1. Contracting
    1. General
      1. Brexit
    2. Business / Contracts
      1. Coronavirus Assistance
    3. Accounting / Legal
      1. Umbrella Companies
      2. HMRC Scheme Enquiries
      3. The Future of Contracting
      4. IR35 Reform
    4. Technical
    5. Welcome / FAQs
  2. Social
    1. Light Relief
    2. Social / Events
  • Visitors can check out the Forum FAQ by clicking this link. You have to register before you can post: click the REGISTER link above to proceed. To start viewing messages, select the forum that you want to visit from the selection below. View our Forum Privacy Policy.
  • Want to receive the latest contracting news and advice straight to your inbox? Sign up to the ContractorUK newsletter here. Every sign up will also be entered into a draw to WIN £100 Amazon vouchers!

Hard 'C' Question

Collapse
X
1 to 10 of 22 Previous 1 2 3 template Next
Collapse
Reply to Thread
  •  
  • Filter
  • Time
  • Show
Clear All
new posts
1 to 10 of 22 Previous 1 2 3 template Next
    #1

    Hard 'C' Question

    I have written a Kernel mode filter driver, and need to return a instance of a struct back to user mode.

    The struct contains linked lists defined in ntddk.h

    Is is ok to have a user mode app using ntddk.h and LIST_ENTRY linked lists?

    I thought Kernel mode and user mode code should not mix.

    As I say in the thread title, this is a hard question so .Netters need not apply.
    Knock first as I might be balancing my chakras.
    Tags: None
    #2
    Yes.

    HTH

    Comment

      #3
      Originally posted by DimPrawn View Post
      Yes.

      HTH

      Very good, have a lie down now.
      Knock first as I might be balancing my chakras.

      Comment

        #4
        Someone is still using C? That's a blast from the past - installing C++ compiler just now as VS C++ is total tulipe when it comes to inlined assembly in 64 bit mode

        Comment

          #5
          That's not a C question. That's a Unix'y question for the sandaled.
          Will work inside IR35. Or for food.

          Comment

            #6
            Originally posted by VectraMan View Post
            That's not a C question. That's a Windows Vista question for the sandaled.
            FTFY

            struct in Kernel mode looks like

            typedef struct TL_INSPECT_PENDED_PACKET_
            {
            LIST_ENTRY listEntry;

            ADDRESS_FAMILY addressFamily;
            TL_INSPECT_PACKET_TYPE type;
            FWP_DIRECTION direction;

            UINT32 authConnectDecision;
            HANDLE completionContext;

            //
            // Common fields for inbound and outbound traffic.
            //
            UINT8 protocol;
            NET_BUFFER_LIST* netBufferList;
            COMPARTMENT_ID compartmentId;
            union
            {
            FWP_BYTE_ARRAY16 localAddr;
            UINT32 ipv4LocalAddr;
            };
            union
            {
            UINT16 localPort;
            UINT16 icmpType;
            };
            union
            {
            UINT16 remotePort;
            UINT16 icmpCode;
            };

            //
            // Data fields for outbound packet re-injection.
            //
            UINT64 endpointHandle;
            union
            {
            FWP_BYTE_ARRAY16 remoteAddr;
            UINT32 ipv4RemoteAddr;
            };

            SCOPE_ID remoteScopeId;
            WSACMSGHDR* controlData;
            ULONG controlDataLength;

            //
            // Data fields for inbound packet re-injection.
            //
            BOOLEAN ipSecProtected;
            ULONG nblOffset;
            UINT32 ipHeaderSize;
            UINT32 transportHeaderSize;
            IF_INDEX interfaceIndex;
            IF_INDEX subInterfaceIndex;
            } TL_INSPECT_PENDED_PACKET;
            the problem is the user mode app will not have a clue what LIST_ENTRY is, etc etc

            I think I have a hunch that I need to declare them as PVOIDs or something.

            Just need to loosten my sandals I reckon.
            Knock first as I might be balancing my chakras.

            Comment

              #7
              Note to self: read the question properly.

              Just define the same thing in your user mode app? It's just a chunk of memory; the struct is only there to interpret the chunk of memory as something you can use in a more convenient way. Anything you don't need define as something with an equivalent number of bytes.
              Will work inside IR35. Or for food.

              Comment

                #8
                Originally posted by suityou01 View Post
                I have written a Kernel mode filter driver....
                'king 'ell! I was lost after 'Kernel'

                I am soooooooo out of this game.
                How did this happen? Who's to blame? Well certainly there are those more responsible than others, and they will be held accountable, but again truth be told, if you're looking for the guilty, you need only look into a mirror.

                Follow me on Twitter - LinkedIn Profile - The HAB blog - New Blog: Mad Cameron
                Xeno points: +5 - Asperger rating: 36 - Paranoid Schizophrenic rating: 44%

                "We hang the petty thieves and appoint the great ones to high office" - Aesop

                Comment

                  #9
                  Ten years since I did a bit of C and you have brought the fears right back posting that bit of code.

                  *shivers*

                  Comment

                    #10
                    Originally posted by AtW View Post
                    Someone is still using C? That's a blast from the past - installing C++ compiler just now as VS C++ is total tulipe when it comes to inlined assembly in 64 bit mode
                    Assembly is a little more past it than C. What are you doing that can't be achieved using intrinsics BTW? The only time ASM seems needed these days is in SIMD, where you can get massive improvements.
                    Originally posted by MaryPoppins
                    I'd still not breastfeed a nazi
                    Originally posted by vetran
                    Urine is quite nourishing

                    Comment

                    Reply to Thread
                    1 to 10 of 22 Previous 1 2 3 template Next

                    Advertisers

                    1. Contracting
                      1. General
                        1. Brexit
                      2. Business / Contracts
                        1. Coronavirus Assistance
                      3. Accounting / Legal
                        1. Umbrella Companies
                        2. HMRC Scheme Enquiries
                        3. The Future of Contracting
                        4. IR35 Reform
                      4. Technical
                      5. Welcome / FAQs
                    2. Social
                      1. Light Relief
                      2. Social / Events
                    Working...
                    X