archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 5c6fe3db62
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '5c6fe3db62'
${ noResults }
windows-server-2003/ds/netapi/netlib/rdrfsctl.c

564 lines
19 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. /*++
  3. Copyright (c) 1991-1993 Microsoft Corporation
  5. Module Name:
  7. RdrFsCtl.c
  9. Abstract:
  11. NetpRdrFsControlTree performs an FSCTL (file system control) operation
  12. on a given tree connection name.
  14. Author:
  16. John Rogers (JohnRo) 26-Mar-1991
  18. Environment:
  20. Only runs under NT; has an NT-specific interface (with Win32 types).
  21. Requires ANSI C extensions: slash-slash comments, long external names.
  23. Revision History:
  25. 26-Mar-91 JohnRo
  26. Created.
  27. 02-Apr-1991 JohnRo
  28. Moved NetpRdrFsControlTree to <netlibnt.h>. Use IF_DEBUG and
  29. NetpNtStatusToApiStatus().
  30. 10-Apr-1991 JohnRo
  31. Various changes suggested by LINT.
  32. 16-Apr-1991 JohnRo
  33. Added a little more debug output.
  34. 07-May-1991 JohnRo
  35. Implement UNICODE. Avoid NET_API_FUNCTION.
  36. 14-Nov-1991 JohnRo
  37. RAID 4407: "NET VIEW" to an NT server gives 2140.
  38. Made changes suggested by PC-LINT. Use more FORMAT_ equates.
  39. Display unexpected create file error even if trace off.
  40. 21-Nov-1991 JohnRo
  41. Removed NT dependencies to reduce recompiles.
  42. 22-Sep-1992 JohnRo
  43. RAID 6739: Browser too slow when not logged into browsed domain.
  44. 21-Jun-1993 JohnRo
  45. RAID 14180: NetServerEnum never returns (alignment bug in
  46. RxpConvertDataStructures).
  47. Also quiet some debug output if other machine just isn't there.
  48. Added tree name to unexpected error debug messages.
  49. Made changes suggested by PC-LINT 5.0
  50. Use NetpKdPrint() where possible.
  51. Use PREFIX_ equates.
  53. --*/
  55. // These must be included first:
  57. #include <nt.h> // IN, etc. (Needed by ntddnfs.h and others.)
  58. #include <windef.h> // LPVOID, etc.
  59. #include <lmcons.h> // NET_API_STATUS, etc.
  61. // These may be included in any order:
  63. #include <debuglib.h> // IF_DEBUG().
  64. #include <lmerr.h> // NERR_Success, etc.
  65. #include <names.h> // NetpIsRemoteNameValid().
  66. #include <netdebug.h> // FORMAT_NTSTATUS, NetpKdPrint(), etc.
  67. #include <netlib.h> // NetpMemoryAllocate().
  68. #include <netlibnt.h> // My prototype.
  69. #include <ntddnfs.h> // DD_NFS_DEVICE_NAME, EA_NAME_ equates, etc.
  70. #include <ntioapi.h> // NtFsControlFile().
  71. #include <ntrtl.h> // Rtl APIs.
  72. #include <ntstatus.h> // NT_SUCCESS(), STATUS_PENDING, etc.
  73. #include <prefix.h> // PREFIX_ equates.
  74. #include <tstr.h> // STRCAT(), STRCPY(), STRLEN().
  75. #include <lmuse.h> // USE_IPC...
  76. #include <align.h> // ALIGN_xxx
  78. NET_API_STATUS
  79. NetpRdrFsControlTree(
  80. IN LPTSTR TreeName,
  81. IN LPTSTR TransportName OPTIONAL,
  82. IN DWORD ConnectionType,
  83. IN DWORD FsControlCode,
  84. IN LPVOID SecurityDescriptor OPTIONAL,
  85. IN LPVOID InputBuffer OPTIONAL,
  86. IN DWORD InputBufferSize,
  87. OUT LPVOID OutputBuffer OPTIONAL,
  88. IN DWORD OutputBufferSize,
  89. IN BOOL NoPermissionRequired
  90. )
  92. /*++
  94. Routine Description:
  96. NetpRdrFsControlTree performs a given FSCTL (file system control)
  97. on a given tree connection name.
  99. Arguments:
  101. TreeName - Remote name to do fsctl to (in \\server\share format).
  103. FsControlCode - function code to pass to the redirector. These are
  104. defined in <ntddnfs.h>.
  106. SecurityDescriptor - optionally points to a security descriptor to be
  107. used when creating the tree connection.
  109. InputBuffer - optionally points to a structure to be passed to the
  110. redirector.
  112. InputBufferSize - size of InputBuffer in bytes; must be zero if
  113. InputBuffer is a NULL pointer.
  115. OutputBuffer - optionally points to a structure to be filled in by the
  116. redirector.
  118. OutputBufferSize - size of OutputBuffer in bytes; must be zero if
  119. OutputBuffer is a NULL pointer.
  121. NoPermissionRequired - TRUE if this is a no permission required API. (I.e.
  122. TRUE if the null session may be used.)
  124. Return Value:
  126. NET_API_STATUS
  128. --*/
  130. {
  131. NET_API_STATUS ApiStatus;
  132. IO_STATUS_BLOCK iosb;
  133. NTSTATUS ntstatus; // Status from NT operations.
  134. OBJECT_ATTRIBUTES objattrTreeConn; // Attrs for tree conn.
  135. LPTSTR pszTreeConn = NULL; // See strTreeConn below.
  136. UNICODE_STRING ucTreeConn;
  137. HANDLE TreeConnHandle = NULL;
  139. PFILE_FULL_EA_INFORMATION EaBuffer = NULL;
  140. PFILE_FULL_EA_INFORMATION Ea;
  141. USHORT TransportNameSize = 0;
  142. ULONG EaBufferSize = 0;
  143. PWSTR UnicodeTransportName = NULL;
  144. BOOLEAN ImpersonatingAnonymous = FALSE;
  145. HANDLE CurrentToken = NULL;
  147. UCHAR EaNameDomainNameSize = (UCHAR) (ROUND_UP_COUNT(
  148. strlen(EA_NAME_DOMAIN) + sizeof(CHAR),
  149. ALIGN_WCHAR
  150. ) - sizeof(CHAR));
  152. UCHAR EaNamePasswordSize = (UCHAR) (ROUND_UP_COUNT(
  153. strlen(EA_NAME_PASSWORD) + sizeof(CHAR),
  154. ALIGN_WCHAR
  155. ) - sizeof(CHAR));
  157. UCHAR EaNameTransportNameSize = (UCHAR) (ROUND_UP_COUNT(
  158. strlen(EA_NAME_TRANSPORT) + sizeof(CHAR),
  159. ALIGN_WCHAR
  160. ) - sizeof(CHAR));
  162. UCHAR EaNameTypeSize = (UCHAR) (ROUND_UP_COUNT(
  163. strlen(EA_NAME_TYPE) + sizeof(CHAR),
  164. ALIGN_DWORD
  165. ) - sizeof(CHAR));
  167. UCHAR EaNameUserNameSize = (UCHAR) (ROUND_UP_COUNT(
  168. strlen(EA_NAME_USERNAME) + sizeof(CHAR),
  169. ALIGN_WCHAR
  170. ) - sizeof(CHAR));
  172. USHORT TypeSize = sizeof(ULONG);
  177. IF_DEBUG(RDRFSCTL) {
  178. NetpKdPrint(( PREFIX_NETLIB
  179. "NetpRdrFsControlTree: entered, TreeName='"
  180. FORMAT_LPTSTR "', " FORMAT_LPTSTR " session.\n",
  181. TreeName,
  182. NoPermissionRequired ? TEXT("null") : TEXT("non-null") ));
  183. }
  185. if ((TreeName == NULL) || (TreeName[0] == 0)) {
  186. ApiStatus = ERROR_INVALID_PARAMETER;
  187. goto Cleanup;
  188. }
  190. if (! NetpIsRemoteNameValid(TreeName)) {
  191. ApiStatus = ERROR_INVALID_PARAMETER;
  192. goto Cleanup;
  193. }
  195. //
  196. // Build NT-style name for what we're connecting to. Note that there is
  197. // NOT a pair of backslashes anywhere in this name.
  198. //
  200. {
  201. DWORD NameSize =
  203. // /Device/LanManRedirector / server/share \0
  204. ( ( STRLEN((LPTSTR)DD_NFS_DEVICE_NAME_U) + 1 + STRLEN(TreeName) + 1 ) )
  205. * sizeof(TCHAR);
  207. pszTreeConn = (LPTSTR)NetpMemoryAllocate( NameSize );
  208. }
  210. if (pszTreeConn == NULL) {
  211. ApiStatus = ERROR_NOT_ENOUGH_MEMORY;
  212. goto Cleanup;
  213. }
  215. //
  216. // Build the tree connect name.
  217. //
  219. (void) STRCPY(pszTreeConn, (LPTSTR) DD_NFS_DEVICE_NAME_U);
  221. //
  222. // NOTE: We add 1, (not sizeof(TCHAR)) because pointer arithmetic is done
  223. // in terms of multiples of sizeof(*pointer), not bytes
  224. //
  226. (void) STRCAT(pszTreeConn, TreeName+1); // \server\share
  228. RtlInitUnicodeString(&ucTreeConn, pszTreeConn);
  230. IF_DEBUG(RDRFSCTL) {
  231. NetpKdPrint(( PREFIX_NETLIB
  232. "NetpRdrFsControlTree: UNICODE name is " FORMAT_LPWSTR
  233. ".\n", ucTreeConn.Buffer ));
  234. }
  238. //
  239. // Calculate the number of bytes needed for the EA buffer.
  240. // This may have the transport name. For regular sessions, the user
  241. // name, password, and domain name are implicit. For null sessions, we
  242. // must give 0-len user name, 0-len password, and 0-len domain name.
  243. //
  245. if (ARGUMENT_PRESENT(TransportName)) {
  246. ASSERT(ConnectionType == USE_IPC);
  248. UnicodeTransportName = TransportName;
  249. TransportNameSize = (USHORT) (wcslen(UnicodeTransportName) * sizeof(WCHAR));
  251. EaBufferSize += ROUND_UP_COUNT(
  252. FIELD_OFFSET(FILE_FULL_EA_INFORMATION, EaName[0]) +
  253. EaNameTransportNameSize + sizeof(CHAR) +
  254. TransportNameSize,
  255. ALIGN_DWORD
  256. );
  257. }
  260. EaBufferSize += ((ULONG)FIELD_OFFSET( FILE_FULL_EA_INFORMATION, EaName[0]))+
  261. EaNameTypeSize + sizeof(CHAR) +
  262. TypeSize;
  265. //
  266. // Allocate the EA buffer
  267. //
  269. if ((EaBuffer = NetpMemoryAllocate( EaBufferSize )) == NULL) {
  270. ApiStatus = ERROR_NOT_ENOUGH_MEMORY;
  271. goto Cleanup;
  272. }
  274. //
  275. // Fill-in the EA buffer.
  276. //
  278. RtlZeroMemory(EaBuffer, EaBufferSize);
  280. Ea = EaBuffer;
  282. if (ARGUMENT_PRESENT(TransportName)) {
  284. //
  285. // Copy the EA name into EA buffer. EA name length does not
  286. // include the zero terminator.
  287. //
  288. strcpy(Ea->EaName, EA_NAME_TRANSPORT);
  289. Ea->EaNameLength = EaNameTransportNameSize;
  291. //
  292. // Copy the EA value into EA buffer. EA value length does not
  293. // include the zero terminator.
  294. //
  295. (VOID) wcscpy(
  296. (LPWSTR) &(Ea->EaName[EaNameTransportNameSize + sizeof(CHAR)]),
  297. UnicodeTransportName
  298. );
  300. Ea->EaValueLength = TransportNameSize;
  302. Ea->NextEntryOffset = ROUND_UP_COUNT(
  303. FIELD_OFFSET( FILE_FULL_EA_INFORMATION, EaName[0]) +
  304. EaNameTransportNameSize + sizeof(CHAR) +
  305. TransportNameSize,
  306. ALIGN_DWORD
  307. );
  308. Ea->Flags = 0;
  310. (ULONG_PTR) Ea += Ea->NextEntryOffset;
  311. }
  316. //
  317. // Copy the EA for the connection type name into EA buffer. EA name length
  318. // does not include the zero terminator.
  319. //
  320. strcpy(Ea->EaName, EA_NAME_TYPE);
  321. Ea->EaNameLength = EaNameTypeSize;
  323. *((PULONG) &(Ea->EaName[EaNameTypeSize + sizeof(CHAR)])) = ConnectionType;
  325. Ea->EaValueLength = TypeSize;
  327. Ea->NextEntryOffset = 0;
  328. Ea->Flags = 0;
  330. // Set object attributes for the tree conn.
  331. InitializeObjectAttributes(
  332. & objattrTreeConn, // obj attr to init
  333. (LPVOID) & ucTreeConn, // string to use
  334. OBJ_CASE_INSENSITIVE, // Attributes
  335. NULL, // Root directory
  336. SecurityDescriptor); // Security Descriptor
  338. //
  339. // If the caller doesn't want to call as himself,
  340. // impersonate the anonymous token.
  341. //
  343. if (NoPermissionRequired) {
  345. //
  346. // Check to see if we're already impsonating
  347. //
  349. ntstatus = NtOpenThreadToken(
  350. NtCurrentThread(),
  351. TOKEN_IMPERSONATE,
  352. TRUE, // as self to ensure we never fail
  353. &CurrentToken
  354. );
  356. if ( ntstatus == STATUS_NO_TOKEN ) {
  357. //
  358. // We're not already impersonating
  359. CurrentToken = NULL;
  361. } else if ( !NT_SUCCESS(ntstatus) ) {
  362. ApiStatus = NetpNtStatusToApiStatus(ntstatus);
  363. NetpKdPrint(( PREFIX_NETLIB
  364. "NetpRdrFsControlTree: cannot NtOpenThreadToken: 0x%lx\n",
  365. ntstatus ));
  367. goto Cleanup;
  368. }
  371. //
  372. // Impersonate the anonymous token
  373. //
  374. ntstatus = NtImpersonateAnonymousToken( NtCurrentThread() );
  376. if ( !NT_SUCCESS(ntstatus)) {
  377. ApiStatus = NetpNtStatusToApiStatus(ntstatus);
  378. NetpKdPrint(( PREFIX_NETLIB
  379. "NetpRdrFsControlTree: cannot NtImpersonatedAnonymousToken: 0x%lx\n",
  380. ntstatus ));
  382. goto Cleanup;
  383. }
  385. ImpersonatingAnonymous = TRUE;
  387. }
  389. //
  390. // Open a tree connection to the remote server.
  391. //
  393. IF_DEBUG(RDRFSCTL) {
  394. NetpKdPrint(( PREFIX_NETLIB
  395. "NetpRdrFsControlTree: opening " FORMAT_LPTSTR ".\n",
  396. pszTreeConn ));
  397. }
  398. ntstatus = NtCreateFile(
  399. &TreeConnHandle, // ptr to handle
  400. SYNCHRONIZE // desired...
  401. | GENERIC_READ | GENERIC_WRITE, // ...access
  402. & objattrTreeConn, // name & attributes
  403. & iosb, // I/O status block.
  404. NULL, // alloc size.
  405. FILE_ATTRIBUTE_NORMAL, // (ignored)
  406. FILE_SHARE_READ | FILE_SHARE_WRITE, // ...access
  407. FILE_OPEN_IF, // create disposition
  408. FILE_CREATE_TREE_CONNECTION // create...
  409. | FILE_SYNCHRONOUS_IO_NONALERT, // ...options
  410. EaBuffer, // EA buffer
  411. EaBufferSize ); // Ea buffer size
  414. if (! NT_SUCCESS(ntstatus)) {
  416. ApiStatus = NetpNtStatusToApiStatus(ntstatus);
  417. if (ApiStatus == ERROR_BAD_NET_NAME) {
  418. ApiStatus = NERR_BadTransactConfig; // Special meaning if no IPC$
  419. }
  421. if (ApiStatus != ERROR_BAD_NETPATH) {
  422. NetpKdPrint(( PREFIX_NETLIB
  423. "NetpRdrFsControlTree: unexpected create error,\n"
  424. " tree name='" FORMAT_LPTSTR "', "
  425. "ntstatus=" FORMAT_NTSTATUS ",\n"
  426. " iosb.Status=" FORMAT_NTSTATUS ", "
  427. "iosb.Info=" FORMAT_HEX_ULONG ", "
  428. " returning " FORMAT_API_STATUS ".\n",
  429. TreeName, ntstatus,
  430. iosb.Status, iosb.Information, ApiStatus ));
  431. }
  433. goto Cleanup;
  434. }
  436. // Do the FSCTL.
  437. IF_DEBUG(RDRFSCTL) {
  438. NetpKdPrint(( PREFIX_NETLIB
  439. "NetpRdrFsControlTree: doing fsctl...\n" ));
  440. }
  441. ntstatus = NtFsControlFile(
  442. TreeConnHandle, // handle
  443. NULL, // no event
  444. NULL, // no APC routine
  445. NULL, // no APC context
  446. & iosb, // I/O stat blk (set)
  447. FsControlCode, // func code
  448. InputBuffer,
  449. InputBufferSize,
  450. OutputBuffer,
  451. OutputBufferSize);
  453. {
  454. // The additional scope is to localize all the changes for deleting the
  455. // connection. When a connection is opened with the FILE_CREATE_TREE_CONNECTION
  456. // flag set, the rdr takes an additional reference on the connection. In order
  457. // to delete the connection this additional reference needs to be taken off
  458. // by issuing a FSCTL_LMR_DELETE_CONNECTION.
  460. LMR_REQUEST_PACKET Rrp; // Redirector request packet
  461. NTSTATUS Status;
  463. RtlZeroMemory(&Rrp,sizeof(LMR_REQUEST_PACKET));
  464. Rrp.Level = USE_FORCE; // this tells rdr2 to take away the extra reference
  465. // to connection strucutre even when files are open.
  466. // BUG #381842
  467. Rrp.Version = REQUEST_PACKET_VERSION;
  469. Status = NtFsControlFile(
  470. TreeConnHandle, // handle
  471. NULL, // no event
  472. NULL, // no APC routine
  473. NULL, // no APC context
  474. &iosb, // I/O stat blk (set)
  475. FSCTL_LMR_DELETE_CONNECTION, // func code
  476. &Rrp,
  477. sizeof(LMR_REQUEST_PACKET),
  478. NULL,
  479. 0);
  481. /*
  482. NetpKdPrint(( PREFIX_NETLIB
  483. "NetpRdrFsControlTree: "
  484. "Deleting tree connection: "
  485. FORMAT_NTSTATUS "\n",
  486. Status ));
  487. */
  489. IF_DEBUG(RDRFSCTL) {
  490. if (!NT_SUCCESS(Status)) {
  491. NetpKdPrint(( PREFIX_NETLIB
  492. "NetpRdrFsControlTree: "
  493. "Unexpected error Deleting tree connection: "
  494. FORMAT_NTSTATUS "\n",
  495. Status ));
  496. }
  497. }
  498. }
  500. if (! NT_SUCCESS(ntstatus)) {
  502. ApiStatus = NetpNtStatusToApiStatus(ntstatus);
  504. NetpKdPrint(( PREFIX_NETLIB
  505. "NetpRdrFsControlTree: unexpected FSCTL error,\n"
  506. " tree name='" FORMAT_LPTSTR "', "
  507. "ntstatus=" FORMAT_NTSTATUS ".\n"
  508. " ApiStatus=" FORMAT_API_STATUS ", "
  509. "iosb.Status=" FORMAT_NTSTATUS ", "
  510. "iosb.Info=" FORMAT_HEX_ULONG ".\n",
  511. TreeName, ntstatus, ApiStatus, iosb.Status, iosb.Information ));
  513. goto Cleanup;
  514. }
  516. ApiStatus = NERR_Success;
  517. Cleanup:
  518. // Clean up.
  519. if ( TreeConnHandle != NULL ) {
  520. ntstatus = NtClose(TreeConnHandle);
  522. IF_DEBUG(RDRFSCTL) {
  523. if (!NT_SUCCESS(ntstatus)) {
  524. NetpKdPrint(( PREFIX_NETLIB
  525. "NetpRdrFsControlTree: "
  526. "Unexpected error closing tree connect handle: "
  527. FORMAT_NTSTATUS "\n", ntstatus ));
  528. }
  529. }
  530. }
  532. if ( pszTreeConn != NULL ) {
  533. NetpMemoryFree(pszTreeConn);
  534. }
  536. if (EaBuffer != NULL) {
  537. NetpMemoryFree(EaBuffer);
  538. }
  540. if ( ImpersonatingAnonymous ) {
  542. ntstatus = NtSetInformationThread(
  543. NtCurrentThread(),
  544. ThreadImpersonationToken,
  545. &CurrentToken,
  546. sizeof(HANDLE)
  547. );
  549. if (!NT_SUCCESS(ntstatus)) {
  550. NetpKdPrint(( PREFIX_NETLIB
  551. "NetpRdrFsControlTree: "
  552. "Unexpected error reverting to self: "
  553. FORMAT_NTSTATUS "\n", ntstatus ));
  554. }
  556. }
  558. if ( CurrentToken != NULL ) {
  559. NtClose( CurrentToken );
  560. }
  562. return ApiStatus;
  564. } // NetpRdrFsControlTree