archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
4.9 GiB
Branch: master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
windows-server-2003/printscan/print/spooler/inetsrv/cal.cxx

320 lines
9.3 KiB
Raw Permalink Normal View History

commiting as it is
4 years ago
  1. /***************************************************************************
  2. FILE cal.cxx
  4. MODULE Printers ISAPI DLL
  6. PURPOSE Enforces Client Access Licensing
  8. DESCRIBED IN
  10. HISTORY 12/10/97 babakj created
  12. ****************************************************************************/
  16. /* ==============================================================================
  17. Issues:
  19. Notes:
  20. - I am assumuing the IIS enforcement for authenticated access is done per Post?
  21. So we should not have the problem with receiving part of the job, but rejecting
  22. the rest due to CAL denial (assuming we use single post job submission).
  23. - So we end up consuming the CAL during the whole Post, even while our call back
  24. is waiting for the rest of the bytes from the Post. If the Post never completes,
  25. The clean up thread will kill the job and free up the CAL.
  26. - NtLicenseRequest API defined in ntlsapi.h in sdk\inc
  27. (could return LS_INSUFFICIENT_UNITS in per-server) (sample in net\svcdlls\srvsvc\server\xsproc.c.
  29. **********************************************************************************/
  32. #include "pch.h"
  33. #include "spool.h"
  35. // To define the IIS Metabase GUIDs used in this file. Every other file defines
  36. // GUIDs as extern, except here where we actually define them in initguid.h.
  37. #include <initguid.h>
  38. #include <iadmw.h> // Interface header
  39. #include <iiscnfg.h> // MD_ & IIS_MD_ defines
  41. #pragma hdrstop
  44. #define MY_META_TIMEOUT 1000
  46. TCHAR const c_szProductOptionsPath[] = TEXT( "System\\CurrentControlSet\\Control\\ProductOptions" );
  49. HANDLE
  50. RevertToPrinterSelf(
  51. VOID)
  52. {
  53. HANDLE NewToken, OldToken;
  54. NTSTATUS Status;
  56. NewToken = NULL;
  58. Status = NtOpenThreadToken(
  59. NtCurrentThread(),
  60. TOKEN_IMPERSONATE,
  61. TRUE,
  62. &OldToken
  63. );
  65. if ( !NT_SUCCESS(Status) ) {
  66. SetLastError(Status);
  67. return FALSE;
  68. }
  70. Status = NtSetInformationThread(
  71. NtCurrentThread(),
  72. ThreadImpersonationToken,
  73. (PVOID)&NewToken,
  74. (ULONG)sizeof(HANDLE)
  75. );
  77. if ( !NT_SUCCESS(Status) ) {
  78. SetLastError(Status);
  79. return FALSE;
  80. }
  82. return OldToken;
  84. }
  86. BOOL
  87. ImpersonatePrinterClient(
  88. HANDLE hToken)
  89. {
  90. NTSTATUS Status;
  92. Status = NtSetInformationThread(
  93. NtCurrentThread(),
  94. ThreadImpersonationToken,
  95. (PVOID)&hToken,
  96. (ULONG)sizeof(HANDLE)
  97. );
  99. if ( !NT_SUCCESS(Status) ) {
  100. SetLastError(Status);
  101. return FALSE;
  102. }
  104. NtClose(hToken);
  106. return TRUE;
  107. }
  110. BOOL IsNTW()
  111. {
  112. HKEY hKey;
  113. TCHAR szProductType[MAX_PATH+1];
  114. DWORD cbData = sizeof(szProductType)-sizeof(szProductType[0]);
  116. static BOOL fProductTypeKnown = FALSE;
  117. static BOOL bIsNTW = TRUE; // We are being forgiving. i.e. in case of a failure, we assume NTW, so no enforcement.
  120. if( !fProductTypeKnown ) {
  122. if( ERROR_SUCCESS == RegOpenKeyEx( HKEY_LOCAL_MACHINE, c_szProductOptionsPath, 0, KEY_READ, &hKey)) {
  124. szProductType[COUNTOF(szProductType) - 1] = 0x00;
  125. if( RegQueryValueEx( hKey, L"ProductType", NULL, NULL, (LPBYTE)szProductType, &cbData) == ERROR_SUCCESS ) {
  127. fProductTypeKnown = TRUE; // We will never check again...
  128. if( !lstrcmpi( L"ServerNT", szProductType ))
  129. bIsNTW = FALSE;
  130. }
  131. RegCloseKey( hKey );
  132. }
  133. }
  135. return bIsNTW;
  136. }
  138. //
  139. // if REMOTE_USER is empty it means anonymous, else, it has the username being impersonated
  140. //
  141. BOOL IsUserAnonymous(
  142. EXTENSION_CONTROL_BLOCK *pECB
  143. )
  144. {
  145. char szRemoteUser[ MAX_PATH ]; // ISAPI interface is ANSI
  146. ULONG uSize = sizeof( szRemoteUser );
  148. szRemoteUser[ 0 ] = 0; // Set it to empty ANSI string
  150. // Notice this is an ANSI call.
  151. pECB->GetServerVariable( pECB->ConnID, "REMOTE_USER", szRemoteUser, &uSize ) ;
  153. return( !(*szRemoteUser) ); // empty string should point to a zero char
  154. }
  157. //
  158. // Gets user name of the anonymous IIS account by reading it from
  159. // the Metabase's (IISADMIN) path w3svc/AnonymousUserName.
  160. //
  161. // - Returns TRUE if szAnonymousAccountUserName is filled in, FALSE if failed.
  162. // - Caller is supposed to make sure szAnonymousAccountName is MAX_PATH * sizeof(TCHAR) long.
  163. // - We get what "mdutil Get w3svc/AnonymousUserName" gets, e.g. IUSR_MACHINENAME.
  164. // I am ignoring the fact that the admin might have set the user name not per machine, rather
  165. // at a more granular level.
  167. //
  168. BOOL GetAnonymousAccountUserName(
  169. LPTSTR szAnonymousUserName,
  170. DWORD dwSize
  171. )
  172. {
  173. BOOL bRet = FALSE;
  174. HRESULT hr; // com error status
  175. METADATA_HANDLE hMeta = NULL; // handle to metabase
  176. CComPtr<IMSAdminBase> pIMeta; // ATL smart ptr
  178. DWORD dwMDRequiredDataLen;
  179. METADATA_RECORD mr;
  181. HANDLE hToken = NULL;
  183. // Need to revert to our service credential to be able to read IIS Metabase.
  184. hToken = RevertToPrinterSelf();
  187. if (hToken) {
  188. // Create a instance of the metabase object
  189. hr=::CoCreateInstance(CLSID_MSAdminBase,
  190. NULL,
  191. CLSCTX_ALL,
  192. IID_IMSAdminBase,
  193. (void **)&pIMeta);
  196. if( SUCCEEDED( hr )) {
  198. // open key to ROOT on website #1 (default)
  199. hr = pIMeta->OpenKey(METADATA_MASTER_ROOT_HANDLE,
  200. L"/LM",
  201. METADATA_PERMISSION_READ,
  202. MY_META_TIMEOUT,
  203. &hMeta);
  204. if( SUCCEEDED( hr )) {
  206. mr.dwMDIdentifier = MD_ANONYMOUS_USER_NAME;
  207. mr.dwMDAttributes = 0;
  208. mr.dwMDUserType = IIS_MD_UT_FILE;
  209. mr.dwMDDataType = STRING_METADATA;
  210. mr.dwMDDataLen = dwSize * sizeof(TCHAR);
  211. mr.pbMDData = reinterpret_cast<unsigned char *>(szAnonymousUserName);
  213. hr = pIMeta->GetData( hMeta, L"/W3svc", &mr, &dwMDRequiredDataLen );
  214. pIMeta->CloseKey( hMeta );
  216. if( SUCCEEDED( hr ))
  218. bRet = TRUE;
  219. }
  220. }
  222. if (!ImpersonatePrinterClient(hToken))
  223. bRet = FALSE;
  224. }
  226. return bRet;
  227. }
  230. //
  231. // Gets user name of the anonymous IIS account, combines with machine name g_szComputerName to
  232. // get the format LocalMachineName\IUSR_LocalMachineName
  233. //
  234. // - Returns TRUE if szAnonymousAccountName is filled in, FALSE if failed.
  235. // - Caller is supposed to make sure szAnonymousAccountName is MAX_PATH * sizeof(TCHAR) long.
  236. //
  237. BOOL GetAnonymousAccountName(
  238. LPTSTR szAnonymousAccountName,
  239. DWORD dwSize
  240. )
  241. {
  242. TCHAR szAnonymousUserName[MAX_PATH];
  243. ULONG uSize = dwSize;
  245. if( !GetComputerName( szAnonymousAccountName, &dwSize ))
  246. return FALSE;
  248. if( !GetAnonymousAccountUserName( szAnonymousUserName, MAX_PATH ))
  249. return FALSE;
  251. // Now add the user name to the machine name
  252. if (dwSize + 1 + lstrlen (szAnonymousUserName) < uSize )
  253. {
  254. DWORD bufSize = uSize - dwSize;
  255. if (SUCCEEDED (StringCchPrintf( &szAnonymousAccountName[dwSize], bufSize, L"\\%ws", szAnonymousUserName ) ) )
  256. return TRUE;
  257. }
  259. return FALSE;
  260. }
  262. //
  263. // Enforce the Client Access Licensing
  264. //
  265. // Returns TRUE if license granted, FALSE otherwise. phLicense contains a license handle that needs
  266. // to be freed later, or NULL if no license was really needed, like NTW, or if non-Anonymous user
  267. // which will be enforced by IIS.
  268. //
  269. // NOTE: We only read the Anonymous account name once, for performance sake, even though it
  270. // could change during operation.
  271. //
  272. //
  273. BOOL RequestLicense(
  274. LS_HANDLE *phLicense,
  275. LPEXTENSION_CONTROL_BLOCK pECB
  276. )
  277. {
  278. static TCHAR szAnonymousAccountName[ MAX_PATH ];
  279. static BOOL fHaveReadAnonymousAccount = FALSE;
  281. if( !phLicense )
  282. return FALSE;
  284. *phLicense = NULL;
  286. if( IsNTW() || !IsUserAnonymous( pECB ))
  287. return TRUE;
  289. if( !fHaveReadAnonymousAccount )
  290. if( !GetAnonymousAccountName( szAnonymousAccountName , MAX_PATH ))
  291. return TRUE; // CAL-wise, we need to be forgiving
  292. else
  293. fHaveReadAnonymousAccount = TRUE;
  296. NT_LS_DATA NtLSData;
  298. NtLSData.DataType = NT_LS_USER_NAME;
  299. NtLSData.Data = szAnonymousAccountName;
  300. NtLSData.IsAdmin = FALSE; // why is this important to know ??
  303. return( NT_SUCCESS( NtLicenseRequest( TEXT("FilePrint"),
  304. TEXT("5.0"),
  305. phLicense,
  306. &NtLSData )));
  307. }
  310. void FreeLicense(
  311. LS_HANDLE hLicense
  312. )
  313. {
  315. // hLicense of NULL means no license was needed (like NTW,
  316. // or non-anonymous case where IIS will take care of it.
  318. if( hLicense )
  319. NtLSFreeHandle( hLicense );
  320. }