+#include "rdrand.h"

+#include "chachaRng.h"

+static uint64 BootArgsRegionsDefault[] = { EFI_BOOTARGS_REGIONS_DEFAULT };

+static uint64 BootArgsRegionsEFI[] = { EFI_BOOTARGS_REGIONS_EFI };

+NTSTATUS LoadBootArguments (BOOL bIsEfi)

+ uint64* BootArgsRegionsPtr = bIsEfi? BootArgsRegionsEFI : BootArgsRegionsDefault;

+ size_t BootArgsRegionsCount = bIsEfi? sizeof(BootArgsRegionsEFI)/ sizeof(BootArgsRegionsEFI[0]) : sizeof(BootArgsRegionsDefault)/ sizeof(BootArgsRegionsDefault[0]);

+ bootLoaderArgsIndex < BootArgsRegionsCount && status != STATUS_SUCCESS;

+ bootArgsAddr.QuadPart = BootArgsRegionsPtr[bootLoaderArgsIndex] + TC_BOOT_LOADER_ARGS_OFFSET;

+ if (bootArguments->BootPassword.Length <= MAX_LEGACY_PASSWORD)

+ BootLoaderArgsPtr = BootArgsRegionsPtr[bootLoaderArgsIndex];

+ DriveFilterExtension *Extension = NULL;

+ if (Extension && Extension->LowerDeviceObject)

+ crypto_close ((PCRYPTO_INFO) Extension->Queue.CryptoInfo);

+ crypto_close ((PCRYPTO_INFO) Extension->HeaderCryptoInfo);

+

+ Dump ("Drive dismount done!\n");

+}

+

+static void InvalidateVolumeKeys (EXTENSION *Extension)

+{

+ Dump ("Invalidating volume encryption keys\n");

+

+ Extension->Queue.ThreadBlockReadWrite = TRUE;

+

+ crypto_eraseKeys ((PCRYPTO_INFO) Extension->Queue.CryptoInfo);

+ crypto_eraseKeys ((PCRYPTO_INFO) Extension->cryptoInfo);

+

+ Dump ("Volume encryption keys invalidated!\n");

+}

+

+static void InvalidateDriveFilterKeys (DriveFilterExtension *Extension)

+{

+ Dump ("Invalidating drive filter encryption keys\n");

+ ASSERT (Extension->DriveMounted);

+

+ Extension->Queue.ThreadBlockReadWrite = TRUE;

+

+ crypto_eraseKeys ((PCRYPTO_INFO) Extension->Queue.CryptoInfo);

+ crypto_eraseKeys ((PCRYPTO_INFO) Extension->HeaderCryptoInfo);

+

+ Dump ("Drive filter encryption keys invalidated!\n");

+ if (IsCpuIntel() && HasSAVX())

+ saveStatus = KeSaveExtendedProcessorStateVC(XSTATE_MASK_GSSE, &SaveState);

+ KeRestoreExtendedProcessorStateVC(&SaveState);

+ if (ReadVolumeHeader (!hiddenVolume, header, password, pkcs5_prf, pim, &Extension->Queue.CryptoInfo, Extension->HeaderCryptoInfo) == 0)

+ AddLegacyPasswordToCache (&pwdCache->Pwd[i], cachedPim);

+ AddLegacyPasswordToCache (&BootArgs.BootPassword, cachedPim);

+

+ /* encrypt keys */

+#ifdef _WIN64

+ if (IsRamEncryptionEnabled())

+ {

+ VcProtectKeys (Extension->HeaderCryptoInfo, VcGetEncryptionID (Extension->HeaderCryptoInfo));

+ VcProtectKeys (Extension->Queue.CryptoInfo, VcGetEncryptionID (Extension->Queue.CryptoInfo));

+ }

+#endif

+#ifdef _WIN64

+ if (IsRamEncryptionEnabled())

+ {

+ HibernationEnabled = FALSE;

+ }

+#endif

+ PCRYPTO_INFO pCryptoInfo = Extension->HeaderCryptoInfo;

+#ifdef _WIN64

+ CRYPTO_INFO tmpCI;

+ if (IsRamEncryptionEnabled())

+ {

+ memcpy (&tmpCI, pCryptoInfo, sizeof (CRYPTO_INFO));

+ VcUnprotectKeys (&tmpCI, VcGetEncryptionID (pCryptoInfo));

+ pCryptoInfo = &tmpCI;

+ }

+#endif

+ DecryptBuffer (header + HEADER_ENCRYPTED_DATA_OFFSET, HEADER_ENCRYPTED_DATA_SIZE, pCryptoInfo);

+ EncryptBuffer (header + HEADER_ENCRYPTED_DATA_OFFSET, HEADER_ENCRYPTED_DATA_SIZE, pCryptoInfo);

+#ifdef _WIN64

+ if (IsRamEncryptionEnabled())

+ {

+ burn (&tmpCI, sizeof (CRYPTO_INFO));

+ }

+#endif

+ {

+ Password bootPass = {0};

+ bootPass.Length = BootArgs.BootPassword.Length;

+ memcpy (bootPass.Text, BootArgs.BootPassword.Text, BootArgs.BootPassword.Length);

+ MountDrive (filterExtension, &bootPass, &BootArgs.HeaderSaltCrc32);

+ burn (&bootPass, sizeof (bootPass));

+ }

+ // Dismount the system drive on shutdown on Windows 7 and later

+ && EraseKeysOnShutdown

+ && IsOSAtLeast (WIN_7)

+#ifdef _WIN64

+ ClearSecurityParameters ();

+#endif

+static NTSTATUS DispatchControl (PDEVICE_OBJECT DeviceObject, PIRP Irp, DriveFilterExtension *Extension, PIO_STACK_LOCATION irpSp)

+{

+ BOOL bBlockTrim = BlockSystemTrimCommand || IsHiddenSystemRunning();

+ NTSTATUS status = IoAcquireRemoveLock (&Extension->Queue.RemoveLock, Irp);

+ if (!NT_SUCCESS (status))

+ return TCCompleteIrp (Irp, status, 0);

+

+ switch (irpSp->Parameters.DeviceIoControl.IoControlCode)

+ {

+ case IOCTL_STORAGE_MANAGE_DATA_SET_ATTRIBUTES:

+ Dump ("DriverFilter-DispatchControl: IOCTL_STORAGE_MANAGE_DATA_SET_ATTRIBUTES\n");

+ if (bBlockTrim)

+ {

+ PIO_STACK_LOCATION irpSp = IoGetCurrentIrpStackLocation (Irp);

+ DWORD inputLength = irpSp->Parameters.DeviceIoControl.InputBufferLength;

+ if (inputLength >= sizeof (DEVICE_MANAGE_DATA_SET_ATTRIBUTES))

+ {

+ PDEVICE_MANAGE_DATA_SET_ATTRIBUTES pInputAttrs = (PDEVICE_MANAGE_DATA_SET_ATTRIBUTES) Irp->AssociatedIrp.SystemBuffer;

+ DEVICE_DATA_MANAGEMENT_SET_ACTION action = pInputAttrs->Action;

+ if (action == DeviceDsmAction_Trim)

+ {

+ Dump ("DriverFilter-DispatchControl: IOCTL_STORAGE_MANAGE_DATA_SET_ATTRIBUTES - DeviceDsmAction_Trim.\n");

+

+ if (bBlockTrim)

+ {

+ Dump ("DriverFilter-DispatchControl:: TRIM command blocked.\n");

+ IoReleaseRemoveLock (&Extension->Queue.RemoveLock, Irp);

+ return TCCompleteDiskIrp (Irp, STATUS_SUCCESS, 0);

+ }

+ }

+ }

+ }

+ break;

+ case IOCTL_DISK_GROW_PARTITION:

+ Dump ("DriverFilter-DispatchControl: IOCTL_DISK_GROW_PARTITION blocked\n");

+ IoReleaseRemoveLock (&Extension->Queue.RemoveLock, Irp);

+ return TCCompleteDiskIrp (Irp, STATUS_UNSUCCESSFUL, 0);

+ break;

+ }

+

+ status = PassIrp (Extension->LowerDeviceObject, Irp);

+ IoReleaseRemoveLock (&Extension->Queue.RemoveLock, Irp);

+ return status;

+}

+

+

+ case IRP_MJ_DEVICE_CONTROL:

+ return DispatchControl (DeviceObject, Irp, Extension, irpSp);

+void EmergencyClearAllKeys (PIRP irp, PIO_STACK_LOCATION irpSp)

+{

+ irp->IoStatus.Information = 0;

+

+ if (!IoIsSystemThread (PsGetCurrentThread()) && !UserCanAccessDriveDevice())

+ {

+ irp->IoStatus.Status = STATUS_ACCESS_DENIED;

+ }

+ else

+ {

+ int drive;

+ for (drive = MIN_MOUNTED_VOLUME_DRIVE_NUMBER; drive <= MAX_MOUNTED_VOLUME_DRIVE_NUMBER; ++drive)

+ {

+ PDEVICE_OBJECT device = GetVirtualVolumeDeviceObject (drive);

+ if (device)

+ {

+ PEXTENSION extension = (PEXTENSION) device->DeviceExtension;

+ if (extension)

+ {

+ InvalidateVolumeKeys (extension);

+ }

+ }

+ }

+

+ if (BootDriveFound && BootDriveFilterExtension && BootDriveFilterExtension->DriveMounted)

+ InvalidateDriveFilterKeys (BootDriveFilterExtension);

+

+#ifdef _WIN64

+ ClearSecurityParameters();

+#endif

+

+ irp->IoStatus.Status = STATUS_SUCCESS;

+ }

+}

+ || request->VolumePassword.Length > MAX_LEGACY_PASSWORD

+#ifdef _WIN64

+ if (IsRamEncryptionEnabled())

+ {

+ VcUnprotectKeys (BootDriveFilterExtension->HeaderCryptoInfo, VcGetEncryptionID (BootDriveFilterExtension->HeaderCryptoInfo));

+ }

+#endif

+

+ if (ReadVolumeHeader (!BootDriveFilterExtension->HiddenSystem, header, &request->VolumePassword, request->pkcs5_prf, request->pim, NULL, BootDriveFilterExtension->HeaderCryptoInfo) == 0)

+#ifdef _WIN64

+ if (IsRamEncryptionEnabled())

+ {

+ VcProtectKeys (BootDriveFilterExtension->HeaderCryptoInfo, VcGetEncryptionID(BootDriveFilterExtension->HeaderCryptoInfo));

+ }

+#endif

+

+ EncryptDataUnitsCurrentThreadEx (HibernationWriteBuffer + (intersectStart - offset),

+ ChaCha20RngCtx rngCtx;

+ byte pbSeed[CHACHA20RNG_KEYSZ + CHACHA20RNG_IVSZ];

+ GetDriverRandomSeed (pbSeed, sizeof (pbSeed));

+ ChaCha20RngInit (&rngCtx, pbSeed, GetDriverRandomSeed, 0);

+ ChaCha20RngGetBytes (&rngCtx, wipeRandChars, TC_WIPE_RAND_CHAR_COUNT);

+ ChaCha20RngGetBytes (&rngCtx, wipeRandCharsUpdate, TC_WIPE_RAND_CHAR_COUNT);

+

+ burn (&rngCtx, sizeof (rngCtx));

+ FAST_ERASE64 (pbSeed, sizeof (pbSeed));

+ EAGetName (BootEncryptionAlgorithmNameW, 256, BootDriveFilterExtension->Queue.CryptoInfo->ea, 0);

+ HashGetName2 (BootPrfAlgorithmNameW, 256, BootDriveFilterExtension->Queue.CryptoInfo->pkcs5);

+ if (!EAInitMode (wipeCryptoInfo, WipeDecoyRequest.WipeKey + EAGetKeySize (ea)))

+#ifdef _WIN64

+ if (IsRamEncryptionEnabled ())

+ VcProtectKeys (wipeCryptoInfo, VcGetEncryptionID (wipeCryptoInfo));

+#endif

+

+NTSTATUS LoadBootArguments (BOOL bIsEfi);

+void EmergencyClearAllKeys (PIRP irp, PIO_STACK_LOCATION irpSp);

+ FILEVERSION 1,26,10,0

+ PRODUCTVERSION 1,26,10,0

+ VALUE "FileVersion", "1.26.10"

+ VALUE "ProductVersion", "1.26.10"

+ <ClCompile Include="..\Crypto\blake2s.c" />

+ <ClCompile Include="..\Crypto\blake2s_SSE2.c" />

+ <ClCompile Include="..\Crypto\blake2s_SSE41.c" />

+ <ClCompile Include="..\Crypto\blake2s_SSSE3.c" />

+ <ClCompile Include="..\Crypto\chacha-xmm.c" />

+ <ClCompile Include="..\Crypto\chacha256.c" />

+ <ClCompile Include="..\Crypto\chachaRng.c" />

+ <ClCompile Include="..\Crypto\jitterentropy-base.c" />

+ <ClCompile Include="..\Crypto\rdrand.c" />

+ <ClCompile Include="..\Crypto\Streebog.c" />

+ <ClCompile Include="..\Crypto\t1ha2.c" />

+ <ClCompile Include="..\Crypto\t1ha2_selfcheck.c" />

+ <ClCompile Include="..\Crypto\t1ha_selfcheck.c" />

+ <None Include="..\Crypto\rdrand_ml.asm" />

+ <ClInclude Include="..\Crypto\rdrand.h" />

+ <ClCompile Include="..\Crypto\rdrand.c">

+ <Filter>Source Files\Crypto</Filter>

+ </ClCompile>

+ <ClCompile Include="..\Crypto\chacha256.c">

+ <Filter>Source Files\Crypto</Filter>

+ </ClCompile>

+ <ClCompile Include="..\Crypto\chachaRng.c">

+ <Filter>Source Files\Crypto</Filter>

+ </ClCompile>

+ <ClCompile Include="..\Crypto\chacha-xmm.c">

+ <Filter>Source Files\Crypto</Filter>

+ </ClCompile>

+ <ClCompile Include="..\Crypto\Streebog.c">

+ <Filter>Source Files\Crypto</Filter>

+ </ClCompile>

+ <ClCompile Include="..\Crypto\jitterentropy-base.c">

+ <Filter>Source Files\Crypto</Filter>

+ </ClCompile>

+ <ClCompile Include="..\Crypto\t1ha_selfcheck.c">

+ <Filter>Source Files\Crypto</Filter>

+ </ClCompile>

+ <ClCompile Include="..\Crypto\t1ha2.c">

+ <Filter>Source Files\Crypto</Filter>

+ </ClCompile>

+ <ClCompile Include="..\Crypto\t1ha2_selfcheck.c">

+ <Filter>Source Files\Crypto</Filter>

+ </ClCompile>

+ <ClCompile Include="..\Crypto\blake2s.c">

+ <Filter>Source Files\Crypto</Filter>

+ </ClCompile>

+ <ClCompile Include="..\Crypto\blake2s_SSE2.c">

+ <Filter>Source Files\Crypto</Filter>

+ </ClCompile>

+ <ClCompile Include="..\Crypto\blake2s_SSE41.c">

+ <Filter>Source Files\Crypto</Filter>

+ </ClCompile>

+ <ClCompile Include="..\Crypto\blake2s_SSSE3.c">

+ <Filter>Source Files\Crypto</Filter>

+ </ClCompile>

+ <None Include="..\Crypto\rdrand_ml.asm">

+ <Filter>Source Files\Crypto</Filter>

+ </None>

+ <ClInclude Include="..\Crypto\rdrand.h">

+ <Filter>Header Files</Filter>

+ </ClInclude>

+ WriteFilterBufferSize = ((SIZE_T)filterInitData->MaxPagesPerWrite) * PAGE_SIZE;

+ EncryptDataUnitsCurrentThreadEx (WriteFilterBuffer + (intersectStart - offset),

+ if (queue->ThreadBlockReadWrite)

+ request->Item->Status = STATUS_DEVICE_BUSY;

+ else if (queue->IsFilterDevice)

+ ULONG subFragmentLength = 0;

+ ULONG queueFragmentSize = queue->FragmentSize;

+ BOOL isLastFragment = dataRemaining <= queueFragmentSize;

+ ULONG dataFragmentLength = isLastFragment ? dataRemaining : queueFragmentSize;

+ if (queue->IsFilterDevice || queue->bSupportPartialEncryption)

+ dataRemaining -= queueFragmentSize;

+ dataBuffer += queueFragmentSize;

+ fragmentOffset.QuadPart += queueFragmentSize;

+ int i, preallocatedIoRequestCount, preallocatedItemCount, fragmentSize;

+

+ preallocatedIoRequestCount = EncryptionIoRequestCount;

+ preallocatedItemCount = EncryptionItemCount;

+ fragmentSize = EncryptionFragmentSize;

+retry_fragmentAllocate:

+ queue->FragmentBufferA = TCalloc (fragmentSize);

+ {

+ if (fragmentSize > TC_ENC_IO_QUEUE_MAX_FRAGMENT_SIZE)

+ {

+ fragmentSize = TC_ENC_IO_QUEUE_MAX_FRAGMENT_SIZE;

+ goto retry_fragmentAllocate;

+ }

+ else

+ goto noMemory;

+ }

+ queue->FragmentBufferB = TCalloc (fragmentSize);

+ {

+ if (fragmentSize > TC_ENC_IO_QUEUE_MAX_FRAGMENT_SIZE)

+ {

+ fragmentSize = TC_ENC_IO_QUEUE_MAX_FRAGMENT_SIZE;

+ TCfree (queue->FragmentBufferA);

+ queue->FragmentBufferA = NULL;

+ goto retry_fragmentAllocate;

+ }

+ else

+ goto noMemory;

+ }

+ queue->ReadAheadBuffer = TCalloc (fragmentSize);

+ {

+ if (fragmentSize > TC_ENC_IO_QUEUE_MAX_FRAGMENT_SIZE)

+ {

+ fragmentSize = TC_ENC_IO_QUEUE_MAX_FRAGMENT_SIZE;

+ TCfree (queue->FragmentBufferA);

+ TCfree (queue->FragmentBufferB);

+ queue->FragmentBufferA = NULL;

+ queue->FragmentBufferB = NULL;

+ goto retry_fragmentAllocate;

+ }

+ else

+ goto noMemory;

+ }

+

+ queue->FragmentSize = fragmentSize;

+

+ KeInitializeEvent (&queue->FragmentBufferAFreeEvent, SynchronizationEvent, TRUE);

+ KeInitializeEvent (&queue->FragmentBufferBFreeEvent, SynchronizationEvent, TRUE);

+retry_preallocated:

+ for (i = 0; i < preallocatedIoRequestCount; ++i)

+ if (i < preallocatedItemCount && !GetPoolBuffer (queue, sizeof (EncryptedIoQueueItem)))

+ {

+ if (preallocatedItemCount > TC_ENC_IO_QUEUE_PREALLOCATED_ITEM_COUNT)

+ {

+ preallocatedItemCount = TC_ENC_IO_QUEUE_PREALLOCATED_ITEM_COUNT;

+ preallocatedIoRequestCount = TC_ENC_IO_QUEUE_PREALLOCATED_IO_REQUEST_COUNT;

+ FreePoolBuffers (queue);

+ goto retry_preallocated;

+ }

+ else

+ goto noMemory;

+ }

+ {

+ if (preallocatedIoRequestCount > TC_ENC_IO_QUEUE_PREALLOCATED_IO_REQUEST_COUNT)

+ {

+ preallocatedItemCount = TC_ENC_IO_QUEUE_PREALLOCATED_ITEM_COUNT;

+ preallocatedIoRequestCount = TC_ENC_IO_QUEUE_PREALLOCATED_IO_REQUEST_COUNT;

+ FreePoolBuffers (queue);

+ goto retry_preallocated;

+ }

+ else

+ goto noMemory;

+ }

+#define TC_ENC_IO_QUEUE_PREALLOCATED_IO_REQUEST_MAX_COUNT 8192

+ BOOL bSupportPartialEncryption;

+

+ volatile BOOL ThreadBlockReadWrite;

+

+ int FragmentSize;

+CXXFLAGS += $(shell $(PKG_CONFIG) fuse --cflags)

+#ifdef TC_OPENBSD

+#define FUSE_USE_VERSION 26

+#else

+#endif

+

+#ifdef TC_OPENBSD

+ static void *fuse_service_init (struct fuse_conn_info *)

+#else

+#endif

+ catch (MissingVolumeData&)

+ catch (std::bad_alloc&)

+#ifdef TC_OPENBSD

+ _exit (fuse_main (argc, argv, &fuse_service_oper, NULL));

+#else

+#endif

+ unique_ptr <Pipe> FuseService::SignalHandlerPipe;

+ static unique_ptr <Pipe> SignalHandlerPipe;

+#include <initguid.h>

+#include <Ntddstor.h>

+#include "cpu.h"

+#include "rdrand.h"

+#include "jitterentropy.h"

+#ifndef StorageDeviceLBProvisioningProperty

+#define StorageDeviceLBProvisioningProperty 11

+#endif

+

+#ifndef DeviceDsmAction_OffloadRead

+#define DeviceDsmAction_OffloadRead ( 3 | DeviceDsmActionFlag_NonDestructive)

+#endif

+

+#ifndef DeviceDsmAction_OffloadWrite

+#define DeviceDsmAction_OffloadWrite 4

+#endif

+

+#ifndef DeviceDsmAction_Allocation

+#define DeviceDsmAction_Allocation ( 5 | DeviceDsmActionFlag_NonDestructive)

+#endif

+

+#ifndef DeviceDsmAction_Repair

+#define DeviceDsmAction_Repair ( 6 | DeviceDsmActionFlag_NonDestructive)

+#endif

+

+#ifndef DeviceDsmAction_Scrub

+#define DeviceDsmAction_Scrub ( 7 | DeviceDsmActionFlag_NonDestructive)

+#endif

+

+#ifndef DeviceDsmAction_DrtQuery

+#define DeviceDsmAction_DrtQuery ( 8 | DeviceDsmActionFlag_NonDestructive)

+#endif

+

+#ifndef DeviceDsmAction_DrtClear

+#define DeviceDsmAction_DrtClear ( 9 | DeviceDsmActionFlag_NonDestructive)

+#endif

+

+#ifndef DeviceDsmAction_DrtDisable

+#define DeviceDsmAction_DrtDisable (10 | DeviceDsmActionFlag_NonDestructive)

+#endif

+

+BOOL BlockSystemTrimCommand = FALSE;

+BOOL AllowWindowsDefrag = FALSE;

+BOOL EraseKeysOnShutdown = TRUE; // by default, we erase encryption keys on system shutdown

+static BOOL AllowTrimCommand = FALSE;

+static BOOL RamEncryptionActivated = FALSE;

+static ExGetFirmwareEnvironmentVariableFn ExGetFirmwareEnvironmentVariablePtr = NULL;

+static KeQueryInterruptTimePreciseFn KeQueryInterruptTimePrecisePtr = NULL;

+static KeAreAllApcsDisabledFn KeAreAllApcsDisabledPtr = NULL;

+static KeSetSystemGroupAffinityThreadFn KeSetSystemGroupAffinityThreadPtr = NULL;

+static KeQueryActiveGroupCountFn KeQueryActiveGroupCountPtr = NULL;

+static KeQueryActiveProcessorCountExFn KeQueryActiveProcessorCountExPtr = NULL;

+int EncryptionIoRequestCount = 0;

+int EncryptionItemCount = 0;

+int EncryptionFragmentSize = 0;

+BOOL AlignValue (ULONG ulValue, ULONG ulAlignment, ULONG *pulResult)

+{

+ BOOL bRet = FALSE;

+ HRESULT hr;

+ if (ulAlignment == 0)

+ {

+ *pulResult = ulValue;

+ bRet = TRUE;

+ }

+ else

+ {

+ ulAlignment -= 1;

+ hr = ULongAdd (ulValue, ulAlignment, &ulValue);

+ if (S_OK == hr)

+ {

+ *pulResult = ulValue & (~ulAlignment);

+ bRet = TRUE;

+ }

+ }

+

+ return bRet;

+}

+

+BOOL IsUefiBoot ()

+{

+ BOOL bStatus = FALSE;

+ NTSTATUS ntStatus = STATUS_NOT_IMPLEMENTED;

+

+ Dump ("IsUefiBoot BEGIN\n");

+ ASSERT (KeGetCurrentIrql() == PASSIVE_LEVEL);

+

+ if (ExGetFirmwareEnvironmentVariablePtr)

+ {

+ ULONG valueLengh = 0;

+ UNICODE_STRING emptyName;

+ GUID guid;

+ RtlInitUnicodeString(&emptyName, L"");

+ memset (&guid, 0, sizeof(guid));

+ Dump ("IsUefiBoot calling ExGetFirmwareEnvironmentVariable\n");

+ ntStatus = ExGetFirmwareEnvironmentVariablePtr (&emptyName, &guid, NULL, &valueLengh, NULL);

+ Dump ("IsUefiBoot ExGetFirmwareEnvironmentVariable returned 0x%08x\n", ntStatus);

+ }

+ else

+ {

+ Dump ("IsUefiBoot ExGetFirmwareEnvironmentVariable not found on the system\n");

+ }

+

+ if (STATUS_NOT_IMPLEMENTED != ntStatus)

+ bStatus = TRUE;

+

+ Dump ("IsUefiBoot bStatus = %s END\n", bStatus? "TRUE" : "FALSE");

+ return bStatus;

+}

+

+void GetDriverRandomSeed (unsigned char* pbRandSeed, size_t cbRandSeed)

+{

+ LARGE_INTEGER iSeed, iSeed2;

+ byte digest[WHIRLPOOL_DIGESTSIZE];

+ WHIRLPOOL_CTX tctx;

+ size_t count;

+

+#ifndef _WIN64

+ KFLOATING_SAVE floatingPointState;

+ NTSTATUS saveStatus = STATUS_INVALID_PARAMETER;

+ if (HasISSE())

+ saveStatus = KeSaveFloatingPointState (&floatingPointState);

+#endif

+

+ while (cbRandSeed)

+ {

+ WHIRLPOOL_init (&tctx);

+ // we hash current content of digest buffer which is uninitialized the first time

+ WHIRLPOOL_add (digest, WHIRLPOOL_DIGESTSIZE, &tctx);

+

+ // we use various time information as source of entropy

+ KeQuerySystemTime( &iSeed );

+ WHIRLPOOL_add ((unsigned char *) &(iSeed.QuadPart), sizeof(iSeed.QuadPart), &tctx);

+ iSeed = KeQueryPerformanceCounter (&iSeed2);

+ WHIRLPOOL_add ((unsigned char *) &(iSeed.QuadPart), sizeof(iSeed.QuadPart), &tctx);

+ WHIRLPOOL_add ((unsigned char *) &(iSeed2.QuadPart), sizeof(iSeed2.QuadPart), &tctx);

+ if (KeQueryInterruptTimePrecisePtr)

+ {

+ iSeed.QuadPart = KeQueryInterruptTimePrecisePtr (&iSeed2.QuadPart);

+ WHIRLPOOL_add ((unsigned char *) &(iSeed.QuadPart), sizeof(iSeed.QuadPart), &tctx);

+ WHIRLPOOL_add ((unsigned char *) &(iSeed2.QuadPart), sizeof(iSeed2.QuadPart), &tctx);

+ }

+ else

+ {

+ iSeed.QuadPart = KeQueryInterruptTime ();

+ WHIRLPOOL_add ((unsigned char *) &(iSeed.QuadPart), sizeof(iSeed.QuadPart), &tctx);

+ }

+

+ /* use JitterEntropy library to get good quality random bytes based on CPU timing jitter */

+ if (0 == jent_entropy_init ())

+ {

+ struct rand_data *ec = jent_entropy_collector_alloc (1, 0);

+ if (ec)

+ {

+ ssize_t rndLen = jent_read_entropy (ec, (char*) digest, sizeof (digest));

+ if (rndLen > 0)

+ WHIRLPOOL_add (digest, (unsigned int) rndLen, &tctx);

+ jent_entropy_collector_free (ec);

+ }

+ }

+

+ // use RDSEED or RDRAND from CPU as source of entropy if enabled

+ if ( IsCpuRngEnabled() &&

+ ( (HasRDSEED() && RDSEED_getBytes (digest, sizeof (digest)))

+ || (HasRDRAND() && RDRAND_getBytes (digest, sizeof (digest)))

+ ))

+ {

+ WHIRLPOOL_add (digest, sizeof(digest), &tctx);

+ }

+ WHIRLPOOL_finalize (&tctx, digest);

+

+ count = VC_MIN (cbRandSeed, sizeof (digest));

+

+ // copy digest value to seed buffer

+ memcpy (pbRandSeed, digest, count);

+ cbRandSeed -= count;

+ pbRandSeed += count;

+ }

+

+#if !defined (_WIN64)

+ if (NT_SUCCESS (saveStatus))

+ KeRestoreFloatingPointState (&floatingPointState);

+#endif

+

+ FAST_ERASE64 (digest, sizeof (digest));

+ FAST_ERASE64 (&iSeed.QuadPart, 8);

+ FAST_ERASE64 (&iSeed2.QuadPart, 8);

+ burn (&tctx, sizeof(tctx));

+}

+

+ Dump ("DriverEntry " TC_APP_NAME " " VERSION_STRING VERSION_STRING_SUFFIX "\n");

+ // KeAreAllApcsDisabled is available starting from Windows Server 2003

+ if ((OsMajorVersion > 5) || (OsMajorVersion == 5 && OsMinorVersion >= 2))

+ {

+ UNICODE_STRING KeAreAllApcsDisabledFuncName;

+ RtlInitUnicodeString(&KeAreAllApcsDisabledFuncName, L"KeAreAllApcsDisabled");

+

+ KeAreAllApcsDisabledPtr = (KeAreAllApcsDisabledFn) MmGetSystemRoutineAddress(&KeAreAllApcsDisabledFuncName);

+ }

+

+ // KeQueryActiveGroupCount/KeQueryActiveProcessorCountEx/KeSetSystemGroupAffinityThread are available starting from Windows 7

+ UNICODE_STRING saveFuncName, restoreFuncName, groupCountFuncName, procCountFuncName, setAffinityFuncName;

+ RtlInitUnicodeString(&groupCountFuncName, L"KeQueryActiveGroupCount");

+ RtlInitUnicodeString(&procCountFuncName, L"KeQueryActiveProcessorCountEx");

+ RtlInitUnicodeString(&setAffinityFuncName, L"KeSetSystemGroupAffinityThread");

+ KeSetSystemGroupAffinityThreadPtr = (KeSetSystemGroupAffinityThreadFn) MmGetSystemRoutineAddress(&setAffinityFuncName);

+ KeQueryActiveGroupCountPtr = (KeQueryActiveGroupCountFn) MmGetSystemRoutineAddress(&groupCountFuncName);

+ KeQueryActiveProcessorCountExPtr = (KeQueryActiveProcessorCountExFn) MmGetSystemRoutineAddress(&procCountFuncName);

+ }

+

+ // ExGetFirmwareEnvironmentVariable is available starting from Windows 8

+ if ((OsMajorVersion > 6) || (OsMajorVersion == 6 && OsMinorVersion >= 2))

+ {

+ UNICODE_STRING funcName;

+ RtlInitUnicodeString(&funcName, L"ExGetFirmwareEnvironmentVariable");

+ ExGetFirmwareEnvironmentVariablePtr = (ExGetFirmwareEnvironmentVariableFn) MmGetSystemRoutineAddress(&funcName);

+ }

+

+ // KeQueryInterruptTimePrecise is available starting from Windows 8.1

+ if ((OsMajorVersion > 6) || (OsMajorVersion == 6 && OsMinorVersion >= 3))

+ {

+ UNICODE_STRING funcName;

+ RtlInitUnicodeString(&funcName, L"KeQueryInterruptTimePrecise");

+ KeQueryInterruptTimePrecisePtr = (KeQueryInterruptTimePreciseFn) MmGetSystemRoutineAddress(&funcName);

+ LoadBootArguments(IsUefiBoot ());

+#ifdef _WIN64

+ if ((OsMajorVersion > 6) || (OsMajorVersion == 6 && OsMinorVersion >= 1))

+ {

+ // we enable RAM encryption only starting from Windows 7

+ if (RamEncryptionActivated)

+ {

+ if (t1ha_selfcheck__t1ha2() != 0)

+ TC_BUG_CHECK (STATUS_INVALID_PARAMETER);

+ if (!InitializeSecurityParameters(GetDriverRandomSeed))

+ TC_BUG_CHECK (STATUS_INVALID_PARAMETER);

+

+ EnableRamEncryption (TRUE);

+ }

+ }

+#endif

+

+#if defined (DEBUG) || defined (DEBUG_TRACE)

+#endif

+static wchar_t UpperCaseUnicodeChar (wchar_t c)

+{

+ if (c >= L'a' && c <= L'z')

+ return (c - L'a') + L'A';

+ return c;

+}

+

+static BOOL StringNoCaseCompare (const wchar_t* str1, const wchar_t* str2, size_t len)

+{

+ if (str1 && str2)

+ {

+ while (len)

+ {

+ if (UpperCaseUnicodeChar (*str1) != UpperCaseUnicodeChar (*str2))

+ return FALSE;

+ str1++;

+ str2++;

+ len--;

+ }

+ }

+

+ return TRUE;

+}

+

+static BOOL CheckStringLength (const wchar_t* str, size_t cchSize, size_t minLength, size_t maxLength, size_t* pcchLength)

+{

+ size_t actualLength;

+ for (actualLength = 0; actualLength < cchSize; actualLength++)

+ {

+ if (str[actualLength] == 0)

+ break;

+ }

+

+ if (pcchLength)

+ *pcchLength = actualLength;

+

+ if (actualLength == cchSize)

+ return FALSE;

+

+ if ((minLength != ((size_t) -1)) && (actualLength < minLength))

+ return FALSE;

+

+ if ((maxLength != ((size_t) -1)) && (actualLength > maxLength))

+ return FALSE;

+

+ return TRUE;

+}

+

+ case IOCTL_STORAGE_GET_MEDIA_TYPES:

+ case IOCTL_DISK_UPDATE_DRIVE_SIZE:

+ // Add 1MB to the disk size to emulate the geometry of a real MBR disk

+ outputBuffer->DiskSize.QuadPart = Extension->DiskLength + BYTES_PER_MB;

+ if (EnableExtendedIoctlSupport || Extension->TrimEnabled)

+ Dump ("IOCTL_STORAGE_QUERY_PROPERTY - PropertyId = %d, type = %d, InputBufferLength = %d, OutputBufferLength = %d\n", pStoragePropQuery->PropertyId, type, (int) irpSp->Parameters.DeviceIoControl.InputBufferLength, (int) irpSp->Parameters.DeviceIoControl.OutputBufferLength);

+ if (Extension->bRawDevice &&

+ (pStoragePropQuery->PropertyId == (STORAGE_PROPERTY_ID) StorageDeviceLBProvisioningProperty)

+ )

+ {

+ IO_STATUS_BLOCK IoStatus;

+ Dump ("ProcessVolumeDeviceControlIrp: sending IOCTL_STORAGE_QUERY_PROPERTY (%d) to device\n", (int) pStoragePropQuery->PropertyId);

+ Irp->IoStatus.Status = ZwDeviceIoControlFile (

+ Extension->hDeviceFile,

+ NULL,

+ NULL,

+ NULL,

+ &IoStatus,

+ IOCTL_STORAGE_QUERY_PROPERTY,

+ Irp->AssociatedIrp.SystemBuffer,

+ irpSp->Parameters.DeviceIoControl.InputBufferLength,

+ Irp->AssociatedIrp.SystemBuffer,

+ irpSp->Parameters.DeviceIoControl.OutputBufferLength);

+ Dump ("ProcessVolumeDeviceControlIrp: ZwDeviceIoControlFile returned 0x%.8X\n", (DWORD) Irp->IoStatus.Status);

+ if (Irp->IoStatus.Status == STATUS_SUCCESS)

+ {

+ Irp->IoStatus.Status = IoStatus.Status;

+ Irp->IoStatus.Information = IoStatus.Information;

+ }

+ }

+ else if ( (pStoragePropQuery->PropertyId == StorageAccessAlignmentProperty)

+ ULONG descriptorSize;

+ Dump ("IOCTL_STORAGE_QUERY_PROPERTY - StorageDeviceProperty\n");

+ descriptorSize = sizeof (STORAGE_DEVICE_DESCRIPTOR) + 1;

+ Dump ("IOCTL_STORAGE_QUERY_PROPERTY - StorageAdapterProperty\n");

+ descriptorSize = sizeof (STORAGE_ADAPTER_DESCRIPTOR);

+ Dump ("IOCTL_STORAGE_QUERY_PROPERTY - StorageAccessAlignmentProperty\n");

+ Dump ("IOCTL_STORAGE_QUERY_PROPERTY - StorageDeviceSeekPenaltyProperty\n");

+ Dump ("IOCTL_STORAGE_QUERY_PROPERTY - StorageDeviceSeekPenaltyProperty: set IncursSeekPenalty to %s\n", Extension->IncursSeekPenalty? "TRUE" : "FALSE");

+ outputBuffer->IncursSeekPenalty = (BOOLEAN) Extension->IncursSeekPenalty;

+ Dump ("IOCTL_STORAGE_QUERY_PROPERTY - StorageDeviceTrimProperty\n");

+ Dump ("IOCTL_STORAGE_QUERY_PROPERTY - StorageDeviceTrimProperty: set TrimEnabled to %s\n", Extension->TrimEnabled? "TRUE" : "FALSE");

+ outputBuffer->TrimEnabled = (BOOLEAN) Extension->TrimEnabled;

+ }

+ }

+ outputBuffer->StartingOffset.QuadPart = BYTES_PER_MB; // Set offset to 1MB to emulate the partition offset on a real MBR disk

+ outputBuffer->StartingOffset.QuadPart = BYTES_PER_MB; // Set offset to 1MB to emulate the partition offset on a real MBR disk

+ outputBuffer->PartitionEntry->StartingOffset.QuadPart = BYTES_PER_MB; // Set offset to 1MB to emulate the partition offset on a real MBR disk

+ outputBuffer->PartitionEntry->StartingOffset.QuadPart = BYTES_PER_MB; // Set offset to 1MB to emulate the partition offset on a real MBR disk

+ DWORD dwBuffersize = min (pVerifyInformation->Length, 16 * PAGE_SIZE);

+ PVOID buffer = TCalloc (dwBuffersize);

+ LARGE_INTEGER offset;

+ DWORD dwRemainingBytes = pVerifyInformation->Length, dwReadCount;

+ while (dwRemainingBytes)

+ {

+ dwReadCount = min (dwBuffersize, dwRemainingBytes);

+ Irp->IoStatus.Status = ZwReadFile (Extension->hDeviceFile, NULL, NULL, NULL, &ioStatus, buffer, dwReadCount, &offset, NULL);

+ if (NT_SUCCESS (Irp->IoStatus.Status) && ioStatus.Information != dwReadCount)

+ {

+ Irp->IoStatus.Status = STATUS_INVALID_PARAMETER;

+ break;

+ }

+ else if (!NT_SUCCESS (Irp->IoStatus.Status))

+ break;

+

+ dwRemainingBytes -= dwReadCount;

+ offset.QuadPart += (ULONGLONG) dwReadCount;

+ }

+

+ burn (buffer, dwBuffersize);

+ TCfree (buffer);

+ // Vista's, Windows 8.1 and later filesystem defragmenter fails if IOCTL_VOLUME_GET_VOLUME_DISK_EXTENTS does not succeed.

+ if (!(OsMajorVersion == 6 && OsMinorVersion == 0)

+ && !(IsOSAtLeast (WIN_8_1) && AllowWindowsDefrag && Extension->bRawDevice)

+ )

+

+ if (IsOSAtLeast (WIN_8_1))

+ {

+ // Windows 10 filesystem defragmenter works only if we report an extent with a real disk number

+ // So in the case of a VeraCrypt disk based volume, we use the disk number

+ // of the underlaying physical disk and we report a single extent

+ extents->NumberOfDiskExtents = 1;

+ extents->Extents[0].DiskNumber = Extension->DeviceNumber;

+ extents->Extents[0].StartingOffset.QuadPart = BYTES_PER_MB; // Set offset to 1MB to emulate the partition offset on a real MBR disk

+ extents->Extents[0].ExtentLength.QuadPart = Extension->DiskLength;

+ }

+ else

+ {

+ // Vista: No extent data can be returned as this is not a physical drive.

+ memset (extents, 0, sizeof (*extents));

+ extents->NumberOfDiskExtents = 0;

+ }

+ capacity->DiskLength.QuadPart = Extension->DiskLength + BYTES_PER_MB; // Add 1MB to the disk size to emulate the geometry of a real MBR disk

+ capacity->NumberOfBlocks.QuadPart = capacity->DiskLength.QuadPart / capacity->BlockLength;

+ case IOCTL_DISK_UPDATE_PROPERTIES:

+ Dump ("ProcessVolumeDeviceControlIrp: returning STATUS_SUCCESS for IOCTL_DISK_UPDATE_PROPERTIES\n");

+ Irp->IoStatus.Status = STATUS_SUCCESS;

+ Irp->IoStatus.Information = 0;

+

+ break;

+

+ case IOCTL_DISK_MEDIA_REMOVAL:

+ case IOCTL_STORAGE_MEDIA_REMOVAL:

+ Dump ("ProcessVolumeDeviceControlIrp: returning STATUS_SUCCESS for %ls\n", TCTranslateCode (irpSp->Parameters.DeviceIoControl.IoControlCode));

+ Irp->IoStatus.Status = STATUS_SUCCESS;

+ Irp->IoStatus.Information = 0;

+

+ break;

+

+

+ case IOCTL_STORAGE_MANAGE_DATA_SET_ATTRIBUTES:

+ Dump ("ProcessVolumeDeviceControlIrp: IOCTL_STORAGE_MANAGE_DATA_SET_ATTRIBUTES\n");

+ Irp->IoStatus.Status = STATUS_INVALID_DEVICE_REQUEST;

+ Irp->IoStatus.Information = 0;

+ if (Extension->bRawDevice && Extension->TrimEnabled)

+ {

+ if (ValidateIOBufferSize (Irp, sizeof (DEVICE_MANAGE_DATA_SET_ATTRIBUTES), ValidateInput))

+ {

+ PIO_STACK_LOCATION irpSp = IoGetCurrentIrpStackLocation (Irp);

+ DWORD inputLength = irpSp->Parameters.DeviceIoControl.InputBufferLength;

+ PDEVICE_MANAGE_DATA_SET_ATTRIBUTES pInputAttrs = (PDEVICE_MANAGE_DATA_SET_ATTRIBUTES) Irp->AssociatedIrp.SystemBuffer;

+ DEVICE_DATA_MANAGEMENT_SET_ACTION action = pInputAttrs->Action;

+ BOOL bEntireSet = pInputAttrs->Flags & DEVICE_DSM_FLAG_ENTIRE_DATA_SET_RANGE? TRUE : FALSE;

+ ULONGLONG minSizedataSet = (ULONGLONG) pInputAttrs->DataSetRangesOffset + (ULONGLONG) pInputAttrs->DataSetRangesLength;

+ ULONGLONG minSizeParameter = (ULONGLONG) pInputAttrs->ParameterBlockOffset + (ULONGLONG) pInputAttrs->ParameterBlockLength;

+ ULONGLONG minSizeGeneric = sizeof(DEVICE_MANAGE_DATA_SET_ATTRIBUTES) + (ULONGLONG) pInputAttrs->ParameterBlockLength + (ULONGLONG) pInputAttrs->DataSetRangesLength;

+ PDEVICE_MANAGE_DATA_SET_ATTRIBUTES pNewSetAttrs = NULL;

+ ULONG ulNewInputLength = 0;

+ BOOL bForwardIoctl = FALSE;

+

+ if (((ULONGLONG) inputLength) >= minSizeGeneric && ((ULONGLONG) inputLength) >= minSizedataSet && ((ULONGLONG) inputLength) >= minSizeParameter)

+ {

+ if (bEntireSet)

+ {

+ if (minSizedataSet)

+ {

+ Dump ("ProcessVolumeDeviceControlIrp: IOCTL_STORAGE_MANAGE_DATA_SET_ATTRIBUTES - DEVICE_DSM_FLAG_ENTIRE_DATA_SET_RANGE set but data set range specified=> Error.\n");

+ Irp->IoStatus.Status = STATUS_INVALID_PARAMETER;

+ Irp->IoStatus.Information = 0;

+ }

+ else

+ {

+ DWORD dwDataSetOffset;

+ DWORD dwDataSetLength = sizeof(DEVICE_DATA_SET_RANGE);

+

+ if (AlignValue (inputLength, sizeof(DEVICE_DATA_SET_RANGE), &dwDataSetOffset))

+ {

+ Dump ("ProcessVolumeDeviceControlIrp: IOCTL_STORAGE_MANAGE_DATA_SET_ATTRIBUTES - DEVICE_DSM_FLAG_ENTIRE_DATA_SET_RANGE set. Setting data range to all volume.\n");

+

+ if (S_OK == ULongAdd(dwDataSetOffset, dwDataSetLength, &ulNewInputLength))

+ {

+ pNewSetAttrs = (PDEVICE_MANAGE_DATA_SET_ATTRIBUTES) TCalloc (ulNewInputLength);

+ if (pNewSetAttrs)

+ {

+ PDEVICE_DATA_SET_RANGE pRange = (PDEVICE_DATA_SET_RANGE) (((unsigned char*) pNewSetAttrs) + dwDataSetOffset);

+

+ memcpy (pNewSetAttrs, pInputAttrs, inputLength);

+

+ pRange->StartingOffset = (ULONGLONG) Extension->cryptoInfo->hiddenVolume ? Extension->cryptoInfo->hiddenVolumeOffset : Extension->cryptoInfo->volDataAreaOffset;

+ pRange->LengthInBytes = Extension->DiskLength;

+

+ pNewSetAttrs->Size = sizeof(DEVICE_MANAGE_DATA_SET_ATTRIBUTES);

+ pNewSetAttrs->Action = action;

+ pNewSetAttrs->Flags = pInputAttrs->Flags & (~DEVICE_DSM_FLAG_ENTIRE_DATA_SET_RANGE);

+ pNewSetAttrs->ParameterBlockOffset = pInputAttrs->ParameterBlockOffset;

+ pNewSetAttrs->ParameterBlockLength = pInputAttrs->ParameterBlockLength;

+ pNewSetAttrs->DataSetRangesOffset = dwDataSetOffset;

+ pNewSetAttrs->DataSetRangesLength = dwDataSetLength;

+

+ bForwardIoctl = TRUE;

+ }

+ else

+ {

+ Dump ("ProcessVolumeDeviceControlIrp: IOCTL_STORAGE_MANAGE_DATA_SET_ATTRIBUTES - Failed to allocate memory.\n");

+ Irp->IoStatus.Status = STATUS_INSUFFICIENT_RESOURCES;

+ Irp->IoStatus.Information = 0;

+ }

+ }

+ else

+ {

+ Dump ("ProcessVolumeDeviceControlIrp: IOCTL_STORAGE_MANAGE_DATA_SET_ATTRIBUTES - DEVICE_DSM_FLAG_ENTIRE_DATA_SET_RANGE set but data range length computation overflowed.\n");

+ Irp->IoStatus.Status = STATUS_INVALID_PARAMETER;

+ Irp->IoStatus.Information = 0;

+ }

+ }

+ else

+ {

+ Dump ("ProcessVolumeDeviceControlIrp: IOCTL_STORAGE_MANAGE_DATA_SET_ATTRIBUTES - DEVICE_DSM_FLAG_ENTIRE_DATA_SET_RANGE set but data set offset computation overflowed.\n");

+ Irp->IoStatus.Status = STATUS_INVALID_PARAMETER;

+ Irp->IoStatus.Information = 0;

+ }

+ }

+ }

+ else

+ {

+ Dump ("ProcessVolumeDeviceControlIrp: IOCTL_STORAGE_MANAGE_DATA_SET_ATTRIBUTES - creating new data set range from input range.\n");

+ ulNewInputLength = inputLength;

+ pNewSetAttrs = (PDEVICE_MANAGE_DATA_SET_ATTRIBUTES) TCalloc (inputLength);

+ if (pNewSetAttrs)

+ {

+ PDEVICE_DATA_SET_RANGE pNewRanges = (PDEVICE_DATA_SET_RANGE) (((unsigned char*) pNewSetAttrs) + pInputAttrs->DataSetRangesOffset);

+ PDEVICE_DATA_SET_RANGE pInputRanges = (PDEVICE_DATA_SET_RANGE) (((unsigned char*) pInputAttrs) + pInputAttrs->DataSetRangesOffset);

+ DWORD dwInputRangesCount = 0, dwNewRangesCount = 0, i;

+ ULONGLONG ullStartingOffset, ullNewOffset, ullEndOffset;

+ HRESULT hResult;

+

+ memcpy (pNewSetAttrs, pInputAttrs, inputLength);

+

+ dwInputRangesCount = pInputAttrs->DataSetRangesLength / sizeof(DEVICE_DATA_SET_RANGE);

+

+ for (i = 0; i < dwInputRangesCount; i++)

+ {

+ ullStartingOffset = (ULONGLONG) pInputRanges[i].StartingOffset;

+ hResult = ULongLongAdd(ullStartingOffset,

+ (ULONGLONG) Extension->cryptoInfo->hiddenVolume ? Extension->cryptoInfo->hiddenVolumeOffset : Extension->cryptoInfo->volDataAreaOffset,

+ &ullNewOffset);

+ if (hResult != S_OK)

+ continue;

+ else if (S_OK != ULongLongAdd(ullStartingOffset, (ULONGLONG) pInputRanges[i].LengthInBytes, &ullEndOffset))

+ continue;

+ else if (ullEndOffset > (ULONGLONG) Extension->DiskLength)

+ continue;

+ else if (ullNewOffset > 0)

+ {

+ pNewRanges[dwNewRangesCount].StartingOffset = (LONGLONG) ullNewOffset;

+ pNewRanges[dwNewRangesCount].LengthInBytes = pInputRanges[i].LengthInBytes;

+

+ dwNewRangesCount++;

+ }

+ }

+

+ Dump ("ProcessVolumeDeviceControlIrp: IOCTL_STORAGE_MANAGE_DATA_SET_ATTRIBUTES - %d valid range processed from %d range in input.\n", (int) dwNewRangesCount, (int) dwInputRangesCount);

+

+ pNewSetAttrs->DataSetRangesLength = dwNewRangesCount * sizeof (DEVICE_DATA_SET_RANGE);

+

+ bForwardIoctl = TRUE;

+ }

+ else

+ {

+ Dump ("ProcessVolumeDeviceControlIrp: IOCTL_STORAGE_MANAGE_DATA_SET_ATTRIBUTES - Failed to allocate memory.\n");

+ Irp->IoStatus.Status = STATUS_INSUFFICIENT_RESOURCES;

+ Irp->IoStatus.Information = 0;

+ }

+ }

+ }

+ else

+ {

+ Dump ("ProcessVolumeDeviceControlIrp: IOCTL_STORAGE_MANAGE_DATA_SET_ATTRIBUTES - buffer containing DEVICE_MANAGE_DATA_SET_ATTRIBUTES has invalid length.\n");

+ Irp->IoStatus.Status = STATUS_INVALID_PARAMETER;

+ Irp->IoStatus.Information = 0;

+ }

+

+

+ if (bForwardIoctl)

+ {

+ if (action == DeviceDsmAction_Trim)

+ {

+ Dump ("ProcessVolumeDeviceControlIrp: IOCTL_STORAGE_MANAGE_DATA_SET_ATTRIBUTES - DeviceDsmAction_Trim.\n");

+

+ if (Extension->cryptoInfo->hiddenVolume || !AllowTrimCommand)

+ {

+ Dump ("ProcessVolumeDeviceControlIrp: TRIM command filtered\n");

+ Irp->IoStatus.Status = STATUS_SUCCESS;

+ Irp->IoStatus.Information = 0;

+ }

+ else

+ {

+ IO_STATUS_BLOCK IoStatus;

+ Dump ("ProcessVolumeDeviceControlIrp: sending TRIM to device\n");

+ Irp->IoStatus.Status = ZwDeviceIoControlFile (

+ Extension->hDeviceFile,

+ NULL,

+ NULL,

+ NULL,

+ &IoStatus,

+ IOCTL_STORAGE_MANAGE_DATA_SET_ATTRIBUTES,

+ (PVOID) pNewSetAttrs,

+ ulNewInputLength,

+ NULL,

+ 0);

+ Dump ("ProcessVolumeDeviceControlIrp: ZwDeviceIoControlFile returned 0x%.8X\n", (DWORD) Irp->IoStatus.Status);

+ if (Irp->IoStatus.Status == STATUS_SUCCESS)

+ {

+ Irp->IoStatus.Status = IoStatus.Status;

+ Irp->IoStatus.Information = IoStatus.Information;

+ }

+ else

+ Irp->IoStatus.Information = 0;

+ }

+ }

+ else

+ {

+ switch (action)

+ {

+ case DeviceDsmAction_Notification: Dump ("ProcessVolumeDeviceControlIrp: IOCTL_STORAGE_MANAGE_DATA_SET_ATTRIBUTES - DeviceDsmAction_Notification\n"); break;

+ case DeviceDsmAction_OffloadRead: Dump ("ProcessVolumeDeviceControlIrp: IOCTL_STORAGE_MANAGE_DATA_SET_ATTRIBUTES - DeviceDsmAction_OffloadRead\n"); break;

+ case DeviceDsmAction_OffloadWrite: Dump ("ProcessVolumeDeviceControlIrp: IOCTL_STORAGE_MANAGE_DATA_SET_ATTRIBUTES - DeviceDsmAction_OffloadWrite\n"); break;

+ case DeviceDsmAction_Allocation: Dump ("ProcessVolumeDeviceControlIrp: IOCTL_STORAGE_MANAGE_DATA_SET_ATTRIBUTES - DeviceDsmAction_Allocation\n"); break;

+ case DeviceDsmAction_Scrub: Dump ("ProcessVolumeDeviceControlIrp: IOCTL_STORAGE_MANAGE_DATA_SET_ATTRIBUTES - DeviceDsmAction_Scrub\n"); break;

+ case DeviceDsmAction_DrtQuery: Dump ("ProcessVolumeDeviceControlIrp: IOCTL_STORAGE_MANAGE_DATA_SET_ATTRIBUTES - DeviceDsmAction_DrtQuery\n"); break;

+ case DeviceDsmAction_DrtClear: Dump ("ProcessVolumeDeviceControlIrp: IOCTL_STORAGE_MANAGE_DATA_SET_ATTRIBUTES - DeviceDsmAction_DrtClear\n"); break;

+ case DeviceDsmAction_DrtDisable: Dump ("ProcessVolumeDeviceControlIrp: IOCTL_STORAGE_MANAGE_DATA_SET_ATTRIBUTES - DeviceDsmAction_DrtDisable\n"); break;

+ default: Dump ("ProcessVolumeDeviceControlIrp: IOCTL_STORAGE_MANAGE_DATA_SET_ATTRIBUTES - unknown action %d\n", (int) action); break;

+ }

+

+ }

+ }

+

+ if (pNewSetAttrs)

+ TCfree (pNewSetAttrs);

+ }

+ }

+#if defined (DEBUG) || defined (DEBUG_TRACE)

+ else

+ Dump ("ProcessVolumeDeviceControlIrp: returning STATUS_INVALID_DEVICE_REQUEST for IOCTL_STORAGE_MANAGE_DATA_SET_ATTRIBUTES\n");

+#endif

+ break;

+ case IOCTL_MOUNTDEV_LINK_CREATED:

+ Dump ("ProcessVolumeDeviceControlIrp (unknown code 0x%.8X)\n", irpSp->Parameters.DeviceIoControl.IoControlCode);

+ return TCCompleteIrp (Irp, STATUS_INVALID_DEVICE_REQUEST, 0);

+ }

+

+ PIO_STACK_LOCATION irpSp = IoGetCurrentIrpStackLocation (Irp);

+ if (irpSp->Parameters.DeviceIoControl.InputBufferLength != sizeof (OPEN_TEST_STRUCT))

+ {

+ Irp->IoStatus.Status = STATUS_INVALID_PARAMETER;

+ Irp->IoStatus.Information = 0;

+ break;

+ }

+

+ // check that opentest->wszFileName is a device path that starts with "\\Device\\Harddisk"

+ // 16 is the length of "\\Device\\Harddisk" which is the minimum

+ if ( !CheckStringLength (opentest->wszFileName, TC_MAX_PATH, 16, (size_t) -1, NULL)

+ || (!StringNoCaseCompare (opentest->wszFileName, L"\\Device\\Harddisk", 16))

+ )

+ {

+ Irp->IoStatus.Status = STATUS_INVALID_PARAMETER;

+ Irp->IoStatus.Information = 0;

+ break;

+ }

+

+

+ if (NT_SUCCESS (ntStatus) && (IoStatus.Information >= TC_VOLUME_HEADER_EFFECTIVE_SIZE))

+ size_t devicePathLen = 0;

+ WCHAR* wszPath = NULL;

+ // check that request->DevicePath has the expected format "\\Device\\HarddiskXXX\\Partition0"

+ // 28 is the length of "\\Device\\Harddisk0\\Partition0" which is the minimum

+ // 30 is the length of "\\Device\\Harddisk255\\Partition0" which is the maximum

+ wszPath = request->DevicePath;

+ if ( !CheckStringLength (wszPath, TC_MAX_PATH, 28, 30, &devicePathLen)

+ || (memcmp (wszPath, L"\\Device\\Harddisk", 16 * sizeof (WCHAR)))

+ || (memcmp (wszPath + (devicePathLen - 11), L"\\Partition0", 11 * sizeof (WCHAR)))

+ )

+ {

+ Irp->IoStatus.Status = STATUS_INVALID_PARAMETER;

+ Irp->IoStatus.Information = 0;

+ break;

+ }

+

+ byte *readBuffer = TCalloc (TC_MAX_VOLUME_SECTOR_SIZE);

+ if (!readBuffer)

+ Irp->IoStatus.Status = STATUS_INSUFFICIENT_RESOURCES;

+ Irp->IoStatus.Information = 0;

+ }

+ else

+ {

+ // Determine if the first sector contains a portion of the VeraCrypt Boot Loader

+ offset.QuadPart = 0; // MBR

+

+ ntStatus = ZwReadFile (NtFileHandle,

+ NULL,

+ NULL,

+ NULL,

+ &IoStatus,

+ readBuffer,

+ TC_MAX_VOLUME_SECTOR_SIZE,

+ &offset,

+ NULL);

+ if (NT_SUCCESS (ntStatus))

+ // check that we could read all needed data

+ if (IoStatus.Information >= TC_SECTOR_SIZE_BIOS)

+ size_t i;

+

+ // Check for dynamic drive

+ request->DriveIsDynamic = FALSE;

+

+ if (readBuffer[510] == 0x55 && readBuffer[511] == 0xaa)

+ int i;

+ for (i = 0; i < 4; ++i)

+ {

+ if (readBuffer[446 + i * 16 + 4] == PARTITION_LDM)

+ {

+ request->DriveIsDynamic = TRUE;

+ break;

+ }

+ }

+ request->BootLoaderVersion = 0;

+ request->Configuration = 0;

+ request->UserConfiguration = 0;

+ request->CustomUserMessage[0] = 0;

+ // Search for the string "VeraCrypt"

+ for (i = 0; i < TC_SECTOR_SIZE_BIOS - strlen (TC_APP_NAME); ++i)

+ if (memcmp (readBuffer + i, TC_APP_NAME, strlen (TC_APP_NAME)) == 0)

+ {

+ request->BootLoaderVersion = BE16 (*(uint16 *) (readBuffer + TC_BOOT_SECTOR_VERSION_OFFSET));

+ request->Configuration = readBuffer[TC_BOOT_SECTOR_CONFIG_OFFSET];

+

+ if (request->BootLoaderVersion != 0 && request->BootLoaderVersion <= VERSION_NUM)

+ {

+ request->UserConfiguration = readBuffer[TC_BOOT_SECTOR_USER_CONFIG_OFFSET];

+ memcpy (request->CustomUserMessage, readBuffer + TC_BOOT_SECTOR_USER_MESSAGE_OFFSET, TC_BOOT_SECTOR_USER_MESSAGE_MAX_LENGTH);

+ }

+ break;

+ }

+

+ Irp->IoStatus.Status = STATUS_SUCCESS;

+ Irp->IoStatus.Information = sizeof (*request);

+ }

+ else

+ {

+ Irp->IoStatus.Status = STATUS_INVALID_PARAMETER;

+ Irp->IoStatus.Information = 0;

+ else

+ {

+ Irp->IoStatus.Status = ntStatus;

+ Irp->IoStatus.Information = 0;

+ }

+ TCfree (readBuffer);

+ prop->mountDisabled = ListExtension->bMountManager? FALSE : TRUE;

+ PIO_STACK_LOCATION irpSp = IoGetCurrentIrpStackLocation (Irp);

+ if ((irpSp->Parameters.DeviceIoControl.InputBufferLength != sizeof (MOUNT_STRUCT))

+ || mount->VolumePassword.Length > MAX_PASSWORD || mount->ProtectedHidVolPassword.Length > MAX_PASSWORD

+ PIO_STACK_LOCATION irpSp = IoGetCurrentIrpStackLocation (Irp);

+

+ if (irpSp->Parameters.DeviceIoControl.InputBufferLength != sizeof (UNMOUNT_STRUCT))

+ {

+ Irp->IoStatus.Status = STATUS_INVALID_PARAMETER;

+ Irp->IoStatus.Information = 0;

+ break;

+ }

+ PIO_STACK_LOCATION irpSp = IoGetCurrentIrpStackLocation (Irp);

+

+ if (irpSp->Parameters.DeviceIoControl.InputBufferLength != sizeof (UNMOUNT_STRUCT))

+ {

+ Irp->IoStatus.Status = STATUS_INVALID_PARAMETER;

+ Irp->IoStatus.Information = 0;

+ break;

+ }

+ case VC_IOCTL_EMERGENCY_CLEAR_ALL_KEYS:

+ EmergencyClearAllKeys (Irp, irpSp);

+ WipeCache();

+ break;

+

+ case VC_IOCTL_IS_RAM_ENCRYPTION_ENABLED:

+ if (ValidateIOBufferSize (Irp, sizeof (int), ValidateOutput))

+ {

+ *(int *) Irp->AssociatedIrp.SystemBuffer = IsRamEncryptionEnabled() ? 1 : 0;

+ Irp->IoStatus.Information = sizeof (int);

+ Irp->IoStatus.Status = STATUS_SUCCESS;

+ }

+ break;

+

+ case VC_IOCTL_ENCRYPTION_QUEUE_PARAMS:

+ if (ValidateIOBufferSize (Irp, sizeof (EncryptionQueueParameters), ValidateOutput))

+ {

+ EncryptionQueueParameters* pParams = (EncryptionQueueParameters*) Irp->AssociatedIrp.SystemBuffer;

+ pParams->EncryptionFragmentSize = EncryptionFragmentSize;

+ pParams->EncryptionIoRequestCount = EncryptionIoRequestCount;

+ pParams->EncryptionItemCount = EncryptionItemCount;

+ Irp->IoStatus.Information = sizeof (EncryptionQueueParameters);

+ Irp->IoStatus.Status = STATUS_SUCCESS;

+ }

+ break;

+

+ if (bDevice && pThreadBlock->mount->bPartitionInInactiveSysEncScope

+ && (!Extension->cryptoInfo->hiddenVolume)

+ && (Extension->cryptoInfo->EncryptedAreaLength.Value != Extension->cryptoInfo->VolumeSize.Value)

+ )

+ {

+ // Support partial encryption only in the case of system encryption

+ Extension->Queue.EncryptedAreaStart = 0;

+ Extension->Queue.EncryptedAreaEnd = Extension->cryptoInfo->EncryptedAreaLength.Value - 1;

+ if (Extension->Queue.CryptoInfo->EncryptedAreaLength.Value == 0)

+ {

+ Extension->Queue.EncryptedAreaStart = -1;

+ Extension->Queue.EncryptedAreaEnd = -1;

+ }

+ Extension->Queue.bSupportPartialEncryption = TRUE;

+ }

+ TC_CASE_RET_NAME (VC_IOCTL_EMERGENCY_CLEAR_ALL_KEYS);

+ TC_CASE_RET_NAME (VC_IOCTL_IS_RAM_ENCRYPTION_ENABLED);

+ TC_CASE_RET_NAME (VC_IOCTL_ENCRYPTION_QUEUE_PARAMS);

+ else if (ulCode == IOCTL_DISK_UPDATE_DRIVE_SIZE)

+ return (LPWSTR) _T ("IOCTL_DISK_UPDATE_DRIVE_SIZE");

+ else if (ulCode == IOCTL_STORAGE_MANAGE_DATA_SET_ATTRIBUTES)

+ return (LPWSTR) _T ("IOCTL_STORAGE_MANAGE_DATA_SET_ATTRIBUTES");

+ else if (ulCode == IOCTL_DISK_GROW_PARTITION)

+ return (LPWSTR) _T ("IOCTL_DISK_GROW_PARTITION");

+ VOID (*PsDereferenceImpersonationTokenD) (PACCESS_TOKEN ImpersonationToken);

+ UNICODE_STRING name;

+ RtlInitUnicodeString (&name, L"PsDereferenceImpersonationToken");

+ PsDereferenceImpersonationTokenD = MmGetSystemRoutineAddress (&name);

+ if (!PsDereferenceImpersonationTokenD)

+ TC_BUG_CHECK (STATUS_NOT_IMPLEMENTED);

+# define PsDereferencePrimaryToken

+# define PsDereferenceImpersonationToken PsDereferenceImpersonationTokenD

+ SeDeleteClientSecurity (&Extension->SecurityClientContext);

+# undef PsDereferencePrimaryToken

+# undef PsDereferenceImpersonationToken

+typedef struct

+{

+ PWSTR deviceName; ULONG IoControlCode; void *InputBuffer; ULONG InputBufferSize; void *OutputBuffer; ULONG OutputBufferSize;

+ NTSTATUS Status;

+ KEVENT WorkItemCompletedEvent;

+} TCDeviceIoControlWorkItemArgs;

+

+static VOID TCDeviceIoControlWorkItemRoutine (PDEVICE_OBJECT rootDeviceObject, TCDeviceIoControlWorkItemArgs *arg)

+{

+ arg->Status = TCDeviceIoControl (arg->deviceName, arg->IoControlCode, arg->InputBuffer, arg->InputBufferSize, arg->OutputBuffer, arg->OutputBufferSize);

+ KeSetEvent (&arg->WorkItemCompletedEvent, IO_NO_INCREMENT, FALSE);

+}

+ if ((KeGetCurrentIrql() >= APC_LEVEL) || VC_KeAreAllApcsDisabled())

+ {

+ TCDeviceIoControlWorkItemArgs args;

+

+ PIO_WORKITEM workItem = IoAllocateWorkItem (RootDeviceObject);

+ if (!workItem)

+ return STATUS_INSUFFICIENT_RESOURCES;

+

+ args.deviceName = deviceName;

+ args.IoControlCode = IoControlCode;

+ args.InputBuffer = InputBuffer;

+ args.InputBufferSize = InputBufferSize;

+ args.OutputBuffer = OutputBuffer;

+ args.OutputBufferSize = OutputBufferSize;

+

+ KeInitializeEvent (&args.WorkItemCompletedEvent, SynchronizationEvent, FALSE);

+ IoQueueWorkItem (workItem, TCDeviceIoControlWorkItemRoutine, DelayedWorkQueue, &args);

+

+ KeWaitForSingleObject (&args.WorkItemCompletedEvent, Executive, KernelMode, FALSE, NULL);

+ IoFreeWorkItem (workItem);

+

+ return args.Status;

+ }

+

+ if ((KeGetCurrentIrql() >= APC_LEVEL) || VC_KeAreAllApcsDisabled())

+ ULONG sectorSize;

+ status = GetDeviceSectorSize (driveDeviceObject, &sectorSize);

+ if (!NT_SUCCESS (status))

+ return status;

+

+ sectorBuffer = TCalloc (sectorSize);

+ for (offset.QuadPart = sysLength.QuadPart; ; offset.QuadPart += sectorSize)

+ status = TCReadDevice (driveDeviceObject, sectorBuffer, offset, sectorSize);

+ status = TCWriteDevice (driveDeviceObject, sectorBuffer, offset, sectorSize);

+typedef struct

+{

+ MOUNT_STRUCT* mount; PEXTENSION NewExtension;

+ NTSTATUS Status;

+ KEVENT WorkItemCompletedEvent;

+} UpdateFsVolumeInformationWorkItemArgs;

+

+static NTSTATUS UpdateFsVolumeInformation (MOUNT_STRUCT* mount, PEXTENSION NewExtension);

+

+static VOID UpdateFsVolumeInformationWorkItemRoutine (PDEVICE_OBJECT rootDeviceObject, UpdateFsVolumeInformationWorkItemArgs *arg)

+{

+ arg->Status = UpdateFsVolumeInformation (arg->mount, arg->NewExtension);

+ KeSetEvent (&arg->WorkItemCompletedEvent, IO_NO_INCREMENT, FALSE);

+}

+

+static NTSTATUS UpdateFsVolumeInformation (MOUNT_STRUCT* mount, PEXTENSION NewExtension)

+{

+ HANDLE volumeHandle;

+ PFILE_OBJECT volumeFileObject;

+ ULONG labelLen = (ULONG) wcslen (mount->wszLabel);

+ BOOL bIsNTFS = FALSE;

+ ULONG labelMaxLen, labelEffectiveLen;

+

+ if ((KeGetCurrentIrql() >= APC_LEVEL) || VC_KeAreAllApcsDisabled())

+ {

+ UpdateFsVolumeInformationWorkItemArgs args;

+

+ PIO_WORKITEM workItem = IoAllocateWorkItem (RootDeviceObject);

+ if (!workItem)

+ return STATUS_INSUFFICIENT_RESOURCES;

+

+ args.mount = mount;

+ args.NewExtension = NewExtension;

+

+ KeInitializeEvent (&args.WorkItemCompletedEvent, SynchronizationEvent, FALSE);

+ IoQueueWorkItem (workItem, UpdateFsVolumeInformationWorkItemRoutine, DelayedWorkQueue, &args);

+

+ KeWaitForSingleObject (&args.WorkItemCompletedEvent, Executive, KernelMode, FALSE, NULL);

+ IoFreeWorkItem (workItem);

+

+ return args.Status;

+ }

+

+ __try

+ {

+ if (NT_SUCCESS (TCOpenFsVolume (NewExtension, &volumeHandle, &volumeFileObject)))

+ {

+ __try

+ {

+ ULONG fsStatus;

+

+ if (NT_SUCCESS (TCFsctlCall (volumeFileObject, FSCTL_IS_VOLUME_DIRTY, NULL, 0, &fsStatus, sizeof (fsStatus)))

+ && (fsStatus & VOLUME_IS_DIRTY))

+ {

+ mount->FilesystemDirty = TRUE;

+ }

+ }

+ __except (EXCEPTION_EXECUTE_HANDLER)

+ {

+ mount->FilesystemDirty = TRUE;

+ }

+

+ // detect if the filesystem is NTFS or FAT

+ __try

+ {

+ NTFS_VOLUME_DATA_BUFFER ntfsData;

+ if (NT_SUCCESS (TCFsctlCall (volumeFileObject, FSCTL_GET_NTFS_VOLUME_DATA, NULL, 0, &ntfsData, sizeof (ntfsData))))

+ {

+ bIsNTFS = TRUE;

+ }

+ }

+ __except (EXCEPTION_EXECUTE_HANDLER)

+ {

+ bIsNTFS = FALSE;

+ }

+

+ NewExtension->bIsNTFS = bIsNTFS;

+ mount->bIsNTFS = bIsNTFS;

+

+ if (labelLen > 0)

+ {

+ if (bIsNTFS)

+ labelMaxLen = 32; // NTFS maximum label length

+ else

+ labelMaxLen = 11; // FAT maximum label length

+

+ // calculate label effective length

+ labelEffectiveLen = labelLen > labelMaxLen? labelMaxLen : labelLen;

+

+ // correct the label in the device

+ memset (&NewExtension->wszLabel[labelEffectiveLen], 0, 33 - labelEffectiveLen);

+ memcpy (mount->wszLabel, NewExtension->wszLabel, 33);

+

+ // set the volume label

+ __try

+ {

+ IO_STATUS_BLOCK ioblock;

+ ULONG labelInfoSize = sizeof(FILE_FS_LABEL_INFORMATION) + (labelEffectiveLen * sizeof(WCHAR));

+ FILE_FS_LABEL_INFORMATION* labelInfo = (FILE_FS_LABEL_INFORMATION*) TCalloc (labelInfoSize);

+ if (labelInfo)

+ {

+ labelInfo->VolumeLabelLength = labelEffectiveLen * sizeof(WCHAR);

+ memcpy (labelInfo->VolumeLabel, mount->wszLabel, labelInfo->VolumeLabelLength);

+

+ if (STATUS_SUCCESS == ZwSetVolumeInformationFile (volumeHandle, &ioblock, labelInfo, labelInfoSize, FileFsLabelInformation))

+ {

+ mount->bDriverSetLabel = TRUE;

+ NewExtension->bDriverSetLabel = TRUE;

+ }

+

+ TCfree(labelInfo);

+ }

+ }

+ __except (EXCEPTION_EXECUTE_HANDLER)

+ {

+

+ }

+ }

+

+ TCCloseFsVolume (volumeHandle, volumeFileObject);

+ }

+ }

+ __except (EXCEPTION_EXECUTE_HANDLER)

+ {

+

+ }

+

+ return STATUS_SUCCESS;

+}

+

+ {

+ // We create symbolic link even if mount manager is notified of

+ // arriving volume as it apparently sometimes fails to create the link

+ CreateDriveLink (mount->nDosDriveNo);

+ }

+ if (mount->bMountManager)

+ NTSTATUS updateStatus = UpdateFsVolumeInformation (mount, NewExtension);

+ if (!NT_SUCCESS (updateStatus))

+ Dump ("MountDevice: UpdateFsVolumeInformation failed with status 0x%08x\n", updateStatus);

+typedef struct

+{

+ UNMOUNT_STRUCT *unmountRequest; PDEVICE_OBJECT deviceObject; BOOL ignoreOpenFiles;

+ NTSTATUS Status;

+ KEVENT WorkItemCompletedEvent;

+} UnmountDeviceWorkItemArgs;

+

+

+static VOID UnmountDeviceWorkItemRoutine (PDEVICE_OBJECT rootDeviceObject, UnmountDeviceWorkItemArgs *arg)

+{

+ arg->Status = UnmountDevice (arg->unmountRequest, arg->deviceObject, arg->ignoreOpenFiles);

+ KeSetEvent (&arg->WorkItemCompletedEvent, IO_NO_INCREMENT, FALSE);

+}

+

+ if ((KeGetCurrentIrql() >= APC_LEVEL) || VC_KeAreAllApcsDisabled())

+ {

+ UnmountDeviceWorkItemArgs args;

+

+ PIO_WORKITEM workItem = IoAllocateWorkItem (RootDeviceObject);

+ if (!workItem)

+ return STATUS_INSUFFICIENT_RESOURCES;

+

+ args.deviceObject = deviceObject;

+ args.unmountRequest = unmountRequest;

+ args.ignoreOpenFiles = ignoreOpenFiles;

+

+ KeInitializeEvent (&args.WorkItemCompletedEvent, SynchronizationEvent, FALSE);

+ IoQueueWorkItem (workItem, UnmountDeviceWorkItemRoutine, DelayedWorkQueue, &args);

+

+ KeWaitForSingleObject (&args.WorkItemCompletedEvent, Executive, KernelMode, FALSE, NULL);

+ IoFreeWorkItem (workItem);

+

+ return args.Status;

+ }

+

+size_t GetCpuCount (WORD* pGroupCount)

+ if (KeQueryActiveGroupCountPtr && KeQueryActiveProcessorCountExPtr)

+ {

+ USHORT i, groupCount = KeQueryActiveGroupCountPtr ();

+ for (i = 0; i < groupCount; i++)

+ {

+ cpuCount += (size_t) KeQueryActiveProcessorCountExPtr (i);

+ }

+ if (pGroupCount)

+ *pGroupCount = groupCount;

+ }

+ else

+ KAFFINITY activeCpuMap = KeQueryActiveProcessors();

+ size_t mapSize = sizeof (activeCpuMap) * 8;

+ while (mapSize--)

+ {

+ if (activeCpuMap & 1)

+ ++cpuCount;

+

+ activeCpuMap >>= 1;

+ }

+

+ if (pGroupCount)

+ *pGroupCount = 1;

+USHORT GetCpuGroup (size_t index)

+{

+ if (KeQueryActiveGroupCountPtr && KeQueryActiveProcessorCountExPtr)

+ {

+ USHORT i, groupCount = KeQueryActiveGroupCountPtr ();

+ size_t cpuCount = 0;

+ for (i = 0; i < groupCount; i++)

+ {

+ cpuCount += (size_t) KeQueryActiveProcessorCountExPtr (i);

+ if (cpuCount >= index)

+ {

+ return i;

+ }

+ }

+ }

+

+ return 0;

+}

+

+void SetThreadCpuGroupAffinity (USHORT index)

+{

+ if (KeSetSystemGroupAffinityThreadPtr)

+ {

+ GROUP_AFFINITY groupAffinity = {0};

+ groupAffinity.Mask = ~0ULL;

+ groupAffinity.Group = index;

+ KeSetSystemGroupAffinityThreadPtr (&groupAffinity, NULL);

+ }

+}

+ waitInterval.QuadPart = ((LONGLONG)retryDelay) * -10000;

+

+ if (flags & VC_DRIVER_CONFIG_BLOCK_SYS_TRIM)

+ BlockSystemTrimCommand = TRUE;

+

+ /* clear VC_DRIVER_CONFIG_CLEAR_KEYS_ON_NEW_DEVICE_INSERTION if it is set */

+ if (flags & VC_DRIVER_CONFIG_CLEAR_KEYS_ON_NEW_DEVICE_INSERTION)

+ {

+ flags ^= VC_DRIVER_CONFIG_CLEAR_KEYS_ON_NEW_DEVICE_INSERTION;

+ WriteRegistryConfigFlags (flags);

+ }

+

+ RamEncryptionActivated = (flags & VC_DRIVER_CONFIG_ENABLE_RAM_ENCRYPTION) ? TRUE : FALSE;

+ EnableCpuRng ((flags & VC_DRIVER_CONFIG_ENABLE_CPU_RNG) ? TRUE : FALSE);

+ AllowTrimCommand = (flags & VC_DRIVER_CONFIG_ALLOW_NONSYS_TRIM)? TRUE : FALSE;

+ AllowWindowsDefrag = (flags & VC_DRIVER_CONFIG_ALLOW_WINDOWS_DEFRAG)? TRUE : FALSE;

+ if (driverEntry && NT_SUCCESS (TCReadRegistryKey (&name, VC_ENCRYPTION_IO_REQUEST_COUNT, &data)))

+ {

+ if (data->Type == REG_DWORD)

+ EncryptionIoRequestCount = *(uint32 *) data->Data;

+

+ TCfree (data);

+ }

+

+ if (driverEntry && NT_SUCCESS (TCReadRegistryKey (&name, VC_ENCRYPTION_ITEM_COUNT, &data)))

+ {

+ if (data->Type == REG_DWORD)

+ EncryptionItemCount = *(uint32 *) data->Data;

+

+ TCfree (data);

+ }

+

+ if (driverEntry && NT_SUCCESS (TCReadRegistryKey (&name, VC_ENCRYPTION_FRAGMENT_SIZE, &data)))

+ {

+ if (data->Type == REG_DWORD)

+ EncryptionFragmentSize = *(uint32 *) data->Data;

+

+ TCfree (data);

+ }

+

+ if (driverEntry)

+ {

+ if (EncryptionIoRequestCount < TC_ENC_IO_QUEUE_PREALLOCATED_IO_REQUEST_COUNT)

+ EncryptionIoRequestCount = TC_ENC_IO_QUEUE_PREALLOCATED_IO_REQUEST_COUNT;

+ else if (EncryptionIoRequestCount > TC_ENC_IO_QUEUE_PREALLOCATED_IO_REQUEST_MAX_COUNT)

+ EncryptionIoRequestCount = TC_ENC_IO_QUEUE_PREALLOCATED_IO_REQUEST_MAX_COUNT;

+

+ if ((EncryptionItemCount == 0) || (EncryptionItemCount > (EncryptionIoRequestCount / 2)))

+ EncryptionItemCount = EncryptionIoRequestCount / 2;

+

+ /* EncryptionFragmentSize value in registry is expressed in KiB */

+ /* Maximum allowed value for EncryptionFragmentSize is 2048 KiB */

+ EncryptionFragmentSize *= 1024;

+ if (EncryptionFragmentSize == 0)

+ EncryptionFragmentSize = TC_ENC_IO_QUEUE_MAX_FRAGMENT_SIZE;

+ else if (EncryptionFragmentSize > (8 * TC_ENC_IO_QUEUE_MAX_FRAGMENT_SIZE))

+ EncryptionFragmentSize = 8 * TC_ENC_IO_QUEUE_MAX_FRAGMENT_SIZE;

+

+

+ }

+

+ if (driverEntry && NT_SUCCESS (TCReadRegistryKey (&name, VC_ERASE_KEYS_SHUTDOWN, &data)))

+ {

+ if (data->Type == REG_DWORD)

+ {

+ if (*((uint32 *) data->Data))

+ EraseKeysOnShutdown = TRUE;

+ else

+ EraseKeysOnShutdown = FALSE;

+ }

+

+ TCfree (data);

+ }

+

+

+NTSTATUS NTAPI KeSaveExtendedProcessorStateVC (

+VOID NTAPI KeRestoreExtendedProcessorStateVC (

+}

+

+BOOLEAN VC_KeAreAllApcsDisabled (VOID)

+{

+ if (KeAreAllApcsDisabledPtr)

+ return (KeAreAllApcsDisabledPtr) ();

+ else

+ return FALSE;

+}

+ ULONG DeviceNumber;

+

+ BOOL IncursSeekPenalty;

+ BOOL TrimEnabled;

+extern BOOL BlockSystemTrimCommand;

+extern BOOL AllowWindowsDefrag;

+extern int EncryptionIoRequestCount;

+extern int EncryptionItemCount;

+extern int EncryptionFragmentSize;

+extern BOOL EraseKeysOnShutdown;

+size_t GetCpuCount (WORD* pGroupCount);

+USHORT GetCpuGroup (size_t index);

+void SetThreadCpuGroupAffinity (USHORT index);

+PDEVICE_OBJECT GetVirtualVolumeDeviceObject (int driveNumber);

+void GetDriverRandomSeed (unsigned char* pbRandSeed, size_t cbRandSeed);

+ FILE_STANDARD_INFORMATION FileStandardInfo = { 0 };

+ LARGE_INTEGER lDiskLength = { 0 };

+ BOOL forceAccessCheck = !bRawDevice;

+ /* when mounting with hidden volume protection, we cache the passwords after both outer and hidden volumes are mounted successfully*/

+ BOOL bAutoCachePassword = mount->bProtectHiddenVolume? FALSE : mount->bCache;

+ /* default values for non-SSD drives */

+ Extension->IncursSeekPenalty = TRUE;

+ Extension->TrimEnabled = FALSE;

+

+ Extension->DeviceNumber = (ULONG) -1;

+

+ mount->VolumeMountedReadOnlyAfterPartialSysEnc = FALSE;

+ STORAGE_DEVICE_NUMBER storageDeviceNumber;

+ if (NT_SUCCESS (TCSendHostDeviceIoControlRequest (DeviceObject, Extension,

+ IOCTL_STORAGE_GET_DEVICE_NUMBER,

+ (char*) &storageDeviceNumber, sizeof (storageDeviceNumber))))

+ {

+ Extension->DeviceNumber = storageDeviceNumber.DeviceNumber;

+ }

+

+ DEVICE_SEEK_PENALTY_DESCRIPTOR penaltyDesc = {0};

+ DEVICE_TRIM_DESCRIPTOR trimDesc = {0};

+

+ storagePropertyQuery.PropertyId = StorageDeviceSeekPenaltyProperty;

+ penaltyDesc.Version = sizeof (DEVICE_SEEK_PENALTY_DESCRIPTOR);

+ penaltyDesc.Size = sizeof (DEVICE_SEEK_PENALTY_DESCRIPTOR);

+

+ if (NT_SUCCESS (TCSendHostDeviceIoControlRequestEx (DeviceObject, Extension, IOCTL_STORAGE_QUERY_PROPERTY,

+ (char*) &storagePropertyQuery, sizeof(storagePropertyQuery),

+ (char *) &penaltyDesc, sizeof (penaltyDesc))))

+ {

+ Extension->IncursSeekPenalty = penaltyDesc.IncursSeekPenalty;

+ }

+

+ storagePropertyQuery.PropertyId = StorageDeviceTrimProperty;

+ trimDesc.Version = sizeof (DEVICE_TRIM_DESCRIPTOR);

+ trimDesc.Size = sizeof (DEVICE_TRIM_DESCRIPTOR);

+

+ if (NT_SUCCESS (TCSendHostDeviceIoControlRequestEx (DeviceObject, Extension, IOCTL_STORAGE_QUERY_PROPERTY,

+ (char*) &storagePropertyQuery, sizeof(storagePropertyQuery),

+ (char *) &trimDesc, sizeof (trimDesc))))

+ {

+ Extension->TrimEnabled = trimDesc.TrimEnabled;

+ }

+ // If IOCTL_DISK_GET_PARTITION_INFO_EX fails, switch to IOCTL_DISK_GET_PARTITION_INFO

+ GENERIC_READ | (!bRawDevice && mount->bPreserveTimestamp? FILE_WRITE_ATTRIBUTES : 0) | SYNCHRONIZE,

+ if (!NT_SUCCESS (ntStatus) && !bRawDevice && mount->bPreserveTimestamp)

+ {

+ /* try again without FILE_WRITE_ATTRIBUTES */

+ ntStatus = ZwCreateFile (&Extension->hDeviceFile,

+ GENERIC_READ | SYNCHRONIZE,

+ &oaFileAttributes,

+ &IoStatusBlock,

+ NULL,

+ FILE_ATTRIBUTE_NORMAL |

+ FILE_ATTRIBUTE_SYSTEM,

+ exclusiveAccess ? FILE_SHARE_READ : FILE_SHARE_READ | FILE_SHARE_WRITE,

+ FILE_OPEN,

+ FILE_RANDOM_ACCESS |

+ FILE_WRITE_THROUGH |

+ (disableBuffering ? FILE_NO_INTERMEDIATE_BUFFERING : 0) |

+ FILE_SYNCHRONOUS_IO_NONALERT,

+ NULL,

+ 0);

+ }

+

+

+ // we tell the system not to update LastAccessTime, LastWriteTime, and ChangeTime

+ FileBasicInfo.CreationTime.QuadPart = 0;

+ FileBasicInfo.LastAccessTime.QuadPart = -1;

+ FileBasicInfo.LastWriteTime.QuadPart = -1;

+ FileBasicInfo.ChangeTime.QuadPart = -1;

+

+ ZwSetInformationFile (Extension->hDeviceFile,

+ &IoStatusBlock,

+ &FileBasicInfo,

+ sizeof (FileBasicInfo),

+ FileBasicInformation);

+ LARGE_INTEGER headerOffset = {0};

+ bAutoCachePassword,

+ bAutoCachePassword,

+#ifdef _WIN64

+ if (IsRamEncryptionEnabled() && (volumeType == TC_VOLUME_TYPE_NORMAL || !mount->bProtectHiddenVolume))

+ VcProtectKeys (Extension->cryptoInfo, VcGetEncryptionID (Extension->cryptoInfo));

+#endif

+

+ // mount as readonly in case of partial system encryption

+ Extension->bReadOnly = mount->bMountReadOnly = TRUE;

+ mount->VolumeMountedReadOnlyAfterPartialSysEnc = TRUE;

+ if (memcmp (Extension->cryptoInfo->master_keydata_hash, GetSystemDriveCryptoInfo()->master_keydata_hash, sizeof(Extension->cryptoInfo->master_keydata_hash)) == 0)

+ Extension->NumberOfCylinders = Extension->DiskLength / Extension->BytesPerSector;

+ /* in case of mounting with hidden volume protection, we cache both passwords manually after bother outer and hidden volumes are mounted*/

+ if (mount->bProtectHiddenVolume && mount->bCache)

+ {

+ AddPasswordToCache(&mount->VolumePassword, mount->VolumePim, mount->bCachePim);

+ AddPasswordToCache(&mount->ProtectedHidVolPassword, mount->ProtectedHidVolPim, mount->bCachePim);

+ }

+

+typedef struct

+{

+ PDEVICE_OBJECT deviceObject; PEXTENSION Extension; ULONG ioControlCode; void *inputBuffer; int inputBufferSize; void *outputBuffer; int outputBufferSize;

+ NTSTATUS Status;

+ KEVENT WorkItemCompletedEvent;

+} TCSendHostDeviceIoControlRequestExWorkItemArgs;

+

+static VOID TCSendHostDeviceIoControlRequestExWorkItemRoutine (PDEVICE_OBJECT rootDeviceObject, TCSendHostDeviceIoControlRequestExWorkItemArgs *arg)

+{

+ arg->Status = TCSendHostDeviceIoControlRequestEx (arg->deviceObject, arg->Extension, arg->ioControlCode, arg->inputBuffer, arg->inputBufferSize, arg->outputBuffer, arg->outputBufferSize);

+ KeSetEvent (&arg->WorkItemCompletedEvent, IO_NO_INCREMENT, FALSE);

+}

+ if ((KeGetCurrentIrql() >= APC_LEVEL) || VC_KeAreAllApcsDisabled())

+ {

+ TCSendHostDeviceIoControlRequestExWorkItemArgs args;

+

+ PIO_WORKITEM workItem = IoAllocateWorkItem (RootDeviceObject);

+ if (!workItem)

+ return STATUS_INSUFFICIENT_RESOURCES;

+

+ args.deviceObject = DeviceObject;

+ args.Extension = Extension;

+ args.ioControlCode = IoControlCode;

+ args.inputBuffer = InputBuffer;

+ args.inputBufferSize = InputBufferSize;

+ args.outputBuffer = OutputBuffer;

+ args.outputBufferSize = OutputBufferSize;

+

+ KeInitializeEvent (&args.WorkItemCompletedEvent, SynchronizationEvent, FALSE);

+ IoQueueWorkItem (workItem, TCSendHostDeviceIoControlRequestExWorkItemRoutine, DelayedWorkQueue, &args);

+

+ KeWaitForSingleObject (&args.WorkItemCompletedEvent, Executive, KernelMode, FALSE, NULL);

+ IoFreeWorkItem (workItem);

+

+ return args.Status;

+ }

+

+ VolumeFilterExtension *Extension = NULL;

+ if (Extension && Extension->LowerDeviceObject)

+static BOOL IsSystemVolumePartition (VolumeFilterExtension *Extension)

+{

+ NTSTATUS status;

+ BOOL bRet = FALSE;

+ DriveFilterExtension *bootDriveExtension = GetBootDriveFilterExtension();

+ STORAGE_DEVICE_NUMBER storageDeviceNumber;

+

+ if (!bootDriveExtension->SystemStorageDeviceNumberValid)

+ TC_BUG_CHECK (STATUS_INVALID_PARAMETER);

+

+ status = SendDeviceIoControlRequest (Extension->LowerDeviceObject, IOCTL_STORAGE_GET_DEVICE_NUMBER, NULL, 0, &storageDeviceNumber, sizeof (storageDeviceNumber));

+

+ if (NT_SUCCESS (status) && bootDriveExtension->SystemStorageDeviceNumber == storageDeviceNumber.DeviceNumber)

+ {

+ PARTITION_INFORMATION_EX partition;

+ status = SendDeviceIoControlRequest (Extension->LowerDeviceObject, IOCTL_DISK_GET_PARTITION_INFO_EX, NULL, 0, &partition, sizeof (partition));

+

+ if (NT_SUCCESS (status) && partition.StartingOffset.QuadPart == bootDriveExtension->ConfiguredEncryptedAreaStart)

+ {

+ bRet = TRUE;

+ }

+ }

+

+ return bRet;

+}

+

+ if (IsSystemVolumePartition(Extension))

+ IoReleaseRemoveLock (&Extension->Queue.RemoveLock, Irp);

+ return TCCompleteDiskIrp (Irp, STATUS_SUCCESS, 0);

+

+ case IOCTL_DISK_GROW_PARTITION:

+ if (IsSystemVolumePartition(Extension))

+ {

+ Dump ("VolumeFilter-DispatchControl: IOCTL_DISK_GROW_PARTITION blocked\n");

+ IoReleaseRemoveLock (&Extension->Queue.RemoveLock, Irp);

+ return TCCompleteDiskIrp (Irp, STATUS_UNSUCCESSFUL, 0);

+ }

+ break;

+<?xml version="1.0" encoding="utf-8"?>

+<Project DefaultTargets="Build" ToolsVersion="12.0" xmlns="http://schemas.microsoft.com/developer/msbuild/2003">

+ <ItemGroup Label="ProjectConfigurations">

+ <ProjectConfiguration Include="Debug|ARM64">

+ <Configuration>Debug</Configuration>

+ <Platform>ARM64</Platform>

+ </ProjectConfiguration>

+ <ProjectConfiguration Include="Debug|Win32">

+ <Configuration>Debug</Configuration>

+ <Platform>Win32</Platform>

+ </ProjectConfiguration>

+ <ProjectConfiguration Include="Debug|x64">

+ <Configuration>Debug</Configuration>

+ <Platform>x64</Platform>

+ </ProjectConfiguration>

+ <ProjectConfiguration Include="Release|ARM64">

+ <Configuration>Release</Configuration>

+ <Platform>ARM64</Platform>

+ </ProjectConfiguration>

+ <ProjectConfiguration Include="Release|Win32">

+ <Configuration>Release</Configuration>

+ <Platform>Win32</Platform>

+ </ProjectConfiguration>

+ <ProjectConfiguration Include="Release|x64">

+ <Configuration>Release</Configuration>

+ <Platform>x64</Platform>

+ </ProjectConfiguration>

+ </ItemGroup>

+ <ItemGroup>

+ <ClCompile Include="..\Common\Cache.c" />

+ <ClCompile Include="..\Common\Crc.c" />

+ <ClCompile Include="..\Common\Crypto.c" />

+ <ClCompile Include="..\Common\EncryptionThreadPool.c" />

+ <ClCompile Include="..\Common\Endian.c" />

+ <ClCompile Include="..\Common\GfMul.c" />

+ <ClCompile Include="..\Common\Pkcs5.c" />

+ <ClCompile Include="..\Common\Tests.c" />

+ <ClCompile Include="..\Common\Volumes.c" />

+ <ClCompile Include="..\Common\Wipe.c" />

+ <ClCompile Include="..\Common\Xts.c" />

+ <ClCompile Include="..\Crypto\Aescrypt.c" />

+ <ClCompile Include="..\Crypto\Aeskey.c" />

+ <ClCompile Include="..\Crypto\Aestab.c" />

+ <ClCompile Include="..\Crypto\blake2s.c" />

+ <ClCompile Include="..\Crypto\blake2s_SSE2.c" />

+ <ClCompile Include="..\Crypto\blake2s_SSE41.c" />

+ <ClCompile Include="..\Crypto\blake2s_SSSE3.c" />

+ <ClCompile Include="..\Crypto\Camellia.c" />

+ <ClCompile Include="..\Crypto\chacha-xmm.c" />

+ <ClCompile Include="..\Crypto\chacha256.c" />

+ <ClCompile Include="..\Crypto\chachaRng.c" />

+ <ClCompile Include="..\Crypto\cpu.c" />

+ <ClCompile Include="..\Crypto\jitterentropy-base.c" />

+ <ClCompile Include="..\Crypto\kuznyechik.c" />

+ <ClCompile Include="..\Crypto\kuznyechik_simd.c">

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Debug|ARM64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Debug|x64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Debug|Win32'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Release|ARM64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Release|x64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Release|Win32'">true</ExcludedFromBuild>

+ </ClCompile>

+ <ClCompile Include="..\Crypto\rdrand.c">

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Debug|ARM64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Debug|x64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Debug|Win32'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Release|ARM64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Release|x64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Release|Win32'">true</ExcludedFromBuild>

+ </ClCompile>

+ <ClCompile Include="..\Crypto\SerpentFast.c" />

+ <ClCompile Include="..\Crypto\SerpentFast_simd.cpp">

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Debug|ARM64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Debug|x64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Debug|Win32'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Release|ARM64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Release|x64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Release|Win32'">true</ExcludedFromBuild>

+ </ClCompile>

+ <ClCompile Include="..\Crypto\Sha2.c" />

+ <ClCompile Include="..\Crypto\Streebog.c" />

+ <ClCompile Include="..\Crypto\t1ha2.c" />

+ <ClCompile Include="..\Crypto\t1ha2_selfcheck.c" />

+ <ClCompile Include="..\Crypto\t1ha_selfcheck.c" />

+ <ClCompile Include="..\Crypto\Twofish.c" />

+ <ClCompile Include="..\Crypto\Whirlpool.c" />

+ <ClCompile Include="Ntdriver.c" />

+ <ClCompile Include="VolumeFilter.c" />

+ <ClCompile Include="DriveFilter.c" />

+ <ClCompile Include="DumpFilter.c" />

+ <ClCompile Include="EncryptedIoQueue.c" />

+ <ClCompile Include="Ntvol.c" />

+ </ItemGroup>

+ <PropertyGroup Label="Globals">

+ <ProjectGuid>{4B41C7B5-75C6-40A2-AF4D-55BC1E012BCD}</ProjectGuid>

+ <TemplateGuid>{f2f62967-0815-4fd7-9b86-6eedcac766eb}</TemplateGuid>

+ <TargetFrameworkVersion>v4.5</TargetFrameworkVersion>

+ <MinimumVisualStudioVersion>12.0</MinimumVisualStudioVersion>

+ <Configuration>Debug</Configuration>

+ <Platform Condition="'$(Platform)' == ''">Win32</Platform>

+ <RootNamespace>veracrypt</RootNamespace>

+ <WindowsTargetPlatformVersion>$(LatestTargetPlatformVersion)</WindowsTargetPlatformVersion>

+ <ProjectName>driver</ProjectName>

+ </PropertyGroup>

+ <Import Project="$(VCTargetsPath)\Microsoft.Cpp.Default.props" />

+ <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Debug|ARM64'" Label="Configuration">

+ <TargetVersion>Windows10</TargetVersion>

+ <UseDebugLibraries>true</UseDebugLibraries>

+ <PlatformToolset>WindowsKernelModeDriver10.0</PlatformToolset>

+ <ConfigurationType>Driver</ConfigurationType>

+ <DriverType>WDM</DriverType>

+ <DriverTargetPlatform>Universal</DriverTargetPlatform>

+ <_NT_TARGET_VERSION>0x0A00</_NT_TARGET_VERSION>

+ <SupportsPackaging>false</SupportsPackaging>

+ </PropertyGroup>

+ <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Debug|x64'" Label="Configuration">

+ <TargetVersion>Windows10</TargetVersion>

+ <UseDebugLibraries>true</UseDebugLibraries>

+ <PlatformToolset>WindowsKernelModeDriver10.0</PlatformToolset>

+ <ConfigurationType>Driver</ConfigurationType>

+ <DriverType>WDM</DriverType>

+ <DriverTargetPlatform>Universal</DriverTargetPlatform>

+ <_NT_TARGET_VERSION>0x0A00</_NT_TARGET_VERSION>

+ <SupportsPackaging>false</SupportsPackaging>

+ </PropertyGroup>

+ <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Debug|Win32'" Label="Configuration">

+ <TargetVersion>Windows10</TargetVersion>

+ <UseDebugLibraries>true</UseDebugLibraries>

+ <PlatformToolset>WindowsKernelModeDriver10.0</PlatformToolset>

+ <ConfigurationType>Driver</ConfigurationType>

+ <DriverType>WDM</DriverType>

+ <DriverTargetPlatform>Universal</DriverTargetPlatform>

+ <_NT_TARGET_VERSION>0x0A00</_NT_TARGET_VERSION>

+ <SupportsPackaging>false</SupportsPackaging>

+ </PropertyGroup>

+ <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Release|ARM64'" Label="Configuration">

+ <TargetVersion>Windows10</TargetVersion>

+ <UseDebugLibraries>false</UseDebugLibraries>

+ <PlatformToolset>WindowsKernelModeDriver10.0</PlatformToolset>

+ <ConfigurationType>Driver</ConfigurationType>

+ <DriverType>WDM</DriverType>

+ <_NT_TARGET_VERSION>0x0A00</_NT_TARGET_VERSION>

+ <SupportsPackaging>false</SupportsPackaging>

+ </PropertyGroup>

+ <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Release|x64'" Label="Configuration">

+ <TargetVersion>Windows10</TargetVersion>

+ <UseDebugLibraries>false</UseDebugLibraries>

+ <PlatformToolset>WindowsKernelModeDriver10.0</PlatformToolset>

+ <ConfigurationType>Driver</ConfigurationType>

+ <DriverType>WDM</DriverType>

+ <_NT_TARGET_VERSION>0x0A00</_NT_TARGET_VERSION>

+ <SupportsPackaging>false</SupportsPackaging>

+ </PropertyGroup>

+ <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Release|Win32'" Label="Configuration">

+ <TargetVersion>Windows10</TargetVersion>

+ <UseDebugLibraries>false</UseDebugLibraries>

+ <PlatformToolset>WindowsKernelModeDriver10.0</PlatformToolset>

+ <ConfigurationType>Driver</ConfigurationType>

+ <DriverType>WDM</DriverType>

+ <_NT_TARGET_VERSION>0x0A00</_NT_TARGET_VERSION>

+ <SupportsPackaging>false</SupportsPackaging>

+ </PropertyGroup>

+ <Import Project="$(VCTargetsPath)\Microsoft.Cpp.props" />

+ <ImportGroup Label="ExtensionSettings">

+ </ImportGroup>

+ <ImportGroup Label="PropertySheets">

+ <Import Project="$(UserRootDir)\Microsoft.Cpp.$(Platform).user.props" Condition="exists('$(UserRootDir)\Microsoft.Cpp.$(Platform).user.props')" Label="LocalAppDataPlatform" />

+ </ImportGroup>

+ <PropertyGroup Label="UserMacros" />

+ <PropertyGroup />

+ <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Debug|ARM64'">

+ <DebuggerFlavor>DbgengKernelDebugger</DebuggerFlavor>

+ <OutDir>$(SolutionDir)$(Platform)\$(ConfigurationName)\</OutDir>

+ <TargetName>veracrypt</TargetName>

+ </PropertyGroup>

+ <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Debug|x64'">

+ <TargetName>veracrypt</TargetName>

+ <DebuggerFlavor>DbgengKernelDebugger</DebuggerFlavor>

+ </PropertyGroup>

+ <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Debug|Win32'">

+ <TargetName>veracrypt</TargetName>

+ <DebuggerFlavor>DbgengKernelDebugger</DebuggerFlavor>

+ </PropertyGroup>

+ <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Release|ARM64'">

+ <DebuggerFlavor>DbgengKernelDebugger</DebuggerFlavor>

+ <OutDir>$(ProjectDir)$(Platform)\$(ConfigurationName)\</OutDir>

+ <TargetName>veracrypt</TargetName>

+ </PropertyGroup>

+ <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Release|x64'">

+ <TargetName>veracrypt</TargetName>

+ <DebuggerFlavor>DbgengKernelDebugger</DebuggerFlavor>

+ </PropertyGroup>

+ <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Release|Win32'">

+ <TargetName>veracrypt</TargetName>

+ <DebuggerFlavor>DbgengKernelDebugger</DebuggerFlavor>

+ </PropertyGroup>

+ <ItemDefinitionGroup Condition="'$(Configuration)|$(Platform)'=='Debug|ARM64'">

+ <Link>

+ <AdditionalDependencies>fltmgr.lib;%(AdditionalDependencies)</AdditionalDependencies>

+ <OutputFile>$(OutDir)$(TargetName)$(TargetExt)</OutputFile>

+ </Link>

+ <ClCompile>

+ <AdditionalIncludeDirectories>$(SolutionDir)Common;$(SolutionDir)Crypto;$(SolutionDir);%(AdditionalIncludeDirectories)</AdditionalIncludeDirectories>

+ <PreprocessorDefinitions>TC_WINDOWS_DRIVER;_WIN32;_NO_CRT_STDIO_INLINE;DEBUG;_DEBUG;%(PreprocessorDefinitions)</PreprocessorDefinitions>

+ <DisableSpecificWarnings>4064;4627;4627;4366;4100;4057;4457;4456;4152;4213;4244;4127;4706;%(DisableSpecificWarnings)</DisableSpecificWarnings>

+ </ClCompile>

+ <PostBuildEvent>

+ <Command>copy $(TargetPath) "..\Debug\Setup Files\VeraCrypt-arm64.sys"</Command>

+ </PostBuildEvent>

+ <Inf>

+ <SpecifyDriverVerDirectiveVersion>false</SpecifyDriverVerDirectiveVersion>

+ </Inf>

+ </ItemDefinitionGroup>

+ <ItemDefinitionGroup Condition="'$(Configuration)|$(Platform)'=='Debug|x64'">

+ <Link>

+ <AdditionalDependencies>fltmgr.lib;%(AdditionalDependencies)</AdditionalDependencies>

+ <OutputFile>$(OutDir)$(TargetName)$(TargetExt)</OutputFile>

+ </Link>

+ <ClCompile>

+ <AdditionalIncludeDirectories>$(SolutionDir)Common;$(SolutionDir)Crypto;$(SolutionDir);%(AdditionalIncludeDirectories)</AdditionalIncludeDirectories>

+ <PreprocessorDefinitions>TC_WINDOWS_DRIVER;_WIN32;_NO_CRT_STDIO_INLINE;DEBUG;_DEBUG;%(PreprocessorDefinitions)</PreprocessorDefinitions>

+ <DisableSpecificWarnings>4064;4627;4627;4366;4100;4057;4457;4456;4152;4213;4244;4127;4706;%(DisableSpecificWarnings)</DisableSpecificWarnings>

+ </ClCompile>

+ <PostBuildEvent>

+ <Command>copy $(TargetPath) "..\Debug\Setup Files\VeraCrypt-arm64.sys"</Command>

+ </PostBuildEvent>

+ <Inf>

+ <SpecifyDriverVerDirectiveVersion>false</SpecifyDriverVerDirectiveVersion>

+ </Inf>

+ </ItemDefinitionGroup>

+ <ItemDefinitionGroup Condition="'$(Configuration)|$(Platform)'=='Debug|Win32'">

+ <Link>

+ <AdditionalDependencies>fltmgr.lib;%(AdditionalDependencies)</AdditionalDependencies>

+ <OutputFile>$(OutDir)$(TargetName)$(TargetExt)</OutputFile>

+ </Link>

+ <ClCompile>

+ <AdditionalIncludeDirectories>$(SolutionDir)Common;$(SolutionDir)Crypto;$(SolutionDir);%(AdditionalIncludeDirectories)</AdditionalIncludeDirectories>

+ <PreprocessorDefinitions>TC_WINDOWS_DRIVER;_WIN32;_NO_CRT_STDIO_INLINE;DEBUG;_DEBUG;%(PreprocessorDefinitions)</PreprocessorDefinitions>

+ <DisableSpecificWarnings>4064;4627;4627;4366;4100;4057;4457;4456;4152;4213;4244;4127;4706;%(DisableSpecificWarnings)</DisableSpecificWarnings>

+ </ClCompile>

+ <PostBuildEvent>

+ <Command>copy $(TargetPath) "..\Debug\Setup Files\VeraCrypt-arm64.sys"</Command>

+ </PostBuildEvent>

+ <Inf>

+ <SpecifyDriverVerDirectiveVersion>false</SpecifyDriverVerDirectiveVersion>

+ </Inf>

+ </ItemDefinitionGroup>

+ <ItemDefinitionGroup Condition="'$(Configuration)|$(Platform)'=='Release|ARM64'">

+ <Link>

+ <AdditionalDependencies>fltmgr.lib;%(AdditionalDependencies)</AdditionalDependencies>

+ <OutputFile>$(OutDir)$(TargetName)$(TargetExt)</OutputFile>

+ </Link>

+ <ClCompile>

+ <AdditionalIncludeDirectories>$(SolutionDir)Common;$(SolutionDir)Crypto;$(SolutionDir);%(AdditionalIncludeDirectories)</AdditionalIncludeDirectories>

+ <PreprocessorDefinitions>TC_WINDOWS_DRIVER;_WIN32;_NO_CRT_STDIO_INLINE;%(PreprocessorDefinitions)</PreprocessorDefinitions>

+ <DisableSpecificWarnings>4064;4627;4627;4366;4100;4057;4457;4456;4152;4213;4244;4127;4706;%(DisableSpecificWarnings)</DisableSpecificWarnings>

+ </ClCompile>

+ <PostBuildEvent>

+ <Command>copy $(TargetPath) "..\Release\Setup Files\VeraCrypt-arm64.sys"</Command>

+ </PostBuildEvent>

+ <Inf>

+ <SpecifyArchitecture>true</SpecifyArchitecture>

+ <SpecifyDriverVerDirectiveVersion>false</SpecifyDriverVerDirectiveVersion>

+ </Inf>

+ </ItemDefinitionGroup>

+ <ItemDefinitionGroup Condition="'$(Configuration)|$(Platform)'=='Release|x64'">

+ <Link>

+ <AdditionalDependencies>fltmgr.lib;%(AdditionalDependencies)</AdditionalDependencies>

+ <OutputFile>$(OutDir)$(TargetName)$(TargetExt)</OutputFile>

+ </Link>

+ <ClCompile>

+ <AdditionalIncludeDirectories>$(SolutionDir)Common;$(SolutionDir)Crypto;$(SolutionDir);%(AdditionalIncludeDirectories)</AdditionalIncludeDirectories>

+ <PreprocessorDefinitions>TC_WINDOWS_DRIVER;_WIN32;_NO_CRT_STDIO_INLINE;%(PreprocessorDefinitions)</PreprocessorDefinitions>

+ <DisableSpecificWarnings>4064;4627;4627;4366;4100;4057;4457;4456;4152;4213;4244;4127;4706;%(DisableSpecificWarnings)</DisableSpecificWarnings>

+ </ClCompile>

+ <PostBuildEvent>

+ <Command>copy $(TargetPath) "..\Release\Setup Files\VeraCrypt-arm64.sys"</Command>

+ </PostBuildEvent>

+ <Inf>

+ <SpecifyArchitecture>true</SpecifyArchitecture>

+ <SpecifyDriverVerDirectiveVersion>false</SpecifyDriverVerDirectiveVersion>

+ </Inf>

+ </ItemDefinitionGroup>

+ <ItemDefinitionGroup Condition="'$(Configuration)|$(Platform)'=='Release|Win32'">

+ <Link>

+ <AdditionalDependencies>fltmgr.lib;%(AdditionalDependencies)</AdditionalDependencies>

+ <OutputFile>$(OutDir)$(TargetName)$(TargetExt)</OutputFile>

+ </Link>

+ <ClCompile>

+ <AdditionalIncludeDirectories>$(SolutionDir)Common;$(SolutionDir)Crypto;$(SolutionDir);%(AdditionalIncludeDirectories)</AdditionalIncludeDirectories>

+ <PreprocessorDefinitions>TC_WINDOWS_DRIVER;_WIN32;_NO_CRT_STDIO_INLINE;%(PreprocessorDefinitions)</PreprocessorDefinitions>

+ <DisableSpecificWarnings>4064;4627;4627;4366;4100;4057;4457;4456;4152;4213;4244;4127;4706;%(DisableSpecificWarnings)</DisableSpecificWarnings>

+ </ClCompile>

+ <PostBuildEvent>

+ <Command>copy $(TargetPath) "..\Release\Setup Files\VeraCrypt-arm64.sys"</Command>

+ </PostBuildEvent>

+ <Inf>

+ <SpecifyArchitecture>true</SpecifyArchitecture>

+ <SpecifyDriverVerDirectiveVersion>false</SpecifyDriverVerDirectiveVersion>

+ </Inf>

+ </ItemDefinitionGroup>

+ <ItemGroup>

+ <FilesToPackage Include="$(TargetPath)" />

+ </ItemGroup>

+ <ItemGroup>

+ <ClInclude Include="..\Crypto\Aes.h" />

+ <ClInclude Include="..\Crypto\Aesopt.h" />

+ <ClInclude Include="..\Crypto\AesSmall.h" />

+ <ClInclude Include="..\Crypto\Aestab.h" />

+ <ClInclude Include="..\Crypto\Aes_hw_cpu.h" />

+ <ClInclude Include="..\Crypto\Camellia.h" />

+ <ClInclude Include="..\Crypto\chacha256.h" />

+ <ClInclude Include="..\Crypto\chachaRng.h" />

+ <ClInclude Include="..\Crypto\chacha_u1.h" />

+ <ClInclude Include="..\Crypto\chacha_u4.h" />

+ <ClInclude Include="..\Crypto\config.h" />

+ <ClInclude Include="..\Crypto\cpu.h" />

+ <ClInclude Include="..\Crypto\GostCipher.h" />

+ <ClInclude Include="..\Crypto\jitterentropy-base-user.h" />

+ <ClInclude Include="..\Crypto\jitterentropy.h" />

+ <ClInclude Include="..\Crypto\kuznyechik.h" />

+ <ClInclude Include="..\Crypto\misc.h" />

+ <ClInclude Include="..\Crypto\rdrand.h" />

+ <ClInclude Include="..\Crypto\Rmd160.h" />

+ <ClInclude Include="..\Crypto\SerpentFast.h" />

+ <ClInclude Include="..\Crypto\SerpentFast_sbox.h" />

+ <ClInclude Include="..\Crypto\Sha2.h" />

+ <ClInclude Include="..\Crypto\Streebog.h" />

+ <ClInclude Include="..\Crypto\t1ha.h" />

+ <ClInclude Include="..\Crypto\t1ha_bits.h" />

+ <ClInclude Include="..\Crypto\t1ha_selfcheck.h" />

+ <ClInclude Include="..\Crypto\Twofish.h" />

+ <ClInclude Include="..\Crypto\Whirlpool.h" />

+ <ClInclude Include="DriveFilter.h" />

+ <ClInclude Include="DumpFilter.h" />

+ <ClInclude Include="EncryptedIoQueue.h" />

+ <ClInclude Include="Ntdriver.h" />

+ <ClInclude Include="Ntvol.h" />

+ <ClInclude Include="Resource.h" />

+ <ClInclude Include="VolumeFilter.h" />

+ </ItemGroup>

+ <ItemGroup>

+ <CustomBuild Include="..\Crypto\Aes_hw_cpu.asm">

+ <Command Condition="'$(Configuration)|$(Platform)'=='Debug|ARM64'">echo %(Filename)%(Extension) &amp; nasm.exe -Xvc -f win64 -Ox -g -o "$(TargetDir)\%(Filename).obj" "%(FullPath)"

+</Command>

+ <Command Condition="'$(Configuration)|$(Platform)'=='Debug|x64'">echo %(Filename)%(Extension) &amp; nasm.exe -Xvc -f win64 -Ox -g -o "$(TargetDir)\%(Filename).obj" "%(FullPath)"

+</Command>

+ <Command Condition="'$(Configuration)|$(Platform)'=='Debug|Win32'">echo %(Filename)%(Extension) &amp; nasm.exe -Xvc -f win64 -Ox -g -o "$(TargetDir)\%(Filename).obj" "%(FullPath)"

+</Command>

+ <Command Condition="'$(Configuration)|$(Platform)'=='Release|ARM64'">echo %(Filename)%(Extension) &amp; nasm.exe -Xvc -f win64 -Ox -g -o "$(TargetDir)\%(Filename).obj" "%(FullPath)"

+</Command>

+ <Command Condition="'$(Configuration)|$(Platform)'=='Release|x64'">echo %(Filename)%(Extension) &amp; nasm.exe -Xvc -f win64 -Ox -g -o "$(TargetDir)\%(Filename).obj" "%(FullPath)"

+</Command>

+ <Command Condition="'$(Configuration)|$(Platform)'=='Release|Win32'">echo %(Filename)%(Extension) &amp; nasm.exe -Xvc -f win64 -Ox -g -o "$(TargetDir)\%(Filename).obj" "%(FullPath)"

+</Command>

+ <Outputs Condition="'$(Configuration)|$(Platform)'=='Debug|ARM64'">$(TargetDir)\%(Filename).obj;%(Outputs)</Outputs>

+ <Outputs Condition="'$(Configuration)|$(Platform)'=='Debug|x64'">$(TargetDir)\%(Filename).obj;%(Outputs)</Outputs>

+ <Outputs Condition="'$(Configuration)|$(Platform)'=='Debug|Win32'">$(TargetDir)\%(Filename).obj;%(Outputs)</Outputs>

+ <Outputs Condition="'$(Configuration)|$(Platform)'=='Release|ARM64'">$(TargetDir)\%(Filename).obj;%(Outputs)</Outputs>

+ <Outputs Condition="'$(Configuration)|$(Platform)'=='Release|x64'">$(TargetDir)\%(Filename).obj;%(Outputs)</Outputs>

+ <Outputs Condition="'$(Configuration)|$(Platform)'=='Release|Win32'">$(TargetDir)\%(Filename).obj;%(Outputs)</Outputs>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Debug|ARM64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Debug|x64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Debug|Win32'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Release|ARM64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Release|x64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Release|Win32'">true</ExcludedFromBuild>

+ </CustomBuild>

+ </ItemGroup>

+ <ItemGroup>

+ <CustomBuild Include="..\Crypto\Aes_x64.asm">

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Debug|ARM64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Debug|x64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Debug|Win32'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Release|ARM64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Release|x64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Release|Win32'">true</ExcludedFromBuild>

+ </CustomBuild>

+ </ItemGroup>

+ <ItemGroup>

+ <CustomBuild Include="..\Crypto\Aes_x86.asm">

+ <Command Condition="'$(Configuration)|$(Platform)'=='Debug|ARM64'">echo %(Filename)%(Extension) &amp; nasm.exe -Xvc -f win32 -Ox -g --prefix _ -o "$(TargetDir)\%(Filename).obj" "%(FullPath)"

+</Command>

+ <Command Condition="'$(Configuration)|$(Platform)'=='Debug|x64'">echo %(Filename)%(Extension) &amp; nasm.exe -Xvc -f win32 -Ox -g --prefix _ -o "$(TargetDir)\%(Filename).obj" "%(FullPath)"

+</Command>

+ <Command Condition="'$(Configuration)|$(Platform)'=='Debug|Win32'">echo %(Filename)%(Extension) &amp; nasm.exe -Xvc -f win32 -Ox -g --prefix _ -o "$(TargetDir)\%(Filename).obj" "%(FullPath)"

+</Command>

+ <Command Condition="'$(Configuration)|$(Platform)'=='Release|ARM64'">echo %(Filename)%(Extension) &amp; nasm.exe -Xvc -f win32 -Ox -g --prefix _ -o "$(TargetDir)\%(Filename).obj" "%(FullPath)"

+</Command>

+ <Command Condition="'$(Configuration)|$(Platform)'=='Release|x64'">echo %(Filename)%(Extension) &amp; nasm.exe -Xvc -f win32 -Ox -g --prefix _ -o "$(TargetDir)\%(Filename).obj" "%(FullPath)"

+</Command>

+ <Command Condition="'$(Configuration)|$(Platform)'=='Release|Win32'">echo %(Filename)%(Extension) &amp; nasm.exe -Xvc -f win32 -Ox -g --prefix _ -o "$(TargetDir)\%(Filename).obj" "%(FullPath)"

+</Command>

+ <Outputs Condition="'$(Configuration)|$(Platform)'=='Debug|ARM64'">$(TargetDir)\%(Filename).obj;%(Outputs)</Outputs>

+ <Outputs Condition="'$(Configuration)|$(Platform)'=='Debug|x64'">$(TargetDir)\%(Filename).obj;%(Outputs)</Outputs>

+ <Outputs Condition="'$(Configuration)|$(Platform)'=='Debug|Win32'">$(TargetDir)\%(Filename).obj;%(Outputs)</Outputs>

+ <Outputs Condition="'$(Configuration)|$(Platform)'=='Release|ARM64'">$(TargetDir)\%(Filename).obj;%(Outputs)</Outputs>

+ <Outputs Condition="'$(Configuration)|$(Platform)'=='Release|x64'">$(TargetDir)\%(Filename).obj;%(Outputs)</Outputs>

+ <Outputs Condition="'$(Configuration)|$(Platform)'=='Release|Win32'">$(TargetDir)\%(Filename).obj;%(Outputs)</Outputs>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Debug|ARM64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Debug|x64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Debug|Win32'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Release|ARM64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Release|x64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Release|Win32'">true</ExcludedFromBuild>

+ </CustomBuild>

+ </ItemGroup>

+ <ItemGroup>

+ <CustomBuild Include="..\Crypto\Twofish_x64.S">

+ <FileType>Document</FileType>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Debug|ARM64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Debug|x64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Debug|Win32'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Release|ARM64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Release|x64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Release|Win32'">true</ExcludedFromBuild>

+ </CustomBuild>

+ </ItemGroup>

+ <ItemGroup>

+ <CustomBuild Include="..\Crypto\Camellia_aesni_x64.S">

+ <FileType>Document</FileType>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Debug|ARM64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Debug|x64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Debug|Win32'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Release|ARM64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Release|x64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Release|Win32'">true</ExcludedFromBuild>

+ </CustomBuild>

+ </ItemGroup>

+ <ItemGroup>

+ <CustomBuild Include="..\Crypto\Camellia_x64.S">

+ <FileType>Document</FileType>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Debug|ARM64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Debug|x64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Debug|Win32'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Release|ARM64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Release|x64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Release|Win32'">true</ExcludedFromBuild>

+ </CustomBuild>

+ </ItemGroup>

+ <ItemGroup>

+ <CustomBuild Include="..\Crypto\sha256-x86-nayuki.S">

+ <FileType>Document</FileType>

+ </CustomBuild>

+ </ItemGroup>

+ <ItemGroup>

+ <CustomBuild Include="..\Crypto\sha256_avx1_x64.asm">

+ <FileType>Document</FileType>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Debug|ARM64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Debug|x64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Debug|Win32'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Release|ARM64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Release|x64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Release|Win32'">true</ExcludedFromBuild>

+ </CustomBuild>

+ </ItemGroup>

+ <ItemGroup>

+ <CustomBuild Include="..\Crypto\sha256_avx2_x64.asm">

+ <FileType>Document</FileType>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Debug|ARM64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Debug|x64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Debug|Win32'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Release|ARM64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Release|x64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Release|Win32'">true</ExcludedFromBuild>

+ </CustomBuild>

+ </ItemGroup>

+ <ItemGroup>

+ <CustomBuild Include="..\Crypto\sha256_sse4_x64.asm">

+ <FileType>Document</FileType>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Debug|ARM64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Debug|x64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Debug|Win32'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Release|ARM64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Release|x64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Release|Win32'">true</ExcludedFromBuild>

+ </CustomBuild>

+ </ItemGroup>

+ <ItemGroup>

+ <CustomBuild Include="..\Crypto\sha512-x86-nayuki.S">

+ <FileType>Document</FileType>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Debug|ARM64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Debug|x64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Debug|Win32'">false</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Release|ARM64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Release|x64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Release|Win32'">false</ExcludedFromBuild>

+ </CustomBuild>

+ </ItemGroup>

+ <ItemGroup>

+ <CustomBuild Include="..\Crypto\sha512-x64-nayuki.S">

+ <FileType>Document</FileType>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Debug|ARM64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Debug|x64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Debug|Win32'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Release|ARM64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Release|x64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Release|Win32'">true</ExcludedFromBuild>

+ </CustomBuild>

+ </ItemGroup>

+ <ItemGroup>

+ <CustomBuild Include="..\Crypto\sha512_avx1_x64.asm">

+ <FileType>Document</FileType>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Debug|ARM64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Debug|x64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Debug|Win32'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Release|ARM64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Release|x64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Release|Win32'">true</ExcludedFromBuild>

+ </CustomBuild>

+ </ItemGroup>

+ <ItemGroup>

+ <CustomBuild Include="..\Crypto\sha512_avx2_x64.asm">

+ <FileType>Document</FileType>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Debug|ARM64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Debug|x64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Debug|Win32'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Release|ARM64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Release|x64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Release|Win32'">true</ExcludedFromBuild>

+ </CustomBuild>

+ </ItemGroup>

+ <ItemGroup>

+ <CustomBuild Include="..\Crypto\sha512_sse4_x64.asm">

+ <FileType>Document</FileType>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Debug|ARM64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Debug|x64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Debug|Win32'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Release|ARM64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Release|x64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Release|Win32'">true</ExcludedFromBuild>

+ </CustomBuild>

+ </ItemGroup>

+ <ItemGroup>

+ <CustomBuild Include="..\Crypto\rdrand_ml.asm">

+ <FileType>Document</FileType>

+ <Command Condition="'$(Configuration)|$(Platform)'=='Debug|ARM64'">echo %(Filename)%(Extension) &amp; ml64.exe /nologo /D_M_X64 /W3 /Cx /Zi /Fo "$(TargetDir)\%(Filename).obj" /c "%(FullPath)"

+</Command>

+ <Command Condition="'$(Configuration)|$(Platform)'=='Debug|x64'">echo %(Filename)%(Extension) &amp; ml64.exe /nologo /D_M_X64 /W3 /Cx /Zi /Fo "$(TargetDir)\%(Filename).obj" /c "%(FullPath)"

+</Command>

+ <Command Condition="'$(Configuration)|$(Platform)'=='Debug|Win32'">echo %(Filename)%(Extension) &amp; ml64.exe /nologo /D_M_X64 /W3 /Cx /Zi /Fo "$(TargetDir)\%(Filename).obj" /c "%(FullPath)"

+</Command>

+ <Command Condition="'$(Configuration)|$(Platform)'=='Release|ARM64'">echo %(Filename)%(Extension) &amp; ml64.exe /nologo /D_M_X64 /W3 /Cx /Zi /Fo "$(TargetDir)\%(Filename).obj" /c "%(FullPath)"

+</Command>

+ <Command Condition="'$(Configuration)|$(Platform)'=='Release|x64'">echo %(Filename)%(Extension) &amp; ml64.exe /nologo /D_M_X64 /W3 /Cx /Zi /Fo "$(TargetDir)\%(Filename).obj" /c "%(FullPath)"

+</Command>

+ <Command Condition="'$(Configuration)|$(Platform)'=='Release|Win32'">echo %(Filename)%(Extension) &amp; ml64.exe /nologo /D_M_X64 /W3 /Cx /Zi /Fo "$(TargetDir)\%(Filename).obj" /c "%(FullPath)"

+</Command>

+ <Outputs Condition="'$(Configuration)|$(Platform)'=='Debug|ARM64'">$(TargetDir)\%(Filename).obj;%(Outputs)</Outputs>

+ <Outputs Condition="'$(Configuration)|$(Platform)'=='Debug|x64'">$(TargetDir)\%(Filename).obj;%(Outputs)</Outputs>

+ <Outputs Condition="'$(Configuration)|$(Platform)'=='Debug|Win32'">$(TargetDir)\%(Filename).obj;%(Outputs)</Outputs>

+ <Outputs Condition="'$(Configuration)|$(Platform)'=='Release|ARM64'">$(TargetDir)\%(Filename).obj;%(Outputs)</Outputs>

+ <Outputs Condition="'$(Configuration)|$(Platform)'=='Release|x64'">$(TargetDir)\%(Filename).obj;%(Outputs)</Outputs>

+ <Outputs Condition="'$(Configuration)|$(Platform)'=='Release|Win32'">$(TargetDir)\%(Filename).obj;%(Outputs)</Outputs>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Debug|ARM64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Debug|x64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Debug|Win32'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Release|ARM64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Release|x64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Release|Win32'">true</ExcludedFromBuild>

+ </CustomBuild>

+ </ItemGroup>

+ <ItemGroup>

+ <CustomBuild Include="..\Crypto\rdseed_ml.asm">

+ <FileType>Document</FileType>

+ <Command Condition="'$(Configuration)|$(Platform)'=='Debug|ARM64'">echo %(Filename)%(Extension) &amp; ml64.exe /nologo /D_M_X64 /W3 /Cx /Zi /Fo "$(TargetDir)\%(Filename).obj" /c "%(FullPath)"

+</Command>

+ <Command Condition="'$(Configuration)|$(Platform)'=='Debug|x64'">echo %(Filename)%(Extension) &amp; ml64.exe /nologo /D_M_X64 /W3 /Cx /Zi /Fo "$(TargetDir)\%(Filename).obj" /c "%(FullPath)"

+</Command>

+ <Command Condition="'$(Configuration)|$(Platform)'=='Debug|Win32'">echo %(Filename)%(Extension) &amp; ml64.exe /nologo /D_M_X64 /W3 /Cx /Zi /Fo "$(TargetDir)\%(Filename).obj" /c "%(FullPath)"

+</Command>

+ <Command Condition="'$(Configuration)|$(Platform)'=='Release|ARM64'">echo %(Filename)%(Extension) &amp; ml64.exe /nologo /D_M_X64 /W3 /Cx /Zi /Fo "$(TargetDir)\%(Filename).obj" /c "%(FullPath)"

+</Command>

+ <Command Condition="'$(Configuration)|$(Platform)'=='Release|x64'">echo %(Filename)%(Extension) &amp; ml64.exe /nologo /D_M_X64 /W3 /Cx /Zi /Fo "$(TargetDir)\%(Filename).obj" /c "%(FullPath)"

+</Command>

+ <Command Condition="'$(Configuration)|$(Platform)'=='Release|Win32'">echo %(Filename)%(Extension) &amp; ml64.exe /nologo /D_M_X64 /W3 /Cx /Zi /Fo "$(TargetDir)\%(Filename).obj" /c "%(FullPath)"

+</Command>

+ <Outputs Condition="'$(Configuration)|$(Platform)'=='Debug|ARM64'">$(TargetDir)\%(Filename).obj;%(Outputs)</Outputs>

+ <Outputs Condition="'$(Configuration)|$(Platform)'=='Debug|x64'">$(TargetDir)\%(Filename).obj;%(Outputs)</Outputs>

+ <Outputs Condition="'$(Configuration)|$(Platform)'=='Debug|Win32'">$(TargetDir)\%(Filename).obj;%(Outputs)</Outputs>

+ <Outputs Condition="'$(Configuration)|$(Platform)'=='Release|ARM64'">$(TargetDir)\%(Filename).obj;%(Outputs)</Outputs>

+ <Outputs Condition="'$(Configuration)|$(Platform)'=='Release|x64'">$(TargetDir)\%(Filename).obj;%(Outputs)</Outputs>

+ <Outputs Condition="'$(Configuration)|$(Platform)'=='Release|Win32'">$(TargetDir)\%(Filename).obj;%(Outputs)</Outputs>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Debug|ARM64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Debug|x64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Debug|Win32'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Release|ARM64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Release|x64'">true</ExcludedFromBuild>

+ <ExcludedFromBuild Condition="'$(Configuration)|$(Platform)'=='Release|Win32'">true</ExcludedFromBuild>

+ </CustomBuild>

+ </ItemGroup>

+ <ItemGroup>

+ <ResourceCompile Include="Driver.rc" />

+ </ItemGroup>

+ <Import Project="$(VCTargetsPath)\Microsoft.Cpp.targets" />

+ <ImportGroup Label="ExtensionTargets">

+ </ImportGroup>

+</Project> \ No newline at end of file

+<?xml version="1.0" encoding="utf-8"?>

+<Project ToolsVersion="4.0" xmlns="http://schemas.microsoft.com/developer/msbuild/2003">

+ <ItemGroup>

+ <Filter Include="Source Files">

+ <UniqueIdentifier>{4FC737F1-C7A5-4376-A066-2A32D752A2FF}</UniqueIdentifier>

+ <Extensions>cpp;c;cc;cxx;def;odl;idl;hpj;bat;asm;asmx</Extensions>

+ </Filter>

+ <Filter Include="Header Files">

+ <UniqueIdentifier>{93995380-89BD-4b04-88EB-625FBE52EBFB}</UniqueIdentifier>

+ <Extensions>h;hpp;hxx;hm;inl;inc;xsd</Extensions>

+ </Filter>

+ <Filter Include="Resource Files">

+ <UniqueIdentifier>{67DA6AB6-F800-4c08-8B7A-83BB121AAD01}</UniqueIdentifier>

+ <Extensions>rc;ico;cur;bmp;dlg;rc2;rct;bin;rgs;gif;jpg;jpeg;jpe;resx;tiff;tif;png;wav;mfcribbon-ms</Extensions>

+ </Filter>

+ <Filter Include="Driver Files">

+ <UniqueIdentifier>{8E41214B-6785-4CFE-B992-037D68949A14}</UniqueIdentifier>

+ <Extensions>inf;inv;inx;mof;mc;</Extensions>

+ </Filter>

+ <Filter Include="Crypto">

+ <UniqueIdentifier>{27c1f176-3bb2-46ab-abe5-d5ea01d8d4c9}</UniqueIdentifier>

+ </Filter>

+ <Filter Include="Crypto\Source Files">

+ <UniqueIdentifier>{a5c1dc1f-29ec-4ea8-b535-61dd2c5e4342}</UniqueIdentifier>

+ </Filter>

+ <Filter Include="Crypto\Header Files">

+ <UniqueIdentifier>{e69db28f-0030-4532-9d70-5c11b63d1e2b}</UniqueIdentifier>

+ </Filter>

+ <Filter Include="Common">

+ <UniqueIdentifier>{c9095cb6-8efa-4261-902e-a9b8afa443d6}</UniqueIdentifier>

+ </Filter>

+ </ItemGroup>

+ <ItemGroup>

+ <ClCompile Include="DriveFilter.c">

+ <Filter>Source Files</Filter>

+ </ClCompile>

+ <ClCompile Include="DumpFilter.c">

+ <Filter>Source Files</Filter>

+ </ClCompile>

+ <ClCompile Include="EncryptedIoQueue.c">

+ <Filter>Source Files</Filter>

+ </ClCompile>

+ <ClCompile Include="Ntvol.c">

+ <Filter>Source Files</Filter>

+ </ClCompile>

+ <ClCompile Include="VolumeFilter.c">

+ <Filter>Source Files</Filter>

+ </ClCompile>

+ <ClCompile Include="..\Crypto\Aeskey.c">

+ <Filter>Crypto\Source Files</Filter>

+ </ClCompile>

+ <ClCompile Include="..\Crypto\Aestab.c">

+ <Filter>Crypto\Source Files</Filter>

+ </ClCompile>

+ <ClCompile Include="..\Crypto\Camellia.c">

+ <Filter>Crypto\Source Files</Filter>

+ </ClCompile>

+ <ClCompile Include="..\Crypto\chacha-xmm.c">

+ <Filter>Crypto\Source Files</Filter>

+ </ClCompile>

+ <ClCompile Include="..\Crypto\chacha256.c">

+ <Filter>Crypto\Source Files</Filter>

+ </ClCompile>

+ <ClCompile Include="..\Crypto\chachaRng.c">

+ <Filter>Crypto\Source Files</Filter>

+ </ClCompile>

+ <ClCompile Include="..\Crypto\cpu.c">

+ <Filter>Crypto\Source Files</Filter>

+ </ClCompile>

+ <ClCompile Include="..\Crypto\jitterentropy-base.c">

+ <Filter>Crypto\Source Files</Filter>

+ </ClCompile>

+ <ClCompile Include="..\Crypto\kuznyechik.c">

+ <Filter>Crypto\Source Files</Filter>

+ </ClCompile>

+ <ClCompile Include="..\Crypto\kuznyechik_simd.c">

+ <Filter>Crypto\Source Files</Filter>

+ </ClCompile>

+ <ClCompile Include="..\Crypto\rdrand.c">

+ <Filter>Crypto\Source Files</Filter>

+ </ClCompile>

+ <ClCompile Include="..\Crypto\SerpentFast.c">

+ <Filter>Crypto\Source Files</Filter>

+ </ClCompile>

+ <ClCompile Include="..\Crypto\SerpentFast_simd.cpp">

+ <Filter>Crypto\Source Files</Filter>

+ </ClCompile>

+ <ClCompile Include="..\Crypto\Sha2.c">

+ <Filter>Crypto\Source Files</Filter>

+ </ClCompile>

+ <ClCompile Include="..\Crypto\Streebog.c">

+ <Filter>Crypto\Source Files</Filter>

+ </ClCompile>

+ <ClCompile Include="..\Crypto\t1ha2.c">

+ <Filter>Crypto\Source Files</Filter>

+ </ClCompile>

+ <ClCompile Include="..\Crypto\t1ha2_selfcheck.c">

+ <Filter>Crypto\Source Files</Filter>

+ </ClCompile>

+ <ClCompile Include="..\Crypto\t1ha_selfcheck.c">

+ <Filter>Crypto\Source Files</Filter>

+ </ClCompile>

+ <ClCompile Include="..\Crypto\Twofish.c">

+ <Filter>Crypto\Source Files</Filter>

+ </ClCompile>

+ <ClCompile Include="..\Crypto\Whirlpool.c">

+ <Filter>Crypto\Source Files</Filter>

+ </ClCompile>

+ <ClCompile Include="..\Common\Cache.c">

+ <Filter>Common</Filter>

+ </ClCompile>

+ <ClCompile Include="..\Common\Crc.c">

+ <Filter>Common</Filter>

+ </ClCompile>

+ <ClCompile Include="..\Common\Crypto.c">

+ <Filter>Common</Filter>

+ </ClCompile>

+ <ClCompile Include="..\Common\EncryptionThreadPool.c">

+ <Filter>Common</Filter>

+ </ClCompile>

+ <ClCompile Include="..\Common\Endian.c">

+ <Filter>Common</Filter>

+ </ClCompile>

+ <ClCompile Include="..\Common\GfMul.c">

+ <Filter>Common</Filter>

+ </ClCompile>

+ <ClCompile Include="..\Common\Pkcs5.c">

+ <Filter>Common</Filter>

+ </ClCompile>

+ <ClCompile Include="..\Common\Tests.c">

+ <Filter>Common</Filter>

+ </ClCompile>

+ <ClCompile Include="..\Common\Volumes.c">

+ <Filter>Common</Filter>

+ </ClCompile>

+ <ClCompile Include="..\Common\Wipe.c">

+ <Filter>Common</Filter>

+ </ClCompile>

+ <ClCompile Include="..\Common\Xts.c">

+ <Filter>Common</Filter>

+ </ClCompile>

+ <ClCompile Include="..\Crypto\Aescrypt.c">

+ <Filter>Crypto\Source Files</Filter>

+ </ClCompile>

+ <ClCompile Include="Ntdriver.c">

+ <Filter>Source Files</Filter>

+ </ClCompile>

+ <ClCompile Include="..\Crypto\blake2s.c">

+ <Filter>Crypto\Source Files</Filter>

+ </ClCompile>

+ <ClCompile Include="..\Crypto\blake2s_SSE2.c">

+ <Filter>Crypto\Source Files</Filter>

+ </ClCompile>

+ <ClCompile Include="..\Crypto\blake2s_SSE41.c">

+ <Filter>Crypto\Source Files</Filter>

+ </ClCompile>

+ <ClCompile Include="..\Crypto\blake2s_SSSE3.c">

+ <Filter>Crypto\Source Files</Filter>

+ </ClCompile>

+ </ItemGroup>

+ <ItemGroup>

+ <ClInclude Include="DriveFilter.h">

+ <Filter>Header Files</Filter>

+ </ClInclude>

+ <ClInclude Include="DumpFilter.h">

+ <Filter>Header Files</Filter>

+ </ClInclude>

+ <ClInclude Include="EncryptedIoQueue.h">

+ <Filter>Header Files</Filter>

+ </ClInclude>

+ <ClInclude Include="Ntdriver.h">

+ <Filter>Header Files</Filter>

+ </ClInclude>

+ <ClInclude Include="Ntvol.h">

+ <Filter>Header Files</Filter>

+ </ClInclude>

+ <ClInclude Include="Resource.h">

+ <Filter>Header Files</Filter>

+ </ClInclude>

+ <ClInclude Include="VolumeFilter.h">

+ <Filter>Header Files</Filter>

+ </ClInclude>

+ <ClInclude Include="..\Crypto\Aes.h">

+ <Filter>Crypto\Header Files</Filter>

+ </ClInclude>

+ <ClInclude Include="..\Crypto\Aes_hw_cpu.h">

+ <Filter>Crypto\Header Files</Filter>

+ </ClInclude>

+ <ClInclude Include="..\Crypto\Aesopt.h">

+ <Filter>Crypto\Header Files</Filter>

+ </ClInclude>

+ <ClInclude Include="..\Crypto\Aestab.h">

+ <Filter>Crypto\Header Files</Filter>

+ </ClInclude>

+ <ClInclude Include="..\Crypto\Camellia.h">

+ <Filter>Crypto\Header Files</Filter>

+ </ClInclude>

+ <ClInclude Include="..\Crypto\chacha256.h">

+ <Filter>Crypto\Header Files</Filter>

+ </ClInclude>

+ <ClInclude Include="..\Crypto\chachaRng.h">

+ <Filter>Crypto\Header Files</Filter>

+ </ClInclude>

+ <ClInclude Include="..\Crypto\chacha_u1.h">

+ <Filter>Crypto\Header Files</Filter>

+ </ClInclude>

+ <ClInclude Include="..\Crypto\chacha_u4.h">

+ <Filter>Crypto\Header Files</Filter>

+ </ClInclude>

+ <ClInclude Include="..\Crypto\config.h">

+ <Filter>Crypto\Header Files</Filter>

+ </ClInclude>

+ <ClInclude Include="..\Crypto\cpu.h">

+ <Filter>Crypto\Header Files</Filter>

+ </ClInclude>

+ <ClInclude Include="..\Crypto\GostCipher.h">

+ <Filter>Crypto\Header Files</Filter>

+ </ClInclude>

+ <ClInclude Include="..\Crypto\jitterentropy-base-user.h">

+ <Filter>Crypto\Header Files</Filter>

+ </ClInclude>

+ <ClInclude Include="..\Crypto\jitterentropy.h">

+ <Filter>Crypto\Header Files</Filter>

+ </ClInclude>

+ <ClInclude Include="..\Crypto\kuznyechik.h">

+ <Filter>Crypto\Header Files</Filter>

+ </ClInclude>

+ <ClInclude Include="..\Crypto\misc.h">

+ <Filter>Crypto\Header Files</Filter>

+ </ClInclude>

+ <ClInclude Include="..\Crypto\rdrand.h">

+ <Filter>Crypto\Header Files</Filter>

+ </ClInclude>

+ <ClInclude Include="..\Crypto\Rmd160.h">

+ <Filter>Crypto\Header Files</Filter>

+ </ClInclude>

+ <ClInclude Include="..\Crypto\SerpentFast.h">

+ <Filter>Crypto\Header Files</Filter>

+ </ClInclude>

+ <ClInclude Include="..\Crypto\SerpentFast_sbox.h">

+ <Filter>Crypto\Header Files</Filter>

+ </ClInclude>

+ <ClInclude Include="..\Crypto\Sha2.h">

+ <Filter>Crypto\Header Files</Filter>

+ </ClInclude>

+ <ClInclude Include="..\Crypto\Streebog.h">

+ <Filter>Crypto\Header Files</Filter>

+ </ClInclude>

+ <ClInclude Include="..\Crypto\t1ha.h">

+ <Filter>Crypto\Header Files</Filter>

+ </ClInclude>

+ <ClInclude Include="..\Crypto\t1ha_bits.h">

+ <Filter>Crypto\Header Files</Filter>

+ </ClInclude>

+ <ClInclude Include="..\Crypto\t1ha_selfcheck.h">

+ <Filter>Crypto\Header Files</Filter>

+ </ClInclude>

+ <ClInclude Include="..\Crypto\Twofish.h">

+ <Filter>Crypto\Header Files</Filter>

+ </ClInclude>

+ <ClInclude Include="..\Crypto\Whirlpool.h">

+ <Filter>Crypto\Header Files</Filter>

+ </ClInclude>

+ <ClInclude Include="..\Crypto\AesSmall.h">

+ <Filter>Crypto\Header Files</Filter>

+ </ClInclude>

+ </ItemGroup>

+ <ItemGroup>

+ <CustomBuild Include="..\Crypto\Aes_hw_cpu.asm">

+ <Filter>Crypto\Source Files</Filter>

+ </CustomBuild>

+ <CustomBuild Include="..\Crypto\Aes_x64.asm">

+ <Filter>Crypto\Source Files</Filter>

+ </CustomBuild>

+ <CustomBuild Include="..\Crypto\Aes_x86.asm">

+ <Filter>Crypto\Source Files</Filter>

+ </CustomBuild>

+ <CustomBuild Include="..\Crypto\Twofish_x64.S">

+ <Filter>Crypto\Source Files</Filter>

+ </CustomBuild>

+ <CustomBuild Include="..\Crypto\Camellia_aesni_x64.S">

+ <Filter>Crypto\Source Files</Filter>

+ </CustomBuild>

+ <CustomBuild Include="..\Crypto\Camellia_x64.S">

+ <Filter>Crypto\Source Files</Filter>

+ </CustomBuild>

+ <CustomBuild Include="..\Crypto\sha256-x86-nayuki.S">

+ <Filter>Crypto\Source Files</Filter>

+ </CustomBuild>

+ <CustomBuild Include="..\Crypto\sha256_avx1_x64.asm">

+ <Filter>Crypto\Source Files</Filter>

+ </CustomBuild>

+ <CustomBuild Include="..\Crypto\sha256_avx2_x64.asm">

+ <Filter>Crypto\Source Files</Filter>

+ </CustomBuild>

+ <CustomBuild Include="..\Crypto\sha256_sse4_x64.asm">

+ <Filter>Crypto\Source Files</Filter>

+ </CustomBuild>

+ <CustomBuild Include="..\Crypto\sha512-x86-nayuki.S">

+ <Filter>Crypto\Source Files</Filter>

+ </CustomBuild>

+ <CustomBuild Include="..\Crypto\sha512-x64-nayuki.S">

+ <Filter>Crypto\Source Files</Filter>

+ </CustomBuild>

+ <CustomBuild Include="..\Crypto\sha512_avx1_x64.asm">

+ <Filter>Crypto\Source Files</Filter>

+ </CustomBuild>

+ <CustomBuild Include="..\Crypto\sha512_avx2_x64.asm">

+ <Filter>Crypto\Source Files</Filter>

+ </CustomBuild>

+ <CustomBuild Include="..\Crypto\sha512_sse4_x64.asm">

+ <Filter>Crypto\Source Files</Filter>

+ </CustomBuild>

+ <CustomBuild Include="..\Crypto\rdrand_ml.asm">

+ <Filter>Crypto\Source Files</Filter>

+ </CustomBuild>

+ <CustomBuild Include="..\Crypto\rdseed_ml.asm">

+ <Filter>Crypto\Source Files</Filter>

+ </CustomBuild>

+ </ItemGroup>

+ <ItemGroup>

+ <ResourceCompile Include="Driver.rc">

+ <Filter>Resource Files</Filter>

+ </ResourceCompile>

+ </ItemGroup>

+</Project> \ No newline at end of file