archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 5c6fe3db62
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '5c6fe3db62'
${ noResults }
windows-server-2003/admin/pchealth/sr/kernel/verifyblob.c

731 lines
18 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. /*++
  3. Copyright (c) 1998-1999 Microsoft Corporation
  5. Module Name:
  7. verifyBlob.c
  9. Abstract:
  11. This file contains blob verification code
  13. Author:
  15. Neal Christiansen (nealch) 12/18/2000
  17. Revision History:
  19. --*/
  21. #include "precomp.h"
  23. //
  24. // If DEBUG is enabled we want to display all of the errors.
  25. // if NOT DEBUG then return on first error
  26. //
  28. #if DBG
  29. #define HANDLE_FAILURE(_good) ((_good) = FALSE)
  30. #else
  31. #define HANDLE_FAILURE(_good) return FALSE
  32. #endif
  34. //
  35. // Private prototypes.
  36. //
  38. BOOL
  39. SrVerifyBlobHeader(
  40. BlobHeader *BlobHead,
  41. PCHAR Name,
  42. DWORD BlobType
  43. );
  45. BOOL
  46. SrVerifyHashHeader(
  47. ListHeader *HashHead,
  48. PCHAR Name,
  49. DWORD Offset
  50. );
  52. BOOL
  53. SrVerifyHash(
  54. ListHeader *HashHead,
  55. PCHAR Name,
  56. DWORD Offset
  57. );
  59. BOOL
  60. SrVerifyTreeHeader(
  61. TreeHeader *TreeHead,
  62. PCHAR Name
  63. );
  65. BOOL
  66. SrVerifyTree(
  67. TreeHeader *TreeHead,
  68. PCHAR Name,
  69. DWORD Offset
  70. );
  72. #ifdef ALLOC_PRAGMA
  74. #pragma alloc_text( PAGE, SrVerifyBlobHeader )
  75. #pragma alloc_text( PAGE, SrVerifyHashHeader )
  76. #pragma alloc_text( PAGE, SrVerifyHash )
  77. #pragma alloc_text( PAGE, SrVerifyTreeHeader )
  78. #pragma alloc_text( PAGE, SrVerifyTree )
  79. #pragma alloc_text( PAGE, SrVerifyBlob )
  81. #endif // ALLOC_PRAGMA
  84. BOOL
  85. SrVerifyBlobHeader(
  86. BlobHeader *BlobHead,
  87. PCHAR Name,
  88. DWORD BlobType
  89. )
  90. /*++
  92. Routine Description:
  94. Verify that the given BLOB Header is valid
  96. Arguments:
  99. Return Value:
  101. TRUE if OK else FALSE
  103. --*/
  104. {
  105. BOOL good = TRUE;
  107. UNREFERENCED_PARAMETER( Name );
  109. if (BlobHead->m_dwVersion != BLOB_VERSION_NUM)
  110. {
  111. SrTrace( BLOB_VERIFICATION,
  112. ("sr!SrVerifyBlobHeader: Invalid VERSION in %s blob header, was %08x, should be %08x\n",
  113. Name,
  114. BlobHead->m_dwVersion,
  115. BLOB_VERSION_NUM) );
  116. HANDLE_FAILURE(good);
  117. }
  119. if (BlobHead->m_dwBlbType != BlobType)
  120. {
  121. SrTrace( BLOB_VERIFICATION,
  122. ("sr!SrVerifyBlobHeader: Invalid TYPE in %s blob header, was %08x, should be %08x\n",
  123. Name,
  124. BlobHead->m_dwBlbType,
  125. BlobType) );
  126. HANDLE_FAILURE(good);
  127. }
  129. if (BlobHead->m_dwMagicNum != BLOB_MAGIC_NUM)
  130. {
  131. SrTrace( BLOB_VERIFICATION,
  132. ("sr!SrVerifyBlobHeader: Invalid MAGIC NUMBER in %s blob header, was %08x, should be %08x\n",
  133. Name,
  134. BlobHead->m_dwMagicNum,
  135. BLOB_MAGIC_NUM) );
  136. HANDLE_FAILURE(good);
  137. }
  139. if ((BlobHead->m_dwEntries <= 0) || (BlobHead->m_dwEntries >= 10000))
  140. {
  141. SrTrace( BLOB_VERIFICATION,
  142. ("sr!SrVerifyBlobHeader: Invalid ENTRIES in %s blob header, was %08x, should be > 0 and < 10,000\n",
  143. Name,
  144. BlobHead->m_dwEntries) );
  145. HANDLE_FAILURE(good);
  146. }
  148. return good;
  149. }
  153. BOOL
  154. SrVerifyHashHeader(
  155. ListHeader *HashHead,
  156. PCHAR Name,
  157. DWORD Offset
  158. )
  159. /*++
  161. Routine Description:
  163. Verify that the given TREE Header is valid
  165. Arguments:
  168. Return Value:
  170. TRUE if OK else FALSE
  172. --*/
  173. {
  174. BOOL good = TRUE;
  175. DWORD calculatedSize;
  176. DWORD numNodes;
  178. UNREFERENCED_PARAMETER( Offset );
  180. //
  181. // Verify BLOB header
  182. //
  184. if (!SrVerifyBlobHeader(&HashHead->m_BlobHeader,Name,BLOB_TYPE_HASHLIST))
  185. {
  186. return FALSE;
  187. }
  189. //
  190. // paulmcd: jan/2001
  191. // m_iHashBuckets will not be exact with m_dwEntries as it is the next
  192. // highest prime number. but it will always be larger than or equalto.
  193. //
  195. if (HashHead->m_iHashBuckets < HashHead->m_BlobHeader.m_dwEntries)
  196. {
  197. SrTrace( BLOB_VERIFICATION,
  198. ("sr!SrVerifyHashHeader: Invalid HASH BUCKET COUNT in %s header, is %08x, should be %08x or %08x\n",
  199. Name,
  200. HashHead->m_iHashBuckets,
  201. HashHead->m_BlobHeader.m_dwEntries,
  202. HashHead->m_BlobHeader.m_dwEntries+1) );
  203. HANDLE_FAILURE(good);
  204. }
  206. if ((HashHead->m_dwDataOff != HashHead->m_BlobHeader.m_dwMaxSize))
  207. {
  208. SrTrace( BLOB_VERIFICATION,
  209. ("sr!SrVerifyHashHeader: Invalid DATA OFFSET in %s header, is %08x, should be %08x\n",
  210. Name,
  211. HashHead->m_dwDataOff,
  212. HashHead->m_BlobHeader.m_dwMaxSize) );
  213. HANDLE_FAILURE(good);
  214. }
  216. if ((HashHead->m_iFreeNode != 0))
  217. {
  218. SrTrace( BLOB_VERIFICATION,
  219. ("sr!SrVerifyHashHeader: Invalid FREE NODE in %s header, is %08x, should be 0\n",
  220. Name,
  221. HashHead->m_iFreeNode) );
  222. HANDLE_FAILURE(good);
  223. }
  225. //
  226. // Make sure the calucalted size is accurate
  227. //
  229. numNodes = HashHead->m_BlobHeader.m_dwEntries + 1;
  231. calculatedSize = sizeof(ListHeader) +
  232. (HashHead->m_iHashBuckets * sizeof(DWORD)) +
  233. (numNodes * sizeof(ListEntry));
  235. if (calculatedSize >= HashHead->m_BlobHeader.m_dwMaxSize)
  236. {
  237. SrTrace( BLOB_VERIFICATION,
  238. ("sr!SrVerifyHashHeader: Invalid CALCULATED SIZE in %s header, is %08x, should be < %08x\n",
  239. Name,
  240. calculatedSize,
  241. HashHead->m_BlobHeader.m_dwMaxSize) );
  242. HANDLE_FAILURE(good);
  243. }
  245. return good;
  246. }
  249. BOOL
  250. SrVerifyHash(
  251. ListHeader *HashHead,
  252. PCHAR Name,
  253. DWORD Offset
  254. )
  255. /*++
  257. Routine Description:
  259. Verify that the given TREE entries are valid
  261. Arguments:
  264. Return Value:
  266. TRUE if OK else FALSE
  268. --*/
  269. {
  270. BOOL good = TRUE;
  271. UINT i;
  272. DWORD dataStart;
  273. DWORD numNodes;
  274. DWORD numBuckets;
  275. DWORD *hTable;
  276. ListEntry *hNode;
  278. //
  279. // Validate the HEADER
  280. //
  282. if (!SrVerifyHashHeader(HashHead,Name,Offset))
  283. {
  284. return FALSE;
  285. }
  287. //
  288. // paulmcd: we have hash bucket and actual nodes. there is one extra
  289. // actual node than reported due to offset zero being null. the bucket
  290. // count is the next largest prime from numNodes
  291. //
  293. numBuckets = HashHead->m_iHashBuckets;
  294. numNodes = HashHead->m_BlobHeader.m_dwEntries + 1;
  296. //
  297. // Validate Hash table entries
  298. //
  300. hTable = (DWORD *)(HashHead + 1);
  302. for (i=0;i < HashHead->m_iHashBuckets;i++,hTable++) {
  304. if (*hTable >= numNodes)
  305. {
  306. SrTrace( BLOB_VERIFICATION,
  307. ("sr!SrVerifyHash: Invalid HASH TABLE ENTRY[%d] in %s, is %08x, should be < %08x\n",
  308. i,
  309. Name,
  310. *hTable,
  311. numNodes) );
  312. HANDLE_FAILURE(good);
  313. }
  314. }
  316. //
  317. // Validate the start of the Hash LIST entries
  318. //
  320. {
  321. ULONG_PTR actualOffset;
  322. ULONG_PTR calculatedOffset;
  324. actualOffset = (ULONG_PTR)hTable - (ULONG_PTR)HashHead;
  325. calculatedOffset = sizeof(ListHeader) +
  326. (HashHead->m_iHashBuckets * sizeof(DWORD));
  328. if (calculatedOffset != actualOffset)
  329. {
  330. SrTrace( BLOB_VERIFICATION,
  331. ("sr!SrVerifyHash: Invalid HASH LIST START in %s, offset is %08x, should be %08x\n",
  332. Name,
  333. actualOffset,
  334. calculatedOffset) );
  335. HANDLE_FAILURE(good);
  336. }
  337. }
  339. //
  340. // Validate the Hash DATA entries
  341. //
  343. hNode = (ListEntry *)hTable;
  344. dataStart = sizeof(ListHeader) +
  345. (HashHead->m_iHashBuckets * sizeof(DWORD)) +
  346. (numNodes * sizeof(ListEntry));
  348. for (i=0;i < numNodes;i++,hNode++) {
  350. if ((hNode->m_iNext < 0) ||
  351. (hNode->m_iNext >= (INT)HashHead->m_iHashBuckets))
  352. {
  353. SrTrace( BLOB_VERIFICATION,
  354. ("sr!SrVerifyHash: Invalid HASH NODE[%d] NEXT INDEX in %s, is %08x, should be < %08x\n",
  355. i,
  356. Name,
  357. hNode->m_iNext,
  358. HashHead->m_iHashBuckets) );
  359. HANDLE_FAILURE(good);
  360. }
  362. if ((hNode->m_dwData != 0) &&
  363. ((hNode->m_dwData < dataStart) ||
  364. (hNode->m_dwData >= HashHead->m_BlobHeader.m_dwMaxSize)))
  365. {
  366. SrTrace( BLOB_VERIFICATION,
  367. ("sr!SrVerifyHash: Invalid HASH NODE[%d] DATA INDEX in %s, is %08x, should be >= %08x and < %08x\n",
  368. i,
  369. Name,
  370. hNode->m_dwData,
  371. dataStart,
  372. HashHead->m_BlobHeader.m_dwMaxSize) );
  373. HANDLE_FAILURE(good);
  374. }
  375. else if ((hNode->m_dwData != 0) &&
  376. ((WCHAR)hNode->m_dwDataLen != *(PWCHAR)((DWORD_PTR)HashHead + hNode->m_dwData)))
  377. {
  378. SrTrace( BLOB_VERIFICATION,
  379. ("sr!SrVerifyHash: Invalid HASH NODE[%d] DATA LENGTH in %s, is %08x, should be %08x\n",
  380. i,
  381. Name,
  382. hNode->m_dwDataLen,
  383. *(PWCHAR)((DWORD_PTR)HashHead + hNode->m_dwData)) );
  384. HANDLE_FAILURE(good);
  385. }
  387. if ((hNode->m_dwType != NODE_TYPE_UNKNOWN) &&
  388. (hNode->m_dwType != NODE_TYPE_INCLUDE) &&
  389. (hNode->m_dwType != NODE_TYPE_EXCLUDE))
  390. {
  391. SrTrace( BLOB_VERIFICATION,
  392. ("sr!SrVerifyHash: Invalid HASH NODE[%d] TYPE in %s, is %08x, should be %08x, %08x or %08x\n",
  393. i,
  394. Name,
  395. hNode->m_dwType,
  396. NODE_TYPE_UNKNOWN,
  397. NODE_TYPE_INCLUDE,
  398. NODE_TYPE_EXCLUDE) );
  399. HANDLE_FAILURE(good);
  400. }
  401. }
  403. return good;
  404. }
  407. BOOL
  408. SrVerifyTreeHeader(
  409. TreeHeader *TreeHead,
  410. PCHAR Name
  411. )
  412. /*++
  414. Routine Description:
  416. Verify that the given TREE Header is valid
  418. Arguments:
  421. Return Value:
  423. TRUE if OK else FALSE
  425. --*/
  426. {
  427. BOOL good = TRUE;
  428. DWORD calculatedSize;
  430. //
  431. // Verify BLOB header
  432. //
  434. if (!SrVerifyBlobHeader(&TreeHead->m_BlobHeader,Name,BLOB_TYPE_PATHTREE))
  435. {
  436. return FALSE;
  437. }
  439. if ((TreeHead->m_dwMaxNodes != TreeHead->m_BlobHeader.m_dwEntries))
  440. {
  441. SrTrace( BLOB_VERIFICATION,
  442. ("sr!SrVerifyTreeHeader: Invalid MAX NODES in %s header, is %08x, should be %08x\n",
  443. Name,
  444. TreeHead->m_dwMaxNodes,
  445. TreeHead->m_BlobHeader.m_dwEntries) );
  446. HANDLE_FAILURE(good);
  447. }
  449. if ((TreeHead->m_dwDataSize >= TreeHead->m_BlobHeader.m_dwMaxSize))
  450. {
  451. SrTrace( BLOB_VERIFICATION,
  452. ("sr!SrVerifyTreeHeader: Invalid DATA SIZE in %s header, is %08x, should be < %08x\n",
  453. Name,
  454. TreeHead->m_dwDataSize,
  455. TreeHead->m_BlobHeader.m_dwMaxSize) );
  456. HANDLE_FAILURE(good);
  457. }
  459. if ((TreeHead->m_dwDataOff != TreeHead->m_BlobHeader.m_dwMaxSize))
  460. {
  461. SrTrace( BLOB_VERIFICATION,
  462. ("sr!SrVerifyTreeHeader: Invalid DATA OFFSET in %s header, is %08x, should be %08x\n",
  463. Name,
  464. TreeHead->m_dwDataOff,
  465. TreeHead->m_BlobHeader.m_dwMaxSize) );
  466. HANDLE_FAILURE(good);
  467. }
  469. if ((TreeHead->m_iFreeNode != 0))
  470. {
  471. SrTrace( BLOB_VERIFICATION,
  472. ("sr!SrVerifyTreeHeader: Invalid FREE NODE in %s header, is %08x, should be 0\n",
  473. Name,
  474. TreeHead->m_iFreeNode) );
  475. HANDLE_FAILURE(good);
  476. }
  478. if ((TreeHead->m_dwDefault != NODE_TYPE_EXCLUDE))
  479. {
  480. SrTrace( BLOB_VERIFICATION,
  481. ("sr!SrVerifyTreeHeader: Invalid DEFAULT in %s header, is %08x, should be %08x\n",
  482. Name,
  483. TreeHead->m_dwDefault,
  484. NODE_TYPE_EXCLUDE) );
  485. HANDLE_FAILURE(good);
  486. }
  488. //
  489. // Make sure the calucalted size is accurate
  490. //
  492. calculatedSize = sizeof(TreeHeader) +
  493. (TreeHead->m_dwMaxNodes * sizeof(TreeNode)) +
  494. TreeHead->m_dwDataSize;
  496. if (calculatedSize != TreeHead->m_BlobHeader.m_dwMaxSize)
  497. {
  498. SrTrace( BLOB_VERIFICATION,
  499. ("sr!SrVerifyTreeHeader: Invalid CALCULATED SIZE in %s header, is %08x, should be %08x\n",
  500. Name,
  501. calculatedSize,
  502. TreeHead->m_BlobHeader.m_dwMaxSize) );
  503. HANDLE_FAILURE(good);
  504. }
  506. return good;
  507. }
  510. BOOL
  511. SrVerifyTree(
  512. TreeHeader *TreeHead,
  513. PCHAR Name,
  514. DWORD Offset
  515. )
  516. /*++
  518. Routine Description:
  520. Verify that the given TREE entries are valid
  522. Arguments:
  525. Return Value:
  527. TRUE if OK else FALSE
  529. --*/
  530. {
  531. BOOL good = TRUE;
  532. UINT i;
  533. DWORD dataStart;
  534. TreeNode *tn;
  535. ListHeader *localHashHead;
  536. char localName[128];
  538. //
  539. // Validate the HEADER
  540. //
  542. if (!SrVerifyTreeHeader(TreeHead,Name)) {
  544. return FALSE;
  545. }
  547. //
  548. // Validate the DATA entries
  549. //
  551. tn = (TreeNode *)(TreeHead + 1);
  552. dataStart = sizeof(TreeHeader) +
  553. (TreeHead->m_dwMaxNodes * sizeof(TreeNode));
  556. for (i=0;i < TreeHead->m_dwMaxNodes;i++,tn++)
  557. {
  558. if ((tn->m_iFather < 0) ||
  559. (tn->m_iFather >= (INT)TreeHead->m_dwMaxNodes))
  560. {
  561. SrTrace( BLOB_VERIFICATION,
  562. ("sr!SrVerifyTree: Invalid TREE NODE[%d] FATHER index in %s, is %08x, should be < %08x\n",
  563. i,
  564. Name,
  565. tn->m_iFather,
  566. TreeHead->m_dwMaxNodes) );
  567. HANDLE_FAILURE(good);
  568. }
  570. if ((tn->m_iSon < 0) ||
  571. (tn->m_iSon >= (INT)TreeHead->m_dwMaxNodes))
  572. {
  573. SrTrace( BLOB_VERIFICATION,
  574. ("sr!SrVerifyTree: Invalid TREE NODE[%d] SON index in %s, is %08x, should be < %08x\n",
  575. i,
  576. Name,
  577. tn->m_iSon,
  578. TreeHead->m_dwMaxNodes) );
  579. HANDLE_FAILURE(good);
  580. }
  582. if ((tn->m_iSibling < 0) ||
  583. (tn->m_iSibling >= (INT)TreeHead->m_dwMaxNodes))
  584. {
  585. SrTrace( BLOB_VERIFICATION,
  586. ("sr!SrVerifyTree: Invalid TREE NODE[%d] SIBLING index in %s, is %08x, should be < %08x\n",
  587. i,
  588. Name,
  589. tn->m_iSibling,
  590. TreeHead->m_dwMaxNodes) );
  591. HANDLE_FAILURE(good);
  592. }
  594. if ((tn->m_dwData < dataStart) ||
  595. (tn->m_dwData >= TreeHead->m_BlobHeader.m_dwMaxSize))
  596. {
  597. SrTrace( BLOB_VERIFICATION,
  598. ("sr!SrVerifyTree: Invalid TREE NODE[%d] DATA index in %s, is %08x, should be >= %08x and < %08x\n",
  599. i,
  600. Name,
  601. tn->m_dwData,
  602. dataStart,
  603. TreeHead->m_BlobHeader.m_dwMaxSize) );
  604. HANDLE_FAILURE(good);
  605. }
  607. if (tn->m_dwFileList != 0)
  608. {
  609. if ((tn->m_dwFileList < dataStart) ||
  610. (tn->m_dwFileList >= TreeHead->m_BlobHeader.m_dwMaxSize))
  611. {
  612. SrTrace( BLOB_VERIFICATION,
  613. ("sr!SrVerifyTree: Invalid TREE NODE[%d] FILELIST index in %s, is %08x, should be >= %08x and < %08x\n",
  614. i,
  615. Name,
  616. tn->m_dwData,
  617. dataStart,
  618. TreeHead->m_BlobHeader.m_dwMaxSize) );
  619. HANDLE_FAILURE(good);
  620. }
  621. else
  622. {
  623. localHashHead = (ListHeader *)((DWORD_PTR)TreeHead + tn->m_dwFileList);
  624. sprintf(localName,"TreeNode[%d]",i);
  626. if (!SrVerifyHash(localHashHead,localName,(Offset+tn->m_dwFileList)))
  627. {
  628. HANDLE_FAILURE(good);
  629. }
  630. }
  631. }
  633. if ((tn->m_dwType != NODE_TYPE_UNKNOWN) &&
  634. (tn->m_dwType != NODE_TYPE_INCLUDE) &&
  635. (tn->m_dwType != NODE_TYPE_EXCLUDE))
  636. {
  637. SrTrace( BLOB_VERIFICATION,
  638. ("sr!SrVerifyTree: Invalid TREE NODE[%d] TYPE in %s, is %08x, should be %08x, %08x or %08x\n",
  639. i,
  640. Name,
  641. tn->m_dwType,
  642. NODE_TYPE_UNKNOWN,
  643. NODE_TYPE_INCLUDE,
  644. NODE_TYPE_EXCLUDE) );
  645. HANDLE_FAILURE(good);
  646. }
  647. }
  649. return good;
  650. }
  654. BOOL
  655. SrVerifyBlob(
  656. PBYTE Blob
  657. )
  658. /*++
  660. Routine Description:
  662. Verify that the given BLOB is valid
  664. Arguments:
  667. Return Value:
  669. TRUE if OK else FALSE
  671. --*/
  672. {
  673. BlobHeader *blobHead;
  674. TreeHeader *treeHead;
  675. ListHeader *hashHead;
  676. DWORD calculatedSize = 0;
  678. //
  679. // Verify header to entire blob
  680. //
  682. blobHead = (BlobHeader *)Blob;
  684. if (!SrVerifyBlobHeader(blobHead,"PRIMARY",BLOB_TYPE_CONTAINER))
  685. {
  686. return FALSE;
  687. }
  689. calculatedSize += sizeof(BlobHeader);
  691. //
  692. // Verify TreeHeader and Data
  693. //
  695. treeHead = (TreeHeader *)(Blob + calculatedSize);
  697. if (!SrVerifyTree(treeHead,"PRIMARY TREE",calculatedSize))
  698. {
  699. return FALSE;
  700. }
  702. calculatedSize += treeHead->m_BlobHeader.m_dwMaxSize;
  704. //
  705. // Verify HashHeader and DATA
  706. //
  708. hashHead = (ListHeader *)(Blob + calculatedSize);
  710. if (!SrVerifyHash(hashHead,"PRIMARY HASH",calculatedSize))
  711. {
  712. return FALSE;
  713. }
  715. calculatedSize += hashHead->m_BlobHeader.m_dwMaxSize;
  717. //
  718. // Validate total SIZE
  719. //
  721. if (calculatedSize != blobHead->m_dwMaxSize)
  722. {
  723. SrTrace( BLOB_VERIFICATION,
  724. ("sr!SrVerifyBlob: Invalid PRIMARY BLOB size, is %08x, calculated to be %08x\n",
  725. blobHead->m_dwMaxSize,
  726. calculatedSize) );
  727. return FALSE;
  728. }
  730. return TRUE;
  731. }