archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Branch: master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
windows-server-2003/inetsrv/iis/svcs/ftp/server/connect.cxx

686 lines
19 KiB
Raw Permalink Normal View History

commiting as it is
4 years ago
  1. /**********************************************************************/
  2. /** Microsoft Windows NT **/
  3. /** Copyright(c) Microsoft Corp., 1993 **/
  4. /**********************************************************************/
  6. /*
  7. connect.cxx
  9. This module contains the main function for handling new connections.
  10. After receiving a new connection this module creates a new USER_DATA
  11. object to contain the information about a connection for processing.
  14. Functions exported by this module:
  16. FtpdNewConnection
  17. FtpdNewConnectionEx
  20. FILE HISTORY:
  21. KeithMo 08-Mar-1993 Created.
  22. MuraliK 03-April-1995
  23. Rewrote to separate the notion of one thread/control connection +
  24. other mods.
  25. MuraliK 11-Oct-1995
  26. Completely rewrote to support AcceptEx connections
  28. */
  31. #include "ftpdp.hxx"
  34. static CHAR PSZ_SERVICE_NOT_AVAILABLE[] =
  35. "Service not available, closing control connection.";
  38. //
  39. // Private prototypes.
  40. //
  44. VOID
  45. FtpReqResolveCallback(
  46. ADDRCHECKARG pArg,
  47. BOOL fSt,
  48. LPSTR pName
  49. )
  50. {
  51. // ignore fSt : DNS name is simply unavailable
  53. //((LPUSER_DATA)pArg)->Reference();
  55. if ( !AtqPostCompletionStatus( ((LPUSER_DATA)pArg)->QueryControlAio()->QueryAtqContext(),
  56. 0 ))
  57. {
  58. DereferenceUserDataAndKill( ((LPUSER_DATA)pArg) );
  59. }
  60. }
  64. BOOL
  65. ProcessNewClient(
  66. IN SOCKET sNew,
  67. IN PVOID EndpointObject,
  68. IN FTP_SERVER_INSTANCE *pInstance,
  69. IN BOOL fMaxConnExceeded,
  70. IN PSOCKADDR_IN psockAddrRemote,
  71. IN PSOCKADDR_IN psockAddrLocal = NULL,
  72. IN PATQ_CONTEXT patqContext = NULL,
  73. IN PVOID pvBuff = NULL,
  74. IN DWORD cbWritten = 0,
  75. OUT LPBOOL pfAtqToBeFreed = NULL
  76. )
  77. {
  78. LPUSER_DATA pUserData = NULL;
  80. DWORD err = NO_ERROR;
  81. BOOL fReturn = FALSE;
  82. DBG_CODE( CHAR pchAddr[32];);
  83. BOOL fSockToBeFreed = TRUE;
  84. BOOL fDereferenceInstance = FALSE;
  85. AC_RESULT acIpAccess;
  86. BOOL fNeedDnsCheck = FALSE;
  87. BOOL fValid;
  88. BOOL fUnbindOnFail;
  90. DBG_CODE( InetNtoa( psockAddrRemote->sin_addr, pchAddr));
  92. if ( pfAtqToBeFreed != NULL) {
  93. *pfAtqToBeFreed = TRUE;
  94. }
  96. //
  97. // Create a new connection object
  98. //
  100. if ( !fMaxConnExceeded ) {
  101. pUserData = pInstance->AllocNewConnection();
  102. }
  104. if ( pUserData != NULL) {
  106. pUserData->QueryAccessCheck()->BindAddr( (PSOCKADDR)psockAddrRemote );
  107. if ( !pUserData->BindInstanceAccessCheck() ) {
  108. fValid = FALSE;
  109. fUnbindOnFail = FALSE;
  110. }
  111. else {
  112. fUnbindOnFail = TRUE;
  113. acIpAccess = pUserData->QueryAccessCheck()->CheckIpAccess( &fNeedDnsCheck );
  115. if ( (acIpAccess == AC_IN_DENY_LIST) ||
  116. ((acIpAccess == AC_NOT_IN_GRANT_LIST) && !fNeedDnsCheck) ) {
  118. SockPrintf2(
  119. NULL,
  120. sNew,
  121. "%u Connection refused, unknown IP address.",
  122. REPLY_NOT_LOGGED_IN
  123. );
  125. fValid = FALSE;
  126. }
  127. else {
  128. fValid = TRUE;
  129. }
  130. }
  132. //
  133. // Start off processing this client connection.
  134. //
  135. // Once we make a reset call, the USER_DATA object is created
  136. // with the socket and atq context.
  137. // From now on USER_DATA will take care of freeing
  138. // ATQ context & socket
  139. //
  142. if (fValid) {
  144. fSockToBeFreed = FALSE;
  146. fValid = pUserData->Reset(sNew,
  147. EndpointObject,
  148. psockAddrRemote->sin_addr,
  149. psockAddrLocal,
  150. patqContext,
  151. pvBuff,
  152. cbWritten,
  153. acIpAccess );
  154. }
  156. if ( fValid ) {
  158. IF_DEBUG( CLIENT) {
  160. CHKINFO( ( DBG_CONTEXT,
  161. " Established a new connection to %s"
  162. " ( Socket = %d)\n",
  163. pchAddr,
  164. sNew));
  165. }
  167. //
  168. // At this point we have the context for the AcceptExed socket.
  169. // Set the context in the AtqContext if need be.
  170. //
  172. if ( patqContext != NULL) {
  174. //
  175. // Associate client connection object with this control socket
  176. // handle for future completions.
  177. //
  179. AtqContextSetInfo(patqContext,
  180. ATQ_INFO_COMPLETION_CONTEXT,
  181. (ULONG_PTR) pUserData->QueryControlAio());
  182. }
  184. if ( fNeedDnsCheck )
  185. {
  186. if ( !pUserData->QueryAccessCheck()->IsDnsResolved() ) {
  188. BOOL fSync;
  189. LPSTR pDns;
  191. pUserData->SetNeedDnsCheck( TRUE );
  193. if ( pUserData->QueryAccessCheck()->QueryDnsName( &fSync,
  194. (ADDRCHECKFUNCEX)FtpReqResolveCallback,
  195. (ADDRCHECKARG)pUserData,
  196. &pDns )
  197. && !fSync ) {
  199. return TRUE;
  200. }
  201. }
  202. }
  203. else {
  204. pUserData->UnbindInstanceAccessCheck();
  205. }
  207. DBG_REQUIRE( pUserData->Reference() > 0);
  209. fReturn = pUserData->ProcessAsyncIoCompletion(0, NO_ERROR,
  210. pUserData->
  211. QueryControlAio()
  212. );
  214. if ( !fReturn) {
  216. err = GetLastError();
  218. IF_DEBUG( ERROR) {
  220. CHKINFO(( DBG_CONTEXT,
  221. " Unable to start off a read to client(%s,%d)."
  222. " Error = %lu\n",
  223. pchAddr,
  224. sNew,
  225. err ));
  226. }
  227. }
  229. //
  230. // Decrement the ref count and free the connection.
  231. //
  233. DBG_ASSERT( (err == NO_ERROR) || pUserData->QueryReference() == 1);
  235. DereferenceUserDataAndKill( pUserData);
  237. } else {
  239. if ( fUnbindOnFail )
  240. {
  241. pUserData->UnbindInstanceAccessCheck();
  242. }
  244. // reset operation failed. relase memory and exit.
  245. err = GetLastError();
  247. pUserData->Cleanup();
  248. pInstance->RemoveConnection( pUserData);
  249. pUserData = NULL;
  250. }
  252. } else {
  254. err = GetLastError();
  255. fDereferenceInstance = TRUE;
  256. }
  258. if ( (pUserData == NULL) || (err != NO_ERROR) ) {
  260. //
  261. // Failed to allocate new connection
  262. // Reasons:
  263. // 1) Max connecitons might have been exceeded.
  264. // 2) Not enough memory is available.
  265. // 3) Access check failed
  266. //
  267. // handle the failures and notify client.
  268. //
  270. if ( fMaxConnExceeded) {
  272. CHAR rgchBuffer[MAX_REPLY_LENGTH];
  273. DWORD len;
  275. //
  276. // Unable to insert new connection.
  277. // The maxConnections may have exceeded.
  278. // Destroy the client connection object and return.
  279. // Possibly need to send an error message.
  280. //
  283. IF_DEBUG( ERROR) {
  285. CHKINFO( ( DBG_CONTEXT,
  286. " MaxConnections Exceeded. "
  287. " Connection from %s refused at socket %d\n",
  288. pchAddr, sNew));
  289. }
  291. // Format a message to send for the error case.
  293. pInstance->LockConfig();
  295. LPCSTR pszMsg = pInstance->QueryMaxClientsMsg();
  296. pszMsg = (pszMsg == NULL) ? PSZ_SERVICE_NOT_AVAILABLE : pszMsg;
  298. len = FtpFormatResponseMessage(REPLY_SERVICE_NOT_AVAILABLE,
  299. pszMsg,
  300. rgchBuffer,
  301. MAX_REPLY_LENGTH);
  303. pInstance->UnLockConfig();
  304. DBG_ASSERT( len < MAX_REPLY_LENGTH);
  306. // Send the formatted message
  307. // Ignore error in sending this message.
  308. SockSend( NULL, sNew, rgchBuffer, len);
  310. } else {
  312. // not enough memory for running this client connection
  314. const CHAR * apszSubStrings[1];
  315. CHAR pchAddr2[32];
  317. InetNtoa( psockAddrRemote->sin_addr, pchAddr2 );
  319. apszSubStrings[0] = pchAddr2;
  321. g_pInetSvc->LogEvent(FTPD_EVENT_CANNOT_CREATE_CLIENT_THREAD,
  322. 1,
  323. apszSubStrings,
  324. err );
  326. IF_DEBUG( ERROR) {
  328. CHKINFO(( DBG_CONTEXT,
  329. "Cannot create Client Connection for %s,"
  330. " Error %lu\n",
  331. pchAddr,
  332. err ));
  333. }
  335. //
  336. // Send a message to client if the socket is to be freed.
  337. // If it is already freed, then we cannot send message
  338. //
  340. if ( fSockToBeFreed) {
  342. SockPrintf2(NULL, sNew,
  343. "%u Service not available,"
  344. " closing control connection.",
  345. REPLY_SERVICE_NOT_AVAILABLE );
  346. } else {
  348. IF_DEBUG( CLIENT) {
  350. DBGPRINTF( ( DBG_CONTEXT,
  351. " Unable to send closed error message to "
  352. " %s (%d)\n",
  353. pchAddr2, sNew
  354. ));
  355. }
  356. }
  357. }
  360. //
  361. // Unable to create a new connection object.
  362. // Report error and shut this.
  363. //
  365. IF_DEBUG( ERROR) {
  367. CHKINFO( ( DBG_CONTEXT,
  368. "Cannot create new FTP Request object to %s."
  369. " Error= %u\n",
  370. pchAddr,
  371. err));
  372. }
  374. if ( fSockToBeFreed ) {
  376. if ( patqContext != NULL) {
  378. // ensure that socket is shut down.
  379. DBG_REQUIRE( AtqCloseSocket( patqContext, TRUE));
  380. } else {
  382. CloseSocket( sNew);
  383. }
  384. }
  386. fReturn = (FALSE);
  388. } // if ( pcc == NULL)
  391. if ( pfAtqToBeFreed != NULL) {
  393. *pfAtqToBeFreed = fSockToBeFreed;
  394. }
  396. if ( fDereferenceInstance ) {
  398. pInstance->DecrementCurrentConnections();
  399. pInstance->Dereference();
  400. }
  402. return (fReturn);
  404. } // ProcessNewClient()
  408. //
  409. // Public functions.
  410. //
  414. VOID
  415. FtpdNewConnection(
  416. IN SOCKET sNew,
  417. IN SOCKADDR_IN * psockaddr,
  418. IN PVOID EndpointContext,
  419. IN PVOID EndpointObject
  420. )
  421. /*++
  423. Call back function for processing the connections from clients.
  424. This function creates a new UserData object if permitted for the new
  425. client request and starts off a receive for the given connection
  426. using Async read on control channel established.
  428. Arguments:
  429. sNew control socket for the new client connection
  430. psockAddr pointer to the client's address.
  432. Returns:
  433. None
  435. History:
  436. KeithMo 08-Mar-1993 Created.
  437. MuraliK 04-April-1995
  438. ReCreated for using async Io threading model.
  439. --*/
  440. {
  441. BOOL fProcessed;
  442. BOOL fMaxConnExceeded;
  443. INT cbAddr = sizeof(SOCKADDR);
  444. SOCKADDR_IN sockaddr;
  446. FTP_SERVER_INSTANCE *pInstance;
  448. DBG_ASSERT( sNew != INVALID_SOCKET );
  449. DBG_ASSERT( psockaddr != NULL );
  450. DBG_ASSERT( psockaddr->sin_family == AF_INET ); // temporary
  452. g_pFTPStats->IncrConnectionAttempts();
  454. if ( g_pInetSvc->QueryCurrentServiceState() != SERVICE_RUNNING ) {
  456. IF_DEBUG( ERROR) {
  458. DBG_CODE( CHAR pchAddr[32];);
  460. DBG_CODE( InetNtoa(((SOCKADDR_IN *) psockaddr)->sin_addr,
  461. pchAddr));
  463. CHKINFO( ( DBG_CONTEXT,
  464. "Service is not running or AccessCheck failed for"
  465. " Connection from %s\n",
  466. pchAddr));
  467. }
  469. SockPrintf2(NULL,
  470. sNew,
  471. "%u %s", // the blank after %u is essential
  472. REPLY_SERVICE_NOT_AVAILABLE,
  473. "Service not available, closing control connection." );
  475. goto error_exit;
  477. }
  479. if (getsockname( sNew, (PSOCKADDR)&sockaddr, &cbAddr ) != 0) {
  480. goto error_exit;
  481. }
  483. //
  484. // Find Instance
  485. //
  487. pInstance = (FTP_SERVER_INSTANCE *)
  488. ((PIIS_ENDPOINT)EndpointContext)->FindAndReferenceInstance(
  489. (LPCSTR)NULL,
  490. sockaddr.sin_addr.s_addr,
  491. &fMaxConnExceeded
  492. );
  494. if ( pInstance == NULL ) {
  496. //
  497. // Site is not permitted to access this server.
  498. // Dont establish this connection. We should send a message.
  499. //
  501. SockPrintf2(NULL, sNew,
  502. "%u Connection refused, unknown IP address.",
  503. REPLY_NOT_LOGGED_IN);
  505. goto error_exit;
  506. }
  508. fProcessed = ProcessNewClient( sNew,
  509. EndpointObject,
  510. pInstance,
  511. fMaxConnExceeded,
  512. psockaddr);
  514. if ( fProcessed) {
  515. pInstance->QueryStatsObj()->CheckAndSetMaxConnections();
  516. }
  518. return;
  520. error_exit:
  522. CloseSocket( sNew);
  523. return;
  525. } // FtpdNewConnection()
  529. VOID
  530. FtpdNewConnectionEx(
  531. IN VOID * patqContext,
  532. IN DWORD cbWritten,
  533. IN DWORD dwError,
  534. IN OVERLAPPED * lpo
  535. )
  536. /*++
  537. Description:
  539. Callback function for new connections when using AcceptEx.
  540. This function verifies if this is a valid connection
  541. ( maybe using IP level authentication)
  542. and creates a new connection object
  544. The connection object is added to list of active connections.
  545. If the max number of connections permitted is exceeded,
  546. the client connection object is destroyed and
  547. connection is rejected.
  549. Arguments:
  551. patqContext: pointer to ATQ context for the IO operation
  552. cbWritten: count of bytes available from first read operation
  553. dwError: error if any from initial operation
  554. lpo: indicates if this function was called as a result
  555. of IO completion or due to some error.
  557. Returns:
  559. None.
  561. --*/
  562. {
  563. BOOL fProcessed = FALSE;
  564. BOOL fAtqContextToBeFreed = TRUE;
  565. BOOL fMaxConnExceeded;
  566. PSOCKADDR_IN psockAddrLocal = NULL;
  567. PSOCKADDR_IN psockAddrRemote = NULL;
  568. SOCKET sNew = INVALID_SOCKET;
  569. PVOID pvBuff = NULL;
  570. PIIS_ENDPOINT pEndpoint;
  571. FTP_SERVER_INSTANCE *pInstance;
  573. if ( (dwError != NO_ERROR) || !lpo) {
  575. DBGPRINTF(( DBG_CONTEXT, "FtpdNewConnectionEx() completion failed."
  576. " Error = %d. AtqContext=%08x\n",
  577. dwError, patqContext));
  579. //
  580. // For now free up the resources.
  581. //
  583. goto exit;
  584. }
  586. g_pFTPStats->IncrConnectionAttempts();
  588. DBG_ASSERT( patqContext != NULL);
  590. AtqGetAcceptExAddrs( (PATQ_CONTEXT ) patqContext,
  591. &sNew,
  592. &pvBuff,
  593. (PVOID*)&pEndpoint,
  594. (PSOCKADDR *)&psockAddrLocal,
  595. (PSOCKADDR *)&psockAddrRemote);
  597. DBG_ASSERT( pEndpoint != NULL );
  598. IF_DEBUG( CONNECTION ) {
  600. DBGPRINTF(( DBG_CONTEXT,
  601. " New connection. AtqCont=%08x, buff=%08x, cb=%d\n",
  602. patqContext, pvBuff, cbWritten));
  603. }
  605. if ( g_pInetSvc->QueryCurrentServiceState() != SERVICE_RUNNING ) {
  607. DBGPRINTF((DBG_CONTEXT,"Connection attempt on inactive service\n"));
  609. SockPrintf2(NULL,
  610. sNew,
  611. "%u %s", // the blank after %u is essential
  612. REPLY_SERVICE_NOT_AVAILABLE,
  613. "Service not available, closing control connection." );
  615. goto exit;
  616. }
  618. //
  619. // Find Instance
  620. //
  622. pInstance = (FTP_SERVER_INSTANCE*)pEndpoint->FindAndReferenceInstance(
  623. (LPCSTR)NULL,
  624. psockAddrLocal->sin_addr.s_addr,
  625. &fMaxConnExceeded
  626. );
  628. if (pInstance == NULL ) {
  630. //
  631. // Site is not permitted to access this server.
  632. // Dont establish this connection. We should send a message.
  633. //
  635. DBGPRINTF((DBG_CONTEXT,
  636. "Unable to find instance [err %d]\n",GetLastError()));
  637. goto exit;
  638. }
  640. //
  641. // Set the timeout for future IOs on this context
  642. //
  644. AtqContextSetInfo( (PATQ_CONTEXT) patqContext,
  645. ATQ_INFO_TIMEOUT,
  646. (ULONG_PTR) pInstance->QueryConnectionTimeout()
  647. );
  649. if ( pInstance->QueryBandwidthInfo() )
  650. {
  651. AtqContextSetInfo( (PATQ_CONTEXT) patqContext,
  652. ATQ_INFO_BANDWIDTH_INFO,
  653. (ULONG_PTR) pInstance->QueryBandwidthInfo() );
  654. }
  656. fProcessed = ProcessNewClient( sNew,
  657. NULL,
  658. pInstance,
  659. fMaxConnExceeded,
  660. psockAddrRemote,
  661. psockAddrLocal,
  662. (PATQ_CONTEXT ) patqContext,
  663. pvBuff,
  664. cbWritten,
  665. &fAtqContextToBeFreed);
  667. if ( fProcessed) {
  668. pInstance->QueryStatsObj()->CheckAndSetMaxConnections();
  669. }
  671. exit:
  673. if ( !fProcessed && fAtqContextToBeFreed ) {
  675. //
  676. // We failed to process this connection. Free up resources properly
  677. //
  679. DBG_REQUIRE( AtqCloseSocket( (PATQ_CONTEXT )patqContext, FALSE));
  680. AtqFreeContext( (PATQ_CONTEXT ) patqContext, TRUE );
  681. }
  683. return;
  685. } // FtpdNewConnectionEx