archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2 Commits
1 Branch
0 Tags
3.3 GiB
Tree: 7b07a90fc1
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '7b07a90fc1'
${ noResults }
windows-server-2003/inetsrv/iis/iisrearc/iisplus/ulw3/digestprovider.cxx

1175 lines
35 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. /*++
  2. Copyright (c) 1999 Microsoft Corporation
  4. Module Name :
  5. digestprovider.cxx
  7. Abstract:
  8. Digest authentication provider
  10. Author:
  11. Ming Lu (minglu) 24-Jun-2000
  13. Environment:
  14. Win32 - User Mode
  16. Project:
  17. ULW3.DLL
  18. --*/
  20. #include "precomp.hxx"
  21. #include "uuencode.hxx"
  23. //static
  24. HRESULT
  25. DIGEST_AUTH_PROVIDER::Initialize(
  26. DWORD dwInternalId
  27. )
  28. /*++
  30. Routine Description:
  32. Initialize Digest SSPI provider
  34. Arguments:
  36. None
  38. Return Value:
  40. HRESULT
  42. --*/
  43. {
  44. SetInternalId( dwInternalId );
  46. return NO_ERROR;
  47. }
  49. //static
  50. VOID
  51. DIGEST_AUTH_PROVIDER::Terminate(
  52. VOID
  53. )
  54. /*++
  56. Routine Description:
  58. Terminate SSPI Digest provider
  60. Arguments:
  62. None
  64. Return Value:
  66. None
  68. --*/
  69. {
  70. // no-op
  71. }
  73. HRESULT
  74. DIGEST_AUTH_PROVIDER::DoesApply(
  75. W3_MAIN_CONTEXT * pMainContext,
  76. BOOL * pfApplies
  77. )
  78. /*++
  80. Routine Description:
  82. Does the given request have credentials applicable to the Digest
  83. provider
  85. Arguments:
  87. pMainContext - Main context representing request
  88. pfApplies - Set to true if Digest is applicable
  91. Return Value:
  93. HRESULT
  95. --*/
  96. {
  97. SSPI_CONTEXT_STATE * pContextState;
  98. LPCSTR pszAuthHeader;
  99. HRESULT hr;
  100. PCHAR szDigest = "Digest";
  101. DWORD cchDigest = sizeof("Digest") - 1;
  102. USHORT cchAuthHeader = 0;
  104. if ( pMainContext == NULL ||
  105. pfApplies == NULL )
  106. {
  107. DBG_ASSERT( FALSE );
  108. return HRESULT_FROM_WIN32( ERROR_INVALID_PARAMETER );
  109. }
  111. *pfApplies = FALSE;
  113. //
  114. // Is using of Digest SSP enabled?
  115. //
  116. if ( !g_pW3Server->QueryUseDigestSSP() )
  117. {
  118. return NO_ERROR;
  119. }
  121. //
  122. // Get authorization header
  123. //
  125. pszAuthHeader = pMainContext->QueryRequest()->GetHeader( HttpHeaderAuthorization,
  126. &cchAuthHeader );
  128. //
  129. // No package, no auth
  130. //
  132. if ( pszAuthHeader == NULL )
  133. {
  134. return NO_ERROR;
  135. }
  137. //
  138. // Is it Digest?
  139. //
  141. if ( _strnicmp( pszAuthHeader, szDigest, cchDigest ) == 0 )
  142. {
  143. //
  144. // Save away the package so we don't have to calc again
  145. //
  147. DBG_ASSERT( pszAuthHeader != NULL );
  149. pContextState = new (pMainContext) SSPI_CONTEXT_STATE(
  150. ( cchAuthHeader > cchDigest ) ? ( pszAuthHeader + cchDigest + 1 ) : "" );
  151. if ( pContextState == NULL )
  152. {
  153. return HRESULT_FROM_WIN32( GetLastError() );
  154. }
  156. hr = pContextState->SetPackage( szDigest );
  157. if ( FAILED( hr ) )
  158. {
  159. DBGPRINTF(( DBG_CONTEXT,
  160. "Error in SetPackage(). hr = %x\n",
  161. hr ));
  162. delete pContextState;
  163. pContextState = NULL;
  164. return hr;
  165. }
  167. pMainContext->SetContextState( pContextState );
  169. *pfApplies = TRUE;
  170. }
  172. return NO_ERROR;
  173. }
  175. HRESULT
  176. DIGEST_AUTH_PROVIDER::DoAuthenticate(
  177. W3_MAIN_CONTEXT * pMainContext,
  178. BOOL * // unused
  179. )
  180. /*++
  182. Description:
  184. Do authentication work (we will be called if we apply)
  186. Arguments:
  188. pMainContext - Main context
  189. pfFilterFinished - Set to TRUE if filter wants out
  191. Return Value:
  193. HRESULT
  195. --*/
  196. {
  197. DWORD err;
  198. HRESULT hr = E_FAIL;
  199. W3_METADATA * pMetaData = NULL;
  200. W3_REQUEST * pW3Request = NULL;
  201. SSPI_SECURITY_CONTEXT * pDigestSecurityContext = NULL;
  202. SSPI_CONTEXT_STATE * pContextState = NULL;
  203. SSPI_USER_CONTEXT * pUserContext = NULL;
  204. SSPI_CREDENTIAL * pDigestCredentials = NULL;
  206. SecBufferDesc SecBuffDescOutput;
  207. SecBufferDesc SecBuffDescInput;
  209. //
  210. // We have 5 input buffer and 1 output buffer to fill data
  211. // in for digest authentication
  212. //
  214. SecBuffer SecBuffTokenOut[ 1 ];
  215. SecBuffer SecBuffTokenIn[ 5 ];
  217. SECURITY_STATUS secStatus = SEC_E_OK;
  219. CtxtHandle hServerCtxtHandle;
  221. TimeStamp Lifetime;
  223. ULONG ContextReqFlags = 0;
  224. ULONG ContextAttributes = 0;
  226. STACK_STRU( strOutputHeader, 256 );
  228. STACK_BUFFER( bufOutputBuffer, 4096 );
  229. STACK_STRA( strMethod, 10 );
  230. STACK_STRU( strUrl, MAX_PATH );
  231. STACK_STRA( strUrlA, MAX_PATH );
  232. STACK_STRU( strRealm, 128 );
  234. SecPkgContext_Target Target;
  235. STACK_STRU( strDigestUri, MAX_PATH + 1 );
  236. ULONG cbBytesCopied;
  238. SecInvalidateHandle( &hServerCtxtHandle );
  240. if ( pMainContext == NULL )
  241. {
  242. DBG_ASSERT( FALSE );
  243. return HRESULT_FROM_WIN32( ERROR_INVALID_PARAMETER );
  244. }
  246. pContextState = ( SSPI_CONTEXT_STATE* )
  247. pMainContext->QueryContextState();
  248. DBG_ASSERT( pContextState != NULL );
  250. pMetaData = pMainContext->QueryUrlContext()->QueryMetaData();
  251. DBG_ASSERT( pMetaData != NULL );
  253. pW3Request = pMainContext->QueryRequest();
  254. DBG_ASSERT( pW3Request != NULL );
  256. //
  257. // clean the memory and set it to zero
  258. //
  259. ZeroMemory( &SecBuffDescInput , sizeof( SecBufferDesc ) );
  260. ZeroMemory( SecBuffTokenIn , sizeof( SecBuffTokenIn ) );
  262. //
  263. // define the buffer descriptor for the Input
  264. //
  266. SecBuffDescInput.ulVersion = SECBUFFER_VERSION;
  267. SecBuffDescInput.cBuffers = 5;
  268. SecBuffDescInput.pBuffers = SecBuffTokenIn;
  270. //
  271. // set the digest auth header in the buffer
  272. //
  274. SecBuffTokenIn[0].BufferType = SECBUFFER_TOKEN;
  275. SecBuffTokenIn[0].cbBuffer = strlen(pContextState->QueryCredentials());
  276. SecBuffTokenIn[0].pvBuffer = (void*) pContextState->QueryCredentials();
  278. //
  279. // Get and Set the information for the method
  280. //
  282. hr = pW3Request->GetVerbString( &strMethod );
  283. if ( FAILED( hr ) )
  284. {
  285. DBGPRINTF(( DBG_CONTEXT,
  286. "Error getting the method. hr = %x\n",
  287. hr ));
  288. return hr;
  289. }
  291. SecBuffTokenIn[1].BufferType = SECBUFFER_PKG_PARAMS;
  292. SecBuffTokenIn[1].cbBuffer = strMethod.QueryCB();
  293. SecBuffTokenIn[1].pvBuffer = ( PVOID )strMethod.QueryStr();
  295. //
  296. // Get and Set the infomation for the Url
  297. //
  299. hr = pW3Request->GetUrl( &strUrl );
  300. if( FAILED( hr ) )
  301. {
  302. DBGPRINTF(( DBG_CONTEXT,
  303. "Error getting the URL. hr = %x\n",
  304. hr ));
  305. return hr;
  306. }
  308. hr = strUrlA.CopyW( strUrl.QueryStr() );
  309. if( FAILED( hr ) )
  310. {
  311. DBGPRINTF(( DBG_CONTEXT,
  312. "Error copying the URL. hr = %x\n",
  313. hr ));
  314. return hr;
  315. }
  317. SecBuffTokenIn[2].BufferType = SECBUFFER_PKG_PARAMS;
  318. SecBuffTokenIn[2].cbBuffer = strUrlA.QueryCB();
  319. SecBuffTokenIn[2].pvBuffer = ( PVOID )strUrlA.QueryStr();
  322. //
  323. // Get and Set the information for the hentity
  324. //
  325. SecBuffTokenIn[3].BufferType = SECBUFFER_PKG_PARAMS;
  326. SecBuffTokenIn[3].cbBuffer = 0; // this is not yet implemeted
  327. SecBuffTokenIn[3].pvBuffer = NULL; // this is not yet implemeted
  329. //
  330. // Get a Security Context
  331. //
  333. //
  334. // get the credential for the server
  335. //
  337. hr = SSPI_CREDENTIAL::GetCredential( NTDIGEST_SP_NAME,
  338. &pDigestCredentials );
  339. if ( FAILED( hr ) )
  340. {
  341. DBGPRINTF((DBG_CONTEXT,
  342. "Error get credential handle. hr = 0x%x \n",
  343. hr ));
  345. return hr;
  346. }
  348. DBG_ASSERT( pDigestCredentials != NULL );
  350. //
  351. // Resize the output buffer to max token size
  352. //
  353. if( !bufOutputBuffer.Resize(
  354. pDigestCredentials->QueryMaxTokenSize() ) )
  355. {
  356. return HRESULT_FROM_WIN32( ERROR_NOT_ENOUGH_MEMORY );
  357. }
  359. if( pW3Request->IsProxyRequest() )
  360. {
  361. //
  362. // If the request comes from a proxy, we shouldn't use the
  363. // security context associate with the connection because
  364. // the request could actually come from a different client
  365. //
  367. SetConnectionAuthContext( pMainContext,
  368. NULL );
  369. }
  371. pDigestSecurityContext =
  372. ( SSPI_SECURITY_CONTEXT * ) QueryConnectionAuthContext( pMainContext );
  374. //
  375. // check to see if there is an old Context Handle
  376. //
  377. if ( pDigestSecurityContext != NULL )
  378. {
  379. //
  380. // defined the buffer
  381. //
  382. SecBuffTokenIn[4].BufferType = SECBUFFER_TOKEN;
  383. SecBuffTokenIn[4].cbBuffer = bufOutputBuffer.QuerySize();
  384. SecBuffTokenIn[4].pvBuffer =
  385. ( PVOID )bufOutputBuffer.QueryPtr();
  387. secStatus = VerifySignature(
  388. pDigestSecurityContext->QueryContextHandle(),
  389. &SecBuffDescInput,
  390. 0,
  391. 0 );
  392. if( FAILED( secStatus ) )
  393. {
  394. //
  395. // Clean up the security context cause we will initialize
  396. // another new challenge on the same connection
  397. //
  399. SetConnectionAuthContext( pMainContext,
  400. NULL );
  401. }
  402. }
  404. if( pDigestSecurityContext == NULL || FAILED( secStatus ) )
  405. {
  406. //
  407. // clean the memory and set it to zero
  408. //
  409. ZeroMemory( &SecBuffDescOutput, sizeof( SecBufferDesc ) );
  410. ZeroMemory( SecBuffTokenOut , sizeof( SecBuffTokenOut ) );
  412. //
  413. // define the buffer descriptor for the Outpt
  414. //
  415. SecBuffDescOutput.ulVersion = SECBUFFER_VERSION;
  416. SecBuffDescOutput.cBuffers = 1;
  417. SecBuffDescOutput.pBuffers = SecBuffTokenOut;
  419. SecBuffTokenOut[0].BufferType = SECBUFFER_TOKEN;
  420. SecBuffTokenOut[0].cbBuffer = bufOutputBuffer.QuerySize();
  421. SecBuffTokenOut[0].pvBuffer = ( PVOID )bufOutputBuffer.QueryPtr();
  423. //
  424. // Get and Set the Realm Information
  425. //
  427. if( pMetaData->QueryRealm() )
  428. {
  429. hr = strRealm.Copy( pMetaData->QueryRealm() );
  430. if( FAILED( hr ) )
  431. {
  432. DBGPRINTF(( DBG_CONTEXT,
  433. "Error copying the realm. hr = %x\n",
  434. hr ));
  435. return hr;
  436. }
  438. //
  439. // Limit the realm length to 1024 since there is limitation in Digest SSP
  440. //
  442. if( strRealm.QueryCCH() > 1024 )
  443. {
  444. return E_FAIL;
  445. }
  447. SecBuffTokenIn[4].BufferType = SECBUFFER_PKG_PARAMS;
  448. SecBuffTokenIn[4].cbBuffer = strRealm.QueryCB();
  449. SecBuffTokenIn[4].pvBuffer = ( PVOID )strRealm.QueryStr();
  450. }
  451. else
  452. {
  453. SecBuffTokenIn[4].BufferType = SECBUFFER_PKG_PARAMS;
  454. SecBuffTokenIn[4].cbBuffer = 0;
  455. SecBuffTokenIn[4].pvBuffer = NULL;
  456. }
  458. //
  459. // set the flags
  460. //
  461. ContextReqFlags = ASC_REQ_REPLAY_DETECT |
  462. ASC_REQ_CONNECTION;
  464. //
  465. // Register the remote IP address with LSA so that it can be logged
  466. //
  468. if( pW3Request->QueryRemoteAddressType() == AF_INET )
  469. {
  470. secStatus = SecpSetIPAddress(
  471. ( PUCHAR )pW3Request->QueryRemoteSockAddress(),
  472. sizeof( SOCKADDR_IN ) );
  473. }
  474. else if( pW3Request->QueryRemoteAddressType() == AF_INET6 )
  475. {
  476. secStatus = SecpSetIPAddress(
  477. ( PUCHAR )pW3Request->QueryRemoteSockAddress(),
  478. sizeof( SOCKADDR_IN6 ) );
  479. }
  480. else
  481. {
  482. DBG_ASSERT( FALSE );
  483. }
  485. if( FAILED( secStatus ) )
  486. {
  487. return secStatus;
  488. }
  490. ThreadPoolSetInfo( ThreadPoolIncMaxPoolThreads, 0 );
  492. //
  493. // get the security context
  494. //
  495. secStatus = AcceptSecurityContext(
  496. pDigestCredentials->QueryCredHandle(),
  497. NULL,
  498. &SecBuffDescInput,
  499. ContextReqFlags,
  500. SECURITY_NATIVE_DREP,
  501. &hServerCtxtHandle,
  502. &SecBuffDescOutput,
  503. &ContextAttributes,
  504. &Lifetime);
  506. if (g_pW3Server->QueryDigestContextCache()->QueryTraceLog() != NULL)
  507. {
  508. WriteRefTraceLogEx(g_pW3Server->QueryDigestContextCache()->QueryTraceLog(),
  509. 1,
  510. (PVOID)hServerCtxtHandle.dwLower,
  511. (PVOID)hServerCtxtHandle.dwUpper,
  512. (PVOID)(ULONG_PTR)secStatus,
  513. NULL);
  514. }
  516. ThreadPoolSetInfo( ThreadPoolDecMaxPoolThreads, 0 );
  518. if( secStatus == SEC_E_WRONG_PRINCIPAL )
  519. {
  520. //
  521. // The error is caused by changes of the machine password, we
  522. // need to regenerate a credential handle in this case
  523. //
  525. SSPI_CREDENTIAL::RemoveCredentialFromCache( pDigestCredentials );
  527. hr = SSPI_CREDENTIAL::GetCredential( NTDIGEST_SP_NAME,
  528. &pDigestCredentials );
  530. if ( FAILED( hr ) )
  531. {
  532. DBGPRINTF((DBG_CONTEXT,
  533. "Error get credential handle. hr = 0x%x \n",
  534. hr ));
  536. return hr;
  537. }
  539. //
  540. // Register the remote IP address with LSA so that it can be logged
  541. //
  543. if( pW3Request->QueryRemoteAddressType() == AF_INET )
  544. {
  545. secStatus = SecpSetIPAddress(
  546. ( PUCHAR )pW3Request->QueryRemoteSockAddress(),
  547. sizeof( SOCKADDR_IN ) );
  548. }
  549. else if( pW3Request->QueryRemoteAddressType() == AF_INET6 )
  550. {
  551. secStatus = SecpSetIPAddress(
  552. ( PUCHAR )pW3Request->QueryRemoteSockAddress(),
  553. sizeof( SOCKADDR_IN6 ) );
  554. }
  555. else
  556. {
  557. DBG_ASSERT( FALSE );
  558. }
  560. if( FAILED( secStatus ) )
  561. {
  562. return secStatus;
  563. }
  565. ThreadPoolSetInfo( ThreadPoolIncMaxPoolThreads, 0 );
  567. secStatus = AcceptSecurityContext( pDigestCredentials->QueryCredHandle(),
  568. NULL,
  569. &SecBuffDescInput,
  570. ContextReqFlags,
  571. SECURITY_NATIVE_DREP,
  572. &hServerCtxtHandle,
  573. &SecBuffDescOutput,
  574. &ContextAttributes,
  575. &Lifetime );
  577. if (g_pW3Server->QueryDigestContextCache()->QueryTraceLog() != NULL)
  578. {
  579. WriteRefTraceLogEx(g_pW3Server->QueryDigestContextCache()->QueryTraceLog(),
  580. 1,
  581. (PVOID)hServerCtxtHandle.dwLower,
  582. (PVOID)hServerCtxtHandle.dwUpper,
  583. (PVOID)(ULONG_PTR)secStatus,
  584. NULL);
  585. }
  587. ThreadPoolSetInfo( ThreadPoolDecMaxPoolThreads, 0 );
  589. }
  591. if( SEC_I_COMPLETE_NEEDED == secStatus )
  592. {
  593. //
  594. //defined the buffer
  595. //
  597. SecBuffTokenIn[4].BufferType = SECBUFFER_TOKEN;
  598. SecBuffTokenIn[4].cbBuffer = bufOutputBuffer.QuerySize();
  599. SecBuffTokenIn[4].pvBuffer =
  600. ( PVOID )bufOutputBuffer.QueryPtr();
  602. secStatus = CompleteAuthToken(
  603. &hServerCtxtHandle,
  604. &SecBuffDescInput
  605. );
  606. }
  608. if ( SUCCEEDED( secStatus ) )
  609. {
  610. //
  611. // Check URI field match URL
  612. //
  614. secStatus = QueryContextAttributes( &hServerCtxtHandle,
  615. SECPKG_ATTR_TARGET,
  616. &Target );
  617. if( SUCCEEDED( secStatus ) )
  618. {
  619. if( Target.TargetLength )
  620. {
  621. if( !strDigestUri.QueryBuffer()->Resize(
  622. (Target.TargetLength + 1) * sizeof(WCHAR) ) )
  623. {
  624. FreeContextBuffer( Target.Target );
  625. hr = HRESULT_FROM_WIN32( ERROR_NOT_ENOUGH_MEMORY );
  626. goto Cleanup;
  627. }
  629. //
  630. // Normalize DigestUri
  631. //
  633. hr = UlCleanAndCopyUrl( ( PUCHAR )Target.Target,
  634. Target.TargetLength,
  635. &cbBytesCopied,
  636. strDigestUri.QueryStr(),
  637. NULL );
  639. FreeContextBuffer( Target.Target );
  641. if( FAILED( hr ) )
  642. {
  643. goto Cleanup;
  644. }
  646. //
  647. // after modyfing string data in internal buffer
  648. // call SyncWithBuffer to synchronize string length
  649. //
  650. strDigestUri.SyncWithBuffer();
  652. if ( !strUrl.Equals( strDigestUri ) )
  653. {
  654. //
  655. // Note: RFC says that BAD REQUEST should be returned
  656. // but for now to be backward compatible with IIS5.1
  657. // we will return ACCESS_DENIED
  658. //
  660. if (g_pW3Server->QueryDigestContextCache()->QueryTraceLog() != NULL)
  661. {
  662. WriteRefTraceLogEx(g_pW3Server->QueryDigestContextCache()->QueryTraceLog(),
  663. 0,
  664. (PVOID)hServerCtxtHandle.dwLower,
  665. (PVOID)hServerCtxtHandle.dwUpper,
  666. NULL,
  667. NULL);
  668. }
  670. DeleteSecurityContext( &hServerCtxtHandle );
  671. secStatus = E_FAIL;
  672. }
  673. else
  674. {
  675. pDigestSecurityContext = new SSPI_SECURITY_CONTEXT(
  676. pDigestCredentials,
  677. TRUE );
  678. if ( NULL == pDigestSecurityContext )
  679. {
  680. hr = HRESULT_FROM_WIN32( ERROR_NOT_ENOUGH_MEMORY );
  681. goto Cleanup;
  682. }
  684. pDigestSecurityContext->SetContextHandle(
  685. hServerCtxtHandle );
  687. pDigestSecurityContext->SetContextAttributes(
  688. ContextAttributes );
  690. //
  691. // Mark the security context is complete, so we can detect
  692. // reauthentication on the same connection
  693. //
  695. pDigestSecurityContext->SetIsComplete( TRUE );
  697. if (FAILED( hr = SetConnectionAuthContext(
  698. pMainContext,
  699. pDigestSecurityContext )))
  700. {
  701. //
  702. // There is no connection, no point creating
  703. // the response
  704. //
  705. goto Cleanup;
  706. }
  707. }
  708. }
  709. else
  710. {
  711. if (g_pW3Server->QueryDigestContextCache()->QueryTraceLog() != NULL)
  712. {
  713. WriteRefTraceLogEx(g_pW3Server->QueryDigestContextCache()->QueryTraceLog(),
  714. 0,
  715. (PVOID)hServerCtxtHandle.dwLower,
  716. (PVOID)hServerCtxtHandle.dwUpper,
  717. NULL,
  718. NULL);
  719. }
  721. DeleteSecurityContext( &hServerCtxtHandle );
  722. secStatus = E_FAIL;
  723. }
  724. }
  725. else
  726. {
  727. if (g_pW3Server->QueryDigestContextCache()->QueryTraceLog() != NULL)
  728. {
  729. WriteRefTraceLogEx(g_pW3Server->QueryDigestContextCache()->QueryTraceLog(),
  730. 0,
  731. (PVOID)hServerCtxtHandle.dwLower,
  732. (PVOID)hServerCtxtHandle.dwUpper,
  733. NULL,
  734. NULL);
  735. }
  737. DeleteSecurityContext( &hServerCtxtHandle );
  738. }
  739. }
  740. }
  742. if( FAILED( secStatus ) )
  743. {
  744. err = GetLastError();
  745. if( err == ERROR_PASSWORD_MUST_CHANGE ||
  746. err == ERROR_PASSWORD_EXPIRED )
  747. {
  748. return HRESULT_FROM_WIN32( err );
  749. }
  751. hr = SetDigestHeader( pMainContext );
  752. if( FAILED( hr ) )
  753. {
  754. return hr;
  755. }
  757. pMainContext->SetProviderHandled( TRUE );
  759. pMainContext->QueryResponse()->SetStatus( HttpStatusUnauthorized,
  760. Http401BadLogon );
  762. pMainContext->SetErrorStatus( secStatus );
  763. }
  764. else
  765. {
  766. //
  767. // Create a user context and set it up
  768. //
  770. pUserContext = new SSPI_USER_CONTEXT( this );
  771. if ( pUserContext == NULL )
  772. {
  773. return HRESULT_FROM_WIN32( ERROR_NOT_ENOUGH_MEMORY );
  774. }
  776. hr = pUserContext->Create( pDigestSecurityContext, pMainContext );
  777. if ( FAILED( hr ) )
  778. {
  779. pUserContext->DereferenceUserContext();
  780. pUserContext = NULL;
  781. return hr;
  782. }
  784. pMainContext->SetUserContext( pUserContext );
  785. }
  787. return NO_ERROR;
  789. Cleanup:
  791. if ( pDigestSecurityContext != NULL )
  792. {
  793. pDigestSecurityContext->Cleanup();
  794. pDigestSecurityContext = NULL;
  795. }
  796. else if ( SecIsValidHandle( &hServerCtxtHandle ) )
  797. {
  798. if (g_pW3Server->QueryDigestContextCache()->QueryTraceLog() != NULL)
  799. {
  800. WriteRefTraceLogEx(g_pW3Server->QueryDigestContextCache()->QueryTraceLog(),
  801. 0,
  802. (PVOID)hServerCtxtHandle.dwLower,
  803. (PVOID)hServerCtxtHandle.dwUpper,
  804. NULL,
  805. NULL);
  806. }
  808. DeleteSecurityContext( &hServerCtxtHandle );
  809. }
  811. return hr;
  812. }
  814. HRESULT
  815. DIGEST_AUTH_PROVIDER::OnAccessDenied(
  816. W3_MAIN_CONTEXT * pMainContext
  817. )
  818. /*++
  820. Description:
  822. Add WWW-Authenticate Digest headers on access denied
  824. Arguments:
  826. pMainContext - main context
  828. Return Value:
  830. HRESULT
  832. --*/
  833. {
  834. if ( pMainContext == NULL )
  835. {
  836. DBG_ASSERT( FALSE );
  837. return HRESULT_FROM_WIN32( ERROR_INVALID_PARAMETER );
  838. }
  840. //
  841. // Is using of Digest SSP enabled?
  842. //
  843. if ( !g_pW3Server->QueryUseDigestSSP() )
  844. {
  845. return NO_ERROR;
  846. }
  848. if( !W3_STATE_AUTHENTICATION::QueryIsDomainMember() )
  849. {
  850. //
  851. // We are not a domain member, so do nothing
  852. //
  853. return NO_ERROR;
  854. }
  856. return SetDigestHeader( pMainContext );
  857. }
  859. HRESULT
  860. DIGEST_AUTH_PROVIDER::SetDigestHeader(
  861. IN W3_MAIN_CONTEXT * pMainContext
  862. )
  863. /*++
  865. Description:
  867. Add WWW-Authenticate Digest headers
  869. Arguments:
  871. pMainContext - main context
  873. Return Value:
  875. HRESULT
  877. --*/
  878. {
  879. HRESULT hr = E_FAIL;
  880. W3_METADATA * pMetaData;
  882. //
  883. // 4096 is the max output for digest authenticaiton
  884. //
  886. STACK_BUFFER( bufOutputBuffer, 4096 );
  887. STACK_STRA( strOutputHeader, MAX_PATH );
  888. STACK_STRA( strMethod, 10 );
  889. STACK_STRU( strUrl, MAX_PATH );
  890. STACK_STRA( strUrlA, MAX_PATH );
  891. STACK_STRU( strRealm, 128 );
  893. SecBufferDesc SecBuffDescOutput;
  894. SecBufferDesc SecBuffDescInput;
  896. SecBuffer SecBuffTokenOut[ 1 ];
  897. SecBuffer SecBuffTokenIn[ 5 ];
  899. SECURITY_STATUS secStatus = SEC_E_OK;
  901. SSPI_CREDENTIAL * pDigestCredential = NULL;
  902. CtxtHandle hServerCtxtHandle;
  904. ULONG ContextReqFlags = 0;
  905. ULONG ContextAttributes = 0;
  906. TimeStamp Lifetime;
  908. pMetaData = pMainContext->QueryUrlContext()->QueryMetaData();
  909. DBG_ASSERT( pMetaData != NULL );
  911. //
  912. // Get a Security Context
  913. //
  915. //
  916. // get the credential for the server
  917. //
  919. hr = SSPI_CREDENTIAL::GetCredential( NTDIGEST_SP_NAME,
  920. &pDigestCredential );
  921. if ( FAILED( hr ) )
  922. {
  923. DBGPRINTF((DBG_CONTEXT,
  924. "Error get credential handle. hr = 0x%x \n",
  925. hr ));
  927. return hr;
  928. }
  930. DBG_ASSERT( pDigestCredential != NULL );
  932. if( !bufOutputBuffer.Resize(
  933. pDigestCredential->QueryMaxTokenSize() ) )
  934. {
  935. hr = HRESULT_FROM_WIN32( ERROR_NOT_ENOUGH_MEMORY );
  937. DBGPRINTF((DBG_CONTEXT,
  938. "Error resize the output buffer. hr = 0x%x \n",
  939. hr ));
  941. return hr;
  942. }
  945. //
  946. // clean the memory and set it to zero
  947. //
  948. ZeroMemory( &SecBuffDescOutput, sizeof( SecBufferDesc ) );
  949. ZeroMemory( SecBuffTokenOut , sizeof( SecBuffTokenOut ) );
  951. ZeroMemory( &SecBuffDescInput , sizeof( SecBufferDesc ) );
  952. ZeroMemory( SecBuffTokenIn , sizeof( SecBuffTokenIn ) );
  954. //
  955. // define the OUTPUT
  956. //
  958. SecBuffDescOutput.ulVersion = SECBUFFER_VERSION;
  959. SecBuffDescOutput.cBuffers = 1;
  960. SecBuffDescOutput.pBuffers = SecBuffTokenOut;
  962. SecBuffTokenOut[0].BufferType = SECBUFFER_TOKEN;
  963. SecBuffTokenOut[0].cbBuffer = bufOutputBuffer.QuerySize();
  964. SecBuffTokenOut[0].pvBuffer = ( PVOID )bufOutputBuffer.QueryPtr();
  966. //
  967. // define the Input
  968. //
  970. SecBuffDescInput.ulVersion = SECBUFFER_VERSION;
  971. SecBuffDescInput.cBuffers = 5;
  972. SecBuffDescInput.pBuffers = SecBuffTokenIn;
  974. //
  975. // Get and Set the information for the challenge
  976. //
  978. //
  979. // set the inforamtion in the buffer, this case is Null to
  980. // authenticate user
  981. //
  982. SecBuffTokenIn[0].BufferType = SECBUFFER_TOKEN;
  983. SecBuffTokenIn[0].cbBuffer = 0;
  984. SecBuffTokenIn[0].pvBuffer = NULL;
  986. //
  987. // Get and Set the information for the method
  988. //
  990. hr = pMainContext->QueryRequest()->GetVerbString( &strMethod );
  991. if ( FAILED( hr ) )
  992. {
  993. DBGPRINTF(( DBG_CONTEXT,
  994. "Error getting the method. hr = %x\n",
  995. hr ));
  996. return hr;
  997. }
  999. SecBuffTokenIn[1].BufferType = SECBUFFER_PKG_PARAMS;
  1000. SecBuffTokenIn[1].cbBuffer = strMethod.QueryCB();
  1001. SecBuffTokenIn[1].pvBuffer = strMethod.QueryStr();
  1003. //
  1004. // Get and Set the infomation for the Url
  1005. //
  1007. hr = pMainContext->QueryRequest()->GetUrl( &strUrl );
  1008. if( FAILED( hr ) )
  1009. {
  1010. DBGPRINTF(( DBG_CONTEXT,
  1011. "Error getting the URL. hr = %x\n",
  1012. hr ));
  1013. return hr;
  1014. }
  1016. hr = strUrlA.CopyW( strUrl.QueryStr() );
  1017. if( FAILED( hr ) )
  1018. {
  1019. DBGPRINTF(( DBG_CONTEXT,
  1020. "Error copying the URL. hr = %x\n",
  1021. hr ));
  1022. return hr;
  1023. }
  1025. SecBuffTokenIn[2].BufferType = SECBUFFER_PKG_PARAMS;
  1026. SecBuffTokenIn[2].cbBuffer = strUrlA.QueryCB();
  1027. SecBuffTokenIn[2].pvBuffer = ( PVOID )strUrlA.QueryStr();
  1029. //
  1030. // Get and Set the information for the hentity
  1031. //
  1032. SecBuffTokenIn[3].BufferType = SECBUFFER_PKG_PARAMS;
  1033. SecBuffTokenIn[3].cbBuffer = 0; // this is not yet implemeted
  1034. SecBuffTokenIn[3].pvBuffer = NULL; // this is not yet implemeted
  1036. //
  1037. //Get and Set the Realm Information
  1038. //
  1040. if( pMetaData->QueryRealm() )
  1041. {
  1042. hr = strRealm.Copy( pMetaData->QueryRealm() );
  1043. if( FAILED( hr ) )
  1044. {
  1045. DBGPRINTF(( DBG_CONTEXT,
  1046. "Error copying the realm. hr = %x\n",
  1047. hr ));
  1048. return hr;
  1049. }
  1051. //
  1052. // Limit the realm length to 1024 since there is limitation in Digest SSP
  1053. //
  1055. if( strRealm.QueryCCH() > 1024 )
  1056. {
  1057. return E_FAIL;
  1058. }
  1060. SecBuffTokenIn[4].BufferType = SECBUFFER_PKG_PARAMS;
  1061. SecBuffTokenIn[4].cbBuffer = strRealm.QueryCB();
  1062. SecBuffTokenIn[4].pvBuffer = ( PVOID )strRealm.QueryStr();
  1063. }
  1064. else
  1065. {
  1066. SecBuffTokenIn[4].BufferType = SECBUFFER_PKG_PARAMS;
  1067. SecBuffTokenIn[4].cbBuffer = 0;
  1068. SecBuffTokenIn[4].pvBuffer = NULL;
  1069. }
  1071. //
  1072. // set the flags
  1073. //
  1075. ContextReqFlags = ASC_REQ_REPLAY_DETECT |
  1076. ASC_REQ_CONNECTION;
  1078. ThreadPoolSetInfo( ThreadPoolIncMaxPoolThreads, 0 );
  1080. //
  1081. // get the security context
  1082. //
  1083. secStatus = AcceptSecurityContext(
  1084. pDigestCredential->QueryCredHandle(),
  1085. NULL,
  1086. &SecBuffDescInput,
  1087. ContextReqFlags,
  1088. SECURITY_NATIVE_DREP,
  1089. &hServerCtxtHandle,
  1090. &SecBuffDescOutput,
  1091. &ContextAttributes,
  1092. &Lifetime);
  1094. if (g_pW3Server->QueryDigestContextCache()->QueryTraceLog() != NULL)
  1095. {
  1096. WriteRefTraceLogEx(g_pW3Server->QueryDigestContextCache()->QueryTraceLog(),
  1097. 1,
  1098. (PVOID)hServerCtxtHandle.dwLower,
  1099. (PVOID)hServerCtxtHandle.dwUpper,
  1100. (PVOID)(ULONG_PTR)secStatus,
  1101. NULL);
  1102. }
  1104. ThreadPoolSetInfo( ThreadPoolDecMaxPoolThreads, 0 );
  1106. //
  1107. // a challenge has to be send back to the client
  1108. //
  1110. if ( SEC_I_CONTINUE_NEEDED == secStatus )
  1111. {
  1113. //
  1114. // The partial server context generated from the ASC call needs
  1115. // to be deleted if the client doesn't authenticate again in some
  1116. // time, the digest security context cache will handle this
  1117. //
  1119. hr = g_pW3Server->QueryDigestContextCache()->
  1120. AddContextCacheEntry( &hServerCtxtHandle );
  1121. if( FAILED( hr ) )
  1122. {
  1123. if (g_pW3Server->QueryDigestContextCache()->QueryTraceLog() != NULL)
  1124. {
  1125. WriteRefTraceLogEx(g_pW3Server->QueryDigestContextCache()->QueryTraceLog(),
  1126. 0,
  1127. (PVOID)hServerCtxtHandle.dwLower,
  1128. (PVOID)hServerCtxtHandle.dwUpper,
  1129. NULL,
  1130. NULL);
  1131. }
  1133. DeleteSecurityContext( &hServerCtxtHandle );
  1135. return hr;
  1136. }
  1138. //
  1139. // Do we already have a digest security context
  1140. //
  1142. hr = strOutputHeader.Copy( "Digest " );
  1143. if( FAILED( hr ) )
  1144. {
  1145. return hr;
  1146. }
  1148. hr = strOutputHeader.Append(
  1149. ( CHAR * )SecBuffDescOutput.pBuffers[0].pvBuffer,
  1150. SecBuffDescOutput.pBuffers[0].cbBuffer );
  1151. if( FAILED( hr ) )
  1152. {
  1153. return hr;
  1154. }
  1156. //
  1157. // Add the header WWW-Authenticate to the response after a
  1158. // 401 server error
  1159. //
  1161. hr = pMainContext->QueryResponse()->SetHeader(
  1162. "WWW-Authenticate",
  1163. 16,
  1164. strOutputHeader.QueryStr(),
  1165. (USHORT)strOutputHeader.QueryCCH()
  1166. );
  1167. }
  1168. else
  1169. {
  1170. hr = S_OK;
  1171. }
  1173. return hr;
  1174. }