archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
7 Commits
1 Branch
0 Tags
2.0 GiB
Tree: 1b390dddff
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '1b390dddff'
${ noResults }
windows-xp/Source/XPSP1/NT/ds/security/services/smartcrd/sclogon2/sclogon2.cpp

1318 lines
35 KiB
Raw Normal View History

Add source files
4 years ago
  1. /*++
  3. Copyright (C) Microsoft Corporation, 1996 - 1999
  5. Module Name:
  7. ScLogon2
  9. Abstract:
  13. Author:
  15. reidk
  17. Environment:
  19. Win32, C++ w/ Exceptions
  21. --*/
  23. /////////////////////////////////////////////////////////////////////////////
  24. //
  25. // Includes
  27. #if !defined(_X86_) && !defined(_AMD64_) && !defined(_IA64_)
  28. #define _X86_ 1
  29. #endif
  30. #ifndef _WIN32_WINNT
  31. #define _WIN32_WINNT 0x0400
  32. #ifndef UNICODE
  33. #define UNICODE
  34. #endif
  35. #endif
  36. #ifndef WIN32_LEAN_AND_MEAN
  37. #define WIN32_LEAN_AND_MEAN 1
  38. #endif
  41. extern "C" {
  42. #include <nt.h>
  43. #include <ntrtl.h>
  44. #include <nturtl.h>
  45. #include <ntlsa.h>
  46. }
  48. #include <windows.h>
  49. #include <winscard.h>
  50. #include <wincrypt.h>
  51. #include <softpub.h>
  52. #include <stddef.h>
  53. #include <crtdbg.h>
  54. #include "sclogon.h"
  55. #include "sclogon2.h"
  56. #include "unicodes.h"
  57. #include <stdlib.h>
  58. #include <stdio.h>
  59. #include <time.h>
  60. #include <tchar.h>
  62. #include "sclgnrpc.h"
  64. //
  65. // from secpkg.h
  66. //
  67. typedef NTSTATUS (NTAPI LSA_IMPERSONATE_CLIENT) (VOID);
  68. typedef LSA_IMPERSONATE_CLIENT * PLSA_IMPERSONATE_CLIENT;
  72. DWORD
  73. GetTSSessionID(void)
  74. {
  76. bool fRet = false;
  77. PLIST_ENTRY Module;
  78. PLDR_DATA_TABLE_ENTRY Entry;
  79. BOOL fRunningInLsa = false;
  80. HMODULE hLsa = NULL;
  81. PLSA_IMPERSONATE_CLIENT pLsaImpersonateClient = NULL;
  82. bool bImpersonating = false;
  83. bool bRunningInLsa = false;
  84. HANDLE hThreadToken = INVALID_HANDLE_VALUE;
  85. DWORD dwTSSessionID = 0;
  86. DWORD dwSize;
  88. //
  89. // Make sure we are running in LSA
  90. //
  91. Module = NtCurrentPeb()->Ldr->InLoadOrderModuleList.Flink;
  92. Entry = CONTAINING_RECORD(Module,
  93. LDR_DATA_TABLE_ENTRY,
  94. InLoadOrderLinks);
  96. bRunningInLsa = (0 == _wcsicmp(Entry->BaseDllName.Buffer, L"lsass.exe"));
  98. if (bRunningInLsa)
  99. {
  100. //
  101. // If we running in Lsa, then we need to call the special LssImpersonateClient
  102. //
  103. hLsa = GetModuleHandleW(L"lsasrv.dll");
  104. if (hLsa == NULL)
  105. {
  106. DbgPrint("failed to get lsa module handle\n");
  107. goto Return;
  108. }
  110. pLsaImpersonateClient = (PLSA_IMPERSONATE_CLIENT) GetProcAddress(hLsa, "LsaIImpersonateClient");
  111. if (pLsaImpersonateClient == NULL)
  112. {
  113. DbgPrint("failed to get proc address\n");
  114. goto Return;
  115. }
  117. if (pLsaImpersonateClient() != STATUS_SUCCESS)
  118. {
  119. DbgPrint("failed to impersonate\n");
  120. goto Return;
  121. }
  122. bImpersonating = true;
  123. }
  124. else
  125. {
  126. return (0);
  127. }
  130. //
  131. // see if the calling thread token has a TS session ID...
  132. // if so, then we are being called on behalf of a process in a TS session
  133. //
  134. if (!OpenThreadToken(
  135. GetCurrentThread(),
  136. TOKEN_QUERY,
  137. FALSE,
  138. &hThreadToken))
  139. {
  140. DbgPrint("OpenThreadToken failed\n");
  141. goto Return;
  142. }
  144. if (!GetTokenInformation(
  145. hThreadToken,
  146. TokenSessionId,
  147. &dwTSSessionID,
  148. sizeof(dwTSSessionID),
  149. &dwSize))
  150. {
  151. DbgPrint("GetTokenInformation failed\n");
  152. goto Return;
  153. }
  155. Return:
  157. if (hThreadToken != INVALID_HANDLE_VALUE)
  158. {
  159. CloseHandle(hThreadToken);
  160. }
  162. if (bImpersonating)
  163. {
  164. RevertToSelf();
  165. }
  167. return (dwTSSessionID);
  168. }
  170. void
  171. _TeardownRPCConnection(
  172. RPC_BINDING_HANDLE *phRPCBinding)
  173. {
  174. __try
  175. {
  176. RpcBindingFree(phRPCBinding);
  177. }
  178. __except (EXCEPTION_EXECUTE_HANDLER)
  179. {
  180. DbgPrint("Exception occurred during RpcBindingFree - %lx\n", _exception_code());
  181. }
  182. }
  185. NTSTATUS
  186. _SetupRPCConnection(
  187. RPC_BINDING_HANDLE *phRPCBinding)
  188. {
  189. LPWSTR pStringBinding = NULL;
  190. NTSTATUS status = STATUS_SUCCESS;
  191. RPC_STATUS rpcStatus = RPC_S_OK;
  192. static BOOL fDone = FALSE;
  193. DWORD dwTSSessionID = 0;
  194. WCHAR wszLocalEndpoint[256];
  195. LPWSTR pwszLocalEndpoint = NULL;
  196. RPC_SECURITY_QOS RpcSecurityQOS;
  197. SID_IDENTIFIER_AUTHORITY SIDAuth = SECURITY_NT_AUTHORITY;
  198. PSID pSID = NULL;
  199. WCHAR szName[64]; // SYSTEM
  200. DWORD cbName = 64;
  201. WCHAR szDomainName[256]; // max domain is 255
  202. DWORD cbDomainName = 256;
  203. SID_NAME_USE Use;
  206. dwTSSessionID = GetTSSessionID();
  208. if (dwTSSessionID != 0)
  209. {
  210. wsprintfW(
  211. wszLocalEndpoint,
  212. SZ_ENDPOINT_NAME_FORMAT,
  213. SCLOGONRPC_LOCAL_ENDPOINT,
  214. dwTSSessionID);
  216. pwszLocalEndpoint = wszLocalEndpoint;
  217. }
  218. else
  219. {
  220. pwszLocalEndpoint = SCLOGONRPC_LOCAL_ENDPOINT;
  221. }
  223. //
  224. // get a binding handle
  225. //
  226. if (RPC_S_OK != (rpcStatus = RpcStringBindingComposeW(
  227. NULL,
  228. SCLOGONRPC_LOCAL_PROT_SEQ,
  229. NULL, //LPC - no machine name
  230. pwszLocalEndpoint,
  231. 0,
  232. &pStringBinding)))
  233. {
  234. DbgPrint("RpcStringBindingComposeW failed\n");
  236. status = I_RpcMapWin32Status(rpcStatus);
  237. //
  238. // if I_RpcMapWin32Status() can't map the error code it returns
  239. // the same error back, so check for that
  240. //
  241. if (status == rpcStatus)
  242. {
  243. status = STATUS_SMARTCARD_SUBSYSTEM_FAILURE;
  244. }
  245. goto Return;
  246. }
  248. if (RPC_S_OK != (rpcStatus = RpcBindingFromStringBindingW(
  249. pStringBinding,
  250. phRPCBinding)))
  251. {
  252. DbgPrint("RpcBindingFromStringBindingW failed\n");
  253. status = I_RpcMapWin32Status(rpcStatus);
  254. //
  255. // if I_RpcMapWin32Status() can't map the error code it returns
  256. // the same error back, so check for that
  257. //
  258. if (status == rpcStatus)
  259. {
  260. status = STATUS_SMARTCARD_SUBSYSTEM_FAILURE;
  261. }
  262. goto Return;
  263. }
  265. if (RPC_S_OK != (rpcStatus = RpcEpResolveBinding(
  266. *phRPCBinding,
  267. IRPCSCLogon_v1_0_c_ifspec)))
  268. {
  269. DbgPrint("RpcEpResolveBinding failed\n");
  270. status = I_RpcMapWin32Status(rpcStatus);
  271. //
  272. // if I_RpcMapWin32Status() can't map the error code it returns
  273. // the same error back, so check for that
  274. //
  275. if (status == rpcStatus)
  276. {
  277. status = STATUS_SMARTCARD_SUBSYSTEM_FAILURE;
  278. }
  279. _TeardownRPCConnection(phRPCBinding);
  280. goto Return;
  281. }
  283. //
  284. // Set the autorization so that we will only call a Local System process
  285. //
  286. memset(&RpcSecurityQOS, 0, sizeof(RpcSecurityQOS));
  287. RpcSecurityQOS.Version = RPC_C_SECURITY_QOS_VERSION;
  288. RpcSecurityQOS.Capabilities = RPC_C_QOS_CAPABILITIES_MUTUAL_AUTH;
  289. RpcSecurityQOS.IdentityTracking = RPC_C_QOS_IDENTITY_DYNAMIC;
  290. RpcSecurityQOS.ImpersonationType = RPC_C_IMP_LEVEL_DELEGATE; //RPC_C_IMP_LEVEL_DEFAULT; //RPC_C_IMP_LEVEL_IMPERSONATE
  292. if (AllocateAndInitializeSid(&SIDAuth, 1,
  293. SECURITY_LOCAL_SYSTEM_RID,
  294. 0, 0, 0, 0, 0, 0, 0,
  295. &pSID) == 0)
  296. {
  297. DbgPrint("AllocateAndInitializeSid failed\n");
  298. status = STATUS_SMARTCARD_SUBSYSTEM_FAILURE;
  299. goto Return;
  300. }
  302. if (LookupAccountSid(NULL,
  303. pSID,
  304. szName,
  305. &cbName,
  306. szDomainName,
  307. &cbDomainName,
  308. &Use) == 0)
  309. {
  310. DbgPrint("LookupAccountSid failed\n");
  311. status = STATUS_SMARTCARD_SUBSYSTEM_FAILURE;
  312. goto Return;
  313. }
  315. if (RPC_S_OK != (rpcStatus = RpcBindingSetAuthInfoEx(
  316. *phRPCBinding,
  317. szName,
  318. RPC_C_AUTHN_LEVEL_PKT_PRIVACY, //RPC_C_AUTHN_LEVEL_CONNECT
  319. RPC_C_AUTHN_WINNT,
  320. NULL,
  321. 0,
  322. &RpcSecurityQOS)))
  323. {
  324. DbgPrint("RpcBindingSetAuthInfoEx failed\n");
  325. status = I_RpcMapWin32Status(rpcStatus);
  326. goto Return;
  327. }
  329. Return:
  330. if (pStringBinding != NULL)
  331. {
  332. RpcStringFreeW(&pStringBinding);
  333. }
  335. if (pSID != NULL)
  336. {
  337. FreeSid( pSID );
  338. }
  340. return (status);
  341. }
  344. typedef struct _SCLOGON_PIPE
  345. {
  346. RPC_BINDING_HANDLE hRPCBinding;
  347. BINDING_CONTEXT BindingContext;
  348. } SCLOGON_PIPE;
  351. ///////////////////////////////////////////////////////////////////////////////
  352. //
  353. // ScLogon APIs
  354. //
  357. //***************************************************************************************
  358. //
  359. // __ScHelperInitializeContext:
  360. //
  361. //***************************************************************************************
  362. NTSTATUS WINAPI
  363. __ScHelperInitializeContext(
  364. IN OUT PBYTE pbLogonInfo,
  365. IN ULONG cbLogonInfo
  366. )
  367. {
  368. SCLOGON_PIPE *pSCLogonPipe;
  369. NTSTATUS status = STATUS_SUCCESS;
  370. BOOL fRPCBindingInitialized = FALSE;
  371. LogonInfo *pLI = (LogonInfo *)pbLogonInfo;
  373. if ((cbLogonInfo < sizeof(ULONG)) ||
  374. (cbLogonInfo != pLI->dwLogonInfoLen))
  375. {
  376. return(STATUS_INVALID_PARAMETER);
  377. }
  379. pLI->ContextInformation = malloc(sizeof(SCLOGON_PIPE));
  380. if (pLI->ContextInformation == NULL)
  381. {
  382. return(STATUS_INSUFFICIENT_RESOURCES);
  383. }
  385. pSCLogonPipe = (SCLOGON_PIPE *) pLI->ContextInformation;
  387. status = _SetupRPCConnection(&(pSCLogonPipe->hRPCBinding));
  388. if (!NT_SUCCESS(status))
  389. {
  390. goto ErrorReturn;
  391. }
  392. fRPCBindingInitialized = TRUE;
  394. pSCLogonPipe->BindingContext = NULL;
  396. __try
  397. {
  398. status = RPC_ScHelperInitializeContext(
  399. pSCLogonPipe->hRPCBinding,
  400. cbLogonInfo,
  401. pbLogonInfo,
  402. &(pSCLogonPipe->BindingContext));
  403. }
  404. __except (EXCEPTION_EXECUTE_HANDLER)
  405. {
  406. status = STATUS_SMARTCARD_SUBSYSTEM_FAILURE;
  407. DbgPrint("Exception occurred during RPC_ScHelperInitializeContext - %lx\n", _exception_code());
  408. }
  410. if (!NT_SUCCESS(status))
  411. {
  412. goto ErrorReturn;
  413. }
  415. Return:
  417. return (status);
  419. ErrorReturn:
  421. if (pSCLogonPipe != NULL)
  422. {
  423. if (fRPCBindingInitialized)
  424. {
  425. _TeardownRPCConnection(&(pSCLogonPipe->hRPCBinding));
  426. }
  428. free(pSCLogonPipe);
  429. }
  431. goto Return;
  432. }
  435. //***************************************************************************************
  436. //
  437. // __ScHelperRelease:
  438. //
  439. //***************************************************************************************
  440. VOID WINAPI
  441. __ScHelperRelease(
  442. IN OUT PBYTE pbLogonInfo
  443. )
  444. {
  445. _ASSERTE(NULL != pbLogonInfo);
  446. LogonInfo *pLI = (LogonInfo *)pbLogonInfo;
  447. SCLOGON_PIPE * pSCLogonPipe = (SCLOGON_PIPE *) pLI->ContextInformation;
  448. BOOL fReleaseFailed = TRUE;
  450. if (pSCLogonPipe != NULL)
  451. {
  452. __try
  453. {
  454. RPC_ScHelperRelease(
  455. pSCLogonPipe->hRPCBinding,
  456. &(pSCLogonPipe->BindingContext));
  458. fReleaseFailed = FALSE;
  459. }
  460. __except (EXCEPTION_EXECUTE_HANDLER)
  461. {
  462. DbgPrint("Exception occurred during RPC_ScHelperRelease - %lx\n", _exception_code());
  463. }
  465. //
  466. // RPC_ScHelperRelease will throw an exception if the winlogon process it is trying
  467. // to talk to has gone away. If that is the case, then we need to manually free
  468. // the BINDING_CONTEXT since it won't get free'd by RPC.
  469. //
  470. // NOTE: RPC will free the BINDING_CONTEXT when the server sets it to NULL, which
  471. // does happen if the RPC_ScHelperRelease function executes
  472. //
  473. if (fReleaseFailed)
  474. {
  475. __try
  476. {
  477. RpcSsDestroyClientContext(&(pSCLogonPipe->BindingContext));
  478. }
  479. __except (EXCEPTION_EXECUTE_HANDLER)
  480. {
  481. DbgPrint("Exception occurred during RpcSsDestroyClientContext - %lx\n", _exception_code());
  482. }
  483. }
  485. _TeardownRPCConnection(&(pSCLogonPipe->hRPCBinding));
  487. free(pSCLogonPipe);
  488. pLI->ContextInformation = NULL;
  489. }
  490. }
  493. //***************************************************************************************
  494. //
  495. // __ScHelperGetCertFromLogonInfo:
  496. //
  497. //***************************************************************************************
  498. NTSTATUS WINAPI
  499. __ScHelperGetCertFromLogonInfo(
  500. IN PBYTE pbLogonInfo,
  501. IN PUNICODE_STRING pucPIN,
  502. OUT PCCERT_CONTEXT *CertificateContext
  503. )
  504. {
  505. _ASSERTE(NULL != pbLogonInfo);
  507. LogonInfo *pLI = (LogonInfo *)pbLogonInfo;
  508. SCLOGON_PIPE *pSCLogonPipe = (SCLOGON_PIPE *) pLI->ContextInformation;
  509. NTSTATUS status = STATUS_SUCCESS;
  510. PCCERT_CONTEXT pCertCtx = NULL;
  511. OUT_BUFFER1 CertBytes;
  512. CUnicodeString szPIN(pucPIN);
  514. memset(&CertBytes, 0, sizeof(CertBytes));
  516. //
  517. // Make sure pin got initialized correctly in constructor
  518. //
  519. if (NULL != pucPIN)
  520. {
  521. if (!szPIN.Valid())
  522. {
  523. status = STATUS_INSUFFICIENT_RESOURCES;
  524. goto Return;
  525. }
  526. }
  528. //
  529. // Make the call
  530. //
  531. __try
  532. {
  533. status = RPC_ScHelperGetCertFromLogonInfo(
  534. pSCLogonPipe->hRPCBinding,
  535. pSCLogonPipe->BindingContext,
  536. (LPCWSTR)szPIN,
  537. &CertBytes);
  538. }
  539. __except (EXCEPTION_EXECUTE_HANDLER)
  540. {
  541. status = STATUS_SMARTCARD_SUBSYSTEM_FAILURE;
  542. DbgPrint("Exception occurred during RPC_ScHelperGetCertFromLogonInfo - %lx\n", _exception_code());
  543. }
  545. if (!NT_SUCCESS(status))
  546. {
  547. goto Return;
  548. }
  550. //
  551. // Create the return CertContext based on the bytes returned
  552. //
  553. pCertCtx = CertCreateCertificateContext(
  554. X509_ASN_ENCODING | PKCS_7_ASN_ENCODING,
  555. CertBytes.pb,
  556. CertBytes.cb);
  557. if (pCertCtx == NULL)
  558. {
  559. status = STATUS_SMARTCARD_SUBSYSTEM_FAILURE;
  560. }
  562. Return:
  564. if (CertBytes.pb != NULL)
  565. {
  566. MIDL_user_free(CertBytes.pb);
  567. }
  569. *CertificateContext = pCertCtx;
  571. return (status);
  572. }
  575. //***************************************************************************************
  576. //
  577. // __ScHelperGetProvParam:
  578. //
  579. //***************************************************************************************
  580. NTSTATUS WINAPI
  581. __ScHelperGetProvParam(
  582. IN PUNICODE_STRING pucPIN,
  583. IN PBYTE pbLogonInfo,
  584. DWORD dwParam,
  585. BYTE *pbData,
  586. DWORD *pdwDataLen,
  587. DWORD dwFlags
  588. )
  589. {
  590. _ASSERTE(NULL != pbLogonInfo);
  592. LogonInfo *pLI = (LogonInfo *)pbLogonInfo;
  593. SCLOGON_PIPE *pSCLogonPipe = (SCLOGON_PIPE *) pLI->ContextInformation;
  594. NTSTATUS status = STATUS_SUCCESS;
  595. CUnicodeString szPIN(pucPIN);
  596. OUT_BUFFER1 Data;
  598. memset(&Data, 0, sizeof(Data));
  600. //
  601. // Make sure pin got initialized correctly in constructor
  602. //
  603. if (NULL != pucPIN)
  604. {
  605. if (!szPIN.Valid())
  606. {
  607. status = STATUS_INSUFFICIENT_RESOURCES;
  608. goto Return;
  609. }
  610. }
  612. //
  613. // Make the call
  614. //
  615. __try
  616. {
  617. status = RPC_ScHelperGetProvParam(
  618. pSCLogonPipe->hRPCBinding,
  619. pSCLogonPipe->BindingContext,
  620. (LPCWSTR)szPIN,
  621. dwParam,
  622. pdwDataLen,
  623. &Data,
  624. dwFlags);
  625. }
  626. __except (EXCEPTION_EXECUTE_HANDLER)
  627. {
  628. if ((_exception_code() == RPC_S_CALL_FAILED_DNE) ||
  629. (_exception_code() == RPC_S_SERVER_UNAVAILABLE))
  630. {
  631. // Special case to trigger the balloon when the session
  632. // went away (transfer of credentials case)
  633. status = STATUS_SMARTCARD_CARD_NOT_AUTHENTICATED;
  634. }
  635. else
  636. {
  637. status = STATUS_SMARTCARD_SUBSYSTEM_FAILURE;
  638. }
  639. DbgPrint("Exception occurred during RPC_ScHelperGetProvParam - %lx\n", _exception_code());
  640. }
  642. if (!NT_SUCCESS(status))
  643. {
  644. goto Return;
  645. }
  647. //
  648. // if Data.cb is not 0, then the called is getting back data
  649. //
  650. if (Data.cb != 0)
  651. {
  652. memcpy(pbData, Data.pb, Data.cb);
  653. }
  655. Return:
  657. if (Data.pb != NULL)
  658. {
  659. MIDL_user_free(Data.pb);
  660. }
  662. return (status);
  663. }
  666. //***************************************************************************************
  667. //
  668. // __ScHelperGenRandBits:
  669. //
  670. //***************************************************************************************
  671. NTSTATUS WINAPI
  672. __ScHelperGenRandBits(
  673. IN PBYTE pbLogonInfo,
  674. IN OUT ScHelper_RandomCredBits* psc_rcb
  675. )
  676. {
  677. _ASSERTE(NULL != pbLogonInfo);
  679. NTSTATUS status = STATUS_SUCCESS;
  680. LogonInfo *pLI = (LogonInfo *)pbLogonInfo;
  681. SCLOGON_PIPE *pSCLogonPipe = (SCLOGON_PIPE *) pLI->ContextInformation;
  683. __try
  684. {
  685. status = RPC_ScHelperGenRandBits(
  686. pSCLogonPipe->hRPCBinding,
  687. pSCLogonPipe->BindingContext,
  688. psc_rcb->bR1,
  689. psc_rcb->bR2);
  690. }
  691. __except (EXCEPTION_EXECUTE_HANDLER)
  692. {
  693. status = STATUS_SMARTCARD_SUBSYSTEM_FAILURE;
  694. DbgPrint("Exception occurred during RPC_ScHelperGenRandBits - %lx\n", _exception_code());
  695. }
  697. return (status);
  698. }
  701. //***************************************************************************************
  702. //
  703. // __ScHelperVerifyCardAndCreds:
  704. //
  705. //***************************************************************************************
  706. NTSTATUS WINAPI
  707. __ScHelperVerifyCardAndCreds(
  708. IN PUNICODE_STRING pucPIN,
  709. IN PCCERT_CONTEXT CertificateContext,
  710. IN PBYTE pbLogonInfo,
  711. IN PBYTE EncryptedData,
  712. IN ULONG EncryptedDataSize,
  713. OUT OPTIONAL PBYTE CleartextData,
  714. OUT PULONG CleartextDataSize
  715. )
  716. {
  717. _ASSERTE(NULL != pbLogonInfo);
  719. LogonInfo *pLI = (LogonInfo *)pbLogonInfo;
  720. SCLOGON_PIPE *pSCLogonPipe = (SCLOGON_PIPE *) pLI->ContextInformation;
  721. NTSTATUS status = STATUS_SUCCESS;
  722. CUnicodeString szPIN(pucPIN);
  723. OUT_BUFFER2 CleartextDataBuffer;
  725. memset(&CleartextDataBuffer, 0, sizeof(CleartextDataBuffer));
  727. //
  728. // Make sure pin got initialized correctly in constructor
  729. //
  730. if (NULL != pucPIN)
  731. {
  732. if (!szPIN.Valid())
  733. {
  734. status = STATUS_INSUFFICIENT_RESOURCES;
  735. goto Return;
  736. }
  737. }
  739. //
  740. // Make the call
  741. //
  742. __try
  743. {
  744. status = RPC_ScHelperVerifyCardAndCreds(
  745. pSCLogonPipe->hRPCBinding,
  746. pSCLogonPipe->BindingContext,
  747. (LPCWSTR)szPIN,
  748. EncryptedDataSize,
  749. EncryptedData,
  750. CleartextDataSize,
  751. &CleartextDataBuffer);
  752. }
  753. __except (EXCEPTION_EXECUTE_HANDLER)
  754. {
  755. status = STATUS_SMARTCARD_SUBSYSTEM_FAILURE;
  756. DbgPrint("Exception occurred during RPC_ScHelperVerifyCardAndCreds - %lx\n", _exception_code());
  757. }
  759. if (!NT_SUCCESS(status))
  760. {
  761. goto Return;
  762. }
  764. //
  765. // if CleartextData.cb is not 0, then the called is getting back data
  766. //
  767. if (CleartextDataBuffer.cb != 0)
  768. {
  769. memcpy(CleartextData, CleartextDataBuffer.pb, CleartextDataBuffer.cb);
  770. }
  772. Return:
  774. if (CleartextDataBuffer.pb != NULL)
  775. {
  776. MIDL_user_free(CleartextDataBuffer.pb);
  777. }
  779. return (status);
  780. }
  783. //***************************************************************************************
  784. //
  785. // __ScHelperEncryptCredentials:
  786. //
  787. //***************************************************************************************
  788. NTSTATUS WINAPI
  789. __ScHelperEncryptCredentials(
  790. IN PUNICODE_STRING pucPIN,
  791. IN PCCERT_CONTEXT CertificateContext,
  792. IN ScHelper_RandomCredBits* psch_rcb,
  793. IN PBYTE pbLogonInfo,
  794. IN PBYTE CleartextData,
  795. IN ULONG CleartextDataSize,
  796. OUT OPTIONAL PBYTE EncryptedData,
  797. OUT PULONG EncryptedDataSize)
  798. {
  799. _ASSERTE(NULL != pbLogonInfo);
  801. LogonInfo *pLI = (LogonInfo *)pbLogonInfo;
  802. SCLOGON_PIPE *pSCLogonPipe = (SCLOGON_PIPE *) pLI->ContextInformation;
  803. NTSTATUS status = STATUS_SUCCESS;
  804. CUnicodeString szPIN(pucPIN);
  805. OUT_BUFFER2 EncryptedDataBuffer;
  807. memset(&EncryptedDataBuffer, 0, sizeof(EncryptedDataBuffer));
  809. //
  810. // Make sure pin got initialized correctly in constructor
  811. //
  812. if (NULL != pucPIN)
  813. {
  814. if (!szPIN.Valid())
  815. {
  816. status = STATUS_INSUFFICIENT_RESOURCES;
  817. goto Return;
  818. }
  819. }
  821. //
  822. // Make the call
  823. //
  824. __try
  825. {
  826. status = RPC_ScHelperEncryptCredentials(
  827. pSCLogonPipe->hRPCBinding,
  828. pSCLogonPipe->BindingContext,
  829. (LPCWSTR)szPIN,
  830. psch_rcb->bR1,
  831. psch_rcb->bR2,
  832. CleartextDataSize,
  833. CleartextData,
  834. EncryptedDataSize,
  835. &EncryptedDataBuffer);
  836. }
  837. __except (EXCEPTION_EXECUTE_HANDLER)
  838. {
  839. status = STATUS_SMARTCARD_SUBSYSTEM_FAILURE;
  840. DbgPrint("Exception occurred during RPC_ScHelperEncryptCredentials - %lx\n", _exception_code());
  841. }
  843. if (!NT_SUCCESS(status))
  844. {
  845. goto Return;
  846. }
  848. //
  849. // if EncryptedDataBuffer.cb is not 0, then the called is getting back data
  850. //
  851. if (EncryptedDataBuffer.cb != 0)
  852. {
  853. memcpy(EncryptedData, EncryptedDataBuffer.pb, EncryptedDataBuffer.cb);
  854. }
  856. Return:
  858. if (EncryptedDataBuffer.pb != NULL)
  859. {
  860. MIDL_user_free(EncryptedDataBuffer.pb);
  861. }
  863. return (status);
  864. }
  867. //***************************************************************************************
  868. //
  869. // __ScHelperSignMessage:
  870. //
  871. //***************************************************************************************
  872. NTSTATUS WINAPI
  873. __ScHelperSignMessage(
  874. IN PUNICODE_STRING pucPIN,
  875. IN OPTIONAL PBYTE pbLogonInfo,
  876. IN OPTIONAL HCRYPTPROV Provider,
  877. IN ULONG Algorithm,
  878. IN PBYTE Buffer,
  879. IN ULONG BufferLength,
  880. OUT PBYTE Signature,
  881. OUT PULONG SignatureLength
  882. )
  883. {
  884. if (Provider != NULL)
  885. {
  886. return (ScHelperSignMessage(
  887. pucPIN,
  888. pbLogonInfo,
  889. Provider,
  890. Algorithm,
  891. Buffer,
  892. BufferLength,
  893. Signature,
  894. SignatureLength));
  895. }
  897. _ASSERTE(NULL != pbLogonInfo);
  899. LogonInfo *pLI = (LogonInfo *)pbLogonInfo;
  900. SCLOGON_PIPE *pSCLogonPipe = (SCLOGON_PIPE *) pLI->ContextInformation;
  901. NTSTATUS status = STATUS_SUCCESS;
  902. CUnicodeString szPIN(pucPIN);
  903. OUT_BUFFER2 SignatureBuffer;
  905. memset(&SignatureBuffer, 0, sizeof(SignatureBuffer));
  907. //
  908. // Make sure pin got initialized correctly in constructor
  909. //
  910. if (NULL != pucPIN)
  911. {
  912. if (!szPIN.Valid())
  913. {
  914. status = STATUS_INSUFFICIENT_RESOURCES;
  915. goto Return;
  916. }
  917. }
  919. //
  920. // Make the call
  921. //
  922. __try
  923. {
  924. status = RPC_ScHelperSignMessage(
  925. pSCLogonPipe->hRPCBinding,
  926. pSCLogonPipe->BindingContext,
  927. (LPCWSTR)szPIN,
  928. Algorithm,
  929. BufferLength,
  930. Buffer,
  931. SignatureLength,
  932. &SignatureBuffer);
  933. }
  934. __except (EXCEPTION_EXECUTE_HANDLER)
  935. {
  936. status = STATUS_SMARTCARD_SUBSYSTEM_FAILURE;
  937. DbgPrint("Exception occurred during RPC_ScHelperSignMessage - %lx\n", _exception_code());
  938. }
  940. if (!NT_SUCCESS(status))
  941. {
  942. goto Return;
  943. }
  945. //
  946. // if SignatureBuffer.cb is not 0, then the called is getting back data
  947. //
  948. if (SignatureBuffer.cb != 0)
  949. {
  950. memcpy(Signature, SignatureBuffer.pb, SignatureBuffer.cb);
  951. }
  953. Return:
  955. if (SignatureBuffer.pb != NULL)
  956. {
  957. MIDL_user_free(SignatureBuffer.pb);
  958. }
  960. return (status);
  961. }
  964. //***************************************************************************************
  965. //
  966. // __ScHelperVerifyMessage:
  967. //
  968. //***************************************************************************************
  969. NTSTATUS WINAPI
  970. __ScHelperVerifyMessage(
  971. IN OPTIONAL PBYTE pbLogonInfo,
  972. IN PCCERT_CONTEXT CertificateContext,
  973. IN ULONG Algorithm,
  974. IN PBYTE Buffer,
  975. IN ULONG BufferLength,
  976. IN PBYTE Signature,
  977. IN ULONG SignatureLength
  978. )
  979. {
  980. _ASSERTE(NULL != pbLogonInfo);
  982. LogonInfo *pLI = (LogonInfo *)pbLogonInfo;
  983. SCLOGON_PIPE *pSCLogonPipe = (SCLOGON_PIPE *) pLI->ContextInformation;
  984. NTSTATUS status = STATUS_SUCCESS;
  986. __try
  987. {
  988. status = RPC_ScHelperVerifyMessage(
  989. pSCLogonPipe->hRPCBinding,
  990. pSCLogonPipe->BindingContext,
  991. Algorithm,
  992. BufferLength,
  993. Buffer,
  994. SignatureLength,
  995. Signature);
  996. }
  997. __except (EXCEPTION_EXECUTE_HANDLER)
  998. {
  999. status = STATUS_SMARTCARD_SUBSYSTEM_FAILURE;
  1000. DbgPrint("Exception occurred during RPC_ScHelperVerifyMessage - %lx\n", _exception_code());
  1001. }
  1003. return (status);
  1004. }
  1007. //***************************************************************************************
  1008. //
  1009. // __ScHelperSignPkcsMessage:
  1010. //
  1011. //***************************************************************************************
  1012. NTSTATUS WINAPI
  1013. __ScHelperSignPkcsMessage(
  1014. IN OPTIONAL PUNICODE_STRING pucPIN,
  1015. IN OPTIONAL PBYTE pbLogonInfo,
  1016. IN OPTIONAL HCRYPTPROV Provider,
  1017. IN PCCERT_CONTEXT Certificate,
  1018. IN PCRYPT_ALGORITHM_IDENTIFIER Algorithm,
  1019. IN DWORD dwSignMessageFlags,
  1020. IN PBYTE Buffer,
  1021. IN ULONG BufferLength,
  1022. OUT OPTIONAL PBYTE SignedBuffer,
  1023. OUT OPTIONAL PULONG SignedBufferLength
  1024. )
  1025. {
  1026. if (Provider != NULL)
  1027. {
  1028. return (ScHelperSignPkcsMessage(
  1029. pucPIN,
  1030. pbLogonInfo,
  1031. Provider,
  1032. Certificate,
  1033. Algorithm,
  1034. dwSignMessageFlags,
  1035. Buffer,
  1036. BufferLength,
  1037. SignedBuffer,
  1038. SignedBufferLength));
  1039. }
  1041. _ASSERTE(NULL != pbLogonInfo);
  1043. LogonInfo *pLI = (LogonInfo *)pbLogonInfo;
  1044. SCLOGON_PIPE *pSCLogonPipe = (SCLOGON_PIPE *) pLI->ContextInformation;
  1045. NTSTATUS status = STATUS_SUCCESS;
  1046. CUnicodeString szPIN(pucPIN);
  1047. OUT_BUFFER2 SignedBufferBuffer;
  1049. memset(&SignedBufferBuffer, 0, sizeof(SignedBufferBuffer));
  1051. //
  1052. // Make sure pin got initialized correctly in constructor
  1053. //
  1054. if (NULL != pucPIN)
  1055. {
  1056. if (!szPIN.Valid())
  1057. {
  1058. status = STATUS_INSUFFICIENT_RESOURCES;
  1059. goto Return;
  1060. }
  1061. }
  1063. //
  1064. // Make the call
  1065. //
  1066. __try
  1067. {
  1068. status = RPC_ScHelperSignPkcsMessage(
  1069. pSCLogonPipe->hRPCBinding,
  1070. pSCLogonPipe->BindingContext,
  1071. (LPCWSTR)szPIN,
  1072. Algorithm->pszObjId,
  1073. Algorithm->Parameters.cbData,
  1074. Algorithm->Parameters.pbData,
  1075. dwSignMessageFlags,
  1076. BufferLength,
  1077. Buffer,
  1078. SignedBufferLength,
  1079. &SignedBufferBuffer);
  1080. }
  1081. __except (EXCEPTION_EXECUTE_HANDLER)
  1082. {
  1083. status = STATUS_SMARTCARD_SUBSYSTEM_FAILURE;
  1084. DbgPrint("Exception occurred during RPC_ScHelperSignPkcsMessage - %lx\n", _exception_code());
  1085. }
  1087. if (!NT_SUCCESS(status))
  1088. {
  1089. goto Return;
  1090. }
  1092. //
  1093. // if SignedBufferBuffer.cb is not 0, then the called is getting back data
  1094. //
  1095. if (SignedBufferBuffer.cb != 0)
  1096. {
  1097. memcpy(SignedBuffer, SignedBufferBuffer.pb, SignedBufferBuffer.cb);
  1098. }
  1100. Return:
  1102. if (SignedBufferBuffer.pb != NULL)
  1103. {
  1104. MIDL_user_free(SignedBufferBuffer.pb);
  1105. }
  1107. return (status);
  1108. }
  1111. //***************************************************************************************
  1112. //
  1113. // __ScHelperVerifyPkcsMessage:
  1114. //
  1115. //***************************************************************************************
  1116. NTSTATUS WINAPI
  1117. __ScHelperVerifyPkcsMessage(
  1118. IN OPTIONAL PBYTE pbLogonInfo,
  1119. IN OPTIONAL HCRYPTPROV Provider,
  1120. IN PBYTE Buffer,
  1121. IN ULONG BufferLength,
  1122. OUT OPTIONAL PBYTE DecodedBuffer,
  1123. OUT OPTIONAL PULONG DecodedBufferLength,
  1124. OUT OPTIONAL PCCERT_CONTEXT * CertificateContext
  1125. )
  1126. {
  1127. if (Provider != NULL)
  1128. {
  1129. return (ScHelperVerifyPkcsMessage(
  1130. pbLogonInfo,
  1131. Provider,
  1132. Buffer,
  1133. BufferLength,
  1134. DecodedBuffer,
  1135. DecodedBufferLength,
  1136. CertificateContext));
  1137. }
  1139. _ASSERTE(NULL != pbLogonInfo);
  1141. LogonInfo *pLI = (LogonInfo *)pbLogonInfo;
  1142. SCLOGON_PIPE *pSCLogonPipe = (SCLOGON_PIPE *) pLI->ContextInformation;
  1143. NTSTATUS status = STATUS_SUCCESS;
  1144. PCCERT_CONTEXT pCertCtx = NULL;
  1145. OUT_BUFFER2 DecodedBufferBuffer;
  1146. OUT_BUFFER1 CertBytes;
  1147. BOOL fCertificateContextRequested = (CertificateContext != NULL);
  1149. memset(&DecodedBufferBuffer, 0, sizeof(DecodedBufferBuffer));
  1150. memset(&CertBytes, 0, sizeof(CertBytes));
  1152. //
  1153. // Make the call
  1154. //
  1155. __try
  1156. {
  1157. status = RPC_ScHelperVerifyPkcsMessage(
  1158. pSCLogonPipe->hRPCBinding,
  1159. pSCLogonPipe->BindingContext,
  1160. BufferLength,
  1161. Buffer,
  1162. DecodedBufferLength,
  1163. &DecodedBufferBuffer,
  1164. fCertificateContextRequested,
  1165. &CertBytes);
  1166. }
  1167. __except (EXCEPTION_EXECUTE_HANDLER)
  1168. {
  1169. status = STATUS_SMARTCARD_SUBSYSTEM_FAILURE;
  1170. DbgPrint("Exception occurred during RPC_ScHelperVerifyPkcsMessage - %lx\n", _exception_code());
  1171. }
  1173. if (!NT_SUCCESS(status))
  1174. {
  1175. goto Return;
  1176. }
  1178. //
  1179. // Create the return CertContext based on the bytes returned
  1180. //
  1181. if (fCertificateContextRequested)
  1182. {
  1183. pCertCtx = CertCreateCertificateContext(
  1184. X509_ASN_ENCODING | PKCS_7_ASN_ENCODING,
  1185. CertBytes.pb,
  1186. CertBytes.cb);
  1187. if (pCertCtx == NULL)
  1188. {
  1189. status = STATUS_SMARTCARD_SUBSYSTEM_FAILURE;
  1190. goto Return;
  1191. }
  1192. }
  1194. //
  1195. // if DecodedBufferBuffer.cb is not 0, then the called is getting back data
  1196. //
  1197. if (DecodedBufferBuffer.cb != 0)
  1198. {
  1199. memcpy(DecodedBuffer, DecodedBufferBuffer.pb, DecodedBufferBuffer.cb);
  1200. }
  1202. Return:
  1204. if (fCertificateContextRequested)
  1205. {
  1206. *CertificateContext = pCertCtx;
  1207. }
  1209. if (DecodedBufferBuffer.pb != NULL)
  1210. {
  1211. MIDL_user_free(DecodedBufferBuffer.pb);
  1212. }
  1214. if (CertBytes.pb != NULL)
  1215. {
  1216. MIDL_user_free(CertBytes.pb);
  1217. }
  1219. return (status);
  1220. }
  1224. //***************************************************************************************
  1225. //
  1226. // __ScHelperDecryptMessage:
  1227. //
  1228. //***************************************************************************************
  1229. NTSTATUS WINAPI
  1230. __ScHelperDecryptMessage(
  1231. IN PUNICODE_STRING pucPIN,
  1232. IN OPTIONAL PBYTE pbLogonInfo,
  1233. IN OPTIONAL HCRYPTPROV Provider,
  1234. IN PCCERT_CONTEXT CertificateContext,
  1235. IN PBYTE CipherText, // Supplies formatted CipherText
  1236. IN ULONG CipherLength, // Supplies the length of the CiperText
  1237. OUT PBYTE ClearText, // Receives decrypted message
  1238. IN OUT PULONG pClearLength // Supplies length of buffer, receives actual length
  1239. )
  1240. {
  1241. if (Provider != NULL)
  1242. {
  1243. return (ScHelperDecryptMessage(
  1244. pucPIN,
  1245. pbLogonInfo,
  1246. Provider,
  1247. CertificateContext,
  1248. CipherText,
  1249. CipherLength,
  1250. ClearText,
  1251. pClearLength));
  1252. }
  1254. _ASSERTE(NULL != pbLogonInfo);
  1256. LogonInfo *pLI = (LogonInfo *)pbLogonInfo;
  1257. SCLOGON_PIPE *pSCLogonPipe = (SCLOGON_PIPE *) pLI->ContextInformation;
  1258. NTSTATUS status = STATUS_SUCCESS;
  1259. CUnicodeString szPIN(pucPIN);
  1260. OUT_BUFFER2 ClearTextBuffer;
  1262. memset(&ClearTextBuffer, 0, sizeof(ClearTextBuffer));
  1264. //
  1265. // Make sure pin got initialized correctly in constructor
  1266. //
  1267. if (NULL != pucPIN)
  1268. {
  1269. if (!szPIN.Valid())
  1270. {
  1271. status = STATUS_INSUFFICIENT_RESOURCES;
  1272. goto Return;
  1273. }
  1274. }
  1276. //
  1277. // Make the call
  1278. //
  1279. __try
  1280. {
  1281. status = RPC_ScHelperDecryptMessage(
  1282. pSCLogonPipe->hRPCBinding,
  1283. pSCLogonPipe->BindingContext,
  1284. (LPCWSTR)szPIN,
  1285. CipherLength,
  1286. CipherText,
  1287. pClearLength,
  1288. &ClearTextBuffer);
  1289. }
  1290. __except (EXCEPTION_EXECUTE_HANDLER)
  1291. {
  1292. status = STATUS_SMARTCARD_SUBSYSTEM_FAILURE;
  1293. DbgPrint("Exception occurred during RPC_ScHelperDecryptMessage - %lx\n", _exception_code());
  1294. }
  1296. if (!NT_SUCCESS(status))
  1297. {
  1298. goto Return;
  1299. }
  1301. //
  1302. // if ClearTextBuffer.cb is not 0, then the called is getting back data
  1303. //
  1304. if (ClearTextBuffer.cb != 0)
  1305. {
  1306. memcpy(ClearText, ClearTextBuffer.pb, ClearTextBuffer.cb);
  1307. }
  1309. Return:
  1311. if (ClearTextBuffer.pb != NULL)
  1312. {
  1313. MIDL_user_free(ClearTextBuffer.pb);
  1314. }
  1316. return (status);
  1317. }