archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Branch: master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
windows-server-2003/ds/netapi/svcdlls/logonsrv/idl/nlcommon.c

763 lines
19 KiB
Raw Permalink Normal View History

commiting as it is
4 years ago
  1. /*++
  3. Copyright (c) 1987-1999 Microsoft Corporation
  5. Module Name:
  7. nlcommon.c
  9. Abstract:
  11. Routines shared by logonsrv\server and logonsrv\common
  13. Author:
  15. Cliff Van Dyke (cliffv) 20-July-1996
  17. Environment:
  19. User mode only.
  20. Contains NT-specific code.
  21. Requires ANSI C extensions: slash-slash comments, long external names.
  23. Revision History:
  25. --*/
  28. //
  29. // Common include files.
  30. //
  32. #ifndef _NETLOGON_SERVER
  33. #include <nt.h>
  34. #include <ntrtl.h>
  35. #include <nturtl.h>
  36. #include <ntlsa.h>
  37. #include <rpc.h> // RPC_STATUS
  39. #include <windef.h>
  40. #include <winsock2.h>
  42. #include <lmcons.h> // General net defines
  43. #include <dsgetdc.h> // DsGetDcName()
  44. #include <align.h> // ROUND_UP_COUNT()
  45. #include <lmerr.h> // System Error Log definitions
  46. #include <lmapibuf.h> // NetapipBufferAllocate
  47. #include <netlib.h> // NetpMemoryAllcate(
  48. #include <netlibnt.h> // NetpApiStatusToNtStatus();
  49. #include <netlogon.h> // Definition of mailslot messages
  50. #include <ntddbrow.h> // Needed by nlcommon.h
  51. #include <ntrpcp.h>
  53. #if DBG
  54. #define NETLOGONDBG 1
  55. #endif // DBG
  56. #include <nldebug.h> // NlPrint()
  57. #include <nlbind.h> // Definitions shared with netlogon
  58. #include <nlcommon.h> // Definitions shared with netlogon
  59. #include <stdlib.h> // C library functions (rand, etc)
  62. #endif // _NETLOGON_SERVER
  64. //
  65. // Include nlcommon.h again allocating the actual variables
  66. // this time around.
  67. //
  69. // #define NLCOMMON_ALLOCATE
  70. // #include "nlcommon.h"
  71. // #undef NLCOMMON_ALLOCATE
  74. #ifndef WIN32_CHICAGO
  77. VOID
  78. NlForestRelocationRoutine(
  79. IN DWORD Level,
  80. IN OUT PBUFFER_DESCRIPTOR BufferDescriptor,
  81. IN PTRDIFF_T Offset
  82. )
  84. /*++
  86. Routine Description:
  88. Routine to relocate the pointers from the fixed portion of a NetGroupEnum
  89. enumeration
  90. buffer to the string portion of an enumeration buffer. It is called
  91. as a callback routine from NetpAllocateEnumBuffer when it re-allocates
  92. such a buffer. NetpAllocateEnumBuffer copied the fixed portion and
  93. string portion into the new buffer before calling this routine.
  95. Arguments:
  97. Level - Level of information in the buffer.
  99. BufferDescriptor - Description of the new buffer.
  101. Offset - Offset to add to each pointer in the fixed portion.
  103. Return Value:
  105. Returns the error code for the operation.
  107. --*/
  109. {
  110. DWORD EntryCount;
  111. DWORD EntryNumber;
  112. DWORD FixedSize;
  115. //
  116. // Local macro to add a byte offset to a pointer.
  117. //
  119. #define RELOCATE_ONE( _fieldname, _offset ) \
  120. if ( (_fieldname) != NULL ) { \
  121. _fieldname = (PVOID) ((LPBYTE)(_fieldname) + (_offset)); \
  122. }
  124. //
  125. // Compute the number of fixed size entries
  126. //
  128. FixedSize = sizeof(DS_DOMAIN_TRUSTSW);
  130. EntryCount =
  131. ((DWORD)(BufferDescriptor->FixedDataEnd - BufferDescriptor->Buffer)) /
  132. FixedSize;
  134. //
  135. // Loop relocating each field in each fixed size structure
  136. //
  138. for ( EntryNumber=0; EntryNumber<EntryCount; EntryNumber++ ) {
  140. LPBYTE TheStruct = BufferDescriptor->Buffer + FixedSize * EntryNumber;
  142. RELOCATE_ONE( ((PDS_DOMAIN_TRUSTSW)TheStruct)->NetbiosDomainName, Offset );
  143. RELOCATE_ONE( ((PDS_DOMAIN_TRUSTSW)TheStruct)->DnsDomainName, Offset );
  144. RELOCATE_ONE( ((PDS_DOMAIN_TRUSTSW)TheStruct)->DomainSid, Offset );
  146. }
  148. return;
  150. UNREFERENCED_PARAMETER( Level );
  152. }
  155. NTSTATUS
  156. NlAllocateForestTrustListEntry (
  157. IN PBUFFER_DESCRIPTOR BufferDescriptor,
  158. IN PUNICODE_STRING InNetbiosDomainName OPTIONAL,
  159. IN PUNICODE_STRING InDnsDomainName OPTIONAL,
  160. IN ULONG Flags,
  161. IN ULONG ParentIndex,
  162. IN ULONG TrustType,
  163. IN ULONG TrustAttributes,
  164. IN PSID DomainSid OPTIONAL,
  165. IN GUID *DomainGuid,
  166. OUT PULONG RetSize,
  167. OUT PDS_DOMAIN_TRUSTSW *RetTrustedDomain
  168. )
  170. /*++
  172. Routine Description:
  174. Add a DS_DOMAIN_TRUSTSW structure to the buffer described by BufferDescriptor.
  176. Arguments:
  178. BufferDescriptor - Buffer entry is to be added to.
  180. NetbiosDomainName, DnsDomainName, Flags, ParentIndex, TrustType,
  181. TrustAttributes, DomainSid, DomainGuid - Fields to fill into
  182. the DS_DOMAIN_TRUSTSW structure
  184. RetSize - Returns the size in bytes of the allocated entry
  186. RetTrustedDomain - Returns a pointer to the newly allocated structure
  188. Return Value:
  190. Status of the operation.
  192. --*/
  193. {
  194. NTSTATUS Status;
  195. NET_API_STATUS NetStatus;
  197. PDS_DOMAIN_TRUSTSW TrustedDomain = NULL;
  198. UNICODE_STRING NetbiosDomainName;
  199. UNICODE_STRING DnsDomainName;
  201. ULONG Size;
  202. ULONG VariableSize;
  204. //
  205. // Initialization
  206. //
  208. if ( InNetbiosDomainName == NULL ) {
  209. RtlInitUnicodeString( &NetbiosDomainName, NULL );
  210. } else {
  211. NetbiosDomainName = *InNetbiosDomainName;
  212. }
  214. if ( InDnsDomainName == NULL ) {
  215. RtlInitUnicodeString( &DnsDomainName, NULL );
  216. } else {
  217. DnsDomainName = *InDnsDomainName;
  218. }
  220. //
  221. // Determine the size of this entry
  222. //
  224. Size = sizeof(DS_DOMAIN_TRUSTSW);
  225. VariableSize = 0;
  226. if ( DnsDomainName.Length != 0 ) {
  227. VariableSize += DnsDomainName.Length + sizeof(WCHAR);
  228. }
  229. if ( NetbiosDomainName.Length != 0 ) {
  230. VariableSize += NetbiosDomainName.Length + sizeof(WCHAR);
  231. }
  232. if ( DomainSid != NULL ) {
  233. VariableSize += RtlLengthSid( DomainSid );
  234. }
  235. VariableSize = ROUND_UP_COUNT( VariableSize, ALIGN_DWORD );
  236. *RetSize = Size + VariableSize;
  238. Size += VariableSize;
  239. Size += sizeof(DWORD); // Size is really a function of alignment of EndOfVariableData
  242. NetStatus = NetpAllocateEnumBufferEx(
  243. BufferDescriptor,
  244. FALSE, // Not a 'get' operation
  245. 0xFFFFFFFF, // PrefMaxLen,
  246. Size,
  247. NlForestRelocationRoutine,
  248. 0,
  249. 512 ); // Grow by at most 512 bytes more than Size
  251. if (NetStatus != NERR_Success) {
  252. Status = NetpApiStatusToNtStatus( NetStatus );
  253. goto Cleanup;
  254. }
  256. //
  257. // Copy this entry into the buffer
  258. //
  260. TrustedDomain = (PDS_DOMAIN_TRUSTSW)(BufferDescriptor->FixedDataEnd);
  261. *RetTrustedDomain = TrustedDomain;
  262. BufferDescriptor->FixedDataEnd += sizeof(DS_DOMAIN_TRUSTSW);
  264. //
  265. // Copy the fixed size data
  266. //
  268. TrustedDomain->Flags = Flags;
  269. TrustedDomain->ParentIndex = ParentIndex;
  270. TrustedDomain->TrustType = TrustType;
  271. TrustedDomain->TrustAttributes = TrustAttributes;
  272. if ( DomainGuid == NULL ) {
  273. RtlZeroMemory( &TrustedDomain->DomainGuid, sizeof(GUID) );
  274. } else {
  275. TrustedDomain->DomainGuid = *DomainGuid;
  276. }
  279. //
  280. // Copy the information into the buffer.
  281. //
  283. //
  284. // Copy the DWORD aligned data
  285. //
  286. if ( DomainSid != NULL ) {
  287. if ( !NetpCopyDataToBuffer (
  288. (LPBYTE)DomainSid,
  289. RtlLengthSid( DomainSid ),
  290. BufferDescriptor->FixedDataEnd,
  291. &BufferDescriptor->EndOfVariableData,
  292. (LPBYTE *)&TrustedDomain->DomainSid,
  293. sizeof(DWORD) ) ) {
  295. Status = STATUS_INTERNAL_ERROR;
  296. goto Cleanup;
  297. }
  298. } else {
  299. TrustedDomain->DomainSid = NULL;
  300. }
  303. //
  304. // Copy the WCHAR aligned data.
  305. //
  307. if ( NetbiosDomainName.Length != 0 ) {
  308. if ( !NetpCopyStringToBuffer(
  309. NetbiosDomainName.Buffer,
  310. NetbiosDomainName.Length/sizeof(WCHAR),
  311. BufferDescriptor->FixedDataEnd,
  312. (LPWSTR *)&BufferDescriptor->EndOfVariableData,
  313. &TrustedDomain->NetbiosDomainName ) ) {
  315. Status = STATUS_INTERNAL_ERROR;
  316. goto Cleanup;
  317. }
  318. } else {
  319. TrustedDomain->NetbiosDomainName = NULL;
  320. }
  322. if ( DnsDomainName.Length != 0 ) {
  323. if ( !NetpCopyStringToBuffer(
  324. DnsDomainName.Buffer,
  325. DnsDomainName.Length/sizeof(WCHAR),
  326. BufferDescriptor->FixedDataEnd,
  327. (LPWSTR *)&BufferDescriptor->EndOfVariableData,
  328. &TrustedDomain->DnsDomainName ) ) {
  330. Status = STATUS_INTERNAL_ERROR;
  331. goto Cleanup;
  332. }
  333. } else {
  334. TrustedDomain->DnsDomainName = NULL;
  335. }
  338. Status = STATUS_SUCCESS;
  341. //
  342. //
  343. Cleanup:
  345. return Status;
  346. }
  349. NTSTATUS
  350. NlGetNt4TrustedDomainList (
  351. IN LPWSTR UncDcName,
  352. IN PUNICODE_STRING InNetbiosDomainName OPTIONAL,
  353. IN PUNICODE_STRING InDnsDomainName OPTIONAL,
  354. IN PSID DomainSid OPTIONAL,
  355. IN GUID *DomainGuid OPTIONAL,
  356. OUT PDS_DOMAIN_TRUSTSW *ForestTrustList,
  357. OUT PULONG ForestTrustListSize,
  358. OUT PULONG ForestTrustListCount
  359. )
  361. /*++
  363. Routine Description:
  365. Get the list of trusted domains from the specified DC using NT 4 protocols.
  367. Arguments:
  369. UncDcName - Specifies the name of a DC in the domain.
  371. InNetbiosDomainName - Netbios domain of the domain Dc is in.
  373. InDnsDomainName - Dns domain of the domain Dc is in.
  375. DomainSid - Sid of the domain Dc is in.
  377. DomainGuid - Guid of the domain Dc is in.
  379. ForestTrustList - Returns a list of trusted domains.
  380. Must be freed using NetApiBufferFree
  382. ForestTrustListSize - Size (in bytes) of ForestTrustList
  384. ForestTrustListCount - Number of entries in ForestTrustList
  386. Return Value:
  388. STATUS_SUCCESS - if the trust list was successfully returned
  390. --*/
  391. {
  392. NTSTATUS Status;
  393. NET_API_STATUS NetStatus;
  395. LSA_HANDLE LsaHandle = NULL;
  396. UNICODE_STRING UncDcNameString;
  397. OBJECT_ATTRIBUTES ObjectAttributes;
  399. LSA_ENUMERATION_HANDLE EnumerationContext;
  400. BOOLEAN AllDone = FALSE;
  401. PPOLICY_PRIMARY_DOMAIN_INFO PrimaryDomainInfo = NULL;
  403. PLSA_TRUST_INFORMATION TrustList = NULL;
  404. BUFFER_DESCRIPTOR BufferDescriptor;
  405. PDS_DOMAIN_TRUSTSW TrustedDomain;
  406. DWORD Size;
  408. //
  409. // Initialization
  410. //
  412. *ForestTrustListCount = 0;
  413. *ForestTrustListSize = 0;
  414. *ForestTrustList = NULL;
  415. BufferDescriptor.Buffer = NULL;
  418. //
  419. // Open the policy database on the DC
  420. //
  422. RtlInitUnicodeString( &UncDcNameString, UncDcName );
  424. InitializeObjectAttributes( &ObjectAttributes, NULL, 0, NULL, NULL );
  426. Status = LsaOpenPolicy( &UncDcNameString,
  427. &ObjectAttributes,
  428. POLICY_VIEW_LOCAL_INFORMATION,
  429. &LsaHandle );
  431. if ( !NT_SUCCESS(Status) ) {
  433. NlPrint((NL_CRITICAL,
  434. "NlGetNt4TrustedDomainList: %ws: LsaOpenPolicy failed: %lx\n",
  435. UncDcName,
  436. Status ));
  438. LsaHandle = NULL;
  439. goto Cleanup;
  441. }
  443. //
  444. // If the caller didn't specify primary domain information,
  445. // get it from the DC
  446. //
  449. if ( InNetbiosDomainName == NULL ) {
  451. //
  452. // Get the name of the primary domain from LSA
  453. //
  454. Status = LsaQueryInformationPolicy(
  455. LsaHandle,
  456. PolicyPrimaryDomainInformation,
  457. (PVOID *) &PrimaryDomainInfo
  458. );
  460. if (! NT_SUCCESS(Status)) {
  461. NlPrint(( NL_CRITICAL,
  462. "NlGetNt4TrustedDomainList: LsaQueryInformationPolicy failed %lx\n",
  463. Status));
  464. goto Cleanup;
  465. }
  468. //
  469. // Grab the returned information
  470. //
  472. InNetbiosDomainName = &PrimaryDomainInfo->Name;
  473. InDnsDomainName = NULL;
  474. DomainSid = PrimaryDomainInfo->Sid;
  475. DomainGuid = NULL;
  476. }
  478. //
  479. // The LsaEnumerateTrustedDomain doesn't have the PrimaryDomain in the trust list.
  480. // Add it to our list here.
  481. //
  483. Status = NlAllocateForestTrustListEntry (
  484. &BufferDescriptor,
  485. InNetbiosDomainName,
  486. InDnsDomainName,
  487. DS_DOMAIN_PRIMARY,
  488. 0, // No ParentIndex
  489. TRUST_TYPE_DOWNLEVEL,
  490. 0, // No TrustAttributes
  491. DomainSid,
  492. DomainGuid,
  493. &Size,
  494. &TrustedDomain );
  496. if ( !NT_SUCCESS(Status) ) {
  497. goto Cleanup;
  498. }
  500. *ForestTrustListSize += Size;
  501. (*ForestTrustListCount) ++;
  503. //
  504. // Loop getting a list of trusted domains
  505. //
  507. EnumerationContext = 0;
  509. do {
  510. ULONG i;
  511. ULONG CountReturned;
  513. //
  514. // Free any buffers from a previous iteration.
  515. //
  516. if ( TrustList != NULL ) {
  517. (VOID) LsaFreeMemory( TrustList );
  518. }
  520. //
  521. // Get more trusted domains names
  522. //
  524. Status = LsaEnumerateTrustedDomains(
  525. LsaHandle,
  526. &EnumerationContext,
  527. (PVOID *) &TrustList,
  528. 0xFFFFFFFF,
  529. &CountReturned );
  531. if ( Status == STATUS_NO_MORE_ENTRIES ) {
  532. AllDone = TRUE;
  533. Status = STATUS_SUCCESS;
  534. }
  536. if ( !NT_SUCCESS(Status) ) {
  538. NlPrint((NL_CRITICAL,
  539. "NlGetNt4TrustedDomainList: %ws: LsaEnumerateTrustedDomains failed: %lx\n",
  540. UncDcName,
  541. Status ));
  543. TrustList = NULL;
  544. goto Cleanup;
  545. }
  548. //
  549. // Handle each trusted domain.
  550. //
  552. for ( i=0; i<CountReturned; i++ ) {
  554. Status = NlAllocateForestTrustListEntry (
  555. &BufferDescriptor,
  556. &TrustList[i].Name,
  557. NULL, // No DNS domain name
  558. DS_DOMAIN_DIRECT_OUTBOUND,
  559. 0, // No ParentIndex
  560. TRUST_TYPE_DOWNLEVEL,
  561. 0, // No TrustAttributes
  562. TrustList[i].Sid,
  563. NULL, // No DomainGuid
  564. &Size,
  565. &TrustedDomain );
  567. if ( !NT_SUCCESS(Status) ) {
  568. goto Cleanup;
  569. }
  571. //
  572. // Account for the newly allocated entry
  573. //
  575. *ForestTrustListSize += Size;
  576. (*ForestTrustListCount) ++;
  578. }
  580. } while ( !AllDone );
  582. *ForestTrustList = (PDS_DOMAIN_TRUSTSW) BufferDescriptor.Buffer;
  583. BufferDescriptor.Buffer = NULL;
  584. Status = STATUS_SUCCESS;
  586. //
  587. // Free any locally used resources.
  588. //
  589. Cleanup:
  591. if ( LsaHandle != NULL ) {
  592. (VOID) LsaClose( LsaHandle );
  593. }
  595. if ( TrustList != NULL ) {
  596. (VOID) LsaFreeMemory( TrustList );
  597. }
  599. if ( BufferDescriptor.Buffer != NULL ) {
  600. NetApiBufferFree( BufferDescriptor.Buffer );
  601. }
  603. if ( PrimaryDomainInfo != NULL ) {
  604. (void) LsaFreeMemory( PrimaryDomainInfo );
  605. }
  607. return Status;
  608. }
  612. NTSTATUS
  613. NlRpcpBindRpc(
  614. IN LPWSTR ServerName,
  615. IN LPWSTR ServiceName,
  616. IN LPWSTR NetworkOptions,
  617. IN NL_RPC_BINDING RpcBindingType,
  618. OUT RPC_BINDING_HANDLE *pBindingHandle
  619. )
  621. /*++
  623. Routine Description:
  625. Binds to the RPC server if possible.
  627. Arguments:
  629. ServerName - Name of server to bind with.
  631. ServiceName - Name of service to bind with.
  633. RpcBindingType - Determines whether to use unauthenticated TCP/IP transport instead of
  634. a named pipe.
  636. pBindingHandle - Location where binding handle is to be placed
  638. Return Value:
  640. STATUS_SUCCESS - The binding has been successfully completed.
  642. STATUS_INVALID_COMPUTER_NAME - The ServerName syntax is invalid.
  644. STATUS_NO_MEMORY - There is not sufficient memory available to the
  645. caller to perform the binding.
  647. --*/
  649. {
  650. RPC_STATUS RpcStatus;
  651. LPWSTR StringBinding;
  652. WCHAR ComputerName[MAX_COMPUTERNAME_LENGTH + 1];
  653. LPWSTR NewServerName = NULL;
  654. DWORD bufLen = MAX_COMPUTERNAME_LENGTH + 1;
  656. //
  657. // If we're supposed to use named pipes,
  658. // call the standard routine.
  659. //
  661. if ( RpcBindingType == UseNamedPipe ) {
  662. return RpcpBindRpc( ServerName, ServiceName, NetworkOptions, pBindingHandle );
  663. }
  665. //
  666. // Otherwise, use TCP/IP directly.
  667. //
  669. *pBindingHandle = NULL;
  671. if (ServerName != NULL) {
  672. if (GetComputerNameW(ComputerName,&bufLen)) {
  673. if ((_wcsicmp(ComputerName,ServerName) == 0) ||
  674. ((ServerName[0] == '\\') &&
  675. (ServerName[1] == '\\') &&
  676. (_wcsicmp(ComputerName,&(ServerName[2]))==0))) {
  677. NewServerName = NULL;
  678. }
  679. else {
  680. NewServerName = ServerName;
  681. }
  682. }
  683. }
  685. //
  686. // Ditch the \\
  687. //
  688. if ( NewServerName != NULL &&
  689. NewServerName[0] == '\\' &&
  690. NewServerName[1] == '\\' ) {
  691. NewServerName += 2;
  692. }
  694. //
  695. // Enpoint isn't known.
  696. // Rpc will contact the endpoint mapper for it.
  697. //
  698. RpcStatus = RpcStringBindingComposeW(0, L"ncacn_ip_tcp", NewServerName,
  699. NULL, NetworkOptions, &StringBinding);
  701. if ( RpcStatus != RPC_S_OK ) {
  702. return( STATUS_NO_MEMORY );
  703. }
  705. RpcStatus = RpcBindingFromStringBindingW(StringBinding, pBindingHandle);
  706. RpcStringFreeW(&StringBinding);
  707. if ( RpcStatus != RPC_S_OK ) {
  708. *pBindingHandle = NULL;
  709. if ( RpcStatus == RPC_S_INVALID_ENDPOINT_FORMAT ||
  710. RpcStatus == RPC_S_INVALID_NET_ADDR ) {
  712. return( STATUS_INVALID_COMPUTER_NAME );
  713. }
  714. if ( RpcStatus == RPC_S_PROTSEQ_NOT_SUPPORTED ) {
  715. return RPC_NT_PROTSEQ_NOT_SUPPORTED;
  716. }
  717. return(STATUS_NO_MEMORY);
  718. }
  719. return(STATUS_SUCCESS);
  720. }
  723. BOOLEAN
  724. NlDoingSetup(
  725. VOID
  726. )
  728. /*++
  730. Routine Description:
  732. Returns TRUE if we're running setup.
  734. Arguments:
  736. NONE.
  738. Return Status:
  740. TRUE - We're currently running setup
  741. FALSE - We're not running setup or aren't sure.
  743. --*/
  745. {
  746. DWORD Value;
  748. if ( !NlReadDwordHklmRegValue( "SYSTEM\\Setup",
  749. "SystemSetupInProgress",
  750. &Value ) ) {
  751. return FALSE;
  752. }
  754. if ( Value != 1 ) {
  755. // NlPrint(( 0, "NlDoingSetup: not doing setup\n" ));
  756. return FALSE;
  757. }
  759. NlPrint(( 0, "NlDoingSetup: doing setup\n" ));
  760. return TRUE;
  761. }
  763. #endif // WIN32_CHICAGO