2003-01-26 06:18:56 +00:00
|
|
|
// ******************************************************************
|
|
|
|
|
// *
|
|
|
|
|
// * .,-::::: .,:: .::::::::. .,:: .:
|
|
|
|
|
// * ,;;;'````' `;;;, .,;; ;;;'';;' `;;;, .,;;
|
|
|
|
|
// * [[[ '[[,,[[' [[[__[[\. '[[,,[['
|
|
|
|
|
// * $$$ Y$$$P $$""""Y$$ Y$$$P
|
|
|
|
|
// * `88bo,__,o, oP"``"Yo, _88o,,od8P oP"``"Yo,
|
|
|
|
|
// * "YUMMMMMP",m" "Mm,""YUMMMP" ,m" "Mm,
|
|
|
|
|
// *
|
2003-01-28 05:33:51 +00:00
|
|
|
// * Cxbx->Win32->CxbxKrnl->CxbxKrnl.cpp
|
2003-01-26 06:18:56 +00:00
|
|
|
// *
|
|
|
|
|
// * This file is part of the Cxbx project.
|
|
|
|
|
// *
|
|
|
|
|
// * Cxbx and Cxbe are free software; you can redistribute them
|
|
|
|
|
// * and/or modify them under the terms of the GNU General Public
|
|
|
|
|
// * License as published by the Free Software Foundation; either
|
|
|
|
|
// * version 2 of the license, or (at your option) any later version.
|
|
|
|
|
// *
|
|
|
|
|
// * This program is distributed in the hope that it will be useful,
|
|
|
|
|
// * but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
|
// * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
|
|
|
// * GNU General Public License for more details.
|
|
|
|
|
// *
|
|
|
|
|
// * You should have recieved a copy of the GNU General Public License
|
|
|
|
|
// * along with this program; see the file COPYING.
|
|
|
|
|
// * If not, write to the Free Software Foundation, Inc.,
|
|
|
|
|
// * 59 Temple Place - Suite 330, Bostom, MA 02111-1307, USA.
|
|
|
|
|
// *
|
|
|
|
|
// * (c) 2002-2003 Aaron Robinson <caustik@caustik.com>
|
|
|
|
|
// *
|
|
|
|
|
// * All rights reserved
|
|
|
|
|
// *
|
|
|
|
|
// ******************************************************************
|
|
|
|
|
#include "Cxbx.h"
|
|
|
|
|
|
|
|
|
|
#define CXBXKRNL_INTERNAL
|
|
|
|
|
#define _XBOXKRNL_LOCAL_
|
2003-01-28 05:33:51 +00:00
|
|
|
#include "CxbxKrnl.h"
|
2003-01-26 06:18:56 +00:00
|
|
|
|
|
|
|
|
#include <stdio.h>
|
|
|
|
|
|
|
|
|
|
// ******************************************************************
|
|
|
|
|
// * ntdll wrapped in namespace to avoid collisions
|
|
|
|
|
// ******************************************************************
|
|
|
|
|
namespace xntdll
|
|
|
|
|
{
|
|
|
|
|
#include "xntdll.h"
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
// ******************************************************************
|
|
|
|
|
// * win32 wrapped in namespace to avoid collisions
|
|
|
|
|
// ******************************************************************
|
|
|
|
|
namespace win32
|
|
|
|
|
{
|
2003-01-27 04:27:04 +00:00
|
|
|
#undef FIELD_OFFSET // prevent macro redefinition warnings
|
2003-01-26 06:18:56 +00:00
|
|
|
#include <windows.h>
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
using namespace win32;
|
|
|
|
|
|
|
|
|
|
// ******************************************************************
|
|
|
|
|
// * func: EmuXInit
|
|
|
|
|
// ******************************************************************
|
|
|
|
|
CXBXKRNL_API void NTAPI EmuXInit(uint32 DebugConsole, uint08 *XBEHeader, uint32 XBEHeaderSize, void (*Entry)())
|
|
|
|
|
{
|
2003-01-27 04:27:04 +00:00
|
|
|
// ******************************************************************
|
|
|
|
|
// * debug console allocation (if configured)
|
|
|
|
|
// ******************************************************************
|
2003-01-26 06:18:56 +00:00
|
|
|
if(DebugConsole)
|
|
|
|
|
{
|
|
|
|
|
AllocConsole();
|
|
|
|
|
|
2003-01-27 04:27:04 +00:00
|
|
|
freopen("CONOUT$", "wt", stdout);
|
2003-01-26 06:18:56 +00:00
|
|
|
|
2003-01-27 09:18:33 +00:00
|
|
|
printf("CxbxKrnl [0x%.08X]: Debug console allocated.\n", GetCurrentThreadId());
|
2003-01-26 06:18:56 +00:00
|
|
|
}
|
|
|
|
|
|
2003-01-27 04:27:04 +00:00
|
|
|
// ******************************************************************
|
|
|
|
|
// * debug trace
|
|
|
|
|
// ******************************************************************
|
|
|
|
|
{
|
2003-01-27 09:18:33 +00:00
|
|
|
printf("CxbxKrnl [0x%.08X]: EmuXInit\n"
|
2003-01-27 04:27:04 +00:00
|
|
|
" (\n"
|
|
|
|
|
" DebugConsole : 0x%.08X\n"
|
|
|
|
|
" XBEHeader : 0x%.08X\n"
|
|
|
|
|
" XBEHeaderSize : 0x%.08X\n"
|
|
|
|
|
" Entry : 0x%.08X\n"
|
|
|
|
|
" );\n",
|
2003-01-27 09:18:33 +00:00
|
|
|
GetCurrentThreadId(), DebugConsole, XBEHeader, XBEHeaderSize, Entry);
|
2003-01-27 04:27:04 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// ******************************************************************
|
|
|
|
|
// * Load the necessary pieces of XBEHeader
|
|
|
|
|
// ******************************************************************
|
|
|
|
|
{
|
|
|
|
|
uint32 old_protection = 0;
|
|
|
|
|
|
|
|
|
|
VirtualProtect((void*)0x00010000, 0x1000, PAGE_READWRITE, &old_protection);
|
|
|
|
|
|
|
|
|
|
uint32 dwSizeofHeaders = *(uint32*)&XBEHeader[0x0108];
|
|
|
|
|
uint32 dwCertificateAddr = *(uint32*)&XBEHeader[0x0118];
|
|
|
|
|
|
|
|
|
|
*(uint32 *)0x00010108 = dwSizeofHeaders;
|
|
|
|
|
*(uint32 *)0x00010118 = dwCertificateAddr;
|
|
|
|
|
|
|
|
|
|
memcpy((void*)dwCertificateAddr, &XBEHeader[dwCertificateAddr - 0x00010000], sizeof(Xbe::Certificate));
|
|
|
|
|
}
|
2003-01-27 23:25:22 +00:00
|
|
|
|
|
|
|
|
// ******************************************************************
|
|
|
|
|
// * Initialize FS:* structure
|
|
|
|
|
// ******************************************************************
|
|
|
|
|
{
|
|
|
|
|
NT_TIB *OriginalTIB = 0;
|
|
|
|
|
|
|
|
|
|
__asm
|
|
|
|
|
{
|
|
|
|
|
mov esi, fs:[18h]
|
|
|
|
|
mov OriginalTIB, esi
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// TODO: Allocate new FS: within LDT, copy OriginalTIB to KPCR.NtTib, load new FS
|
|
|
|
|
printf("CxbxKrnl [0x%.08X]: NT_TIB.Self=0x%.08X\n", GetCurrentThreadId(), OriginalTIB->Self);
|
|
|
|
|
}
|
2003-01-27 04:27:04 +00:00
|
|
|
|
2003-01-27 09:18:33 +00:00
|
|
|
printf("CxbxKrnl [0x%.08X]: Initial thread starting.\n", GetCurrentThreadId());
|
2003-01-26 06:18:56 +00:00
|
|
|
|
|
|
|
|
Entry();
|
|
|
|
|
|
2003-01-27 09:18:33 +00:00
|
|
|
printf("CxbxKrnl [0x%.08X]: Initial thread ended.\n", GetCurrentThreadId());
|
|
|
|
|
|
|
|
|
|
// just spin forever (for now...)
|
|
|
|
|
while(true)
|
|
|
|
|
Sleep(1000);
|
2003-01-27 04:27:04 +00:00
|
|
|
|
2003-01-26 06:18:56 +00:00
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// ******************************************************************
|
|
|
|
|
// * func: EmuXDummy
|
|
|
|
|
// ******************************************************************
|
|
|
|
|
CXBXKRNL_API void NTAPI EmuXDummy()
|
|
|
|
|
{
|
2003-01-27 04:27:04 +00:00
|
|
|
MessageBox(NULL, "EmuXDummy()", "CxbxKrnl", MB_OK);
|
2003-01-26 06:18:56 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// ******************************************************************
|
|
|
|
|
// * func: EmuXPanic
|
|
|
|
|
// ******************************************************************
|
|
|
|
|
CXBXKRNL_API void NTAPI EmuXPanic()
|
|
|
|
|
{
|
2003-01-27 09:18:33 +00:00
|
|
|
printf("CxbxKrnl [0x%.08X]: EmuXPanic()\n", GetCurrentThreadId());
|
2003-01-26 06:18:56 +00:00
|
|
|
|
|
|
|
|
MessageBox(NULL, "Kernel Panic! Process will now terminate.", "CxbxKrnl", MB_OK | MB_ICONEXCLAMATION);
|
|
|
|
|
|
|
|
|
|
exit(1);
|
|
|
|
|
}
|
|
|
|
|
|
2003-01-27 09:18:33 +00:00
|
|
|
// ******************************************************************
|
|
|
|
|
// * (HELPER) PsCreateSystemThreadExProxyParam
|
|
|
|
|
// ******************************************************************
|
|
|
|
|
typedef struct _PsCreateSystemThreadExProxyParam
|
|
|
|
|
{
|
|
|
|
|
IN PVOID StartContext1;
|
|
|
|
|
IN PVOID StartContext2;
|
|
|
|
|
IN PVOID StartRoutine;
|
|
|
|
|
}
|
|
|
|
|
PsCreateSystemThreadExProxyParam;
|
|
|
|
|
|
|
|
|
|
// ******************************************************************
|
|
|
|
|
// * PsCreateSystemThreadExProxy
|
|
|
|
|
// ******************************************************************
|
|
|
|
|
#pragma warning(push)
|
|
|
|
|
#pragma warning(disable: 4731) // disable ebp modification warning
|
|
|
|
|
DWORD WINAPI PsCreateSystemThreadExProxy
|
|
|
|
|
(
|
|
|
|
|
IN PVOID Parameter
|
|
|
|
|
)
|
|
|
|
|
{
|
|
|
|
|
PsCreateSystemThreadExProxyParam *iPsCreateSystemThreadExProxyParam = (PsCreateSystemThreadExProxyParam*)Parameter;
|
|
|
|
|
|
|
|
|
|
uint32 StartContext1 = (uint32)iPsCreateSystemThreadExProxyParam->StartContext1;
|
|
|
|
|
uint32 StartContext2 = (uint32)iPsCreateSystemThreadExProxyParam->StartContext2;
|
|
|
|
|
uint32 StartRoutine = (uint32)iPsCreateSystemThreadExProxyParam->StartRoutine;
|
|
|
|
|
|
|
|
|
|
delete iPsCreateSystemThreadExProxyParam;
|
|
|
|
|
|
|
|
|
|
__asm
|
|
|
|
|
{
|
|
|
|
|
mov esi, StartRoutine
|
|
|
|
|
push StartContext2
|
|
|
|
|
push StartContext1
|
|
|
|
|
lea ebp, [esp-4]
|
|
|
|
|
int 3
|
|
|
|
|
jmp near esi
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
#pragma warning(pop)
|
|
|
|
|
|
2003-01-26 06:18:56 +00:00
|
|
|
using namespace xboxkrnl;
|
|
|
|
|
|
|
|
|
|
// ******************************************************************
|
|
|
|
|
// * 0x00BB - NtClose
|
|
|
|
|
// ******************************************************************
|
|
|
|
|
XBSYSAPI EXPORTNUM(187) NTSTATUS NTAPI xboxkrnl::NtClose
|
|
|
|
|
(
|
|
|
|
|
IN HANDLE Handle
|
|
|
|
|
)
|
|
|
|
|
{
|
2003-01-27 09:18:33 +00:00
|
|
|
// ******************************************************************
|
|
|
|
|
// * debug trace
|
|
|
|
|
// ******************************************************************
|
|
|
|
|
#ifdef _DEBUG
|
|
|
|
|
{
|
|
|
|
|
printf("CxbxKrnl [0x%.08X]: NtClose\n"
|
|
|
|
|
" (\n"
|
|
|
|
|
" Handle : 0x%.08X\n"
|
|
|
|
|
" );\n",
|
|
|
|
|
GetCurrentThreadId(), Handle);
|
|
|
|
|
}
|
|
|
|
|
#endif
|
|
|
|
|
|
|
|
|
|
if(CloseHandle(Handle) != TRUE)
|
|
|
|
|
return STATUS_UNSUCCESSFUL;
|
|
|
|
|
|
2003-01-26 06:18:56 +00:00
|
|
|
return STATUS_SUCCESS;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// ******************************************************************
|
|
|
|
|
// * 0x00FF - PsCreateSystemThreadEx
|
|
|
|
|
// ******************************************************************
|
|
|
|
|
XBSYSAPI EXPORTNUM(255) NTSTATUS NTAPI xboxkrnl::PsCreateSystemThreadEx
|
|
|
|
|
(
|
|
|
|
|
OUT PHANDLE ThreadHandle,
|
|
|
|
|
IN ULONG ThreadExtraSize,
|
|
|
|
|
IN ULONG KernelStackSize,
|
|
|
|
|
IN ULONG TlsDataSize,
|
|
|
|
|
OUT PULONG ThreadId OPTIONAL,
|
|
|
|
|
IN PVOID StartContext1,
|
|
|
|
|
IN PVOID StartContext2,
|
|
|
|
|
IN BOOLEAN CreateSuspended,
|
|
|
|
|
IN BOOLEAN DebugStack,
|
|
|
|
|
IN PKSTART_ROUTINE StartRoutine
|
|
|
|
|
)
|
|
|
|
|
{
|
2003-01-27 04:27:04 +00:00
|
|
|
// ******************************************************************
|
|
|
|
|
// * debug trace
|
|
|
|
|
// ******************************************************************
|
|
|
|
|
#ifdef _DEBUG
|
|
|
|
|
{
|
2003-01-27 09:18:33 +00:00
|
|
|
printf("CxbxKrnl [0x%.08X]: PsCreateSystemThreadEx\n"
|
2003-01-27 04:27:04 +00:00
|
|
|
" (\n"
|
|
|
|
|
" ThreadHandle : 0x%.08X\n"
|
|
|
|
|
" ThreadExtraSize : 0x%.08X\n"
|
|
|
|
|
" KernelStackSize : 0x%.08X\n"
|
|
|
|
|
" TlsDataSize : 0x%.08X\n"
|
|
|
|
|
" ThreadId : 0x%.08X\n"
|
|
|
|
|
" StartContext1 : 0x%.08X\n"
|
|
|
|
|
" StartContext2 : 0x%.08X\n"
|
|
|
|
|
" CreateSuspended : 0x%.08X\n"
|
|
|
|
|
" DebugStack : 0x%.08X\n"
|
|
|
|
|
" StartRoutine : 0x%.08X\n"
|
|
|
|
|
" );\n",
|
2003-01-27 09:18:33 +00:00
|
|
|
GetCurrentThreadId(), ThreadHandle, ThreadExtraSize, KernelStackSize, TlsDataSize, ThreadId,
|
2003-01-27 04:27:04 +00:00
|
|
|
StartContext1, StartContext2, CreateSuspended, DebugStack, StartRoutine);
|
|
|
|
|
}
|
|
|
|
|
#endif
|
|
|
|
|
|
2003-01-27 09:18:33 +00:00
|
|
|
DWORD dwThreadId = NULL;
|
|
|
|
|
|
|
|
|
|
// PsCreateSystemThreadExProxy is responsible for cleaning up this pointer
|
|
|
|
|
::PsCreateSystemThreadExProxyParam *iPsCreateSystemThreadProxyParam = new ::PsCreateSystemThreadExProxyParam();
|
|
|
|
|
|
|
|
|
|
iPsCreateSystemThreadProxyParam->StartContext1 = StartContext1;
|
|
|
|
|
iPsCreateSystemThreadProxyParam->StartContext2 = StartContext2;
|
|
|
|
|
iPsCreateSystemThreadProxyParam->StartRoutine = StartRoutine;
|
|
|
|
|
|
|
|
|
|
*ThreadHandle = CreateThread(NULL, NULL, &PsCreateSystemThreadExProxy, iPsCreateSystemThreadProxyParam, NULL, &dwThreadId);
|
|
|
|
|
|
|
|
|
|
if(ThreadId != NULL)
|
|
|
|
|
*ThreadId = dwThreadId;
|
2003-01-27 04:27:04 +00:00
|
|
|
|
2003-01-26 06:18:56 +00:00
|
|
|
return STATUS_SUCCESS;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// ******************************************************************
|
|
|
|
|
// * 0x0031 - HalReturnToFirmware
|
|
|
|
|
// ******************************************************************
|
|
|
|
|
XBSYSAPI EXPORTNUM(49) VOID DECLSPEC_NORETURN xboxkrnl::HalReturnToFirmware
|
|
|
|
|
(
|
|
|
|
|
RETURN_FIRMWARE Routine
|
|
|
|
|
)
|
|
|
|
|
{
|
2003-01-27 04:27:04 +00:00
|
|
|
MessageBox(NULL, "HalReturnToFirmware()", "CxbxKrnl", MB_OK);
|
2003-01-26 06:18:56 +00:00
|
|
|
/*
|
|
|
|
|
ReturnFirmwareHalt = 0x0,
|
|
|
|
|
ReturnFirmwareReboot = 0x1,
|
|
|
|
|
ReturnFirmwareQuickReboot = 0x2,
|
|
|
|
|
ReturnFirmwareHard = 0x3,
|
|
|
|
|
ReturnFirmwareFatal = 0x4,
|
|
|
|
|
ReturnFirmwareAll = 0x5
|
|
|
|
|
*/
|
|
|
|
|
|
|
|
|
|
exit(1);
|
|
|
|
|
}
|
