archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 7b07a90fc1
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '7b07a90fc1'
${ noResults }
windows-server-2003/net/ipsec/pastore/persist.c

2591 lines
68 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. #include "precomp.h"
  3. LPWSTR gpszIpsecCacheKey = L"SOFTWARE\\Policies\\Microsoft\\Windows\\IPSec\\Policy\\Cache";
  6. DWORD
  7. CacheDirectorytoRegistry(
  8. PIPSEC_POLICY_OBJECT pIpsecPolicyObject
  9. )
  10. {
  12. DWORD dwError = 0;
  13. PIPSEC_POLICY_OBJECT pIpsecRegPolicyObject = NULL;
  15. //
  16. // Delete the existing cache.
  17. //
  19. DeleteRegistryCache();
  22. //
  23. // Create a copy of the directory policy in registry terms
  24. //
  27. dwError = CloneDirectoryPolicyObject(
  28. pIpsecPolicyObject,
  29. &pIpsecRegPolicyObject
  30. );
  31. BAIL_ON_WIN32_ERROR(dwError);
  35. //
  36. // Write the registry policy
  37. //
  40. dwError = PersistRegistryObject(
  41. pIpsecRegPolicyObject
  42. );
  43. BAIL_ON_WIN32_ERROR(dwError);
  45. cleanup:
  47. if (pIpsecRegPolicyObject) {
  49. FreeIpsecPolicyObject(
  50. pIpsecRegPolicyObject
  51. );
  53. }
  55. return(dwError);
  57. error:
  59. DeleteRegistryCache();
  61. goto cleanup;
  62. }
  65. DWORD
  66. PersistRegistryObject(
  67. PIPSEC_POLICY_OBJECT pIpsecRegPolicyObject
  68. )
  69. {
  70. DWORD dwError = 0;
  71. HKEY hRegistryKey = NULL;
  72. DWORD dwDisposition = 0;
  74. dwError = RegCreateKeyExW(
  75. HKEY_LOCAL_MACHINE,
  76. gpszIpsecCacheKey,
  77. 0,
  78. NULL,
  79. 0,
  80. KEY_ALL_ACCESS,
  81. NULL,
  82. &hRegistryKey,
  83. &dwDisposition
  84. );
  85. BAIL_ON_WIN32_ERROR(dwError);
  87. if (pIpsecRegPolicyObject->ppIpsecFilterObjects) {
  89. dwError = PersistFilterObjects(
  90. hRegistryKey,
  91. pIpsecRegPolicyObject->ppIpsecFilterObjects,
  92. pIpsecRegPolicyObject->NumberofFilters
  93. );
  94. BAIL_ON_WIN32_ERROR(dwError);
  95. }
  98. if (pIpsecRegPolicyObject->ppIpsecNegPolObjects) {
  100. dwError = PersistNegPolObjects(
  101. hRegistryKey,
  102. pIpsecRegPolicyObject->ppIpsecNegPolObjects,
  103. pIpsecRegPolicyObject->NumberofNegPols
  104. );
  105. BAIL_ON_WIN32_ERROR(dwError);
  106. }
  108. if (pIpsecRegPolicyObject->ppIpsecNFAObjects) {
  110. dwError = PersistNFAObjects(
  111. hRegistryKey,
  112. pIpsecRegPolicyObject->ppIpsecNFAObjects,
  113. pIpsecRegPolicyObject->NumberofRulesReturned
  114. );
  115. BAIL_ON_WIN32_ERROR(dwError);
  116. }
  119. if (pIpsecRegPolicyObject->ppIpsecISAKMPObjects) {
  121. dwError = PersistISAKMPObjects(
  122. hRegistryKey,
  123. pIpsecRegPolicyObject->ppIpsecISAKMPObjects,
  124. pIpsecRegPolicyObject->NumberofISAKMPs
  125. );
  126. BAIL_ON_WIN32_ERROR(dwError);
  127. }
  129. dwError = PersistPolicyObject(
  130. hRegistryKey,
  131. pIpsecRegPolicyObject
  132. );
  134. error:
  136. if (hRegistryKey) {
  137. RegCloseKey(hRegistryKey);
  138. }
  141. return(dwError);
  142. }
  146. DWORD
  147. PersistNegPolObjects(
  148. HKEY hRegistryKey,
  149. PIPSEC_NEGPOL_OBJECT *ppIpsecNegPolObjects,
  150. DWORD dwNumNegPolObjects
  151. )
  152. {
  153. DWORD i = 0;
  154. DWORD dwError = 0;
  156. for (i = 0; i < dwNumNegPolObjects; i++) {
  158. dwError = PersistNegPolObject(
  159. hRegistryKey,
  160. *(ppIpsecNegPolObjects + i)
  161. );
  162. BAIL_ON_WIN32_ERROR(dwError);
  163. }
  165. error:
  167. return(dwError);
  169. }
  171. DWORD
  172. PersistFilterObjects(
  173. HKEY hRegistryKey,
  174. PIPSEC_FILTER_OBJECT * ppIpsecFilterObjects,
  175. DWORD dwNumFilterObjects
  176. )
  177. {
  178. DWORD i = 0;
  179. DWORD dwError = 0;
  182. for (i = 0; i < dwNumFilterObjects; i++) {
  184. dwError = PersistFilterObject(
  185. hRegistryKey,
  186. *(ppIpsecFilterObjects + i)
  187. );
  188. BAIL_ON_WIN32_ERROR(dwError);
  189. }
  192. error:
  194. return(dwError);
  196. }
  199. DWORD
  200. PersistNFAObjects(
  201. HKEY hRegistryKey,
  202. PIPSEC_NFA_OBJECT * ppIpsecNFAObjects,
  203. DWORD dwNumNFAObjects
  204. )
  205. {
  206. DWORD i = 0;
  207. DWORD dwError = 0;
  209. for (i = 0; i < dwNumNFAObjects; i++) {
  211. dwError = PersistNFAObject(
  212. hRegistryKey,
  213. *(ppIpsecNFAObjects + i)
  214. );
  215. BAIL_ON_WIN32_ERROR(dwError);
  216. }
  218. error:
  220. return(dwError);
  222. }
  224. DWORD
  225. PersistISAKMPObjects(
  226. HKEY hRegistryKey,
  227. PIPSEC_ISAKMP_OBJECT * ppIpsecISAKMPObjects,
  228. DWORD dwNumISAKMPObjects
  229. )
  230. {
  231. DWORD i = 0;
  232. DWORD dwError = 0;
  235. for (i = 0; i < dwNumISAKMPObjects; i++) {
  237. dwError = PersistISAKMPObject(
  238. hRegistryKey,
  239. *(ppIpsecISAKMPObjects + i)
  240. );
  241. BAIL_ON_WIN32_ERROR(dwError);
  242. }
  245. error:
  247. return(dwError);
  249. }
  251. DWORD
  252. PersistPolicyObject(
  253. HKEY hRegistryKey,
  254. PIPSEC_POLICY_OBJECT pIpsecPolicyObject
  255. )
  256. {
  257. DWORD dwError = 0;
  258. HKEY hRegKey = NULL;
  259. DWORD dwDisposition = 0;
  262. dwError = RegCreateKeyExW(
  263. hRegistryKey,
  264. pIpsecPolicyObject->pszIpsecOwnersReference,
  265. 0,
  266. NULL,
  267. 0,
  268. KEY_ALL_ACCESS,
  269. NULL,
  270. &hRegKey,
  271. &dwDisposition
  272. );
  273. BAIL_ON_WIN32_ERROR(dwError);
  275. dwError = RegSetValueExW(
  276. hRegKey,
  277. L"ClassName",
  278. 0,
  279. REG_SZ,
  280. (LPBYTE) L"ipsecPolicy",
  281. (wcslen(L"ipsecPolicy") + 1)*sizeof(WCHAR)
  282. );
  283. BAIL_ON_WIN32_ERROR(dwError);
  285. if (pIpsecPolicyObject->pszDescription) {
  287. dwError = RegSetValueExW(
  288. hRegKey,
  289. L"description",
  290. 0,
  291. REG_SZ,
  292. (LPBYTE)pIpsecPolicyObject->pszDescription,
  293. (wcslen(pIpsecPolicyObject->pszDescription) + 1)*sizeof(WCHAR)
  294. );
  295. BAIL_ON_WIN32_ERROR(dwError);
  297. }
  298. else {
  299. (VOID) RegDeleteValueW(
  300. hRegKey,
  301. L"description"
  302. );
  303. }
  305. if (pIpsecPolicyObject->pszIpsecOwnersReference) {
  307. dwError = RegSetValueExW(
  308. hRegKey,
  309. L"name",
  310. 0,
  311. REG_SZ,
  312. (LPBYTE)pIpsecPolicyObject->pszIpsecOwnersReference,
  313. (wcslen(pIpsecPolicyObject->pszIpsecOwnersReference) + 1)*sizeof(WCHAR)
  314. );
  315. BAIL_ON_WIN32_ERROR(dwError);
  316. }
  318. if (pIpsecPolicyObject->pszIpsecName) {
  320. dwError = RegSetValueExW(
  321. hRegKey,
  322. L"ipsecName",
  323. 0,
  324. REG_SZ,
  325. (LPBYTE)pIpsecPolicyObject->pszIpsecName,
  326. (wcslen(pIpsecPolicyObject->pszIpsecName) + 1)*sizeof(WCHAR)
  327. );
  328. BAIL_ON_WIN32_ERROR(dwError);
  329. }
  331. if (pIpsecPolicyObject->pszIpsecID) {
  333. dwError = RegSetValueExW(
  334. hRegKey,
  335. L"ipsecID",
  336. 0,
  337. REG_SZ,
  338. (LPBYTE)pIpsecPolicyObject->pszIpsecID,
  339. (wcslen(pIpsecPolicyObject->pszIpsecID) + 1)*sizeof(WCHAR)
  340. );
  341. BAIL_ON_WIN32_ERROR(dwError);
  342. }
  345. dwError = RegSetValueExW(
  346. hRegKey,
  347. L"ipsecDataType",
  348. 0,
  349. REG_DWORD,
  350. (LPBYTE)&pIpsecPolicyObject->dwIpsecDataType,
  351. sizeof(DWORD)
  352. );
  353. BAIL_ON_WIN32_ERROR(dwError);
  355. if (pIpsecPolicyObject->pIpsecData) {
  357. dwError = RegSetValueExW(
  358. hRegKey,
  359. L"ipsecData",
  360. 0,
  361. REG_BINARY,
  362. pIpsecPolicyObject->pIpsecData,
  363. pIpsecPolicyObject->dwIpsecDataLen
  364. );
  365. BAIL_ON_WIN32_ERROR(dwError);
  366. }
  368. if (pIpsecPolicyObject->pszIpsecISAKMPReference) {
  370. dwError = RegSetValueExW(
  371. hRegKey,
  372. L"ipsecISAKMPReference",
  373. 0,
  374. REG_SZ,
  375. (LPBYTE)pIpsecPolicyObject->pszIpsecISAKMPReference,
  376. (wcslen(pIpsecPolicyObject->pszIpsecISAKMPReference) + 1)*sizeof(WCHAR)
  377. );
  378. BAIL_ON_WIN32_ERROR(dwError);
  379. }
  381. if (pIpsecPolicyObject->ppszIpsecNFAReferences) {
  384. dwError = RegWriteMultiValuedString(
  385. hRegKey,
  386. L"ipsecNFAReference",
  387. pIpsecPolicyObject->ppszIpsecNFAReferences,
  388. pIpsecPolicyObject->NumberofRules
  389. );
  390. BAIL_ON_WIN32_ERROR(dwError);
  392. }
  394. dwError = RegSetValueExW(
  395. hRegKey,
  396. L"whenChanged",
  397. 0,
  398. REG_DWORD,
  399. (LPBYTE)&pIpsecPolicyObject->dwWhenChanged,
  400. sizeof(DWORD)
  401. );
  402. BAIL_ON_WIN32_ERROR(dwError);
  404. error:
  406. if (hRegKey) {
  407. RegCloseKey(hRegKey);
  408. }
  410. return(dwError);
  411. }
  413. DWORD
  414. PersistNFAObject(
  415. HKEY hRegistryKey,
  416. PIPSEC_NFA_OBJECT pIpsecNFAObject
  417. )
  418. {
  420. HKEY hRegKey = NULL;
  421. DWORD dwError = 0;
  422. DWORD dwDisposition = 0;
  423. LPBYTE pMem = NULL;
  426. dwError = RegCreateKeyExW(
  427. hRegistryKey,
  428. pIpsecNFAObject->pszDistinguishedName,
  429. 0,
  430. NULL,
  431. 0,
  432. KEY_ALL_ACCESS,
  433. NULL,
  434. &hRegKey,
  435. &dwDisposition
  436. );
  437. BAIL_ON_WIN32_ERROR(dwError);
  439. dwError = RegSetValueExW(
  440. hRegKey,
  441. L"ClassName",
  442. 0,
  443. REG_SZ,
  444. (LPBYTE) L"ipsecNFA",
  445. (wcslen(L"ipsecNFA") + 1)*sizeof(WCHAR)
  446. );
  447. BAIL_ON_WIN32_ERROR(dwError);
  449. if (pIpsecNFAObject->pszDistinguishedName) {
  451. dwError = RegSetValueExW(
  452. hRegKey,
  453. L"name",
  454. 0,
  455. REG_SZ,
  456. (LPBYTE)pIpsecNFAObject->pszDistinguishedName,
  457. (wcslen(pIpsecNFAObject->pszDistinguishedName) + 1)*sizeof(WCHAR)
  458. );
  459. BAIL_ON_WIN32_ERROR(dwError);
  460. }
  462. if (pIpsecNFAObject->pszIpsecName) {
  464. dwError = RegSetValueExW(
  465. hRegKey,
  466. L"ipsecName",
  467. 0,
  468. REG_SZ,
  469. (LPBYTE)pIpsecNFAObject->pszIpsecName,
  470. (wcslen(pIpsecNFAObject->pszIpsecName) + 1)*sizeof(WCHAR)
  471. );
  472. BAIL_ON_WIN32_ERROR(dwError);
  473. }
  475. if (pIpsecNFAObject->pszDescription) {
  477. dwError = RegSetValueExW(
  478. hRegKey,
  479. L"description",
  480. 0,
  481. REG_SZ,
  482. (LPBYTE)pIpsecNFAObject->pszDescription,
  483. (wcslen(pIpsecNFAObject->pszDescription) + 1)*sizeof(WCHAR)
  484. );
  485. BAIL_ON_WIN32_ERROR(dwError);
  487. }
  488. else {
  489. (VOID) RegDeleteValueW(
  490. hRegKey,
  491. L"description"
  492. );
  493. }
  495. if (pIpsecNFAObject->pszIpsecID) {
  497. dwError = RegSetValueExW(
  498. hRegKey,
  499. L"ipsecID",
  500. 0,
  501. REG_SZ,
  502. (LPBYTE)pIpsecNFAObject->pszIpsecID,
  503. (wcslen(pIpsecNFAObject->pszIpsecID) + 1)*sizeof(WCHAR)
  504. );
  505. BAIL_ON_WIN32_ERROR(dwError);
  506. }
  508. dwError = RegSetValueExW(
  509. hRegKey,
  510. L"ipsecDataType",
  511. 0,
  512. REG_DWORD,
  513. (LPBYTE)&pIpsecNFAObject->dwIpsecDataType,
  514. sizeof(DWORD)
  515. );
  516. BAIL_ON_WIN32_ERROR(dwError);
  518. if (pIpsecNFAObject->pIpsecData) {
  520. dwError = RegSetValueExW(
  521. hRegKey,
  522. L"ipsecData",
  523. 0,
  524. REG_BINARY,
  525. pIpsecNFAObject->pIpsecData,
  526. pIpsecNFAObject->dwIpsecDataLen
  527. );
  528. BAIL_ON_WIN32_ERROR(dwError);
  529. }
  531. if (pIpsecNFAObject->pszIpsecOwnersReference) {
  533. dwError = RegSetValueExW(
  534. hRegKey,
  535. L"ipsecOwnersReference",
  536. 0,
  537. REG_SZ,
  538. (LPBYTE)pIpsecNFAObject->pszIpsecOwnersReference,
  539. (wcslen(pIpsecNFAObject->pszIpsecOwnersReference) + 1)*sizeof(WCHAR)
  540. );
  541. BAIL_ON_WIN32_ERROR(dwError);
  542. }
  544. if (pIpsecNFAObject->pszIpsecNegPolReference) {
  546. dwError = RegSetValueExW(
  547. hRegKey,
  548. L"ipsecNegotiationPolicyReference",
  549. 0,
  550. REG_SZ,
  551. (LPBYTE)pIpsecNFAObject->pszIpsecNegPolReference,
  552. (wcslen(pIpsecNFAObject->pszIpsecNegPolReference) + 1)*sizeof(WCHAR)
  553. );
  554. BAIL_ON_WIN32_ERROR(dwError);
  555. }
  557. if (pIpsecNFAObject->pszIpsecFilterReference) {
  559. pMem = AllocPolMem(
  560. (wcslen(pIpsecNFAObject->pszIpsecFilterReference) + 1 + 1)*sizeof(WCHAR)
  561. );
  562. if (!pMem) {
  563. dwError = ERROR_OUTOFMEMORY;
  564. BAIL_ON_WIN32_ERROR(dwError);
  565. }
  567. memcpy(
  568. pMem,
  569. (LPBYTE) pIpsecNFAObject->pszIpsecFilterReference,
  570. (wcslen(pIpsecNFAObject->pszIpsecFilterReference) + 1)*sizeof(WCHAR)
  571. );
  573. dwError = RegSetValueExW(
  574. hRegKey,
  575. L"ipsecFilterReference",
  576. 0,
  577. REG_MULTI_SZ,
  578. pMem,
  579. (wcslen(pIpsecNFAObject->pszIpsecFilterReference) + 1 + 1)*sizeof(WCHAR)
  580. );
  581. BAIL_ON_WIN32_ERROR(dwError);
  583. if (pMem) {
  584. FreePolMem(pMem);
  585. }
  587. }
  589. dwError = RegSetValueExW(
  590. hRegKey,
  591. L"whenChanged",
  592. 0,
  593. REG_DWORD,
  594. (LPBYTE)&pIpsecNFAObject->dwWhenChanged,
  595. sizeof(DWORD)
  596. );
  597. BAIL_ON_WIN32_ERROR(dwError);
  599. error:
  601. if (hRegKey) {
  603. RegCloseKey(hRegKey);
  604. }
  606. return(dwError);
  607. }
  610. DWORD
  611. PersistFilterObject(
  612. HKEY hRegistryKey,
  613. PIPSEC_FILTER_OBJECT pIpsecFilterObject
  614. )
  615. {
  616. HKEY hRegKey = NULL;
  617. DWORD dwError = 0;
  618. DWORD dwDisposition = 0;
  620. dwError = RegCreateKeyExW(
  621. hRegistryKey,
  622. pIpsecFilterObject->pszDistinguishedName,
  623. 0,
  624. NULL,
  625. 0,
  626. KEY_ALL_ACCESS,
  627. NULL,
  628. &hRegKey,
  629. &dwDisposition
  630. );
  631. BAIL_ON_WIN32_ERROR(dwError);
  633. dwError = RegSetValueExW(
  634. hRegKey,
  635. L"ClassName",
  636. 0,
  637. REG_SZ,
  638. (LPBYTE) L"ipsecFilter",
  639. (wcslen(L"ipsecFilter") + 1)*sizeof(WCHAR)
  640. );
  641. BAIL_ON_WIN32_ERROR(dwError);
  643. if (pIpsecFilterObject->pszDescription) {
  645. dwError = RegSetValueExW(
  646. hRegKey,
  647. L"description",
  648. 0,
  649. REG_SZ,
  650. (LPBYTE)pIpsecFilterObject->pszDescription,
  651. (wcslen(pIpsecFilterObject->pszDescription) + 1)*sizeof(WCHAR)
  652. );
  653. BAIL_ON_WIN32_ERROR(dwError);
  655. }
  656. else {
  657. (VOID) RegDeleteValueW(
  658. hRegKey,
  659. L"description"
  660. );
  661. }
  663. if (pIpsecFilterObject->pszDistinguishedName) {
  665. dwError = RegSetValueExW(
  666. hRegKey,
  667. L"name",
  668. 0,
  669. REG_SZ,
  670. (LPBYTE)pIpsecFilterObject->pszDistinguishedName,
  671. (wcslen(pIpsecFilterObject->pszDistinguishedName) + 1)*sizeof(WCHAR)
  672. );
  673. BAIL_ON_WIN32_ERROR(dwError);
  674. }
  676. if (pIpsecFilterObject->pszIpsecName) {
  678. dwError = RegSetValueExW(
  679. hRegKey,
  680. L"ipsecName",
  681. 0,
  682. REG_SZ,
  683. (LPBYTE)pIpsecFilterObject->pszIpsecName,
  684. (wcslen(pIpsecFilterObject->pszIpsecName) + 1)* sizeof(WCHAR)
  685. );
  686. BAIL_ON_WIN32_ERROR(dwError);
  687. }
  689. if (pIpsecFilterObject->pszIpsecID) {
  691. dwError = RegSetValueExW(
  692. hRegKey,
  693. L"ipsecID",
  694. 0,
  695. REG_SZ,
  696. (LPBYTE)pIpsecFilterObject->pszIpsecID,
  697. (wcslen(pIpsecFilterObject->pszIpsecID) + 1)* sizeof(WCHAR)
  698. );
  699. BAIL_ON_WIN32_ERROR(dwError);
  700. }
  702. dwError = RegSetValueExW(
  703. hRegKey,
  704. L"ipsecDataType",
  705. 0,
  706. REG_DWORD,
  707. (LPBYTE)&pIpsecFilterObject->dwIpsecDataType,
  708. sizeof(DWORD)
  709. );
  710. BAIL_ON_WIN32_ERROR(dwError);
  712. if (pIpsecFilterObject->pIpsecData) {
  714. dwError = RegSetValueExW(
  715. hRegKey,
  716. L"ipsecData",
  717. 0,
  718. REG_BINARY,
  719. pIpsecFilterObject->pIpsecData,
  720. pIpsecFilterObject->dwIpsecDataLen
  721. );
  722. BAIL_ON_WIN32_ERROR(dwError);
  723. }
  725. dwError = RegSetValueExW(
  726. hRegKey,
  727. L"whenChanged",
  728. 0,
  729. REG_DWORD,
  730. (LPBYTE)&pIpsecFilterObject->dwWhenChanged,
  731. sizeof(DWORD)
  732. );
  733. BAIL_ON_WIN32_ERROR(dwError);
  735. if (pIpsecFilterObject->ppszIpsecNFAReferences) {
  737. dwError = RegWriteMultiValuedString(
  738. hRegKey,
  739. L"ipsecOwnersReference",
  740. pIpsecFilterObject->ppszIpsecNFAReferences,
  741. pIpsecFilterObject->dwNFACount
  742. );
  743. BAIL_ON_WIN32_ERROR(dwError);
  744. }
  746. error:
  748. if (hRegKey) {
  749. RegCloseKey(hRegKey);
  750. }
  752. return(dwError);
  753. }
  757. DWORD
  758. PersistNegPolObject(
  759. HKEY hRegistryKey,
  760. PIPSEC_NEGPOL_OBJECT pIpsecNegPolObject
  761. )
  762. {
  763. DWORD dwError = 0;
  764. DWORD dwDisposition = 0;
  765. HKEY hRegKey = NULL;
  767. dwError = RegCreateKeyExW(
  768. hRegistryKey,
  769. pIpsecNegPolObject->pszDistinguishedName,
  770. 0,
  771. NULL,
  772. 0,
  773. KEY_ALL_ACCESS,
  774. NULL,
  775. &hRegKey,
  776. &dwDisposition
  777. );
  778. BAIL_ON_WIN32_ERROR(dwError);
  780. dwError = RegSetValueExW(
  781. hRegKey,
  782. L"ClassName",
  783. 0,
  784. REG_SZ,
  785. (LPBYTE) L"ipsecNegotiationPolicy",
  786. (wcslen(L"ipsecNegotiationPolicy") + 1)*sizeof(WCHAR)
  787. );
  788. BAIL_ON_WIN32_ERROR(dwError);
  790. if (pIpsecNegPolObject->pszDescription) {
  792. dwError = RegSetValueExW(
  793. hRegKey,
  794. L"description",
  795. 0,
  796. REG_SZ,
  797. (LPBYTE)pIpsecNegPolObject->pszDescription,
  798. (wcslen(pIpsecNegPolObject->pszDescription) + 1)*sizeof(WCHAR)
  799. );
  800. BAIL_ON_WIN32_ERROR(dwError);
  802. }
  803. else {
  804. (VOID) RegDeleteValueW(
  805. hRegKey,
  806. L"description"
  807. );
  808. }
  810. if (pIpsecNegPolObject->pszDistinguishedName) {
  812. dwError = RegSetValueExW(
  813. hRegKey,
  814. L"name",
  815. 0,
  816. REG_SZ,
  817. (LPBYTE)pIpsecNegPolObject->pszDistinguishedName,
  818. (wcslen(pIpsecNegPolObject->pszDistinguishedName) + 1)*sizeof(WCHAR)
  819. );
  820. BAIL_ON_WIN32_ERROR(dwError);
  821. }
  824. if (pIpsecNegPolObject->pszIpsecName) {
  826. dwError = RegSetValueExW(
  827. hRegKey,
  828. L"ipsecName",
  829. 0,
  830. REG_SZ,
  831. (LPBYTE)pIpsecNegPolObject->pszIpsecName,
  832. (wcslen(pIpsecNegPolObject->pszIpsecName) + 1)*sizeof(WCHAR)
  833. );
  834. BAIL_ON_WIN32_ERROR(dwError);
  835. }
  837. if (pIpsecNegPolObject->pszIpsecID) {
  839. dwError = RegSetValueExW(
  840. hRegKey,
  841. L"ipsecID",
  842. 0,
  843. REG_SZ,
  844. (LPBYTE)pIpsecNegPolObject->pszIpsecID,
  845. (wcslen(pIpsecNegPolObject->pszIpsecID) + 1)*sizeof(WCHAR)
  846. );
  847. BAIL_ON_WIN32_ERROR(dwError);
  848. }
  850. if (pIpsecNegPolObject->pszIpsecNegPolAction) {
  852. dwError = RegSetValueExW(
  853. hRegKey,
  854. L"ipsecNegotiationPolicyAction",
  855. 0,
  856. REG_SZ,
  857. (LPBYTE)pIpsecNegPolObject->pszIpsecNegPolAction,
  858. (wcslen(pIpsecNegPolObject->pszIpsecNegPolAction) + 1)*sizeof(WCHAR)
  859. );
  860. BAIL_ON_WIN32_ERROR(dwError);
  861. }
  863. if (pIpsecNegPolObject->pszIpsecNegPolType) {
  865. dwError = RegSetValueExW(
  866. hRegKey,
  867. L"ipsecNegotiationPolicyType",
  868. 0,
  869. REG_SZ,
  870. (LPBYTE)pIpsecNegPolObject->pszIpsecNegPolType,
  871. (wcslen(pIpsecNegPolObject->pszIpsecNegPolType) + 1)*sizeof(WCHAR)
  872. );
  873. BAIL_ON_WIN32_ERROR(dwError);
  874. }
  877. dwError = RegSetValueExW(
  878. hRegKey,
  879. L"ipsecDataType",
  880. 0,
  881. REG_DWORD,
  882. (LPBYTE)&pIpsecNegPolObject->dwIpsecDataType,
  883. sizeof(DWORD)
  884. );
  885. BAIL_ON_WIN32_ERROR(dwError);
  887. if (pIpsecNegPolObject->pIpsecData) {
  888. dwError = RegSetValueExW(
  889. hRegKey,
  890. L"ipsecData",
  891. 0,
  892. REG_BINARY,
  893. pIpsecNegPolObject->pIpsecData,
  894. pIpsecNegPolObject->dwIpsecDataLen
  895. );
  896. BAIL_ON_WIN32_ERROR(dwError);
  897. }
  899. if (pIpsecNegPolObject->ppszIpsecNFAReferences) {
  901. dwError = RegWriteMultiValuedString(
  902. hRegKey,
  903. L"ipsecOwnersReference",
  904. pIpsecNegPolObject->ppszIpsecNFAReferences,
  905. pIpsecNegPolObject->dwNFACount
  906. );
  907. BAIL_ON_WIN32_ERROR(dwError);
  908. }
  910. dwError = RegSetValueExW(
  911. hRegKey,
  912. L"whenChanged",
  913. 0,
  914. REG_DWORD,
  915. (LPBYTE)&pIpsecNegPolObject->dwWhenChanged,
  916. sizeof(DWORD)
  917. );
  918. BAIL_ON_WIN32_ERROR(dwError);
  920. error:
  922. if (hRegKey) {
  923. RegCloseKey(hRegKey);
  924. }
  927. return(dwError);
  928. }
  930. DWORD
  931. PersistISAKMPObject(
  932. HKEY hRegistryKey,
  933. PIPSEC_ISAKMP_OBJECT pIpsecISAKMPObject
  934. )
  935. {
  936. HKEY hRegKey = NULL;
  937. DWORD dwError = 0;
  938. DWORD dwDisposition = 0;
  940. dwError = RegCreateKeyExW(
  941. hRegistryKey,
  942. pIpsecISAKMPObject->pszDistinguishedName,
  943. 0,
  944. NULL,
  945. 0,
  946. KEY_ALL_ACCESS,
  947. NULL,
  948. &hRegKey,
  949. &dwDisposition
  950. );
  951. BAIL_ON_WIN32_ERROR(dwError);
  953. dwError = RegSetValueExW(
  954. hRegKey,
  955. L"ClassName",
  956. 0,
  957. REG_SZ,
  958. (LPBYTE) L"ipsecISAKMPPolicy",
  959. (wcslen(L"ipsecISAKMPPolicy") + 1)*sizeof(WCHAR)
  960. );
  961. BAIL_ON_WIN32_ERROR(dwError);
  963. if (pIpsecISAKMPObject->pszDistinguishedName) {
  964. dwError = RegSetValueExW(
  965. hRegKey,
  966. L"name",
  967. 0,
  968. REG_SZ,
  969. (LPBYTE)pIpsecISAKMPObject->pszDistinguishedName,
  970. (wcslen(pIpsecISAKMPObject->pszDistinguishedName) + 1)*sizeof(WCHAR)
  971. );
  972. BAIL_ON_WIN32_ERROR(dwError);
  973. }
  975. if (pIpsecISAKMPObject->pszIpsecName) {
  977. dwError = RegSetValueExW(
  978. hRegKey,
  979. L"ipsecName",
  980. 0,
  981. REG_SZ,
  982. (LPBYTE)pIpsecISAKMPObject->pszIpsecName,
  983. (wcslen(pIpsecISAKMPObject->pszIpsecName) + 1)* sizeof(WCHAR)
  984. );
  985. BAIL_ON_WIN32_ERROR(dwError);
  986. }
  988. if (pIpsecISAKMPObject->pszIpsecID) {
  990. dwError = RegSetValueExW(
  991. hRegKey,
  992. L"ipsecID",
  993. 0,
  994. REG_SZ,
  995. (LPBYTE)pIpsecISAKMPObject->pszIpsecID,
  996. (wcslen(pIpsecISAKMPObject->pszIpsecID) + 1)* sizeof(WCHAR)
  997. );
  998. BAIL_ON_WIN32_ERROR(dwError);
  999. }
  1001. dwError = RegSetValueExW(
  1002. hRegKey,
  1003. L"ipsecDataType",
  1004. 0,
  1005. REG_DWORD,
  1006. (LPBYTE)&pIpsecISAKMPObject->dwIpsecDataType,
  1007. sizeof(DWORD)
  1008. );
  1009. BAIL_ON_WIN32_ERROR(dwError);
  1011. if (pIpsecISAKMPObject->pIpsecData) {
  1013. dwError = RegSetValueExW(
  1014. hRegKey,
  1015. L"ipsecData",
  1016. 0,
  1017. REG_BINARY,
  1018. pIpsecISAKMPObject->pIpsecData,
  1019. pIpsecISAKMPObject->dwIpsecDataLen
  1020. );
  1021. BAIL_ON_WIN32_ERROR(dwError);
  1022. }
  1024. dwError = RegSetValueExW(
  1025. hRegKey,
  1026. L"whenChanged",
  1027. 0,
  1028. REG_DWORD,
  1029. (LPBYTE)&pIpsecISAKMPObject->dwWhenChanged,
  1030. sizeof(DWORD)
  1031. );
  1032. BAIL_ON_WIN32_ERROR(dwError);
  1035. if (pIpsecISAKMPObject->ppszIpsecNFAReferences) {
  1037. dwError = RegWriteMultiValuedString(
  1038. hRegKey,
  1039. L"ipsecOwnersReference",
  1040. pIpsecISAKMPObject->ppszIpsecNFAReferences,
  1041. pIpsecISAKMPObject->dwNFACount
  1042. );
  1043. BAIL_ON_WIN32_ERROR(dwError);
  1044. }
  1047. error:
  1049. if (hRegKey) {
  1050. RegCloseKey(hRegKey);
  1051. }
  1053. return(dwError);
  1054. }
  1060. DWORD
  1061. CloneDirectoryPolicyObject(
  1062. PIPSEC_POLICY_OBJECT pIpsecPolicyObject,
  1063. PIPSEC_POLICY_OBJECT * ppIpsecRegPolicyObject
  1064. )
  1065. {
  1066. DWORD dwError = 0;
  1067. PIPSEC_POLICY_OBJECT pIpsecRegPolicyObject = NULL;
  1069. //
  1070. // Clone Filter Objects
  1071. //
  1073. pIpsecRegPolicyObject = (PIPSEC_POLICY_OBJECT)AllocPolMem(
  1074. sizeof(IPSEC_POLICY_OBJECT)
  1075. );
  1076. if (!pIpsecRegPolicyObject) {
  1077. dwError = ERROR_OUTOFMEMORY;
  1078. BAIL_ON_WIN32_ERROR(dwError);
  1079. }
  1081. if (pIpsecPolicyObject->ppIpsecFilterObjects) {
  1083. dwError = CloneDirectoryFilterObjects(
  1084. pIpsecPolicyObject->ppIpsecFilterObjects,
  1085. pIpsecPolicyObject->NumberofFilters,
  1086. &pIpsecRegPolicyObject->ppIpsecFilterObjects
  1087. );
  1088. BAIL_ON_WIN32_ERROR(dwError);
  1089. pIpsecRegPolicyObject->NumberofFilters = pIpsecPolicyObject->NumberofFilters;
  1090. }
  1092. //
  1093. // Clone NegPol Objects
  1094. //
  1096. if (pIpsecPolicyObject->ppIpsecNegPolObjects) {
  1098. dwError = CloneDirectoryNegPolObjects(
  1099. pIpsecPolicyObject->ppIpsecNegPolObjects,
  1100. pIpsecPolicyObject->NumberofNegPols,
  1101. &pIpsecRegPolicyObject->ppIpsecNegPolObjects
  1102. );
  1103. BAIL_ON_WIN32_ERROR(dwError);
  1104. pIpsecRegPolicyObject->NumberofNegPols = pIpsecPolicyObject->NumberofNegPols;
  1105. }
  1108. //
  1109. // Clone NFA Objects
  1110. //
  1112. if (pIpsecPolicyObject->ppIpsecNFAObjects) {
  1114. dwError = CloneDirectoryNFAObjects(
  1115. pIpsecPolicyObject->ppIpsecNFAObjects,
  1116. pIpsecPolicyObject->NumberofRulesReturned,
  1117. &pIpsecRegPolicyObject->ppIpsecNFAObjects
  1118. );
  1119. BAIL_ON_WIN32_ERROR(dwError);
  1120. pIpsecRegPolicyObject->NumberofRules = pIpsecPolicyObject->NumberofRules;
  1121. pIpsecRegPolicyObject->NumberofRulesReturned = pIpsecPolicyObject->NumberofRulesReturned;
  1122. }
  1124. //
  1125. // Clone ISAKMP Objects
  1126. //
  1128. if (pIpsecPolicyObject->ppIpsecISAKMPObjects) {
  1130. dwError = CloneDirectoryISAKMPObjects(
  1131. pIpsecPolicyObject->ppIpsecISAKMPObjects,
  1132. pIpsecPolicyObject->NumberofISAKMPs,
  1133. &pIpsecRegPolicyObject->ppIpsecISAKMPObjects
  1134. );
  1135. BAIL_ON_WIN32_ERROR(dwError);
  1136. pIpsecRegPolicyObject->NumberofISAKMPs = pIpsecPolicyObject->NumberofISAKMPs;
  1137. }
  1139. //
  1140. // Now copy the rest of the data in the object
  1141. //
  1143. if (pIpsecPolicyObject->pszIpsecOwnersReference) {
  1145. dwError = CopyPolicyDSToRegString(
  1146. pIpsecPolicyObject->pszIpsecOwnersReference,
  1147. &pIpsecRegPolicyObject->pszIpsecOwnersReference
  1148. );
  1149. BAIL_ON_WIN32_ERROR(dwError);
  1150. }
  1152. if (pIpsecPolicyObject->pszIpsecName) {
  1154. pIpsecRegPolicyObject->pszIpsecName = AllocPolStr(
  1155. pIpsecPolicyObject->pszIpsecName
  1156. );
  1157. if (!pIpsecRegPolicyObject->pszIpsecName) {
  1158. dwError = ERROR_OUTOFMEMORY;
  1159. BAIL_ON_WIN32_ERROR(dwError);
  1160. }
  1161. }
  1163. if (pIpsecPolicyObject->pszIpsecID) {
  1165. pIpsecRegPolicyObject->pszIpsecID = AllocPolStr(
  1166. pIpsecPolicyObject->pszIpsecID
  1167. );
  1168. if (!pIpsecRegPolicyObject->pszIpsecID) {
  1169. dwError = ERROR_OUTOFMEMORY;
  1170. BAIL_ON_WIN32_ERROR(dwError);
  1171. }
  1172. }
  1174. if (pIpsecPolicyObject->pszIpsecISAKMPReference) {
  1176. dwError = CopyISAKMPDSToFQRegString(
  1177. pIpsecPolicyObject->pszIpsecISAKMPReference,
  1178. &pIpsecRegPolicyObject->pszIpsecISAKMPReference
  1179. );
  1180. BAIL_ON_WIN32_ERROR(dwError);
  1181. }
  1183. pIpsecRegPolicyObject->dwIpsecDataType = pIpsecPolicyObject->dwIpsecDataType;
  1185. if (pIpsecPolicyObject->pIpsecData) {
  1187. dwError = CopyBinaryValue(
  1188. pIpsecPolicyObject->pIpsecData,
  1189. pIpsecPolicyObject->dwIpsecDataLen,
  1190. &pIpsecRegPolicyObject->pIpsecData
  1191. );
  1192. BAIL_ON_WIN32_ERROR(dwError);
  1193. pIpsecRegPolicyObject->dwIpsecDataLen = pIpsecPolicyObject->dwIpsecDataLen;
  1194. }
  1198. if (pIpsecPolicyObject->ppszIpsecNFAReferences) {
  1200. dwError = CloneNFAReferencesDSToRegistry(
  1201. pIpsecPolicyObject->ppszIpsecNFAReferences,
  1202. pIpsecPolicyObject->NumberofRules,
  1203. &(pIpsecRegPolicyObject->ppszIpsecNFAReferences),
  1204. &(pIpsecRegPolicyObject->NumberofRules)
  1205. );
  1206. BAIL_ON_WIN32_ERROR(dwError);
  1207. }
  1209. if (pIpsecPolicyObject->pszDescription) {
  1211. pIpsecRegPolicyObject->pszDescription = AllocPolStr(
  1212. pIpsecPolicyObject->pszDescription
  1213. );
  1214. if (!pIpsecRegPolicyObject->pszDescription) {
  1215. dwError = ERROR_OUTOFMEMORY;
  1216. BAIL_ON_WIN32_ERROR(dwError);
  1217. }
  1218. }
  1220. pIpsecRegPolicyObject->dwWhenChanged = pIpsecPolicyObject->dwWhenChanged;
  1222. *ppIpsecRegPolicyObject = pIpsecRegPolicyObject;
  1224. return(dwError);
  1226. error:
  1228. if (pIpsecRegPolicyObject) {
  1229. FreeIpsecPolicyObject(
  1230. pIpsecRegPolicyObject
  1231. );
  1233. }
  1235. *ppIpsecRegPolicyObject = NULL;
  1237. return(dwError);
  1238. }
  1242. DWORD
  1243. CloneDirectoryNFAObjects(
  1244. PIPSEC_NFA_OBJECT * ppIpsecNFAObjects,
  1245. DWORD dwNumNFAObjects,
  1246. PIPSEC_NFA_OBJECT ** pppIpsecRegNFAObjects
  1247. )
  1248. {
  1249. DWORD dwError = 0;
  1250. DWORD i = 0;
  1251. PIPSEC_NFA_OBJECT * ppIpsecRegNFAObjects = NULL;
  1252. PIPSEC_NFA_OBJECT pIpsecRegNFAObject = NULL;
  1254. if (dwNumNFAObjects) {
  1255. ppIpsecRegNFAObjects = (PIPSEC_NFA_OBJECT *)AllocPolMem(
  1256. dwNumNFAObjects*sizeof(PIPSEC_NFA_OBJECT)
  1257. );
  1258. if (!ppIpsecRegNFAObjects) {
  1259. dwError = ERROR_OUTOFMEMORY;
  1260. BAIL_ON_WIN32_ERROR(dwError);
  1261. }
  1262. }
  1264. for (i = 0; i < dwNumNFAObjects; i++) {
  1266. dwError = CloneDirectoryNFAObject(
  1267. *(ppIpsecNFAObjects + i),
  1268. &pIpsecRegNFAObject
  1269. );
  1270. BAIL_ON_WIN32_ERROR(dwError);
  1272. *(ppIpsecRegNFAObjects + i) = pIpsecRegNFAObject;
  1273. }
  1276. *pppIpsecRegNFAObjects = ppIpsecRegNFAObjects;
  1277. return(dwError);
  1279. error:
  1281. if (ppIpsecRegNFAObjects) {
  1282. FreeIpsecNFAObjects(
  1283. ppIpsecRegNFAObjects,
  1284. i
  1285. );
  1286. }
  1288. *pppIpsecRegNFAObjects = NULL;
  1289. return(dwError);
  1290. }
  1293. DWORD
  1294. CloneDirectoryFilterObjects(
  1295. PIPSEC_FILTER_OBJECT * ppIpsecFilterObjects,
  1296. DWORD dwNumFilterObjects,
  1297. PIPSEC_FILTER_OBJECT ** pppIpsecRegFilterObjects
  1298. )
  1299. {
  1300. DWORD dwError = 0;
  1301. DWORD i = 0;
  1302. PIPSEC_FILTER_OBJECT * ppIpsecRegFilterObjects = NULL;
  1303. PIPSEC_FILTER_OBJECT pIpsecRegFilterObject = NULL;
  1306. if (dwNumFilterObjects) {
  1307. ppIpsecRegFilterObjects = (PIPSEC_FILTER_OBJECT *)AllocPolMem(
  1308. dwNumFilterObjects*sizeof(PIPSEC_FILTER_OBJECT)
  1309. );
  1310. if (!ppIpsecRegFilterObjects) {
  1311. dwError = ERROR_OUTOFMEMORY;
  1312. BAIL_ON_WIN32_ERROR(dwError);
  1313. }
  1314. }
  1316. for (i = 0; i < dwNumFilterObjects; i++) {
  1318. dwError = CloneDirectoryFilterObject(
  1319. *(ppIpsecFilterObjects + i),
  1320. &pIpsecRegFilterObject
  1321. );
  1322. BAIL_ON_WIN32_ERROR(dwError);
  1324. *(ppIpsecRegFilterObjects + i) = pIpsecRegFilterObject;
  1325. }
  1328. *pppIpsecRegFilterObjects = ppIpsecRegFilterObjects;
  1329. return(dwError);
  1331. error:
  1333. if (ppIpsecRegFilterObjects) {
  1334. FreeIpsecFilterObjects(
  1335. ppIpsecRegFilterObjects,
  1336. i
  1337. );
  1338. }
  1340. *pppIpsecRegFilterObjects = NULL;
  1341. return(dwError);
  1342. }
  1344. DWORD
  1345. CloneDirectoryISAKMPObjects(
  1346. PIPSEC_ISAKMP_OBJECT * ppIpsecISAKMPObjects,
  1347. DWORD dwNumISAKMPObjects,
  1348. PIPSEC_ISAKMP_OBJECT ** pppIpsecRegISAKMPObjects
  1349. )
  1350. {
  1351. DWORD dwError = 0;
  1352. DWORD i = 0;
  1353. PIPSEC_ISAKMP_OBJECT * ppIpsecRegISAKMPObjects = NULL;
  1354. PIPSEC_ISAKMP_OBJECT pIpsecRegISAKMPObject = NULL;
  1356. if (dwNumISAKMPObjects) {
  1357. ppIpsecRegISAKMPObjects = (PIPSEC_ISAKMP_OBJECT *)AllocPolMem(
  1358. dwNumISAKMPObjects*sizeof(PIPSEC_ISAKMP_OBJECT)
  1359. );
  1360. if (!ppIpsecRegISAKMPObjects) {
  1361. dwError = ERROR_OUTOFMEMORY;
  1362. BAIL_ON_WIN32_ERROR(dwError);
  1363. }
  1364. }
  1366. for (i = 0; i < dwNumISAKMPObjects; i++) {
  1368. dwError = CloneDirectoryISAKMPObject(
  1369. *(ppIpsecISAKMPObjects + i),
  1370. &pIpsecRegISAKMPObject
  1371. );
  1372. BAIL_ON_WIN32_ERROR(dwError);
  1374. *(ppIpsecRegISAKMPObjects + i) = pIpsecRegISAKMPObject;
  1375. }
  1378. *pppIpsecRegISAKMPObjects = ppIpsecRegISAKMPObjects;
  1379. return(dwError);
  1381. error:
  1383. if (ppIpsecRegISAKMPObjects) {
  1384. FreeIpsecISAKMPObjects(
  1385. ppIpsecRegISAKMPObjects,
  1386. i
  1387. );
  1388. }
  1390. *pppIpsecRegISAKMPObjects = NULL;
  1391. return(dwError);
  1392. }
  1395. DWORD
  1396. CloneDirectoryNegPolObjects(
  1397. PIPSEC_NEGPOL_OBJECT * ppIpsecNegPolObjects,
  1398. DWORD dwNumNegPolObjects,
  1399. PIPSEC_NEGPOL_OBJECT ** pppIpsecRegNegPolObjects
  1400. )
  1401. {
  1402. DWORD dwError = 0;
  1403. DWORD i = 0;
  1404. PIPSEC_NEGPOL_OBJECT * ppIpsecRegNegPolObjects = NULL;
  1405. PIPSEC_NEGPOL_OBJECT pIpsecRegNegPolObject = NULL;
  1407. if (dwNumNegPolObjects) {
  1408. ppIpsecRegNegPolObjects = (PIPSEC_NEGPOL_OBJECT *)AllocPolMem(
  1409. dwNumNegPolObjects*sizeof(PIPSEC_NEGPOL_OBJECT)
  1410. );
  1411. if (!ppIpsecRegNegPolObjects) {
  1412. dwError = ERROR_OUTOFMEMORY;
  1413. BAIL_ON_WIN32_ERROR(dwError);
  1414. }
  1415. }
  1417. for (i = 0; i < dwNumNegPolObjects; i++) {
  1419. dwError = CloneDirectoryNegPolObject(
  1420. *(ppIpsecNegPolObjects + i),
  1421. &pIpsecRegNegPolObject
  1422. );
  1423. BAIL_ON_WIN32_ERROR(dwError);
  1425. *(ppIpsecRegNegPolObjects + i) = pIpsecRegNegPolObject;
  1426. }
  1429. *pppIpsecRegNegPolObjects = ppIpsecRegNegPolObjects;
  1430. return(dwError);
  1432. error:
  1434. if (ppIpsecRegNegPolObjects) {
  1435. FreeIpsecNegPolObjects(
  1436. ppIpsecRegNegPolObjects,
  1437. i
  1438. );
  1439. }
  1441. *pppIpsecRegNegPolObjects = NULL;
  1442. return(dwError);
  1443. }
  1446. DWORD
  1447. CloneDirectoryFilterObject(
  1448. PIPSEC_FILTER_OBJECT pIpsecFilterObject,
  1449. PIPSEC_FILTER_OBJECT * ppIpsecRegFilterObject
  1450. )
  1451. {
  1453. DWORD dwError = 0;
  1454. PIPSEC_FILTER_OBJECT pIpsecRegFilterObject = NULL;
  1456. pIpsecRegFilterObject = (PIPSEC_FILTER_OBJECT)AllocPolMem(
  1457. sizeof(IPSEC_FILTER_OBJECT)
  1458. );
  1459. if (!pIpsecRegFilterObject) {
  1460. dwError = ERROR_OUTOFMEMORY;
  1461. BAIL_ON_WIN32_ERROR(dwError);
  1462. }
  1464. if (pIpsecFilterObject->pszDistinguishedName) {
  1465. dwError = CopyFilterDSToRegString(
  1466. pIpsecFilterObject->pszDistinguishedName,
  1467. &pIpsecRegFilterObject->pszDistinguishedName
  1468. );
  1469. BAIL_ON_WIN32_ERROR(dwError);
  1470. }
  1472. if (pIpsecFilterObject->pszDescription) {
  1473. pIpsecRegFilterObject->pszDescription = AllocPolStr(
  1474. pIpsecFilterObject->pszDescription
  1475. );
  1476. if (!pIpsecRegFilterObject->pszDescription) {
  1477. dwError = ERROR_OUTOFMEMORY;
  1478. BAIL_ON_WIN32_ERROR(dwError);
  1479. }
  1480. }
  1482. if (pIpsecFilterObject->pszIpsecName) {
  1483. pIpsecRegFilterObject->pszIpsecName = AllocPolStr(
  1484. pIpsecFilterObject->pszIpsecName
  1485. );
  1486. if (!pIpsecRegFilterObject->pszIpsecName) {
  1487. dwError = ERROR_OUTOFMEMORY;
  1488. BAIL_ON_WIN32_ERROR(dwError);
  1489. }
  1490. }
  1492. if (pIpsecFilterObject->pszIpsecID) {
  1493. pIpsecRegFilterObject->pszIpsecID = AllocPolStr(
  1494. pIpsecFilterObject->pszIpsecID
  1495. );
  1496. if (!pIpsecRegFilterObject->pszIpsecID) {
  1497. dwError = ERROR_OUTOFMEMORY;
  1498. BAIL_ON_WIN32_ERROR(dwError);
  1499. }
  1500. }
  1502. pIpsecRegFilterObject->dwIpsecDataType = pIpsecFilterObject->dwIpsecDataType;
  1504. if (pIpsecFilterObject->pIpsecData) {
  1506. dwError = CopyBinaryValue(
  1507. pIpsecFilterObject->pIpsecData,
  1508. pIpsecFilterObject->dwIpsecDataLen,
  1509. &pIpsecRegFilterObject->pIpsecData
  1510. );
  1511. BAIL_ON_WIN32_ERROR(dwError);
  1513. pIpsecRegFilterObject->dwIpsecDataLen = pIpsecFilterObject->dwIpsecDataLen;
  1514. }
  1517. if (pIpsecFilterObject->ppszIpsecNFAReferences) {
  1519. dwError = CloneNFAReferencesDSToRegistry(
  1520. pIpsecFilterObject->ppszIpsecNFAReferences,
  1521. pIpsecFilterObject->dwNFACount,
  1522. &pIpsecRegFilterObject->ppszIpsecNFAReferences,
  1523. &pIpsecRegFilterObject->dwNFACount
  1524. );
  1525. BAIL_ON_WIN32_ERROR(dwError);
  1526. }
  1529. pIpsecRegFilterObject->dwWhenChanged = pIpsecFilterObject->dwWhenChanged;
  1531. *ppIpsecRegFilterObject = pIpsecRegFilterObject;
  1533. return(dwError);
  1535. error:
  1537. if (pIpsecRegFilterObject) {
  1538. FreeIpsecFilterObject(pIpsecRegFilterObject);
  1539. }
  1541. *ppIpsecRegFilterObject = NULL;
  1543. return(dwError);
  1544. }
  1547. DWORD
  1548. CloneDirectoryNegPolObject(
  1549. PIPSEC_NEGPOL_OBJECT pIpsecNegPolObject,
  1550. PIPSEC_NEGPOL_OBJECT * ppIpsecRegNegPolObject
  1551. )
  1552. {
  1553. DWORD dwError = 0;
  1555. PIPSEC_NEGPOL_OBJECT pIpsecRegNegPolObject = NULL;
  1557. pIpsecRegNegPolObject = (PIPSEC_NEGPOL_OBJECT)AllocPolMem(
  1558. sizeof(IPSEC_NEGPOL_OBJECT)
  1559. );
  1560. if (!pIpsecRegNegPolObject) {
  1561. dwError = ERROR_OUTOFMEMORY;
  1562. BAIL_ON_WIN32_ERROR(dwError);
  1563. }
  1565. if (pIpsecNegPolObject->pszDistinguishedName) {
  1567. dwError = CopyNegPolDSToRegString(
  1568. pIpsecNegPolObject->pszDistinguishedName,
  1569. &pIpsecRegNegPolObject->pszDistinguishedName
  1570. );
  1571. BAIL_ON_WIN32_ERROR(dwError);
  1572. }
  1574. if (pIpsecNegPolObject->pszIpsecName) {
  1575. pIpsecRegNegPolObject->pszIpsecName = AllocPolStr(
  1576. pIpsecNegPolObject->pszIpsecName
  1577. );
  1578. if (!pIpsecRegNegPolObject->pszIpsecName) {
  1579. dwError = ERROR_OUTOFMEMORY;
  1580. BAIL_ON_WIN32_ERROR(dwError);
  1581. }
  1582. }
  1584. if (pIpsecNegPolObject->pszDescription) {
  1585. pIpsecRegNegPolObject->pszDescription = AllocPolStr(
  1586. pIpsecNegPolObject->pszDescription
  1587. );
  1588. if (!pIpsecRegNegPolObject->pszDescription) {
  1589. dwError = ERROR_OUTOFMEMORY;
  1590. BAIL_ON_WIN32_ERROR(dwError);
  1591. }
  1592. }
  1594. if (pIpsecNegPolObject->pszIpsecID) {
  1595. pIpsecRegNegPolObject->pszIpsecID = AllocPolStr(
  1596. pIpsecNegPolObject->pszIpsecID
  1597. );
  1598. if (!pIpsecRegNegPolObject->pszIpsecID) {
  1599. dwError = ERROR_OUTOFMEMORY;
  1600. BAIL_ON_WIN32_ERROR(dwError);
  1601. }
  1602. }
  1604. pIpsecRegNegPolObject->dwIpsecDataType = pIpsecNegPolObject->dwIpsecDataType;
  1606. if (pIpsecNegPolObject->pIpsecData) {
  1608. dwError = CopyBinaryValue(
  1609. pIpsecNegPolObject->pIpsecData,
  1610. pIpsecNegPolObject->dwIpsecDataLen,
  1611. &pIpsecRegNegPolObject->pIpsecData
  1612. );
  1613. BAIL_ON_WIN32_ERROR(dwError);
  1614. pIpsecRegNegPolObject->dwIpsecDataLen = pIpsecNegPolObject->dwIpsecDataLen;
  1615. }
  1617. if (pIpsecNegPolObject->pszIpsecNegPolAction) {
  1619. pIpsecRegNegPolObject->pszIpsecNegPolAction = AllocPolStr(
  1620. pIpsecNegPolObject->pszIpsecNegPolAction
  1621. );
  1622. if (!pIpsecRegNegPolObject->pszIpsecNegPolAction) {
  1623. dwError = ERROR_OUTOFMEMORY;
  1624. BAIL_ON_WIN32_ERROR(dwError);
  1625. }
  1626. }
  1628. if (pIpsecNegPolObject->pszIpsecNegPolType) {
  1630. pIpsecRegNegPolObject->pszIpsecNegPolType = AllocPolStr(
  1631. pIpsecNegPolObject->pszIpsecNegPolType
  1632. );
  1633. if (!pIpsecRegNegPolObject->pszIpsecNegPolType) {
  1634. dwError = ERROR_OUTOFMEMORY;
  1635. BAIL_ON_WIN32_ERROR(dwError);
  1636. }
  1637. }
  1640. if (pIpsecNegPolObject->ppszIpsecNFAReferences) {
  1642. dwError = CloneNFAReferencesDSToRegistry(
  1643. pIpsecNegPolObject->ppszIpsecNFAReferences,
  1644. pIpsecNegPolObject->dwNFACount,
  1645. &pIpsecRegNegPolObject->ppszIpsecNFAReferences,
  1646. &pIpsecRegNegPolObject->dwNFACount
  1647. );
  1648. BAIL_ON_WIN32_ERROR(dwError);
  1649. }
  1651. pIpsecRegNegPolObject->dwWhenChanged = pIpsecNegPolObject->dwWhenChanged;
  1653. *ppIpsecRegNegPolObject = pIpsecRegNegPolObject;
  1655. return(dwError);
  1657. error:
  1659. if (pIpsecRegNegPolObject) {
  1660. FreeIpsecNegPolObject(pIpsecRegNegPolObject);
  1661. }
  1663. *ppIpsecRegNegPolObject = NULL;
  1665. return(dwError);
  1666. }
  1668. DWORD
  1669. CloneDirectoryNFAObject(
  1670. PIPSEC_NFA_OBJECT pIpsecNFAObject,
  1671. PIPSEC_NFA_OBJECT * ppIpsecRegNFAObject
  1672. )
  1673. {
  1674. DWORD dwError = 0;
  1675. PIPSEC_NFA_OBJECT pIpsecRegNFAObject = NULL;
  1678. pIpsecRegNFAObject = (PIPSEC_NFA_OBJECT)AllocPolMem(
  1679. sizeof(IPSEC_NFA_OBJECT)
  1680. );
  1681. if (!pIpsecRegNFAObject) {
  1682. dwError = ERROR_OUTOFMEMORY;
  1683. BAIL_ON_WIN32_ERROR(dwError);
  1684. }
  1687. if (pIpsecNFAObject->pszDistinguishedName) {
  1689. dwError = CopyNFADSToRegString(
  1690. pIpsecNFAObject->pszDistinguishedName,
  1691. &pIpsecRegNFAObject->pszDistinguishedName
  1692. );
  1693. BAIL_ON_WIN32_ERROR(dwError);
  1694. }
  1697. if (pIpsecNFAObject->pszIpsecName) {
  1699. pIpsecRegNFAObject->pszIpsecName = AllocPolStr(
  1700. pIpsecNFAObject->pszIpsecName
  1701. );
  1702. if (!pIpsecRegNFAObject->pszIpsecName) {
  1703. dwError = ERROR_OUTOFMEMORY;
  1704. BAIL_ON_WIN32_ERROR(dwError);
  1705. }
  1706. }
  1708. if (pIpsecNFAObject->pszDescription) {
  1710. pIpsecRegNFAObject->pszDescription = AllocPolStr(
  1711. pIpsecNFAObject->pszDescription
  1712. );
  1713. if (!pIpsecRegNFAObject->pszDescription) {
  1714. dwError = ERROR_OUTOFMEMORY;
  1715. BAIL_ON_WIN32_ERROR(dwError);
  1716. }
  1717. }
  1719. if (pIpsecNFAObject->pszIpsecID) {
  1721. pIpsecRegNFAObject->pszIpsecID = AllocPolStr(
  1722. pIpsecNFAObject->pszIpsecID
  1723. );
  1724. if (!pIpsecRegNFAObject->pszIpsecID) {
  1725. dwError = ERROR_OUTOFMEMORY;
  1726. BAIL_ON_WIN32_ERROR(dwError);
  1727. }
  1728. }
  1731. pIpsecRegNFAObject->dwIpsecDataType = pIpsecNFAObject->dwIpsecDataType;
  1733. if (pIpsecNFAObject->pIpsecData) {
  1735. dwError = CopyBinaryValue(
  1736. pIpsecNFAObject->pIpsecData,
  1737. pIpsecNFAObject->dwIpsecDataLen,
  1738. &pIpsecRegNFAObject->pIpsecData
  1739. );
  1740. BAIL_ON_WIN32_ERROR(dwError);
  1741. pIpsecRegNFAObject->dwIpsecDataLen = pIpsecNFAObject->dwIpsecDataLen;
  1742. }
  1745. if (pIpsecNFAObject->pszIpsecOwnersReference) {
  1747. dwError = CopyPolicyDSToFQRegString(
  1748. pIpsecNFAObject->pszIpsecOwnersReference,
  1749. &pIpsecRegNFAObject->pszIpsecOwnersReference
  1750. );
  1751. BAIL_ON_WIN32_ERROR(dwError);
  1752. }
  1754. if (pIpsecNFAObject->pszIpsecFilterReference) {
  1756. dwError = CopyFilterDSToFQRegString(
  1757. pIpsecNFAObject->pszIpsecFilterReference,
  1758. &pIpsecRegNFAObject->pszIpsecFilterReference
  1759. );
  1760. BAIL_ON_WIN32_ERROR(dwError);
  1761. }
  1763. if (pIpsecNFAObject->pszIpsecNegPolReference) {
  1765. dwError = CopyNegPolDSToFQRegString(
  1766. pIpsecNFAObject->pszIpsecNegPolReference,
  1767. &pIpsecRegNFAObject->pszIpsecNegPolReference
  1768. );
  1769. BAIL_ON_WIN32_ERROR(dwError);
  1770. }
  1772. pIpsecRegNFAObject->dwWhenChanged = pIpsecNFAObject->dwWhenChanged;
  1775. *ppIpsecRegNFAObject = pIpsecRegNFAObject;
  1777. return(dwError);
  1779. error:
  1781. if (pIpsecRegNFAObject) {
  1782. FreeIpsecNFAObject(pIpsecRegNFAObject);
  1783. }
  1785. *ppIpsecRegNFAObject = NULL;
  1787. return(dwError);
  1788. }
  1790. DWORD
  1791. CloneDirectoryISAKMPObject(
  1792. PIPSEC_ISAKMP_OBJECT pIpsecISAKMPObject,
  1793. PIPSEC_ISAKMP_OBJECT * ppIpsecRegISAKMPObject
  1794. )
  1795. {
  1797. DWORD dwError = 0;
  1798. PIPSEC_ISAKMP_OBJECT pIpsecRegISAKMPObject = NULL;
  1800. pIpsecRegISAKMPObject = (PIPSEC_ISAKMP_OBJECT)AllocPolMem(
  1801. sizeof(IPSEC_ISAKMP_OBJECT)
  1802. );
  1803. if (!pIpsecRegISAKMPObject) {
  1804. dwError = ERROR_OUTOFMEMORY;
  1805. BAIL_ON_WIN32_ERROR(dwError);
  1806. }
  1808. if (pIpsecISAKMPObject->pszDistinguishedName) {
  1810. dwError = CopyISAKMPDSToRegString(
  1811. pIpsecISAKMPObject->pszDistinguishedName,
  1812. &pIpsecRegISAKMPObject->pszDistinguishedName
  1813. );
  1814. BAIL_ON_WIN32_ERROR(dwError);
  1815. }
  1818. if (pIpsecISAKMPObject->pszIpsecName) {
  1820. pIpsecRegISAKMPObject->pszIpsecName = AllocPolStr(
  1821. pIpsecISAKMPObject->pszIpsecName
  1822. );
  1823. if (!pIpsecRegISAKMPObject->pszIpsecName) {
  1824. dwError = ERROR_OUTOFMEMORY;
  1825. BAIL_ON_WIN32_ERROR(dwError);
  1826. }
  1827. }
  1830. if (pIpsecISAKMPObject->pszIpsecID) {
  1832. pIpsecRegISAKMPObject->pszIpsecID = AllocPolStr(
  1833. pIpsecISAKMPObject->pszIpsecID
  1834. );
  1835. if (!pIpsecRegISAKMPObject->pszIpsecID) {
  1836. dwError = ERROR_OUTOFMEMORY;
  1837. BAIL_ON_WIN32_ERROR(dwError);
  1838. }
  1839. }
  1841. pIpsecRegISAKMPObject->dwIpsecDataType = pIpsecISAKMPObject->dwIpsecDataType;
  1844. if (pIpsecISAKMPObject->pIpsecData) {
  1846. dwError = CopyBinaryValue(
  1847. pIpsecISAKMPObject->pIpsecData,
  1848. pIpsecISAKMPObject->dwIpsecDataLen,
  1849. &pIpsecRegISAKMPObject->pIpsecData
  1850. );
  1851. BAIL_ON_WIN32_ERROR(dwError);
  1852. }
  1854. pIpsecRegISAKMPObject->dwIpsecDataLen = pIpsecISAKMPObject->dwIpsecDataLen;
  1857. if (pIpsecISAKMPObject->ppszIpsecNFAReferences) {
  1859. dwError = CloneNFAReferencesDSToRegistry(
  1860. pIpsecISAKMPObject->ppszIpsecNFAReferences,
  1861. pIpsecISAKMPObject->dwNFACount,
  1862. &pIpsecRegISAKMPObject->ppszIpsecNFAReferences,
  1863. &pIpsecRegISAKMPObject->dwNFACount
  1864. );
  1865. BAIL_ON_WIN32_ERROR(dwError);
  1866. }
  1868. pIpsecRegISAKMPObject->dwWhenChanged = pIpsecISAKMPObject->dwWhenChanged;
  1870. *ppIpsecRegISAKMPObject = pIpsecRegISAKMPObject;
  1872. return(dwError);
  1874. error:
  1876. if (pIpsecRegISAKMPObject) {
  1877. FreeIpsecISAKMPObject(pIpsecRegISAKMPObject);
  1878. }
  1880. *ppIpsecRegISAKMPObject = NULL;
  1882. return(dwError);
  1883. }
  1886. DWORD
  1887. CopyBinaryValue(
  1888. LPBYTE pMem,
  1889. DWORD dwMemSize,
  1890. LPBYTE * ppNewMem
  1891. )
  1892. {
  1893. LPBYTE pNewMem = NULL;
  1894. DWORD dwError = 0;
  1897. pNewMem = (LPBYTE)AllocPolMem(dwMemSize);
  1898. if (!pNewMem) {
  1899. dwError = ERROR_OUTOFMEMORY;
  1900. BAIL_ON_WIN32_ERROR(dwError);
  1901. }
  1903. memcpy(pNewMem, pMem, dwMemSize);
  1906. *ppNewMem = pNewMem;
  1908. return(dwError);
  1910. error:
  1912. if (pNewMem) {
  1914. FreePolMem(pNewMem);
  1915. }
  1917. *ppNewMem = NULL;
  1919. return(dwError);
  1920. }
  1923. DWORD
  1924. CopyFilterDSToFQRegString(
  1925. LPWSTR pszFilterDN,
  1926. LPWSTR * ppszFilterName
  1927. )
  1928. {
  1930. DWORD dwError = 0;
  1931. WCHAR szCommonName[MAX_PATH];
  1932. LPWSTR pszGuidName = NULL;
  1933. LPWSTR pszFilterName = NULL;
  1934. DWORD dwStringSize = 0;
  1936. dwError = ComputePrelimCN(
  1937. pszFilterDN,
  1938. szCommonName
  1939. );
  1940. BAIL_ON_WIN32_ERROR(dwError);
  1942. dwError = ComputeGUIDName(
  1943. szCommonName,
  1944. &pszGuidName
  1945. );
  1946. BAIL_ON_WIN32_ERROR(dwError);
  1948. dwStringSize = wcslen(gpszIpsecCacheKey);
  1949. dwStringSize += 1;
  1950. dwStringSize += wcslen(pszGuidName);
  1951. dwStringSize += 1;
  1953. pszFilterName = (LPWSTR)AllocPolMem(dwStringSize*sizeof(WCHAR));
  1954. if (!pszFilterName) {
  1955. dwError = ERROR_OUTOFMEMORY;
  1956. BAIL_ON_WIN32_ERROR(dwError);
  1957. }
  1958. wcscpy(pszFilterName, gpszIpsecCacheKey);
  1959. wcscat(pszFilterName, L"\\");
  1960. wcscat(pszFilterName, pszGuidName);
  1962. *ppszFilterName = pszFilterName;
  1964. return(dwError);
  1966. error:
  1968. *ppszFilterName = NULL;
  1969. return(dwError);
  1971. }
  1974. DWORD
  1975. CopyNFADSToFQRegString(
  1976. LPWSTR pszNFADN,
  1977. LPWSTR * ppszNFAName
  1978. )
  1979. {
  1981. DWORD dwError = 0;
  1982. WCHAR szCommonName[MAX_PATH];
  1983. LPWSTR pszGuidName = NULL;
  1984. LPWSTR pszNFAName = NULL;
  1985. DWORD dwStringSize = 0;
  1987. dwError = ComputePrelimCN(
  1988. pszNFADN,
  1989. szCommonName
  1990. );
  1991. BAIL_ON_WIN32_ERROR(dwError);
  1993. dwError = ComputeGUIDName(
  1994. szCommonName,
  1995. &pszGuidName
  1996. );
  1997. BAIL_ON_WIN32_ERROR(dwError);
  1999. dwStringSize = wcslen(gpszIpsecCacheKey);
  2000. dwStringSize += 1;
  2001. dwStringSize += wcslen(pszGuidName);
  2002. dwStringSize += 1;
  2004. pszNFAName = (LPWSTR)AllocPolMem(dwStringSize*sizeof(WCHAR));
  2005. if (!pszNFAName) {
  2006. dwError = ERROR_OUTOFMEMORY;
  2007. BAIL_ON_WIN32_ERROR(dwError);
  2008. }
  2009. wcscpy(pszNFAName, gpszIpsecCacheKey);
  2010. wcscat(pszNFAName, L"\\");
  2011. wcscat(pszNFAName, pszGuidName);
  2014. *ppszNFAName = pszNFAName;
  2016. return(dwError);
  2018. error:
  2020. *ppszNFAName = NULL;
  2021. return(dwError);
  2023. }
  2027. DWORD
  2028. CopyNegPolDSToFQRegString(
  2029. LPWSTR pszNegPolDN,
  2030. LPWSTR * ppszNegPolName
  2031. )
  2032. {
  2034. DWORD dwError = 0;
  2035. WCHAR szCommonName[MAX_PATH];
  2036. LPWSTR pszGuidName = NULL;
  2037. LPWSTR pszNegPolName = NULL;
  2038. DWORD dwStringSize = 0;
  2040. dwError = ComputePrelimCN(
  2041. pszNegPolDN,
  2042. szCommonName
  2043. );
  2044. BAIL_ON_WIN32_ERROR(dwError);
  2046. dwError = ComputeGUIDName(
  2047. szCommonName,
  2048. &pszGuidName
  2049. );
  2050. BAIL_ON_WIN32_ERROR(dwError);
  2053. dwStringSize = wcslen(gpszIpsecCacheKey);
  2054. dwStringSize += 1;
  2055. dwStringSize += wcslen(pszGuidName);
  2056. dwStringSize += 1;
  2058. pszNegPolName = (LPWSTR)AllocPolMem(dwStringSize*sizeof(WCHAR));
  2059. if (!pszNegPolName) {
  2060. dwError = ERROR_OUTOFMEMORY;
  2061. BAIL_ON_WIN32_ERROR(dwError);
  2062. }
  2063. wcscpy(pszNegPolName, gpszIpsecCacheKey);
  2064. wcscat(pszNegPolName, L"\\");
  2065. wcscat(pszNegPolName, pszGuidName);
  2067. *ppszNegPolName = pszNegPolName;
  2069. return(dwError);
  2071. error:
  2073. *ppszNegPolName = NULL;
  2074. return(dwError);
  2076. }
  2079. DWORD
  2080. CopyPolicyDSToFQRegString(
  2081. LPWSTR pszPolicyDN,
  2082. LPWSTR * ppszPolicyName
  2083. )
  2084. {
  2086. DWORD dwError = 0;
  2087. WCHAR szCommonName[MAX_PATH];
  2088. LPWSTR pszGuidName = NULL;
  2089. LPWSTR pszPolicyName = NULL;
  2090. DWORD dwStringSize = 0;
  2092. dwError = ComputePrelimCN(
  2093. pszPolicyDN,
  2094. szCommonName
  2095. );
  2096. BAIL_ON_WIN32_ERROR(dwError);
  2098. dwError = ComputeGUIDName(
  2099. szCommonName,
  2100. &pszGuidName
  2101. );
  2102. BAIL_ON_WIN32_ERROR(dwError);
  2104. dwStringSize = wcslen(gpszIpsecCacheKey);
  2105. dwStringSize += 1;
  2106. dwStringSize += wcslen(pszGuidName);
  2107. dwStringSize += 1;
  2109. pszPolicyName = (LPWSTR)AllocPolMem(dwStringSize*sizeof(WCHAR));
  2110. if (!pszPolicyName) {
  2111. dwError = ERROR_OUTOFMEMORY;
  2112. BAIL_ON_WIN32_ERROR(dwError);
  2113. }
  2114. wcscpy(pszPolicyName, gpszIpsecCacheKey);
  2115. wcscat(pszPolicyName, L"\\");
  2116. wcscat(pszPolicyName, pszGuidName);
  2118. *ppszPolicyName = pszPolicyName;
  2120. return(dwError);
  2122. error:
  2124. *ppszPolicyName = NULL;
  2125. return(dwError);
  2127. }
  2129. DWORD
  2130. CopyISAKMPDSToFQRegString(
  2131. LPWSTR pszISAKMPDN,
  2132. LPWSTR * ppszISAKMPName
  2133. )
  2134. {
  2136. DWORD dwError = 0;
  2137. WCHAR szCommonName[MAX_PATH];
  2138. LPWSTR pszGuidName = NULL;
  2139. LPWSTR pszISAKMPName = NULL;
  2140. DWORD dwStringSize = 0;
  2142. dwError = ComputePrelimCN(
  2143. pszISAKMPDN,
  2144. szCommonName
  2145. );
  2146. BAIL_ON_WIN32_ERROR(dwError);
  2148. dwError = ComputeGUIDName(
  2149. szCommonName,
  2150. &pszGuidName
  2151. );
  2152. BAIL_ON_WIN32_ERROR(dwError);
  2154. dwStringSize = wcslen(gpszIpsecCacheKey);
  2155. dwStringSize += 1;
  2156. dwStringSize += wcslen(pszGuidName);
  2157. dwStringSize += 1;
  2159. pszISAKMPName = (LPWSTR)AllocPolMem(dwStringSize*sizeof(WCHAR));
  2160. if (!pszISAKMPName) {
  2161. dwError = ERROR_OUTOFMEMORY;
  2162. BAIL_ON_WIN32_ERROR(dwError);
  2163. }
  2164. wcscpy(pszISAKMPName, gpszIpsecCacheKey);
  2165. wcscat(pszISAKMPName, L"\\");
  2166. wcscat(pszISAKMPName, pszGuidName);
  2169. *ppszISAKMPName = pszISAKMPName;
  2171. return(dwError);
  2173. error:
  2175. *ppszISAKMPName = NULL;
  2176. return(dwError);
  2178. }
  2181. DWORD
  2182. ComputeGUIDName(
  2183. LPWSTR szCommonName,
  2184. LPWSTR * ppszGuidName
  2185. )
  2186. {
  2187. LPWSTR pszGuidName = NULL;
  2188. DWORD dwError = 0;
  2190. pszGuidName = wcschr(szCommonName, L'=');
  2191. if (!pszGuidName) {
  2192. dwError = ERROR_INVALID_PARAMETER;
  2193. BAIL_ON_WIN32_ERROR(dwError);
  2194. }
  2196. *ppszGuidName = (pszGuidName + 1);
  2198. return(dwError);
  2200. error:
  2202. *ppszGuidName = NULL;
  2204. return(dwError);
  2205. }
  2209. DWORD
  2210. CloneNFAReferencesDSToRegistry(
  2211. LPWSTR * ppszIpsecNFAReferences,
  2212. DWORD dwNFACount,
  2213. LPWSTR * * pppszIpsecRegNFAReferences,
  2214. PDWORD pdwRegNFACount
  2215. )
  2216. {
  2217. DWORD dwError = 0;
  2218. DWORD i = 0;
  2219. LPWSTR * ppszIpsecRegNFAReferences = NULL;
  2221. ppszIpsecRegNFAReferences = (LPWSTR *)AllocPolMem(
  2222. sizeof(LPWSTR)*dwNFACount
  2223. );
  2224. if (!ppszIpsecRegNFAReferences) {
  2225. dwError = ERROR_OUTOFMEMORY;
  2226. BAIL_ON_WIN32_ERROR(dwError);
  2227. }
  2229. for (i = 0; i < dwNFACount; i++) {
  2232. dwError = CopyNFADSToFQRegString(
  2233. *(ppszIpsecNFAReferences + i),
  2234. (ppszIpsecRegNFAReferences + i)
  2235. );
  2236. BAIL_ON_WIN32_ERROR(dwError);
  2238. }
  2240. *pppszIpsecRegNFAReferences = ppszIpsecRegNFAReferences;
  2241. *pdwRegNFACount = dwNFACount;
  2243. return(dwError);
  2245. error:
  2247. if (ppszIpsecRegNFAReferences) {
  2248. FreeNFAReferences(
  2249. ppszIpsecRegNFAReferences,
  2250. i
  2251. );
  2253. }
  2255. *pppszIpsecRegNFAReferences = NULL;
  2256. *pdwRegNFACount = 0;
  2258. return(dwError);
  2260. }
  2262. DWORD
  2263. DeleteRegistryCache(
  2264. )
  2265. {
  2266. DWORD dwError = 0;
  2267. HKEY hParentKey = NULL;
  2268. WCHAR lpszName[MAX_PATH];
  2269. DWORD dwSize = 0;
  2271. dwError = RegOpenKeyExW(
  2272. HKEY_LOCAL_MACHINE,
  2273. gpszIpsecCacheKey,
  2274. 0,
  2275. KEY_ALL_ACCESS,
  2276. &hParentKey
  2277. );
  2278. BAIL_ON_WIN32_ERROR(dwError);
  2280. memset(lpszName, 0, sizeof(WCHAR)*MAX_PATH);
  2281. dwSize = MAX_PATH;
  2283. while((RegEnumKeyExW(hParentKey, 0, lpszName,
  2284. &dwSize, NULL,
  2285. NULL, NULL,NULL)) == ERROR_SUCCESS) {
  2287. dwError = RegDeleteKeyW(
  2288. hParentKey,
  2289. lpszName
  2290. );
  2291. if (dwError != ERROR_SUCCESS) {
  2292. break;
  2293. }
  2296. memset(lpszName, 0, sizeof(WCHAR)*MAX_PATH);
  2297. dwSize = MAX_PATH;
  2298. }
  2300. error:
  2302. if (hParentKey) {
  2303. RegCloseKey(hParentKey);
  2304. }
  2306. return(dwError);
  2307. }
  2310. DWORD
  2311. RegWriteMultiValuedString(
  2312. HKEY hRegKey,
  2313. LPWSTR pszValueName,
  2314. LPWSTR * ppszStringReferences,
  2315. DWORD dwNumStringReferences
  2316. )
  2317. {
  2318. DWORD dwError = 0;
  2319. DWORD i = 0;
  2320. LPWSTR pMem = NULL;
  2321. LPWSTR pszTemp = NULL;
  2322. DWORD dwSize = 0;
  2324. if (!ppszStringReferences) {
  2325. dwError = ERROR_INVALID_PARAMETER;
  2326. BAIL_ON_WIN32_ERROR(dwError);
  2328. }
  2330. for (i = 0; i < dwNumStringReferences; i++) {
  2332. dwSize += wcslen (*(ppszStringReferences + i));
  2333. dwSize ++;
  2334. }
  2336. dwSize ++;
  2338. pMem = (LPWSTR) AllocPolMem(dwSize*sizeof(WCHAR));
  2340. if (!pMem) {
  2341. dwError = ERROR_OUTOFMEMORY;
  2342. BAIL_ON_WIN32_ERROR(dwError);
  2343. }
  2345. pszTemp = pMem;
  2347. for (i = 0; i < dwNumStringReferences; i++) {
  2349. memcpy(pszTemp, *(ppszStringReferences + i), wcslen(*(ppszStringReferences + i))*sizeof(WCHAR));
  2350. pszTemp += wcslen(pszTemp) + 1;
  2352. }
  2354. //*pszTemp = L'\0';
  2356. dwError = RegSetValueExW(
  2357. hRegKey,
  2358. pszValueName,
  2359. 0,
  2360. REG_MULTI_SZ,
  2361. (LPBYTE)pMem,
  2362. dwSize * sizeof(WCHAR)
  2363. );
  2364. BAIL_ON_WIN32_ERROR(dwError);
  2367. error:
  2369. if (pMem) {
  2370. FreePolMem(pMem);
  2371. }
  2373. return(dwError);
  2374. }
  2377. DWORD
  2378. CopyFilterDSToRegString(
  2379. LPWSTR pszFilterDN,
  2380. LPWSTR * ppszFilterName
  2381. )
  2382. {
  2384. DWORD dwError = 0;
  2385. WCHAR szCommonName[MAX_PATH];
  2386. LPWSTR pszGuidName = NULL;
  2387. LPWSTR pszFilterName = NULL;
  2389. dwError = ComputePrelimCN(
  2390. pszFilterDN,
  2391. szCommonName
  2392. );
  2393. BAIL_ON_WIN32_ERROR(dwError);
  2395. dwError = ComputeGUIDName(
  2396. szCommonName,
  2397. &pszGuidName
  2398. );
  2399. BAIL_ON_WIN32_ERROR(dwError);
  2402. pszFilterName = AllocPolStr(pszGuidName);
  2403. if (!pszFilterName) {
  2404. dwError = ERROR_OUTOFMEMORY;
  2405. BAIL_ON_WIN32_ERROR(dwError);
  2406. }
  2408. *ppszFilterName = pszFilterName;
  2410. return(dwError);
  2412. error:
  2414. *ppszFilterName = NULL;
  2415. return(dwError);
  2417. }
  2420. DWORD
  2421. CopyNFADSToRegString(
  2422. LPWSTR pszNFADN,
  2423. LPWSTR * ppszNFAName
  2424. )
  2425. {
  2427. DWORD dwError = 0;
  2428. WCHAR szCommonName[MAX_PATH];
  2429. LPWSTR pszGuidName = NULL;
  2430. LPWSTR pszNFAName = NULL;
  2432. dwError = ComputePrelimCN(
  2433. pszNFADN,
  2434. szCommonName
  2435. );
  2436. BAIL_ON_WIN32_ERROR(dwError);
  2438. dwError = ComputeGUIDName(
  2439. szCommonName,
  2440. &pszGuidName
  2441. );
  2442. BAIL_ON_WIN32_ERROR(dwError);
  2445. pszNFAName = AllocPolStr(pszGuidName);
  2446. if (!pszNFAName) {
  2447. dwError = ERROR_OUTOFMEMORY;
  2448. BAIL_ON_WIN32_ERROR(dwError);
  2449. }
  2451. *ppszNFAName = pszNFAName;
  2453. return(dwError);
  2455. error:
  2457. *ppszNFAName = NULL;
  2458. return(dwError);
  2460. }
  2464. DWORD
  2465. CopyNegPolDSToRegString(
  2466. LPWSTR pszNegPolDN,
  2467. LPWSTR * ppszNegPolName
  2468. )
  2469. {
  2471. DWORD dwError = 0;
  2472. WCHAR szCommonName[MAX_PATH];
  2473. LPWSTR pszGuidName = NULL;
  2474. LPWSTR pszNegPolName = NULL;
  2476. dwError = ComputePrelimCN(
  2477. pszNegPolDN,
  2478. szCommonName
  2479. );
  2480. BAIL_ON_WIN32_ERROR(dwError);
  2482. dwError = ComputeGUIDName(
  2483. szCommonName,
  2484. &pszGuidName
  2485. );
  2486. BAIL_ON_WIN32_ERROR(dwError);
  2489. pszNegPolName = AllocPolStr(pszGuidName);
  2490. if (!pszNegPolName) {
  2491. dwError = ERROR_OUTOFMEMORY;
  2492. BAIL_ON_WIN32_ERROR(dwError);
  2493. }
  2495. *ppszNegPolName = pszNegPolName;
  2497. return(dwError);
  2499. error:
  2501. *ppszNegPolName = NULL;
  2502. return(dwError);
  2504. }
  2507. DWORD
  2508. CopyPolicyDSToRegString(
  2509. LPWSTR pszPolicyDN,
  2510. LPWSTR * ppszPolicyName
  2511. )
  2512. {
  2514. DWORD dwError = 0;
  2515. WCHAR szCommonName[MAX_PATH];
  2516. LPWSTR pszGuidName = NULL;
  2517. LPWSTR pszPolicyName = NULL;
  2519. dwError = ComputePrelimCN(
  2520. pszPolicyDN,
  2521. szCommonName
  2522. );
  2523. BAIL_ON_WIN32_ERROR(dwError);
  2525. dwError = ComputeGUIDName(
  2526. szCommonName,
  2527. &pszGuidName
  2528. );
  2529. BAIL_ON_WIN32_ERROR(dwError);
  2532. pszPolicyName = AllocPolStr(pszGuidName);
  2533. if (!pszPolicyName) {
  2534. dwError = ERROR_OUTOFMEMORY;
  2535. BAIL_ON_WIN32_ERROR(dwError);
  2536. }
  2538. *ppszPolicyName = pszPolicyName;
  2540. return(dwError);
  2542. error:
  2544. *ppszPolicyName = NULL;
  2545. return(dwError);
  2547. }
  2549. DWORD
  2550. CopyISAKMPDSToRegString(
  2551. LPWSTR pszISAKMPDN,
  2552. LPWSTR * ppszISAKMPName
  2553. )
  2554. {
  2556. DWORD dwError = 0;
  2557. WCHAR szCommonName[MAX_PATH];
  2558. LPWSTR pszGuidName = NULL;
  2559. LPWSTR pszISAKMPName = NULL;
  2561. dwError = ComputePrelimCN(
  2562. pszISAKMPDN,
  2563. szCommonName
  2564. );
  2565. BAIL_ON_WIN32_ERROR(dwError);
  2567. dwError = ComputeGUIDName(
  2568. szCommonName,
  2569. &pszGuidName
  2570. );
  2571. BAIL_ON_WIN32_ERROR(dwError);
  2574. pszISAKMPName = AllocPolStr(pszGuidName);
  2575. if (!pszISAKMPName) {
  2576. dwError = ERROR_OUTOFMEMORY;
  2577. BAIL_ON_WIN32_ERROR(dwError);
  2578. }
  2580. *ppszISAKMPName = pszISAKMPName;
  2582. return(dwError);
  2584. error:
  2586. *ppszISAKMPName = NULL;
  2587. return(dwError);
  2589. }