archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2 Commits
1 Branch
0 Tags
3.3 GiB
Tree: 7b07a90fc1
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '7b07a90fc1'
${ noResults }
windows-server-2003/ds/security/protocols/schannel/lsa/userctxt.c

374 lines
8.5 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. //+---------------------------------------------------------------------------
  2. //
  3. // Microsoft Windows
  4. // Copyright (C) Microsoft Corporation, 1992 - 1995.
  5. //
  6. // File: userctxt.c
  7. //
  8. // Contents:
  9. //
  10. // Classes:
  11. //
  12. // Functions:
  13. //
  14. // History: 10-10-96 RichardW Created
  15. //
  16. //----------------------------------------------------------------------------
  18. #include "sslp.h"
  20. #define SCHANNEL_USERLIST_COUNT (16) // count of lists
  21. #define SCHANNEL_USERLIST_LOCK_COUNT (2) // count of locks
  23. RTL_RESOURCE SslContextLock[ SCHANNEL_USERLIST_LOCK_COUNT ];
  24. LIST_ENTRY SslContextList[ SCHANNEL_USERLIST_COUNT ] ;
  26. ULONG
  27. HandleToListIndex(
  28. ULONG_PTR ContextHandle
  29. );
  31. ULONG
  32. __inline
  33. ListIndexToLockIndex(
  34. ULONG ListIndex
  35. );
  39. //+---------------------------------------------------------------------------
  40. //
  41. // Function: SslInitContextManager
  42. //
  43. // Synopsis: Initializes the context manager controls
  44. //
  45. // History: 10-10-96 RichardW Created
  46. //
  47. // Notes:
  48. //
  49. //----------------------------------------------------------------------------
  50. BOOL
  51. SslInitContextManager(
  52. VOID
  53. )
  54. {
  55. ULONG Index;
  56. NTSTATUS Status = STATUS_SUCCESS;
  58. for( Index=0 ; Index < SCHANNEL_USERLIST_LOCK_COUNT ; Index++ )
  59. {
  60. __try {
  61. RtlInitializeResource (&SslContextLock[Index]);
  62. } __except(EXCEPTION_EXECUTE_HANDLER)
  63. {
  64. Status = STATUS_INSUFFICIENT_RESOURCES;
  65. break;
  66. }
  67. }
  69. if( !NT_SUCCESS(Status) )
  70. {
  71. DebugLog(( DEB_ERROR, "SslInitContextManager failed!\n" ));
  72. return FALSE;
  73. }
  75. for( Index = 0 ; Index < SCHANNEL_USERLIST_COUNT ; Index++ )
  76. {
  77. InitializeListHead( &SslContextList[Index] );
  78. }
  80. return( TRUE );
  81. }
  83. #if 0
  84. VOID
  85. SslFreeUserContextElements(PSPContext pContext)
  86. {
  87. if(pContext->hReadKey)
  88. {
  89. if(!CryptDestroyKey(pContext->hReadKey))
  90. {
  91. SP_LOG_RESULT(GetLastError());
  92. }
  93. }
  94. pContext->hReadKey = 0;
  96. if(pContext->hReadMAC)
  97. {
  98. if(!CryptDestroyKey(pContext->hReadMAC))
  99. {
  100. SP_LOG_RESULT(GetLastError());
  101. }
  102. }
  103. pContext->hReadMAC = 0;
  105. if(pContext->hWriteKey)
  106. {
  107. if(!CryptDestroyKey(pContext->hWriteKey))
  108. {
  109. SP_LOG_RESULT(GetLastError());
  110. }
  111. }
  112. pContext->hWriteKey = 0;
  114. if(pContext->hWriteMAC)
  115. {
  116. if(!CryptDestroyKey(pContext->hWriteMAC))
  117. {
  118. SP_LOG_RESULT(GetLastError());
  119. }
  120. }
  121. pContext->hWriteMAC = 0;
  122. }
  123. #endif
  125. SECURITY_STATUS
  126. SslAddUserContext(
  127. IN LSA_SEC_HANDLE LsaHandle,
  128. IN HANDLE Token, // optional
  129. IN PSecBuffer ContextData,
  130. IN BOOL fImportedContext)
  131. {
  132. PSSL_USER_CONTEXT Context ;
  133. SP_STATUS Status ;
  134. ULONG ListIndex;
  135. ULONG LockIndex;
  137. DebugLog(( DEB_TRACE, "SslAddUserContext: 0x%p\n", LsaHandle ));
  139. if ( ContextData->cbBuffer < sizeof( SPPackedContext ) )
  140. {
  141. return( SEC_E_INVALID_TOKEN );
  142. }
  144. if(!fImportedContext)
  145. {
  146. Context = SslFindUserContext( LsaHandle );
  148. if ( Context )
  149. {
  150. DebugLog(( DEB_TRACE, "Replacing existing context!\n" ));
  152. // Destroy elements of existing context.
  153. LsaContextDelete(Context->pContext);
  154. SPExternalFree(Context->pContext);
  155. Context->pContext = NULL;
  157. Status = SPContextDeserialize( ContextData->pvBuffer,
  158. &Context->pContext);
  160. if(Status != PCT_ERR_OK)
  161. {
  162. return SP_LOG_RESULT(SEC_E_DECRYPT_FAILURE);
  163. }
  165. return( SEC_E_OK );
  166. }
  167. }
  169. Context = LocalAlloc( LMEM_FIXED | LMEM_ZEROINIT,
  170. sizeof( SSL_USER_CONTEXT ));
  172. if ( !Context )
  173. {
  174. return( SEC_E_INSUFFICIENT_MEMORY );
  175. }
  177. Status = SPContextDeserialize( ContextData->pvBuffer,
  178. &Context->pContext);
  180. if(Status != PCT_ERR_OK)
  181. {
  182. LocalFree(Context);
  183. return SP_LOG_RESULT(SEC_E_DECRYPT_FAILURE);
  184. }
  186. if(ARGUMENT_PRESENT(Token))
  187. {
  188. Context->pContext->RipeZombie->hLocator = (HLOCATOR)Token;
  189. }
  191. Context->LsaHandle = LsaHandle ;
  192. Context->Align = ContextData->cbBuffer ;
  194. ListIndex = HandleToListIndex( LsaHandle );
  195. LockIndex = ListIndexToLockIndex( ListIndex );
  197. RtlAcquireResourceExclusive( &SslContextLock[LockIndex], TRUE );
  199. InsertTailList( &SslContextList[ListIndex], &Context->List );
  201. RtlReleaseResource( &SslContextLock[LockIndex] );
  203. return( SEC_E_OK );
  204. }
  206. PSSL_USER_CONTEXT
  207. SslReferenceUserContext(
  208. IN LSA_SEC_HANDLE LsaHandle,
  209. IN BOOLEAN Delete
  210. )
  211. {
  212. PLIST_ENTRY List ;
  213. PSSL_USER_CONTEXT Context = NULL ;
  214. ULONG ListIndex;
  215. ULONG LockIndex;
  217. ListIndex = HandleToListIndex( LsaHandle );
  218. LockIndex = ListIndexToLockIndex( ListIndex );
  220. if( !Delete )
  221. {
  222. RtlAcquireResourceShared( &SslContextLock[LockIndex], TRUE );
  223. } else {
  224. RtlAcquireResourceExclusive( &SslContextLock[LockIndex], TRUE );
  225. }
  227. List = SslContextList[ListIndex].Flink ;
  229. while ( List != &SslContextList[ListIndex] )
  230. {
  231. Context = CONTAINING_RECORD( List, SSL_USER_CONTEXT, List.Flink );
  233. if ( Context->LsaHandle == LsaHandle )
  234. {
  235. if( Delete )
  236. {
  237. RemoveEntryList( &Context->List );
  238. }
  240. break;
  241. }
  243. Context = NULL ;
  245. List = List->Flink ;
  246. }
  248. RtlReleaseResource( &SslContextLock[LockIndex] );
  250. return( Context );
  251. }
  253. PSSL_USER_CONTEXT
  254. SslFindUserContext(
  255. IN LSA_SEC_HANDLE LsaHandle
  256. )
  257. {
  258. return SslReferenceUserContext( LsaHandle, FALSE );
  259. }
  261. PSSL_USER_CONTEXT
  262. SslFindUserContextEx(
  263. IN PCRED_THUMBPRINT pThumbprint
  264. )
  265. {
  266. PLIST_ENTRY List ;
  267. PSSL_USER_CONTEXT Context = NULL ;
  268. ULONG ListIndex;
  269. ULONG LockIndex;
  271. DebugLog(( DEB_TRACE, "SslFindUserContextEx: \n"));
  273. for (ListIndex = 0 ; ListIndex < SCHANNEL_USERLIST_COUNT ; ListIndex++)
  274. {
  275. LockIndex = ListIndexToLockIndex( ListIndex );
  276. RtlAcquireResourceShared( &SslContextLock[LockIndex], TRUE );
  278. List = SslContextList[ListIndex].Flink ;
  280. while ( List != &SslContextList[ListIndex] )
  281. {
  282. Context = CONTAINING_RECORD( List, SSL_USER_CONTEXT, List.Flink );
  284. if(Context->pContext != NULL &&
  285. IsSameThumbprint(pThumbprint, &Context->pContext->ContextThumbprint))
  286. {
  287. RtlReleaseResource( &SslContextLock[LockIndex] );
  288. goto done;
  289. }
  291. List = List->Flink ;
  292. }
  294. RtlReleaseResource( &SslContextLock[LockIndex] );
  295. }
  297. Context = NULL ;
  299. done:
  301. return( Context );
  302. }
  304. VOID
  305. SslDeleteUserContext(
  306. IN LSA_SEC_HANDLE LsaHandle
  307. )
  308. {
  309. PSSL_USER_CONTEXT Context ;
  311. Context = SslReferenceUserContext( LsaHandle, TRUE );
  313. if ( Context )
  314. {
  315. DebugLog(( DEB_TRACE, "Deleting user mode context %x, handle = %x\n",
  316. Context, LsaHandle ));
  318. LsaContextDelete(Context->pContext);
  319. SPExternalFree(Context->pContext);
  320. LocalFree( Context );
  322. }
  323. else
  324. {
  325. DebugLog(( DEB_TRACE, "No context found for handle %x\n", LsaHandle ));
  326. }
  327. }
  330. ULONG
  331. HandleToListIndex(
  332. ULONG_PTR ContextHandle
  333. )
  334. {
  336. ULONG Number ;
  337. ULONG Hash;
  338. ULONG HashFinal;
  340. ASSERT( (SCHANNEL_USERLIST_COUNT != 0) );
  341. ASSERT( (SCHANNEL_USERLIST_COUNT & 1) == 0 );
  343. Number = (ULONG)ContextHandle;
  345. Hash = Number;
  346. Hash += Number >> 8;
  347. Hash += Number >> 16;
  348. Hash += Number >> 24;
  350. HashFinal = Hash;
  351. HashFinal += Hash >> 4;
  353. //
  354. // insure power of two if not one.
  355. //
  357. return ( HashFinal & (SCHANNEL_USERLIST_COUNT-1) ) ;
  358. }
  360. ULONG
  361. __inline
  362. ListIndexToLockIndex(
  363. ULONG ListIndex
  364. )
  365. {
  366. ASSERT( (SCHANNEL_USERLIST_LOCK_COUNT) != 0 );
  367. ASSERT( (SCHANNEL_USERLIST_LOCK_COUNT & 1) == 0 );
  369. //
  370. // insure power of two if not one.
  371. //
  373. return ( ListIndex & (SCHANNEL_USERLIST_LOCK_COUNT-1) );
  374. }