1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
|
/* A filing system handle
(C) 2017 Niall Douglas <http://www.nedproductions.biz/> (20 commits)
File Created: Aug 2017
Licensed under the Apache License, Version 2.0 (the "License");
you may not use this file except in compliance with the License.
You may obtain a copy of the License in the accompanying file
Licence.txt or at
http://www.apache.org/licenses/LICENSE-2.0
Unless required by applicable law or agreed to in writing, software
distributed under the License is distributed on an "AS IS" BASIS,
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
See the License for the specific language governing permissions and
limitations under the License.
Distributed under the Boost Software License, Version 1.0.
(See accompanying file Licence.txt or copy at
http://www.boost.org/LICENSE_1_0.txt)
*/
#include "../../../fs_handle.hpp"
#include "../../../stat.hpp"
#include "../../../utils.hpp"
#include "import.hpp"
LLFIO_V2_NAMESPACE_BEGIN
result<void> fs_handle::_fetch_inode() const noexcept
{
stat_t s;
OUTCOME_TRYV(s.fill(_get_handle(), stat_t::want::dev | stat_t::want::ino));
_devid = s.st_dev;
_inode = s.st_ino;
return success();
}
result<path_handle> fs_handle::parent_path_handle(deadline d) const noexcept
{
windows_nt_kernel::init();
using namespace windows_nt_kernel;
LLFIO_LOG_FUNCTION_CALL(this);
auto &h = _get_handle();
LLFIO_WIN_DEADLINE_TO_SLEEP_INIT(d);
if(_devid == 0 && _inode == 0)
{
OUTCOME_TRY(_fetch_inode());
}
try
{
for(;;)
{
// Get current path for handle and open its containing dir
OUTCOME_TRY(currentpath, h.current_path());
// If current path is empty, it's been deleted
if(currentpath.empty())
{
return errc::no_such_file_or_directory;
}
// Split the path into root and leafname
filesystem::path filename = currentpath.filename();
currentpath.remove_filename();
/* We have to be super careful here because \Device\HarddiskVolume4 != \Device\HarddiskVolume4\!
The former opens the device, the latter the root directory of the device.
*/
const_cast<filesystem::path::string_type &>(currentpath.native()).push_back('\\');
auto currentdirh_ = path_handle::path(currentpath);
if(!currentdirh_)
{
continue;
}
path_handle currentdirh = std::move(currentdirh_.value());
if((h.flags() & handle::flag::disable_safety_unlinks) != 0 || h.is_symlink())
{
return success(std::move(currentdirh));
}
DWORD fileshare = FILE_SHARE_READ | FILE_SHARE_WRITE | FILE_SHARE_DELETE;
IO_STATUS_BLOCK isb = make_iostatus();
path_view::c_str zpath(filename, true);
UNICODE_STRING _path{};
_path.Buffer = const_cast<wchar_t *>(zpath.buffer);
_path.MaximumLength = (_path.Length = static_cast<USHORT>(zpath.length * sizeof(wchar_t))) + sizeof(wchar_t);
OBJECT_ATTRIBUTES oa{};
memset(&oa, 0, sizeof(oa));
oa.Length = sizeof(OBJECT_ATTRIBUTES);
oa.ObjectName = &_path;
oa.RootDirectory = currentdirh.native_handle().h;
LARGE_INTEGER AllocationSize{};
memset(&AllocationSize, 0, sizeof(AllocationSize));
HANDLE nh = nullptr;
NTSTATUS ntstat = NtCreateFile(&nh, SYNCHRONIZE, &oa, &isb, &AllocationSize, 0, fileshare, 0x00000001 /*FILE_OPEN*/, 0x20 /*FILE_SYNCHRONOUS_IO_NONALERT*/, nullptr, 0);
if(STATUS_SUCCESS != ntstat)
{
if(static_cast<NTSTATUS>(0xC000000F) /*STATUS_NO_SUCH_FILE*/ == ntstat || static_cast<NTSTATUS>(0xC0000034) /*STATUS_OBJECT_NAME_NOT_FOUND*/ == ntstat)
{
continue;
}
return ntkernel_error(ntstat);
}
auto unnh = undoer([nh] { CloseHandle(nh); });
(void) unnh;
isb.Status = -1;
FILE_INTERNAL_INFORMATION fii{};
ntstat = NtQueryInformationFile(nh, &isb, &fii, sizeof(fii), FileInternalInformation);
if(STATUS_SUCCESS != ntstat)
{
continue;
}
// If the same, we know for a fact that this is the correct containing dir for now at least
// FIXME: We are not comparing device number, that's faked as the volume number in stat_t
if(static_cast<ino_t>(fii.IndexNumber.QuadPart) == _inode)
{
return success(std::move(currentdirh));
}
LLFIO_WIN_DEADLINE_TO_TIMEOUT(d);
}
}
catch(...)
{
return error_from_exception();
}
}
result<void> fs_handle::relink(const path_handle &base, path_view_type path, bool atomic_replace, deadline d) noexcept
{
windows_nt_kernel::init();
using namespace windows_nt_kernel;
LLFIO_LOG_FUNCTION_CALL(this);
auto &h = _get_handle();
// If the target is a win32 path, we need to convert to NT path and call ourselves
if(!base.is_valid() && !path.is_ntpath())
{
path_view::c_str zpath(path, false);
UNICODE_STRING NtPath{};
if(RtlDosPathNameToNtPathName_U(zpath.buffer, &NtPath, nullptr, nullptr) == 0u)
{
return win32_error(ERROR_FILE_NOT_FOUND);
}
auto unntpath = undoer([&NtPath] {
if(HeapFree(GetProcessHeap(), 0, NtPath.Buffer) == 0)
{
abort();
}
});
// RtlDosPathNameToNtPathName_U outputs \??\path, so path.is_ntpath() will be false.
return relink(base, wstring_view(NtPath.Buffer, NtPath.Length / sizeof(wchar_t)));
}
path_view::c_str zpath(path, true);
UNICODE_STRING _path{};
_path.Buffer = const_cast<wchar_t *>(zpath.buffer);
_path.MaximumLength = (_path.Length = static_cast<USHORT>(zpath.length * sizeof(wchar_t))) + sizeof(wchar_t);
if(zpath.length >= 4 && _path.Buffer[0] == '\\' && _path.Buffer[1] == '!' && _path.Buffer[2] == '!' && _path.Buffer[3] == '\\')
{
_path.Buffer += 3;
_path.Length -= 3 * sizeof(wchar_t);
_path.MaximumLength -= 3 * sizeof(wchar_t);
}
IO_STATUS_BLOCK isb = make_iostatus();
alignas(8) char buffer[sizeof(FILE_RENAME_INFORMATION) + 65536];
auto *fni = reinterpret_cast<FILE_RENAME_INFORMATION *>(buffer);
fni->Flags = atomic_replace ? 0x1 /*FILE_RENAME_REPLACE_IF_EXISTS*/ : 0;
fni->Flags |= 0x2 /*FILE_RENAME_POSIX_SEMANTICS*/;
fni->RootDirectory = base.is_valid() ? base.native_handle().h : nullptr;
fni->FileNameLength = _path.Length;
memcpy(fni->FileName, _path.Buffer, fni->FileNameLength);
NTSTATUS ntstat = NtSetInformationFile(h.native_handle().h, &isb, fni, sizeof(FILE_RENAME_INFORMATION) + fni->FileNameLength, FileRenameInformation);
if(STATUS_PENDING == ntstat)
{
ntstat = ntwait(h.native_handle().h, isb, d);
}
if(ntstat < 0)
{
return ntkernel_error(ntstat);
}
return success();
}
result<void> fs_handle::unlink(deadline d) noexcept
{
using flag = handle::flag;
windows_nt_kernel::init();
using namespace windows_nt_kernel;
LLFIO_LOG_FUNCTION_CALL(this);
auto &h = _get_handle();
HANDLE duph;
// Try by POSIX delete first
{
OBJECT_ATTRIBUTES oa{};
memset(&oa, 0, sizeof(oa));
oa.Length = sizeof(OBJECT_ATTRIBUTES);
// It is entirely undocumented that this is how you clone a file handle with new privs
UNICODE_STRING _path{};
memset(&_path, 0, sizeof(_path));
oa.ObjectName = &_path;
oa.RootDirectory = h.native_handle().h;
IO_STATUS_BLOCK isb = make_iostatus();
DWORD ntflags = 0x20 /*FILE_SYNCHRONOUS_IO_NONALERT*/;
if(h.is_symlink())
ntflags |= 0x00200000 /*FILE_OPEN_REPARSE_POINT*/;
NTSTATUS ntstat = NtOpenFile(&duph, SYNCHRONIZE | DELETE, &oa, &isb, FILE_SHARE_READ | FILE_SHARE_WRITE | FILE_SHARE_DELETE, ntflags);
if(ntstat < 0)
{
return ntkernel_error(ntstat);
}
}
auto unduph = undoer([&duph] { CloseHandle(duph); });
(void) unduph;
bool failed = true;
// Try POSIX delete first, this will fail on Windows 10 before 1709, or if not NTFS
{
IO_STATUS_BLOCK isb = make_iostatus();
FILE_DISPOSITION_INFORMATION_EX fdie{};
memset(&fdie, 0, sizeof(fdie));
fdie.Flags = 0x1 /*FILE_DISPOSITION_DELETE*/ | 0x2 /*FILE_DISPOSITION_POSIX_SEMANTICS*/;
NTSTATUS ntstat = NtSetInformationFile(duph, &isb, &fdie, sizeof(fdie), FileDispositionInformationEx);
if(ntstat >= 0)
{
failed = false;
}
}
if(failed)
{
if((h.is_regular() || h.is_symlink()) && !(h.flags() & flag::win_disable_unlink_emulation))
{
// Rename it to something random to emulate immediate unlinking
std::string randomname;
try
{
randomname = utils::random_string(32);
randomname.append(".deleted");
}
catch(...)
{
return error_from_exception();
}
OUTCOME_TRY(dirh, parent_path_handle(d));
result<void> out = relink(dirh, randomname);
if(!out)
{
// If something else is using it, we may not be able to rename
// This error also annoyingly appears if the file has delete on close set on it already
if(out.error().value() == static_cast<int>(0xC0000043) /*STATUS_SHARING_VIOLATION*/)
{
LLFIO_LOG_WARN(this, "Failed to rename entry to random name to simulate immediate unlinking due to STATUS_SHARING_VIOLATION, skipping");
}
else
{
return out.error();
}
}
}
// No point marking it for deletion if it's already been so
if(!(h.flags() & flag::unlink_on_first_close))
{
// Hide the item in Explorer and the command line
{
IO_STATUS_BLOCK isb = make_iostatus();
FILE_BASIC_INFORMATION fbi{};
memset(&fbi, 0, sizeof(fbi));
fbi.FileAttributes = FILE_ATTRIBUTE_HIDDEN;
NTSTATUS ntstat = NtSetInformationFile(h.native_handle().h, &isb, &fbi, sizeof(fbi), FileBasicInformation);
if(STATUS_PENDING == ntstat)
{
ntstat = ntwait(h.native_handle().h, isb, d);
}
(void) ntstat;
}
// Mark the item as delete on close
IO_STATUS_BLOCK isb = make_iostatus();
FILE_DISPOSITION_INFORMATION fdi{};
memset(&fdi, 0, sizeof(fdi));
fdi._DeleteFile = 1u;
NTSTATUS ntstat = NtSetInformationFile(duph, &isb, &fdi, sizeof(fdi), FileDispositionInformation);
if(STATUS_PENDING == ntstat)
{
ntstat = ntwait(duph, isb, d);
}
if(ntstat < 0)
{
return ntkernel_error(ntstat);
}
}
}
return success();
}
LLFIO_V2_NAMESPACE_END
|
