archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
4.9 GiB
Branch: master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
windows-server-2003/ds/security/protocols/xtcb/creds.c

747 lines
16 KiB
Raw Permalink Normal View History

commiting as it is
4 years ago
  1. //+---------------------------------------------------------------------------
  2. //
  3. // Microsoft Windows
  4. // Copyright (C) Microsoft Corporation, 1992 - 1997.
  5. //
  6. // File: creds.c
  7. //
  8. // Contents: Cred Management for Xtcb Package
  9. //
  10. // Classes:
  11. //
  12. // Functions:
  13. //
  14. // History: 2-19-97 RichardW Created
  15. //
  16. //----------------------------------------------------------------------------
  18. #include "xtcbpkg.h"
  20. LIST_ENTRY XtcbCredList ;
  21. CRITICAL_SECTION XtcbCredListLock ;
  23. #define ReadLockCredList() EnterCriticalSection( &XtcbCredListLock )
  24. #define WriteLockCredList() EnterCriticalSection( &XtcbCredListLock )
  25. #define WriteFromReadLockCredList()
  26. #define UnlockCredList() LeaveCriticalSection( &XtcbCredListLock )
  29. //+---------------------------------------------------------------------------
  30. //
  31. // Function: XtcbInitCreds
  32. //
  33. // Synopsis: Initialize the credential management
  34. //
  35. // Arguments: (none)
  36. //
  37. // History: 2-19-97 RichardW Created
  38. //
  39. // Notes:
  40. //
  41. //----------------------------------------------------------------------------
  42. BOOL
  43. XtcbInitCreds(
  44. VOID
  45. )
  46. {
  47. InitializeCriticalSection( &XtcbCredListLock );
  49. InitializeListHead( &XtcbCredList );
  51. return TRUE ;
  52. }
  54. //+---------------------------------------------------------------------------
  55. //
  56. // Function: XtcbFindCreds
  57. //
  58. // Synopsis: Look for credentials of a particular logon id, optionally
  59. // referencing them
  60. //
  61. // Arguments: [LogonId] --
  62. // [Ref] --
  63. //
  64. // History: 2-19-97 RichardW Created
  65. //
  66. // Notes:
  67. //
  68. //----------------------------------------------------------------------------
  69. PXTCB_CREDS
  70. XtcbFindCreds(
  71. PLUID LogonId,
  72. BOOL Ref
  73. )
  74. {
  75. PLIST_ENTRY Scan ;
  76. PXTCB_CREDS Cred ;
  78. Cred = NULL ;
  80. ReadLockCredList();
  82. Scan = XtcbCredList.Flink ;
  84. while ( Scan != &XtcbCredList )
  85. {
  86. Cred = CONTAINING_RECORD( Scan, XTCB_CREDS, List );
  88. DsysAssert( Cred->Check == XTCB_CRED_CHECK );
  90. if ( RtlEqualLuid( &Cred->LogonId, LogonId ) )
  91. {
  92. break;
  93. }
  95. Scan = Cred->List.Flink ;
  97. Cred = NULL ;
  98. }
  100. if ( Cred )
  101. {
  102. if ( Ref )
  103. {
  104. WriteFromReadLockCredList();
  106. Cred->RefCount++;
  107. }
  108. }
  110. UnlockCredList();
  112. return Cred ;
  114. }
  116. //+---------------------------------------------------------------------------
  117. //
  118. // Function: XtcbCreateCreds
  119. //
  120. // Synopsis: Create and initialize a credential structure. The reference
  121. // count is set to 1, so the pointer will remain valid.
  122. //
  123. // Arguments: [LogonId] --
  124. //
  125. // History: 2-19-97 RichardW Created
  126. //
  127. // Notes:
  128. //
  129. //----------------------------------------------------------------------------
  130. PXTCB_CREDS
  131. XtcbCreateCreds(
  132. PLUID LogonId
  133. )
  134. {
  135. PXTCB_CREDS Creds ;
  137. Creds = (PXTCB_CREDS) LocalAlloc( LMEM_FIXED, sizeof( XTCB_CREDS ) );
  139. if ( Creds )
  140. {
  141. DebugLog(( DEB_TRACE_CREDS, "Creating new credential for (%x:%x)\n",
  142. LogonId->HighPart, LogonId->LowPart ));
  144. ZeroMemory( Creds, sizeof( XTCB_CREDS ) );
  146. Creds->LogonId = *LogonId ;
  147. Creds->RefCount = 1 ;
  148. Creds->Check = XTCB_CRED_CHECK ;
  150. Creds->Pac = XtcbCreatePacForCaller();
  152. WriteLockCredList();
  154. InsertTailList( &XtcbCredList, &Creds->List );
  156. UnlockCredList();
  158. }
  160. return Creds ;
  161. }
  164. //+---------------------------------------------------------------------------
  165. //
  166. // Function: XtcbRefCreds
  167. //
  168. // Synopsis: Reference the credentials
  169. //
  170. // Arguments: [Creds] --
  171. //
  172. // History: 2-19-97 RichardW Created
  173. //
  174. // Notes:
  175. //
  176. //----------------------------------------------------------------------------
  177. VOID
  178. XtcbRefCreds(
  179. PXTCB_CREDS Creds
  180. )
  181. {
  182. WriteLockCredList();
  184. Creds->RefCount++ ;
  186. UnlockCredList();
  188. }
  190. //+---------------------------------------------------------------------------
  191. //
  192. // Function: XtcbDerefCreds
  193. //
  194. // Synopsis: Deref Credentials, freeing if the refcount goes to zero
  195. //
  196. // Arguments: [Creds] --
  197. //
  198. // History: 2-19-97 RichardW Created
  199. //
  200. // Notes:
  201. //
  202. //----------------------------------------------------------------------------
  203. VOID
  204. XtcbDerefCreds(
  205. PXTCB_CREDS Creds
  206. )
  207. {
  208. WriteLockCredList();
  210. Creds->RefCount--;
  212. if ( Creds->RefCount )
  213. {
  214. UnlockCredList();
  216. return;
  217. }
  219. RemoveEntryList( &Creds->List );
  221. UnlockCredList();
  223. Creds->Check = 0 ;
  225. LocalFree( Creds );
  226. }
  229. //+---------------------------------------------------------------------------
  230. //
  231. // Function: XtcbAllocateCredHandle
  232. //
  233. // Synopsis: Allocates and returns a cred handle (reference to a credential)
  234. //
  235. // Arguments: [Creds] -- Creds this handle is for
  236. //
  237. // History: 2-21-97 RichardW Created
  238. //
  239. // Notes:
  240. //
  241. //----------------------------------------------------------------------------
  242. PXTCB_CRED_HANDLE
  243. XtcbAllocateCredHandle(
  244. PXTCB_CREDS Creds
  245. )
  246. {
  247. PXTCB_CRED_HANDLE Handle ;
  249. Handle = (PXTCB_CRED_HANDLE) LocalAlloc( LMEM_FIXED,
  250. sizeof( XTCB_CRED_HANDLE ) );
  252. if ( Handle )
  253. {
  254. ZeroMemory( Handle, sizeof( XTCB_CRED_HANDLE ) );
  256. Handle->Check = XTCB_CRED_HANDLE_CHECK ;
  258. XtcbRefCreds( Creds );
  260. Handle->Creds = Creds ;
  262. Handle->RefCount = 1 ;
  264. }
  266. return Handle ;
  269. }
  271. //+---------------------------------------------------------------------------
  272. //
  273. // Function: XtcbRefCredHandle
  274. //
  275. // Synopsis: Reference a credential handle
  276. //
  277. // Arguments: [Handle] -- Handle to ref
  278. //
  279. // History: 2-24-97 RichardW Created
  280. //
  281. // Notes:
  282. //
  283. //----------------------------------------------------------------------------
  284. VOID
  285. XtcbRefCredHandle(
  286. PXTCB_CRED_HANDLE Handle
  287. )
  288. {
  289. WriteLockCredList();
  291. Handle->RefCount ++ ;
  293. UnlockCredList();
  295. }
  297. //+---------------------------------------------------------------------------
  298. //
  299. // Function: XtcbDerefCredHandle
  300. //
  301. // Synopsis: Dereference a cred handle
  302. //
  303. // Arguments: [Handle] --
  304. //
  305. // History: 2-24-97 RichardW Created
  306. //
  307. // Notes:
  308. //
  309. //----------------------------------------------------------------------------
  310. VOID
  311. XtcbDerefCredHandle(
  312. PXTCB_CRED_HANDLE Handle
  313. )
  314. {
  315. WriteLockCredList();
  317. Handle->RefCount -- ;
  319. if ( Handle->RefCount == 0 )
  320. {
  321. XtcbDerefCreds( Handle->Creds );
  323. LocalFree( Handle );
  324. }
  326. UnlockCredList();
  327. }
  330. //+---------------------------------------------------------------------------
  331. //
  332. // Function: XtcbCreatePacForCaller
  333. //
  334. // Synopsis: Creates an XTCB_PAC for the caller
  335. //
  336. // Arguments: none
  337. //
  338. // History: 3-14-00 RichardW Created
  339. //
  340. // Notes:
  341. //
  342. //----------------------------------------------------------------------------
  343. PXTCB_PAC
  344. XtcbCreatePacForCaller(
  345. VOID
  346. )
  347. {
  348. HANDLE Token ;
  349. NTSTATUS Status ;
  350. PXTCB_PAC Pac = NULL ;
  351. PTOKEN_USER User = NULL ;
  352. PTOKEN_GROUPS Groups = NULL ;
  353. PTOKEN_GROUPS Restrictions = NULL ;
  354. TOKEN_STATISTICS Stats ;
  355. ULONG UserSize ;
  356. ULONG GroupSize ;
  357. ULONG RestrictionSize ;
  358. ULONG PacGroupSize = 0 ;
  359. ULONG PacRestrictionSize = 0 ;
  360. ULONG PacUserName = 0 ;
  361. ULONG PacDomainName = 0 ;
  362. ULONG PacSize ;
  363. ULONG i ;
  364. PUCHAR CopyTo ;
  365. PUCHAR Base ;
  366. BOOL SpecialAccount = FALSE ;
  367. PSECURITY_LOGON_SESSION_DATA LogonSessionData = NULL ;
  371. Status = LsaTable->ImpersonateClient();
  373. if ( !NT_SUCCESS( Status ) )
  374. {
  375. return NULL ;
  376. }
  378. Status = NtOpenThreadToken(
  379. NtCurrentThread(),
  380. TOKEN_READ,
  381. TRUE,
  382. &Token );
  384. RevertToSelf();
  386. if ( !NT_SUCCESS( Status ) )
  387. {
  388. return NULL ;
  389. }
  391. //
  392. // Now that we have the token, capture all the information about this user,
  393. // and compute our own "PAC" structure.
  394. //
  396. Status = NtQueryInformationToken(
  397. Token,
  398. TokenStatistics,
  399. &Stats,
  400. sizeof( Stats ),
  401. &UserSize );
  403. if ( !NT_SUCCESS( Status ) )
  404. {
  405. goto CreatePac_Exit ;
  406. }
  408. //
  409. // If this is a special logon session (e.g. LocalSystem, LocalService, etc.),
  410. // then the LUID will be less than 1000. Set the flag to copy all SIDs in the token.
  411. //
  413. if ( (Stats.AuthenticationId.HighPart == 0) &&
  414. (Stats.AuthenticationId.LowPart < 1000 ) )
  415. {
  416. SpecialAccount = TRUE ;
  417. }
  419. UserSize = 0 ;
  421. (void) NtQueryInformationToken(
  422. Token,
  423. TokenUser,
  424. NULL,
  425. 0,
  426. &UserSize );
  428. if ( UserSize == 0 )
  429. {
  430. goto CreatePac_Exit ;
  431. }
  433. User = LocalAlloc( LMEM_FIXED, UserSize );
  435. if ( !User )
  436. {
  437. goto CreatePac_Exit ;
  438. }
  440. Status = NtQueryInformationToken(
  441. Token,
  442. TokenUser,
  443. User,
  444. UserSize,
  445. &UserSize );
  447. if ( !NT_SUCCESS( Status ) )
  448. {
  449. goto CreatePac_Exit ;
  450. }
  452. GroupSize = 0 ;
  454. (void) NtQueryInformationToken(
  455. Token,
  456. TokenGroups,
  457. NULL,
  458. 0,
  459. &GroupSize );
  461. if ( GroupSize == 0 )
  462. {
  463. goto CreatePac_Exit ;
  464. }
  466. Groups = LocalAlloc( LMEM_FIXED, GroupSize );
  468. if ( !Groups )
  469. {
  470. goto CreatePac_Exit ;
  471. }
  473. Status = NtQueryInformationToken(
  474. Token,
  475. TokenGroups,
  476. Groups,
  477. GroupSize,
  478. &GroupSize );
  480. if ( !NT_SUCCESS( Status ) )
  481. {
  482. goto CreatePac_Exit;
  483. }
  485. RestrictionSize = 0 ;
  487. (void) NtQueryInformationToken(
  488. Token,
  489. TokenRestrictedSids,
  490. NULL,
  491. 0,
  492. &RestrictionSize );
  494. if ( RestrictionSize != 0 )
  495. {
  496. Restrictions = LocalAlloc( LMEM_FIXED, RestrictionSize );
  498. if ( Restrictions )
  499. {
  500. Status = NtQueryInformationToken(
  501. Token,
  502. TokenRestrictedSids,
  503. Restrictions,
  504. RestrictionSize,
  505. &RestrictionSize );
  507. if ( !NT_SUCCESS( Status ) )
  508. {
  509. goto CreatePac_Exit ;
  510. }
  511. }
  512. else
  513. {
  514. goto CreatePac_Exit ;
  515. }
  516. }
  519. //
  520. // We now have all the users SIDs in the two (or three) pointers. First, grovel the Groups
  521. // for non-local SIDs, and set all the rest to 0. This will let us compute how much space
  522. // we need.
  523. //
  525. for ( i = 0 ; i < Groups->GroupCount ; i++ )
  526. {
  527. if ( (*RtlSubAuthorityCountSid( Groups->Groups[ i ].Sid ) > 2) ||
  528. (SpecialAccount) )
  529. {
  530. //
  531. // A "real" SID. Check to make sure it is not from this machine
  532. //
  534. if ( ( XtcbMachineSid != NULL ) &&
  535. RtlEqualPrefixSid( XtcbMachineSid, Groups->Groups[ i ].Sid ) )
  536. {
  537. //
  538. // Don't use this group
  539. //
  541. Groups->Groups[ i ].Attributes = 0 ;
  542. }
  543. else
  544. {
  545. //
  546. // We like this SID (it is not from the local machine)
  547. //
  549. Groups->Groups[ i ].Attributes = SE_GROUP_MANDATORY ;
  550. PacGroupSize += RtlLengthSid( Groups->Groups[ i ].Sid );
  551. }
  552. }
  553. else
  554. {
  555. Groups->Groups[ i ].Attributes = 0 ;
  556. }
  557. }
  559. //
  560. // Do the same for the restrictions, if any
  561. //
  563. if ( Restrictions )
  564. {
  565. for ( i = 0 ; i < Restrictions->GroupCount ; i++ )
  566. {
  567. PacRestrictionSize += RtlLengthSid( Restrictions->Groups[ i ].Sid );
  568. }
  569. }
  571. //
  572. // Get the user's name and domain:
  573. //
  575. Status = LsaGetLogonSessionData(
  576. &Stats.AuthenticationId,
  577. &LogonSessionData );
  579. if ( !NT_SUCCESS( Status ) )
  580. {
  581. goto CreatePac_Exit ;
  582. }
  584. PacUserName = LogonSessionData->UserName.Length ;
  585. PacDomainName = LogonSessionData->LogonDomain.Length ;
  587. //
  588. // In an advanced world, we'd query the other packages for
  589. // delegatable credentials, bundle them up and ship them
  590. // over.
  591. //
  594. //
  595. // Ok, we've got all the information we need
  596. //
  598. PacSize = sizeof( XTCB_PAC ) +
  599. RtlLengthSid( User->User.Sid ) +
  600. PacGroupSize +
  601. PacRestrictionSize +
  602. PacUserName +
  603. PacDomainName ;
  605. Pac = LocalAlloc( LMEM_FIXED, PacSize );
  607. if ( !Pac )
  608. {
  609. goto CreatePac_Exit ;
  610. }
  613. //
  614. // Create the PAC structure:
  615. //
  617. Pac->Tag = XTCB_PAC_TAG ;
  618. Pac->Length = PacSize ;
  620. CopyTo = (PUCHAR) (Pac + 1);
  621. Base = (PUCHAR) Pac ;
  623. //
  624. // Assemble the PAC:
  625. //
  626. // first, the user
  627. //
  629. Pac->UserOffset = (ULONG) (CopyTo - Base);
  630. Pac->UserLength = RtlLengthSid( User->User.Sid );
  632. RtlCopyMemory(
  633. CopyTo,
  634. User->User.Sid,
  635. Pac->UserLength );
  637. CopyTo += RtlLengthSid( User->User.Sid );
  639. //
  640. // Now the normal groups:
  641. //
  643. Pac->GroupCount = 0 ;
  644. Pac->GroupOffset = (ULONG) (CopyTo - Base);
  647. for ( i = 0 ; i < Groups->GroupCount ; i++ )
  648. {
  649. if ( Groups->Groups[ i ].Attributes & SE_GROUP_MANDATORY )
  650. {
  651. RtlCopyMemory(
  652. CopyTo,
  653. Groups->Groups[ i ].Sid,
  654. RtlLengthSid( Groups->Groups[ i ].Sid ) );
  656. CopyTo += RtlLengthSid( Groups->Groups[ i ].Sid );
  658. Pac->GroupCount++ ;
  659. }
  660. }
  661. Pac->GroupLength = (ULONG) (CopyTo - Base) - Pac->GroupOffset;
  663. //
  664. // If there are restrictions, copy them in as well
  665. //
  667. if ( (Restrictions == NULL) ||
  668. (Restrictions->GroupCount == 0 ) )
  669. {
  670. Pac->RestrictionCount = 0 ;
  671. Pac->RestrictionOffset = 0 ;
  672. Pac->RestrictionLength = 0 ;
  673. }
  674. else
  675. {
  676. Pac->RestrictionCount = Restrictions->GroupCount ;
  677. Pac->RestrictionOffset = (ULONG) ( CopyTo - Base );
  679. for ( i = 0 ; i < Restrictions->GroupCount ; i++ )
  680. {
  681. RtlCopyMemory(
  682. CopyTo,
  683. Restrictions->Groups[ i ].Sid,
  684. RtlLengthSid( Restrictions->Groups[ i ].Sid ) );
  686. CopyTo += RtlLengthSid( Restrictions->Groups[ i ].Sid );
  688. Pac->RestrictionCount++ ;
  689. }
  690. Pac->RestrictionLength = (ULONG) (CopyTo - Base) - Pac->RestrictionOffset ;
  691. }
  693. Pac->NameOffset = (ULONG) ( CopyTo - Base );
  694. Pac->NameLength = LogonSessionData->UserName.Length ;
  695. RtlCopyMemory(
  696. CopyTo,
  697. LogonSessionData->UserName.Buffer,
  698. LogonSessionData->UserName.Length );
  700. CopyTo += LogonSessionData->UserName.Length ;
  702. Pac->DomainLength = LogonSessionData->LogonDomain.Length ;
  703. Pac->DomainOffset = (ULONG) ( CopyTo - Base );
  705. RtlCopyMemory(
  706. CopyTo,
  707. LogonSessionData->LogonDomain.Buffer,
  708. LogonSessionData->LogonDomain.Length );
  712. //
  713. // Someday, maybe, copy credential data here
  714. //
  716. Pac->CredentialLength = 0 ;
  717. Pac->CredentialOffset = 0 ;
  720. CreatePac_Exit:
  722. if ( LogonSessionData )
  723. {
  724. LsaFreeReturnBuffer( LogonSessionData );
  725. }
  727. if ( User )
  728. {
  729. LocalFree( User );
  730. }
  732. if ( Groups )
  733. {
  734. LocalFree( Groups );
  735. }
  737. if ( Restrictions )
  738. {
  739. LocalFree( Restrictions );
  740. }
  742. NtClose( Token );
  744. return Pac ;
  747. }