archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 7b07a90fc1
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '7b07a90fc1'
${ noResults }
windows-server-2003/ds/security/winsafer/safeidep.c

986 lines
32 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. /*++
  3. Copyright (c) 1999-2000 Microsoft Corporation
  5. Module Name:
  7. SafeIdep.c (WinSAFER Identify Objects privates)
  9. Abstract:
  11. This module implements the WinSAFER APIs that loads the names (and
  12. high-level information) of all Authorization Levels defined within
  13. a given registry context. The list of available levels is loaded
  14. into a Rtl Generic Table that can be enumerated and accessed using
  15. conventional Rtl Generic Table techniques.
  17. Author:
  19. Jeffrey Lawson (JLawson) - Nov 1999
  21. Environment:
  23. User mode only.
  25. Exported Functions:
  27. CodeAuthzLevelObjpInitializeTable
  28. CodeAuthzLevelObjpLoadTable
  29. CodeAuthzLevelObjpEntireTableFree
  31. Revision History:
  33. Created - Nov 1999
  35. --*/
  37. #include "pch.h"
  38. #pragma hdrstop
  39. #include <winsafer.h>
  40. #include <winsaferp.h>
  41. #include "saferp.h"
  46. PVOID NTAPI
  47. SaferpGenericTableAllocate (
  48. IN PRTL_GENERIC_TABLE Table,
  49. IN CLONG ByteSize
  50. )
  51. /*++
  53. Routine Description:
  55. Internal callback for the generic table implementation.
  56. This function allocates memory for a new entry in a GENERIC_TABLE
  58. Arguments:
  60. Table - pointer to the Generic Table structure
  62. ByteSize - the size, in bytes, of the structure to allocate
  64. Return Value:
  66. Pointer to the allocated space.
  68. --*/
  69. {
  70. UNREFERENCED_PARAMETER(Table);
  71. return (PVOID) RtlAllocateHeap(RtlProcessHeap(), 0, ByteSize);
  72. }
  75. VOID NTAPI
  76. SaferpGenericTableFree (
  77. IN PRTL_GENERIC_TABLE Table,
  78. IN PVOID Buffer
  79. )
  80. /*++
  82. Routine Description:
  84. Internal callback for the generic table implementation.
  85. This function frees the space used by a GENERIC_TABLE entry.
  87. Arguments:
  89. Table - pointer to the Generic Table structure
  91. Buffer - pointer to the space to deallocate.
  93. Return Value:
  95. None.
  97. --*/
  98. {
  99. UNREFERENCED_PARAMETER(Table);
  100. ASSERT(Buffer != NULL);
  102. RtlFreeHeap(RtlProcessHeap(), 0, (LPVOID) Buffer);
  103. }
  109. RTL_GENERIC_COMPARE_RESULTS NTAPI
  110. SaferpGuidIdentsTableCompare (
  111. IN PRTL_GENERIC_TABLE Table,
  112. IN PVOID FirstStruct,
  113. IN PVOID SecondStruct
  114. )
  115. /*++
  117. Routine Description:
  119. Arguments:
  121. Return Value:
  123. --*/
  124. {
  125. PAUTHZIDENTSTABLERECORD FirstObj = (PAUTHZIDENTSTABLERECORD) FirstStruct;
  126. PAUTHZIDENTSTABLERECORD SecondObj = (PAUTHZIDENTSTABLERECORD) SecondStruct;
  127. int result;
  129. UNREFERENCED_PARAMETER(Table);
  131. // Explicitly handle null parameters as wildcards, allowing them
  132. // to match anything. We use this for quick deletion of the table.
  133. if (FirstStruct == NULL || SecondStruct == NULL)
  134. return GenericEqual;
  136. // Compare ascending by guid.
  137. result = memcmp(&FirstObj->IdentGuid,
  138. &SecondObj->IdentGuid, sizeof(GUID));
  139. if ( result < 0 )
  140. return GenericLessThan;
  141. else if ( result > 0 )
  142. return GenericGreaterThan;
  143. else
  144. return GenericEqual;
  145. }
  149. VOID NTAPI
  150. CodeAuthzGuidIdentsInitializeTable(
  151. IN OUT PRTL_GENERIC_TABLE pAuthzObjTable
  152. )
  153. /*++
  155. Routine Description:
  157. Arguments:
  159. pAuthzObjTable - pointer to the generic table structure to initialize.
  161. Return Value:
  163. Does not return a value.
  165. --*/
  166. {
  167. RtlInitializeGenericTable(
  168. pAuthzObjTable,
  169. (PRTL_GENERIC_COMPARE_ROUTINE) SaferpGuidIdentsTableCompare,
  170. (PRTL_GENERIC_ALLOCATE_ROUTINE) SaferpGenericTableAllocate,
  171. (PRTL_GENERIC_FREE_ROUTINE) SaferpGenericTableFree,
  172. NULL);
  173. }
  176. NTSTATUS NTAPI
  177. SaferpGuidIdentsLoadTable (
  178. IN OUT PRTL_GENERIC_TABLE pAuthzIdentTable,
  179. IN DWORD dwScopeId,
  180. IN HANDLE hKeyCustomBase,
  181. IN DWORD dwLevelId,
  182. IN SAFER_IDENTIFICATION_TYPES dwIdentityType
  183. )
  184. /*++
  186. Routine Description:
  188. Loads all Code Identities of a particular fragment type and which
  189. map to a specific LevelId value.
  191. Arguments:
  193. pAuthzIdentTable - specifies the table into which the new Code Identity
  194. records should be inserted.
  196. dwScopeId - can be AUTHZSCOPEID_USER, AUTHZSCOPEID_MACHINE, or
  197. AUTHSCOPEID_REGISTRY.
  199. hKeyCustomBase - used only if dwScopeId is AUTHZSCOPEID_REGISTRY.
  201. dwLevelId - specifies the LevelId for which identities should
  202. be loaded.
  204. dwIdentityType - specifies the type of identity to load.
  205. This can be SaferIdentityTypeImageName, SaferIdentityTypeImageHash,
  206. or SaferIdentityTypeUrlZone.
  208. Return Value:
  210. Returns STATUS_SUCCESS if no error occurs.
  212. --*/
  213. {
  214. DWORD dwIndex;
  215. NTSTATUS Status;
  216. HANDLE hKeyIdentityBase = NULL;
  217. HANDLE hKeyThisIdentity = NULL;
  219. PUCHAR LocalBuffer = NULL;
  220. DWORD Size = sizeof(KEY_BASIC_INFORMATION) + MAX_PATH * sizeof(WCHAR);
  222. LocalBuffer = (PUCHAR) RtlAllocateHeap(RtlProcessHeap(), 0, Size);
  224. if (LocalBuffer == NULL)
  225. {
  226. return STATUS_NO_MEMORY;
  227. }
  229. //
  230. // We were given the key to the root of the policy storage,
  231. // so we need to open the subkey that contains the Identities.
  232. //
  233. {
  234. WCHAR szPathSuffix[MAX_PATH];
  235. WCHAR szDigits[20];
  236. UNICODE_STRING UnicodePathSuffix;
  237. UNICODE_STRING UnicodeDigits;
  240. UnicodePathSuffix.Buffer = szPathSuffix;
  241. UnicodePathSuffix.Length = 0;
  242. UnicodePathSuffix.MaximumLength = sizeof(szPathSuffix);
  244. UnicodeDigits.Buffer = szDigits;
  245. UnicodeDigits.Length = 0;
  246. UnicodeDigits.MaximumLength = sizeof(szDigits);
  248. Status = RtlAppendUnicodeToString(
  249. &UnicodePathSuffix,
  250. SAFER_CODEIDS_REGSUBKEY L"\\");
  251. if (!NT_SUCCESS(Status))
  252. {
  253. goto Cleanup;
  254. }
  255. Status = RtlIntegerToUnicodeString(
  256. dwLevelId, 10, &UnicodeDigits);
  257. if (!NT_SUCCESS(Status))
  258. {
  259. goto Cleanup;
  260. }
  261. Status = RtlAppendUnicodeStringToString(
  262. &UnicodePathSuffix, &UnicodeDigits);
  263. if (!NT_SUCCESS(Status))
  264. {
  265. goto Cleanup;
  266. }
  268. switch (dwIdentityType)
  269. {
  270. case SaferIdentityTypeImageName:
  271. Status = RtlAppendUnicodeToString(
  272. &UnicodePathSuffix, L"\\" SAFER_PATHS_REGSUBKEY);
  273. break;
  275. case SaferIdentityTypeImageHash:
  276. Status = RtlAppendUnicodeToString(
  277. &UnicodePathSuffix, L"\\" SAFER_HASHMD5_REGSUBKEY);
  278. break;
  280. case SaferIdentityTypeUrlZone:
  281. Status = RtlAppendUnicodeToString(
  282. &UnicodePathSuffix, L"\\" SAFER_SOURCEURL_REGSUBKEY);
  283. break;
  285. default:
  286. Status = STATUS_INVALID_PARAMETER;
  287. break;
  288. }
  289. if (!NT_SUCCESS(Status))
  290. {
  291. goto Cleanup;
  292. }
  293. ASSERT(UnicodePathSuffix.Buffer[ UnicodePathSuffix.Length /
  294. sizeof(WCHAR) ] == UNICODE_NULL);
  297. Status = CodeAuthzpOpenPolicyRootKey(
  298. dwScopeId,
  299. hKeyCustomBase,
  300. UnicodePathSuffix.Buffer,
  301. KEY_READ,
  302. FALSE,
  303. &hKeyIdentityBase);
  304. if (!NT_SUCCESS(Status))
  305. {
  306. goto Cleanup;
  307. }
  308. }
  311. //
  312. // Iterate through all subkeys under this branch.
  313. //
  314. for (dwIndex = 0; ; dwIndex++)
  315. {
  316. DWORD dwLength;
  317. OBJECT_ATTRIBUTES ObjectAttributes;
  318. AUTHZIDENTSTABLERECORD AuthzIdentsRec;
  320. PKEY_BASIC_INFORMATION pBasicInformation =
  321. (PKEY_BASIC_INFORMATION) LocalBuffer;
  322. PKEY_VALUE_PARTIAL_INFORMATION_ALIGN64 pPartialInformation =
  323. (PKEY_VALUE_PARTIAL_INFORMATION_ALIGN64) LocalBuffer;
  324. UNICODE_STRING ValueName;
  325. UNICODE_STRING UnicodeKeyname;
  328. //
  329. // Find the next Identity GUID that we will check.
  330. //
  331. Status = NtEnumerateKey(hKeyIdentityBase,
  332. dwIndex,
  333. KeyBasicInformation,
  334. pBasicInformation,
  335. Size,
  336. &dwLength);
  337. if (!NT_SUCCESS(Status)) {
  338. //
  339. // If this one key was too large to fit in our query buffer
  340. // then simply skip over it and try enumerating the next one.
  341. //
  342. if (Status == STATUS_BUFFER_OVERFLOW) {
  345. //
  346. // Reallocate and retry.
  347. //
  349. RtlFreeHeap(RtlProcessHeap(), 0, (LPVOID) LocalBuffer);
  350. Size = dwLength;
  351. LocalBuffer = (PUCHAR) RtlAllocateHeap(RtlProcessHeap(), 0, Size);
  353. if (LocalBuffer == NULL)
  354. {
  355. Status = STATUS_NO_MEMORY;
  356. goto Cleanup;
  357. }
  359. pBasicInformation = (PKEY_BASIC_INFORMATION) LocalBuffer;
  360. pPartialInformation = (PKEY_VALUE_PARTIAL_INFORMATION_ALIGN64) LocalBuffer;
  362. Status = NtEnumerateKey(hKeyIdentityBase,
  363. dwIndex,
  364. KeyBasicInformation,
  365. pBasicInformation,
  366. Size,
  367. &dwLength);
  368. if (!NT_SUCCESS(Status)) {
  369. break;
  370. }
  371. } else {
  372. break;
  373. }
  374. }
  375. UnicodeKeyname.Buffer = pBasicInformation->Name;
  376. UnicodeKeyname.MaximumLength = UnicodeKeyname.Length =
  377. (USHORT) pBasicInformation->NameLength;
  379. //
  380. // Translate the keyname (which we expect to be a GUID).
  381. //
  382. RtlZeroMemory(&AuthzIdentsRec, sizeof(AUTHZIDENTSTABLERECORD));
  383. Status = RtlGUIDFromString(&UnicodeKeyname,
  384. &AuthzIdentsRec.IdentGuid);
  385. if (!NT_SUCCESS(Status) ||
  386. IsZeroGUID(&AuthzIdentsRec.IdentGuid)) {
  387. // the keyname was apparently not numeric.
  388. continue;
  389. }
  390. AuthzIdentsRec.dwScopeId = dwScopeId;
  391. AuthzIdentsRec.dwLevelId = dwLevelId;
  392. AuthzIdentsRec.dwIdentityType = dwIdentityType;
  393. if (RtlLookupElementGenericTable(
  394. pAuthzIdentTable, (PVOID) &AuthzIdentsRec) != NULL) {
  395. // this identity GUID happens to have already been found.
  396. continue;
  397. }
  400. //
  401. // Try to open a handle to that Identity GUID.
  402. //
  403. InitializeObjectAttributes(&ObjectAttributes,
  404. &UnicodeKeyname,
  405. OBJ_CASE_INSENSITIVE,
  406. hKeyIdentityBase,
  407. NULL
  408. );
  409. Status = NtOpenKey(&hKeyThisIdentity,
  410. KEY_READ,
  411. &ObjectAttributes);
  412. if (!NT_SUCCESS(Status)) {
  413. // If we failed to open it, skip to the next one.
  414. break;
  415. }
  418. //
  419. // Add the new record into our table.
  420. //
  421. switch (dwIdentityType) {
  422. // --------------------
  424. case SaferIdentityTypeImageName:
  425. //
  426. // Read the image path.
  427. //
  428. RtlInitUnicodeString(
  429. &ValueName, SAFER_IDS_ITEMDATA_REGVALUE);
  430. Status = NtQueryValueKey(hKeyThisIdentity,
  431. &ValueName,
  432. KeyValuePartialInformationAlign64,
  433. pPartialInformation,
  434. Size,
  435. &dwLength);
  436. if (!NT_SUCCESS(Status)) {
  437. if (Status == STATUS_BUFFER_OVERFLOW) {
  439. //
  440. // Reallocate and retry.
  441. //
  443. RtlFreeHeap(RtlProcessHeap(), 0, (LPVOID) LocalBuffer);
  444. Size = dwLength;
  445. LocalBuffer = (PUCHAR) RtlAllocateHeap(RtlProcessHeap(), 0, Size);
  447. if (LocalBuffer == NULL)
  448. {
  449. Status = STATUS_NO_MEMORY;
  450. goto Cleanup;
  451. }
  453. pBasicInformation = (PKEY_BASIC_INFORMATION) LocalBuffer;
  454. pPartialInformation = (PKEY_VALUE_PARTIAL_INFORMATION_ALIGN64) LocalBuffer;
  456. Status = NtQueryValueKey(hKeyThisIdentity,
  457. &ValueName,
  458. KeyValuePartialInformationAlign64,
  459. pPartialInformation,
  460. Size,
  461. &dwLength);
  462. if (!NT_SUCCESS(Status)) {
  463. break;
  464. }
  465. } else {
  466. break;
  467. }
  468. }
  470. if (pPartialInformation->Type == REG_SZ ||
  471. pPartialInformation->Type == REG_EXPAND_SZ) {
  473. AuthzIdentsRec.ImageNameInfo.bExpandVars =
  474. (pPartialInformation->Type == REG_EXPAND_SZ);
  475. Status = RtlCreateUnicodeString(
  476. &AuthzIdentsRec.ImageNameInfo.ImagePath,
  477. (LPCWSTR) pPartialInformation->Data);
  478. if (!NT_SUCCESS(Status)) {
  479. break;
  480. }
  481. } else {
  482. Status = STATUS_UNSUCCESSFUL;
  483. break;
  484. }
  486. //
  487. // Read the extra WinSafer flags.
  488. //
  489. RtlInitUnicodeString(&ValueName,
  490. SAFER_IDS_SAFERFLAGS_REGVALUE);
  491. Status = NtQueryValueKey(hKeyThisIdentity,
  492. &ValueName,
  493. KeyValuePartialInformationAlign64,
  494. pPartialInformation,
  495. Size,
  496. &dwLength);
  497. if (NT_SUCCESS(Status) &&
  498. pPartialInformation->Type == REG_DWORD &&
  499. pPartialInformation->DataLength == sizeof(DWORD)) {
  501. AuthzIdentsRec.ImageNameInfo.dwSaferFlags =
  502. (*(PDWORD) pPartialInformation->Data);
  504. } else {
  505. // default the flags if they are missing.
  506. AuthzIdentsRec.ImageNameInfo.dwSaferFlags = 0;
  507. Status = STATUS_SUCCESS;
  508. }
  510. break;
  512. // --------------------
  514. case SaferIdentityTypeImageHash:
  515. //
  516. // Read the hash data and hash size.
  517. //
  518. RtlInitUnicodeString(&ValueName,
  519. SAFER_IDS_ITEMDATA_REGVALUE);
  520. Status = NtQueryValueKey(hKeyThisIdentity,
  521. &ValueName,
  522. KeyValuePartialInformationAlign64,
  523. pPartialInformation,
  524. Size,
  525. &dwLength);
  526. if (!NT_SUCCESS(Status)) {
  527. if (Status == STATUS_BUFFER_OVERFLOW) {
  529. //
  530. // Reallocate and retry.
  531. //
  533. RtlFreeHeap(RtlProcessHeap(), 0, (LPVOID) LocalBuffer);
  534. Size = dwLength;
  535. LocalBuffer = (PUCHAR) RtlAllocateHeap(RtlProcessHeap(), 0, Size);
  537. if (LocalBuffer == NULL)
  538. {
  539. Status = STATUS_NO_MEMORY;
  540. goto Cleanup;
  541. }
  543. pBasicInformation = (PKEY_BASIC_INFORMATION) LocalBuffer;
  544. pPartialInformation = (PKEY_VALUE_PARTIAL_INFORMATION_ALIGN64) LocalBuffer;
  546. Status = NtQueryValueKey(hKeyThisIdentity,
  547. &ValueName,
  548. KeyValuePartialInformationAlign64,
  549. pPartialInformation,
  550. Size,
  551. &dwLength);
  553. if (!NT_SUCCESS(Status)) {
  554. break;
  555. }
  556. } else {
  557. break;
  558. }
  559. }
  560. if (pPartialInformation->Type == REG_BINARY &&
  561. pPartialInformation->DataLength > 0 &&
  562. pPartialInformation->DataLength <= SAFER_MAX_HASH_SIZE) {
  564. AuthzIdentsRec.ImageHashInfo.HashSize =
  565. pPartialInformation->DataLength;
  566. RtlCopyMemory(&AuthzIdentsRec.ImageHashInfo.ImageHash[0],
  567. pPartialInformation->Data,
  568. pPartialInformation->DataLength);
  570. } else {
  571. Status = STATUS_UNSUCCESSFUL;
  572. break;
  573. }
  575. //
  576. // Read the algorithm used to compute the hash.
  577. //
  578. RtlInitUnicodeString(&ValueName,
  579. SAFER_IDS_HASHALG_REGVALUE);
  580. Status = NtQueryValueKey(hKeyThisIdentity,
  581. &ValueName,
  582. KeyValuePartialInformationAlign64,
  583. pPartialInformation,
  584. Size,
  585. &dwLength);
  586. if (!NT_SUCCESS(Status)) {
  587. break;
  588. }
  589. if (pPartialInformation->Type == REG_DWORD &&
  590. pPartialInformation->DataLength == sizeof(DWORD)) {
  592. AuthzIdentsRec.ImageHashInfo.HashAlgorithm =
  593. *((PDWORD) pPartialInformation->Data);
  594. } else {
  595. Status = STATUS_UNSUCCESSFUL;
  596. break;
  597. }
  598. if ((AuthzIdentsRec.ImageHashInfo.HashAlgorithm &
  599. ALG_CLASS_ALL) != ALG_CLASS_HASH) {
  600. Status = STATUS_UNSUCCESSFUL;
  601. break;
  602. }
  605. //
  606. // Read the original image size.
  607. //
  608. RtlInitUnicodeString(&ValueName,
  609. SAFER_IDS_ITEMSIZE_REGVALUE);
  610. Status = NtQueryValueKey(hKeyThisIdentity,
  611. &ValueName,
  612. KeyValuePartialInformationAlign64,
  613. pPartialInformation,
  614. Size,
  615. &dwLength);
  616. if (!NT_SUCCESS(Status)) {
  617. if (Status == STATUS_BUFFER_OVERFLOW) {
  619. //
  620. // Reallocate and retry.
  621. //
  623. RtlFreeHeap(RtlProcessHeap(), 0, (LPVOID) LocalBuffer);
  624. Size = dwLength;
  625. LocalBuffer = (PUCHAR) RtlAllocateHeap(RtlProcessHeap(), 0, Size);
  627. if (LocalBuffer == NULL)
  628. {
  629. Status = STATUS_NO_MEMORY;
  630. goto Cleanup;
  631. }
  633. pBasicInformation = (PKEY_BASIC_INFORMATION) LocalBuffer;
  634. pPartialInformation = (PKEY_VALUE_PARTIAL_INFORMATION_ALIGN64) LocalBuffer;
  636. Status = NtQueryValueKey(hKeyThisIdentity,
  637. &ValueName,
  638. KeyValuePartialInformationAlign64,
  639. pPartialInformation,
  640. Size,
  641. &dwLength);
  642. if (!NT_SUCCESS(Status)) {
  643. break;
  644. }
  645. } else {
  646. break;
  647. }
  648. }
  649. if (pPartialInformation->Type == REG_DWORD &&
  650. pPartialInformation->DataLength == sizeof(DWORD)) {
  652. AuthzIdentsRec.ImageHashInfo.ImageSize.LowPart =
  653. *((PDWORD) pPartialInformation->Data);
  654. AuthzIdentsRec.ImageHashInfo.ImageSize.HighPart = 0;
  655. } else if (pPartialInformation->Type == REG_QWORD &&
  656. pPartialInformation->DataLength == 2 * sizeof(DWORD) ) {
  658. AuthzIdentsRec.ImageHashInfo.ImageSize.QuadPart =
  659. ((PLARGE_INTEGER) pPartialInformation->Data)->QuadPart;
  660. } else {
  661. Status = STATUS_UNSUCCESSFUL;
  662. break;
  663. }
  665. //
  666. // Read the extra WinSafer flags.
  667. //
  668. RtlInitUnicodeString(&ValueName,
  669. SAFER_IDS_SAFERFLAGS_REGVALUE);
  670. Status = NtQueryValueKey(hKeyThisIdentity,
  671. &ValueName,
  672. KeyValuePartialInformationAlign64,
  673. pPartialInformation,
  674. Size,
  675. &dwLength);
  676. if (NT_SUCCESS(Status) &&
  677. pPartialInformation->Type == REG_DWORD &&
  678. pPartialInformation->DataLength == sizeof(DWORD)) {
  680. #ifdef SAFER_POLICY_ONLY_EXES
  681. AuthzIdentsRec.ImageHashInfo.dwSaferFlags =
  682. (*((PDWORD) pPartialInformation->Data)) &
  683. ~SAFER_POLICY_ONLY_EXES;
  684. #else
  685. AuthzIdentsRec.ImageHashInfo.dwSaferFlags =
  686. (*((PDWORD) pPartialInformation->Data));
  687. #endif
  689. } else {
  690. // default the flags if they are missing.
  691. AuthzIdentsRec.ImageHashInfo.dwSaferFlags = 0;
  692. Status = STATUS_SUCCESS;
  693. }
  696. break;
  698. // --------------------
  700. case SaferIdentityTypeUrlZone:
  701. //
  702. // Read the zone identifier.
  703. //
  704. RtlInitUnicodeString(&ValueName,
  705. SAFER_IDS_ITEMDATA_REGVALUE);
  706. Status = NtQueryValueKey(hKeyThisIdentity,
  707. &ValueName,
  708. KeyValuePartialInformationAlign64,
  709. pPartialInformation,
  710. Size,
  711. &dwLength);
  712. if (!NT_SUCCESS(Status)) {
  713. if (Status == STATUS_BUFFER_OVERFLOW) {
  715. //
  716. // Reallocate and retry.
  717. //
  719. RtlFreeHeap(RtlProcessHeap(), 0, (LPVOID) LocalBuffer);
  720. Size = dwLength;
  721. LocalBuffer = (PUCHAR) RtlAllocateHeap(RtlProcessHeap(), 0, Size);
  723. if (LocalBuffer == NULL)
  724. {
  725. Status = STATUS_NO_MEMORY;
  726. goto Cleanup;
  727. }
  729. pBasicInformation = (PKEY_BASIC_INFORMATION) LocalBuffer;
  730. pPartialInformation = (PKEY_VALUE_PARTIAL_INFORMATION_ALIGN64) LocalBuffer;
  732. Status = NtQueryValueKey(hKeyThisIdentity,
  733. &ValueName,
  734. KeyValuePartialInformationAlign64,
  735. pPartialInformation,
  736. Size,
  737. &dwLength);
  739. if (!NT_SUCCESS(Status)) {
  740. break;
  741. }
  742. } else {
  743. break;
  744. }
  745. }
  746. if (pPartialInformation->Type == REG_DWORD &&
  747. pPartialInformation->DataLength == sizeof(DWORD)) {
  749. AuthzIdentsRec.ImageZone.UrlZoneId =
  750. * (PDWORD) pPartialInformation->Data;
  752. } else {
  753. Status = STATUS_UNSUCCESSFUL;
  754. break;
  755. }
  757. //
  758. // Read the extra WinSafer flags.
  759. //
  760. RtlInitUnicodeString(&ValueName,
  761. SAFER_IDS_SAFERFLAGS_REGVALUE);
  762. Status = NtQueryValueKey(hKeyThisIdentity,
  763. &ValueName,
  764. KeyValuePartialInformationAlign64,
  765. pPartialInformation,
  766. Size,
  767. &dwLength);
  768. if (NT_SUCCESS(Status) &&
  769. pPartialInformation->Type == REG_DWORD &&
  770. pPartialInformation->DataLength == sizeof(DWORD)) {
  772. #ifdef SAFER_POLICY_ONLY_EXES
  773. AuthzIdentsRec.ImageZone.dwSaferFlags =
  774. (*(PDWORD) pPartialInformation->Data) &
  775. ~SAFER_POLICY_ONLY_EXES;
  776. #else
  777. AuthzIdentsRec.ImageZone.dwSaferFlags =
  778. (*(PDWORD) pPartialInformation->Data);
  779. #endif
  781. } else {
  782. // default the flags if they are missing.
  783. AuthzIdentsRec.ImageZone.dwSaferFlags = 0;
  784. Status = STATUS_SUCCESS;
  785. }
  787. break;
  789. // --------------------
  791. default:
  792. ASSERT(0 && "unexpected identity type");
  793. Status = STATUS_INVALID_INFO_CLASS;
  794. }
  796. // Only insert the record if we don't have
  797. // any other entries with this same GUID.
  798. if (NT_SUCCESS(Status)) {
  799. RtlInsertElementGenericTable(
  800. pAuthzIdentTable,
  801. (PVOID) &AuthzIdentsRec,
  802. sizeof(AUTHZIDENTSTABLERECORD),
  803. NULL);
  804. }
  805. NtClose(hKeyThisIdentity);
  806. hKeyThisIdentity = NULL;
  807. }
  809. Cleanup:
  811. if (hKeyThisIdentity != NULL) {
  812. NtClose(hKeyThisIdentity);
  813. }
  815. if (hKeyIdentityBase != NULL) {
  816. NtClose(hKeyIdentityBase);
  817. }
  819. RtlFreeHeap(RtlProcessHeap(), 0, (LPVOID) LocalBuffer);
  821. return Status;
  822. }
  825. NTSTATUS NTAPI
  826. CodeAuthzGuidIdentsLoadTableAll (
  827. IN PRTL_GENERIC_TABLE pAuthzLevelTable,
  828. IN OUT PRTL_GENERIC_TABLE pAuthzIdentTable,
  829. IN DWORD dwScopeId,
  830. IN HANDLE hKeyCustomBase
  831. )
  832. /*++
  834. Routine Description:
  836. Arguments:
  838. pAuthzLevelTable - specifies the table that has already been
  839. loaded with the WinSafer Levels that should be allowed.
  840. These Levels do not necessarily need to have been loaded
  841. from the same scope from which the Code Identities are
  842. being loaded from.
  844. pAuthzIdentTable - specifies the table into which the loaded
  845. Code Identities should be inserted.
  847. dwScopeId - scope from where the Code Identities should be loaded from.
  848. This may be AUTHZSCOPEID_MACHINE, AUTHZSCOPEID_USER, or
  849. AUTHZSCOPEID_REGISTRY.
  851. hKeyCustomBase - only used if dwScopeId was AUTHZSCOPEID_REGISTRY.
  853. Return Value:
  855. Returns STATUS_SUCCESS if no errors occurred.
  857. --*/
  858. {
  859. NTSTATUS Status;
  860. NTSTATUS WorstStatus = STATUS_SUCCESS;
  861. PVOID RestartKey;
  862. PAUTHZLEVELTABLERECORD pAuthzLevelRecord;
  865. //
  866. // Enumerate through all records and close the registry handles.
  867. //
  868. RestartKey = NULL;
  869. for (pAuthzLevelRecord = (PAUTHZLEVELTABLERECORD)
  870. RtlEnumerateGenericTableWithoutSplaying(
  871. pAuthzLevelTable, &RestartKey);
  872. pAuthzLevelRecord != NULL;
  873. pAuthzLevelRecord = (PAUTHZLEVELTABLERECORD)
  874. RtlEnumerateGenericTableWithoutSplaying(
  875. pAuthzLevelTable, &RestartKey)
  876. )
  877. {
  878. Status = SaferpGuidIdentsLoadTable(
  879. pAuthzIdentTable,
  880. dwScopeId,
  881. hKeyCustomBase,
  882. pAuthzLevelRecord->dwLevelId,
  883. SaferIdentityTypeImageName);
  884. if (!NT_SUCCESS(Status))
  885. WorstStatus = Status;
  887. Status = SaferpGuidIdentsLoadTable(
  888. pAuthzIdentTable,
  889. dwScopeId,
  890. hKeyCustomBase,
  891. pAuthzLevelRecord->dwLevelId,
  892. SaferIdentityTypeImageHash);
  893. if (!NT_SUCCESS(Status))
  894. WorstStatus = Status;
  896. Status = SaferpGuidIdentsLoadTable(
  897. pAuthzIdentTable,
  898. dwScopeId,
  899. hKeyCustomBase,
  900. pAuthzLevelRecord->dwLevelId,
  901. SaferIdentityTypeUrlZone);
  902. if (!NT_SUCCESS(Status))
  903. WorstStatus = Status;
  904. }
  907. return WorstStatus;
  908. }
  912. VOID NTAPI
  913. CodeAuthzGuidIdentsEntireTableFree (
  914. IN OUT PRTL_GENERIC_TABLE pAuthzIdentTable
  915. )
  916. /*++
  918. Routine Description:
  920. Frees the allocated memory associated with all of the entries
  921. currently within a Code Identities table. Once the table has
  922. been emptied, it may immediately be filled again without any
  923. other initialization necessary.
  925. Arguments:
  927. pAuthzIdentTable - pointer to the table that should be cleared.
  929. Return Value:
  931. Does not return any value.
  933. --*/
  934. {
  935. ULONG NumElements;
  937. //
  938. // Now iterate through the table again and free all of the
  939. // elements themselves.
  940. //
  941. NumElements = RtlNumberGenericTableElements(pAuthzIdentTable);
  943. while ( NumElements-- > 0 ) {
  944. // Delete all elements. Note that we pass NULL as the element
  945. // to delete because our compare function is smart enough to
  946. // allow treatment of NULL as a wildcard element.
  947. BOOL retval = RtlDeleteElementGenericTable( pAuthzIdentTable, NULL);
  948. ASSERT(retval == TRUE);
  949. }
  950. }
  953. PAUTHZIDENTSTABLERECORD NTAPI
  954. CodeAuthzIdentsLookupByGuid (
  955. IN PRTL_GENERIC_TABLE pAuthzIdentTable,
  956. IN REFGUID pIdentGuid
  957. )
  958. /*++
  960. Routine Description:
  962. This function searches for an identity within a GENERIC_TABLE.
  964. Arguments:
  966. pAuthzIdentTable - pointer to the Generic Table structure
  968. pIdentGuid -
  970. Return Value:
  972. Returns a pointer to the Code Identity record if the GUID
  973. specified was found. Otherwise NULL is returned.
  975. --*/
  976. {
  977. AUTHZIDENTSTABLERECORD AuthzIdentsRec;
  979. RtlCopyMemory(&AuthzIdentsRec.IdentGuid, pIdentGuid, sizeof(GUID));
  980. return (PAUTHZIDENTSTABLERECORD)
  981. RtlLookupElementGenericTable(pAuthzIdentTable,
  982. (PVOID) &AuthzIdentsRec);
  983. }