archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Branch: master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
windows-server-2003/ds/security/base/lsa/server/cfiles/rpcinit.c

407 lines
9.6 KiB
Raw Permalink Normal View History

commiting as it is
4 years ago
  1. /*++
  3. Copyright (c) 1991 Microsoft Corporation
  5. Module Name:
  7. rpcinit.c
  9. Abstract:
  11. LSA - RPC Server Initialization
  13. Author:
  15. Scott Birrell (ScottBi) April 29, 1991
  17. Environment:
  19. Revision History:
  21. --*/
  23. #include <lsapch2.h>
  24. #include <efsrpc.h>
  26. #include "adtgenp.h"
  28. PVOID LsapRegisterTcpIpTask = NULL;
  30. NTSTATUS
  31. LsapRegisterTcpIp(
  32. PVOID pVoid
  33. )
  34. /*++
  36. Routine Description:
  38. This routine registers the LSA interface over any protocols that have
  39. been registered so far. This routine is designed to be called on a
  40. domain controller after the DS has started since it already waits
  41. for the conditions necessary to register its RPC interface over TCP/IP.
  44. N.B. Should the DS ever not register of TCP/IP this mechanism will
  45. need to be updated.
  47. N.B. This routine is called from the thread pool call back mechanism.
  49. Arguments:
  51. pVoid -- ignored.
  53. Return Value:
  55. STATUS_SUCCESS
  57. --*/
  58. {
  59. ULONG RpcStatus = 0;
  60. NTSTATUS Status = STATUS_SUCCESS;
  61. RPC_BINDING_VECTOR *BindingVector;
  63. //
  64. // Register LSA's interface over the new interfaces
  65. //
  66. RpcStatus = RpcServerInqBindings(&BindingVector);
  67. if (RpcStatus == 0) {
  69. RpcStatus = RpcEpRegister(
  70. lsarpc_ServerIfHandle,
  71. BindingVector,
  72. NULL, // no uuid vector
  73. L"" // no annotation
  74. );
  76. RpcBindingVectorFree(&BindingVector);
  77. }
  79. if (RpcStatus != 0) {
  81. SpmpReportEvent( TRUE,
  82. EVENTLOG_WARNING_TYPE,
  83. LSAEVENT_LOOKUP_TCPIP_NOT_INSTALLED,
  84. 0,
  85. sizeof( ULONG ),
  86. &RpcStatus,
  87. 0);
  88. }
  90. //
  91. // Deregister ourselves
  92. //
  93. ASSERT(NULL != LsapRegisterTcpIpTask);
  94. Status = LsaICancelNotification(LsapRegisterTcpIpTask);
  95. ASSERT(NT_SUCCESS(Status));
  96. LsapRegisterTcpIpTask = NULL;
  98. //
  99. // Close the handle
  100. //
  101. ASSERT(pVoid != NULL);
  102. CloseHandle((HANDLE)pVoid);
  104. return STATUS_SUCCESS;
  106. }
  108. NTSTATUS
  109. LsapRPCInit(
  110. )
  112. /*++
  114. Routine Description:
  116. This function performs the initialization of the RPC server in the LSA
  117. subsystem. Clients such as the Local Security Manager on this or some
  118. other machine will then be able to call the LSA API that use RPC .
  120. Arguments:
  122. None
  124. Return Value:
  126. NTSTATUS - Standard Nt Result Code.
  128. All Result Code returned are from called routines.
  130. Environment:
  132. User Mode
  133. --*/
  135. {
  136. NTSTATUS NtStatus;
  137. NTSTATUS TmpStatus;
  138. LPWSTR ServiceName;
  141. //
  142. // Publish the Lsa server interface package...
  143. //
  144. //
  145. // NOTE: Now all RPC servers in lsass.exe (now winlogon) share the same
  146. // pipe name. However, in order to support communication with
  147. // version 1.0 of WinNt, it is necessary for the Client Pipe name
  148. // to remain the same as it was in version 1.0. Mapping to the new
  149. // name is performed in the Named Pipe File System code.
  150. //
  151. //
  153. ServiceName = L"lsass";
  154. NtStatus = RpcpAddInterface( ServiceName, lsarpc_ServerIfHandle);
  156. if (!NT_SUCCESS(NtStatus)) {
  158. LsapLogError(
  159. "LSASS: Could Not Start RPC Server.\n"
  160. " Failing to initialize LSA Server.\n",
  161. NtStatus
  162. );
  163. }
  165. TmpStatus = RpcpAddInterface( ServiceName, efsrpc_ServerIfHandle);
  166. if (!NT_SUCCESS(TmpStatus)) {
  168. LsapLogError(
  169. "LSASS: Could Not Start RPC Server.\n"
  170. " Failing to initialize LSA Server.\n",
  171. TmpStatus
  172. );
  173. }
  175. //
  176. // Register for authenticated RPC for name and sid lookups
  177. //
  179. #ifndef RPC_C_AUTHN_NETLOGON
  180. #define RPC_C_AUTHN_NETLOGON 0x44
  181. #endif // RPC_C_AUTHN_NETLOGON
  183. TmpStatus = I_RpcMapWin32Status(RpcServerRegisterAuthInfo(
  184. NULL, // no principal name
  185. RPC_C_AUTHN_NETLOGON,
  186. NULL, // no get key fn
  187. NULL // no get key argument
  188. ));
  189. if (!NT_SUCCESS(TmpStatus))
  190. {
  191. DebugLog((DEB_ERROR,"Failed to register NETLOGON auth info: 0x%x\n",TmpStatus));
  192. }
  194. //
  195. // If we are a DC, register our interface over TCP/IP for fast
  196. // lookups. Note that this routine is called so early on in startup
  197. // the the TCP/IP interface is not ready yet. We must wait until
  198. // it is ready. The DS currently waits on the necessary conditions, so
  199. // simply wait until the DS is ready to register our interface over
  200. // TCP/IP.
  201. //
  202. {
  203. NT_PRODUCT_TYPE Product;
  204. if ( RtlGetNtProductType( &Product )
  205. && (Product == NtProductLanManNt) ) {
  207. HANDLE hDsStartup;
  209. hDsStartup = CreateEvent(NULL,
  210. TRUE,
  211. FALSE,
  212. NTDS_DELAYED_STARTUP_COMPLETED_EVENT);
  214. if (hDsStartup) {
  216. LsapRegisterTcpIpTask = LsaIRegisterNotification(
  217. LsapRegisterTcpIp,
  218. (PVOID) hDsStartup,
  219. NOTIFIER_TYPE_HANDLE_WAIT,
  220. 0, // no class,
  221. 0,
  222. 0,
  223. hDsStartup);
  224. }
  225. }
  226. }
  228. {
  229. RPC_STATUS RpcStatus;
  231. //
  232. // enable lsa rpc server to listen on LRPC transport on endpoint 'audit'
  233. // this endpoint is used by auditing clients
  234. //
  236. RpcStatus = RpcServerUseProtseqEp(
  237. L"ncalrpc",
  238. RPC_C_PROTSEQ_MAX_REQS_DEFAULT , // max concurrent calls
  239. L"audit", // end point
  240. NULL // security descriptor
  241. );
  243. if ( RpcStatus != RPC_S_OK )
  244. {
  245. DebugLog((DEB_ERROR, "RpcServerUseProtseqEp failed for ncalrpc: %d\n",
  246. RpcStatus));
  247. NtStatus = I_RpcMapWin32Status( RpcStatus );
  248. }
  249. }
  251. {
  252. RPC_STATUS RpcStatus;
  254. //
  255. // Enable lsa rpc server to listen on LRPC transport on endpoint 'securityevent'.
  256. // This endpoint is used by auditing clients.
  257. //
  259. RpcStatus = RpcServerUseProtseqEp(
  260. L"ncalrpc",
  261. RPC_C_PROTSEQ_MAX_REQS_DEFAULT, // max concurrent calls
  262. L"securityevent", // end point
  263. NULL // security descriptor
  264. );
  266. if ( RpcStatus != RPC_S_OK )
  267. {
  268. DebugLog((DEB_ERROR, "RpcServerUseProtseqEp failed for ncalrpc: %d\n",
  269. RpcStatus));
  270. NtStatus = I_RpcMapWin32Status( RpcStatus );
  271. }
  272. }
  274. return(NtStatus);
  275. }
  277. VOID LSAPR_HANDLE_rundown(
  278. LSAPR_HANDLE LsaHandle
  279. )
  281. /*++
  283. Routine Description:
  285. This routine is called by the server RPC runtime to run down a
  286. Context Handle.
  288. Arguments:
  290. None.
  292. Return Value:
  294. --*/
  296. {
  297. NTSTATUS Status;
  299. //
  300. // Close and free the handle. Since the container handle reference
  301. // count includes one reference for every reference made to the
  302. // target handle, the container's reference count will be decremented
  303. // by n where n is the reference count in the target handle.
  304. //
  306. Status = LsapDbCloseObject(
  307. &LsaHandle,
  308. LSAP_DB_DEREFERENCE_CONTR |
  309. LSAP_DB_VALIDATE_HANDLE |
  310. LSAP_DB_ADMIT_DELETED_OBJECT_HANDLES,
  311. STATUS_SUCCESS
  312. );
  314. }
  317. VOID PLSA_ENUMERATION_HANDLE_rundown(
  318. PLSA_ENUMERATION_HANDLE LsaHandle
  319. )
  321. /*++
  323. Routine Description:
  325. This routine is called by the server RPC runtime to run down a
  326. Context Handle.
  328. Arguments:
  330. None.
  332. Return Value:
  334. --*/
  336. {
  337. DBG_UNREFERENCED_PARAMETER(LsaHandle);
  339. return;
  340. }
  342. VOID AUDIT_HANDLE_rundown(
  343. AUDIT_HANDLE hAudit
  344. )
  346. /*++
  348. Routine Description:
  350. This routine is called by the server RPC runtime to run down a
  351. Context Handle.
  353. Arguments:
  355. None.
  357. Return Value:
  359. --*/
  361. {
  362. NTSTATUS Status = STATUS_SUCCESS;
  364. Status = LsapUnregisterAuditEvent( &hAudit );
  366. if (!NT_SUCCESS(Status))
  367. {
  368. DebugLog((DEB_ERROR,"AUDIT_HANDLE_rundown: LsapUnregisterAuditEvent: 0x%x\n", Status));
  369. }
  370. }
  373. VOID SECURITY_SOURCE_HANDLE_rundown(
  374. SECURITY_SOURCE_HANDLE hSecuritySource
  375. )
  377. /*++
  379. Routine Description:
  381. This routine is called by the server RPC runtime to run down a
  382. Context Handle.
  384. Arguments:
  386. None.
  388. Return Value:
  390. --*/
  392. {
  393. NTSTATUS Status = STATUS_SUCCESS;
  395. #if DEBUG_AUTHZ
  396. DbgPrint("Rundown Source 0x%x\n", hSecuritySource);
  397. #endif
  399. Status = LsapAdtRundownSecurityEventSource( 0, 0, &hSecuritySource );
  401. if (!NT_SUCCESS(Status))
  402. {
  403. DebugLog((DEB_ERROR,"SECURITY_SOURCE_HANDLE_rundown: LsapUnregisterSecurityEventSource: 0x%x\n", Status));
  404. }
  405. }