERS::OptionalHeader
IMAGE_OPTIONAL_HEADER32 OptionalHeader
Definition: ntddk_ex.h:184
InterlockedPopEntrySList
PSLIST_ENTRY WINAPI InterlockedPopEntrySList(PSLIST_HEADER ListHead)
Definition: interlocked.c:55
Color
struct Color Color
MmCreatePeb
NTSTATUS NTAPI MmCreatePeb(IN PEPROCESS Process, IN PINITIAL_PEB InitialPeb, OUT PPEB *BasePeb)
Definition: procsup.c:500
_MM_AVL_TABLE::BalancedRoot
MMADDRESS_NODE BalancedRoot
Definition: mmtypes.h:666
_SEH2_TRY
_SEH2_TRY
Definition: create.c:4250
ULONG_PTR
uint32_t ULONG_PTR
Definition: typedefs.h:64
_PEB::NtGlobalFlag
ULONG NtGlobalFlag
Definition: ntddk_ex.h:270
_IMAGE_OPTIONAL_HEADER::Subsystem
WORD Subsystem
Definition: ntddk_ex.h:170
KIRQL
UCHAR KIRQL
Definition: env_spec_w32.h:591
_MMPFN::e1
MMPFNENTRY e1
Definition: mm.h:329
MI_MAKE_DIRTY_PAGE
#define MI_MAKE_DIRTY_PAGE(x)
Definition: mm.h:98
_MMVAD::EndingVpn
ULONG_PTR EndingVpn
Definition: mmtypes.h:734
MmCreateTeb
NTSTATUS NTAPI MmCreateTeb(IN PEPROCESS Process, IN PCLIENT_ID ClientId, IN PINITIAL_TEB InitialTeb, OUT PTEB *BaseTeb)
Definition: procsup.c:740
Flags
_Must_inspect_result_ _In_ ULONG Flags
Definition: wsk.h:170
_PEB::Mutant
HANDLE Mutant
Definition: ntddk_ex.h:243
i
GLsizei GLenum const GLvoid GLsizei GLenum GLbyte GLbyte GLbyte GLdouble GLdouble GLdouble GLfloat GLfloat GLfloat GLint GLint GLint GLshort GLshort GLshort GLubyte GLubyte GLubyte GLuint GLuint GLuint GLushort GLushort GLushort GLbyte GLbyte GLbyte GLbyte GLdouble GLdouble GLdouble GLdouble GLfloat GLfloat GLfloat GLfloat GLint GLint GLint GLint GLshort GLshort GLshort GLshort GLubyte GLubyte GLubyte GLubyte GLuint GLuint GLuint GLuint GLushort GLushort GLushort GLushort GLboolean const GLdouble const GLfloat const GLint const GLshort const GLbyte const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLdouble const GLfloat const GLfloat const GLint const GLint const GLshort const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort GLenum GLenum GLenum GLfloat GLenum GLint GLenum GLenum GLenum GLfloat GLenum GLenum GLint GLenum GLfloat GLenum GLint GLint GLushort GLenum GLenum GLfloat GLenum GLenum GLint GLfloat const GLubyte GLenum GLenum GLenum const GLfloat GLenum GLenum const GLint GLenum GLint GLint GLsizei GLsizei GLint GLenum GLenum const GLvoid GLenum GLenum const GLfloat GLenum GLenum const GLint GLenum GLenum const GLdouble GLenum GLenum const GLfloat GLenum GLenum const GLint GLsizei GLuint GLfloat GLuint GLbitfield GLfloat GLint GLuint GLboolean GLenum GLfloat GLenum GLbitfield GLenum GLfloat GLfloat GLint GLint const GLfloat GLenum GLfloat GLfloat GLint GLint GLfloat GLfloat GLint GLint const GLfloat GLint GLfloat GLfloat GLint GLfloat GLfloat GLint GLfloat GLfloat const GLdouble const GLfloat const GLdouble const GLfloat GLint i
Definition: glfuncs.h:248
_ROS_SECTION_OBJECT
Definition: mm.h:192
MiAddressToPte
#define MiAddressToPte(x)
Definition: mmx86.c:19
MmGrowKernelStack
NTSTATUS NTAPI MmGrowKernelStack(IN PVOID StackPointer)
Definition: procsup.c:459
PFN_NUMBER
ULONG PFN_NUMBER
Definition: ke.h:8
NTAPI
NTSTATUS(* NTAPI)(IN PFILE_FULL_EA_INFORMATION EaBuffer, IN ULONG EaLength, OUT PULONG ErrorOffset)
Definition: IoEaTest.cpp:117
MI_WRITE_VALID_PTE
FORCEINLINE VOID MI_WRITE_VALID_PTE(IN PMMPTE PointerPte, IN MMPTE TempPte)
Definition: miarm.h:942
ANSI_NULL
#define ANSI_NULL
ViewShare
Definition: nt_native.h:1278
MmCriticalSectionTimeout
LARGE_INTEGER MmCriticalSectionTimeout
Definition: mminit.c:388
PDE_BASE
#define PDE_BASE
Definition: winldr.c:21
OBJ_NAME_PATH_SEPARATOR
#define OBJ_NAME_PATH_SEPARATOR
Definition: arcname_tests.c:25
MmProcessColorSeed
ULONG MmProcessColorSeed
Definition: procsup.c:20
_MMPFN::Event
PKEVENT Event
Definition: mm.h:311
_IMAGE_NT_HEADERS
Definition: ntddk_ex.h:181
MI_SET_PROCESS2
#define MI_SET_PROCESS2(x)
Definition: mm.h:254
MmMaximumDeadKernelStacks
ULONG MmMaximumDeadKernelStacks
Definition: procsup.c:22
MmDeleteKernelStack
VOID NTAPI MmDeleteKernelStack(IN PVOID StackBase, IN BOOLEAN GuiStack)
Definition: procsup.c:169
USER_SHARED_DATA
#define USER_SHARED_DATA
Definition: pstypes.h:51
PsGetCurrentProcess
#define PsGetCurrentProcess
Definition: psfuncs.h:17
_MMVAD_LONG::LongFlags2
ULONG LongFlags2
Definition: mmtypes.h:774
EXCEPTION_EXECUTE_HANDLER
#define EXCEPTION_EXECUTE_HANDLER
Definition: excpt.h:85
KeInitializeSpinLock
FORCEINLINE VOID KeInitializeSpinLock(_Out_ PKSPIN_LOCK SpinLock)
Definition: kefuncs.h:238
MiRemoveZeroPageSafe
FORCEINLINE PFN_NUMBER MiRemoveZeroPageSafe(IN ULONG Color)
Definition: miarm.h:2306
BOOLEAN
unsigned char BOOLEAN
Definition: ProcessorBind.h:185
NULL
smooth NULL
Definition: ftsmooth.c:416
MiLocateAddress
PMMVAD NTAPI MiLocateAddress(IN PVOID VirtualAddress)
Definition: vadnode.c:48
DPRINT
void DPRINT(...)
Definition: polytest.cpp:61
MiDecrementShareCount
VOID NTAPI MiDecrementShareCount(IN PMMPFN Pfn1, IN PFN_NUMBER PageFrameIndex)
Definition: pfnlist.c:1133
_ETHREAD
Definition: pstypes.h:1032
_FileName
Definition: filecomp.c:347
_MMWSL::NextSlot
ULONG NextSlot
Definition: mmtypes.h:862
MI_SET_USAGE
#define MI_SET_USAGE(x)
Definition: mm.h:253
MmMapViewOfSection
NTSTATUS NTAPI MmMapViewOfSection(IN PVOID SectionObject, IN PEPROCESS Process, IN OUT PVOID *BaseAddress, IN ULONG_PTR ZeroBits, IN SIZE_T CommitSize, IN OUT PLARGE_INTEGER SectionOffset OPTIONAL, IN OUT PSIZE_T ViewSize, IN SECTION_INHERIT InheritDisposition, IN ULONG AllocationType, IN ULONG Protect)
Definition: section.c:4502
PVOID
void * PVOID
Definition: retypes.h:9
MiReleaseSystemPtes
VOID NTAPI MiReleaseSystemPtes(IN PMMPTE StartingPte, IN ULONG NumberOfPtes, IN MMSYSTEM_PTE_POOL_TYPE SystemPtePoolType)
Definition: syspte.c:275
_MMVAD::StartingVpn
ULONG_PTR StartingVpn
Definition: mmtypes.h:733
_MMADDRESS_NODE::StartingVpn
ULONG_PTR StartingVpn
Definition: mmtypes.h:657
MiInitializeWorkingSetList
VOID NTAPI MiInitializeWorkingSetList(IN PEPROCESS CurrentProcess)
Definition: procsup.c:845
NtAllocateUserPhysicalPages
NTSTATUS NTAPI NtAllocateUserPhysicalPages(IN HANDLE ProcessHandle, IN OUT PULONG_PTR NumberOfPages, IN OUT PULONG_PTR UserPfnArray)
Definition: procsup.c:1394
_IMAGE_NT_HEADERS::FileHeader
IMAGE_FILE_HEADER FileHeader
Definition: ntddk_ex.h:183
KeQueryTickCount
VOID NTAPI KeQueryTickCount(IN PLARGE_INTEGER TickCount)
Definition: clock.c:165
ULL
#define ULL(a, b)
Definition: format_msg.c:27
_PEB::HeapSegmentCommit
ULONG HeapSegmentCommit
Definition: ntddk_ex.h:276
_MMVAD::VadFlags2
MMVAD_FLAGS2 VadFlags2
Definition: mmtypes.h:746
SectionOffset
_In_ HANDLE _Outptr_result_bytebuffer_ ViewSize PVOID _In_ ULONG_PTR _In_ SIZE_T _Inout_opt_ PLARGE_INTEGER SectionOffset
Definition: mmfuncs.h:404
_MMVAD_FLAGS::MemCommit
ULONG_PTR MemCommit
Definition: mmtypes.h:699
_MMPFNENTRY::WriteInProgress
USHORT WriteInProgress
Definition: mm.h:294
PCHAR
#define PCHAR
Definition: match.c:90
_MMVAD_FLAGS2::MultipleSecured
ULONG MultipleSecured
Definition: mmtypes.h:713
_IMAGE_FILE_HEADER::Characteristics
WORD Characteristics
Definition: ntddk_ex.h:128
_MMADDRESS_NODE::EndingVpn
ULONG_PTR EndingVpn
Definition: mmtypes.h:658
STATUS_INVALID_IMAGE_PROTECT
#define STATUS_INVALID_IMAGE_PROTECT
Definition: ntstatus.h:526
MiAddressToPxe
FORCEINLINE PMMPTE MiAddressToPxe(PVOID Address)
Definition: mm.h:164
MiLockProcessWorkingSetUnsafe
FORCEINLINE VOID MiLockProcessWorkingSetUnsafe(IN PEPROCESS Process, IN PETHREAD Thread)
Definition: miarm.h:1135
BaseAddress
_In_ HANDLE _Outptr_result_bytebuffer_ ViewSize PVOID * BaseAddress
Definition: mmfuncs.h:404
CurrentProcess
ULONG CurrentProcess
Definition: shell.c:125
_PEB::HeapSegmentReserve
ULONG HeapSegmentReserve
Definition: ntddk_ex.h:275
ClientId
_Out_ PCLIENT_ID ClientId
Definition: kefuncs.h:1163
_MMVAD_LONG
Definition: mmtypes.h:753
_MMVAD_FLAGS::PrivateMemory
ULONG_PTR PrivateMemory
Definition: mmtypes.h:702
MiInsertVadEx
NTSTATUS NTAPI MiInsertVadEx(_Inout_ PMMVAD Vad, _In_ ULONG_PTR *BaseAddress, _In_ SIZE_T ViewSize, _In_ ULONG_PTR HighestAddress, _In_ ULONG_PTR Alignment, _In_ ULONG AllocationType)
Definition: vadnode.c:204
IMAGE_LOAD_CONFIG_DIRECTORY32
Definition: ntimage.h:105
_SEH2_YIELD
#define _SEH2_YIELD(STMT_)
Definition: pseh2_64.h:8
SeInitializeProcessAuditName
NTSTATUS NTAPI SeInitializeProcessAuditName(IN PFILE_OBJECT FileObject, IN BOOLEAN DoAudit, OUT POBJECT_NAME_INFORMATION *AuditInfo)
Definition: audit.c:47
if
if(!(yy_init))
Definition: macro.lex.yy.c:714
_PEB::ProcessHeaps
PVOID * ProcessHeaps
Definition: ntddk_ex.h:288
_PEB::MaximumNumberOfHeaps
ULONG MaximumNumberOfHeaps
Definition: ntddk_ex.h:287
MI_WORKING_SET_LIST
#define MI_WORKING_SET_LIST
Definition: mm.h:51
NT_SUCCESS
#define NT_SUCCESS(StatCode)
Definition: apphelp.c:32
_MMVAD::u
union _MMVAD::@2520 u
MmHeapDeCommitFreeBlockThreshold
SIZE_T MmHeapDeCommitFreeBlockThreshold
Definition: mminit.c:369
_MMWSL::LastInitializedWsle
ULONG LastInitializedWsle
Definition: mmtypes.h:864
ULONGLONG
uint64_t ULONGLONG
Definition: typedefs.h:66
MI_GET_NEXT_PROCESS_COLOR
#define MI_GET_NEXT_PROCESS_COLOR(x)
Definition: miarm.h:239
ValidKernelPteLocal
MMPTE ValidKernelPteLocal
Definition: init.c:33
_MMPTE_HARDWARE::Valid
ULONG64 Valid
Definition: mmtypes.h:150
PMMPTE
struct _MMPTE * PMMPTE
MiCreatePebOrTeb
NTSTATUS NTAPI MiCreatePebOrTeb(IN PEPROCESS Process, IN ULONG Size, OUT PULONG_PTR BaseAddress)
Definition: procsup.c:29
PNT_TIB
struct _NT_TIB * PNT_TIB
ExpNlsSectionPointer
PVOID ExpNlsSectionPointer
Definition: init.c:86
_INITIAL_PEB
Definition: pstypes.h:644
MEMORY_PRIORITY_BACKGROUND
#define MEMORY_PRIORITY_BACKGROUND
Definition: pstypes.h:124
Thread
_In_opt_ PFILE_OBJECT _In_opt_ PETHREAD Thread
Definition: fltkernel.h:2653
NtMinorVersion
ULONG NtMinorVersion
Definition: init.c:43
_MMVAD_LONG::VadFlags2
MMVAD_FLAGS2 VadFlags2
Definition: mmtypes.h:775
Destination
_In_ PUNICODE_STRING _Inout_ PUNICODE_STRING Destination
Definition: rtlfuncs.h:2938
_PEB::CriticalSectionTimeout
LARGE_INTEGER CriticalSectionTimeout
Definition: ntddk_ex.h:274
TempPte
HARDWARE_PTE_ARMV6 TempPte
Definition: winldr.c:76
PSLIST_ENTRY
#define PSLIST_ENTRY
Definition: rtltypes.h:130
ExQueryDepthSList
FORCEINLINE USHORT ExQueryDepthSList(_In_ PSLIST_HEADER SListHead)
Definition: exfuncs.h:153
_INITIAL_TEB
Definition: pstypes.h:674
Length
_In_ ULONG _In_ ULONG _In_ ULONG Length
Definition: ntddpcm.h:101
KERNEL_STACK_SIZE
#define KERNEL_STACK_SIZE
_PEB::MinimumStackCommit
SIZE_T MinimumStackCommit
Definition: winternl.h:358
NtBuildNumber
ULONG NtBuildNumber
Definition: init.c:47
_MMADDRESS_NODE::RightChild
struct _MMADDRESS_NODE * RightChild
Definition: mmtypes.h:656
ASSERT
ASSERT((InvokeOnSuccess||InvokeOnError||InvokeOnCancel) ?(CompletionRoutine !=NULL) :TRUE)
ExAllocatePoolWithTag
#define ExAllocatePoolWithTag(hernya, size, tag)
Definition: env_spec_w32.h:350
BYTES_TO_PAGES
#define BYTES_TO_PAGES(Size)
KeDetachProcess
VOID NTAPI KeDetachProcess(VOID)
Definition: procobj.c:618
UCHAR
unsigned char UCHAR
Definition: xmlstorage.h:181
MmHeapSegmentReserve
SIZE_T MmHeapSegmentReserve
Definition: mminit.c:366
_PEB::OSBuildNumber
ULONG OSBuildNumber
Definition: ntddk_ex.h:302
ProbeForRead
VOID NTAPI ProbeForRead(IN CONST VOID *Address, IN SIZE_T Length, IN ULONG Alignment)
Definition: exintrin.c:102
_PEB::SessionId
ULONG SessionId
Definition: btrfs_drv.h:1896
_MMWSL::Wsle
PMMWSLE Wsle
Definition: mmtypes.h:863
_MMWSL::HashTable
PMMWSLE_HASH HashTable
Definition: mmtypes.h:866
RtlImageDirectoryEntryToData
#define RtlImageDirectoryEntryToData
Definition: compat.h:468
OldIrql
_Requires_lock_held_ Interrupt _Releases_lock_ Interrupt _In_ _IRQL_restores_ KIRQL OldIrql
Definition: kefuncs.h:790
IMAGE_FILE_UP_SYSTEM_ONLY
#define IMAGE_FILE_UP_SYSTEM_ONLY
Definition: pedump.c:170
MM_READWRITE
#define MM_READWRITE
Definition: inbv.c:10
ExpUnicodeCaseTableDataOffset
ULONG ExpUnicodeCaseTableDataOffset
Definition: init.c:83
_MMPFN
Definition: mm.h:305
_LARGE_INTEGER::LowPart
ULONG LowPart
Definition: typedefs.h:105
MmSetMemoryPriorityProcess
NTSTATUS NTAPI MmSetMemoryPriorityProcess(IN PEPROCESS Process, IN UCHAR MemoryPriority)
Definition: procsup.c:469
PAGE_SIZE
#define PAGE_SIZE
Definition: env_spec_w32.h:49
_MMVAD_LONG::u
union _MMVAD_LONG::@2523 u
PTE_BASE
#define PTE_BASE
Definition: mmx86.c:14
InterlockedPushEntrySList
NTKERNELAPI PSLIST_ENTRY FASTCALL InterlockedPushEntrySList(IN PSLIST_HEADER ListHead, IN PSLIST_ENTRY ListEntry)
Definition: interlocked.c:82
_PEB::UnicodeCaseTableData
PVOID UnicodeCaseTableData
Definition: ntddk_ex.h:266
Size
IN PVOID IN PVOID IN USHORT IN USHORT Size
Definition: pci.h:359
MmSystemSize
MM_SYSTEMSIZE MmSystemSize
Definition: mminit.c:326
_64K
#define _64K
Definition: miarm.h:19
MiGetPfnEntry
FORCEINLINE PMMPFN MiGetPfnEntry(IN PFN_NUMBER Pfn)
Definition: mm.h:940
MiRemoveNode
VOID NTAPI MiRemoveNode(IN PMMADDRESS_NODE Node, IN PMM_AVL_TABLE Table)
Definition: vadnode.c:360
MmCreateProcessAddressSpace
BOOLEAN NTAPI MmCreateProcessAddressSpace(IN ULONG MinWs, IN PEPROCESS Dest, IN PULONG_PTR DirectoryTableBase)
KeNumberProcessors
CCHAR KeNumberProcessors
Definition: krnlinit.c:35
_MMPFN::u3
union _MMPFN::@1753 u3
Status
Status
Definition: gdiplustypes.h:24
_MMPTE::Long
ULONG_PTR Long
Definition: mmtypes.h:215
_CLIENT_ID
Definition: compat.h:480
_MMPTE
Definition: mmtypes.h:211
MiDeleteVirtualAddresses
VOID NTAPI MiDeleteVirtualAddresses(IN ULONG_PTR Va, IN ULONG_PTR EndingAddress, IN PMMVAD Vad)
Definition: virtual.c:540
MiRemoveAnyPage
PFN_NUMBER NTAPI MiRemoveAnyPage(IN ULONG Color)
Definition: pfnlist.c:475
ExpOemCodePageDataOffset
ULONG ExpOemCodePageDataOffset
Definition: init.c:82
SIZE_T
ULONG_PTR SIZE_T
Definition: typedefs.h:79
_MMPTE::Hard
MMPTE_HARDWARE Hard
Definition: mmtypes.h:217
_UNICODE_STRING
Definition: env_spec_w32.h:368
_TEB
Definition: compat.h:492
PXE_BASE
#define PXE_BASE
MI_SET_PFN_DELETED
#define MI_SET_PFN_DELETED(x)
Definition: miarm.h:190
FileName
struct _FileName FileName
Definition: fatprocs.h:884
MI_WRITE_INVALID_PTE
FORCEINLINE VOID MI_WRITE_INVALID_PTE(IN PMMPTE PointerPte, IN MMPTE InvalidPte)
Definition: miarm.h:971
IMAGE_DIRECTORY_ENTRY_LOAD_CONFIG
#define IMAGE_DIRECTORY_ENTRY_LOAD_CONFIG
Definition: pedump.c:269
MmNumberOfPhysicalPages
PFN_COUNT MmNumberOfPhysicalPages
Definition: init.c:48
_PEB::OSMinorVersion
ULONG OSMinorVersion
Definition: ntddk_ex.h:301
_SEH2_END
_SEH2_END
Definition: create.c:4424
KeInitializeGuardedMutex
VOID FASTCALL KeInitializeGuardedMutex(OUT PKGUARDED_MUTEX GuardedMutex)
Definition: gmutex.c:31
MmInitializeHandBuiltProcess
INIT_FUNCTION NTSTATUS NTAPI MmInitializeHandBuiltProcess(IN PEPROCESS Process, IN PULONG_PTR DirectoryTableBase)
Definition: procsup.c:1033
EXCEPTION_CHAIN_END
#define EXCEPTION_CHAIN_END
Definition: rtltypes.h:63
_PEB
Definition: btrfs_drv.h:1884
IMAGE_LOAD_CONFIG_DIRECTORY32::ProcessAffinityMask
ULONG ProcessAffinityMask
Definition: ntimage.h:119
NtMapUserPhysicalPages
NTSTATUS NTAPI NtMapUserPhysicalPages(IN PVOID VirtualAddresses, IN ULONG_PTR NumberOfPages, IN OUT PULONG_PTR UserPfnArray)
Definition: procsup.c:1404
ROUND_TO_PAGES
#define ROUND_TO_PAGES(Size)
_MMWSL::HashTableSize
ULONG HashTableSize
Definition: mmtypes.h:867
USHORT
unsigned short USHORT
Definition: pedump.c:61
_MMPFN::PteFrame
ULONG_PTR PteFrame
Definition: mm.h:350
KAFFINITY
ULONG_PTR KAFFINITY
Definition: compat.h:75
_MMWSL::NumberOfImageWaiters
ULONG NumberOfImageWaiters
Definition: mmtypes.h:871
KeAttachProcess
VOID NTAPI KeAttachProcess(IN PKPROCESS Process)
Definition: procobj.c:579
_MMWSL::FirstFree
ULONG FirstFree
Definition: mmtypes.h:859
MmHeapSegmentCommit
SIZE_T MmHeapSegmentCommit
Definition: mminit.c:367
STATUS_NO_MEMORY
#define STATUS_NO_MEMORY
Definition: ntstatus.h:246
_MMPFN::PteAddress
PMMPTE PteAddress
Definition: mm.h:318
_PEB::NumberOfProcessors
ULONG NumberOfProcessors
Definition: ntddk_ex.h:269
PULONG
unsigned int * PULONG
Definition: retypes.h:1
min
#define min(a, b)
Definition: monoChain.cc:55
PAGE_READONLY
#define PAGE_READONLY
Definition: compat.h:127
STATUS_STACK_OVERFLOW
#define STATUS_STACK_OVERFLOW
Definition: ntstatus.h:475
MiReleaseExpansionLock
FORCEINLINE VOID MiReleaseExpansionLock(KIRQL OldIrql)
Definition: miarm.h:1389
MmWorkingSetList
PMMWSL MmWorkingSetList
Definition: procsup.c:21
KeReleaseGuardedMutex
VOID FASTCALL KeReleaseGuardedMutex(IN OUT PKGUARDED_MUTEX GuardedMutex)
Definition: gmutex.c:53
_MMVAD::u2
union _MMVAD::@2521 u2
_LARGE_INTEGER
Definition: typedefs.h:101
DPRINT1
#define DPRINT1
Definition: precomp.h:8
RtlImageNtHeader
#define RtlImageNtHeader
Definition: compat.h:465
_PEB::OemCodePageData
PVOID OemCodePageData
Definition: ntddk_ex.h:265
MM_HIGHEST_VAD_ADDRESS
#define MM_HIGHEST_VAD_ADDRESS
Definition: mm.h:46
Process
_Must_inspect_result_ _In_ PLARGE_INTEGER _In_ PLARGE_INTEGER _In_ ULONG _In_ PFILE_OBJECT _In_ PVOID Process
Definition: fsrtlfuncs.h:219
MmDeleteTeb
VOID NTAPI MmDeleteTeb(IN PEPROCESS Process, IN PTEB Teb)
Definition: procsup.c:107
MiSessionAddProcess
VOID NTAPI MiSessionAddProcess(IN PEPROCESS NewProcess)
Definition: session.c:427
MiGetPfnEntryIndex
FORCEINLINE PFN_NUMBER MiGetPfnEntryIndex(IN PMMPFN Pfn1)
Definition: mm.h:960
BOOLEAN
#define BOOLEAN
Definition: pedump.c:73
OUT
#define OUT
Definition: typedefs.h:40
CmNtCSDVersion
ULONG CmNtCSDVersion
Definition: init.c:56
_MMVAD_FLAGS::Spare
ULONG_PTR Spare
Definition: mmtypes.h:701
ViewSize
_In_ HANDLE _Outptr_result_bytebuffer_ ViewSize PVOID _In_ ULONG_PTR _In_ SIZE_T _Inout_opt_ PLARGE_INTEGER _Inout_ PSIZE_T ViewSize
Definition: mmfuncs.h:404
_MMWSL
Definition: mmtypes.h:857
HYPER_SPACE
#define HYPER_SPACE
Definition: mm.h:14
_MMVAD_LONG::u2
union _MMVAD_LONG::@2524 u2
MmHyperSpaceEnd
PVOID MmHyperSpaceEnd
Definition: init.c:56
ULONG
unsigned int ULONG
Definition: retypes.h:1
_MMVAD_LONG::FirstPrototypePte
PMMPTE FirstPrototypePte
Definition: mmtypes.h:770
UNIMPLEMENTED
#define UNIMPLEMENTED
Definition: debug.h:114
RtlZeroMemory
#define RtlZeroMemory(Destination, Length)
Definition: typedefs.h:261
ULONG_PTR
#define ULONG_PTR
Definition: config.h:101
PULONG_PTR
uint32_t * PULONG_PTR
Definition: typedefs.h:64
MmGetSessionId
ULONG NTAPI MmGetSessionId(IN PEPROCESS Process)
Definition: session.c:180
_MMPFN::e2
struct _MMPFN::@1753::@1759 e2
MmInitializeProcessAddressSpace
NTSTATUS NTAPI MmInitializeProcessAddressSpace(IN PEPROCESS Process, IN PEPROCESS ProcessClone OPTIONAL, IN PVOID Section OPTIONAL, IN OUT PULONG Flags, IN POBJECT_NAME_INFORMATION *AuditName OPTIONAL)
Definition: procsup.c:879
MiRemoveMappedView
VOID NTAPI MiRemoveMappedView(IN PEPROCESS CurrentProcess, IN PMMVAD Vad)
Definition: section.c:780
DemandZeroPte
MMPTE DemandZeroPte
Definition: init.c:37
Source
_In_ UINT _In_ UINT _In_ PNDIS_PACKET Source
Definition: ndis.h:3167
_PEB::HeapDeCommitFreeBlockThreshold
ULONG HeapDeCommitFreeBlockThreshold
Definition: ntddk_ex.h:278
MiAddressToPteOffset
#define MiAddressToPteOffset(x)
Definition: mmx86.c:21
_SEH2_EXCEPT
#define _SEH2_EXCEPT(...)
Definition: pseh2_64.h:6
_SLIST_HEADER
Definition: rtltypes.h:134
_PEB::OSMajorVersion
ULONG OSMajorVersion
Definition: ntddk_ex.h:300
ExFreePoolWithTag
#define ExFreePoolWithTag(_P, _T)
Definition: module.h:1099
_SEH2_GetExceptionCode
#define _SEH2_GetExceptionCode()
Definition: pseh2_64.h:12
MI_MAKE_HARDWARE_PTE_KERNEL
FORCEINLINE VOID MI_MAKE_HARDWARE_PTE_KERNEL(IN PMMPTE NewPte, IN PMMPTE MappingPte, IN ULONG_PTR ProtectionMask, IN PFN_NUMBER PageFrameNumber)
Definition: miarm.h:774
_PEB::InheritedAddressSpace
BOOLEAN InheritedAddressSpace
Definition: ntddk_ex.h:239
PEB
struct _PEB PEB
KeGetCurrentThread
#define KeGetCurrentThread
Definition: hal.h:44
MmGrowKernelStackEx
NTSTATUS NTAPI MmGrowKernelStackEx(IN PVOID StackPointer, IN ULONG GrowSize)
Definition: procsup.c:371
MiPteToAddress
FORCEINLINE PVOID MiPteToAddress(PMMPTE PointerPte)
Definition: mm.h:201
MmProcessList
LIST_ENTRY MmProcessList
Definition: largepag.c:20
MEM_TOP_DOWN
#define MEM_TOP_DOWN
Definition: nt_native.h:1321
ProcessHandle
_In_ HANDLE ProcessHandle
Definition: mmfuncs.h:403
STATUS_SUCCESS
return STATUS_SUCCESS
Definition: btrfs.c:2938
_MMVAD_LONG::u1
union _MMVAD_LONG::@2522 u1
NtGlobalFlag
ULONG NtGlobalFlag
Definition: init.c:51
_MMWSL::LastEntry
ULONG LastEntry
Definition: mmtypes.h:861
ExpAnsiCodePageDataOffset
ULONG ExpAnsiCodePageDataOffset
Definition: init.c:82
MmLockAddressSpace
FORCEINLINE VOID MmLockAddressSpace(PMMSUPPORT AddressSpace)
Definition: mm.h:1424
_PEB::AnsiCodePageData
PVOID AnsiCodePageData
Definition: ntddk_ex.h:264
PMMVAD
struct _MMVAD * PMMVAD
PFN_FROM_PTE
#define PFN_FROM_PTE(v)
Definition: mm.h:92
MmSystemRangeStart
#define MmSystemRangeStart
Definition: mm.h:32
ExFreePool
#define ExFreePool(addr)
Definition: env_spec_w32.h:352
MmDeleteProcessAddressSpace2
VOID NTAPI MmDeleteProcessAddressSpace2(IN PEPROCESS Process)
Definition: procsup.c:1326
MI_MAKE_HARDWARE_PTE
FORCEINLINE VOID MI_MAKE_HARDWARE_PTE(IN PMMPTE NewPte, IN PMMPTE MappingPte, IN ULONG_PTR ProtectionMask, IN PFN_NUMBER PageFrameNumber)
Definition: miarm.h:797
_PEB::ImageSubsystemMinorVersion
ULONG ImageSubsystemMinorVersion
Definition: ntddk_ex.h:306
IMAGE_LOAD_CONFIG_DIRECTORY32::CSDVersion
USHORT CSDVersion
Definition: ntimage.h:120
_HARDWARE_PTE_ARMV6::PageFrameNumber
ULONG PageFrameNumber
Definition: mmtypes.h:109
_PEB::HeapDeCommitTotalFreeThreshold
ULONG HeapDeCommitTotalFreeThreshold
Definition: ntddk_ex.h:277
PAGE_READWRITE
#define PAGE_READWRITE
Definition: nt_native.h:1304
node
Definition: dlist.c:348
_PEB::ImageSubsystem
ULONG ImageSubsystem
Definition: ntddk_ex.h:304
_MMPFN::u1
union _MMPFN::@1751 u1
_MMWSL::VadBitMapHint
ULONG VadBitMapHint
Definition: mmtypes.h:872
OPTIONAL
PULONG MinorVersion OPTIONAL
Definition: CrossNt.h:68