archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
3 Commits
1 Branch
0 Tags
4.9 GiB
Tree: 827363a95b
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '827363a95b'
${ noResults }
windows-server-2003/net/http/api/misc.c

426 lines
9.6 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. /*++
  3. Copyright (c) 1998-2002 Microsoft Corporation
  5. Module Name:
  7. Misc.c
  9. Abstract:
  11. User-mode interface to HTTP.SYS: Miscellaneous functions.
  13. Author:
  15. Keith Moore (keithmo) 15-Dec-1998
  17. Revision History:
  19. --*/
  22. #include "precomp.h"
  25. //
  26. // Private macros.
  27. //
  30. //
  31. // Private prototypes.
  32. //
  35. //
  36. // Public functions.
  37. //
  40. /***************************************************************************++
  42. Routine Description:
  44. Wait for a demand start notification.
  46. Arguments:
  48. AppPoolHandle - Supplies a handle to a application pool.
  50. pBuffer - Unused, must be NULL.
  52. BufferLength - Unused, must be zero.
  54. pBytesReceived - Unused, must be NULL.
  56. pOverlapped - Supplies an OVERLAPPED structure.
  58. Return Value:
  60. ULONG - Completion status.
  62. --***************************************************************************/
  63. ULONG
  64. WINAPI
  65. HttpWaitForDemandStart(
  66. IN HANDLE AppPoolHandle,
  67. IN OUT PVOID pBuffer OPTIONAL,
  68. IN ULONG BufferLength OPTIONAL,
  69. IN PULONG pBytesReceived OPTIONAL,
  70. IN LPOVERLAPPED pOverlapped OPTIONAL
  71. )
  72. {
  73. // ASSERT(HttpIsInitialized(HTTP_INITIALIZE_SERVER));
  75. //
  76. // Make the request.
  77. //
  79. return HttpApiDeviceControl(
  80. AppPoolHandle, // FileHandle
  81. pOverlapped, // pOverlapped
  82. IOCTL_HTTP_WAIT_FOR_DEMAND_START, // IoControlCode
  83. pBuffer, // pInputBuffer
  84. BufferLength, // InputBufferLength
  85. pBuffer, // pOutputBuffer
  86. BufferLength, // OutputBufferLength
  87. pBytesReceived // pBytesTransferred
  88. );
  90. } // HttpWaitForDemandStart
  93. //
  94. // Private functions.
  95. //
  97. /***************************************************************************++
  99. Routine Description:
  101. Given a set of Security Attributes, create a security descriptor. If
  102. no Security Attributes given, create the best guess at a "default"
  103. Security Descriptor.
  105. Arguments:
  107. pSA - Set of security attributes.
  109. ppSD - Security Descriptor created. Caller must free using
  110. FreeSecurityDescriptor.
  112. --***************************************************************************/
  113. ULONG
  114. CreateSecurityDescriptor(
  115. OUT PSECURITY_DESCRIPTOR * ppSD
  116. )
  117. {
  118. ULONG result;
  119. ULONG daclSize;
  120. PSECURITY_DESCRIPTOR pSecurityDescriptor = NULL;
  121. PACL pDacl = NULL;
  122. PSID pMySid;
  123. BOOL success;
  124. HANDLE hProc;
  125. HANDLE hToken = NULL;
  126. TOKEN_USER * ptuInfo;
  127. TOKEN_DEFAULT_DACL * ptddInfo;
  128. char * rgcBuffer = NULL;
  129. DWORD cbLen = 0;
  132. //
  133. // Build default security descriptor from Process Token.
  134. //
  136. hProc = GetCurrentProcess(); // Gets pseudo-handle; no need to call CloseHandle
  138. success = OpenProcessToken(hProc, TOKEN_READ, &hToken);
  139. if (!success)
  140. {
  141. result = GetLastError();
  142. goto cleanup;
  143. }
  145. //
  146. // See if there's a default DACL we can just copy
  147. //
  148. success = GetTokenInformation(
  149. hToken,
  150. TokenDefaultDacl,
  151. NULL,
  152. 0,
  153. &cbLen
  154. );
  156. // We know this will fail (we didn't provide a buffer)
  157. ASSERT(!success);
  159. result = GetLastError();
  160. if (ERROR_INSUFFICIENT_BUFFER != result)
  161. goto cleanup;
  163. if ( sizeof(TOKEN_DEFAULT_DACL) == cbLen )
  164. {
  165. //
  166. // No DACL present on token; must create DACL based on TokenUser
  167. //
  168. success = GetTokenInformation(
  169. hToken,
  170. TokenUser,
  171. NULL,
  172. 0,
  173. &cbLen
  174. );
  176. // We know this will fail (we didn't provide a buffer)
  177. ASSERT(!success);
  179. result = GetLastError();
  180. if (ERROR_INSUFFICIENT_BUFFER != result)
  181. goto cleanup;
  183. if ( 0 == cbLen )
  184. {
  185. goto cleanup;
  186. }
  188. rgcBuffer = ALLOC_MEM( cbLen );
  190. if ( rgcBuffer == NULL ) {
  191. result = ERROR_NOT_ENOUGH_MEMORY;
  192. goto cleanup;
  193. }
  195. success = GetTokenInformation(
  196. hToken,
  197. TokenUser,
  198. rgcBuffer,
  199. cbLen,
  200. &cbLen
  201. );
  203. if (!success)
  204. {
  205. result = GetLastError();
  206. goto cleanup;
  207. }
  209. ptuInfo = (TOKEN_USER *) rgcBuffer;
  210. pMySid = ptuInfo->User.Sid;
  212. //
  213. // Verify that we've got a good SID
  214. //
  215. if( !IsValidSid(pMySid) )
  216. {
  217. HttpTrace( "Bogus SID\n" );
  218. result = ERROR_INVALID_SID;
  219. goto cleanup;
  220. }
  222. //
  223. // Alloc & init dacl entries
  224. //
  226. daclSize = sizeof(ACL) +
  227. sizeof(ACCESS_ALLOWED_ACE) +
  228. GetLengthSid(pMySid);
  230. pDacl = ALLOC_MEM(daclSize);
  232. if ( pDacl == NULL ) {
  233. result = ERROR_NOT_ENOUGH_MEMORY;
  234. goto cleanup;
  235. }
  237. success = InitializeAcl(pDacl, daclSize, ACL_REVISION);
  239. if (!success)
  240. {
  241. result = GetLastError();
  242. goto cleanup;
  243. }
  245. //
  246. // And add MySid ACE to DACL
  247. // NOTE: we need FILE_ALL_ACCESS because adding sub-items under
  248. // the current item requires write access, and removing requires
  249. // delete access. This is enforced inside HTTP.SYS
  250. //
  252. success = AddAccessAllowedAce(
  253. pDacl,
  254. ACL_REVISION,
  255. FILE_ALL_ACCESS,
  256. pMySid
  257. );
  259. if (!success)
  260. {
  261. result = GetLastError();
  262. goto cleanup;
  263. }
  265. } else
  266. {
  267. //
  268. // DACL present; Alloc space for DACL & fetch
  269. //
  271. ASSERT( 0 != cbLen );
  273. rgcBuffer = ALLOC_MEM( cbLen );
  275. if ( !rgcBuffer )
  276. {
  277. result = ERROR_NOT_ENOUGH_MEMORY;
  278. goto cleanup;
  279. }
  281. success = GetTokenInformation(
  282. hToken,
  283. TokenDefaultDacl,
  284. rgcBuffer,
  285. cbLen,
  286. &cbLen
  287. );
  289. if (!success)
  290. {
  291. result = GetLastError();
  292. goto cleanup;
  293. }
  295. ptddInfo = (TOKEN_DEFAULT_DACL *) rgcBuffer;
  296. daclSize = cbLen - sizeof(TOKEN_DEFAULT_DACL);
  298. pDacl = ALLOC_MEM( daclSize );
  299. if ( !pDacl )
  300. {
  301. result = ERROR_NOT_ENOUGH_MEMORY;
  302. goto cleanup;
  303. }
  305. CopyMemory( pDacl, ptddInfo->DefaultDacl, daclSize );
  307. }
  309. ASSERT( NULL != pDacl );
  311. //
  312. // allocate the security descriptor
  313. //
  314. pSecurityDescriptor = ALLOC_MEM( sizeof(SECURITY_DESCRIPTOR) );
  316. if (pSecurityDescriptor == NULL)
  317. {
  318. result = ERROR_NOT_ENOUGH_MEMORY;
  319. goto cleanup;
  320. }
  322. success = InitializeSecurityDescriptor(
  323. pSecurityDescriptor,
  324. SECURITY_DESCRIPTOR_REVISION
  325. );
  327. if (!success)
  328. {
  329. result = GetLastError();
  330. goto cleanup;
  331. }
  333. //
  334. // Set the DACL into the security descriptor
  335. //
  337. success = SetSecurityDescriptorDacl(
  338. pSecurityDescriptor,
  339. TRUE, // DaclPresent
  340. pDacl, // pDacl
  341. FALSE // DaclDefaulted
  342. );
  344. if (!success)
  345. {
  346. result = GetLastError();
  347. HttpTrace1( "SetSecurityDescriptorDacl failed. result = %d\n", result );
  349. goto cleanup;
  350. }
  352. *ppSD = pSecurityDescriptor;
  354. result = NO_ERROR;
  356. cleanup:
  358. if (result != NO_ERROR)
  359. {
  360. if (pSecurityDescriptor)
  361. {
  362. FREE_MEM(pSecurityDescriptor);
  363. }
  365. if (pDacl)
  366. {
  367. FREE_MEM(pDacl);
  368. }
  369. }
  371. if ( hToken )
  372. {
  373. CloseHandle( hToken );
  374. }
  376. if ( rgcBuffer )
  377. {
  378. FREE_MEM( rgcBuffer );
  379. }
  381. return result;
  383. } // CreateSecurityDescriptor
  386. /***************************************************************************++
  388. Routine Description:
  390. Clean up a Security Descriptor created by InitSecurityDescriptor.
  392. Arguments:
  394. pSD - Security Descriptor to clean up.
  396. --***************************************************************************/
  397. VOID
  398. FreeSecurityDescriptor(
  399. IN PSECURITY_DESCRIPTOR pSD
  400. )
  401. {
  402. BOOL success;
  403. BOOL DaclPresent;
  404. PACL pDacl;
  405. BOOL DaclDefaulted;
  407. if (pSD)
  408. {
  409. success = GetSecurityDescriptorDacl(
  410. pSD,
  411. &DaclPresent,
  412. &pDacl,
  413. &DaclDefaulted
  414. );
  416. if (success && DaclPresent && !DaclDefaulted) {
  417. FREE_MEM(pDacl);
  418. }
  420. FREE_MEM(pSD);
  421. }
  423. } // FreeSecurityDescriptor