archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 5c6fe3db62
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '5c6fe3db62'
${ noResults }
windows-server-2003/ds/netapi/svcdlls/logonsrv/client/rpcbind.c

694 lines
16 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. /*++
  3. Copyright (c) 1990-1992 Microsoft Corporation
  5. Module Name:
  7. rpcbind.c
  9. Abstract:
  11. Contains the RPC bind and un-bind routines for the Timesource
  12. Service.
  14. Author:
  16. Rajen Shah (rajens) 02-Apr-1991
  18. Environment:
  20. User Mode -Win32
  22. Revision History:
  24. 02-Apr-1991 RajenS
  25. created
  26. 22-May-1992 JohnRo
  27. RAID 9829: winsvc.h and related file cleanup.
  29. --*/
  31. //
  32. // INCLUDES
  33. //
  34. #define NOSERVICE // Avoid <winsvc.h> vs. <lmsvc.h> conflicts.
  35. #include <nt.h>
  36. #include <stdlib.h>
  37. #include <string.h>
  38. #include <rpc.h>
  39. #include <logon_c.h> // includes lmcons.h, lmaccess.h, netlogon.h, ssi.h, windef.h
  40. #include <lmerr.h> // NERR_ and ERROR_ equates.
  41. #include <lmsvc.h>
  42. #include <ntrpcp.h>
  43. #include <tstring.h> // IS_PATH_SEPARATOR ...
  44. #include <nlbind.h> // Prototypes for these routines
  45. #include <icanon.h> // NAMETYPE_*
  47. //
  48. // DataTypes
  49. //
  51. typedef struct _CACHE_ENTRY {
  52. LIST_ENTRY Next;
  53. UNICODE_STRING UnicodeServerNameString;
  54. RPC_BINDING_HANDLE RpcBindingHandle;
  55. ULONG ReferenceCount;
  56. } CACHE_ENTRY, *PCACHE_ENTRY;
  58. //
  59. // STATIC GLOBALS
  60. //
  62. //
  63. // Maintain a cache of RPC binding handles.
  64. //
  66. CRITICAL_SECTION NlGlobalBindingCacheCritSect;
  67. LIST_ENTRY NlGlobalBindingCache;
  71. NET_API_STATUS
  72. NlBindingAttachDll (
  73. VOID
  74. )
  76. /*++
  78. Routine Description:
  80. Initialize the RPC binding handle cache on process attach.
  82. Arguments:
  84. None.
  86. Return Value:
  88. None.
  90. --*/
  91. {
  92. InitializeListHead( &NlGlobalBindingCache );
  94. //
  95. // Initialize the Global Cache Critical Section
  96. //
  98. try {
  99. InitializeCriticalSection( &NlGlobalBindingCacheCritSect );
  100. } except( EXCEPTION_EXECUTE_HANDLER ) {
  101. return STATUS_NO_MEMORY;
  102. }
  104. return NO_ERROR;
  106. }
  109. VOID
  110. NlBindingDetachDll (
  111. VOID
  112. )
  114. /*++
  116. Routine Description:
  118. Cleanup the RPC binding handle cache on process detach.
  120. Arguments:
  122. None.
  124. Return Value:
  126. None.
  128. --*/
  129. {
  131. //
  132. // The binding cache must be empty,
  133. // Netlogon cleans up after itself,
  134. // no one else uses the cache.
  135. //
  137. ASSERT( IsListEmpty( &NlGlobalBindingCache ) );
  138. DeleteCriticalSection( &NlGlobalBindingCacheCritSect );
  139. }
  142. PCACHE_ENTRY
  143. NlBindingFindCacheEntry (
  144. IN LPWSTR UncServerName
  145. )
  147. /*++
  149. Routine Description:
  151. Find the specfied cache entry.
  153. Entered with the NlGlobalBindingCacheCritSect locked.
  155. Arguments:
  157. UncServerName - Name of the server to lookup
  159. Return Value:
  161. NULL - Cache entry not found.
  163. --*/
  164. {
  165. NTSTATUS Status;
  166. PLIST_ENTRY ListEntry;
  167. PCACHE_ENTRY CacheEntry;
  169. UNICODE_STRING UnicodeServerNameString;
  171. //
  172. // Ensure the passed in parameter is really a UNC name
  173. //
  175. if ( UncServerName == NULL ||
  176. !IS_PATH_SEPARATOR( UncServerName[0] ) ||
  177. !IS_PATH_SEPARATOR( UncServerName[1] ) ) {
  178. return NULL;
  179. }
  182. //
  183. // Loop through the cache finding the entry.
  184. //
  186. RtlInitUnicodeString( &UnicodeServerNameString, UncServerName+2 );
  187. for ( ListEntry = NlGlobalBindingCache.Flink;
  188. ListEntry != &NlGlobalBindingCache;
  189. ListEntry = ListEntry->Flink ) {
  191. CacheEntry = CONTAINING_RECORD( ListEntry, CACHE_ENTRY, Next );
  193. // Consider using RtlEqualMemory since the strings will really be
  194. // bit for bit identical since Netlogon flushes this cache before it
  195. // changes the name.
  196. if ( RtlEqualUnicodeString( &UnicodeServerNameString,
  197. &CacheEntry->UnicodeServerNameString,
  198. TRUE ) ) {
  199. return CacheEntry;
  200. }
  202. }
  204. return NULL;
  205. }
  208. NTSTATUS
  209. NlBindingAddServerToCache (
  210. IN LPWSTR UncServerName,
  211. IN NL_RPC_BINDING RpcBindingType
  212. )
  214. /*++
  216. Routine Description:
  218. Bind to the specified server and add it to the binding cache.
  220. Arguments:
  222. UncServerName - UNC Name of the server to bind to.
  224. RpcBindingType - Determines whether to use unauthenticated TCP/IP transport instead of
  225. named pipes.
  227. Return Value:
  229. Status of the operation
  231. --*/
  232. {
  233. NTSTATUS Status;
  234. RPC_STATUS RpcStatus;
  235. PCACHE_ENTRY CacheEntry;
  237. ASSERT ( UncServerName != NULL &&
  238. IS_PATH_SEPARATOR( UncServerName[0] ) &&
  239. IS_PATH_SEPARATOR( UncServerName[1] ) );
  241. //
  242. // If there already is an entry in the cache,
  243. // just increment the reference count.
  244. //
  246. EnterCriticalSection( &NlGlobalBindingCacheCritSect );
  248. CacheEntry = NlBindingFindCacheEntry( UncServerName );
  250. if ( CacheEntry != NULL ) {
  252. CacheEntry->ReferenceCount++;
  253. Status = STATUS_SUCCESS;
  255. //
  256. // Otherwise, allocate an entry and bind to the named server.
  257. //
  259. } else {
  261. UNICODE_STRING UnicodeServerNameString;
  263. //
  264. // Allocate the cache entry
  265. //
  267. RtlInitUnicodeString( &UnicodeServerNameString, UncServerName+2 );
  269. CacheEntry = LocalAlloc( 0,
  270. sizeof(CACHE_ENTRY) +
  271. UnicodeServerNameString.Length );
  273. if ( CacheEntry == NULL ) {
  275. Status = STATUS_NO_MEMORY;
  277. } else {
  280. //
  281. // Initialize the cache entry.
  282. //
  283. // The caller has a 'reference' to the entry.
  284. //
  286. CacheEntry->UnicodeServerNameString.Buffer = (LPWSTR)(CacheEntry+1);
  287. CacheEntry->UnicodeServerNameString.Length =
  288. CacheEntry->UnicodeServerNameString.MaximumLength =
  289. UnicodeServerNameString.Length;
  290. RtlCopyMemory( CacheEntry->UnicodeServerNameString.Buffer,
  291. UnicodeServerNameString.Buffer,
  292. CacheEntry->UnicodeServerNameString.Length );
  294. CacheEntry->ReferenceCount = 1;
  296. //
  297. // Bind to the server
  298. // (Don't hold the crit sect for this potentially very long time.)
  299. //
  301. LeaveCriticalSection( &NlGlobalBindingCacheCritSect );
  302. RpcStatus = NlRpcpBindRpc (
  303. UncServerName,
  304. SERVICE_NETLOGON,
  305. L"Security=Impersonation Dynamic False",
  306. RpcBindingType,
  307. &CacheEntry->RpcBindingHandle );
  308. EnterCriticalSection( &NlGlobalBindingCacheCritSect );
  310. if ( RpcStatus == 0 ) {
  312. //
  313. // Link the cache entry into the list
  314. //
  315. // If this were a general purpose routine, I'd have to check
  316. // if someone inserted this cache entry already while we had
  317. // the crit sect unlocked. However, the only caller is the
  318. // netlogon service that has exclusive access to this client.
  319. //
  320. // Insert the entry at the front of the list. Specifically,
  321. // insert it in front of the binding entry for the same
  322. // name but a different binding type. That'll ensure a
  323. // newer binding type is used instead of an older binding type.
  324. //
  326. InsertHeadList( &NlGlobalBindingCache, &CacheEntry->Next );
  327. Status = STATUS_SUCCESS;
  329. } else {
  331. Status = I_RpcMapWin32Status( RpcStatus );
  333. (VOID) LocalFree( CacheEntry );
  334. }
  336. }
  338. }
  340. //
  341. // Return to the caller.
  342. //
  344. LeaveCriticalSection( &NlGlobalBindingCacheCritSect );
  346. return Status;
  347. }
  350. NTSTATUS
  351. NlBindingSetAuthInfo (
  352. IN LPWSTR UncServerName,
  353. IN NL_RPC_BINDING RpcBindingType,
  354. IN BOOL SealIt,
  355. IN PVOID ClientContext,
  356. IN LPWSTR ServerContext
  357. )
  359. /*++
  361. Routine Description:
  363. Bind to the specified server and add it to the binding cache.
  365. Arguments:
  367. UncServerName - UNC Name of the server to bind to.
  369. RpcBindingType - Determines whether to use unauthenticated TCP/IP transport instead of
  370. named pipes.
  372. SealIt - Specifies that the secure channel should be sealed (rather than
  373. simply signed)
  375. ClientContext - Context used by the client side of the NETLOGON security
  376. package to associate this call with the existing secure channel.
  378. ServerContext - Context used by the server side of the NETLOGON security
  379. package to associate this call with the existing secure channel.
  381. Return Value:
  383. Status of the operation
  385. --*/
  386. {
  387. NTSTATUS Status;
  388. RPC_STATUS RpcStatus;
  389. PCACHE_ENTRY CacheEntry;
  391. ASSERT ( UncServerName != NULL &&
  392. IS_PATH_SEPARATOR( UncServerName[0] ) &&
  393. IS_PATH_SEPARATOR( UncServerName[1] ) );
  395. //
  396. // Find the cache entry.
  397. //
  399. EnterCriticalSection( &NlGlobalBindingCacheCritSect );
  401. CacheEntry = NlBindingFindCacheEntry( UncServerName );
  403. if ( CacheEntry == NULL ) {
  404. LeaveCriticalSection( &NlGlobalBindingCacheCritSect );
  405. return RPC_NT_INVALID_BINDING;
  406. }
  409. //
  410. // Tell RPC to start doing secure RPC
  411. //
  413. RpcStatus = RpcBindingSetAuthInfoW(
  414. CacheEntry->RpcBindingHandle,
  415. ServerContext,
  416. SealIt ? RPC_C_AUTHN_LEVEL_PKT_PRIVACY : RPC_C_AUTHN_LEVEL_PKT_INTEGRITY,
  417. RPC_C_AUTHN_NETLOGON, // Netlogon's own security package
  418. ClientContext,
  419. RPC_C_AUTHZ_NAME );
  421. if ( RpcStatus != 0 ) {
  422. LeaveCriticalSection( &NlGlobalBindingCacheCritSect );
  423. return I_RpcMapWin32Status( RpcStatus );
  424. }
  426. LeaveCriticalSection( &NlGlobalBindingCacheCritSect );
  427. return STATUS_SUCCESS;
  428. }
  431. NTSTATUS
  432. NlBindingDecrementAndUnlock (
  433. IN PCACHE_ENTRY CacheEntry
  434. )
  436. /*++
  438. Routine Description:
  440. Decrement the reference count and unlock the NlGlobalBindingCacheCritSect.
  442. If the reference count reaches 0, unbind the interface, unlink the cache
  443. entry and delete it.
  445. Entered with the NlGlobalBindingCacheCritSect locked.
  447. Arguments:
  449. UncServerName - UNC Name of the server to bind to.
  451. Return Value:
  453. Status of the operation
  455. --*/
  456. {
  457. NTSTATUS Status;
  458. RPC_STATUS RpcStatus;
  460. //
  461. // Decrement the reference count
  462. //
  463. // If it didn't reach zero, just unlock the crit sect and return.
  464. //
  466. if ( (--CacheEntry->ReferenceCount) != 0 ) {
  468. LeaveCriticalSection( &NlGlobalBindingCacheCritSect );
  469. return STATUS_PENDING;
  471. }
  473. //
  474. // Remove the entry from the list and unlock the crit sect.
  475. //
  476. // Once the entry is removed from the list, we can safely unlock the
  477. // crit sect. Then we can unbind (a potentially lengthy operation) with
  478. // the crit sect unlocked.
  479. //
  481. RemoveEntryList( &CacheEntry->Next );
  482. LeaveCriticalSection( &NlGlobalBindingCacheCritSect );
  484. //
  485. // Unbind and delete the cache entry.
  486. //
  488. RpcStatus = RpcpUnbindRpc( CacheEntry->RpcBindingHandle );
  490. if ( RpcStatus != 0 ) {
  491. Status = I_RpcMapWin32Status( RpcStatus );
  492. } else {
  493. Status = STATUS_SUCCESS;
  494. }
  496. (VOID) LocalFree( CacheEntry );
  498. return Status;
  500. }
  503. NTSTATUS
  504. NlBindingRemoveServerFromCache (
  505. IN LPWSTR UncServerName,
  506. IN NL_RPC_BINDING RpcBindingType
  507. )
  509. /*++
  511. Routine Description:
  513. Unbind to the specified server and remove it from the binding cache.
  515. Arguments:
  517. UncServerName - UNC Name of the server to unbind from.
  519. RpcBindingType - Determines whether to use unauthenticated TCP/IP transport instead of
  520. named pipes.
  522. Return Value:
  524. Status of the operation
  526. --*/
  527. {
  528. NTSTATUS Status;
  529. PCACHE_ENTRY CacheEntry;
  531. ASSERT ( UncServerName != NULL &&
  532. IS_PATH_SEPARATOR( UncServerName[0] ) &&
  533. IS_PATH_SEPARATOR( UncServerName[1] ) );
  535. //
  536. // If there is no cache entry,
  537. // silently ignore the situation.
  538. //
  540. EnterCriticalSection( &NlGlobalBindingCacheCritSect );
  542. CacheEntry = NlBindingFindCacheEntry( UncServerName );
  544. if ( CacheEntry == NULL ) {
  546. ASSERT( FALSE );
  547. LeaveCriticalSection( &NlGlobalBindingCacheCritSect );
  548. return STATUS_SUCCESS;
  549. }
  551. //
  552. // Decrement the reference count and unlock the crit sect.
  553. //
  555. Status = NlBindingDecrementAndUnlock( CacheEntry );
  557. return Status;
  558. }
  562. handle_t
  563. LOGONSRV_HANDLE_bind (
  564. LOGONSRV_HANDLE UncServerName)
  566. /*++
  568. Routine Description:
  569. This routine calls a common bind routine that is shared by all services.
  571. Arguments:
  573. UncServerName - A pointer to a string containing the name of the server
  574. to bind with.
  576. Return Value:
  578. The binding handle is returned to the stub routine. If the
  579. binding is unsuccessful, a NULL will be returned.
  581. --*/
  582. {
  583. handle_t RpcBindingHandle;
  584. RPC_STATUS RpcStatus;
  585. PCACHE_ENTRY CacheEntry;
  588. //
  589. // If there is a cache entry,
  590. // increment the reference count and use the cached handle
  591. //
  593. EnterCriticalSection( &NlGlobalBindingCacheCritSect );
  595. CacheEntry = NlBindingFindCacheEntry( UncServerName );
  597. if ( CacheEntry != NULL ) {
  599. CacheEntry->ReferenceCount ++;
  600. RpcBindingHandle = CacheEntry->RpcBindingHandle;
  601. LeaveCriticalSection( &NlGlobalBindingCacheCritSect );
  603. return RpcBindingHandle;
  604. }
  606. LeaveCriticalSection( &NlGlobalBindingCacheCritSect );
  608. //
  609. // If there is no cache entry,
  610. // simply create a new binding.
  611. //
  613. RpcStatus = NlRpcpBindRpc (
  614. UncServerName,
  615. SERVICE_NETLOGON,
  616. L"Security=Impersonation Dynamic False",
  617. UseNamedPipe, // Always use named pipe.
  618. &RpcBindingHandle );
  620. if ( RpcStatus != 0 ) {
  621. RpcBindingHandle = NULL;
  622. }
  624. return RpcBindingHandle;
  626. }
  630. void
  631. LOGONSRV_HANDLE_unbind (
  632. LOGONSRV_HANDLE UncServerName,
  633. handle_t RpcBindingHandle)
  635. /*++
  637. Routine Description:
  639. This routine calls a common unbind routine that is shared by
  640. all services.
  643. Arguments:
  645. UncServerName - This is the name of the server from which to unbind.
  647. RpcBindingHandle - This is the binding handle that is to be closed.
  649. Return Value:
  651. none.
  653. --*/
  654. {
  655. RPC_STATUS RpcStatus;
  656. PLIST_ENTRY ListEntry;
  657. PCACHE_ENTRY CacheEntry;
  659. //
  660. // Loop through the cache finding the entry.
  661. //
  663. EnterCriticalSection( &NlGlobalBindingCacheCritSect );
  664. for ( ListEntry = NlGlobalBindingCache.Flink;
  665. ListEntry != &NlGlobalBindingCache;
  666. ListEntry = ListEntry->Flink ) {
  668. CacheEntry = CONTAINING_RECORD( ListEntry, CACHE_ENTRY, Next );
  670. //
  671. // If the cache entry was found,
  672. // decrement the reference count and unlock the crit sect.
  673. //
  675. if ( RpcBindingHandle == CacheEntry->RpcBindingHandle ) {
  676. (VOID) NlBindingDecrementAndUnlock( CacheEntry );
  677. return;
  678. }
  680. }
  681. LeaveCriticalSection( &NlGlobalBindingCacheCritSect );
  684. //
  685. // Just Unbind the handle
  686. //
  688. RpcStatus = RpcpUnbindRpc( RpcBindingHandle );
  689. return;
  691. UNREFERENCED_PARAMETER(UncServerName);
  693. }