archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
8 Commits
1 Branch
0 Tags
2.0 GiB
Tree: 744f0b4006
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '744f0b4006'
${ noResults }
windows-xp/Source/XPSP1/NT/ds/security/services/ca/certclib/dstest.cpp

285 lines
6.6 KiB
Raw Normal View History

Add source files
4 years ago
  1. //+--------------------------------------------------------------------------
  2. //
  3. // Microsoft Windows
  4. // Copyright (C) Microsoft Corporation, 1996 - 1999
  5. //
  6. // File: dstest.cpp
  7. //
  8. // Contents: DS ping test
  9. //
  10. // History: 13-Mar-98 mattt created
  11. //
  12. //---------------------------------------------------------------------------
  14. #include "pch.cpp"
  16. #pragma hdrstop
  18. #include <winldap.h>
  19. #include <dsrole.h>
  20. #include <dsgetdc.h>
  22. #include <lmaccess.h>
  23. #include <lmapibuf.h>
  24. #include <cainfop.h>
  25. #include "csldap.h"
  27. #define __dwFILE__ __dwFILE_CERTCLIB_DSTEST_CPP__
  30. #define DS_RETEST_SECONDS 3
  32. HRESULT
  33. myDoesDSExist(
  34. IN BOOL fRetry)
  35. {
  36. HRESULT hr = S_OK;
  38. static BOOL s_fKnowDSExists = FALSE;
  39. static HRESULT s_hrDSExists = HRESULT_FROM_WIN32(ERROR_NO_SUCH_DOMAIN);
  40. static FILETIME s_ftNextTest = {0,0};
  42. if (s_fKnowDSExists && (s_hrDSExists != S_OK) && fRetry)
  43. // s_fKnowDSExists = FALSE; // force a retry
  44. {
  45. FILETIME ftCurrent;
  46. GetSystemTimeAsFileTime(&ftCurrent);
  48. // if Compare is < 0 (next < current), force retest
  49. if (0 > CompareFileTime(&s_ftNextTest, &ftCurrent))
  50. s_fKnowDSExists = FALSE;
  51. }
  53. if (!s_fKnowDSExists)
  54. {
  55. GetSystemTimeAsFileTime(&s_ftNextTest);
  57. // set NEXT in 100ns increments
  59. ((LARGE_INTEGER *) &s_ftNextTest)->QuadPart +=
  60. (__int64) (CVT_BASE * CVT_SECONDS * 60) * DS_RETEST_SECONDS;
  62. // NetApi32 is delay loaded, so wrap to catch problems when it's not available
  63. __try
  64. {
  65. DOMAIN_CONTROLLER_INFO *pDCI;
  66. DSROLE_PRIMARY_DOMAIN_INFO_BASIC *pDsRole;
  68. // ensure we're not standalone
  69. pDsRole = NULL;
  70. hr = DsRoleGetPrimaryDomainInformation( // Delayload wrapped
  71. NULL,
  72. DsRolePrimaryDomainInfoBasic,
  73. (BYTE **) &pDsRole);
  75. _PrintIfError(hr, "DsRoleGetPrimaryDomainInformation");
  76. if (S_OK == hr &&
  77. (pDsRole->MachineRole == DsRole_RoleStandaloneServer ||
  78. pDsRole->MachineRole == DsRole_RoleStandaloneWorkstation))
  79. {
  80. hr = HRESULT_FROM_WIN32(ERROR_NO_SUCH_DOMAIN);
  81. _PrintError(hr, "DsRoleGetPrimaryDomainInformation(no domain)");
  82. }
  84. if (NULL != pDsRole)
  85. {
  86. DsRoleFreeMemory(pDsRole); // Delayload wrapped
  87. }
  88. if (S_OK == hr)
  89. {
  90. // not standalone; return info on our DS
  92. pDCI = NULL;
  93. hr = DsGetDcName( // Delayload wrapped
  94. NULL,
  95. NULL,
  96. NULL,
  97. NULL,
  98. DS_DIRECTORY_SERVICE_PREFERRED,
  99. &pDCI);
  100. _PrintIfError(hr, "DsGetDcName");
  102. if (S_OK == hr && 0 == (pDCI->Flags & DS_DS_FLAG))
  103. {
  104. hr = HRESULT_FROM_WIN32(ERROR_CANT_ACCESS_DOMAIN_INFO);
  105. _PrintError(hr, "DsGetDcName(no domain info)");
  106. }
  107. if (NULL != pDCI)
  108. {
  109. NetApiBufferFree(pDCI); // Delayload wrapped
  110. }
  111. }
  112. s_fKnowDSExists = TRUE;
  113. }
  114. __except(hr = myHEXCEPTIONCODE(), EXCEPTION_EXECUTE_HANDLER)
  115. {
  116. }
  118. // else just allow users without netapi flounder with timeouts
  119. // if ds not available...
  121. s_hrDSExists = myHError(hr);
  122. _PrintIfError2(
  123. s_hrDSExists,
  124. "DsRoleGetPrimaryDomainInformation/DsGetDcName",
  125. HRESULT_FROM_WIN32(ERROR_NETWORK_UNREACHABLE));
  126. }
  127. return(s_hrDSExists);
  128. }
  131. HRESULT
  132. myRobustLdapBind(
  133. OUT LDAP **ppldap,
  134. IN BOOL fGC)
  135. {
  136. return(myRobustLdapBindEx(fGC, FALSE, LDAP_VERSION2, NULL, ppldap, NULL));
  137. }
  140. HRESULT
  141. myRobustLdapBindEx(
  142. IN BOOL fGC,
  143. IN BOOL fRediscover,
  144. IN ULONG uVersion,
  145. OPTIONAL IN WCHAR const *pwszDomainName,
  146. OUT LDAP **ppldap,
  147. OPTIONAL OUT WCHAR **ppwszForestDNSName)
  148. {
  149. HRESULT hr;
  150. ULONG ldaperr;
  151. DWORD GetDSNameFlags;
  152. LDAP *pld = NULL;
  154. GetDSNameFlags = DS_RETURN_DNS_NAME;
  155. if (fGC)
  156. {
  157. GetDSNameFlags |= DS_GC_SERVER_REQUIRED;
  158. }
  160. // bind to ds
  162. while (TRUE)
  163. {
  164. if (NULL != pld)
  165. {
  166. ldap_unbind(pld);
  167. }
  169. pld = ldap_init(
  170. const_cast<WCHAR *>(pwszDomainName),
  171. fGC? LDAP_GC_PORT : LDAP_PORT);
  172. if (NULL == pld)
  173. {
  174. hr = myHLdapLastError(NULL, NULL);
  175. if (!fRediscover)
  176. {
  177. _PrintError2(hr, "ldap_init", hr);
  178. fRediscover = TRUE;
  179. continue;
  180. }
  181. _JumpError(hr, error, "ldap_init");
  182. }
  184. if (fRediscover)
  185. {
  186. GetDSNameFlags |= DS_FORCE_REDISCOVERY;
  187. }
  188. ldaperr = ldap_set_option(
  189. pld,
  190. LDAP_OPT_GETDSNAME_FLAGS,
  191. (VOID *) &GetDSNameFlags);
  192. if (LDAP_SUCCESS != ldaperr)
  193. {
  194. hr = myHLdapError(pld, ldaperr, NULL);
  195. if (!fRediscover)
  196. {
  197. _PrintError2(hr, "ldap_set_option", hr);
  198. fRediscover = TRUE;
  199. continue;
  200. }
  201. _JumpError(hr, error, "ldap_set_option");
  202. }
  204. // do not want this to turn on if uVersion is not LDAP_VERSION2
  206. //if (LDAP_VERSION2 == uVersion)
  207. if (IsWhistler())
  208. {
  209. ldaperr = ldap_set_option(pld, LDAP_OPT_SIGN, LDAP_OPT_ON);
  210. if (LDAP_SUCCESS != ldaperr)
  211. {
  212. hr = myHLdapError2(pld, ldaperr, LDAP_PARAM_ERROR, NULL);
  213. if (!fRediscover)
  214. {
  215. _PrintError2(hr, "ldap_set_option", hr);
  216. fRediscover = TRUE;
  217. continue;
  218. }
  219. _JumpError(hr, error, "ldap_set_option");
  220. }
  221. }
  223. // set the client version. No need to set LDAP_VERSION2 since
  224. // this is the default
  226. if (LDAP_VERSION2 != uVersion)
  227. {
  228. ldaperr = ldap_set_option(pld, LDAP_OPT_VERSION, &uVersion);
  229. if (LDAP_SUCCESS != ldaperr)
  230. {
  231. hr = myHLdapError(pld, ldaperr, NULL);
  232. if (!fRediscover)
  233. {
  234. _PrintError2(hr, "ldap_set_option", hr);
  235. fRediscover = TRUE;
  236. continue;
  237. }
  238. _JumpError(hr, error, "ldap_set_option");
  239. }
  240. }
  242. ldaperr = ldap_bind_s(pld, NULL, NULL, LDAP_AUTH_NEGOTIATE);
  243. if (LDAP_SUCCESS != ldaperr)
  244. {
  245. hr = myHLdapError(pld, ldaperr, NULL);
  246. if (!fRediscover)
  247. {
  248. _PrintError2(hr, "ldap_bind_s", hr);
  249. fRediscover = TRUE;
  250. continue;
  251. }
  252. _JumpError(hr, error, "ldap_bind_s");
  253. }
  255. if (NULL != ppwszForestDNSName)
  256. {
  257. WCHAR *pwszDomainControllerName;
  259. hr = myLdapGetDSHostName(pld, &pwszDomainControllerName);
  260. if (S_OK != hr)
  261. {
  262. if (!fRediscover)
  263. {
  264. _PrintError2(hr, "myLdapGetDSHostName", hr);
  265. fRediscover = TRUE;
  266. continue;
  267. }
  268. _JumpError(hr, error, "myLdapGetDSHostName");
  269. }
  270. hr = myDupString(pwszDomainControllerName, ppwszForestDNSName);
  271. _JumpIfError(hr, error, "myDupString");
  272. }
  273. break;
  274. }
  275. *ppldap = pld;
  276. pld = NULL;
  277. hr = S_OK;
  279. error:
  280. if (NULL != pld)
  281. {
  282. ldap_unbind(pld);
  283. }
  284. return(hr);
  285. }