vdmp.h File Reference

#include <ntos.h>
#include <nturtl.h>
#include <vdmntos.h>

Go to the source code of this file.

Defines
#define	VDMTIB_KMODE   0x0001
#define	VDMTIB_PROBE   0x0002
#define	VDMTIB_KPROBE   (VDMTIB_KMODE|VDMTIB_PROBE)
Functions
NTSTATUS	VdmpInitialize (PVDMICAUSERDATA pIcaUserData)
NTSTATUS	VdmpStartExecution (VOID)
VOID	VdmSwapContexts (IN PKTRAP_FRAME TrapFrame, IN PCONTEXT InContext, IN PCONTEXT OutContext)
NTSTATUS	VdmpQueueInterrupt (IN HANDLE ThreadHandle)
NTSTATUS	VdmpDelayInterrupt (PVDMDELAYINTSDATA pdsd)
NTSTATUS	VdmpEnterIcaLock (IN PRTL_CRITICAL_SECTION pIcaLock)
NTSTATUS	VdmpLeaveIcaLock (IN PRTL_CRITICAL_SECTION pIcaLock)
BOOLEAN	VdmpDispatchableIntPending (IN ULONG EFlags)
NTSTATUS	VdmpIsThreadTerminating (HANDLE ThreadId)
BOOLEAN	VdmPrinterStatus (ULONG iPort, ULONG cbInstructionSize, PKTRAP_FRAME TrapFrame)
BOOLEAN	VdmPrinterWriteData (ULONG iPort, ULONG cbInstructionSize, PKTRAP_FRAME TrapFrame)
NTSTATUS	VdmpPrinterDirectIoOpen (PVOID ServiceData)
NTSTATUS	VdmpPrinterDirectIoClose (PVOID ServiceData)
VOID	VdmTraceEvent (USHORT Type, USHORT wData, USHORT lData, PKTRAP_FRAME TrapFrame)
NTSTATUS	VdmpPrinterInitialize (PVOID ServiceData)
NTSTATUS	VdmpGetVdmTib (PVDM_TIB *ppVdmTib, ULONG dwFlags)

---

Define Documentation

#define VDMTIB_KMODE   0x0001

Definition at line 198 of file vdm/i386/vdmp.h. Referenced by NTFastDOSIO(), VdmFlushPrinterWriteData(), VdmpPrinterInitialize(), VdmPrinterStatus(), VdmPrinterWriteData(), and VdmpStartExecution().

#define VDMTIB_KPROBE   (VDMTIB_KMODE|VDMTIB_PROBE)

Definition at line 200 of file vdm/i386/vdmp.h. Referenced by VdmDispatchIRQ13(), VdmDispatchPageFault(), and VdmpQueueIntApcRoutine().

#define VDMTIB_PROBE   0x0002

Definition at line 199 of file vdm/i386/vdmp.h. Referenced by VdmpInitialize().

---

Function Documentation

NTSTATUS VdmpDelayInterrupt (  PVDMDELAYINTSDATA  pdsd  )

Definition at line 1235 of file vdmints.c. References Delay, ExAllocatePoolWithTag, EXCEPTION_EXECUTE_HANDLER, ExFreePool(), FALSE, KeAcquireSpinLock, KeInitializeDpc(), KeInitializeTimer(), KeMaximumIncrement, KeMinimumIncrement, KeReleaseSpinLock(), KernelMode, KeSetTimer(), KeTimeIncrement, NonPagedPool, NT_SUCCESS, NTSTATUS(), NULL, ObDereferenceObject, ObReferenceObject, ObReferenceObjectByHandle(), ObReferenceObjectByPointer(), _EPROCESS::Pcb, ProbeForRead, ProbeForWriteUlong, PsChargePoolQuota(), PsGetCurrentProcess, PsThreadType, Status, TRUE, _EPROCESS::VdmObjects, and VdmpDelayIntDpcRoutine(). Referenced by NtVdmControl(). : Sets a timer to dispatch the delayed interrupt through KeSetTimer. When the timer fires a user mode APC is queued to queue the interrupt. This function uses lazy allocation routines to allocate internal data structures (nonpaged pool) on a per Irq basis, and needs to be notified when specific Irq Lines no longer need Delayed Interrupt services. The caller must own the IcaLock to synchronize access to the Irq lists. WARNING: - Until the Delayed interrupt fires or is cancelled, the specific Irq line will not generate any interrupts. - The APC routine, does not take the HostIca lock, when unblocking the IrqLine. Devices which use delayed Interrupts should not queue ANY additional interrupts for the same IRQ line until the delayed interrupt has fired or been cancelled. Arguments: pdsd.Delay Delay Interval in usecs if Delay is 0xFFFFFFFF then per Irq Line nonpaged data structures are freed. No Timers are set. else the Delay is used as the timer delay. pdsd.DelayIrqLine IrqLine Number pdsd.hThread Thread Handle of CurrentMonitorTeb Return Value: NTSTATUS. --*/ { PVDM_PROCESS_OBJECTS pVdmObjects; PLIST_ENTRY Next; PEPROCESS Process; PDELAYINTIRQ pDelayIntIrq; PETHREAD Thread, MainThread; NTSTATUS Status; KIRQL OldIrql; ULONG IrqLine; ULONG Delay; PULONG pDelayIrq; PULONG pUndelayIrq; LARGE_INTEGER liDelay; BOOLEAN FreeIrqLine, AlreadyInUse; // // Get a pointer to pVdmObjects // Process = PsGetCurrentProcess(); pVdmObjects = Process->VdmObjects; if (Process->Pcb.VdmFlag != TRUE || !pVdmObjects) { return STATUS_INVALID_PARAMETER_1; } ExAcquireFastMutex(&pVdmObjects->DelayIntFastMutex); Status = STATUS_SUCCESS; Thread = MainThread = NULL; FreeIrqLine = TRUE; AlreadyInUse = FALSE; try { // // Probe the parameters // ProbeForRead(pdsd, sizeof(VDMDELAYINTSDATA), sizeof(ULONG)); // // Form a BitMask for the IrqLine Number // IrqLine = 1 << pdsd->DelayIrqLine; if (!IrqLine) { Status = STATUS_INVALID_PARAMETER_2; goto VidEarlyExit; } pDelayIrq = pVdmObjects->pIcaUserData->pDelayIrq; ProbeForWriteUlong(pDelayIrq); pUndelayIrq = pVdmObjects->pIcaUserData->pUndelayIrq; ProbeForWriteUlong(pUndelayIrq); // // Copy out the Delay parameter, and convert hundreths nanosecs // Delay = pdsd->Delay; // // Check to see if we need to reset the timer resolution // if (Delay == 0xFFFFFFFF) { ZwSetTimerResolution(KeMaximumIncrement, FALSE, &Delay); goto VidEarlyExit; } FreeIrqLine = FALSE; // convert delay to hundreths of nanosecs // and ensure min delay of 1 msec // Delay = Delay < 1000 ? 10000 : Delay * 10; // // If the delay time is close to the system's clock rate // then adjust the system's clock rate and if needed // the delay time so that the timer will fire before the // the due time. // if (Delay < 150000) { ULONG ul = Delay >> 1; if (ul < KeTimeIncrement && KeTimeIncrement > KeMinimumIncrement) { ZwSetTimerResolution(ul, TRUE, (PULONG)&liDelay.LowPart); } if (Delay < KeTimeIncrement) { // can't set system clock rate low enuf, so use half delay Delay >>= 1; } else if (Delay < (KeTimeIncrement << 1)) { // Real close to the system clock rate, lower delay // proportionally, to avoid missing clock cycles. Delay -= KeTimeIncrement >> 1; } } // // Reference the Target Thread // Status = ObReferenceObjectByHandle( pdsd->hThread, THREAD_QUERY_INFORMATION, PsThreadType, KeGetPreviousMode(), &Thread, NULL ); if (!NT_SUCCESS(Status)) { Thread = NULL; goto VidEarlyExit; } Status = ObReferenceObjectByPointer( pVdmObjects->MainThread, THREAD_QUERY_INFORMATION, PsThreadType, KernelMode ); if (NT_SUCCESS(Status)) { MainThread = pVdmObjects->MainThread; } else { goto VidEarlyExit; } VidEarlyExit:; } except(EXCEPTION_EXECUTE_HANDLER) { Status = GetExceptionCode(); } if (!NT_SUCCESS(Status)) { ExReleaseFastMutex(&pVdmObjects->DelayIntFastMutex); if (Thread) { ObDereferenceObject(Thread); } if (MainThread) { ObDereferenceObject(MainThread); } return Status; } KeAcquireSpinLock(&pVdmObjects->DelayIntSpinLock, &OldIrql); try { // // Search the DelayedIntList for a matching Irq Line. // Next = pVdmObjects->DelayIntListHead.Flink; while (Next != &pVdmObjects->DelayIntListHead) { pDelayIntIrq = CONTAINING_RECORD(Next, DELAYINTIRQ, DelayIntListEntry); if (pDelayIntIrq->IrqLine == IrqLine) { break; } Next = Next->Flink; } if (Next == &pVdmObjects->DelayIntListHead) { pDelayIntIrq = NULL; } if (!pDelayIntIrq) { if (FreeIrqLine) { goto VidExit; } // // If a DelayIntIrq does not exist for this irql, allocate from nonpaged // pool and initialize it // pDelayIntIrq = ExAllocatePoolWithTag(NonPagedPool, sizeof(DELAYINTIRQ), ' MDV'); if (!pDelayIntIrq) { Status = STATUS_NO_MEMORY; goto VidExit; } try { PsChargePoolQuota(Process, NonPagedPool, sizeof(DELAYINTIRQ)); } except(EXCEPTION_EXECUTE_HANDLER) { Status = GetExceptionCode(); ExFreePool(pDelayIntIrq); goto VidExit; } RtlZeroMemory(pDelayIntIrq, sizeof(DELAYINTIRQ)); pDelayIntIrq->IrqLine = IrqLine; KeInitializeTimer(&pDelayIntIrq->Timer); KeInitializeDpc(&pDelayIntIrq->Dpc, VdmpDelayIntDpcRoutine, Process ); InsertTailList(&pVdmObjects->DelayIntListHead, &pDelayIntIrq->DelayIntListEntry ); } if (Delay == 0xFFFFFFFF) { if (pDelayIntIrq->InUse == VDMDELAY_KTIMER) { pDelayIntIrq->InUse = VDMDELAY_NOTINUSE; pDelayIntIrq = NULL; } } else if (pDelayIntIrq->InUse == VDMDELAY_NOTINUSE) { liDelay = RtlEnlargedIntegerMultiply(Delay, -1); KeSetTimer(&pDelayIntIrq->Timer, liDelay, &pDelayIntIrq->Dpc); ObReferenceObject(Process); } VidExit:; } except(EXCEPTION_EXECUTE_HANDLER) { Status = GetExceptionCode(); } if (pDelayIntIrq && !pDelayIntIrq->InUse) { if (NT_SUCCESS(Status)) { // // Save PETHREAD of Target thread for the dpc routine // the DPC routine will deref the threads. // pDelayIntIrq->InUse = VDMDELAY_KTIMER; pDelayIntIrq->Thread = Thread; Thread = NULL; pDelayIntIrq->MainThread = MainThread; MainThread = NULL; } else { pDelayIntIrq->InUse = VDMDELAY_NOTINUSE; pDelayIntIrq->Thread = NULL; FreeIrqLine = TRUE; } } else { AlreadyInUse = TRUE; } KeReleaseSpinLock(&pVdmObjects->DelayIntSpinLock, OldIrql); try { if (FreeIrqLine) { *pDelayIrq &= ~IrqLine; _asm { mov eax, pUndelayIrq mov ebx, IrqLine lock or [eax], ebx } } else if (!AlreadyInUse) { // TakeIrqLine *pDelayIrq |= IrqLine; _asm { mov eax, pUndelayIrq mov ebx, IrqLine not ebx lock and [eax], ebx } } } except(EXCEPTION_EXECUTE_HANDLER) { Status = GetExceptionCode(); } ExReleaseFastMutex(&pVdmObjects->DelayIntFastMutex); if (Thread) { ObDereferenceObject(Thread); } if (MainThread) { ObDereferenceObject(MainThread); } return Status; }

BOOLEAN VdmpDispatchableIntPending (  IN ULONG  EFlags  )

Referenced by VdmpQueueIntApcRoutine().

NTSTATUS VdmpEnterIcaLock (  IN PRTL_CRITICAL_SECTION  pIcaLock  )

Referenced by VdmDispatchInterrupts().

NTSTATUS VdmpGetVdmTib (  PVDM_TIB *  ppVdmTib, ULONG  dwFlags )

Referenced by NTFastDOSIO(), VdmDispatchIRQ13(), VdmDispatchPageFault(), VdmFlushPrinterWriteData(), VdmpInitialize(), VdmpPrinterInitialize(), VdmpQueueIntApcRoutine(), VdmPrinterStatus(), VdmPrinterWriteData(), and VdmpStartExecution().

NTSTATUS VdmpInitialize (  PVDMICAUSERDATA  pIcaUserData  )

Definition at line 19 of file vdminit.c. References CmRegistryMachineHardwareDescriptionSystemName, DbgPrint, ExAllocatePoolWithTag, ExFreePool(), ExInitializeFastMutex, ExSystemExceptionFilter(), Index, KeI386MachineType, KeInitializeSpinLock(), KEY_VALUE_BUFFER_SIZE, L, NonPagedPool, NT_SUCCESS, NTSTATUS(), NULL, ObjectAttributes, PAGED_CODE, PagedPool, _EPROCESS::Pcb, ProbeForRead, ProbeForWrite(), ProbeForWriteHandle, ProbeForWriteUlong, PsChargePoolQuota(), PsGetCurrentProcess, PsGetCurrentThread, PsReturnPoolQuota(), RtlInitUnicodeString(), Status, TRUE, USHORT, _EPROCESS::VdmObjects, VdmpGetVdmTib(), and VDMTIB_PROBE. Referenced by NtVdmControl(). 00025 : 00026 00027 Initialize the address space of a VDM. 00028 00029 Arguments: 00030 00031 None, 00032 00033 Return Value: 00034 00035 NTSTATUS. 00036 00037 --*/ 00038 00039 { 00040 NTSTATUS Status, StatusCopy; 00041 OBJECT_ATTRIBUTES ObjectAttributes; 00042 UNICODE_STRING SectionName; 00043 UNICODE_STRING WorkString; 00044 ULONG ViewSize; 00045 LARGE_INTEGER ViewBase; 00046 PVOID BaseAddress; 00047 PVOID destination; 00048 HANDLE SectionHandle, RegistryHandle; 00049 PEPROCESS Process; 00050 ULONG ResultLength; 00051 ULONG Index; 00052 PCM_FULL_RESOURCE_DESCRIPTOR ResourceDescriptor; 00053 PCM_PARTIAL_RESOURCE_DESCRIPTOR PartialResourceDescriptor; 00054 PKEY_VALUE_FULL_INFORMATION KeyValueBuffer; 00055 PCM_ROM_BLOCK BiosBlock; 00056 ULONG LastMappedAddress; 00057 PVDM_PROCESS_OBJECTS pVdmObjects = NULL; 00058 USHORT PagedQuotaCharged = 0; 00059 USHORT NonPagedQuotaCharged = 0; 00060 HANDLE hThread; 00061 PVDM_TIB VdmTib; 00062 00063 00064 PAGED_CODE(); 00065 00066 Status = VdmpGetVdmTib(&VdmTib, VDMTIB_PROBE); // take from user mode and probe 00067 00068 if (!NT_SUCCESS(Status)) { 00069 return Status; 00070 } 00071 00072 if ((KeI386MachineType & MACHINE_TYPE_PC_9800_COMPATIBLE) == 0) { 00073 00074 // 00075 // This is PC/AT (and FMR in Japan) VDM. 00076 // 00077 00078 RtlInitUnicodeString( 00079 &SectionName, 00080 L"\\Device\\PhysicalMemory" 00081 ); 00082 00083 InitializeObjectAttributes( 00084 &ObjectAttributes, 00085 &SectionName, 00086 OBJ_CASE_INSENSITIVE|OBJ_KERNEL_HANDLE, 00087 (HANDLE) NULL, 00088 (PSECURITY_DESCRIPTOR) NULL 00089 ); 00090 00091 Status = ZwOpenSection( 00092 &SectionHandle, 00093 SECTION_ALL_ACCESS, 00094 &ObjectAttributes 00095 ); 00096 00097 if (!NT_SUCCESS(Status)) { 00098 00099 return Status; 00100 00101 } 00102 00103 // 00104 // Copy the first page of memory into the VDM's address space 00105 // 00106 00107 BaseAddress = 0; 00108 destination = 0; 00109 ViewSize = 0x1000; 00110 ViewBase.LowPart = 0; 00111 ViewBase.HighPart = 0; 00112 00113 Status = ZwMapViewOfSection( 00114 SectionHandle, 00115 NtCurrentProcess(), 00116 &BaseAddress, 00117 0, 00118 ViewSize, 00119 &ViewBase, 00120 &ViewSize, 00121 ViewUnmap, 00122 0, 00123 PAGE_READWRITE 00124 ); 00125 00126 if (!NT_SUCCESS(Status)) { 00127 ZwClose(SectionHandle); 00128 return Status; 00129 } 00130 00131 // problem with this statement below -- 00132 // it could be a non-vdm process and copying memory to address 0 00133 // should be guarded against 00134 00135 StatusCopy = STATUS_SUCCESS; 00136 try { 00137 RtlMoveMemory( 00138 destination, 00139 BaseAddress, 00140 ViewSize 00141 ); 00142 } 00143 except(ExSystemExceptionFilter()) { 00144 StatusCopy = GetExceptionCode(); 00145 } 00146 00147 00148 Status = ZwUnmapViewOfSection( 00149 NtCurrentProcess(), 00150 BaseAddress 00151 ); 00152 00153 if (!NT_SUCCESS(Status) || !NT_SUCCESS(StatusCopy)) { 00154 ZwClose(SectionHandle); 00155 return (NT_SUCCESS(Status) ? StatusCopy : Status); 00156 } 00157 00158 // 00159 // Map Rom into address space 00160 // 00161 00162 BaseAddress = (PVOID) 0x000C0000; 00163 ViewSize = 0x40000; 00164 ViewBase.LowPart = 0x000C0000; 00165 ViewBase.HighPart = 0; 00166 00167 00168 // 00169 // First unmap the reserved memory. This must be done here to prevent 00170 // the virtual memory in question from being consumed by some other 00171 // alloc vm call. 00172 // 00173 00174 Status = ZwFreeVirtualMemory( 00175 NtCurrentProcess(), 00176 &BaseAddress, 00177 &ViewSize, 00178 MEM_RELEASE 00179 ); 00180 00181 // N.B. This should probably take into account the fact that there are 00182 // a handfull of error conditions that are ok. (such as no memory to 00183 // release.) 00184 00185 if (!NT_SUCCESS(Status)) { 00186 ZwClose(SectionHandle); 00187 return Status; 00188 00189 } 00190 00191 // 00192 // Set up and open KeyPath 00193 // 00194 00195 InitializeObjectAttributes( 00196 &ObjectAttributes, 00197 &CmRegistryMachineHardwareDescriptionSystemName, 00198 OBJ_CASE_INSENSITIVE|OBJ_KERNEL_HANDLE, 00199 (HANDLE)NULL, 00200 NULL 00201 ); 00202 00203 Status = ZwOpenKey( 00204 &RegistryHandle, 00205 KEY_READ, 00206 &ObjectAttributes 00207 ); 00208 00209 if (!NT_SUCCESS(Status)) { 00210 ZwClose(SectionHandle); 00211 return Status; 00212 } 00213 00214 // 00215 // Allocate space for the data 00216 // 00217 00218 KeyValueBuffer = ExAllocatePoolWithTag( 00219 PagedPool, 00220 KEY_VALUE_BUFFER_SIZE, 00221 ' MDV' 00222 ); 00223 00224 if (KeyValueBuffer == NULL) { 00225 ZwClose(RegistryHandle); 00226 ZwClose(SectionHandle); 00227 return STATUS_NO_MEMORY; 00228 } 00229 00230 // 00231 // Get the data for the rom information 00232 // 00233 00234 RtlInitUnicodeString( 00235 &WorkString, 00236 L"Configuration Data" 00237 ); 00238 00239 Status = ZwQueryValueKey( 00240 RegistryHandle, 00241 &WorkString, 00242 KeyValueFullInformation, 00243 KeyValueBuffer, 00244 KEY_VALUE_BUFFER_SIZE, 00245 &ResultLength 00246 ); 00247 00248 if (!NT_SUCCESS(Status)) { 00249 ZwClose(RegistryHandle); 00250 ExFreePool(KeyValueBuffer); 00251 ZwClose(SectionHandle); 00252 return Status; 00253 } 00254 00255 ResourceDescriptor = (PCM_FULL_RESOURCE_DESCRIPTOR) 00256 ((PUCHAR) KeyValueBuffer + KeyValueBuffer->DataOffset); 00257 00258 if ((KeyValueBuffer->DataLength < sizeof(CM_FULL_RESOURCE_DESCRIPTOR)) || 00259 (ResourceDescriptor->PartialResourceList.Count < 2) 00260 ) { 00261 ZwClose(RegistryHandle); 00262 ExFreePool(KeyValueBuffer); 00263 ZwClose(SectionHandle); 00264 // No rom blocks. 00265 return STATUS_SUCCESS; 00266 } 00267 00268 PartialResourceDescriptor = (PCM_PARTIAL_RESOURCE_DESCRIPTOR) 00269 ((PUCHAR)ResourceDescriptor + 00270 sizeof(CM_FULL_RESOURCE_DESCRIPTOR) + 00271 ResourceDescriptor->PartialResourceList.PartialDescriptors[0] 00272 .u.DeviceSpecificData.DataSize); 00273 00274 00275 if (KeyValueBuffer->DataLength < ((PUCHAR)PartialResourceDescriptor - 00276 (PUCHAR)ResourceDescriptor + sizeof(CM_PARTIAL_RESOURCE_DESCRIPTOR) 00277 + sizeof(CM_ROM_BLOCK)) 00278 ) { 00279 ZwClose(RegistryHandle); 00280 ExFreePool(KeyValueBuffer); 00281 ZwClose(SectionHandle); 00282 return STATUS_ILL_FORMED_SERVICE_ENTRY; 00283 } 00284 00285 00286 BiosBlock = (PCM_ROM_BLOCK)((PUCHAR)PartialResourceDescriptor + 00287 sizeof(CM_PARTIAL_RESOURCE_DESCRIPTOR)); 00288 00289 Index = PartialResourceDescriptor->u.DeviceSpecificData.DataSize / 00290 sizeof(CM_ROM_BLOCK); 00291 00292 // 00293 // N.B. Rom blocks begin on 2K (not necessarily page) boundaries 00294 // They end on 512 byte boundaries. This means that we have 00295 // to keep track of the last page mapped, and round the next 00296 // Rom block up to the next page boundary if necessary. 00297 // 00298 00299 LastMappedAddress = 0xC0000; 00300 00301 while (Index) { 00302 #if 0 00303 DbgPrint( 00304 "Bios Block, PhysAddr = %lx, size = %lx\n", 00305 BiosBlock->Address, 00306 BiosBlock->Size 00307 ); 00308 #endif 00309 if ((Index > 1) && 00310 ((BiosBlock->Address + BiosBlock->Size) == BiosBlock[1].Address) 00311 ) { 00312 // 00313 // Coalesce adjacent blocks 00314 // 00315 BiosBlock[1].Address = BiosBlock[0].Address; 00316 BiosBlock[1].Size += BiosBlock[0].Size; 00317 Index--; 00318 BiosBlock++; 00319 continue; 00320 } 00321 00322 BaseAddress = (PVOID)(BiosBlock->Address); 00323 ViewSize = BiosBlock->Size; 00324 00325 if ((ULONG)BaseAddress < LastMappedAddress) { 00326 if (ViewSize > (LastMappedAddress - (ULONG)BaseAddress)) { 00327 ViewSize = ViewSize - (LastMappedAddress - (ULONG)BaseAddress); 00328 BaseAddress = (PVOID)LastMappedAddress; 00329 } else { 00330 ViewSize = 0; 00331 } 00332 } 00333 00334 ViewBase.LowPart = (ULONG)BaseAddress; 00335 00336 if (ViewSize > 0) { 00337 00338 Status = ZwMapViewOfSection( 00339 SectionHandle, 00340 NtCurrentProcess(), 00341 &BaseAddress, 00342 0, 00343 ViewSize, 00344 &ViewBase, 00345 &ViewSize, 00346 ViewUnmap, 00347 MEM_DOS_LIM, 00348 PAGE_READWRITE 00349 ); 00350 00351 if (!NT_SUCCESS(Status)) { 00352 break; 00353 } 00354 00355 LastMappedAddress = (ULONG)BaseAddress + ViewSize; 00356 } 00357 00358 Index--; 00359 BiosBlock++; 00360 } 00361 00362 // 00363 // Free up the handles 00364 // 00365 00366 ZwClose(SectionHandle); 00367 ZwClose(RegistryHandle); 00368 ExFreePool(KeyValueBuffer); 00369 00370 } else { 00371 00372 // 00373 // This is PC-9800 Series VDM. 00374 // 00375 00376 Status = STATUS_SUCCESS; 00377 } 00378 00379 // 00380 // Mark the process as a vdm 00381 // 00382 00383 Process = PsGetCurrentProcess(); 00384 Process->Pcb.VdmFlag = TRUE; 00385 00386 00387 // 00388 // Create VdmObjects structure 00389 // 00390 // N.B. We don't use ExAllocatePoolWithQuota because it 00391 // takes a reference to the process (which ExFreePool 00392 // dereferences). Since we expect to clean up on 00393 // process deletion, we don't need or want the reference 00394 // (which will prevent the process from being deleted) 00395 // 00396 00397 try { 00398 00399 Process->VdmObjects = ExAllocatePoolWithTag( 00400 NonPagedPool, 00401 sizeof(VDM_PROCESS_OBJECTS), 00402 ' MDV' 00403 ); 00404 00405 if (Process->VdmObjects == NULL) { 00406 return STATUS_NO_MEMORY; 00407 } 00408 00409 00410 // 00411 // We use NonPagedQuotaCharged to keep track of the quota to return 00412 // if this function fails 00413 // 00414 PsChargePoolQuota(Process, NonPagedPool, sizeof(VDM_PROCESS_OBJECTS)); 00415 NonPagedQuotaCharged = sizeof(VDM_PROCESS_OBJECTS); 00416 00417 RtlZeroMemory( Process->VdmObjects, sizeof(VDM_PROCESS_OBJECTS)); 00418 pVdmObjects = Process->VdmObjects; 00419 ExInitializeFastMutex(&pVdmObjects->DelayIntFastMutex); 00420 KeInitializeSpinLock(&pVdmObjects->DelayIntSpinLock); 00421 InitializeListHead(&pVdmObjects->DelayIntListHead); 00422 00423 pVdmObjects->pIcaUserData = ExAllocatePoolWithTag( 00424 PagedPool, 00425 sizeof(VDMICAUSERDATA), 00426 ' MDV' 00427 ); 00428 00429 if (pVdmObjects->pIcaUserData == NULL) { 00430 Status = STATUS_NO_MEMORY; 00431 } else { 00432 00433 // 00434 // We use NonPagedQuotaCharged to keep track of the quota to return 00435 // if this function fails 00436 // 00437 PsChargePoolQuota( 00438 Process, 00439 PagedPool, 00440 sizeof(VDMICAUSERDATA) 00441 ); 00442 PagedQuotaCharged = sizeof(VDMICAUSERDATA); 00443 00444 RtlZeroMemory( pVdmObjects->pIcaUserData, sizeof(VDMICAUSERDATA)); 00445 00446 00447 // 00448 // Copy Ica addresses from service data (in user space) into 00449 // pVdmObjects->pIcaUserData 00450 // 00451 00452 ProbeForRead(pIcaUserData, sizeof(VDMICAUSERDATA), sizeof(UCHAR)); 00453 *pVdmObjects->pIcaUserData = *pIcaUserData; 00454 00455 00456 // 00457 // Probe static addresses in IcaUserData. 00458 // 00459 pIcaUserData = pVdmObjects->pIcaUserData; 00460 00461 ProbeForWriteHandle(pIcaUserData->phWowIdleEvent); 00462 00463 ProbeForWrite( 00464 pIcaUserData->pIcaLock, 00465 sizeof(RTL_CRITICAL_SECTION), 00466 sizeof(UCHAR) 00467 ); 00468 00469 ProbeForWrite( 00470 pIcaUserData->pIcaMaster, 00471 sizeof(VDMVIRTUALICA), 00472 sizeof(UCHAR) 00473 ); 00474 00475 ProbeForWrite( 00476 pIcaUserData->pIcaSlave, 00477 sizeof(VDMVIRTUALICA), 00478 sizeof(UCHAR) 00479 ); 00480 00481 ProbeForWriteUlong(pIcaUserData->pIretHooked); 00482 ProbeForWriteUlong(pIcaUserData->pDelayIrq); 00483 ProbeForWriteUlong(pIcaUserData->pUndelayIrq); 00484 ProbeForWriteUlong(pIcaUserData->pDelayIret); 00485 00486 00487 // 00488 // Save pointer to main thread, for delayed interrupts DPC routine. 00489 // To keep the pointer to the main thread valid, open a thread handle 00490 // and keep it open until process cleanup. 00491 // 00492 00493 InitializeObjectAttributes(&ObjectAttributes, NULL, 0, NULL, NULL); 00494 Status = ZwOpenThread(&hThread, 00495 THREAD_QUERY_INFORMATION, 00496 &ObjectAttributes, 00497 &NtCurrentTeb()->ClientId 00498 ); 00499 00500 if (NT_SUCCESS(Status)) { 00501 pVdmObjects->MainThread = PsGetCurrentThread(); 00502 } 00503 00504 00505 pVdmObjects->VdmTib = VdmTib; 00506 } 00507 00508 } except(ExSystemExceptionFilter()) { 00509 Status = GetExceptionCode(); 00510 } 00511 00512 00513 if (!NT_SUCCESS(Status)) { 00514 if (pVdmObjects) { 00515 if (pVdmObjects->pIcaUserData) { 00516 ExFreePool(pVdmObjects->pIcaUserData); 00517 } 00518 ExFreePool(pVdmObjects); 00519 } 00520 Process->VdmObjects = NULL; 00521 00522 // 00523 // Return Quota charged 00524 // 00525 PsReturnPoolQuota(Process, NonPagedPool, NonPagedQuotaCharged); 00526 PsReturnPoolQuota(Process, PagedPool, PagedQuotaCharged); 00527 } 00528 00529 // 00530 // following codepath only for PC/AT (and FMR in Japan) vdm 00531 // 00532 00533 if ((KeI386MachineType & MACHINE_TYPE_PC_9800_COMPATIBLE) == 0) { 00534 00535 #ifdef WHEN_IO_DISPATCHING_IMPROVED 00536 // Sudeepb - Once we improve the IO dispatching we should use this 00537 // routine. Currently we are dispatching the printer ports directly 00538 // from emv86.asm and instemul.asm 00539 00540 VdmInitializePrinter (); 00541 #endif 00542 } 00543 00544 return Status; 00545 00546 } // end InitializeVDM() } // end InitializeVDM()

NTSTATUS VdmpIsThreadTerminating (  HANDLE  ThreadId  )

Definition at line 1922 of file vdmints.c. References NT_SUCCESS, NTSTATUS(), NULL, ObDereferenceObject, PAGED_CODE, PsIsThreadTerminating, PsLookupProcessThreadByCid(), and Status. : This routine determines if the specified thread is terminating or not. Arguments: Return Value: True -- False - --*/ { CLIENT_ID Cid; PETHREAD Thread; NTSTATUS Status; PAGED_CODE(); // // If the owning thread juest exited the IcaLock the // OwningThread Tid may be NULL, return success, since // we don't know what the owning threads state was. // if (!ThreadId) { return STATUS_SUCCESS; } Cid.UniqueProcess = NtCurrentTeb()->ClientId.UniqueProcess; Cid.UniqueThread = ThreadId; Status = PsLookupProcessThreadByCid(&Cid, NULL, &Thread); if (NT_SUCCESS(Status)) { Status = PsIsThreadTerminating(Thread) ? STATUS_THREAD_IS_TERMINATING : STATUS_SUCCESS; ObDereferenceObject(Thread); } return Status; }

NTSTATUS VdmpLeaveIcaLock (  IN PRTL_CRITICAL_SECTION  pIcaLock  )

Referenced by VdmDispatchInterrupts().

NTSTATUS VdmpPrinterDirectIoClose (  PVOID  ServiceData  )

Definition at line 388 of file vdmprint.c. References EXCEPTION_EXECUTE_HANDLER, ExSystemExceptionFilter(), NT_SUCCESS, NTSTATUS(), NULL, PAGED_CODE, ProbeForRead, ProbeForWrite(), Status, USHORT, and VdmFlushPrinterWriteData(). Referenced by NtVdmControl(). { NTSTATUS Status; PVDM_PRINTER_INFO PrtInfo; USHORT Adapter; PVDM_TIB VdmTib; PAGED_CODE(); Status = STATUS_SUCCESS; // first we fetch vdm tib and do some damage control in case // this is bad user-mode memory // PrtInfo points to a stricture try { VdmTib = NtCurrentTeb()->Vdm; ProbeForWrite(VdmTib, sizeof(VDM_TIB), sizeof(UCHAR)); // now verify that servicedata ptr is valid ProbeForRead(ServiceData, sizeof(USHORT), sizeof(UCHAR)); Adapter = *(USHORT *)ServiceData; } except (ExSystemExceptionFilter()) { Status = GetExceptionCode(); } if (NULL == VdmTib || NULL == ServiceData) { Status = STATUS_ACCESS_VIOLATION; } if (!NT_SUCCESS(Status)) { return(Status); } PrtInfo =&VdmTib->PrinterInfo; try { if (Adapter < VDM_NUMBER_OF_LPT) { if (PRT_MODE_DIRECT_IO == PrtInfo->prt_Mode[Adapter] && PrtInfo->prt_BytesInBuffer[Adapter]) { Status = VdmFlushPrinterWriteData(Adapter); } } else { Status = STATUS_INVALID_PARAMETER; } } except (EXCEPTION_EXECUTE_HANDLER) { Status = GetExceptionCode(); } return Status; }

NTSTATUS VdmpPrinterDirectIoOpen (  PVOID  ServiceData  )

Definition at line 380 of file vdmprint.c. References PAGED_CODE. Referenced by NtVdmControl(). { PAGED_CODE(); return STATUS_SUCCESS; }

NTSTATUS VdmpPrinterInitialize (  PVOID  ServiceData  )

Definition at line 295 of file vdmprint.c. References EXCEPTION_EXECUTE_HANDLER, FALSE, NT_SUCCESS, NTSTATUS(), ProbeForWrite(), PsGetCurrentProcess, Status, VdmpGetVdmTib(), and VDMTIB_KMODE. Referenced by NtVdmControl(). : This routine probes and caches the data associated with kernel mode printer emulation. Arguments: ServiceData - Not used. Return Value: --*/ { PUCHAR State, PrtStatus, Control, HostState; PVDM_TIB VdmTib; PVDM_PROCESS_OBJECTS VdmObjects; NTSTATUS Status; Status = STATUS_SUCCESS; // // Note: We only support two printers in the kernel. // Status = VdmpGetVdmTib(&VdmTib, VDMTIB_KMODE); if (!NT_SUCCESS(Status)) { return(FALSE); } try { State = VdmTib->PrinterInfo.prt_State; PrtStatus = VdmTib->PrinterInfo.prt_Status; Control = VdmTib->PrinterInfo.prt_Control; HostState = VdmTib->PrinterInfo.prt_HostState; // // Probe the locations for two printers // ProbeForWrite( State, 2 * sizeof(UCHAR), sizeof(UCHAR) ); ProbeForWrite( PrtStatus, 2 * sizeof(UCHAR), sizeof(UCHAR) ); ProbeForWrite( Control, 2 * sizeof(UCHAR), sizeof(UCHAR) ); ProbeForWrite( HostState, 2 * sizeof(UCHAR), sizeof(UCHAR) ); } except (EXCEPTION_EXECUTE_HANDLER) { Status = GetExceptionCode(); } if (NT_SUCCESS(Status)) { VdmObjects = PsGetCurrentProcess()->VdmObjects; VdmObjects->PrinterState = State; VdmObjects->PrinterStatus = PrtStatus; VdmObjects->PrinterControl = Control; VdmObjects->PrinterHostState = HostState; } return Status; }

NTSTATUS VdmpQueueInterrupt (  IN HANDLE  ThreadHandle  )

Definition at line 146 of file vdmints.c. References Ke386VdmInsertQueueApc(), KernelMode, KPROCESSOR_MODE, NT_SUCCESS, NTSTATUS(), NULL, ObDereferenceObject, ObReferenceObjectByHandle(), PAGED_CODE, _EPROCESS::Pcb, PsGetCurrentProcess, PsThreadType, Status, _ETHREAD::Tcb, ThreadHandle, _ETHREAD::ThreadsProcess, TRUE, _EPROCESS::VdmObjects, VdmpNullRundownRoutine(), VdmpQueueIntApcRoutine(), and VdmpQueueIntNormalRoutine(). Referenced by NtVdmControl(). : Queues a user mode APC to the specifed application thread which will dispatch an interrupt. if APC is already queued to specified thread does nothing if APC is queued to the wrong thread dequeue it Reset the user APC for the specifed thread Insert the APC in the queue for the specifed thread Arguments: ThreadHandle - handle of thread to insert QueueIntApcRoutine Return Value: NTSTATUS. --*/ { PEPROCESS Process; PETHREAD Thread; NTSTATUS Status; KPROCESSOR_MODE PrevMode; PVDM_PROCESS_OBJECTS pVdmObjects; PAGED_CODE(); PrevMode = KeGetPreviousMode(); Status = ObReferenceObjectByHandle(ThreadHandle, THREAD_QUERY_INFORMATION, PsThreadType, PrevMode, &Thread, NULL ); if (!NT_SUCCESS(Status)) { return Status; } Process = PsGetCurrentProcess(); if (Process != Thread->ThreadsProcess || Process->Pcb.VdmFlag != TRUE) { Status = STATUS_INVALID_PARAMETER_1; } else { pVdmObjects = Process->VdmObjects; if (!Ke386VdmInsertQueueApc(&pVdmObjects->QueuedIntApc, &Thread->Tcb, KernelMode, VdmpQueueIntApcRoutine, VdmpNullRundownRoutine, // rundown VdmpQueueIntNormalRoutine, // normal routine (PVOID)KernelMode, // NormalContext 0 )) { Status = STATUS_UNSUCCESSFUL; } else { Status = STATUS_SUCCESS; } } ObDereferenceObject(Thread); return Status; }

BOOLEAN VdmPrinterStatus (  ULONG  iPort, ULONG  cbInstructionSize, PKTRAP_FRAME  TrapFrame )

Definition at line 42 of file vdmprint.c. References ASSERT, DbgPrint, EXCEPTION_EXECUTE_HANDLER, FALSE, get_control, get_status, HOST_LPT_BUSY, host_lpt_status, IRQ, KeLowerIrql(), KeRaiseIrql(), NOTBUSY, NT_SUCCESS, NtDeviceIoControlFile(), NTSTATUS(), NULL, PAGED_CODE, PASSIVE_LEVEL, set_status, Status, STATUS_PORT_OFFSET, STATUS_REG_MASK, USHORT, VdmFlushPrinterWriteData(), VdmpGetVdmTib(), and VDMTIB_KMODE. : This routine handles the read operation on the printer status port Arguments: iPort - port on which the io was trapped cbInstructionSize - Instruction size to update TsEip TrapFrame - Trap Frame Return Value: True if successfull, False otherwise --*/ { UCHAR PrtMode; USHORT adapter; ULONG * printer_status; KIRQL OldIrql; PIO_STATUS_BLOCK IoStatusBlock; PVDM_PRINTER_INFO PrtInfo; PVDM_TIB VdmTib; NTSTATUS Status = STATUS_SUCCESS; PAGED_CODE(); // why we have printer stuff in TIB? It would be more appropriate // if we have them in the process object. The main reason(I think) // is that we can get rid of synchronization. // Status = VdmpGetVdmTib(&VdmTib, VDMTIB_KMODE); if (!NT_SUCCESS(Status)) { return(FALSE); } PrtInfo = &VdmTib->PrinterInfo; IoStatusBlock = (PIO_STATUS_BLOCK) &VdmTib->TempArea1; printer_status = &VdmTib->PrinterInfo.prt_Scratch; *pNtVDMState |= VDM_IDLEACTIVITY; try { // first, figure out which PRT we are dealing with. The // port addresses in the PrinterInfo are base address of each // PRT sorted in the adapter order. if ((USHORT)iPort == PrtInfo->prt_PortAddr[0] + STATUS_PORT_OFFSET) adapter = 0; else if ((USHORT)iPort == PrtInfo->prt_PortAddr[1] + STATUS_PORT_OFFSET) adapter = 1; else if ((USHORT)iPort == PrtInfo->prt_PortAddr[2] + STATUS_PORT_OFFSET) adapter = 2; else { // something must be wrong in our code, better check it out ASSERT(FALSE); return FALSE; } PrtMode = PrtInfo->prt_Mode[adapter]; if(PRT_MODE_SIMULATE_STATUS_PORT == PrtMode) { // we are simulating printer status read. // get the current status from softpc. if (!(get_status(adapter) & NOTBUSY) && !(host_lpt_status(adapter) & HOST_LPT_BUSY)) { if (get_control(adapter) & IRQ) return FALSE; set_status(adapter, get_status(adapter) | NOTBUSY); } *printer_status = (ULONG)(get_status(adapter) | STATUS_REG_MASK); } else if (PRT_MODE_DIRECT_IO == PrtMode) { // we have to read the i/o directly(of course, through file system // which in turn goes to the driver). // Before performing read, flush out all pending output data in our // buffer. This is done because the status we are about to read // may depend on those pending output data. // if (PrtInfo->prt_BytesInBuffer[adapter]) { Status = VdmFlushPrinterWriteData(adapter); #ifdef DBG if (!NT_SUCCESS(Status)) { DbgPrint("VdmPrintStatus: failed to flush buffered data, status = %ls\n", Status); } #endif } OldIrql = KeGetCurrentIrql(); // lower irql to passive before doing any IO KeLowerIrql(PASSIVE_LEVEL); Status = NtDeviceIoControlFile(PrtInfo->prt_Handle[adapter], NULL, // notification event NULL, // APC routine NULL, // Apc Context IoStatusBlock, IOCTL_VDM_PAR_READ_STATUS_PORT, NULL, 0, printer_status, sizeof(ULONG) ); if (!NT_SUCCESS(Status) || !NT_SUCCESS(IoStatusBlock->Status)) { // fake a status to make it looks like the port is not connected // to a printer. *printer_status = 0x7F; #ifdef DBG DbgPrint("VdmPrinterStatus: failed to get status from printer, status = %lx\n", Status); #endif // always tell the caller that we have simulated the operation. Status = STATUS_SUCCESS; } KeRaiseIrql(OldIrql, &OldIrql); } else // we don't simulate it here return FALSE; TrapFrame->Eax &= 0xffffff00; TrapFrame->Eax |= (UCHAR)*printer_status; TrapFrame->Eip += cbInstructionSize; } except(EXCEPTION_EXECUTE_HANDLER) { Status = GetExceptionCode(); } return (NT_SUCCESS(Status)); }

BOOLEAN VdmPrinterWriteData (  ULONG  iPort, ULONG  cbInstructionSize, PKTRAP_FRAME  TrapFrame )

Definition at line 177 of file vdmprint.c. References ASSERT, DATA_PORT_OFFSET, EXCEPTION_EXECUTE_HANDLER, FALSE, NT_SUCCESS, NTSTATUS(), PAGED_CODE, Status, USHORT, VdmFlushPrinterWriteData(), VdmpGetVdmTib(), and VDMTIB_KMODE. { UCHAR PrtMode; PVDM_PRINTER_INFO PrtInfo; USHORT adapter; PVDM_TIB VdmTib; NTSTATUS Status = STATUS_SUCCESS; PAGED_CODE(); Status = VdmpGetVdmTib(&VdmTib, VDMTIB_KMODE); if (!NT_SUCCESS(Status)) { return(FALSE); } PrtInfo = &VdmTib->PrinterInfo; *pNtVDMState |= VDM_IDLEACTIVITY; try { // first, figure out which PRT we are dealing with. The // port addresses in the PrinterInfo are base address of each // PRT sorted in the adapter order if ((USHORT)iPort == PrtInfo->prt_PortAddr[0] + DATA_PORT_OFFSET) adapter = 0; else if ((USHORT)iPort == PrtInfo->prt_PortAddr[1] + DATA_PORT_OFFSET) adapter = 1; else if ((USHORT)iPort == PrtInfo->prt_PortAddr[2] + DATA_PORT_OFFSET) adapter = 2; else { // something must be wrong in our code, better check it out ASSERT(FALSE); return FALSE; } if (PRT_MODE_DIRECT_IO == PrtInfo->prt_Mode[adapter]){ PrtInfo->prt_Buffer[adapter][PrtInfo->prt_BytesInBuffer[adapter]] = (UCHAR)TrapFrame->Eax; // buffer full, then flush it out if (++PrtInfo->prt_BytesInBuffer[adapter] >= PRT_DATA_BUFFER_SIZE){ VdmFlushPrinterWriteData(adapter); } TrapFrame->Eip += cbInstructionSize; } else Status = STATUS_ILLEGAL_INSTRUCTION; } except(EXCEPTION_EXECUTE_HANDLER) { Status = GetExceptionCode(); } return(NT_SUCCESS(Status)); }

NTSTATUS VdmpStartExecution (  VOID   )

Definition at line 40 of file strtexec.c. References APC_LEVEL, ASSERT, _VdmEventInfo::Event, _Vdm_Tib::EventInfo, EXCEPTION_EXECUTE_HANDLER, FALSE, _VdmEventInfo::InstructionSize, KeI386VdmIoplAllowed, KeI386VirtualIntExtensions, KeLowerIrql(), KeRaiseIrql(), _Vdm_Tib::MonitorContext, NT_SUCCESS, NTSTATUS(), PAGED_CODE, PsGetCurrentThread, Status, _ETHREAD::Tcb, TRUE, VDM_VIRTUAL_INTERRUPTS, _Vdm_Tib::VdmContext, VdmDispatchInterrupts(), VdmFixedStateLinear, VdmIntAck, VdmpGetVdmTib(), VdmSwapContexts(), and VDMTIB_KMODE. Referenced by NtVdmControl(). : This routine causes execution of dos application code to begin. The Dos application executes on the thread. The Vdms context is loaded from the VDM_TIB for the thread. The 32 bit context is stored into the MonitorContext. Execution in the VDM context will continue until an event occurs that the monitor needs to service. At that point, the information will be put into the VDM_TIB, and the call will return. Arguments: Return Value: TrapFrame->Eax for application mode, required for system sevices exit. --*/ { PVDM_TIB VdmTib; PKTRAP_FRAME TrapFrame; PETHREAD Thread; KIRQL OldIrql; BOOLEAN IntsEnabled; PVDM_PROCESS_OBJECTS pProcessObjects; NTSTATUS Status; CONTEXT VdmContext; PAGED_CODE(); KeRaiseIrql(APC_LEVEL, &OldIrql); // // Form a pointer to the trap frame for the current thread // Thread = PsGetCurrentThread(); TrapFrame = VdmGetTrapFrame(&Thread->Tcb); // // Get the VdmTib // Status = VdmpGetVdmTib(&VdmTib, VDMTIB_KMODE); if (!NT_SUCCESS(Status)) { KeLowerIrql(OldIrql); return(STATUS_INVALID_SYSTEM_SERVICE); } try { // // Determine if interrupts are on or off // IntsEnabled = VdmTib->VdmContext.EFlags & EFLAGS_INTERRUPT_MASK ? TRUE : FALSE; // // check for timer ints to dispatch, However if interrupts are disabled // or there are hardware ints pending we postpone dispatching the timer // interrupt until interrupts are enabled. // if (*pNtVDMState & VDM_INT_TIMER && IntsEnabled && !(*pNtVDMState & VDM_INT_HARDWARE)) { VdmTib->EventInfo.Event = VdmIntAck; VdmTib->EventInfo.InstructionSize = 0; VdmTib->EventInfo.IntAckInfo = 0; KeLowerIrql(OldIrql); return STATUS_SUCCESS; } // // Perform IF to VIF translation // // // If the processor supports IF virtualization // if (((KeI386VirtualIntExtensions & V86_VIRTUAL_INT_EXTENSIONS) && (VdmTib->VdmContext.EFlags & EFLAGS_V86_MASK)) || ((KeI386VirtualIntExtensions & PM_VIRTUAL_INT_EXTENSIONS) && !(VdmTib->VdmContext.EFlags & EFLAGS_V86_MASK))) { // // Translate IF to VIF // if (IntsEnabled) { VdmTib->VdmContext.EFlags |= EFLAGS_VIF; } else { VdmTib->VdmContext.EFlags &= ~EFLAGS_VIF; VdmTib->VdmContext.EFlags |= EFLAGS_INTERRUPT_MASK; } if (*pNtVDMState & VDM_INT_HARDWARE) VdmTib->VdmContext.EFlags |= EFLAGS_VIP; else VdmTib->VdmContext.EFlags &= ~EFLAGS_VIP; // // Else if we are not running in v86 mode, or not using IOPL in // v86 mode // } else if (!(KeI386VdmIoplAllowed) || !(VdmTib->VdmContext.EFlags & EFLAGS_V86_MASK)) { // // Translate the real interrupt flag in the VdmContext to the virtual // interrupt flag in the VdmTib, and force real interrupts enabled. // ASSERT(VDM_VIRTUAL_INTERRUPTS == EFLAGS_INTERRUPT_MASK); if (VdmTib->VdmContext.EFlags & EFLAGS_INTERRUPT_MASK) { _asm { mov eax,VdmFixedStateLinear ; get pointer to VDM State lock or dword ptr [eax], dword ptr VDM_VIRTUAL_INTERRUPTS } } else { _asm { mov eax,VdmFixedStateLinear ; get pointer to VDM State lock and dword ptr [eax], NOT VDM_VIRTUAL_INTERRUPTS } } // // Insure that real interrupts are always enabled. // VdmTib->VdmContext.EFlags |= EFLAGS_INTERRUPT_MASK; } // before working on a trap frame, make sure that it's our own structure // VdmContext = VdmTib->VdmContext; if (!(VdmContext.SegCs & FRAME_EDITED)) { // we will crash in KiServiceExit KeLowerIrql(OldIrql); return(STATUS_INVALID_SYSTEM_SERVICE); } // // Switch from MonitorContext to VdmContext // VdmSwapContexts( TrapFrame, &(VdmTib->MonitorContext), &VdmContext ); // // Check for pending interrupts // if (IntsEnabled && (*pNtVDMState & VDM_INT_HARDWARE)) { VdmDispatchInterrupts(TrapFrame, VdmTib); } } except(EXCEPTION_EXECUTE_HANDLER) { Status = GetExceptionCode(); KeLowerIrql(OldIrql); return(Status); } KeLowerIrql(OldIrql); return (NTSTATUS) TrapFrame->Eax; }

VOID VdmSwapContexts (  IN PKTRAP_FRAME  TrapFrame, IN PCONTEXT  InContext, IN PCONTEXT  OutContext )

Referenced by VdmEndExecution(), and VdmpStartExecution().

VOID VdmTraceEvent (  USHORT  Type, USHORT  wData, USHORT  lData, PKTRAP_FRAME  TrapFrame )

Definition at line 37 of file vdmtrace.c. References APC_LEVEL, EXCEPTION_EXECUTE_HANDLER, _Vdm_Tib::Flags, KeLowerIrql(), KeRaiseIrql(), NtGetTickCount(), NTSTATUS(), PAGED_CODE, Status, and USHORT. 00046 : 00047 00048 00049 00050 Arguments: 00051 00052 Return Value: 00053 00054 None 00055 00056 --*/ 00057 { 00058 PVDM_TIB VdmTib; 00059 NTSTATUS Status = STATUS_SUCCESS; 00060 KIRQL OldIrql; 00061 PVDM_TRACEENTRY pEntry; 00062 PVDM_TRACEINFO pInfo; 00063 LARGE_INTEGER CurTime, DiffTime; 00064 00065 00066 PAGED_CODE(); 00067 #if 0 00068 // This code represents a security problem. Since it is only used 00069 // on special occasions, it won't be built into the standard build. 00070 // Individuals wishing to use it can build themselves a kernel with 00071 // it in. 00072 #if 0 00073 // 00074 // Raise Irql to APC level... 00075 // 00076 KeRaiseIrql(APC_LEVEL, &OldIrql); 00077 00078 // 00079 // VdmTib is in user mode memory 00080 // 00081 try { 00082 #endif 00083 if ((*(ULONG *)(FIXED_NTVDMSTATE_LINEAR) & VDM_TRACE_HISTORY)) { 00084 00085 // 00086 // Get a pointer to the VdmTib 00087 // 00088 VdmTib = NtCurrentTeb()->Vdm; 00089 00090 if (VdmTib->TraceInfo.pTraceTable) { 00091 00092 pEntry = &VdmTib->TraceInfo.pTraceTable[VdmTib->TraceInfo.CurrentEntry]; 00093 00094 pEntry->Type = Type; 00095 pEntry->wData = wData; 00096 pEntry->lData = lData; 00097 00098 switch (VdmTib->TraceInfo.Flags & VDMTI_TIMER_MODE) { 00099 case VDMTI_TIMER_TICK: 00100 CurTime.LowPart = NtGetTickCount(); 00101 pEntry->Time = CurTime.LowPart - VdmTib->TraceInfo.TimeStamp.LowPart; 00102 VdmTib->TraceInfo.TimeStamp.LowPart = CurTime.LowPart; 00103 break; 00104 00105 case VDMTI_TIMER_PERFCTR: 00106 pEntry->Time = 0; 00107 break; 00108 00109 case VDMTI_TIMER_STAT: 00110 pEntry->Time = 0; 00111 break; 00112 00113 } 00114 00115 pEntry->eax = TrapFrame->Eax; 00116 pEntry->ebx = TrapFrame->Ebx; 00117 pEntry->ecx = TrapFrame->Ecx; 00118 pEntry->edx = TrapFrame->Edx; 00119 pEntry->esi = TrapFrame->Esi; 00120 pEntry->edi = TrapFrame->Edi; 00121 pEntry->ebp = TrapFrame->Ebp; 00122 pEntry->esp = TrapFrame->HardwareEsp; 00123 pEntry->eip = TrapFrame->Eip; 00124 pEntry->eflags = TrapFrame->EFlags; 00125 00126 pEntry->cs = (USHORT) TrapFrame->SegCs; 00127 pEntry->ds = (USHORT) TrapFrame->SegDs; 00128 pEntry->es = (USHORT) TrapFrame->SegEs; 00129 pEntry->fs = (USHORT) TrapFrame->SegFs; 00130 pEntry->gs = (USHORT) TrapFrame->SegGs; 00131 pEntry->ss = (USHORT) TrapFrame->HardwareSegSs; 00132 00133 if (++VdmTib->TraceInfo.CurrentEntry >= 00134 (VdmTib->TraceInfo.NumPages*4096/sizeof(VDM_TRACEENTRY))) { 00135 VdmTib->TraceInfo.CurrentEntry = 0; 00136 } 00137 } 00138 } 00139 00140 #if 0 00141 } except(EXCEPTION_EXECUTE_HANDLER) { 00142 Status = GetExceptionCode(); 00143 } 00144 00145 KeLowerIrql(OldIrql); 00146 #endif 00147 #endif 00148 } }

---