archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 5c6fe3db62
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '5c6fe3db62'
${ noResults }
windows-server-2003/base/pnp/umpnpmgr/secutil.c

601 lines
12 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. /*++
  3. Copyright (c) Microsoft Corporation. All rights reserved.
  5. Module Name:
  7. secutil.c
  9. Abstract:
  11. This module contains security-related utility routines.
  13. GetUserSid
  14. GetInteractiveSid
  16. IsClientLocal
  17. IsClientUsingLocalConsole
  18. IsClientInteractive
  20. Author:
  22. James G. Cavalaris (jamesca) 31-Jan-2002
  24. Environment:
  26. User-mode only.
  28. Revision History:
  30. 31-Jan-2002 Jim Cavalaris (jamesca)
  32. Creation and initial implementation.
  34. --*/
  37. //
  38. // includes
  39. //
  40. #include "precomp.h"
  41. #pragma hdrstop
  42. #include "umpnpi.h"
  43. #include "umpnpdat.h"
  45. #pragma warning(push)
  46. #pragma warning(disable:4214)
  47. #pragma warning(disable:4201)
  48. #include <winsta.h>
  49. #pragma warning(pop)
  50. #include <syslib.h>
  56. PSID
  57. GetUserSid(
  58. IN HANDLE hUserToken
  59. )
  61. /*++
  63. Routine Description:
  65. Retrieves the corresponding user SID for the specified user access token.
  67. Arguments:
  69. hUserToken -
  71. Specifies a handle to a user access token.
  73. Return Value:
  75. If successful, returns a pointer to an allocated buffer containing the SID
  76. for the specified user access token. Otherwise, returns NULL.
  78. Notes:
  80. If successful, it is responsibility of the caller to free the the returned
  81. buffer from the ghPnPHeap with HeapFree.
  83. --*/
  85. {
  86. BOOL bResult;
  87. DWORD cbBuffer, cbRequired;
  88. PTOKEN_USER pUserInfo = NULL;
  89. PSID pUserSid = NULL;
  92. //
  93. // Determine the size of buffer we need to store the TOKEN_USER information
  94. // for the supplied user access token. The TOKEN_USER structure contains
  95. // the SID_AND_ATTRIBUTES information for the User.
  96. //
  98. cbBuffer = 0;
  100. bResult =
  101. GetTokenInformation(
  102. hUserToken,
  103. TokenUser,
  104. NULL,
  105. cbBuffer,
  106. &cbRequired);
  108. ASSERT(bResult == FALSE);
  110. if (bResult) {
  111. SetLastError(ERROR_INVALID_DATA);
  112. goto Clean0;
  113. } else if (GetLastError() != ERROR_INSUFFICIENT_BUFFER) {
  114. goto Clean0;
  115. }
  117. ASSERT(cbRequired > 0);
  119. //
  120. // Allocate a buffer for the TOKEN_USER data.
  121. //
  123. cbBuffer = cbRequired;
  125. pUserInfo =
  126. (PTOKEN_USER)HeapAlloc(
  127. ghPnPHeap, 0, cbBuffer);
  129. if (pUserInfo == NULL) {
  130. SetLastError(ERROR_NOT_ENOUGH_MEMORY);
  131. goto Clean0;
  132. }
  134. //
  135. // Retrieve the TOKEN_USER data.
  136. //
  138. bResult =
  139. GetTokenInformation(
  140. hUserToken,
  141. TokenUser,
  142. pUserInfo,
  143. cbBuffer,
  144. &cbRequired);
  146. if (!bResult) {
  147. goto Clean0;
  148. }
  150. ASSERT(pUserInfo->User.Sid != NULL);
  152. //
  153. // Check that the returned SID is valid.
  154. // Note - calling GetLastError is not valid for IsValidSid!
  155. //
  157. ASSERT(IsValidSid(pUserInfo->User.Sid));
  159. if (!IsValidSid(pUserInfo->User.Sid)) {
  160. SetLastError(ERROR_INVALID_DATA);
  161. goto Clean0;
  162. }
  164. //
  165. // Make a copy of the User SID_AND_ATTRIBUTES.
  166. //
  168. cbBuffer =
  169. GetLengthSid(pUserInfo->User.Sid);
  171. ASSERT(cbBuffer > 0);
  173. pUserSid =
  174. (PSID)HeapAlloc(
  175. ghPnPHeap, 0, cbBuffer);
  177. if (pUserSid == NULL) {
  178. SetLastError(ERROR_NOT_ENOUGH_MEMORY);
  179. goto Clean0;
  180. }
  182. bResult =
  183. CopySid(
  184. cbBuffer,
  185. pUserSid,
  186. pUserInfo->User.Sid);
  188. if (!bResult) {
  189. HeapFree(ghPnPHeap, 0, pUserSid);
  190. pUserSid = NULL;
  191. goto Clean0;
  192. }
  194. //
  195. // Check that the returned SID is valid.
  196. // Note - calling GetLastError is not valid for IsValidSid!
  197. //
  199. ASSERT(IsValidSid(pUserSid));
  201. if (!IsValidSid(pUserSid)) {
  202. SetLastError(ERROR_INVALID_DATA);
  203. HeapFree(ghPnPHeap, 0, pUserSid);
  204. pUserSid = NULL;
  205. goto Clean0;
  206. }
  208. Clean0:
  210. if (pUserInfo != NULL) {
  211. HeapFree(ghPnPHeap, 0, pUserInfo);
  212. }
  214. return pUserSid;
  216. } // GetUserSid
  220. PSID
  221. GetInteractiveSid(
  222. VOID
  223. )
  225. /*++
  227. Routine Description:
  229. Retrieves the Interactive Group SID.
  231. Arguments:
  233. None.
  235. Return Value:
  237. If successful, returns a pointer to an allocated buffer containing the SID
  238. for the Interactive Group. Otherwise, returns NULL.
  240. Notes:
  242. If successful, it is responsibility of the caller to free the the returned
  243. buffer from the ghPnPHeap with HeapFree.
  245. --*/
  247. {
  248. BOOL bResult;
  249. DWORD cbBuffer;
  250. SID_IDENTIFIER_AUTHORITY NtAuthority = SECURITY_NT_AUTHORITY;
  251. PSID pSid = NULL, pInteractiveSid = NULL;
  254. //
  255. // Create the Interactive Group SID
  256. //
  258. bResult =
  259. AllocateAndInitializeSid(
  260. &NtAuthority, 1,
  261. SECURITY_INTERACTIVE_RID,
  262. 0, 0, 0, 0, 0, 0, 0,
  263. &pInteractiveSid);
  265. if (!bResult) {
  266. goto Clean0;
  267. }
  269. ASSERT(pInteractiveSid != NULL);
  271. //
  272. // Check that the returned SID is valid.
  273. // Note - calling GetLastError is not valid for IsValidSid!
  274. //
  276. ASSERT(IsValidSid(pInteractiveSid));
  278. if (!IsValidSid(pInteractiveSid)) {
  279. SetLastError(ERROR_INVALID_DATA);
  280. goto Clean0;
  281. }
  283. //
  284. // Make a copy of the Interactive Group SID.
  285. //
  287. cbBuffer =
  288. GetLengthSid(pInteractiveSid);
  290. ASSERT(cbBuffer > 0);
  292. pSid =
  293. (PSID)HeapAlloc(
  294. ghPnPHeap, 0, cbBuffer);
  296. if (pSid == NULL) {
  297. SetLastError(ERROR_NOT_ENOUGH_MEMORY);
  298. goto Clean0;
  299. }
  301. bResult =
  302. CopySid(
  303. cbBuffer,
  304. pSid,
  305. pInteractiveSid);
  307. if (!bResult) {
  308. HeapFree(ghPnPHeap, 0, pSid);
  309. pSid = NULL;
  310. goto Clean0;
  311. }
  313. //
  314. // Check that the returned SID is valid.
  315. // Note - calling GetLastError is not valid for IsValidSid!
  316. //
  318. ASSERT(IsValidSid(pSid));
  320. if (!IsValidSid(pSid)) {
  321. SetLastError(ERROR_INVALID_DATA);
  322. HeapFree(ghPnPHeap, 0, pSid);
  323. pSid = NULL;
  324. goto Clean0;
  325. }
  327. Clean0:
  329. if (pInteractiveSid != NULL) {
  330. FreeSid(pInteractiveSid);
  331. }
  333. return pSid;
  335. } // GetInteractiveSid
  339. //
  340. // RPC client attributes and group membership routines
  341. //
  343. BOOL
  344. IsClientLocal(
  345. IN handle_t hBinding
  346. )
  348. /*++
  350. Routine Description:
  352. This routine determines if the client associated with hBinding is on the
  353. local machine.
  355. Arguments:
  357. hBinding RPC Binding handle
  359. Return value:
  361. The return value is TRUE if the client is local to this machine, FALSE if
  362. not or if an error occurs.
  364. --*/
  366. {
  367. RPC_STATUS RpcStatus;
  368. UINT ClientLocalFlag;
  371. //
  372. // If the specified RPC binding handle is NULL, this is an internal call so
  373. // we assume that the privilege has already been checked.
  374. //
  376. if (hBinding == NULL) {
  377. return TRUE;
  378. }
  380. //
  381. // Retrieve the ClientLocalFlags from the RPC binding handle.
  382. //
  384. RpcStatus =
  385. I_RpcBindingIsClientLocal(
  386. hBinding,
  387. &ClientLocalFlag);
  389. if (RpcStatus != RPC_S_OK) {
  390. KdPrintEx((DPFLTR_PNPMGR_ID,
  391. DBGF_ERRORS,
  392. "UMPNPMGR: I_RpcBindingIsClientLocal failed, RpcStatus=%d\n",
  393. RpcStatus));
  394. return FALSE;
  395. }
  397. //
  398. // If the ClientLocalFlag is not zero, RPC client is local to server.
  399. //
  401. if (ClientLocalFlag != 0) {
  402. return TRUE;
  403. }
  405. //
  406. // Client is not local to this server.
  407. //
  409. return FALSE;
  411. } // IsClientLocal
  415. BOOL
  416. IsClientUsingLocalConsole(
  417. IN handle_t hBinding
  418. )
  420. /*++
  422. Routine Description:
  424. This routine impersonates the client associated with hBinding and checks
  425. if the client is using the current active console session.
  427. Arguments:
  429. hBinding RPC Binding handle
  431. Return value:
  433. The return value is TRUE if the client is using the current active console
  434. session, FALSE if not or if an error occurs.
  436. --*/
  438. {
  439. RPC_STATUS rpcStatus;
  440. BOOL bResult = FALSE;
  442. //
  443. // First, make sure the client is local to the server.
  444. //
  445. if (!IsClientLocal(hBinding)) {
  446. return FALSE;
  447. }
  449. //
  450. // Impersonate the client to retrieve the impersonation token.
  451. //
  453. rpcStatus = RpcImpersonateClient(hBinding);
  455. if (rpcStatus != RPC_S_OK) {
  456. KdPrintEx((DPFLTR_PNPMGR_ID,
  457. DBGF_ERRORS,
  458. "UMPNPMGR: RpcImpersonateClient failed, error = %d\n",
  459. rpcStatus));
  460. return FALSE;
  461. }
  463. //
  464. // Compare the client's session with the currently active Console session.
  465. //
  467. if (GetClientLogonId() == GetActiveConsoleSessionId()) {
  468. bResult = TRUE;
  469. }
  471. rpcStatus = RpcRevertToSelf();
  473. if (rpcStatus != RPC_S_OK) {
  474. KdPrintEx((DPFLTR_PNPMGR_ID,
  475. DBGF_ERRORS,
  476. "UMPNPMGR: RpcRevertToSelf failed, error = %d\n",
  477. rpcStatus));
  478. ASSERT(rpcStatus == RPC_S_OK);
  479. }
  481. return bResult;
  483. } // IsClientUsingLocalConsole
  487. BOOL
  488. IsClientInteractive(
  489. IN handle_t hBinding
  490. )
  492. /*++
  494. Routine Description:
  496. This routine impersonates the client associated with hBinding and checks
  497. if the client is a member of the INTERACTIVE well-known group.
  499. Arguments:
  501. hBinding RPC Binding handle
  503. Return value:
  505. The return value is TRUE if the client is interactive, FALSE if not
  506. or if an error occurs.
  508. --*/
  510. {
  511. RPC_STATUS rpcStatus;
  512. BOOL bIsMember;
  513. HANDLE hToken;
  514. PSID pInteractiveSid;
  515. BOOL bResult = FALSE;
  518. //
  519. // First, make sure the client is local to the server.
  520. //
  522. if (!IsClientLocal(hBinding)) {
  523. return FALSE;
  524. }
  526. //
  527. // If the specified RPC binding handle is NULL, this is an internal call so
  528. // we assume that the privilege has already been checked.
  529. //
  531. if (hBinding == NULL) {
  532. return TRUE;
  533. }
  535. //
  536. // Retrieve the Interactive Group SID
  537. //
  539. pInteractiveSid =
  540. GetInteractiveSid();
  542. if (pInteractiveSid == NULL) {
  543. return FALSE;
  544. }
  546. //
  547. // Impersonate the client to retrieve the impersonation token.
  548. //
  550. rpcStatus = RpcImpersonateClient(hBinding);
  552. if (rpcStatus != RPC_S_OK) {
  553. KdPrintEx((DPFLTR_PNPMGR_ID,
  554. DBGF_ERRORS,
  555. "UMPNPMGR: RpcImpersonateClient failed, error = %d\n",
  556. rpcStatus));
  557. HeapFree(ghPnPHeap, 0, pInteractiveSid);
  558. return FALSE;
  559. }
  561. if (OpenThreadToken(GetCurrentThread(), TOKEN_QUERY, FALSE, &hToken)) {
  563. if (CheckTokenMembership(hToken,
  564. pInteractiveSid,
  565. &bIsMember)) {
  566. if (bIsMember) {
  567. bResult = TRUE;
  568. }
  569. } else {
  570. KdPrintEx((DPFLTR_PNPMGR_ID,
  571. DBGF_ERRORS,
  572. "UMPNPMGR: CheckTokenMembership failed, error = %d\n",
  573. GetLastError()));
  574. }
  575. CloseHandle(hToken);
  577. } else {
  578. KdPrintEx((DPFLTR_PNPMGR_ID,
  579. DBGF_ERRORS,
  580. "UMPNPMGR: OpenThreadToken failed, error = %d\n",
  581. GetLastError()));
  582. }
  584. HeapFree(ghPnPHeap, 0, pInteractiveSid);
  586. rpcStatus = RpcRevertToSelf();
  588. if (rpcStatus != RPC_S_OK) {
  589. KdPrintEx((DPFLTR_PNPMGR_ID,
  590. DBGF_ERRORS,
  591. "UMPNPMGR: RpcRevertToSelf failed, error = %d\n",
  592. rpcStatus));
  593. ASSERT(rpcStatus == RPC_S_OK);
  594. }
  596. return bResult;
  598. } // IsClientInteractive
  601.