archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 7b07a90fc1
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '7b07a90fc1'
${ noResults }
windows-server-2003/ds/security/services/ca/certsrv/elog.cpp

281 lines
6.4 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. //+--------------------------------------------------------------------------
  2. //
  3. // Microsoft Windows
  4. // Copyright (C) Microsoft Corporation, 1996 - 1999
  5. //
  6. // File: elog.cpp
  7. //
  8. // Contents: Cert Server Core implementation
  9. //
  10. // History: 02-Jan-97 terences created
  11. //
  12. //---------------------------------------------------------------------------
  14. // TBD: add AddLoggingEvent, which will log to file instead of the event log
  15. // TBD: add audit events
  16. // TBD: add filtering so that criticality sorting of events can take place
  18. #include <pch.cpp>
  20. #pragma hdrstop
  22. #include "certlog.h"
  23. #include "elog.h"
  25. #define __dwFILE__ __dwFILE_CERTSRV_ELOG_CPP__
  28. #if DBG_CERTSRV
  29. WCHAR const *
  30. wszEventType(
  31. IN DWORD dwEventType)
  32. {
  33. WCHAR const *pwsz;
  35. switch (dwEventType)
  36. {
  37. case EVENTLOG_ERROR_TYPE: pwsz = L"Error"; break;
  38. case EVENTLOG_WARNING_TYPE: pwsz = L"Warning"; break;
  39. case EVENTLOG_INFORMATION_TYPE: pwsz = L"Information"; break;
  40. case EVENTLOG_AUDIT_SUCCESS: pwsz = L"AuditSuccess"; break;
  41. case EVENTLOG_AUDIT_FAILURE: pwsz = L"AuditFailure"; break;
  42. default: pwsz = L"???"; break;
  43. }
  44. return(pwsz);
  45. }
  46. #endif // DBG_CERTSRV
  49. typedef struct _ELOGTHROTTLE {
  50. DWORD dwIdEvent;
  51. DWORD dwSeconds;
  52. LLFILETIME llftNext;
  53. } ELOGTHROTTLE;
  56. ELOGTHROTTLE s_elogThrottle[] = {
  57. { MSG_E_POSSIBLE_DENIAL_OF_SERVICE_ATTACK, 20 * CVT_MINUTES, },
  58. { MSG_E_BAD_DEFAULT_CA_XCHG_CSP, 1 * CVT_DAYS, },
  59. { MSG_E_BAD_REGISTRY_CA_XCHG_CSP, 1 * CVT_DAYS, },
  60. { MSG_CLAMPED_BY_CA_CERT, 1 * CVT_DAYS, },
  61. };
  64. BOOL
  65. LogThrottleEvent(
  66. IN DWORD dwIdEvent)
  67. {
  68. BOOL fThrottle = FALSE;
  70. if (CERTLOG_EXHAUSTIVE > g_dwLogLevel)
  71. {
  72. ELOGTHROTTLE *pet;
  74. for (
  75. pet = s_elogThrottle;
  76. pet < &s_elogThrottle[ARRAYSIZE(s_elogThrottle)];
  77. pet++)
  78. {
  79. if (dwIdEvent == pet->dwIdEvent)
  80. {
  81. LLFILETIME llft;
  82. LLFILETIME llftNext;
  84. GetSystemTimeAsFileTime(&llft.ft);
  86. // if it's time to log the next msg (Next < Now)
  88. llftNext = pet->llftNext;
  89. if (0 > CompareFileTime(&llftNext.ft, &llft.ft))
  90. {
  91. llft.ll += ((LONGLONG) pet->dwSeconds) * CVT_BASE;
  92. pet->llftNext = llft;
  93. }
  94. else
  95. {
  96. fThrottle = TRUE;
  97. }
  98. break;
  99. }
  100. }
  101. }
  103. //error:
  104. return(fThrottle);
  105. }
  108. /*********************************************************************
  109. * FUNCTION: LogEvent( DWORD dwEventType, *
  110. * DWORD dwIdEvent, *
  111. * WORD cStrings, *
  112. * LPTSTR *apwszStrings); *
  113. * *
  114. * PURPOSE: add the event to the event log *
  115. * *
  116. * INPUT: the event ID to report in the log, the number of insert *
  117. * strings, and an array of null-terminated insert strings *
  118. * *
  119. * RETURNS: none *
  120. *********************************************************************/
  122. HRESULT
  123. LogEvent(
  124. IN DWORD dwEventType,
  125. IN DWORD dwIdEvent,
  126. IN WORD cStrings,
  127. IN WCHAR const * const *apwszStrings)
  128. {
  129. HRESULT hr;
  130. HANDLE hAppLog = NULL;
  132. #if DBG_CERTSRV
  133. CONSOLEPRINT3((
  134. DBG_SS_CERTSRV,
  135. "LogEvent(Type=%x(%ws), Id=%x)\n",
  136. dwEventType,
  137. wszEventType(dwEventType),
  138. dwIdEvent));
  140. for (DWORD i = 0; i < cStrings; i++)
  141. {
  142. CONSOLEPRINT2((
  143. DBG_SS_CERTSRV,
  144. "LogEvent[%u]: %ws\n",
  145. i,
  146. apwszStrings[i]));
  147. }
  148. #endif // DBG_CERTSRV
  150. if (!LogThrottleEvent(dwIdEvent))
  151. {
  152. WORD wElogType = (WORD) dwEventType;
  154. hAppLog = RegisterEventSource(NULL, g_wszCertSrvServiceName);
  155. if (NULL == hAppLog)
  156. {
  157. hr = myHLastError();
  158. _JumpError(hr, error, "RegisterEventSource");
  159. }
  160. if (!ReportEvent(
  161. hAppLog,
  162. wElogType,
  163. 0,
  164. dwIdEvent,
  165. NULL,
  166. cStrings,
  167. 0,
  168. const_cast<WCHAR const **>(apwszStrings),
  169. NULL))
  170. {
  171. hr = myHLastError();
  172. _JumpError(hr, error, "ReportEvent");
  173. }
  174. }
  175. hr = S_OK;
  177. error:
  178. if (NULL != hAppLog)
  179. {
  180. DeregisterEventSource(hAppLog);
  181. }
  182. return(hr);
  183. }
  186. HRESULT
  187. LogEventHResult(
  188. IN DWORD dwEventType,
  189. IN DWORD dwIdEvent,
  190. IN HRESULT hrEvent)
  191. {
  192. HRESULT hr;
  193. WCHAR const *apwsz[1];
  194. WORD cpwsz;
  195. WCHAR awchr[cwcHRESULTSTRING];
  197. apwsz[0] = myGetErrorMessageText(hrEvent, TRUE);
  198. cpwsz = ARRAYSIZE(apwsz);
  199. if (NULL == apwsz[0])
  200. {
  201. apwsz[0] = myHResultToString(awchr, hrEvent);
  202. }
  204. hr = LogEvent(dwEventType, dwIdEvent, cpwsz, apwsz);
  205. _JumpIfError(hr, error, "LogEvent");
  207. error:
  208. if (NULL != apwsz[0] && awchr != apwsz[0])
  209. {
  210. LocalFree(const_cast<WCHAR *>(apwsz[0]));
  211. }
  212. return(hr);
  213. }
  216. HRESULT
  217. LogEventString(
  218. IN DWORD dwEventType,
  219. IN DWORD dwIdEvent,
  220. OPTIONAL IN WCHAR const *pwszString)
  221. {
  222. return(LogEvent(
  223. dwEventType,
  224. dwIdEvent,
  225. (WORD) (NULL == pwszString? 0 : 1),
  226. NULL == pwszString? NULL : &pwszString));
  227. }
  230. HRESULT
  231. LogEventStringHResult(
  232. IN DWORD dwEventType,
  233. IN DWORD dwIdEvent,
  234. IN WCHAR const *pwszString,
  235. IN HRESULT hrEvent)
  236. {
  237. return(LogEventStringArrayHResult(
  238. dwEventType,
  239. dwIdEvent,
  240. 1, // cStrings
  241. &pwszString,
  242. hrEvent));
  243. }
  246. HRESULT
  247. LogEventStringArrayHResult(
  248. IN DWORD dwEventType,
  249. IN DWORD dwIdEvent,
  250. IN DWORD cStrings,
  251. IN WCHAR const * const *apwszStrings,
  252. IN HRESULT hrEvent)
  253. {
  254. HRESULT hr;
  255. WCHAR const *apwsz[10];
  256. DWORD cpwsz;
  257. WCHAR awchr[cwcHRESULTSTRING];
  258. WCHAR const *pwszError = NULL;
  260. CSASSERT(ARRAYSIZE(apwsz) > cStrings);
  261. cpwsz = min(ARRAYSIZE(apwsz) - 1, cStrings);
  262. CopyMemory(apwsz, apwszStrings, cpwsz * sizeof(apwsz[0]));
  264. pwszError = myGetErrorMessageText(hrEvent, TRUE);
  265. if (NULL == pwszError)
  266. {
  267. pwszError = myHResultToString(awchr, hrEvent);
  268. }
  269. apwsz[cpwsz] = pwszError;
  270. cpwsz++;
  272. hr = LogEvent(dwEventType, dwIdEvent, (WORD) cpwsz, apwsz);
  273. _JumpIfError(hr, error, "LogEvent");
  275. error:
  276. if (NULL != pwszError && awchr != pwszError)
  277. {
  278. LocalFree(const_cast<WCHAR *>(pwszError));
  279. }
  280. return(hr);
  281. }