|
|
/*++
Copyright (c) 1998 Microsoft Corporation
Module Name:
util.c
Abstract:
Implementation of general utility functions.
Author:
Wesley Witt (wesw) 18-Dec-1998
Revision History:
Andrew Ritz (andrewr) 6-Jul-1999 : added comments
--*/
#include "sfcp.h"
#pragma hdrstop
//
// use this define to force path redirections
//
//#define SFC_REDIRECTOR_TEST
#define CONST_UNICODE_STRING(sz) { sizeof(sz) - 1, sizeof(sz), sz }
#ifndef _WIN64
typedef struct _SFC_EXPAND_TRANSLATION_ENTRY{ LPCWSTR Src; // full path to translate from (does not end in \\)
LPCWSTR Dest; // full path to translate to
ULONG ExceptionCount; // count of elements in Exceptions
const UNICODE_STRING* Exceptions; // array of excepted paths, relative to Src (begins with \\ but does not end in \\)
}SFC_EXPAND_TRANSLATION_ENTRY;
typedef struct _SFC_TRANSLATION_ENTRY{ UNICODE_STRING Src; UNICODE_STRING Dest;}SFC_TRANSLATION_ENTRY;
//
// exception lists; relative paths with no environment variables
//
static const UNICODE_STRING SfcSystem32Exceptions[] = { CONST_UNICODE_STRING(L"\\drivers\\etc"), CONST_UNICODE_STRING(L"\\spool"), CONST_UNICODE_STRING(L"\\catroot"), CONST_UNICODE_STRING(L"\\catroot2")};
//
// translation table that is expanded into SfcTranslations
//
static const SFC_EXPAND_TRANSLATION_ENTRY SfcExpandTranslations[] ={ { L"%windir%\\system32", L"%windir%\\syswow64", ARRAY_LENGTH(SfcSystem32Exceptions), SfcSystem32Exceptions }, { L"%windir%\\ime", L"%windir%\\ime (x86)", 0, NULL }, { L"%windir%\\regedit.exe", L"%windir%\\syswow64\\regedit.exe", 0, NULL }};
//
// translation table with expanded strings
//
static SFC_TRANSLATION_ENTRY* SfcTranslations = NULL;
//
// this guards the initialization of SfcTranslations
//
static RTL_CRITICAL_SECTION SfcTranslatorCs;static BOOL SfcNeedTranslation = FALSE;static BOOL SfcIsTranslatorInitialized = FALSE;
#endif // _WIN64
PVOIDSfcGetProcAddress( HMODULE hModule, LPSTR ProcName )
/*++
Routine Description:
Gets the address of the specified function.
Arguments:
hModule - Module handle returned from LdrLoadDll. ProcName - Procedure name
Return Value:
NULL if the function does not exist. Valid address is the function is found.
--*/
{ NTSTATUS Status; PVOID ProcedureAddress; STRING ProcedureName;
ASSERT((hModule != NULL) && (ProcName != NULL));
RtlInitString(&ProcedureName,ProcName);
Status = LdrGetProcedureAddress( hModule, &ProcedureName, 0, &ProcedureAddress ); if (!NT_SUCCESS(Status)) { DebugPrint2( LVL_MINIMAL, L"GetProcAddress failed for %S, ec=%lx", ProcName, Status ); return NULL; }
return ProcedureAddress;}
HMODULESfcLoadLibrary( IN PCWSTR LibFileName )
/*++
Routine Description:
Loads the specified DLL into session manager's address space and return the loaded DLL's address.
Arguments:
LibFileName - Name of the desired DLL
Return Value:
NULL if the DLL cannot be loaded. Valid address is the DLL is loaded.
--*/
{ NTSTATUS Status; HMODULE hModule; UNICODE_STRING DllName_U;
ASSERT(LibFileName);
RtlInitUnicodeString( &DllName_U, LibFileName );
Status = LdrLoadDll( NULL, NULL, &DllName_U, (PVOID *)&hModule ); if (!NT_SUCCESS( Status )) { DebugPrint2( LVL_MINIMAL, L"LoadDll failed for %ws, ec=%lx", LibFileName, Status ); return NULL; }
return hModule;}
PVOIDMemAlloc( SIZE_T AllocSize )/*++
Routine Description:
Allocates the specified number of bytes using the default process heap.
Arguments:
AllocSize - size in bytes of memory to be allocated
Return Value:
pointer to allocated memory or NULL for failure.
--*/{ return RtlAllocateHeap( RtlProcessHeap(), HEAP_ZERO_MEMORY, AllocSize );}
PVOIDMemReAlloc( SIZE_T AllocSize, PVOID OrigPtr )/*++
Routine Description:
ReAllocates the specified number of bytes using the default process heap.
Arguments:
AllocSize - size in bytes of memory to be reallocated OrigPtr - original heap memory pointer
Return Value:
pointer to allocated memory or NULL for failure.
--*/{ PVOID ptr;
ptr = RtlReAllocateHeap( RtlProcessHeap(), HEAP_ZERO_MEMORY, OrigPtr, AllocSize ); if (!ptr) { DebugPrint1( LVL_MINIMAL, L"MemReAlloc [%d bytes] failed", AllocSize ); }
return(ptr);}
VOIDMemFree( PVOID MemPtr )/*++
Routine Description:
Free's the memory at the specified location from the default process heap.
Arguments:
MemPtr - pointer to memory to be freed. If NULL, no action is taken.
Return Value:
none.
--*/{ if (MemPtr) { RtlFreeHeap( RtlProcessHeap(), 0, MemPtr ); }}
void SfcWriteDebugLog( IN LPCSTR String, IN ULONG Length OPTIONAL ){ NTSTATUS Status; OBJECT_ATTRIBUTES Attrs; UNICODE_STRING FileName; IO_STATUS_BLOCK iosb; HANDLE hFile;
ASSERT(String != NULL);
if(RtlDosPathNameToNtPathName_U(g_szLogFile, &FileName, NULL, NULL)) { InitializeObjectAttributes(&Attrs, &FileName, OBJ_CASE_INSENSITIVE, NULL, NULL); Status = NtCreateFile( &hFile, FILE_APPEND_DATA | SYNCHRONIZE, &Attrs, &iosb, NULL, FILE_ATTRIBUTE_NORMAL, FILE_SHARE_READ, FILE_OPEN_IF, FILE_NON_DIRECTORY_FILE | FILE_SYNCHRONOUS_IO_NONALERT | FILE_SEQUENTIAL_ONLY, NULL, 0 );
MemFree(FileName.Buffer);
if(!NT_SUCCESS(Status)) {#if DBG
DbgPrint("Could not open the log file.\r\n");#endif
return; }
if(0 == Length) Length = strlen(String);
Status = NtWriteFile(hFile, NULL, NULL, NULL, &iosb, (PVOID) String, Length, NULL, NULL); NtClose(hFile);
#if DBG
if(!NT_SUCCESS(Status)) DbgPrint("Could not write the log file.\r\n");#endif
}}
#define CHECK_DEBUG_LEVEL(var, l) ((var) != LVL_SILENT && (l) <= (var))
voiddprintf( IN ULONG Level, IN PCWSTR FileName, IN ULONG LineNumber, IN PCWSTR FormatStr, IN ... )/*++
Routine Description:
Main debugger output routine. Callers should use the DebugPrintX macro, which is compiled out in the retail version of the product
Arguments:
Level - indicates a LVL_ severity level so the amount of output can be controlled. FileName - string indicating the filename the debug comes from LineNumber - indicates the line number of the debug output. FormatStr - indicates the data to be output
Return Value:
none.
--*/{ static WCHAR buf[4096]; static CHAR str[4096]; va_list arg_ptr; ULONG Bytes; PWSTR p; SYSTEMTIME CurrTime;
#if DBG
if(!CHECK_DEBUG_LEVEL(SFCDebugDump, Level) && !CHECK_DEBUG_LEVEL(SFCDebugLog, Level)) return;#else
if(!CHECK_DEBUG_LEVEL(SFCDebugLog, Level)) return;#endif
GetLocalTime( &CurrTime );
try { p = buf + swprintf( buf, L"SFC: %02d:%02d:%02d.%03d ", CurrTime.wHour, CurrTime.wMinute, CurrTime.wSecond, CurrTime.wMilliseconds );
#if DBG
if (FileName && LineNumber) { PWSTR s; s = wcsrchr( FileName, L'\\' ); if (s) { p += swprintf( p, L"%12s @ %4d ", s+1, LineNumber ); } }#else
//
// put only the line number in output
//
p += swprintf(p, L"@ %4d ", LineNumber);#endif
va_start( arg_ptr, FormatStr ); p += _vsnwprintf( p, 2048, FormatStr, arg_ptr ); va_end( arg_ptr ); wcscpy( p, L"\r\n" ); p += wcslen(p); } except(EXCEPTION_EXECUTE_HANDLER) { return; }
Bytes = (ULONG)(p - buf);
WideCharToMultiByte( CP_ACP, 0, buf, Bytes + 1, // include the null
str, sizeof(str), NULL, NULL );
#if DBG
if(CHECK_DEBUG_LEVEL(SFCDebugDump, Level)) DbgPrint( str );
if(CHECK_DEBUG_LEVEL(SFCDebugLog, Level)) SfcWriteDebugLog(str, Bytes);#else
SfcWriteDebugLog(str, Bytes);#endif
}
#if DBG
UCHAR HandleBuffer[1024*64];
VOIDPrintHandleCount( PCWSTR str )/*++
Routine Description:
Outputs the handle count for the current process to the debugger. Use this call before and after a function to look for handle leaks (the input string can help you identify where you are checking the handle count.)
Arguments:
str - null terminated unicode string that prefaces the debug spew
Return Value:
none. Debug routine only.
--*/{ PSYSTEM_PROCESS_INFORMATION ProcessInfo; NTSTATUS Status; ULONG TotalOffset;
//
// get the system process information
//
Status = NtQuerySystemInformation( SystemProcessInformation, HandleBuffer, sizeof(HandleBuffer), NULL ); if (NT_SUCCESS(Status)) { //
// find our process and spew the handle count
//
TotalOffset = 0; ProcessInfo = (PSYSTEM_PROCESS_INFORMATION)HandleBuffer; while(1) { if ((DWORD_PTR)ProcessInfo->UniqueProcessId == (ULONG_PTR)NtCurrentTeb()->ClientId.UniqueProcess) { DebugPrint2( LVL_MINIMAL, L"%ws: handle count = %d", str, ProcessInfo->HandleCount ); break; } if (ProcessInfo->NextEntryOffset == 0) { break; } TotalOffset += ProcessInfo->NextEntryOffset; ProcessInfo = (PSYSTEM_PROCESS_INFORMATION)&HandleBuffer[TotalOffset]; } }}
#endif
DWORDMyMessageBox( HWND hwndParent, OPTIONAL DWORD ResId, DWORD MsgBoxType, ... )/*++
Routine Description:
Messagebox wrapper that retreives a string table resource id and creates a popup for the given message.
Arguments:
hwndParent - handle to parent window ResId - resource id of string to be loaded MsgBoxType - MB_* constant
Return Value:
Win32 error code indicating outcome
--*/{ static WCHAR Title[128] = { L"\0" }; WCHAR Tmp1[MAX_PATH*2]; WCHAR Tmp2[MAX_PATH*2]; PWSTR Text = NULL; PWSTR s; va_list arg_ptr; int Size;
//
// SFCNoPopUps is a policy setting that can be set
//
if (SFCNoPopUps) { return(0); }
//
// load the title string
//
if (!Title[0]) { Size = LoadString( SfcInstanceHandle, IDS_TITLE, Title, UnicodeChars(Title) ); if (Size == 0) { return(0); } }
//
// load the message string
//
Size = LoadString( SfcInstanceHandle, ResId, Tmp1, UnicodeChars(Tmp1) ); if (Size == 0) { return(0); }
//
// inplace substitution can occur here
//
s = wcschr( Tmp1, L'%' ); if (s) { va_start( arg_ptr, MsgBoxType ); _vsnwprintf( Tmp2, sizeof(Tmp2)/sizeof(WCHAR), Tmp1, arg_ptr ); va_end( arg_ptr ); Text = Tmp2; } else { Text = Tmp1; }
//
// actually call messagebox now
//
return MessageBox( hwndParent, Text, Title, (MsgBoxType | MB_TOPMOST) & ~MB_DEFAULT_DESKTOP_ONLY );}
BOOLEnablePrivilege( IN PCTSTR PrivilegeName, IN BOOL Enable )
/*++
Routine Description:
Enable or disable a given named privilege.
Arguments:
PrivilegeName - supplies the name of a system privilege.
Enable - flag indicating whether to enable or disable the privilege.
Return Value:
Boolean value indicating whether the operation was successful.
--*/
{ HANDLE Token; BOOL b; TOKEN_PRIVILEGES NewPrivileges; LUID Luid;
if(!OpenProcessToken(GetCurrentProcess(),TOKEN_ADJUST_PRIVILEGES,&Token)) { return(FALSE); }
if(!LookupPrivilegeValue(NULL,PrivilegeName,&Luid)) { CloseHandle(Token); return(FALSE); }
NewPrivileges.PrivilegeCount = 1; NewPrivileges.Privileges[0].Luid = Luid; NewPrivileges.Privileges[0].Attributes = Enable ? SE_PRIVILEGE_ENABLED : 0;
b = AdjustTokenPrivileges( Token, FALSE, &NewPrivileges, 0, NULL, NULL );
CloseHandle(Token);
return(b);}
voidMyLowerString( IN PWSTR String, IN ULONG StringLength // in characters
)/*++
Routine Description:
lowercase the specified string.
Arguments:
String - supplies string to lowercase
StringLength - length in chars of string to be lowercased
Return Value:
none.
--*/{ ULONG i;
ASSERT(String != NULL);
for (i=0; i<StringLength; i++) { String[i] = towlower(String[i]); }}
#ifdef SFCLOGFILE
voidSfcLogFileWrite( IN DWORD StrId, IN ... )/*++
Routine Description:
Output the string table resource id as specified to the sfc logfile.
This logfile is used to record files that have been restored on the system. This way, an installer can know if packages are attempting to install system components.
The logfile is a unicode text file of the format:
<TIME> <FILENAME>
We need to record the full path of the file plus the date for this to be more useful.
Arguments:
StrId - supplies resource id to load.
Return Value:
none.
--*/{ static WCHAR buf[4096]; static HANDLE hFile = INVALID_HANDLE_VALUE; WCHAR str[128]; va_list arg_ptr; ULONG Bytes; PWSTR p; SYSTEMTIME CurrTime;
GetSystemTime( &CurrTime );
if (hFile == INVALID_HANDLE_VALUE) { ExpandEnvironmentStrings( L"%systemroot%\\sfclog.txt", buf, UnicodeChars(buf) ); hFile = CreateFile( buf, GENERIC_READ | GENERIC_WRITE, FILE_SHARE_READ, NULL, OPEN_ALWAYS, FILE_ATTRIBUTE_NORMAL | FILE_FLAG_WRITE_THROUGH, NULL ); if (hFile != INVALID_HANDLE_VALUE) { //
// If the file is empty, write out a unicode tag to the front of
// the file.
//
if (GetFileSize( hFile, NULL ) == 0) { buf[0] = 0xff; buf[1] = 0xfe; WriteFile( hFile, buf, 2, &Bytes, NULL ); } } }
if (hFile == INVALID_HANDLE_VALUE) { return; }
try { p = buf; *p = 0; swprintf( p, L"%02d:%02d:%02d.%03d ", CurrTime.wHour, CurrTime.wMinute, CurrTime.wSecond, CurrTime.wMilliseconds ); p += wcslen(p); LoadString( SfcInstanceHandle, StrId, str, UnicodeChars(str) ); va_start( arg_ptr, StrId ); _vsnwprintf( p, 2048, str, arg_ptr ); va_end( arg_ptr ); p += wcslen(p); wcscat( p, L"\r\n" ); } except(EXCEPTION_EXECUTE_HANDLER) { buf[0] = 0; }
if (buf[0] == 0) { return; }
//
// set file pointer to end of file so we don't overwrite data
//
SetFilePointer(hFile,0,0,FILE_END);
WriteFile( hFile, buf, UnicodeLen(buf), &Bytes, NULL );
return;}
#endif
intMyDialogBoxParam( IN DWORD RcId, IN DLGPROC lpDialogFunc, // pointer to dialog box procedure
IN LPARAM dwInitParam // initialization value
)/*++
Routine Description:
creates a dialog box on the user's desktop.
Arguments:
RcId - resource id of dialog to be created. lpDialogFunc - dialog proc for dialog dwInitParam - initial parameter that WM_INITDIALOG receives in dialogproc
Return Value:
0 or -1 for failure, else the value from EndDialog.
--*/{#if 0
HDESK hDesk = OpenInputDesktop( 0, FALSE, MAXIMUM_ALLOWED ); if ( hDesk ) { SetThreadDesktop( hDesk ); CloseDesktop( hDesk ); }#else
SetThreadDesktop( hUserDesktop );#endif
return (int) DialogBoxParam( SfcInstanceHandle, MAKEINTRESOURCE(RcId), NULL, lpDialogFunc, dwInitParam );}
voidCenterDialog( HWND hwnd )/*++
Routine Description:
centers the specified window around the middle of the screen..
Arguments:
HWND - handle to window.
Return Value:
none.
--*/{ RECT rcWindow; LONG x,y,w,h; LONG sx = GetSystemMetrics(SM_CXSCREEN), sy = GetSystemMetrics(SM_CYSCREEN);
ASSERT(IsWindow(hwnd));
GetWindowRect(hwnd,&rcWindow);
w = rcWindow.right - rcWindow.left + 1; h = rcWindow.bottom - rcWindow.top + 1; x = (sx - w)/2; y = (sy - h)/2;
MoveWindow(hwnd,x,y,w,h,FALSE);}
BOOLMakeDirectory( PCWSTR Dir )
/*++
Routine Description:
Attempt to create all of the directories in the given path.
Arguments:
Dir - Directory path to create
Return Value:
TRUE for success, FALSE on error
--*/
{ LPTSTR p, NewDir; BOOL retval;
NewDir = p = MemAlloc( (wcslen(Dir) + 1) *sizeof(WCHAR) ); if (p) { wcscpy(p, Dir); } else { return(FALSE); }
if (*p != '\\') p += 2; while( *++p ) { while(*p && *p != TEXT('\\')) p++; if (!*p) { retval = CreateDirectory( NewDir, NULL );
retval = retval ? retval : (GetLastError() == ERROR_ALREADY_EXISTS) ;
MemFree(NewDir);
return(retval); } *p = 0; retval = CreateDirectory( NewDir, NULL ); if (!retval && GetLastError() != ERROR_ALREADY_EXISTS) { MemFree(NewDir); return(retval); } *p = TEXT('\\'); }
MemFree( NewDir );
return(TRUE);}
BOOLBuildPathForFile( IN PCWSTR SourceRootPath, IN PCWSTR SubDirectoryPath, OPTIONAL IN PCWSTR FileName, IN BOOL IncludeSubDirectory, IN BOOL IncludeArchitectureSpecificSubDirectory, OUT PWSTR PathBuffer, IN DWORD PathBufferSize )/*++
Routine Description:
Builds the specified path into a buffer
Arguments:
SourceRootPath - Specifies the root path to look for. SubDirectoryPath - Specifies an optional subdirectory under the root path where the file is located FileName - Specifies the filename to look for. IncludeSubDirectory - If TRUE, specifies that the subdirectory specification should be used. IncludeArchitectureSpecificSubDirectory - If TRUE, specifies that the architecture specif subdir should be used. If FALSE, specifies that the architecture specific subdir should be filtered out. If IncludeSubDirectory is FALSE, this parameter is ignored PathBuffer - Specifies a buffer to receive the path PathBufferSize - Specifies the size of the buffer to receive the path, in characters
Return Value:
TRUE for success, FALSE on error
--*/{ WCHAR InternalBuffer[MAX_PATH]; WCHAR InternalSubDirBuffer[MAX_PATH]; PWSTR p;
ASSERT( SourceRootPath != NULL ); ASSERT( FileName != NULL ); ASSERT( PathBuffer != NULL );
wcscpy( InternalBuffer, SourceRootPath );
if (IncludeSubDirectory) { if (SubDirectoryPath) { wcscpy( InternalSubDirBuffer, SubDirectoryPath );
if (IncludeArchitectureSpecificSubDirectory) { p = InternalSubDirBuffer; } else { p = wcsstr( InternalSubDirBuffer, PLATFORM_NAME ); if (p) { p += wcslen(PLATFORM_NAME) + 1; if (p > InternalSubDirBuffer + wcslen(InternalSubDirBuffer)) { p = NULL; } } } } else { p = NULL; }
if (p) { pSetupConcatenatePaths( InternalBuffer, p, UnicodeChars(InternalBuffer), NULL ); }
}
pSetupConcatenatePaths( InternalBuffer, FileName, UnicodeChars(InternalBuffer), NULL );
if (wcslen(InternalBuffer) + 1 <= PathBufferSize) { wcscpy( PathBuffer, InternalBuffer ); return(TRUE); }
SetLastError(ERROR_INSUFFICIENT_BUFFER); return(FALSE);
}
PWSTRSfcGetSourcePath( IN BOOL bServicePackSourcePath, IN OUT PWSTR Path )/*++
Routine Description:
Retreives the os source path or servicepack source path, taking into account group policy.
Arguments:
bServicePackSourcePath - if TRUE, indicates that the servicepack source path should be retreived. Path - Specifies the buffer to receive the path. Assume the buffer is at least MAX_PATH*sizeof(WCHAR) large. path where the file is located
Return Value:
if successful, returns back a pointer to Path, else NULL
--*/{ PWSTR p;
MYASSERT(Path != NULL);
// If running under setup then we need to use the path
// to $WINNT$.~LS or whatever passed in by GUI-setup.
if (SFCDisable == SFC_DISABLE_SETUP) { MYASSERT(ServicePackSourcePath != NULL && ServicePackSourcePath[0] != 0); MYASSERT(OsSourcePath != NULL && OsSourcePath[0] != 0); if(bServicePackSourcePath) { wcsncpy( Path, ServicePackSourcePath, MAX_PATH ); } else { wcsncpy( Path, OsSourcePath, MAX_PATH ); } return(Path); } p = SfcQueryRegStringWithAlternate( REGKEY_POLICY_SETUP, REGKEY_SETUP_FULL, bServicePackSourcePath ? REGVAL_SERVICEPACKSOURCEPATH : REGVAL_SOURCEPATH ); if(p) { wcsncpy( Path, p, MAX_PATH ); MemFree( p ); }
return((p != NULL) ? Path : NULL );
}
DWORDSfcCreateSid( IN WELL_KNOWN_SID_TYPE type, OUT PSID* ppSid )/*++
Routine Description:
Allocates and creates a well-known SID.
Arguments:
type - type of SID to create ppSid - receives a pointer to the newly-created SID
Return Value:
Win32 error code.
--*/{ DWORD dwError = ERROR_SUCCESS; PSID pSid = NULL; DWORD dwSize = SECURITY_MAX_SID_SIZE;
*ppSid = NULL; pSid = (PSID) MemAlloc(dwSize);
if(NULL == pSid) { dwError = ERROR_NOT_ENOUGH_MEMORY; goto exit; }
if(!CreateWellKnownSid(type, NULL, pSid, &dwSize)) { dwError = GetLastError(); goto exit; }
*ppSid = pSid; pSid = NULL;
exit: MemFree(pSid); return dwError;}
DWORDSfcGetSidName( IN PSID pSid, OUT PWSTR* ppszName )/*++
Routine Description:
Gets the account name of a SID. The function allocates the buffer for the name.
Arguments:
pSid - pointer to the SID ppszName - receives a pointer to the allocated buffer that holds the account name
Return Value:
Win32 error code.
--*/{ DWORD dwError = ERROR_SUCCESS; PWSTR szName = NULL; PWSTR szDomain = NULL; DWORD dwNameSize; DWORD dwDomainSize; SID_NAME_USE use;
*ppszName = NULL; dwNameSize = dwDomainSize = 256; szName = (PWSTR) MemAlloc(dwNameSize); szDomain = (PWSTR) MemAlloc(dwDomainSize);
if(NULL == szName || NULL == szDomain) { dwError = ERROR_NOT_ENOUGH_MEMORY; goto exit; }
if(!LookupAccountSid(NULL, pSid, szName, &dwNameSize, szDomain, &dwDomainSize, &use)) { dwError = GetLastError(); goto exit; }
*ppszName = szName; szName = NULL;
exit: MemFree(szName); MemFree(szDomain); return dwError;}
DWORD SfcIsUserAdmin( IN HANDLE hToken OPTIONAL, OUT PBOOL Result )/*++
Routine Description:
Verifies if an impersonation token is a member of the local administrators group.
Arguments:
hToken - handle to the impersonation token; if NULL, the current thread's impersonation token (or the process token if the thread is not impersonating) is used
Result - receives a non-zero value if the token is a member of the administrators group, FALSE otherwise
Return Value:
Win32 error code.
--*/{ DWORD dwError = ERROR_SUCCESS; PSID pSid = NULL; *Result = FALSE;
dwError = SfcCreateSid(WinBuiltinAdministratorsSid, &pSid);
if(dwError != ERROR_SUCCESS) { goto exit; }
if(!CheckTokenMembership(hToken, pSid, Result)) { dwError = GetLastError(); goto exit; }
exit: MemFree(pSid); return dwError;}
DWORDSfcRpcPriviledgeCheck( IN HANDLE RpcHandle )/*++
Routine Description:
Check if the user has sufficient privilege to perform the requested action.
Currently only administrators have privilege to do this.
Arguments:
RpcHandle - Rpc binding handle used for impersonating the client.
Return Value:
Win32 error code indicating outcome -- RPC_S_OK (ERROR_SUCCESS) indicates success.
--*/{ DWORD dwError; DWORD dwTemp; BOOL IsAdmin;
//
// impersonate the calling client
//
dwError = RpcImpersonateClient(RpcHandle);
if (dwError != RPC_S_OK) { DebugPrint1( LVL_MINIMAL, L"RpcImpersonateClient failed, ec = %d",dwError ); goto exit; }
//
// make sure the user has sufficient privilege
//
dwError = SfcIsUserAdmin(NULL, &IsAdmin);
//
// revert back to original context. if this fails, we must return failure.
//
dwTemp = RpcRevertToSelf();
if (dwTemp != RPC_S_OK) { dwError = dwTemp; DebugPrint1( LVL_MINIMAL, L"RpcRevertToSelf failed, ec = 0x%08x", dwError ); goto exit; }
if(ERROR_SUCCESS == dwError && !IsAdmin) { dwError = ERROR_ACCESS_DENIED; }
exit: return dwError;}
PSFC_GET_FILESSfcLoadSfcFiles( BOOL bLoad )/*++
Routine Description:
Loads or unloads sfcfiles.dll and gets the address of SfcGetFiles function
Arguments:
bLoad: TRUE to load sfcfiles.dll, false otherwise.
Return Value:
If bLoad is TRUE and the function is successful, it returns the address of SfcGetFiles function, otherwise NULL
--*/{ static HMODULE h = NULL; PSFC_GET_FILES pfGetFiles = NULL;
if(bLoad) { if(NULL == h) { h = SfcLoadLibrary(L"sfcfiles.dll"); }
if(h != NULL) { pfGetFiles = (PSFC_GET_FILES) GetProcAddress(h, "SfcGetFiles"); } }
if(NULL == pfGetFiles && h != NULL) { LdrUnloadDll(h); h = NULL; }
return pfGetFiles;}
#if DBG
DWORD GetProcessOwner(PTOKEN_OWNER* ppto){ HANDLE hToken = NULL; DWORD dwSize = 100; DWORD dwError;
ASSERT(ppto != NULL); *ppto = (PTOKEN_OWNER) MemAlloc(dwSize);
if(NULL == *ppto) { dwError = ERROR_NOT_ENOUGH_MEMORY; goto lExit; }
if(!OpenProcessToken(GetCurrentProcess(), TOKEN_READ, &hToken)) { dwError = GetLastError(); goto lExit; }
if(!GetTokenInformation(hToken, TokenOwner, *ppto, dwSize, &dwSize)) { PTOKEN_OWNER p; dwError = GetLastError();
if(dwError != ERROR_INSUFFICIENT_BUFFER) goto lExit;
p = (PTOKEN_OWNER) MemReAlloc(dwSize, *ppto);
if(NULL == p) { dwError = ERROR_NOT_ENOUGH_MEMORY; goto lExit; }
*ppto = p; if(!GetTokenInformation(hToken, TokenOwner, *ppto, dwSize, &dwSize)) { dwError = GetLastError(); goto lExit; } }
dwError = ERROR_SUCCESS;
lExit: if(dwError != ERROR_SUCCESS && *ppto != NULL) { MemFree(*ppto); *ppto = NULL; }
if(hToken != NULL) CloseHandle(hToken);
return dwError;}
DWORD CreateSd(PSECURITY_DESCRIPTOR* ppsd){ enum { AuthenticatedUsers, MaxSids };
PTOKEN_OWNER pto = NULL; PSID psids[MaxSids] = { NULL }; const DWORD cdwAllowedAceLength = sizeof(ACCESS_ALLOWED_ACE) - sizeof(DWORD); SID_IDENTIFIER_AUTHORITY sidNtAuthority = SECURITY_NT_AUTHORITY; PACL pacl; DWORD dwAclSize; DWORD dwError; DWORD i;
ASSERT(ppsd != NULL); *ppsd = NULL;
dwError = GetProcessOwner(&pto);
if(dwError != ERROR_SUCCESS) goto lExit;
if(!AllocateAndInitializeSid( &sidNtAuthority, 1, SECURITY_AUTHENTICATED_USER_RID, 0, 0, 0, 0, 0, 0, 0, psids + AuthenticatedUsers )) { dwError = GetLastError(); goto lExit; }
//
// compute the size of ACL
//
dwAclSize = sizeof(ACL) + cdwAllowedAceLength + GetLengthSid(pto->Owner); for(i = 0; i < MaxSids; i++) dwAclSize += cdwAllowedAceLength + GetLengthSid(psids[i]);
*ppsd = (PSECURITY_DESCRIPTOR) MemAlloc(SECURITY_DESCRIPTOR_MIN_LENGTH + dwAclSize);
if(NULL == *ppsd) { dwError = ERROR_NOT_ENOUGH_MEMORY; goto lExit; }
pacl = (PACL) ((LPBYTE) (*ppsd) + SECURITY_DESCRIPTOR_MIN_LENGTH);
if( !InitializeAcl(pacl, dwAclSize, ACL_REVISION) || !AddAccessAllowedAce(pacl, ACL_REVISION, EVENT_ALL_ACCESS, pto->Owner) || !AddAccessAllowedAce(pacl, ACL_REVISION, EVENT_MODIFY_STATE, psids[AuthenticatedUsers]) || !InitializeSecurityDescriptor(*ppsd, SECURITY_DESCRIPTOR_REVISION) || !SetSecurityDescriptorDacl(*ppsd, TRUE, pacl, FALSE) ) { dwError = GetLastError(); goto lExit; }
dwError = ERROR_SUCCESS;
lExit: if(dwError != ERROR_SUCCESS && *ppsd != NULL) { MemFree(*ppsd); *ppsd = NULL; }
if(pto != NULL) MemFree(pto);
for(i = 0; i < MaxSids; i++) { if(psids[i] != NULL) FreeSid(psids[i]); }
return dwError;}#endif
LRESULT CALLBACK DlgParentWndProc(HWND hwnd, UINT uMsg, WPARAM wParam, LPARAM lParam)/*++
Routine Description:
This is the window proc of the parent window for network authentication dialog
Arguments:
See Platform SDK docs
Return Value:
See Platform SDK docs
--*/{ static PSFC_WINDOW_DATA pWndData = NULL;
switch(uMsg) { case WM_CREATE: pWndData = pSfcCreateWindowDataEntry(hwnd);
if(NULL == pWndData) { return -1; }
break;
case WM_WFPENDDIALOG: //
// don't try to delete pWndData from the list when this message is sent because we'll deadlock;
// the entry will be removed by the thread that sent it
//
pWndData = NULL; DestroyWindow(hwnd); break;
case WM_DESTROY: if(pWndData != NULL) { //
// delete pWndData from the list since this is not a consequence of receiving WM_WFPENDDIALOG
//
pSfcRemoveWindowDataEntry(pWndData); }
break;
default: return DefWindowProc(hwnd, uMsg, wParam, lParam); }
return 0;}
DWORDCreateDialogParent( OUT HWND* phwnd )/*++
Routine Description:
Creates the parent window for network authentication dialog
Arguments:
phwnd: receives the handle of the newly-created window
Return Value:
Win32 error code
--*/{ DWORD dwError = ERROR_SUCCESS; WNDCLASSW wc; WCHAR szTitle[128];
ASSERT(phwnd != NULL);
RtlZeroMemory(&wc, sizeof(wc)); wc.lpszClassName = PARENT_WND_CLASS; wc.hInstance = SfcInstanceHandle; wc.lpfnWndProc = DlgParentWndProc;
//
// if the class is already registered, there will be no problems;
// if there's an error registering the class for the first time, it will show up in CreateWindow
//
RegisterClassW(&wc);
if(0 == LoadString(SfcInstanceHandle, IDS_TITLE, szTitle, ARRAY_LENGTH(szTitle))) { szTitle[0] = 0; }
*phwnd = CreateWindowW( wc.lpszClassName, szTitle, WS_POPUP | WS_VISIBLE, 0, 0, 0, 0, NULL, NULL, wc.hInstance, NULL );
if(NULL == *phwnd) { dwError = GetLastError(); DebugPrint1(LVL_VERBOSE, L"CreateDialogParent failed with the code %x", dwError); goto exit; }
//
// Make it topmost so it won't go unnoticed
//
SetWindowPos(*phwnd, HWND_TOPMOST, 0, 0, 0, 0, SWP_NOMOVE | SWP_NOSIZE);
exit: return dwError;}
NTSTATUSSfcAllocUnicodeStringFromPath( IN PCWSTR szPath, OUT PUNICODE_STRING pString )/*++
Routine Description:
Expands the environment variables in the input path. Allocates the output buffer.
Arguments:
szPath - a path that can contain environment variables pString - receives the expanded path
Return value:
The error code.
--*/{ ULONG uLength;
pString->Length = pString->MaximumLength = 0; pString->Buffer = NULL;
uLength = ExpandEnvironmentStringsW(szPath, NULL, 0);
if(0 == uLength || uLength > MAXSHORT) { return STATUS_INVALID_PARAMETER; }
pString->Buffer = (PWSTR) MemAlloc(uLength * sizeof(WCHAR));
if(NULL == pString->Buffer) { return STATUS_NO_MEMORY; }
if(0 == ExpandEnvironmentStringsW(szPath, pString->Buffer, uLength)) { return STATUS_INVALID_PARAMETER; }
pString->MaximumLength = (USHORT) (uLength * sizeof(WCHAR)); pString->Length = pString->MaximumLength - sizeof(WCHAR);
return STATUS_SUCCESS;}
#ifndef _WIN64
VOIDSfcCleanupPathTranslator( IN BOOL FinalCleanup )/*++
Routine Description:
Frees the memory used in the translation table and optionally the critical section used to access it.
Arguments:
FinalCleanup - if TRUE, the critical section is also deleted
Return value:
none
--*/{ if(SfcNeedTranslation) { if(SfcTranslations != NULL) { ULONG i;
for(i = 0; i < ARRAY_LENGTH(SfcExpandTranslations); ++i) { MemFree(SfcTranslations[i].Src.Buffer); MemFree(SfcTranslations[i].Dest.Buffer); }
MemFree(SfcTranslations); SfcTranslations = NULL; }
if(FinalCleanup) { RtlDeleteCriticalSection(&SfcTranslatorCs); } }}
VOIDSfcInitPathTranslator( VOID )/*++
Routine Description:
Initializes the path translator. Does not expand the table paths.
Arguments:
none
Return value:
none
--*/{#ifdef SFC_REDIRECTOR_TEST
SfcNeedTranslation = TRUE;
#else
SfcNeedTranslation = (GetSystemWow64DirectoryW(NULL, 0) != 0);
#endif
if(SfcNeedTranslation) { RtlInitializeCriticalSection(&SfcTranslatorCs); }}
NTSTATUSSfcExpandPathTranslator( VOID )/*++
Routine Description:
Expands the translation table paths.
Arguments:
none
Return value:
The error code.
--*/{ NTSTATUS Status = STATUS_SUCCESS;
ASSERT(SfcNeedTranslation); RtlEnterCriticalSection(&SfcTranslatorCs);
if(!SfcIsTranslatorInitialized) { ULONG ulCount = ARRAY_LENGTH(SfcExpandTranslations); ULONG i;
ASSERT(NULL == SfcTranslations);
SfcTranslations = (SFC_TRANSLATION_ENTRY*) MemAlloc(ulCount * sizeof(SFC_TRANSLATION_ENTRY));
if(NULL == SfcTranslations) { Status = STATUS_NO_MEMORY; goto cleanup; }
for(i = 0; i < ulCount; ++i) { Status = SfcAllocUnicodeStringFromPath(SfcExpandTranslations[i].Src, &SfcTranslations[i].Src);
if(!NT_SUCCESS(Status)) { goto cleanup; }
Status = SfcAllocUnicodeStringFromPath(SfcExpandTranslations[i].Dest, &SfcTranslations[i].Dest);
if(!NT_SUCCESS(Status)) { goto cleanup; } } //
// set this to TRUE only on success; in case of failure, the init will be tried later
//
SfcIsTranslatorInitialized = TRUE;
cleanup: if(!NT_SUCCESS(Status)) { SfcCleanupPathTranslator(FALSE); DebugPrint(LVL_MINIMAL, L"Could not initialize the path translator"); } }
RtlLeaveCriticalSection(&SfcTranslatorCs); return Status;}
NTSTATUSSfcRedirectPath( IN PCWSTR szPath, OUT PUNICODE_STRING pPath )/*++
Routine Description:
Expands environment variables and translates a path from win32 to wow64. Allocates the output buffer.
Arguments:
szPath - the path to expand/translate pPath - receives the processed (and possibly changed) path
Return value:
The error code.
--*/{ NTSTATUS Status = STATUS_SUCCESS; UNICODE_STRING Path = { 0 }; ULONG i;
ASSERT(szPath != NULL); ASSERT(pPath != NULL);
RtlZeroMemory(pPath, sizeof(*pPath)); //
// first of all, expand environment strings
//
Status = SfcAllocUnicodeStringFromPath(szPath, &Path);
if(!NT_SUCCESS(Status)) { goto exit; }
if(!SfcNeedTranslation) { goto no_translation; }
Status = SfcExpandPathTranslator();
if(!NT_SUCCESS(Status)) { goto exit; }
for(i = 0; i < ARRAY_LENGTH(SfcExpandTranslations); ++i) { PUNICODE_STRING pSrc = &SfcTranslations[i].Src; PUNICODE_STRING pDest = &SfcTranslations[i].Dest;
if(Path.Length >= pSrc->Length && 0 == _wcsnicmp(Path.Buffer, pSrc->Buffer, pSrc->Length / sizeof(WCHAR))) { const UNICODE_STRING* pExcep = SfcExpandTranslations[i].Exceptions; //
// test if this is an excluded path
//
for(i = SfcExpandTranslations[i].ExceptionCount; i--; ++pExcep) { if(Path.Length >= pSrc->Length + pExcep->Length && 0 == _wcsnicmp((PWCHAR) ((PCHAR) Path.Buffer + pSrc->Length), pExcep->Buffer, pExcep->Length / sizeof(WCHAR))) { goto no_translation; } }
DebugPrint1(LVL_VERBOSE, L"Redirecting \"%s\"", Path.Buffer); //
// compute the new length, including the terminator
//
pPath->MaximumLength = Path.Length - pSrc->Length + pDest->Length + sizeof(WCHAR); pPath->Buffer = (PWSTR) MemAlloc(pPath->MaximumLength);
if(NULL == pPath->Buffer) { Status = STATUS_NO_MEMORY; goto exit; }
RtlCopyMemory(pPath->Buffer, pDest->Buffer, pDest->Length); //
// copy the reminder of the path (including terminator)
//
RtlCopyMemory((PCHAR) pPath->Buffer + pDest->Length, (PCHAR) Path.Buffer + pSrc->Length, Path.Length - pSrc->Length + sizeof(WCHAR)); pPath->Length = pPath->MaximumLength - sizeof(WCHAR);
DebugPrint1(LVL_VERBOSE, L"Path redirected to \"%s\"", pPath->Buffer); goto exit; } }
no_translation: DebugPrint1(LVL_VERBOSE, L"No translation required for \"%s\"", Path.Buffer); //
// output the expanded string
//
*pPath = Path; Path.Buffer = NULL;
exit: MemFree(Path.Buffer);
if(!NT_SUCCESS(Status)) { MemFree(pPath->Buffer); RtlZeroMemory(pPath, sizeof(*pPath)); }
return Status;}#endif // _WIN64
NTSTATUSSfcRpcStartServer( VOID )/*++
Routine Description:
Initializes the RPC server and starts listening for calls.
Arguments:
none
Return Value:
NT status code.
--*/{ RPC_STATUS Status;
//
// Use LRPC protocol and WFP's endpoint
//
Status = RpcServerUseProtseqEp(L"ncalrpc", 0, SFC_RPC_ENDPOINT, NULL);
if(Status != RPC_S_OK) { goto exit; }
//
// Register the RPC interface and start listening to calls
//
Status = RpcServerRegisterIfEx( SfcSrv_sfcapi_ServerIfHandle, NULL, NULL, RPC_IF_AUTOLISTEN, RPC_C_LISTEN_MAX_CALLS_DEFAULT, NULL );
exit: return I_RpcMapWin32Status(Status);}
DWORDSfcNtPathToDosPath( IN LPCWSTR NtName, OUT LPWSTR* DosName )/*++
Routine Description:
Converts an NT file system path to a DOS path. Allocates the result using MemAlloc.
Arguments:
NtName -NT path to be converted DosName -pointer that receives the converted DOS path (allocated)
Return Value:
Win32 error code.
--*/{ NTSTATUS Status = STATUS_SUCCESS; RTL_UNICODE_STRING_BUFFER Buffer; UNICODE_STRING String;
ASSERT(DosName != NULL); *DosName = NULL;
RtlInitUnicodeString(&String, NtName); ASSERT(String.Length != 0);
if(String.Length != 0 && L'!' == String.Buffer[0]) { ++String.Buffer; String.Length -=2; String.MaximumLength -= 2; }
RtlInitUnicodeStringBuffer(&Buffer, NULL, 0); Status = RtlAssignUnicodeStringBuffer(&Buffer, &String);
if(!NT_SUCCESS(Status)) { goto exit; }
Status = RtlNtPathNameToDosPathName(0, &Buffer, NULL, NULL);
if(!NT_SUCCESS(Status)) { goto exit; }
*DosName = MemAlloc(Buffer.String.Length + sizeof(WCHAR));
if(NULL == *DosName) { Status = STATUS_NO_MEMORY; goto exit; }
RtlCopyMemory(*DosName, Buffer.String.Buffer, Buffer.String.Length); (*DosName)[Buffer.String.Length / sizeof(WCHAR)] = 0;
exit: RtlFreeUnicodeStringBuffer(&Buffer);
return RtlNtStatusToDosError(Status);}
DWORDProcessDelayRenames( VOID )/*++
Routine Description:
Checks to see if delay-renames were pending during last reboot and copies the affected files to dllcache
Arguments:
none
Return Value:
Win32 error code.
--*/{ LONG Error = ERROR_SUCCESS; HKEY RegKey = NULL; LPWSTR DataPtr = NULL; DWORD ValueType; DWORD ValueSize; UINT_PTR i;
Error = RegOpenKeyExW(HKEY_LOCAL_MACHINE, REGKEY_WINLOGON_WIN32, 0, KEY_QUERY_VALUE | KEY_SET_VALUE, &RegKey);
if(Error != ERROR_SUCCESS) { goto exit; }
ValueSize = 0; Error = RegQueryValueExW(RegKey, REGVAL_WFPPENDINGUPDATES, NULL, &ValueType, NULL, &ValueSize);
if(Error != ERROR_SUCCESS) { if(ERROR_FILE_NOT_FOUND == Error) { //
// No value means nothing to do here
//
Error = ERROR_SUCCESS; }
goto exit; }
if(ValueType != REG_MULTI_SZ) { Error = ERROR_INVALID_DATA; goto exit; }
DataPtr = (LPWSTR) MemAlloc(ValueSize);
if(NULL == DataPtr) { Error = ERROR_NOT_ENOUGH_MEMORY; goto exit; }
Error = RegQueryValueExW(RegKey, REGVAL_WFPPENDINGUPDATES, NULL, &ValueType, (LPBYTE) DataPtr, &ValueSize);
if(Error != ERROR_SUCCESS) { goto exit; }
ValueSize /= sizeof(WCHAR);
//
// Look for target files
//
for(i = 0; ; ) { UINT_PTR Start = i;
//
// skip source path
//
for(; i < ValueSize && DataPtr[i] != 0; ++i);
if(i >= ValueSize) { Error = ERROR_INVALID_DATA; goto exit; }
if(i == Start) { //
// empty source path; this must be the end of the list
//
break; }
//
// skip the terminator and store the target start
//
Start = (++i);
//
// search for the end of target
//
for(; i < ValueSize && DataPtr[i] != 0; ++i);
if(i >= ValueSize) { Error = ERROR_INVALID_DATA; goto exit; }
if(i != Start) { //
// This is a delay-rename; process it
//
LPWSTR DosPath = NULL; Error = SfcNtPathToDosPath(DataPtr + Start, &DosPath);
if(STATUS_SUCCESS == Error) { PNAME_NODE Node; DWORD Size = wcslen(DosPath);
MyLowerString(DosPath, Size); Node = SfcFindProtectedFile(DosPath, Size * sizeof(WCHAR)); MemFree(DosPath);
if(Node != NULL) { //
// This one's protected. Blindly copy the file to dllcahe;
// if it's not signed, it will be like not being there at all.
// Also, we don't take into account the dllcache quota for simplicity.
//
NTSTATUS Status; UNICODE_STRING FileNameOnMediaString; PCWSTR FileNameOnMedia; PSFC_REGISTRY_VALUE RegVal = (PSFC_REGISTRY_VALUE) Node->Context;
ASSERT(RegVal != NULL); ASSERT(RegVal->DirHandle != NULL); ASSERT(SfcProtectedDllFileDirectory != NULL);
FileNameOnMedia = FileNameOnMedia(RegVal); ASSERT(FileNameOnMedia != NULL); RtlInitUnicodeString(&FileNameOnMediaString, FileNameOnMedia);
Status = SfcCopyFile( RegVal->DirHandle, RegVal->DirName.Buffer, SfcProtectedDllFileDirectory, SfcProtectedDllPath.Buffer, &FileNameOnMediaString, &RegVal->FileName );
if(!NT_SUCCESS(Status)) { DebugPrint2(LVL_MEDIUM, L"Renamed file [%wZ] could not be copied to dllcache, error &lX", &RegVal->FileName, Status); } } } }
//
// Skip the null and move on
//
++i; }
//
// Delete the key so we don't process it the next boot
//
RegDeleteValue(RegKey, REGVAL_WFPPENDINGUPDATES);
exit: if(RegKey != NULL) { RegCloseKey(RegKey); }
MemFree(DataPtr); return Error;}
|
