archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Branch: master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
windows-server-2003/ds/security/protocols/xtcb/usermode.c

413 lines
9.4 KiB
Raw Permalink Normal View History

commiting as it is
4 years ago
  1. //+---------------------------------------------------------------------------
  2. //
  3. // Microsoft Windows
  4. // Copyright (C) Microsoft Corporation, 1992 - 1997.
  5. //
  6. // File: usermode.c
  7. //
  8. // Contents: User mode entry points for test package
  9. //
  10. // Classes:
  11. //
  12. // Functions:
  13. //
  14. // History: 2-21-97 RichardW Created
  15. //
  16. //----------------------------------------------------------------------------
  18. #include "xtcbpkg.h"
  20. PSECPKG_DLL_FUNCTIONS UserTable ;
  22. SECPKG_USER_FUNCTION_TABLE XtcbUserTable =
  23. {
  24. XtcbInstanceInit,
  25. XtcbInitUserModeContext,
  26. XtcbMakeSignature,
  27. XtcbVerifySignature,
  28. XtcbSealMessage,
  29. XtcbUnsealMessage,
  30. XtcbGetContextToken,
  31. XtcbQueryContextAttributes,
  32. XtcbCompleteAuthToken,
  33. XtcbDeleteUserModeContext
  34. };
  37. NTSTATUS
  38. SEC_ENTRY
  39. SpUserModeInitialize(
  40. IN ULONG LsaVersion,
  41. OUT PULONG PackageVersion,
  42. OUT PSECPKG_USER_FUNCTION_TABLE * UserFunctionTable,
  43. OUT PULONG pcTables)
  44. {
  45. if (LsaVersion != SECPKG_INTERFACE_VERSION)
  46. {
  47. DebugLog((DEB_ERROR,"Invalid LSA version: %d\n", LsaVersion));
  48. return(STATUS_INVALID_PARAMETER);
  49. }
  52. *PackageVersion = SECPKG_INTERFACE_VERSION ;
  54. *UserFunctionTable = &XtcbUserTable;
  55. *pcTables = 1;
  58. return( STATUS_SUCCESS );
  60. }
  63. NTSTATUS NTAPI
  64. XtcbInstanceInit(
  65. IN ULONG Version,
  66. IN PSECPKG_DLL_FUNCTIONS DllFunctionTable,
  67. OUT PVOID * UserFunctionTable
  68. )
  69. {
  70. NTSTATUS Status = STATUS_SUCCESS;
  72. XtcbUserContextInit();
  74. UserTable = DllFunctionTable ;
  76. return(Status);
  77. }
  81. //+-------------------------------------------------------------------------
  82. //
  83. // Function: XtcbDeleteUserModeContext
  84. //
  85. // Synopsis: Deletes a user mode context by unlinking it and then
  86. // dereferencing it.
  87. //
  88. // Effects:
  89. //
  90. // Arguments: ContextHandle - Lsa context handle of the context to delete
  91. //
  92. // Requires:
  93. //
  94. // Returns: STATUS_SUCCESS on success, STATUS_INVALID_HANDLE if the
  95. // context can't be located
  96. //
  97. // Notes:
  98. //
  99. //
  100. //--------------------------------------------------------------------------
  103. NTSTATUS NTAPI
  104. XtcbDeleteUserModeContext(
  105. IN LSA_SEC_HANDLE ContextHandle
  106. )
  107. {
  108. XtcbDeleteUserContext( ContextHandle );
  110. return( SEC_E_OK );
  112. }
  115. //+-------------------------------------------------------------------------
  116. //
  117. // Function: XtcbInitUserModeContext
  118. //
  119. // Synopsis: Creates a user-mode context from a packed LSA mode context
  120. //
  121. // Effects:
  122. //
  123. // Arguments: ContextHandle - Lsa mode context handle for the context
  124. // PackedContext - A marshalled buffer containing the LSA
  125. // mode context.
  126. //
  127. // Requires:
  128. //
  129. // Returns: STATUS_SUCCESS or STATUS_INSUFFICIENT_RESOURCES
  130. //
  131. // Notes:
  132. //
  133. //
  134. //--------------------------------------------------------------------------
  137. NTSTATUS NTAPI
  138. XtcbInitUserModeContext(
  139. IN LSA_SEC_HANDLE ContextHandle,
  140. IN PSecBuffer PackedContext
  141. )
  142. {
  143. SECURITY_STATUS scRet = SEC_E_INVALID_HANDLE ;
  145. scRet = XtcbAddUserContext( ContextHandle, PackedContext );
  147. if ( NT_SUCCESS( scRet ) )
  148. {
  149. FreeContextBuffer( PackedContext->pvBuffer );
  150. }
  152. return( scRet );
  153. }
  156. //+-------------------------------------------------------------------------
  157. //
  158. // Function: XtcbMakeSignature
  159. //
  160. // Synopsis: Signs a message buffer by calculatinga checksum over all
  161. // the non-read only data buffers and encrypting the checksum
  162. // along with a nonce.
  163. //
  164. // Effects:
  165. //
  166. // Arguments: ContextHandle - Handle of the context to use to sign the
  167. // message.
  168. // QualityOfProtection - Unused flags.
  169. // MessageBuffers - Contains an array of buffers to sign and
  170. // to store the signature.
  171. // MessageSequenceNumber - Sequence number for this message,
  172. // only used in datagram cases.
  173. //
  174. // Requires: STATUS_INVALID_HANDLE - the context could not be found or
  175. // was not configured for message integrity.
  176. // STATUS_INVALID_PARAMETER - the signature buffer could not
  177. // be found.
  178. // STATUS_BUFFER_TOO_SMALL - the signature buffer is too small
  179. // to hold the signature
  180. //
  181. // Returns:
  182. //
  183. // Notes:
  184. //
  185. //
  186. //--------------------------------------------------------------------------
  189. NTSTATUS NTAPI
  190. XtcbMakeSignature(
  191. IN LSA_SEC_HANDLE ContextHandle,
  192. IN ULONG QualityOfProtection,
  193. IN PSecBufferDesc MessageBuffers,
  194. IN ULONG MessageSequenceNumber
  195. )
  196. {
  197. return( SEC_E_UNSUPPORTED_FUNCTION );
  198. }
  200. //+-------------------------------------------------------------------------
  201. //
  202. // Function: XtcbVerifySignature
  203. //
  204. // Synopsis: Verifies a signed message buffer by calculating a checksum over all
  205. // the non-read only data buffers and encrypting the checksum
  206. // along with a nonce.
  207. //
  208. // Effects:
  209. //
  210. // Arguments: ContextHandle - Handle of the context to use to sign the
  211. // message.
  212. // MessageBuffers - Contains an array of signed buffers and
  213. // a signature buffer.
  214. // MessageSequenceNumber - Sequence number for this message,
  215. // only used in datagram cases.
  216. // QualityOfProtection - Unused flags.
  217. //
  218. // Requires: STATUS_INVALID_HANDLE - the context could not be found or
  219. // was not configured for message integrity.
  220. // STATUS_INVALID_PARAMETER - the signature buffer could not
  221. // be found or was too small.
  222. //
  223. // Returns:
  224. //
  225. // Notes:
  226. //
  227. //
  228. //--------------------------------------------------------------------------
  232. NTSTATUS NTAPI
  233. XtcbVerifySignature(
  234. IN LSA_SEC_HANDLE ContextHandle,
  235. IN PSecBufferDesc MessageBuffers,
  236. IN ULONG MessageSequenceNumber,
  237. OUT PULONG QualityOfProtection
  238. )
  239. {
  240. return( SEC_E_UNSUPPORTED_FUNCTION );
  241. }
  243. NTSTATUS NTAPI
  244. XtcbSealMessage(
  245. IN LSA_SEC_HANDLE ContextHandle,
  246. IN ULONG QualityOfProtection,
  247. IN PSecBufferDesc pMessage,
  248. IN ULONG MessageSequenceNumber
  249. )
  250. {
  251. return( SEC_E_CONTEXT_EXPIRED );
  254. }
  256. NTSTATUS NTAPI
  257. XtcbUnsealMessage(
  258. IN LSA_SEC_HANDLE ContextHandle,
  259. IN PSecBufferDesc pMessage,
  260. IN ULONG MessageSequenceNumber,
  261. OUT PULONG QualityOfProtection
  262. )
  263. {
  264. // Output Buffer Types
  265. return( SEC_E_CONTEXT_EXPIRED );
  267. }
  270. //+-------------------------------------------------------------------------
  271. //
  272. // Function: SpGetContextToken
  273. //
  274. // Synopsis: returns a pointer to the token for a server-side context
  275. //
  276. // Effects:
  277. //
  278. // Arguments:
  279. //
  280. // Requires:
  281. //
  282. // Returns:
  283. //
  284. // Notes:
  285. //
  286. //
  287. //--------------------------------------------------------------------------
  290. NTSTATUS NTAPI
  291. XtcbGetContextToken(
  292. IN LSA_SEC_HANDLE ContextHandle,
  293. OUT PHANDLE ImpersonationToken
  294. )
  295. {
  296. PXTCB_USER_CONTEXT Context ;
  298. Context = XtcbFindUserContext( ContextHandle );
  300. if ( Context )
  301. {
  302. *ImpersonationToken = Context->Token ;
  304. return SEC_E_OK ;
  305. }
  306. else
  307. {
  308. return SEC_E_INVALID_HANDLE ;
  309. }
  311. }
  314. //+-------------------------------------------------------------------------
  315. //
  316. // Function: SpQueryContextAttributes
  317. //
  318. // Synopsis: Querys attributes of the specified context
  319. //
  320. // Effects:
  321. //
  322. // Arguments:
  323. //
  324. // Requires:
  325. //
  326. // Returns:
  327. //
  328. // Notes:
  329. //
  330. //
  331. //--------------------------------------------------------------------------
  334. NTSTATUS NTAPI
  335. XtcbQueryContextAttributes(
  336. IN LSA_SEC_HANDLE ContextHandle,
  337. IN ULONG ContextAttribute,
  338. IN OUT PVOID pBuffer
  339. )
  340. {
  341. PXTCB_USER_CONTEXT Context ;
  342. PSecPkgContext_Sizes Sizes ;
  343. PSecPkgContext_NamesW Names ;
  344. PSecPkgContext_Lifespan Lifespan ;
  345. PSecPkgContext_DceInfo DceInfo ;
  346. PSecPkgContext_Authority Authority ;
  347. SECURITY_STATUS Status ;
  348. int len ;
  350. Context = XtcbFindUserContext( ContextHandle );
  352. if ( !Context )
  353. {
  354. return SEC_E_INVALID_HANDLE ;
  355. }
  357. switch ( ContextAttribute )
  358. {
  359. case SECPKG_ATTR_SIZES:
  360. Sizes = (PSecPkgContext_Sizes) pBuffer ;
  361. ZeroMemory( Sizes, sizeof( SecPkgContext_Sizes ) );
  362. Status = SEC_E_OK ;
  363. break;
  365. case SECPKG_ATTR_NAMES:
  366. Status = SEC_E_OK ;
  367. break;
  369. case SECPKG_ATTR_LIFESPAN:
  370. Status = SEC_E_OK ;
  371. break;
  373. default:
  374. Status = SEC_E_UNSUPPORTED_FUNCTION ;
  377. }
  378. return Status ;
  379. }
  383. //+-------------------------------------------------------------------------
  384. //
  385. // Function: SpCompleteAuthToken
  386. //
  387. // Synopsis: Completes a context (in Kerberos case, does nothing)
  388. //
  389. // Effects:
  390. //
  391. // Arguments:
  392. //
  393. // Requires:
  394. //
  395. // Returns:
  396. //
  397. // Notes:
  398. //
  399. //
  400. //--------------------------------------------------------------------------
  401. NTSTATUS
  402. NTAPI
  403. XtcbCompleteAuthToken(
  404. IN LSA_SEC_HANDLE ContextHandle,
  405. IN PSecBufferDesc InputBuffer
  406. )
  407. {
  408. return(STATUS_SUCCESS);
  409. }