archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 7b07a90fc1
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '7b07a90fc1'
${ noResults }
windows-server-2003/base/headless/cmd/sacsess/session.cpp

861 lines
18 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. /*++
  3. Copyright (c) 1999-2001 Microsoft Corporation
  5. Module Name:
  7. session.cpp
  9. Abstract:
  11. Class for creating a command console shell
  13. Author:
  15. Brian Guarraci (briangu) 2001.
  17. Revision History:
  19. --*/
  21. #include <Session.h>
  22. #include <assert.h>
  23. #include <process.h>
  25. #include "secio.h"
  26. #include "utils.h"
  27. #include "scraper.h"
  28. #include "vtutf8scraper.h"
  30. extern "C" {
  31. #include <ntddsac.h>
  32. #include <sacapi.h>
  33. }
  35. CSession::CSession()
  36. /*++
  38. Routine Description:
  40. Constructor
  42. Arguments:
  44. None
  46. Return Value:
  48. N/A
  50. --*/
  51. {
  53. //
  54. //
  55. //
  56. m_dwPollInterval = MIN_POLL_INTERVAL;
  58. //
  59. // Initialize the # of rows and cols the session
  60. // screen will have
  61. //
  62. m_wCols = DEFAULT_COLS;
  63. m_wRows = DEFAULT_ROWS;
  65. //
  66. // Initialize the username and password for
  67. // the authentication of a user
  68. //
  69. RtlZeroMemory(m_UserName, sizeof(m_UserName));
  70. RtlZeroMemory(m_DomainName, sizeof(m_DomainName));
  72. //
  73. // Initialize the WaitForIo attributes
  74. //
  75. m_bContinueSession = true;
  76. m_dwHandleCount = 0;
  78. //
  79. // NULL all event the handles we use
  80. //
  81. m_ThreadExitEvent = NULL;
  82. m_SacChannelCloseEvent = NULL;
  83. m_SacChannelHasNewDataEvent = NULL;
  84. m_SacChannelLockEvent = NULL;
  85. m_SacChannelRedrawEvent = NULL;
  87. //
  88. // thread handle is invalid
  89. //
  90. m_InputThreadHandle = INVALID_HANDLE_VALUE;
  92. //
  93. //
  94. //
  95. m_ioHandler = NULL;
  96. m_Scraper = NULL;
  97. m_Shell = NULL;
  99. }
  101. CSession::~CSession()
  102. /*++
  104. Routine Description:
  106. Destructor
  108. Arguments:
  110. N/A
  112. Return Value:
  114. N/A
  116. --*/
  117. {
  119. if (m_Shell) {
  120. delete m_Shell;
  121. }
  122. if (m_Scraper) {
  123. delete m_Scraper;
  124. }
  125. if (m_ioHandler) {
  126. delete m_ioHandler;
  127. }
  129. if (m_ThreadExitEvent) {
  130. CloseHandle( m_ThreadExitEvent );
  131. }
  132. if (m_SacChannelCloseEvent) {
  133. CloseHandle( m_SacChannelCloseEvent );
  134. }
  135. if (m_SacChannelHasNewDataEvent) {
  136. CloseHandle( m_SacChannelHasNewDataEvent );
  137. }
  138. if (m_SacChannelLockEvent) {
  139. CloseHandle( m_SacChannelLockEvent );
  140. }
  141. if (m_SacChannelRedrawEvent) {
  142. CloseHandle( m_SacChannelRedrawEvent );
  143. }
  145. }
  147. BOOL
  148. CSession::Authenticate(
  149. OUT PHANDLE phToken
  150. )
  151. /*++
  153. Routine Description:
  155. This routine attempts to authenticate a user (if necessary) and
  156. acquire credentials.
  158. Arguments:
  160. hToken - on success, contains the authenticated credentials
  162. Return Value:
  164. TRUE - success
  165. FALSE - otherwise
  167. Security:
  169. interface:
  171. registry
  172. external input
  173. LogonUser()
  176. --*/
  177. {
  178. BOOL bSuccess;
  179. PWCHAR Password;
  181. //
  182. // Allocate the password on the heap
  183. //
  184. Password = new WCHAR[MAX_PASSWORD_LENGTH+1];
  186. //
  187. // Purge the password buffer
  188. //
  189. RtlZeroMemory(Password, (MAX_PASSWORD_LENGTH+1) * sizeof(Password[0]));
  191. //
  192. // Default: the credentials are invalid
  193. //
  194. *phToken = INVALID_HANDLE_VALUE;
  196. //
  197. // Default: we were successful
  198. //
  199. bSuccess = TRUE;
  201. //
  202. // Attempt to authenticate a user if authentication
  203. // as actually needed.
  204. //
  205. do {
  207. if( NeedCredentials() ) {
  209. //
  210. // Get the credentials to authenticate
  211. //
  212. bSuccess = m_ioHandler->RetrieveCredentials(
  213. m_UserName,
  214. sizeof(m_UserName) / sizeof(m_UserName[0]),
  215. m_DomainName,
  216. sizeof(m_DomainName) / sizeof(m_DomainName[0]),
  217. Password,
  218. MAX_PASSWORD_LENGTH+1
  219. );
  221. if (!bSuccess) {
  222. break;
  223. }
  225. //
  226. // Attempt the actual authentication
  227. //
  228. bSuccess = m_ioHandler->AuthenticateCredentials(
  229. m_UserName,
  230. m_DomainName,
  231. Password,
  232. phToken
  233. );
  235. if (!bSuccess) {
  236. break;
  237. }
  239. }
  241. } while ( FALSE );
  243. //
  244. // Purge and release the password buffer
  245. //
  246. RtlSecureZeroMemory(Password, (MAX_PASSWORD_LENGTH+1) * sizeof(Password[0]));
  247. delete [] Password;
  249. return bSuccess;
  250. }
  252. BOOL
  253. CSession::Lock(
  254. VOID
  255. )
  256. /*++
  258. Routine Description:
  260. This routine manages the locking of the session.
  262. Arguments:
  264. None
  266. Return Value:
  268. status
  270. --*/
  271. {
  273. //
  274. // Lock the IOHandler
  275. //
  276. // this causes the Security Iohandler to switch from using
  277. // the SAC IOHandler to using the NULLIO handler.
  278. //
  279. m_ioHandler->Lock();
  281. return TRUE;
  282. }
  284. BOOL
  285. CSession::Unlock(
  286. VOID
  287. )
  288. /*++
  290. Routine Description:
  292. This routine manages the unlocking of the session after a user
  293. has authenticated.
  295. Arguments:
  297. None
  299. Return Value:
  301. status
  303. --*/
  304. {
  305. BOOL bStatus;
  307. //
  308. // Unlock the IOHandler
  309. //
  310. // this causes the Security Iohandler to switch from using
  311. // the NULLIO handler to using the SAC IOhandler
  312. //
  313. m_ioHandler->Unlock();
  315. //
  316. // It is possible that the Lock Event was signalled while we were
  317. // waiting for authentication
  318. //
  319. // e.g. Imagine a user starting a cmd session,
  320. // not logging in, and walking away for longer than the timeout
  321. // period
  322. //
  323. // -or-
  324. //
  325. // a SAC "lock" command was issued while the session was already
  326. // locked.
  327. //
  328. // After the user logs on successfully, we should not lock again.
  329. // Hence, we need to reset the lock event.
  330. //
  331. // Note: It is not correct to do this in the security IO handler, as it
  332. // should not have global knowledge of all the circumstances that
  333. // can signal the lock event.
  334. //
  335. bStatus = ResetEvent(m_SacChannelLockEvent);
  337. return bStatus;
  338. }
  340. BOOL
  341. CSession::Init(
  342. VOID
  343. )
  344. /*++
  346. Routine Description:
  348. This routine does the core initialization for the session.
  350. If this routine is successful, the WaitForIo routine may be called.
  352. Arguments:
  354. None
  356. Return Value:
  358. TRUE - the session was successfully initialized
  359. FALSE - otherwise
  361. --*/
  362. {
  363. SAC_CHANNEL_OPEN_ATTRIBUTES Attributes;
  364. HANDLE hToken;
  365. BOOL bSuccess;
  367. //
  368. // Initialize the last error status
  369. //
  370. SetLastError( 0 );
  372. //
  373. // Construct the manually resetting events that we'll use
  374. //
  375. // Note: we do not need to CloseHandle() on the events if
  376. // fail because they are cleaned up in the destructor
  377. //
  378. m_SacChannelLockEvent = CreateEvent( NULL, TRUE, FALSE, NULL );
  379. ASSERT_STATUS(m_SacChannelLockEvent, FALSE);
  381. m_SacChannelCloseEvent = CreateEvent( NULL, TRUE, FALSE, NULL );
  382. ASSERT_STATUS(m_SacChannelCloseEvent, FALSE);
  384. m_ThreadExitEvent = CreateEvent( NULL, TRUE, FALSE, NULL );
  385. ASSERT_STATUS(m_ThreadExitEvent, FALSE);
  387. m_SacChannelHasNewDataEvent = CreateEvent( NULL, TRUE, FALSE, NULL );
  388. ASSERT_STATUS(m_SacChannelHasNewDataEvent, FALSE);
  390. m_SacChannelRedrawEvent = CreateEvent( NULL, TRUE, FALSE, NULL );
  391. ASSERT_STATUS(m_SacChannelRedrawEvent, FALSE);
  393. //
  394. // Configure the attributes of the command console channel
  395. //
  396. // Note: we don't use all of the attributes since most are defaulted
  397. // in the SAC driver
  398. //
  399. RtlZeroMemory(&Attributes, sizeof(SAC_CHANNEL_OPEN_ATTRIBUTES));
  401. Attributes.Flags = SAC_CHANNEL_FLAG_CLOSE_EVENT |
  402. SAC_CHANNEL_FLAG_HAS_NEW_DATA_EVENT |
  403. SAC_CHANNEL_FLAG_LOCK_EVENT |
  404. SAC_CHANNEL_FLAG_REDRAW_EVENT;
  405. Attributes.CloseEvent = m_SacChannelCloseEvent;
  406. Attributes.HasNewDataEvent = m_SacChannelHasNewDataEvent;
  407. Attributes.LockEvent = m_SacChannelLockEvent;
  408. Attributes.RedrawEvent = m_SacChannelRedrawEvent;
  410. //
  411. // Attempt to open the Secure Io Handler to the SAC command console channel
  412. //
  413. m_ioHandler = CSecurityIoHandler::Construct(Attributes);
  415. if (! m_ioHandler) {
  416. return FALSE;
  417. }
  419. //
  420. // Attempt to authenticate the session user
  421. //
  422. bSuccess = Authenticate(&hToken);
  424. if (!bSuccess) {
  425. return (FALSE);
  426. }
  428. //
  429. // The user successfully authenticated, so unlock the session
  430. //
  431. Unlock();
  433. //
  434. // Create the scraper we'll use for this session
  435. //
  436. m_Scraper = new CVTUTF8Scraper(
  437. m_ioHandler,
  438. m_wCols,
  439. m_wRows
  440. );
  442. //
  443. // Create the shell we'll use for this session
  444. //
  445. m_Shell = new CShell();
  447. //
  448. // Attempt to launch the command console session
  449. //
  450. bSuccess = m_Shell->StartUserSession (
  451. this,
  452. hToken
  453. );
  454. ASSERT_STATUS(bSuccess, FALSE);
  456. //
  457. // We are done with the token
  458. //
  459. CloseHandle(hToken);
  461. //
  462. // Start the scraper
  463. //
  464. bSuccess = m_Scraper->Start();
  465. ASSERT_STATUS(bSuccess, FALSE);
  467. //
  468. // The scraping thread needs to also listen if the SAC channel closes
  469. //
  470. AddHandleToWaitOn(m_SacChannelCloseEvent);
  471. AddHandleToWaitOn(m_SacChannelLockEvent);
  472. AddHandleToWaitOn(m_SacChannelRedrawEvent);
  474. //
  475. // Create threads to handle Input
  476. //
  477. m_InputThreadHandle = (HANDLE)_beginthreadex(
  478. NULL,
  479. 0,
  480. CSession::InputThread,
  481. this,
  482. 0,
  483. (unsigned int*)&m_InputThreadTID
  484. );
  486. ASSERT_STATUS(m_InputThreadHandle != INVALID_HANDLE_VALUE, FALSE);
  488. //
  489. // We successfully initialized the session
  490. //
  491. return( TRUE );
  492. }
  494. void
  495. CSession::AddHandleToWaitOn( HANDLE hNew )
  496. /*++
  498. Routine Description:
  500. This routine adds a handle to an array of handles
  501. that will be waiting on in "WaitForIo"
  503. Note: the handle array is fixed length, so if there
  504. are additional handles which need to be waited
  505. on, MAX_HANDLES must be modified
  507. Arguments:
  509. hNew - the new handle to wait on
  511. Return Value:
  513. None
  515. --*/
  516. {
  517. ASSERT( m_dwHandleCount < MAX_HANDLES );
  518. ASSERT( hNew );
  520. //
  521. // Add the new handle to our array of multiple handles
  522. //
  523. m_rghHandlestoWaitOn[ m_dwHandleCount ] = hNew;
  525. //
  526. // Account for the new handle
  527. //
  528. m_dwHandleCount++;
  530. }
  532. void
  533. CSession::WaitForIo(
  534. VOID
  535. )
  536. /*++
  538. Routine Description:
  540. This routine is the main work loop for the session and
  541. is responsible for:
  543. running the scraper
  544. handling the session close event
  545. handling the session redraw event
  546. handling the session lock event
  548. Arguments:
  550. None
  552. Return Value:
  554. None
  556. --*/
  557. {
  558. DWORD dwRetVal = WAIT_FAILED;
  559. BOOL ScrapeEnabled;
  561. enum {
  562. CMD_KILLED = WAIT_OBJECT_0,
  563. CHANNEL_CLOSE_EVENT,
  564. CHANNEL_LOCK_EVENT,
  565. CHANNEL_REDRAW_EVENT
  566. };
  568. //
  569. // Default: it is not an appropriate time to scrape
  570. //
  571. ScrapeEnabled = FALSE;
  573. //
  574. // Service the session's events
  575. //
  576. while ( m_bContinueSession ) {
  578. ULONG HandleCount;
  580. //
  581. // If scraping is enabled,
  582. // then don't wait on the scrape event.
  583. //
  584. // Note: the redraw event must be the last event
  585. // in the m_rghHandlestoWaitOn array
  586. //
  587. HandleCount = ScrapeEnabled ? m_dwHandleCount - 1 : m_dwHandleCount;
  589. dwRetVal = WaitForMultipleObjects(
  590. HandleCount,
  591. m_rghHandlestoWaitOn,
  592. FALSE,
  593. m_dwPollInterval
  594. );
  596. switch ( dwRetVal ) {
  598. case CHANNEL_REDRAW_EVENT:
  600. ASSERT(!ScrapeEnabled);
  602. //
  603. // Tell the screen scraper we need a full dump of it's screen
  604. //
  605. m_Scraper->DisplayFullScreen();
  607. //
  608. // We are now an appropriate time to scrape
  609. //
  610. ScrapeEnabled = TRUE;
  612. break;
  614. case WAIT_TIMEOUT:
  616. if (ScrapeEnabled) {
  618. //
  619. // Scrape
  620. //
  621. m_bContinueSession = m_Scraper->Write();
  623. //
  624. // Wait until the event clears by looking
  625. // for a WAIT_TIMEOUT
  626. //
  627. dwRetVal = WaitForSingleObject(
  628. m_SacChannelRedrawEvent,
  629. 0
  630. );
  632. //
  633. // Check the wait result
  634. //
  635. switch (dwRetVal) {
  636. case WAIT_TIMEOUT:
  638. //
  639. // We need to stop scraping now
  640. //
  641. ScrapeEnabled = FALSE;
  643. break;
  645. default:
  647. ASSERT (dwRetVal != WAIT_FAILED);
  648. if (dwRetVal == WAIT_FAILED) {
  649. m_bContinueSession = false;
  650. }
  652. break;
  654. }
  656. }
  658. break;
  660. case CHANNEL_LOCK_EVENT:
  662. BOOL bSuccess;
  663. HANDLE hToken;
  665. //
  666. // Lock the session
  667. //
  668. Lock();
  670. //
  671. // Attempt to authenticate the session user
  672. //
  673. bSuccess = Authenticate(&hToken);
  675. if (bSuccess) {
  677. //
  678. // The user successfully authenticated, so unlock the session
  679. //
  680. Unlock();
  682. //
  683. // Tell the screen scraper we need a full dump of it's screen
  684. //
  685. m_Scraper->DisplayFullScreen();
  687. } else {
  689. //
  690. // Loop back around to the WaitForMultipleObjects so that
  691. // we can catch the close event if it occurred
  692. //
  693. NOTHING;
  695. }
  697. break;
  699. case CMD_KILLED:
  700. case CHANNEL_CLOSE_EVENT:
  701. //
  702. // Tell the Input Thread to exit
  703. //
  704. SetEvent(m_ThreadExitEvent);
  706. default:
  707. //
  708. // incase WAIT_FAILED, call GetLastError()
  709. //
  710. ASSERT( dwRetVal != WAIT_FAILED);
  712. m_bContinueSession = false;
  714. break;
  715. }
  716. }
  717. return;
  718. }
  720. void
  721. CSession::Shutdown(
  722. VOID
  723. )
  724. /*++
  726. Routine Description:
  728. This routine does the cleanup work for shutting down the session.
  730. Note: this routine does not free memory
  732. Arguments:
  734. None
  736. Return Value:
  738. None
  740. --*/
  741. {
  742. //
  743. // Shutdown the shell
  744. //
  745. if (m_Shell) {
  746. m_Shell->Shutdown();
  747. }
  749. //
  750. // If we started the input thread,
  751. // then shut it down
  752. //
  753. if (m_InputThreadHandle != INVALID_HANDLE_VALUE) {
  755. //
  756. // Wait for the thread to exit
  757. //
  758. WaitForSingleObject(
  759. m_InputThreadHandle,
  760. INFINITE
  761. );
  763. CloseHandle(m_InputThreadHandle);
  765. }
  767. }
  769. unsigned int
  770. CSession::InputThread(
  771. PVOID pParam
  772. )
  773. /*++
  775. Routine Description:
  777. This routine provides asynchronous support for handling
  778. user-input from the IoHandler to the session.
  780. Arguments:
  782. pParam - thread context
  784. Return Value:
  786. status
  788. --*/
  789. {
  790. BOOL bContinueSession;
  791. DWORD dwRetVal;
  792. CSession *session;
  793. HANDLE handles[2];
  795. //
  796. // default: listen
  797. //
  798. bContinueSession = TRUE;
  800. //
  801. // Get the session object
  802. //
  803. session = (CSession*)pParam;
  805. //
  806. // Assign the events to listen for
  807. //
  808. handles[0] = session->m_SacChannelHasNewDataEvent;
  809. handles[1] = session->m_ThreadExitEvent;
  811. //
  812. // While we should listen:
  813. //
  814. // 1. wait for a HasNewDataEvent from the SAC driver
  815. // 2. wait for a CloseEvent from the SAC driver
  816. //
  817. while ( bContinueSession ) {
  819. //
  820. // Wait for our events
  821. //
  822. dwRetVal = WaitForMultipleObjects(
  823. sizeof(handles)/sizeof(HANDLE),
  824. handles,
  825. FALSE,
  826. INFINITE
  827. );
  829. switch ( dwRetVal ) {
  830. case WAIT_OBJECT_0: {
  832. //
  833. // Read user-input from the channel
  834. //
  835. bContinueSession = session->m_Scraper->Read();
  837. break;
  839. }
  841. default:
  843. //
  844. // incase WAIT_FAILED, call GetLastError()
  845. //
  846. ASSERT(dwRetVal != WAIT_FAILED);
  849. //
  850. // An error has occured, stop listening
  851. //
  852. bContinueSession = FALSE;
  854. break;
  855. }
  856. }
  858. return 0;
  860. }