archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
3 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 827363a95b
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '827363a95b'
${ noResults }
windows-server-2003/base/win32/fusion/sxs/sxssfcscan.cpp

373 lines
12 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. /*
  2. Copyright (c) Microsoft Corporation
  3. */
  4. #include "stdinc.h"
  5. #include "windows.h"
  6. #include "sxsapi.h"
  7. #include "sxsprotect.h"
  8. #include "sxssfcscan.h"
  9. #include "wintrust.h"
  10. #include "softpub.h"
  11. #include "strongname.h"
  12. #include "recover.h"
  14. BOOL
  15. SxspValidateEntireAssembly(
  16. DWORD dwFlags,
  17. const CAssemblyRecoveryInfo &RecoverInfo,
  18. DWORD &dwResult,
  19. PCASSEMBLY_IDENTITY pAssemblyIdentity,
  20. const CBaseStringBuffer *pbuffWinsxsRoot
  21. )
  22. {
  23. BOOL bSuccess = FALSE;
  24. const CSecurityMetaData &rSecurityData = RecoverInfo.GetSecurityInformation();
  25. FN_TRACE_WIN32(bSuccess);
  27. #define CHECKSHOULDSTOPFAIL { if (dwFlags & SXS_VALIDATE_ASM_FLAG_MODE_STOP_ON_FAIL) { bSuccess = TRUE; goto Exit; } }
  28. #define ADDFLAG(result, test, flag) { if (test) { (result) |= (flag); } else CHECKSHOULDSTOPFAIL }
  30. ManifestValidationResult ManifestValidity;
  31. CSecurityMetaData SecurityMetaData;
  32. CStringBuffer sbManifestPath;
  34. dwResult = 0;
  36. if (dwFlags == 0)
  37. {
  38. dwFlags = SXS_VALIDATE_ASM_FLAG_CHECK_EVERYTHING;
  39. dwFlags |= (SXS_VALIDATE_ASM_FLAG_MODE_STOP_ON_FAIL);
  40. }
  42. IFINVALID_FLAGS_EXIT_WIN32(dwFlags,
  43. SXS_VALIDATE_ASM_FLAG_CHECK_CATALOG |
  44. SXS_VALIDATE_ASM_FLAG_CHECK_FILES |
  45. SXS_VALIDATE_ASM_FLAG_CHECK_STRONGNAME |
  46. SXS_VALIDATE_ASM_FLAG_CHECK_CAT_STRONGNAME |
  47. SXS_VALIDATE_ASM_FLAG_MODE_STOP_ON_FAIL);
  49. //
  50. // Asking us to check the catalog when there's no catalog on the assembly
  51. // is a Bad Thing. Perhaps this should just return TRUE with a missing catalog?
  52. //
  53. PARAMETER_CHECK(dwFlags & SXS_VALIDATE_ASM_FLAG_CHECK_CATALOG);
  54. PARAMETER_CHECK(RecoverInfo.GetHasCatalog());
  56. #if DBG
  57. ::FusionpDbgPrintEx(
  58. FUSION_DBG_LEVEL_WFP,
  59. "SXS.DLL: %s() - Beginning protection scan of %ls, flags 0x%08x\n",
  60. __FUNCTION__,
  61. static_cast<PCWSTR>(RecoverInfo.GetAssemblyDirectoryName()),
  62. dwFlags);
  63. #endif
  65. if (pAssemblyIdentity == NULL)
  66. {
  67. IFW32FALSE_EXIT(::SxspResolveAssemblyManifestPath(RecoverInfo.GetAssemblyDirectoryName(), sbManifestPath));
  68. }
  69. else
  70. {
  71. CTinyStringBuffer buffWinsxsRoot;
  72. PROBING_ATTRIBUTE_CACHE AttributeCache = { 0 };
  74. if (pbuffWinsxsRoot == NULL)
  75. {
  76. IFW32FALSE_EXIT(::SxspGetAssemblyRootDirectory(buffWinsxsRoot));
  77. pbuffWinsxsRoot = &buffWinsxsRoot;
  78. }
  79. IFW32FALSE_EXIT(
  80. ::SxspGenerateSxsPath_FullPathToManifestOrPolicyFile(
  81. *pbuffWinsxsRoot,
  82. pAssemblyIdentity,
  83. &AttributeCache,
  84. sbManifestPath));
  85. }
  87. //
  88. // If we're checking the catalog, then do it. If the catalog is bad or
  89. // otherwise doesn't match the actual assembly, then we need to mark
  90. // ourselves as successful, then exit.
  91. //
  92. if (dwFlags & SXS_VALIDATE_ASM_FLAG_CHECK_CATALOG)
  93. {
  94. IFW32FALSE_EXIT(::SxspValidateManifestAgainstCatalog(
  95. sbManifestPath,
  96. ManifestValidity,
  97. 0));
  99. #if DBG
  100. ::FusionpDbgPrintEx(
  101. FUSION_DBG_LEVEL_WFP,
  102. "SXS.DLL: Manifest Validity = %ls\n",
  103. ::SxspManifestValidationResultToString(ManifestValidity));
  104. #endif
  106. ADDFLAG(
  107. dwResult,
  108. ManifestValidity == ManifestValidate_IsIntact,
  109. SXS_VALIDATE_ASM_FLAG_VALID_CATALOG);
  110. }
  113. //TODO: Problems - make sure that we validate the manifest against what's in the
  114. // registry. Maybe we need a special mode of incorporating assemblies (over a manifest)
  115. // that will just fill out the security data and nothing else...
  117. //
  118. // Validate the strong name of the assembly first.
  119. //
  120. if (dwFlags & SXS_VALIDATE_ASM_FLAG_CHECK_STRONGNAME)
  121. {
  122. //
  123. // JW 3/19/2001 - Public keys are NO LONGER IN THE BUILD, and as such
  124. // this check is moot.
  125. //
  126. ADDFLAG(dwResult, TRUE, SXS_VALIDATE_ASM_FLAG_VALID_STRONGNAME);
  127. }
  129. //
  130. // Let's open the catalog and scour through it certificate-wise
  131. // looking for a strong name that matches up.
  132. //
  133. if (dwFlags & SXS_VALIDATE_ASM_FLAG_CHECK_CAT_STRONGNAME)
  134. {
  135. CStringBuffer sbCatalogName;
  136. CSmallStringBuffer sbTheorheticalStrongName;
  137. const CFusionByteArray &rbaSignerPublicKey = rSecurityData.GetSignerPublicKeyTokenBits();
  138. CPublicKeyInformation PublicKeyInfo;
  139. BOOL bStrongNameFoundInCatalog;
  141. IFW32FALSE_EXIT(sbCatalogName.Win32Assign(sbManifestPath));
  142. IFW32FALSE_EXIT(sbCatalogName.Win32ChangePathExtension(
  143. FILE_EXTENSION_CATALOG,
  144. FILE_EXTENSION_CATALOG_CCH,
  145. eAddIfNoExtension));
  147. if (!PublicKeyInfo.Initialize(sbCatalogName))
  148. {
  149. const DWORD dwLastError = ::FusionpGetLastWin32Error();
  150. if ((dwLastError != ERROR_PATH_NOT_FOUND) &&
  151. (dwLastError != ERROR_FILE_NOT_FOUND))
  152. goto Exit;
  153. }
  155. IFW32FALSE_EXIT(
  156. ::SxspHashBytesToString(
  157. rbaSignerPublicKey.GetArrayPtr(),
  158. rbaSignerPublicKey.GetSize(),
  159. sbTheorheticalStrongName));
  161. IFW32FALSE_EXIT(
  162. PublicKeyInfo.DoesStrongNameMatchSigner(
  163. sbTheorheticalStrongName,
  164. bStrongNameFoundInCatalog));
  166. ADDFLAG(dwResult, bStrongNameFoundInCatalog, SXS_VALIDATE_ASM_FLAG_VALID_CAT_STRONGNAME);
  167. }
  169. //
  170. // Now, scan through all the files that are listed in the manifest and
  171. // ensure that they're all OK.
  172. //
  173. if (dwFlags & SXS_VALIDATE_ASM_FLAG_CHECK_FILES)
  174. {
  175. CStringBuffer sbTempScanPath;
  176. CStringBuffer sbAsmRootDir;
  177. const CBaseStringBuffer &sbAssemblyName = RecoverInfo.GetAssemblyDirectoryName();
  178. CFileInformationTableIter ContentTableIter(const_cast<CFileInformationTable&>(rSecurityData.GetFileDataTable()));
  180. HashValidateResult hvResult;
  181. BOOL bAllFilesMatch = TRUE;
  182. BOOL fTempBoolean;
  183. SIZE_T cchPath;
  185. IFW32FALSE_EXIT(::SxspGetAssemblyRootDirectory(sbAsmRootDir));
  187. IFW32FALSE_EXIT(sbTempScanPath.Win32Assign(sbAsmRootDir));
  188. IFW32FALSE_EXIT(sbTempScanPath.Win32AppendPathElement(sbAssemblyName));
  189. cchPath = sbTempScanPath.Cch();
  192. for (ContentTableIter.Reset();
  193. ContentTableIter.More();
  194. ContentTableIter.Next())
  195. {
  196. //
  197. // Cobble together a path to scan for the file in, based on the
  198. // assembly root directory, the 'name' of the assembly (note:
  199. // we can't use this to go backwards to get an identity,
  200. // unfortunately), and the name of the file to be validated.
  201. //
  202. PCWSTR wsString = ContentTableIter.GetKey();
  203. CMetaDataFileElement &HashEntry = ContentTableIter.GetValue();
  205. sbTempScanPath.Left(cchPath);
  206. IFW32FALSE_EXIT(sbTempScanPath.Win32AppendPathElement(wsString, ::wcslen(wsString)));
  208. IFW32FALSE_EXIT_UNLESS( ::SxspValidateAllFileHashes(
  209. HashEntry,
  210. sbTempScanPath,
  211. hvResult ),
  212. FILE_OR_PATH_NOT_FOUND(::FusionpGetLastWin32Error()),
  213. fTempBoolean );
  215. if ( ( hvResult != HashValidate_Matches ) || ( fTempBoolean ) )
  216. {
  217. bAllFilesMatch = FALSE;
  218. break;
  219. }
  221. }
  223. ADDFLAG(dwResult, bAllFilesMatch, SXS_VALIDATE_ASM_FLAG_VALID_FILES);
  224. }
  226. //
  227. // Phew - should be done doing everything the user wanted us to.
  228. //
  229. bSuccess = TRUE;
  230. Exit:
  231. #if DBG
  232. ::FusionpDbgPrintEx(
  233. FUSION_DBG_LEVEL_WFP,
  234. "SXS.DLL: Done validating, result = 0x%08x, success = %d\n",
  235. dwResult,
  236. bSuccess);
  237. #endif
  239. return bSuccess;
  241. #undef CHECKSHOULDSTOPFAIL
  242. }
  246. //
  247. // Single-shot scanning
  248. //
  249. BOOL
  250. SxsProtectionPerformScanNowNoSEH(
  251. HWND hwProgressWindow,
  252. BOOL bValidate,
  253. BOOL bUIAllowed
  254. )
  255. {
  256. BOOL bSuccess = TRUE;
  257. FN_TRACE_WIN32(bSuccess);
  259. CFusionRegKey hkInstallRoot;
  260. CStringBuffer sbKeyName;
  261. DWORD dwKeyIndex;
  262. BOOL fNoMoreKeys = FALSE;
  263. CStringBuffer sbAssemblyDirectory, sbManifestPath;
  265. //
  266. // If we're scanning, then we don't want to bother sxs-sfc with changes,
  267. // now do we?
  268. //
  269. // REVIEW: Handy way to get around sfc-sxs... start a series of scans, and
  270. // insert 'bad' files into assemblies while we're scanning.
  271. //
  272. ::SxsProtectionEnableProcessing(FALSE);
  274. bSuccess = TRUE;
  276. IFW32FALSE_EXIT(::SxspOpenAssemblyInstallationKey( 0, KEY_READ, hkInstallRoot ));
  278. dwKeyIndex = 0;
  279. while (!fNoMoreKeys)
  280. {
  281. CAssemblyRecoveryInfo ri;
  283. bool fHasAssociatedAssembly;
  284. IFW32FALSE_EXIT(hkInstallRoot.EnumKey(dwKeyIndex++, sbKeyName, NULL, &fNoMoreKeys));
  286. if (fNoMoreKeys)
  287. {
  288. break;
  289. }
  291. IFW32FALSE_EXIT(ri.AssociateWithAssembly(sbKeyName, fHasAssociatedAssembly));
  293. if (!fHasAssociatedAssembly)
  294. {
  295. ::FusionpDbgPrintEx(
  296. FUSION_DBG_LEVEL_WFP,
  297. "SXS.DLL: %s() - We found the assembly %ls in the registry, but were not able to associate it with an assembly\n",
  298. __FUNCTION__,
  299. static_cast<PCWSTR>(sbKeyName));
  300. }
  301. else if (!ri.GetHasCatalog())
  302. {
  303. ::FusionpDbgPrintEx(
  304. FUSION_DBG_LEVEL_WFP,
  305. "SXS.DLL: %s() - Assembly %ls in registry, no catalog, not validating.\n",
  306. __FUNCTION__,
  307. static_cast<PCWSTR>(sbKeyName));
  308. }
  309. else
  310. {
  311. DWORD dwValidateMode, dwResult;
  312. SxsRecoveryResult RecoverResult;
  314. dwValidateMode = SXS_VALIDATE_ASM_FLAG_CHECK_EVERYTHING;
  316. IFW32FALSE_EXIT(::SxspValidateEntireAssembly(
  317. dwValidateMode,
  318. ri,
  319. dwResult));
  321. if (dwResult != SXS_VALIDATE_ASM_FLAG_VALID_PERFECT)
  322. {
  323. #if DBG
  324. ::FusionpDbgPrintEx(
  325. FUSION_DBG_LEVEL_WFP | FUSION_DBG_LEVEL_ERROR,
  326. "SXS.DLL: %s() - Scan of %ls failed one or more, flagset 0x%08x\n",
  327. __FUNCTION__,
  328. static_cast<PCWSTR>(sbKeyName),
  329. dwResult);
  330. #endif
  332. IFW32FALSE_EXIT(
  333. ::SxspRecoverAssembly(
  334. ri,
  335. RecoverResult));
  337. #if DBG
  338. if (RecoverResult != Recover_OK)
  339. {
  340. ::FusionpDbgPrintEx(
  341. FUSION_DBG_LEVEL_WFP | FUSION_DBG_LEVEL_ERROR,
  342. "SXS.DLL: %s() - Reinstallation of assembly %ls failed, status %ls\n",
  343. static_cast<PCWSTR>(sbKeyName),
  344. ::SxspRecoveryResultToString(RecoverResult));
  345. }
  346. #endif
  347. }
  349. }
  350. }
  352. bSuccess = TRUE;
  353. Exit:
  354. return bSuccess;
  355. }
  357. BOOL
  358. SxsProtectionPerformScanNow(
  359. HWND hwProgressWindow,
  360. BOOL bValidate,
  361. BOOL bUIAllowed
  362. )
  363. {
  364. BOOL bSuccess = TRUE;
  365. bSuccess = ::SxsProtectionPerformScanNowNoSEH(hwProgressWindow, bValidate, bUIAllowed);
  367. //
  368. // Always reenable sfc notifications!
  369. //
  370. ::SxsProtectionEnableProcessing(TRUE);
  372. return bSuccess;
  373. }