archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 5c6fe3db62
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '5c6fe3db62'
${ noResults }
windows-server-2003/inetsrv/iis/svcs/infocomm/dcomadm/interf2/secdat.hxx

535 lines
9.9 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. /*++
  3. Copyright (c) 1997 Microsoft Corporation
  5. Module Name:
  7. secdat.hxx
  9. Abstract:
  11. This module contains the declarations for the ADM_SECURE_DATA class.
  13. Author:
  15. Keith Moore (keithmo) 17-Feb-1997
  17. Revision History:
  19. --*/
  22. #ifndef _SECDAT_HXX_
  23. #define _SECDAT_HXX_
  26. #include <reftrace.h>
  27. #include <seccom.hxx>
  30. class ADM_GUID_MAP {
  32. public:
  34. //
  35. // Usual constructor/destructor stuff.
  36. //
  38. ADM_GUID_MAP(
  39. IN IUnknown * Object,
  40. IN GUID guidServer);
  42. ~ADM_GUID_MAP();
  44. //
  45. // Static initializers.
  46. //
  48. static
  49. VOID
  50. Initialize( VOID );
  52. static
  53. VOID
  54. Terminate( VOID );
  56. //
  57. // Find and reference the ADM_SECURE_DATA object associatd with the
  58. // given object; create if not found.
  59. //
  61. static
  62. ADM_GUID_MAP *
  63. FindAndReferenceGuidMap(
  64. IN IUnknown * Object );
  66. //
  67. // Reference/dereference methods.
  68. //
  70. VOID
  71. Reference() {
  72. LONG result = InterlockedIncrement( &m_ReferenceCount );
  74. #if DBG
  75. if( sm_RefTraceLog != NULL ) {
  76. WriteRefTraceLog(
  77. sm_RefTraceLog,
  78. result,
  79. (PVOID)this
  80. );
  81. }
  82. #endif
  83. return (VOID)result;
  84. }
  86. VOID
  87. Dereference() {
  88. LONG result = InterlockedDecrement( &m_ReferenceCount );
  90. #if DBG
  91. if( sm_RefTraceLog != NULL ) {
  92. WriteRefTraceLog(
  93. sm_RefTraceLog,
  94. result,
  95. (PVOID)this
  96. );
  97. }
  98. #endif
  100. if( result == 0 ) {
  101. delete this;
  102. }
  103. }
  105. GUID GetGuid() {
  106. return m_guidServer;
  107. }
  109. private:
  111. //
  112. // Global list of ADM_GUID_MAP objects.
  113. //
  115. static LIST_ENTRY sm_GuidMapListHead;
  117. //
  118. // Lock protecting the global list.
  119. //
  121. static CRITICAL_SECTION sm_GuidMapDataLock;
  123. #if DBG
  124. static DWORD sm_GuidMapLockOwner;
  125. static PTRACE_LOG sm_RefTraceLog;
  126. #endif
  128. //
  129. // This object's links onto the global list.
  130. //
  132. LIST_ENTRY m_GuidMapListEntry;
  134. //
  135. // Pointer to the associated object.
  136. //
  138. IUnknown * m_Object;
  140. //
  141. // This object's reference count.
  142. //
  144. LONG m_ReferenceCount;
  146. //
  147. // A lock protecting this object.
  148. //
  150. CRITICAL_SECTION m_ObjectLock;
  152. //
  153. // Server's GUID
  154. //
  156. GUID m_guidServer;
  158. //
  159. // Lock manipulators.
  160. //
  162. static
  163. VOID
  164. AcquireDataLock() {
  165. EnterCriticalSection( &sm_GuidMapDataLock );
  166. #if DBG
  167. sm_GuidMapLockOwner = GetCurrentThreadId();
  168. #endif
  169. }
  171. static
  172. VOID
  173. ReleaseDataLock() {
  174. #if DBG
  175. sm_GuidMapLockOwner = 0;
  176. #endif
  177. LeaveCriticalSection( &sm_GuidMapDataLock );
  178. }
  180. VOID
  181. LockThis() {
  182. EnterCriticalSection( &m_ObjectLock );
  183. }
  185. VOID
  186. UnlockThis() {
  187. LeaveCriticalSection( &m_ObjectLock );
  188. }
  190. };
  191. //
  192. // We need to associate some data with each client-side DCOM object. The
  193. // following class will manage this data.
  194. //
  196. class ADM_SECURE_DATA {
  198. public:
  200. //
  201. // Usual constructor/destructor stuff.
  202. //
  204. ADM_SECURE_DATA(
  205. IN IUnknown * Object,
  206. IN GUID guidServer,
  207. IN BOOL bServer);
  209. ~ADM_SECURE_DATA();
  211. //
  212. // Static initializers.
  213. //
  215. static
  216. BOOL
  217. Initialize(
  218. HINSTANCE hDll
  219. );
  221. static
  222. VOID
  223. Terminate();
  225. //
  226. // Find and reference the ADM_SECURE_DATA object associatd with the
  227. // given object; create if not found.
  228. //
  230. static
  231. ADM_SECURE_DATA *
  232. FindAndReferenceServerSecureData(
  233. IN IUnknown * Object,
  234. IN BOOL CreateIfNotFound
  235. );
  237. static
  238. ADM_SECURE_DATA *
  239. FindAndReferenceClientSecureData(
  240. IN IUnknown * Object );
  242. static
  243. ADM_SECURE_DATA *
  244. FindAndReferenceClientSecureData(
  245. IN ADM_GUID_MAP *pguidmapRelated );
  247. static
  248. ADM_SECURE_DATA *
  249. FindOrAddAndReferenceClientSecureData(
  250. IN IUnknown * Object );
  252. //
  253. // Query the send and receive data encryption objects.
  254. //
  256. HRESULT
  257. GetClientSendCryptoStorage(
  258. OUT IIS_CRYPTO_STORAGE ** SendCryptoStorage,
  259. IUnknown * Object
  260. );
  262. HRESULT
  263. GetClientReceiveCryptoStorage(
  264. OUT IIS_CRYPTO_STORAGE ** ReceiveCryptoStorage,
  265. IUnknown * Object
  266. );
  268. HRESULT
  269. GetServerSendCryptoStorage(
  270. OUT IIS_CRYPTO_STORAGE ** SendCryptoStorage
  271. );
  273. HRESULT
  274. GetServerReceiveCryptoStorage(
  275. OUT IIS_CRYPTO_STORAGE ** ReceiveCryptoStorage
  276. );
  278. //
  279. // Reference/dereference methods.
  280. //
  282. VOID
  283. Reference() {
  284. LONG result = InterlockedIncrement( &m_ReferenceCount );
  286. #if DBG
  287. if( sm_RefTraceLog != NULL ) {
  288. WriteRefTraceLog(
  289. sm_RefTraceLog,
  290. result,
  291. (PVOID)this
  292. );
  293. }
  294. #endif
  295. return (VOID)result;
  296. }
  298. VOID
  299. Dereference() {
  300. LONG result = InterlockedDecrement( &m_ReferenceCount );
  302. #if DBG
  303. if( sm_RefTraceLog != NULL ) {
  304. WriteRefTraceLog(
  305. sm_RefTraceLog,
  306. result,
  307. (PVOID)this
  308. );
  309. }
  310. #endif
  312. if( result == 0 ) {
  313. delete this;
  314. }
  315. }
  317. //
  318. // Server-side key exchange.
  319. //
  321. HRESULT
  322. DoServerSideKeyExchangePhase1(
  323. IN PIIS_CRYPTO_BLOB pClientKeyExchangeKeyBlob,
  324. IN PIIS_CRYPTO_BLOB pClientSignatureKeyBlob,
  325. OUT PIIS_CRYPTO_BLOB * ppServerKeyExchangeKeyBlob,
  326. OUT PIIS_CRYPTO_BLOB * ppServerSignatureKeyBlob,
  327. OUT PIIS_CRYPTO_BLOB * ppServerSessionKeyBlob
  328. );
  330. HRESULT
  331. DoServerSideKeyExchangePhase2(
  332. IN PIIS_CRYPTO_BLOB pClientSessionKeyBlob,
  333. IN PIIS_CRYPTO_BLOB pClientHashBlob,
  334. OUT PIIS_CRYPTO_BLOB * ppServerHashBlob
  335. );
  337. GUID
  338. GetGuid()
  339. {
  340. return m_guidServer;
  341. }
  342. private:
  344. //
  345. // Global list of ADM_SECURE_DATA objects.
  346. //
  348. static LIST_ENTRY sm_ServerSecureDataListHead;
  350. static LIST_ENTRY sm_ClientSecureDataListHead;
  352. //
  353. // Lock protecting the global list.
  354. //
  356. static CRITICAL_SECTION sm_ServerSecureDataLock;
  358. static CRITICAL_SECTION sm_ClientSecureDataLock;
  360. #if DBG
  361. static DWORD sm_ServerSecureDataLockOwner;
  362. static DWORD sm_ClientSecureDataLockOwner;
  363. static PTRACE_LOG sm_RefTraceLog;
  364. #endif
  366. //
  367. // Cached crypto providers. We only open these once, to avoid
  368. // the huge amount of DLL thrashing that takes place when a
  369. // provider is opened.
  370. //
  372. static HCRYPTPROV sm_ServerCryptoProvider;
  373. static HCRYPTPROV sm_ClientCryptoProvider;
  375. //
  376. // This object's links onto the global list.
  377. //
  379. LIST_ENTRY m_SecureDataListEntry;
  381. //
  382. // Pointer to the associated object.
  383. //
  385. IUnknown * m_Object;
  387. //
  388. // This object's reference count.
  389. //
  391. LONG m_ReferenceCount;
  393. //
  394. // Crypto stuff.
  395. //
  397. IIS_CRYPTO_EXCHANGE_CLIENT * m_KeyExchangeClient;
  398. IIS_CRYPTO_EXCHANGE_SERVER * m_KeyExchangeServer;
  399. IIS_CRYPTO_STORAGE * m_SendCryptoStorage;
  400. IIS_CRYPTO_STORAGE * m_ReceiveCryptoStorage;
  402. //
  403. // A lock protecting this object.
  404. //
  406. CRITICAL_SECTION m_ObjectLock;
  408. //
  409. // Server's CLSID
  410. //
  412. GUID m_guidServer;
  415. BOOL m_bIsServer;
  416. //
  417. // Lock manipulators.
  418. //
  420. static
  421. VOID
  422. AcquireServerDataLock() {
  423. EnterCriticalSection( &sm_ServerSecureDataLock );
  424. #if DBG
  425. sm_ServerSecureDataLockOwner = GetCurrentThreadId();
  426. #endif
  427. }
  429. static
  430. VOID
  431. AcquireClientDataLock() {
  432. EnterCriticalSection( &sm_ClientSecureDataLock );
  433. #if DBG
  434. sm_ClientSecureDataLockOwner = GetCurrentThreadId();
  435. #endif
  436. }
  438. static
  439. VOID
  440. ReleaseServerDataLock() {
  441. #if DBG
  442. sm_ServerSecureDataLockOwner = 0;
  443. #endif
  444. LeaveCriticalSection( &sm_ServerSecureDataLock );
  445. }
  447. static
  448. VOID
  449. ReleaseClientDataLock() {
  450. #if DBG
  451. sm_ClientSecureDataLockOwner = 0;
  452. #endif
  453. LeaveCriticalSection( &sm_ClientSecureDataLock );
  454. }
  456. VOID
  457. LockThis() {
  458. EnterCriticalSection( &m_ObjectLock );
  459. }
  461. VOID
  462. UnlockThis() {
  463. LeaveCriticalSection( &m_ObjectLock );
  464. }
  466. //
  467. // Crypto provider accessors.
  468. //
  470. HRESULT
  471. GetCryptoProviderHelper(
  472. OUT HCRYPTPROV * UserProvider,
  473. OUT HCRYPTPROV * CachedProvider,
  474. IN LPTSTR ContainerName,
  475. IN DWORD CryptoFlags
  476. );
  478. HRESULT
  479. GetServerCryptoProvider(
  480. OUT HCRYPTPROV * Provider
  481. )
  482. {
  483. if( sm_ServerCryptoProvider != CRYPT_NULL ) {
  484. *Provider = sm_ServerCryptoProvider;
  485. return NO_ERROR;
  486. }
  488. return GetCryptoProviderHelper(
  489. Provider,
  490. &sm_ServerCryptoProvider,
  491. DCOM_SERVER_CONTAINER,
  492. CRYPT_MACHINE_KEYSET
  493. );
  494. }
  497. HRESULT
  498. GetClientCryptoProvider(
  499. OUT HCRYPTPROV * Provider
  500. );
  502. HRESULT
  503. GenerateNameForContainer(
  504. IN OUT PCHAR pszContainerName,
  505. IN OUT DWORD dwBufferLen
  506. );
  509. HRESULT
  510. GetTextualSid(
  511. PSID pSid,
  512. LPTSTR TextualSid,
  513. LPDWORD cchSidSize
  514. );
  518. VOID
  519. CleanupCryptoData();
  521. //
  522. // Key exchange engine.
  523. //
  525. HRESULT
  526. DoClientSideKeyExchange(
  527. IUnknown * Object
  528. );
  530. };
  534. #endif // _SECDAT_HXX_