Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

1506 lines
46 KiB

  1. /*++
  2. Copyright (c) 1995 Microsoft Corporation
  3. Module Name:
  4. certdb.c
  5. Abstract:
  6. License Logging Service certificate database implementation. This database
  7. tracks license certificates to help ensure that no more licenses from a
  8. single certificate are installe don the license enterprise than are allowed
  9. by the certificate's license agreement.
  10. The certificate database at the top level is an unsorted array of
  11. certificate headers. There is exactly one header per unique certificate.
  12. A unique certificate is identified by a combination of product name,
  13. certificate ID, certificate capacity (max. licenses legally installable),
  14. and expiration date.
  15. Each header has an attached array of certificate claims. There is exactly
  16. one claim per machine that (a) replicates to this machine, directly or
  17. indirectly, and (b) has licenses from this certificate installed. Each
  18. claim contains the server name to which it corresponds, the number of
  19. licenses installed on it, and the date this information was replicated.
  20. If a claim is not updated after LLS_CERT_DB_REPLICATION_DATE_DELTA_MAX
  21. seconds (3 days as of this writing), the claim is considered forfeit and
  22. is erased.
  23. Author:
  24. Jeff Parham (jeffparh) 08-Dec-1995
  25. Revision History:
  26. --*/
  27. #include <stdlib.h>
  28. #include <limits.h>
  29. #include <nt.h>
  30. #include <ntrtl.h>
  31. #include <nturtl.h>
  32. #include <windows.h>
  33. #include <rpc.h>
  34. #include <rpcndr.h>
  35. #include <dsgetdc.h>
  36. #include "debug.h"
  37. #include "llsutil.h"
  38. #include "llssrv.h"
  39. #include "llsapi.h"
  40. #include "llsevent.h"
  41. #include "llsrpc_s.h"
  42. #include "certdb.h"
  43. #include "purchase.h"
  44. #include "registry.h"
  45. RTL_RESOURCE CertDbHeaderListLock;
  46. static PLLS_CERT_DB_CERTIFICATE_HEADER CertDbHeaderList = NULL;
  47. static DWORD CertDbHeaderListSize = 0;
  48. static HANDLE CertDbFile = NULL;
  49. ///////////////////////////////////////////////////////////////////////////////
  50. NTSTATUS CertDbClaimEnter( LPTSTR pszServerName,
  51. PLLS_LICENSE_INFO_1 pLicense,
  52. BOOL bIsTotal,
  53. DWORD ReplicationDate )
  54. /*++
  55. Routine Description:
  56. Enter a claim into the database.
  57. Arguments:
  58. pszServerName (LPTSTR)
  59. The server for which to enter this claim. A value of NULL indicates the
  60. local server.
  61. pLicense (PLLS_LICENSE_INFO_1)
  62. License information to enter into the database.
  63. bIsTotal (BOOL)
  64. If TRUE, indicates that this license information represents the total
  65. licenses installed on the machine and should therefore replace the
  66. current claim (if any). Otherwise, indicates this license information
  67. should be added to the current claim (if any).
  68. ReplicationDate (DWORD)
  69. Indicates the date which this information was last replicated. A value
  70. of 0 will be replaced with the current system time.
  71. Return Value:
  72. STATUS_SUCCESS
  73. STATUS_INVALID_PARAMETER
  74. STATUS_INVALID_COMPUTER_NAME
  75. STATUS_NO_MEMORY
  76. --*/
  77. {
  78. NTSTATUS nt;
  79. if ( ( NULL == pLicense ) || ( 0 == pLicense->CertificateID ) )
  80. {
  81. ASSERT( FALSE );
  82. nt = STATUS_INVALID_PARAMETER;
  83. }
  84. else
  85. {
  86. TCHAR szComputerName[ 1 + MAX_COMPUTERNAME_LENGTH ];
  87. if ( NULL == pszServerName )
  88. {
  89. // use local server name
  90. DWORD cchComputerName = sizeof( szComputerName ) / sizeof( *szComputerName );
  91. BOOL ok;
  92. ok = GetComputerName( szComputerName, &cchComputerName );
  93. ASSERT( ok );
  94. if ( ok )
  95. {
  96. pszServerName = szComputerName;
  97. }
  98. }
  99. else
  100. {
  101. // remove leading backslashes (if any) from server name
  102. while ( TEXT('\\') == *pszServerName )
  103. {
  104. pszServerName++;
  105. }
  106. }
  107. if ( ( NULL == pszServerName ) || !*pszServerName || ( lstrlen( pszServerName ) > MAX_COMPUTERNAME_LENGTH ) )
  108. {
  109. ASSERT( FALSE );
  110. nt = STATUS_INVALID_COMPUTER_NAME;
  111. }
  112. else
  113. {
  114. PLLS_CERT_DB_CERTIFICATE_HEADER pHeader;
  115. RtlAcquireResourceExclusive( &CertDbHeaderListLock, TRUE );
  116. // is the certificate in the db?
  117. pHeader = CertDbHeaderFind( pLicense );
  118. if ( NULL == pHeader )
  119. {
  120. // certificate not yet in db; add it
  121. pHeader = CertDbHeaderAdd( pLicense );
  122. }
  123. if ( NULL == pHeader )
  124. {
  125. // could not find or add header
  126. ASSERT( FALSE );
  127. nt = STATUS_NO_MEMORY;
  128. }
  129. else
  130. {
  131. // now have header; is this claim already filed?
  132. int iClaim;
  133. iClaim = CertDbClaimFind( pHeader, pszServerName );
  134. if ( iClaim < 0 )
  135. {
  136. PLLS_CERT_DB_CERTIFICATE_CLAIM pClaimsTmp;
  137. // claim does not yet exist; add it
  138. if ( NULL == pHeader->Claims )
  139. {
  140. pClaimsTmp = LocalAlloc( LPTR, ( 1 + pHeader->NumClaims ) * sizeof( LLS_CERT_DB_CERTIFICATE_CLAIM ) );
  141. }
  142. else
  143. {
  144. pClaimsTmp = LocalReAlloc( pHeader->Claims, ( 1 + pHeader->NumClaims ) * sizeof( LLS_CERT_DB_CERTIFICATE_CLAIM ), LHND );
  145. }
  146. if ( NULL != pClaimsTmp )
  147. {
  148. // memory allocation succeeded
  149. // claim list expanded; save server name
  150. pHeader->Claims = pClaimsTmp;
  151. iClaim = pHeader->NumClaims;
  152. lstrcpy( pHeader->Claims[ iClaim ].ServerName, pszServerName );
  153. pHeader->Claims[ iClaim ].Quantity = 0;
  154. pHeader->NumClaims++;
  155. }
  156. }
  157. if ( iClaim < 0 )
  158. {
  159. // could not find or add claim to header
  160. ASSERT( FALSE );
  161. nt = STATUS_NO_MEMORY;
  162. }
  163. else
  164. {
  165. // claim found or added; update info
  166. ASSERT( !lstrcmpi( pszServerName, pHeader->Claims[ iClaim ].ServerName ) );
  167. pHeader->Claims[ iClaim ].ReplicationDate = ReplicationDate ? ReplicationDate : DateSystemGet();
  168. if ( bIsTotal )
  169. {
  170. // the given value is the new total
  171. pHeader->Claims[ iClaim ].Quantity = pLicense->Quantity;
  172. nt = STATUS_SUCCESS;
  173. }
  174. else if ( pHeader->Claims[ iClaim ].Quantity + pLicense->Quantity >= 0 )
  175. {
  176. // the given value is added to the current sum to make the total
  177. pHeader->Claims[ iClaim ].Quantity += pLicense->Quantity;
  178. nt = STATUS_SUCCESS;
  179. }
  180. else
  181. {
  182. // overflow
  183. nt = STATUS_INVALID_PARAMETER;
  184. }
  185. }
  186. }
  187. RtlReleaseResource( &CertDbHeaderListLock );
  188. if ( STATUS_SUCCESS == nt )
  189. {
  190. // any product that has licenses with non-0 certificate IDs
  191. // must be secure; this code is here such that when certificates
  192. // are replicated, the "product is secure" info is replicated, too
  193. // this will also help recover from the case where someone deletes
  194. // the registry key that lists all secure products
  195. ServiceSecuritySet( pLicense->Product );
  196. }
  197. }
  198. }
  199. return nt;
  200. }
  201. ///////////////////////////////////////////////////////////////////////////////
  202. BOOL CertDbClaimApprove( PLLS_LICENSE_INFO_1 pLicense )
  203. /*++
  204. Routine Description:
  205. Check to see if adding the given licenses is legal. This call is typically
  206. made before adding a license into the system to verify that doing so does
  207. not violate the certificate's license agreement.
  208. Arguments:
  209. pLicense (PLLS_LICENSE_INFO_1)
  210. License information for which approval is sought.
  211. Return Value:
  212. TRUE (approved) or FALSE (rejected).
  213. --*/
  214. {
  215. BOOL bOkToAdd = TRUE;
  216. PLLS_CERT_DB_CERTIFICATE_HEADER pHeader;
  217. TCHAR szComputerName[ 1 + MAX_COMPUTERNAME_LENGTH ];
  218. DWORD cchComputerName = sizeof( szComputerName ) / sizeof( *szComputerName );
  219. BOOL ok;
  220. if ( ( pLicense->Quantity > 0 ) && ( (DWORD)pLicense->Quantity > pLicense->MaxQuantity ) )
  221. {
  222. // certificate add request exceeds its capacity all by itself!
  223. bOkToAdd = FALSE;
  224. }
  225. else
  226. {
  227. ok = GetComputerName( szComputerName, &cchComputerName );
  228. ASSERT( ok );
  229. if ( !ok )
  230. {
  231. // deletions will fail...
  232. *szComputerName = TEXT( '\0' );
  233. }
  234. // do we have a record of this certificate?
  235. RtlAcquireResourceShared( &CertDbHeaderListLock, TRUE );
  236. pHeader = CertDbHeaderFind( pLicense );
  237. if ( NULL == pHeader )
  238. {
  239. // don't have any record of this certificate; ok to add if Quantity > 0
  240. bOkToAdd = ( pLicense->Quantity > 0 );
  241. }
  242. else
  243. {
  244. LONG lTotalQuantity = 0;
  245. int iClaim;
  246. // we have seen this certificate; are there enough licenses available?
  247. for ( iClaim=0; (DWORD)iClaim < pHeader->NumClaims; iClaim++ )
  248. {
  249. // for license remove requests, tally only local licenses
  250. // for license add requests, tally all licenses
  251. if ( ( ( pLicense->Quantity > 0 )
  252. || ( !lstrcmpi( pHeader->Claims[ iClaim ].ServerName, szComputerName ) ) )
  253. && ( lTotalQuantity + pHeader->Claims[ iClaim ].Quantity >= 0 ) )
  254. {
  255. // add to tally
  256. lTotalQuantity += pHeader->Claims[ iClaim ].Quantity;
  257. }
  258. }
  259. if ( lTotalQuantity + pLicense->Quantity < 0 )
  260. {
  261. // overflow or underflow
  262. bOkToAdd = FALSE;
  263. }
  264. else if ( (DWORD)(lTotalQuantity + pLicense->Quantity) > pHeader->MaxQuantity )
  265. {
  266. // exceeds certificate capacity
  267. bOkToAdd = FALSE;
  268. }
  269. else
  270. {
  271. // okay by me
  272. bOkToAdd = TRUE;
  273. }
  274. }
  275. RtlReleaseResource( &CertDbHeaderListLock );
  276. }
  277. return bOkToAdd;
  278. }
  279. ///////////////////////////////////////////////////////////////////////////////
  280. PLLS_CERT_DB_CERTIFICATE_HEADER CertDbHeaderFind( PLLS_LICENSE_INFO_1 pLicense )
  281. /*++
  282. Routine Description:
  283. Find a certificate header in the database.
  284. Arguments:
  285. pLicense (PLLS_LICENSE_INFO_1)
  286. License information for which to find the appropriate header.
  287. Return Value:
  288. A pointer to the found header, or NULL if not found.
  289. --*/
  290. {
  291. // assumes db is already locked for shared or exclusive access
  292. PLLS_CERT_DB_CERTIFICATE_HEADER pHeader = NULL;
  293. int iHeader;
  294. for ( iHeader=0; ( NULL == pHeader ) && ( (DWORD)iHeader < CertDbHeaderListSize ); iHeader++ )
  295. {
  296. if ( ( CertDbHeaderList[ iHeader ].CertificateID == pLicense->CertificateID )
  297. && ( CertDbHeaderList[ iHeader ].MaxQuantity == pLicense->MaxQuantity )
  298. && ( CertDbHeaderList[ iHeader ].ExpirationDate == pLicense->ExpirationDate )
  299. && ( !lstrcmpi( CertDbHeaderList[ iHeader ].Product, pLicense->Product ) ) )
  300. {
  301. // header found!
  302. pHeader = &CertDbHeaderList[ iHeader ];
  303. }
  304. }
  305. return pHeader;
  306. }
  307. ///////////////////////////////////////////////////////////////////////////////
  308. PLLS_CERT_DB_CERTIFICATE_HEADER CertDbHeaderAdd( PLLS_LICENSE_INFO_1 pLicense )
  309. /*++
  310. Routine Description:
  311. Add a certificate header to the database.
  312. Arguments:
  313. pLicense (PLLS_LICENSE_INFO_1)
  314. License information for which to add the header.
  315. Return Value:
  316. A pointer to the added header, or NULL if memory could not be allocated.
  317. --*/
  318. {
  319. // assumes caller has made sure the header does not already exist
  320. // assumes db is locked for exclusive access
  321. PLLS_CERT_DB_CERTIFICATE_HEADER pHeader;
  322. if ( CertDbHeaderListSize )
  323. {
  324. pHeader = LocalReAlloc( CertDbHeaderList, ( 1 + CertDbHeaderListSize ) * sizeof( LLS_CERT_DB_CERTIFICATE_HEADER ), LHND );
  325. }
  326. else
  327. {
  328. pHeader = LocalAlloc( LPTR, ( 1 + CertDbHeaderListSize ) * sizeof( LLS_CERT_DB_CERTIFICATE_HEADER ) );
  329. }
  330. if ( NULL != pHeader )
  331. {
  332. CertDbHeaderList = pHeader;
  333. // allocate space for product name
  334. CertDbHeaderList[ CertDbHeaderListSize ].Product = LocalAlloc( LPTR, sizeof( TCHAR ) * ( 1 + lstrlen( pLicense->Product ) ) );
  335. if ( NULL == CertDbHeaderList[ CertDbHeaderListSize ].Product )
  336. {
  337. // memory allocation failed
  338. ASSERT( FALSE );
  339. pHeader = NULL;
  340. }
  341. else
  342. {
  343. // success!
  344. pHeader = &CertDbHeaderList[ CertDbHeaderListSize ];
  345. CertDbHeaderListSize++;
  346. lstrcpy( pHeader->Product, pLicense->Product );
  347. pHeader->CertificateID = pLicense->CertificateID;
  348. pHeader->MaxQuantity = pLicense->MaxQuantity;
  349. pHeader->ExpirationDate = pLicense->ExpirationDate;
  350. }
  351. }
  352. return pHeader;
  353. }
  354. ///////////////////////////////////////////////////////////////////////////////
  355. int CertDbClaimFind( PLLS_CERT_DB_CERTIFICATE_HEADER pHeader, LPTSTR pszServerName )
  356. /*++
  357. Routine Description:
  358. Find a certificate claim for a specific server in the claim list.
  359. Arguments:
  360. pHeader (PLLS_CERT_DB_CERTIFICATE_HEADER)
  361. Header containing the claim list to search.
  362. pszServerName (LPTSTR)
  363. Name of the server for which the claim is sought.
  364. Return Value:
  365. The index of the found claim, or -1 if not found.
  366. --*/
  367. {
  368. // assumes db is already locked for shared or exclusive access
  369. int iClaim;
  370. for ( iClaim=0; (DWORD)iClaim < pHeader->NumClaims; iClaim++ )
  371. {
  372. if ( !lstrcmpi( pHeader->Claims[ iClaim ].ServerName, pszServerName ) )
  373. {
  374. break;
  375. }
  376. }
  377. if ( (DWORD)iClaim >= pHeader->NumClaims )
  378. {
  379. iClaim = -1;
  380. }
  381. return iClaim;
  382. }
  383. ///////////////////////////////////////////////////////////////////////////////
  384. void CertDbPrune()
  385. /*++
  386. Routine Description:
  387. Remove entries in the database which have expired. Entries expire if they
  388. have not been re-replicated in LLS_CERT_DB_REPLICATION_DATE_DELTA_MAX
  389. seconds (3 days as of this writing).
  390. Arguments:
  391. None.
  392. Return Value:
  393. None.
  394. --*/
  395. {
  396. int iHeader;
  397. int iClaim;
  398. DWORD CurrentDate;
  399. DWORD MinimumDate;
  400. TCHAR szComputerName[ 1 + MAX_COMPUTERNAME_LENGTH ] = TEXT("");
  401. DWORD cchComputerName = sizeof( szComputerName ) / sizeof( *szComputerName );
  402. BOOL ok;
  403. ok = GetComputerName( szComputerName, &cchComputerName );
  404. ASSERT( ok );
  405. if ( ok )
  406. {
  407. RtlAcquireResourceExclusive( &CertDbHeaderListLock, TRUE );
  408. CurrentDate = DateSystemGet();
  409. MinimumDate = CurrentDate - LLS_CERT_DB_REPLICATION_DATE_DELTA_MAX;
  410. for ( iHeader=0; (DWORD)iHeader < CertDbHeaderListSize; iHeader++ )
  411. {
  412. for ( iClaim=0; (DWORD)iClaim < CertDbHeaderList[ iHeader ].NumClaims; )
  413. {
  414. // Note that we prune entries made in the future, too, to avoid having an incorrect date
  415. // forcing us to keep an entry forever.
  416. //
  417. // For this application, it's better to keep fewer entries rather than more, as the
  418. // fewer entries we have, the less restrictive the system is.
  419. //
  420. // Don't prune local entries.
  421. if ( ( ( CertDbHeaderList[ iHeader ].Claims[ iClaim ].ReplicationDate < MinimumDate )
  422. || ( CertDbHeaderList[ iHeader ].Claims[ iClaim ].ReplicationDate > CurrentDate ) )
  423. && lstrcmpi( szComputerName, CertDbHeaderList[ iHeader ].Claims[ iClaim ].ServerName ) )
  424. {
  425. // remove claim
  426. MoveMemory( &CertDbHeaderList[ iHeader ].Claims[ iClaim ],
  427. &CertDbHeaderList[ iHeader ].Claims[ iClaim+1 ],
  428. CertDbHeaderList[ iHeader ].NumClaims - ( iClaim + 1 ) );
  429. CertDbHeaderList[ iHeader ].NumClaims--;
  430. }
  431. else
  432. {
  433. // keep this claim
  434. iClaim++;
  435. }
  436. }
  437. }
  438. RtlReleaseResource( &CertDbHeaderListLock );
  439. }
  440. }
  441. ///////////////////////////////////////////////////////////////////////////////
  442. void CertDbRemoveLocalClaims()
  443. /*++
  444. Routine Description:
  445. Remove entries in the database corresponding to the local server.
  446. Arguments:
  447. None.
  448. Return Value:
  449. None.
  450. --*/
  451. {
  452. int iHeader;
  453. int iClaim;
  454. TCHAR szComputerName[ 1 + MAX_COMPUTERNAME_LENGTH ] = TEXT("");
  455. DWORD cchComputerName = sizeof( szComputerName ) / sizeof( *szComputerName );
  456. BOOL ok;
  457. ok = GetComputerName( szComputerName, &cchComputerName );
  458. ASSERT( ok );
  459. if ( ok )
  460. {
  461. RtlAcquireResourceExclusive( &CertDbHeaderListLock, TRUE );
  462. for ( iHeader=0; (DWORD)iHeader < CertDbHeaderListSize; iHeader++ )
  463. {
  464. for ( iClaim=0; (DWORD)iClaim < CertDbHeaderList[ iHeader ].NumClaims; )
  465. {
  466. if ( !lstrcmpi( szComputerName, CertDbHeaderList[ iHeader ].Claims[ iClaim ].ServerName ) )
  467. {
  468. // remove claim
  469. MoveMemory( &CertDbHeaderList[ iHeader ].Claims[ iClaim ],
  470. &CertDbHeaderList[ iHeader ].Claims[ iClaim+1 ],
  471. CertDbHeaderList[ iHeader ].NumClaims - ( iClaim + 1 ) );
  472. CertDbHeaderList[ iHeader ].NumClaims--;
  473. }
  474. else
  475. {
  476. // keep this claim
  477. iClaim++;
  478. }
  479. }
  480. }
  481. RtlReleaseResource( &CertDbHeaderListLock );
  482. }
  483. }
  484. ///////////////////////////////////////////////////////////////////////////////
  485. void CertDbLogViolations()
  486. /*++
  487. Routine Description:
  488. Log violations of certificate license agreements to the event log of the
  489. local server.
  490. Arguments:
  491. None.
  492. Return Value:
  493. None.
  494. --*/
  495. {
  496. int iHeader;
  497. int iClaim;
  498. HANDLE hEventLog;
  499. DWORD dwTotalQuantity;
  500. HINSTANCE hDll;
  501. DWORD cch;
  502. LPTSTR pszViolationServerEntryFormat;
  503. LPTSTR pszViolationFormat;
  504. LPTSTR pszViolationServerEntryList;
  505. LPTSTR pszNextViolationServerEntry;
  506. TCHAR szNumLicenses[ 20 ];
  507. TCHAR szMaxLicenses[ 20 ];
  508. TCHAR szCertificateID[ 20 ];
  509. LPTSTR apszSubstStrings[ 5 ];
  510. DWORD cbViolationServerList;
  511. LPTSTR pszViolationServerList;
  512. // get rid of out-dated entries
  513. CertDbPrune();
  514. hDll = LoadLibrary( TEXT( "LLSRPC.DLL" ) );
  515. ASSERT( NULL != hDll );
  516. if ( NULL != hDll )
  517. {
  518. // format for part of logged message that lists server and #licenses
  519. cch = FormatMessage( FORMAT_MESSAGE_ALLOCATE_BUFFER
  520. | FORMAT_MESSAGE_IGNORE_INSERTS
  521. | FORMAT_MESSAGE_FROM_HMODULE,
  522. hDll,
  523. LLS_EVENT_CERT_VIOLATION_SERVER_ENTRY,
  524. GetSystemDefaultLangID(),
  525. (LPVOID) &pszViolationServerEntryFormat,
  526. 0,
  527. NULL );
  528. if ( 0 != cch )
  529. {
  530. hEventLog = RegisterEventSource( NULL, TEXT("LicenseService") );
  531. if ( NULL != hEventLog )
  532. {
  533. RtlAcquireResourceShared( &CertDbHeaderListLock, TRUE );
  534. for ( iHeader=0; (DWORD)iHeader < CertDbHeaderListSize; iHeader++ )
  535. {
  536. dwTotalQuantity = 0;
  537. // tally the number of licenses claimed against this certificate
  538. for ( iClaim=0; (DWORD)iClaim < CertDbHeaderList[ iHeader ].NumClaims; iClaim++ )
  539. {
  540. if ( dwTotalQuantity + (DWORD)CertDbHeaderList[ iHeader ].Claims[ iClaim ].Quantity < dwTotalQuantity )
  541. {
  542. // overflow!
  543. dwTotalQuantity = ULONG_MAX;
  544. break;
  545. }
  546. else
  547. {
  548. // add to tally
  549. dwTotalQuantity += CertDbHeaderList[ iHeader ].Claims[ iClaim ].Quantity;
  550. }
  551. }
  552. if ( dwTotalQuantity > CertDbHeaderList[ iHeader ].MaxQuantity )
  553. {
  554. // this certificate is in violation
  555. // create message we're going to log
  556. cbViolationServerList = CertDbHeaderList[ iHeader ].NumClaims
  557. * sizeof( TCHAR )
  558. * ( lstrlen( pszViolationServerEntryFormat )
  559. + 20
  560. + MAX_COMPUTERNAME_LENGTH );
  561. pszViolationServerList = LocalAlloc( LPTR, cbViolationServerList );
  562. ASSERT( NULL != pszViolationServerList );
  563. if ( NULL != pszViolationServerList )
  564. {
  565. // create an entry for each server in violation, stringing them
  566. // together in pszViolationServerList
  567. pszNextViolationServerEntry = pszViolationServerList;
  568. for ( iClaim=0; (DWORD)iClaim < CertDbHeaderList[ iHeader ].NumClaims; iClaim++ )
  569. {
  570. _ltow( CertDbHeaderList[ iHeader ].Claims[ iClaim ].Quantity, szNumLicenses, 10 );
  571. apszSubstStrings[ 0 ] = CertDbHeaderList[ iHeader ].Claims[ iClaim ].ServerName;
  572. apszSubstStrings[ 1 ] = szNumLicenses;
  573. cch = FormatMessage( FORMAT_MESSAGE_FROM_STRING
  574. | FORMAT_MESSAGE_ARGUMENT_ARRAY,
  575. pszViolationServerEntryFormat,
  576. (DWORD)0,
  577. (DWORD)0,
  578. pszNextViolationServerEntry,
  579. cbViolationServerList - (DWORD)( pszNextViolationServerEntry - pszViolationServerList ),
  580. (va_list *) apszSubstStrings );
  581. ASSERT( 0 != cch );
  582. pszNextViolationServerEntry += lstrlen( pszNextViolationServerEntry );
  583. }
  584. _ultow( CertDbHeaderList[ iHeader ].CertificateID, szCertificateID, 10 );
  585. _ultow( dwTotalQuantity, szNumLicenses, 10 );
  586. _ultow( CertDbHeaderList[ iHeader ].MaxQuantity, szMaxLicenses, 10 );
  587. apszSubstStrings[ 0 ] = CertDbHeaderList[ iHeader ].Product;
  588. apszSubstStrings[ 1 ] = szCertificateID;
  589. apszSubstStrings[ 2 ] = szNumLicenses;
  590. apszSubstStrings[ 3 ] = szMaxLicenses;
  591. apszSubstStrings[ 4 ] = pszViolationServerList;
  592. // log the violation
  593. if ( NULL != hEventLog )
  594. {
  595. ReportEvent( hEventLog,
  596. EVENTLOG_ERROR_TYPE,
  597. 0,
  598. LLS_EVENT_CERT_VIOLATION,
  599. NULL,
  600. 5,
  601. 0,
  602. apszSubstStrings,
  603. NULL );
  604. }
  605. LocalFree( pszViolationServerList );
  606. }
  607. }
  608. }
  609. RtlReleaseResource( &CertDbHeaderListLock );
  610. LocalFree( pszViolationServerEntryFormat );
  611. DeregisterEventSource( hEventLog );
  612. }
  613. }
  614. FreeLibrary( hDll );
  615. }
  616. }
  617. ///////////////////////////////////////////////////////////////////////////////
  618. NTSTATUS CertDbPack( LPDWORD pcchProductStrings,
  619. LPTSTR * ppchProductStrings,
  620. LPDWORD pdwNumHeaders,
  621. PREPL_CERT_DB_CERTIFICATE_HEADER_0 * ppHeaders,
  622. LPDWORD pdwNumClaims,
  623. PREPL_CERT_DB_CERTIFICATE_CLAIM_0 * ppClaims )
  624. /*++
  625. Routine Description:
  626. Pack the certificate database into manageable chunks that can be saved or
  627. replicated.
  628. Arguments:
  629. pcchProductStrings (LPDWORD)
  630. On return, holds the size (in characters) of the buffer pointed to by
  631. *ppchProductStrings.
  632. ppchProductStrings (LPTSTR *)
  633. On return, points to the buffer containing the product strings component
  634. of the database.
  635. pdwNumHeaders (LPDWORD)
  636. On return, holds the number of certificate headers in the array pointed
  637. to by *ppHeaders.
  638. ppHeaders (PREPL_CERT_DB_CERTIFICATE_HEADER_0 *)
  639. On return, holds a pointer to the certificate header array component of
  640. the database.
  641. pdwNumClaims (LPDWORD)
  642. On return, holds the number of certificate claims in the array pointed
  643. to by *ppHeaders.
  644. ppClaims (PREPL_CERT_DB_CERTIFICATE_CLAIM_0 *)
  645. On return, holds a pointer to the certificate claim array component of
  646. the database.
  647. Return Value:
  648. STATUS_SUCCESS or STATUS_NO_MEMORY.
  649. --*/
  650. {
  651. NTSTATUS nt = STATUS_SUCCESS;
  652. DWORD cchProductStrings = 0;
  653. LPTSTR pchProductStrings = NULL;
  654. DWORD dwNumHeaders = 0;
  655. PREPL_CERT_DB_CERTIFICATE_HEADER_0 pHeaders = NULL;
  656. DWORD dwNumClaims = 0;
  657. PREPL_CERT_DB_CERTIFICATE_CLAIM_0 pClaims = NULL;
  658. LPTSTR pchNextProductString;
  659. int iHeader;
  660. int iClaim;
  661. CertDbPrune();
  662. CertDbUpdateLocalClaims();
  663. RtlAcquireResourceExclusive( &CertDbHeaderListLock, TRUE );
  664. if ( 0 != CertDbHeaderListSize )
  665. {
  666. // how big are all of our strings put together?
  667. // hom many certificate claims are there?
  668. for ( iHeader=0; (DWORD)iHeader < CertDbHeaderListSize; iHeader++ )
  669. {
  670. cchProductStrings += 1 + lstrlen( CertDbHeaderList[ iHeader ].Product );
  671. dwNumClaims += CertDbHeaderList[ iHeader ].NumClaims;
  672. }
  673. dwNumHeaders = CertDbHeaderListSize;
  674. pchProductStrings = LocalAlloc( LMEM_FIXED, cchProductStrings * sizeof( TCHAR ) );
  675. pHeaders = LocalAlloc( LMEM_FIXED, dwNumHeaders * sizeof( REPL_CERT_DB_CERTIFICATE_HEADER_0 ) );
  676. pClaims = LocalAlloc( LMEM_FIXED, dwNumClaims * sizeof( REPL_CERT_DB_CERTIFICATE_CLAIM_0 ) );
  677. if ( ( NULL == pchProductStrings ) || ( NULL == pHeaders ) || ( NULL == pClaims ) )
  678. {
  679. ASSERT( FALSE );
  680. nt = STATUS_NO_MEMORY;
  681. }
  682. else
  683. {
  684. // pack the product strings
  685. pchNextProductString = pchProductStrings;
  686. for ( iHeader=0; (DWORD)iHeader < CertDbHeaderListSize; iHeader++ )
  687. {
  688. lstrcpy( pchNextProductString, CertDbHeaderList[ iHeader ].Product );
  689. pchNextProductString += 1 + lstrlen( pchNextProductString );
  690. }
  691. // now pack away the rest of our structures
  692. iClaim = 0;
  693. for ( iHeader=0; (DWORD)iHeader < CertDbHeaderListSize; iHeader++ )
  694. {
  695. pHeaders[ iHeader ].CertificateID = CertDbHeaderList[ iHeader ].CertificateID;
  696. pHeaders[ iHeader ].MaxQuantity = CertDbHeaderList[ iHeader ].MaxQuantity;
  697. pHeaders[ iHeader ].ExpirationDate = CertDbHeaderList[ iHeader ].ExpirationDate;
  698. pHeaders[ iHeader ].NumClaims = CertDbHeaderList[ iHeader ].NumClaims;
  699. if ( CertDbHeaderList[ iHeader ].NumClaims )
  700. {
  701. memcpy( &pClaims[ iClaim ],
  702. CertDbHeaderList[ iHeader ].Claims,
  703. CertDbHeaderList[ iHeader ].NumClaims * sizeof( LLS_CERT_DB_CERTIFICATE_CLAIM ) );
  704. iClaim += CertDbHeaderList[ iHeader ].NumClaims;
  705. }
  706. }
  707. // all done!
  708. nt = STATUS_SUCCESS;
  709. }
  710. }
  711. if ( STATUS_SUCCESS == nt )
  712. {
  713. *pcchProductStrings = cchProductStrings;
  714. *ppchProductStrings = pchProductStrings;
  715. *pdwNumHeaders = dwNumHeaders;
  716. *ppHeaders = pHeaders;
  717. *pdwNumClaims = dwNumClaims;
  718. *ppClaims = pClaims;
  719. }
  720. else
  721. {
  722. if ( NULL != pchProductStrings ) LocalFree( pchProductStrings );
  723. if ( NULL != pHeaders ) LocalFree( pHeaders );
  724. if ( NULL != pClaims ) LocalFree( pClaims );
  725. }
  726. RtlReleaseResource( &CertDbHeaderListLock );
  727. return nt;
  728. }
  729. ///////////////////////////////////////////////////////////////////////////////
  730. NTSTATUS CertDbUnpack( DWORD cchProductStrings,
  731. LPTSTR pchProductStrings,
  732. DWORD dwNumHeaders,
  733. PREPL_CERT_DB_CERTIFICATE_HEADER_0 pHeaders,
  734. DWORD dwNumClaims,
  735. PREPL_CERT_DB_CERTIFICATE_CLAIM_0 pClaims,
  736. BOOL bReplicated )
  737. /*++
  738. Routine Description:
  739. Pack the certificate database into manageable chunks that can be saved or
  740. replicated.
  741. Arguments:
  742. cchProductStrings (DWORD)
  743. The size (in characters) of the buffer pointed to by pchProductStrings.
  744. pchProductStrings (LPTSTR)
  745. The buffer containing the product strings component of the database.
  746. dwNumHeaders (DWORD)
  747. The number of certificate headers in the array pointed to by pHeaders.
  748. pHeaders (PREPL_CERT_DB_CERTIFICATE_HEADER_0)
  749. The certificate header array component of the database.
  750. dwNumClaims (DWORD)
  751. The number of certificate claims in the array pointed to by pHeaders.
  752. pClaims (PREPL_CERT_DB_CERTIFICATE_CLAIM_0)
  753. The certificate claim array component of the database.
  754. bReplicated (BOOL)
  755. Indicates whether this information was replicated. This is used to
  756. determine the time at which this information will expire.
  757. Return Value:
  758. STATUS_SUCCESS or NTSTATUS error code.
  759. --*/
  760. {
  761. NTSTATUS nt = STATUS_SUCCESS;
  762. LPTSTR pchNextProductString;
  763. LPBYTE pb;
  764. int iHeader;
  765. int iClaim;
  766. int iClaimBase;
  767. LLS_LICENSE_INFO_1 lic;
  768. TCHAR szComputerName[ 1 + MAX_COMPUTERNAME_LENGTH ];
  769. DWORD cchComputerName = sizeof( szComputerName ) / sizeof( *szComputerName );
  770. BOOL ok;
  771. ok = GetComputerName( szComputerName, &cchComputerName );
  772. ASSERT( ok );
  773. if ( !ok )
  774. {
  775. // in this case, we'll just add in the local entries, too
  776. // under normal circumstances (i.e., as long as the cert db isn't corrupt),
  777. // this is harmless and is preferrable to failing to unpack
  778. *szComputerName = TEXT( '\0' );
  779. }
  780. RtlAcquireResourceExclusive( &CertDbHeaderListLock, TRUE );
  781. pchNextProductString = pchProductStrings;
  782. // these fields are irrelevant!
  783. lic.Date = 0;
  784. lic.Admin = NULL;
  785. lic.Comment = NULL;
  786. lic.Vendor = NULL;
  787. lic.Source = NULL;
  788. lic.AllowedModes = 0;
  789. iClaimBase = 0;
  790. for ( iHeader=0; (DWORD)iHeader < dwNumHeaders; iHeader++ )
  791. {
  792. if ( 0 != pHeaders[ iHeader ].NumClaims )
  793. {
  794. // certificate-specific fields
  795. lic.Product = pchNextProductString;
  796. lic.CertificateID = pHeaders[ iHeader ].CertificateID;
  797. lic.MaxQuantity = pHeaders[ iHeader ].MaxQuantity;
  798. lic.ExpirationDate = pHeaders[ iHeader ].ExpirationDate;
  799. for ( iClaim=0; (DWORD)iClaim < pHeaders[ iHeader ].NumClaims; iClaim++ )
  800. {
  801. if ( lstrcmpi( szComputerName, pClaims[ iClaimBase + iClaim ].ServerName ) )
  802. {
  803. // not the local server
  804. // claim-specific field
  805. lic.Quantity = pClaims[ iClaimBase + iClaim ].Quantity;
  806. nt = CertDbClaimEnter( pClaims[ iClaimBase + iClaim ].ServerName, &lic, TRUE, bReplicated ? 0 : pClaims[ iClaimBase + iClaim ].ReplicationDate );
  807. ASSERT( STATUS_SUCCESS == nt );
  808. // even if we encounter an error, go ahead and unpack the rest of the records
  809. }
  810. }
  811. iClaimBase += pHeaders[ iHeader ].NumClaims;
  812. }
  813. pchNextProductString += 1 + lstrlen( pchNextProductString );
  814. }
  815. RtlReleaseResource( &CertDbHeaderListLock );
  816. return nt;
  817. }
  818. ///////////////////////////////////////////////////////////////////////////////
  819. NTSTATUS CertDbSave()
  820. /*++
  821. Routine Description:
  822. Save the certificate database.
  823. Arguments:
  824. None.
  825. Return Value:
  826. STATUS_SUCCESS, Windows error, or NTSTATUS error code.
  827. --*/
  828. {
  829. NTSTATUS nt;
  830. LLS_CERT_DB_FILE_HEADER FileHeader;
  831. DWORD cchProductStrings = 0;
  832. LPTSTR pchProductStrings = NULL;
  833. DWORD dwNumHeaders = 0;
  834. PREPL_CERT_DB_CERTIFICATE_HEADER_0 pHeaders = NULL;
  835. DWORD dwNumClaims = 0;
  836. PREPL_CERT_DB_CERTIFICATE_CLAIM_0 pClaims = NULL;
  837. DWORD dwBytesWritten;
  838. BOOL ok;
  839. nt = CertDbPack( &cchProductStrings, &pchProductStrings, &dwNumHeaders, &pHeaders, &dwNumClaims, &pClaims );
  840. if ( STATUS_SUCCESS == nt )
  841. {
  842. if ( dwNumHeaders )
  843. {
  844. nt = EBlock( pchProductStrings, cchProductStrings * sizeof( TCHAR ) );
  845. if ( STATUS_SUCCESS == nt )
  846. {
  847. nt = EBlock( pHeaders, sizeof( REPL_CERT_DB_CERTIFICATE_HEADER_0 ) * dwNumHeaders );
  848. if ( STATUS_SUCCESS == nt )
  849. {
  850. nt = EBlock( pClaims, sizeof( REPL_CERT_DB_CERTIFICATE_CLAIM_0 ) * dwNumClaims );
  851. if ( STATUS_SUCCESS == nt )
  852. {
  853. if ( NULL != CertDbFile )
  854. {
  855. CloseHandle( CertDbFile );
  856. }
  857. CertDbFile = LlsFileInit( CertDbFileName, LLS_CERT_DB_FILE_VERSION, sizeof( LLS_CERT_DB_FILE_HEADER ) );
  858. if ( NULL == CertDbFile )
  859. {
  860. nt = GetLastError();
  861. }
  862. else
  863. {
  864. FileHeader.NumCertificates = dwNumHeaders;
  865. FileHeader.ProductStringSize = cchProductStrings;
  866. FileHeader.NumClaims = dwNumClaims;
  867. ok = WriteFile( CertDbFile, &FileHeader, sizeof( FileHeader ), &dwBytesWritten, NULL );
  868. if ( ok )
  869. {
  870. ok = WriteFile( CertDbFile, pchProductStrings, FileHeader.ProductStringSize * sizeof( TCHAR ), &dwBytesWritten, NULL );
  871. if ( ok )
  872. {
  873. ok = WriteFile( CertDbFile, pHeaders, sizeof( REPL_CERT_DB_CERTIFICATE_HEADER_0 ) * FileHeader.NumCertificates, &dwBytesWritten, NULL );
  874. if ( ok )
  875. {
  876. ok = WriteFile( CertDbFile, pClaims, sizeof( REPL_CERT_DB_CERTIFICATE_CLAIM_0 ) * FileHeader.NumClaims, &dwBytesWritten, NULL );
  877. }
  878. }
  879. }
  880. if ( !ok )
  881. {
  882. nt = GetLastError();
  883. }
  884. }
  885. }
  886. }
  887. }
  888. LocalFree( pchProductStrings );
  889. LocalFree( pHeaders );
  890. LocalFree( pClaims );
  891. }
  892. }
  893. if ( STATUS_SUCCESS != nt )
  894. {
  895. LogEvent( LLS_EVENT_SAVE_CERT_DB, 0, NULL, nt );
  896. }
  897. return nt;
  898. }
  899. ///////////////////////////////////////////////////////////////////////////////
  900. NTSTATUS CertDbLoad()
  901. /*++
  902. Routine Description:
  903. Load the certificate database.
  904. Arguments:
  905. None.
  906. Return Value:
  907. STATUS_SUCCESS, Windows error, or NTSTATUS error code.
  908. --*/
  909. {
  910. NTSTATUS nt = STATUS_SUCCESS;
  911. DWORD dwVersion;
  912. DWORD dwDataSize;
  913. LLS_CERT_DB_FILE_HEADER FileHeader;
  914. LPTSTR pchProductStrings = NULL;
  915. PREPL_CERT_DB_CERTIFICATE_HEADER_0 pHeaders = NULL;
  916. PREPL_CERT_DB_CERTIFICATE_CLAIM_0 pClaims = NULL;
  917. DWORD dwBytesRead;
  918. BOOL ok;
  919. if ( NULL != CertDbFile )
  920. {
  921. CloseHandle( CertDbFile );
  922. CertDbFile = NULL;
  923. }
  924. if ( FileExists( CertDbFileName ) )
  925. {
  926. CertDbFile = LlsFileCheck( CertDbFileName, &dwVersion, &dwDataSize );
  927. if ( NULL == CertDbFile )
  928. {
  929. nt = GetLastError();
  930. }
  931. else if ( ( LLS_CERT_DB_FILE_VERSION != dwVersion )
  932. || ( sizeof( FileHeader ) != dwDataSize ) )
  933. {
  934. nt = STATUS_FILE_INVALID;
  935. }
  936. else
  937. {
  938. ok = ReadFile( CertDbFile, &FileHeader, sizeof( FileHeader ), &dwBytesRead, NULL );
  939. if ( !ok )
  940. {
  941. nt = GetLastError();
  942. }
  943. else if ( FileHeader.NumCertificates )
  944. {
  945. pchProductStrings = LocalAlloc( LMEM_FIXED, sizeof( TCHAR ) * FileHeader.ProductStringSize );
  946. pHeaders = LocalAlloc( LMEM_FIXED, sizeof( REPL_CERT_DB_CERTIFICATE_HEADER_0 ) * FileHeader.NumCertificates );
  947. pClaims = LocalAlloc( LMEM_FIXED, sizeof( REPL_CERT_DB_CERTIFICATE_CLAIM_0 ) * FileHeader.NumClaims );
  948. if ( ( NULL == pchProductStrings ) || ( NULL == pHeaders ) || ( NULL == pClaims ) )
  949. {
  950. ASSERT( FALSE );
  951. nt = STATUS_NO_MEMORY;
  952. }
  953. else
  954. {
  955. ok = ReadFile( CertDbFile, pchProductStrings, FileHeader.ProductStringSize * sizeof( TCHAR ), &dwBytesRead, NULL );
  956. if ( ok )
  957. {
  958. ok = ReadFile( CertDbFile, pHeaders, sizeof( REPL_CERT_DB_CERTIFICATE_HEADER_0 ) * FileHeader.NumCertificates, &dwBytesRead, NULL );
  959. if ( ok )
  960. {
  961. ok = ReadFile( CertDbFile, pClaims, sizeof( REPL_CERT_DB_CERTIFICATE_CLAIM_0 ) * FileHeader.NumClaims, &dwBytesRead, NULL );
  962. }
  963. }
  964. if ( !ok )
  965. {
  966. nt = GetLastError();
  967. }
  968. else
  969. {
  970. nt = DeBlock( pchProductStrings, sizeof( TCHAR ) * FileHeader.ProductStringSize );
  971. if ( STATUS_SUCCESS == nt )
  972. {
  973. nt = DeBlock( pHeaders, sizeof( REPL_CERT_DB_CERTIFICATE_HEADER_0 ) * FileHeader.NumCertificates );
  974. if ( STATUS_SUCCESS == nt )
  975. {
  976. nt = DeBlock( pClaims, sizeof( REPL_CERT_DB_CERTIFICATE_CLAIM_0 ) * FileHeader.NumClaims );
  977. if ( STATUS_SUCCESS == nt )
  978. {
  979. nt = CertDbUnpack( FileHeader.ProductStringSize,
  980. pchProductStrings,
  981. FileHeader.NumCertificates,
  982. pHeaders,
  983. FileHeader.NumClaims,
  984. pClaims,
  985. FALSE );
  986. }
  987. }
  988. }
  989. }
  990. }
  991. }
  992. }
  993. }
  994. if ( NULL != pchProductStrings ) LocalFree( pchProductStrings );
  995. if ( NULL != pHeaders ) LocalFree( pHeaders );
  996. if ( NULL != pClaims ) LocalFree( pClaims );
  997. if ( STATUS_SUCCESS != nt )
  998. {
  999. LogEvent( LLS_EVENT_LOAD_CERT_DB, 0, NULL, nt );
  1000. }
  1001. else
  1002. {
  1003. CertDbPrune();
  1004. }
  1005. return nt;
  1006. }
  1007. ///////////////////////////////////////////////////////////////////////////////
  1008. NTSTATUS CertDbInit()
  1009. /*++
  1010. Routine Description:
  1011. Initialize the certificate database.
  1012. Arguments:
  1013. None.
  1014. Return Value:
  1015. STATUS_SUCCESS.
  1016. --*/
  1017. {
  1018. CertDbFile = NULL;
  1019. try
  1020. {
  1021. RtlInitializeResource( &CertDbHeaderListLock );
  1022. } except(EXCEPTION_EXECUTE_HANDLER ) {
  1023. return GetExceptionCode();
  1024. }
  1025. return STATUS_SUCCESS;
  1026. }
  1027. ///////////////////////////////////////////////////////////////////////////////
  1028. void CertDbUpdateLocalClaims()
  1029. /*++
  1030. Routine Description:
  1031. Synchronize the certificate database with the purchase history.
  1032. Arguments:
  1033. None.
  1034. Return Value:
  1035. None.
  1036. --*/
  1037. {
  1038. DWORD dwPurchaseNdx;
  1039. LLS_LICENSE_INFO_1 lic;
  1040. PLICENSE_PURCHASE_RECORD pPurchase;
  1041. RtlAcquireResourceExclusive( &LicenseListLock, TRUE );
  1042. RtlAcquireResourceExclusive( &CertDbHeaderListLock, TRUE );
  1043. // first dump all current entries for the local server
  1044. CertDbRemoveLocalClaims();
  1045. // these fields are irrelevant!
  1046. lic.Date = 0;
  1047. lic.Admin = NULL;
  1048. lic.Comment = NULL;
  1049. lic.Source = NULL;
  1050. lic.Vendor = NULL;
  1051. lic.AllowedModes = 0;
  1052. // add in all secure purchases
  1053. for ( dwPurchaseNdx = 0; dwPurchaseNdx < PurchaseListSize; dwPurchaseNdx++ )
  1054. {
  1055. pPurchase = &PurchaseList[ dwPurchaseNdx ];
  1056. if ( 0 != pPurchase->CertificateID )
  1057. {
  1058. lic.Product = ( pPurchase->AllowedModes & LLS_LICENSE_MODE_ALLOW_PER_SEAT )
  1059. ? pPurchase->Service->ServiceName
  1060. : pPurchase->PerServerService->ServiceName;
  1061. lic.CertificateID = pPurchase->CertificateID;
  1062. lic.MaxQuantity = pPurchase->MaxQuantity;
  1063. lic.ExpirationDate = pPurchase->ExpirationDate;
  1064. lic.Quantity = pPurchase->NumberLicenses;
  1065. CertDbClaimEnter( NULL, &lic, FALSE, 0 );
  1066. }
  1067. }
  1068. RtlReleaseResource( &CertDbHeaderListLock );
  1069. RtlReleaseResource( &LicenseListLock );
  1070. }
  1071. ///////////////////////////////////////////////////////////////////////////////
  1072. NTSTATUS CertDbClaimsGet( PLLS_LICENSE_INFO_1 pLicense,
  1073. LPDWORD pdwNumClaims,
  1074. PLLS_CERTIFICATE_CLAIM_INFO_0 * ppTargets )
  1075. /*++
  1076. Routine Description:
  1077. Retrieve a list of all servers with licenses installed from a given
  1078. certificate and the number of licenses installed on each.
  1079. Arguments:
  1080. pLicense (PLLS_LICENSE_INFO_1)
  1081. License describing the certificate for which the claims are sought.
  1082. pdwNumClaims (LPDWORD)
  1083. On return, holds the number of claims in the array pointed to by
  1084. *ppTargets.
  1085. ppTargets (PLLS_CERTIFICATE_CLAIM_INFO_0 *)
  1086. On return, holds an array describing all claims made on this
  1087. certificate.
  1088. Return Value:
  1089. STATUS_SUCCESS
  1090. STATUS_NOT_FOUND
  1091. STATUS_NO_MEMORY
  1092. --*/
  1093. {
  1094. NTSTATUS nt;
  1095. PLLS_CERT_DB_CERTIFICATE_HEADER pHeader;
  1096. int iClaim;
  1097. // is the certificate in the db?
  1098. pHeader = CertDbHeaderFind( pLicense );
  1099. if ( NULL == pHeader )
  1100. {
  1101. // not here!
  1102. nt = STATUS_NOT_FOUND;
  1103. }
  1104. else
  1105. {
  1106. *ppTargets = MIDL_user_allocate( pHeader->NumClaims * sizeof( LLS_CERTIFICATE_CLAIM_INFO_0 ) );
  1107. if ( NULL == *ppTargets )
  1108. {
  1109. nt = STATUS_NO_MEMORY;
  1110. }
  1111. else
  1112. {
  1113. *pdwNumClaims = pHeader->NumClaims;
  1114. for ( iClaim=0; (DWORD)iClaim < pHeader->NumClaims; iClaim++ )
  1115. {
  1116. lstrcpy( (*ppTargets)[ iClaim ].ServerName, pHeader->Claims[ iClaim ].ServerName );
  1117. (*ppTargets)[ iClaim ].Quantity = pHeader->Claims[ iClaim ].Quantity;
  1118. }
  1119. nt = STATUS_SUCCESS;
  1120. }
  1121. }
  1122. return nt;
  1123. }
  1124. #if DBG
  1125. /////////////////////////////////////////////////////////////////////////
  1126. void CertDbDebugDump()
  1127. /*++
  1128. Routine Description:
  1129. Dump contents of certificate database to debug console.
  1130. Arguments:
  1131. None.
  1132. Return Value:
  1133. None.
  1134. --*/
  1135. {
  1136. int iHeader;
  1137. int iClaim;
  1138. RtlAcquireResourceShared( &CertDbHeaderListLock, TRUE );
  1139. for ( iHeader=0; (DWORD)iHeader < CertDbHeaderListSize; iHeader++ )
  1140. {
  1141. dprintf( TEXT("\n(%3d) Product : %s\n"), iHeader, CertDbHeaderList[ iHeader ].Product );
  1142. dprintf( TEXT(" CertificateID : %d\n"), CertDbHeaderList[ iHeader ].CertificateID );
  1143. dprintf( TEXT(" MaxQuantity : %d\n"), CertDbHeaderList[ iHeader ].MaxQuantity );
  1144. dprintf( TEXT(" ExpirationDate : %s\n"), TimeToString( CertDbHeaderList[ iHeader ].ExpirationDate ) );
  1145. for ( iClaim=0; (DWORD)iClaim < CertDbHeaderList[ iHeader ].NumClaims; iClaim++ )
  1146. {
  1147. dprintf( TEXT("\n (%3d) ServerName : %s\n"), iClaim, CertDbHeaderList[ iHeader ].Claims[ iClaim ].ServerName );
  1148. dprintf( TEXT(" ReplicationDate : %s\n"), TimeToString( CertDbHeaderList[ iHeader ].Claims[ iClaim ].ReplicationDate ) );
  1149. dprintf( TEXT(" Quantity : %d\n"), CertDbHeaderList[ iHeader ].Claims[ iClaim ].Quantity );
  1150. }
  1151. }
  1152. RtlReleaseResource( &CertDbHeaderListLock );
  1153. } // CertDbDebugDump
  1154. #endif