Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
 
 
 
 
 
 

585 lines
11 KiB

/*
* LCRpcInt.cpp
*
* Author: BreenH
*
* Internal functions to support the RPC interface.
*/
/*
* Includes
*/
#include "precomp.h"
#include "lscore.h"
#include "lscorep.h"
#include "lcrpcint.h"
#include "lcrpc.h"
#include "rpcwire.h"
/*
* Globals
*/
ULONG g_ulRpcContext = 0;
/*
* TERMSRV.EXE Function Prototypes
*/
extern "C" BOOL
IsCallerAdmin(
VOID
);
//
// Returns RPC_S_OK if the binding represents a local administrator on this box,
// AND if the binding is local.
//
RPC_STATUS
TermsrvSecurityCallback(void * Interface, void *Context)
{
BOOL fIsImpersonatingClient = FALSE;
RPC_STATUS rpcStatus;
unsigned int RpcClientLocalFlag;
rpcStatus = I_RpcBindingIsClientLocal(NULL, &RpcClientLocalFlag);
if (rpcStatus != RPC_S_OK)
goto error;
if (!RpcClientLocalFlag) {
rpcStatus = RPC_S_ACCESS_DENIED;
goto error;
}
rpcStatus = RpcImpersonateClient(NULL);
if (rpcStatus != RPC_S_OK)
goto error;
fIsImpersonatingClient = TRUE;
if (!IsCallerAdmin()) {
rpcStatus = RPC_S_ACCESS_DENIED;
goto error;
}
rpcStatus = RPC_S_OK;
error:
if (fIsImpersonatingClient) {
RpcRevertToSelf();
}
return rpcStatus;
}
/*
* Function Implementations
*/
RPC_STATUS
InitializeRpcInterface(
)
{
RPC_STATUS RpcStatus;
RpcStatus = RpcServerUseProtseqEp(
L"ncalrpc",
LC_RPC_MAX_THREADS,
LC_RPC_LRPC_EP,
NULL
);
if (RpcStatus == RPC_S_OK)
{
RpcStatus = RpcServerRegisterIfEx(
LCRPC_v1_0_s_ifspec,
NULL,
NULL,
0,
RPC_C_LISTEN_MAX_CALLS_DEFAULT,
TermsrvSecurityCallback
);
}
else
{
goto exit;
}
exit:
return(RpcStatus);
}
/*
* RPC Interface Functions
*/
extern "C" void
LCRPC_HANDLE_rundown(
LCRPC_HANDLE hServer
)
{
RpcLicensingCloseServer(&hServer);
}
BOOLEAN
RpcLicensingOpenServer(
handle_t hBinding,
HANDLE *phServer,
PLONG pStatus
)
{
BOOLEAN fReturn;
PULONG pulContext;
RPC_STATUS RpcStatus;
UNREFERENCED_PARAMETER(hBinding);
//
// These pointers are REF pointers; they cannot be NULL.
//
ASSERT(pStatus != NULL);
ASSERT(phServer != NULL);
//
// Impersonate client.
//
RpcStatus = RpcImpersonateClient(NULL);
if (RpcStatus != RPC_S_OK)
{
*pStatus = STATUS_CANNOT_IMPERSONATE;
return(FALSE);
}
//
// Check for administration privileges.
//
if (!IsCallerAdmin())
{
RpcStatus = RpcRevertToSelf();
*pStatus = STATUS_ACCESS_DENIED;
return(FALSE);
}
RpcStatus = RpcRevertToSelf();
if(RpcStatus != RPC_S_OK)
{
*pStatus = STATUS_CANNOT_IMPERSONATE;
return (FALSE);
}
pulContext = (PULONG)MIDL_user_allocate(sizeof(ULONG));
//
// Currently, RPC contexts are not necessary, but in case they are
// needed in the future, the RPC calls today must pass them. For
// now, just increment a ULONG for a context value.
//
if (pulContext != NULL)
{
*pulContext = g_ulRpcContext++;
*phServer = pulContext;
*pStatus = STATUS_SUCCESS;
fReturn = TRUE;
}
else
{
*pStatus = STATUS_INSUFF_SERVER_RESOURCES;
fReturn = FALSE;
}
return(fReturn);
}
VOID
RpcLicensingCloseServer(
HANDLE *phServer
)
{
ASSERT(phServer != NULL);
ASSERT(*phServer != NULL);
RPC_STATUS RpcStatus;
//
// Impersonate client.
//
RpcStatus = RpcImpersonateClient(NULL);
if (RpcStatus != RPC_S_OK)
{
return;
}
//
// Check for administration privileges.
//
if (!IsCallerAdmin())
{
RpcStatus = RpcRevertToSelf();
return;
}
RpcStatus = RpcRevertToSelf();
MIDL_user_free(*phServer);
*phServer = NULL;
}
BOOLEAN
RpcLicensingLoadPolicy(
HANDLE hServer,
ULONG ulPolicyId,
PLONG pStatus
)
{
UNREFERENCED_PARAMETER(hServer);
UNREFERENCED_PARAMETER(ulPolicyId);
//
// These pointers are REF pointers; they cannot be NULL.
//
ASSERT(pStatus != NULL);
*pStatus = STATUS_NOT_IMPLEMENTED;
return(FALSE);
}
BOOLEAN
RpcLicensingUnloadPolicy(
HANDLE hServer,
ULONG ulPolicyId,
PLONG pStatus
)
{
UNREFERENCED_PARAMETER(hServer);
UNREFERENCED_PARAMETER(ulPolicyId);
//
// These pointers are REF pointers; they cannot be NULL.
//
ASSERT(pStatus != NULL);
*pStatus = STATUS_NOT_IMPLEMENTED;
return(FALSE);
}
LONG
RpcLicensingSetPolicy(
HANDLE hServer,
ULONG ulPolicyId,
PLONG pNewPolicyStatus
)
{
NTSTATUS Status;
RPC_STATUS RpcStatus;
UNREFERENCED_PARAMETER(hServer);
//
// These pointers are REF pointers; they cannot be NULL.
//
ASSERT(pNewPolicyStatus != NULL);
//
// Impersonate client.
//
RpcStatus = RpcImpersonateClient(NULL);
if (RpcStatus != RPC_S_OK)
{
Status = STATUS_CANNOT_IMPERSONATE;
*pNewPolicyStatus = STATUS_SUCCESS;
return(Status);
}
//
// Check for administration privileges.
//
if (!IsCallerAdmin())
{
RpcStatus = RpcRevertToSelf();
Status = STATUS_ACCESS_DENIED;
*pNewPolicyStatus = STATUS_SUCCESS;
return(Status);
}
RpcStatus = RpcRevertToSelf();
if(RpcStatus != RPC_S_OK)
{
Status = STATUS_CANNOT_IMPERSONATE;
return (Status);
}
Status = LCSetPolicy(ulPolicyId, pNewPolicyStatus);
return(Status);
}
BOOLEAN
RpcLicensingGetAvailablePolicyIds(
HANDLE hServer,
PULONG *ppulPolicyIds,
PULONG pcPolicies,
PLONG pStatus
)
{
UNREFERENCED_PARAMETER(hServer);
RPC_STATUS RpcStatus;
//
// These pointers are REF pointers; they cannot be NULL.
//
ASSERT(ppulPolicyIds != NULL);
ASSERT(pcPolicies != NULL);
ASSERT(pStatus != NULL);
//
// Impersonate client.
//
RpcStatus = RpcImpersonateClient(NULL);
if (RpcStatus != RPC_S_OK)
{
*pStatus = STATUS_CANNOT_IMPERSONATE;
return(FALSE);
}
//
// Check for administration privileges.
//
if (!IsCallerAdmin())
{
RpcStatus = RpcRevertToSelf();
*pStatus = STATUS_ACCESS_DENIED;
return(FALSE);
}
RpcStatus = RpcRevertToSelf();
if(RpcStatus != RPC_S_OK)
{
*pStatus = STATUS_CANNOT_IMPERSONATE;
return (FALSE);
}
*pStatus = LCGetAvailablePolicyIds(ppulPolicyIds, pcPolicies);
return(*pStatus == STATUS_SUCCESS);
}
BOOLEAN
RpcLicensingGetPolicy(
HANDLE hServer,
PULONG pulPolicyId,
PLONG pStatus
)
{
UNREFERENCED_PARAMETER(hServer);
RPC_STATUS RpcStatus;
//
// These pointers are REF pointers; they cannot be NULL.
//
ASSERT(pulPolicyId != NULL);
ASSERT(pStatus != NULL);
//
// Impersonate client.
//
RpcStatus = RpcImpersonateClient(NULL);
if (RpcStatus != RPC_S_OK)
{
*pStatus = STATUS_CANNOT_IMPERSONATE;
return(FALSE);
}
//
// Check for administration privileges.
//
if (!IsCallerAdmin())
{
RpcStatus = RpcRevertToSelf();
*pStatus = STATUS_ACCESS_DENIED;
return(FALSE);
}
RpcStatus = RpcRevertToSelf();
if(RpcStatus != RPC_S_OK)
{
*pStatus = STATUS_CANNOT_IMPERSONATE;
return (FALSE);
}
*pulPolicyId = LCGetPolicy();
*pStatus = STATUS_SUCCESS;
return(TRUE);
}
BOOLEAN
RpcLicensingGetPolicyInformation(
HANDLE hServer,
ULONG ulPolicyId,
PULONG pulVersion,
PCHAR *ppWire,
PULONG pcbWire,
PLONG pStatus
)
{
BOOLEAN fRet;
LPLCPOLICYINFOGENERIC lpPolicyInfo;
NTSTATUS Status;
RPC_STATUS RpcStatus;
UNREFERENCED_PARAMETER(hServer);
//
// These pointers are REF pointers; they cannot be NULL.
//
ASSERT(pulVersion != NULL);
ASSERT(ppWire != NULL);
ASSERT(pcbWire != NULL);
ASSERT(pStatus != NULL);
fRet = FALSE;
*pulVersion = min(*pulVersion, LCPOLICYINFOTYPE_CURRENT);
*ppWire = NULL;
//
// Impersonate client.
//
RpcStatus = RpcImpersonateClient(NULL);
if (RpcStatus != RPC_S_OK)
{
*pStatus = STATUS_CANNOT_IMPERSONATE;
return(FALSE);
}
//
// Check for administration privileges.
//
if (!IsCallerAdmin())
{
RpcStatus = RpcRevertToSelf();
*pStatus = STATUS_ACCESS_DENIED;
return(FALSE);
}
RpcStatus = RpcRevertToSelf();
if(RpcStatus != RPC_S_OK)
{
*pStatus = STATUS_CANNOT_IMPERSONATE;
return(FALSE);
}
Status = AllocatePolicyInformation(&lpPolicyInfo, *pulVersion);
if (Status == STATUS_SUCCESS)
{
Status = LCGetPolicyInformation(ulPolicyId, lpPolicyInfo);
if (Status == STATUS_SUCCESS)
{
*pcbWire = CopyPolicyInformationToWire(
(LPLCPOLICYINFOGENERIC*)ppWire,
lpPolicyInfo
);
if (*pcbWire != 0)
{
fRet = TRUE;
Status = STATUS_SUCCESS;
}
else
{
Status = STATUS_INSUFF_SERVER_RESOURCES;
}
FreePolicyInformation(&lpPolicyInfo);
}
else if (Status == STATUS_NO_MEMORY)
{
Status = STATUS_INSUFF_SERVER_RESOURCES;
}
}
*pStatus = Status;
return(fRet);
}
BOOLEAN
RpcLicensingDeactivateCurrentPolicy(
HANDLE hServer,
PLONG pStatus
)
{
RPC_STATUS RpcStatus;
UNREFERENCED_PARAMETER(hServer);
//
// These pointers are REF pointers; they cannot be NULL.
//
ASSERT(pStatus != NULL);
//
// Impersonate client.
//
RpcStatus = RpcImpersonateClient(NULL);
if (RpcStatus != RPC_S_OK)
{
*pStatus = STATUS_CANNOT_IMPERSONATE;
return(FALSE);
}
//
// Check for administration privileges.
//
if (!IsCallerAdmin())
{
RpcStatus = RpcRevertToSelf();
*pStatus = STATUS_ACCESS_DENIED;
return(FALSE);
}
RpcStatus = RpcRevertToSelf();
if (RpcStatus != RPC_S_OK)
{
*pStatus = STATUS_CANNOT_IMPERSONATE;
return (FALSE);
}
*pStatus = LCDeactivateCurrentPolicy();
return(*pStatus == STATUS_SUCCESS);
}