archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Branch: master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
windows-server-2003/ds/security/services/ca/tools/cep/mscep/ceppswrd.cpp

615 lines
14 KiB
Raw Permalink Normal View History

commiting as it is
4 years ago
  1. //+-------------------------------------------------------------------------
  2. //
  3. // Microsoft Windows NT
  4. //
  5. // Copyright (C) Microsoft Corporation, 1995 - 1998
  6. //
  7. // File: ceppswrd.cpp
  8. //
  9. // Contents: Cisco enrollment protocol implementation. This module
  10. // implement the password hash table.
  11. //
  12. //--------------------------------------------------------------------------
  15. #include "global.hxx"
  16. #include <dbgdef.h>
  18. DWORD g_dwPasswordCount=0;
  19. DWORD g_dwMaxPassword=0;
  20. DWORD g_dwPasswordValidity=0;
  21. CEP_PASSWORD_TABLE_INFO g_CEPPasswordTable;
  23. //***************************************************************************
  24. //
  25. // The following are APIs called internally.
  26. //
  27. //
  28. //***************************************************************************
  30. //--------------------------------------------------------------------------
  31. //
  32. // CEPPasswordFreePasswordEntry
  33. //
  34. //--------------------------------------------------------------------------
  35. void CEPPasswordFreePasswordEntry(CEP_PASSWORD_ENTRY *pPasswordEntry)
  36. {
  37. if(pPasswordEntry)
  38. {
  39. if(pPasswordEntry->pwszPassword)
  40. free(pPasswordEntry->pwszPassword);
  42. free(pPasswordEntry);
  43. }
  44. }
  46. //--------------------------------------------------------------------------
  47. //
  48. // CEPPasswordFreeValidityEntry
  49. //
  50. //--------------------------------------------------------------------------
  51. void CEPPasswordFreeValidityEntry(CEP_PASSWORD_VALIDITY_ENTRY *pValidityEntry,
  52. BOOL fFreePasswordEntry)
  53. {
  54. if(pValidityEntry)
  55. {
  56. if(fFreePasswordEntry)
  57. CEPPasswordFreePasswordEntry(pValidityEntry->pPasswordEntry);
  59. free(pValidityEntry);
  60. }
  61. }
  63. //--------------------------------------------------------------------------
  64. //
  65. // CEPHashPassword
  66. //
  67. // For any cases that we can not convert the psz, we use index 0.
  68. //--------------------------------------------------------------------------
  69. BOOL CEPHashPassword(LPWSTR pwsz, DWORD *pdw)
  70. {
  71. WCHAR wsz[3];
  73. *pdw=0;
  75. if(!pwsz)
  76. return FALSE;
  78. if(2 <= wcslen(pwsz))
  79. {
  80. memcpy(wsz, pwsz, 2 * sizeof(WCHAR));
  81. wsz[2]=L'\0';
  83. *pdw=wcstoul(wsz, NULL, 16);
  85. if(ULONG_MAX == *pdw)
  86. *pdw=0;
  87. }
  89. if(*pdw >= CEP_HASH_TABLE_SIZE)
  90. *pdw=0;
  92. return TRUE;
  93. }
  95. //--------------------------------------------------------------------------
  96. //
  97. // CEPSearchPassword
  98. //
  99. //--------------------------------------------------------------------------
  100. CEP_PASSWORD_ENTRY *CEPSearchPassword(LPWSTR pwszPassword, DWORD *pdwIndex)
  101. {
  102. CEP_PASSWORD_ENTRY *pPasswordEntry=NULL;
  103. DWORD dwHashIndex=0;
  105. if(pdwIndex)
  106. *pdwIndex=0;
  108. if(NULL==pwszPassword)
  109. return NULL;
  111. //hash based on the 1st and 2nd character
  112. if(!CEPHashPassword(pwszPassword, &dwHashIndex))
  113. return NULL;
  115. for(pPasswordEntry=g_CEPPasswordTable.rgPasswordEntry[dwHashIndex]; NULL != pPasswordEntry; pPasswordEntry=pPasswordEntry->pNext)
  116. {
  117. if(0==wcscmp(pwszPassword, pPasswordEntry->pwszPassword))
  118. {
  119. break;
  120. }
  121. }
  123. if(pPasswordEntry)
  124. {
  125. if(pdwIndex)
  126. *pdwIndex=dwHashIndex;
  127. }
  129. return pPasswordEntry;
  130. }
  132. //--------------------------------------------------------------------------
  133. //
  134. // CEPInsertValidityEntry
  135. //
  136. //--------------------------------------------------------------------------
  137. BOOL CEPInsertValidityEntry(CEP_PASSWORD_VALIDITY_ENTRY *pValidityEntry)
  138. {
  139. if(!pValidityEntry)
  140. return FALSE;
  142. if(g_CEPPasswordTable.pTimeNew)
  143. {
  144. g_CEPPasswordTable.pTimeNew->pNext=pValidityEntry;
  145. pValidityEntry->pPrevious=g_CEPPasswordTable.pTimeNew;
  146. g_CEPPasswordTable.pTimeNew=pValidityEntry;
  147. }
  148. else
  149. {
  150. //no item in the list yet
  151. g_CEPPasswordTable.pTimeOld=pValidityEntry;
  152. g_CEPPasswordTable.pTimeNew=pValidityEntry;
  153. }
  155. return TRUE;
  156. }
  159. //--------------------------------------------------------------------------
  160. //
  161. // CEPInsertPasswordEntry
  162. //
  163. //--------------------------------------------------------------------------
  164. BOOL CEPInsertPasswordEntry(CEP_PASSWORD_ENTRY *pPasswordEntry, DWORD dwHashIndex)
  165. {
  167. if(!pPasswordEntry)
  168. return FALSE;
  170. if(g_CEPPasswordTable.rgPasswordEntry[dwHashIndex])
  171. {
  172. g_CEPPasswordTable.rgPasswordEntry[dwHashIndex]->pPrevious=pPasswordEntry;
  173. pPasswordEntry->pNext=g_CEPPasswordTable.rgPasswordEntry[dwHashIndex];
  174. g_CEPPasswordTable.rgPasswordEntry[dwHashIndex]=pPasswordEntry;
  175. }
  176. else
  177. {
  178. //1st item
  179. g_CEPPasswordTable.rgPasswordEntry[dwHashIndex]=pPasswordEntry;
  180. }
  182. return TRUE;
  183. }
  185. //--------------------------------------------------------------------------
  186. //
  187. // CEPPasswordRemoveValidityEntry
  188. //
  189. //--------------------------------------------------------------------------
  190. BOOL CEPPasswordRemoveValidityEntry(CEP_PASSWORD_VALIDITY_ENTRY *pValidityEntry)
  191. {
  192. BOOL fResult=FALSE;
  194. if(!pValidityEntry)
  195. goto InvalidArgErr;
  197. if(pValidityEntry->pPrevious)
  198. pValidityEntry->pPrevious->pNext=pValidityEntry->pNext;
  199. else
  200. {
  201. //1st item
  202. g_CEPPasswordTable.pTimeOld=pValidityEntry->pNext;
  203. }
  205. if(pValidityEntry->pNext)
  206. pValidityEntry->pNext->pPrevious=pValidityEntry->pPrevious;
  207. else
  208. {
  209. //last itme
  210. g_CEPPasswordTable.pTimeNew=pValidityEntry->pPrevious;
  212. }
  214. fResult=TRUE;
  216. CommonReturn:
  218. return fResult;
  220. ErrorReturn:
  222. fResult=FALSE;
  223. goto CommonReturn;
  225. SET_ERROR(InvalidArgErr, E_INVALIDARG);
  226. }
  229. //--------------------------------------------------------------------------
  230. //
  231. // CEPPasswordRemovePasswordEntry
  232. //
  233. //--------------------------------------------------------------------------
  234. BOOL CEPPasswordRemovePasswordEntry(CEP_PASSWORD_ENTRY *pPasswordEntry, DWORD dwIndex)
  235. {
  236. BOOL fResult=FALSE;
  238. if(!pPasswordEntry)
  239. goto InvalidArgErr;
  242. if(pPasswordEntry->pPrevious)
  243. pPasswordEntry->pPrevious->pNext=pPasswordEntry->pNext;
  244. else
  245. g_CEPPasswordTable.rgPasswordEntry[dwIndex]=pPasswordEntry->pNext;
  247. if(pPasswordEntry->pNext)
  248. pPasswordEntry->pNext->pPrevious=pPasswordEntry->pPrevious;
  250. fResult=TRUE;
  252. CommonReturn:
  254. return fResult;
  256. ErrorReturn:
  258. fResult=FALSE;
  259. goto CommonReturn;
  261. SET_ERROR(InvalidArgErr, E_INVALIDARG);
  262. }
  265. //--------------------------------------------------------------------------
  266. //
  267. // CEPPasswordRefresh
  268. //
  269. //--------------------------------------------------------------------------
  270. BOOL CEPPasswordRefresh()
  271. {
  272. BOOL fResult=FALSE;
  273. DWORD dwHashIndex=0;
  274. CEP_PASSWORD_VALIDITY_ENTRY *pValidityEntry=NULL;
  276. while(g_CEPPasswordTable.pTimeOld)
  277. {
  278. if(!CEPHashIsCurrentTimeEntry(&(g_CEPPasswordTable.pTimeOld->TimeStamp), 0, g_dwPasswordValidity))
  279. {
  280. if(!CEPHashPassword(g_CEPPasswordTable.pTimeOld->pPasswordEntry->pwszPassword, &dwHashIndex))
  281. {
  282. g_CEPPasswordTable.pTimeOld->pPrevious=NULL;
  283. goto InvalidArgErr;
  284. }
  286. CEPPasswordRemovePasswordEntry(g_CEPPasswordTable.pTimeOld->pPasswordEntry, dwHashIndex);
  288. CEPPasswordFreePasswordEntry(g_CEPPasswordTable.pTimeOld->pPasswordEntry);
  290. pValidityEntry=g_CEPPasswordTable.pTimeOld;
  292. g_CEPPasswordTable.pTimeOld=g_CEPPasswordTable.pTimeOld->pNext;
  294. CEPPasswordFreeValidityEntry(pValidityEntry, FALSE);
  296. if(g_dwPasswordCount >= 1)
  297. g_dwPasswordCount--;
  298. }
  299. else
  300. {
  301. //we find a new enough entry
  302. g_CEPPasswordTable.pTimeOld->pPrevious=NULL;
  303. break;
  304. }
  305. }
  308. //we have get rid of all items
  309. if(NULL == g_CEPPasswordTable.pTimeOld)
  310. {
  311. g_CEPPasswordTable.pTimeNew=NULL;
  312. g_dwPasswordCount=0;
  313. }
  316. fResult=TRUE;
  318. CommonReturn:
  320. return fResult;
  322. ErrorReturn:
  324. fResult=FALSE;
  325. goto CommonReturn;
  327. SET_ERROR(InvalidArgErr, E_INVALIDARG);
  328. }
  331. //***************************************************************************
  332. //
  333. // The following are APIs called by the upper (external) layer
  334. //
  335. //
  336. //***************************************************************************
  338. //--------------------------------------------------------------------------
  339. //
  340. // InitPasswordTable
  341. //
  342. //--------------------------------------------------------------------------
  343. BOOL WINAPI InitPasswordTable()
  344. {
  345. DWORD cbData=0;
  346. DWORD dwData=0;
  347. DWORD dwType=0;
  349. HKEY hKey=NULL;
  351. memset(&g_CEPPasswordTable, 0, sizeof(CEP_PASSWORD_TABLE_INFO));
  353. g_dwPasswordCount=0;
  354. g_dwMaxPassword=CEP_MAX_PASSWORD;
  355. g_dwPasswordValidity=CEP_PASSWORD_VALIDITY;
  357. if(ERROR_SUCCESS == RegOpenKeyExU(
  358. HKEY_LOCAL_MACHINE,
  359. MSCEP_PASSWORD_MAX_LOCATION,
  360. 0,
  361. KEY_READ,
  362. &hKey))
  363. {
  364. cbData=sizeof(dwData);
  366. if(ERROR_SUCCESS == RegQueryValueExU(
  367. hKey,
  368. MSCEP_KEY_PASSWORD_MAX,
  369. NULL,
  370. &dwType,
  371. (BYTE *)&dwData,
  372. &cbData))
  373. {
  374. if ((dwType == REG_DWORD) ||
  375. (dwType == REG_BINARY))
  376. {
  377. g_dwMaxPassword=dwData;
  378. }
  379. }
  380. }
  382. dwType=0;
  383. dwData=0;
  384. if(hKey)
  385. RegCloseKey(hKey);
  387. hKey=NULL;
  389. if(ERROR_SUCCESS == RegOpenKeyExU(
  390. HKEY_LOCAL_MACHINE,
  391. MSCEP_PASSWORD_VALIDITY_LOCATION,
  392. 0,
  393. KEY_READ,
  394. &hKey))
  395. {
  396. cbData=sizeof(dwData);
  398. if(ERROR_SUCCESS == RegQueryValueExU(
  399. hKey,
  400. MSCEP_KEY_PASSWORD_VALIDITY,
  401. NULL,
  402. &dwType,
  403. (BYTE *)&dwData,
  404. &cbData))
  405. {
  406. if ((dwType == REG_DWORD) ||
  407. (dwType == REG_BINARY))
  408. {
  409. g_dwPasswordValidity=dwData;
  410. }
  411. }
  412. }
  414. if(hKey)
  415. RegCloseKey(hKey);
  417. return TRUE;
  419. }
  421. //--------------------------------------------------------------------------
  422. //
  423. // ReleasePasswordTable
  424. //
  425. //--------------------------------------------------------------------------
  426. BOOL WINAPI ReleasePasswordTable()
  427. {
  429. CEP_PASSWORD_VALIDITY_ENTRY *pValidityEntry=NULL;
  431. //free the timestamp list and the password table's doublie linked lists
  432. if(g_CEPPasswordTable.pTimeOld)
  433. {
  434. do{
  435. pValidityEntry=g_CEPPasswordTable.pTimeOld;
  437. g_CEPPasswordTable.pTimeOld = g_CEPPasswordTable.pTimeOld->pNext;
  439. CEPPasswordFreeValidityEntry(pValidityEntry, TRUE);
  440. }
  441. while(g_CEPPasswordTable.pTimeOld);
  442. }
  444. memset(&g_CEPPasswordTable, 0, sizeof(CEP_PASSWORD_TABLE_INFO));
  447. return TRUE;
  448. }
  450. //--------------------------------------------------------------------------
  451. //
  452. // CEPAddPasswordToTable
  453. //
  454. // Need to be protected by the critical section.
  455. //
  456. // Last error is set to CRYPT_E_NO_MATCH if the max number of password is
  457. // reached.
  458. //
  459. //--------------------------------------------------------------------------
  460. BOOL WINAPI CEPAddPasswordToTable(LPWSTR pwszPassword)
  461. {
  462. BOOL fResult=FALSE;
  463. SYSTEMTIME SystemTime;
  464. DWORD dwHashIndex=0;
  467. CEP_PASSWORD_ENTRY *pPasswordEntry=NULL;
  468. CEP_PASSWORD_VALIDITY_ENTRY *pValidityEntry=NULL;
  470. EnterCriticalSection(&PasswordCriticalSec);
  472. if(NULL==pwszPassword)
  473. goto InvalidArgErr;
  475. //delete all expired passwords
  476. CEPPasswordRefresh();
  478. if(g_dwPasswordCount >= g_dwMaxPassword)
  479. goto NoMatchErr;
  481. g_dwPasswordCount++;
  483. if(!CEPHashPassword(pwszPassword, &dwHashIndex))
  484. goto InvalidArgErr;
  487. pPasswordEntry=(CEP_PASSWORD_ENTRY *)malloc(sizeof(CEP_PASSWORD_ENTRY));
  489. if(!pPasswordEntry)
  490. goto MemoryErr;
  492. memset(pPasswordEntry, 0, sizeof(CEP_PASSWORD_ENTRY));
  494. pValidityEntry=(CEP_PASSWORD_VALIDITY_ENTRY *)malloc(sizeof(CEP_PASSWORD_VALIDITY_ENTRY));
  496. if(!pValidityEntry)
  497. goto MemoryErr;
  499. memset(pValidityEntry, 0, sizeof(CEP_PASSWORD_VALIDITY_ENTRY));
  501. pPasswordEntry->pwszPassword=(LPWSTR)malloc(sizeof(WCHAR) * (wcslen(pwszPassword)+1));
  502. if(!(pPasswordEntry->pwszPassword))
  503. goto MemoryErr;
  505. wcscpy(pPasswordEntry->pwszPassword,pwszPassword);
  507. //no usage has been requested
  508. pPasswordEntry->dwUsageRequested=0;
  509. pPasswordEntry->pValidityEntry=pValidityEntry;
  510. pPasswordEntry->pNext=NULL;
  511. pPasswordEntry->pPrevious=NULL;
  513. GetSystemTime(&SystemTime);
  514. if(!SystemTimeToFileTime(&SystemTime, &(pValidityEntry->TimeStamp)))
  515. goto TraceErr;
  517. pValidityEntry->pPasswordEntry=pPasswordEntry;
  518. pValidityEntry->pNext=NULL;
  519. pValidityEntry->pPrevious=NULL;
  522. CEPInsertValidityEntry(pValidityEntry);
  524. CEPInsertPasswordEntry(pPasswordEntry, dwHashIndex);
  526. fResult=TRUE;
  528. CommonReturn:
  530. LeaveCriticalSection(&PasswordCriticalSec);
  532. return fResult;
  534. ErrorReturn:
  536. if(pPasswordEntry)
  537. CEPPasswordFreePasswordEntry(pPasswordEntry);
  539. if(pValidityEntry)
  540. CEPPasswordFreeValidityEntry(pValidityEntry, FALSE);
  542. fResult=FALSE;
  543. goto CommonReturn;
  545. SET_ERROR(NoMatchErr, CRYPT_E_NO_MATCH);
  546. TRACE_ERROR(TraceErr);
  547. SET_ERROR(InvalidArgErr, E_INVALIDARG);
  548. SET_ERROR(MemoryErr, E_OUTOFMEMORY);
  549. }
  551. //--------------------------------------------------------------------------
  552. //
  553. // CEPVerifyPasswordAndDeleteFromTable
  554. //
  555. // Need to be protected by the critical section.
  556. //
  557. //--------------------------------------------------------------------------
  558. BOOL WINAPI CEPVerifyPasswordAndDeleteFromTable(LPWSTR pwszPassword, DWORD dwUsage)
  559. {
  560. BOOL fResult=FALSE;
  561. CEP_PASSWORD_ENTRY *pPasswordEntry=NULL;
  562. DWORD dwIndex=0;
  564. EnterCriticalSection(&PasswordCriticalSec);
  566. //delete all expired passwords
  567. CEPPasswordRefresh();
  569. if(NULL == (pPasswordEntry=CEPSearchPassword(pwszPassword, &dwIndex)))
  570. goto InvalidArgErr;
  572. //verify the usage.
  574. //only one signature and one exchange key per password
  575. if(0 != ((pPasswordEntry->dwUsageRequested) & dwUsage))
  576. goto InvalidArgErr;
  578. pPasswordEntry->dwUsageRequested = (pPasswordEntry->dwUsageRequested) | dwUsage;
  580. //remove the password only if both signature and exchange key are requested
  581. if(((pPasswordEntry->dwUsageRequested) & CEP_REQUEST_SIGNATURE) &&
  582. ((pPasswordEntry->dwUsageRequested) & CEP_REQUEST_EXCHANGE))
  583. {
  585. CEPPasswordRemoveValidityEntry(pPasswordEntry->pValidityEntry);
  587. CEPPasswordRemovePasswordEntry(pPasswordEntry, dwIndex);
  589. CEPPasswordFreeValidityEntry(pPasswordEntry->pValidityEntry, FALSE);
  591. CEPPasswordFreePasswordEntry(pPasswordEntry);
  593. if(g_dwPasswordCount >= 1)
  594. g_dwPasswordCount--;
  595. }
  597. fResult=TRUE;
  600. CommonReturn:
  602. LeaveCriticalSection(&PasswordCriticalSec);
  604. return fResult;
  606. ErrorReturn:
  608. fResult=FALSE;
  609. goto CommonReturn;
  611. SET_ERROR(InvalidArgErr, E_INVALIDARG);
  612. }