archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 7b07a90fc1
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '7b07a90fc1'
${ noResults }
windows-server-2003/ds/security/services/ca/certsrv/rpc.cpp

428 lines
10 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. //+--------------------------------------------------------------------------
  2. //
  3. // Microsoft Windows
  4. // Copyright (C) Microsoft Corporation, 1996 - 1999
  5. //
  6. // File: rpc.cpp
  7. //
  8. // Contents: Cert Server RPC
  9. //
  10. // History: 03-Sep-96 larrys created
  11. //
  12. //---------------------------------------------------------------------------
  14. #include <pch.cpp>
  16. #pragma hdrstop
  18. #include <stdio.h>
  19. #include <accctrl.h>
  21. #include "certrpc.h"
  22. #include "certacl.h"
  23. #include "cscom.h"
  24. #include "resource.h"
  26. #define __dwFILE__ __dwFILE_CERTSRV_RPC_CPP__
  29. RPC_BINDING_VECTOR *pvBindings = NULL;
  31. char *pszProtSeqNp = "ncacn_np";
  33. char *pszProtSeqTcp = "ncacn_ip_tcp";
  36. typedef struct _CS_RPC_ATHN_LIST
  37. {
  38. DWORD dwAuthnLevel;
  39. DWORD dwPrinceNameService;
  40. DWORD dwAuthnService;
  41. } CS_RPC_ATHN_LIST ;
  43. CS_RPC_ATHN_LIST g_acsAthnList[] =
  44. {
  45. { RPC_C_AUTHN_LEVEL_PKT_INTEGRITY, RPC_C_AUTHN_GSS_NEGOTIATE, RPC_C_AUTHN_GSS_NEGOTIATE },
  46. { RPC_C_AUTHN_LEVEL_NONE, RPC_C_AUTHN_NONE, RPC_C_AUTHN_NONE }
  47. };
  49. DWORD g_ccsAthnList = sizeof(g_acsAthnList)/sizeof(g_acsAthnList[0]);
  52. HRESULT
  53. RPCInit(VOID)
  54. {
  55. char *pszEndpoint = "\\pipe\\cert";
  57. LPSTR pszPrincName = NULL;
  58. HRESULT hr;
  59. DWORD i;
  61. if (RPC_S_OK == RpcNetworkIsProtseqValidA((unsigned char *) pszProtSeqNp))
  62. {
  63. hr = RpcServerUseProtseqEpA(
  64. (unsigned char *) pszProtSeqNp,
  65. RPC_C_PROTSEQ_MAX_REQS_DEFAULT,
  66. (unsigned char *) pszEndpoint,
  67. NULL);
  68. _JumpIfError(hr, error, "RpcServerUseProtseqEpA");
  69. }
  71. if (RPC_S_OK == RpcNetworkIsProtseqValidA((unsigned char *) pszProtSeqTcp))
  72. {
  74. hr = RpcServerUseProtseqA(
  75. (unsigned char *) pszProtSeqTcp,
  76. RPC_C_PROTSEQ_MAX_REQS_DEFAULT,
  77. NULL);
  78. if ((HRESULT) ERROR_OUTOFMEMORY == hr)
  79. {
  80. OSVERSIONINFO ovi;
  82. ovi.dwOSVersionInfoSize = sizeof(ovi);
  83. if (GetVersionEx(&ovi) &&
  84. VER_PLATFORM_WIN32_NT == ovi.dwPlatformId &&
  85. 4 >= ovi.dwMajorVersion)
  86. {
  87. hr = S_OK; // Ignore IP failure
  88. }
  89. }
  90. _JumpIfError(hr, error, "RpcServerUseProtseqA");
  91. }
  93. hr = RpcServerInqBindings(&pvBindings);
  94. _JumpIfError(hr, error, "RpcServerInqBindings");
  96. hr = RpcServerRegisterIf(s_ICertPassage_v0_0_s_ifspec, NULL, NULL);
  97. _JumpIfError(hr, error, "RpcServerRegisterIf");
  99. // Register Authentication Services
  101. for (i = 0; i < g_ccsAthnList; i++)
  102. {
  104. pszPrincName = NULL;
  105. if (g_acsAthnList[i].dwPrinceNameService != RPC_C_AUTHN_NONE)
  106. {
  107. hr = RpcServerInqDefaultPrincNameA(
  108. g_acsAthnList[i].dwPrinceNameService,
  109. (BYTE **) &pszPrincName);
  110. if (hr != RPC_S_OK)
  111. {
  112. continue;
  113. }
  114. }
  118. hr = RpcServerRegisterAuthInfoA(
  119. (BYTE *) pszPrincName,
  120. g_acsAthnList[i].dwAuthnService,
  121. 0,
  122. 0);
  123. if(hr == RPC_S_UNKNOWN_AUTHN_SERVICE)
  124. {
  125. continue;
  126. }
  127. if(hr != RPC_S_OK)
  128. {
  129. break;
  130. }
  131. }
  133. if (hr != RPC_S_UNKNOWN_AUTHN_SERVICE)
  134. {
  135. _JumpIfError(hr, error, "RpcServerRegisterAuthInfoA");
  136. }
  139. hr = RpcEpRegister(s_ICertPassage_v0_0_s_ifspec, pvBindings, NULL, NULL);
  140. _JumpIfError(hr, error, "RpcEpRegister");
  142. // Listen, but don't wait...
  144. hr = RpcServerListen(1, RPC_C_LISTEN_MAX_CALLS_DEFAULT, TRUE);
  145. if ((HRESULT) RPC_S_ALREADY_LISTENING == hr)
  146. {
  147. hr = S_OK;
  148. }
  149. _JumpIfError(hr, error, "RpcServerListen");
  151. error:
  152. if (NULL != pszPrincName)
  153. {
  154. RpcStringFreeA((BYTE **) &pszPrincName);
  155. }
  156. return(hr);
  157. }
  160. HRESULT
  161. RPCTeardown(VOID)
  162. {
  163. HRESULT hr;
  165. // tear down, don't wait for calls to complete
  167. hr = RpcServerUnregisterIf(s_ICertPassage_v0_0_s_ifspec, NULL, FALSE);
  168. _JumpIfError(hr, error, "RpcServerUnregisterIf");
  170. // We have no good way of knowing if all RPC requests are done, so let it
  171. // leak on shutdown.
  172. // RPC_STATUS RPC_ENTRY RpcMgmtWaitServerListen(VOID); ??
  174. hr = S_OK;
  176. error:
  177. return(hr);
  178. }
  181. HRESULT
  182. SetTransBlobString(
  183. CERTTRANSBLOB const *pctb,
  184. WCHAR const **ppwsz)
  185. {
  186. HRESULT hr;
  188. if (NULL != pctb->pb && 0 != pctb->cb)
  189. {
  190. *ppwsz = (WCHAR const *) pctb->pb;
  192. // use lstrlen here for protection against non-zero terminated bufs!
  193. // lstrlen will catch AV's and return error
  195. if ((lstrlen(*ppwsz) + 1) * sizeof(WCHAR) != pctb->cb)
  196. {
  197. hr = E_INVALIDARG;
  198. _JumpIfError(hr, error, "Bad TransBlob string");
  199. }
  200. }
  201. hr = S_OK;
  203. error:
  204. return(hr);
  205. }
  208. /* server prototype */
  209. DWORD
  210. s_CertServerRequest(
  211. /* [in] */ handle_t h,
  212. /* [in] */ DWORD dwFlags,
  213. /* [unique][string][in] */ const wchar_t __RPC_FAR *pwszAuthority,
  214. /* [ref][out][in] */ DWORD __RPC_FAR *pdwRequestId,
  215. /* [out] */ DWORD __RPC_FAR *pdwDisposition,
  216. /* [ref][in] */ CERTTRANSBLOB const __RPC_FAR *pctbAttribs,
  217. /* [ref][in] */ CERTTRANSBLOB const __RPC_FAR *pctbRequest,
  218. /* [ref][out] */ CERTTRANSBLOB __RPC_FAR *pctbCertChain,
  219. /* [ref][out] */ CERTTRANSBLOB __RPC_FAR *pctbEncodedCert,
  220. /* [ref][out] */ CERTTRANSBLOB __RPC_FAR *pctbDispositionMessage)
  221. {
  222. HRESULT hr = S_OK;
  223. DWORD OpRequest;
  224. WCHAR const *pwszAttributes = NULL;
  225. WCHAR const *pwszSerialNumber = NULL;
  226. CERTTRANSBLOB ctbEmpty = { 0, NULL };
  227. CERTTRANSBLOB const *pctbSerial = &ctbEmpty;
  228. WCHAR *pwszUserName = NULL;
  229. DWORD dwComContextIndex = MAXDWORD;
  230. CERTSRV_COM_CONTEXT ComContext;
  231. CERTSRV_RESULT_CONTEXT ResultContext;
  232. DWORD State = 0;
  234. ZeroMemory(&ComContext, sizeof(ComContext));
  235. ZeroMemory(&ResultContext, sizeof(ResultContext));
  237. DBGPRINT((
  238. DBG_SS_CERTSRV,
  239. "s_CertServerRequest(tid=%d)\n",
  240. GetCurrentThreadId()));
  242. hr = CertSrvEnterServer(&State);
  243. _JumpIfError(hr, error, "CertSrvEnterServer");
  245. hr = CheckAuthorityName(pwszAuthority);
  246. _JumpIfError(hr, error, "No authority name");
  248. hr = RegisterComContext(&ComContext, &dwComContextIndex);
  249. _JumpIfError(hr, error, "RegisterComContext");
  251. OpRequest = CR_IN_RETRIEVE;
  252. if (NULL != pctbRequest->pb)
  253. {
  254. *pdwRequestId = 0;
  255. OpRequest = CR_IN_NEW;
  256. }
  257. else
  258. {
  259. // RetrievePending by SerialNumber in pctbAttribs
  261. pctbSerial = pctbAttribs;
  262. pctbAttribs = &ctbEmpty;
  263. }
  264. *pdwDisposition = CR_DISP_ERROR;
  266. __try
  267. {
  268. BOOL fInRequestGroup;
  270. hr = CheckCertSrvAccess(
  271. pwszAuthority,
  272. h,
  273. CA_ACCESS_ENROLL,
  274. &fInRequestGroup,
  275. &ComContext.hAccessToken);
  276. _LeaveIfError(hr, "CheckCertSrvAccess");
  278. ComContext.dwFlags |= CCCF_INREQUESTGROUPSET;
  279. if (fInRequestGroup)
  280. {
  281. ComContext.dwFlags |= CCCF_INREQUESTGROUP;
  282. }
  283. }
  284. __except(hr = myHEXCEPTIONCODE(), EXCEPTION_EXECUTE_HANDLER)
  285. {
  286. _PrintError(hr, "Exception");
  287. }
  288. _JumpIfError(hr, error, "CheckCertSrvAccess");
  290. hr = SetTransBlobString(pctbAttribs, &pwszAttributes);
  291. _JumpIfError(hr, error, "SetTransBlobString");
  293. hr = SetTransBlobString(pctbSerial, &pwszSerialNumber);
  294. _JumpIfError(hr, error, "SetTransBlobString");
  296. ResultContext.pdwRequestId = pdwRequestId;
  297. ResultContext.pdwDisposition = pdwDisposition;
  298. ResultContext.pctbDispositionMessage = pctbDispositionMessage;
  299. ResultContext.pctbCert = pctbEncodedCert;
  300. if (CR_IN_FULLRESPONSE & dwFlags)
  301. {
  302. ResultContext.pctbFullResponse = pctbCertChain;
  303. }
  304. else
  305. {
  306. ResultContext.pctbCertChain = pctbCertChain;
  307. }
  309. __try
  310. {
  311. hr = GetClientUserName(
  312. h,
  313. &pwszUserName,
  314. CR_IN_NEW == OpRequest && IsEnterpriseCA(g_CAType)?
  315. &ComContext.pwszUserDN : NULL);
  316. _LeaveIfError(hr, "GetClientUserName");
  318. hr = CoreProcessRequest(
  319. OpRequest | (dwFlags & CR_IN_FORMATMASK),
  320. pwszUserName,
  321. pctbRequest->cb, // cbRequest
  322. pctbRequest->pb, // pbRequest
  323. pwszAttributes,
  324. pwszSerialNumber,
  325. dwComContextIndex,
  326. *pdwRequestId,
  327. &ResultContext); // Allocates returned memory
  328. }
  329. __except(hr = myHEXCEPTIONCODE(), EXCEPTION_EXECUTE_HANDLER)
  330. {
  331. }
  332. _JumpIfError(hr, error, "CoreProcessRequest");
  334. // Post-processing
  335. pctbDispositionMessage->cb = 0;
  336. if (NULL != pctbDispositionMessage->pb)
  337. {
  338. pctbDispositionMessage->cb =
  339. (wcslen((WCHAR *) pctbDispositionMessage->pb) + 1) * sizeof(WCHAR);
  340. }
  342. error:
  343. ReleaseResult(&ResultContext);
  344. if (NULL != pwszUserName)
  345. {
  346. LocalFree(pwszUserName);
  347. }
  348. if (NULL != ComContext.hAccessToken)
  349. {
  350. HRESULT hr2 = S_OK;
  352. // closehandle can throw
  353. __try
  354. {
  355. CloseHandle(ComContext.hAccessToken);
  356. }
  357. __except(hr2 = myHEXCEPTIONCODE(), EXCEPTION_EXECUTE_HANDLER)
  358. {
  359. _PrintError(hr2, "Exception");
  360. if (S_OK == hr)
  361. {
  362. hr = hr2;
  363. }
  364. }
  365. }
  366. ReleaseComContext(&ComContext);
  367. if (MAXDWORD != dwComContextIndex)
  368. {
  369. UnregisterComContext(&ComContext, dwComContextIndex);
  370. }
  371. CertSrvExitServer(
  372. State,
  373. (S_OK == hr &&
  374. NULL != pdwDisposition &&
  375. FAILED(*pdwDisposition))?
  376. *pdwDisposition : hr);
  377. CSASSERT(S_OK == hr || FAILED(hr));
  378. CSASSERT(S_OK == hr || FAILED(hr));
  379. return(hr);
  380. }
  383. //+--------------------------------------------------------------------------
  384. // MIDL_user_allocate -- Allocates memory for RPC operations.
  385. //
  386. // Parameters:
  387. // cb - # of bytes to allocate
  388. //
  389. // Returns:
  390. // Memory allocated, or NULL if not enough memory.
  391. //---------------------------------------------------------------------------
  393. void __RPC_FAR * __RPC_USER
  394. MIDL_user_allocate(
  395. IN size_t cb)
  396. {
  397. void *pv;
  399. if (cb > g_cbMaxIncomingAllocSize)
  400. {
  401. _PrintError(MEM_E_INVALID_SIZE, "g_cbMaxIncomingAllocSize");
  402. SetLastError((DWORD) MEM_E_INVALID_SIZE);
  403. pv = NULL;
  404. }
  405. else
  406. {
  407. pv = CoTaskMemAlloc(cb);
  408. }
  409. return(pv);
  410. }
  413. //+--------------------------------------------------------------------------
  414. // MIDL_user_free -- Free memory allocated via MIDL_user_allocate.
  415. //
  416. // Parameters:
  417. // pvBuffer - The buffer to free.
  418. //
  419. // Returns:
  420. // None.
  421. //---------------------------------------------------------------------------
  423. void __RPC_USER
  424. MIDL_user_free(
  425. IN void __RPC_FAR *pb)
  426. {
  427. CoTaskMemFree(pb);
  428. }