1 /*
2 * PROJECT: ReactOS kernel-mode tests
3 * LICENSE: LGPL-2.1+ (https://spdx.org/licenses/LGPL-2.1+)
4 * PURPOSE: Kernel-Mode Test Suite standalone driver routines
5 * COPYRIGHT: Copyright 2011-2018 Thomas Faber <thomas.faber@reactos.org>
6 */
7
8 #include <ntddk.h>
9 #include <ntifs.h>
10 #include <ndk/ketypes.h>
11
12 #define KMT_DEFINE_TEST_FUNCTIONS
13 #include <kmt_test.h>
14
15 #define NDEBUG
16 #include <debug.h>
17
18 #include <kmt_public.h>
19
20 /* types */
21 typedef struct
22 {
23 UCHAR MajorFunction;
24 PDEVICE_OBJECT DeviceObject;
25 PKMT_IRP_HANDLER IrpHandler;
26 } KMT_IRP_HANDLER_ENTRY, *PKMT_IRP_HANDLER_ENTRY;
27
28 typedef struct
29 {
30 ULONG ControlCode;
31 PDEVICE_OBJECT DeviceObject;
32 PKMT_MESSAGE_HANDLER MessageHandler;
33 } KMT_MESSAGE_HANDLER_ENTRY, *PKMT_MESSAGE_HANDLER_ENTRY;
34
35 /* Prototypes */
36 DRIVER_INITIALIZE DriverEntry;
37 static DRIVER_UNLOAD DriverUnload;
38 static DRIVER_DISPATCH DriverDispatch;
39 static KMT_IRP_HANDLER DeviceControlHandler;
40
41 /* Globals */
42 static PDEVICE_OBJECT TestDeviceObject;
43 static PDEVICE_OBJECT KmtestDeviceObject;
44
45 #define KMT_MAX_IRP_HANDLERS 256
46 static KMT_IRP_HANDLER_ENTRY IrpHandlers[KMT_MAX_IRP_HANDLERS] = { { 0 } };
47 #define KMT_MAX_MESSAGE_HANDLERS 256
48 static KMT_MESSAGE_HANDLER_ENTRY MessageHandlers[KMT_MAX_MESSAGE_HANDLERS] = { { 0 } };
49
50 /**
51 * @name DriverEntry
52 *
53 * Driver entry point.
54 *
55 * @param DriverObject
56 * Driver Object
57 * @param RegistryPath
58 * Driver Registry Path
59 *
60 * @return Status
61 */
62 NTSTATUS
63 NTAPI
DriverEntry(IN PDRIVER_OBJECT DriverObject,IN PUNICODE_STRING RegistryPath)64 DriverEntry(
65 IN PDRIVER_OBJECT DriverObject,
66 IN PUNICODE_STRING RegistryPath)
67 {
68 NTSTATUS Status = STATUS_SUCCESS;
69 WCHAR DeviceNameBuffer[128] = L"\\Device\\Kmtest-";
70 UNICODE_STRING KmtestDeviceName;
71 PFILE_OBJECT KmtestFileObject;
72 PKMT_DEVICE_EXTENSION KmtestDeviceExtension;
73 UNICODE_STRING DeviceName;
74 PCWSTR DeviceNameSuffix;
75 INT Flags = 0;
76 int i;
77 PKPRCB Prcb;
78
79 PAGED_CODE();
80
81 DPRINT("DriverEntry\n");
82
83 Prcb = KeGetCurrentPrcb();
84 KmtIsCheckedBuild = (Prcb->BuildType & PRCB_BUILD_DEBUG) != 0;
85 KmtIsMultiProcessorBuild = (Prcb->BuildType & PRCB_BUILD_UNIPROCESSOR) == 0;
86
87 /* get the Kmtest device, so that we get a ResultBuffer pointer */
88 RtlInitUnicodeString(&KmtestDeviceName, KMTEST_DEVICE_DRIVER_PATH);
89 Status = IoGetDeviceObjectPointer(&KmtestDeviceName, FILE_ALL_ACCESS, &KmtestFileObject, &KmtestDeviceObject);
90
91 if (!NT_SUCCESS(Status))
92 {
93 DPRINT1("Failed to get Kmtest device object pointer\n");
94 goto cleanup;
95 }
96
97 Status = ObReferenceObjectByPointer(KmtestDeviceObject, FILE_ALL_ACCESS, NULL, KernelMode);
98
99 if (!NT_SUCCESS(Status))
100 {
101 DPRINT1("Failed to reference Kmtest device object\n");
102 goto cleanup;
103 }
104
105 ObDereferenceObject(KmtestFileObject);
106 KmtestFileObject = NULL;
107 KmtestDeviceExtension = KmtestDeviceObject->DeviceExtension;
108 ResultBuffer = KmtestDeviceExtension->ResultBuffer;
109 DPRINT("KmtestDeviceObject: %p\n", (PVOID)KmtestDeviceObject);
110 DPRINT("KmtestDeviceExtension: %p\n", (PVOID)KmtestDeviceExtension);
111 DPRINT("Setting ResultBuffer: %p\n", (PVOID)ResultBuffer);
112
113 /* call TestEntry */
114 RtlInitUnicodeString(&DeviceName, DeviceNameBuffer);
115 DeviceName.MaximumLength = sizeof DeviceNameBuffer;
116 TestEntry(DriverObject, RegistryPath, &DeviceNameSuffix, &Flags);
117
118 /* create test device */
119 if (!(Flags & TESTENTRY_NO_CREATE_DEVICE))
120 {
121 RtlAppendUnicodeToString(&DeviceName, DeviceNameSuffix);
122 Status = IoCreateDevice(DriverObject, 0, &DeviceName,
123 FILE_DEVICE_UNKNOWN,
124 FILE_DEVICE_SECURE_OPEN |
125 (Flags & TESTENTRY_NO_READONLY_DEVICE ? 0 : FILE_READ_ONLY_DEVICE),
126 Flags & TESTENTRY_NO_EXCLUSIVE_DEVICE ? FALSE : TRUE,
127 &TestDeviceObject);
128
129 if (!NT_SUCCESS(Status))
130 {
131 DPRINT1("Could not create device object %wZ\n", &DeviceName);
132 goto cleanup;
133 }
134
135 if (Flags & TESTENTRY_BUFFERED_IO_DEVICE)
136 TestDeviceObject->Flags |= DO_BUFFERED_IO;
137
138 DPRINT("DriverEntry. Created DeviceObject %p\n",
139 TestDeviceObject);
140 }
141
142 /* initialize dispatch functions */
143 if (!(Flags & TESTENTRY_NO_REGISTER_UNLOAD))
144 DriverObject->DriverUnload = DriverUnload;
145 if (!(Flags & TESTENTRY_NO_REGISTER_DISPATCH))
146 for (i = 0; i <= IRP_MJ_MAXIMUM_FUNCTION; ++i)
147 DriverObject->MajorFunction[i] = DriverDispatch;
148
149 cleanup:
150 if (TestDeviceObject && !NT_SUCCESS(Status))
151 {
152 IoDeleteDevice(TestDeviceObject);
153 TestDeviceObject = NULL;
154 }
155
156 if (KmtestDeviceObject && !NT_SUCCESS(Status))
157 {
158 ObDereferenceObject(KmtestDeviceObject);
159 KmtestDeviceObject = NULL;
160 if (KmtestFileObject)
161 ObDereferenceObject(KmtestFileObject);
162 }
163
164 return Status;
165 }
166
167 /**
168 * @name DriverUnload
169 *
170 * Driver cleanup funtion.
171 *
172 * @param DriverObject
173 * Driver Object
174 */
175 static
176 VOID
177 NTAPI
DriverUnload(IN PDRIVER_OBJECT DriverObject)178 DriverUnload(
179 IN PDRIVER_OBJECT DriverObject)
180 {
181 PAGED_CODE();
182
183 UNREFERENCED_PARAMETER(DriverObject);
184
185 DPRINT("DriverUnload\n");
186
187 TestUnload(DriverObject);
188
189 if (TestDeviceObject)
190 IoDeleteDevice(TestDeviceObject);
191
192 if (KmtestDeviceObject)
193 ObDereferenceObject(KmtestDeviceObject);
194 }
195
196 /**
197 * @name KmtRegisterIrpHandler
198 *
199 * Register a handler with the IRP Dispatcher.
200 * If multiple registered handlers match an IRP, it is unspecified which of
201 * them is called on IRP reception
202 *
203 * @param MajorFunction
204 * IRP major function code to be handled
205 * @param DeviceObject
206 * Device Object to handle IRPs for.
207 * Can be NULL to indicate any device object
208 * @param IrpHandler
209 * Handler function to register.
210 *
211 * @return Status
212 */
213 NTSTATUS
KmtRegisterIrpHandler(IN UCHAR MajorFunction,IN PDEVICE_OBJECT DeviceObject OPTIONAL,IN PKMT_IRP_HANDLER IrpHandler)214 KmtRegisterIrpHandler(
215 IN UCHAR MajorFunction,
216 IN PDEVICE_OBJECT DeviceObject OPTIONAL,
217 IN PKMT_IRP_HANDLER IrpHandler)
218 {
219 NTSTATUS Status = STATUS_SUCCESS;
220 int i;
221
222 if (MajorFunction > IRP_MJ_MAXIMUM_FUNCTION)
223 {
224 Status = STATUS_INVALID_PARAMETER_1;
225 goto cleanup;
226 }
227
228 if (IrpHandler == NULL)
229 {
230 Status = STATUS_INVALID_PARAMETER_3;
231 goto cleanup;
232 }
233
234 for (i = 0; i < sizeof IrpHandlers / sizeof IrpHandlers[0]; ++i)
235 if (IrpHandlers[i].IrpHandler == NULL)
236 {
237 IrpHandlers[i].MajorFunction = MajorFunction;
238 IrpHandlers[i].DeviceObject = DeviceObject;
239 IrpHandlers[i].IrpHandler = IrpHandler;
240 goto cleanup;
241 }
242
243 Status = STATUS_ALLOTTED_SPACE_EXCEEDED;
244
245 cleanup:
246 return Status;
247 }
248
249 /**
250 * @name KmtUnregisterIrpHandler
251 *
252 * Unregister a handler with the IRP Dispatcher.
253 * Parameters must be specified exactly as in the call to
254 * KmtRegisterIrpHandler. Only the first matching entry will be removed
255 * if multiple exist
256 *
257 * @param MajorFunction
258 * IRP major function code of the handler to be removed
259 * @param DeviceObject
260 * Device Object to of the handler to be removed
261 * @param IrpHandler
262 * Handler function of the handler to be removed
263 *
264 * @return Status
265 */
266 NTSTATUS
KmtUnregisterIrpHandler(IN UCHAR MajorFunction,IN PDEVICE_OBJECT DeviceObject OPTIONAL,IN PKMT_IRP_HANDLER IrpHandler)267 KmtUnregisterIrpHandler(
268 IN UCHAR MajorFunction,
269 IN PDEVICE_OBJECT DeviceObject OPTIONAL,
270 IN PKMT_IRP_HANDLER IrpHandler)
271 {
272 NTSTATUS Status = STATUS_SUCCESS;
273 int i;
274
275 for (i = 0; i < sizeof IrpHandlers / sizeof IrpHandlers[0]; ++i)
276 if (IrpHandlers[i].MajorFunction == MajorFunction &&
277 IrpHandlers[i].DeviceObject == DeviceObject &&
278 IrpHandlers[i].IrpHandler == IrpHandler)
279 {
280 IrpHandlers[i].IrpHandler = NULL;
281 goto cleanup;
282 }
283
284 Status = STATUS_NOT_FOUND;
285
286 cleanup:
287 return Status;
288 }
289
290 /**
291 * @name DriverDispatch
292 *
293 * Driver Dispatch function
294 *
295 * @param DeviceObject
296 * Device Object
297 * @param Irp
298 * I/O request packet
299 *
300 * @return Status
301 */
302 static
303 NTSTATUS
304 NTAPI
DriverDispatch(IN PDEVICE_OBJECT DeviceObject,IN PIRP Irp)305 DriverDispatch(
306 IN PDEVICE_OBJECT DeviceObject,
307 IN PIRP Irp)
308 {
309 NTSTATUS Status = STATUS_INVALID_DEVICE_REQUEST;
310 PIO_STACK_LOCATION IoStackLocation;
311 int i;
312
313 IoStackLocation = IoGetCurrentIrpStackLocation(Irp);
314
315 DPRINT("DriverDispatch: Function=%s, Device=%p\n",
316 KmtMajorFunctionNames[IoStackLocation->MajorFunction],
317 DeviceObject);
318
319 for (i = 0; i < sizeof IrpHandlers / sizeof IrpHandlers[0]; ++i)
320 {
321 if (IrpHandlers[i].MajorFunction == IoStackLocation->MajorFunction &&
322 (IrpHandlers[i].DeviceObject == NULL || IrpHandlers[i].DeviceObject == DeviceObject) &&
323 IrpHandlers[i].IrpHandler != NULL)
324 return IrpHandlers[i].IrpHandler(DeviceObject, Irp, IoStackLocation);
325 }
326
327 /* default handler for DeviceControl */
328 if (IoStackLocation->MajorFunction == IRP_MJ_DEVICE_CONTROL ||
329 IoStackLocation->MajorFunction == IRP_MJ_INTERNAL_DEVICE_CONTROL)
330 return DeviceControlHandler(DeviceObject, Irp, IoStackLocation);
331
332 /* Return success for create, close, and cleanup */
333 if (IoStackLocation->MajorFunction == IRP_MJ_CREATE ||
334 IoStackLocation->MajorFunction == IRP_MJ_CLOSE ||
335 IoStackLocation->MajorFunction == IRP_MJ_CLEANUP)
336 Status = STATUS_SUCCESS;
337
338 /* default handler */
339 Irp->IoStatus.Status = Status;
340 Irp->IoStatus.Information = 0;
341
342 IoCompleteRequest(Irp, IO_NO_INCREMENT);
343
344 return Status;
345 }
346
347 /**
348 * @name KmtRegisterMessageHandler
349 *
350 * Register a handler with the DeviceControl Dispatcher.
351 * If multiple registered handlers match a message, it is unspecified which of
352 * them is called on message reception.
353 * NOTE: message handlers registered with this function will not be called
354 * if a custom IRP handler matching the corresponding IRP is installed!
355 *
356 * @param ControlCode
357 * Control code to be handled, as passed by the application.
358 * Can be 0 to indicate any control code
359 * @param DeviceObject
360 * Device Object to handle IRPs for.
361 * Can be NULL to indicate any device object
362 * @param MessageHandler
363 * Handler function to register.
364 *
365 * @return Status
366 */
367 NTSTATUS
KmtRegisterMessageHandler(IN ULONG ControlCode OPTIONAL,IN PDEVICE_OBJECT DeviceObject OPTIONAL,IN PKMT_MESSAGE_HANDLER MessageHandler)368 KmtRegisterMessageHandler(
369 IN ULONG ControlCode OPTIONAL,
370 IN PDEVICE_OBJECT DeviceObject OPTIONAL,
371 IN PKMT_MESSAGE_HANDLER MessageHandler)
372 {
373 NTSTATUS Status = STATUS_SUCCESS;
374 int i;
375
376 if (ControlCode >= 0x400)
377 {
378 Status = STATUS_INVALID_PARAMETER_1;
379 goto cleanup;
380 }
381
382 if (MessageHandler == NULL)
383 {
384 Status = STATUS_INVALID_PARAMETER_2;
385 goto cleanup;
386 }
387
388 for (i = 0; i < sizeof MessageHandlers / sizeof MessageHandlers[0]; ++i)
389 if (MessageHandlers[i].MessageHandler == NULL)
390 {
391 MessageHandlers[i].ControlCode = ControlCode;
392 MessageHandlers[i].DeviceObject = DeviceObject;
393 MessageHandlers[i].MessageHandler = MessageHandler;
394 goto cleanup;
395 }
396
397 Status = STATUS_ALLOTTED_SPACE_EXCEEDED;
398
399 cleanup:
400 return Status;
401 }
402
403 /**
404 * @name KmtUnregisterMessageHandler
405 *
406 * Unregister a handler with the DeviceControl Dispatcher.
407 * Parameters must be specified exactly as in the call to
408 * KmtRegisterMessageHandler. Only the first matching entry will be removed
409 * if multiple exist
410 *
411 * @param ControlCode
412 * Control code of the handler to be removed
413 * @param DeviceObject
414 * Device Object to of the handler to be removed
415 * @param MessageHandler
416 * Handler function of the handler to be removed
417 *
418 * @return Status
419 */
420 NTSTATUS
KmtUnregisterMessageHandler(IN ULONG ControlCode OPTIONAL,IN PDEVICE_OBJECT DeviceObject OPTIONAL,IN PKMT_MESSAGE_HANDLER MessageHandler)421 KmtUnregisterMessageHandler(
422 IN ULONG ControlCode OPTIONAL,
423 IN PDEVICE_OBJECT DeviceObject OPTIONAL,
424 IN PKMT_MESSAGE_HANDLER MessageHandler)
425 {
426 NTSTATUS Status = STATUS_SUCCESS;
427 int i;
428
429 for (i = 0; i < sizeof MessageHandlers / sizeof MessageHandlers[0]; ++i)
430 if (MessageHandlers[i].ControlCode == ControlCode &&
431 MessageHandlers[i].DeviceObject == DeviceObject &&
432 MessageHandlers[i].MessageHandler == MessageHandler)
433 {
434 MessageHandlers[i].MessageHandler = NULL;
435 goto cleanup;
436 }
437
438 Status = STATUS_NOT_FOUND;
439
440 cleanup:
441 return Status;
442 }
443
444 /**
445 * @name DeviceControlHandler
446 *
447 * Default IRP_MJ_DEVICE_CONTROL/IRP_MJ_INTERNAL_DEVICE_CONTROL handler
448 *
449 * @param DeviceObject
450 * Device Object.
451 * This is guaranteed not to have been touched by the dispatch function
452 * before the call to the IRP handler
453 * @param Irp
454 * Device Object.
455 * This is guaranteed not to have been touched by the dispatch function
456 * before the call to the IRP handler, except for passing it to
457 * IoGetCurrentStackLocation
458 * @param IoStackLocation
459 * Device Object.
460 * This is guaranteed not to have been touched by the dispatch function
461 * before the call to the IRP handler
462 *
463 * @return Status
464 */
465 static
466 NTSTATUS
DeviceControlHandler(IN PDEVICE_OBJECT DeviceObject,IN PIRP Irp,IN PIO_STACK_LOCATION IoStackLocation)467 DeviceControlHandler(
468 IN PDEVICE_OBJECT DeviceObject,
469 IN PIRP Irp,
470 IN PIO_STACK_LOCATION IoStackLocation)
471 {
472 NTSTATUS Status = STATUS_SUCCESS;
473 ULONG ControlCode = (IoStackLocation->Parameters.DeviceIoControl.IoControlCode & 0x00000FFC) >> 2;
474 SIZE_T OutLength = IoStackLocation->Parameters.DeviceIoControl.OutputBufferLength;
475 int i;
476
477 for (i = 0; i < sizeof MessageHandlers / sizeof MessageHandlers[0]; ++i)
478 {
479 if ((MessageHandlers[i].ControlCode == 0 ||
480 MessageHandlers[i].ControlCode == ControlCode) &&
481 (MessageHandlers[i].DeviceObject == NULL || MessageHandlers[i].DeviceObject == DeviceObject) &&
482 MessageHandlers[i].MessageHandler != NULL)
483 {
484 Status = MessageHandlers[i].MessageHandler(DeviceObject, ControlCode, Irp->AssociatedIrp.SystemBuffer,
485 IoStackLocation->Parameters.DeviceIoControl.InputBufferLength,
486 &OutLength);
487 break;
488 }
489 }
490
491 Irp->IoStatus.Status = Status;
492 Irp->IoStatus.Information = OutLength;
493
494 IoCompleteRequest(Irp, IO_NO_INCREMENT);
495
496 return Status;
497 }
498