archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 7b07a90fc1
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '7b07a90fc1'
${ noResults }
windows-server-2003/ds/security/protocols/kerberos/common2/authen.cxx

526 lines
14 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. //+---------------------------------------------------------------------------
  2. //
  3. // Microsoft Windows
  4. // Copyright (C) Microsoft Corporation, 1992 - 1993.
  5. //
  6. // File: authen.cxx
  7. //
  8. // Contents: Authenticator verification code
  9. //
  10. // Classes: CAuthenticatorList
  11. //
  12. // Functions: Compare, AuthenAllocate, AuthenFree
  13. //
  14. // History: 4-04-93 WadeR Created
  15. //
  16. //----------------------------------------------------------------------------
  18. #include "krbprgma.h"
  19. #include <secpch2.hxx>
  20. #pragma hdrstop
  22. //
  23. // Security include files.
  24. //
  25. #include <kerbcomm.h>
  26. #include <authen.hxx>
  27. extern "C"
  28. {
  29. #include <md5.h>
  30. }
  32. #include "debug.h"
  36. typedef struct _KERB_AUTHEN_HEADER
  37. {
  38. LARGE_INTEGER tsTime;
  39. ULONG Count;
  40. BYTE Checksum[MD5DIGESTLEN];
  41. } KERB_AUTHEN_HEADER, *PKERB_AUTHEN_HEADER;
  43. #define KERB_MAX_AUTHEN_SIZE 1024
  45. //+---------------------------------------------------------------------------
  46. //
  47. // Function: Compare
  48. //
  49. // Synopsis: Compares two KerbInternalAuthenticators for RTL_GENERIC_TABLE
  50. //
  51. // Effects: none.
  52. //
  53. // Arguments: [Table] -- ignored
  54. // [FirstStruct] --
  55. // [SecondStruct] --
  56. //
  57. // Returns: GenericEqual, GenericLessThan, GenericGreaterThan.
  58. //
  59. // Algorithm: Sorts by TimeStamp first, than nonce, then principal, and
  60. // finally by realm
  61. //
  62. // History: 4-04-93 WadeR Created
  63. //
  64. // Notes: This must impose a complete ordering. The table package
  65. // will not allow an authenticator to be inserted in the table
  66. // if it is equal (according to this function) to one already
  67. // there.
  68. //
  69. //----------------------------------------------------------------------------
  71. RTL_GENERIC_COMPARE_RESULTS
  72. Compare(
  73. IN struct _RTL_GENERIC_TABLE *Table,
  74. IN PVOID FirstStruct,
  75. IN PVOID SecondStruct
  76. )
  77. {
  78. PKERB_AUTHEN_HEADER pOne, pTwo;
  79. RTL_GENERIC_COMPARE_RESULTS ret;
  80. int comp;
  81. pOne = (PKERB_AUTHEN_HEADER) FirstStruct ;
  82. pTwo = (PKERB_AUTHEN_HEADER) SecondStruct ;
  84. DsysAssert( (pOne != NULL) && (pTwo != NULL) );
  87. comp = memcmp( pOne->Checksum,
  88. pTwo->Checksum,
  89. MD5DIGESTLEN );
  90. if (comp > 0)
  91. {
  92. ret = GenericGreaterThan;
  93. }
  94. else if (comp < 0)
  95. {
  96. ret = GenericLessThan;
  97. }
  98. else
  99. {
  100. ret = GenericEqual;
  101. }
  103. return(ret);
  104. }
  107. //+---------------------------------------------------------------------------
  108. //
  109. // Function: AuthenAllocate
  110. //
  111. // Synopsis: Memory allocator for RTL_GENERIC_TABLE
  112. //
  113. // Effects: Allcoates memory.
  114. //
  115. // Arguments: [Table] -- ignored
  116. // [ByteSize] -- number of bytes to allocate
  117. //
  118. // Signals: Throws exception on failure.
  119. //
  120. // History: 4-04-93 WadeR Created
  121. //
  122. // Notes:
  123. //
  124. //----------------------------------------------------------------------------
  126. PVOID
  127. AuthenAllocate( struct _RTL_GENERIC_TABLE *Table, CLONG ByteSize )
  128. {
  129. return(MIDL_user_allocate ( ByteSize ) );
  130. }
  134. //+---------------------------------------------------------------------------
  135. //
  136. // Function: AuthenFree
  137. //
  138. // Synopsis: Memory deallacotor for the RTL_GENERIC_TABLE.
  139. //
  140. // Effects: frees memory.
  141. //
  142. // Arguments: [Table] -- ingnored
  143. // [Buffer] -- buffer to free
  144. //
  145. // History: 4-04-93 WadeR Created
  146. //
  147. // Notes:
  148. //
  149. //----------------------------------------------------------------------------
  151. VOID
  152. AuthenFree( struct _RTL_GENERIC_TABLE *Table, PVOID Buffer )
  153. {
  154. MIDL_user_free ( Buffer );
  155. }
  159. //+---------------------------------------------------------------------------
  160. //
  161. // Member: CAuthenticatorList::CAuthenticatorList
  162. //
  163. // Synopsis: Initializes the authenticator list.
  164. //
  165. // Effects: Calls RtlInitializeGenericTable (does not allocate memory).
  166. //
  167. // Arguments: [tsMax] -- Maximum acceptable age for an authenticator.
  168. //
  169. // History: 4-04-93 WadeR Created
  170. //
  171. // Notes:
  172. //
  173. //----------------------------------------------------------------------------
  175. CAuthenticatorList::CAuthenticatorList(LARGE_INTEGER tsMax, ULONG maxCount, BOOLEAN debugme)
  176. :_tsMaxAge(tsMax), _uMaxCount(maxCount), _fDebug(debugme)
  177. {
  178. _fMutexInitialized = FALSE;
  179. RtlInitializeGenericTable( &_Table, Compare, AuthenAllocate, AuthenFree, NULL );
  180. }
  183. //+---------------------------------------------------------------------------
  184. //
  185. // Member: CAuthenticatorList::~CAuthenticatorList
  186. //
  187. // Synopsis: Destructor removes all authenticators in the list.
  188. //
  189. // Effects: Frees memory
  190. //
  191. // Arguments: (none)
  192. //
  193. // Algorithm: Uses "Age" to remove everything.
  194. //
  195. // History: 4-04-93 WadeR Created
  196. //
  197. // Notes:
  198. //
  199. //----------------------------------------------------------------------------
  201. CAuthenticatorList::~CAuthenticatorList()
  202. {
  203. LARGE_INTEGER tsForever;
  204. LARGE_INTEGER tsZero = {0};
  205. SetMaxTimeStamp( tsForever );
  206. (void) Age( tsForever, tsZero );
  207. DsysAssert( RtlIsGenericTableEmpty( &_Table ) );
  209. if (_fMutexInitialized)
  210. {
  211. RtlDeleteCriticalSection(&_Mutex);
  212. }
  213. }
  216. //+---------------------------------------------------------------------------
  217. //
  218. // Member: CAuthenticatorList::Init
  219. //
  220. // Synopsis: Can't return values from a C++ destructor -- initialization
  221. // that can fail should go here
  222. //
  223. // Effects:
  224. //
  225. // Arguments:
  226. //
  227. // Algorithm:
  228. //
  229. // History: 5-24-94 WadeR Created
  230. //
  231. // Notes:
  232. //
  233. //----------------------------------------------------------------------------
  235. NTSTATUS
  236. CAuthenticatorList::Init()
  237. {
  238. NTSTATUS Status;
  240. Status = RtlInitializeCriticalSection(&_Mutex);
  242. if (NT_SUCCESS(Status))
  243. {
  244. _fMutexInitialized = TRUE;
  245. }
  247. return Status;
  248. }
  251. //+---------------------------------------------------------------------------
  252. //
  253. // Member: CAuthenticatorList::SetMaxAge
  254. //
  255. // Synopsis: Changes the new maximum age for an Authenticator.
  256. //
  257. // Effects: May cause some authenticators to be aged out.
  258. //
  259. // Arguments: [tsNewMaxAge] --
  260. //
  261. // Algorithm:
  262. //
  263. // History: 24-May-94 wader Created
  264. //
  265. // Notes:
  266. //
  267. //----------------------------------------------------------------------------
  269. void
  270. CAuthenticatorList::SetMaxAge( LARGE_INTEGER tsNewMaxAge )
  271. {
  272. LARGE_INTEGER tsNow;
  273. LARGE_INTEGER tsCutoffPast, tsCutoffFuture;
  275. _tsMaxAge = tsNewMaxAge;
  277. GetSystemTimeAsFileTime((PFILETIME) &tsNow );
  279. tsCutoffPast.QuadPart = tsNow.QuadPart - _tsMaxAge.QuadPart;
  280. tsCutoffFuture.QuadPart = tsNow.QuadPart + _tsMaxAge.QuadPart;
  282. (void) Age( tsCutoffPast, tsCutoffFuture );
  283. }
  287. //+---------------------------------------------------------------------------
  288. //
  289. // Member: CAuthenticatorList::Age
  290. //
  291. // Synopsis: Deletes all entries from the table that are earlier than
  292. // the given time.
  293. //
  294. // Effects: Frees memory
  295. //
  296. // Arguments: [tsCutoffTime] -- Delete all elements before this time.
  297. //
  298. // Returns: number of elements deleted.
  299. //
  300. // Algorithm: Get the oldest element in the table. If it is older than
  301. // the time, delete it and loop back. Else return.
  302. //
  303. // History: 4-04-93 WadeR Created
  304. //
  305. // Notes: The table contains the packed forms of Authenticators (as
  306. // created by PackAuthenticator in Kerbsupp). The TimeStamp
  307. // must be first.
  308. //
  309. //----------------------------------------------------------------------------
  311. ULONG
  312. CAuthenticatorList::Age(const LARGE_INTEGER& tsCutoffPast, const LARGE_INTEGER& tsCutoffFuture)
  313. {
  314. PKERB_AUTHEN_HEADER pahOldest;
  316. BOOL fDeleted;
  317. ULONG cDeleted = 0;
  319. do
  320. {
  321. // Number 0 is the oldest element in the table.
  322. pahOldest = (PKERB_AUTHEN_HEADER) RtlGetElementGenericTable( &_Table, 0 );
  323. if ((pahOldest != NULL) &&
  324. ((pahOldest->tsTime.QuadPart < tsCutoffPast.QuadPart) ||
  325. (pahOldest->tsTime.QuadPart > tsCutoffFuture.QuadPart))) // Bug # - clean up entires after clock reset
  326. {
  327. fDeleted = RtlDeleteElementGenericTable( &_Table, pahOldest );
  328. DsysAssert( fDeleted );
  329. cDeleted++;
  330. }
  331. else
  332. {
  333. fDeleted = FALSE;
  334. }
  335. } while ( fDeleted );
  336. return(cDeleted);
  337. }
  339. //+---------------------------------------------------------------------------
  340. //
  341. // Member: CAuthenticatorList::Check
  342. //
  343. // Synopsis: Determines if an authenticator is valid. This check always
  344. // checks for time skew and optionally checks for repeats. This is necessary
  345. // since we check for repeats on AP requests but not TGS requests.
  346. //
  347. // Effects: Allocates memory
  348. //
  349. // Arguments: [pedAuth] -- Authenticator to check (decrypted, but marshalled)
  350. //
  351. // Returns: KDC_ERR_NONE if authenticator is OK.
  352. // KRB_AP_ERR_SKEW if authenticator is expired (assumes clock skew).
  353. // KRB_AP_ERR_REPEAT if authenticator has been used already.
  354. // some other error if something throws an exception.
  355. //
  356. // Signals: none.
  357. //
  358. // Modifies: _Table
  359. //
  360. // History: 4-04-93 WadeR Created
  361. //
  362. // Notes:
  363. //
  364. //----------------------------------------------------------------------------
  366. KERBERR
  367. CAuthenticatorList::Check(
  368. IN PVOID Buffer,
  369. IN ULONG BufferLength,
  370. IN OPTIONAL PVOID OptionalBuffer,
  371. IN OPTIONAL ULONG OptionalBufferLength,
  372. IN PLARGE_INTEGER Time,
  373. IN BOOLEAN Insert,
  374. IN BOOLEAN PurgeEntry,
  375. IN BOOLEAN fCheckReplay
  376. )
  377. {
  378. PKERB_AUTHEN_HEADER pDataInTable = NULL;
  379. KERBERR KerbErr = KDC_ERR_NONE;
  381. LARGE_INTEGER tsNow;
  382. LARGE_INTEGER tsCutoffPast;
  383. LARGE_INTEGER tsCutoffFuture;
  385. //
  386. // Determine the cut off time.
  387. //
  389. GetSystemTimeAsFileTime((PFILETIME) &tsNow );
  391. tsCutoffPast.QuadPart = tsNow.QuadPart - _tsMaxAge.QuadPart;
  392. tsCutoffFuture.QuadPart = tsNow.QuadPart + _tsMaxAge.QuadPart;
  394. if ((Time->QuadPart < tsCutoffPast.QuadPart) ||
  395. (Time->QuadPart > tsCutoffFuture.QuadPart))
  396. {
  397. KerbErr = KRB_AP_ERR_SKEW;
  398. }
  400. //
  401. // Hold the mutex until we have finished the insert and the Age
  402. // operations.
  403. //
  405. if (fCheckReplay)
  406. {
  407. RtlEnterCriticalSection(&_Mutex);
  409. __try
  410. {
  411. // Age out the old ones.
  412. (void) Age( tsCutoffPast, tsCutoffFuture );
  414. BOOLEAN fIsNew;
  415. KERB_AUTHEN_HEADER Header;
  416. MD5_CTX Md5Context;
  418. //
  419. // Store the first chunk of the authenticator. If the authenticator
  420. // doesn't fit on the stack, allocate some space on the heap.
  421. //
  423. Header.tsTime = *Time;
  424. MD5Init(
  425. &Md5Context
  426. );
  428. MD5Update(
  429. &Md5Context,
  430. (PBYTE) Buffer,
  431. BufferLength
  432. );
  434. if ((OptionalBuffer != NULL) && (OptionalBufferLength != 0))
  435. {
  436. MD5Update(
  437. &Md5Context,
  438. (PBYTE) OptionalBuffer,
  439. OptionalBufferLength
  440. );
  441. }
  443. MD5Final(
  444. &Md5Context
  445. );
  447. RtlCopyMemory(
  448. Header.Checksum,
  449. Md5Context.digest,
  450. MD5DIGESTLEN
  451. );
  453. if (Insert)
  454. {
  455. pDataInTable = (PKERB_AUTHEN_HEADER) RtlInsertElementGenericTable(
  456. &_Table,
  457. &Header,
  458. sizeof( KERB_AUTHEN_HEADER ),
  459. &fIsNew
  460. );
  462. if ( pDataInTable == NULL )
  463. {
  464. KerbErr = KRB_ERR_GENERIC;
  465. __leave;
  466. }
  468. if ( fIsNew )
  469. {
  470. pDataInTable->Count = 1;
  471. if (_fDebug)
  472. {
  473. D_DebugLog((DEB_ERROR, "NEW cache entry\n"));
  474. }
  475. }
  476. else if ( ++(pDataInTable->Count) >= _uMaxCount )
  477. {
  478. KerbErr = KRB_AP_ERR_REPEAT;
  479. if (_fDebug)
  480. {
  481. D_DebugLog((DEB_ERROR, "Repeat <on insert>\n"));
  482. }
  483. }
  484. }
  485. else
  486. {
  487. pDataInTable = (PKERB_AUTHEN_HEADER)RtlLookupElementGenericTable(
  488. &_Table,
  489. &Header
  490. );
  492. if (NULL != pDataInTable)
  493. {
  494. if (PurgeEntry)
  495. {
  496. BOOLEAN fCompleted = FALSE;
  497. fCompleted = RtlDeleteElementGenericTable(&_Table, pDataInTable);
  498. DsysAssert(fCompleted);
  499. if (_fDebug)
  500. {
  501. D_DebugLog((DEB_ERROR, "Purged cache entry\n"));
  502. }
  504. }
  505. else if (pDataInTable->Count >= _uMaxCount)
  506. {
  507. KerbErr = KRB_AP_ERR_REPEAT;
  508. if (_fDebug)
  509. {
  510. D_DebugLog((DEB_ERROR, "Repeat detected \n"));
  511. }
  512. }
  513. }
  514. }
  515. }
  516. __except(EXCEPTION_EXECUTE_HANDLER)
  517. {
  518. KerbErr = KRB_ERR_GENERIC;
  519. }
  521. RtlLeaveCriticalSection(&_Mutex);
  522. }
  524. return(KerbErr);
  525. }