archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 7b07a90fc1
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '7b07a90fc1'
${ noResults }
windows-server-2003/ds/security/csps/pincache/pincache.c

413 lines
12 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. /*++
  3. Copyright (C) Microsoft Corporation, 2001
  5. Module Name:
  7. pincache.c
  9. Abstract:
  11. Pin Caching Library for Smart Card CSP's
  13. Author:
  15. Dan Griffin
  17. --*/
  19. #include <windows.h>
  20. #include "pincache.h"
  22. #if defined(DBG) || defined(DEBUG)
  23. #define DebugPrint(a) (OutputDebugString(a))
  25. #if TEST_DEBUG
  26. #include <stdio.h>
  28. #define CROW 8
  29. void PCPrintBytes(LPSTR pszHdr, BYTE *pb, DWORD cbSize)
  30. {
  31. ULONG cb, i;
  32. CHAR rgsz[1024];
  34. sprintf(rgsz, "\n %s, %d bytes ::\n", pszHdr, cbSize);
  35. DebugPrint(rgsz);
  37. while (cbSize > 0)
  38. {
  39. // Start every row with an extra space
  40. DebugPrint(" ");
  42. cb = min(CROW, cbSize);
  43. cbSize -= cb;
  44. for (i = 0; i < cb; i++)
  45. sprintf(rgsz + (3*i), " %02x", pb[i]);
  46. DebugPrint(rgsz);
  47. for (i = cb; i < CROW; i++)
  48. DebugPrint(" ");
  49. DebugPrint(" '");
  50. for (i = 0; i < cb; i++)
  51. {
  52. if (pb[i] >= 0x20 && pb[i] <= 0x7f)
  53. sprintf(rgsz+i, "%c", pb[i]);
  54. else
  55. sprintf(rgsz+i, ".");
  56. }
  57. sprintf(rgsz+i, "\n");
  58. DebugPrint(rgsz);
  59. pb += cb;
  60. }
  61. }
  63. BOOL MyGetTokenInformation(
  64. HANDLE TokenHandle,
  65. TOKEN_INFORMATION_CLASS TokenInformationClass,
  66. LPVOID TokenInformation,
  67. DWORD TokenInformationLength,
  68. PDWORD ReturnLength);
  70. #define GetTokenInformation(A, B, C, D, E) MyGetTokenInformation(A, B, C, D, E)
  71. #define TestDebugPrint(a) (OutputDebugString(a))
  72. #else
  73. #define TestDebugPrint(a)
  74. #endif // TEST_DEBUG
  76. #else
  77. #define DebugPrint(a)
  78. #define TestDebugPrint(a)
  79. #endif // DBG || DEBUG
  81. typedef struct _PINCACHEITEM
  82. {
  83. LUID luid;
  84. PBYTE pbPin;
  85. DWORD cbPin;
  86. DWORD dwBadTries;
  87. } PINCACHEITEM, *PPINCACHEITEM;
  89. #define CacheAlloc(X) (HeapAlloc(GetProcessHeap(), HEAP_ZERO_MEMORY, X))
  90. #define CacheFree(X) (HeapFree(GetProcessHeap(), 0, X))
  92. #define INIT_PIN_ATTACK_SLEEP 6000 // milliseconds
  93. #define MAX_PIN_ATTACK_SLEEP 24000 // milliseconds
  94. #define MAX_FREE_BAD_TRIES 3
  96. /**
  97. * Function: PinCacheFlush
  98. */
  99. void WINAPI PinCacheFlush(
  100. IN OUT PINCACHE_HANDLE *phCache)
  101. {
  102. PPINCACHEITEM pCache = (PPINCACHEITEM) *phCache;
  104. if (NULL == pCache)
  105. return;
  107. TestDebugPrint(("PinCacheFlush: deleting cache\n"));
  109. ZeroMemory(pCache->pbPin, pCache->cbPin);
  110. ZeroMemory(pCache, sizeof(PINCACHEITEM));
  112. CacheFree(pCache->pbPin);
  113. CacheFree(pCache);
  115. *phCache = NULL;
  116. }
  118. /**
  119. * Function: PinCacheAdd
  120. */
  121. DWORD WINAPI PinCacheAdd(
  122. IN PINCACHE_HANDLE *phCache,
  123. IN PPINCACHE_PINS pPins,
  124. IN PFN_VERIFYPIN_CALLBACK pfnVerifyPinCallback,
  125. IN PVOID pvCallbackCtx)
  126. {
  127. HANDLE hThreadToken = 0;
  128. TOKEN_STATISTICS stats;
  129. DWORD dwError = ERROR_SUCCESS;
  130. DWORD cb = 0;
  131. PPINCACHEITEM pCache = (PPINCACHEITEM) *phCache;
  132. DWORD cbPinToCache = 0;
  133. PBYTE pbPinToCache = NULL;
  134. BOOL fRefreshPin = FALSE;
  135. DWORD dwSleep = 0;
  137. if (NULL != pCache &&
  138. (pPins->cbCurrentPin != pCache->cbPin ||
  139. 0 != memcmp(pCache->pbPin, pPins->pbCurrentPin, pCache->cbPin)))
  140. {
  142. // The caller hasn't supplied the correct Pin, according to the current
  143. // cache state. Perhaps the user accidently typed the wrong pin, in which
  144. // case the caller's logon LUID should be the same as the cached LUID.
  145. // If the LUID's don't match, this could still be an attack or a legitimate
  146. // attempt from a different logon with a mis-typed pin.
  148. if (! OpenThreadToken(GetCurrentThread(), TOKEN_QUERY, TRUE, &hThreadToken))
  149. {
  150. if (! OpenProcessToken(GetCurrentProcess(), TOKEN_QUERY, &hThreadToken))
  151. {
  152. dwError = GetLastError();
  153. goto Ret;
  154. }
  155. }
  157. if (! GetTokenInformation(
  158. hThreadToken, TokenStatistics, &stats, sizeof(stats), &cb))
  159. {
  160. dwError = GetLastError();
  161. goto Ret;
  162. }
  165. if (0 != memcmp(&stats.AuthenticationId, &pCache->luid, sizeof(LUID)) &&
  166. ++pCache->dwBadTries > MAX_FREE_BAD_TRIES)
  167. {
  168. // Current caller is a different luid from the cached one,
  169. // and it's happened a few times already, so this call is suspicious.
  170. // Start delaying.
  172. DebugPrint(("PinCacheAdd: error - calling SleepEx(). Currently cached pin doesn't match\n"));
  174. dwSleep = pCache->dwBadTries * INIT_PIN_ATTACK_SLEEP;
  176. if (MAX_PIN_ATTACK_SLEEP < dwSleep)
  177. dwSleep = MAX_PIN_ATTACK_SLEEP;
  179. SleepEx(dwSleep, FALSE);
  180. }
  182. dwError = SCARD_W_WRONG_CHV;
  183. goto Ret;
  184. }
  185. else if (NULL != pCache && 0 != pCache->dwBadTries)
  186. {
  187. pCache->dwBadTries = 0;
  188. }
  190. if (pPins->pbNewPin)
  191. {
  192. fRefreshPin = TRUE;
  193. cbPinToCache = pPins->cbNewPin;
  194. pbPinToCache = pPins->pbNewPin;
  195. }
  196. else
  197. {
  198. cbPinToCache = pPins->cbCurrentPin;
  199. pbPinToCache = pPins->pbCurrentPin;
  200. }
  202. if (fRefreshPin || NULL == pCache)
  203. {
  204. // Check the pin
  205. if (ERROR_SUCCESS != (dwError =
  206. pfnVerifyPinCallback(pPins, pvCallbackCtx)))
  207. {
  208. TestDebugPrint(("PinCacheAdd: pfnVerifyPinCallback failed\n"));
  209. return dwError;
  210. }
  211. }
  213. if (! OpenThreadToken(GetCurrentThread(), TOKEN_QUERY, TRUE, &hThreadToken))
  214. {
  215. if (! OpenProcessToken(GetCurrentProcess(), TOKEN_QUERY, &hThreadToken))
  216. {
  217. TestDebugPrint(("PinCacheAdd: failed to open thread or process token\n"));
  218. dwError = GetLastError();
  219. goto Ret;
  220. }
  221. }
  223. if (! GetTokenInformation(
  224. hThreadToken, TokenStatistics, &stats, sizeof(stats), &cb))
  225. {
  226. TestDebugPrint(("PinCacheAdd: GetTokenInformation failed\n"));
  227. dwError = GetLastError();
  228. goto Ret;
  229. }
  231. #if TEST_DEBUG
  232. PCPrintBytes("PinCache LUID", (PBYTE) &stats.AuthenticationId, sizeof(LUID));
  233. #endif
  235. // Now the current ID is in stats.AuthenticationId
  237. if (NULL == pCache)
  238. {
  239. TestDebugPrint(("PinCacheAdd: initializing new cache\n"));
  241. // Initialize new cache
  242. if (NULL == (pCache = (PPINCACHEITEM) CacheAlloc(sizeof(PINCACHEITEM))))
  243. {
  244. dwError = ERROR_NOT_ENOUGH_MEMORY;
  245. goto Ret;
  246. }
  248. CopyMemory(&pCache->luid, &stats.AuthenticationId, sizeof(LUID));
  249. *phCache = (PINCACHE_HANDLE) pCache;
  250. fRefreshPin = TRUE;
  251. }
  252. else
  253. {
  254. // Compare ID's
  255. if (0 != memcmp(&stats.AuthenticationId, &pCache->luid, sizeof(LUID)))
  256. {
  257. // PIN's are the same, so cache the new ID
  258. TestDebugPrint(("PinCacheAdd: same Pin, different Logon as cached values\n"));
  259. CopyMemory(&pCache->luid, &stats.AuthenticationId, sizeof(LUID));
  260. }
  261. }
  263. if (fRefreshPin)
  264. {
  265. if (pCache->pbPin)
  266. CacheFree(pCache->pbPin);
  268. pCache->cbPin = cbPinToCache;
  269. if (NULL == (pCache->pbPin = (PBYTE) CacheAlloc(cbPinToCache)))
  270. {
  271. dwError = ERROR_NOT_ENOUGH_MEMORY;
  272. goto Ret;
  273. }
  274. CopyMemory(pCache->pbPin, pbPinToCache, cbPinToCache);
  275. }
  277. Ret:
  278. if (hThreadToken)
  279. CloseHandle(hThreadToken);
  281. return dwError;
  282. }
  284. /**
  285. * Function: PinCacheQuery
  286. */
  287. DWORD WINAPI PinCacheQuery(
  288. IN PINCACHE_HANDLE hCache,
  289. IN OUT PBYTE pbPin,
  290. IN OUT PDWORD pcbPin)
  291. {
  292. HANDLE hThreadToken = 0;
  293. TOKEN_STATISTICS stats;
  294. DWORD dwError = ERROR_SUCCESS;
  295. DWORD cb = 0;
  296. PPINCACHEITEM pCache = (PPINCACHEITEM) hCache;
  298. if (NULL == pCache)
  299. {
  300. *pcbPin = 0;
  301. return ERROR_EMPTY;
  302. }
  304. if (! OpenThreadToken(GetCurrentThread(), TOKEN_QUERY, TRUE, &hThreadToken))
  305. {
  306. if (! OpenProcessToken(GetCurrentProcess(), TOKEN_QUERY, &hThreadToken))
  307. {
  308. TestDebugPrint(("PinCacheQuery: failed to open thread or process token\n"));
  309. dwError = GetLastError();
  310. goto Ret;
  311. }
  312. }
  314. if (! GetTokenInformation(
  315. hThreadToken, TokenStatistics, &stats, sizeof(stats), &cb))
  316. {
  317. TestDebugPrint(("PinCacheQuery: GetTokenInformation failed\n"));
  318. dwError = GetLastError();
  319. goto Ret;
  320. }
  322. // Now the current ID is in stats.AuthenticationId
  324. if (0 != memcmp(&stats.AuthenticationId, &pCache->luid, sizeof(LUID)))
  325. {
  326. // ID's are different, so ignore cache
  327. TestDebugPrint(("PinCacheQuery: different Logon from cached value\n"));
  328. *pcbPin = 0;
  329. goto Ret;
  330. }
  332. // ID's are the same, so return cached PIN
  333. TestDebugPrint(("PinCacheQuery: same Logon as cached value\n"));
  335. if (NULL != pbPin)
  336. {
  337. if (*pcbPin >= pCache->cbPin)
  338. CopyMemory(pbPin, pCache->pbPin, pCache->cbPin);
  339. else
  340. dwError = ERROR_MORE_DATA;
  341. }
  343. *pcbPin = pCache->cbPin;
  345. Ret:
  346. if (hThreadToken)
  347. CloseHandle(hThreadToken);
  349. return dwError;
  350. }
  352. /**
  353. * Function: PinCachePresentPin
  354. */
  355. DWORD WINAPI PinCachePresentPin(
  356. IN PINCACHE_HANDLE hCache,
  357. IN PFN_VERIFYPIN_CALLBACK pfnVerifyPinCallback,
  358. IN PVOID pvCallbackCtx)
  359. {
  360. HANDLE hThreadToken = 0;
  361. TOKEN_STATISTICS stats;
  362. DWORD cb = 0;
  363. DWORD dwError = ERROR_SUCCESS;
  364. PPINCACHEITEM pCache = (PPINCACHEITEM) hCache;
  365. PINCACHE_PINS Pins;
  367. if (NULL == pCache)
  368. return ERROR_EMPTY;
  370. if (! OpenThreadToken(GetCurrentThread(), TOKEN_QUERY, TRUE, &hThreadToken))
  371. {
  372. if (! OpenProcessToken(GetCurrentProcess(), TOKEN_QUERY, &hThreadToken))
  373. {
  374. TestDebugPrint(("PinCachePresentPin: failed to open thread or process token\n"));
  375. dwError = GetLastError();
  376. goto Ret;
  377. }
  378. }
  380. if (! GetTokenInformation(
  381. hThreadToken, TokenStatistics, &stats, sizeof(stats), &cb))
  382. {
  383. TestDebugPrint(("PinCachePresentPin: GetTokenInformation failed\n"));
  384. dwError = GetLastError();
  385. goto Ret;
  386. }
  388. // Now the current ID is in stats.AuthenticationId
  390. if (0 != memcmp(&stats.AuthenticationId, &pCache->luid, sizeof(LUID)))
  391. {
  392. // ID's are different, so ignore cache
  393. TestDebugPrint(("PinCachePresentPin: different Logon from cached value\n"));
  394. dwError = SCARD_W_CARD_NOT_AUTHENTICATED;
  395. goto Ret;
  396. }
  398. // ID's are the same, so return cached PIN
  399. TestDebugPrint(("PinCachePresentPin: same Logon as cached value\n"));
  401. Pins.cbCurrentPin = pCache->cbPin;
  402. Pins.pbCurrentPin = pCache->pbPin;
  403. Pins.cbNewPin = 0;
  404. Pins.pbNewPin = NULL;
  406. dwError = (*pfnVerifyPinCallback)(&Pins, pvCallbackCtx);
  408. Ret:
  409. if (hThreadToken)
  410. CloseHandle(hThreadToken);
  412. return dwError;
  413. }