archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 5c6fe3db62
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '5c6fe3db62'
${ noResults }
windows-server-2003/ds/security/protocols/kerberos/kernel/ctxtmgr.cxx

491 lines
12 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. //+-----------------------------------------------------------------------
  2. //
  3. // Microsoft Windows
  4. //
  5. // Copyright (c) Microsoft Corporation 1992 - 1996
  6. //
  7. // File: ctxtmgr.cxx
  8. //
  9. // Contents: Code for managing contexts list for the Kerberos package
  10. //
  11. //
  12. // History: 17-April-1996 Created MikeSw
  13. //
  14. //------------------------------------------------------------------------
  16. #include "krbprgma.h"
  17. #define CTXTMGR_ALLOCATE
  18. #include <kerbkrnl.h>
  20. #ifdef ALLOC_PRAGMA
  21. #pragma alloc_text(PAGE, KerbInitContextList)
  22. #pragma alloc_text(PAGE, KerbFreeContextList)
  23. #pragma alloc_text(PAGEMSG, KerbAllocateContext)
  24. #pragma alloc_text(PAGEMSG, KerbInsertContext)
  25. #pragma alloc_text(PAGEMSG, KerbReferenceContext)
  26. #pragma alloc_text(PAGEMSG, KerbDereferenceContext)
  27. #pragma alloc_text(PAGEMSG, KerbCreateKernelModeContext)
  28. #endif
  31. #define MAYBE_PAGED_CODE() \
  32. if ( KerbPoolType == PagedPool ) \
  33. { \
  34. PAGED_CODE(); \
  35. }
  37. //+-------------------------------------------------------------------------
  38. //
  39. // Function: KerbInitContextList
  40. //
  41. // Synopsis: Initializes the contexts list
  42. //
  43. // Effects: allocates a resources
  44. //
  45. // Arguments: none
  46. //
  47. // Requires:
  48. //
  49. // Returns: STATUS_SUCCESS on success, other error codes
  50. // on failure
  51. //
  52. // Notes:
  53. //
  54. //
  55. //--------------------------------------------------------------------------
  56. NTSTATUS
  57. KerbInitContextList(
  58. VOID
  59. )
  60. {
  61. NTSTATUS Status;
  63. PAGED_CODE();
  64. Status = ExInitializeResourceLite( &KerbContextResource );
  66. if (!NT_SUCCESS(Status))
  67. {
  68. return Status;
  69. }
  71. Status = KerbInitializeList( &KerbContextList );
  73. if (!NT_SUCCESS(Status))
  74. {
  75. ExDeleteResourceLite( &KerbContextResource );
  76. }
  78. return Status;
  79. }
  82. //+-------------------------------------------------------------------------
  83. //
  84. // Function: KerbAllocateContext
  85. //
  86. // Synopsis: Allocates a Context structure
  87. //
  88. // Effects: Allocates a Context, but does not add it to the
  89. // list of Contexts
  90. //
  91. // Arguments: NewContext - receives a new Context allocated
  92. // with KerbAllocate
  93. //
  94. // Requires:
  95. //
  96. // Returns: STATUS_SUCCESS on success
  97. // STATUS_INSUFFICIENT_RESOURCES if the allocation fails
  98. //
  99. // Notes:
  100. //
  101. //
  102. //--------------------------------------------------------------------------
  103. NTSTATUS
  104. KerbAllocateContext(
  105. PKERB_KERNEL_CONTEXT * NewContext
  106. )
  107. {
  108. PKERB_KERNEL_CONTEXT Context;
  110. MAYBE_PAGED_CODE();
  112. //
  113. // Get the client process ID if we are running in the LSA
  114. //
  117. Context = (PKERB_KERNEL_CONTEXT) KerbAllocate(
  118. sizeof(KERB_KERNEL_CONTEXT) );
  120. if (Context == NULL)
  121. {
  122. return(STATUS_INSUFFICIENT_RESOURCES);
  123. }
  124. RtlZeroMemory(
  125. Context,
  126. sizeof(KERB_KERNEL_CONTEXT)
  127. );
  129. KsecInitializeListEntry( &Context->List, KERB_CONTEXT_SIGNATURE );
  131. *NewContext = Context;
  133. return(STATUS_SUCCESS);
  134. }
  137. //+-------------------------------------------------------------------------
  138. //
  139. // Function: KerbInsertContext
  140. //
  141. // Synopsis: Inserts a logon session into the list of logon sessions
  142. //
  143. // Effects: bumps reference count on logon session
  144. //
  145. // Arguments: Context - Context to insert
  146. //
  147. // Requires:
  148. //
  149. // Returns: STATUS_SUCCESS always
  150. //
  151. // Notes:
  152. //
  153. //
  154. //--------------------------------------------------------------------------
  157. NTSTATUS
  158. KerbInsertContext(
  159. IN PKERB_KERNEL_CONTEXT Context
  160. )
  161. {
  162. MAYBE_PAGED_CODE();
  164. KSecInsertListEntry(
  165. KerbActiveList,
  166. (PKSEC_LIST_ENTRY) Context
  167. );
  169. return(STATUS_SUCCESS);
  170. }
  173. //+-------------------------------------------------------------------------
  174. //
  175. // Function: KerbReferenceContext
  176. //
  177. // Synopsis: Locates a context and references it
  178. //
  179. // Effects: Increments reference count and possible unlinks it from list
  180. //
  181. // Arguments: ContextHandle - Lsa Handle of context to reference.
  182. // RemoveFromList - If TRUE, context will be delinked.
  183. //
  184. // Requires:
  185. //
  186. // Returns:
  187. //
  188. // Notes:
  189. //
  190. //
  191. //--------------------------------------------------------------------------
  194. PKERB_KERNEL_CONTEXT
  195. KerbReferenceContext(
  196. IN LSA_SEC_HANDLE ContextHandle,
  197. IN BOOLEAN RemoveFromList
  198. )
  199. {
  200. PKERB_KERNEL_CONTEXT Context = NULL;
  201. NTSTATUS Status;
  203. MAYBE_PAGED_CODE();
  205. Status = KSecReferenceListEntry(
  206. (PKSEC_LIST_ENTRY) ContextHandle,
  207. KERB_CONTEXT_SIGNATURE,
  208. RemoveFromList );
  210. if ( NT_SUCCESS( Status ) )
  211. {
  212. Context = (PKERB_KERNEL_CONTEXT) ContextHandle ;
  213. }
  215. //
  216. // In kernel mode we trust the caller to provide a valid pointer, but
  217. // make sure it is a kernel mode pointer.
  218. //
  221. return(Context);
  222. }
  225. //+-------------------------------------------------------------------------
  226. //
  227. // Function: KerbFreeContext
  228. //
  229. // Synopsis: Frees a context that is unlinked
  230. //
  231. // Effects: frees all storage associated with the context
  232. //
  233. // Arguments: Context - context to free
  234. //
  235. // Requires:
  236. //
  237. // Returns: none
  238. //
  239. // Notes:
  240. //
  241. //
  242. //--------------------------------------------------------------------------
  245. VOID
  246. KerbFreeContext(
  247. IN PKERB_KERNEL_CONTEXT Context
  248. )
  249. {
  250. PAGED_CODE();
  252. if (Context->TokenHandle != NULL)
  253. {
  254. NtClose(Context->TokenHandle);
  255. }
  256. if (Context->AccessToken != NULL)
  257. {
  258. ObDereferenceObject( Context->AccessToken );
  259. }
  261. if (Context->FullName.Buffer != NULL)
  262. {
  263. KerbFree(Context->FullName.Buffer);
  264. }
  265. if (Context->SessionKey.keyvalue.value != NULL)
  266. {
  267. KerbFree(Context->SessionKey.keyvalue.value);
  268. }
  270. if (Context->pbMarshalledTargetInfo != NULL)
  271. {
  272. KerbFree(Context->pbMarshalledTargetInfo);
  273. }
  274. KerbFree(Context);
  276. }
  278. //+-------------------------------------------------------------------------
  279. //
  280. // Function: KerbDereferenceContext
  281. //
  282. // Synopsis: Dereferences a logon session - if reference count goes
  283. // to zero it frees the logon session
  284. //
  285. // Effects: decrements reference count
  286. //
  287. // Arguments: Context - Logon session to dereference
  288. //
  289. // Requires:
  290. //
  291. // Returns: none
  292. //
  293. // Notes:
  294. //
  295. //
  296. //--------------------------------------------------------------------------
  299. VOID
  300. KerbDereferenceContext(
  301. IN PKERB_KERNEL_CONTEXT Context
  302. )
  303. {
  304. BOOLEAN Delete ;
  306. MAYBE_PAGED_CODE();
  308. KSecDereferenceListEntry(
  309. (PKSEC_LIST_ENTRY) Context,
  310. &Delete );
  312. if ( Delete )
  313. {
  314. KerbFreeContext( Context );
  315. }
  316. }
  319. //+-------------------------------------------------------------------------
  320. //
  321. // Function: KerbCreateKernelModeContext
  322. //
  323. // Synopsis: Creates a kernel-mode context to support impersonation and
  324. // message integrity and privacy
  325. //
  326. // Effects:
  327. //
  328. // Arguments:
  329. //
  330. // Requires:
  331. //
  332. // Returns:
  333. //
  334. // Notes:
  335. //
  336. //
  337. //--------------------------------------------------------------------------
  339. NTSTATUS
  340. KerbCreateKernelModeContext(
  341. IN LSA_SEC_HANDLE ContextHandle,
  342. IN PSecBuffer MarshalledContext,
  343. OUT PKERB_KERNEL_CONTEXT * NewContext
  344. )
  345. {
  346. NTSTATUS Status;
  347. PKERB_KERNEL_CONTEXT Context = NULL;
  348. PKERB_PACKED_CONTEXT PackedContext ;
  349. PUCHAR Where;
  351. PAGED_CODE();
  353. if (MarshalledContext->cbBuffer < sizeof(KERB_PACKED_CONTEXT))
  354. {
  355. DebugLog((DEB_ERROR,"Invalid buffer size for marshalled context: was 0x%x, needed 0x%x\n",
  356. MarshalledContext->cbBuffer, sizeof(KERB_CONTEXT)));
  357. return(STATUS_INVALID_PARAMETER);
  358. }
  360. PackedContext = (PKERB_PACKED_CONTEXT) MarshalledContext->pvBuffer;
  362. Status = KerbAllocateContext( &Context );
  363. if (!NT_SUCCESS(Status))
  364. {
  365. goto Cleanup;
  366. }
  368. KsecInitializeListEntry( &Context->List, KERB_CONTEXT_SIGNATURE );
  370. Context->Lifetime = PackedContext->Lifetime;
  371. Context->RenewTime = PackedContext->RenewTime;
  372. Context->Nonce = PackedContext->Nonce;
  373. Context->ReceiveNonce = PackedContext->ReceiveNonce;
  374. Context->ContextFlags = PackedContext->ContextFlags;
  375. Context->ContextAttributes = PackedContext->ContextAttributes;
  376. Context->EncryptionType = PackedContext->EncryptionType;
  378. Context->LsaContextHandle = ContextHandle;
  379. Context->ReceiveNonce = Context->Nonce;
  380. Context->TokenHandle = (HANDLE) ULongToPtr(PackedContext->TokenHandle);
  382. //
  383. // Fill in the full name, which is the concatenation of the client name
  384. // and client realm with a '\\' separator
  385. //
  387. Context->FullName.MaximumLength = PackedContext->ClientName.Length +
  388. PackedContext->ClientRealm.Length +
  389. sizeof(WCHAR);
  390. Context->FullName.Buffer = (LPWSTR) KerbAllocate(Context->FullName.MaximumLength);
  391. if (Context->FullName.Buffer == NULL)
  392. {
  393. Status = STATUS_INSUFFICIENT_RESOURCES;
  394. goto Cleanup;
  395. }
  397. Where = (PUCHAR) Context->FullName.Buffer;
  398. if (PackedContext->ClientRealm.Length != 0)
  399. {
  400. RtlCopyMemory(
  401. Where,
  402. (PUCHAR) PackedContext + (ULONG_PTR) PackedContext->ClientRealm.Buffer,
  403. PackedContext->ClientRealm.Length
  404. );
  405. Where += PackedContext->ClientRealm.Length;
  406. *(LPWSTR) Where = L'\\';
  407. Where += sizeof(WCHAR);
  408. }
  410. if (PackedContext->ClientName.Length != 0)
  411. {
  412. RtlCopyMemory(
  413. Where,
  414. (PUCHAR) PackedContext + (ULONG_PTR) PackedContext->ClientName.Buffer,
  415. PackedContext->ClientName.Length
  416. );
  417. Where += PackedContext->ClientName.Length;
  418. }
  420. Context->FullName.Length = (USHORT) (Where - (PUCHAR) Context->FullName.Buffer);
  422. //
  423. // Copy in the session key
  424. //
  428. Context->SessionKey.keytype = PackedContext->SessionKeyType;
  429. Context->SessionKey.keyvalue.length = PackedContext->SessionKeyLength;
  430. if (Context->SessionKey.keyvalue.length != 0)
  431. {
  432. Context->SessionKey.keyvalue.value = (PUCHAR) KerbAllocate( Context->SessionKey.keyvalue.length );
  433. if (Context->SessionKey.keyvalue.value == NULL)
  434. {
  435. Status = STATUS_INSUFFICIENT_RESOURCES;
  436. goto Cleanup;
  437. }
  438. RtlCopyMemory(
  439. Context->SessionKey.keyvalue.value,
  440. (PUCHAR) PackedContext + PackedContext->SessionKeyOffset,
  441. Context->SessionKey.keyvalue.length
  442. );
  443. }
  446. //
  447. // copy in the marshalled target info.
  448. //
  450. Context->cbMarshalledTargetInfo = PackedContext->MarshalledTargetInfoLength;
  451. if (PackedContext->MarshalledTargetInfo)
  452. {
  453. Context->pbMarshalledTargetInfo = (PUCHAR) KerbAllocate( Context->cbMarshalledTargetInfo );
  454. if (Context->pbMarshalledTargetInfo == NULL)
  455. {
  456. Status = STATUS_INSUFFICIENT_RESOURCES;
  457. goto Cleanup;
  458. }
  459. RtlCopyMemory(
  460. Context->pbMarshalledTargetInfo,
  461. (PUCHAR) PackedContext + PackedContext->MarshalledTargetInfo,
  462. Context->cbMarshalledTargetInfo
  463. );
  465. } else {
  466. Context->pbMarshalledTargetInfo = NULL;
  467. }
  469. Status = KerbInsertContext(
  470. Context
  471. );
  472. if (!NT_SUCCESS(Status))
  473. {
  474. DebugLog((DEB_ERROR,"Failed to insert context: 0x%x\n",Status));
  475. goto Cleanup;
  476. }
  479. *NewContext = Context;
  481. Cleanup:
  482. if (!NT_SUCCESS(Status))
  483. {
  484. if (Context != NULL)
  485. {
  486. KerbFreeContext(Context);
  487. }
  488. }
  489. return(Status);
  491. }