Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

1043 lines
29 KiB

  1. /*++
  2. Copyright (c) 2000 Microsoft Corporation
  3. Module Name:
  4. credapi.c
  5. Abstract:
  6. This module contains routines common between the netapi32.dll and LSA server side of
  7. the credential manager.
  8. Author:
  9. Cliff Van Dyke (CliffV) Oct 30, 2000
  10. Revision History:
  11. --*/
  12. #ifndef LSA_SERVER_COMPILED
  13. #include <lsacomp.h>
  14. #include <lmcons.h>
  15. #include "credp.h"
  16. #include <windns.h>
  17. #include <netlibnt.h>
  18. #include <names.h>
  19. #endif // LSA_SERVER_COMPILED
  20. //
  21. // Macros
  22. //
  23. #define CredpIsDomainCredential( _Type ) ( \
  24. (_Type) == CRED_TYPE_DOMAIN_PASSWORD || \
  25. (_Type) == CRED_TYPE_DOMAIN_CERTIFICATE || \
  26. (_Type) == CRED_TYPE_DOMAIN_VISIBLE_PASSWORD )
  27. BOOLEAN
  28. CredpValidateDnsString(
  29. IN OUT LPWSTR String OPTIONAL,
  30. IN BOOLEAN NullOk,
  31. IN DNS_NAME_FORMAT DnsNameFormat,
  32. OUT PULONG StringSize
  33. )
  34. /*++
  35. Routine Description:
  36. This routine validates a passed in string. The string must be a valid DNS name.
  37. Any trailing . is truncated.
  38. Arguments:
  39. String - String to validate
  40. Any trailing . is truncated.
  41. This field is only modified if the routine returns TRUE.
  42. NullOk - if TRUE, a NULL string or zero length string is OK.
  43. DnsNameFormat - Expected format of the name.
  44. StringSize - Returns the length of the string (in bytes) including the
  45. trailing zero character.
  46. This field is only updated if the routine returns TRUE.
  47. Return Values:
  48. TRUE - String is valid.
  49. FALSE - String is not valid.
  50. --*/
  51. {
  52. ULONG TempStringLen;
  53. if ( String == NULL ) {
  54. if ( !NullOk ) {
  55. return FALSE;
  56. }
  57. *StringSize = 0;
  58. return TRUE;
  59. }
  60. TempStringLen = wcslen( String );
  61. if ( TempStringLen == 0 ) {
  62. if ( !NullOk ) {
  63. return FALSE;
  64. }
  65. } else {
  66. //
  67. // Remove the trailing .
  68. //
  69. if ( String[TempStringLen-1] == L'.' ) {
  70. TempStringLen -= 1;
  71. //
  72. // Ensure the string isn't empty now.
  73. //
  74. if ( TempStringLen == 0 ) {
  75. if ( !NullOk ) {
  76. return FALSE;
  77. }
  78. //
  79. // Ensure there aren't multiple trailing .'s
  80. //
  81. } else {
  82. if ( String[TempStringLen-1] == L'.' ) {
  83. return FALSE;
  84. }
  85. }
  86. }
  87. //
  88. // Have DNS finish the validation
  89. //
  90. if ( TempStringLen != 0 ) {
  91. DWORD WinStatus;
  92. WinStatus = DnsValidateName_W( String, DnsNameFormat );
  93. if ( WinStatus != NO_ERROR &&
  94. WinStatus != DNS_ERROR_NON_RFC_NAME ) {
  95. //
  96. // The RFC says hostnames cannot have numeric leftmost labels.
  97. // However, Win 2K servers have such hostnames.
  98. // So, allow them here forever more.
  99. //
  100. if ( DnsNameFormat == DnsNameHostnameFull &&
  101. WinStatus == DNS_ERROR_NUMERIC_NAME ) {
  102. /* Drop through */
  103. } else {
  104. return FALSE;
  105. }
  106. }
  107. }
  108. }
  109. if ( TempStringLen > DNS_MAX_NAME_LENGTH ) {
  110. return FALSE;
  111. }
  112. String[TempStringLen] = L'\0';
  113. *StringSize = (TempStringLen + 1) * sizeof(WCHAR);
  114. return TRUE;
  115. }
  116. BOOLEAN
  117. CredpValidateString(
  118. IN LPWSTR String OPTIONAL,
  119. IN ULONG MaximumLength,
  120. IN BOOLEAN NullOk,
  121. OUT PULONG StringSize
  122. )
  123. /*++
  124. Routine Description:
  125. This routine validates a passed in string.
  126. Arguments:
  127. String - String to validate
  128. MaximumLength - Maximum length of the string (in characters).
  129. NullOk - if TRUE, a NULL string or zero length string is OK.
  130. StringSize - Returns the length of the string (in bytes) including the
  131. trailing zero character.
  132. Return Values:
  133. TRUE - String is valid.
  134. FALSE - String is not valid.
  135. --*/
  136. {
  137. ULONG TempStringLen;
  138. if ( String == NULL ) {
  139. if ( !NullOk ) {
  140. return FALSE;
  141. }
  142. *StringSize = 0;
  143. return TRUE;
  144. }
  145. TempStringLen = wcslen( String );
  146. if ( TempStringLen == 0 ) {
  147. if ( !NullOk ) {
  148. return FALSE;
  149. }
  150. *StringSize = 0;
  151. return TRUE;
  152. }
  153. if ( TempStringLen > MaximumLength ) {
  154. return FALSE;
  155. }
  156. *StringSize = (TempStringLen + 1) * sizeof(WCHAR);
  157. return TRUE;
  158. }
  159. NTSTATUS
  160. CredpValidateUserName(
  161. IN LPWSTR UserName,
  162. IN ULONG Type,
  163. OUT LPWSTR *CanonicalUserName
  164. )
  165. /*++
  166. Routine Description:
  167. This routine validates a passed in user name.
  168. For a password credential, a user name must have one of the following two syntaxes:
  169. <DomainName>\<UserName>
  170. <UserName>@<DnsDomainName>
  171. The name is considered to have the first syntax if the string contains an \.
  172. A string containing a @ is ambiguous since <UserName> may contain an @.
  173. For the second syntax, the last @ in the string is used since <UserName> may
  174. contain an @ but <DnsDomainName> cannot.
  175. For a certificate credential, the user name must be a marshalled cert reference
  176. Arguments:
  177. UserName - Name of user to validate.
  178. Type - Specifies the Type of the credential.
  179. One of the CRED_TYPE_* values should be specified.
  180. CanonicalUserName - Returns a pointer to a buffer containing the user name in canonical form.
  181. Buffer must be freed using MIDL_user_free.
  182. Return Values:
  183. The following status codes may be returned:
  184. STATUS_INVALID_ACCOUNT_NAME - The user name is not valid.
  185. --*/
  186. {
  187. NTSTATUS Status;
  188. LPWSTR SlashPointer;
  189. LPWSTR AtPointer;
  190. LPWSTR LocalUserName = NULL;
  191. ULONG UserNameSize;
  192. ULONG LocalStringSize;
  193. //
  194. // Check the string length
  195. //
  196. if ( !CredpValidateString( UserName,
  197. CRED_MAX_USERNAME_LENGTH,
  198. FALSE,
  199. &UserNameSize ) ) {
  200. Status = STATUS_INVALID_ACCOUNT_NAME;
  201. goto Cleanup;
  202. }
  203. //
  204. // Grab a local writable copy of the string.
  205. //
  206. LocalUserName = (LPWSTR) MIDL_user_allocate( UserNameSize );
  207. if ( LocalUserName == NULL ) {
  208. Status = STATUS_NO_MEMORY;
  209. goto Cleanup;
  210. }
  211. RtlCopyMemory( LocalUserName, UserName, UserNameSize );
  212. //
  213. // Domain credentials need further validation.
  214. //
  215. if ( CredpIsDomainCredential( Type ) ) {
  216. //
  217. // Cert credentials have a marshalled cert reference as the UserName
  218. //
  219. if ( Type == CRED_TYPE_DOMAIN_CERTIFICATE ) {
  220. DWORD WinStatus;
  221. CRED_MARSHAL_TYPE CredType;
  222. PVOID UnmarshalledUsername;
  223. if ( !CredUnmarshalCredentialW( LocalUserName, &CredType, &UnmarshalledUsername ) ) {
  224. WinStatus = GetLastError();
  225. if ( WinStatus == ERROR_INVALID_PARAMETER ) {
  226. Status = STATUS_INVALID_ACCOUNT_NAME;
  227. } else {
  228. Status = NetpApiStatusToNtStatus(WinStatus);
  229. }
  230. goto Cleanup;
  231. }
  232. CredFree( UnmarshalledUsername );
  233. if ( CredType != CertCredential ) {
  234. Status = STATUS_INVALID_ACCOUNT_NAME;
  235. goto Cleanup;
  236. }
  237. //
  238. // Password credentials have UPN or domain\account user names
  239. //
  240. } else {
  241. //
  242. // Classify the input account name.
  243. //
  244. // The name is considered to be <DomainName>\<UserName> if the string
  245. // contains an \.
  246. //
  247. SlashPointer = wcsrchr( LocalUserName, L'\\' );
  248. if ( SlashPointer != NULL ) {
  249. LPWSTR LocalUserNameEnd;
  250. LPWSTR AfterSlashPointer;
  251. //
  252. // Skip the backslash
  253. //
  254. *SlashPointer = L'\0';
  255. AfterSlashPointer = SlashPointer + 1;
  256. //
  257. // Ensure the string to the left of the \ is a valid domain name
  258. //
  259. // (Do DNS name first to allow the name to be canonicalized.)
  260. LocalStringSize = (ULONG)(SlashPointer-LocalUserName+1)*sizeof(WCHAR);
  261. if ( !CredpValidateDnsString( LocalUserName, FALSE, DnsNameDomain, &LocalStringSize ) &&
  262. !NetpIsDomainNameValid( LocalUserName ) ) {
  263. Status = STATUS_INVALID_ACCOUNT_NAME;
  264. goto Cleanup;
  265. }
  266. //
  267. // Ensure the string to the right of the \ is a valid user name
  268. //
  269. if ( !NetpIsUserNameValid( AfterSlashPointer )) {
  270. Status = STATUS_INVALID_ACCOUNT_NAME;
  271. goto Cleanup;
  272. }
  273. //
  274. // If the dns domain name was canonicalized,
  275. // rebuild the complete user name.
  276. //
  277. *SlashPointer = '\\';
  278. LocalUserNameEnd = &LocalUserName[LocalStringSize/sizeof(WCHAR) - 1];
  279. if ( SlashPointer != LocalUserNameEnd ) {
  280. RtlMoveMemory( LocalUserNameEnd,
  281. SlashPointer,
  282. (wcslen(SlashPointer) + 1) * sizeof(WCHAR) );
  283. }
  284. //
  285. // Otherwise the name must be a UPN
  286. //
  287. } else {
  288. //
  289. // A UPN has the syntax <AccountName>@<DnsDomainName>.
  290. // If there are multiple @ signs,
  291. // use the last one since an AccountName can have an @ in it.
  292. //
  293. //
  294. AtPointer = wcsrchr( LocalUserName, L'@' );
  295. if ( AtPointer == NULL ) {
  296. Status = STATUS_INVALID_ACCOUNT_NAME;
  297. goto Cleanup;
  298. }
  299. //
  300. // The string to the left of the @ can really have any syntax.
  301. // But must be non-null.
  302. //
  303. if ( AtPointer == LocalUserName ) {
  304. Status = STATUS_INVALID_ACCOUNT_NAME;
  305. goto Cleanup;
  306. }
  307. //
  308. // Ensure the string to the right of the @ is a DNS domain name
  309. //
  310. AtPointer ++;
  311. if ( !CredpValidateDnsString( AtPointer, FALSE, DnsNameDomain, &LocalStringSize ) ) {
  312. Status = STATUS_INVALID_ACCOUNT_NAME;
  313. goto Cleanup;
  314. }
  315. }
  316. }
  317. }
  318. Status = STATUS_SUCCESS;
  319. //
  320. // Copy parameters back to the caller
  321. //
  322. *CanonicalUserName = LocalUserName;
  323. LocalUserName = NULL;
  324. //
  325. // Cleanup
  326. //
  327. Cleanup:
  328. if ( LocalUserName != NULL ) {
  329. MIDL_user_free( LocalUserName );
  330. }
  331. return Status;
  332. }
  333. NTSTATUS
  334. NET_API_FUNCTION
  335. CredpValidateTargetName(
  336. IN OUT LPWSTR TargetName,
  337. IN ULONG Type,
  338. IN TARGET_NAME_TYPE TargetNameType,
  339. IN LPWSTR *UserNamePointer OPTIONAL,
  340. IN LPDWORD PersistPointer OPTIONAL,
  341. OUT PULONG TargetNameSize,
  342. OUT PWILDCARD_TYPE WildcardTypePointer OPTIONAL,
  343. OUT PUNICODE_STRING NonWildcardedTargetName OPTIONAL
  344. )
  345. /*++
  346. Routine Description:
  347. This routine validates a passed in TargetName and TargetType for a credential.
  348. Arguments:
  349. TargetName - TargetName to validate
  350. The returned buffer is a canonicalized form of the target name.
  351. Type - Specifies the Type of the credential.
  352. One of the CRED_TYPE_* values should be specified.
  353. TargetNameType - Specifies whether the TargetName needs to match UsernameTarget Syntax
  354. UserNamePointer - Points to the address of a string which is the user name on the credential.
  355. If NULL, the UserName is unknown.
  356. If not NULL, the user name is used for UsernameTarget target name validation.
  357. PersistPointer - Points to a DWORD describing the persistence of the credential named by TargetName.
  358. If NULL, the peristence is unknown.
  359. If not NULL, the persistence will be checked to ensure it is valid for TargetName.
  360. TargetNameSize - Returns the length of the TargetName (in bytes) including the
  361. trailing zero character.
  362. WildcardType - If specified, returns the type of the wildcard specified in TargetName
  363. NonWildcardedTargetName - If specified, returns the non-wildcarded form of TargetName.
  364. The caller must free NonWildcardedTargetName->Buffer using MIDL_user_free.
  365. Return Values:
  366. The following status codes may be returned:
  367. STATUS_INVALID_PARAMETER - The TargetName or Type are invalid.
  368. STATUS_INVALID_ACCOUNT_NAME - The user name is not valid.
  369. --*/
  370. {
  371. NTSTATUS Status;
  372. ULONG MaxStringLength;
  373. LPWSTR AllocatedTargetName = NULL;
  374. ULONG TempTargetNameSize;
  375. BOOLEAN TargetNameIsUserName = FALSE;
  376. WILDCARD_TYPE WildcardType;
  377. LPWSTR CanonicalUserName = NULL;
  378. LPWSTR TnAsCanonicalUserName = NULL;
  379. LPWSTR RealTargetName = TargetName; // TargetName sans wildcard chars
  380. ULONG RealTargetNameLength;
  381. //
  382. // Initialization
  383. //
  384. if ( NonWildcardedTargetName != NULL ) {
  385. RtlInitUnicodeString( NonWildcardedTargetName, NULL );
  386. }
  387. //
  388. // Validate the type
  389. //
  390. if ( Type == CRED_TYPE_GENERIC ) {
  391. MaxStringLength = CRED_MAX_GENERIC_TARGET_NAME_LENGTH;
  392. //
  393. // Don't allow generic UsernameTarget credentials
  394. //
  395. if ( TargetNameType == IsUsernameTarget ) {
  396. #ifdef LSA_SERVER_COMPILED
  397. DebugLog(( DEB_TRACE_CRED,
  398. "CredpValidateTargetName: Generic creds cannot be UsernameTarget: %ld.\n",
  399. Type ));
  400. #endif // LSA_SERVER_COMPILED
  401. Status = STATUS_INVALID_PARAMETER;
  402. goto Cleanup;
  403. }
  404. //
  405. // We really know this isn't a UsernameTarget credential
  406. //
  407. TargetNameType = IsNotUsernameTarget;
  408. } else if ( CredpIsDomainCredential( Type ) ) {
  409. MaxStringLength = CRED_MAX_DOMAIN_TARGET_NAME_LENGTH;
  410. ASSERT( CRED_MAX_DOMAIN_TARGET_NAME_LENGTH == DNS_MAX_NAME_LENGTH + 1 + 1 + NNLEN );
  411. } else {
  412. #ifdef LSA_SERVER_COMPILED
  413. DebugLog(( DEB_TRACE_CRED,
  414. "CredpValidateTargetName: %ws: Invalid Type: %ld.\n",
  415. TargetName,
  416. Type ));
  417. #endif // LSA_SERVER_COMPILED
  418. Status = STATUS_INVALID_PARAMETER;
  419. goto Cleanup;
  420. }
  421. //
  422. // If this might be a "UsernameTarget" credential,
  423. // check if the credential looks like a user name.
  424. //
  425. if ( TargetNameType == IsUsernameTarget ||
  426. TargetNameType == MightBeUsernameTarget ) {
  427. //
  428. // Also allow target names that are valid user names
  429. // (Don't canonicalize. We don't have an opportunity to canonicalize short names.)
  430. //
  431. Status = CredpValidateUserName( TargetName, Type, &TnAsCanonicalUserName );
  432. if ( NT_SUCCESS(Status) ) {
  433. //
  434. // If we don't know the user name,
  435. // accept this as valid syntax.
  436. //
  437. if ( UserNamePointer == NULL ) {
  438. MaxStringLength = CRED_MAX_USERNAME_LENGTH;
  439. TargetNameIsUserName = TRUE;
  440. //
  441. // If we know the user name,
  442. // it must match for this syntax to be valid.
  443. //
  444. } else {
  445. UNICODE_STRING UserNameString;
  446. UNICODE_STRING TargetNameString;
  447. //
  448. // Validate the user name before touching it.
  449. //
  450. Status = CredpValidateUserName( *UserNamePointer,
  451. Type,
  452. &CanonicalUserName );
  453. if ( !NT_SUCCESS(Status) ) {
  454. goto Cleanup;
  455. }
  456. RtlInitUnicodeString( &UserNameString, CanonicalUserName );
  457. RtlInitUnicodeString( &TargetNameString, TnAsCanonicalUserName );
  458. //
  459. // The target name might be identical to the UserName.
  460. //
  461. // Such credentials are the "UsernameTarget" credentials.
  462. //
  463. if ( UserNameString.Length != 0 &&
  464. RtlEqualUnicodeString( &TargetNameString,
  465. &UserNameString,
  466. TRUE ) ) {
  467. MaxStringLength = CRED_MAX_USERNAME_LENGTH;
  468. TargetNameIsUserName = TRUE;
  469. }
  470. }
  471. }
  472. //
  473. // If the caller was sure this is a UsernameTarget credential,
  474. // make sure it really was.
  475. //
  476. if ( TargetNameType == IsUsernameTarget && !TargetNameIsUserName ) {
  477. #ifdef LSA_SERVER_COMPILED
  478. DebugLog(( DEB_TRACE_CRED,
  479. "CredpValidateTargetName: %ws: Is 'UsernameTarget' and target name doesn't match user name: %ld.\n",
  480. TargetName,
  481. Type ));
  482. #endif // LSA_SERVER_COMPILED
  483. Status = STATUS_INVALID_PARAMETER;
  484. goto Cleanup;
  485. }
  486. }
  487. //
  488. // Validate the string
  489. //
  490. if ( !CredpValidateString( TargetName,
  491. MaxStringLength,
  492. FALSE, // NULL not OK
  493. TargetNameSize ) ) {
  494. #ifdef LSA_SERVER_COMPILED
  495. DebugLog(( DEB_TRACE_CRED,
  496. "CredpValidateTargetName: Invalid TargetName buffer.\n" ));
  497. #endif // LSA_SERVER_COMPILED
  498. Status = STATUS_INVALID_PARAMETER;
  499. goto Cleanup;
  500. }
  501. //
  502. // For generic credentials,
  503. // that's all the validation needed.
  504. //
  505. WildcardType = WcServerName;
  506. if ( Type == CRED_TYPE_GENERIC ) {
  507. /* Do nothing here */
  508. //
  509. // For domain credentials,
  510. // classify the target name.
  511. //
  512. } else {
  513. //
  514. // The target name might be a user name.
  515. // (If we're not sure, let the other types take precedence.)
  516. //
  517. RealTargetName = TargetName;
  518. RealTargetNameLength = (*TargetNameSize-sizeof(WCHAR))/sizeof(WCHAR);
  519. if ( TargetNameType == IsUsernameTarget && TargetNameIsUserName ) {
  520. WildcardType = WcUserName;
  521. wcscpy( TargetName, TnAsCanonicalUserName );
  522. *TargetNameSize = (wcslen( TargetName ) + 1) * sizeof(WCHAR);
  523. //
  524. // The target name might be of the form <Domain>\*
  525. //
  526. } else if ( RealTargetNameLength > 2 &&
  527. RealTargetName[RealTargetNameLength-1] == L'*' &&
  528. RealTargetName[RealTargetNameLength-2] == L'\\' ) {
  529. //
  530. // Allocate a buffer for the target name so we don't have to modify the
  531. // callers buffer.
  532. //
  533. WildcardType = WcDomainWildcard;
  534. AllocatedTargetName = (LPWSTR) MIDL_user_allocate( *TargetNameSize );
  535. if ( AllocatedTargetName == NULL ) {
  536. Status = STATUS_NO_MEMORY;
  537. goto Cleanup;
  538. }
  539. RtlCopyMemory( AllocatedTargetName, RealTargetName, *TargetNameSize );
  540. RealTargetName = AllocatedTargetName;
  541. RealTargetNameLength -= 2;
  542. RealTargetName[RealTargetNameLength] = '\0';
  543. //
  544. // The domain itself might be a netbios or DNS domain
  545. //
  546. // Do DNS test first. That allows the validate routine to truncate
  547. //
  548. TempTargetNameSize = ((RealTargetNameLength+1)*sizeof(WCHAR));
  549. if ( !CredpValidateDnsString(
  550. RealTargetName,
  551. FALSE,
  552. DnsNameDomain,
  553. &TempTargetNameSize ) &&
  554. !NetpIsDomainNameValid( RealTargetName ) ) {
  555. Status = STATUS_INVALID_PARAMETER;
  556. #ifdef LSA_SERVER_COMPILED
  557. DebugLog(( DEB_TRACE_CRED,
  558. "ValidateTargetName: %ws: TargetName for domain wildcard must netbios or dns domain.\n",
  559. TargetName ));
  560. #endif // LSA_SERVER_COMPILED
  561. goto Cleanup;
  562. }
  563. //
  564. // If Dns truncated,
  565. // put the canonical name back in the callers buffer.
  566. //
  567. RealTargetNameLength = (TempTargetNameSize-sizeof(WCHAR))/sizeof(WCHAR);
  568. RealTargetName[RealTargetNameLength] = '\0';
  569. if ( *TargetNameSize-(2*sizeof(WCHAR)) != TempTargetNameSize ) {
  570. RtlCopyMemory( TargetName,
  571. RealTargetName,
  572. TempTargetNameSize );
  573. TargetName[RealTargetNameLength] = '\\';
  574. TargetName[RealTargetNameLength+1] = '*';
  575. TargetName[RealTargetNameLength+2] = '\0';
  576. *TargetNameSize = (wcslen( TargetName ) + 1) * sizeof(WCHAR);
  577. }
  578. //
  579. // Handle the universal wildcard
  580. //
  581. } else if ( RealTargetNameLength == 1 &&
  582. RealTargetName[0] == L'*' ) {
  583. WildcardType = WcUniversalWildcard;
  584. //
  585. // Handle server wildcards
  586. //
  587. } else if ( CredpValidateDnsString(
  588. TargetName,
  589. FALSE,
  590. DnsNameWildcard,
  591. TargetNameSize )) {
  592. WildcardType = WcServerWildcard;
  593. RealTargetName += 1;
  594. RealTargetNameLength -= 1;
  595. //
  596. // Handle the universal session wildcard
  597. //
  598. } else if ( RealTargetNameLength == CRED_SESSION_WILDCARD_NAME_LENGTH &&
  599. _wcsicmp( RealTargetName, CRED_SESSION_WILDCARD_NAME_W ) == 0 ) {
  600. WildcardType = WcUniversalSessionWildcard;
  601. //
  602. // This target name requires session persistence.
  603. //
  604. if ( PersistPointer != NULL &&
  605. *PersistPointer != CRED_PERSIST_SESSION ) {
  606. Status = STATUS_INVALID_PARAMETER;
  607. #ifdef LSA_SERVER_COMPILED
  608. DebugLog(( DEB_TRACE_CRED,
  609. "ValidateTargetName: %ws: TargetName requires session persistence %ld.\n",
  610. TargetName,
  611. *PersistPointer ));
  612. #endif // LSA_SERVER_COMPILED
  613. goto Cleanup;
  614. }
  615. //
  616. // The target name might be a non-wildcard netbios name.
  617. // The target name might be a non-wildcard dns name.
  618. //
  619. // Do DNS test first. That allows the validate routine to truncate
  620. // the trailing .
  621. //
  622. //
  623. } else if ( CredpValidateDnsString(
  624. TargetName,
  625. FALSE,
  626. DnsNameHostnameFull,
  627. TargetNameSize ) ||
  628. NetpIsDomainNameValid( TargetName ) ) {
  629. WildcardType = WcServerName;
  630. //
  631. // This target name might be a DFS share name
  632. //
  633. // The format is <DfsRoot>\<DfsShare>
  634. //
  635. } else {
  636. LPWSTR SlashPtr;
  637. ULONG SavedTargetNameSize;
  638. //
  639. // A DFS Share has a slash in it
  640. //
  641. SlashPtr = wcschr( TargetName, L'\\' );
  642. if ( SlashPtr != NULL ) {
  643. //
  644. // A DFS share has a share name with the right syntax
  645. //
  646. if ( NetpIsShareNameValid( SlashPtr+1 ) ) {
  647. //
  648. // Allocate a copy of the data for the RealTargetName
  649. //
  650. AllocatedTargetName = (LPWSTR) MIDL_user_allocate( *TargetNameSize );
  651. if ( AllocatedTargetName == NULL ) {
  652. Status = STATUS_NO_MEMORY;
  653. goto Cleanup;
  654. }
  655. RtlCopyMemory( AllocatedTargetName, RealTargetName, *TargetNameSize );
  656. RealTargetName = AllocatedTargetName;
  657. RealTargetNameLength = (ULONG)(SlashPtr-TargetName);
  658. RealTargetName[RealTargetNameLength] = '\0';
  659. //
  660. // The domain itself might be a netbios or DNS domain
  661. //
  662. // Do DNS test first. That allows the validate routine to truncate
  663. //
  664. TempTargetNameSize = ((RealTargetNameLength+1)*sizeof(WCHAR));
  665. SavedTargetNameSize = TempTargetNameSize;
  666. if ( CredpValidateDnsString(
  667. RealTargetName,
  668. FALSE,
  669. DnsNameDomain,
  670. &TempTargetNameSize ) ||
  671. NetpIsDomainNameValid( RealTargetName ) ) {
  672. //
  673. // If Dns truncated,
  674. // put the canonical name back in the callers buffer.
  675. //
  676. RealTargetNameLength = (TempTargetNameSize-sizeof(WCHAR))/sizeof(WCHAR);
  677. RealTargetName[RealTargetNameLength] = '\0';
  678. if ( SavedTargetNameSize != TempTargetNameSize ) {
  679. ULONG DfsShareSize;
  680. DfsShareSize = *TargetNameSize - (SlashPtr-TargetName)*sizeof(WCHAR);
  681. // Copy <DfsRoot>
  682. RtlCopyMemory( TargetName,
  683. RealTargetName,
  684. RealTargetNameLength*sizeof(WCHAR) );
  685. // Copy \<DfsShare><\0>
  686. RtlMoveMemory( &TargetName[RealTargetNameLength],
  687. SlashPtr,
  688. DfsShareSize );
  689. *TargetNameSize = RealTargetNameLength*sizeof(WCHAR) + DfsShareSize;
  690. }
  691. WildcardType = WcDfsShareName;
  692. }
  693. }
  694. }
  695. //
  696. // At this point,
  697. // if the syntax isn't DFS SHARE,
  698. // Then it must be one of the other syntaxes.
  699. //
  700. if ( WildcardType != WcDfsShareName ) {
  701. //
  702. // The target name might have defaulted to be a user name.
  703. //
  704. if ( TargetNameIsUserName ) {
  705. WildcardType = WcUserName;
  706. wcscpy( TargetName, TnAsCanonicalUserName );
  707. *TargetNameSize = (wcslen( TargetName ) + 1) * sizeof(WCHAR);
  708. //
  709. // Everything else is invalid
  710. //
  711. } else {
  712. Status = STATUS_INVALID_PARAMETER;
  713. #ifdef LSA_SERVER_COMPILED
  714. DebugLog(( DEB_TRACE_CRED,
  715. "ValidateTargetName: %ws: TargetName syntax invalid.\n",
  716. TargetName ));
  717. #endif // LSA_SERVER_COMPILED
  718. goto Cleanup;
  719. }
  720. }
  721. }
  722. }
  723. //
  724. // On success, copy the parameters back to the caller.
  725. //
  726. if ( WildcardTypePointer != NULL ) {
  727. *WildcardTypePointer = WildcardType;
  728. }
  729. if ( NonWildcardedTargetName != NULL ) {
  730. ULONG BufferSize = (wcslen(RealTargetName) + 1) * sizeof(WCHAR);
  731. NonWildcardedTargetName->Buffer = (LPWSTR) MIDL_user_allocate( BufferSize );
  732. if ( NonWildcardedTargetName->Buffer == NULL ) {
  733. Status = STATUS_NO_MEMORY;
  734. goto Cleanup;
  735. }
  736. RtlCopyMemory( NonWildcardedTargetName->Buffer, RealTargetName, BufferSize );
  737. NonWildcardedTargetName->MaximumLength = (USHORT)BufferSize;
  738. NonWildcardedTargetName->Length = (USHORT)(BufferSize - sizeof(WCHAR));
  739. }
  740. Status = STATUS_SUCCESS;
  741. Cleanup:
  742. if ( AllocatedTargetName != NULL ) {
  743. MIDL_user_free( AllocatedTargetName );
  744. }
  745. if ( CanonicalUserName != NULL ) {
  746. MIDL_user_free( CanonicalUserName );
  747. }
  748. if ( TnAsCanonicalUserName != NULL ) {
  749. MIDL_user_free( TnAsCanonicalUserName );
  750. }
  751. return Status;
  752. }