Presentation is loading. Please wait.

Presentation is loading. Please wait.

Win32 Programming Lesson 7: Kernel Objects. Abstract  Many of the concepts we’ll look at today won’t make complete sense until you use them  However,

Published byJared Cummings Modified over 8 years ago

Similar presentations

Presentation on theme: "Win32 Programming Lesson 7: Kernel Objects. Abstract  Many of the concepts we’ll look at today won’t make complete sense until you use them  However,"— Presentation transcript:

1 Win32 Programming Lesson 7: Kernel Objects

2 Abstract  Many of the concepts we’ll look at today won’t make complete sense until you use them  However, it’s impossible to talk about Windows without understanding how the API’s interact with Kernel Objects

3 What is a Kernel Object?  Any time you write Windows code you’re probably manipulating Kernel objects and you just don’t know it  Examples: Access token objects Event objects File objects File-mapping objects The list goes on and on

4 Manipulation of Kernel Objects  Cannot be carried out directly from an application Portability Security Consistency  Only manipulated via specific APIs Via a HANDLE object

5 HANDLES  Each HANDLE is process relative Huh? If this is the case, how can we share objects across processes? We’ll look at 3 mechanisms today

6 Usage Tracking  Kernel objects are owned by the Kernel not the process Not necessarily destroyed on process exit Kernel tracks usage of the object when assigning handles to processes

7 Security  Protected with a security descriptor Who created the object Who can access the object Usually used for server applications, not client

8 Example  HANDLE CreateFileMapping ( HANDLE hFile, PSECURITY_ATTRIBUTES psa, DWORD flProtect, DWORD dwMaximumSizeHigh, DWORD dwMaximumSizeLow, PCTSTR pszName );

9 Security Attributes  typedef struct _SECURITY_ATTRIBUTES { DWORD nLength; LPVOID lpSecurityDescriptor; BOOL bInheritHandle; } SECURITY_ATTRIBUTES;

10 Security Attributes (cntd)  SECURITY_ATTRIBUTES sa; sa.nLength = sizeof(sa); // Used for versioning sa.lpSecurityDescriptor = pSD; // Address of an initialized SD sa.bInheritHandle = FALSE; // Discussed later HANDLE hFileMapping = CreateFileMapping( INVALID_HANDLE_VALUE, &sa, PAGE_READWRITE, 0, 1024, "MyFileMapping“ );

11 Existing Objects  When you open an existing object, you must specify what access you want HANDLE hFileMapping = OpenFileMapping(FI LE_MAP_READ, FALSE, "MyFileMapping") ;  FILE_MAP_READ allows the correct security check to be performed  If it fails, we can call…? ERROR_ACCESS_DENIED

12 Kernel Object Handle Table  Created when a process is created  Details are undocumented, but it gives you a feel for how it works IndexPointer to Kernel Memory Block Access Mask (DWORD) Flags 10x???????? 2 …………

13 Failure!  Unfortunately, Windows isn’t 100% consistent  Failure usually returns: 0 (NULL) -1 (INVALID_HANDLE_VALUE) You must check the actual API in question (sorry)

14 CloseHandle  Of course, we have to close the handles we open BOOL CloseHandle (HANDLE hObj)  Sets GetLastError on failure  What happens if we don’t do this?

15 Sharing Process Objects  Object Handle Inheritance  Named Objects  Duplicating Objects

16 Inheritance  Used when we have a parent-child relationship between processes  Gives the Children controlled access to the parent’s handles Create an Inheritable Handle Spawn a new Process Pass the inherited handle (often by command-line option) The details are in the book – read them!

17 Named Objects  Many Kernel Objects can be named  We can then use the name to access the object from another thread  See, for example, CreateMutex, CreateEvent etc.  All have the same parameter: pszName

18 Example: CreateMutexCreateMutex  Process A: HANDLE hMutexProcessA = CreateMutex(NULL, FALSE, “Panther”);  Process B: HANDLE hMutexProcessB = CreateMutex(NULL, FALSE, “Panther”); Now, checks for a Mutex with name Panther If found, checks access rights; if allowed, creates entry in the Process’ Handle table

19 Alernative Approach: Open  Use OpenMutex instead of CreateMutex  Main difference: Open can only open an existing Mutex – it can never Create one  Often used to prevent multiple instances of the same application from running  See example: OneOnly

20 Duplicate Object Handles  Final option is to create a duplicate copy of a handle, and use a regular IPC to pass the new handle through  The call is DuplicateHandle Makes an entry in the handle table of another process

21 Example: Limiting Access  Suppose we have a FileMapping object in our system.  We wish to pass READ ONLY access to this object to one of our functions  Would be nice if we could pass a read only handle… and we can, by using DuplicateHandle

22 Example  HANDLE hFileMapRW = CreateFileMapping( INVALID_HANDLE_VALUE, NULL, PAGE_READWRITE, 0, 10240, NULL); HANDLE hFileMapRO; DuplicateHandle( GetCurrentProcess(), hFileMapRW, GetCurrentProcess(), &hFileMapRO, FILE_MAP_READ, FALSE, 0); // Pass the RO handle… MyROFunction(hFileMapRO); CloseHandle(hFileMapRO); CloseHandle(hFileMapRW);

Download ppt "Win32 Programming Lesson 7: Kernel Objects. Abstract  Many of the concepts we’ll look at today won’t make complete sense until you use them  However,"

Similar presentations

Lesson 12: Kernel-mode Thread Sync (aka: Why I love Gentoo)

Lesson 12: Kernel-mode Thread Sync (aka: Why I love Gentoo)
Win32 Programming Lesson 8: Processes. Where are we?  We’re starting to have some foundational understanding of Windows  But really, we don’t know how.

Win32 Programming Lesson 8: Processes. Where are we?  We’re starting to have some foundational understanding of Windows  But really, we don’t know how.
Silberschatz, Galvin and Gagne ©2009Operating System Concepts – 8 th Edition Chapter 4: Threads.

Silberschatz, Galvin and Gagne ©2009Operating System Concepts – 8 th Edition Chapter 4: Threads.
Win32 Programming Lesson 5: Error Codes. Before We Begin  Much of the time in this class we’ll be calling Win32 Functions  However, sometimes they’re.

Win32 Programming Lesson 5: Error Codes. Before We Begin  Much of the time in this class we’ll be calling Win32 Functions  However, sometimes they’re.
Georgia Institute of Technology Workshop for CS-AP Teachers Chapter 3 Advanced Object-Oriented Concepts.

Georgia Institute of Technology Workshop for CS-AP Teachers Chapter 3 Advanced Object-Oriented Concepts.
1 Processes and Pipes COS 217 Professor Jennifer Rexford.

1 Processes and Pipes COS 217 Professor Jennifer Rexford.
1 Processes and Pipes. 2 He was below me. I saw his markings, manoeuvred myself behind him and shot him down. If I had known it was Saint-Exupery, I.

1 Processes and Pipes. 2 "He was below me. I saw his markings, manoeuvred myself behind him and shot him down. If I had known it was Saint-Exupery, I.
Page 1 Processes and Threads Chapter 2 2.1 Processes 2.2 Threads 2.3 Interprocess communication 2.4 Classical IPC problems 2.5 Scheduling.

Page 1 Processes and Threads Chapter Processes 2.2 Threads 2.3 Interprocess communication 2.4 Classical IPC problems 2.5 Scheduling.
ISP – 3 rd Recitation “The joy of Windows API” Processes Threads Handles Relevant functions A simple code example.

ISP – 3 rd Recitation “The joy of Windows API” Processes Threads Handles Relevant functions A simple code example.
1 JMH Associates © 2004, All rights reserved Chapter 15 Windows System Security.

1 JMH Associates © 2004, All rights reserved Chapter 15 Windows System Security.
3.5 Interprocess Communication Many operating systems provide mechanisms for interprocess communication (IPC) –Processes must communicate with one another.

3.5 Interprocess Communication Many operating systems provide mechanisms for interprocess communication (IPC) –Processes must communicate with one another.
3.5 Interprocess Communication

3.5 Interprocess Communication
CSE 451 Section 4 Project 2 Design Considerations.

CSE 451 Section 4 Project 2 Design Considerations.
Threads CNS 3670. What is a thread?  an independent unit of execution within a process  a lightweight process  an independent unit of execution within.

Threads CNS What is a thread?  an independent unit of execution within a process  a "lightweight process"  an independent unit of execution within.
Process Description and Control A process is sometimes called a task, it is a program in execution.

Process Description and Control A process is sometimes called a task, it is a program in execution.
1 JMH Associates © 2004, All rights reserved Chapter 1 Getting Started with Win32/64.

1 JMH Associates © 2004, All rights reserved Chapter 1 Getting Started with Win32/64.
Chapter 4: Threads. 4.2 Silberschatz, Galvin and Gagne ©2005 Operating System Concepts Chapter 4: Threads Overview Multithreading Models Threading Issues.

Chapter 4: Threads. 4.2 Silberschatz, Galvin and Gagne ©2005 Operating System Concepts Chapter 4: Threads Overview Multithreading Models Threading Issues.
BINA RAMAMURTHY UNIVERSITY AT BUFFALO System Structure and Process Model 5/30/2013 Amrita-UB-MSES-2013-3 1.

BINA RAMAMURTHY UNIVERSITY AT BUFFALO System Structure and Process Model 5/30/2013 Amrita-UB-MSES
SimCorp Dimension 64-bit Migration Project Dyalog '11, Boston Stig Nielsen, SimCorp A/S.

SimCorp Dimension 64-bit Migration Project Dyalog '11, Boston Stig Nielsen, SimCorp A/S.
Chapter 4: Threads Adapted to COP4610 by Robert van Engelen.

Chapter 4: Threads Adapted to COP4610 by Robert van Engelen.

Similar presentations

Ads by Google