archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
7 Commits
1 Branch
0 Tags
2.0 GiB
Tree: 1b390dddff
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '1b390dddff'
${ noResults }
windows-xp/Source/XPSP1/NT/ds/security/services/ca/certsrv/certsrvd.cpp

324 lines
7.3 KiB
Raw Normal View History

Add source files
4 years ago
  1. //+--------------------------------------------------------------------------
  2. //
  3. // Microsoft Windows
  4. // Copyright (C) Microsoft Corporation, 1996 - 1999
  5. //
  6. // File: certsrvd.cpp
  7. //
  8. // Contents: Implementation of DCOM object for RPC services
  9. //
  10. // History: July-97 xtan created
  11. //
  12. //---------------------------------------------------------------------------
  14. #include <pch.cpp>
  16. #pragma hdrstop
  18. #define SECURITY_WIN32
  19. #include <security.h>
  21. #include <lmcons.h>
  22. #include <accctrl.h>
  24. #include "certsrvd.h"
  25. #include "admin.h"
  26. #include "request.h"
  27. #include "certacl.h"
  29. //temporary
  30. #include <msaudite.h>
  33. using namespace CertSrv;
  35. // Global Access List
  36. CCertificateAuthoritySD g_CASD;
  37. AUTHZ_RESOURCE_MANAGER_HANDLE g_AuthzCertSrvRM;
  38. DWORD g_dwAuditFilter;
  39. COfficerRightsSD g_OfficerRightsSD;
  40. CConfigStorage g_ConfigStorage;
  42. GENERIC_MAPPING g_CertGenericMapping = {
  43. READ_CONTROL | ACTRL_DS_READ_PROP,
  44. WRITE_DAC | WRITE_OWNER | ACTRL_DS_WRITE_PROP,
  45. 0,
  46. ACTRL_DS_READ_PROP |
  47. ACTRL_DS_WRITE_PROP |
  48. READ_CONTROL |
  49. WRITE_DAC |
  50. WRITE_OWNER
  51. };
  54. // GetClientUserName() impersonates the client
  56. HRESULT
  57. GetClientUserName(
  58. IN handle_t hRpc,
  59. OPTIONAL OUT WCHAR **ppwszUserSamName,
  60. OPTIONAL OUT WCHAR **ppwszUserDN)
  61. {
  62. HRESULT hr;
  63. IServerSecurity *pISS = NULL;
  64. bool fImpersonating = false;
  65. WCHAR *pwszUserSamName = NULL;
  67. if (NULL != ppwszUserSamName)
  68. {
  69. *ppwszUserSamName = NULL;
  70. }
  71. if (NULL != ppwszUserDN)
  72. {
  73. *ppwszUserDN = NULL;
  74. }
  75. if (NULL == hRpc)
  76. {
  77. // dcom impersonate
  78. // get client info and impersonate client
  80. hr = CoGetCallContext(IID_IServerSecurity, (void**)&pISS);
  81. _JumpIfError(hr, error, "CoGetCallContext");
  83. hr = pISS->ImpersonateClient();
  84. _JumpIfError(hr, error, "ImpersonateClient");
  85. }
  86. else
  87. {
  88. // rpc impersonate
  90. hr = RpcImpersonateClient((RPC_BINDING_HANDLE) hRpc);
  91. _JumpIfError(hr, error, "RpcImpersonateClient");
  92. }
  93. fImpersonating = true;
  95. if (NULL != ppwszUserSamName)
  96. {
  97. hr = myGetUserNameEx(NameSamCompatible, &pwszUserSamName);
  98. _JumpIfError(hr, error, "myGetUserNameEx");
  99. }
  100. if (NULL != ppwszUserDN)
  101. {
  102. hr = myGetUserNameEx(NameFullyQualifiedDN, ppwszUserDN);
  103. _JumpIfError(hr, error, "myGetUserNameEx");
  104. }
  105. if (NULL != ppwszUserSamName)
  106. {
  107. *ppwszUserSamName = pwszUserSamName;
  108. pwszUserSamName = NULL;
  109. }
  110. hr = S_OK;
  112. error:
  113. if (fImpersonating)
  114. {
  115. if (NULL != hRpc)
  116. {
  117. RpcRevertToSelf();
  118. }
  119. else // dcom
  120. {
  121. pISS->RevertToSelf();
  122. }
  123. }
  124. if (NULL != pISS)
  125. {
  126. pISS->Release();
  127. }
  128. if (NULL != pwszUserSamName)
  129. {
  130. LocalFree(pwszUserSamName);
  131. }
  132. return(hr);
  133. }
  135. STDMETHODIMP
  136. CheckCertSrvAccess(
  137. OPTIONAL IN LPCWSTR pwszAuthority,
  138. IN handle_t hRpc,
  139. IN ACCESS_MASK Mask,
  140. OUT BOOL *pfAccessAllowed,
  141. OPTIONAL OUT HANDLE *phToken)
  142. {
  143. HRESULT hr = S_OK;
  144. DWORD dwErr = ERROR_SUCCESS;
  145. HANDLE hClientToken = NULL;
  146. HANDLE hThread = NULL;
  147. IServerSecurity *pISS = NULL;
  148. PRIVILEGE_SET ps;
  149. DWORD dwPSSize = sizeof(PRIVILEGE_SET);
  150. DWORD grantAccess;
  151. DWORD dwType;
  152. WCHAR **ppwszGroup;
  153. PSECURITY_DESCRIPTOR pCASD = NULL;
  155. *pfAccessAllowed = FALSE;
  157. // If, for some reason, a certsrv call is made after we've shut down
  158. // security, we need to fail.
  160. if (!g_CASD.IsInitialized())
  161. {
  162. hr = HRESULT_FROM_WIN32(ERROR_NOT_READY);
  163. _JumpError(hr, error, "Security not enabled");
  164. }
  166. if (NULL != pwszAuthority)
  167. {
  168. if (0 != lstrcmpi(pwszAuthority, g_wszCommonName))
  169. {
  170. if (0 != lstrcmpi(pwszAuthority, g_wszSanitizedName) &&
  171. 0 != lstrcmpi(pwszAuthority, g_pwszSanitizedDSName))
  172. {
  173. hr = E_INVALIDARG;
  174. _PrintErrorStr(
  175. hr,
  176. "CheckCertSrvAccess: invalid authority name",
  177. pwszAuthority);
  178. _JumpErrorStr(hr, error, "expected CA name", g_wszCommonName);
  179. }
  180. #ifdef DBG_CERTSRV_DEBUG_PRINT
  181. if (0 == lstrcmpi(pwszAuthority, g_wszSanitizedName))
  182. {
  183. DBGPRINT((
  184. DBG_SS_CERTSRV,
  185. "'%ws' called with Sanitized Name: '%ws'\n",
  186. g_wszCommonName,
  187. pwszAuthority));
  188. }
  189. else
  190. if (0 == lstrcmpi(pwszAuthority, g_pwszSanitizedDSName))
  191. {
  192. DBGPRINT((
  193. DBG_SS_CERTSRV,
  194. "'%ws' called with Sanitized DS Name: '%ws'\n",
  195. g_wszCommonName,
  196. pwszAuthority));
  197. }
  198. #endif
  199. }
  200. }
  202. if(NULL == hRpc)
  203. {
  204. // dcom impersonate
  205. // get client info and impersonate client
  206. hr = CoGetCallContext(IID_IServerSecurity, (void**)&pISS);
  207. _JumpIfError(hr, error, "CoGetCallContext");
  209. //if (!pISS->IsImpersonating())
  210. {
  211. hr = pISS->ImpersonateClient();
  212. _JumpIfError(hr, error, "ImpersonateClient");
  213. }
  214. }
  215. else
  216. {
  217. // rpc impersonate
  218. hr = RpcImpersonateClient((RPC_BINDING_HANDLE) hRpc);
  219. if (S_OK != hr)
  220. {
  221. hr = myHError(hr);
  222. _JumpError(hr, error, "RpcImpersonateClient");
  223. }
  224. }
  226. hThread = GetCurrentThread();
  227. if (NULL == hThread)
  228. {
  229. hr = myHLastError();
  230. _JumpIfError(hr, error, "GetCurrentThread");
  231. }
  233. if (!OpenThreadToken(hThread,
  234. TOKEN_QUERY | TOKEN_DUPLICATE,
  235. FALSE, // client impersonation
  236. &hClientToken))
  237. {
  238. hr = myHLastError();
  239. _JumpIfError(hr, error, "OpenThreadToken");
  240. }
  242. hr = g_CASD.LockGet(&pCASD);
  243. _JumpIfError(hr, error, "CProtectedSecurityDescriptor::LockGet");
  246. if (!AccessCheck(
  247. pCASD, // security descriptor
  248. hClientToken, // handle to client access token
  249. Mask, // requested access rights
  250. &g_CertGenericMapping, // map generic to specific rights
  251. &ps, // receives privileges used
  252. &dwPSSize, // size of privilege-set buffer
  253. &grantAccess, // retrieves mask of granted rights
  254. pfAccessAllowed)) // retrieves results of access check
  255. {
  256. hr = myHLastError();
  257. _JumpError(hr, error, "AccessCheckByType");
  258. }
  259. hr = S_OK;
  261. if(phToken)
  262. {
  263. *phToken = hClientToken;
  264. hClientToken = NULL;
  265. }
  267. error:
  268. if(pCASD)
  269. {
  270. HRESULT hr1 = g_CASD.Unlock();
  271. hr = S_OK!=hr?hr:hr1;
  272. }
  274. if (NULL != hRpc) // rpc
  275. {
  276. RpcRevertToSelf();
  277. }
  278. else // dcom
  279. {
  280. if (NULL != pISS)
  281. {
  282. pISS->RevertToSelf();
  283. pISS->Release();
  284. }
  285. }
  286. if (NULL != hThread)
  287. {
  288. CloseHandle(hThread);
  289. }
  290. if (NULL != hClientToken)
  291. {
  292. CloseHandle(hClientToken);
  293. }
  294. return(hr);
  295. }
  297. HRESULT
  298. CertStartClassFactories()
  299. {
  300. HRESULT hr;
  301. BOOL fRequestStarted = FALSE;
  303. hr = CRequestFactory::StartFactory();
  304. _JumpIfError(hr, error, "CRequestFactory::StartFactory");
  306. hr = CAdminFactory::StartFactory();
  307. _JumpIfError(hr, error, "CAdminFactory::StartFactory");
  309. error:
  310. if (S_OK != hr)
  311. {
  312. CRequestFactory::StopFactory();
  313. }
  314. CSASSERT(S_OK == hr || FAILED(hr));
  315. return(hr);
  316. }
  319. VOID
  320. CertStopClassFactories()
  321. {
  322. CRequestFactory::StopFactory();
  323. CAdminFactory::StopFactory();
  324. }