archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
8 Commits
1 Branch
0 Tags
2.0 GiB
Tree: 744f0b4006
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '744f0b4006'
${ noResults }
windows-xp/Source/XPSP1/NT/ds/security/services/ca/certlib/certsd.cpp

316 lines
6.6 KiB
Raw Normal View History

Add source files
4 years ago
  1. //+--------------------------------------------------------------------------
  2. // File: certsd.cpp
  3. // Contents: CA's security descriptor class implementation
  4. //---------------------------------------------------------------------------
  5. #include <pch.cpp>
  6. #pragma hdrstop
  7. #include "certsd.h"
  8. #include "certacl.h"
  10. #define __dwFILE__ __dwFILE_CERTLIB_CERTSD_CPP__
  12. using namespace CertSrv;
  14. HRESULT
  15. CProtectedSecurityDescriptor::Init(LPCWSTR pwszSanitizedName)
  16. {
  17. HRESULT hr = S_OK;
  18. CSASSERT(!m_fInitialized);
  20. __try
  21. {
  22. InitializeCriticalSection(&m_csWrite);
  23. }
  24. __except(hr = myHEXCEPTIONCODE(), EXCEPTION_EXECUTE_HANDLER)
  25. {
  26. }
  27. _JumpIfError(hr, error, "InitializeCriticalSection");
  29. m_hevtNoReaders = CreateEvent(
  30. NULL,
  31. TRUE,
  32. TRUE,
  33. NULL);
  34. if(NULL==m_hevtNoReaders)
  35. {
  36. hr = myHLastError();
  37. _JumpError(hr, error, "CreateEvent");
  38. }
  40. m_pcwszSanitizedName = pwszSanitizedName;
  42. error:
  43. return hr;
  44. }
  46. HRESULT
  47. CProtectedSecurityDescriptor::SetSD(const PSECURITY_DESCRIPTOR pSD)
  48. {
  49. HRESULT hr = S_OK;
  50. DWORD dwSize = 0;
  51. SECURITY_DESCRIPTOR_CONTROL SDCtrl;
  52. DWORD dwRev;
  54. CSASSERT(NULL==m_pSD);
  56. if(pSD)
  57. {
  58. if(!IsValidSecurityDescriptor(pSD))
  59. {
  60. hr = E_INVALIDARG;
  61. _JumpError(hr, error, "IsValidSecurityDescriptor");
  62. }
  64. if(!GetSecurityDescriptorControl(pSD, &SDCtrl, &dwRev))
  65. {
  66. hr = myHLastError();
  67. _JumpError(hr, error, "GetSecurityDescriptorControl");
  68. }
  70. // always keep the SD in self relative form
  71. if(!(SDCtrl&SE_SELF_RELATIVE))
  72. {
  73. if(!MakeSelfRelativeSD(pSD, NULL, &dwSize))
  74. {
  75. m_pSD = (PSECURITY_DESCRIPTOR)LocalAlloc(LMEM_FIXED, dwSize);
  76. if(NULL == m_pSD)
  77. {
  78. hr = E_OUTOFMEMORY;
  79. _JumpError(hr, error, "LocalAlloc");
  80. }
  82. if(!MakeSelfRelativeSD(pSD, m_pSD, &dwSize))
  83. {
  84. hr = myHLastError();
  85. _JumpError(hr, error, "LocalAlloc");
  86. }
  87. }
  88. }
  89. else
  90. {
  91. dwSize = GetSecurityDescriptorLength(pSD);
  93. m_pSD = (PSECURITY_DESCRIPTOR)LocalAlloc(LMEM_FIXED, dwSize);
  94. if(NULL == m_pSD)
  95. {
  96. hr = E_OUTOFMEMORY;
  97. _JumpError(hr, error, "LocalAlloc");
  98. }
  99. CopyMemory(m_pSD, pSD, dwSize);
  100. }
  101. }
  103. error:
  104. return hr;
  105. }
  107. HRESULT
  108. CProtectedSecurityDescriptor::Initialize(LPCWSTR pwszSanitizedName)
  109. {
  110. HRESULT hr = S_OK;
  112. CSASSERT(!m_fInitialized);
  114. hr = Init(pwszSanitizedName);
  115. _JumpIfError(hr, error, "CProtectedSecurityDescriptor::Init");
  117. m_fInitialized = true;
  119. hr = Load();
  120. if(HRESULT_FROM_WIN32(ERROR_FILE_NOT_FOUND)==hr)
  121. hr = S_OK;
  122. _JumpIfError(hr, error, "CProtectedSecurityDescriptor::Load");
  124. error:
  125. return hr;
  126. }
  128. HRESULT
  129. CProtectedSecurityDescriptor::Initialize(
  130. PSECURITY_DESCRIPTOR pSD,
  131. LPCWSTR pwszSanitizedName)
  132. {
  133. HRESULT hr = S_OK;
  134. DWORD dwSDLen;
  136. CSASSERT(!m_fInitialized);
  138. hr = Init(pwszSanitizedName);
  139. _JumpIfError(hr, error, "CProtectedSecurityDescriptor::Init");
  141. hr = SetSD(pSD);
  142. _JumpIfError(hr, error, "CProtectedSecurityDescriptor::SetSD");
  144. m_fInitialized = true;
  146. error:
  147. return hr;
  148. }
  150. HRESULT
  151. CProtectedSecurityDescriptor::InitializeFromTemplate(
  152. LPCWSTR pcwszTemplate,
  153. LPCWSTR pwszSanitizedName)
  154. {
  155. HRESULT hr = S_OK;
  156. DWORD dwSDLen;
  158. CSASSERT(!m_fInitialized);
  160. hr = Init(pwszSanitizedName);
  161. _JumpIfError(hr, error, "CProtectedSecurityDescriptor::Init");
  163. hr = myGetSDFromTemplate(
  164. pcwszTemplate,
  165. NULL,
  166. &m_pSD);
  167. _JumpIfError(hr, error, "myGetSDFromTemplate");
  169. m_fInitialized = true;
  171. error:
  172. return hr;
  173. }
  175. HRESULT
  176. CProtectedSecurityDescriptor::Load()
  177. {
  178. HRESULT hr = S_OK;
  179. PSECURITY_DESCRIPTOR pSD = NULL;
  181. CSASSERT(m_fInitialized);
  183. hr = myGetCertRegBinaryValue(m_pcwszSanitizedName,
  184. NULL,
  185. NULL,
  186. GetPersistRegistryVal(),
  187. (BYTE**)&pSD);
  188. if(S_OK!=hr)
  189. {
  190. return hr;
  191. }
  193. if(!IsValidSecurityDescriptor(pSD))
  194. {
  195. LocalFree(pSD);
  196. return E_UNEXPECTED;
  197. }
  199. if(m_pSD)
  200. {
  201. LocalFree(m_pSD);
  202. }
  204. m_pSD = pSD;
  206. return S_OK;
  207. }
  209. HRESULT
  210. CProtectedSecurityDescriptor::Save()
  211. {
  212. HRESULT hr = S_OK;
  213. DWORD cbLength = GetSecurityDescriptorLength(m_pSD);
  215. CSASSERT(m_fInitialized);
  217. hr = mySetCertRegValue(
  218. NULL,
  219. m_pcwszSanitizedName,
  220. NULL,
  221. NULL,
  222. GetPersistRegistryVal(),
  223. REG_BINARY,
  224. (BYTE const *) m_pSD,
  225. cbLength,
  226. FALSE);
  227. _JumpIfError(hr, error, "mySetCertRegValue");
  229. error:
  230. return hr;
  231. }
  233. HRESULT
  234. CProtectedSecurityDescriptor::Delete()
  235. {
  236. HRESULT hr = S_OK;
  238. CSASSERT(m_fInitialized);
  240. hr = myDeleteCertRegValue(
  241. m_pcwszSanitizedName,
  242. NULL,
  243. NULL,
  244. GetPersistRegistryVal());
  245. _JumpIfError(hr, error, "myDeleteCertRegValue");
  247. error:
  248. return hr;
  249. }
  251. HRESULT
  252. CProtectedSecurityDescriptor::Set(const PSECURITY_DESCRIPTOR pSD)
  253. {
  254. HRESULT hr = S_OK;
  255. CSASSERT(m_fInitialized);
  256. if(!IsValidSecurityDescriptor(pSD))
  257. {
  258. hr = E_INVALIDARG;
  259. _JumpError(hr, error, "IsValidSecurityDescriptor");
  260. }
  262. __try
  263. {
  264. EnterCriticalSection(&m_csWrite);
  265. WaitForSingleObject(&m_hevtNoReaders, INFINITE);
  266. if(m_pSD)
  267. {
  268. LocalFree(m_pSD);
  269. m_pSD = NULL;
  270. }
  271. hr = SetSD(pSD);
  272. LeaveCriticalSection(&m_csWrite);
  273. }
  274. __except(hr = myHEXCEPTIONCODE(), EXCEPTION_EXECUTE_HANDLER)
  275. {
  276. }
  277. error:
  278. return hr;
  279. }
  281. HRESULT
  282. CProtectedSecurityDescriptor::LockGet(PSECURITY_DESCRIPTOR *ppSD)
  283. {
  284. HRESULT hr = S_OK;
  285. CSASSERT(m_fInitialized);
  286. __try
  287. {
  288. EnterCriticalSection(&m_csWrite);
  289. InterlockedIncrement(&m_cReaders);
  290. if(!ResetEvent(m_hevtNoReaders))
  291. {
  292. hr = myHLastError();
  293. }
  294. LeaveCriticalSection(&m_csWrite);
  295. *ppSD = m_pSD;
  296. }
  297. __except(hr = myHEXCEPTIONCODE(), EXCEPTION_EXECUTE_HANDLER)
  298. {
  299. }
  300. return hr;
  301. }
  303. HRESULT
  304. CProtectedSecurityDescriptor::Unlock()
  305. {
  306. HRESULT hr = S_OK;
  307. CSASSERT(m_fInitialized);
  308. if(!InterlockedDecrement(&m_cReaders))
  309. {
  310. if(!SetEvent(m_hevtNoReaders))
  311. {
  312. hr = myHLastError();
  313. }
  314. }
  315. return hr;
  316. }