ulpc.h File Reference

#include <nt.h>
#include <ntrtl.h>
#include <nturtl.h>
#include <windows.h>
#include <stdlib.h>
#include <stdio.h>
#include <string.h>

Go to the source code of this file.

Classes
struct	_TLPC_PORTMSG
struct	_PAGE
Defines
#define	PORT_NAME   L"\\RPC Control\\LpcTestPort"
#define	TLPC_MAX_MSG_DATA_LENGTH   16
Typedefs
typedef _TLPC_PORTMSG	TLPC_PORTMSG
typedef _TLPC_PORTMSG *	PTLPC_PORTMSG
typedef _PAGE	PAGE
typedef _PAGE *	PPAGE
Functions
PPORT_MESSAGE	InitTlpcMsg (PTLPC_PORTMSG Msg, PVOID Context, ULONG MsgLength)
BOOLEAN	CheckTlpcMsg (NTSTATUS Status, PTLPC_PORTMSG Msg)
BOOLEAN	ShowHandleOrStatus (NTSTATUS Status, HANDLE Handle)
BOOLEAN	ShowStatus (NTSTATUS Status)
NTSTATUS	SendRequest (ULONG Level, PSZ ThreadName, HANDLE PortHandle, PVOID Context, ULONG MsgLength, PTLPC_PORTMSG CallBackTarget, BOOLEAN ServerCallingClient)
VOID	EnterThread (PSZ ThreadName, ULONG Context)
Variables
UNICODE_STRING	PortName
char *	LpcMsgTypes []
SECURITY_QUALITY_OF_SERVICE	DynamicQos
PCH	ClientMemoryBase = 0
ULONG	ClientMemorySize = 0
PCH	ServerMemoryBase = 0
ULONG	ServerMemoryDelta = 0
PCH	EnterString = ">>>>>>>>>>"
PCH	InnerString = "||||||||||"
PCH	LeaveString = "<<<<<<<<<<"

---

Define Documentation

#define PORT_NAME   L"\\RPC Control\\LpcTestPort"

Definition at line 30 of file ulpc.h. Referenced by main().

#define TLPC_MAX_MSG_DATA_LENGTH   16

Definition at line 55 of file ulpc.h. Referenced by ClientThread(), and InitTlpcMsg().

---

Typedef Documentation

typedef struct _PAGE PAGE

typedef struct _PAGE * PPAGE

typedef struct _TLPC_PORTMSG * PTLPC_PORTMSG

typedef struct _TLPC_PORTMSG TLPC_PORTMSG

Referenced by main().

---

Function Documentation

BOOLEAN CheckTlpcMsg (  NTSTATUS  Status, PTLPC_PORTMSG  Msg )

Definition at line 101 of file ulpc.h. References ClientMemoryBase, _TLPC_PORTMSG::Data, EXCEPTION_EXECUTE_HANDLER, FALSE, _TLPC_PORTMSG::h, NT_SUCCESS, ServerMemoryDelta, Status, and TRUE. Referenced by SendRequest(), and ServerThread(). { ULONG i; ULONG ClientIndex; ULONG cbData = Msg->h.u1.s1.DataLength; ULONG Context; PULONG ServerMemoryPtr; PULONG ClientMemoryPtr; ULONG ExpectedContext; BOOLEAN Result; if (!NT_SUCCESS( Status )) { fprintf( stderr, " - FAILED. Status == %X\n", Status ); return( FALSE ); } if (Msg->h.u2.s2.Type == LPC_CONNECTION_REQUEST) { fprintf( stderr, " connection request" ); } else if (cbData) { Context = Msg->Data[ 0 ]; ClientIndex = Context & 0xF; ClientIndex -= 1; ClientMemoryPtr = (PULONG)(ClientMemoryBase + (ClientIndex * 0x1000)); for (i=1; i<(cbData/sizeof( ULONG )); i++) { if (Msg->h.u2.s2.Type == LPC_REPLY) { if (Msg->Data[ i ] != ((ULONG)ClientMemoryPtr + ServerMemoryDelta) || *ClientMemoryPtr != (ULONG)Context ) { fprintf( stderr, " incorrectly\n" ); fprintf( stderr, " Msg->Data[ %ld ] == %lx != %lx || %lx -> %lx != %lx\n", i, Msg->Data[ i ], (ULONG)ClientMemoryPtr + ServerMemoryDelta, ClientMemoryPtr, *ClientMemoryPtr, Context ); return( FALSE ); } ClientMemoryPtr++; } else { ServerMemoryPtr = (PULONG)(Msg->Data[ i ]); try { ExpectedContext = *ServerMemoryPtr; Result = (ExpectedContext != Context) ? FALSE : TRUE; } except( EXCEPTION_EXECUTE_HANDLER ) { ExpectedContext = 0xFEFEFEFE; Result = FALSE; } if (!Result) { fprintf( stderr, " incorrectly\n" ); fprintf( stderr, " Msg->Data[ %ld ] == %lx -> %lx != %lx\n", i, Msg->Data[ i ], ExpectedContext, Context ); return( FALSE ); } } } } fprintf( stderr, " correctly\n" ); return( TRUE ); }

VOID EnterThread (  PSZ  ThreadName, ULONG  Context )

Definition at line 318 of file ulpc.h. Referenced by ClientThread(), and ServerThread(). { fprintf( stderr, "Entering %s thread, Context = 0x%lx\n", ThreadName, Context ); }

PPORT_MESSAGE InitTlpcMsg (  PTLPC_PORTMSG  Msg, PVOID  Context, ULONG  MsgLength )

Definition at line 72 of file ulpc.h. References ClientMemoryBase, _TLPC_PORTMSG::Data, _TLPC_PORTMSG::h, ServerMemoryDelta, and TLPC_MAX_MSG_DATA_LENGTH. Referenced by SendRequest(). { ULONG i; ULONG ClientIndex; ULONG cbData = MsgLength % (TLPC_MAX_MSG_DATA_LENGTH * sizeof( ULONG )); PULONG ClientMemoryPtr; Msg->h.u1.Length = ((sizeof( Msg->h ) + cbData) << 16) | cbData; Msg->h.u2.ZeroInit = 0; ClientIndex = (ULONG)Context & 0xF; ClientIndex -= 1; if (cbData) { Msg->Data[ 0 ] = (ULONG)Context; ClientMemoryPtr = (PULONG)(ClientMemoryBase + (ClientIndex * 0x1000)); for (i=1; i<(cbData/sizeof(ULONG)); i++) { *ClientMemoryPtr = (ULONG)Context; Msg->Data[ i ] = (ULONG)ClientMemoryPtr + ServerMemoryDelta; ClientMemoryPtr++; } } return( (PPORT_MESSAGE)Msg ); }

NTSTATUS SendRequest (  ULONG  Level, PSZ  ThreadName, HANDLE  PortHandle, PVOID  Context, ULONG  MsgLength, PTLPC_PORTMSG  CallBackTarget, BOOLEAN  ServerCallingClient )

Definition at line 208 of file ulpc.h. References CheckTlpcMsg(), EnterString, _TLPC_PORTMSG::h, InitTlpcMsg(), InnerString, LeaveString, NtReplyWaitReplyPort(), NtRequestWaitReplyPort(), NTSTATUS(), NULL, PortHandle, Request(), and Status. Referenced by ClientThread(), and ServerThread(). { NTSTATUS Status; TLPC_PORTMSG Request, Reply; PTEB Teb = NtCurrentTeb(); fprintf( stderr, "%.*sEnter SendRequest, %lx.%lx", Level, EnterString, Teb->ClientId.UniqueProcess, Teb->ClientId.UniqueThread ); InitTlpcMsg( &Request, Context, MsgLength ); if (CallBackTarget == NULL) { fprintf( stderr, " - Request"); } else { Request.h.u2.s2.Type = LPC_REQUEST; Request.h.ClientId = CallBackTarget->h.ClientId; Request.h.MessageId = CallBackTarget->h.MessageId; fprintf( stderr, " - Callback to %lx.%lx, ID: %ld", Request.h.ClientId.UniqueProcess, Request.h.ClientId.UniqueThread, Request.h.MessageId ); } fprintf( stderr, " (%ld bytes)...\n", Request.h.u1.s1.DataLength ); Status = NtRequestWaitReplyPort( PortHandle, (PPORT_MESSAGE)&Request, (PPORT_MESSAGE)&Reply ); fprintf( stderr, "%.*s %lx.%lx, ID: %u received ", Level, InnerString, Teb->ClientId.UniqueProcess, Teb->ClientId.UniqueThread, Reply.h.MessageId ); if (Reply.h.u2.s2.Type == LPC_REPLY) { if (!CheckTlpcMsg( Status, &Reply )) { Status = STATUS_UNSUCCESSFUL; fprintf( stderr, "SendRequest got invalid reply message at %x\n", &Reply ); DbgBreakPoint(); } } else { fprintf( stderr, "callback from %lx.%lx, ID: %ld", Reply.h.ClientId.UniqueProcess, Reply.h.ClientId.UniqueThread, Reply.h.MessageId ); if (!CheckTlpcMsg( Status, &Reply )) { Status = STATUS_UNSUCCESSFUL; fprintf( stderr, "SendRequest got invalid callback message at %x\n", &Reply ); DbgBreakPoint(); } else { MsgLength = Reply.h.u1.s1.DataLength / 2; if (MsgLength) { Status = SendRequest( Level+1, ThreadName, PortHandle, Context, MsgLength, &Reply, ServerCallingClient ); } if (!ServerCallingClient || Level > 1) { fprintf( stderr, "%.*s %lx.%lx sending ", Level, InnerString, Teb->ClientId.UniqueProcess, Teb->ClientId.UniqueThread ); fprintf( stderr, " callback (%u) reply to %lx.%lx, ID: %u (%ld bytes)...\n", Level, Reply.h.ClientId.UniqueProcess, Reply.h.ClientId.UniqueThread, Reply.h.MessageId, Reply.h.u1.s1.DataLength ); if (Level > 1) { Status = NtReplyWaitReplyPort( PortHandle, (PPORT_MESSAGE)&Reply ); } } } } fprintf( stderr, "%.*sLeave SendRequest, %lx.%lx - Status == %X\n", Level, LeaveString, Teb->ClientId.UniqueProcess, Teb->ClientId.UniqueThread, Status ); return( Status ); }

BOOLEAN ShowHandleOrStatus (  NTSTATUS  Status, HANDLE  Handle )

Definition at line 172 of file ulpc.h. References FALSE, Handle, NT_SUCCESS, Status, and TRUE. Referenced by main(), and ServerHandleConnectionRequest(). { if (NT_SUCCESS( Status )) { fprintf( stderr, " - Handle = 0x%lx\n", Handle ); return( TRUE ); } else { fprintf( stderr, " - *** FAILED *** Status == %X\n", Status ); return( FALSE ); } }

BOOLEAN ShowStatus (  NTSTATUS  Status  )

Definition at line 189 of file ulpc.h. References FALSE, NT_SUCCESS, Status, and TRUE. { if (NT_SUCCESS( Status )) { fprintf( stderr, " - success\n" ); return( TRUE ); } else { fprintf( stderr, " - *** FAILED *** Status == %X\n", Status ); return( FALSE ); } }

---

Variable Documentation

PCH ClientMemoryBase = 0

Definition at line 62 of file ulpc.h. Referenced by CheckTlpcMsg(), InitTlpcMsg(), main(), and ServerHandleConnectionRequest().

ULONG ClientMemorySize = 0

Definition at line 63 of file ulpc.h. Referenced by main(), and ServerHandleConnectionRequest().

SECURITY_QUALITY_OF_SERVICE DynamicQos

Initial value: { SecurityImpersonation, SECURITY_DYNAMIC_TRACKING, TRUE } Definition at line 49 of file ulpc.h. Referenced by ConnectToTerminalServer(), CsrpConnectToServer(), DbgSspConnectToDbg(), DbgUiConnectToDbg(), main(), SepRmCommandServerThreadInit(), and TerminalServerRequestThread().

PCH EnterString = ">>>>>>>>>>"

Definition at line 203 of file ulpc.h. Referenced by SendRequest().

PCH InnerString = "||||||||||"

Definition at line 204 of file ulpc.h. Referenced by SendRequest().

PCH LeaveString = "<<<<<<<<<<"

Definition at line 205 of file ulpc.h. Referenced by SendRequest().

char* LpcMsgTypes[]

Initial value: { "** INVALID **", "LPC_REQUEST", "LPC_REPLY", "LPC_DATAGRAM", "LPC_LOST_REPLY", "LPC_PORT_CLOSED", "LPC_CLIENT_DIED", "LPC_EXCEPTION", "LPC_DEBUG_EVENT", "LPC_ERROR_EVENT", "LPC_CONNECTION_REQUEST", NULL } Definition at line 34 of file ulpc.h. Referenced by ServerThread().

UNICODE_STRING PortName

Definition at line 32 of file ulpc.h. Referenced by ComPortDBAdd(), ConnectToTerminalServer(), CtLnpQos(), CtLpcQos(), DbgSspConnectToDbg(), DbgUiConnectToDbg(), main(), NtConnectPort(), NtSecureConnectPort(), RtlCreateLpcServer(), and TerminalServerRequestThread().

PCH ServerMemoryBase = 0

Definition at line 64 of file ulpc.h. Referenced by main(), and ServerHandleConnectionRequest().

ULONG ServerMemoryDelta = 0

Definition at line 65 of file ulpc.h. Referenced by CheckTlpcMsg(), InitTlpcMsg(), main(), and ServerHandleConnectionRequest().

---