archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 5c6fe3db62
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '5c6fe3db62'
${ noResults }
windows-server-2003/net/rras/common/mprcommn/creds.c

836 lines
19 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. /********************************************************************/
  2. /** Copyright(c) 1995 Microsoft Corporation. **/
  3. /********************************************************************/
  5. //***
  6. //
  7. // Filename: creds.c
  8. //
  9. // Description: Routines for storing and retrieving user Lsa secret
  10. // dial parameters.
  11. //
  12. //
  13. // History: 11/02/95 Anthony Discolo created
  14. // May 11,1995 NarenG modified for router.
  15. //
  16. #include <nt.h>
  17. #include <ntrtl.h>
  18. #include <nturtl.h>
  19. #include <ntlsa.h>
  20. #include <ntmsv1_0.h>
  21. #include <llinfo.h>
  22. #include <rasman.h>
  23. #include <raserror.h>
  24. #include <mprerror.h>
  25. #include <stdlib.h>
  26. #include <string.h>
  28. #define MPR_CREDENTIALS_KEY TEXT("MprCredentials%d")
  30. #define MAX_REGISTRY_VALUE_LENGTH ((64*1024) - 1)
  32. typedef struct _MPRPARAMSENTRY
  33. {
  34. LIST_ENTRY ListEntry;
  35. WCHAR szPhoneBookEntryName[MAX_INTERFACE_NAME_LEN + 1];
  36. WCHAR szUserName[UNLEN + 1];
  37. WCHAR szPassword[PWLEN + 1];
  38. WCHAR szDomain[DNLEN + 1];
  40. } MPRPARAMSENTRY, *PMPRPARAMSENTRY;
  42. //**
  43. //
  44. // Call: ReadDialParamsBlob
  45. //
  46. // Returns: NO_ERROR - Success
  47. // Non-zero returns - Failure
  48. //
  49. // Description:
  50. //
  51. DWORD
  52. ReadDialParamsBlob(
  53. IN LPWSTR lpwsServer,
  54. OUT PVOID *ppvData,
  55. OUT LPDWORD lpdwSize
  56. )
  57. {
  58. NTSTATUS status;
  59. DWORD dwRetCode = NO_ERROR;
  60. DWORD dwIndex;
  61. DWORD dwSize = 0;
  62. PVOID pvData = NULL;
  63. PVOID pvNewData = NULL;
  64. UNICODE_STRING unicodeKey;
  65. UNICODE_STRING unicodeServer;
  66. PUNICODE_STRING punicodeValue = NULL;
  67. OBJECT_ATTRIBUTES objectAttributes;
  68. LSA_HANDLE hPolicy;
  69. WCHAR wchKey[sizeof(MPR_CREDENTIALS_KEY) + 10 ];
  71. //
  72. // Initialize return value.
  73. //
  75. *ppvData = NULL;
  76. *lpdwSize = 0;
  78. //
  79. // Open the LSA secret space for reading.
  80. //
  82. InitializeObjectAttributes( &objectAttributes, NULL, 0L, NULL, NULL );
  84. RtlInitUnicodeString( &unicodeServer, lpwsServer );
  86. status = LsaOpenPolicy( &unicodeServer,
  87. &objectAttributes,
  88. POLICY_READ,
  89. &hPolicy );
  91. if ( status != STATUS_SUCCESS )
  92. {
  93. return( LsaNtStatusToWinError( status ) );
  94. }
  96. for( dwIndex = 0; TRUE; dwIndex++ )
  97. {
  98. //
  99. // Format the key string.
  100. //
  102. wsprintf( wchKey, MPR_CREDENTIALS_KEY, dwIndex );
  104. RtlInitUnicodeString( &unicodeKey, wchKey );
  106. //
  107. // Get the value.
  108. //
  110. status = LsaRetrievePrivateData( hPolicy, &unicodeKey, &punicodeValue );
  112. if ( status != STATUS_SUCCESS )
  113. {
  114. dwRetCode = LsaNtStatusToWinError( status );
  116. if ( dwRetCode == ERROR_FILE_NOT_FOUND )
  117. {
  118. dwRetCode = NO_ERROR;
  119. }
  121. break;
  122. }
  123. if ( punicodeValue == NULL )
  124. {
  125. dwRetCode = ERROR_NOT_ENOUGH_MEMORY;
  126. break;
  127. }
  129. //
  130. // Concatenate the strings.
  131. //
  133. pvNewData = LocalAlloc( LPTR, dwSize + punicodeValue->Length );
  135. if ( pvNewData == NULL )
  136. {
  137. dwRetCode = ERROR_NOT_ENOUGH_MEMORY;
  138. break;
  139. }
  141. if ( pvData != NULL )
  142. {
  143. RtlCopyMemory( pvNewData, pvData, dwSize );
  144. ZeroMemory( pvData, dwSize );
  145. LocalFree( pvData );
  146. pvData = NULL;
  147. }
  149. RtlCopyMemory( (PBYTE)pvNewData + dwSize,
  150. punicodeValue->Buffer,
  151. punicodeValue->Length );
  153. pvData = pvNewData;
  154. dwSize += punicodeValue->Length;
  155. SecureZeroMemory(punicodeValue->Buffer, punicodeValue->Length);
  156. LsaFreeMemory( punicodeValue );
  157. punicodeValue = NULL;
  158. }
  160. LsaClose( hPolicy );
  162. if ( dwRetCode != NO_ERROR )
  163. {
  164. if ( pvData != NULL )
  165. {
  166. ZeroMemory( pvData, dwSize );
  167. LocalFree( pvData );
  168. }
  170. pvData = NULL;
  171. dwSize = 0;
  172. }
  174. if ( punicodeValue != NULL )
  175. {
  176. LsaFreeMemory( punicodeValue );
  177. }
  179. *ppvData = pvData;
  180. *lpdwSize = dwSize;
  182. return( dwRetCode );
  183. }
  185. //**
  186. //
  187. // Call: WriteDialParamsBlob
  188. //
  189. // Returns: NO_ERROR - Success
  190. // Non-zero returns - Failure
  191. //
  192. // Description:
  193. //
  194. DWORD
  195. WriteDialParamsBlob(
  196. IN LPWSTR lpwsServer,
  197. IN PVOID pvData,
  198. IN DWORD dwcbData
  199. )
  200. {
  201. NTSTATUS status;
  202. DWORD dwIndex = 0;
  203. DWORD dwRetCode = NO_ERROR;
  204. DWORD dwcb = 0;
  205. UNICODE_STRING unicodeKey, unicodeValue;
  206. UNICODE_STRING unicodeServer;
  207. OBJECT_ATTRIBUTES objectAttributes;
  208. LSA_HANDLE hPolicy;
  209. WCHAR wchKey[sizeof(MPR_CREDENTIALS_KEY) + 10 ];
  211. //
  212. // Open the LSA secret space for writing.
  213. //
  215. InitializeObjectAttributes( &objectAttributes, NULL, 0L, NULL, NULL );
  217. RtlInitUnicodeString( &unicodeServer, lpwsServer );
  219. status = LsaOpenPolicy( &unicodeServer,
  220. &objectAttributes,
  221. POLICY_WRITE,
  222. &hPolicy);
  224. if (status != STATUS_SUCCESS)
  225. {
  226. return LsaNtStatusToWinError(status);
  227. }
  229. while( dwcbData )
  230. {
  231. //
  232. // Format the key string.
  233. //
  235. wsprintf( wchKey, MPR_CREDENTIALS_KEY, dwIndex++ );
  237. RtlInitUnicodeString( &unicodeKey, wchKey );
  239. //
  240. // Write some of the key.
  241. //
  243. dwcb = ( dwcbData > MAX_REGISTRY_VALUE_LENGTH )
  244. ? MAX_REGISTRY_VALUE_LENGTH
  245. : dwcbData;
  247. unicodeValue.Length = unicodeValue.MaximumLength = (USHORT)dwcb;
  249. unicodeValue.Buffer = pvData;
  251. status = LsaStorePrivateData( hPolicy, &unicodeKey, &unicodeValue );
  253. if ( status != STATUS_SUCCESS )
  254. {
  255. dwRetCode = LsaNtStatusToWinError(status);
  256. break;
  257. }
  259. //
  260. // Move the pointer to the unwritten part
  261. // of the value.
  262. //
  264. pvData = (PBYTE)pvData + dwcb;
  266. dwcbData -= dwcb;
  267. }
  269. if ( dwRetCode != NO_ERROR )
  270. {
  271. LsaClose( hPolicy );
  273. return( dwRetCode );
  274. }
  276. //
  277. // Delete any extra keys.
  278. //
  280. for (;;)
  281. {
  282. //
  283. // Format the key string.
  284. //
  286. wsprintf( wchKey, MPR_CREDENTIALS_KEY, dwIndex++ );
  288. RtlInitUnicodeString( &unicodeKey, wchKey );
  290. //
  291. // Delete the key.
  292. //
  294. status = LsaStorePrivateData( hPolicy, &unicodeKey, NULL );
  296. if ( status != STATUS_SUCCESS )
  297. {
  298. break;
  299. }
  300. }
  302. LsaClose( hPolicy );
  304. return( NO_ERROR );
  305. }
  307. //**
  308. //
  309. // Call: DialParamsBlobToList
  310. //
  311. // Returns: NO_ERROR - Success
  312. // Non-zero returns - Failure
  313. //
  314. // Description: Take a string read from the user's registry key and produce
  315. // a list of MPRPARAMSENTRY structures. If one of the structures
  316. // has the same dwUID field as the dwUID passed in, then this
  317. // function returns a pointer to this structure.
  318. //
  319. // This string encodes the data for multiple MPRPARAMSENTRY
  320. // structures. The format of an encoded MPRPARAMSENTRY is as
  321. // follows:
  322. //
  323. // <szPhoneBookEntryName>\0<szUserName>\0<szPassword>\0<szDomain>\0
  324. //
  325. PMPRPARAMSENTRY
  326. DialParamsBlobToList(
  327. IN PVOID pvData,
  328. IN LPWSTR lpwsPhoneBookEntryName,
  329. OUT PLIST_ENTRY pHead
  330. )
  331. {
  332. PWCHAR p;
  333. PMPRPARAMSENTRY pParams, pFoundParams;
  335. p = (PWCHAR)pvData;
  337. pFoundParams = NULL;
  339. for (;;)
  340. {
  341. pParams = LocalAlloc(LPTR, sizeof (MPRPARAMSENTRY));
  343. if ( pParams == NULL )
  344. {
  345. break;
  346. }
  348. wcscpy( pParams->szPhoneBookEntryName, p );
  350. if (_wcsicmp(pParams->szPhoneBookEntryName,lpwsPhoneBookEntryName) == 0)
  351. {
  352. pFoundParams = pParams;
  353. }
  354. while (*p) p++; p++;
  356. wcscpy(pParams->szUserName, p);
  357. while (*p) p++; p++;
  359. wcscpy(pParams->szPassword, p);
  360. while (*p) p++; p++;
  362. wcscpy(pParams->szDomain, p);
  363. while (*p) p++; p++;
  365. InsertTailList(pHead, &pParams->ListEntry);
  367. if (*p == L'\0') break;
  368. }
  370. return( pFoundParams );
  371. }
  373. //**
  374. //
  375. // Call: DialParamsListToBlob
  376. //
  377. // Returns: NO_ERROR - Success
  378. // Non-zero returns - Failure
  379. //
  380. // Description:
  381. //
  382. PVOID
  383. DialParamsListToBlob(
  384. IN PLIST_ENTRY pHead,
  385. OUT LPDWORD lpcb
  386. )
  387. {
  388. DWORD dwcb, dwSize;
  389. PVOID pvData;
  390. PWCHAR p;
  391. PLIST_ENTRY pEntry;
  392. PMPRPARAMSENTRY pParams;
  394. //
  395. // Estimate a buffer size large enough to hold the new entry.
  396. //
  398. dwSize = *lpcb + sizeof (MPRPARAMSENTRY) + 32;
  400. if ( ( pvData = LocalAlloc(LPTR, dwSize) ) == NULL )
  401. {
  402. return( NULL );
  403. }
  405. //
  406. // Enumerate the list and convert each entry back to a string.
  407. //
  409. dwSize = 0;
  411. p = (PWCHAR)pvData;
  413. for (pEntry = pHead->Flink; pEntry != pHead; pEntry = pEntry->Flink )
  414. {
  415. pParams = CONTAINING_RECORD(pEntry, MPRPARAMSENTRY, ListEntry);
  417. wcscpy(p, pParams->szPhoneBookEntryName);
  418. dwcb = wcslen(pParams->szPhoneBookEntryName) + 1;
  419. p += dwcb; dwSize += dwcb;
  421. wcscpy(p, pParams->szUserName);
  422. dwcb = wcslen(pParams->szUserName) + 1;
  423. p += dwcb; dwSize += dwcb;
  425. wcscpy(p, pParams->szPassword);
  426. dwcb = wcslen(pParams->szPassword) + 1;
  427. p += dwcb; dwSize += dwcb;
  429. wcscpy(p, pParams->szDomain);
  430. dwcb = wcslen(pParams->szDomain) + 1;
  431. p += dwcb; dwSize += dwcb;
  432. }
  434. *p = L'\0';
  435. dwSize++;
  436. dwSize *= sizeof (WCHAR);
  438. //
  439. // Set the exact length here.
  440. //
  442. *lpcb = dwSize;
  444. return( pvData );
  445. }
  447. //**
  448. //
  449. // Call: FreeParamsList
  450. //
  451. // Returns: NO_ERROR - Success
  452. // Non-zero returns - Failure
  453. //
  454. // Description: Will free the list of structures.
  455. //
  456. VOID
  457. FreeParamsList(
  458. IN PLIST_ENTRY pHead
  459. )
  460. {
  461. PLIST_ENTRY pEntry;
  462. PMPRPARAMSENTRY pParams;
  464. while( !IsListEmpty(pHead) )
  465. {
  466. pEntry = RemoveHeadList(pHead);
  467. pParams = CONTAINING_RECORD(pEntry, MPRPARAMSENTRY, ListEntry);
  468. SecureZeroMemory( pParams, sizeof( MPRPARAMSENTRY ) );
  469. LocalFree(pParams);
  470. }
  471. }
  473. //**
  474. //
  475. // Call: RemoveCredentials
  476. //
  477. // Returns: NO_ERROR - Success
  478. // Non-zero returns - Failure
  479. //
  480. // Description:
  481. //
  482. DWORD
  483. RemoveCredentials(
  484. IN LPWSTR lpwsInterfaceName,
  485. IN LPVOID pvData,
  486. IN OUT LPDWORD lpdwSize
  487. )
  488. {
  489. PWCHAR pWalker = (PWCHAR)pvData;
  490. DWORD dwIndex;
  492. //
  493. // There is no list to remove from.
  494. //
  496. if ( pvData == NULL )
  497. {
  498. return( ERROR_NO_SUCH_INTERFACE );
  499. }
  501. for (;;)
  502. {
  503. //
  504. // If we found the interface we want to remove, we jump past it
  505. //
  507. if ( _wcsicmp( (LPWSTR)pWalker, lpwsInterfaceName ) == 0 )
  508. {
  509. PWCHAR pInterface = pWalker;
  510. DWORD dwEntrySize = 0;
  512. //
  513. // Jump past the 4 fields.
  514. //
  516. for ( dwIndex = 0; dwIndex < 4; dwIndex++ )
  517. {
  518. while (*pWalker) pWalker++, dwEntrySize++;
  520. pWalker++, dwEntrySize++;
  521. }
  523. //
  524. // If this was the last entry in the list
  525. //
  527. if (*pWalker == L'\0')
  528. {
  529. ZeroMemory( pInterface, dwEntrySize );
  530. }
  531. else
  532. {
  533. CopyMemory( pInterface,
  534. pWalker,
  535. *lpdwSize - ( (PBYTE)pWalker - (PBYTE)pvData ) );
  536. }
  538. *lpdwSize -= dwEntrySize;
  540. return( NO_ERROR );
  541. }
  542. else
  543. {
  544. //
  545. // Not found so skip over this entry
  546. //
  548. for ( dwIndex = 0; dwIndex < 4; dwIndex++ )
  549. {
  550. while (*pWalker) pWalker++; pWalker++;
  551. }
  552. }
  554. if (*pWalker == L'\0') break;
  555. }
  557. return( ERROR_NO_SUCH_INTERFACE );
  558. }
  560. //**
  561. //
  562. // Call: MprAdminInterfaceSetCredentials
  563. //
  564. // Returns: NO_ERROR - success
  565. // ERROR_INVALID_PARAMETER
  566. //
  567. // Description:
  568. //
  569. DWORD APIENTRY
  570. MprAdminInterfaceSetCredentialsInternal(
  571. IN LPWSTR lpwsServer OPTIONAL,
  572. IN LPWSTR lpwsInterfaceName,
  573. IN LPWSTR lpwsUserName OPTIONAL,
  574. IN LPWSTR lpwsDomainName OPTIONAL,
  575. IN LPWSTR lpwsPassword OPTIONAL
  576. )
  577. {
  578. DWORD dwRetCode;
  579. DWORD dwSize;
  580. PVOID pvData;
  581. LIST_ENTRY paramList;
  582. PMPRPARAMSENTRY pParams = NULL;
  584. if ( lpwsInterfaceName == NULL )
  585. {
  586. return( ERROR_INVALID_PARAMETER );
  587. }
  589. if ( wcslen( lpwsInterfaceName ) > MAX_INTERFACE_NAME_LEN )
  590. {
  591. return( ERROR_INVALID_PARAMETER );
  592. }
  594. if ( lpwsUserName != NULL )
  595. {
  596. if ( wcslen( lpwsUserName ) > UNLEN )
  597. {
  598. return( ERROR_INVALID_PARAMETER );
  599. }
  600. }
  602. if ( lpwsPassword != NULL )
  603. {
  604. if ( wcslen( lpwsPassword ) > PWLEN )
  605. {
  606. return( ERROR_INVALID_PARAMETER );
  607. }
  608. }
  610. if ( lpwsDomainName != NULL )
  611. {
  612. if ( wcslen( lpwsDomainName ) > DNLEN )
  613. {
  614. return( ERROR_INVALID_PARAMETER );
  615. }
  616. }
  618. //
  619. // Read the existing dial params string from the registry.
  620. //
  622. dwRetCode = ReadDialParamsBlob( lpwsServer, &pvData, &dwSize );
  624. if ( dwRetCode != NO_ERROR )
  625. {
  626. return( dwRetCode );
  627. }
  629. //
  630. // If everything was NULL, we want to delete credentials for this interface
  631. //
  633. if ( ( lpwsUserName == NULL ) &&
  634. ( lpwsDomainName == NULL ) &&
  635. ( lpwsPassword == NULL ) )
  636. {
  637. dwRetCode = RemoveCredentials( lpwsInterfaceName, pvData, &dwSize );
  639. if ( dwRetCode != NO_ERROR )
  640. {
  641. ZeroMemory ( pvData, dwSize );
  642. LocalFree( pvData );
  644. return( dwRetCode );
  645. }
  646. }
  647. else
  648. {
  649. //
  650. // Parse the string into a list, and search for the phonebook entry.
  651. //
  653. InitializeListHead( &paramList );
  655. if ( pvData != NULL )
  656. {
  657. pParams = DialParamsBlobToList(pvData,lpwsInterfaceName,&paramList);
  659. //
  660. // We're done with pvData, so free it.
  661. //
  663. ZeroMemory ( pvData, dwSize );
  665. LocalFree( pvData );
  667. pvData = NULL;
  668. }
  670. //
  671. // If there is no existing information for this entry, create a new one.
  672. //
  674. if ( pParams == NULL )
  675. {
  676. pParams = LocalAlloc(LPTR, sizeof (MPRPARAMSENTRY) );
  678. if (pParams == NULL)
  679. {
  680. FreeParamsList( &paramList );
  682. return( ERROR_NOT_ENOUGH_MEMORY );
  683. }
  685. InsertTailList( &paramList, &pParams->ListEntry );
  686. }
  688. //
  689. // Set the new uid for the entry.
  690. //
  692. wcscpy( pParams->szPhoneBookEntryName, lpwsInterfaceName );
  694. if ( lpwsUserName != NULL )
  695. {
  696. wcscpy( pParams->szUserName, lpwsUserName );
  697. }
  699. if ( lpwsPassword != NULL )
  700. {
  701. wcscpy( pParams->szPassword, lpwsPassword );
  702. }
  704. if ( lpwsDomainName != NULL )
  705. {
  706. wcscpy( pParams->szDomain, lpwsDomainName );
  707. }
  709. //
  710. // Convert the new list back to a string, so we can store it back into
  711. // the registry.
  712. //
  714. pvData = DialParamsListToBlob( &paramList, &dwSize );
  716. FreeParamsList( &paramList );
  718. if ( pvData == NULL )
  719. {
  720. return( ERROR_NOT_ENOUGH_MEMORY );
  721. }
  722. }
  724. //
  725. // Write it back to the registry.
  726. //
  728. dwRetCode = WriteDialParamsBlob( lpwsServer, pvData, dwSize );
  730. if ( pvData != NULL )
  731. {
  732. SecureZeroMemory( pvData, dwSize );
  733. LocalFree( pvData );
  734. }
  736. return( dwRetCode );
  737. }
  739. //**
  740. //
  741. // Call: MprAdminInterfaceGetCredentials
  742. //
  743. // Returns: NO_ERROR - success
  744. // ERROR_INVALID_PARAMETER
  745. //
  746. // Description:
  747. //
  748. DWORD APIENTRY
  749. MprAdminInterfaceGetCredentialsInternal(
  750. IN LPWSTR lpwsServer OPTIONAL,
  751. IN LPWSTR lpwsInterfaceName,
  752. IN LPWSTR lpwsUserName OPTIONAL,
  753. IN LPWSTR lpwsPassword OPTIONAL,
  754. IN LPWSTR lpwsDomainName OPTIONAL
  755. )
  756. {
  757. DWORD dwRetCode;
  758. DWORD dwSize;
  759. PVOID pvData;
  760. LIST_ENTRY paramList;
  761. PMPRPARAMSENTRY pParams = NULL;
  763. if ( lpwsInterfaceName == NULL )
  764. {
  765. return( ERROR_INVALID_PARAMETER );
  766. }
  768. if ( ( lpwsUserName == NULL ) &&
  769. ( lpwsDomainName == NULL ) &&
  770. ( lpwsPassword == NULL ) )
  771. {
  772. return( ERROR_INVALID_PARAMETER );
  773. }
  775. //
  776. // Read the existing dial params string from the registry.
  777. //
  779. dwRetCode = ReadDialParamsBlob( lpwsServer, &pvData, &dwSize );
  781. if ( dwRetCode != NO_ERROR )
  782. {
  783. return( dwRetCode );
  784. }
  786. //
  787. // Parse the string into a list, and search for the lpwsInterfaceName entry.
  788. //
  790. InitializeListHead( &paramList );
  792. if ( pvData != NULL )
  793. {
  794. pParams = DialParamsBlobToList( pvData, lpwsInterfaceName, &paramList );
  796. //
  797. // We're done with pvData, so free it.
  798. //
  800. ZeroMemory( pvData, dwSize );
  801. LocalFree( pvData );
  802. }
  804. //
  805. // If the entry doesn't have any saved parameters, then return.
  806. //
  807. if ( pParams == NULL )
  808. {
  809. FreeParamsList( &paramList );
  811. return( ERROR_CANNOT_FIND_PHONEBOOK_ENTRY );
  812. }
  814. //
  815. // Otherwise, copy the fields to the caller's buffer.
  816. //
  818. if ( lpwsUserName != NULL )
  819. {
  820. wcscpy( lpwsUserName, pParams->szUserName );
  821. }
  823. if ( lpwsPassword != NULL )
  824. {
  825. wcscpy( lpwsPassword, pParams->szPassword );
  826. }
  828. if ( lpwsDomainName != NULL )
  829. {
  830. wcscpy( lpwsDomainName, pParams->szDomain );
  831. }
  833. FreeParamsList( &paramList );
  835. return( NO_ERROR );
  836. }