archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
3 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 827363a95b
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '827363a95b'
${ noResults }
windows-server-2003/inetsrv/iis/admin/common2/strpass.cpp

339 lines
7.8 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. /*++
  3. Copyright (c) 1994-2002 Microsoft Corporation
  5. Module Name :
  6. strpass.cpp
  8. Abstract:
  9. Message Functions
  11. Author:
  12. Aaron Lee (aaronl)
  14. Project:
  15. Internet Services Manager
  17. Revision History:
  19. --*/
  21. #include "stdafx.h"
  22. #include "common.h"
  23. #include "strpass.h"
  24. #include "cryptpass.h"
  25. #include <strsafe.h>
  27. #ifdef _DEBUG
  28. #undef THIS_FILE
  29. static char BASED_CODE THIS_FILE[] = __FILE__;
  30. #endif
  33. #define new DEBUG_NEW
  35. void CStrPassword::ClearPasswordBuffers(void)
  36. {
  37. if (NULL != m_pszDataEncrypted)
  38. {
  39. if (m_cbDataEncrypted > 0)
  40. {
  41. SecureZeroMemory(m_pszDataEncrypted,m_cbDataEncrypted);
  42. }
  43. LocalFree(m_pszDataEncrypted);m_pszDataEncrypted=NULL;
  44. }
  45. m_pszDataEncrypted = NULL;
  46. m_cbDataEncrypted = 0;
  47. }
  49. // constructor
  50. CStrPassword::CStrPassword()
  51. {
  52. m_pszDataEncrypted = NULL;
  53. m_cbDataEncrypted = 0;
  54. }
  56. CStrPassword::~CStrPassword()
  57. {
  58. ClearPasswordBuffers();
  59. }
  61. // constructor
  62. CStrPassword::CStrPassword(LPTSTR lpch)
  63. {
  64. m_pszDataEncrypted = NULL;
  65. m_cbDataEncrypted = 0;
  67. // Copy the string
  68. if (NULL != lpch)
  69. {
  70. if (FAILED(EncryptMemoryPassword(lpch,&m_pszDataEncrypted,&m_cbDataEncrypted)))
  71. {
  72. ASSERT(FALSE);
  73. }
  74. }
  75. }
  77. // constructor
  78. CStrPassword::CStrPassword(LPCTSTR lpch)
  79. {
  80. CStrPassword((LPTSTR) lpch);
  81. }
  83. // constructor
  84. CStrPassword::CStrPassword(CStrPassword& csPassword)
  85. {
  86. m_pszDataEncrypted = NULL;
  87. m_cbDataEncrypted = 0;
  88. LPTSTR lpTempPassword = csPassword.GetClearTextPassword();
  89. if (FAILED(EncryptMemoryPassword((LPTSTR) lpTempPassword,&m_pszDataEncrypted,&m_cbDataEncrypted)))
  90. {
  91. ASSERT(FALSE);
  92. }
  93. csPassword.DestroyClearTextPassword(lpTempPassword);
  94. }
  96. BOOL CStrPassword::IsEmpty() const
  97. {
  98. if (m_pszDataEncrypted && (m_cbDataEncrypted > 0))
  99. {
  100. return FALSE;
  101. }
  102. return TRUE;
  103. }
  105. void CStrPassword::Empty()
  106. {
  107. ClearPasswordBuffers();
  108. }
  110. int CStrPassword::GetLength() const
  111. {
  112. int iRet = 0;
  113. LPTSTR lpszTempPassword = NULL;
  115. if (m_pszDataEncrypted && (m_cbDataEncrypted > 0))
  116. {
  117. if (SUCCEEDED(DecryptMemoryPassword((LPTSTR) m_pszDataEncrypted,&lpszTempPassword,m_cbDataEncrypted)))
  118. {
  119. iRet = _tcslen(lpszTempPassword);
  120. }
  121. }
  123. if (lpszTempPassword)
  124. {
  125. SecureZeroMemory(lpszTempPassword,(_tcslen(lpszTempPassword)+1) * sizeof(TCHAR));
  126. LocalFree(lpszTempPassword);lpszTempPassword=NULL;
  127. }
  128. return iRet;
  129. };
  131. int CStrPassword::GetByteLength() const
  132. {
  133. int iRet = 0;
  134. LPTSTR lpszTempPassword = NULL;
  136. if (m_pszDataEncrypted && (m_cbDataEncrypted > 0))
  137. {
  138. if (SUCCEEDED(DecryptMemoryPassword((LPTSTR) m_pszDataEncrypted,&lpszTempPassword,m_cbDataEncrypted)))
  139. {
  140. iRet = (_tcslen(lpszTempPassword) + 1) * sizeof(TCHAR);
  141. }
  142. }
  144. if (lpszTempPassword)
  145. {
  146. SecureZeroMemory(lpszTempPassword,(_tcslen(lpszTempPassword)+1) * sizeof(TCHAR));
  147. LocalFree(lpszTempPassword);lpszTempPassword=NULL;
  148. }
  149. return iRet;
  150. };
  152. int CStrPassword::Compare(LPCTSTR lpsz) const
  153. {
  154. // identical = 0
  155. // not equal = 1
  156. int iRet = 1;
  157. LPTSTR lpszTempPassword = NULL;
  159. if (lpsz == NULL)
  160. {
  161. return this->IsEmpty() ? 0 : 1;
  162. }
  163. if (lpsz[0] == NULL)
  164. {
  165. return this->IsEmpty() ? 0 : 1;
  166. }
  168. // Decrypt what we have
  169. if (!m_pszDataEncrypted || (m_cbDataEncrypted < 1))
  170. {
  171. // means we have nothing in here
  172. // but they want to compare it to something
  173. return iRet;
  174. }
  176. if (FAILED(DecryptMemoryPassword((LPTSTR) m_pszDataEncrypted,&lpszTempPassword,m_cbDataEncrypted)))
  177. {
  178. goto CStrPassword_Compare_Exit;
  179. }
  180. else
  181. {
  182. iRet = _tcscmp(lpszTempPassword,lpsz);
  183. }
  185. CStrPassword_Compare_Exit:
  186. if (lpszTempPassword)
  187. {
  188. LocalFree(lpszTempPassword);lpszTempPassword=NULL;
  189. }
  190. return iRet;
  191. }
  193. const CStrPassword& CStrPassword::operator=(LPCTSTR lpsz)
  194. {
  195. ClearPasswordBuffers();
  196. if (lpsz != NULL)
  197. {
  198. // Copy the string
  199. if (FAILED(EncryptMemoryPassword((LPTSTR) lpsz,&m_pszDataEncrypted,&m_cbDataEncrypted)))
  200. {
  201. ASSERT(FALSE);
  202. }
  203. }
  204. return *this;
  205. }
  207. const CStrPassword& CStrPassword::operator= (CStrPassword& lpStrPass)
  208. {
  209. // handle the a = a case.
  210. if (this == &lpStrPass)
  211. {
  212. return *this;
  213. }
  214. ClearPasswordBuffers();
  215. LPTSTR lpTempPassword = lpStrPass.GetClearTextPassword();
  216. if (FAILED(EncryptMemoryPassword((LPTSTR) lpTempPassword,&m_pszDataEncrypted,&m_cbDataEncrypted)))
  217. {
  218. ASSERT(FALSE);
  219. }
  220. lpStrPass.DestroyClearTextPassword(lpTempPassword);
  222. return *this;
  223. }
  225. void CStrPassword::CopyTo(CString& stringSrc)
  226. {
  227. LPTSTR lpTempPassword = GetClearTextPassword();
  228. stringSrc = lpTempPassword;
  229. DestroyClearTextPassword(lpTempPassword);
  230. return;
  231. }
  233. void CStrPassword::CopyTo(CStrPassword& stringSrc)
  234. {
  235. LPTSTR lpTempPassword = GetClearTextPassword();
  236. stringSrc = (LPCTSTR) lpTempPassword;
  237. DestroyClearTextPassword(lpTempPassword);
  238. return;
  239. }
  241. int CStrPassword::Compare(CString& csString) const
  242. {
  243. int iRet = 1;
  244. if (!csString.IsEmpty())
  245. {
  246. return Compare((LPCTSTR) csString);
  247. }
  248. return iRet;
  249. }
  251. int CStrPassword::Compare(CStrPassword& cstrPassword) const
  252. {
  253. int iRet = 1;
  254. if (!cstrPassword.IsEmpty())
  255. {
  256. LPTSTR lpTempPassword = cstrPassword.GetClearTextPassword();
  257. iRet = Compare((LPCTSTR) lpTempPassword);
  258. cstrPassword.DestroyClearTextPassword(lpTempPassword);
  259. return iRet;
  260. }
  261. return iRet;
  262. }
  264. // user needs to LocalFree return.
  265. // or call DestroyClearTextPassword.
  266. LPTSTR CStrPassword::GetClearTextPassword()
  267. {
  268. LPTSTR lpszTempPassword = NULL;
  270. if (m_pszDataEncrypted && (m_cbDataEncrypted > 0))
  271. {
  272. if (FAILED(DecryptMemoryPassword((LPTSTR) m_pszDataEncrypted,&lpszTempPassword,m_cbDataEncrypted)))
  273. {
  274. if (lpszTempPassword)
  275. {
  276. LocalFree(lpszTempPassword);lpszTempPassword=NULL;
  277. }
  278. }
  279. else
  280. {
  281. return lpszTempPassword;
  282. }
  283. }
  284. return NULL;
  285. }
  287. void CStrPassword::DestroyClearTextPassword(LPTSTR lpClearTextPassword) const
  288. {
  289. if (lpClearTextPassword)
  290. {
  291. SecureZeroMemory(lpClearTextPassword,(_tcslen(lpClearTextPassword)+1) * sizeof(TCHAR));
  292. LocalFree(lpClearTextPassword);lpClearTextPassword=NULL;
  293. }
  294. return;
  295. }
  297. // assign to a CString
  298. CStrPassword::operator CString()
  299. {
  300. CString csTempCString;
  301. LPTSTR lpTempPassword = GetClearTextPassword();
  302. if (lpTempPassword)
  303. {
  304. csTempCString = lpTempPassword;
  305. DestroyClearTextPassword(lpTempPassword);
  306. }
  307. return csTempCString;
  308. }
  310. bool CStrPassword::operator==(CStrPassword& csCompareToMe)
  311. {
  312. LPTSTR lpTempPassword1 = NULL;
  313. LPTSTR lpTempPassword2 = NULL;
  314. bool result = FALSE;
  316. // handle the a == a case
  317. if (this == &csCompareToMe)
  318. {
  319. return TRUE;
  320. }
  322. if (GetLength() != csCompareToMe.GetLength())
  323. {
  324. // can't be the same if lengths differ...
  325. return FALSE;
  326. }
  328. // Two strings are the same if their decoded contents are the same.
  329. lpTempPassword1 = GetClearTextPassword();
  330. lpTempPassword2 = csCompareToMe.GetClearTextPassword();
  332. result = (_tcscmp(lpTempPassword1, lpTempPassword2) == 0);
  334. if (lpTempPassword1)
  335. {DestroyClearTextPassword(lpTempPassword1);}
  336. if (lpTempPassword2)
  337. {csCompareToMe.DestroyClearTextPassword(lpTempPassword2);}
  338. return result;
  339. }