archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 5c6fe3db62
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '5c6fe3db62'
${ noResults }
windows-server-2003/ds/security/cryptoapi/pki/certstor/dblog.cpp

659 lines
16 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. //+-------------------------------------------------------------------------
  2. // Microsoft Windows
  3. //
  4. // Copyright (C) Microsoft Corporation, 1995 - 1999
  5. //
  6. // File: dblog.cpp
  7. //
  8. // Contents: Database Log Event APIs
  9. //
  10. // Functions: I_DBLogCrypt32Event
  11. // I_DBLogAttach
  12. // I_DBLogDetach
  13. //
  14. // History: 11-Oct-00 philh created
  15. //--------------------------------------------------------------------------
  18. #include "global.hxx"
  19. #include <dbgdef.h>
  21. #ifdef ROOT_AUTO_UPDATE_DOGFOOD
  23. #ifdef STATIC
  24. #undef STATIC
  25. #endif
  26. #define STATIC
  28. #include "sql.h"
  29. #include "sqlext.h"
  30. #include "sqltypes.h"
  31. #include "odbcss.h"
  33. #define SQL_CALL_SUCCESS(status) (status == SQL_SUCCESS || status == SQL_SUCCESS_WITH_INFO)
  35. #if DBG || DEBUG
  36. #define DebugPrint(a) _DebugPrintW a
  37. void
  38. __cdecl
  39. _DebugPrintW(
  40. LPCWSTR szFormat,
  41. ...
  42. )
  43. {
  44. WCHAR szBuffer[512];
  45. va_list ap;
  47. va_start(ap, szFormat);
  48. vswprintf(szBuffer, szFormat, ap);
  49. OutputDebugStringW(szBuffer);
  50. }
  52. int debugLine = __LINE__;
  53. #define DEBUG_MARKER debugLine = __LINE__
  55. #else
  57. #define DebugPrint(a)
  58. #define DEBUG_MARKER
  60. #endif
  62. #define SHA1_HASH_LEN 20
  63. #define SHA1_HASH_NAME_LEN (2 * SHA1_HASH_LEN)
  65. typedef struct _DBLOG_EVENT_DATA {
  66. DWORD dwStatus;
  67. DWORD dwCPU64;
  68. TIMESTAMP_STRUCT TimeStamp;
  69. WCHAR wszOperation[16];
  70. WCHAR wszHash[SHA1_HASH_NAME_LEN + 1];
  71. WCHAR wszSubject[64];
  72. WCHAR wszBuildLab[64];
  73. WCHAR wszMachineName[32];
  74. } DBLOG_EVENT_DATA, *PDBLOG_EVENT_DATA;
  77. void
  78. I_DBLogAttach()
  79. {
  80. }
  82. void
  83. I_DBLogDetach()
  84. {
  85. }
  87. DWORD WINAPI I_DBLogCrypt32EventThreadProc(
  88. LPVOID lpThreadParameter
  89. )
  90. {
  91. PDBLOG_EVENT_DATA pEventData = (PDBLOG_EVENT_DATA) lpThreadParameter;
  93. SQLRETURN RetCode = SQL_SUCCESS;
  94. HSTMT hStmt = NULL;
  95. HENV hEnv = NULL, hDbc = NULL;
  97. __try {
  98. __try {
  99. RetCode = SQLAllocHandle(
  100. SQL_HANDLE_ENV,
  101. SQL_NULL_HANDLE,
  102. &hEnv
  103. );
  105. if(!SQL_CALL_SUCCESS(RetCode)) {
  106. DEBUG_MARKER;
  107. __leave;
  108. }
  110. RetCode = SQLSetEnvAttr(
  111. hEnv,
  112. SQL_ATTR_ODBC_VERSION,
  113. (SQLPOINTER) SQL_OV_ODBC3,
  114. SQL_IS_INTEGER
  115. );
  117. if(!SQL_CALL_SUCCESS(RetCode)) {
  118. DEBUG_MARKER;
  119. __leave;
  120. }
  122. RetCode = SQLAllocHandle(
  123. SQL_HANDLE_DBC,
  124. hEnv,
  125. &hDbc
  126. );
  128. if(!SQL_CALL_SUCCESS(RetCode)) {
  129. DEBUG_MARKER;
  130. __leave;
  131. }
  133. RetCode = SQLSetConnectAttr(
  134. hDbc,
  135. SQL_ATTR_LOGIN_TIMEOUT,
  136. (SQLPOINTER) 120,
  137. SQL_IS_UINTEGER
  138. );
  140. if(!SQL_CALL_SUCCESS(RetCode)) {
  141. DEBUG_MARKER;
  142. __leave;
  143. }
  145. RetCode = SQLSetConnectAttr(
  146. hDbc,
  147. SQL_COPT_SS_INTEGRATED_SECURITY,
  148. (SQLPOINTER) SQL_IS_OFF,
  149. SQL_IS_INTEGER
  150. );
  152. if(!SQL_CALL_SUCCESS(RetCode)) {
  153. DEBUG_MARKER;
  154. __leave;
  155. }
  157. {
  158. SQLWCHAR szConnect[1024];
  159. SQLSMALLINT cbConnect = 0;
  161. SQLWCHAR szInConnect[] = L"DRIVER=SQL Server;SERVER=kschutz-team2;UID=crypt32;PWD=crypt32;DATABASE=Crypt32";
  163. RetCode = SQLDriverConnectW(
  164. hDbc,
  165. NULL,
  166. szInConnect,
  167. SQL_NTS,
  168. szConnect,
  169. sizeof(szConnect) / sizeof(szConnect[0]),
  170. &cbConnect,
  171. SQL_DRIVER_NOPROMPT
  172. );
  174. if(!SQL_CALL_SUCCESS(RetCode)) {
  175. DEBUG_MARKER;
  176. __leave;
  177. }
  178. }
  180. RetCode = SQLAllocHandle(
  181. SQL_HANDLE_STMT,
  182. hDbc,
  183. &hStmt
  184. );
  186. if(!SQL_CALL_SUCCESS(RetCode)) {
  187. DEBUG_MARKER;
  188. __leave;
  189. }
  191. WCHAR szStatement[] =
  192. L"INSERT INTO AddRoot2 ("
  193. L"OPERATION,"
  194. L"STATUS,"
  195. L"TIMESTAMP,"
  196. L"HASH,"
  197. L"SUBJECT,"
  198. L"MACHINENAME,"
  199. L"BUILDLAB,"
  200. L"CPU64"
  201. L") VALUES (?,?,?,?,?,?,?,?)";
  203. RetCode = SQLPrepareW(
  204. hStmt,
  205. szStatement,
  206. SQL_NTS
  207. );
  209. if(!SQL_CALL_SUCCESS(RetCode)) {
  210. DEBUG_MARKER;
  211. __leave;
  212. }
  214. SQLUSMALLINT iParamNo = 1;
  216. //
  217. // OPERATION
  218. //
  219. SQLLEN cbOperation = SQL_NTS;
  220. SQLBindParameter(
  221. hStmt,
  222. iParamNo++,
  223. SQL_PARAM_INPUT,
  224. SQL_C_WCHAR,
  225. SQL_WCHAR,
  226. sizeof(pEventData->wszOperation) / sizeof(WCHAR),
  227. 0,
  228. pEventData->wszOperation,
  229. 0,
  230. &cbOperation
  231. );
  233. //
  234. // STATUS
  235. //
  236. SQLLEN cbStatus = 0;
  237. SQLBindParameter(
  238. hStmt,
  239. iParamNo++,
  240. SQL_PARAM_INPUT,
  241. SQL_C_LONG,
  242. SQL_INTEGER,
  243. 0,
  244. 0,
  245. &pEventData->dwStatus,
  246. 0,
  247. &cbStatus
  248. );
  250. //
  251. // TIMESTAMP
  252. //
  254. SQLLEN cbTimeStamp = 0;
  255. SQLBindParameter(
  256. hStmt,
  257. iParamNo++,
  258. SQL_PARAM_INPUT,
  259. SQL_C_TIMESTAMP,
  260. SQL_TIMESTAMP,
  261. 19,
  262. 0,
  263. &pEventData->TimeStamp,
  264. 0,
  265. &cbTimeStamp
  266. );
  268. //
  269. // HASH
  270. //
  272. SQLLEN cbHash = SQL_NTS;
  273. SQLBindParameter(
  274. hStmt,
  275. iParamNo++,
  276. SQL_PARAM_INPUT,
  277. SQL_C_WCHAR,
  278. SQL_WCHAR,
  279. sizeof(pEventData->wszHash) / sizeof(WCHAR),
  280. 0,
  281. pEventData->wszHash,
  282. 0,
  283. &cbHash
  284. );
  286. //
  287. // SUBJECT
  288. //
  290. SQLLEN cbSubject = SQL_NTS;
  291. SQLBindParameter(
  292. hStmt,
  293. iParamNo++,
  294. SQL_PARAM_INPUT,
  295. SQL_C_WCHAR,
  296. SQL_WCHAR,
  297. sizeof(pEventData->wszSubject) / sizeof(WCHAR),
  298. 0,
  299. pEventData->wszSubject,
  300. 0,
  301. &cbSubject
  302. );
  304. //
  305. // MACHINENAME
  306. //
  308. SQLLEN cbMachineName = SQL_NTS;
  309. SQLBindParameter(
  310. hStmt,
  311. iParamNo++,
  312. SQL_PARAM_INPUT,
  313. SQL_C_WCHAR,
  314. SQL_WCHAR,
  315. sizeof(pEventData->wszMachineName) / sizeof(WCHAR),
  316. 0,
  317. pEventData->wszMachineName,
  318. 0,
  319. &cbMachineName
  320. );
  322. //
  323. // BUILDLAB
  324. //
  326. SQLLEN cbBuildLab = SQL_NTS;
  327. SQLBindParameter(
  328. hStmt,
  329. iParamNo++,
  330. SQL_PARAM_INPUT,
  331. SQL_C_WCHAR,
  332. SQL_WCHAR,
  333. sizeof(pEventData->wszBuildLab) / sizeof(WCHAR),
  334. 0,
  335. pEventData->wszBuildLab,
  336. 0,
  337. &cbBuildLab
  338. );
  340. //
  341. // CPU64
  342. //
  343. SQLLEN cbCPU64 = 0;
  344. SQLBindParameter(
  345. hStmt,
  346. iParamNo++,
  347. SQL_PARAM_INPUT,
  348. SQL_C_TINYINT,
  349. SQL_TINYINT,
  350. 0,
  351. 0,
  352. &pEventData->dwCPU64,
  353. 0,
  354. &cbCPU64
  355. );
  358. RetCode = SQLExecute(hStmt);
  359. DEBUG_MARKER;
  360. }
  361. __finally {
  363. }
  365. if (!SQL_CALL_SUCCESS(RetCode)) {
  367. SDWORD swError;
  368. SQLWCHAR szErrorMsg[SQL_MAX_MESSAGE_LENGTH];
  369. SWORD swErrorMsg;
  370. SQLWCHAR szSQLState[50];
  372. SQLErrorW(
  373. hEnv,
  374. hDbc,
  375. hStmt,
  376. szSQLState,
  377. &swError,
  378. szErrorMsg,
  379. SQL_MAX_MESSAGE_LENGTH - 1,
  380. &swErrorMsg
  381. );
  383. DebugPrint(
  384. (L"I_DBLogCrypt32EventThreadProc: Error (%d) - %s (%s)\n",
  385. debugLine,
  386. szErrorMsg,
  387. szSQLState)
  388. );
  389. }
  391. if (hStmt) {
  392. SQLFreeHandle(SQL_HANDLE_STMT, hStmt);
  393. }
  396. if (hDbc) {
  397. SQLDisconnect(hDbc);
  398. SQLFreeHandle(SQL_HANDLE_DBC, hDbc);
  399. }
  401. if (hEnv) {
  402. SQLFreeHandle(SQL_HANDLE_ENV, hEnv);
  403. }
  405. }
  406. __except(EXCEPTION_EXECUTE_HANDLER) {
  407. DebugPrint(
  408. (L"I_DBLogCrypt32EventThreadProc: Exception Error (%d)\n",
  409. GetExceptionCode())
  410. );
  411. RetCode = SQL_ERROR;
  412. }
  414. PkiFree(pEventData);
  417. DebugPrint(
  418. (L"I_DBLogCrypt32EventThreadProc %s\n",
  419. (SQL_CALL_SUCCESS(RetCode) ? L"succeeded" : L"failed"))
  420. );
  422. return 0;
  423. }
  425. void
  426. I_DBLogCrypt32Event(
  427. IN WORD wType,
  428. IN DWORD dwEventID,
  429. IN WORD wNumStrings,
  430. IN LPCWSTR *rgpwszStrings
  431. )
  432. {
  433. PDBLOG_EVENT_DATA pEventData = NULL;
  434. HANDLE hThread = NULL;
  436. if (NULL == (pEventData = (PDBLOG_EVENT_DATA) PkiZeroAlloc(
  437. sizeof(DBLOG_EVENT_DATA))))
  438. goto OutOfMemory;
  440. switch (dwEventID) {
  441. case MSG_ROOT_AUTO_UPDATE_INFORMATIONAL:
  442. case MSG_UNTRUSTED_ROOT_INFORMATIONAL:
  443. case MSG_PARTIAL_CHAIN_INFORMATIONAL:
  444. switch (dwEventID) {
  445. case MSG_ROOT_AUTO_UPDATE_INFORMATIONAL:
  446. // Successful auto update of third-party root certificate::
  447. // Subject: <%1> Sha1 thumbprint: <%2>
  448. wcscpy(pEventData->wszOperation, L"AddCert");
  449. break;
  450. case MSG_UNTRUSTED_ROOT_INFORMATIONAL:
  451. // Untrusted root certificate:: Subject: <%1>
  452. // Sha1 thumbprint: <%2>
  453. wcscpy(pEventData->wszOperation, L"UntrustedRoot");
  454. break;
  455. case MSG_PARTIAL_CHAIN_INFORMATIONAL:
  456. // Partial Chain:: Issuer: <%1>
  457. // Subject Sha1 thumbprint: <%2>
  458. wcscpy(pEventData->wszOperation, L"PartialChain");
  459. break;
  460. }
  461. if (2 <= wNumStrings) {
  462. wcsncpy(pEventData->wszSubject, rgpwszStrings[0],
  463. sizeof(pEventData->wszSubject) / sizeof(WCHAR) - 1);
  464. wcsncpy(pEventData->wszHash, rgpwszStrings[1],
  465. sizeof(pEventData->wszHash) / sizeof(WCHAR) - 1);
  466. }
  467. break;
  469. case MSG_ROOT_LIST_AUTO_UPDATE_URL_RETRIEVAL_INFORMATIONAL:
  470. // Successful auto update of third-party root list cab from: <%1>
  471. case MSG_ROOT_LIST_AUTO_UPDATE_URL_RETRIEVAL_ERROR:
  472. // Failed auto update of third-party root list cab from: <%1>
  473. // with error: %2
  474. wcscpy(pEventData->wszOperation, L"FetchCab");
  475. break;
  477. case MSG_ROOT_LIST_AUTO_UPDATE_EXTRACT_ERROR:
  478. // Failed extract of third-party root list from auto update
  479. // cab at: <%1> with error: %2
  480. wcscpy(pEventData->wszOperation, L"ExtractCtl");
  481. break;
  483. case MSG_ROOT_CERT_AUTO_UPDATE_URL_RETRIEVAL_INFORMATIONAL:
  484. // Successful auto update of third-party root certificate from: <%1>
  485. case MSG_ROOT_CERT_AUTO_UPDATE_URL_RETRIEVAL_ERROR:
  486. // Failed auto update of third-party root certificate from: <%1>
  487. // with error: %2
  488. wcscpy(pEventData->wszOperation, L"FetchCert");
  490. // %1 contains
  491. // "RootDir" "/" "AsciiHexHash" ".cer"
  492. // for example,
  493. // "http://www.xyz.com/roots/216B2A29E62A00CE820146D8244141B92511B279.cer"
  494. {
  495. LPCWSTR pwszHash = rgpwszStrings[0];
  496. DWORD cchHash;
  498. cchHash = wcslen(pwszHash);
  500. if ((SHA1_HASH_NAME_LEN + 4) <= cchHash)
  501. memcpy(pEventData->wszHash,
  502. pwszHash + (cchHash - (SHA1_HASH_NAME_LEN + 4)),
  503. SHA1_HASH_NAME_LEN * sizeof(WCHAR));
  504. }
  505. break;
  507. case MSG_CRYPT32_EVENT_LOG_THRESHOLD_WARNING:
  508. // Reached crypt32 threshold of %1 events and will suspend
  509. // logging for %2 minutes
  510. wcscpy(pEventData->wszOperation, L"EventOverflow");
  511. break;
  513. case MSG_ROOT_SEQUENCE_NUMBER_AUTO_UPDATE_URL_RETRIEVAL_INFORMATIONAL:
  514. // Successful auto update of third-party root list sequence
  515. // number from: <%1>
  516. case MSG_ROOT_SEQUENCE_NUMBER_AUTO_UPDATE_URL_RETRIEVAL_ERROR:
  517. // Failed auto update of third-party root list sequence number
  518. // from: <%1> with error: %2
  519. wcscpy(pEventData->wszOperation, L"FetchSeq");
  520. break;
  522. default:
  523. goto SkipDbLogCrypt32Event;
  524. }
  526. if (MSG_CRYPT32_EVENT_LOG_THRESHOLD_WARNING == dwEventID)
  527. pEventData->dwStatus = (DWORD) ERROR_BUFFER_OVERFLOW;
  528. else if (EVENTLOG_ERROR_TYPE == wType && 2 <= wNumStrings)
  529. // The second string should contain the error code string
  530. pEventData->dwStatus = (DWORD) wcstoul(rgpwszStrings[1], NULL, 0);
  532. {
  533. SYSTEMTIME SystemTime;
  534. GetLocalTime(&SystemTime);
  535. pEventData->TimeStamp.day = SystemTime.wDay;
  536. pEventData->TimeStamp.month = SystemTime.wMonth;
  537. pEventData->TimeStamp.year = SystemTime.wYear;
  538. pEventData->TimeStamp.hour = SystemTime.wHour;
  539. pEventData->TimeStamp.minute = SystemTime.wMinute;
  540. pEventData->TimeStamp.second = SystemTime.wSecond;
  541. // pEventData->TimeStamp.fraction = 0;
  542. }
  544. {
  545. WCHAR wszMachineName[MAX_PATH] = L"";
  546. DWORD cchMachineName = sizeof(wszMachineName) / sizeof(WCHAR);
  548. // intentionally ignore any failures
  549. GetComputerNameExW(
  550. ComputerNameDnsHostname,
  551. wszMachineName,
  552. &cchMachineName
  553. );
  555. wcsncpy(pEventData->wszMachineName, wszMachineName,
  556. sizeof(pEventData->wszMachineName) / sizeof(WCHAR) - 1);
  557. }
  559. {
  560. HKEY hKey;
  561. WCHAR wszBuildLab[MAX_PATH];
  562. DWORD dwStatus;
  564. wcscpy(wszBuildLab, L"<BuildLab Unknown>");
  566. dwStatus = RegOpenKeyExW(
  567. HKEY_LOCAL_MACHINE,
  568. L"Software\\Microsoft\\Windows NT\\CurrentVersion",
  569. 0,
  570. KEY_READ,
  571. &hKey
  572. );
  574. if (dwStatus == ERROR_SUCCESS) {
  575. DWORD dwType = REG_SZ;
  576. DWORD cbBuildLab = sizeof(wszBuildLab);
  578. dwStatus = RegQueryValueExW(
  579. hKey,
  580. L"BuildLab",
  581. 0,
  582. &dwType,
  583. (LPBYTE) wszBuildLab,
  584. &cbBuildLab
  585. );
  587. if (dwStatus != ERROR_SUCCESS) {
  588. dwType = REG_SZ;
  589. cbBuildLab = sizeof(wszBuildLab);
  591. dwStatus = RegQueryValueExW(
  592. hKey,
  593. L"CurrentBuildNumber",
  594. 0,
  595. &dwType,
  596. (LPBYTE) wszBuildLab,
  597. &cbBuildLab
  598. );
  599. }
  600. RegCloseKey(hKey);
  601. }
  603. wcsncpy(pEventData->wszBuildLab, wszBuildLab,
  604. sizeof(pEventData->wszBuildLab) / sizeof(WCHAR) - 1);
  605. }
  607. #if defined(M_IA64) || defined(IA64) || defined(_IA64_)
  608. pEventData->dwCPU64 = 1;
  609. #endif
  611. // Create the thread to do the logging to the database
  612. if (NULL == (hThread = CreateThread(
  613. NULL, // lpThreadAttributes
  614. 0, // dwStackSize
  615. I_DBLogCrypt32EventThreadProc,
  616. pEventData,
  617. 0, // dwCreationFlags
  618. NULL // pdwThreadId
  619. )))
  620. goto CreateThreadError;
  622. CloseHandle(hThread);
  624. CommonReturn:
  625. return;
  627. ErrorReturn:
  628. PkiFree(pEventData);
  629. goto CommonReturn;
  631. TRACE_ERROR(OutOfMemory)
  632. TRACE_ERROR(SkipDbLogCrypt32Event)
  633. TRACE_ERROR(CreateThreadError)
  634. }
  637. #else
  639. void
  640. I_DBLogAttach()
  641. {
  642. }
  644. void
  645. I_DBLogDetach()
  646. {
  647. }
  649. void
  650. I_DBLogCrypt32Event(
  651. IN WORD wType,
  652. IN DWORD dwEventID,
  653. IN WORD wNumStrings,
  654. IN LPCWSTR *rgpwszStrings
  655. )
  656. {
  657. }
  659. #endif