archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
3 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 827363a95b
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '827363a95b'
${ noResults }
windows-server-2003/inetcore/wininet/auth/digest.cxx

643 lines
18 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. #include <wininetp.h>
  2. #include <urlmon.h>
  3. #include <splugin.hxx>
  4. #include <security.h>
  5. #include "auth.h"
  7. #define SSP_SPM_NT_DLL "security.dll"
  8. #define SSP_SPM_WIN95_DLL "secur32.dll"
  10. #define MAX_SILENT_RETRIES 3
  11. #define OUTPUT_BUFFER_LEN 10000
  13. #define HEADER_IDX 0
  14. #define REALM_IDX 1
  15. #define HOST_IDX 2
  16. #define URL_IDX 3
  17. #define METHOD_IDX 4
  18. #define USER_IDX 5
  19. #define PASS_IDX 6
  20. #define NONCE_IDX 7
  21. #define NC_IDX 8
  22. #define HWND_IDX 9
  23. #define NUM_BUFF 10
  25. #define ISC_MODE_AUTH 0
  26. #define ISC_MODE_PREAUTH 1
  27. #define ISC_MODE_UI 2
  29. struct DIGEST_PKG_DATA
  30. {
  31. LPSTR szAppCtx;
  32. LPSTR szUserCtx;
  33. };
  35. /*-----------------------------------------------------------------------------
  36. DIGEST_CTX
  37. -----------------------------------------------------------------------------*/
  39. // Globals
  40. PSecurityFunctionTable DIGEST_CTX::g_pFuncTbl = NULL;
  41. CredHandle DIGEST_CTX::g_hCred;
  44. /*---------------------------------------------------------------------------
  45. DIGEST_CTX::GetFuncTbl
  46. ---------------------------------------------------------------------------*/
  47. VOID DIGEST_CTX::GetFuncTbl()
  48. {
  49. HINSTANCE hSecLib;
  50. INIT_SECURITY_INTERFACE addrProcISI = NULL;
  51. #ifndef UNIX
  52. OSVERSIONINFO VerInfo;
  54. VerInfo.dwOSVersionInfoSize = sizeof (OSVERSIONINFO);
  56. GetVersionEx (&VerInfo);
  58. if (VerInfo.dwPlatformId == VER_PLATFORM_WIN32_NT)
  59. {
  60. hSecLib = LoadLibrary (SSP_SPM_NT_DLL);
  61. }
  62. else if (VerInfo.dwPlatformId == VER_PLATFORM_WIN32_WINDOWS)
  63. #endif /* UNIX */
  64. {
  65. hSecLib = LoadLibrary (SSP_SPM_WIN95_DLL);
  66. }
  68. addrProcISI = (INIT_SECURITY_INTERFACE) GetProcAddress(hSecLib,
  69. SECURITY_ENTRYPOINT_ANSI);
  71. g_pFuncTbl = (*addrProcISI)();
  72. }
  74. /*---------------------------------------------------------------------------
  75. DIGEST_CTX::GetRequestUri
  76. ---------------------------------------------------------------------------*/
  77. LPSTR DIGEST_CTX::GetRequestUri()
  78. {
  79. DEBUG_ENTER ((
  80. DBG_HTTPAUTH,
  81. String,
  82. "DIGEST_CTX::GetRequestUri",
  83. "this=%#x",
  84. this
  85. ));
  87. LPSTR szUrl;
  88. DWORD cbUrl;
  90. URL_COMPONENTS sUrl;
  92. memset(&sUrl, 0, sizeof(sUrl));
  93. sUrl.dwStructSize = sizeof(sUrl);
  94. sUrl.dwHostNameLength = -1;
  95. sUrl.dwUrlPathLength = -1;
  96. sUrl.dwExtraInfoLength = -1;
  98. szUrl = _pRequest->GetURL();
  100. // Generate request-uri
  101. if (InternetCrackUrl(szUrl, strlen(szUrl), 0, &sUrl))
  102. {
  103. cbUrl = sUrl.dwUrlPathLength;
  104. szUrl = new CHAR[cbUrl+1];
  106. if (!szUrl)
  107. {
  108. // Alloc failure. Return NULL. We will
  109. // use _pRequest->GetURL instead.
  110. DEBUG_LEAVE(NULL);
  111. return NULL;
  112. }
  114. memcpy(szUrl, sUrl.lpszUrlPath, cbUrl);
  115. szUrl[cbUrl] = '\0';
  116. }
  117. else
  118. {
  119. // ICU failed. Return NULL which
  120. // will cause _pRequest->GetURL
  121. // to be used.
  122. DEBUG_LEAVE(NULL);
  123. return NULL;
  124. }
  126. DEBUG_LEAVE(szUrl);
  127. return szUrl;
  128. }
  131. /*---------------------------------------------------------------------------
  132. DIGEST_CTX::InitSecurityBuffers
  133. ---------------------------------------------------------------------------*/
  134. VOID DIGEST_CTX::InitSecurityBuffers(LPSTR szOutBuf, DWORD cbOutBuf,
  135. LPDWORD pdwSecFlags, DWORD dwISCMode)
  136. {
  137. DEBUG_ENTER ((
  138. DBG_HTTPAUTH,
  139. None,
  140. "DIGEST_CTX::InitSecurityBuffers",
  141. "this=%#x szout=%#x cbout=%d secflags=%#x iscmode=%#x",
  142. this,
  143. szOutBuf,
  144. cbOutBuf,
  145. (pdwSecFlags ? *pdwSecFlags : NULL),
  146. dwISCMode
  147. ));
  149. LPSTR pszPass = NULL;
  151. // Input Buffer.
  152. _SecBuffInDesc.cBuffers = NUM_BUFF;
  153. _SecBuffInDesc.pBuffers = _SecBuffIn;
  155. // Set Header
  156. _SecBuffIn[HEADER_IDX].pvBuffer = _szData;
  157. _SecBuffIn[HEADER_IDX].cbBuffer = _cbData;
  158. _SecBuffIn[HEADER_IDX].BufferType = SECBUFFER_TOKEN;
  160. // If credentials are supplied will be set to
  161. // ISC_REQ_USE_SUPPLIED_CREDS.
  162. // If prompting for auth dialog will be set to
  163. // ISC_REQ_PROMPT_FOR_CREDS.
  164. *pdwSecFlags = 0;
  166. // Set realm if no header, otherwise NULL.
  167. if (_SecBuffIn[HEADER_IDX].pvBuffer)
  168. {
  169. _SecBuffIn[REALM_IDX].pvBuffer = NULL;
  170. _SecBuffIn[REALM_IDX].cbBuffer = 0;
  171. }
  172. else
  173. {
  174. // We are preauthenticating using the realm
  175. _SecBuffIn[REALM_IDX].pvBuffer = _pPWC->lpszRealm;
  176. _SecBuffIn[REALM_IDX].cbBuffer = strlen(_pPWC->lpszRealm);
  177. }
  179. // Host.
  180. _SecBuffIn[HOST_IDX].pvBuffer = _pPWC->lpszHost;
  181. _SecBuffIn[HOST_IDX].cbBuffer = strlen(_pPWC->lpszHost);
  182. _SecBuffIn[HOST_IDX].BufferType = SECBUFFER_TOKEN;
  185. // Request URI.
  186. if (!_szRequestUri)
  187. {
  188. _szRequestUri = GetRequestUri();
  189. if (_szRequestUri)
  190. _SecBuffIn[URL_IDX].pvBuffer = _szRequestUri;
  191. else
  192. _SecBuffIn[URL_IDX].pvBuffer = _pRequest->GetURL();
  193. }
  195. _SecBuffIn[URL_IDX].cbBuffer = strlen((LPSTR) _SecBuffIn[URL_IDX].pvBuffer);
  196. _SecBuffIn[URL_IDX].BufferType = SECBUFFER_TOKEN;
  199. // HTTP method.
  200. _SecBuffIn[METHOD_IDX].cbBuffer =
  201. MapHttpMethodType(_pRequest->GetMethodType(), (LPCSTR*) &_SecBuffIn[METHOD_IDX].pvBuffer);
  202. _SecBuffIn[METHOD_IDX].BufferType = SECBUFFER_TOKEN;
  204. if (_SecBuffIn[PASS_IDX].pvBuffer)
  205. {
  206. INET_ASSERT(strlen((LPCSTR)_SecBuffIn[PASS_IDX].pvBuffer) == _SecBuffIn[PASS_IDX].cbBuffer);
  207. SecureZeroMemory(_SecBuffIn[PASS_IDX].pvBuffer, _SecBuffIn[PASS_IDX].cbBuffer);
  208. FREE_MEMORY(_SecBuffIn[PASS_IDX].pvBuffer);
  209. }
  211. // User and pass might be provided from pwc entry. Use only if
  212. // we have a challenge header (we don't pre-auth using supplied creds).
  213. if (dwISCMode == ISC_MODE_AUTH && _pPWC->lpszUser && *_pPWC->lpszUser
  214. && (pszPass = _pPWC->GetPass()) && *pszPass)
  215. {
  216. // User.
  217. _SecBuffIn[USER_IDX].pvBuffer = _pPWC->lpszUser;
  218. _SecBuffIn[USER_IDX].cbBuffer = strlen(_pPWC->lpszUser);
  219. _SecBuffIn[USER_IDX].BufferType = SECBUFFER_TOKEN;
  221. // Pass.
  222. _SecBuffIn[PASS_IDX].pvBuffer = pszPass;
  223. _SecBuffIn[PASS_IDX].cbBuffer = strlen(pszPass);
  224. _SecBuffIn[PASS_IDX].BufferType = SECBUFFER_TOKEN;
  225. *pdwSecFlags = ISC_REQ_USE_SUPPLIED_CREDS;
  226. }
  227. else
  228. {
  229. // User.
  230. _SecBuffIn[USER_IDX].pvBuffer = NULL;
  231. _SecBuffIn[USER_IDX].cbBuffer = 0;
  232. _SecBuffIn[USER_IDX].BufferType = SECBUFFER_TOKEN;
  234. // Pass.
  235. _SecBuffIn[PASS_IDX].pvBuffer = NULL;
  236. _SecBuffIn[PASS_IDX].cbBuffer = 0;
  237. _SecBuffIn[PASS_IDX].BufferType = SECBUFFER_TOKEN;
  238. }
  240. // If the 'if' statement above caused the pszPass variable to be allocated
  241. // but it was not assigned to _SecBuffIn[PASS_IDX].pvBuffer, then free it.
  242. if (pszPass != NULL && _SecBuffIn[PASS_IDX].pvBuffer == NULL)
  243. {
  244. SecureZeroMemory(pszPass, strlen(pszPass));
  245. FREE_MEMORY(pszPass);
  246. }
  248. if (dwISCMode == ISC_MODE_UI)
  249. *pdwSecFlags = ISC_REQ_PROMPT_FOR_CREDS;
  251. // Out Buffer.
  252. _SecBuffOutDesc.cBuffers = 1;
  253. _SecBuffOutDesc.pBuffers = _SecBuffOut;
  254. _SecBuffOut[0].pvBuffer = szOutBuf;
  255. _SecBuffOut[0].cbBuffer = cbOutBuf;
  256. _SecBuffOut[0].BufferType = SECBUFFER_TOKEN;
  258. DEBUG_LEAVE(0);
  259. }
  262. /*---------------------------------------------------------------------------
  263. Constructor
  264. ---------------------------------------------------------------------------*/
  265. DIGEST_CTX::DIGEST_CTX(HTTP_REQUEST_HANDLE_OBJECT *pRequest, BOOL fIsProxy,
  266. SPMData *pSPM, PWC* pPWC)
  267. : AUTHCTX(pSPM, pPWC)
  268. {
  269. SECURITY_STATUS ssResult;
  270. _fIsProxy = fIsProxy;
  271. _pRequest = pRequest;
  273. _szAlloc = NULL;
  274. _szData = NULL;
  275. _pvContext = NULL;
  276. _szRequestUri = NULL;
  277. _cbData = 0;
  278. _cbContext = 0;
  279. _nRetries = 0;
  282. // Zero out the security buffers and request context.
  283. memset(&_SecBuffInDesc, 0, sizeof(_SecBuffInDesc));
  284. memset(&_SecBuffOutDesc, 0, sizeof(_SecBuffInDesc));
  285. memset(_SecBuffIn, 0, sizeof(_SecBuffIn));
  286. memset(_SecBuffOut, 0, sizeof(_SecBuffOut));
  287. memset(&_hCtxt, 0, sizeof(_hCtxt));
  289. // Is this the first time that the digest SSPI package
  290. // is being called for this process.
  291. if (!g_pFuncTbl)
  292. {
  293. // Get the global SSPI dispatch table.
  294. GetFuncTbl();
  296. DIGEST_PKG_DATA PkgData;
  297. SEC_WINNT_AUTH_IDENTITY_EXA SecIdExA;
  299. // Logon with szAppCtx = szUserCtx = NULL.
  300. PkgData.szAppCtx = PkgData.szUserCtx = NULL;
  301. memset(&SecIdExA, 0, sizeof(SEC_WINNT_AUTH_IDENTITY_EXA));
  303. SecIdExA.Version = sizeof(SEC_WINNT_AUTH_IDENTITY_EXA);
  304. SecIdExA.User = (unsigned char*) &PkgData;
  305. SecIdExA.UserLength = sizeof(DIGEST_PKG_DATA);
  307. // Get the global credentials handle.
  308. ssResult = (*(g_pFuncTbl->AcquireCredentialsHandleA))
  309. (NULL, "Digest", SECPKG_CRED_OUTBOUND, NULL, &SecIdExA, NULL, 0, &g_hCred, NULL);
  310. }
  311. }
  314. /*---------------------------------------------------------------------------
  315. DIGEST_CTX::PromptForCreds
  316. ---------------------------------------------------------------------------*/
  317. DWORD DIGEST_CTX::PromptForCreds(HWND hWnd)
  318. {
  319. DEBUG_ENTER ((
  320. DBG_HTTPAUTH,
  321. Dword,
  322. "DIGEST_CTX::PromptForCreds",
  323. "this=%#x hwnd=%#x",
  324. this,
  325. hWnd
  326. ));
  328. SECURITY_STATUS ssResult;
  330. // Prompt for the credentials.
  331. INET_ASSERT(_pvContext);
  332. _cbContext = OUTPUT_BUFFER_LEN;
  334. DWORD sf;
  335. InitSecurityBuffers((LPSTR) _pvContext, _cbContext, &sf, ISC_MODE_UI);
  337. _SecBuffIn[HWND_IDX].pvBuffer = &hWnd;
  338. _SecBuffIn[HWND_IDX].cbBuffer = sizeof(HWND);
  340. ssResult = (*(g_pFuncTbl->InitializeSecurityContextA))(&g_hCred, &_hCtxt, NULL, sf,
  341. 0, 0, &_SecBuffInDesc, 0, &_hCtxt, &_SecBuffOutDesc, NULL, NULL);
  343. _cbContext = _SecBuffOutDesc.pBuffers[0].cbBuffer;
  345. if (ssResult == SEC_E_NO_CREDENTIALS)
  346. {
  347. DEBUG_LEAVE(ERROR_CANCELLED);
  348. return ERROR_CANCELLED;
  349. }
  351. DEBUG_LEAVE((DWORD) ssResult);
  352. return (DWORD) ssResult;
  353. }
  356. /*---------------------------------------------------------------------------
  357. Destructor
  358. ---------------------------------------------------------------------------*/
  359. DIGEST_CTX::~DIGEST_CTX()
  360. {
  361. if (_szAlloc)
  362. delete _szAlloc;
  364. if (_pvContext)
  365. delete _pvContext;
  367. if (_szRequestUri)
  368. delete _szRequestUri;
  370. if (_SecBuffIn[PASS_IDX].pvBuffer)
  371. {
  372. INET_ASSERT(strlen((LPCSTR)_SecBuffIn[PASS_IDX].pvBuffer) == _SecBuffIn[PASS_IDX].cbBuffer);
  373. SecureZeroMemory(_SecBuffIn[PASS_IDX].pvBuffer, _SecBuffIn[PASS_IDX].cbBuffer);
  374. FREE_MEMORY(_SecBuffIn[PASS_IDX].pvBuffer);
  375. }
  376. }
  379. /*---------------------------------------------------------------------------
  380. PreAuthUser
  381. ---------------------------------------------------------------------------*/
  382. DWORD DIGEST_CTX::PreAuthUser(OUT LPSTR pBuff, IN OUT LPDWORD pcbBuff)
  383. {
  384. DEBUG_ENTER ((
  385. DBG_HTTPAUTH,
  386. Dword,
  387. "DIGEST_CTX::PreAuthUser",
  388. "this=%#x pBuf=%#x pcbBuf=%#x {%d}",
  389. this,
  390. pBuff,
  391. pcbBuff,
  392. *pcbBuff
  393. ));
  395. AuthLock();
  397. SECURITY_STATUS ssResult = SEC_E_OK;
  398. INET_ASSERT(_pSPMData == _pPWC->pSPM);
  400. // If a response has been generated copy into output buffer.
  401. if (_cbContext)
  402. {
  403. memcpy(pBuff, _pvContext, _cbContext);
  404. *pcbBuff = _cbContext;
  405. }
  406. // Otherwise attempt to preauthenticate.
  407. else
  408. {
  409. // Call into the SSPI package.
  410. DWORD sf;
  411. InitSecurityBuffers(pBuff, *pcbBuff, &sf, ISC_MODE_PREAUTH);
  413. ssResult = (*(g_pFuncTbl->InitializeSecurityContext))(&g_hCred, NULL, NULL, sf,
  414. 0, 0, &_SecBuffInDesc, 0, &_hCtxt, &_SecBuffOutDesc, NULL, NULL);
  416. *pcbBuff = _SecBuffOut[0].cbBuffer;
  417. }
  419. AuthUnlock();
  420. DEBUG_LEAVE((DWORD) ssResult);
  421. return (DWORD) ssResult;
  422. }
  424. /*---------------------------------------------------------------------------
  425. UpdateFromHeaders
  426. ---------------------------------------------------------------------------*/
  427. DWORD DIGEST_CTX::UpdateFromHeaders(HTTP_REQUEST_HANDLE_OBJECT *pRequest, BOOL fIsProxy)
  428. {
  429. DEBUG_ENTER ((
  430. DBG_HTTPAUTH,
  431. Dword,
  432. "DIGEST_CTX::UpdateFromHeaders",
  433. "this=%#x request=%#x isproxy=%B",
  434. this,
  435. pRequest,
  436. fIsProxy
  437. ));
  439. DWORD dwError, cbExtra, dwAuthIdx;
  440. LPSTR szAuthHeader, szExtra, szScheme;
  441. LPSTR szRealm;
  442. DWORD cbRealm;
  444. AuthLock();
  446. // Get the associated header.
  447. if ((dwError = FindHdrIdxFromScheme(&dwAuthIdx)) != ERROR_SUCCESS)
  448. goto exit;
  450. // If this auth ctx does not have pwc then it has been
  451. // just been constructed in response to a 401.
  452. if (!_pPWC)
  453. {
  454. // Get any realm.
  455. dwError = GetAuthHeaderData(pRequest, fIsProxy, "Realm",
  456. &szRealm, &cbRealm, ALLOCATE_BUFFER, dwAuthIdx);
  458. _pPWC = FindOrCreatePWC(pRequest, fIsProxy, _pSPMData, szRealm);
  460. if (_pPWC)
  461. {
  462. INET_ASSERT(_pPWC->pSPM == _pSPMData);
  463. _pPWC->nLockCount++;
  464. }
  465. else
  466. {
  467. dwError = ERROR_INTERNET_INTERNAL_ERROR;
  468. goto exit;
  469. }
  470. }
  472. // Updating the buffer - delete old one if necessary.
  473. if (_szAlloc)
  474. {
  475. delete _szAlloc;
  476. _szAlloc = _szData = NULL;
  477. _cbData = 0;
  478. }
  480. // Get the entire authentication header.
  481. dwError = GetAuthHeaderData(pRequest, fIsProxy, NULL,
  482. &_szAlloc, &_cbData, ALLOCATE_BUFFER, dwAuthIdx);
  484. // Point just past scheme
  485. _szData = _szAlloc;
  486. while (*_szData != ' ')
  487. {
  488. _szData++;
  489. _cbData--;
  490. }
  492. // The request will be retried.
  493. dwError = ERROR_SUCCESS;
  494. exit:
  495. AuthUnlock();
  496. DEBUG_LEAVE(dwError);
  497. return dwError;
  498. }
  502. /*---------------------------------------------------------------------------
  503. PostAuthUser
  504. ---------------------------------------------------------------------------*/
  505. DWORD DIGEST_CTX::PostAuthUser()
  506. {
  507. DEBUG_ENTER ((
  508. DBG_HTTPAUTH,
  509. Dword,
  510. "DIGEST_CTX::PostAuthUser",
  511. "this=%#x",
  512. this
  513. ));
  515. INET_ASSERT(_pSPMData == _pPWC->pSPM);
  517. AuthLock();
  519. DWORD dwError;
  520. SECURITY_STATUS ssResult;
  522. // Allocate an output buffer if not done so already.
  523. if (!_pvContext)
  524. {
  525. _pvContext = new CHAR[OUTPUT_BUFFER_LEN];
  526. if (!_pvContext)
  527. {
  528. dwError = ERROR_NOT_ENOUGH_MEMORY;
  529. goto exit;
  530. }
  531. }
  533. _cbContext = OUTPUT_BUFFER_LEN;
  536. if (_nRetries++ < MAX_SILENT_RETRIES)
  537. {
  538. // If we pre-authenticated, treat as second
  539. // or subsequent attempt. We depend on the
  540. // server correctly sending stale=FALSE (or no stale)
  541. // if the credentials sent during pre-auth were bad.
  542. // In this case the digest pkg will return SEC_E_NO_CREDENTIALS
  543. // and we will prompt for credentials.
  544. // BUGBUG - Use ApplyControlToken
  545. if (_nRetries == 1 && _pRequest->GetPWC())
  546. {
  547. // Increment num of retries to 2
  548. _nRetries++;
  550. // The dwLower member has to have the correct value
  551. // so that secur32.dll can route to correct provider.
  552. _hCtxt.dwLower = g_hCred.dwLower;
  553. }
  555. // Call into the SSPI package.
  557. DWORD sf;
  558. InitSecurityBuffers((LPSTR) _pvContext, _cbContext, &sf, ISC_MODE_AUTH);
  559. ssResult = (*(g_pFuncTbl->InitializeSecurityContext))
  560. (&g_hCred, (_nRetries == 1 ? NULL : &_hCtxt), NULL, sf,
  561. 0, 0, &_SecBuffInDesc, 0, &_hCtxt, &_SecBuffOutDesc, NULL, NULL);
  562. _cbContext = _SecBuffOutDesc.pBuffers[0].cbBuffer;
  564. switch(ssResult)
  565. {
  566. case SEC_E_OK:
  567. {
  568. dwError = ERROR_INTERNET_FORCE_RETRY;
  569. break;
  570. }
  571. case SEC_E_NO_CREDENTIALS:
  572. {
  573. dwError = ERROR_INTERNET_INCORRECT_PASSWORD;
  574. break;
  575. }
  576. case SEC_E_CONTEXT_EXPIRED:
  577. {
  578. dwError = ERROR_INTERNET_LOGIN_FAILURE_DISPLAY_ENTITY_BODY;
  579. break;
  580. }
  581. default:
  582. dwError = ERROR_INTERNET_LOGIN_FAILURE;
  583. }
  584. }
  585. else
  586. {
  587. _cbContext = 0;
  588. _nRetries = 0;
  589. dwError = ERROR_INTERNET_INCORRECT_PASSWORD;
  590. }
  592. exit:
  593. _pRequest->SetPWC(NULL);
  595. AuthUnlock();
  596. DEBUG_LEAVE(dwError);
  597. return dwError;
  598. }
  600. /*---------------------------------------------------------------------------
  601. Flush creds
  602. ---------------------------------------------------------------------------*/
  603. VOID DIGEST_CTX::FlushCreds()
  604. {
  605. DEBUG_ENTER ((
  606. DBG_HTTPAUTH,
  607. None,
  608. "DIGEST_CTX::FlushCreds",
  609. NULL
  610. ));
  612. DWORD ssResult;
  613. if (g_pFuncTbl)
  614. {
  615. DWORD sf = ISC_REQ_NULL_SESSION;
  616. ssResult = (*(g_pFuncTbl->InitializeSecurityContext))(&g_hCred, NULL, NULL, sf,
  617. 0, 0, NULL, 0, NULL, NULL, NULL, NULL);
  618. }
  620. DEBUG_LEAVE(0);
  621. }
  623. /*---------------------------------------------------------------------------
  624. Logoff
  625. ---------------------------------------------------------------------------*/
  626. VOID DIGEST_CTX::Logoff()
  627. {
  628. DEBUG_ENTER ((
  629. DBG_HTTPAUTH,
  630. None,
  631. "DIGEST_CTX::Logoff",
  632. NULL
  633. ));
  635. DWORD ssResult;
  636. if (g_pFuncTbl)
  637. {
  638. ssResult = (*(g_pFuncTbl->FreeCredentialsHandle))(&g_hCred);
  639. }
  641. DEBUG_LEAVE(0);
  642. }