archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
8 Commits
1 Branch
0 Tags
2.0 GiB
Tree: 744f0b4006
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '744f0b4006'
${ noResults }
windows-xp/Source/XPSP1/NT/net/tcpip/driver/ipsec/sys/acquire.c

987 lines
26 KiB
Raw Normal View History

Add source files
4 years ago
  3. #include "precomp.h"
  6. #pragma hdrstop
  9. VOID
  10. IPSecCompleteIrp(
  11. PIRP pIrp,
  12. NTSTATUS ntStatus
  13. )
  14. /*++
  16. Routine Description:
  18. This Routine handles calling the NT I/O system to complete an I/O.
  20. Arguments:
  22. pIrp - Irp which needs to be completed.
  24. ntStatus - The completion status for the Irp.
  26. Return Value:
  28. None.
  30. --*/
  31. {
  32. KIRQL kIrql;
  35. #if DBG
  36. if (!NT_SUCCESS(ntStatus)) {
  37. IPSEC_DEBUG(ACQUIRE, ("IPSecCompleteIrp: Completion status = %X\n", ntStatus));
  38. }
  39. #endif
  41. pIrp->IoStatus.Status = ntStatus;
  43. //
  44. // Set the cancel routine for the Irp to NULL or the system may bugcheck
  45. // with a bug code of CANCEL_STATE_IN_COMPLETED_IRP.
  46. //
  48. IoAcquireCancelSpinLock(&kIrql);
  49. IoSetCancelRoutine(pIrp, NULL);
  50. IoReleaseCancelSpinLock(kIrql);
  52. IoCompleteRequest(pIrp, IO_NETWORK_INCREMENT);
  54. return;
  55. }
  58. VOID
  59. IPSecInvalidateHandle(
  60. PIPSEC_ACQUIRE_CONTEXT pIpsecAcquireContext
  61. )
  62. /*++
  64. Routine Description:
  66. This routine invalidates an acquire handle by freeing the memory location.
  68. Arguments:
  70. pIpsecAcquireContext - The Acquire context.
  72. Return Value:
  74. None.
  76. --*/
  77. {
  78. ASSERT(pIpsecAcquireContext);
  80. if (pIpsecAcquireContext) {
  82. ASSERT(pIpsecAcquireContext->pSA);
  83. ASSERT(
  84. pIpsecAcquireContext->pSA->sa_AcquireId ==
  85. pIpsecAcquireContext->AcquireId
  86. );
  88. pIpsecAcquireContext->AcquireId = 0;
  90. IPSecFreeMemory(pIpsecAcquireContext);
  92. }
  94. return;
  95. }
  98. NTSTATUS
  99. IPSecValidateHandle(
  100. PIPSEC_ACQUIRE_CONTEXT pIpsecAcquireContext,
  101. SA_STATE SAState
  102. )
  103. /*++
  105. Routine Description:
  107. This routine validates an acquire handle by matching the unique signature
  108. in the handle with that in the SA and ensuring that the SA state matches
  109. the SA state in the input.
  110. Called with Larval List Lock held; returns with it.
  112. Arguments:
  114. pIpsecAcquireContext - The Acquire context.
  116. SAState - State in which the SA is expected to be in.
  118. Return Value:
  120. NTSTATUS - Status after the validation.
  122. --*/
  123. {
  124. PSA_TABLE_ENTRY pSA = NULL;
  125. BOOL bFound = FALSE;
  126. PLIST_ENTRY pEntry = NULL;
  129. if (!pIpsecAcquireContext) {
  130. return STATUS_UNSUCCESSFUL;
  131. }
  133. //
  134. // Walk through the larval SA list to see if there is an SA
  135. // with this context value.
  136. //
  138. for (pEntry = g_ipsec.LarvalSAList.Flink;
  139. pEntry != &g_ipsec.LarvalSAList;
  140. pEntry = pEntry->Flink) {
  142. pSA = CONTAINING_RECORD(
  143. pEntry,
  144. SA_TABLE_ENTRY,
  145. sa_LarvalLinkage
  146. );
  148. if (pSA->sa_AcquireCtx == pIpsecAcquireContext) {
  149. bFound = TRUE;
  150. break;
  151. }
  153. }
  155. if (bFound) {
  157. if (!pIpsecAcquireContext->pSA) {
  158. return STATUS_UNSUCCESSFUL;
  159. }
  161. pSA = pIpsecAcquireContext->pSA;
  163. if (pSA->sa_AcquireId != pIpsecAcquireContext->AcquireId) {
  164. return STATUS_UNSUCCESSFUL;
  165. }
  167. if (pSA->sa_Signature == IPSEC_SA_SIGNATURE) {
  168. if (pSA->sa_State == SAState) {
  169. return STATUS_SUCCESS;
  170. }
  171. }
  173. }
  175. return STATUS_UNSUCCESSFUL;
  176. }
  179. VOID
  180. IPSecAbortAcquire(
  181. PIPSEC_ACQUIRE_CONTEXT pIpsecAcquireContext
  182. )
  183. /*++
  185. Routine Description:
  187. This routine aborts the acquire operation because of insufficient
  188. resources or invalid parameters.
  190. Arguments:
  192. pIpsecAcquireContext - The acquire context.
  194. Called with both the SADB and the LarvalSAList locks held; returns with them.
  196. Return Value:
  198. None.
  200. --*/
  201. {
  202. PSA_TABLE_ENTRY pSA = NULL;
  203. PSA_TABLE_ENTRY pOutboundSA = NULL;
  204. BOOL bIsTimerStopped = FALSE;
  205. KIRQL kSPIIrql;
  208. pSA = pIpsecAcquireContext->pSA;
  210. ASSERT(pSA->sa_Flags & FLAGS_SA_TIMER_STARTED);
  212. bIsTimerStopped = IPSecStopTimer(&pSA->sa_Timer);
  214. if (!bIsTimerStopped) {
  215. return;
  216. }
  218. pSA->sa_Flags &= ~FLAGS_SA_TIMER_STARTED;
  220. //
  221. // The larval list is already locked so that this SA does not go away.
  222. //
  223. ASSERT((pSA->sa_Flags & FLAGS_SA_OUTBOUND) == 0);
  225. if (pSA->sa_AcquireCtx) {
  226. IPSecInvalidateHandle(pSA->sa_AcquireCtx);
  227. pSA->sa_AcquireCtx = NULL;
  228. }
  230. //
  231. // Remove from the larval list.
  232. //
  233. IPSecRemoveEntryList(&pSA->sa_LarvalLinkage);
  234. IPSEC_DEC_STATISTIC(dwNumPendingKeyOps);
  236. //
  237. // Flush all the queued packets for this SA.
  238. //
  239. IPSecFlushQueuedPackets(pSA, STATUS_TIMEOUT);
  241. //
  242. // Remove the SA from the inbound SA list.
  243. //
  244. AcquireWriteLock(&g_ipsec.SPIListLock, &kSPIIrql);
  245. IPSecRemoveSPIEntry(pSA);
  246. ReleaseWriteLock(&g_ipsec.SPIListLock, kSPIIrql);
  248. //
  249. // Also remove the SA from the filter list.
  250. //
  251. if (pSA->sa_Flags & FLAGS_SA_ON_FILTER_LIST) {
  252. pSA->sa_Flags &= ~FLAGS_SA_ON_FILTER_LIST;
  253. IPSecRemoveEntryList(&pSA->sa_FilterLinkage);
  254. }
  256. if (pSA->sa_RekeyOriginalSA) {
  257. ASSERT(pSA->sa_Flags & FLAGS_SA_REKEY);
  258. ASSERT(pSA->sa_RekeyOriginalSA->sa_RekeyLarvalSA == pSA);
  259. ASSERT(pSA->sa_RekeyOriginalSA->sa_Flags & FLAGS_SA_REKEY_ORI);
  261. pSA->sa_RekeyOriginalSA->sa_Flags &= ~FLAGS_SA_REKEY_ORI;
  262. pSA->sa_RekeyOriginalSA->sa_RekeyLarvalSA = NULL;
  263. pSA->sa_RekeyOriginalSA = NULL;
  264. }
  266. //
  267. // Invalidate the associated cache entry.
  268. //
  269. IPSecInvalidateSACacheEntry(pSA);
  271. pOutboundSA = pSA->sa_AssociatedSA;
  273. if (pOutboundSA) {
  274. pSA->sa_AssociatedSA = NULL;
  275. if (pOutboundSA->sa_Flags & FLAGS_SA_ON_FILTER_LIST) {
  276. pOutboundSA->sa_Flags &= ~FLAGS_SA_ON_FILTER_LIST;
  277. IPSecRemoveEntryList(&pOutboundSA->sa_FilterLinkage);
  278. }
  280. //
  281. // Invalidate the associated cache entry.
  282. //
  283. IPSecInvalidateSACacheEntry(pOutboundSA);
  285. IPSEC_DEC_STATISTIC(dwNumActiveAssociations);
  286. IPSEC_DEC_TUNNELS(pOutboundSA);
  287. IPSEC_DECREMENT(g_ipsec.NumOutboundSAs);
  289. IPSEC_DEBUG(REF, ("IPSecAbortAcquire: Outbound SA Dereference.\n"));
  291. IPSecStopTimerDerefSA(pOutboundSA);
  292. }
  294. IPSecDerefSA(pSA);
  296. return;
  297. }
  300. NTSTATUS
  301. IPSecCheckSetCancelRoutine(
  302. PIRP pIrp,
  303. PVOID pCancelRoutine
  304. )
  305. /*++
  307. Routine Description:
  309. This Routine sets the cancel routine for an Irp.
  311. Arguments:
  313. pIrp - Irp for which the cancel routine is to be set.
  315. pCancelRoutine - Cancel routine to be set in the Irp.
  317. Return Value:
  319. NTSTATUS - Status for the request.
  321. --*/
  322. {
  323. NTSTATUS ntStatus = STATUS_SUCCESS;
  325. //
  326. // Check if the irp has been cancelled and if not, then set the
  327. // irp cancel routine.
  328. //
  330. IoAcquireCancelSpinLock(&pIrp->CancelIrql);
  332. if (pIrp->Cancel) {
  333. pIrp->IoStatus.Status = STATUS_CANCELLED;
  334. ntStatus = STATUS_CANCELLED;
  335. }
  336. else {
  337. IoMarkIrpPending(pIrp);
  338. IoSetCancelRoutine(pIrp, pCancelRoutine);
  339. ntStatus = STATUS_SUCCESS;
  340. }
  342. IoReleaseCancelSpinLock(pIrp->CancelIrql);
  344. return (ntStatus);
  345. }
  348. NTSTATUS
  349. IPSecSubmitAcquire(
  350. PSA_TABLE_ENTRY pLarvalSA,
  351. KIRQL OldIrq,
  352. BOOLEAN PostAcquire
  353. )
  354. /*++
  356. Routine Description:
  358. This function is used to submit an Acquire request to the key manager
  360. Arguments:
  362. pLarvalSA - larval SA that needs to be negotiated
  364. OldIrq - prev irq - lock released here.
  366. NOTE: called with AcquireInfo lock held.
  368. Return Value:
  370. STATUS_PENDING if the buffer is to be held on to , the normal case.
  372. Notes:
  375. --*/
  377. {
  378. NTSTATUS status;
  379. PIRP pIrp;
  381. if (!g_ipsec.AcquireInfo.Irp) {
  382. //
  383. // the irp either never made it down here, or it was cancelled,
  384. // so drop all frames
  385. //
  386. IPSEC_DEBUG(ACQUIRE, ("IPSecSubmitAcquire: Irp is NULL, returning\r\n"));
  387. RELEASE_LOCK(&g_ipsec.AcquireInfo.Lock, OldIrq);
  389. return STATUS_BAD_NETWORK_PATH;
  390. } else if (!g_ipsec.AcquireInfo.ResolvingNow) {
  391. PIPSEC_ACQUIRE_CONTEXT pAcquireCtx;
  392. PVOID pvIoBuffer;
  394. //
  395. // Irp is free now - use it
  396. //
  397. pIrp = g_ipsec.AcquireInfo.Irp;
  399. IPSEC_DEBUG(ACQUIRE, ("Using Irp.. : %lx\n", pIrp));
  401. //
  402. // Get the Acquire Context and associate with the Larval SA
  403. //
  404. pAcquireCtx = IPSecGetAcquireContext();
  406. if (!pAcquireCtx) {
  407. IPSEC_DEBUG(ACQUIRE, ("Failed to get acquire ctx\n"));
  408. RELEASE_LOCK(&g_ipsec.AcquireInfo.Lock,OldIrq);
  409. return STATUS_INSUFFICIENT_RESOURCES;
  410. }
  412. //
  413. // Set ResolvingNow only after memory allocation (282645).
  414. //
  415. g_ipsec.AcquireInfo.ResolvingNow = TRUE;
  417. pAcquireCtx->AcquireId = (ULONG)(ULONG_PTR)pLarvalSA;
  418. IPSecGenerateRandom((PUCHAR)&pAcquireCtx->AcquireId, sizeof(ULONG));
  419. pAcquireCtx->pSA = pLarvalSA;
  420. pLarvalSA->sa_AcquireCtx = pAcquireCtx;
  421. pLarvalSA->sa_AcquireId = pAcquireCtx->AcquireId;
  423. //
  424. // Set up the Irp params
  425. //
  426. pvIoBuffer = pIrp->AssociatedIrp.SystemBuffer;
  428. ((PIPSEC_POST_FOR_ACQUIRE_SA)pvIoBuffer)->IdentityInfo = NULL;
  429. ((PIPSEC_POST_FOR_ACQUIRE_SA)pvIoBuffer)->Context = pAcquireCtx;
  430. ((PIPSEC_POST_FOR_ACQUIRE_SA)pvIoBuffer)->PolicyId = pLarvalSA->sa_Filter->PolicyId;
  432. //
  433. // Instead of reversing, use the originating filters addresses
  434. //
  435. ((PIPSEC_POST_FOR_ACQUIRE_SA)pvIoBuffer)->SrcAddr = pLarvalSA->SA_DEST_ADDR;
  436. ((PIPSEC_POST_FOR_ACQUIRE_SA)pvIoBuffer)->SrcMask = pLarvalSA->SA_DEST_MASK;
  437. ((PIPSEC_POST_FOR_ACQUIRE_SA)pvIoBuffer)->DestAddr = pLarvalSA->SA_SRC_ADDR;
  438. ((PIPSEC_POST_FOR_ACQUIRE_SA)pvIoBuffer)->DestMask = pLarvalSA->SA_SRC_MASK;
  439. ((PIPSEC_POST_FOR_ACQUIRE_SA)pvIoBuffer)->Protocol = pLarvalSA->SA_PROTO;
  440. ((PIPSEC_POST_FOR_ACQUIRE_SA)pvIoBuffer)->TunnelFilter = pLarvalSA->sa_Filter->TunnelFilter;
  441. //
  442. // the tunnel addr is in the corresp. outbound filter.
  443. //
  444. ((PIPSEC_POST_FOR_ACQUIRE_SA)pvIoBuffer)->TunnelAddr = pLarvalSA->sa_Filter->TunnelAddr;
  445. ((PIPSEC_POST_FOR_ACQUIRE_SA)pvIoBuffer)->InboundTunnelAddr = pLarvalSA->sa_TunnelAddr;
  447. ((PIPSEC_POST_FOR_ACQUIRE_SA)pvIoBuffer)->SrcPort = SA_DEST_PORT(pLarvalSA);
  448. ((PIPSEC_POST_FOR_ACQUIRE_SA)pvIoBuffer)->DestPort = SA_SRC_PORT(pLarvalSA);
  450. ((PIPSEC_POST_FOR_ACQUIRE_SA)pvIoBuffer)->DestType = 0;
  451. if (IS_BCAST_DEST(pLarvalSA->sa_DestType)) {
  452. ((PIPSEC_POST_FOR_ACQUIRE_SA)pvIoBuffer)->DestType |= IPSEC_BCAST;
  453. }
  454. if (IS_MCAST_DEST(pLarvalSA->sa_DestType)) {
  455. ((PIPSEC_POST_FOR_ACQUIRE_SA)pvIoBuffer)->DestType |= IPSEC_MCAST;
  456. }
  459. pIrp->IoStatus.Information = sizeof(IPSEC_POST_FOR_ACQUIRE_SA);
  461. g_ipsec.AcquireInfo.InMe = FALSE;
  463. pLarvalSA->sa_Flags &= ~FLAGS_SA_PENDING;
  465. RELEASE_LOCK(&g_ipsec.AcquireInfo.Lock,OldIrq);
  467. if (PostAcquire) {
  468. status = STATUS_SUCCESS;
  469. } else {
  470. IPSEC_DEBUG(ACQUIRE, ("Completing Irp.. : %lx\n", pIrp));
  471. IPSecCompleteIrp(pIrp, STATUS_SUCCESS);
  472. status = STATUS_PENDING;
  473. }
  475. IPSEC_DEBUG(ACQUIRE, ("IPSecSubmitAcquire: submitted context: %lx, SA: %lx\n",
  476. pAcquireCtx,
  477. pLarvalSA));
  478. } else {
  479. //
  480. // The irp is busy negotiating another SA
  481. // Queue the Larval SA
  482. //
  483. InsertTailList( &g_ipsec.AcquireInfo.PendingAcquires,
  484. &pLarvalSA->sa_PendingLinkage);
  486. pLarvalSA->sa_Flags |= FLAGS_SA_PENDING;
  488. status = STATUS_PENDING;
  489. RELEASE_LOCK(&g_ipsec.AcquireInfo.Lock, OldIrq);
  491. IPSEC_DEBUG(ACQUIRE, ("IPSecSubmitAcquire: queued SA: %lx\n", pLarvalSA));
  492. }
  494. return status;
  495. }
  498. NTSTATUS
  499. IPSecHandleAcquireRequest(
  500. PIRP pIrp,
  501. PIPSEC_POST_FOR_ACQUIRE_SA pIpsecPostAcquireSA
  502. )
  503. /*++
  505. Routine Description:
  507. This routine receives an acquire request from the key manager and
  508. either completes it instantly to submit a new SA negotiation or pends
  509. it for further negotiations.
  511. Arguments:
  513. pIrp - The Irp.
  515. pIpsecPostAcquireSA - Buffer for filling in the policy ID for forcing
  516. an SA negotiation.
  518. Return Value:
  520. STATUS_PENDING - If the buffer is to be held on to, the normal case.
  522. --*/
  523. {
  524. NTSTATUS status = STATUS_PENDING;
  525. KIRQL OldIrq;
  526. PVOID Context;
  527. BOOLEAN fIrpCompleted = FALSE;
  528. PSA_TABLE_ENTRY pLarvalSA;
  530. ACQUIRE_LOCK(&g_ipsec.AcquireInfo.Lock, &OldIrq);
  532. if (g_ipsec.AcquireInfo.InMe) {
  533. IPSEC_DEBUG(ACQUIRE, ("Irp re-submited!: %lx\n", g_ipsec.AcquireInfo.Irp));
  534. RELEASE_LOCK(&g_ipsec.AcquireInfo.Lock, OldIrq);
  535. return STATUS_INVALID_PARAMETER;
  536. }
  538. g_ipsec.AcquireInfo.Irp = pIrp;
  540. // ASSERT(g_ipsec.AcquireInfo.ResolvingNow);
  542. g_ipsec.AcquireInfo.ResolvingNow = FALSE;
  544. //
  545. // if there are pending SA negotiations, submit next
  546. //
  547. while (TRUE) {
  548. if (!IsListEmpty(&g_ipsec.AcquireInfo.PendingAcquires)) {
  549. PLIST_ENTRY pEntry;
  551. pEntry = RemoveHeadList(&g_ipsec.AcquireInfo.PendingAcquires);
  553. pLarvalSA = CONTAINING_RECORD( pEntry,
  554. SA_TABLE_ENTRY,
  555. sa_PendingLinkage);
  557. ASSERT(pLarvalSA->sa_State == STATE_SA_LARVAL);
  558. ASSERT(pLarvalSA->sa_Flags & FLAGS_SA_PENDING);
  560. pLarvalSA->sa_Flags &= ~FLAGS_SA_PENDING;
  562. //
  563. // submit... releases the AcquireInfo lock
  564. //
  565. status = IPSecSubmitAcquire(pLarvalSA, OldIrq, TRUE);
  567. //
  568. // if it failed then complete the irp now
  569. //
  570. if (!NT_SUCCESS(status)) {
  571. ACQUIRE_LOCK(&g_ipsec.AcquireInfo.Lock, &OldIrq);
  572. } else {
  573. ACQUIRE_LOCK(&g_ipsec.AcquireInfo.Lock, &OldIrq);
  574. fIrpCompleted = TRUE;
  575. IPSEC_DEBUG(ACQUIRE, ("Acquire Irp completed inline\n"));
  576. break;
  577. }
  578. } else if (!IsListEmpty(&g_ipsec.AcquireInfo.PendingNotifies)) {
  579. PLIST_ENTRY pEntry;
  580. PIPSEC_NOTIFY_EXPIRE pNotifyExpire;
  582. pEntry = RemoveHeadList(&g_ipsec.AcquireInfo.PendingNotifies);
  585. pNotifyExpire = CONTAINING_RECORD( pEntry,
  586. IPSEC_NOTIFY_EXPIRE,
  587. notify_PendingLinkage);
  589. ASSERT(pNotifyExpire);
  591. //
  592. // submit... releases the AcquireInfo lock
  593. //
  594. status = IPSecNotifySAExpiration(NULL, pNotifyExpire, OldIrq, TRUE);
  596. //
  597. // if it failed then complete the irp now
  598. //
  599. if (!NT_SUCCESS(status)) {
  600. ACQUIRE_LOCK(&g_ipsec.AcquireInfo.Lock, &OldIrq);
  601. } else {
  602. ACQUIRE_LOCK(&g_ipsec.AcquireInfo.Lock, &OldIrq);
  603. fIrpCompleted = TRUE;
  604. IPSEC_DEBUG(ACQUIRE, ("Acquire Irp completed inline\n"));
  605. break;
  606. }
  609. } else {
  610. break;
  611. }
  612. }
  614. //
  615. // We are holding onto the Irp, so set the cancel routine.
  616. //
  617. if (!fIrpCompleted) {
  618. status = IPSecCheckSetCancelRoutine(pIrp, IPSecAcquireIrpCancel);
  620. if (!NT_SUCCESS(status)) {
  621. //
  622. // the irp got cancelled so complete it now
  623. //
  624. g_ipsec.AcquireInfo.Irp = NULL;
  625. RELEASE_LOCK(&g_ipsec.AcquireInfo.Lock, OldIrq);
  627. // IPSecCompleteIrp(pIrp, status);
  628. } else {
  629. g_ipsec.AcquireInfo.InMe = TRUE;
  630. RELEASE_LOCK(&g_ipsec.AcquireInfo.Lock, OldIrq);
  631. status = STATUS_PENDING;
  632. }
  633. } else {
  634. g_ipsec.AcquireInfo.InMe = FALSE;
  635. RELEASE_LOCK(&g_ipsec.AcquireInfo.Lock, OldIrq);
  636. }
  638. return status;
  639. }
  642. VOID
  643. IPSecAcquireIrpCancel(
  644. PDEVICE_OBJECT pDeviceObject,
  645. PIRP pIrp
  646. )
  647. /*++
  649. Routine Description:
  651. This is the cancel routine for the Acquire Irp.
  652. It is called with IoCancelSpinLock held - must release this lock before exit.
  654. Arguments:
  656. pDeviceObject - Device object for the Irp.
  658. pIrp - The irp itself.
  660. Return Value:
  662. None.
  664. --*/
  665. {
  666. KIRQL kIrql;
  667. KIRQL kAcquireIrql;
  670. IoReleaseCancelSpinLock(pIrp->CancelIrql);
  672. IPSEC_DEBUG(ACQUIRE, ("IPSecAcquireIrpCancel: Acquire Irp cancelled\n"));
  674. AcquireWriteLock(&g_ipsec.SADBLock, &kIrql);
  675. ACQUIRE_LOCK(&g_ipsec.AcquireInfo.Lock, &kAcquireIrql);
  677. if (g_ipsec.AcquireInfo.Irp && g_ipsec.AcquireInfo.InMe) {
  679. pIrp->IoStatus.Status = STATUS_CANCELLED;
  680. g_ipsec.AcquireInfo.Irp = NULL;
  681. g_ipsec.AcquireInfo.InMe = FALSE;
  683. //
  684. // Flush larval SAs.
  685. //
  687. IPSecFlushLarvalSAList();
  689. //
  690. // Flush SA expiration notifies.
  691. //
  693. IPSecFlushSAExpirations();
  695. RELEASE_LOCK(&g_ipsec.AcquireInfo.Lock, kAcquireIrql);
  696. ReleaseWriteLock(&g_ipsec.SADBLock, kIrql);
  698. IoCompleteRequest(pIrp, IO_NETWORK_INCREMENT);
  700. }
  701. else {
  703. RELEASE_LOCK(&g_ipsec.AcquireInfo.Lock, kAcquireIrql);
  704. ReleaseWriteLock(&g_ipsec.SADBLock, kIrql);
  706. }
  708. return;
  709. }
  712. NTSTATUS
  713. IPSecNotifySAExpiration(
  714. PSA_TABLE_ENTRY pInboundSA,
  715. PIPSEC_NOTIFY_EXPIRE pNotifyExpire,
  716. KIRQL OldIrq,
  717. BOOLEAN PostAcquire
  718. )
  719. /*++
  721. Routine Description:
  723. Notify Oakley through Acquire that SA has expired.
  725. Arguments:
  727. SA that is to expire
  729. Return Value:
  731. None
  733. --*/
  734. {
  735. PIPSEC_NOTIFY_EXPIRE pNewNotifyExpire;
  736. NTSTATUS status;
  737. PIRP pIrp;
  739. #if DBG
  740. if ((IPSecDebug & IPSEC_DEBUG_REKEY) && pInboundSA) {
  741. LARGE_INTEGER CurrentTime;
  743. NdisGetCurrentSystemTime(&CurrentTime);
  744. DbgPrint("NotifySAExpiration: %lx, %lx, %lx, %lx, %lx\n",
  745. CurrentTime.LowPart,
  746. pInboundSA->SA_DEST_ADDR,
  747. pInboundSA->SA_SRC_ADDR,
  748. pInboundSA->sa_SPI,
  749. pInboundSA->sa_AssociatedSA? pInboundSA->sa_AssociatedSA->sa_SPI: 0);
  750. }
  751. #endif
  753. //
  754. // Check if there is a need to notify.
  755. //
  756. if (pInboundSA &&
  757. ((pInboundSA->sa_Flags & FLAGS_SA_NOTIFY_PERFORMED) ||
  758. (pInboundSA->sa_State == STATE_SA_LARVAL))) {
  759. IPSEC_DEBUG(ACQUIRE, ("IPSecSubmitAcquire: already notified, returning\n"));
  760. RELEASE_LOCK(&g_ipsec.AcquireInfo.Lock, OldIrq);
  762. return STATUS_UNSUCCESSFUL;
  763. }
  765. //
  766. // Set the flag so we won't notify again - only set flag in non-queued case.
  767. //
  768. if (pInboundSA) {
  769. pInboundSA->sa_Flags |= FLAGS_SA_NOTIFY_PERFORMED;
  770. }
  772. if (!g_ipsec.AcquireInfo.Irp) {
  773. //
  774. // the irp either never made it down here, or it was cancelled,
  775. // so drop all frames
  776. //
  777. IPSEC_DEBUG(ACQUIRE, ("IPSecSubmitAcquire: Irp is NULL, returning\r\n"));
  778. RELEASE_LOCK(&g_ipsec.AcquireInfo.Lock, OldIrq);
  780. return STATUS_BAD_NETWORK_PATH;
  781. } else if (!g_ipsec.AcquireInfo.ResolvingNow) {
  782. PIPSEC_POST_EXPIRE_NOTIFY pNotify;
  784. //
  785. // Irp is free now - use it
  786. //
  787. g_ipsec.AcquireInfo.ResolvingNow = TRUE;
  788. pIrp = g_ipsec.AcquireInfo.Irp;
  790. IPSEC_DEBUG(ACQUIRE, ("Using Irp.. : %lx\n", pIrp));
  792. pNotify = (PIPSEC_POST_EXPIRE_NOTIFY)pIrp->AssociatedIrp.SystemBuffer;
  794. pNotify->IdentityInfo = NULL;
  795. pNotify->Context = NULL;
  797. if (pInboundSA) {
  798. pNotify->SrcAddr = pInboundSA->SA_DEST_ADDR;
  799. pNotify->SrcMask = pInboundSA->SA_DEST_MASK;
  800. pNotify->DestAddr = pInboundSA->SA_SRC_ADDR;
  801. pNotify->DestMask = pInboundSA->SA_SRC_MASK;
  802. pNotify->Protocol = pInboundSA->SA_PROTO;
  803. pNotify->SrcPort = SA_DEST_PORT(pInboundSA);
  804. pNotify->DestPort = SA_SRC_PORT(pInboundSA);
  805. pNotify->InboundSpi = pInboundSA->sa_SPI;
  807. RtlCopyMemory( &pNotify->CookiePair,
  808. &pInboundSA->sa_CookiePair,
  809. sizeof(IKE_COOKIE_PAIR));
  811. if (pInboundSA->sa_Flags & FLAGS_SA_DELETE_BY_IOCTL) {
  812. pNotify->Flags = IPSEC_SA_INTERNAL_IOCTL_DELETE;
  813. } else {
  814. pNotify->Flags = 0;
  815. }
  817. if (pInboundSA->sa_AssociatedSA) {
  818. pNotify->OutboundSpi = pInboundSA->sa_AssociatedSA->sa_SPI;
  820. if (pInboundSA->sa_AssociatedSA->sa_Filter) {
  821. pNotify->TunnelAddr = pInboundSA->sa_AssociatedSA->sa_Filter->TunnelAddr;
  822. pNotify->InboundTunnelAddr = pInboundSA->sa_TunnelAddr;
  823. } else {
  824. pNotify->TunnelAddr = IPSEC_INVALID_ADDR;
  825. }
  826. } else {
  827. pNotify->OutboundSpi = IPSEC_INVALID_SPI;
  828. pNotify->TunnelAddr = IPSEC_INVALID_ADDR;
  829. }
  830. } else {
  831. ASSERT(pNotifyExpire);
  833. if (pNotifyExpire) {
  834. pNotify->SrcAddr = pNotifyExpire->SA_DEST_ADDR;
  835. pNotify->SrcMask = pNotifyExpire->SA_DEST_MASK;
  836. pNotify->DestAddr = pNotifyExpire->SA_SRC_ADDR;
  837. pNotify->DestMask = pNotifyExpire->SA_SRC_MASK;
  838. pNotify->Protocol = pNotifyExpire->SA_PROTO;
  840. pNotify->TunnelAddr = pNotifyExpire->sa_TunnelAddr;
  841. pNotify->InboundTunnelAddr = pNotifyExpire->sa_TunnelAddr;
  843. pNotify->SrcPort = SA_DEST_PORT(pNotifyExpire);
  844. pNotify->DestPort = SA_SRC_PORT(pNotifyExpire);
  846. pNotify->InboundSpi = pNotifyExpire->InboundSpi;
  847. pNotify->OutboundSpi = pNotifyExpire->OutboundSpi;
  849. RtlCopyMemory( &pNotify->CookiePair,
  850. &pNotifyExpire->sa_CookiePair,
  851. sizeof(IKE_COOKIE_PAIR));
  852. pNotify->Flags = pNotifyExpire->Flags;
  854. IPSecFreeMemory(pNotifyExpire);
  855. }
  856. }
  858. pIrp->IoStatus.Information = sizeof(IPSEC_POST_FOR_ACQUIRE_SA);
  860. g_ipsec.AcquireInfo.InMe = FALSE;
  862. RELEASE_LOCK(&g_ipsec.AcquireInfo.Lock,OldIrq);
  864. if (PostAcquire) {
  865. IPSEC_DEBUG(ACQUIRE, ("Completing Irp in driver.c.. : %lx\n", pIrp));
  866. status = STATUS_SUCCESS;
  867. } else {
  868. IPSEC_DEBUG(ACQUIRE, ("Completing Irp.. : %lx\n", pIrp));
  869. IPSecCompleteIrp(pIrp, STATUS_SUCCESS);
  870. status = STATUS_PENDING;
  871. }
  873. IPSEC_DEBUG(ACQUIRE, ("IPSecSubmitAcquire(Notify)\n"));
  874. } else {
  875. ASSERT(pInboundSA);
  877. //
  878. // The irp is busy negotiating another SA
  879. // Queue the Larval SA
  880. //
  881. if (pNotifyExpire) {
  882. //
  883. // Somethings bad. We've already queued up once, and we still
  884. // can't send. Just drop it.
  885. //
  886. IPSecFreeMemory(pNotifyExpire);
  887. RELEASE_LOCK(&g_ipsec.AcquireInfo.Lock, OldIrq);
  888. return STATUS_UNSUCCESSFUL;
  889. }
  891. pNewNotifyExpire = IPSecGetNotifyExpire();
  893. if (!pNewNotifyExpire || !pInboundSA) {
  894. IPSEC_DEBUG(ACQUIRE, ("Failed to get Notify Memory\n"));
  895. RELEASE_LOCK(&g_ipsec.AcquireInfo.Lock,OldIrq);
  896. return STATUS_INSUFFICIENT_RESOURCES;
  897. }
  899. pNewNotifyExpire->sa_uliSrcDstAddr = pInboundSA->sa_uliSrcDstAddr;
  900. pNewNotifyExpire->sa_uliSrcDstMask = pInboundSA->sa_uliSrcDstMask;
  901. pNewNotifyExpire->sa_uliProtoSrcDstPort=pInboundSA->sa_uliProtoSrcDstPort;
  903. pNewNotifyExpire->InboundSpi = pInboundSA->sa_SPI;
  904. pNewNotifyExpire->sa_InboundTunnelAddr = pInboundSA->sa_TunnelAddr;
  906. RtlCopyMemory( &pNewNotifyExpire->sa_CookiePair,
  907. &pInboundSA->sa_CookiePair,
  908. sizeof(IKE_COOKIE_PAIR));
  910. if (pInboundSA->sa_Flags & FLAGS_SA_DELETE_BY_IOCTL) {
  911. pNewNotifyExpire->Flags = IPSEC_SA_INTERNAL_IOCTL_DELETE;
  912. } else {
  913. pNewNotifyExpire->Flags = 0;
  914. }
  916. if (pInboundSA->sa_AssociatedSA) {
  917. pNewNotifyExpire->OutboundSpi = pInboundSA->sa_AssociatedSA->sa_SPI;
  919. if (pInboundSA->sa_AssociatedSA->sa_Filter) {
  920. pNewNotifyExpire->sa_TunnelAddr = pInboundSA->sa_AssociatedSA->sa_Filter->TunnelAddr;
  921. } else {
  922. pNewNotifyExpire->sa_TunnelAddr = IPSEC_INVALID_ADDR;
  923. }
  924. } else {
  925. pNewNotifyExpire->OutboundSpi = IPSEC_INVALID_SPI;
  926. pNewNotifyExpire->sa_TunnelAddr = IPSEC_INVALID_ADDR;
  927. }
  929. InsertTailList( &g_ipsec.AcquireInfo.PendingNotifies,
  930. &pNewNotifyExpire->notify_PendingLinkage);
  932. status = STATUS_PENDING;
  933. RELEASE_LOCK(&g_ipsec.AcquireInfo.Lock, OldIrq);
  935. IPSEC_DEBUG(ACQUIRE, ("IPSecSubmitAcquire(Notify): queue SA\n"));
  936. }
  938. return status;
  939. }
  942. VOID
  943. IPSecFlushSAExpirations(
  944. )
  945. /*++
  947. Routine Description:
  949. When the Acquire Irp is cancelled, this routine is called to flush all the
  950. pending SA expiration notifies.
  952. Called with SADB lock held (first acquisition); returns with it.
  953. Called with AcquireInfo.Lock held (second acquisition); returns with it.
  955. Arguments:
  957. None.
  959. Return Value:
  961. None.
  963. --*/
  964. {
  965. PIPSEC_NOTIFY_EXPIRE pIpsecNotifyExpire = NULL;
  966. PLIST_ENTRY pListEntry = NULL;
  969. while (!IsListEmpty(&g_ipsec.AcquireInfo.PendingNotifies)) {
  971. pListEntry = RemoveHeadList(
  972. &g_ipsec.AcquireInfo.PendingNotifies
  973. );
  975. pIpsecNotifyExpire = CONTAINING_RECORD(
  976. pListEntry,
  977. IPSEC_NOTIFY_EXPIRE,
  978. notify_PendingLinkage
  979. );
  981. IPSecFreeMemory(pIpsecNotifyExpire);
  983. }
  985. return;
  986. }