archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
4.9 GiB
Tree: 5c6fe3db62
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '5c6fe3db62'
${ noResults }
windows-server-2003/inetsrv/iis/inc/tssec.hxx

645 lines
19 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. /*++
  4. Copyright (c) 1995 Microsoft Corporation
  6. Module Name:
  7. tssec.hxx
  9. Abstract:
  10. This file declares security related classes and functions
  12. Author:
  14. Murali R. Krishnan ( MuraliK ) 11-Oct-1995
  16. Environment:
  18. Win32 User Mode
  20. Project:
  22. Internet Services Common DLL
  24. Revision History:
  26. --*/
  28. # ifndef _TSSEC_HXX_
  29. # define _TSSEC_HXX_
  31. /************************************************************
  32. * Include Headers
  33. ************************************************************/
  35. # define SECURITY_WIN32
  36. #include <sspi.h> // Security Support Provider APIs
  38. #include <schnlsp.h>
  40. #include <pudebug.h>
  42. // forward declaration
  43. class IIS_SERVER_INSTANCE;
  44. class IIS_SSL_INFO;
  46. /************************************************************
  47. * Type Definitions
  48. ************************************************************/
  50. typedef BOOL (WINAPI *SECURITY_CONTEXT_DELETE_FUNCTION)( CtxtHandle*, PVOID );
  52. //
  53. // Globals
  54. //
  56. extern HANDLE g_hProcessImpersonationToken;
  57. extern HANDLE g_hProcessPrimaryToken;
  58. extern BOOL g_fUseSingleToken;
  60. //
  61. // The TCP_AUTHENT_INFO structure is used as a shorthand to convey
  62. // a bunch of authentication related information to a few routines that
  63. // need it.
  64. //
  65. class TCP_AUTHENT_INFO
  66. {
  67. public:
  68. TCP_AUTHENT_INFO( VOID )
  69. : fDontUseAnonSubAuth( TRUE ),
  70. dwLogonMethod ( LOGON32_LOGON_INTERACTIVE ),
  71. cbAnonAcctDesc ( 0 ),
  72. fPwdIsHashed ( FALSE )
  73. {
  74. }
  76. TCP_AUTHENT_INFO( TCP_AUTHENT_INFO *pTAI )
  77. : strAnonUserName ( pTAI->strAnonUserName),
  78. strAnonUserPassword ( pTAI->strAnonUserPassword),
  79. strDefaultLogonDomain ( pTAI->strDefaultLogonDomain),
  80. dwLogonMethod ( pTAI->dwLogonMethod),
  81. fDontUseAnonSubAuth ( pTAI->fDontUseAnonSubAuth),
  82. fPwdIsHashed ( pTAI->fPwdIsHashed),
  83. cbAnonAcctDesc ( pTAI->cbAnonAcctDesc),
  84. bAnonAcctDesc ( pTAI->bAnonAcctDesc.QuerySize())
  85. {
  86. if (bAnonAcctDesc.QuerySize() >= pTAI->bAnonAcctDesc.QuerySize())
  87. {
  88. CopyMemory( bAnonAcctDesc.QueryPtr(),
  89. pTAI->bAnonAcctDesc.QueryPtr(),
  90. pTAI->bAnonAcctDesc.QuerySize());
  91. }
  92. }
  94. STR strAnonUserName;
  95. STR strAnonUserPassword;
  96. STR strDefaultLogonDomain;
  97. DWORD dwLogonMethod;
  98. BOOL fDontUseAnonSubAuth;
  99. BOOL fPwdIsHashed;
  101. //
  102. // Stores the anonymous account descriptor
  103. //
  105. BUFFER bAnonAcctDesc;
  106. DWORD cbAnonAcctDesc;
  107. };
  109. typedef TCP_AUTHENT_INFO * PTCP_AUTHENT_INFO;
  112. //
  113. // The USER_AUTHENT_INFO holds authentication info for a domain user
  114. //
  115. class USER_AUTHENT_INFO
  116. {
  117. public:
  118. StatStr<UNLEN+1> strName;
  119. StatStr<DNLEN+1> strDomain;
  120. StatStr<PWLEN+1> strPassword;
  121. };
  123. typedef USER_AUTHENT_INFO * PUSER_AUTHENT_INFO;
  125. //
  126. // Security functions.
  127. //
  129. #define IIS_DNLEN 256
  130. #define MAX_ACCT_DESC_LEN (UNLEN+1+IIS_DNLEN+1+PWLEN+1)
  132. class CACHED_CREDENTIAL
  133. {
  134. public:
  135. CACHED_CREDENTIAL()
  136. {
  137. _ListEntry.Flink = NULL;
  138. _fHaveCredHandle = FALSE;
  139. }
  140. ~CACHED_CREDENTIAL();
  141. BOOL
  142. static CACHED_CREDENTIAL::GetCredential(
  143. LPSTR pszPackage,
  144. PIIS_SERVER_INSTANCE psi,
  145. PTCP_AUTHENT_INFO pTAI,
  146. CredHandle* prcred,
  147. ULONG* pcbMaxToken
  148. );
  149. LIST_ENTRY _ListEntry;
  151. private:
  152. STR _PackageName;
  153. STR _DefaultDomain;
  154. CredHandle _hcred;
  155. BOOL _fHaveCredHandle;
  156. ULONG _cbMaxToken; // Used for SSP, max message token size
  157. } ;
  159. class CACHED_TOKEN
  160. {
  161. public:
  162. CACHED_TOKEN( VOID )
  163. : _hToken( NULL ),
  164. _cRef ( 1 ),
  165. _TTL ( 2 ),
  166. m_hImpersonationToken( NULL ),
  167. m_fGuest ( FALSE ),
  168. m_dwLogonMethod ( 0 )
  169. {
  170. _ListEntry.Flink = NULL;
  171. _liExpiry.HighPart = 0x7fffffff;
  172. _liExpiry.LowPart = 0xffffffff;
  173. }
  175. ~CACHED_TOKEN( VOID )
  176. {
  177. if ( !g_fUseSingleToken )
  178. {
  179. DBG_ASSERT( _ListEntry.Flink == NULL );
  181. if ( m_hImpersonationToken) {
  183. DBG_REQUIRE( CloseHandle( m_hImpersonationToken ));
  184. m_hImpersonationToken = NULL;
  185. }
  187. if ( _hToken )
  188. {
  189. DBG_REQUIRE( CloseHandle( _hToken ) );
  190. _hToken = NULL;
  191. }
  192. }
  193. }
  195. static VOID Reference( CACHED_TOKEN * pct )
  196. {
  197. DBG_ASSERT( pct->_cRef > 0 );
  198. InterlockedIncrement( &pct->_cRef );
  199. }
  201. static VOID Dereference( CACHED_TOKEN * pct )
  202. {
  203. DBG_ASSERT( pct->_cRef > 0 );
  205. if ( !InterlockedDecrement( &pct->_cRef ) )
  206. {
  207. delete pct;
  208. }
  209. }
  211. HANDLE QueryImpersonationToken(VOID) const
  212. { return g_fUseSingleToken ? g_hProcessImpersonationToken : m_hImpersonationToken; }
  214. HANDLE QueryPrimaryToken(VOID) const
  215. { return g_fUseSingleToken ? g_hProcessImpersonationToken : m_hImpersonationToken; }
  217. VOID SetImpersonationToken(IN HANDLE hImpersonation)
  218. {
  219. DBG_ASSERT( m_hImpersonationToken == NULL);
  220. if ( g_fUseSingleToken )
  221. {
  222. DBG_ASSERT( FALSE );
  223. }
  224. else
  225. {
  226. m_hImpersonationToken = hImpersonation;
  227. }
  228. }
  230. VOID SetExpiry( LARGE_INTEGER* pE )
  231. {
  232. if ( g_fUseSingleToken )
  233. {
  234. DBG_ASSERT( FALSE );
  235. }
  237. if ( NULL != pE )
  238. {
  239. memcpy( &_liExpiry, pE, sizeof(LARGE_INTEGER) );
  240. }
  241. else
  242. {
  243. _liExpiry.HighPart = 0x7fffffff;
  244. _liExpiry.LowPart = 0xffffffff;
  245. }
  246. }
  248. LARGE_INTEGER* QueryExpiry() { return &_liExpiry; }
  250. BOOL IsGuest(VOID) const { return (m_fGuest); }
  251. VOID SetGuest(IN BOOL fGuest) { m_fGuest = fGuest; }
  253. HANDLE _hToken; // Must be first data member
  254. LIST_ENTRY _ListEntry;
  255. LONG _cRef;
  256. DWORD _TTL; // Gets decremented on each timeout, when zero,
  257. // remove this item from the cache
  258. BOOL m_fGuest; // Is this token a guest user?
  259. HANDLE m_hImpersonationToken;
  261. CHAR _achAcctDesc[MAX_ACCT_DESC_LEN];
  262. DWORD m_dwAcctDescLen;
  263. LARGE_INTEGER _liExpiry;
  265. DWORD m_dwLogonMethod;
  266. CHAR m_achUserName[ UNLEN ];
  267. CHAR m_achDomainName[ IIS_DNLEN ];
  268. };
  270. typedef CACHED_TOKEN* TS_TOKEN; // Choose an incompatible type so warnings
  271. // are produced
  273. ///////////////////////////////////////////////////////////////////////
  274. //
  275. // NT Authentication support
  276. //
  277. //////////////////////////////////////////////////////////////////////
  279. //
  280. // TCP Authenticator flags passed to init
  281. //
  283. #define TCPAUTH_SERVER 0x00000001 // This is the server side
  284. #define TCPAUTH_CLIENT 0x00000002 // This is the client side
  285. #define TCPAUTH_UUENCODE 0x00000004 // Input buffers are uudecoded,
  286. // output buffers are uuencoded
  287. #define TCPAUTH_BASE64 0x00000008 // uses base64 for uuenc/dec
  289. #define CRED_STATUS_INVALID_TIME 0x00001000
  290. #define CRED_STATUS_REVOKED 0x00002000
  292. class TCP_AUTHENT
  293. {
  294. public:
  296. dllexp TCP_AUTHENT( DWORD AuthFlags );
  297. dllexp ~TCP_AUTHENT();
  299. //
  300. // Server side only: For clients that pass clear text, the server should
  301. // authenticate with this method
  302. //
  304. dllexp BOOL ClearTextLogon( CHAR * pszUser,
  305. CHAR * pszPassword,
  306. BOOL * pfAsGuest,
  307. BOOL * pfAsAnonymous,
  308. IIS_SERVER_INSTANCE * pInstance,
  309. PTCP_AUTHENT_INFO pTAI,
  310. CHAR * pszWorkstation = NULL
  311. );
  313. #if 0
  314. //
  315. // Server side only : Digest logon
  316. //
  318. dllexp BOOL LogonDigestUser(
  319. PSTR pszUserName,
  320. PSTR pszRealm,
  321. PSTR pszUri,
  322. PSTR pszMethod,
  323. PSTR pszNonce,
  324. PSTR pszServerNonce,
  325. PSTR pszDigest,
  326. DWORD dwAlgo,
  327. LPTSVC_INFO psi
  328. );
  329. #endif
  331. //
  332. // Server side only: For filters that set access tokens
  333. //
  335. dllexp BOOL SetAccessToken( HANDLE hPrimaryToken,
  336. HANDLE hImpersonationToken
  337. );
  339. //
  340. // Client calls this first to get the negotiation message which
  341. // it then sends to the server. The server calls this with the
  342. // client result and sends back the result. The conversation
  343. // continues until *pcbBuffOut is zero and *pfNeedMoreData is FALSE.
  344. //
  345. // On the first call, pszPackage must point to the zero terminated
  346. // authentication package name to be used and pszUser and pszPassword
  347. // should point to the user name and password to authenticated with
  348. // on the client side (server side will always be NULL).
  349. //
  351. dllexp BOOL Converse( VOID * pBuffIn,
  352. DWORD cbBuffIn,
  353. BUFFER * pbuffOut,
  354. DWORD * pcbBuffOut,
  355. BOOL * pfNeedMoreData,
  356. PTCP_AUTHENT_INFO pTAI,
  357. CHAR * pszPackage = NULL,
  358. CHAR * pszUser = NULL,
  359. CHAR * pszPassword = NULL,
  360. PIIS_SERVER_INSTANCE psi = NULL );
  362. dllexp BOOL TCP_AUTHENT::ConverseEx(
  363. SecBufferDesc* pInSecBufDesc, // passed in by caller
  364. BUFFER * pDecodedBuffer, // passed in by caller
  365. BUFFER * pbuffOut,
  366. DWORD * pcbBuffOut,
  367. BOOL * pfNeedMoreData,
  368. PTCP_AUTHENT_INFO pTAI,
  369. CHAR * pszPackage,
  370. CHAR * pszUser,
  371. CHAR * pszPassword,
  372. PIIS_SERVER_INSTANCE psi
  373. );
  375. //
  376. // Server side only. Impersonates client after successful authentication
  377. //
  379. dllexp BOOL Impersonate( VOID );
  380. dllexp BOOL RevertToSelf( VOID );
  381. dllexp BOOL IsForwardable( VOID ) const;
  383. dllexp BOOL StartProcessAsUser( LPCSTR lpApplicationName,
  384. LPSTR lpCommandLine,
  385. BOOL bInheritHandles,
  386. DWORD dwCreationFlags,
  387. LPVOID lpEnvironment,
  388. LPCSTR lpCurrentDirectory,
  389. LPSTARTUPINFOA lpStartupInfo,
  390. LPPROCESS_INFORMATION lpProcessInformation
  391. );
  393. //
  394. // Gives the name of all authentication packages in a double null
  395. // terminated list. i.e.:
  396. //
  397. // NTLM\0
  398. // MSKerberos\0
  399. // \0
  400. //
  402. dllexp BOOL EnumAuthPackages( BUFFER * pBuff );
  404. //
  405. // Returns the user name associated with this context, not supported for
  406. // clear text
  407. //
  409. dllexp BOOL QueryUserName( STR * pBuff, BOOL fImpersonated = FALSE );
  410. dllexp BOOL QueryExpiry( PTimeStamp pExpiry );
  412. dllexp TS_TOKEN GetToken( VOID ) const
  413. { return _hToken; }
  415. //
  416. // Gets actual impersonation token handle
  417. //
  419. dllexp HANDLE QueryPrimaryToken( VOID );
  420. dllexp HANDLE QueryImpersonationToken( VOID );
  422. dllexp HANDLE GetUserHandle( VOID )
  423. { return QueryPrimaryToken(); }
  425. dllexp BOOL QueryFullyQualifiedUserName(
  426. LPSTR pszUser,
  427. STR * strU,
  428. IIS_SERVER_INSTANCE * psi,
  429. PTCP_AUTHENT_INFO pTAI
  430. );
  432. dllexp BOOL IsGuest( BOOL );
  434. dllexp BOOL Reset( BOOL fSessionReset = TRUE );
  436. dllexp CredHandle * QueryCredHandle( VOID )
  437. { return (_fHaveCredHandle ? &_hcred : NULL); }
  439. dllexp CtxtHandle * QueryCtxtHandle( VOID )
  440. { return (_fHaveCtxtHandle ? &_hctxt : NULL); }
  442. dllexp CtxtHandle * QuerySslCtxtHandle( VOID )
  443. { return _phSslCtxt; }
  445. dllexp BOOL SetSecurityContextToken( CtxtHandle* pCtxt,
  446. HANDLE hImpersonationToken,
  447. SECURITY_CONTEXT_DELETE_FUNCTION pFn,
  448. PVOID pArg,
  449. IIS_SSL_INFO *pSslInfo );
  451. dllexp BOOL IsSslCertPresent();
  453. dllexp BOOL DeleteCachedTokenOnReset( VOID );
  455. dllexp BOOL QueryCertificateIssuer( LPSTR ppIssuer, DWORD, LPBOOL );
  456. dllexp BOOL QueryCertificateSubject( LPSTR ppSubject, DWORD, LPBOOL );
  457. dllexp BOOL QueryCertificateFlags( LPDWORD pdwFlags, LPBOOL );
  458. dllexp BOOL QueryCertificateSerialNumber( LPBYTE* pSerialNumber, LPDWORD pdwLen, LPBOOL );
  460. dllexp BOOL QueryServerCertificateIssuer( LPSTR* ppIssuer, LPBOOL );
  461. dllexp BOOL QueryServerCertificateSubject( LPSTR* ppSubject, LPBOOL );
  462. dllexp BOOL QueryEncryptionKeySize( LPDWORD, LPBOOL );
  463. dllexp BOOL QueryEncryptionServerPrivateKeySize( LPDWORD, LPBOOL );
  465. dllexp BOOL
  466. GetClientCertBlob(
  467. IN DWORD cbAllocated,
  468. OUT DWORD * pdwCertEncodingType,
  469. OUT unsigned char * pbCertEncoded,
  470. OUT DWORD * pcbCertEncoded,
  471. OUT DWORD * pfCertificateVerified);
  473. dllexp BOOL UpdateClientCertFlags( DWORD dwFlags, LPBOOL pfCert, LPBYTE pbCa, DWORD dwCa );
  475. dllexp BOOL PackageSupportsEncoding( LPSTR pszPackage );
  477. dllexp BOOL SetTargetName( LPSTR pszTarget );
  479. private:
  480. BOOL QueryCertificateInfo( LPBOOL );
  481. BOOL QueryServerCertificateInfo( LPBOOL );
  483. protected:
  484. DWORD _fClient:1; // TRUE if client side, FALSE if SERVER side
  485. DWORD _fNewConversation:1; // Forces initialization params for client side
  486. DWORD _fUUEncodeData:1; // uuencode/decode input and output buffers
  487. DWORD _fClearText:1; // Use the Gina APIs rather then the SSP APIs
  488. DWORD _fHaveCredHandle:1; // _hcred contains a credential handle
  489. DWORD _fHaveCtxtHandle:1; // _hctxt contains a context handle
  490. DWORD _fBase64:1; // uses base64 for uuenc/dec
  491. DWORD _fKnownToBeGuest:1; // TRUE if SSPI flag access token as "Guest"
  492. DWORD _fHaveAccessTokens:1;// TRUE if access token set by caller
  493. DWORD _fHaveExpiry:1; // TRUE if clear text logon has pwd expiry time
  494. DWORD _fDelegate:1; // TRUE if security context forwardable
  495. DWORD _fCertCheckForRevocation:1; // TRUE if we should revocation check
  496. DWORD _fCertCheckCacheOnly:1; // TRUE if we should not go on wire
  497. TS_TOKEN _hToken; // Used for clear text
  498. CredHandle _hcred; // Used for SSP
  499. ULONG _cbMaxToken; // Used for SSP, max message token size
  500. HANDLE _hSSPToken; // Used for SSP, caches real token
  501. HANDLE _hSSPPrimaryToken;// Used for SSP, caches duplicated token
  502. CtxtHandle _hctxt; // Used for SSP
  504. SECURITY_CONTEXT_DELETE_FUNCTION _pDeleteFunction;
  505. PVOID _pDeleteArg;
  506. LARGE_INTEGER _liPwdExpiry;
  508. PCERT_CONTEXT _pClientCertContext;
  509. DWORD _dwX509Flags;
  510. IIS_SSL_INFO * _pSslInfo;
  511. PX509Certificate _pServerX509Certificate;
  512. DWORD _dwServerX509Flags;
  513. DWORD _dwServerBitsInKey;
  514. CtxtHandle * _phSslCtxt; // ptr to SSL sec context
  515. STR _strTarget;
  516. };
  520. DWORD
  521. InitializeSecurity(
  522. HINSTANCE hDll
  523. );
  525. VOID
  526. TerminateSecurity(
  527. VOID
  528. );
  531. dllexp
  532. BOOL
  533. TsImpersonateUser(
  534. TS_TOKEN hToken
  535. );
  537. dllexp
  538. HANDLE
  539. TsTokenToHandle(
  540. TS_TOKEN hToken
  541. );
  543. dllexp
  544. HANDLE
  545. TsTokenToImpHandle(
  546. TS_TOKEN hToken
  547. );
  549. dllexp
  550. DWORD
  551. TsApiAccessCheck(
  552. ACCESS_MASK maskDesiredAccess
  553. );
  556. dllexp
  557. BOOL
  558. TsDeleteUserToken(
  559. TS_TOKEN hToken
  560. );
  562. dllexp
  563. TS_TOKEN
  564. TsLogonUser(
  565. CHAR * pszUser,
  566. CHAR * pszPassword,
  567. BOOL * pfAsGuest,
  568. BOOL * pfAsAnonymous,
  569. IIS_SERVER_INSTANCE * pInstance,
  570. PTCP_AUTHENT_INFO pTAI,
  571. CHAR * pszWorkstation = NULL,
  572. LARGE_INTEGER * pExpiry = NULL,
  573. BOOL * pfExpiry = NULL
  574. );
  576. dllexp
  577. BOOL
  578. TsGetSecretW(
  579. WCHAR * pszSecretName,
  580. BUFFER * pbufSecret
  581. );
  583. dllexp
  584. DWORD
  585. TsSetSecretW(
  586. IN LPWSTR SecretName,
  587. IN LPWSTR pSecret,
  588. IN DWORD cbSecret
  589. );
  591. #ifdef CHICAGO
  592. dllexp
  593. BOOL
  594. TsIsUserLevelPresent(VOID);
  595. #endif
  598. dllexp
  599. BOOL
  600. uudecode(
  601. char * bufcoded,
  602. BUFFER * pbuffdecoded,
  603. DWORD * pcbDecoded = NULL,
  604. BOOL fBase64 = FALSE
  605. );
  607. dllexp
  608. BOOL
  609. uuencode(
  610. BYTE * pchData,
  611. DWORD cbData,
  612. BUFFER * pbuffEncoded,
  613. BOOL fBase64 = FALSE
  614. );
  616. dllexp
  617. BOOL
  618. BuildAnonymousAcctDesc(
  619. PTCP_AUTHENT_INFO pTAI
  620. );
  622. dllexp
  623. QuerySingleAccessToken(
  624. VOID
  625. );
  627. extern TS_TOKEN g_pctProcessToken;
  629. #include <tslogon.hxx>
  631. #include <wintrust.h>
  632. typedef
  633. LONG (WINAPI *PFN_WinVerifyTrust)(IN OPTIONAL HWND hwnd,
  634. IN GUID *pgActionID,
  635. IN LPVOID pWintrustData);
  637. extern HINSTANCE g_hWinTrust;
  638. extern PFN_WinVerifyTrust g_pfnWinVerifyTrust;
  641. #endif
  643. /************************ End of File ***********************/
  645.