Public/VeraCrypt
1
0
Fork 0
mirror of https://github.com/veracrypt/VeraCrypt.git synced 2026-06-10 06:46:59 -05:00
Code Activity

Windows driver: queue volume flushes as ordered barriers

Browse Source 
Route IRP_MJ_FLUSH_BUFFERS through EncryptedIoQueue for mounted writable non-system volumes. Flushes are represented as zero-length queue items handled by the I/O thread, so ZwFlushBuffersFile runs after earlier encrypted write fragments before completing to the caller.

Also perform a best-effort ZwFlushBuffersFile before closing writable mounted-volume host handles, after the encrypted I/O queue has drained, so clean dismount/shutdown paths push the host file or raw device before close.

This keeps the change focused on ordinary mounted-volume flush ordering and avoids system-encryption, boot-drive, and header-update paths.
This commit is contained in:
Mounir IDRASSI
2026-05-21 09:57:35 +09:00
parent 79bee911be
commit d1f73ce429
4 changed files with 83 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files
src/Driver/EncryptedIoQueue.c
+63 -2
View File
@@ -249,7 +249,7 @@ static void OnItemCompleted (EncryptedIoQueueItem *item, BOOL freeItem)
DecrementOutstandingIoCount (item->Queue); DecrementOutstandingIoCount (item->Queue);
IoReleaseRemoveLock (&item->Queue->RemoveLock, item->OriginalIrp); IoReleaseRemoveLock (&item->Queue->RemoveLock, item->OriginalIrp);
if (NT_SUCCESS (item->Status)) if (NT_SUCCESS (item->Status) && !item->Flush)
{ {
if (item->Write) if (item->Write)
item->Queue->TotalBytesWritten += item->OriginalLength; item->Queue->TotalBytesWritten += item->OriginalLength;
@@ -630,6 +630,29 @@ static VOID IoThreadProc (PVOID threadArg)
InterlockedDecrement (&queue->IoThreadPendingRequestCount); InterlockedDecrement (&queue->IoThreadPendingRequestCount);
request = CONTAINING_RECORD (listEntry, EncryptedIoRequest, ListEntry); request = CONTAINING_RECORD (listEntry, EncryptedIoRequest, ListEntry);
if (request->Item->Flush)
{
#ifdef TC_TRACE_IO_QUEUE
Dump ("F [%I64d]\n", GetElapsedTime (&queue->LastPerformanceCounter));
#endif
if (NT_SUCCESS (request->Item->Status))
{
if (queue->HostFileHandle)
{
IO_STATUS_BLOCK ioStatus;
request->Item->Status = ZwFlushBuffersFile (queue->HostFileHandle, &ioStatus);
}
else
{
request->Item->Status = STATUS_DEVICE_NOT_READY;
}
}
HandleCompleteOriginalIrp (queue, request);
ReleasePoolBuffer (queue, request);
continue;
}
#ifdef TC_TRACE_IO_QUEUE #ifdef TC_TRACE_IO_QUEUE
Dump ("%c %I64d [%I64d] roff=%I64d rlen=%d\n", request->Item->Write ? 'W' : 'R', request->Item->OriginalIrpOffset.QuadPart, GetElapsedTime (&queue->LastPerformanceCounter), request->Offset.QuadPart, request->Length); Dump ("%c %I64d [%I64d] roff=%I64d rlen=%d\n", request->Item->Write ? 'W' : 'R', request->Item->OriginalIrpOffset.QuadPart, GetElapsedTime (&queue->LastPerformanceCounter), request->Offset.QuadPart, request->Length);
#endif #endif
@@ -832,6 +855,7 @@ static VOID MainThreadProc (PVOID threadArg)
item->OriginalIrp = irp; item->OriginalIrp = irp;
item->TempUserMdl = NULL; item->TempUserMdl = NULL;
item->Status = STATUS_SUCCESS; item->Status = STATUS_SUCCESS;
item->Flush = FALSE;
IoAcquireCancelSpinLock(&irql); IoAcquireCancelSpinLock(&irql);
(PDRIVER_CANCEL)IoSetCancelRoutine(irp, NULL); (PDRIVER_CANCEL)IoSetCancelRoutine(irp, NULL);
@@ -858,6 +882,13 @@ static VOID MainThreadProc (PVOID threadArg)
item->OriginalLength = irpSp->Parameters.Write.Length; item->OriginalLength = irpSp->Parameters.Write.Length;
break; break;
case IRP_MJ_FLUSH_BUFFERS:
item->Write = FALSE;
item->Flush = TRUE;
item->OriginalOffset.QuadPart = 0;
item->OriginalLength = 0;
break;
default: default:
// Defer completion for invalid parameter // Defer completion for invalid parameter
QueueIrpCompletionFromItem(queue, item, STATUS_INVALID_PARAMETER); QueueIrpCompletionFromItem(queue, item, STATUS_INVALID_PARAMETER);
@@ -868,6 +899,32 @@ static VOID MainThreadProc (PVOID threadArg)
item->OriginalIrpOffset = item->OriginalOffset; item->OriginalIrpOffset = item->OriginalOffset;
#endif #endif
if (item->Flush)
{
InterlockedIncrement (&queue->IoThreadPendingRequestCount);
request = GetPoolBuffer (queue, sizeof (EncryptedIoRequest));
if (!request)
{
InterlockedDecrement (&queue->IoThreadPendingRequestCount);
QueueIrpCompletionFromItem (queue, item, STATUS_INSUFFICIENT_RESOURCES);
continue;
}
request->Item = item;
request->CompleteOriginalIrp = TRUE;
request->Offset.QuadPart = 0;
request->Data = NULL;
request->OrigDataBufferFragment = NULL;
request->Length = 0;
request->EncryptedOffset = 0;
request->EncryptedLength = 0;
ExInterlockedInsertTailList (&queue->IoThreadQueue, &request->ListEntry, &queue->IoThreadQueueLock);
KeSetEvent (&queue->IoThreadQueueNotEmptyEvent, IO_DISK_INCREMENT, FALSE);
continue;
}
// Handle misaligned read operations to work around a bug in Windows System Assessment Tool which does not follow FILE_FLAG_NO_BUFFERING requirements when benchmarking disk devices // Handle misaligned read operations to work around a bug in Windows System Assessment Tool which does not follow FILE_FLAG_NO_BUFFERING requirements when benchmarking disk devices
if (queue->IsFilterDevice if (queue->IsFilterDevice
&& !item->Write && !item->Write
@@ -1155,7 +1212,11 @@ NTSTATUS EncryptedIoQueueAddIrp (EncryptedIoQueue *queue, PIRP irp)
#ifdef TC_TRACE_IO_QUEUE #ifdef TC_TRACE_IO_QUEUE
{ {
PIO_STACK_LOCATION irpSp = IoGetCurrentIrpStackLocation (irp); PIO_STACK_LOCATION irpSp = IoGetCurrentIrpStackLocation (irp);
Dump ("* %I64d [%I64d] %c len=%d out=%d\n", irpSp->MajorFunction == IRP_MJ_WRITE ? irpSp->Parameters.Write.ByteOffset : irpSp->Parameters.Read.ByteOffset, GetElapsedTime (&queue->LastPerformanceCounter), irpSp->MajorFunction == IRP_MJ_WRITE ? 'W' : 'R', irpSp->MajorFunction == IRP_MJ_WRITE ? irpSp->Parameters.Write.Length : irpSp->Parameters.Read.Length, queue->OutstandingIoCount);
if (irpSp->MajorFunction == IRP_MJ_FLUSH_BUFFERS)
Dump ("* F [%I64d] out=%d\n", GetElapsedTime (&queue->LastPerformanceCounter), queue->OutstandingIoCount);
else
Dump ("* %I64d [%I64d] %c len=%d out=%d\n", irpSp->MajorFunction == IRP_MJ_WRITE ? irpSp->Parameters.Write.ByteOffset : irpSp->Parameters.Read.ByteOffset, GetElapsedTime (&queue->LastPerformanceCounter), irpSp->MajorFunction == IRP_MJ_WRITE ? 'W' : 'R', irpSp->MajorFunction == IRP_MJ_WRITE ? irpSp->Parameters.Write.Length : irpSp->Parameters.Read.Length, queue->OutstandingIoCount);
} }
#endif #endif
src/Driver/EncryptedIoQueue.h
+1
View File
@@ -155,6 +155,7 @@ typedef struct
EncryptedIoQueue *Queue; EncryptedIoQueue *Queue;
PIRP OriginalIrp; PIRP OriginalIrp;
BOOL Write; BOOL Write;
BOOL Flush;
ULONG OriginalLength; ULONG OriginalLength;
LARGE_INTEGER OriginalOffset; LARGE_INTEGER OriginalOffset;
NTSTATUS Status; NTSTATUS Status;
src/Driver/Ntdriver.c
+12 -1
View File
@@ -621,7 +621,18 @@ NTSTATUS TCDispatchQueueIRP (PDEVICE_OBJECT DeviceObject, PIRP Irp)
return STATUS_PENDING; return STATUS_PENDING;
case IRP_MJ_FLUSH_BUFFERS: case IRP_MJ_FLUSH_BUFFERS:
return TCCompleteDiskIrp (Irp, STATUS_SUCCESS, 0); if (Extension->hDeviceFile == NULL || Extension->bReadOnly)
return TCCompleteDiskIrp (Irp, STATUS_SUCCESS, 0);
if (!EncryptedIoQueueIsRunning (&Extension->Queue))
return TCCompleteDiskIrp (Irp, STATUS_SUCCESS, 0);
ntStatus = EncryptedIoQueueAddIrp (&Extension->Queue, Irp);
if (ntStatus != STATUS_PENDING)
TCCompleteDiskIrp (Irp, ntStatus, 0);
return ntStatus;
} }
break; break;
src/Driver/Ntvol.c
+7
View File
@@ -909,6 +909,13 @@ void TCCloseVolume (PDEVICE_OBJECT DeviceObject, PEXTENSION Extension)
{ {
RestoreTimeStamp (Extension); RestoreTimeStamp (Extension);
} }
if (!Extension->bReadOnly)
{
IO_STATUS_BLOCK ioStatus;
NTSTATUS flushStatus = ZwFlushBuffersFile (Extension->hDeviceFile, &ioStatus);
if (!NT_SUCCESS (flushStatus))
Dump ("ZwFlushBuffersFile failed before closing volume: NTSTATUS 0x%08x\n", flushStatus);
}
ZwClose (Extension->hDeviceFile); ZwClose (Extension->hDeviceFile);
Extension->hDeviceFile = NULL; Extension->hDeviceFile = NULL;
} }