archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 5c6fe3db62
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '5c6fe3db62'
${ noResults }
windows-server-2003/net/layer2svc/zeroconf/server/utils.c

488 lines
15 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. #include <precomp.h>
  2. #include "tracing.h"
  3. #include "utils.h"
  5. //------------------------------------
  6. // Allocates storage for RPC transactions. The RPC stubs will either call
  7. // MIDL_user_allocate when it needs to un-marshall data into a buffer
  8. // that the user must free. RPC servers will use MIDL_user_allocate to
  9. // allocate storage that the RPC server stub will free after marshalling
  10. // the data.
  11. PVOID
  12. MIDL_user_allocate(IN size_t NumBytes)
  13. {
  14. PVOID pMem = NULL;
  15. DWORD dwErr = ERROR_SUCCESS;
  17. if (NumBytes == 0)
  18. {
  19. dwErr = ERROR_INVALID_PARAMETER;
  20. }
  21. else
  22. {
  23. pMem = LocalAlloc(LMEM_ZEROINIT,NumBytes);
  24. if (pMem == NULL)
  25. dwErr = GetLastError();
  26. }
  27. DbgPrint((TRC_MEM, "[MIDL_user_allocate(%d)=0x%p;%d]", NumBytes, pMem, dwErr));
  28. SetLastError(dwErr);
  29. return pMem;
  30. }
  32. //------------------------------------
  33. // Frees storage used in RPC transactions. The RPC client can call this
  34. // function to free buffer space that was allocated by the RPC client
  35. // stub when un-marshalling data that is to be returned to the client.
  36. // The Client calls MIDL_user_free when it is finished with the data and
  37. // desires to free up the storage.
  38. // The RPC server stub calls MIDL_user_free when it has completed
  39. // marshalling server data that is to be passed back to the client.
  40. VOID
  41. MIDL_user_free(IN LPVOID MemPointer)
  42. {
  43. DbgPrint((TRC_MEM, "[MIDL_user_free(0x%p)]", MemPointer));
  44. if (MemPointer != NULL)
  45. LocalFree(MemPointer);
  46. }
  49. //------------------------------------
  50. // Allocates general usage memory from the process heap
  51. PVOID
  52. Process_user_allocate(IN size_t NumBytes)
  53. {
  54. PVOID pMem = NULL;
  55. DWORD dwErr = ERROR_SUCCESS;
  57. if (NumBytes == 0)
  58. {
  59. dwErr = ERROR_INVALID_PARAMETER;
  60. }
  61. else
  62. {
  63. pMem = HeapAlloc(GetProcessHeap(), HEAP_ZERO_MEMORY, NumBytes);
  64. if (pMem == NULL)
  65. dwErr = ERROR_NOT_ENOUGH_MEMORY;
  66. }
  67. DbgPrint((TRC_MEM, "[MemAlloc(%d)=0x%p;%d]", NumBytes, pMem, dwErr));
  68. SetLastError(dwErr);
  69. return pMem;
  70. }
  72. //------------------------------------
  73. // Frees general usage memory
  74. VOID
  75. Process_user_free(IN LPVOID pMem)
  76. {
  77. DbgPrint((TRC_MEM, "[MemFree(0x%p)]", pMem));
  78. if (pMem != NULL)
  79. HeapFree(GetProcessHeap(), 0, (pMem));
  80. }
  82. //-----------------------------------------------------------
  83. // Searches pwzcConfig in the list pwzcVList. The entries are
  84. // matched exclusively based on the matching SSIDs and on
  85. // matching Infrastructure Mode.
  86. // [in] pwzcVList: Set of WZC_WLAN_CONFIGs to search in
  87. // [in] pwzcConfig: WZC_WLAN_CONFIG to look for
  88. // [in] nIdx: index in pwzcVList to start searching from
  89. // Returns: Pointer to the entry that matches pwzcConfig or NULL
  90. // if none matches
  91. PWZC_WLAN_CONFIG
  92. WzcFindConfig(
  93. PWZC_802_11_CONFIG_LIST pwzcList,
  94. PWZC_WLAN_CONFIG pwzcConfig,
  95. ULONG nIdx)
  96. {
  97. PWZC_WLAN_CONFIG pMatchingConfig = NULL;
  99. // if there is no config in pwzcList, there is no reason in
  100. // looking further
  101. if (pwzcList != NULL)
  102. {
  103. ULONG i;
  105. // for each of the visible SSIDs, see if it matches the given one
  106. for (i = nIdx; i < pwzcList->NumberOfItems; i++)
  107. {
  108. PWZC_WLAN_CONFIG pCrt;
  110. pCrt = &(pwzcList->Config[i]);
  112. // the SSIDs match if they have the same InfrastructureMode, their
  113. // SSID strings have the same length and are the same
  114. if (pCrt->InfrastructureMode == pwzcConfig->InfrastructureMode &&
  115. pCrt->Ssid.SsidLength == pwzcConfig->Ssid.SsidLength &&
  116. RtlCompareMemory(pCrt->Ssid.Ssid, pwzcConfig->Ssid.Ssid, pCrt->Ssid.SsidLength) == pCrt->Ssid.SsidLength)
  117. {
  118. pMatchingConfig = pCrt;
  119. break;
  120. }
  121. }
  122. }
  124. return pMatchingConfig;
  125. }
  127. //---------------------------------------------------------------------
  128. // Matches the content of the two configurations one against the other.
  129. // [in] pwzcConfigA: | configs to match
  130. // [in] pwzcConfigB: |
  131. // [in/out] pbWepDiffOnly: TRUE if there is a difference and the difference is exclusively
  132. // in the WEP Key index or in WEP Key Material. Otherwise is false.
  133. // Returns: TRUE if the configs match, FALSE otherwise;
  134. BOOL
  135. WzcMatchConfig(
  136. PWZC_WLAN_CONFIG pwzcConfigA,
  137. PWZC_WLAN_CONFIG pwzcConfigB,
  138. PBOOL pbWepDiffOnly)
  139. {
  140. BOOL bDiff;
  141. BOOL bWepDiff;
  143. bDiff = (pwzcConfigA->dwCtlFlags & WZCCTL_WEPK_PRESENT) != (pwzcConfigB->dwCtlFlags & WZCCTL_WEPK_PRESENT);
  144. bDiff = bDiff || (pwzcConfigA->Privacy != pwzcConfigB->Privacy);
  145. bDiff = bDiff || (pwzcConfigA->InfrastructureMode != pwzcConfigB->InfrastructureMode);
  146. bDiff = bDiff || (pwzcConfigA->AuthenticationMode != pwzcConfigB->AuthenticationMode);
  147. bDiff = bDiff || (memcmp(&pwzcConfigA->Ssid, &pwzcConfigB->Ssid, sizeof(NDIS_802_11_SSID)) != 0);
  149. bWepDiff = (pwzcConfigA->KeyIndex != pwzcConfigB->KeyIndex);
  150. bWepDiff = bWepDiff || (pwzcConfigA->KeyLength != pwzcConfigB->KeyLength);
  151. bWepDiff = bWepDiff || (memcmp(&pwzcConfigA->KeyMaterial, &pwzcConfigB->KeyMaterial, WZCCTL_MAX_WEPK_MATERIAL) != 0);
  153. if (pbWepDiffOnly != NULL)
  154. *pbWepDiffOnly = (!bDiff && bWepDiff);
  156. return !bDiff && !bWepDiff;
  157. }
  160. //-----------------------------------------------------------
  161. // Converts an NDIS_802_11_BSSID_LIST object to an equivalent
  162. // (imaged) WZC_802_11_CONFIG_LIST
  163. // [in] pndList: NDIS BSSID list to convert
  164. // Returns: Pointer to the list of copied WZC configurations
  165. PWZC_802_11_CONFIG_LIST
  166. WzcNdisToWzc(
  167. PNDIS_802_11_BSSID_LIST pndList)
  168. {
  169. PWZC_802_11_CONFIG_LIST pwzcList = NULL;
  171. // if there is no NDIS list, don't do anything
  172. if (pndList != NULL)
  173. {
  174. // allocate space for the WZC image
  175. pwzcList = (PWZC_802_11_CONFIG_LIST)
  176. MemCAlloc(FIELD_OFFSET(WZC_802_11_CONFIG_LIST, Config) +
  177. pndList->NumberOfItems * sizeof(WZC_WLAN_CONFIG));
  178. // in case allocation failed, return NULL, the caller will know it
  179. // is an error since he passed down a !NULL pointer.
  180. if (pwzcList != NULL)
  181. {
  182. UINT i;
  183. LPBYTE prawList = (LPBYTE)&(pndList->Bssid[0]);
  185. pwzcList->NumberOfItems = pndList->NumberOfItems;
  187. // for each of the NDIS configs, copy the relevant data into the WZC config
  188. for (i = 0; i < pwzcList->NumberOfItems; i++)
  189. {
  190. PWZC_WLAN_CONFIG pwzcConfig;
  191. PNDIS_WLAN_BSSID pndBssid;
  193. pwzcConfig = &(pwzcList->Config[i]);
  194. pndBssid = (PNDIS_WLAN_BSSID)prawList;
  195. prawList += pndBssid->Length;
  197. pwzcConfig->Length = sizeof(WZC_WLAN_CONFIG);
  198. memcpy(&(pwzcConfig->MacAddress), &(pndBssid->MacAddress), sizeof(NDIS_802_11_MAC_ADDRESS));
  199. memcpy(&(pwzcConfig->Ssid), &(pndBssid->Ssid), sizeof(NDIS_802_11_SSID));
  200. pwzcConfig->Privacy = pndBssid->Privacy;
  201. pwzcConfig->Rssi = pndBssid->Rssi;
  202. pwzcConfig->NetworkTypeInUse = pndBssid->NetworkTypeInUse;
  203. memcpy(&(pwzcConfig->Configuration), &(pndBssid->Configuration), sizeof(NDIS_802_11_CONFIGURATION));
  204. pwzcConfig->InfrastructureMode = pndBssid->InfrastructureMode;
  205. memcpy(&(pwzcConfig->SupportedRates), &(pndBssid->SupportedRates), sizeof(NDIS_802_11_RATES));
  206. }
  207. }
  208. }
  210. return pwzcList;
  211. }
  213. //-----------------------------------------------------------
  214. // WzcCleanupWzcList: Cleanup a list of WZC_WLAN_CONFIG objects
  215. VOID
  216. WzcCleanupWzcList(
  217. PWZC_802_11_CONFIG_LIST pwzcList)
  218. {
  219. if (pwzcList != NULL)
  220. {
  221. UINT i;
  223. for (i=0; i<pwzcList->NumberOfItems; i++)
  224. MemFree(pwzcList->Config[i].rdUserData.pData);
  226. MemFree(pwzcList);
  227. }
  228. }
  230. //-----------------------------------------------------------
  231. // RccsInit: Initializes an RCCS structure
  232. DWORD
  233. RccsInit(PRCCS_SYNC pRccs)
  234. {
  235. DWORD dwErr = ERROR_SUCCESS;
  237. // assume pRccs is not null (it shouldn't be under any
  238. // circumstances)
  239. __try
  240. {
  241. InitializeCriticalSection(&(pRccs->csMutex));
  242. }
  243. __except(EXCEPTION_EXECUTE_HANDLER)
  244. {
  245. dwErr = GetExceptionCode();
  246. }
  247. // access through this structure will be paired as Enter/Leave calls
  248. // Object deletion will bump down the ref counter which will reach 0
  249. // and will trigger the destruction code.
  250. pRccs->nRefCount = 1;
  251. return dwErr;
  252. }
  254. //-----------------------------------------------------------
  255. // RccsInit: Deletes an RCCS structure
  256. DWORD
  257. RccsDestroy(PRCCS_SYNC pRccs)
  258. {
  259. // assume pRccs is not null (it shouldn't be under any
  260. // circumstances)
  261. DeleteCriticalSection(&(pRccs->csMutex));
  262. return ERROR_SUCCESS;
  263. }
  265. //-----------------------------------------------------------
  266. // WzcCryptBuffer: Randomly generates a nBufLen bytes in the range
  267. // [loByte hiByte], all stored in pBuffer (buffer assumed preallocated)
  268. // Returns a win32 error code.
  269. DWORD
  270. WzcRndGenBuffer(LPBYTE pBuffer, UINT nBufLen, BYTE loByte, BYTE hiByte)
  271. {
  272. DWORD dwErr = ERROR_SUCCESS;
  273. HCRYPTPROV hProv = (HCRYPTPROV)NULL;
  275. if (loByte >= hiByte)
  276. dwErr = ERROR_INVALID_PARAMETER;
  278. if (dwErr == ERROR_SUCCESS)
  279. {
  280. // acquire the crypt context
  281. if (!CryptAcquireContext(
  282. &hProv,
  283. NULL,
  284. NULL,
  285. PROV_RSA_FULL,
  286. CRYPT_VERIFYCONTEXT))
  287. dwErr = GetLastError();
  289. DbgAssert((dwErr == ERROR_SUCCESS, "CryptAcquireContext failed with err=%d", dwErr));
  290. }
  292. // randomly generate the buffer of bytes
  293. if (dwErr == ERROR_SUCCESS)
  294. {
  295. if (!CryptGenRandom(
  296. hProv,
  297. nBufLen,
  298. pBuffer))
  299. dwErr = GetLastError();
  301. DbgAssert((dwErr == ERROR_SUCCESS, "CryptGenRandom failed with err=%d", dwErr));
  302. }
  304. // fix each byte from the buffer within the given range
  305. if (dwErr == ERROR_SUCCESS)
  306. {
  307. while (nBufLen > 0)
  308. {
  309. *pBuffer = loByte + *pBuffer % (hiByte - loByte + 1);
  310. pBuffer++;
  311. nBufLen--;
  312. }
  313. }
  315. // release the crypt context
  316. if (hProv != (HCRYPTPROV)NULL)
  317. CryptReleaseContext(hProv,0);
  319. return dwErr;
  320. }
  322. //-----------------------------------------------------------
  323. // WzcIsNullBuffer: Checks whether a buffer of nBufLen characters
  324. // is all filled with null characters.
  325. BOOL
  326. WzcIsNullBuffer(LPBYTE pBuffer, UINT nBufLen)
  327. {
  328. for (;nBufLen > 0 && *pBuffer == 0; pBuffer++, nBufLen--);
  329. return (nBufLen == 0);
  330. }
  332. //-----------------------------------------------------------
  333. // WzcSSKClean: Cleans up the PSEC_SESSION_KEYS object given as parameter
  334. VOID
  335. WzcSSKClean(PSEC_SESSION_KEYS pSSK)
  336. {
  337. if (pSSK->dblobSendKey.pbData != NULL)
  338. {
  339. LocalFree(pSSK->dblobSendKey.pbData);
  340. pSSK->dblobSendKey.cbData = 0;
  341. pSSK->dblobSendKey.pbData = NULL;
  342. }
  343. if (pSSK->dblobReceiveKey.pbData != NULL)
  344. {
  345. LocalFree(pSSK->dblobReceiveKey.pbData);
  346. pSSK->dblobReceiveKey.cbData = 0;
  347. pSSK->dblobReceiveKey.pbData = NULL;
  348. }
  349. }
  351. //-----------------------------------------------------------
  352. // WzcSSKFree: Frees up the memory used by the PSEC_SESSION_KEYS parameter
  353. VOID
  354. WzcSSKFree(PSEC_SESSION_KEYS pSSK)
  355. {
  356. if (pSSK != NULL)
  357. {
  358. WzcSSKClean(pSSK);
  359. MemFree(pSSK);
  360. }
  361. }
  363. //-----------------------------------------------------------
  364. // WzcSSKEncrypt: Creates/Allocates a SEC_SESSION_KEYS object
  365. // by encrypting the SESSION_KEYS object provided as parameter.
  366. DWORD
  367. WzcSSKEncrypt(PSEC_SESSION_KEYS pSSK, PSESSION_KEYS pSK)
  368. {
  369. DWORD dwErr = ERROR_SUCCESS;
  370. DATA_BLOB blobIn;
  371. DATA_BLOB blobSndOut = {0, NULL};
  372. DATA_BLOB blobRcvOut = {0, NULL};
  374. if (pSSK == NULL || pSK == NULL)
  375. {
  376. dwErr = ERROR_INVALID_PARAMETER;
  377. goto exit;
  378. }
  380. blobIn.cbData = pSK->dwKeyLength;
  381. blobIn.pbData = pSK->bSendKey;
  382. if (!CryptProtectData(
  383. &blobIn, // DATA_BLOB *pDataIn,
  384. L"", // LPCWSTR szDataDescr,
  385. NULL, // DATA_BLOB *pOptionalEntropy,
  386. NULL, // PVOID pvReserved,
  387. NULL, // CRYPTPROTECT_PROMPTSTRUCT *pPromptStrct,
  388. 0, // DWORD dwFlags,
  389. &blobSndOut)) // DATA_BLOB *pDataOut
  390. {
  391. dwErr = GetLastError();
  392. goto exit;
  393. }
  395. blobIn.cbData = pSK->dwKeyLength;
  396. blobIn.pbData = pSK->bReceiveKey;
  397. if (!CryptProtectData(
  398. &blobIn, // DATA_BLOB *pDataIn,
  399. L"", // LPCWSTR szDataDescr,
  400. NULL, // DATA_BLOB *pOptionalEntropy,
  401. NULL, // PVOID pvReserved,
  402. NULL, // CRYPTPROTECT_PROMPTSTRUCT *pPromptStrct,
  403. 0, // DWORD dwFlags,
  404. &blobRcvOut)) // DATA_BLOB *pDataOut
  405. {
  406. dwErr = GetLastError();
  407. goto exit;
  408. }
  410. pSSK->dblobSendKey = blobSndOut;
  411. pSSK->dblobReceiveKey = blobRcvOut;
  413. exit:
  414. if (dwErr != ERROR_SUCCESS)
  415. {
  416. if (blobSndOut.pbData != NULL)
  417. LocalFree(blobSndOut.pbData);
  418. if (blobRcvOut.pbData != NULL)
  419. LocalFree(blobRcvOut.pbData);
  420. }
  421. return dwErr;
  422. }
  424. //-----------------------------------------------------------
  425. // WzcSSKDecrypt: Creates/Allocates a SESSION_KEYS object
  426. // by dencrypting the SEC_SESSION_KEYS object provided as parameter.
  427. DWORD
  428. WzcSSKDecrypt(PSEC_SESSION_KEYS pSSK, PSESSION_KEYS pSK)
  429. {
  430. DWORD dwErr = ERROR_SUCCESS;
  431. DATA_BLOB blobSndOut = {0, NULL};
  432. DATA_BLOB blobRcvOut = {0, NULL};
  434. if (pSSK == NULL || pSK == NULL)
  435. {
  436. dwErr = ERROR_INVALID_PARAMETER;
  437. goto exit;
  438. }
  440. if (!CryptUnprotectData(
  441. &(pSSK->dblobSendKey),
  442. NULL,
  443. NULL,
  444. NULL,
  445. NULL,
  446. 0,
  447. &blobSndOut))
  448. {
  449. dwErr = GetLastError();
  450. goto exit;
  451. }
  453. if (blobSndOut.cbData > MAX_SESSION_KEY_LENGTH)
  454. {
  455. dwErr = ERROR_INVALID_DATA;
  456. goto exit;
  457. }
  459. if (!CryptUnprotectData(
  460. &(pSSK->dblobReceiveKey),
  461. NULL,
  462. NULL,
  463. NULL,
  464. NULL,
  465. 0,
  466. &blobRcvOut))
  467. {
  468. dwErr = GetLastError();
  469. goto exit;
  470. }
  472. if (blobRcvOut.cbData != blobSndOut.cbData)
  473. {
  474. dwErr = ERROR_INVALID_DATA;
  475. goto exit;
  476. }
  478. pSK->dwKeyLength = blobSndOut.cbData;
  479. memcpy(pSK->bSendKey, blobSndOut.pbData, blobSndOut.cbData);
  480. memcpy(pSK->bReceiveKey, blobRcvOut.pbData, blobRcvOut.cbData);
  482. exit:
  483. if (blobSndOut.pbData != NULL)
  484. LocalFree(blobSndOut.pbData);
  485. if (blobRcvOut.pbData != NULL)
  486. LocalFree(blobRcvOut.pbData);
  487. return dwErr;
  488. }