archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
3 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 827363a95b
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '827363a95b'
${ noResults }
windows-server-2003/net/http/sys/create.c

584 lines
17 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. /*++
  3. Copyright (c) 1998-2002 Microsoft Corporation
  5. Module Name:
  7. create.c
  9. Abstract:
  11. This module contains code for opening a handle to UL.
  13. Author:
  15. Keith Moore (keithmo) 10-Jun-1998
  17. Revision History:
  19. --*/
  22. #include "precomp.h"
  25. #ifdef ALLOC_PRAGMA
  26. #pragma alloc_text( PAGE, UlCreate )
  27. #endif // ALLOC_PRAGMA
  29. #define IS_NAMED_FILE_OBJECT(pFileObject) \
  30. ((pFileObject)->FileName.Length != 0)
  33. //
  34. // Public functions.
  35. //
  37. /***************************************************************************++
  39. Routine Description:
  41. This is the routine that handles Create IRPs in Http.sys. Create IRPs are
  42. issued when the file object is created.
  44. Control Channel (\Device\Http\Control)
  45. - unnamed only
  46. - open only, create to fail.
  47. - Open will be allowed by any user.
  48. - EA must have proper major/minorversion, everything else must be NULL/0
  50. AppPool (\Device\Http\AppPool)
  51. - can be unnamed or named
  52. - unnamed --> anyone can create, no one can open (server API customers)
  53. - named --> admin only can create, anyone with correct SD can open
  54. (IIS WAS + Worker process)
  55. - EA must have proper major/minorversion, everything else must be NULL/0
  57. Filter (\Device\Http\Filter)
  58. - only named and MUST be either SSLFilterChannel or SSLClientFilterChannel.
  59. - SSLFilterChannel can be created only by admin/local system, opened with
  60. correct SD.
  61. - SSLClientFilterChannel can be created by anyone, opened by anyone
  62. with correct SD, but only if EnableHttpClient is set
  63. - EA must have proper major/minorversion, everything else must be NULL/0
  65. Server (\Device\Http\Server\)
  66. - only unnamed
  67. - Create only, open to fail.
  68. - can be done by anyone.
  69. - Should be allowed only if EnableHttpClient is present.
  70. - EA must have major/minorversion, server & TRANSPORT_ADDRESS structure.
  71. Proxy is optional.
  73. Arguments:
  75. pDeviceObject - Supplies a pointer to the target device object.
  77. pIrp - Supplies a pointer to IO request packet.
  80. Return Value:
  82. NTSTATUS - Completion status.
  84. --***************************************************************************/
  85. NTSTATUS
  86. UlCreate(
  87. IN PDEVICE_OBJECT pDeviceObject,
  88. IN PIRP pIrp
  89. )
  90. {
  91. NTSTATUS status;
  92. PIO_STACK_LOCATION pIrpSp;
  93. PFILE_OBJECT pFileObject = NULL;
  94. PFILE_FULL_EA_INFORMATION pEaBuffer;
  95. PHTTP_OPEN_PACKET pOpenPacket;
  96. UCHAR createDisposition;
  97. PWSTR pName = NULL;
  98. USHORT nameLength;
  99. PIO_SECURITY_CONTEXT pSecurityContext;
  100. STRING CompareVersionName;
  101. STRING EaName;
  102. PWSTR pSafeName = NULL;
  104. //
  105. // Sanity check.
  106. //
  108. PAGED_CODE();
  109. UL_ENTER_DRIVER( "UlCreate", pIrp );
  111. #if defined(_WIN64)
  112. //
  113. // We do not support 32-bit processes on 64-bit platforms.
  114. //
  115. if (IoIs32bitProcess(pIrp))
  116. {
  117. status = STATUS_NOT_SUPPORTED;
  118. goto complete;
  119. }
  120. #endif
  122. //
  123. // Find and validate the open packet.
  124. //
  125. pEaBuffer = (PFILE_FULL_EA_INFORMATION)(pIrp->AssociatedIrp.SystemBuffer);
  127. if (pEaBuffer == NULL)
  128. {
  129. status = STATUS_INVALID_PARAMETER;
  130. goto complete;
  131. }
  133. RtlInitString(&CompareVersionName, HTTP_OPEN_PACKET_NAME);
  135. EaName.MaximumLength = pEaBuffer->EaNameLength + 1;
  136. EaName.Length = pEaBuffer->EaNameLength;
  137. EaName.Buffer = pEaBuffer->EaName;
  139. if ( RtlEqualString(&CompareVersionName, &EaName, FALSE) )
  140. {
  141. //
  142. // Found the version information in the EA
  143. //
  145. if( pEaBuffer->EaValueLength != sizeof(*pOpenPacket) )
  146. {
  147. status = STATUS_INVALID_PARAMETER;
  148. goto complete;
  150. }
  152. if(pEaBuffer->NextEntryOffset != 0)
  153. {
  154. status = STATUS_INVALID_PARAMETER;
  155. goto complete;
  156. }
  158. pOpenPacket = (PHTTP_OPEN_PACKET)
  159. (pEaBuffer->EaName + pEaBuffer->EaNameLength + 1 );
  161. ASSERT(pOpenPacket == ALIGN_UP_POINTER(pOpenPacket, PVOID));
  163. //
  164. // For now, we'll fail if the incoming version doesn't EXACTLY match
  165. // the expected version. In future, we may need to be a bit more
  166. // flexible to allow down-level clients.
  167. //
  169. if (pOpenPacket->MajorVersion != HTTP_INTERFACE_VERSION_MAJOR ||
  170. pOpenPacket->MinorVersion != HTTP_INTERFACE_VERSION_MINOR)
  171. {
  172. status = STATUS_REVISION_MISMATCH;
  173. goto complete;
  174. }
  176. if(pDeviceObject != g_pUcServerDeviceObject &&
  177. (pOpenPacket->ProxyNameLength != 0 ||
  178. pOpenPacket->ServerNameLength != 0 ||
  179. pOpenPacket->TransportAddressLength != 0 ||
  180. pOpenPacket->pProxyName != NULL ||
  181. pOpenPacket->pServerName != NULL ||
  182. pOpenPacket->pTransportAddress != NULL))
  183. {
  184. status = STATUS_INVALID_PARAMETER;
  185. goto complete;
  186. }
  187. }
  188. else
  189. {
  190. status = STATUS_INVALID_PARAMETER;
  191. goto complete;
  192. }
  194. //
  195. // Snag the current IRP stack pointer, then extract the creation
  196. // disposition. IO stores this as the high byte of the Options field.
  197. // Also snag the file object; we'll need it often.
  198. //
  200. pIrpSp = IoGetCurrentIrpStackLocation( pIrp );
  202. createDisposition = (UCHAR)( pIrpSp->Parameters.Create.Options >> 24 );
  203. pFileObject = pIrpSp->FileObject;
  204. pSecurityContext = pIrpSp->Parameters.Create.SecurityContext;
  205. ASSERT( pSecurityContext != NULL );
  207. //
  208. // Determine if this is a request to open a control channel or
  209. // open/create an app pool.
  210. //
  212. if (pDeviceObject == g_pUlControlDeviceObject)
  213. {
  214. //
  215. // It's a control channel.
  216. //
  217. // Validate the creation disposition. We allow open only.
  218. //
  220. if (createDisposition != FILE_OPEN)
  221. {
  222. status = STATUS_INVALID_PARAMETER;
  223. goto complete;
  224. }
  226. // These things can't be named
  228. if (IS_NAMED_FILE_OBJECT(pFileObject))
  229. {
  230. status = STATUS_INVALID_PARAMETER;
  231. goto complete;
  232. }
  234. ASSERT(pFileObject->FileName.Buffer == NULL);
  236. UlTrace(OPEN_CLOSE, (
  237. "UlCreate: opening a control channel: %p\n",
  238. pFileObject
  239. ));
  241. //
  242. // Open the control channel.
  243. //
  245. status = UlCreateControlChannel(GET_PP_CONTROL_CHANNEL(pFileObject));
  247. if (NT_SUCCESS(status))
  248. {
  249. ASSERT( GET_CONTROL_CHANNEL(pFileObject) != NULL );
  250. MARK_VALID_CONTROL_CHANNEL( pFileObject );
  251. }
  252. }
  253. else if (pDeviceObject == g_pUlFilterDeviceObject)
  254. {
  256. //
  257. // It's a filter channel - It has to be named and has to be either
  258. // a client or a server filter channel.
  259. //
  261. if (!IS_NAMED_FILE_OBJECT(pFileObject))
  262. {
  263. status = STATUS_INVALID_PARAMETER;
  264. goto complete;
  265. }
  267. ASSERT(L'\\' == pFileObject->FileName.Buffer[0]);
  268. pName = pFileObject->FileName.Buffer + 1;
  269. nameLength = pFileObject->FileName.Length - sizeof(WCHAR);
  271. pSafeName = UL_ALLOCATE_POOL(
  272. PagedPool,
  273. nameLength + sizeof(WCHAR),
  274. UL_STRING_LOG_BUFFER_POOL_TAG
  275. );
  277. if(pSafeName == NULL)
  278. {
  279. status = STATUS_INSUFFICIENT_RESOURCES;
  280. goto complete;
  281. }
  283. RtlCopyMemory(pSafeName, pName, nameLength);
  284. pSafeName[nameLength/sizeof(WCHAR)] = L'\0';
  285. pName = pSafeName;
  287. if(IsServerFilterChannel(pName, nameLength))
  288. {
  289. // Yes - it's a filter channel. We'll allow Create or Open but
  290. // both have to be admin only.
  292. //
  293. // If it's create, we'll do an access check
  294. //
  296. if(createDisposition == FILE_CREATE)
  297. {
  298. status = UlAccessCheck(
  299. g_pAdminAllSystemAll,
  300. pSecurityContext->AccessState,
  301. pSecurityContext->DesiredAccess,
  302. pIrp->RequestorMode,
  303. pName
  304. );
  306. if(!NT_SUCCESS(status))
  307. {
  308. goto complete;
  309. }
  310. }
  311. else if(createDisposition == FILE_OPEN)
  312. {
  313. // We are opening an existing channel - the access check
  314. // will be done inside UlAttachFilterProcess
  315. }
  316. else
  317. {
  318. // Neither FILE_CREATE nor FILE_OPEN. Bail!
  319. status = STATUS_INVALID_PARAMETER;
  320. goto complete;
  322. }
  324. UlTrace(OPEN_CLOSE, (
  325. "UlCreate: opening a server filter channel: %p, %.*ls\n",
  326. pFileObject, nameLength / sizeof(WCHAR), pName
  327. ));
  329. }
  330. else if(IsClientFilterChannel(pName, nameLength))
  331. {
  332. // It's a client - Only Create. Also, make sure that the client
  333. // code is really enabled.
  335. if (createDisposition != FILE_CREATE || !g_HttpClientEnabled)
  336. {
  337. status = STATUS_INVALID_PARAMETER;
  338. goto complete;
  339. }
  341. UlTrace(OPEN_CLOSE, (
  342. "UlCreate: opening a client filter channel: %p, %.*ls\n",
  343. pFileObject, nameLength / sizeof(WCHAR), pName
  344. ));
  346. //
  347. // No access checks for the client!
  348. //
  349. }
  350. else
  351. {
  352. //
  353. // If it is neither server nor client filter channel, fail the
  354. // call.
  355. //
  357. status = STATUS_INVALID_PARAMETER;
  358. goto complete;
  359. }
  361. status = UlAttachFilterProcess(
  362. pName,
  363. nameLength,
  364. (BOOLEAN)(createDisposition == FILE_CREATE),
  365. pSecurityContext->AccessState,
  366. pSecurityContext->DesiredAccess,
  367. pIrp->RequestorMode,
  368. GET_PP_FILTER_PROCESS(pFileObject)
  369. );
  371. if (NT_SUCCESS(status))
  372. {
  373. ASSERT( GET_FILTER_PROCESS(pFileObject) != NULL );
  374. MARK_VALID_FILTER_CHANNEL( pFileObject );
  375. }
  377. }
  378. else if(pDeviceObject == g_pUlAppPoolDeviceObject )
  379. {
  380. //
  381. // It's an app pool.
  382. //
  384. //
  385. // Bind to the specified app pool.
  386. //
  388. if (!IS_NAMED_FILE_OBJECT(pFileObject))
  389. {
  390. ASSERT(pFileObject->FileName.Buffer == NULL);
  392. pName = NULL;
  393. nameLength = 0;
  395. // Validate the creation disposition. We allow create only
  396. // for unnamed app-pools.
  398. if(createDisposition != FILE_CREATE)
  399. {
  400. status = STATUS_INVALID_PARAMETER;
  401. goto complete;
  402. }
  404. UlTrace(OPEN_CLOSE, (
  405. "UlCreate: opening an unnamed AppPool: %p\n",
  406. pFileObject
  407. ));
  408. }
  409. else
  410. {
  411. if (pFileObject->FileName.Length > UL_MAX_APP_POOL_NAME_SIZE)
  412. {
  413. status = STATUS_OBJECT_NAME_INVALID;
  414. goto complete;
  415. }
  417. // Skip the preceding '\' in the FileName added by iomgr.
  418. //
  420. ASSERT(L'\\' == pFileObject->FileName.Buffer[0]);
  421. pName = pFileObject->FileName.Buffer + 1;
  422. nameLength = pFileObject->FileName.Length - sizeof(WCHAR);
  424. pSafeName = UL_ALLOCATE_POOL(
  425. PagedPool,
  426. nameLength + sizeof(WCHAR),
  427. UL_STRING_LOG_BUFFER_POOL_TAG
  428. );
  430. if(pSafeName == NULL)
  431. {
  432. status = STATUS_INSUFFICIENT_RESOURCES;
  433. goto complete;
  434. }
  436. RtlCopyMemory(pSafeName, pName, nameLength);
  437. pSafeName[nameLength/sizeof(WCHAR)] = L'\0';
  438. pName = pSafeName;
  440. if(createDisposition == FILE_CREATE)
  441. {
  442. //
  443. // Creation of named app-pools must be only for admins.
  444. //
  445. // The filter object is has FileAll for Admin/LocalSystem only
  446. // so, we'll piggy back on that security descriptor.
  447. //
  449. status = UlAccessCheck(
  450. g_pAdminAllSystemAll,
  451. pSecurityContext->AccessState,
  452. pSecurityContext->DesiredAccess,
  453. pIrp->RequestorMode,
  454. pName
  455. );
  457. if(!NT_SUCCESS(status))
  458. {
  459. goto complete;
  460. }
  461. }
  462. else if(createDisposition == FILE_OPEN)
  463. {
  464. // UlAttachProcessToAppPool will do the appropriate checks
  465. // to ensure that the security descriptors match.
  466. }
  467. else
  468. {
  469. // Neither FILE_CREATE nor FILE_OPEN.
  471. status = STATUS_INVALID_PARAMETER;
  472. goto complete;
  473. }
  475. UlTrace(OPEN_CLOSE, (
  476. "UlCreate: opening an AppPool: %p, %.*ls\n",
  477. pFileObject, nameLength / sizeof(WCHAR), pName
  478. ));
  479. }
  481. status = UlAttachProcessToAppPool(
  482. pName,
  483. nameLength,
  484. (BOOLEAN)(createDisposition == FILE_CREATE),
  485. pSecurityContext->AccessState,
  486. pSecurityContext->DesiredAccess,
  487. pIrp->RequestorMode,
  488. GET_PP_APP_POOL_PROCESS(pFileObject)
  489. );
  491. if (NT_SUCCESS(status))
  492. {
  493. ASSERT( GET_APP_POOL_PROCESS(pFileObject) != NULL );
  494. MARK_VALID_APP_POOL( pFileObject );
  495. }
  496. }
  497. else
  498. {
  499. ASSERT(pDeviceObject == g_pUcServerDeviceObject );
  500. ASSERT(g_HttpClientEnabled);
  502. //
  503. // It is mandatory for the application to pass in a valid version
  504. // and a valid URI. If either of this is missing, we bail.
  505. //
  506. //
  508. if(pOpenPacket->ServerNameLength == 0 ||
  509. pOpenPacket->pServerName == NULL ||
  510. pOpenPacket->pTransportAddress == NULL ||
  511. pOpenPacket->TransportAddressLength == 0 ||
  512. IS_NAMED_FILE_OBJECT(pFileObject)
  513. )
  514. {
  515. status = STATUS_INVALID_PARAMETER;
  516. goto complete;
  517. }
  519. if(createDisposition != FILE_CREATE)
  520. {
  521. status = STATUS_INVALID_PARAMETER;
  522. goto complete;
  523. }
  525. UlTrace(OPEN_CLOSE, (
  526. "UlCreate: opening a ServInfo: %p\n",
  527. pFileObject
  528. ));
  530. //
  531. // Create our context here and store it in
  532. // pIrpSp->FileObject->FsContext
  533. //
  535. status = UcCreateServerInformation(
  536. (PUC_PROCESS_SERVER_INFORMATION *)
  537. &pFileObject->FsContext,
  538. pOpenPacket->pServerName,
  539. pOpenPacket->ServerNameLength,
  540. pOpenPacket->pProxyName,
  541. pOpenPacket->ProxyNameLength,
  542. pOpenPacket->pTransportAddress,
  543. pOpenPacket->TransportAddressLength,
  544. pIrp->RequestorMode
  545. );
  547. //
  548. // UC_BUGBUG (INVESTIGATE)
  549. //
  550. // Setting this field to non-NULL value enable fast IO code path
  551. // for reads and writes.
  552. //
  553. // pIrpSp->FileObject->PrivateCacheMap = (PVOID)-1;
  555. MARK_VALID_SERVER( pFileObject );
  556. }
  558. //
  559. // Complete the request.
  560. //
  562. complete:
  564. if(pSafeName)
  565. {
  566. ASSERT(pSafeName == pName);
  567. UL_FREE_POOL(pSafeName, UL_STRING_LOG_BUFFER_POOL_TAG);
  568. }
  570. UlTrace(OPEN_CLOSE, (
  571. "UlCreate: %s file object = %p, %s\n",
  572. (NT_SUCCESS(status) ? "opened" : "did not open"),
  573. pFileObject,
  574. HttpStatusToString(status)
  575. ));
  577. pIrp->IoStatus.Status = status;
  579. UlCompleteRequest( pIrp, IO_NO_INCREMENT );
  581. UL_LEAVE_DRIVER( "UlCreate" );
  582. RETURN(status);
  584. } // UlCreate