archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 5c6fe3db62
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '5c6fe3db62'
${ noResults }
windows-server-2003/ds/security/protocols/digest/parser.cxx

540 lines
16 KiB
Raw Normal View History

commiting as it is
4 years ago
  2. //+-----------------------------------------------------------------------
  3. //
  4. // Microsoft Windows
  5. //
  6. // Copyright (c) Microsoft Corporation 2000
  7. //
  8. // File: parser.cxx
  9. //
  10. // Contents: Digest Access Parser for directives
  11. // Main entry points into this dll:
  12. // ParseForNames
  13. // Very primitive parser. Most strings are quoted except for NC
  14. //
  15. // History: KDamour 16Mar00 Based on IIS authfilt.cxx
  16. //
  17. //------------------------------------------------------------------------
  19. #include <global.h>
  21. // Local function prototypes
  23. // Check for backslash character in a counted string of chars
  24. BOOL CheckBSlashChar(
  25. IN PSTR pcStr,
  26. IN USHORT len);
  28. // Helper function to DigestParser2
  29. NTSTATUS DigestProcessEntry(
  30. IN PSTR pcBeginName,
  31. IN PSTR pcEndName,
  32. IN PSTR pcBeginValue,
  33. IN PSTR pcEndValue,
  34. IN PSTR *pNameTable,
  35. IN UINT cNameTable,
  36. IN BOOL fBSlashEncoded,
  37. OUT PDIGEST_PARAMETER pDigest);
  41. // Used by parser to find the keywords
  42. // Keep insync with enum MD5_AUTH_NAME
  43. PSTR MD5_AUTH_NAMES[] = {
  44. "username",
  45. "realm",
  46. "nonce",
  47. "cnonce",
  48. "nc",
  49. "algorithm",
  50. "qop",
  51. "method",
  52. "uri",
  53. "response",
  54. "hentity",
  55. "authzid",
  56. "domain",
  57. "stale",
  58. "opaque",
  59. "maxbuf",
  60. "charset",
  61. "cipher",
  62. "digest-uri",
  63. "rspauth",
  64. "nextnonce"
  65. "" // Not really needed
  66. };
  70. enum STATE_TYPE
  71. {
  72. READY,
  73. DIRECTIVE,
  74. COMMAFIND,
  75. EQUALFIND,
  76. ASSIGNMENT,
  77. QUOTEDVALUE,
  78. VALUE,
  79. ENDING,
  80. PROCESS_ENTRY,
  81. FAILURE
  82. };
  85. //+--------------------------------------------------------------------
  86. //
  87. // Function: DigestParser2
  88. //
  89. // Synopsis: Parse list of name=value pairs for known names
  90. //
  91. // Effects:
  92. //
  93. // Arguments: pszStr - line to parse ( '\0' delimited - terminated)
  94. // pNameTable - table of known names
  95. // cNameTable - number of known names
  96. // pDigest - set all of the directives in pDigest->strParams[x}
  97. //
  98. // Returns: STATUS_SUCCESS if success, otherwise error
  99. //
  100. // Notes:
  101. // Buffers are not wide Unicode!
  102. //
  103. //
  104. //---------------------------------------------------------------------
  105. NTSTATUS DigestParser2(
  106. PSecBuffer pInputBuf,
  107. PSTR *pNameTable,
  108. UINT cNameTable,
  109. OUT PDIGEST_PARAMETER pDigest
  110. )
  111. {
  112. NTSTATUS Status = STATUS_SUCCESS;
  113. PSTR pcBeginName = NULL;
  114. PSTR pcEndName = NULL;
  115. PSTR pcBeginValue = NULL;
  116. PSTR pcEndValue = NULL;
  117. PSTR pcEndBuffer = NULL; // End of buffer to prevent NC increment from going past end
  118. PSTR pcCurrent = NULL;
  119. STATE_TYPE parserstate = DIRECTIVE;
  120. BOOL fEscapedChar = FALSE;
  122. // Verify that buffer exists and is of type single byte characters (not Unicode)
  123. if (!pInputBuf || (pInputBuf->cbBuffer && !pInputBuf->pvBuffer) ||
  124. (PBUFFERTYPE(pInputBuf) != SECBUFFER_TOKEN))
  125. {
  126. Status = SEC_E_INVALID_TOKEN;
  127. DebugLog((DEB_ERROR, "DigestParser2: Incorrect digest buffer format status 0x%x\n", Status));
  128. goto CleanUp;
  129. }
  131. if (!pInputBuf->cbBuffer)
  132. {
  133. return STATUS_SUCCESS; // Nothing to process happens with makesignature
  134. }
  136. pcEndBuffer = (char *)pInputBuf->pvBuffer + pInputBuf->cbBuffer;
  138. for (pcCurrent = (char *)pInputBuf->pvBuffer; pcCurrent < pcEndBuffer; pcCurrent++)
  139. {
  140. if (parserstate == FAILURE)
  141. {
  142. break;
  143. }
  144. if (*pcCurrent == CHAR_NULL)
  145. { // If we hit a premature End of String then Exit immediately from scan
  146. break;
  147. }
  148. if (parserstate == COMMAFIND)
  149. {
  150. if (isspace((int) (unsigned char)*pcCurrent))
  151. {
  152. continue; // get next char within for loop
  153. }
  154. if (*pcCurrent == CHAR_COMMA)
  155. {
  156. pcBeginName = NULL;
  157. pcEndName = NULL;
  158. pcBeginValue = pcEndValue = NULL;
  159. parserstate = DIRECTIVE;
  160. continue;
  161. }
  162. else
  163. {
  164. DebugLog((DEB_ERROR, "DigestParser2: CommaFind bad char 0x%x\n", *pcCurrent));
  165. parserstate = FAILURE; // only leading spaces or a comma is expected
  166. continue;
  167. }
  168. }
  169. if (parserstate == DIRECTIVE)
  170. {
  171. if (*pcCurrent == CHAR_EQUAL)
  172. {
  173. parserstate = ASSIGNMENT;
  174. continue;
  175. }
  176. if (isspace((int) (unsigned char)*pcCurrent))
  177. {
  178. if (!pcBeginName)
  179. {
  180. continue; // leading space chars so get next char
  181. }
  182. else
  183. {
  184. parserstate = EQUALFIND; // spaces are not allowed - directive is a single token
  185. continue;
  186. }
  187. }
  188. if (!pcBeginName)
  189. {
  190. pcBeginName = pcCurrent; // mnark begining of token
  191. }
  192. pcEndName = pcCurrent;
  193. continue;
  194. }
  195. if (parserstate == EQUALFIND)
  196. {
  197. if (isspace((int) (unsigned char)*pcCurrent))
  198. {
  199. continue; // get next char within for loop
  200. }
  201. if (*pcCurrent == CHAR_EQUAL)
  202. {
  203. parserstate = ASSIGNMENT;
  204. continue;
  205. }
  206. else
  207. {
  208. parserstate = FAILURE; // only leading spaces or a equal is expected
  209. continue;
  210. }
  211. }
  212. if (parserstate == ASSIGNMENT)
  213. {
  214. if (*pcCurrent == CHAR_DQUOTE)
  215. {
  216. parserstate = QUOTEDVALUE;
  217. continue;
  218. }
  219. if (isspace((int) (unsigned char)*pcCurrent))
  220. {
  221. continue; // get next char within for loop
  222. }
  223. pcBeginValue = pcCurrent;
  224. pcEndValue = pcCurrent;
  225. parserstate = VALUE;
  226. continue;
  227. }
  228. if (parserstate == QUOTEDVALUE)
  229. {
  230. if ((*pcCurrent == CHAR_BACKSLASH) && (fEscapedChar == FALSE))
  231. {
  232. // used to escape the following character
  233. fEscapedChar = TRUE;
  234. if (!pcBeginValue)
  235. {
  236. pcBeginValue = pcCurrent;
  237. pcEndValue = pcCurrent;
  238. continue;
  239. }
  240. continue;
  241. }
  242. if ((*pcCurrent == CHAR_DQUOTE) && (fEscapedChar == FALSE))
  243. {
  244. Status = DigestProcessEntry(pcBeginName, pcEndName, pcBeginValue, pcEndValue,
  245. pNameTable, cNameTable, TRUE, pDigest);
  246. if (!NT_SUCCESS(Status))
  247. {
  248. DebugLog((DEB_ERROR, "DigestParser2: Failed to process directive 0x%x\n", Status));
  249. goto CleanUp;
  250. }
  251. parserstate = COMMAFIND; // start again statemachine
  252. continue;
  253. }
  254. fEscapedChar = FALSE; // reset to not escaped state
  255. if (!pcBeginValue)
  256. {
  257. pcBeginValue = pcCurrent;
  258. pcEndValue = pcCurrent;
  259. continue;
  260. }
  261. pcEndValue = pcCurrent;
  262. continue;
  263. }
  264. if (parserstate == VALUE)
  265. {
  266. if (*pcCurrent == CHAR_COMMA)
  267. {
  268. Status = DigestProcessEntry(pcBeginName, pcEndName, pcBeginValue, pcEndValue,
  269. pNameTable, cNameTable, FALSE, pDigest);
  270. if (!NT_SUCCESS(Status))
  271. {
  272. DebugLog((DEB_ERROR, "DigestParser2: Failed to process directive 0x%x\n", Status));
  273. goto CleanUp;
  274. }
  275. pcBeginName = NULL;
  276. pcEndName = NULL;
  277. pcBeginValue = pcEndValue = NULL;
  278. parserstate = DIRECTIVE; // find separator if any
  279. continue;
  280. }
  281. // token ends on first white space
  282. if (isspace((int) (unsigned char)*pcCurrent))
  283. {
  284. Status = DigestProcessEntry(pcBeginName, pcEndName, pcBeginValue, pcEndValue,
  285. pNameTable, cNameTable, FALSE, pDigest);
  286. if (!NT_SUCCESS(Status))
  287. {
  288. DebugLog((DEB_ERROR, "DigestParser2: Failed to process directive 0x%x\n", Status));
  289. goto CleanUp;
  290. }
  291. parserstate = COMMAFIND; // find separator if any
  292. continue;
  293. }
  294. else
  295. {
  296. pcEndValue = pcCurrent;
  297. }
  298. }
  299. }
  301. if ((parserstate == FAILURE) || (parserstate == QUOTEDVALUE) ||
  302. (parserstate == ASSIGNMENT) || (parserstate == DIRECTIVE) ||
  303. (parserstate == EQUALFIND))
  304. {
  305. Status = SEC_E_ILLEGAL_MESSAGE;
  306. goto CleanUp;
  307. }
  309. // There might be a NULL terminated directive value to process
  310. if ((parserstate == VALUE))
  311. {
  312. Status = DigestProcessEntry(pcBeginName, pcEndName, pcBeginValue, pcEndValue,
  313. pNameTable, cNameTable, FALSE, pDigest);
  314. }
  317. CleanUp:
  318. DebugLog((DEB_TRACE, "DigestParser: leaving status 0x%x\n", Status));
  319. return(Status);
  320. }
  323. NTSTATUS DigestProcessEntry(
  324. IN PSTR pcBeginName,
  325. IN PSTR pcEndName,
  326. IN PSTR pcBeginValue,
  327. IN PSTR pcEndValue,
  328. IN PSTR *pNameTable,
  329. IN UINT cNameTable,
  330. IN BOOL fBSlashEncoded,
  331. IN OUT PDIGEST_PARAMETER pDigest
  332. )
  333. {
  334. NTSTATUS Status = STATUS_SUCCESS;
  335. USHORT cbName = 0;
  336. USHORT cbValue = 0;
  337. UINT iN = 0;
  338. BOOL fBSPresent = FALSE;
  339. PCHAR pcTemp = NULL;
  340. PSTR pcDst = NULL;
  341. PSTR pcLoc = NULL;
  342. USHORT iCnt = 0;
  344. // DebugLog((DEB_TRACE_FUNC, "DigestProcessEntry: Entering\n"));
  346. if (!pcBeginName || !pcEndName)
  347. {
  348. DebugLog((DEB_ERROR, "DigestProcessEntry: Badly formed directive\n"));
  349. return (STATUS_UNSUCCESSFUL);
  350. }
  351. cbName = (USHORT)(pcEndName - pcBeginName) + 1;
  353. if (pcBeginValue && pcEndValue)
  354. {
  355. cbValue = (USHORT)(pcEndValue - pcBeginValue) + 1;
  356. }
  357. else
  358. cbValue = 0;
  360. for ( iN = 0 ; iN < cNameTable ; ++iN )
  361. {
  362. if ( !_strnicmp( pNameTable[iN], pcBeginName, cbName ) )
  363. {
  364. // DebugLog((DEB_TRACE, "DigestParser: directive found\n"));
  365. break;
  366. }
  367. }
  369. if ( iN < cNameTable ) // We found a match!!!!!
  370. {
  371. if (iN == MD5_AUTH_DIGESTURI)
  372. {
  373. iN = MD5_AUTH_URI; // Map SASL's "digest-uri" to "uri"
  374. }
  376. pDigest->usDirectiveCnt[iN] = pDigest->usDirectiveCnt[iN] + 1; // indicate that directive was found
  378. if (cbValue)
  379. {
  380. // For space optimization, if not Backslash encoded then use orginal memory buffer
  381. // To simply code, can removed all refernces and just use a copy of the original
  382. // while removing the backslash characters
  383. if ((fBSlashEncoded == TRUE) &&
  384. ( !(pDigest->usFlags & FLAG_NOBS_DECODE)))
  385. {
  386. // quick search to see if there is a BackSlash character there
  387. fBSPresent = CheckBSlashChar(pcBeginValue, cbValue);
  388. if (fBSPresent == TRUE)
  389. {
  390. pcDst = (PCHAR)DigestAllocateMemory(cbValue + 1);
  391. if (!pcDst)
  392. {
  393. Status = SEC_E_INSUFFICIENT_MEMORY;
  394. DebugLog((DEB_ERROR, "DigestProcessEntry: allocate error 0x%x\n", Status));
  395. goto CleanUp;
  396. }
  398. // Now copy over the string removing and back slash encoding
  399. pcLoc = pcBeginValue;
  400. pcTemp = pcDst;
  401. while (pcLoc <= pcEndValue)
  402. {
  403. if (*pcLoc == CHAR_BACKSLASH)
  404. {
  405. pcLoc++; // eat the backslash
  407. // Indicate possible broken BS encoding by client
  408. // check only the username and look for any BS chars without BS BS pattern (proper encoding)
  409. if ((iN == MD5_AUTH_USERNAME) && (*pcLoc != CHAR_BACKSLASH))
  410. {
  411. DebugLog((DEB_WARN, "DigestProcessEntry: possible broken BS encoding by client\n"));
  412. pDigest->usFlags = pDigest->usFlags | FLAG_BS_ENCODE_CLIENT_BROKEN;
  413. }
  414. }
  415. *pcTemp++ = *pcLoc++;
  416. iCnt++;
  417. }
  418. // give the memory to member structure
  419. // clear out any previous memory alloc (if called on a retry)
  420. StringFree(&(pDigest->strDirective[iN]));
  421. pDigest->strDirective[iN].Buffer = pcDst;
  422. pDigest->strDirective[iN].Length = iCnt;
  423. pDigest->strDirective[iN].MaximumLength = cbValue+1;
  424. pcDst = NULL;
  426. pDigest->refstrParam[iN].Buffer = pDigest->strDirective[iN].Buffer;
  427. pDigest->refstrParam[iN].Length = pDigest->strDirective[iN].Length;
  428. pDigest->refstrParam[iN].MaximumLength = pDigest->strDirective[iN].MaximumLength;
  430. }
  431. else
  432. {
  433. pDigest->refstrParam[iN].Buffer = pcBeginValue;
  434. pDigest->refstrParam[iN].Length = cbValue;
  435. pDigest->refstrParam[iN].MaximumLength = cbValue;
  436. }
  438. }
  439. else
  440. {
  441. pDigest->refstrParam[iN].Buffer = pcBeginValue;
  442. pDigest->refstrParam[iN].Length = cbValue;
  443. pDigest->refstrParam[iN].MaximumLength = cbValue;
  444. }
  445. }
  446. }
  448. CleanUp:
  450. // DebugLog((DEB_TRACE_FUNC, "DigestProcessEntry: Leaving 0x%x\n", Status));
  452. return(Status);
  453. }
  456. //+--------------------------------------------------------------------
  457. //
  458. // Function: CheckBSlashChar
  459. //
  460. // Synopsis: Search a string for a Back Slash character
  461. //
  462. // Effects:
  463. //
  464. // Arguments:
  465. // pcStr - pointer to string of characters
  466. // len - number of characters to search
  467. //
  468. // Returns: TRUE if found, FALSE otherwise
  469. //
  470. // Notes:
  471. //
  472. //
  473. //---------------------------------------------------------------------
  474. BOOL CheckBSlashChar(
  475. IN PSTR pcStr,
  476. IN USHORT len)
  477. {
  478. BOOL fFound = FALSE;
  479. USHORT i = 0;
  481. for (i = 0; i < len; i++)
  482. {
  483. if (*pcStr++ == CHAR_BACKSLASH)
  484. {
  485. fFound = TRUE;
  486. break;
  487. }
  488. }
  490. return (fFound);
  491. }
  493. /*
  495. //+--------------------------------------------------------------------
  496. //
  497. // Function: DigestTokenVerify
  498. //
  499. // Synopsis: Verify that a token conforms to RFC 2616 sect 2.2
  500. //
  501. // Effects:
  502. //
  503. // Arguments:
  504. // pcBeginToken - character pointer to beginning of token
  505. // pcEndToken - character pointer to ending of token
  506. //
  507. // Returns: TRUE if conforms to token defination, FALSE otherwise
  508. //
  509. // Notes:
  510. //
  511. //
  512. //---------------------------------------------------------------------
  513. BOOLEAN DigestTokenVerify(
  514. IN PSTR pcBeginToken,
  515. IN PSTR pcEndToken
  516. )
  517. {
  518. BOOLEAN fToken = FALSE;
  519. USHORT cbToken = 0;
  520. USHORT cbValue = 0;
  521. USHORT iCnt = 0;
  523. if (!pcBeginName || !pcEndName)
  524. {
  525. DebugLog((DEB_ERROR, "DigestProcessEntry: Badly formed directive\n"));
  526. return FALSE;
  527. }
  528. cbToken = (USHORT)(pcEndName - pcBeginName) + 1;
  530. for (iCnt = 0; iCnt < cbToken; iCnt++)
  531. {
  533. }
  536. CleanUp:
  538. return(Status);
  539. }
  540. */