archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
3 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 827363a95b
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '827363a95b'
${ noResults }
windows-server-2003/inetsrv/iis/svcs/irtl/iiscrypt/lib/contain.c

847 lines
19 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. /*++
  3. Copyright (c) 1997 Microsoft Corporation
  5. Module Name:
  7. contain.c
  9. Abstract:
  11. Container manipulators for the IIS cryptographic package.
  13. The following routines are exported by this module:
  15. IISCryptoGetStandardContainer
  16. IISCryptoGetStandardContainer2
  17. IISCryptoGetContainerByName
  18. IISCryptoDeleteContainer
  19. IISCryptoCloseContainer
  21. Author:
  23. Keith Moore (keithmo) 02-Dec-1996
  25. Revision History:
  27. --*/
  30. #include "precomp.h"
  31. #pragma hdrstop
  34. //
  35. // Private constants.
  36. //
  39. //
  40. // Private types.
  41. //
  44. //
  45. // Private globals.
  46. //
  49. //
  50. // Private prototypes.
  51. //
  53. HRESULT
  54. IcpGetContainerHelper(
  55. OUT HCRYPTPROV * phProv,
  56. IN LPCTSTR pszContainer,
  57. IN LPCTSTR pszProvider,
  58. IN DWORD dwProvType,
  59. IN DWORD dwAdditionalFlags,
  60. IN BOOL fApplyAcl
  61. );
  64. //
  65. // Public functions.
  66. //
  69. HRESULT
  70. WINAPI
  71. IISCryptoGetStandardContainer(
  72. OUT HCRYPTPROV * phProv,
  73. IN DWORD dwAdditionalFlags
  74. )
  76. /*++
  78. Routine Description:
  80. This routine attempts to open the crypto key container. If the
  81. container does not yet exist, this routine will attempt to create
  82. it.
  84. Arguments:
  86. phProv - Receives the provider handle if successful.
  88. dwAdditionalFlags - Any additional flags that should be passed to
  89. the CryptAcquireContext() API. This is typically used by server
  90. processes that pass in the CRYPT_MACHINE_KEYSET flag.
  92. Return Value:
  94. HRESULT - Completion status, 0 if successful, !0 otherwise.
  96. --*/
  98. {
  100. HRESULT result;
  102. //
  103. // Sanity check.
  104. //
  106. DBG_ASSERT( IcpGlobals.Initialized );
  107. DBG_ASSERT( phProv != NULL );
  108. DBG_ASSERT( ( dwAdditionalFlags & CRYPT_NEWKEYSET ) == 0 );
  109. DBG_ASSERT( ( dwAdditionalFlags & CRYPT_DELETEKEYSET ) == 0 );
  111. //
  112. // Let IcpGetContainerHelper() do the dirty work.
  113. //
  115. result = IcpGetContainerHelper(
  116. phProv,
  117. IC_CONTAINER,
  118. IC_PROVIDER,
  119. IC_PROVTYPE,
  120. dwAdditionalFlags,
  121. ( dwAdditionalFlags & CRYPT_MACHINE_KEYSET ) != 0
  122. );
  124. return result;
  126. } // IISCryptoGetStandardContainer
  128. HRESULT
  129. WINAPI
  130. IISCryptoGetStandardContainer2(
  131. OUT HCRYPTPROV * phProv
  132. )
  134. /*++
  136. Routine Description:
  138. This routine attempts to open the crypto key container. If the
  139. container does not yet exist, this routine will attempt to create
  140. it.
  142. Arguments:
  144. phProv - Receives the provider handle if successful.
  146. Return Value:
  148. HRESULT - Completion status, 0 if successful, !0 otherwise.
  150. --*/
  152. {
  154. HRESULT result;
  156. //
  157. // Sanity check.
  158. //
  160. DBG_ASSERT( IcpGlobals.Initialized );
  161. DBG_ASSERT( phProv != NULL );
  163. //
  164. // Let IcpGetContainerHelper() do the dirty work.
  165. //
  167. result = IcpGetContainerHelper(
  168. phProv,
  169. NULL,
  170. NULL,
  171. IC_PROVTYPE,
  172. CRYPT_VERIFYCONTEXT,
  173. FALSE
  174. );
  176. return result;
  178. } // IISCryptoGetStandardContainer2
  180. HRESULT
  181. WINAPI
  182. IISCryptoGetContainerByName(
  183. OUT HCRYPTPROV * phProv,
  184. IN LPTSTR pszContainerName,
  185. IN DWORD dwAdditionalFlags,
  186. IN BOOL fApplyAcl
  187. )
  189. /*++
  191. Routine Description:
  193. This routine attempts to open a specific named crypto key container.
  194. If the container does not yet exist, this routine will attempt to
  195. create it and (optionally) apply an ACL to the container.
  197. Arguments:
  199. phProv - Receives the provider handle if successful.
  201. pszContainerName - The name of the container to open/create.
  202. NULL means temporary container
  204. dwAdditionalFlags - Any additional flags that should be passed to
  205. the CryptAcquireContext() API. This is typically used by server
  206. processes that pass in the CRYPT_MACHINE_KEYSET flag.
  208. fApplyAcl - If TRUE, then an ACL is applied to the container.
  210. Return Value:
  212. HRESULT - Completion status, 0 if successful, !0 otherwise.
  214. --*/
  216. {
  218. HRESULT result;
  220. //
  221. // Sanity check.
  222. //
  224. DBG_ASSERT( IcpGlobals.Initialized );
  225. DBG_ASSERT( phProv != NULL );
  226. DBG_ASSERT( ( dwAdditionalFlags & CRYPT_NEWKEYSET ) == 0 );
  227. DBG_ASSERT( ( dwAdditionalFlags & CRYPT_DELETEKEYSET ) == 0 );
  229. //
  230. // Let IcpGetContainerHelper() do the dirty work.
  231. //
  233. result = IcpGetContainerHelper(
  234. phProv,
  235. pszContainerName,
  236. IC_PROVIDER,
  237. IC_PROVTYPE,
  238. dwAdditionalFlags,
  239. fApplyAcl
  240. );
  242. return result;
  244. } // IISCryptoGetContainerByName
  247. HRESULT
  248. WINAPI
  249. IISCryptoDeleteStandardContainer(
  250. IN DWORD dwAdditionalFlags
  251. )
  253. /*++
  255. Routine Description:
  257. This routine deletes the standard crypto key container.
  259. Arguments:
  261. dwAdditionalFlags - Any additional flags that should be passed to
  262. the CryptAcquireContext() API. This is typically used by server
  263. processes that pass in the CRYPT_MACHINE_KEYSET flag.
  265. Return Value:
  267. HRESULT - Completion status, 0 if successful, !0 otherwise.
  269. --*/
  271. {
  273. HRESULT result = NO_ERROR;
  274. BOOL status;
  275. HCRYPTPROV cryptProv;
  277. //
  278. // Sanity check.
  279. //
  281. DBG_ASSERT( IcpGlobals.Initialized );
  282. DBG_ASSERT( ( dwAdditionalFlags & CRYPT_NEWKEYSET ) == 0 );
  283. DBG_ASSERT( ( dwAdditionalFlags & CRYPT_DELETEKEYSET ) == 0 );
  285. //
  286. // Short-circuit if cryptography is disabled.
  287. //
  289. if( !IcpGlobals.EnableCryptography ) {
  290. return NO_ERROR;
  291. }
  293. //
  294. // Delete the container.
  295. //
  297. status = CryptAcquireContext(
  298. &cryptProv,
  299. IC_CONTAINER,
  300. IC_PROVIDER,
  301. IC_PROVTYPE,
  302. CRYPT_DELETEKEYSET | dwAdditionalFlags
  303. );
  305. if( !status ) {
  306. result = IcpGetLastError();
  307. }
  309. return result;
  311. } // IISCryptoDeleteStandardContainer
  314. HRESULT
  315. WINAPI
  316. IISCryptoDeleteContainerByName(
  317. IN LPTSTR pszContainerName,
  318. IN DWORD dwAdditionalFlags
  319. )
  321. /*++
  323. Routine Description:
  325. This routine deletes the specified crypto key container.
  327. Arguments:
  329. pszContainerName - The name of the container to delete.
  331. dwAdditionalFlags - Any additional flags that should be passed to
  332. the CryptAcquireContext() API. This is typically used by server
  333. processes that pass in the CRYPT_MACHINE_KEYSET flag.
  335. Return Value:
  337. HRESULT - Completion status, 0 if successful, !0 otherwise.
  339. --*/
  341. {
  343. HRESULT result = NO_ERROR;
  344. BOOL status;
  345. HCRYPTPROV cryptProv;
  347. //
  348. // Sanity check.
  349. //
  351. DBG_ASSERT( IcpGlobals.Initialized );
  352. DBG_ASSERT( ( dwAdditionalFlags & CRYPT_NEWKEYSET ) == 0 );
  353. DBG_ASSERT( ( dwAdditionalFlags & CRYPT_DELETEKEYSET ) == 0 );
  355. //
  356. // Short-circuit if cryptography is disabled.
  357. //
  359. if( !IcpGlobals.EnableCryptography ) {
  360. return NO_ERROR;
  361. }
  363. //
  364. // Delete the container.
  365. //
  367. status = CryptAcquireContext(
  368. &cryptProv,
  369. pszContainerName,
  370. IC_PROVIDER,
  371. IC_PROVTYPE,
  372. CRYPT_DELETEKEYSET | dwAdditionalFlags
  373. );
  375. if( !status ) {
  376. result = IcpGetLastError();
  377. }
  379. return result;
  381. } // IISCryptoDeleteContainerByName
  384. HRESULT
  385. WINAPI
  386. IISCryptoCloseContainer(
  387. IN HCRYPTPROV hProv
  388. )
  390. /*++
  392. Routine Description:
  394. This routine closes the container associated with the specified
  395. provider handle.
  397. Arguments:
  399. hProv - A handle to a crypto service provider.
  401. Return Value:
  403. HRESULT - Completion status, 0 if successful, !0 otherwise.
  405. --*/
  407. {
  409. BOOL status;
  411. //
  412. // Sanity check.
  413. //
  415. DBG_ASSERT( IcpGlobals.Initialized );
  416. DBG_ASSERT( hProv != CRYPT_NULL );
  418. //
  419. // Short-circuit if cryptography is disabled.
  420. //
  422. if( !IcpGlobals.EnableCryptography ) {
  423. if( hProv == DUMMY_HPROV ) {
  424. return NO_ERROR;
  425. } else {
  426. return RETURNCODETOHRESULT( ERROR_INVALID_PARAMETER );
  427. }
  428. }
  430. //
  431. // Close the provider.
  432. //
  434. status = CryptReleaseContext(
  435. hProv,
  436. 0
  437. );
  439. if( status ) {
  441. UpdateContainersClosed();
  442. return NO_ERROR;
  444. }
  446. return IcpGetLastError();
  448. } // IISCryptoCloseContainer
  451. //
  452. // Private functions.
  453. //
  456. HRESULT
  457. IcpGetContainerHelper(
  458. OUT HCRYPTPROV * phProv,
  459. IN LPCTSTR pszContainer,
  460. IN LPCTSTR pszProvider,
  461. IN DWORD dwProvType,
  462. IN DWORD dwAdditionalFlags,
  463. IN BOOL fApplyAcl
  464. )
  466. /*++
  468. Routine Description:
  470. This is a helper routine for IISCryptoGetContainer. It tries
  471. to open/create the specified container in the specified provider.
  473. Arguments:
  475. phProv - Receives the provider handle if successful.
  477. pszContainer - The key container name.
  479. pszProvider - The provider name.
  481. dwProvType - The type of provider to acquire.
  483. dwAdditionalFlags - Any additional flags that should be passed to
  484. the CryptAcquireContext() API. This is typically used by server
  485. processes that pass in the CRYPT_MACHINE_KEYSET flag.
  487. fApplyAcl - If TRUE, then an ACL is applied to the container.
  489. Return Value:
  491. HRESULT - Completion status, 0 if successful, !0 otherwise.
  493. --*/
  495. {
  497. HRESULT result = NO_ERROR;
  498. HCRYPTPROV hProv;
  499. BOOL status;
  500. PSID systemSid;
  501. PSID adminSid;
  502. PACL dacl;
  503. DWORD daclSize;
  504. SECURITY_DESCRIPTOR securityDescriptor;
  505. SID_IDENTIFIER_AUTHORITY ntAuthority = SECURITY_NT_AUTHORITY;
  506. BOOL isNt = FALSE;
  507. OSVERSIONINFO osInfo;
  509. // Sanity check.
  510. //
  512. DBG_ASSERT( IcpGlobals.Initialized );
  513. DBG_ASSERT( phProv != NULL );
  514. DBG_ASSERT( ( dwAdditionalFlags & CRYPT_NEWKEYSET ) == 0 );
  515. DBG_ASSERT( ( dwAdditionalFlags & CRYPT_DELETEKEYSET ) == 0 );
  517. //
  518. // Short-circuit if cryptography is disabled.
  519. //
  521. if( !IcpGlobals.EnableCryptography ) {
  522. *phProv = DUMMY_HPROV;
  523. return NO_ERROR;
  524. }
  526. //
  527. // Setup our locals so we know how to cleanup on exit.
  528. //
  530. hProv = CRYPT_NULL;
  531. systemSid = NULL;
  532. adminSid = NULL;
  533. dacl = NULL;
  535. //
  536. // Grab the lock protecting the container code. This is always
  537. // necessary to prevent race conditions between this code and
  538. // the code below that creates the container & adds a security
  539. // descriptor.
  540. //
  542. IcpAcquireGlobalLock();
  544. //
  545. // Try to open an existing container.
  546. //
  548. if ( pszContainer == NULL )
  549. {
  550. //
  551. // if container is NULL it means that temporary (ephemeral)
  552. // keys will be used
  553. // CRYPT_VERIFYCONTEXT must be used in this case
  554. // keys used for DCOM traffic encryption will be using
  555. // NULL containers
  556. //
  558. status = CryptAcquireContext(
  559. &hProv,
  560. pszContainer,
  561. pszProvider,
  562. dwProvType,
  563. CRYPT_VERIFYCONTEXT
  564. );
  565. if( !status )
  566. {
  567. result = IcpGetLastError();
  568. DBGPRINTF(( DBG_CONTEXT,"IcpGetContainerHelper. CryptAcquireContext(advapi32.dll) with CRYPT_VERIFYCONTEXT failed err=0x%x\n",result));
  569. DBGPRINTF(( DBG_CONTEXT,"args for CryptAcquireContext(%p,%p,%p,%d,%d)\n",&hProv,pszContainer,pszProvider,dwProvType, CRYPT_VERIFYCONTEXT));
  571. goto fatal;
  572. }
  573. else
  574. {
  575. goto success;
  576. }
  578. }
  580. status = CryptAcquireContext(
  581. &hProv,
  582. pszContainer,
  583. pszProvider,
  584. dwProvType,
  585. 0 | dwAdditionalFlags
  586. );
  588. if( !status ) {
  589. result = IcpGetLastError();
  590. }
  592. if( SUCCEEDED(result) ) {
  594. DBG_ASSERT( hProv != CRYPT_NULL );
  595. *phProv = hProv;
  597. IcpReleaseGlobalLock();
  599. UpdateContainersOpened();
  600. return NO_ERROR;
  602. }
  604. //
  605. // Could not open the container. If the failure was anything
  606. // other than NTE_BAD_KEYSET, then we're toast.
  607. //
  609. if( result != NTE_BAD_KEYSET ) {
  610. DBGPRINTF(( DBG_CONTEXT,"IcpGetContainerHelper. CryptAcquireContext(advapi32.dll) failed err=0x%x.toast.\n",result));
  611. DBGPRINTF(( DBG_CONTEXT,"args for CryptAcquireContext(%p,%p,%p,%d,%d)\n",&hProv,pszContainer,pszProvider,dwProvType,CRYPT_NEWKEYSET | dwAdditionalFlags));
  612. hProv = CRYPT_NULL;
  613. goto fatal;
  614. }
  616. if(result == NTE_BAD_KEYSET)
  617. {
  618. DBGPRINTF(( DBG_CONTEXT,"CryptAcquireContext(%p,%p,%p,%d,%d) returned NTE_BAD_KEYSET, so lets create a keyset now...\n",&hProv,pszContainer,pszProvider,dwProvType,0 | dwAdditionalFlags));
  619. }
  621. //
  622. // OK, CryptAcquireContext() failed with NTE_BAD_KEYSET, meaning
  623. // that the container does not yet exist, so create it now.
  624. //
  626. status = CryptAcquireContext(
  627. &hProv,
  628. pszContainer,
  629. pszProvider,
  630. dwProvType,
  631. CRYPT_NEWKEYSET | dwAdditionalFlags
  632. );
  634. if( status ) {
  635. result = NO_ERROR;
  636. } else {
  637. result = IcpGetLastError();
  638. }
  640. if( FAILED(result) ) {
  641. DBGPRINTF(( DBG_CONTEXT,"IcpGetContainerHelper. CryptAcquireContext(advapi32.dll) failed err=0x%x.\n",result));
  642. DBGPRINTF(( DBG_CONTEXT,"args for CryptAcquireContext(%p,%p,%p,%d,%d)\n",&hProv,pszContainer,pszProvider,dwProvType,CRYPT_NEWKEYSET | dwAdditionalFlags));
  643. hProv = CRYPT_NULL;
  644. goto fatal;
  645. }
  647. //
  648. // We've created the container. If requested, then we must create
  649. // a security descriptor for the container. This security descriptor
  650. // allows full access to the the container by the local system and
  651. // the local administrators group. Other login contexts may not
  652. // access the container.
  653. //
  654. // Of course, we only need to do this under NT...
  655. //
  658. osInfo.dwOSVersionInfoSize = sizeof(OSVERSIONINFO);
  660. if ( GetVersionEx( &osInfo ) ) {
  661. isNt = (osInfo.dwPlatformId == VER_PLATFORM_WIN32_NT);
  662. }
  664. if( fApplyAcl && isNt ) {
  666. //
  667. // Initialize the security descriptor.
  668. //
  670. status = InitializeSecurityDescriptor(
  671. &securityDescriptor,
  672. SECURITY_DESCRIPTOR_REVISION
  673. );
  675. if( !status ) {
  676. result = IcpGetLastError();
  677. goto fatal;
  678. }
  680. //
  681. // Create the SIDs for the local system and admin group.
  682. //
  684. status = AllocateAndInitializeSid(
  685. &ntAuthority,
  686. 1,
  687. SECURITY_LOCAL_SYSTEM_RID,
  688. 0,
  689. 0,
  690. 0,
  691. 0,
  692. 0,
  693. 0,
  694. 0,
  695. &systemSid
  696. );
  698. if( !status ) {
  699. result = IcpGetLastError();
  700. goto fatal;
  701. }
  703. status= AllocateAndInitializeSid(
  704. &ntAuthority,
  705. 2,
  706. SECURITY_BUILTIN_DOMAIN_RID,
  707. DOMAIN_ALIAS_RID_ADMINS,
  708. 0,
  709. 0,
  710. 0,
  711. 0,
  712. 0,
  713. 0,
  714. &adminSid
  715. );
  717. if( !status ) {
  718. result = IcpGetLastError();
  719. goto fatal;
  720. }
  722. //
  723. // Create the DACL containing an access-allowed ACE
  724. // for the local system and admin SIDs.
  725. //
  727. daclSize = sizeof(ACL)
  728. + sizeof(ACCESS_ALLOWED_ACE)
  729. + GetLengthSid(adminSid)
  730. + sizeof(ACCESS_ALLOWED_ACE)
  731. + GetLengthSid(systemSid)
  732. - sizeof(DWORD);
  734. dacl = (PACL)IcpAllocMemory( daclSize );
  736. if( dacl == NULL ) {
  737. result = HRESULT_FROM_WIN32( ERROR_NOT_ENOUGH_MEMORY );
  738. goto fatal;
  739. }
  741. status = InitializeAcl(
  742. dacl,
  743. daclSize,
  744. ACL_REVISION
  745. );
  747. if( !status ) {
  748. result = IcpGetLastError();
  749. goto fatal;
  750. }
  752. status = AddAccessAllowedAce(
  753. dacl,
  754. ACL_REVISION,
  755. KEY_ALL_ACCESS,
  756. systemSid
  757. );
  759. if( !status ) {
  760. result = IcpGetLastError();
  761. goto fatal;
  762. }
  764. status = AddAccessAllowedAce(
  765. dacl,
  766. ACL_REVISION,
  767. KEY_ALL_ACCESS,
  768. adminSid
  769. );
  771. if( !status ) {
  772. result = IcpGetLastError();
  773. goto fatal;
  774. }
  776. //
  777. // Set the DACL into the security descriptor.
  778. //
  780. status = SetSecurityDescriptorDacl(
  781. &securityDescriptor,
  782. TRUE,
  783. dacl,
  784. FALSE
  785. );
  787. if( !status ) {
  788. result = IcpGetLastError();
  789. goto fatal;
  790. }
  792. //
  793. // And (finally!) set the security descriptor on the
  794. // container.
  795. //
  797. status = CryptSetProvParam(
  798. hProv,
  799. PP_KEYSET_SEC_DESCR,
  800. (BYTE *)&securityDescriptor,
  801. DACL_SECURITY_INFORMATION
  802. );
  804. if( !status ) {
  805. result = IcpGetLastError();
  806. goto fatal;
  807. }
  809. }
  811. success:
  812. //
  813. // Success!
  814. //
  816. DBG_ASSERT( hProv != CRYPT_NULL );
  817. *phProv = hProv;
  819. UpdateContainersOpened();
  820. result = NO_ERROR;
  822. fatal:
  824. if( dacl != NULL ) {
  825. IcpFreeMemory( dacl );
  826. }
  828. if( adminSid != NULL ) {
  829. FreeSid( adminSid );
  830. }
  832. if( systemSid != NULL ) {
  833. FreeSid( systemSid );
  834. }
  836. if( hProv != CRYPT_NULL && FAILED(result) ) {
  837. DBG_REQUIRE( CryptReleaseContext(
  838. hProv,
  839. 0
  840. ) );
  841. }
  843. IcpReleaseGlobalLock();
  844. return result;
  846. } // IcpGetContainerHelper