internal static Owner?GetOwningModuleUDP(MIB_UDPROW_OWNER_MODULE row)
{
Owner?ret = null;
//if (ownerCache.TryGetValue(row, out ret))
//{
// return ret;
//}
IntPtr buffer = IntPtr.Zero;
try
{
uint buffSize = 0;
var retn = NativeMethods.GetOwnerModuleFromUdpEntry(ref row, TCPIP_OWNER_MODULE_INFO_CLASS.TCPIP_OWNER_MODULE_INFO_BASIC, IntPtr.Zero, ref buffSize);
if (retn != NO_ERROR && retn != ERROR_INSUFFICIENT_BUFFER)
{
//Cannot get owning module for this connection
LogHelper.Info("Unable to get the connection owner.");
return(ret);
}
if (buffSize == 0)
{
//No buffer? Probably means we can't retrieve any information about this connection; skip it
LogHelper.Info("Unable to get the connection owner.");
return(ret);
}
buffer = Marshal.AllocHGlobal((int)buffSize);
//GetOwnerModuleFromUdpEntry might want the fields of TCPIP_OWNER_MODULE_INFO_BASIC to be NULL
IPHelper.NativeMethods.ZeroMemory(buffer, buffSize);
var resp = UDPHelper.NativeMethods.GetOwnerModuleFromUdpEntry(ref row, TCPIP_OWNER_MODULE_INFO_CLASS.TCPIP_OWNER_MODULE_INFO_BASIC, buffer, ref buffSize);
if (resp == NO_ERROR)
{
ret = new Owner(Marshal.PtrToStructure <TCPIP_OWNER_MODULE_BASIC_INFO>(buffer));
}
else if (resp != ERROR_NOT_FOUND) // Ignore closed connections
{
LogHelper.Error("Unable to get the connection owner.", new Win32Exception((int)resp));
}
//ownerCache.Add(row, ret);
return(ret);
}
finally
{
if (buffer != IntPtr.Zero)
{
Marshal.FreeHGlobal(buffer);
}
}
}
public override IEnumerable <CommandDTOBase?> Execute(string[] args)
{
var AF_INET = 2; // IP_v4
uint tableBufferSize = 0;
var tableBuffer = IntPtr.Zero;
var rowPtr = IntPtr.Zero;
var processes = new Dictionary <string, string>();
WriteHost(" Local Address PID Service ProcessName");
try
{
// Adapted from https://stackoverflow.com/questions/577433/which-pid-listens-on-a-given-port-in-c-sharp/577660#577660
// Build a PID -> process name lookup table
var searcher = new ManagementObjectSearcher("SELECT * FROM Win32_Process");
var retObjectCollection = searcher.Get();
foreach (ManagementObject Process in retObjectCollection)
{
if (Process["CommandLine"] != null)
{
processes.Add(Process["ProcessId"].ToString(), Process["CommandLine"].ToString());
}
else
{
processes.Add(Process["ProcessId"].ToString(), Process["Name"].ToString());
}
}
// Figure out how much memory we need for the result struct
var ret = GetExtendedUdpTable(IntPtr.Zero, ref tableBufferSize, true, AF_INET, UDP_TABLE_CLASS.UDP_TABLE_OWNER_MODULE, 0);
if (ret != Win32Error.Success && ret != Win32Error.InsufficientBuffer)
{
// 122 == insufficient buffer size
WriteError($"Bad check value from GetExtendedUdpTable : {ret}");
yield break;
}
tableBuffer = Marshal.AllocHGlobal((int)tableBufferSize);
ret = GetExtendedUdpTable(tableBuffer, ref tableBufferSize, true, AF_INET, UDP_TABLE_CLASS.UDP_TABLE_OWNER_MODULE, 0);
if (ret != Win32Error.Success)
{
WriteError($"Bad return value from GetExtendedUdpTable : {ret}");
yield break;
}
//// get the number of entries in the table
var ownerModuleTable = (MIB_UDPTABLE_OWNER_MODULE)Marshal.PtrToStructure(tableBuffer, typeof(MIB_UDPTABLE_OWNER_MODULE));
rowPtr = (IntPtr)(tableBuffer.ToInt64() + Marshal.OffsetOf(typeof(MIB_UDPTABLE_OWNER_MODULE), "Table").ToInt64());
var UdpRows = new MIB_UDPROW_OWNER_MODULE[ownerModuleTable.NumEntries];
for (var i = 0; i < ownerModuleTable.NumEntries; i++)
{
var udpRow =
(MIB_UDPROW_OWNER_MODULE)Marshal.PtrToStructure(rowPtr, typeof(MIB_UDPROW_OWNER_MODULE));
UdpRows[i] = udpRow;
// next entry
rowPtr = (IntPtr)((long)rowPtr + Marshal.SizeOf(udpRow));
}
foreach (var entry in UdpRows)
{
var processName = "";
try
{
processName = processes[entry.OwningPid.ToString()];
}
catch { }
var serviceName = Advapi32.GetServiceNameFromTag(entry.OwningPid, (uint)entry.OwningModuleInfo0);
yield return(new UdpConnectionsDTO(
entry.LocalAddress.ToString(),
entry.LocalPort,
entry.OwningPid,
serviceName,
processName
));
}
}
finally
{
if (tableBuffer != IntPtr.Zero)
{
Marshal.FreeHGlobal(tableBuffer);
}
}
}
public static extern UInt32 GetOwnerModuleFromUdpEntry(ref MIB_UDPROW_OWNER_MODULE pUdpEntry, TCPIP_OWNER_MODULE_INFO_CLASS Class, IntPtr Buffer, ref UInt32 pdwSize);
internal static extern uint GetOwnerModuleFromUdpEntry(ref MIB_UDPROW_OWNER_MODULE pUdpEntry, IPHelper.TCPIP_OWNER_MODULE_INFO_CLASS Class, IntPtr Buffer, ref uint pdwSize);
public static extern ErrorCode GetOwnerModuleFromUdpEntry(ref MIB_UDPROW_OWNER_MODULE pUdpEntry, TCPIP_OWNER_MODULE_INFO_CLASS @class, IntPtr buffer, ref int pdwSize);
