archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
3 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 827363a95b
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '827363a95b'
${ noResults }
windows-server-2003/ds/security/cryptoapi/secstor/dpapisvc/dpapi.cpp

589 lines
14 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. /*++
  3. Copyright (c) 2000 Microsoft Corporation
  5. Module Name:
  7. dpapi.cpp
  9. Abstract:
  11. This module contains the DPAPI initialization routines, called by the LSA
  13. Author:
  15. Pete Skelly (petesk) 22-Mar-00
  16. --*/
  19. #include <pch.cpp>
  20. #pragma hdrstop
  21. #include "pasrec.h"
  23. CCryptProvList* g_pCProvList = NULL;
  25. TOKEN_SOURCE DPAPITokenSource;
  27. PLSA_SECPKG_FUNCTION_TABLE g_pSecpkgTable;
  30. #ifdef RETAIL_LOG_SUPPORT
  31. HANDLE g_hParamEvent = NULL;
  32. HKEY g_hKeyParams = NULL;
  33. HANDLE g_hWait = NULL;
  35. DEFINE_DEBUG2(DPAPI);
  37. DEBUG_KEY DPAPIDebugKeys[] = {
  38. {DEB_ERROR, "Error"},
  39. {DEB_WARN, "Warn"},
  40. {DEB_TRACE, "Trace"},
  41. {DEB_TRACE_API, "API"},
  42. {DEB_TRACE_CRED, "Cred"},
  43. {DEB_TRACE_CTXT, "Ctxt"},
  44. {DEB_TRACE_LSESS, "LSess"},
  45. {DEB_TRACE_LOGON, "Logon"},
  46. {DEB_TRACE_TIME, "Time"},
  47. {DEB_TRACE_LOCKS, "Locks"},
  48. {DEB_TRACE_LEAKS, "Leaks"},
  49. {0, NULL},
  50. };
  52. VOID
  53. DPAPIWatchParamKey(
  54. PVOID pCtxt,
  55. BOOLEAN fWaitStatus);
  57. VOID
  58. DPAPIInitializeDebugging(
  59. BOOL fMonitorRegistry)
  60. {
  61. DPAPIInitDebug(DPAPIDebugKeys);
  63. if(fMonitorRegistry)
  64. {
  65. g_hParamEvent = CreateEvent(NULL,
  66. FALSE,
  67. FALSE,
  68. NULL);
  70. if (NULL == g_hParamEvent)
  71. {
  72. D_DebugLog((DEB_WARN, "CreateEvent for ParamEvent failed - 0x%x\n", GetLastError()));
  73. }
  74. else
  75. {
  76. DPAPIWatchParamKey(g_hParamEvent, FALSE);
  77. }
  78. }
  79. }
  81. ////////////////////////////////////////////////////////////////////
  82. //
  83. // Name: DPAPIGetRegParams
  84. //
  85. // Synopsis: Gets the debug paramaters from the registry
  86. //
  87. // Arguments: HKEY to HKLM/System/CCS/LSA/DPAPI
  88. //
  89. // Notes: Sets DPAPIInfolevel for debug spew
  90. //
  91. void
  92. DPAPIGetRegParams(HKEY ParamKey)
  93. {
  95. DWORD cbType, tmpInfoLevel = DPAPIInfoLevel, cbSize = sizeof(DWORD);
  96. DWORD dwErr;
  98. dwErr = RegQueryValueExW(
  99. ParamKey,
  100. WSZ_DPAPIDEBUGLEVEL,
  101. NULL,
  102. &cbType,
  103. (LPBYTE)&tmpInfoLevel,
  104. &cbSize
  105. );
  106. if (dwErr != ERROR_SUCCESS)
  107. {
  108. if (dwErr == ERROR_FILE_NOT_FOUND)
  109. {
  110. // no registry value is present, don't want info
  111. // so reset to defaults
  112. #if DBG
  113. DPAPIInfoLevel = DEB_ERROR;
  115. #else // fre
  116. DPAPIInfoLevel = 0;
  117. #endif
  118. }
  119. else
  120. {
  121. D_DebugLog((DEB_WARN, "Failed to query DebugLevel: 0x%x\n", dwErr));
  122. }
  123. }
  125. // TBD: Validate flags?
  126. DPAPIInfoLevel = tmpInfoLevel;
  127. dwErr = RegQueryValueExW(
  128. ParamKey,
  129. WSZ_FILELOG,
  130. NULL,
  131. &cbType,
  132. (LPBYTE)&tmpInfoLevel,
  133. &cbSize
  134. );
  136. if (dwErr == ERROR_SUCCESS)
  137. {
  138. DPAPISetLoggingOption((BOOL)tmpInfoLevel);
  139. }
  140. else if (dwErr == ERROR_FILE_NOT_FOUND)
  141. {
  142. DPAPISetLoggingOption(FALSE);
  143. }
  145. return;
  146. }
  148. ////////////////////////////////////////////////////////////////////
  149. //
  150. // Name: DPAPIWaitCleanup
  151. //
  152. // Synopsis: Cleans up wait from DPAPIWatchParamKey()
  153. //
  154. // Arguments: <none>
  155. //
  156. // Notes: .
  157. //
  158. void
  159. DPAPIWaitCleanup()
  160. {
  161. NTSTATUS Status = STATUS_SUCCESS;
  163. if (NULL != g_hWait)
  164. {
  165. Status = RtlDeregisterWait(g_hWait);
  166. if (NT_SUCCESS(Status) && NULL != g_hParamEvent )
  167. {
  168. CloseHandle(g_hParamEvent);
  169. }
  170. }
  171. }
  175. ////////////////////////////////////////////////////////////////////
  176. //
  177. // Name: DPAPIWatchParamKey
  178. //
  179. // Synopsis: Sets RegNotifyChangeKeyValue() on param key, initializes
  180. // debug level, then utilizes thread pool to wait on
  181. // changes to this registry key. Enables dynamic debug
  182. // level changes, as this function will also be callback
  183. // if registry key modified.
  184. //
  185. // Arguments: pCtxt is actually a HANDLE to an event. This event
  186. // will be triggered when key is modified.
  187. //
  188. // Notes: .
  189. //
  190. VOID
  191. DPAPIWatchParamKey(
  192. PVOID pCtxt,
  193. BOOLEAN fWaitStatus)
  194. {
  195. NTSTATUS Status;
  196. LONG lRes = ERROR_SUCCESS;
  198. if (NULL == g_hKeyParams) // first time we've been called.
  199. {
  200. lRes = RegOpenKeyExW(
  201. HKEY_LOCAL_MACHINE,
  202. DPAPI_PARAMETER_PATH,
  203. 0,
  204. KEY_READ,
  205. &g_hKeyParams);
  207. if (ERROR_SUCCESS != lRes)
  208. {
  209. D_DebugLog((DEB_WARN,"Failed to open DPAPI key: 0x%x\n", lRes));
  210. goto Reregister;
  211. }
  212. }
  214. if (NULL != g_hWait)
  215. {
  216. Status = RtlDeregisterWait(g_hWait);
  217. if (!NT_SUCCESS(Status))
  218. {
  219. D_DebugLog((DEB_WARN, "Failed to Deregister wait on registry key: 0x%x\n", Status));
  220. goto Reregister;
  221. }
  223. }
  225. lRes = RegNotifyChangeKeyValue(
  226. g_hKeyParams,
  227. FALSE,
  228. REG_NOTIFY_CHANGE_LAST_SET,
  229. (HANDLE) pCtxt,
  230. TRUE);
  232. if (ERROR_SUCCESS != lRes)
  233. {
  234. D_DebugLog((DEB_ERROR,"Debug RegNotify setup failed: 0x%x\n", lRes));
  235. // we're tanked now. No further notifications, so get this one
  236. }
  238. DPAPIGetRegParams(g_hKeyParams);
  240. Reregister:
  242. Status = RtlRegisterWait(&g_hWait,
  243. (HANDLE) pCtxt,
  244. DPAPIWatchParamKey,
  245. (HANDLE) pCtxt,
  246. INFINITE,
  247. WT_EXECUTEINPERSISTENTIOTHREAD|
  248. WT_EXECUTEONLYONCE);
  250. }
  252. #endif // RETAIL_LOG_SUPPORT
  255. RPC_STATUS
  256. RPC_ENTRY
  257. ProtectCallback(
  258. RPC_IF_HANDLE idIF,
  259. PVOID pCtx)
  260. {
  261. RPC_STATUS Status;
  262. PWSTR pBinding = NULL;
  263. PWSTR pProtSeq = NULL;
  265. Status = RpcBindingToStringBinding(pCtx, &pBinding);
  267. if(Status != RPC_S_OK)
  268. {
  269. goto cleanup;
  270. }
  272. Status = RpcStringBindingParse(pBinding,
  273. NULL,
  274. &pProtSeq,
  275. NULL,
  276. NULL,
  277. NULL);
  278. if(Status != RPC_S_OK)
  279. {
  280. goto cleanup;
  281. }
  283. // Make sure caller is using local RPC
  284. if(CompareString(LOCALE_INVARIANT,
  285. NORM_IGNORECASE,
  286. pProtSeq,
  287. -1,
  288. DPAPI_LOCAL_PROT_SEQ,
  289. -1) != CSTR_EQUAL)
  290. {
  291. Status = ERROR_ACCESS_DENIED;
  292. goto cleanup;
  293. }
  295. Status = RPC_S_OK;
  297. cleanup:
  299. if(pProtSeq)
  300. {
  301. RpcStringFree(&pProtSeq);
  302. }
  304. if(pBinding)
  305. {
  306. RpcStringFree(&pBinding);
  307. }
  309. return Status;
  310. }
  313. //
  314. // FUNCTION: DPAPIInitialize
  315. //
  316. // COMMENTS:
  317. //
  319. DWORD
  320. NTAPI
  321. DPAPIInitialize(
  322. LSA_SECPKG_FUNCTION_TABLE *pSecpkgTable)
  323. {
  324. DWORD dwLastError = ERROR_SUCCESS;
  325. BOOL fStartedKeyService = FALSE;
  326. BOOL bListConstruct = FALSE;
  327. LONG lRes = ERROR_SUCCESS;
  329. RPC_STATUS status;
  331. dwLastError = RtlInitializeCriticalSection(&g_csCredHistoryCache);
  332. if(!NT_SUCCESS(dwLastError))
  333. {
  334. goto cleanup;
  335. }
  337. DPAPIInitializeDebugging(TRUE);
  340. // Initialize stuff necessary to create tokens etc, just as if
  341. // we're a security package.
  342. g_pSecpkgTable = pSecpkgTable;
  344. CopyMemory( DPAPITokenSource.SourceName, DPAPI_PACKAGE_NAME_A, strlen(DPAPI_PACKAGE_NAME_A) );
  345. AllocateLocallyUniqueId( &DPAPITokenSource.SourceIdentifier );
  349. g_pCProvList = new CCryptProvList;
  350. if(g_pCProvList)
  351. {
  352. if(!g_pCProvList->Initialize())
  353. {
  354. delete g_pCProvList;
  355. g_pCProvList = NULL;
  356. }
  357. }
  359. IntializeGlobals();
  361. if(!InitializeKeyManagement())
  362. {
  363. dwLastError = STATUS_NO_MEMORY;
  364. goto cleanup;
  365. }
  367. status = RpcServerUseProtseqEpW(DPAPI_LOCAL_PROT_SEQ, //ncalrpc
  368. RPC_C_PROTSEQ_MAX_REQS_DEFAULT,
  369. DPAPI_LOCAL_ENDPOINT, //protected_storage
  370. NULL); //Security Descriptor
  372. if(RPC_S_DUPLICATE_ENDPOINT == status)
  373. {
  374. status = RPC_S_OK;
  375. }
  377. if (status)
  378. {
  379. dwLastError = status;
  380. goto cleanup;
  381. }
  382. status = RpcServerUseProtseqEpW(DPAPI_BACKUP_PROT_SEQ, //ncacn_np
  383. RPC_C_PROTSEQ_MAX_REQS_DEFAULT,
  384. DPAPI_BACKUP_ENDPOINT, //protected_storage
  385. NULL); //Security Descriptor
  387. if(RPC_S_DUPLICATE_ENDPOINT == status)
  388. {
  389. status = RPC_S_OK;
  390. }
  392. if (status)
  393. {
  394. dwLastError = status;
  395. goto cleanup;
  396. }
  398. status = RpcServerRegisterIfEx(s_ICryptProtect_v1_0_s_ifspec,
  399. NULL,
  400. NULL,
  401. RPC_IF_AUTOLISTEN,
  402. RPC_C_PROTSEQ_MAX_REQS_DEFAULT,
  403. ProtectCallback);
  405. if (status)
  406. {
  407. dwLastError = status;
  408. goto cleanup;
  409. }
  412. status = RpcServerRegisterIfEx(s_PasswordRecovery_v1_0_s_ifspec,
  413. NULL,
  414. NULL,
  415. RPC_IF_AUTOLISTEN,
  416. RPC_C_LISTEN_MAX_CALLS_DEFAULT,
  417. ProtectCallback);
  419. if (status)
  420. {
  421. dwLastError = status;
  422. goto cleanup;
  423. }
  425. //
  426. // Start the Backup Key server
  427. // note: it only starts when the current machine is an domain controller.
  428. //
  430. dwLastError = StartBackupKeyServer();
  431. if(dwLastError != ERROR_SUCCESS) {
  432. goto cleanup;
  433. }
  435. return dwLastError;
  437. cleanup:
  438. DPAPIShutdown();
  439. return dwLastError;
  440. }
  444. DWORD
  445. NTAPI
  446. DPAPIShutdown( )
  447. {
  448. //
  449. // ignore errors because we are shutting down
  450. //
  452. (void)RpcServerUnregisterIf(s_ICryptProtect_v1_0_s_ifspec, 0, 0);
  454. //
  455. // stop backup key server
  456. // Note: this function knows internally whether the backup key server
  457. // really started or not.
  458. //
  460. StopBackupKeyServer();
  463. if(g_pCProvList)
  464. {
  465. delete g_pCProvList;
  466. g_pCProvList = NULL;
  467. }
  469. TeardownKeyManagement();
  471. ShutdownGlobals();
  472. return ERROR_SUCCESS;
  473. }
  475. #ifdef RETAIL_LOG_SUPPORT
  476. VOID
  477. DPAPIDumpHexData(
  478. DWORD LogLevel,
  479. PSTR pszPrefix,
  480. PBYTE pbData,
  481. DWORD cbData)
  482. {
  483. DWORD i,count;
  484. CHAR digits[]="0123456789abcdef";
  485. CHAR pbLine[MAX_PATH];
  486. DWORD cbLine;
  487. DWORD cbHeader;
  488. DWORD_PTR address;
  490. if((DPAPIInfoLevel & LogLevel) == 0)
  491. {
  492. return;
  493. }
  495. if(pbData == NULL || cbData == 0)
  496. {
  497. return;
  498. }
  500. if(pszPrefix)
  501. {
  502. strcpy(pbLine, pszPrefix);
  503. cbHeader = strlen(pszPrefix);
  504. }
  505. else
  506. {
  507. pbLine[0] = '\0';
  508. cbHeader = 0;
  509. }
  511. for(; cbData ; cbData -= count, pbData += count)
  512. {
  513. count = (cbData > 16) ? 16:cbData;
  515. cbLine = cbHeader;
  517. address = (DWORD_PTR)pbData;
  519. #if defined(_WIN64)
  520. pbLine[cbLine++] = digits[(address >> 0x3c) & 0x0f];
  521. pbLine[cbLine++] = digits[(address >> 0x38) & 0x0f];
  522. pbLine[cbLine++] = digits[(address >> 0x34) & 0x0f];
  523. pbLine[cbLine++] = digits[(address >> 0x30) & 0x0f];
  524. pbLine[cbLine++] = digits[(address >> 0x2c) & 0x0f];
  525. pbLine[cbLine++] = digits[(address >> 0x28) & 0x0f];
  526. pbLine[cbLine++] = digits[(address >> 0x24) & 0x0f];
  527. pbLine[cbLine++] = digits[(address >> 0x20) & 0x0f];
  528. #endif
  530. pbLine[cbLine++] = digits[(address >> 0x1c) & 0x0f];
  531. pbLine[cbLine++] = digits[(address >> 0x18) & 0x0f];
  532. pbLine[cbLine++] = digits[(address >> 0x14) & 0x0f];
  533. pbLine[cbLine++] = digits[(address >> 0x10) & 0x0f];
  534. pbLine[cbLine++] = digits[(address >> 0x0c) & 0x0f];
  535. pbLine[cbLine++] = digits[(address >> 0x08) & 0x0f];
  536. pbLine[cbLine++] = digits[(address >> 0x04) & 0x0f];
  537. pbLine[cbLine++] = digits[(address ) & 0x0f];
  538. pbLine[cbLine++] = ' ';
  539. pbLine[cbLine++] = ' ';
  541. for(i = 0; i < count; i++)
  542. {
  543. pbLine[cbLine++] = digits[pbData[i]>>4];
  544. pbLine[cbLine++] = digits[pbData[i]&0x0f];
  545. if(i == 7)
  546. {
  547. pbLine[cbLine++] = ':';
  548. }
  549. else
  550. {
  551. pbLine[cbLine++] = ' ';
  552. }
  553. }
  555. for(; i < 16; i++)
  556. {
  557. pbLine[cbLine++] = ' ';
  558. pbLine[cbLine++] = ' ';
  559. pbLine[cbLine++] = ' ';
  560. }
  562. pbLine[cbLine++] = ' ';
  564. for(i = 0; i < count; i++)
  565. {
  567. //
  568. // 37 is for %
  569. //
  571. if(pbData[i] < 32 || pbData[i] > 126 || pbData[i] == 37)
  572. {
  573. pbLine[cbLine++] = '.';
  574. }
  575. else
  576. {
  577. pbLine[cbLine++] = pbData[i];
  578. }
  579. }
  581. pbLine[cbLine++] = '\n';
  582. pbLine[cbLine++] = 0;
  584. D_DebugLog((LogLevel, pbLine));
  585. }
  587. }
  588. #endif