archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Branch: master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
windows-server-2003/ds/security/services/ca/certlib/certsd.cpp

322 lines
7.0 KiB
Raw Permalink Normal View History

commiting as it is
4 years ago
  1. //+--------------------------------------------------------------------------
  2. // File: certsd.cpp
  3. // Contents: CA's security descriptor class implementation
  4. //---------------------------------------------------------------------------
  5. #include <pch.cpp>
  6. #pragma hdrstop
  7. #include "certsd.h"
  8. #include "certacl.h"
  10. #define __dwFILE__ __dwFILE_CERTLIB_CERTSD_CPP__
  12. using namespace CertSrv;
  14. HRESULT
  15. CProtectedSecurityDescriptor::Init(LPCWSTR pwszSanitizedName)
  16. {
  17. HRESULT hr = S_OK;
  18. CSASSERT(!m_fInitialized);
  20. __try
  21. {
  22. InitializeCriticalSection(&m_csWrite);
  23. }
  24. __except(hr = myHEXCEPTIONCODE(), EXCEPTION_EXECUTE_HANDLER)
  25. {
  26. }
  27. _JumpIfError(hr, error, "InitializeCriticalSection");
  29. m_hevtNoReaders = CreateEvent(
  30. NULL,
  31. TRUE,
  32. TRUE,
  33. NULL);
  34. if(NULL==m_hevtNoReaders)
  35. {
  36. hr = myHLastError();
  37. _JumpError(hr, error, "CreateEvent");
  38. }
  40. m_pcwszSanitizedName = pwszSanitizedName;
  42. error:
  43. return hr;
  44. }
  46. HRESULT
  47. CProtectedSecurityDescriptor::SetSD(const PSECURITY_DESCRIPTOR pSD)
  48. {
  49. HRESULT hr = S_OK;
  50. DWORD dwSize = 0;
  51. SECURITY_DESCRIPTOR_CONTROL SDCtrl;
  52. DWORD dwRev;
  54. CSASSERT(NULL==m_pSD);
  56. if(pSD)
  57. {
  58. if(!IsValidSecurityDescriptor(pSD))
  59. {
  60. hr = E_INVALIDARG;
  61. _JumpError(hr, error, "IsValidSecurityDescriptor");
  62. }
  64. if(!GetSecurityDescriptorControl(pSD, &SDCtrl, &dwRev))
  65. {
  66. hr = myHLastError();
  67. _JumpError(hr, error, "GetSecurityDescriptorControl");
  68. }
  70. // always keep the SD in self relative form
  71. if(!(SDCtrl&SE_SELF_RELATIVE))
  72. {
  73. if(!MakeSelfRelativeSD(pSD, NULL, &dwSize))
  74. {
  75. m_pSD = (PSECURITY_DESCRIPTOR)LocalAlloc(LMEM_FIXED, dwSize);
  76. if(NULL == m_pSD)
  77. {
  78. hr = E_OUTOFMEMORY;
  79. _JumpError(hr, error, "LocalAlloc");
  80. }
  82. if(!MakeSelfRelativeSD(pSD, m_pSD, &dwSize))
  83. {
  84. hr = myHLastError();
  85. _JumpError(hr, error, "LocalAlloc");
  86. }
  87. }
  88. }
  89. else
  90. {
  91. dwSize = GetSecurityDescriptorLength(pSD);
  93. m_pSD = (PSECURITY_DESCRIPTOR)LocalAlloc(LMEM_FIXED, dwSize);
  94. if(NULL == m_pSD)
  95. {
  96. hr = E_OUTOFMEMORY;
  97. _JumpError(hr, error, "LocalAlloc");
  98. }
  99. CopyMemory(m_pSD, pSD, dwSize);
  100. }
  101. }
  103. error:
  104. return hr;
  105. }
  107. HRESULT
  108. CProtectedSecurityDescriptor::Initialize(LPCWSTR pwszSanitizedName)
  109. {
  110. HRESULT hr = S_OK;
  112. CSASSERT(!m_fInitialized);
  114. hr = Init(pwszSanitizedName);
  115. _JumpIfError(hr, error, "CProtectedSecurityDescriptor::Init");
  117. m_fInitialized = true;
  119. hr = Load();
  120. if(HRESULT_FROM_WIN32(ERROR_FILE_NOT_FOUND)==hr)
  121. hr = S_OK;
  122. _JumpIfError(hr, error, "CProtectedSecurityDescriptor::Load");
  124. error:
  125. return hr;
  126. }
  128. HRESULT
  129. CProtectedSecurityDescriptor::Initialize(
  130. PSECURITY_DESCRIPTOR pSD,
  131. LPCWSTR pwszSanitizedName)
  132. {
  133. HRESULT hr = S_OK;
  135. CSASSERT(!m_fInitialized);
  137. hr = Init(pwszSanitizedName);
  138. _JumpIfError(hr, error, "CProtectedSecurityDescriptor::Init");
  140. hr = SetSD(pSD);
  141. _JumpIfError(hr, error, "CProtectedSecurityDescriptor::SetSD");
  143. m_fInitialized = true;
  145. error:
  146. return hr;
  147. }
  149. HRESULT
  150. CProtectedSecurityDescriptor::InitializeFromTemplate(
  151. LPCWSTR pcwszTemplate,
  152. LPCWSTR pwszSanitizedName)
  153. {
  154. HRESULT hr = S_OK;
  156. CSASSERT(!m_fInitialized);
  158. hr = Init(pwszSanitizedName);
  159. _JumpIfError(hr, error, "CProtectedSecurityDescriptor::Init");
  161. hr = myGetSDFromTemplate(
  162. pcwszTemplate,
  163. NULL,
  164. &m_pSD);
  165. _JumpIfError(hr, error, "myGetSDFromTemplate");
  167. m_fInitialized = true;
  169. error:
  170. return hr;
  171. }
  173. HRESULT
  174. CProtectedSecurityDescriptor::Load()
  175. {
  176. HRESULT hr = S_OK;
  177. PSECURITY_DESCRIPTOR pSD = NULL;
  179. CSASSERT(m_fInitialized);
  181. hr = myGetCertRegBinaryValue(m_pcwszSanitizedName,
  182. NULL,
  183. NULL,
  184. GetPersistRegistryVal(),
  185. (BYTE**)&pSD);
  186. if(S_OK!=hr)
  187. {
  188. return hr;
  189. }
  191. if(!IsValidSecurityDescriptor(pSD))
  192. {
  193. LocalFree(pSD);
  194. return E_UNEXPECTED;
  195. }
  197. if(m_pSD)
  198. {
  199. LocalFree(m_pSD);
  200. }
  202. m_pSD = pSD;
  204. return S_OK;
  205. }
  207. HRESULT
  208. CProtectedSecurityDescriptor::Save()
  209. {
  210. HRESULT hr = S_OK;
  211. DWORD cbLength = GetSecurityDescriptorLength(m_pSD);
  213. CSASSERT(m_fInitialized);
  215. hr = mySetCertRegValue(
  216. NULL,
  217. m_pcwszSanitizedName,
  218. NULL,
  219. NULL,
  220. GetPersistRegistryVal(),
  221. REG_BINARY,
  222. (BYTE const *) m_pSD,
  223. cbLength,
  224. FALSE);
  225. _JumpIfError(hr, error, "mySetCertRegValue");
  227. error:
  228. return hr;
  229. }
  231. HRESULT
  232. CProtectedSecurityDescriptor::Delete()
  233. {
  234. HRESULT hr = S_OK;
  236. CSASSERT(m_fInitialized);
  238. hr = myDeleteCertRegValue(
  239. m_pcwszSanitizedName,
  240. NULL,
  241. NULL,
  242. GetPersistRegistryVal());
  243. _JumpIfError(hr, error, "myDeleteCertRegValue");
  245. error:
  246. return hr;
  247. }
  249. HRESULT
  250. CProtectedSecurityDescriptor::Set(const PSECURITY_DESCRIPTOR pSD)
  251. {
  252. HRESULT hr = S_OK;
  253. DWORD dwResult;
  254. CSASSERT(m_fInitialized);
  255. if(!IsValidSecurityDescriptor(pSD))
  256. {
  257. hr = E_INVALIDARG;
  258. _JumpError(hr, error, "IsValidSecurityDescriptor");
  259. }
  261. __try
  262. {
  263. EnterCriticalSection(&m_csWrite);
  264. dwResult = WaitForSingleObject(m_hevtNoReaders, INFINITE);
  265. if(WAIT_OBJECT_0 != dwResult)
  266. {
  267. hr = myHLastError();
  268. }
  269. else
  270. {
  271. if(m_pSD)
  272. {
  273. LocalFree(m_pSD);
  274. m_pSD = NULL;
  275. }
  276. hr = SetSD(pSD);
  277. }
  278. LeaveCriticalSection(&m_csWrite);
  279. }
  280. __except(hr = myHEXCEPTIONCODE(), EXCEPTION_EXECUTE_HANDLER)
  281. {
  282. }
  283. error:
  284. return hr;
  285. }
  287. HRESULT
  288. CProtectedSecurityDescriptor::LockGet(PSECURITY_DESCRIPTOR *ppSD)
  289. {
  290. HRESULT hr = S_OK;
  291. CSASSERT(m_fInitialized);
  292. __try
  293. {
  294. EnterCriticalSection(&m_csWrite);
  295. InterlockedIncrement(&m_cReaders);
  296. if(!ResetEvent(m_hevtNoReaders))
  297. {
  298. hr = myHLastError();
  299. }
  300. LeaveCriticalSection(&m_csWrite);
  301. *ppSD = m_pSD;
  302. }
  303. __except(hr = myHEXCEPTIONCODE(), EXCEPTION_EXECUTE_HANDLER)
  304. {
  305. }
  306. return hr;
  307. }
  309. HRESULT
  310. CProtectedSecurityDescriptor::Unlock()
  311. {
  312. HRESULT hr = S_OK;
  313. CSASSERT(m_fInitialized);
  314. if(!InterlockedDecrement(&m_cReaders))
  315. {
  316. if(!SetEvent(m_hevtNoReaders))
  317. {
  318. hr = myHLastError();
  319. }
  320. }
  321. return hr;
  322. }