archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 5c6fe3db62
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '5c6fe3db62'
${ noResults }
windows-server-2003/net/rras/upgrade/steelhead2nt5/radius.c

775 lines
18 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. /*
  2. File: radius.c
  4. Upgrades radius configuration from nt4 steelhead to win2k rras.
  6. Paul Mayfield, 2/8/99
  7. */
  9. #include "upgrade.h"
  11. //
  12. // Information describing a radius server
  13. //
  14. typedef struct _RAD_SERVER_NODE
  15. {
  16. PWCHAR pszName;
  18. DWORD dwTimeout;
  19. DWORD dwAuthPort;
  20. DWORD dwAcctPort;
  21. DWORD dwScore;
  22. BOOL bEnableAuth;
  23. BOOL bEnableAcct;
  24. BOOL bAccountingOnOff;
  26. struct _RAD_SERVER_NODE * pNext;
  28. } RAD_SERVER_NODE;
  30. //
  31. // A radius server list
  32. //
  33. typedef struct _RAD_SERVER_LIST
  34. {
  35. RAD_SERVER_NODE* pHead;
  36. DWORD dwCount;
  38. } RAD_SERVER_LIST;
  40. //
  41. // Info used by routines that manipulate the nt5 radius registry hive
  42. //
  43. typedef struct _RAD_CONFIG_INFO
  44. {
  45. HKEY hkAuthServers;
  46. HKEY hkAuthProviders;
  48. HKEY hkAcctServers;
  49. HKEY hkAcctProviders;
  51. } RAD_CONFIG_INFO;
  53. //
  54. // Registry value names
  55. //
  56. // The all caps ones were taken from nt40 src.
  57. //
  58. static const WCHAR PSZTIMEOUT[] = L"Timeout";
  59. static const WCHAR PSZAUTHPORT[] = L"AuthPort";
  60. static const WCHAR PSZACCTPORT[] = L"AcctPort";
  61. static const WCHAR PSZENABLEACCT[] = L"EnableAccounting";
  62. static const WCHAR PSZENABLEACCTONOFF[] = L"EnableAccountingOnOff";
  63. static const WCHAR PSZENABLEAUTH[] = L"EnableAuthentication";
  64. static const WCHAR PSZSCORE[] = L"Score";
  66. static const WCHAR pszTempRegKey[] = L"Temp";
  67. static const WCHAR pszAccounting[] = L"Accounting\\Providers";
  68. static const WCHAR pszAuthentication[] = L"Authentication\\Providers";
  69. static const WCHAR pszActiveProvider[] = L"ActiveProvider";
  70. static const WCHAR pszRadServersFmt[] = L"%s\\Servers";
  71. static const WCHAR pszServers[] = L"Servers";
  73. static const WCHAR pszGuidRadAuth[] =
  74. L"{1AA7F83F-C7F5-11D0-A376-00C04FC9DA04}";
  76. static const WCHAR pszGuidRadAcct[] =
  77. L"{1AA7F840-C7F5-11D0-A376-00C04FC9DA04}";
  80. // Defaults
  81. //
  82. #define DEFTIMEOUT 5
  83. #define DEFAUTHPORT 1645
  84. #define DEFACCTPORT 1646
  85. #define MAXSCORE 30
  87. RAD_SERVER_NODE g_DefaultRadNode =
  88. {
  89. NULL,
  91. DEFTIMEOUT,
  92. DEFAUTHPORT,
  93. DEFACCTPORT,
  94. MAXSCORE,
  95. TRUE,
  96. TRUE,
  97. TRUE,
  99. NULL
  100. };
  102. //
  103. // Loads a radius server node's configuration from the registry
  104. // (assumed nt4 format and that defaults are assigned to pNode)
  105. //
  106. DWORD
  107. RadNodeLoad(
  108. IN HKEY hKey,
  109. OUT RAD_SERVER_NODE* pNode)
  110. {
  111. RTL_QUERY_REGISTRY_TABLE paramTable[8];
  112. BOOL bTrue = TRUE;
  113. DWORD i;
  115. // Initialize the table of parameters
  116. RtlZeroMemory(&paramTable[0], sizeof(paramTable));
  118. paramTable[0].Name = (PWCHAR)PSZTIMEOUT;
  119. paramTable[0].EntryContext = &(pNode->dwTimeout);
  121. paramTable[1].Name = (PWCHAR)PSZAUTHPORT;
  122. paramTable[1].EntryContext = &(pNode->dwAuthPort);
  124. paramTable[2].Name = (PWCHAR)PSZACCTPORT;
  125. paramTable[2].EntryContext = &(pNode->dwAcctPort);
  127. paramTable[3].Name = (PWCHAR)PSZENABLEAUTH;
  128. paramTable[3].EntryContext = &(pNode->bEnableAuth);
  130. paramTable[4].Name = (PWCHAR)PSZENABLEACCT;
  131. paramTable[4].EntryContext = &(pNode->bEnableAcct);
  133. paramTable[5].Name = (PWCHAR)PSZENABLEACCTONOFF;
  134. paramTable[5].EntryContext = &(pNode->bAccountingOnOff);
  136. paramTable[6].Name = (PWCHAR)PSZSCORE;
  137. paramTable[6].EntryContext = &(pNode->dwScore);
  139. // We're reading all dwords, set the types
  140. // accordingly
  141. //
  142. for (i = 0; i < (sizeof(paramTable) / sizeof(*paramTable)) - 1; i++)
  143. {
  144. paramTable[i].Flags = RTL_QUERY_REGISTRY_DIRECT;
  145. paramTable[i].DefaultType = REG_DWORD;
  146. paramTable[i].DefaultLength = sizeof(DWORD);
  147. paramTable[i].DefaultData = paramTable[i].EntryContext;
  148. }
  150. // Read in the values
  151. //
  152. RtlQueryRegistryValues(
  153. RTL_REGISTRY_HANDLE,
  154. (PWSTR)hKey,
  155. paramTable,
  156. NULL,
  157. NULL);
  159. return NO_ERROR;
  160. }
  162. // Add the authentication server node
  163. //
  164. DWORD
  165. RadNodeSave(
  166. IN HKEY hKey,
  167. IN RAD_SERVER_NODE* pNode,
  168. IN BOOL bAuth)
  169. {
  170. DWORD dwErr = NO_ERROR;
  171. HKEY hkServer = NULL;
  173. do
  174. {
  175. // Create the server key in which to store the info
  176. //
  177. dwErr = RegCreateKeyExW(
  178. hKey,
  179. pNode->pszName,
  180. 0,
  181. NULL,
  182. REG_OPTION_NON_VOLATILE,
  183. KEY_ALL_ACCESS,
  184. NULL,
  185. &hkServer,
  186. NULL);
  187. if (dwErr != ERROR_SUCCESS)
  188. {
  189. break;
  190. }
  192. if (bAuth)
  193. {
  194. RegSetValueExW(
  195. hkServer,
  196. (PWCHAR)PSZAUTHPORT,
  197. 0,
  198. REG_DWORD,
  199. (BYTE*)&pNode->dwAuthPort,
  200. sizeof(DWORD));
  202. RegSetValueExW(
  203. hkServer,
  204. (PWCHAR)PSZSCORE,
  205. 0,
  206. REG_DWORD,
  207. (BYTE*)&pNode->dwScore,
  208. sizeof(DWORD));
  210. RegSetValueExW(
  211. hkServer,
  212. (PWCHAR)PSZTIMEOUT,
  213. 0,
  214. REG_DWORD,
  215. (BYTE*)&pNode->dwTimeout,
  216. sizeof(DWORD));
  217. }
  218. else
  219. {
  220. RegSetValueExW(
  221. hkServer,
  222. (PWCHAR)PSZACCTPORT,
  223. 0,
  224. REG_DWORD,
  225. (BYTE*)&pNode->dwAcctPort,
  226. sizeof(DWORD));
  228. RegSetValueExW(
  229. hkServer,
  230. (PWCHAR)PSZSCORE,
  231. 0,
  232. REG_DWORD,
  233. (BYTE*)&pNode->dwScore,
  234. sizeof(DWORD));
  236. RegSetValueExW(
  237. hkServer,
  238. (PWCHAR)PSZTIMEOUT,
  239. 0,
  240. REG_DWORD,
  241. (BYTE*)&pNode->dwTimeout,
  242. sizeof(DWORD));
  244. RegSetValueExW(
  245. hkServer,
  246. (PWCHAR)PSZENABLEACCTONOFF,
  247. 0,
  248. REG_DWORD,
  249. (BYTE*)&pNode->bAccountingOnOff,
  250. sizeof(DWORD));
  251. }
  253. } while (FALSE);
  255. // Cleanup
  256. {
  257. if (hkServer)
  258. {
  259. RegCloseKey(hkServer);
  260. }
  261. }
  263. return dwErr;
  264. }
  266. //
  267. // Callback from registry key enumerator that adds the server at the given key
  268. // to the list of radius servers.
  269. //
  270. DWORD
  271. RadSrvListAddNodeFromKey(
  272. IN PWCHAR pszName, // sub key name
  273. IN HKEY hKey, // sub key
  274. IN HANDLE hData)
  275. {
  276. DWORD dwErr = NO_ERROR;
  277. RAD_SERVER_LIST * pList = (RAD_SERVER_LIST*)hData;
  278. RAD_SERVER_NODE * pNode = NULL;
  280. do
  281. {
  282. // Initialize the new node
  283. //
  284. pNode = (RAD_SERVER_NODE*) UtlAlloc(sizeof(RAD_SERVER_NODE));
  285. if (pNode == NULL)
  286. {
  287. dwErr = ERROR_NOT_ENOUGH_MEMORY;
  288. break;
  289. }
  290. CopyMemory(pNode, &g_DefaultRadNode, sizeof(RAD_SERVER_NODE));
  292. // Initialize the name
  293. //
  294. pNode->pszName = UtlDupString(pszName);
  295. if (pNode->pszName == NULL)
  296. {
  297. dwErr = ERROR_NOT_ENOUGH_MEMORY;
  298. break;
  299. }
  301. // Load in the registry settings
  302. //
  303. dwErr = RadNodeLoad(hKey, pNode);
  304. if (dwErr != NO_ERROR)
  305. {
  306. break;
  307. }
  309. // Add the node to the list
  310. //
  311. pNode->pNext = pList->pHead;
  312. pList->pHead = pNode;
  313. pList->dwCount += 1;
  315. } while (FALSE);
  317. // Cleanup
  318. {
  319. }
  321. return dwErr;
  322. }
  324. //
  325. // Generates a RAD_SERVER_LIST based on the configuration (assumed
  326. // nt4 format) in the given registry key
  327. //
  328. DWORD
  329. RadSrvListGenerate(
  330. IN HKEY hkSettings,
  331. OUT RAD_SERVER_LIST** ppList)
  332. {
  333. RAD_SERVER_LIST* pList = NULL;
  334. DWORD dwErr = NO_ERROR;
  336. do
  337. {
  338. // Alloc/Init the list
  339. pList = (RAD_SERVER_LIST*) UtlAlloc(sizeof(RAD_SERVER_LIST));
  340. if (pList == NULL)
  341. {
  342. dwErr = ERROR_NOT_ENOUGH_MEMORY;
  343. break;
  344. }
  345. ZeroMemory(pList, sizeof(RAD_SERVER_LIST));
  347. // Build the list
  348. //
  349. dwErr = UtlEnumRegistrySubKeys(
  350. hkSettings,
  351. NULL,
  352. RadSrvListAddNodeFromKey,
  353. (HANDLE)pList);
  354. if (dwErr != NO_ERROR)
  355. {
  356. break;
  357. }
  359. // Assign the return value
  360. //
  361. *ppList = pList;
  363. } while (FALSE);
  365. // Cleanup
  366. {
  367. }
  369. return dwErr;
  370. }
  372. //
  373. // Cleans up a radius server list
  374. //
  375. DWORD
  376. RadSrvListCleanup(
  377. IN RAD_SERVER_LIST* pList)
  378. {
  379. RAD_SERVER_NODE* pNode = NULL;
  381. if (pList)
  382. {
  383. for (pNode = pList->pHead; pNode; pNode = pList->pHead)
  384. {
  385. if (pNode->pszName)
  386. {
  387. UtlFree(pNode->pszName);
  388. }
  389. pList->pHead = pNode->pNext;
  390. UtlFree(pNode);
  391. }
  392. UtlFree(pList);
  393. }
  395. return NO_ERROR;
  396. }
  398. //
  399. // Opens the registry keys required by pNode
  400. //
  401. DWORD
  402. RadOpenRegKeys(
  403. IN HKEY hkRouter,
  404. IN RAD_SERVER_NODE* pNode,
  405. IN OUT RAD_CONFIG_INFO* pInfo)
  406. {
  407. DWORD dwErr = NO_ERROR;
  408. WCHAR pszPath[MAX_PATH];
  410. do
  411. {
  412. // Open the authentication keys as needed
  413. //
  414. if (pNode->bEnableAuth)
  415. {
  416. if (pInfo->hkAuthProviders == NULL)
  417. {
  418. // Open the auth providers key
  419. //
  420. dwErr = RegOpenKeyExW(
  421. hkRouter,
  422. pszAuthentication,
  423. 0,
  424. KEY_ALL_ACCESS,
  425. &pInfo->hkAuthProviders);
  426. if (dwErr != NO_ERROR)
  427. {
  428. break;
  429. }
  431. // Generate the servers key name
  432. //
  433. wsprintfW(pszPath, pszRadServersFmt, pszGuidRadAuth);
  435. // Open the auth servers key
  436. //
  437. dwErr = RegCreateKeyExW(
  438. pInfo->hkAuthProviders,
  439. pszPath,
  440. 0,
  441. NULL,
  442. REG_OPTION_NON_VOLATILE,
  443. KEY_ALL_ACCESS,
  444. NULL,
  445. &pInfo->hkAuthServers,
  446. NULL);
  447. if (dwErr != NO_ERROR)
  448. {
  449. break;
  450. }
  451. }
  452. }
  454. // Open the accounting keys
  455. //
  456. if (pNode->bEnableAcct)
  457. {
  458. if (pInfo->hkAcctProviders == NULL)
  459. {
  460. // Open the auth providers key
  461. //
  462. dwErr = RegOpenKeyExW(
  463. hkRouter,
  464. pszAccounting,
  465. 0,
  466. KEY_ALL_ACCESS,
  467. &pInfo->hkAcctProviders);
  468. if (dwErr != NO_ERROR)
  469. {
  470. break;
  471. }
  473. // Generate the servers key name
  474. //
  475. wsprintfW(pszPath, pszRadServersFmt, pszGuidRadAcct);
  477. // Open the auth servers key
  478. //
  479. dwErr = RegCreateKeyExW(
  480. pInfo->hkAcctProviders,
  481. pszPath,
  482. 0,
  483. NULL,
  484. REG_OPTION_NON_VOLATILE,
  485. KEY_ALL_ACCESS,
  486. NULL,
  487. &pInfo->hkAcctServers,
  488. NULL);
  489. if (dwErr != NO_ERROR)
  490. {
  491. break;
  492. }
  493. }
  494. }
  496. } while (FALSE);
  498. // Cleanup
  499. {
  500. }
  502. return dwErr;
  503. }
  505. //
  506. // Cleans up info from radius installation
  507. //
  508. DWORD
  509. RadCloseRegKeys(
  510. IN RAD_CONFIG_INFO* pInfo)
  511. {
  512. if (pInfo)
  513. {
  514. if (pInfo->hkAuthServers)
  515. {
  516. RegCloseKey(pInfo->hkAuthServers);
  517. pInfo->hkAuthServers = NULL;
  518. }
  520. if (pInfo->hkAuthProviders)
  521. {
  522. RegCloseKey(pInfo->hkAuthProviders);
  523. pInfo->hkAuthProviders = NULL;
  524. }
  526. if (pInfo->hkAcctServers)
  527. {
  528. RegCloseKey(pInfo->hkAcctServers);
  529. pInfo->hkAcctServers = NULL;
  530. }
  532. if (pInfo->hkAcctProviders)
  533. {
  534. RegCloseKey(pInfo->hkAcctProviders);
  535. pInfo->hkAcctProviders = NULL;
  536. }
  537. }
  539. return NO_ERROR;
  540. }
  542. //
  543. // Adds the given server to the win2k section of the registry
  544. //
  545. DWORD
  546. RadInstallServer(
  547. IN HKEY hkRouter,
  548. IN RAD_SERVER_NODE* pNode,
  549. IN OUT RAD_CONFIG_INFO* pInfo)
  550. {
  551. DWORD dwErr = NO_ERROR;
  553. do
  554. {
  555. // Based on the node, open or create any neccessary
  556. // registry keys.
  557. //
  558. dwErr = RadOpenRegKeys(hkRouter, pNode, pInfo);
  559. if (dwErr != NO_ERROR)
  560. {
  561. break;
  562. }
  564. if (pNode->bEnableAuth)
  565. {
  566. // Add the authentication server node
  567. //
  568. dwErr = RadNodeSave(
  569. pInfo->hkAuthServers,
  570. pNode,
  571. TRUE);
  572. if (dwErr != NO_ERROR)
  573. {
  574. break;
  575. }
  577. // Set the active authentication provider
  578. //
  579. dwErr = RegSetValueExW(
  580. pInfo->hkAuthProviders,
  581. (PWCHAR)pszActiveProvider,
  582. 0,
  583. REG_SZ,
  584. (BYTE*)pszGuidRadAuth,
  585. (wcslen(pszGuidRadAuth) + 1) * sizeof(WCHAR));
  586. if (dwErr != NO_ERROR)
  587. {
  588. break;
  589. }
  590. }
  592. if (pNode->bEnableAcct)
  593. {
  594. // Add the accounting server node
  595. //
  596. dwErr = RadNodeSave(
  597. pInfo->hkAcctServers,
  598. pNode,
  599. FALSE);
  600. if (dwErr != NO_ERROR)
  601. {
  602. break;
  603. }
  605. // Set the active accounting provider
  606. //
  607. dwErr = RegSetValueExW(
  608. pInfo->hkAcctProviders,
  609. (PWCHAR)pszActiveProvider,
  610. 0,
  611. REG_SZ,
  612. (BYTE*)pszGuidRadAcct,
  613. (wcslen(pszGuidRadAcct) + 1) * sizeof(WCHAR));
  614. if (dwErr != NO_ERROR)
  615. {
  616. break;
  617. }
  618. }
  620. } while (FALSE);
  622. // Cleanup
  623. {
  624. }
  626. return dwErr;
  627. }
  629. //
  630. // Migrates radius settings from the settings key into the
  631. // router key.
  632. //
  633. DWORD
  634. RadMigrateSettings(
  635. IN HKEY hkRouter,
  636. IN HKEY hkSettings)
  637. {
  638. DWORD dwErr = NO_ERROR;
  639. RAD_SERVER_LIST* pList = NULL;
  640. RAD_CONFIG_INFO* pInfo = NULL;
  641. RAD_SERVER_NODE* pNode = NULL;
  643. do
  644. {
  645. // Generate the list of servers based on
  646. // the loaded settings
  647. dwErr = RadSrvListGenerate(hkSettings, &pList);
  648. if (dwErr != NO_ERROR)
  649. {
  650. break;
  651. }
  653. // If there were no servers, then there's nothing
  654. // to do
  655. //
  656. if (pList->pHead == NULL)
  657. {
  658. dwErr = NO_ERROR;
  659. break;
  660. }
  662. // Allocate and init the info blob that will be
  663. // used by the install funcs.
  664. //
  665. pInfo = (RAD_CONFIG_INFO*) UtlAlloc(sizeof(RAD_CONFIG_INFO));
  666. if (pInfo == NULL)
  667. {
  668. dwErr = ERROR_NOT_ENOUGH_MEMORY;
  669. break;
  670. }
  671. ZeroMemory(pInfo, sizeof(RAD_CONFIG_INFO));
  673. // Install all of the servers
  674. //
  675. for (pNode = pList->pHead; pNode; pNode = pNode->pNext)
  676. {
  677. RadInstallServer(hkRouter, pNode, pInfo);
  678. }
  680. } while (FALSE);
  682. // Cleanup
  683. {
  684. if (pList)
  685. {
  686. RadSrvListCleanup(pList);
  687. }
  688. if (pInfo)
  689. {
  690. RadCloseRegKeys(pInfo);
  691. UtlFree(pInfo);
  692. }
  693. }
  695. return dwErr;
  696. }
  698. //
  699. // Performs the upgrade work
  700. //
  701. DWORD
  702. RadiusToRouterUpgrade(
  703. IN PWCHAR pszFile)
  704. {
  705. DWORD dwErr = NO_ERROR;
  706. HKEY hkRouter = NULL, hkTemp = NULL, hkSettings = NULL;
  708. do
  709. {
  710. // Get the Router subkey
  711. //
  712. dwErr = UtlAccessRouterKey(&hkRouter);
  713. if (dwErr != NO_ERROR)
  714. {
  715. break;
  716. }
  718. // Load registry data that has been saved off
  719. //
  720. dwErr = UtlLoadSavedSettings(
  721. hkRouter,
  722. (PWCHAR)pszTempRegKey,
  723. pszFile,
  724. &hkTemp);
  725. if (dwErr != NO_ERROR)
  726. {
  727. PrintMessage(L"Unable to load radius settings.\n");
  728. break;
  729. }
  731. // Load the settings key
  732. //
  733. dwErr = RegOpenKeyExW(
  734. hkTemp,
  735. pszServers,
  736. 0,
  737. KEY_ALL_ACCESS,
  738. &hkSettings);
  739. if (dwErr != NO_ERROR)
  740. {
  741. break;
  742. }
  744. // Migrate radius information
  745. //
  746. dwErr = RadMigrateSettings(hkRouter, hkSettings);
  747. if (dwErr != NO_ERROR)
  748. {
  749. PrintMessage(L"Unable to migrate radius settings.\n");
  750. break;
  751. }
  753. } while (FALSE);
  755. // Cleanup
  756. {
  757. if (hkSettings)
  758. {
  759. RegCloseKey(hkSettings);
  760. }
  761. if (hkTemp)
  762. {
  763. UtlDeleteRegistryTree(hkTemp);
  764. RegCloseKey(hkTemp);
  765. RegDeleteKey(hkRouter, pszTempRegKey);
  766. }
  767. if (hkRouter)
  768. {
  769. RegCloseKey(hkRouter);
  770. }
  771. }
  773. return dwErr;
  774. }