archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 7b07a90fc1
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '7b07a90fc1'
${ noResults }
windows-server-2003/ds/security/base/lsa/server/negsupp.cxx

832 lines
18 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. //+---------------------------------------------------------------------------
  2. //
  3. // Microsoft Windows
  4. // Copyright (C) Microsoft Corporation, 1992 - 1995.
  5. //
  6. // File: negsupp.cxx
  7. //
  8. // Contents: General (both win9x and nt) functions
  9. //
  10. // Classes:
  11. //
  12. // Functions:
  13. //
  14. // History: 02-09-00 RichardW Created - split from negotiat.cxx
  15. //
  16. //----------------------------------------------------------------------------
  18. #include <lsapch.hxx>
  20. extern "C"
  21. {
  22. #include <align.h>
  23. #include <lm.h>
  24. #include <dsgetdc.h>
  25. #include <cryptdll.h>
  26. #include <spmgr.h>
  27. #include "sesmgr.h"
  28. #include "spinit.h"
  29. }
  31. #include "negotiat.hxx"
  32. #include <stdio.h>
  34. BOOL fSPNEGOModuleStarted = FALSE;
  36. SECURITY_STATUS
  37. SpnegoInitAsn(
  38. IN OUT ASN1encoding_t * pEnc,
  39. IN OUT ASN1decoding_t * pDec
  40. )
  41. {
  42. ASN1error_e Asn1Err;
  43. SECURITY_STATUS SecStatus = SEC_E_OK;
  45. if (!fSPNEGOModuleStarted)
  46. {
  47. RtlEnterCriticalSection( &NegLogonSessionListLock );
  49. if (!fSPNEGOModuleStarted)
  50. {
  51. SPNEGO_Module_Startup();
  52. fSPNEGOModuleStarted = TRUE;
  53. }
  55. RtlLeaveCriticalSection( &NegLogonSessionListLock );
  56. }
  58. if (pEnc != NULL)
  59. {
  60. Asn1Err = ASN1_CreateEncoder(
  61. SPNEGO_Module,
  62. pEnc,
  63. NULL, // pbBuf
  64. 0, // cbBufSize
  65. NULL // pParent
  66. );
  67. }
  68. else
  69. {
  70. Asn1Err = ASN1_CreateDecoder(
  71. SPNEGO_Module,
  72. pDec,
  73. NULL, // pbBuf
  74. 0, // cbBufSize
  75. NULL // pParent
  76. );
  77. }
  79. if (ASN1_SUCCESS != Asn1Err)
  80. {
  81. DebugLog((DEB_ERROR, "Failed to init ASN1: 0x%x\n",Asn1Err));
  82. SecStatus = SpnegoAsnErrorToSecStatus( Asn1Err );
  83. goto Cleanup;
  84. }
  86. Cleanup:
  88. return SecStatus;
  89. }
  92. VOID
  93. SpnegoTermAsn(
  94. IN ASN1encoding_t pEnc,
  95. IN ASN1decoding_t pDec
  96. )
  97. {
  98. if (pEnc != NULL)
  99. {
  100. ASN1_CloseEncoder(pEnc);
  101. }
  102. else if (pDec != NULL)
  103. {
  104. ASN1_CloseDecoder(pDec);
  105. }
  107. //SPNEGO_Module_Cleanup();
  108. }
  110. SECURITY_STATUS
  111. SpnegoAsnErrorToSecStatus(
  112. IN ASN1error_e Asn1Err
  113. )
  114. {
  115. switch( Asn1Err )
  116. {
  117. case ASN1_SUCCESS:
  118. {
  119. return SEC_E_OK;
  120. }
  122. case ASN1_ERR_MEMORY:
  123. {
  124. return SEC_E_INSUFFICIENT_MEMORY;
  125. }
  127. default:
  128. {
  129. return SEC_E_INVALID_TOKEN;
  130. }
  131. }
  132. }
  134. SECURITY_STATUS
  135. SpnegoUnpackData(
  136. IN PUCHAR Data,
  137. IN ULONG DataSize,
  138. IN ULONG PduValue,
  139. OUT PVOID * DecodedData
  140. )
  141. {
  142. ULONG OldPduValue;
  143. ASN1decoding_t pDec = NULL;
  144. ASN1error_e Asn1Err;
  145. SECURITY_STATUS SecStatus;
  147. if ((DataSize == 0) || (Data == NULL))
  148. {
  149. DebugLog((DEB_ERROR,"Trying to unpack NULL data\n"));
  150. return SEC_E_INVALID_TOKEN;
  151. }
  154. SecStatus = SpnegoInitAsn(
  155. NULL,
  156. &pDec // we are decoding
  157. );
  158. if (!NT_SUCCESS(SecStatus))
  159. {
  160. return SecStatus;
  161. }
  164. *DecodedData = NULL;
  165. Asn1Err = ASN1_Decode(
  166. pDec,
  167. DecodedData,
  168. PduValue,
  169. ASN1DECODE_SETBUFFER,
  170. (BYTE *) Data,
  171. DataSize
  172. );
  174. if (!ASN1_SUCCEEDED(Asn1Err))
  175. {
  177. SecStatus = SpnegoAsnErrorToSecStatus( Asn1Err );
  179. if ((ASN1_ERR_BADARGS == Asn1Err) ||
  180. (ASN1_ERR_EOD == Asn1Err))
  181. {
  182. DebugLog((DEB_TRACE,"More input required to decode data %d.\n",PduValue));
  183. }
  184. else
  185. {
  186. DebugLog((DEB_WARN,"Failed to decode data: %d\n", Asn1Err ));
  187. }
  188. *DecodedData = NULL;
  189. }
  191. SpnegoTermAsn(NULL, pDec);
  193. return SecStatus;
  195. }
  198. SECURITY_STATUS
  199. SpnegoPackData(
  200. IN PVOID Data,
  201. IN ULONG PduValue,
  202. OUT PULONG DataSize,
  203. OUT PUCHAR * MarshalledData
  204. )
  205. {
  206. PUCHAR Buffer = NULL;
  207. ASN1encoding_t pEnc = NULL;
  208. ASN1error_e Asn1Err;
  209. SECURITY_STATUS SecStatus;
  211. SecStatus = SpnegoInitAsn(
  212. &pEnc, // we are encoding
  213. NULL
  214. );
  215. if (!NT_SUCCESS(SecStatus))
  216. {
  217. return SecStatus;
  218. }
  220. //
  221. // Encode the data type.
  222. //
  223. Asn1Err = ASN1_Encode(
  224. pEnc,
  225. Data,
  226. PduValue,
  227. ASN1ENCODE_ALLOCATEBUFFER,
  228. NULL, // pbBuf
  229. 0 // cbBufSize
  230. );
  232. if (!ASN1_SUCCEEDED(Asn1Err))
  233. {
  234. DebugLog((DEB_ERROR,"Failed to encode data: %d\n",Asn1Err));
  235. SecStatus = SpnegoAsnErrorToSecStatus( Asn1Err );
  236. goto Cleanup;
  237. }
  238. else
  239. {
  240. //
  241. // when the oss compiler was used the allocation routines were configurable.
  242. // therefore, the encoded data could just be free'd using our
  243. // deallocator. in the new model we cannot configure the allocation routines
  244. // for encoding.
  246. // so we do not have to go and change every place where a free
  247. // of an encoded buffer is done, use our allocator to allocate a new buffer,
  248. // then copy the encoded data to it, and free the buffer that was allocated by
  249. // the encoding engine.
  250. //
  252. *MarshalledData = (PUCHAR)LsapAllocateLsaHeap(pEnc->len);
  253. if (*MarshalledData == NULL)
  254. {
  255. SecStatus = SEC_E_INSUFFICIENT_MEMORY;
  256. *DataSize = 0;
  257. }
  258. else
  259. {
  260. RtlCopyMemory(*MarshalledData, pEnc->buf, pEnc->len);
  261. *DataSize = pEnc->len;
  263. //DebugLog((DEB_ERROR,"encoded pdu size: %d\n",pEnc->len));
  264. //PrintBytes(pEnc->buf, pEnc->len);
  265. }
  267. ASN1_FreeEncoded(pEnc, pEnc->buf);
  268. }
  270. Cleanup:
  271. SpnegoTermAsn(pEnc, NULL);
  273. return SecStatus;
  274. }
  277. VOID
  278. SpnegoFreeData(
  279. IN ULONG PduValue,
  280. IN PVOID Data
  281. )
  282. {
  283. ASN1decoding_t pDec = NULL;
  285. if (ARGUMENT_PRESENT(Data))
  286. {
  287. SECURITY_STATUS SecStatus;
  289. SecStatus = SpnegoInitAsn(
  290. NULL,
  291. &pDec // this is a decoded structure
  292. );
  294. if ( NT_SUCCESS(SecStatus) )
  295. {
  296. ASN1_FreeDecoded(pDec, Data, PduValue);
  298. SpnegoTermAsn(NULL, pDec);
  299. }
  300. }
  302. }
  305. //+---------------------------------------------------------------------------
  306. //
  307. // Function: NegpFreeObjectId
  308. //
  309. // Synopsis: Frees an object ID structure created by us
  310. //
  311. // Arguments: [Id] -- Id to free
  312. //
  313. // History: 8-09-96 RichardW Created
  314. //
  315. // Notes:
  316. //
  317. //----------------------------------------------------------------------------
  318. VOID
  319. NegpFreeObjectId(
  320. ObjectID Id)
  321. {
  322. ObjectID Next;
  324. while (Id) {
  326. Next = Id->next;
  328. LsapFreeLsaHeap( Id );
  330. Id = Next ;
  332. } ;
  334. }
  336. //+---------------------------------------------------------------------------
  337. //
  338. // Function: NegpFreeMechList
  339. //
  340. // Synopsis: Frees a Mechlist created by NecpCopyMechList
  341. //
  342. // Arguments: [Id] -- Id to free
  343. //
  344. // History: 8-09-96 RichardW Created
  345. //
  346. // Notes:
  347. //
  348. //----------------------------------------------------------------------------
  349. VOID
  350. NegpFreeMechList(
  351. struct MechTypeList *MechList)
  352. {
  353. struct MechTypeList *Next;
  355. Next = MechList;
  356. while (Next != NULL)
  357. {
  359. NegpFreeObjectId(Next->value);
  361. Next = Next->next ;
  363. } while ( Next );
  365. LsapFreeLsaHeap(MechList);
  367. }
  370. //+---------------------------------------------------------------------------
  371. //
  372. // Function: NegpDecodeObjectId
  373. //
  374. // Synopsis: Create an Object ID struct from a BER encoded Object ID
  375. //
  376. // Arguments: [Id] --
  377. // [Len] --
  378. //
  379. // History: 8-09-96 RichardW Created
  380. //
  381. // Notes:
  382. //
  383. //----------------------------------------------------------------------------
  384. ObjectID
  385. NegpDecodeObjectId(
  386. PUCHAR Id,
  387. DWORD Len)
  388. {
  389. ObjectID Root;
  390. ObjectID Tail;
  391. ObjectID Current;
  392. DWORD i, j;
  393. DWORD value;
  395. if ( Len < 3 )
  396. {
  397. return( NULL );
  398. }
  400. //
  401. // Check for BER type OBJECT_ID
  402. //
  404. if ( Id[ 0 ] != 0x06 )
  405. {
  406. return( NULL );
  407. }
  409. if ( Id[ 1 ] > 127 )
  410. {
  411. return( NULL );
  412. }
  414. Root = (struct ASN1objectidentifier_s *) LsapAllocateLsaHeap( sizeof( struct ASN1objectidentifier_s ) );
  416. Tail = (struct ASN1objectidentifier_s *) LsapAllocateLsaHeap( sizeof( struct ASN1objectidentifier_s ) );
  418. if ( !Root || !Tail )
  419. {
  420. if ( Root )
  421. {
  422. LsapFreeLsaHeap( Root );
  423. }
  425. if ( Tail )
  426. {
  427. LsapFreeLsaHeap( Tail );
  428. }
  430. return( NULL );
  431. }
  433. Root->value = (WORD) Id[2] / 40 ;
  435. Tail->value = (WORD) Id[2] % 40 ;
  437. Root->next = Tail ;
  439. i = 3 ;
  441. while ( i < Len )
  442. {
  443. j = 0;
  445. value = Id[ i ] & 0x7F ;
  447. while ( Id[i] & 0x80 )
  448. {
  449. value <<= 7;
  451. i++;
  453. j++;
  455. if ( (i >= Len) || ( j > sizeof( ULONG ) ) )
  456. {
  457. NegpFreeObjectId( Root );
  459. return( NULL );
  460. }
  462. value |= Id[ i ] & 0x7F ;
  463. }
  465. i++;
  467. Current = (struct ASN1objectidentifier_s *) LsapAllocateLsaHeap( sizeof( struct ASN1objectidentifier_s ) );
  469. if ( Current )
  470. {
  471. Current->value = value ;
  472. Current->next = NULL ;
  474. Tail->next = Current ;
  476. Tail = Current ;
  478. }
  479. else
  480. {
  481. NegpFreeObjectId( Root );
  483. return( NULL );
  484. }
  486. }
  488. return( Root );
  490. }
  492. //+---------------------------------------------------------------------------
  493. //
  494. // Function: NegpCompareOid
  495. //
  496. // Synopsis: Standard compare function for OIDs:
  497. //
  498. // Arguments: [A] --
  499. // [B] --
  500. //
  501. // Returns: < 0 if A is "less than" B
  502. // > 0 if A is "greater than" B
  503. // 0 if A equals B
  504. //
  505. // History: 8-22-96 RichardW Created
  506. //
  507. // Notes:
  508. //
  509. //----------------------------------------------------------------------------
  510. int
  511. NegpCompareOid(
  512. ObjectID A,
  513. ObjectID B)
  514. {
  515. while ( A )
  516. {
  517. if ( A->value < B->value )
  518. {
  519. return( -1 );
  520. }
  521. if ( A->value > B->value )
  522. {
  523. return( 1 );
  524. }
  526. A = A->next ;
  528. B = B->next ;
  530. if ( ( A == NULL ) && ( B == NULL ) )
  531. {
  532. return( 0 );
  533. }
  535. if ( !B )
  536. {
  537. return( 1 );
  538. }
  540. if ( !A )
  541. {
  542. return( -1 );
  543. }
  544. }
  546. //
  547. // Never reached
  548. //
  549. return( 0 );
  550. }
  552. //+---------------------------------------------------------------------------
  553. //
  554. // Function: NegpDumpOid
  555. //
  556. // Synopsis: Debug-only dumper
  557. //
  558. // Arguments: [Banner] --
  559. // [Id] --
  560. //
  561. // History: 9-17-96 RichardW Created
  562. //
  563. // Notes:
  564. //
  565. //----------------------------------------------------------------------------
  566. VOID
  567. NegpDumpOid(
  568. PSTR Banner,
  569. ObjectID Id
  570. )
  571. {
  572. CHAR Oid[128];
  573. PSTR Next;
  574. int Count;
  576. Next = Oid;
  578. while ( Id )
  579. {
  580. Count = sprintf(Next, "%d.", Id->value );
  582. Next += Count;
  584. Id = Id->next;
  585. }
  587. DebugLog(( DEB_TRACE_NEG, "%s: %s\n", Banner, Oid ));
  589. }
  592. //+---------------------------------------------------------------------------
  593. //
  594. // Function: NegpBuildMechListFromCreds
  595. //
  596. // Synopsis: Builds a MechList from a credential struct
  597. //
  598. // Arguments: [Creds] -- Creds
  599. // [fPackageReq]
  600. // [MechList] -- Constructed mechlist
  601. //
  602. // History: 9-27-96 RichardW Created
  603. //
  604. // Notes: Returned MechList should be freed in a single call to LsapFreeHeap
  605. //
  606. //----------------------------------------------------------------------------
  607. SECURITY_STATUS
  608. NegpBuildMechListFromCreds(
  609. PNEG_CREDS Creds,
  610. ULONG fPackageReq,
  611. ULONG MechAttributes,
  612. struct MechTypeList ** MechList)
  613. {
  614. struct MechTypeList *pMechs = NULL;
  615. ULONG iCred, iMech = 0 ;
  616. SECURITY_STATUS Status = STATUS_SUCCESS;
  617. PNEG_PACKAGE Package ;
  619. NegReadLockCreds( Creds );
  621. if ( Creds->Count != 0 )
  622. {
  624. pMechs = (struct MechTypeList *) LsapAllocateLsaHeap(
  625. sizeof( struct MechTypeList ) * ( Creds->Count) );
  627. if ( pMechs )
  628. {
  629. for ( iCred = 0 ; iCred < Creds->Count ; iCred++ )
  630. {
  631. Package = Creds->Creds[ iCred ].Package ;
  633. if ( (Package->PackageFlags & fPackageReq) != fPackageReq)
  634. {
  635. continue;
  636. }
  637. pMechs[ iMech ].next = &pMechs[ iMech + 1 ];
  639. pMechs[ iMech ].value = Package->ObjectId ;
  641. iMech++ ;
  643. }
  645. if ( iMech != 0 )
  646. {
  647. pMechs[ iMech - 1 ].next = NULL ;
  648. }
  650. }
  651. else
  652. {
  653. Status = SEC_E_INSUFFICIENT_MEMORY;
  654. }
  655. }
  657. NegUnlockCreds( Creds );
  659. *MechList = pMechs;
  660. return( Status );
  662. }
  665. //+---------------------------------------------------------------------------
  666. //
  667. // Function: NegpCopyObjectId
  668. //
  669. // Synopsis: Duplicates an ObjectId
  670. //
  671. // Arguments: [ObjectId] = Object Id to copy
  672. //
  673. // History: 9-27-96 RichardW Created
  674. //
  675. // Notes: Returned ObjectId should be freed with NegpFreeObjectId
  676. //
  677. //----------------------------------------------------------------------------
  678. ObjectID
  679. NegpCopyObjectId(
  680. IN ObjectID Id
  681. )
  682. {
  683. ObjectID RootId = NULL;
  684. ObjectID NewId = NULL;
  685. ObjectID LastId = NULL;
  686. ObjectID NextId = NULL;
  688. NextId = Id;
  689. while (NextId != NULL)
  690. {
  691. NewId = (struct ASN1objectidentifier_s *) LsapAllocateLsaHeap(sizeof(struct ASN1objectidentifier_s));
  692. if (NewId == NULL)
  693. {
  694. goto Cleanup;
  695. }
  696. NewId->next = NULL;
  697. NewId->value = NextId->value;
  699. if (RootId == NULL)
  700. {
  701. RootId = NewId;
  702. }
  704. if (LastId != NULL)
  705. {
  706. LastId->next = NewId;
  707. }
  708. LastId = NewId;
  709. NextId= NextId->next;
  710. }
  711. return(RootId);
  713. Cleanup:
  714. if (RootId != NULL)
  715. {
  716. NegpFreeObjectId(RootId);
  717. }
  718. return(NULL);
  720. }
  723. //+---------------------------------------------------------------------------
  724. //
  725. // Function: NegpCopyMechList
  726. //
  727. // Synopsis: Duplicates a MechList
  728. //
  729. // Arguments: [Creds] -- Creds
  730. //
  731. // History: 9-27-96 RichardW Created
  732. //
  733. // Notes: Returned MechList should be freed with NegpFreeMechList
  734. //
  735. //----------------------------------------------------------------------------
  736. struct MechTypeList *
  737. NegpCopyMechList(
  738. struct MechTypeList *MechList)
  739. {
  740. struct MechTypeList *pMechs;
  741. struct MechTypeList *NextMech;
  742. ULONG i, Count;
  744. Count = 0;
  745. NextMech = MechList;
  746. while (NextMech != NULL)
  747. {
  748. Count++;
  749. NextMech = NextMech->next;
  750. }
  752. if (Count == 0)
  753. {
  754. return(NULL);
  755. }
  757. pMechs = (struct MechTypeList *) LsapAllocateLsaHeap(
  758. sizeof( struct MechTypeList ) * Count );
  760. if ( pMechs == NULL )
  761. {
  762. goto Cleanup;
  763. }
  765. RtlZeroMemory(
  766. pMechs,
  767. sizeof(struct MechTypeList) * Count
  768. );
  770. i = 0;
  772. NextMech = MechList;
  773. while (NextMech != NULL)
  774. {
  775. pMechs[i].value = NegpCopyObjectId(NextMech->value);
  776. if (pMechs[i].value == NULL)
  777. {
  778. goto Cleanup;
  779. }
  780. pMechs[i].next = NULL;
  781. if (i != 0)
  782. {
  783. pMechs[i-1].next = &pMechs[i];
  784. }
  785. NextMech = NextMech->next;
  786. i++;
  787. }
  789. return( pMechs );
  790. Cleanup:
  791. if (pMechs != NULL)
  792. {
  793. NegpFreeMechList (pMechs);
  794. }
  795. return(NULL);
  797. }
  800. int
  801. Neg_der_read_length(
  802. unsigned char **buf,
  803. LONG *bufsize,
  804. LONG * headersize
  805. )
  806. {
  807. unsigned char sf;
  808. LONG ret;
  810. if (*bufsize < 1)
  811. return(-1);
  812. *headersize = 0;
  813. sf = *(*buf)++;
  814. (*bufsize)--;
  815. (*headersize)++;
  816. if (sf & 0x80) {
  817. if ((sf &= 0x7f) > ((*bufsize)-1))
  818. return(-1);
  819. if (sf > sizeof(LONG))
  820. return (-1);
  821. ret = 0;
  822. for (; sf; sf--) {
  823. ret = (ret<<8) + (*(*buf)++);
  824. (*bufsize)--;
  825. (*headersize)++;
  826. }
  827. } else {
  828. ret = sf;
  829. }
  831. return(ret);
  832. }